| ofs | hex dump | ascii |
|---|---|---|
| 0000 | de 12 04 95 00 00 00 00 09 17 00 00 1c 00 00 00 64 b8 00 00 bb 1e 00 00 ac 70 01 00 00 00 00 00 | ................d........p...... |
| 0020 | 98 eb 01 00 43 00 00 00 99 eb 01 00 52 00 00 00 dd eb 01 00 42 00 00 00 30 ec 01 00 3b 00 00 00 | ....C.......R.......B...0...;... |
| 0040 | 73 ec 01 00 42 00 00 00 af ec 01 00 3a 00 00 00 f2 ec 01 00 24 00 00 00 2d ed 01 00 1a 00 00 00 | s...B.......:.......$...-....... |
| 0060 | 52 ed 01 00 66 00 00 00 6d ed 01 00 6f 00 00 00 d4 ed 01 00 89 00 00 00 44 ee 01 00 5d 01 00 00 | R...f...m...o...........D...]... |
| 0080 | ce ee 01 00 48 00 00 00 2c f0 01 00 46 00 00 00 75 f0 01 00 31 00 00 00 bc f0 01 00 31 00 00 00 | ....H...,...F...u...1.......1... |
| 00a0 | ee f0 01 00 3e 00 00 00 20 f1 01 00 23 00 00 00 5f f1 01 00 18 00 00 00 83 f1 01 00 7d 00 00 00 | ....>.......#..._...........}... |
| 00c0 | 9c f1 01 00 92 00 00 00 1a f2 01 00 23 00 00 00 ad f2 01 00 90 00 00 00 d1 f2 01 00 20 00 00 00 | ............#................... |
| 00e0 | 62 f3 01 00 21 00 00 00 83 f3 01 00 21 00 00 00 a5 f3 01 00 3f 00 00 00 c7 f3 01 00 78 00 00 00 | b...!.......!.......?.......x... |
| 0100 | 07 f4 01 00 7f 00 00 00 80 f4 01 00 36 00 00 00 00 f5 01 00 15 00 00 00 37 f5 01 00 2d 00 00 00 | ............6...........7...-... |
| 0120 | 4d f5 01 00 27 00 00 00 7b f5 01 00 1d 00 00 00 a3 f5 01 00 5c 00 00 00 c1 f5 01 00 46 01 00 00 | M...'...{...........\.......F... |
| 0140 | 1e f6 01 00 60 00 00 00 65 f7 01 00 1c 00 00 00 c6 f7 01 00 0c 00 00 00 e3 f7 01 00 21 00 00 00 | ....`...e...................!... |
| 0160 | f0 f7 01 00 4e 00 00 00 12 f8 01 00 e8 00 00 00 61 f8 01 00 e0 00 00 00 4a f9 01 00 e0 00 00 00 | ....N...........a.......J....... |
| 0180 | 2b fa 01 00 23 00 00 00 0c fb 01 00 29 00 00 00 30 fb 01 00 3e 00 00 00 5a fb 01 00 0c 00 00 00 | +...#.......)...0...>...Z....... |
| 01a0 | 99 fb 01 00 12 00 00 00 a6 fb 01 00 56 00 00 00 b9 fb 01 00 56 00 00 00 10 fc 01 00 11 00 00 00 | ............V.......V........... |
| 01c0 | 67 fc 01 00 b4 00 00 00 79 fc 01 00 4d 00 00 00 2e fd 01 00 b4 00 00 00 7c fd 01 00 6c 00 00 00 | g.......y...M...........|...l... |
| 01e0 | 31 fe 01 00 6b 00 00 00 9e fe 01 00 6c 00 00 00 0a ff 01 00 81 00 00 00 77 ff 01 00 3b 00 00 00 | 1...k.......l...........w...;... |
| 0200 | f9 ff 01 00 12 00 00 00 35 00 02 00 8b 00 00 00 48 00 02 00 98 00 00 00 d4 00 02 00 8c 00 00 00 | ........5.......H............... |
| 0220 | 6d 01 02 00 30 01 00 00 fa 01 02 00 fc 00 00 00 2b 03 02 00 01 01 00 00 28 04 02 00 fb 00 00 00 | m...0...........+.......(....... |
| 0240 | 2a 05 02 00 fc 00 00 00 26 06 02 00 d5 00 00 00 23 07 02 00 94 00 00 00 f9 07 02 00 00 01 00 00 | *.......&.......#............... |
| 0260 | 8e 08 02 00 04 01 00 00 8f 09 02 00 2c 01 00 00 94 0a 02 00 f6 01 00 00 c1 0b 02 00 67 00 00 00 | ............,...............g... |
| 0280 | b8 0d 02 00 67 00 00 00 20 0e 02 00 66 00 00 00 88 0e 02 00 da 00 00 00 ef 0e 02 00 d9 00 00 00 | ....g.......f................... |
| 02a0 | ca 0f 02 00 12 00 00 00 a4 10 02 00 08 00 00 00 b7 10 02 00 b8 00 00 00 c0 10 02 00 14 01 00 00 | ................................ |
| 02c0 | 79 11 02 00 18 00 00 00 8e 12 02 00 18 00 00 00 a7 12 02 00 1b 00 00 00 c0 12 02 00 1a 00 00 00 | y............................... |
| 02e0 | dc 12 02 00 15 00 00 00 f7 12 02 00 0d 00 00 00 0d 13 02 00 14 00 00 00 1b 13 02 00 0a 00 00 00 | ................................ |
| 0300 | 30 13 02 00 0b 00 00 00 3b 13 02 00 0a 00 00 00 47 13 02 00 0b 00 00 00 52 13 02 00 0a 00 00 00 | 0.......;.......G.......R....... |
| 0320 | 5e 13 02 00 0a 00 00 00 69 13 02 00 4d 00 00 00 74 13 02 00 7e 03 00 00 c2 13 02 00 10 00 00 00 | ^.......i...M...t...~........... |
| 0340 | 41 17 02 00 10 00 00 00 52 17 02 00 6f 00 00 00 63 17 02 00 44 00 00 00 d3 17 02 00 8c 00 00 00 | A.......R...o...c...D........... |
| 0360 | 18 18 02 00 8c 00 00 00 a5 18 02 00 ba 00 00 00 32 19 02 00 ae 00 00 00 ed 19 02 00 ae 00 00 00 | ................2............... |
| 0380 | 9c 1a 02 00 a0 01 00 00 4b 1b 02 00 99 01 00 00 ec 1c 02 00 ab 01 00 00 86 1e 02 00 98 01 00 00 | ........K....................... |
| 03a0 | 32 20 02 00 99 01 00 00 cb 21 02 00 ae 01 00 00 65 23 02 00 10 00 00 00 14 25 02 00 8b 00 00 00 | 2........!......e#.......%...... |
| 03c0 | 25 25 02 00 4a 00 00 00 b1 25 02 00 16 00 00 00 fc 25 02 00 9d 00 00 00 13 26 02 00 32 00 00 00 | %%..J....%.......%.......&..2... |
| 03e0 | b1 26 02 00 93 00 00 00 e4 26 02 00 6b 01 00 00 78 27 02 00 1f 01 00 00 e4 28 02 00 c2 01 00 00 | .&.......&..k...x'.......(...... |
| 0400 | 04 2a 02 00 ce 01 00 00 c7 2b 02 00 2f 01 00 00 96 2d 02 00 2e 01 00 00 c6 2e 02 00 0b 00 00 00 | .*.......+../....-.............. |
| 0420 | f5 2f 02 00 2e 00 00 00 01 30 02 00 2d 00 00 00 30 30 02 00 26 00 00 00 5e 30 02 00 37 00 00 00 | ./.......0..-...00..&...^0..7... |
| 0440 | 85 30 02 00 33 00 00 00 bd 30 02 00 29 00 00 00 f1 30 02 00 3b 00 00 00 1b 31 02 00 1e 00 00 00 | .0..3....0..)....0..;....1...... |
| 0460 | 57 31 02 00 3b 00 00 00 76 31 02 00 2e 00 00 00 b2 31 02 00 2d 00 00 00 e1 31 02 00 4e 00 00 00 | W1..;...v1.......1..-....1..N... |
| 0480 | 0f 32 02 00 0f 00 00 00 5e 32 02 00 11 00 00 00 6e 32 02 00 06 00 00 00 80 32 02 00 0f 00 00 00 | .2......^2......n2.......2...... |
| 04a0 | 87 32 02 00 11 00 00 00 97 32 02 00 06 00 00 00 a9 32 02 00 2d 00 00 00 b0 32 02 00 25 00 00 00 | .2.......2.......2..-....2..%... |
| 04c0 | de 32 02 00 09 00 00 00 04 33 02 00 b9 00 00 00 0e 33 02 00 0c 00 00 00 c8 33 02 00 0c 00 00 00 | .2.......3.......3.......3...... |
| 04e0 | d5 33 02 00 0c 00 00 00 e2 33 02 00 13 00 00 00 ef 33 02 00 30 00 00 00 03 34 02 00 31 00 00 00 | .3.......3.......3..0....4..1... |
| 0500 | 34 34 02 00 07 00 00 00 66 34 02 00 07 00 00 00 6e 34 02 00 70 00 00 00 76 34 02 00 0d 00 00 00 | 44......f4......n4..p...v4...... |
| 0520 | e7 34 02 00 14 00 00 00 f5 34 02 00 1d 00 00 00 0a 35 02 00 49 00 00 00 28 35 02 00 19 00 00 00 | .4.......4.......5..I...(5...... |
| 0540 | 72 35 02 00 0a 00 00 00 8c 35 02 00 24 00 00 00 97 35 02 00 1a 00 00 00 bc 35 02 00 9d 00 00 00 | r5.......5..$....5.......5...... |
| 0560 | d7 35 02 00 27 00 00 00 75 36 02 00 0b 00 00 00 9d 36 02 00 10 00 00 00 a9 36 02 00 10 00 00 00 | .5..'...u6.......6.......6...... |
| 0580 | ba 36 02 00 70 00 00 00 cb 36 02 00 57 00 00 00 3c 37 02 00 42 00 00 00 94 37 02 00 32 00 00 00 | .6..p....6..W...<7..B....7..2... |
| 05a0 | d7 37 02 00 37 00 00 00 0a 38 02 00 5a 00 00 00 42 38 02 00 a3 00 00 00 9d 38 02 00 74 00 00 00 | .7..7....8..Z...B8.......8..t... |
| 05c0 | 41 39 02 00 35 01 00 00 b6 39 02 00 73 00 00 00 ec 3a 02 00 16 01 00 00 60 3b 02 00 7e 00 00 00 | A9..5....9..s....:......`;..~... |
| 05e0 | 77 3c 02 00 49 00 00 00 f6 3c 02 00 2f 02 00 00 40 3d 02 00 6f 00 00 00 70 3f 02 00 39 01 00 00 | w<..I....<../...@=..o...p?..9... |
| 0600 | e0 3f 02 00 dd 00 00 00 1a 41 02 00 20 00 00 00 f8 41 02 00 30 00 00 00 19 42 02 00 14 00 00 00 | .?.......A.......A..0....B...... |
| 0620 | 4a 42 02 00 2c 00 00 00 5f 42 02 00 90 00 00 00 8c 42 02 00 52 00 00 00 1d 43 02 00 58 00 00 00 | JB..,..._B.......B..R....C..X... |
| 0640 | 70 43 02 00 26 00 00 00 c9 43 02 00 58 00 00 00 f0 43 02 00 e4 00 00 00 49 44 02 00 68 00 00 00 | pC..&....C..X....C......ID..h... |
| 0660 | 2e 45 02 00 5d 00 00 00 97 45 02 00 6c 00 00 00 f5 45 02 00 5a 00 00 00 62 46 02 00 a4 00 00 00 | .E..]....E..l....E..Z...bF...... |
| 0680 | bd 46 02 00 eb 00 00 00 62 47 02 00 41 00 00 00 4e 48 02 00 52 00 00 00 90 48 02 00 34 00 00 00 | .F......bG..A...NH..R....H..4... |
| 06a0 | e3 48 02 00 6d 00 00 00 18 49 02 00 c7 00 00 00 86 49 02 00 f1 00 00 00 4e 4a 02 00 08 00 00 00 | .H..m....I.......I......NJ...... |
| 06c0 | 40 4b 02 00 35 00 00 00 49 4b 02 00 32 00 00 00 7f 4b 02 00 4c 00 00 00 b2 4b 02 00 30 00 00 00 | @K..5...IK..2....K..L....K..0... |
| 06e0 | ff 4b 02 00 38 00 00 00 30 4c 02 00 36 00 00 00 69 4c 02 00 19 00 00 00 a0 4c 02 00 3a 00 00 00 | .K..8...0L..6...iL.......L..:... |
| 0700 | ba 4c 02 00 37 00 00 00 f5 4c 02 00 7b 01 00 00 2d 4d 02 00 14 00 00 00 a9 4e 02 00 16 00 00 00 | .L..7....L..{...-M.......N...... |
| 0720 | be 4e 02 00 36 00 00 00 d5 4e 02 00 47 00 00 00 0c 4f 02 00 55 00 00 00 54 4f 02 00 35 00 00 00 | .N..6....N..G....O..U...TO..5... |
| 0740 | aa 4f 02 00 29 00 00 00 e0 4f 02 00 23 00 00 00 0a 50 02 00 24 00 00 00 2e 50 02 00 af 00 00 00 | .O..)....O..#....P..$....P...... |
| 0760 | 53 50 02 00 6c 00 00 00 03 51 02 00 29 00 00 00 70 51 02 00 a7 00 00 00 9a 51 02 00 ee 00 00 00 | SP..l....Q..)...pQ.......Q...... |
| 0780 | 42 52 02 00 47 00 00 00 31 53 02 00 47 00 00 00 79 53 02 00 3a 00 00 00 c1 53 02 00 4b 00 00 00 | BR..G...1S..G...yS..:....S..K... |
| 07a0 | fc 53 02 00 4d 00 00 00 48 54 02 00 5a 01 00 00 96 54 02 00 9f 01 00 00 f1 55 02 00 b5 00 00 00 | .S..M...HT..Z....T.......U...... |
| 07c0 | 91 57 02 00 1d 00 00 00 47 58 02 00 51 00 00 00 65 58 02 00 31 00 00 00 b7 58 02 00 32 00 00 00 | .W......GX..Q...eX..1....X..2... |
| 07e0 | e9 58 02 00 1a 00 00 00 1c 59 02 00 4c 00 00 00 37 59 02 00 80 00 00 00 84 59 02 00 25 00 00 00 | .X.......Y..L...7Y.......Y..%... |
| 0800 | 05 5a 02 00 26 00 00 00 2b 5a 02 00 26 00 00 00 52 5a 02 00 40 00 00 00 79 5a 02 00 17 00 00 00 | .Z..&...+Z..&...RZ..@...yZ...... |
| 0820 | ba 5a 02 00 09 00 00 00 d2 5a 02 00 2d 00 00 00 dc 5a 02 00 3c 00 00 00 0a 5b 02 00 42 00 00 00 | .Z.......Z..-....Z..<....[..B... |
| 0840 | 47 5b 02 00 b1 00 00 00 8a 5b 02 00 54 00 00 00 3c 5c 02 00 55 00 00 00 91 5c 02 00 2c 00 00 00 | G[.......[..T...<\..U....\..,... |
| 0860 | e7 5c 02 00 47 00 00 00 14 5d 02 00 bc 00 00 00 5c 5d 02 00 bf 00 00 00 19 5e 02 00 1e 00 00 00 | .\..G....]......\].......^...... |
| 0880 | d9 5e 02 00 37 00 00 00 f8 5e 02 00 33 00 00 00 30 5f 02 00 9a 00 00 00 64 5f 02 00 01 00 00 00 | .^..7....^..3...0_......d_...... |
| 08a0 | ff 5f 02 00 2c 00 00 00 01 60 02 00 11 00 00 00 2e 60 02 00 06 00 00 00 40 60 02 00 06 00 00 00 | ._..,....`.......`......@`...... |
| 08c0 | 47 60 02 00 06 00 00 00 4e 60 02 00 06 00 00 00 55 60 02 00 06 00 00 00 5c 60 02 00 06 00 00 00 | G`......N`......U`......\`...... |
| 08e0 | 63 60 02 00 06 00 00 00 6a 60 02 00 06 00 00 00 71 60 02 00 06 00 00 00 78 60 02 00 06 00 00 00 | c`......j`......q`......x`...... |
| 0900 | 7f 60 02 00 0e 00 00 00 86 60 02 00 01 00 00 00 95 60 02 00 11 00 00 00 97 60 02 00 0a 00 00 00 | .`.......`.......`.......`...... |
| 0920 | a9 60 02 00 1a 00 00 00 b4 60 02 00 b7 00 00 00 cf 60 02 00 b7 00 00 00 87 61 02 00 bc 00 00 00 | .`.......`.......`.......a...... |
| 0940 | 3f 62 02 00 85 00 00 00 fc 62 02 00 02 00 00 00 82 63 02 00 0e 00 00 00 85 63 02 00 2d 00 00 00 | ?b.......b.......c.......c..-... |
| 0960 | 94 63 02 00 10 00 00 00 c2 63 02 00 0f 00 00 00 d3 63 02 00 11 00 00 00 e3 63 02 00 13 00 00 00 | .c.......c.......c.......c...... |
| 0980 | f5 63 02 00 06 00 00 00 09 64 02 00 06 00 00 00 10 64 02 00 06 00 00 00 17 64 02 00 06 00 00 00 | .c.......d.......d.......d...... |
| 09a0 | 1e 64 02 00 02 00 00 00 25 64 02 00 03 00 00 00 28 64 02 00 02 00 00 00 2c 64 02 00 08 00 00 00 | .d......%d......(d......,d...... |
| 09c0 | 2f 64 02 00 02 00 00 00 38 64 02 00 02 00 00 00 3b 64 02 00 02 00 00 00 3e 64 02 00 02 00 00 00 | /d......8d......;d......>d...... |
| 09e0 | 41 64 02 00 02 00 00 00 44 64 02 00 32 00 00 00 47 64 02 00 02 00 00 00 7a 64 02 00 02 00 00 00 | Ad......Dd..2...Gd......zd...... |
| 0a00 | 7d 64 02 00 35 00 00 00 80 64 02 00 17 00 00 00 b6 64 02 00 01 00 00 00 ce 64 02 00 1a 00 00 00 | }d..5....d.......d.......d...... |
| 0a20 | d0 64 02 00 85 00 00 00 eb 64 02 00 80 00 00 00 71 65 02 00 02 00 00 00 f2 65 02 00 02 00 00 00 | .d.......d......qe.......e...... |
| 0a40 | f5 65 02 00 02 00 00 00 f8 65 02 00 02 00 00 00 fb 65 02 00 11 00 00 00 fe 65 02 00 11 00 00 00 | .e.......e.......e.......e...... |
| 0a60 | 10 66 02 00 03 00 00 00 22 66 02 00 02 00 00 00 26 66 02 00 02 00 00 00 29 66 02 00 63 00 00 00 | .f......"f......&f......)f..c... |
| 0a80 | 2c 66 02 00 0f 00 00 00 90 66 02 00 01 00 00 00 a0 66 02 00 20 00 00 00 a2 66 02 00 87 00 00 00 | ,f.......f.......f.......f...... |
| 0aa0 | c3 66 02 00 02 00 00 00 4b 67 02 00 02 00 00 00 4e 67 02 00 02 00 00 00 51 67 02 00 02 00 00 00 | .f......Kg......Ng......Qg...... |
| 0ac0 | 54 67 02 00 01 00 00 00 57 67 02 00 1a 00 00 00 59 67 02 00 a5 00 00 00 74 67 02 00 a2 00 00 00 | Tg......Wg......Yg......tg...... |
| 0ae0 | 1a 68 02 00 a2 00 00 00 bd 68 02 00 e6 00 00 00 60 69 02 00 11 00 00 00 47 6a 02 00 02 00 00 00 | .h.......h......`i......Gj...... |
| 0b00 | 59 6a 02 00 02 00 00 00 5c 6a 02 00 02 00 00 00 5f 6a 02 00 01 00 00 00 62 6a 02 00 11 00 00 00 | Yj......\j......_j......bj...... |
| 0b20 | 64 6a 02 00 c3 00 00 00 76 6a 02 00 c7 00 00 00 3a 6b 02 00 0f 00 00 00 02 6c 02 00 11 00 00 00 | dj......vj......:k.......l...... |
| 0b40 | 12 6c 02 00 02 00 00 00 24 6c 02 00 01 00 00 00 27 6c 02 00 6b 00 00 00 29 6c 02 00 69 00 00 00 | .l......$l......'l..k...)l..i... |
| 0b60 | 95 6c 02 00 6e 00 00 00 ff 6c 02 00 2d 00 00 00 6e 6d 02 00 02 00 00 00 9c 6d 02 00 3b 00 00 00 | .l..n....l..-...nm.......m..;... |
| 0b80 | 9f 6d 02 00 02 00 00 00 db 6d 02 00 02 00 00 00 de 6d 02 00 0a 00 00 00 e1 6d 02 00 6b 02 00 00 | .m.......m.......m.......m..k... |
| 0ba0 | ec 6d 02 00 01 00 00 00 58 70 02 00 02 00 00 00 5a 70 02 00 01 00 00 00 5d 70 02 00 6c 00 00 00 | .m......Xp......Zp......]p..l... |
| 0bc0 | 5f 70 02 00 01 00 00 00 cc 70 02 00 76 00 00 00 ce 70 02 00 7b 00 00 00 45 71 02 00 61 01 00 00 | _p.......p..v....p..{...Eq..a... |
| 0be0 | c1 71 02 00 8b 00 00 00 23 73 02 00 10 01 00 00 af 73 02 00 8a 01 00 00 c0 74 02 00 36 00 00 00 | .q......#s.......s.......t..6... |
| 0c00 | 4b 76 02 00 22 01 00 00 82 76 02 00 26 02 00 00 a5 77 02 00 ec 00 00 00 cc 79 02 00 8b 00 00 00 | Kv.."....v..&....w.......y...... |
| 0c20 | b9 7a 02 00 8c 01 00 00 45 7b 02 00 bd 00 00 00 d2 7c 02 00 08 02 00 00 90 7d 02 00 53 01 00 00 | .z......E{.......|.......}..S... |
| 0c40 | 99 7f 02 00 dc 00 00 00 ed 80 02 00 4f 00 00 00 ca 81 02 00 aa 03 00 00 1a 82 02 00 aa 03 00 00 | ............O................... |
| 0c60 | c5 85 02 00 8b 01 00 00 70 89 02 00 80 01 00 00 fc 8a 02 00 b5 01 00 00 7d 8c 02 00 4c 02 00 00 | ........p...............}...L... |
| 0c80 | 33 8e 02 00 3f 00 00 00 80 90 02 00 61 00 00 00 c0 90 02 00 8f 05 00 00 22 91 02 00 32 02 00 00 | 3...?.......a..........."...2... |
| 0ca0 | b2 96 02 00 0b 01 00 00 e5 98 02 00 3d 02 00 00 f1 99 02 00 7e 00 00 00 2f 9c 02 00 37 00 00 00 | ............=.......~.../...7... |
| 0cc0 | ae 9c 02 00 8f 01 00 00 e6 9c 02 00 01 01 00 00 76 9e 02 00 da 01 00 00 78 9f 02 00 3e 01 00 00 | ................v.......x...>... |
| 0ce0 | 53 a1 02 00 8e 02 00 00 92 a2 02 00 a6 00 00 00 21 a5 02 00 e3 01 00 00 c8 a5 02 00 af 01 00 00 | S...............!............... |
| 0d00 | ac a7 02 00 87 01 00 00 5c a9 02 00 f6 01 00 00 e4 aa 02 00 17 02 00 00 db ac 02 00 d9 01 00 00 | ........\....................... |
| 0d20 | f3 ae 02 00 8e 00 00 00 cd b0 02 00 57 01 00 00 5c b1 02 00 82 00 00 00 b4 b2 02 00 fb 00 00 00 | ............W...\............... |
| 0d40 | 37 b3 02 00 b4 01 00 00 33 b4 02 00 d6 01 00 00 e8 b5 02 00 59 01 00 00 bf b7 02 00 50 01 00 00 | 7.......3...........Y.......P... |
| 0d60 | 19 b9 02 00 be 01 00 00 6a ba 02 00 68 01 00 00 29 bc 02 00 04 02 00 00 92 bd 02 00 89 00 00 00 | ........j...h...)............... |
| 0d80 | 97 bf 02 00 84 00 00 00 21 c0 02 00 f9 00 00 00 a6 c0 02 00 a4 00 00 00 a0 c1 02 00 b5 00 00 00 | ........!....................... |
| 0da0 | 45 c2 02 00 43 00 00 00 fb c2 02 00 5c 00 00 00 3f c3 02 00 52 00 00 00 9c c3 02 00 46 00 00 00 | E...C.......\...?...R.......F... |
| 0dc0 | ef c3 02 00 50 00 00 00 36 c4 02 00 48 00 00 00 87 c4 02 00 4c 00 00 00 d0 c4 02 00 47 00 00 00 | ....P...6...H.......L.......G... |
| 0de0 | 1d c5 02 00 48 00 00 00 65 c5 02 00 41 00 00 00 ae c5 02 00 44 00 00 00 f0 c5 02 00 61 00 00 00 | ....H...e...A.......D.......a... |
| 0e00 | 35 c6 02 00 61 00 00 00 97 c6 02 00 62 00 00 00 f9 c6 02 00 64 00 00 00 5c c7 02 00 5f 00 00 00 | 5...a.......b.......d...\..._... |
| 0e20 | c1 c7 02 00 60 00 00 00 21 c8 02 00 19 00 00 00 82 c8 02 00 29 00 00 00 9c c8 02 00 12 00 00 00 | ....`...!...........)........... |
| 0e40 | c6 c8 02 00 3d 00 00 00 d9 c8 02 00 13 00 00 00 17 c9 02 00 3f 00 00 00 2b c9 02 00 13 00 00 00 | ....=...............?...+....... |
| 0e60 | 6b c9 02 00 3f 00 00 00 7f c9 02 00 15 00 00 00 bf c9 02 00 43 00 00 00 d5 c9 02 00 15 00 00 00 | k...?...............C........... |
| 0e80 | 19 ca 02 00 43 00 00 00 2f ca 02 00 31 01 00 00 73 ca 02 00 11 00 00 00 a5 cb 02 00 80 01 00 00 | ....C.../...1...s............... |
| 0ea0 | b7 cb 02 00 40 00 00 00 38 cd 02 00 24 00 00 00 79 cd 02 00 41 01 00 00 9e cd 02 00 19 00 00 00 | ....@...8...$...y...A........... |
| 0ec0 | e0 ce 02 00 37 00 00 00 fa ce 02 00 2a 00 00 00 32 cf 02 00 39 00 00 00 5d cf 02 00 29 00 00 00 | ....7.......*...2...9...]...)... |
| 0ee0 | 97 cf 02 00 07 00 00 00 c1 cf 02 00 4d 00 00 00 c9 cf 02 00 18 00 00 00 17 d0 02 00 81 00 00 00 | ............M................... |
| 0f00 | 30 d0 02 00 b6 00 00 00 b2 d0 02 00 40 00 00 00 69 d1 02 00 2f 00 00 00 aa d1 02 00 32 00 00 00 | 0...........@...i.../.......2... |
| 0f20 | da d1 02 00 35 00 00 00 0d d2 02 00 1d 00 00 00 43 d2 02 00 27 00 00 00 61 d2 02 00 1f 00 00 00 | ....5...........C...'...a....... |
| 0f40 | 89 d2 02 00 36 00 00 00 a9 d2 02 00 39 00 00 00 e0 d2 02 00 18 01 00 00 1a d3 02 00 1e 00 00 00 | ....6.......9................... |
| 0f60 | 33 d4 02 00 2d 00 00 00 52 d4 02 00 5c 00 00 00 80 d4 02 00 37 01 00 00 dd d4 02 00 cb 01 00 00 | 3...-...R...\.......7........... |
| 0f80 | 15 d6 02 00 ab 01 00 00 e1 d7 02 00 59 01 00 00 8d d9 02 00 3a 01 00 00 e7 da 02 00 2d 00 00 00 | ............Y.......:.......-... |
| 0fa0 | 22 dc 02 00 3a 00 00 00 50 dc 02 00 6d 00 00 00 8b dc 02 00 77 00 00 00 f9 dc 02 00 8b 00 00 00 | "...:...P...m.......w........... |
| 0fc0 | 71 dd 02 00 cc 01 00 00 fd dd 02 00 ba 00 00 00 ca df 02 00 16 00 00 00 85 e0 02 00 33 00 00 00 | q...........................3... |
| 0fe0 | 9c e0 02 00 28 00 00 00 d0 e0 02 00 77 01 00 00 f9 e0 02 00 51 00 00 00 71 e2 02 00 74 00 00 00 | ....(.......w.......Q...q...t... |
| 1000 | c3 e2 02 00 26 00 00 00 38 e3 02 00 85 00 00 00 5f e3 02 00 8b 00 00 00 e5 e3 02 00 8b 00 00 00 | ....&...8......._............... |
| 1020 | 71 e4 02 00 cf 00 00 00 fd e4 02 00 34 01 00 00 cd e5 02 00 2f 00 00 00 02 e7 02 00 72 00 00 00 | q...........4......./.......r... |
| 1040 | 32 e7 02 00 65 00 00 00 a5 e7 02 00 31 00 00 00 0b e8 02 00 01 01 00 00 3d e8 02 00 33 00 00 00 | 2...e.......1...........=...3... |
| 1060 | 3f e9 02 00 3c 00 00 00 73 e9 02 00 42 00 00 00 b0 e9 02 00 93 01 00 00 f3 e9 02 00 93 01 00 00 | ?...<...s...B................... |
| 1080 | 87 eb 02 00 e4 01 00 00 1b ed 02 00 63 00 00 00 00 ef 02 00 50 00 00 00 64 ef 02 00 d4 00 00 00 | ............c.......P...d....... |
| 10a0 | b5 ef 02 00 ed 00 00 00 8a f0 02 00 78 00 00 00 78 f1 02 00 90 00 00 00 f1 f1 02 00 c0 01 00 00 | ............x...x............... |
| 10c0 | 82 f2 02 00 a2 00 00 00 43 f4 02 00 88 00 00 00 e6 f4 02 00 4e 00 00 00 6f f5 02 00 44 00 00 00 | ........C...........N...o...D... |
| 10e0 | be f5 02 00 58 00 00 00 03 f6 02 00 08 01 00 00 5c f6 02 00 65 00 00 00 65 f7 02 00 7e 00 00 00 | ....X...........\...e...e...~... |
| 1100 | cb f7 02 00 48 01 00 00 4a f8 02 00 35 01 00 00 93 f9 02 00 90 00 00 00 c9 fa 02 00 a3 00 00 00 | ....H...J...5................... |
| 1120 | 5a fb 02 00 02 01 00 00 fe fb 02 00 3f 00 00 00 01 fd 02 00 42 00 00 00 41 fd 02 00 24 00 00 00 | Z...........?.......B...A...$... |
| 1140 | 84 fd 02 00 22 01 00 00 a9 fd 02 00 1c 00 00 00 cc fe 02 00 2c 00 00 00 e9 fe 02 00 43 00 00 00 | ...."...............,.......C... |
| 1160 | 16 ff 02 00 c8 00 00 00 5a ff 02 00 b8 00 00 00 23 00 03 00 b1 01 00 00 dc 00 03 00 4f 00 00 00 | ........Z.......#...........O... |
| 1180 | 8e 02 03 00 37 00 00 00 de 02 03 00 26 00 00 00 16 03 03 00 0a 02 00 00 3d 03 03 00 62 00 00 00 | ....7.......&...........=...b... |
| 11a0 | 48 05 03 00 41 00 00 00 ab 05 03 00 3d 00 00 00 ed 05 03 00 5e 00 00 00 2b 06 03 00 35 00 00 00 | H...A.......=.......^...+...5... |
| 11c0 | 8a 06 03 00 77 00 00 00 c0 06 03 00 04 00 00 00 38 07 03 00 1c 00 00 00 3d 07 03 00 03 00 00 00 | ....w...........8.......=....... |
| 11e0 | 5a 07 03 00 03 00 00 00 5e 07 03 00 5c 00 00 00 62 07 03 00 a7 01 00 00 bf 07 03 00 0c 00 00 00 | Z.......^...\...b............... |
| 1200 | 67 09 03 00 a8 00 00 00 74 09 03 00 70 00 00 00 1d 0a 03 00 3c 00 00 00 8e 0a 03 00 41 00 00 00 | g.......t...p.......<.......A... |
| 1220 | cb 0a 03 00 33 00 00 00 0d 0b 03 00 12 00 00 00 41 0b 03 00 0c 00 00 00 54 0b 03 00 79 00 00 00 | ....3...........A.......T...y... |
| 1240 | 61 0b 03 00 45 00 00 00 db 0b 03 00 07 00 00 00 21 0c 03 00 10 00 00 00 29 0c 03 00 22 00 00 00 | a...E...........!.......)..."... |
| 1260 | 3a 0c 03 00 68 00 00 00 5d 0c 03 00 41 00 00 00 c6 0c 03 00 40 00 00 00 08 0d 03 00 23 00 00 00 | :...h...]...A.......@.......#... |
| 1280 | 49 0d 03 00 c5 00 00 00 6d 0d 03 00 9f 00 00 00 33 0e 03 00 3c 00 00 00 d3 0e 03 00 23 00 00 00 | I.......m.......3...<.......#... |
| 12a0 | 10 0f 03 00 48 00 00 00 34 0f 03 00 26 00 00 00 7d 0f 03 00 35 00 00 00 a4 0f 03 00 4e 00 00 00 | ....H...4...&...}...5.......N... |
| 12c0 | da 0f 03 00 86 00 00 00 29 10 03 00 68 00 00 00 b0 10 03 00 63 00 00 00 19 11 03 00 2f 00 00 00 | ........)...h.......c......./... |
| 12e0 | 7d 11 03 00 48 00 00 00 ad 11 03 00 43 00 00 00 f6 11 03 00 a3 00 00 00 3a 12 03 00 b8 00 00 00 | }...H.......C...........:....... |
| 1300 | de 12 03 00 81 00 00 00 97 13 03 00 46 00 00 00 19 14 03 00 1c 00 00 00 60 14 03 00 2a 00 00 00 | ............F...........`...*... |
| 1320 | 7d 14 03 00 7d 00 00 00 a8 14 03 00 60 00 00 00 26 15 03 00 ee 00 00 00 87 15 03 00 09 01 00 00 | }...}.......`...&............... |
| 1340 | 76 16 03 00 02 01 00 00 80 17 03 00 68 00 00 00 83 18 03 00 07 00 00 00 ec 18 03 00 12 00 00 00 | v...........h................... |
| 1360 | f4 18 03 00 10 00 00 00 07 19 03 00 0e 00 00 00 18 19 03 00 4c 01 00 00 27 19 03 00 42 00 00 00 | ....................L...'...B... |
| 1380 | 74 1a 03 00 0d 00 00 00 b7 1a 03 00 24 00 00 00 c5 1a 03 00 c6 00 00 00 ea 1a 03 00 ba 00 00 00 | t...........$................... |
| 13a0 | b1 1b 03 00 52 00 00 00 6c 1c 03 00 17 00 00 00 bf 1c 03 00 1a 00 00 00 d7 1c 03 00 10 00 00 00 | ....R...l....................... |
| 13c0 | f2 1c 03 00 c7 00 00 00 03 1d 03 00 13 00 00 00 cb 1d 03 00 1a 00 00 00 df 1d 03 00 3c 00 00 00 | ............................<... |
| 13e0 | fa 1d 03 00 7f 00 00 00 37 1e 03 00 1a 00 00 00 b7 1e 03 00 14 00 00 00 d2 1e 03 00 7e 00 00 00 | ........7...................~... |
| 1400 | e7 1e 03 00 74 00 00 00 66 1f 03 00 7c 01 00 00 db 1f 03 00 26 01 00 00 58 21 03 00 40 01 00 00 | ....t...f...|.......&...X!..@... |
| 1420 | 7f 22 03 00 74 00 00 00 c0 23 03 00 61 01 00 00 35 24 03 00 63 01 00 00 97 25 03 00 2e 00 00 00 | ."..t....#..a...5$..c....%...... |
| 1440 | fb 26 03 00 05 00 00 00 2a 27 03 00 09 00 00 00 30 27 03 00 07 00 00 00 3a 27 03 00 66 00 00 00 | .&......*'......0'......:'..f... |
| 1460 | 42 27 03 00 4f 00 00 00 a9 27 03 00 9a 00 00 00 f9 27 03 00 8e 00 00 00 94 28 03 00 b1 00 00 00 | B'..O....'.......'.......(...... |
| 1480 | 23 29 03 00 0e 00 00 00 d5 29 03 00 67 00 00 00 e4 29 03 00 ae 00 00 00 4c 2a 03 00 89 00 00 00 | #).......)..g....)......L*...... |
| 14a0 | fb 2a 03 00 28 00 00 00 85 2b 03 00 3a 00 00 00 ae 2b 03 00 ac 00 00 00 e9 2b 03 00 ab 00 00 00 | .*..(....+..:....+.......+...... |
| 14c0 | 96 2c 03 00 74 00 00 00 42 2d 03 00 97 00 00 00 b7 2d 03 00 3a 00 00 00 4f 2e 03 00 40 00 00 00 | .,..t...B-.......-..:...O...@... |
| 14e0 | 8a 2e 03 00 27 00 00 00 cb 2e 03 00 e3 00 00 00 f3 2e 03 00 29 00 00 00 d7 2f 03 00 21 00 00 00 | ....'...............)..../..!... |
| 1500 | 01 30 03 00 08 01 00 00 23 30 03 00 61 01 00 00 2c 31 03 00 2c 00 00 00 8e 32 03 00 2e 00 00 00 | .0......#0..a...,1..,....2...... |
| 1520 | bb 32 03 00 80 00 00 00 ea 32 03 00 7b 00 00 00 6b 33 03 00 30 00 00 00 e7 33 03 00 c8 00 00 00 | .2.......2..{...k3..0....3...... |
| 1540 | 18 34 03 00 c8 00 00 00 e1 34 03 00 9c 00 00 00 aa 35 03 00 40 00 00 00 47 36 03 00 b7 00 00 00 | .4.......4.......5..@...G6...... |
| 1560 | 88 36 03 00 b7 00 00 00 40 37 03 00 5a 00 00 00 f8 37 03 00 c4 00 00 00 53 38 03 00 c4 00 00 00 | .6......@7..Z....7......S8...... |
| 1580 | 18 39 03 00 6e 00 00 00 dd 39 03 00 a5 00 00 00 4c 3a 03 00 83 00 00 00 f2 3a 03 00 c3 00 00 00 | .9..n....9......L:.......:...... |
| 15a0 | 76 3b 03 00 61 01 00 00 3a 3c 03 00 68 01 00 00 9c 3d 03 00 18 00 00 00 05 3f 03 00 54 00 00 00 | v;..a...:<..h....=.......?..T... |
| 15c0 | 1e 3f 03 00 89 00 00 00 73 3f 03 00 8b 00 00 00 fd 3f 03 00 6b 00 00 00 89 40 03 00 3d 00 00 00 | .?......s?.......?..k....@..=... |
| 15e0 | f5 40 03 00 91 00 00 00 33 41 03 00 96 00 00 00 c5 41 03 00 81 00 00 00 5c 42 03 00 39 00 00 00 | .@......3A.......A......\B..9... |
| 1600 | de 42 03 00 3e 01 00 00 18 43 03 00 58 00 00 00 57 44 03 00 c2 00 00 00 b0 44 03 00 ba 00 00 00 | .B..>....C..X...WD.......D...... |
| 1620 | 73 45 03 00 6a 00 00 00 2e 46 03 00 8c 02 00 00 99 46 03 00 85 02 00 00 26 49 03 00 cb 00 00 00 | sE..j....F.......F......&I...... |
| 1640 | ac 4b 03 00 40 00 00 00 78 4c 03 00 5f 00 00 00 b9 4c 03 00 9e 01 00 00 19 4d 03 00 9f 01 00 00 | .K..@...xL.._....L.......M...... |
| 1660 | b8 4e 03 00 85 01 00 00 58 50 03 00 84 01 00 00 de 51 03 00 bb 00 00 00 63 53 03 00 56 00 00 00 | .N......XP.......Q......cS..V... |
| 1680 | 1f 54 03 00 39 00 00 00 76 54 03 00 1d 00 00 00 b0 54 03 00 4b 00 00 00 ce 54 03 00 0b 00 00 00 | .T..9...vT.......T..K....T...... |
| 16a0 | 1a 55 03 00 02 01 00 00 26 55 03 00 30 00 00 00 29 56 03 00 93 00 00 00 5a 56 03 00 5d 00 00 00 | .U......&U..0...)V......ZV..]... |
| 16c0 | ee 56 03 00 5d 00 00 00 4c 57 03 00 9a 00 00 00 aa 57 03 00 1a 00 00 00 45 58 03 00 0d 00 00 00 | .V..]...LW.......W......EX...... |
| 16e0 | 60 58 03 00 a1 00 00 00 6e 58 03 00 3b 00 00 00 10 59 03 00 15 00 00 00 4c 59 03 00 97 00 00 00 | `X......nX..;....Y......LY...... |
| 1700 | 62 59 03 00 97 00 00 00 fa 59 03 00 34 00 00 00 92 5a 03 00 2c 00 00 00 c7 5a 03 00 2f 00 00 00 | bY.......Y..4....Z..,....Z../... |
| 1720 | f4 5a 03 00 c8 00 00 00 24 5b 03 00 43 01 00 00 ed 5b 03 00 18 00 00 00 31 5d 03 00 9c 00 00 00 | .Z......$[..C....[......1]...... |
| 1740 | 4a 5d 03 00 3e 00 00 00 e7 5d 03 00 ad 00 00 00 26 5e 03 00 aa 00 00 00 d4 5e 03 00 44 00 00 00 | J]..>....]......&^.......^..D... |
| 1760 | 7f 5f 03 00 1d 00 00 00 c4 5f 03 00 23 00 00 00 e2 5f 03 00 19 00 00 00 06 60 03 00 12 00 00 00 | ._......._..#...._.......`...... |
| 1780 | 20 60 03 00 43 00 00 00 33 60 03 00 42 00 00 00 77 60 03 00 47 00 00 00 ba 60 03 00 31 00 00 00 | .`..C...3`..B...w`..G....`..1... |
| 17a0 | 02 61 03 00 0a 00 00 00 34 61 03 00 08 00 00 00 3f 61 03 00 28 01 00 00 48 61 03 00 81 00 00 00 | .a......4a......?a..(...Ha...... |
| 17c0 | 71 62 03 00 75 00 00 00 f3 62 03 00 aa 00 00 00 69 63 03 00 d5 00 00 00 14 64 03 00 a5 01 00 00 | qb..u....b......ic.......d...... |
| 17e0 | ea 64 03 00 71 00 00 00 90 66 03 00 6c 00 00 00 02 67 03 00 78 00 00 00 6f 67 03 00 99 00 00 00 | .d..q....f..l....g..x...og...... |
| 1800 | e8 67 03 00 1d 01 00 00 82 68 03 00 74 00 00 00 a0 69 03 00 49 01 00 00 15 6a 03 00 18 01 00 00 | .g.......h..t....i..I....j...... |
| 1820 | 5f 6b 03 00 17 01 00 00 78 6c 03 00 1e 01 00 00 90 6d 03 00 1a 01 00 00 af 6e 03 00 39 01 00 00 | _k......xl.......m.......n..9... |
| 1840 | ca 6f 03 00 5f 00 00 00 04 71 03 00 32 01 00 00 64 71 03 00 82 00 00 00 97 72 03 00 a2 00 00 00 | .o.._....q..2...dq.......r...... |
| 1860 | 1a 73 03 00 93 00 00 00 bd 73 03 00 af 00 00 00 51 74 03 00 7e 00 00 00 01 75 03 00 47 00 00 00 | .s.......s......Qt..~....u..G... |
| 1880 | 80 75 03 00 83 00 00 00 c8 75 03 00 6e 00 00 00 4c 76 03 00 91 00 00 00 bb 76 03 00 59 00 00 00 | .u.......u..n...Lv.......v..Y... |
| 18a0 | 4d 77 03 00 96 00 00 00 a7 77 03 00 8e 00 00 00 3e 78 03 00 c1 00 00 00 cd 78 03 00 ca 00 00 00 | Mw.......w......>x.......x...... |
| 18c0 | 8f 79 03 00 59 01 00 00 5a 7a 03 00 23 00 00 00 b4 7b 03 00 2f 00 00 00 d8 7b 03 00 43 00 00 00 | .y..Y...Zz..#....{../....{..C... |
| 18e0 | 08 7c 03 00 27 00 00 00 4c 7c 03 00 2d 00 00 00 74 7c 03 00 3b 00 00 00 a2 7c 03 00 6e 00 00 00 | .|..'...L|..-...t|..;....|..n... |
| 1900 | de 7c 03 00 82 00 00 00 4d 7d 03 00 68 00 00 00 d0 7d 03 00 19 00 00 00 39 7e 03 00 19 00 00 00 | .|......M}..h....}......9~...... |
| 1920 | 53 7e 03 00 19 00 00 00 6d 7e 03 00 19 00 00 00 87 7e 03 00 19 00 00 00 a1 7e 03 00 19 00 00 00 | S~......m~.......~.......~...... |
| 1940 | bb 7e 03 00 19 00 00 00 d5 7e 03 00 19 00 00 00 ef 7e 03 00 19 00 00 00 09 7f 03 00 19 00 00 00 | .~.......~.......~.............. |
| 1960 | 23 7f 03 00 19 00 00 00 3d 7f 03 00 19 00 00 00 57 7f 03 00 7b 00 00 00 71 7f 03 00 c2 00 00 00 | #.......=.......W...{...q....... |
| 1980 | ed 7f 03 00 41 00 00 00 b0 80 03 00 c0 00 00 00 f2 80 03 00 68 00 00 00 b3 81 03 00 0e 00 00 00 | ....A...............h........... |
| 19a0 | 1c 82 03 00 16 00 00 00 2b 82 03 00 1f 00 00 00 42 82 03 00 25 00 00 00 62 82 03 00 29 00 00 00 | ........+.......B...%...b...)... |
| 19c0 | 88 82 03 00 24 00 00 00 b2 82 03 00 e6 00 00 00 d7 82 03 00 20 00 00 00 be 83 03 00 14 00 00 00 | ....$........................... |
| 19e0 | df 83 03 00 45 00 00 00 f4 83 03 00 13 00 00 00 3a 84 03 00 13 00 00 00 4e 84 03 00 17 00 00 00 | ....E...........:.......N....... |
| 1a00 | 62 84 03 00 17 00 00 00 7a 84 03 00 e7 00 00 00 92 84 03 00 3d 00 00 00 7a 85 03 00 12 00 00 00 | b.......z...........=...z....... |
| 1a20 | b8 85 03 00 21 00 00 00 cb 85 03 00 14 00 00 00 ed 85 03 00 13 00 00 00 02 86 03 00 03 00 00 00 | ....!........................... |
| 1a40 | 16 86 03 00 1b 00 00 00 1a 86 03 00 59 00 00 00 36 86 03 00 03 00 00 00 90 86 03 00 14 00 00 00 | ............Y...6............... |
| 1a60 | 94 86 03 00 14 00 00 00 a9 86 03 00 1d 00 00 00 be 86 03 00 1a 00 00 00 dc 86 03 00 0b 00 00 00 | ................................ |
| 1a80 | f7 86 03 00 18 00 00 00 03 87 03 00 19 00 00 00 1c 87 03 00 44 00 00 00 36 87 03 00 1a 00 00 00 | ....................D...6....... |
| 1aa0 | 7b 87 03 00 1f 00 00 00 96 87 03 00 1c 00 00 00 b6 87 03 00 20 00 00 00 d3 87 03 00 65 01 00 00 | {...........................e... |
| 1ac0 | f4 87 03 00 54 01 00 00 5a 89 03 00 c3 02 00 00 af 8a 03 00 56 00 00 00 73 8d 03 00 e4 00 00 00 | ....T...Z...........V...s....... |
| 1ae0 | ca 8d 03 00 05 00 00 00 af 8e 03 00 67 00 00 00 b5 8e 03 00 81 01 00 00 1d 8f 03 00 07 00 00 00 | ............g................... |
| 1b00 | 9f 90 03 00 89 00 00 00 a7 90 03 00 13 00 00 00 31 91 03 00 0f 00 00 00 45 91 03 00 1e 00 00 00 | ................1.......E....... |
| 1b20 | 55 91 03 00 21 00 00 00 74 91 03 00 11 00 00 00 96 91 03 00 21 00 00 00 a8 91 03 00 4c 00 00 00 | U...!...t...........!.......L... |
| 1b40 | ca 91 03 00 50 00 00 00 17 92 03 00 69 00 00 00 68 92 03 00 53 00 00 00 d2 92 03 00 53 00 00 00 | ....P.......i...h...S.......S... |
| 1b60 | 26 93 03 00 55 00 00 00 7a 93 03 00 55 00 00 00 d0 93 03 00 17 00 00 00 26 94 03 00 0e 00 00 00 | &...U...z...U...........&....... |
| 1b80 | 3e 94 03 00 0e 00 00 00 4d 94 03 00 3f 00 00 00 5c 94 03 00 36 00 00 00 9c 94 03 00 0b 00 00 00 | >.......M...?...\...6........... |
| 1ba0 | d3 94 03 00 d1 00 00 00 df 94 03 00 41 00 00 00 b1 95 03 00 19 00 00 00 f3 95 03 00 87 00 00 00 | ............A................... |
| 1bc0 | 0d 96 03 00 89 00 00 00 95 96 03 00 db 00 00 00 1f 97 03 00 38 00 00 00 fb 97 03 00 3c 00 00 00 | ....................8.......<... |
| 1be0 | 34 98 03 00 55 00 00 00 71 98 03 00 78 00 00 00 c7 98 03 00 75 00 00 00 40 99 03 00 27 00 00 00 | 4...U...q...x.......u...@...'... |
| 1c00 | b6 99 03 00 1c 00 00 00 de 99 03 00 7d 01 00 00 fb 99 03 00 11 00 00 00 79 9b 03 00 0c 00 00 00 | ............}...........y....... |
| 1c20 | 8b 9b 03 00 2f 00 00 00 98 9b 03 00 3f 00 00 00 c8 9b 03 00 63 00 00 00 08 9c 03 00 09 00 00 00 | ..../.......?.......c........... |
| 1c40 | 6c 9c 03 00 5d 00 00 00 76 9c 03 00 58 00 00 00 d4 9c 03 00 59 00 00 00 2d 9d 03 00 34 00 00 00 | l...]...v...X.......Y...-...4... |
| 1c60 | 87 9d 03 00 17 00 00 00 bc 9d 03 00 0c 00 00 00 d4 9d 03 00 25 00 00 00 e1 9d 03 00 13 00 00 00 | ....................%........... |
| 1c80 | 07 9e 03 00 29 00 00 00 1b 9e 03 00 83 00 00 00 45 9e 03 00 6e 00 00 00 c9 9e 03 00 31 00 00 00 | ....)...........E...n.......1... |
| 1ca0 | 38 9f 03 00 06 00 00 00 6a 9f 03 00 1d 00 00 00 71 9f 03 00 0e 00 00 00 8f 9f 03 00 0c 00 00 00 | 8.......j.......q............... |
| 1cc0 | 9e 9f 03 00 3f 00 00 00 ab 9f 03 00 37 00 00 00 eb 9f 03 00 07 00 00 00 23 a0 03 00 0b 00 00 00 | ....?.......7...........#....... |
| 1ce0 | 2b a0 03 00 0e 00 00 00 37 a0 03 00 d0 00 00 00 46 a0 03 00 9c 00 00 00 17 a1 03 00 51 00 00 00 | +.......7.......F...........Q... |
| 1d00 | b4 a1 03 00 9c 00 00 00 06 a2 03 00 ef 00 00 00 a3 a2 03 00 8d 01 00 00 93 a3 03 00 37 01 00 00 | ............................7... |
| 1d20 | 21 a5 03 00 38 01 00 00 59 a6 03 00 ce 00 00 00 92 a7 03 00 d9 00 00 00 61 a8 03 00 eb 00 00 00 | !...8...Y...............a....... |
| 1d40 | 3b a9 03 00 3b 00 00 00 27 aa 03 00 63 00 00 00 63 aa 03 00 78 00 00 00 c7 aa 03 00 9d 00 00 00 | ;...;...'...c...c...x........... |
| 1d60 | 40 ab 03 00 97 00 00 00 de ab 03 00 25 00 00 00 76 ac 03 00 a1 00 00 00 9c ac 03 00 a3 00 00 00 | @...........%...v............... |
| 1d80 | 3e ad 03 00 3a 01 00 00 e2 ad 03 00 16 00 00 00 1d af 03 00 1a 00 00 00 34 af 03 00 04 00 00 00 | >...:...................4....... |
| 1da0 | 4f af 03 00 05 00 00 00 54 af 03 00 0b 01 00 00 5a af 03 00 0a 00 00 00 66 b0 03 00 27 00 00 00 | O.......T.......Z.......f...'... |
| 1dc0 | 71 b0 03 00 16 00 00 00 99 b0 03 00 c8 00 00 00 b0 b0 03 00 1a 00 00 00 79 b1 03 00 2a 00 00 00 | q.......................y...*... |
| 1de0 | 94 b1 03 00 0c 00 00 00 bf b1 03 00 30 00 00 00 cc b1 03 00 2c 00 00 00 fd b1 03 00 0b 01 00 00 | ............0.......,........... |
| 1e00 | 2a b2 03 00 76 00 00 00 36 b3 03 00 bc 00 00 00 ad b3 03 00 91 00 00 00 6a b4 03 00 c4 00 00 00 | *...v...6...............j....... |
| 1e20 | fc b4 03 00 c7 00 00 00 c1 b5 03 00 3e 00 00 00 89 b6 03 00 0c 00 00 00 c8 b6 03 00 46 00 00 00 | ............>...............F... |
| 1e40 | d5 b6 03 00 06 00 00 00 1c b7 03 00 14 00 00 00 23 b7 03 00 06 00 00 00 38 b7 03 00 c4 00 00 00 | ................#.......8....... |
| 1e60 | 3f b7 03 00 9f 00 00 00 04 b8 03 00 0e 00 00 00 a4 b8 03 00 2d 00 00 00 b3 b8 03 00 1b 00 00 00 | ?...................-........... |
| 1e80 | e1 b8 03 00 0f 00 00 00 fd b8 03 00 07 00 00 00 0d b9 03 00 16 00 00 00 15 b9 03 00 1d 00 00 00 | ................................ |
| 1ea0 | 2c b9 03 00 06 00 00 00 4a b9 03 00 14 00 00 00 51 b9 03 00 15 00 00 00 66 b9 03 00 14 00 00 00 | ,.......J.......Q.......f....... |
| 1ec0 | 7c b9 03 00 1f 00 00 00 91 b9 03 00 3d 00 00 00 b1 b9 03 00 0b 00 00 00 ef b9 03 00 0d 00 00 00 | |...........=................... |
| 1ee0 | fb b9 03 00 14 00 00 00 09 ba 03 00 12 00 00 00 1e ba 03 00 14 00 00 00 31 ba 03 00 6c 00 00 00 | ........................1...l... |
| 1f00 | 46 ba 03 00 07 00 00 00 b3 ba 03 00 6a 00 00 00 bb ba 03 00 98 00 00 00 26 bb 03 00 0c 00 00 00 | F...........j...........&....... |
| 1f20 | bf bb 03 00 96 00 00 00 cc bb 03 00 3e 00 00 00 63 bc 03 00 77 00 00 00 a2 bc 03 00 38 00 00 00 | ............>...c...w.......8... |
| 1f40 | 1a bd 03 00 08 00 00 00 53 bd 03 00 20 00 00 00 5c bd 03 00 40 00 00 00 7d bd 03 00 1e 00 00 00 | ........S.......\...@...}....... |
| 1f60 | be bd 03 00 11 00 00 00 dd bd 03 00 97 00 00 00 ef bd 03 00 0a 00 00 00 87 be 03 00 1b 00 00 00 | ................................ |
| 1f80 | 92 be 03 00 58 00 00 00 ae be 03 00 0b 00 00 00 07 bf 03 00 0d 00 00 00 13 bf 03 00 15 00 00 00 | ....X........................... |
| 1fa0 | 21 bf 03 00 16 00 00 00 37 bf 03 00 13 00 00 00 4e bf 03 00 15 00 00 00 62 bf 03 00 2f 00 00 00 | !.......7.......N.......b.../... |
| 1fc0 | 78 bf 03 00 0b 01 00 00 a8 bf 03 00 af 00 00 00 b4 c0 03 00 16 00 00 00 64 c1 03 00 59 00 00 00 | x.......................d...Y... |
| 1fe0 | 7b c1 03 00 26 00 00 00 d5 c1 03 00 20 00 00 00 fc c1 03 00 25 00 00 00 1d c2 03 00 a5 00 00 00 | {...&...............%........... |
| 2000 | 43 c2 03 00 22 00 00 00 e9 c2 03 00 7d 00 00 00 0c c3 03 00 9e 00 00 00 8a c3 03 00 09 00 00 00 | C...".......}................... |
| 2020 | 29 c4 03 00 94 00 00 00 33 c4 03 00 0d 00 00 00 c8 c4 03 00 51 00 00 00 d6 c4 03 00 25 00 00 00 | ).......3...........Q.......%... |
| 2040 | 28 c5 03 00 37 00 00 00 4e c5 03 00 c0 00 00 00 86 c5 03 00 71 00 00 00 47 c6 03 00 24 00 00 00 | (...7...N...........q...G...$... |
| 2060 | b9 c6 03 00 52 00 00 00 de c6 03 00 4e 00 00 00 31 c7 03 00 68 00 00 00 80 c7 03 00 55 00 00 00 | ....R.......N...1...h.......U... |
| 2080 | e9 c7 03 00 22 00 00 00 3f c8 03 00 22 00 00 00 62 c8 03 00 4c 00 00 00 85 c8 03 00 57 00 00 00 | ...."...?..."...b...L.......W... |
| 20a0 | d2 c8 03 00 75 00 00 00 2a c9 03 00 70 00 00 00 a0 c9 03 00 75 00 00 00 11 ca 03 00 a4 00 00 00 | ....u...*...p.......u........... |
| 20c0 | 87 ca 03 00 37 00 00 00 2c cb 03 00 fc 00 00 00 64 cb 03 00 bb 00 00 00 61 cc 03 00 7a 00 00 00 | ....7...,.......d.......a...z... |
| 20e0 | 1d cd 03 00 77 00 00 00 98 cd 03 00 71 00 00 00 10 ce 03 00 aa 00 00 00 82 ce 03 00 3a 00 00 00 | ....w.......q...............:... |
| 2100 | 2d cf 03 00 2b 00 00 00 68 cf 03 00 48 00 00 00 94 cf 03 00 3a 00 00 00 dd cf 03 00 60 00 00 00 | -...+...h...H.......:.......`... |
| 2120 | 18 d0 03 00 62 00 00 00 79 d0 03 00 26 00 00 00 dc d0 03 00 2b 00 00 00 03 d1 03 00 43 00 00 00 | ....b...y...&.......+.......C... |
| 2140 | 2f d1 03 00 2b 00 00 00 73 d1 03 00 5b 00 00 00 9f d1 03 00 61 00 00 00 fb d1 03 00 27 00 00 00 | /...+...s...[.......a.......'... |
| 2160 | 5d d2 03 00 5b 00 00 00 85 d2 03 00 2e 00 00 00 e1 d2 03 00 47 00 00 00 10 d3 03 00 9a 00 00 00 | ]...[...............G........... |
| 2180 | 58 d3 03 00 31 00 00 00 f3 d3 03 00 31 00 00 00 25 d4 03 00 3e 00 00 00 57 d4 03 00 41 00 00 00 | X...1.......1...%...>...W...A... |
| 21a0 | 96 d4 03 00 84 00 00 00 d8 d4 03 00 5f 00 00 00 5d d5 03 00 5f 00 00 00 bd d5 03 00 3c 00 00 00 | ............_...]..._.......<... |
| 21c0 | 1d d6 03 00 3c 00 00 00 5a d6 03 00 39 00 00 00 97 d6 03 00 89 00 00 00 d1 d6 03 00 58 00 00 00 | ....<...Z...9...............X... |
| 21e0 | 5b d7 03 00 2c 00 00 00 b4 d7 03 00 2b 00 00 00 e1 d7 03 00 64 00 00 00 0d d8 03 00 65 00 00 00 | [...,.......+.......d.......e... |
| 2200 | 72 d8 03 00 2f 00 00 00 d8 d8 03 00 4b 00 00 00 08 d9 03 00 4c 00 00 00 54 d9 03 00 5f 00 00 00 | r.../.......K.......L...T..._... |
| 2220 | a1 d9 03 00 42 00 00 00 01 da 03 00 70 00 00 00 44 da 03 00 64 00 00 00 b5 da 03 00 2a 00 00 00 | ....B.......p...D...d.......*... |
| 2240 | 1a db 03 00 3b 00 00 00 45 db 03 00 2b 00 00 00 81 db 03 00 34 00 00 00 ad db 03 00 42 00 00 00 | ....;...E...+.......4.......B... |
| 2260 | e2 db 03 00 36 00 00 00 25 dc 03 00 99 00 00 00 5c dc 03 00 3f 00 00 00 f6 dc 03 00 3f 00 00 00 | ....6...%.......\...?.......?... |
| 2280 | 36 dd 03 00 50 00 00 00 76 dd 03 00 2a 00 00 00 c7 dd 03 00 b2 00 00 00 f2 dd 03 00 2d 00 00 00 | 6...P...v...*...............-... |
| 22a0 | a5 de 03 00 5d 00 00 00 d3 de 03 00 49 00 00 00 31 df 03 00 49 00 00 00 7b df 03 00 36 00 00 00 | ....].......I...1...I...{...6... |
| 22c0 | c5 df 03 00 3c 00 00 00 fc df 03 00 3e 00 00 00 39 e0 03 00 2c 00 00 00 78 e0 03 00 1f 00 00 00 | ....<.......>...9...,...x....... |
| 22e0 | a5 e0 03 00 59 00 00 00 c5 e0 03 00 95 00 00 00 1f e1 03 00 38 00 00 00 b5 e1 03 00 10 00 00 00 | ....Y...............8........... |
| 2300 | ee e1 03 00 a6 00 00 00 ff e1 03 00 92 00 00 00 a6 e2 03 00 43 00 00 00 39 e3 03 00 31 00 00 00 | ....................C...9...1... |
| 2320 | 7d e3 03 00 51 00 00 00 af e3 03 00 17 00 00 00 01 e4 03 00 11 00 00 00 19 e4 03 00 17 00 00 00 | }...Q........................... |
| 2340 | 2b e4 03 00 25 00 00 00 43 e4 03 00 18 00 00 00 69 e4 03 00 17 00 00 00 82 e4 03 00 1d 00 00 00 | +...%...C.......i............... |
| 2360 | 9a e4 03 00 21 00 00 00 b8 e4 03 00 17 00 00 00 da e4 03 00 17 00 00 00 f2 e4 03 00 b2 00 00 00 | ....!........................... |
| 2380 | 0a e5 03 00 42 00 00 00 bd e5 03 00 12 00 00 00 00 e6 03 00 b7 00 00 00 13 e6 03 00 b8 00 00 00 | ....B........................... |
| 23a0 | cb e6 03 00 44 01 00 00 84 e7 03 00 3c 01 00 00 c9 e8 03 00 c4 01 00 00 06 ea 03 00 09 00 00 00 | ....D.......<................... |
| 23c0 | cb eb 03 00 0e 00 00 00 d5 eb 03 00 16 00 00 00 e4 eb 03 00 16 00 00 00 fb eb 03 00 0d 00 00 00 | ................................ |
| 23e0 | 12 ec 03 00 0e 00 00 00 20 ec 03 00 07 00 00 00 2f ec 03 00 0e 00 00 00 37 ec 03 00 30 00 00 00 | ................/.......7...0... |
| 2400 | 46 ec 03 00 09 00 00 00 77 ec 03 00 12 00 00 00 81 ec 03 00 12 00 00 00 94 ec 03 00 11 00 00 00 | F.......w....................... |
| 2420 | a7 ec 03 00 49 00 00 00 b9 ec 03 00 49 00 00 00 03 ed 03 00 c9 00 00 00 4d ed 03 00 b3 00 00 00 | ....I.......I...........M....... |
| 2440 | 17 ee 03 00 b4 00 00 00 cb ee 03 00 36 00 00 00 80 ef 03 00 39 00 00 00 b7 ef 03 00 81 00 00 00 | ............6.......9........... |
| 2460 | f1 ef 03 00 82 00 00 00 73 f0 03 00 92 00 00 00 f6 f0 03 00 64 00 00 00 89 f1 03 00 8a 00 00 00 | ........s...........d........... |
| 2480 | ee f1 03 00 27 00 00 00 79 f2 03 00 15 00 00 00 a1 f2 03 00 5f 00 00 00 b7 f2 03 00 44 00 00 00 | ....'...y..........._.......D... |
| 24a0 | 17 f3 03 00 69 00 00 00 5c f3 03 00 92 00 00 00 c6 f3 03 00 75 00 00 00 59 f4 03 00 66 00 00 00 | ....i...\...........u...Y...f... |
| 24c0 | cf f4 03 00 75 00 00 00 36 f5 03 00 4e 00 00 00 ac f5 03 00 8c 00 00 00 fb f5 03 00 56 00 00 00 | ....u...6...N...............V... |
| 24e0 | 88 f6 03 00 76 00 00 00 df f6 03 00 73 00 00 00 56 f7 03 00 c3 00 00 00 ca f7 03 00 c0 00 00 00 | ....v.......s...V............... |
| 2500 | 8e f8 03 00 6b 00 00 00 4f f9 03 00 30 00 00 00 bb f9 03 00 7b 00 00 00 ec f9 03 00 45 00 00 00 | ....k...O...0.......{.......E... |
| 2520 | 68 fa 03 00 7f 00 00 00 ae fa 03 00 6d 00 00 00 2e fb 03 00 3d 00 00 00 9c fb 03 00 d9 00 00 00 | h...........m.......=........... |
| 2540 | da fb 03 00 a0 00 00 00 b4 fc 03 00 68 00 00 00 55 fd 03 00 9c 00 00 00 be fd 03 00 54 00 00 00 | ............h...U...........T... |
| 2560 | 5b fe 03 00 2b 00 00 00 b0 fe 03 00 21 00 00 00 dc fe 03 00 5a 00 00 00 fe fe 03 00 70 00 00 00 | [...+.......!.......Z.......p... |
| 2580 | 59 ff 03 00 4a 00 00 00 ca ff 03 00 16 00 00 00 15 00 04 00 19 00 00 00 2c 00 04 00 25 00 00 00 | Y...J...................,...%... |
| 25a0 | 46 00 04 00 62 00 00 00 6c 00 04 00 08 00 00 00 cf 00 04 00 2d 00 00 00 d8 00 04 00 14 00 00 00 | F...b...l...........-........... |
| 25c0 | 06 01 04 00 14 00 00 00 1b 01 04 00 14 00 00 00 30 01 04 00 14 00 00 00 45 01 04 00 0d 00 00 00 | ................0.......E....... |
| 25e0 | 5a 01 04 00 39 00 00 00 68 01 04 00 43 00 00 00 a2 01 04 00 0b 00 00 00 e6 01 04 00 da 00 00 00 | Z...9...h...C................... |
| 2600 | f2 01 04 00 db 00 00 00 cd 02 04 00 e0 00 00 00 a9 03 04 00 f3 00 00 00 8a 04 04 00 dc 00 00 00 | ................................ |
| 2620 | 7e 05 04 00 dd 00 00 00 5b 06 04 00 dc 00 00 00 39 07 04 00 dd 00 00 00 16 08 04 00 43 00 00 00 | ~.......[.......9...........C... |
| 2640 | f4 08 04 00 3d 00 00 00 38 09 04 00 00 01 00 00 76 09 04 00 00 01 00 00 77 0a 04 00 b3 00 00 00 | ....=...8.......v.......w....... |
| 2660 | 78 0b 04 00 0f 00 00 00 2c 0c 04 00 0b 00 00 00 3c 0c 04 00 61 00 00 00 48 0c 04 00 0a 00 00 00 | x.......,.......<...a...H....... |
| 2680 | aa 0c 04 00 0b 00 00 00 b5 0c 04 00 18 00 00 00 c1 0c 04 00 10 00 00 00 da 0c 04 00 3a 00 00 00 | ............................:... |
| 26a0 | eb 0c 04 00 12 00 00 00 26 0d 04 00 3c 00 00 00 39 0d 04 00 84 00 00 00 76 0d 04 00 14 00 00 00 | ........&...<...9.......v....... |
| 26c0 | fb 0d 04 00 4c 00 00 00 10 0e 04 00 05 00 00 00 5d 0e 04 00 15 00 00 00 63 0e 04 00 0d 00 00 00 | ....L...........].......c....... |
| 26e0 | 79 0e 04 00 b6 00 00 00 87 0e 04 00 04 00 00 00 3e 0f 04 00 bf 00 00 00 43 0f 04 00 52 00 00 00 | y...............>.......C...R... |
| 2700 | 03 10 04 00 06 00 00 00 56 10 04 00 0e 00 00 00 5d 10 04 00 10 00 00 00 6c 10 04 00 1c 00 00 00 | ........V.......].......l....... |
| 2720 | 7d 10 04 00 17 00 00 00 9a 10 04 00 2b 00 00 00 b2 10 04 00 05 00 00 00 de 10 04 00 2f 00 00 00 | }...........+.............../... |
| 2740 | e4 10 04 00 34 00 00 00 14 11 04 00 01 01 00 00 49 11 04 00 05 00 00 00 4b 12 04 00 67 00 00 00 | ....4...........I.......K...g... |
| 2760 | 51 12 04 00 07 00 00 00 b9 12 04 00 0a 00 00 00 c1 12 04 00 15 00 00 00 cc 12 04 00 19 00 00 00 | Q............................... |
| 2780 | e2 12 04 00 a4 00 00 00 fc 12 04 00 ac 00 00 00 a1 13 04 00 b2 00 00 00 4e 14 04 00 32 00 00 00 | ........................N...2... |
| 27a0 | 01 15 04 00 ab 00 00 00 34 15 04 00 0f 00 00 00 e0 15 04 00 31 00 00 00 f0 15 04 00 1d 00 00 00 | ........4...........1........... |
| 27c0 | 22 16 04 00 14 00 00 00 40 16 04 00 32 00 00 00 55 16 04 00 15 00 00 00 88 16 04 00 0a 00 00 00 | ".......@...2...U............... |
| 27e0 | 9e 16 04 00 0c 00 00 00 a9 16 04 00 11 00 00 00 b6 16 04 00 17 00 00 00 c8 16 04 00 13 00 00 00 | ................................ |
| 2800 | e0 16 04 00 19 00 00 00 f4 16 04 00 64 00 00 00 0e 17 04 00 74 00 00 00 73 17 04 00 98 00 00 00 | ............d.......t...s....... |
| 2820 | e8 17 04 00 24 00 00 00 81 18 04 00 25 00 00 00 a6 18 04 00 0d 00 00 00 cc 18 04 00 42 00 00 00 | ....$.......%...............B... |
| 2840 | da 18 04 00 16 00 00 00 1d 19 04 00 13 00 00 00 34 19 04 00 55 00 00 00 48 19 04 00 95 00 00 00 | ................4...U...H....... |
| 2860 | 9e 19 04 00 35 00 00 00 34 1a 04 00 8e 00 00 00 6a 1a 04 00 8e 00 00 00 f9 1a 04 00 68 00 00 00 | ....5...4.......j...........h... |
| 2880 | 88 1b 04 00 77 00 00 00 f1 1b 04 00 81 00 00 00 69 1c 04 00 21 00 00 00 eb 1c 04 00 22 00 00 00 | ....w...........i...!......."... |
| 28a0 | 0d 1d 04 00 2e 00 00 00 30 1d 04 00 31 00 00 00 5f 1d 04 00 7e 00 00 00 91 1d 04 00 83 00 00 00 | ........0...1..._...~........... |
| 28c0 | 10 1e 04 00 4b 00 00 00 94 1e 04 00 38 00 00 00 e0 1e 04 00 39 00 00 00 19 1f 04 00 95 00 00 00 | ....K.......8.......9........... |
| 28e0 | 53 1f 04 00 70 00 00 00 e9 1f 04 00 85 00 00 00 5a 20 04 00 51 00 00 00 e0 20 04 00 9a 00 00 00 | S...p...........Z...Q........... |
| 2900 | 32 21 04 00 9e 00 00 00 cd 21 04 00 32 00 00 00 6c 22 04 00 69 00 00 00 9f 22 04 00 7b 00 00 00 | 2!.......!..2...l"..i...."..{... |
| 2920 | 09 23 04 00 2a 00 00 00 85 23 04 00 62 00 00 00 b0 23 04 00 4b 01 00 00 13 24 04 00 a6 00 00 00 | .#..*....#..b....#..K....$...... |
| 2940 | 5f 25 04 00 89 00 00 00 06 26 04 00 af 00 00 00 90 26 04 00 88 00 00 00 40 27 04 00 31 00 00 00 | _%.......&.......&......@'..1... |
| 2960 | c9 27 04 00 2d 00 00 00 fb 27 04 00 7a 00 00 00 29 28 04 00 92 00 00 00 a4 28 04 00 b3 00 00 00 | .'..-....'..z...)(.......(...... |
| 2980 | 37 29 04 00 6d 00 00 00 eb 29 04 00 6b 00 00 00 59 2a 04 00 1f 00 00 00 c5 2a 04 00 0e 00 00 00 | 7)..m....)..k...Y*.......*...... |
| 29a0 | e5 2a 04 00 77 00 00 00 f4 2a 04 00 4b 00 00 00 6c 2b 04 00 33 00 00 00 b8 2b 04 00 39 00 00 00 | .*..w....*..K...l+..3....+..9... |
| 29c0 | ec 2b 04 00 0b 00 00 00 26 2c 04 00 6d 00 00 00 32 2c 04 00 1a 00 00 00 a0 2c 04 00 20 00 00 00 | .+......&,..m...2,.......,...... |
| 29e0 | bb 2c 04 00 25 00 00 00 dc 2c 04 00 4d 00 00 00 02 2d 04 00 4e 00 00 00 50 2d 04 00 0b 00 00 00 | .,..%....,..M....-..N...P-...... |
| 2a00 | 9f 2d 04 00 f6 00 00 00 ab 2d 04 00 2e 00 00 00 a2 2e 04 00 13 00 00 00 d1 2e 04 00 0f 00 00 00 | .-.......-...................... |
| 2a20 | e5 2e 04 00 12 00 00 00 f5 2e 04 00 71 01 00 00 08 2f 04 00 fe 00 00 00 7a 30 04 00 4e 00 00 00 | ............q..../......z0..N... |
| 2a40 | 79 31 04 00 c9 00 00 00 c8 31 04 00 13 00 00 00 92 32 04 00 19 00 00 00 a6 32 04 00 7c 00 00 00 | y1.......1.......2.......2..|... |
| 2a60 | c0 32 04 00 38 00 00 00 3d 33 04 00 3b 00 00 00 76 33 04 00 46 00 00 00 b2 33 04 00 2f 00 00 00 | .2..8...=3..;...v3..F....3../... |
| 2a80 | f9 33 04 00 19 00 00 00 29 34 04 00 12 00 00 00 43 34 04 00 14 00 00 00 56 34 04 00 22 00 00 00 | .3......)4......C4......V4.."... |
| 2aa0 | 6b 34 04 00 84 00 00 00 8e 34 04 00 26 00 00 00 13 35 04 00 24 00 00 00 3a 35 04 00 1b 00 00 00 | k4.......4..&....5..$...:5...... |
| 2ac0 | 5f 35 04 00 1d 00 00 00 7b 35 04 00 58 00 00 00 99 35 04 00 5b 00 00 00 f2 35 04 00 43 00 00 00 | _5......{5..X....5..[....5..C... |
| 2ae0 | 4e 36 04 00 56 00 00 00 92 36 04 00 43 00 00 00 e9 36 04 00 3f 00 00 00 2d 37 04 00 75 00 00 00 | N6..V....6..C....6..?...-7..u... |
| 2b00 | 6d 37 04 00 1e 00 00 00 e3 37 04 00 25 00 00 00 02 38 04 00 25 00 00 00 28 38 04 00 15 00 00 00 | m7.......7..%....8..%...(8...... |
| 2b20 | 4e 38 04 00 86 00 00 00 64 38 04 00 2e 00 00 00 eb 38 04 00 95 00 00 00 1a 39 04 00 43 00 00 00 | N8......d8.......8.......9..C... |
| 2b40 | b0 39 04 00 2b 00 00 00 f4 39 04 00 2b 00 00 00 20 3a 04 00 37 01 00 00 4c 3a 04 00 38 00 00 00 | .9..+....9..+....:..7...L:..8... |
| 2b60 | 84 3b 04 00 3b 00 00 00 bd 3b 04 00 18 00 00 00 f9 3b 04 00 16 00 00 00 12 3c 04 00 7a 00 00 00 | .;..;....;.......;.......<..z... |
| 2b80 | 29 3c 04 00 12 00 00 00 a4 3c 04 00 67 00 00 00 b7 3c 04 00 3a 00 00 00 1f 3d 04 00 3a 00 00 00 | )<.......<..g....<..:....=..:... |
| 2ba0 | 5a 3d 04 00 0c 00 00 00 95 3d 04 00 18 00 00 00 a2 3d 04 00 39 00 00 00 bb 3d 04 00 47 00 00 00 | Z=.......=.......=..9....=..G... |
| 2bc0 | f5 3d 04 00 42 00 00 00 3d 3e 04 00 4c 00 00 00 80 3e 04 00 3f 00 00 00 cd 3e 04 00 3b 00 00 00 | .=..B...=>..L....>..?....>..;... |
| 2be0 | 0d 3f 04 00 41 00 00 00 49 3f 04 00 11 01 00 00 8b 3f 04 00 12 01 00 00 9d 40 04 00 3d 00 00 00 | .?..A...I?.......?.......@..=... |
| 2c00 | b0 41 04 00 31 00 00 00 ee 41 04 00 26 01 00 00 20 42 04 00 e2 00 00 00 47 43 04 00 9f 00 00 00 | .A..1....A..&....B......GC...... |
| 2c20 | 2a 44 04 00 9f 00 00 00 ca 44 04 00 3a 00 00 00 6a 45 04 00 f8 00 00 00 a5 45 04 00 48 00 00 00 | *D.......D..:...jE.......E..H... |
| 2c40 | 9e 46 04 00 e2 00 00 00 e7 46 04 00 88 00 00 00 ca 47 04 00 31 00 00 00 53 48 04 00 06 00 00 00 | .F.......F.......G..1...SH...... |
| 2c60 | 85 48 04 00 0d 00 00 00 8c 48 04 00 0b 00 00 00 9a 48 04 00 2e 00 00 00 a6 48 04 00 67 00 00 00 | .H.......H.......H.......H..g... |
| 2c80 | d5 48 04 00 3e 00 00 00 3d 49 04 00 13 00 00 00 7c 49 04 00 ab 00 00 00 90 49 04 00 b5 00 00 00 | .H..>...=I......|I.......I...... |
| 2ca0 | 3c 4a 04 00 b5 00 00 00 f2 4a 04 00 90 00 00 00 a8 4b 04 00 30 00 00 00 39 4c 04 00 47 00 00 00 | <J.......J.......K..0...9L..G... |
| 2cc0 | 6a 4c 04 00 22 00 00 00 b2 4c 04 00 22 00 00 00 d5 4c 04 00 24 00 00 00 f8 4c 04 00 09 00 00 00 | jL.."....L.."....L..$....L...... |
| 2ce0 | 1d 4d 04 00 09 00 00 00 27 4d 04 00 92 00 00 00 31 4d 04 00 38 00 00 00 c4 4d 04 00 f2 00 00 00 | .M......'M......1M..8....M...... |
| 2d00 | fd 4d 04 00 05 00 00 00 f0 4e 04 00 0f 00 00 00 f6 4e 04 00 88 00 00 00 06 4f 04 00 bd 00 00 00 | .M.......N.......N.......O...... |
| 2d20 | 8f 4f 04 00 c2 00 00 00 4d 50 04 00 7e 00 00 00 10 51 04 00 0b 00 00 00 8f 51 04 00 0e 00 00 00 | .O......MP..~....Q.......Q...... |
| 2d40 | 9b 51 04 00 80 00 00 00 aa 51 04 00 12 00 00 00 2b 52 04 00 6a 00 00 00 3e 52 04 00 2f 00 00 00 | .Q.......Q......+R..j...>R../... |
| 2d60 | a9 52 04 00 0a 00 00 00 d9 52 04 00 f4 00 00 00 e4 52 04 00 10 00 00 00 d9 53 04 00 f7 00 00 00 | .R.......R.......R.......S...... |
| 2d80 | ea 53 04 00 d2 01 00 00 e2 54 04 00 ad 01 00 00 b5 56 04 00 dd 00 00 00 63 58 04 00 91 01 00 00 | .S.......T.......V......cX...... |
| 2da0 | 41 59 04 00 7f 00 00 00 d3 5a 04 00 af 00 00 00 53 5b 04 00 2a 03 00 00 03 5c 04 00 6b 00 00 00 | AY.......Z......S[..*....\..k... |
| 2dc0 | 2e 5f 04 00 a3 00 00 00 9a 5f 04 00 9a 00 00 00 3e 60 04 00 50 00 00 00 d9 60 04 00 81 00 00 00 | ._......._......>`..P....`...... |
| 2de0 | 2a 61 04 00 2c 00 00 00 ac 61 04 00 51 00 00 00 d9 61 04 00 7a 00 00 00 2b 62 04 00 2b 00 00 00 | *a..,....a..Q....a..z...+b..+... |
| 2e00 | a6 62 04 00 31 00 00 00 d2 62 04 00 25 00 00 00 04 63 04 00 09 00 00 00 2a 63 04 00 34 00 00 00 | .b..1....b..%....c......*c..4... |
| 2e20 | 34 63 04 00 23 00 00 00 69 63 04 00 23 00 00 00 8d 63 04 00 25 00 00 00 b1 63 04 00 11 00 00 00 | 4c..#...ic..#....c..%....c...... |
| 2e40 | d7 63 04 00 12 00 00 00 e9 63 04 00 12 00 00 00 fc 63 04 00 1e 00 00 00 0f 64 04 00 23 00 00 00 | .c.......c.......c.......d..#... |
| 2e60 | 2e 64 04 00 39 00 00 00 52 64 04 00 24 00 00 00 8c 64 04 00 2c 00 00 00 b1 64 04 00 2d 00 00 00 | .d..9...Rd..$....d..,....d..-... |
| 2e80 | de 64 04 00 1c 00 00 00 0c 65 04 00 1d 00 00 00 29 65 04 00 1e 00 00 00 47 65 04 00 0c 00 00 00 | .d.......e......)e......Ge...... |
| 2ea0 | 66 65 04 00 28 00 00 00 73 65 04 00 3a 00 00 00 9c 65 04 00 30 00 00 00 d7 65 04 00 27 00 00 00 | fe..(...se..:....e..0....e..'... |
| 2ec0 | 08 66 04 00 38 00 00 00 30 66 04 00 1d 00 00 00 69 66 04 00 13 00 00 00 87 66 04 00 0b 00 00 00 | .f..8...0f......if.......f...... |
| 2ee0 | 9b 66 04 00 28 00 00 00 a7 66 04 00 30 00 00 00 d0 66 04 00 4c 00 00 00 01 67 04 00 74 00 00 00 | .f..(....f..0....f..L....g..t... |
| 2f00 | 4e 67 04 00 11 00 00 00 c3 67 04 00 55 00 00 00 d5 67 04 00 30 00 00 00 2b 68 04 00 0f 00 00 00 | Ng.......g..U....g..0...+h...... |
| 2f20 | 5c 68 04 00 0b 00 00 00 6c 68 04 00 28 00 00 00 78 68 04 00 35 00 00 00 a1 68 04 00 0a 00 00 00 | \h......lh..(...xh..5....h...... |
| 2f40 | d7 68 04 00 56 00 00 00 e2 68 04 00 1f 00 00 00 39 69 04 00 18 00 00 00 59 69 04 00 2d 00 00 00 | .h..V....h......9i......Yi..-... |
| 2f60 | 72 69 04 00 23 00 00 00 a0 69 04 00 3f 00 00 00 c4 69 04 00 4d 00 00 00 04 6a 04 00 20 00 00 00 | ri..#....i..?....i..M....j...... |
| 2f80 | 52 6a 04 00 6d 00 00 00 73 6a 04 00 71 00 00 00 e1 6a 04 00 33 00 00 00 53 6b 04 00 61 00 00 00 | Rj..m...sj..q....j..3...Sk..a... |
| 2fa0 | 87 6b 04 00 64 00 00 00 e9 6b 04 00 63 00 00 00 4e 6c 04 00 7d 00 00 00 b2 6c 04 00 6d 00 00 00 | .k..d....k..c...Nl..}....l..m... |
| 2fc0 | 30 6d 04 00 64 00 00 00 9e 6d 04 00 31 00 00 00 03 6e 04 00 66 00 00 00 35 6e 04 00 34 00 00 00 | 0m..d....m..1....n..f...5n..4... |
| 2fe0 | 9c 6e 04 00 1b 01 00 00 d1 6e 04 00 3a 00 00 00 ed 6f 04 00 4a 00 00 00 28 70 04 00 38 00 00 00 | .n.......n..:....o..J...(p..8... |
| 3000 | 73 70 04 00 40 01 00 00 ac 70 04 00 3a 00 00 00 ed 71 04 00 4f 00 00 00 28 72 04 00 2e 00 00 00 | sp..@....p..:....q..O...(r...... |
| 3020 | 78 72 04 00 86 00 00 00 a7 72 04 00 bb 01 00 00 2e 73 04 00 06 01 00 00 ea 74 04 00 80 00 00 00 | xr.......r.......s.......t...... |
| 3040 | f1 75 04 00 bf 00 00 00 72 76 04 00 49 00 00 00 32 77 04 00 25 00 00 00 7c 77 04 00 4b 00 00 00 | .u......rv..I...2w..%...|w..K... |
| 3060 | a2 77 04 00 79 00 00 00 ee 77 04 00 d6 00 00 00 68 78 04 00 22 00 00 00 3f 79 04 00 64 00 00 00 | .w..y....w......hx.."...?y..d... |
| 3080 | 62 79 04 00 16 00 00 00 c7 79 04 00 14 00 00 00 de 79 04 00 79 00 00 00 f3 79 04 00 42 00 00 00 | by.......y.......y..y....y..B... |
| 30a0 | 6d 7a 04 00 1c 00 00 00 b0 7a 04 00 1d 00 00 00 cd 7a 04 00 33 00 00 00 eb 7a 04 00 a7 00 00 00 | mz.......z.......z..3....z...... |
| 30c0 | 1f 7b 04 00 c1 00 00 00 c7 7b 04 00 32 00 00 00 89 7c 04 00 05 00 00 00 bc 7c 04 00 10 00 00 00 | .{.......{..2....|.......|...... |
| 30e0 | c2 7c 04 00 5e 00 00 00 d3 7c 04 00 08 00 00 00 32 7d 04 00 dc 00 00 00 3b 7d 04 00 10 00 00 00 | .|..^....|......2}......;}...... |
| 3100 | 18 7e 04 00 5d 00 00 00 29 7e 04 00 0d 00 00 00 87 7e 04 00 21 00 00 00 95 7e 04 00 21 00 00 00 | .~..]...)~.......~..!....~..!... |
| 3120 | b7 7e 04 00 d4 00 00 00 d9 7e 04 00 14 00 00 00 ae 7f 04 00 38 00 00 00 c3 7f 04 00 a3 00 00 00 | .~.......~..........8........... |
| 3140 | fc 7f 04 00 a7 00 00 00 a0 80 04 00 23 00 00 00 48 81 04 00 91 00 00 00 6c 81 04 00 59 00 00 00 | ............#...H.......l...Y... |
| 3160 | fe 81 04 00 a6 01 00 00 58 82 04 00 ca 00 00 00 ff 83 04 00 75 01 00 00 ca 84 04 00 70 01 00 00 | ........X...........u.......p... |
| 3180 | 40 86 04 00 63 01 00 00 b1 87 04 00 07 00 00 00 15 89 04 00 15 00 00 00 1d 89 04 00 27 00 00 00 | @...c.......................'... |
| 31a0 | 33 89 04 00 26 00 00 00 5b 89 04 00 12 00 00 00 82 89 04 00 0f 00 00 00 95 89 04 00 16 00 00 00 | 3...&...[....................... |
| 31c0 | a5 89 04 00 2f 00 00 00 bc 89 04 00 2f 00 00 00 ec 89 04 00 77 00 00 00 1c 8a 04 00 17 00 00 00 | ..../......./.......w........... |
| 31e0 | 94 8a 04 00 92 00 00 00 ac 8a 04 00 10 00 00 00 3f 8b 04 00 51 00 00 00 50 8b 04 00 08 00 00 00 | ................?...Q...P....... |
| 3200 | a2 8b 04 00 6c 00 00 00 ab 8b 04 00 bf 00 00 00 18 8c 04 00 58 00 00 00 d8 8c 04 00 e0 00 00 00 | ....l...............X........... |
| 3220 | 31 8d 04 00 3d 00 00 00 12 8e 04 00 3b 00 00 00 50 8e 04 00 3c 00 00 00 8c 8e 04 00 3e 00 00 00 | 1...=.......;...P...<.......>... |
| 3240 | c9 8e 04 00 3c 00 00 00 08 8f 04 00 3d 00 00 00 45 8f 04 00 15 00 00 00 83 8f 04 00 34 00 00 00 | ....<.......=...E...........4... |
| 3260 | 99 8f 04 00 36 00 00 00 ce 8f 04 00 33 00 00 00 05 90 04 00 a3 00 00 00 39 90 04 00 08 00 00 00 | ....6.......3...........9....... |
| 3280 | dd 90 04 00 1b 00 00 00 e6 90 04 00 09 00 00 00 02 91 04 00 c5 00 00 00 0c 91 04 00 2e 00 00 00 | ................................ |
| 32a0 | d2 91 04 00 0f 00 00 00 01 92 04 00 0f 00 00 00 11 92 04 00 31 00 00 00 21 92 04 00 2a 00 00 00 | ....................1...!...*... |
| 32c0 | 53 92 04 00 19 00 00 00 7e 92 04 00 0b 00 00 00 98 92 04 00 40 00 00 00 a4 92 04 00 28 00 00 00 | S.......~...........@.......(... |
| 32e0 | e5 92 04 00 1c 00 00 00 0e 93 04 00 1a 00 00 00 2b 93 04 00 8e 00 00 00 46 93 04 00 08 00 00 00 | ................+.......F....... |
| 3300 | d5 93 04 00 c1 00 00 00 de 93 04 00 9a 00 00 00 a0 94 04 00 dc 00 00 00 3b 95 04 00 a5 01 00 00 | ........................;....... |
| 3320 | 18 96 04 00 03 00 00 00 be 97 04 00 98 00 00 00 c2 97 04 00 46 01 00 00 5b 98 04 00 0a 00 00 00 | ....................F...[....... |
| 3340 | a2 99 04 00 0a 00 00 00 ad 99 04 00 39 00 00 00 b8 99 04 00 0d 00 00 00 f2 99 04 00 08 00 00 00 | ............9................... |
| 3360 | 00 9a 04 00 0f 00 00 00 09 9a 04 00 2d 00 00 00 19 9a 04 00 e5 00 00 00 47 9a 04 00 ea 00 00 00 | ............-...........G....... |
| 3380 | 2d 9b 04 00 0a 00 00 00 18 9c 04 00 57 01 00 00 23 9c 04 00 31 01 00 00 7b 9d 04 00 0a 00 00 00 | -...........W...#...1...{....... |
| 33a0 | ad 9e 04 00 69 01 00 00 b8 9e 04 00 26 00 00 00 22 a0 04 00 05 00 00 00 49 a0 04 00 71 00 00 00 | ....i.......&...".......I...q... |
| 33c0 | 4f a0 04 00 5c 00 00 00 c1 a0 04 00 90 00 00 00 1e a1 04 00 33 00 00 00 af a1 04 00 33 00 00 00 | O...\...............3.......3... |
| 33e0 | e3 a1 04 00 51 00 00 00 17 a2 04 00 95 00 00 00 69 a2 04 00 09 00 00 00 ff a2 04 00 c1 00 00 00 | ....Q...........i............... |
| 3400 | 09 a3 04 00 53 00 00 00 cb a3 04 00 08 00 00 00 1f a4 04 00 15 00 00 00 28 a4 04 00 15 00 00 00 | ....S...................(....... |
| 3420 | 3e a4 04 00 16 00 00 00 54 a4 04 00 23 00 00 00 6b a4 04 00 14 00 00 00 8f a4 04 00 13 00 00 00 | >.......T...#...k............... |
| 3440 | a4 a4 04 00 0d 00 00 00 b8 a4 04 00 0e 00 00 00 c6 a4 04 00 b0 00 00 00 d5 a4 04 00 b0 00 00 00 | ................................ |
| 3460 | 86 a5 04 00 e9 00 00 00 37 a6 04 00 0f 00 00 00 21 a7 04 00 4f 01 00 00 31 a7 04 00 20 01 00 00 | ........7.......!...O...1....... |
| 3480 | 81 a8 04 00 23 01 00 00 a2 a9 04 00 4d 00 00 00 c6 aa 04 00 95 00 00 00 14 ab 04 00 89 00 00 00 | ....#.......M................... |
| 34a0 | aa ab 04 00 22 00 00 00 34 ac 04 00 0f 00 00 00 57 ac 04 00 0f 00 00 00 67 ac 04 00 28 00 00 00 | ...."...4.......W.......g...(... |
| 34c0 | 77 ac 04 00 78 01 00 00 a0 ac 04 00 60 00 00 00 19 ae 04 00 1d 01 00 00 7a ae 04 00 0b 00 00 00 | w...x.......`...........z....... |
| 34e0 | 98 af 04 00 53 00 00 00 a4 af 04 00 cd 00 00 00 f8 af 04 00 ca 00 00 00 c6 b0 04 00 dd 00 00 00 | ....S........................... |
| 3500 | 91 b1 04 00 f4 00 00 00 6f b2 04 00 60 00 00 00 64 b3 04 00 98 00 00 00 c5 b3 04 00 98 00 00 00 | ........o...`...d............... |
| 3520 | 5e b4 04 00 00 01 00 00 f7 b4 04 00 30 00 00 00 f8 b5 04 00 aa 00 00 00 29 b6 04 00 05 00 00 00 | ^...........0...........)....... |
| 3540 | d4 b6 04 00 0e 00 00 00 da b6 04 00 2a 02 00 00 e9 b6 04 00 0f 00 00 00 14 b9 04 00 0b 00 00 00 | ............*................... |
| 3560 | 24 b9 04 00 1f 00 00 00 30 b9 04 00 33 00 00 00 50 b9 04 00 73 00 00 00 84 b9 04 00 6e 00 00 00 | $.......0...3...P...s.......n... |
| 3580 | f8 b9 04 00 87 00 00 00 67 ba 04 00 2e 00 00 00 ef ba 04 00 29 00 00 00 1e bb 04 00 b1 00 00 00 | ........g...........)........... |
| 35a0 | 48 bb 04 00 17 00 00 00 fa bb 04 00 a7 00 00 00 12 bc 04 00 21 00 00 00 ba bc 04 00 a5 00 00 00 | H...................!........... |
| 35c0 | dc bc 04 00 90 00 00 00 82 bd 04 00 26 00 00 00 13 be 04 00 1a 00 00 00 3a be 04 00 44 00 00 00 | ............&...........:...D... |
| 35e0 | 55 be 04 00 48 00 00 00 9a be 04 00 2a 00 00 00 e3 be 04 00 6e 00 00 00 0e bf 04 00 90 00 00 00 | U...H.......*.......n........... |
| 3600 | 7d bf 04 00 cf 00 00 00 0e c0 04 00 0f 00 00 00 de c0 04 00 0c 00 00 00 ee c0 04 00 69 01 00 00 | }...........................i... |
| 3620 | fb c0 04 00 93 00 00 00 65 c2 04 00 0f 00 00 00 f9 c2 04 00 f1 00 00 00 09 c3 04 00 10 00 00 00 | ........e....................... |
| 3640 | fb c3 04 00 3e 00 00 00 0c c4 04 00 81 00 00 00 4b c4 04 00 8b 00 00 00 cd c4 04 00 bd 00 00 00 | ....>...........K............... |
| 3660 | 59 c5 04 00 30 01 00 00 17 c6 04 00 96 00 00 00 48 c7 04 00 8a 00 00 00 df c7 04 00 69 01 00 00 | Y...0...........H...........i... |
| 3680 | 6a c8 04 00 0c 00 00 00 d4 c9 04 00 5a 00 00 00 e1 c9 04 00 3b 01 00 00 3c ca 04 00 3c 01 00 00 | j...........Z.......;...<...<... |
| 36a0 | 78 cb 04 00 db 00 00 00 b5 cc 04 00 52 00 00 00 91 cd 04 00 2f 00 00 00 e4 cd 04 00 ac 00 00 00 | x...........R......./........... |
| 36c0 | 14 ce 04 00 09 00 00 00 c1 ce 04 00 eb 00 00 00 cb ce 04 00 d8 00 00 00 b7 cf 04 00 5c 00 00 00 | ............................\... |
| 36e0 | 90 d0 04 00 63 00 00 00 ed d0 04 00 22 01 00 00 51 d1 04 00 4a 01 00 00 74 d2 04 00 af 00 00 00 | ....c......."...Q...J...t....... |
| 3700 | bf d3 04 00 30 00 00 00 6f d4 04 00 4b 00 00 00 a0 d4 04 00 66 00 00 00 ec d4 04 00 52 00 00 00 | ....0...o...K.......f.......R... |
| 3720 | 53 d5 04 00 49 00 00 00 a6 d5 04 00 1b 01 00 00 f0 d5 04 00 bb 00 00 00 0c d7 04 00 60 00 00 00 | S...I.......................`... |
| 3740 | c8 d7 04 00 62 00 00 00 29 d8 04 00 52 01 00 00 8c d8 04 00 43 00 00 00 df d9 04 00 f3 00 00 00 | ....b...)...R.......C........... |
| 3760 | 23 da 04 00 bd 00 00 00 17 db 04 00 bc 00 00 00 d5 db 04 00 da 00 00 00 92 dc 04 00 77 00 00 00 | #...........................w... |
| 3780 | 6d dd 04 00 e7 00 00 00 e5 dd 04 00 af 00 00 00 cd de 04 00 e8 00 00 00 7d df 04 00 e3 00 00 00 | m.......................}....... |
| 37a0 | 66 e0 04 00 76 00 00 00 4a e1 04 00 3c 01 00 00 c1 e1 04 00 3a 01 00 00 fe e2 04 00 42 01 00 00 | f...v...J...<.......:.......B... |
| 37c0 | 39 e4 04 00 97 00 00 00 7c e5 04 00 a2 00 00 00 14 e6 04 00 a6 00 00 00 b7 e6 04 00 7b 00 00 00 | 9.......|...................{... |
| 37e0 | 5e e7 04 00 d3 00 00 00 da e7 04 00 62 00 00 00 ae e8 04 00 0e 00 00 00 11 e9 04 00 cc 00 00 00 | ^...........b................... |
| 3800 | 20 e9 04 00 32 00 00 00 ed e9 04 00 11 00 00 00 20 ea 04 00 14 01 00 00 32 ea 04 00 b9 00 00 00 | ....2...................2....... |
| 3820 | 47 eb 04 00 bd 00 00 00 01 ec 04 00 0f 00 00 00 bf ec 04 00 06 00 00 00 cf ec 04 00 06 00 00 00 | G............................... |
| 3840 | d6 ec 04 00 5d 02 00 00 dd ec 04 00 5c 02 00 00 3b ef 04 00 0e 00 00 00 98 f1 04 00 80 01 00 00 | ....].......\...;............... |
| 3860 | a7 f1 04 00 23 01 00 00 28 f3 04 00 0c 01 00 00 4c f4 04 00 8b 00 00 00 59 f5 04 00 06 00 00 00 | ....#...(.......L.......Y....... |
| 3880 | e5 f5 04 00 59 00 00 00 ec f5 04 00 59 00 00 00 46 f6 04 00 07 00 00 00 a0 f6 04 00 15 00 00 00 | ....Y.......Y...F............... |
| 38a0 | a8 f6 04 00 44 00 00 00 be f6 04 00 44 00 00 00 03 f7 04 00 0f 00 00 00 48 f7 04 00 4d 00 00 00 | ....D.......D...........H...M... |
| 38c0 | 58 f7 04 00 3d 00 00 00 a6 f7 04 00 10 00 00 00 e4 f7 04 00 45 00 00 00 f5 f7 04 00 58 00 00 00 | X...=...............E.......X... |
| 38e0 | 3b f8 04 00 59 00 00 00 94 f8 04 00 7c 00 00 00 ee f8 04 00 ac 00 00 00 6b f9 04 00 89 00 00 00 | ;...Y.......|...........k....... |
| 3900 | 18 fa 04 00 8a 00 00 00 a2 fa 04 00 86 00 00 00 2d fb 04 00 23 00 00 00 b4 fb 04 00 0e 00 00 00 | ................-...#........... |
| 3920 | d8 fb 04 00 26 00 00 00 e7 fb 04 00 2d 00 00 00 0e fc 04 00 2e 00 00 00 3c fc 04 00 2d 00 00 00 | ....&.......-...........<...-... |
| 3940 | 6b fc 04 00 0f 00 00 00 99 fc 04 00 1d 01 00 00 a9 fc 04 00 19 01 00 00 c7 fd 04 00 1f 01 00 00 | k............................... |
| 3960 | e1 fe 04 00 07 00 00 00 01 00 05 00 06 00 00 00 09 00 05 00 17 00 00 00 10 00 05 00 0e 00 00 00 | ................................ |
| 3980 | 28 00 05 00 25 00 00 00 37 00 05 00 0e 00 00 00 5d 00 05 00 11 00 00 00 6c 00 05 00 0f 00 00 00 | (...%...7.......].......l....... |
| 39a0 | 7e 00 05 00 10 00 00 00 8e 00 05 00 07 00 00 00 9f 00 05 00 0e 00 00 00 a7 00 05 00 06 00 00 00 | ~............................... |
| 39c0 | b6 00 05 00 d0 00 00 00 bd 00 05 00 2c 00 00 00 8e 01 05 00 5c 00 00 00 bb 01 05 00 53 00 00 00 | ............,.......\.......S... |
| 39e0 | 18 02 05 00 1b 00 00 00 6c 02 05 00 57 00 00 00 88 02 05 00 2b 00 00 00 e0 02 05 00 08 00 00 00 | ........l...W.......+........... |
| 3a00 | 0c 03 05 00 13 00 00 00 15 03 05 00 22 00 00 00 29 03 05 00 1a 00 00 00 4c 03 05 00 0b 00 00 00 | ............"...).......L....... |
| 3a20 | 67 03 05 00 0b 00 00 00 73 03 05 00 11 00 00 00 7f 03 05 00 08 00 00 00 91 03 05 00 1a 00 00 00 | g.......s....................... |
| 3a40 | 9a 03 05 00 87 00 00 00 b5 03 05 00 6d 00 00 00 3d 04 05 00 17 00 00 00 ab 04 05 00 07 00 00 00 | ............m...=............... |
| 3a60 | c3 04 05 00 9c 00 00 00 cb 04 05 00 24 00 00 00 68 05 05 00 c5 00 00 00 8d 05 05 00 47 01 00 00 | ............$...h...........G... |
| 3a80 | 53 06 05 00 14 00 00 00 9b 07 05 00 0d 00 00 00 b0 07 05 00 85 00 00 00 be 07 05 00 0c 00 00 00 | S............................... |
| 3aa0 | 44 08 05 00 3e 00 00 00 51 08 05 00 78 00 00 00 90 08 05 00 3c 00 00 00 09 09 05 00 23 00 00 00 | D...>...Q...x.......<.......#... |
| 3ac0 | 46 09 05 00 df 00 00 00 6a 09 05 00 34 00 00 00 4a 0a 05 00 4d 00 00 00 7f 0a 05 00 3e 00 00 00 | F.......j...4...J...M.......>... |
| 3ae0 | cd 0a 05 00 64 00 00 00 0c 0b 05 00 db 00 00 00 71 0b 05 00 3b 00 00 00 4d 0c 05 00 28 00 00 00 | ....d...........q...;...M...(... |
| 3b00 | 89 0c 05 00 18 00 00 00 b2 0c 05 00 12 00 00 00 cb 0c 05 00 3f 00 00 00 de 0c 05 00 04 00 00 00 | ....................?........... |
| 3b20 | 1e 0d 05 00 11 00 00 00 23 0d 05 00 11 00 00 00 35 0d 05 00 0a 00 00 00 47 0d 05 00 2a 00 00 00 | ........#.......5.......G...*... |
| 3b40 | 52 0d 05 00 10 00 00 00 7d 0d 05 00 09 00 00 00 8e 0d 05 00 30 00 00 00 98 0d 05 00 08 00 00 00 | R.......}...........0........... |
| 3b60 | c9 0d 05 00 05 01 00 00 d2 0d 05 00 1e 00 00 00 d8 0e 05 00 13 00 00 00 f7 0e 05 00 c5 00 00 00 | ................................ |
| 3b80 | 0b 0f 05 00 6a 00 00 00 d1 0f 05 00 c0 00 00 00 3c 10 05 00 25 00 00 00 fd 10 05 00 25 00 00 00 | ....j...........<...%.......%... |
| 3ba0 | 23 11 05 00 03 00 00 00 49 11 05 00 d3 00 00 00 4d 11 05 00 a8 00 00 00 21 12 05 00 90 01 00 00 | #.......I.......M.......!....... |
| 3bc0 | ca 12 05 00 d4 01 00 00 5b 14 05 00 23 01 00 00 30 16 05 00 2a 00 00 00 54 17 05 00 0a 00 00 00 | ........[...#...0...*...T....... |
| 3be0 | 7f 17 05 00 26 00 00 00 8a 17 05 00 0a 00 00 00 b1 17 05 00 96 01 00 00 bc 17 05 00 05 00 00 00 | ....&........................... |
| 3c00 | 53 19 05 00 05 00 00 00 59 19 05 00 2b 00 00 00 5f 19 05 00 02 00 00 00 8b 19 05 00 0a 00 00 00 | S.......Y...+..._............... |
| 3c20 | 8e 19 05 00 53 00 00 00 99 19 05 00 1d 00 00 00 ed 19 05 00 25 00 00 00 0b 1a 05 00 18 00 00 00 | ....S...............%........... |
| 3c40 | 31 1a 05 00 19 00 00 00 4a 1a 05 00 19 00 00 00 64 1a 05 00 33 00 00 00 7e 1a 05 00 33 00 00 00 | 1.......J.......d...3...~...3... |
| 3c60 | b2 1a 05 00 ea 00 00 00 e6 1a 05 00 2b 00 00 00 d1 1b 05 00 4d 00 00 00 fd 1b 05 00 15 00 00 00 | ............+.......M........... |
| 3c80 | 4b 1c 05 00 14 02 00 00 61 1c 05 00 34 00 00 00 76 1e 05 00 33 00 00 00 ab 1e 05 00 36 00 00 00 | K.......a...4...v...3.......6... |
| 3ca0 | df 1e 05 00 34 00 00 00 16 1f 05 00 2d 00 00 00 4b 1f 05 00 27 00 00 00 79 1f 05 00 1b 00 00 00 | ....4.......-...K...'...y....... |
| 3cc0 | a1 1f 05 00 38 00 00 00 bd 1f 05 00 38 00 00 00 f6 1f 05 00 06 00 00 00 2f 20 05 00 04 00 00 00 | ....8.......8.........../....... |
| 3ce0 | 36 20 05 00 05 00 00 00 3b 20 05 00 11 00 00 00 41 20 05 00 19 00 00 00 53 20 05 00 1d 00 00 00 | 6.......;.......A.......S....... |
| 3d00 | 6d 20 05 00 19 00 00 00 8b 20 05 00 41 00 00 00 a5 20 05 00 11 00 00 00 e7 20 05 00 12 00 00 00 | m...........A................... |
| 3d20 | f9 20 05 00 06 00 00 00 0c 21 05 00 0b 00 00 00 13 21 05 00 f7 00 00 00 1f 21 05 00 f9 00 00 00 | .........!.......!.......!...... |
| 3d40 | 17 22 05 00 24 01 00 00 11 23 05 00 39 00 00 00 36 24 05 00 05 00 00 00 70 24 05 00 19 00 00 00 | ."..$....#..9...6$......p$...... |
| 3d60 | 76 24 05 00 04 00 00 00 90 24 05 00 1b 00 00 00 95 24 05 00 25 00 00 00 b1 24 05 00 2d 00 00 00 | v$.......$.......$..%....$..-... |
| 3d80 | d7 24 05 00 2e 00 00 00 05 25 05 00 0c 00 00 00 34 25 05 00 0a 00 00 00 41 25 05 00 7a 00 00 00 | .$.......%......4%......A%..z... |
| 3da0 | 4c 25 05 00 50 00 00 00 c7 25 05 00 0b 00 00 00 18 26 05 00 76 00 00 00 24 26 05 00 7c 00 00 00 | L%..P....%.......&..v...$&..|... |
| 3dc0 | 9b 26 05 00 04 00 00 00 18 27 05 00 10 00 00 00 1d 27 05 00 15 00 00 00 2e 27 05 00 16 00 00 00 | .&.......'.......'.......'...... |
| 3de0 | 44 27 05 00 20 00 00 00 5b 27 05 00 1b 00 00 00 7c 27 05 00 0e 00 00 00 98 27 05 00 16 00 00 00 | D'......['......|'.......'...... |
| 3e00 | a7 27 05 00 11 00 00 00 be 27 05 00 14 00 00 00 d0 27 05 00 87 00 00 00 e5 27 05 00 39 00 00 00 | .'.......'.......'.......'..9... |
| 3e20 | 6d 28 05 00 3a 00 00 00 a7 28 05 00 3a 00 00 00 e2 28 05 00 ec 00 00 00 1d 29 05 00 14 00 00 00 | m(..:....(..:....(.......)...... |
| 3e40 | 0a 2a 05 00 1f 00 00 00 1f 2a 05 00 25 00 00 00 3f 2a 05 00 0c 00 00 00 65 2a 05 00 3e 00 00 00 | .*.......*..%...?*......e*..>... |
| 3e60 | 72 2a 05 00 0c 00 00 00 b1 2a 05 00 0a 00 00 00 be 2a 05 00 54 00 00 00 c9 2a 05 00 0b 00 00 00 | r*.......*.......*..T....*...... |
| 3e80 | 1e 2b 05 00 0c 00 00 00 2a 2b 05 00 05 00 00 00 37 2b 05 00 1a 00 00 00 3d 2b 05 00 16 00 00 00 | .+......*+......7+......=+...... |
| 3ea0 | 58 2b 05 00 14 00 00 00 6f 2b 05 00 1c 00 00 00 84 2b 05 00 75 00 00 00 a1 2b 05 00 07 01 00 00 | X+......o+.......+..u....+...... |
| 3ec0 | 17 2c 05 00 78 01 00 00 1f 2d 05 00 45 00 00 00 98 2e 05 00 39 00 00 00 de 2e 05 00 ec 00 00 00 | .,..x....-..E.......9........... |
| 3ee0 | 18 2f 05 00 e6 00 00 00 05 30 05 00 4a 00 00 00 ec 30 05 00 57 00 00 00 37 31 05 00 69 00 00 00 | ./.......0..J....0..W...71..i... |
| 3f00 | 8f 31 05 00 d2 00 00 00 f9 31 05 00 c2 00 00 00 cc 32 05 00 b8 00 00 00 8f 33 05 00 98 00 00 00 | .1.......1.......2.......3...... |
| 3f20 | 48 34 05 00 8d 00 00 00 e1 34 05 00 93 00 00 00 6f 35 05 00 b5 00 00 00 03 36 05 00 65 00 00 00 | H4.......4......o5.......6..e... |
| 3f40 | b9 36 05 00 ff 00 00 00 1f 37 05 00 7f 00 00 00 1f 38 05 00 c3 00 00 00 9f 38 05 00 c3 00 00 00 | .6.......7.......8.......8...... |
| 3f60 | 63 39 05 00 bf 00 00 00 27 3a 05 00 bf 00 00 00 e7 3a 05 00 cc 00 00 00 a7 3b 05 00 cc 00 00 00 | c9......':.......:.......;...... |
| 3f80 | 74 3c 05 00 d0 00 00 00 41 3d 05 00 d0 00 00 00 12 3e 05 00 83 00 00 00 e3 3e 05 00 5a 00 00 00 | t<......A=.......>.......>..Z... |
| 3fa0 | 67 3f 05 00 69 00 00 00 c2 3f 05 00 0d 02 00 00 2c 40 05 00 b8 00 00 00 3a 42 05 00 22 00 00 00 | g?..i....?......,@......:B.."... |
| 3fc0 | f3 42 05 00 a4 00 00 00 16 43 05 00 b1 01 00 00 bb 43 05 00 ad 00 00 00 6d 45 05 00 6f 00 00 00 | .B.......C.......C......mE..o... |
| 3fe0 | 1b 46 05 00 e9 00 00 00 8b 46 05 00 89 00 00 00 75 47 05 00 ae 00 00 00 ff 47 05 00 38 01 00 00 | .F.......F......uG.......G..8... |
| 4000 | ae 48 05 00 46 01 00 00 e7 49 05 00 5f 01 00 00 2e 4b 05 00 f0 00 00 00 8e 4c 05 00 57 00 00 00 | .H..F....I.._....K.......L..W... |
| 4020 | 7f 4d 05 00 83 00 00 00 d7 4d 05 00 32 00 00 00 5b 4e 05 00 25 01 00 00 8e 4e 05 00 6c 00 00 00 | .M.......M..2...[N..%....N..l... |
| 4040 | b4 4f 05 00 6a 01 00 00 21 50 05 00 95 00 00 00 8c 51 05 00 5d 00 00 00 22 52 05 00 9b 00 00 00 | .O..j...!P.......Q..]..."R...... |
| 4060 | 80 52 05 00 6c 00 00 00 1c 53 05 00 73 00 00 00 89 53 05 00 2a 00 00 00 fd 53 05 00 78 00 00 00 | .R..l....S..s....S..*....S..x... |
| 4080 | 28 54 05 00 a3 00 00 00 a1 54 05 00 94 00 00 00 45 55 05 00 93 00 00 00 da 55 05 00 51 00 00 00 | (T.......T......EU.......U..Q... |
| 40a0 | 6e 56 05 00 92 00 00 00 c0 56 05 00 c0 00 00 00 53 57 05 00 c4 00 00 00 14 58 05 00 bb 00 00 00 | nV.......V......SW.......X...... |
| 40c0 | d9 58 05 00 ba 00 00 00 95 59 05 00 bd 00 00 00 50 5a 05 00 b2 00 00 00 0e 5b 05 00 97 00 00 00 | .X.......Y......PZ.......[...... |
| 40e0 | c1 5b 05 00 a0 00 00 00 59 5c 05 00 b5 00 00 00 fa 5c 05 00 b9 00 00 00 b0 5d 05 00 55 00 00 00 | .[......Y\.......\.......]..U... |
| 4100 | 6a 5e 05 00 6e 00 00 00 c0 5e 05 00 a6 00 00 00 2f 5f 05 00 a7 00 00 00 d6 5f 05 00 ac 00 00 00 | j^..n....^....../_......._...... |
| 4120 | 7e 60 05 00 79 00 00 00 2b 61 05 00 74 00 00 00 a5 61 05 00 73 00 00 00 1a 62 05 00 68 00 00 00 | ~`..y...+a..t....a..s....b..h... |
| 4140 | 8e 62 05 00 42 01 00 00 f7 62 05 00 d4 00 00 00 3a 64 05 00 d1 00 00 00 0f 65 05 00 b3 00 00 00 | .b..B....b......:d.......e...... |
| 4160 | e1 65 05 00 38 00 00 00 95 66 05 00 87 00 00 00 ce 66 05 00 8f 00 00 00 56 67 05 00 79 00 00 00 | .e..8....f.......f......Vg..y... |
| 4180 | e6 67 05 00 6f 00 00 00 60 68 05 00 97 00 00 00 d0 68 05 00 8a 00 00 00 68 69 05 00 a3 00 00 00 | .g..o...`h.......h......hi...... |
| 41a0 | f3 69 05 00 60 00 00 00 97 6a 05 00 66 00 00 00 f8 6a 05 00 ab 00 00 00 5f 6b 05 00 45 00 00 00 | .i..`....j..f....j......_k..E... |
| 41c0 | 0b 6c 05 00 d3 00 00 00 51 6c 05 00 d3 00 00 00 25 6d 05 00 8e 00 00 00 f9 6d 05 00 61 00 00 00 | .l......Ql......%m.......m..a... |
| 41e0 | 88 6e 05 00 7f 00 00 00 ea 6e 05 00 69 01 00 00 6a 6f 05 00 9d 01 00 00 d4 70 05 00 9e 01 00 00 | .n.......n..i...jo.......p...... |
| 4200 | 72 72 05 00 b6 00 00 00 11 74 05 00 cd 00 00 00 c8 74 05 00 bf 00 00 00 96 75 05 00 b9 00 00 00 | rr.......t.......t.......u...... |
| 4220 | 56 76 05 00 a8 00 00 00 10 77 05 00 5f 00 00 00 b9 77 05 00 e5 00 00 00 19 78 05 00 55 00 00 00 | Vv.......w.._....w.......x..U... |
| 4240 | ff 78 05 00 69 00 00 00 55 79 05 00 74 00 00 00 bf 79 05 00 57 01 00 00 34 7a 05 00 8a 00 00 00 | .x..i...Uy..t....y..W...4z...... |
| 4260 | 8c 7b 05 00 9b 00 00 00 17 7c 05 00 8d 00 00 00 b3 7c 05 00 74 00 00 00 41 7d 05 00 97 00 00 00 | .{.......|.......|..t...A}...... |
| 4280 | b6 7d 05 00 5c 00 00 00 4e 7e 05 00 8e 00 00 00 ab 7e 05 00 92 00 00 00 3a 7f 05 00 69 00 00 00 | .}..\...N~.......~......:...i... |
| 42a0 | cd 7f 05 00 6d 00 00 00 37 80 05 00 db 00 00 00 a5 80 05 00 74 01 00 00 81 81 05 00 55 00 00 00 | ....m...7...........t.......U... |
| 42c0 | f6 82 05 00 87 00 00 00 4c 83 05 00 3e 00 00 00 d4 83 05 00 d5 00 00 00 13 84 05 00 91 00 00 00 | ........L...>................... |
| 42e0 | e9 84 05 00 bf 00 00 00 7b 85 05 00 37 01 00 00 3b 86 05 00 55 01 00 00 73 87 05 00 55 00 00 00 | ........{...7...;...U...s...U... |
| 4300 | c9 88 05 00 2c 00 00 00 1f 89 05 00 21 00 00 00 4c 89 05 00 9d 00 00 00 6e 89 05 00 1e 00 00 00 | ....,.......!...L.......n....... |
| 4320 | 0c 8a 05 00 09 00 00 00 2b 8a 05 00 34 00 00 00 35 8a 05 00 1a 00 00 00 6a 8a 05 00 b7 00 00 00 | ........+...4...5.......j....... |
| 4340 | 85 8a 05 00 40 00 00 00 3d 8b 05 00 31 00 00 00 7e 8b 05 00 80 00 00 00 b0 8b 05 00 43 00 00 00 | ....@...=...1...~...........C... |
| 4360 | 31 8c 05 00 38 00 00 00 75 8c 05 00 2c 00 00 00 ae 8c 05 00 9f 00 00 00 db 8c 05 00 58 01 00 00 | 1...8...u...,...............X... |
| 4380 | 7b 8d 05 00 7e 00 00 00 d4 8e 05 00 a3 00 00 00 53 8f 05 00 a4 00 00 00 f7 8f 05 00 55 00 00 00 | {...~...........S...........U... |
| 43a0 | 9c 90 05 00 3a 00 00 00 f2 90 05 00 39 00 00 00 2d 91 05 00 70 00 00 00 67 91 05 00 70 00 00 00 | ....:.......9...-...p...g...p... |
| 43c0 | d8 91 05 00 4e 00 00 00 49 92 05 00 3b 00 00 00 98 92 05 00 6b 01 00 00 d4 92 05 00 4a 00 00 00 | ....N...I...;.......k.......J... |
| 43e0 | 40 94 05 00 b5 00 00 00 8b 94 05 00 71 00 00 00 41 95 05 00 c2 00 00 00 b3 95 05 00 67 00 00 00 | @...........q...A...........g... |
| 4400 | 76 96 05 00 70 00 00 00 de 96 05 00 dd 00 00 00 4f 97 05 00 dc 00 00 00 2d 98 05 00 4a 00 00 00 | v...p...........O.......-...J... |
| 4420 | 0a 99 05 00 4b 00 00 00 55 99 05 00 4d 00 00 00 a1 99 05 00 32 00 00 00 ef 99 05 00 6f 00 00 00 | ....K...U...M.......2.......o... |
| 4440 | 22 9a 05 00 68 00 00 00 92 9a 05 00 e3 00 00 00 fb 9a 05 00 01 03 00 00 df 9b 05 00 2c 00 00 00 | "...h.......................,... |
| 4460 | e1 9e 05 00 bc 01 00 00 0e 9f 05 00 da 00 00 00 cb a0 05 00 8e 00 00 00 a6 a1 05 00 d0 00 00 00 | ................................ |
| 4480 | 35 a2 05 00 81 00 00 00 06 a3 05 00 b0 01 00 00 88 a3 05 00 94 00 00 00 39 a5 05 00 f7 00 00 00 | 5.......................9....... |
| 44a0 | ce a5 05 00 49 00 00 00 c6 a6 05 00 56 02 00 00 10 a7 05 00 85 00 00 00 67 a9 05 00 08 01 00 00 | ....I.......V...........g....... |
| 44c0 | ed a9 05 00 1d 02 00 00 f6 aa 05 00 c5 00 00 00 14 ad 05 00 5d 00 00 00 da ad 05 00 5b 00 00 00 | ....................].......[... |
| 44e0 | 38 ae 05 00 46 00 00 00 94 ae 05 00 5b 00 00 00 db ae 05 00 b4 00 00 00 37 af 05 00 33 00 00 00 | 8...F.......[...........7...3... |
| 4500 | ec af 05 00 60 00 00 00 20 b0 05 00 fe 00 00 00 81 b0 05 00 61 00 00 00 80 b1 05 00 9d 00 00 00 | ....`...............a........... |
| 4520 | e2 b1 05 00 23 01 00 00 80 b2 05 00 9c 00 00 00 a4 b3 05 00 13 01 00 00 41 b4 05 00 bb 00 00 00 | ....#...................A....... |
| 4540 | 55 b5 05 00 3d 00 00 00 11 b6 05 00 c2 00 00 00 4f b6 05 00 db 00 00 00 12 b7 05 00 d2 00 00 00 | U...=...........O............... |
| 4560 | ee b7 05 00 77 00 00 00 c1 b8 05 00 08 01 00 00 39 b9 05 00 96 00 00 00 42 ba 05 00 2e 01 00 00 | ....w...........9.......B....... |
| 4580 | d9 ba 05 00 68 00 00 00 08 bc 05 00 3c 00 00 00 71 bc 05 00 45 01 00 00 ae bc 05 00 c1 01 00 00 | ....h.......<...q...E........... |
| 45a0 | f4 bd 05 00 4e 00 00 00 b6 bf 05 00 62 00 00 00 05 c0 05 00 ae 00 00 00 68 c0 05 00 dd 00 00 00 | ....N.......b...........h....... |
| 45c0 | 17 c1 05 00 77 00 00 00 f5 c1 05 00 b7 00 00 00 6d c2 05 00 a2 00 00 00 25 c3 05 00 bb 00 00 00 | ....w...........m.......%....... |
| 45e0 | c8 c3 05 00 5c 00 00 00 84 c4 05 00 85 00 00 00 e1 c4 05 00 6a 01 00 00 67 c5 05 00 62 00 00 00 | ....\...............j...g...b... |
| 4600 | d2 c6 05 00 c3 00 00 00 35 c7 05 00 11 00 00 00 f9 c7 05 00 ba 00 00 00 0b c8 05 00 bb 00 00 00 | ........5....................... |
| 4620 | c6 c8 05 00 ba 00 00 00 82 c9 05 00 bb 00 00 00 3d ca 05 00 bc 00 00 00 f9 ca 05 00 bd 00 00 00 | ................=............... |
| 4640 | b6 cb 05 00 6e 00 00 00 74 cc 05 00 6f 00 00 00 e3 cc 05 00 a0 00 00 00 53 cd 05 00 bb 00 00 00 | ....n...t...o...........S....... |
| 4660 | f4 cd 05 00 bb 00 00 00 b0 ce 05 00 be 00 00 00 6c cf 05 00 6f 00 00 00 2b d0 05 00 a4 00 00 00 | ................l...o...+....... |
| 4680 | 9b d0 05 00 42 00 00 00 40 d1 05 00 d2 00 00 00 83 d1 05 00 1d 01 00 00 56 d2 05 00 9b 01 00 00 | ....B...@...............V....... |
| 46a0 | 74 d3 05 00 9b 01 00 00 10 d5 05 00 6b 00 00 00 ac d6 05 00 98 00 00 00 18 d7 05 00 4a 00 00 00 | t...........k...............J... |
| 46c0 | b1 d7 05 00 0a 00 00 00 fc d7 05 00 18 00 00 00 07 d8 05 00 3e 00 00 00 20 d8 05 00 67 01 00 00 | ....................>.......g... |
| 46e0 | 5f d8 05 00 0d 00 00 00 c7 d9 05 00 16 00 00 00 d5 d9 05 00 23 00 00 00 ec d9 05 00 0d 00 00 00 | _...................#........... |
| 4700 | 10 da 05 00 58 00 00 00 1e da 05 00 67 00 00 00 77 da 05 00 ef 00 00 00 df da 05 00 6e 00 00 00 | ....X.......g...w...........n... |
| 4720 | cf db 05 00 4c 00 00 00 3e dc 05 00 98 00 00 00 8b dc 05 00 0b 00 00 00 24 dd 05 00 0b 00 00 00 | ....L...>...............$....... |
| 4740 | 30 dd 05 00 4c 00 00 00 3c dd 05 00 2f 00 00 00 89 dd 05 00 17 00 00 00 b9 dd 05 00 10 00 00 00 | 0...L...<.../................... |
| 4760 | d1 dd 05 00 10 00 00 00 e2 dd 05 00 90 00 00 00 f3 dd 05 00 17 00 00 00 84 de 05 00 37 00 00 00 | ............................7... |
| 4780 | 9c de 05 00 36 00 00 00 d4 de 05 00 1b 00 00 00 0b df 05 00 2f 00 00 00 27 df 05 00 97 00 00 00 | ....6.............../...'....... |
| 47a0 | 57 df 05 00 10 00 00 00 ef df 05 00 0a 00 00 00 00 e0 05 00 18 00 00 00 0b e0 05 00 72 01 00 00 | W...........................r... |
| 47c0 | 24 e0 05 00 40 00 00 00 97 e1 05 00 7f 01 00 00 d8 e1 05 00 c0 00 00 00 58 e3 05 00 48 01 00 00 | $...@...................X...H... |
| 47e0 | 19 e4 05 00 54 01 00 00 62 e5 05 00 9e 01 00 00 b7 e6 05 00 14 00 00 00 56 e8 05 00 08 00 00 00 | ....T...b...............V....... |
| 4800 | 6b e8 05 00 77 00 00 00 74 e8 05 00 18 00 00 00 ec e8 05 00 31 00 00 00 05 e9 05 00 8f 01 00 00 | k...w...t...........1........... |
| 4820 | 37 e9 05 00 19 02 00 00 c7 ea 05 00 f7 00 00 00 e1 ec 05 00 e9 00 00 00 d9 ed 05 00 89 00 00 00 | 7............................... |
| 4840 | c3 ee 05 00 4c 00 00 00 4d ef 05 00 38 00 00 00 9a ef 05 00 8f 00 00 00 d3 ef 05 00 37 00 00 00 | ....L...M...8...............7... |
| 4860 | 63 f0 05 00 1b 00 00 00 9b f0 05 00 1c 00 00 00 b7 f0 05 00 25 01 00 00 d4 f0 05 00 cb 00 00 00 | c...................%........... |
| 4880 | fa f1 05 00 db 00 00 00 c6 f2 05 00 d7 00 00 00 a2 f3 05 00 a5 00 00 00 7a f4 05 00 93 00 00 00 | ........................z....... |
| 48a0 | 20 f5 05 00 e3 00 00 00 b4 f5 05 00 02 02 00 00 98 f6 05 00 c4 00 00 00 9b f8 05 00 a6 00 00 00 | ................................ |
| 48c0 | 60 f9 05 00 e6 00 00 00 07 fa 05 00 e5 00 00 00 ee fa 05 00 4f 00 00 00 d4 fb 05 00 a4 00 00 00 | `...................O........... |
| 48e0 | 24 fc 05 00 28 01 00 00 c9 fc 05 00 9d 00 00 00 f2 fd 05 00 3b 00 00 00 90 fe 05 00 4a 00 00 00 | $...(...............;.......J... |
| 4900 | cc fe 05 00 81 00 00 00 17 ff 05 00 68 00 00 00 99 ff 05 00 71 00 00 00 02 00 06 00 49 00 00 00 | ............h.......q.......I... |
| 4920 | 74 00 06 00 36 00 00 00 be 00 06 00 11 00 00 00 f5 00 06 00 06 00 00 00 07 01 06 00 8f 00 00 00 | t...6........................... |
| 4940 | 0e 01 06 00 0f 00 00 00 9e 01 06 00 18 00 00 00 ae 01 06 00 0e 00 00 00 c7 01 06 00 0e 00 00 00 | ................................ |
| 4960 | d6 01 06 00 0f 00 00 00 e5 01 06 00 0b 00 00 00 f5 01 06 00 6c 01 00 00 01 02 06 00 3a 01 00 00 | ....................l.......:... |
| 4980 | 6e 03 06 00 0f 00 00 00 a9 04 06 00 0f 00 00 00 b9 04 06 00 08 00 00 00 c9 04 06 00 07 00 00 00 | n............................... |
| 49a0 | d2 04 06 00 0c 00 00 00 da 04 06 00 04 00 00 00 e7 04 06 00 0f 00 00 00 ec 04 06 00 06 00 00 00 | ................................ |
| 49c0 | fc 04 06 00 ff 00 00 00 03 05 06 00 23 00 00 00 03 06 06 00 23 00 00 00 27 06 06 00 0e 00 00 00 | ............#.......#...'....... |
| 49e0 | 4b 06 06 00 07 00 00 00 5a 06 06 00 0a 00 00 00 62 06 06 00 04 00 00 00 6d 06 06 00 36 00 00 00 | K.......Z.......b.......m...6... |
| 4a00 | 72 06 06 00 b5 00 00 00 a9 06 06 00 04 00 00 00 5f 07 06 00 f5 00 00 00 64 07 06 00 19 00 00 00 | r..............._.......d....... |
| 4a20 | 5a 08 06 00 42 00 00 00 74 08 06 00 1b 00 00 00 b7 08 06 00 36 00 00 00 d3 08 06 00 50 00 00 00 | Z...B...t...........6.......P... |
| 4a40 | 0a 09 06 00 34 01 00 00 5b 09 06 00 3e 00 00 00 90 0a 06 00 29 00 00 00 cf 0a 06 00 0f 00 00 00 | ....4...[...>.......)........... |
| 4a60 | f9 0a 06 00 33 00 00 00 09 0b 06 00 14 02 00 00 3d 0b 06 00 15 02 00 00 52 0d 06 00 40 00 00 00 | ....3...........=.......R...@... |
| 4a80 | 68 0f 06 00 3d 00 00 00 a9 0f 06 00 07 01 00 00 e7 0f 06 00 23 00 00 00 ef 10 06 00 11 00 00 00 | h...=...............#........... |
| 4aa0 | 13 11 06 00 3f 00 00 00 25 11 06 00 20 00 00 00 65 11 06 00 6f 00 00 00 86 11 06 00 78 00 00 00 | ....?...%.......e...o.......x... |
| 4ac0 | f6 11 06 00 3d 00 00 00 6f 12 06 00 68 00 00 00 ad 12 06 00 6b 00 00 00 16 13 06 00 23 00 00 00 | ....=...o...h.......k.......#... |
| 4ae0 | 82 13 06 00 07 00 00 00 a6 13 06 00 7d 00 00 00 ae 13 06 00 06 00 00 00 2c 14 06 00 16 00 00 00 | ............}...........,....... |
| 4b00 | 33 14 06 00 36 00 00 00 4a 14 06 00 35 00 00 00 81 14 06 00 10 00 00 00 b7 14 06 00 69 02 00 00 | 3...6...J...5...............i... |
| 4b20 | c8 14 06 00 1b 00 00 00 32 17 06 00 52 01 00 00 4e 17 06 00 4a 00 00 00 a1 18 06 00 e8 01 00 00 | ........2...R...N...J........... |
| 4b40 | ec 18 06 00 9d 01 00 00 d5 1a 06 00 cb 02 00 00 73 1c 06 00 d7 00 00 00 3f 1f 06 00 1e 00 00 00 | ................s.......?....... |
| 4b60 | 17 20 06 00 2f 00 00 00 36 20 06 00 21 00 00 00 66 20 06 00 0c 00 00 00 88 20 06 00 0e 00 00 00 | ..../...6...!...f............... |
| 4b80 | 95 20 06 00 24 00 00 00 a4 20 06 00 0e 00 00 00 c9 20 06 00 59 00 00 00 d8 20 06 00 59 00 00 00 | ....$...............Y.......Y... |
| 4ba0 | 32 21 06 00 22 00 00 00 8c 21 06 00 05 00 00 00 af 21 06 00 20 00 00 00 b5 21 06 00 14 00 00 00 | 2!.."....!.......!.......!...... |
| 4bc0 | d6 21 06 00 3c 00 00 00 eb 21 06 00 42 00 00 00 28 22 06 00 1f 00 00 00 6b 22 06 00 2e 00 00 00 | .!..<....!..B...("......k"...... |
| 4be0 | 8b 22 06 00 10 00 00 00 ba 22 06 00 10 00 00 00 cb 22 06 00 12 00 00 00 dc 22 06 00 12 00 00 00 | ."......."......."......."...... |
| 4c00 | ef 22 06 00 2e 00 00 00 02 23 06 00 3c 00 00 00 31 23 06 00 3b 00 00 00 6e 23 06 00 0b 00 00 00 | .".......#..<...1#..;...n#...... |
| 4c20 | aa 23 06 00 38 00 00 00 b6 23 06 00 2c 00 00 00 ef 23 06 00 09 00 00 00 1c 24 06 00 09 00 00 00 | .#..8....#..,....#.......$...... |
| 4c40 | 26 24 06 00 1f 00 00 00 30 24 06 00 0e 00 00 00 50 24 06 00 63 00 00 00 5f 24 06 00 9c 00 00 00 | &$......0$......P$..c..._$...... |
| 4c60 | c3 24 06 00 ab 00 00 00 60 25 06 00 eb 00 00 00 0c 26 06 00 30 00 00 00 f8 26 06 00 2c 00 00 00 | .$......`%.......&..0....&..,... |
| 4c80 | 29 27 06 00 07 00 00 00 56 27 06 00 63 00 00 00 5e 27 06 00 0c 01 00 00 c2 27 06 00 0c 00 00 00 | )'......V'..c...^'.......'...... |
| 4ca0 | cf 28 06 00 0c 00 00 00 dc 28 06 00 15 00 00 00 e9 28 06 00 04 00 00 00 ff 28 06 00 19 00 00 00 | .(.......(.......(.......(...... |
| 4cc0 | 04 29 06 00 08 00 00 00 1e 29 06 00 8c 00 00 00 27 29 06 00 03 00 00 00 b4 29 06 00 0a 00 00 00 | .).......)......').......)...... |
| 4ce0 | b8 29 06 00 35 00 00 00 c3 29 06 00 13 00 00 00 f9 29 06 00 19 00 00 00 0d 2a 06 00 06 00 00 00 | .)..5....).......).......*...... |
| 4d00 | 27 2a 06 00 3b 02 00 00 2e 2a 06 00 5f 01 00 00 6a 2c 06 00 85 00 00 00 ca 2d 06 00 0e 00 00 00 | '*..;....*.._...j,.......-...... |
| 4d20 | 50 2e 06 00 0f 00 00 00 5f 2e 06 00 09 00 00 00 6f 2e 06 00 10 00 00 00 79 2e 06 00 35 00 00 00 | P......._.......o.......y...5... |
| 4d40 | 8a 2e 06 00 04 00 00 00 c0 2e 06 00 e8 01 00 00 c5 2e 06 00 5f 00 00 00 ae 30 06 00 61 00 00 00 | ...................._....0..a... |
| 4d60 | 0e 31 06 00 03 00 00 00 70 31 06 00 0b 00 00 00 74 31 06 00 4c 00 00 00 80 31 06 00 2f 00 00 00 | .1......p1......t1..L....1../... |
| 4d80 | cd 31 06 00 1d 00 00 00 fd 31 06 00 10 00 00 00 1b 32 06 00 3d 00 00 00 2c 32 06 00 4d 00 00 00 | .1.......1.......2..=...,2..M... |
| 4da0 | 6a 32 06 00 38 00 00 00 b8 32 06 00 10 00 00 00 f1 32 06 00 0f 00 00 00 02 33 06 00 3b 00 00 00 | j2..8....2.......2.......3..;... |
| 4dc0 | 12 33 06 00 12 00 00 00 4e 33 06 00 1d 00 00 00 61 33 06 00 44 00 00 00 7f 33 06 00 51 00 00 00 | .3......N3......a3..D....3..Q... |
| 4de0 | c4 33 06 00 41 00 00 00 16 34 06 00 6a 00 00 00 58 34 06 00 66 00 00 00 c3 34 06 00 1c 00 00 00 | .3..A....4..j...X4..f....4...... |
| 4e00 | 2a 35 06 00 8d 00 00 00 47 35 06 00 d1 00 00 00 d5 35 06 00 1d 00 00 00 a7 36 06 00 e3 00 00 00 | *5......G5.......5.......6...... |
| 4e20 | c5 36 06 00 e4 00 00 00 a9 37 06 00 24 00 00 00 8e 38 06 00 38 00 00 00 b3 38 06 00 52 00 00 00 | .6.......7..$....8..8....8..R... |
| 4e40 | ec 38 06 00 1f 00 00 00 3f 39 06 00 8d 00 00 00 5f 39 06 00 5a 00 00 00 ed 39 06 00 1a 00 00 00 | .8......?9......_9..Z....9...... |
| 4e60 | 48 3a 06 00 21 00 00 00 63 3a 06 00 1d 00 00 00 85 3a 06 00 22 00 00 00 a3 3a 06 00 70 00 00 00 | H:..!...c:.......:.."....:..p... |
| 4e80 | c6 3a 06 00 67 00 00 00 37 3b 06 00 72 00 00 00 9f 3b 06 00 69 00 00 00 12 3c 06 00 29 00 00 00 | .:..g...7;..r....;..i....<..)... |
| 4ea0 | 7c 3c 06 00 77 00 00 00 a6 3c 06 00 73 00 00 00 1e 3d 06 00 90 00 00 00 92 3d 06 00 91 00 00 00 | |<..w....<..s....=.......=...... |
| 4ec0 | 23 3e 06 00 53 00 00 00 b5 3e 06 00 b6 00 00 00 09 3f 06 00 b8 00 00 00 c0 3f 06 00 bd 00 00 00 | #>..S....>.......?.......?...... |
| 4ee0 | 79 40 06 00 5c 00 00 00 37 41 06 00 1e 00 00 00 94 41 06 00 15 00 00 00 b3 41 06 00 25 00 00 00 | y@..\...7A.......A.......A..%... |
| 4f00 | c9 41 06 00 91 00 00 00 ef 41 06 00 92 00 00 00 81 42 06 00 97 00 00 00 14 43 06 00 54 00 00 00 | .A.......A.......B.......C..T... |
| 4f20 | ac 43 06 00 b7 00 00 00 01 44 06 00 b9 00 00 00 b9 44 06 00 be 00 00 00 73 45 06 00 60 00 00 00 | .C.......D.......D......sE..`... |
| 4f40 | 32 46 06 00 24 00 00 00 93 46 06 00 cc 00 00 00 b8 46 06 00 25 00 00 00 85 47 06 00 95 00 00 00 | 2F..$....F.......F..%....G...... |
| 4f60 | ab 47 06 00 46 00 00 00 41 48 06 00 2f 00 00 00 88 48 06 00 9a 00 00 00 b8 48 06 00 61 00 00 00 | .G..F...AH../....H.......H..a... |
| 4f80 | 53 49 06 00 48 00 00 00 b5 49 06 00 5b 00 00 00 fe 49 06 00 1f 00 00 00 5a 4a 06 00 30 00 00 00 | SI..H....I..[....I......ZJ..0... |
| 4fa0 | 7a 4a 06 00 3b 00 00 00 ab 4a 06 00 25 00 00 00 e7 4a 06 00 28 00 00 00 0d 4b 06 00 2e 00 00 00 | zJ..;....J..%....J..(....K...... |
| 4fc0 | 36 4b 06 00 9e 00 00 00 65 4b 06 00 3e 00 00 00 04 4c 06 00 11 00 00 00 43 4c 06 00 19 00 00 00 | 6K......eK..>....L......CL...... |
| 4fe0 | 55 4c 06 00 7a 00 00 00 6f 4c 06 00 17 00 00 00 ea 4c 06 00 13 00 00 00 02 4d 06 00 7e 00 00 00 | UL..z...oL.......L.......M..~... |
| 5000 | 16 4d 06 00 81 00 00 00 95 4d 06 00 7d 00 00 00 17 4e 06 00 83 00 00 00 95 4e 06 00 11 00 00 00 | .M.......M..}....N.......N...... |
| 5020 | 19 4f 06 00 10 00 00 00 2b 4f 06 00 33 00 00 00 3c 4f 06 00 33 00 00 00 70 4f 06 00 33 00 00 00 | .O......+O..3...<O..3...pO..3... |
| 5040 | a4 4f 06 00 33 00 00 00 d8 4f 06 00 35 00 00 00 0c 50 06 00 6a 00 00 00 42 50 06 00 22 00 00 00 | .O..3....O..5....P..j...BP.."... |
| 5060 | ad 50 06 00 1e 01 00 00 d0 50 06 00 33 00 00 00 ef 51 06 00 dd 00 00 00 23 52 06 00 17 01 00 00 | .P.......P..3....Q......#R...... |
| 5080 | 01 53 06 00 49 00 00 00 19 54 06 00 06 00 00 00 63 54 06 00 11 00 00 00 6a 54 06 00 38 00 00 00 | .S..I....T......cT......jT..8... |
| 50a0 | 7c 54 06 00 28 00 00 00 b5 54 06 00 24 00 00 00 de 54 06 00 17 00 00 00 03 55 06 00 9d 00 00 00 | |T..(....T..$....T.......U...... |
| 50c0 | 1b 55 06 00 37 00 00 00 b9 55 06 00 8a 00 00 00 f1 55 06 00 89 00 00 00 7c 56 06 00 5c 00 00 00 | .U..7....U.......U......|V..\... |
| 50e0 | 06 57 06 00 cd 01 00 00 63 57 06 00 c2 00 00 00 31 59 06 00 65 00 00 00 f4 59 06 00 3f 00 00 00 | .W......cW......1Y..e....Y..?... |
| 5100 | 5a 5a 06 00 43 00 00 00 9a 5a 06 00 0a 00 00 00 de 5a 06 00 b3 00 00 00 e9 5a 06 00 8c 00 00 00 | ZZ..C....Z.......Z.......Z...... |
| 5120 | 9d 5b 06 00 e8 00 00 00 2a 5c 06 00 21 00 00 00 13 5d 06 00 05 00 00 00 35 5d 06 00 89 01 00 00 | .[......*\..!....]......5]...... |
| 5140 | 3b 5d 06 00 8d 01 00 00 c5 5e 06 00 1b 00 00 00 53 60 06 00 ae 01 00 00 6f 60 06 00 27 00 00 00 | ;].......^......S`......o`..'... |
| 5160 | 1e 62 06 00 09 00 00 00 46 62 06 00 fc 00 00 00 50 62 06 00 79 01 00 00 4d 63 06 00 0f 00 00 00 | .b......Fb......Pb..y...Mc...... |
| 5180 | c7 64 06 00 6c 00 00 00 d7 64 06 00 70 00 00 00 44 65 06 00 35 00 00 00 b5 65 06 00 d4 00 00 00 | .d..l....d..p...De..5....e...... |
| 51a0 | eb 65 06 00 d4 00 00 00 c0 66 06 00 f4 00 00 00 95 67 06 00 24 00 00 00 8a 68 06 00 6f 00 00 00 | .e.......f.......g..$....h..o... |
| 51c0 | af 68 06 00 10 00 00 00 1f 69 06 00 c6 00 00 00 30 69 06 00 30 00 00 00 f7 69 06 00 30 00 00 00 | .h.......i......0i..0....i..0... |
| 51e0 | 28 6a 06 00 a3 00 00 00 59 6a 06 00 a4 00 00 00 fd 6a 06 00 1b 00 00 00 a2 6b 06 00 25 00 00 00 | (j......Yj.......j.......k..%... |
| 5200 | be 6b 06 00 38 00 00 00 e4 6b 06 00 22 00 00 00 1d 6c 06 00 65 00 00 00 40 6c 06 00 80 00 00 00 | .k..8....k.."....l..e...@l...... |
| 5220 | a6 6c 06 00 74 00 00 00 27 6d 06 00 6a 00 00 00 9c 6d 06 00 a9 00 00 00 07 6e 06 00 01 00 00 00 | .l..t...'m..j....m.......n...... |
| 5240 | b1 6e 06 00 03 00 00 00 b3 6e 06 00 1f 00 00 00 b7 6e 06 00 11 00 00 00 d7 6e 06 00 10 00 00 00 | .n.......n.......n.......n...... |
| 5260 | e9 6e 06 00 37 01 00 00 fa 6e 06 00 0b 00 00 00 32 70 06 00 0e 00 00 00 3e 70 06 00 17 00 00 00 | .n..7....n......2p......>p...... |
| 5280 | 4d 70 06 00 22 00 00 00 65 70 06 00 05 00 00 00 88 70 06 00 05 00 00 00 8e 70 06 00 1b 00 00 00 | Mp.."...ep.......p.......p...... |
| 52a0 | 94 70 06 00 40 00 00 00 b0 70 06 00 1b 00 00 00 f1 70 06 00 0c 00 00 00 0d 71 06 00 eb 00 00 00 | .p..@....p.......p.......q...... |
| 52c0 | 1a 71 06 00 03 00 00 00 06 72 06 00 41 02 00 00 0a 72 06 00 ad 00 00 00 4c 74 06 00 1d 01 00 00 | .q.......r..A....r......Lt...... |
| 52e0 | fa 74 06 00 0d 00 00 00 18 76 06 00 91 00 00 00 26 76 06 00 0b 00 00 00 b8 76 06 00 34 00 00 00 | .t.......v......&v.......v..4... |
| 5300 | c4 76 06 00 25 00 00 00 f9 76 06 00 16 00 00 00 1f 77 06 00 40 00 00 00 36 77 06 00 23 00 00 00 | .v..%....v.......w..@...6w..#... |
| 5320 | 77 77 06 00 1f 00 00 00 9b 77 06 00 07 00 00 00 bb 77 06 00 0f 00 00 00 c3 77 06 00 4b 00 00 00 | ww.......w.......w.......w..K... |
| 5340 | d3 77 06 00 ab 01 00 00 1f 78 06 00 a3 00 00 00 cb 79 06 00 13 00 00 00 6f 7a 06 00 0f 00 00 00 | .w.......x.......y......oz...... |
| 5360 | 83 7a 06 00 1c 00 00 00 93 7a 06 00 18 00 00 00 b0 7a 06 00 23 00 00 00 c9 7a 06 00 0f 00 00 00 | .z.......z.......z..#....z...... |
| 5380 | ed 7a 06 00 10 00 00 00 fd 7a 06 00 0e 00 00 00 0e 7b 06 00 25 00 00 00 1d 7b 06 00 1a 00 00 00 | .z.......z.......{..%....{...... |
| 53a0 | 43 7b 06 00 1d 00 00 00 5e 7b 06 00 18 00 00 00 7c 7b 06 00 45 00 00 00 95 7b 06 00 16 00 00 00 | C{......^{......|{..E....{...... |
| 53c0 | db 7b 06 00 43 00 00 00 f2 7b 06 00 25 00 00 00 36 7c 06 00 38 00 00 00 5c 7c 06 00 36 00 00 00 | .{..C....{..%...6|..8...\|..6... |
| 53e0 | 95 7c 06 00 20 00 00 00 cc 7c 06 00 13 00 00 00 ed 7c 06 00 1e 00 00 00 01 7d 06 00 15 00 00 00 | .|.......|.......|.......}...... |
| 5400 | 20 7d 06 00 10 00 00 00 36 7d 06 00 ec 00 00 00 47 7d 06 00 eb 00 00 00 34 7e 06 00 ba 00 00 00 | .}......6}......G}......4~...... |
| 5420 | 20 7f 06 00 ba 00 00 00 db 7f 06 00 25 00 00 00 96 80 06 00 89 00 00 00 bc 80 06 00 13 00 00 00 | ............%................... |
| 5440 | 46 81 06 00 1a 00 00 00 5a 81 06 00 3a 00 00 00 75 81 06 00 81 01 00 00 b0 81 06 00 47 00 00 00 | F.......Z...:...u...........G... |
| 5460 | 32 83 06 00 74 00 00 00 7a 83 06 00 3a 00 00 00 ef 83 06 00 9d 00 00 00 2a 84 06 00 7b 01 00 00 | 2...t...z...:...........*...{... |
| 5480 | c8 84 06 00 61 00 00 00 44 86 06 00 6c 00 00 00 a6 86 06 00 06 00 00 00 13 87 06 00 47 00 00 00 | ....a...D...l...............G... |
| 54a0 | 1a 87 06 00 44 00 00 00 62 87 06 00 50 00 00 00 a7 87 06 00 4c 00 00 00 f8 87 06 00 37 00 00 00 | ....D...b...P.......L.......7... |
| 54c0 | 45 88 06 00 07 01 00 00 7d 88 06 00 57 00 00 00 85 89 06 00 31 00 00 00 dd 89 06 00 5b 00 00 00 | E.......}...W.......1.......[... |
| 54e0 | 0f 8a 06 00 1f 00 00 00 6b 8a 06 00 62 00 00 00 8b 8a 06 00 2b 00 00 00 ee 8a 06 00 04 00 00 00 | ........k...b.......+........... |
| 5500 | 1a 8b 06 00 16 00 00 00 1f 8b 06 00 37 00 00 00 36 8b 06 00 38 01 00 00 6e 8b 06 00 0d 00 00 00 | ............7...6...8...n....... |
| 5520 | a7 8c 06 00 0d 00 00 00 b5 8c 06 00 12 00 00 00 c3 8c 06 00 0a 00 00 00 d6 8c 06 00 4e 00 00 00 | ............................N... |
| 5540 | e1 8c 06 00 08 01 00 00 30 8d 06 00 24 01 00 00 39 8e 06 00 15 00 00 00 5e 8f 06 00 9c 01 00 00 | ........0...$...9.......^....... |
| 5560 | 74 8f 06 00 5c 00 00 00 11 91 06 00 a4 00 00 00 6e 91 06 00 16 00 00 00 13 92 06 00 8a 02 00 00 | t...\...........n............... |
| 5580 | 2a 92 06 00 1d 00 00 00 b5 94 06 00 0c 00 00 00 d3 94 06 00 1f 00 00 00 e0 94 06 00 43 00 00 00 | *...........................C... |
| 55a0 | 00 95 06 00 0d 00 00 00 44 95 06 00 c1 00 00 00 52 95 06 00 77 00 00 00 14 96 06 00 69 00 00 00 | ........D.......R...w.......i... |
| 55c0 | 8c 96 06 00 62 00 00 00 f6 96 06 00 76 00 00 00 59 97 06 00 0e 01 00 00 d0 97 06 00 cb 00 00 00 | ....b.......v...Y............... |
| 55e0 | df 98 06 00 19 01 00 00 ab 99 06 00 43 00 00 00 c5 9a 06 00 03 01 00 00 09 9b 06 00 ab 00 00 00 | ............C................... |
| 5600 | 0d 9c 06 00 7b 00 00 00 b9 9c 06 00 9a 00 00 00 35 9d 06 00 a6 00 00 00 d0 9d 06 00 6e 01 00 00 | ....{...........5...........n... |
| 5620 | 77 9e 06 00 17 01 00 00 e6 9f 06 00 6f 00 00 00 fe a0 06 00 7b 00 00 00 6e a1 06 00 7d 00 00 00 | w...........o.......{...n...}... |
| 5640 | ea a1 06 00 12 01 00 00 68 a2 06 00 e6 00 00 00 7b a3 06 00 b6 00 00 00 62 a4 06 00 3c 01 00 00 | ........h.......{.......b...<... |
| 5660 | 19 a5 06 00 b1 00 00 00 56 a6 06 00 fb 00 00 00 08 a7 06 00 20 00 00 00 04 a8 06 00 a0 01 00 00 | ........V....................... |
| 5680 | 25 a8 06 00 53 00 00 00 c6 a9 06 00 39 00 00 00 1a aa 06 00 28 00 00 00 54 aa 06 00 4a 00 00 00 | %...S.......9.......(...T...J... |
| 56a0 | 7d aa 06 00 3b 00 00 00 c8 aa 06 00 34 00 00 00 04 ab 06 00 52 00 00 00 39 ab 06 00 53 00 00 00 | }...;.......4.......R...9...S... |
| 56c0 | 8c ab 06 00 52 00 00 00 e0 ab 06 00 80 01 00 00 33 ac 06 00 36 00 00 00 b4 ad 06 00 23 00 00 00 | ....R...........3...6.......#... |
| 56e0 | eb ad 06 00 0b 00 00 00 0f ae 06 00 ad 00 00 00 1b ae 06 00 91 00 00 00 c9 ae 06 00 1b 02 00 00 | ................................ |
| 5700 | 5b af 06 00 f1 01 00 00 77 b1 06 00 e8 01 00 00 69 b3 06 00 0a 00 00 00 52 b5 06 00 1f 00 00 00 | [.......w.......i.......R....... |
| 5720 | 5d b5 06 00 71 00 00 00 7d b5 06 00 04 01 00 00 ef b5 06 00 07 00 00 00 f4 b6 06 00 df 00 00 00 | ]...q...}....................... |
| 5740 | fc b6 06 00 4a 01 00 00 dc b7 06 00 45 01 00 00 27 b9 06 00 22 00 00 00 6d ba 06 00 79 01 00 00 | ....J.......E...'..."...m...y... |
| 5760 | 90 ba 06 00 0c 00 00 00 0a bc 06 00 a6 00 00 00 17 bc 06 00 e9 00 00 00 be bc 06 00 83 00 00 00 | ................................ |
| 5780 | a8 bd 06 00 19 00 00 00 2c be 06 00 0f 00 00 00 46 be 06 00 09 00 00 00 56 be 06 00 12 00 00 00 | ........,.......F.......V....... |
| 57a0 | 60 be 06 00 0e 00 00 00 73 be 06 00 12 00 00 00 82 be 06 00 21 00 00 00 95 be 06 00 0e 00 00 00 | `.......s...........!........... |
| 57c0 | b7 be 06 00 17 00 00 00 c6 be 06 00 14 00 00 00 de be 06 00 19 00 00 00 f3 be 06 00 14 00 00 00 | ................................ |
| 57e0 | 0d bf 06 00 06 00 00 00 22 bf 06 00 13 00 00 00 29 bf 06 00 12 00 00 00 3d bf 06 00 0d 00 00 00 | ........".......).......=....... |
| 5800 | 50 bf 06 00 6a 00 00 00 5e bf 06 00 17 00 00 00 c9 bf 06 00 2e 00 00 00 e1 bf 06 00 2d 00 00 00 | P...j...^...................-... |
| 5820 | 10 c0 06 00 08 00 00 00 3e c0 06 00 16 00 00 00 47 c0 06 00 ea 00 00 00 5e c0 06 00 59 00 00 00 | ........>.......G.......^...Y... |
| 5840 | 49 c1 06 00 19 00 00 00 a3 c1 06 00 7e 00 00 00 bd c1 06 00 07 00 00 00 3c c2 06 00 2a 00 00 00 | I...........~...........<...*... |
| 5860 | 44 c2 06 00 4f 00 00 00 6f c2 06 00 17 00 00 00 bf c2 06 00 3b 00 00 00 d7 c2 06 00 60 00 00 00 | D...O...o...........;.......`... |
| 5880 | 13 c3 06 00 87 01 00 00 74 c3 06 00 6e 00 00 00 fc c4 06 00 24 00 00 00 6b c5 06 00 54 00 00 00 | ........t...n.......$...k...T... |
| 58a0 | 90 c5 06 00 a4 01 00 00 e5 c5 06 00 8f 01 00 00 8a c7 06 00 24 00 00 00 1a c9 06 00 1f 00 00 00 | ....................$........... |
| 58c0 | 3f c9 06 00 07 00 00 00 5f c9 06 00 1b 00 00 00 67 c9 06 00 08 00 00 00 83 c9 06 00 5c 00 00 00 | ?......._.......g...........\... |
| 58e0 | 8c c9 06 00 3c 00 00 00 e9 c9 06 00 3f 00 00 00 26 ca 06 00 08 00 00 00 66 ca 06 00 1b 00 00 00 | ....<.......?...&.......f....... |
| 5900 | 6f ca 06 00 bc 00 00 00 8b ca 06 00 57 00 00 00 48 cb 06 00 36 00 00 00 a0 cb 06 00 14 00 00 00 | o...........W...H...6........... |
| 5920 | d7 cb 06 00 3f 00 00 00 ec cb 06 00 3a 00 00 00 2c cc 06 00 75 00 00 00 67 cc 06 00 69 00 00 00 | ....?.......:...,...u...g...i... |
| 5940 | dd cc 06 00 32 01 00 00 47 cd 06 00 36 01 00 00 7a ce 06 00 0c 00 00 00 b1 cf 06 00 26 00 00 00 | ....2...G...6...z...........&... |
| 5960 | be cf 06 00 18 00 00 00 e5 cf 06 00 2e 00 00 00 fe cf 06 00 41 01 00 00 2d d0 06 00 03 00 00 00 | ....................A...-....... |
| 5980 | 6f d1 06 00 04 00 00 00 73 d1 06 00 14 00 00 00 78 d1 06 00 0c 00 00 00 8d d1 06 00 05 00 00 00 | o.......s.......x............... |
| 59a0 | 9a d1 06 00 0c 00 00 00 a0 d1 06 00 0d 00 00 00 ad d1 06 00 0b 00 00 00 bb d1 06 00 1c 00 00 00 | ................................ |
| 59c0 | c7 d1 06 00 14 00 00 00 e4 d1 06 00 ae 00 00 00 f9 d1 06 00 25 00 00 00 a8 d2 06 00 46 00 00 00 | ....................%.......F... |
| 59e0 | ce d2 06 00 31 01 00 00 15 d3 06 00 4f 00 00 00 47 d4 06 00 ca 00 00 00 97 d4 06 00 43 00 00 00 | ....1.......O...G...........C... |
| 5a00 | 62 d5 06 00 46 00 00 00 a6 d5 06 00 0b 00 00 00 ed d5 06 00 0b 00 00 00 f9 d5 06 00 19 00 00 00 | b...F........................... |
| 5a20 | 05 d6 06 00 0f 00 00 00 1f d6 06 00 ba 01 00 00 2f d6 06 00 6a 00 00 00 ea d7 06 00 13 00 00 00 | ................/...j........... |
| 5a40 | 55 d8 06 00 e4 00 00 00 69 d8 06 00 46 00 00 00 4e d9 06 00 88 01 00 00 95 d9 06 00 89 01 00 00 | U.......i...F...N............... |
| 5a60 | 1e db 06 00 38 00 00 00 a8 dc 06 00 0b 00 00 00 e1 dc 06 00 ce 00 00 00 ed dc 06 00 6c 00 00 00 | ....8.......................l... |
| 5a80 | bc dd 06 00 10 01 00 00 29 de 06 00 6e 00 00 00 3a df 06 00 26 00 00 00 a9 df 06 00 40 00 00 00 | ........)...n...:...&.......@... |
| 5aa0 | d0 df 06 00 a0 00 00 00 11 e0 06 00 b9 00 00 00 b2 e0 06 00 58 00 00 00 6c e1 06 00 64 00 00 00 | ....................X...l...d... |
| 5ac0 | c5 e1 06 00 39 00 00 00 2a e2 06 00 45 00 00 00 64 e2 06 00 4a 00 00 00 aa e2 06 00 4b 00 00 00 | ....9...*...E...d...J.......K... |
| 5ae0 | f5 e2 06 00 56 00 00 00 41 e3 06 00 57 00 00 00 98 e3 06 00 96 00 00 00 f0 e3 06 00 37 00 00 00 | ....V...A...W...............7... |
| 5b00 | 87 e4 06 00 8f 00 00 00 bf e4 06 00 06 00 00 00 4f e5 06 00 0f 00 00 00 56 e5 06 00 1b 00 00 00 | ................O.......V....... |
| 5b20 | 66 e5 06 00 33 00 00 00 82 e5 06 00 56 00 00 00 b6 e5 06 00 0b 00 00 00 0d e6 06 00 12 00 00 00 | f...3.......V................... |
| 5b40 | 19 e6 06 00 10 00 00 00 2c e6 06 00 38 00 00 00 3d e6 06 00 48 01 00 00 76 e6 06 00 15 00 00 00 | ........,...8...=...H...v....... |
| 5b60 | bf e7 06 00 19 00 00 00 d5 e7 06 00 33 00 00 00 ef e7 06 00 1f 00 00 00 23 e8 06 00 2e 00 00 00 | ............3...........#....... |
| 5b80 | 43 e8 06 00 93 01 00 00 72 e8 06 00 0f 00 00 00 06 ea 06 00 0a 00 00 00 16 ea 06 00 0a 00 00 00 | C.......r....................... |
| 5ba0 | 21 ea 06 00 63 00 00 00 2c ea 06 00 2f 00 00 00 90 ea 06 00 32 00 00 00 c0 ea 06 00 4c 00 00 00 | !...c...,.../.......2.......L... |
| 5bc0 | f3 ea 06 00 23 00 00 00 40 eb 06 00 64 00 00 00 64 eb 06 00 65 00 00 00 c9 eb 06 00 6e 00 00 00 | ....#...@...d...d...e.......n... |
| 5be0 | 2f ec 06 00 29 00 00 00 9e ec 06 00 dd 00 00 00 c8 ec 06 00 2d 00 00 00 a6 ed 06 00 11 00 00 00 | /...)...............-........... |
| 5c00 | d4 ed 06 00 11 00 00 00 e6 ed 06 00 12 00 00 00 f8 ed 06 00 0c 00 00 00 0b ee 06 00 30 00 00 00 | ............................0... |
| 5c20 | 18 ee 06 00 3f 00 00 00 49 ee 06 00 40 00 00 00 89 ee 06 00 04 01 00 00 ca ee 06 00 a9 00 00 00 | ....?...I...@................... |
| 5c40 | cf ef 06 00 18 00 00 00 79 f0 06 00 08 00 00 00 92 f0 06 00 46 00 00 00 9b f0 06 00 4d 00 00 00 | ........y...........F.......M... |
| 5c60 | e2 f0 06 00 1f 00 00 00 30 f1 06 00 4f 00 00 00 50 f1 06 00 3d 00 00 00 a0 f1 06 00 2e 00 00 00 | ........0...O...P...=........... |
| 5c80 | de f1 06 00 35 00 00 00 0d f2 06 00 08 00 00 00 43 f2 06 00 0e 00 00 00 4c f2 06 00 84 01 00 00 | ....5...........C.......L....... |
| 5ca0 | 5b f2 06 00 8c 00 00 00 e0 f3 06 00 fb 00 00 00 6d f4 06 00 11 00 00 00 69 f5 06 00 0e 01 00 00 | [...............m.......i....... |
| 5cc0 | 7b f5 06 00 3a 00 00 00 8a f6 06 00 09 00 00 00 c5 f6 06 00 38 00 00 00 cf f6 06 00 bd 00 00 00 | {...:...............8........... |
| 5ce0 | 08 f7 06 00 30 00 00 00 c6 f7 06 00 31 00 00 00 f7 f7 06 00 24 00 00 00 29 f8 06 00 28 00 00 00 | ....0.......1.......$...)...(... |
| 5d00 | 4e f8 06 00 23 00 00 00 77 f8 06 00 20 00 00 00 9b f8 06 00 21 00 00 00 bc f8 06 00 3a 00 00 00 | N...#...w...........!.......:... |
| 5d20 | de f8 06 00 1f 00 00 00 19 f9 06 00 32 00 00 00 39 f9 06 00 26 00 00 00 6c f9 06 00 13 00 00 00 | ............2...9...&...l....... |
| 5d40 | 93 f9 06 00 41 00 00 00 a7 f9 06 00 a0 00 00 00 e9 f9 06 00 3e 00 00 00 8a fa 06 00 1f 00 00 00 | ....A...............>........... |
| 5d60 | c9 fa 06 00 ce 00 00 00 e9 fa 06 00 4c 01 00 00 b8 fb 06 00 36 01 00 00 05 fd 06 00 21 00 00 00 | ............L.......6.......!... |
| 5d80 | 3c fe 06 00 1e 00 00 00 5e fe 06 00 0e 00 00 00 7d fe 06 00 03 00 00 00 8c fe 06 00 39 00 00 00 | <.......^.......}...........9... |
| 5da0 | 90 fe 06 00 2f 00 00 00 ca fe 06 00 b8 00 00 00 fa fe 06 00 24 00 00 00 b3 ff 06 00 49 00 00 00 | ..../...............$.......I... |
| 5dc0 | d8 ff 06 00 03 00 00 00 22 00 07 00 24 00 00 00 26 00 07 00 03 00 00 00 4b 00 07 00 06 00 00 00 | ........"...$...&.......K....... |
| 5de0 | 4f 00 07 00 0c 00 00 00 56 00 07 00 18 00 00 00 63 00 07 00 17 00 00 00 7c 00 07 00 15 00 00 00 | O.......V.......c.......|....... |
| 5e00 | 94 00 07 00 22 00 00 00 aa 00 07 00 4c 00 00 00 cd 00 07 00 45 00 00 00 1a 01 07 00 98 00 00 00 | ....".......L.......E........... |
| 5e20 | 60 01 07 00 15 00 00 00 f9 01 07 00 05 01 00 00 0f 02 07 00 73 00 00 00 15 03 07 00 8b 00 00 00 | `...................s........... |
| 5e40 | 89 03 07 00 04 00 00 00 15 04 07 00 b5 00 00 00 1a 04 07 00 53 01 00 00 d0 04 07 00 20 00 00 00 | ....................S........... |
| 5e60 | 24 06 07 00 03 00 00 00 45 06 07 00 21 00 00 00 49 06 07 00 21 00 00 00 6b 06 07 00 04 00 00 00 | $.......E...!...I...!...k....... |
| 5e80 | 8d 06 07 00 15 00 00 00 92 06 07 00 e1 00 00 00 a8 06 07 00 08 00 00 00 8a 07 07 00 0d 00 00 00 | ................................ |
| 5ea0 | 93 07 07 00 c3 00 00 00 a1 07 07 00 20 00 00 00 65 08 07 00 21 00 00 00 86 08 07 00 0c 00 00 00 | ................e...!........... |
| 5ec0 | a8 08 07 00 0a 00 00 00 b5 08 07 00 47 00 00 00 c0 08 07 00 44 00 00 00 08 09 07 00 45 00 00 00 | ............G.......D.......E... |
| 5ee0 | 4d 09 07 00 72 00 00 00 93 09 07 00 dc 00 00 00 06 0a 07 00 0e 00 00 00 e3 0a 07 00 4f 00 00 00 | M...r.......................O... |
| 5f00 | f2 0a 07 00 6a 00 00 00 42 0b 07 00 50 00 00 00 ad 0b 07 00 0e 00 00 00 fe 0b 07 00 0b 00 00 00 | ....j...B...P................... |
| 5f20 | 0d 0c 07 00 1f 00 00 00 19 0c 07 00 41 00 00 00 39 0c 07 00 13 04 00 00 7b 0c 07 00 87 00 00 00 | ............A...9.......{....... |
| 5f40 | 8f 10 07 00 25 00 00 00 17 11 07 00 0c 00 00 00 3d 11 07 00 16 00 00 00 4a 11 07 00 2f 01 00 00 | ....%...........=.......J.../... |
| 5f60 | 61 11 07 00 96 00 00 00 91 12 07 00 1e 00 00 00 28 13 07 00 1c 00 00 00 47 13 07 00 ad 01 00 00 | a...............(.......G....... |
| 5f80 | 64 13 07 00 45 00 00 00 12 15 07 00 16 00 00 00 58 15 07 00 35 00 00 00 6f 15 07 00 3b 00 00 00 | d...E...........X...5...o...;... |
| 5fa0 | a5 15 07 00 4a 00 00 00 e1 15 07 00 54 00 00 00 2c 16 07 00 73 00 00 00 81 16 07 00 4c 00 00 00 | ....J.......T...,...s.......L... |
| 5fc0 | f5 16 07 00 0d 00 00 00 42 17 07 00 23 00 00 00 50 17 07 00 23 00 00 00 74 17 07 00 21 00 00 00 | ........B...#...P...#...t...!... |
| 5fe0 | 98 17 07 00 15 00 00 00 ba 17 07 00 0b 00 00 00 d0 17 07 00 10 00 00 00 dc 17 07 00 0f 00 00 00 | ................................ |
| 6000 | ed 17 07 00 0a 00 00 00 fd 17 07 00 1e 00 00 00 08 18 07 00 0b 00 00 00 27 18 07 00 1f 00 00 00 | ........................'....... |
| 6020 | 33 18 07 00 15 00 00 00 53 18 07 00 48 00 00 00 69 18 07 00 4e 00 00 00 b2 18 07 00 0b 00 00 00 | 3.......S...H...i...N........... |
| 6040 | 01 19 07 00 3d 00 00 00 0d 19 07 00 25 00 00 00 4b 19 07 00 29 00 00 00 71 19 07 00 11 00 00 00 | ....=.......%...K...)...q....... |
| 6060 | 9b 19 07 00 76 00 00 00 ad 19 07 00 43 00 00 00 24 1a 07 00 6b 00 00 00 68 1a 07 00 0c 00 00 00 | ....v.......C...$...k...h....... |
| 6080 | d4 1a 07 00 20 00 00 00 e1 1a 07 00 0d 00 00 00 02 1b 07 00 63 00 00 00 10 1b 07 00 05 00 00 00 | ....................c........... |
| 60a0 | 74 1b 07 00 0d 00 00 00 7a 1b 07 00 6c 00 00 00 88 1b 07 00 8a 00 00 00 f5 1b 07 00 0e 00 00 00 | t.......z...l................... |
| 60c0 | 80 1c 07 00 81 00 00 00 8f 1c 07 00 07 00 00 00 11 1d 07 00 1a 00 00 00 19 1d 07 00 27 00 00 00 | ............................'... |
| 60e0 | 34 1d 07 00 19 00 00 00 5c 1d 07 00 1e 00 00 00 76 1d 07 00 17 00 00 00 95 1d 07 00 1f 00 00 00 | 4.......\.......v............... |
| 6100 | ad 1d 07 00 40 00 00 00 cd 1d 07 00 6d 00 00 00 0e 1e 07 00 58 00 00 00 7c 1e 07 00 e4 00 00 00 | ....@.......m.......X...|....... |
| 6120 | d5 1e 07 00 0c 00 00 00 ba 1f 07 00 0b 00 00 00 c7 1f 07 00 10 00 00 00 d3 1f 07 00 3d 00 00 00 | ............................=... |
| 6140 | e4 1f 07 00 39 00 00 00 22 20 07 00 40 00 00 00 5c 20 07 00 0d 00 00 00 9d 20 07 00 0b 00 00 00 | ....9..."...@...\............... |
| 6160 | ab 20 07 00 1f 00 00 00 b7 20 07 00 0f 00 00 00 d7 20 07 00 0f 00 00 00 e7 20 07 00 1d 00 00 00 | ................................ |
| 6180 | f7 20 07 00 09 00 00 00 15 21 07 00 10 00 00 00 1f 21 07 00 14 00 00 00 30 21 07 00 1d 00 00 00 | .........!.......!......0!...... |
| 61a0 | 45 21 07 00 0f 00 00 00 63 21 07 00 1d 00 00 00 73 21 07 00 17 00 00 00 91 21 07 00 d0 01 00 00 | E!......c!......s!.......!...... |
| 61c0 | a9 21 07 00 2e 00 00 00 7a 23 07 00 7d 00 00 00 a9 23 07 00 c1 00 00 00 27 24 07 00 0c 00 00 00 | .!......z#..}....#......'$...... |
| 61e0 | e9 24 07 00 13 00 00 00 f6 24 07 00 15 00 00 00 0a 25 07 00 0f 00 00 00 20 25 07 00 67 00 00 00 | .$.......$.......%.......%..g... |
| 6200 | 30 25 07 00 56 00 00 00 98 25 07 00 11 00 00 00 ef 25 07 00 c1 00 00 00 01 26 07 00 59 00 00 00 | 0%..V....%.......%.......&..Y... |
| 6220 | c3 26 07 00 c6 00 00 00 1d 27 07 00 07 00 00 00 e4 27 07 00 07 00 00 00 ec 27 07 00 35 00 00 00 | .&.......'.......'.......'..5... |
| 6240 | f4 27 07 00 69 00 00 00 2a 28 07 00 6c 00 00 00 94 28 07 00 2b 00 00 00 01 29 07 00 7c 00 00 00 | .'..i...*(..l....(..+....)..|... |
| 6260 | 2d 29 07 00 69 00 00 00 aa 29 07 00 0b 00 00 00 14 2a 07 00 09 00 00 00 20 2a 07 00 11 00 00 00 | -)..i....).......*.......*...... |
| 6280 | 2a 2a 07 00 05 00 00 00 3c 2a 07 00 ad 00 00 00 42 2a 07 00 4c 00 00 00 f0 2a 07 00 12 00 00 00 | **......<*......B*..L....*...... |
| 62a0 | 3d 2b 07 00 04 00 00 00 50 2b 07 00 06 00 00 00 55 2b 07 00 06 00 00 00 5c 2b 07 00 04 00 00 00 | =+......P+......U+......\+...... |
| 62c0 | 63 2b 07 00 0f 00 00 00 68 2b 07 00 16 00 00 00 78 2b 07 00 d7 00 00 00 8f 2b 07 00 fd 00 00 00 | c+......h+......x+.......+...... |
| 62e0 | 67 2c 07 00 65 01 00 00 65 2d 07 00 06 00 00 00 cb 2e 07 00 f4 00 00 00 d2 2e 07 00 00 01 00 00 | g,..e...e-...................... |
| 6300 | c7 2f 07 00 06 00 00 00 c8 30 07 00 0b 02 00 00 cf 30 07 00 e3 01 00 00 db 32 07 00 e2 01 00 00 | ./.......0.......0.......2...... |
| 6320 | bf 34 07 00 03 00 00 00 a2 36 07 00 27 00 00 00 a6 36 07 00 18 00 00 00 ce 36 07 00 0a 00 00 00 | .4.......6..'....6.......6...... |
| 6340 | e7 36 07 00 7b 01 00 00 f2 36 07 00 40 00 00 00 6e 38 07 00 a9 01 00 00 af 38 07 00 30 00 00 00 | .6..{....6..@...n8.......8..0... |
| 6360 | 59 3a 07 00 0c 00 00 00 8a 3a 07 00 10 00 00 00 97 3a 07 00 1b 00 00 00 a8 3a 07 00 2e 00 00 00 | Y:.......:.......:.......:...... |
| 6380 | c4 3a 07 00 0b 00 00 00 f3 3a 07 00 13 00 00 00 ff 3a 07 00 0b 00 00 00 13 3b 07 00 2e 00 00 00 | .:.......:.......:.......;...... |
| 63a0 | 1f 3b 07 00 46 00 00 00 4e 3b 07 00 0d 00 00 00 95 3b 07 00 0b 00 00 00 a3 3b 07 00 58 01 00 00 | .;..F...N;.......;.......;..X... |
| 63c0 | af 3b 07 00 88 00 00 00 08 3d 07 00 62 00 00 00 91 3d 07 00 45 00 00 00 f4 3d 07 00 29 00 00 00 | .;.......=..b....=..E....=..)... |
| 63e0 | 3a 3e 07 00 96 00 00 00 64 3e 07 00 10 00 00 00 fb 3e 07 00 2f 00 00 00 0c 3f 07 00 33 00 00 00 | :>......d>.......>../....?..3... |
| 6400 | 3c 3f 07 00 43 00 00 00 70 3f 07 00 37 00 00 00 b4 3f 07 00 49 00 00 00 ec 3f 07 00 3b 00 00 00 | <?..C...p?..7....?..I....?..;... |
| 6420 | 36 40 07 00 3e 00 00 00 72 40 07 00 4a 00 00 00 b1 40 07 00 4d 00 00 00 fc 40 07 00 09 00 00 00 | 6@..>...r@..J....@..M....@...... |
| 6440 | 4a 41 07 00 a8 00 00 00 54 41 07 00 6b 00 00 00 fd 41 07 00 3a 00 00 00 69 42 07 00 08 00 00 00 | JA......TA..k....A..:...iB...... |
| 6460 | a4 42 07 00 20 00 00 00 ad 42 07 00 28 00 00 00 ce 42 07 00 4b 00 00 00 f7 42 07 00 0f 00 00 00 | .B.......B..(....B..K....B...... |
| 6480 | 43 43 07 00 26 01 00 00 53 43 07 00 5b 01 00 00 7a 44 07 00 87 00 00 00 d6 45 07 00 86 00 00 00 | CC..&...SC..[...zD.......E...... |
| 64a0 | 5e 46 07 00 ce 01 00 00 e5 46 07 00 18 00 00 00 b4 48 07 00 51 00 00 00 cd 48 07 00 f2 00 00 00 | ^F.......F.......H..Q....H...... |
| 64c0 | 1f 49 07 00 0e 00 00 00 12 4a 07 00 34 00 00 00 21 4a 07 00 36 00 00 00 56 4a 07 00 bd 00 00 00 | .I.......J..4...!J..6...VJ...... |
| 64e0 | 8d 4a 07 00 7e 00 00 00 4b 4b 07 00 82 00 00 00 ca 4b 07 00 33 00 00 00 4d 4c 07 00 0e 00 00 00 | .J..~...KK.......K..3...ML...... |
| 6500 | 81 4c 07 00 dd 00 00 00 90 4c 07 00 06 00 00 00 6e 4d 07 00 12 00 00 00 75 4d 07 00 14 00 00 00 | .L.......L......nM......uM...... |
| 6520 | 88 4d 07 00 0b 00 00 00 9d 4d 07 00 0c 00 00 00 a9 4d 07 00 0d 00 00 00 b6 4d 07 00 14 00 00 00 | .M.......M.......M.......M...... |
| 6540 | c4 4d 07 00 42 00 00 00 d9 4d 07 00 07 00 00 00 1c 4e 07 00 07 00 00 00 24 4e 07 00 c7 00 00 00 | .M..B....M.......N......$N...... |
| 6560 | 2c 4e 07 00 29 00 00 00 f4 4e 07 00 28 00 00 00 1e 4f 07 00 23 00 00 00 47 4f 07 00 14 00 00 00 | ,N..)....N..(....O..#...GO...... |
| 6580 | 6b 4f 07 00 20 00 00 00 80 4f 07 00 18 00 00 00 a1 4f 07 00 28 00 00 00 ba 4f 07 00 1d 00 00 00 | kO.......O.......O..(....O...... |
| 65a0 | e3 4f 07 00 29 00 00 00 01 50 07 00 1e 00 00 00 2b 50 07 00 30 00 00 00 4a 50 07 00 4b 00 00 00 | .O..)....P......+P..0...JP..K... |
| 65c0 | 7b 50 07 00 6e 00 00 00 c7 50 07 00 2d 00 00 00 36 51 07 00 2d 00 00 00 64 51 07 00 35 00 00 00 | {P..n....P..-...6Q..-...dQ..5... |
| 65e0 | 92 51 07 00 16 00 00 00 c8 51 07 00 1c 00 00 00 df 51 07 00 1b 00 00 00 fc 51 07 00 21 00 00 00 | .Q.......Q.......Q.......Q..!... |
| 6600 | 18 52 07 00 41 00 00 00 3a 52 07 00 35 00 00 00 7c 52 07 00 97 00 00 00 b2 52 07 00 4e 00 00 00 | .R..A...:R..5...|R.......R..N... |
| 6620 | 4a 53 07 00 1d 00 00 00 99 53 07 00 4c 00 00 00 b7 53 07 00 17 00 00 00 04 54 07 00 1f 00 00 00 | JS.......S..L....S.......T...... |
| 6640 | 1c 54 07 00 21 00 00 00 3c 54 07 00 1b 00 00 00 5e 54 07 00 41 00 00 00 7a 54 07 00 24 00 00 00 | .T..!...<T......^T..A...zT..$... |
| 6660 | bc 54 07 00 31 00 00 00 e1 54 07 00 47 00 00 00 13 55 07 00 4f 00 00 00 5b 55 07 00 45 00 00 00 | .T..1....T..G....U..O...[U..E... |
| 6680 | ab 55 07 00 7c 00 00 00 f1 55 07 00 26 00 00 00 6e 56 07 00 43 00 00 00 95 56 07 00 4c 00 00 00 | .U..|....U..&...nV..C....V..L... |
| 66a0 | d9 56 07 00 3c 00 00 00 26 57 07 00 39 00 00 00 63 57 07 00 4a 00 00 00 9d 57 07 00 82 00 00 00 | .V..<...&W..9...cW..J....W...... |
| 66c0 | e8 57 07 00 5a 00 00 00 6b 58 07 00 1a 00 00 00 c6 58 07 00 2a 00 00 00 e1 58 07 00 1c 00 00 00 | .W..Z...kX.......X..*....X...... |
| 66e0 | 0c 59 07 00 37 00 00 00 29 59 07 00 49 00 00 00 61 59 07 00 3f 00 00 00 ab 59 07 00 47 00 00 00 | .Y..7...)Y..I...aY..?....Y..G... |
| 6700 | eb 59 07 00 42 00 00 00 33 5a 07 00 28 00 00 00 76 5a 07 00 2a 00 00 00 9f 5a 07 00 2d 00 00 00 | .Y..B...3Z..(...vZ..*....Z..-... |
| 6720 | ca 5a 07 00 30 00 00 00 f8 5a 07 00 2d 00 00 00 29 5b 07 00 2c 00 00 00 57 5b 07 00 19 00 00 00 | .Z..0....Z..-...)[..,...W[...... |
| 6740 | 84 5b 07 00 29 00 00 00 9e 5b 07 00 30 00 00 00 c8 5b 07 00 24 00 00 00 f9 5b 07 00 2b 00 00 00 | .[..)....[..0....[..$....[..+... |
| 6760 | 1e 5c 07 00 29 00 00 00 4a 5c 07 00 35 00 00 00 74 5c 07 00 2a 00 00 00 aa 5c 07 00 10 00 00 00 | .\..)...J\..5...t\..*....\...... |
| 6780 | d5 5c 07 00 2b 00 00 00 e6 5c 07 00 55 00 00 00 12 5d 07 00 3c 00 00 00 68 5d 07 00 90 00 00 00 | .\..+....\..U....]..<...h]...... |
| 67a0 | a5 5d 07 00 1a 00 00 00 36 5e 07 00 72 00 00 00 51 5e 07 00 14 00 00 00 c4 5e 07 00 4c 00 00 00 | .]......6^..r...Q^.......^..L... |
| 67c0 | d9 5e 07 00 1f 00 00 00 26 5f 07 00 71 00 00 00 46 5f 07 00 6b 00 00 00 b8 5f 07 00 5b 00 00 00 | .^......&_..q...F_..k...._..[... |
| 67e0 | 24 60 07 00 2c 00 00 00 80 60 07 00 4e 00 00 00 ad 60 07 00 2a 00 00 00 fc 60 07 00 a0 00 00 00 | $`..,....`..N....`..*....`...... |
| 6800 | 27 61 07 00 65 00 00 00 c8 61 07 00 27 01 00 00 2e 62 07 00 d0 00 00 00 56 63 07 00 d8 00 00 00 | 'a..e....a..'....b......Vc...... |
| 6820 | 27 64 07 00 3f 00 00 00 00 65 07 00 38 00 00 00 40 65 07 00 46 00 00 00 79 65 07 00 40 00 00 00 | 'd..?....e..8...@e..F...ye..@... |
| 6840 | c0 65 07 00 53 00 00 00 01 66 07 00 45 00 00 00 55 66 07 00 26 01 00 00 9b 66 07 00 f1 00 00 00 | .e..S....f..E...Uf..&....f...... |
| 6860 | c2 67 07 00 48 00 00 00 b4 68 07 00 49 00 00 00 fd 68 07 00 d0 00 00 00 47 69 07 00 24 00 00 00 | .g..H....h..I....h......Gi..$... |
| 6880 | 18 6a 07 00 16 00 00 00 3d 6a 07 00 60 00 00 00 54 6a 07 00 50 00 00 00 b5 6a 07 00 27 00 00 00 | .j......=j..`...Tj..P....j..'... |
| 68a0 | 06 6b 07 00 18 00 00 00 2e 6b 07 00 49 00 00 00 47 6b 07 00 52 00 00 00 91 6b 07 00 58 00 00 00 | .k.......k..I...Gk..R....k..X... |
| 68c0 | e4 6b 07 00 3d 00 00 00 3d 6c 07 00 25 00 00 00 7b 6c 07 00 26 00 00 00 a1 6c 07 00 2a 00 00 00 | .k..=...=l..%...{l..&....l..*... |
| 68e0 | c8 6c 07 00 23 00 00 00 f3 6c 07 00 47 00 00 00 17 6d 07 00 a4 00 00 00 5f 6d 07 00 aa 00 00 00 | .l..#....l..G....m......_m...... |
| 6900 | 04 6e 07 00 55 00 00 00 af 6e 07 00 f4 00 00 00 05 6f 07 00 44 00 00 00 fa 6f 07 00 61 00 00 00 | .n..U....n.......o..D....o..a... |
| 6920 | 3f 70 07 00 54 00 00 00 a1 70 07 00 3c 00 00 00 f6 70 07 00 6d 00 00 00 33 71 07 00 6a 00 00 00 | ?p..T....p..<....p..m...3q..j... |
| 6940 | a1 71 07 00 43 00 00 00 0c 72 07 00 5c 00 00 00 50 72 07 00 34 00 00 00 ad 72 07 00 a4 00 00 00 | .q..C....r..\...Pr..4....r...... |
| 6960 | e2 72 07 00 a8 00 00 00 87 73 07 00 e8 00 00 00 30 74 07 00 ec 00 00 00 19 75 07 00 3e 00 00 00 | .r.......s......0t.......u..>... |
| 6980 | 06 76 07 00 39 00 00 00 45 76 07 00 21 00 00 00 7f 76 07 00 2c 00 00 00 a1 76 07 00 34 00 00 00 | .v..9...Ev..!....v..,....v..4... |
| 69a0 | ce 76 07 00 23 00 00 00 03 77 07 00 55 00 00 00 27 77 07 00 56 00 00 00 7d 77 07 00 35 00 00 00 | .v..#....w..U...'w..V...}w..5... |
| 69c0 | d4 77 07 00 2a 00 00 00 0a 78 07 00 66 00 00 00 35 78 07 00 7b 00 00 00 9c 78 07 00 41 00 00 00 | .w..*....x..f...5x..{....x..A... |
| 69e0 | 18 79 07 00 42 00 00 00 5a 79 07 00 41 00 00 00 9d 79 07 00 56 00 00 00 df 79 07 00 35 00 00 00 | .y..B...Zy..A....y..V....y..5... |
| 6a00 | 36 7a 07 00 2b 00 00 00 6c 7a 07 00 2f 00 00 00 98 7a 07 00 22 00 00 00 c8 7a 07 00 44 00 00 00 | 6z..+...lz../....z.."....z..D... |
| 6a20 | eb 7a 07 00 63 00 00 00 30 7b 07 00 56 00 00 00 94 7b 07 00 4d 00 00 00 eb 7b 07 00 34 00 00 00 | .z..c...0{..V....{..M....{..4... |
| 6a40 | 39 7c 07 00 3f 00 00 00 6e 7c 07 00 79 01 00 00 ae 7c 07 00 df 00 00 00 28 7e 07 00 f0 00 00 00 | 9|..?...n|..y....|......(~...... |
| 6a60 | 08 7f 07 00 df 00 00 00 f9 7f 07 00 54 00 00 00 d9 80 07 00 32 00 00 00 2e 81 07 00 0c 01 00 00 | ............T.......2........... |
| 6a80 | 61 81 07 00 59 00 00 00 6e 82 07 00 4e 00 00 00 c8 82 07 00 26 01 00 00 17 83 07 00 4a 00 00 00 | a...Y...n...N.......&.......J... |
| 6aa0 | 3e 84 07 00 1a 00 00 00 89 84 07 00 2f 00 00 00 a4 84 07 00 a4 00 00 00 d4 84 07 00 3a 00 00 00 | >.........../...............:... |
| 6ac0 | 79 85 07 00 81 00 00 00 b4 85 07 00 3a 00 00 00 36 86 07 00 2a 00 00 00 71 86 07 00 1d 01 00 00 | y...........:...6...*...q....... |
| 6ae0 | 9c 86 07 00 2d 00 00 00 ba 87 07 00 21 00 00 00 e8 87 07 00 26 00 00 00 0a 88 07 00 af 00 00 00 | ....-.......!.......&........... |
| 6b00 | 31 88 07 00 63 00 00 00 e1 88 07 00 ce 00 00 00 45 89 07 00 53 00 00 00 14 8a 07 00 44 00 00 00 | 1...c...........E...S.......D... |
| 6b20 | 68 8a 07 00 33 00 00 00 ad 8a 07 00 45 00 00 00 e1 8a 07 00 34 00 00 00 27 8b 07 00 7a 00 00 00 | h...3.......E.......4...'...z... |
| 6b40 | 5c 8b 07 00 32 00 00 00 d7 8b 07 00 27 00 00 00 0a 8c 07 00 46 00 00 00 32 8c 07 00 2e 00 00 00 | \...2.......'.......F...2....... |
| 6b60 | 79 8c 07 00 44 00 00 00 a8 8c 07 00 60 00 00 00 ed 8c 07 00 27 00 00 00 4e 8d 07 00 5b 00 00 00 | y...D.......`.......'...N...[... |
| 6b80 | 76 8d 07 00 78 00 00 00 d2 8d 07 00 5f 00 00 00 4b 8e 07 00 5b 00 00 00 ab 8e 07 00 1b 00 00 00 | v...x......._...K...[........... |
| 6ba0 | 07 8f 07 00 0c 00 00 00 23 8f 07 00 b4 01 00 00 30 8f 07 00 11 00 00 00 e5 90 07 00 12 00 00 00 | ........#.......0............... |
| 6bc0 | f7 90 07 00 ed 00 00 00 0a 91 07 00 17 00 00 00 f8 91 07 00 18 00 00 00 10 92 07 00 12 00 00 00 | ................................ |
| 6be0 | 29 92 07 00 35 00 00 00 3c 92 07 00 26 00 00 00 72 92 07 00 2c 00 00 00 99 92 07 00 75 00 00 00 | )...5...<...&...r...,.......u... |
| 6c00 | c6 92 07 00 41 00 00 00 3c 93 07 00 41 00 00 00 7e 93 07 00 6f 00 00 00 c0 93 07 00 9f 00 00 00 | ....A...<...A...~...o........... |
| 6c20 | 30 94 07 00 a1 00 00 00 d0 94 07 00 7f 00 00 00 72 95 07 00 77 00 00 00 f2 95 07 00 08 00 00 00 | 0...............r...w........... |
| 6c40 | 6a 96 07 00 0e 00 00 00 73 96 07 00 06 00 00 00 82 96 07 00 15 00 00 00 89 96 07 00 27 00 00 00 | j.......s...................'... |
| 6c60 | 9f 96 07 00 ee 00 00 00 c7 96 07 00 eb 00 00 00 b6 97 07 00 04 00 00 00 a2 98 07 00 16 00 00 00 | ................................ |
| 6c80 | a7 98 07 00 20 00 00 00 be 98 07 00 22 00 00 00 df 98 07 00 11 00 00 00 02 99 07 00 3a 00 00 00 | ............"...............:... |
| 6ca0 | 14 99 07 00 20 00 00 00 4f 99 07 00 14 00 00 00 70 99 07 00 55 00 00 00 85 99 07 00 28 00 00 00 | ........O.......p...U.......(... |
| 6cc0 | db 99 07 00 88 00 00 00 04 9a 07 00 16 00 00 00 8d 9a 07 00 16 00 00 00 a4 9a 07 00 18 00 00 00 | ................................ |
| 6ce0 | bb 9a 07 00 26 00 00 00 d4 9a 07 00 1a 00 00 00 fb 9a 07 00 27 00 00 00 16 9b 07 00 23 00 00 00 | ....&...............'.......#... |
| 6d00 | 3e 9b 07 00 17 00 00 00 62 9b 07 00 21 00 00 00 7a 9b 07 00 5d 00 00 00 9c 9b 07 00 28 00 00 00 | >.......b...!...z...].......(... |
| 6d20 | fa 9b 07 00 49 00 00 00 23 9c 07 00 44 00 00 00 6d 9c 07 00 25 00 00 00 b2 9c 07 00 21 00 00 00 | ....I...#...D...m...%.......!... |
| 6d40 | d8 9c 07 00 12 00 00 00 fa 9c 07 00 30 00 00 00 0d 9d 07 00 2f 00 00 00 3e 9d 07 00 2f 00 00 00 | ............0......./...>.../... |
| 6d60 | 6e 9d 07 00 4d 00 00 00 9e 9d 07 00 56 00 00 00 ec 9d 07 00 34 00 00 00 43 9e 07 00 2f 00 00 00 | n...M.......V.......4...C.../... |
| 6d80 | 78 9e 07 00 3a 00 00 00 a8 9e 07 00 32 00 00 00 e3 9e 07 00 3f 00 00 00 16 9f 07 00 a2 00 00 00 | x...:.......2.......?........... |
| 6da0 | 56 9f 07 00 21 00 00 00 f9 9f 07 00 0d 00 00 00 1b a0 07 00 4a 00 00 00 29 a0 07 00 2e 00 00 00 | V...!...............J...)....... |
| 6dc0 | 74 a0 07 00 2e 00 00 00 a3 a0 07 00 2e 00 00 00 d2 a0 07 00 1f 00 00 00 01 a1 07 00 41 00 00 00 | t...........................A... |
| 6de0 | 21 a1 07 00 3c 00 00 00 63 a1 07 00 5b 00 00 00 a0 a1 07 00 30 00 00 00 fc a1 07 00 3f 00 00 00 | !...<...c...[.......0.......?... |
| 6e00 | 2d a2 07 00 38 00 00 00 6d a2 07 00 2d 00 00 00 a6 a2 07 00 52 00 00 00 d4 a2 07 00 39 00 00 00 | -...8...m...-.......R.......9... |
| 6e20 | 27 a3 07 00 3b 00 00 00 61 a3 07 00 4a 00 00 00 9d a3 07 00 2d 00 00 00 e8 a3 07 00 3d 00 00 00 | '...;...a...J.......-.......=... |
| 6e40 | 16 a4 07 00 13 00 00 00 54 a4 07 00 24 00 00 00 68 a4 07 00 20 00 00 00 8d a4 07 00 29 00 00 00 | ........T...$...h...........)... |
| 6e60 | ae a4 07 00 2b 00 00 00 d8 a4 07 00 38 00 00 00 04 a5 07 00 3a 00 00 00 3d a5 07 00 3a 00 00 00 | ....+.......8.......:...=...:... |
| 6e80 | 78 a5 07 00 30 00 00 00 b3 a5 07 00 27 00 00 00 e4 a5 07 00 8d 00 00 00 0c a6 07 00 8d 00 00 00 | x...0.......'................... |
| 6ea0 | 9a a6 07 00 2f 00 00 00 28 a7 07 00 2a 00 00 00 58 a7 07 00 19 00 00 00 83 a7 07 00 5e 00 00 00 | ..../...(...*...X...........^... |
| 6ec0 | 9d a7 07 00 23 00 00 00 fc a7 07 00 37 00 00 00 20 a8 07 00 20 00 00 00 58 a8 07 00 1c 00 00 00 | ....#.......7...........X....... |
| 6ee0 | 79 a8 07 00 3b 00 00 00 96 a8 07 00 30 00 00 00 d2 a8 07 00 27 00 00 00 03 a9 07 00 20 00 00 00 | y...;.......0.......'........... |
| 6f00 | 2b a9 07 00 25 00 00 00 4c a9 07 00 dd 00 00 00 72 a9 07 00 da 00 00 00 50 aa 07 00 da 00 00 00 | +...%...L.......r.......P....... |
| 6f20 | 2b ab 07 00 0e 00 00 00 06 ac 07 00 38 00 00 00 15 ac 07 00 40 00 00 00 4e ac 07 00 23 00 00 00 | +...........8.......@...N...#... |
| 6f40 | 8f ac 07 00 24 00 00 00 b3 ac 07 00 07 00 00 00 d8 ac 07 00 07 00 00 00 e0 ac 07 00 33 00 00 00 | ....$.......................3... |
| 6f60 | e8 ac 07 00 33 00 00 00 1c ad 07 00 33 00 00 00 50 ad 07 00 33 00 00 00 84 ad 07 00 40 00 00 00 | ....3.......3...P...3.......@... |
| 6f80 | b8 ad 07 00 8c 00 00 00 f9 ad 07 00 51 00 00 00 86 ae 07 00 4f 00 00 00 d8 ae 07 00 3d 00 00 00 | ............Q.......O.......=... |
| 6fa0 | 28 af 07 00 64 00 00 00 66 af 07 00 6f 00 00 00 cb af 07 00 94 00 00 00 3b b0 07 00 92 00 00 00 | (...d...f...o...........;....... |
| 6fc0 | d0 b0 07 00 cd 00 00 00 63 b1 07 00 ce 00 00 00 31 b2 07 00 82 00 00 00 00 b3 07 00 8f 00 00 00 | ........c.......1............... |
| 6fe0 | 83 b3 07 00 e1 00 00 00 13 b4 07 00 c3 00 00 00 f5 b4 07 00 8a 00 00 00 b9 b5 07 00 8b 00 00 00 | ................................ |
| 7000 | 44 b6 07 00 19 00 00 00 d0 b6 07 00 17 00 00 00 ea b6 07 00 10 00 00 00 02 b7 07 00 0c 00 00 00 | D............................... |
| 7020 | 13 b7 07 00 ac 00 00 00 20 b7 07 00 e2 00 00 00 cd b7 07 00 14 00 00 00 b0 b8 07 00 c3 00 00 00 | ................................ |
| 7040 | c5 b8 07 00 95 00 00 00 89 b9 07 00 13 01 00 00 1f ba 07 00 31 00 00 00 33 bb 07 00 0a 00 00 00 | ....................1...3....... |
| 7060 | 65 bb 07 00 21 01 00 00 70 bb 07 00 d8 00 00 00 92 bc 07 00 8b 00 00 00 6b bd 07 00 8c 00 00 00 | e...!...p...............k....... |
| 7080 | f7 bd 07 00 f8 00 00 00 84 be 07 00 39 00 00 00 7d bf 07 00 49 00 00 00 b7 bf 07 00 b6 00 00 00 | ............9...}...I........... |
| 70a0 | 01 c0 07 00 93 00 00 00 b8 c0 07 00 80 00 00 00 4c c1 07 00 1b 00 00 00 cd c1 07 00 79 00 00 00 | ................L...........y... |
| 70c0 | e9 c1 07 00 79 00 00 00 63 c2 07 00 53 01 00 00 dd c2 07 00 7f 00 00 00 31 c4 07 00 a9 00 00 00 | ....y...c...S...........1....... |
| 70e0 | b1 c4 07 00 b6 00 00 00 5b c5 07 00 83 00 00 00 12 c6 07 00 86 00 00 00 96 c6 07 00 0e 00 00 00 | ........[....................... |
| 7100 | 1d c7 07 00 5d 00 00 00 2c c7 07 00 36 00 00 00 8a c7 07 00 10 00 00 00 c1 c7 07 00 0d 00 00 00 | ....]...,...6................... |
| 7120 | d2 c7 07 00 45 00 00 00 e0 c7 07 00 45 00 00 00 26 c8 07 00 19 00 00 00 6c c8 07 00 22 00 00 00 | ....E.......E...&.......l..."... |
| 7140 | 86 c8 07 00 1c 00 00 00 a9 c8 07 00 45 00 00 00 c6 c8 07 00 50 00 00 00 0c c9 07 00 65 00 00 00 | ............E.......P.......e... |
| 7160 | 5d c9 07 00 2f 00 00 00 c3 c9 07 00 60 00 00 00 f3 c9 07 00 54 00 00 00 54 ca 07 00 55 00 00 00 | ].../.......`.......T...T...U... |
| 7180 | a9 ca 07 00 48 00 00 00 ff ca 07 00 26 00 00 00 48 cb 07 00 26 00 00 00 6f cb 07 00 b2 00 00 00 | ....H.......&...H...&...o....... |
| 71a0 | 96 cb 07 00 eb 00 00 00 49 cc 07 00 75 00 00 00 35 cd 07 00 77 00 00 00 ab cd 07 00 4d 00 00 00 | ........I...u...5...w.......M... |
| 71c0 | 23 ce 07 00 e2 00 00 00 71 ce 07 00 5b 00 00 00 54 cf 07 00 78 00 00 00 b0 cf 07 00 1d 01 00 00 | #.......q...[...T...x........... |
| 71e0 | 29 d0 07 00 29 01 00 00 47 d1 07 00 53 00 00 00 71 d2 07 00 42 00 00 00 c5 d2 07 00 8b 00 00 00 | )...)...G...S...q...B........... |
| 7200 | 08 d3 07 00 1e 00 00 00 94 d3 07 00 56 00 00 00 b3 d3 07 00 d2 00 00 00 0a d4 07 00 36 00 00 00 | ............V...............6... |
| 7220 | dd d4 07 00 ce 00 00 00 14 d5 07 00 00 01 00 00 e3 d5 07 00 c1 00 00 00 e4 d6 07 00 38 00 00 00 | ............................8... |
| 7240 | a6 d7 07 00 27 00 00 00 df d7 07 00 57 00 00 00 07 d8 07 00 bd 00 00 00 5f d8 07 00 85 00 00 00 | ....'.......W..........._....... |
| 7260 | 1d d9 07 00 4f 00 00 00 a3 d9 07 00 ba 01 00 00 f3 d9 07 00 b6 00 00 00 ae db 07 00 47 00 00 00 | ....O.......................G... |
| 7280 | 65 dc 07 00 63 00 00 00 ad dc 07 00 4c 00 00 00 11 dd 07 00 d5 00 00 00 5e dd 07 00 66 00 00 00 | e...c.......L...........^...f... |
| 72a0 | 34 de 07 00 45 01 00 00 9b de 07 00 56 00 00 00 e1 df 07 00 64 00 00 00 38 e0 07 00 57 00 00 00 | 4...E.......V.......d...8...W... |
| 72c0 | 9d e0 07 00 64 00 00 00 f5 e0 07 00 bf 00 00 00 5a e1 07 00 a4 00 00 00 1a e2 07 00 bc 00 00 00 | ....d...........Z............... |
| 72e0 | bf e2 07 00 65 00 00 00 7c e3 07 00 3f 00 00 00 e2 e3 07 00 c0 01 00 00 22 e4 07 00 72 00 00 00 | ....e...|...?..........."...r... |
| 7300 | e3 e5 07 00 74 00 00 00 56 e6 07 00 58 00 00 00 cb e6 07 00 45 00 00 00 24 e7 07 00 41 00 00 00 | ....t...V...X.......E...$...A... |
| 7320 | 6a e7 07 00 52 00 00 00 ac e7 07 00 81 00 00 00 ff e7 07 00 75 00 00 00 81 e8 07 00 7f 00 00 00 | j...R...............u........... |
| 7340 | f7 e8 07 00 30 00 00 00 77 e9 07 00 31 00 00 00 a8 e9 07 00 7e 00 00 00 da e9 07 00 50 00 00 00 | ....0...w...1.......~.......P... |
| 7360 | 59 ea 07 00 36 00 00 00 aa ea 07 00 50 01 00 00 e1 ea 07 00 69 00 00 00 32 ec 07 00 a3 00 00 00 | Y...6.......P.......i...2....... |
| 7380 | 9c ec 07 00 5d 00 00 00 40 ed 07 00 8e 00 00 00 9e ed 07 00 4a 00 00 00 2d ee 07 00 57 00 00 00 | ....]...@...........J...-...W... |
| 73a0 | 78 ee 07 00 6d 00 00 00 d0 ee 07 00 64 00 00 00 3e ef 07 00 64 00 00 00 a3 ef 07 00 99 00 00 00 | x...m.......d...>...d........... |
| 73c0 | 08 f0 07 00 26 00 00 00 a2 f0 07 00 b1 00 00 00 c9 f0 07 00 ad 00 00 00 7b f1 07 00 81 00 00 00 | ....&...................{....... |
| 73e0 | 29 f2 07 00 33 00 00 00 ab f2 07 00 c0 00 00 00 df f2 07 00 90 00 00 00 a0 f3 07 00 a3 00 00 00 | )...3........................... |
| 7400 | 31 f4 07 00 a2 00 00 00 d5 f4 07 00 83 00 00 00 78 f5 07 00 41 00 00 00 fc f5 07 00 3a 00 00 00 | 1...............x...A.......:... |
| 7420 | 3e f6 07 00 4b 00 00 00 79 f6 07 00 65 00 00 00 c5 f6 07 00 65 00 00 00 2b f7 07 00 06 00 00 00 | >...K...y...e.......e...+....... |
| 7440 | 91 f7 07 00 05 00 00 00 98 f7 07 00 e3 01 00 00 9e f7 07 00 1e 00 00 00 82 f9 07 00 1d 00 00 00 | ................................ |
| 7460 | a1 f9 07 00 3d 00 00 00 bf f9 07 00 a4 00 00 00 fd f9 07 00 9d 01 00 00 a2 fa 07 00 60 02 00 00 | ....=.......................`... |
| 7480 | 40 fc 07 00 5b 02 00 00 a1 fe 07 00 4b 02 00 00 fd 00 08 00 5a 02 00 00 49 03 08 00 6d 00 00 00 | @...[.......K.......Z...I...m... |
| 74a0 | a4 05 08 00 a8 00 00 00 12 06 08 00 bf 00 00 00 bb 06 08 00 b2 00 00 00 7b 07 08 00 06 00 00 00 | ........................{....... |
| 74c0 | 2e 08 08 00 4b 01 00 00 35 08 08 00 4c 01 00 00 81 09 08 00 17 00 00 00 ce 0a 08 00 0b 00 00 00 | ....K...5...L................... |
| 74e0 | e6 0a 08 00 0d 00 00 00 f2 0a 08 00 55 00 00 00 00 0b 08 00 0f 00 00 00 56 0b 08 00 0f 00 00 00 | ............U...........V....... |
| 7500 | 66 0b 08 00 5c 00 00 00 76 0b 08 00 ff 02 00 00 d3 0b 08 00 b1 00 00 00 d3 0e 08 00 52 00 00 00 | f...\...v...................R... |
| 7520 | 85 0f 08 00 37 00 00 00 d8 0f 08 00 06 00 00 00 10 10 08 00 12 00 00 00 17 10 08 00 9a 00 00 00 | ....7........................... |
| 7540 | 2a 10 08 00 08 00 00 00 c5 10 08 00 38 00 00 00 ce 10 08 00 11 00 00 00 07 11 08 00 1c 00 00 00 | *...........8................... |
| 7560 | 19 11 08 00 12 00 00 00 36 11 08 00 1a 00 00 00 49 11 08 00 49 00 00 00 64 11 08 00 1e 00 00 00 | ........6.......I...I...d....... |
| 7580 | ae 11 08 00 2f 00 00 00 cd 11 08 00 73 00 00 00 fd 11 08 00 ae 00 00 00 71 12 08 00 af 00 00 00 | ..../.......s...........q....... |
| 75a0 | 20 13 08 00 11 00 00 00 d0 13 08 00 d5 00 00 00 e2 13 08 00 d0 00 00 00 b8 14 08 00 0b 00 00 00 | ................................ |
| 75c0 | 89 15 08 00 4a 00 00 00 95 15 08 00 08 00 00 00 e0 15 08 00 14 00 00 00 e9 15 08 00 4a 00 00 00 | ....J.......................J... |
| 75e0 | fe 15 08 00 60 00 00 00 49 16 08 00 06 00 00 00 aa 16 08 00 06 00 00 00 b1 16 08 00 da 00 00 00 | ....`...I....................... |
| 7600 | b8 16 08 00 99 00 00 00 93 17 08 00 98 00 00 00 2d 18 08 00 bc 00 00 00 c6 18 08 00 06 00 00 00 | ................-............... |
| 7620 | 83 19 08 00 0a 00 00 00 8a 19 08 00 14 00 00 00 95 19 08 00 1b 00 00 00 aa 19 08 00 0c 00 00 00 | ................................ |
| 7640 | c6 19 08 00 19 00 00 00 d3 19 08 00 2e 00 00 00 ed 19 08 00 1d 00 00 00 1c 1a 08 00 0e 00 00 00 | ................................ |
| 7660 | 3a 1a 08 00 00 02 00 00 49 1a 08 00 ff 01 00 00 4a 1c 08 00 26 00 00 00 4a 1e 08 00 0e 00 00 00 | :.......I.......J...&...J....... |
| 7680 | 71 1e 08 00 21 00 00 00 80 1e 08 00 98 00 00 00 a2 1e 08 00 07 00 00 00 3b 1f 08 00 03 00 00 00 | q...!...................;....... |
| 76a0 | 43 1f 08 00 91 00 00 00 47 1f 08 00 0a 00 00 00 d9 1f 08 00 0b 00 00 00 e4 1f 08 00 6a 00 00 00 | C.......G...................j... |
| 76c0 | f0 1f 08 00 0e 00 00 00 5b 20 08 00 08 00 00 00 6a 20 08 00 3f 00 00 00 73 20 08 00 2b 00 00 00 | ........[.......j...?...s...+... |
| 76e0 | b3 20 08 00 29 00 00 00 df 20 08 00 35 00 00 00 09 21 08 00 54 00 00 00 3f 21 08 00 5c 00 00 00 | ....).......5....!..T...?!..\... |
| 7700 | 94 21 08 00 7b 00 00 00 f1 21 08 00 56 00 00 00 6d 22 08 00 67 00 00 00 c4 22 08 00 25 00 00 00 | .!..{....!..V...m"..g...."..%... |
| 7720 | 2c 23 08 00 3a 00 00 00 52 23 08 00 3a 00 00 00 8d 23 08 00 0d 00 00 00 c8 23 08 00 64 00 00 00 | ,#..:...R#..:....#.......#..d... |
| 7740 | d6 23 08 00 64 00 00 00 3b 24 08 00 67 00 00 00 a0 24 08 00 67 00 00 00 08 25 08 00 1f 00 00 00 | .#..d...;$..g....$..g....%...... |
| 7760 | 70 25 08 00 0c 00 00 00 90 25 08 00 16 00 00 00 9d 25 08 00 44 01 00 00 b4 25 08 00 41 00 00 00 | p%.......%.......%..D....%..A... |
| 7780 | f9 26 08 00 47 00 00 00 3b 27 08 00 d3 00 00 00 83 27 08 00 3a 02 00 00 57 28 08 00 d7 00 00 00 | .&..G...;'.......'..:...W(...... |
| 77a0 | 92 2a 08 00 fe 00 00 00 6a 2b 08 00 93 00 00 00 69 2c 08 00 4e 01 00 00 fd 2c 08 00 30 00 00 00 | .*......j+......i,..N....,..0... |
| 77c0 | 4c 2e 08 00 c8 00 00 00 7d 2e 08 00 ab 00 00 00 46 2f 08 00 31 00 00 00 f2 2f 08 00 29 00 00 00 | L.......}.......F/..1..../..)... |
| 77e0 | 24 30 08 00 68 01 00 00 4e 30 08 00 39 00 00 00 b7 31 08 00 3b 01 00 00 f1 31 08 00 b2 00 00 00 | $0..h...N0..9....1..;....1...... |
| 7800 | 2d 33 08 00 27 00 00 00 e0 33 08 00 44 00 00 00 08 34 08 00 d2 00 00 00 4d 34 08 00 73 00 00 00 | -3..'....3..D....4......M4..s... |
| 7820 | 20 35 08 00 d7 00 00 00 94 35 08 00 9f 00 00 00 6c 36 08 00 2d 01 00 00 0c 37 08 00 af 00 00 00 | .5.......5......l6..-....7...... |
| 7840 | 3a 38 08 00 cc 00 00 00 ea 38 08 00 4f 00 00 00 b7 39 08 00 3f 01 00 00 07 3a 08 00 c1 00 00 00 | :8.......8..O....9..?....:...... |
| 7860 | 47 3b 08 00 59 00 00 00 09 3c 08 00 59 00 00 00 63 3c 08 00 21 01 00 00 bd 3c 08 00 59 00 00 00 | G;..Y....<..Y...c<..!....<..Y... |
| 7880 | df 3d 08 00 29 01 00 00 39 3e 08 00 6f 00 00 00 63 3f 08 00 8f 00 00 00 d3 3f 08 00 8d 00 00 00 | .=..)...9>..o...c?.......?...... |
| 78a0 | 63 40 08 00 9e 00 00 00 f1 40 08 00 6e 00 00 00 90 41 08 00 6c 00 00 00 ff 41 08 00 3a 00 00 00 | c@.......@..n....A..l....A..:... |
| 78c0 | 6c 42 08 00 95 00 00 00 a7 42 08 00 68 00 00 00 3d 43 08 00 58 00 00 00 a6 43 08 00 15 01 00 00 | lB.......B..h...=C..X....C...... |
| 78e0 | ff 43 08 00 96 00 00 00 15 45 08 00 52 00 00 00 ac 45 08 00 52 00 00 00 ff 45 08 00 99 00 00 00 | .C.......E..R....E..R....E...... |
| 7900 | 52 46 08 00 96 00 00 00 ec 46 08 00 ec 00 00 00 83 47 08 00 94 00 00 00 70 48 08 00 9e 00 00 00 | RF.......F.......G......pH...... |
| 7920 | 05 49 08 00 79 00 00 00 a4 49 08 00 78 00 00 00 1e 4a 08 00 50 00 00 00 97 4a 08 00 9e 00 00 00 | .I..y....I..x....J..P....J...... |
| 7940 | e8 4a 08 00 13 00 00 00 87 4b 08 00 40 00 00 00 9b 4b 08 00 3a 00 00 00 dc 4b 08 00 98 01 00 00 | .J.......K..@....K..:....K...... |
| 7960 | 17 4c 08 00 2d 00 00 00 b0 4d 08 00 39 00 00 00 de 4d 08 00 e0 00 00 00 18 4e 08 00 18 00 00 00 | .L..-....M..9....M.......N...... |
| 7980 | f9 4e 08 00 26 00 00 00 12 4f 08 00 57 00 00 00 39 4f 08 00 57 00 00 00 91 4f 08 00 ad 00 00 00 | .N..&....O..W...9O..W....O...... |
| 79a0 | e9 4f 08 00 ad 00 00 00 97 50 08 00 b5 00 00 00 45 51 08 00 70 01 00 00 fb 51 08 00 1b 00 00 00 | .O.......P......EQ..p....Q...... |
| 79c0 | 6c 53 08 00 ab 01 00 00 88 53 08 00 eb 00 00 00 34 55 08 00 bb 00 00 00 20 56 08 00 bb 00 00 00 | lS.......S......4U.......V...... |
| 79e0 | dc 56 08 00 fd 00 00 00 98 57 08 00 85 00 00 00 96 58 08 00 b5 00 00 00 1c 59 08 00 b5 00 00 00 | .V.......W.......X.......Y...... |
| 7a00 | d2 59 08 00 5b 00 00 00 88 5a 08 00 83 00 00 00 e4 5a 08 00 4b 00 00 00 68 5b 08 00 47 00 00 00 | .Y..[....Z.......Z..K...h[..G... |
| 7a20 | b4 5b 08 00 45 00 00 00 fc 5b 08 00 45 00 00 00 42 5c 08 00 59 01 00 00 88 5c 08 00 27 00 00 00 | .[..E....[..E...B\..Y....\..'... |
| 7a40 | e2 5d 08 00 f8 00 00 00 0a 5e 08 00 0c 01 00 00 03 5f 08 00 28 02 00 00 10 60 08 00 ff 00 00 00 | .].......^......._..(....`...... |
| 7a60 | 39 62 08 00 61 00 00 00 39 63 08 00 c8 00 00 00 9b 63 08 00 5a 00 00 00 64 64 08 00 5c 00 00 00 | 9b..a...9c.......c..Z...dd..\... |
| 7a80 | bf 64 08 00 a9 00 00 00 1c 65 08 00 b6 00 00 00 c6 65 08 00 5e 00 00 00 7d 66 08 00 d3 00 00 00 | .d.......e.......e..^...}f...... |
| 7aa0 | dc 66 08 00 24 00 00 00 b0 67 08 00 14 00 00 00 d5 67 08 00 1a 00 00 00 ea 67 08 00 bc 00 00 00 | .f..$....g.......g.......g...... |
| 7ac0 | 05 68 08 00 68 00 00 00 c2 68 08 00 1f 00 00 00 2b 69 08 00 24 00 00 00 4b 69 08 00 bd 00 00 00 | .h..h....h......+i..$...Ki...... |
| 7ae0 | 70 69 08 00 1f 00 00 00 2e 6a 08 00 17 00 00 00 4e 6a 08 00 21 00 00 00 66 6a 08 00 21 00 00 00 | pi.......j......Nj..!...fj..!... |
| 7b00 | 88 6a 08 00 22 00 00 00 aa 6a 08 00 40 00 00 00 cd 6a 08 00 1a 00 00 00 0e 6b 08 00 45 00 00 00 | .j.."....j..@....j.......k..E... |
| 7b20 | 29 6b 08 00 17 01 00 00 6f 6b 08 00 54 00 00 00 87 6c 08 00 c0 01 00 00 dc 6c 08 00 d2 01 00 00 | )k......ok..T....l.......l...... |
| 7b40 | 9d 6e 08 00 a2 00 00 00 70 70 08 00 d1 00 00 00 13 71 08 00 e4 00 00 00 e5 71 08 00 bf 00 00 00 | .n......pp.......q.......q...... |
| 7b60 | ca 72 08 00 dc 00 00 00 8a 73 08 00 4e 01 00 00 67 74 08 00 45 00 00 00 b6 75 08 00 34 00 00 00 | .r.......s..N...gt..E....u..4... |
| 7b80 | fc 75 08 00 b4 00 00 00 31 76 08 00 f9 00 00 00 e6 76 08 00 f9 00 00 00 e0 77 08 00 c5 00 00 00 | .u......1v.......v.......w...... |
| 7ba0 | da 78 08 00 27 00 00 00 a0 79 08 00 b7 00 00 00 c8 79 08 00 ae 00 00 00 80 7a 08 00 52 00 00 00 | .x..'....y.......y.......z..R... |
| 7bc0 | 2f 7b 08 00 ab 00 00 00 82 7b 08 00 c8 00 00 00 2e 7c 08 00 5b 00 00 00 f7 7c 08 00 6d 00 00 00 | /{.......{.......|..[....|..m... |
| 7be0 | 53 7d 08 00 ab 00 00 00 c1 7d 08 00 30 00 00 00 6d 7e 08 00 35 00 00 00 9e 7e 08 00 68 00 00 00 | S}.......}..0...m~..5....~..h... |
| 7c00 | d4 7e 08 00 53 00 00 00 3d 7f 08 00 33 00 00 00 91 7f 08 00 2d 00 00 00 c5 7f 08 00 4e 00 00 00 | .~..S...=...3.......-.......N... |
| 7c20 | f3 7f 08 00 70 00 00 00 42 80 08 00 6c 00 00 00 b3 80 08 00 c5 00 00 00 20 81 08 00 b7 00 00 00 | ....p...B...l................... |
| 7c40 | e6 81 08 00 38 00 00 00 9e 82 08 00 39 00 00 00 d7 82 08 00 21 01 00 00 11 83 08 00 dd 00 00 00 | ....8.......9.......!........... |
| 7c60 | 33 84 08 00 1e 01 00 00 11 85 08 00 5f 01 00 00 30 86 08 00 dc 00 00 00 90 87 08 00 c8 00 00 00 | 3..........._...0............... |
| 7c80 | 6d 88 08 00 36 00 00 00 36 89 08 00 6e 00 00 00 6d 89 08 00 91 00 00 00 dc 89 08 00 8e 00 00 00 | m...6...6...n...m............... |
| 7ca0 | 6e 8a 08 00 60 00 00 00 fd 8a 08 00 b0 00 00 00 5e 8b 08 00 6e 00 00 00 0f 8c 08 00 6b 00 00 00 | n...`...........^...n.......k... |
| 7cc0 | 7e 8c 08 00 35 00 00 00 ea 8c 08 00 33 00 00 00 20 8d 08 00 f1 00 00 00 54 8d 08 00 2b 00 00 00 | ~...5.......3...........T...+... |
| 7ce0 | 46 8e 08 00 38 00 00 00 72 8e 08 00 3a 01 00 00 ab 8e 08 00 4b 00 00 00 e6 8f 08 00 53 01 00 00 | F...8...r...:.......K.......S... |
| 7d00 | 32 90 08 00 92 01 00 00 86 91 08 00 a1 00 00 00 19 93 08 00 28 00 00 00 bb 93 08 00 35 01 00 00 | 2...................(.......5... |
| 7d20 | e4 93 08 00 9a 00 00 00 1a 95 08 00 10 01 00 00 b5 95 08 00 3d 00 00 00 c6 96 08 00 2b 00 00 00 | ....................=.......+... |
| 7d40 | 04 97 08 00 a6 00 00 00 30 97 08 00 2e 00 00 00 d7 97 08 00 3f 00 00 00 06 98 08 00 ec 00 00 00 | ........0...........?........... |
| 7d60 | 46 98 08 00 ee 00 00 00 33 99 08 00 7c 00 00 00 22 9a 08 00 9a 01 00 00 9f 9a 08 00 42 00 00 00 | F.......3...|..."...........B... |
| 7d80 | 3a 9c 08 00 82 00 00 00 7d 9c 08 00 9b 00 00 00 00 9d 08 00 31 00 00 00 9c 9d 08 00 b4 00 00 00 | :.......}...........1........... |
| 7da0 | ce 9d 08 00 b8 00 00 00 83 9e 08 00 63 00 00 00 3c 9f 08 00 33 00 00 00 a0 9f 08 00 3a 00 00 00 | ............c...<...3.......:... |
| 7dc0 | d4 9f 08 00 5e 00 00 00 0f a0 08 00 25 01 00 00 6e a0 08 00 42 00 00 00 94 a1 08 00 5c 00 00 00 | ....^.......%...n...B.......\... |
| 7de0 | d7 a1 08 00 56 00 00 00 34 a2 08 00 fe 00 00 00 8b a2 08 00 79 00 00 00 8a a3 08 00 55 00 00 00 | ....V...4...........y.......U... |
| 7e00 | 04 a4 08 00 58 00 00 00 5a a4 08 00 cd 01 00 00 b3 a4 08 00 3d 00 00 00 81 a6 08 00 e8 01 00 00 | ....X...Z...........=........... |
| 7e20 | bf a6 08 00 40 00 00 00 a8 a8 08 00 7f 00 00 00 e9 a8 08 00 6c 00 00 00 69 a9 08 00 6e 00 00 00 | ....@...............l...i...n... |
| 7e40 | d6 a9 08 00 e8 00 00 00 45 aa 08 00 a5 00 00 00 2e ab 08 00 6b 00 00 00 d4 ab 08 00 69 01 00 00 | ........E...........k.......i... |
| 7e60 | 40 ac 08 00 34 00 00 00 aa ad 08 00 79 00 00 00 df ad 08 00 3d 00 00 00 59 ae 08 00 54 00 00 00 | @...4.......y.......=...Y...T... |
| 7e80 | 97 ae 08 00 4c 00 00 00 ec ae 08 00 bc 00 00 00 39 af 08 00 ea 00 00 00 f6 af 08 00 6d 00 00 00 | ....L...........9...........m... |
| 7ea0 | e1 b0 08 00 e6 00 00 00 4f b1 08 00 36 00 00 00 36 b2 08 00 5b 00 00 00 6d b2 08 00 6a 00 00 00 | ........O...6...6...[...m...j... |
| 7ec0 | c9 b2 08 00 82 00 00 00 34 b3 08 00 73 00 00 00 b7 b3 08 00 49 00 00 00 2b b4 08 00 29 00 00 00 | ........4...s.......I...+...)... |
| 7ee0 | 75 b4 08 00 2a 01 00 00 9f b4 08 00 47 00 00 00 ca b5 08 00 46 00 00 00 12 b6 08 00 49 00 00 00 | u...*.......G.......F.......I... |
| 7f00 | 59 b6 08 00 49 00 00 00 a3 b6 08 00 22 00 00 00 ed b6 08 00 54 00 00 00 10 b7 08 00 65 00 00 00 | Y...I.......".......T.......e... |
| 7f20 | 65 b7 08 00 32 00 00 00 cb b7 08 00 9d 00 00 00 fe b7 08 00 77 00 00 00 9c b8 08 00 2c 00 00 00 | e...2...............w.......,... |
| 7f40 | 14 b9 08 00 42 00 00 00 41 b9 08 00 2b 00 00 00 84 b9 08 00 86 01 00 00 b0 b9 08 00 c4 00 00 00 | ....B...A...+................... |
| 7f60 | 37 bb 08 00 c6 00 00 00 fc bb 08 00 80 00 00 00 c3 bc 08 00 49 01 00 00 44 bd 08 00 90 00 00 00 | 7...................I...D....... |
| 7f80 | 8e be 08 00 38 00 00 00 1f bf 08 00 9f 00 00 00 58 bf 08 00 1c 01 00 00 f8 bf 08 00 d5 00 00 00 | ....8...........X............... |
| 7fa0 | 15 c1 08 00 38 00 00 00 eb c1 08 00 28 00 00 00 24 c2 08 00 5c 00 00 00 4d c2 08 00 29 00 00 00 | ....8.......(...$...\...M...)... |
| 7fc0 | aa c2 08 00 71 00 00 00 d4 c2 08 00 41 00 00 00 46 c3 08 00 0f 01 00 00 88 c3 08 00 26 00 00 00 | ....q.......A...F...........&... |
| 7fe0 | 98 c4 08 00 5c 00 00 00 bf c4 08 00 b6 00 00 00 1c c5 08 00 fc 00 00 00 d3 c5 08 00 89 00 00 00 | ....\........................... |
| 8000 | d0 c6 08 00 25 00 00 00 5a c7 08 00 5f 00 00 00 80 c7 08 00 ec 00 00 00 e0 c7 08 00 4e 00 00 00 | ....%...Z..._...............N... |
| 8020 | cd c8 08 00 84 00 00 00 1c c9 08 00 55 00 00 00 a1 c9 08 00 12 01 00 00 f7 c9 08 00 75 00 00 00 | ............U...............u... |
| 8040 | 0a cb 08 00 65 00 00 00 80 cb 08 00 e2 00 00 00 e6 cb 08 00 2f 00 00 00 c9 cc 08 00 29 00 00 00 | ....e.............../.......)... |
| 8060 | f9 cc 08 00 a0 01 00 00 23 cd 08 00 9f 01 00 00 c4 ce 08 00 e1 00 00 00 64 d0 08 00 ff 00 00 00 | ........#...............d....... |
| 8080 | 46 d1 08 00 db 00 00 00 46 d2 08 00 dc 00 00 00 22 d3 08 00 36 00 00 00 ff d3 08 00 40 00 00 00 | F.......F......."...6.......@... |
| 80a0 | 36 d4 08 00 1f 00 00 00 77 d4 08 00 40 00 00 00 97 d4 08 00 4d 00 00 00 d8 d4 08 00 4c 00 00 00 | 6.......w...@.......M.......L... |
| 80c0 | 26 d5 08 00 d8 00 00 00 73 d5 08 00 92 00 00 00 4c d6 08 00 43 00 00 00 df d6 08 00 af 00 00 00 | &.......s.......L...C........... |
| 80e0 | 23 d7 08 00 65 00 00 00 d3 d7 08 00 a8 00 00 00 39 d8 08 00 38 00 00 00 e2 d8 08 00 3e 01 00 00 | #...e...........9...8.......>... |
| 8100 | 1b d9 08 00 3c 00 00 00 5a da 08 00 90 00 00 00 97 da 08 00 58 00 00 00 28 db 08 00 95 00 00 00 | ....<...Z...........X...(....... |
| 8120 | 81 db 08 00 50 00 00 00 17 dc 08 00 64 00 00 00 68 dc 08 00 50 00 00 00 cd dc 08 00 6d 00 00 00 | ....P.......d...h...P.......m... |
| 8140 | 1e dd 08 00 3a 00 00 00 8c dd 08 00 29 00 00 00 c7 dd 08 00 6d 00 00 00 f1 dd 08 00 94 00 00 00 | ....:.......).......m........... |
| 8160 | 5f de 08 00 c0 00 00 00 f4 de 08 00 b8 01 00 00 b5 df 08 00 51 00 00 00 6e e1 08 00 21 00 00 00 | _...................Q...n...!... |
| 8180 | c0 e1 08 00 26 00 00 00 e2 e1 08 00 25 00 00 00 09 e2 08 00 71 00 00 00 2f e2 08 00 24 00 00 00 | ....&.......%.......q.../...$... |
| 81a0 | a1 e2 08 00 bc 01 00 00 c6 e2 08 00 55 00 00 00 83 e4 08 00 a9 00 00 00 d9 e4 08 00 4c 00 00 00 | ............U...............L... |
| 81c0 | 83 e5 08 00 ee 00 00 00 d0 e5 08 00 43 00 00 00 bf e6 08 00 39 00 00 00 03 e7 08 00 a9 00 00 00 | ............C.......9........... |
| 81e0 | 3d e7 08 00 a9 00 00 00 e7 e7 08 00 50 00 00 00 91 e8 08 00 53 01 00 00 e2 e8 08 00 46 00 00 00 | =...........P.......S.......F... |
| 8200 | 36 ea 08 00 44 00 00 00 7d ea 08 00 43 00 00 00 c2 ea 08 00 de 00 00 00 06 eb 08 00 83 00 00 00 | 6...D...}...C................... |
| 8220 | e5 eb 08 00 83 00 00 00 69 ec 08 00 39 01 00 00 ed ec 08 00 a0 00 00 00 27 ee 08 00 d1 00 00 00 | ........i...9...........'....... |
| 8240 | c8 ee 08 00 61 00 00 00 9a ef 08 00 b4 00 00 00 fc ef 08 00 b7 00 00 00 b1 f0 08 00 b6 00 00 00 | ....a........................... |
| 8260 | 69 f1 08 00 bb 00 00 00 20 f2 08 00 a1 00 00 00 dc f2 08 00 5c 00 00 00 7e f3 08 00 58 00 00 00 | i...................\...~...X... |
| 8280 | db f3 08 00 5c 00 00 00 34 f4 08 00 58 00 00 00 91 f4 08 00 71 00 00 00 ea f4 08 00 5e 00 00 00 | ....\...4...X.......q.......^... |
| 82a0 | 5c f5 08 00 21 01 00 00 bb f5 08 00 13 01 00 00 dd f6 08 00 12 01 00 00 f1 f7 08 00 09 01 00 00 | \...!........................... |
| 82c0 | 04 f9 08 00 40 00 00 00 0e fa 08 00 a3 00 00 00 4f fa 08 00 a3 00 00 00 f3 fa 08 00 9f 00 00 00 | ....@...........O............... |
| 82e0 | 97 fb 08 00 9f 00 00 00 37 fc 08 00 bb 00 00 00 d7 fc 08 00 b4 00 00 00 93 fd 08 00 54 00 00 00 | ........7...................T... |
| 8300 | 48 fe 08 00 bc 00 00 00 9d fe 08 00 56 00 00 00 5a ff 08 00 be 00 00 00 b1 ff 08 00 4e 00 00 00 | H...........V...Z...........N... |
| 8320 | 70 00 09 00 cf 01 00 00 bf 00 09 00 29 01 00 00 8f 02 09 00 63 00 00 00 b9 03 09 00 46 00 00 00 | p...........).......c.......F... |
| 8340 | 1d 04 09 00 7e 00 00 00 64 04 09 00 3c 00 00 00 e3 04 09 00 db 00 00 00 20 05 09 00 42 00 00 00 | ....~...d...<...............B... |
| 8360 | fc 05 09 00 4e 00 00 00 3f 06 09 00 4e 00 00 00 8e 06 09 00 49 00 00 00 dd 06 09 00 49 00 00 00 | ....N...?...N.......I.......I... |
| 8380 | 27 07 09 00 43 00 00 00 71 07 09 00 4b 00 00 00 b5 07 09 00 64 00 00 00 01 08 09 00 46 00 00 00 | '...C...q...K.......d.......F... |
| 83a0 | 66 08 09 00 84 00 00 00 ad 08 09 00 7c 00 00 00 32 09 09 00 86 00 00 00 af 09 09 00 2f 00 00 00 | f...........|...2.........../... |
| 83c0 | 36 0a 09 00 79 00 00 00 66 0a 09 00 76 00 00 00 e0 0a 09 00 81 00 00 00 57 0b 09 00 46 01 00 00 | 6...y...f...v...........W...F... |
| 83e0 | d9 0b 09 00 71 00 00 00 20 0d 09 00 66 00 00 00 92 0d 09 00 3f 00 00 00 f9 0d 09 00 88 00 00 00 | ....q.......f.......?........... |
| 8400 | 39 0e 09 00 da 00 00 00 c2 0e 09 00 19 00 00 00 9d 0f 09 00 90 01 00 00 b7 0f 09 00 a5 00 00 00 | 9............................... |
| 8420 | 48 11 09 00 43 00 00 00 ee 11 09 00 2a 00 00 00 32 12 09 00 4c 00 00 00 5d 12 09 00 3a 00 00 00 | H...C.......*...2...L...]...:... |
| 8440 | aa 12 09 00 4e 00 00 00 e5 12 09 00 b0 00 00 00 34 13 09 00 2a 00 00 00 e5 13 09 00 21 00 00 00 | ....N...........4...*.......!... |
| 8460 | 10 14 09 00 51 00 00 00 32 14 09 00 45 00 00 00 84 14 09 00 5f 00 00 00 ca 14 09 00 37 00 00 00 | ....Q...2...E......._.......7... |
| 8480 | 2a 15 09 00 41 00 00 00 62 15 09 00 44 00 00 00 a4 15 09 00 6a 00 00 00 e9 15 09 00 3c 00 00 00 | *...A...b...D.......j.......<... |
| 84a0 | 54 16 09 00 56 00 00 00 91 16 09 00 4a 00 00 00 e8 16 09 00 ee 00 00 00 33 17 09 00 47 00 00 00 | T...V.......J...........3...G... |
| 84c0 | 22 18 09 00 7a 00 00 00 6a 18 09 00 d2 00 00 00 e5 18 09 00 5f 00 00 00 b8 19 09 00 d5 00 00 00 | "...z...j..........._........... |
| 84e0 | 18 1a 09 00 39 00 00 00 ee 1a 09 00 70 00 00 00 28 1b 09 00 5d 00 00 00 99 1b 09 00 55 00 00 00 | ....9.......p...(...].......U... |
| 8500 | f7 1b 09 00 2b 00 00 00 4d 1c 09 00 38 00 00 00 79 1c 09 00 46 00 00 00 b2 1c 09 00 4c 00 00 00 | ....+...M...8...y...F.......L... |
| 8520 | f9 1c 09 00 62 00 00 00 46 1d 09 00 41 00 00 00 a9 1d 09 00 55 01 00 00 eb 1d 09 00 c0 00 00 00 | ....b...F...A.......U........... |
| 8540 | 41 1f 09 00 b6 00 00 00 02 20 09 00 94 00 00 00 b9 20 09 00 8d 00 00 00 4e 21 09 00 d5 00 00 00 | A.......................N!...... |
| 8560 | dc 21 09 00 7e 00 00 00 b2 22 09 00 a4 00 00 00 31 23 09 00 a6 00 00 00 d6 23 09 00 a2 00 00 00 | .!..~...."......1#.......#...... |
| 8580 | 7d 24 09 00 a2 00 00 00 20 25 09 00 c7 01 00 00 c3 25 09 00 39 00 00 00 8b 27 09 00 32 01 00 00 | }$.......%.......%..9....'..2... |
| 85a0 | c5 27 09 00 a8 00 00 00 f8 28 09 00 79 00 00 00 a1 29 09 00 33 00 00 00 1b 2a 09 00 90 00 00 00 | .'.......(..y....)..3....*...... |
| 85c0 | 4f 2a 09 00 b0 00 00 00 e0 2a 09 00 63 00 00 00 91 2b 09 00 b3 00 00 00 f5 2b 09 00 d6 00 00 00 | O*.......*..c....+.......+...... |
| 85e0 | a9 2c 09 00 2c 00 00 00 80 2d 09 00 52 00 00 00 ad 2d 09 00 6e 00 00 00 00 2e 09 00 4d 01 00 00 | .,..,....-..R....-..n.......M... |
| 8600 | 6f 2e 09 00 3b 00 00 00 bd 2f 09 00 ad 00 00 00 f9 2f 09 00 7b 02 00 00 a7 30 09 00 54 01 00 00 | o...;..../......./..{....0..T... |
| 8620 | 23 33 09 00 53 00 00 00 78 34 09 00 4b 00 00 00 cc 34 09 00 04 01 00 00 18 35 09 00 eb 00 00 00 | #3..S...x4..K....4.......5...... |
| 8640 | 1d 36 09 00 c8 00 00 00 09 37 09 00 c8 00 00 00 d2 37 09 00 b6 00 00 00 9b 38 09 00 bb 00 00 00 | .6.......7.......7.......8...... |
| 8660 | 52 39 09 00 60 00 00 00 0e 3a 09 00 b5 00 00 00 6f 3a 09 00 b9 00 00 00 25 3b 09 00 9b 00 00 00 | R9..`....:......o:......%;...... |
| 8680 | df 3b 09 00 0a 01 00 00 7b 3c 09 00 01 01 00 00 86 3d 09 00 38 00 00 00 88 3e 09 00 3b 00 00 00 | .;......{<.......=..8....>..;... |
| 86a0 | c1 3e 09 00 45 00 00 00 fd 3e 09 00 2c 00 00 00 43 3f 09 00 70 00 00 00 70 3f 09 00 4e 00 00 00 | .>..E....>..,...C?..p...p?..N... |
| 86c0 | e1 3f 09 00 6e 00 00 00 30 40 09 00 7c 01 00 00 9f 40 09 00 7c 01 00 00 1c 42 09 00 71 01 00 00 | .?..n...0@..|....@..|....B..q... |
| 86e0 | 99 43 09 00 54 00 00 00 0b 45 09 00 90 00 00 00 60 45 09 00 4b 00 00 00 f1 45 09 00 6d 00 00 00 | .C..T....E......`E..K....E..m... |
| 8700 | 3d 46 09 00 11 01 00 00 ab 46 09 00 4e 00 00 00 bd 47 09 00 7b 00 00 00 0c 48 09 00 50 00 00 00 | =F.......F..N....G..{....H..P... |
| 8720 | 88 48 09 00 58 00 00 00 d9 48 09 00 b1 00 00 00 32 49 09 00 a9 00 00 00 e4 49 09 00 74 00 00 00 | .H..X....H......2I.......I..t... |
| 8740 | 8e 4a 09 00 72 00 00 00 03 4b 09 00 88 00 00 00 76 4b 09 00 6c 00 00 00 ff 4b 09 00 60 00 00 00 | .J..r....K......vK..l....K..`... |
| 8760 | 6c 4c 09 00 44 00 00 00 cd 4c 09 00 17 01 00 00 12 4d 09 00 ff 00 00 00 2a 4e 09 00 44 00 00 00 | lL..D....L.......M......*N..D... |
| 8780 | 2a 4f 09 00 87 00 00 00 6f 4f 09 00 50 00 00 00 f7 4f 09 00 70 00 00 00 48 50 09 00 87 00 00 00 | *O......oO..P....O..p...HP...... |
| 87a0 | b9 50 09 00 65 00 00 00 41 51 09 00 40 00 00 00 a7 51 09 00 6e 00 00 00 e8 51 09 00 64 00 00 00 | .P..e...AQ..@....Q..n....Q..d... |
| 87c0 | 57 52 09 00 59 02 00 00 bc 52 09 00 88 00 00 00 16 55 09 00 25 00 00 00 9f 55 09 00 88 00 00 00 | WR..Y....R.......U..%....U...... |
| 87e0 | c5 55 09 00 a5 00 00 00 4e 56 09 00 57 01 00 00 f4 56 09 00 32 01 00 00 4c 58 09 00 49 01 00 00 | .U......NV..W....V..2...LX..I... |
| 8800 | 7f 59 09 00 51 01 00 00 c9 5a 09 00 fb 00 00 00 1b 5c 09 00 28 00 00 00 17 5d 09 00 95 00 00 00 | .Y..Q....Z.......\..(....]...... |
| 8820 | 40 5d 09 00 af 00 00 00 d6 5d 09 00 af 00 00 00 86 5e 09 00 76 00 00 00 36 5f 09 00 a6 00 00 00 | @].......].......^..v...6_...... |
| 8840 | ad 5f 09 00 84 01 00 00 54 60 09 00 6a 00 00 00 d9 61 09 00 b9 00 00 00 44 62 09 00 0f 01 00 00 | ._......T`..j....a......Db...... |
| 8860 | fe 62 09 00 36 00 00 00 0e 64 09 00 a5 00 00 00 45 64 09 00 a7 00 00 00 eb 64 09 00 7b 00 00 00 | .b..6....d......Ed.......d..{... |
| 8880 | 93 65 09 00 67 00 00 00 0f 66 09 00 32 00 00 00 77 66 09 00 fe 00 00 00 aa 66 09 00 9d 00 00 00 | .e..g....f..2...wf.......f...... |
| 88a0 | a9 67 09 00 bb 00 00 00 47 68 09 00 77 00 00 00 03 69 09 00 bf 00 00 00 7b 69 09 00 c7 00 00 00 | .g......Gh..w....i......{i...... |
| 88c0 | 3b 6a 09 00 cc 00 00 00 03 6b 09 00 d1 00 00 00 d0 6b 09 00 2d 04 00 00 a2 6c 09 00 5d 00 00 00 | ;j.......k.......k..-....l..]... |
| 88e0 | d0 70 09 00 e3 00 00 00 2e 71 09 00 cf 00 00 00 12 72 09 00 07 01 00 00 e2 72 09 00 10 01 00 00 | .p.......q.......r.......r...... |
| 8900 | ea 73 09 00 9c 00 00 00 fb 74 09 00 8a 00 00 00 98 75 09 00 97 00 00 00 23 76 09 00 40 00 00 00 | .s.......t.......u......#v..@... |
| 8920 | bb 76 09 00 f0 00 00 00 fc 76 09 00 0b 01 00 00 ed 77 09 00 37 01 00 00 f9 78 09 00 75 01 00 00 | .v.......v.......w..7....x..u... |
| 8940 | 31 7a 09 00 97 01 00 00 a7 7b 09 00 f0 00 00 00 3f 7d 09 00 01 01 00 00 30 7e 09 00 aa 00 00 00 | 1z.......{......?}......0~...... |
| 8960 | 32 7f 09 00 69 00 00 00 dd 7f 09 00 6b 00 00 00 47 80 09 00 df 00 00 00 b3 80 09 00 44 00 00 00 | 2...i.......k...G...........D... |
| 8980 | 93 81 09 00 ec 00 00 00 d8 81 09 00 86 00 00 00 c5 82 09 00 d5 00 00 00 4c 83 09 00 b9 00 00 00 | ........................L....... |
| 89a0 | 22 84 09 00 a6 00 00 00 dc 84 09 00 c8 00 00 00 83 85 09 00 71 00 00 00 4c 86 09 00 2c 01 00 00 | "...................q...L...,... |
| 89c0 | be 86 09 00 84 00 00 00 eb 87 09 00 00 01 00 00 70 88 09 00 e5 00 00 00 71 89 09 00 2d 01 00 00 | ................p.......q...-... |
| 89e0 | 57 8a 09 00 12 01 00 00 85 8b 09 00 f2 00 00 00 98 8c 09 00 a4 00 00 00 8b 8d 09 00 90 01 00 00 | W............................... |
| 8a00 | 30 8e 09 00 a2 00 00 00 c1 8f 09 00 b3 01 00 00 64 90 09 00 53 00 00 00 18 92 09 00 5f 00 00 00 | 0...............d...S......._... |
| 8a20 | 6c 92 09 00 80 00 00 00 cc 92 09 00 81 00 00 00 4d 93 09 00 8f 00 00 00 cf 93 09 00 7b 00 00 00 | l...............M...........{... |
| 8a40 | 5f 94 09 00 7a 00 00 00 db 94 09 00 f3 00 00 00 56 95 09 00 f2 00 00 00 4a 96 09 00 3a 00 00 00 | _...z...........V.......J...:... |
| 8a60 | 3d 97 09 00 3a 00 00 00 78 97 09 00 41 00 00 00 b3 97 09 00 67 00 00 00 f5 97 09 00 42 00 00 00 | =...:...x...A.......g.......B... |
| 8a80 | 5d 98 09 00 38 00 00 00 a0 98 09 00 53 00 00 00 d9 98 09 00 5c 00 00 00 2d 99 09 00 e1 01 00 00 | ]...8.......S.......\...-....... |
| 8aa0 | 8a 99 09 00 bb 00 00 00 6c 9b 09 00 41 00 00 00 28 9c 09 00 e7 00 00 00 6a 9c 09 00 21 01 00 00 | ........l...A...(.......j...!... |
| 8ac0 | 52 9d 09 00 4d 00 00 00 74 9e 09 00 96 00 00 00 c2 9e 09 00 80 00 00 00 59 9f 09 00 e5 00 00 00 | R...M...t...............Y....... |
| 8ae0 | da 9f 09 00 da 00 00 00 c0 a0 09 00 a4 00 00 00 9b a1 09 00 66 00 00 00 40 a2 09 00 ad 00 00 00 | ....................f...@....... |
| 8b00 | a7 a2 09 00 17 00 00 00 55 a3 09 00 16 00 00 00 6d a3 09 00 16 00 00 00 84 a3 09 00 1c 00 00 00 | ........U.......m............... |
| 8b20 | 9b a3 09 00 1d 00 00 00 b8 a3 09 00 14 00 00 00 d6 a3 09 00 13 00 00 00 eb a3 09 00 14 00 00 00 | ................................ |
| 8b40 | ff a3 09 00 22 00 00 00 14 a4 09 00 3f 00 00 00 37 a4 09 00 16 00 00 00 77 a4 09 00 52 00 00 00 | ....".......?...7.......w...R... |
| 8b60 | 8e a4 09 00 89 00 00 00 e1 a4 09 00 4b 00 00 00 6b a5 09 00 0d 01 00 00 b7 a5 09 00 41 00 00 00 | ............K...k...........A... |
| 8b80 | c5 a6 09 00 6d 00 00 00 07 a7 09 00 8d 00 00 00 75 a7 09 00 6a 00 00 00 03 a8 09 00 32 00 00 00 | ....m...........u...j.......2... |
| 8ba0 | 6e a8 09 00 61 00 00 00 a1 a8 09 00 8d 00 00 00 03 a9 09 00 8e 00 00 00 91 a9 09 00 47 00 00 00 | n...a.......................G... |
| 8bc0 | 20 aa 09 00 40 00 00 00 68 aa 09 00 6c 00 00 00 a9 aa 09 00 4c 00 00 00 16 ab 09 00 3f 00 00 00 | ....@...h...l.......L.......?... |
| 8be0 | 63 ab 09 00 2a 00 00 00 a3 ab 09 00 00 01 00 00 ce ab 09 00 1c 01 00 00 cf ac 09 00 a2 00 00 00 | c...*........................... |
| 8c00 | ec ad 09 00 97 00 00 00 8f ae 09 00 59 00 00 00 27 af 09 00 62 00 00 00 81 af 09 00 1a 00 00 00 | ............Y...'...b........... |
| 8c20 | e4 af 09 00 1c 00 00 00 ff af 09 00 bb 00 00 00 1c b0 09 00 32 00 00 00 d8 b0 09 00 73 00 00 00 | ....................2.......s... |
| 8c40 | 0b b1 09 00 61 00 00 00 7f b1 09 00 76 00 00 00 e1 b1 09 00 47 00 00 00 58 b2 09 00 43 01 00 00 | ....a.......v.......G...X...C... |
| 8c60 | a0 b2 09 00 7d 00 00 00 e4 b3 09 00 e5 00 00 00 62 b4 09 00 11 00 00 00 48 b5 09 00 63 00 00 00 | ....}...........b.......H...c... |
| 8c80 | 5a b5 09 00 c6 00 00 00 be b5 09 00 8e 00 00 00 85 b6 09 00 2a 00 00 00 14 b7 09 00 98 00 00 00 | Z...................*........... |
| 8ca0 | 3f b7 09 00 bd 00 00 00 d8 b7 09 00 44 00 00 00 96 b8 09 00 a0 00 00 00 db b8 09 00 ca 00 00 00 | ?...........D................... |
| 8cc0 | 7c b9 09 00 c9 00 00 00 47 ba 09 00 41 00 00 00 11 bb 09 00 76 00 00 00 53 bb 09 00 c7 00 00 00 | |.......G...A.......v...S....... |
| 8ce0 | ca bb 09 00 58 00 00 00 92 bc 09 00 23 00 00 00 eb bc 09 00 76 00 00 00 0f bd 09 00 36 00 00 00 | ....X.......#.......v.......6... |
| 8d00 | 86 bd 09 00 97 00 00 00 bd bd 09 00 c0 00 00 00 55 be 09 00 8b 00 00 00 16 bf 09 00 2c 00 00 00 | ................U...........,... |
| 8d20 | a2 bf 09 00 2b 00 00 00 cf bf 09 00 2e 00 00 00 fb bf 09 00 33 00 00 00 2a c0 09 00 fc 00 00 00 | ....+...............3...*....... |
| 8d40 | 5e c0 09 00 e9 00 00 00 5b c1 09 00 31 00 00 00 45 c2 09 00 26 00 00 00 77 c2 09 00 4d 00 00 00 | ^.......[...1...E...&...w...M... |
| 8d60 | 9e c2 09 00 60 00 00 00 ec c2 09 00 20 01 00 00 4d c3 09 00 1d 00 00 00 6e c4 09 00 89 00 00 00 | ....`...........M.......n....... |
| 8d80 | 8c c4 09 00 be 00 00 00 16 c5 09 00 60 01 00 00 d5 c5 09 00 80 00 00 00 36 c7 09 00 78 00 00 00 | ............`...........6...x... |
| 8da0 | b7 c7 09 00 7e 00 00 00 30 c8 09 00 7b 00 00 00 af c8 09 00 29 00 00 00 2b c9 09 00 e9 00 00 00 | ....~...0...{.......)...+....... |
| 8dc0 | 55 c9 09 00 3d 00 00 00 3f ca 09 00 6f 00 00 00 7d ca 09 00 3b 00 00 00 ed ca 09 00 a5 00 00 00 | U...=...?...o...}...;........... |
| 8de0 | 29 cb 09 00 2d 01 00 00 cf cb 09 00 2c 01 00 00 fd cc 09 00 dd 00 00 00 2a ce 09 00 64 00 00 00 | )...-.......,...........*...d... |
| 8e00 | 08 cf 09 00 d6 00 00 00 6d cf 09 00 42 01 00 00 44 d0 09 00 41 01 00 00 87 d1 09 00 be 00 00 00 | ........m...B...D...A........... |
| 8e20 | c9 d2 09 00 40 00 00 00 88 d3 09 00 77 00 00 00 c9 d3 09 00 79 00 00 00 41 d4 09 00 76 00 00 00 | ....@.......w.......y...A...v... |
| 8e40 | bb d4 09 00 79 00 00 00 32 d5 09 00 6f 00 00 00 ac d5 09 00 d3 00 00 00 1c d6 09 00 41 00 00 00 | ....y...2...o...............A... |
| 8e60 | f0 d6 09 00 14 00 00 00 32 d7 09 00 23 01 00 00 47 d7 09 00 9d 01 00 00 6b d8 09 00 48 00 00 00 | ........2...#...G.......k...H... |
| 8e80 | 09 da 09 00 2c 00 00 00 52 da 09 00 bb 00 00 00 7f da 09 00 23 00 00 00 3b db 09 00 3d 00 00 00 | ....,...R...........#...;...=... |
| 8ea0 | 5f db 09 00 42 00 00 00 9d db 09 00 5b 00 00 00 e0 db 09 00 6b 00 00 00 3c dc 09 00 30 00 00 00 | _...B.......[.......k...<...0... |
| 8ec0 | a8 dc 09 00 3d 00 00 00 d9 dc 09 00 2c 00 00 00 17 dd 09 00 56 00 00 00 44 dd 09 00 56 00 00 00 | ....=.......,.......V...D...V... |
| 8ee0 | 9b dd 09 00 54 00 00 00 f2 dd 09 00 38 00 00 00 47 de 09 00 3d 00 00 00 80 de 09 00 3a 00 00 00 | ....T.......8...G...=.......:... |
| 8f00 | be de 09 00 3c 00 00 00 f9 de 09 00 44 00 00 00 36 df 09 00 34 00 00 00 7b df 09 00 32 01 00 00 | ....<.......D...6...4...{...2... |
| 8f20 | b0 df 09 00 30 00 00 00 e3 e0 09 00 dd 00 00 00 14 e1 09 00 09 00 00 00 f2 e1 09 00 d6 00 00 00 | ....0........................... |
| 8f40 | fc e1 09 00 49 00 00 00 d3 e2 09 00 47 00 00 00 1d e3 09 00 44 00 00 00 65 e3 09 00 4a 00 00 00 | ....I.......G.......D...e...J... |
| 8f60 | aa e3 09 00 26 00 00 00 f5 e3 09 00 1f 00 00 00 1c e4 09 00 74 00 00 00 3c e4 09 00 3d 00 00 00 | ....&...............t...<...=... |
| 8f80 | b1 e4 09 00 12 00 00 00 ef e4 09 00 30 00 00 00 02 e5 09 00 45 00 00 00 33 e5 09 00 2e 00 00 00 | ............0.......E...3....... |
| 8fa0 | 79 e5 09 00 06 00 00 00 a8 e5 09 00 65 00 00 00 af e5 09 00 4e 00 00 00 15 e6 09 00 b1 00 00 00 | y...........e.......N........... |
| 8fc0 | 64 e6 09 00 9b 00 00 00 16 e7 09 00 91 00 00 00 b2 e7 09 00 ae 00 00 00 44 e8 09 00 22 00 00 00 | d.......................D..."... |
| 8fe0 | f3 e8 09 00 aa 00 00 00 16 e9 09 00 39 01 00 00 c1 e9 09 00 5c 00 00 00 fb ea 09 00 75 00 00 00 | ............9.......\.......u... |
| 9000 | 58 eb 09 00 7d 00 00 00 ce eb 09 00 74 00 00 00 4c ec 09 00 58 00 00 00 c1 ec 09 00 5c 00 00 00 | X...}.......t...L...X.......\... |
| 9020 | 1a ed 09 00 6f 00 00 00 77 ed 09 00 99 00 00 00 e7 ed 09 00 9d 00 00 00 81 ee 09 00 80 00 00 00 | ....o...w....................... |
| 9040 | 1f ef 09 00 84 00 00 00 a0 ef 09 00 54 00 00 00 25 f0 09 00 4c 00 00 00 7a f0 09 00 51 00 00 00 | ............T...%...L...z...Q... |
| 9060 | c7 f0 09 00 d7 00 00 00 19 f1 09 00 68 00 00 00 f1 f1 09 00 62 00 00 00 5a f2 09 00 5e 00 00 00 | ............h.......b...Z...^... |
| 9080 | bd f2 09 00 3c 00 00 00 1c f3 09 00 77 00 00 00 59 f3 09 00 40 00 00 00 d1 f3 09 00 d7 00 00 00 | ....<.......w...Y...@........... |
| 90a0 | 12 f4 09 00 b3 00 00 00 ea f4 09 00 66 00 00 00 9e f5 09 00 37 00 00 00 05 f6 09 00 6a 00 00 00 | ............f.......7.......j... |
| 90c0 | 3d f6 09 00 42 00 00 00 a8 f6 09 00 3d 00 00 00 eb f6 09 00 38 00 00 00 29 f7 09 00 3d 00 00 00 | =...B.......=.......8...)...=... |
| 90e0 | 62 f7 09 00 40 00 00 00 a0 f7 09 00 48 01 00 00 e1 f7 09 00 4a 01 00 00 2a f9 09 00 52 00 00 00 | b...@.......H.......J...*...R... |
| 9100 | 75 fa 09 00 51 00 00 00 c8 fa 09 00 d9 00 00 00 1a fb 09 00 c9 00 00 00 f4 fb 09 00 4f 00 00 00 | u...Q.......................O... |
| 9120 | be fc 09 00 67 00 00 00 0e fd 09 00 8d 00 00 00 76 fd 09 00 49 00 00 00 04 fe 09 00 a0 01 00 00 | ....g...........v...I........... |
| 9140 | 4e fe 09 00 87 00 00 00 ef ff 09 00 5f 00 00 00 77 00 0a 00 fa 00 00 00 d7 00 0a 00 54 00 00 00 | N..........._...w...........T... |
| 9160 | d2 01 0a 00 25 00 00 00 27 02 0a 00 49 00 00 00 4d 02 0a 00 92 00 00 00 97 02 0a 00 54 00 00 00 | ....%...'...I...M...........T... |
| 9180 | 2a 03 0a 00 96 00 00 00 7f 03 0a 00 d0 00 00 00 16 04 0a 00 2a 00 00 00 e7 04 0a 00 1c 00 00 00 | *...................*........... |
| 91a0 | 12 05 0a 00 1f 00 00 00 2f 05 0a 00 32 00 00 00 4f 05 0a 00 12 01 00 00 82 05 0a 00 71 00 00 00 | ......../...2...O...........q... |
| 91c0 | 95 06 0a 00 5f 00 00 00 07 07 0a 00 69 00 00 00 67 07 0a 00 a5 00 00 00 d1 07 0a 00 a7 00 00 00 | ...._.......i...g............... |
| 91e0 | 77 08 0a 00 45 00 00 00 1f 09 0a 00 09 00 00 00 65 09 0a 00 2c 00 00 00 6f 09 0a 00 1f 00 00 00 | w...E...........e...,...o....... |
| 9200 | 9c 09 0a 00 0e 00 00 00 bc 09 0a 00 05 00 00 00 cb 09 0a 00 83 00 00 00 d1 09 0a 00 44 02 00 00 | ............................D... |
| 9220 | 55 0a 0a 00 dc 00 00 00 9a 0c 0a 00 8a 01 00 00 77 0d 0a 00 8e 01 00 00 02 0f 0a 00 0f 00 00 00 | U...............w............... |
| 9240 | 91 10 0a 00 93 00 00 00 a1 10 0a 00 13 00 00 00 35 11 0a 00 0e 00 00 00 49 11 0a 00 60 00 00 00 | ................5.......I...`... |
| 9260 | 58 11 0a 00 5e 00 00 00 b9 11 0a 00 a6 00 00 00 18 12 0a 00 9e 00 00 00 bf 12 0a 00 97 00 00 00 | X...^........................... |
| 9280 | 5e 13 0a 00 19 00 00 00 f6 13 0a 00 b8 00 00 00 10 14 0a 00 71 01 00 00 c9 14 0a 00 12 00 00 00 | ^...................q........... |
| 92a0 | 3b 16 0a 00 60 01 00 00 4e 16 0a 00 11 00 00 00 af 17 0a 00 0f 00 00 00 c1 17 0a 00 0f 00 00 00 | ;...`...N....................... |
| 92c0 | d1 17 0a 00 06 00 00 00 e1 17 0a 00 0b 00 00 00 e8 17 0a 00 35 00 00 00 f4 17 0a 00 27 00 00 00 | ....................5.......'... |
| 92e0 | 2a 18 0a 00 28 00 00 00 52 18 0a 00 44 00 00 00 7b 18 0a 00 60 00 00 00 c0 18 0a 00 63 00 00 00 | *...(...R...D...{...`.......c... |
| 9300 | 21 19 0a 00 3f 00 00 00 85 19 0a 00 5f 00 00 00 c5 19 0a 00 25 01 00 00 25 1a 0a 00 e1 00 00 00 | !...?......._.......%...%....... |
| 9320 | 4b 1b 0a 00 7c 00 00 00 2d 1c 0a 00 13 00 00 00 aa 1c 0a 00 1f 00 00 00 be 1c 0a 00 17 00 00 00 | K...|...-....................... |
| 9340 | de 1c 0a 00 15 00 00 00 f6 1c 0a 00 12 00 00 00 0c 1d 0a 00 29 00 00 00 1f 1d 0a 00 0d 00 00 00 | ....................)........... |
| 9360 | 49 1d 0a 00 38 00 00 00 57 1d 0a 00 af 00 00 00 90 1d 0a 00 0e 00 00 00 40 1e 0a 00 a3 01 00 00 | I...8...W...............@....... |
| 9380 | 4f 1e 0a 00 07 00 00 00 f3 1f 0a 00 0c 00 00 00 fb 1f 0a 00 0d 00 00 00 08 20 0a 00 1b 00 00 00 | O............................... |
| 93a0 | 16 20 0a 00 05 00 00 00 32 20 0a 00 46 01 00 00 38 20 0a 00 9b 01 00 00 7f 21 0a 00 06 00 00 00 | ........2...F...8........!...... |
| 93c0 | 1b 23 0a 00 16 00 00 00 22 23 0a 00 15 00 00 00 39 23 0a 00 07 00 00 00 4f 23 0a 00 9c 00 00 00 | .#......"#......9#......O#...... |
| 93e0 | 57 23 0a 00 15 00 00 00 f4 23 0a 00 2e 00 00 00 0a 24 0a 00 49 00 00 00 39 24 0a 00 e2 00 00 00 | W#.......#.......$..I...9$...... |
| 9400 | 83 24 0a 00 58 00 00 00 66 25 0a 00 23 00 00 00 bf 25 0a 00 22 00 00 00 e3 25 0a 00 15 00 00 00 | .$..X...f%..#....%.."....%...... |
| 9420 | 06 26 0a 00 14 00 00 00 1c 26 0a 00 66 00 00 00 31 26 0a 00 25 00 00 00 98 26 0a 00 26 00 00 00 | .&.......&..f...1&..%....&..&... |
| 9440 | be 26 0a 00 0f 00 00 00 e5 26 0a 00 20 00 00 00 f5 26 0a 00 13 00 00 00 16 27 0a 00 39 00 00 00 | .&.......&.......&.......'..9... |
| 9460 | 2a 27 0a 00 59 00 00 00 64 27 0a 00 3e 00 00 00 be 27 0a 00 00 01 00 00 fd 27 0a 00 55 00 00 00 | *'..Y...d'..>....'.......'..U... |
| 9480 | fe 28 0a 00 6f 00 00 00 54 29 0a 00 54 00 00 00 c4 29 0a 00 6e 00 00 00 19 2a 0a 00 5d 00 00 00 | .(..o...T)..T....)..n....*..]... |
| 94a0 | 88 2a 0a 00 77 00 00 00 e6 2a 0a 00 51 00 00 00 5e 2b 0a 00 6b 00 00 00 b0 2b 0a 00 55 00 00 00 | .*..w....*..Q...^+..k....+..U... |
| 94c0 | 1c 2c 0a 00 6f 00 00 00 72 2c 0a 00 52 00 00 00 e2 2c 0a 00 6c 00 00 00 35 2d 0a 00 1a 00 00 00 | .,..o...r,..R....,..l...5-...... |
| 94e0 | a2 2d 0a 00 44 00 00 00 bd 2d 0a 00 36 00 00 00 02 2e 0a 00 46 00 00 00 39 2e 0a 00 2c 00 00 00 | .-..D....-..6.......F...9...,... |
| 9500 | 80 2e 0a 00 22 00 00 00 ad 2e 0a 00 88 00 00 00 d0 2e 0a 00 30 00 00 00 59 2f 0a 00 43 00 00 00 | ...."...............0...Y/..C... |
| 9520 | 8a 2f 0a 00 18 00 00 00 ce 2f 0a 00 28 00 00 00 e7 2f 0a 00 2f 00 00 00 10 30 0a 00 7f 00 00 00 | ./......./..(..../../....0...... |
| 9540 | 40 30 0a 00 68 00 00 00 c0 30 0a 00 8c 00 00 00 29 31 0a 00 9a 00 00 00 b6 31 0a 00 8a 00 00 00 | @0..h....0......)1.......1...... |
| 9560 | 51 32 0a 00 78 00 00 00 dc 32 0a 00 59 00 00 00 55 33 0a 00 4f 00 00 00 af 33 0a 00 19 01 00 00 | Q2..x....2..Y...U3..O....3...... |
| 9580 | ff 33 0a 00 24 01 00 00 19 35 0a 00 22 01 00 00 3e 36 0a 00 08 01 00 00 61 37 0a 00 f8 00 00 00 | .3..$....5.."...>6......a7...... |
| 95a0 | 6a 38 0a 00 f7 00 00 00 63 39 0a 00 f9 00 00 00 5b 3a 0a 00 f7 00 00 00 55 3b 0a 00 fc 00 00 00 | j8......c9......[:......U;...... |
| 95c0 | 4d 3c 0a 00 f7 00 00 00 4a 3d 0a 00 fc 00 00 00 42 3e 0a 00 f7 00 00 00 3f 3f 0a 00 c4 00 00 00 | M<......J=......B>......??...... |
| 95e0 | 37 40 0a 00 a1 00 00 00 fc 40 0a 00 73 00 00 00 9e 41 0a 00 f8 00 00 00 12 42 0a 00 4e 00 00 00 | 7@.......@..s....A.......B..N... |
| 9600 | 0b 43 0a 00 99 00 00 00 5a 43 0a 00 4b 00 00 00 f4 43 0a 00 5b 00 00 00 40 44 0a 00 40 00 00 00 | .C......ZC..K....C..[...@D..@... |
| 9620 | 9c 44 0a 00 99 00 00 00 dd 44 0a 00 4a 00 00 00 77 45 0a 00 4a 00 00 00 c2 45 0a 00 50 00 00 00 | .D.......D..J...wE..J....E..P... |
| 9640 | 0d 46 0a 00 47 00 00 00 5e 46 0a 00 44 01 00 00 a6 46 0a 00 45 01 00 00 eb 47 0a 00 44 01 00 00 | .F..G...^F..D....F..E....G..D... |
| 9660 | 31 49 0a 00 49 01 00 00 76 4a 0a 00 44 01 00 00 c0 4b 0a 00 45 01 00 00 05 4d 0a 00 44 01 00 00 | 1I..I...vJ..D....K..E....M..D... |
| 9680 | 4b 4e 0a 00 3c 01 00 00 90 4f 0a 00 a0 00 00 00 cd 50 0a 00 30 01 00 00 6e 51 0a 00 50 01 00 00 | KN..<....O.......P..0...nQ..P... |
| 96a0 | 9f 52 0a 00 d1 00 00 00 f0 53 0a 00 23 01 00 00 c2 54 0a 00 08 01 00 00 e6 55 0a 00 29 01 00 00 | .R.......S..#....T.......U..)... |
| 96c0 | ef 56 0a 00 2f 01 00 00 19 58 0a 00 da 00 00 00 49 59 0a 00 34 01 00 00 24 5a 0a 00 89 00 00 00 | .V../....X......IY..4...$Z...... |
| 96e0 | 59 5b 0a 00 66 00 00 00 e3 5b 0a 00 88 00 00 00 4a 5c 0a 00 a5 00 00 00 d3 5c 0a 00 70 00 00 00 | Y[..f....[......J\.......\..p... |
| 9700 | 79 5d 0a 00 6f 00 00 00 ea 5d 0a 00 8e 00 00 00 5a 5e 0a 00 b0 00 00 00 e9 5e 0a 00 0f 01 00 00 | y]..o....]......Z^.......^...... |
| 9720 | 9a 5f 0a 00 c3 00 00 00 aa 60 0a 00 84 00 00 00 6e 61 0a 00 be 00 00 00 f3 61 0a 00 db 00 00 00 | ._.......`......na.......a...... |
| 9740 | b2 62 0a 00 85 00 00 00 8e 63 0a 00 7d 00 00 00 14 64 0a 00 9a 00 00 00 92 64 0a 00 92 00 00 00 | .b.......c..}....d.......d...... |
| 9760 | 2d 65 0a 00 91 00 00 00 c0 65 0a 00 d5 00 00 00 52 66 0a 00 93 00 00 00 28 67 0a 00 8e 00 00 00 | -e.......e......Rf......(g...... |
| 9780 | bc 67 0a 00 fa 00 00 00 4b 68 0a 00 bd 00 00 00 46 69 0a 00 f5 00 00 00 04 6a 0a 00 a6 00 00 00 | .g......Kh......Fi.......j...... |
| 97a0 | fa 6a 0a 00 a1 00 00 00 a1 6b 0a 00 7b 00 00 00 43 6c 0a 00 fc 00 00 00 bf 6c 0a 00 fd 00 00 00 | .j.......k..{...Cl.......l...... |
| 97c0 | bc 6d 0a 00 19 01 00 00 ba 6e 0a 00 9d 00 00 00 d4 6f 0a 00 be 01 00 00 72 70 0a 00 b1 00 00 00 | .m.......n.......o......rp...... |
| 97e0 | 31 72 0a 00 5b 00 00 00 e3 72 0a 00 63 00 00 00 3f 73 0a 00 33 01 00 00 a3 73 0a 00 3b 00 00 00 | 1r..[....r..c...?s..3....s..;... |
| 9800 | d7 74 0a 00 98 00 00 00 13 75 0a 00 54 00 00 00 ac 75 0a 00 59 00 00 00 01 76 0a 00 de 00 00 00 | .t.......u..T....u..Y....v...... |
| 9820 | 5b 76 0a 00 9a 00 00 00 3a 77 0a 00 2b 00 00 00 d5 77 0a 00 c0 00 00 00 01 78 0a 00 c5 00 00 00 | [v......:w..+....w.......x...... |
| 9840 | c2 78 0a 00 3a 00 00 00 88 79 0a 00 35 00 00 00 c3 79 0a 00 87 00 00 00 f9 79 0a 00 5c 00 00 00 | .x..:....y..5....y.......y..\... |
| 9860 | 81 7a 0a 00 74 00 00 00 de 7a 0a 00 da 00 00 00 53 7b 0a 00 f0 00 00 00 2e 7c 0a 00 84 00 00 00 | .z..t....z......S{.......|...... |
| 9880 | 1f 7d 0a 00 f0 00 00 00 a4 7d 0a 00 f0 00 00 00 95 7e 0a 00 f0 00 00 00 86 7f 0a 00 f1 00 00 00 | .}.......}.......~.............. |
| 98a0 | 77 80 0a 00 5f 00 00 00 69 81 0a 00 83 00 00 00 c9 81 0a 00 bd 00 00 00 4d 82 0a 00 79 00 00 00 | w..._...i...............M...y... |
| 98c0 | 0b 83 0a 00 7e 00 00 00 85 83 0a 00 36 00 00 00 04 84 0a 00 78 00 00 00 3b 84 0a 00 85 00 00 00 | ....~.......6.......x...;....... |
| 98e0 | b4 84 0a 00 51 00 00 00 3a 85 0a 00 3e 00 00 00 8c 85 0a 00 3e 00 00 00 cb 85 0a 00 75 00 00 00 | ....Q...:...>.......>.......u... |
| 9900 | 0a 86 0a 00 53 00 00 00 80 86 0a 00 df 00 00 00 d4 86 0a 00 a1 00 00 00 b4 87 0a 00 ac 00 00 00 | ....S........................... |
| 9920 | 56 88 0a 00 3b 00 00 00 03 89 0a 00 47 00 00 00 3f 89 0a 00 67 00 00 00 87 89 0a 00 d8 00 00 00 | V...;.......G...?...g........... |
| 9940 | ef 89 0a 00 5a 00 00 00 c8 8a 0a 00 38 00 00 00 23 8b 0a 00 88 01 00 00 5c 8b 0a 00 c5 00 00 00 | ....Z.......8...#.......\....... |
| 9960 | e5 8c 0a 00 a1 00 00 00 ab 8d 0a 00 6d 00 00 00 4d 8e 0a 00 4e 00 00 00 bb 8e 0a 00 54 00 00 00 | ............m...M...N.......T... |
| 9980 | 0a 8f 0a 00 3d 00 00 00 5f 8f 0a 00 8a 00 00 00 9d 8f 0a 00 6f 00 00 00 28 90 0a 00 2e 00 00 00 | ....=..._...........o...(....... |
| 99a0 | 98 90 0a 00 31 00 00 00 c7 90 0a 00 3c 00 00 00 f9 90 0a 00 17 01 00 00 36 91 0a 00 db 00 00 00 | ....1.......<...........6....... |
| 99c0 | 4e 92 0a 00 49 00 00 00 2a 93 0a 00 4a 00 00 00 74 93 0a 00 49 00 00 00 bf 93 0a 00 49 00 00 00 | N...I...*...J...t...I.......I... |
| 99e0 | 09 94 0a 00 0b 01 00 00 53 94 0a 00 51 00 00 00 5f 95 0a 00 96 00 00 00 b1 95 0a 00 5d 00 00 00 | ........S...Q..._...........]... |
| 9a00 | 48 96 0a 00 49 00 00 00 a6 96 0a 00 46 00 00 00 f0 96 0a 00 37 00 00 00 37 97 0a 00 38 01 00 00 | H...I.......F.......7...7...8... |
| 9a20 | 6f 97 0a 00 31 00 00 00 a8 98 0a 00 30 00 00 00 da 98 0a 00 39 00 00 00 0b 99 0a 00 33 00 00 00 | o...1.......0.......9.......3... |
| 9a40 | 45 99 0a 00 33 00 00 00 79 99 0a 00 49 00 00 00 ad 99 0a 00 d9 00 00 00 f7 99 0a 00 78 00 00 00 | E...3...y...I...............x... |
| 9a60 | d1 9a 0a 00 79 00 00 00 4a 9b 0a 00 8c 00 00 00 c4 9b 0a 00 47 00 00 00 51 9c 0a 00 fb 00 00 00 | ....y...J...........G...Q....... |
| 9a80 | 99 9c 0a 00 b7 00 00 00 95 9d 0a 00 5b 00 00 00 4d 9e 0a 00 b7 00 00 00 a9 9e 0a 00 42 00 00 00 | ............[...M...........B... |
| 9aa0 | 61 9f 0a 00 46 00 00 00 a4 9f 0a 00 30 00 00 00 eb 9f 0a 00 39 00 00 00 1c a0 0a 00 25 00 00 00 | a...F.......0.......9.......%... |
| 9ac0 | 56 a0 0a 00 2e 00 00 00 7c a0 0a 00 2e 00 00 00 ab a0 0a 00 39 00 00 00 da a0 0a 00 c1 00 00 00 | V.......|...........9........... |
| 9ae0 | 14 a1 0a 00 8c 00 00 00 d6 a1 0a 00 b5 00 00 00 63 a2 0a 00 42 00 00 00 19 a3 0a 00 a5 00 00 00 | ................c...B........... |
| 9b00 | 5c a3 0a 00 b9 00 00 00 02 a4 0a 00 3e 00 00 00 bc a4 0a 00 74 00 00 00 fb a4 0a 00 6c 00 00 00 | \...........>.......t.......l... |
| 9b20 | 70 a5 0a 00 81 00 00 00 dd a5 0a 00 19 00 00 00 5f a6 0a 00 23 00 00 00 79 a6 0a 00 b7 00 00 00 | p..............._...#...y....... |
| 9b40 | 9d a6 0a 00 dc 00 00 00 55 a7 0a 00 13 00 00 00 32 a8 0a 00 54 00 00 00 46 a8 0a 00 5f 01 00 00 | ........U.......2...T...F..._... |
| 9b60 | 9b a8 0a 00 63 01 00 00 fb a9 0a 00 17 00 00 00 5f ab 0a 00 1a 00 00 00 77 ab 0a 00 1d 00 00 00 | ....c..........._.......w....... |
| 9b80 | 92 ab 0a 00 a2 00 00 00 b0 ab 0a 00 17 00 00 00 53 ac 0a 00 86 01 00 00 6b ac 0a 00 8a 00 00 00 | ................S.......k....... |
| 9ba0 | f2 ad 0a 00 5b 00 00 00 7d ae 0a 00 3b 00 00 00 d9 ae 0a 00 dd 00 00 00 15 af 0a 00 1d 01 00 00 | ....[...}...;................... |
| 9bc0 | f3 af 0a 00 32 00 00 00 11 b1 0a 00 20 00 00 00 44 b1 0a 00 5d 00 00 00 65 b1 0a 00 54 00 00 00 | ....2...........D...]...e...T... |
| 9be0 | c3 b1 0a 00 04 00 00 00 18 b2 0a 00 30 00 00 00 1d b2 0a 00 0c 00 00 00 4e b2 0a 00 0c 00 00 00 | ............0...........N....... |
| 9c00 | 5b b2 0a 00 60 00 00 00 68 b2 0a 00 09 00 00 00 c9 b2 0a 00 35 01 00 00 d3 b2 0a 00 33 01 00 00 | [...`...h...........5.......3... |
| 9c20 | 09 b4 0a 00 70 00 00 00 3d b5 0a 00 03 00 00 00 ae b5 0a 00 62 00 00 00 b2 b5 0a 00 03 00 00 00 | ....p...=...........b........... |
| 9c40 | 15 b6 0a 00 11 00 00 00 19 b6 0a 00 0b 00 00 00 2b b6 0a 00 16 00 00 00 37 b6 0a 00 19 00 00 00 | ................+.......7....... |
| 9c60 | 4e b6 0a 00 15 00 00 00 68 b6 0a 00 11 00 00 00 7e b6 0a 00 14 00 00 00 90 b6 0a 00 6a 02 00 00 | N.......h.......~...........j... |
| 9c80 | a5 b6 0a 00 3d 01 00 00 10 b9 0a 00 85 01 00 00 4e ba 0a 00 95 00 00 00 d4 bb 0a 00 d5 01 00 00 | ....=...........N............... |
| 9ca0 | 6a bc 0a 00 32 00 00 00 40 be 0a 00 1e 00 00 00 73 be 0a 00 05 00 00 00 92 be 0a 00 45 01 00 00 | j...2...@.......s...........E... |
| 9cc0 | 98 be 0a 00 16 00 00 00 de bf 0a 00 3b 00 00 00 f5 bf 0a 00 18 00 00 00 31 c0 0a 00 16 00 00 00 | ............;...........1....... |
| 9ce0 | 4a c0 0a 00 05 00 00 00 61 c0 0a 00 8e 00 00 00 67 c0 0a 00 60 00 00 00 f6 c0 0a 00 0c 00 00 00 | J.......a.......g...`........... |
| 9d00 | 57 c1 0a 00 0d 00 00 00 64 c1 0a 00 3d 00 00 00 72 c1 0a 00 3b 00 00 00 b0 c1 0a 00 07 00 00 00 | W.......d...=...r...;........... |
| 9d20 | ec c1 0a 00 10 00 00 00 f4 c1 0a 00 6c 00 00 00 05 c2 0a 00 0e 00 00 00 72 c2 0a 00 4b 00 00 00 | ............l...........r...K... |
| 9d40 | 81 c2 0a 00 47 00 00 00 cd c2 0a 00 65 00 00 00 15 c3 0a 00 a1 00 00 00 7b c3 0a 00 3f 00 00 00 | ....G.......e...........{...?... |
| 9d60 | 1d c4 0a 00 4b 01 00 00 5d c4 0a 00 4a 01 00 00 a9 c5 0a 00 44 01 00 00 f4 c6 0a 00 15 00 00 00 | ....K...]...J.......D........... |
| 9d80 | 39 c8 0a 00 24 00 00 00 4f c8 0a 00 0a 00 00 00 74 c8 0a 00 24 00 00 00 7f c8 0a 00 09 00 00 00 | 9...$...O.......t...$........... |
| 9da0 | a4 c8 0a 00 29 00 00 00 ae c8 0a 00 1b 00 00 00 d8 c8 0a 00 c9 00 00 00 f4 c8 0a 00 0b 00 00 00 | ....)........................... |
| 9dc0 | be c9 0a 00 85 00 00 00 ca c9 0a 00 26 00 00 00 50 ca 0a 00 3d 00 00 00 77 ca 0a 00 52 00 00 00 | ............&...P...=...w...R... |
| 9de0 | b5 ca 0a 00 b4 00 00 00 08 cb 0a 00 a9 00 00 00 bd cb 0a 00 26 00 00 00 67 cc 0a 00 b0 00 00 00 | ....................&...g....... |
| 9e00 | 8e cc 0a 00 de 00 00 00 3f cd 0a 00 df 00 00 00 1e ce 0a 00 1c 00 00 00 fe ce 0a 00 8f 00 00 00 | ........?....................... |
| 9e20 | 1b cf 0a 00 8c 00 00 00 ab cf 0a 00 90 00 00 00 38 d0 0a 00 5d 00 00 00 c9 d0 0a 00 44 00 00 00 | ................8...].......D... |
| 9e40 | 27 d1 0a 00 2f 00 00 00 6c d1 0a 00 b0 00 00 00 9c d1 0a 00 50 00 00 00 4d d2 0a 00 a6 00 00 00 | '.../...l...........P...M....... |
| 9e60 | 9e d2 0a 00 ec 00 00 00 45 d3 0a 00 64 00 00 00 32 d4 0a 00 53 00 00 00 97 d4 0a 00 df 00 00 00 | ........E...d...2...S........... |
| 9e80 | eb d4 0a 00 86 00 00 00 cb d5 0a 00 63 00 00 00 52 d6 0a 00 68 00 00 00 b6 d6 0a 00 d1 00 00 00 | ............c...R...h........... |
| 9ea0 | 1f d7 0a 00 6f 00 00 00 f1 d7 0a 00 8d 00 00 00 61 d8 0a 00 78 00 00 00 ef d8 0a 00 7a 00 00 00 | ....o...........a...x.......z... |
| 9ec0 | 68 d9 0a 00 7d 00 00 00 e3 d9 0a 00 80 00 00 00 61 da 0a 00 33 00 00 00 e2 da 0a 00 71 00 00 00 | h...}...........a...3.......q... |
| 9ee0 | 16 db 0a 00 db 00 00 00 88 db 0a 00 a5 00 00 00 64 dc 0a 00 75 00 00 00 0a dd 0a 00 59 00 00 00 | ................d...u.......Y... |
| 9f00 | 80 dd 0a 00 58 00 00 00 da dd 0a 00 9b 00 00 00 33 de 0a 00 c3 00 00 00 cf de 0a 00 b6 00 00 00 | ....X...........3............... |
| 9f20 | 93 df 0a 00 ba 00 00 00 4a e0 0a 00 29 00 00 00 05 e1 0a 00 9c 00 00 00 2f e1 0a 00 e3 00 00 00 | ........J...).........../....... |
| 9f40 | cc e1 0a 00 9e 00 00 00 b0 e2 0a 00 44 00 00 00 4f e3 0a 00 44 00 00 00 94 e3 0a 00 ed 00 00 00 | ............D...O...D........... |
| 9f60 | d9 e3 0a 00 3c 00 00 00 c7 e4 0a 00 bd 00 00 00 04 e5 0a 00 bf 00 00 00 c2 e5 0a 00 88 00 00 00 | ....<........................... |
| 9f80 | 82 e6 0a 00 85 00 00 00 0b e7 0a 00 6f 00 00 00 91 e7 0a 00 cf 00 00 00 01 e8 0a 00 17 00 00 00 | ............o................... |
| 9fa0 | d1 e8 0a 00 12 00 00 00 e9 e8 0a 00 18 00 00 00 fc e8 0a 00 39 00 00 00 15 e9 0a 00 1b 00 00 00 | ....................9........... |
| 9fc0 | 4f e9 0a 00 31 00 00 00 6b e9 0a 00 21 00 00 00 9d e9 0a 00 07 00 00 00 bf e9 0a 00 12 00 00 00 | O...1...k...!................... |
| 9fe0 | c7 e9 0a 00 79 00 00 00 da e9 0a 00 e5 00 00 00 54 ea 0a 00 e5 00 00 00 3a eb 0a 00 ac 00 00 00 | ....y...........T.......:....... |
| a000 | 20 ec 0a 00 84 00 00 00 cd ec 0a 00 36 01 00 00 52 ed 0a 00 5a 00 00 00 89 ee 0a 00 c4 00 00 00 | ............6...R...Z........... |
| a020 | e4 ee 0a 00 4b 00 00 00 a9 ef 0a 00 a7 00 00 00 f5 ef 0a 00 17 00 00 00 9d f0 0a 00 e8 00 00 00 | ....K........................... |
| a040 | b5 f0 0a 00 48 00 00 00 9e f1 0a 00 41 00 00 00 e7 f1 0a 00 2e 00 00 00 29 f2 0a 00 47 00 00 00 | ....H.......A...........)...G... |
| a060 | 58 f2 0a 00 3f 00 00 00 a0 f2 0a 00 9b 00 00 00 e0 f2 0a 00 9c 00 00 00 7c f3 0a 00 68 00 00 00 | X...?...................|...h... |
| a080 | 19 f4 0a 00 1b 01 00 00 82 f4 0a 00 22 00 00 00 9e f5 0a 00 08 00 00 00 c1 f5 0a 00 2a 00 00 00 | ............"...............*... |
| a0a0 | ca f5 0a 00 34 00 00 00 f5 f5 0a 00 ae 00 00 00 2a f6 0a 00 17 01 00 00 d9 f6 0a 00 79 00 00 00 | ....4...........*...........y... |
| a0c0 | f1 f7 0a 00 73 00 00 00 6b f8 0a 00 bf 00 00 00 df f8 0a 00 dc 00 00 00 9f f9 0a 00 7b 01 00 00 | ....s...k...................{... |
| a0e0 | 7c fa 0a 00 90 01 00 00 f8 fb 0a 00 13 01 00 00 89 fd 0a 00 a0 00 00 00 9d fe 0a 00 36 01 00 00 | |...........................6... |
| a100 | 3e ff 0a 00 04 02 00 00 75 00 0b 00 a7 00 00 00 7a 02 0b 00 b6 00 00 00 22 03 0b 00 ad 00 00 00 | >.......u.......z......."....... |
| a120 | d9 03 0b 00 67 00 00 00 87 04 0b 00 71 00 00 00 ef 04 0b 00 fe 00 00 00 61 05 0b 00 7d 00 00 00 | ....g.......q...........a...}... |
| a140 | 60 06 0b 00 7e 00 00 00 de 06 0b 00 6d 01 00 00 5d 07 0b 00 7a 00 00 00 cb 08 0b 00 e2 00 00 00 | `...~.......m...]...z........... |
| a160 | 46 09 0b 00 1e 01 00 00 29 0a 0b 00 56 00 00 00 48 0b 0b 00 89 00 00 00 9f 0b 0b 00 16 01 00 00 | F.......)...V...H............... |
| a180 | 29 0c 0b 00 06 01 00 00 40 0d 0b 00 b1 00 00 00 47 0e 0b 00 58 00 00 00 f9 0e 0b 00 92 00 00 00 | ).......@.......G...X........... |
| a1a0 | 52 0f 0b 00 80 00 00 00 e5 0f 0b 00 7d 00 00 00 66 10 0b 00 98 00 00 00 e4 10 0b 00 b5 00 00 00 | R...........}...f............... |
| a1c0 | 7d 11 0b 00 a2 00 00 00 33 12 0b 00 00 01 00 00 d6 12 0b 00 37 00 00 00 d7 13 0b 00 42 00 00 00 | }.......3...........7.......B... |
| a1e0 | 0f 14 0b 00 d0 00 00 00 52 14 0b 00 cf 00 00 00 23 15 0b 00 fd 00 00 00 f3 15 0b 00 3c 01 00 00 | ........R.......#...........<... |
| a200 | f1 16 0b 00 fb 00 00 00 2e 18 0b 00 bf 00 00 00 2a 19 0b 00 9e 00 00 00 ea 19 0b 00 9b 01 00 00 | ................*............... |
| a220 | 89 1a 0b 00 a4 00 00 00 25 1c 0b 00 fb 00 00 00 ca 1c 0b 00 18 01 00 00 c6 1d 0b 00 20 01 00 00 | ........%....................... |
| a240 | df 1e 0b 00 5d 00 00 00 00 20 0b 00 4b 00 00 00 5e 20 0b 00 97 00 00 00 aa 20 0b 00 57 00 00 00 | ....].......K...^...........W... |
| a260 | 42 21 0b 00 3e 00 00 00 9a 21 0b 00 b0 00 00 00 d9 21 0b 00 f1 00 00 00 8a 22 0b 00 b6 00 00 00 | B!..>....!.......!......."...... |
| a280 | 7c 23 0b 00 b8 00 00 00 33 24 0b 00 b6 00 00 00 ec 24 0b 00 b8 00 00 00 a3 25 0b 00 5d 00 00 00 | |#......3$.......$.......%..]... |
| a2a0 | 5c 26 0b 00 4a 00 00 00 ba 26 0b 00 34 00 00 00 05 27 0b 00 2c 00 00 00 3a 27 0b 00 24 00 00 00 | \&..J....&..4....'..,...:'..$... |
| a2c0 | 67 27 0b 00 41 00 00 00 8c 27 0b 00 d6 00 00 00 ce 27 0b 00 d9 00 00 00 a5 28 0b 00 ae 00 00 00 | g'..A....'.......'.......(...... |
| a2e0 | 7f 29 0b 00 cf 00 00 00 2e 2a 0b 00 59 00 00 00 fe 2a 0b 00 14 00 00 00 58 2b 0b 00 b5 00 00 00 | .).......*..Y....*......X+...... |
| a300 | 6d 2b 0b 00 c3 00 00 00 23 2c 0b 00 48 00 00 00 e7 2c 0b 00 95 00 00 00 30 2d 0b 00 62 00 00 00 | m+......#,..H....,......0-..b... |
| a320 | c6 2d 0b 00 86 00 00 00 29 2e 0b 00 fe 00 00 00 b0 2e 0b 00 41 00 00 00 af 2f 0b 00 93 00 00 00 | .-......)...........A..../...... |
| a340 | f1 2f 0b 00 09 00 00 00 85 30 0b 00 18 00 00 00 8f 30 0b 00 33 00 00 00 a8 30 0b 00 99 00 00 00 | ./.......0.......0..3....0...... |
| a360 | dc 30 0b 00 9a 00 00 00 76 31 0b 00 22 00 00 00 11 32 0b 00 16 00 00 00 34 32 0b 00 1f 00 00 00 | .0......v1.."....2......42...... |
| a380 | 4b 32 0b 00 27 00 00 00 6b 32 0b 00 30 00 00 00 93 32 0b 00 10 00 00 00 c4 32 0b 00 21 00 00 00 | K2..'...k2..0....2.......2..!... |
| a3a0 | d5 32 0b 00 1c 00 00 00 f7 32 0b 00 aa 01 00 00 14 33 0b 00 82 00 00 00 bf 34 0b 00 ac 00 00 00 | .2.......2.......3.......4...... |
| a3c0 | 42 35 0b 00 fe 00 00 00 ef 35 0b 00 60 00 00 00 ee 36 0b 00 55 00 00 00 4f 37 0b 00 51 00 00 00 | B5.......5..`....6..U...O7..Q... |
| a3e0 | a5 37 0b 00 90 01 00 00 f7 37 0b 00 86 01 00 00 88 39 0b 00 85 01 00 00 0f 3b 0b 00 01 00 00 00 | .7.......7.......9.......;...... |
| a400 | 95 3c 0b 00 76 00 00 00 97 3c 0b 00 6b 00 00 00 0e 3d 0b 00 60 00 00 00 7a 3d 0b 00 a9 00 00 00 | .<..v....<..k....=..`...z=...... |
| a420 | db 3d 0b 00 c9 00 00 00 85 3e 0b 00 9b 00 00 00 4f 3f 0b 00 c3 00 00 00 eb 3f 0b 00 3c 00 00 00 | .=.......>......O?.......?..<... |
| a440 | af 40 0b 00 38 00 00 00 ec 40 0b 00 95 00 00 00 25 41 0b 00 2e 00 00 00 bb 41 0b 00 57 00 00 00 | .@..8....@......%A.......A..W... |
| a460 | ea 41 0b 00 61 00 00 00 42 42 0b 00 69 00 00 00 a4 42 0b 00 4b 00 00 00 0e 43 0b 00 a4 00 00 00 | .A..a...BB..i....B..K....C...... |
| a480 | 5a 43 0b 00 52 00 00 00 ff 43 0b 00 53 00 00 00 52 44 0b 00 51 00 00 00 a6 44 0b 00 52 00 00 00 | ZC..R....C..S...RD..Q....D..R... |
| a4a0 | f8 44 0b 00 65 00 00 00 4b 45 0b 00 c4 00 00 00 b1 45 0b 00 35 00 00 00 76 46 0b 00 51 00 00 00 | .D..e...KE.......E..5...vF..Q... |
| a4c0 | ac 46 0b 00 a7 00 00 00 fe 46 0b 00 8a 00 00 00 a6 47 0b 00 96 00 00 00 31 48 0b 00 81 00 00 00 | .F.......F.......G......1H...... |
| a4e0 | c8 48 0b 00 7f 00 00 00 4a 49 0b 00 33 00 00 00 ca 49 0b 00 88 00 00 00 fe 49 0b 00 e3 00 00 00 | .H......JI..3....I.......I...... |
| a500 | 87 4a 0b 00 c3 00 00 00 6b 4b 0b 00 3a 00 00 00 2f 4c 0b 00 5a 00 00 00 6a 4c 0b 00 65 00 00 00 | .J......kK..:.../L..Z...jL..e... |
| a520 | c5 4c 0b 00 c3 00 00 00 2b 4d 0b 00 db 00 00 00 ef 4d 0b 00 50 00 00 00 cb 4e 0b 00 4d 00 00 00 | .L......+M.......M..P....N..M... |
| a540 | 1c 4f 0b 00 06 01 00 00 6a 4f 0b 00 1d 01 00 00 71 50 0b 00 f2 00 00 00 8f 51 0b 00 48 00 00 00 | .O......jO......qP.......Q..H... |
| a560 | 82 52 0b 00 b0 00 00 00 cb 52 0b 00 9f 00 00 00 7c 53 0b 00 1f 00 00 00 1c 54 0b 00 71 00 00 00 | .R.......R......|S.......T..q... |
| a580 | 3c 54 0b 00 75 00 00 00 ae 54 0b 00 75 00 00 00 24 55 0b 00 dc 00 00 00 9a 55 0b 00 3f 00 00 00 | <T..u....T..u...$U.......U..?... |
| a5a0 | 77 56 0b 00 6d 00 00 00 b7 56 0b 00 d9 00 00 00 25 57 0b 00 da 00 00 00 ff 57 0b 00 1c 00 00 00 | wV..m....V......%W.......W...... |
| a5c0 | da 58 0b 00 13 00 00 00 f7 58 0b 00 20 00 00 00 0b 59 0b 00 14 00 00 00 2c 59 0b 00 13 00 00 00 | .X.......X.......Y......,Y...... |
| a5e0 | 41 59 0b 00 03 01 00 00 55 59 0b 00 1d 00 00 00 59 5a 0b 00 1d 00 00 00 77 5a 0b 00 23 00 00 00 | AY......UY......YZ......wZ..#... |
| a600 | 95 5a 0b 00 1d 00 00 00 b9 5a 0b 00 29 00 00 00 d7 5a 0b 00 3f 01 00 00 01 5b 0b 00 31 00 00 00 | .Z.......Z..)....Z..?....[..1... |
| a620 | 41 5c 0b 00 31 00 00 00 73 5c 0b 00 33 00 00 00 a5 5c 0b 00 33 00 00 00 d9 5c 0b 00 10 00 00 00 | A\..1...s\..3....\..3....\...... |
| a640 | 0d 5d 0b 00 0c 00 00 00 1e 5d 0b 00 2d 00 00 00 2b 5d 0b 00 2c 00 00 00 59 5d 0b 00 12 00 00 00 | .].......]..-...+]..,...Y]...... |
| a660 | 86 5d 0b 00 2c 00 00 00 99 5d 0b 00 12 00 00 00 c6 5d 0b 00 25 00 00 00 d9 5d 0b 00 3c 00 00 00 | .]..,....].......]..%....]..<... |
| a680 | ff 5d 0b 00 12 00 00 00 3c 5e 0b 00 35 00 00 00 4f 5e 0b 00 13 00 00 00 85 5e 0b 00 1e 00 00 00 | .]......<^..5...O^.......^...... |
| a6a0 | 99 5e 0b 00 25 00 00 00 b8 5e 0b 00 1e 00 00 00 de 5e 0b 00 25 00 00 00 fd 5e 0b 00 1e 00 00 00 | .^..%....^.......^..%....^...... |
| a6c0 | 23 5f 0b 00 25 00 00 00 42 5f 0b 00 1f 00 00 00 68 5f 0b 00 26 00 00 00 88 5f 0b 00 21 00 00 00 | #_..%...B_......h_..&...._..!... |
| a6e0 | af 5f 0b 00 28 00 00 00 d1 5f 0b 00 34 00 00 00 fa 5f 0b 00 16 00 00 00 2f 60 0b 00 1c 00 00 00 | ._..(...._..4...._....../`...... |
| a700 | 46 60 0b 00 12 00 00 00 63 60 0b 00 12 00 00 00 76 60 0b 00 34 00 00 00 89 60 0b 00 13 00 00 00 | F`......c`......v`..4....`...... |
| a720 | be 60 0b 00 1d 00 00 00 d2 60 0b 00 13 00 00 00 f0 60 0b 00 30 00 00 00 04 61 0b 00 1f 00 00 00 | .`.......`.......`..0....a...... |
| a740 | 35 61 0b 00 1f 00 00 00 55 61 0b 00 13 00 00 00 75 61 0b 00 16 00 00 00 89 61 0b 00 25 01 00 00 | 5a......Ua......ua.......a..%... |
| a760 | a0 61 0b 00 d3 00 00 00 c6 62 0b 00 26 00 00 00 9a 63 0b 00 55 00 00 00 c1 63 0b 00 55 00 00 00 | .a.......b..&....c..U....c..U... |
| a780 | 17 64 0b 00 13 00 00 00 6d 64 0b 00 38 00 00 00 81 64 0b 00 41 00 00 00 ba 64 0b 00 16 00 00 00 | .d......md..8....d..A....d...... |
| a7a0 | fc 64 0b 00 9d 00 00 00 13 65 0b 00 41 00 00 00 b1 65 0b 00 38 00 00 00 f3 65 0b 00 1e 00 00 00 | .d.......e..A....e..8....e...... |
| a7c0 | 2c 66 0b 00 22 00 00 00 4b 66 0b 00 5d 00 00 00 6e 66 0b 00 55 00 00 00 cc 66 0b 00 1e 00 00 00 | ,f.."...Kf..]...nf..U....f...... |
| a7e0 | 22 67 0b 00 44 00 00 00 41 67 0b 00 25 00 00 00 86 67 0b 00 08 01 00 00 ac 67 0b 00 76 00 00 00 | "g..D...Ag..%....g.......g..v... |
| a800 | b5 68 0b 00 fd 01 00 00 2c 69 0b 00 21 00 00 00 2a 6b 0b 00 87 00 00 00 4c 6b 0b 00 54 00 00 00 | .h......,i..!...*k......Lk..T... |
| a820 | d4 6b 0b 00 2b 00 00 00 29 6c 0b 00 5b 00 00 00 55 6c 0b 00 45 00 00 00 b1 6c 0b 00 87 02 00 00 | .k..+...)l..[...Ul..E....l...... |
| a840 | f7 6c 0b 00 c3 00 00 00 7f 6f 0b 00 59 00 00 00 43 70 0b 00 25 00 00 00 9d 70 0b 00 1e 00 00 00 | .l.......o..Y...Cp..%....p...... |
| a860 | c3 70 0b 00 2a 00 00 00 e2 70 0b 00 2f 00 00 00 0d 71 0b 00 27 00 00 00 3d 71 0b 00 37 00 00 00 | .p..*....p../....q..'...=q..7... |
| a880 | 65 71 0b 00 54 00 00 00 9d 71 0b 00 4f 00 00 00 f2 71 0b 00 59 00 00 00 42 72 0b 00 4d 00 00 00 | eq..T....q..O....q..Y...Br..M... |
| a8a0 | 9c 72 0b 00 5f 00 00 00 ea 72 0b 00 33 00 00 00 4a 73 0b 00 64 00 00 00 7e 73 0b 00 7b 00 00 00 | .r.._....r..3...Js..d...~s..{... |
| a8c0 | e3 73 0b 00 49 00 00 00 5f 74 0b 00 1e 00 00 00 a9 74 0b 00 f3 00 00 00 c8 74 0b 00 f1 00 00 00 | .s..I..._t.......t.......t...... |
| a8e0 | bc 75 0b 00 5e 00 00 00 ae 76 0b 00 79 00 00 00 0d 77 0b 00 54 00 00 00 87 77 0b 00 43 00 00 00 | .u..^....v..y....w..T....w..C... |
| a900 | dc 77 0b 00 4f 00 00 00 20 78 0b 00 29 00 00 00 70 78 0b 00 82 00 00 00 9a 78 0b 00 22 00 00 00 | .w..O....x..)...px.......x.."... |
| a920 | 1d 79 0b 00 47 02 00 00 40 79 0b 00 47 02 00 00 88 7b 0b 00 fc 00 00 00 d0 7d 0b 00 9c 00 00 00 | .y..G...@y..G....{.......}...... |
| a940 | cd 7e 0b 00 2c 00 00 00 6a 7f 0b 00 16 00 00 00 97 7f 0b 00 53 00 00 00 ae 7f 0b 00 7d 00 00 00 | .~..,...j...........S.......}... |
| a960 | 02 80 0b 00 66 00 00 00 80 80 0b 00 68 00 00 00 e7 80 0b 00 b4 00 00 00 50 81 0b 00 4b 00 00 00 | ....f.......h...........P...K... |
| a980 | 05 82 0b 00 55 00 00 00 51 82 0b 00 22 00 00 00 a7 82 0b 00 18 00 00 00 ca 82 0b 00 31 00 00 00 | ....U...Q..."...............1... |
| a9a0 | e3 82 0b 00 1b 00 00 00 15 83 0b 00 1a 00 00 00 31 83 0b 00 17 00 00 00 4c 83 0b 00 17 00 00 00 | ................1.......L....... |
| a9c0 | 64 83 0b 00 17 00 00 00 7c 83 0b 00 35 00 00 00 94 83 0b 00 41 00 00 00 ca 83 0b 00 25 00 00 00 | d.......|...5.......A.......%... |
| a9e0 | 0c 84 0b 00 2d 00 00 00 32 84 0b 00 3e 00 00 00 60 84 0b 00 24 00 00 00 9f 84 0b 00 28 00 00 00 | ....-...2...>...`...$.......(... |
| aa00 | c4 84 0b 00 4d 00 00 00 ed 84 0b 00 50 00 00 00 3b 85 0b 00 33 00 00 00 8c 85 0b 00 35 00 00 00 | ....M.......P...;...3.......5... |
| aa20 | c0 85 0b 00 20 00 00 00 f6 85 0b 00 2b 00 00 00 17 86 0b 00 39 00 00 00 43 86 0b 00 73 02 00 00 | ............+.......9...C...s... |
| aa40 | 7d 86 0b 00 49 00 00 00 f1 88 0b 00 74 02 00 00 3b 89 0b 00 c9 00 00 00 b0 8b 0b 00 28 00 00 00 | }...I.......t...;...........(... |
| aa60 | 7a 8c 0b 00 5c 00 00 00 a3 8c 0b 00 19 00 00 00 00 8d 0b 00 16 00 00 00 1a 8d 0b 00 9e 00 00 00 | z...\........................... |
| aa80 | 31 8d 0b 00 23 00 00 00 d0 8d 0b 00 27 00 00 00 f4 8d 0b 00 18 00 00 00 1c 8e 0b 00 25 00 00 00 | 1...#.......'...............%... |
| aaa0 | 35 8e 0b 00 1c 00 00 00 5b 8e 0b 00 1f 00 00 00 78 8e 0b 00 53 00 00 00 98 8e 0b 00 53 00 00 00 | 5.......[.......x...S.......S... |
| aac0 | ec 8e 0b 00 16 00 00 00 40 8f 0b 00 7e 00 00 00 57 8f 0b 00 33 00 00 00 d6 8f 0b 00 25 00 00 00 | ........@...~...W...3.......%... |
| aae0 | 0a 90 0b 00 af 00 00 00 30 90 0b 00 d0 00 00 00 e0 90 0b 00 7e 00 00 00 b1 91 0b 00 25 00 00 00 | ........0...........~.......%... |
| ab00 | 30 92 0b 00 3d 00 00 00 56 92 0b 00 51 00 00 00 94 92 0b 00 04 01 00 00 e6 92 0b 00 49 00 00 00 | 0...=...V...Q...............I... |
| ab20 | eb 93 0b 00 47 00 00 00 35 94 0b 00 bd 00 00 00 7d 94 0b 00 78 00 00 00 3b 95 0b 00 aa 00 00 00 | ....G...5.......}...x...;....... |
| ab40 | b4 95 0b 00 41 00 00 00 5f 96 0b 00 43 00 00 00 a1 96 0b 00 3d 00 00 00 e5 96 0b 00 27 00 00 00 | ....A..._...C.......=.......'... |
| ab60 | 23 97 0b 00 1a 00 00 00 4b 97 0b 00 d2 00 00 00 66 97 0b 00 5b 00 00 00 39 98 0b 00 3d 00 00 00 | #.......K.......f...[...9...=... |
| ab80 | 95 98 0b 00 ab 00 00 00 d3 98 0b 00 1d 00 00 00 7f 99 0b 00 5a 00 00 00 9d 99 0b 00 5a 00 00 00 | ....................Z.......Z... |
| aba0 | f8 99 0b 00 77 00 00 00 53 9a 0b 00 7d 00 00 00 cb 9a 0b 00 dd 00 00 00 49 9b 0b 00 3f 00 00 00 | ....w...S...}...........I...?... |
| abc0 | 27 9c 0b 00 40 00 00 00 67 9c 0b 00 55 00 00 00 a8 9c 0b 00 af 00 00 00 fe 9c 0b 00 5e 00 00 00 | '...@...g...U...............^... |
| abe0 | ae 9d 0b 00 72 00 00 00 0d 9e 0b 00 3b 00 00 00 80 9e 0b 00 65 00 00 00 bc 9e 0b 00 37 00 00 00 | ....r.......;.......e.......7... |
| ac00 | 22 9f 0b 00 25 00 00 00 5a 9f 0b 00 51 00 00 00 80 9f 0b 00 55 00 00 00 d2 9f 0b 00 38 00 00 00 | "...%...Z...Q.......U.......8... |
| ac20 | 28 a0 0b 00 13 00 00 00 61 a0 0b 00 45 00 00 00 75 a0 0b 00 40 00 00 00 bb a0 0b 00 26 00 00 00 | (.......a...E...u...@.......&... |
| ac40 | fc a0 0b 00 24 00 00 00 23 a1 0b 00 44 00 00 00 48 a1 0b 00 4a 00 00 00 8d a1 0b 00 4b 00 00 00 | ....$...#...D...H...J.......K... |
| ac60 | d8 a1 0b 00 4a 00 00 00 24 a2 0b 00 4b 00 00 00 6f a2 0b 00 1f 00 00 00 bb a2 0b 00 1f 00 00 00 | ....J...$...K...o............... |
| ac80 | db a2 0b 00 96 00 00 00 fb a2 0b 00 26 00 00 00 92 a3 0b 00 29 00 00 00 b9 a3 0b 00 22 00 00 00 | ............&.......)......."... |
| aca0 | e3 a3 0b 00 1f 00 00 00 06 a4 0b 00 24 00 00 00 26 a4 0b 00 28 00 00 00 4b a4 0b 00 18 00 00 00 | ............$...&...(...K....... |
| acc0 | 74 a4 0b 00 1b 00 00 00 8d a4 0b 00 26 00 00 00 a9 a4 0b 00 29 00 00 00 d0 a4 0b 00 57 00 00 00 | t...........&.......).......W... |
| ace0 | fa a4 0b 00 54 00 00 00 52 a5 0b 00 52 00 00 00 a7 a5 0b 00 51 00 00 00 fa a5 0b 00 40 00 00 00 | ....T...R...R.......Q.......@... |
| ad00 | 4c a6 0b 00 28 00 00 00 8d a6 0b 00 70 00 00 00 b6 a6 0b 00 26 00 00 00 27 a7 0b 00 79 00 00 00 | L...(.......p.......&...'...y... |
| ad20 | 4e a7 0b 00 62 00 00 00 c8 a7 0b 00 56 00 00 00 2b a8 0b 00 0b 00 00 00 82 a8 0b 00 2c 00 00 00 | N...b.......V...+...........,... |
| ad40 | 8e a8 0b 00 35 00 00 00 bb a8 0b 00 3f 00 00 00 f1 a8 0b 00 77 00 00 00 31 a9 0b 00 2d 00 00 00 | ....5.......?.......w...1...-... |
| ad60 | a9 a9 0b 00 33 00 00 00 d7 a9 0b 00 31 00 00 00 0b aa 0b 00 69 00 00 00 3d aa 0b 00 69 00 00 00 | ....3.......1.......i...=...i... |
| ad80 | a7 aa 0b 00 9c 00 00 00 11 ab 0b 00 89 00 00 00 ae ab 0b 00 24 00 00 00 38 ac 0b 00 56 00 00 00 | ....................$...8...V... |
| ada0 | 5d ac 0b 00 16 00 00 00 b4 ac 0b 00 4c 00 00 00 cb ac 0b 00 3c 00 00 00 18 ad 0b 00 9e 00 00 00 | ]...........L.......<........... |
| adc0 | 55 ad 0b 00 26 00 00 00 f4 ad 0b 00 27 00 00 00 1b ae 0b 00 1f 00 00 00 43 ae 0b 00 5c 00 00 00 | U...&.......'...........C...\... |
| ade0 | 63 ae 0b 00 3f 00 00 00 c0 ae 0b 00 36 00 00 00 00 af 0b 00 38 00 00 00 37 af 0b 00 66 00 00 00 | c...?.......6.......8...7...f... |
| ae00 | 70 af 0b 00 24 00 00 00 d7 af 0b 00 4d 00 00 00 fc af 0b 00 27 00 00 00 4a b0 0b 00 27 00 00 00 | p...$.......M.......'...J...'... |
| ae20 | 72 b0 0b 00 ee 00 00 00 9a b0 0b 00 1f 00 00 00 89 b1 0b 00 1e 00 00 00 a9 b1 0b 00 24 01 00 00 | r...........................$... |
| ae40 | c8 b1 0b 00 a1 00 00 00 ed b2 0b 00 3c 00 00 00 8f b3 0b 00 6e 00 00 00 cc b3 0b 00 83 00 00 00 | ............<.......n........... |
| ae60 | 3b b4 0b 00 3e 00 00 00 bf b4 0b 00 55 00 00 00 fe b4 0b 00 27 01 00 00 54 b5 0b 00 50 00 00 00 | ;...>.......U.......'...T...P... |
| ae80 | 7c b6 0b 00 22 00 00 00 cd b6 0b 00 5a 00 00 00 f0 b6 0b 00 2c 00 00 00 4b b7 0b 00 47 00 00 00 | |...".......Z.......,...K...G... |
| aea0 | 78 b7 0b 00 7b 00 00 00 c0 b7 0b 00 77 00 00 00 3c b8 0b 00 65 00 00 00 b4 b8 0b 00 65 00 00 00 | x...{.......w...<...e.......e... |
| aec0 | 1a b9 0b 00 5a 00 00 00 80 b9 0b 00 5a 00 00 00 db b9 0b 00 72 00 00 00 36 ba 0b 00 2e 00 00 00 | ....Z.......Z.......r...6....... |
| aee0 | a9 ba 0b 00 24 00 00 00 d8 ba 0b 00 61 00 00 00 fd ba 0b 00 55 00 00 00 5f bb 0b 00 2b 00 00 00 | ....$.......a.......U..._...+... |
| af00 | b5 bb 0b 00 29 00 00 00 e1 bb 0b 00 2a 00 00 00 0b bc 0b 00 2e 00 00 00 36 bc 0b 00 29 00 00 00 | ....).......*...........6...)... |
| af20 | 65 bc 0b 00 27 00 00 00 8f bc 0b 00 28 00 00 00 b7 bc 0b 00 29 00 00 00 e0 bc 0b 00 27 00 00 00 | e...'.......(.......).......'... |
| af40 | 0a bd 0b 00 28 00 00 00 32 bd 0b 00 4c 00 00 00 5b bd 0b 00 4c 00 00 00 a8 bd 0b 00 1d 00 00 00 | ....(...2...L...[...L........... |
| af60 | f5 bd 0b 00 38 00 00 00 13 be 0b 00 54 00 00 00 4c be 0b 00 0b 00 00 00 a1 be 0b 00 0f 00 00 00 | ....8.......T...L............... |
| af80 | ad be 0b 00 49 00 00 00 bd be 0b 00 0b 00 00 00 07 bf 0b 00 43 00 00 00 13 bf 0b 00 43 00 00 00 | ....I...............C.......C... |
| afa0 | 57 bf 0b 00 36 00 00 00 9b bf 0b 00 29 00 00 00 d2 bf 0b 00 2e 00 00 00 fc bf 0b 00 38 00 00 00 | W...6.......)...............8... |
| afc0 | 2b c0 0b 00 2c 00 00 00 64 c0 0b 00 46 00 00 00 91 c0 0b 00 22 00 00 00 d8 c0 0b 00 77 00 00 00 | +...,...d...F.......".......w... |
| afe0 | fb c0 0b 00 28 00 00 00 73 c1 0b 00 3e 00 00 00 9c c1 0b 00 28 00 00 00 db c1 0b 00 3e 00 00 00 | ....(...s...>.......(.......>... |
| b000 | 04 c2 0b 00 29 00 00 00 43 c2 0b 00 5d 00 00 00 6d c2 0b 00 c9 00 00 00 cb c2 0b 00 3f 00 00 00 | ....)...C...]...m...........?... |
| b020 | 95 c3 0b 00 dd 00 00 00 d5 c3 0b 00 12 00 00 00 b3 c4 0b 00 12 00 00 00 c6 c4 0b 00 12 00 00 00 | ................................ |
| b040 | d9 c4 0b 00 4c 00 00 00 ec c4 0b 00 19 00 00 00 39 c5 0b 00 7f 00 00 00 53 c5 0b 00 1d 00 00 00 | ....L...........9.......S....... |
| b060 | d3 c5 0b 00 73 00 00 00 f1 c5 0b 00 31 00 00 00 65 c6 0b 00 d7 00 00 00 97 c6 0b 00 1e 00 00 00 | ....s.......1...e............... |
| b080 | 6f c7 0b 00 24 00 00 00 8e c7 0b 00 5c 00 00 00 b3 c7 0b 00 21 00 00 00 10 c8 0b 00 14 00 00 00 | o...$.......\.......!........... |
| b0a0 | 32 c8 0b 00 52 00 00 00 47 c8 0b 00 5c 00 00 00 9a c8 0b 00 b7 00 00 00 f7 c8 0b 00 44 01 00 00 | 2...R...G...\...............D... |
| b0c0 | af c9 0b 00 47 00 00 00 f4 ca 0b 00 a5 01 00 00 3c cb 0b 00 27 00 00 00 e2 cc 0b 00 88 01 00 00 | ....G...........<...'........... |
| b0e0 | 0a cd 0b 00 72 00 00 00 93 ce 0b 00 74 00 00 00 06 cf 0b 00 6d 00 00 00 7b cf 0b 00 33 00 00 00 | ....r.......t.......m...{...3... |
| b100 | e9 cf 0b 00 30 00 00 00 1d d0 0b 00 3e 00 00 00 4e d0 0b 00 33 01 00 00 8d d0 0b 00 41 00 00 00 | ....0.......>...N...3.......A... |
| b120 | c1 d1 0b 00 30 00 00 00 03 d2 0b 00 d1 00 00 00 34 d2 0b 00 8f 00 00 00 06 d3 0b 00 3f 00 00 00 | ....0...........4...........?... |
| b140 | 96 d3 0b 00 df 00 00 00 d6 d3 0b 00 c2 01 00 00 b6 d4 0b 00 49 00 00 00 79 d6 0b 00 e7 00 00 00 | ....................I...y....... |
| b160 | c3 d6 0b 00 65 01 00 00 ab d7 0b 00 1f 00 00 00 11 d9 0b 00 30 00 00 00 31 d9 0b 00 33 00 00 00 | ....e...............0...1...3... |
| b180 | 62 d9 0b 00 11 00 00 00 96 d9 0b 00 05 00 00 00 a8 d9 0b 00 03 00 00 00 ae d9 0b 00 0e 00 00 00 | b............................... |
| b1a0 | b2 d9 0b 00 1b 00 00 00 c1 d9 0b 00 1d 00 00 00 dd d9 0b 00 1f 00 00 00 fb d9 0b 00 04 00 00 00 | ................................ |
| b1c0 | 1b da 0b 00 0d 00 00 00 20 da 0b 00 32 00 00 00 2e da 0b 00 29 00 00 00 61 da 0b 00 04 00 00 00 | ............2.......)...a....... |
| b1e0 | 8b da 0b 00 07 00 00 00 90 da 0b 00 09 00 00 00 98 da 0b 00 0d 00 00 00 a2 da 0b 00 17 00 00 00 | ................................ |
| b200 | b0 da 0b 00 0f 00 00 00 c8 da 0b 00 0d 00 00 00 d8 da 0b 00 06 00 00 00 e6 da 0b 00 19 00 00 00 | ................................ |
| b220 | ed da 0b 00 14 00 00 00 07 db 0b 00 05 00 00 00 1c db 0b 00 15 00 00 00 22 db 0b 00 04 00 00 00 | ........................"....... |
| b240 | 38 db 0b 00 04 00 00 00 3d db 0b 00 06 00 00 00 42 db 0b 00 51 00 00 00 49 db 0b 00 4a 01 00 00 | 8.......=.......B...Q...I...J... |
| b260 | 9b db 0b 00 50 01 00 00 e6 dc 0b 00 4d 00 00 00 37 de 0b 00 05 00 00 00 85 de 0b 00 12 00 00 00 | ....P.......M...7............... |
| b280 | 8b de 0b 00 15 00 00 00 9e de 0b 00 22 00 00 00 b4 de 0b 00 10 00 00 00 d7 de 0b 00 12 00 00 00 | ............"................... |
| b2a0 | e8 de 0b 00 0e 00 00 00 fb de 0b 00 10 00 00 00 0a df 0b 00 13 00 00 00 1b df 0b 00 16 00 00 00 | ................................ |
| b2c0 | 2f df 0b 00 06 00 00 00 46 df 0b 00 09 00 00 00 4d df 0b 00 1d 00 00 00 57 df 0b 00 05 00 00 00 | /.......F.......M.......W....... |
| b2e0 | 75 df 0b 00 0b 00 00 00 7b df 0b 00 13 00 00 00 87 df 0b 00 0d 00 00 00 9b df 0b 00 05 00 00 00 | u.......{....................... |
| b300 | a9 df 0b 00 68 00 00 00 af df 0b 00 67 00 00 00 18 e0 0b 00 79 00 00 00 80 e0 0b 00 66 00 00 00 | ....h.......g.......y.......f... |
| b320 | fa e0 0b 00 03 00 00 00 61 e1 0b 00 08 00 00 00 65 e1 0b 00 31 00 00 00 6e e1 0b 00 07 00 00 00 | ........a.......e...1...n....... |
| b340 | a0 e1 0b 00 08 00 00 00 a8 e1 0b 00 38 00 00 00 b1 e1 0b 00 10 00 00 00 ea e1 0b 00 0b 00 00 00 | ............8................... |
| b360 | fb e1 0b 00 03 00 00 00 07 e2 0b 00 1d 00 00 00 0b e2 0b 00 06 00 00 00 29 e2 0b 00 1d 00 00 00 | ........................)....... |
| b380 | 30 e2 0b 00 09 00 00 00 4e e2 0b 00 26 00 00 00 58 e2 0b 00 6d 00 00 00 7f e2 0b 00 46 00 00 00 | 0.......N...&...X...m.......F... |
| b3a0 | ed e2 0b 00 36 00 00 00 34 e3 0b 00 32 00 00 00 6b e3 0b 00 46 00 00 00 9e e3 0b 00 04 00 00 00 | ....6...4...2...k...F........... |
| b3c0 | e5 e3 0b 00 22 00 00 00 ea e3 0b 00 08 00 00 00 0d e4 0b 00 07 00 00 00 16 e4 0b 00 46 00 00 00 | ....".......................F... |
| b3e0 | 1e e4 0b 00 0d 00 00 00 65 e4 0b 00 05 00 00 00 73 e4 0b 00 1b 00 00 00 79 e4 0b 00 1c 00 00 00 | ........e.......s.......y....... |
| b400 | 95 e4 0b 00 73 00 00 00 b2 e4 0b 00 71 00 00 00 26 e5 0b 00 04 00 00 00 98 e5 0b 00 06 00 00 00 | ....s.......q...&............... |
| b420 | 9d e5 0b 00 04 00 00 00 a4 e5 0b 00 05 00 00 00 a9 e5 0b 00 10 00 00 00 af e5 0b 00 3c 00 00 00 | ............................<... |
| b440 | c0 e5 0b 00 32 00 00 00 fd e5 0b 00 1c 00 00 00 30 e6 0b 00 6d 00 00 00 4d e6 0b 00 08 00 00 00 | ....2...........0...m...M....... |
| b460 | bb e6 0b 00 14 00 00 00 c4 e6 0b 00 14 00 00 00 d9 e6 0b 00 14 00 00 00 ee e6 0b 00 14 00 00 00 | ................................ |
| b480 | 03 e7 0b 00 14 00 00 00 18 e7 0b 00 14 00 00 00 2d e7 0b 00 14 00 00 00 42 e7 0b 00 06 00 00 00 | ................-.......B....... |
| b4a0 | 57 e7 0b 00 06 00 00 00 5e e7 0b 00 06 00 00 00 65 e7 0b 00 06 00 00 00 6c e7 0b 00 06 00 00 00 | W.......^.......e.......l....... |
| b4c0 | 73 e7 0b 00 06 00 00 00 7a e7 0b 00 06 00 00 00 81 e7 0b 00 06 00 00 00 88 e7 0b 00 1f 00 00 00 | s.......z....................... |
| b4e0 | 8f e7 0b 00 08 00 00 00 af e7 0b 00 08 00 00 00 b8 e7 0b 00 a4 00 00 00 c1 e7 0b 00 03 00 00 00 | ................................ |
| b500 | 66 e8 0b 00 0d 00 00 00 6a e8 0b 00 74 00 00 00 78 e8 0b 00 9a 00 00 00 ed e8 0b 00 4c 00 00 00 | f.......j...t...x...........L... |
| b520 | 88 e9 0b 00 04 00 00 00 d5 e9 0b 00 0c 00 00 00 da e9 0b 00 3f 00 00 00 e7 e9 0b 00 29 00 00 00 | ....................?.......)... |
| b540 | 27 ea 0b 00 37 00 00 00 51 ea 0b 00 2c 00 00 00 89 ea 0b 00 0e 00 00 00 b6 ea 0b 00 33 00 00 00 | '...7...Q...,...............3... |
| b560 | c5 ea 0b 00 33 00 00 00 f9 ea 0b 00 0b 00 00 00 2d eb 0b 00 14 00 00 00 39 eb 0b 00 71 00 00 00 | ....3...........-.......9...q... |
| b580 | 4e eb 0b 00 46 00 00 00 c0 eb 0b 00 09 00 00 00 07 ec 0b 00 04 00 00 00 11 ec 0b 00 0b 00 00 00 | N...F........................... |
| b5a0 | 16 ec 0b 00 12 00 00 00 22 ec 0b 00 0f 00 00 00 35 ec 0b 00 08 00 00 00 45 ec 0b 00 06 00 00 00 | ........".......5.......E....... |
| b5c0 | 4e ec 0b 00 03 00 00 00 55 ec 0b 00 0a 00 00 00 59 ec 0b 00 0b 00 00 00 64 ec 0b 00 40 00 00 00 | N.......U.......Y.......d...@... |
| b5e0 | 70 ec 0b 00 07 00 00 00 b1 ec 0b 00 06 00 00 00 b9 ec 0b 00 05 00 00 00 c0 ec 0b 00 9b 00 00 00 | p............................... |
| b600 | c6 ec 0b 00 11 00 00 00 62 ed 0b 00 0d 00 00 00 74 ed 0b 00 13 00 00 00 82 ed 0b 00 15 00 00 00 | ........b.......t............... |
| b620 | 96 ed 0b 00 18 00 00 00 ac ed 0b 00 1b 00 00 00 c5 ed 0b 00 0a 00 00 00 e1 ed 0b 00 12 00 00 00 | ................................ |
| b640 | ec ed 0b 00 1c 00 00 00 ff ed 0b 00 0f 00 00 00 1c ee 0b 00 05 00 00 00 2c ee 0b 00 0e 00 00 00 | ........................,....... |
| b660 | 32 ee 0b 00 0e 00 00 00 41 ee 0b 00 0d 00 00 00 50 ee 0b 00 2a 00 00 00 5e ee 0b 00 15 00 00 00 | 2.......A.......P...*...^....... |
| b680 | 89 ee 0b 00 31 00 00 00 9f ee 0b 00 39 00 00 00 d1 ee 0b 00 34 00 00 00 0b ef 0b 00 04 00 00 00 | ....1.......9.......4........... |
| b6a0 | 40 ef 0b 00 0b 00 00 00 45 ef 0b 00 09 00 00 00 51 ef 0b 00 07 00 00 00 5b ef 0b 00 05 00 00 00 | @.......E.......Q.......[....... |
| b6c0 | 63 ef 0b 00 72 00 00 00 69 ef 0b 00 08 00 00 00 dc ef 0b 00 62 01 00 00 e5 ef 0b 00 0e 00 00 00 | c...r...i...........b........... |
| b6e0 | 48 f1 0b 00 11 00 00 00 57 f1 0b 00 38 00 00 00 69 f1 0b 00 0d 00 00 00 a2 f1 0b 00 0d 00 00 00 | H.......W...8...i............... |
| b700 | b0 f1 0b 00 06 00 00 00 be f1 0b 00 3a 00 00 00 c5 f1 0b 00 0b 00 00 00 00 f2 0b 00 3f 00 00 00 | ............:...............?... |
| b720 | 0c f2 0b 00 40 00 00 00 4c f2 0b 00 0e 00 00 00 8d f2 0b 00 0f 00 00 00 9c f2 0b 00 07 00 00 00 | ....@...L....................... |
| b740 | ac f2 0b 00 0e 00 00 00 b4 f2 0b 00 0c 00 00 00 c3 f2 0b 00 ad 00 00 00 d0 f2 0b 00 0b 00 00 00 | ................................ |
| b760 | 7e f3 0b 00 08 00 00 00 8a f3 0b 00 06 00 00 00 93 f3 0b 00 04 00 00 00 9a f3 0b 00 d7 00 00 00 | ~............................... |
| b780 | 9f f3 0b 00 10 00 00 00 77 f4 0b 00 ed 01 00 00 88 f4 0b 00 0b 00 00 00 76 f6 0b 00 0b 00 00 00 | ........w...............v....... |
| b7a0 | 82 f6 0b 00 0c 00 00 00 8e f6 0b 00 06 00 00 00 9b f6 0b 00 0e 00 00 00 a2 f6 0b 00 58 00 00 00 | ............................X... |
| b7c0 | b1 f6 0b 00 04 00 00 00 0a f7 0b 00 04 00 00 00 0f f7 0b 00 05 00 00 00 14 f7 0b 00 0e 00 00 00 | ................................ |
| b7e0 | 1a f7 0b 00 47 00 00 00 29 f7 0b 00 75 00 00 00 71 f7 0b 00 05 00 00 00 e7 f7 0b 00 07 00 00 00 | ....G...)...u...q............... |
| b800 | ed f7 0b 00 68 00 00 00 f5 f7 0b 00 19 00 00 00 5e f8 0b 00 14 00 00 00 78 f8 0b 00 2c 00 00 00 | ....h...........^.......x...,... |
| b820 | 8d f8 0b 00 0b 00 00 00 ba f8 0b 00 09 00 00 00 c6 f8 0b 00 08 00 00 00 d0 f8 0b 00 53 00 00 00 | ............................S... |
| b840 | d9 f8 0b 00 08 00 00 00 2d f9 0b 00 22 00 00 00 36 f9 0b 00 04 00 00 00 59 f9 0b 00 05 00 00 00 | ........-..."...6.......Y....... |
| b860 | 5e f9 0b 00 cd 00 00 00 64 f9 0b 00 43 00 00 00 32 fa 0b 00 52 00 00 00 76 fa 0b 00 42 00 00 00 | ^.......d...C...2...R...v...B... |
| b880 | c9 fa 0b 00 3b 00 00 00 0c fb 0b 00 42 00 00 00 48 fb 0b 00 3a 00 00 00 8b fb 0b 00 24 00 00 00 | ....;.......B...H...:.......$... |
| b8a0 | c6 fb 0b 00 1a 00 00 00 eb fb 0b 00 66 00 00 00 06 fc 0b 00 6f 00 00 00 6d fc 0b 00 89 00 00 00 | ............f.......o...m....... |
| b8c0 | dd fc 0b 00 5d 01 00 00 67 fd 0b 00 48 00 00 00 c5 fe 0b 00 46 00 00 00 0e ff 0b 00 31 00 00 00 | ....]...g...H.......F.......1... |
| b8e0 | 55 ff 0b 00 31 00 00 00 87 ff 0b 00 3e 00 00 00 b9 ff 0b 00 23 00 00 00 f8 ff 0b 00 18 00 00 00 | U...1.......>.......#........... |
| b900 | 1c 00 0c 00 7d 00 00 00 35 00 0c 00 92 00 00 00 b3 00 0c 00 23 00 00 00 46 01 0c 00 90 00 00 00 | ....}...5...........#...F....... |
| b920 | 6a 01 0c 00 20 00 00 00 fb 01 0c 00 21 00 00 00 1c 02 0c 00 21 00 00 00 3e 02 0c 00 3f 00 00 00 | j...........!.......!...>...?... |
| b940 | 60 02 0c 00 78 00 00 00 a0 02 0c 00 7f 00 00 00 19 03 0c 00 36 00 00 00 99 03 0c 00 15 00 00 00 | `...x...............6........... |
| b960 | d0 03 0c 00 2d 00 00 00 e6 03 0c 00 27 00 00 00 14 04 0c 00 1d 00 00 00 3c 04 0c 00 5c 00 00 00 | ....-.......'...........<...\... |
| b980 | 5a 04 0c 00 46 01 00 00 b7 04 0c 00 60 00 00 00 fe 05 0c 00 1c 00 00 00 5f 06 0c 00 0c 00 00 00 | Z...F.......`..........._....... |
| b9a0 | 7c 06 0c 00 21 00 00 00 89 06 0c 00 4e 00 00 00 ab 06 0c 00 e8 00 00 00 fa 06 0c 00 e0 00 00 00 | |...!.......N................... |
| b9c0 | e3 07 0c 00 e0 00 00 00 c4 08 0c 00 23 00 00 00 a5 09 0c 00 29 00 00 00 c9 09 0c 00 3e 00 00 00 | ............#.......).......>... |
| b9e0 | f3 09 0c 00 0c 00 00 00 32 0a 0c 00 12 00 00 00 3f 0a 0c 00 56 00 00 00 52 0a 0c 00 56 00 00 00 | ........2.......?...V...R...V... |
| ba00 | a9 0a 0c 00 11 00 00 00 00 0b 0c 00 b4 00 00 00 12 0b 0c 00 4d 00 00 00 c7 0b 0c 00 b4 00 00 00 | ....................M........... |
| ba20 | 15 0c 0c 00 6c 00 00 00 ca 0c 0c 00 6b 00 00 00 37 0d 0c 00 6c 00 00 00 a3 0d 0c 00 81 00 00 00 | ....l.......k...7...l........... |
| ba40 | 10 0e 0c 00 3b 00 00 00 92 0e 0c 00 12 00 00 00 ce 0e 0c 00 8b 00 00 00 e1 0e 0c 00 98 00 00 00 | ....;........................... |
| ba60 | 6d 0f 0c 00 8c 00 00 00 06 10 0c 00 30 01 00 00 93 10 0c 00 fc 00 00 00 c4 11 0c 00 01 01 00 00 | m...........0................... |
| ba80 | c1 12 0c 00 fb 00 00 00 c3 13 0c 00 fc 00 00 00 bf 14 0c 00 d5 00 00 00 bc 15 0c 00 94 00 00 00 | ................................ |
| baa0 | 92 16 0c 00 00 01 00 00 27 17 0c 00 04 01 00 00 28 18 0c 00 2c 01 00 00 2d 19 0c 00 f6 01 00 00 | ........'.......(...,...-....... |
| bac0 | 5a 1a 0c 00 67 00 00 00 51 1c 0c 00 67 00 00 00 b9 1c 0c 00 66 00 00 00 21 1d 0c 00 da 00 00 00 | Z...g...Q...g.......f...!....... |
| bae0 | 88 1d 0c 00 d9 00 00 00 63 1e 0c 00 12 00 00 00 3d 1f 0c 00 08 00 00 00 50 1f 0c 00 b8 00 00 00 | ........c.......=.......P....... |
| bb00 | 59 1f 0c 00 14 01 00 00 12 20 0c 00 18 00 00 00 27 21 0c 00 18 00 00 00 40 21 0c 00 1b 00 00 00 | Y...............'!......@!...... |
| bb20 | 59 21 0c 00 1a 00 00 00 75 21 0c 00 15 00 00 00 90 21 0c 00 0d 00 00 00 a6 21 0c 00 14 00 00 00 | Y!......u!.......!.......!...... |
| bb40 | b4 21 0c 00 0a 00 00 00 c9 21 0c 00 0b 00 00 00 d4 21 0c 00 0a 00 00 00 e0 21 0c 00 0b 00 00 00 | .!.......!.......!.......!...... |
| bb60 | eb 21 0c 00 0a 00 00 00 f7 21 0c 00 0a 00 00 00 02 22 0c 00 4d 00 00 00 0d 22 0c 00 7e 03 00 00 | .!.......!......."..M...."..~... |
| bb80 | 5b 22 0c 00 10 00 00 00 da 25 0c 00 10 00 00 00 eb 25 0c 00 6f 00 00 00 fc 25 0c 00 44 00 00 00 | [".......%.......%..o....%..D... |
| bba0 | 6c 26 0c 00 8c 00 00 00 b1 26 0c 00 8c 00 00 00 3e 27 0c 00 ba 00 00 00 cb 27 0c 00 ae 00 00 00 | l&.......&......>'.......'...... |
| bbc0 | 86 28 0c 00 ae 00 00 00 35 29 0c 00 a0 01 00 00 e4 29 0c 00 99 01 00 00 85 2b 0c 00 ab 01 00 00 | .(......5).......).......+...... |
| bbe0 | 1f 2d 0c 00 98 01 00 00 cb 2e 0c 00 99 01 00 00 64 30 0c 00 ae 01 00 00 fe 31 0c 00 10 00 00 00 | .-..............d0.......1...... |
| bc00 | ad 33 0c 00 8b 00 00 00 be 33 0c 00 4a 00 00 00 4a 34 0c 00 16 00 00 00 95 34 0c 00 9d 00 00 00 | .3.......3..J...J4.......4...... |
| bc20 | ac 34 0c 00 32 00 00 00 4a 35 0c 00 93 00 00 00 7d 35 0c 00 6b 01 00 00 11 36 0c 00 1f 01 00 00 | .4..2...J5......}5..k....6...... |
| bc40 | 7d 37 0c 00 c2 01 00 00 9d 38 0c 00 ce 01 00 00 60 3a 0c 00 2f 01 00 00 2f 3c 0c 00 2e 01 00 00 | }7.......8......`:../.../<...... |
| bc60 | 5f 3d 0c 00 0b 00 00 00 8e 3e 0c 00 2e 00 00 00 9a 3e 0c 00 2d 00 00 00 c9 3e 0c 00 26 00 00 00 | _=.......>.......>..-....>..&... |
| bc80 | f7 3e 0c 00 37 00 00 00 1e 3f 0c 00 33 00 00 00 56 3f 0c 00 29 00 00 00 8a 3f 0c 00 3b 00 00 00 | .>..7....?..3...V?..)....?..;... |
| bca0 | b4 3f 0c 00 1e 00 00 00 f0 3f 0c 00 3b 00 00 00 0f 40 0c 00 2e 00 00 00 4b 40 0c 00 2d 00 00 00 | .?.......?..;....@......K@..-... |
| bcc0 | 7a 40 0c 00 4e 00 00 00 a8 40 0c 00 0f 00 00 00 f7 40 0c 00 11 00 00 00 07 41 0c 00 06 00 00 00 | z@..N....@.......@.......A...... |
| bce0 | 19 41 0c 00 0f 00 00 00 20 41 0c 00 11 00 00 00 30 41 0c 00 06 00 00 00 42 41 0c 00 2d 00 00 00 | .A.......A......0A......BA..-... |
| bd00 | 49 41 0c 00 25 00 00 00 77 41 0c 00 09 00 00 00 9d 41 0c 00 b9 00 00 00 a7 41 0c 00 0c 00 00 00 | IA..%...wA.......A.......A...... |
| bd20 | 61 42 0c 00 0c 00 00 00 6e 42 0c 00 0c 00 00 00 7b 42 0c 00 13 00 00 00 88 42 0c 00 30 00 00 00 | aB......nB......{B.......B..0... |
| bd40 | 9c 42 0c 00 31 00 00 00 cd 42 0c 00 07 00 00 00 ff 42 0c 00 07 00 00 00 07 43 0c 00 70 00 00 00 | .B..1....B.......B.......C..p... |
| bd60 | 0f 43 0c 00 0d 00 00 00 80 43 0c 00 14 00 00 00 8e 43 0c 00 1d 00 00 00 a3 43 0c 00 49 00 00 00 | .C.......C.......C.......C..I... |
| bd80 | c1 43 0c 00 19 00 00 00 0b 44 0c 00 0a 00 00 00 25 44 0c 00 24 00 00 00 30 44 0c 00 1a 00 00 00 | .C.......D......%D..$...0D...... |
| bda0 | 55 44 0c 00 9d 00 00 00 70 44 0c 00 27 00 00 00 0e 45 0c 00 0b 00 00 00 36 45 0c 00 10 00 00 00 | UD......pD..'....E......6E...... |
| bdc0 | 42 45 0c 00 10 00 00 00 53 45 0c 00 70 00 00 00 64 45 0c 00 57 00 00 00 d5 45 0c 00 42 00 00 00 | BE......SE..p...dE..W....E..B... |
| bde0 | 2d 46 0c 00 32 00 00 00 70 46 0c 00 37 00 00 00 a3 46 0c 00 5a 00 00 00 db 46 0c 00 a3 00 00 00 | -F..2...pF..7....F..Z....F...... |
| be00 | 36 47 0c 00 74 00 00 00 da 47 0c 00 35 01 00 00 4f 48 0c 00 73 00 00 00 85 49 0c 00 16 01 00 00 | 6G..t....G..5...OH..s....I...... |
| be20 | f9 49 0c 00 7e 00 00 00 10 4b 0c 00 49 00 00 00 8f 4b 0c 00 2f 02 00 00 d9 4b 0c 00 6f 00 00 00 | .I..~....K..I....K../....K..o... |
| be40 | 09 4e 0c 00 39 01 00 00 79 4e 0c 00 dd 00 00 00 b3 4f 0c 00 20 00 00 00 91 50 0c 00 30 00 00 00 | .N..9...yN.......O.......P..0... |
| be60 | b2 50 0c 00 14 00 00 00 e3 50 0c 00 2c 00 00 00 f8 50 0c 00 90 00 00 00 25 51 0c 00 52 00 00 00 | .P.......P..,....P......%Q..R... |
| be80 | b6 51 0c 00 58 00 00 00 09 52 0c 00 26 00 00 00 62 52 0c 00 58 00 00 00 89 52 0c 00 e4 00 00 00 | .Q..X....R..&...bR..X....R...... |
| bea0 | e2 52 0c 00 68 00 00 00 c7 53 0c 00 5d 00 00 00 30 54 0c 00 6c 00 00 00 8e 54 0c 00 5a 00 00 00 | .R..h....S..]...0T..l....T..Z... |
| bec0 | fb 54 0c 00 a4 00 00 00 56 55 0c 00 eb 00 00 00 fb 55 0c 00 41 00 00 00 e7 56 0c 00 52 00 00 00 | .T......VU.......U..A....V..R... |
| bee0 | 29 57 0c 00 34 00 00 00 7c 57 0c 00 6d 00 00 00 b1 57 0c 00 c7 00 00 00 1f 58 0c 00 f1 00 00 00 | )W..4...|W..m....W.......X...... |
| bf00 | e7 58 0c 00 08 00 00 00 d9 59 0c 00 35 00 00 00 e2 59 0c 00 32 00 00 00 18 5a 0c 00 4c 00 00 00 | .X.......Y..5....Y..2....Z..L... |
| bf20 | 4b 5a 0c 00 30 00 00 00 98 5a 0c 00 38 00 00 00 c9 5a 0c 00 36 00 00 00 02 5b 0c 00 19 00 00 00 | KZ..0....Z..8....Z..6....[...... |
| bf40 | 39 5b 0c 00 3a 00 00 00 53 5b 0c 00 37 00 00 00 8e 5b 0c 00 7b 01 00 00 c6 5b 0c 00 14 00 00 00 | 9[..:...S[..7....[..{....[...... |
| bf60 | 42 5d 0c 00 16 00 00 00 57 5d 0c 00 36 00 00 00 6e 5d 0c 00 47 00 00 00 a5 5d 0c 00 55 00 00 00 | B]......W]..6...n]..G....]..U... |
| bf80 | ed 5d 0c 00 35 00 00 00 43 5e 0c 00 29 00 00 00 79 5e 0c 00 23 00 00 00 a3 5e 0c 00 24 00 00 00 | .]..5...C^..)...y^..#....^..$... |
| bfa0 | c7 5e 0c 00 af 00 00 00 ec 5e 0c 00 6c 00 00 00 9c 5f 0c 00 29 00 00 00 09 60 0c 00 a7 00 00 00 | .^.......^..l...._..)....`...... |
| bfc0 | 33 60 0c 00 ee 00 00 00 db 60 0c 00 47 00 00 00 ca 61 0c 00 47 00 00 00 12 62 0c 00 3a 00 00 00 | 3`.......`..G....a..G....b..:... |
| bfe0 | 5a 62 0c 00 4b 00 00 00 95 62 0c 00 4d 00 00 00 e1 62 0c 00 5a 01 00 00 2f 63 0c 00 9f 01 00 00 | Zb..K....b..M....b..Z.../c...... |
| c000 | 8a 64 0c 00 b5 00 00 00 2a 66 0c 00 1d 00 00 00 e0 66 0c 00 51 00 00 00 fe 66 0c 00 31 00 00 00 | .d......*f.......f..Q....f..1... |
| c020 | 50 67 0c 00 32 00 00 00 82 67 0c 00 1a 00 00 00 b5 67 0c 00 4c 00 00 00 d0 67 0c 00 80 00 00 00 | Pg..2....g.......g..L....g...... |
| c040 | 1d 68 0c 00 25 00 00 00 9e 68 0c 00 26 00 00 00 c4 68 0c 00 26 00 00 00 eb 68 0c 00 40 00 00 00 | .h..%....h..&....h..&....h..@... |
| c060 | 12 69 0c 00 17 00 00 00 53 69 0c 00 09 00 00 00 6b 69 0c 00 2d 00 00 00 75 69 0c 00 3c 00 00 00 | .i......Si......ki..-...ui..<... |
| c080 | a3 69 0c 00 42 00 00 00 e0 69 0c 00 b1 00 00 00 23 6a 0c 00 54 00 00 00 d5 6a 0c 00 55 00 00 00 | .i..B....i......#j..T....j..U... |
| c0a0 | 2a 6b 0c 00 2c 00 00 00 80 6b 0c 00 47 00 00 00 ad 6b 0c 00 bc 00 00 00 f5 6b 0c 00 bf 00 00 00 | *k..,....k..G....k.......k...... |
| c0c0 | b2 6c 0c 00 1e 00 00 00 72 6d 0c 00 37 00 00 00 91 6d 0c 00 33 00 00 00 c9 6d 0c 00 9a 00 00 00 | .l......rm..7....m..3....m...... |
| c0e0 | fd 6d 0c 00 01 00 00 00 98 6e 0c 00 2c 00 00 00 9a 6e 0c 00 11 00 00 00 c7 6e 0c 00 06 00 00 00 | .m.......n..,....n.......n...... |
| c100 | d9 6e 0c 00 06 00 00 00 e0 6e 0c 00 06 00 00 00 e7 6e 0c 00 06 00 00 00 ee 6e 0c 00 06 00 00 00 | .n.......n.......n.......n...... |
| c120 | f5 6e 0c 00 06 00 00 00 fc 6e 0c 00 06 00 00 00 03 6f 0c 00 06 00 00 00 0a 6f 0c 00 06 00 00 00 | .n.......n.......o.......o...... |
| c140 | 11 6f 0c 00 06 00 00 00 18 6f 0c 00 0e 00 00 00 1f 6f 0c 00 01 00 00 00 2e 6f 0c 00 11 00 00 00 | .o.......o.......o.......o...... |
| c160 | 30 6f 0c 00 0a 00 00 00 42 6f 0c 00 1a 00 00 00 4d 6f 0c 00 b7 00 00 00 68 6f 0c 00 b7 00 00 00 | 0o......Bo......Mo......ho...... |
| c180 | 20 70 0c 00 bc 00 00 00 d8 70 0c 00 85 00 00 00 95 71 0c 00 02 00 00 00 1b 72 0c 00 0e 00 00 00 | .p.......p.......q.......r...... |
| c1a0 | 1e 72 0c 00 2d 00 00 00 2d 72 0c 00 10 00 00 00 5b 72 0c 00 0f 00 00 00 6c 72 0c 00 11 00 00 00 | .r..-...-r......[r......lr...... |
| c1c0 | 7c 72 0c 00 13 00 00 00 8e 72 0c 00 06 00 00 00 a2 72 0c 00 06 00 00 00 a9 72 0c 00 06 00 00 00 | |r.......r.......r.......r...... |
| c1e0 | b0 72 0c 00 06 00 00 00 b7 72 0c 00 02 00 00 00 be 72 0c 00 03 00 00 00 c1 72 0c 00 02 00 00 00 | .r.......r.......r.......r...... |
| c200 | c5 72 0c 00 08 00 00 00 c8 72 0c 00 02 00 00 00 d1 72 0c 00 02 00 00 00 d4 72 0c 00 02 00 00 00 | .r.......r.......r.......r...... |
| c220 | d7 72 0c 00 02 00 00 00 da 72 0c 00 02 00 00 00 dd 72 0c 00 32 00 00 00 e0 72 0c 00 02 00 00 00 | .r.......r.......r..2....r...... |
| c240 | 13 73 0c 00 02 00 00 00 16 73 0c 00 35 00 00 00 19 73 0c 00 17 00 00 00 4f 73 0c 00 01 00 00 00 | .s.......s..5....s......Os...... |
| c260 | 67 73 0c 00 1a 00 00 00 69 73 0c 00 85 00 00 00 84 73 0c 00 80 00 00 00 0a 74 0c 00 02 00 00 00 | gs......is.......s.......t...... |
| c280 | 8b 74 0c 00 02 00 00 00 8e 74 0c 00 02 00 00 00 91 74 0c 00 02 00 00 00 94 74 0c 00 11 00 00 00 | .t.......t.......t.......t...... |
| c2a0 | 97 74 0c 00 11 00 00 00 a9 74 0c 00 03 00 00 00 bb 74 0c 00 02 00 00 00 bf 74 0c 00 02 00 00 00 | .t.......t.......t.......t...... |
| c2c0 | c2 74 0c 00 63 00 00 00 c5 74 0c 00 0f 00 00 00 29 75 0c 00 01 00 00 00 39 75 0c 00 20 00 00 00 | .t..c....t......)u......9u...... |
| c2e0 | 3b 75 0c 00 87 00 00 00 5c 75 0c 00 02 00 00 00 e4 75 0c 00 02 00 00 00 e7 75 0c 00 02 00 00 00 | ;u......\u.......u.......u...... |
| c300 | ea 75 0c 00 02 00 00 00 ed 75 0c 00 01 00 00 00 f0 75 0c 00 1a 00 00 00 f2 75 0c 00 a5 00 00 00 | .u.......u.......u.......u...... |
| c320 | 0d 76 0c 00 a2 00 00 00 b3 76 0c 00 a2 00 00 00 56 77 0c 00 e6 00 00 00 f9 77 0c 00 11 00 00 00 | .v.......v......Vw.......w...... |
| c340 | e0 78 0c 00 02 00 00 00 f2 78 0c 00 02 00 00 00 f5 78 0c 00 02 00 00 00 f8 78 0c 00 01 00 00 00 | .x.......x.......x.......x...... |
| c360 | fb 78 0c 00 11 00 00 00 fd 78 0c 00 c3 00 00 00 0f 79 0c 00 c7 00 00 00 d3 79 0c 00 0f 00 00 00 | .x.......x.......y.......y...... |
| c380 | 9b 7a 0c 00 11 00 00 00 ab 7a 0c 00 02 00 00 00 bd 7a 0c 00 01 00 00 00 c0 7a 0c 00 6b 00 00 00 | .z.......z.......z.......z..k... |
| c3a0 | c2 7a 0c 00 69 00 00 00 2e 7b 0c 00 6e 00 00 00 98 7b 0c 00 2d 00 00 00 07 7c 0c 00 02 00 00 00 | .z..i....{..n....{..-....|...... |
| c3c0 | 35 7c 0c 00 3b 00 00 00 38 7c 0c 00 02 00 00 00 74 7c 0c 00 02 00 00 00 77 7c 0c 00 0a 00 00 00 | 5|..;...8|......t|......w|...... |
| c3e0 | 7a 7c 0c 00 6b 02 00 00 85 7c 0c 00 01 00 00 00 f1 7e 0c 00 02 00 00 00 f3 7e 0c 00 01 00 00 00 | z|..k....|.......~.......~...... |
| c400 | f6 7e 0c 00 6c 00 00 00 f8 7e 0c 00 01 00 00 00 65 7f 0c 00 76 00 00 00 67 7f 0c 00 7b 00 00 00 | .~..l....~......e...v...g...{... |
| c420 | de 7f 0c 00 61 01 00 00 5a 80 0c 00 8b 00 00 00 bc 81 0c 00 10 01 00 00 48 82 0c 00 8a 01 00 00 | ....a...Z...............H....... |
| c440 | 59 83 0c 00 36 00 00 00 e4 84 0c 00 22 01 00 00 1b 85 0c 00 26 02 00 00 3e 86 0c 00 ec 00 00 00 | Y...6.......".......&...>....... |
| c460 | 65 88 0c 00 8b 00 00 00 52 89 0c 00 8c 01 00 00 de 89 0c 00 bd 00 00 00 6b 8b 0c 00 08 02 00 00 | e.......R...............k....... |
| c480 | 29 8c 0c 00 53 01 00 00 32 8e 0c 00 dc 00 00 00 86 8f 0c 00 4f 00 00 00 63 90 0c 00 aa 03 00 00 | )...S...2...........O...c....... |
| c4a0 | b3 90 0c 00 aa 03 00 00 5e 94 0c 00 8b 01 00 00 09 98 0c 00 80 01 00 00 95 99 0c 00 b5 01 00 00 | ........^....................... |
| c4c0 | 16 9b 0c 00 4c 02 00 00 cc 9c 0c 00 3f 00 00 00 19 9f 0c 00 61 00 00 00 59 9f 0c 00 8f 05 00 00 | ....L.......?.......a...Y....... |
| c4e0 | bb 9f 0c 00 32 02 00 00 4b a5 0c 00 0b 01 00 00 7e a7 0c 00 3d 02 00 00 8a a8 0c 00 7e 00 00 00 | ....2...K.......~...=.......~... |
| c500 | c8 aa 0c 00 37 00 00 00 47 ab 0c 00 8f 01 00 00 7f ab 0c 00 01 01 00 00 0f ad 0c 00 da 01 00 00 | ....7...G....................... |
| c520 | 11 ae 0c 00 3e 01 00 00 ec af 0c 00 8e 02 00 00 2b b1 0c 00 a6 00 00 00 ba b3 0c 00 e3 01 00 00 | ....>...........+............... |
| c540 | 61 b4 0c 00 af 01 00 00 45 b6 0c 00 87 01 00 00 f5 b7 0c 00 f6 01 00 00 7d b9 0c 00 17 02 00 00 | a.......E...............}....... |
| c560 | 74 bb 0c 00 d9 01 00 00 8c bd 0c 00 8e 00 00 00 66 bf 0c 00 57 01 00 00 f5 bf 0c 00 82 00 00 00 | t...............f...W........... |
| c580 | 4d c1 0c 00 fb 00 00 00 d0 c1 0c 00 b4 01 00 00 cc c2 0c 00 d6 01 00 00 81 c4 0c 00 59 01 00 00 | M...........................Y... |
| c5a0 | 58 c6 0c 00 50 01 00 00 b2 c7 0c 00 be 01 00 00 03 c9 0c 00 68 01 00 00 c2 ca 0c 00 04 02 00 00 | X...P...............h........... |
| c5c0 | 2b cc 0c 00 89 00 00 00 30 ce 0c 00 84 00 00 00 ba ce 0c 00 f9 00 00 00 3f cf 0c 00 a4 00 00 00 | +.......0...............?....... |
| c5e0 | 39 d0 0c 00 b5 00 00 00 de d0 0c 00 43 00 00 00 94 d1 0c 00 5c 00 00 00 d8 d1 0c 00 52 00 00 00 | 9...........C.......\.......R... |
| c600 | 35 d2 0c 00 46 00 00 00 88 d2 0c 00 50 00 00 00 cf d2 0c 00 48 00 00 00 20 d3 0c 00 4c 00 00 00 | 5...F.......P.......H.......L... |
| c620 | 69 d3 0c 00 47 00 00 00 b6 d3 0c 00 48 00 00 00 fe d3 0c 00 41 00 00 00 47 d4 0c 00 44 00 00 00 | i...G.......H.......A...G...D... |
| c640 | 89 d4 0c 00 61 00 00 00 ce d4 0c 00 61 00 00 00 30 d5 0c 00 62 00 00 00 92 d5 0c 00 64 00 00 00 | ....a.......a...0...b.......d... |
| c660 | f5 d5 0c 00 5f 00 00 00 5a d6 0c 00 60 00 00 00 ba d6 0c 00 19 00 00 00 1b d7 0c 00 29 00 00 00 | ...._...Z...`...............)... |
| c680 | 35 d7 0c 00 12 00 00 00 5f d7 0c 00 3d 00 00 00 72 d7 0c 00 13 00 00 00 b0 d7 0c 00 3f 00 00 00 | 5......._...=...r...........?... |
| c6a0 | c4 d7 0c 00 13 00 00 00 04 d8 0c 00 3f 00 00 00 18 d8 0c 00 15 00 00 00 58 d8 0c 00 43 00 00 00 | ............?...........X...C... |
| c6c0 | 6e d8 0c 00 15 00 00 00 b2 d8 0c 00 43 00 00 00 c8 d8 0c 00 31 01 00 00 0c d9 0c 00 11 00 00 00 | n...........C.......1........... |
| c6e0 | 3e da 0c 00 80 01 00 00 50 da 0c 00 40 00 00 00 d1 db 0c 00 24 00 00 00 12 dc 0c 00 41 01 00 00 | >.......P...@.......$.......A... |
| c700 | 37 dc 0c 00 19 00 00 00 79 dd 0c 00 37 00 00 00 93 dd 0c 00 2a 00 00 00 cb dd 0c 00 39 00 00 00 | 7.......y...7.......*.......9... |
| c720 | f6 dd 0c 00 29 00 00 00 30 de 0c 00 07 00 00 00 5a de 0c 00 4d 00 00 00 62 de 0c 00 18 00 00 00 | ....)...0.......Z...M...b....... |
| c740 | b0 de 0c 00 81 00 00 00 c9 de 0c 00 b6 00 00 00 4b df 0c 00 40 00 00 00 02 e0 0c 00 2f 00 00 00 | ................K...@......./... |
| c760 | 43 e0 0c 00 32 00 00 00 73 e0 0c 00 35 00 00 00 a6 e0 0c 00 1d 00 00 00 dc e0 0c 00 27 00 00 00 | C...2...s...5...............'... |
| c780 | fa e0 0c 00 1f 00 00 00 22 e1 0c 00 36 00 00 00 42 e1 0c 00 39 00 00 00 79 e1 0c 00 18 01 00 00 | ........"...6...B...9...y....... |
| c7a0 | b3 e1 0c 00 1e 00 00 00 cc e2 0c 00 2d 00 00 00 eb e2 0c 00 5c 00 00 00 19 e3 0c 00 37 01 00 00 | ............-.......\.......7... |
| c7c0 | 76 e3 0c 00 cb 01 00 00 ae e4 0c 00 ab 01 00 00 7a e6 0c 00 59 01 00 00 26 e8 0c 00 3a 01 00 00 | v...............z...Y...&...:... |
| c7e0 | 80 e9 0c 00 2d 00 00 00 bb ea 0c 00 3a 00 00 00 e9 ea 0c 00 6d 00 00 00 24 eb 0c 00 77 00 00 00 | ....-.......:.......m...$...w... |
| c800 | 92 eb 0c 00 8b 00 00 00 0a ec 0c 00 cc 01 00 00 96 ec 0c 00 ba 00 00 00 63 ee 0c 00 16 00 00 00 | ........................c....... |
| c820 | 1e ef 0c 00 33 00 00 00 35 ef 0c 00 28 00 00 00 69 ef 0c 00 77 01 00 00 92 ef 0c 00 51 00 00 00 | ....3...5...(...i...w.......Q... |
| c840 | 0a f1 0c 00 74 00 00 00 5c f1 0c 00 26 00 00 00 d1 f1 0c 00 85 00 00 00 f8 f1 0c 00 8b 00 00 00 | ....t...\...&................... |
| c860 | 7e f2 0c 00 8b 00 00 00 0a f3 0c 00 cf 00 00 00 96 f3 0c 00 34 01 00 00 66 f4 0c 00 2f 00 00 00 | ~...................4...f.../... |
| c880 | 9b f5 0c 00 72 00 00 00 cb f5 0c 00 65 00 00 00 3e f6 0c 00 31 00 00 00 a4 f6 0c 00 01 01 00 00 | ....r.......e...>...1........... |
| c8a0 | d6 f6 0c 00 33 00 00 00 d8 f7 0c 00 3c 00 00 00 0c f8 0c 00 42 00 00 00 49 f8 0c 00 93 01 00 00 | ....3.......<.......B...I....... |
| c8c0 | 8c f8 0c 00 93 01 00 00 20 fa 0c 00 e4 01 00 00 b4 fb 0c 00 63 00 00 00 99 fd 0c 00 50 00 00 00 | ....................c.......P... |
| c8e0 | fd fd 0c 00 d4 00 00 00 4e fe 0c 00 ed 00 00 00 23 ff 0c 00 78 00 00 00 11 00 0d 00 90 00 00 00 | ........N.......#...x........... |
| c900 | 8a 00 0d 00 c0 01 00 00 1b 01 0d 00 a2 00 00 00 dc 02 0d 00 88 00 00 00 7f 03 0d 00 4e 00 00 00 | ............................N... |
| c920 | 08 04 0d 00 44 00 00 00 57 04 0d 00 58 00 00 00 9c 04 0d 00 08 01 00 00 f5 04 0d 00 65 00 00 00 | ....D...W...X...............e... |
| c940 | fe 05 0d 00 7e 00 00 00 64 06 0d 00 48 01 00 00 e3 06 0d 00 35 01 00 00 2c 08 0d 00 90 00 00 00 | ....~...d...H.......5...,....... |
| c960 | 62 09 0d 00 a3 00 00 00 f3 09 0d 00 02 01 00 00 97 0a 0d 00 3f 00 00 00 9a 0b 0d 00 42 00 00 00 | b...................?.......B... |
| c980 | da 0b 0d 00 24 00 00 00 1d 0c 0d 00 22 01 00 00 42 0c 0d 00 1c 00 00 00 65 0d 0d 00 2c 00 00 00 | ....$......."...B.......e...,... |
| c9a0 | 82 0d 0d 00 43 00 00 00 af 0d 0d 00 c8 00 00 00 f3 0d 0d 00 b8 00 00 00 bc 0e 0d 00 b1 01 00 00 | ....C........................... |
| c9c0 | 75 0f 0d 00 4f 00 00 00 27 11 0d 00 37 00 00 00 77 11 0d 00 26 00 00 00 af 11 0d 00 0a 02 00 00 | u...O...'...7...w...&........... |
| c9e0 | d6 11 0d 00 62 00 00 00 e1 13 0d 00 41 00 00 00 44 14 0d 00 3d 00 00 00 86 14 0d 00 5e 00 00 00 | ....b.......A...D...=.......^... |
| ca00 | c4 14 0d 00 35 00 00 00 23 15 0d 00 77 00 00 00 59 15 0d 00 04 00 00 00 d1 15 0d 00 1c 00 00 00 | ....5...#...w...Y............... |
| ca20 | d6 15 0d 00 03 00 00 00 f3 15 0d 00 03 00 00 00 f7 15 0d 00 5c 00 00 00 fb 15 0d 00 a7 01 00 00 | ....................\........... |
| ca40 | 58 16 0d 00 0c 00 00 00 00 18 0d 00 a8 00 00 00 0d 18 0d 00 70 00 00 00 b6 18 0d 00 3c 00 00 00 | X...................p.......<... |
| ca60 | 27 19 0d 00 41 00 00 00 64 19 0d 00 33 00 00 00 a6 19 0d 00 12 00 00 00 da 19 0d 00 0c 00 00 00 | '...A...d...3................... |
| ca80 | ed 19 0d 00 79 00 00 00 fa 19 0d 00 45 00 00 00 74 1a 0d 00 07 00 00 00 ba 1a 0d 00 10 00 00 00 | ....y.......E...t............... |
| caa0 | c2 1a 0d 00 22 00 00 00 d3 1a 0d 00 68 00 00 00 f6 1a 0d 00 41 00 00 00 5f 1b 0d 00 40 00 00 00 | ....".......h.......A..._...@... |
| cac0 | a1 1b 0d 00 23 00 00 00 e2 1b 0d 00 c5 00 00 00 06 1c 0d 00 9f 00 00 00 cc 1c 0d 00 3c 00 00 00 | ....#.......................<... |
| cae0 | 6c 1d 0d 00 23 00 00 00 a9 1d 0d 00 48 00 00 00 cd 1d 0d 00 26 00 00 00 16 1e 0d 00 35 00 00 00 | l...#.......H.......&.......5... |
| cb00 | 3d 1e 0d 00 4e 00 00 00 73 1e 0d 00 86 00 00 00 c2 1e 0d 00 68 00 00 00 49 1f 0d 00 63 00 00 00 | =...N...s...........h...I...c... |
| cb20 | b2 1f 0d 00 2f 00 00 00 16 20 0d 00 48 00 00 00 46 20 0d 00 43 00 00 00 8f 20 0d 00 a3 00 00 00 | ..../.......H...F...C........... |
| cb40 | d3 20 0d 00 b8 00 00 00 77 21 0d 00 81 00 00 00 30 22 0d 00 46 00 00 00 b2 22 0d 00 1c 00 00 00 | ........w!......0"..F...."...... |
| cb60 | f9 22 0d 00 2a 00 00 00 16 23 0d 00 7d 00 00 00 41 23 0d 00 60 00 00 00 bf 23 0d 00 ee 00 00 00 | ."..*....#..}...A#..`....#...... |
| cb80 | 20 24 0d 00 09 01 00 00 0f 25 0d 00 02 01 00 00 19 26 0d 00 68 00 00 00 1c 27 0d 00 07 00 00 00 | .$.......%.......&..h....'...... |
| cba0 | 85 27 0d 00 12 00 00 00 8d 27 0d 00 10 00 00 00 a0 27 0d 00 0e 00 00 00 b1 27 0d 00 4c 01 00 00 | .'.......'.......'.......'..L... |
| cbc0 | c0 27 0d 00 42 00 00 00 0d 29 0d 00 0d 00 00 00 50 29 0d 00 24 00 00 00 5e 29 0d 00 c6 00 00 00 | .'..B....)......P)..$...^)...... |
| cbe0 | 83 29 0d 00 ba 00 00 00 4a 2a 0d 00 52 00 00 00 05 2b 0d 00 17 00 00 00 58 2b 0d 00 1a 00 00 00 | .)......J*..R....+......X+...... |
| cc00 | 70 2b 0d 00 10 00 00 00 8b 2b 0d 00 c7 00 00 00 9c 2b 0d 00 13 00 00 00 64 2c 0d 00 1a 00 00 00 | p+.......+.......+......d,...... |
| cc20 | 78 2c 0d 00 3c 00 00 00 93 2c 0d 00 7f 00 00 00 d0 2c 0d 00 1a 00 00 00 50 2d 0d 00 14 00 00 00 | x,..<....,.......,......P-...... |
| cc40 | 6b 2d 0d 00 7e 00 00 00 80 2d 0d 00 74 00 00 00 ff 2d 0d 00 7c 01 00 00 74 2e 0d 00 26 01 00 00 | k-..~....-..t....-..|...t...&... |
| cc60 | f1 2f 0d 00 40 01 00 00 18 31 0d 00 74 00 00 00 59 32 0d 00 61 01 00 00 ce 32 0d 00 63 01 00 00 | ./..@....1..t...Y2..a....2..c... |
| cc80 | 30 34 0d 00 2e 00 00 00 94 35 0d 00 05 00 00 00 c3 35 0d 00 09 00 00 00 c9 35 0d 00 07 00 00 00 | 04.......5.......5.......5...... |
| cca0 | d3 35 0d 00 66 00 00 00 db 35 0d 00 4f 00 00 00 42 36 0d 00 9a 00 00 00 92 36 0d 00 8e 00 00 00 | .5..f....5..O...B6.......6...... |
| ccc0 | 2d 37 0d 00 b1 00 00 00 bc 37 0d 00 0e 00 00 00 6e 38 0d 00 67 00 00 00 7d 38 0d 00 ae 00 00 00 | -7.......7......n8..g...}8...... |
| cce0 | e5 38 0d 00 89 00 00 00 94 39 0d 00 28 00 00 00 1e 3a 0d 00 3a 00 00 00 47 3a 0d 00 ac 00 00 00 | .8.......9..(....:..:...G:...... |
| cd00 | 82 3a 0d 00 ab 00 00 00 2f 3b 0d 00 74 00 00 00 db 3b 0d 00 97 00 00 00 50 3c 0d 00 3a 00 00 00 | .:....../;..t....;......P<..:... |
| cd20 | e8 3c 0d 00 40 00 00 00 23 3d 0d 00 27 00 00 00 64 3d 0d 00 e3 00 00 00 8c 3d 0d 00 29 00 00 00 | .<..@...#=..'...d=.......=..)... |
| cd40 | 70 3e 0d 00 21 00 00 00 9a 3e 0d 00 08 01 00 00 bc 3e 0d 00 61 01 00 00 c5 3f 0d 00 2c 00 00 00 | p>..!....>.......>..a....?..,... |
| cd60 | 27 41 0d 00 2e 00 00 00 54 41 0d 00 80 00 00 00 83 41 0d 00 7b 00 00 00 04 42 0d 00 30 00 00 00 | 'A......TA.......A..{....B..0... |
| cd80 | 80 42 0d 00 c8 00 00 00 b1 42 0d 00 c8 00 00 00 7a 43 0d 00 9c 00 00 00 43 44 0d 00 40 00 00 00 | .B.......B......zC......CD..@... |
| cda0 | e0 44 0d 00 b7 00 00 00 21 45 0d 00 b7 00 00 00 d9 45 0d 00 5a 00 00 00 91 46 0d 00 c4 00 00 00 | .D......!E.......E..Z....F...... |
| cdc0 | ec 46 0d 00 c4 00 00 00 b1 47 0d 00 6e 00 00 00 76 48 0d 00 a5 00 00 00 e5 48 0d 00 83 00 00 00 | .F.......G..n...vH.......H...... |
| cde0 | 8b 49 0d 00 c3 00 00 00 0f 4a 0d 00 61 01 00 00 d3 4a 0d 00 68 01 00 00 35 4c 0d 00 18 00 00 00 | .I.......J..a....J..h...5L...... |
| ce00 | 9e 4d 0d 00 54 00 00 00 b7 4d 0d 00 89 00 00 00 0c 4e 0d 00 8b 00 00 00 96 4e 0d 00 6b 00 00 00 | .M..T....M.......N.......N..k... |
| ce20 | 22 4f 0d 00 3d 00 00 00 8e 4f 0d 00 91 00 00 00 cc 4f 0d 00 96 00 00 00 5e 50 0d 00 81 00 00 00 | "O..=....O.......O......^P...... |
| ce40 | f5 50 0d 00 39 00 00 00 77 51 0d 00 3e 01 00 00 b1 51 0d 00 58 00 00 00 f0 52 0d 00 c2 00 00 00 | .P..9...wQ..>....Q..X....R...... |
| ce60 | 49 53 0d 00 ba 00 00 00 0c 54 0d 00 6a 00 00 00 c7 54 0d 00 8c 02 00 00 32 55 0d 00 85 02 00 00 | IS.......T..j....T......2U...... |
| ce80 | bf 57 0d 00 cb 00 00 00 45 5a 0d 00 40 00 00 00 11 5b 0d 00 5f 00 00 00 52 5b 0d 00 9e 01 00 00 | .W......EZ..@....[.._...R[...... |
| cea0 | b2 5b 0d 00 9f 01 00 00 51 5d 0d 00 85 01 00 00 f1 5e 0d 00 84 01 00 00 77 60 0d 00 bb 00 00 00 | .[......Q].......^......w`...... |
| cec0 | fc 61 0d 00 56 00 00 00 b8 62 0d 00 39 00 00 00 0f 63 0d 00 1d 00 00 00 49 63 0d 00 4b 00 00 00 | .a..V....b..9....c......Ic..K... |
| cee0 | 67 63 0d 00 0b 00 00 00 b3 63 0d 00 02 01 00 00 bf 63 0d 00 30 00 00 00 c2 64 0d 00 93 00 00 00 | gc.......c.......c..0....d...... |
| cf00 | f3 64 0d 00 5d 00 00 00 87 65 0d 00 5d 00 00 00 e5 65 0d 00 9a 00 00 00 43 66 0d 00 1a 00 00 00 | .d..]....e..]....e......Cf...... |
| cf20 | de 66 0d 00 0d 00 00 00 f9 66 0d 00 a1 00 00 00 07 67 0d 00 3b 00 00 00 a9 67 0d 00 15 00 00 00 | .f.......f.......g..;....g...... |
| cf40 | e5 67 0d 00 97 00 00 00 fb 67 0d 00 97 00 00 00 93 68 0d 00 34 00 00 00 2b 69 0d 00 2c 00 00 00 | .g.......g.......h..4...+i..,... |
| cf60 | 60 69 0d 00 2f 00 00 00 8d 69 0d 00 c8 00 00 00 bd 69 0d 00 43 01 00 00 86 6a 0d 00 18 00 00 00 | `i../....i.......i..C....j...... |
| cf80 | ca 6b 0d 00 9c 00 00 00 e3 6b 0d 00 3e 00 00 00 80 6c 0d 00 ad 00 00 00 bf 6c 0d 00 aa 00 00 00 | .k.......k..>....l.......l...... |
| cfa0 | 6d 6d 0d 00 44 00 00 00 18 6e 0d 00 1d 00 00 00 5d 6e 0d 00 23 00 00 00 7b 6e 0d 00 19 00 00 00 | mm..D....n......]n..#...{n...... |
| cfc0 | 9f 6e 0d 00 12 00 00 00 b9 6e 0d 00 43 00 00 00 cc 6e 0d 00 42 00 00 00 10 6f 0d 00 47 00 00 00 | .n.......n..C....n..B....o..G... |
| cfe0 | 53 6f 0d 00 31 00 00 00 9b 6f 0d 00 0a 00 00 00 cd 6f 0d 00 08 00 00 00 d8 6f 0d 00 28 01 00 00 | So..1....o.......o.......o..(... |
| d000 | e1 6f 0d 00 81 00 00 00 0a 71 0d 00 75 00 00 00 8c 71 0d 00 aa 00 00 00 02 72 0d 00 d5 00 00 00 | .o.......q..u....q.......r...... |
| d020 | ad 72 0d 00 a5 01 00 00 83 73 0d 00 71 00 00 00 29 75 0d 00 6c 00 00 00 9b 75 0d 00 78 00 00 00 | .r.......s..q...)u..l....u..x... |
| d040 | 08 76 0d 00 99 00 00 00 81 76 0d 00 1d 01 00 00 1b 77 0d 00 74 00 00 00 39 78 0d 00 49 01 00 00 | .v.......v.......w..t...9x..I... |
| d060 | ae 78 0d 00 18 01 00 00 f8 79 0d 00 17 01 00 00 11 7b 0d 00 1e 01 00 00 29 7c 0d 00 1a 01 00 00 | .x.......y.......{......)|...... |
| d080 | 48 7d 0d 00 39 01 00 00 63 7e 0d 00 5f 00 00 00 9d 7f 0d 00 32 01 00 00 fd 7f 0d 00 82 00 00 00 | H}..9...c~.._.......2........... |
| d0a0 | 30 81 0d 00 a2 00 00 00 b3 81 0d 00 93 00 00 00 56 82 0d 00 af 00 00 00 ea 82 0d 00 7e 00 00 00 | 0...............V...........~... |
| d0c0 | 9a 83 0d 00 47 00 00 00 19 84 0d 00 83 00 00 00 61 84 0d 00 6e 00 00 00 e5 84 0d 00 91 00 00 00 | ....G...........a...n........... |
| d0e0 | 54 85 0d 00 59 00 00 00 e6 85 0d 00 96 00 00 00 40 86 0d 00 8e 00 00 00 d7 86 0d 00 c1 00 00 00 | T...Y...........@............... |
| d100 | 66 87 0d 00 ca 00 00 00 28 88 0d 00 59 01 00 00 f3 88 0d 00 23 00 00 00 4d 8a 0d 00 2f 00 00 00 | f.......(...Y.......#...M.../... |
| d120 | 71 8a 0d 00 43 00 00 00 a1 8a 0d 00 27 00 00 00 e5 8a 0d 00 2d 00 00 00 0d 8b 0d 00 3b 00 00 00 | q...C.......'.......-.......;... |
| d140 | 3b 8b 0d 00 6e 00 00 00 77 8b 0d 00 82 00 00 00 e6 8b 0d 00 68 00 00 00 69 8c 0d 00 19 00 00 00 | ;...n...w...........h...i....... |
| d160 | d2 8c 0d 00 19 00 00 00 ec 8c 0d 00 19 00 00 00 06 8d 0d 00 19 00 00 00 20 8d 0d 00 19 00 00 00 | ................................ |
| d180 | 3a 8d 0d 00 19 00 00 00 54 8d 0d 00 19 00 00 00 6e 8d 0d 00 19 00 00 00 88 8d 0d 00 19 00 00 00 | :.......T.......n............... |
| d1a0 | a2 8d 0d 00 19 00 00 00 bc 8d 0d 00 19 00 00 00 d6 8d 0d 00 19 00 00 00 f0 8d 0d 00 7b 00 00 00 | ............................{... |
| d1c0 | 0a 8e 0d 00 c2 00 00 00 86 8e 0d 00 41 00 00 00 49 8f 0d 00 c0 00 00 00 8b 8f 0d 00 68 00 00 00 | ............A...I...........h... |
| d1e0 | 4c 90 0d 00 0e 00 00 00 b5 90 0d 00 16 00 00 00 c4 90 0d 00 1f 00 00 00 db 90 0d 00 25 00 00 00 | L...........................%... |
| d200 | fb 90 0d 00 29 00 00 00 21 91 0d 00 24 00 00 00 4b 91 0d 00 e6 00 00 00 70 91 0d 00 20 00 00 00 | ....)...!...$...K.......p....... |
| d220 | 57 92 0d 00 14 00 00 00 78 92 0d 00 45 00 00 00 8d 92 0d 00 13 00 00 00 d3 92 0d 00 13 00 00 00 | W.......x...E................... |
| d240 | e7 92 0d 00 17 00 00 00 fb 92 0d 00 17 00 00 00 13 93 0d 00 e7 00 00 00 2b 93 0d 00 3d 00 00 00 | ........................+...=... |
| d260 | 13 94 0d 00 12 00 00 00 51 94 0d 00 21 00 00 00 64 94 0d 00 14 00 00 00 86 94 0d 00 13 00 00 00 | ........Q...!...d............... |
| d280 | 9b 94 0d 00 03 00 00 00 af 94 0d 00 1b 00 00 00 b3 94 0d 00 59 00 00 00 cf 94 0d 00 03 00 00 00 | ....................Y........... |
| d2a0 | 29 95 0d 00 14 00 00 00 2d 95 0d 00 14 00 00 00 42 95 0d 00 1d 00 00 00 57 95 0d 00 1a 00 00 00 | ).......-.......B.......W....... |
| d2c0 | 75 95 0d 00 0b 00 00 00 90 95 0d 00 18 00 00 00 9c 95 0d 00 19 00 00 00 b5 95 0d 00 44 00 00 00 | u...........................D... |
| d2e0 | cf 95 0d 00 1a 00 00 00 14 96 0d 00 1f 00 00 00 2f 96 0d 00 1c 00 00 00 4f 96 0d 00 20 00 00 00 | ................/.......O....... |
| d300 | 6c 96 0d 00 65 01 00 00 8d 96 0d 00 54 01 00 00 f3 97 0d 00 c3 02 00 00 48 99 0d 00 56 00 00 00 | l...e.......T...........H...V... |
| d320 | 0c 9c 0d 00 e4 00 00 00 63 9c 0d 00 05 00 00 00 48 9d 0d 00 67 00 00 00 4e 9d 0d 00 81 01 00 00 | ........c.......H...g...N....... |
| d340 | b6 9d 0d 00 07 00 00 00 38 9f 0d 00 89 00 00 00 40 9f 0d 00 13 00 00 00 ca 9f 0d 00 0f 00 00 00 | ........8.......@............... |
| d360 | de 9f 0d 00 1e 00 00 00 ee 9f 0d 00 21 00 00 00 0d a0 0d 00 11 00 00 00 2f a0 0d 00 21 00 00 00 | ............!.........../...!... |
| d380 | 41 a0 0d 00 4c 00 00 00 63 a0 0d 00 50 00 00 00 b0 a0 0d 00 69 00 00 00 01 a1 0d 00 53 00 00 00 | A...L...c...P.......i.......S... |
| d3a0 | 6b a1 0d 00 53 00 00 00 bf a1 0d 00 55 00 00 00 13 a2 0d 00 55 00 00 00 69 a2 0d 00 17 00 00 00 | k...S.......U.......U...i....... |
| d3c0 | bf a2 0d 00 0e 00 00 00 d7 a2 0d 00 0e 00 00 00 e6 a2 0d 00 3f 00 00 00 f5 a2 0d 00 36 00 00 00 | ....................?.......6... |
| d3e0 | 35 a3 0d 00 0b 00 00 00 6c a3 0d 00 d1 00 00 00 78 a3 0d 00 41 00 00 00 4a a4 0d 00 19 00 00 00 | 5.......l.......x...A...J....... |
| d400 | 8c a4 0d 00 87 00 00 00 a6 a4 0d 00 89 00 00 00 2e a5 0d 00 db 00 00 00 b8 a5 0d 00 38 00 00 00 | ............................8... |
| d420 | 94 a6 0d 00 3c 00 00 00 cd a6 0d 00 55 00 00 00 0a a7 0d 00 78 00 00 00 60 a7 0d 00 75 00 00 00 | ....<.......U.......x...`...u... |
| d440 | d9 a7 0d 00 27 00 00 00 4f a8 0d 00 1c 00 00 00 77 a8 0d 00 7d 01 00 00 94 a8 0d 00 11 00 00 00 | ....'...O.......w...}........... |
| d460 | 12 aa 0d 00 0c 00 00 00 24 aa 0d 00 2f 00 00 00 31 aa 0d 00 3f 00 00 00 61 aa 0d 00 63 00 00 00 | ........$.../...1...?...a...c... |
| d480 | a1 aa 0d 00 09 00 00 00 05 ab 0d 00 5d 00 00 00 0f ab 0d 00 58 00 00 00 6d ab 0d 00 59 00 00 00 | ............].......X...m...Y... |
| d4a0 | c6 ab 0d 00 34 00 00 00 20 ac 0d 00 17 00 00 00 55 ac 0d 00 0c 00 00 00 6d ac 0d 00 25 00 00 00 | ....4...........U.......m...%... |
| d4c0 | 7a ac 0d 00 13 00 00 00 a0 ac 0d 00 29 00 00 00 b4 ac 0d 00 83 00 00 00 de ac 0d 00 6e 00 00 00 | z...........)...............n... |
| d4e0 | 62 ad 0d 00 31 00 00 00 d1 ad 0d 00 06 00 00 00 03 ae 0d 00 1d 00 00 00 0a ae 0d 00 0e 00 00 00 | b...1........................... |
| d500 | 28 ae 0d 00 0c 00 00 00 37 ae 0d 00 3f 00 00 00 44 ae 0d 00 37 00 00 00 84 ae 0d 00 07 00 00 00 | (.......7...?...D...7........... |
| d520 | bc ae 0d 00 0b 00 00 00 c4 ae 0d 00 0e 00 00 00 d0 ae 0d 00 d0 00 00 00 df ae 0d 00 9c 00 00 00 | ................................ |
| d540 | b0 af 0d 00 51 00 00 00 4d b0 0d 00 9c 00 00 00 9f b0 0d 00 ef 00 00 00 3c b1 0d 00 8d 01 00 00 | ....Q...M...............<....... |
| d560 | 2c b2 0d 00 37 01 00 00 ba b3 0d 00 38 01 00 00 f2 b4 0d 00 ce 00 00 00 2b b6 0d 00 d9 00 00 00 | ,...7.......8...........+....... |
| d580 | fa b6 0d 00 eb 00 00 00 d4 b7 0d 00 3b 00 00 00 c0 b8 0d 00 63 00 00 00 fc b8 0d 00 78 00 00 00 | ............;.......c.......x... |
| d5a0 | 60 b9 0d 00 9d 00 00 00 d9 b9 0d 00 97 00 00 00 77 ba 0d 00 25 00 00 00 0f bb 0d 00 a1 00 00 00 | `...............w...%........... |
| d5c0 | 35 bb 0d 00 a3 00 00 00 d7 bb 0d 00 3a 01 00 00 7b bc 0d 00 16 00 00 00 b6 bd 0d 00 1a 00 00 00 | 5...........:...{............... |
| d5e0 | cd bd 0d 00 04 00 00 00 e8 bd 0d 00 05 00 00 00 ed bd 0d 00 0b 01 00 00 f3 bd 0d 00 0a 00 00 00 | ................................ |
| d600 | ff be 0d 00 27 00 00 00 0a bf 0d 00 16 00 00 00 32 bf 0d 00 c8 00 00 00 49 bf 0d 00 1a 00 00 00 | ....'...........2.......I....... |
| d620 | 12 c0 0d 00 2a 00 00 00 2d c0 0d 00 0c 00 00 00 58 c0 0d 00 30 00 00 00 65 c0 0d 00 2c 00 00 00 | ....*...-.......X...0...e...,... |
| d640 | 96 c0 0d 00 0b 01 00 00 c3 c0 0d 00 76 00 00 00 cf c1 0d 00 bc 00 00 00 46 c2 0d 00 91 00 00 00 | ............v...........F....... |
| d660 | 03 c3 0d 00 c4 00 00 00 95 c3 0d 00 c7 00 00 00 5a c4 0d 00 3e 00 00 00 22 c5 0d 00 0c 00 00 00 | ................Z...>..."....... |
| d680 | 61 c5 0d 00 46 00 00 00 6e c5 0d 00 06 00 00 00 b5 c5 0d 00 14 00 00 00 bc c5 0d 00 06 00 00 00 | a...F...n....................... |
| d6a0 | d1 c5 0d 00 c4 00 00 00 d8 c5 0d 00 9f 00 00 00 9d c6 0d 00 0e 00 00 00 3d c7 0d 00 2d 00 00 00 | ........................=...-... |
| d6c0 | 4c c7 0d 00 1b 00 00 00 7a c7 0d 00 0f 00 00 00 96 c7 0d 00 07 00 00 00 a6 c7 0d 00 16 00 00 00 | L.......z....................... |
| d6e0 | ae c7 0d 00 1d 00 00 00 c5 c7 0d 00 06 00 00 00 e3 c7 0d 00 14 00 00 00 ea c7 0d 00 15 00 00 00 | ................................ |
| d700 | ff c7 0d 00 14 00 00 00 15 c8 0d 00 1f 00 00 00 2a c8 0d 00 3d 00 00 00 4a c8 0d 00 0b 00 00 00 | ................*...=...J....... |
| d720 | 88 c8 0d 00 0d 00 00 00 94 c8 0d 00 14 00 00 00 a2 c8 0d 00 12 00 00 00 b7 c8 0d 00 14 00 00 00 | ................................ |
| d740 | ca c8 0d 00 6c 00 00 00 df c8 0d 00 07 00 00 00 4c c9 0d 00 6a 00 00 00 54 c9 0d 00 98 00 00 00 | ....l...........L...j...T....... |
| d760 | bf c9 0d 00 0c 00 00 00 58 ca 0d 00 96 00 00 00 65 ca 0d 00 3e 00 00 00 fc ca 0d 00 77 00 00 00 | ........X.......e...>.......w... |
| d780 | 3b cb 0d 00 38 00 00 00 b3 cb 0d 00 08 00 00 00 ec cb 0d 00 20 00 00 00 f5 cb 0d 00 40 00 00 00 | ;...8.......................@... |
| d7a0 | 16 cc 0d 00 1e 00 00 00 57 cc 0d 00 11 00 00 00 76 cc 0d 00 97 00 00 00 88 cc 0d 00 0a 00 00 00 | ........W.......v............... |
| d7c0 | 20 cd 0d 00 1b 00 00 00 2b cd 0d 00 58 00 00 00 47 cd 0d 00 0b 00 00 00 a0 cd 0d 00 0d 00 00 00 | ........+...X...G............... |
| d7e0 | ac cd 0d 00 15 00 00 00 ba cd 0d 00 16 00 00 00 d0 cd 0d 00 13 00 00 00 e7 cd 0d 00 15 00 00 00 | ................................ |
| d800 | fb cd 0d 00 2f 00 00 00 11 ce 0d 00 0b 01 00 00 41 ce 0d 00 af 00 00 00 4d cf 0d 00 16 00 00 00 | ..../...........A.......M....... |
| d820 | fd cf 0d 00 59 00 00 00 14 d0 0d 00 26 00 00 00 6e d0 0d 00 20 00 00 00 95 d0 0d 00 25 00 00 00 | ....Y.......&...n...........%... |
| d840 | b6 d0 0d 00 a5 00 00 00 dc d0 0d 00 22 00 00 00 82 d1 0d 00 7d 00 00 00 a5 d1 0d 00 9e 00 00 00 | ............".......}........... |
| d860 | 23 d2 0d 00 09 00 00 00 c2 d2 0d 00 94 00 00 00 cc d2 0d 00 0d 00 00 00 61 d3 0d 00 51 00 00 00 | #.......................a...Q... |
| d880 | 6f d3 0d 00 25 00 00 00 c1 d3 0d 00 37 00 00 00 e7 d3 0d 00 c0 00 00 00 1f d4 0d 00 71 00 00 00 | o...%.......7...............q... |
| d8a0 | e0 d4 0d 00 24 00 00 00 52 d5 0d 00 52 00 00 00 77 d5 0d 00 4e 00 00 00 ca d5 0d 00 68 00 00 00 | ....$...R...R...w...N.......h... |
| d8c0 | 19 d6 0d 00 55 00 00 00 82 d6 0d 00 22 00 00 00 d8 d6 0d 00 22 00 00 00 fb d6 0d 00 4c 00 00 00 | ....U.......".......".......L... |
| d8e0 | 1e d7 0d 00 57 00 00 00 6b d7 0d 00 75 00 00 00 c3 d7 0d 00 70 00 00 00 39 d8 0d 00 75 00 00 00 | ....W...k...u.......p...9...u... |
| d900 | aa d8 0d 00 a4 00 00 00 20 d9 0d 00 37 00 00 00 c5 d9 0d 00 fc 00 00 00 fd d9 0d 00 bb 00 00 00 | ............7................... |
| d920 | fa da 0d 00 7a 00 00 00 b6 db 0d 00 77 00 00 00 31 dc 0d 00 71 00 00 00 a9 dc 0d 00 aa 00 00 00 | ....z.......w...1...q........... |
| d940 | 1b dd 0d 00 3a 00 00 00 c6 dd 0d 00 2b 00 00 00 01 de 0d 00 48 00 00 00 2d de 0d 00 3a 00 00 00 | ....:.......+.......H...-...:... |
| d960 | 76 de 0d 00 60 00 00 00 b1 de 0d 00 62 00 00 00 12 df 0d 00 26 00 00 00 75 df 0d 00 2b 00 00 00 | v...`.......b.......&...u...+... |
| d980 | 9c df 0d 00 43 00 00 00 c8 df 0d 00 2b 00 00 00 0c e0 0d 00 5b 00 00 00 38 e0 0d 00 61 00 00 00 | ....C.......+.......[...8...a... |
| d9a0 | 94 e0 0d 00 27 00 00 00 f6 e0 0d 00 5b 00 00 00 1e e1 0d 00 2e 00 00 00 7a e1 0d 00 47 00 00 00 | ....'.......[...........z...G... |
| d9c0 | a9 e1 0d 00 9a 00 00 00 f1 e1 0d 00 31 00 00 00 8c e2 0d 00 31 00 00 00 be e2 0d 00 3e 00 00 00 | ............1.......1.......>... |
| d9e0 | f0 e2 0d 00 41 00 00 00 2f e3 0d 00 84 00 00 00 71 e3 0d 00 5f 00 00 00 f6 e3 0d 00 5f 00 00 00 | ....A.../.......q..._......._... |
| da00 | 56 e4 0d 00 3c 00 00 00 b6 e4 0d 00 3c 00 00 00 f3 e4 0d 00 39 00 00 00 30 e5 0d 00 89 00 00 00 | V...<.......<.......9...0....... |
| da20 | 6a e5 0d 00 58 00 00 00 f4 e5 0d 00 2c 00 00 00 4d e6 0d 00 2b 00 00 00 7a e6 0d 00 64 00 00 00 | j...X.......,...M...+...z...d... |
| da40 | a6 e6 0d 00 65 00 00 00 0b e7 0d 00 2f 00 00 00 71 e7 0d 00 4b 00 00 00 a1 e7 0d 00 4c 00 00 00 | ....e......./...q...K.......L... |
| da60 | ed e7 0d 00 5f 00 00 00 3a e8 0d 00 42 00 00 00 9a e8 0d 00 70 00 00 00 dd e8 0d 00 64 00 00 00 | ...._...:...B.......p.......d... |
| da80 | 4e e9 0d 00 2a 00 00 00 b3 e9 0d 00 3b 00 00 00 de e9 0d 00 2b 00 00 00 1a ea 0d 00 34 00 00 00 | N...*.......;.......+.......4... |
| daa0 | 46 ea 0d 00 42 00 00 00 7b ea 0d 00 36 00 00 00 be ea 0d 00 99 00 00 00 f5 ea 0d 00 3f 00 00 00 | F...B...{...6...............?... |
| dac0 | 8f eb 0d 00 3f 00 00 00 cf eb 0d 00 50 00 00 00 0f ec 0d 00 2a 00 00 00 60 ec 0d 00 b2 00 00 00 | ....?.......P.......*...`....... |
| dae0 | 8b ec 0d 00 2d 00 00 00 3e ed 0d 00 5d 00 00 00 6c ed 0d 00 49 00 00 00 ca ed 0d 00 49 00 00 00 | ....-...>...]...l...I.......I... |
| db00 | 14 ee 0d 00 36 00 00 00 5e ee 0d 00 3c 00 00 00 95 ee 0d 00 3e 00 00 00 d2 ee 0d 00 2c 00 00 00 | ....6...^...<.......>.......,... |
| db20 | 11 ef 0d 00 1f 00 00 00 3e ef 0d 00 59 00 00 00 5e ef 0d 00 95 00 00 00 b8 ef 0d 00 38 00 00 00 | ........>...Y...^...........8... |
| db40 | 4e f0 0d 00 10 00 00 00 87 f0 0d 00 a6 00 00 00 98 f0 0d 00 92 00 00 00 3f f1 0d 00 43 00 00 00 | N.......................?...C... |
| db60 | d2 f1 0d 00 31 00 00 00 16 f2 0d 00 51 00 00 00 48 f2 0d 00 17 00 00 00 9a f2 0d 00 11 00 00 00 | ....1.......Q...H............... |
| db80 | b2 f2 0d 00 17 00 00 00 c4 f2 0d 00 25 00 00 00 dc f2 0d 00 18 00 00 00 02 f3 0d 00 17 00 00 00 | ............%................... |
| dba0 | 1b f3 0d 00 1d 00 00 00 33 f3 0d 00 21 00 00 00 51 f3 0d 00 17 00 00 00 73 f3 0d 00 17 00 00 00 | ........3...!...Q.......s....... |
| dbc0 | 8b f3 0d 00 b2 00 00 00 a3 f3 0d 00 42 00 00 00 56 f4 0d 00 12 00 00 00 99 f4 0d 00 b7 00 00 00 | ............B...V............... |
| dbe0 | ac f4 0d 00 b8 00 00 00 64 f5 0d 00 44 01 00 00 1d f6 0d 00 3c 01 00 00 62 f7 0d 00 c4 01 00 00 | ........d...D.......<...b....... |
| dc00 | 9f f8 0d 00 09 00 00 00 64 fa 0d 00 0e 00 00 00 6e fa 0d 00 16 00 00 00 7d fa 0d 00 16 00 00 00 | ........d.......n.......}....... |
| dc20 | 94 fa 0d 00 0d 00 00 00 ab fa 0d 00 0e 00 00 00 b9 fa 0d 00 07 00 00 00 c8 fa 0d 00 0e 00 00 00 | ................................ |
| dc40 | d0 fa 0d 00 30 00 00 00 df fa 0d 00 09 00 00 00 10 fb 0d 00 12 00 00 00 1a fb 0d 00 12 00 00 00 | ....0........................... |
| dc60 | 2d fb 0d 00 11 00 00 00 40 fb 0d 00 49 00 00 00 52 fb 0d 00 49 00 00 00 9c fb 0d 00 c9 00 00 00 | -.......@...I...R...I........... |
| dc80 | e6 fb 0d 00 b3 00 00 00 b0 fc 0d 00 b4 00 00 00 64 fd 0d 00 36 00 00 00 19 fe 0d 00 39 00 00 00 | ................d...6.......9... |
| dca0 | 50 fe 0d 00 81 00 00 00 8a fe 0d 00 82 00 00 00 0c ff 0d 00 92 00 00 00 8f ff 0d 00 64 00 00 00 | P...........................d... |
| dcc0 | 22 00 0e 00 8a 00 00 00 87 00 0e 00 27 00 00 00 12 01 0e 00 15 00 00 00 3a 01 0e 00 5f 00 00 00 | "...........'...........:..._... |
| dce0 | 50 01 0e 00 44 00 00 00 b0 01 0e 00 69 00 00 00 f5 01 0e 00 92 00 00 00 5f 02 0e 00 75 00 00 00 | P...D.......i..........._...u... |
| dd00 | f2 02 0e 00 66 00 00 00 68 03 0e 00 75 00 00 00 cf 03 0e 00 4e 00 00 00 45 04 0e 00 8c 00 00 00 | ....f...h...u.......N...E....... |
| dd20 | 94 04 0e 00 56 00 00 00 21 05 0e 00 76 00 00 00 78 05 0e 00 73 00 00 00 ef 05 0e 00 c3 00 00 00 | ....V...!...v...x...s........... |
| dd40 | 63 06 0e 00 c0 00 00 00 27 07 0e 00 6b 00 00 00 e8 07 0e 00 30 00 00 00 54 08 0e 00 7b 00 00 00 | c.......'...k.......0...T...{... |
| dd60 | 85 08 0e 00 45 00 00 00 01 09 0e 00 7f 00 00 00 47 09 0e 00 6d 00 00 00 c7 09 0e 00 3d 00 00 00 | ....E...........G...m.......=... |
| dd80 | 35 0a 0e 00 d9 00 00 00 73 0a 0e 00 a0 00 00 00 4d 0b 0e 00 68 00 00 00 ee 0b 0e 00 9c 00 00 00 | 5.......s.......M...h........... |
| dda0 | 57 0c 0e 00 54 00 00 00 f4 0c 0e 00 2b 00 00 00 49 0d 0e 00 21 00 00 00 75 0d 0e 00 5a 00 00 00 | W...T.......+...I...!...u...Z... |
| ddc0 | 97 0d 0e 00 70 00 00 00 f2 0d 0e 00 4a 00 00 00 63 0e 0e 00 16 00 00 00 ae 0e 0e 00 19 00 00 00 | ....p.......J...c............... |
| dde0 | c5 0e 0e 00 25 00 00 00 df 0e 0e 00 62 00 00 00 05 0f 0e 00 08 00 00 00 68 0f 0e 00 2d 00 00 00 | ....%.......b...........h...-... |
| de00 | 71 0f 0e 00 14 00 00 00 9f 0f 0e 00 14 00 00 00 b4 0f 0e 00 14 00 00 00 c9 0f 0e 00 14 00 00 00 | q............................... |
| de20 | de 0f 0e 00 0d 00 00 00 f3 0f 0e 00 39 00 00 00 01 10 0e 00 43 00 00 00 3b 10 0e 00 0b 00 00 00 | ............9.......C...;....... |
| de40 | 7f 10 0e 00 da 00 00 00 8b 10 0e 00 db 00 00 00 66 11 0e 00 e0 00 00 00 42 12 0e 00 f3 00 00 00 | ................f.......B....... |
| de60 | 23 13 0e 00 dc 00 00 00 17 14 0e 00 dd 00 00 00 f4 14 0e 00 dc 00 00 00 d2 15 0e 00 dd 00 00 00 | #............................... |
| de80 | af 16 0e 00 43 00 00 00 8d 17 0e 00 3d 00 00 00 d1 17 0e 00 00 01 00 00 0f 18 0e 00 00 01 00 00 | ....C.......=................... |
| dea0 | 10 19 0e 00 b3 00 00 00 11 1a 0e 00 0f 00 00 00 c5 1a 0e 00 0b 00 00 00 d5 1a 0e 00 61 00 00 00 | ............................a... |
| dec0 | e1 1a 0e 00 0a 00 00 00 43 1b 0e 00 0b 00 00 00 4e 1b 0e 00 18 00 00 00 5a 1b 0e 00 10 00 00 00 | ........C.......N.......Z....... |
| dee0 | 73 1b 0e 00 3a 00 00 00 84 1b 0e 00 12 00 00 00 bf 1b 0e 00 3c 00 00 00 d2 1b 0e 00 84 00 00 00 | s...:...............<........... |
| df00 | 0f 1c 0e 00 14 00 00 00 94 1c 0e 00 4c 00 00 00 a9 1c 0e 00 05 00 00 00 f6 1c 0e 00 15 00 00 00 | ............L................... |
| df20 | fc 1c 0e 00 0d 00 00 00 12 1d 0e 00 b6 00 00 00 20 1d 0e 00 04 00 00 00 d7 1d 0e 00 bf 00 00 00 | ................................ |
| df40 | dc 1d 0e 00 52 00 00 00 9c 1e 0e 00 06 00 00 00 ef 1e 0e 00 0e 00 00 00 f6 1e 0e 00 10 00 00 00 | ....R........................... |
| df60 | 05 1f 0e 00 1c 00 00 00 16 1f 0e 00 17 00 00 00 33 1f 0e 00 2b 00 00 00 4b 1f 0e 00 05 00 00 00 | ................3...+...K....... |
| df80 | 77 1f 0e 00 2f 00 00 00 7d 1f 0e 00 34 00 00 00 ad 1f 0e 00 01 01 00 00 e2 1f 0e 00 05 00 00 00 | w.../...}...4................... |
| dfa0 | e4 20 0e 00 67 00 00 00 ea 20 0e 00 07 00 00 00 52 21 0e 00 0a 00 00 00 5a 21 0e 00 15 00 00 00 | ....g...........R!......Z!...... |
| dfc0 | 65 21 0e 00 19 00 00 00 7b 21 0e 00 a4 00 00 00 95 21 0e 00 ac 00 00 00 3a 22 0e 00 b2 00 00 00 | e!......{!.......!......:"...... |
| dfe0 | e7 22 0e 00 32 00 00 00 9a 23 0e 00 ab 00 00 00 cd 23 0e 00 0f 00 00 00 79 24 0e 00 31 00 00 00 | ."..2....#.......#......y$..1... |
| e000 | 89 24 0e 00 1d 00 00 00 bb 24 0e 00 14 00 00 00 d9 24 0e 00 32 00 00 00 ee 24 0e 00 15 00 00 00 | .$.......$.......$..2....$...... |
| e020 | 21 25 0e 00 0a 00 00 00 37 25 0e 00 0c 00 00 00 42 25 0e 00 11 00 00 00 4f 25 0e 00 17 00 00 00 | !%......7%......B%......O%...... |
| e040 | 61 25 0e 00 13 00 00 00 79 25 0e 00 19 00 00 00 8d 25 0e 00 64 00 00 00 a7 25 0e 00 74 00 00 00 | a%......y%.......%..d....%..t... |
| e060 | 0c 26 0e 00 98 00 00 00 81 26 0e 00 24 00 00 00 1a 27 0e 00 25 00 00 00 3f 27 0e 00 0d 00 00 00 | .&.......&..$....'..%...?'...... |
| e080 | 65 27 0e 00 42 00 00 00 73 27 0e 00 16 00 00 00 b6 27 0e 00 13 00 00 00 cd 27 0e 00 55 00 00 00 | e'..B...s'.......'.......'..U... |
| e0a0 | e1 27 0e 00 95 00 00 00 37 28 0e 00 35 00 00 00 cd 28 0e 00 8e 00 00 00 03 29 0e 00 8e 00 00 00 | .'......7(..5....(.......)...... |
| e0c0 | 92 29 0e 00 68 00 00 00 21 2a 0e 00 77 00 00 00 8a 2a 0e 00 81 00 00 00 02 2b 0e 00 21 00 00 00 | .)..h...!*..w....*.......+..!... |
| e0e0 | 84 2b 0e 00 22 00 00 00 a6 2b 0e 00 2e 00 00 00 c9 2b 0e 00 31 00 00 00 f8 2b 0e 00 7e 00 00 00 | .+.."....+.......+..1....+..~... |
| e100 | 2a 2c 0e 00 83 00 00 00 a9 2c 0e 00 4b 00 00 00 2d 2d 0e 00 38 00 00 00 79 2d 0e 00 39 00 00 00 | *,.......,..K...--..8...y-..9... |
| e120 | b2 2d 0e 00 95 00 00 00 ec 2d 0e 00 70 00 00 00 82 2e 0e 00 85 00 00 00 f3 2e 0e 00 51 00 00 00 | .-.......-..p...............Q... |
| e140 | 79 2f 0e 00 9a 00 00 00 cb 2f 0e 00 9e 00 00 00 66 30 0e 00 32 00 00 00 05 31 0e 00 69 00 00 00 | y/......./......f0..2....1..i... |
| e160 | 38 31 0e 00 7b 00 00 00 a2 31 0e 00 2a 00 00 00 1e 32 0e 00 62 00 00 00 49 32 0e 00 4b 01 00 00 | 81..{....1..*....2..b...I2..K... |
| e180 | ac 32 0e 00 a6 00 00 00 f8 33 0e 00 89 00 00 00 9f 34 0e 00 af 00 00 00 29 35 0e 00 88 00 00 00 | .2.......3.......4......)5...... |
| e1a0 | d9 35 0e 00 31 00 00 00 62 36 0e 00 2d 00 00 00 94 36 0e 00 7a 00 00 00 c2 36 0e 00 92 00 00 00 | .5..1...b6..-....6..z....6...... |
| e1c0 | 3d 37 0e 00 b3 00 00 00 d0 37 0e 00 6d 00 00 00 84 38 0e 00 6b 00 00 00 f2 38 0e 00 1f 00 00 00 | =7.......7..m....8..k....8...... |
| e1e0 | 5e 39 0e 00 0e 00 00 00 7e 39 0e 00 77 00 00 00 8d 39 0e 00 4b 00 00 00 05 3a 0e 00 33 00 00 00 | ^9......~9..w....9..K....:..3... |
| e200 | 51 3a 0e 00 39 00 00 00 85 3a 0e 00 0b 00 00 00 bf 3a 0e 00 6d 00 00 00 cb 3a 0e 00 1a 00 00 00 | Q:..9....:.......:..m....:...... |
| e220 | 39 3b 0e 00 20 00 00 00 54 3b 0e 00 25 00 00 00 75 3b 0e 00 4d 00 00 00 9b 3b 0e 00 4e 00 00 00 | 9;......T;..%...u;..M....;..N... |
| e240 | e9 3b 0e 00 0b 00 00 00 38 3c 0e 00 f6 00 00 00 44 3c 0e 00 2e 00 00 00 3b 3d 0e 00 13 00 00 00 | .;......8<......D<......;=...... |
| e260 | 6a 3d 0e 00 0f 00 00 00 7e 3d 0e 00 12 00 00 00 8e 3d 0e 00 71 01 00 00 a1 3d 0e 00 fe 00 00 00 | j=......~=.......=..q....=...... |
| e280 | 13 3f 0e 00 4e 00 00 00 12 40 0e 00 c9 00 00 00 61 40 0e 00 13 00 00 00 2b 41 0e 00 19 00 00 00 | .?..N....@......a@......+A...... |
| e2a0 | 3f 41 0e 00 7c 00 00 00 59 41 0e 00 38 00 00 00 d6 41 0e 00 3b 00 00 00 0f 42 0e 00 46 00 00 00 | ?A..|...YA..8....A..;....B..F... |
| e2c0 | 4b 42 0e 00 2f 00 00 00 92 42 0e 00 19 00 00 00 c2 42 0e 00 12 00 00 00 dc 42 0e 00 14 00 00 00 | KB../....B.......B.......B...... |
| e2e0 | ef 42 0e 00 22 00 00 00 04 43 0e 00 84 00 00 00 27 43 0e 00 26 00 00 00 ac 43 0e 00 24 00 00 00 | .B.."....C......'C..&....C..$... |
| e300 | d3 43 0e 00 1b 00 00 00 f8 43 0e 00 1d 00 00 00 14 44 0e 00 58 00 00 00 32 44 0e 00 5b 00 00 00 | .C.......C.......D..X...2D..[... |
| e320 | 8b 44 0e 00 43 00 00 00 e7 44 0e 00 56 00 00 00 2b 45 0e 00 43 00 00 00 82 45 0e 00 3f 00 00 00 | .D..C....D..V...+E..C....E..?... |
| e340 | c6 45 0e 00 75 00 00 00 06 46 0e 00 1e 00 00 00 7c 46 0e 00 25 00 00 00 9b 46 0e 00 25 00 00 00 | .E..u....F......|F..%....F..%... |
| e360 | c1 46 0e 00 15 00 00 00 e7 46 0e 00 86 00 00 00 fd 46 0e 00 2e 00 00 00 84 47 0e 00 95 00 00 00 | .F.......F.......F.......G...... |
| e380 | b3 47 0e 00 43 00 00 00 49 48 0e 00 2b 00 00 00 8d 48 0e 00 2b 00 00 00 b9 48 0e 00 37 01 00 00 | .G..C...IH..+....H..+....H..7... |
| e3a0 | e5 48 0e 00 38 00 00 00 1d 4a 0e 00 3b 00 00 00 56 4a 0e 00 18 00 00 00 92 4a 0e 00 16 00 00 00 | .H..8....J..;...VJ.......J...... |
| e3c0 | ab 4a 0e 00 7a 00 00 00 c2 4a 0e 00 12 00 00 00 3d 4b 0e 00 67 00 00 00 50 4b 0e 00 3a 00 00 00 | .J..z....J......=K..g...PK..:... |
| e3e0 | b8 4b 0e 00 3a 00 00 00 f3 4b 0e 00 0c 00 00 00 2e 4c 0e 00 18 00 00 00 3b 4c 0e 00 39 00 00 00 | .K..:....K.......L......;L..9... |
| e400 | 54 4c 0e 00 47 00 00 00 8e 4c 0e 00 42 00 00 00 d6 4c 0e 00 4c 00 00 00 19 4d 0e 00 3f 00 00 00 | TL..G....L..B....L..L....M..?... |
| e420 | 66 4d 0e 00 3b 00 00 00 a6 4d 0e 00 41 00 00 00 e2 4d 0e 00 11 01 00 00 24 4e 0e 00 12 01 00 00 | fM..;....M..A....M......$N...... |
| e440 | 36 4f 0e 00 3d 00 00 00 49 50 0e 00 31 00 00 00 87 50 0e 00 26 01 00 00 b9 50 0e 00 e2 00 00 00 | 6O..=...IP..1....P..&....P...... |
| e460 | e0 51 0e 00 9f 00 00 00 c3 52 0e 00 9f 00 00 00 63 53 0e 00 3a 00 00 00 03 54 0e 00 f8 00 00 00 | .Q.......R......cS..:....T...... |
| e480 | 3e 54 0e 00 48 00 00 00 37 55 0e 00 e2 00 00 00 80 55 0e 00 88 00 00 00 63 56 0e 00 31 00 00 00 | >T..H...7U.......U......cV..1... |
| e4a0 | ec 56 0e 00 06 00 00 00 1e 57 0e 00 0d 00 00 00 25 57 0e 00 0b 00 00 00 33 57 0e 00 2e 00 00 00 | .V.......W......%W......3W...... |
| e4c0 | 3f 57 0e 00 67 00 00 00 6e 57 0e 00 3e 00 00 00 d6 57 0e 00 13 00 00 00 15 58 0e 00 ab 00 00 00 | ?W..g...nW..>....W.......X...... |
| e4e0 | 29 58 0e 00 b5 00 00 00 d5 58 0e 00 b5 00 00 00 8b 59 0e 00 90 00 00 00 41 5a 0e 00 30 00 00 00 | )X.......X.......Y......AZ..0... |
| e500 | d2 5a 0e 00 47 00 00 00 03 5b 0e 00 22 00 00 00 4b 5b 0e 00 22 00 00 00 6e 5b 0e 00 24 00 00 00 | .Z..G....[.."...K[.."...n[..$... |
| e520 | 91 5b 0e 00 09 00 00 00 b6 5b 0e 00 09 00 00 00 c0 5b 0e 00 92 00 00 00 ca 5b 0e 00 38 00 00 00 | .[.......[.......[.......[..8... |
| e540 | 5d 5c 0e 00 f2 00 00 00 96 5c 0e 00 05 00 00 00 89 5d 0e 00 0f 00 00 00 8f 5d 0e 00 88 00 00 00 | ]\.......\.......].......]...... |
| e560 | 9f 5d 0e 00 bd 00 00 00 28 5e 0e 00 c2 00 00 00 e6 5e 0e 00 7e 00 00 00 a9 5f 0e 00 0b 00 00 00 | .]......(^.......^..~...._...... |
| e580 | 28 60 0e 00 0e 00 00 00 34 60 0e 00 80 00 00 00 43 60 0e 00 12 00 00 00 c4 60 0e 00 6a 00 00 00 | (`......4`......C`.......`..j... |
| e5a0 | d7 60 0e 00 2f 00 00 00 42 61 0e 00 0a 00 00 00 72 61 0e 00 f4 00 00 00 7d 61 0e 00 10 00 00 00 | .`../...Ba......ra......}a...... |
| e5c0 | 72 62 0e 00 f7 00 00 00 83 62 0e 00 d2 01 00 00 7b 63 0e 00 ad 01 00 00 4e 65 0e 00 dd 00 00 00 | rb.......b......{c......Ne...... |
| e5e0 | fc 66 0e 00 91 01 00 00 da 67 0e 00 7f 00 00 00 6c 69 0e 00 af 00 00 00 ec 69 0e 00 2a 03 00 00 | .f.......g......li.......i..*... |
| e600 | 9c 6a 0e 00 6b 00 00 00 c7 6d 0e 00 a3 00 00 00 33 6e 0e 00 9a 00 00 00 d7 6e 0e 00 50 00 00 00 | .j..k....m......3n.......n..P... |
| e620 | 72 6f 0e 00 81 00 00 00 c3 6f 0e 00 2c 00 00 00 45 70 0e 00 51 00 00 00 72 70 0e 00 7a 00 00 00 | ro.......o..,...Ep..Q...rp..z... |
| e640 | c4 70 0e 00 2b 00 00 00 3f 71 0e 00 31 00 00 00 6b 71 0e 00 25 00 00 00 9d 71 0e 00 09 00 00 00 | .p..+...?q..1...kq..%....q...... |
| e660 | c3 71 0e 00 34 00 00 00 cd 71 0e 00 23 00 00 00 02 72 0e 00 23 00 00 00 26 72 0e 00 25 00 00 00 | .q..4....q..#....r..#...&r..%... |
| e680 | 4a 72 0e 00 11 00 00 00 70 72 0e 00 12 00 00 00 82 72 0e 00 12 00 00 00 95 72 0e 00 1e 00 00 00 | Jr......pr.......r.......r...... |
| e6a0 | a8 72 0e 00 23 00 00 00 c7 72 0e 00 39 00 00 00 eb 72 0e 00 24 00 00 00 25 73 0e 00 2c 00 00 00 | .r..#....r..9....r..$...%s..,... |
| e6c0 | 4a 73 0e 00 2d 00 00 00 77 73 0e 00 1c 00 00 00 a5 73 0e 00 1d 00 00 00 c2 73 0e 00 1e 00 00 00 | Js..-...ws.......s.......s...... |
| e6e0 | e0 73 0e 00 0c 00 00 00 ff 73 0e 00 28 00 00 00 0c 74 0e 00 3a 00 00 00 35 74 0e 00 30 00 00 00 | .s.......s..(....t..:...5t..0... |
| e700 | 70 74 0e 00 27 00 00 00 a1 74 0e 00 38 00 00 00 c9 74 0e 00 1d 00 00 00 02 75 0e 00 13 00 00 00 | pt..'....t..8....t.......u...... |
| e720 | 20 75 0e 00 0b 00 00 00 34 75 0e 00 28 00 00 00 40 75 0e 00 30 00 00 00 69 75 0e 00 4c 00 00 00 | .u......4u..(...@u..0...iu..L... |
| e740 | 9a 75 0e 00 74 00 00 00 e7 75 0e 00 11 00 00 00 5c 76 0e 00 55 00 00 00 6e 76 0e 00 30 00 00 00 | .u..t....u......\v..U...nv..0... |
| e760 | c4 76 0e 00 0f 00 00 00 f5 76 0e 00 0b 00 00 00 05 77 0e 00 28 00 00 00 11 77 0e 00 35 00 00 00 | .v.......v.......w..(....w..5... |
| e780 | 3a 77 0e 00 0a 00 00 00 70 77 0e 00 56 00 00 00 7b 77 0e 00 1f 00 00 00 d2 77 0e 00 18 00 00 00 | :w......pw..V...{w.......w...... |
| e7a0 | f2 77 0e 00 2d 00 00 00 0b 78 0e 00 23 00 00 00 39 78 0e 00 3f 00 00 00 5d 78 0e 00 4d 00 00 00 | .w..-....x..#...9x..?...]x..M... |
| e7c0 | 9d 78 0e 00 20 00 00 00 eb 78 0e 00 6d 00 00 00 0c 79 0e 00 71 00 00 00 7a 79 0e 00 33 00 00 00 | .x.......x..m....y..q...zy..3... |
| e7e0 | ec 79 0e 00 61 00 00 00 20 7a 0e 00 64 00 00 00 82 7a 0e 00 63 00 00 00 e7 7a 0e 00 7d 00 00 00 | .y..a....z..d....z..c....z..}... |
| e800 | 4b 7b 0e 00 6d 00 00 00 c9 7b 0e 00 64 00 00 00 37 7c 0e 00 31 00 00 00 9c 7c 0e 00 66 00 00 00 | K{..m....{..d...7|..1....|..f... |
| e820 | ce 7c 0e 00 34 00 00 00 35 7d 0e 00 1b 01 00 00 6a 7d 0e 00 3a 00 00 00 86 7e 0e 00 4a 00 00 00 | .|..4...5}......j}..:....~..J... |
| e840 | c1 7e 0e 00 38 00 00 00 0c 7f 0e 00 40 01 00 00 45 7f 0e 00 3a 00 00 00 86 80 0e 00 4f 00 00 00 | .~..8.......@...E...:.......O... |
| e860 | c1 80 0e 00 2e 00 00 00 11 81 0e 00 86 00 00 00 40 81 0e 00 bb 01 00 00 c7 81 0e 00 06 01 00 00 | ................@............... |
| e880 | 83 83 0e 00 80 00 00 00 8a 84 0e 00 bf 00 00 00 0b 85 0e 00 49 00 00 00 cb 85 0e 00 25 00 00 00 | ....................I.......%... |
| e8a0 | 15 86 0e 00 4b 00 00 00 3b 86 0e 00 79 00 00 00 87 86 0e 00 d6 00 00 00 01 87 0e 00 22 00 00 00 | ....K...;...y..............."... |
| e8c0 | d8 87 0e 00 64 00 00 00 fb 87 0e 00 16 00 00 00 60 88 0e 00 14 00 00 00 77 88 0e 00 79 00 00 00 | ....d...........`.......w...y... |
| e8e0 | 8c 88 0e 00 42 00 00 00 06 89 0e 00 1c 00 00 00 49 89 0e 00 1d 00 00 00 66 89 0e 00 33 00 00 00 | ....B...........I.......f...3... |
| e900 | 84 89 0e 00 a7 00 00 00 b8 89 0e 00 c1 00 00 00 60 8a 0e 00 32 00 00 00 22 8b 0e 00 05 00 00 00 | ................`...2..."....... |
| e920 | 55 8b 0e 00 10 00 00 00 5b 8b 0e 00 5e 00 00 00 6c 8b 0e 00 08 00 00 00 cb 8b 0e 00 dc 00 00 00 | U.......[...^...l............... |
| e940 | d4 8b 0e 00 10 00 00 00 b1 8c 0e 00 5d 00 00 00 c2 8c 0e 00 0d 00 00 00 20 8d 0e 00 21 00 00 00 | ............]...............!... |
| e960 | 2e 8d 0e 00 21 00 00 00 50 8d 0e 00 d4 00 00 00 72 8d 0e 00 14 00 00 00 47 8e 0e 00 38 00 00 00 | ....!...P.......r.......G...8... |
| e980 | 5c 8e 0e 00 a3 00 00 00 95 8e 0e 00 a7 00 00 00 39 8f 0e 00 23 00 00 00 e1 8f 0e 00 91 00 00 00 | \...............9...#........... |
| e9a0 | 05 90 0e 00 59 00 00 00 97 90 0e 00 a6 01 00 00 f1 90 0e 00 ca 00 00 00 98 92 0e 00 75 01 00 00 | ....Y.......................u... |
| e9c0 | 63 93 0e 00 70 01 00 00 d9 94 0e 00 63 01 00 00 4a 96 0e 00 07 00 00 00 ae 97 0e 00 15 00 00 00 | c...p.......c...J............... |
| e9e0 | b6 97 0e 00 27 00 00 00 cc 97 0e 00 26 00 00 00 f4 97 0e 00 12 00 00 00 1b 98 0e 00 0f 00 00 00 | ....'.......&................... |
| ea00 | 2e 98 0e 00 16 00 00 00 3e 98 0e 00 2f 00 00 00 55 98 0e 00 2f 00 00 00 85 98 0e 00 77 00 00 00 | ........>.../...U.../.......w... |
| ea20 | b5 98 0e 00 17 00 00 00 2d 99 0e 00 92 00 00 00 45 99 0e 00 10 00 00 00 d8 99 0e 00 51 00 00 00 | ........-.......E...........Q... |
| ea40 | e9 99 0e 00 08 00 00 00 3b 9a 0e 00 6c 00 00 00 44 9a 0e 00 bf 00 00 00 b1 9a 0e 00 58 00 00 00 | ........;...l...D...........X... |
| ea60 | 71 9b 0e 00 e0 00 00 00 ca 9b 0e 00 3d 00 00 00 ab 9c 0e 00 3b 00 00 00 e9 9c 0e 00 3c 00 00 00 | q...........=.......;.......<... |
| ea80 | 25 9d 0e 00 3e 00 00 00 62 9d 0e 00 3c 00 00 00 a1 9d 0e 00 3d 00 00 00 de 9d 0e 00 15 00 00 00 | %...>...b...<.......=........... |
| eaa0 | 1c 9e 0e 00 34 00 00 00 32 9e 0e 00 36 00 00 00 67 9e 0e 00 33 00 00 00 9e 9e 0e 00 a3 00 00 00 | ....4...2...6...g...3........... |
| eac0 | d2 9e 0e 00 08 00 00 00 76 9f 0e 00 1b 00 00 00 7f 9f 0e 00 09 00 00 00 9b 9f 0e 00 c5 00 00 00 | ........v....................... |
| eae0 | a5 9f 0e 00 2e 00 00 00 6b a0 0e 00 0f 00 00 00 9a a0 0e 00 0f 00 00 00 aa a0 0e 00 31 00 00 00 | ........k...................1... |
| eb00 | ba a0 0e 00 2a 00 00 00 ec a0 0e 00 19 00 00 00 17 a1 0e 00 0b 00 00 00 31 a1 0e 00 40 00 00 00 | ....*...................1...@... |
| eb20 | 3d a1 0e 00 28 00 00 00 7e a1 0e 00 1c 00 00 00 a7 a1 0e 00 1a 00 00 00 c4 a1 0e 00 8e 00 00 00 | =...(...~....................... |
| eb40 | df a1 0e 00 08 00 00 00 6e a2 0e 00 c1 00 00 00 77 a2 0e 00 9a 00 00 00 39 a3 0e 00 dc 00 00 00 | ........n.......w.......9....... |
| eb60 | d4 a3 0e 00 a5 01 00 00 b1 a4 0e 00 03 00 00 00 57 a6 0e 00 98 00 00 00 5b a6 0e 00 46 01 00 00 | ................W.......[...F... |
| eb80 | f4 a6 0e 00 0a 00 00 00 3b a8 0e 00 0a 00 00 00 46 a8 0e 00 39 00 00 00 51 a8 0e 00 0d 00 00 00 | ........;.......F...9...Q....... |
| eba0 | 8b a8 0e 00 08 00 00 00 99 a8 0e 00 0f 00 00 00 a2 a8 0e 00 2d 00 00 00 b2 a8 0e 00 e5 00 00 00 | ....................-........... |
| ebc0 | e0 a8 0e 00 ea 00 00 00 c6 a9 0e 00 0a 00 00 00 b1 aa 0e 00 57 01 00 00 bc aa 0e 00 31 01 00 00 | ....................W.......1... |
| ebe0 | 14 ac 0e 00 0a 00 00 00 46 ad 0e 00 69 01 00 00 51 ad 0e 00 26 00 00 00 bb ae 0e 00 05 00 00 00 | ........F...i...Q...&........... |
| ec00 | e2 ae 0e 00 71 00 00 00 e8 ae 0e 00 5c 00 00 00 5a af 0e 00 90 00 00 00 b7 af 0e 00 33 00 00 00 | ....q.......\...Z...........3... |
| ec20 | 48 b0 0e 00 33 00 00 00 7c b0 0e 00 51 00 00 00 b0 b0 0e 00 95 00 00 00 02 b1 0e 00 09 00 00 00 | H...3...|...Q................... |
| ec40 | 98 b1 0e 00 c1 00 00 00 a2 b1 0e 00 53 00 00 00 64 b2 0e 00 08 00 00 00 b8 b2 0e 00 15 00 00 00 | ............S...d............... |
| ec60 | c1 b2 0e 00 15 00 00 00 d7 b2 0e 00 16 00 00 00 ed b2 0e 00 23 00 00 00 04 b3 0e 00 14 00 00 00 | ....................#........... |
| ec80 | 28 b3 0e 00 13 00 00 00 3d b3 0e 00 0d 00 00 00 51 b3 0e 00 0e 00 00 00 5f b3 0e 00 b0 00 00 00 | (.......=.......Q......._....... |
| eca0 | 6e b3 0e 00 b0 00 00 00 1f b4 0e 00 e9 00 00 00 d0 b4 0e 00 0f 00 00 00 ba b5 0e 00 4f 01 00 00 | n...........................O... |
| ecc0 | ca b5 0e 00 20 01 00 00 1a b7 0e 00 23 01 00 00 3b b8 0e 00 4d 00 00 00 5f b9 0e 00 95 00 00 00 | ............#...;...M..._....... |
| ece0 | ad b9 0e 00 89 00 00 00 43 ba 0e 00 22 00 00 00 cd ba 0e 00 0f 00 00 00 f0 ba 0e 00 0f 00 00 00 | ........C..."................... |
| ed00 | 00 bb 0e 00 28 00 00 00 10 bb 0e 00 78 01 00 00 39 bb 0e 00 60 00 00 00 b2 bc 0e 00 1d 01 00 00 | ....(.......x...9...`........... |
| ed20 | 13 bd 0e 00 0b 00 00 00 31 be 0e 00 53 00 00 00 3d be 0e 00 cd 00 00 00 91 be 0e 00 ca 00 00 00 | ........1...S...=............... |
| ed40 | 5f bf 0e 00 dd 00 00 00 2a c0 0e 00 f4 00 00 00 08 c1 0e 00 60 00 00 00 fd c1 0e 00 98 00 00 00 | _.......*...........`........... |
| ed60 | 5e c2 0e 00 98 00 00 00 f7 c2 0e 00 00 01 00 00 90 c3 0e 00 30 00 00 00 91 c4 0e 00 aa 00 00 00 | ^...................0........... |
| ed80 | c2 c4 0e 00 05 00 00 00 6d c5 0e 00 0e 00 00 00 73 c5 0e 00 2a 02 00 00 82 c5 0e 00 0f 00 00 00 | ........m.......s...*........... |
| eda0 | ad c7 0e 00 0b 00 00 00 bd c7 0e 00 1f 00 00 00 c9 c7 0e 00 33 00 00 00 e9 c7 0e 00 73 00 00 00 | ....................3.......s... |
| edc0 | 1d c8 0e 00 6e 00 00 00 91 c8 0e 00 87 00 00 00 00 c9 0e 00 2e 00 00 00 88 c9 0e 00 29 00 00 00 | ....n.......................)... |
| ede0 | b7 c9 0e 00 b1 00 00 00 e1 c9 0e 00 17 00 00 00 93 ca 0e 00 a7 00 00 00 ab ca 0e 00 21 00 00 00 | ............................!... |
| ee00 | 53 cb 0e 00 a5 00 00 00 75 cb 0e 00 90 00 00 00 1b cc 0e 00 26 00 00 00 ac cc 0e 00 1a 00 00 00 | S.......u...........&........... |
| ee20 | d3 cc 0e 00 44 00 00 00 ee cc 0e 00 48 00 00 00 33 cd 0e 00 2a 00 00 00 7c cd 0e 00 6e 00 00 00 | ....D.......H...3...*...|...n... |
| ee40 | a7 cd 0e 00 90 00 00 00 16 ce 0e 00 cf 00 00 00 a7 ce 0e 00 0f 00 00 00 77 cf 0e 00 0c 00 00 00 | ........................w....... |
| ee60 | 87 cf 0e 00 69 01 00 00 94 cf 0e 00 93 00 00 00 fe d0 0e 00 0f 00 00 00 92 d1 0e 00 f1 00 00 00 | ....i........................... |
| ee80 | a2 d1 0e 00 10 00 00 00 94 d2 0e 00 3e 00 00 00 a5 d2 0e 00 81 00 00 00 e4 d2 0e 00 8b 00 00 00 | ............>................... |
| eea0 | 66 d3 0e 00 bd 00 00 00 f2 d3 0e 00 30 01 00 00 b0 d4 0e 00 96 00 00 00 e1 d5 0e 00 8a 00 00 00 | f...........0................... |
| eec0 | 78 d6 0e 00 69 01 00 00 03 d7 0e 00 0c 00 00 00 6d d8 0e 00 5a 00 00 00 7a d8 0e 00 3b 01 00 00 | x...i...........m...Z...z...;... |
| eee0 | d5 d8 0e 00 3c 01 00 00 11 da 0e 00 db 00 00 00 4e db 0e 00 52 00 00 00 2a dc 0e 00 2f 00 00 00 | ....<...........N...R...*.../... |
| ef00 | 7d dc 0e 00 ac 00 00 00 ad dc 0e 00 09 00 00 00 5a dd 0e 00 eb 00 00 00 64 dd 0e 00 d8 00 00 00 | }...............Z.......d....... |
| ef20 | 50 de 0e 00 5c 00 00 00 29 df 0e 00 63 00 00 00 86 df 0e 00 22 01 00 00 ea df 0e 00 4a 01 00 00 | P...\...)...c.......".......J... |
| ef40 | 0d e1 0e 00 af 00 00 00 58 e2 0e 00 30 00 00 00 08 e3 0e 00 4b 00 00 00 39 e3 0e 00 66 00 00 00 | ........X...0.......K...9...f... |
| ef60 | 85 e3 0e 00 52 00 00 00 ec e3 0e 00 49 00 00 00 3f e4 0e 00 1b 01 00 00 89 e4 0e 00 bb 00 00 00 | ....R.......I...?............... |
| ef80 | a5 e5 0e 00 60 00 00 00 61 e6 0e 00 62 00 00 00 c2 e6 0e 00 52 01 00 00 25 e7 0e 00 43 00 00 00 | ....`...a...b.......R...%...C... |
| efa0 | 78 e8 0e 00 f3 00 00 00 bc e8 0e 00 bd 00 00 00 b0 e9 0e 00 bc 00 00 00 6e ea 0e 00 da 00 00 00 | x.......................n....... |
| efc0 | 2b eb 0e 00 77 00 00 00 06 ec 0e 00 e7 00 00 00 7e ec 0e 00 af 00 00 00 66 ed 0e 00 e8 00 00 00 | +...w...........~.......f....... |
| efe0 | 16 ee 0e 00 e3 00 00 00 ff ee 0e 00 76 00 00 00 e3 ef 0e 00 3c 01 00 00 5a f0 0e 00 3a 01 00 00 | ............v.......<...Z...:... |
| f000 | 97 f1 0e 00 42 01 00 00 d2 f2 0e 00 97 00 00 00 15 f4 0e 00 a2 00 00 00 ad f4 0e 00 a6 00 00 00 | ....B........................... |
| f020 | 50 f5 0e 00 7b 00 00 00 f7 f5 0e 00 d3 00 00 00 73 f6 0e 00 62 00 00 00 47 f7 0e 00 0e 00 00 00 | P...{...........s...b...G....... |
| f040 | aa f7 0e 00 cc 00 00 00 b9 f7 0e 00 32 00 00 00 86 f8 0e 00 11 00 00 00 b9 f8 0e 00 14 01 00 00 | ............2................... |
| f060 | cb f8 0e 00 b9 00 00 00 e0 f9 0e 00 bd 00 00 00 9a fa 0e 00 0f 00 00 00 58 fb 0e 00 06 00 00 00 | ........................X....... |
| f080 | 68 fb 0e 00 06 00 00 00 6f fb 0e 00 5d 02 00 00 76 fb 0e 00 5c 02 00 00 d4 fd 0e 00 0e 00 00 00 | h.......o...]...v...\........... |
| f0a0 | 31 00 0f 00 80 01 00 00 40 00 0f 00 23 01 00 00 c1 01 0f 00 0c 01 00 00 e5 02 0f 00 8b 00 00 00 | 1.......@...#................... |
| f0c0 | f2 03 0f 00 06 00 00 00 7e 04 0f 00 59 00 00 00 85 04 0f 00 59 00 00 00 df 04 0f 00 07 00 00 00 | ........~...Y.......Y........... |
| f0e0 | 39 05 0f 00 15 00 00 00 41 05 0f 00 44 00 00 00 57 05 0f 00 44 00 00 00 9c 05 0f 00 0f 00 00 00 | 9.......A...D...W...D........... |
| f100 | e1 05 0f 00 4d 00 00 00 f1 05 0f 00 3d 00 00 00 3f 06 0f 00 10 00 00 00 7d 06 0f 00 45 00 00 00 | ....M.......=...?.......}...E... |
| f120 | 8e 06 0f 00 58 00 00 00 d4 06 0f 00 59 00 00 00 2d 07 0f 00 7c 00 00 00 87 07 0f 00 ac 00 00 00 | ....X.......Y...-...|........... |
| f140 | 04 08 0f 00 89 00 00 00 b1 08 0f 00 8a 00 00 00 3b 09 0f 00 86 00 00 00 c6 09 0f 00 23 00 00 00 | ................;...........#... |
| f160 | 4d 0a 0f 00 0e 00 00 00 71 0a 0f 00 26 00 00 00 80 0a 0f 00 2d 00 00 00 a7 0a 0f 00 2e 00 00 00 | M.......q...&.......-........... |
| f180 | d5 0a 0f 00 2d 00 00 00 04 0b 0f 00 0f 00 00 00 32 0b 0f 00 1d 01 00 00 42 0b 0f 00 19 01 00 00 | ....-...........2.......B....... |
| f1a0 | 60 0c 0f 00 1f 01 00 00 7a 0d 0f 00 07 00 00 00 9a 0e 0f 00 06 00 00 00 a2 0e 0f 00 17 00 00 00 | `.......z....................... |
| f1c0 | a9 0e 0f 00 0e 00 00 00 c1 0e 0f 00 25 00 00 00 d0 0e 0f 00 0e 00 00 00 f6 0e 0f 00 11 00 00 00 | ............%................... |
| f1e0 | 05 0f 0f 00 0f 00 00 00 17 0f 0f 00 10 00 00 00 27 0f 0f 00 07 00 00 00 38 0f 0f 00 0e 00 00 00 | ................'.......8....... |
| f200 | 40 0f 0f 00 06 00 00 00 4f 0f 0f 00 d0 00 00 00 56 0f 0f 00 2c 00 00 00 27 10 0f 00 5c 00 00 00 | @.......O.......V...,...'...\... |
| f220 | 54 10 0f 00 53 00 00 00 b1 10 0f 00 1b 00 00 00 05 11 0f 00 57 00 00 00 21 11 0f 00 2b 00 00 00 | T...S...............W...!...+... |
| f240 | 79 11 0f 00 08 00 00 00 a5 11 0f 00 13 00 00 00 ae 11 0f 00 22 00 00 00 c2 11 0f 00 1a 00 00 00 | y..................."........... |
| f260 | e5 11 0f 00 0b 00 00 00 00 12 0f 00 0b 00 00 00 0c 12 0f 00 11 00 00 00 18 12 0f 00 08 00 00 00 | ................................ |
| f280 | 2a 12 0f 00 1a 00 00 00 33 12 0f 00 87 00 00 00 4e 12 0f 00 6d 00 00 00 d6 12 0f 00 17 00 00 00 | *.......3.......N...m........... |
| f2a0 | 44 13 0f 00 07 00 00 00 5c 13 0f 00 9c 00 00 00 64 13 0f 00 24 00 00 00 01 14 0f 00 c5 00 00 00 | D.......\.......d...$........... |
| f2c0 | 26 14 0f 00 47 01 00 00 ec 14 0f 00 14 00 00 00 34 16 0f 00 0d 00 00 00 49 16 0f 00 85 00 00 00 | &...G...........4.......I....... |
| f2e0 | 57 16 0f 00 0c 00 00 00 dd 16 0f 00 3e 00 00 00 ea 16 0f 00 78 00 00 00 29 17 0f 00 3c 00 00 00 | W...........>.......x...)...<... |
| f300 | a2 17 0f 00 23 00 00 00 df 17 0f 00 df 00 00 00 03 18 0f 00 34 00 00 00 e3 18 0f 00 4d 00 00 00 | ....#...............4.......M... |
| f320 | 18 19 0f 00 3e 00 00 00 66 19 0f 00 64 00 00 00 a5 19 0f 00 db 00 00 00 0a 1a 0f 00 3b 00 00 00 | ....>...f...d...............;... |
| f340 | e6 1a 0f 00 28 00 00 00 22 1b 0f 00 18 00 00 00 4b 1b 0f 00 12 00 00 00 64 1b 0f 00 3f 00 00 00 | ....(...".......K.......d...?... |
| f360 | 77 1b 0f 00 04 00 00 00 b7 1b 0f 00 11 00 00 00 bc 1b 0f 00 11 00 00 00 ce 1b 0f 00 0a 00 00 00 | w............................... |
| f380 | e0 1b 0f 00 2a 00 00 00 eb 1b 0f 00 10 00 00 00 16 1c 0f 00 09 00 00 00 27 1c 0f 00 30 00 00 00 | ....*...................'...0... |
| f3a0 | 31 1c 0f 00 08 00 00 00 62 1c 0f 00 05 01 00 00 6b 1c 0f 00 1e 00 00 00 71 1d 0f 00 13 00 00 00 | 1.......b.......k.......q....... |
| f3c0 | 90 1d 0f 00 c5 00 00 00 a4 1d 0f 00 6a 00 00 00 6a 1e 0f 00 c0 00 00 00 d5 1e 0f 00 25 00 00 00 | ............j...j...........%... |
| f3e0 | 96 1f 0f 00 25 00 00 00 bc 1f 0f 00 03 00 00 00 e2 1f 0f 00 d3 00 00 00 e6 1f 0f 00 a8 00 00 00 | ....%........................... |
| f400 | ba 20 0f 00 90 01 00 00 63 21 0f 00 d4 01 00 00 f4 22 0f 00 23 01 00 00 c9 24 0f 00 2a 00 00 00 | ........c!......."..#....$..*... |
| f420 | ed 25 0f 00 0a 00 00 00 18 26 0f 00 26 00 00 00 23 26 0f 00 0a 00 00 00 4a 26 0f 00 96 01 00 00 | .%.......&..&...#&......J&...... |
| f440 | 55 26 0f 00 05 00 00 00 ec 27 0f 00 05 00 00 00 f2 27 0f 00 2b 00 00 00 f8 27 0f 00 02 00 00 00 | U&.......'.......'..+....'...... |
| f460 | 24 28 0f 00 0a 00 00 00 27 28 0f 00 53 00 00 00 32 28 0f 00 1d 00 00 00 86 28 0f 00 25 00 00 00 | $(......'(..S...2(.......(..%... |
| f480 | a4 28 0f 00 18 00 00 00 ca 28 0f 00 19 00 00 00 e3 28 0f 00 19 00 00 00 fd 28 0f 00 33 00 00 00 | .(.......(.......(.......(..3... |
| f4a0 | 17 29 0f 00 33 00 00 00 4b 29 0f 00 ea 00 00 00 7f 29 0f 00 2b 00 00 00 6a 2a 0f 00 4d 00 00 00 | .)..3...K).......)..+...j*..M... |
| f4c0 | 96 2a 0f 00 15 00 00 00 e4 2a 0f 00 14 02 00 00 fa 2a 0f 00 34 00 00 00 0f 2d 0f 00 33 00 00 00 | .*.......*.......*..4....-..3... |
| f4e0 | 44 2d 0f 00 36 00 00 00 78 2d 0f 00 34 00 00 00 af 2d 0f 00 2d 00 00 00 e4 2d 0f 00 27 00 00 00 | D-..6...x-..4....-..-....-..'... |
| f500 | 12 2e 0f 00 1b 00 00 00 3a 2e 0f 00 38 00 00 00 56 2e 0f 00 38 00 00 00 8f 2e 0f 00 06 00 00 00 | ........:...8...V...8........... |
| f520 | c8 2e 0f 00 04 00 00 00 cf 2e 0f 00 05 00 00 00 d4 2e 0f 00 11 00 00 00 da 2e 0f 00 19 00 00 00 | ................................ |
| f540 | ec 2e 0f 00 1d 00 00 00 06 2f 0f 00 19 00 00 00 24 2f 0f 00 41 00 00 00 3e 2f 0f 00 11 00 00 00 | ........./......$/..A...>/...... |
| f560 | 80 2f 0f 00 12 00 00 00 92 2f 0f 00 06 00 00 00 a5 2f 0f 00 0b 00 00 00 ac 2f 0f 00 f7 00 00 00 | ./......./......./......./...... |
| f580 | b8 2f 0f 00 f9 00 00 00 b0 30 0f 00 24 01 00 00 aa 31 0f 00 39 00 00 00 cf 32 0f 00 05 00 00 00 | ./.......0..$....1..9....2...... |
| f5a0 | 09 33 0f 00 19 00 00 00 0f 33 0f 00 04 00 00 00 29 33 0f 00 1b 00 00 00 2e 33 0f 00 25 00 00 00 | .3.......3......)3.......3..%... |
| f5c0 | 4a 33 0f 00 2d 00 00 00 70 33 0f 00 2e 00 00 00 9e 33 0f 00 0c 00 00 00 cd 33 0f 00 0a 00 00 00 | J3..-...p3.......3.......3...... |
| f5e0 | da 33 0f 00 7a 00 00 00 e5 33 0f 00 50 00 00 00 60 34 0f 00 0b 00 00 00 b1 34 0f 00 76 00 00 00 | .3..z....3..P...`4.......4..v... |
| f600 | bd 34 0f 00 7c 00 00 00 34 35 0f 00 04 00 00 00 b1 35 0f 00 10 00 00 00 b6 35 0f 00 15 00 00 00 | .4..|...45.......5.......5...... |
| f620 | c7 35 0f 00 16 00 00 00 dd 35 0f 00 20 00 00 00 f4 35 0f 00 1b 00 00 00 15 36 0f 00 0e 00 00 00 | .5.......5.......5.......6...... |
| f640 | 31 36 0f 00 16 00 00 00 40 36 0f 00 11 00 00 00 57 36 0f 00 14 00 00 00 69 36 0f 00 87 00 00 00 | 16......@6......W6......i6...... |
| f660 | 7e 36 0f 00 39 00 00 00 06 37 0f 00 3a 00 00 00 40 37 0f 00 3a 00 00 00 7b 37 0f 00 ec 00 00 00 | ~6..9....7..:...@7..:...{7...... |
| f680 | b6 37 0f 00 14 00 00 00 a3 38 0f 00 1f 00 00 00 b8 38 0f 00 25 00 00 00 d8 38 0f 00 0c 00 00 00 | .7.......8.......8..%....8...... |
| f6a0 | fe 38 0f 00 3e 00 00 00 0b 39 0f 00 0c 00 00 00 4a 39 0f 00 0a 00 00 00 57 39 0f 00 54 00 00 00 | .8..>....9......J9......W9..T... |
| f6c0 | 62 39 0f 00 0b 00 00 00 b7 39 0f 00 0c 00 00 00 c3 39 0f 00 05 00 00 00 d0 39 0f 00 1a 00 00 00 | b9.......9.......9.......9...... |
| f6e0 | d6 39 0f 00 16 00 00 00 f1 39 0f 00 14 00 00 00 08 3a 0f 00 1c 00 00 00 1d 3a 0f 00 75 00 00 00 | .9.......9.......:.......:..u... |
| f700 | 3a 3a 0f 00 07 01 00 00 b0 3a 0f 00 78 01 00 00 b8 3b 0f 00 45 00 00 00 31 3d 0f 00 39 00 00 00 | ::.......:..x....;..E...1=..9... |
| f720 | 77 3d 0f 00 ec 00 00 00 b1 3d 0f 00 e6 00 00 00 9e 3e 0f 00 4a 00 00 00 85 3f 0f 00 57 00 00 00 | w=.......=.......>..J....?..W... |
| f740 | d0 3f 0f 00 69 00 00 00 28 40 0f 00 d2 00 00 00 92 40 0f 00 c2 00 00 00 65 41 0f 00 b8 00 00 00 | .?..i...(@.......@......eA...... |
| f760 | 28 42 0f 00 98 00 00 00 e1 42 0f 00 8d 00 00 00 7a 43 0f 00 93 00 00 00 08 44 0f 00 b5 00 00 00 | (B.......B......zC.......D...... |
| f780 | 9c 44 0f 00 65 00 00 00 52 45 0f 00 ff 00 00 00 b8 45 0f 00 7f 00 00 00 b8 46 0f 00 c3 00 00 00 | .D..e...RE.......E.......F...... |
| f7a0 | 38 47 0f 00 c3 00 00 00 fc 47 0f 00 bf 00 00 00 c0 48 0f 00 bf 00 00 00 80 49 0f 00 cc 00 00 00 | 8G.......G.......H.......I...... |
| f7c0 | 40 4a 0f 00 cc 00 00 00 0d 4b 0f 00 d0 00 00 00 da 4b 0f 00 d0 00 00 00 ab 4c 0f 00 83 00 00 00 | @J.......K.......K.......L...... |
| f7e0 | 7c 4d 0f 00 5a 00 00 00 00 4e 0f 00 69 00 00 00 5b 4e 0f 00 0d 02 00 00 c5 4e 0f 00 b8 00 00 00 | |M..Z....N..i...[N.......N...... |
| f800 | d3 50 0f 00 22 00 00 00 8c 51 0f 00 a4 00 00 00 af 51 0f 00 b1 01 00 00 54 52 0f 00 ad 00 00 00 | .P.."....Q.......Q......TR...... |
| f820 | 06 54 0f 00 6f 00 00 00 b4 54 0f 00 e9 00 00 00 24 55 0f 00 89 00 00 00 0e 56 0f 00 ae 00 00 00 | .T..o....T......$U.......V...... |
| f840 | 98 56 0f 00 38 01 00 00 47 57 0f 00 46 01 00 00 80 58 0f 00 5f 01 00 00 c7 59 0f 00 f0 00 00 00 | .V..8...GW..F....X.._....Y...... |
| f860 | 27 5b 0f 00 57 00 00 00 18 5c 0f 00 83 00 00 00 70 5c 0f 00 32 00 00 00 f4 5c 0f 00 25 01 00 00 | '[..W....\......p\..2....\..%... |
| f880 | 27 5d 0f 00 6c 00 00 00 4d 5e 0f 00 6a 01 00 00 ba 5e 0f 00 95 00 00 00 25 60 0f 00 5d 00 00 00 | ']..l...M^..j....^......%`..]... |
| f8a0 | bb 60 0f 00 9b 00 00 00 19 61 0f 00 6c 00 00 00 b5 61 0f 00 73 00 00 00 22 62 0f 00 2a 00 00 00 | .`.......a..l....a..s..."b..*... |
| f8c0 | 96 62 0f 00 78 00 00 00 c1 62 0f 00 a3 00 00 00 3a 63 0f 00 94 00 00 00 de 63 0f 00 93 00 00 00 | .b..x....b......:c.......c...... |
| f8e0 | 73 64 0f 00 51 00 00 00 07 65 0f 00 92 00 00 00 59 65 0f 00 c0 00 00 00 ec 65 0f 00 c4 00 00 00 | sd..Q....e......Ye.......e...... |
| f900 | ad 66 0f 00 bb 00 00 00 72 67 0f 00 ba 00 00 00 2e 68 0f 00 bd 00 00 00 e9 68 0f 00 b2 00 00 00 | .f......rg.......h.......h...... |
| f920 | a7 69 0f 00 97 00 00 00 5a 6a 0f 00 a0 00 00 00 f2 6a 0f 00 b5 00 00 00 93 6b 0f 00 b9 00 00 00 | .i......Zj.......j.......k...... |
| f940 | 49 6c 0f 00 55 00 00 00 03 6d 0f 00 6e 00 00 00 59 6d 0f 00 a6 00 00 00 c8 6d 0f 00 a7 00 00 00 | Il..U....m..n...Ym.......m...... |
| f960 | 6f 6e 0f 00 ac 00 00 00 17 6f 0f 00 79 00 00 00 c4 6f 0f 00 74 00 00 00 3e 70 0f 00 73 00 00 00 | on.......o..y....o..t...>p..s... |
| f980 | b3 70 0f 00 68 00 00 00 27 71 0f 00 42 01 00 00 90 71 0f 00 d4 00 00 00 d3 72 0f 00 d1 00 00 00 | .p..h...'q..B....q.......r...... |
| f9a0 | a8 73 0f 00 b3 00 00 00 7a 74 0f 00 38 00 00 00 2e 75 0f 00 87 00 00 00 67 75 0f 00 8f 00 00 00 | .s......zt..8....u......gu...... |
| f9c0 | ef 75 0f 00 79 00 00 00 7f 76 0f 00 6f 00 00 00 f9 76 0f 00 97 00 00 00 69 77 0f 00 8a 00 00 00 | .u..y....v..o....v......iw...... |
| f9e0 | 01 78 0f 00 a3 00 00 00 8c 78 0f 00 60 00 00 00 30 79 0f 00 66 00 00 00 91 79 0f 00 ab 00 00 00 | .x.......x..`...0y..f....y...... |
| fa00 | f8 79 0f 00 45 00 00 00 a4 7a 0f 00 d3 00 00 00 ea 7a 0f 00 d3 00 00 00 be 7b 0f 00 8e 00 00 00 | .y..E....z.......z.......{...... |
| fa20 | 92 7c 0f 00 61 00 00 00 21 7d 0f 00 7f 00 00 00 83 7d 0f 00 69 01 00 00 03 7e 0f 00 9d 01 00 00 | .|..a...!}.......}..i....~...... |
| fa40 | 6d 7f 0f 00 9e 01 00 00 0b 81 0f 00 b6 00 00 00 aa 82 0f 00 cd 00 00 00 61 83 0f 00 bf 00 00 00 | m.......................a....... |
| fa60 | 2f 84 0f 00 b9 00 00 00 ef 84 0f 00 a8 00 00 00 a9 85 0f 00 5f 00 00 00 52 86 0f 00 e5 00 00 00 | /..................._...R....... |
| fa80 | b2 86 0f 00 55 00 00 00 98 87 0f 00 69 00 00 00 ee 87 0f 00 74 00 00 00 58 88 0f 00 57 01 00 00 | ....U.......i.......t...X...W... |
| faa0 | cd 88 0f 00 8a 00 00 00 25 8a 0f 00 9b 00 00 00 b0 8a 0f 00 8d 00 00 00 4c 8b 0f 00 74 00 00 00 | ........%...............L...t... |
| fac0 | da 8b 0f 00 97 00 00 00 4f 8c 0f 00 5c 00 00 00 e7 8c 0f 00 8e 00 00 00 44 8d 0f 00 92 00 00 00 | ........O...\...........D....... |
| fae0 | d3 8d 0f 00 69 00 00 00 66 8e 0f 00 6d 00 00 00 d0 8e 0f 00 db 00 00 00 3e 8f 0f 00 74 01 00 00 | ....i...f...m...........>...t... |
| fb00 | 1a 90 0f 00 55 00 00 00 8f 91 0f 00 87 00 00 00 e5 91 0f 00 3e 00 00 00 6d 92 0f 00 d5 00 00 00 | ....U...............>...m....... |
| fb20 | ac 92 0f 00 91 00 00 00 82 93 0f 00 bf 00 00 00 14 94 0f 00 37 01 00 00 d4 94 0f 00 55 01 00 00 | ....................7.......U... |
| fb40 | 0c 96 0f 00 55 00 00 00 62 97 0f 00 2c 00 00 00 b8 97 0f 00 21 00 00 00 e5 97 0f 00 9d 00 00 00 | ....U...b...,.......!........... |
| fb60 | 07 98 0f 00 1e 00 00 00 a5 98 0f 00 09 00 00 00 c4 98 0f 00 34 00 00 00 ce 98 0f 00 1a 00 00 00 | ....................4........... |
| fb80 | 03 99 0f 00 b7 00 00 00 1e 99 0f 00 40 00 00 00 d6 99 0f 00 31 00 00 00 17 9a 0f 00 80 00 00 00 | ............@.......1........... |
| fba0 | 49 9a 0f 00 43 00 00 00 ca 9a 0f 00 38 00 00 00 0e 9b 0f 00 2c 00 00 00 47 9b 0f 00 9f 00 00 00 | I...C.......8.......,...G....... |
| fbc0 | 74 9b 0f 00 58 01 00 00 14 9c 0f 00 7e 00 00 00 6d 9d 0f 00 a3 00 00 00 ec 9d 0f 00 a4 00 00 00 | t...X.......~...m............... |
| fbe0 | 90 9e 0f 00 55 00 00 00 35 9f 0f 00 3a 00 00 00 8b 9f 0f 00 39 00 00 00 c6 9f 0f 00 70 00 00 00 | ....U...5...:.......9.......p... |
| fc00 | 00 a0 0f 00 70 00 00 00 71 a0 0f 00 4e 00 00 00 e2 a0 0f 00 3b 00 00 00 31 a1 0f 00 6b 01 00 00 | ....p...q...N.......;...1...k... |
| fc20 | 6d a1 0f 00 4a 00 00 00 d9 a2 0f 00 b5 00 00 00 24 a3 0f 00 71 00 00 00 da a3 0f 00 c2 00 00 00 | m...J...........$...q........... |
| fc40 | 4c a4 0f 00 67 00 00 00 0f a5 0f 00 70 00 00 00 77 a5 0f 00 dd 00 00 00 e8 a5 0f 00 dc 00 00 00 | L...g.......p...w............... |
| fc60 | c6 a6 0f 00 4a 00 00 00 a3 a7 0f 00 4b 00 00 00 ee a7 0f 00 4d 00 00 00 3a a8 0f 00 32 00 00 00 | ....J.......K.......M...:...2... |
| fc80 | 88 a8 0f 00 6f 00 00 00 bb a8 0f 00 68 00 00 00 2b a9 0f 00 e3 00 00 00 94 a9 0f 00 01 03 00 00 | ....o.......h...+............... |
| fca0 | 78 aa 0f 00 2c 00 00 00 7a ad 0f 00 bc 01 00 00 a7 ad 0f 00 da 00 00 00 64 af 0f 00 8e 00 00 00 | x...,...z...............d....... |
| fcc0 | 3f b0 0f 00 d0 00 00 00 ce b0 0f 00 81 00 00 00 9f b1 0f 00 b0 01 00 00 21 b2 0f 00 94 00 00 00 | ?.......................!....... |
| fce0 | d2 b3 0f 00 f7 00 00 00 67 b4 0f 00 49 00 00 00 5f b5 0f 00 56 02 00 00 a9 b5 0f 00 85 00 00 00 | ........g...I..._...V........... |
| fd00 | 00 b8 0f 00 08 01 00 00 86 b8 0f 00 1d 02 00 00 8f b9 0f 00 c5 00 00 00 ad bb 0f 00 5d 00 00 00 | ............................]... |
| fd20 | 73 bc 0f 00 5b 00 00 00 d1 bc 0f 00 46 00 00 00 2d bd 0f 00 5b 00 00 00 74 bd 0f 00 b4 00 00 00 | s...[.......F...-...[...t....... |
| fd40 | d0 bd 0f 00 33 00 00 00 85 be 0f 00 60 00 00 00 b9 be 0f 00 fe 00 00 00 1a bf 0f 00 61 00 00 00 | ....3.......`...............a... |
| fd60 | 19 c0 0f 00 9d 00 00 00 7b c0 0f 00 23 01 00 00 19 c1 0f 00 9c 00 00 00 3d c2 0f 00 13 01 00 00 | ........{...#...........=....... |
| fd80 | da c2 0f 00 bb 00 00 00 ee c3 0f 00 3d 00 00 00 aa c4 0f 00 c2 00 00 00 e8 c4 0f 00 db 00 00 00 | ............=................... |
| fda0 | ab c5 0f 00 d2 00 00 00 87 c6 0f 00 77 00 00 00 5a c7 0f 00 08 01 00 00 d2 c7 0f 00 96 00 00 00 | ............w...Z............... |
| fdc0 | db c8 0f 00 2e 01 00 00 72 c9 0f 00 68 00 00 00 a1 ca 0f 00 3c 00 00 00 0a cb 0f 00 45 01 00 00 | ........r...h.......<.......E... |
| fde0 | 47 cb 0f 00 c1 01 00 00 8d cc 0f 00 4e 00 00 00 4f ce 0f 00 62 00 00 00 9e ce 0f 00 ae 00 00 00 | G...........N...O...b........... |
| fe00 | 01 cf 0f 00 dd 00 00 00 b0 cf 0f 00 77 00 00 00 8e d0 0f 00 b7 00 00 00 06 d1 0f 00 a2 00 00 00 | ............w................... |
| fe20 | be d1 0f 00 bb 00 00 00 61 d2 0f 00 5c 00 00 00 1d d3 0f 00 85 00 00 00 7a d3 0f 00 6a 01 00 00 | ........a...\...........z...j... |
| fe40 | 00 d4 0f 00 62 00 00 00 6b d5 0f 00 c3 00 00 00 ce d5 0f 00 11 00 00 00 92 d6 0f 00 ba 00 00 00 | ....b...k....................... |
| fe60 | a4 d6 0f 00 bb 00 00 00 5f d7 0f 00 ba 00 00 00 1b d8 0f 00 bb 00 00 00 d6 d8 0f 00 bc 00 00 00 | ........_....................... |
| fe80 | 92 d9 0f 00 bd 00 00 00 4f da 0f 00 6e 00 00 00 0d db 0f 00 6f 00 00 00 7c db 0f 00 a0 00 00 00 | ........O...n.......o...|....... |
| fea0 | ec db 0f 00 bb 00 00 00 8d dc 0f 00 bb 00 00 00 49 dd 0f 00 be 00 00 00 05 de 0f 00 6f 00 00 00 | ................I...........o... |
| fec0 | c4 de 0f 00 a4 00 00 00 34 df 0f 00 42 00 00 00 d9 df 0f 00 d2 00 00 00 1c e0 0f 00 1d 01 00 00 | ........4...B................... |
| fee0 | ef e0 0f 00 9b 01 00 00 0d e2 0f 00 9b 01 00 00 a9 e3 0f 00 6b 00 00 00 45 e5 0f 00 98 00 00 00 | ....................k...E....... |
| ff00 | b1 e5 0f 00 4a 00 00 00 4a e6 0f 00 0a 00 00 00 95 e6 0f 00 18 00 00 00 a0 e6 0f 00 3e 00 00 00 | ....J...J...................>... |
| ff20 | b9 e6 0f 00 67 01 00 00 f8 e6 0f 00 0d 00 00 00 60 e8 0f 00 16 00 00 00 6e e8 0f 00 23 00 00 00 | ....g...........`.......n...#... |
| ff40 | 85 e8 0f 00 0d 00 00 00 a9 e8 0f 00 58 00 00 00 b7 e8 0f 00 67 00 00 00 10 e9 0f 00 ef 00 00 00 | ............X.......g........... |
| ff60 | 78 e9 0f 00 6e 00 00 00 68 ea 0f 00 4c 00 00 00 d7 ea 0f 00 98 00 00 00 24 eb 0f 00 0b 00 00 00 | x...n...h...L...........$....... |
| ff80 | bd eb 0f 00 0b 00 00 00 c9 eb 0f 00 4c 00 00 00 d5 eb 0f 00 2f 00 00 00 22 ec 0f 00 17 00 00 00 | ............L......./..."....... |
| ffa0 | 52 ec 0f 00 10 00 00 00 6a ec 0f 00 10 00 00 00 7b ec 0f 00 90 00 00 00 8c ec 0f 00 17 00 00 00 | R.......j.......{............... |
| ffc0 | 1d ed 0f 00 37 00 00 00 35 ed 0f 00 36 00 00 00 6d ed 0f 00 1b 00 00 00 a4 ed 0f 00 2f 00 00 00 | ....7...5...6...m.........../... |
| ffe0 | c0 ed 0f 00 97 00 00 00 f0 ed 0f 00 10 00 00 00 88 ee 0f 00 0a 00 00 00 99 ee 0f 00 18 00 00 00 | ................................ |
| 10000 | a4 ee 0f 00 72 01 00 00 bd ee 0f 00 40 00 00 00 30 f0 0f 00 7f 01 00 00 71 f0 0f 00 c0 00 00 00 | ....r.......@...0.......q....... |
| 10020 | f1 f1 0f 00 48 01 00 00 b2 f2 0f 00 54 01 00 00 fb f3 0f 00 9e 01 00 00 50 f5 0f 00 14 00 00 00 | ....H.......T...........P....... |
| 10040 | ef f6 0f 00 08 00 00 00 04 f7 0f 00 77 00 00 00 0d f7 0f 00 18 00 00 00 85 f7 0f 00 31 00 00 00 | ............w...............1... |
| 10060 | 9e f7 0f 00 8f 01 00 00 d0 f7 0f 00 19 02 00 00 60 f9 0f 00 f7 00 00 00 7a fb 0f 00 e9 00 00 00 | ................`.......z....... |
| 10080 | 72 fc 0f 00 89 00 00 00 5c fd 0f 00 4c 00 00 00 e6 fd 0f 00 38 00 00 00 33 fe 0f 00 8f 00 00 00 | r.......\...L.......8...3....... |
| 100a0 | 6c fe 0f 00 37 00 00 00 fc fe 0f 00 1b 00 00 00 34 ff 0f 00 1c 00 00 00 50 ff 0f 00 25 01 00 00 | l...7...........4.......P...%... |
| 100c0 | 6d ff 0f 00 cb 00 00 00 93 00 10 00 db 00 00 00 5f 01 10 00 d7 00 00 00 3b 02 10 00 a5 00 00 00 | m..............._.......;....... |
| 100e0 | 13 03 10 00 93 00 00 00 b9 03 10 00 e3 00 00 00 4d 04 10 00 02 02 00 00 31 05 10 00 c4 00 00 00 | ................M.......1....... |
| 10100 | 34 07 10 00 a6 00 00 00 f9 07 10 00 e6 00 00 00 a0 08 10 00 e5 00 00 00 87 09 10 00 4f 00 00 00 | 4...........................O... |
| 10120 | 6d 0a 10 00 a4 00 00 00 bd 0a 10 00 28 01 00 00 62 0b 10 00 9d 00 00 00 8b 0c 10 00 3b 00 00 00 | m...........(...b...........;... |
| 10140 | 29 0d 10 00 4a 00 00 00 65 0d 10 00 81 00 00 00 b0 0d 10 00 68 00 00 00 32 0e 10 00 71 00 00 00 | )...J...e...........h...2...q... |
| 10160 | 9b 0e 10 00 49 00 00 00 0d 0f 10 00 36 00 00 00 57 0f 10 00 11 00 00 00 8e 0f 10 00 06 00 00 00 | ....I.......6...W............... |
| 10180 | a0 0f 10 00 8f 00 00 00 a7 0f 10 00 0f 00 00 00 37 10 10 00 18 00 00 00 47 10 10 00 0e 00 00 00 | ................7.......G....... |
| 101a0 | 60 10 10 00 0e 00 00 00 6f 10 10 00 0f 00 00 00 7e 10 10 00 0b 00 00 00 8e 10 10 00 6c 01 00 00 | `.......o.......~...........l... |
| 101c0 | 9a 10 10 00 3a 01 00 00 07 12 10 00 0f 00 00 00 42 13 10 00 0f 00 00 00 52 13 10 00 08 00 00 00 | ....:...........B.......R....... |
| 101e0 | 62 13 10 00 07 00 00 00 6b 13 10 00 0c 00 00 00 73 13 10 00 04 00 00 00 80 13 10 00 0f 00 00 00 | b.......k.......s............... |
| 10200 | 85 13 10 00 06 00 00 00 95 13 10 00 ff 00 00 00 9c 13 10 00 23 00 00 00 9c 14 10 00 23 00 00 00 | ....................#.......#... |
| 10220 | c0 14 10 00 0e 00 00 00 e4 14 10 00 07 00 00 00 f3 14 10 00 0a 00 00 00 fb 14 10 00 04 00 00 00 | ................................ |
| 10240 | 06 15 10 00 36 00 00 00 0b 15 10 00 b5 00 00 00 42 15 10 00 04 00 00 00 f8 15 10 00 f5 00 00 00 | ....6...........B............... |
| 10260 | fd 15 10 00 19 00 00 00 f3 16 10 00 42 00 00 00 0d 17 10 00 1b 00 00 00 50 17 10 00 36 00 00 00 | ............B...........P...6... |
| 10280 | 6c 17 10 00 50 00 00 00 a3 17 10 00 34 01 00 00 f4 17 10 00 3e 00 00 00 29 19 10 00 29 00 00 00 | l...P.......4.......>...)...)... |
| 102a0 | 68 19 10 00 0f 00 00 00 92 19 10 00 33 00 00 00 a2 19 10 00 14 02 00 00 d6 19 10 00 15 02 00 00 | h...........3................... |
| 102c0 | eb 1b 10 00 40 00 00 00 01 1e 10 00 3d 00 00 00 42 1e 10 00 07 01 00 00 80 1e 10 00 23 00 00 00 | ....@.......=...B...........#... |
| 102e0 | 88 1f 10 00 11 00 00 00 ac 1f 10 00 3f 00 00 00 be 1f 10 00 20 00 00 00 fe 1f 10 00 6f 00 00 00 | ............?...............o... |
| 10300 | 1f 20 10 00 78 00 00 00 8f 20 10 00 3d 00 00 00 08 21 10 00 68 00 00 00 46 21 10 00 6b 00 00 00 | ....x.......=....!..h...F!..k... |
| 10320 | af 21 10 00 23 00 00 00 1b 22 10 00 07 00 00 00 3f 22 10 00 7d 00 00 00 47 22 10 00 06 00 00 00 | .!..#...."......?"..}...G"...... |
| 10340 | c5 22 10 00 16 00 00 00 cc 22 10 00 36 00 00 00 e3 22 10 00 35 00 00 00 1a 23 10 00 10 00 00 00 | ."......."..6...."..5....#...... |
| 10360 | 50 23 10 00 69 02 00 00 61 23 10 00 1b 00 00 00 cb 25 10 00 52 01 00 00 e7 25 10 00 4a 00 00 00 | P#..i...a#.......%..R....%..J... |
| 10380 | 3a 27 10 00 e8 01 00 00 85 27 10 00 9d 01 00 00 6e 29 10 00 cb 02 00 00 0c 2b 10 00 d7 00 00 00 | :'.......'......n).......+...... |
| 103a0 | d8 2d 10 00 1e 00 00 00 b0 2e 10 00 2f 00 00 00 cf 2e 10 00 21 00 00 00 ff 2e 10 00 0c 00 00 00 | .-........../.......!........... |
| 103c0 | 21 2f 10 00 0e 00 00 00 2e 2f 10 00 24 00 00 00 3d 2f 10 00 0e 00 00 00 62 2f 10 00 59 00 00 00 | !/......./..$...=/......b/..Y... |
| 103e0 | 71 2f 10 00 59 00 00 00 cb 2f 10 00 22 00 00 00 25 30 10 00 05 00 00 00 48 30 10 00 20 00 00 00 | q/..Y..../.."...%0......H0...... |
| 10400 | 4e 30 10 00 14 00 00 00 6f 30 10 00 3c 00 00 00 84 30 10 00 42 00 00 00 c1 30 10 00 1f 00 00 00 | N0......o0..<....0..B....0...... |
| 10420 | 04 31 10 00 2e 00 00 00 24 31 10 00 10 00 00 00 53 31 10 00 10 00 00 00 64 31 10 00 12 00 00 00 | .1......$1......S1......d1...... |
| 10440 | 75 31 10 00 12 00 00 00 88 31 10 00 2e 00 00 00 9b 31 10 00 3c 00 00 00 ca 31 10 00 3b 00 00 00 | u1.......1.......1..<....1..;... |
| 10460 | 07 32 10 00 0b 00 00 00 43 32 10 00 38 00 00 00 4f 32 10 00 2c 00 00 00 88 32 10 00 09 00 00 00 | .2......C2..8...O2..,....2...... |
| 10480 | b5 32 10 00 09 00 00 00 bf 32 10 00 1f 00 00 00 c9 32 10 00 0e 00 00 00 e9 32 10 00 63 00 00 00 | .2.......2.......2.......2..c... |
| 104a0 | f8 32 10 00 9c 00 00 00 5c 33 10 00 ab 00 00 00 f9 33 10 00 eb 00 00 00 a5 34 10 00 30 00 00 00 | .2......\3.......3.......4..0... |
| 104c0 | 91 35 10 00 2c 00 00 00 c2 35 10 00 07 00 00 00 ef 35 10 00 63 00 00 00 f7 35 10 00 0c 01 00 00 | .5..,....5.......5..c....5...... |
| 104e0 | 5b 36 10 00 0c 00 00 00 68 37 10 00 0c 00 00 00 75 37 10 00 15 00 00 00 82 37 10 00 04 00 00 00 | [6......h7......u7.......7...... |
| 10500 | 98 37 10 00 19 00 00 00 9d 37 10 00 08 00 00 00 b7 37 10 00 8c 00 00 00 c0 37 10 00 03 00 00 00 | .7.......7.......7.......7...... |
| 10520 | 4d 38 10 00 0a 00 00 00 51 38 10 00 35 00 00 00 5c 38 10 00 13 00 00 00 92 38 10 00 19 00 00 00 | M8......Q8..5...\8.......8...... |
| 10540 | a6 38 10 00 06 00 00 00 c0 38 10 00 3b 02 00 00 c7 38 10 00 5f 01 00 00 03 3b 10 00 85 00 00 00 | .8.......8..;....8.._....;...... |
| 10560 | 63 3c 10 00 0e 00 00 00 e9 3c 10 00 0f 00 00 00 f8 3c 10 00 09 00 00 00 08 3d 10 00 10 00 00 00 | c<.......<.......<.......=...... |
| 10580 | 12 3d 10 00 35 00 00 00 23 3d 10 00 04 00 00 00 59 3d 10 00 e8 01 00 00 5e 3d 10 00 5f 00 00 00 | .=..5...#=......Y=......^=.._... |
| 105a0 | 47 3f 10 00 61 00 00 00 a7 3f 10 00 03 00 00 00 09 40 10 00 0b 00 00 00 0d 40 10 00 4c 00 00 00 | G?..a....?.......@.......@..L... |
| 105c0 | 19 40 10 00 2f 00 00 00 66 40 10 00 1d 00 00 00 96 40 10 00 10 00 00 00 b4 40 10 00 3d 00 00 00 | .@../...f@.......@.......@..=... |
| 105e0 | c5 40 10 00 4d 00 00 00 03 41 10 00 38 00 00 00 51 41 10 00 10 00 00 00 8a 41 10 00 0f 00 00 00 | .@..M....A..8...QA.......A...... |
| 10600 | 9b 41 10 00 3b 00 00 00 ab 41 10 00 12 00 00 00 e7 41 10 00 1d 00 00 00 fa 41 10 00 44 00 00 00 | .A..;....A.......A.......A..D... |
| 10620 | 18 42 10 00 51 00 00 00 5d 42 10 00 41 00 00 00 af 42 10 00 6a 00 00 00 f1 42 10 00 66 00 00 00 | .B..Q...]B..A....B..j....B..f... |
| 10640 | 5c 43 10 00 1c 00 00 00 c3 43 10 00 8d 00 00 00 e0 43 10 00 d1 00 00 00 6e 44 10 00 1d 00 00 00 | \C.......C.......C......nD...... |
| 10660 | 40 45 10 00 e3 00 00 00 5e 45 10 00 e4 00 00 00 42 46 10 00 24 00 00 00 27 47 10 00 38 00 00 00 | @E......^E......BF..$...'G..8... |
| 10680 | 4c 47 10 00 52 00 00 00 85 47 10 00 1f 00 00 00 d8 47 10 00 8d 00 00 00 f8 47 10 00 5a 00 00 00 | LG..R....G.......G.......G..Z... |
| 106a0 | 86 48 10 00 1a 00 00 00 e1 48 10 00 21 00 00 00 fc 48 10 00 1d 00 00 00 1e 49 10 00 22 00 00 00 | .H.......H..!....H.......I.."... |
| 106c0 | 3c 49 10 00 70 00 00 00 5f 49 10 00 67 00 00 00 d0 49 10 00 72 00 00 00 38 4a 10 00 69 00 00 00 | <I..p..._I..g....I..r...8J..i... |
| 106e0 | ab 4a 10 00 29 00 00 00 15 4b 10 00 77 00 00 00 3f 4b 10 00 73 00 00 00 b7 4b 10 00 90 00 00 00 | .J..)....K..w...?K..s....K...... |
| 10700 | 2b 4c 10 00 91 00 00 00 bc 4c 10 00 53 00 00 00 4e 4d 10 00 b6 00 00 00 a2 4d 10 00 b8 00 00 00 | +L.......L..S...NM.......M...... |
| 10720 | 59 4e 10 00 bd 00 00 00 12 4f 10 00 5c 00 00 00 d0 4f 10 00 1e 00 00 00 2d 50 10 00 15 00 00 00 | YN.......O..\....O......-P...... |
| 10740 | 4c 50 10 00 25 00 00 00 62 50 10 00 91 00 00 00 88 50 10 00 92 00 00 00 1a 51 10 00 97 00 00 00 | LP..%...bP.......P.......Q...... |
| 10760 | ad 51 10 00 54 00 00 00 45 52 10 00 b7 00 00 00 9a 52 10 00 b9 00 00 00 52 53 10 00 be 00 00 00 | .Q..T...ER.......R......RS...... |
| 10780 | 0c 54 10 00 60 00 00 00 cb 54 10 00 24 00 00 00 2c 55 10 00 cc 00 00 00 51 55 10 00 25 00 00 00 | .T..`....T..$...,U......QU..%... |
| 107a0 | 1e 56 10 00 95 00 00 00 44 56 10 00 46 00 00 00 da 56 10 00 2f 00 00 00 21 57 10 00 9a 00 00 00 | .V......DV..F....V../...!W...... |
| 107c0 | 51 57 10 00 61 00 00 00 ec 57 10 00 48 00 00 00 4e 58 10 00 5b 00 00 00 97 58 10 00 1f 00 00 00 | QW..a....W..H...NX..[....X...... |
| 107e0 | f3 58 10 00 30 00 00 00 13 59 10 00 3b 00 00 00 44 59 10 00 25 00 00 00 80 59 10 00 28 00 00 00 | .X..0....Y..;...DY..%....Y..(... |
| 10800 | a6 59 10 00 2e 00 00 00 cf 59 10 00 9e 00 00 00 fe 59 10 00 3e 00 00 00 9d 5a 10 00 11 00 00 00 | .Y.......Y.......Y..>....Z...... |
| 10820 | dc 5a 10 00 19 00 00 00 ee 5a 10 00 7a 00 00 00 08 5b 10 00 17 00 00 00 83 5b 10 00 13 00 00 00 | .Z.......Z..z....[.......[...... |
| 10840 | 9b 5b 10 00 7e 00 00 00 af 5b 10 00 81 00 00 00 2e 5c 10 00 7d 00 00 00 b0 5c 10 00 83 00 00 00 | .[..~....[.......\..}....\...... |
| 10860 | 2e 5d 10 00 11 00 00 00 b2 5d 10 00 10 00 00 00 c4 5d 10 00 33 00 00 00 d5 5d 10 00 33 00 00 00 | .].......].......]..3....]..3... |
| 10880 | 09 5e 10 00 33 00 00 00 3d 5e 10 00 33 00 00 00 71 5e 10 00 35 00 00 00 a5 5e 10 00 6a 00 00 00 | .^..3...=^..3...q^..5....^..j... |
| 108a0 | db 5e 10 00 22 00 00 00 46 5f 10 00 1e 01 00 00 69 5f 10 00 33 00 00 00 88 60 10 00 dd 00 00 00 | .^.."...F_......i_..3....`...... |
| 108c0 | bc 60 10 00 17 01 00 00 9a 61 10 00 49 00 00 00 b2 62 10 00 06 00 00 00 fc 62 10 00 11 00 00 00 | .`.......a..I....b.......b...... |
| 108e0 | 03 63 10 00 38 00 00 00 15 63 10 00 28 00 00 00 4e 63 10 00 24 00 00 00 77 63 10 00 17 00 00 00 | .c..8....c..(...Nc..$...wc...... |
| 10900 | 9c 63 10 00 9d 00 00 00 b4 63 10 00 37 00 00 00 52 64 10 00 8a 00 00 00 8a 64 10 00 89 00 00 00 | .c.......c..7...Rd.......d...... |
| 10920 | 15 65 10 00 5c 00 00 00 9f 65 10 00 cd 01 00 00 fc 65 10 00 c2 00 00 00 ca 67 10 00 65 00 00 00 | .e..\....e.......e.......g..e... |
| 10940 | 8d 68 10 00 3f 00 00 00 f3 68 10 00 43 00 00 00 33 69 10 00 0a 00 00 00 77 69 10 00 b3 00 00 00 | .h..?....h..C...3i......wi...... |
| 10960 | 82 69 10 00 8c 00 00 00 36 6a 10 00 e8 00 00 00 c3 6a 10 00 21 00 00 00 ac 6b 10 00 05 00 00 00 | .i......6j.......j..!....k...... |
| 10980 | ce 6b 10 00 89 01 00 00 d4 6b 10 00 8d 01 00 00 5e 6d 10 00 1b 00 00 00 ec 6e 10 00 ae 01 00 00 | .k.......k......^m.......n...... |
| 109a0 | 08 6f 10 00 27 00 00 00 b7 70 10 00 09 00 00 00 df 70 10 00 fc 00 00 00 e9 70 10 00 79 01 00 00 | .o..'....p.......p.......p..y... |
| 109c0 | e6 71 10 00 0f 00 00 00 60 73 10 00 6c 00 00 00 70 73 10 00 70 00 00 00 dd 73 10 00 35 00 00 00 | .q......`s..l...ps..p....s..5... |
| 109e0 | 4e 74 10 00 d4 00 00 00 84 74 10 00 d4 00 00 00 59 75 10 00 f4 00 00 00 2e 76 10 00 24 00 00 00 | Nt.......t......Yu.......v..$... |
| 10a00 | 23 77 10 00 6f 00 00 00 48 77 10 00 10 00 00 00 b8 77 10 00 c6 00 00 00 c9 77 10 00 30 00 00 00 | #w..o...Hw.......w.......w..0... |
| 10a20 | 90 78 10 00 30 00 00 00 c1 78 10 00 a3 00 00 00 f2 78 10 00 a4 00 00 00 96 79 10 00 1b 00 00 00 | .x..0....x.......x.......y...... |
| 10a40 | 3b 7a 10 00 25 00 00 00 57 7a 10 00 38 00 00 00 7d 7a 10 00 22 00 00 00 b6 7a 10 00 65 00 00 00 | ;z..%...Wz..8...}z.."....z..e... |
| 10a60 | d9 7a 10 00 80 00 00 00 3f 7b 10 00 74 00 00 00 c0 7b 10 00 6a 00 00 00 35 7c 10 00 a9 00 00 00 | .z......?{..t....{..j...5|...... |
| 10a80 | a0 7c 10 00 01 00 00 00 4a 7d 10 00 03 00 00 00 4c 7d 10 00 1f 00 00 00 50 7d 10 00 11 00 00 00 | .|......J}......L}......P}...... |
| 10aa0 | 70 7d 10 00 10 00 00 00 82 7d 10 00 37 01 00 00 93 7d 10 00 0b 00 00 00 cb 7e 10 00 0e 00 00 00 | p}.......}..7....}.......~...... |
| 10ac0 | d7 7e 10 00 17 00 00 00 e6 7e 10 00 22 00 00 00 fe 7e 10 00 05 00 00 00 21 7f 10 00 05 00 00 00 | .~.......~.."....~......!....... |
| 10ae0 | 27 7f 10 00 1b 00 00 00 2d 7f 10 00 40 00 00 00 49 7f 10 00 1b 00 00 00 8a 7f 10 00 0c 00 00 00 | '.......-...@...I............... |
| 10b00 | a6 7f 10 00 eb 00 00 00 b3 7f 10 00 03 00 00 00 9f 80 10 00 41 02 00 00 a3 80 10 00 ad 00 00 00 | ....................A........... |
| 10b20 | e5 82 10 00 1d 01 00 00 93 83 10 00 0d 00 00 00 b1 84 10 00 91 00 00 00 bf 84 10 00 0b 00 00 00 | ................................ |
| 10b40 | 51 85 10 00 34 00 00 00 5d 85 10 00 25 00 00 00 92 85 10 00 16 00 00 00 b8 85 10 00 40 00 00 00 | Q...4...]...%...............@... |
| 10b60 | cf 85 10 00 23 00 00 00 10 86 10 00 1f 00 00 00 34 86 10 00 07 00 00 00 54 86 10 00 0f 00 00 00 | ....#...........4.......T....... |
| 10b80 | 5c 86 10 00 4b 00 00 00 6c 86 10 00 ab 01 00 00 b8 86 10 00 a3 00 00 00 64 88 10 00 13 00 00 00 | \...K...l...............d....... |
| 10ba0 | 08 89 10 00 0f 00 00 00 1c 89 10 00 1c 00 00 00 2c 89 10 00 18 00 00 00 49 89 10 00 23 00 00 00 | ................,.......I...#... |
| 10bc0 | 62 89 10 00 0f 00 00 00 86 89 10 00 10 00 00 00 96 89 10 00 0e 00 00 00 a7 89 10 00 25 00 00 00 | b...........................%... |
| 10be0 | b6 89 10 00 1a 00 00 00 dc 89 10 00 1d 00 00 00 f7 89 10 00 18 00 00 00 15 8a 10 00 45 00 00 00 | ............................E... |
| 10c00 | 2e 8a 10 00 16 00 00 00 74 8a 10 00 43 00 00 00 8b 8a 10 00 25 00 00 00 cf 8a 10 00 38 00 00 00 | ........t...C.......%.......8... |
| 10c20 | f5 8a 10 00 36 00 00 00 2e 8b 10 00 20 00 00 00 65 8b 10 00 13 00 00 00 86 8b 10 00 1e 00 00 00 | ....6...........e............... |
| 10c40 | 9a 8b 10 00 15 00 00 00 b9 8b 10 00 10 00 00 00 cf 8b 10 00 ec 00 00 00 e0 8b 10 00 eb 00 00 00 | ................................ |
| 10c60 | cd 8c 10 00 ba 00 00 00 b9 8d 10 00 ba 00 00 00 74 8e 10 00 25 00 00 00 2f 8f 10 00 89 00 00 00 | ................t...%.../....... |
| 10c80 | 55 8f 10 00 13 00 00 00 df 8f 10 00 1a 00 00 00 f3 8f 10 00 3a 00 00 00 0e 90 10 00 81 01 00 00 | U...................:........... |
| 10ca0 | 49 90 10 00 47 00 00 00 cb 91 10 00 74 00 00 00 13 92 10 00 3a 00 00 00 88 92 10 00 9d 00 00 00 | I...G.......t.......:........... |
| 10cc0 | c3 92 10 00 7b 01 00 00 61 93 10 00 61 00 00 00 dd 94 10 00 6c 00 00 00 3f 95 10 00 06 00 00 00 | ....{...a...a.......l...?....... |
| 10ce0 | ac 95 10 00 47 00 00 00 b3 95 10 00 44 00 00 00 fb 95 10 00 50 00 00 00 40 96 10 00 4c 00 00 00 | ....G.......D.......P...@...L... |
| 10d00 | 91 96 10 00 37 00 00 00 de 96 10 00 07 01 00 00 16 97 10 00 57 00 00 00 1e 98 10 00 31 00 00 00 | ....7...............W.......1... |
| 10d20 | 76 98 10 00 5b 00 00 00 a8 98 10 00 1f 00 00 00 04 99 10 00 62 00 00 00 24 99 10 00 2b 00 00 00 | v...[...............b...$...+... |
| 10d40 | 87 99 10 00 04 00 00 00 b3 99 10 00 16 00 00 00 b8 99 10 00 37 00 00 00 cf 99 10 00 38 01 00 00 | ....................7.......8... |
| 10d60 | 07 9a 10 00 0d 00 00 00 40 9b 10 00 0d 00 00 00 4e 9b 10 00 12 00 00 00 5c 9b 10 00 0a 00 00 00 | ........@.......N.......\....... |
| 10d80 | 6f 9b 10 00 4e 00 00 00 7a 9b 10 00 08 01 00 00 c9 9b 10 00 24 01 00 00 d2 9c 10 00 15 00 00 00 | o...N...z...........$........... |
| 10da0 | f7 9d 10 00 9c 01 00 00 0d 9e 10 00 5c 00 00 00 aa 9f 10 00 a4 00 00 00 07 a0 10 00 16 00 00 00 | ............\................... |
| 10dc0 | ac a0 10 00 8a 02 00 00 c3 a0 10 00 1d 00 00 00 4e a3 10 00 0c 00 00 00 6c a3 10 00 1f 00 00 00 | ................N.......l....... |
| 10de0 | 79 a3 10 00 43 00 00 00 99 a3 10 00 0d 00 00 00 dd a3 10 00 c1 00 00 00 eb a3 10 00 77 00 00 00 | y...C.......................w... |
| 10e00 | ad a4 10 00 69 00 00 00 25 a5 10 00 62 00 00 00 8f a5 10 00 76 00 00 00 f2 a5 10 00 0e 01 00 00 | ....i...%...b.......v........... |
| 10e20 | 69 a6 10 00 cb 00 00 00 78 a7 10 00 19 01 00 00 44 a8 10 00 43 00 00 00 5e a9 10 00 03 01 00 00 | i.......x.......D...C...^....... |
| 10e40 | a2 a9 10 00 ab 00 00 00 a6 aa 10 00 7b 00 00 00 52 ab 10 00 9a 00 00 00 ce ab 10 00 a6 00 00 00 | ............{...R............... |
| 10e60 | 69 ac 10 00 6e 01 00 00 10 ad 10 00 17 01 00 00 7f ae 10 00 6f 00 00 00 97 af 10 00 7b 00 00 00 | i...n...............o.......{... |
| 10e80 | 07 b0 10 00 7d 00 00 00 83 b0 10 00 12 01 00 00 01 b1 10 00 e6 00 00 00 14 b2 10 00 b6 00 00 00 | ....}........................... |
| 10ea0 | fb b2 10 00 3c 01 00 00 b2 b3 10 00 b1 00 00 00 ef b4 10 00 fb 00 00 00 a1 b5 10 00 20 00 00 00 | ....<........................... |
| 10ec0 | 9d b6 10 00 a0 01 00 00 be b6 10 00 53 00 00 00 5f b8 10 00 39 00 00 00 b3 b8 10 00 28 00 00 00 | ............S..._...9.......(... |
| 10ee0 | ed b8 10 00 4a 00 00 00 16 b9 10 00 3b 00 00 00 61 b9 10 00 34 00 00 00 9d b9 10 00 52 00 00 00 | ....J.......;...a...4.......R... |
| 10f00 | d2 b9 10 00 53 00 00 00 25 ba 10 00 52 00 00 00 79 ba 10 00 80 01 00 00 cc ba 10 00 36 00 00 00 | ....S...%...R...y...........6... |
| 10f20 | 4d bc 10 00 23 00 00 00 84 bc 10 00 0b 00 00 00 a8 bc 10 00 ad 00 00 00 b4 bc 10 00 91 00 00 00 | M...#........................... |
| 10f40 | 62 bd 10 00 1b 02 00 00 f4 bd 10 00 f1 01 00 00 10 c0 10 00 e8 01 00 00 02 c2 10 00 0a 00 00 00 | b............................... |
| 10f60 | eb c3 10 00 1f 00 00 00 f6 c3 10 00 71 00 00 00 16 c4 10 00 04 01 00 00 88 c4 10 00 07 00 00 00 | ............q................... |
| 10f80 | 8d c5 10 00 df 00 00 00 95 c5 10 00 4a 01 00 00 75 c6 10 00 45 01 00 00 c0 c7 10 00 22 00 00 00 | ............J...u...E......."... |
| 10fa0 | 06 c9 10 00 79 01 00 00 29 c9 10 00 0c 00 00 00 a3 ca 10 00 a6 00 00 00 b0 ca 10 00 e9 00 00 00 | ....y...)....................... |
| 10fc0 | 57 cb 10 00 83 00 00 00 41 cc 10 00 19 00 00 00 c5 cc 10 00 0f 00 00 00 df cc 10 00 09 00 00 00 | W.......A....................... |
| 10fe0 | ef cc 10 00 12 00 00 00 f9 cc 10 00 0e 00 00 00 0c cd 10 00 12 00 00 00 1b cd 10 00 21 00 00 00 | ............................!... |
| 11000 | 2e cd 10 00 0e 00 00 00 50 cd 10 00 17 00 00 00 5f cd 10 00 14 00 00 00 77 cd 10 00 19 00 00 00 | ........P......._.......w....... |
| 11020 | 8c cd 10 00 14 00 00 00 a6 cd 10 00 06 00 00 00 bb cd 10 00 13 00 00 00 c2 cd 10 00 12 00 00 00 | ................................ |
| 11040 | d6 cd 10 00 0d 00 00 00 e9 cd 10 00 6a 00 00 00 f7 cd 10 00 17 00 00 00 62 ce 10 00 2e 00 00 00 | ............j...........b....... |
| 11060 | 7a ce 10 00 2d 00 00 00 a9 ce 10 00 08 00 00 00 d7 ce 10 00 16 00 00 00 e0 ce 10 00 ea 00 00 00 | z...-........................... |
| 11080 | f7 ce 10 00 59 00 00 00 e2 cf 10 00 19 00 00 00 3c d0 10 00 7e 00 00 00 56 d0 10 00 07 00 00 00 | ....Y...........<...~...V....... |
| 110a0 | d5 d0 10 00 2a 00 00 00 dd d0 10 00 4f 00 00 00 08 d1 10 00 17 00 00 00 58 d1 10 00 3b 00 00 00 | ....*.......O...........X...;... |
| 110c0 | 70 d1 10 00 60 00 00 00 ac d1 10 00 87 01 00 00 0d d2 10 00 6e 00 00 00 95 d3 10 00 24 00 00 00 | p...`...............n.......$... |
| 110e0 | 04 d4 10 00 54 00 00 00 29 d4 10 00 a4 01 00 00 7e d4 10 00 8f 01 00 00 23 d6 10 00 24 00 00 00 | ....T...).......~.......#...$... |
| 11100 | b3 d7 10 00 1f 00 00 00 d8 d7 10 00 07 00 00 00 f8 d7 10 00 1b 00 00 00 00 d8 10 00 08 00 00 00 | ................................ |
| 11120 | 1c d8 10 00 5c 00 00 00 25 d8 10 00 3c 00 00 00 82 d8 10 00 3f 00 00 00 bf d8 10 00 08 00 00 00 | ....\...%...<.......?........... |
| 11140 | ff d8 10 00 1b 00 00 00 08 d9 10 00 bc 00 00 00 24 d9 10 00 57 00 00 00 e1 d9 10 00 36 00 00 00 | ................$...W.......6... |
| 11160 | 39 da 10 00 14 00 00 00 70 da 10 00 3f 00 00 00 85 da 10 00 3a 00 00 00 c5 da 10 00 75 00 00 00 | 9.......p...?.......:.......u... |
| 11180 | 00 db 10 00 69 00 00 00 76 db 10 00 32 01 00 00 e0 db 10 00 36 01 00 00 13 dd 10 00 0c 00 00 00 | ....i...v...2.......6........... |
| 111a0 | 4a de 10 00 26 00 00 00 57 de 10 00 18 00 00 00 7e de 10 00 2e 00 00 00 97 de 10 00 41 01 00 00 | J...&...W.......~...........A... |
| 111c0 | c6 de 10 00 03 00 00 00 08 e0 10 00 04 00 00 00 0c e0 10 00 14 00 00 00 11 e0 10 00 0c 00 00 00 | ................................ |
| 111e0 | 26 e0 10 00 05 00 00 00 33 e0 10 00 0c 00 00 00 39 e0 10 00 0d 00 00 00 46 e0 10 00 0b 00 00 00 | &.......3.......9.......F....... |
| 11200 | 54 e0 10 00 1c 00 00 00 60 e0 10 00 14 00 00 00 7d e0 10 00 ae 00 00 00 92 e0 10 00 25 00 00 00 | T.......`.......}...........%... |
| 11220 | 41 e1 10 00 46 00 00 00 67 e1 10 00 31 01 00 00 ae e1 10 00 4f 00 00 00 e0 e2 10 00 ca 00 00 00 | A...F...g...1.......O........... |
| 11240 | 30 e3 10 00 43 00 00 00 fb e3 10 00 46 00 00 00 3f e4 10 00 0b 00 00 00 86 e4 10 00 0b 00 00 00 | 0...C.......F...?............... |
| 11260 | 92 e4 10 00 19 00 00 00 9e e4 10 00 0f 00 00 00 b8 e4 10 00 ba 01 00 00 c8 e4 10 00 6a 00 00 00 | ............................j... |
| 11280 | 83 e6 10 00 13 00 00 00 ee e6 10 00 e4 00 00 00 02 e7 10 00 46 00 00 00 e7 e7 10 00 88 01 00 00 | ....................F........... |
| 112a0 | 2e e8 10 00 89 01 00 00 b7 e9 10 00 38 00 00 00 41 eb 10 00 0b 00 00 00 7a eb 10 00 ce 00 00 00 | ............8...A.......z....... |
| 112c0 | 86 eb 10 00 6c 00 00 00 55 ec 10 00 10 01 00 00 c2 ec 10 00 6e 00 00 00 d3 ed 10 00 26 00 00 00 | ....l...U...........n.......&... |
| 112e0 | 42 ee 10 00 40 00 00 00 69 ee 10 00 a0 00 00 00 aa ee 10 00 b9 00 00 00 4b ef 10 00 58 00 00 00 | B...@...i...............K...X... |
| 11300 | 05 f0 10 00 64 00 00 00 5e f0 10 00 39 00 00 00 c3 f0 10 00 45 00 00 00 fd f0 10 00 4a 00 00 00 | ....d...^...9.......E.......J... |
| 11320 | 43 f1 10 00 4b 00 00 00 8e f1 10 00 56 00 00 00 da f1 10 00 57 00 00 00 31 f2 10 00 96 00 00 00 | C...K.......V.......W...1....... |
| 11340 | 89 f2 10 00 37 00 00 00 20 f3 10 00 8f 00 00 00 58 f3 10 00 06 00 00 00 e8 f3 10 00 0f 00 00 00 | ....7...........X............... |
| 11360 | ef f3 10 00 1b 00 00 00 ff f3 10 00 33 00 00 00 1b f4 10 00 56 00 00 00 4f f4 10 00 0b 00 00 00 | ............3.......V...O....... |
| 11380 | a6 f4 10 00 12 00 00 00 b2 f4 10 00 10 00 00 00 c5 f4 10 00 38 00 00 00 d6 f4 10 00 48 01 00 00 | ....................8.......H... |
| 113a0 | 0f f5 10 00 15 00 00 00 58 f6 10 00 19 00 00 00 6e f6 10 00 33 00 00 00 88 f6 10 00 1f 00 00 00 | ........X.......n...3........... |
| 113c0 | bc f6 10 00 2e 00 00 00 dc f6 10 00 93 01 00 00 0b f7 10 00 0f 00 00 00 9f f8 10 00 0a 00 00 00 | ................................ |
| 113e0 | af f8 10 00 0a 00 00 00 ba f8 10 00 63 00 00 00 c5 f8 10 00 2f 00 00 00 29 f9 10 00 32 00 00 00 | ............c......./...)...2... |
| 11400 | 59 f9 10 00 4c 00 00 00 8c f9 10 00 23 00 00 00 d9 f9 10 00 64 00 00 00 fd f9 10 00 65 00 00 00 | Y...L.......#.......d.......e... |
| 11420 | 62 fa 10 00 6e 00 00 00 c8 fa 10 00 29 00 00 00 37 fb 10 00 dd 00 00 00 61 fb 10 00 2d 00 00 00 | b...n.......)...7.......a...-... |
| 11440 | 3f fc 10 00 11 00 00 00 6d fc 10 00 11 00 00 00 7f fc 10 00 12 00 00 00 91 fc 10 00 0c 00 00 00 | ?.......m....................... |
| 11460 | a4 fc 10 00 30 00 00 00 b1 fc 10 00 3f 00 00 00 e2 fc 10 00 40 00 00 00 22 fd 10 00 04 01 00 00 | ....0.......?.......@..."....... |
| 11480 | 63 fd 10 00 a9 00 00 00 68 fe 10 00 18 00 00 00 12 ff 10 00 08 00 00 00 2b ff 10 00 46 00 00 00 | c.......h...............+...F... |
| 114a0 | 34 ff 10 00 4d 00 00 00 7b ff 10 00 1f 00 00 00 c9 ff 10 00 4f 00 00 00 e9 ff 10 00 3d 00 00 00 | 4...M...{...........O.......=... |
| 114c0 | 39 00 11 00 2e 00 00 00 77 00 11 00 35 00 00 00 a6 00 11 00 08 00 00 00 dc 00 11 00 0e 00 00 00 | 9.......w...5................... |
| 114e0 | e5 00 11 00 84 01 00 00 f4 00 11 00 8c 00 00 00 79 02 11 00 fb 00 00 00 06 03 11 00 11 00 00 00 | ................y............... |
| 11500 | 02 04 11 00 0e 01 00 00 14 04 11 00 3a 00 00 00 23 05 11 00 09 00 00 00 5e 05 11 00 38 00 00 00 | ............:...#.......^...8... |
| 11520 | 68 05 11 00 bd 00 00 00 a1 05 11 00 30 00 00 00 5f 06 11 00 31 00 00 00 90 06 11 00 24 00 00 00 | h...........0..._...1.......$... |
| 11540 | c2 06 11 00 28 00 00 00 e7 06 11 00 23 00 00 00 10 07 11 00 20 00 00 00 34 07 11 00 21 00 00 00 | ....(.......#...........4...!... |
| 11560 | 55 07 11 00 3a 00 00 00 77 07 11 00 1f 00 00 00 b2 07 11 00 32 00 00 00 d2 07 11 00 26 00 00 00 | U...:...w...........2.......&... |
| 11580 | 05 08 11 00 13 00 00 00 2c 08 11 00 41 00 00 00 40 08 11 00 a0 00 00 00 82 08 11 00 3e 00 00 00 | ........,...A...@...........>... |
| 115a0 | 23 09 11 00 1f 00 00 00 62 09 11 00 ce 00 00 00 82 09 11 00 4c 01 00 00 51 0a 11 00 36 01 00 00 | #.......b...........L...Q...6... |
| 115c0 | 9e 0b 11 00 21 00 00 00 d5 0c 11 00 1e 00 00 00 f7 0c 11 00 0e 00 00 00 16 0d 11 00 03 00 00 00 | ....!........................... |
| 115e0 | 25 0d 11 00 39 00 00 00 29 0d 11 00 2f 00 00 00 63 0d 11 00 b8 00 00 00 93 0d 11 00 24 00 00 00 | %...9...).../...c...........$... |
| 11600 | 4c 0e 11 00 49 00 00 00 71 0e 11 00 03 00 00 00 bb 0e 11 00 24 00 00 00 bf 0e 11 00 03 00 00 00 | L...I...q...........$........... |
| 11620 | e4 0e 11 00 06 00 00 00 e8 0e 11 00 0c 00 00 00 ef 0e 11 00 18 00 00 00 fc 0e 11 00 17 00 00 00 | ................................ |
| 11640 | 15 0f 11 00 15 00 00 00 2d 0f 11 00 22 00 00 00 43 0f 11 00 4c 00 00 00 66 0f 11 00 45 00 00 00 | ........-..."...C...L...f...E... |
| 11660 | b3 0f 11 00 98 00 00 00 f9 0f 11 00 15 00 00 00 92 10 11 00 05 01 00 00 a8 10 11 00 73 00 00 00 | ............................s... |
| 11680 | ae 11 11 00 8b 00 00 00 22 12 11 00 04 00 00 00 ae 12 11 00 b5 00 00 00 b3 12 11 00 53 01 00 00 | ........"...................S... |
| 116a0 | 69 13 11 00 20 00 00 00 bd 14 11 00 03 00 00 00 de 14 11 00 21 00 00 00 e2 14 11 00 21 00 00 00 | i...................!.......!... |
| 116c0 | 04 15 11 00 04 00 00 00 26 15 11 00 15 00 00 00 2b 15 11 00 e1 00 00 00 41 15 11 00 08 00 00 00 | ........&.......+.......A....... |
| 116e0 | 23 16 11 00 0d 00 00 00 2c 16 11 00 c3 00 00 00 3a 16 11 00 20 00 00 00 fe 16 11 00 21 00 00 00 | #.......,.......:...........!... |
| 11700 | 1f 17 11 00 0c 00 00 00 41 17 11 00 0a 00 00 00 4e 17 11 00 47 00 00 00 59 17 11 00 44 00 00 00 | ........A.......N...G...Y...D... |
| 11720 | a1 17 11 00 45 00 00 00 e6 17 11 00 72 00 00 00 2c 18 11 00 dc 00 00 00 9f 18 11 00 0e 00 00 00 | ....E.......r...,............... |
| 11740 | 7c 19 11 00 4f 00 00 00 8b 19 11 00 6a 00 00 00 db 19 11 00 50 00 00 00 46 1a 11 00 0e 00 00 00 | |...O.......j.......P...F....... |
| 11760 | 97 1a 11 00 0b 00 00 00 a6 1a 11 00 1f 00 00 00 b2 1a 11 00 41 00 00 00 d2 1a 11 00 13 04 00 00 | ....................A........... |
| 11780 | 14 1b 11 00 87 00 00 00 28 1f 11 00 25 00 00 00 b0 1f 11 00 0c 00 00 00 d6 1f 11 00 16 00 00 00 | ........(...%................... |
| 117a0 | e3 1f 11 00 2f 01 00 00 fa 1f 11 00 96 00 00 00 2a 21 11 00 1e 00 00 00 c1 21 11 00 1c 00 00 00 | ..../...........*!.......!...... |
| 117c0 | e0 21 11 00 ad 01 00 00 fd 21 11 00 45 00 00 00 ab 23 11 00 16 00 00 00 f1 23 11 00 35 00 00 00 | .!.......!..E....#.......#..5... |
| 117e0 | 08 24 11 00 3b 00 00 00 3e 24 11 00 4a 00 00 00 7a 24 11 00 54 00 00 00 c5 24 11 00 73 00 00 00 | .$..;...>$..J...z$..T....$..s... |
| 11800 | 1a 25 11 00 4c 00 00 00 8e 25 11 00 0d 00 00 00 db 25 11 00 23 00 00 00 e9 25 11 00 23 00 00 00 | .%..L....%.......%..#....%..#... |
| 11820 | 0d 26 11 00 21 00 00 00 31 26 11 00 15 00 00 00 53 26 11 00 0b 00 00 00 69 26 11 00 10 00 00 00 | .&..!...1&......S&......i&...... |
| 11840 | 75 26 11 00 0f 00 00 00 86 26 11 00 0a 00 00 00 96 26 11 00 1e 00 00 00 a1 26 11 00 0b 00 00 00 | u&.......&.......&.......&...... |
| 11860 | c0 26 11 00 1f 00 00 00 cc 26 11 00 15 00 00 00 ec 26 11 00 48 00 00 00 02 27 11 00 4e 00 00 00 | .&.......&.......&..H....'..N... |
| 11880 | 4b 27 11 00 0b 00 00 00 9a 27 11 00 3d 00 00 00 a6 27 11 00 25 00 00 00 e4 27 11 00 29 00 00 00 | K'.......'..=....'..%....'..)... |
| 118a0 | 0a 28 11 00 11 00 00 00 34 28 11 00 76 00 00 00 46 28 11 00 43 00 00 00 bd 28 11 00 6b 00 00 00 | .(......4(..v...F(..C....(..k... |
| 118c0 | 01 29 11 00 0c 00 00 00 6d 29 11 00 20 00 00 00 7a 29 11 00 0d 00 00 00 9b 29 11 00 63 00 00 00 | .)......m)......z).......)..c... |
| 118e0 | a9 29 11 00 05 00 00 00 0d 2a 11 00 0d 00 00 00 13 2a 11 00 6c 00 00 00 21 2a 11 00 8a 00 00 00 | .).......*.......*..l...!*...... |
| 11900 | 8e 2a 11 00 0e 00 00 00 19 2b 11 00 81 00 00 00 28 2b 11 00 07 00 00 00 aa 2b 11 00 1a 00 00 00 | .*.......+......(+.......+...... |
| 11920 | b2 2b 11 00 27 00 00 00 cd 2b 11 00 19 00 00 00 f5 2b 11 00 1e 00 00 00 0f 2c 11 00 17 00 00 00 | .+..'....+.......+.......,...... |
| 11940 | 2e 2c 11 00 1f 00 00 00 46 2c 11 00 40 00 00 00 66 2c 11 00 6d 00 00 00 a7 2c 11 00 58 00 00 00 | .,......F,..@...f,..m....,..X... |
| 11960 | 15 2d 11 00 e4 00 00 00 6e 2d 11 00 0c 00 00 00 53 2e 11 00 0b 00 00 00 60 2e 11 00 10 00 00 00 | .-......n-......S.......`....... |
| 11980 | 6c 2e 11 00 3d 00 00 00 7d 2e 11 00 39 00 00 00 bb 2e 11 00 40 00 00 00 f5 2e 11 00 0d 00 00 00 | l...=...}...9.......@........... |
| 119a0 | 36 2f 11 00 0b 00 00 00 44 2f 11 00 1f 00 00 00 50 2f 11 00 0f 00 00 00 70 2f 11 00 0f 00 00 00 | 6/......D/......P/......p/...... |
| 119c0 | 80 2f 11 00 1d 00 00 00 90 2f 11 00 09 00 00 00 ae 2f 11 00 10 00 00 00 b8 2f 11 00 14 00 00 00 | ./......./......./......./...... |
| 119e0 | c9 2f 11 00 1d 00 00 00 de 2f 11 00 0f 00 00 00 fc 2f 11 00 1d 00 00 00 0c 30 11 00 17 00 00 00 | ./......./......./.......0...... |
| 11a00 | 2a 30 11 00 d0 01 00 00 42 30 11 00 2e 00 00 00 13 32 11 00 7d 00 00 00 42 32 11 00 c1 00 00 00 | *0......B0.......2..}...B2...... |
| 11a20 | c0 32 11 00 0c 00 00 00 82 33 11 00 13 00 00 00 8f 33 11 00 15 00 00 00 a3 33 11 00 0f 00 00 00 | .2.......3.......3.......3...... |
| 11a40 | b9 33 11 00 67 00 00 00 c9 33 11 00 56 00 00 00 31 34 11 00 11 00 00 00 88 34 11 00 c1 00 00 00 | .3..g....3..V...14.......4...... |
| 11a60 | 9a 34 11 00 59 00 00 00 5c 35 11 00 c6 00 00 00 b6 35 11 00 07 00 00 00 7d 36 11 00 07 00 00 00 | .4..Y...\5.......5......}6...... |
| 11a80 | 85 36 11 00 35 00 00 00 8d 36 11 00 69 00 00 00 c3 36 11 00 6c 00 00 00 2d 37 11 00 2b 00 00 00 | .6..5....6..i....6..l...-7..+... |
| 11aa0 | 9a 37 11 00 7c 00 00 00 c6 37 11 00 69 00 00 00 43 38 11 00 0b 00 00 00 ad 38 11 00 09 00 00 00 | .7..|....7..i...C8.......8...... |
| 11ac0 | b9 38 11 00 11 00 00 00 c3 38 11 00 05 00 00 00 d5 38 11 00 ad 00 00 00 db 38 11 00 4c 00 00 00 | .8.......8.......8.......8..L... |
| 11ae0 | 89 39 11 00 12 00 00 00 d6 39 11 00 04 00 00 00 e9 39 11 00 06 00 00 00 ee 39 11 00 06 00 00 00 | .9.......9.......9.......9...... |
| 11b00 | f5 39 11 00 04 00 00 00 fc 39 11 00 0f 00 00 00 01 3a 11 00 16 00 00 00 11 3a 11 00 d7 00 00 00 | .9.......9.......:.......:...... |
| 11b20 | 28 3a 11 00 fd 00 00 00 00 3b 11 00 65 01 00 00 fe 3b 11 00 06 00 00 00 64 3d 11 00 f4 00 00 00 | (:.......;..e....;......d=...... |
| 11b40 | 6b 3d 11 00 00 01 00 00 60 3e 11 00 06 00 00 00 61 3f 11 00 0b 02 00 00 68 3f 11 00 e3 01 00 00 | k=......`>......a?......h?...... |
| 11b60 | 74 41 11 00 e2 01 00 00 58 43 11 00 03 00 00 00 3b 45 11 00 27 00 00 00 3f 45 11 00 18 00 00 00 | tA......XC......;E..'...?E...... |
| 11b80 | 67 45 11 00 0a 00 00 00 80 45 11 00 7b 01 00 00 8b 45 11 00 40 00 00 00 07 47 11 00 a9 01 00 00 | gE.......E..{....E..@....G...... |
| 11ba0 | 48 47 11 00 30 00 00 00 f2 48 11 00 0c 00 00 00 23 49 11 00 10 00 00 00 30 49 11 00 1b 00 00 00 | HG..0....H......#I......0I...... |
| 11bc0 | 41 49 11 00 2e 00 00 00 5d 49 11 00 0b 00 00 00 8c 49 11 00 13 00 00 00 98 49 11 00 0b 00 00 00 | AI......]I.......I.......I...... |
| 11be0 | ac 49 11 00 2e 00 00 00 b8 49 11 00 46 00 00 00 e7 49 11 00 0d 00 00 00 2e 4a 11 00 0b 00 00 00 | .I.......I..F....I.......J...... |
| 11c00 | 3c 4a 11 00 58 01 00 00 48 4a 11 00 88 00 00 00 a1 4b 11 00 62 00 00 00 2a 4c 11 00 45 00 00 00 | <J..X...HJ.......K..b...*L..E... |
| 11c20 | 8d 4c 11 00 29 00 00 00 d3 4c 11 00 96 00 00 00 fd 4c 11 00 10 00 00 00 94 4d 11 00 2f 00 00 00 | .L..)....L.......L.......M../... |
| 11c40 | a5 4d 11 00 33 00 00 00 d5 4d 11 00 43 00 00 00 09 4e 11 00 37 00 00 00 4d 4e 11 00 49 00 00 00 | .M..3....M..C....N..7...MN..I... |
| 11c60 | 85 4e 11 00 3b 00 00 00 cf 4e 11 00 3e 00 00 00 0b 4f 11 00 4a 00 00 00 4a 4f 11 00 4d 00 00 00 | .N..;....N..>....O..J...JO..M... |
| 11c80 | 95 4f 11 00 09 00 00 00 e3 4f 11 00 a8 00 00 00 ed 4f 11 00 6b 00 00 00 96 50 11 00 3a 00 00 00 | .O.......O.......O..k....P..:... |
| 11ca0 | 02 51 11 00 08 00 00 00 3d 51 11 00 20 00 00 00 46 51 11 00 28 00 00 00 67 51 11 00 4b 00 00 00 | .Q......=Q......FQ..(...gQ..K... |
| 11cc0 | 90 51 11 00 0f 00 00 00 dc 51 11 00 26 01 00 00 ec 51 11 00 5b 01 00 00 13 53 11 00 87 00 00 00 | .Q.......Q..&....Q..[....S...... |
| 11ce0 | 6f 54 11 00 86 00 00 00 f7 54 11 00 ce 01 00 00 7e 55 11 00 18 00 00 00 4d 57 11 00 51 00 00 00 | oT.......T......~U......MW..Q... |
| 11d00 | 66 57 11 00 f2 00 00 00 b8 57 11 00 0e 00 00 00 ab 58 11 00 34 00 00 00 ba 58 11 00 36 00 00 00 | fW.......W.......X..4....X..6... |
| 11d20 | ef 58 11 00 bd 00 00 00 26 59 11 00 7e 00 00 00 e4 59 11 00 82 00 00 00 63 5a 11 00 33 00 00 00 | .X......&Y..~....Y......cZ..3... |
| 11d40 | e6 5a 11 00 0e 00 00 00 1a 5b 11 00 dd 00 00 00 29 5b 11 00 06 00 00 00 07 5c 11 00 12 00 00 00 | .Z.......[......)[.......\...... |
| 11d60 | 0e 5c 11 00 14 00 00 00 21 5c 11 00 0b 00 00 00 36 5c 11 00 0c 00 00 00 42 5c 11 00 0d 00 00 00 | .\......!\......6\......B\...... |
| 11d80 | 4f 5c 11 00 14 00 00 00 5d 5c 11 00 42 00 00 00 72 5c 11 00 07 00 00 00 b5 5c 11 00 07 00 00 00 | O\......]\..B...r\.......\...... |
| 11da0 | bd 5c 11 00 c7 00 00 00 c5 5c 11 00 29 00 00 00 8d 5d 11 00 28 00 00 00 b7 5d 11 00 23 00 00 00 | .\.......\..)....]..(....]..#... |
| 11dc0 | e0 5d 11 00 14 00 00 00 04 5e 11 00 20 00 00 00 19 5e 11 00 18 00 00 00 3a 5e 11 00 28 00 00 00 | .].......^.......^......:^..(... |
| 11de0 | 53 5e 11 00 1d 00 00 00 7c 5e 11 00 29 00 00 00 9a 5e 11 00 1e 00 00 00 c4 5e 11 00 30 00 00 00 | S^......|^..)....^.......^..0... |
| 11e00 | e3 5e 11 00 4b 00 00 00 14 5f 11 00 6e 00 00 00 60 5f 11 00 2d 00 00 00 cf 5f 11 00 2d 00 00 00 | .^..K...._..n...`_..-...._..-... |
| 11e20 | fd 5f 11 00 35 00 00 00 2b 60 11 00 16 00 00 00 61 60 11 00 1c 00 00 00 78 60 11 00 1b 00 00 00 | ._..5...+`......a`......x`...... |
| 11e40 | 95 60 11 00 21 00 00 00 b1 60 11 00 41 00 00 00 d3 60 11 00 35 00 00 00 15 61 11 00 97 00 00 00 | .`..!....`..A....`..5....a...... |
| 11e60 | 4b 61 11 00 4e 00 00 00 e3 61 11 00 1d 00 00 00 32 62 11 00 4c 00 00 00 50 62 11 00 17 00 00 00 | Ka..N....a......2b..L...Pb...... |
| 11e80 | 9d 62 11 00 1f 00 00 00 b5 62 11 00 21 00 00 00 d5 62 11 00 1b 00 00 00 f7 62 11 00 41 00 00 00 | .b.......b..!....b.......b..A... |
| 11ea0 | 13 63 11 00 24 00 00 00 55 63 11 00 31 00 00 00 7a 63 11 00 47 00 00 00 ac 63 11 00 4f 00 00 00 | .c..$...Uc..1...zc..G....c..O... |
| 11ec0 | f4 63 11 00 45 00 00 00 44 64 11 00 7c 00 00 00 8a 64 11 00 26 00 00 00 07 65 11 00 43 00 00 00 | .c..E...Dd..|....d..&....e..C... |
| 11ee0 | 2e 65 11 00 4c 00 00 00 72 65 11 00 3c 00 00 00 bf 65 11 00 39 00 00 00 fc 65 11 00 4a 00 00 00 | .e..L...re..<....e..9....e..J... |
| 11f00 | 36 66 11 00 82 00 00 00 81 66 11 00 5a 00 00 00 04 67 11 00 1a 00 00 00 5f 67 11 00 2a 00 00 00 | 6f.......f..Z....g......_g..*... |
| 11f20 | 7a 67 11 00 1c 00 00 00 a5 67 11 00 37 00 00 00 c2 67 11 00 49 00 00 00 fa 67 11 00 3f 00 00 00 | zg.......g..7....g..I....g..?... |
| 11f40 | 44 68 11 00 47 00 00 00 84 68 11 00 42 00 00 00 cc 68 11 00 28 00 00 00 0f 69 11 00 2a 00 00 00 | Dh..G....h..B....h..(....i..*... |
| 11f60 | 38 69 11 00 2d 00 00 00 63 69 11 00 30 00 00 00 91 69 11 00 2d 00 00 00 c2 69 11 00 2c 00 00 00 | 8i..-...ci..0....i..-....i..,... |
| 11f80 | f0 69 11 00 19 00 00 00 1d 6a 11 00 29 00 00 00 37 6a 11 00 30 00 00 00 61 6a 11 00 24 00 00 00 | .i.......j..)...7j..0...aj..$... |
| 11fa0 | 92 6a 11 00 2b 00 00 00 b7 6a 11 00 29 00 00 00 e3 6a 11 00 35 00 00 00 0d 6b 11 00 2a 00 00 00 | .j..+....j..)....j..5....k..*... |
| 11fc0 | 43 6b 11 00 10 00 00 00 6e 6b 11 00 2b 00 00 00 7f 6b 11 00 55 00 00 00 ab 6b 11 00 3c 00 00 00 | Ck......nk..+....k..U....k..<... |
| 11fe0 | 01 6c 11 00 90 00 00 00 3e 6c 11 00 1a 00 00 00 cf 6c 11 00 72 00 00 00 ea 6c 11 00 14 00 00 00 | .l......>l.......l..r....l...... |
| 12000 | 5d 6d 11 00 4c 00 00 00 72 6d 11 00 1f 00 00 00 bf 6d 11 00 71 00 00 00 df 6d 11 00 6b 00 00 00 | ]m..L...rm.......m..q....m..k... |
| 12020 | 51 6e 11 00 5b 00 00 00 bd 6e 11 00 2c 00 00 00 19 6f 11 00 4e 00 00 00 46 6f 11 00 2a 00 00 00 | Qn..[....n..,....o..N...Fo..*... |
| 12040 | 95 6f 11 00 a0 00 00 00 c0 6f 11 00 65 00 00 00 61 70 11 00 27 01 00 00 c7 70 11 00 d0 00 00 00 | .o.......o..e...ap..'....p...... |
| 12060 | ef 71 11 00 d8 00 00 00 c0 72 11 00 3f 00 00 00 99 73 11 00 38 00 00 00 d9 73 11 00 46 00 00 00 | .q.......r..?....s..8....s..F... |
| 12080 | 12 74 11 00 40 00 00 00 59 74 11 00 53 00 00 00 9a 74 11 00 45 00 00 00 ee 74 11 00 26 01 00 00 | .t..@...Yt..S....t..E....t..&... |
| 120a0 | 34 75 11 00 f1 00 00 00 5b 76 11 00 48 00 00 00 4d 77 11 00 49 00 00 00 96 77 11 00 d0 00 00 00 | 4u......[v..H...Mw..I....w...... |
| 120c0 | e0 77 11 00 24 00 00 00 b1 78 11 00 16 00 00 00 d6 78 11 00 60 00 00 00 ed 78 11 00 50 00 00 00 | .w..$....x.......x..`....x..P... |
| 120e0 | 4e 79 11 00 27 00 00 00 9f 79 11 00 18 00 00 00 c7 79 11 00 49 00 00 00 e0 79 11 00 52 00 00 00 | Ny..'....y.......y..I....y..R... |
| 12100 | 2a 7a 11 00 58 00 00 00 7d 7a 11 00 3d 00 00 00 d6 7a 11 00 25 00 00 00 14 7b 11 00 26 00 00 00 | *z..X...}z..=....z..%....{..&... |
| 12120 | 3a 7b 11 00 2a 00 00 00 61 7b 11 00 23 00 00 00 8c 7b 11 00 47 00 00 00 b0 7b 11 00 a4 00 00 00 | :{..*...a{..#....{..G....{...... |
| 12140 | f8 7b 11 00 aa 00 00 00 9d 7c 11 00 55 00 00 00 48 7d 11 00 f4 00 00 00 9e 7d 11 00 44 00 00 00 | .{.......|..U...H}.......}..D... |
| 12160 | 93 7e 11 00 61 00 00 00 d8 7e 11 00 54 00 00 00 3a 7f 11 00 3c 00 00 00 8f 7f 11 00 6d 00 00 00 | .~..a....~..T...:...<.......m... |
| 12180 | cc 7f 11 00 6a 00 00 00 3a 80 11 00 43 00 00 00 a5 80 11 00 5c 00 00 00 e9 80 11 00 34 00 00 00 | ....j...:...C.......\.......4... |
| 121a0 | 46 81 11 00 a4 00 00 00 7b 81 11 00 a8 00 00 00 20 82 11 00 e8 00 00 00 c9 82 11 00 ec 00 00 00 | F.......{....................... |
| 121c0 | b2 83 11 00 3e 00 00 00 9f 84 11 00 39 00 00 00 de 84 11 00 21 00 00 00 18 85 11 00 2c 00 00 00 | ....>.......9.......!.......,... |
| 121e0 | 3a 85 11 00 34 00 00 00 67 85 11 00 23 00 00 00 9c 85 11 00 55 00 00 00 c0 85 11 00 56 00 00 00 | :...4...g...#.......U.......V... |
| 12200 | 16 86 11 00 35 00 00 00 6d 86 11 00 2a 00 00 00 a3 86 11 00 66 00 00 00 ce 86 11 00 7b 00 00 00 | ....5...m...*.......f.......{... |
| 12220 | 35 87 11 00 41 00 00 00 b1 87 11 00 42 00 00 00 f3 87 11 00 41 00 00 00 36 88 11 00 56 00 00 00 | 5...A.......B.......A...6...V... |
| 12240 | 78 88 11 00 35 00 00 00 cf 88 11 00 2b 00 00 00 05 89 11 00 2f 00 00 00 31 89 11 00 22 00 00 00 | x...5.......+......./...1..."... |
| 12260 | 61 89 11 00 44 00 00 00 84 89 11 00 63 00 00 00 c9 89 11 00 56 00 00 00 2d 8a 11 00 4d 00 00 00 | a...D.......c.......V...-...M... |
| 12280 | 84 8a 11 00 34 00 00 00 d2 8a 11 00 3f 00 00 00 07 8b 11 00 79 01 00 00 47 8b 11 00 df 00 00 00 | ....4.......?.......y...G....... |
| 122a0 | c1 8c 11 00 f0 00 00 00 a1 8d 11 00 df 00 00 00 92 8e 11 00 54 00 00 00 72 8f 11 00 32 00 00 00 | ....................T...r...2... |
| 122c0 | c7 8f 11 00 0c 01 00 00 fa 8f 11 00 59 00 00 00 07 91 11 00 4e 00 00 00 61 91 11 00 26 01 00 00 | ............Y.......N...a...&... |
| 122e0 | b0 91 11 00 4a 00 00 00 d7 92 11 00 1a 00 00 00 22 93 11 00 2f 00 00 00 3d 93 11 00 a4 00 00 00 | ....J...........".../...=....... |
| 12300 | 6d 93 11 00 3a 00 00 00 12 94 11 00 81 00 00 00 4d 94 11 00 3a 00 00 00 cf 94 11 00 2a 00 00 00 | m...:...........M...:.......*... |
| 12320 | 0a 95 11 00 1d 01 00 00 35 95 11 00 2d 00 00 00 53 96 11 00 21 00 00 00 81 96 11 00 26 00 00 00 | ........5...-...S...!.......&... |
| 12340 | a3 96 11 00 af 00 00 00 ca 96 11 00 63 00 00 00 7a 97 11 00 ce 00 00 00 de 97 11 00 53 00 00 00 | ............c...z...........S... |
| 12360 | ad 98 11 00 44 00 00 00 01 99 11 00 33 00 00 00 46 99 11 00 45 00 00 00 7a 99 11 00 34 00 00 00 | ....D.......3...F...E...z...4... |
| 12380 | c0 99 11 00 7a 00 00 00 f5 99 11 00 32 00 00 00 70 9a 11 00 27 00 00 00 a3 9a 11 00 46 00 00 00 | ....z.......2...p...'.......F... |
| 123a0 | cb 9a 11 00 2e 00 00 00 12 9b 11 00 44 00 00 00 41 9b 11 00 60 00 00 00 86 9b 11 00 27 00 00 00 | ............D...A...`.......'... |
| 123c0 | e7 9b 11 00 5b 00 00 00 0f 9c 11 00 78 00 00 00 6b 9c 11 00 5f 00 00 00 e4 9c 11 00 5b 00 00 00 | ....[.......x...k..._.......[... |
| 123e0 | 44 9d 11 00 1b 00 00 00 a0 9d 11 00 0c 00 00 00 bc 9d 11 00 b4 01 00 00 c9 9d 11 00 11 00 00 00 | D............................... |
| 12400 | 7e 9f 11 00 12 00 00 00 90 9f 11 00 ed 00 00 00 a3 9f 11 00 17 00 00 00 91 a0 11 00 18 00 00 00 | ~............................... |
| 12420 | a9 a0 11 00 12 00 00 00 c2 a0 11 00 35 00 00 00 d5 a0 11 00 26 00 00 00 0b a1 11 00 2c 00 00 00 | ............5.......&.......,... |
| 12440 | 32 a1 11 00 75 00 00 00 5f a1 11 00 41 00 00 00 d5 a1 11 00 41 00 00 00 17 a2 11 00 6f 00 00 00 | 2...u..._...A.......A.......o... |
| 12460 | 59 a2 11 00 9f 00 00 00 c9 a2 11 00 a1 00 00 00 69 a3 11 00 7f 00 00 00 0b a4 11 00 77 00 00 00 | Y...............i...........w... |
| 12480 | 8b a4 11 00 08 00 00 00 03 a5 11 00 0e 00 00 00 0c a5 11 00 06 00 00 00 1b a5 11 00 15 00 00 00 | ................................ |
| 124a0 | 22 a5 11 00 27 00 00 00 38 a5 11 00 ee 00 00 00 60 a5 11 00 eb 00 00 00 4f a6 11 00 04 00 00 00 | "...'...8.......`.......O....... |
| 124c0 | 3b a7 11 00 16 00 00 00 40 a7 11 00 20 00 00 00 57 a7 11 00 22 00 00 00 78 a7 11 00 11 00 00 00 | ;.......@.......W..."...x....... |
| 124e0 | 9b a7 11 00 3a 00 00 00 ad a7 11 00 20 00 00 00 e8 a7 11 00 14 00 00 00 09 a8 11 00 55 00 00 00 | ....:.......................U... |
| 12500 | 1e a8 11 00 28 00 00 00 74 a8 11 00 88 00 00 00 9d a8 11 00 16 00 00 00 26 a9 11 00 16 00 00 00 | ....(...t...............&....... |
| 12520 | 3d a9 11 00 18 00 00 00 54 a9 11 00 26 00 00 00 6d a9 11 00 1a 00 00 00 94 a9 11 00 27 00 00 00 | =.......T...&...m...........'... |
| 12540 | af a9 11 00 23 00 00 00 d7 a9 11 00 17 00 00 00 fb a9 11 00 21 00 00 00 13 aa 11 00 5d 00 00 00 | ....#...............!.......]... |
| 12560 | 35 aa 11 00 28 00 00 00 93 aa 11 00 49 00 00 00 bc aa 11 00 44 00 00 00 06 ab 11 00 25 00 00 00 | 5...(.......I.......D.......%... |
| 12580 | 4b ab 11 00 21 00 00 00 71 ab 11 00 12 00 00 00 93 ab 11 00 30 00 00 00 a6 ab 11 00 2f 00 00 00 | K...!...q...........0......./... |
| 125a0 | d7 ab 11 00 2f 00 00 00 07 ac 11 00 4d 00 00 00 37 ac 11 00 56 00 00 00 85 ac 11 00 34 00 00 00 | ..../.......M...7...V.......4... |
| 125c0 | dc ac 11 00 2f 00 00 00 11 ad 11 00 3a 00 00 00 41 ad 11 00 32 00 00 00 7c ad 11 00 3f 00 00 00 | ..../.......:...A...2...|...?... |
| 125e0 | af ad 11 00 a2 00 00 00 ef ad 11 00 21 00 00 00 92 ae 11 00 0d 00 00 00 b4 ae 11 00 4a 00 00 00 | ............!...............J... |
| 12600 | c2 ae 11 00 2e 00 00 00 0d af 11 00 2e 00 00 00 3c af 11 00 2e 00 00 00 6b af 11 00 1f 00 00 00 | ................<.......k....... |
| 12620 | 9a af 11 00 41 00 00 00 ba af 11 00 3c 00 00 00 fc af 11 00 5b 00 00 00 39 b0 11 00 30 00 00 00 | ....A.......<.......[...9...0... |
| 12640 | 95 b0 11 00 3f 00 00 00 c6 b0 11 00 38 00 00 00 06 b1 11 00 2d 00 00 00 3f b1 11 00 52 00 00 00 | ....?.......8.......-...?...R... |
| 12660 | 6d b1 11 00 39 00 00 00 c0 b1 11 00 3b 00 00 00 fa b1 11 00 4a 00 00 00 36 b2 11 00 2d 00 00 00 | m...9.......;.......J...6...-... |
| 12680 | 81 b2 11 00 3d 00 00 00 af b2 11 00 13 00 00 00 ed b2 11 00 24 00 00 00 01 b3 11 00 20 00 00 00 | ....=...............$........... |
| 126a0 | 26 b3 11 00 29 00 00 00 47 b3 11 00 2b 00 00 00 71 b3 11 00 38 00 00 00 9d b3 11 00 3a 00 00 00 | &...)...G...+...q...8.......:... |
| 126c0 | d6 b3 11 00 3a 00 00 00 11 b4 11 00 30 00 00 00 4c b4 11 00 27 00 00 00 7d b4 11 00 8d 00 00 00 | ....:.......0...L...'...}....... |
| 126e0 | a5 b4 11 00 8d 00 00 00 33 b5 11 00 2f 00 00 00 c1 b5 11 00 2a 00 00 00 f1 b5 11 00 19 00 00 00 | ........3.../.......*........... |
| 12700 | 1c b6 11 00 5e 00 00 00 36 b6 11 00 23 00 00 00 95 b6 11 00 37 00 00 00 b9 b6 11 00 20 00 00 00 | ....^...6...#.......7........... |
| 12720 | f1 b6 11 00 1c 00 00 00 12 b7 11 00 3b 00 00 00 2f b7 11 00 30 00 00 00 6b b7 11 00 27 00 00 00 | ............;.../...0...k...'... |
| 12740 | 9c b7 11 00 20 00 00 00 c4 b7 11 00 25 00 00 00 e5 b7 11 00 dd 00 00 00 0b b8 11 00 da 00 00 00 | ............%................... |
| 12760 | e9 b8 11 00 da 00 00 00 c4 b9 11 00 0e 00 00 00 9f ba 11 00 38 00 00 00 ae ba 11 00 40 00 00 00 | ....................8.......@... |
| 12780 | e7 ba 11 00 23 00 00 00 28 bb 11 00 24 00 00 00 4c bb 11 00 07 00 00 00 71 bb 11 00 07 00 00 00 | ....#...(...$...L.......q....... |
| 127a0 | 79 bb 11 00 33 00 00 00 81 bb 11 00 33 00 00 00 b5 bb 11 00 33 00 00 00 e9 bb 11 00 33 00 00 00 | y...3.......3.......3.......3... |
| 127c0 | 1d bc 11 00 40 00 00 00 51 bc 11 00 8c 00 00 00 92 bc 11 00 51 00 00 00 1f bd 11 00 4f 00 00 00 | ....@...Q...........Q.......O... |
| 127e0 | 71 bd 11 00 3d 00 00 00 c1 bd 11 00 64 00 00 00 ff bd 11 00 6f 00 00 00 64 be 11 00 94 00 00 00 | q...=.......d.......o...d....... |
| 12800 | d4 be 11 00 92 00 00 00 69 bf 11 00 cd 00 00 00 fc bf 11 00 ce 00 00 00 ca c0 11 00 82 00 00 00 | ........i....................... |
| 12820 | 99 c1 11 00 8f 00 00 00 1c c2 11 00 e1 00 00 00 ac c2 11 00 c3 00 00 00 8e c3 11 00 8a 00 00 00 | ................................ |
| 12840 | 52 c4 11 00 8b 00 00 00 dd c4 11 00 19 00 00 00 69 c5 11 00 17 00 00 00 83 c5 11 00 10 00 00 00 | R...............i............... |
| 12860 | 9b c5 11 00 0c 00 00 00 ac c5 11 00 ac 00 00 00 b9 c5 11 00 e2 00 00 00 66 c6 11 00 14 00 00 00 | ........................f....... |
| 12880 | 49 c7 11 00 c3 00 00 00 5e c7 11 00 95 00 00 00 22 c8 11 00 13 01 00 00 b8 c8 11 00 31 00 00 00 | I.......^......."...........1... |
| 128a0 | cc c9 11 00 0a 00 00 00 fe c9 11 00 21 01 00 00 09 ca 11 00 d8 00 00 00 2b cb 11 00 8b 00 00 00 | ............!...........+....... |
| 128c0 | 04 cc 11 00 8c 00 00 00 90 cc 11 00 f8 00 00 00 1d cd 11 00 39 00 00 00 16 ce 11 00 49 00 00 00 | ....................9.......I... |
| 128e0 | 50 ce 11 00 b6 00 00 00 9a ce 11 00 93 00 00 00 51 cf 11 00 80 00 00 00 e5 cf 11 00 1b 00 00 00 | P...............Q............... |
| 12900 | 66 d0 11 00 79 00 00 00 82 d0 11 00 79 00 00 00 fc d0 11 00 53 01 00 00 76 d1 11 00 7f 00 00 00 | f...y.......y.......S...v....... |
| 12920 | ca d2 11 00 a9 00 00 00 4a d3 11 00 b6 00 00 00 f4 d3 11 00 83 00 00 00 ab d4 11 00 86 00 00 00 | ........J....................... |
| 12940 | 2f d5 11 00 0e 00 00 00 b6 d5 11 00 5d 00 00 00 c5 d5 11 00 36 00 00 00 23 d6 11 00 10 00 00 00 | /...........].......6...#....... |
| 12960 | 5a d6 11 00 0d 00 00 00 6b d6 11 00 45 00 00 00 79 d6 11 00 45 00 00 00 bf d6 11 00 19 00 00 00 | Z.......k...E...y...E........... |
| 12980 | 05 d7 11 00 22 00 00 00 1f d7 11 00 1c 00 00 00 42 d7 11 00 45 00 00 00 5f d7 11 00 50 00 00 00 | ...."...........B...E..._...P... |
| 129a0 | a5 d7 11 00 65 00 00 00 f6 d7 11 00 2f 00 00 00 5c d8 11 00 60 00 00 00 8c d8 11 00 54 00 00 00 | ....e......./...\...`.......T... |
| 129c0 | ed d8 11 00 55 00 00 00 42 d9 11 00 48 00 00 00 98 d9 11 00 26 00 00 00 e1 d9 11 00 26 00 00 00 | ....U...B...H.......&.......&... |
| 129e0 | 08 da 11 00 b2 00 00 00 2f da 11 00 eb 00 00 00 e2 da 11 00 75 00 00 00 ce db 11 00 77 00 00 00 | ......../...........u.......w... |
| 12a00 | 44 dc 11 00 4d 00 00 00 bc dc 11 00 e2 00 00 00 0a dd 11 00 5b 00 00 00 ed dd 11 00 78 00 00 00 | D...M...............[.......x... |
| 12a20 | 49 de 11 00 1d 01 00 00 c2 de 11 00 29 01 00 00 e0 df 11 00 53 00 00 00 0a e1 11 00 42 00 00 00 | I...........).......S.......B... |
| 12a40 | 5e e1 11 00 8b 00 00 00 a1 e1 11 00 1e 00 00 00 2d e2 11 00 56 00 00 00 4c e2 11 00 d2 00 00 00 | ^...............-...V...L....... |
| 12a60 | a3 e2 11 00 36 00 00 00 76 e3 11 00 ce 00 00 00 ad e3 11 00 00 01 00 00 7c e4 11 00 c1 00 00 00 | ....6...v...............|....... |
| 12a80 | 7d e5 11 00 38 00 00 00 3f e6 11 00 27 00 00 00 78 e6 11 00 57 00 00 00 a0 e6 11 00 bd 00 00 00 | }...8...?...'...x...W........... |
| 12aa0 | f8 e6 11 00 85 00 00 00 b6 e7 11 00 4f 00 00 00 3c e8 11 00 ba 01 00 00 8c e8 11 00 b6 00 00 00 | ............O...<............... |
| 12ac0 | 47 ea 11 00 47 00 00 00 fe ea 11 00 63 00 00 00 46 eb 11 00 4c 00 00 00 aa eb 11 00 d5 00 00 00 | G...G.......c...F...L........... |
| 12ae0 | f7 eb 11 00 66 00 00 00 cd ec 11 00 45 01 00 00 34 ed 11 00 56 00 00 00 7a ee 11 00 64 00 00 00 | ....f.......E...4...V...z...d... |
| 12b00 | d1 ee 11 00 57 00 00 00 36 ef 11 00 64 00 00 00 8e ef 11 00 bf 00 00 00 f3 ef 11 00 a4 00 00 00 | ....W...6...d................... |
| 12b20 | b3 f0 11 00 bc 00 00 00 58 f1 11 00 65 00 00 00 15 f2 11 00 3f 00 00 00 7b f2 11 00 c0 01 00 00 | ........X...e.......?...{....... |
| 12b40 | bb f2 11 00 72 00 00 00 7c f4 11 00 74 00 00 00 ef f4 11 00 58 00 00 00 64 f5 11 00 45 00 00 00 | ....r...|...t.......X...d...E... |
| 12b60 | bd f5 11 00 41 00 00 00 03 f6 11 00 52 00 00 00 45 f6 11 00 81 00 00 00 98 f6 11 00 75 00 00 00 | ....A.......R...E...........u... |
| 12b80 | 1a f7 11 00 7f 00 00 00 90 f7 11 00 30 00 00 00 10 f8 11 00 31 00 00 00 41 f8 11 00 7e 00 00 00 | ............0.......1...A...~... |
| 12ba0 | 73 f8 11 00 50 00 00 00 f2 f8 11 00 36 00 00 00 43 f9 11 00 50 01 00 00 7a f9 11 00 69 00 00 00 | s...P.......6...C...P...z...i... |
| 12bc0 | cb fa 11 00 a3 00 00 00 35 fb 11 00 5d 00 00 00 d9 fb 11 00 8e 00 00 00 37 fc 11 00 4a 00 00 00 | ........5...]...........7...J... |
| 12be0 | c6 fc 11 00 57 00 00 00 11 fd 11 00 6d 00 00 00 69 fd 11 00 64 00 00 00 d7 fd 11 00 64 00 00 00 | ....W.......m...i...d.......d... |
| 12c00 | 3c fe 11 00 99 00 00 00 a1 fe 11 00 26 00 00 00 3b ff 11 00 b1 00 00 00 62 ff 11 00 ad 00 00 00 | <...........&...;.......b....... |
| 12c20 | 14 00 12 00 81 00 00 00 c2 00 12 00 33 00 00 00 44 01 12 00 c0 00 00 00 78 01 12 00 90 00 00 00 | ............3...D.......x....... |
| 12c40 | 39 02 12 00 a3 00 00 00 ca 02 12 00 a2 00 00 00 6e 03 12 00 83 00 00 00 11 04 12 00 41 00 00 00 | 9...............n...........A... |
| 12c60 | 95 04 12 00 3a 00 00 00 d7 04 12 00 4b 00 00 00 12 05 12 00 65 00 00 00 5e 05 12 00 65 00 00 00 | ....:.......K.......e...^...e... |
| 12c80 | c4 05 12 00 06 00 00 00 2a 06 12 00 05 00 00 00 31 06 12 00 e3 01 00 00 37 06 12 00 1e 00 00 00 | ........*.......1.......7....... |
| 12ca0 | 1b 08 12 00 1d 00 00 00 3a 08 12 00 3d 00 00 00 58 08 12 00 a4 00 00 00 96 08 12 00 9d 01 00 00 | ........:...=...X............... |
| 12cc0 | 3b 09 12 00 60 02 00 00 d9 0a 12 00 5b 02 00 00 3a 0d 12 00 4b 02 00 00 96 0f 12 00 5a 02 00 00 | ;...`.......[...:...K.......Z... |
| 12ce0 | e2 11 12 00 6d 00 00 00 3d 14 12 00 a8 00 00 00 ab 14 12 00 bf 00 00 00 54 15 12 00 b2 00 00 00 | ....m...=...............T....... |
| 12d00 | 14 16 12 00 06 00 00 00 c7 16 12 00 4b 01 00 00 ce 16 12 00 4c 01 00 00 1a 18 12 00 17 00 00 00 | ............K.......L........... |
| 12d20 | 67 19 12 00 0b 00 00 00 7f 19 12 00 0d 00 00 00 8b 19 12 00 55 00 00 00 99 19 12 00 0f 00 00 00 | g...................U........... |
| 12d40 | ef 19 12 00 0f 00 00 00 ff 19 12 00 5c 00 00 00 0f 1a 12 00 ff 02 00 00 6c 1a 12 00 b1 00 00 00 | ............\...........l....... |
| 12d60 | 6c 1d 12 00 52 00 00 00 1e 1e 12 00 37 00 00 00 71 1e 12 00 06 00 00 00 a9 1e 12 00 12 00 00 00 | l...R.......7...q............... |
| 12d80 | b0 1e 12 00 9a 00 00 00 c3 1e 12 00 08 00 00 00 5e 1f 12 00 38 00 00 00 67 1f 12 00 11 00 00 00 | ................^...8...g....... |
| 12da0 | a0 1f 12 00 1c 00 00 00 b2 1f 12 00 12 00 00 00 cf 1f 12 00 1a 00 00 00 e2 1f 12 00 49 00 00 00 | ............................I... |
| 12dc0 | fd 1f 12 00 1e 00 00 00 47 20 12 00 2f 00 00 00 66 20 12 00 73 00 00 00 96 20 12 00 ae 00 00 00 | ........G.../...f...s........... |
| 12de0 | 0a 21 12 00 af 00 00 00 b9 21 12 00 11 00 00 00 69 22 12 00 d5 00 00 00 7b 22 12 00 d0 00 00 00 | .!.......!......i"......{"...... |
| 12e00 | 51 23 12 00 0b 00 00 00 22 24 12 00 4a 00 00 00 2e 24 12 00 08 00 00 00 79 24 12 00 14 00 00 00 | Q#......"$..J....$......y$...... |
| 12e20 | 82 24 12 00 4a 00 00 00 97 24 12 00 60 00 00 00 e2 24 12 00 06 00 00 00 43 25 12 00 06 00 00 00 | .$..J....$..`....$......C%...... |
| 12e40 | 4a 25 12 00 da 00 00 00 51 25 12 00 99 00 00 00 2c 26 12 00 98 00 00 00 c6 26 12 00 bc 00 00 00 | J%......Q%......,&.......&...... |
| 12e60 | 5f 27 12 00 06 00 00 00 1c 28 12 00 0a 00 00 00 23 28 12 00 14 00 00 00 2e 28 12 00 1b 00 00 00 | _'.......(......#(.......(...... |
| 12e80 | 43 28 12 00 0c 00 00 00 5f 28 12 00 19 00 00 00 6c 28 12 00 2e 00 00 00 86 28 12 00 1d 00 00 00 | C(......_(......l(.......(...... |
| 12ea0 | b5 28 12 00 0e 00 00 00 d3 28 12 00 00 02 00 00 e2 28 12 00 ff 01 00 00 e3 2a 12 00 26 00 00 00 | .(.......(.......(.......*..&... |
| 12ec0 | e3 2c 12 00 0e 00 00 00 0a 2d 12 00 21 00 00 00 19 2d 12 00 98 00 00 00 3b 2d 12 00 07 00 00 00 | .,.......-..!....-......;-...... |
| 12ee0 | d4 2d 12 00 03 00 00 00 dc 2d 12 00 91 00 00 00 e0 2d 12 00 0a 00 00 00 72 2e 12 00 0b 00 00 00 | .-.......-.......-......r....... |
| 12f00 | 7d 2e 12 00 6a 00 00 00 89 2e 12 00 0e 00 00 00 f4 2e 12 00 08 00 00 00 03 2f 12 00 3f 00 00 00 | }...j..................../..?... |
| 12f20 | 0c 2f 12 00 2b 00 00 00 4c 2f 12 00 29 00 00 00 78 2f 12 00 35 00 00 00 a2 2f 12 00 54 00 00 00 | ./..+...L/..)...x/..5..../..T... |
| 12f40 | d8 2f 12 00 5c 00 00 00 2d 30 12 00 7b 00 00 00 8a 30 12 00 56 00 00 00 06 31 12 00 67 00 00 00 | ./..\...-0..{....0..V....1..g... |
| 12f60 | 5d 31 12 00 25 00 00 00 c5 31 12 00 3a 00 00 00 eb 31 12 00 3a 00 00 00 26 32 12 00 0d 00 00 00 | ]1..%....1..:....1..:...&2...... |
| 12f80 | 61 32 12 00 64 00 00 00 6f 32 12 00 64 00 00 00 d4 32 12 00 67 00 00 00 39 33 12 00 67 00 00 00 | a2..d...o2..d....2..g...93..g... |
| 12fa0 | a1 33 12 00 1f 00 00 00 09 34 12 00 0c 00 00 00 29 34 12 00 16 00 00 00 36 34 12 00 44 01 00 00 | .3.......4......)4......64..D... |
| 12fc0 | 4d 34 12 00 41 00 00 00 92 35 12 00 47 00 00 00 d4 35 12 00 d3 00 00 00 1c 36 12 00 3a 02 00 00 | M4..A....5..G....5.......6..:... |
| 12fe0 | f0 36 12 00 d7 00 00 00 2b 39 12 00 fe 00 00 00 03 3a 12 00 93 00 00 00 02 3b 12 00 4e 01 00 00 | .6......+9.......:.......;..N... |
| 13000 | 96 3b 12 00 30 00 00 00 e5 3c 12 00 c8 00 00 00 16 3d 12 00 ab 00 00 00 df 3d 12 00 31 00 00 00 | .;..0....<.......=.......=..1... |
| 13020 | 8b 3e 12 00 29 00 00 00 bd 3e 12 00 68 01 00 00 e7 3e 12 00 39 00 00 00 50 40 12 00 3b 01 00 00 | .>..)....>..h....>..9...P@..;... |
| 13040 | 8a 40 12 00 b2 00 00 00 c6 41 12 00 27 00 00 00 79 42 12 00 44 00 00 00 a1 42 12 00 d2 00 00 00 | .@.......A..'...yB..D....B...... |
| 13060 | e6 42 12 00 73 00 00 00 b9 43 12 00 d7 00 00 00 2d 44 12 00 9f 00 00 00 05 45 12 00 2d 01 00 00 | .B..s....C......-D.......E..-... |
| 13080 | a5 45 12 00 af 00 00 00 d3 46 12 00 cc 00 00 00 83 47 12 00 4f 00 00 00 50 48 12 00 3f 01 00 00 | .E.......F.......G..O...PH..?... |
| 130a0 | a0 48 12 00 c1 00 00 00 e0 49 12 00 59 00 00 00 a2 4a 12 00 59 00 00 00 fc 4a 12 00 21 01 00 00 | .H.......I..Y....J..Y....J..!... |
| 130c0 | 56 4b 12 00 59 00 00 00 78 4c 12 00 29 01 00 00 d2 4c 12 00 6f 00 00 00 fc 4d 12 00 8f 00 00 00 | VK..Y...xL..)....L..o....M...... |
| 130e0 | 6c 4e 12 00 8d 00 00 00 fc 4e 12 00 9e 00 00 00 8a 4f 12 00 6e 00 00 00 29 50 12 00 6c 00 00 00 | lN.......N.......O..n...)P..l... |
| 13100 | 98 50 12 00 3a 00 00 00 05 51 12 00 95 00 00 00 40 51 12 00 68 00 00 00 d6 51 12 00 58 00 00 00 | .P..:....Q......@Q..h....Q..X... |
| 13120 | 3f 52 12 00 15 01 00 00 98 52 12 00 96 00 00 00 ae 53 12 00 52 00 00 00 45 54 12 00 52 00 00 00 | ?R.......R.......S..R...ET..R... |
| 13140 | 98 54 12 00 99 00 00 00 eb 54 12 00 96 00 00 00 85 55 12 00 ec 00 00 00 1c 56 12 00 94 00 00 00 | .T.......T.......U.......V...... |
| 13160 | 09 57 12 00 9e 00 00 00 9e 57 12 00 79 00 00 00 3d 58 12 00 78 00 00 00 b7 58 12 00 50 00 00 00 | .W.......W..y...=X..x....X..P... |
| 13180 | 30 59 12 00 9e 00 00 00 81 59 12 00 13 00 00 00 20 5a 12 00 40 00 00 00 34 5a 12 00 3a 00 00 00 | 0Y.......Y.......Z..@...4Z..:... |
| 131a0 | 75 5a 12 00 98 01 00 00 b0 5a 12 00 2d 00 00 00 49 5c 12 00 39 00 00 00 77 5c 12 00 e0 00 00 00 | uZ.......Z..-...I\..9...w\...... |
| 131c0 | b1 5c 12 00 18 00 00 00 92 5d 12 00 26 00 00 00 ab 5d 12 00 57 00 00 00 d2 5d 12 00 57 00 00 00 | .\.......]..&....]..W....]..W... |
| 131e0 | 2a 5e 12 00 ad 00 00 00 82 5e 12 00 ad 00 00 00 30 5f 12 00 b5 00 00 00 de 5f 12 00 70 01 00 00 | *^.......^......0_......._..p... |
| 13200 | 94 60 12 00 1b 00 00 00 05 62 12 00 ab 01 00 00 21 62 12 00 eb 00 00 00 cd 63 12 00 bb 00 00 00 | .`.......b......!b.......c...... |
| 13220 | b9 64 12 00 bb 00 00 00 75 65 12 00 fd 00 00 00 31 66 12 00 85 00 00 00 2f 67 12 00 b5 00 00 00 | .d......ue......1f....../g...... |
| 13240 | b5 67 12 00 b5 00 00 00 6b 68 12 00 5b 00 00 00 21 69 12 00 83 00 00 00 7d 69 12 00 4b 00 00 00 | .g......kh..[...!i......}i..K... |
| 13260 | 01 6a 12 00 47 00 00 00 4d 6a 12 00 45 00 00 00 95 6a 12 00 45 00 00 00 db 6a 12 00 59 01 00 00 | .j..G...Mj..E....j..E....j..Y... |
| 13280 | 21 6b 12 00 27 00 00 00 7b 6c 12 00 f8 00 00 00 a3 6c 12 00 0c 01 00 00 9c 6d 12 00 28 02 00 00 | !k..'...{l.......l.......m..(... |
| 132a0 | a9 6e 12 00 ff 00 00 00 d2 70 12 00 61 00 00 00 d2 71 12 00 c8 00 00 00 34 72 12 00 5a 00 00 00 | .n.......p..a....q......4r..Z... |
| 132c0 | fd 72 12 00 5c 00 00 00 58 73 12 00 a9 00 00 00 b5 73 12 00 b6 00 00 00 5f 74 12 00 5e 00 00 00 | .r..\...Xs.......s......_t..^... |
| 132e0 | 16 75 12 00 d3 00 00 00 75 75 12 00 24 00 00 00 49 76 12 00 14 00 00 00 6e 76 12 00 1a 00 00 00 | .u......uu..$...Iv......nv...... |
| 13300 | 83 76 12 00 bc 00 00 00 9e 76 12 00 68 00 00 00 5b 77 12 00 1f 00 00 00 c4 77 12 00 24 00 00 00 | .v.......v..h...[w.......w..$... |
| 13320 | e4 77 12 00 bd 00 00 00 09 78 12 00 1f 00 00 00 c7 78 12 00 17 00 00 00 e7 78 12 00 21 00 00 00 | .w.......x.......x.......x..!... |
| 13340 | ff 78 12 00 21 00 00 00 21 79 12 00 22 00 00 00 43 79 12 00 40 00 00 00 66 79 12 00 1a 00 00 00 | .x..!...!y.."...Cy..@...fy...... |
| 13360 | a7 79 12 00 45 00 00 00 c2 79 12 00 17 01 00 00 08 7a 12 00 54 00 00 00 20 7b 12 00 c0 01 00 00 | .y..E....y.......z..T....{...... |
| 13380 | 75 7b 12 00 d2 01 00 00 36 7d 12 00 a2 00 00 00 09 7f 12 00 d1 00 00 00 ac 7f 12 00 e4 00 00 00 | u{......6}...................... |
| 133a0 | 7e 80 12 00 bf 00 00 00 63 81 12 00 dc 00 00 00 23 82 12 00 4e 01 00 00 00 83 12 00 45 00 00 00 | ~.......c.......#...N.......E... |
| 133c0 | 4f 84 12 00 34 00 00 00 95 84 12 00 b4 00 00 00 ca 84 12 00 f9 00 00 00 7f 85 12 00 f9 00 00 00 | O...4........................... |
| 133e0 | 79 86 12 00 c5 00 00 00 73 87 12 00 27 00 00 00 39 88 12 00 b7 00 00 00 61 88 12 00 ae 00 00 00 | y.......s...'...9.......a....... |
| 13400 | 19 89 12 00 52 00 00 00 c8 89 12 00 ab 00 00 00 1b 8a 12 00 c8 00 00 00 c7 8a 12 00 5b 00 00 00 | ....R.......................[... |
| 13420 | 90 8b 12 00 6d 00 00 00 ec 8b 12 00 ab 00 00 00 5a 8c 12 00 30 00 00 00 06 8d 12 00 35 00 00 00 | ....m...........Z...0.......5... |
| 13440 | 37 8d 12 00 68 00 00 00 6d 8d 12 00 53 00 00 00 d6 8d 12 00 33 00 00 00 2a 8e 12 00 2d 00 00 00 | 7...h...m...S.......3...*...-... |
| 13460 | 5e 8e 12 00 4e 00 00 00 8c 8e 12 00 70 00 00 00 db 8e 12 00 6c 00 00 00 4c 8f 12 00 c5 00 00 00 | ^...N.......p.......l...L....... |
| 13480 | b9 8f 12 00 b7 00 00 00 7f 90 12 00 38 00 00 00 37 91 12 00 39 00 00 00 70 91 12 00 21 01 00 00 | ............8...7...9...p...!... |
| 134a0 | aa 91 12 00 dd 00 00 00 cc 92 12 00 1e 01 00 00 aa 93 12 00 5f 01 00 00 c9 94 12 00 dc 00 00 00 | ...................._........... |
| 134c0 | 29 96 12 00 c8 00 00 00 06 97 12 00 36 00 00 00 cf 97 12 00 6e 00 00 00 06 98 12 00 91 00 00 00 | )...........6.......n........... |
| 134e0 | 75 98 12 00 8e 00 00 00 07 99 12 00 60 00 00 00 96 99 12 00 b0 00 00 00 f7 99 12 00 6e 00 00 00 | u...........`...............n... |
| 13500 | a8 9a 12 00 6b 00 00 00 17 9b 12 00 35 00 00 00 83 9b 12 00 33 00 00 00 b9 9b 12 00 f1 00 00 00 | ....k.......5.......3........... |
| 13520 | ed 9b 12 00 2b 00 00 00 df 9c 12 00 38 00 00 00 0b 9d 12 00 3a 01 00 00 44 9d 12 00 4b 00 00 00 | ....+.......8.......:...D...K... |
| 13540 | 7f 9e 12 00 53 01 00 00 cb 9e 12 00 92 01 00 00 1f a0 12 00 a1 00 00 00 b2 a1 12 00 28 00 00 00 | ....S.......................(... |
| 13560 | 54 a2 12 00 35 01 00 00 7d a2 12 00 9a 00 00 00 b3 a3 12 00 10 01 00 00 4e a4 12 00 3d 00 00 00 | T...5...}...............N...=... |
| 13580 | 5f a5 12 00 2b 00 00 00 9d a5 12 00 a6 00 00 00 c9 a5 12 00 2e 00 00 00 70 a6 12 00 3f 00 00 00 | _...+...................p...?... |
| 135a0 | 9f a6 12 00 ec 00 00 00 df a6 12 00 ee 00 00 00 cc a7 12 00 7c 00 00 00 bb a8 12 00 9a 01 00 00 | ....................|........... |
| 135c0 | 38 a9 12 00 42 00 00 00 d3 aa 12 00 82 00 00 00 16 ab 12 00 9b 00 00 00 99 ab 12 00 31 00 00 00 | 8...B.......................1... |
| 135e0 | 35 ac 12 00 b4 00 00 00 67 ac 12 00 b8 00 00 00 1c ad 12 00 63 00 00 00 d5 ad 12 00 33 00 00 00 | 5.......g...........c.......3... |
| 13600 | 39 ae 12 00 3a 00 00 00 6d ae 12 00 5e 00 00 00 a8 ae 12 00 25 01 00 00 07 af 12 00 42 00 00 00 | 9...:...m...^.......%.......B... |
| 13620 | 2d b0 12 00 5c 00 00 00 70 b0 12 00 56 00 00 00 cd b0 12 00 fe 00 00 00 24 b1 12 00 79 00 00 00 | -...\...p...V...........$...y... |
| 13640 | 23 b2 12 00 55 00 00 00 9d b2 12 00 58 00 00 00 f3 b2 12 00 cd 01 00 00 4c b3 12 00 3d 00 00 00 | #...U.......X...........L...=... |
| 13660 | 1a b5 12 00 e8 01 00 00 58 b5 12 00 40 00 00 00 41 b7 12 00 7f 00 00 00 82 b7 12 00 6c 00 00 00 | ........X...@...A...........l... |
| 13680 | 02 b8 12 00 6e 00 00 00 6f b8 12 00 e8 00 00 00 de b8 12 00 a5 00 00 00 c7 b9 12 00 6b 00 00 00 | ....n...o...................k... |
| 136a0 | 6d ba 12 00 69 01 00 00 d9 ba 12 00 34 00 00 00 43 bc 12 00 79 00 00 00 78 bc 12 00 3d 00 00 00 | m...i.......4...C...y...x...=... |
| 136c0 | f2 bc 12 00 54 00 00 00 30 bd 12 00 4c 00 00 00 85 bd 12 00 bc 00 00 00 d2 bd 12 00 ea 00 00 00 | ....T...0...L................... |
| 136e0 | 8f be 12 00 6d 00 00 00 7a bf 12 00 e6 00 00 00 e8 bf 12 00 36 00 00 00 cf c0 12 00 5b 00 00 00 | ....m...z...........6.......[... |
| 13700 | 06 c1 12 00 6a 00 00 00 62 c1 12 00 82 00 00 00 cd c1 12 00 73 00 00 00 50 c2 12 00 49 00 00 00 | ....j...b...........s...P...I... |
| 13720 | c4 c2 12 00 29 00 00 00 0e c3 12 00 2a 01 00 00 38 c3 12 00 47 00 00 00 63 c4 12 00 46 00 00 00 | ....).......*...8...G...c...F... |
| 13740 | ab c4 12 00 49 00 00 00 f2 c4 12 00 49 00 00 00 3c c5 12 00 22 00 00 00 86 c5 12 00 54 00 00 00 | ....I.......I...<...".......T... |
| 13760 | a9 c5 12 00 65 00 00 00 fe c5 12 00 32 00 00 00 64 c6 12 00 9d 00 00 00 97 c6 12 00 77 00 00 00 | ....e.......2...d...........w... |
| 13780 | 35 c7 12 00 2c 00 00 00 ad c7 12 00 42 00 00 00 da c7 12 00 2b 00 00 00 1d c8 12 00 86 01 00 00 | 5...,.......B.......+........... |
| 137a0 | 49 c8 12 00 c4 00 00 00 d0 c9 12 00 c6 00 00 00 95 ca 12 00 80 00 00 00 5c cb 12 00 49 01 00 00 | I.......................\...I... |
| 137c0 | dd cb 12 00 90 00 00 00 27 cd 12 00 38 00 00 00 b8 cd 12 00 9f 00 00 00 f1 cd 12 00 1c 01 00 00 | ........'...8................... |
| 137e0 | 91 ce 12 00 d5 00 00 00 ae cf 12 00 38 00 00 00 84 d0 12 00 28 00 00 00 bd d0 12 00 5c 00 00 00 | ............8.......(.......\... |
| 13800 | e6 d0 12 00 29 00 00 00 43 d1 12 00 71 00 00 00 6d d1 12 00 41 00 00 00 df d1 12 00 0f 01 00 00 | ....)...C...q...m...A........... |
| 13820 | 21 d2 12 00 26 00 00 00 31 d3 12 00 5c 00 00 00 58 d3 12 00 b6 00 00 00 b5 d3 12 00 fc 00 00 00 | !...&...1...\...X............... |
| 13840 | 6c d4 12 00 89 00 00 00 69 d5 12 00 25 00 00 00 f3 d5 12 00 5f 00 00 00 19 d6 12 00 ec 00 00 00 | l.......i...%......._........... |
| 13860 | 79 d6 12 00 4e 00 00 00 66 d7 12 00 84 00 00 00 b5 d7 12 00 55 00 00 00 3a d8 12 00 12 01 00 00 | y...N...f...........U...:....... |
| 13880 | 90 d8 12 00 75 00 00 00 a3 d9 12 00 65 00 00 00 19 da 12 00 e2 00 00 00 7f da 12 00 2f 00 00 00 | ....u.......e.............../... |
| 138a0 | 62 db 12 00 29 00 00 00 92 db 12 00 a0 01 00 00 bc db 12 00 9f 01 00 00 5d dd 12 00 e1 00 00 00 | b...)...................]....... |
| 138c0 | fd de 12 00 ff 00 00 00 df df 12 00 db 00 00 00 df e0 12 00 dc 00 00 00 bb e1 12 00 36 00 00 00 | ............................6... |
| 138e0 | 98 e2 12 00 40 00 00 00 cf e2 12 00 1f 00 00 00 10 e3 12 00 40 00 00 00 30 e3 12 00 4d 00 00 00 | ....@...............@...0...M... |
| 13900 | 71 e3 12 00 4c 00 00 00 bf e3 12 00 d8 00 00 00 0c e4 12 00 92 00 00 00 e5 e4 12 00 43 00 00 00 | q...L.......................C... |
| 13920 | 78 e5 12 00 af 00 00 00 bc e5 12 00 65 00 00 00 6c e6 12 00 a8 00 00 00 d2 e6 12 00 38 00 00 00 | x...........e...l...........8... |
| 13940 | 7b e7 12 00 3e 01 00 00 b4 e7 12 00 3c 00 00 00 f3 e8 12 00 90 00 00 00 30 e9 12 00 58 00 00 00 | {...>.......<...........0...X... |
| 13960 | c1 e9 12 00 95 00 00 00 1a ea 12 00 50 00 00 00 b0 ea 12 00 64 00 00 00 01 eb 12 00 50 00 00 00 | ............P.......d.......P... |
| 13980 | 66 eb 12 00 6d 00 00 00 b7 eb 12 00 3a 00 00 00 25 ec 12 00 29 00 00 00 60 ec 12 00 6d 00 00 00 | f...m.......:...%...)...`...m... |
| 139a0 | 8a ec 12 00 94 00 00 00 f8 ec 12 00 c0 00 00 00 8d ed 12 00 b8 01 00 00 4e ee 12 00 51 00 00 00 | ........................N...Q... |
| 139c0 | 07 f0 12 00 21 00 00 00 59 f0 12 00 26 00 00 00 7b f0 12 00 25 00 00 00 a2 f0 12 00 71 00 00 00 | ....!...Y...&...{...%.......q... |
| 139e0 | c8 f0 12 00 24 00 00 00 3a f1 12 00 bc 01 00 00 5f f1 12 00 55 00 00 00 1c f3 12 00 a9 00 00 00 | ....$...:......._...U........... |
| 13a00 | 72 f3 12 00 4c 00 00 00 1c f4 12 00 ee 00 00 00 69 f4 12 00 43 00 00 00 58 f5 12 00 39 00 00 00 | r...L...........i...C...X...9... |
| 13a20 | 9c f5 12 00 a9 00 00 00 d6 f5 12 00 a9 00 00 00 80 f6 12 00 50 00 00 00 2a f7 12 00 53 01 00 00 | ....................P...*...S... |
| 13a40 | 7b f7 12 00 46 00 00 00 cf f8 12 00 44 00 00 00 16 f9 12 00 43 00 00 00 5b f9 12 00 de 00 00 00 | {...F.......D.......C...[....... |
| 13a60 | 9f f9 12 00 83 00 00 00 7e fa 12 00 83 00 00 00 02 fb 12 00 39 01 00 00 86 fb 12 00 a0 00 00 00 | ........~...........9........... |
| 13a80 | c0 fc 12 00 d1 00 00 00 61 fd 12 00 61 00 00 00 33 fe 12 00 b4 00 00 00 95 fe 12 00 b7 00 00 00 | ........a...a...3............... |
| 13aa0 | 4a ff 12 00 b6 00 00 00 02 00 13 00 bb 00 00 00 b9 00 13 00 a1 00 00 00 75 01 13 00 5c 00 00 00 | J.......................u...\... |
| 13ac0 | 17 02 13 00 58 00 00 00 74 02 13 00 5c 00 00 00 cd 02 13 00 58 00 00 00 2a 03 13 00 71 00 00 00 | ....X...t...\.......X...*...q... |
| 13ae0 | 83 03 13 00 5e 00 00 00 f5 03 13 00 21 01 00 00 54 04 13 00 13 01 00 00 76 05 13 00 12 01 00 00 | ....^.......!...T.......v....... |
| 13b00 | 8a 06 13 00 09 01 00 00 9d 07 13 00 40 00 00 00 a7 08 13 00 a3 00 00 00 e8 08 13 00 a3 00 00 00 | ............@................... |
| 13b20 | 8c 09 13 00 9f 00 00 00 30 0a 13 00 9f 00 00 00 d0 0a 13 00 bb 00 00 00 70 0b 13 00 b4 00 00 00 | ........0...............p....... |
| 13b40 | 2c 0c 13 00 54 00 00 00 e1 0c 13 00 bc 00 00 00 36 0d 13 00 56 00 00 00 f3 0d 13 00 be 00 00 00 | ,...T...........6...V........... |
| 13b60 | 4a 0e 13 00 4e 00 00 00 09 0f 13 00 cf 01 00 00 58 0f 13 00 29 01 00 00 28 11 13 00 63 00 00 00 | J...N...........X...)...(...c... |
| 13b80 | 52 12 13 00 46 00 00 00 b6 12 13 00 7e 00 00 00 fd 12 13 00 3c 00 00 00 7c 13 13 00 db 00 00 00 | R...F.......~.......<...|....... |
| 13ba0 | b9 13 13 00 42 00 00 00 95 14 13 00 4e 00 00 00 d8 14 13 00 4e 00 00 00 27 15 13 00 49 00 00 00 | ....B.......N.......N...'...I... |
| 13bc0 | 76 15 13 00 49 00 00 00 c0 15 13 00 43 00 00 00 0a 16 13 00 4b 00 00 00 4e 16 13 00 64 00 00 00 | v...I.......C.......K...N...d... |
| 13be0 | 9a 16 13 00 46 00 00 00 ff 16 13 00 84 00 00 00 46 17 13 00 7c 00 00 00 cb 17 13 00 86 00 00 00 | ....F...........F...|........... |
| 13c00 | 48 18 13 00 2f 00 00 00 cf 18 13 00 79 00 00 00 ff 18 13 00 76 00 00 00 79 19 13 00 81 00 00 00 | H.../.......y.......v...y....... |
| 13c20 | f0 19 13 00 46 01 00 00 72 1a 13 00 71 00 00 00 b9 1b 13 00 66 00 00 00 2b 1c 13 00 3f 00 00 00 | ....F...r...q.......f...+...?... |
| 13c40 | 92 1c 13 00 88 00 00 00 d2 1c 13 00 da 00 00 00 5b 1d 13 00 19 00 00 00 36 1e 13 00 90 01 00 00 | ................[.......6....... |
| 13c60 | 50 1e 13 00 a5 00 00 00 e1 1f 13 00 43 00 00 00 87 20 13 00 2a 00 00 00 cb 20 13 00 4c 00 00 00 | P...........C.......*.......L... |
| 13c80 | f6 20 13 00 3a 00 00 00 43 21 13 00 4e 00 00 00 7e 21 13 00 b0 00 00 00 cd 21 13 00 2a 00 00 00 | ....:...C!..N...~!.......!..*... |
| 13ca0 | 7e 22 13 00 21 00 00 00 a9 22 13 00 51 00 00 00 cb 22 13 00 45 00 00 00 1d 23 13 00 5f 00 00 00 | ~"..!...."..Q...."..E....#.._... |
| 13cc0 | 63 23 13 00 37 00 00 00 c3 23 13 00 41 00 00 00 fb 23 13 00 44 00 00 00 3d 24 13 00 6a 00 00 00 | c#..7....#..A....#..D...=$..j... |
| 13ce0 | 82 24 13 00 3c 00 00 00 ed 24 13 00 56 00 00 00 2a 25 13 00 4a 00 00 00 81 25 13 00 ee 00 00 00 | .$..<....$..V...*%..J....%...... |
| 13d00 | cc 25 13 00 47 00 00 00 bb 26 13 00 7a 00 00 00 03 27 13 00 d2 00 00 00 7e 27 13 00 5f 00 00 00 | .%..G....&..z....'......~'.._... |
| 13d20 | 51 28 13 00 d5 00 00 00 b1 28 13 00 39 00 00 00 87 29 13 00 70 00 00 00 c1 29 13 00 5d 00 00 00 | Q(.......(..9....)..p....)..]... |
| 13d40 | 32 2a 13 00 55 00 00 00 90 2a 13 00 2b 00 00 00 e6 2a 13 00 38 00 00 00 12 2b 13 00 46 00 00 00 | 2*..U....*..+....*..8....+..F... |
| 13d60 | 4b 2b 13 00 4c 00 00 00 92 2b 13 00 62 00 00 00 df 2b 13 00 41 00 00 00 42 2c 13 00 55 01 00 00 | K+..L....+..b....+..A...B,..U... |
| 13d80 | 84 2c 13 00 c0 00 00 00 da 2d 13 00 b6 00 00 00 9b 2e 13 00 94 00 00 00 52 2f 13 00 8d 00 00 00 | .,.......-..............R/...... |
| 13da0 | e7 2f 13 00 d5 00 00 00 75 30 13 00 7e 00 00 00 4b 31 13 00 a4 00 00 00 ca 31 13 00 a6 00 00 00 | ./......u0..~...K1.......1...... |
| 13dc0 | 6f 32 13 00 a2 00 00 00 16 33 13 00 a2 00 00 00 b9 33 13 00 c7 01 00 00 5c 34 13 00 39 00 00 00 | o2.......3.......3......\4..9... |
| 13de0 | 24 36 13 00 32 01 00 00 5e 36 13 00 a8 00 00 00 91 37 13 00 79 00 00 00 3a 38 13 00 33 00 00 00 | $6..2...^6.......7..y...:8..3... |
| 13e00 | b4 38 13 00 90 00 00 00 e8 38 13 00 b0 00 00 00 79 39 13 00 63 00 00 00 2a 3a 13 00 b3 00 00 00 | .8.......8......y9..c...*:...... |
| 13e20 | 8e 3a 13 00 d6 00 00 00 42 3b 13 00 2c 00 00 00 19 3c 13 00 52 00 00 00 46 3c 13 00 6e 00 00 00 | .:......B;..,....<..R...F<..n... |
| 13e40 | 99 3c 13 00 4d 01 00 00 08 3d 13 00 3b 00 00 00 56 3e 13 00 ad 00 00 00 92 3e 13 00 7b 02 00 00 | .<..M....=..;...V>.......>..{... |
| 13e60 | 40 3f 13 00 54 01 00 00 bc 41 13 00 53 00 00 00 11 43 13 00 4b 00 00 00 65 43 13 00 04 01 00 00 | @?..T....A..S....C..K...eC...... |
| 13e80 | b1 43 13 00 eb 00 00 00 b6 44 13 00 c8 00 00 00 a2 45 13 00 c8 00 00 00 6b 46 13 00 b6 00 00 00 | .C.......D.......E......kF...... |
| 13ea0 | 34 47 13 00 bb 00 00 00 eb 47 13 00 60 00 00 00 a7 48 13 00 b5 00 00 00 08 49 13 00 b9 00 00 00 | 4G.......G..`....H.......I...... |
| 13ec0 | be 49 13 00 9b 00 00 00 78 4a 13 00 0a 01 00 00 14 4b 13 00 01 01 00 00 1f 4c 13 00 38 00 00 00 | .I......xJ.......K.......L..8... |
| 13ee0 | 21 4d 13 00 3b 00 00 00 5a 4d 13 00 45 00 00 00 96 4d 13 00 2c 00 00 00 dc 4d 13 00 70 00 00 00 | !M..;...ZM..E....M..,....M..p... |
| 13f00 | 09 4e 13 00 4e 00 00 00 7a 4e 13 00 6e 00 00 00 c9 4e 13 00 7c 01 00 00 38 4f 13 00 7c 01 00 00 | .N..N...zN..n....N..|...8O..|... |
| 13f20 | b5 50 13 00 71 01 00 00 32 52 13 00 54 00 00 00 a4 53 13 00 90 00 00 00 f9 53 13 00 4b 00 00 00 | .P..q...2R..T....S.......S..K... |
| 13f40 | 8a 54 13 00 6d 00 00 00 d6 54 13 00 11 01 00 00 44 55 13 00 4e 00 00 00 56 56 13 00 7b 00 00 00 | .T..m....T......DU..N...VV..{... |
| 13f60 | a5 56 13 00 50 00 00 00 21 57 13 00 58 00 00 00 72 57 13 00 b1 00 00 00 cb 57 13 00 a9 00 00 00 | .V..P...!W..X...rW.......W...... |
| 13f80 | 7d 58 13 00 74 00 00 00 27 59 13 00 72 00 00 00 9c 59 13 00 88 00 00 00 0f 5a 13 00 6c 00 00 00 | }X..t...'Y..r....Y.......Z..l... |
| 13fa0 | 98 5a 13 00 60 00 00 00 05 5b 13 00 44 00 00 00 66 5b 13 00 17 01 00 00 ab 5b 13 00 ff 00 00 00 | .Z..`....[..D...f[.......[...... |
| 13fc0 | c3 5c 13 00 44 00 00 00 c3 5d 13 00 87 00 00 00 08 5e 13 00 50 00 00 00 90 5e 13 00 70 00 00 00 | .\..D....].......^..P....^..p... |
| 13fe0 | e1 5e 13 00 87 00 00 00 52 5f 13 00 65 00 00 00 da 5f 13 00 40 00 00 00 40 60 13 00 6e 00 00 00 | .^......R_..e...._..@...@`..n... |
| 14000 | 81 60 13 00 64 00 00 00 f0 60 13 00 59 02 00 00 55 61 13 00 88 00 00 00 af 63 13 00 25 00 00 00 | .`..d....`..Y...Ua.......c..%... |
| 14020 | 38 64 13 00 88 00 00 00 5e 64 13 00 a5 00 00 00 e7 64 13 00 57 01 00 00 8d 65 13 00 32 01 00 00 | 8d......^d.......d..W....e..2... |
| 14040 | e5 66 13 00 49 01 00 00 18 68 13 00 51 01 00 00 62 69 13 00 fb 00 00 00 b4 6a 13 00 28 00 00 00 | .f..I....h..Q...bi.......j..(... |
| 14060 | b0 6b 13 00 95 00 00 00 d9 6b 13 00 af 00 00 00 6f 6c 13 00 af 00 00 00 1f 6d 13 00 76 00 00 00 | .k.......k......ol.......m..v... |
| 14080 | cf 6d 13 00 a6 00 00 00 46 6e 13 00 84 01 00 00 ed 6e 13 00 6a 00 00 00 72 70 13 00 b9 00 00 00 | .m......Fn.......n..j...rp...... |
| 140a0 | dd 70 13 00 0f 01 00 00 97 71 13 00 36 00 00 00 a7 72 13 00 a5 00 00 00 de 72 13 00 a7 00 00 00 | .p.......q..6....r.......r...... |
| 140c0 | 84 73 13 00 7b 00 00 00 2c 74 13 00 67 00 00 00 a8 74 13 00 32 00 00 00 10 75 13 00 fe 00 00 00 | .s..{...,t..g....t..2....u...... |
| 140e0 | 43 75 13 00 9d 00 00 00 42 76 13 00 bb 00 00 00 e0 76 13 00 77 00 00 00 9c 77 13 00 bf 00 00 00 | Cu......Bv.......v..w....w...... |
| 14100 | 14 78 13 00 c7 00 00 00 d4 78 13 00 cc 00 00 00 9c 79 13 00 d1 00 00 00 69 7a 13 00 2d 04 00 00 | .x.......x.......y......iz..-... |
| 14120 | 3b 7b 13 00 5d 00 00 00 69 7f 13 00 e3 00 00 00 c7 7f 13 00 cf 00 00 00 ab 80 13 00 07 01 00 00 | ;{..]...i....................... |
| 14140 | 7b 81 13 00 10 01 00 00 83 82 13 00 9c 00 00 00 94 83 13 00 8a 00 00 00 31 84 13 00 97 00 00 00 | {.......................1....... |
| 14160 | bc 84 13 00 40 00 00 00 54 85 13 00 f0 00 00 00 95 85 13 00 0b 01 00 00 86 86 13 00 37 01 00 00 | ....@...T...................7... |
| 14180 | 92 87 13 00 75 01 00 00 ca 88 13 00 97 01 00 00 40 8a 13 00 f0 00 00 00 d8 8b 13 00 01 01 00 00 | ....u...........@............... |
| 141a0 | c9 8c 13 00 aa 00 00 00 cb 8d 13 00 69 00 00 00 76 8e 13 00 6b 00 00 00 e0 8e 13 00 df 00 00 00 | ............i...v...k........... |
| 141c0 | 4c 8f 13 00 44 00 00 00 2c 90 13 00 ec 00 00 00 71 90 13 00 86 00 00 00 5e 91 13 00 d5 00 00 00 | L...D...,.......q.......^....... |
| 141e0 | e5 91 13 00 b9 00 00 00 bb 92 13 00 a6 00 00 00 75 93 13 00 c8 00 00 00 1c 94 13 00 71 00 00 00 | ................u...........q... |
| 14200 | e5 94 13 00 2c 01 00 00 57 95 13 00 84 00 00 00 84 96 13 00 00 01 00 00 09 97 13 00 e5 00 00 00 | ....,...W....................... |
| 14220 | 0a 98 13 00 2d 01 00 00 f0 98 13 00 12 01 00 00 1e 9a 13 00 f2 00 00 00 31 9b 13 00 a4 00 00 00 | ....-...................1....... |
| 14240 | 24 9c 13 00 90 01 00 00 c9 9c 13 00 a2 00 00 00 5a 9e 13 00 b3 01 00 00 fd 9e 13 00 53 00 00 00 | $...............Z...........S... |
| 14260 | b1 a0 13 00 5f 00 00 00 05 a1 13 00 80 00 00 00 65 a1 13 00 81 00 00 00 e6 a1 13 00 8f 00 00 00 | ...._...........e............... |
| 14280 | 68 a2 13 00 7b 00 00 00 f8 a2 13 00 7a 00 00 00 74 a3 13 00 f3 00 00 00 ef a3 13 00 f2 00 00 00 | h...{.......z...t............... |
| 142a0 | e3 a4 13 00 3a 00 00 00 d6 a5 13 00 3a 00 00 00 11 a6 13 00 41 00 00 00 4c a6 13 00 67 00 00 00 | ....:.......:.......A...L...g... |
| 142c0 | 8e a6 13 00 42 00 00 00 f6 a6 13 00 38 00 00 00 39 a7 13 00 53 00 00 00 72 a7 13 00 5c 00 00 00 | ....B.......8...9...S...r...\... |
| 142e0 | c6 a7 13 00 e1 01 00 00 23 a8 13 00 bb 00 00 00 05 aa 13 00 41 00 00 00 c1 aa 13 00 e7 00 00 00 | ........#...........A........... |
| 14300 | 03 ab 13 00 21 01 00 00 eb ab 13 00 4d 00 00 00 0d ad 13 00 96 00 00 00 5b ad 13 00 80 00 00 00 | ....!.......M...........[....... |
| 14320 | f2 ad 13 00 e5 00 00 00 73 ae 13 00 da 00 00 00 59 af 13 00 a4 00 00 00 34 b0 13 00 66 00 00 00 | ........s.......Y.......4...f... |
| 14340 | d9 b0 13 00 ad 00 00 00 40 b1 13 00 17 00 00 00 ee b1 13 00 16 00 00 00 06 b2 13 00 16 00 00 00 | ........@....................... |
| 14360 | 1d b2 13 00 1c 00 00 00 34 b2 13 00 1d 00 00 00 51 b2 13 00 14 00 00 00 6f b2 13 00 13 00 00 00 | ........4.......Q.......o....... |
| 14380 | 84 b2 13 00 14 00 00 00 98 b2 13 00 22 00 00 00 ad b2 13 00 3f 00 00 00 d0 b2 13 00 16 00 00 00 | ............".......?........... |
| 143a0 | 10 b3 13 00 52 00 00 00 27 b3 13 00 89 00 00 00 7a b3 13 00 4b 00 00 00 04 b4 13 00 0d 01 00 00 | ....R...'.......z...K........... |
| 143c0 | 50 b4 13 00 41 00 00 00 5e b5 13 00 6d 00 00 00 a0 b5 13 00 8d 00 00 00 0e b6 13 00 6a 00 00 00 | P...A...^...m...............j... |
| 143e0 | 9c b6 13 00 32 00 00 00 07 b7 13 00 61 00 00 00 3a b7 13 00 8d 00 00 00 9c b7 13 00 8e 00 00 00 | ....2.......a...:............... |
| 14400 | 2a b8 13 00 47 00 00 00 b9 b8 13 00 40 00 00 00 01 b9 13 00 6c 00 00 00 42 b9 13 00 4c 00 00 00 | *...G.......@.......l...B...L... |
| 14420 | af b9 13 00 3f 00 00 00 fc b9 13 00 2a 00 00 00 3c ba 13 00 00 01 00 00 67 ba 13 00 1c 01 00 00 | ....?.......*...<.......g....... |
| 14440 | 68 bb 13 00 a2 00 00 00 85 bc 13 00 97 00 00 00 28 bd 13 00 59 00 00 00 c0 bd 13 00 62 00 00 00 | h...............(...Y.......b... |
| 14460 | 1a be 13 00 1a 00 00 00 7d be 13 00 1c 00 00 00 98 be 13 00 bb 00 00 00 b5 be 13 00 32 00 00 00 | ........}...................2... |
| 14480 | 71 bf 13 00 73 00 00 00 a4 bf 13 00 61 00 00 00 18 c0 13 00 76 00 00 00 7a c0 13 00 47 00 00 00 | q...s.......a.......v...z...G... |
| 144a0 | f1 c0 13 00 43 01 00 00 39 c1 13 00 7d 00 00 00 7d c2 13 00 e5 00 00 00 fb c2 13 00 11 00 00 00 | ....C...9...}...}............... |
| 144c0 | e1 c3 13 00 63 00 00 00 f3 c3 13 00 c6 00 00 00 57 c4 13 00 8e 00 00 00 1e c5 13 00 2a 00 00 00 | ....c...........W...........*... |
| 144e0 | ad c5 13 00 98 00 00 00 d8 c5 13 00 bd 00 00 00 71 c6 13 00 44 00 00 00 2f c7 13 00 a0 00 00 00 | ................q...D.../....... |
| 14500 | 74 c7 13 00 ca 00 00 00 15 c8 13 00 c9 00 00 00 e0 c8 13 00 41 00 00 00 aa c9 13 00 76 00 00 00 | t...................A.......v... |
| 14520 | ec c9 13 00 c7 00 00 00 63 ca 13 00 58 00 00 00 2b cb 13 00 23 00 00 00 84 cb 13 00 76 00 00 00 | ........c...X...+...#.......v... |
| 14540 | a8 cb 13 00 36 00 00 00 1f cc 13 00 97 00 00 00 56 cc 13 00 c0 00 00 00 ee cc 13 00 8b 00 00 00 | ....6...........V............... |
| 14560 | af cd 13 00 2c 00 00 00 3b ce 13 00 2b 00 00 00 68 ce 13 00 2e 00 00 00 94 ce 13 00 33 00 00 00 | ....,...;...+...h...........3... |
| 14580 | c3 ce 13 00 fc 00 00 00 f7 ce 13 00 e9 00 00 00 f4 cf 13 00 31 00 00 00 de d0 13 00 26 00 00 00 | ....................1.......&... |
| 145a0 | 10 d1 13 00 4d 00 00 00 37 d1 13 00 60 00 00 00 85 d1 13 00 20 01 00 00 e6 d1 13 00 1d 00 00 00 | ....M...7...`................... |
| 145c0 | 07 d3 13 00 89 00 00 00 25 d3 13 00 be 00 00 00 af d3 13 00 60 01 00 00 6e d4 13 00 80 00 00 00 | ........%...........`...n....... |
| 145e0 | cf d5 13 00 78 00 00 00 50 d6 13 00 7e 00 00 00 c9 d6 13 00 7b 00 00 00 48 d7 13 00 29 00 00 00 | ....x...P...~.......{...H...)... |
| 14600 | c4 d7 13 00 e9 00 00 00 ee d7 13 00 3d 00 00 00 d8 d8 13 00 6f 00 00 00 16 d9 13 00 3b 00 00 00 | ............=.......o.......;... |
| 14620 | 86 d9 13 00 a5 00 00 00 c2 d9 13 00 2d 01 00 00 68 da 13 00 2c 01 00 00 96 db 13 00 dd 00 00 00 | ............-...h...,........... |
| 14640 | c3 dc 13 00 64 00 00 00 a1 dd 13 00 d6 00 00 00 06 de 13 00 42 01 00 00 dd de 13 00 41 01 00 00 | ....d...............B.......A... |
| 14660 | 20 e0 13 00 be 00 00 00 62 e1 13 00 40 00 00 00 21 e2 13 00 77 00 00 00 62 e2 13 00 79 00 00 00 | ........b...@...!...w...b...y... |
| 14680 | da e2 13 00 76 00 00 00 54 e3 13 00 79 00 00 00 cb e3 13 00 6f 00 00 00 45 e4 13 00 d3 00 00 00 | ....v...T...y.......o...E....... |
| 146a0 | b5 e4 13 00 41 00 00 00 89 e5 13 00 14 00 00 00 cb e5 13 00 23 01 00 00 e0 e5 13 00 9d 01 00 00 | ....A...............#........... |
| 146c0 | 04 e7 13 00 48 00 00 00 a2 e8 13 00 2c 00 00 00 eb e8 13 00 bb 00 00 00 18 e9 13 00 23 00 00 00 | ....H.......,...............#... |
| 146e0 | d4 e9 13 00 3d 00 00 00 f8 e9 13 00 42 00 00 00 36 ea 13 00 5b 00 00 00 79 ea 13 00 6b 00 00 00 | ....=.......B...6...[...y...k... |
| 14700 | d5 ea 13 00 30 00 00 00 41 eb 13 00 3d 00 00 00 72 eb 13 00 2c 00 00 00 b0 eb 13 00 56 00 00 00 | ....0...A...=...r...,.......V... |
| 14720 | dd eb 13 00 56 00 00 00 34 ec 13 00 54 00 00 00 8b ec 13 00 38 00 00 00 e0 ec 13 00 3d 00 00 00 | ....V...4...T.......8.......=... |
| 14740 | 19 ed 13 00 3a 00 00 00 57 ed 13 00 3c 00 00 00 92 ed 13 00 44 00 00 00 cf ed 13 00 34 00 00 00 | ....:...W...<.......D.......4... |
| 14760 | 14 ee 13 00 32 01 00 00 49 ee 13 00 30 00 00 00 7c ef 13 00 dd 00 00 00 ad ef 13 00 09 00 00 00 | ....2...I...0...|............... |
| 14780 | 8b f0 13 00 d6 00 00 00 95 f0 13 00 49 00 00 00 6c f1 13 00 47 00 00 00 b6 f1 13 00 44 00 00 00 | ............I...l...G.......D... |
| 147a0 | fe f1 13 00 4a 00 00 00 43 f2 13 00 26 00 00 00 8e f2 13 00 1f 00 00 00 b5 f2 13 00 74 00 00 00 | ....J...C...&...............t... |
| 147c0 | d5 f2 13 00 3d 00 00 00 4a f3 13 00 12 00 00 00 88 f3 13 00 30 00 00 00 9b f3 13 00 45 00 00 00 | ....=...J...........0.......E... |
| 147e0 | cc f3 13 00 2e 00 00 00 12 f4 13 00 06 00 00 00 41 f4 13 00 65 00 00 00 48 f4 13 00 4e 00 00 00 | ................A...e...H...N... |
| 14800 | ae f4 13 00 b1 00 00 00 fd f4 13 00 9b 00 00 00 af f5 13 00 91 00 00 00 4b f6 13 00 ae 00 00 00 | ........................K....... |
| 14820 | dd f6 13 00 22 00 00 00 8c f7 13 00 aa 00 00 00 af f7 13 00 39 01 00 00 5a f8 13 00 5c 00 00 00 | ...."...............9...Z...\... |
| 14840 | 94 f9 13 00 75 00 00 00 f1 f9 13 00 7d 00 00 00 67 fa 13 00 74 00 00 00 e5 fa 13 00 58 00 00 00 | ....u.......}...g...t.......X... |
| 14860 | 5a fb 13 00 5c 00 00 00 b3 fb 13 00 6f 00 00 00 10 fc 13 00 99 00 00 00 80 fc 13 00 9d 00 00 00 | Z...\.......o................... |
| 14880 | 1a fd 13 00 80 00 00 00 b8 fd 13 00 84 00 00 00 39 fe 13 00 54 00 00 00 be fe 13 00 4c 00 00 00 | ................9...T.......L... |
| 148a0 | 13 ff 13 00 51 00 00 00 60 ff 13 00 d7 00 00 00 b2 ff 13 00 68 00 00 00 8a 00 14 00 62 00 00 00 | ....Q...`...........h.......b... |
| 148c0 | f3 00 14 00 5e 00 00 00 56 01 14 00 3c 00 00 00 b5 01 14 00 77 00 00 00 f2 01 14 00 40 00 00 00 | ....^...V...<.......w.......@... |
| 148e0 | 6a 02 14 00 d7 00 00 00 ab 02 14 00 b3 00 00 00 83 03 14 00 66 00 00 00 37 04 14 00 37 00 00 00 | j...................f...7...7... |
| 14900 | 9e 04 14 00 6a 00 00 00 d6 04 14 00 42 00 00 00 41 05 14 00 3d 00 00 00 84 05 14 00 38 00 00 00 | ....j.......B...A...=.......8... |
| 14920 | c2 05 14 00 3d 00 00 00 fb 05 14 00 40 00 00 00 39 06 14 00 48 01 00 00 7a 06 14 00 4a 01 00 00 | ....=.......@...9...H...z...J... |
| 14940 | c3 07 14 00 52 00 00 00 0e 09 14 00 51 00 00 00 61 09 14 00 d9 00 00 00 b3 09 14 00 c9 00 00 00 | ....R.......Q...a............... |
| 14960 | 8d 0a 14 00 4f 00 00 00 57 0b 14 00 67 00 00 00 a7 0b 14 00 8d 00 00 00 0f 0c 14 00 49 00 00 00 | ....O...W...g...............I... |
| 14980 | 9d 0c 14 00 a0 01 00 00 e7 0c 14 00 87 00 00 00 88 0e 14 00 5f 00 00 00 10 0f 14 00 fa 00 00 00 | ...................._........... |
| 149a0 | 70 0f 14 00 54 00 00 00 6b 10 14 00 25 00 00 00 c0 10 14 00 49 00 00 00 e6 10 14 00 92 00 00 00 | p...T...k...%.......I........... |
| 149c0 | 30 11 14 00 54 00 00 00 c3 11 14 00 96 00 00 00 18 12 14 00 d0 00 00 00 af 12 14 00 2a 00 00 00 | 0...T.......................*... |
| 149e0 | 80 13 14 00 1c 00 00 00 ab 13 14 00 1f 00 00 00 c8 13 14 00 32 00 00 00 e8 13 14 00 12 01 00 00 | ....................2........... |
| 14a00 | 1b 14 14 00 71 00 00 00 2e 15 14 00 5f 00 00 00 a0 15 14 00 69 00 00 00 00 16 14 00 a5 00 00 00 | ....q......._.......i........... |
| 14a20 | 6a 16 14 00 a7 00 00 00 10 17 14 00 45 00 00 00 b8 17 14 00 09 00 00 00 fe 17 14 00 2c 00 00 00 | j...........E...............,... |
| 14a40 | 08 18 14 00 1f 00 00 00 35 18 14 00 0e 00 00 00 55 18 14 00 05 00 00 00 64 18 14 00 83 00 00 00 | ........5.......U.......d....... |
| 14a60 | 6a 18 14 00 44 02 00 00 ee 18 14 00 dc 00 00 00 33 1b 14 00 8a 01 00 00 10 1c 14 00 8e 01 00 00 | j...D...........3............... |
| 14a80 | 9b 1d 14 00 0f 00 00 00 2a 1f 14 00 93 00 00 00 3a 1f 14 00 13 00 00 00 ce 1f 14 00 0e 00 00 00 | ........*.......:............... |
| 14aa0 | e2 1f 14 00 60 00 00 00 f1 1f 14 00 5e 00 00 00 52 20 14 00 a6 00 00 00 b1 20 14 00 9e 00 00 00 | ....`.......^...R............... |
| 14ac0 | 58 21 14 00 97 00 00 00 f7 21 14 00 19 00 00 00 8f 22 14 00 b8 00 00 00 a9 22 14 00 71 01 00 00 | X!.......!......."......."..q... |
| 14ae0 | 62 23 14 00 12 00 00 00 d4 24 14 00 60 01 00 00 e7 24 14 00 11 00 00 00 48 26 14 00 0f 00 00 00 | b#.......$..`....$......H&...... |
| 14b00 | 5a 26 14 00 0f 00 00 00 6a 26 14 00 06 00 00 00 7a 26 14 00 0b 00 00 00 81 26 14 00 35 00 00 00 | Z&......j&......z&.......&..5... |
| 14b20 | 8d 26 14 00 27 00 00 00 c3 26 14 00 28 00 00 00 eb 26 14 00 44 00 00 00 14 27 14 00 60 00 00 00 | .&..'....&..(....&..D....'..`... |
| 14b40 | 59 27 14 00 63 00 00 00 ba 27 14 00 3f 00 00 00 1e 28 14 00 5f 00 00 00 5e 28 14 00 25 01 00 00 | Y'..c....'..?....(.._...^(..%... |
| 14b60 | be 28 14 00 e1 00 00 00 e4 29 14 00 7c 00 00 00 c6 2a 14 00 13 00 00 00 43 2b 14 00 1f 00 00 00 | .(.......)..|....*......C+...... |
| 14b80 | 57 2b 14 00 17 00 00 00 77 2b 14 00 15 00 00 00 8f 2b 14 00 12 00 00 00 a5 2b 14 00 29 00 00 00 | W+......w+.......+.......+..)... |
| 14ba0 | b8 2b 14 00 0d 00 00 00 e2 2b 14 00 38 00 00 00 f0 2b 14 00 af 00 00 00 29 2c 14 00 0e 00 00 00 | .+.......+..8....+......),...... |
| 14bc0 | d9 2c 14 00 a3 01 00 00 e8 2c 14 00 07 00 00 00 8c 2e 14 00 0c 00 00 00 94 2e 14 00 0d 00 00 00 | .,.......,...................... |
| 14be0 | a1 2e 14 00 1b 00 00 00 af 2e 14 00 05 00 00 00 cb 2e 14 00 46 01 00 00 d1 2e 14 00 9b 01 00 00 | ....................F........... |
| 14c00 | 18 30 14 00 06 00 00 00 b4 31 14 00 16 00 00 00 bb 31 14 00 15 00 00 00 d2 31 14 00 07 00 00 00 | .0.......1.......1.......1...... |
| 14c20 | e8 31 14 00 9c 00 00 00 f0 31 14 00 15 00 00 00 8d 32 14 00 2e 00 00 00 a3 32 14 00 49 00 00 00 | .1.......1.......2.......2..I... |
| 14c40 | d2 32 14 00 e2 00 00 00 1c 33 14 00 58 00 00 00 ff 33 14 00 23 00 00 00 58 34 14 00 22 00 00 00 | .2.......3..X....3..#...X4.."... |
| 14c60 | 7c 34 14 00 15 00 00 00 9f 34 14 00 14 00 00 00 b5 34 14 00 66 00 00 00 ca 34 14 00 25 00 00 00 | |4.......4.......4..f....4..%... |
| 14c80 | 31 35 14 00 26 00 00 00 57 35 14 00 0f 00 00 00 7e 35 14 00 20 00 00 00 8e 35 14 00 13 00 00 00 | 15..&...W5......~5.......5...... |
| 14ca0 | af 35 14 00 39 00 00 00 c3 35 14 00 59 00 00 00 fd 35 14 00 3e 00 00 00 57 36 14 00 00 01 00 00 | .5..9....5..Y....5..>...W6...... |
| 14cc0 | 96 36 14 00 55 00 00 00 97 37 14 00 6f 00 00 00 ed 37 14 00 54 00 00 00 5d 38 14 00 6e 00 00 00 | .6..U....7..o....7..T...]8..n... |
| 14ce0 | b2 38 14 00 5d 00 00 00 21 39 14 00 77 00 00 00 7f 39 14 00 51 00 00 00 f7 39 14 00 6b 00 00 00 | .8..]...!9..w....9..Q....9..k... |
| 14d00 | 49 3a 14 00 55 00 00 00 b5 3a 14 00 6f 00 00 00 0b 3b 14 00 52 00 00 00 7b 3b 14 00 6c 00 00 00 | I:..U....:..o....;..R...{;..l... |
| 14d20 | ce 3b 14 00 1a 00 00 00 3b 3c 14 00 44 00 00 00 56 3c 14 00 36 00 00 00 9b 3c 14 00 46 00 00 00 | .;......;<..D...V<..6....<..F... |
| 14d40 | d2 3c 14 00 2c 00 00 00 19 3d 14 00 22 00 00 00 46 3d 14 00 88 00 00 00 69 3d 14 00 30 00 00 00 | .<..,....=.."...F=......i=..0... |
| 14d60 | f2 3d 14 00 43 00 00 00 23 3e 14 00 18 00 00 00 67 3e 14 00 28 00 00 00 80 3e 14 00 2f 00 00 00 | .=..C...#>......g>..(....>../... |
| 14d80 | a9 3e 14 00 7f 00 00 00 d9 3e 14 00 68 00 00 00 59 3f 14 00 8c 00 00 00 c2 3f 14 00 9a 00 00 00 | .>.......>..h...Y?.......?...... |
| 14da0 | 4f 40 14 00 8a 00 00 00 ea 40 14 00 78 00 00 00 75 41 14 00 59 00 00 00 ee 41 14 00 4f 00 00 00 | O@.......@..x...uA..Y....A..O... |
| 14dc0 | 48 42 14 00 19 01 00 00 98 42 14 00 24 01 00 00 b2 43 14 00 22 01 00 00 d7 44 14 00 08 01 00 00 | HB.......B..$....C.."....D...... |
| 14de0 | fa 45 14 00 f8 00 00 00 03 47 14 00 f7 00 00 00 fc 47 14 00 f9 00 00 00 f4 48 14 00 f7 00 00 00 | .E.......G.......G.......H...... |
| 14e00 | ee 49 14 00 fc 00 00 00 e6 4a 14 00 f7 00 00 00 e3 4b 14 00 fc 00 00 00 db 4c 14 00 f7 00 00 00 | .I.......J.......K.......L...... |
| 14e20 | d8 4d 14 00 c4 00 00 00 d0 4e 14 00 a1 00 00 00 95 4f 14 00 73 00 00 00 37 50 14 00 f8 00 00 00 | .M.......N.......O..s...7P...... |
| 14e40 | ab 50 14 00 4e 00 00 00 a4 51 14 00 99 00 00 00 f3 51 14 00 4b 00 00 00 8d 52 14 00 5b 00 00 00 | .P..N....Q.......Q..K....R..[... |
| 14e60 | d9 52 14 00 40 00 00 00 35 53 14 00 99 00 00 00 76 53 14 00 4a 00 00 00 10 54 14 00 4a 00 00 00 | .R..@...5S......vS..J....T..J... |
| 14e80 | 5b 54 14 00 50 00 00 00 a6 54 14 00 47 00 00 00 f7 54 14 00 44 01 00 00 3f 55 14 00 45 01 00 00 | [T..P....T..G....T..D...?U..E... |
| 14ea0 | 84 56 14 00 44 01 00 00 ca 57 14 00 49 01 00 00 0f 59 14 00 44 01 00 00 59 5a 14 00 45 01 00 00 | .V..D....W..I....Y..D...YZ..E... |
| 14ec0 | 9e 5b 14 00 44 01 00 00 e4 5c 14 00 3c 01 00 00 29 5e 14 00 a0 00 00 00 66 5f 14 00 30 01 00 00 | .[..D....\..<...)^......f_..0... |
| 14ee0 | 07 60 14 00 50 01 00 00 38 61 14 00 d1 00 00 00 89 62 14 00 23 01 00 00 5b 63 14 00 08 01 00 00 | .`..P...8a.......b..#...[c...... |
| 14f00 | 7f 64 14 00 29 01 00 00 88 65 14 00 2f 01 00 00 b2 66 14 00 da 00 00 00 e2 67 14 00 34 01 00 00 | .d..)....e../....f.......g..4... |
| 14f20 | bd 68 14 00 89 00 00 00 f2 69 14 00 66 00 00 00 7c 6a 14 00 88 00 00 00 e3 6a 14 00 a5 00 00 00 | .h.......i..f...|j.......j...... |
| 14f40 | 6c 6b 14 00 70 00 00 00 12 6c 14 00 6f 00 00 00 83 6c 14 00 8e 00 00 00 f3 6c 14 00 b0 00 00 00 | lk..p....l..o....l.......l...... |
| 14f60 | 82 6d 14 00 0f 01 00 00 33 6e 14 00 c3 00 00 00 43 6f 14 00 84 00 00 00 07 70 14 00 be 00 00 00 | .m......3n......Co.......p...... |
| 14f80 | 8c 70 14 00 db 00 00 00 4b 71 14 00 85 00 00 00 27 72 14 00 7d 00 00 00 ad 72 14 00 9a 00 00 00 | .p......Kq......'r..}....r...... |
| 14fa0 | 2b 73 14 00 92 00 00 00 c6 73 14 00 91 00 00 00 59 74 14 00 d5 00 00 00 eb 74 14 00 93 00 00 00 | +s.......s......Yt.......t...... |
| 14fc0 | c1 75 14 00 8e 00 00 00 55 76 14 00 fa 00 00 00 e4 76 14 00 bd 00 00 00 df 77 14 00 f5 00 00 00 | .u......Uv.......v.......w...... |
| 14fe0 | 9d 78 14 00 a6 00 00 00 93 79 14 00 a1 00 00 00 3a 7a 14 00 7b 00 00 00 dc 7a 14 00 fc 00 00 00 | .x.......y......:z..{....z...... |
| 15000 | 58 7b 14 00 fd 00 00 00 55 7c 14 00 19 01 00 00 53 7d 14 00 9d 00 00 00 6d 7e 14 00 be 01 00 00 | X{......U|......S}......m~...... |
| 15020 | 0b 7f 14 00 b1 00 00 00 ca 80 14 00 5b 00 00 00 7c 81 14 00 63 00 00 00 d8 81 14 00 33 01 00 00 | ............[...|...c.......3... |
| 15040 | 3c 82 14 00 3b 00 00 00 70 83 14 00 98 00 00 00 ac 83 14 00 54 00 00 00 45 84 14 00 59 00 00 00 | <...;...p...........T...E...Y... |
| 15060 | 9a 84 14 00 de 00 00 00 f4 84 14 00 9a 00 00 00 d3 85 14 00 2b 00 00 00 6e 86 14 00 c0 00 00 00 | ....................+...n....... |
| 15080 | 9a 86 14 00 c5 00 00 00 5b 87 14 00 3a 00 00 00 21 88 14 00 35 00 00 00 5c 88 14 00 87 00 00 00 | ........[...:...!...5...\....... |
| 150a0 | 92 88 14 00 5c 00 00 00 1a 89 14 00 74 00 00 00 77 89 14 00 da 00 00 00 ec 89 14 00 f0 00 00 00 | ....\.......t...w............... |
| 150c0 | c7 8a 14 00 84 00 00 00 b8 8b 14 00 f0 00 00 00 3d 8c 14 00 f0 00 00 00 2e 8d 14 00 f0 00 00 00 | ................=............... |
| 150e0 | 1f 8e 14 00 f1 00 00 00 10 8f 14 00 5f 00 00 00 02 90 14 00 83 00 00 00 62 90 14 00 bd 00 00 00 | ............_...........b....... |
| 15100 | e6 90 14 00 79 00 00 00 a4 91 14 00 7e 00 00 00 1e 92 14 00 36 00 00 00 9d 92 14 00 78 00 00 00 | ....y.......~.......6.......x... |
| 15120 | d4 92 14 00 85 00 00 00 4d 93 14 00 51 00 00 00 d3 93 14 00 3e 00 00 00 25 94 14 00 3e 00 00 00 | ........M...Q.......>...%...>... |
| 15140 | 64 94 14 00 75 00 00 00 a3 94 14 00 53 00 00 00 19 95 14 00 df 00 00 00 6d 95 14 00 a1 00 00 00 | d...u.......S...........m....... |
| 15160 | 4d 96 14 00 ac 00 00 00 ef 96 14 00 3b 00 00 00 9c 97 14 00 47 00 00 00 d8 97 14 00 67 00 00 00 | M...........;.......G.......g... |
| 15180 | 20 98 14 00 d8 00 00 00 88 98 14 00 5a 00 00 00 61 99 14 00 38 00 00 00 bc 99 14 00 88 01 00 00 | ............Z...a...8........... |
| 151a0 | f5 99 14 00 c5 00 00 00 7e 9b 14 00 a1 00 00 00 44 9c 14 00 6d 00 00 00 e6 9c 14 00 4e 00 00 00 | ........~.......D...m.......N... |
| 151c0 | 54 9d 14 00 54 00 00 00 a3 9d 14 00 3d 00 00 00 f8 9d 14 00 8a 00 00 00 36 9e 14 00 6f 00 00 00 | T...T.......=...........6...o... |
| 151e0 | c1 9e 14 00 2e 00 00 00 31 9f 14 00 31 00 00 00 60 9f 14 00 3c 00 00 00 92 9f 14 00 17 01 00 00 | ........1...1...`...<........... |
| 15200 | cf 9f 14 00 db 00 00 00 e7 a0 14 00 49 00 00 00 c3 a1 14 00 4a 00 00 00 0d a2 14 00 49 00 00 00 | ............I.......J.......I... |
| 15220 | 58 a2 14 00 49 00 00 00 a2 a2 14 00 0b 01 00 00 ec a2 14 00 51 00 00 00 f8 a3 14 00 96 00 00 00 | X...I...............Q........... |
| 15240 | 4a a4 14 00 5d 00 00 00 e1 a4 14 00 49 00 00 00 3f a5 14 00 46 00 00 00 89 a5 14 00 37 00 00 00 | J...].......I...?...F.......7... |
| 15260 | d0 a5 14 00 38 01 00 00 08 a6 14 00 31 00 00 00 41 a7 14 00 30 00 00 00 73 a7 14 00 39 00 00 00 | ....8.......1...A...0...s...9... |
| 15280 | a4 a7 14 00 33 00 00 00 de a7 14 00 33 00 00 00 12 a8 14 00 49 00 00 00 46 a8 14 00 d9 00 00 00 | ....3.......3.......I...F....... |
| 152a0 | 90 a8 14 00 78 00 00 00 6a a9 14 00 79 00 00 00 e3 a9 14 00 8c 00 00 00 5d aa 14 00 47 00 00 00 | ....x...j...y...........]...G... |
| 152c0 | ea aa 14 00 fb 00 00 00 32 ab 14 00 b7 00 00 00 2e ac 14 00 5b 00 00 00 e6 ac 14 00 b7 00 00 00 | ........2...........[........... |
| 152e0 | 42 ad 14 00 42 00 00 00 fa ad 14 00 46 00 00 00 3d ae 14 00 30 00 00 00 84 ae 14 00 39 00 00 00 | B...B.......F...=...0.......9... |
| 15300 | b5 ae 14 00 25 00 00 00 ef ae 14 00 2e 00 00 00 15 af 14 00 2e 00 00 00 44 af 14 00 39 00 00 00 | ....%...................D...9... |
| 15320 | 73 af 14 00 c1 00 00 00 ad af 14 00 8c 00 00 00 6f b0 14 00 b5 00 00 00 fc b0 14 00 42 00 00 00 | s...............o...........B... |
| 15340 | b2 b1 14 00 a5 00 00 00 f5 b1 14 00 b9 00 00 00 9b b2 14 00 3e 00 00 00 55 b3 14 00 74 00 00 00 | ....................>...U...t... |
| 15360 | 94 b3 14 00 6c 00 00 00 09 b4 14 00 81 00 00 00 76 b4 14 00 19 00 00 00 f8 b4 14 00 23 00 00 00 | ....l...........v...........#... |
| 15380 | 12 b5 14 00 b7 00 00 00 36 b5 14 00 dc 00 00 00 ee b5 14 00 13 00 00 00 cb b6 14 00 54 00 00 00 | ........6...................T... |
| 153a0 | df b6 14 00 5f 01 00 00 34 b7 14 00 63 01 00 00 94 b8 14 00 17 00 00 00 f8 b9 14 00 1a 00 00 00 | ...._...4...c................... |
| 153c0 | 10 ba 14 00 1d 00 00 00 2b ba 14 00 a2 00 00 00 49 ba 14 00 17 00 00 00 ec ba 14 00 86 01 00 00 | ........+.......I............... |
| 153e0 | 04 bb 14 00 8a 00 00 00 8b bc 14 00 5b 00 00 00 16 bd 14 00 3b 00 00 00 72 bd 14 00 dd 00 00 00 | ............[.......;...r....... |
| 15400 | ae bd 14 00 1d 01 00 00 8c be 14 00 32 00 00 00 aa bf 14 00 20 00 00 00 dd bf 14 00 5d 00 00 00 | ............2...............]... |
| 15420 | fe bf 14 00 54 00 00 00 5c c0 14 00 04 00 00 00 b1 c0 14 00 30 00 00 00 b6 c0 14 00 0c 00 00 00 | ....T...\...........0........... |
| 15440 | e7 c0 14 00 0c 00 00 00 f4 c0 14 00 60 00 00 00 01 c1 14 00 09 00 00 00 62 c1 14 00 35 01 00 00 | ............`...........b...5... |
| 15460 | 6c c1 14 00 33 01 00 00 a2 c2 14 00 70 00 00 00 d6 c3 14 00 03 00 00 00 47 c4 14 00 62 00 00 00 | l...3.......p...........G...b... |
| 15480 | 4b c4 14 00 03 00 00 00 ae c4 14 00 11 00 00 00 b2 c4 14 00 0b 00 00 00 c4 c4 14 00 16 00 00 00 | K............................... |
| 154a0 | d0 c4 14 00 19 00 00 00 e7 c4 14 00 15 00 00 00 01 c5 14 00 11 00 00 00 17 c5 14 00 14 00 00 00 | ................................ |
| 154c0 | 29 c5 14 00 6a 02 00 00 3e c5 14 00 3d 01 00 00 a9 c7 14 00 85 01 00 00 e7 c8 14 00 95 00 00 00 | )...j...>...=................... |
| 154e0 | 6d ca 14 00 d5 01 00 00 03 cb 14 00 32 00 00 00 d9 cc 14 00 1e 00 00 00 0c cd 14 00 05 00 00 00 | m...........2................... |
| 15500 | 2b cd 14 00 45 01 00 00 31 cd 14 00 16 00 00 00 77 ce 14 00 3b 00 00 00 8e ce 14 00 18 00 00 00 | +...E...1.......w...;........... |
| 15520 | ca ce 14 00 16 00 00 00 e3 ce 14 00 05 00 00 00 fa ce 14 00 8e 00 00 00 00 cf 14 00 60 00 00 00 | ............................`... |
| 15540 | 8f cf 14 00 0c 00 00 00 f0 cf 14 00 0d 00 00 00 fd cf 14 00 3d 00 00 00 0b d0 14 00 3b 00 00 00 | ....................=.......;... |
| 15560 | 49 d0 14 00 07 00 00 00 85 d0 14 00 10 00 00 00 8d d0 14 00 6c 00 00 00 9e d0 14 00 0e 00 00 00 | I...................l........... |
| 15580 | 0b d1 14 00 4b 00 00 00 1a d1 14 00 47 00 00 00 66 d1 14 00 65 00 00 00 ae d1 14 00 a1 00 00 00 | ....K.......G...f...e........... |
| 155a0 | 14 d2 14 00 3f 00 00 00 b6 d2 14 00 4b 01 00 00 f6 d2 14 00 4a 01 00 00 42 d4 14 00 44 01 00 00 | ....?.......K.......J...B...D... |
| 155c0 | 8d d5 14 00 15 00 00 00 d2 d6 14 00 24 00 00 00 e8 d6 14 00 0a 00 00 00 0d d7 14 00 24 00 00 00 | ............$...............$... |
| 155e0 | 18 d7 14 00 09 00 00 00 3d d7 14 00 29 00 00 00 47 d7 14 00 1b 00 00 00 71 d7 14 00 c9 00 00 00 | ........=...)...G.......q....... |
| 15600 | 8d d7 14 00 0b 00 00 00 57 d8 14 00 85 00 00 00 63 d8 14 00 26 00 00 00 e9 d8 14 00 3d 00 00 00 | ........W.......c...&.......=... |
| 15620 | 10 d9 14 00 52 00 00 00 4e d9 14 00 b4 00 00 00 a1 d9 14 00 a9 00 00 00 56 da 14 00 26 00 00 00 | ....R...N...............V...&... |
| 15640 | 00 db 14 00 b0 00 00 00 27 db 14 00 de 00 00 00 d8 db 14 00 df 00 00 00 b7 dc 14 00 1c 00 00 00 | ........'....................... |
| 15660 | 97 dd 14 00 8f 00 00 00 b4 dd 14 00 8c 00 00 00 44 de 14 00 90 00 00 00 d1 de 14 00 5d 00 00 00 | ................D...........]... |
| 15680 | 62 df 14 00 44 00 00 00 c0 df 14 00 2f 00 00 00 05 e0 14 00 b0 00 00 00 35 e0 14 00 50 00 00 00 | b...D......./...........5...P... |
| 156a0 | e6 e0 14 00 a6 00 00 00 37 e1 14 00 ec 00 00 00 de e1 14 00 64 00 00 00 cb e2 14 00 53 00 00 00 | ........7...........d.......S... |
| 156c0 | 30 e3 14 00 df 00 00 00 84 e3 14 00 86 00 00 00 64 e4 14 00 63 00 00 00 eb e4 14 00 68 00 00 00 | 0...............d...c.......h... |
| 156e0 | 4f e5 14 00 d1 00 00 00 b8 e5 14 00 6f 00 00 00 8a e6 14 00 8d 00 00 00 fa e6 14 00 78 00 00 00 | O...........o...............x... |
| 15700 | 88 e7 14 00 7a 00 00 00 01 e8 14 00 7d 00 00 00 7c e8 14 00 80 00 00 00 fa e8 14 00 33 00 00 00 | ....z.......}...|...........3... |
| 15720 | 7b e9 14 00 71 00 00 00 af e9 14 00 db 00 00 00 21 ea 14 00 a5 00 00 00 fd ea 14 00 75 00 00 00 | {...q...........!...........u... |
| 15740 | a3 eb 14 00 59 00 00 00 19 ec 14 00 58 00 00 00 73 ec 14 00 9b 00 00 00 cc ec 14 00 c3 00 00 00 | ....Y.......X...s............... |
| 15760 | 68 ed 14 00 b6 00 00 00 2c ee 14 00 ba 00 00 00 e3 ee 14 00 29 00 00 00 9e ef 14 00 9c 00 00 00 | h.......,...........)........... |
| 15780 | c8 ef 14 00 e3 00 00 00 65 f0 14 00 9e 00 00 00 49 f1 14 00 44 00 00 00 e8 f1 14 00 44 00 00 00 | ........e.......I...D.......D... |
| 157a0 | 2d f2 14 00 ed 00 00 00 72 f2 14 00 3c 00 00 00 60 f3 14 00 bd 00 00 00 9d f3 14 00 bf 00 00 00 | -.......r...<...`............... |
| 157c0 | 5b f4 14 00 88 00 00 00 1b f5 14 00 85 00 00 00 a4 f5 14 00 6f 00 00 00 2a f6 14 00 cf 00 00 00 | [...................o...*....... |
| 157e0 | 9a f6 14 00 17 00 00 00 6a f7 14 00 12 00 00 00 82 f7 14 00 18 00 00 00 95 f7 14 00 39 00 00 00 | ........j...................9... |
| 15800 | ae f7 14 00 1b 00 00 00 e8 f7 14 00 31 00 00 00 04 f8 14 00 21 00 00 00 36 f8 14 00 07 00 00 00 | ............1.......!...6....... |
| 15820 | 58 f8 14 00 12 00 00 00 60 f8 14 00 79 00 00 00 73 f8 14 00 e5 00 00 00 ed f8 14 00 e5 00 00 00 | X.......`...y...s............... |
| 15840 | d3 f9 14 00 ac 00 00 00 b9 fa 14 00 84 00 00 00 66 fb 14 00 36 01 00 00 eb fb 14 00 5a 00 00 00 | ................f...6.......Z... |
| 15860 | 22 fd 14 00 c4 00 00 00 7d fd 14 00 4b 00 00 00 42 fe 14 00 a7 00 00 00 8e fe 14 00 17 00 00 00 | ".......}...K...B............... |
| 15880 | 36 ff 14 00 e8 00 00 00 4e ff 14 00 48 00 00 00 37 00 15 00 41 00 00 00 80 00 15 00 2e 00 00 00 | 6.......N...H...7...A........... |
| 158a0 | c2 00 15 00 47 00 00 00 f1 00 15 00 3f 00 00 00 39 01 15 00 9b 00 00 00 79 01 15 00 9c 00 00 00 | ....G.......?...9.......y....... |
| 158c0 | 15 02 15 00 68 00 00 00 b2 02 15 00 1b 01 00 00 1b 03 15 00 22 00 00 00 37 04 15 00 08 00 00 00 | ....h..............."...7....... |
| 158e0 | 5a 04 15 00 2a 00 00 00 63 04 15 00 34 00 00 00 8e 04 15 00 ae 00 00 00 c3 04 15 00 17 01 00 00 | Z...*...c...4................... |
| 15900 | 72 05 15 00 79 00 00 00 8a 06 15 00 73 00 00 00 04 07 15 00 bf 00 00 00 78 07 15 00 dc 00 00 00 | r...y.......s...........x....... |
| 15920 | 38 08 15 00 7b 01 00 00 15 09 15 00 90 01 00 00 91 0a 15 00 13 01 00 00 22 0c 15 00 a0 00 00 00 | 8...{..................."....... |
| 15940 | 36 0d 15 00 36 01 00 00 d7 0d 15 00 04 02 00 00 0e 0f 15 00 a7 00 00 00 13 11 15 00 b6 00 00 00 | 6...6........................... |
| 15960 | bb 11 15 00 ad 00 00 00 72 12 15 00 67 00 00 00 20 13 15 00 71 00 00 00 88 13 15 00 fe 00 00 00 | ........r...g.......q........... |
| 15980 | fa 13 15 00 7d 00 00 00 f9 14 15 00 7e 00 00 00 77 15 15 00 6d 01 00 00 f6 15 15 00 7a 00 00 00 | ....}.......~...w...m.......z... |
| 159a0 | 64 17 15 00 e2 00 00 00 df 17 15 00 1e 01 00 00 c2 18 15 00 56 00 00 00 e1 19 15 00 89 00 00 00 | d...................V........... |
| 159c0 | 38 1a 15 00 16 01 00 00 c2 1a 15 00 06 01 00 00 d9 1b 15 00 b1 00 00 00 e0 1c 15 00 58 00 00 00 | 8...........................X... |
| 159e0 | 92 1d 15 00 92 00 00 00 eb 1d 15 00 80 00 00 00 7e 1e 15 00 7d 00 00 00 ff 1e 15 00 98 00 00 00 | ................~...}........... |
| 15a00 | 7d 1f 15 00 b5 00 00 00 16 20 15 00 a2 00 00 00 cc 20 15 00 00 01 00 00 6f 21 15 00 37 00 00 00 | }.......................o!..7... |
| 15a20 | 70 22 15 00 42 00 00 00 a8 22 15 00 d0 00 00 00 eb 22 15 00 cf 00 00 00 bc 23 15 00 fd 00 00 00 | p"..B....".......".......#...... |
| 15a40 | 8c 24 15 00 3c 01 00 00 8a 25 15 00 fb 00 00 00 c7 26 15 00 bf 00 00 00 c3 27 15 00 9e 00 00 00 | .$..<....%.......&.......'...... |
| 15a60 | 83 28 15 00 9b 01 00 00 22 29 15 00 a4 00 00 00 be 2a 15 00 fb 00 00 00 63 2b 15 00 18 01 00 00 | .(......").......*......c+...... |
| 15a80 | 5f 2c 15 00 20 01 00 00 78 2d 15 00 5d 00 00 00 99 2e 15 00 4b 00 00 00 f7 2e 15 00 97 00 00 00 | _,......x-..].......K........... |
| 15aa0 | 43 2f 15 00 57 00 00 00 db 2f 15 00 3e 00 00 00 33 30 15 00 b0 00 00 00 72 30 15 00 f1 00 00 00 | C/..W..../..>...30......r0...... |
| 15ac0 | 23 31 15 00 b6 00 00 00 15 32 15 00 b8 00 00 00 cc 32 15 00 b6 00 00 00 85 33 15 00 b8 00 00 00 | #1.......2.......2.......3...... |
| 15ae0 | 3c 34 15 00 5d 00 00 00 f5 34 15 00 4a 00 00 00 53 35 15 00 34 00 00 00 9e 35 15 00 2c 00 00 00 | <4..]....4..J...S5..4....5..,... |
| 15b00 | d3 35 15 00 24 00 00 00 00 36 15 00 41 00 00 00 25 36 15 00 d6 00 00 00 67 36 15 00 d9 00 00 00 | .5..$....6..A...%6......g6...... |
| 15b20 | 3e 37 15 00 ae 00 00 00 18 38 15 00 cf 00 00 00 c7 38 15 00 59 00 00 00 97 39 15 00 14 00 00 00 | >7.......8.......8..Y....9...... |
| 15b40 | f1 39 15 00 b5 00 00 00 06 3a 15 00 c3 00 00 00 bc 3a 15 00 48 00 00 00 80 3b 15 00 95 00 00 00 | .9.......:.......:..H....;...... |
| 15b60 | c9 3b 15 00 62 00 00 00 5f 3c 15 00 86 00 00 00 c2 3c 15 00 fe 00 00 00 49 3d 15 00 41 00 00 00 | .;..b..._<.......<......I=..A... |
| 15b80 | 48 3e 15 00 93 00 00 00 8a 3e 15 00 09 00 00 00 1e 3f 15 00 18 00 00 00 28 3f 15 00 33 00 00 00 | H>.......>.......?......(?..3... |
| 15ba0 | 41 3f 15 00 99 00 00 00 75 3f 15 00 9a 00 00 00 0f 40 15 00 22 00 00 00 aa 40 15 00 16 00 00 00 | A?......u?.......@.."....@...... |
| 15bc0 | cd 40 15 00 1f 00 00 00 e4 40 15 00 27 00 00 00 04 41 15 00 30 00 00 00 2c 41 15 00 10 00 00 00 | .@.......@..'....A..0...,A...... |
| 15be0 | 5d 41 15 00 21 00 00 00 6e 41 15 00 1c 00 00 00 90 41 15 00 aa 01 00 00 ad 41 15 00 82 00 00 00 | ]A..!...nA.......A.......A...... |
| 15c00 | 58 43 15 00 ac 00 00 00 db 43 15 00 fe 00 00 00 88 44 15 00 60 00 00 00 87 45 15 00 55 00 00 00 | XC.......C.......D..`....E..U... |
| 15c20 | e8 45 15 00 51 00 00 00 3e 46 15 00 90 01 00 00 90 46 15 00 86 01 00 00 21 48 15 00 85 01 00 00 | .E..Q...>F.......F......!H...... |
| 15c40 | a8 49 15 00 01 00 00 00 2e 4b 15 00 76 00 00 00 30 4b 15 00 6b 00 00 00 a7 4b 15 00 60 00 00 00 | .I.......K..v...0K..k....K..`... |
| 15c60 | 13 4c 15 00 a9 00 00 00 74 4c 15 00 c9 00 00 00 1e 4d 15 00 9b 00 00 00 e8 4d 15 00 c3 00 00 00 | .L......tL.......M.......M...... |
| 15c80 | 84 4e 15 00 3c 00 00 00 48 4f 15 00 38 00 00 00 85 4f 15 00 95 00 00 00 be 4f 15 00 2e 00 00 00 | .N..<...HO..8....O.......O...... |
| 15ca0 | 54 50 15 00 57 00 00 00 83 50 15 00 61 00 00 00 db 50 15 00 69 00 00 00 3d 51 15 00 4b 00 00 00 | TP..W....P..a....P..i...=Q..K... |
| 15cc0 | a7 51 15 00 a4 00 00 00 f3 51 15 00 52 00 00 00 98 52 15 00 53 00 00 00 eb 52 15 00 51 00 00 00 | .Q.......Q..R....R..S....R..Q... |
| 15ce0 | 3f 53 15 00 52 00 00 00 91 53 15 00 65 00 00 00 e4 53 15 00 c4 00 00 00 4a 54 15 00 35 00 00 00 | ?S..R....S..e....S......JT..5... |
| 15d00 | 0f 55 15 00 51 00 00 00 45 55 15 00 a7 00 00 00 97 55 15 00 8a 00 00 00 3f 56 15 00 96 00 00 00 | .U..Q...EU.......U......?V...... |
| 15d20 | ca 56 15 00 81 00 00 00 61 57 15 00 7f 00 00 00 e3 57 15 00 33 00 00 00 63 58 15 00 88 00 00 00 | .V......aW.......W..3...cX...... |
| 15d40 | 97 58 15 00 e3 00 00 00 20 59 15 00 c3 00 00 00 04 5a 15 00 3a 00 00 00 c8 5a 15 00 5a 00 00 00 | .X.......Y.......Z..:....Z..Z... |
| 15d60 | 03 5b 15 00 65 00 00 00 5e 5b 15 00 c3 00 00 00 c4 5b 15 00 db 00 00 00 88 5c 15 00 50 00 00 00 | .[..e...^[.......[.......\..P... |
| 15d80 | 64 5d 15 00 4d 00 00 00 b5 5d 15 00 06 01 00 00 03 5e 15 00 1d 01 00 00 0a 5f 15 00 f2 00 00 00 | d]..M....].......^......._...... |
| 15da0 | 28 60 15 00 48 00 00 00 1b 61 15 00 b0 00 00 00 64 61 15 00 9f 00 00 00 15 62 15 00 1f 00 00 00 | (`..H....a......da.......b...... |
| 15dc0 | b5 62 15 00 71 00 00 00 d5 62 15 00 75 00 00 00 47 63 15 00 75 00 00 00 bd 63 15 00 dc 00 00 00 | .b..q....b..u...Gc..u....c...... |
| 15de0 | 33 64 15 00 3f 00 00 00 10 65 15 00 6d 00 00 00 50 65 15 00 d9 00 00 00 be 65 15 00 da 00 00 00 | 3d..?....e..m...Pe.......e...... |
| 15e00 | 98 66 15 00 1c 00 00 00 73 67 15 00 13 00 00 00 90 67 15 00 20 00 00 00 a4 67 15 00 14 00 00 00 | .f......sg.......g.......g...... |
| 15e20 | c5 67 15 00 13 00 00 00 da 67 15 00 03 01 00 00 ee 67 15 00 1d 00 00 00 f2 68 15 00 1d 00 00 00 | .g.......g.......g.......h...... |
| 15e40 | 10 69 15 00 23 00 00 00 2e 69 15 00 1d 00 00 00 52 69 15 00 29 00 00 00 70 69 15 00 3f 01 00 00 | .i..#....i......Ri..)...pi..?... |
| 15e60 | 9a 69 15 00 31 00 00 00 da 6a 15 00 31 00 00 00 0c 6b 15 00 33 00 00 00 3e 6b 15 00 33 00 00 00 | .i..1....j..1....k..3...>k..3... |
| 15e80 | 72 6b 15 00 10 00 00 00 a6 6b 15 00 0c 00 00 00 b7 6b 15 00 2d 00 00 00 c4 6b 15 00 2c 00 00 00 | rk.......k.......k..-....k..,... |
| 15ea0 | f2 6b 15 00 12 00 00 00 1f 6c 15 00 2c 00 00 00 32 6c 15 00 12 00 00 00 5f 6c 15 00 25 00 00 00 | .k.......l..,...2l......_l..%... |
| 15ec0 | 72 6c 15 00 3c 00 00 00 98 6c 15 00 12 00 00 00 d5 6c 15 00 35 00 00 00 e8 6c 15 00 13 00 00 00 | rl..<....l.......l..5....l...... |
| 15ee0 | 1e 6d 15 00 1e 00 00 00 32 6d 15 00 25 00 00 00 51 6d 15 00 1e 00 00 00 77 6d 15 00 25 00 00 00 | .m......2m..%...Qm......wm..%... |
| 15f00 | 96 6d 15 00 1e 00 00 00 bc 6d 15 00 25 00 00 00 db 6d 15 00 1f 00 00 00 01 6e 15 00 26 00 00 00 | .m.......m..%....m.......n..&... |
| 15f20 | 21 6e 15 00 21 00 00 00 48 6e 15 00 28 00 00 00 6a 6e 15 00 34 00 00 00 93 6e 15 00 16 00 00 00 | !n..!...Hn..(...jn..4....n...... |
| 15f40 | c8 6e 15 00 1c 00 00 00 df 6e 15 00 12 00 00 00 fc 6e 15 00 12 00 00 00 0f 6f 15 00 34 00 00 00 | .n.......n.......n.......o..4... |
| 15f60 | 22 6f 15 00 13 00 00 00 57 6f 15 00 1d 00 00 00 6b 6f 15 00 13 00 00 00 89 6f 15 00 30 00 00 00 | "o......Wo......ko.......o..0... |
| 15f80 | 9d 6f 15 00 1f 00 00 00 ce 6f 15 00 1f 00 00 00 ee 6f 15 00 13 00 00 00 0e 70 15 00 16 00 00 00 | .o.......o.......o.......p...... |
| 15fa0 | 22 70 15 00 25 01 00 00 39 70 15 00 d3 00 00 00 5f 71 15 00 26 00 00 00 33 72 15 00 55 00 00 00 | "p..%...9p......_q..&...3r..U... |
| 15fc0 | 5a 72 15 00 55 00 00 00 b0 72 15 00 13 00 00 00 06 73 15 00 38 00 00 00 1a 73 15 00 41 00 00 00 | Zr..U....r.......s..8....s..A... |
| 15fe0 | 53 73 15 00 16 00 00 00 95 73 15 00 9d 00 00 00 ac 73 15 00 41 00 00 00 4a 74 15 00 38 00 00 00 | Ss.......s.......s..A...Jt..8... |
| 16000 | 8c 74 15 00 1e 00 00 00 c5 74 15 00 22 00 00 00 e4 74 15 00 5d 00 00 00 07 75 15 00 55 00 00 00 | .t.......t.."....t..]....u..U... |
| 16020 | 65 75 15 00 1e 00 00 00 bb 75 15 00 44 00 00 00 da 75 15 00 25 00 00 00 1f 76 15 00 08 01 00 00 | eu.......u..D....u..%....v...... |
| 16040 | 45 76 15 00 76 00 00 00 4e 77 15 00 fd 01 00 00 c5 77 15 00 21 00 00 00 c3 79 15 00 87 00 00 00 | Ev..v...Nw.......w..!....y...... |
| 16060 | e5 79 15 00 54 00 00 00 6d 7a 15 00 2b 00 00 00 c2 7a 15 00 5b 00 00 00 ee 7a 15 00 45 00 00 00 | .y..T...mz..+....z..[....z..E... |
| 16080 | 4a 7b 15 00 87 02 00 00 90 7b 15 00 c3 00 00 00 18 7e 15 00 59 00 00 00 dc 7e 15 00 25 00 00 00 | J{.......{.......~..Y....~..%... |
| 160a0 | 36 7f 15 00 1e 00 00 00 5c 7f 15 00 2a 00 00 00 7b 7f 15 00 2f 00 00 00 a6 7f 15 00 27 00 00 00 | 6.......\...*...{.../.......'... |
| 160c0 | d6 7f 15 00 37 00 00 00 fe 7f 15 00 54 00 00 00 36 80 15 00 4f 00 00 00 8b 80 15 00 59 00 00 00 | ....7.......T...6...O.......Y... |
| 160e0 | db 80 15 00 4d 00 00 00 35 81 15 00 5f 00 00 00 83 81 15 00 33 00 00 00 e3 81 15 00 64 00 00 00 | ....M...5..._.......3.......d... |
| 16100 | 17 82 15 00 7b 00 00 00 7c 82 15 00 49 00 00 00 f8 82 15 00 1e 00 00 00 42 83 15 00 f3 00 00 00 | ....{...|...I...........B....... |
| 16120 | 61 83 15 00 f1 00 00 00 55 84 15 00 5e 00 00 00 47 85 15 00 79 00 00 00 a6 85 15 00 54 00 00 00 | a.......U...^...G...y.......T... |
| 16140 | 20 86 15 00 43 00 00 00 75 86 15 00 4f 00 00 00 b9 86 15 00 29 00 00 00 09 87 15 00 82 00 00 00 | ....C...u...O.......)........... |
| 16160 | 33 87 15 00 22 00 00 00 b6 87 15 00 47 02 00 00 d9 87 15 00 47 02 00 00 21 8a 15 00 fc 00 00 00 | 3...".......G.......G...!....... |
| 16180 | 69 8c 15 00 9c 00 00 00 66 8d 15 00 2c 00 00 00 03 8e 15 00 16 00 00 00 30 8e 15 00 53 00 00 00 | i.......f...,...........0...S... |
| 161a0 | 47 8e 15 00 7d 00 00 00 9b 8e 15 00 66 00 00 00 19 8f 15 00 68 00 00 00 80 8f 15 00 b4 00 00 00 | G...}.......f.......h........... |
| 161c0 | e9 8f 15 00 4b 00 00 00 9e 90 15 00 55 00 00 00 ea 90 15 00 22 00 00 00 40 91 15 00 18 00 00 00 | ....K.......U......."...@....... |
| 161e0 | 63 91 15 00 31 00 00 00 7c 91 15 00 1b 00 00 00 ae 91 15 00 1a 00 00 00 ca 91 15 00 17 00 00 00 | c...1...|....................... |
| 16200 | e5 91 15 00 17 00 00 00 fd 91 15 00 17 00 00 00 15 92 15 00 35 00 00 00 2d 92 15 00 41 00 00 00 | ....................5...-...A... |
| 16220 | 63 92 15 00 25 00 00 00 a5 92 15 00 2d 00 00 00 cb 92 15 00 3e 00 00 00 f9 92 15 00 24 00 00 00 | c...%.......-.......>.......$... |
| 16240 | 38 93 15 00 28 00 00 00 5d 93 15 00 4d 00 00 00 86 93 15 00 50 00 00 00 d4 93 15 00 33 00 00 00 | 8...(...]...M.......P.......3... |
| 16260 | 25 94 15 00 35 00 00 00 59 94 15 00 20 00 00 00 8f 94 15 00 2b 00 00 00 b0 94 15 00 39 00 00 00 | %...5...Y...........+.......9... |
| 16280 | dc 94 15 00 73 02 00 00 16 95 15 00 49 00 00 00 8a 97 15 00 74 02 00 00 d4 97 15 00 c9 00 00 00 | ....s.......I.......t........... |
| 162a0 | 49 9a 15 00 28 00 00 00 13 9b 15 00 5c 00 00 00 3c 9b 15 00 19 00 00 00 99 9b 15 00 16 00 00 00 | I...(.......\...<............... |
| 162c0 | b3 9b 15 00 9e 00 00 00 ca 9b 15 00 23 00 00 00 69 9c 15 00 27 00 00 00 8d 9c 15 00 18 00 00 00 | ............#...i...'........... |
| 162e0 | b5 9c 15 00 25 00 00 00 ce 9c 15 00 1c 00 00 00 f4 9c 15 00 1f 00 00 00 11 9d 15 00 53 00 00 00 | ....%.......................S... |
| 16300 | 31 9d 15 00 53 00 00 00 85 9d 15 00 16 00 00 00 d9 9d 15 00 7e 00 00 00 f0 9d 15 00 33 00 00 00 | 1...S...............~.......3... |
| 16320 | 6f 9e 15 00 25 00 00 00 a3 9e 15 00 af 00 00 00 c9 9e 15 00 d0 00 00 00 79 9f 15 00 7e 00 00 00 | o...%...................y...~... |
| 16340 | 4a a0 15 00 25 00 00 00 c9 a0 15 00 3d 00 00 00 ef a0 15 00 51 00 00 00 2d a1 15 00 04 01 00 00 | J...%.......=.......Q...-....... |
| 16360 | 7f a1 15 00 49 00 00 00 84 a2 15 00 47 00 00 00 ce a2 15 00 bd 00 00 00 16 a3 15 00 78 00 00 00 | ....I.......G...............x... |
| 16380 | d4 a3 15 00 aa 00 00 00 4d a4 15 00 41 00 00 00 f8 a4 15 00 43 00 00 00 3a a5 15 00 3d 00 00 00 | ........M...A.......C...:...=... |
| 163a0 | 7e a5 15 00 27 00 00 00 bc a5 15 00 1a 00 00 00 e4 a5 15 00 d2 00 00 00 ff a5 15 00 5b 00 00 00 | ~...'.......................[... |
| 163c0 | d2 a6 15 00 3d 00 00 00 2e a7 15 00 ab 00 00 00 6c a7 15 00 1d 00 00 00 18 a8 15 00 5a 00 00 00 | ....=...........l...........Z... |
| 163e0 | 36 a8 15 00 5a 00 00 00 91 a8 15 00 77 00 00 00 ec a8 15 00 7d 00 00 00 64 a9 15 00 dd 00 00 00 | 6...Z.......w.......}...d....... |
| 16400 | e2 a9 15 00 3f 00 00 00 c0 aa 15 00 40 00 00 00 00 ab 15 00 55 00 00 00 41 ab 15 00 af 00 00 00 | ....?.......@.......U...A....... |
| 16420 | 97 ab 15 00 5e 00 00 00 47 ac 15 00 72 00 00 00 a6 ac 15 00 3b 00 00 00 19 ad 15 00 65 00 00 00 | ....^...G...r.......;.......e... |
| 16440 | 55 ad 15 00 37 00 00 00 bb ad 15 00 25 00 00 00 f3 ad 15 00 51 00 00 00 19 ae 15 00 55 00 00 00 | U...7.......%.......Q.......U... |
| 16460 | 6b ae 15 00 38 00 00 00 c1 ae 15 00 13 00 00 00 fa ae 15 00 45 00 00 00 0e af 15 00 40 00 00 00 | k...8...............E.......@... |
| 16480 | 54 af 15 00 26 00 00 00 95 af 15 00 24 00 00 00 bc af 15 00 44 00 00 00 e1 af 15 00 4a 00 00 00 | T...&.......$.......D.......J... |
| 164a0 | 26 b0 15 00 4b 00 00 00 71 b0 15 00 4a 00 00 00 bd b0 15 00 4b 00 00 00 08 b1 15 00 1f 00 00 00 | &...K...q...J.......K........... |
| 164c0 | 54 b1 15 00 1f 00 00 00 74 b1 15 00 96 00 00 00 94 b1 15 00 26 00 00 00 2b b2 15 00 29 00 00 00 | T.......t...........&...+...)... |
| 164e0 | 52 b2 15 00 22 00 00 00 7c b2 15 00 1f 00 00 00 9f b2 15 00 24 00 00 00 bf b2 15 00 28 00 00 00 | R..."...|...........$.......(... |
| 16500 | e4 b2 15 00 18 00 00 00 0d b3 15 00 1b 00 00 00 26 b3 15 00 26 00 00 00 42 b3 15 00 29 00 00 00 | ................&...&...B...)... |
| 16520 | 69 b3 15 00 57 00 00 00 93 b3 15 00 54 00 00 00 eb b3 15 00 52 00 00 00 40 b4 15 00 51 00 00 00 | i...W.......T.......R...@...Q... |
| 16540 | 93 b4 15 00 40 00 00 00 e5 b4 15 00 28 00 00 00 26 b5 15 00 70 00 00 00 4f b5 15 00 26 00 00 00 | ....@.......(...&...p...O...&... |
| 16560 | c0 b5 15 00 79 00 00 00 e7 b5 15 00 62 00 00 00 61 b6 15 00 56 00 00 00 c4 b6 15 00 0b 00 00 00 | ....y.......b...a...V........... |
| 16580 | 1b b7 15 00 2c 00 00 00 27 b7 15 00 35 00 00 00 54 b7 15 00 3f 00 00 00 8a b7 15 00 77 00 00 00 | ....,...'...5...T...?.......w... |
| 165a0 | ca b7 15 00 2d 00 00 00 42 b8 15 00 33 00 00 00 70 b8 15 00 31 00 00 00 a4 b8 15 00 69 00 00 00 | ....-...B...3...p...1.......i... |
| 165c0 | d6 b8 15 00 69 00 00 00 40 b9 15 00 9c 00 00 00 aa b9 15 00 89 00 00 00 47 ba 15 00 24 00 00 00 | ....i...@...............G...$... |
| 165e0 | d1 ba 15 00 56 00 00 00 f6 ba 15 00 16 00 00 00 4d bb 15 00 4c 00 00 00 64 bb 15 00 3c 00 00 00 | ....V...........M...L...d...<... |
| 16600 | b1 bb 15 00 9e 00 00 00 ee bb 15 00 26 00 00 00 8d bc 15 00 27 00 00 00 b4 bc 15 00 1f 00 00 00 | ............&.......'........... |
| 16620 | dc bc 15 00 5c 00 00 00 fc bc 15 00 3f 00 00 00 59 bd 15 00 36 00 00 00 99 bd 15 00 38 00 00 00 | ....\.......?...Y...6.......8... |
| 16640 | d0 bd 15 00 66 00 00 00 09 be 15 00 24 00 00 00 70 be 15 00 4d 00 00 00 95 be 15 00 27 00 00 00 | ....f.......$...p...M.......'... |
| 16660 | e3 be 15 00 27 00 00 00 0b bf 15 00 ee 00 00 00 33 bf 15 00 1f 00 00 00 22 c0 15 00 1e 00 00 00 | ....'...........3......."....... |
| 16680 | 42 c0 15 00 24 01 00 00 61 c0 15 00 a1 00 00 00 86 c1 15 00 3c 00 00 00 28 c2 15 00 6e 00 00 00 | B...$...a...........<...(...n... |
| 166a0 | 65 c2 15 00 83 00 00 00 d4 c2 15 00 3e 00 00 00 58 c3 15 00 55 00 00 00 97 c3 15 00 27 01 00 00 | e...........>...X...U.......'... |
| 166c0 | ed c3 15 00 50 00 00 00 15 c5 15 00 22 00 00 00 66 c5 15 00 5a 00 00 00 89 c5 15 00 2c 00 00 00 | ....P......."...f...Z.......,... |
| 166e0 | e4 c5 15 00 47 00 00 00 11 c6 15 00 7b 00 00 00 59 c6 15 00 77 00 00 00 d5 c6 15 00 65 00 00 00 | ....G.......{...Y...w.......e... |
| 16700 | 4d c7 15 00 65 00 00 00 b3 c7 15 00 5a 00 00 00 19 c8 15 00 5a 00 00 00 74 c8 15 00 72 00 00 00 | M...e.......Z.......Z...t...r... |
| 16720 | cf c8 15 00 2e 00 00 00 42 c9 15 00 24 00 00 00 71 c9 15 00 61 00 00 00 96 c9 15 00 55 00 00 00 | ........B...$...q...a.......U... |
| 16740 | f8 c9 15 00 2b 00 00 00 4e ca 15 00 29 00 00 00 7a ca 15 00 2a 00 00 00 a4 ca 15 00 2e 00 00 00 | ....+...N...)...z...*........... |
| 16760 | cf ca 15 00 29 00 00 00 fe ca 15 00 27 00 00 00 28 cb 15 00 28 00 00 00 50 cb 15 00 29 00 00 00 | ....).......'...(...(...P...)... |
| 16780 | 79 cb 15 00 27 00 00 00 a3 cb 15 00 28 00 00 00 cb cb 15 00 4c 00 00 00 f4 cb 15 00 4c 00 00 00 | y...'.......(.......L.......L... |
| 167a0 | 41 cc 15 00 1d 00 00 00 8e cc 15 00 38 00 00 00 ac cc 15 00 54 00 00 00 e5 cc 15 00 0b 00 00 00 | A...........8.......T........... |
| 167c0 | 3a cd 15 00 0f 00 00 00 46 cd 15 00 49 00 00 00 56 cd 15 00 0b 00 00 00 a0 cd 15 00 43 00 00 00 | :.......F...I...V...........C... |
| 167e0 | ac cd 15 00 43 00 00 00 f0 cd 15 00 36 00 00 00 34 ce 15 00 29 00 00 00 6b ce 15 00 2e 00 00 00 | ....C.......6...4...)...k....... |
| 16800 | 95 ce 15 00 38 00 00 00 c4 ce 15 00 2c 00 00 00 fd ce 15 00 46 00 00 00 2a cf 15 00 22 00 00 00 | ....8.......,.......F...*..."... |
| 16820 | 71 cf 15 00 77 00 00 00 94 cf 15 00 28 00 00 00 0c d0 15 00 3e 00 00 00 35 d0 15 00 28 00 00 00 | q...w.......(.......>...5...(... |
| 16840 | 74 d0 15 00 3e 00 00 00 9d d0 15 00 29 00 00 00 dc d0 15 00 5d 00 00 00 06 d1 15 00 c9 00 00 00 | t...>.......).......]........... |
| 16860 | 64 d1 15 00 3f 00 00 00 2e d2 15 00 dd 00 00 00 6e d2 15 00 12 00 00 00 4c d3 15 00 12 00 00 00 | d...?...........n.......L....... |
| 16880 | 5f d3 15 00 12 00 00 00 72 d3 15 00 4c 00 00 00 85 d3 15 00 19 00 00 00 d2 d3 15 00 7f 00 00 00 | _.......r...L................... |
| 168a0 | ec d3 15 00 1d 00 00 00 6c d4 15 00 73 00 00 00 8a d4 15 00 31 00 00 00 fe d4 15 00 d7 00 00 00 | ........l...s.......1........... |
| 168c0 | 30 d5 15 00 1e 00 00 00 08 d6 15 00 24 00 00 00 27 d6 15 00 5c 00 00 00 4c d6 15 00 21 00 00 00 | 0...........$...'...\...L...!... |
| 168e0 | a9 d6 15 00 14 00 00 00 cb d6 15 00 52 00 00 00 e0 d6 15 00 5c 00 00 00 33 d7 15 00 b7 00 00 00 | ............R.......\...3....... |
| 16900 | 90 d7 15 00 44 01 00 00 48 d8 15 00 47 00 00 00 8d d9 15 00 a5 01 00 00 d5 d9 15 00 27 00 00 00 | ....D...H...G...............'... |
| 16920 | 7b db 15 00 88 01 00 00 a3 db 15 00 72 00 00 00 2c dd 15 00 74 00 00 00 9f dd 15 00 6d 00 00 00 | {...........r...,...t.......m... |
| 16940 | 14 de 15 00 33 00 00 00 82 de 15 00 30 00 00 00 b6 de 15 00 3e 00 00 00 e7 de 15 00 33 01 00 00 | ....3.......0.......>.......3... |
| 16960 | 26 df 15 00 41 00 00 00 5a e0 15 00 30 00 00 00 9c e0 15 00 d1 00 00 00 cd e0 15 00 8f 00 00 00 | &...A...Z...0................... |
| 16980 | 9f e1 15 00 3f 00 00 00 2f e2 15 00 df 00 00 00 6f e2 15 00 c2 01 00 00 4f e3 15 00 49 00 00 00 | ....?.../.......o.......O...I... |
| 169a0 | 12 e5 15 00 e7 00 00 00 5c e5 15 00 65 01 00 00 44 e6 15 00 1f 00 00 00 aa e7 15 00 30 00 00 00 | ........\...e...D...........0... |
| 169c0 | ca e7 15 00 33 00 00 00 fb e7 15 00 11 00 00 00 2f e8 15 00 05 00 00 00 41 e8 15 00 03 00 00 00 | ....3.........../.......A....... |
| 169e0 | 47 e8 15 00 0e 00 00 00 4b e8 15 00 1b 00 00 00 5a e8 15 00 1d 00 00 00 76 e8 15 00 1f 00 00 00 | G.......K.......Z.......v....... |
| 16a00 | 94 e8 15 00 04 00 00 00 b4 e8 15 00 0d 00 00 00 b9 e8 15 00 32 00 00 00 c7 e8 15 00 29 00 00 00 | ....................2.......)... |
| 16a20 | fa e8 15 00 04 00 00 00 24 e9 15 00 07 00 00 00 29 e9 15 00 09 00 00 00 31 e9 15 00 0d 00 00 00 | ........$.......).......1....... |
| 16a40 | 3b e9 15 00 17 00 00 00 49 e9 15 00 0f 00 00 00 61 e9 15 00 0d 00 00 00 71 e9 15 00 06 00 00 00 | ;.......I.......a.......q....... |
| 16a60 | 7f e9 15 00 19 00 00 00 86 e9 15 00 14 00 00 00 a0 e9 15 00 05 00 00 00 b5 e9 15 00 15 00 00 00 | ................................ |
| 16a80 | bb e9 15 00 04 00 00 00 d1 e9 15 00 04 00 00 00 d6 e9 15 00 06 00 00 00 db e9 15 00 51 00 00 00 | ............................Q... |
| 16aa0 | e2 e9 15 00 4a 01 00 00 34 ea 15 00 50 01 00 00 7f eb 15 00 4d 00 00 00 d0 ec 15 00 05 00 00 00 | ....J...4...P.......M........... |
| 16ac0 | 1e ed 15 00 12 00 00 00 24 ed 15 00 15 00 00 00 37 ed 15 00 22 00 00 00 4d ed 15 00 10 00 00 00 | ........$.......7..."...M....... |
| 16ae0 | 70 ed 15 00 12 00 00 00 81 ed 15 00 0e 00 00 00 94 ed 15 00 10 00 00 00 a3 ed 15 00 13 00 00 00 | p............................... |
| 16b00 | b4 ed 15 00 16 00 00 00 c8 ed 15 00 06 00 00 00 df ed 15 00 09 00 00 00 e6 ed 15 00 1d 00 00 00 | ................................ |
| 16b20 | f0 ed 15 00 05 00 00 00 0e ee 15 00 0b 00 00 00 14 ee 15 00 13 00 00 00 20 ee 15 00 0d 00 00 00 | ................................ |
| 16b40 | 34 ee 15 00 05 00 00 00 42 ee 15 00 68 00 00 00 48 ee 15 00 67 00 00 00 b1 ee 15 00 79 00 00 00 | 4.......B...h...H...g.......y... |
| 16b60 | 19 ef 15 00 66 00 00 00 93 ef 15 00 03 00 00 00 fa ef 15 00 08 00 00 00 fe ef 15 00 31 00 00 00 | ....f.......................1... |
| 16b80 | 07 f0 15 00 07 00 00 00 39 f0 15 00 08 00 00 00 41 f0 15 00 38 00 00 00 4a f0 15 00 10 00 00 00 | ........9.......A...8...J....... |
| 16ba0 | 83 f0 15 00 0b 00 00 00 94 f0 15 00 03 00 00 00 a0 f0 15 00 1d 00 00 00 a4 f0 15 00 06 00 00 00 | ................................ |
| 16bc0 | c2 f0 15 00 1d 00 00 00 c9 f0 15 00 09 00 00 00 e7 f0 15 00 26 00 00 00 f1 f0 15 00 6d 00 00 00 | ....................&.......m... |
| 16be0 | 18 f1 15 00 46 00 00 00 86 f1 15 00 36 00 00 00 cd f1 15 00 32 00 00 00 04 f2 15 00 46 00 00 00 | ....F.......6.......2.......F... |
| 16c00 | 37 f2 15 00 04 00 00 00 7e f2 15 00 22 00 00 00 83 f2 15 00 08 00 00 00 a6 f2 15 00 07 00 00 00 | 7.......~..."................... |
| 16c20 | af f2 15 00 46 00 00 00 b7 f2 15 00 0d 00 00 00 fe f2 15 00 05 00 00 00 0c f3 15 00 1b 00 00 00 | ....F........................... |
| 16c40 | 12 f3 15 00 1c 00 00 00 2e f3 15 00 73 00 00 00 4b f3 15 00 71 00 00 00 bf f3 15 00 04 00 00 00 | ............s...K...q........... |
| 16c60 | 31 f4 15 00 06 00 00 00 36 f4 15 00 04 00 00 00 3d f4 15 00 05 00 00 00 42 f4 15 00 10 00 00 00 | 1.......6.......=.......B....... |
| 16c80 | 48 f4 15 00 3c 00 00 00 59 f4 15 00 32 00 00 00 96 f4 15 00 1c 00 00 00 c9 f4 15 00 6d 00 00 00 | H...<...Y...2...............m... |
| 16ca0 | e6 f4 15 00 08 00 00 00 54 f5 15 00 14 00 00 00 5d f5 15 00 14 00 00 00 72 f5 15 00 14 00 00 00 | ........T.......].......r....... |
| 16cc0 | 87 f5 15 00 14 00 00 00 9c f5 15 00 14 00 00 00 b1 f5 15 00 14 00 00 00 c6 f5 15 00 14 00 00 00 | ................................ |
| 16ce0 | db f5 15 00 06 00 00 00 f0 f5 15 00 06 00 00 00 f7 f5 15 00 06 00 00 00 fe f5 15 00 06 00 00 00 | ................................ |
| 16d00 | 05 f6 15 00 06 00 00 00 0c f6 15 00 06 00 00 00 13 f6 15 00 06 00 00 00 1a f6 15 00 06 00 00 00 | ................................ |
| 16d20 | 21 f6 15 00 1f 00 00 00 28 f6 15 00 08 00 00 00 48 f6 15 00 08 00 00 00 51 f6 15 00 a4 00 00 00 | !.......(.......H.......Q....... |
| 16d40 | 5a f6 15 00 03 00 00 00 ff f6 15 00 0d 00 00 00 03 f7 15 00 74 00 00 00 11 f7 15 00 9a 00 00 00 | Z...................t........... |
| 16d60 | 86 f7 15 00 4c 00 00 00 21 f8 15 00 04 00 00 00 6e f8 15 00 0c 00 00 00 73 f8 15 00 3f 00 00 00 | ....L...!.......n.......s...?... |
| 16d80 | 80 f8 15 00 29 00 00 00 c0 f8 15 00 37 00 00 00 ea f8 15 00 2c 00 00 00 22 f9 15 00 0e 00 00 00 | ....).......7.......,..."....... |
| 16da0 | 4f f9 15 00 33 00 00 00 5e f9 15 00 33 00 00 00 92 f9 15 00 0b 00 00 00 c6 f9 15 00 14 00 00 00 | O...3...^...3................... |
| 16dc0 | d2 f9 15 00 71 00 00 00 e7 f9 15 00 46 00 00 00 59 fa 15 00 09 00 00 00 a0 fa 15 00 04 00 00 00 | ....q.......F...Y............... |
| 16de0 | aa fa 15 00 0b 00 00 00 af fa 15 00 12 00 00 00 bb fa 15 00 0f 00 00 00 ce fa 15 00 08 00 00 00 | ................................ |
| 16e00 | de fa 15 00 06 00 00 00 e7 fa 15 00 03 00 00 00 ee fa 15 00 0a 00 00 00 f2 fa 15 00 0b 00 00 00 | ................................ |
| 16e20 | fd fa 15 00 40 00 00 00 09 fb 15 00 07 00 00 00 4a fb 15 00 06 00 00 00 52 fb 15 00 05 00 00 00 | ....@...........J.......R....... |
| 16e40 | 59 fb 15 00 9b 00 00 00 5f fb 15 00 11 00 00 00 fb fb 15 00 0d 00 00 00 0d fc 15 00 13 00 00 00 | Y......._....................... |
| 16e60 | 1b fc 15 00 15 00 00 00 2f fc 15 00 18 00 00 00 45 fc 15 00 1b 00 00 00 5e fc 15 00 0a 00 00 00 | ......../.......E.......^....... |
| 16e80 | 7a fc 15 00 12 00 00 00 85 fc 15 00 1c 00 00 00 98 fc 15 00 0f 00 00 00 b5 fc 15 00 05 00 00 00 | z............................... |
| 16ea0 | c5 fc 15 00 0e 00 00 00 cb fc 15 00 0e 00 00 00 da fc 15 00 0d 00 00 00 e9 fc 15 00 2a 00 00 00 | ............................*... |
| 16ec0 | f7 fc 15 00 15 00 00 00 22 fd 15 00 31 00 00 00 38 fd 15 00 39 00 00 00 6a fd 15 00 34 00 00 00 | ........"...1...8...9...j...4... |
| 16ee0 | a4 fd 15 00 04 00 00 00 d9 fd 15 00 0b 00 00 00 de fd 15 00 09 00 00 00 ea fd 15 00 07 00 00 00 | ................................ |
| 16f00 | f4 fd 15 00 05 00 00 00 fc fd 15 00 72 00 00 00 02 fe 15 00 08 00 00 00 75 fe 15 00 62 01 00 00 | ............r...........u...b... |
| 16f20 | 7e fe 15 00 0e 00 00 00 e1 ff 15 00 11 00 00 00 f0 ff 15 00 38 00 00 00 02 00 16 00 0d 00 00 00 | ~...................8........... |
| 16f40 | 3b 00 16 00 0d 00 00 00 49 00 16 00 06 00 00 00 57 00 16 00 3a 00 00 00 5e 00 16 00 0b 00 00 00 | ;.......I.......W...:...^....... |
| 16f60 | 99 00 16 00 3f 00 00 00 a5 00 16 00 40 00 00 00 e5 00 16 00 0e 00 00 00 26 01 16 00 0f 00 00 00 | ....?.......@...........&....... |
| 16f80 | 35 01 16 00 07 00 00 00 45 01 16 00 0e 00 00 00 4d 01 16 00 0c 00 00 00 5c 01 16 00 ad 00 00 00 | 5.......E.......M.......\....... |
| 16fa0 | 69 01 16 00 0b 00 00 00 17 02 16 00 08 00 00 00 23 02 16 00 06 00 00 00 2c 02 16 00 04 00 00 00 | i...............#.......,....... |
| 16fc0 | 33 02 16 00 d7 00 00 00 38 02 16 00 10 00 00 00 10 03 16 00 ed 01 00 00 21 03 16 00 0b 00 00 00 | 3.......8...............!....... |
| 16fe0 | 0f 05 16 00 0b 00 00 00 1b 05 16 00 0c 00 00 00 27 05 16 00 06 00 00 00 34 05 16 00 0e 00 00 00 | ................'.......4....... |
| 17000 | 3b 05 16 00 58 00 00 00 4a 05 16 00 04 00 00 00 a3 05 16 00 04 00 00 00 a8 05 16 00 05 00 00 00 | ;...X...J....................... |
| 17020 | ad 05 16 00 0e 00 00 00 b3 05 16 00 47 00 00 00 c2 05 16 00 75 00 00 00 0a 06 16 00 05 00 00 00 | ............G.......u........... |
| 17040 | 80 06 16 00 07 00 00 00 86 06 16 00 68 00 00 00 8e 06 16 00 19 00 00 00 f7 06 16 00 14 00 00 00 | ............h................... |
| 17060 | 11 07 16 00 2c 00 00 00 26 07 16 00 0b 00 00 00 53 07 16 00 09 00 00 00 5f 07 16 00 08 00 00 00 | ....,...&.......S......._....... |
| 17080 | 69 07 16 00 53 00 00 00 72 07 16 00 08 00 00 00 c6 07 16 00 22 00 00 00 cf 07 16 00 04 00 00 00 | i...S...r..........."........... |
| 170a0 | f2 07 16 00 05 00 00 00 f7 07 16 00 01 00 00 00 ec 04 00 00 00 00 00 00 dc 05 00 00 86 09 00 00 | ................................ |
| 170c0 | 84 0c 00 00 43 11 00 00 24 0f 00 00 00 00 00 00 9b 01 00 00 5b 00 00 00 00 00 00 00 9c 10 00 00 | ....C...$...........[........... |
| 170e0 | 00 00 00 00 00 00 00 00 2a 10 00 00 5c 09 00 00 bd 04 00 00 6d 0c 00 00 01 17 00 00 be 0a 00 00 | ........*...\.......m........... |
| 17100 | 82 12 00 00 46 16 00 00 a9 0f 00 00 4b 12 00 00 4f 05 00 00 2f 10 00 00 86 12 00 00 16 04 00 00 | ....F.......K...O.../........... |
| 17120 | 00 00 00 00 55 03 00 00 00 00 00 00 8d 00 00 00 28 14 00 00 c5 01 00 00 00 00 00 00 35 08 00 00 | ....U...........(...........5... |
| 17140 | 98 10 00 00 9c 16 00 00 33 00 00 00 bf 14 00 00 74 0b 00 00 00 00 00 00 6e 02 00 00 b2 11 00 00 | ........3.......t.......n....... |
| 17160 | 94 13 00 00 ff 0c 00 00 9a 06 00 00 11 01 00 00 1f 01 00 00 40 01 00 00 4f 01 00 00 56 01 00 00 | ....................@...O...V... |
| 17180 | 60 01 00 00 01 01 00 00 72 01 00 00 74 01 00 00 76 01 00 00 00 00 00 00 a5 13 00 00 dd 12 00 00 | `.......r...t...v............... |
| 171a0 | eb 04 00 00 00 00 00 00 9e 0b 00 00 da 0d 00 00 00 00 00 00 fb 15 00 00 25 08 00 00 47 0a 00 00 | ........................%...G... |
| 171c0 | 3d 0a 00 00 00 00 00 00 49 02 00 00 43 0f 00 00 29 16 00 00 79 0a 00 00 1a 0d 00 00 00 00 00 00 | =.......I...C...)...y........... |
| 171e0 | 95 11 00 00 45 0a 00 00 e8 13 00 00 84 08 00 00 00 00 00 00 da 05 00 00 08 0f 00 00 00 00 00 00 | ....E........................... |
| 17200 | e8 10 00 00 e6 00 00 00 73 08 00 00 b2 0e 00 00 7d 14 00 00 47 11 00 00 00 00 00 00 a5 10 00 00 | ........s.......}...G........... |
| 17220 | 78 0e 00 00 00 00 00 00 17 02 00 00 ca 0a 00 00 0a 07 00 00 43 03 00 00 00 00 00 00 00 00 00 00 | x...................C........... |
| 17240 | e2 0a 00 00 00 00 00 00 00 00 00 00 b9 15 00 00 fb 0d 00 00 00 00 00 00 49 07 00 00 6e 15 00 00 | ........................I...n... |
| 17260 | 67 01 00 00 1a 07 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ae 0f 00 00 43 0a 00 00 8d 0a 00 00 | g.......................C....... |
| 17280 | c6 05 00 00 98 0e 00 00 58 0c 00 00 52 08 00 00 4a 05 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ........X...R...J............... |
| 172a0 | 00 00 00 00 5e 03 00 00 00 00 00 00 41 08 00 00 46 03 00 00 ea 0f 00 00 08 05 00 00 29 0c 00 00 | ....^.......A...F...........)... |
| 172c0 | c7 16 00 00 de 03 00 00 3d 07 00 00 00 00 00 00 11 03 00 00 84 00 00 00 34 05 00 00 f4 14 00 00 | ........=...............4....... |
| 172e0 | 10 11 00 00 10 14 00 00 b1 0a 00 00 24 10 00 00 00 00 00 00 da 10 00 00 61 0a 00 00 00 00 00 00 | ............$...........a....... |
| 17300 | 7d 0a 00 00 46 0f 00 00 00 00 00 00 7c 06 00 00 00 00 00 00 00 00 00 00 cb 11 00 00 0c 0b 00 00 | }...F.......|................... |
| 17320 | 9d 0a 00 00 62 00 00 00 00 00 00 00 e8 15 00 00 71 15 00 00 6f 0b 00 00 6a 02 00 00 52 05 00 00 | ....b...........q...o...j...R... |
| 17340 | db 00 00 00 25 0c 00 00 53 06 00 00 b4 0d 00 00 5e 0d 00 00 47 0b 00 00 83 01 00 00 00 00 00 00 | ....%...S.......^...G........... |
| 17360 | e6 02 00 00 1d 0a 00 00 ef 06 00 00 94 16 00 00 00 00 00 00 e5 01 00 00 00 00 00 00 6f 04 00 00 | ............................o... |
| 17380 | 60 13 00 00 00 04 00 00 93 05 00 00 00 00 00 00 44 08 00 00 d4 13 00 00 00 00 00 00 19 0b 00 00 | `...............D............... |
| 173a0 | 6a 12 00 00 3b 14 00 00 34 15 00 00 6c 0e 00 00 af 0a 00 00 00 00 00 00 00 00 00 00 72 0c 00 00 | j...;...4...l...............r... |
| 173c0 | e1 00 00 00 7e 0a 00 00 c2 07 00 00 24 09 00 00 00 00 00 00 cb 0b 00 00 8c 03 00 00 99 09 00 00 | ....~.......$................... |
| 173e0 | 00 00 00 00 df 12 00 00 bb 02 00 00 00 00 00 00 00 00 00 00 a7 0a 00 00 43 0e 00 00 2b 0b 00 00 | ........................C...+... |
| 17400 | fb 04 00 00 00 00 00 00 00 00 00 00 00 00 00 00 cd 0e 00 00 bb 10 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 17420 | 0b 01 00 00 05 04 00 00 51 10 00 00 a6 16 00 00 a9 0d 00 00 a3 14 00 00 00 00 00 00 52 14 00 00 | ........Q...................R... |
| 17440 | 00 00 00 00 00 00 00 00 00 00 00 00 ef 02 00 00 69 05 00 00 00 00 00 00 20 0e 00 00 b9 13 00 00 | ................i............... |
| 17460 | f9 0e 00 00 75 0b 00 00 9f 10 00 00 00 00 00 00 37 05 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ....u...........7............... |
| 17480 | 00 00 00 00 a6 03 00 00 40 02 00 00 66 0e 00 00 20 00 00 00 91 00 00 00 00 00 00 00 00 00 00 00 | ........@...f................... |
| 174a0 | 72 0e 00 00 a8 0a 00 00 00 00 00 00 a7 06 00 00 45 0e 00 00 14 04 00 00 00 00 00 00 00 00 00 00 | r...............E............... |
| 174c0 | 00 00 00 00 f0 07 00 00 00 00 00 00 65 11 00 00 00 00 00 00 70 07 00 00 3a 15 00 00 00 00 00 00 | ............e.......p...:....... |
| 174e0 | 4b 11 00 00 de 02 00 00 00 00 00 00 56 06 00 00 00 00 00 00 cc 0f 00 00 ca 05 00 00 c0 13 00 00 | K...........V................... |
| 17500 | 00 00 00 00 28 0c 00 00 23 0d 00 00 00 00 00 00 00 00 00 00 b2 12 00 00 88 0f 00 00 00 00 00 00 | ....(...#....................... |
| 17520 | d5 13 00 00 69 0f 00 00 ee 06 00 00 00 00 00 00 00 00 00 00 d6 01 00 00 40 16 00 00 93 06 00 00 | ....i...................@....... |
| 17540 | 61 04 00 00 bf 00 00 00 b0 09 00 00 31 15 00 00 ad 10 00 00 a1 08 00 00 63 01 00 00 e3 0b 00 00 | a...........1...........c....... |
| 17560 | 5d 06 00 00 12 02 00 00 c8 13 00 00 99 16 00 00 12 0e 00 00 00 00 00 00 00 00 00 00 b8 01 00 00 | ]............................... |
| 17580 | ac 06 00 00 00 00 00 00 00 00 00 00 ea 01 00 00 00 00 00 00 36 14 00 00 00 00 00 00 00 00 00 00 | ....................6........... |
| 175a0 | df 11 00 00 00 00 00 00 13 05 00 00 93 10 00 00 3b 0c 00 00 00 00 00 00 70 04 00 00 6b 0b 00 00 | ................;.......p...k... |
| 175c0 | d6 11 00 00 7c 02 00 00 9f 0f 00 00 8a 09 00 00 74 11 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ....|...........t............... |
| 175e0 | e4 0e 00 00 e7 0c 00 00 a3 0c 00 00 c2 16 00 00 d1 06 00 00 a0 08 00 00 e8 0c 00 00 33 10 00 00 | ............................3... |
| 17600 | 00 00 00 00 cd 13 00 00 28 0e 00 00 00 00 00 00 5b 0e 00 00 16 13 00 00 2f 0e 00 00 5b 0b 00 00 | ........(.......[......./...[... |
| 17620 | ab 01 00 00 01 0d 00 00 5b 14 00 00 af 12 00 00 00 00 00 00 0d 13 00 00 00 00 00 00 00 00 00 00 | ........[....................... |
| 17640 | 00 00 00 00 5f 11 00 00 13 04 00 00 f5 0d 00 00 00 00 00 00 4f 0b 00 00 a9 04 00 00 18 08 00 00 | ...._...............O........... |
| 17660 | 64 0b 00 00 c6 12 00 00 c4 11 00 00 ae 0c 00 00 e4 00 00 00 e5 07 00 00 0f 15 00 00 e4 0b 00 00 | d............................... |
| 17680 | 60 14 00 00 58 11 00 00 df 02 00 00 84 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00 b0 13 00 00 | `...X........................... |
| 176a0 | 00 00 00 00 00 00 00 00 1a 05 00 00 f3 07 00 00 00 00 00 00 00 00 00 00 ca 11 00 00 de 04 00 00 | ................................ |
| 176c0 | 63 14 00 00 00 00 00 00 39 00 00 00 75 12 00 00 00 00 00 00 18 10 00 00 83 0e 00 00 02 13 00 00 | c.......9...u................... |
| 176e0 | 80 02 00 00 8d 06 00 00 00 00 00 00 ac 0b 00 00 46 07 00 00 1e 16 00 00 af 0d 00 00 a6 11 00 00 | ................F............... |
| 17700 | 00 00 00 00 f9 11 00 00 7a 14 00 00 73 12 00 00 01 13 00 00 53 0e 00 00 93 0a 00 00 f1 0b 00 00 | ........z...s.......S........... |
| 17720 | 06 0d 00 00 6b 16 00 00 bc 09 00 00 7b 0c 00 00 00 00 00 00 89 11 00 00 47 16 00 00 9b 07 00 00 | ....k.......{...........G....... |
| 17740 | 00 00 00 00 b3 0c 00 00 00 00 00 00 65 07 00 00 e8 11 00 00 8a 05 00 00 87 0a 00 00 b9 0b 00 00 | ............e................... |
| 17760 | 4b 00 00 00 a6 0d 00 00 00 00 00 00 00 00 00 00 00 00 00 00 57 0b 00 00 0e 10 00 00 00 00 00 00 | K...................W........... |
| 17780 | 00 00 00 00 19 00 00 00 6e 0e 00 00 4e 0f 00 00 50 16 00 00 00 00 00 00 83 06 00 00 c7 0e 00 00 | ........n...N...P............... |
| 177a0 | 1d 0d 00 00 00 00 00 00 8c 14 00 00 21 11 00 00 1d 13 00 00 c0 08 00 00 00 00 00 00 f8 14 00 00 | ............!................... |
| 177c0 | fe 12 00 00 e9 03 00 00 e2 0e 00 00 00 00 00 00 fb 02 00 00 00 00 00 00 40 11 00 00 95 09 00 00 | ........................@....... |
| 177e0 | 8a 0d 00 00 6f 00 00 00 a5 00 00 00 47 0e 00 00 51 01 00 00 7c 0b 00 00 00 00 00 00 00 00 00 00 | ....o.......G...Q...|........... |
| 17800 | dc 11 00 00 5b 09 00 00 18 13 00 00 d7 0e 00 00 ab 15 00 00 00 00 00 00 18 00 00 00 12 0a 00 00 | ....[........................... |
| 17820 | ff 11 00 00 46 00 00 00 e1 14 00 00 74 0e 00 00 48 06 00 00 02 0a 00 00 00 00 00 00 f1 05 00 00 | ....F.......t...H............... |
| 17840 | 00 00 00 00 d4 02 00 00 60 0a 00 00 00 00 00 00 00 00 00 00 37 0f 00 00 bf 06 00 00 00 00 00 00 | ........`...........7........... |
| 17860 | 6e 13 00 00 00 00 00 00 48 0d 00 00 00 00 00 00 d9 0c 00 00 8b 12 00 00 ce 16 00 00 b3 05 00 00 | n.......H....................... |
| 17880 | 00 00 00 00 13 16 00 00 00 00 00 00 6d 09 00 00 00 00 00 00 11 12 00 00 fd 12 00 00 00 00 00 00 | ............m................... |
| 178a0 | 64 05 00 00 00 00 00 00 cd 12 00 00 00 00 00 00 00 00 00 00 9e 09 00 00 6c 0b 00 00 87 0e 00 00 | d.......................l....... |
| 178c0 | 21 0d 00 00 90 12 00 00 b7 13 00 00 1b 09 00 00 66 14 00 00 00 00 00 00 d5 0c 00 00 00 00 00 00 | !...............f............... |
| 178e0 | 00 00 00 00 5d 0b 00 00 06 0c 00 00 3d 15 00 00 34 14 00 00 f2 07 00 00 d5 0b 00 00 c5 09 00 00 | ....].......=...4............... |
| 17900 | 31 13 00 00 cf 05 00 00 b8 08 00 00 43 09 00 00 00 00 00 00 0f 02 00 00 c8 10 00 00 00 00 00 00 | 1...........C................... |
| 17920 | ab 07 00 00 08 12 00 00 00 00 00 00 e8 0e 00 00 30 11 00 00 50 0b 00 00 63 07 00 00 75 02 00 00 | ................0...P...c...u... |
| 17940 | 00 00 00 00 c4 0b 00 00 00 00 00 00 00 00 00 00 a7 03 00 00 00 00 00 00 00 00 00 00 d3 07 00 00 | ................................ |
| 17960 | 00 00 00 00 34 12 00 00 04 02 00 00 00 00 00 00 17 14 00 00 13 09 00 00 76 04 00 00 00 00 00 00 | ....4...................v....... |
| 17980 | be 05 00 00 78 0f 00 00 40 0d 00 00 bd 0d 00 00 3c 0e 00 00 ce 03 00 00 1d 0c 00 00 d2 07 00 00 | ....x...@.......<............... |
| 179a0 | 05 0b 00 00 f9 01 00 00 00 00 00 00 ac 07 00 00 12 08 00 00 89 0c 00 00 79 16 00 00 c4 16 00 00 | ........................y....... |
| 179c0 | fa 01 00 00 78 02 00 00 f6 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 16 08 00 00 00 00 00 00 | ....x........................... |
| 179e0 | c9 0a 00 00 00 00 00 00 5e 12 00 00 7b 0b 00 00 ad 01 00 00 20 12 00 00 57 16 00 00 66 00 00 00 | ........^...{...........W...f... |
| 17a00 | 75 10 00 00 00 00 00 00 c8 07 00 00 46 05 00 00 00 00 00 00 d9 00 00 00 00 00 00 00 22 06 00 00 | u...........F..............."... |
| 17a20 | 68 0c 00 00 ae 10 00 00 00 00 00 00 37 13 00 00 44 16 00 00 10 09 00 00 00 00 00 00 00 00 00 00 | h...........7...D............... |
| 17a40 | 09 16 00 00 20 06 00 00 00 00 00 00 87 01 00 00 00 00 00 00 ca 00 00 00 42 09 00 00 84 09 00 00 | ........................B....... |
| 17a60 | 27 16 00 00 09 02 00 00 00 00 00 00 70 03 00 00 06 01 00 00 bb 13 00 00 00 00 00 00 a9 15 00 00 | '...........p................... |
| 17a80 | 6b 12 00 00 00 00 00 00 18 0b 00 00 08 03 00 00 dc 00 00 00 f1 04 00 00 ce 08 00 00 00 00 00 00 | k............................... |
| 17aa0 | 10 02 00 00 00 00 00 00 b7 15 00 00 2d 0e 00 00 0a 05 00 00 9c 12 00 00 fb 03 00 00 a8 0e 00 00 | ............-................... |
| 17ac0 | b6 0e 00 00 cb 0a 00 00 1d 06 00 00 22 0b 00 00 09 03 00 00 4e 02 00 00 4d 08 00 00 f6 08 00 00 | ............".......N...M....... |
| 17ae0 | 19 07 00 00 00 00 00 00 00 00 00 00 7e 12 00 00 bd 0f 00 00 00 00 00 00 39 0e 00 00 34 0b 00 00 | ............~...........9...4... |
| 17b00 | 00 00 00 00 00 00 00 00 58 12 00 00 83 05 00 00 00 00 00 00 5d 03 00 00 00 00 00 00 32 04 00 00 | ........X...........].......2... |
| 17b20 | 64 04 00 00 66 0d 00 00 ab 0a 00 00 f5 13 00 00 00 00 00 00 db 04 00 00 d7 0b 00 00 2d 01 00 00 | d...f.......................-... |
| 17b40 | 00 00 00 00 cf 15 00 00 00 00 00 00 43 06 00 00 00 00 00 00 00 00 00 00 57 06 00 00 00 00 00 00 | ............C...........W....... |
| 17b60 | 5b 0f 00 00 41 0a 00 00 3f 13 00 00 c3 11 00 00 00 00 00 00 43 08 00 00 1a 0f 00 00 a8 0d 00 00 | [...A...?...........C........... |
| 17b80 | 00 00 00 00 00 00 00 00 a8 11 00 00 dd 0b 00 00 00 00 00 00 a9 09 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 17ba0 | 00 02 00 00 13 12 00 00 27 08 00 00 49 0c 00 00 d0 15 00 00 c1 0d 00 00 ab 0f 00 00 f0 16 00 00 | ........'...I................... |
| 17bc0 | 00 00 00 00 00 00 00 00 00 00 00 00 fe 00 00 00 00 00 00 00 e9 02 00 00 f2 08 00 00 fe 09 00 00 | ................................ |
| 17be0 | e3 01 00 00 00 00 00 00 00 00 00 00 7b 0a 00 00 00 00 00 00 a7 16 00 00 33 0e 00 00 00 00 00 00 | ............{...........3....... |
| 17c00 | 5e 05 00 00 c6 11 00 00 f9 03 00 00 19 16 00 00 0c 10 00 00 00 00 00 00 da 09 00 00 08 07 00 00 | ^............................... |
| 17c20 | 81 0f 00 00 00 00 00 00 10 00 00 00 7b 0d 00 00 23 07 00 00 00 00 00 00 cf 07 00 00 5f 0c 00 00 | ............{...#..........._... |
| 17c40 | d7 06 00 00 d8 12 00 00 09 15 00 00 35 15 00 00 ab 14 00 00 a8 14 00 00 a7 09 00 00 3d 08 00 00 | ............5...............=... |
| 17c60 | f0 02 00 00 00 00 00 00 0a 01 00 00 c2 05 00 00 00 00 00 00 34 09 00 00 01 16 00 00 ed 14 00 00 | ....................4........... |
| 17c80 | 7d 13 00 00 c7 03 00 00 be 10 00 00 3f 0b 00 00 2a 13 00 00 e3 05 00 00 00 00 00 00 2e 08 00 00 | }...........?...*............... |
| 17ca0 | 3d 12 00 00 00 00 00 00 66 0b 00 00 00 00 00 00 91 15 00 00 00 00 00 00 24 07 00 00 f1 10 00 00 | =.......f...............$....... |
| 17cc0 | 92 15 00 00 00 00 00 00 00 00 00 00 9b 0a 00 00 00 00 00 00 00 00 00 00 00 00 00 00 58 10 00 00 | ............................X... |
| 17ce0 | 00 00 00 00 00 00 00 00 00 00 00 00 87 15 00 00 79 14 00 00 00 00 00 00 53 10 00 00 9a 05 00 00 | ................y.......S....... |
| 17d00 | 34 0c 00 00 a2 10 00 00 00 00 00 00 e4 05 00 00 00 00 00 00 57 15 00 00 3b 0f 00 00 98 02 00 00 | 4...................W...;....... |
| 17d20 | 4d 14 00 00 bc 16 00 00 b1 12 00 00 00 00 00 00 00 00 00 00 00 00 00 00 60 15 00 00 00 00 00 00 | M.......................`....... |
| 17d40 | b9 04 00 00 00 00 00 00 e6 15 00 00 8e 0c 00 00 00 00 00 00 00 00 00 00 00 00 00 00 4e 11 00 00 | ............................N... |
| 17d60 | 68 16 00 00 6f 13 00 00 00 00 00 00 4f 0e 00 00 c0 0b 00 00 51 03 00 00 86 0f 00 00 0a 0e 00 00 | h...o.......O.......Q........... |
| 17d80 | 17 0c 00 00 ef 00 00 00 00 00 00 00 4d 0e 00 00 00 00 00 00 48 13 00 00 ae 07 00 00 97 0e 00 00 | ............M.......H........... |
| 17da0 | 8e 0d 00 00 8d 0e 00 00 00 00 00 00 27 01 00 00 32 01 00 00 34 01 00 00 36 01 00 00 37 01 00 00 | ............'...2...4...6...7... |
| 17dc0 | 38 01 00 00 39 01 00 00 3a 01 00 00 3c 01 00 00 3d 01 00 00 00 00 00 00 35 0e 00 00 00 00 00 00 | 8...9...:...<...=.......5....... |
| 17de0 | 00 00 00 00 00 00 00 00 00 00 00 00 c1 00 00 00 45 01 00 00 46 01 00 00 47 01 00 00 48 0f 00 00 | ................E...F...G...H... |
| 17e00 | f2 0a 00 00 4b 01 00 00 50 01 00 00 4c 01 00 00 af 0c 00 00 f0 0c 00 00 7f 15 00 00 9b 0d 00 00 | ....K...P...L................... |
| 17e20 | ab 0c 00 00 f8 0c 00 00 4f 14 00 00 52 01 00 00 b3 0f 00 00 da 0b 00 00 01 05 00 00 53 01 00 00 | ........O...R...............S... |
| 17e40 | 07 06 00 00 54 01 00 00 eb 01 00 00 55 01 00 00 00 00 00 00 9b 0c 00 00 9e 16 00 00 00 00 00 00 | ....T.......U................... |
| 17e60 | 71 0a 00 00 2e 0e 00 00 70 06 00 00 00 00 00 00 93 03 00 00 5d 01 00 00 00 00 00 00 5e 01 00 00 | q.......p...........].......^... |
| 17e80 | 0a 15 00 00 5f 01 00 00 75 00 00 00 69 14 00 00 f8 15 00 00 00 00 00 00 a4 09 00 00 59 0d 00 00 | ...._...u...i...............Y... |
| 17ea0 | 32 05 00 00 c7 0f 00 00 3d 00 00 00 00 00 00 00 22 00 00 00 e7 15 00 00 5d 05 00 00 66 01 00 00 | 2.......=.......".......]...f... |
| 17ec0 | fa 03 00 00 00 00 00 00 00 00 00 00 00 00 00 00 04 11 00 00 09 0f 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 17ee0 | 7d 0e 00 00 c7 07 00 00 ce 13 00 00 41 10 00 00 bc 0e 00 00 2c 11 00 00 00 00 00 00 00 00 00 00 | }...........A.......,........... |
| 17f00 | 15 0f 00 00 6c 01 00 00 6e 01 00 00 b7 10 00 00 6f 01 00 00 00 00 00 00 89 16 00 00 f5 0f 00 00 | ....l...n.......o............... |
| 17f20 | 98 07 00 00 48 0a 00 00 ba 12 00 00 73 01 00 00 00 00 00 00 ab 16 00 00 29 14 00 00 f3 0e 00 00 | ....H.......s...........)....... |
| 17f40 | c6 0b 00 00 00 00 00 00 dd 05 00 00 5c 00 00 00 d7 08 00 00 53 16 00 00 00 00 00 00 d1 04 00 00 | ............\.......S........... |
| 17f60 | 25 00 00 00 eb 16 00 00 02 0d 00 00 50 0e 00 00 22 12 00 00 d5 01 00 00 03 04 00 00 26 11 00 00 | %...........P..."...........&... |
| 17f80 | ef 0f 00 00 00 00 00 00 51 00 00 00 c5 02 00 00 79 07 00 00 ae 0b 00 00 50 0f 00 00 4a 11 00 00 | ........Q.......y.......P...J... |
| 17fa0 | 01 11 00 00 49 15 00 00 d5 08 00 00 dc 0d 00 00 52 12 00 00 00 00 00 00 b3 07 00 00 82 0f 00 00 | ....I...........R............... |
| 17fc0 | 4d 12 00 00 61 09 00 00 00 00 00 00 00 00 00 00 5b 06 00 00 00 00 00 00 7f 11 00 00 ec 07 00 00 | M...a...........[............... |
| 17fe0 | a4 08 00 00 cb 07 00 00 a5 02 00 00 00 00 00 00 2a 04 00 00 a2 11 00 00 00 00 00 00 4a 08 00 00 | ................*...........J... |
| 18000 | ef 0e 00 00 5c 04 00 00 0f 09 00 00 01 06 00 00 00 00 00 00 00 00 00 00 63 0e 00 00 8f 0e 00 00 | ....\...................c....... |
| 18020 | 00 00 00 00 00 00 00 00 64 02 00 00 fc 04 00 00 22 08 00 00 5b 13 00 00 93 12 00 00 6e 00 00 00 | ........d......."...[.......n... |
| 18040 | 61 07 00 00 72 15 00 00 f5 0b 00 00 30 0d 00 00 08 10 00 00 be 02 00 00 b3 06 00 00 00 00 00 00 | a...r.......0................... |
| 18060 | 60 12 00 00 f4 06 00 00 00 00 00 00 5a 04 00 00 04 03 00 00 de 14 00 00 24 0a 00 00 3e 02 00 00 | `...........Z...........$...>... |
| 18080 | 00 00 00 00 6d 16 00 00 16 10 00 00 50 0c 00 00 84 0a 00 00 1a 15 00 00 00 00 00 00 69 0d 00 00 | ....m.......P...............i... |
| 180a0 | ea 0d 00 00 bf 09 00 00 00 00 00 00 00 00 00 00 66 0f 00 00 00 00 00 00 a2 0e 00 00 d8 13 00 00 | ................f............... |
| 180c0 | 00 00 00 00 bc 06 00 00 1e 02 00 00 c2 14 00 00 67 02 00 00 e5 05 00 00 00 00 00 00 d6 0f 00 00 | ................g............... |
| 180e0 | 00 00 00 00 4f 03 00 00 43 0d 00 00 37 03 00 00 ea 06 00 00 e2 03 00 00 87 0b 00 00 87 08 00 00 | ....O...C...7................... |
| 18100 | 33 08 00 00 00 00 00 00 c6 02 00 00 ef 0a 00 00 af 00 00 00 2e 0a 00 00 00 00 00 00 86 15 00 00 | 3............................... |
| 18120 | 7a 02 00 00 59 04 00 00 ac 03 00 00 00 00 00 00 93 0e 00 00 0f 0c 00 00 90 08 00 00 00 00 00 00 | z...Y........................... |
| 18140 | 00 00 00 00 00 00 00 00 f4 0e 00 00 52 15 00 00 00 00 00 00 71 04 00 00 00 00 00 00 81 00 00 00 | ............R.......q........... |
| 18160 | 3d 03 00 00 4a 04 00 00 00 00 00 00 94 00 00 00 ec 0e 00 00 cf 06 00 00 bc 07 00 00 06 14 00 00 | =...J........................... |
| 18180 | 00 00 00 00 0e 06 00 00 d6 06 00 00 36 02 00 00 70 09 00 00 00 00 00 00 90 0f 00 00 1b 05 00 00 | ............6...p............... |
| 181a0 | 49 06 00 00 00 00 00 00 00 00 00 00 5b 11 00 00 61 13 00 00 80 0d 00 00 bd 06 00 00 6b 06 00 00 | I...........[...a...........k... |
| 181c0 | 04 13 00 00 52 09 00 00 07 03 00 00 76 08 00 00 00 00 00 00 66 07 00 00 48 05 00 00 34 0a 00 00 | ....R.......v.......f...H...4... |
| 181e0 | c8 14 00 00 08 15 00 00 4f 09 00 00 77 04 00 00 04 15 00 00 00 00 00 00 08 01 00 00 00 00 00 00 | ........O...w................... |
| 18200 | fa 05 00 00 89 09 00 00 af 07 00 00 0d 05 00 00 93 0f 00 00 fc 01 00 00 2c 08 00 00 9f 05 00 00 | ........................,....... |
| 18220 | f6 07 00 00 3e 16 00 00 76 03 00 00 a4 03 00 00 00 00 00 00 99 0f 00 00 00 00 00 00 00 00 00 00 | ....>...v....................... |
| 18240 | 00 00 00 00 00 05 00 00 9c 08 00 00 a6 06 00 00 00 00 00 00 26 0a 00 00 00 00 00 00 78 07 00 00 | ....................&.......x... |
| 18260 | d0 13 00 00 7a 04 00 00 ae 11 00 00 74 16 00 00 28 12 00 00 56 0c 00 00 00 00 00 00 e8 0a 00 00 | ....z.......t...(...V........... |
| 18280 | 95 10 00 00 00 0c 00 00 77 08 00 00 00 00 00 00 1d 14 00 00 b9 14 00 00 ee 00 00 00 61 0d 00 00 | ........w...................a... |
| 182a0 | 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 dd 01 00 00 3a 14 00 00 dd 10 00 00 e1 0f 00 00 | ....................:........... |
| 182c0 | 00 00 00 00 13 0e 00 00 d2 0c 00 00 31 10 00 00 35 04 00 00 21 0f 00 00 3c 07 00 00 d8 0d 00 00 | ............1...5...!...<....... |
| 182e0 | 00 00 00 00 00 00 00 00 11 05 00 00 27 09 00 00 00 00 00 00 00 00 00 00 e3 14 00 00 fe 0b 00 00 | ............'................... |
| 18300 | 07 12 00 00 fd 0e 00 00 82 00 00 00 0c 00 00 00 00 00 00 00 00 00 00 00 b0 02 00 00 00 00 00 00 | ................................ |
| 18320 | 00 00 00 00 0b 16 00 00 6d 03 00 00 c3 13 00 00 dc 0b 00 00 71 0b 00 00 4a 13 00 00 a9 10 00 00 | ........m...........q...J....... |
| 18340 | 00 00 00 00 31 0b 00 00 00 00 00 00 f1 09 00 00 3f 0e 00 00 4d 0a 00 00 b0 0a 00 00 21 0c 00 00 | ....1...........?...M.......!... |
| 18360 | 20 10 00 00 68 03 00 00 a4 00 00 00 60 16 00 00 fa 13 00 00 00 00 00 00 bb 0b 00 00 00 00 00 00 | ....h.......`................... |
| 18380 | 1a 02 00 00 c3 14 00 00 80 15 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 183a0 | 00 00 00 00 a1 14 00 00 00 00 00 00 bc 03 00 00 fa 02 00 00 aa 13 00 00 30 15 00 00 2e 05 00 00 | ........................0....... |
| 183c0 | bb 07 00 00 b0 01 00 00 08 02 00 00 63 10 00 00 8b 0c 00 00 02 02 00 00 00 00 00 00 00 00 00 00 | ............c................... |
| 183e0 | 00 00 00 00 01 14 00 00 00 00 00 00 30 00 00 00 00 00 00 00 00 00 00 00 e1 15 00 00 00 00 00 00 | ............0................... |
| 18400 | 7d 11 00 00 04 05 00 00 16 16 00 00 d1 01 00 00 00 00 00 00 c3 0d 00 00 86 01 00 00 8d 03 00 00 | }............................... |
| 18420 | d0 03 00 00 33 02 00 00 4e 07 00 00 80 07 00 00 00 00 00 00 08 17 00 00 00 00 00 00 00 00 00 00 | ....3...N....................... |
| 18440 | 75 08 00 00 63 00 00 00 8a 13 00 00 00 00 00 00 04 0f 00 00 4d 03 00 00 49 00 00 00 00 00 00 00 | u...c...............M...I....... |
| 18460 | 00 00 00 00 96 00 00 00 99 08 00 00 27 0f 00 00 aa 05 00 00 00 00 00 00 a5 09 00 00 ff 06 00 00 | ............'................... |
| 18480 | bd 11 00 00 3a 05 00 00 2e 04 00 00 00 00 00 00 00 00 00 00 cc 0e 00 00 d2 0a 00 00 00 00 00 00 | ....:........................... |
| 184a0 | 29 0f 00 00 da 01 00 00 5e 14 00 00 1d 08 00 00 9c 05 00 00 6f 15 00 00 00 00 00 00 5c 0a 00 00 | ).......^...........o.......\... |
| 184c0 | 00 00 00 00 d7 01 00 00 00 00 00 00 00 00 00 00 23 11 00 00 08 13 00 00 75 0f 00 00 ca 12 00 00 | ................#.......u....... |
| 184e0 | 17 16 00 00 d4 04 00 00 23 13 00 00 e0 06 00 00 d9 08 00 00 00 00 00 00 5a 05 00 00 88 16 00 00 | ........#...............Z....... |
| 18500 | 03 07 00 00 33 0c 00 00 00 00 00 00 ef 10 00 00 94 05 00 00 6f 0e 00 00 1b 0b 00 00 27 0b 00 00 | ....3...............o.......'... |
| 18520 | 00 00 00 00 1f 00 00 00 67 08 00 00 dd 16 00 00 a2 07 00 00 32 08 00 00 fd 01 00 00 57 0c 00 00 | ........g...........2.......W... |
| 18540 | 00 00 00 00 66 0c 00 00 00 00 00 00 7f 0a 00 00 74 15 00 00 9c 02 00 00 00 00 00 00 6d 0b 00 00 | ....f...........t...........m... |
| 18560 | 59 0b 00 00 c9 09 00 00 5f 02 00 00 c5 13 00 00 56 0f 00 00 90 0a 00 00 7f 04 00 00 a3 03 00 00 | Y......._.......V............... |
| 18580 | 00 00 00 00 e3 11 00 00 00 00 00 00 c0 04 00 00 89 0b 00 00 00 00 00 00 bd 0b 00 00 6f 06 00 00 | ............................o... |
| 185a0 | ad 08 00 00 00 00 00 00 c7 05 00 00 03 00 00 00 f3 0d 00 00 f2 11 00 00 d9 0d 00 00 51 12 00 00 | ............................Q... |
| 185c0 | 26 0d 00 00 c1 11 00 00 e1 0a 00 00 00 00 00 00 aa 01 00 00 00 00 00 00 74 09 00 00 9d 0e 00 00 | &.......................t....... |
| 185e0 | 1e 05 00 00 29 04 00 00 69 00 00 00 d5 06 00 00 00 00 00 00 1e 07 00 00 3f 05 00 00 bb 08 00 00 | ....)...i...............?....... |
| 18600 | 52 10 00 00 e1 06 00 00 2a 07 00 00 ba 0d 00 00 00 00 00 00 84 07 00 00 00 00 00 00 9e 05 00 00 | R.......*....................... |
| 18620 | 00 00 00 00 3f 16 00 00 c4 09 00 00 31 07 00 00 6b 07 00 00 00 00 00 00 ad 00 00 00 70 0e 00 00 | ....?.......1...k...........p... |
| 18640 | d8 09 00 00 01 12 00 00 00 00 00 00 83 03 00 00 00 00 00 00 c1 0b 00 00 c2 12 00 00 95 0b 00 00 | ................................ |
| 18660 | 00 00 00 00 32 00 00 00 00 00 00 00 05 0e 00 00 00 00 00 00 6a 0c 00 00 46 0c 00 00 d2 03 00 00 | ....2...............j...F....... |
| 18680 | 02 16 00 00 58 0a 00 00 00 00 00 00 00 00 00 00 ab 10 00 00 37 15 00 00 10 07 00 00 0d 10 00 00 | ....X...............7........... |
| 186a0 | f1 16 00 00 38 04 00 00 42 03 00 00 61 12 00 00 b3 0a 00 00 00 00 00 00 55 0f 00 00 ac 11 00 00 | ....8...B...a...........U....... |
| 186c0 | 71 01 00 00 e1 10 00 00 39 0f 00 00 88 0e 00 00 4d 04 00 00 00 00 00 00 70 0f 00 00 22 07 00 00 | q.......9.......M.......p..."... |
| 186e0 | 64 01 00 00 ba 09 00 00 00 00 00 00 84 0e 00 00 0a 08 00 00 e0 12 00 00 62 13 00 00 71 0f 00 00 | d.......................b...q... |
| 18700 | 0f 0e 00 00 de 0d 00 00 e8 09 00 00 e0 0c 00 00 da 0e 00 00 e5 0b 00 00 7c 07 00 00 e0 01 00 00 | ........................|....... |
| 18720 | 1d 05 00 00 5a 08 00 00 00 00 00 00 00 00 00 00 2e 09 00 00 71 0c 00 00 83 12 00 00 65 0f 00 00 | ....Z...............q.......e... |
| 18740 | 00 00 00 00 31 01 00 00 02 17 00 00 00 00 00 00 b0 14 00 00 00 00 00 00 03 16 00 00 00 00 00 00 | ....1........................... |
| 18760 | 00 00 00 00 75 15 00 00 a4 06 00 00 bb 0d 00 00 fb 10 00 00 4b 04 00 00 5e 0b 00 00 b0 12 00 00 | ....u...............K...^....... |
| 18780 | f3 11 00 00 56 10 00 00 00 00 00 00 00 00 00 00 af 05 00 00 6c 04 00 00 7d 04 00 00 e2 01 00 00 | ....V...............l...}....... |
| 187a0 | 1d 04 00 00 00 00 00 00 78 03 00 00 00 00 00 00 18 07 00 00 72 07 00 00 85 0e 00 00 72 00 00 00 | ........x...........r.......r... |
| 187c0 | 82 06 00 00 00 00 00 00 5c 0c 00 00 ad 13 00 00 37 02 00 00 bd 00 00 00 c3 02 00 00 00 00 00 00 | ........\.......7............... |
| 187e0 | 77 0d 00 00 db 0d 00 00 00 00 00 00 6f 14 00 00 00 00 00 00 7a 11 00 00 a1 06 00 00 61 16 00 00 | w...........o.......z.......a... |
| 18800 | b2 06 00 00 ca 06 00 00 51 0f 00 00 73 0e 00 00 00 00 00 00 91 0f 00 00 00 00 00 00 5a 10 00 00 | ........Q...s...............Z... |
| 18820 | 0d 11 00 00 b1 07 00 00 00 00 00 00 17 13 00 00 98 06 00 00 d4 06 00 00 b1 08 00 00 00 00 00 00 | ................................ |
| 18840 | 64 12 00 00 dc 16 00 00 00 00 00 00 86 00 00 00 00 00 00 00 71 12 00 00 05 17 00 00 86 05 00 00 | d...................q........... |
| 18860 | 00 00 00 00 c3 15 00 00 37 00 00 00 b9 09 00 00 00 00 00 00 f6 01 00 00 ed 02 00 00 db 0e 00 00 | ........7....................... |
| 18880 | 1b 01 00 00 00 00 00 00 5c 0f 00 00 c4 02 00 00 f7 0a 00 00 f2 0d 00 00 fb 0f 00 00 5b 10 00 00 | ........\...................[... |
| 188a0 | 4a 14 00 00 8a 12 00 00 00 00 00 00 2f 0b 00 00 7a 0a 00 00 b9 08 00 00 a8 10 00 00 00 00 00 00 | J.........../...z............... |
| 188c0 | 00 00 00 00 00 00 00 00 00 00 00 00 bc 04 00 00 00 00 00 00 3e 0a 00 00 eb 15 00 00 f1 13 00 00 | ....................>........... |
| 188e0 | 63 05 00 00 00 00 00 00 d9 10 00 00 19 06 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | c............................... |
| 18900 | 8f 0d 00 00 7a 01 00 00 a3 0f 00 00 09 12 00 00 3d 0e 00 00 06 06 00 00 61 14 00 00 00 00 00 00 | ....z...........=.......a....... |
| 18920 | 72 02 00 00 00 00 00 00 6a 13 00 00 38 07 00 00 a0 0a 00 00 2a 06 00 00 00 00 00 00 13 11 00 00 | r.......j...8.......*........... |
| 18940 | 7f 06 00 00 af 06 00 00 00 00 00 00 00 00 00 00 32 03 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ................2............... |
| 18960 | 3e 03 00 00 00 00 00 00 3c 14 00 00 00 00 00 00 00 00 00 00 00 00 00 00 2d 06 00 00 27 04 00 00 | >.......<...............-...'... |
| 18980 | b6 0a 00 00 f5 0c 00 00 1c 07 00 00 91 07 00 00 00 00 00 00 86 13 00 00 50 08 00 00 00 00 00 00 | ........................P....... |
| 189a0 | 8a 02 00 00 1d 15 00 00 73 03 00 00 d7 0f 00 00 99 0d 00 00 d7 16 00 00 a2 06 00 00 00 00 00 00 | ........s....................... |
| 189c0 | 23 06 00 00 70 0a 00 00 00 00 00 00 9f 07 00 00 74 14 00 00 21 02 00 00 6b 09 00 00 d7 0c 00 00 | #...p...........t...!...k....... |
| 189e0 | 4b 13 00 00 6f 10 00 00 c7 0b 00 00 bc 0f 00 00 00 00 00 00 fc 15 00 00 00 00 00 00 c9 13 00 00 | K...o........................... |
| 18a00 | 41 12 00 00 00 00 00 00 00 00 00 00 f9 02 00 00 00 00 00 00 9c 15 00 00 58 0d 00 00 eb 12 00 00 | A.......................X....... |
| 18a20 | 00 00 00 00 00 00 00 00 db 01 00 00 09 13 00 00 c8 06 00 00 31 02 00 00 e4 14 00 00 2a 02 00 00 | ....................1.......*... |
| 18a40 | d5 16 00 00 00 00 00 00 e7 0e 00 00 59 0c 00 00 8b 06 00 00 4f 16 00 00 95 0d 00 00 91 05 00 00 | ............Y.......O........... |
| 18a60 | 6e 04 00 00 dc 14 00 00 20 11 00 00 95 07 00 00 d0 09 00 00 00 00 00 00 0e 01 00 00 3d 02 00 00 | n...........................=... |
| 18a80 | 00 00 00 00 cf 08 00 00 00 00 00 00 00 00 00 00 fd 0b 00 00 dc 06 00 00 1a 0b 00 00 79 05 00 00 | ............................y... |
| 18aa0 | 74 10 00 00 1b 13 00 00 d9 13 00 00 b2 15 00 00 00 00 00 00 be 15 00 00 00 00 00 00 8a 04 00 00 | t............................... |
| 18ac0 | 00 00 00 00 d4 0e 00 00 ad 16 00 00 10 15 00 00 12 12 00 00 99 06 00 00 00 00 00 00 ce 05 00 00 | ................................ |
| 18ae0 | fd 06 00 00 29 0d 00 00 e8 02 00 00 17 0a 00 00 e2 16 00 00 d6 02 00 00 2e 12 00 00 df 08 00 00 | ....)........................... |
| 18b00 | 4f 11 00 00 5f 0b 00 00 7f 03 00 00 12 06 00 00 ee 15 00 00 d3 11 00 00 00 00 00 00 00 00 00 00 | O..._........................... |
| 18b20 | 1a 0e 00 00 04 0d 00 00 00 00 00 00 00 00 00 00 44 01 00 00 90 0d 00 00 00 00 00 00 da 0f 00 00 | ................D............... |
| 18b40 | df 00 00 00 00 00 00 00 69 08 00 00 24 0e 00 00 1c 05 00 00 5a 16 00 00 c7 06 00 00 00 00 00 00 | ........i...$.......Z........... |
| 18b60 | 23 01 00 00 00 00 00 00 84 03 00 00 5c 06 00 00 00 00 00 00 00 00 00 00 38 12 00 00 fd 05 00 00 | #...........\...........8....... |
| 18b80 | 00 00 00 00 5e 0a 00 00 00 00 00 00 07 07 00 00 00 00 00 00 6a 0b 00 00 3b 07 00 00 61 0f 00 00 | ....^...............j...;...a... |
| 18ba0 | 67 09 00 00 00 00 00 00 00 00 00 00 12 0b 00 00 93 11 00 00 dd 00 00 00 0e 05 00 00 2d 08 00 00 | g...........................-... |
| 18bc0 | 5e 0c 00 00 ed 10 00 00 50 12 00 00 00 00 00 00 00 00 00 00 7b 03 00 00 08 00 00 00 60 0b 00 00 | ^.......P...........{.......`... |
| 18be0 | 39 11 00 00 84 13 00 00 00 00 00 00 86 04 00 00 00 00 00 00 00 00 00 00 b6 0d 00 00 a3 16 00 00 | 9............................... |
| 18c00 | 64 0a 00 00 ac 04 00 00 00 00 00 00 6b 11 00 00 00 00 00 00 00 00 00 00 00 00 00 00 11 0f 00 00 | d...........k................... |
| 18c20 | fb 16 00 00 00 00 00 00 d0 01 00 00 20 01 00 00 45 09 00 00 00 00 00 00 2c 0e 00 00 00 00 00 00 | ................E.......,....... |
| 18c40 | 1c 01 00 00 69 11 00 00 00 00 00 00 28 08 00 00 8e 15 00 00 3a 0d 00 00 a1 15 00 00 ab 04 00 00 | ....i.......(.......:........... |
| 18c60 | 00 00 00 00 d7 04 00 00 f0 01 00 00 4b 14 00 00 a7 01 00 00 ea 09 00 00 7e 06 00 00 00 00 00 00 | ............K...........~....... |
| 18c80 | 1d 01 00 00 eb 10 00 00 34 06 00 00 1c 00 00 00 65 09 00 00 40 0b 00 00 2c 05 00 00 ae 04 00 00 | ........4.......e...@...,....... |
| 18ca0 | 66 15 00 00 91 04 00 00 a2 05 00 00 00 00 00 00 ad 0e 00 00 00 00 00 00 15 15 00 00 03 0e 00 00 | f............................... |
| 18cc0 | 4c 00 00 00 de 06 00 00 69 06 00 00 a4 0b 00 00 87 0f 00 00 53 13 00 00 1b 16 00 00 01 03 00 00 | L.......i...........S........... |
| 18ce0 | a7 10 00 00 00 00 00 00 10 03 00 00 c5 05 00 00 f8 08 00 00 f3 15 00 00 ac 01 00 00 7c 09 00 00 | ............................|... |
| 18d00 | 38 10 00 00 54 07 00 00 d7 0d 00 00 e1 0c 00 00 d9 15 00 00 6e 0c 00 00 00 00 00 00 b2 07 00 00 | 8...T...............n........... |
| 18d20 | c7 09 00 00 7f 16 00 00 3e 15 00 00 74 13 00 00 20 0c 00 00 0c 04 00 00 00 00 00 00 0f 05 00 00 | ........>...t................... |
| 18d40 | 18 09 00 00 00 00 00 00 92 02 00 00 6e 08 00 00 2f 02 00 00 ec 08 00 00 f0 06 00 00 20 0f 00 00 | ............n.../............... |
| 18d60 | 00 00 00 00 56 0b 00 00 06 05 00 00 ea 13 00 00 e1 0d 00 00 11 08 00 00 00 00 00 00 c7 0a 00 00 | ....V........................... |
| 18d80 | 43 0b 00 00 00 00 00 00 8f 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 13 13 00 00 7a 0b 00 00 | C...........................z... |
| 18da0 | 78 15 00 00 7d 0b 00 00 00 00 00 00 ac 05 00 00 00 00 00 00 04 09 00 00 94 12 00 00 dd 11 00 00 | x...}........................... |
| 18dc0 | f9 06 00 00 a3 07 00 00 00 00 00 00 99 12 00 00 17 07 00 00 e8 08 00 00 17 09 00 00 00 00 00 00 | ................................ |
| 18de0 | 4c 06 00 00 3e 11 00 00 b0 15 00 00 97 11 00 00 9b 03 00 00 e2 08 00 00 00 00 00 00 00 00 00 00 | L...>........................... |
| 18e00 | 1a 14 00 00 08 0d 00 00 16 11 00 00 c6 15 00 00 5a 14 00 00 bb 0a 00 00 3f 0a 00 00 c7 11 00 00 | ................Z.......?....... |
| 18e20 | 95 0c 00 00 3d 0b 00 00 2d 05 00 00 39 15 00 00 00 00 00 00 38 15 00 00 28 10 00 00 00 00 00 00 | ....=...-...9.......8...(....... |
| 18e40 | 00 00 00 00 e5 08 00 00 57 0d 00 00 f5 02 00 00 07 0b 00 00 00 00 00 00 00 00 00 00 0a 13 00 00 | ........W....................... |
| 18e60 | 2e 15 00 00 84 12 00 00 57 04 00 00 00 00 00 00 b1 15 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ........W....................... |
| 18e80 | 80 16 00 00 0f 10 00 00 2c 06 00 00 00 00 00 00 b0 00 00 00 f8 05 00 00 cf 09 00 00 9c 07 00 00 | ........,....................... |
| 18ea0 | 9d 05 00 00 e2 07 00 00 00 00 00 00 1f 0b 00 00 ae 15 00 00 7b 06 00 00 e6 10 00 00 7c 05 00 00 | ....................{.......|... |
| 18ec0 | 0f 11 00 00 45 06 00 00 00 00 00 00 00 00 00 00 a3 04 00 00 00 00 00 00 00 00 00 00 f0 00 00 00 | ....E........................... |
| 18ee0 | b9 07 00 00 00 00 00 00 7f 0e 00 00 53 14 00 00 86 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ............S................... |
| 18f00 | 30 0a 00 00 39 16 00 00 22 0f 00 00 9e 0f 00 00 fd 10 00 00 00 00 00 00 98 08 00 00 2b 0f 00 00 | 0...9..."...................+... |
| 18f20 | 00 00 00 00 4b 10 00 00 43 07 00 00 00 13 00 00 29 0a 00 00 00 00 00 00 49 14 00 00 00 00 00 00 | ....K...C.......).......I....... |
| 18f40 | 85 0a 00 00 00 07 00 00 00 00 00 00 00 00 00 00 2c 16 00 00 a2 01 00 00 00 00 00 00 ad 11 00 00 | ................,............... |
| 18f60 | bb 11 00 00 fd 15 00 00 a9 02 00 00 44 10 00 00 b5 0a 00 00 38 13 00 00 85 05 00 00 38 14 00 00 | ............D.......8.......8... |
| 18f80 | 00 00 00 00 00 00 00 00 be 00 00 00 00 00 00 00 79 08 00 00 6c 09 00 00 53 0a 00 00 14 03 00 00 | ................y...l...S....... |
| 18fa0 | e4 06 00 00 63 13 00 00 e0 00 00 00 8e 0e 00 00 00 00 00 00 d8 0b 00 00 00 00 00 00 42 10 00 00 | ....c.......................B... |
| 18fc0 | 00 00 00 00 c2 09 00 00 19 12 00 00 a4 13 00 00 06 09 00 00 00 00 00 00 31 11 00 00 6f 16 00 00 | ........................1...o... |
| 18fe0 | e7 11 00 00 40 0f 00 00 00 00 00 00 7e 0c 00 00 00 00 00 00 00 00 00 00 c1 10 00 00 c3 16 00 00 | ....@.......~................... |
| 19000 | 00 00 00 00 14 0b 00 00 00 00 00 00 44 11 00 00 be 0c 00 00 43 15 00 00 82 05 00 00 68 07 00 00 | ............D.......C.......h... |
| 19020 | 00 00 00 00 00 00 00 00 00 00 00 00 ec 10 00 00 f7 03 00 00 00 00 00 00 28 02 00 00 ac 0c 00 00 | ........................(....... |
| 19040 | 33 05 00 00 bd 05 00 00 a0 10 00 00 97 09 00 00 cf 13 00 00 00 00 00 00 a8 09 00 00 4c 11 00 00 | 3...........................L... |
| 19060 | 0b 07 00 00 00 00 00 00 5c 11 00 00 06 08 00 00 86 0e 00 00 00 00 00 00 53 0f 00 00 b4 08 00 00 | ........\...............S....... |
| 19080 | fe 14 00 00 4b 15 00 00 0c 11 00 00 e7 10 00 00 87 05 00 00 fb 0b 00 00 76 0d 00 00 98 12 00 00 | ....K...................v....... |
| 190a0 | 7e 16 00 00 00 00 00 00 00 00 00 00 91 0e 00 00 00 00 00 00 00 00 00 00 a3 08 00 00 21 14 00 00 | ~...........................!... |
| 190c0 | 00 00 00 00 63 04 00 00 ef 11 00 00 66 02 00 00 e6 0d 00 00 fe 0c 00 00 00 00 00 00 8a 07 00 00 | ....c.......f................... |
| 190e0 | 84 0d 00 00 d3 06 00 00 4d 0b 00 00 00 00 00 00 05 10 00 00 57 0a 00 00 88 0a 00 00 9f 16 00 00 | ........M...........W........... |
| 19100 | 00 00 00 00 36 0e 00 00 00 00 00 00 00 00 00 00 79 0b 00 00 16 06 00 00 49 16 00 00 e0 14 00 00 | ....6...........y.......I....... |
| 19120 | b4 0f 00 00 00 00 00 00 0c 0f 00 00 00 00 00 00 ce 12 00 00 1b 02 00 00 67 0c 00 00 40 07 00 00 | ........................g...@... |
| 19140 | 73 15 00 00 00 00 00 00 00 00 00 00 54 14 00 00 00 00 00 00 00 00 00 00 59 02 00 00 2f 04 00 00 | s...........T...........Y.../... |
| 19160 | 88 00 00 00 63 0c 00 00 b4 01 00 00 46 0d 00 00 1b 12 00 00 0d 03 00 00 d9 16 00 00 a0 03 00 00 | ....c.......F................... |
| 19180 | 6b 05 00 00 93 0d 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 d6 15 00 00 1a 12 00 00 | k............................... |
| 191a0 | bb 06 00 00 00 00 00 00 ce 0a 00 00 00 00 00 00 ba 04 00 00 5d 09 00 00 00 00 00 00 5e 07 00 00 | ....................].......^... |
| 191c0 | cd 11 00 00 12 13 00 00 00 00 00 00 00 00 00 00 01 04 00 00 a8 02 00 00 4c 15 00 00 9d 04 00 00 | ........................L....... |
| 191e0 | 64 16 00 00 50 06 00 00 4e 0d 00 00 e2 0d 00 00 db 16 00 00 9d 03 00 00 ba 10 00 00 00 00 00 00 | d...P...N....................... |
| 19200 | 2f 05 00 00 00 00 00 00 7b 12 00 00 7e 02 00 00 7c 08 00 00 b8 0e 00 00 aa 04 00 00 0c 14 00 00 | /.......{...~...|............... |
| 19220 | 00 00 00 00 00 00 00 00 c8 0f 00 00 24 0d 00 00 76 0c 00 00 48 0c 00 00 ac 00 00 00 ec 06 00 00 | ............$...v...H........... |
| 19240 | 54 11 00 00 00 00 00 00 57 13 00 00 e9 15 00 00 00 00 00 00 01 02 00 00 00 00 00 00 18 0d 00 00 | T.......W....................... |
| 19260 | 00 00 00 00 49 01 00 00 9d 15 00 00 4f 10 00 00 11 0b 00 00 12 03 00 00 ac 0f 00 00 d1 05 00 00 | ....I.......O................... |
| 19280 | 00 00 00 00 7b 10 00 00 79 04 00 00 79 0c 00 00 00 00 00 00 20 0a 00 00 0a 0c 00 00 00 00 00 00 | ....{...y...y................... |
| 192a0 | 62 03 00 00 00 00 00 00 7c 0c 00 00 00 00 00 00 65 01 00 00 00 00 00 00 2f 06 00 00 0c 03 00 00 | b.......|.......e......./....... |
| 192c0 | 00 00 00 00 24 13 00 00 00 00 00 00 b0 16 00 00 00 00 00 00 44 09 00 00 00 00 00 00 00 00 00 00 | ....$...............D........... |
| 192e0 | 00 00 00 00 e1 02 00 00 df 0c 00 00 ff 12 00 00 00 00 00 00 38 00 00 00 c0 10 00 00 44 06 00 00 | ....................8.......D... |
| 19300 | 60 09 00 00 88 03 00 00 60 0e 00 00 a5 01 00 00 9d 0f 00 00 10 0c 00 00 00 00 00 00 81 15 00 00 | `.......`....................... |
| 19320 | 00 00 00 00 be 16 00 00 7d 10 00 00 3f 00 00 00 b3 15 00 00 71 06 00 00 00 00 00 00 44 0e 00 00 | ........}...?.......q.......D... |
| 19340 | d1 0b 00 00 9f 04 00 00 4c 0d 00 00 00 00 00 00 0b 13 00 00 00 00 00 00 48 02 00 00 00 00 00 00 | ........L...............H....... |
| 19360 | 1b 04 00 00 b1 16 00 00 00 00 00 00 00 00 00 00 07 02 00 00 49 03 00 00 00 00 00 00 9d 06 00 00 | ....................I........... |
| 19380 | 0f 0a 00 00 51 0c 00 00 00 00 00 00 00 00 00 00 02 0c 00 00 ad 12 00 00 3e 09 00 00 00 00 00 00 | ....Q...................>....... |
| 193a0 | 78 0c 00 00 5c 05 00 00 34 03 00 00 aa 0f 00 00 d7 00 00 00 cd 0f 00 00 fb 0a 00 00 00 00 00 00 | x...\...4....................... |
| 193c0 | 56 16 00 00 7e 01 00 00 53 08 00 00 8f 16 00 00 a2 16 00 00 05 07 00 00 6c 03 00 00 00 00 00 00 | V...~...S...............l....... |
| 193e0 | 00 00 00 00 00 00 00 00 96 12 00 00 a1 0f 00 00 96 08 00 00 94 0a 00 00 39 02 00 00 00 00 00 00 | ........................9....... |
| 19400 | 00 00 00 00 8c 04 00 00 1d 10 00 00 00 00 00 00 72 09 00 00 35 01 00 00 d0 04 00 00 9e 01 00 00 | ................r...5........... |
| 19420 | 00 00 00 00 b6 01 00 00 f1 01 00 00 00 00 00 00 36 0b 00 00 2b 13 00 00 00 00 00 00 0a 04 00 00 | ................6...+........... |
| 19440 | 1c 16 00 00 68 0e 00 00 ed 06 00 00 b6 14 00 00 00 00 00 00 4f 0d 00 00 00 00 00 00 50 14 00 00 | ....h...............O.......P... |
| 19460 | 3f 0d 00 00 48 08 00 00 ec 0f 00 00 00 00 00 00 4f 15 00 00 ea 16 00 00 00 00 00 00 3d 05 00 00 | ?...H...........O...........=... |
| 19480 | 03 09 00 00 00 00 00 00 00 00 00 00 00 00 00 00 c7 04 00 00 3a 02 00 00 00 00 00 00 97 0c 00 00 | ....................:........... |
| 194a0 | 00 00 00 00 00 00 00 00 b5 04 00 00 00 00 00 00 37 0c 00 00 de 09 00 00 00 00 00 00 39 0d 00 00 | ................7...........9... |
| 194c0 | 90 13 00 00 00 00 00 00 c1 14 00 00 bb 00 00 00 fa 12 00 00 54 03 00 00 d1 16 00 00 66 08 00 00 | ....................T.......f... |
| 194e0 | 31 03 00 00 00 00 00 00 0c 0a 00 00 56 05 00 00 00 16 00 00 81 10 00 00 00 00 00 00 00 00 00 00 | 1...........V................... |
| 19500 | 16 0b 00 00 6f 11 00 00 69 0e 00 00 c8 00 00 00 67 0a 00 00 46 06 00 00 00 00 00 00 4c 02 00 00 | ....o...i.......g...F.......L... |
| 19520 | 29 05 00 00 cc 15 00 00 00 00 00 00 68 00 00 00 52 13 00 00 f0 10 00 00 00 00 00 00 00 00 00 00 | )...........h...R............... |
| 19540 | 10 01 00 00 00 00 00 00 ab 02 00 00 bd 0e 00 00 00 00 00 00 f4 01 00 00 22 0a 00 00 00 00 00 00 | ........................"....... |
| 19560 | ea 10 00 00 47 00 00 00 00 00 00 00 00 00 00 00 0d 15 00 00 00 00 00 00 f8 04 00 00 35 14 00 00 | ....G.......................5... |
| 19580 | 7b 15 00 00 00 00 00 00 6f 05 00 00 00 00 00 00 00 00 00 00 ff 05 00 00 fb 06 00 00 86 14 00 00 | {.......o....................... |
| 195a0 | 84 05 00 00 9c 0d 00 00 fa 0d 00 00 9b 00 00 00 b4 04 00 00 f7 04 00 00 fe 10 00 00 41 0b 00 00 | ............................A... |
| 195c0 | 4d 0d 00 00 af 04 00 00 00 00 00 00 a8 06 00 00 f1 08 00 00 cd 00 00 00 00 00 00 00 76 02 00 00 | M...........................v... |
| 195e0 | a6 08 00 00 26 05 00 00 1c 0b 00 00 c7 14 00 00 00 00 00 00 2f 0f 00 00 63 09 00 00 ff 0b 00 00 | ....&.............../...c....... |
| 19600 | 42 12 00 00 fb 01 00 00 00 00 00 00 9a 0b 00 00 00 00 00 00 20 07 00 00 5d 13 00 00 72 03 00 00 | B.......................]...r... |
| 19620 | 3b 12 00 00 00 00 00 00 8c 13 00 00 fc 0c 00 00 f0 0b 00 00 00 00 00 00 a1 07 00 00 10 0a 00 00 | ;............................... |
| 19640 | 5a 06 00 00 82 0d 00 00 12 11 00 00 00 00 00 00 d8 03 00 00 83 0d 00 00 74 0a 00 00 91 0b 00 00 | Z.......................t....... |
| 19660 | 0e 04 00 00 00 00 00 00 bf 08 00 00 88 0d 00 00 15 05 00 00 2a 0a 00 00 f2 06 00 00 00 00 00 00 | ....................*........... |
| 19680 | 00 00 00 00 72 08 00 00 37 0e 00 00 d5 10 00 00 00 00 00 00 be 06 00 00 2c 10 00 00 00 00 00 00 | ....r...7...............,....... |
| 196a0 | 20 0d 00 00 8e 05 00 00 e5 14 00 00 e4 09 00 00 d7 0a 00 00 00 00 00 00 a8 0b 00 00 00 00 00 00 | ................................ |
| 196c0 | 51 05 00 00 03 14 00 00 00 00 00 00 df 04 00 00 1d 0e 00 00 c0 0e 00 00 5b 03 00 00 00 00 00 00 | Q.......................[....... |
| 196e0 | 00 00 00 00 32 0c 00 00 00 00 00 00 00 00 00 00 6a 15 00 00 11 16 00 00 82 14 00 00 14 05 00 00 | ....2...........j............... |
| 19700 | 06 00 00 00 b4 00 00 00 00 00 00 00 16 03 00 00 00 00 00 00 c1 08 00 00 00 00 00 00 2d 10 00 00 | ............................-... |
| 19720 | 5e 13 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0f 12 00 00 e4 13 00 00 00 00 00 00 00 00 00 00 | ^............................... |
| 19740 | 00 00 00 00 67 0e 00 00 d9 0e 00 00 9b 11 00 00 93 01 00 00 2e 11 00 00 d6 05 00 00 5c 15 00 00 | ....g.......................\... |
| 19760 | c0 07 00 00 26 0e 00 00 05 0c 00 00 1d 07 00 00 ff 10 00 00 00 00 00 00 00 00 00 00 75 0c 00 00 | ....&.......................u... |
| 19780 | 11 13 00 00 02 0b 00 00 00 00 00 00 85 11 00 00 8f 0b 00 00 12 15 00 00 4c 0a 00 00 00 00 00 00 | ........................L....... |
| 197a0 | 00 00 00 00 00 00 00 00 00 00 00 00 e9 16 00 00 00 00 00 00 4d 15 00 00 c4 0f 00 00 a3 13 00 00 | ....................M........... |
| 197c0 | 2e 14 00 00 a1 0a 00 00 eb 08 00 00 21 00 00 00 cb 03 00 00 f4 16 00 00 00 00 00 00 71 07 00 00 | ............!...............q... |
| 197e0 | a6 12 00 00 26 01 00 00 00 00 00 00 00 00 00 00 f8 11 00 00 45 0b 00 00 8f 0c 00 00 00 00 00 00 | ....&...............E........... |
| 19800 | b2 0f 00 00 a2 0a 00 00 aa 12 00 00 b8 0c 00 00 5f 0f 00 00 00 00 00 00 2c 0f 00 00 00 00 00 00 | ................_.......,....... |
| 19820 | 0b 14 00 00 46 09 00 00 3c 04 00 00 ae 14 00 00 49 12 00 00 03 0d 00 00 a9 0e 00 00 22 16 00 00 | ....F...<.......I..........."... |
| 19840 | 9b 0f 00 00 05 13 00 00 57 12 00 00 fc 08 00 00 74 06 00 00 8e 10 00 00 a9 01 00 00 92 16 00 00 | ........W.......t............... |
| 19860 | 0e 09 00 00 77 10 00 00 79 01 00 00 6b 04 00 00 8c 10 00 00 9a 07 00 00 00 00 00 00 31 05 00 00 | ....w...y...k...............1... |
| 19880 | c0 11 00 00 54 02 00 00 a6 0b 00 00 00 00 00 00 00 00 00 00 38 03 00 00 aa 10 00 00 87 13 00 00 | ....T...............8........... |
| 198a0 | b6 04 00 00 00 00 00 00 b7 04 00 00 a9 14 00 00 b8 04 00 00 0a 11 00 00 60 04 00 00 a3 15 00 00 | ........................`....... |
| 198c0 | 13 0d 00 00 08 08 00 00 00 00 00 00 d3 15 00 00 e8 0b 00 00 30 0c 00 00 0e 0a 00 00 45 0f 00 00 | ....................0.......E... |
| 198e0 | 69 01 00 00 00 00 00 00 f4 04 00 00 0a 09 00 00 0c 0c 00 00 40 08 00 00 95 05 00 00 2b 07 00 00 | i...................@.......+... |
| 19900 | 6b 15 00 00 00 00 00 00 2c 0b 00 00 bc 00 00 00 9f 08 00 00 0f 14 00 00 18 0e 00 00 fc 00 00 00 | k.......,....................... |
| 19920 | 75 03 00 00 c5 0c 00 00 7d 12 00 00 04 0e 00 00 bf 0a 00 00 00 00 00 00 00 00 00 00 17 10 00 00 | u.......}....................... |
| 19940 | 81 06 00 00 3b 11 00 00 5c 02 00 00 00 00 00 00 00 00 00 00 c8 09 00 00 d3 08 00 00 ee 12 00 00 | ....;...\....................... |
| 19960 | cb 09 00 00 f2 04 00 00 8d 14 00 00 8b 00 00 00 5c 10 00 00 3e 04 00 00 c0 06 00 00 00 00 00 00 | ................\...>........... |
| 19980 | 13 10 00 00 ba 02 00 00 00 00 00 00 4d 16 00 00 ba 01 00 00 e9 13 00 00 5e 08 00 00 00 00 00 00 | ............M...........^....... |
| 199a0 | a3 00 00 00 00 00 00 00 fe 11 00 00 9e 02 00 00 56 04 00 00 f6 14 00 00 00 00 00 00 00 00 00 00 | ................V............... |
| 199c0 | 3b 00 00 00 0e 16 00 00 33 14 00 00 88 15 00 00 4d 0f 00 00 17 06 00 00 b2 14 00 00 0d 01 00 00 | ;.......3.......M............... |
| 199e0 | 15 14 00 00 2b 16 00 00 46 11 00 00 cd 16 00 00 00 00 00 00 9e 03 00 00 00 00 00 00 00 00 00 00 | ....+...F....................... |
| 19a00 | 45 08 00 00 00 00 00 00 41 16 00 00 f4 0f 00 00 39 0c 00 00 55 06 00 00 fe 0e 00 00 91 0d 00 00 | E.......A.......9...U........... |
| 19a20 | ac 12 00 00 f5 15 00 00 15 0b 00 00 b3 16 00 00 77 01 00 00 eb 13 00 00 00 00 00 00 d2 12 00 00 | ................w............... |
| 19a40 | e6 09 00 00 95 12 00 00 fa 00 00 00 91 13 00 00 00 00 00 00 00 00 00 00 f3 06 00 00 e6 11 00 00 | ................................ |
| 19a60 | 8a 00 00 00 00 00 00 00 b6 03 00 00 3e 05 00 00 09 17 00 00 f5 08 00 00 5f 16 00 00 00 00 00 00 | ............>..........._....... |
| 19a80 | 00 00 00 00 db 03 00 00 aa 15 00 00 14 01 00 00 00 00 00 00 27 00 00 00 3d 14 00 00 1e 0c 00 00 | ....................'...=....... |
| 19aa0 | 5e 15 00 00 c4 13 00 00 42 0e 00 00 00 00 00 00 51 13 00 00 00 00 00 00 c2 0b 00 00 7b 14 00 00 | ^.......B.......Q...........{... |
| 19ac0 | 00 00 00 00 fc 0b 00 00 3f 02 00 00 12 09 00 00 00 00 00 00 73 09 00 00 a0 13 00 00 14 15 00 00 | ........?...........s........... |
| 19ae0 | 0d 07 00 00 24 01 00 00 aa 02 00 00 1b 0e 00 00 f0 0f 00 00 59 03 00 00 7c 0e 00 00 a2 0c 00 00 | ....$...............Y...|....... |
| 19b00 | 53 09 00 00 fd 14 00 00 00 00 00 00 00 11 00 00 c5 16 00 00 50 00 00 00 6a 03 00 00 68 02 00 00 | S...................P...j...h... |
| 19b20 | b4 0b 00 00 69 12 00 00 00 00 00 00 2c 14 00 00 97 0b 00 00 62 09 00 00 39 14 00 00 4e 09 00 00 | ....i.......,.......b...9...N... |
| 19b40 | 0e 08 00 00 00 00 00 00 00 00 00 00 cb 13 00 00 ed 07 00 00 9c 11 00 00 c7 10 00 00 9e 11 00 00 | ................................ |
| 19b60 | 21 09 00 00 00 00 00 00 00 00 00 00 ac 0a 00 00 47 08 00 00 34 13 00 00 00 00 00 00 00 00 00 00 | !...............G...4........... |
| 19b80 | 9f 0a 00 00 c0 0a 00 00 c4 0c 00 00 25 16 00 00 58 13 00 00 00 00 00 00 00 00 00 00 ab 00 00 00 | ............%...X............... |
| 19ba0 | 9d 12 00 00 78 04 00 00 00 00 00 00 c3 03 00 00 e0 0e 00 00 c2 10 00 00 00 00 00 00 00 00 00 00 | ....x........................... |
| 19bc0 | 00 00 00 00 98 0d 00 00 0b 12 00 00 4f 02 00 00 a5 0b 00 00 7f 0f 00 00 20 14 00 00 d6 13 00 00 | ............O................... |
| 19be0 | d7 12 00 00 e2 05 00 00 fd 11 00 00 c2 13 00 00 e5 10 00 00 90 00 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 19c00 | d6 0b 00 00 00 00 00 00 68 13 00 00 f4 10 00 00 3d 0c 00 00 39 05 00 00 ae 16 00 00 c8 0c 00 00 | ........h.......=...9........... |
| 19c20 | 54 09 00 00 00 00 00 00 96 07 00 00 00 00 00 00 ba 0c 00 00 cc 11 00 00 00 00 00 00 cf 04 00 00 | T............................... |
| 19c40 | f0 05 00 00 7b 09 00 00 87 03 00 00 00 00 00 00 eb 14 00 00 d4 15 00 00 e7 00 00 00 00 00 00 00 | ....{........................... |
| 19c60 | 00 00 00 00 00 00 00 00 f7 0b 00 00 00 00 00 00 f7 12 00 00 72 0f 00 00 b1 01 00 00 ee 0d 00 00 | ....................r........... |
| 19c80 | b5 07 00 00 0a 10 00 00 29 07 00 00 a1 10 00 00 00 00 00 00 f6 0f 00 00 6b 03 00 00 00 00 00 00 | ........)...............k....... |
| 19ca0 | 9e 0e 00 00 c9 14 00 00 4f 0c 00 00 1f 15 00 00 00 00 00 00 5f 08 00 00 f0 13 00 00 80 0e 00 00 | ........O..........._........... |
| 19cc0 | 00 00 00 00 d9 01 00 00 10 05 00 00 c4 15 00 00 fd 00 00 00 14 11 00 00 51 0e 00 00 36 0d 00 00 | ........................Q...6... |
| 19ce0 | 5f 07 00 00 80 01 00 00 85 08 00 00 44 0b 00 00 d0 08 00 00 13 07 00 00 81 01 00 00 00 00 00 00 | _...........D................... |
| 19d00 | 6e 16 00 00 00 00 00 00 41 14 00 00 00 00 00 00 25 12 00 00 00 00 00 00 57 05 00 00 32 13 00 00 | n.......A.......%.......W...2... |
| 19d20 | 23 0e 00 00 00 00 00 00 14 13 00 00 00 00 00 00 00 00 00 00 27 0e 00 00 56 00 00 00 f7 06 00 00 | #...................'...V....... |
| 19d40 | 3f 07 00 00 42 16 00 00 bf 16 00 00 4c 0e 00 00 e3 07 00 00 15 0d 00 00 00 00 00 00 af 16 00 00 | ?...B.......L................... |
| 19d60 | 01 09 00 00 ab 0b 00 00 cb 0e 00 00 00 00 00 00 48 07 00 00 e5 12 00 00 32 14 00 00 b4 16 00 00 | ................H.......2....... |
| 19d80 | 00 00 00 00 66 03 00 00 8c 0b 00 00 00 00 00 00 6d 07 00 00 6e 12 00 00 3e 0c 00 00 c5 0b 00 00 | ....f...........m...n...>....... |
| 19da0 | a7 02 00 00 6c 0a 00 00 68 05 00 00 00 00 00 00 21 0a 00 00 25 14 00 00 d0 02 00 00 f5 11 00 00 | ....l...h.......!...%........... |
| 19dc0 | 00 00 00 00 8a 10 00 00 0b 11 00 00 00 00 00 00 92 0f 00 00 e2 15 00 00 f2 00 00 00 bf 11 00 00 | ................................ |
| 19de0 | 53 0c 00 00 87 02 00 00 54 0c 00 00 65 10 00 00 f5 03 00 00 45 02 00 00 8c 0c 00 00 00 00 00 00 | S.......T...e.......E........... |
| 19e00 | 16 02 00 00 ab 12 00 00 00 00 00 00 00 00 00 00 53 11 00 00 f0 0a 00 00 a9 07 00 00 00 00 00 00 | ................S............... |
| 19e20 | 2e 0f 00 00 0a 02 00 00 00 00 00 00 de 08 00 00 b7 09 00 00 20 16 00 00 00 00 00 00 f2 12 00 00 | ................................ |
| 19e40 | 03 0b 00 00 00 00 00 00 32 06 00 00 2d 03 00 00 8f 07 00 00 10 06 00 00 00 00 00 00 0c 0d 00 00 | ........2...-................... |
| 19e60 | 98 0b 00 00 41 0d 00 00 07 00 00 00 10 12 00 00 d1 00 00 00 00 00 00 00 3e 0e 00 00 05 05 00 00 | ....A...................>....... |
| 19e80 | 1f 0e 00 00 00 00 00 00 81 04 00 00 00 00 00 00 4b 0a 00 00 16 0f 00 00 00 00 00 00 c3 00 00 00 | ................K............... |
| 19ea0 | 5c 16 00 00 fd 07 00 00 42 00 00 00 9a 04 00 00 46 0e 00 00 2b 0a 00 00 3f 08 00 00 e7 09 00 00 | \.......B.......F...+...?....... |
| 19ec0 | 93 0c 00 00 d5 0e 00 00 00 00 00 00 22 02 00 00 00 00 00 00 d9 07 00 00 ef 01 00 00 00 00 00 00 | ............"................... |
| 19ee0 | be 04 00 00 61 06 00 00 00 00 00 00 58 02 00 00 9b 0b 00 00 0a 0d 00 00 00 00 00 00 00 00 00 00 | ....a.......X................... |
| 19f00 | e9 01 00 00 e9 0d 00 00 00 00 00 00 ac 0e 00 00 25 06 00 00 00 00 00 00 4c 16 00 00 00 00 00 00 | ................%.......L....... |
| 19f20 | 33 09 00 00 00 00 00 00 8f 05 00 00 35 11 00 00 da 14 00 00 36 07 00 00 94 08 00 00 57 14 00 00 | 3...........5.......6.......W... |
| 19f40 | 07 08 00 00 4a 0c 00 00 c9 0e 00 00 8f 03 00 00 29 08 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ....J...........)............... |
| 19f60 | 18 06 00 00 00 00 00 00 86 0d 00 00 8e 08 00 00 00 00 00 00 c4 14 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 19f80 | 4d 01 00 00 e5 16 00 00 28 01 00 00 92 14 00 00 38 0f 00 00 0e 0e 00 00 a0 0e 00 00 61 15 00 00 | M.......(.......8...........a... |
| 19fa0 | a8 0f 00 00 5a 0b 00 00 1e 11 00 00 00 00 00 00 00 00 00 00 00 00 00 00 d3 16 00 00 3e 10 00 00 | ....Z.......................>... |
| 19fc0 | 24 14 00 00 66 10 00 00 19 11 00 00 9a 09 00 00 5d 0f 00 00 57 10 00 00 00 00 00 00 92 06 00 00 | $...f...........]...W........... |
| 19fe0 | 13 0b 00 00 da 08 00 00 80 12 00 00 99 13 00 00 f2 05 00 00 93 00 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 1a000 | 00 00 00 00 ff 0e 00 00 e3 15 00 00 d1 07 00 00 d0 07 00 00 00 00 00 00 2a 15 00 00 b0 11 00 00 | ........................*....... |
| 1a020 | 87 12 00 00 d4 10 00 00 00 00 00 00 00 00 00 00 94 06 00 00 00 00 00 00 4b 16 00 00 00 00 00 00 | ........................K....... |
| 1a040 | ef 05 00 00 be 0e 00 00 00 00 00 00 00 00 00 00 32 0f 00 00 51 0a 00 00 c2 0d 00 00 e9 07 00 00 | ................2...Q........... |
| 1a060 | 25 07 00 00 00 00 00 00 71 10 00 00 d5 12 00 00 de 13 00 00 8d 16 00 00 9b 16 00 00 00 00 00 00 | %.......q....................... |
| 1a080 | 59 16 00 00 0d 09 00 00 00 00 00 00 93 13 00 00 57 09 00 00 da 07 00 00 16 07 00 00 0b 08 00 00 | Y...............W............... |
| 1a0a0 | 14 02 00 00 00 00 00 00 00 00 00 00 65 13 00 00 fc 10 00 00 55 10 00 00 00 00 00 00 23 12 00 00 | ............e.......U.......#... |
| 1a0c0 | 00 00 00 00 63 0a 00 00 11 06 00 00 00 00 00 00 7a 13 00 00 f9 0f 00 00 69 07 00 00 54 06 00 00 | ....c...........z.......i...T... |
| 1a0e0 | f3 03 00 00 1b 0c 00 00 23 08 00 00 26 08 00 00 83 0b 00 00 ca 10 00 00 0d 0c 00 00 00 00 00 00 | ........#...&................... |
| 1a100 | 08 11 00 00 00 00 00 00 e7 12 00 00 11 0d 00 00 3f 09 00 00 e8 01 00 00 d1 02 00 00 f4 08 00 00 | ................?............... |
| 1a120 | e2 10 00 00 00 00 00 00 00 00 00 00 8b 08 00 00 cf 00 00 00 d0 11 00 00 32 09 00 00 6e 0d 00 00 | ........................2...n... |
| 1a140 | 7c 04 00 00 bc 0a 00 00 f9 14 00 00 00 00 00 00 00 00 00 00 df 09 00 00 80 06 00 00 12 0f 00 00 | |............................... |
| 1a160 | 00 00 00 00 3f 15 00 00 00 00 00 00 c8 02 00 00 b2 0b 00 00 00 00 00 00 c9 05 00 00 00 00 00 00 | ....?........................... |
| 1a180 | 00 00 00 00 14 09 00 00 2f 08 00 00 65 14 00 00 ff 16 00 00 84 14 00 00 00 00 00 00 73 0f 00 00 | ......../...e...............s... |
| 1a1a0 | b6 06 00 00 89 05 00 00 ff 14 00 00 ea 14 00 00 f5 10 00 00 82 10 00 00 00 00 00 00 aa 11 00 00 | ................................ |
| 1a1c0 | 1e 08 00 00 e8 0d 00 00 8d 04 00 00 07 0e 00 00 0f 0d 00 00 8a 11 00 00 cd 10 00 00 eb 11 00 00 | ................................ |
| 1a1e0 | f1 0f 00 00 cb 01 00 00 df 06 00 00 2b 15 00 00 6c 05 00 00 2a 0c 00 00 6e 03 00 00 5e 06 00 00 | ............+...l...*...n...^... |
| 1a200 | 00 00 00 00 54 10 00 00 00 00 00 00 41 01 00 00 9f 03 00 00 4e 08 00 00 00 00 00 00 00 00 00 00 | ....T.......A.......N........... |
| 1a220 | 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 47 04 00 00 ba 07 00 00 00 00 00 00 | ....................G........... |
| 1a240 | 96 01 00 00 1a 09 00 00 f5 06 00 00 57 08 00 00 a5 03 00 00 00 00 00 00 42 06 00 00 3a 0c 00 00 | ............W...........B...:... |
| 1a260 | 5c 13 00 00 00 00 00 00 30 0e 00 00 65 06 00 00 2e 0b 00 00 c8 0a 00 00 00 00 00 00 a5 0f 00 00 | \.......0...e................... |
| 1a280 | 8e 11 00 00 ad 03 00 00 60 02 00 00 cb 00 00 00 77 06 00 00 6c 12 00 00 1c 15 00 00 46 15 00 00 | ........`.......w...l.......F... |
| 1a2a0 | 4c 10 00 00 1f 13 00 00 ef 16 00 00 0b 06 00 00 93 07 00 00 00 00 00 00 6a 10 00 00 ed 0e 00 00 | L.......................j....... |
| 1a2c0 | 00 00 00 00 00 00 00 00 d4 12 00 00 00 00 00 00 aa 00 00 00 4f 06 00 00 da 00 00 00 15 12 00 00 | ....................O........... |
| 1a2e0 | a2 12 00 00 00 00 00 00 b1 06 00 00 22 13 00 00 75 13 00 00 d5 02 00 00 00 00 00 00 00 00 00 00 | ............"...u............... |
| 1a300 | bb 01 00 00 00 00 00 00 d7 11 00 00 76 0e 00 00 00 00 00 00 00 00 00 00 cb 05 00 00 09 0d 00 00 | ............v................... |
| 1a320 | 67 07 00 00 b7 03 00 00 51 16 00 00 e9 11 00 00 8d 0f 00 00 f3 08 00 00 91 0c 00 00 00 00 00 00 | g.......Q....................... |
| 1a340 | a8 16 00 00 85 02 00 00 30 0f 00 00 00 00 00 00 00 00 00 00 70 08 00 00 00 00 00 00 e0 0f 00 00 | ........0...........p........... |
| 1a360 | 57 03 00 00 c9 12 00 00 cf 16 00 00 47 05 00 00 bf 12 00 00 00 12 00 00 fa 0e 00 00 00 00 00 00 | W...........G................... |
| 1a380 | d2 0b 00 00 1e 0e 00 00 2d 0a 00 00 00 00 00 00 90 09 00 00 9b 05 00 00 9d 07 00 00 28 00 00 00 | ........-...................(... |
| 1a3a0 | e3 06 00 00 82 02 00 00 39 07 00 00 11 15 00 00 47 10 00 00 38 0a 00 00 00 00 00 00 ab 11 00 00 | ........9.......G...8........... |
| 1a3c0 | 00 00 00 00 00 00 00 00 32 11 00 00 49 10 00 00 37 08 00 00 00 00 00 00 00 00 00 00 b6 08 00 00 | ........2...I...7............... |
| 1a3e0 | 9c 09 00 00 c0 0c 00 00 f5 01 00 00 55 07 00 00 b5 00 00 00 a6 0a 00 00 82 0b 00 00 00 00 00 00 | ............U................... |
| 1a400 | 1d 0f 00 00 00 00 00 00 e9 05 00 00 3f 14 00 00 97 05 00 00 fc 02 00 00 f1 03 00 00 00 14 00 00 | ............?................... |
| 1a420 | f7 05 00 00 41 0e 00 00 00 00 00 00 3a 13 00 00 02 06 00 00 6d 15 00 00 00 00 00 00 ce 15 00 00 | ....A.......:.......m........... |
| 1a440 | 6f 02 00 00 5d 15 00 00 61 08 00 00 00 00 00 00 a2 0d 00 00 00 00 00 00 e1 12 00 00 25 10 00 00 | o...]...a...................%... |
| 1a460 | 24 0c 00 00 00 00 00 00 00 00 00 00 ac 08 00 00 66 05 00 00 f5 14 00 00 00 00 00 00 e4 07 00 00 | $...............f............... |
| 1a480 | 00 17 00 00 aa 08 00 00 d6 00 00 00 31 04 00 00 d4 14 00 00 10 0d 00 00 62 01 00 00 00 00 00 00 | ............1...........b....... |
| 1a4a0 | 06 17 00 00 25 04 00 00 07 0c 00 00 50 02 00 00 00 00 00 00 00 00 00 00 8c 11 00 00 a0 06 00 00 | ....%.......P................... |
| 1a4c0 | 00 00 00 00 00 00 00 00 15 10 00 00 d6 03 00 00 00 00 00 00 9e 14 00 00 1c 13 00 00 76 14 00 00 | ............................v... |
| 1a4e0 | 99 15 00 00 00 00 00 00 00 0a 00 00 95 0f 00 00 45 10 00 00 54 0d 00 00 27 0d 00 00 00 00 00 00 | ................E...T...'....... |
| 1a500 | ce 0f 00 00 e0 09 00 00 00 00 00 00 00 00 00 00 4c 04 00 00 00 00 00 00 55 13 00 00 e1 0b 00 00 | ................L.......U....... |
| 1a520 | 00 00 00 00 28 15 00 00 ad 15 00 00 a0 00 00 00 c5 07 00 00 eb 09 00 00 c2 11 00 00 d3 0c 00 00 | ....(........................... |
| 1a540 | 00 00 00 00 00 00 00 00 b7 16 00 00 00 00 00 00 00 00 00 00 0c 09 00 00 dd 08 00 00 64 0e 00 00 | ............................d... |
| 1a560 | c2 08 00 00 c9 10 00 00 67 12 00 00 e9 0f 00 00 00 00 00 00 5b 0c 00 00 ed 15 00 00 ac 13 00 00 | ........g...........[........... |
| 1a580 | 00 00 00 00 00 00 00 00 00 00 00 00 0c 13 00 00 00 00 00 00 62 07 00 00 00 00 00 00 b5 03 00 00 | ....................b........... |
| 1a5a0 | 00 00 00 00 00 00 00 00 84 0b 00 00 00 00 00 00 ce 0c 00 00 93 04 00 00 de 0f 00 00 00 09 00 00 | ................................ |
| 1a5c0 | 00 00 00 00 36 04 00 00 68 14 00 00 1c 11 00 00 00 00 00 00 41 0c 00 00 25 02 00 00 6d 08 00 00 | ....6...h...........A...%...m... |
| 1a5e0 | 79 15 00 00 73 0b 00 00 00 00 00 00 e3 0c 00 00 3f 11 00 00 2b 06 00 00 00 00 00 00 b8 0f 00 00 | y...s...........?...+........... |
| 1a600 | 00 00 00 00 00 00 00 00 b7 0d 00 00 00 00 00 00 2b 11 00 00 00 00 00 00 f7 0c 00 00 6c 00 00 00 | ................+...........l... |
| 1a620 | d8 0e 00 00 b1 10 00 00 00 00 00 00 db 0c 00 00 0e 0f 00 00 00 00 00 00 cc 06 00 00 00 00 00 00 | ................................ |
| 1a640 | a4 0e 00 00 c6 09 00 00 f9 00 00 00 00 00 00 00 8a 06 00 00 ed 0c 00 00 3b 08 00 00 00 00 00 00 | ........................;....... |
| 1a660 | b4 05 00 00 37 0a 00 00 bc 05 00 00 00 00 00 00 00 00 00 00 87 10 00 00 06 04 00 00 c1 16 00 00 | ....7........................... |
| 1a680 | 4d 05 00 00 e5 15 00 00 0f 0f 00 00 35 03 00 00 97 0f 00 00 ad 0d 00 00 00 00 00 00 91 10 00 00 | M...........5................... |
| 1a6a0 | e4 11 00 00 f0 11 00 00 e2 13 00 00 62 0f 00 00 17 00 00 00 54 0f 00 00 00 00 00 00 47 0f 00 00 | ............b.......T.......G... |
| 1a6c0 | a8 00 00 00 eb 03 00 00 00 00 00 00 78 13 00 00 00 00 00 00 00 00 00 00 0b 03 00 00 b3 00 00 00 | ............x................... |
| 1a6e0 | 00 00 00 00 00 00 00 00 00 00 00 00 aa 0d 00 00 00 00 00 00 1c 10 00 00 01 0c 00 00 28 05 00 00 | ............................(... |
| 1a700 | 00 00 00 00 54 05 00 00 00 00 00 00 3a 03 00 00 00 00 00 00 00 00 00 00 00 00 00 00 69 0b 00 00 | ....T.......:...............i... |
| 1a720 | 00 00 00 00 00 00 00 00 d5 14 00 00 00 00 00 00 00 00 00 00 2a 05 00 00 b7 11 00 00 e4 15 00 00 | ....................*........... |
| 1a740 | b4 11 00 00 4c 14 00 00 68 0f 00 00 00 00 00 00 72 06 00 00 ca 04 00 00 00 00 00 00 65 0d 00 00 | ....L...h.......r...........e... |
| 1a760 | 40 04 00 00 ed 0a 00 00 00 00 00 00 00 00 00 00 81 0b 00 00 a5 04 00 00 3c 11 00 00 65 08 00 00 | @.......................<...e... |
| 1a780 | f8 0a 00 00 bc 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ff 03 00 00 54 15 00 00 2b 08 00 00 | ........................T...+... |
| 1a7a0 | 2d 12 00 00 52 0e 00 00 94 14 00 00 5d 16 00 00 00 00 00 00 9e 15 00 00 85 07 00 00 5d 0a 00 00 | -...R.......]...............]... |
| 1a7c0 | 41 07 00 00 00 00 00 00 b0 0c 00 00 00 00 00 00 a0 16 00 00 fa 06 00 00 f2 16 00 00 a9 00 00 00 | A............................... |
| 1a7e0 | 51 04 00 00 3e 13 00 00 28 16 00 00 00 00 00 00 eb 06 00 00 d0 05 00 00 00 00 00 00 a0 14 00 00 | Q...>...(....................... |
| 1a800 | 35 00 00 00 00 00 00 00 c4 0a 00 00 b7 0c 00 00 00 00 00 00 00 00 00 00 11 02 00 00 ce 11 00 00 | 5............................... |
| 1a820 | 00 00 00 00 00 00 00 00 18 02 00 00 aa 14 00 00 cb 15 00 00 00 00 00 00 b8 10 00 00 d1 10 00 00 | ................................ |
| 1a840 | cc 0b 00 00 19 10 00 00 00 00 00 00 60 08 00 00 00 00 00 00 75 14 00 00 a8 05 00 00 7b 02 00 00 | ............`.......u.......{... |
| 1a860 | 65 12 00 00 79 0d 00 00 d8 01 00 00 b8 00 00 00 00 00 00 00 da 13 00 00 41 02 00 00 ef 03 00 00 | e...y...................A....... |
| 1a880 | 1c 0d 00 00 0d 14 00 00 c3 12 00 00 23 14 00 00 b1 00 00 00 00 00 00 00 75 05 00 00 62 06 00 00 | ............#...........u...b... |
| 1a8a0 | 00 00 00 00 ec 13 00 00 00 00 00 00 75 0d 00 00 cd 15 00 00 8d 11 00 00 c9 00 00 00 00 00 00 00 | ............u................... |
| 1a8c0 | c8 16 00 00 00 00 00 00 30 05 00 00 88 12 00 00 96 0a 00 00 00 00 00 00 f3 0a 00 00 68 08 00 00 | ........0...................h... |
| 1a8e0 | 00 00 00 00 5d 0d 00 00 6c 0d 00 00 28 0a 00 00 02 04 00 00 af 11 00 00 00 00 00 00 d9 03 00 00 | ....]...l...(................... |
| 1a900 | f8 01 00 00 19 14 00 00 1d 03 00 00 8c 09 00 00 00 00 00 00 cd 0b 00 00 b5 0f 00 00 4e 03 00 00 | ............................N... |
| 1a920 | 31 06 00 00 f8 0e 00 00 19 13 00 00 00 00 00 00 f3 10 00 00 ea 0e 00 00 00 00 00 00 a4 11 00 00 | 1............................... |
| 1a940 | 00 00 00 00 7a 0d 00 00 fd 0f 00 00 a4 12 00 00 09 07 00 00 00 00 00 00 1a 0a 00 00 74 12 00 00 | ....z.......................t... |
| 1a960 | 85 0b 00 00 00 00 00 00 6b 0e 00 00 00 00 00 00 7c 00 00 00 b8 14 00 00 19 15 00 00 0c 08 00 00 | ........k.......|............... |
| 1a980 | 8d 09 00 00 f3 16 00 00 98 11 00 00 87 11 00 00 3f 0f 00 00 ac 02 00 00 00 00 00 00 00 00 00 00 | ................?............... |
| 1a9a0 | cd 07 00 00 06 10 00 00 78 14 00 00 00 00 00 00 b5 08 00 00 00 00 00 00 03 08 00 00 e1 01 00 00 | ........x....................... |
| 1a9c0 | ec 12 00 00 19 0f 00 00 53 0d 00 00 ec 03 00 00 ae 05 00 00 00 00 00 00 00 00 00 00 02 00 00 00 | ........S....................... |
| 1a9e0 | c3 05 00 00 c3 06 00 00 00 00 00 00 b1 0c 00 00 00 00 00 00 00 00 00 00 00 00 00 00 cd 02 00 00 | ................................ |
| 1aa00 | f0 04 00 00 ed 0d 00 00 00 00 00 00 a1 11 00 00 06 11 00 00 4f 0a 00 00 e0 16 00 00 00 00 00 00 | ....................O........... |
| 1aa20 | c1 15 00 00 e5 11 00 00 29 00 00 00 08 0a 00 00 92 13 00 00 de 0e 00 00 ca 02 00 00 18 12 00 00 | ........)....................... |
| 1aa40 | 00 00 00 00 00 00 00 00 00 00 00 00 ad 0c 00 00 e6 12 00 00 07 0d 00 00 f3 0c 00 00 f7 07 00 00 | ................................ |
| 1aa60 | c1 12 00 00 42 0f 00 00 be 13 00 00 f7 09 00 00 40 12 00 00 65 0c 00 00 2c 0d 00 00 34 0e 00 00 | ....B...........@...e...,...4... |
| 1aa80 | 1b 03 00 00 00 00 00 00 d0 0e 00 00 e4 0d 00 00 21 0e 00 00 50 0a 00 00 95 03 00 00 f7 15 00 00 | ................!...P........... |
| 1aaa0 | 8f 04 00 00 db 0f 00 00 00 00 00 00 00 00 00 00 78 06 00 00 00 00 00 00 00 00 00 00 fe 13 00 00 | ................x............... |
| 1aac0 | 5c 0b 00 00 09 0b 00 00 25 13 00 00 2a 08 00 00 c5 0d 00 00 1e 15 00 00 b4 06 00 00 00 00 00 00 | \.......%...*................... |
| 1aae0 | 6c 0f 00 00 2b 12 00 00 00 00 00 00 32 16 00 00 b3 11 00 00 00 00 00 00 1b 15 00 00 29 0b 00 00 | l...+.......2...............)... |
| 1ab00 | bf 07 00 00 be 12 00 00 bd 14 00 00 00 00 00 00 b2 05 00 00 a9 0c 00 00 d7 03 00 00 26 09 00 00 | ............................&... |
| 1ab20 | c9 0d 00 00 17 0f 00 00 00 00 00 00 a7 14 00 00 f6 0d 00 00 00 00 00 00 21 16 00 00 da 12 00 00 | ........................!....... |
| 1ab40 | 24 08 00 00 02 05 00 00 05 0d 00 00 45 16 00 00 12 00 00 00 6d 10 00 00 00 00 00 00 00 00 00 00 | $...........E.......m........... |
| 1ab60 | 00 00 00 00 1f 05 00 00 a1 16 00 00 e9 0a 00 00 ae 0a 00 00 b3 13 00 00 4a 12 00 00 00 00 00 00 | ........................J....... |
| 1ab80 | 5b 0a 00 00 47 15 00 00 cb 12 00 00 35 0a 00 00 e2 11 00 00 61 0b 00 00 00 00 00 00 16 0a 00 00 | [...G.......5.......a........... |
| 1aba0 | ec 00 00 00 24 12 00 00 c8 0d 00 00 f4 12 00 00 97 14 00 00 97 07 00 00 9e 07 00 00 52 0a 00 00 | ....$.......................R... |
| 1abc0 | 71 11 00 00 1d 09 00 00 17 11 00 00 e2 0b 00 00 42 13 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | q...............B............... |
| 1abe0 | 72 0d 00 00 00 00 00 00 b2 0a 00 00 bf 0f 00 00 00 00 00 00 ae 09 00 00 00 00 00 00 5b 0d 00 00 | r...........................[... |
| 1ac00 | 00 00 00 00 00 00 00 00 b7 05 00 00 ae 0d 00 00 0b 00 00 00 0c 15 00 00 00 00 00 00 99 0c 00 00 | ................................ |
| 1ac20 | f9 12 00 00 b8 05 00 00 ad 0f 00 00 b4 03 00 00 20 15 00 00 39 10 00 00 f8 07 00 00 00 00 00 00 | ....................9........... |
| 1ac40 | a8 13 00 00 00 00 00 00 c7 01 00 00 00 00 00 00 da 02 00 00 77 00 00 00 77 0c 00 00 4e 06 00 00 | ....................w...w...N... |
| 1ac60 | 5a 09 00 00 72 12 00 00 08 0b 00 00 02 11 00 00 4b 0d 00 00 ff 13 00 00 7f 01 00 00 75 01 00 00 | Z...r...........K...........u... |
| 1ac80 | 15 07 00 00 59 14 00 00 fb 14 00 00 d2 16 00 00 f4 03 00 00 00 00 00 00 a3 0a 00 00 83 10 00 00 | ....Y........................... |
| 1aca0 | 52 02 00 00 25 15 00 00 00 00 00 00 b5 05 00 00 00 00 00 00 a4 02 00 00 ca 0c 00 00 79 11 00 00 | R...%.......................y... |
| 1acc0 | 8c 15 00 00 30 03 00 00 c0 05 00 00 b2 02 00 00 8c 05 00 00 cc 02 00 00 04 10 00 00 15 02 00 00 | ....0........................... |
| 1ace0 | 34 0f 00 00 dd 15 00 00 01 0e 00 00 30 09 00 00 ed 01 00 00 d3 14 00 00 4d 10 00 00 2b 14 00 00 | 4...........0...........M...+... |
| 1ad00 | b6 16 00 00 00 00 00 00 96 05 00 00 b2 04 00 00 cd 06 00 00 39 04 00 00 00 00 00 00 2a 01 00 00 | ....................9.......*... |
| 1ad20 | e9 10 00 00 00 00 00 00 a7 15 00 00 29 06 00 00 e3 00 00 00 80 11 00 00 00 00 00 00 f2 10 00 00 | ............)................... |
| 1ad40 | bd 03 00 00 15 03 00 00 00 00 00 00 42 04 00 00 00 00 00 00 28 0f 00 00 d3 0e 00 00 00 00 00 00 | ............B.......(........... |
| 1ad60 | 2e 10 00 00 4d 09 00 00 00 00 00 00 60 0f 00 00 e8 06 00 00 d6 0e 00 00 06 02 00 00 00 00 00 00 | ....M.......`................... |
| 1ad80 | e3 16 00 00 77 09 00 00 00 00 00 00 50 03 00 00 8b 07 00 00 5f 05 00 00 9d 01 00 00 00 00 00 00 | ....w.......P......._........... |
| 1ada0 | a5 05 00 00 00 00 00 00 82 0e 00 00 00 00 00 00 04 0b 00 00 89 04 00 00 00 00 00 00 a7 11 00 00 | ................................ |
| 1adc0 | bf 04 00 00 b9 03 00 00 09 00 00 00 00 00 00 00 00 00 00 00 cc 0c 00 00 00 00 00 00 9f 11 00 00 | ................................ |
| 1ade0 | 86 11 00 00 00 00 00 00 00 00 00 00 00 00 00 00 02 09 00 00 b1 0f 00 00 00 00 00 00 0d 0b 00 00 | ................................ |
| 1ae00 | e0 04 00 00 2c 00 00 00 37 04 00 00 a1 05 00 00 61 00 00 00 06 07 00 00 44 13 00 00 f2 14 00 00 | ....,...7.......a.......D....... |
| 1ae20 | e8 04 00 00 ee 0a 00 00 00 00 00 00 b1 03 00 00 00 00 00 00 5f 14 00 00 82 03 00 00 ed 13 00 00 | ...................._........... |
| 1ae40 | 12 04 00 00 2f 07 00 00 d0 0d 00 00 1b 0f 00 00 ae 06 00 00 48 15 00 00 00 00 00 00 2c 09 00 00 | ..../...............H.......,... |
| 1ae60 | 89 14 00 00 4f 12 00 00 00 00 00 00 00 00 00 00 5e 00 00 00 b1 0b 00 00 00 00 00 00 00 00 00 00 | ....O...........^............... |
| 1ae80 | ec 0a 00 00 00 00 00 00 d3 0f 00 00 4e 15 00 00 d3 10 00 00 4e 13 00 00 ac 09 00 00 d9 09 00 00 | ............N.......N........... |
| 1aea0 | 11 00 00 00 b5 06 00 00 09 05 00 00 3c 13 00 00 00 00 00 00 15 0a 00 00 00 00 00 00 d9 0f 00 00 | ............<................... |
| 1aec0 | b2 00 00 00 2d 07 00 00 00 00 00 00 b9 11 00 00 66 04 00 00 dc 07 00 00 61 11 00 00 f4 07 00 00 | ....-...........f.......a....... |
| 1aee0 | 35 02 00 00 ce 0b 00 00 e4 02 00 00 69 0c 00 00 41 09 00 00 e7 0b 00 00 57 0e 00 00 00 00 00 00 | 5...........i...A.......W....... |
| 1af00 | 83 09 00 00 d1 0e 00 00 40 0a 00 00 1f 0d 00 00 aa 03 00 00 00 00 00 00 8b 10 00 00 36 00 00 00 | ........@...................6... |
| 1af20 | 93 15 00 00 7f 10 00 00 00 00 00 00 da 16 00 00 28 09 00 00 dd 13 00 00 6e 11 00 00 3c 0d 00 00 | ................(.......n...<... |
| 1af40 | 00 00 00 00 5c 0e 00 00 00 00 00 00 a8 08 00 00 17 08 00 00 0f 01 00 00 89 07 00 00 7c 0f 00 00 | ....\.......................|... |
| 1af60 | 13 0c 00 00 00 00 00 00 00 00 00 00 b4 07 00 00 f6 0c 00 00 53 05 00 00 03 0c 00 00 db 05 00 00 | ....................S........... |
| 1af80 | 49 13 00 00 00 00 00 00 00 00 00 00 b3 0d 00 00 4a 0d 00 00 6e 14 00 00 00 00 00 00 00 00 00 00 | I...............J...n........... |
| 1afa0 | 8d 12 00 00 3e 08 00 00 71 09 00 00 00 00 00 00 00 00 00 00 f6 12 00 00 00 00 00 00 92 01 00 00 | ....>...q....................... |
| 1afc0 | 46 04 00 00 00 00 00 00 ca 0e 00 00 01 15 00 00 47 14 00 00 d5 04 00 00 5e 16 00 00 17 03 00 00 | F...............G.......^....... |
| 1afe0 | 00 00 00 00 9d 16 00 00 00 00 00 00 72 16 00 00 cc 09 00 00 94 11 00 00 83 11 00 00 a9 06 00 00 | ............r................... |
| 1b000 | b8 02 00 00 00 00 00 00 e7 04 00 00 00 00 00 00 db 06 00 00 37 0d 00 00 00 00 00 00 24 16 00 00 | ....................7.......$... |
| 1b020 | c4 01 00 00 00 00 00 00 00 00 00 00 d8 06 00 00 9c 04 00 00 86 06 00 00 6a 05 00 00 ba 0b 00 00 | ........................j....... |
| 1b040 | b5 0e 00 00 00 00 00 00 8d 0d 00 00 00 00 00 00 4a 15 00 00 00 00 00 00 89 15 00 00 a7 00 00 00 | ................J............... |
| 1b060 | d2 15 00 00 00 00 00 00 20 02 00 00 73 06 00 00 73 05 00 00 00 00 00 00 7c 12 00 00 a0 15 00 00 | ............s...s.......|....... |
| 1b080 | 00 00 00 00 00 00 00 00 cd 09 00 00 d9 12 00 00 70 01 00 00 e5 0e 00 00 d0 0f 00 00 33 13 00 00 | ................p...........3... |
| 1b0a0 | ac 0d 00 00 1b 11 00 00 00 00 00 00 17 05 00 00 f7 0e 00 00 00 00 00 00 d1 0d 00 00 b4 14 00 00 | ................................ |
| 1b0c0 | f9 0c 00 00 f8 09 00 00 7a 12 00 00 eb 00 00 00 00 00 00 00 70 0c 00 00 11 0a 00 00 97 08 00 00 | ........z...........p........... |
| 1b0e0 | 00 00 00 00 13 00 00 00 00 00 00 00 80 13 00 00 00 00 00 00 8d 08 00 00 d5 05 00 00 00 00 00 00 | ................................ |
| 1b100 | 00 00 00 00 a7 13 00 00 00 00 00 00 23 0c 00 00 f9 16 00 00 00 00 00 00 a6 13 00 00 00 00 00 00 | ............#................... |
| 1b120 | c9 03 00 00 69 03 00 00 b7 02 00 00 00 00 00 00 51 15 00 00 58 06 00 00 04 00 00 00 bf 0b 00 00 | ....i...........Q...X........... |
| 1b140 | ba 14 00 00 71 0e 00 00 2f 0c 00 00 c5 0f 00 00 00 00 00 00 c5 15 00 00 3a 08 00 00 00 00 00 00 | ....q.../...............:....... |
| 1b160 | 00 00 00 00 00 00 00 00 06 16 00 00 c3 0c 00 00 00 00 00 00 00 00 00 00 00 00 00 00 9f 13 00 00 | ................................ |
| 1b180 | f0 14 00 00 8a 0a 00 00 4f 00 00 00 88 05 00 00 00 00 00 00 ec 14 00 00 00 00 00 00 a7 0c 00 00 | ........O....................... |
| 1b1a0 | 00 00 00 00 9d 0c 00 00 00 00 00 00 8b 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 09 00 00 | ............................U... |
| 1b1c0 | f7 00 00 00 5d 0e 00 00 00 00 00 00 00 00 00 00 44 12 00 00 00 00 00 00 84 01 00 00 00 00 00 00 | ....]...........D............... |
| 1b1e0 | a3 05 00 00 00 00 00 00 b9 0c 00 00 2d 0b 00 00 00 00 00 00 6d 0a 00 00 ea 02 00 00 aa 0c 00 00 | ............-.......m........... |
| 1b200 | d3 0a 00 00 f1 0d 00 00 d2 05 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 1b220 | 00 00 00 00 e1 04 00 00 76 16 00 00 e5 0c 00 00 e9 12 00 00 c8 15 00 00 f7 01 00 00 00 00 00 00 | ........v....................... |
| 1b240 | 00 00 00 00 91 11 00 00 68 0a 00 00 54 13 00 00 25 0b 00 00 84 15 00 00 00 00 00 00 2e 03 00 00 | ........h...T...%............... |
| 1b260 | 00 00 00 00 5b 01 00 00 b9 0f 00 00 aa 0e 00 00 d8 10 00 00 7a 05 00 00 d5 03 00 00 32 10 00 00 | ....[...............z.......2... |
| 1b280 | 00 00 00 00 94 0e 00 00 c1 0a 00 00 cc 0a 00 00 e3 10 00 00 00 00 00 00 b3 03 00 00 00 00 00 00 | ................................ |
| 1b2a0 | 8d 15 00 00 00 00 00 00 28 0d 00 00 eb 0c 00 00 e3 04 00 00 00 00 00 00 2d 02 00 00 96 06 00 00 | ........(...............-....... |
| 1b2c0 | 00 00 00 00 31 0a 00 00 00 00 00 00 a9 13 00 00 ea 11 00 00 00 00 00 00 41 11 00 00 00 00 00 00 | ....1...................A....... |
| 1b2e0 | 52 04 00 00 00 00 00 00 68 15 00 00 d0 0c 00 00 b9 05 00 00 00 00 00 00 da 03 00 00 00 00 00 00 | R.......h....................... |
| 1b300 | 6d 12 00 00 00 00 00 00 0a 0f 00 00 77 0b 00 00 77 15 00 00 3c 0f 00 00 16 0c 00 00 00 00 00 00 | m...........w...w...<........... |
| 1b320 | 3c 0c 00 00 81 03 00 00 00 00 00 00 16 14 00 00 45 11 00 00 b7 00 00 00 c0 03 00 00 81 07 00 00 | <...............E............... |
| 1b340 | e8 03 00 00 7b 13 00 00 00 00 00 00 98 14 00 00 42 0d 00 00 64 08 00 00 00 00 00 00 00 00 00 00 | ....{...........B...d........... |
| 1b360 | 88 13 00 00 00 00 00 00 5c 03 00 00 b1 11 00 00 f5 00 00 00 09 10 00 00 32 0b 00 00 00 00 00 00 | ........\...............2....... |
| 1b380 | 00 00 00 00 00 00 00 00 a5 11 00 00 00 00 00 00 fb 05 00 00 00 00 00 00 6b 02 00 00 e7 06 00 00 | ........................k....... |
| 1b3a0 | b7 0a 00 00 99 11 00 00 5f 10 00 00 00 00 00 00 00 00 00 00 94 0c 00 00 c1 0f 00 00 92 07 00 00 | ........_....................... |
| 1b3c0 | 61 01 00 00 b7 0e 00 00 e6 14 00 00 00 00 00 00 df 0f 00 00 8f 10 00 00 cf 0b 00 00 00 00 00 00 | a............................... |
| 1b3e0 | 77 0e 00 00 56 07 00 00 6d 06 00 00 e0 03 00 00 00 00 00 00 f2 02 00 00 ce 01 00 00 ff 01 00 00 | w...V...m....................... |
| 1b400 | 95 13 00 00 65 0b 00 00 00 00 00 00 4d 0c 00 00 56 03 00 00 09 0a 00 00 69 13 00 00 9c 06 00 00 | ....e.......M...V.......i....... |
| 1b420 | 00 00 00 00 22 11 00 00 fd 0a 00 00 8c 12 00 00 7a 00 00 00 3d 0d 00 00 00 00 00 00 00 00 00 00 | ...."...........z...=........... |
| 1b440 | c6 01 00 00 76 0f 00 00 48 01 00 00 71 13 00 00 00 00 00 00 f6 03 00 00 82 07 00 00 04 0c 00 00 | ....v...H...q................... |
| 1b460 | 7e 08 00 00 de 16 00 00 92 04 00 00 25 11 00 00 00 00 00 00 02 03 00 00 87 04 00 00 51 0b 00 00 | ~...........%...............Q... |
| 1b480 | 00 00 00 00 bb 0e 00 00 00 00 00 00 05 15 00 00 7f 12 00 00 00 00 00 00 90 16 00 00 f5 05 00 00 | ................................ |
| 1b4a0 | ea 05 00 00 c2 03 00 00 00 00 00 00 16 15 00 00 0a 03 00 00 81 16 00 00 06 0b 00 00 85 0d 00 00 | ................................ |
| 1b4c0 | 00 00 00 00 49 0d 00 00 b0 08 00 00 13 01 00 00 65 15 00 00 00 00 00 00 ba 05 00 00 a9 05 00 00 | ....I...........e............... |
| 1b4e0 | 91 16 00 00 a0 12 00 00 5d 14 00 00 36 11 00 00 6e 0b 00 00 00 00 00 00 52 00 00 00 0d 0f 00 00 | ........]...6...n.......R....... |
| 1b500 | 09 06 00 00 81 0c 00 00 1f 04 00 00 70 02 00 00 14 08 00 00 00 00 00 00 f1 06 00 00 00 00 00 00 | ............p................... |
| 1b520 | 92 11 00 00 ee 08 00 00 6a 14 00 00 6f 03 00 00 d4 16 00 00 83 00 00 00 5e 02 00 00 23 0f 00 00 | ........j...o...........^...#... |
| 1b540 | 00 00 00 00 9a 14 00 00 00 00 00 00 b5 01 00 00 df 0d 00 00 62 0a 00 00 00 00 00 00 76 00 00 00 | ....................b.......v... |
| 1b560 | ff 02 00 00 17 12 00 00 7e 0b 00 00 00 00 00 00 fa 07 00 00 00 00 00 00 65 16 00 00 00 00 00 00 | ........~...............e....... |
| 1b580 | ed 00 00 00 35 16 00 00 e2 0f 00 00 51 02 00 00 9c 03 00 00 33 0b 00 00 71 0d 00 00 a1 0c 00 00 | ....5.......Q.......3...q....... |
| 1b5a0 | 5a 12 00 00 ea 0c 00 00 99 05 00 00 f3 12 00 00 1c 0f 00 00 73 07 00 00 81 13 00 00 00 00 00 00 | Z...................s........... |
| 1b5c0 | 41 05 00 00 0a 0b 00 00 a2 04 00 00 23 05 00 00 f5 04 00 00 56 15 00 00 a7 0d 00 00 1e 0b 00 00 | A...........#.......V........... |
| 1b5e0 | 00 00 00 00 a0 0b 00 00 00 00 00 00 a0 01 00 00 00 00 00 00 00 00 00 00 a2 02 00 00 8c 0f 00 00 | ................................ |
| 1b600 | 24 04 00 00 43 04 00 00 e6 0e 00 00 fc 07 00 00 19 0a 00 00 7c 03 00 00 21 08 00 00 68 04 00 00 | $...C...............|...!...h... |
| 1b620 | 00 00 00 00 2d 13 00 00 00 00 00 00 54 0b 00 00 ee 13 00 00 00 00 00 00 85 15 00 00 00 00 00 00 | ....-.......T................... |
| 1b640 | 00 00 00 00 20 13 00 00 05 0f 00 00 92 0b 00 00 00 00 00 00 d9 05 00 00 3d 13 00 00 00 00 00 00 | ........................=....... |
| 1b660 | 7d 06 00 00 00 00 00 00 2a 14 00 00 cf 0e 00 00 00 00 00 00 7a 08 00 00 00 00 00 00 00 00 00 00 | }.......*...........z........... |
| 1b680 | 00 00 00 00 fa 16 00 00 1e 0a 00 00 00 00 00 00 a0 07 00 00 00 00 00 00 86 07 00 00 cf 0d 00 00 | ................................ |
| 1b6a0 | b2 0d 00 00 6a 09 00 00 6a 16 00 00 c0 02 00 00 96 04 00 00 e1 08 00 00 cb 10 00 00 70 15 00 00 | ....j...j...................p... |
| 1b6c0 | 86 03 00 00 c9 0f 00 00 29 03 00 00 2a 03 00 00 2b 03 00 00 d1 0a 00 00 ac 16 00 00 00 00 00 00 | ........)...*...+............... |
| 1b6e0 | 38 11 00 00 62 05 00 00 00 00 00 00 00 00 00 00 88 0b 00 00 28 11 00 00 e7 16 00 00 27 10 00 00 | 8...b...............(.......'... |
| 1b700 | c8 05 00 00 33 04 00 00 26 03 00 00 0f 03 00 00 28 03 00 00 fd 13 00 00 00 00 00 00 00 00 00 00 | ....3...&.......(............... |
| 1b720 | 14 07 00 00 00 00 00 00 80 04 00 00 67 06 00 00 00 00 00 00 85 09 00 00 7f 08 00 00 71 00 00 00 | ............g...............q... |
| 1b740 | 9d 11 00 00 00 00 00 00 9c 01 00 00 24 03 00 00 25 03 00 00 9f 0b 00 00 d6 10 00 00 48 10 00 00 | ............$...%...........H... |
| 1b760 | 4e 16 00 00 41 0f 00 00 d0 00 00 00 9e 00 00 00 a5 0a 00 00 ed 0b 00 00 59 08 00 00 bc 10 00 00 | N...A...................Y....... |
| 1b780 | b3 02 00 00 00 00 00 00 20 03 00 00 21 03 00 00 22 03 00 00 26 0f 00 00 00 00 00 00 4e 0c 00 00 | ............!..."...&.......N... |
| 1b7a0 | bf 05 00 00 14 16 00 00 45 13 00 00 00 00 00 00 14 0c 00 00 71 03 00 00 00 0b 00 00 d1 13 00 00 | ........E...........q........... |
| 1b7c0 | b7 14 00 00 9d 08 00 00 ed 08 00 00 ba 0f 00 00 c2 0a 00 00 53 07 00 00 5f 0a 00 00 f8 10 00 00 | ....................S..._....... |
| 1b7e0 | f3 13 00 00 e3 12 00 00 00 00 00 00 fc 11 00 00 e6 06 00 00 97 12 00 00 00 00 00 00 9c 0e 00 00 | ................................ |
| 1b800 | 48 04 00 00 00 00 00 00 ab 0e 00 00 3a 16 00 00 c1 06 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | H...........:................... |
| 1b820 | 8c 00 00 00 00 00 00 00 0a 06 00 00 34 0d 00 00 00 00 00 00 ce 00 00 00 33 03 00 00 34 02 00 00 | ............4...........3...4... |
| 1b840 | db 15 00 00 00 00 00 00 66 06 00 00 64 07 00 00 00 00 00 00 00 00 00 00 36 0c 00 00 00 00 00 00 | ........f...d...........6....... |
| 1b860 | 00 00 00 00 00 00 00 00 e1 13 00 00 76 07 00 00 25 0e 00 00 cd 0d 00 00 da 0c 00 00 00 00 00 00 | ............v...%............... |
| 1b880 | b6 12 00 00 3a 00 00 00 00 00 00 00 bf 03 00 00 00 00 00 00 00 00 00 00 28 0b 00 00 75 06 00 00 | ....:...................(...u... |
| 1b8a0 | 42 14 00 00 3e 01 00 00 00 00 00 00 a2 14 00 00 89 03 00 00 77 03 00 00 da 15 00 00 00 00 00 00 | B...>...............w........... |
| 1b8c0 | c6 14 00 00 97 10 00 00 00 00 00 00 7a 0e 00 00 14 0f 00 00 0d 0d 00 00 1e 00 00 00 7b 0f 00 00 | ............z...............{... |
| 1b8e0 | 00 00 00 00 db 11 00 00 00 00 00 00 72 13 00 00 b3 01 00 00 cc 04 00 00 8f 0a 00 00 54 16 00 00 | ............r...............T... |
| 1b900 | e0 0d 00 00 02 12 00 00 50 0d 00 00 0c 07 00 00 d9 0b 00 00 50 10 00 00 00 00 00 00 8d 10 00 00 | ........P...........P........... |
| 1b920 | 5c 14 00 00 e9 0b 00 00 00 00 00 00 00 00 00 00 00 00 00 00 06 15 00 00 c8 01 00 00 a6 05 00 00 | \............................... |
| 1b940 | 64 13 00 00 00 00 00 00 b0 04 00 00 f3 02 00 00 d8 15 00 00 78 09 00 00 ad 07 00 00 fe 06 00 00 | d...................x........... |
| 1b960 | 9a 01 00 00 3c 0b 00 00 00 00 00 00 1f 0c 00 00 f8 0d 00 00 c4 07 00 00 00 00 00 00 8b 03 00 00 | ....<........................... |
| 1b980 | b8 0d 00 00 3d 09 00 00 00 00 00 00 00 00 00 00 b1 0d 00 00 00 00 00 00 00 00 00 00 f7 02 00 00 | ....=........................... |
| 1b9a0 | dc 12 00 00 16 05 00 00 00 00 00 00 9a 0c 00 00 c0 00 00 00 00 00 00 00 54 0a 00 00 6b 08 00 00 | ........................T...k... |
| 1b9c0 | 2b 00 00 00 ba 16 00 00 00 00 00 00 d8 04 00 00 70 14 00 00 dd 0e 00 00 2e 0c 00 00 ce 06 00 00 | +...............p............... |
| 1b9e0 | 00 00 00 00 6e 09 00 00 fc 03 00 00 48 12 00 00 bc 13 00 00 cd 04 00 00 ce 0e 00 00 89 0f 00 00 | ....n.......H................... |
| 1ba00 | 6d 05 00 00 00 00 00 00 3d 10 00 00 bc 15 00 00 80 0f 00 00 4f 13 00 00 07 10 00 00 13 08 00 00 | m.......=...........O........... |
| 1ba20 | c1 0e 00 00 2f 0a 00 00 c5 00 00 00 67 11 00 00 45 03 00 00 0a 0a 00 00 36 15 00 00 04 17 00 00 | ..../.......g...E.......6....... |
| 1ba40 | 00 00 00 00 9f 09 00 00 00 00 00 00 24 02 00 00 ef 07 00 00 00 00 00 00 7c 01 00 00 00 00 00 00 | ............$...........|....... |
| 1ba60 | 80 0c 00 00 00 00 00 00 e9 04 00 00 27 02 00 00 86 0a 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ............'................... |
| 1ba80 | 68 0d 00 00 62 02 00 00 00 00 00 00 e0 0a 00 00 00 00 00 00 00 00 00 00 0e 0b 00 00 e5 03 00 00 | h...b........................... |
| 1baa0 | 18 05 00 00 00 00 00 00 76 12 00 00 96 09 00 00 00 00 00 00 00 00 00 00 00 00 00 00 43 12 00 00 | ........v...................C... |
| 1bac0 | 4c 0c 00 00 40 0c 00 00 ac 15 00 00 00 00 00 00 83 14 00 00 5b 12 00 00 7e 03 00 00 00 00 00 00 | L...@...............[...~....... |
| 1bae0 | 3c 08 00 00 19 0d 00 00 9b 06 00 00 00 00 00 00 b1 09 00 00 00 00 00 00 73 02 00 00 00 00 00 00 | <.......................s....... |
| 1bb00 | 38 0e 00 00 00 00 00 00 d8 0a 00 00 6a 04 00 00 48 03 00 00 ff 0f 00 00 00 00 00 00 d0 16 00 00 | 8...........j...H............... |
| 1bb20 | b9 00 00 00 4a 0b 00 00 00 00 00 00 8e 12 00 00 00 00 00 00 c3 10 00 00 00 00 00 00 85 03 00 00 | ....J........................... |
| 1bb40 | 40 15 00 00 41 00 00 00 d4 0d 00 00 00 00 00 00 59 13 00 00 04 0a 00 00 80 05 00 00 00 00 00 00 | @...A...........Y............... |
| 1bb60 | 44 02 00 00 a4 0a 00 00 94 03 00 00 9f 00 00 00 b9 02 00 00 0a 00 00 00 2d 16 00 00 05 16 00 00 | D.......................-....... |
| 1bb80 | 77 02 00 00 82 13 00 00 5b 05 00 00 0d 0e 00 00 3e 14 00 00 00 00 00 00 21 0b 00 00 12 0c 00 00 | w.......[.......>.......!....... |
| 1bba0 | 5e 10 00 00 04 14 00 00 00 00 00 00 ff 0d 00 00 63 02 00 00 a4 10 00 00 3f 01 00 00 90 15 00 00 | ^...............c.......?....... |
| 1bbc0 | 00 00 00 00 00 00 00 00 00 00 00 00 08 06 00 00 3b 13 00 00 fc 16 00 00 00 00 00 00 83 0c 00 00 | ................;............... |
| 1bbe0 | d6 0d 00 00 c0 0d 00 00 89 06 00 00 20 05 00 00 58 0b 00 00 00 00 00 00 00 00 00 00 84 11 00 00 | ................X............... |
| 1bc00 | c7 15 00 00 75 11 00 00 00 00 00 00 00 00 00 00 bf 01 00 00 0e 14 00 00 ad 0a 00 00 8c 07 00 00 | ....u........................... |
| 1bc20 | 44 0a 00 00 00 00 00 00 00 00 00 00 00 00 00 00 b2 16 00 00 9b 0e 00 00 2c 13 00 00 00 00 00 00 | D.......................,....... |
| 1bc40 | 48 0e 00 00 84 04 00 00 70 05 00 00 a6 0f 00 00 a8 04 00 00 35 06 00 00 b1 13 00 00 d6 08 00 00 | H.......p...........5........... |
| 1bc60 | 7d 08 00 00 03 03 00 00 2a 0b 00 00 fb 12 00 00 e6 01 00 00 0b 0e 00 00 d2 00 00 00 00 00 00 00 | }.......*....................... |
| 1bc80 | 00 00 00 00 24 15 00 00 44 14 00 00 00 00 00 00 cd 0a 00 00 54 00 00 00 07 17 00 00 89 0a 00 00 | ....$...D...........T........... |
| 1bca0 | 72 14 00 00 00 00 00 00 bd 12 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | r............................... |
| 1bcc0 | 6c 06 00 00 e7 07 00 00 00 00 00 00 33 0f 00 00 20 04 00 00 00 00 00 00 23 0b 00 00 b4 02 00 00 | l...........3...........#....... |
| 1bce0 | 9b 15 00 00 d2 02 00 00 00 00 00 00 05 02 00 00 62 0b 00 00 81 0a 00 00 34 10 00 00 10 13 00 00 | ................b.......4....... |
| 1bd00 | d4 08 00 00 c7 0d 00 00 c9 11 00 00 00 00 00 00 42 08 00 00 38 09 00 00 00 00 00 00 00 00 00 00 | ................B...8........... |
| 1bd20 | 02 01 00 00 00 00 00 00 00 00 00 00 df 0e 00 00 62 10 00 00 2b 09 00 00 5a 15 00 00 0c 12 00 00 | ................b...+...Z....... |
| 1bd40 | 04 01 00 00 fa 04 00 00 8c 02 00 00 00 00 00 00 ed 12 00 00 00 00 00 00 5e 11 00 00 d3 0b 00 00 | ........................^....... |
| 1bd60 | 04 16 00 00 8e 0a 00 00 14 12 00 00 bd 0a 00 00 8f 13 00 00 05 06 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 1bd80 | 5f 0e 00 00 d2 09 00 00 00 00 00 00 7d 0c 00 00 d6 12 00 00 fc 05 00 00 ea 15 00 00 1f 11 00 00 | _...........}................... |
| 1bda0 | 00 00 00 00 15 00 00 00 00 00 00 00 00 00 00 00 49 0a 00 00 04 04 00 00 00 00 00 00 36 08 00 00 | ................I...........6... |
| 1bdc0 | 00 00 00 00 ff 07 00 00 a2 15 00 00 cc 10 00 00 16 12 00 00 58 05 00 00 76 06 00 00 48 14 00 00 | ....................X...v...H... |
| 1bde0 | 0e 0d 00 00 be 0d 00 00 3d 0f 00 00 43 02 00 00 f1 15 00 00 90 0b 00 00 3c 10 00 00 00 00 00 00 | ........=...C...........<....... |
| 1be00 | 00 00 00 00 00 00 00 00 c7 02 00 00 ea 08 00 00 6e 06 00 00 dd 04 00 00 32 02 00 00 46 08 00 00 | ................n.......2...F... |
| 1be20 | 00 00 00 00 a1 0e 00 00 f9 08 00 00 5d 12 00 00 2e 01 00 00 b8 07 00 00 90 0c 00 00 9e 0d 00 00 | ............]................... |
| 1be40 | da 0a 00 00 e3 02 00 00 00 00 00 00 eb 0f 00 00 58 15 00 00 ee 04 00 00 00 00 00 00 f6 02 00 00 | ................X............... |
| 1be60 | c4 08 00 00 f3 0f 00 00 a8 12 00 00 74 0f 00 00 e4 01 00 00 01 0a 00 00 60 0d 00 00 2c 0a 00 00 | ............t...........`...,... |
| 1be80 | 2d 04 00 00 00 00 00 00 06 0a 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ba 13 00 00 ed 04 00 00 | -............................... |
| 1bea0 | c5 03 00 00 52 16 00 00 26 13 00 00 00 00 00 00 e7 01 00 00 8a 15 00 00 c4 03 00 00 98 15 00 00 | ....R...&....................... |
| 1bec0 | 8b 14 00 00 06 03 00 00 00 00 00 00 58 04 00 00 89 12 00 00 3e 06 00 00 00 00 00 00 04 07 00 00 | ............X.......>........... |
| 1bee0 | 87 0d 00 00 cd 0c 00 00 00 00 00 00 ba 08 00 00 9f 12 00 00 79 06 00 00 48 16 00 00 f9 10 00 00 | ....................y...H....... |
| 1bf00 | 00 00 00 00 00 00 00 00 3b 0e 00 00 00 00 00 00 93 16 00 00 62 0c 00 00 b9 01 00 00 96 0b 00 00 | ........;...........b........... |
| 1bf20 | 00 00 00 00 00 00 00 00 59 09 00 00 00 00 00 00 d0 10 00 00 00 00 00 00 f1 14 00 00 46 0b 00 00 | ........Y...................F... |
| 1bf40 | 55 12 00 00 00 00 00 00 b1 05 00 00 00 00 00 00 a1 0d 00 00 55 05 00 00 28 13 00 00 27 15 00 00 | U...................U...(...'... |
| 1bf60 | c6 00 00 00 19 0e 00 00 d7 10 00 00 f2 01 00 00 b2 01 00 00 00 00 00 00 f1 07 00 00 13 02 00 00 | ................................ |
| 1bf80 | 28 06 00 00 fe 03 00 00 e1 05 00 00 f9 0b 00 00 d6 16 00 00 00 00 00 00 08 14 00 00 ca 01 00 00 | (............................... |
| 1bfa0 | 8c 01 00 00 21 12 00 00 ff 0a 00 00 e2 12 00 00 c4 00 00 00 45 14 00 00 63 11 00 00 00 00 00 00 | ....!...............E...c....... |
| 1bfc0 | f6 06 00 00 2b 0c 00 00 b8 03 00 00 57 01 00 00 80 14 00 00 00 00 00 00 00 00 00 00 6c 08 00 00 | ....+.......W...............l... |
| 1bfe0 | 13 0a 00 00 00 00 00 00 97 04 00 00 1a 04 00 00 4d 07 00 00 29 0e 00 00 ef 0d 00 00 9c 14 00 00 | ................M...)........... |
| 1c000 | 99 04 00 00 76 13 00 00 8b 13 00 00 a3 12 00 00 b9 12 00 00 40 09 00 00 72 11 00 00 37 12 00 00 | ....v...............@...r...7... |
| 1c020 | 00 00 00 00 92 0a 00 00 00 00 00 00 aa 0b 00 00 5a 01 00 00 03 05 00 00 44 07 00 00 02 10 00 00 | ................Z.......D....... |
| 1c040 | db 0b 00 00 9b 12 00 00 00 00 00 00 00 00 00 00 8b 01 00 00 f9 04 00 00 36 12 00 00 6b 0c 00 00 | ........................6...k... |
| 1c060 | e0 07 00 00 00 00 00 00 f6 0a 00 00 00 00 00 00 00 00 00 00 e8 00 00 00 11 0c 00 00 00 00 00 00 | ................................ |
| 1c080 | e2 02 00 00 21 07 00 00 a8 0c 00 00 59 15 00 00 ff 15 00 00 b3 14 00 00 1e 12 00 00 57 00 00 00 | ....!.......Y...............W... |
| 1c0a0 | 1a 06 00 00 00 00 00 00 29 09 00 00 c6 08 00 00 00 00 00 00 a4 0c 00 00 b6 00 00 00 6c 02 00 00 | ........)...................l... |
| 1c0c0 | 31 0d 00 00 4e 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 60 07 00 00 | 1...N.......................`... |
| 1c0e0 | 98 13 00 00 da 04 00 00 f9 15 00 00 75 0a 00 00 ea 0b 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ............u................... |
| 1c100 | 58 03 00 00 49 04 00 00 00 00 00 00 de 0a 00 00 ca 16 00 00 29 11 00 00 4f 04 00 00 de 01 00 00 | X...I...............)...O....... |
| 1c120 | 94 02 00 00 01 07 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 d6 04 00 00 db 09 00 00 | ................................ |
| 1c140 | 8c 08 00 00 38 0d 00 00 00 00 00 00 25 0d 00 00 25 0a 00 00 11 14 00 00 00 00 00 00 70 11 00 00 | ....8.......%...%...........p... |
| 1c160 | c5 0e 00 00 2c 04 00 00 8d 02 00 00 e4 10 00 00 fe 0d 00 00 c0 0f 00 00 98 01 00 00 ee 01 00 00 | ....,........................... |
| 1c180 | 00 00 00 00 53 15 00 00 1d 0b 00 00 00 00 00 00 28 04 00 00 00 00 00 00 05 12 00 00 97 03 00 00 | ....S...........(............... |
| 1c1a0 | 0a 12 00 00 2b 0d 00 00 5a 0a 00 00 00 00 00 00 1c 04 00 00 c2 0e 00 00 00 00 00 00 00 00 00 00 | ....+...Z....................... |
| 1c1c0 | 97 13 00 00 00 00 00 00 00 00 00 00 12 10 00 00 7d 03 00 00 bb 05 00 00 26 0c 00 00 79 10 00 00 | ................}.......&...y... |
| 1c1e0 | 00 00 00 00 ea 12 00 00 00 00 00 00 08 09 00 00 2f 01 00 00 35 0d 00 00 1c 08 00 00 9d 0d 00 00 | ................/...5........... |
| 1c200 | 92 09 00 00 e1 0e 00 00 00 00 00 00 00 00 00 00 94 0d 00 00 95 04 00 00 00 00 00 00 59 07 00 00 | ............................Y... |
| 1c220 | b8 06 00 00 00 00 00 00 85 00 00 00 7d 02 00 00 30 01 00 00 9a 03 00 00 62 14 00 00 6d 13 00 00 | ............}...0.......b...m... |
| 1c240 | a0 0d 00 00 50 04 00 00 00 00 00 00 00 00 00 00 46 12 00 00 a5 15 00 00 b5 09 00 00 a9 16 00 00 | ....P...........F............... |
| 1c260 | 3a 06 00 00 64 00 00 00 a7 07 00 00 00 00 00 00 c6 06 00 00 00 00 00 00 00 00 00 00 3d 16 00 00 | :...d.......................=... |
| 1c280 | d8 14 00 00 c0 12 00 00 b0 06 00 00 b5 10 00 00 fc 0d 00 00 db 02 00 00 fd 09 00 00 8b 05 00 00 | ................................ |
| 1c2a0 | a6 15 00 00 7d 07 00 00 7e 07 00 00 6f 0a 00 00 5a 0d 00 00 7e 14 00 00 64 03 00 00 12 05 00 00 | ....}...~...o...Z...~...d....... |
| 1c2c0 | 08 0c 00 00 00 00 00 00 38 08 00 00 6a 08 00 00 00 00 00 00 00 00 00 00 b7 0b 00 00 00 00 00 00 | ........8...j................... |
| 1c2e0 | 00 00 00 00 69 15 00 00 00 00 00 00 1a 13 00 00 83 07 00 00 f6 16 00 00 00 00 00 00 ab 06 00 00 | ....i........................... |
| 1c300 | 00 00 00 00 00 00 00 00 e4 12 00 00 b6 0f 00 00 63 03 00 00 00 00 00 00 00 00 00 00 a2 13 00 00 | ................c............... |
| 1c320 | 3a 0b 00 00 d0 06 00 00 67 15 00 00 00 00 00 00 00 00 00 00 00 00 00 00 5b 16 00 00 14 0e 00 00 | :.......g...............[....... |
| 1c340 | 9e 06 00 00 00 00 00 00 07 04 00 00 1a 03 00 00 df 0b 00 00 e0 02 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 1c360 | 6b 01 00 00 05 0a 00 00 00 00 00 00 18 01 00 00 df 07 00 00 16 00 00 00 00 00 00 00 00 00 00 00 | k............................... |
| 1c380 | 83 08 00 00 00 00 00 00 ba 0a 00 00 bb 14 00 00 6d 00 00 00 e1 16 00 00 f1 02 00 00 4c 0f 00 00 | ................m...........L... |
| 1c3a0 | b6 05 00 00 00 00 00 00 e0 15 00 00 a8 15 00 00 c3 01 00 00 4a 07 00 00 00 00 00 00 0b 09 00 00 | ....................J........... |
| 1c3c0 | d4 07 00 00 00 00 00 00 00 00 00 00 73 0a 00 00 44 00 00 00 ef 08 00 00 d3 04 00 00 1f 02 00 00 | ............s...D............... |
| 1c3e0 | 5e 04 00 00 ef 12 00 00 00 00 00 00 48 00 00 00 63 0d 00 00 00 00 00 00 ec 0d 00 00 83 02 00 00 | ^...........H...c............... |
| 1c400 | cb 16 00 00 7f 09 00 00 0f 08 00 00 b0 10 00 00 c7 08 00 00 73 13 00 00 86 0b 00 00 c6 0a 00 00 | ....................s........... |
| 1c420 | 1f 03 00 00 51 0d 00 00 00 00 00 00 59 0e 00 00 59 01 00 00 49 0f 00 00 88 04 00 00 00 00 00 00 | ....Q.......Y...Y...I........... |
| 1c440 | 1c 0a 00 00 45 0d 00 00 6e 10 00 00 20 08 00 00 26 07 00 00 00 00 00 00 ee 0b 00 00 ca 15 00 00 | ....E...n.......&............... |
| 1c460 | 00 00 00 00 46 0a 00 00 39 06 00 00 0b 0f 00 00 68 10 00 00 0b 0d 00 00 3d 11 00 00 00 00 00 00 | ....F...9.......h.......=....... |
| 1c480 | 42 0a 00 00 60 03 00 00 27 03 00 00 f3 14 00 00 a6 00 00 00 aa 06 00 00 ed 05 00 00 83 16 00 00 | B...`...'....................... |
| 1c4a0 | 00 00 00 00 8a 01 00 00 92 0d 00 00 07 01 00 00 5a 0e 00 00 3e 07 00 00 2b 02 00 00 79 13 00 00 | ................Z...>...+...y... |
| 1c4c0 | 5a 07 00 00 51 06 00 00 cf 02 00 00 8d 0c 00 00 e7 02 00 00 a1 01 00 00 ed 16 00 00 3f 04 00 00 | Z...Q.......................?... |
| 1c4e0 | 7d 0f 00 00 00 00 00 00 3f 06 00 00 fe 05 00 00 46 14 00 00 9f 0d 00 00 72 0b 00 00 7e 0d 00 00 | }.......?.......F.......r...~... |
| 1c500 | 23 03 00 00 00 00 00 00 00 00 00 00 e3 0f 00 00 68 01 00 00 36 10 00 00 6e 0a 00 00 2d 00 00 00 | #...............h...6...n...-... |
| 1c520 | 9c 0c 00 00 59 05 00 00 aa 09 00 00 78 0b 00 00 8f 06 00 00 e3 09 00 00 c2 04 00 00 6f 0f 00 00 | ....Y.......x...............o... |
| 1c540 | 60 11 00 00 82 08 00 00 75 0e 00 00 e8 07 00 00 7e 13 00 00 70 00 00 00 50 07 00 00 00 00 00 00 | `.......u.......~...p...P....... |
| 1c560 | 12 16 00 00 00 00 00 00 00 00 00 00 f7 14 00 00 44 04 00 00 ce 02 00 00 42 01 00 00 00 00 00 00 | ................D.......B....... |
| 1c580 | 00 00 00 00 0e 12 00 00 b9 06 00 00 0e 0c 00 00 cc 01 00 00 00 00 00 00 55 02 00 00 8c 0d 00 00 | ........................U....... |
| 1c5a0 | 9f 0c 00 00 00 00 00 00 9a 13 00 00 af 0b 00 00 19 05 00 00 d2 06 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 1c5c0 | 7d 0d 00 00 ca 09 00 00 00 00 00 00 95 15 00 00 3b 01 00 00 59 00 00 00 55 08 00 00 6e 07 00 00 | }...............;...Y...U...n... |
| 1c5e0 | 34 04 00 00 e3 0a 00 00 58 07 00 00 8d 01 00 00 00 00 00 00 90 04 00 00 00 00 00 00 22 09 00 00 | 4.......X..................."... |
| 1c600 | 04 06 00 00 c6 03 00 00 00 00 00 00 00 00 00 00 7d 15 00 00 1e 10 00 00 0c 01 00 00 00 00 00 00 | ................}............... |
| 1c620 | 00 00 00 00 11 09 00 00 57 0f 00 00 ab 0d 00 00 9b 04 00 00 00 00 00 00 c4 12 00 00 00 00 00 00 | ........W....................... |
| 1c640 | 00 00 00 00 2e 16 00 00 85 12 00 00 77 0f 00 00 19 08 00 00 74 02 00 00 4a 10 00 00 c3 0f 00 00 | ............w.......t...J....... |
| 1c660 | a7 05 00 00 f8 0f 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0b 05 00 00 00 00 00 00 19 0c 00 00 | ................................ |
| 1c680 | 5b 07 00 00 58 09 00 00 21 06 00 00 85 14 00 00 9f 14 00 00 00 00 00 00 07 13 00 00 00 00 00 00 | [...X...!....................... |
| 1c6a0 | 39 0a 00 00 be 07 00 00 8e 03 00 00 00 00 00 00 d7 05 00 00 e2 06 00 00 df 15 00 00 00 00 00 00 | 9............................... |
| 1c6c0 | 01 08 00 00 c1 0c 00 00 00 00 00 00 fd 02 00 00 80 00 00 00 df 14 00 00 6f 0d 00 00 00 00 00 00 | ........................o....... |
| 1c6e0 | eb 02 00 00 33 01 00 00 c8 03 00 00 50 11 00 00 34 08 00 00 00 10 00 00 36 06 00 00 00 00 00 00 | ....3.......P...4.......6....... |
| 1c700 | fa 0f 00 00 19 03 00 00 f4 00 00 00 e2 09 00 00 91 14 00 00 00 00 00 00 46 10 00 00 f7 08 00 00 | ........................F....... |
| 1c720 | 8d 05 00 00 1f 16 00 00 55 00 00 00 19 01 00 00 35 0b 00 00 1e 0f 00 00 00 00 00 00 b4 13 00 00 | ........U.......5............... |
| 1c740 | fb 11 00 00 00 00 00 00 d2 11 00 00 a7 08 00 00 8a 0f 00 00 3e 12 00 00 00 00 00 00 92 05 00 00 | ....................>........... |
| 1c760 | cd 03 00 00 b0 0f 00 00 c4 06 00 00 1a 01 00 00 e0 13 00 00 a1 00 00 00 7c 14 00 00 1c 02 00 00 | ........................|....... |
| 1c780 | 31 09 00 00 2e 07 00 00 56 09 00 00 4c 12 00 00 5f 06 00 00 95 16 00 00 49 0e 00 00 72 05 00 00 | 1.......V...L..._.......I...r... |
| 1c7a0 | 98 16 00 00 bd 16 00 00 88 06 00 00 ca 07 00 00 f2 03 00 00 da 11 00 00 52 0d 00 00 00 00 00 00 | ........................R....... |
| 1c7c0 | 00 00 00 00 a1 12 00 00 b0 0e 00 00 3e 0b 00 00 dd 02 00 00 f5 0a 00 00 54 0e 00 00 cb 14 00 00 | ............>...........T....... |
| 1c7e0 | c6 0f 00 00 d5 11 00 00 a3 11 00 00 00 00 00 00 00 00 00 00 00 00 00 00 d4 01 00 00 c5 14 00 00 | ................................ |
| 1c800 | 82 0a 00 00 69 09 00 00 00 00 00 00 1e 13 00 00 b6 09 00 00 00 00 00 00 3c 15 00 00 30 07 00 00 | ....i...................<...0... |
| 1c820 | 07 16 00 00 00 00 00 00 76 15 00 00 24 05 00 00 f0 12 00 00 2a 12 00 00 00 00 00 00 4b 06 00 00 | ........v...$.......*.......K... |
| 1c840 | fb 08 00 00 e0 05 00 00 6b 10 00 00 8b 0f 00 00 88 14 00 00 e6 05 00 00 00 00 00 00 ae 01 00 00 | ........k....................... |
| 1c860 | b5 12 00 00 8a 16 00 00 11 11 00 00 51 11 00 00 98 09 00 00 ee 02 00 00 ba 00 00 00 f7 10 00 00 | ............Q................... |
| 1c880 | 27 11 00 00 d2 0e 00 00 92 08 00 00 3e 00 00 00 fb 07 00 00 9b 08 00 00 9e 13 00 00 00 00 00 00 | '...........>................... |
| 1c8a0 | 81 05 00 00 ad 09 00 00 34 00 00 00 9c 00 00 00 ad 0b 00 00 a2 0b 00 00 8a 14 00 00 02 0e 00 00 | ........4....................... |
| 1c8c0 | 40 00 00 00 ee 07 00 00 7c 13 00 00 00 00 00 00 d3 0d 00 00 00 00 00 00 1b 08 00 00 00 00 00 00 | @.......|....................... |
| 1c8e0 | 1f 12 00 00 cc 12 00 00 76 0b 00 00 00 00 00 00 00 00 00 00 f0 15 00 00 0c 06 00 00 f2 15 00 00 | ........v....................... |
| 1c900 | 00 00 00 00 00 00 00 00 cd 08 00 00 00 00 00 00 23 02 00 00 56 0a 00 00 bd 13 00 00 37 0b 00 00 | ................#...V.......7... |
| 1c920 | e6 07 00 00 09 0e 00 00 d5 00 00 00 f7 0f 00 00 7b 16 00 00 bb 16 00 00 68 11 00 00 00 00 00 00 | ................{.......h....... |
| 1c940 | 2f 13 00 00 00 00 00 00 00 00 00 00 e1 03 00 00 00 00 00 00 00 00 00 00 89 0d 00 00 3b 0d 00 00 | /...........................;... |
| 1c960 | a2 03 00 00 63 15 00 00 6a 11 00 00 82 0c 00 00 7f 05 00 00 5a 11 00 00 cc 05 00 00 c7 0c 00 00 | ....c...j...........Z........... |
| 1c980 | 00 00 00 00 fb 13 00 00 00 00 00 00 00 00 00 00 fd 04 00 00 00 00 00 00 00 00 00 00 e6 0c 00 00 | ................................ |
| 1c9a0 | eb 0d 00 00 00 00 00 00 74 04 00 00 00 00 00 00 47 0d 00 00 00 00 00 00 5a 03 00 00 7e 05 00 00 | ........t.......G.......Z...~... |
| 1c9c0 | 00 00 00 00 6c 15 00 00 e4 0c 00 00 00 00 00 00 00 00 00 00 00 00 00 00 82 16 00 00 00 00 00 00 | ....l........................... |
| 1c9e0 | 10 16 00 00 00 00 00 00 3b 05 00 00 00 00 00 00 2b 0e 00 00 98 0a 00 00 c6 0e 00 00 b1 0e 00 00 | ........;.......+............... |
| 1ca00 | 9b 13 00 00 00 00 00 00 7a 07 00 00 3b 0a 00 00 70 12 00 00 f4 0b 00 00 41 15 00 00 f4 02 00 00 | ........z...;...p.......A....... |
| 1ca20 | 2e 00 00 00 dd 0a 00 00 7b 07 00 00 e2 00 00 00 00 00 00 00 0c 0e 00 00 91 01 00 00 cd 05 00 00 | ........{....................... |
| 1ca40 | 5a 0c 00 00 35 09 00 00 02 07 00 00 01 10 00 00 00 00 00 00 45 15 00 00 c0 15 00 00 1d 00 00 00 | Z...5...............E........... |
| 1ca60 | 00 00 00 00 06 13 00 00 9d 0b 00 00 1c 12 00 00 24 11 00 00 9f 15 00 00 11 10 00 00 06 12 00 00 | ................$............... |
| 1ca80 | 90 11 00 00 cf 14 00 00 00 00 00 00 db 0a 00 00 16 09 00 00 7c 0a 00 00 00 00 00 00 4f 07 00 00 | ....................|.......O... |
| 1caa0 | 54 08 00 00 00 00 00 00 07 05 00 00 55 14 00 00 2a 0e 00 00 c9 01 00 00 00 00 00 00 c6 07 00 00 | T...........U...*............... |
| 1cac0 | 81 11 00 00 00 00 00 00 00 00 00 00 09 09 00 00 fe 01 00 00 00 00 00 00 00 00 00 00 51 14 00 00 | ............................Q... |
| 1cae0 | 87 06 00 00 ba 11 00 00 00 00 00 00 b2 10 00 00 f8 02 00 00 18 14 00 00 00 00 00 00 1f 0a 00 00 | ................................ |
| 1cb00 | d8 0c 00 00 3c 12 00 00 87 09 00 00 00 00 00 00 dc 0e 00 00 00 00 00 00 d2 01 00 00 eb 0e 00 00 | ....<........................... |
| 1cb20 | d6 07 00 00 a4 16 00 00 00 15 00 00 62 16 00 00 af 03 00 00 6c 10 00 00 00 00 00 00 b9 0d 00 00 | ............b.......l........... |
| 1cb40 | de 0c 00 00 41 13 00 00 a2 08 00 00 00 00 00 00 3e 0f 00 00 8e 14 00 00 e7 03 00 00 4e 14 00 00 | ....A...........>...........N... |
| 1cb60 | 8d 13 00 00 46 02 00 00 00 00 00 00 00 00 00 00 6e 05 00 00 95 0e 00 00 42 07 00 00 a8 07 00 00 | ....F...........n.......B....... |
| 1cb80 | 00 00 00 00 2f 15 00 00 00 00 00 00 fe 0f 00 00 00 00 00 00 d8 00 00 00 e7 0f 00 00 00 00 00 00 | ..../........................... |
| 1cba0 | 00 00 00 00 00 00 00 00 47 12 00 00 00 00 00 00 1b 0a 00 00 db 07 00 00 00 00 00 00 f8 00 00 00 | ........G....................... |
| 1cbc0 | 6a 0e 00 00 bd 07 00 00 4a 01 00 00 4b 0c 00 00 19 02 00 00 95 08 00 00 62 0d 00 00 c3 0e 00 00 | j.......J...K...........b....... |
| 1cbe0 | 4c 08 00 00 c8 0e 00 00 3c 06 00 00 b6 02 00 00 00 00 00 00 f4 15 00 00 d4 11 00 00 1a 11 00 00 | L.......<....................... |
| 1cc00 | 7d 01 00 00 00 00 00 00 d3 05 00 00 b0 03 00 00 ed 09 00 00 00 00 00 00 2e 02 00 00 37 09 00 00 | }...........................7... |
| 1cc20 | 00 00 00 00 88 09 00 00 b5 16 00 00 00 00 00 00 90 10 00 00 5c 0d 00 00 d3 01 00 00 b0 0b 00 00 | ....................\........... |
| 1cc40 | ed 11 00 00 5f 13 00 00 00 00 00 00 d0 14 00 00 4b 05 00 00 00 00 00 00 a0 05 00 00 00 00 00 00 | ...._...........K............... |
| 1cc60 | 7c 16 00 00 64 0c 00 00 97 0d 00 00 00 00 00 00 bf 10 00 00 95 0a 00 00 65 0e 00 00 00 00 00 00 | |...d...................e....... |
| 1cc80 | 50 13 00 00 a4 04 00 00 19 04 00 00 9b 02 00 00 6f 0c 00 00 8a 0b 00 00 1c 09 00 00 1c 06 00 00 | P...............o............... |
| 1cca0 | 00 00 00 00 bb 04 00 00 e0 08 00 00 9d 09 00 00 84 16 00 00 9c 0f 00 00 00 00 00 00 1b 06 00 00 | ................................ |
| 1ccc0 | f8 16 00 00 00 00 00 00 a9 12 00 00 bd 09 00 00 6f 07 00 00 0d 16 00 00 00 00 00 00 4e 12 00 00 | ................o...........N... |
| 1cce0 | fe 04 00 00 ee 09 00 00 6a 0f 00 00 00 00 00 00 00 00 00 00 cf 10 00 00 00 00 00 00 3a 10 00 00 | ........j...................:... |
| 1cd00 | 6d 01 00 00 00 00 00 00 b4 10 00 00 00 00 00 00 72 04 00 00 4f 08 00 00 5f 00 00 00 d3 03 00 00 | m...............r...O..._....... |
| 1cd20 | 97 01 00 00 0b 0b 00 00 6b 00 00 00 00 00 00 00 3f 10 00 00 00 00 00 00 dc 10 00 00 73 10 00 00 | ........k.......?...........s... |
| 1cd40 | 27 06 00 00 bc 0d 00 00 4c 03 00 00 b6 13 00 00 14 00 00 00 94 0f 00 00 14 14 00 00 c2 0c 00 00 | '.......L....................... |
| 1cd60 | e4 08 00 00 96 03 00 00 00 00 00 00 00 00 00 00 7a 10 00 00 e8 05 00 00 6e 0f 00 00 00 00 00 00 | ................z.......n....... |
| 1cd80 | cc 03 00 00 00 00 00 00 b7 12 00 00 b7 07 00 00 00 00 00 00 e9 09 00 00 ad 05 00 00 35 12 00 00 | ............................5... |
| 1cda0 | 09 14 00 00 1d 16 00 00 c8 04 00 00 96 0c 00 00 30 06 00 00 fa 0b 00 00 00 00 00 00 e8 12 00 00 | ................0............... |
| 1cdc0 | d8 08 00 00 00 00 00 00 43 01 00 00 7a 15 00 00 25 05 00 00 00 00 00 00 8f 11 00 00 96 15 00 00 | ........C...z...%............... |
| 1cde0 | 16 0e 00 00 76 0a 00 00 fc 14 00 00 00 00 00 00 00 00 00 00 68 06 00 00 00 00 00 00 3c 03 00 00 | ....v...............h.......<... |
| 1ce00 | 8e 02 00 00 54 04 00 00 16 0d 00 00 9f 02 00 00 ba 03 00 00 ef 13 00 00 00 00 00 00 00 00 00 00 | ....T........................... |
| 1ce20 | 0f 13 00 00 67 10 00 00 b9 16 00 00 94 01 00 00 26 00 00 00 b7 08 00 00 99 00 00 00 b3 12 00 00 | ....g...........&............... |
| 1ce40 | 14 06 00 00 00 00 00 00 3b 02 00 00 e7 05 00 00 00 00 00 00 0e 00 00 00 00 00 00 00 00 00 00 00 | ........;....................... |
| 1ce60 | 00 00 00 00 d9 14 00 00 c0 16 00 00 00 00 00 00 00 00 00 00 1d 02 00 00 5b 08 00 00 00 00 00 00 | ........................[....... |
| 1ce80 | 00 00 00 00 00 00 00 00 67 0b 00 00 00 00 00 00 d4 03 00 00 2d 0f 00 00 e9 14 00 00 f6 0b 00 00 | ........g...........-........... |
| 1cea0 | 1f 10 00 00 1d 12 00 00 11 04 00 00 0b 10 00 00 f8 06 00 00 a3 0e 00 00 fc 09 00 00 d6 0c 00 00 | ................................ |
| 1cec0 | 5a 02 00 00 00 00 00 00 82 11 00 00 f8 03 00 00 00 00 00 00 90 06 00 00 b3 10 00 00 00 00 00 00 | Z............................... |
| 1cee0 | 9d 02 00 00 af 09 00 00 56 13 00 00 21 13 00 00 1d 11 00 00 cf 0f 00 00 8c 16 00 00 90 03 00 00 | ........V...!................... |
| 1cf00 | 00 00 00 00 e5 0d 00 00 8c 0a 00 00 00 00 00 00 8a 0e 00 00 39 12 00 00 a1 13 00 00 88 0c 00 00 | ....................9........... |
| 1cf20 | ab 05 00 00 b5 13 00 00 6c 14 00 00 d2 0f 00 00 34 07 00 00 a5 06 00 00 00 00 00 00 ea 04 00 00 | ........l.......4............... |
| 1cf40 | 90 0e 00 00 7d 00 00 00 f4 0a 00 00 99 07 00 00 00 00 00 00 78 00 00 00 ee 14 00 00 67 05 00 00 | ....}...............x.......g... |
| 1cf60 | d6 09 00 00 00 00 00 00 00 00 00 00 ae 0e 00 00 cb 04 00 00 e3 08 00 00 95 14 00 00 7b 01 00 00 | ............................{... |
| 1cf80 | 73 11 00 00 fd 08 00 00 6c 0c 00 00 00 00 00 00 39 09 00 00 79 12 00 00 00 00 00 00 00 00 00 00 | s.......l.......9...y........... |
| 1cfa0 | f1 0c 00 00 99 10 00 00 59 10 00 00 95 06 00 00 00 00 00 00 5f 0d 00 00 60 06 00 00 f6 0e 00 00 | ........Y..........._...`....... |
| 1cfc0 | 98 05 00 00 a7 12 00 00 d0 12 00 00 e6 04 00 00 a4 01 00 00 2d 14 00 00 ec 15 00 00 be 11 00 00 | ....................-........... |
| 1cfe0 | 53 12 00 00 b4 0e 00 00 18 0a 00 00 00 00 00 00 8d 07 00 00 dc 0c 00 00 10 0f 00 00 b6 0b 00 00 | S............................... |
| 1d000 | db 12 00 00 f9 0a 00 00 e8 0f 00 00 00 00 00 00 79 00 00 00 ea 03 00 00 00 00 00 00 00 00 00 00 | ................y............... |
| 1d020 | f0 08 00 00 f3 00 00 00 43 16 00 00 37 16 00 00 5f 15 00 00 80 09 00 00 ee 0c 00 00 b8 0b 00 00 | ........C...7..._............... |
| 1d040 | 00 00 00 00 b3 0b 00 00 00 00 00 00 40 13 00 00 00 00 00 00 10 0e 00 00 00 00 00 00 ca 0d 00 00 | ............@................... |
| 1d060 | ec 01 00 00 00 00 00 00 93 0b 00 00 00 00 00 00 db 13 00 00 cc 07 00 00 63 08 00 00 00 00 00 00 | ........................c....... |
| 1d080 | 0d 04 00 00 32 0a 00 00 a6 14 00 00 70 16 00 00 00 00 00 00 b7 01 00 00 00 00 00 00 78 11 00 00 | ....2.......p...............x... |
| 1d0a0 | 25 0f 00 00 4e 04 00 00 f4 0c 00 00 a0 0c 00 00 00 00 00 00 e3 0e 00 00 00 00 00 00 d8 0f 00 00 | %...N........................... |
| 1d0c0 | 59 06 00 00 00 00 00 00 00 00 00 00 7a 06 00 00 70 0b 00 00 00 00 00 00 9e 10 00 00 e9 08 00 00 | Y...........z...p............... |
| 1d0e0 | 42 02 00 00 00 00 00 00 00 00 00 00 fc 0e 00 00 00 00 00 00 44 0f 00 00 83 04 00 00 00 00 00 00 | B...................D........... |
| 1d100 | 3b 06 00 00 30 0b 00 00 00 00 00 00 4a 0e 00 00 15 0c 00 00 00 00 00 00 5d 00 00 00 c8 0b 00 00 | ;...0.......J...........]....... |
| 1d120 | de 0b 00 00 9a 0a 00 00 00 00 00 00 dd 06 00 00 e7 14 00 00 6c 11 00 00 00 00 00 00 7a 0c 00 00 | ....................l.......z... |
| 1d140 | 81 09 00 00 a5 08 00 00 a5 12 00 00 b6 15 00 00 56 0d 00 00 00 00 00 00 6b 14 00 00 00 00 00 00 | ................V.......k....... |
| 1d160 | f3 04 00 00 09 04 00 00 a5 0c 00 00 78 0a 00 00 ab 09 00 00 91 09 00 00 81 0d 00 00 9c 13 00 00 | ............x................... |
| 1d180 | 62 08 00 00 87 0c 00 00 df 03 00 00 e7 13 00 00 12 14 00 00 00 00 00 00 c9 15 00 00 de 10 00 00 | b............................... |
| 1d1a0 | 23 10 00 00 00 00 00 00 7c 15 00 00 b1 14 00 00 1b 14 00 00 91 12 00 00 03 13 00 00 a1 0b 00 00 | #.......|....................... |
| 1d1c0 | 00 0f 00 00 64 14 00 00 6d 0d 00 00 40 06 00 00 7b 11 00 00 dc 13 00 00 ec 09 00 00 21 15 00 00 | ....d...m...@...{...........!... |
| 1d1e0 | b2 03 00 00 d9 06 00 00 4b 08 00 00 00 00 00 00 00 00 00 00 00 00 00 00 de 12 00 00 c7 12 00 00 | ........K....................... |
| 1d200 | cf 01 00 00 fc 0f 00 00 06 0f 00 00 29 10 00 00 5a 00 00 00 89 00 00 00 a6 0c 00 00 00 00 00 00 | ............)...Z............... |
| 1d220 | df 10 00 00 65 04 00 00 3b 16 00 00 77 05 00 00 d5 0a 00 00 67 0f 00 00 9a 00 00 00 91 0a 00 00 | ....e...;...w.......g........... |
| 1d240 | 2f 00 00 00 00 00 00 00 d2 04 00 00 a2 0f 00 00 a6 0e 00 00 00 00 00 00 63 0b 00 00 fe 16 00 00 | /.......................c....... |
| 1d260 | d0 0a 00 00 1b 10 00 00 55 11 00 00 ef 04 00 00 00 00 00 00 74 07 00 00 00 00 00 00 d7 14 00 00 | ........U...........t........... |
| 1d280 | 6d 04 00 00 b8 09 00 00 a5 07 00 00 76 11 00 00 fa 09 00 00 7a 03 00 00 e2 0c 00 00 22 04 00 00 | m...........v.......z......."... |
| 1d2a0 | 2c 12 00 00 06 0e 00 00 cc 13 00 00 39 08 00 00 1f 06 00 00 38 16 00 00 4a 09 00 00 cc 16 00 00 | ,...........9.......8...J....... |
| 1d2c0 | d4 00 00 00 63 12 00 00 cc 00 00 00 2b 01 00 00 a4 15 00 00 00 00 00 00 00 00 00 00 47 09 00 00 | ....c.......+...............G... |
| 1d2e0 | 4c 13 00 00 3e 0d 00 00 eb 05 00 00 00 00 00 00 36 16 00 00 f0 0e 00 00 49 05 00 00 00 00 00 00 | L...>...........6.......I....... |
| 1d300 | 9a 11 00 00 9b 14 00 00 d9 02 00 00 53 04 00 00 00 00 00 00 2c 07 00 00 0e 02 00 00 00 00 00 00 | ............S.......,........... |
| 1d320 | 00 00 00 00 2b 05 00 00 17 15 00 00 0b 0a 00 00 00 00 00 00 15 0e 00 00 cf 03 00 00 00 00 00 00 | ....+........................... |
| 1d340 | 00 00 00 00 c2 02 00 00 f6 04 00 00 be 03 00 00 d3 13 00 00 d6 14 00 00 1e 03 00 00 00 00 00 00 | ................................ |
| 1d360 | dc 03 00 00 30 02 00 00 00 00 00 00 00 00 00 00 8f 14 00 00 94 04 00 00 c3 07 00 00 00 00 00 00 | ....0........................... |
| 1d380 | 00 00 00 00 dd 14 00 00 1f 0f 00 00 8e 16 00 00 5e 0f 00 00 00 00 00 00 71 02 00 00 cb 0d 00 00 | ................^.......q....... |
| 1d3a0 | 03 01 00 00 00 00 00 00 2f 09 00 00 5d 10 00 00 e2 14 00 00 f8 0b 00 00 54 12 00 00 8e 13 00 00 | ......../...]...........T....... |
| 1d3c0 | f6 15 00 00 08 04 00 00 30 12 00 00 bd 15 00 00 00 00 00 00 40 14 00 00 86 0c 00 00 d9 0a 00 00 | ........0...........@........... |
| 1d3e0 | b3 09 00 00 3f 03 00 00 00 00 00 00 2c 0c 00 00 27 13 00 00 5b 04 00 00 f9 09 00 00 b4 12 00 00 | ....?.......,...'...[........... |
| 1d400 | 43 10 00 00 d2 08 00 00 00 00 00 00 00 00 00 00 72 0a 00 00 4a 16 00 00 32 12 00 00 c0 01 00 00 | C...............r...J...2....... |
| 1d420 | 00 00 00 00 1f 14 00 00 00 00 00 00 00 00 00 00 35 13 00 00 00 00 00 00 d1 09 00 00 00 00 00 00 | ................5............... |
| 1d440 | 26 0b 00 00 18 15 00 00 79 09 00 00 88 07 00 00 00 00 00 00 75 04 00 00 ed 0f 00 00 cf 11 00 00 | &.......y...........u........... |
| 1d460 | fd 0d 00 00 00 00 00 00 38 02 00 00 cc 08 00 00 d7 13 00 00 07 0a 00 00 01 0f 00 00 00 00 00 00 | ........8....................... |
| 1d480 | fa 15 00 00 6a 00 00 00 00 00 00 00 00 00 00 00 d5 09 00 00 00 00 00 00 00 00 00 00 fa 0a 00 00 | ....j........................... |
| 1d4a0 | 40 0e 00 00 ae 03 00 00 64 06 00 00 fc 0a 00 00 77 11 00 00 bf 13 00 00 39 03 00 00 63 16 00 00 | @.......d.......w.......9...c... |
| 1d4c0 | d1 12 00 00 57 02 00 00 00 00 00 00 00 00 00 00 61 02 00 00 00 00 00 00 5c 08 00 00 14 0a 00 00 | ....W...........a.......\....... |
| 1d4e0 | 00 00 00 00 2a 09 00 00 f5 12 00 00 b8 16 00 00 00 00 00 00 2a 16 00 00 72 10 00 00 0a 14 00 00 | ....*...............*...r....... |
| 1d500 | ba 15 00 00 27 0c 00 00 31 0f 00 00 cb 0f 00 00 37 14 00 00 03 06 00 00 c2 01 00 00 f1 0a 00 00 | ....'...1.......7............... |
| 1d520 | 36 13 00 00 ab 03 00 00 d4 0a 00 00 bc 0c 00 00 35 0f 00 00 80 03 00 00 03 02 00 00 00 00 00 00 | 6...............5............... |
| 1d540 | f5 07 00 00 26 15 00 00 00 00 00 00 8a 0c 00 00 ec 0c 00 00 dd 07 00 00 00 00 00 00 4e 10 00 00 | ....&.......................N... |
| 1d560 | 8b 0a 00 00 0d 0a 00 00 b5 11 00 00 75 07 00 00 00 00 00 00 82 15 00 00 37 06 00 00 22 10 00 00 | ............u...........7..."... |
| 1d580 | 42 11 00 00 cb 08 00 00 00 00 00 00 00 00 00 00 fb 00 00 00 60 05 00 00 00 00 00 00 00 00 00 00 | B...................`........... |
| 1d5a0 | d9 04 00 00 27 07 00 00 9d 00 00 00 ee 0e 00 00 7d 05 00 00 00 00 00 00 c1 01 00 00 ee 05 00 00 | ....'...........}............... |
| 1d5c0 | c5 0a 00 00 6d 11 00 00 00 00 00 00 5a 0f 00 00 45 00 00 00 cc 14 00 00 04 12 00 00 f7 11 00 00 | ....m.......Z...E............... |
| 1d5e0 | 29 13 00 00 52 07 00 00 b2 08 00 00 73 00 00 00 92 03 00 00 47 03 00 00 0b 0c 00 00 0d 02 00 00 | )...R.......s.......G........... |
| 1d600 | 9e 08 00 00 e8 14 00 00 6c 13 00 00 e5 06 00 00 27 12 00 00 f0 03 00 00 00 00 00 00 5d 04 00 00 | ........l.......'...........]... |
| 1d620 | 88 10 00 00 65 00 00 00 18 0f 00 00 de 11 00 00 74 03 00 00 66 13 00 00 00 00 00 00 77 12 00 00 | ....e...........t...f.......w... |
| 1d640 | 12 01 00 00 51 09 00 00 56 0e 00 00 00 00 00 00 cf 0a 00 00 ca 0b 00 00 00 00 00 00 03 15 00 00 | ....Q...V....................... |
| 1d660 | 00 00 00 00 a9 08 00 00 00 00 00 00 fb 09 00 00 4c 09 00 00 c1 02 00 00 00 00 00 00 00 00 00 00 | ................L............... |
| 1d680 | a1 03 00 00 db 10 00 00 a7 0f 00 00 85 0f 00 00 bc 12 00 00 2d 15 00 00 cd 01 00 00 02 14 00 00 | ....................-........... |
| 1d6a0 | 85 16 00 00 f1 0e 00 00 8e 06 00 00 c0 14 00 00 00 00 00 00 a6 01 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 1d6c0 | dc 0a 00 00 00 00 00 00 c9 02 00 00 00 00 00 00 00 00 00 00 05 08 00 00 69 04 00 00 00 00 00 00 | ........................i....... |
| 1d6e0 | 00 00 00 00 00 00 00 00 00 00 00 00 5d 08 00 00 99 14 00 00 00 00 00 00 85 10 00 00 00 00 00 00 | ............]................... |
| 1d700 | 00 00 00 00 6f 09 00 00 8f 08 00 00 00 00 00 00 52 06 00 00 0d 00 00 00 8e 0f 00 00 71 14 00 00 | ....o...........R...........q... |
| 1d720 | a1 09 00 00 de 00 00 00 6b 13 00 00 63 06 00 00 a5 0e 00 00 c2 06 00 00 3a 11 00 00 d7 09 00 00 | ........k...c...........:....... |
| 1d740 | 00 00 00 00 66 09 00 00 f9 05 00 00 03 0a 00 00 00 00 00 00 2c 02 00 00 c5 12 00 00 00 08 00 00 | ....f...............,........... |
| 1d760 | 25 09 00 00 00 00 00 00 7e 00 00 00 00 00 00 00 00 00 00 00 49 09 00 00 00 00 00 00 00 00 00 00 | %.......~...........I........... |
| 1d780 | 6a 0d 00 00 ca 13 00 00 94 09 00 00 df 01 00 00 48 09 00 00 dc 08 00 00 00 00 00 00 a4 07 00 00 | j...............H............... |
| 1d7a0 | 00 00 00 00 ba 0e 00 00 94 10 00 00 58 0e 00 00 45 0c 00 00 fe 0a 00 00 00 00 00 00 00 00 00 00 | ............X...E............... |
| 1d7c0 | fd 0c 00 00 00 00 00 00 93 09 00 00 09 11 00 00 7e 11 00 00 00 00 00 00 00 00 00 00 89 13 00 00 | ................~............... |
| 1d7e0 | c6 04 00 00 85 0c 00 00 c8 12 00 00 b3 08 00 00 53 03 00 00 9e 0c 00 00 c9 16 00 00 7e 0e 00 00 | ................S...........~... |
| 1d800 | 4d 02 00 00 e9 06 00 00 00 00 00 00 1b 0d 00 00 00 00 00 00 0b 15 00 00 43 14 00 00 3c 0a 00 00 | M.......................C...<... |
| 1d820 | c4 0e 00 00 00 00 00 00 96 0e 00 00 00 00 00 00 30 08 00 00 22 0d 00 00 7d 09 00 00 c2 0f 00 00 | ................0..."...}....... |
| 1d840 | 9b 10 00 00 00 00 00 00 e0 0b 00 00 69 0a 00 00 c2 15 00 00 00 0d 00 00 00 00 00 00 35 10 00 00 | ............i...............5... |
| 1d860 | d1 0c 00 00 00 00 00 00 6d 0f 00 00 e5 0f 00 00 18 03 00 00 9f 0e 00 00 00 00 00 00 00 00 00 00 | ........m....................... |
| 1d880 | da 06 00 00 00 00 00 00 dd 0c 00 00 99 02 00 00 07 0f 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 1d8a0 | 00 00 00 00 af 15 00 00 00 00 00 00 b9 0e 00 00 42 0b 00 00 c6 0c 00 00 6c 16 00 00 58 00 00 00 | ................B.......l...X... |
| 1d8c0 | ca 03 00 00 45 12 00 00 00 00 00 00 f2 13 00 00 00 00 00 00 34 11 00 00 00 00 00 00 9e 04 00 00 | ....E...............4........... |
| 1d8e0 | 00 00 00 00 8e 09 00 00 00 00 00 00 7c 10 00 00 40 05 00 00 c9 0c 00 00 6a 07 00 00 46 13 00 00 | ............|...@.......j...F... |
| 1d900 | d3 09 00 00 b5 02 00 00 00 00 00 00 04 08 00 00 65 05 00 00 00 00 00 00 00 00 00 00 12 07 00 00 | ................e............... |
| 1d920 | ce 0d 00 00 f4 11 00 00 3a 0f 00 00 60 10 00 00 05 11 00 00 55 0c 00 00 43 05 00 00 00 00 00 00 | ........:...`.......U...C....... |
| 1d940 | 00 00 00 00 3f 12 00 00 00 00 00 00 f3 01 00 00 0f 04 00 00 00 00 00 00 89 10 00 00 b8 15 00 00 | ....?........................... |
| 1d960 | fc 06 00 00 bd 10 00 00 f6 13 00 00 00 00 00 00 11 07 00 00 30 10 00 00 5b 15 00 00 be 08 00 00 | ....................0...[....... |
| 1d980 | 4e 0b 00 00 00 00 00 00 53 0b 00 00 5c 12 00 00 6d 02 00 00 0c 02 00 00 81 12 00 00 a2 09 00 00 | N.......S...\...m............... |
| 1d9a0 | 2f 11 00 00 8c 0e 00 00 4b 09 00 00 7e 10 00 00 b5 0b 00 00 c0 09 00 00 9a 0d 00 00 00 00 00 00 | /.......K...~................... |
| 1d9c0 | 22 15 00 00 00 00 00 00 00 00 00 00 69 02 00 00 bf 15 00 00 d2 0d 00 00 a5 16 00 00 55 04 00 00 | "...........i...............U... |
| 1d9e0 | 49 11 00 00 00 00 00 00 9c 0a 00 00 00 00 00 00 92 0e 00 00 00 00 00 00 00 00 00 00 44 03 00 00 | I...........................D... |
| 1da00 | 59 0a 00 00 00 00 00 00 8a 03 00 00 00 00 00 00 33 06 00 00 df 13 00 00 00 00 00 00 aa 07 00 00 | Y...............3............... |
| 1da20 | 00 00 00 00 b6 07 00 00 84 06 00 00 ae 08 00 00 13 14 00 00 89 08 00 00 98 00 00 00 7f 0b 00 00 | ................................ |
| 1da40 | a6 09 00 00 e8 16 00 00 80 10 00 00 00 00 00 00 00 00 00 00 93 08 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 1da60 | ce 04 00 00 dc 15 00 00 77 07 00 00 e6 08 00 00 7b 04 00 00 1e 06 00 00 88 02 00 00 8a 08 00 00 | ........w.......{............... |
| 1da80 | e7 0d 00 00 74 0d 00 00 8c 06 00 00 fa 14 00 00 c9 07 00 00 27 0a 00 00 62 12 00 00 0d 08 00 00 | ....t...............'...b....... |
| 1daa0 | 0f 07 00 00 e5 04 00 00 8f 02 00 00 ad 06 00 00 03 0f 00 00 00 00 00 00 3b 04 00 00 b6 10 00 00 | ........................;....... |
| 1dac0 | 00 00 00 00 95 02 00 00 00 00 00 00 15 01 00 00 26 02 00 00 80 0b 00 00 87 14 00 00 84 0f 00 00 | ................&............... |
| 1dae0 | 26 06 00 00 00 00 00 00 29 15 00 00 70 0d 00 00 00 00 00 00 82 01 00 00 0e 11 00 00 2f 16 00 00 | &.......)...p.............../... |
| 1db00 | 53 02 00 00 00 00 00 00 2d 09 00 00 a7 0e 00 00 f5 0e 00 00 f2 0f 00 00 00 00 00 00 05 14 00 00 | S.......-....................... |
| 1db20 | 49 08 00 00 6b 0f 00 00 67 03 00 00 00 00 00 00 bd 08 00 00 7f 00 00 00 ea 07 00 00 2b 04 00 00 | I...k...g...................+... |
| 1db40 | 00 00 00 00 ca 08 00 00 62 11 00 00 dd 09 00 00 55 0d 00 00 9f 01 00 00 00 00 00 00 c9 06 00 00 | ........b.......U............... |
| 1db60 | 27 05 00 00 bd 01 00 00 30 13 00 00 87 07 00 00 00 00 00 00 47 0c 00 00 c3 09 00 00 96 02 00 00 | '.......0...........G........... |
| 1db80 | 23 15 00 00 9e 12 00 00 2f 03 00 00 00 00 00 00 c8 08 00 00 15 11 00 00 00 00 00 00 a3 0b 00 00 | #......./....................... |
| 1dba0 | 38 05 00 00 92 12 00 00 94 0b 00 00 1c 0e 00 00 ee 0f 00 00 d4 09 00 00 f4 0d 00 00 66 11 00 00 | 8...........................f... |
| 1dbc0 | 50 05 00 00 79 03 00 00 c2 00 00 00 c8 11 00 00 f9 13 00 00 4b 0f 00 00 10 04 00 00 00 00 00 00 | P...y...............K........... |
| 1dbe0 | 79 02 00 00 13 0f 00 00 eb 0b 00 00 1e 04 00 00 6d 0e 00 00 f2 0e 00 00 af 01 00 00 fe 07 00 00 | y...............m............... |
| 1dc00 | 9a 10 00 00 b9 0a 00 00 aa 16 00 00 bf 0c 00 00 cf 0c 00 00 00 00 00 00 a3 0d 00 00 dd 0d 00 00 | ................................ |
| 1dc20 | 2d 0c 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 7f 02 00 00 17 0d 00 00 88 08 00 00 | -............................... |
| 1dc40 | 31 12 00 00 22 0e 00 00 4a 06 00 00 75 09 00 00 ba 06 00 00 02 15 00 00 43 0c 00 00 00 00 00 00 | 1..."...J...u...........C....... |
| 1dc60 | 05 01 00 00 1b 07 00 00 ee 03 00 00 1e 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 6f 12 00 00 | ............................o... |
| 1dc80 | 00 00 00 00 ff 00 00 00 9a 16 00 00 58 0f 00 00 cc 0d 00 00 a9 0b 00 00 3a 09 00 00 e4 16 00 00 | ............X...........:....... |
| 1dca0 | 00 00 00 00 92 10 00 00 00 00 00 00 43 00 00 00 44 0d 00 00 af 08 00 00 0e 15 00 00 14 10 00 00 | ............C...D............... |
| 1dcc0 | 00 00 00 00 00 00 00 00 a8 03 00 00 61 0e 00 00 94 15 00 00 3a 12 00 00 f8 13 00 00 00 00 00 00 | ............a.......:........... |
| 1dce0 | 0e 07 00 00 2a 11 00 00 38 06 00 00 cb 06 00 00 57 07 00 00 74 00 00 00 99 03 00 00 00 00 00 00 | ....*...8.......W...t........... |
| 1dd00 | a5 14 00 00 bf 02 00 00 00 00 00 00 00 00 00 00 90 01 00 00 00 0e 00 00 58 08 00 00 31 0e 00 00 | ........................X...1... |
| 1dd20 | 71 08 00 00 66 12 00 00 3a 0a 00 00 90 07 00 00 44 0c 00 00 00 00 00 00 ce 07 00 00 26 12 00 00 | q...f...:.......D...........&... |
| 1dd40 | e6 0b 00 00 8f 12 00 00 bc 0b 00 00 00 00 00 00 80 08 00 00 32 0e 00 00 03 10 00 00 4e 01 00 00 | ....................2.......N... |
| 1dd60 | c6 16 00 00 00 00 00 00 00 03 00 00 2d 0d 00 00 3c 16 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ............-...<............... |
| 1dd80 | d1 15 00 00 1c 0c 00 00 67 04 00 00 7c 0d 00 00 00 00 00 00 00 00 00 00 00 00 00 00 7a 0f 00 00 | ........g...|...............z... |
| 1dda0 | 23 04 00 00 59 0f 00 00 00 00 00 00 82 04 00 00 87 00 00 00 00 00 00 00 fc 13 00 00 22 05 00 00 | #...Y......................."... |
| 1ddc0 | 41 04 00 00 28 07 00 00 24 0b 00 00 37 07 00 00 81 0e 00 00 52 11 00 00 fd 16 00 00 c3 08 00 00 | A...(...$...7.......R........... |
| 1dde0 | 31 08 00 00 6c 07 00 00 9a 12 00 00 00 00 00 00 33 15 00 00 bb 09 00 00 1a 08 00 00 76 05 00 00 | 1...l...........3...........v... |
| 1de00 | 5c 07 00 00 00 00 00 00 52 0f 00 00 bf 0e 00 00 fd 03 00 00 48 11 00 00 01 0b 00 00 64 0f 00 00 | \.......R...........H.......d... |
| 1de20 | bb 03 00 00 65 02 00 00 a3 02 00 00 00 00 00 00 fe 08 00 00 24 06 00 00 00 00 00 00 4a 0a 00 00 | ....e...............$.......J... |
| 1de40 | 56 14 00 00 c6 10 00 00 00 00 00 00 36 09 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | V...........6................... |
| 1de60 | 0f 0b 00 00 42 0c 00 00 ff 04 00 00 00 00 00 00 00 00 00 00 80 0a 00 00 d3 02 00 00 7b 05 00 00 | ....B.......................{... |
| 1de80 | bb 0c 00 00 00 00 00 00 78 05 00 00 16 01 00 00 e6 16 00 00 eb 0a 00 00 61 10 00 00 51 07 00 00 | ........x...............a...Q... |
| 1dea0 | 00 00 00 00 e6 0f 00 00 ab 13 00 00 29 12 00 00 78 16 00 00 a2 00 00 00 00 00 00 00 2c 15 00 00 | ............)...x...........,... |
| 1dec0 | 52 0c 00 00 0b 02 00 00 4a 02 00 00 17 01 00 00 e7 08 00 00 2e 0d 00 00 6a 06 00 00 89 01 00 00 | R.......J...............j....... |
| 1dee0 | 5f 04 00 00 00 00 00 00 a1 02 00 00 40 10 00 00 55 16 00 00 78 01 00 00 00 00 00 00 00 00 00 00 | _...........@...U...x........... |
| 1df00 | 00 00 00 00 00 00 00 00 d5 0f 00 00 00 00 00 00 1c 03 00 00 13 15 00 00 00 00 00 00 03 17 00 00 | ................................ |
| 1df20 | 96 0d 00 00 33 0d 00 00 68 0b 00 00 be 01 00 00 0f 00 00 00 e5 0a 00 00 00 00 00 00 6b 0a 00 00 | ....3...h...................k... |
| 1df40 | 00 00 00 00 00 00 00 00 c9 08 00 00 91 06 00 00 e1 07 00 00 00 00 00 00 2a 00 00 00 a4 0f 00 00 | ........................*....... |
| 1df60 | 8b 0e 00 00 e9 0c 00 00 9a 0e 00 00 00 00 00 00 32 0d 00 00 f2 0b 00 00 17 0e 00 00 a9 03 00 00 | ................2............... |
| 1df80 | ff 08 00 00 32 07 00 00 00 00 00 00 3a 04 00 00 00 00 00 00 7c 11 00 00 91 03 00 00 be 09 00 00 | ....2.......:.......|........... |
| 1dfa0 | 9a 08 00 00 00 00 00 00 4b 07 00 00 fe 02 00 00 00 00 00 00 fb 0e 00 00 7f 13 00 00 8b 09 00 00 | ........K....................... |
| 1dfc0 | 64 10 00 00 36 03 00 00 dc 04 00 00 9f 06 00 00 07 14 00 00 00 00 00 00 e2 04 00 00 00 00 00 00 | d...6........................... |
| 1dfe0 | 68 09 00 00 ae 02 00 00 00 00 00 00 00 00 00 00 59 11 00 00 b4 09 00 00 00 00 00 00 e9 00 00 00 | h...............Y............... |
| 1e000 | cb 0c 00 00 d8 16 00 00 bc 11 00 00 18 0c 00 00 fb 0c 00 00 ad 14 00 00 00 00 00 00 30 16 00 00 | ............................0... |
| 1e020 | 0c 05 00 00 f2 0c 00 00 f6 10 00 00 ca 0f 00 00 50 15 00 00 8b 15 00 00 00 00 00 00 00 06 00 00 | ................P............... |
| 1e040 | 52 03 00 00 b3 0e 00 00 00 00 00 00 31 14 00 00 d4 0b 00 00 00 00 00 00 6d 14 00 00 f2 09 00 00 | R...........1...........m....... |
| 1e060 | 47 06 00 00 96 14 00 00 e0 11 00 00 00 00 00 00 18 16 00 00 00 00 00 00 f4 13 00 00 ff 09 00 00 | G............................... |
| 1e080 | a4 14 00 00 e5 02 00 00 00 00 00 00 f8 12 00 00 00 00 00 00 24 00 00 00 1f 09 00 00 b0 07 00 00 | ....................$........... |
| 1e0a0 | 48 0b 00 00 08 0e 00 00 bc 14 00 00 0f 06 00 00 00 00 00 00 00 00 00 00 ee 10 00 00 29 02 00 00 | H...........................)... |
| 1e0c0 | b0 0d 00 00 bd 0c 00 00 c7 13 00 00 10 10 00 00 af 10 00 00 30 14 00 00 00 00 00 00 00 00 00 00 | ....................0........... |
| 1e0e0 | 4c 07 00 00 00 00 00 00 31 16 00 00 8e 0b 00 00 3b 15 00 00 00 00 00 00 5d 02 00 00 ca 14 00 00 | L.......1.......;.......]....... |
| 1e100 | 15 16 00 00 00 00 00 00 00 00 00 00 3b 09 00 00 14 0d 00 00 ec 0b 00 00 ac 10 00 00 00 00 00 00 | ............;................... |
| 1e120 | 00 00 00 00 8f 00 00 00 1e 14 00 00 00 00 00 00 88 01 00 00 61 03 00 00 bf 0d 00 00 b1 02 00 00 | ....................a........... |
| 1e140 | af 0f 00 00 77 0a 00 00 2d 11 00 00 7f 0d 00 00 2f 0d 00 00 b7 0f 00 00 c1 05 00 00 4a 00 00 00 | ....w...-......./...........J... |
| 1e160 | c5 08 00 00 db 14 00 00 a3 10 00 00 76 09 00 00 07 11 00 00 a1 04 00 00 f5 09 00 00 32 15 00 00 | ............v...............2... |
| 1e180 | 37 10 00 00 9c 0b 00 00 91 02 00 00 13 06 00 00 73 0d 00 00 1c 14 00 00 d5 15 00 00 8e 00 00 00 | 7...............s............... |
| 1e1a0 | 5f 09 00 00 20 0b 00 00 44 05 00 00 7b 08 00 00 d0 0b 00 00 b8 12 00 00 00 00 00 00 21 04 00 00 | _.......D...{...............!... |
| 1e1c0 | 9e 0a 00 00 71 05 00 00 00 00 00 00 2c 01 00 00 c1 13 00 00 23 00 00 00 67 13 00 00 8e 04 00 00 | ....q.......,.......#...g....... |
| 1e1e0 | af 02 00 00 44 15 00 00 e7 0a 00 00 9d 13 00 00 00 00 00 00 00 00 00 00 00 00 00 00 33 12 00 00 | ....D.......................3... |
| 1e200 | f1 00 00 00 fa 11 00 00 1a 0c 00 00 2e 13 00 00 dc 01 00 00 00 00 00 00 66 0a 00 00 57 11 00 00 | ........................f...W... |
| 1e220 | 39 13 00 00 97 02 00 00 56 12 00 00 71 16 00 00 d7 07 00 00 00 00 00 00 f9 0d 00 00 4a 0f 00 00 | 9.......V...q...............J... |
| 1e240 | 88 11 00 00 a0 02 00 00 26 04 00 00 36 0f 00 00 af 14 00 00 00 00 00 00 13 03 00 00 91 08 00 00 | ........&...6................... |
| 1e260 | 3c 09 00 00 2b 10 00 00 00 00 00 00 00 00 00 00 8e 01 00 00 e3 03 00 00 c5 04 00 00 00 00 00 00 | <...+........................... |
| 1e280 | 29 01 00 00 e3 0d 00 00 8b 16 00 00 4d 11 00 00 99 0a 00 00 8b 11 00 00 eb 07 00 00 ad 02 00 00 | )...........M................... |
| 1e2a0 | 97 00 00 00 c6 0d 00 00 3a 0e 00 00 95 01 00 00 35 0c 00 00 3d 04 00 00 1b 00 00 00 1a 16 00 00 | ........:.......5...=........... |
| 1e2c0 | 50 09 00 00 5d 0c 00 00 00 00 00 00 fa 08 00 00 4e 0e 00 00 ce 10 00 00 90 14 00 00 78 12 00 00 | P...]...........N...........x... |
| 1e2e0 | 36 05 00 00 92 00 00 00 7e 09 00 00 0c 16 00 00 31 00 00 00 00 00 00 00 93 02 00 00 c7 00 00 00 | 6.......~.......1............... |
| 1e300 | 05 03 00 00 c1 09 00 00 9a 0f 00 00 00 00 00 00 00 00 00 00 21 05 00 00 74 0c 00 00 d8 02 00 00 | ....................!...t....... |
| 1e320 | 00 00 00 00 7f 0c 00 00 a3 01 00 00 a3 06 00 00 00 00 00 00 4b 02 00 00 53 00 00 00 97 15 00 00 | ....................K...S....... |
| 1e340 | 34 16 00 00 7a 16 00 00 17 04 00 00 5e 0e 00 00 47 07 00 00 00 00 00 00 10 08 00 00 00 00 00 00 | 4...z.......^...G............... |
| 1e360 | 66 16 00 00 00 00 00 00 ed 03 00 00 d1 03 00 00 81 08 00 00 0d 12 00 00 96 11 00 00 9a 15 00 00 | f............................... |
| 1e380 | f6 09 00 00 00 00 00 00 00 00 00 00 97 06 00 00 00 00 00 00 42 15 00 00 15 06 00 00 59 12 00 00 | ....................B.......Y... |
| 1e3a0 | 70 13 00 00 a7 0b 00 00 56 11 00 00 98 03 00 00 de 15 00 00 56 08 00 00 5f 03 00 00 64 11 00 00 | p.......V...........V..._...d... |
| 1e3c0 | 00 00 00 00 00 00 00 00 b7 06 00 00 e5 13 00 00 76 10 00 00 8e 07 00 00 a6 02 00 00 4c 0b 00 00 | ................v...........L... |
| 1e3e0 | f3 0b 00 00 60 0c 00 00 6b 0d 00 00 77 16 00 00 26 10 00 00 6a 0a 00 00 00 00 00 00 00 00 00 00 | ....`...k...w...&...j........... |
| 1e400 | c9 0b 00 00 00 00 00 00 00 00 00 00 96 13 00 00 ef 14 00 00 e9 0e 00 00 86 10 00 00 a4 0d 00 00 | ................................ |
| 1e420 | 9b 09 00 00 38 0c 00 00 e1 09 00 00 f7 16 00 00 03 11 00 00 65 0a 00 00 bd 02 00 00 00 00 00 00 | ....8...............e........... |
| 1e440 | 00 00 00 00 09 01 00 00 3b 03 00 00 96 16 00 00 00 00 00 00 a0 09 00 00 97 16 00 00 dc 0f 00 00 | ........;....................... |
| 1e460 | 00 00 00 00 00 00 00 00 00 00 00 00 95 00 00 00 55 15 00 00 58 01 00 00 55 0e 00 00 51 08 00 00 | ................U...X...U...Q... |
| 1e480 | d5 0d 00 00 33 16 00 00 00 00 00 00 d7 15 00 00 fa 0c 00 00 d3 00 00 00 00 00 00 00 00 00 00 00 | ....3........................... |
| 1e4a0 | 07 15 00 00 00 00 00 00 a0 0f 00 00 ec 16 00 00 4d 00 00 00 00 00 00 00 7e 0f 00 00 00 00 00 00 | ................M.......~....... |
| 1e4c0 | 00 00 00 00 00 00 00 00 e0 10 00 00 b2 0c 00 00 bb 12 00 00 a6 07 00 00 62 15 00 00 d6 0a 00 00 | ........................b....... |
| 1e4e0 | 9a 02 00 00 25 01 00 00 e6 13 00 00 00 00 00 00 4d 13 00 00 49 0b 00 00 ce 09 00 00 00 00 00 00 | ....%...........M...I........... |
| 1e500 | 00 00 00 00 00 00 00 00 d1 11 00 00 00 00 00 00 0e 13 00 00 00 00 00 00 00 00 00 00 10 0b 00 00 | ................................ |
| 1e520 | d2 14 00 00 c4 10 00 00 00 00 00 00 ea 0a 00 00 d7 02 00 00 61 05 00 00 1f 08 00 00 d5 07 00 00 | ....................a........... |
| 1e540 | ef 15 00 00 0a 16 00 00 5b 02 00 00 00 00 00 00 7b 0e 00 00 23 16 00 00 4b 0e 00 00 ae 00 00 00 | ........[.......{...#...K....... |
| 1e560 | 00 00 00 00 7e 04 00 00 4f 0f 00 00 be 0b 00 00 41 06 00 00 5a 13 00 00 70 10 00 00 e6 03 00 00 | ....~...O.......A...Z...p....... |
| 1e580 | 43 13 00 00 45 07 00 00 47 13 00 00 ac 14 00 00 e6 0a 00 00 ec 05 00 00 00 00 00 00 c4 05 00 00 | C...E...G....................... |
| 1e5a0 | 00 00 00 00 8b 04 00 00 00 00 00 00 84 10 00 00 f4 09 00 00 1f 07 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 1e5c0 | dc 09 00 00 00 00 00 00 00 00 00 00 b6 0c 00 00 b8 0a 00 00 00 00 00 00 00 00 00 00 ef 0b 00 00 | ................................ |
| 1e5e0 | c5 11 00 00 09 0c 00 00 0f 16 00 00 23 0a 00 00 b3 04 00 00 09 08 00 00 79 0e 00 00 b0 05 00 00 | ............#...........y....... |
| 1e600 | 00 00 00 00 6a 01 00 00 75 16 00 00 08 16 00 00 00 00 00 00 3c 02 00 00 ce 14 00 00 00 00 00 00 | ....j...u...........<........... |
| 1e620 | 31 0c 00 00 dd 03 00 00 fc 12 00 00 cb 02 00 00 21 01 00 00 00 00 00 00 63 0f 00 00 b2 13 00 00 | 1...............!.......c....... |
| 1e640 | 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 1e660 | f1 12 00 00 4d 06 00 00 73 04 00 00 af 13 00 00 00 00 00 00 11 0e 00 00 47 02 00 00 45 05 00 00 | ....M...s...............G...E... |
| 1e680 | ae 13 00 00 5d 11 00 00 65 03 00 00 00 00 00 00 00 00 00 00 00 00 00 00 f9 07 00 00 f7 13 00 00 | ....]...e....................... |
| 1e6a0 | 22 0c 00 00 b4 15 00 00 26 16 00 00 ae 12 00 00 de 07 00 00 78 0d 00 00 c4 04 00 00 15 09 00 00 | ".......&...........x........... |
| 1e6c0 | 35 07 00 00 df 16 00 00 62 0e 00 00 00 00 00 00 d2 10 00 00 52 0b 00 00 5c 01 00 00 2a 0f 00 00 | 5.......b...........R...\...*... |
| 1e6e0 | 58 16 00 00 89 02 00 00 ec 11 00 00 8f 15 00 00 a3 09 00 00 00 00 00 00 00 00 00 00 b1 04 00 00 | X............................... |
| 1e700 | a5 0d 00 00 b4 0a 00 00 00 00 00 00 00 00 00 00 b5 14 00 00 99 01 00 00 98 0c 00 00 a9 0a 00 00 | ................................ |
| 1e720 | be 0f 00 00 d1 14 00 00 94 07 00 00 6f 08 00 00 e4 04 00 00 27 14 00 00 2a 0d 00 00 c5 10 00 00 | ............o.......'...*....... |
| 1e740 | 45 04 00 00 00 00 00 00 35 05 00 00 5d 07 00 00 22 01 00 00 00 00 00 00 67 0d 00 00 d1 0f 00 00 | E.......5...]...".......g....... |
| 1e760 | 69 16 00 00 00 00 00 00 f7 0d 00 00 00 00 00 00 93 14 00 00 73 16 00 00 00 00 00 00 17 0b 00 00 | i...................s........... |
| 1e780 | 3d 06 00 00 99 0e 00 00 30 04 00 00 00 00 00 00 15 13 00 00 00 00 00 00 64 15 00 00 73 0c 00 00 | =.......0...............d...s... |
| 1e7a0 | ec 02 00 00 00 00 00 00 db 08 00 00 c1 03 00 00 87 16 00 00 00 00 00 00 7e 15 00 00 83 15 00 00 | ........................~....... |
| 1e7c0 | bc 08 00 00 85 06 00 00 00 00 00 00 3c 05 00 00 00 00 00 00 00 00 00 00 15 04 00 00 fe 15 00 00 | ............<................... |
| 1e7e0 | 00 00 00 00 4b 0b 00 00 b9 10 00 00 96 10 00 00 b6 11 00 00 a7 04 00 00 b5 0d 00 00 df 0a 00 00 | ....K........................... |
| 1e800 | 07 09 00 00 4e 0a 00 00 00 00 00 00 83 13 00 00 00 00 00 00 00 00 00 00 cd 14 00 00 b5 0c 00 00 | ....N........................... |
| 1e820 | 74 08 00 00 d8 07 00 00 33 0a 00 00 00 00 00 00 1e 0d 00 00 39 0b 00 00 00 00 00 00 00 00 00 00 | t.......3...........9........... |
| 1e840 | 00 00 00 00 00 00 00 00 f1 11 00 00 ea 00 00 00 8b 0b 00 00 00 00 00 00 96 0f 00 00 a8 01 00 00 | ................................ |
| 1e860 | 97 0a 00 00 00 00 00 00 00 00 00 00 85 13 00 00 d4 0c 00 00 f0 0d 00 00 d1 08 00 00 67 00 00 00 | ............................g... |
| 1e880 | 37 11 00 00 26 14 00 00 8d 0b 00 00 78 10 00 00 3a 07 00 00 c9 04 00 00 8b 0d 00 00 9d 10 00 00 | 7...&.......x...:............... |
| 1e8a0 | 98 0f 00 00 bb 0f 00 00 be 14 00 00 00 00 00 00 00 00 00 00 c3 04 00 00 00 00 00 00 cf 12 00 00 | ................................ |
| 1e8c0 | 00 00 00 00 c5 06 00 00 f3 09 00 00 fa 10 00 00 00 00 00 00 00 00 00 00 12 0d 00 00 c1 07 00 00 | ................................ |
| 1e8e0 | a6 10 00 00 00 00 00 00 df 05 00 00 00 00 00 00 ee 16 00 00 81 14 00 00 b8 13 00 00 d4 05 00 00 | ................................ |
| 1e900 | 61 0c 00 00 2f 14 00 00 4e 05 00 00 85 04 00 00 00 00 00 00 92 0c 00 00 00 00 00 00 b4 0c 00 00 | a.../...N....................... |
| 1e920 | 9d 14 00 00 f6 11 00 00 36 0a 00 00 22 14 00 00 00 00 00 00 00 00 00 00 f0 09 00 00 21 10 00 00 | ........6..."...............!... |
| 1e940 | 05 00 00 00 d8 11 00 00 d8 05 00 00 d9 11 00 00 ad 04 00 00 5e 09 00 00 05 09 00 00 60 00 00 00 | ....................^.......`... |
| 1e960 | 00 00 00 00 00 01 00 00 00 00 00 00 ee 11 00 00 0e 03 00 00 00 00 00 00 00 00 00 00 77 13 00 00 | ............................w... |
| 1e980 | 00 00 00 00 00 00 00 00 00 00 00 00 98 04 00 00 00 00 00 00 8f 09 00 00 00 00 00 00 15 08 00 00 | ................................ |
| 1e9a0 | ab 08 00 00 41 03 00 00 67 14 00 00 c4 0d 00 00 00 00 00 00 f3 05 00 00 00 00 00 00 2c 03 00 00 | ....A...g...................,... |
| 1e9c0 | 33 11 00 00 a6 04 00 00 00 00 00 00 1a 10 00 00 2f 12 00 00 d3 12 00 00 c3 0b 00 00 c3 0a 00 00 | 3.............../............... |
| 1e9e0 | d2 13 00 00 90 02 00 00 4b 03 00 00 00 00 00 00 00 00 00 00 68 12 00 00 55 0a 00 00 83 0a 00 00 | ........K...........h...U....... |
| 1ea00 | 00 00 00 00 00 00 00 00 e4 0f 00 00 00 00 00 00 3f 0c 00 00 7b 00 00 00 69 10 00 00 af 0e 00 00 | ................?...{...i....... |
| 1ea20 | 64 09 00 00 a0 04 00 00 f4 05 00 00 86 08 00 00 7f 07 00 00 00 00 00 00 d4 0f 00 00 02 08 00 00 | d............................... |
| 1ea40 | 0d 06 00 00 2e 06 00 00 a9 11 00 00 b5 15 00 00 73 14 00 00 62 04 00 00 f5 16 00 00 33 07 00 00 | ................s...b.......3... |
| 1ea60 | ef 0c 00 00 89 0e 00 00 3b 0b 00 00 de 05 00 00 18 04 00 00 00 00 00 00 81 02 00 00 82 09 00 00 | ........;....................... |
| 1ea80 | 40 03 00 00 7f 14 00 00 00 00 00 00 bc 01 00 00 00 00 00 00 00 00 00 00 02 0f 00 00 00 00 00 00 | @............................... |
| 1eaa0 | 55 0b 00 00 00 00 00 00 86 16 00 00 20 09 00 00 78 08 00 00 4c 05 00 00 1a 00 00 00 23 09 00 00 | U...............x...L.......#... |
| 1eac0 | 74 05 00 00 3c 00 00 00 77 14 00 00 c1 04 00 00 1e 09 00 00 79 0f 00 00 5f 12 00 00 03 12 00 00 | t...<...w...........y..._....... |
| 1eae0 | 00 00 00 00 58 14 00 00 b2 09 00 00 83 0f 00 00 dc 02 00 00 85 01 00 00 0b 04 00 00 56 02 00 00 | ....X.......................V... |
| 1eb00 | 7a 09 00 00 ef 09 00 00 19 09 00 00 38 0b 00 00 a0 11 00 00 e3 13 00 00 64 0d 00 00 4a 03 00 00 | z...........8...........d...J... |
| 1eb20 | 00 00 00 00 e4 0a 00 00 c6 13 00 00 bb 15 00 00 e5 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 1eb40 | f6 05 00 00 00 00 00 00 00 00 00 00 b8 11 00 00 e1 11 00 00 3b 10 00 00 e4 03 00 00 00 00 00 00 | ....................;........... |
| 1eb60 | aa 0a 00 00 dd 0f 00 00 7d 16 00 00 00 00 00 00 a4 05 00 00 18 11 00 00 99 0b 00 00 42 05 00 00 | ........}...................B... |
| 1eb80 | 67 16 00 00 e5 09 00 00 8f 0f 00 00 00 00 00 00 90 05 00 00 00 00 00 00 00 21 3c 68 3a 68 3a 68 | g........................!<h:h:h |
| 1eba0 | 3a 68 3a 68 3a 68 3a 68 3a 68 2f 78 3e 3a 20 4d 61 74 63 68 20 65 76 65 72 79 74 68 69 6e 67 20 | :h:h:h:h:h/x>:.Match.everything. |
| 1ebc0 | 65 78 63 65 70 74 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 72 65 66 69 78 2e 00 21 3c 68 | except.the.specified.prefix..!<h |
| 1ebe0 | 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3e 2d 3c 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 | :h:h:h:h:h:h:h>-<h:h:h:h:h:h:h:h |
| 1ec00 | 3e 3a 20 4d 61 74 63 68 20 65 76 65 72 79 74 68 69 6e 67 20 65 78 63 65 70 74 20 74 68 65 20 73 | >:.Match.everything.except.the.s |
| 1ec20 | 70 65 63 69 66 69 65 64 20 72 61 6e 67 65 2e 00 21 3c 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a | pecified.range..!<h:h:h:h:h:h:h: |
| 1ec40 | 68 3e 3a 20 4d 61 74 63 68 20 65 76 65 72 79 74 68 69 6e 67 20 65 78 63 65 70 74 20 74 68 65 20 | h>:.Match.everything.except.the. |
| 1ec60 | 73 70 65 63 69 66 69 65 64 20 61 64 64 72 65 73 73 2e 00 21 3c 78 2e 78 2e 78 2e 78 2f 78 3e 3a | specified.address..!<x.x.x.x/x>: |
| 1ec80 | 20 4d 61 74 63 68 20 65 76 65 72 79 74 68 69 6e 67 20 65 78 63 65 70 74 20 74 68 65 20 73 70 65 | .Match.everything.except.the.spe |
| 1eca0 | 63 69 66 69 65 64 20 73 75 62 6e 65 74 2e 00 21 3c 78 2e 78 2e 78 2e 78 3e 2d 3c 78 2e 78 2e 78 | cified.subnet..!<x.x.x.x>-<x.x.x |
| 1ecc0 | 2e 78 3e 3a 20 4d 61 74 63 68 20 65 76 65 72 79 74 68 69 6e 67 20 65 78 63 65 70 74 20 74 68 65 | .x>:.Match.everything.except.the |
| 1ece0 | 20 73 70 65 63 69 66 69 65 64 20 72 61 6e 67 65 2e 00 21 3c 78 2e 78 2e 78 2e 78 3e 3a 20 4d 61 | .specified.range..!<x.x.x.x>:.Ma |
| 1ed00 | 74 63 68 20 65 76 65 72 79 74 68 69 6e 67 20 65 78 63 65 70 74 20 74 68 65 20 73 70 65 63 69 66 | tch.everything.except.the.specif |
| 1ed20 | 69 65 64 20 61 64 64 72 65 73 73 2e 00 22 4d 61 6e 61 67 65 64 20 61 64 64 72 65 73 73 20 63 6f | ied.address.."Managed.address.co |
| 1ed40 | 6e 66 69 67 75 72 61 74 69 6f 6e 22 20 66 6c 61 67 00 22 4f 74 68 65 72 20 63 6f 6e 66 69 67 75 | nfiguration".flag."Other.configu |
| 1ed60 | 72 61 74 69 6f 6e 22 20 66 6c 61 67 00 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 | ration".flag.################### |
| 1ed80 | c3 a4 23 23 23 23 23 23 23 23 23 23 23 23 23 20 46 6c 6f 77 74 61 62 6c 65 73 20 46 69 72 65 77 | ..#############.Flowtables.Firew |
| 1eda0 | 61 6c 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 23 23 23 23 23 23 23 23 23 23 23 23 23 23 | all.Configuration.############## |
| 1edc0 | 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 00 28 54 68 69 73 20 63 61 6e 20 62 65 | ###################.(This.can.be |
| 1ede0 | 20 75 73 65 66 75 6c 20 77 68 65 6e 20 61 20 63 61 6c 6c 65 64 20 73 65 72 76 69 63 65 20 68 61 | .useful.when.a.called.service.ha |
| 1ee00 | 73 20 6d 61 6e 79 20 61 6e 64 2f 6f 72 20 6f 66 74 65 6e 20 63 68 61 6e 67 69 6e 67 20 64 65 73 | s.many.and/or.often.changing.des |
| 1ee20 | 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 65 73 20 2d 20 65 2e 67 2e 20 4e 65 74 66 6c 69 | tination.addresses.-.e.g..Netfli |
| 1ee40 | 78 2e 29 00 2a 2a 28 44 65 66 61 75 6c 74 29 2a 2a 20 46 6c 6f 77 73 20 61 72 65 20 64 65 66 69 | x.).**(Default)**.Flows.are.defi |
| 1ee60 | 6e 65 64 20 62 79 20 74 68 65 20 35 2d 74 75 70 6c 65 2c 20 66 61 69 72 6e 65 73 73 20 69 73 20 | ned.by.the.5-tuple,.fairness.is. |
| 1ee80 | 61 70 70 6c 69 65 64 20 6f 76 65 72 20 73 6f 75 72 63 65 20 61 6e 64 20 64 65 73 74 69 6e 61 74 | applied.over.source.and.destinat |
| 1eea0 | 69 6f 6e 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 61 6c 73 6f 20 6f 76 65 72 20 69 6e 64 69 | ion.addresses.and.also.over.indi |
| 1eec0 | 76 69 64 75 61 6c 20 66 6c 6f 77 73 2e 00 2a 2a 31 2d 32 35 34 2a 2a 20 e2 80 93 20 69 6e 74 65 | vidual.flows..**1-254**.....inte |
| 1eee0 | 72 66 61 63 65 73 20 77 69 74 68 20 61 20 63 68 61 6e 6e 65 6c 20 6e 75 6d 62 65 72 20 69 6e 74 | rfaces.with.a.channel.number.int |
| 1ef00 | 65 72 66 65 72 65 20 77 69 74 68 20 69 6e 74 65 72 66 65 72 69 6e 67 20 69 6e 74 65 72 66 61 63 | erfere.with.interfering.interfac |
| 1ef20 | 65 73 20 61 6e 64 20 69 6e 74 65 72 66 61 63 65 73 20 77 69 74 68 20 74 68 65 20 73 61 6d 65 20 | es.and.interfaces.with.the.same. |
| 1ef40 | 63 68 61 6e 6e 65 6c 20 6e 75 6d 62 65 72 2e 20 2a 2a 69 6e 74 65 72 66 65 72 69 6e 67 2a 2a 20 | channel.number..**interfering**. |
| 1ef60 | e2 80 93 20 69 6e 74 65 72 66 65 72 69 6e 67 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 61 | ....interfering.interfaces.are.a |
| 1ef80 | 73 73 75 6d 65 64 20 74 6f 20 69 6e 74 65 72 66 65 72 65 20 77 69 74 68 20 61 6c 6c 20 6f 74 68 | ssumed.to.interfere.with.all.oth |
| 1efa0 | 65 72 20 63 68 61 6e 6e 65 6c 73 20 65 78 63 65 70 74 20 6e 6f 6e 69 6e 74 65 72 66 65 72 69 6e | er.channels.except.noninterferin |
| 1efc0 | 67 20 63 68 61 6e 6e 65 6c 73 2e 20 2a 2a 6e 6f 6e 69 6e 74 65 72 66 65 72 69 6e 67 2a 2a 20 e2 | g.channels..**noninterfering**.. |
| 1efe0 | 80 93 20 6e 6f 6e 69 6e 74 65 72 66 65 72 69 6e 67 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 | ...noninterfering.interfaces.are |
| 1f000 | 20 61 73 73 75 6d 65 64 20 74 6f 20 6f 6e 6c 79 20 69 6e 74 65 72 66 65 72 65 20 77 69 74 68 20 | .assumed.to.only.interfere.with. |
| 1f020 | 74 68 65 6d 73 65 6c 76 65 73 2e 00 2a 2a 31 2e 20 43 6f 6e 66 69 72 6d 20 49 50 20 63 6f 6e 6e | themselves..**1..Confirm.IP.conn |
| 1f040 | 65 63 74 69 76 69 74 79 20 62 65 74 77 65 65 6e 20 74 75 6e 6e 65 6c 20 73 6f 75 72 63 65 2d 61 | ectivity.between.tunnel.source-a |
| 1f060 | 64 64 72 65 73 73 20 61 6e 64 20 72 65 6d 6f 74 65 3a 2a 2a 00 2a 2a 31 30 2a 2a 20 2d 20 3a 61 | ddress.and.remote:**.**10**.-.:a |
| 1f080 | 62 62 72 3a 60 49 50 46 49 58 20 28 49 50 20 46 6c 6f 77 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 20 | bbr:`IPFIX.(IP.Flow.Information. |
| 1f0a0 | 45 78 70 6f 72 74 29 60 20 61 73 20 70 65 72 20 3a 72 66 63 3a 60 33 39 31 37 60 00 2a 2a 32 2e | Export)`.as.per.:rfc:`3917`.**2. |
| 1f0c0 | 20 43 6f 6e 66 69 72 6d 20 74 68 65 20 6c 69 6e 6b 20 74 79 70 65 20 68 61 73 20 62 65 65 6e 20 | .Confirm.the.link.type.has.been. |
| 1f0e0 | 73 65 74 20 74 6f 20 47 52 45 3a 2a 2a 00 2a 2a 33 2e 20 43 6f 6e 66 69 72 6d 20 49 50 20 63 6f | set.to.GRE:**.**3..Confirm.IP.co |
| 1f100 | 6e 6e 65 63 74 69 76 69 74 79 20 61 63 72 6f 73 73 20 74 68 65 20 74 75 6e 6e 65 6c 3a 2a 2a 00 | nnectivity.across.the.tunnel:**. |
| 1f120 | 2a 2a 35 2a 2a 20 2d 20 4d 6f 73 74 20 63 6f 6d 6d 6f 6e 20 76 65 72 73 69 6f 6e 2c 20 62 75 74 | **5**.-.Most.common.version,.but |
| 1f140 | 20 72 65 73 74 72 69 63 74 65 64 20 74 6f 20 49 50 76 34 20 66 6c 6f 77 73 20 6f 6e 6c 79 00 2a | .restricted.to.IPv4.flows.only.* |
| 1f160 | 2a 39 2a 2a 20 2d 20 4e 65 74 46 6c 6f 77 20 76 65 72 73 69 6f 6e 20 39 20 28 64 65 66 61 75 6c | *9**.-.NetFlow.version.9.(defaul |
| 1f180 | 74 29 00 2a 2a 41 53 20 70 61 74 68 20 6c 65 6e 67 74 68 20 63 68 65 63 6b 2a 2a 00 2a 2a 41 63 | t).**AS.path.length.check**.**Ac |
| 1f1a0 | 74 69 76 65 2d 61 63 74 69 76 65 2a 2a 3a 20 62 6f 74 68 20 44 48 43 50 20 73 65 72 76 65 72 73 | tive-active**:.both.DHCP.servers |
| 1f1c0 | 20 77 69 6c 6c 20 72 65 73 70 6f 6e 64 20 74 6f 20 44 48 43 50 20 72 65 71 75 65 73 74 73 2e 20 | .will.respond.to.DHCP.requests.. |
| 1f1e0 | 49 66 20 60 60 6d 6f 64 65 60 60 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 69 73 | If.``mode``.is.not.defined,.this |
| 1f200 | 20 69 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 62 65 68 61 76 69 6f 72 2e 00 2a 2a 41 63 74 69 | .is.the.default.behavior..**Acti |
| 1f220 | 76 65 2d 70 61 73 73 69 76 65 2a 2a 3a 20 6f 6e 6c 79 20 60 60 70 72 69 6d 61 72 79 60 60 20 73 | ve-passive**:.only.``primary``.s |
| 1f240 | 65 72 76 65 72 20 77 69 6c 6c 20 72 65 73 70 6f 6e 64 20 74 6f 20 44 48 43 50 20 72 65 71 75 65 | erver.will.respond.to.DHCP.reque |
| 1f260 | 73 74 73 2e 20 49 66 20 74 68 69 73 20 73 65 72 76 65 72 20 67 6f 65 73 20 6f 66 66 6c 69 6e 65 | sts..If.this.server.goes.offline |
| 1f280 | 2c 20 74 68 65 6e 20 60 60 73 65 63 6f 6e 64 61 72 79 60 60 20 73 65 72 76 65 72 20 77 69 6c 6c | ,.then.``secondary``.server.will |
| 1f2a0 | 20 74 61 6b 65 20 70 6c 61 63 65 2e 00 2a 2a 41 6c 72 65 61 64 79 2d 73 65 6c 65 63 74 65 64 20 | .take.place..**Already-selected. |
| 1f2c0 | 65 78 74 65 72 6e 61 6c 20 63 68 65 63 6b 2a 2a 00 2a 2a 41 70 70 6c 69 63 61 74 69 6f 6e 20 43 | external.check**.**Application.C |
| 1f2e0 | 6f 6d 70 61 74 69 62 69 6c 69 74 79 2a 2a 3a 20 53 6f 6d 65 20 61 70 70 6c 69 63 61 74 69 6f 6e | ompatibility**:.Some.application |
| 1f300 | 73 20 61 6e 64 20 70 72 6f 74 6f 63 6f 6c 73 20 6d 61 79 20 6e 6f 74 20 77 6f 72 6b 20 77 65 6c | s.and.protocols.may.not.work.wel |
| 1f320 | 6c 20 77 69 74 68 20 43 47 4e 41 54 20 64 75 65 20 74 6f 20 74 68 65 69 72 20 72 65 6c 69 61 6e | l.with.CGNAT.due.to.their.relian |
| 1f340 | 63 65 20 6f 6e 20 75 6e 69 71 75 65 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 65 73 | ce.on.unique.public.IP.addresses |
| 1f360 | 2e 00 2a 2a 41 70 70 6c 69 65 73 20 74 6f 3a 2a 2a 20 49 6e 62 6f 75 6e 64 20 74 72 61 66 66 69 | ..**Applies.to:**.Inbound.traffi |
| 1f380 | 63 2e 00 2a 2a 41 70 70 6c 69 65 73 20 74 6f 3a 2a 2a 20 4f 75 74 62 6f 75 6e 64 20 54 72 61 66 | c..**Applies.to:**.Outbound.Traf |
| 1f3a0 | 66 69 63 2e 00 2a 2a 41 70 70 6c 69 65 73 20 74 6f 3a 2a 2a 20 4f 75 74 62 6f 75 6e 64 20 74 72 | fic..**Applies.to:**.Outbound.tr |
| 1f3c0 | 61 66 66 69 63 2e 00 2a 2a 41 70 70 6c 79 20 74 68 65 20 74 72 61 66 66 69 63 20 70 6f 6c 69 63 | affic..**Apply.the.traffic.polic |
| 1f3e0 | 79 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 6e 67 72 65 73 73 20 6f 72 20 65 67 72 | y.to.an.interface.ingress.or.egr |
| 1f400 | 65 73 73 2a 2a 2e 00 2a 2a 42 72 69 64 67 65 20 50 6f 72 74 3f 2a 2a 3a 20 63 68 6f 6f 73 65 20 | ess**..**Bridge.Port?**:.choose. |
| 1f420 | 61 70 70 72 6f 70 69 61 74 65 20 70 61 74 68 20 62 61 73 65 64 20 6f 6e 20 69 66 20 69 6e 74 65 | appropiate.path.based.on.if.inte |
| 1f440 | 72 66 61 63 65 20 77 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 69 76 | rface.were.the.packet.was.receiv |
| 1f460 | 65 64 20 69 73 20 70 61 72 74 20 6f 66 20 61 20 62 72 69 64 67 65 2c 20 6f 72 20 6e 6f 74 2e 00 | ed.is.part.of.a.bridge,.or.not.. |
| 1f480 | 2a 2a 42 72 69 64 67 65 20 50 6f 72 74 3f 2a 2a 3a 20 63 68 6f 6f 73 65 20 61 70 70 72 6f 70 72 | **Bridge.Port?**:.choose.appropr |
| 1f4a0 | 69 61 74 65 20 70 61 74 68 20 62 61 73 65 64 20 6f 6e 20 77 68 65 74 68 65 72 20 69 6e 74 65 72 | iate.path.based.on.whether.inter |
| 1f4c0 | 66 61 63 65 20 77 68 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 69 76 | face.where.the.packet.was.receiv |
| 1f4e0 | 65 64 20 69 73 20 70 61 72 74 20 6f 66 20 61 20 62 72 69 64 67 65 2c 20 6f 72 20 6e 6f 74 2e 00 | ed.is.part.of.a.bridge,.or.not.. |
| 1f500 | 2a 2a 43 61 6c 63 75 6c 61 74 65 20 74 68 65 20 4e 75 6d 62 65 72 20 6f 66 20 53 75 62 73 63 72 | **Calculate.the.Number.of.Subscr |
| 1f520 | 69 62 65 72 73 20 70 65 72 20 50 75 62 6c 69 63 20 49 50 2a 2a 3a 00 2a 2a 43 69 73 63 6f 20 49 | ibers.per.Public.IP**:.**Cisco.I |
| 1f540 | 4f 53 20 52 6f 75 74 65 72 3a 2a 2a 00 2a 2a 43 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 | OS.Router:**.**Client.IP.address |
| 1f560 | 20 76 69 61 20 49 50 20 72 61 6e 67 65 20 64 65 66 69 6e 69 74 69 6f 6e 2a 2a 00 2a 2a 43 6c 69 | .via.IP.range.definition**.**Cli |
| 1f580 | 65 6e 74 20 49 50 20 73 75 62 6e 65 74 73 20 76 69 61 20 43 49 44 52 20 6e 6f 74 61 74 69 6f 6e | ent.IP.subnets.via.CIDR.notation |
| 1f5a0 | 2a 2a 00 2a 2a 43 6c 75 73 74 65 72 2d 4c 69 73 74 20 6c 65 6e 67 74 68 20 63 68 65 63 6b 2a 2a | **.**Cluster-List.length.check** |
| 1f5c0 | 00 2a 2a 43 6f 6e 6e 74 72 61 63 6b 20 49 67 6e 6f 72 65 2a 2a 3a 20 72 75 6c 65 73 20 64 65 66 | .**Conntrack.Ignore**:.rules.def |
| 1f5e0 | 69 6e 65 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 73 79 73 74 65 6d 20 63 6f 6e 6e 74 72 61 63 | ined.under.``set.system.conntrac |
| 1f600 | 6b 20 69 67 6e 6f 72 65 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 2e 2e 2e 60 60 2e 00 2a 2a | k.ignore.[ipv4.|.ipv6]....``..** |
| 1f620 | 43 6f 6e 6e 74 72 61 63 6b 20 49 67 6e 6f 72 65 2a 2a 3a 20 72 75 6c 65 73 20 64 65 66 69 6e 65 | Conntrack.Ignore**:.rules.define |
| 1f640 | 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 73 79 73 74 65 6d 20 63 6f 6e 6e 74 72 61 63 6b 20 69 | d.under.``set.system.conntrack.i |
| 1f660 | 67 6e 6f 72 65 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 2e 2e 2e 60 60 2e 20 53 74 61 72 74 | gnore.[ipv4.|.ipv6]....``..Start |
| 1f680 | 69 6e 67 20 66 72 6f 6d 20 76 79 6f 73 2d 31 2e 35 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 34 30 36 | ing.from.vyos-1.5-rolling-202406 |
| 1f6a0 | 31 32 30 30 32 30 2c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 64 6f 6e 65 20 69 6e 20 74 68 | 120020,.configuration.done.in.th |
| 1f6c0 | 69 73 20 73 65 63 74 69 6f 6e 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 69 6e 20 60 60 66 69 72 65 | is.section.can.be.done.in.``fire |
| 1f6e0 | 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 70 72 65 72 6f 75 74 69 6e 67 20 2e 2e | wall.[ipv4.|.ipv6].prerouting... |
| 1f700 | 2e 60 60 2e 20 46 6f 72 20 63 6f 6d 70 61 74 69 62 69 6c 69 74 79 20 72 65 61 73 6f 6e 73 2c 20 | .``..For.compatibility.reasons,. |
| 1f720 | 74 68 69 73 20 66 65 61 74 75 72 65 20 69 73 20 73 74 69 6c 6c 20 70 72 65 73 65 6e 74 2c 20 62 | this.feature.is.still.present,.b |
| 1f740 | 75 74 20 69 74 20 77 69 6c 6c 20 62 65 20 72 65 6d 6f 76 65 64 20 69 6e 20 74 68 65 20 66 75 74 | ut.it.will.be.removed.in.the.fut |
| 1f760 | 75 72 65 2e 00 2a 2a 43 6f 73 74 2d 45 66 66 65 63 74 69 76 65 2a 2a 3a 20 52 65 64 75 63 65 73 | ure..**Cost-Effective**:.Reduces |
| 1f780 | 20 74 68 65 20 63 6f 73 74 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 61 63 71 75 69 72 | .the.cost.associated.with.acquir |
| 1f7a0 | 69 6e 67 20 61 64 64 69 74 69 6f 6e 61 6c 20 70 75 62 6c 69 63 20 49 50 76 34 20 61 64 64 72 65 | ing.additional.public.IPv4.addre |
| 1f7c0 | 73 73 65 73 2e 00 2a 2a 43 72 65 61 74 65 20 61 20 74 72 61 66 66 69 63 20 70 6f 6c 69 63 79 2a | sses..**Create.a.traffic.policy* |
| 1f7e0 | 2a 2e 00 2a 2a 44 48 43 50 28 76 36 29 2a 2a 00 2a 2a 44 48 43 50 76 36 20 50 72 65 66 69 78 20 | *..**DHCP(v6)**.**DHCPv6.Prefix. |
| 1f800 | 44 65 6c 65 67 61 74 69 6f 6e 20 28 50 44 29 2a 2a 00 2a 2a 44 65 73 74 69 6e 61 74 69 6f 6e 20 | Delegation.(PD)**.**Destination. |
| 1f820 | 4e 41 54 2a 2a 3a 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 75 6e 64 65 72 20 60 60 73 65 74 | NAT**:.rules.defined.under.``set |
| 1f840 | 20 5b 6e 61 74 20 7c 20 6e 61 74 36 36 5d 20 64 65 73 74 69 6e 61 74 69 6f 6e 2e 2e 2e 60 60 2e | .[nat.|.nat66].destination...``. |
| 1f860 | 00 2a 2a 44 65 73 74 69 6e 61 74 69 6f 6e 20 69 73 20 74 68 65 20 72 6f 75 74 65 72 3f 2a 2a 3a | .**Destination.is.the.router?**: |
| 1f880 | 20 63 68 6f 6f 73 65 20 61 6e 20 61 70 70 72 6f 70 72 69 61 74 65 20 70 61 74 68 20 62 61 73 65 | .choose.an.appropriate.path.base |
| 1f8a0 | 64 20 6f 6e 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 2e 20 54 72 61 | d.on.destination.IP.address..Tra |
| 1f8c0 | 6e 73 69 74 20 66 6f 72 77 61 72 64 20 63 6f 6e 74 69 6e 75 65 73 20 74 6f 20 2a 2a 66 6f 72 77 | nsit.forward.continues.to.**forw |
| 1f8e0 | 61 72 64 2a 2a 2c 20 77 68 69 6c 65 20 74 72 61 66 66 69 63 20 77 68 65 72 65 20 74 68 65 20 64 | ard**,.while.traffic.where.the.d |
| 1f900 | 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 63 6f 6e 66 69 67 75 | estination.IP.address.is.configu |
| 1f920 | 72 65 64 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 72 20 63 6f 6e 74 69 6e 75 65 73 20 74 6f 20 2a | red.on.the.router.continues.to.* |
| 1f940 | 2a 69 6e 70 75 74 2a 2a 2e 00 2a 2a 44 65 73 74 69 6e 61 74 69 6f 6e 20 69 73 20 74 68 65 20 72 | *input**..**Destination.is.the.r |
| 1f960 | 6f 75 74 65 72 3f 2a 2a 3a 20 63 68 6f 6f 73 65 20 61 70 70 72 6f 70 69 61 74 65 20 70 61 74 68 | outer?**:.choose.appropiate.path |
| 1f980 | 20 62 61 73 65 64 20 6f 6e 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 | .based.on.destination.IP.address |
| 1f9a0 | 2e 20 54 72 61 6e 73 69 74 20 66 6f 72 77 61 72 64 20 63 6f 6e 74 69 6e 75 6e 65 73 20 74 6f 20 | ..Transit.forward.continunes.to. |
| 1f9c0 | 2a 2a 66 6f 72 77 61 72 64 2a 2a 2c 20 77 68 69 6c 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 | **forward**,.while.traffic.that. |
| 1f9e0 | 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 63 6f 6e 66 69 67 | destination.IP.address.is.config |
| 1fa00 | 75 72 65 64 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 72 20 63 6f 6e 74 69 6e 75 65 73 20 74 6f 20 | ured.on.the.router.continues.to. |
| 1fa20 | 2a 2a 69 6e 70 75 74 2a 2a 2e 00 2a 2a 44 65 73 74 69 6e 61 74 69 6f 6e 20 69 73 20 74 68 65 20 | **input**..**Destination.is.the. |
| 1fa40 | 72 6f 75 74 65 72 3f 2a 2a 3a 20 63 68 6f 6f 73 65 20 61 70 70 72 6f 70 72 69 61 74 65 20 70 61 | router?**:.choose.appropriate.pa |
| 1fa60 | 74 68 20 62 61 73 65 64 20 6f 6e 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 | th.based.on.destination.IP.addre |
| 1fa80 | 73 73 2e 20 54 72 61 6e 73 69 74 20 66 6f 72 77 61 72 64 20 63 6f 6e 74 69 6e 75 65 73 20 74 6f | ss..Transit.forward.continues.to |
| 1faa0 | 20 2a 2a 66 6f 72 77 61 72 64 2a 2a 2c 20 77 68 69 6c 65 20 74 72 61 66 66 69 63 20 74 68 61 74 | .**forward**,.while.traffic.that |
| 1fac0 | 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 63 6f 6e 66 69 | .destination.IP.address.is.confi |
| 1fae0 | 67 75 72 65 64 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 72 20 63 6f 6e 74 69 6e 75 65 73 20 74 6f | gured.on.the.router.continues.to |
| 1fb00 | 20 2a 2a 69 6e 70 75 74 2a 2a 2e 00 2a 2a 44 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 75 6e 64 65 | .**input**..**Documentation.unde |
| 1fb20 | 72 20 64 65 76 65 6c 6f 70 6d 65 6e 74 2a 2a 00 2a 2a 45 73 74 69 6d 61 74 65 20 50 6f 72 74 73 | r.development**.**Estimate.Ports |
| 1fb40 | 20 4e 65 65 64 65 64 20 70 65 72 20 53 75 62 73 63 72 69 62 65 72 2a 2a 3a 00 2a 2a 45 74 68 65 | .Needed.per.Subscriber**:.**Ethe |
| 1fb60 | 72 6e 65 74 20 28 70 72 6f 74 6f 63 6f 6c 2c 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 | rnet.(protocol,.destination.addr |
| 1fb80 | 65 73 73 20 6f 72 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 29 2a 2a 00 2a 2a 45 78 61 6d 70 | ess.or.source.address)**.**Examp |
| 1fba0 | 6c 65 3a 2a 2a 00 2a 2a 45 78 74 65 72 6e 61 6c 20 63 68 65 63 6b 2a 2a 00 2a 2a 46 69 72 65 77 | le:**.**External.check**.**Firew |
| 1fbc0 | 61 6c 6c 20 50 72 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 75 6e 64 | all.Prerouting**:.commands.found |
| 1fbe0 | 20 75 6e 64 65 72 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 70 72 65 72 6f | .under.``set.firewall.ipv4.prero |
| 1fc00 | 75 74 69 6e 67 20 72 61 77 20 2e 2e 2e 60 60 00 2a 2a 46 69 72 65 77 61 6c 6c 20 50 72 65 72 6f | uting.raw....``.**Firewall.Prero |
| 1fc20 | 75 74 69 6e 67 2a 2a 3a 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 75 6e 64 20 75 6e 64 65 72 20 60 60 | uting**:.commands.found.under.`` |
| 1fc40 | 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 70 72 65 72 6f 75 74 69 6e 67 20 72 61 77 | set.firewall.ipv6.prerouting.raw |
| 1fc60 | 20 2e 2e 2e 60 60 00 2a 2a 46 69 72 65 77 61 6c 6c 20 6d 61 72 6b 2a 2a 00 2a 2a 46 69 72 65 77 | ....``.**Firewall.mark**.**Firew |
| 1fc80 | 61 6c 6c 20 70 72 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 | all.prerouting**:.rules.defined. |
| 1fca0 | 75 6e 64 65 72 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 | under.``set.firewall.[ipv4.|.ipv |
| 1fcc0 | 36 5d 20 70 72 65 72 6f 75 74 69 6e 67 20 72 61 77 2e 2e 2e 60 60 2e 20 41 6c 6c 20 72 75 6c 65 | 6].prerouting.raw...``..All.rule |
| 1fce0 | 73 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 61 72 65 20 70 72 | s.defined.in.this.section.are.pr |
| 1fd00 | 6f 63 65 73 73 65 64 20 62 65 66 6f 72 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 | ocessed.before.connection.tracki |
| 1fd20 | 6e 67 20 73 75 62 73 79 73 74 65 6d 2e 00 2a 2a 46 6c 6f 77 74 61 62 6c 65 20 52 65 66 65 72 65 | ng.subsystem..**Flowtable.Refere |
| 1fd40 | 6e 63 65 3a 2a 2a 20 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 6b 65 72 6e 65 6c 2e 6f 72 67 2f 6e | nce:**.https://docs.kernel.org/n |
| 1fd60 | 65 74 77 6f 72 6b 69 6e 67 2f 6e 66 5f 66 6c 6f 77 74 61 62 6c 65 2e 68 74 6d 6c 00 2a 2a 46 6f | etworking/nf_flowtable.html.**Fo |
| 1fd80 | 72 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2a 2a 20 6f 66 20 4e 65 74 66 69 6c 74 65 | r.more.information**.of.Netfilte |
| 1fda0 | 72 20 68 6f 6f 6b 73 20 61 6e 64 20 4c 69 6e 75 78 20 6e 65 74 77 6f 72 6b 69 6e 67 20 70 61 63 | r.hooks.and.Linux.networking.pac |
| 1fdc0 | 6b 65 74 20 66 6c 6f 77 73 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 60 4e 65 74 66 69 | ket.flows.can.be.found.in.`Netfi |
| 1fde0 | 6c 74 65 72 2d 48 6f 6f 6b 73 20 3c 68 74 74 70 73 3a 2f 2f 77 69 6b 69 2e 6e 66 74 61 62 6c 65 | lter-Hooks.<https://wiki.nftable |
| 1fe00 | 73 2e 6f 72 67 2f 77 69 6b 69 2d 6e 66 74 61 62 6c 65 73 2f 69 6e 64 65 78 2e 70 68 70 2f 4e 65 | s.org/wiki-nftables/index.php/Ne |
| 1fe20 | 74 66 69 6c 74 65 72 5f 68 6f 6f 6b 73 3e 60 5f 00 2a 2a 46 6f 72 77 61 72 64 20 28 42 72 69 64 | tfilter_hooks>`_.**Forward.(Brid |
| 1fe40 | 67 65 29 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 | ge)**:.stage.where.traffic.that. |
| 1fe60 | 69 73 20 74 72 61 73 73 70 61 73 69 6e 67 20 74 68 72 6f 75 67 68 20 74 68 65 20 62 72 69 64 67 | is.trasspasing.through.the.bridg |
| 1fe80 | 65 20 69 73 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 3a 00 2a 2a | e.is.filtered.and.controlled:.** |
| 1fea0 | 46 6f 72 77 61 72 64 20 28 42 72 69 64 67 65 29 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 | Forward.(Bridge)**:.stage.where. |
| 1fec0 | 74 72 61 66 66 69 63 20 74 68 61 74 20 69 73 20 74 72 65 73 70 61 73 69 6e 67 20 74 68 72 6f 75 | traffic.that.is.trespasing.throu |
| 1fee0 | 67 68 20 74 68 65 20 62 72 69 64 67 65 20 69 73 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f | gh.the.bridge.is.filtered.and.co |
| 1ff00 | 6e 74 72 6f 6c 6c 65 64 3a 00 2a 2a 46 6f 72 77 61 72 64 20 28 42 72 69 64 67 65 29 2a 2a 3a 20 | ntrolled:.**Forward.(Bridge)**:. |
| 1ff20 | 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 69 73 20 74 72 65 73 | stage.where.traffic.that.is.tres |
| 1ff40 | 70 61 73 73 69 6e 67 20 74 68 72 6f 75 67 68 20 74 68 65 20 62 72 69 64 67 65 20 69 73 20 66 69 | passing.through.the.bridge.is.fi |
| 1ff60 | 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 3a 00 2a 2a 46 6f 72 77 61 72 64 | ltered.and.controlled:.**Forward |
| 1ff80 | 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 | **:.stage.where.transit.traffic. |
| 1ffa0 | 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 | can.be.filtered.and.controlled.. |
| 1ffc0 | 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 69 70 76 34 20 61 6e 64 20 69 70 76 36 20 66 69 6c 74 | This.includes.ipv4.and.ipv6.filt |
| 1ffe0 | 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 64 65 66 69 6e 65 64 20 69 6e 3a 00 2a 2a 48 61 72 64 77 | ering.rules,.defined.in:.**Hardw |
| 20000 | 61 72 65 20 6f 66 66 6c 6f 61 64 3a 2a 2a 20 73 68 6f 75 6c 64 20 62 65 20 73 75 70 70 6f 72 74 | are.offload:**.should.be.support |
| 20020 | 65 64 20 62 79 20 74 68 65 20 4e 49 43 73 20 75 73 65 64 2e 00 2a 2a 49 47 50 20 63 6f 73 74 20 | ed.by.the.NICs.used..**IGP.cost. |
| 20040 | 63 68 65 63 6b 2a 2a 00 2a 2a 49 50 76 34 20 28 44 53 43 50 20 76 61 6c 75 65 2c 20 6d 61 78 69 | check**.**IPv4.(DSCP.value,.maxi |
| 20060 | 6d 75 6d 20 70 61 63 6b 65 74 20 6c 65 6e 67 74 68 2c 20 70 72 6f 74 6f 63 6f 6c 2c 20 73 6f 75 | mum.packet.length,.protocol,.sou |
| 20080 | 72 63 65 20 61 64 64 72 65 73 73 2c 2a 2a 20 2a 2a 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 | rce.address,**.**destination.add |
| 200a0 | 72 65 73 73 2c 20 73 6f 75 72 63 65 20 70 6f 72 74 2c 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 | ress,.source.port,.destination.p |
| 200c0 | 6f 72 74 20 6f 72 20 54 43 50 20 66 6c 61 67 73 29 2a 2a 00 2a 2a 49 50 76 34 20 41 64 64 72 65 | ort.or.TCP.flags)**.**IPv4.Addre |
| 200e0 | 73 73 20 43 6f 6e 73 65 72 76 61 74 69 6f 6e 2a 2a 3a 20 43 47 4e 41 54 20 68 65 6c 70 73 20 6d | ss.Conservation**:.CGNAT.helps.m |
| 20100 | 69 74 69 67 61 74 65 20 74 68 65 20 65 78 68 61 75 73 74 69 6f 6e 20 6f 66 20 49 50 76 34 20 61 | itigate.the.exhaustion.of.IPv4.a |
| 20120 | 64 64 72 65 73 73 65 73 20 62 79 20 61 6c 6c 6f 77 69 6e 67 20 6d 75 6c 74 69 70 6c 65 20 63 75 | ddresses.by.allowing.multiple.cu |
| 20140 | 73 74 6f 6d 65 72 73 20 74 6f 20 73 68 61 72 65 20 61 20 73 69 6e 67 6c 65 20 70 75 62 6c 69 63 | stomers.to.share.a.single.public |
| 20160 | 20 49 50 20 61 64 64 72 65 73 73 2e 00 2a 2a 49 50 76 36 20 28 44 53 43 50 20 76 61 6c 75 65 2c | .IP.address..**IPv6.(DSCP.value, |
| 20180 | 20 6d 61 78 69 6d 75 6d 20 70 61 79 6c 6f 61 64 20 6c 65 6e 67 74 68 2c 20 70 72 6f 74 6f 63 6f | .maximum.payload.length,.protoco |
| 201a0 | 6c 2c 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 2c 2a 2a 20 2a 2a 64 65 73 74 69 6e 61 74 69 | l,.source.address,**.**destinati |
| 201c0 | 6f 6e 20 61 64 64 72 65 73 73 2c 20 73 6f 75 72 63 65 20 70 6f 72 74 2c 20 64 65 73 74 69 6e 61 | on.address,.source.port,.destina |
| 201e0 | 74 69 6f 6e 20 70 6f 72 74 20 6f 72 20 54 43 50 20 66 6c 61 67 73 29 2a 2a 00 2a 2a 49 66 20 79 | tion.port.or.TCP.flags)**.**If.y |
| 20200 | 6f 75 20 61 72 65 20 6c 6f 6f 6b 69 6e 67 20 66 6f 72 20 61 20 70 6f 6c 69 63 79 20 66 6f 72 20 | ou.are.looking.for.a.policy.for. |
| 20220 | 79 6f 75 72 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 2a 2a 20 62 75 74 20 79 6f 75 20 | your.outbound.traffic**.but.you. |
| 20240 | 64 6f 6e 27 74 20 6b 6e 6f 77 20 77 68 69 63 68 20 6f 6e 65 20 79 6f 75 20 6e 65 65 64 20 61 6e | don't.know.which.one.you.need.an |
| 20260 | 64 20 79 6f 75 20 64 6f 6e 27 74 20 77 61 6e 74 20 74 6f 20 67 6f 20 74 68 72 6f 75 67 68 20 65 | d.you.don't.want.to.go.through.e |
| 20280 | 76 65 72 79 20 70 6f 73 73 69 62 6c 65 20 70 6f 6c 69 63 79 20 73 68 6f 77 6e 20 68 65 72 65 2c | very.possible.policy.shown.here, |
| 202a0 | 20 2a 2a 6f 75 72 20 62 65 74 20 69 73 20 74 68 61 74 20 68 69 67 68 6c 79 20 6c 69 6b 65 6c 79 | .**our.bet.is.that.highly.likely |
| 202c0 | 20 79 6f 75 20 61 72 65 20 6c 6f 6f 6b 69 6e 67 20 66 6f 72 20 61 2a 2a 20 53 68 61 70 65 72 5f | .you.are.looking.for.a**.Shaper_ |
| 202e0 | 20 2a 2a 70 6f 6c 69 63 79 20 61 6e 64 20 79 6f 75 20 77 61 6e 74 20 74 6f 2a 2a 20 3a 72 65 66 | .**policy.and.you.want.to**.:ref |
| 20300 | 3a 60 73 65 74 20 69 74 73 20 71 75 65 75 65 73 20 3c 65 6d 62 65 64 3e 60 20 2a 2a 61 73 20 46 | :`set.its.queues.<embed>`.**as.F |
| 20320 | 51 2d 43 6f 44 65 6c 2a 2a 2e 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 61 62 6f 75 | Q-CoDel**..**Important.note.abou |
| 20340 | 74 20 63 6f 6e 6e 74 72 61 63 6b 20 69 67 6e 6f 72 65 20 72 75 6c 65 73 3a 2a 2a 20 53 74 61 72 | t.conntrack.ignore.rules:**.Star |
| 20360 | 74 69 6e 67 20 66 72 6f 6d 20 76 79 6f 73 2d 31 2e 35 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 34 30 | ting.from.vyos-1.5-rolling-20240 |
| 20380 | 36 31 32 30 30 32 30 2c 20 69 67 6e 6f 72 65 20 72 75 6c 65 73 20 63 61 6e 20 62 65 20 64 65 66 | 6120020,.ignore.rules.can.be.def |
| 203a0 | 69 6e 65 64 20 69 6e 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 | ined.in.``set.firewall.[ipv4.|.i |
| 203c0 | 70 76 36 5d 20 70 72 65 72 6f 75 74 69 6e 67 20 72 61 77 20 2e 2e 2e 60 60 2e 20 49 74 27 73 20 | pv6].prerouting.raw....``..It's. |
| 203e0 | 65 78 70 65 63 74 65 64 20 74 68 61 74 20 69 6e 20 74 68 65 20 66 75 74 75 72 65 20 74 68 65 20 | expected.that.in.the.future.the. |
| 20400 | 63 6f 6e 6e 74 72 61 63 6b 20 69 67 6e 6f 72 65 20 72 75 6c 65 73 20 77 69 6c 6c 20 62 65 20 72 | conntrack.ignore.rules.will.be.r |
| 20420 | 65 6d 6f 76 65 64 2e 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 61 62 6f 75 74 20 64 | emoved..**Important.note.about.d |
| 20440 | 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 73 3a 2a 2a 20 49 66 20 61 20 64 65 66 61 75 6c 74 20 61 | efault-actions:**.If.a.default.a |
| 20460 | 63 74 69 6f 6e 20 66 6f 72 20 61 6e 79 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 6e 6f 74 20 | ction.for.any.base.chain.is.not. |
| 20480 | 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e | defined,.then.the.default.action |
| 204a0 | 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 61 63 63 65 70 74 2a 2a 20 66 6f 72 20 74 68 61 74 20 63 | .is.set.to.**accept**.for.that.c |
| 204c0 | 68 61 69 6e 2e 20 46 6f 72 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 73 2c 20 69 66 20 74 68 65 20 | hain..For.custom.chains,.if.the. |
| 204e0 | 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 | default.action.is.not.defined,.t |
| 20500 | 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f | hen.the.default-action.is.set.to |
| 20520 | 20 2a 2a 64 72 6f 70 2a 2a 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 61 62 6f 75 74 | .**drop**.**Important.note.about |
| 20540 | 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 73 3a 2a 2a 20 49 66 20 64 65 66 61 75 6c 74 20 61 | .default-actions:**.If.default.a |
| 20560 | 63 74 69 6f 6e 20 66 6f 72 20 61 6e 79 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 6e 6f 74 20 | ction.for.any.base.chain.is.not. |
| 20580 | 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e | defined,.then.the.default.action |
| 205a0 | 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 61 63 63 65 70 74 2a 2a 20 66 6f 72 20 74 68 61 74 20 63 | .is.set.to.**accept**.for.that.c |
| 205c0 | 68 61 69 6e 2e 20 46 6f 72 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 73 2c 20 69 66 20 64 65 66 61 | hain..For.custom.chains,.if.defa |
| 205e0 | 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 | ult.action.is.not.defined,.then. |
| 20600 | 74 68 65 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 64 | the.default-action.is.set.to.**d |
| 20620 | 72 6f 70 2a 2a 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 61 62 6f 75 74 20 64 65 66 | rop**.**Important.note.about.def |
| 20640 | 61 75 6c 74 2d 61 63 74 69 6f 6e 73 3a 2a 2a 20 49 66 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f | ault-actions:**.If.default.actio |
| 20660 | 6e 20 66 6f 72 20 61 6e 79 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 | n.for.any.base.chain.is.not.defi |
| 20680 | 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 | ned,.then.the.default.action.is. |
| 206a0 | 73 65 74 20 74 6f 20 2a 2a 61 63 63 65 70 74 2a 2a 20 66 6f 72 20 74 68 61 74 20 63 68 61 69 6e | set.to.**accept**.for.that.chain |
| 206c0 | 2e 20 46 6f 72 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 73 2c 20 69 66 20 64 65 66 61 75 6c 74 20 | ..For.custom.chains,.if.default. |
| 206e0 | 61 63 74 69 6f 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 | action.is.not.defined,.then.the. |
| 20700 | 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 64 72 6f 70 2a | default-action.is.set.to.**drop* |
| 20720 | 2a 2e 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 61 62 6f 75 74 20 64 65 66 61 75 6c | *..**Important.note.about.defaul |
| 20740 | 74 2d 61 63 74 69 6f 6e 73 3a 2a 2a 20 49 66 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 66 | t-actions:**.If.default.action.f |
| 20760 | 6f 72 20 61 6e 79 20 63 68 61 69 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 | or.any.chain.is.not.defined,.the |
| 20780 | 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a | n.the.default.action.is.set.to.* |
| 207a0 | 2a 61 63 63 65 70 74 2a 2a 20 66 6f 72 20 74 68 61 74 20 63 68 61 69 6e 2e 20 4f 6e 6c 79 20 66 | *accept**.for.that.chain..Only.f |
| 207c0 | 6f 72 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 73 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 | or.custom.chains,.the.default.ac |
| 207e0 | 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 64 72 6f 70 2a 2a 2e 00 2a 2a 49 6d 70 6f 72 | tion.is.set.to.**drop**..**Impor |
| 20800 | 74 61 6e 74 20 6e 6f 74 65 20 61 62 6f 75 74 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 73 3a | tant.note.about.default-actions: |
| 20820 | 2a 2a 20 49 66 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 66 6f 72 20 61 6e 79 20 63 68 61 | **.If.default.action.for.any.cha |
| 20840 | 69 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 | in.is.not.defined,.then.the.defa |
| 20860 | 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 64 72 6f 70 2a 2a 20 66 6f | ult.action.is.set.to.**drop**.fo |
| 20880 | 72 20 74 68 61 74 20 63 68 61 69 6e 2e 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 61 | r.that.chain..**Important.note.a |
| 208a0 | 62 6f 75 74 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 73 3a 2a 2a 20 49 66 20 74 68 65 20 64 | bout.default-actions:**.If.the.d |
| 208c0 | 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 66 6f 72 20 61 6e 79 20 62 61 73 65 20 63 68 61 69 6e | efault.action.for.any.base.chain |
| 208e0 | 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c | .is.not.defined,.then.the.defaul |
| 20900 | 74 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 61 63 63 65 70 74 2a 2a 20 66 6f | t.action.is.set.to.**accept**.fo |
| 20920 | 72 20 74 68 61 74 20 63 68 61 69 6e 2e 20 46 6f 72 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 73 20 | r.that.chain..For.custom.chains. |
| 20940 | 69 66 20 61 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e | if.a.default.action.is.not.defin |
| 20960 | 65 64 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 | ed.then.the.default-action.is.se |
| 20980 | 74 20 74 6f 20 2a 2a 64 72 6f 70 2a 2a 2e 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 | t.to.**drop**..**Important.note. |
| 209a0 | 61 62 6f 75 74 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 73 3a 2a 2a 20 49 66 20 74 68 65 20 | about.default-actions:**.If.the. |
| 209c0 | 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 66 6f 72 20 61 6e 79 20 62 61 73 65 20 63 68 61 69 | default.action.for.any.base.chai |
| 209e0 | 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 | n.is.not.defined,.then.the.defau |
| 20a00 | 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 61 63 63 65 70 74 2a 2a 20 66 | lt.action.is.set.to.**accept**.f |
| 20a20 | 6f 72 20 74 68 61 74 20 63 68 61 69 6e 2e 20 46 6f 72 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 73 | or.that.chain..For.custom.chains |
| 20a40 | 2c 20 69 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 6e 6f 74 20 64 | ,.if.the.default.action.is.not.d |
| 20a60 | 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 | efined,.then.the.default-action. |
| 20a80 | 69 73 20 73 65 74 20 74 6f 20 2a 2a 64 72 6f 70 2a 2a 2e 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 | is.set.to.**drop**..**Important. |
| 20aa0 | 6e 6f 74 65 20 6f 6e 20 75 73 61 67 65 20 6f 66 20 74 65 72 6d 73 3a 2a 2a 20 54 68 65 20 66 69 | note.on.usage.of.terms:**.The.fi |
| 20ac0 | 72 65 77 61 6c 6c 20 6d 61 6b 65 73 20 75 73 65 20 6f 66 20 74 68 65 20 74 65 72 6d 73 20 60 66 | rewall.makes.use.of.the.terms.`f |
| 20ae0 | 6f 72 77 61 72 64 60 2c 20 60 69 6e 70 75 74 60 2c 20 61 6e 64 20 60 6f 75 74 70 75 74 60 20 66 | orward`,.`input`,.and.`output`.f |
| 20b00 | 6f 72 20 66 69 72 65 77 61 6c 6c 20 70 6f 6c 69 63 79 2e 20 4d 6f 72 65 20 69 6e 66 6f 72 6d 61 | or.firewall.policy..More.informa |
| 20b20 | 74 69 6f 6e 20 6f 66 20 4e 65 74 66 69 6c 74 65 72 20 68 6f 6f 6b 73 20 61 6e 64 20 4c 69 6e 75 | tion.of.Netfilter.hooks.and.Linu |
| 20b40 | 78 20 6e 65 74 77 6f 72 6b 69 6e 67 20 70 61 63 6b 65 74 20 66 6c 6f 77 73 20 63 61 6e 20 62 65 | x.networking.packet.flows.can.be |
| 20b60 | 20 66 6f 75 6e 64 20 69 6e 20 60 4e 65 74 66 69 6c 74 65 72 2d 48 6f 6f 6b 73 20 3c 68 74 74 70 | .found.in.`Netfilter-Hooks.<http |
| 20b80 | 73 3a 2f 2f 77 69 6b 69 2e 6e 66 74 61 62 6c 65 73 2e 6f 72 67 2f 77 69 6b 69 2d 6e 66 74 61 62 | s://wiki.nftables.org/wiki-nftab |
| 20ba0 | 6c 65 73 2f 69 6e 64 65 78 2e 70 68 70 2f 4e 65 74 66 69 6c 74 65 72 5f 68 6f 6f 6b 73 3e 60 5f | les/index.php/Netfilter_hooks>`_ |
| 20bc0 | 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 6f 6e 20 75 73 61 67 65 20 6f 66 20 74 65 | .**Important.note.on.usage.of.te |
| 20be0 | 72 6d 73 3a 2a 2a 20 54 68 65 20 66 69 72 65 77 61 6c 6c 20 6d 61 6b 65 73 20 75 73 65 20 6f 66 | rms:**.The.firewall.makes.use.of |
| 20c00 | 20 74 68 65 20 74 65 72 6d 73 20 60 69 6e 60 2c 20 60 6f 75 74 60 2c 20 61 6e 64 20 60 6c 6f 63 | .the.terms.`in`,.`out`,.and.`loc |
| 20c20 | 61 6c 60 20 66 6f 72 20 66 69 72 65 77 61 6c 6c 20 70 6f 6c 69 63 79 2e 20 55 73 65 72 73 20 65 | al`.for.firewall.policy..Users.e |
| 20c40 | 78 70 65 72 69 65 6e 63 65 64 20 77 69 74 68 20 6e 65 74 66 69 6c 74 65 72 20 6f 66 74 65 6e 20 | xperienced.with.netfilter.often. |
| 20c60 | 63 6f 6e 66 75 73 65 20 60 69 6e 60 20 74 6f 20 62 65 20 61 20 72 65 66 65 72 65 6e 63 65 20 74 | confuse.`in`.to.be.a.reference.t |
| 20c80 | 6f 20 74 68 65 20 60 49 4e 50 55 54 60 20 63 68 61 69 6e 2c 20 61 6e 64 20 60 6f 75 74 60 20 74 | o.the.`INPUT`.chain,.and.`out`.t |
| 20ca0 | 68 65 20 60 4f 55 54 50 55 54 60 20 63 68 61 69 6e 20 66 72 6f 6d 20 6e 65 74 66 69 6c 74 65 72 | he.`OUTPUT`.chain.from.netfilter |
| 20cc0 | 2e 20 54 68 69 73 20 69 73 20 6e 6f 74 20 74 68 65 20 63 61 73 65 2e 20 54 68 65 73 65 20 69 6e | ..This.is.not.the.case..These.in |
| 20ce0 | 73 74 65 61 64 20 69 6e 64 69 63 61 74 65 20 74 68 65 20 75 73 65 20 6f 66 20 74 68 65 20 60 46 | stead.indicate.the.use.of.the.`F |
| 20d00 | 4f 52 57 41 52 44 60 20 63 68 61 69 6e 20 61 6e 64 20 65 69 74 68 65 72 20 74 68 65 20 69 6e 70 | ORWARD`.chain.and.either.the.inp |
| 20d20 | 75 74 20 6f 72 20 6f 75 74 70 75 74 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 60 49 4e 50 | ut.or.output.interface..The.`INP |
| 20d40 | 55 54 60 20 63 68 61 69 6e 2c 20 77 68 69 63 68 20 69 73 20 75 73 65 64 20 66 6f 72 20 6c 6f 63 | UT`.chain,.which.is.used.for.loc |
| 20d60 | 61 6c 20 74 72 61 66 66 69 63 20 74 6f 20 74 68 65 20 4f 53 2c 20 69 73 20 61 20 72 65 66 65 72 | al.traffic.to.the.OS,.is.a.refer |
| 20d80 | 65 6e 63 65 20 74 6f 20 61 73 20 60 6c 6f 63 61 6c 60 20 77 69 74 68 20 72 65 73 70 65 63 74 20 | ence.to.as.`local`.with.respect. |
| 20da0 | 74 6f 20 69 74 73 20 69 6e 70 75 74 20 69 6e 74 65 72 66 61 63 65 2e 00 2a 2a 49 6d 70 6f 72 74 | to.its.input.interface..**Import |
| 20dc0 | 61 6e 74 20 6e 6f 74 65 3a 2a 2a 20 54 68 69 73 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 69 | ant.note:**.This.documentation.i |
| 20de0 | 73 20 76 61 6c 69 64 20 6f 6e 6c 79 20 66 6f 72 20 56 79 4f 53 20 53 61 67 69 74 74 61 20 70 72 | s.valid.only.for.VyOS.Sagitta.pr |
| 20e00 | 69 6f 72 20 74 6f 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 00 | ior.to.1.4-rolling-202308040557. |
| 20e20 | 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 3a 2a 2a 20 54 68 69 73 20 64 6f 63 75 6d 65 6e | **Important.note:**.This.documen |
| 20e40 | 74 61 74 69 6f 6e 20 69 73 20 76 61 6c 69 64 20 6f 6e 6c 79 20 66 6f 72 20 56 79 4f 53 20 53 61 | tation.is.valid.only.for.VyOS.Sa |
| 20e60 | 67 69 74 74 61 20 70 72 69 6f 72 20 74 6f 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 59 59 59 59 4d | gitta.prior.to.1.4-rolling-YYYYM |
| 20e80 | 4d 44 44 48 48 6d 6d 00 2a 2a 49 6e 70 75 74 20 28 42 72 69 64 67 65 29 2a 2a 3a 20 73 74 61 67 | MDDHHmm.**Input.(Bridge)**:.stag |
| 20ea0 | 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 65 64 20 66 6f 72 20 74 68 65 | e.where.traffic.destined.for.the |
| 20ec0 | 20 62 72 69 64 67 65 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 | .bridge.itself.can.be.filtered.a |
| 20ee0 | 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 3a 00 2a 2a 49 6e 70 75 74 2a 2a 3a 20 73 74 61 67 65 20 | nd.controlled:.**Input**:.stage. |
| 20f00 | 77 68 65 72 65 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 61 74 65 64 20 74 6f 20 74 68 65 20 | where.traffic.destinated.to.the. |
| 20f20 | 72 6f 75 74 65 72 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e | router.itself.can.be.filtered.an |
| 20f40 | 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 54 68 69 73 20 69 73 20 77 68 65 72 65 20 61 6c 6c 20 | d.controlled..This.is.where.all. |
| 20f60 | 72 75 6c 65 73 20 66 6f 72 20 73 65 63 75 72 69 6e 67 20 74 68 65 20 72 6f 75 74 65 72 20 73 68 | rules.for.securing.the.router.sh |
| 20f80 | 6f 75 6c 64 20 74 61 6b 65 20 70 6c 61 63 65 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 69 | ould.take.place..This.includes.i |
| 20fa0 | 70 76 34 20 61 6e 64 20 69 70 76 36 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 64 65 | pv4.and.ipv6.filtering.rules,.de |
| 20fc0 | 66 69 6e 65 64 20 69 6e 3a 00 2a 2a 49 6e 70 75 74 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 | fined.in:.**Input**:.stage.where |
| 20fe0 | 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 65 64 20 66 6f 72 20 74 68 65 20 72 6f 75 74 65 72 | .traffic.destined.for.the.router |
| 21000 | 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 | .itself.can.be.filtered.and.cont |
| 21020 | 72 6f 6c 6c 65 64 2e 20 54 68 69 73 20 69 73 20 77 68 65 72 65 20 61 6c 6c 20 72 75 6c 65 73 20 | rolled..This.is.where.all.rules. |
| 21040 | 66 6f 72 20 73 65 63 75 72 69 6e 67 20 74 68 65 20 72 6f 75 74 65 72 20 73 68 6f 75 6c 64 20 74 | for.securing.the.router.should.t |
| 21060 | 61 6b 65 20 70 6c 61 63 65 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 69 70 76 34 20 61 6e | ake.place..This.includes.ipv4.an |
| 21080 | 64 20 69 70 76 36 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 64 65 66 69 6e 65 64 20 | d.ipv6.filtering.rules,.defined. |
| 210a0 | 69 6e 3a 00 2a 2a 49 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 2a 2a 00 2a 2a 4c 45 46 54 2a 2a 00 | in:.**Interface.name**.**LEFT**. |
| 210c0 | 2a 2a 4c 45 46 54 3a 2a 2a 20 2a 20 57 41 4e 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 60 65 74 | **LEFT:**.*.WAN.interface.on.`et |
| 210e0 | 68 30 2e 32 30 31 60 20 2a 20 60 65 74 68 30 2e 32 30 31 60 20 69 6e 74 65 72 66 61 63 65 20 49 | h0.201`.*.`eth0.201`.interface.I |
| 21100 | 50 3a 20 60 31 37 32 2e 31 38 2e 32 30 31 2e 31 30 2f 32 34 60 20 2a 20 60 76 74 69 31 30 60 20 | P:.`172.18.201.10/24`.*.`vti10`. |
| 21120 | 69 6e 74 65 72 66 61 63 65 20 49 50 3a 20 60 31 30 2e 30 2e 30 2e 32 2f 33 31 60 20 2a 20 60 64 | interface.IP:.`10.0.0.2/31`.*.`d |
| 21140 | 75 6d 30 60 20 69 6e 74 65 72 66 61 63 65 20 49 50 3a 20 60 31 30 2e 30 2e 31 31 2e 31 2f 32 34 | um0`.interface.IP:.`10.0.11.1/24 |
| 21160 | 60 20 28 66 6f 72 20 74 65 73 74 69 6e 67 20 70 75 72 70 6f 73 65 73 29 00 2a 2a 4c 61 79 65 72 | `.(for.testing.purposes).**Layer |
| 21180 | 20 33 20 62 72 69 64 67 65 2a 2a 3a 20 57 68 65 6e 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 | .3.bridge**:.When.an.IP.address. |
| 211a0 | 69 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 74 68 65 20 62 72 69 64 67 65 20 69 6e 74 65 72 66 | is.assigned.to.the.bridge.interf |
| 211c0 | 61 63 65 2c 20 61 6e 64 20 69 66 20 74 72 61 66 66 69 63 20 69 73 20 73 65 6e 74 20 74 6f 20 74 | ace,.and.if.traffic.is.sent.to.t |
| 211e0 | 68 65 20 72 6f 75 74 65 72 20 74 6f 20 74 68 69 73 20 49 50 20 28 66 6f 72 20 65 78 61 6d 70 6c | he.router.to.this.IP.(for.exampl |
| 21200 | 65 20 75 73 69 6e 67 20 73 75 63 68 20 49 50 20 61 73 20 64 65 66 61 75 6c 74 20 67 61 74 65 77 | e.using.such.IP.as.default.gatew |
| 21220 | 61 79 29 2c 20 74 68 65 6e 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 66 6f 72 20 2a 2a 62 72 | ay),.then.rules.defined.for.**br |
| 21240 | 69 64 67 65 20 66 69 72 65 77 61 6c 6c 2a 2a 20 77 6f 6e 27 74 20 6d 61 74 63 68 2c 20 61 6e 64 | idge.firewall**.won't.match,.and |
| 21260 | 20 66 69 72 65 77 61 6c 6c 20 61 6e 61 6c 79 73 69 73 20 63 6f 6e 74 69 6e 75 65 73 20 61 74 20 | .firewall.analysis.continues.at. |
| 21280 | 2a 2a 49 50 20 6c 61 79 65 72 2a 2a 2e 00 2a 2a 4c 65 61 66 32 20 63 6f 6e 66 69 67 75 72 61 74 | **IP.layer**..**Leaf2.configurat |
| 212a0 | 69 6f 6e 3a 2a 2a 00 2a 2a 4c 65 61 66 33 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 2a 2a 00 | ion:**.**Leaf3.configuration:**. |
| 212c0 | 2a 2a 4c 69 6e 75 78 20 73 79 73 74 65 6d 64 2d 6e 65 74 77 6f 72 6b 64 3a 2a 2a 00 2a 2a 4c 6f | **Linux.systemd-networkd:**.**Lo |
| 212e0 | 63 61 6c 20 70 72 65 66 65 72 65 6e 63 65 20 63 68 65 63 6b 2a 2a 00 2a 2a 4c 6f 63 61 6c 20 72 | cal.preference.check**.**Local.r |
| 21300 | 6f 75 74 65 20 63 68 65 63 6b 2a 2a 00 2a 2a 4d 45 44 20 63 68 65 63 6b 2a 2a 00 2a 2a 4d 75 6c | oute.check**.**MED.check**.**Mul |
| 21320 | 74 69 2d 70 61 74 68 20 63 68 65 63 6b 2a 2a 00 2a 2a 4e 6f 64 65 20 31 2a 2a 00 2a 2a 4e 6f 64 | ti-path.check**.**Node.1**.**Nod |
| 21340 | 65 20 31 3a 2a 2a 00 2a 2a 4e 6f 64 65 20 32 2a 2a 00 2a 2a 4e 6f 64 65 20 32 3a 2a 2a 00 2a 2a | e.1:**.**Node.2**.**Node.2:**.** |
| 21360 | 4e 6f 64 65 31 3a 2a 2a 00 2a 2a 4e 6f 64 65 32 3a 2a 2a 00 2a 2a 4f 50 54 49 4f 4e 41 4c 3a 2a | Node1:**.**Node2:**.**OPTIONAL:* |
| 21380 | 2a 20 45 78 63 6c 75 64 65 20 49 6e 74 65 72 2d 56 4c 41 4e 20 74 72 61 66 66 69 63 20 28 62 65 | *.Exclude.Inter-VLAN.traffic.(be |
| 213a0 | 74 77 65 65 6e 20 56 4c 41 4e 31 30 20 61 6e 64 20 56 4c 41 4e 31 31 29 20 66 72 6f 6d 20 50 42 | tween.VLAN10.and.VLAN11).from.PB |
| 213c0 | 52 00 2a 2a 4f 53 50 46 20 6e 65 74 77 6f 72 6b 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2a 2a | R.**OSPF.network.routing.table** |
| 213e0 | 20 e2 80 93 20 69 6e 63 6c 75 64 65 73 20 61 20 6c 69 73 74 20 6f 66 20 61 63 71 75 69 72 65 64 | .....includes.a.list.of.acquired |
| 21400 | 20 72 6f 75 74 65 73 20 66 6f 72 20 61 6c 6c 20 61 63 63 65 73 73 69 62 6c 65 20 6e 65 74 77 6f | .routes.for.all.accessible.netwo |
| 21420 | 72 6b 73 20 28 6f 72 20 61 67 67 72 65 67 61 74 65 64 20 61 72 65 61 20 72 61 6e 67 65 73 29 20 | rks.(or.aggregated.area.ranges). |
| 21440 | 6f 66 20 4f 53 50 46 20 73 79 73 74 65 6d 2e 20 22 49 41 22 20 66 6c 61 67 20 6d 65 61 6e 73 20 | of.OSPF.system.."IA".flag.means. |
| 21460 | 74 68 61 74 20 72 6f 75 74 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 69 73 20 69 6e 20 74 68 65 | that.route.destination.is.in.the |
| 21480 | 20 61 72 65 61 20 74 6f 20 77 68 69 63 68 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 6e 6f 74 | .area.to.which.the.router.is.not |
| 214a0 | 20 63 6f 6e 6e 65 63 74 65 64 2c 20 69 2e 65 2e 20 69 74 e2 80 99 73 20 61 6e 20 69 6e 74 65 72 | .connected,.i.e..it...s.an.inter |
| 214c0 | 2d 61 72 65 61 20 70 61 74 68 2e 20 49 6e 20 73 71 75 61 72 65 20 62 72 61 63 6b 65 74 73 20 61 | -area.path..In.square.brackets.a |
| 214e0 | 20 73 75 6d 6d 61 72 79 20 6d 65 74 72 69 63 20 66 6f 72 20 61 6c 6c 20 6c 69 6e 6b 73 20 74 68 | .summary.metric.for.all.links.th |
| 21500 | 72 6f 75 67 68 20 77 68 69 63 68 20 61 20 70 61 74 68 20 6c 69 65 73 20 74 6f 20 74 68 69 73 20 | rough.which.a.path.lies.to.this. |
| 21520 | 6e 65 74 77 6f 72 6b 20 69 73 20 73 70 65 63 69 66 69 65 64 2e 20 22 76 69 61 22 20 70 72 65 66 | network.is.specified.."via".pref |
| 21540 | 69 78 20 64 65 66 69 6e 65 73 20 61 20 72 6f 75 74 65 72 2d 67 61 74 65 77 61 79 2c 20 69 2e 65 | ix.defines.a.router-gateway,.i.e |
| 21560 | 2e 20 74 68 65 20 66 69 72 73 74 20 72 6f 75 74 65 72 20 6f 6e 20 74 68 65 20 77 61 79 20 74 6f | ..the.first.router.on.the.way.to |
| 21580 | 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 28 6e 65 78 74 20 68 6f 70 29 2e 20 2a 2a 4f | .the.destination.(next.hop)..**O |
| 215a0 | 53 50 46 20 72 6f 75 74 65 72 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2a 2a 20 e2 80 93 20 69 | SPF.router.routing.table**.....i |
| 215c0 | 6e 63 6c 75 64 65 73 20 61 20 6c 69 73 74 20 6f 66 20 61 63 71 75 69 72 65 64 20 72 6f 75 74 65 | ncludes.a.list.of.acquired.route |
| 215e0 | 73 20 74 6f 20 61 6c 6c 20 61 63 63 65 73 73 69 62 6c 65 20 41 42 52 73 20 61 6e 64 20 41 53 42 | s.to.all.accessible.ABRs.and.ASB |
| 21600 | 52 73 2e 20 2a 2a 4f 53 50 46 20 65 78 74 65 72 6e 61 6c 20 72 6f 75 74 69 6e 67 20 74 61 62 6c | Rs..**OSPF.external.routing.tabl |
| 21620 | 65 2a 2a 20 e2 80 93 20 69 6e 63 6c 75 64 65 73 20 61 20 6c 69 73 74 20 6f 66 20 61 63 71 75 69 | e**.....includes.a.list.of.acqui |
| 21640 | 72 65 64 20 72 6f 75 74 65 73 20 74 68 61 74 20 61 72 65 20 65 78 74 65 72 6e 61 6c 20 74 6f 20 | red.routes.that.are.external.to. |
| 21660 | 74 68 65 20 4f 53 50 46 20 70 72 6f 63 65 73 73 2e 20 22 45 22 20 66 6c 61 67 20 70 6f 69 6e 74 | the.OSPF.process.."E".flag.point |
| 21680 | 73 20 74 6f 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6c 69 6e 6b 20 6d 65 74 72 69 63 20 74 79 | s.to.the.external.link.metric.ty |
| 216a0 | 70 65 20 28 45 31 20 e2 80 93 20 6d 65 74 72 69 63 20 74 79 70 65 20 31 2c 20 45 32 20 e2 80 93 | pe.(E1.....metric.type.1,.E2.... |
| 216c0 | 20 6d 65 74 72 69 63 20 74 79 70 65 20 32 29 2e 20 45 78 74 65 72 6e 61 6c 20 6c 69 6e 6b 20 6d | .metric.type.2)..External.link.m |
| 216e0 | 65 74 72 69 63 20 69 73 20 70 72 69 6e 74 65 64 20 69 6e 20 74 68 65 20 22 3c 6d 65 74 72 69 63 | etric.is.printed.in.the."<metric |
| 21700 | 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 20 77 68 69 63 68 20 61 64 76 65 72 74 69 73 65 64 20 | .of.the.router.which.advertised. |
| 21720 | 74 68 65 20 6c 69 6e 6b 3e 2f 3c 6c 69 6e 6b 20 6d 65 74 72 69 63 3e 22 20 66 6f 72 6d 61 74 2e | the.link>/<link.metric>".format. |
| 21740 | 00 2a 2a 4f 6e 65 20 67 61 74 65 77 61 79 3a 2a 2a 00 2a 2a 4f 72 69 67 69 6e 20 63 68 65 63 6b | .**One.gateway:**.**Origin.check |
| 21760 | 2a 2a 00 2a 2a 4f 75 74 70 75 74 20 28 42 72 69 64 67 65 29 2a 2a 3a 20 73 74 61 67 65 20 77 68 | **.**Output.(Bridge)**:.stage.wh |
| 21780 | 65 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 65 73 20 66 72 6f 6d | ere.traffic.that.originates.from |
| 217a0 | 20 74 68 65 20 62 72 69 64 67 65 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 | .the.bridge.itself.can.be.filter |
| 217c0 | 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 3a 00 2a 2a 4f 75 74 70 75 74 20 46 69 6c 74 | ed.and.controlled:.**Output.Filt |
| 217e0 | 65 72 2a 2a 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 | er**:.``set.firewall.[ipv4.|.ipv |
| 21800 | 36 5d 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 2a 2a 4f 75 74 70 75 74 | 6].output.filter....``..**Output |
| 21820 | 20 46 69 6c 74 65 72 2a 2a 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 6f | .Filter**:.``set.firewall.ipv4.o |
| 21840 | 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 20 52 75 6c 65 73 20 64 65 66 69 6e 65 | utput.filter....``..Rules.define |
| 21860 | 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 | d.in.this.section.are.processed. |
| 21880 | 61 66 74 65 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 75 62 73 79 73 | after.connection.tracking.subsys |
| 218a0 | 74 65 6d 2e 00 2a 2a 4f 75 74 70 75 74 20 46 69 6c 74 65 72 2a 2a 3a 20 60 60 73 65 74 20 66 69 | tem..**Output.Filter**:.``set.fi |
| 218c0 | 72 65 77 61 6c 6c 20 69 70 76 36 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e | rewall.ipv6.output.filter....``. |
| 218e0 | 20 52 75 6c 65 73 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 61 | .Rules.defined.in.this.section.a |
| 21900 | 72 65 20 70 72 6f 63 65 73 73 65 64 20 61 66 74 65 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 | re.processed.after.connection.tr |
| 21920 | 61 63 6b 69 6e 67 20 73 75 62 73 79 73 74 65 6d 2e 00 2a 2a 4f 75 74 70 75 74 20 50 72 65 72 6f | acking.subsystem..**Output.Prero |
| 21940 | 75 74 69 6e 67 2a 2a 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 | uting**:.``set.firewall.[ipv4.|. |
| 21960 | 69 70 76 36 5d 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 20 41 73 20 64 65 | ipv6].output.filter....``..As.de |
| 21980 | 73 63 72 69 62 65 64 20 69 6e 20 2a 2a 50 72 65 72 6f 75 74 69 6e 67 2a 2a 2c 20 72 75 6c 65 73 | scribed.in.**Prerouting**,.rules |
| 219a0 | 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 61 72 65 20 70 72 6f | .defined.in.this.section.are.pro |
| 219c0 | 63 65 73 73 65 64 20 62 65 66 6f 72 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e | cessed.before.connection.trackin |
| 219e0 | 67 20 73 75 62 73 79 73 74 65 6d 2e 00 2a 2a 4f 75 74 70 75 74 20 50 72 65 72 6f 75 74 69 6e 67 | g.subsystem..**Output.Prerouting |
| 21a00 | 2a 2a 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 6f 75 74 70 75 74 20 72 | **:.``set.firewall.ipv4.output.r |
| 21a20 | 61 77 20 2e 2e 2e 60 60 2e 20 41 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 2a 2a 50 72 65 72 | aw....``..As.described.in.**Prer |
| 21a40 | 6f 75 74 69 6e 67 2a 2a 2c 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 69 73 20 | outing**,.rules.defined.in.this. |
| 21a60 | 73 65 63 74 69 6f 6e 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 62 65 66 6f 72 65 20 63 6f 6e | section.are.processed.before.con |
| 21a80 | 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 75 62 73 79 73 74 65 6d 2e 00 2a 2a 4f 75 | nection.tracking.subsystem..**Ou |
| 21aa0 | 74 70 75 74 20 50 72 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c | tput.Prerouting**:.``set.firewal |
| 21ac0 | 6c 20 69 70 76 36 20 6f 75 74 70 75 74 20 72 61 77 20 2e 2e 2e 60 60 2e 20 41 73 20 64 65 73 63 | l.ipv6.output.raw....``..As.desc |
| 21ae0 | 72 69 62 65 64 20 69 6e 20 2a 2a 50 72 65 72 6f 75 74 69 6e 67 2a 2a 2c 20 72 75 6c 65 73 20 64 | ribed.in.**Prerouting**,.rules.d |
| 21b00 | 65 66 69 6e 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 61 72 65 20 70 72 6f 63 65 | efined.in.this.section.are.proce |
| 21b20 | 73 73 65 64 20 62 65 66 6f 72 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 | ssed.before.connection.tracking. |
| 21b40 | 73 75 62 73 79 73 74 65 6d 2e 00 2a 2a 4f 75 74 70 75 74 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 | subsystem..**Output**:.stage.whe |
| 21b60 | 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 69 73 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 | re.traffic.that.is.originated.by |
| 21b80 | 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 | .the.router.itself.can.be.filter |
| 21ba0 | 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 42 61 72 65 20 69 6e 20 6d 69 6e 64 20 | ed.and.controlled..Bare.in.mind. |
| 21bc0 | 74 68 61 74 20 74 68 69 73 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 61 20 6e 65 77 20 63 | that.this.traffic.can.be.a.new.c |
| 21be0 | 6f 6e 6e 65 63 74 69 6f 6e 20 6f 72 69 67 69 6e 74 65 64 20 62 79 20 61 20 69 6e 74 65 72 6e 61 | onnection.originted.by.a.interna |
| 21c00 | 6c 20 70 72 6f 63 65 73 73 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 56 79 4f 53 20 72 6f 75 74 65 72 | l.process.running.on.VyOS.router |
| 21c20 | 2c 20 73 75 63 68 20 61 73 20 4e 54 50 2c 20 6f 72 20 63 61 6e 20 62 65 20 61 20 72 65 73 70 6f | ,.such.as.NTP,.or.can.be.a.respo |
| 21c40 | 6e 73 65 20 74 6f 20 74 72 61 66 66 69 63 20 72 65 63 65 69 76 65 64 20 65 78 74 65 72 6e 61 6c | nse.to.traffic.received.external |
| 21c60 | 79 20 74 68 72 6f 75 67 68 20 2a 2a 69 6e 70 75 74 74 2a 2a 20 28 66 6f 72 20 65 78 61 6d 70 6c | y.through.**inputt**.(for.exampl |
| 21c80 | 65 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 61 6e 20 73 73 68 20 6c 6f 67 69 6e 20 61 74 74 65 6d | e.response.to.an.ssh.login.attem |
| 21ca0 | 70 74 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 29 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 | pt.to.the.router)..This.includes |
| 21cc0 | 20 69 70 76 34 20 61 6e 64 20 69 70 76 36 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 | .ipv4.and.ipv6.filtering.rules,. |
| 21ce0 | 64 65 66 69 6e 65 64 20 69 6e 3a 00 2a 2a 4f 75 74 70 75 74 2a 2a 3a 20 73 74 61 67 65 20 77 68 | defined.in:.**Output**:.stage.wh |
| 21d00 | 65 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 65 73 20 66 72 6f 6d | ere.traffic.that.originates.from |
| 21d20 | 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 | .the.router.itself.can.be.filter |
| 21d40 | 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 42 65 61 72 20 69 6e 20 6d 69 6e 64 20 | ed.and.controlled..Bear.in.mind. |
| 21d60 | 74 68 61 74 20 74 68 69 73 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 61 20 6e 65 77 20 63 | that.this.traffic.can.be.a.new.c |
| 21d80 | 6f 6e 6e 65 63 74 69 6f 6e 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 61 20 69 6e 74 65 72 6e | onnection.originated.by.a.intern |
| 21da0 | 61 6c 20 70 72 6f 63 65 73 73 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 56 79 4f 53 20 72 6f 75 74 65 | al.process.running.on.VyOS.route |
| 21dc0 | 72 2c 20 73 75 63 68 20 61 73 20 4e 54 50 2c 20 6f 72 20 61 20 72 65 73 70 6f 6e 73 65 20 74 6f | r,.such.as.NTP,.or.a.response.to |
| 21de0 | 20 74 72 61 66 66 69 63 20 72 65 63 65 69 76 65 64 20 65 78 74 65 72 6e 61 6c 6c 79 20 74 68 72 | .traffic.received.externally.thr |
| 21e00 | 6f 75 67 68 20 2a 2a 69 6e 70 75 74 2a 2a 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 20 72 65 73 70 | ough.**input**.(for.example.resp |
| 21e20 | 6f 6e 73 65 20 74 6f 20 61 6e 20 73 73 68 20 6c 6f 67 69 6e 20 61 74 74 65 6d 70 74 20 74 6f 20 | onse.to.an.ssh.login.attempt.to. |
| 21e40 | 74 68 65 20 72 6f 75 74 65 72 29 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 69 70 76 34 20 | the.router)..This.includes.ipv4. |
| 21e60 | 61 6e 64 20 69 70 76 36 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 64 65 66 69 6e 65 | and.ipv6.filtering.rules,.define |
| 21e80 | 64 20 69 6e 3a 00 2a 2a 4f 75 74 70 75 74 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 | d.in:.**Output**:.stage.where.tr |
| 21ea0 | 61 66 66 69 63 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 65 73 20 66 72 6f 6d 20 74 68 65 20 72 | affic.that.originates.from.the.r |
| 21ec0 | 6f 75 74 65 72 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 | outer.itself.can.be.filtered.and |
| 21ee0 | 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 42 65 61 72 20 69 6e 20 6d 69 6e 64 20 74 68 61 74 20 74 | .controlled..Bear.in.mind.that.t |
| 21f00 | 68 69 73 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 61 20 6e 65 77 20 63 6f 6e 6e 65 63 74 | his.traffic.can.be.a.new.connect |
| 21f20 | 69 6f 6e 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 61 20 69 6e 74 65 72 6e 61 6c 20 70 72 6f | ion.originated.by.a.internal.pro |
| 21f40 | 63 65 73 73 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 56 79 4f 53 20 72 6f 75 74 65 72 2c 20 73 75 63 | cess.running.on.VyOS.router,.suc |
| 21f60 | 68 20 61 73 20 4e 54 50 2c 20 6f 72 20 61 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 74 72 61 66 66 | h.as.NTP,.or.a.response.to.traff |
| 21f80 | 69 63 20 72 65 63 65 69 76 65 64 20 65 78 74 65 72 6e 61 6c 6c 79 20 74 68 72 6f 75 67 68 20 2a | ic.received.externally.through.* |
| 21fa0 | 2a 69 6e 70 75 74 2a 2a 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 20 72 65 73 70 6f 6e 73 65 20 74 | *input**.(for.example.response.t |
| 21fc0 | 6f 20 61 6e 20 73 73 68 20 6c 6f 67 69 6e 20 61 74 74 65 6d 70 74 20 74 6f 20 74 68 65 20 72 6f | o.an.ssh.login.attempt.to.the.ro |
| 21fe0 | 75 74 65 72 29 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 69 70 76 34 20 61 6e 64 20 69 70 | uter)..This.includes.ipv4.and.ip |
| 22000 | 76 36 20 72 75 6c 65 73 2c 20 61 6e 64 20 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 73 65 63 74 | v6.rules,.and.two.different.sect |
| 22020 | 69 6f 6e 73 20 61 72 65 20 70 72 65 73 65 6e 74 3a 00 2a 2a 4f 75 74 70 75 74 2a 2a 3a 20 73 74 | ions.are.present:.**Output**:.st |
| 22040 | 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 65 | age.where.traffic.that.originate |
| 22060 | 73 20 66 72 6f 6d 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 | s.from.the.router.itself.can.be. |
| 22080 | 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 42 65 61 72 20 69 6e | filtered.and.controlled..Bear.in |
| 220a0 | 20 6d 69 6e 64 20 74 68 61 74 20 74 68 69 73 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 61 | .mind.that.this.traffic.can.be.a |
| 220c0 | 20 6e 65 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 61 20 | .new.connection.originated.by.a. |
| 220e0 | 69 6e 74 65 72 6e 61 6c 20 70 72 6f 63 65 73 73 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 56 79 4f 53 | internal.process.running.on.VyOS |
| 22100 | 20 72 6f 75 74 65 72 2c 20 73 75 63 68 20 61 73 20 4e 54 50 2c 20 6f 72 20 61 20 72 65 73 70 6f | .router,.such.as.NTP,.or.a.respo |
| 22120 | 6e 73 65 20 74 6f 20 74 72 61 66 66 69 63 20 72 65 63 65 69 76 65 64 20 65 78 74 65 72 6e 61 6c | nse.to.traffic.received.external |
| 22140 | 79 20 74 68 72 6f 75 67 68 20 2a 2a 69 6e 70 75 74 2a 2a 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 | y.through.**input**.(for.example |
| 22160 | 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 61 6e 20 73 73 68 20 6c 6f 67 69 6e 20 61 74 74 65 6d 70 | .response.to.an.ssh.login.attemp |
| 22180 | 74 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 29 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 | t.to.the.router)..This.includes. |
| 221a0 | 69 70 76 34 20 61 6e 64 20 69 70 76 36 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 64 | ipv4.and.ipv6.filtering.rules,.d |
| 221c0 | 65 66 69 6e 65 64 20 69 6e 3a 00 2a 2a 4f 75 74 70 75 74 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 | efined.in:.**Output**:.stage.whe |
| 221e0 | 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 65 73 20 66 72 6f 6d 20 | re.traffic.that.originates.from. |
| 22200 | 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 | the.router.itself.can.be.filtere |
| 22220 | 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 42 65 61 72 20 69 6e 20 6d 69 6e 64 20 74 | d.and.controlled..Bear.in.mind.t |
| 22240 | 68 61 74 20 74 68 69 73 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 61 20 6e 65 77 20 63 6f | hat.this.traffic.can.be.a.new.co |
| 22260 | 6e 6e 65 63 74 69 6f 6e 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 61 20 69 6e 74 65 72 6e 61 | nnection.originated.by.a.interna |
| 22280 | 6c 20 70 72 6f 63 65 73 73 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 56 79 4f 53 20 72 6f 75 74 65 72 | l.process.running.on.VyOS.router |
| 222a0 | 2c 20 73 75 63 68 20 61 73 20 4e 54 50 2c 20 6f 72 20 61 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 | ,.such.as.NTP,.or.a.response.to. |
| 222c0 | 74 72 61 66 66 69 63 20 72 65 63 65 69 76 65 64 20 65 78 74 65 72 6e 61 6c 79 20 74 68 72 6f 75 | traffic.received.externaly.throu |
| 222e0 | 67 68 20 2a 2a 69 6e 70 75 74 74 2a 2a 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 20 72 65 73 70 6f | gh.**inputt**.(for.example.respo |
| 22300 | 6e 73 65 20 74 6f 20 61 6e 20 73 73 68 20 6c 6f 67 69 6e 20 61 74 74 65 6d 70 74 20 74 6f 20 74 | nse.to.an.ssh.login.attempt.to.t |
| 22320 | 68 65 20 72 6f 75 74 65 72 29 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 69 70 76 34 20 61 | he.router)..This.includes.ipv4.a |
| 22340 | 6e 64 20 69 70 76 36 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 64 65 66 69 6e 65 64 | nd.ipv6.filtering.rules,.defined |
| 22360 | 20 69 6e 3a 00 2a 2a 4f 75 74 70 75 74 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 | .in:.**Output**:.stage.where.tra |
| 22380 | 66 66 69 63 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 65 73 20 66 72 6f 6d 20 74 68 65 20 72 6f | ffic.that.originates.from.the.ro |
| 223a0 | 75 74 65 72 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 | uter.itself.can.be.filtered.and. |
| 223c0 | 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 42 65 61 72 20 69 6e 20 6d 69 6e 64 20 74 68 61 74 20 74 68 | controlled..Bear.in.mind.that.th |
| 223e0 | 69 73 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 61 20 6e 65 77 20 63 6f 6e 6e 65 63 74 69 | is.traffic.can.be.a.new.connecti |
| 22400 | 6f 6e 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 61 20 69 6e 74 65 72 6e 61 6c 20 70 72 6f 63 | on.originated.by.a.internal.proc |
| 22420 | 65 73 73 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 74 68 65 20 56 79 4f 53 20 72 6f 75 74 65 72 20 73 | ess.running.on.the.VyOS.router.s |
| 22440 | 75 63 68 20 61 73 20 4e 54 50 2c 20 6f 72 20 61 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 74 72 61 | uch.as.NTP,.or.a.response.to.tra |
| 22460 | 66 66 69 63 20 72 65 63 65 69 76 65 64 20 65 78 74 65 72 6e 61 6c 6c 79 20 74 68 72 6f 75 67 68 | ffic.received.externally.through |
| 22480 | 20 2a 2a 69 6e 70 75 74 2a 2a 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 20 72 65 73 70 6f 6e 73 65 | .**input**.(for.example.response |
| 224a0 | 20 74 6f 20 61 6e 20 73 73 68 20 6c 6f 67 69 6e 20 61 74 74 65 6d 70 74 20 74 6f 20 74 68 65 20 | .to.an.ssh.login.attempt.to.the. |
| 224c0 | 72 6f 75 74 65 72 29 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 69 70 76 34 20 61 6e 64 20 | router)..This.includes.ipv4.and. |
| 224e0 | 69 70 76 36 20 72 75 6c 65 73 2c 20 61 6e 64 20 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 73 65 | ipv6.rules,.and.two.different.se |
| 22500 | 63 74 69 6f 6e 73 20 61 72 65 20 70 72 65 73 65 6e 74 3a 00 2a 2a 50 65 65 72 20 61 64 64 72 65 | ctions.are.present:.**Peer.addre |
| 22520 | 73 73 2a 2a 00 2a 2a 50 65 72 66 6f 72 6d 61 6e 63 65 20 4f 76 65 72 68 65 61 64 73 2a 2a 3a 20 | ss**.**Performance.Overheads**:. |
| 22540 | 54 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 70 72 6f 63 65 73 73 20 63 61 6e 20 69 6e 74 72 | The.translation.process.can.intr |
| 22560 | 6f 64 75 63 65 20 6c 61 74 65 6e 63 79 20 61 6e 64 20 70 6f 74 65 6e 74 69 61 6c 20 70 65 72 66 | oduce.latency.and.potential.perf |
| 22580 | 6f 72 6d 61 6e 63 65 20 62 6f 74 74 6c 65 6e 65 63 6b 73 2c 20 65 73 70 65 63 69 61 6c 6c 79 20 | ormance.bottlenecks,.especially. |
| 225a0 | 75 6e 64 65 72 20 68 69 67 68 20 6c 6f 61 64 2e 00 2a 2a 50 6f 6c 69 63 79 20 52 6f 75 74 65 2a | under.high.load..**Policy.Route* |
| 225c0 | 2a 3a 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 70 6f 6c | *:.rules.defined.under.``set.pol |
| 225e0 | 69 63 79 20 5b 72 6f 75 74 65 20 7c 20 72 6f 75 74 65 36 5d 20 2e 2e 2e 60 60 2e 00 2a 2a 50 6f | icy.[route.|.route6]....``..**Po |
| 22600 | 6c 69 63 79 20 64 65 66 69 6e 69 74 69 6f 6e 3a 2a 2a 00 2a 2a 50 6f 72 74 20 41 6c 6c 6f 63 61 | licy.definition:**.**Port.Alloca |
| 22620 | 74 69 6f 6e 20 4c 69 6d 69 74 73 2a 2a 3a 20 45 61 63 68 20 70 75 62 6c 69 63 20 49 50 20 61 64 | tion.Limits**:.Each.public.IP.ad |
| 22640 | 64 72 65 73 73 20 68 61 73 20 61 20 6c 69 6d 69 74 65 64 20 6e 75 6d 62 65 72 20 6f 66 20 70 6f | dress.has.a.limited.number.of.po |
| 22660 | 72 74 73 2c 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 65 78 68 61 75 73 74 65 64 2c 20 61 66 66 | rts,.which.can.be.exhausted,.aff |
| 22680 | 65 63 74 69 6e 67 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 | ecting.the.ability.to.establish. |
| 226a0 | 6e 65 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 2a 2a 50 6f 72 74 20 43 6f 6e 74 72 6f 6c 20 | new.connections..**Port.Control. |
| 226c0 | 50 72 6f 74 6f 63 6f 6c 2a 2a 3a 20 50 43 50 20 69 73 20 6e 6f 74 20 69 6d 70 6c 65 6d 65 6e 74 | Protocol**:.PCP.is.not.implement |
| 226e0 | 65 64 2e 00 2a 2a 50 6f 73 74 72 6f 75 74 69 6e 67 2a 2a 3a 20 61 73 20 69 6e 20 2a 2a 50 72 65 | ed..**Postrouting**:.as.in.**Pre |
| 22700 | 72 6f 75 74 69 6e 67 2a 2a 2c 20 73 65 76 65 72 61 6c 20 61 63 74 69 6f 6e 73 20 64 65 66 69 6e | routing**,.several.actions.defin |
| 22720 | 65 64 20 69 6e 20 64 69 66 66 65 72 65 6e 74 20 70 61 72 74 73 20 6f 66 20 56 79 4f 53 20 63 6f | ed.in.different.parts.of.VyOS.co |
| 22740 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 72 65 20 70 65 72 66 6f 72 6d 65 64 20 69 6e 20 74 68 69 | nfiguration.are.performed.in.thi |
| 22760 | 73 20 73 74 61 67 65 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 3a 00 2a 2a 50 72 65 72 6f 75 | s.stage..This.includes:.**Prerou |
| 22780 | 74 69 6e 67 20 28 42 72 69 64 67 65 29 2a 2a 3a 20 61 6c 6c 20 70 61 63 6b 65 74 73 20 74 68 61 | ting.(Bridge)**:.all.packets.tha |
| 227a0 | 74 20 61 72 65 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 62 72 69 64 67 65 20 61 72 65 | t.are.received.by.the.bridge.are |
| 227c0 | 20 70 72 6f 63 65 73 73 65 64 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 2c 20 72 65 67 61 72 64 | .processed.in.this.stage,.regard |
| 227e0 | 6c 65 73 73 20 6f 66 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 70 | less.of.the.destination.of.the.p |
| 22800 | 61 63 6b 65 74 2e 20 46 69 72 73 74 20 66 69 6c 74 65 72 73 20 63 61 6e 20 62 65 20 61 70 70 6c | acket..First.filters.can.be.appl |
| 22820 | 69 65 64 20 68 65 72 65 2c 20 61 6e 64 2f 6f 72 20 61 6c 73 6f 20 63 6f 6e 66 69 67 75 72 65 20 | ied.here,.and/or.also.configure. |
| 22840 | 72 75 6c 65 73 20 66 6f 72 20 69 67 6e 6f 72 69 6e 67 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 | rules.for.ignoring.connection.tr |
| 22860 | 61 63 6b 69 6e 67 20 73 79 73 74 65 6d 2c 20 61 6e 64 20 61 6c 73 6f 20 61 70 70 6c 79 20 70 6f | acking.system,.and.also.apply.po |
| 22880 | 6c 69 63 79 20 72 6f 75 74 69 6e 67 20 75 73 69 6e 67 20 60 60 73 65 74 60 60 20 6f 70 74 69 6f | licy.routing.using.``set``.optio |
| 228a0 | 6e 20 77 68 69 6c 65 20 64 65 66 69 6e 69 6e 67 20 74 68 65 20 72 75 6c 65 2e 20 54 68 65 20 72 | n.while.defining.the.rule..The.r |
| 228c0 | 65 6c 65 76 61 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 61 63 74 73 20 | elevant.configuration.that.acts. |
| 228e0 | 69 6e 3a 00 2a 2a 50 72 65 72 6f 75 74 69 6e 67 20 28 42 72 69 64 67 65 29 2a 2a 3a 20 61 6c 6c | in:.**Prerouting.(Bridge)**:.all |
| 22900 | 20 70 61 63 6b 65 74 73 20 74 68 61 74 20 61 72 65 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 | .packets.that.are.received.by.th |
| 22920 | 65 20 62 72 69 64 67 65 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 69 6e 20 74 68 69 73 20 73 | e.bridge.are.processed.in.this.s |
| 22940 | 74 61 67 65 2c 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 64 65 73 74 69 6e 61 74 | tage,.regardless.of.the.destinat |
| 22960 | 69 6f 6e 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 2e 20 46 69 72 73 74 20 66 69 6c 74 65 72 73 | ion.of.the.packet..First.filters |
| 22980 | 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 68 65 72 65 2c 20 61 6e 64 2f 6f 72 20 61 6c 73 | .can.be.applied.here,.and/or.als |
| 229a0 | 6f 20 63 6f 6e 66 69 67 75 72 65 20 72 75 6c 65 73 20 66 6f 72 20 69 67 6e 6f 72 69 6e 67 20 63 | o.configure.rules.for.ignoring.c |
| 229c0 | 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 79 73 74 65 6d 2e 20 54 68 65 20 72 | onnection.tracking.system..The.r |
| 229e0 | 65 6c 65 76 61 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 61 63 74 73 20 | elevant.configuration.that.acts. |
| 22a00 | 69 6e 3a 00 2a 2a 50 72 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 41 6c 6c 20 70 61 63 6b 65 74 73 20 | in:.**Prerouting**:.All.packets. |
| 22a20 | 74 68 61 74 20 61 72 65 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 | that.are.received.by.the.router. |
| 22a40 | 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 2c 20 72 65 67 | are.processed.in.this.stage,.reg |
| 22a60 | 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6f 66 20 74 68 | ardless.of.the.destination.of.th |
| 22a80 | 65 20 70 61 63 6b 65 74 2e 20 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 76 79 6f 73 2d 31 2e 35 | e.packet..Starting.from.vyos-1.5 |
| 22aa0 | 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 34 30 36 31 32 30 30 32 30 2c 20 61 20 6e 65 77 20 73 65 63 | -rolling-202406120020,.a.new.sec |
| 22ac0 | 74 69 6f 6e 20 77 61 73 20 61 64 64 65 64 20 74 6f 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 | tion.was.added.to.firewall.confi |
| 22ae0 | 67 75 72 61 74 69 6f 6e 2e 20 54 68 65 72 65 20 61 72 65 20 73 65 76 65 72 61 6c 20 61 63 74 69 | guration..There.are.several.acti |
| 22b00 | 6f 6e 73 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 69 6e 20 74 68 69 73 20 73 74 61 | ons.that.can.be.done.in.this.sta |
| 22b20 | 67 65 2c 20 61 6e 64 20 63 75 72 72 65 6e 74 6c 79 20 74 68 65 73 65 20 61 63 74 69 6f 6e 73 20 | ge,.and.currently.these.actions. |
| 22b40 | 61 72 65 20 61 6c 73 6f 20 64 65 66 69 6e 65 64 20 69 6e 20 64 69 66 66 65 72 65 6e 74 20 70 61 | are.also.defined.in.different.pa |
| 22b60 | 72 74 73 20 69 6e 20 56 79 4f 53 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 4f 72 64 65 72 | rts.in.VyOS.configuration..Order |
| 22b80 | 20 69 73 20 69 6d 70 6f 72 74 61 6e 74 2c 20 61 6e 64 20 72 65 6c 65 76 61 6e 74 20 63 6f 6e 66 | .is.important,.and.relevant.conf |
| 22ba0 | 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 61 63 74 73 20 69 6e 20 74 68 69 73 20 73 74 61 67 | iguration.that.acts.in.this.stag |
| 22bc0 | 65 20 61 72 65 3a 00 2a 2a 50 72 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 41 6c 6c 20 70 61 63 6b 65 | e.are:.**Prerouting**:.All.packe |
| 22be0 | 74 73 20 74 68 61 74 20 61 72 65 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 | ts.that.are.received.by.the.rout |
| 22c00 | 65 72 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 2c 20 | er.are.processed.in.this.stage,. |
| 22c20 | 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6f 66 | regardless.of.the.destination.of |
| 22c40 | 20 74 68 65 20 70 61 63 6b 65 74 2e 20 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 76 79 6f 73 2d | .the.packet..Starting.from.vyos- |
| 22c60 | 31 2e 35 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 34 30 36 31 32 30 30 32 30 2c 20 61 20 6e 65 77 20 | 1.5-rolling-202406120020,.a.new. |
| 22c80 | 73 65 63 74 69 6f 6e 20 77 61 73 20 61 64 64 65 64 20 74 6f 20 74 68 65 20 66 69 72 65 77 61 6c | section.was.added.to.the.firewal |
| 22ca0 | 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 54 68 65 72 65 20 61 72 65 20 73 65 76 65 72 | l.configuration..There.are.sever |
| 22cc0 | 61 6c 20 61 63 74 69 6f 6e 73 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 69 6e 20 74 | al.actions.that.can.be.done.in.t |
| 22ce0 | 68 69 73 20 73 74 61 67 65 2c 20 61 6e 64 20 63 75 72 72 65 6e 74 6c 79 20 74 68 65 73 65 20 61 | his.stage,.and.currently.these.a |
| 22d00 | 63 74 69 6f 6e 73 20 61 72 65 20 61 6c 73 6f 20 64 65 66 69 6e 65 64 20 69 6e 20 64 69 66 66 65 | ctions.are.also.defined.in.diffe |
| 22d20 | 72 65 6e 74 20 70 61 72 74 73 20 6f 66 20 74 68 65 20 56 79 4f 53 20 63 6f 6e 66 69 67 75 72 61 | rent.parts.of.the.VyOS.configura |
| 22d40 | 74 69 6f 6e 2e 20 4f 72 64 65 72 20 69 73 20 69 6d 70 6f 72 74 61 6e 74 2c 20 61 6e 64 20 74 68 | tion..Order.is.important,.and.th |
| 22d60 | 65 20 72 65 6c 65 76 61 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 61 63 | e.relevant.configuration.that.ac |
| 22d80 | 74 73 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 20 61 72 65 3a 00 2a 2a 50 72 65 72 6f 75 74 69 | ts.in.this.stage.are:.**Prerouti |
| 22da0 | 6e 67 2a 2a 3a 20 73 65 76 65 72 61 6c 20 61 63 74 69 6f 6e 73 20 63 61 6e 20 62 65 20 64 6f 6e | ng**:.several.actions.can.be.don |
| 22dc0 | 65 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 2c 20 61 6e 64 20 63 75 72 72 65 6e 74 6c 79 20 74 | e.in.this.stage,.and.currently.t |
| 22de0 | 68 65 73 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 69 6e 20 64 69 66 66 | hese.actions.are.defined.in.diff |
| 22e00 | 65 72 65 6e 74 20 70 61 72 74 73 20 69 6e 20 56 79 4f 53 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | erent.parts.in.VyOS.configuratio |
| 22e20 | 6e 2e 20 4f 72 64 65 72 20 69 73 20 69 6d 70 6f 72 74 61 6e 74 2c 20 61 6e 64 20 61 6c 6c 20 74 | n..Order.is.important,.and.all.t |
| 22e40 | 68 65 73 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 70 65 72 66 6f 72 6d 65 64 20 62 65 66 6f 72 | hese.actions.are.performed.befor |
| 22e60 | 65 20 61 6e 79 20 61 63 74 69 6f 6e 73 20 64 65 66 69 6e 65 64 20 75 6e 64 65 72 20 60 60 66 69 | e.any.actions.defined.under.``fi |
| 22e80 | 72 65 77 61 6c 6c 60 60 20 73 65 63 74 69 6f 6e 2e 20 52 65 6c 65 76 61 6e 74 20 63 6f 6e 66 69 | rewall``.section..Relevant.confi |
| 22ea0 | 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 61 63 74 73 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 | guration.that.acts.in.this.stage |
| 22ec0 | 20 61 72 65 3a 00 2a 2a 50 72 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 73 65 76 65 72 61 6c 20 61 63 | .are:.**Prerouting**:.several.ac |
| 22ee0 | 74 69 6f 6e 73 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 2c | tions.can.be.done.in.this.stage, |
| 22f00 | 20 61 6e 64 20 63 75 72 72 65 6e 74 6c 79 20 74 68 65 73 65 20 61 63 74 69 6f 6e 73 20 61 72 65 | .and.currently.these.actions.are |
| 22f20 | 20 64 65 66 69 6e 65 64 20 69 6e 20 64 69 66 66 65 72 65 6e 74 20 70 61 72 74 73 20 69 6e 20 76 | .defined.in.different.parts.in.v |
| 22f40 | 79 6f 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 4f 72 64 65 72 20 69 73 20 69 6d 70 6f | yos.configuration..Order.is.impo |
| 22f60 | 72 74 61 6e 74 2c 20 61 6e 64 20 61 6c 6c 20 74 68 65 73 65 20 61 63 74 69 6f 6e 73 20 61 72 65 | rtant,.and.all.these.actions.are |
| 22f80 | 20 70 65 72 66 6f 72 6d 65 64 20 62 65 66 6f 72 65 20 61 6e 79 20 61 63 74 69 6f 6e 73 20 64 65 | .performed.before.any.actions.de |
| 22fa0 | 66 69 6e 65 20 75 6e 64 65 72 20 60 60 66 69 72 65 77 61 6c 6c 60 60 20 73 65 63 74 69 6f 6e 2e | fine.under.``firewall``.section. |
| 22fc0 | 20 52 65 6c 65 76 61 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 61 63 74 | .Relevant.configuration.that.act |
| 22fe0 | 73 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 20 61 72 65 3a 00 2a 2a 50 72 69 6d 61 72 79 2a 2a | s.in.this.stage.are:.**Primary** |
| 23000 | 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 2a 2a 20 46 61 69 72 2f 46 6c | .**Queueing.discipline**.Fair/Fl |
| 23020 | 6f 77 20 51 75 65 75 65 20 43 6f 44 65 6c 2e 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 | ow.Queue.CoDel..**Queueing.disci |
| 23040 | 70 6c 69 6e 65 3a 2a 2a 20 44 65 66 69 63 69 74 20 52 6f 75 6e 64 20 52 6f 62 69 6e 2e 00 2a 2a | pline:**.Deficit.Round.Robin..** |
| 23060 | 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 44 65 66 69 63 69 74 20 6d | Queueing.discipline:**.Deficit.m |
| 23080 | 6f 64 65 2e 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 47 65 | ode..**Queueing.discipline:**.Ge |
| 230a0 | 6e 65 72 61 6c 69 7a 65 64 20 52 61 6e 64 6f 6d 20 45 61 72 6c 79 20 44 72 6f 70 2e 00 2a 2a 51 | neralized.Random.Early.Drop..**Q |
| 230c0 | 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 48 69 65 72 61 72 63 68 69 63 | ueueing.discipline:**.Hierarchic |
| 230e0 | 61 6c 20 54 6f 6b 65 6e 20 42 75 63 6b 65 74 2e 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 | al.Token.Bucket..**Queueing.disc |
| 23100 | 69 70 6c 69 6e 65 3a 2a 2a 20 49 6e 67 72 65 73 73 20 70 6f 6c 69 63 65 72 2e 00 2a 2a 51 75 65 | ipline:**.Ingress.policer..**Que |
| 23120 | 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 50 46 49 46 4f 20 28 50 61 63 6b 65 | ueing.discipline:**.PFIFO.(Packe |
| 23140 | 74 20 46 69 72 73 74 20 49 6e 20 46 69 72 73 74 20 4f 75 74 29 2e 00 2a 2a 51 75 65 75 65 69 6e | t.First.In.First.Out)..**Queuein |
| 23160 | 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 50 52 49 4f 2e 00 2a 2a 51 75 65 75 65 69 6e 67 | g.discipline:**.PRIO..**Queueing |
| 23180 | 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 53 46 51 20 28 53 74 6f 63 68 61 73 74 69 63 20 46 | .discipline:**.SFQ.(Stochastic.F |
| 231a0 | 61 69 72 6e 65 73 73 20 51 75 65 75 69 6e 67 29 2e 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 | airness.Queuing)..**Queueing.dis |
| 231c0 | 63 69 70 6c 69 6e 65 3a 2a 2a 20 54 6f 63 6b 65 6e 20 42 75 63 6b 65 74 20 46 69 6c 74 65 72 2e | cipline:**.Tocken.Bucket.Filter. |
| 231e0 | 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 54 6f 6b 65 6e 20 | .**Queueing.discipline:**.Token. |
| 23200 | 42 75 63 6b 65 74 20 46 69 6c 74 65 72 2e 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 | Bucket.Filter..**Queueing.discip |
| 23220 | 6c 69 6e 65 3a 2a 2a 20 6e 65 74 65 6d 20 28 4e 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 29 | line:**.netem.(Network.Emulator) |
| 23240 | 20 2b 20 54 42 46 20 28 54 6f 6b 65 6e 20 42 75 63 6b 65 74 20 46 69 6c 74 65 72 29 2e 00 2a 2a | .+.TBF.(Token.Bucket.Filter)..** |
| 23260 | 52 31 20 4d 41 43 73 65 63 30 31 2a 2a 00 2a 2a 52 31 20 53 74 61 74 69 63 20 4b 65 79 2a 2a 00 | R1.MACsec01**.**R1.Static.Key**. |
| 23280 | 2a 2a 52 31 2a 2a 00 2a 2a 52 32 20 4d 41 43 73 65 63 30 32 2a 2a 00 2a 2a 52 32 20 53 74 61 74 | **R1**.**R2.MACsec02**.**R2.Stat |
| 232a0 | 69 63 20 4b 65 79 2a 2a 00 2a 2a 52 32 2a 2a 00 2a 2a 52 41 44 49 55 53 20 62 61 73 65 64 20 49 | ic.Key**.**R2**.**RADIUS.based.I |
| 232c0 | 50 20 70 6f 6f 6c 73 20 28 46 72 61 6d 65 64 2d 49 50 2d 41 64 64 72 65 73 73 29 2a 2a 00 2a 2a | P.pools.(Framed-IP-Address)**.** |
| 232e0 | 52 41 44 49 55 53 20 73 65 73 73 69 6f 6e 73 20 6d 61 6e 61 67 65 6d 65 6e 74 20 44 4d 2f 43 6f | RADIUS.sessions.management.DM/Co |
| 23300 | 41 2a 2a 00 2a 2a 52 49 47 48 54 2a 2a 00 2a 2a 52 49 47 48 54 3a 2a 2a 20 2a 20 57 41 4e 20 69 | A**.**RIGHT**.**RIGHT:**.*.WAN.i |
| 23320 | 6e 74 65 72 66 61 63 65 20 6f 6e 20 60 65 74 68 30 2e 32 30 32 60 20 2a 20 60 65 74 68 30 2e 32 | nterface.on.`eth0.202`.*.`eth0.2 |
| 23340 | 30 31 60 20 69 6e 74 65 72 66 61 63 65 20 49 50 3a 20 60 31 37 32 2e 31 38 2e 32 30 32 2e 31 30 | 01`.interface.IP:.`172.18.202.10 |
| 23360 | 2f 32 34 60 20 2a 20 60 76 74 69 31 30 60 20 69 6e 74 65 72 66 61 63 65 20 49 50 3a 20 60 31 30 | /24`.*.`vti10`.interface.IP:.`10 |
| 23380 | 2e 30 2e 30 2e 33 2f 33 31 60 20 2a 20 60 64 75 6d 30 60 20 69 6e 74 65 72 66 61 63 65 20 49 50 | .0.0.3/31`.*.`dum0`.interface.IP |
| 233a0 | 3a 20 60 31 30 2e 30 2e 31 32 2e 31 2f 32 34 60 20 28 66 6f 72 20 74 65 73 74 69 6e 67 20 70 75 | :.`10.0.12.1/24`.(for.testing.pu |
| 233c0 | 72 70 6f 73 65 73 29 00 2a 2a 52 6f 75 74 65 72 20 31 2a 2a 00 2a 2a 52 6f 75 74 65 72 20 32 2a | rposes).**Router.1**.**Router.2* |
| 233e0 | 2a 00 2a 2a 52 6f 75 74 65 72 20 33 2a 2a 00 2a 2a 52 6f 75 74 65 72 2d 49 44 20 63 68 65 63 6b | *.**Router.3**.**Router-ID.check |
| 23400 | 2a 2a 00 2a 2a 52 6f 75 74 65 73 20 6c 65 61 72 6e 65 64 20 61 66 74 65 72 20 72 6f 75 74 69 6e | **.**Routes.learned.after.routin |
| 23420 | 67 20 70 6f 6c 69 63 79 20 61 70 70 6c 69 65 64 3a 2a 2a 00 2a 2a 52 6f 75 74 65 73 20 6c 65 61 | g.policy.applied:**.**Routes.lea |
| 23440 | 72 6e 65 64 20 62 65 66 6f 72 65 20 72 6f 75 74 69 6e 67 20 70 6f 6c 69 63 79 20 61 70 70 6c 69 | rned.before.routing.policy.appli |
| 23460 | 65 64 3a 2a 2a 00 2a 2a 53 57 31 2a 2a 00 2a 2a 53 57 32 2a 2a 00 2a 2a 53 63 61 6c 61 62 69 6c | ed:**.**SW1**.**SW2**.**Scalabil |
| 23480 | 69 74 79 2a 2a 3a 20 49 53 50 73 20 63 61 6e 20 73 75 70 70 6f 72 74 20 6d 6f 72 65 20 63 75 73 | ity**:.ISPs.can.support.more.cus |
| 234a0 | 74 6f 6d 65 72 73 20 77 69 74 68 6f 75 74 20 6e 65 65 64 69 6e 67 20 61 20 70 72 6f 70 6f 72 74 | tomers.without.needing.a.proport |
| 234c0 | 69 6f 6e 61 6c 20 69 6e 63 72 65 61 73 65 20 69 6e 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 | ional.increase.in.public.IP.addr |
| 234e0 | 65 73 73 65 73 2e 00 2a 2a 53 65 63 6f 6e 64 61 72 79 2a 2a 00 2a 2a 53 65 74 74 69 6e 67 20 75 | esses..**Secondary**.**Setting.u |
| 23500 | 70 20 49 50 53 65 63 2a 2a 00 2a 2a 53 65 74 74 69 6e 67 20 75 70 20 74 68 65 20 47 52 45 20 74 | p.IPSec**.**Setting.up.the.GRE.t |
| 23520 | 75 6e 6e 65 6c 2a 2a 00 2a 2a 53 6f 75 72 63 65 20 4e 41 54 2a 2a 3a 20 72 75 6c 65 73 20 64 65 | unnel**.**Source.NAT**:.rules.de |
| 23540 | 66 69 6e 65 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 5b 6e 61 74 20 7c 20 6e 61 74 36 36 5d 20 | fined.under.``set.[nat.|.nat66]. |
| 23560 | 64 65 73 74 69 6e 61 74 69 6f 6e 2e 2e 2e 60 60 2e 00 2a 2a 53 70 69 6e 65 31 20 43 6f 6e 66 69 | destination...``..**Spine1.Confi |
| 23580 | 67 75 72 61 74 69 6f 6e 3a 2a 2a 00 2a 2a 53 74 61 74 75 73 2a 2a 00 2a 2a 54 6f 20 73 65 65 20 | guration:**.**Status**.**To.see. |
| 235a0 | 74 68 65 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 3a 2a 2a 00 2a 2a 54 6f | the.redistributed.routes:**.**To |
| 235c0 | 74 61 6c 20 50 6f 72 74 73 20 41 76 61 69 6c 61 62 6c 65 2a 2a 3a 00 2a 2a 54 72 61 63 65 61 62 | tal.Ports.Available**:.**Traceab |
| 235e0 | 69 6c 69 74 79 20 49 73 73 75 65 73 2a 2a 3a 20 53 69 6e 63 65 20 6d 75 6c 74 69 70 6c 65 20 75 | ility.Issues**:.Since.multiple.u |
| 23600 | 73 65 72 73 20 73 68 61 72 65 20 74 68 65 20 73 61 6d 65 20 70 75 62 6c 69 63 20 49 50 20 61 64 | sers.share.the.same.public.IP.ad |
| 23620 | 64 72 65 73 73 2c 20 74 72 61 63 6b 69 6e 67 20 69 6e 64 69 76 69 64 75 61 6c 20 75 73 65 72 73 | dress,.tracking.individual.users |
| 23640 | 20 66 6f 72 20 73 65 63 75 72 69 74 79 20 61 6e 64 20 6c 65 67 61 6c 20 70 75 72 70 6f 73 65 73 | .for.security.and.legal.purposes |
| 23660 | 20 63 61 6e 20 62 65 20 63 68 61 6c 6c 65 6e 67 69 6e 67 2e 00 2a 2a 54 77 6f 20 67 61 74 65 77 | .can.be.challenging..**Two.gatew |
| 23680 | 61 79 73 20 61 6e 64 20 64 69 66 66 65 72 65 6e 74 20 6d 65 74 72 69 63 73 3a 2a 2a 00 2a 2a 56 | ays.and.different.metrics:**.**V |
| 236a0 | 4c 41 4e 20 49 44 2a 2a 00 2a 2a 56 79 4f 53 20 52 6f 75 74 65 72 3a 2a 2a 00 2a 2a 57 65 69 67 | LAN.ID**.**VyOS.Router:**.**Weig |
| 236c0 | 68 74 20 63 68 65 63 6b 2a 2a 00 2a 2a 61 64 64 72 65 73 73 2a 2a 20 63 61 6e 20 62 65 20 73 70 | ht.check**.**address**.can.be.sp |
| 236e0 | 65 63 69 66 69 65 64 20 6d 75 6c 74 69 70 6c 65 20 74 69 6d 65 73 20 61 73 20 49 50 76 34 20 61 | ecified.multiple.times.as.IPv4.a |
| 23700 | 6e 64 2f 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 2c 20 65 2e 67 2e 20 31 39 32 2e 30 2e 32 | nd/or.IPv6.address,.e.g..192.0.2 |
| 23720 | 2e 31 2f 32 34 20 61 6e 64 2f 6f 72 20 32 30 30 31 3a 64 62 38 3a 3a 31 2f 36 34 00 2a 2a 61 64 | .1/24.and/or.2001:db8::1/64.**ad |
| 23740 | 64 72 65 73 73 2a 2a 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 6d 75 6c 74 69 70 6c | dress**.can.be.specified.multipl |
| 23760 | 65 20 74 69 6d 65 73 2c 20 65 2e 67 2e 20 31 39 32 2e 31 36 38 2e 31 30 30 2e 31 20 61 6e 64 2f | e.times,.e.g..192.168.100.1.and/ |
| 23780 | 6f 72 20 31 39 32 2e 31 36 38 2e 31 30 30 2e 30 2f 32 34 00 2a 2a 61 6c 6c 6f 77 2a 2a 20 2d 20 | or.192.168.100.0/24.**allow**.-. |
| 237a0 | 4e 65 67 6f 74 69 61 74 65 20 49 50 76 34 20 6f 6e 6c 79 20 69 66 20 63 6c 69 65 6e 74 20 72 65 | Negotiate.IPv4.only.if.client.re |
| 237c0 | 71 75 65 73 74 73 20 28 44 65 66 61 75 6c 74 20 76 61 6c 75 65 29 00 2a 2a 61 6c 6c 6f 77 2a 2a | quests.(Default.value).**allow** |
| 237e0 | 20 2d 20 4e 65 67 6f 74 69 61 74 65 20 49 50 76 36 20 6f 6e 6c 79 20 69 66 20 63 6c 69 65 6e 74 | .-.Negotiate.IPv6.only.if.client |
| 23800 | 20 72 65 71 75 65 73 74 73 00 2a 2a 61 6c 6c 6f 77 2d 68 6f 73 74 2d 6e 65 74 77 6f 72 6b 73 2a | .requests.**allow-host-networks* |
| 23820 | 2a 20 63 61 6e 6e 6f 74 20 62 65 20 75 73 65 64 20 77 69 74 68 20 2a 2a 6e 65 74 77 6f 72 6b 2a | *.cannot.be.used.with.**network* |
| 23840 | 2a 00 2a 2a 61 6c 77 61 79 73 2a 2a 3a 20 52 65 73 74 61 72 74 20 63 6f 6e 74 61 69 6e 65 72 73 | *.**always**:.Restart.containers |
| 23860 | 20 77 68 65 6e 20 74 68 65 79 20 65 78 69 74 2c 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 73 | .when.they.exit,.regardless.of.s |
| 23880 | 74 61 74 75 73 2c 20 72 65 74 72 79 69 6e 67 20 69 6e 64 65 66 69 6e 69 74 65 6c 79 00 2a 2a 61 | tatus,.retrying.indefinitely.**a |
| 238a0 | 70 70 65 6e 64 3a 2a 2a 20 54 68 65 20 72 65 6c 61 79 20 61 67 65 6e 74 20 69 73 20 61 6c 6c 6f | ppend:**.The.relay.agent.is.allo |
| 238c0 | 77 65 64 20 74 6f 20 61 70 70 65 6e 64 20 69 74 73 20 6f 77 6e 20 72 65 6c 61 79 20 69 6e 66 6f | wed.to.append.its.own.relay.info |
| 238e0 | 72 6d 61 74 69 6f 6e 20 74 6f 20 61 20 72 65 63 65 69 76 65 64 20 44 48 43 50 20 70 61 63 6b 65 | rmation.to.a.received.DHCP.packe |
| 23900 | 74 2c 20 64 69 73 72 65 67 61 72 64 69 6e 67 20 72 65 6c 61 79 20 69 6e 66 6f 72 6d 61 74 69 6f | t,.disregarding.relay.informatio |
| 23920 | 6e 20 61 6c 72 65 61 64 79 20 70 72 65 73 65 6e 74 20 69 6e 20 74 68 65 20 70 61 63 6b 65 74 2e | n.already.present.in.the.packet. |
| 23940 | 00 2a 2a 61 70 70 6c 69 63 61 74 69 6f 6e 2a 2a 3a 20 61 6e 61 6c 79 7a 65 73 20 72 65 63 65 69 | .**application**:.analyzes.recei |
| 23960 | 76 65 64 20 66 6c 6f 77 20 64 61 74 61 20 69 6e 20 74 68 65 20 63 6f 6e 74 65 78 74 20 6f 66 20 | ved.flow.data.in.the.context.of. |
| 23980 | 69 6e 74 72 75 73 69 6f 6e 20 64 65 74 65 63 74 69 6f 6e 20 6f 72 20 74 72 61 66 66 69 63 20 70 | intrusion.detection.or.traffic.p |
| 239a0 | 72 6f 66 69 6c 69 6e 67 2c 20 66 6f 72 20 65 78 61 6d 70 6c 65 00 2a 2a 61 75 74 6f 2a 2a 20 e2 | rofiling,.for.example.**auto**.. |
| 239c0 | 80 93 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 64 65 74 65 72 6d 69 6e 65 73 20 74 68 65 20 | ...automatically.determines.the. |
| 239e0 | 69 6e 74 65 72 66 61 63 65 20 74 79 70 65 2e 20 2a 2a 77 69 72 65 64 2a 2a 20 e2 80 93 20 65 6e | interface.type..**wired**.....en |
| 23a00 | 61 62 6c 65 73 20 6f 70 74 69 6d 69 73 61 74 69 6f 6e 73 20 66 6f 72 20 77 69 72 65 64 20 69 6e | ables.optimisations.for.wired.in |
| 23a20 | 74 65 72 66 61 63 65 73 2e 20 2a 2a 77 69 72 65 6c 65 73 73 2a 2a 20 e2 80 93 20 64 69 73 61 62 | terfaces..**wireless**.....disab |
| 23a40 | 6c 65 73 20 61 20 6e 75 6d 62 65 72 20 6f 66 20 6f 70 74 69 6d 69 73 61 74 69 6f 6e 73 20 74 68 | les.a.number.of.optimisations.th |
| 23a60 | 61 74 20 61 72 65 20 6f 6e 6c 79 20 63 6f 72 72 65 63 74 20 6f 6e 20 77 69 72 65 64 20 69 6e 74 | at.are.only.correct.on.wired.int |
| 23a80 | 65 72 66 61 63 65 73 2e 20 53 70 65 63 69 66 79 69 6e 67 20 77 69 72 65 6c 65 73 73 20 69 73 20 | erfaces..Specifying.wireless.is. |
| 23aa0 | 61 6c 77 61 79 73 20 63 6f 72 72 65 63 74 2c 20 62 75 74 20 6d 61 79 20 63 61 75 73 65 20 73 6c | always.correct,.but.may.cause.sl |
| 23ac0 | 6f 77 65 72 20 63 6f 6e 76 65 72 67 65 6e 63 65 20 61 6e 64 20 65 78 74 72 61 20 72 6f 75 74 69 | ower.convergence.and.extra.routi |
| 23ae0 | 6e 67 20 74 72 61 66 66 69 63 2e 00 2a 2a 62 61 6e 2d 74 69 6d 65 2a 2a 20 61 6e 64 20 2a 2a 74 | ng.traffic..**ban-time**.and.**t |
| 23b00 | 68 72 65 73 68 6f 6c 64 2a 2a 3a 20 74 68 65 73 65 20 76 61 6c 75 65 73 20 61 72 65 20 6b 65 70 | hreshold**:.these.values.are.kep |
| 23b20 | 74 20 76 65 72 79 20 6c 6f 77 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 65 61 73 69 6c 79 20 69 64 | t.very.low.in.order.to.easily.id |
| 23b40 | 65 6e 74 69 66 79 20 61 6e 64 20 67 65 6e 65 72 61 74 65 20 61 6e 64 20 61 74 74 61 63 6b 2e 00 | entify.and.generate.and.attack.. |
| 23b60 | 2a 2a 62 72 6f 61 64 63 61 73 74 2a 2a 20 e2 80 93 20 62 72 6f 61 64 63 61 73 74 20 49 50 20 61 | **broadcast**.....broadcast.IP.a |
| 23b80 | 64 64 72 65 73 73 65 73 20 64 69 73 74 72 69 62 75 74 69 6f 6e 2e 20 2a 2a 6e 6f 6e 2d 62 72 6f | ddresses.distribution..**non-bro |
| 23ba0 | 61 64 63 61 73 74 2a 2a 20 e2 80 93 20 61 64 64 72 65 73 73 20 64 69 73 74 72 69 62 75 74 69 6f | adcast**.....address.distributio |
| 23bc0 | 6e 20 69 6e 20 4e 42 4d 41 20 6e 65 74 77 6f 72 6b 73 20 74 6f 70 6f 6c 6f 67 79 2e 20 2a 2a 70 | n.in.NBMA.networks.topology..**p |
| 23be0 | 6f 69 6e 74 2d 74 6f 2d 6d 75 6c 74 69 70 6f 69 6e 74 2a 2a 20 e2 80 93 20 61 64 64 72 65 73 73 | oint-to-multipoint**.....address |
| 23c00 | 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 69 6e 20 70 6f 69 6e 74 2d 74 6f 2d 6d 75 6c 74 69 70 | .distribution.in.point-to-multip |
| 23c20 | 6f 69 6e 74 20 6e 65 74 77 6f 72 6b 73 2e 20 2a 2a 70 6f 69 6e 74 2d 74 6f 2d 70 6f 69 6e 74 2a | oint.networks..**point-to-point* |
| 23c40 | 2a 20 e2 80 93 20 61 64 64 72 65 73 73 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 69 6e 20 70 6f | *.....address.distribution.in.po |
| 23c60 | 69 6e 74 2d 74 6f 2d 70 6f 69 6e 74 20 6e 65 74 77 6f 72 6b 73 2e 00 2a 2a 62 72 6f 61 64 63 61 | int-to-point.networks..**broadca |
| 23c80 | 73 74 2a 2a 20 e2 80 93 20 62 72 6f 61 64 63 61 73 74 20 49 50 20 61 64 64 72 65 73 73 65 73 20 | st**.....broadcast.IP.addresses. |
| 23ca0 | 64 69 73 74 72 69 62 75 74 69 6f 6e 2e 20 2a 2a 70 6f 69 6e 74 2d 74 6f 2d 70 6f 69 6e 74 2a 2a | distribution..**point-to-point** |
| 23cc0 | 20 e2 80 93 20 61 64 64 72 65 73 73 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 69 6e 20 70 6f 69 | .....address.distribution.in.poi |
| 23ce0 | 6e 74 2d 74 6f 2d 70 6f 69 6e 74 20 6e 65 74 77 6f 72 6b 73 2e 00 2a 2a 63 61 6c 6c 69 6e 67 2d | nt-to-point.networks..**calling- |
| 23d00 | 73 69 64 2a 2a 20 2d 20 43 61 6c 63 75 6c 61 74 65 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e | sid**.-.Calculate.interface.iden |
| 23d20 | 74 69 66 69 65 72 20 66 72 6f 6d 20 63 61 6c 6c 69 6e 67 2d 73 74 61 74 69 6f 6e 2d 69 64 2e 00 | tifier.from.calling-station-id.. |
| 23d40 | 2a 2a 63 69 73 63 6f 2a 2a 20 e2 80 93 20 61 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 62 65 20 63 | **cisco**.....a.router.will.be.c |
| 23d60 | 6f 6e 73 69 64 65 72 65 64 20 61 73 20 41 42 52 20 69 66 20 69 74 20 68 61 73 20 73 65 76 65 72 | onsidered.as.ABR.if.it.has.sever |
| 23d80 | 61 6c 20 63 6f 6e 66 69 67 75 72 65 64 20 6c 69 6e 6b 73 20 74 6f 20 74 68 65 20 6e 65 74 77 6f | al.configured.links.to.the.netwo |
| 23da0 | 72 6b 73 20 69 6e 20 64 69 66 66 65 72 65 6e 74 20 61 72 65 61 73 20 6f 6e 65 20 6f 66 20 77 68 | rks.in.different.areas.one.of.wh |
| 23dc0 | 69 63 68 20 69 73 20 61 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 2e 20 4d 6f 72 65 6f 76 65 72 | ich.is.a.backbone.area..Moreover |
| 23de0 | 2c 20 74 68 65 20 6c 69 6e 6b 20 74 6f 20 74 68 65 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 | ,.the.link.to.the.backbone.area. |
| 23e00 | 73 68 6f 75 6c 64 20 62 65 20 61 63 74 69 76 65 20 28 77 6f 72 6b 69 6e 67 29 2e 20 2a 2a 69 62 | should.be.active.(working)..**ib |
| 23e20 | 6d 2a 2a 20 e2 80 93 20 69 64 65 6e 74 69 63 61 6c 20 74 6f 20 22 63 69 73 63 6f 22 20 6d 6f 64 | m**.....identical.to."cisco".mod |
| 23e40 | 65 6c 20 62 75 74 20 69 6e 20 74 68 69 73 20 63 61 73 65 20 61 20 62 61 63 6b 62 6f 6e 65 20 61 | el.but.in.this.case.a.backbone.a |
| 23e60 | 72 65 61 20 6c 69 6e 6b 20 6d 61 79 20 6e 6f 74 20 62 65 20 61 63 74 69 76 65 2e 20 2a 2a 73 74 | rea.link.may.not.be.active..**st |
| 23e80 | 61 6e 64 61 72 64 2a 2a 20 e2 80 93 20 72 6f 75 74 65 72 20 68 61 73 20 73 65 76 65 72 61 6c 20 | andard**.....router.has.several. |
| 23ea0 | 61 63 74 69 76 65 20 6c 69 6e 6b 73 20 74 6f 20 64 69 66 66 65 72 65 6e 74 20 61 72 65 61 73 2e | active.links.to.different.areas. |
| 23ec0 | 20 2a 2a 73 68 6f 72 74 63 75 74 2a 2a 20 e2 80 93 20 69 64 65 6e 74 69 63 61 6c 20 74 6f 20 22 | .**shortcut**.....identical.to." |
| 23ee0 | 73 74 61 6e 64 61 72 64 22 20 62 75 74 20 69 6e 20 74 68 69 73 20 6d 6f 64 65 6c 20 61 20 72 6f | standard".but.in.this.model.a.ro |
| 23f00 | 75 74 65 72 20 69 73 20 61 6c 6c 6f 77 65 64 20 74 6f 20 75 73 65 20 61 20 63 6f 6e 6e 65 63 74 | uter.is.allowed.to.use.a.connect |
| 23f20 | 65 64 20 61 72 65 61 73 20 74 6f 70 6f 6c 6f 67 79 20 77 69 74 68 6f 75 74 20 69 6e 76 6f 6c 76 | ed.areas.topology.without.involv |
| 23f40 | 69 6e 67 20 61 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 66 6f 72 20 69 6e 74 65 72 2d 61 72 | ing.a.backbone.area.for.inter-ar |
| 23f60 | 65 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 2a 2a 63 6f 6c 6c 65 63 74 6f 72 2a 2a 3a 20 72 | ea.connections..**collector**:.r |
| 23f80 | 65 73 70 6f 6e 73 69 62 6c 65 20 66 6f 72 20 72 65 63 65 70 74 69 6f 6e 2c 20 73 74 6f 72 61 67 | esponsible.for.reception,.storag |
| 23fa0 | 65 20 61 6e 64 20 70 72 65 2d 70 72 6f 63 65 73 73 69 6e 67 20 6f 66 20 66 6c 6f 77 20 64 61 74 | e.and.pre-processing.of.flow.dat |
| 23fc0 | 61 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 61 20 66 6c 6f 77 20 65 78 70 6f 72 74 65 72 00 | a.received.from.a.flow.exporter. |
| 23fe0 | 2a 2a 64 65 66 61 75 6c 74 2a 2a 20 e2 80 93 20 20 74 68 69 73 20 61 72 65 61 20 77 69 6c 6c 20 | **default**......this.area.will. |
| 24000 | 62 65 20 75 73 65 64 20 66 6f 72 20 73 68 6f 72 74 63 75 74 74 69 6e 67 20 6f 6e 6c 79 20 69 66 | be.used.for.shortcutting.only.if |
| 24020 | 20 41 42 52 20 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 20 61 20 6c 69 6e 6b 20 74 6f 20 74 68 65 | .ABR.does.not.have.a.link.to.the |
| 24040 | 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 6f 72 20 74 68 69 73 20 6c 69 6e 6b 20 77 61 73 20 | .backbone.area.or.this.link.was. |
| 24060 | 6c 6f 73 74 2e 20 2a 2a 65 6e 61 62 6c 65 2a 2a 20 e2 80 93 20 74 68 65 20 61 72 65 61 20 77 69 | lost..**enable**.....the.area.wi |
| 24080 | 6c 6c 20 62 65 20 75 73 65 64 20 66 6f 72 20 73 68 6f 72 74 63 75 74 74 69 6e 67 20 65 76 65 72 | ll.be.used.for.shortcutting.ever |
| 240a0 | 79 20 74 69 6d 65 20 74 68 65 20 72 6f 75 74 65 20 74 68 61 74 20 67 6f 65 73 20 74 68 72 6f 75 | y.time.the.route.that.goes.throu |
| 240c0 | 67 68 20 69 74 20 69 73 20 63 68 65 61 70 65 72 2e 20 2a 2a 64 69 73 61 62 6c 65 2a 2a 20 e2 80 | gh.it.is.cheaper..**disable**... |
| 240e0 | 93 20 74 68 69 73 20 61 72 65 61 20 69 73 20 6e 65 76 65 72 20 75 73 65 64 20 62 79 20 41 42 52 | ..this.area.is.never.used.by.ABR |
| 24100 | 20 66 6f 72 20 72 6f 75 74 65 73 20 73 68 6f 72 74 63 75 74 74 69 6e 67 2e 00 2a 2a 64 65 66 61 | .for.routes.shortcutting..**defa |
| 24120 | 75 6c 74 2a 2a 20 e2 80 93 20 65 6e 61 62 6c 65 20 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 6f | ult**.....enable.split-horizon.o |
| 24140 | 6e 20 77 69 72 65 64 20 69 6e 74 65 72 66 61 63 65 73 2c 20 61 6e 64 20 64 69 73 61 62 6c 65 20 | n.wired.interfaces,.and.disable. |
| 24160 | 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 6f 6e 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 | split-horizon.on.wireless.interf |
| 24180 | 61 63 65 73 2e 20 2a 2a 65 6e 61 62 6c 65 2a 2a 20 e2 80 93 20 65 6e 61 62 6c 65 20 73 70 6c 69 | aces..**enable**.....enable.spli |
| 241a0 | 74 2d 68 6f 72 69 7a 6f 6e 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 73 2e 20 2a 2a | t-horizon.on.this.interfaces..** |
| 241c0 | 64 69 73 61 62 6c 65 2a 2a 20 e2 80 93 20 64 69 73 61 62 6c 65 20 73 70 6c 69 74 2d 68 6f 72 69 | disable**.....disable.split-hori |
| 241e0 | 7a 6f 6e 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 73 2e 00 2a 2a 64 65 6e 79 2a 2a | zon.on.this.interfaces..**deny** |
| 24200 | 20 2d 20 44 6f 20 6e 6f 74 20 6e 65 67 6f 74 69 61 74 65 20 49 50 76 34 00 2a 2a 64 65 6e 79 2a | .-.Do.not.negotiate.IPv4.**deny* |
| 24220 | 2a 20 2d 20 44 6f 20 6e 6f 74 20 6e 65 67 6f 74 69 61 74 65 20 49 50 76 36 20 28 64 65 66 61 75 | *.-.Do.not.negotiate.IPv6.(defau |
| 24240 | 6c 74 20 76 61 6c 75 65 29 00 2a 2a 64 65 6e 79 2a 2a 20 2d 20 64 65 6e 79 20 6d 70 70 65 00 2a | lt.value).**deny**.-.deny.mppe.* |
| 24260 | 2a 64 65 6e 79 2a 2a 3a 20 44 65 6e 79 20 73 65 63 6f 6e 64 20 73 65 73 73 69 6f 6e 20 61 75 74 | *deny**:.Deny.second.session.aut |
| 24280 | 68 6f 72 69 7a 61 74 69 6f 6e 2e 00 2a 2a 64 65 73 74 69 6e 61 74 69 6f 6e 2a 2a 20 2d 20 73 70 | horization..**destination**.-.sp |
| 242a0 | 65 63 69 66 79 20 77 68 69 63 68 20 70 61 63 6b 65 74 73 20 74 68 65 20 74 72 61 6e 73 6c 61 74 | ecify.which.packets.the.translat |
| 242c0 | 69 6f 6e 20 77 69 6c 6c 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 2c 20 6f 6e 6c 79 20 62 61 73 | ion.will.be.applied.to,.only.bas |
| 242e0 | 65 64 20 6f 6e 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 61 6e | ed.on.the.destination.address.an |
| 24300 | 64 2f 6f 72 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 2a 2a 64 | d/or.port.number.configured..**d |
| 24320 | 68 63 70 2a 2a 20 69 6e 74 65 72 66 61 63 65 20 61 64 64 72 65 73 73 20 69 73 20 72 65 63 65 69 | hcp**.interface.address.is.recei |
| 24340 | 76 65 64 20 62 79 20 44 48 43 50 20 66 72 6f 6d 20 61 20 44 48 43 50 20 73 65 72 76 65 72 20 6f | ved.by.DHCP.from.a.DHCP.server.o |
| 24360 | 6e 20 74 68 69 73 20 73 65 67 6d 65 6e 74 2e 00 2a 2a 64 68 63 70 76 36 2a 2a 20 69 6e 74 65 72 | n.this.segment..**dhcpv6**.inter |
| 24380 | 66 61 63 65 20 61 64 64 72 65 73 73 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 20 44 48 43 50 | face.address.is.received.by.DHCP |
| 243a0 | 76 36 20 66 72 6f 6d 20 61 20 44 48 43 50 76 36 20 73 65 72 76 65 72 20 6f 6e 20 74 68 69 73 20 | v6.from.a.DHCPv6.server.on.this. |
| 243c0 | 73 65 67 6d 65 6e 74 2e 00 2a 2a 64 69 73 61 62 6c 65 2a 2a 3a 20 44 69 73 61 62 6c 65 73 20 73 | segment..**disable**:.Disables.s |
| 243e0 | 65 73 73 69 6f 6e 20 63 6f 6e 74 72 6f 6c 2e 00 2a 2a 64 69 73 63 61 72 64 3a 2a 2a 20 52 65 63 | ession.control..**discard:**.Rec |
| 24400 | 65 69 76 65 64 20 70 61 63 6b 65 74 73 20 77 68 69 63 68 20 61 6c 72 65 61 64 79 20 63 6f 6e 74 | eived.packets.which.already.cont |
| 24420 | 61 69 6e 20 72 65 6c 61 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 77 69 6c 6c 20 62 65 20 64 69 | ain.relay.information.will.be.di |
| 24440 | 73 63 61 72 64 65 64 2e 00 2a 2a 64 6f 77 6e 73 74 72 65 61 6d 3a 2a 2a 20 44 6f 77 6e 73 74 72 | scarded..**downstream:**.Downstr |
| 24460 | 65 61 6d 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 74 68 65 20 64 | eam.network.interfaces.are.the.d |
| 24480 | 69 73 74 72 69 62 75 74 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 73 20 74 6f 20 74 68 65 20 64 65 | istribution.interfaces.to.the.de |
| 244a0 | 73 74 69 6e 61 74 69 6f 6e 20 6e 65 74 77 6f 72 6b 73 2c 20 77 68 65 72 65 20 6d 75 6c 74 69 63 | stination.networks,.where.multic |
| 244c0 | 61 73 74 20 63 6c 69 65 6e 74 73 20 63 61 6e 20 6a 6f 69 6e 20 67 72 6f 75 70 73 20 61 6e 64 20 | ast.clients.can.join.groups.and. |
| 244e0 | 72 65 63 65 69 76 65 20 6d 75 6c 74 69 63 61 73 74 20 64 61 74 61 2e 20 4f 6e 65 20 6f 72 20 6d | receive.multicast.data..One.or.m |
| 24500 | 6f 72 65 20 64 6f 77 6e 73 74 72 65 61 6d 20 69 6e 74 65 72 66 61 63 65 73 20 6d 75 73 74 20 62 | ore.downstream.interfaces.must.b |
| 24520 | 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 2a 2a 65 78 70 6f 72 74 65 72 2a 2a 3a 20 61 67 67 72 | e.configured..**exporter**:.aggr |
| 24540 | 65 67 61 74 65 73 20 70 61 63 6b 65 74 73 20 69 6e 74 6f 20 66 6c 6f 77 73 20 61 6e 64 20 65 78 | egates.packets.into.flows.and.ex |
| 24560 | 70 6f 72 74 73 20 66 6c 6f 77 20 72 65 63 6f 72 64 73 20 74 6f 77 61 72 64 73 20 6f 6e 65 20 6f | ports.flow.records.towards.one.o |
| 24580 | 72 20 6d 6f 72 65 20 66 6c 6f 77 20 63 6f 6c 6c 65 63 74 6f 72 73 00 2a 2a 66 69 72 65 77 61 6c | r.more.flow.collectors.**firewal |
| 245a0 | 6c 20 61 6c 6c 2d 70 69 6e 67 2a 2a 20 61 66 66 65 63 74 73 20 6f 6e 6c 79 20 74 6f 20 4c 4f 43 | l.all-ping**.affects.only.to.LOC |
| 245c0 | 41 4c 20 61 6e 64 20 69 74 20 61 6c 77 61 79 73 20 62 65 68 61 76 65 73 20 69 6e 20 74 68 65 20 | AL.and.it.always.behaves.in.the. |
| 245e0 | 6d 6f 73 74 20 72 65 73 74 72 69 63 74 69 76 65 20 77 61 79 00 2a 2a 66 69 72 65 77 61 6c 6c 20 | most.restrictive.way.**firewall. |
| 24600 | 67 6c 6f 62 61 6c 2d 6f 70 74 69 6f 6e 73 20 61 6c 6c 2d 70 69 6e 67 2a 2a 20 61 66 66 65 63 74 | global-options.all-ping**.affect |
| 24620 | 73 20 6f 6e 6c 79 20 74 6f 20 4c 4f 43 41 4c 20 61 6e 64 20 69 74 20 61 6c 77 61 79 73 20 62 65 | s.only.to.LOCAL.and.it.always.be |
| 24640 | 68 61 76 65 73 20 69 6e 20 74 68 65 20 6d 6f 73 74 20 72 65 73 74 72 69 63 74 69 76 65 20 77 61 | haves.in.the.most.restrictive.wa |
| 24660 | 79 00 2a 2a 66 6f 72 77 61 72 64 3a 2a 2a 20 41 6c 6c 20 70 61 63 6b 65 74 73 20 61 72 65 20 66 | y.**forward:**.All.packets.are.f |
| 24680 | 6f 72 77 61 72 64 65 64 2c 20 72 65 6c 61 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 6c 72 65 | orwarded,.relay.information.alre |
| 246a0 | 61 64 79 20 70 72 65 73 65 6e 74 20 77 69 6c 6c 20 62 65 20 69 67 6e 6f 72 65 64 2e 00 2a 2a 69 | ady.present.will.be.ignored..**i |
| 246c0 | 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 20 2d 20 61 70 70 6c 69 63 61 62 6c 65 20 | nbound-interface**.-.applicable. |
| 246e0 | 6f 6e 6c 79 20 74 6f 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 2e 20 | only.to.:ref:`destination-nat`.. |
| 24700 | 49 74 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 68 69 63 | It.configures.the.interface.whic |
| 24720 | 68 20 69 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 69 6e 73 69 64 65 20 74 72 61 66 66 69 63 | h.is.used.for.the.inside.traffic |
| 24740 | 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 72 75 6c 65 20 61 70 70 6c 69 65 73 20 74 6f | .the.translation.rule.applies.to |
| 24760 | 2e 00 2a 2a 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 20 2d 20 61 70 70 6c 69 63 | ..**inbound-interface**.-.applic |
| 24780 | 61 62 6c 65 20 6f 6e 6c 79 20 74 6f 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e | able.only.to.:ref:`destination-n |
| 247a0 | 61 74 60 2e 20 49 74 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 | at`..It.configures.the.interface |
| 247c0 | 20 77 68 69 63 68 20 69 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 69 6e 73 69 64 65 20 74 72 | .which.is.used.for.the.inside.tr |
| 247e0 | 61 66 66 69 63 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 72 75 6c 65 20 61 70 70 6c 69 | affic.the.translation.rule.appli |
| 24800 | 65 73 20 74 6f 2e 20 49 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 73 2c 20 69 6e 76 65 72 74 65 | es.to..Interface.groups,.inverte |
| 24820 | 64 20 73 65 6c 65 63 74 69 6f 6e 20 61 6e 64 20 77 69 6c 64 63 61 72 64 2c 20 61 72 65 20 61 6c | d.selection.and.wildcard,.are.al |
| 24840 | 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 2a 2a 69 70 76 34 2d 61 64 64 72 2a 2a 20 2d 20 43 61 | so.supported..**ipv4-addr**.-.Ca |
| 24860 | 6c 63 75 6c 61 74 65 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 66 72 6f | lculate.interface.identifier.fro |
| 24880 | 6d 20 49 50 76 34 20 61 64 64 72 65 73 73 2e 00 2a 2a 6c 32 2a 2a 3a 20 49 74 20 6d 65 61 6e 73 | m.IPv4.address..**l2**:.It.means |
| 248a0 | 20 74 68 61 74 20 63 6c 69 65 6e 74 73 20 61 72 65 20 6f 6e 20 73 61 6d 65 20 6e 65 74 77 6f 72 | .that.clients.are.on.same.networ |
| 248c0 | 6b 20 77 68 65 72 65 20 69 6e 74 65 72 66 61 63 65 20 69 73 2e 2a 2a 28 64 65 66 61 75 6c 74 29 | k.where.interface.is.**(default) |
| 248e0 | 2a 2a 00 2a 2a 6c 33 2a 2a 3a 20 49 74 20 6d 65 61 6e 73 20 74 68 61 74 20 63 6c 69 65 6e 74 20 | **.**l3**:.It.means.that.client. |
| 24900 | 61 72 65 20 62 65 68 69 6e 64 20 73 6f 6d 65 20 72 6f 75 74 65 72 2e 00 2a 2a 6c 61 79 65 72 32 | are.behind.some.router..**layer2 |
| 24920 | 2a 2a 20 2d 20 55 73 65 73 20 58 4f 52 20 6f 66 20 68 61 72 64 77 61 72 65 20 4d 41 43 20 61 64 | **.-.Uses.XOR.of.hardware.MAC.ad |
| 24940 | 64 72 65 73 73 65 73 20 61 6e 64 20 70 61 63 6b 65 74 20 74 79 70 65 20 49 44 20 66 69 65 6c 64 | dresses.and.packet.type.ID.field |
| 24960 | 20 74 6f 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 68 61 73 68 2e 20 54 68 65 20 66 6f 72 6d 75 | .to.generate.the.hash..The.formu |
| 24980 | 6c 61 20 69 73 00 2a 2a 6c 61 79 65 72 32 2b 33 2a 2a 20 2d 20 54 68 69 73 20 70 6f 6c 69 63 79 | la.is.**layer2+3**.-.This.policy |
| 249a0 | 20 75 73 65 73 20 61 20 63 6f 6d 62 69 6e 61 74 69 6f 6e 20 6f 66 20 6c 61 79 65 72 32 20 61 6e | .uses.a.combination.of.layer2.an |
| 249c0 | 64 20 6c 61 79 65 72 33 20 70 72 6f 74 6f 63 6f 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f | d.layer3.protocol.information.to |
| 249e0 | 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 68 61 73 68 2e 20 55 73 65 73 20 58 4f 52 20 6f 66 20 | .generate.the.hash..Uses.XOR.of. |
| 24a00 | 68 61 72 64 77 61 72 65 20 4d 41 43 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 49 50 20 61 64 | hardware.MAC.addresses.and.IP.ad |
| 24a20 | 64 72 65 73 73 65 73 20 74 6f 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 68 61 73 68 2e 20 54 68 | dresses.to.generate.the.hash..Th |
| 24a40 | 65 20 66 6f 72 6d 75 6c 61 20 69 73 3a 00 2a 2a 6c 61 79 65 72 33 2b 34 2a 2a 20 2d 20 54 68 69 | e.formula.is:.**layer3+4**.-.Thi |
| 24a60 | 73 20 70 6f 6c 69 63 79 20 75 73 65 73 20 75 70 70 65 72 20 6c 61 79 65 72 20 70 72 6f 74 6f 63 | s.policy.uses.upper.layer.protoc |
| 24a80 | 6f 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2c 20 77 68 65 6e 20 61 76 61 69 6c 61 62 6c 65 2c 20 | ol.information,.when.available,. |
| 24aa0 | 74 6f 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 68 61 73 68 2e 20 54 68 69 73 20 61 6c 6c 6f 77 | to.generate.the.hash..This.allow |
| 24ac0 | 73 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 6e 65 | s.for.traffic.to.a.particular.ne |
| 24ae0 | 74 77 6f 72 6b 20 70 65 65 72 20 74 6f 20 73 70 61 6e 20 6d 75 6c 74 69 70 6c 65 20 73 6c 61 76 | twork.peer.to.span.multiple.slav |
| 24b00 | 65 73 2c 20 61 6c 74 68 6f 75 67 68 20 61 20 73 69 6e 67 6c 65 20 63 6f 6e 6e 65 63 74 69 6f 6e | es,.although.a.single.connection |
| 24b20 | 20 77 69 6c 6c 20 6e 6f 74 20 73 70 61 6e 20 6d 75 6c 74 69 70 6c 65 20 73 6c 61 76 65 73 2e 00 | .will.not.span.multiple.slaves.. |
| 24b40 | 2a 2a 6c 65 66 74 2a 2a 00 2a 2a 6c 65 76 65 6c 2d 31 2a 2a 20 2d 20 41 63 74 20 61 73 20 61 20 | **left**.**level-1**.-.Act.as.a. |
| 24b60 | 73 74 61 74 69 6f 6e 20 28 4c 65 76 65 6c 20 31 29 20 72 6f 75 74 65 72 20 6f 6e 6c 79 2e 00 2a | station.(Level.1).router.only..* |
| 24b80 | 2a 6c 65 76 65 6c 2d 31 2a 2a 20 2d 20 4c 65 76 65 6c 2d 31 20 6f 6e 6c 79 20 61 64 6a 61 63 65 | *level-1**.-.Level-1.only.adjace |
| 24ba0 | 6e 63 69 65 73 20 61 72 65 20 66 6f 72 6d 65 64 2e 00 2a 2a 6c 65 76 65 6c 2d 31 2d 32 2a 2a 20 | ncies.are.formed..**level-1-2**. |
| 24bc0 | 2d 20 41 63 74 20 61 73 20 61 20 73 74 61 74 69 6f 6e 20 28 4c 65 76 65 6c 20 31 29 20 72 6f 75 | -.Act.as.a.station.(Level.1).rou |
| 24be0 | 74 65 72 20 61 6e 64 20 61 72 65 61 20 28 4c 65 76 65 6c 20 32 29 20 72 6f 75 74 65 72 2e 00 2a | ter.and.area.(Level.2).router..* |
| 24c00 | 2a 6c 65 76 65 6c 2d 31 2d 32 2a 2a 20 2d 20 4c 65 76 65 6c 2d 31 2d 32 20 61 64 6a 61 63 65 6e | *level-1-2**.-.Level-1-2.adjacen |
| 24c20 | 63 69 65 73 20 61 72 65 20 66 6f 72 6d 65 64 00 2a 2a 6c 65 76 65 6c 2d 32 2d 6f 6e 6c 79 2a 2a | cies.are.formed.**level-2-only** |
| 24c40 | 20 2d 20 41 63 74 20 61 73 20 61 6e 20 61 72 65 61 20 28 4c 65 76 65 6c 20 32 29 20 72 6f 75 74 | .-.Act.as.an.area.(Level.2).rout |
| 24c60 | 65 72 20 6f 6e 6c 79 2e 00 2a 2a 6c 65 76 65 6c 2d 32 2d 6f 6e 6c 79 2a 2a 20 2d 20 4c 65 76 65 | er.only..**level-2-only**.-.Leve |
| 24c80 | 6c 2d 32 20 6f 6e 6c 79 20 61 64 6a 61 63 65 6e 63 69 65 73 20 61 72 65 20 66 6f 72 6d 65 64 00 | l-2.only.adjacencies.are.formed. |
| 24ca0 | 2a 2a 6c 6f 63 61 6c 20 73 69 64 65 20 2d 20 63 6f 6d 6d 61 6e 64 73 2a 2a 00 2a 2a 6c 6f 63 61 | **local.side.-.commands**.**loca |
| 24cc0 | 6c 2a 2a 3a 20 41 6c 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 71 75 65 72 69 65 73 20 | l**:.All.authentication.queries. |
| 24ce0 | 61 72 65 20 68 61 6e 64 6c 65 64 20 6c 6f 63 61 6c 6c 79 2e 00 2a 2a 6c 6f 63 61 6c 2a 2a 3a 20 | are.handled.locally..**local**:. |
| 24d00 | 49 74 20 6d 65 61 6e 73 20 74 68 61 74 20 63 6c 69 65 6e 74 20 61 72 65 20 62 65 68 69 6e 64 20 | It.means.that.client.are.behind. |
| 24d20 | 73 6f 6d 65 20 72 6f 75 74 65 72 2e 00 2a 2a 6c 6f 67 2d 66 61 69 6c 2a 2a 20 49 6e 20 74 68 69 | some.router..**log-fail**.In.thi |
| 24d40 | 73 20 6d 6f 64 65 2c 20 74 68 65 20 72 65 63 75 72 73 6f 72 20 77 69 6c 6c 20 61 74 74 65 6d 70 | s.mode,.the.recursor.will.attemp |
| 24d60 | 74 20 74 6f 20 76 61 6c 69 64 61 74 65 20 61 6c 6c 20 64 61 74 61 20 69 74 20 72 65 74 72 69 65 | t.to.validate.all.data.it.retrie |
| 24d80 | 76 65 73 20 66 72 6f 6d 20 61 75 74 68 6f 72 69 74 61 74 69 76 65 20 73 65 72 76 65 72 73 2c 20 | ves.from.authoritative.servers,. |
| 24da0 | 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 63 6c 69 65 6e 74 27 73 20 44 4e 53 53 45 | regardless.of.the.client's.DNSSE |
| 24dc0 | 43 20 64 65 73 69 72 65 73 2c 20 61 6e 64 20 77 69 6c 6c 20 6c 6f 67 20 74 68 65 20 76 61 6c 69 | C.desires,.and.will.log.the.vali |
| 24de0 | 64 61 74 69 6f 6e 20 72 65 73 75 6c 74 2e 20 54 68 69 73 20 6d 6f 64 65 20 63 61 6e 20 62 65 20 | dation.result..This.mode.can.be. |
| 24e00 | 75 73 65 64 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 65 78 74 72 61 20 6c 6f 61 64 | used.to.determine.the.extra.load |
| 24e20 | 20 61 6e 64 20 61 6d 6f 75 6e 74 20 6f 66 20 70 6f 73 73 69 62 6c 79 20 62 6f 67 75 73 20 61 6e | .and.amount.of.possibly.bogus.an |
| 24e40 | 73 77 65 72 73 20 62 65 66 6f 72 65 20 74 75 72 6e 69 6e 67 20 6f 6e 20 66 75 6c 6c 2d 62 6c 6f | swers.before.turning.on.full-blo |
| 24e60 | 77 6e 20 76 61 6c 69 64 61 74 69 6f 6e 2e 20 52 65 73 70 6f 6e 73 65 73 20 74 6f 20 63 6c 69 65 | wn.validation..Responses.to.clie |
| 24e80 | 6e 74 20 71 75 65 72 69 65 73 20 61 72 65 20 74 68 65 20 73 61 6d 65 20 61 73 20 77 69 74 68 20 | nt.queries.are.the.same.as.with. |
| 24ea0 | 70 72 6f 63 65 73 73 2e 00 2a 2a 6c 6f 6f 6b 75 70 2d 61 2a 2a 20 41 20 46 6c 61 67 2e 00 2a 2a | process..**lookup-a**.A.Flag..** |
| 24ec0 | 6c 6f 6f 6b 75 70 2d 73 72 76 2a 2a 20 53 20 66 6c 61 67 2e 00 2a 2a 6e 61 72 72 6f 77 2a 2a 20 | lookup-srv**.S.flag..**narrow**. |
| 24ee0 | 2d 20 55 73 65 20 6f 6c 64 20 73 74 79 6c 65 20 6f 66 20 54 4c 56 73 20 77 69 74 68 20 6e 61 72 | -.Use.old.style.of.TLVs.with.nar |
| 24f00 | 72 6f 77 20 6d 65 74 72 69 63 2e 00 2a 2a 6e 65 74 2d 61 64 6d 69 6e 2a 2a 3a 20 4e 65 74 77 6f | row.metric..**net-admin**:.Netwo |
| 24f20 | 72 6b 20 6f 70 65 72 61 74 69 6f 6e 73 20 28 69 6e 74 65 72 66 61 63 65 2c 20 66 69 72 65 77 61 | rk.operations.(interface,.firewa |
| 24f40 | 6c 6c 2c 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 73 29 00 2a 2a 6e 65 74 2d 62 69 6e 64 2d 73 | ll,.routing.tables).**net-bind-s |
| 24f60 | 65 72 76 69 63 65 2a 2a 3a 20 42 69 6e 64 20 61 20 73 6f 63 6b 65 74 20 74 6f 20 70 72 69 76 69 | ervice**:.Bind.a.socket.to.privi |
| 24f80 | 6c 65 67 65 64 20 70 6f 72 74 73 20 28 70 6f 72 74 20 6e 75 6d 62 65 72 73 20 6c 65 73 73 20 74 | leged.ports.(port.numbers.less.t |
| 24fa0 | 68 61 6e 20 31 30 32 34 29 00 2a 2a 6e 65 74 2d 72 61 77 2a 2a 3a 20 50 65 72 6d 69 73 73 69 6f | han.1024).**net-raw**:.Permissio |
| 24fc0 | 6e 20 74 6f 20 63 72 65 61 74 65 20 72 61 77 20 6e 65 74 77 6f 72 6b 20 73 6f 63 6b 65 74 73 00 | n.to.create.raw.network.sockets. |
| 24fe0 | 2a 2a 6e 6f 2a 2a 3a 20 44 6f 20 6e 6f 74 20 72 65 73 74 61 72 74 20 63 6f 6e 74 61 69 6e 65 72 | **no**:.Do.not.restart.container |
| 25000 | 73 20 6f 6e 20 65 78 69 74 00 2a 2a 6e 6f 61 75 74 68 2a 2a 3a 20 41 75 74 68 65 6e 74 69 63 61 | s.on.exit.**noauth**:.Authentica |
| 25020 | 74 69 6f 6e 20 64 69 73 61 62 6c 65 64 00 2a 2a 6e 6f 61 75 74 68 2a 2a 3a 20 41 75 74 68 65 6e | tion.disabled.**noauth**:.Authen |
| 25040 | 74 69 63 61 74 69 6f 6e 20 64 69 73 61 62 6c 65 64 2e 00 2a 2a 6f 66 66 2a 2a 20 49 6e 20 74 68 | tication.disabled..**off**.In.th |
| 25060 | 69 73 20 6d 6f 64 65 2c 20 6e 6f 20 44 4e 53 53 45 43 20 70 72 6f 63 65 73 73 69 6e 67 20 74 61 | is.mode,.no.DNSSEC.processing.ta |
| 25080 | 6b 65 73 20 70 6c 61 63 65 2e 20 54 68 65 20 72 65 63 75 72 73 6f 72 20 77 69 6c 6c 20 6e 6f 74 | kes.place..The.recursor.will.not |
| 250a0 | 20 73 65 74 20 74 68 65 20 44 4e 53 53 45 43 20 4f 4b 20 28 44 4f 29 20 62 69 74 20 69 6e 20 74 | .set.the.DNSSEC.OK.(DO).bit.in.t |
| 250c0 | 68 65 20 6f 75 74 67 6f 69 6e 67 20 71 75 65 72 69 65 73 20 61 6e 64 20 77 69 6c 6c 20 69 67 6e | he.outgoing.queries.and.will.ign |
| 250e0 | 6f 72 65 20 74 68 65 20 44 4f 20 61 6e 64 20 41 44 20 62 69 74 73 20 69 6e 20 71 75 65 72 69 65 | ore.the.DO.and.AD.bits.in.querie |
| 25100 | 73 2e 00 2a 2a 6f 6e 2d 66 61 69 6c 75 72 65 2a 2a 3a 20 52 65 73 74 61 72 74 20 63 6f 6e 74 61 | s..**on-failure**:.Restart.conta |
| 25120 | 69 6e 65 72 73 20 77 68 65 6e 20 74 68 65 79 20 65 78 69 74 20 77 69 74 68 20 61 20 6e 6f 6e 2d | iners.when.they.exit.with.a.non- |
| 25140 | 7a 65 72 6f 20 65 78 69 74 20 63 6f 64 65 2c 20 72 65 74 72 79 69 6e 67 20 69 6e 64 65 66 69 6e | zero.exit.code,.retrying.indefin |
| 25160 | 69 74 65 6c 79 20 28 64 65 66 61 75 6c 74 29 00 2a 2a 6f 72 64 65 72 2a 2a 20 52 75 6c 65 20 6f | itely.(default).**order**.Rule.o |
| 25180 | 72 64 65 72 2e 20 52 65 71 75 69 72 65 73 20 60 3c 76 61 6c 75 65 3e 60 2e 00 2a 2a 6f 75 74 62 | rder..Requires.`<value>`..**outb |
| 251a0 | 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 20 2d 20 61 70 70 6c 69 63 61 62 6c 65 20 6f 6e | ound-interface**.-.applicable.on |
| 251c0 | 6c 79 20 74 6f 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 2d 6e 61 74 60 2e 20 49 74 20 63 6f 6e 66 | ly.to.:ref:`source-nat`..It.conf |
| 251e0 | 69 67 75 72 65 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 68 69 63 68 20 69 73 20 75 73 | igures.the.interface.which.is.us |
| 25200 | 65 64 20 66 6f 72 20 74 68 65 20 6f 75 74 73 69 64 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 | ed.for.the.outside.traffic.that. |
| 25220 | 74 68 69 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 72 75 6c 65 20 61 70 70 6c 69 65 73 20 74 6f | this.translation.rule.applies.to |
| 25240 | 2e 00 2a 2a 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 20 2d 20 61 70 70 6c 69 | ..**outbound-interface**.-.appli |
| 25260 | 63 61 62 6c 65 20 6f 6e 6c 79 20 74 6f 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 2d 6e 61 74 60 2e | cable.only.to.:ref:`source-nat`. |
| 25280 | 20 49 74 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 68 69 | .It.configures.the.interface.whi |
| 252a0 | 63 68 20 69 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 6f 75 74 73 69 64 65 20 74 72 61 66 66 | ch.is.used.for.the.outside.traff |
| 252c0 | 69 63 20 74 68 61 74 20 74 68 69 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 72 75 6c 65 20 61 70 | ic.that.this.translation.rule.ap |
| 252e0 | 70 6c 69 65 73 20 74 6f 2e 20 49 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 73 2c 20 69 6e 76 65 | plies.to..Interface.groups,.inve |
| 25300 | 72 74 65 64 20 73 65 6c 65 63 74 69 6f 6e 20 61 6e 64 20 77 69 6c 64 63 61 72 64 2c 20 61 72 65 | rted.selection.and.wildcard,.are |
| 25320 | 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 2a 2a 70 72 65 66 65 72 2a 2a 20 2d 20 41 73 | .also.supported..**prefer**.-.As |
| 25340 | 6b 20 63 6c 69 65 6e 74 20 66 6f 72 20 49 50 76 34 20 6e 65 67 6f 74 69 61 74 69 6f 6e 2c 20 64 | k.client.for.IPv4.negotiation,.d |
| 25360 | 6f 20 6e 6f 74 20 66 61 69 6c 20 69 66 20 69 74 20 72 65 6a 65 63 74 73 00 2a 2a 70 72 65 66 65 | o.not.fail.if.it.rejects.**prefe |
| 25380 | 72 2a 2a 20 2d 20 41 73 6b 20 63 6c 69 65 6e 74 20 66 6f 72 20 49 50 76 36 20 6e 65 67 6f 74 69 | r**.-.Ask.client.for.IPv6.negoti |
| 253a0 | 61 74 69 6f 6e 2c 20 64 6f 20 6e 6f 74 20 66 61 69 6c 20 69 66 20 69 74 20 72 65 6a 65 63 74 73 | ation,.do.not.fail.if.it.rejects |
| 253c0 | 00 2a 2a 70 72 65 66 65 72 2a 2a 20 2d 20 61 73 6b 20 63 6c 69 65 6e 74 20 66 6f 72 20 6d 70 70 | .**prefer**.-.ask.client.for.mpp |
| 253e0 | 65 2c 20 69 66 20 69 74 20 72 65 6a 65 63 74 73 20 64 6f 6e 27 74 20 66 61 69 6c 00 2a 2a 70 72 | e,.if.it.rejects.don't.fail.**pr |
| 25400 | 65 66 65 72 2a 2a 20 2d 20 61 73 6b 20 63 6c 69 65 6e 74 20 66 6f 72 20 6d 70 70 65 2c 20 69 66 | efer**.-.ask.client.for.mppe,.if |
| 25420 | 20 69 74 20 72 65 6a 65 63 74 73 20 64 6f 6e 27 74 20 66 61 69 6c 2e 20 28 44 65 66 61 75 6c 74 | .it.rejects.don't.fail..(Default |
| 25440 | 20 76 61 6c 75 65 29 00 2a 2a 70 72 65 66 65 72 65 6e 63 65 2a 2a 20 52 75 6c 65 20 70 72 65 66 | .value).**preference**.Rule.pref |
| 25460 | 65 72 65 6e 63 65 2e 20 52 65 71 75 69 72 65 73 20 60 3c 76 61 6c 75 65 3e 60 2e 20 44 65 66 61 | erence..Requires.`<value>`..Defa |
| 25480 | 75 6c 74 73 20 74 6f 20 30 20 69 66 20 6e 6f 74 20 73 65 74 2e 00 2a 2a 70 72 6f 63 65 73 73 2a | ults.to.0.if.not.set..**process* |
| 254a0 | 2a 20 57 68 65 6e 20 64 6e 73 73 65 63 20 69 73 20 73 65 74 20 74 6f 20 70 72 6f 63 65 73 73 20 | *.When.dnssec.is.set.to.process. |
| 254c0 | 74 68 65 20 62 65 68 61 76 69 6f 72 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 70 72 6f 63 65 | the.behavior.is.similar.to.proce |
| 254e0 | 73 73 2d 6e 6f 2d 76 61 6c 69 64 61 74 65 2e 20 48 6f 77 65 76 65 72 2c 20 74 68 65 20 72 65 63 | ss-no-validate..However,.the.rec |
| 25500 | 75 72 73 6f 72 20 77 69 6c 6c 20 74 72 79 20 74 6f 20 76 61 6c 69 64 61 74 65 20 74 68 65 20 64 | ursor.will.try.to.validate.the.d |
| 25520 | 61 74 61 20 69 66 20 61 74 20 6c 65 61 73 74 20 6f 6e 65 20 6f 66 20 74 68 65 20 44 4f 20 6f 72 | ata.if.at.least.one.of.the.DO.or |
| 25540 | 20 41 44 20 62 69 74 73 20 69 73 20 73 65 74 20 69 6e 20 74 68 65 20 71 75 65 72 79 3b 20 69 6e | .AD.bits.is.set.in.the.query;.in |
| 25560 | 20 74 68 61 74 20 63 61 73 65 2c 20 69 74 20 77 69 6c 6c 20 73 65 74 20 74 68 65 20 41 44 2d 62 | .that.case,.it.will.set.the.AD-b |
| 25580 | 69 74 20 69 6e 20 74 68 65 20 72 65 73 70 6f 6e 73 65 20 77 68 65 6e 20 74 68 65 20 64 61 74 61 | it.in.the.response.when.the.data |
| 255a0 | 20 69 73 20 76 61 6c 69 64 61 74 65 64 20 73 75 63 63 65 73 73 66 75 6c 6c 79 2c 20 6f 72 20 73 | .is.validated.successfully,.or.s |
| 255c0 | 65 6e 64 20 53 45 52 56 46 41 49 4c 20 77 68 65 6e 20 74 68 65 20 76 61 6c 69 64 61 74 69 6f 6e | end.SERVFAIL.when.the.validation |
| 255e0 | 20 63 6f 6d 65 73 20 75 70 20 62 6f 67 75 73 2e 00 2a 2a 70 72 6f 63 65 73 73 2d 6e 6f 2d 76 61 | .comes.up.bogus..**process-no-va |
| 25600 | 6c 69 64 61 74 65 2a 2a 20 49 6e 20 74 68 69 73 20 6d 6f 64 65 20 74 68 65 20 72 65 63 75 72 73 | lidate**.In.this.mode.the.recurs |
| 25620 | 6f 72 20 61 63 74 73 20 61 73 20 61 20 22 73 65 63 75 72 69 74 79 20 61 77 61 72 65 2c 20 6e 6f | or.acts.as.a."security.aware,.no |
| 25640 | 6e 2d 76 61 6c 69 64 61 74 69 6e 67 22 20 6e 61 6d 65 73 65 72 76 65 72 2c 20 6d 65 61 6e 69 6e | n-validating".nameserver,.meanin |
| 25660 | 67 20 69 74 20 77 69 6c 6c 20 73 65 74 20 74 68 65 20 44 4f 2d 62 69 74 20 6f 6e 20 6f 75 74 67 | g.it.will.set.the.DO-bit.on.outg |
| 25680 | 6f 69 6e 67 20 71 75 65 72 69 65 73 20 61 6e 64 20 77 69 6c 6c 20 70 72 6f 76 69 64 65 20 44 4e | oing.queries.and.will.provide.DN |
| 256a0 | 53 53 45 43 20 72 65 6c 61 74 65 64 20 52 52 73 65 74 73 20 28 4e 53 45 43 2c 20 52 52 53 49 47 | SSEC.related.RRsets.(NSEC,.RRSIG |
| 256c0 | 29 20 74 6f 20 63 6c 69 65 6e 74 73 20 74 68 61 74 20 61 73 6b 20 66 6f 72 20 74 68 65 6d 20 28 | ).to.clients.that.ask.for.them.( |
| 256e0 | 62 79 20 6d 65 61 6e 73 20 6f 66 20 61 20 44 4f 2d 62 69 74 20 69 6e 20 74 68 65 20 71 75 65 72 | by.means.of.a.DO-bit.in.the.quer |
| 25700 | 79 29 2c 20 65 78 63 65 70 74 20 66 6f 72 20 7a 6f 6e 65 73 20 70 72 6f 76 69 64 65 64 20 74 68 | y),.except.for.zones.provided.th |
| 25720 | 72 6f 75 67 68 20 74 68 65 20 61 75 74 68 2d 7a 6f 6e 65 73 20 73 65 74 74 69 6e 67 2e 20 49 74 | rough.the.auth-zones.setting..It |
| 25740 | 20 77 69 6c 6c 20 6e 6f 74 20 64 6f 20 61 6e 79 20 76 61 6c 69 64 61 74 69 6f 6e 20 69 6e 20 74 | .will.not.do.any.validation.in.t |
| 25760 | 68 69 73 20 6d 6f 64 65 2c 20 6e 6f 74 20 65 76 65 6e 20 77 68 65 6e 20 72 65 71 75 65 73 74 65 | his.mode,.not.even.when.requeste |
| 25780 | 64 20 62 79 20 74 68 65 20 63 6c 69 65 6e 74 2e 00 2a 2a 70 72 6f 74 6f 63 6f 6c 2a 2a 20 2d 20 | d.by.the.client..**protocol**.-. |
| 257a0 | 73 70 65 63 69 66 79 20 77 68 69 63 68 20 74 79 70 65 73 20 6f 66 20 70 72 6f 74 6f 63 6f 6c 73 | specify.which.types.of.protocols |
| 257c0 | 20 74 68 69 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 72 75 6c 65 20 61 70 70 6c 69 65 73 20 74 | .this.translation.rule.applies.t |
| 257e0 | 6f 2e 20 4f 6e 6c 79 20 70 61 63 6b 65 74 73 20 6d 61 74 63 68 69 6e 67 20 74 68 65 20 73 70 65 | o..Only.packets.matching.the.spe |
| 25800 | 63 69 66 69 65 64 20 70 72 6f 74 6f 63 6f 6c 20 61 72 65 20 4e 41 54 65 64 2e 20 42 79 20 64 65 | cified.protocol.are.NATed..By.de |
| 25820 | 66 61 75 6c 74 20 74 68 69 73 20 61 70 70 6c 69 65 73 20 74 6f 20 60 61 6c 6c 60 20 70 72 6f 74 | fault.this.applies.to.`all`.prot |
| 25840 | 6f 63 6f 6c 73 2e 00 2a 2a 70 72 6f 74 6f 63 6f 6c 2d 73 70 65 63 69 66 69 63 2a 2a 20 50 20 66 | ocols..**protocol-specific**.P.f |
| 25860 | 6c 61 67 2e 00 2a 2a 72 61 64 69 75 73 2a 2a 3a 20 41 6c 6c 20 61 75 74 68 65 6e 74 69 63 61 74 | lag..**radius**:.All.authenticat |
| 25880 | 69 6f 6e 20 71 75 65 72 69 65 73 20 61 72 65 20 68 61 6e 64 6c 65 64 20 62 79 20 61 20 63 6f 6e | ion.queries.are.handled.by.a.con |
| 258a0 | 66 69 67 75 72 65 64 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 2a 2a 72 61 6e 64 6f 6d 2a | figured.RADIUS.server..**random* |
| 258c0 | 2a 20 2d 20 52 61 6e 64 6f 6d 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 | *.-.Random.interface.identifier. |
| 258e0 | 66 6f 72 20 49 50 76 36 00 2a 2a 72 65 67 65 78 70 2a 2a 20 52 65 67 75 6c 61 72 20 65 78 70 72 | for.IPv6.**regexp**.Regular.expr |
| 25900 | 65 73 73 69 6f 6e 2e 20 52 65 71 75 69 72 65 73 20 60 3c 76 61 6c 75 65 3e 60 2e 00 2a 2a 72 65 | ession..Requires.`<value>`..**re |
| 25920 | 6d 6f 74 65 20 73 69 64 65 20 2d 20 63 6f 6d 6d 61 6e 64 73 2a 2a 00 2a 2a 72 65 70 6c 61 63 65 | mote.side.-.commands**.**replace |
| 25940 | 2a 2a 3a 20 54 65 72 6d 69 6e 61 74 65 20 66 69 72 73 74 20 73 65 73 73 69 6f 6e 20 77 68 65 6e | **:.Terminate.first.session.when |
| 25960 | 20 73 65 63 6f 6e 64 20 69 73 20 61 75 74 68 6f 72 69 7a 65 64 20 2a 2a 28 64 65 66 61 75 6c 74 | .second.is.authorized.**(default |
| 25980 | 29 2a 2a 00 2a 2a 72 65 70 6c 61 63 65 3a 2a 2a 20 52 65 6c 61 79 20 69 6e 66 6f 72 6d 61 74 69 | )**.**replace:**.Relay.informati |
| 259a0 | 6f 6e 20 61 6c 72 65 61 64 79 20 70 72 65 73 65 6e 74 20 69 6e 20 61 20 70 61 63 6b 65 74 20 69 | on.already.present.in.a.packet.i |
| 259c0 | 73 20 73 74 72 69 70 70 65 64 20 61 6e 64 20 72 65 70 6c 61 63 65 64 20 77 69 74 68 20 74 68 65 | s.stripped.and.replaced.with.the |
| 259e0 | 20 72 6f 75 74 65 72 27 73 20 6f 77 6e 20 72 65 6c 61 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 | .router's.own.relay.information. |
| 25a00 | 73 65 74 2e 00 2a 2a 72 65 70 6c 61 63 65 6d 65 6e 74 2a 2a 20 52 65 70 6c 61 63 65 6d 65 6e 74 | set..**replacement**.Replacement |
| 25a20 | 20 44 4e 53 20 6e 61 6d 65 2e 00 2a 2a 72 65 71 75 69 72 65 2a 2a 20 2d 20 52 65 71 75 69 72 65 | .DNS.name..**require**.-.Require |
| 25a40 | 20 49 50 76 34 20 6e 65 67 6f 74 69 61 74 69 6f 6e 00 2a 2a 72 65 71 75 69 72 65 2a 2a 20 2d 20 | .IPv4.negotiation.**require**.-. |
| 25a60 | 52 65 71 75 69 72 65 20 49 50 76 36 20 6e 65 67 6f 74 69 61 74 69 6f 6e 00 2a 2a 72 65 71 75 69 | Require.IPv6.negotiation.**requi |
| 25a80 | 72 65 2a 2a 20 2d 20 61 73 6b 20 63 6c 69 65 6e 74 20 66 6f 72 20 6d 70 70 65 2c 20 69 66 20 69 | re**.-.ask.client.for.mppe,.if.i |
| 25aa0 | 74 20 72 65 6a 65 63 74 73 20 64 72 6f 70 20 63 6f 6e 6e 65 63 74 69 6f 6e 00 2a 2a 72 65 73 6f | t.rejects.drop.connection.**reso |
| 25ac0 | 6c 76 65 2d 75 72 69 2a 2a 20 55 20 66 6c 61 67 2e 00 2a 2a 72 69 67 68 74 2a 2a 00 2a 2a 73 65 | lve-uri**.U.flag..**right**.**se |
| 25ae0 | 72 76 69 63 65 2a 2a 20 53 65 72 76 69 63 65 20 74 79 70 65 2e 20 52 65 71 75 69 72 65 73 20 60 | rvice**.Service.type..Requires.` |
| 25b00 | 3c 76 61 6c 75 65 3e 60 2e 00 2a 2a 73 65 74 70 63 61 70 2a 2a 3a 20 43 61 70 61 62 69 6c 69 74 | <value>`..**setpcap**:.Capabilit |
| 25b20 | 79 20 73 65 74 73 20 28 66 72 6f 6d 20 62 6f 75 6e 64 65 64 20 6f 72 20 69 6e 68 65 72 69 74 65 | y.sets.(from.bounded.or.inherite |
| 25b40 | 64 20 73 65 74 29 00 2a 2a 73 68 61 72 65 64 2a 2a 3a 20 4d 75 6c 74 69 70 6c 65 20 63 6c 69 65 | d.set).**shared**:.Multiple.clie |
| 25b60 | 6e 74 73 20 73 68 61 72 65 20 74 68 65 20 73 61 6d 65 20 6e 65 74 77 6f 72 6b 2e 20 2a 2a 28 64 | nts.share.the.same.network..**(d |
| 25b80 | 65 66 61 75 6c 74 29 2a 2a 00 2a 2a 73 6f 75 72 63 65 2a 2a 20 2d 20 73 70 65 63 69 66 69 65 73 | efault)**.**source**.-.specifies |
| 25ba0 | 20 77 68 69 63 68 20 70 61 63 6b 65 74 73 20 74 68 65 20 4e 41 54 20 74 72 61 6e 73 6c 61 74 69 | .which.packets.the.NAT.translati |
| 25bc0 | 6f 6e 20 72 75 6c 65 20 61 70 70 6c 69 65 73 20 74 6f 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 | on.rule.applies.to.based.on.the. |
| 25be0 | 70 61 63 6b 65 74 73 20 73 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 61 6e 64 2f 6f 72 | packets.source.IP.address.and/or |
| 25c00 | 20 73 6f 75 72 63 65 20 70 6f 72 74 2e 20 4f 6e 6c 79 20 6d 61 74 63 68 69 6e 67 20 70 61 63 6b | .source.port..Only.matching.pack |
| 25c20 | 65 74 73 20 61 72 65 20 63 6f 6e 73 69 64 65 72 65 64 20 66 6f 72 20 4e 41 54 2e 00 2a 2a 73 79 | ets.are.considered.for.NAT..**sy |
| 25c40 | 73 2d 61 64 6d 69 6e 2a 2a 3a 20 41 64 6d 69 6e 69 73 74 61 74 69 6f 6e 20 6f 70 65 72 61 74 69 | s-admin**:.Administation.operati |
| 25c60 | 6f 6e 73 20 28 71 75 6f 74 61 63 74 6c 2c 20 6d 6f 75 6e 74 2c 20 73 65 74 68 6f 73 74 6e 61 6d | ons.(quotactl,.mount,.sethostnam |
| 25c80 | 65 2c 20 73 65 74 64 6f 6d 61 69 6e 61 6d 65 29 00 2a 2a 73 79 73 2d 61 64 6d 69 6e 2a 2a 3a 20 | e,.setdomainame).**sys-admin**:. |
| 25ca0 | 41 64 6d 69 6e 69 73 74 72 61 74 69 6f 6e 20 6f 70 65 72 61 74 69 6f 6e 73 20 28 71 75 6f 74 61 | Administration.operations.(quota |
| 25cc0 | 63 74 6c 2c 20 6d 6f 75 6e 74 2c 20 73 65 74 68 6f 73 74 6e 61 6d 65 2c 20 73 65 74 64 6f 6d 61 | ctl,.mount,.sethostname,.setdoma |
| 25ce0 | 69 6e 61 6d 65 29 00 2a 2a 73 79 73 2d 74 69 6d 65 2a 2a 3a 20 50 65 72 6d 69 73 73 69 6f 6e 20 | iname).**sys-time**:.Permission. |
| 25d00 | 74 6f 20 73 65 74 20 73 79 73 74 65 6d 20 63 6c 6f 63 6b 00 2a 2a 74 72 61 6e 73 69 74 69 6f 6e | to.set.system.clock.**transition |
| 25d20 | 2a 2a 20 2d 20 53 65 6e 64 20 61 6e 64 20 61 63 63 65 70 74 20 62 6f 74 68 20 73 74 79 6c 65 73 | **.-.Send.and.accept.both.styles |
| 25d40 | 20 6f 66 20 54 4c 56 73 20 64 75 72 69 6e 67 20 74 72 61 6e 73 69 74 69 6f 6e 2e 00 2a 2a 75 70 | .of.TLVs.during.transition..**up |
| 25d60 | 73 74 72 65 61 6d 3a 2a 2a 20 54 68 65 20 75 70 73 74 72 65 61 6d 20 6e 65 74 77 6f 72 6b 20 69 | stream:**.The.upstream.network.i |
| 25d80 | 6e 74 65 72 66 61 63 65 20 69 73 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 20 69 6e 74 65 72 66 61 | nterface.is.the.outgoing.interfa |
| 25da0 | 63 65 20 77 68 69 63 68 20 69 73 20 72 65 73 70 6f 6e 73 69 62 6c 65 20 66 6f 72 20 63 6f 6d 6d | ce.which.is.responsible.for.comm |
| 25dc0 | 75 6e 69 63 61 74 69 6e 67 20 74 6f 20 61 76 61 69 6c 61 62 6c 65 20 6d 75 6c 74 69 63 61 73 74 | unicating.to.available.multicast |
| 25de0 | 20 64 61 74 61 20 73 6f 75 72 63 65 73 2e 20 54 68 65 72 65 20 63 61 6e 20 6f 6e 6c 79 20 62 65 | .data.sources..There.can.only.be |
| 25e00 | 20 6f 6e 65 20 75 70 73 74 72 65 61 6d 20 69 6e 74 65 72 66 61 63 65 2e 00 2a 2a 76 61 6c 69 64 | .one.upstream.interface..**valid |
| 25e20 | 61 74 65 2a 2a 20 54 68 65 20 68 69 67 68 65 73 74 20 6d 6f 64 65 20 6f 66 20 44 4e 53 53 45 43 | ate**.The.highest.mode.of.DNSSEC |
| 25e40 | 20 70 72 6f 63 65 73 73 69 6e 67 2e 20 49 6e 20 74 68 69 73 20 6d 6f 64 65 2c 20 61 6c 6c 20 71 | .processing..In.this.mode,.all.q |
| 25e60 | 75 65 72 69 65 73 20 77 69 6c 6c 20 62 65 20 76 61 6c 69 64 61 74 65 64 20 61 6e 64 20 77 69 6c | ueries.will.be.validated.and.wil |
| 25e80 | 6c 20 62 65 20 61 6e 73 77 65 72 65 64 20 77 69 74 68 20 61 20 53 45 52 56 46 41 49 4c 20 69 6e | l.be.answered.with.a.SERVFAIL.in |
| 25ea0 | 20 63 61 73 65 20 6f 66 20 62 6f 67 75 73 20 64 61 74 61 2c 20 72 65 67 61 72 64 6c 65 73 73 20 | .case.of.bogus.data,.regardless. |
| 25ec0 | 6f 66 20 74 68 65 20 63 6c 69 65 6e 74 27 73 20 72 65 71 75 65 73 74 2e 00 2a 2a 76 6c 61 6e 2a | of.the.client's.request..**vlan* |
| 25ee0 | 2a 3a 20 4f 6e 65 20 56 4c 41 4e 20 70 65 72 20 63 6c 69 65 6e 74 2e 00 2a 2a 77 69 64 65 2a 2a | *:.One.VLAN.per.client..**wide** |
| 25f00 | 20 2d 20 55 73 65 20 6e 65 77 20 73 74 79 6c 65 20 6f 66 20 54 4c 56 73 20 74 6f 20 63 61 72 72 | .-.Use.new.style.of.TLVs.to.carr |
| 25f20 | 79 20 77 69 64 65 72 20 6d 65 74 72 69 63 2e 00 2a 2a 78 3a 78 3a 78 3a 78 2a 2a 20 2d 20 53 70 | y.wider.metric..**x:x:x:x**.-.Sp |
| 25f40 | 65 63 69 66 79 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 66 6f 72 20 49 | ecify.interface.identifier.for.I |
| 25f60 | 50 76 36 00 2a 62 67 70 64 2a 20 73 75 70 70 6f 72 74 73 20 4d 75 6c 74 69 70 72 6f 74 6f 63 6f | Pv6.*bgpd*.supports.Multiprotoco |
| 25f80 | 6c 20 45 78 74 65 6e 73 69 6f 6e 20 66 6f 72 20 42 47 50 2e 20 53 6f 20 69 66 20 61 20 72 65 6d | l.Extension.for.BGP..So.if.a.rem |
| 25fa0 | 6f 74 65 20 70 65 65 72 20 73 75 70 70 6f 72 74 73 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 2c 20 | ote.peer.supports.the.protocol,. |
| 25fc0 | 2a 62 67 70 64 2a 20 63 61 6e 20 65 78 63 68 61 6e 67 65 20 49 50 76 36 20 61 6e 64 2f 6f 72 20 | *bgpd*.can.exchange.IPv6.and/or. |
| 25fe0 | 6d 75 6c 74 69 63 61 73 74 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 30 | multicast.routing.information..0 |
| 26000 | 00 30 20 69 66 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 77 68 69 63 68 20 6d 65 61 6e 73 20 6e | .0.if.not.defined,.which.means.n |
| 26020 | 6f 20 72 65 66 72 65 73 68 69 6e 67 2e 00 30 20 69 66 20 6e 6f 74 20 64 65 66 69 6e 65 64 2e 00 | o.refreshing..0.if.not.defined.. |
| 26040 | 30 30 30 30 30 30 00 30 30 31 30 31 30 00 30 30 31 31 30 30 00 30 30 31 31 31 30 00 30 31 30 30 | 000000.001010.001100.001110.0100 |
| 26060 | 31 30 00 30 31 30 31 30 30 00 30 31 30 31 31 30 00 30 31 31 30 31 30 00 30 31 31 31 30 30 00 30 | 10.010100.010110.011010.011100.0 |
| 26080 | 31 31 31 31 30 00 30 3a 20 44 69 73 61 62 6c 65 20 44 41 44 00 31 00 31 20 69 66 20 6e 6f 74 20 | 11110.0:.Disable.DAD.1.1.if.not. |
| 260a0 | 64 65 66 69 6e 65 64 2e 00 31 2d 74 6f 2d 31 20 4e 41 54 00 31 2e 20 43 72 65 61 74 65 20 61 6e | defined..1-to-1.NAT.1..Create.an |
| 260c0 | 20 65 76 65 6e 74 20 68 61 6e 64 6c 65 72 00 31 2e 20 46 69 72 73 74 20 70 61 63 6b 65 74 20 69 | .event.handler.1..First.packet.i |
| 260e0 | 73 20 72 65 63 65 69 76 65 64 20 6f 6e 20 65 68 74 30 2c 20 77 69 74 68 20 64 65 73 74 69 6e 61 | s.received.on.eht0,.with.destina |
| 26100 | 74 69 6f 6e 20 61 64 64 72 65 73 73 20 31 39 32 2e 30 2e 32 2e 31 30 30 2c 20 70 72 6f 74 6f 63 | tion.address.192.0.2.100,.protoc |
| 26120 | 6f 6c 20 74 63 70 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 31 31 32 32 | ol.tcp.and.destination.port.1122 |
| 26140 | 2e 20 41 73 73 75 6d 65 20 73 75 63 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 | ..Assume.such.destination.addres |
| 26160 | 73 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 74 68 72 6f 75 67 68 20 69 6e 74 65 72 66 61 63 65 | s.is.reachable.through.interface |
| 26180 | 20 65 74 68 31 2e 00 31 2e 20 46 69 72 73 74 20 70 61 63 6b 65 74 20 69 73 20 72 65 63 65 69 76 | .eth1..1..First.packet.is.receiv |
| 261a0 | 65 64 20 6f 6e 20 65 74 68 30 2c 20 77 69 74 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 | ed.on.eth0,.with.destination.add |
| 261c0 | 72 65 73 73 20 31 39 32 2e 30 2e 32 2e 31 30 30 2c 20 70 72 6f 74 6f 63 6f 6c 20 74 63 70 20 61 | ress.192.0.2.100,.protocol.tcp.a |
| 261e0 | 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 31 31 32 32 2e 20 41 73 73 75 6d 65 | nd.destination.port.1122..Assume |
| 26200 | 20 73 75 63 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 69 73 20 72 65 61 | .such.destination.address.is.rea |
| 26220 | 63 68 61 62 6c 65 20 74 68 72 6f 75 67 68 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 31 2e 00 31 | chable.through.interface.eth1..1 |
| 26240 | 2e 20 46 69 72 73 74 6c 79 2c 20 61 20 70 61 63 6b 65 74 20 69 73 20 72 65 63 65 69 76 65 64 20 | ..Firstly,.a.packet.is.received. |
| 26260 | 6f 6e 20 65 74 68 30 2c 20 77 69 74 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 | on.eth0,.with.destination.addres |
| 26280 | 73 20 31 39 32 2e 30 2e 32 2e 31 30 30 2c 20 70 72 6f 74 6f 63 6f 6c 20 74 63 70 20 61 6e 64 20 | s.192.0.2.100,.protocol.tcp.and. |
| 262a0 | 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 31 31 32 32 2e 20 41 73 73 75 6d 65 20 73 75 | destination.port.1122..Assume.su |
| 262c0 | 63 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 69 73 20 72 65 61 63 68 61 | ch.destination.address.is.reacha |
| 262e0 | 62 6c 65 20 74 68 72 6f 75 67 68 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 31 2e 00 31 2e 20 47 | ble.through.interface.eth1..1..G |
| 26300 | 65 6e 65 72 61 74 65 20 61 20 6e 65 77 20 54 43 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 | enerate.a.new.TCP.connection.wit |
| 26320 | 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 39 39 39 30 2e 20 41 73 20 73 68 6f 77 | h.destination.port.9990..As.show |
| 26340 | 6e 20 6e 65 78 74 2c 20 61 20 6e 65 77 20 65 6e 74 72 79 20 77 61 73 20 61 64 64 65 64 20 74 6f | n.next,.a.new.entry.was.added.to |
| 26360 | 20 64 79 6e 61 6d 69 63 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 20 2a 2a 50 4e 5f 30 31 2a | .dynamic.firewall.group.**PN_01* |
| 26380 | 2a 00 31 30 00 31 30 20 2d 20 31 30 20 4d 42 69 74 2f 73 00 31 30 2e 30 2e 30 2e 30 20 74 6f 20 | *.10.10.-.10.MBit/s.10.0.0.0.to. |
| 263a0 | 31 30 2e 32 35 35 2e 32 35 35 2e 32 35 35 20 28 43 49 44 52 3a 20 31 30 2e 30 2e 30 2e 30 2f 38 | 10.255.255.255.(CIDR:.10.0.0.0/8 |
| 263c0 | 29 00 31 30 30 20 2d 20 31 30 30 20 4d 42 69 74 2f 73 00 31 30 30 30 20 2d 20 31 20 47 42 69 74 | ).100.-.100.MBit/s.1000.-.1.GBit |
| 263e0 | 2f 73 00 31 30 30 30 30 20 2d 20 31 30 20 47 42 69 74 2f 73 00 31 30 30 30 30 30 20 2d 20 31 30 | /s.10000.-.10.GBit/s.100000.-.10 |
| 26400 | 30 20 47 42 69 74 2f 73 00 31 30 30 30 31 30 00 31 30 30 31 30 30 00 31 30 30 31 31 30 00 31 30 | 0.GBit/s.100010.100100.100110.10 |
| 26420 | 31 31 31 30 00 31 31 00 31 31 39 00 31 32 00 31 32 31 2c 20 32 34 39 00 31 33 00 31 34 00 31 35 | 1110.11.119.12.121,.249.13.14.15 |
| 26440 | 00 31 36 00 31 37 00 31 37 32 2e 31 36 2e 30 2e 30 20 74 6f 20 31 37 32 2e 33 31 2e 32 35 35 2e | .16.17.172.16.0.0.to.172.31.255. |
| 26460 | 32 35 35 20 28 43 49 44 52 3a 20 31 37 32 2e 31 36 2e 30 2e 30 2f 31 32 29 00 31 38 00 31 39 00 | 255.(CIDR:.172.16.0.0/12).18.19. |
| 26480 | 31 39 32 2e 31 36 38 2e 30 2e 30 20 74 6f 20 31 39 32 2e 31 36 38 2e 32 35 35 2e 32 35 35 20 28 | 192.168.0.0.to.192.168.255.255.( |
| 264a0 | 43 49 44 52 3a 20 31 39 32 2e 31 36 38 2e 30 2e 30 2f 31 36 29 00 31 3a 20 45 6e 61 62 6c 65 20 | CIDR:.192.168.0.0/16).1:.Enable. |
| 264c0 | 44 41 44 20 28 64 65 66 61 75 6c 74 29 00 32 00 32 2e 20 41 64 64 20 72 65 67 65 78 20 74 6f 20 | DAD.(default).2.2..Add.regex.to. |
| 264e0 | 74 68 65 20 73 63 72 69 70 74 00 32 2e 20 47 65 6e 65 72 61 74 65 20 61 20 6e 65 77 20 54 43 50 | the.script.2..Generate.a.new.TCP |
| 26500 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 | .connection.with.destination.por |
| 26520 | 74 20 39 39 39 31 2e 20 41 73 20 73 68 6f 77 6e 20 6e 65 78 74 2c 20 61 20 6e 65 77 20 65 6e 74 | t.9991..As.shown.next,.a.new.ent |
| 26540 | 72 79 20 77 61 73 20 61 64 64 65 64 20 74 6f 20 64 79 6e 61 6d 69 63 20 66 69 72 65 77 61 6c 6c | ry.was.added.to.dynamic.firewall |
| 26560 | 20 67 72 6f 75 70 20 2a 2a 50 4e 5f 30 32 2a 2a 00 32 2e 20 53 69 6e 63 65 20 74 68 69 73 20 69 | .group.**PN_02**.2..Since.this.i |
| 26580 | 73 20 74 68 65 20 66 69 72 73 74 20 70 61 63 6b 65 74 2c 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 | s.the.first.packet,.connection.s |
| 265a0 | 74 61 74 75 73 20 6f 66 20 74 68 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 2c 20 73 6f 20 66 61 72 | tatus.of.this.connection,.so.far |
| 265c0 | 20 69 73 20 2a 2a 6e 65 77 2a 2a 2e 20 53 6f 20 6e 65 69 74 68 65 72 20 72 75 6c 65 20 31 30 20 | .is.**new**..So.neither.rule.10. |
| 265e0 | 6e 6f 72 20 32 30 20 61 72 65 20 76 61 6c 69 64 2e 00 32 30 00 32 31 00 32 32 00 32 33 00 32 35 | nor.20.are.valid..20.21.22.23.25 |
| 26600 | 30 30 20 2d 20 32 2e 35 20 47 42 69 74 2f 73 00 32 35 30 30 30 20 2d 20 32 35 20 47 42 69 74 2f | 00.-.2.5.GBit/s.25000.-.25.GBit/ |
| 26620 | 73 00 32 35 32 00 32 36 00 32 38 00 32 3a 20 45 6e 61 62 6c 65 20 44 41 44 2c 20 61 6e 64 20 64 | s.252.26.28.2:.Enable.DAD,.and.d |
| 26640 | 69 73 61 62 6c 65 20 49 50 76 36 20 6f 70 65 72 61 74 69 6f 6e 20 69 66 20 4d 41 43 2d 62 61 73 | isable.IPv6.operation.if.MAC-bas |
| 26660 | 65 64 20 64 75 70 6c 69 63 61 74 65 20 6c 69 6e 6b 2d 6c 6f 63 61 6c 20 61 64 64 72 65 73 73 20 | ed.duplicate.link-local.address. |
| 26680 | 68 61 73 20 62 65 65 6e 20 66 6f 75 6e 64 2e 00 32 46 41 20 4f 54 50 20 73 75 70 70 6f 72 74 00 | has.been.found..2FA.OTP.support. |
| 266a0 | 33 00 33 2e 20 41 64 64 20 61 20 66 75 6c 6c 20 70 61 74 68 20 74 6f 20 74 68 65 20 73 63 72 69 | 3.3..Add.a.full.path.to.the.scri |
| 266c0 | 70 74 00 33 2e 20 47 65 6e 65 72 61 74 65 20 61 20 6e 65 77 20 54 43 50 20 63 6f 6e 6e 65 63 74 | pt.3..Generate.a.new.TCP.connect |
| 266e0 | 69 6f 6e 20 77 69 74 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 39 39 39 32 2e 20 | ion.with.destination.port.9992.. |
| 26700 | 41 73 20 73 68 6f 77 6e 20 6e 65 78 74 2c 20 61 20 6e 65 77 20 65 6e 74 72 79 20 77 61 73 20 61 | As.shown.next,.a.new.entry.was.a |
| 26720 | 64 64 65 64 20 74 6f 20 64 79 6e 61 6d 69 63 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 20 2a | dded.to.dynamic.firewall.group.* |
| 26740 | 2a 41 4c 4c 4f 57 45 44 2a 2a 00 33 30 00 33 34 00 33 36 00 33 38 00 34 00 34 2e 20 41 64 64 20 | *ALLOWED**.30.34.36.38.4.4..Add. |
| 26760 | 6f 70 74 69 6f 6e 61 6c 20 70 61 72 61 6d 65 74 65 72 73 00 34 2e 20 4f 6e 63 65 20 61 6e 20 61 | optional.parameters.4..Once.an.a |
| 26780 | 6e 73 77 65 72 20 66 72 6f 6d 20 73 65 72 76 65 72 20 31 39 32 2e 30 2e 32 2e 31 30 30 20 69 73 | nswer.from.server.192.0.2.100.is |
| 267a0 | 20 73 65 65 6e 20 69 6e 20 6f 70 70 6f 73 69 74 65 20 64 69 72 65 63 74 69 6f 6e 2c 20 63 6f 6e | .seen.in.opposite.direction,.con |
| 267c0 | 6e 65 63 74 69 6f 6e 20 73 74 61 74 65 20 77 69 6c 6c 20 62 65 20 74 72 69 67 67 65 72 65 64 20 | nection.state.will.be.triggered. |
| 267e0 | 74 6f 20 2a 2a 65 73 74 61 62 6c 69 73 68 65 64 2a 2a 2c 20 73 6f 20 74 68 69 73 20 72 65 70 6c | to.**established**,.so.this.repl |
| 26800 | 79 20 69 73 20 61 63 63 65 70 74 65 64 20 69 6e 20 72 75 6c 65 20 32 30 2e 00 34 2e 20 4f 6e 63 | y.is.accepted.in.rule.20..4..Onc |
| 26820 | 65 20 61 6e 73 77 65 72 20 66 72 6f 6d 20 73 65 72 76 65 72 20 31 39 32 2e 30 2e 32 2e 31 30 30 | e.answer.from.server.192.0.2.100 |
| 26840 | 20 69 73 20 73 65 65 6e 20 69 6e 20 6f 70 70 6f 73 69 74 65 20 64 69 72 65 63 74 69 6f 6e 2c 20 | .is.seen.in.opposite.direction,. |
| 26860 | 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 65 20 77 69 6c 6c 20 62 65 20 74 72 69 67 67 65 72 | connection.state.will.be.trigger |
| 26880 | 65 64 20 74 6f 20 2a 2a 65 73 74 61 62 6c 69 73 68 65 64 2a 2a 2c 20 73 6f 20 74 68 69 73 20 72 | ed.to.**established**,.so.this.r |
| 268a0 | 65 70 6c 79 20 69 73 20 61 63 63 65 70 74 65 64 20 69 6e 20 72 75 6c 65 20 31 30 2e 00 34 2e 20 | eply.is.accepted.in.rule.10..4.. |
| 268c0 | 4f 6e 63 65 20 61 6e 73 77 65 72 20 66 72 6f 6d 20 73 65 72 76 65 72 20 31 39 32 2e 30 2e 32 2e | Once.answer.from.server.192.0.2. |
| 268e0 | 31 30 30 20 69 73 20 73 65 65 6e 20 69 6e 20 6f 70 70 6f 73 69 74 65 20 64 69 72 65 63 74 69 6f | 100.is.seen.in.opposite.directio |
| 26900 | 6e 2c 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 65 20 77 69 6c 6c 20 62 65 20 74 72 69 67 | n,.connection.state.will.be.trig |
| 26920 | 67 65 72 65 64 20 74 6f 20 2a 2a 65 73 74 61 62 6c 69 73 68 65 64 2a 2a 2c 20 73 6f 20 74 68 69 | gered.to.**established**,.so.thi |
| 26940 | 73 20 72 65 70 6c 79 20 69 73 20 61 63 63 65 70 74 65 64 20 69 6e 20 72 75 6c 65 20 32 30 2e 00 | s.reply.is.accepted.in.rule.20.. |
| 26960 | 34 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 73 20 6d 61 79 20 73 77 69 74 63 68 20 74 68 65 69 72 | 40.MHz.channels.may.switch.their |
| 26980 | 20 70 72 69 6d 61 72 79 20 61 6e 64 20 73 65 63 6f 6e 64 61 72 79 20 63 68 61 6e 6e 65 6c 73 20 | .primary.and.secondary.channels. |
| 269a0 | 69 66 20 6e 65 65 64 65 64 20 6f 72 20 63 72 65 61 74 69 6f 6e 20 6f 66 20 34 30 20 4d 48 7a 20 | if.needed.or.creation.of.40.MHz. |
| 269c0 | 63 68 61 6e 6e 65 6c 20 6d 61 79 62 65 20 72 65 6a 65 63 74 65 64 20 62 61 73 65 64 20 6f 6e 20 | channel.maybe.rejected.based.on. |
| 269e0 | 6f 76 65 72 6c 61 70 70 69 6e 67 20 42 53 53 65 73 2e 20 54 68 65 73 65 20 63 68 61 6e 67 65 73 | overlapping.BSSes..These.changes |
| 26a00 | 20 61 72 65 20 64 6f 6e 65 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 77 68 65 6e 20 68 6f 73 | .are.done.automatically.when.hos |
| 26a20 | 74 61 70 64 20 69 73 20 73 65 74 74 69 6e 67 20 75 70 20 74 68 65 20 34 30 20 4d 48 7a 20 63 68 | tapd.is.setting.up.the.40.MHz.ch |
| 26a40 | 61 6e 6e 65 6c 2e 00 34 30 30 30 30 20 2d 20 34 30 20 47 42 69 74 2f 73 00 34 32 00 34 34 00 34 | annel..40000.-.40.GBit/s.42.44.4 |
| 26a60 | 36 00 35 00 35 20 69 66 20 6e 6f 74 20 64 65 66 69 6e 65 64 2e 00 35 2e 20 53 65 63 6f 6e 64 20 | 6.5.5.if.not.defined..5..Second. |
| 26a80 | 70 61 63 6b 65 74 20 66 6f 72 20 74 68 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 72 65 | packet.for.this.connection.is.re |
| 26aa0 | 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 2e 20 53 69 6e 63 65 20 63 6f 6e 6e | ceived.by.the.router..Since.conn |
| 26ac0 | 65 63 74 69 6f 6e 20 73 74 61 74 65 20 69 73 20 2a 2a 65 73 74 61 62 6c 69 73 68 65 64 2a 2a 2c | ection.state.is.**established**, |
| 26ae0 | 20 74 68 65 6e 20 72 75 6c 65 20 31 30 20 69 73 20 68 69 74 2c 20 61 6e 64 20 61 20 6e 65 77 20 | .then.rule.10.is.hit,.and.a.new. |
| 26b00 | 65 6e 74 72 79 20 69 6e 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 46 54 30 31 20 69 73 20 61 | entry.in.the.flowtable.FT01.is.a |
| 26b20 | 64 64 65 64 20 66 6f 72 20 74 68 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 35 2e 20 54 68 65 | dded.for.this.connection..5..The |
| 26b40 | 20 73 65 63 6f 6e 64 20 70 61 63 6b 65 74 20 66 6f 72 20 74 68 69 73 20 63 6f 6e 6e 65 63 74 69 | .second.packet.for.this.connecti |
| 26b60 | 6f 6e 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 2e 20 53 69 | on.is.received.by.the.router..Si |
| 26b80 | 6e 63 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 65 20 69 73 20 2a 2a 65 73 74 61 62 6c | nce.connection.state.is.**establ |
| 26ba0 | 69 73 68 65 64 2a 2a 2c 20 74 68 65 6e 20 72 75 6c 65 20 31 30 20 69 73 20 68 69 74 2c 20 61 6e | ished**,.then.rule.10.is.hit,.an |
| 26bc0 | 64 20 61 20 6e 65 77 20 65 6e 74 72 79 20 69 6e 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 46 | d.a.new.entry.in.the.flowtable.F |
| 26be0 | 54 30 31 20 69 73 20 61 64 64 65 64 20 66 6f 72 20 74 68 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e | T01.is.added.for.this.connection |
| 26c00 | 2e 00 35 30 30 30 20 2d 20 35 20 47 42 69 74 2f 73 00 35 30 30 30 30 20 2d 20 35 30 20 47 42 69 | ..5000.-.5.GBit/s.50000.-.50.GBi |
| 26c20 | 74 2f 73 00 35 34 00 36 00 36 2e 20 41 6c 6c 20 73 75 62 73 65 63 75 65 6e 74 20 70 61 63 6b 65 | t/s.54.6.6..All.subsecuent.packe |
| 26c40 | 74 73 20 77 69 6c 6c 20 73 6b 69 70 20 74 72 61 64 69 74 69 6f 6e 61 6c 20 70 61 74 68 2c 20 61 | ts.will.skip.traditional.path,.a |
| 26c60 | 6e 64 20 77 69 6c 6c 20 62 65 20 6f 66 66 6c 6f 61 64 65 64 20 61 6e 64 20 77 69 6c 6c 20 75 73 | nd.will.be.offloaded.and.will.us |
| 26c80 | 65 20 74 68 65 20 2a 2a 46 61 73 74 20 50 61 74 68 2a 2a 2e 00 36 2e 20 41 6c 6c 20 74 68 65 20 | e.the.**Fast.Path**..6..All.the. |
| 26ca0 | 66 6f 6c 6c 6f 77 69 6e 67 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 73 6b 69 70 20 74 68 65 20 | following.packets.will.skip.the. |
| 26cc0 | 74 72 61 64 69 74 69 6f 6e 61 6c 20 70 61 74 68 2c 20 77 69 6c 6c 20 62 65 20 6f 66 66 6c 6f 61 | traditional.path,.will.be.offloa |
| 26ce0 | 64 65 64 20 61 6e 64 20 75 73 65 20 74 68 65 20 2a 2a 46 61 73 74 20 50 61 74 68 2a 2a 2e 00 36 | ded.and.use.the.**Fast.Path**..6 |
| 26d00 | 2e 20 41 6c 6c 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 61 63 6b 65 74 73 20 77 69 6c 6c | ..All.the.following.packets.will |
| 26d20 | 20 73 6b 69 70 20 74 72 61 64 69 74 69 6f 6e 61 6c 20 70 61 74 68 2c 20 61 6e 64 20 77 69 6c 6c | .skip.traditional.path,.and.will |
| 26d40 | 20 62 65 20 6f 66 66 6c 6f 61 64 65 64 20 61 6e 64 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 2a | .be.offloaded.and.will.use.the.* |
| 26d60 | 2a 46 61 73 74 20 50 61 74 68 2a 2a 2e 00 36 34 35 31 32 20 2f 20 31 30 30 30 20 e2 89 88 20 36 | *Fast.Path**..64512./.1000.....6 |
| 26d80 | 34 20 73 75 62 73 63 72 69 62 65 72 73 20 70 65 72 20 70 75 62 6c 69 63 20 49 50 00 36 36 00 36 | 4.subscribers.per.public.IP.66.6 |
| 26da0 | 36 25 20 6f 66 20 74 72 61 66 66 69 63 20 69 73 20 72 6f 75 74 65 64 20 74 6f 20 65 74 68 30 2c | 6%.of.traffic.is.routed.to.eth0, |
| 26dc0 | 20 65 74 68 31 20 67 65 74 73 20 33 33 25 20 6f 66 20 74 72 61 66 66 69 63 2e 00 36 37 00 36 39 | .eth1.gets.33%.of.traffic..67.69 |
| 26de0 | 00 36 69 6e 34 20 28 53 49 54 29 00 36 69 6e 34 20 75 73 65 73 20 74 75 6e 6e 65 6c 69 6e 67 20 | .6in4.(SIT).6in4.uses.tunneling. |
| 26e00 | 74 6f 20 65 6e 63 61 70 73 75 6c 61 74 65 20 49 50 76 36 20 74 72 61 66 66 69 63 20 6f 76 65 72 | to.encapsulate.IPv6.traffic.over |
| 26e20 | 20 49 50 76 34 20 6c 69 6e 6b 73 20 61 73 20 64 65 66 69 6e 65 64 20 69 6e 20 3a 72 66 63 3a 60 | .IPv4.links.as.defined.in.:rfc:` |
| 26e40 | 34 32 31 33 60 2e 20 54 68 65 20 36 69 6e 34 20 74 72 61 66 66 69 63 20 69 73 20 73 65 6e 74 20 | 4213`..The.6in4.traffic.is.sent. |
| 26e60 | 6f 76 65 72 20 49 50 76 34 20 69 6e 73 69 64 65 20 49 50 76 34 20 70 61 63 6b 65 74 73 20 77 68 | over.IPv4.inside.IPv4.packets.wh |
| 26e80 | 6f 73 65 20 49 50 20 68 65 61 64 65 72 73 20 68 61 76 65 20 74 68 65 20 49 50 20 70 72 6f 74 6f | ose.IP.headers.have.the.IP.proto |
| 26ea0 | 63 6f 6c 20 6e 75 6d 62 65 72 20 73 65 74 20 74 6f 20 34 31 2e 20 54 68 69 73 20 70 72 6f 74 6f | col.number.set.to.41..This.proto |
| 26ec0 | 63 6f 6c 20 6e 75 6d 62 65 72 20 69 73 20 73 70 65 63 69 66 69 63 61 6c 6c 79 20 64 65 73 69 67 | col.number.is.specifically.desig |
| 26ee0 | 6e 61 74 65 64 20 66 6f 72 20 49 50 76 36 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 2c 20 74 68 | nated.for.IPv6.encapsulation,.th |
| 26f00 | 65 20 49 50 76 34 20 70 61 63 6b 65 74 20 68 65 61 64 65 72 20 69 73 20 69 6d 6d 65 64 69 61 74 | e.IPv4.packet.header.is.immediat |
| 26f20 | 65 6c 79 20 66 6f 6c 6c 6f 77 65 64 20 62 79 20 74 68 65 20 49 50 76 36 20 70 61 63 6b 65 74 20 | ely.followed.by.the.IPv6.packet. |
| 26f40 | 62 65 69 6e 67 20 63 61 72 72 69 65 64 2e 20 54 68 65 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e | being.carried..The.encapsulation |
| 26f60 | 20 6f 76 65 72 68 65 61 64 20 69 73 20 74 68 65 20 73 69 7a 65 20 6f 66 20 74 68 65 20 49 50 76 | .overhead.is.the.size.of.the.IPv |
| 26f80 | 34 20 68 65 61 64 65 72 20 6f 66 20 32 30 20 62 79 74 65 73 2c 20 74 68 65 72 65 66 6f 72 65 20 | 4.header.of.20.bytes,.therefore. |
| 26fa0 | 77 69 74 68 20 61 6e 20 4d 54 55 20 6f 66 20 31 35 30 30 20 62 79 74 65 73 2c 20 49 50 76 36 20 | with.an.MTU.of.1500.bytes,.IPv6. |
| 26fc0 | 70 61 63 6b 65 74 73 20 6f 66 20 31 34 38 30 20 62 79 74 65 73 20 63 61 6e 20 62 65 20 73 65 6e | packets.of.1480.bytes.can.be.sen |
| 26fe0 | 74 20 77 69 74 68 6f 75 74 20 66 72 61 67 6d 65 6e 74 61 74 69 6f 6e 2e 20 54 68 69 73 20 74 75 | t.without.fragmentation..This.tu |
| 27000 | 6e 6e 65 6c 69 6e 67 20 74 65 63 68 6e 69 71 75 65 20 69 73 20 66 72 65 71 75 65 6e 74 6c 79 20 | nneling.technique.is.frequently. |
| 27020 | 75 73 65 64 20 62 79 20 49 50 76 36 20 74 75 6e 6e 65 6c 20 62 72 6f 6b 65 72 73 20 6c 69 6b 65 | used.by.IPv6.tunnel.brokers.like |
| 27040 | 20 60 48 75 72 72 69 63 61 6e 65 20 45 6c 65 63 74 72 69 63 60 5f 2e 00 37 00 37 30 00 38 00 38 | .`Hurricane.Electric`_..7.70.8.8 |
| 27060 | 30 32 2e 31 71 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 72 65 70 72 65 73 | 02.1q.VLAN.interfaces.are.repres |
| 27080 | 65 6e 74 65 64 20 61 73 20 76 69 72 74 75 61 6c 20 73 75 62 2d 69 6e 74 65 72 66 61 63 65 73 20 | ented.as.virtual.sub-interfaces. |
| 270a0 | 69 6e 20 56 79 4f 53 2e 20 54 68 65 20 74 65 72 6d 20 75 73 65 64 20 66 6f 72 20 74 68 69 73 20 | in.VyOS..The.term.used.for.this. |
| 270c0 | 69 73 20 60 60 76 69 66 60 60 2e 00 39 00 3a 61 62 62 72 3a 60 41 46 49 20 28 41 64 64 72 65 73 | is.``vif``..9.:abbr:`AFI.(Addres |
| 270e0 | 73 20 66 61 6d 69 6c 79 20 61 75 74 68 6f 72 69 74 79 20 69 64 65 6e 74 69 66 69 65 72 29 60 20 | s.family.authority.identifier)`. |
| 27100 | 2d 20 60 60 34 39 60 60 20 54 68 65 20 41 46 49 20 76 61 6c 75 65 20 34 39 20 69 73 20 77 68 61 | -.``49``.The.AFI.value.49.is.wha |
| 27120 | 74 20 49 53 2d 49 53 20 75 73 65 73 20 66 6f 72 20 70 72 69 76 61 74 65 20 61 64 64 72 65 73 73 | t.IS-IS.uses.for.private.address |
| 27140 | 69 6e 67 2e 00 3a 61 62 62 72 3a 60 41 46 49 20 28 41 64 64 72 65 73 73 20 66 61 6d 69 6c 79 20 | ing..:abbr:`AFI.(Address.family. |
| 27160 | 61 75 74 68 6f 72 69 74 79 20 69 64 65 6e 74 69 66 69 65 72 29 60 20 2d 20 60 60 34 39 60 60 20 | authority.identifier)`.-.``49``. |
| 27180 | 54 68 65 20 41 46 49 20 76 61 6c 75 65 20 34 39 20 69 73 20 77 68 61 74 20 4f 70 65 6e 46 61 62 | The.AFI.value.49.is.what.OpenFab |
| 271a0 | 72 69 63 20 75 73 65 73 20 66 6f 72 20 70 72 69 76 61 74 65 20 61 64 64 72 65 73 73 69 6e 67 2e | ric.uses.for.private.addressing. |
| 271c0 | 00 3a 61 62 62 72 3a 60 41 52 50 20 28 41 64 64 72 65 73 73 20 52 65 73 6f 6c 75 74 69 6f 6e 20 | .:abbr:`ARP.(Address.Resolution. |
| 271e0 | 50 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 61 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 20 70 72 | Protocol)`.is.a.communication.pr |
| 27200 | 6f 74 6f 63 6f 6c 20 75 73 65 64 20 66 6f 72 20 64 69 73 63 6f 76 65 72 69 6e 67 20 74 68 65 20 | otocol.used.for.discovering.the. |
| 27220 | 6c 69 6e 6b 20 6c 61 79 65 72 20 61 64 64 72 65 73 73 2c 20 73 75 63 68 20 61 73 20 61 20 4d 41 | link.layer.address,.such.as.a.MA |
| 27240 | 43 20 61 64 64 72 65 73 73 2c 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 61 20 67 69 76 | C.address,.associated.with.a.giv |
| 27260 | 65 6e 20 69 6e 74 65 72 6e 65 74 20 6c 61 79 65 72 20 61 64 64 72 65 73 73 2c 20 74 79 70 69 63 | en.internet.layer.address,.typic |
| 27280 | 61 6c 6c 79 20 61 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 2e 20 54 68 69 73 20 6d 61 70 70 69 | ally.an.IPv4.address..This.mappi |
| 272a0 | 6e 67 20 69 73 20 61 20 63 72 69 74 69 63 61 6c 20 66 75 6e 63 74 69 6f 6e 20 69 6e 20 74 68 65 | ng.is.a.critical.function.in.the |
| 272c0 | 20 49 6e 74 65 72 6e 65 74 20 70 72 6f 74 6f 63 6f 6c 20 73 75 69 74 65 2e 20 41 52 50 20 77 61 | .Internet.protocol.suite..ARP.wa |
| 272e0 | 73 20 64 65 66 69 6e 65 64 20 69 6e 20 31 39 38 32 20 62 79 20 3a 72 66 63 3a 60 38 32 36 60 20 | s.defined.in.1982.by.:rfc:`826`. |
| 27300 | 77 68 69 63 68 20 69 73 20 49 6e 74 65 72 6e 65 74 20 53 74 61 6e 64 61 72 64 20 53 54 44 20 33 | which.is.Internet.Standard.STD.3 |
| 27320 | 37 2e 00 3a 61 62 62 72 3a 60 42 46 44 20 28 42 69 64 69 72 65 63 74 69 6f 6e 61 6c 20 46 6f 72 | 7..:abbr:`BFD.(Bidirectional.For |
| 27340 | 77 61 72 64 69 6e 67 20 44 65 74 65 63 74 69 6f 6e 29 60 20 69 73 20 64 65 73 63 72 69 62 65 64 | warding.Detection)`.is.described |
| 27360 | 20 61 6e 64 20 65 78 74 65 6e 64 65 64 20 62 79 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 52 | .and.extended.by.the.following.R |
| 27380 | 46 43 73 3a 20 3a 72 66 63 3a 60 35 38 38 30 60 2c 20 3a 72 66 63 3a 60 35 38 38 31 60 20 61 6e | FCs:.:rfc:`5880`,.:rfc:`5881`.an |
| 273a0 | 64 20 3a 72 66 63 3a 60 35 38 38 33 60 2e 00 3a 61 62 62 72 3a 60 42 47 50 20 28 42 6f 72 64 65 | d.:rfc:`5883`..:abbr:`BGP.(Borde |
| 273c0 | 72 20 47 61 74 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 6f 6e 65 20 6f 66 20 74 | r.Gateway.Protocol)`.is.one.of.t |
| 273e0 | 68 65 20 45 78 74 65 72 69 6f 72 20 47 61 74 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c 73 20 61 6e | he.Exterior.Gateway.Protocols.an |
| 27400 | 64 20 74 68 65 20 64 65 20 66 61 63 74 6f 20 73 74 61 6e 64 61 72 64 20 69 6e 74 65 72 64 6f 6d | d.the.de.facto.standard.interdom |
| 27420 | 61 69 6e 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 2e 20 54 68 65 20 6c 61 74 65 73 74 | ain.routing.protocol..The.latest |
| 27440 | 20 42 47 50 20 76 65 72 73 69 6f 6e 20 69 73 20 34 2e 20 42 47 50 2d 34 20 69 73 20 64 65 73 63 | .BGP.version.is.4..BGP-4.is.desc |
| 27460 | 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 31 37 37 31 60 20 61 6e 64 20 75 70 64 61 74 65 64 | ribed.in.:rfc:`1771`.and.updated |
| 27480 | 20 62 79 20 3a 72 66 63 3a 60 34 32 37 31 60 2e 20 3a 72 66 63 3a 60 32 38 35 38 60 20 61 64 64 | .by.:rfc:`4271`..:rfc:`2858`.add |
| 274a0 | 73 20 6d 75 6c 74 69 70 72 6f 74 6f 63 6f 6c 20 73 75 70 70 6f 72 74 20 74 6f 20 42 47 50 2e 00 | s.multiprotocol.support.to.BGP.. |
| 274c0 | 3a 61 62 62 72 3a 60 43 47 4e 41 54 20 28 43 61 72 72 69 65 72 2d 47 72 61 64 65 20 4e 65 74 77 | :abbr:`CGNAT.(Carrier-Grade.Netw |
| 274e0 | 6f 72 6b 20 41 64 64 72 65 73 73 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 2c 20 61 6c 73 6f | ork.Address.Translation)`.,.also |
| 27500 | 20 6b 6e 6f 77 6e 20 61 73 20 4c 61 72 67 65 2d 53 63 61 6c 65 20 4e 41 54 20 28 4c 53 4e 29 2c | .known.as.Large-Scale.NAT.(LSN), |
| 27520 | 20 69 73 20 61 20 74 79 70 65 20 6f 66 20 6e 65 74 77 6f 72 6b 20 61 64 64 72 65 73 73 20 74 72 | .is.a.type.of.network.address.tr |
| 27540 | 61 6e 73 6c 61 74 69 6f 6e 20 75 73 65 64 20 62 79 20 49 6e 74 65 72 6e 65 74 20 53 65 72 76 69 | anslation.used.by.Internet.Servi |
| 27560 | 63 65 20 50 72 6f 76 69 64 65 72 73 20 28 49 53 50 73 29 20 74 6f 20 65 6e 61 62 6c 65 20 6d 75 | ce.Providers.(ISPs).to.enable.mu |
| 27580 | 6c 74 69 70 6c 65 20 70 72 69 76 61 74 65 20 49 50 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 73 | ltiple.private.IP.addresses.to.s |
| 275a0 | 68 61 72 65 20 61 20 73 69 6e 67 6c 65 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 2e | hare.a.single.public.IP.address. |
| 275c0 | 20 54 68 69 73 20 74 65 63 68 6e 69 71 75 65 20 68 65 6c 70 73 20 74 6f 20 63 6f 6e 73 65 72 76 | .This.technique.helps.to.conserv |
| 275e0 | 65 20 74 68 65 20 6c 69 6d 69 74 65 64 20 49 50 76 34 20 61 64 64 72 65 73 73 20 73 70 61 63 65 | e.the.limited.IPv4.address.space |
| 27600 | 2e 20 54 68 65 20 31 30 30 2e 36 34 2e 30 2e 30 2f 31 30 20 61 64 64 72 65 73 73 20 62 6c 6f 63 | ..The.100.64.0.0/10.address.bloc |
| 27620 | 6b 20 69 73 20 72 65 73 65 72 76 65 64 20 66 6f 72 20 75 73 65 20 69 6e 20 63 61 72 72 69 65 72 | k.is.reserved.for.use.in.carrier |
| 27640 | 2d 67 72 61 64 65 20 4e 41 54 00 3a 61 62 62 72 3a 60 43 4b 4e 20 28 4d 41 43 73 65 63 20 63 6f | -grade.NAT.:abbr:`CKN.(MACsec.co |
| 27660 | 6e 6e 65 63 74 69 76 69 74 79 20 61 73 73 6f 63 69 61 74 69 6f 6e 20 6e 61 6d 65 29 60 20 6b 65 | nnectivity.association.name)`.ke |
| 27680 | 79 00 3a 61 62 62 72 3a 60 44 4d 56 50 4e 20 28 44 79 6e 61 6d 69 63 20 4d 75 6c 74 69 70 6f 69 | y.:abbr:`DMVPN.(Dynamic.Multipoi |
| 276a0 | 6e 74 20 56 69 72 74 75 61 6c 20 50 72 69 76 61 74 65 20 4e 65 74 77 6f 72 6b 29 60 20 69 73 20 | nt.Virtual.Private.Network)`.is. |
| 276c0 | 61 20 64 79 6e 61 6d 69 63 20 3a 61 62 62 72 3a 60 56 50 4e 20 28 56 69 72 74 75 61 6c 20 50 72 | a.dynamic.:abbr:`VPN.(Virtual.Pr |
| 276e0 | 69 76 61 74 65 20 4e 65 74 77 6f 72 6b 29 60 20 74 65 63 68 6e 6f 6c 6f 67 79 20 6f 72 69 67 69 | ivate.Network)`.technology.origi |
| 27700 | 6e 61 6c 6c 79 20 64 65 76 65 6c 6f 70 65 64 20 62 79 20 43 69 73 63 6f 2e 20 57 68 69 6c 65 20 | nally.developed.by.Cisco..While. |
| 27720 | 74 68 65 69 72 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 77 61 73 20 73 6f 6d 65 77 68 61 | their.implementation.was.somewha |
| 27740 | 74 20 70 72 6f 70 72 69 65 74 61 72 79 2c 20 74 68 65 20 75 6e 64 65 72 6c 79 69 6e 67 20 74 65 | t.proprietary,.the.underlying.te |
| 27760 | 63 68 6e 6f 6c 6f 67 69 65 73 20 61 72 65 20 61 63 74 75 61 6c 6c 79 20 73 74 61 6e 64 61 72 64 | chnologies.are.actually.standard |
| 27780 | 73 20 62 61 73 65 64 2e 20 54 68 65 20 74 68 72 65 65 20 74 65 63 68 6e 6f 6c 6f 67 69 65 73 20 | s.based..The.three.technologies. |
| 277a0 | 61 72 65 3a 00 3a 61 62 62 72 3a 60 44 4e 41 54 20 28 44 65 73 74 69 6e 61 74 69 6f 6e 20 4e 65 | are:.:abbr:`DNAT.(Destination.Ne |
| 277c0 | 74 77 6f 72 6b 20 41 64 64 72 65 73 73 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 63 68 61 6e | twork.Address.Translation)`.chan |
| 277e0 | 67 65 73 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 6f 66 20 70 | ges.the.destination.address.of.p |
| 27800 | 61 63 6b 65 74 73 20 70 61 73 73 69 6e 67 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 6f 75 74 65 | ackets.passing.through.the.route |
| 27820 | 72 2c 20 77 68 69 6c 65 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 2d 6e 61 74 60 20 63 68 61 6e 67 | r,.while.:ref:`source-nat`.chang |
| 27840 | 65 73 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 70 61 63 6b 65 74 73 | es.the.source.address.of.packets |
| 27860 | 2e 20 44 4e 41 54 20 69 73 20 74 79 70 69 63 61 6c 6c 79 20 75 73 65 64 20 77 68 65 6e 20 61 6e | ..DNAT.is.typically.used.when.an |
| 27880 | 20 65 78 74 65 72 6e 61 6c 20 28 70 75 62 6c 69 63 29 20 68 6f 73 74 20 6e 65 65 64 73 20 74 6f | .external.(public).host.needs.to |
| 278a0 | 20 69 6e 69 74 69 61 74 65 20 61 20 73 65 73 73 69 6f 6e 20 77 69 74 68 20 61 6e 20 69 6e 74 65 | .initiate.a.session.with.an.inte |
| 278c0 | 72 6e 61 6c 20 28 70 72 69 76 61 74 65 29 20 68 6f 73 74 2e 20 41 20 63 75 73 74 6f 6d 65 72 20 | rnal.(private).host..A.customer. |
| 278e0 | 6e 65 65 64 73 20 74 6f 20 61 63 63 65 73 73 20 61 20 70 72 69 76 61 74 65 20 73 65 72 76 69 63 | needs.to.access.a.private.servic |
| 27900 | 65 20 62 65 68 69 6e 64 20 74 68 65 20 72 6f 75 74 65 72 73 20 70 75 62 6c 69 63 20 49 50 2e 20 | e.behind.the.routers.public.IP.. |
| 27920 | 41 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 65 73 74 61 62 6c 69 73 68 65 64 20 77 69 74 68 | A.connection.is.established.with |
| 27940 | 20 74 68 65 20 72 6f 75 74 65 72 73 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 20 6f | .the.routers.public.IP.address.o |
| 27960 | 6e 20 61 20 77 65 6c 6c 20 6b 6e 6f 77 6e 20 70 6f 72 74 20 61 6e 64 20 74 68 75 73 20 61 6c 6c | n.a.well.known.port.and.thus.all |
| 27980 | 20 74 72 61 66 66 69 63 20 66 6f 72 20 74 68 69 73 20 70 6f 72 74 20 69 73 20 72 65 77 72 69 74 | .traffic.for.this.port.is.rewrit |
| 279a0 | 74 65 6e 20 74 6f 20 61 64 64 72 65 73 73 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 28 70 72 69 | ten.to.address.the.internal.(pri |
| 279c0 | 76 61 74 65 29 20 68 6f 73 74 2e 00 3a 61 62 62 72 3a 60 45 41 50 20 28 45 78 74 65 6e 73 69 62 | vate).host..:abbr:`EAP.(Extensib |
| 279e0 | 6c 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 29 60 20 6f 76 65 | le.Authentication.Protocol)`.ove |
| 27a00 | 72 20 4c 41 4e 20 28 45 41 50 6f 4c 29 20 69 73 20 61 20 6e 65 74 77 6f 72 6b 20 70 6f 72 74 20 | r.LAN.(EAPoL).is.a.network.port. |
| 27a20 | 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 70 72 6f 74 6f 63 6f 6c 20 75 73 65 64 20 69 6e 20 | authentication.protocol.used.in. |
| 27a40 | 49 45 45 45 20 38 30 32 2e 31 58 20 28 50 6f 72 74 20 42 61 73 65 64 20 4e 65 74 77 6f 72 6b 20 | IEEE.802.1X.(Port.Based.Network. |
| 27a60 | 41 63 63 65 73 73 20 43 6f 6e 74 72 6f 6c 29 20 64 65 76 65 6c 6f 70 65 64 20 74 6f 20 67 69 76 | Access.Control).developed.to.giv |
| 27a80 | 65 20 61 20 67 65 6e 65 72 69 63 20 6e 65 74 77 6f 72 6b 20 73 69 67 6e 2d 6f 6e 20 74 6f 20 61 | e.a.generic.network.sign-on.to.a |
| 27aa0 | 63 63 65 73 73 20 6e 65 74 77 6f 72 6b 20 72 65 73 6f 75 72 63 65 73 2e 00 3a 61 62 62 72 3a 60 | ccess.network.resources..:abbr:` |
| 27ac0 | 45 55 49 2d 36 34 20 28 36 34 2d 42 69 74 20 45 78 74 65 6e 64 65 64 20 55 6e 69 71 75 65 20 49 | EUI-64.(64-Bit.Extended.Unique.I |
| 27ae0 | 64 65 6e 74 69 66 69 65 72 29 60 20 61 73 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 3a 72 66 63 | dentifier)`.as.specified.in.:rfc |
| 27b00 | 3a 60 34 32 39 31 60 20 61 6c 6c 6f 77 73 20 61 20 68 6f 73 74 20 74 6f 20 61 73 73 69 67 6e 20 | :`4291`.allows.a.host.to.assign. |
| 27b20 | 69 74 65 73 6c 66 20 61 20 75 6e 69 71 75 65 20 36 34 2d 42 69 74 20 49 50 76 36 20 61 64 64 72 | iteslf.a.unique.64-Bit.IPv6.addr |
| 27b40 | 65 73 73 2e 00 3a 61 62 62 72 3a 60 47 45 4e 45 56 45 20 28 47 65 6e 65 72 69 63 20 4e 65 74 77 | ess..:abbr:`GENEVE.(Generic.Netw |
| 27b60 | 6f 72 6b 20 56 69 72 74 75 61 6c 69 7a 61 74 69 6f 6e 20 45 6e 63 61 70 73 75 6c 61 74 69 6f 6e | ork.Virtualization.Encapsulation |
| 27b80 | 29 60 20 73 75 70 70 6f 72 74 73 20 61 6c 6c 20 6f 66 20 74 68 65 20 63 61 70 61 62 69 6c 69 74 | )`.supports.all.of.the.capabilit |
| 27ba0 | 69 65 73 20 6f 66 20 3a 61 62 62 72 3a 60 56 58 4c 41 4e 20 28 56 69 72 74 75 61 6c 20 45 78 74 | ies.of.:abbr:`VXLAN.(Virtual.Ext |
| 27bc0 | 65 6e 73 69 62 6c 65 20 4c 41 4e 29 60 2c 20 3a 61 62 62 72 3a 60 4e 56 47 52 45 20 28 4e 65 74 | ensible.LAN)`,.:abbr:`NVGRE.(Net |
| 27be0 | 77 6f 72 6b 20 56 69 72 74 75 61 6c 69 7a 61 74 69 6f 6e 20 75 73 69 6e 67 20 47 65 6e 65 72 69 | work.Virtualization.using.Generi |
| 27c00 | 63 20 52 6f 75 74 69 6e 67 20 45 6e 63 61 70 73 75 6c 61 74 69 6f 6e 29 60 2c 20 61 6e 64 20 3a | c.Routing.Encapsulation)`,.and.: |
| 27c20 | 61 62 62 72 3a 60 53 54 54 20 28 53 74 61 74 65 6c 65 73 73 20 54 72 61 6e 73 70 6f 72 74 20 54 | abbr:`STT.(Stateless.Transport.T |
| 27c40 | 75 6e 6e 65 6c 69 6e 67 29 60 20 61 6e 64 20 77 61 73 20 64 65 73 69 67 6e 65 64 20 74 6f 20 6f | unneling)`.and.was.designed.to.o |
| 27c60 | 76 65 72 63 6f 6d 65 20 74 68 65 69 72 20 70 65 72 63 65 69 76 65 64 20 6c 69 6d 69 74 61 74 69 | vercome.their.perceived.limitati |
| 27c80 | 6f 6e 73 2e 20 4d 61 6e 79 20 62 65 6c 69 65 76 65 20 47 45 4e 45 56 45 20 63 6f 75 6c 64 20 65 | ons..Many.believe.GENEVE.could.e |
| 27ca0 | 76 65 6e 74 75 61 6c 6c 79 20 72 65 70 6c 61 63 65 20 74 68 65 73 65 20 65 61 72 6c 69 65 72 20 | ventually.replace.these.earlier. |
| 27cc0 | 66 6f 72 6d 61 74 73 20 65 6e 74 69 72 65 6c 79 2e 00 3a 61 62 62 72 3a 60 47 52 45 20 28 47 65 | formats.entirely..:abbr:`GRE.(Ge |
| 27ce0 | 6e 65 72 69 63 20 52 6f 75 74 69 6e 67 20 45 6e 63 61 70 73 75 6c 61 74 69 6f 6e 29 60 2c 20 47 | neric.Routing.Encapsulation)`,.G |
| 27d00 | 52 45 2f 49 50 73 65 63 20 28 6f 72 20 49 50 49 50 2f 49 50 73 65 63 2c 20 53 49 54 2f 49 50 73 | RE/IPsec.(or.IPIP/IPsec,.SIT/IPs |
| 27d20 | 65 63 2c 20 6f 72 20 61 6e 79 20 6f 74 68 65 72 20 73 74 61 74 65 6c 65 73 73 20 74 75 6e 6e 65 | ec,.or.any.other.stateless.tunne |
| 27d40 | 6c 20 70 72 6f 74 6f 63 6f 6c 20 6f 76 65 72 20 49 50 73 65 63 29 20 69 73 20 74 68 65 20 75 73 | l.protocol.over.IPsec).is.the.us |
| 27d60 | 75 61 6c 20 77 61 79 20 74 6f 20 70 72 6f 74 65 63 74 20 74 68 65 20 74 72 61 66 66 69 63 20 69 | ual.way.to.protect.the.traffic.i |
| 27d80 | 6e 73 69 64 65 20 61 20 74 75 6e 6e 65 6c 2e 00 3a 61 62 62 72 3a 60 47 52 4f 20 28 47 65 6e 65 | nside.a.tunnel..:abbr:`GRO.(Gene |
| 27da0 | 72 69 63 20 72 65 63 65 69 76 65 20 6f 66 66 6c 6f 61 64 29 60 20 69 73 20 74 68 65 20 63 6f 6d | ric.receive.offload)`.is.the.com |
| 27dc0 | 70 6c 65 6d 65 6e 74 20 74 6f 20 47 53 4f 2e 20 49 64 65 61 6c 6c 79 20 61 6e 79 20 66 72 61 6d | plement.to.GSO..Ideally.any.fram |
| 27de0 | 65 20 61 73 73 65 6d 62 6c 65 64 20 62 79 20 47 52 4f 20 73 68 6f 75 6c 64 20 62 65 20 73 65 67 | e.assembled.by.GRO.should.be.seg |
| 27e00 | 6d 65 6e 74 65 64 20 74 6f 20 63 72 65 61 74 65 20 61 6e 20 69 64 65 6e 74 69 63 61 6c 20 73 65 | mented.to.create.an.identical.se |
| 27e20 | 71 75 65 6e 63 65 20 6f 66 20 66 72 61 6d 65 73 20 75 73 69 6e 67 20 47 53 4f 2c 20 61 6e 64 20 | quence.of.frames.using.GSO,.and. |
| 27e40 | 61 6e 79 20 73 65 71 75 65 6e 63 65 20 6f 66 20 66 72 61 6d 65 73 20 73 65 67 6d 65 6e 74 65 64 | any.sequence.of.frames.segmented |
| 27e60 | 20 62 79 20 47 53 4f 20 73 68 6f 75 6c 64 20 62 65 20 61 62 6c 65 20 74 6f 20 62 65 20 72 65 61 | .by.GSO.should.be.able.to.be.rea |
| 27e80 | 73 73 65 6d 62 6c 65 64 20 62 61 63 6b 20 74 6f 20 74 68 65 20 6f 72 69 67 69 6e 61 6c 20 62 79 | ssembled.back.to.the.original.by |
| 27ea0 | 20 47 52 4f 2e 20 54 68 65 20 6f 6e 6c 79 20 65 78 63 65 70 74 69 6f 6e 20 74 6f 20 74 68 69 73 | .GRO..The.only.exception.to.this |
| 27ec0 | 20 69 73 20 49 50 76 34 20 49 44 20 69 6e 20 74 68 65 20 63 61 73 65 20 74 68 61 74 20 74 68 65 | .is.IPv4.ID.in.the.case.that.the |
| 27ee0 | 20 44 46 20 62 69 74 20 69 73 20 73 65 74 20 66 6f 72 20 61 20 67 69 76 65 6e 20 49 50 20 68 65 | .DF.bit.is.set.for.a.given.IP.he |
| 27f00 | 61 64 65 72 2e 20 49 66 20 74 68 65 20 76 61 6c 75 65 20 6f 66 20 74 68 65 20 49 50 76 34 20 49 | ader..If.the.value.of.the.IPv4.I |
| 27f20 | 44 20 69 73 20 6e 6f 74 20 73 65 71 75 65 6e 74 69 61 6c 6c 79 20 69 6e 63 72 65 6d 65 6e 74 69 | D.is.not.sequentially.incrementi |
| 27f40 | 6e 67 20 69 74 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 20 73 6f 20 74 68 61 74 20 69 74 | ng.it.will.be.altered.so.that.it |
| 27f60 | 20 69 73 20 77 68 65 6e 20 61 20 66 72 61 6d 65 20 61 73 73 65 6d 62 6c 65 64 20 76 69 61 20 47 | .is.when.a.frame.assembled.via.G |
| 27f80 | 52 4f 20 69 73 20 73 65 67 6d 65 6e 74 65 64 20 76 69 61 20 47 53 4f 2e 00 3a 61 62 62 72 3a 60 | RO.is.segmented.via.GSO..:abbr:` |
| 27fa0 | 47 53 4f 20 28 47 65 6e 65 72 69 63 20 53 65 67 6d 65 6e 74 61 74 69 6f 6e 20 4f 66 66 6c 6f 61 | GSO.(Generic.Segmentation.Offloa |
| 27fc0 | 64 29 60 20 69 73 20 61 20 70 75 72 65 20 73 6f 66 74 77 61 72 65 20 6f 66 66 6c 6f 61 64 20 74 | d)`.is.a.pure.software.offload.t |
| 27fe0 | 68 61 74 20 69 73 20 6d 65 61 6e 74 20 74 6f 20 64 65 61 6c 20 77 69 74 68 20 63 61 73 65 73 20 | hat.is.meant.to.deal.with.cases. |
| 28000 | 77 68 65 72 65 20 64 65 76 69 63 65 20 64 72 69 76 65 72 73 20 63 61 6e 6e 6f 74 20 70 65 72 66 | where.device.drivers.cannot.perf |
| 28020 | 6f 72 6d 20 74 68 65 20 6f 66 66 6c 6f 61 64 73 20 64 65 73 63 72 69 62 65 64 20 61 62 6f 76 65 | orm.the.offloads.described.above |
| 28040 | 2e 20 57 68 61 74 20 6f 63 63 75 72 73 20 69 6e 20 47 53 4f 20 69 73 20 74 68 61 74 20 61 20 67 | ..What.occurs.in.GSO.is.that.a.g |
| 28060 | 69 76 65 6e 20 73 6b 62 75 66 66 20 77 69 6c 6c 20 68 61 76 65 20 69 74 73 20 64 61 74 61 20 62 | iven.skbuff.will.have.its.data.b |
| 28080 | 72 6f 6b 65 6e 20 6f 75 74 20 6f 76 65 72 20 6d 75 6c 74 69 70 6c 65 20 73 6b 62 75 66 66 73 20 | roken.out.over.multiple.skbuffs. |
| 280a0 | 74 68 61 74 20 68 61 76 65 20 62 65 65 6e 20 72 65 73 69 7a 65 64 20 74 6f 20 6d 61 74 63 68 20 | that.have.been.resized.to.match. |
| 280c0 | 74 68 65 20 4d 53 53 20 70 72 6f 76 69 64 65 64 20 76 69 61 20 73 6b 62 5f 73 68 69 6e 66 6f 28 | the.MSS.provided.via.skb_shinfo( |
| 280e0 | 29 2d 3e 67 73 6f 5f 73 69 7a 65 2e 00 3a 61 62 62 72 3a 60 49 47 4d 50 20 28 49 6e 74 65 72 6e | )->gso_size..:abbr:`IGMP.(Intern |
| 28100 | 65 74 20 47 72 6f 75 70 20 4d 61 6e 61 67 65 6d 65 6e 74 20 50 72 6f 74 6f 63 6f 6c 29 60 20 70 | et.Group.Management.Protocol)`.p |
| 28120 | 72 6f 78 79 20 73 65 6e 64 73 20 49 47 4d 50 20 68 6f 73 74 20 6d 65 73 73 61 67 65 73 20 6f 6e | roxy.sends.IGMP.host.messages.on |
| 28140 | 20 62 65 68 61 6c 66 20 6f 66 20 61 20 63 6f 6e 6e 65 63 74 65 64 20 63 6c 69 65 6e 74 2e 20 54 | .behalf.of.a.connected.client..T |
| 28160 | 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 75 73 74 20 64 65 66 69 6e 65 20 6f 6e 65 | he.configuration.must.define.one |
| 28180 | 2c 20 61 6e 64 20 6f 6e 6c 79 20 6f 6e 65 20 75 70 73 74 72 65 61 6d 20 69 6e 74 65 72 66 61 63 | ,.and.only.one.upstream.interfac |
| 281a0 | 65 2c 20 61 6e 64 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 64 6f 77 6e 73 74 72 65 61 6d 20 69 6e | e,.and.one.or.more.downstream.in |
| 281c0 | 74 65 72 66 61 63 65 73 2e 00 3a 61 62 62 72 3a 60 49 50 53 65 63 20 28 49 50 20 53 65 63 75 72 | terfaces..:abbr:`IPSec.(IP.Secur |
| 281e0 | 69 74 79 29 60 20 2d 20 74 6f 6f 20 6d 61 6e 79 20 52 46 43 73 20 74 6f 20 6c 69 73 74 2c 20 62 | ity)`.-.too.many.RFCs.to.list,.b |
| 28200 | 75 74 20 73 74 61 72 74 20 77 69 74 68 20 3a 72 66 63 3a 60 34 33 30 31 60 00 3a 61 62 62 72 3a | ut.start.with.:rfc:`4301`.:abbr: |
| 28220 | 60 49 53 2d 49 53 20 28 49 6e 74 65 72 6d 65 64 69 61 74 65 20 53 79 73 74 65 6d 20 74 6f 20 49 | `IS-IS.(Intermediate.System.to.I |
| 28240 | 6e 74 65 72 6d 65 64 69 61 74 65 20 53 79 73 74 65 6d 29 60 20 69 73 20 61 20 6c 69 6e 6b 2d 73 | ntermediate.System)`.is.a.link-s |
| 28260 | 74 61 74 65 20 69 6e 74 65 72 69 6f 72 20 67 61 74 65 77 61 79 20 70 72 6f 74 6f 63 6f 6c 20 28 | tate.interior.gateway.protocol.( |
| 28280 | 49 47 50 29 20 77 68 69 63 68 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 49 53 4f 31 30 | IGP).which.is.described.in.ISO10 |
| 282a0 | 35 38 39 2c 20 3a 72 66 63 3a 60 31 31 39 35 60 2c 20 3a 72 66 63 3a 60 35 33 30 38 60 2e 20 49 | 589,.:rfc:`1195`,.:rfc:`5308`..I |
| 282c0 | 53 2d 49 53 20 72 75 6e 73 20 74 68 65 20 44 69 6a 6b 73 74 72 61 20 73 68 6f 72 74 65 73 74 2d | S-IS.runs.the.Dijkstra.shortest- |
| 282e0 | 70 61 74 68 20 66 69 72 73 74 20 28 53 50 46 29 20 61 6c 67 6f 72 69 74 68 6d 20 74 6f 20 63 72 | path.first.(SPF).algorithm.to.cr |
| 28300 | 65 61 74 65 20 61 20 64 61 74 61 62 61 73 65 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b e2 80 | eate.a.database.of.the.network.. |
| 28320 | 99 73 20 74 6f 70 6f 6c 6f 67 79 2c 20 61 6e 64 20 66 72 6f 6d 20 74 68 61 74 20 64 61 74 61 62 | .s.topology,.and.from.that.datab |
| 28340 | 61 73 65 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 62 65 73 74 20 28 74 68 61 74 20 | ase.to.determine.the.best.(that. |
| 28360 | 69 73 2c 20 6c 6f 77 65 73 74 20 63 6f 73 74 29 20 70 61 74 68 20 74 6f 20 61 20 64 65 73 74 69 | is,.lowest.cost).path.to.a.desti |
| 28380 | 6e 61 74 69 6f 6e 2e 20 54 68 65 20 69 6e 74 65 72 6d 65 64 69 61 74 65 20 73 79 73 74 65 6d 73 | nation..The.intermediate.systems |
| 283a0 | 20 28 74 68 65 20 6e 61 6d 65 20 66 6f 72 20 72 6f 75 74 65 72 73 29 20 65 78 63 68 61 6e 67 65 | .(the.name.for.routers).exchange |
| 283c0 | 20 74 6f 70 6f 6c 6f 67 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 77 69 74 68 20 74 68 65 69 72 | .topology.information.with.their |
| 283e0 | 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 65 6e 63 74 65 64 20 6e 65 69 67 68 62 6f 72 73 2e 20 49 | .directly.conencted.neighbors..I |
| 28400 | 53 2d 49 53 20 72 75 6e 73 20 64 69 72 65 63 74 6c 79 20 6f 6e 20 74 68 65 20 64 61 74 61 20 6c | S-IS.runs.directly.on.the.data.l |
| 28420 | 69 6e 6b 20 6c 61 79 65 72 20 28 4c 61 79 65 72 20 32 29 2e 20 49 53 2d 49 53 20 61 64 64 72 65 | ink.layer.(Layer.2)..IS-IS.addre |
| 28440 | 73 73 65 73 20 61 72 65 20 63 61 6c 6c 65 64 20 3a 61 62 62 72 3a 60 4e 45 54 73 20 28 4e 65 74 | sses.are.called.:abbr:`NETs.(Net |
| 28460 | 77 6f 72 6b 20 45 6e 74 69 74 79 20 54 69 74 6c 65 73 29 60 20 61 6e 64 20 63 61 6e 20 62 65 20 | work.Entity.Titles)`.and.can.be. |
| 28480 | 38 20 74 6f 20 32 30 20 62 79 74 65 73 20 6c 6f 6e 67 2c 20 62 75 74 20 61 72 65 20 67 65 6e 65 | 8.to.20.bytes.long,.but.are.gene |
| 284a0 | 72 61 6c 6c 79 20 31 30 20 62 79 74 65 73 20 6c 6f 6e 67 2e 20 54 68 65 20 74 72 65 65 20 64 61 | rally.10.bytes.long..The.tree.da |
| 284c0 | 74 61 62 61 73 65 20 74 68 61 74 20 69 73 20 63 72 65 61 74 65 64 20 77 69 74 68 20 49 53 2d 49 | tabase.that.is.created.with.IS-I |
| 284e0 | 53 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 74 68 65 20 6f 6e 65 20 74 68 61 74 20 69 73 20 | S.is.similar.to.the.one.that.is. |
| 28500 | 63 72 65 61 74 65 64 20 77 69 74 68 20 4f 53 50 46 20 69 6e 20 74 68 61 74 20 74 68 65 20 70 61 | created.with.OSPF.in.that.the.pa |
| 28520 | 74 68 73 20 63 68 6f 73 65 6e 20 73 68 6f 75 6c 64 20 62 65 20 73 69 6d 69 6c 61 72 2e 20 43 6f | ths.chosen.should.be.similar..Co |
| 28540 | 6d 70 61 72 69 73 6f 6e 73 20 74 6f 20 4f 53 50 46 20 61 72 65 20 69 6e 65 76 69 74 61 62 6c 65 | mparisons.to.OSPF.are.inevitable |
| 28560 | 20 61 6e 64 20 6f 66 74 65 6e 20 61 72 65 20 72 65 61 73 6f 6e 61 62 6c 65 20 6f 6e 65 73 20 74 | .and.often.are.reasonable.ones.t |
| 28580 | 6f 20 6d 61 6b 65 20 69 6e 20 72 65 67 61 72 64 73 20 74 6f 20 74 68 65 20 77 61 79 20 61 20 6e | o.make.in.regards.to.the.way.a.n |
| 285a0 | 65 74 77 6f 72 6b 20 77 69 6c 6c 20 72 65 73 70 6f 6e 64 20 77 69 74 68 20 65 69 74 68 65 72 20 | etwork.will.respond.with.either. |
| 285c0 | 49 47 50 2e 00 3a 61 62 62 72 3a 60 49 53 2d 49 53 20 28 49 6e 74 65 72 6d 65 64 69 61 74 65 20 | IGP..:abbr:`IS-IS.(Intermediate. |
| 285e0 | 53 79 73 74 65 6d 20 74 6f 20 49 6e 74 65 72 6d 65 64 69 61 74 65 20 53 79 73 74 65 6d 29 60 20 | System.to.Intermediate.System)`. |
| 28600 | 69 73 20 61 20 6c 69 6e 6b 2d 73 74 61 74 65 20 69 6e 74 65 72 69 6f 72 20 67 61 74 65 77 61 79 | is.a.link-state.interior.gateway |
| 28620 | 20 70 72 6f 74 6f 63 6f 6c 20 28 49 47 50 29 20 77 68 69 63 68 20 69 73 20 64 65 73 63 72 69 62 | .protocol.(IGP).which.is.describ |
| 28640 | 65 64 20 69 6e 20 49 53 4f 31 30 35 38 39 2c 20 3a 72 66 63 3a 60 31 31 39 35 60 2c 20 3a 72 66 | ed.in.ISO10589,.:rfc:`1195`,.:rf |
| 28660 | 63 3a 60 35 33 30 38 60 2e 20 49 53 2d 49 53 20 72 75 6e 73 20 74 68 65 20 44 69 6a 6b 73 74 72 | c:`5308`..IS-IS.runs.the.Dijkstr |
| 28680 | 61 20 73 68 6f 72 74 65 73 74 2d 70 61 74 68 20 66 69 72 73 74 20 28 53 50 46 29 20 61 6c 67 6f | a.shortest-path.first.(SPF).algo |
| 286a0 | 72 69 74 68 6d 20 74 6f 20 63 72 65 61 74 65 20 61 20 64 61 74 61 62 61 73 65 20 6f 66 20 74 68 | rithm.to.create.a.database.of.th |
| 286c0 | 65 20 6e 65 74 77 6f 72 6b e2 80 99 73 20 74 6f 70 6f 6c 6f 67 79 2c 20 61 6e 64 20 66 72 6f 6d | e.network...s.topology,.and.from |
| 286e0 | 20 74 68 61 74 20 64 61 74 61 62 61 73 65 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 | .that.database.to.determine.the. |
| 28700 | 62 65 73 74 20 28 74 68 61 74 20 69 73 2c 20 6c 6f 77 65 73 74 20 63 6f 73 74 29 20 70 61 74 68 | best.(that.is,.lowest.cost).path |
| 28720 | 20 74 6f 20 61 20 64 65 73 74 69 6e 61 74 69 6f 6e 2e 20 54 68 65 20 69 6e 74 65 72 6d 65 64 69 | .to.a.destination..The.intermedi |
| 28740 | 61 74 65 20 73 79 73 74 65 6d 73 20 28 74 68 65 20 6e 61 6d 65 20 66 6f 72 20 72 6f 75 74 65 72 | ate.systems.(the.name.for.router |
| 28760 | 73 29 20 65 78 63 68 61 6e 67 65 20 74 6f 70 6f 6c 6f 67 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | s).exchange.topology.information |
| 28780 | 20 77 69 74 68 20 74 68 65 69 72 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 20 6e | .with.their.directly.connected.n |
| 287a0 | 65 69 67 68 62 6f 72 73 2e 20 49 53 2d 49 53 20 72 75 6e 73 20 64 69 72 65 63 74 6c 79 20 6f 6e | eighbors..IS-IS.runs.directly.on |
| 287c0 | 20 74 68 65 20 64 61 74 61 20 6c 69 6e 6b 20 6c 61 79 65 72 20 28 4c 61 79 65 72 20 32 29 2e 20 | .the.data.link.layer.(Layer.2).. |
| 287e0 | 49 53 2d 49 53 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 63 61 6c 6c 65 64 20 3a 61 62 62 72 | IS-IS.addresses.are.called.:abbr |
| 28800 | 3a 60 4e 45 54 73 20 28 4e 65 74 77 6f 72 6b 20 45 6e 74 69 74 79 20 54 69 74 6c 65 73 29 60 20 | :`NETs.(Network.Entity.Titles)`. |
| 28820 | 61 6e 64 20 63 61 6e 20 62 65 20 38 20 74 6f 20 32 30 20 62 79 74 65 73 20 6c 6f 6e 67 2c 20 62 | and.can.be.8.to.20.bytes.long,.b |
| 28840 | 75 74 20 61 72 65 20 67 65 6e 65 72 61 6c 6c 79 20 31 30 20 62 79 74 65 73 20 6c 6f 6e 67 2e 20 | ut.are.generally.10.bytes.long.. |
| 28860 | 54 68 65 20 74 72 65 65 20 64 61 74 61 62 61 73 65 20 74 68 61 74 20 69 73 20 63 72 65 61 74 65 | The.tree.database.that.is.create |
| 28880 | 64 20 77 69 74 68 20 49 53 2d 49 53 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 74 68 65 20 6f | d.with.IS-IS.is.similar.to.the.o |
| 288a0 | 6e 65 20 74 68 61 74 20 69 73 20 63 72 65 61 74 65 64 20 77 69 74 68 20 4f 53 50 46 20 69 6e 20 | ne.that.is.created.with.OSPF.in. |
| 288c0 | 74 68 61 74 20 74 68 65 20 70 61 74 68 73 20 63 68 6f 73 65 6e 20 73 68 6f 75 6c 64 20 62 65 20 | that.the.paths.chosen.should.be. |
| 288e0 | 73 69 6d 69 6c 61 72 2e 20 43 6f 6d 70 61 72 69 73 6f 6e 73 20 74 6f 20 4f 53 50 46 20 61 72 65 | similar..Comparisons.to.OSPF.are |
| 28900 | 20 69 6e 65 76 69 74 61 62 6c 65 20 61 6e 64 20 6f 66 74 65 6e 20 61 72 65 20 72 65 61 73 6f 6e | .inevitable.and.often.are.reason |
| 28920 | 61 62 6c 65 20 6f 6e 65 73 20 74 6f 20 6d 61 6b 65 20 69 6e 20 72 65 67 61 72 64 73 20 74 6f 20 | able.ones.to.make.in.regards.to. |
| 28940 | 74 68 65 20 77 61 79 20 61 20 6e 65 74 77 6f 72 6b 20 77 69 6c 6c 20 72 65 73 70 6f 6e 64 20 77 | the.way.a.network.will.respond.w |
| 28960 | 69 74 68 20 65 69 74 68 65 72 20 49 47 50 2e 00 3a 61 62 62 72 3a 60 4c 33 56 50 4e 20 56 52 46 | ith.either.IGP..:abbr:`L3VPN.VRF |
| 28980 | 73 20 28 20 4c 61 79 65 72 20 33 20 56 69 72 74 75 61 6c 20 50 72 69 76 61 74 65 20 4e 65 74 77 | s.(.Layer.3.Virtual.Private.Netw |
| 289a0 | 6f 72 6b 73 20 29 60 20 62 67 70 64 20 73 75 70 70 6f 72 74 73 20 66 6f 72 20 49 50 76 34 20 52 | orks.)`.bgpd.supports.for.IPv4.R |
| 289c0 | 46 43 20 34 33 36 34 20 61 6e 64 20 49 50 76 36 20 52 46 43 20 34 36 35 39 2e 20 4c 33 56 50 4e | FC.4364.and.IPv6.RFC.4659..L3VPN |
| 289e0 | 20 72 6f 75 74 65 73 2c 20 61 6e 64 20 74 68 65 69 72 20 61 73 73 6f 63 69 61 74 65 64 20 56 52 | .routes,.and.their.associated.VR |
| 28a00 | 46 20 4d 50 4c 53 20 6c 61 62 65 6c 73 2c 20 63 61 6e 20 62 65 20 64 69 73 74 72 69 62 75 74 65 | F.MPLS.labels,.can.be.distribute |
| 28a20 | 64 20 74 6f 20 56 50 4e 20 53 41 46 49 20 6e 65 69 67 68 62 6f 72 73 20 69 6e 20 74 68 65 20 64 | d.to.VPN.SAFI.neighbors.in.the.d |
| 28a40 | 65 66 61 75 6c 74 2c 20 69 2e 65 2e 2c 20 6e 6f 6e 20 56 52 46 2c 20 42 47 50 20 69 6e 73 74 61 | efault,.i.e.,.non.VRF,.BGP.insta |
| 28a60 | 6e 63 65 2e 20 56 52 46 20 4d 50 4c 53 20 6c 61 62 65 6c 73 20 61 72 65 20 72 65 61 63 68 65 64 | nce..VRF.MPLS.labels.are.reached |
| 28a80 | 20 75 73 69 6e 67 20 63 6f 72 65 20 4d 50 4c 53 20 6c 61 62 65 6c 73 20 77 68 69 63 68 20 61 72 | .using.core.MPLS.labels.which.ar |
| 28aa0 | 65 20 64 69 73 74 72 69 62 75 74 65 64 20 75 73 69 6e 67 20 4c 44 50 20 6f 72 20 42 47 50 20 6c | e.distributed.using.LDP.or.BGP.l |
| 28ac0 | 61 62 65 6c 65 64 20 75 6e 69 63 61 73 74 2e 20 62 67 70 64 20 61 6c 73 6f 20 73 75 70 70 6f 72 | abeled.unicast..bgpd.also.suppor |
| 28ae0 | 74 73 20 69 6e 74 65 72 2d 56 52 46 20 72 6f 75 74 65 20 6c 65 61 6b 69 6e 67 2e 00 3a 61 62 62 | ts.inter-VRF.route.leaking..:abb |
| 28b00 | 72 3a 60 4c 44 50 20 28 4c 61 62 65 6c 20 44 69 73 74 72 69 62 75 74 69 6f 6e 20 50 72 6f 74 6f | r:`LDP.(Label.Distribution.Proto |
| 28b20 | 63 6f 6c 29 60 20 69 73 20 61 20 54 43 50 20 62 61 73 65 64 20 4d 50 4c 53 20 73 69 67 6e 61 6c | col)`.is.a.TCP.based.MPLS.signal |
| 28b40 | 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 74 68 61 74 20 64 69 73 74 72 69 62 75 74 65 73 20 6c 61 | ing.protocol.that.distributes.la |
| 28b60 | 62 65 6c 73 20 63 72 65 61 74 69 6e 67 20 4d 50 4c 53 20 6c 61 62 65 6c 20 73 77 69 74 63 68 65 | bels.creating.MPLS.label.switche |
| 28b80 | 64 20 70 61 74 68 73 20 69 6e 20 61 20 64 79 6e 61 6d 69 63 20 6d 61 6e 6e 65 72 2e 20 4c 44 50 | d.paths.in.a.dynamic.manner..LDP |
| 28ba0 | 20 69 73 20 6e 6f 74 20 61 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 2c 20 61 73 20 69 | .is.not.a.routing.protocol,.as.i |
| 28bc0 | 74 20 72 65 6c 69 65 73 20 6f 6e 20 6f 74 68 65 72 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 | t.relies.on.other.routing.protoc |
| 28be0 | 6f 6c 73 20 66 6f 72 20 66 6f 72 77 61 72 64 69 6e 67 20 64 65 63 69 73 69 6f 6e 73 2e 20 4c 44 | ols.for.forwarding.decisions..LD |
| 28c00 | 50 20 63 61 6e 6e 6f 74 20 62 6f 6f 74 73 74 72 61 70 20 69 74 73 65 6c 66 2c 20 61 6e 64 20 74 | P.cannot.bootstrap.itself,.and.t |
| 28c20 | 68 65 72 65 66 6f 72 65 20 72 65 6c 69 65 73 20 6f 6e 20 73 61 69 64 20 72 6f 75 74 69 6e 67 20 | herefore.relies.on.said.routing. |
| 28c40 | 70 72 6f 74 6f 63 6f 6c 73 20 66 6f 72 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 20 77 69 74 68 | protocols.for.communication.with |
| 28c60 | 20 6f 74 68 65 72 20 72 6f 75 74 65 72 73 20 74 68 61 74 20 75 73 65 20 4c 44 50 2e 00 3a 61 62 | .other.routers.that.use.LDP..:ab |
| 28c80 | 62 72 3a 60 4c 4c 44 50 20 28 4c 69 6e 6b 20 4c 61 79 65 72 20 44 69 73 63 6f 76 65 72 79 20 50 | br:`LLDP.(Link.Layer.Discovery.P |
| 28ca0 | 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 61 20 76 65 6e 64 6f 72 2d 6e 65 75 74 72 61 6c 20 6c 69 | rotocol)`.is.a.vendor-neutral.li |
| 28cc0 | 6e 6b 20 6c 61 79 65 72 20 70 72 6f 74 6f 63 6f 6c 20 69 6e 20 74 68 65 20 49 6e 74 65 72 6e 65 | nk.layer.protocol.in.the.Interne |
| 28ce0 | 74 20 50 72 6f 74 6f 63 6f 6c 20 53 75 69 74 65 20 75 73 65 64 20 62 79 20 6e 65 74 77 6f 72 6b | t.Protocol.Suite.used.by.network |
| 28d00 | 20 64 65 76 69 63 65 73 20 66 6f 72 20 61 64 76 65 72 74 69 73 69 6e 67 20 74 68 65 69 72 20 69 | .devices.for.advertising.their.i |
| 28d20 | 64 65 6e 74 69 74 79 2c 20 63 61 70 61 62 69 6c 69 74 69 65 73 2c 20 61 6e 64 20 6e 65 69 67 68 | dentity,.capabilities,.and.neigh |
| 28d40 | 62 6f 72 73 20 6f 6e 20 61 6e 20 49 45 45 45 20 38 30 32 20 6c 6f 63 61 6c 20 61 72 65 61 20 6e | bors.on.an.IEEE.802.local.area.n |
| 28d60 | 65 74 77 6f 72 6b 2c 20 70 72 69 6e 63 69 70 61 6c 6c 79 20 77 69 72 65 64 20 45 74 68 65 72 6e | etwork,.principally.wired.Ethern |
| 28d80 | 65 74 2e 20 54 68 65 20 70 72 6f 74 6f 63 6f 6c 20 69 73 20 66 6f 72 6d 61 6c 6c 79 20 72 65 66 | et..The.protocol.is.formally.ref |
| 28da0 | 65 72 72 65 64 20 74 6f 20 62 79 20 74 68 65 20 49 45 45 45 20 61 73 20 53 74 61 74 69 6f 6e 20 | erred.to.by.the.IEEE.as.Station. |
| 28dc0 | 61 6e 64 20 4d 65 64 69 61 20 41 63 63 65 73 73 20 43 6f 6e 74 72 6f 6c 20 43 6f 6e 6e 65 63 74 | and.Media.Access.Control.Connect |
| 28de0 | 69 76 69 74 79 20 44 69 73 63 6f 76 65 72 79 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 49 45 45 | ivity.Discovery.specified.in.IEE |
| 28e00 | 45 20 38 30 32 2e 31 41 42 20 61 6e 64 20 49 45 45 45 20 38 30 32 2e 33 2d 32 30 31 32 20 73 65 | E.802.1AB.and.IEEE.802.3-2012.se |
| 28e20 | 63 74 69 6f 6e 20 36 20 63 6c 61 75 73 65 20 37 39 2e 00 3a 61 62 62 72 3a 60 4c 52 4f 20 28 4c | ction.6.clause.79..:abbr:`LRO.(L |
| 28e40 | 61 72 67 65 20 52 65 63 65 69 76 65 20 4f 66 66 6c 6f 61 64 29 60 20 69 73 20 61 20 74 65 63 68 | arge.Receive.Offload)`.is.a.tech |
| 28e60 | 6e 69 71 75 65 20 64 65 73 69 67 6e 65 64 20 74 6f 20 62 6f 6f 73 74 20 74 68 65 20 65 66 66 69 | nique.designed.to.boost.the.effi |
| 28e80 | 63 69 65 6e 63 79 20 6f 66 20 68 6f 77 20 79 6f 75 72 20 63 6f 6d 70 75 74 65 72 27 73 20 6e 65 | ciency.of.how.your.computer's.ne |
| 28ea0 | 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 20 63 61 72 64 20 28 4e 49 43 29 20 70 72 6f 63 65 | twork.interface.card.(NIC).proce |
| 28ec0 | 73 73 65 73 20 69 6e 63 6f 6d 69 6e 67 20 6e 65 74 77 6f 72 6b 20 74 72 61 66 66 69 63 2e 20 54 | sses.incoming.network.traffic..T |
| 28ee0 | 79 70 69 63 61 6c 6c 79 2c 20 6e 65 74 77 6f 72 6b 20 64 61 74 61 20 61 72 72 69 76 65 73 20 69 | ypically,.network.data.arrives.i |
| 28f00 | 6e 20 73 6d 61 6c 6c 65 72 20 63 68 75 6e 6b 73 20 63 61 6c 6c 65 64 20 70 61 63 6b 65 74 73 2e | n.smaller.chunks.called.packets. |
| 28f20 | 20 50 72 6f 63 65 73 73 69 6e 67 20 65 61 63 68 20 70 61 63 6b 65 74 20 69 6e 64 69 76 69 64 75 | .Processing.each.packet.individu |
| 28f40 | 61 6c 6c 79 20 63 6f 6e 73 75 6d 65 73 20 43 50 55 20 28 63 65 6e 74 72 61 6c 20 70 72 6f 63 65 | ally.consumes.CPU.(central.proce |
| 28f60 | 73 73 69 6e 67 20 75 6e 69 74 29 20 72 65 73 6f 75 72 63 65 73 2e 20 4c 6f 74 73 20 6f 66 20 73 | ssing.unit).resources..Lots.of.s |
| 28f80 | 6d 61 6c 6c 20 70 61 63 6b 65 74 73 20 63 61 6e 20 6c 65 61 64 20 74 6f 20 61 20 70 65 72 66 6f | mall.packets.can.lead.to.a.perfo |
| 28fa0 | 72 6d 61 6e 63 65 20 62 6f 74 74 6c 65 6e 65 63 6b 2e 20 49 6e 73 74 65 61 64 20 6f 66 20 68 61 | rmance.bottleneck..Instead.of.ha |
| 28fc0 | 6e 64 69 6e 67 20 74 68 65 20 43 50 55 20 65 61 63 68 20 70 61 63 6b 65 74 20 61 73 20 69 74 20 | nding.the.CPU.each.packet.as.it. |
| 28fe0 | 63 6f 6d 65 73 20 69 6e 2c 20 4c 52 4f 20 69 6e 73 74 72 75 63 74 73 20 74 68 65 20 4e 49 43 20 | comes.in,.LRO.instructs.the.NIC. |
| 29000 | 74 6f 20 63 6f 6d 62 69 6e 65 20 6d 75 6c 74 69 70 6c 65 20 69 6e 63 6f 6d 69 6e 67 20 70 61 63 | to.combine.multiple.incoming.pac |
| 29020 | 6b 65 74 73 20 69 6e 74 6f 20 61 20 73 69 6e 67 6c 65 2c 20 6c 61 72 67 65 72 20 70 61 63 6b 65 | kets.into.a.single,.larger.packe |
| 29040 | 74 2e 20 54 68 69 73 20 6c 61 72 67 65 72 20 70 61 63 6b 65 74 20 69 73 20 74 68 65 6e 20 70 61 | t..This.larger.packet.is.then.pa |
| 29060 | 73 73 65 64 20 74 6f 20 74 68 65 20 43 50 55 20 66 6f 72 20 70 72 6f 63 65 73 73 69 6e 67 2e 00 | ssed.to.the.CPU.for.processing.. |
| 29080 | 3a 61 62 62 72 3a 60 4d 46 50 20 28 4d 61 6e 61 67 65 6d 65 6e 74 20 46 72 61 6d 65 20 50 72 6f | :abbr:`MFP.(Management.Frame.Pro |
| 290a0 | 74 65 63 74 69 6f 6e 29 60 20 69 73 20 72 65 71 75 69 72 65 64 20 66 6f 72 20 57 50 41 33 2e 00 | tection)`.is.required.for.WPA3.. |
| 290c0 | 3a 61 62 62 72 3a 60 4d 4b 41 20 28 4d 41 43 73 65 63 20 4b 65 79 20 41 67 72 65 65 6d 65 6e 74 | :abbr:`MKA.(MACsec.Key.Agreement |
| 290e0 | 20 70 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 75 73 65 64 20 74 6f 20 73 79 6e 63 68 72 6f 6e 69 | .protocol)`.is.used.to.synchroni |
| 29100 | 7a 65 20 6b 65 79 73 20 62 65 74 77 65 65 6e 20 69 6e 64 69 76 69 64 75 61 6c 20 70 65 65 72 73 | ze.keys.between.individual.peers |
| 29120 | 2e 00 3a 61 62 62 72 3a 60 4d 50 4c 53 20 28 4d 75 6c 74 69 2d 50 72 6f 74 6f 63 6f 6c 20 4c 61 | ..:abbr:`MPLS.(Multi-Protocol.La |
| 29140 | 62 65 6c 20 53 77 69 74 63 68 69 6e 67 29 60 20 69 73 20 61 20 70 61 63 6b 65 74 20 66 6f 72 77 | bel.Switching)`.is.a.packet.forw |
| 29160 | 61 72 64 69 6e 67 20 70 61 72 61 64 69 67 6d 20 77 68 69 63 68 20 64 69 66 66 65 72 73 20 66 72 | arding.paradigm.which.differs.fr |
| 29180 | 6f 6d 20 72 65 67 75 6c 61 72 20 49 50 20 66 6f 72 77 61 72 64 69 6e 67 2e 20 49 6e 73 74 65 61 | om.regular.IP.forwarding..Instea |
| 291a0 | 64 20 6f 66 20 49 50 20 61 64 64 72 65 73 73 65 73 20 62 65 69 6e 67 20 75 73 65 64 20 74 6f 20 | d.of.IP.addresses.being.used.to. |
| 291c0 | 6d 61 6b 65 20 74 68 65 20 64 65 63 69 73 69 6f 6e 20 6f 6e 20 66 69 6e 64 69 6e 67 20 74 68 65 | make.the.decision.on.finding.the |
| 291e0 | 20 65 78 69 74 20 69 6e 74 65 72 66 61 63 65 2c 20 61 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 69 | .exit.interface,.a.router.will.i |
| 29200 | 6e 73 74 65 61 64 20 75 73 65 20 61 6e 20 65 78 61 63 74 20 6d 61 74 63 68 20 6f 6e 20 61 20 33 | nstead.use.an.exact.match.on.a.3 |
| 29220 | 32 20 62 69 74 2f 34 20 62 79 74 65 20 68 65 61 64 65 72 20 63 61 6c 6c 65 64 20 74 68 65 20 4d | 2.bit/4.byte.header.called.the.M |
| 29240 | 50 4c 53 20 6c 61 62 65 6c 2e 20 54 68 69 73 20 6c 61 62 65 6c 20 69 73 20 69 6e 73 65 72 74 65 | PLS.label..This.label.is.inserte |
| 29260 | 64 20 62 65 74 77 65 65 6e 20 74 68 65 20 65 74 68 65 72 6e 65 74 20 28 6c 61 79 65 72 20 32 29 | d.between.the.ethernet.(layer.2) |
| 29280 | 20 68 65 61 64 65 72 20 61 6e 64 20 74 68 65 20 49 50 20 28 6c 61 79 65 72 20 33 29 20 68 65 61 | .header.and.the.IP.(layer.3).hea |
| 292a0 | 64 65 72 2e 20 4f 6e 65 20 63 61 6e 20 73 74 61 74 69 63 61 6c 6c 79 20 6f 72 20 64 79 6e 61 6d | der..One.can.statically.or.dynam |
| 292c0 | 69 63 61 6c 6c 79 20 61 73 73 69 67 6e 20 6c 61 62 65 6c 20 61 6c 6c 6f 63 61 74 69 6f 6e 73 2c | ically.assign.label.allocations, |
| 292e0 | 20 62 75 74 20 77 65 20 77 69 6c 6c 20 66 6f 63 75 73 20 6f 6e 20 64 79 6e 61 6d 69 63 20 61 6c | .but.we.will.focus.on.dynamic.al |
| 29300 | 6c 6f 63 61 74 69 6f 6e 20 6f 66 20 6c 61 62 65 6c 73 20 75 73 69 6e 67 20 73 6f 6d 65 20 73 6f | location.of.labels.using.some.so |
| 29320 | 72 74 20 6f 66 20 6c 61 62 65 6c 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 70 72 6f 74 6f 63 6f | rt.of.label.distribution.protoco |
| 29340 | 6c 20 28 73 75 63 68 20 61 73 20 74 68 65 20 61 70 74 6c 79 20 6e 61 6d 65 64 20 4c 61 62 65 6c | l.(such.as.the.aptly.named.Label |
| 29360 | 20 44 69 73 74 72 69 62 75 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 20 2f 20 4c 44 50 2c 20 52 65 | .Distribution.Protocol./.LDP,.Re |
| 29380 | 73 6f 75 72 63 65 20 52 65 73 65 72 76 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 20 2f 20 52 53 | source.Reservation.Protocol./.RS |
| 293a0 | 56 50 2c 20 6f 72 20 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 74 68 72 6f 75 67 68 20 4f | VP,.or.Segment.Routing.through.O |
| 293c0 | 53 50 46 2f 49 53 49 53 29 2e 20 54 68 65 73 65 20 70 72 6f 74 6f 63 6f 6c 73 20 61 6c 6c 6f 77 | SPF/ISIS)..These.protocols.allow |
| 293e0 | 20 66 6f 72 20 74 68 65 20 63 72 65 61 74 69 6f 6e 20 6f 66 20 61 20 75 6e 69 64 69 72 65 63 74 | .for.the.creation.of.a.unidirect |
| 29400 | 69 6f 6e 61 6c 2f 75 6e 69 63 61 73 74 20 70 61 74 68 20 63 61 6c 6c 65 64 20 61 20 6c 61 62 65 | ional/unicast.path.called.a.labe |
| 29420 | 6c 65 64 20 73 77 69 74 63 68 65 64 20 70 61 74 68 20 28 69 6e 69 74 69 61 6c 69 7a 65 64 20 61 | led.switched.path.(initialized.a |
| 29440 | 73 20 4c 53 50 29 20 74 68 72 6f 75 67 68 6f 75 74 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 74 68 | s.LSP).throughout.the.network.th |
| 29460 | 61 74 20 6f 70 65 72 61 74 65 73 20 76 65 72 79 20 6d 75 63 68 20 6c 69 6b 65 20 61 20 74 75 6e | at.operates.very.much.like.a.tun |
| 29480 | 6e 65 6c 20 74 68 72 6f 75 67 68 20 74 68 65 20 6e 65 74 77 6f 72 6b 2e 20 41 6e 20 65 61 73 79 | nel.through.the.network..An.easy |
| 294a0 | 20 77 61 79 20 6f 66 20 74 68 69 6e 6b 69 6e 67 20 61 62 6f 75 74 20 68 6f 77 20 61 6e 20 4d 50 | .way.of.thinking.about.how.an.MP |
| 294c0 | 4c 53 20 4c 53 50 20 61 63 74 75 61 6c 6c 79 20 66 6f 72 77 61 72 64 73 20 74 72 61 66 66 69 63 | LS.LSP.actually.forwards.traffic |
| 294e0 | 20 74 68 72 6f 75 67 68 6f 75 74 20 61 20 6e 65 74 77 6f 72 6b 20 69 73 20 74 6f 20 74 68 69 6e | .throughout.a.network.is.to.thin |
| 29500 | 6b 20 6f 66 20 61 20 47 52 45 20 74 75 6e 6e 65 6c 2e 20 54 68 65 79 20 61 72 65 20 6e 6f 74 20 | k.of.a.GRE.tunnel..They.are.not. |
| 29520 | 74 68 65 20 73 61 6d 65 20 69 6e 20 68 6f 77 20 74 68 65 79 20 6f 70 65 72 61 74 65 2c 20 62 75 | the.same.in.how.they.operate,.bu |
| 29540 | 74 20 74 68 65 79 20 61 72 65 20 74 68 65 20 73 61 6d 65 20 69 6e 20 68 6f 77 20 74 68 65 79 20 | t.they.are.the.same.in.how.they. |
| 29560 | 68 61 6e 64 6c 65 20 74 68 65 20 74 75 6e 6e 65 6c 65 64 20 70 61 63 6b 65 74 2e 20 49 74 20 77 | handle.the.tunneled.packet..It.w |
| 29580 | 6f 75 6c 64 20 62 65 20 67 6f 6f 64 20 74 6f 20 74 68 69 6e 6b 20 6f 66 20 4d 50 4c 53 20 61 73 | ould.be.good.to.think.of.MPLS.as |
| 295a0 | 20 61 20 74 75 6e 6e 65 6c 69 6e 67 20 74 65 63 68 6e 6f 6c 6f 67 79 20 74 68 61 74 20 63 61 6e | .a.tunneling.technology.that.can |
| 295c0 | 20 62 65 20 75 73 65 64 20 74 6f 20 74 72 61 6e 73 70 6f 72 74 20 6d 61 6e 79 20 64 69 66 66 65 | .be.used.to.transport.many.diffe |
| 295e0 | 72 65 6e 74 20 74 79 70 65 73 20 6f 66 20 70 61 63 6b 65 74 73 2c 20 74 6f 20 61 69 64 20 69 6e | rent.types.of.packets,.to.aid.in |
| 29600 | 20 74 72 61 66 66 69 63 20 65 6e 67 69 6e 65 65 72 69 6e 67 20 62 79 20 61 6c 6c 6f 77 69 6e 67 | .traffic.engineering.by.allowing |
| 29620 | 20 6f 6e 65 20 74 6f 20 73 70 65 63 69 66 79 20 70 61 74 68 73 20 74 68 72 6f 75 67 68 6f 75 74 | .one.to.specify.paths.throughout |
| 29640 | 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 28 75 73 69 6e 67 20 52 53 56 50 20 6f 72 20 53 52 29 2c | .the.network.(using.RSVP.or.SR), |
| 29660 | 20 61 6e 64 20 74 6f 20 67 65 6e 65 72 61 6c 6c 79 20 61 6c 6c 6f 77 20 66 6f 72 20 65 61 73 69 | .and.to.generally.allow.for.easi |
| 29680 | 65 72 20 69 6e 74 72 61 2f 69 6e 74 65 72 20 6e 65 74 77 6f 72 6b 20 74 72 61 6e 73 70 6f 72 74 | er.intra/inter.network.transport |
| 296a0 | 20 6f 66 20 64 61 74 61 20 70 61 63 6b 65 74 73 2e 00 3a 61 62 62 72 3a 60 4e 41 54 20 28 4e 65 | .of.data.packets..:abbr:`NAT.(Ne |
| 296c0 | 74 77 6f 72 6b 20 41 64 64 72 65 73 73 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 69 73 20 61 | twork.Address.Translation)`.is.a |
| 296e0 | 20 63 6f 6d 6d 6f 6e 20 6d 65 74 68 6f 64 20 6f 66 20 72 65 6d 61 70 70 69 6e 67 20 6f 6e 65 20 | .common.method.of.remapping.one. |
| 29700 | 49 50 20 61 64 64 72 65 73 73 20 73 70 61 63 65 20 69 6e 74 6f 20 61 6e 6f 74 68 65 72 20 62 79 | IP.address.space.into.another.by |
| 29720 | 20 6d 6f 64 69 66 79 69 6e 67 20 6e 65 74 77 6f 72 6b 20 61 64 64 72 65 73 73 20 69 6e 66 6f 72 | .modifying.network.address.infor |
| 29740 | 6d 61 74 69 6f 6e 20 69 6e 20 74 68 65 20 49 50 20 68 65 61 64 65 72 20 6f 66 20 70 61 63 6b 65 | mation.in.the.IP.header.of.packe |
| 29760 | 74 73 20 77 68 69 6c 65 20 74 68 65 79 20 61 72 65 20 69 6e 20 74 72 61 6e 73 69 74 20 61 63 72 | ts.while.they.are.in.transit.acr |
| 29780 | 6f 73 73 20 61 20 74 72 61 66 66 69 63 20 72 6f 75 74 69 6e 67 20 64 65 76 69 63 65 2e 20 54 68 | oss.a.traffic.routing.device..Th |
| 297a0 | 65 20 74 65 63 68 6e 69 71 75 65 20 77 61 73 20 6f 72 69 67 69 6e 61 6c 6c 79 20 75 73 65 64 20 | e.technique.was.originally.used. |
| 297c0 | 61 73 20 61 20 73 68 6f 72 74 63 75 74 20 74 6f 20 61 76 6f 69 64 20 74 68 65 20 6e 65 65 64 20 | as.a.shortcut.to.avoid.the.need. |
| 297e0 | 74 6f 20 72 65 61 64 64 72 65 73 73 20 65 76 65 72 79 20 68 6f 73 74 20 77 68 65 6e 20 61 20 6e | to.readdress.every.host.when.a.n |
| 29800 | 65 74 77 6f 72 6b 20 77 61 73 20 6d 6f 76 65 64 2e 20 49 74 20 68 61 73 20 62 65 63 6f 6d 65 20 | etwork.was.moved..It.has.become. |
| 29820 | 61 20 70 6f 70 75 6c 61 72 20 61 6e 64 20 65 73 73 65 6e 74 69 61 6c 20 74 6f 6f 6c 20 69 6e 20 | a.popular.and.essential.tool.in. |
| 29840 | 63 6f 6e 73 65 72 76 69 6e 67 20 67 6c 6f 62 61 6c 20 61 64 64 72 65 73 73 20 73 70 61 63 65 20 | conserving.global.address.space. |
| 29860 | 69 6e 20 74 68 65 20 66 61 63 65 20 6f 66 20 49 50 76 34 20 61 64 64 72 65 73 73 20 65 78 68 61 | in.the.face.of.IPv4.address.exha |
| 29880 | 75 73 74 69 6f 6e 2e 20 4f 6e 65 20 49 6e 74 65 72 6e 65 74 2d 72 6f 75 74 61 62 6c 65 20 49 50 | ustion..One.Internet-routable.IP |
| 298a0 | 20 61 64 64 72 65 73 73 20 6f 66 20 61 20 4e 41 54 20 67 61 74 65 77 61 79 20 63 61 6e 20 62 65 | .address.of.a.NAT.gateway.can.be |
| 298c0 | 20 75 73 65 64 20 66 6f 72 20 61 6e 20 65 6e 74 69 72 65 20 70 72 69 76 61 74 65 20 6e 65 74 77 | .used.for.an.entire.private.netw |
| 298e0 | 6f 72 6b 2e 00 3a 61 62 62 72 3a 60 4e 41 54 20 28 4e 65 74 77 6f 72 6b 20 41 64 64 72 65 73 73 | ork..:abbr:`NAT.(Network.Address |
| 29900 | 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 65 6e 74 | .Translation)`.is.configured.ent |
| 29920 | 69 72 65 6c 79 20 6f 6e 20 61 20 73 65 72 69 65 73 20 6f 66 20 73 6f 20 63 61 6c 6c 65 64 20 60 | irely.on.a.series.of.so.called.` |
| 29940 | 72 75 6c 65 73 60 2e 20 52 75 6c 65 73 20 61 72 65 20 6e 75 6d 62 65 72 65 64 20 61 6e 64 20 65 | rules`..Rules.are.numbered.and.e |
| 29960 | 76 61 6c 75 61 74 65 64 20 62 79 20 74 68 65 20 75 6e 64 65 72 6c 79 69 6e 67 20 4f 53 20 69 6e | valuated.by.the.underlying.OS.in |
| 29980 | 20 6e 75 6d 65 72 69 63 61 6c 20 6f 72 64 65 72 21 20 54 68 65 20 72 75 6c 65 20 6e 75 6d 62 65 | .numerical.order!.The.rule.numbe |
| 299a0 | 72 73 20 63 61 6e 20 62 65 20 63 68 61 6e 67 65 73 20 62 79 20 75 74 69 6c 69 7a 69 6e 67 20 74 | rs.can.be.changes.by.utilizing.t |
| 299c0 | 68 65 20 3a 63 66 67 63 6d 64 3a 60 72 65 6e 61 6d 65 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a | he.:cfgcmd:`rename`.and.:cfgcmd: |
| 299e0 | 60 63 6f 70 79 60 20 63 6f 6d 6d 61 6e 64 73 2e 00 3a 61 62 62 72 3a 60 4e 41 54 36 34 20 28 49 | `copy`.commands..:abbr:`NAT64.(I |
| 29a00 | 50 76 36 2d 74 6f 2d 49 50 76 34 20 50 72 65 66 69 78 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 | Pv6-to-IPv4.Prefix.Translation)` |
| 29a20 | 20 69 73 20 61 20 63 72 69 74 69 63 61 6c 20 63 6f 6d 70 6f 6e 65 6e 74 20 69 6e 20 6d 6f 64 65 | .is.a.critical.component.in.mode |
| 29a40 | 72 6e 20 6e 65 74 77 6f 72 6b 69 6e 67 2c 20 66 61 63 69 6c 69 74 61 74 69 6e 67 20 63 6f 6d 6d | rn.networking,.facilitating.comm |
| 29a60 | 75 6e 69 63 61 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 49 50 76 36 20 61 6e 64 20 49 50 76 34 20 | unication.between.IPv6.and.IPv4. |
| 29a80 | 6e 65 74 77 6f 72 6b 73 2e 20 54 68 69 73 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 6f 75 74 | networks..This.documentation.out |
| 29aa0 | 6c 69 6e 65 73 20 74 68 65 20 73 65 74 75 70 2c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 | lines.the.setup,.configuration,. |
| 29ac0 | 61 6e 64 20 75 73 61 67 65 20 6f 66 20 74 68 65 20 4e 41 54 36 34 20 66 65 61 74 75 72 65 20 69 | and.usage.of.the.NAT64.feature.i |
| 29ae0 | 6e 20 79 6f 75 72 20 70 72 6f 6a 65 63 74 2e 20 57 68 65 74 68 65 72 20 79 6f 75 20 61 72 65 20 | n.your.project..Whether.you.are. |
| 29b00 | 74 72 61 6e 73 69 74 69 6f 6e 69 6e 67 20 74 6f 20 49 50 76 36 20 6f 72 20 6e 65 65 64 20 74 6f | transitioning.to.IPv6.or.need.to |
| 29b20 | 20 73 65 61 6d 6c 65 73 73 6c 79 20 63 6f 6e 6e 65 63 74 20 49 50 76 34 20 61 6e 64 20 49 50 76 | .seamlessly.connect.IPv4.and.IPv |
| 29b40 | 36 20 64 65 76 69 63 65 73 2e 20 4e 41 54 36 34 20 69 73 20 61 20 73 74 61 74 65 66 75 6c 20 74 | 6.devices..NAT64.is.a.stateful.t |
| 29b60 | 72 61 6e 73 6c 61 74 69 6f 6e 20 6d 65 63 68 61 6e 69 73 6d 20 74 68 61 74 20 74 72 61 6e 73 6c | ranslation.mechanism.that.transl |
| 29b80 | 61 74 65 73 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 49 50 76 34 20 61 64 64 72 | ates.IPv6.addresses.to.IPv4.addr |
| 29ba0 | 65 73 73 65 73 20 61 6e 64 20 49 50 76 34 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 49 50 76 36 | esses.and.IPv4.addresses.to.IPv6 |
| 29bc0 | 20 61 64 64 72 65 73 73 65 73 2e 20 4e 41 54 36 34 20 69 73 20 75 73 65 64 20 74 6f 20 65 6e 61 | .addresses..NAT64.is.used.to.ena |
| 29be0 | 62 6c 65 20 49 50 76 36 2d 6f 6e 6c 79 20 63 6c 69 65 6e 74 73 20 74 6f 20 63 6f 6e 74 61 63 74 | ble.IPv6-only.clients.to.contact |
| 29c00 | 20 49 50 76 34 20 73 65 72 76 65 72 73 20 75 73 69 6e 67 20 75 6e 69 63 61 73 74 20 55 44 50 2c | .IPv4.servers.using.unicast.UDP, |
| 29c20 | 20 54 43 50 2c 20 6f 72 20 49 43 4d 50 2e 00 3a 61 62 62 72 3a 60 4e 45 54 20 28 4e 65 74 77 6f | .TCP,.or.ICMP..:abbr:`NET.(Netwo |
| 29c40 | 72 6b 20 45 6e 74 69 74 79 20 54 69 74 6c 65 29 60 20 73 65 6c 65 63 74 6f 72 3a 20 60 60 30 30 | rk.Entity.Title)`.selector:.``00 |
| 29c60 | 60 60 20 4d 75 73 74 20 61 6c 77 61 79 73 20 62 65 20 30 30 2e 20 54 68 69 73 20 73 65 74 74 69 | ``.Must.always.be.00..This.setti |
| 29c80 | 6e 67 20 69 6e 64 69 63 61 74 65 73 20 22 74 68 69 73 20 73 79 73 74 65 6d 22 20 6f 72 20 22 6c | ng.indicates."this.system".or."l |
| 29ca0 | 6f 63 61 6c 20 73 79 73 74 65 6d 2e 22 00 3a 61 62 62 72 3a 60 4e 48 52 50 20 28 4e 65 78 74 20 | ocal.system.".:abbr:`NHRP.(Next. |
| 29cc0 | 48 6f 70 20 52 65 73 6f 6c 75 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 29 60 20 3a 72 66 63 3a 60 | Hop.Resolution.Protocol)`.:rfc:` |
| 29ce0 | 32 33 33 32 60 00 3a 61 62 62 72 3a 60 4e 50 54 76 36 20 28 49 50 76 36 2d 74 6f 2d 49 50 76 36 | 2332`.:abbr:`NPTv6.(IPv6-to-IPv6 |
| 29d00 | 20 4e 65 74 77 6f 72 6b 20 50 72 65 66 69 78 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 69 73 | .Network.Prefix.Translation)`.is |
| 29d20 | 20 61 6e 20 61 64 64 72 65 73 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 74 65 63 68 6e 6f 6c 6f | .an.address.translation.technolo |
| 29d40 | 67 79 20 62 61 73 65 64 20 6f 6e 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 73 2c 20 75 73 65 64 20 | gy.based.on.IPv6.networks,.used. |
| 29d60 | 74 6f 20 63 6f 6e 76 65 72 74 20 61 6e 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 72 65 66 69 | to.convert.an.IPv6.address.prefi |
| 29d80 | 78 20 69 6e 20 61 6e 20 49 50 76 36 20 6d 65 73 73 61 67 65 20 69 6e 74 6f 20 61 6e 6f 74 68 65 | x.in.an.IPv6.message.into.anothe |
| 29da0 | 72 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 72 65 66 69 78 2e 20 57 65 20 63 61 6c 6c 20 74 | r.IPv6.address.prefix..We.call.t |
| 29dc0 | 68 69 73 20 61 64 64 72 65 73 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 6d 65 74 68 6f 64 20 4e | his.address.translation.method.N |
| 29de0 | 41 54 36 36 2e 20 44 65 76 69 63 65 73 20 74 68 61 74 20 73 75 70 70 6f 72 74 20 74 68 65 20 4e | AT66..Devices.that.support.the.N |
| 29e00 | 41 54 36 36 20 66 75 6e 63 74 69 6f 6e 20 61 72 65 20 63 61 6c 6c 65 64 20 4e 41 54 36 36 20 64 | AT66.function.are.called.NAT66.d |
| 29e20 | 65 76 69 63 65 73 2c 20 77 68 69 63 68 20 63 61 6e 20 70 72 6f 76 69 64 65 20 4e 41 54 36 36 20 | evices,.which.can.provide.NAT66. |
| 29e40 | 73 6f 75 72 63 65 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 74 | source.and.destination.address.t |
| 29e60 | 72 61 6e 73 6c 61 74 69 6f 6e 20 66 75 6e 63 74 69 6f 6e 73 2e 00 3a 61 62 62 72 3a 60 4e 54 50 | ranslation.functions..:abbr:`NTP |
| 29e80 | 20 28 4e 65 74 77 6f 72 6b 20 54 69 6d 65 20 50 72 6f 74 6f 63 6f 6c 60 29 20 69 73 20 61 20 6e | .(Network.Time.Protocol`).is.a.n |
| 29ea0 | 65 74 77 6f 72 6b 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 66 6f 72 20 63 6c 6f 63 6b 20 73 79 6e | etworking.protocol.for.clock.syn |
| 29ec0 | 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 63 6f 6d 70 75 74 65 72 20 73 79 | chronization.between.computer.sy |
| 29ee0 | 73 74 65 6d 73 20 6f 76 65 72 20 70 61 63 6b 65 74 2d 73 77 69 74 63 68 65 64 2c 20 76 61 72 69 | stems.over.packet-switched,.vari |
| 29f00 | 61 62 6c 65 2d 6c 61 74 65 6e 63 79 20 64 61 74 61 20 6e 65 74 77 6f 72 6b 73 2e 20 49 6e 20 6f | able-latency.data.networks..In.o |
| 29f20 | 70 65 72 61 74 69 6f 6e 20 73 69 6e 63 65 20 62 65 66 6f 72 65 20 31 39 38 35 2c 20 4e 54 50 20 | peration.since.before.1985,.NTP. |
| 29f40 | 69 73 20 6f 6e 65 20 6f 66 20 74 68 65 20 6f 6c 64 65 73 74 20 49 6e 74 65 72 6e 65 74 20 70 72 | is.one.of.the.oldest.Internet.pr |
| 29f60 | 6f 74 6f 63 6f 6c 73 20 69 6e 20 63 75 72 72 65 6e 74 20 75 73 65 2e 00 3a 61 62 62 72 3a 60 4f | otocols.in.current.use..:abbr:`O |
| 29f80 | 53 50 46 20 28 4f 70 65 6e 20 53 68 6f 72 74 65 73 74 20 50 61 74 68 20 46 69 72 73 74 29 60 20 | SPF.(Open.Shortest.Path.First)`. |
| 29fa0 | 69 73 20 61 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 66 6f 72 20 49 6e 74 65 72 6e | is.a.routing.protocol.for.Intern |
| 29fc0 | 65 74 20 50 72 6f 74 6f 63 6f 6c 20 28 49 50 29 20 6e 65 74 77 6f 72 6b 73 2e 20 49 74 20 75 73 | et.Protocol.(IP).networks..It.us |
| 29fe0 | 65 73 20 61 20 6c 69 6e 6b 20 73 74 61 74 65 20 72 6f 75 74 69 6e 67 20 28 4c 53 52 29 20 61 6c | es.a.link.state.routing.(LSR).al |
| 2a000 | 67 6f 72 69 74 68 6d 20 61 6e 64 20 66 61 6c 6c 73 20 69 6e 74 6f 20 74 68 65 20 67 72 6f 75 70 | gorithm.and.falls.into.the.group |
| 2a020 | 20 6f 66 20 69 6e 74 65 72 69 6f 72 20 67 61 74 65 77 61 79 20 70 72 6f 74 6f 63 6f 6c 73 20 28 | .of.interior.gateway.protocols.( |
| 2a040 | 49 47 50 73 29 2c 20 6f 70 65 72 61 74 69 6e 67 20 77 69 74 68 69 6e 20 61 20 73 69 6e 67 6c 65 | IGPs),.operating.within.a.single |
| 2a060 | 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 20 28 41 53 29 2e 20 49 74 20 69 73 20 64 | .autonomous.system.(AS)..It.is.d |
| 2a080 | 65 66 69 6e 65 64 20 61 73 20 4f 53 50 46 20 56 65 72 73 69 6f 6e 20 32 20 69 6e 20 3a 72 66 63 | efined.as.OSPF.Version.2.in.:rfc |
| 2a0a0 | 3a 60 32 33 32 38 60 20 28 31 39 39 38 29 20 66 6f 72 20 49 50 76 34 2e 20 55 70 64 61 74 65 73 | :`2328`.(1998).for.IPv4..Updates |
| 2a0c0 | 20 66 6f 72 20 49 50 76 36 20 61 72 65 20 73 70 65 63 69 66 69 65 64 20 61 73 20 4f 53 50 46 20 | .for.IPv6.are.specified.as.OSPF. |
| 2a0e0 | 56 65 72 73 69 6f 6e 20 33 20 69 6e 20 3a 72 66 63 3a 60 35 33 34 30 60 20 28 32 30 30 38 29 2e | Version.3.in.:rfc:`5340`.(2008). |
| 2a100 | 20 4f 53 50 46 20 73 75 70 70 6f 72 74 73 20 74 68 65 20 3a 61 62 62 72 3a 60 43 49 44 52 20 28 | .OSPF.supports.the.:abbr:`CIDR.( |
| 2a120 | 43 6c 61 73 73 6c 65 73 73 20 49 6e 74 65 72 2d 44 6f 6d 61 69 6e 20 52 6f 75 74 69 6e 67 29 60 | Classless.Inter-Domain.Routing)` |
| 2a140 | 20 61 64 64 72 65 73 73 69 6e 67 20 6d 6f 64 65 6c 2e 00 3a 61 62 62 72 3a 60 50 49 4d 20 28 50 | .addressing.model..:abbr:`PIM.(P |
| 2a160 | 72 6f 74 6f 63 6f 6c 20 49 6e 64 65 70 65 6e 64 65 6e 74 20 4d 75 6c 74 69 63 61 73 74 29 60 20 | rotocol.Independent.Multicast)`. |
| 2a180 | 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 65 76 65 72 79 20 69 6e 74 65 | must.be.configured.in.every.inte |
| 2a1a0 | 72 66 61 63 65 20 6f 66 20 65 76 65 72 79 20 70 61 72 74 69 63 69 70 61 74 69 6e 67 20 72 6f 75 | rface.of.every.participating.rou |
| 2a1c0 | 74 65 72 2e 20 45 76 65 72 79 20 72 6f 75 74 65 72 20 6d 75 73 74 20 61 6c 73 6f 20 68 61 76 65 | ter..Every.router.must.also.have |
| 2a1e0 | 20 74 68 65 20 6c 6f 63 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 52 65 6e 64 65 76 6f 75 7a 20 50 | .the.location.of.the.Rendevouz.P |
| 2a200 | 6f 69 6e 74 20 6d 61 6e 75 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 68 65 6e 2c 20 | oint.manually.configured..Then,. |
| 2a220 | 75 6e 69 64 69 72 65 63 74 69 6f 6e 61 6c 20 73 68 61 72 65 64 20 74 72 65 65 73 20 72 6f 6f 74 | unidirectional.shared.trees.root |
| 2a240 | 65 64 20 61 74 20 74 68 65 20 52 65 6e 64 65 76 6f 75 7a 20 50 6f 69 6e 74 20 77 69 6c 6c 20 61 | ed.at.the.Rendevouz.Point.will.a |
| 2a260 | 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 62 65 20 62 75 69 6c 74 20 66 6f 72 20 6d 75 6c 74 69 63 | utomatically.be.built.for.multic |
| 2a280 | 61 73 74 20 64 69 73 74 72 69 62 75 74 69 6f 6e 2e 00 3a 61 62 62 72 3a 60 50 50 50 6f 45 20 28 | ast.distribution..:abbr:`PPPoE.( |
| 2a2a0 | 50 6f 69 6e 74 2d 74 6f 2d 50 6f 69 6e 74 20 50 72 6f 74 6f 63 6f 6c 20 6f 76 65 72 20 45 74 68 | Point-to-Point.Protocol.over.Eth |
| 2a2c0 | 65 72 6e 65 74 29 60 20 69 73 20 61 20 6e 65 74 77 6f 72 6b 20 70 72 6f 74 6f 63 6f 6c 20 66 6f | ernet)`.is.a.network.protocol.fo |
| 2a2e0 | 72 20 65 6e 63 61 70 73 75 6c 61 74 69 6e 67 20 50 50 50 20 66 72 61 6d 65 73 20 69 6e 73 69 64 | r.encapsulating.PPP.frames.insid |
| 2a300 | 65 20 45 74 68 65 72 6e 65 74 20 66 72 61 6d 65 73 2e 20 49 74 20 61 70 70 65 61 72 65 64 20 69 | e.Ethernet.frames..It.appeared.i |
| 2a320 | 6e 20 31 39 39 39 2c 20 69 6e 20 74 68 65 20 63 6f 6e 74 65 78 74 20 6f 66 20 74 68 65 20 62 6f | n.1999,.in.the.context.of.the.bo |
| 2a340 | 6f 6d 20 6f 66 20 44 53 4c 20 61 73 20 74 68 65 20 73 6f 6c 75 74 69 6f 6e 20 66 6f 72 20 74 75 | om.of.DSL.as.the.solution.for.tu |
| 2a360 | 6e 6e 65 6c 69 6e 67 20 70 61 63 6b 65 74 73 20 6f 76 65 72 20 74 68 65 20 44 53 4c 20 63 6f 6e | nneling.packets.over.the.DSL.con |
| 2a380 | 6e 65 63 74 69 6f 6e 20 74 6f 20 74 68 65 20 3a 61 62 62 72 3a 60 49 53 50 73 20 28 49 6e 74 65 | nection.to.the.:abbr:`ISPs.(Inte |
| 2a3a0 | 72 6e 65 74 20 53 65 72 76 69 63 65 20 50 72 6f 76 69 64 65 72 73 29 60 20 49 50 20 6e 65 74 77 | rnet.Service.Providers)`.IP.netw |
| 2a3c0 | 6f 72 6b 2c 20 61 6e 64 20 66 72 6f 6d 20 74 68 65 72 65 20 74 6f 20 74 68 65 20 72 65 73 74 20 | ork,.and.from.there.to.the.rest. |
| 2a3e0 | 6f 66 20 74 68 65 20 49 6e 74 65 72 6e 65 74 2e 20 41 20 32 30 30 35 20 6e 65 74 77 6f 72 6b 69 | of.the.Internet..A.2005.networki |
| 2a400 | 6e 67 20 62 6f 6f 6b 20 6e 6f 74 65 64 20 74 68 61 74 20 22 4d 6f 73 74 20 44 53 4c 20 70 72 6f | ng.book.noted.that."Most.DSL.pro |
| 2a420 | 76 69 64 65 72 73 20 75 73 65 20 50 50 50 6f 45 2c 20 77 68 69 63 68 20 70 72 6f 76 69 64 65 73 | viders.use.PPPoE,.which.provides |
| 2a440 | 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2c 20 65 6e 63 72 79 70 74 69 6f 6e 2c 20 61 6e 64 | .authentication,.encryption,.and |
| 2a460 | 20 63 6f 6d 70 72 65 73 73 69 6f 6e 2e 22 20 54 79 70 69 63 61 6c 20 75 73 65 20 6f 66 20 50 50 | .compression.".Typical.use.of.PP |
| 2a480 | 50 6f 45 20 69 6e 76 6f 6c 76 65 73 20 6c 65 76 65 72 61 67 69 6e 67 20 74 68 65 20 50 50 50 20 | PoE.involves.leveraging.the.PPP. |
| 2a4a0 | 66 61 63 69 6c 69 74 69 65 73 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 74 68 | facilities.for.authenticating.th |
| 2a4c0 | 65 20 75 73 65 72 20 77 69 74 68 20 61 20 75 73 65 72 6e 61 6d 65 20 61 6e 64 20 70 61 73 73 77 | e.user.with.a.username.and.passw |
| 2a4e0 | 6f 72 64 2c 20 70 72 65 64 6f 6d 69 6e 61 74 65 6c 79 20 76 69 61 20 74 68 65 20 50 41 50 20 70 | ord,.predominately.via.the.PAP.p |
| 2a500 | 72 6f 74 6f 63 6f 6c 20 61 6e 64 20 6c 65 73 73 20 6f 66 74 65 6e 20 76 69 61 20 43 48 41 50 2e | rotocol.and.less.often.via.CHAP. |
| 2a520 | 00 3a 61 62 62 72 3a 60 52 41 73 20 28 52 6f 75 74 65 72 20 61 64 76 65 72 74 69 73 65 6d 65 6e | .:abbr:`RAs.(Router.advertisemen |
| 2a540 | 74 73 29 60 20 61 72 65 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 34 38 36 31 | ts)`.are.described.in.:rfc:`4861 |
| 2a560 | 23 73 65 63 74 69 6f 6e 2d 34 2e 36 2e 32 60 2e 20 54 68 65 79 20 61 72 65 20 70 61 72 74 20 6f | #section-4.6.2`..They.are.part.o |
| 2a580 | 66 20 77 68 61 74 20 69 73 20 6b 6e 6f 77 6e 20 61 73 20 3a 61 62 62 72 3a 60 53 4c 41 41 43 20 | f.what.is.known.as.:abbr:`SLAAC. |
| 2a5a0 | 28 53 74 61 74 65 6c 65 73 73 20 41 64 64 72 65 73 73 20 41 75 74 6f 63 6f 6e 66 69 67 75 72 61 | (Stateless.Address.Autoconfigura |
| 2a5c0 | 74 69 6f 6e 29 60 2e 00 3a 61 62 62 72 3a 60 52 49 50 20 28 52 6f 75 74 69 6e 67 20 49 6e 66 6f | tion)`..:abbr:`RIP.(Routing.Info |
| 2a5e0 | 72 6d 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 61 20 77 69 64 65 6c 79 20 64 | rmation.Protocol)`.is.a.widely.d |
| 2a600 | 65 70 6c 6f 79 65 64 20 69 6e 74 65 72 69 6f 72 20 67 61 74 65 77 61 79 20 70 72 6f 74 6f 63 6f | eployed.interior.gateway.protoco |
| 2a620 | 6c 2e 20 52 49 50 20 77 61 73 20 64 65 76 65 6c 6f 70 65 64 20 69 6e 20 74 68 65 20 31 39 37 30 | l..RIP.was.developed.in.the.1970 |
| 2a640 | 73 20 61 74 20 58 65 72 6f 78 20 4c 61 62 73 20 61 73 20 70 61 72 74 20 6f 66 20 74 68 65 20 58 | s.at.Xerox.Labs.as.part.of.the.X |
| 2a660 | 4e 53 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 2e 20 52 49 50 20 69 73 20 61 20 64 69 | NS.routing.protocol..RIP.is.a.di |
| 2a680 | 73 74 61 6e 63 65 2d 76 65 63 74 6f 72 20 70 72 6f 74 6f 63 6f 6c 20 61 6e 64 20 69 73 20 62 61 | stance-vector.protocol.and.is.ba |
| 2a6a0 | 73 65 64 20 6f 6e 20 74 68 65 20 42 65 6c 6c 6d 61 6e 2d 46 6f 72 64 20 61 6c 67 6f 72 69 74 68 | sed.on.the.Bellman-Ford.algorith |
| 2a6c0 | 6d 73 2e 20 41 73 20 61 20 64 69 73 74 61 6e 63 65 2d 76 65 63 74 6f 72 20 70 72 6f 74 6f 63 6f | ms..As.a.distance-vector.protoco |
| 2a6e0 | 6c 2c 20 52 49 50 20 72 6f 75 74 65 72 20 73 65 6e 64 20 75 70 64 61 74 65 73 20 74 6f 20 69 74 | l,.RIP.router.send.updates.to.it |
| 2a700 | 73 20 6e 65 69 67 68 62 6f 72 73 20 70 65 72 69 6f 64 69 63 61 6c 6c 79 2c 20 74 68 75 73 20 61 | s.neighbors.periodically,.thus.a |
| 2a720 | 6c 6c 6f 77 69 6e 67 20 74 68 65 20 63 6f 6e 76 65 72 67 65 6e 63 65 20 74 6f 20 61 20 6b 6e 6f | llowing.the.convergence.to.a.kno |
| 2a740 | 77 6e 20 74 6f 70 6f 6c 6f 67 79 2e 20 49 6e 20 65 61 63 68 20 75 70 64 61 74 65 2c 20 74 68 65 | wn.topology..In.each.update,.the |
| 2a760 | 20 64 69 73 74 61 6e 63 65 20 74 6f 20 61 6e 79 20 67 69 76 65 6e 20 6e 65 74 77 6f 72 6b 20 77 | .distance.to.any.given.network.w |
| 2a780 | 69 6c 6c 20 62 65 20 62 72 6f 61 64 63 61 73 74 20 74 6f 20 69 74 73 20 6e 65 69 67 68 62 6f 72 | ill.be.broadcast.to.its.neighbor |
| 2a7a0 | 69 6e 67 20 72 6f 75 74 65 72 2e 00 3a 61 62 62 72 3a 60 52 50 4b 49 20 28 52 65 73 6f 75 72 63 | ing.router..:abbr:`RPKI.(Resourc |
| 2a7c0 | 65 20 50 75 62 6c 69 63 20 4b 65 79 20 49 6e 66 72 61 73 74 72 75 63 74 75 72 65 29 60 20 69 73 | e.Public.Key.Infrastructure)`.is |
| 2a7e0 | 20 61 20 66 72 61 6d 65 77 6f 72 6b 20 3a 61 62 62 72 3a 60 50 4b 49 20 28 50 75 62 6c 69 63 20 | .a.framework.:abbr:`PKI.(Public. |
| 2a800 | 4b 65 79 20 49 6e 66 72 61 73 74 72 75 63 74 75 72 65 29 60 20 64 65 73 69 67 6e 65 64 20 74 6f | Key.Infrastructure)`.designed.to |
| 2a820 | 20 73 65 63 75 72 65 20 74 68 65 20 49 6e 74 65 72 6e 65 74 20 72 6f 75 74 69 6e 67 20 69 6e 66 | .secure.the.Internet.routing.inf |
| 2a840 | 72 61 73 74 72 75 63 74 75 72 65 2e 20 49 74 20 61 73 73 6f 63 69 61 74 65 73 20 42 47 50 20 72 | rastructure..It.associates.BGP.r |
| 2a860 | 6f 75 74 65 20 61 6e 6e 6f 75 6e 63 65 6d 65 6e 74 73 20 77 69 74 68 20 74 68 65 20 63 6f 72 72 | oute.announcements.with.the.corr |
| 2a880 | 65 63 74 20 6f 72 69 67 69 6e 61 74 69 6e 67 20 3a 61 62 62 72 3a 60 41 53 4e 20 28 41 75 74 6f | ect.originating.:abbr:`ASN.(Auto |
| 2a8a0 | 6e 6f 6d 75 73 20 53 79 73 74 65 6d 20 4e 75 6d 62 65 72 29 60 20 77 68 69 63 68 20 42 47 50 20 | nomus.System.Number)`.which.BGP. |
| 2a8c0 | 72 6f 75 74 65 72 73 20 63 61 6e 20 74 68 65 6e 20 75 73 65 20 74 6f 20 63 68 65 63 6b 20 65 61 | routers.can.then.use.to.check.ea |
| 2a8e0 | 63 68 20 72 6f 75 74 65 20 61 67 61 69 6e 73 74 20 74 68 65 20 63 6f 72 72 65 73 70 6f 6e 64 69 | ch.route.against.the.correspondi |
| 2a900 | 6e 67 20 3a 61 62 62 72 3a 60 52 4f 41 20 28 52 6f 75 74 65 20 4f 72 69 67 69 6e 20 41 75 74 68 | ng.:abbr:`ROA.(Route.Origin.Auth |
| 2a920 | 6f 72 69 73 61 74 69 6f 6e 29 60 20 66 6f 72 20 76 61 6c 69 64 69 74 79 2e 20 52 50 4b 49 20 69 | orisation)`.for.validity..RPKI.i |
| 2a940 | 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 36 34 38 30 60 2e 00 3a 61 62 62 | s.described.in.:rfc:`6480`..:abb |
| 2a960 | 72 3a 60 52 50 4b 49 20 28 52 65 73 6f 75 72 63 65 20 50 75 62 6c 69 63 20 4b 65 79 20 49 6e 66 | r:`RPKI.(Resource.Public.Key.Inf |
| 2a980 | 72 61 73 74 72 75 63 74 75 72 65 29 60 20 69 73 20 61 20 66 72 61 6d 65 77 6f 72 6b 20 64 65 73 | rastructure)`.is.a.framework.des |
| 2a9a0 | 69 67 6e 65 64 20 74 6f 20 73 65 63 75 72 65 20 74 68 65 20 49 6e 74 65 72 6e 65 74 20 72 6f 75 | igned.to.secure.the.Internet.rou |
| 2a9c0 | 74 69 6e 67 20 69 6e 66 72 61 73 74 72 75 63 74 75 72 65 2e 20 49 74 20 61 73 73 6f 63 69 61 74 | ting.infrastructure..It.associat |
| 2a9e0 | 65 73 20 42 47 50 20 72 6f 75 74 65 20 61 6e 6e 6f 75 6e 63 65 6d 65 6e 74 73 20 77 69 74 68 20 | es.BGP.route.announcements.with. |
| 2aa00 | 74 68 65 20 63 6f 72 72 65 63 74 20 6f 72 69 67 69 6e 61 74 69 6e 67 20 3a 61 62 62 72 3a 60 41 | the.correct.originating.:abbr:`A |
| 2aa20 | 53 4e 20 28 41 75 74 6f 6e 6f 6d 75 73 20 53 79 73 74 65 6d 20 4e 75 6d 62 65 72 29 60 20 77 68 | SN.(Autonomus.System.Number)`.wh |
| 2aa40 | 69 63 68 20 42 47 50 20 72 6f 75 74 65 72 73 20 63 61 6e 20 74 68 65 6e 20 75 73 65 20 74 6f 20 | ich.BGP.routers.can.then.use.to. |
| 2aa60 | 63 68 65 63 6b 20 65 61 63 68 20 72 6f 75 74 65 20 61 67 61 69 6e 73 74 20 74 68 65 20 63 6f 72 | check.each.route.against.the.cor |
| 2aa80 | 72 65 73 70 6f 6e 64 69 6e 67 20 3a 61 62 62 72 3a 60 52 4f 41 20 28 52 6f 75 74 65 20 4f 72 69 | responding.:abbr:`ROA.(Route.Ori |
| 2aaa0 | 67 69 6e 20 41 75 74 68 6f 72 69 73 61 74 69 6f 6e 29 60 20 66 6f 72 20 76 61 6c 69 64 69 74 79 | gin.Authorisation)`.for.validity |
| 2aac0 | 2e 20 52 50 4b 49 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 36 34 38 | ..RPKI.is.described.in.:rfc:`648 |
| 2aae0 | 30 60 2e 00 3a 61 62 62 72 3a 60 52 50 53 20 28 52 65 63 65 69 76 65 20 50 61 63 6b 65 74 20 53 | 0`..:abbr:`RPS.(Receive.Packet.S |
| 2ab00 | 74 65 65 72 69 6e 67 29 60 20 69 73 20 6c 6f 67 69 63 61 6c 6c 79 20 61 20 73 6f 66 74 77 61 72 | teering)`.is.logically.a.softwar |
| 2ab20 | 65 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 6f 66 20 3a 61 62 62 72 3a 60 52 53 53 20 28 | e.implementation.of.:abbr:`RSS.( |
| 2ab40 | 52 65 63 65 69 76 65 20 53 69 64 65 20 53 63 61 6c 69 6e 67 29 60 2e 20 42 65 69 6e 67 20 69 6e | Receive.Side.Scaling)`..Being.in |
| 2ab60 | 20 73 6f 66 74 77 61 72 65 2c 20 69 74 20 69 73 20 6e 65 63 65 73 73 61 72 69 6c 79 20 63 61 6c | .software,.it.is.necessarily.cal |
| 2ab80 | 6c 65 64 20 6c 61 74 65 72 20 69 6e 20 74 68 65 20 64 61 74 61 70 61 74 68 2e 20 57 68 65 72 65 | led.later.in.the.datapath..Where |
| 2aba0 | 61 73 20 52 53 53 20 73 65 6c 65 63 74 73 20 74 68 65 20 71 75 65 75 65 20 61 6e 64 20 68 65 6e | as.RSS.selects.the.queue.and.hen |
| 2abc0 | 63 65 20 43 50 55 20 74 68 61 74 20 77 69 6c 6c 20 72 75 6e 20 74 68 65 20 68 61 72 64 77 61 72 | ce.CPU.that.will.run.the.hardwar |
| 2abe0 | 65 20 69 6e 74 65 72 72 75 70 74 20 68 61 6e 64 6c 65 72 2c 20 52 50 53 20 73 65 6c 65 63 74 73 | e.interrupt.handler,.RPS.selects |
| 2ac00 | 20 74 68 65 20 43 50 55 20 74 6f 20 70 65 72 66 6f 72 6d 20 70 72 6f 74 6f 63 6f 6c 20 70 72 6f | .the.CPU.to.perform.protocol.pro |
| 2ac20 | 63 65 73 73 69 6e 67 20 61 62 6f 76 65 20 74 68 65 20 69 6e 74 65 72 72 75 70 74 20 68 61 6e 64 | cessing.above.the.interrupt.hand |
| 2ac40 | 6c 65 72 2e 20 54 68 69 73 20 69 73 20 61 63 63 6f 6d 70 6c 69 73 68 65 64 20 62 79 20 70 6c 61 | ler..This.is.accomplished.by.pla |
| 2ac60 | 63 69 6e 67 20 74 68 65 20 70 61 63 6b 65 74 20 6f 6e 20 74 68 65 20 64 65 73 69 72 65 64 20 43 | cing.the.packet.on.the.desired.C |
| 2ac80 | 50 55 27 73 20 62 61 63 6b 6c 6f 67 20 71 75 65 75 65 20 61 6e 64 20 77 61 6b 69 6e 67 20 75 70 | PU's.backlog.queue.and.waking.up |
| 2aca0 | 20 74 68 65 20 43 50 55 20 66 6f 72 20 70 72 6f 63 65 73 73 69 6e 67 2e 20 52 50 53 20 68 61 73 | .the.CPU.for.processing..RPS.has |
| 2acc0 | 20 73 6f 6d 65 20 61 64 76 61 6e 74 61 67 65 73 20 6f 76 65 72 20 52 53 53 3a 00 3a 61 62 62 72 | .some.advantages.over.RSS:.:abbr |
| 2ace0 | 3a 60 53 4c 41 41 43 20 28 53 74 61 74 65 6c 65 73 73 20 41 64 64 72 65 73 73 20 41 75 74 6f 63 | :`SLAAC.(Stateless.Address.Autoc |
| 2ad00 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 29 60 20 3a 72 66 63 3a 60 34 38 36 32 60 2e 20 49 50 76 36 | onfiguration)`.:rfc:`4862`..IPv6 |
| 2ad20 | 20 68 6f 73 74 73 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 6d 73 65 6c 76 65 73 20 | .hosts.can.configure.themselves. |
| 2ad40 | 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 77 68 65 6e 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 | automatically.when.connected.to. |
| 2ad60 | 61 6e 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 20 75 73 69 6e 67 20 74 68 65 20 4e 65 69 67 68 62 | an.IPv6.network.using.the.Neighb |
| 2ad80 | 6f 72 20 44 69 73 63 6f 76 65 72 79 20 50 72 6f 74 6f 63 6f 6c 20 76 69 61 20 3a 61 62 62 72 3a | or.Discovery.Protocol.via.:abbr: |
| 2ada0 | 60 49 43 4d 50 76 36 20 28 49 6e 74 65 72 6e 65 74 20 43 6f 6e 74 72 6f 6c 20 4d 65 73 73 61 67 | `ICMPv6.(Internet.Control.Messag |
| 2adc0 | 65 20 50 72 6f 74 6f 63 6f 6c 20 76 65 72 73 69 6f 6e 20 36 29 60 20 72 6f 75 74 65 72 20 64 69 | e.Protocol.version.6)`.router.di |
| 2ade0 | 73 63 6f 76 65 72 79 20 6d 65 73 73 61 67 65 73 2e 20 57 68 65 6e 20 66 69 72 73 74 20 63 6f 6e | scovery.messages..When.first.con |
| 2ae00 | 6e 65 63 74 65 64 20 74 6f 20 61 20 6e 65 74 77 6f 72 6b 2c 20 61 20 68 6f 73 74 20 73 65 6e 64 | nected.to.a.network,.a.host.send |
| 2ae20 | 73 20 61 20 6c 69 6e 6b 2d 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 73 6f 6c 69 63 69 74 61 74 69 | s.a.link-local.router.solicitati |
| 2ae40 | 6f 6e 20 6d 75 6c 74 69 63 61 73 74 20 72 65 71 75 65 73 74 20 66 6f 72 20 69 74 73 20 63 6f 6e | on.multicast.request.for.its.con |
| 2ae60 | 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 73 3b 20 72 6f 75 74 65 72 73 20 72 | figuration.parameters;.routers.r |
| 2ae80 | 65 73 70 6f 6e 64 20 74 6f 20 73 75 63 68 20 61 20 72 65 71 75 65 73 74 20 77 69 74 68 20 61 20 | espond.to.such.a.request.with.a. |
| 2aea0 | 72 6f 75 74 65 72 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 20 70 61 63 6b 65 74 20 74 68 61 74 | router.advertisement.packet.that |
| 2aec0 | 20 63 6f 6e 74 61 69 6e 73 20 49 6e 74 65 72 6e 65 74 20 4c 61 79 65 72 20 63 6f 6e 66 69 67 75 | .contains.Internet.Layer.configu |
| 2aee0 | 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 73 2e 00 3a 61 62 62 72 3a 60 53 4e 41 54 20 28 | ration.parameters..:abbr:`SNAT.( |
| 2af00 | 53 6f 75 72 63 65 20 4e 65 74 77 6f 72 6b 20 41 64 64 72 65 73 73 20 54 72 61 6e 73 6c 61 74 69 | Source.Network.Address.Translati |
| 2af20 | 6f 6e 29 60 20 69 73 20 74 68 65 20 6d 6f 73 74 20 63 6f 6d 6d 6f 6e 20 66 6f 72 6d 20 6f 66 20 | on)`.is.the.most.common.form.of. |
| 2af40 | 3a 61 62 62 72 3a 60 4e 41 54 20 28 4e 65 74 77 6f 72 6b 20 41 64 64 72 65 73 73 20 54 72 61 6e | :abbr:`NAT.(Network.Address.Tran |
| 2af60 | 73 6c 61 74 69 6f 6e 29 60 20 61 6e 64 20 69 73 20 74 79 70 69 63 61 6c 6c 79 20 72 65 66 65 72 | slation)`.and.is.typically.refer |
| 2af80 | 72 65 64 20 74 6f 20 73 69 6d 70 6c 79 20 61 73 20 4e 41 54 2e 20 54 6f 20 62 65 20 6d 6f 72 65 | red.to.simply.as.NAT..To.be.more |
| 2afa0 | 20 63 6f 72 72 65 63 74 2c 20 77 68 61 74 20 6d 6f 73 74 20 70 65 6f 70 6c 65 20 72 65 66 65 72 | .correct,.what.most.people.refer |
| 2afc0 | 20 74 6f 20 61 73 20 3a 61 62 62 72 3a 60 4e 41 54 20 28 4e 65 74 77 6f 72 6b 20 41 64 64 72 65 | .to.as.:abbr:`NAT.(Network.Addre |
| 2afe0 | 73 73 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 69 73 20 61 63 74 75 61 6c 6c 79 20 74 68 65 | ss.Translation)`.is.actually.the |
| 2b000 | 20 70 72 6f 63 65 73 73 20 6f 66 20 3a 61 62 62 72 3a 60 50 41 54 20 28 50 6f 72 74 20 41 64 64 | .process.of.:abbr:`PAT.(Port.Add |
| 2b020 | 72 65 73 73 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 2c 20 6f 72 20 4e 41 54 20 6f 76 65 72 6c | ress.Translation)`,.or.NAT.overl |
| 2b040 | 6f 61 64 2e 20 53 4e 41 54 20 69 73 20 74 79 70 69 63 61 6c 6c 79 20 75 73 65 64 20 62 79 20 69 | oad..SNAT.is.typically.used.by.i |
| 2b060 | 6e 74 65 72 6e 61 6c 20 75 73 65 72 73 2f 70 72 69 76 61 74 65 20 68 6f 73 74 73 20 74 6f 20 61 | nternal.users/private.hosts.to.a |
| 2b080 | 63 63 65 73 73 20 74 68 65 20 49 6e 74 65 72 6e 65 74 20 2d 20 74 68 65 20 73 6f 75 72 63 65 20 | ccess.the.Internet.-.the.source. |
| 2b0a0 | 61 64 64 72 65 73 73 20 69 73 20 74 72 61 6e 73 6c 61 74 65 64 20 61 6e 64 20 74 68 75 73 20 6b | address.is.translated.and.thus.k |
| 2b0c0 | 65 70 74 20 70 72 69 76 61 74 65 2e 00 3a 61 62 62 72 3a 60 53 4e 41 54 36 34 20 28 49 50 76 36 | ept.private..:abbr:`SNAT64.(IPv6 |
| 2b0e0 | 2d 74 6f 2d 49 50 76 34 20 53 6f 75 72 63 65 20 41 64 64 72 65 73 73 20 54 72 61 6e 73 6c 61 74 | -to-IPv4.Source.Address.Translat |
| 2b100 | 69 6f 6e 29 60 20 69 73 20 61 20 73 74 61 74 65 66 75 6c 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 | ion)`.is.a.stateful.translation. |
| 2b120 | 6d 65 63 68 61 6e 69 73 6d 20 74 68 61 74 20 74 72 61 6e 73 6c 61 74 65 73 20 49 50 76 36 20 61 | mechanism.that.translates.IPv6.a |
| 2b140 | 64 64 72 65 73 73 65 73 20 74 6f 20 49 50 76 34 20 61 64 64 72 65 73 73 65 73 2e 00 3a 61 62 62 | ddresses.to.IPv4.addresses..:abb |
| 2b160 | 72 3a 60 53 4e 4d 50 20 28 53 69 6d 70 6c 65 20 4e 65 74 77 6f 72 6b 20 4d 61 6e 61 67 65 6d 65 | r:`SNMP.(Simple.Network.Manageme |
| 2b180 | 6e 74 20 50 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 61 6e 20 49 6e 74 65 72 6e 65 74 20 53 74 61 | nt.Protocol)`.is.an.Internet.Sta |
| 2b1a0 | 6e 64 61 72 64 20 70 72 6f 74 6f 63 6f 6c 20 66 6f 72 20 63 6f 6c 6c 65 63 74 69 6e 67 20 61 6e | ndard.protocol.for.collecting.an |
| 2b1c0 | 64 20 6f 72 67 61 6e 69 7a 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 6d | d.organizing.information.about.m |
| 2b1e0 | 61 6e 61 67 65 64 20 64 65 76 69 63 65 73 20 6f 6e 20 49 50 20 6e 65 74 77 6f 72 6b 73 20 61 6e | anaged.devices.on.IP.networks.an |
| 2b200 | 64 20 66 6f 72 20 6d 6f 64 69 66 79 69 6e 67 20 74 68 61 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | d.for.modifying.that.information |
| 2b220 | 20 74 6f 20 63 68 61 6e 67 65 20 64 65 76 69 63 65 20 62 65 68 61 76 69 6f 72 2e 20 44 65 76 69 | .to.change.device.behavior..Devi |
| 2b240 | 63 65 73 20 74 68 61 74 20 74 79 70 69 63 61 6c 6c 79 20 73 75 70 70 6f 72 74 20 53 4e 4d 50 20 | ces.that.typically.support.SNMP. |
| 2b260 | 69 6e 63 6c 75 64 65 20 63 61 62 6c 65 20 6d 6f 64 65 6d 73 2c 20 72 6f 75 74 65 72 73 2c 20 73 | include.cable.modems,.routers,.s |
| 2b280 | 77 69 74 63 68 65 73 2c 20 73 65 72 76 65 72 73 2c 20 77 6f 72 6b 73 74 61 74 69 6f 6e 73 2c 20 | witches,.servers,.workstations,. |
| 2b2a0 | 70 72 69 6e 74 65 72 73 2c 20 61 6e 64 20 6d 6f 72 65 2e 00 3a 61 62 62 72 3a 60 53 4e 50 54 76 | printers,.and.more..:abbr:`SNPTv |
| 2b2c0 | 36 20 28 53 6f 75 72 63 65 20 49 50 76 36 2d 74 6f 2d 49 50 76 36 20 4e 65 74 77 6f 72 6b 20 50 | 6.(Source.IPv6-to-IPv6.Network.P |
| 2b2e0 | 72 65 66 69 78 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 54 68 65 20 63 6f 6e 76 65 72 73 69 | refix.Translation)`.The.conversi |
| 2b300 | 6f 6e 20 66 75 6e 63 74 69 6f 6e 20 69 73 20 6d 61 69 6e 6c 79 20 75 73 65 64 20 69 6e 20 74 68 | on.function.is.mainly.used.in.th |
| 2b320 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 63 65 6e 61 72 69 6f 73 3a 00 3a 61 62 62 72 3a 60 53 53 | e.following.scenarios:.:abbr:`SS |
| 2b340 | 48 20 28 53 65 63 75 72 65 20 53 68 65 6c 6c 29 60 20 69 73 20 61 20 63 72 79 70 74 6f 67 72 61 | H.(Secure.Shell)`.is.a.cryptogra |
| 2b360 | 70 68 69 63 20 6e 65 74 77 6f 72 6b 20 70 72 6f 74 6f 63 6f 6c 20 66 6f 72 20 6f 70 65 72 61 74 | phic.network.protocol.for.operat |
| 2b380 | 69 6e 67 20 6e 65 74 77 6f 72 6b 20 73 65 72 76 69 63 65 73 20 73 65 63 75 72 65 6c 79 20 6f 76 | ing.network.services.securely.ov |
| 2b3a0 | 65 72 20 61 6e 20 75 6e 73 65 63 75 72 65 64 20 6e 65 74 77 6f 72 6b 2e 20 54 68 65 20 73 74 61 | er.an.unsecured.network..The.sta |
| 2b3c0 | 6e 64 61 72 64 20 54 43 50 20 70 6f 72 74 20 66 6f 72 20 53 53 48 20 69 73 20 32 32 2e 20 54 68 | ndard.TCP.port.for.SSH.is.22..Th |
| 2b3e0 | 65 20 62 65 73 74 20 6b 6e 6f 77 6e 20 65 78 61 6d 70 6c 65 20 61 70 70 6c 69 63 61 74 69 6f 6e | e.best.known.example.application |
| 2b400 | 20 69 73 20 66 6f 72 20 72 65 6d 6f 74 65 20 6c 6f 67 69 6e 20 74 6f 20 63 6f 6d 70 75 74 65 72 | .is.for.remote.login.to.computer |
| 2b420 | 20 73 79 73 74 65 6d 73 20 62 79 20 75 73 65 72 73 2e 00 3a 61 62 62 72 3a 60 53 53 54 50 20 28 | .systems.by.users..:abbr:`SSTP.( |
| 2b440 | 53 65 63 75 72 65 20 53 6f 63 6b 65 74 20 54 75 6e 6e 65 6c 69 6e 67 20 50 72 6f 74 6f 63 6f 6c | Secure.Socket.Tunneling.Protocol |
| 2b460 | 29 60 20 69 73 20 61 20 66 6f 72 6d 20 6f 66 20 3a 61 62 62 72 3a 60 56 50 4e 20 28 56 69 72 74 | )`.is.a.form.of.:abbr:`VPN.(Virt |
| 2b480 | 75 61 6c 20 50 72 69 76 61 74 65 20 4e 65 74 77 6f 72 6b 29 60 20 74 75 6e 6e 65 6c 20 74 68 61 | ual.Private.Network)`.tunnel.tha |
| 2b4a0 | 74 20 70 72 6f 76 69 64 65 73 20 61 20 6d 65 63 68 61 6e 69 73 6d 20 74 6f 20 74 72 61 6e 73 70 | t.provides.a.mechanism.to.transp |
| 2b4c0 | 6f 72 74 20 50 50 50 20 74 72 61 66 66 69 63 20 74 68 72 6f 75 67 68 20 61 6e 20 53 53 4c 2f 54 | ort.PPP.traffic.through.an.SSL/T |
| 2b4e0 | 4c 53 20 63 68 61 6e 6e 65 6c 2e 20 53 53 4c 2f 54 4c 53 20 70 72 6f 76 69 64 65 73 20 74 72 61 | LS.channel..SSL/TLS.provides.tra |
| 2b500 | 6e 73 70 6f 72 74 2d 6c 65 76 65 6c 20 73 65 63 75 72 69 74 79 20 77 69 74 68 20 6b 65 79 20 6e | nsport-level.security.with.key.n |
| 2b520 | 65 67 6f 74 69 61 74 69 6f 6e 2c 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6e 64 20 74 72 61 66 66 | egotiation,.encryption.and.traff |
| 2b540 | 69 63 20 69 6e 74 65 67 72 69 74 79 20 63 68 65 63 6b 69 6e 67 2e 20 54 68 65 20 75 73 65 20 6f | ic.integrity.checking..The.use.o |
| 2b560 | 66 20 53 53 4c 2f 54 4c 53 20 6f 76 65 72 20 54 43 50 20 70 6f 72 74 20 34 34 33 20 61 6c 6c 6f | f.SSL/TLS.over.TCP.port.443.allo |
| 2b580 | 77 73 20 53 53 54 50 20 74 6f 20 70 61 73 73 20 74 68 72 6f 75 67 68 20 76 69 72 74 75 61 6c 6c | ws.SSTP.to.pass.through.virtuall |
| 2b5a0 | 79 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 73 20 61 6e 64 20 70 72 6f 78 79 20 73 65 72 76 65 72 | y.all.firewalls.and.proxy.server |
| 2b5c0 | 73 20 65 78 63 65 70 74 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 20 77 65 62 20 70 | s.except.for.authenticated.web.p |
| 2b5e0 | 72 6f 78 69 65 73 2e 00 3a 61 62 62 72 3a 60 53 53 54 50 20 28 53 65 63 75 72 65 20 53 6f 63 6b | roxies..:abbr:`SSTP.(Secure.Sock |
| 2b600 | 65 74 20 54 75 6e 6e 65 6c 69 6e 67 20 50 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 61 20 66 6f 72 | et.Tunneling.Protocol)`.is.a.for |
| 2b620 | 6d 20 6f 66 20 3a 61 62 62 72 3a 60 56 54 50 20 28 56 69 72 74 75 61 6c 20 50 72 69 76 61 74 65 | m.of.:abbr:`VTP.(Virtual.Private |
| 2b640 | 20 4e 65 74 77 6f 72 6b 29 60 20 74 75 6e 6e 65 6c 20 74 68 61 74 20 70 72 6f 76 69 64 65 73 20 | .Network)`.tunnel.that.provides. |
| 2b660 | 61 20 6d 65 63 68 61 6e 69 73 6d 20 74 6f 20 74 72 61 6e 73 70 6f 72 74 20 50 50 50 20 74 72 61 | a.mechanism.to.transport.PPP.tra |
| 2b680 | 66 66 69 63 20 74 68 72 6f 75 67 68 20 61 6e 20 53 53 4c 2f 54 4c 53 20 63 68 61 6e 6e 65 6c 2e | ffic.through.an.SSL/TLS.channel. |
| 2b6a0 | 20 53 53 4c 2f 54 4c 53 20 70 72 6f 76 69 64 65 73 20 74 72 61 6e 73 70 6f 72 74 2d 6c 65 76 65 | .SSL/TLS.provides.transport-leve |
| 2b6c0 | 6c 20 73 65 63 75 72 69 74 79 20 77 69 74 68 20 6b 65 79 20 6e 65 67 6f 74 69 61 74 69 6f 6e 2c | l.security.with.key.negotiation, |
| 2b6e0 | 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6e 64 20 74 72 61 66 66 69 63 20 69 6e 74 65 67 72 69 74 | .encryption.and.traffic.integrit |
| 2b700 | 79 20 63 68 65 63 6b 69 6e 67 2e 20 54 68 65 20 75 73 65 20 6f 66 20 53 53 4c 2f 54 4c 53 20 6f | y.checking..The.use.of.SSL/TLS.o |
| 2b720 | 76 65 72 20 54 43 50 20 70 6f 72 74 20 34 34 33 20 28 62 79 20 64 65 66 61 75 6c 74 2c 20 70 6f | ver.TCP.port.443.(by.default,.po |
| 2b740 | 72 74 20 63 61 6e 20 62 65 20 63 68 61 6e 67 65 64 29 20 61 6c 6c 6f 77 73 20 53 53 54 50 20 74 | rt.can.be.changed).allows.SSTP.t |
| 2b760 | 6f 20 70 61 73 73 20 74 68 72 6f 75 67 68 20 76 69 72 74 75 61 6c 6c 79 20 61 6c 6c 20 66 69 72 | o.pass.through.virtually.all.fir |
| 2b780 | 65 77 61 6c 6c 73 20 61 6e 64 20 70 72 6f 78 79 20 73 65 72 76 65 72 73 20 65 78 63 65 70 74 20 | ewalls.and.proxy.servers.except. |
| 2b7a0 | 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 20 77 65 62 20 70 72 6f 78 69 65 73 2e 00 3a | for.authenticated.web.proxies..: |
| 2b7c0 | 61 62 62 72 3a 60 53 54 50 20 28 53 70 61 6e 6e 69 6e 67 20 54 72 65 65 20 50 72 6f 74 6f 63 6f | abbr:`STP.(Spanning.Tree.Protoco |
| 2b7e0 | 6c 29 60 20 69 73 20 61 20 6e 65 74 77 6f 72 6b 20 70 72 6f 74 6f 63 6f 6c 20 74 68 61 74 20 62 | l)`.is.a.network.protocol.that.b |
| 2b800 | 75 69 6c 64 73 20 61 20 6c 6f 6f 70 2d 66 72 65 65 20 6c 6f 67 69 63 61 6c 20 74 6f 70 6f 6c 6f | uilds.a.loop-free.logical.topolo |
| 2b820 | 67 79 20 66 6f 72 20 45 74 68 65 72 6e 65 74 20 6e 65 74 77 6f 72 6b 73 2e 20 54 68 65 20 62 61 | gy.for.Ethernet.networks..The.ba |
| 2b840 | 73 69 63 20 66 75 6e 63 74 69 6f 6e 20 6f 66 20 53 54 50 20 69 73 20 74 6f 20 70 72 65 76 65 6e | sic.function.of.STP.is.to.preven |
| 2b860 | 74 20 62 72 69 64 67 65 20 6c 6f 6f 70 73 20 61 6e 64 20 74 68 65 20 62 72 6f 61 64 63 61 73 74 | t.bridge.loops.and.the.broadcast |
| 2b880 | 20 72 61 64 69 61 74 69 6f 6e 20 74 68 61 74 20 72 65 73 75 6c 74 73 20 66 72 6f 6d 20 74 68 65 | .radiation.that.results.from.the |
| 2b8a0 | 6d 2e 20 53 70 61 6e 6e 69 6e 67 20 74 72 65 65 20 61 6c 73 6f 20 61 6c 6c 6f 77 73 20 61 20 6e | m..Spanning.tree.also.allows.a.n |
| 2b8c0 | 65 74 77 6f 72 6b 20 64 65 73 69 67 6e 20 74 6f 20 69 6e 63 6c 75 64 65 20 62 61 63 6b 75 70 20 | etwork.design.to.include.backup. |
| 2b8e0 | 6c 69 6e 6b 73 20 70 72 6f 76 69 64 69 6e 67 20 66 61 75 6c 74 20 74 6f 6c 65 72 61 6e 63 65 20 | links.providing.fault.tolerance. |
| 2b900 | 69 66 20 61 6e 20 61 63 74 69 76 65 20 6c 69 6e 6b 20 66 61 69 6c 73 2e 00 3a 61 62 62 72 3a 60 | if.an.active.link.fails..:abbr:` |
| 2b920 | 54 46 54 50 20 28 54 72 69 76 69 61 6c 20 46 69 6c 65 20 54 72 61 6e 73 66 65 72 20 50 72 6f 74 | TFTP.(Trivial.File.Transfer.Prot |
| 2b940 | 6f 63 6f 6c 29 60 20 69 73 20 61 20 73 69 6d 70 6c 65 2c 20 6c 6f 63 6b 73 74 65 70 20 66 69 6c | ocol)`.is.a.simple,.lockstep.fil |
| 2b960 | 65 20 74 72 61 6e 73 66 65 72 20 70 72 6f 74 6f 63 6f 6c 20 77 68 69 63 68 20 61 6c 6c 6f 77 73 | e.transfer.protocol.which.allows |
| 2b980 | 20 61 20 63 6c 69 65 6e 74 20 74 6f 20 67 65 74 20 61 20 66 69 6c 65 20 66 72 6f 6d 20 6f 72 20 | .a.client.to.get.a.file.from.or. |
| 2b9a0 | 70 75 74 20 61 20 66 69 6c 65 20 6f 6e 74 6f 20 61 20 72 65 6d 6f 74 65 20 68 6f 73 74 2e 20 4f | put.a.file.onto.a.remote.host..O |
| 2b9c0 | 6e 65 20 6f 66 20 69 74 73 20 70 72 69 6d 61 72 79 20 75 73 65 73 20 69 73 20 69 6e 20 74 68 65 | ne.of.its.primary.uses.is.in.the |
| 2b9e0 | 20 65 61 72 6c 79 20 73 74 61 67 65 73 20 6f 66 20 6e 6f 64 65 73 20 62 6f 6f 74 69 6e 67 20 66 | .early.stages.of.nodes.booting.f |
| 2ba00 | 72 6f 6d 20 61 20 6c 6f 63 61 6c 20 61 72 65 61 20 6e 65 74 77 6f 72 6b 2e 20 54 46 54 50 20 68 | rom.a.local.area.network..TFTP.h |
| 2ba20 | 61 73 20 62 65 65 6e 20 75 73 65 64 20 66 6f 72 20 74 68 69 73 20 61 70 70 6c 69 63 61 74 69 6f | as.been.used.for.this.applicatio |
| 2ba40 | 6e 20 62 65 63 61 75 73 65 20 69 74 20 69 73 20 76 65 72 79 20 73 69 6d 70 6c 65 20 74 6f 20 69 | n.because.it.is.very.simple.to.i |
| 2ba60 | 6d 70 6c 65 6d 65 6e 74 2e 00 3a 61 62 62 72 3a 60 56 4e 49 20 28 56 69 72 74 75 61 6c 20 4e 65 | mplement..:abbr:`VNI.(Virtual.Ne |
| 2ba80 | 74 77 6f 72 6b 20 49 64 65 6e 74 69 66 69 65 72 29 60 20 69 73 20 61 6e 20 69 64 65 6e 74 69 66 | twork.Identifier)`.is.an.identif |
| 2baa0 | 69 65 72 20 66 6f 72 20 61 20 75 6e 69 71 75 65 20 65 6c 65 6d 65 6e 74 20 6f 66 20 61 20 76 69 | ier.for.a.unique.element.of.a.vi |
| 2bac0 | 72 74 75 61 6c 20 6e 65 74 77 6f 72 6b 2e 20 20 49 6e 20 6d 61 6e 79 20 73 69 74 75 61 74 69 6f | rtual.network...In.many.situatio |
| 2bae0 | 6e 73 20 74 68 69 73 20 6d 61 79 20 72 65 70 72 65 73 65 6e 74 20 61 6e 20 4c 32 20 73 65 67 6d | ns.this.may.represent.an.L2.segm |
| 2bb00 | 65 6e 74 2c 20 68 6f 77 65 76 65 72 2c 20 74 68 65 20 63 6f 6e 74 72 6f 6c 20 70 6c 61 6e 65 20 | ent,.however,.the.control.plane. |
| 2bb20 | 64 65 66 69 6e 65 73 20 74 68 65 20 66 6f 72 77 61 72 64 69 6e 67 20 73 65 6d 61 6e 74 69 63 73 | defines.the.forwarding.semantics |
| 2bb40 | 20 6f 66 20 64 65 63 61 70 73 75 6c 61 74 65 64 20 70 61 63 6b 65 74 73 2e 20 54 68 65 20 56 4e | .of.decapsulated.packets..The.VN |
| 2bb60 | 49 20 4d 41 59 20 62 65 20 75 73 65 64 20 61 73 20 70 61 72 74 20 6f 66 20 45 43 4d 50 20 66 6f | I.MAY.be.used.as.part.of.ECMP.fo |
| 2bb80 | 72 77 61 72 64 69 6e 67 20 64 65 63 69 73 69 6f 6e 73 20 6f 72 20 4d 41 59 20 62 65 20 75 73 65 | rwarding.decisions.or.MAY.be.use |
| 2bba0 | 64 20 61 73 20 61 20 6d 65 63 68 61 6e 69 73 6d 20 74 6f 20 64 69 73 74 69 6e 67 75 69 73 68 20 | d.as.a.mechanism.to.distinguish. |
| 2bbc0 | 62 65 74 77 65 65 6e 20 6f 76 65 72 6c 61 70 70 69 6e 67 20 61 64 64 72 65 73 73 20 73 70 61 63 | between.overlapping.address.spac |
| 2bbe0 | 65 73 20 63 6f 6e 74 61 69 6e 65 64 20 69 6e 20 74 68 65 20 65 6e 63 61 70 73 75 6c 61 74 65 64 | es.contained.in.the.encapsulated |
| 2bc00 | 20 70 61 63 6b 65 74 20 77 68 65 6e 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 61 63 72 6f | .packet.when.load.balancing.acro |
| 2bc20 | 73 73 20 43 50 55 73 2e 00 3a 61 62 62 72 3a 60 56 52 46 20 28 56 69 72 74 75 61 6c 20 52 6f 75 | ss.CPUs..:abbr:`VRF.(Virtual.Rou |
| 2bc40 | 74 69 6e 67 20 61 6e 64 20 46 6f 72 77 61 72 64 69 6e 67 29 60 20 64 65 76 69 63 65 73 20 63 6f | ting.and.Forwarding)`.devices.co |
| 2bc60 | 6d 62 69 6e 65 64 20 77 69 74 68 20 69 70 20 72 75 6c 65 73 20 70 72 6f 76 69 64 65 73 20 74 68 | mbined.with.ip.rules.provides.th |
| 2bc80 | 65 20 61 62 69 6c 69 74 79 20 74 6f 20 63 72 65 61 74 65 20 76 69 72 74 75 61 6c 20 72 6f 75 74 | e.ability.to.create.virtual.rout |
| 2bca0 | 69 6e 67 20 61 6e 64 20 66 6f 72 77 61 72 64 69 6e 67 20 64 6f 6d 61 69 6e 73 20 28 61 6b 61 20 | ing.and.forwarding.domains.(aka. |
| 2bcc0 | 56 52 46 73 2c 20 56 52 46 2d 6c 69 74 65 20 74 6f 20 62 65 20 73 70 65 63 69 66 69 63 29 20 69 | VRFs,.VRF-lite.to.be.specific).i |
| 2bce0 | 6e 20 74 68 65 20 4c 69 6e 75 78 20 6e 65 74 77 6f 72 6b 20 73 74 61 63 6b 2e 20 4f 6e 65 20 75 | n.the.Linux.network.stack..One.u |
| 2bd00 | 73 65 20 63 61 73 65 20 69 73 20 74 68 65 20 6d 75 6c 74 69 2d 74 65 6e 61 6e 63 79 20 70 72 6f | se.case.is.the.multi-tenancy.pro |
| 2bd20 | 62 6c 65 6d 20 77 68 65 72 65 20 65 61 63 68 20 74 65 6e 61 6e 74 20 68 61 73 20 74 68 65 69 72 | blem.where.each.tenant.has.their |
| 2bd40 | 20 6f 77 6e 20 75 6e 69 71 75 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 73 20 61 6e 64 20 69 | .own.unique.routing.tables.and.i |
| 2bd60 | 6e 20 74 68 65 20 76 65 72 79 20 6c 65 61 73 74 20 6e 65 65 64 20 64 69 66 66 65 72 65 6e 74 20 | n.the.very.least.need.different. |
| 2bd80 | 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 73 2e 00 3a 61 62 62 72 3a 60 56 58 4c 41 4e 20 28 | default.gateways..:abbr:`VXLAN.( |
| 2bda0 | 56 69 72 74 75 61 6c 20 45 78 74 65 6e 73 69 62 6c 65 20 4c 41 4e 29 60 20 69 73 20 61 20 6e 65 | Virtual.Extensible.LAN)`.is.a.ne |
| 2bdc0 | 74 77 6f 72 6b 20 76 69 72 74 75 61 6c 69 7a 61 74 69 6f 6e 20 74 65 63 68 6e 6f 6c 6f 67 79 20 | twork.virtualization.technology. |
| 2bde0 | 74 68 61 74 20 61 74 74 65 6d 70 74 73 20 74 6f 20 61 64 64 72 65 73 73 20 74 68 65 20 73 63 61 | that.attempts.to.address.the.sca |
| 2be00 | 6c 61 62 69 6c 69 74 79 20 70 72 6f 62 6c 65 6d 73 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 | lability.problems.associated.wit |
| 2be20 | 68 20 6c 61 72 67 65 20 63 6c 6f 75 64 20 63 6f 6d 70 75 74 69 6e 67 20 64 65 70 6c 6f 79 6d 65 | h.large.cloud.computing.deployme |
| 2be40 | 6e 74 73 2e 20 49 74 20 75 73 65 73 20 61 20 56 4c 41 4e 2d 6c 69 6b 65 20 65 6e 63 61 70 73 75 | nts..It.uses.a.VLAN-like.encapsu |
| 2be60 | 6c 61 74 69 6f 6e 20 74 65 63 68 6e 69 71 75 65 20 74 6f 20 65 6e 63 61 70 73 75 6c 61 74 65 20 | lation.technique.to.encapsulate. |
| 2be80 | 4f 53 49 20 6c 61 79 65 72 20 32 20 45 74 68 65 72 6e 65 74 20 66 72 61 6d 65 73 20 77 69 74 68 | OSI.layer.2.Ethernet.frames.with |
| 2bea0 | 69 6e 20 6c 61 79 65 72 20 34 20 55 44 50 20 64 61 74 61 67 72 61 6d 73 2c 20 75 73 69 6e 67 20 | in.layer.4.UDP.datagrams,.using. |
| 2bec0 | 34 37 38 39 20 61 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 49 41 4e 41 2d 61 73 73 69 67 6e 65 | 4789.as.the.default.IANA-assigne |
| 2bee0 | 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 55 44 50 20 70 6f 72 74 20 6e 75 6d 62 65 72 2e 20 56 | d.destination.UDP.port.number..V |
| 2bf00 | 58 4c 41 4e 20 65 6e 64 70 6f 69 6e 74 73 2c 20 77 68 69 63 68 20 74 65 72 6d 69 6e 61 74 65 20 | XLAN.endpoints,.which.terminate. |
| 2bf20 | 56 58 4c 41 4e 20 74 75 6e 6e 65 6c 73 20 61 6e 64 20 6d 61 79 20 62 65 20 65 69 74 68 65 72 20 | VXLAN.tunnels.and.may.be.either. |
| 2bf40 | 76 69 72 74 75 61 6c 20 6f 72 20 70 68 79 73 69 63 61 6c 20 73 77 69 74 63 68 20 70 6f 72 74 73 | virtual.or.physical.switch.ports |
| 2bf60 | 2c 20 61 72 65 20 6b 6e 6f 77 6e 20 61 73 20 3a 61 62 62 72 3a 60 56 54 45 50 73 20 28 56 58 4c | ,.are.known.as.:abbr:`VTEPs.(VXL |
| 2bf80 | 41 4e 20 74 75 6e 6e 65 6c 20 65 6e 64 70 6f 69 6e 74 73 29 60 2e 00 3a 61 62 62 72 3a 60 57 41 | AN.tunnel.endpoints)`..:abbr:`WA |
| 2bfa0 | 50 20 28 57 69 72 65 6c 65 73 73 20 41 63 63 65 73 73 2d 50 6f 69 6e 74 29 60 20 6d 6f 64 65 20 | P.(Wireless.Access-Point)`.mode. |
| 2bfc0 | 70 72 6f 76 69 64 65 73 20 6e 65 74 77 6f 72 6b 20 61 63 63 65 73 73 20 74 6f 20 63 6f 6e 6e 65 | provides.network.access.to.conne |
| 2bfe0 | 63 74 69 6e 67 20 73 74 61 74 69 6f 6e 73 20 69 66 20 74 68 65 20 70 68 79 73 69 63 61 6c 20 68 | cting.stations.if.the.physical.h |
| 2c000 | 61 72 64 77 61 72 65 20 73 75 70 70 6f 72 74 73 20 61 63 74 69 6e 67 20 61 73 20 61 20 57 41 50 | ardware.supports.acting.as.a.WAP |
| 2c020 | 00 3a 61 62 62 72 3a 60 57 41 50 20 28 57 69 72 65 6c 65 73 73 20 41 63 63 65 73 73 2d 50 6f 69 | .:abbr:`WAP.(Wireless.Access-Poi |
| 2c040 | 6e 74 29 60 20 70 72 6f 76 69 64 65 73 20 6e 65 74 77 6f 72 6b 20 61 63 63 65 73 73 20 74 6f 20 | nt)`.provides.network.access.to. |
| 2c060 | 63 6f 6e 6e 65 63 74 69 6e 67 20 73 74 61 74 69 6f 6e 73 20 69 66 20 74 68 65 20 70 68 79 73 69 | connecting.stations.if.the.physi |
| 2c080 | 63 61 6c 20 68 61 72 64 77 61 72 65 20 73 75 70 70 6f 72 74 73 20 61 63 74 69 6e 67 20 61 73 20 | cal.hardware.supports.acting.as. |
| 2c0a0 | 61 20 57 41 50 00 3a 61 62 62 72 3a 60 57 4c 41 4e 20 28 57 69 72 65 6c 65 73 73 20 4c 41 4e 29 | a.WAP.:abbr:`WLAN.(Wireless.LAN) |
| 2c0c0 | 60 20 69 6e 74 65 72 66 61 63 65 20 70 72 6f 76 69 64 65 20 38 30 32 2e 31 31 20 28 61 2f 62 2f | `.interface.provide.802.11.(a/b/ |
| 2c0e0 | 67 2f 6e 2f 61 63 29 20 77 69 72 65 6c 65 73 73 20 73 75 70 70 6f 72 74 20 28 63 6f 6d 6d 6f 6e | g/n/ac).wireless.support.(common |
| 2c100 | 6c 79 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 57 69 2d 46 69 29 20 62 79 20 6d 65 61 6e | ly.referred.to.as.Wi-Fi).by.mean |
| 2c120 | 73 20 6f 66 20 63 6f 6d 70 61 74 69 62 6c 65 20 68 61 72 64 77 61 72 65 2e 20 49 66 20 79 6f 75 | s.of.compatible.hardware..If.you |
| 2c140 | 72 20 68 61 72 64 77 61 72 65 20 73 75 70 70 6f 72 74 73 20 69 74 2c 20 56 79 4f 53 20 73 75 70 | r.hardware.supports.it,.VyOS.sup |
| 2c160 | 70 6f 72 74 73 20 6d 75 6c 74 69 70 6c 65 20 6c 6f 67 69 63 61 6c 20 77 69 72 65 6c 65 73 73 20 | ports.multiple.logical.wireless. |
| 2c180 | 69 6e 74 65 72 66 61 63 65 73 20 70 65 72 20 70 68 79 73 69 63 61 6c 20 64 65 76 69 63 65 2e 00 | interfaces.per.physical.device.. |
| 2c1a0 | 3a 61 62 62 72 3a 60 57 50 41 20 28 57 69 2d 46 69 20 50 72 6f 74 65 63 74 65 64 20 41 63 63 65 | :abbr:`WPA.(Wi-Fi.Protected.Acce |
| 2c1c0 | 73 73 29 60 20 61 6e 64 20 57 50 41 32 20 45 6e 74 65 72 70 72 69 73 65 20 69 6e 20 63 6f 6d 62 | ss)`.and.WPA2.Enterprise.in.comb |
| 2c1e0 | 69 6e 61 74 69 6f 6e 20 77 69 74 68 20 38 30 32 2e 31 78 20 62 61 73 65 64 20 61 75 74 68 65 6e | ination.with.802.1x.based.authen |
| 2c200 | 74 69 63 61 74 69 6f 6e 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 61 75 74 68 65 6e 74 69 | tication.can.be.used.to.authenti |
| 2c220 | 63 61 74 65 20 75 73 65 72 73 20 6f 72 20 63 6f 6d 70 75 74 65 72 73 20 69 6e 20 61 20 64 6f 6d | cate.users.or.computers.in.a.dom |
| 2c240 | 61 69 6e 2e 00 3a 61 62 62 72 3a 60 57 50 41 20 28 57 69 2d 46 69 20 50 72 6f 74 65 63 74 65 64 | ain..:abbr:`WPA.(Wi-Fi.Protected |
| 2c260 | 20 41 63 63 65 73 73 29 60 2c 20 57 50 41 32 20 45 6e 74 65 72 70 72 69 73 65 20 61 6e 64 20 57 | .Access)`,.WPA2.Enterprise.and.W |
| 2c280 | 50 41 33 20 45 6e 74 65 72 70 72 69 73 65 20 69 6e 20 63 6f 6d 62 69 6e 61 74 69 6f 6e 20 77 69 | PA3.Enterprise.in.combination.wi |
| 2c2a0 | 74 68 20 38 30 32 2e 31 78 20 62 61 73 65 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 63 | th.802.1x.based.authentication.c |
| 2c2c0 | 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 75 73 65 72 73 | an.be.used.to.authenticate.users |
| 2c2e0 | 20 6f 72 20 63 6f 6d 70 75 74 65 72 73 20 69 6e 20 61 20 64 6f 6d 61 69 6e 2e 00 3a 61 62 62 72 | .or.computers.in.a.domain..:abbr |
| 2c300 | 3a 60 6d 47 52 45 20 28 4d 75 6c 74 69 70 6f 69 6e 74 20 47 65 6e 65 72 69 63 20 52 6f 75 74 69 | :`mGRE.(Multipoint.Generic.Routi |
| 2c320 | 6e 67 20 45 6e 63 61 70 73 75 6c 61 74 69 6f 6e 29 60 20 3a 72 66 63 3a 60 31 37 30 32 60 00 3a | ng.Encapsulation)`.:rfc:`1702`.: |
| 2c340 | 63 66 67 63 6d 64 3a 60 61 64 76 2d 72 6f 75 74 65 72 20 3c 41 2e 42 2e 43 2e 44 3e 60 20 e2 80 | cfgcmd:`adv-router.<A.B.C.D>`... |
| 2c360 | 93 20 72 6f 75 74 65 72 20 69 64 2c 20 77 68 69 63 68 20 6c 69 6e 6b 20 61 64 76 65 72 74 69 73 | ..router.id,.which.link.advertis |
| 2c380 | 65 6d 65 6e 74 73 20 6e 65 65 64 20 74 6f 20 62 65 20 72 65 76 69 65 77 65 64 2e 00 3a 63 66 67 | ements.need.to.be.reviewed..:cfg |
| 2c3a0 | 63 6d 64 3a 60 73 65 6c 66 2d 6f 72 69 67 69 6e 61 74 65 60 20 64 69 73 70 6c 61 79 73 20 6f 6e | cmd:`self-originate`.displays.on |
| 2c3c0 | 6c 79 20 73 65 6c 66 2d 6f 72 69 67 69 6e 61 74 65 64 20 4c 53 41 73 20 66 72 6f 6d 20 74 68 65 | ly.self-originated.LSAs.from.the |
| 2c3e0 | 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 2e 00 3a 63 66 67 63 6d 64 3a 60 73 65 74 20 73 65 72 76 | .local.router..:cfgcmd:`set.serv |
| 2c400 | 69 63 65 20 63 6f 6e 6e 74 72 61 63 6b 2d 73 79 6e 63 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 | ice.conntrack-sync.interface.eth |
| 2c420 | 30 20 70 65 65 72 20 31 39 32 2e 31 36 38 2e 30 2e 32 35 30 60 00 3a 63 6f 64 65 3a 60 73 65 74 | 0.peer.192.168.0.250`.:code:`set |
| 2c440 | 20 73 65 72 76 69 63 65 20 77 65 62 70 72 6f 78 79 20 75 72 6c 2d 66 69 6c 74 65 72 69 6e 67 20 | .service.webproxy.url-filtering. |
| 2c460 | 73 71 75 69 64 67 75 61 72 64 20 61 75 74 6f 2d 75 70 64 61 74 65 20 75 70 64 61 74 65 2d 68 6f | squidguard.auto-update.update-ho |
| 2c480 | 75 72 20 32 33 60 00 3a 63 6f 64 65 3a 60 73 65 74 20 73 65 72 76 69 63 65 20 77 65 62 70 72 6f | ur.23`.:code:`set.service.webpro |
| 2c4a0 | 78 79 20 75 72 6c 2d 66 69 6c 74 65 72 69 6e 67 20 73 71 75 69 64 67 75 61 72 64 20 62 6c 6f 63 | xy.url-filtering.squidguard.bloc |
| 2c4c0 | 6b 2d 63 61 74 65 67 6f 72 79 20 61 64 73 60 00 3a 63 6f 64 65 3a 60 73 65 74 20 73 65 72 76 69 | k-category.ads`.:code:`set.servi |
| 2c4e0 | 63 65 20 77 65 62 70 72 6f 78 79 20 75 72 6c 2d 66 69 6c 74 65 72 69 6e 67 20 73 71 75 69 64 67 | ce.webproxy.url-filtering.squidg |
| 2c500 | 75 61 72 64 20 62 6c 6f 63 6b 2d 63 61 74 65 67 6f 72 79 20 6d 61 6c 77 61 72 65 60 00 3a 63 6f | uard.block-category.malware`.:co |
| 2c520 | 64 65 3a 60 73 65 74 20 73 65 72 76 69 63 65 20 77 65 62 70 72 6f 78 79 20 77 68 69 74 65 6c 69 | de:`set.service.webproxy.whiteli |
| 2c540 | 73 74 20 64 65 73 74 69 6e 61 74 69 6f 6e 2d 61 64 64 72 65 73 73 20 31 39 32 2e 30 2e 32 2e 30 | st.destination-address.192.0.2.0 |
| 2c560 | 2f 32 34 60 00 3a 63 6f 64 65 3a 60 73 65 74 20 73 65 72 76 69 63 65 20 77 65 62 70 72 6f 78 79 | /24`.:code:`set.service.webproxy |
| 2c580 | 20 77 68 69 74 65 6c 69 73 74 20 64 65 73 74 69 6e 61 74 69 6f 6e 2d 61 64 64 72 65 73 73 20 31 | .whitelist.destination-address.1 |
| 2c5a0 | 39 38 2e 35 31 2e 31 30 30 2e 33 33 60 00 3a 63 6f 64 65 3a 60 73 65 74 20 73 65 72 76 69 63 65 | 98.51.100.33`.:code:`set.service |
| 2c5c0 | 20 77 65 62 70 72 6f 78 79 20 77 68 69 74 65 6c 69 73 74 20 73 6f 75 72 63 65 2d 61 64 64 72 65 | .webproxy.whitelist.source-addre |
| 2c5e0 | 73 73 20 31 39 32 2e 31 36 38 2e 31 2e 32 60 00 3a 63 6f 64 65 3a 60 73 65 74 20 73 65 72 76 69 | ss.192.168.1.2`.:code:`set.servi |
| 2c600 | 63 65 20 77 65 62 70 72 6f 78 79 20 77 68 69 74 65 6c 69 73 74 20 73 6f 75 72 63 65 2d 61 64 64 | ce.webproxy.whitelist.source-add |
| 2c620 | 72 65 73 73 20 31 39 32 2e 31 36 38 2e 32 2e 30 2f 32 34 60 00 3a 64 6f 63 3a 60 43 6f 6e 6e 74 | ress.192.168.2.0/24`.:doc:`Connt |
| 2c640 | 72 61 63 6b 20 49 67 6e 6f 72 65 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 73 79 73 74 65 | rack.Ignore</configuration/syste |
| 2c660 | 6d 2f 63 6f 6e 6e 74 72 61 63 6b 3e 60 3a 20 60 60 73 65 74 20 73 79 73 74 65 6d 20 63 6f 6e 6e | m/conntrack>`:.``set.system.conn |
| 2c680 | 74 72 61 63 6b 20 69 67 6e 6f 72 65 20 69 70 76 34 2e 2e 2e 60 60 00 3a 64 6f 63 3a 60 43 6f 6e | track.ignore.ipv4...``.:doc:`Con |
| 2c6a0 | 6e 74 72 61 63 6b 20 49 67 6e 6f 72 65 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 73 79 73 | ntrack.Ignore</configuration/sys |
| 2c6c0 | 74 65 6d 2f 63 6f 6e 6e 74 72 61 63 6b 3e 60 3a 20 60 60 73 65 74 20 73 79 73 74 65 6d 20 63 6f | tem/conntrack>`:.``set.system.co |
| 2c6e0 | 6e 6e 74 72 61 63 6b 20 69 67 6e 6f 72 65 20 69 70 76 36 2e 2e 2e 60 60 00 3a 64 6f 63 3a 60 44 | nntrack.ignore.ipv6...``.:doc:`D |
| 2c700 | 65 73 74 69 6e 61 74 69 6f 6e 20 4e 41 54 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 6e 61 | estination.NAT</configuration/na |
| 2c720 | 74 2f 6e 61 74 34 34 3e 60 3a 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 75 6e 64 20 75 6e 64 65 72 20 | t/nat44>`:.commands.found.under. |
| 2c740 | 60 60 73 65 74 20 6e 61 74 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 2e 2e 2e 60 60 00 3a 64 6f 63 | ``set.nat.destination....``.:doc |
| 2c760 | 3a 60 44 65 73 74 69 6e 61 74 69 6f 6e 20 4e 41 54 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | :`Destination.NAT</configuration |
| 2c780 | 2f 6e 61 74 2f 6e 61 74 34 34 3e 60 3a 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 75 6e 64 20 75 6e 64 | /nat/nat44>`:.commands.found.und |
| 2c7a0 | 65 72 20 60 60 73 65 74 20 6e 61 74 36 36 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 2e 2e 2e 60 60 | er.``set.nat66.destination....`` |
| 2c7c0 | 00 3a 64 6f 63 3a 60 50 6f 6c 69 63 79 20 52 6f 75 74 65 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 | .:doc:`Policy.Route</configurati |
| 2c7e0 | 6f 6e 2f 70 6f 6c 69 63 79 2f 72 6f 75 74 65 3e 60 3a 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 75 6e | on/policy/route>`:.commands.foun |
| 2c800 | 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 70 6f 6c 69 63 79 20 72 6f 75 74 65 20 2e 2e 2e 60 60 | d.under.``set.policy.route....`` |
| 2c820 | 00 3a 64 6f 63 3a 60 50 6f 6c 69 63 79 20 52 6f 75 74 65 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 | .:doc:`Policy.Route</configurati |
| 2c840 | 6f 6e 2f 70 6f 6c 69 63 79 2f 72 6f 75 74 65 3e 60 3a 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 75 6e | on/policy/route>`:.commands.foun |
| 2c860 | 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 70 6f 6c 69 63 79 20 72 6f 75 74 65 36 20 2e 2e 2e 60 | d.under.``set.policy.route6....` |
| 2c880 | 60 00 3a 6c 61 73 74 70 72 6f 6f 66 72 65 61 64 3a 32 30 32 31 2d 30 37 2d 31 32 00 3a 6f 70 63 | `.:lastproofread:2021-07-12.:opc |
| 2c8a0 | 6d 64 3a 60 67 65 6e 65 72 61 74 65 20 70 6b 69 20 77 69 72 65 67 75 61 72 64 20 6b 65 79 2d 70 | md:`generate.pki.wireguard.key-p |
| 2c8c0 | 61 69 72 60 2e 00 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 62 67 70 60 00 3a 72 65 66 3a 60 72 | air`..:ref:`routing-bgp`.:ref:`r |
| 2c8e0 | 6f 75 74 69 6e 67 2d 62 67 70 60 3a 20 60 60 73 65 74 20 76 72 66 20 6e 61 6d 65 20 3c 6e 61 6d | outing-bgp`:.``set.vrf.name.<nam |
| 2c900 | 65 3e 20 70 72 6f 74 6f 63 6f 6c 73 20 62 67 70 20 2e 2e 2e 60 60 00 3a 72 65 66 3a 60 72 6f 75 | e>.protocols.bgp....``.:ref:`rou |
| 2c920 | 74 69 6e 67 2d 69 73 69 73 60 00 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 69 73 69 73 60 3a 20 | ting-isis`.:ref:`routing-isis`:. |
| 2c940 | 60 60 73 65 74 20 76 72 66 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 70 72 6f 74 6f 63 6f 6c 73 20 | ``set.vrf.name.<name>.protocols. |
| 2c960 | 69 73 69 73 20 2e 2e 2e 60 60 00 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 6f 73 70 66 60 00 3a | isis....``.:ref:`routing-ospf`.: |
| 2c980 | 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 6f 73 70 66 60 3a 20 60 60 73 65 74 20 76 72 66 20 6e 61 | ref:`routing-ospf`:.``set.vrf.na |
| 2c9a0 | 6d 65 20 3c 6e 61 6d 65 3e 20 70 72 6f 74 6f 63 6f 6c 73 20 6f 73 70 66 20 2e 2e 2e 60 60 00 3a | me.<name>.protocols.ospf....``.: |
| 2c9c0 | 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 6f 73 70 66 76 33 60 00 3a 72 65 66 3a 60 72 6f 75 74 69 | ref:`routing-ospfv3`.:ref:`routi |
| 2c9e0 | 6e 67 2d 6f 73 70 66 76 33 60 3a 20 60 60 73 65 74 20 76 72 66 20 6e 61 6d 65 20 3c 6e 61 6d 65 | ng-ospfv3`:.``set.vrf.name.<name |
| 2ca00 | 3e 20 70 72 6f 74 6f 63 6f 6c 73 20 6f 73 70 66 76 33 20 2e 2e 2e 60 60 00 3a 72 65 66 3a 60 72 | >.protocols.ospfv3....``.:ref:`r |
| 2ca20 | 6f 75 74 69 6e 67 2d 73 74 61 74 69 63 60 00 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 73 74 61 | outing-static`.:ref:`routing-sta |
| 2ca40 | 74 69 63 60 3a 20 60 60 73 65 74 20 76 72 66 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 70 72 6f 74 | tic`:.``set.vrf.name.<name>.prot |
| 2ca60 | 6f 63 6f 6c 73 20 73 74 61 74 69 63 20 2e 2e 2e 60 60 00 3a 72 66 63 3a 60 32 31 33 31 60 20 73 | ocols.static....``.:rfc:`2131`.s |
| 2ca80 | 74 61 74 65 73 3a 20 54 68 65 20 63 6c 69 65 6e 74 20 4d 41 59 20 63 68 6f 6f 73 65 20 74 6f 20 | tates:.The.client.MAY.choose.to. |
| 2caa0 | 65 78 70 6c 69 63 69 74 6c 79 20 70 72 6f 76 69 64 65 20 74 68 65 20 69 64 65 6e 74 69 66 69 65 | explicitly.provide.the.identifie |
| 2cac0 | 72 20 74 68 72 6f 75 67 68 20 74 68 65 20 27 63 6c 69 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 | r.through.the.'client.identifier |
| 2cae0 | 27 20 6f 70 74 69 6f 6e 2e 20 49 66 20 74 68 65 20 63 6c 69 65 6e 74 20 73 75 70 70 6c 69 65 73 | '.option..If.the.client.supplies |
| 2cb00 | 20 61 20 27 63 6c 69 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 27 2c 20 74 68 65 20 63 6c 69 65 | .a.'client.identifier',.the.clie |
| 2cb20 | 6e 74 20 4d 55 53 54 20 75 73 65 20 74 68 65 20 73 61 6d 65 20 27 63 6c 69 65 6e 74 20 69 64 65 | nt.MUST.use.the.same.'client.ide |
| 2cb40 | 6e 74 69 66 69 65 72 27 20 69 6e 20 61 6c 6c 20 73 75 62 73 65 71 75 65 6e 74 20 6d 65 73 73 61 | ntifier'.in.all.subsequent.messa |
| 2cb60 | 67 65 73 2c 20 61 6e 64 20 74 68 65 20 73 65 72 76 65 72 20 4d 55 53 54 20 75 73 65 20 74 68 61 | ges,.and.the.server.MUST.use.tha |
| 2cb80 | 74 20 69 64 65 6e 74 69 66 69 65 72 20 74 6f 20 69 64 65 6e 74 69 66 79 20 74 68 65 20 63 6c 69 | t.identifier.to.identify.the.cli |
| 2cba0 | 65 6e 74 2e 00 3a 72 66 63 3a 60 32 31 33 36 60 20 42 61 73 65 64 00 3a 72 66 63 3a 60 32 33 32 | ent..:rfc:`2136`.Based.:rfc:`232 |
| 2cbc0 | 38 60 2c 20 74 68 65 20 73 75 63 63 65 73 73 6f 72 20 74 6f 20 3a 72 66 63 3a 60 31 35 38 33 60 | 8`,.the.successor.to.:rfc:`1583` |
| 2cbe0 | 2c 20 73 75 67 67 65 73 74 73 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 73 65 63 74 69 6f 6e 20 | ,.suggests.according.to.section. |
| 2cc00 | 47 2e 32 20 28 63 68 61 6e 67 65 73 29 20 69 6e 20 73 65 63 74 69 6f 6e 20 31 36 2e 34 2e 31 20 | G.2.(changes).in.section.16.4.1. |
| 2cc20 | 61 20 63 68 61 6e 67 65 20 74 6f 20 74 68 65 20 70 61 74 68 20 70 72 65 66 65 72 65 6e 63 65 20 | a.change.to.the.path.preference. |
| 2cc40 | 61 6c 67 6f 72 69 74 68 6d 20 74 68 61 74 20 70 72 65 76 65 6e 74 73 20 70 6f 73 73 69 62 6c 65 | algorithm.that.prevents.possible |
| 2cc60 | 20 72 6f 75 74 69 6e 67 20 6c 6f 6f 70 73 20 74 68 61 74 20 77 65 72 65 20 70 6f 73 73 69 62 6c | .routing.loops.that.were.possibl |
| 2cc80 | 65 20 69 6e 20 74 68 65 20 6f 6c 64 20 76 65 72 73 69 6f 6e 20 6f 66 20 4f 53 50 46 76 32 2e 20 | e.in.the.old.version.of.OSPFv2.. |
| 2cca0 | 4d 6f 72 65 20 73 70 65 63 69 66 69 63 61 6c 6c 79 20 69 74 20 64 65 6d 61 6e 64 73 20 74 68 61 | More.specifically.it.demands.tha |
| 2ccc0 | 74 20 69 6e 74 65 72 2d 61 72 65 61 20 70 61 74 68 73 20 61 6e 64 20 69 6e 74 72 61 2d 61 72 65 | t.inter-area.paths.and.intra-are |
| 2cce0 | 61 20 62 61 63 6b 62 6f 6e 65 20 70 61 74 68 20 61 72 65 20 6e 6f 77 20 6f 66 20 65 71 75 61 6c | a.backbone.path.are.now.of.equal |
| 2cd00 | 20 70 72 65 66 65 72 65 6e 63 65 20 62 75 74 20 73 74 69 6c 6c 20 62 6f 74 68 20 70 72 65 66 65 | .preference.but.still.both.prefe |
| 2cd20 | 72 72 65 64 20 74 6f 20 65 78 74 65 72 6e 61 6c 20 70 61 74 68 73 2e 00 3a 72 66 63 3a 60 36 35 | rred.to.external.paths..:rfc:`65 |
| 2cd40 | 39 38 60 20 2d 20 49 41 4e 41 2d 52 65 73 65 72 76 65 64 20 49 50 76 34 20 50 72 65 66 69 78 20 | 98`.-.IANA-Reserved.IPv4.Prefix. |
| 2cd60 | 66 6f 72 20 53 68 61 72 65 64 20 41 64 64 72 65 73 73 20 53 70 61 63 65 00 3a 72 66 63 3a 60 36 | for.Shared.Address.Space.:rfc:`6 |
| 2cd80 | 38 38 38 60 20 2d 20 52 65 71 75 69 72 65 6d 65 6e 74 73 20 66 6f 72 20 43 47 4e 41 54 00 3a 76 | 888`.-.Requirements.for.CGNAT.:v |
| 2cda0 | 79 74 61 73 6b 3a 60 54 33 36 34 32 60 20 64 65 73 63 72 69 62 65 73 20 61 20 6e 65 77 20 43 4c | ytask:`T3642`.describes.a.new.CL |
| 2cdc0 | 49 20 73 75 62 73 79 73 74 65 6d 20 74 68 61 74 20 73 65 72 76 65 73 20 61 73 20 61 20 22 63 65 | I.subsystem.that.serves.as.a."ce |
| 2cde0 | 72 74 73 74 6f 72 65 22 20 74 6f 20 61 6c 6c 20 73 65 72 76 69 63 65 73 20 72 65 71 75 69 72 69 | rtstore".to.all.services.requiri |
| 2ce00 | 6e 67 20 61 6e 79 20 6b 69 6e 64 20 6f 66 20 65 6e 63 72 79 70 74 69 6f 6e 20 6b 65 79 28 73 29 | ng.any.kind.of.encryption.key(s) |
| 2ce20 | 2e 20 49 6e 20 73 68 6f 72 74 2c 20 70 75 62 6c 69 63 20 61 6e 64 20 70 72 69 76 61 74 65 20 63 | ..In.short,.public.and.private.c |
| 2ce40 | 65 72 74 69 66 69 63 61 74 65 73 20 61 72 65 20 6e 6f 77 20 73 74 6f 72 65 64 20 69 6e 20 50 4b | ertificates.are.now.stored.in.PK |
| 2ce60 | 43 53 23 38 20 66 6f 72 6d 61 74 20 69 6e 20 74 68 65 20 72 65 67 75 6c 61 72 20 56 79 4f 53 20 | CS#8.format.in.the.regular.VyOS. |
| 2ce80 | 43 4c 49 2e 20 4b 65 79 73 20 63 61 6e 20 6e 6f 77 20 62 65 20 61 64 64 65 64 2c 20 65 64 69 74 | CLI..Keys.can.now.be.added,.edit |
| 2cea0 | 65 64 2c 20 61 6e 64 20 64 65 6c 65 74 65 64 20 75 73 69 6e 67 20 74 68 65 20 72 65 67 75 6c 61 | ed,.and.deleted.using.the.regula |
| 2cec0 | 72 20 73 65 74 2f 65 64 69 74 2f 64 65 6c 65 74 65 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 73 2e 00 | r.set/edit/delete.CLI.commands.. |
| 2cee0 | 3c 31 2d 36 35 35 33 35 3e 3a 20 4e 75 6d 62 65 72 65 64 20 70 6f 72 74 2e 00 3c 61 61 3a 6e 6e | <1-65535>:.Numbered.port..<aa:nn |
| 2cf00 | 3a 6e 6e 3e 3a 20 45 78 74 65 6e 64 65 64 20 63 6f 6d 6d 75 6e 69 74 79 20 6c 69 73 74 20 72 65 | :nn>:.Extended.community.list.re |
| 2cf20 | 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 2e 00 3c 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 | gular.expression..<h:h:h:h:h:h:h |
| 2cf40 | 3a 68 2f 78 3e 3a 20 49 50 76 36 20 70 72 65 66 69 78 20 74 6f 20 6d 61 74 63 68 2e 00 3c 68 3a | :h/x>:.IPv6.prefix.to.match..<h: |
| 2cf60 | 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3e 2d 3c 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3e | h:h:h:h:h:h:h>-<h:h:h:h:h:h:h:h> |
| 2cf80 | 3a 20 49 50 76 36 20 72 61 6e 67 65 20 74 6f 20 6d 61 74 63 68 2e 00 3c 68 3a 68 3a 68 3a 68 3a | :.IPv6.range.to.match..<h:h:h:h: |
| 2cfa0 | 68 3a 68 3a 68 3a 68 3e 3a 20 49 50 76 36 20 61 64 64 72 65 73 73 20 74 6f 20 6d 61 74 63 68 2e | h:h:h:h>:.IPv6.address.to.match. |
| 2cfc0 | 00 3c 6c 69 6e 65 73 3e 00 3c 6e 75 6d 62 65 72 3e 20 6d 75 73 74 20 62 65 20 66 72 6f 6d 20 33 | .<lines>.<number>.must.be.from.3 |
| 2cfe0 | 34 20 2d 20 31 37 33 2e 20 46 6f 72 20 38 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 73 20 69 74 20 | 4.-.173..For.80.MHz.channels.it. |
| 2d000 | 73 68 6f 75 6c 64 20 62 65 20 63 68 61 6e 6e 65 6c 20 2b 20 36 2e 00 3c 6e 75 6d 62 65 72 3e 20 | should.be.channel.+.6..<number>. |
| 2d020 | 6d 75 73 74 20 62 65 20 6f 6e 65 20 6f 66 3a 00 3c 6e 75 6d 62 65 72 3e 20 6d 75 73 74 20 62 65 | must.be.one.of:.<number>.must.be |
| 2d040 | 20 77 69 74 68 69 6e 20 31 2e 2e 32 33 33 2e 20 46 6f 72 20 38 30 20 4d 48 7a 20 63 68 61 6e 6e | .within.1..233..For.80.MHz.chann |
| 2d060 | 65 6c 73 20 69 74 20 73 68 6f 75 6c 64 20 62 65 20 63 68 61 6e 6e 65 6c 20 2b 20 36 20 61 6e 64 | els.it.should.be.channel.+.6.and |
| 2d080 | 20 66 6f 72 20 31 36 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 73 2c 20 69 74 20 73 68 6f 75 6c 64 | .for.160.MHz.channels,.it.should |
| 2d0a0 | 20 62 65 20 63 68 61 6e 6e 65 6c 20 2b 20 31 34 2e 00 3c 6e 75 6d 62 65 72 3e 20 e2 80 93 20 61 | .be.channel.+.14..<number>.....a |
| 2d0c0 | 72 65 61 20 69 64 65 6e 74 69 66 69 65 72 20 74 68 72 6f 75 67 68 20 77 68 69 63 68 20 61 20 76 | rea.identifier.through.which.a.v |
| 2d0e0 | 69 72 74 75 61 6c 20 6c 69 6e 6b 20 67 6f 65 73 2e 20 3c 41 2e 42 2e 43 2e 44 3e 20 e2 80 93 20 | irtual.link.goes..<A.B.C.D>..... |
| 2d100 | 41 42 52 20 72 6f 75 74 65 72 2d 69 64 20 77 69 74 68 20 77 68 69 63 68 20 61 20 76 69 72 74 75 | ABR.router-id.with.which.a.virtu |
| 2d120 | 61 6c 20 6c 69 6e 6b 20 69 73 20 65 73 74 61 62 6c 69 73 68 65 64 2e 20 56 69 72 74 75 61 6c 20 | al.link.is.established..Virtual. |
| 2d140 | 6c 69 6e 6b 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 62 6f 74 68 20 | link.must.be.configured.on.both. |
| 2d160 | 72 6f 75 74 65 72 73 2e 00 3c 70 6f 72 74 20 6e 61 6d 65 3e 3a 20 4e 61 6d 65 64 20 70 6f 72 74 | routers..<port.name>:.Named.port |
| 2d180 | 20 28 61 6e 79 20 6e 61 6d 65 20 69 6e 20 2f 65 74 63 2f 73 65 72 76 69 63 65 73 2c 20 65 2e 67 | .(any.name.in./etc/services,.e.g |
| 2d1a0 | 2e 2c 20 68 74 74 70 29 2e 00 3c 72 74 20 61 61 3a 6e 6e 3a 6e 6e 3e 3a 20 52 6f 75 74 65 20 54 | .,.http)..<rt.aa:nn:nn>:.Route.T |
| 2d1c0 | 61 72 67 65 74 20 72 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 2e 00 3c 73 6f 6f 20 61 | arget.regular.expression..<soo.a |
| 2d1e0 | 61 3a 6e 6e 3a 6e 6e 3e 3a 20 53 69 74 65 20 6f 66 20 4f 72 69 67 69 6e 20 72 65 67 75 6c 61 72 | a:nn:nn>:.Site.of.Origin.regular |
| 2d200 | 20 65 78 70 72 65 73 73 69 6f 6e 2e 00 3c 73 74 61 72 74 3e 2d 3c 65 6e 64 3e 3a 20 4e 75 6d 62 | .expression..<start>-<end>:.Numb |
| 2d220 | 65 72 65 64 20 70 6f 72 74 20 72 61 6e 67 65 20 28 65 2e 67 2e 2c 20 31 30 30 31 2d 31 30 30 35 | ered.port.range.(e.g.,.1001-1005 |
| 2d240 | 29 2e 00 3c 78 2e 78 2e 78 2e 78 2f 78 3e 3a 20 53 75 62 6e 65 74 20 74 6f 20 6d 61 74 63 68 2e | )..<x.x.x.x/x>:.Subnet.to.match. |
| 2d260 | 00 3c 78 2e 78 2e 78 2e 78 3e 2d 3c 78 2e 78 2e 78 2e 78 3e 3a 20 49 50 20 72 61 6e 67 65 20 74 | .<x.x.x.x>-<x.x.x.x>:.IP.range.t |
| 2d280 | 6f 20 6d 61 74 63 68 2e 00 3c 78 2e 78 2e 78 2e 78 3e 3a 20 49 50 20 61 64 64 72 65 73 73 20 74 | o.match..<x.x.x.x>:.IP.address.t |
| 2d2a0 | 6f 20 6d 61 74 63 68 2e 00 41 20 2a 2a 64 6f 6d 61 69 6e 20 67 72 6f 75 70 2a 2a 20 72 65 70 72 | o.match..A.**domain.group**.repr |
| 2d2c0 | 65 73 65 6e 74 73 20 61 20 63 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 64 6f 6d 61 69 6e 73 2e 00 | esents.a.collection.of.domains.. |
| 2d2e0 | 41 20 2a 2a 6d 61 63 20 67 72 6f 75 70 2a 2a 20 72 65 70 72 65 73 65 6e 74 73 20 61 20 63 6f 6c | A.**mac.group**.represents.a.col |
| 2d300 | 6c 65 63 74 69 6f 6e 20 6f 66 20 6d 61 63 20 61 64 64 72 65 73 73 65 73 2e 00 41 20 2a 2a 70 6f | lection.of.mac.addresses..A.**po |
| 2d320 | 72 74 20 67 72 6f 75 70 2a 2a 20 72 65 70 72 65 73 65 6e 74 73 20 6f 6e 6c 79 20 70 6f 72 74 20 | rt.group**.represents.only.port. |
| 2d340 | 6e 75 6d 62 65 72 73 2c 20 6e 6f 74 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 2e 20 50 6f 72 74 20 | numbers,.not.the.protocol..Port. |
| 2d360 | 67 72 6f 75 70 73 20 63 61 6e 20 62 65 20 72 65 66 65 72 65 6e 63 65 64 20 66 6f 72 20 65 69 74 | groups.can.be.referenced.for.eit |
| 2d380 | 68 65 72 20 54 43 50 20 6f 72 20 55 44 50 2e 20 49 74 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 | her.TCP.or.UDP..It.is.recommende |
| 2d3a0 | 64 20 74 68 61 74 20 54 43 50 20 61 6e 64 20 55 44 50 20 67 72 6f 75 70 73 20 61 72 65 20 63 72 | d.that.TCP.and.UDP.groups.are.cr |
| 2d3c0 | 65 61 74 65 64 20 73 65 70 61 72 61 74 65 6c 79 20 74 6f 20 61 76 6f 69 64 20 61 63 63 69 64 65 | eated.separately.to.avoid.accide |
| 2d3e0 | 6e 74 61 6c 6c 79 20 66 69 6c 74 65 72 69 6e 67 20 75 6e 6e 65 63 65 73 73 61 72 79 20 70 6f 72 | ntally.filtering.unnecessary.por |
| 2d400 | 74 73 2e 20 52 61 6e 67 65 73 20 6f 66 20 70 6f 72 74 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 | ts..Ranges.of.ports.can.be.speci |
| 2d420 | 66 69 65 64 20 62 79 20 75 73 69 6e 67 20 60 2d 60 2e 00 41 20 2a 62 69 74 2a 20 69 73 20 77 72 | fied.by.using.`-`..A.*bit*.is.wr |
| 2d440 | 69 74 74 65 6e 20 61 73 20 2a 2a 62 69 74 2a 2a 2c 00 41 20 34 20 73 74 65 70 20 70 6f 72 74 20 | itten.as.**bit**,.A.4.step.port. |
| 2d460 | 6b 6e 6f 63 6b 69 6e 67 20 65 78 61 6d 70 6c 65 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 3a 00 | knocking.example.is.shown.next:. |
| 2d480 | 41 20 3a 61 62 62 72 3a 60 4e 49 53 20 28 4e 65 74 77 6f 72 6b 20 49 6e 66 6f 72 6d 61 74 69 6f | A.:abbr:`NIS.(Network.Informatio |
| 2d4a0 | 6e 20 53 65 72 76 69 63 65 29 60 20 64 6f 6d 61 69 6e 20 63 61 6e 20 62 65 20 73 65 74 20 74 6f | n.Service)`.domain.can.be.set.to |
| 2d4c0 | 20 62 65 20 75 73 65 64 20 66 6f 72 20 44 48 43 50 76 36 20 63 6c 69 65 6e 74 73 2e 00 41 20 42 | .be.used.for.DHCPv6.clients..A.B |
| 2d4e0 | 47 50 20 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e 20 64 69 76 69 64 65 73 20 6f 75 72 20 41 53 20 | GP.confederation.divides.our.AS. |
| 2d500 | 69 6e 74 6f 20 73 75 62 2d 41 53 65 73 20 74 6f 20 72 65 64 75 63 65 20 74 68 65 20 6e 75 6d 62 | into.sub-ASes.to.reduce.the.numb |
| 2d520 | 65 72 20 6f 66 20 72 65 71 75 69 72 65 64 20 49 42 47 50 20 70 65 65 72 69 6e 67 73 2e 20 57 69 | er.of.required.IBGP.peerings..Wi |
| 2d540 | 74 68 69 6e 20 61 20 73 75 62 2d 41 53 20 77 65 20 73 74 69 6c 6c 20 72 65 71 75 69 72 65 20 66 | thin.a.sub-AS.we.still.require.f |
| 2d560 | 75 6c 6c 2d 6d 65 73 68 20 49 42 47 50 20 62 75 74 20 62 65 74 77 65 65 6e 20 74 68 65 73 65 20 | ull-mesh.IBGP.but.between.these. |
| 2d580 | 73 75 62 2d 41 53 65 73 20 77 65 20 75 73 65 20 73 6f 6d 65 74 68 69 6e 67 20 74 68 61 74 20 6c | sub-ASes.we.use.something.that.l |
| 2d5a0 | 6f 6f 6b 73 20 6c 69 6b 65 20 45 42 47 50 20 62 75 74 20 62 65 68 61 76 65 73 20 6c 69 6b 65 20 | ooks.like.EBGP.but.behaves.like. |
| 2d5c0 | 49 42 47 50 20 28 63 61 6c 6c 65 64 20 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e 20 42 47 50 29 2e | IBGP.(called.confederation.BGP). |
| 2d5e0 | 20 43 6f 6e 66 65 64 65 72 61 74 69 6f 6e 20 6d 65 63 68 61 6e 69 73 6d 20 69 73 20 64 65 73 63 | .Confederation.mechanism.is.desc |
| 2d600 | 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 35 30 36 35 60 00 41 20 42 47 50 2d 73 70 65 61 6b | ribed.in.:rfc:`5065`.A.BGP-speak |
| 2d620 | 69 6e 67 20 72 6f 75 74 65 72 20 6c 69 6b 65 20 56 79 4f 53 20 63 61 6e 20 72 65 74 72 69 65 76 | ing.router.like.VyOS.can.retriev |
| 2d640 | 65 20 52 4f 41 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 52 50 4b 49 20 22 52 65 6c | e.ROA.information.from.RPKI."Rel |
| 2d660 | 79 69 6e 67 20 50 61 72 74 79 20 73 6f 66 74 77 61 72 65 22 20 28 6f 66 74 65 6e 20 6a 75 73 74 | ying.Party.software".(often.just |
| 2d680 | 20 63 61 6c 6c 65 64 20 61 6e 20 22 52 50 4b 49 20 73 65 72 76 65 72 22 20 6f 72 20 22 52 50 4b | .called.an."RPKI.server".or."RPK |
| 2d6a0 | 49 20 76 61 6c 69 64 61 74 6f 72 22 29 20 62 79 20 75 73 69 6e 67 20 3a 61 62 62 72 3a 60 52 54 | I.validator").by.using.:abbr:`RT |
| 2d6c0 | 52 20 28 52 50 4b 49 20 74 6f 20 52 6f 75 74 65 72 29 60 20 70 72 6f 74 6f 63 6f 6c 2e 20 54 68 | R.(RPKI.to.Router)`.protocol..Th |
| 2d6e0 | 65 72 65 20 61 72 65 20 73 65 76 65 72 61 6c 20 6f 70 65 6e 20 73 6f 75 72 63 65 20 69 6d 70 6c | ere.are.several.open.source.impl |
| 2d700 | 65 6d 65 6e 74 61 74 69 6f 6e 73 20 74 6f 20 63 68 6f 6f 73 65 20 66 72 6f 6d 2c 20 73 75 63 68 | ementations.to.choose.from,.such |
| 2d720 | 20 61 73 20 4e 4c 4e 65 74 4c 61 62 73 27 20 52 6f 75 74 69 6e 61 74 6f 72 5f 20 28 77 72 69 74 | .as.NLNetLabs'.Routinator_.(writ |
| 2d740 | 74 65 6e 20 69 6e 20 52 75 73 74 29 2c 20 43 6c 6f 75 64 66 6c 61 72 65 27 73 20 47 6f 52 54 52 | ten.in.Rust),.Cloudflare's.GoRTR |
| 2d760 | 5f 20 61 6e 64 20 4f 63 74 6f 52 50 4b 49 5f 20 28 77 72 69 74 74 65 6e 20 69 6e 20 47 6f 29 2c | _.and.OctoRPKI_.(written.in.Go), |
| 2d780 | 20 61 6e 64 20 52 49 50 45 20 4e 43 43 27 73 20 52 50 4b 49 20 56 61 6c 69 64 61 74 6f 72 5f 20 | .and.RIPE.NCC's.RPKI.Validator_. |
| 2d7a0 | 28 77 72 69 74 74 65 6e 20 69 6e 20 4a 61 76 61 29 2e 20 54 68 65 20 52 54 52 20 70 72 6f 74 6f | (written.in.Java)..The.RTR.proto |
| 2d7c0 | 63 6f 6c 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 38 32 31 30 60 2e | col.is.described.in.:rfc:`8210`. |
| 2d7e0 | 00 41 20 42 47 50 2d 73 70 65 61 6b 69 6e 67 20 72 6f 75 74 65 72 20 6c 69 6b 65 20 56 79 4f 53 | .A.BGP-speaking.router.like.VyOS |
| 2d800 | 20 63 61 6e 20 72 65 74 72 69 65 76 65 20 52 4f 41 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 | .can.retrieve.ROA.information.fr |
| 2d820 | 6f 6d 20 52 50 4b 49 20 22 52 65 6c 79 69 6e 67 20 50 61 72 74 79 20 73 6f 66 74 77 61 72 65 22 | om.RPKI."Relying.Party.software" |
| 2d840 | 20 28 6f 66 74 65 6e 20 6a 75 73 74 20 63 61 6c 6c 65 64 20 61 6e 20 22 52 50 4b 49 20 73 65 72 | .(often.just.called.an."RPKI.ser |
| 2d860 | 76 65 72 22 20 6f 72 20 22 52 50 4b 49 20 76 61 6c 69 64 61 74 6f 72 22 29 20 62 79 20 75 73 69 | ver".or."RPKI.validator").by.usi |
| 2d880 | 6e 67 20 3a 61 62 62 72 3a 60 52 54 52 20 28 52 50 4b 49 20 74 6f 20 52 6f 75 74 65 72 29 60 20 | ng.:abbr:`RTR.(RPKI.to.Router)`. |
| 2d8a0 | 70 72 6f 74 6f 63 6f 6c 2e 20 54 68 65 72 65 20 61 72 65 20 73 65 76 65 72 61 6c 20 6f 70 65 6e | protocol..There.are.several.open |
| 2d8c0 | 20 73 6f 75 72 63 65 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 73 20 74 6f 20 63 68 6f 6f 73 | .source.implementations.to.choos |
| 2d8e0 | 65 20 66 72 6f 6d 2c 20 73 75 63 68 20 61 73 20 4e 4c 4e 65 74 4c 61 62 73 27 20 52 6f 75 74 69 | e.from,.such.as.NLNetLabs'.Routi |
| 2d900 | 6e 61 74 6f 72 5f 20 28 77 72 69 74 74 65 6e 20 69 6e 20 52 75 73 74 29 2c 20 4f 70 65 6e 42 53 | nator_.(written.in.Rust),.OpenBS |
| 2d920 | 44 27 73 20 72 70 6b 69 2d 63 6c 69 65 6e 74 5f 20 28 77 72 69 74 74 65 6e 20 69 6e 20 43 29 2c | D's.rpki-client_.(written.in.C), |
| 2d940 | 20 61 6e 64 20 53 74 61 79 52 54 52 5f 20 28 77 72 69 74 74 65 6e 20 69 6e 20 47 6f 29 2e 20 54 | .and.StayRTR_.(written.in.Go)..T |
| 2d960 | 68 65 20 52 54 52 20 70 72 6f 74 6f 63 6f 6c 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 | he.RTR.protocol.is.described.in. |
| 2d980 | 3a 72 66 63 3a 60 38 32 31 30 60 2e 00 41 20 42 72 69 64 67 65 20 69 73 20 61 20 77 61 79 20 74 | :rfc:`8210`..A.Bridge.is.a.way.t |
| 2d9a0 | 6f 20 63 6f 6e 6e 65 63 74 20 74 77 6f 20 45 74 68 65 72 6e 65 74 20 73 65 67 6d 65 6e 74 73 20 | o.connect.two.Ethernet.segments. |
| 2d9c0 | 74 6f 67 65 74 68 65 72 20 69 6e 20 61 20 70 72 6f 74 6f 63 6f 6c 20 69 6e 64 65 70 65 6e 64 65 | together.in.a.protocol.independe |
| 2d9e0 | 6e 74 20 77 61 79 2e 20 50 61 63 6b 65 74 73 20 61 72 65 20 66 6f 72 77 61 72 64 65 64 20 62 61 | nt.way..Packets.are.forwarded.ba |
| 2da00 | 73 65 64 20 6f 6e 20 45 74 68 65 72 6e 65 74 20 61 64 64 72 65 73 73 2c 20 72 61 74 68 65 72 20 | sed.on.Ethernet.address,.rather. |
| 2da20 | 74 68 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 28 6c 69 6b 65 20 61 20 72 6f 75 74 65 72 29 2e | than.IP.address.(like.a.router). |
| 2da40 | 20 53 69 6e 63 65 20 66 6f 72 77 61 72 64 69 6e 67 20 69 73 20 64 6f 6e 65 20 61 74 20 4c 61 79 | .Since.forwarding.is.done.at.Lay |
| 2da60 | 65 72 20 32 2c 20 61 6c 6c 20 70 72 6f 74 6f 63 6f 6c 73 20 63 61 6e 20 67 6f 20 74 72 61 6e 73 | er.2,.all.protocols.can.go.trans |
| 2da80 | 70 61 72 65 6e 74 6c 79 20 74 68 72 6f 75 67 68 20 61 20 62 72 69 64 67 65 2e 20 54 68 65 20 4c | parently.through.a.bridge..The.L |
| 2daa0 | 69 6e 75 78 20 62 72 69 64 67 65 20 63 6f 64 65 20 69 6d 70 6c 65 6d 65 6e 74 73 20 61 20 73 75 | inux.bridge.code.implements.a.su |
| 2dac0 | 62 73 65 74 20 6f 66 20 74 68 65 20 41 4e 53 49 2f 49 45 45 45 20 38 30 32 2e 31 64 20 73 74 61 | bset.of.the.ANSI/IEEE.802.1d.sta |
| 2dae0 | 6e 64 61 72 64 2e 00 41 20 47 52 45 20 74 75 6e 6e 65 6c 20 6f 70 65 72 61 74 65 73 20 61 74 20 | ndard..A.GRE.tunnel.operates.at. |
| 2db00 | 6c 61 79 65 72 20 33 20 6f 66 20 74 68 65 20 4f 53 49 20 6d 6f 64 65 6c 20 61 6e 64 20 69 73 20 | layer.3.of.the.OSI.model.and.is. |
| 2db20 | 72 65 70 72 65 73 65 6e 74 65 64 20 62 79 20 49 50 20 70 72 6f 74 6f 63 6f 6c 20 34 37 2e 20 54 | represented.by.IP.protocol.47..T |
| 2db40 | 68 65 20 6d 61 69 6e 20 62 65 6e 65 66 69 74 20 6f 66 20 61 20 47 52 45 20 74 75 6e 6e 65 6c 20 | he.main.benefit.of.a.GRE.tunnel. |
| 2db60 | 69 73 20 74 68 61 74 20 79 6f 75 20 61 72 65 20 61 62 6c 65 20 74 6f 20 63 61 72 72 79 20 6d 75 | is.that.you.are.able.to.carry.mu |
| 2db80 | 6c 74 69 70 6c 65 20 70 72 6f 74 6f 63 6f 6c 73 20 69 6e 73 69 64 65 20 74 68 65 20 73 61 6d 65 | ltiple.protocols.inside.the.same |
| 2dba0 | 20 74 75 6e 6e 65 6c 2e 20 47 52 45 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 73 20 6d 75 6c 74 69 | .tunnel..GRE.also.supports.multi |
| 2dbc0 | 63 61 73 74 20 74 72 61 66 66 69 63 20 61 6e 64 20 73 75 70 70 6f 72 74 73 20 72 6f 75 74 69 6e | cast.traffic.and.supports.routin |
| 2dbe0 | 67 20 70 72 6f 74 6f 63 6f 6c 73 20 74 68 61 74 20 6c 65 76 65 72 61 67 65 20 6d 75 6c 74 69 63 | g.protocols.that.leverage.multic |
| 2dc00 | 61 73 74 20 74 6f 20 66 6f 72 6d 20 6e 65 69 67 68 62 6f 72 20 61 64 6a 61 63 65 6e 63 69 65 73 | ast.to.form.neighbor.adjacencies |
| 2dc20 | 2e 00 41 20 52 75 6c 65 2d 53 65 74 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 65 | ..A.Rule-Set.can.be.applied.to.e |
| 2dc40 | 76 65 72 79 20 69 6e 74 65 72 66 61 63 65 3a 00 41 20 53 4e 54 50 20 73 65 72 76 65 72 20 61 64 | very.interface:.A.SNTP.server.ad |
| 2dc60 | 64 72 65 73 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 66 6f 72 20 44 48 43 50 76 | dress.can.be.specified.for.DHCPv |
| 2dc80 | 36 20 63 6c 69 65 6e 74 73 2e 00 41 20 56 52 46 20 64 65 76 69 63 65 20 69 73 20 63 72 65 61 74 | 6.clients..A.VRF.device.is.creat |
| 2dca0 | 65 64 20 77 69 74 68 20 61 6e 20 61 73 73 6f 63 69 61 74 65 64 20 72 6f 75 74 65 20 74 61 62 6c | ed.with.an.associated.route.tabl |
| 2dcc0 | 65 2e 20 4e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 74 68 65 6e 20 65 | e..Network.interfaces.are.then.e |
| 2dce0 | 6e 73 6c 61 76 65 64 20 74 6f 20 61 20 56 52 46 20 64 65 76 69 63 65 2e 00 41 20 56 79 4f 53 20 | nslaved.to.a.VRF.device..A.VyOS. |
| 2dd00 | 47 52 45 20 74 75 6e 6e 65 6c 20 63 61 6e 20 63 61 72 72 79 20 62 6f 74 68 20 49 50 76 34 20 61 | GRE.tunnel.can.carry.both.IPv4.a |
| 2dd20 | 6e 64 20 49 50 76 36 20 74 72 61 66 66 69 63 20 61 6e 64 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 | nd.IPv6.traffic.and.can.also.be. |
| 2dd40 | 63 72 65 61 74 65 64 20 6f 76 65 72 20 65 69 74 68 65 72 20 49 50 76 34 20 28 67 72 65 29 20 6f | created.over.either.IPv4.(gre).o |
| 2dd60 | 72 20 49 50 76 36 20 28 69 70 36 67 72 65 29 2e 00 41 20 56 79 4f 53 20 72 6f 75 74 65 72 20 77 | r.IPv6.(ip6gre)..A.VyOS.router.w |
| 2dd80 | 69 74 68 20 74 77 6f 20 69 6e 74 65 72 66 61 63 65 73 20 2d 20 65 74 68 30 20 28 57 41 4e 29 20 | ith.two.interfaces.-.eth0.(WAN). |
| 2dda0 | 61 6e 64 20 65 74 68 31 20 28 4c 41 4e 29 20 2d 20 69 73 20 72 65 71 75 69 72 65 64 20 74 6f 20 | and.eth1.(LAN).-.is.required.to. |
| 2ddc0 | 69 6d 70 6c 65 6d 65 6e 74 20 61 20 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 44 4e 53 20 63 6f | implement.a.split-horizon.DNS.co |
| 2dde0 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 65 78 61 6d 70 6c 65 2e 63 6f 6d 2e 00 41 20 62 | nfiguration.for.example.com..A.b |
| 2de00 | 61 73 69 63 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 72 65 71 75 69 72 65 73 20 61 20 74 75 | asic.configuration.requires.a.tu |
| 2de20 | 6e 6e 65 6c 20 73 6f 75 72 63 65 20 28 73 6f 75 72 63 65 2d 61 64 64 72 65 73 73 29 2c 20 61 20 | nnel.source.(source-address),.a. |
| 2de40 | 74 75 6e 6e 65 6c 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 28 72 65 6d 6f 74 65 29 2c 20 61 6e 20 | tunnel.destination.(remote),.an. |
| 2de60 | 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 74 79 70 65 20 28 67 72 65 29 2c 20 61 6e 64 20 61 6e | encapsulation.type.(gre),.and.an |
| 2de80 | 20 61 64 64 72 65 73 73 20 28 69 70 76 34 2f 69 70 76 36 29 2e 20 42 65 6c 6f 77 20 69 73 20 61 | .address.(ipv4/ipv6)..Below.is.a |
| 2dea0 | 20 62 61 73 69 63 20 49 50 76 34 20 6f 6e 6c 79 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 | .basic.IPv4.only.configuration.e |
| 2dec0 | 78 61 6d 70 6c 65 20 74 61 6b 65 6e 20 66 72 6f 6d 20 61 20 56 79 4f 53 20 72 6f 75 74 65 72 20 | xample.taken.from.a.VyOS.router. |
| 2dee0 | 61 6e 64 20 61 20 43 69 73 63 6f 20 49 4f 53 20 72 6f 75 74 65 72 2e 20 54 68 65 20 6d 61 69 6e | and.a.Cisco.IOS.router..The.main |
| 2df00 | 20 64 69 66 66 65 72 65 6e 63 65 20 62 65 74 77 65 65 6e 20 74 68 65 73 65 20 74 77 6f 20 63 6f | .difference.between.these.two.co |
| 2df20 | 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 69 73 20 74 68 61 74 20 56 79 4f 53 20 72 65 71 75 69 72 | nfigurations.is.that.VyOS.requir |
| 2df40 | 65 73 20 79 6f 75 20 65 78 70 6c 69 63 69 74 6c 79 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 | es.you.explicitly.configure.the. |
| 2df60 | 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 74 79 70 65 2e 20 54 68 65 20 43 69 73 63 6f 20 72 6f | encapsulation.type..The.Cisco.ro |
| 2df80 | 75 74 65 72 20 64 65 66 61 75 6c 74 73 20 74 6f 20 47 52 45 20 49 50 20 6f 74 68 65 72 77 69 73 | uter.defaults.to.GRE.IP.otherwis |
| 2dfa0 | 65 20 69 74 20 77 6f 75 6c 64 20 68 61 76 65 20 74 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 | e.it.would.have.to.be.configured |
| 2dfc0 | 20 61 73 20 77 65 6c 6c 2e 00 41 20 62 61 73 69 63 20 69 6e 74 72 6f 64 75 63 74 69 6f 6e 20 74 | .as.well..A.basic.introduction.t |
| 2dfe0 | 6f 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 73 20 63 61 6e 20 62 65 20 66 6f | o.zone-based.firewalls.can.be.fo |
| 2e000 | 75 6e 64 20 60 68 65 72 65 20 3c 68 74 74 70 73 3a 2f 2f 73 75 70 70 6f 72 74 2e 76 79 6f 73 2e | und.`here.<https://support.vyos. |
| 2e020 | 69 6f 2f 65 6e 2f 6b 62 2f 61 72 74 69 63 6c 65 73 2f 61 2d 70 72 69 6d 65 72 2d 74 6f 2d 7a 6f | io/en/kb/articles/a-primer-to-zo |
| 2e040 | 6e 65 2d 62 61 73 65 64 2d 66 69 72 65 77 61 6c 6c 3e 60 5f 2c 20 61 6e 64 20 61 6e 20 65 78 61 | ne-based-firewall>`_,.and.an.exa |
| 2e060 | 6d 70 6c 65 20 61 74 20 3a 72 65 66 3a 60 65 78 61 6d 70 6c 65 73 2d 7a 6f 6e 65 2d 70 6f 6c 69 | mple.at.:ref:`examples-zone-poli |
| 2e080 | 63 79 60 2e 00 41 20 62 72 69 64 67 65 20 6e 61 6d 65 64 20 60 62 72 31 30 30 60 00 41 20 62 72 | cy`..A.bridge.named.`br100`.A.br |
| 2e0a0 | 69 65 66 20 64 65 73 63 72 69 70 74 69 6f 6e 20 77 68 61 74 20 74 68 69 73 20 6e 65 74 77 6f 72 | ief.description.what.this.networ |
| 2e0c0 | 6b 20 69 73 20 61 6c 6c 20 61 62 6f 75 74 2e 00 41 20 63 6c 61 73 73 20 63 61 6e 20 68 61 76 65 | k.is.all.about..A.class.can.have |
| 2e0e0 | 20 6d 75 6c 74 69 70 6c 65 20 6d 61 74 63 68 20 66 69 6c 74 65 72 73 3a 00 41 20 63 6f 6d 6d 6f | .multiple.match.filters:.A.commo |
| 2e100 | 6e 20 65 78 61 6d 70 6c 65 20 69 73 20 74 68 65 20 63 61 73 65 20 6f 66 20 73 6f 6d 65 20 70 6f | n.example.is.the.case.of.some.po |
| 2e120 | 6c 69 63 69 65 73 20 77 68 69 63 68 2c 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 62 65 20 65 66 66 | licies.which,.in.order.to.be.eff |
| 2e140 | 65 63 74 69 76 65 2c 20 74 68 65 79 20 6e 65 65 64 20 74 6f 20 62 65 20 61 70 70 6c 69 65 64 20 | ective,.they.need.to.be.applied. |
| 2e160 | 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 74 68 61 74 20 69 73 20 64 69 72 65 63 74 6c 79 | to.an.interface.that.is.directly |
| 2e180 | 20 63 6f 6e 6e 65 63 74 65 64 20 77 68 65 72 65 20 74 68 65 20 62 6f 74 74 6c 65 6e 65 63 6b 20 | .connected.where.the.bottleneck. |
| 2e1a0 | 69 73 2e 20 49 66 20 79 6f 75 72 20 72 6f 75 74 65 72 20 69 73 20 6e 6f 74 20 64 69 72 65 63 74 | is..If.your.router.is.not.direct |
| 2e1c0 | 6c 79 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 65 20 62 6f 74 74 6c 65 6e 65 63 6b 2c 20 | ly.connected.to.the.bottleneck,. |
| 2e1e0 | 62 75 74 20 73 6f 6d 65 20 68 6f 70 20 62 65 66 6f 72 65 20 69 74 2c 20 79 6f 75 20 63 61 6e 20 | but.some.hop.before.it,.you.can. |
| 2e200 | 65 6d 75 6c 61 74 65 20 74 68 65 20 62 6f 74 74 6c 65 6e 65 63 6b 20 62 79 20 65 6d 62 65 64 64 | emulate.the.bottleneck.by.embedd |
| 2e220 | 69 6e 67 20 79 6f 75 72 20 6e 6f 6e 2d 73 68 61 70 69 6e 67 20 70 6f 6c 69 63 79 20 69 6e 74 6f | ing.your.non-shaping.policy.into |
| 2e240 | 20 61 20 63 6c 61 73 73 66 75 6c 20 73 68 61 70 69 6e 67 20 6f 6e 65 20 73 6f 20 74 68 61 74 20 | .a.classful.shaping.one.so.that. |
| 2e260 | 69 74 20 74 61 6b 65 73 20 65 66 66 65 63 74 2e 00 41 20 63 6f 6d 70 6c 65 74 65 20 4c 44 41 50 | it.takes.effect..A.complete.LDAP |
| 2e280 | 20 61 75 74 68 20 4f 70 65 6e 56 50 4e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 75 6c | .auth.OpenVPN.configuration.coul |
| 2e2a0 | 64 20 6c 6f 6f 6b 20 6c 69 6b 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c | d.look.like.the.following.exampl |
| 2e2c0 | 65 3a 00 41 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 78 61 6d 70 6c 65 20 63 61 6e 20 62 | e:.A.configuration.example.can.b |
| 2e2e0 | 65 20 66 6f 75 6e 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 2e 20 49 6e 20 74 68 69 73 | e.found.in.this.section..In.this |
| 2e300 | 20 73 69 6d 70 6c 69 66 69 65 64 20 73 63 65 6e 61 72 69 6f 2c 20 6d 61 69 6e 20 74 68 69 6e 67 | .simplified.scenario,.main.thing |
| 2e320 | 73 20 74 6f 20 62 65 20 63 6f 6e 73 69 64 65 72 65 64 20 61 72 65 3a 00 41 20 63 6f 6e 6e 65 63 | s.to.be.considered.are:.A.connec |
| 2e340 | 74 69 6f 6e 20 61 74 74 65 6d 70 74 20 77 69 6c 6c 20 62 65 20 73 68 6f 77 6e 20 61 73 3a 00 41 | tion.attempt.will.be.shown.as:.A |
| 2e360 | 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 69 73 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 | .default.route.is.automatically. |
| 2e380 | 69 6e 73 74 61 6c 6c 65 64 20 6f 6e 63 65 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 | installed.once.the.interface.is. |
| 2e3a0 | 75 70 2e 20 54 6f 20 63 68 61 6e 67 65 20 74 68 69 73 20 62 65 68 61 76 69 6f 72 20 75 73 65 20 | up..To.change.this.behavior.use. |
| 2e3c0 | 74 68 65 20 60 60 6e 6f 2d 64 65 66 61 75 6c 74 2d 72 6f 75 74 65 60 60 20 43 4c 49 20 6f 70 74 | the.``no-default-route``.CLI.opt |
| 2e3e0 | 69 6f 6e 2e 00 41 20 64 65 73 63 72 69 70 74 69 6f 6e 20 63 61 6e 20 62 65 20 61 64 64 65 64 20 | ion..A.description.can.be.added. |
| 2e400 | 66 6f 72 20 65 61 63 68 20 61 6e 64 20 65 76 65 72 79 20 75 6e 69 71 75 65 20 72 65 6c 61 79 20 | for.each.and.every.unique.relay. |
| 2e420 | 49 44 2e 20 54 68 69 73 20 69 73 20 75 73 65 66 75 6c 20 74 6f 20 64 69 73 74 69 6e 67 75 69 73 | ID..This.is.useful.to.distinguis |
| 2e440 | 68 20 62 65 74 77 65 65 6e 20 6d 75 6c 74 69 70 6c 65 20 64 69 66 66 65 72 65 6e 74 20 70 6f 72 | h.between.multiple.different.por |
| 2e460 | 74 73 2f 61 70 70 6c 69 61 63 74 69 6f 6e 73 2e 00 41 20 64 65 73 63 72 69 70 74 69 6f 6e 20 63 | ts/appliactions..A.description.c |
| 2e480 | 61 6e 20 62 65 20 61 64 64 65 64 20 66 6f 72 20 65 61 63 68 20 61 6e 64 20 65 76 65 72 79 20 75 | an.be.added.for.each.and.every.u |
| 2e4a0 | 6e 69 71 75 65 20 72 65 6c 61 79 20 49 44 2e 20 54 68 69 73 20 69 73 20 75 73 65 66 75 6c 20 74 | nique.relay.ID..This.is.useful.t |
| 2e4c0 | 6f 20 64 69 73 74 69 6e 67 75 69 73 68 20 62 65 74 77 65 65 6e 20 6d 75 6c 74 69 70 6c 65 20 64 | o.distinguish.between.multiple.d |
| 2e4e0 | 69 66 66 65 72 65 6e 74 20 70 6f 72 74 73 2f 61 70 70 6c 69 63 61 74 69 6f 6e 73 2e 00 41 20 64 | ifferent.ports/applications..A.d |
| 2e500 | 69 73 61 62 6c 65 64 20 67 72 6f 75 70 20 77 69 6c 6c 20 62 65 20 72 65 6d 6f 76 65 64 20 66 72 | isabled.group.will.be.removed.fr |
| 2e520 | 6f 6d 20 74 68 65 20 56 52 52 50 20 70 72 6f 63 65 73 73 20 61 6e 64 20 79 6f 75 72 20 72 6f 75 | om.the.VRRP.process.and.your.rou |
| 2e540 | 74 65 72 20 77 69 6c 6c 20 6e 6f 74 20 70 61 72 74 69 63 69 70 61 74 65 20 69 6e 20 56 52 52 50 | ter.will.not.participate.in.VRRP |
| 2e560 | 20 66 6f 72 20 74 68 61 74 20 56 52 49 44 2e 20 49 74 20 77 69 6c 6c 20 64 69 73 61 70 70 65 61 | .for.that.VRID..It.will.disappea |
| 2e580 | 72 20 66 72 6f 6d 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 | r.from.operational.mode.commands |
| 2e5a0 | 20 6f 75 74 70 75 74 2c 20 72 61 74 68 65 72 20 74 68 61 6e 20 65 6e 74 65 72 20 74 68 65 20 62 | .output,.rather.than.enter.the.b |
| 2e5c0 | 61 63 6b 75 70 20 73 74 61 74 65 2e 00 41 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 69 73 20 74 68 | ackup.state..A.domain.name.is.th |
| 2e5e0 | 65 20 6c 61 62 65 6c 20 28 6e 61 6d 65 29 20 61 73 73 69 67 6e 65 64 20 74 6f 20 61 20 63 6f 6d | e.label.(name).assigned.to.a.com |
| 2e600 | 70 75 74 65 72 20 6e 65 74 77 6f 72 6b 20 61 6e 64 20 69 73 20 74 68 75 73 20 75 6e 69 71 75 65 | puter.network.and.is.thus.unique |
| 2e620 | 2e 20 56 79 4f 53 20 61 70 70 65 6e 64 73 20 74 68 65 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 61 | ..VyOS.appends.the.domain.name.a |
| 2e640 | 73 20 61 20 73 75 66 66 69 78 20 74 6f 20 61 6e 79 20 75 6e 71 75 61 6c 69 66 69 65 64 20 6e 61 | s.a.suffix.to.any.unqualified.na |
| 2e660 | 6d 65 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 69 66 20 79 6f 75 20 73 65 74 20 74 68 65 20 | me..For.example,.if.you.set.the. |
| 2e680 | 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 60 65 78 61 6d 70 6c 65 2e 63 6f 6d 60 2c 20 61 6e 64 20 79 | domain.name.`example.com`,.and.y |
| 2e6a0 | 6f 75 20 77 6f 75 6c 64 20 70 69 6e 67 20 74 68 65 20 75 6e 71 75 61 6c 69 66 69 65 64 20 6e 61 | ou.would.ping.the.unqualified.na |
| 2e6c0 | 6d 65 20 6f 66 20 60 63 72 75 78 60 2c 20 74 68 65 6e 20 56 79 4f 53 20 71 75 61 6c 69 66 69 65 | me.of.`crux`,.then.VyOS.qualifie |
| 2e6e0 | 73 20 74 68 65 20 6e 61 6d 65 20 74 6f 20 60 63 72 75 78 2e 65 78 61 6d 70 6c 65 2e 63 6f 6d 60 | s.the.name.to.`crux.example.com` |
| 2e700 | 2e 00 41 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 74 68 65 20 70 72 6f 76 | ..A.dummy.interface.for.the.prov |
| 2e720 | 69 64 65 72 2d 61 73 73 69 67 6e 65 64 20 49 50 3b 00 41 20 66 69 72 65 77 61 6c 6c 20 6d 61 72 | ider-assigned.IP;.A.firewall.mar |
| 2e740 | 6b 20 60 60 66 77 6d 61 72 6b 60 60 20 61 6c 6c 6f 77 73 20 75 73 69 6e 67 20 6d 75 6c 74 69 70 | k.``fwmark``.allows.using.multip |
| 2e760 | 6c 65 20 70 6f 72 74 73 20 66 6f 72 20 68 69 67 68 2d 61 76 61 69 6c 61 62 69 6c 69 74 79 20 76 | le.ports.for.high-availability.v |
| 2e780 | 69 72 74 75 61 6c 2d 73 65 72 76 65 72 2e 20 49 74 20 75 73 65 73 20 66 77 6d 61 72 6b 20 76 61 | irtual-server..It.uses.fwmark.va |
| 2e7a0 | 6c 75 65 2e 00 41 20 66 75 6c 6c 20 65 78 61 6d 70 6c 65 20 6f 66 20 61 20 54 75 6e 6e 65 6c 62 | lue..A.full.example.of.a.Tunnelb |
| 2e7c0 | 72 6f 6b 65 72 2e 6e 65 74 20 63 6f 6e 66 69 67 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 61 74 | roker.net.config.can.be.found.at |
| 2e7e0 | 20 3a 72 65 66 3a 60 68 65 72 65 20 3c 65 78 61 6d 70 6c 65 73 2d 74 75 6e 6e 65 6c 62 72 6f 6b | .:ref:`here.<examples-tunnelbrok |
| 2e800 | 65 72 2d 69 70 76 36 3e 60 2e 00 41 20 67 65 6e 65 72 69 63 20 60 3c 6e 61 6d 65 3e 60 20 72 65 | er-ipv6>`..A.generic.`<name>`.re |
| 2e820 | 66 65 72 65 6e 63 69 6e 67 20 74 68 69 73 20 73 79 6e 63 20 73 65 72 76 69 63 65 2e 00 41 20 68 | ferencing.this.sync.service..A.h |
| 2e840 | 6f 73 74 6e 61 6d 65 20 69 73 20 74 68 65 20 6c 61 62 65 6c 20 28 6e 61 6d 65 29 20 61 73 73 69 | ostname.is.the.label.(name).assi |
| 2e860 | 67 6e 65 64 20 74 6f 20 61 20 6e 65 74 77 6f 72 6b 20 64 65 76 69 63 65 20 28 61 20 68 6f 73 74 | gned.to.a.network.device.(a.host |
| 2e880 | 29 20 6f 6e 20 61 20 6e 65 74 77 6f 72 6b 20 61 6e 64 20 69 73 20 75 73 65 64 20 74 6f 20 64 69 | ).on.a.network.and.is.used.to.di |
| 2e8a0 | 73 74 69 6e 67 75 69 73 68 20 6f 6e 65 20 64 65 76 69 63 65 20 66 72 6f 6d 20 61 6e 6f 74 68 65 | stinguish.one.device.from.anothe |
| 2e8c0 | 72 20 6f 6e 20 73 70 65 63 69 66 69 63 20 6e 65 74 77 6f 72 6b 73 20 6f 72 20 6f 76 65 72 20 74 | r.on.specific.networks.or.over.t |
| 2e8e0 | 68 65 20 69 6e 74 65 72 6e 65 74 2e 20 4f 6e 20 74 68 65 20 6f 74 68 65 72 20 68 61 6e 64 20 74 | he.internet..On.the.other.hand.t |
| 2e900 | 68 69 73 20 77 69 6c 6c 20 62 65 20 74 68 65 20 6e 61 6d 65 20 77 68 69 63 68 20 61 70 70 65 61 | his.will.be.the.name.which.appea |
| 2e920 | 72 73 20 6f 6e 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 6c 69 6e 65 20 70 72 6f 6d 70 74 2e 00 41 | rs.on.the.command.line.prompt..A |
| 2e940 | 20 68 75 6d 61 6e 20 72 65 61 64 61 62 6c 65 20 64 65 73 63 72 69 70 74 69 6f 6e 20 77 68 61 74 | .human.readable.description.what |
| 2e960 | 20 74 68 69 73 20 43 41 20 69 73 20 61 62 6f 75 74 2e 00 41 20 68 75 6d 61 6e 20 72 65 61 64 61 | .this.CA.is.about..A.human.reada |
| 2e980 | 62 6c 65 20 64 65 73 63 72 69 70 74 69 6f 6e 20 77 68 61 74 20 74 68 69 73 20 63 65 72 74 69 66 | ble.description.what.this.certif |
| 2e9a0 | 69 63 61 74 65 20 69 73 20 61 62 6f 75 74 2e 00 41 20 6c 69 6e 6b 20 63 61 6e 20 62 65 20 73 65 | icate.is.about..A.link.can.be.se |
| 2e9c0 | 74 75 70 20 66 6f 72 20 75 70 6c 69 6e 6b 20 74 72 61 63 6b 69 6e 67 20 76 69 61 20 74 68 65 20 | tup.for.uplink.tracking.via.the. |
| 2e9e0 | 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 3a 00 41 20 6c 6f 6f 6b 62 61 63 6b 20 69 6e | following.example:.A.lookback.in |
| 2ea00 | 74 65 72 66 61 63 65 20 69 73 20 61 6c 77 61 79 73 20 75 70 2c 20 74 68 75 73 20 69 74 20 63 6f | terface.is.always.up,.thus.it.co |
| 2ea20 | 75 6c 64 20 62 65 20 75 73 65 64 20 66 6f 72 20 6d 61 6e 61 67 65 6d 65 6e 74 20 74 72 61 66 66 | uld.be.used.for.management.traff |
| 2ea40 | 69 63 20 6f 72 20 61 73 20 73 6f 75 72 63 65 2f 64 65 73 74 69 6e 61 74 69 6f 6e 20 66 6f 72 20 | ic.or.as.source/destination.for. |
| 2ea60 | 61 6e 64 20 3a 61 62 62 72 3a 60 49 47 50 20 28 49 6e 74 65 72 69 6f 72 20 47 61 74 65 77 61 79 | and.:abbr:`IGP.(Interior.Gateway |
| 2ea80 | 20 50 72 6f 74 6f 63 6f 6c 29 60 20 6c 69 6b 65 20 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 62 | .Protocol)`.like.:ref:`routing-b |
| 2eaa0 | 67 70 60 20 73 6f 20 79 6f 75 72 20 69 6e 74 65 72 6e 61 6c 20 42 47 50 20 6c 69 6e 6b 20 69 73 | gp`.so.your.internal.BGP.link.is |
| 2eac0 | 20 6e 6f 74 20 64 65 70 65 6e 64 65 6e 74 20 6f 6e 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 20 | .not.dependent.on.physical.link. |
| 2eae0 | 73 74 61 74 65 73 20 61 6e 64 20 6d 75 6c 74 69 70 6c 65 20 72 6f 75 74 65 73 20 63 61 6e 20 62 | states.and.multiple.routes.can.b |
| 2eb00 | 65 20 63 68 6f 73 65 6e 20 74 6f 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 2e 20 41 20 3a | e.chosen.to.the.destination..A.: |
| 2eb20 | 72 65 66 3a 60 64 75 6d 6d 79 2d 69 6e 74 65 72 66 61 63 65 60 20 49 6e 74 65 72 66 61 63 65 20 | ref:`dummy-interface`.Interface. |
| 2eb40 | 73 68 6f 75 6c 64 20 61 6c 77 61 79 73 20 62 65 20 70 72 65 66 65 72 72 65 64 20 6f 76 65 72 20 | should.always.be.preferred.over. |
| 2eb60 | 61 20 3a 72 65 66 3a 60 6c 6f 6f 70 62 61 63 6b 2d 69 6e 74 65 72 66 61 63 65 60 20 69 6e 74 65 | a.:ref:`loopback-interface`.inte |
| 2eb80 | 72 66 61 63 65 2e 00 41 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 | rface..A.loopback.interface.is.a |
| 2eba0 | 6c 77 61 79 73 20 75 70 2c 20 74 68 75 73 20 69 74 20 63 6f 75 6c 64 20 62 65 20 75 73 65 64 20 | lways.up,.thus.it.could.be.used. |
| 2ebc0 | 66 6f 72 20 6d 61 6e 61 67 65 6d 65 6e 74 20 74 72 61 66 66 69 63 20 6f 72 20 61 73 20 73 6f 75 | for.management.traffic.or.as.sou |
| 2ebe0 | 72 63 65 2f 64 65 73 74 69 6e 61 74 69 6f 6e 20 66 6f 72 20 61 6e 64 20 3a 61 62 62 72 3a 60 49 | rce/destination.for.and.:abbr:`I |
| 2ec00 | 47 50 20 28 49 6e 74 65 72 69 6f 72 20 47 61 74 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c 29 60 20 | GP.(Interior.Gateway.Protocol)`. |
| 2ec20 | 6c 69 6b 65 20 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 62 67 70 60 20 73 6f 20 79 6f 75 72 20 | like.:ref:`routing-bgp`.so.your. |
| 2ec40 | 69 6e 74 65 72 6e 61 6c 20 42 47 50 20 6c 69 6e 6b 20 69 73 20 6e 6f 74 20 64 65 70 65 6e 64 65 | internal.BGP.link.is.not.depende |
| 2ec60 | 6e 74 20 6f 6e 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 20 73 74 61 74 65 73 20 61 6e 64 20 6d | nt.on.physical.link.states.and.m |
| 2ec80 | 75 6c 74 69 70 6c 65 20 72 6f 75 74 65 73 20 63 61 6e 20 62 65 20 63 68 6f 73 65 6e 20 74 6f 20 | ultiple.routes.can.be.chosen.to. |
| 2eca0 | 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 2e 20 41 20 3a 72 65 66 3a 60 64 75 6d 6d 79 2d 69 | the.destination..A.:ref:`dummy-i |
| 2ecc0 | 6e 74 65 72 66 61 63 65 60 20 49 6e 74 65 72 66 61 63 65 20 73 68 6f 75 6c 64 20 61 6c 77 61 79 | nterface`.Interface.should.alway |
| 2ece0 | 73 20 62 65 20 70 72 65 66 65 72 72 65 64 20 6f 76 65 72 20 61 20 3a 72 65 66 3a 60 6c 6f 6f 70 | s.be.preferred.over.a.:ref:`loop |
| 2ed00 | 62 61 63 6b 2d 69 6e 74 65 72 66 61 63 65 60 20 69 6e 74 65 72 66 61 63 65 2e 00 41 20 6d 61 6e | back-interface`.interface..A.man |
| 2ed20 | 61 67 65 64 20 64 65 76 69 63 65 20 69 73 20 61 20 6e 65 74 77 6f 72 6b 20 6e 6f 64 65 20 74 68 | aged.device.is.a.network.node.th |
| 2ed40 | 61 74 20 69 6d 70 6c 65 6d 65 6e 74 73 20 61 6e 20 53 4e 4d 50 20 69 6e 74 65 72 66 61 63 65 20 | at.implements.an.SNMP.interface. |
| 2ed60 | 74 68 61 74 20 61 6c 6c 6f 77 73 20 75 6e 69 64 69 72 65 63 74 69 6f 6e 61 6c 20 28 72 65 61 64 | that.allows.unidirectional.(read |
| 2ed80 | 2d 6f 6e 6c 79 29 20 6f 72 20 62 69 64 69 72 65 63 74 69 6f 6e 61 6c 20 28 72 65 61 64 20 61 6e | -only).or.bidirectional.(read.an |
| 2eda0 | 64 20 77 72 69 74 65 29 20 61 63 63 65 73 73 20 74 6f 20 6e 6f 64 65 2d 73 70 65 63 69 66 69 63 | d.write).access.to.node-specific |
| 2edc0 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 20 4d 61 6e 61 67 65 64 20 64 65 76 69 63 65 73 20 65 78 | .information..Managed.devices.ex |
| 2ede0 | 63 68 61 6e 67 65 20 6e 6f 64 65 2d 73 70 65 63 69 66 69 63 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | change.node-specific.information |
| 2ee00 | 20 77 69 74 68 20 74 68 65 20 4e 4d 53 73 2e 20 53 6f 6d 65 74 69 6d 65 73 20 63 61 6c 6c 65 64 | .with.the.NMSs..Sometimes.called |
| 2ee20 | 20 6e 65 74 77 6f 72 6b 20 65 6c 65 6d 65 6e 74 73 2c 20 74 68 65 20 6d 61 6e 61 67 65 64 20 64 | .network.elements,.the.managed.d |
| 2ee40 | 65 76 69 63 65 73 20 63 61 6e 20 62 65 20 61 6e 79 20 74 79 70 65 20 6f 66 20 64 65 76 69 63 65 | evices.can.be.any.type.of.device |
| 2ee60 | 2c 20 69 6e 63 6c 75 64 69 6e 67 2c 20 62 75 74 20 6e 6f 74 20 6c 69 6d 69 74 65 64 20 74 6f 2c | ,.including,.but.not.limited.to, |
| 2ee80 | 20 72 6f 75 74 65 72 73 2c 20 61 63 63 65 73 73 20 73 65 72 76 65 72 73 2c 20 73 77 69 74 63 68 | .routers,.access.servers,.switch |
| 2eea0 | 65 73 2c 20 63 61 62 6c 65 20 6d 6f 64 65 6d 73 2c 20 62 72 69 64 67 65 73 2c 20 68 75 62 73 2c | es,.cable.modems,.bridges,.hubs, |
| 2eec0 | 20 49 50 20 74 65 6c 65 70 68 6f 6e 65 73 2c 20 49 50 20 76 69 64 65 6f 20 63 61 6d 65 72 61 73 | .IP.telephones,.IP.video.cameras |
| 2eee0 | 2c 20 63 6f 6d 70 75 74 65 72 20 68 6f 73 74 73 2c 20 61 6e 64 20 70 72 69 6e 74 65 72 73 2e 00 | ,.computer.hosts,.and.printers.. |
| 2ef00 | 41 20 6d 61 74 63 68 20 66 69 6c 74 65 72 20 63 61 6e 20 63 6f 6e 74 61 69 6e 20 6d 75 6c 74 69 | A.match.filter.can.contain.multi |
| 2ef20 | 70 6c 65 20 63 72 69 74 65 72 69 61 20 61 6e 64 20 77 69 6c 6c 20 6d 61 74 63 68 20 74 72 61 66 | ple.criteria.and.will.match.traf |
| 2ef40 | 66 69 63 20 69 66 20 61 6c 6c 20 74 68 6f 73 65 20 63 72 69 74 65 72 69 61 20 61 72 65 20 74 72 | fic.if.all.those.criteria.are.tr |
| 2ef60 | 75 65 2e 00 41 20 6d 61 74 63 68 20 67 72 6f 75 70 20 63 61 6e 20 63 6f 6e 74 61 69 6e 20 6d 75 | ue..A.match.group.can.contain.mu |
| 2ef80 | 6c 74 69 70 6c 65 20 63 72 69 74 65 72 69 61 20 61 6e 64 20 69 6e 68 65 72 69 74 20 74 68 65 6d | ltiple.criteria.and.inherit.them |
| 2efa0 | 20 69 6e 20 74 68 65 20 73 61 6d 65 20 70 6f 6c 69 63 79 2e 00 41 20 6d 6f 6e 69 74 6f 72 65 64 | .in.the.same.policy..A.monitored |
| 2efc0 | 20 73 74 61 74 69 63 20 72 6f 75 74 65 20 63 6f 6e 64 69 74 69 6f 6e 73 20 74 68 65 20 69 6e 73 | .static.route.conditions.the.ins |
| 2efe0 | 74 61 6c 6c 61 74 69 6f 6e 20 74 6f 20 74 68 65 20 52 49 42 20 6f 6e 20 74 68 65 20 42 46 44 20 | tallation.to.the.RIB.on.the.BFD. |
| 2f000 | 73 65 73 73 69 6f 6e 20 72 75 6e 6e 69 6e 67 20 73 74 61 74 65 3a 20 77 68 65 6e 20 42 46 44 20 | session.running.state:.when.BFD. |
| 2f020 | 73 65 73 73 69 6f 6e 20 69 73 20 75 70 20 74 68 65 20 72 6f 75 74 65 20 69 73 20 69 6e 73 74 61 | session.is.up.the.route.is.insta |
| 2f040 | 6c 6c 65 64 20 74 6f 20 52 49 42 2c 20 62 75 74 20 77 68 65 6e 20 74 68 65 20 42 46 44 20 73 65 | lled.to.RIB,.but.when.the.BFD.se |
| 2f060 | 73 73 69 6f 6e 20 69 73 20 64 6f 77 6e 20 69 74 20 69 73 20 72 65 6d 6f 76 65 64 20 66 72 6f 6d | ssion.is.down.it.is.removed.from |
| 2f080 | 20 74 68 65 20 52 49 42 2e 00 41 20 6e 65 74 77 6f 72 6b 20 6d 61 6e 61 67 65 6d 65 6e 74 20 73 | .the.RIB..A.network.management.s |
| 2f0a0 | 74 61 74 69 6f 6e 20 65 78 65 63 75 74 65 73 20 61 70 70 6c 69 63 61 74 69 6f 6e 73 20 74 68 61 | tation.executes.applications.tha |
| 2f0c0 | 74 20 6d 6f 6e 69 74 6f 72 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 20 6d 61 6e 61 67 65 64 20 64 65 | t.monitor.and.control.managed.de |
| 2f0e0 | 76 69 63 65 73 2e 20 4e 4d 53 73 20 70 72 6f 76 69 64 65 20 74 68 65 20 62 75 6c 6b 20 6f 66 20 | vices..NMSs.provide.the.bulk.of. |
| 2f100 | 74 68 65 20 70 72 6f 63 65 73 73 69 6e 67 20 61 6e 64 20 6d 65 6d 6f 72 79 20 72 65 73 6f 75 72 | the.processing.and.memory.resour |
| 2f120 | 63 65 73 20 72 65 71 75 69 72 65 64 20 66 6f 72 20 6e 65 74 77 6f 72 6b 20 6d 61 6e 61 67 65 6d | ces.required.for.network.managem |
| 2f140 | 65 6e 74 2e 20 4f 6e 65 20 6f 72 20 6d 6f 72 65 20 4e 4d 53 73 20 6d 61 79 20 65 78 69 73 74 20 | ent..One.or.more.NMSs.may.exist. |
| 2f160 | 6f 6e 20 61 6e 79 20 6d 61 6e 61 67 65 64 20 6e 65 74 77 6f 72 6b 2e 00 41 20 6e 65 77 20 69 6e | on.any.managed.network..A.new.in |
| 2f180 | 74 65 72 66 61 63 65 20 62 65 63 6f 6d 65 73 20 70 72 65 73 65 6e 74 20 60 60 50 6f 72 74 2d 63 | terface.becomes.present.``Port-c |
| 2f1a0 | 68 61 6e 6e 65 6c 31 60 60 2c 20 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6c 69 6b | hannel1``,.all.configuration.lik |
| 2f1c0 | 65 20 61 6c 6c 6f 77 65 64 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 73 2c 20 53 54 50 20 77 | e.allowed.VLAN.interfaces,.STP.w |
| 2f1e0 | 69 6c 6c 20 68 61 70 70 65 6e 20 68 65 72 65 2e 00 41 20 70 61 63 6b 65 74 20 72 61 74 65 20 6c | ill.happen.here..A.packet.rate.l |
| 2f200 | 69 6d 69 74 20 63 61 6e 20 62 65 20 73 65 74 20 66 6f 72 20 61 20 72 75 6c 65 20 74 6f 20 61 70 | imit.can.be.set.for.a.rule.to.ap |
| 2f220 | 70 6c 79 20 74 68 65 20 72 75 6c 65 20 74 6f 20 74 72 61 66 66 69 63 20 61 62 6f 76 65 20 6f 72 | ply.the.rule.to.traffic.above.or |
| 2f240 | 20 62 65 6c 6f 77 20 61 20 73 70 65 63 69 66 69 65 64 20 74 68 72 65 73 68 6f 6c 64 2e 20 54 6f | .below.a.specified.threshold..To |
| 2f260 | 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 72 61 74 65 20 6c 69 6d 69 74 69 6e 67 20 75 73 65 | .configure.the.rate.limiting.use |
| 2f280 | 3a 00 41 20 70 61 63 6b 65 74 20 74 68 61 74 20 66 69 6e 64 73 20 61 20 6d 61 74 63 68 69 6e 67 | :.A.packet.that.finds.a.matching |
| 2f2a0 | 20 65 6e 74 72 79 20 69 6e 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 28 66 6c 6f 77 74 61 62 | .entry.in.the.flowtable.(flowtab |
| 2f2c0 | 6c 65 20 68 69 74 29 20 69 73 20 74 72 61 6e 73 6d 69 74 74 65 64 20 74 6f 20 74 68 65 20 6f 75 | le.hit).is.transmitted.to.the.ou |
| 2f2e0 | 74 70 75 74 20 6e 65 74 64 65 76 69 63 65 2c 20 68 65 6e 63 65 2c 20 70 61 63 6b 65 74 73 20 62 | tput.netdevice,.hence,.packets.b |
| 2f300 | 79 70 61 73 73 20 74 68 65 20 63 6c 61 73 73 69 63 20 49 50 20 66 6f 72 77 61 72 64 69 6e 67 20 | ypass.the.classic.IP.forwarding. |
| 2f320 | 70 61 74 68 20 61 6e 64 20 75 73 65 73 20 74 68 65 20 2a 2a 46 61 73 74 20 50 61 74 68 2a 2a 20 | path.and.uses.the.**Fast.Path**. |
| 2f340 | 28 6f 72 61 6e 67 65 20 63 69 72 63 6c 65 73 20 70 61 74 68 29 2e 20 54 68 65 20 76 69 73 69 62 | (orange.circles.path)..The.visib |
| 2f360 | 6c 65 20 65 66 66 65 63 74 20 69 73 20 74 68 61 74 20 79 6f 75 20 64 6f 20 6e 6f 74 20 73 65 65 | le.effect.is.that.you.do.not.see |
| 2f380 | 20 74 68 65 73 65 20 70 61 63 6b 65 74 73 20 66 72 6f 6d 20 61 6e 79 20 6f 66 20 74 68 65 20 4e | .these.packets.from.any.of.the.N |
| 2f3a0 | 65 74 66 69 6c 74 65 72 20 68 6f 6f 6b 73 20 63 6f 6d 69 6e 67 20 61 66 74 65 72 20 69 6e 67 72 | etfilter.hooks.coming.after.ingr |
| 2f3c0 | 65 73 73 2e 20 49 6e 20 63 61 73 65 20 74 68 61 74 20 74 68 65 72 65 20 69 73 20 6e 6f 20 6d 61 | ess..In.case.that.there.is.no.ma |
| 2f3e0 | 74 63 68 69 6e 67 20 65 6e 74 72 79 20 69 6e 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 28 66 | tching.entry.in.the.flowtable.(f |
| 2f400 | 6c 6f 77 74 61 62 6c 65 20 6d 69 73 73 29 2c 20 74 68 65 20 70 61 63 6b 65 74 20 66 6f 6c 6c 6f | lowtable.miss),.the.packet.follo |
| 2f420 | 77 73 20 74 68 65 20 63 6c 61 73 73 69 63 20 49 50 20 66 6f 72 77 61 72 64 69 6e 67 20 70 61 74 | ws.the.classic.IP.forwarding.pat |
| 2f440 | 68 2e 00 41 20 70 65 6e 61 6c 74 79 20 6f 66 20 31 30 30 30 20 69 73 20 61 73 73 65 73 73 65 64 | h..A.penalty.of.1000.is.assessed |
| 2f460 | 20 65 61 63 68 20 74 69 6d 65 20 74 68 65 20 72 6f 75 74 65 20 66 61 69 6c 73 2e 20 57 68 65 6e | .each.time.the.route.fails..When |
| 2f480 | 20 74 68 65 20 70 65 6e 61 6c 74 69 65 73 20 72 65 61 63 68 20 61 20 70 72 65 64 65 66 69 6e 65 | .the.penalties.reach.a.predefine |
| 2f4a0 | 64 20 74 68 72 65 73 68 6f 6c 64 20 28 73 75 70 70 72 65 73 73 2d 76 61 6c 75 65 29 2c 20 74 68 | d.threshold.(suppress-value),.th |
| 2f4c0 | 65 20 72 6f 75 74 65 72 20 73 74 6f 70 73 20 61 64 76 65 72 74 69 73 69 6e 67 20 74 68 65 20 72 | e.router.stops.advertising.the.r |
| 2f4e0 | 6f 75 74 65 2e 00 41 20 70 68 79 73 69 63 61 6c 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 72 65 | oute..A.physical.interface.is.re |
| 2f500 | 71 75 69 72 65 64 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 68 69 73 20 4d 41 43 73 65 63 20 69 6e | quired.to.connect.this.MACsec.in |
| 2f520 | 73 74 61 6e 63 65 20 74 6f 2e 20 54 72 61 66 66 69 63 20 6c 65 61 76 69 6e 67 20 74 68 69 73 20 | stance.to..Traffic.leaving.this. |
| 2f540 | 69 6e 74 65 72 66 61 63 65 20 77 69 6c 6c 20 6e 6f 77 20 62 65 20 61 75 74 68 65 6e 74 69 63 61 | interface.will.now.be.authentica |
| 2f560 | 74 65 64 2f 65 6e 63 72 79 70 74 65 64 2e 00 41 20 70 6f 6f 6c 20 6f 66 20 61 64 64 72 65 73 73 | ted/encrypted..A.pool.of.address |
| 2f580 | 65 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 62 79 20 75 73 69 6e 67 20 61 20 68 79 70 | es.can.be.defined.by.using.a.hyp |
| 2f5a0 | 68 65 6e 20 62 65 74 77 65 65 6e 20 74 77 6f 20 49 50 20 61 64 64 72 65 73 73 65 73 3a 00 41 20 | hen.between.two.IP.addresses:.A. |
| 2f5c0 | 70 6f 72 74 20 63 61 6e 20 62 65 20 73 65 74 20 62 79 20 6e 75 6d 62 65 72 20 6f 72 20 6e 61 6d | port.can.be.set.by.number.or.nam |
| 2f5e0 | 65 20 61 73 20 64 65 66 69 6e 65 64 20 69 6e 20 60 60 2f 65 74 63 2f 73 65 72 76 69 63 65 73 60 | e.as.defined.in.``/etc/services` |
| 2f600 | 60 2e 00 41 20 70 6f 72 74 20 63 61 6e 20 62 65 20 73 65 74 20 77 69 74 68 20 61 20 70 6f 72 74 | `..A.port.can.be.set.with.a.port |
| 2f620 | 20 6e 75 6d 62 65 72 20 6f 72 20 61 20 6e 61 6d 65 20 77 68 69 63 68 20 69 73 20 68 65 72 65 20 | .number.or.a.name.which.is.here. |
| 2f640 | 64 65 66 69 6e 65 64 3a 20 60 60 2f 65 74 63 2f 73 65 72 76 69 63 65 73 60 60 2e 00 41 20 71 75 | defined:.``/etc/services``..A.qu |
| 2f660 | 65 72 79 20 66 6f 72 20 77 68 69 63 68 20 74 68 65 72 65 20 69 73 20 61 75 74 68 6f 72 69 74 61 | ery.for.which.there.is.authorita |
| 2f680 | 74 69 76 65 6c 79 20 6e 6f 20 61 6e 73 77 65 72 20 69 73 20 63 61 63 68 65 64 20 74 6f 20 71 75 | tively.no.answer.is.cached.to.qu |
| 2f6a0 | 69 63 6b 6c 79 20 64 65 6e 79 20 61 20 72 65 63 6f 72 64 27 73 20 65 78 69 73 74 65 6e 63 65 20 | ickly.deny.a.record's.existence. |
| 2f6c0 | 6c 61 74 65 72 20 6f 6e 2c 20 77 69 74 68 6f 75 74 20 70 75 74 74 69 6e 67 20 61 20 68 65 61 76 | later.on,.without.putting.a.heav |
| 2f6e0 | 79 20 6c 6f 61 64 20 6f 6e 20 74 68 65 20 72 65 6d 6f 74 65 20 73 65 72 76 65 72 2e 20 49 6e 20 | y.load.on.the.remote.server..In. |
| 2f700 | 70 72 61 63 74 69 63 65 2c 20 63 61 63 68 65 73 20 63 61 6e 20 62 65 63 6f 6d 65 20 73 61 74 75 | practice,.caches.can.become.satu |
| 2f720 | 72 61 74 65 64 20 77 69 74 68 20 68 75 6e 64 72 65 64 73 20 6f 66 20 74 68 6f 75 73 61 6e 64 73 | rated.with.hundreds.of.thousands |
| 2f740 | 20 6f 66 20 68 6f 73 74 73 20 77 68 69 63 68 20 61 72 65 20 74 72 69 65 64 20 6f 6e 6c 79 20 6f | .of.hosts.which.are.tried.only.o |
| 2f760 | 6e 63 65 2e 00 41 20 72 65 63 65 69 76 65 64 20 4e 48 52 50 20 54 72 61 66 66 69 63 20 49 6e 64 | nce..A.received.NHRP.Traffic.Ind |
| 2f780 | 69 63 61 74 69 6f 6e 20 77 69 6c 6c 20 74 72 69 67 67 65 72 20 74 68 65 20 72 65 73 6f 6c 75 74 | ication.will.trigger.the.resolut |
| 2f7a0 | 69 6f 6e 20 61 6e 64 20 65 73 74 61 62 6c 69 73 68 6d 65 6e 74 20 6f 66 20 61 20 73 68 6f 72 74 | ion.and.establishment.of.a.short |
| 2f7c0 | 63 75 74 20 72 6f 75 74 65 2e 00 41 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 49 44 20 63 61 | cut.route..A.routing.table.ID.ca |
| 2f7e0 | 6e 20 6e 6f 74 20 62 65 20 6d 6f 64 69 66 69 65 64 20 6f 6e 63 65 20 69 74 20 69 73 20 61 73 73 | n.not.be.modified.once.it.is.ass |
| 2f800 | 69 67 6e 65 64 2e 20 49 74 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 63 68 61 6e 67 65 64 20 62 79 | igned..It.can.only.be.changed.by |
| 2f820 | 20 64 65 6c 65 74 69 6e 67 20 61 6e 64 20 72 65 2d 61 64 64 69 6e 67 20 74 68 65 20 56 52 46 20 | .deleting.and.re-adding.the.VRF. |
| 2f840 | 69 6e 73 74 61 6e 63 65 2e 00 41 20 72 75 6c 65 2d 73 65 74 20 69 73 20 61 20 6e 61 6d 65 64 20 | instance..A.rule-set.is.a.named. |
| 2f860 | 63 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 74 68 61 | collection.of.firewall.rules.tha |
| 2f880 | 74 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 | t.can.be.applied.to.an.interface |
| 2f8a0 | 20 6f 72 20 61 20 7a 6f 6e 65 2e 20 45 61 63 68 20 72 75 6c 65 20 69 73 20 6e 75 6d 62 65 72 65 | .or.a.zone..Each.rule.is.numbere |
| 2f8c0 | 64 2c 20 68 61 73 20 61 6e 20 61 63 74 69 6f 6e 20 74 6f 20 61 70 70 6c 79 20 69 66 20 74 68 65 | d,.has.an.action.to.apply.if.the |
| 2f8e0 | 20 72 75 6c 65 20 69 73 20 6d 61 74 63 68 65 64 2c 20 61 6e 64 20 74 68 65 20 61 62 69 6c 69 74 | .rule.is.matched,.and.the.abilit |
| 2f900 | 79 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 | y.to.specify.the.criteria.to.mat |
| 2f920 | 63 68 2e 20 44 61 74 61 20 70 61 63 6b 65 74 73 20 67 6f 20 74 68 72 6f 75 67 68 20 74 68 65 20 | ch..Data.packets.go.through.the. |
| 2f940 | 72 75 6c 65 73 20 66 72 6f 6d 20 31 20 2d 20 39 39 39 39 39 39 2c 20 61 74 20 74 68 65 20 66 69 | rules.from.1.-.999999,.at.the.fi |
| 2f960 | 72 73 74 20 6d 61 74 63 68 20 74 68 65 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 72 75 6c 65 | rst.match.the.action.of.the.rule |
| 2f980 | 20 77 69 6c 6c 20 62 65 20 65 78 65 63 75 74 65 64 2e 00 41 20 72 75 6c 65 2d 73 65 74 20 69 73 | .will.be.executed..A.rule-set.is |
| 2f9a0 | 20 61 20 6e 61 6d 65 64 20 63 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 72 75 6c 65 73 20 74 68 61 | .a.named.collection.of.rules.tha |
| 2f9c0 | 74 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 | t.can.be.applied.to.an.interface |
| 2f9e0 | 2e 20 45 61 63 68 20 72 75 6c 65 20 69 73 20 6e 75 6d 62 65 72 65 64 2c 20 68 61 73 20 61 6e 20 | ..Each.rule.is.numbered,.has.an. |
| 2fa00 | 61 63 74 69 6f 6e 20 74 6f 20 61 70 70 6c 79 20 69 66 20 74 68 65 20 72 75 6c 65 20 69 73 20 6d | action.to.apply.if.the.rule.is.m |
| 2fa20 | 61 74 63 68 65 64 2c 20 61 6e 64 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 6f 20 73 70 65 63 69 | atched,.and.the.ability.to.speci |
| 2fa40 | 66 79 20 74 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 2e 20 44 61 74 61 20 70 | fy.the.criteria.to.match..Data.p |
| 2fa60 | 61 63 6b 65 74 73 20 67 6f 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 75 6c 65 73 20 66 72 6f 6d | ackets.go.through.the.rules.from |
| 2fa80 | 20 31 20 2d 20 39 39 39 39 39 39 2c 20 61 74 20 74 68 65 20 66 69 72 73 74 20 6d 61 74 63 68 20 | .1.-.999999,.at.the.first.match. |
| 2faa0 | 74 68 65 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 72 75 6c 65 20 77 69 6c 6c 20 62 65 20 65 | the.action.of.the.rule.will.be.e |
| 2fac0 | 78 65 63 75 74 65 64 2e 00 41 20 73 63 72 69 70 74 20 63 61 6e 20 62 65 20 72 75 6e 20 77 68 65 | xecuted..A.script.can.be.run.whe |
| 2fae0 | 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 73 74 61 74 65 20 63 68 61 6e 67 65 20 6f 63 63 75 | n.an.interface.state.change.occu |
| 2fb00 | 72 73 2e 20 53 63 72 69 70 74 73 20 61 72 65 20 72 75 6e 20 66 72 6f 6d 20 2f 63 6f 6e 66 69 67 | rs..Scripts.are.run.from./config |
| 2fb20 | 2f 73 63 72 69 70 74 73 2c 20 66 6f 72 20 61 20 64 69 66 66 65 72 65 6e 74 20 6c 6f 63 61 74 69 | /scripts,.for.a.different.locati |
| 2fb40 | 6f 6e 20 73 70 65 63 69 66 79 20 74 68 65 20 66 75 6c 6c 20 70 61 74 68 3a 00 41 20 73 65 67 6d | on.specify.the.full.path:.A.segm |
| 2fb60 | 65 6e 74 20 49 44 20 74 68 61 74 20 63 6f 6e 74 61 69 6e 73 20 61 6e 20 49 50 20 61 64 64 72 65 | ent.ID.that.contains.an.IP.addre |
| 2fb80 | 73 73 20 70 72 65 66 69 78 20 63 61 6c 63 75 6c 61 74 65 64 20 62 79 20 61 6e 20 49 47 50 20 69 | ss.prefix.calculated.by.an.IGP.i |
| 2fba0 | 6e 20 74 68 65 20 73 65 72 76 69 63 65 20 70 72 6f 76 69 64 65 72 20 63 6f 72 65 20 6e 65 74 77 | n.the.service.provider.core.netw |
| 2fbc0 | 6f 72 6b 2e 20 50 72 65 66 69 78 20 53 49 44 73 20 61 72 65 20 67 6c 6f 62 61 6c 6c 79 20 75 6e | ork..Prefix.SIDs.are.globally.un |
| 2fbe0 | 69 71 75 65 2c 20 74 68 69 73 20 76 61 6c 75 65 20 69 6e 64 65 6e 74 69 66 79 20 69 74 00 41 20 | ique,.this.value.indentify.it.A. |
| 2fc00 | 73 65 6e 64 69 6e 67 20 73 74 61 74 69 6f 6e 20 28 63 6f 6d 70 75 74 65 72 20 6f 72 20 6e 65 74 | sending.station.(computer.or.net |
| 2fc20 | 77 6f 72 6b 20 73 77 69 74 63 68 29 20 6d 61 79 20 62 65 20 74 72 61 6e 73 6d 69 74 74 69 6e 67 | work.switch).may.be.transmitting |
| 2fc40 | 20 64 61 74 61 20 66 61 73 74 65 72 20 74 68 61 6e 20 74 68 65 20 6f 74 68 65 72 20 65 6e 64 20 | .data.faster.than.the.other.end. |
| 2fc60 | 6f 66 20 74 68 65 20 6c 69 6e 6b 20 63 61 6e 20 61 63 63 65 70 74 20 69 74 2e 20 55 73 69 6e 67 | of.the.link.can.accept.it..Using |
| 2fc80 | 20 66 6c 6f 77 20 63 6f 6e 74 72 6f 6c 2c 20 74 68 65 20 72 65 63 65 69 76 69 6e 67 20 73 74 61 | .flow.control,.the.receiving.sta |
| 2fca0 | 74 69 6f 6e 20 63 61 6e 20 73 69 67 6e 61 6c 20 74 68 65 20 73 65 6e 64 65 72 20 72 65 71 75 65 | tion.can.signal.the.sender.reque |
| 2fcc0 | 73 74 69 6e 67 20 73 75 73 70 65 6e 73 69 6f 6e 20 6f 66 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e | sting.suspension.of.transmission |
| 2fce0 | 73 20 75 6e 74 69 6c 20 74 68 65 20 72 65 63 65 69 76 65 72 20 63 61 74 63 68 65 73 20 75 70 2e | s.until.the.receiver.catches.up. |
| 2fd00 | 00 41 20 73 68 61 72 65 64 20 6e 65 74 77 6f 72 6b 20 6e 61 6d 65 64 20 60 60 4e 45 54 31 60 60 | .A.shared.network.named.``NET1`` |
| 2fd20 | 20 73 65 72 76 65 73 20 73 75 62 6e 65 74 20 60 60 32 30 30 31 3a 64 62 38 3a 3a 2f 36 34 60 60 | .serves.subnet.``2001:db8::/64`` |
| 2fd40 | 00 41 20 73 68 61 72 65 64 20 6e 65 74 77 6f 72 6b 20 6e 61 6d 65 64 20 60 60 50 44 2d 4e 45 54 | .A.shared.network.named.``PD-NET |
| 2fd60 | 60 60 20 73 65 72 76 65 73 20 73 75 62 6e 65 74 20 60 60 32 30 30 31 3a 64 62 38 3a 3a 2f 36 34 | ``.serves.subnet.``2001:db8::/64 |
| 2fd80 | 60 60 2e 00 41 20 73 69 6d 70 6c 65 20 42 47 50 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 76 | ``..A.simple.BGP.configuration.v |
| 2fda0 | 69 61 20 49 50 76 36 2e 00 41 20 73 69 6d 70 6c 65 20 52 61 6e 64 6f 6d 20 45 61 72 6c 79 20 44 | ia.IPv6..A.simple.Random.Early.D |
| 2fdc0 | 65 74 65 63 74 69 6f 6e 20 28 52 45 44 29 20 70 6f 6c 69 63 79 20 77 6f 75 6c 64 20 73 74 61 72 | etection.(RED).policy.would.star |
| 2fde0 | 74 20 72 61 6e 64 6f 6d 6c 79 20 64 72 6f 70 70 69 6e 67 20 70 61 63 6b 65 74 73 20 66 72 6f 6d | t.randomly.dropping.packets.from |
| 2fe00 | 20 61 20 71 75 65 75 65 20 62 65 66 6f 72 65 20 69 74 20 72 65 61 63 68 65 73 20 69 74 73 20 71 | .a.queue.before.it.reaches.its.q |
| 2fe20 | 75 65 75 65 20 6c 69 6d 69 74 20 74 68 75 73 20 61 76 6f 69 64 69 6e 67 20 63 6f 6e 67 65 73 74 | ueue.limit.thus.avoiding.congest |
| 2fe40 | 69 6f 6e 2e 20 54 68 61 74 20 69 73 20 67 6f 6f 64 20 66 6f 72 20 54 43 50 20 63 6f 6e 6e 65 63 | ion..That.is.good.for.TCP.connec |
| 2fe60 | 74 69 6f 6e 73 20 61 73 20 74 68 65 20 67 72 61 64 75 61 6c 20 64 72 6f 70 70 69 6e 67 20 6f 66 | tions.as.the.gradual.dropping.of |
| 2fe80 | 20 70 61 63 6b 65 74 73 20 61 63 74 73 20 61 73 20 61 20 73 69 67 6e 61 6c 20 66 6f 72 20 74 68 | .packets.acts.as.a.signal.for.th |
| 2fea0 | 65 20 73 65 6e 64 65 72 20 74 6f 20 64 65 63 72 65 61 73 65 20 69 74 73 20 74 72 61 6e 73 6d 69 | e.sender.to.decrease.its.transmi |
| 2fec0 | 73 73 69 6f 6e 20 72 61 74 65 2e 00 41 20 73 69 6d 70 6c 65 20 65 42 47 50 20 63 6f 6e 66 69 67 | ssion.rate..A.simple.eBGP.config |
| 2fee0 | 75 72 61 74 69 6f 6e 3a 00 41 20 73 69 6d 70 6c 65 20 65 78 61 6d 70 6c 65 20 6f 66 20 53 68 61 | uration:.A.simple.example.of.Sha |
| 2ff00 | 70 65 72 20 75 73 69 6e 67 20 70 72 69 6f 72 69 74 69 65 73 2e 00 41 20 73 69 6d 70 6c 65 20 65 | per.using.priorities..A.simple.e |
| 2ff20 | 78 61 6d 70 6c 65 20 6f 66 20 61 6e 20 46 51 2d 43 6f 44 65 6c 20 70 6f 6c 69 63 79 20 77 6f 72 | xample.of.an.FQ-CoDel.policy.wor |
| 2ff40 | 6b 69 6e 67 20 69 6e 73 69 64 65 20 61 20 53 68 61 70 65 72 20 6f 6e 65 2e 00 41 20 73 69 6d 70 | king.inside.a.Shaper.one..A.simp |
| 2ff60 | 6c 69 66 69 65 64 20 74 72 61 66 66 69 63 20 66 6c 6f 77 20 64 69 61 67 72 61 6d 2c 20 62 61 73 | lified.traffic.flow.diagram,.bas |
| 2ff80 | 65 64 20 6f 6e 20 4e 65 74 66 69 6c 74 65 72 20 70 61 63 6b 65 74 20 66 6c 6f 77 2c 20 69 73 20 | ed.on.Netfilter.packet.flow,.is. |
| 2ffa0 | 73 68 6f 77 6e 20 6e 65 78 74 2c 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 68 61 76 65 20 61 20 66 | shown.next,.in.order.to.have.a.f |
| 2ffc0 | 75 6c 6c 20 76 69 65 77 20 61 6e 64 20 75 6e 64 65 72 73 74 61 6e 64 69 6e 67 20 6f 66 20 68 6f | ull.view.and.understanding.of.ho |
| 2ffe0 | 77 20 70 61 63 6b 65 74 73 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 2c 20 61 6e 64 20 77 68 61 | w.packets.are.processed,.and.wha |
| 30000 | 74 20 70 6f 73 73 69 62 6c 65 20 70 61 74 68 73 20 74 72 61 66 66 69 63 20 63 61 6e 20 74 61 6b | t.possible.paths.traffic.can.tak |
| 30020 | 65 2e 00 41 20 73 69 6d 70 6c 69 66 69 65 64 20 74 72 61 66 66 69 63 20 66 6c 6f 77 2c 20 62 61 | e..A.simplified.traffic.flow,.ba |
| 30040 | 73 65 64 20 6f 6e 20 4e 65 74 66 69 6c 74 65 72 20 70 61 63 6b 65 74 20 66 6c 6f 77 2c 20 69 73 | sed.on.Netfilter.packet.flow,.is |
| 30060 | 20 73 68 6f 77 6e 20 6e 65 78 74 2c 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 68 61 76 65 20 61 20 | .shown.next,.in.order.to.have.a. |
| 30080 | 66 75 6c 6c 20 76 69 65 77 20 61 6e 64 20 75 6e 64 65 72 73 74 61 6e 64 69 6e 67 20 6f 66 20 68 | full.view.and.understanding.of.h |
| 300a0 | 6f 77 20 70 61 63 6b 65 74 73 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 2c 20 61 6e 64 20 77 68 | ow.packets.are.processed,.and.wh |
| 300c0 | 61 74 20 70 6f 73 73 69 62 6c 65 20 70 61 74 68 73 20 63 61 6e 20 74 61 6b 65 2e 00 41 20 73 69 | at.possible.paths.can.take..A.si |
| 300e0 | 6e 67 6c 65 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 61 6e 64 20 65 78 74 65 72 6e | ngle.internal.network.and.extern |
| 30100 | 61 6c 20 6e 65 74 77 6f 72 6b 2e 20 55 73 65 20 74 68 65 20 4e 41 54 36 36 20 64 65 76 69 63 65 | al.network..Use.the.NAT66.device |
| 30120 | 20 74 6f 20 63 6f 6e 6e 65 63 74 20 61 20 73 69 6e 67 6c 65 20 69 6e 74 65 72 6e 61 6c 20 6e 65 | .to.connect.a.single.internal.ne |
| 30140 | 74 77 6f 72 6b 20 61 6e 64 20 70 75 62 6c 69 63 20 6e 65 74 77 6f 72 6b 2c 20 61 6e 64 20 74 68 | twork.and.public.network,.and.th |
| 30160 | 65 20 68 6f 73 74 73 20 69 6e 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 | e.hosts.in.the.internal.network. |
| 30180 | 75 73 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 72 65 66 69 78 65 73 20 74 68 61 74 20 6f | use.IPv6.address.prefixes.that.o |
| 301a0 | 6e 6c 79 20 73 75 70 70 6f 72 74 20 72 6f 75 74 69 6e 67 20 77 69 74 68 69 6e 20 74 68 65 20 6c | nly.support.routing.within.the.l |
| 301c0 | 6f 63 61 6c 20 72 61 6e 67 65 2e 20 57 68 65 6e 20 61 20 68 6f 73 74 20 69 6e 20 74 68 65 20 69 | ocal.range..When.a.host.in.the.i |
| 301e0 | 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 61 63 63 65 73 73 65 73 20 74 68 65 20 65 78 74 | nternal.network.accesses.the.ext |
| 30200 | 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 2c 20 74 68 65 20 73 6f 75 72 63 65 20 49 50 76 36 20 61 | ernal.network,.the.source.IPv6.a |
| 30220 | 64 64 72 65 73 73 20 70 72 65 66 69 78 20 69 6e 20 74 68 65 20 6d 65 73 73 61 67 65 20 77 69 6c | ddress.prefix.in.the.message.wil |
| 30240 | 6c 20 62 65 20 63 6f 6e 76 65 72 74 65 64 20 69 6e 74 6f 20 61 20 67 6c 6f 62 61 6c 20 75 6e 69 | l.be.converted.into.a.global.uni |
| 30260 | 63 61 73 74 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 72 65 66 69 78 20 62 79 20 74 68 65 20 | cast.IPv6.address.prefix.by.the. |
| 30280 | 4e 41 54 36 36 20 64 65 76 69 63 65 2e 00 41 20 73 74 61 74 69 6f 6e 20 61 63 74 73 20 61 73 20 | NAT66.device..A.station.acts.as. |
| 302a0 | 61 20 57 69 2d 46 69 20 63 6c 69 65 6e 74 20 61 63 63 65 73 73 69 6e 67 20 74 68 65 20 6e 65 74 | a.Wi-Fi.client.accessing.the.net |
| 302c0 | 77 6f 72 6b 20 74 68 72 6f 75 67 68 20 61 6e 20 61 76 61 69 6c 61 62 6c 65 20 57 41 50 00 41 20 | work.through.an.available.WAP.A. |
| 302e0 | 73 79 6e 63 20 67 72 6f 75 70 20 61 6c 6c 6f 77 73 20 56 52 52 50 20 67 72 6f 75 70 73 20 74 6f | sync.group.allows.VRRP.groups.to |
| 30300 | 20 74 72 61 6e 73 69 74 69 6f 6e 20 74 6f 67 65 74 68 65 72 2e 00 41 20 74 79 70 69 63 61 6c 20 | .transition.together..A.typical. |
| 30320 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 75 73 69 6e 67 20 32 20 6e 6f 64 65 73 2e 00 41 20 74 | configuration.using.2.nodes..A.t |
| 30340 | 79 70 69 63 61 6c 20 70 72 6f 62 6c 65 6d 20 77 69 74 68 20 75 73 69 6e 67 20 4e 41 54 20 61 6e | ypical.problem.with.using.NAT.an |
| 30360 | 64 20 68 6f 73 74 69 6e 67 20 70 75 62 6c 69 63 20 73 65 72 76 65 72 73 20 69 73 20 74 68 65 20 | d.hosting.public.servers.is.the. |
| 30380 | 61 62 69 6c 69 74 79 20 66 6f 72 20 69 6e 74 65 72 6e 61 6c 20 73 79 73 74 65 6d 73 20 74 6f 20 | ability.for.internal.systems.to. |
| 303a0 | 72 65 61 63 68 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 73 65 72 76 65 72 20 75 73 69 6e 67 20 69 | reach.an.internal.server.using.i |
| 303c0 | 74 27 73 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 2e 20 54 68 65 20 73 6f 6c | t's.external.IP.address..The.sol |
| 303e0 | 75 74 69 6f 6e 20 74 6f 20 74 68 69 73 20 69 73 20 75 73 75 61 6c 6c 79 20 74 68 65 20 75 73 65 | ution.to.this.is.usually.the.use |
| 30400 | 20 6f 66 20 73 70 6c 69 74 2d 44 4e 53 20 74 6f 20 63 6f 72 72 65 63 74 6c 79 20 70 6f 69 6e 74 | .of.split-DNS.to.correctly.point |
| 30420 | 20 68 6f 73 74 20 73 79 73 74 65 6d 73 20 74 6f 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 61 64 | .host.systems.to.the.internal.ad |
| 30440 | 64 72 65 73 73 20 77 68 65 6e 20 72 65 71 75 65 73 74 73 20 61 72 65 20 6d 61 64 65 20 69 6e 74 | dress.when.requests.are.made.int |
| 30460 | 65 72 6e 61 6c 6c 79 2e 20 42 65 63 61 75 73 65 20 6d 61 6e 79 20 73 6d 61 6c 6c 65 72 20 6e 65 | ernally..Because.many.smaller.ne |
| 30480 | 74 77 6f 72 6b 73 20 6c 61 63 6b 20 44 4e 53 20 69 6e 66 72 61 73 74 72 75 63 74 75 72 65 2c 20 | tworks.lack.DNS.infrastructure,. |
| 304a0 | 61 20 77 6f 72 6b 2d 61 72 6f 75 6e 64 20 69 73 20 63 6f 6d 6d 6f 6e 6c 79 20 64 65 70 6c 6f 79 | a.work-around.is.commonly.deploy |
| 304c0 | 65 64 20 74 6f 20 66 61 63 69 6c 69 74 61 74 65 20 74 68 65 20 74 72 61 66 66 69 63 20 62 79 20 | ed.to.facilitate.the.traffic.by. |
| 304e0 | 4e 41 54 69 6e 67 20 74 68 65 20 72 65 71 75 65 73 74 20 66 72 6f 6d 20 69 6e 74 65 72 6e 61 6c | NATing.the.request.from.internal |
| 30500 | 20 68 6f 73 74 73 20 74 6f 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 | .hosts.to.the.source.address.of. |
| 30520 | 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 74 68 65 20 66 69 | the.internal.interface.on.the.fi |
| 30540 | 72 65 77 61 6c 6c 2e 00 41 20 75 73 65 72 20 66 72 69 65 6e 64 6c 79 20 61 6c 69 61 73 20 66 6f | rewall..A.user.friendly.alias.fo |
| 30560 | 72 20 74 68 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 43 61 6e 20 62 65 20 75 73 65 64 20 69 | r.this.connection..Can.be.used.i |
| 30580 | 6e 73 74 65 61 64 20 6f 66 20 74 68 65 20 64 65 76 69 63 65 20 6e 61 6d 65 20 77 68 65 6e 20 63 | nstead.of.the.device.name.when.c |
| 305a0 | 6f 6e 6e 65 63 74 69 6e 67 2e 00 41 20 75 73 65 72 20 66 72 69 65 6e 64 6c 79 20 64 65 73 63 72 | onnecting..A.user.friendly.descr |
| 305c0 | 69 70 74 69 6f 6e 20 69 64 65 6e 74 69 66 79 69 6e 67 20 74 68 65 20 63 6f 6e 6e 65 63 74 65 64 | iption.identifying.the.connected |
| 305e0 | 20 70 65 72 69 70 68 65 72 61 6c 2e 00 41 20 76 61 6c 75 65 20 6f 66 20 30 20 64 69 73 61 62 6c | .peripheral..A.value.of.0.disabl |
| 30600 | 65 73 20 41 52 50 20 6d 6f 6e 69 74 6f 72 69 6e 67 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 | es.ARP.monitoring..The.default.v |
| 30620 | 61 6c 75 65 20 69 73 20 30 2e 00 41 20 76 61 6c 75 65 20 6f 66 20 32 39 36 20 77 6f 72 6b 73 20 | alue.is.0..A.value.of.296.works. |
| 30640 | 77 65 6c 6c 20 6f 6e 20 76 65 72 79 20 73 6c 6f 77 20 6c 69 6e 6b 73 20 28 34 30 20 62 79 74 65 | well.on.very.slow.links.(40.byte |
| 30660 | 73 20 66 6f 72 20 54 43 50 2f 49 50 20 68 65 61 64 65 72 20 2b 20 32 35 36 20 62 79 74 65 73 20 | s.for.TCP/IP.header.+.256.bytes. |
| 30680 | 6f 66 20 64 61 74 61 29 2e 00 41 20 76 65 72 79 20 73 6d 61 6c 6c 20 62 75 66 66 65 72 20 77 69 | of.data)..A.very.small.buffer.wi |
| 306a0 | 6c 6c 20 73 6f 6f 6e 20 73 74 61 72 74 20 64 72 6f 70 70 69 6e 67 20 70 61 63 6b 65 74 73 2e 00 | ll.soon.start.dropping.packets.. |
| 306c0 | 41 20 7a 6f 6e 65 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 62 65 66 6f 72 65 | A.zone.must.be.configured.before |
| 306e0 | 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 69 74 20 | .an.interface.is.assigned.to.it. |
| 30700 | 61 6e 64 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 62 65 20 61 73 73 69 67 6e 65 64 | and.an.interface.can.be.assigned |
| 30720 | 20 74 6f 20 6f 6e 6c 79 20 61 20 73 69 6e 67 6c 65 20 7a 6f 6e 65 2e 00 41 43 4d 45 00 41 43 4d | .to.only.a.single.zone..ACME.ACM |
| 30740 | 45 20 44 69 72 65 63 74 6f 72 79 20 52 65 73 6f 75 72 63 65 20 55 52 49 2e 00 41 50 49 00 41 52 | E.Directory.Resource.URI..API.AR |
| 30760 | 50 00 41 62 6f 76 65 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 75 73 65 20 60 31 30 2e 30 2e 30 | P.Above.command.will.use.`10.0.0 |
| 30780 | 2e 33 60 20 61 73 20 73 6f 75 72 63 65 20 49 50 76 34 20 61 64 64 72 65 73 73 20 66 6f 72 20 61 | .3`.as.source.IPv4.address.for.a |
| 307a0 | 6c 6c 20 52 41 44 49 55 53 20 71 75 65 72 69 65 73 20 6f 6e 20 74 68 69 73 20 4e 41 53 2e 00 41 | ll.RADIUS.queries.on.this.NAS..A |
| 307c0 | 62 6f 76 65 2c 20 63 6f 6d 6d 61 6e 64 20 73 79 6e 74 61 78 20 69 73 6e 20 6e 6f 74 65 64 20 74 | bove,.command.syntax.isn.noted.t |
| 307e0 | 6f 20 63 6f 6e 66 69 67 75 72 65 20 64 79 6e 61 6d 69 63 20 64 6e 73 20 6f 6e 20 61 20 73 70 65 | o.configure.dynamic.dns.on.a.spe |
| 30800 | 63 69 66 69 63 20 69 6e 74 65 72 66 61 63 65 2e 20 49 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 | cific.interface..It.is.possible. |
| 30820 | 74 6f 20 6f 76 65 72 6c 6f 6f 6b 20 74 68 65 20 61 64 64 69 74 69 6f 6e 61 6c 20 61 64 64 72 65 | to.overlook.the.additional.addre |
| 30840 | 73 73 20 6f 70 74 69 6f 6e 2c 20 77 65 62 2c 20 77 68 65 6e 20 63 6f 6d 70 6c 65 74 65 69 6e 67 | ss.option,.web,.when.completeing |
| 30860 | 20 74 68 6f 73 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 64 64 63 6c 69 65 6e 74 5f 20 68 61 73 20 61 | .those.commands..ddclient_.has.a |
| 30880 | 6e 6f 74 68 65 72 20 77 61 79 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 57 41 4e 20 | nother.way.to.determine.the.WAN. |
| 308a0 | 49 50 20 61 64 64 72 65 73 73 2c 20 75 73 69 6e 67 20 61 20 77 65 62 2d 62 61 73 65 64 20 75 72 | IP.address,.using.a.web-based.ur |
| 308c0 | 6c 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 49 50 2e 20 | l.to.determine.the.external.IP.. |
| 308e0 | 45 61 63 68 20 6f 66 20 74 68 65 20 63 6f 6d 6d 61 6e 64 73 20 61 62 6f 76 65 20 77 69 6c 6c 20 | Each.of.the.commands.above.will. |
| 30900 | 6e 65 65 64 20 74 6f 20 62 65 20 6d 6f 64 69 66 69 65 64 20 74 6f 20 75 73 65 20 27 77 65 62 27 | need.to.be.modified.to.use.'web' |
| 30920 | 20 61 73 20 74 68 65 20 27 69 6e 74 65 72 66 61 63 65 27 20 73 70 65 63 69 66 69 65 64 20 69 66 | .as.the.'interface'.specified.if |
| 30940 | 20 74 68 69 73 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 69 73 20 74 6f 20 62 65 20 75 74 69 | .this.functionality.is.to.be.uti |
| 30960 | 6c 69 7a 65 64 2e 00 41 63 63 65 6c 65 72 61 74 69 6f 6e 00 41 63 63 65 70 74 20 53 53 48 20 63 | lized..Acceleration.Accept.SSH.c |
| 30980 | 6f 6e 6e 65 63 74 69 6f 6e 73 20 66 6f 72 20 74 68 65 20 67 69 76 65 6e 20 60 3c 64 65 76 69 63 | onnections.for.the.given.`<devic |
| 309a0 | 65 3e 60 20 6f 6e 20 54 43 50 20 70 6f 72 74 20 60 3c 70 6f 72 74 3e 60 2e 20 41 66 74 65 72 20 | e>`.on.TCP.port.`<port>`..After. |
| 309c0 | 73 75 63 63 65 73 73 66 75 6c 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 74 68 65 20 75 | successfull.authentication.the.u |
| 309e0 | 73 65 72 20 77 69 6c 6c 20 62 65 20 64 69 72 65 63 74 6c 79 20 64 72 6f 70 70 65 64 20 74 6f 20 | ser.will.be.directly.dropped.to. |
| 30a00 | 74 68 65 20 63 6f 6e 6e 65 63 74 65 64 20 73 65 72 69 61 6c 20 64 65 76 69 63 65 2e 00 41 63 63 | the.connected.serial.device..Acc |
| 30a20 | 65 70 74 20 6f 6e 6c 79 20 63 65 72 74 61 69 6e 20 70 72 6f 74 6f 63 6f 6c 73 3a 20 59 6f 75 20 | ept.only.certain.protocols:.You. |
| 30a40 | 6d 61 79 20 77 61 6e 74 20 74 6f 20 72 65 70 6c 69 63 61 74 65 20 74 68 65 20 73 74 61 74 65 20 | may.want.to.replicate.the.state. |
| 30a60 | 6f 66 20 66 6c 6f 77 73 20 64 65 70 65 6e 64 69 6e 67 20 6f 6e 20 74 68 65 69 72 20 6c 61 79 65 | of.flows.depending.on.their.laye |
| 30a80 | 72 20 34 20 70 72 6f 74 6f 63 6f 6c 2e 00 41 63 63 65 70 74 20 70 65 65 72 20 69 6e 74 65 72 66 | r.4.protocol..Accept.peer.interf |
| 30aa0 | 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 2e 20 42 79 20 64 65 66 61 75 6c 74 20 69 73 20 6e 6f | ace.identifier..By.default.is.no |
| 30ac0 | 74 20 64 65 66 69 6e 65 64 2e 00 41 63 63 65 70 74 20 70 65 65 72 20 69 6e 74 65 72 66 61 63 65 | t.defined..Accept.peer.interface |
| 30ae0 | 20 69 64 65 6e 74 69 66 69 65 72 2e 20 42 79 20 64 65 66 61 75 6c 74 20 74 68 69 73 20 69 73 20 | .identifier..By.default.this.is. |
| 30b00 | 6e 6f 74 20 64 65 66 69 6e 65 64 2e 00 41 63 63 65 70 74 61 62 6c 65 20 72 61 74 65 20 6f 66 20 | not.defined..Acceptable.rate.of. |
| 30b20 | 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 28 65 2e 67 2e 20 31 2f 6d 69 6e 2c 20 36 30 2f 73 65 63 29 | connections.(e.g..1/min,.60/sec) |
| 30b40 | 00 41 63 63 65 73 73 20 4c 69 73 74 20 50 6f 6c 69 63 79 00 41 63 63 65 73 73 20 4c 69 73 74 73 | .Access.List.Policy.Access.Lists |
| 30b60 | 00 41 63 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 74 61 6b 65 6e 20 69 6d 6d 65 64 69 61 74 65 6c | .Action.must.be.taken.immediatel |
| 30b80 | 79 20 2d 20 41 20 63 6f 6e 64 69 74 69 6f 6e 20 74 68 61 74 20 73 68 6f 75 6c 64 20 62 65 20 63 | y.-.A.condition.that.should.be.c |
| 30ba0 | 6f 72 72 65 63 74 65 64 20 69 6d 6d 65 64 69 61 74 65 6c 79 2c 20 73 75 63 68 20 61 73 20 61 20 | orrected.immediately,.such.as.a. |
| 30bc0 | 63 6f 72 72 75 70 74 65 64 20 73 79 73 74 65 6d 20 64 61 74 61 62 61 73 65 2e 00 41 63 74 69 6f | corrupted.system.database..Actio |
| 30be0 | 6e 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 72 75 6e 20 6f 6e 63 65 20 74 68 65 20 63 74 72 | n.which.will.be.run.once.the.ctr |
| 30c00 | 6c 2d 61 6c 74 2d 64 65 6c 20 6b 65 79 73 74 72 6f 6b 65 20 69 73 20 72 65 63 65 69 76 65 64 2e | l-alt-del.keystroke.is.received. |
| 30c20 | 00 41 63 74 69 6f 6e 73 00 41 63 74 69 76 65 20 44 69 72 65 63 74 6f 72 79 00 41 63 74 69 76 65 | .Actions.Active.Directory.Active |
| 30c40 | 20 68 65 61 6c 74 68 20 63 68 65 63 6b 20 62 61 63 6b 65 6e 64 20 73 65 72 76 65 72 00 41 64 64 | .health.check.backend.server.Add |
| 30c60 | 20 4e 54 41 20 28 6e 65 67 61 74 69 76 65 20 74 72 75 73 74 20 61 6e 63 68 6f 72 29 20 66 6f 72 | .NTA.(negative.trust.anchor).for |
| 30c80 | 20 74 68 69 73 20 64 6f 6d 61 69 6e 2e 20 54 68 69 73 20 6d 75 73 74 20 62 65 20 73 65 74 20 69 | .this.domain..This.must.be.set.i |
| 30ca0 | 66 20 74 68 65 20 64 6f 6d 61 69 6e 20 64 6f 65 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 20 44 4e | f.the.domain.does.not.support.DN |
| 30cc0 | 53 53 45 43 2e 00 41 64 64 20 50 6f 77 65 72 20 43 6f 6e 73 74 72 61 69 6e 74 20 65 6c 65 6d 65 | SSEC..Add.Power.Constraint.eleme |
| 30ce0 | 6e 74 20 74 6f 20 42 65 61 63 6f 6e 20 61 6e 64 20 50 72 6f 62 65 20 52 65 73 70 6f 6e 73 65 20 | nt.to.Beacon.and.Probe.Response. |
| 30d00 | 66 72 61 6d 65 73 2e 00 41 64 64 20 61 20 66 6f 72 77 61 72 64 69 6e 67 20 72 75 6c 65 20 6d 61 | frames..Add.a.forwarding.rule.ma |
| 30d20 | 74 63 68 69 6e 67 20 55 44 50 20 70 6f 72 74 20 6f 6e 20 79 6f 75 72 20 69 6e 74 65 72 6e 65 74 | tching.UDP.port.on.your.internet |
| 30d40 | 20 72 6f 75 74 65 72 2e 00 41 64 64 20 61 20 68 6f 73 74 20 64 65 76 69 63 65 20 74 6f 20 74 68 | .router..Add.a.host.device.to.th |
| 30d60 | 65 20 63 6f 6e 74 61 69 6e 65 72 2e 00 41 64 64 20 61 63 63 65 73 73 2d 63 6f 6e 74 72 6f 6c 20 | e.container..Add.access-control. |
| 30d80 | 64 69 72 65 63 74 69 76 65 20 74 6f 20 61 6c 6c 6f 77 20 6f 72 20 64 65 6e 79 20 75 73 65 72 73 | directive.to.allow.or.deny.users |
| 30da0 | 20 61 6e 64 20 67 72 6f 75 70 73 2e 20 44 69 72 65 63 74 69 76 65 73 20 61 72 65 20 70 72 6f 63 | .and.groups..Directives.are.proc |
| 30dc0 | 65 73 73 65 64 20 69 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6f 72 64 65 72 20 6f 66 20 | essed.in.the.following.order.of. |
| 30de0 | 70 72 65 63 65 64 65 6e 63 65 3a 20 60 60 64 65 6e 79 2d 75 73 65 72 73 60 60 2c 20 60 60 61 6c | precedence:.``deny-users``,.``al |
| 30e00 | 6c 6f 77 2d 75 73 65 72 73 60 60 2c 20 60 60 64 65 6e 79 2d 67 72 6f 75 70 73 60 60 20 61 6e 64 | low-users``,.``deny-groups``.and |
| 30e20 | 20 60 60 61 6c 6c 6f 77 2d 67 72 6f 75 70 73 60 60 2e 00 41 64 64 20 63 75 73 74 6f 6d 20 65 6e | .``allow-groups``..Add.custom.en |
| 30e40 | 76 69 72 6f 6e 6d 65 6e 74 20 76 61 72 69 61 62 6c 65 73 2e 20 4d 75 6c 74 69 70 6c 65 20 65 6e | vironment.variables..Multiple.en |
| 30e60 | 76 69 72 6f 6e 6d 65 6e 74 20 76 61 72 69 61 62 6c 65 73 20 61 72 65 20 61 6c 6c 6f 77 65 64 2e | vironment.variables.are.allowed. |
| 30e80 | 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 20 74 72 61 6e 73 6c 61 74 | .The.following.commands.translat |
| 30ea0 | 65 20 74 6f 20 22 2d 65 20 6b 65 79 3d 76 61 6c 75 65 22 20 77 68 65 6e 20 74 68 65 20 63 6f 6e | e.to."-e.key=value".when.the.con |
| 30ec0 | 74 61 69 6e 65 72 20 69 73 20 63 72 65 61 74 65 64 2e 00 41 64 64 20 64 65 66 61 75 6c 74 20 72 | tainer.is.created..Add.default.r |
| 30ee0 | 6f 75 74 65 73 20 66 6f 72 20 72 6f 75 74 69 6e 67 20 60 60 74 61 62 6c 65 20 31 30 60 60 20 61 | outes.for.routing.``table.10``.a |
| 30f00 | 6e 64 20 60 60 74 61 62 6c 65 20 31 31 60 60 00 41 64 64 20 64 65 73 63 72 69 70 74 69 6f 6e 20 | nd.``table.11``.Add.description. |
| 30f20 | 74 6f 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 3a 00 41 64 64 20 64 65 73 74 69 6e 61 74 | to.firewall.groups:.Add.destinat |
| 30f40 | 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e | ion.IP.address.of.the.connection |
| 30f60 | 20 74 6f 20 61 20 64 79 6e 61 6d 69 63 20 61 64 64 72 65 73 73 20 67 72 6f 75 70 3a 00 41 64 64 | .to.a.dynamic.address.group:.Add |
| 30f80 | 20 6d 65 74 61 64 61 74 61 20 6c 61 62 65 6c 20 66 6f 72 20 74 68 69 73 20 63 6f 6e 74 61 69 6e | .metadata.label.for.this.contain |
| 30fa0 | 65 72 2e 00 41 64 64 20 6d 75 6c 74 69 70 6c 65 20 73 6f 75 72 63 65 20 49 50 20 69 6e 20 6f 6e | er..Add.multiple.source.IP.in.on |
| 30fc0 | 65 20 72 75 6c 65 20 77 69 74 68 20 73 61 6d 65 20 70 72 69 6f 72 69 74 79 00 41 64 64 20 6e 65 | e.rule.with.same.priority.Add.ne |
| 30fe0 | 77 20 70 6f 72 74 20 74 6f 20 53 53 4c 2d 70 6f 72 74 73 20 61 63 6c 2e 20 50 6f 72 74 73 20 69 | w.port.to.SSL-ports.acl..Ports.i |
| 31000 | 6e 63 6c 75 64 65 64 20 62 79 20 64 65 66 61 75 6c 74 20 69 6e 20 53 53 4c 2d 70 6f 72 74 73 20 | ncluded.by.default.in.SSL-ports. |
| 31020 | 61 63 6c 3a 20 34 34 33 00 41 64 64 20 6e 65 77 20 70 6f 72 74 20 74 6f 20 53 61 66 65 2d 70 6f | acl:.443.Add.new.port.to.Safe-po |
| 31040 | 72 74 73 20 61 63 6c 2e 20 50 6f 72 74 73 20 69 6e 63 6c 75 64 65 64 20 62 79 20 64 65 66 61 75 | rts.acl..Ports.included.by.defau |
| 31060 | 6c 74 20 69 6e 20 53 61 66 65 2d 70 6f 72 74 73 20 61 63 6c 3a 20 32 31 2c 20 37 30 2c 20 38 30 | lt.in.Safe-ports.acl:.21,.70,.80 |
| 31080 | 2c 20 32 31 30 2c 20 32 38 30 2c 20 34 34 33 2c 20 34 38 38 2c 20 35 39 31 2c 20 37 37 37 2c 20 | ,.210,.280,.443,.488,.591,.777,. |
| 310a0 | 38 37 33 2c 20 31 30 32 35 2d 36 35 35 33 35 00 41 64 64 20 6f 72 20 72 65 70 6c 61 63 65 20 42 | 873,.1025-65535.Add.or.replace.B |
| 310c0 | 47 50 20 63 6f 6d 6d 75 6e 69 74 79 20 61 74 74 72 69 62 75 74 65 20 69 6e 20 66 6f 72 6d 61 74 | GP.community.attribute.in.format |
| 310e0 | 20 60 60 3c 30 2d 36 35 35 33 35 3a 30 2d 36 35 35 33 35 3e 60 60 20 6f 72 20 66 72 6f 6d 20 77 | .``<0-65535:0-65535>``.or.from.w |
| 31100 | 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 79 20 6c 69 73 74 00 41 64 64 20 6f 72 20 | ell-known.community.list.Add.or. |
| 31120 | 72 65 70 6c 61 63 65 20 42 47 50 20 6c 61 72 67 65 2d 63 6f 6d 6d 75 6e 69 74 79 20 61 74 74 72 | replace.BGP.large-community.attr |
| 31140 | 69 62 75 74 65 20 69 6e 20 66 6f 72 6d 61 74 20 60 60 3c 30 2d 34 32 39 34 39 36 37 32 39 35 3a | ibute.in.format.``<0-4294967295: |
| 31160 | 30 2d 34 32 39 34 39 36 37 32 39 35 3a 30 2d 34 32 39 34 39 36 37 32 39 35 3e 60 60 00 41 64 64 | 0-4294967295:0-4294967295>``.Add |
| 31180 | 20 70 6f 6c 69 63 79 20 72 6f 75 74 65 20 6d 61 74 63 68 69 6e 67 20 56 4c 41 4e 20 73 6f 75 72 | .policy.route.matching.VLAN.sour |
| 311a0 | 63 65 20 61 64 64 72 65 73 73 65 73 00 41 64 64 20 70 75 62 6c 69 63 20 6b 65 79 20 70 6f 72 74 | ce.addresses.Add.public.key.port |
| 311c0 | 69 6f 6e 20 66 6f 72 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 6e 61 6d 65 64 20 60 6e | ion.for.the.certificate.named.`n |
| 311e0 | 61 6d 65 60 20 74 6f 20 74 68 65 20 56 79 4f 53 20 43 4c 49 2e 00 41 64 64 20 73 6f 75 72 63 65 | ame`.to.the.VyOS.CLI..Add.source |
| 31200 | 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f | .IP.address.of.the.connection.to |
| 31220 | 20 61 20 64 79 6e 61 6d 69 63 20 61 64 64 72 65 73 73 20 67 72 6f 75 70 3a 00 41 64 64 20 74 68 | .a.dynamic.address.group:.Add.th |
| 31240 | 65 20 43 41 73 20 70 72 69 76 61 74 65 20 6b 65 79 20 74 6f 20 74 68 65 20 56 79 4f 53 20 43 4c | e.CAs.private.key.to.the.VyOS.CL |
| 31260 | 49 2e 20 54 68 69 73 20 73 68 6f 75 6c 64 20 6e 65 76 65 72 20 6c 65 61 76 65 20 74 68 65 20 73 | I..This.should.never.leave.the.s |
| 31280 | 79 73 74 65 6d 2c 20 61 6e 64 20 69 73 20 6f 6e 6c 79 20 72 65 71 75 69 72 65 64 20 69 66 20 79 | ystem,.and.is.only.required.if.y |
| 312a0 | 6f 75 20 75 73 65 20 56 79 4f 53 20 61 73 20 79 6f 75 72 20 63 65 72 74 69 66 69 63 61 74 65 20 | ou.use.VyOS.as.your.certificate. |
| 312c0 | 67 65 6e 65 72 61 74 6f 72 20 61 73 20 6d 65 6e 74 69 6f 6e 65 64 20 61 62 6f 76 65 2e 00 41 64 | generator.as.mentioned.above..Ad |
| 312e0 | 64 20 74 68 65 20 63 6f 6d 6d 61 6e 64 73 20 66 72 6f 6d 20 53 6e 69 70 70 65 74 20 69 6e 20 74 | d.the.commands.from.Snippet.in.t |
| 31300 | 68 65 20 57 69 6e 64 6f 77 73 20 73 69 64 65 20 76 69 61 20 50 6f 77 65 72 53 68 65 6c 6c 2e 20 | he.Windows.side.via.PowerShell.. |
| 31320 | 41 6c 73 6f 20 69 6d 70 6f 72 74 20 74 68 65 20 72 6f 6f 74 20 43 41 20 63 65 72 74 20 74 6f 20 | Also.import.the.root.CA.cert.to. |
| 31340 | 74 68 65 20 57 69 6e 64 6f 77 73 20 e2 80 9c 54 72 75 73 74 65 64 20 52 6f 6f 74 20 43 65 72 74 | the.Windows....Trusted.Root.Cert |
| 31360 | 69 66 69 63 61 74 69 6f 6e 20 41 75 74 68 6f 72 69 74 69 65 73 e2 80 9d 20 61 6e 64 20 65 73 74 | ification.Authorities....and.est |
| 31380 | 61 62 6c 69 73 68 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 41 64 64 20 74 68 65 20 70 | ablish.the.connection..Add.the.p |
| 313a0 | 72 69 76 61 74 65 20 6b 65 79 20 70 6f 72 74 69 6f 6e 20 6f 66 20 74 68 69 73 20 63 65 72 74 69 | rivate.key.portion.of.this.certi |
| 313c0 | 66 69 63 61 74 65 20 74 6f 20 74 68 65 20 43 4c 49 2e 20 54 68 69 73 20 73 68 6f 75 6c 64 20 6e | ficate.to.the.CLI..This.should.n |
| 313e0 | 65 76 65 72 20 6c 65 61 76 65 20 74 68 65 20 73 79 73 74 65 6d 20 61 73 20 69 74 20 69 73 20 75 | ever.leave.the.system.as.it.is.u |
| 31400 | 73 65 64 20 74 6f 20 64 65 63 72 79 70 74 20 74 68 65 20 64 61 74 61 2e 00 41 64 64 20 74 68 65 | sed.to.decrypt.the.data..Add.the |
| 31420 | 20 70 75 62 6c 69 63 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 20 66 6f 72 20 74 68 65 20 43 | .public.CA.certificate.for.the.C |
| 31440 | 41 20 6e 61 6d 65 64 20 60 6e 61 6d 65 60 20 74 6f 20 74 68 65 20 56 79 4f 53 20 43 4c 49 2e 00 | A.named.`name`.to.the.VyOS.CLI.. |
| 31460 | 41 64 64 69 6e 67 20 61 20 32 46 41 20 77 69 74 68 20 61 6e 20 4f 54 50 2d 6b 65 79 00 41 64 64 | Adding.a.2FA.with.an.OTP-key.Add |
| 31480 | 69 6e 67 20 65 6c 65 6d 65 6e 74 73 20 74 6f 20 44 79 6e 61 6d 69 63 20 46 69 72 65 77 61 6c 6c | ing.elements.to.Dynamic.Firewall |
| 314a0 | 20 47 72 6f 75 70 73 00 41 64 64 69 74 69 6f 6e 61 6c 20 67 6c 6f 62 61 6c 20 70 61 72 61 6d 65 | .Groups.Additional.global.parame |
| 314c0 | 74 65 72 73 20 61 72 65 20 73 65 74 2c 20 69 6e 63 6c 75 64 69 6e 67 20 74 68 65 20 6d 61 78 69 | ters.are.set,.including.the.maxi |
| 314e0 | 6d 75 6d 20 6e 75 6d 62 65 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6c 69 6d 69 74 20 6f 66 20 34 | mum.number.connection.limit.of.4 |
| 31500 | 30 30 30 20 61 6e 64 20 61 20 6d 69 6e 69 6d 75 6d 20 54 4c 53 20 76 65 72 73 69 6f 6e 20 6f 66 | 000.and.a.minimum.TLS.version.of |
| 31520 | 20 31 2e 33 2e 00 41 64 64 69 74 69 6f 6e 61 6c 20 6f 70 74 69 6f 6e 20 74 6f 20 72 75 6e 20 54 | .1.3..Additional.option.to.run.T |
| 31540 | 46 54 50 20 73 65 72 76 65 72 20 69 6e 20 74 68 65 20 3a 61 62 62 72 3a 60 56 52 46 20 28 56 69 | FTP.server.in.the.:abbr:`VRF.(Vi |
| 31560 | 72 74 75 61 6c 20 52 6f 75 74 69 6e 67 20 61 6e 64 20 46 6f 72 77 61 72 64 69 6e 67 29 60 20 63 | rtual.Routing.and.Forwarding)`.c |
| 31580 | 6f 6e 74 65 78 74 00 41 64 64 69 74 69 6f 6e 61 6c 6c 79 20 79 6f 75 20 73 68 6f 75 6c 64 20 6b | ontext.Additionally.you.should.k |
| 315a0 | 65 65 70 20 69 6e 20 6d 69 6e 64 20 74 68 61 74 20 74 68 69 73 20 66 65 61 74 75 72 65 20 66 75 | eep.in.mind.that.this.feature.fu |
| 315c0 | 6e 64 61 6d 65 6e 74 61 6c 6c 79 20 64 69 73 61 62 6c 65 73 20 74 68 65 20 61 62 69 6c 69 74 79 | ndamentally.disables.the.ability |
| 315e0 | 20 74 6f 20 75 73 65 20 77 69 64 65 6c 79 20 64 65 70 6c 6f 79 65 64 20 42 47 50 20 66 65 61 74 | .to.use.widely.deployed.BGP.feat |
| 31600 | 75 72 65 73 2e 20 42 47 50 20 75 6e 6e 75 6d 62 65 72 65 64 2c 20 68 6f 73 74 6e 61 6d 65 20 73 | ures..BGP.unnumbered,.hostname.s |
| 31620 | 75 70 70 6f 72 74 2c 20 41 53 34 2c 20 41 64 64 70 61 74 68 2c 20 52 6f 75 74 65 20 52 65 66 72 | upport,.AS4,.Addpath,.Route.Refr |
| 31640 | 65 73 68 2c 20 4f 52 46 2c 20 44 79 6e 61 6d 69 63 20 43 61 70 61 62 69 6c 69 74 69 65 73 2c 20 | esh,.ORF,.Dynamic.Capabilities,. |
| 31660 | 61 6e 64 20 67 72 61 63 65 66 75 6c 20 72 65 73 74 61 72 74 2e 00 41 64 64 69 74 69 6f 6e 61 6c | and.graceful.restart..Additional |
| 31680 | 6c 79 2c 20 65 61 63 68 20 63 6c 69 65 6e 74 20 6e 65 65 64 73 20 61 20 63 6f 70 79 20 6f 66 20 | ly,.each.client.needs.a.copy.of. |
| 316a0 | 63 61 20 63 65 72 74 20 61 6e 64 20 69 74 73 20 6f 77 6e 20 63 6c 69 65 6e 74 20 6b 65 79 20 61 | ca.cert.and.its.own.client.key.a |
| 316c0 | 6e 64 20 63 65 72 74 20 66 69 6c 65 73 2e 20 54 68 65 20 66 69 6c 65 73 20 61 72 65 20 70 6c 61 | nd.cert.files..The.files.are.pla |
| 316e0 | 69 6e 74 65 78 74 20 73 6f 20 74 68 65 79 20 6d 61 79 20 62 65 20 63 6f 70 69 65 64 20 65 69 74 | intext.so.they.may.be.copied.eit |
| 31700 | 68 65 72 20 6d 61 6e 75 61 6c 6c 79 20 66 72 6f 6d 20 74 68 65 20 43 4c 49 2e 20 43 6c 69 65 6e | her.manually.from.the.CLI..Clien |
| 31720 | 74 20 6b 65 79 20 61 6e 64 20 63 65 72 74 20 66 69 6c 65 73 20 73 68 6f 75 6c 64 20 62 65 20 73 | t.key.and.cert.files.should.be.s |
| 31740 | 69 67 6e 65 64 20 77 69 74 68 20 74 68 65 20 70 72 6f 70 65 72 20 63 61 20 63 65 72 74 20 61 6e | igned.with.the.proper.ca.cert.an |
| 31760 | 64 20 67 65 6e 65 72 61 74 65 64 20 6f 6e 20 74 68 65 20 73 65 72 76 65 72 20 73 69 64 65 2e 00 | d.generated.on.the.server.side.. |
| 31780 | 41 64 64 69 74 69 6f 6e 61 6c 6c 79 2c 20 65 61 63 68 20 63 6c 69 65 6e 74 20 6e 65 65 64 73 20 | Additionally,.each.client.needs. |
| 317a0 | 61 20 63 6f 70 79 20 6f 66 20 63 61 20 63 65 72 74 20 61 6e 64 20 69 74 73 20 6f 77 6e 20 63 6c | a.copy.of.ca.cert.and.its.own.cl |
| 317c0 | 69 65 6e 74 20 6b 65 79 20 61 6e 64 20 63 65 72 74 20 66 69 6c 65 73 2e 20 54 68 65 20 66 69 6c | ient.key.and.cert.files..The.fil |
| 317e0 | 65 73 20 61 72 65 20 70 6c 61 69 6e 74 65 78 74 20 73 6f 20 74 68 65 79 20 6d 61 79 20 62 65 20 | es.are.plaintext.so.they.may.be. |
| 31800 | 63 6f 70 69 65 64 20 6d 61 6e 75 61 6c 6c 79 20 66 72 6f 6d 20 74 68 65 20 43 4c 49 2e 20 43 6c | copied.manually.from.the.CLI..Cl |
| 31820 | 69 65 6e 74 20 6b 65 79 20 61 6e 64 20 63 65 72 74 20 66 69 6c 65 73 20 73 68 6f 75 6c 64 20 62 | ient.key.and.cert.files.should.b |
| 31840 | 65 20 73 69 67 6e 65 64 20 77 69 74 68 20 74 68 65 20 70 72 6f 70 65 72 20 63 61 20 63 65 72 74 | e.signed.with.the.proper.ca.cert |
| 31860 | 20 61 6e 64 20 67 65 6e 65 72 61 74 65 64 20 6f 6e 20 74 68 65 20 73 65 72 76 65 72 20 73 69 64 | .and.generated.on.the.server.sid |
| 31880 | 65 2e 00 41 64 64 69 74 69 6f 6e 61 6c 6c 79 2c 20 77 65 20 77 61 6e 74 20 74 6f 20 75 73 65 20 | e..Additionally,.we.want.to.use. |
| 318a0 | 56 50 4e 73 20 6f 6e 6c 79 20 6f 6e 20 6f 75 72 20 65 74 68 31 20 69 6e 74 65 72 66 61 63 65 20 | VPNs.only.on.our.eth1.interface. |
| 318c0 | 28 74 68 65 20 65 78 74 65 72 6e 61 6c 20 69 6e 74 65 72 66 61 63 65 20 69 6e 20 74 68 65 20 69 | (the.external.interface.in.the.i |
| 318e0 | 6d 61 67 65 20 61 62 6f 76 65 29 00 41 64 64 72 65 73 73 00 41 64 64 72 65 73 73 20 43 6f 6e 76 | mage.above).Address.Address.Conv |
| 31900 | 65 72 73 69 6f 6e 00 41 64 64 72 65 73 73 20 46 61 6d 69 6c 69 65 73 00 41 64 64 72 65 73 73 20 | ersion.Address.Families.Address. |
| 31920 | 47 72 6f 75 70 73 00 41 64 64 72 65 73 73 20 67 72 6f 75 70 73 20 61 72 65 20 75 73 65 66 75 6c | Groups.Address.groups.are.useful |
| 31940 | 20 77 68 65 6e 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 20 72 75 6c 65 73 20 74 | .when.you.need.to.create.rules.t |
| 31960 | 68 61 74 20 61 70 70 6c 79 20 74 6f 20 73 70 65 63 69 66 69 63 20 49 50 20 61 64 64 72 65 73 73 | hat.apply.to.specific.IP.address |
| 31980 | 65 73 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 69 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 | es..For.example,.if.you.want.to. |
| 319a0 | 63 72 65 61 74 65 20 61 20 72 75 6c 65 20 74 68 61 74 20 6d 6f 6e 69 74 6f 72 73 20 74 72 61 66 | create.a.rule.that.monitors.traf |
| 319c0 | 66 69 63 20 67 6f 69 6e 67 20 74 6f 20 6f 72 20 66 72 6f 6d 20 61 20 73 70 65 63 69 66 69 63 20 | fic.going.to.or.from.a.specific. |
| 319e0 | 49 50 20 61 64 64 72 65 73 73 2c 20 79 6f 75 20 63 61 6e 20 75 73 65 20 74 68 65 20 67 72 6f 75 | IP.address,.you.can.use.the.grou |
| 31a00 | 70 20 6e 61 6d 65 20 69 6e 73 74 65 61 64 20 6f 66 20 74 68 65 20 61 63 74 75 61 6c 20 49 50 20 | p.name.instead.of.the.actual.IP. |
| 31a20 | 61 64 64 72 65 73 73 2e 20 54 68 69 73 20 73 69 6d 70 6c 69 66 69 65 73 20 72 75 6c 65 20 6d 61 | address..This.simplifies.rule.ma |
| 31a40 | 6e 61 67 65 6d 65 6e 74 20 61 6e 64 20 6d 61 6b 65 73 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 | nagement.and.makes.the.configura |
| 31a60 | 74 69 6f 6e 20 6d 6f 72 65 20 66 6c 65 78 69 62 6c 65 2e 00 41 64 64 72 65 73 73 20 70 6f 6f 6c | tion.more.flexible..Address.pool |
| 31a80 | 20 73 68 61 6c 6c 20 62 65 20 60 60 32 30 30 31 3a 64 62 38 3a 3a 31 30 30 60 60 20 74 68 72 6f | .shall.be.``2001:db8::100``.thro |
| 31aa0 | 75 67 68 20 60 60 32 30 30 31 3a 64 62 38 3a 3a 31 39 39 60 60 2e 00 41 64 64 72 65 73 73 20 70 | ugh.``2001:db8::199``..Address.p |
| 31ac0 | 6f 6f 6c 73 00 41 64 64 72 65 73 73 20 74 6f 20 6c 69 73 74 65 6e 20 66 6f 72 20 48 54 54 50 53 | ools.Address.to.listen.for.HTTPS |
| 31ae0 | 20 72 65 71 75 65 73 74 73 00 41 64 64 73 20 72 65 67 69 73 74 72 79 20 74 6f 20 6c 69 73 74 20 | .requests.Adds.registry.to.list. |
| 31b00 | 6f 66 20 75 6e 71 75 61 6c 69 66 69 65 64 2d 73 65 61 72 63 68 2d 72 65 67 69 73 74 72 69 65 73 | of.unqualified-search-registries |
| 31b20 | 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 66 6f 72 20 61 6e 79 20 69 6d 61 67 65 20 74 68 61 74 | ..By.default,.for.any.image.that |
| 31b40 | 20 64 6f 65 73 20 6e 6f 74 20 69 6e 63 6c 75 64 65 20 74 68 65 20 72 65 67 69 73 74 72 79 20 69 | .does.not.include.the.registry.i |
| 31b60 | 6e 20 74 68 65 20 69 6d 61 67 65 20 6e 61 6d 65 2c 20 56 79 4f 53 20 77 69 6c 6c 20 75 73 65 20 | n.the.image.name,.VyOS.will.use. |
| 31b80 | 64 6f 63 6b 65 72 2e 69 6f 20 61 6e 64 20 71 75 61 79 2e 69 6f 20 61 73 20 74 68 65 20 63 6f 6e | docker.io.and.quay.io.as.the.con |
| 31ba0 | 74 61 69 6e 65 72 20 72 65 67 69 73 74 72 79 2e 00 41 64 64 73 20 72 65 67 69 73 74 72 79 20 74 | tainer.registry..Adds.registry.t |
| 31bc0 | 6f 20 6c 69 73 74 20 6f 66 20 75 6e 71 75 61 6c 69 66 69 65 64 2d 73 65 61 72 63 68 2d 72 65 67 | o.list.of.unqualified-search-reg |
| 31be0 | 69 73 74 72 69 65 73 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 66 6f 72 20 61 6e 79 20 69 6d 61 | istries..By.default,.for.any.ima |
| 31c00 | 67 65 20 74 68 61 74 20 64 6f 65 73 20 6e 6f 74 20 69 6e 63 6c 75 64 65 20 74 68 65 20 72 65 67 | ge.that.does.not.include.the.reg |
| 31c20 | 69 73 74 72 79 20 69 6e 20 74 68 65 20 69 6d 61 67 65 20 6e 61 6d 65 2c 20 56 79 6f 73 20 77 69 | istry.in.the.image.name,.Vyos.wi |
| 31c40 | 6c 6c 20 75 73 65 20 64 6f 63 6b 65 72 2e 69 6f 20 61 73 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 | ll.use.docker.io.as.the.containe |
| 31c60 | 72 20 72 65 67 69 73 74 72 79 2e 00 41 64 64 73 20 74 68 65 20 50 6f 77 65 72 20 43 6f 6e 73 74 | r.registry..Adds.the.Power.Const |
| 31c80 | 72 61 69 6e 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 65 6c 65 6d 65 6e 74 20 74 6f 20 42 65 61 | raint.information.element.to.Bea |
| 31ca0 | 63 6f 6e 20 61 6e 64 20 50 72 6f 62 65 20 52 65 73 70 6f 6e 73 65 20 66 72 61 6d 65 73 2e 00 41 | con.and.Probe.Response.frames..A |
| 31cc0 | 64 6d 69 6e 69 73 74 72 61 74 69 76 65 20 44 69 73 74 61 6e 63 65 00 41 64 76 61 6e 63 65 64 20 | dministrative.Distance.Advanced. |
| 31ce0 | 49 6e 74 65 72 66 61 63 65 20 4f 70 74 69 6f 6e 73 00 41 64 76 61 6e 63 65 64 20 4f 70 74 69 6f | Interface.Options.Advanced.Optio |
| 31d00 | 6e 73 00 41 64 76 61 6e 63 65 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 61 6e 20 62 65 | ns.Advanced.configuration.can.be |
| 31d20 | 20 75 73 65 64 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 61 70 70 6c 79 20 73 6f 75 72 63 65 20 6f | .used.in.order.to.apply.source.o |
| 31d40 | 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 4e 41 54 2c 20 61 6e 64 20 77 69 74 68 69 6e 20 61 20 | r.destination.NAT,.and.within.a. |
| 31d60 | 73 69 6e 67 6c 65 20 72 75 6c 65 2c 20 62 65 20 61 62 6c 65 20 74 6f 20 64 65 66 69 6e 65 20 6d | single.rule,.be.able.to.define.m |
| 31d80 | 75 6c 74 69 70 6c 65 20 74 72 61 6e 73 6c 61 74 65 64 20 61 64 64 72 65 73 73 65 73 2c 20 73 6f | ultiple.translated.addresses,.so |
| 31da0 | 20 4e 41 54 20 62 61 6c 61 6e 63 65 73 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 73 20 61 | .NAT.balances.the.translations.a |
| 31dc0 | 6d 6f 6e 67 20 74 68 65 6d 2e 00 41 64 76 61 6e 74 61 67 65 73 20 6f 66 20 43 47 4e 41 54 00 41 | mong.them..Advantages.of.CGNAT.A |
| 31de0 | 64 76 61 6e 74 61 67 65 73 20 6f 66 20 4f 70 65 6e 56 50 4e 20 61 72 65 3a 00 41 64 76 65 72 74 | dvantages.of.OpenVPN.are:.Advert |
| 31e00 | 69 73 65 20 44 4e 53 20 73 65 72 76 65 72 20 70 65 72 20 68 74 74 70 73 3a 2f 2f 74 6f 6f 6c 73 | ise.DNS.server.per.https://tools |
| 31e20 | 2e 69 65 74 66 2e 6f 72 67 2f 68 74 6d 6c 2f 72 66 63 36 31 30 36 00 41 64 76 65 72 74 69 73 65 | .ietf.org/html/rfc6106.Advertise |
| 31e40 | 6d 65 6e 74 20 49 6e 74 65 72 76 61 6c 20 4f 70 74 69 6f 6e 20 28 73 70 65 63 69 66 69 65 64 20 | ment.Interval.Option.(specified. |
| 31e60 | 62 79 20 4d 6f 62 69 6c 65 20 49 50 76 36 29 20 69 73 20 61 6c 77 61 79 73 20 69 6e 63 6c 75 64 | by.Mobile.IPv6).is.always.includ |
| 31e80 | 65 64 20 69 6e 20 52 6f 75 74 65 72 20 41 64 76 65 72 74 69 73 65 6d 65 6e 74 73 20 75 6e 6c 65 | ed.in.Router.Advertisements.unle |
| 31ea0 | 73 73 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 73 65 74 2e 00 41 64 76 65 72 74 69 73 69 | ss.this.option.is.set..Advertisi |
| 31ec0 | 6e 67 20 61 20 4e 41 54 36 34 20 50 72 65 66 69 78 00 41 64 76 65 72 74 69 73 69 6e 67 20 61 20 | ng.a.NAT64.Prefix.Advertising.a. |
| 31ee0 | 50 72 65 66 69 78 00 41 66 74 65 72 20 63 6f 6d 6d 69 74 20 74 68 65 20 70 6c 61 69 6e 74 65 78 | Prefix.After.commit.the.plaintex |
| 31f00 | 74 20 70 61 73 73 77 6f 72 64 73 20 77 69 6c 6c 20 62 65 20 68 61 73 68 65 64 20 61 6e 64 20 73 | t.passwords.will.be.hashed.and.s |
| 31f20 | 74 6f 72 65 64 20 69 6e 20 79 6f 75 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 54 68 65 | tored.in.your.configuration..The |
| 31f40 | 20 72 65 73 75 6c 74 69 6e 67 20 43 4c 49 20 63 6f 6e 66 69 67 20 77 69 6c 6c 20 6c 6f 6f 6b 20 | .resulting.CLI.config.will.look. |
| 31f60 | 6c 69 6b 65 3a 00 41 66 74 65 72 20 63 6f 6d 6d 69 74 74 69 6e 67 20 74 68 65 20 63 6f 6e 66 69 | like:.After.committing.the.confi |
| 31f80 | 67 75 72 61 74 69 6f 6e 20 77 65 20 63 61 6e 20 76 65 72 69 66 79 20 61 6c 6c 20 6c 65 61 6b 65 | guration.we.can.verify.all.leake |
| 31fa0 | 64 20 72 6f 75 74 65 73 20 61 72 65 20 69 6e 73 74 61 6c 6c 65 64 2c 20 61 6e 64 20 74 72 79 20 | d.routes.are.installed,.and.try. |
| 31fc0 | 74 6f 20 49 43 4d 50 20 70 69 6e 67 20 50 43 31 20 66 72 6f 6d 20 50 43 33 2e 00 41 66 74 65 72 | to.ICMP.ping.PC1.from.PC3..After |
| 31fe0 | 20 63 6f 6d 70 6c 65 74 69 6e 67 20 74 68 65 20 73 65 72 76 69 63 65 20 63 6f 6e 66 69 67 75 72 | .completing.the.service.configur |
| 32000 | 61 74 69 6f 6e 20 69 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 65 2c 20 74 68 65 | ation.in.configuration.mode,.the |
| 32020 | 20 6d 61 69 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 69 6c 65 20 73 75 72 69 63 61 74 | .main.configuration.file.suricat |
| 32040 | 61 2e 79 61 6d 6c 20 69 73 20 63 72 65 61 74 65 64 2c 20 69 6e 74 6f 20 77 68 69 63 68 20 61 6c | a.yaml.is.created,.into.which.al |
| 32060 | 6c 20 73 70 65 63 69 66 69 65 64 20 70 61 72 61 6d 65 74 65 72 73 20 61 72 65 20 61 64 64 65 64 | l.specified.parameters.are.added |
| 32080 | 2e 20 54 68 65 6e 2c 20 74 6f 20 65 6e 73 75 72 65 20 70 72 6f 70 65 72 20 6f 70 65 72 61 74 69 | ..Then,.to.ensure.proper.operati |
| 320a0 | 6f 6e 2c 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 3a 6f 70 63 6d 64 3a 60 75 70 64 61 74 65 20 73 | on,.the.command.:opcmd:`update.s |
| 320c0 | 75 72 69 63 61 74 61 60 20 6d 75 73 74 20 62 65 20 72 75 6e 20 66 72 6f 6d 20 6f 70 65 72 61 74 | uricata`.must.be.run.from.operat |
| 320e0 | 69 6f 6e 61 6c 20 6d 6f 64 65 2c 20 77 61 69 74 69 6e 67 20 66 6f 72 20 53 75 72 69 63 61 74 61 | ional.mode,.waiting.for.Suricata |
| 32100 | 20 74 6f 20 75 70 64 61 74 65 20 61 6c 6c 20 69 74 73 20 72 75 6c 65 73 2c 20 77 68 69 63 68 20 | .to.update.all.its.rules,.which. |
| 32120 | 61 72 65 20 75 73 65 64 20 66 6f 72 20 61 6e 61 6c 79 7a 69 6e 67 20 74 72 61 66 66 69 63 20 66 | are.used.for.analyzing.traffic.f |
| 32140 | 6f 72 20 74 68 72 65 61 74 73 20 61 6e 64 20 61 74 74 61 63 6b 73 2e 00 41 66 74 65 72 20 74 68 | or.threats.and.attacks..After.th |
| 32160 | 65 20 50 4b 49 20 63 65 72 74 73 20 61 72 65 20 61 6c 6c 20 73 65 74 20 75 70 20 77 65 20 63 61 | e.PKI.certs.are.all.set.up.we.ca |
| 32180 | 6e 20 73 74 61 72 74 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 6f 75 72 20 49 50 53 65 63 2f 49 4b | n.start.configuring.our.IPSec/IK |
| 321a0 | 45 20 70 72 6f 70 6f 73 61 6c 73 20 75 73 65 64 20 66 6f 72 20 6b 65 79 2d 65 78 63 68 61 6e 67 | E.proposals.used.for.key-exchang |
| 321c0 | 65 20 65 6e 64 20 64 61 74 61 20 65 6e 63 72 79 70 74 69 6f 6e 2e 20 54 68 65 20 75 73 65 64 20 | e.end.data.encryption..The.used. |
| 321e0 | 65 6e 63 72 79 70 74 69 6f 6e 20 63 69 70 68 65 72 73 20 61 6e 64 20 69 6e 74 65 67 72 69 74 79 | encryption.ciphers.and.integrity |
| 32200 | 20 61 6c 67 6f 72 69 74 68 6d 73 20 76 61 72 79 20 66 72 6f 6d 20 6f 70 65 72 61 74 69 6e 67 20 | .algorithms.vary.from.operating. |
| 32220 | 73 79 73 74 65 6d 20 74 6f 20 6f 70 65 72 61 74 69 6e 67 20 73 79 73 74 65 6d 2e 20 54 68 65 20 | system.to.operating.system..The. |
| 32240 | 6f 6e 65 73 20 75 73 65 64 20 69 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 20 61 72 65 20 76 61 | ones.used.in.this.example.are.va |
| 32260 | 6c 69 64 61 74 65 64 20 74 6f 20 77 6f 72 6b 20 6f 6e 20 57 69 6e 64 6f 77 73 20 31 30 2e 00 41 | lidated.to.work.on.Windows.10..A |
| 32280 | 66 74 65 72 20 74 68 65 20 50 4b 49 20 63 65 72 74 73 20 61 72 65 20 61 6c 6c 20 73 65 74 20 75 | fter.the.PKI.certs.are.all.set.u |
| 322a0 | 70 20 77 65 20 63 61 6e 20 73 74 61 72 74 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 6f 75 72 20 49 | p.we.can.start.configuring.our.I |
| 322c0 | 50 53 65 63 2f 49 4b 45 20 70 72 6f 70 6f 73 61 6c 73 20 75 73 65 64 20 66 6f 72 20 6b 65 79 2d | PSec/IKE.proposals.used.for.key- |
| 322e0 | 65 78 63 68 61 6e 67 65 20 65 6e 64 20 64 61 74 61 20 65 6e 63 72 79 70 74 69 6f 6e 2e 20 54 68 | exchange.end.data.encryption..Th |
| 32300 | 65 20 75 73 65 64 20 65 6e 63 72 79 70 74 69 6f 6e 20 63 69 70 68 65 72 73 20 61 6e 64 20 69 6e | e.used.encryption.ciphers.and.in |
| 32320 | 74 65 67 72 69 74 79 20 61 6c 67 6f 72 69 74 68 6d 73 20 76 61 72 79 20 66 72 6f 6d 20 6f 70 65 | tegrity.algorithms.vary.from.ope |
| 32340 | 72 61 74 69 6e 67 20 73 79 73 74 65 6d 20 74 6f 20 6f 70 65 72 61 74 69 6e 67 20 73 79 73 74 65 | rating.system.to.operating.syste |
| 32360 | 6d 2e 20 54 68 65 20 6f 6e 65 73 20 75 73 65 64 20 69 6e 20 74 68 69 73 20 70 6f 73 74 20 61 72 | m..The.ones.used.in.this.post.ar |
| 32380 | 65 20 76 61 6c 69 64 61 74 65 64 20 74 6f 20 77 6f 72 6b 20 6f 6e 20 62 6f 74 68 20 57 69 6e 64 | e.validated.to.work.on.both.Wind |
| 323a0 | 6f 77 73 20 31 30 20 61 6e 64 20 69 4f 53 2f 69 50 61 64 4f 53 20 31 34 20 74 6f 20 31 37 2e 00 | ows.10.and.iOS/iPadOS.14.to.17.. |
| 323c0 | 41 66 74 65 72 20 77 65 20 68 61 76 65 20 69 6d 70 6f 72 74 65 64 20 74 68 65 20 43 41 20 63 65 | After.we.have.imported.the.CA.ce |
| 323e0 | 72 74 69 66 69 63 61 74 65 28 73 29 20 77 65 20 63 61 6e 20 6e 6f 77 20 69 6d 70 6f 72 74 20 61 | rtificate(s).we.can.now.import.a |
| 32400 | 6e 64 20 61 64 64 20 63 65 72 74 69 66 69 63 61 74 65 73 20 75 73 65 64 20 62 79 20 73 65 72 76 | nd.add.certificates.used.by.serv |
| 32420 | 69 63 65 73 20 6f 6e 20 74 68 69 73 20 72 6f 75 74 65 72 2e 00 41 66 74 65 72 20 79 6f 75 20 6f | ices.on.this.router..After.you.o |
| 32440 | 62 74 61 69 6e 20 79 6f 75 72 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 20 79 6f | btain.your.server.certificate.yo |
| 32460 | 75 20 63 61 6e 20 69 6d 70 6f 72 74 20 69 74 20 66 72 6f 6d 20 61 20 66 69 6c 65 20 6f 6e 20 74 | u.can.import.it.from.a.file.on.t |
| 32480 | 68 65 20 6c 6f 63 61 6c 20 66 69 6c 65 73 79 73 74 65 6d 2c 20 6f 72 20 70 61 73 74 65 20 69 74 | he.local.filesystem,.or.paste.it |
| 324a0 | 20 69 6e 74 6f 20 74 68 65 20 43 4c 49 2e 20 50 6c 65 61 73 65 20 6e 6f 74 65 20 74 68 61 74 20 | .into.the.CLI..Please.note.that. |
| 324c0 | 77 68 65 6e 20 65 6e 74 65 72 69 6e 67 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 6d 61 | when.entering.the.certificate.ma |
| 324e0 | 6e 75 61 6c 6c 79 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 73 74 72 69 70 20 74 68 65 20 60 60 2d | nually.you.need.to.strip.the.``- |
| 32500 | 2d 2d 2d 2d 42 45 47 49 4e 20 4b 45 59 2d 2d 2d 2d 2d 60 60 20 61 6e 64 20 60 60 2d 2d 2d 2d 2d | ----BEGIN.KEY-----``.and.``----- |
| 32520 | 45 4e 44 20 4b 45 59 2d 2d 2d 2d 2d 60 60 20 74 61 67 73 2e 20 41 6c 73 6f 2c 20 74 68 65 20 63 | END.KEY-----``.tags..Also,.the.c |
| 32540 | 65 72 74 69 66 69 63 61 74 65 20 6f 72 20 6b 65 79 20 6e 65 65 64 73 20 74 6f 20 62 65 20 70 72 | ertificate.or.key.needs.to.be.pr |
| 32560 | 65 73 65 6e 74 65 64 20 69 6e 20 61 20 73 69 6e 67 6c 65 20 6c 69 6e 65 20 77 69 74 68 6f 75 74 | esented.in.a.single.line.without |
| 32580 | 20 6c 69 6e 65 20 62 72 65 61 6b 73 20 28 60 60 5c 6e 60 60 29 2e 00 41 66 74 65 72 20 79 6f 75 | .line.breaks.(``\n``)..After.you |
| 325a0 | 20 6f 62 74 61 69 6e 65 64 20 79 6f 75 72 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 | .obtained.your.server.certificat |
| 325c0 | 65 20 79 6f 75 20 63 61 6e 20 69 6d 70 6f 72 74 20 69 74 20 66 72 6f 6d 20 61 20 66 69 6c 65 20 | e.you.can.import.it.from.a.file. |
| 325e0 | 6f 6e 20 74 68 65 20 6c 6f 63 61 6c 20 66 69 6c 65 73 79 73 74 65 6d 2c 20 6f 72 20 70 61 73 74 | on.the.local.filesystem,.or.past |
| 32600 | 65 20 69 74 20 69 6e 74 6f 20 74 68 65 20 43 4c 49 2e 20 50 6c 65 61 73 65 20 6e 6f 74 65 20 74 | e.it.into.the.CLI..Please.note.t |
| 32620 | 68 61 74 20 77 68 65 6e 20 65 6e 74 65 72 69 6e 67 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 | hat.when.entering.the.certificat |
| 32640 | 65 20 6d 61 6e 75 61 6c 6c 79 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 73 74 72 69 70 20 74 68 65 | e.manually.you.need.to.strip.the |
| 32660 | 20 60 60 2d 2d 2d 2d 2d 42 45 47 49 4e 20 4b 45 59 2d 2d 2d 2d 2d 60 60 20 61 6e 64 20 60 60 2d | .``-----BEGIN.KEY-----``.and.``- |
| 32680 | 2d 2d 2d 2d 45 4e 44 20 4b 45 59 2d 2d 2d 2d 2d 60 60 20 74 61 67 73 2e 20 41 6c 73 6f 2c 20 74 | ----END.KEY-----``.tags..Also,.t |
| 326a0 | 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 6f 72 20 6b 65 79 20 6e 65 65 64 73 20 74 6f 20 62 | he.certificate.or.key.needs.to.b |
| 326c0 | 65 20 70 72 65 73 65 6e 74 65 64 20 69 6e 20 61 20 73 69 6e 67 6c 65 20 6c 69 6e 65 20 77 69 74 | e.presented.in.a.single.line.wit |
| 326e0 | 68 6f 75 74 20 6c 69 6e 65 20 62 72 65 61 6b 73 20 28 60 60 5c 6e 60 60 29 2e 00 41 67 65 6e 74 | hout.line.breaks.(``\n``)..Agent |
| 32700 | 20 2d 20 73 6f 66 74 77 61 72 65 20 77 68 69 63 68 20 72 75 6e 73 20 6f 6e 20 6d 61 6e 61 67 65 | .-.software.which.runs.on.manage |
| 32720 | 64 20 64 65 76 69 63 65 73 00 41 6c 65 72 74 00 41 6c 67 6f 72 69 74 68 6d 00 41 6c 69 61 73 65 | d.devices.Alert.Algorithm.Aliase |
| 32740 | 73 00 41 6c 6c 20 44 4e 53 20 72 65 71 75 65 73 74 73 20 66 6f 72 20 65 78 61 6d 70 6c 65 2e 63 | s.All.DNS.requests.for.example.c |
| 32760 | 6f 6d 20 6d 75 73 74 20 62 65 20 66 6f 72 77 61 72 64 65 64 20 74 6f 20 61 20 44 4e 53 20 73 65 | om.must.be.forwarded.to.a.DNS.se |
| 32780 | 72 76 65 72 20 61 74 20 31 39 32 2e 30 2e 32 2e 32 35 34 20 61 6e 64 20 32 30 30 31 3a 64 62 38 | rver.at.192.0.2.254.and.2001:db8 |
| 327a0 | 3a 63 61 66 65 3a 3a 31 00 41 6c 6c 20 53 4e 4d 50 20 4d 49 42 73 20 61 72 65 20 6c 6f 63 61 74 | :cafe::1.All.SNMP.MIBs.are.locat |
| 327c0 | 65 64 20 69 6e 20 65 61 63 68 20 69 6d 61 67 65 20 6f 66 20 56 79 4f 53 20 68 65 72 65 3a 20 60 | ed.in.each.image.of.VyOS.here:.` |
| 327e0 | 60 2f 75 73 72 2f 73 68 61 72 65 2f 73 6e 6d 70 2f 6d 69 62 73 2f 60 60 00 41 6c 6c 20 61 76 61 | `/usr/share/snmp/mibs/``.All.ava |
| 32800 | 69 6c 61 62 6c 65 20 57 57 41 4e 20 63 61 72 64 73 20 68 61 76 65 20 61 20 62 75 69 6c 64 20 69 | ilable.WWAN.cards.have.a.build.i |
| 32820 | 6e 2c 20 72 65 70 72 6f 67 72 61 6d 6d 61 62 6c 65 20 66 69 72 6d 77 61 72 65 2e 20 4d 6f 73 74 | n,.reprogrammable.firmware..Most |
| 32840 | 20 6f 66 20 74 68 65 20 76 65 6e 64 6f 72 73 20 70 72 6f 76 69 64 65 20 61 20 72 65 67 75 6c 61 | .of.the.vendors.provide.a.regula |
| 32860 | 72 20 75 70 64 61 74 65 20 74 6f 20 74 68 65 20 66 69 72 6d 77 61 72 65 20 75 73 65 64 20 69 6e | r.update.to.the.firmware.used.in |
| 32880 | 20 74 68 65 20 62 61 73 65 62 61 6e 64 20 63 68 69 70 2e 00 41 6c 6c 20 61 76 61 69 6c 61 62 6c | .the.baseband.chip..All.availabl |
| 328a0 | 65 20 57 57 41 4e 20 63 61 72 64 73 20 68 61 76 65 20 61 20 62 75 69 6c 74 2d 69 6e 2c 20 72 65 | e.WWAN.cards.have.a.built-in,.re |
| 328c0 | 70 72 6f 67 72 61 6d 6d 61 62 6c 65 20 66 69 72 6d 77 61 72 65 2e 20 4d 6f 73 74 20 76 65 6e 64 | programmable.firmware..Most.vend |
| 328e0 | 6f 72 73 20 70 72 6f 76 69 64 65 20 72 65 67 75 6c 61 72 20 75 70 64 61 74 65 73 20 74 6f 20 66 | ors.provide.regular.updates.to.f |
| 32900 | 69 72 6d 77 61 72 65 20 75 73 65 64 20 69 6e 20 74 68 65 20 62 61 73 65 62 61 6e 64 20 63 68 69 | irmware.used.in.the.baseband.chi |
| 32920 | 70 2e 00 41 6c 6c 20 63 65 72 74 69 66 69 63 61 74 65 73 20 73 68 6f 75 6c 64 20 62 65 20 73 74 | p..All.certificates.should.be.st |
| 32940 | 6f 72 65 64 20 6f 6e 20 56 79 4f 53 20 75 6e 64 65 72 20 60 60 2f 63 6f 6e 66 69 67 2f 61 75 74 | ored.on.VyOS.under.``/config/aut |
| 32960 | 68 60 60 2e 20 49 66 20 63 65 72 74 69 66 69 63 61 74 65 73 20 61 72 65 20 6e 6f 74 20 73 74 6f | h``..If.certificates.are.not.sto |
| 32980 | 72 65 64 20 69 6e 20 74 68 65 20 60 60 2f 63 6f 6e 66 69 67 60 60 20 64 69 72 65 63 74 6f 72 79 | red.in.the.``/config``.directory |
| 329a0 | 20 74 68 65 79 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 6d 69 67 72 61 74 65 64 20 64 75 72 69 6e | .they.will.not.be.migrated.durin |
| 329c0 | 67 20 61 20 73 6f 66 74 77 61 72 65 20 75 70 64 61 74 65 2e 00 41 6c 6c 20 66 61 63 69 6c 69 74 | g.a.software.update..All.facilit |
| 329e0 | 69 65 73 00 41 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 | ies.All.interfaces.used.for.the. |
| 32a00 | 44 48 43 50 20 72 65 6c 61 79 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 | DHCP.relay.must.be.configured..T |
| 32a20 | 68 69 73 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 75 70 6c 69 6e 6b 20 74 6f 20 74 68 65 20 44 | his.includes.the.uplink.to.the.D |
| 32a40 | 48 43 50 20 73 65 72 76 65 72 2e 00 41 6c 6c 20 69 74 65 6d 73 20 69 6e 20 61 20 73 79 6e 63 20 | HCP.server..All.items.in.a.sync. |
| 32a60 | 67 72 6f 75 70 20 73 68 6f 75 6c 64 20 62 65 20 73 69 6d 69 6c 61 72 6c 79 20 63 6f 6e 66 69 67 | group.should.be.similarly.config |
| 32a80 | 75 72 65 64 2e 20 49 66 20 6f 6e 65 20 56 52 52 50 20 67 72 6f 75 70 20 69 73 20 73 65 74 20 74 | ured..If.one.VRRP.group.is.set.t |
| 32aa0 | 6f 20 61 20 64 69 66 66 65 72 65 6e 74 20 70 72 65 65 6d 70 74 69 6f 6e 20 64 65 6c 61 79 20 6f | o.a.different.preemption.delay.o |
| 32ac0 | 72 20 70 72 69 6f 72 69 74 79 2c 20 69 74 20 77 6f 75 6c 64 20 72 65 73 75 6c 74 20 69 6e 20 61 | r.priority,.it.would.result.in.a |
| 32ae0 | 6e 20 65 6e 64 6c 65 73 73 20 74 72 61 6e 73 69 74 69 6f 6e 20 6c 6f 6f 70 2e 00 41 6c 6c 20 6f | n.endless.transition.loop..All.o |
| 32b00 | 74 68 65 72 20 44 4e 53 20 72 65 71 75 65 73 74 73 20 77 69 6c 6c 20 62 65 20 66 6f 72 77 61 72 | ther.DNS.requests.will.be.forwar |
| 32b20 | 64 65 64 20 74 6f 20 61 20 64 69 66 66 65 72 65 6e 74 20 73 65 74 20 6f 66 20 44 4e 53 20 73 65 | ded.to.a.different.set.of.DNS.se |
| 32b40 | 72 76 65 72 73 20 61 74 20 31 39 32 2e 30 2e 32 2e 31 2c 20 31 39 32 2e 30 2e 32 2e 32 2c 20 32 | rvers.at.192.0.2.1,.192.0.2.2,.2 |
| 32b60 | 30 30 31 3a 64 62 38 3a 3a 31 3a 66 66 66 66 20 61 6e 64 20 32 30 30 31 3a 64 62 38 3a 3a 32 3a | 001:db8::1:ffff.and.2001:db8::2: |
| 32b80 | 66 66 66 66 00 41 6c 6c 20 72 65 70 6c 79 20 73 69 7a 65 73 20 61 72 65 20 61 63 63 65 70 74 65 | ffff.All.reply.sizes.are.accepte |
| 32ba0 | 64 20 62 79 20 64 65 66 61 75 6c 74 2e 00 41 6c 6c 20 72 6f 75 74 65 72 73 20 69 6e 20 74 68 65 | d.by.default..All.routers.in.the |
| 32bc0 | 20 50 49 4d 20 6e 65 74 77 6f 72 6b 20 6d 75 73 74 20 61 67 72 65 65 20 6f 6e 20 74 68 65 73 65 | .PIM.network.must.agree.on.these |
| 32be0 | 20 76 61 6c 75 65 73 2e 00 41 6c 6c 20 73 63 72 69 70 74 73 20 65 78 63 65 63 75 74 65 64 20 74 | .values..All.scripts.excecuted.t |
| 32c00 | 68 69 73 20 77 61 79 20 61 72 65 20 65 78 65 63 75 74 65 64 20 61 73 20 72 6f 6f 74 20 75 73 65 | his.way.are.executed.as.root.use |
| 32c20 | 72 20 2d 20 74 68 69 73 20 6d 61 79 20 62 65 20 64 61 6e 67 65 72 6f 75 73 2e 20 54 6f 67 65 74 | r.-.this.may.be.dangerous..Toget |
| 32c40 | 68 65 72 20 77 69 74 68 20 3a 72 65 66 3a 60 63 6f 6d 6d 61 6e 64 2d 73 63 72 69 70 74 69 6e 67 | her.with.:ref:`command-scripting |
| 32c60 | 60 20 74 68 69 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 66 6f 72 20 61 75 74 6f 6d 61 74 69 6e | `.this.can.be.used.for.automatin |
| 32c80 | 67 20 28 72 65 2d 29 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 41 6c 6c 20 73 63 72 69 70 74 | g.(re-)configuration..All.script |
| 32ca0 | 73 20 65 78 65 63 75 74 65 64 20 74 68 69 73 20 77 61 79 20 61 72 65 20 65 78 65 63 75 74 65 64 | s.executed.this.way.are.executed |
| 32cc0 | 20 61 73 20 72 6f 6f 74 20 75 73 65 72 20 2d 20 74 68 69 73 20 6d 61 79 20 62 65 20 64 61 6e 67 | .as.root.user.-.this.may.be.dang |
| 32ce0 | 65 72 6f 75 73 2e 20 54 6f 67 65 74 68 65 72 20 77 69 74 68 20 3a 72 65 66 3a 60 63 6f 6d 6d 61 | erous..Together.with.:ref:`comma |
| 32d00 | 6e 64 2d 73 63 72 69 70 74 69 6e 67 60 20 74 68 69 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 66 | nd-scripting`.this.can.be.used.f |
| 32d20 | 6f 72 20 61 75 74 6f 6d 61 74 69 6e 67 20 28 72 65 2d 29 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | or.automating.(re-)configuration |
| 32d40 | 2e 00 41 6c 6c 20 74 68 65 73 65 20 72 75 6c 65 73 20 77 69 74 68 20 4f 54 43 20 77 69 6c 6c 20 | ..All.these.rules.with.OTC.will. |
| 32d60 | 68 65 6c 70 20 74 6f 20 64 65 74 65 63 74 20 61 6e 64 20 6d 69 74 69 67 61 74 65 20 72 6f 75 74 | help.to.detect.and.mitigate.rout |
| 32d80 | 65 20 6c 65 61 6b 73 20 61 6e 64 20 68 61 70 70 65 6e 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 | e.leaks.and.happen.automatically |
| 32da0 | 20 69 66 20 6c 6f 63 61 6c 2d 72 6f 6c 65 20 69 73 20 73 65 74 2e 00 41 6c 6c 20 74 68 6f 73 65 | .if.local-role.is.set..All.those |
| 32dc0 | 20 70 72 6f 74 6f 63 6f 6c 73 20 61 72 65 20 67 72 6f 75 70 65 64 20 75 6e 64 65 72 20 60 60 69 | .protocols.are.grouped.under.``i |
| 32de0 | 6e 74 65 72 66 61 63 65 73 20 74 75 6e 6e 65 6c 60 60 20 69 6e 20 56 79 4f 53 2e 20 4c 65 74 27 | nterfaces.tunnel``.in.VyOS..Let' |
| 32e00 | 73 20 74 61 6b 65 20 61 20 63 6c 6f 73 65 72 20 6c 6f 6f 6b 20 61 74 20 74 68 65 20 70 72 6f 74 | s.take.a.closer.look.at.the.prot |
| 32e20 | 6f 63 6f 6c 73 20 61 6e 64 20 6f 70 74 69 6f 6e 73 20 63 75 72 72 65 6e 74 6c 79 20 73 75 70 70 | ocols.and.options.currently.supp |
| 32e40 | 6f 72 74 65 64 20 62 79 20 56 79 4f 53 2e 00 41 6c 6c 20 74 72 61 66 66 69 63 20 62 65 74 77 65 | orted.by.VyOS..All.traffic.betwe |
| 32e60 | 65 6e 20 7a 6f 6e 65 73 20 69 73 20 61 66 66 65 63 74 65 64 20 62 79 20 65 78 69 73 74 69 6e 67 | en.zones.is.affected.by.existing |
| 32e80 | 20 70 6f 6c 69 63 69 65 73 00 41 6c 6c 20 74 72 61 66 66 69 63 20 74 6f 20 61 6e 64 20 66 72 6f | .policies.All.traffic.to.and.fro |
| 32ea0 | 6d 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 69 6e 20 61 20 7a 6f 6e 65 20 69 73 20 | m.an.interface.within.a.zone.is. |
| 32ec0 | 70 65 72 6d 69 74 74 65 64 2e 00 41 6c 6c 20 74 75 6e 6e 65 6c 20 73 65 73 73 69 6f 6e 73 20 63 | permitted..All.tunnel.sessions.c |
| 32ee0 | 61 6e 20 62 65 20 63 68 65 63 6b 65 64 20 76 69 61 3a 00 41 6c 6c 2d 41 63 74 69 76 65 20 4d 75 | an.be.checked.via:.All-Active.Mu |
| 32f00 | 6c 74 69 68 6f 6d 69 6e 67 20 69 73 20 75 73 65 64 20 66 6f 72 20 72 65 64 75 6e 64 61 6e 63 79 | ltihoming.is.used.for.redundancy |
| 32f20 | 20 61 6e 64 20 6c 6f 61 64 20 73 68 61 72 69 6e 67 2e 20 53 65 72 76 65 72 73 20 61 72 65 20 61 | .and.load.sharing..Servers.are.a |
| 32f40 | 74 74 61 63 68 65 64 20 74 6f 20 74 77 6f 20 6f 72 20 6d 6f 72 65 20 50 45 73 20 61 6e 64 20 74 | ttached.to.two.or.more.PEs.and.t |
| 32f60 | 68 65 20 6c 69 6e 6b 73 20 61 72 65 20 62 6f 6e 64 65 64 20 28 6c 69 6e 6b 2d 61 67 67 72 65 67 | he.links.are.bonded.(link-aggreg |
| 32f80 | 61 74 69 6f 6e 29 2e 20 54 68 69 73 20 67 72 6f 75 70 20 6f 66 20 73 65 72 76 65 72 20 6c 69 6e | ation)..This.group.of.server.lin |
| 32fa0 | 6b 73 20 69 73 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 61 6e 20 3a 61 62 62 72 3a 60 45 | ks.is.referred.to.as.an.:abbr:`E |
| 32fc0 | 53 20 28 45 74 68 65 72 6e 65 74 20 53 65 67 6d 65 6e 74 29 60 2e 00 41 6c 6c 6f 63 61 74 69 6f | S.(Ethernet.Segment)`..Allocatio |
| 32fe0 | 6e 20 63 6c 69 65 6e 74 73 20 69 70 20 61 64 64 72 65 73 73 65 73 20 62 79 20 52 41 44 49 55 53 | n.clients.ip.addresses.by.RADIUS |
| 33000 | 00 41 6c 6c 6f 77 20 60 60 73 73 68 60 60 20 64 79 6e 61 6d 69 63 2d 70 72 6f 74 65 63 74 69 6f | .Allow.``ssh``.dynamic-protectio |
| 33020 | 6e 2e 00 41 6c 6c 6f 77 20 61 63 63 65 73 73 20 74 6f 20 73 69 74 65 73 20 69 6e 20 61 20 64 6f | n..Allow.access.to.sites.in.a.do |
| 33040 | 6d 61 69 6e 20 77 69 74 68 6f 75 74 20 72 65 74 72 69 65 76 69 6e 67 20 74 68 65 6d 20 66 72 6f | main.without.retrieving.them.fro |
| 33060 | 6d 20 74 68 65 20 50 72 6f 78 79 20 63 61 63 68 65 2e 20 53 70 65 63 69 66 79 69 6e 67 20 22 76 | m.the.Proxy.cache..Specifying."v |
| 33080 | 79 6f 73 2e 6e 65 74 22 20 77 69 6c 6c 20 61 6c 6c 6f 77 20 61 63 63 65 73 73 20 74 6f 20 76 79 | yos.net".will.allow.access.to.vy |
| 330a0 | 6f 73 2e 6e 65 74 20 62 75 74 20 74 68 65 20 70 61 67 65 73 20 61 63 63 65 73 73 65 64 20 77 69 | os.net.but.the.pages.accessed.wi |
| 330c0 | 6c 6c 20 6e 6f 74 20 62 65 20 63 61 63 68 65 64 2e 20 49 74 20 75 73 65 66 75 6c 20 66 6f 72 20 | ll.not.be.cached..It.useful.for. |
| 330e0 | 77 6f 72 6b 69 6e 67 20 61 72 6f 75 6e 64 20 70 72 6f 62 6c 65 6d 73 20 77 69 74 68 20 22 49 66 | working.around.problems.with."If |
| 33100 | 2d 4d 6f 64 69 66 69 65 64 2d 53 69 6e 63 65 22 20 63 68 65 63 6b 69 6e 67 20 61 74 20 63 65 72 | -Modified-Since".checking.at.cer |
| 33120 | 74 61 69 6e 20 73 69 74 65 73 2e 00 41 6c 6c 6f 77 20 62 67 70 20 74 6f 20 6e 65 67 6f 74 69 61 | tain.sites..Allow.bgp.to.negotia |
| 33140 | 74 65 20 74 68 65 20 65 78 74 65 6e 64 65 64 2d 6e 65 78 74 68 6f 70 20 63 61 70 61 62 69 6c 69 | te.the.extended-nexthop.capabili |
| 33160 | 74 79 20 77 69 74 68 20 69 74 e2 80 99 73 20 70 65 65 72 2e 20 49 66 20 79 6f 75 20 61 72 65 20 | ty.with.it...s.peer..If.you.are. |
| 33180 | 70 65 65 72 69 6e 67 20 6f 76 65 72 20 61 20 49 50 76 36 20 4c 69 6e 6b 2d 4c 6f 63 61 6c 20 61 | peering.over.a.IPv6.Link-Local.a |
| 331a0 | 64 64 72 65 73 73 20 74 68 65 6e 20 74 68 69 73 20 63 61 70 61 62 69 6c 69 74 79 20 69 73 20 74 | ddress.then.this.capability.is.t |
| 331c0 | 75 72 6e 65 64 20 6f 6e 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 2e 20 49 66 20 79 6f 75 20 61 | urned.on.automatically..If.you.a |
| 331e0 | 72 65 20 70 65 65 72 69 6e 67 20 6f 76 65 72 20 61 20 49 50 76 36 20 47 6c 6f 62 61 6c 20 41 64 | re.peering.over.a.IPv6.Global.Ad |
| 33200 | 64 72 65 73 73 20 74 68 65 6e 20 74 75 72 6e 69 6e 67 20 6f 6e 20 74 68 69 73 20 63 6f 6d 6d 61 | dress.then.turning.on.this.comma |
| 33220 | 6e 64 20 77 69 6c 6c 20 61 6c 6c 6f 77 20 42 47 50 20 74 6f 20 69 6e 73 74 61 6c 6c 20 49 50 76 | nd.will.allow.BGP.to.install.IPv |
| 33240 | 34 20 72 6f 75 74 65 73 20 77 69 74 68 20 49 50 76 36 20 6e 65 78 74 68 6f 70 73 20 69 66 20 79 | 4.routes.with.IPv6.nexthops.if.y |
| 33260 | 6f 75 20 64 6f 20 6e 6f 74 20 68 61 76 65 20 49 50 76 34 20 63 6f 6e 66 69 67 75 72 65 64 20 6f | ou.do.not.have.IPv4.configured.o |
| 33280 | 6e 20 69 6e 74 65 72 66 61 63 65 73 2e 00 41 6c 6c 6f 77 20 63 72 6f 73 73 2d 6f 72 69 67 69 6e | n.interfaces..Allow.cross-origin |
| 332a0 | 20 72 65 71 75 65 73 74 73 20 66 72 6f 6d 20 60 3c 6f 72 69 67 69 6e 3e 60 2e 00 41 6c 6c 6f 77 | .requests.from.`<origin>`..Allow |
| 332c0 | 20 65 78 70 6c 69 63 69 74 20 49 50 76 36 20 61 64 64 72 65 73 73 20 66 6f 72 20 74 68 65 20 69 | .explicit.IPv6.address.for.the.i |
| 332e0 | 6e 74 65 72 66 61 63 65 2e 00 41 6c 6c 6f 77 20 68 6f 73 74 20 6e 65 74 77 6f 72 6b 69 6e 67 20 | nterface..Allow.host.networking. |
| 33300 | 69 6e 20 61 20 63 6f 6e 74 61 69 6e 65 72 2e 20 54 68 65 20 6e 65 74 77 6f 72 6b 20 73 74 61 63 | in.a.container..The.network.stac |
| 33320 | 6b 20 6f 66 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 69 73 20 6e 6f 74 20 69 73 6f 6c 61 74 | k.of.the.container.is.not.isolat |
| 33340 | 65 64 20 66 72 6f 6d 20 74 68 65 20 68 6f 73 74 20 61 6e 64 20 77 69 6c 6c 20 75 73 65 20 74 68 | ed.from.the.host.and.will.use.th |
| 33360 | 65 20 68 6f 73 74 20 49 50 2e 00 41 6c 6c 6f 77 20 6c 69 73 74 69 6e 67 20 61 64 64 69 74 69 6f | e.host.IP..Allow.listing.additio |
| 33380 | 6e 61 6c 20 63 75 73 74 6f 6d 20 64 6f 6d 61 69 6e 73 20 74 6f 20 62 65 20 62 72 6f 77 73 65 64 | nal.custom.domains.to.be.browsed |
| 333a0 | 20 28 69 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 64 65 66 61 75 6c 74 20 60 60 6c | .(in.addition.to.the.default.``l |
| 333c0 | 6f 63 61 6c 60 60 29 20 73 6f 20 74 68 61 74 20 74 68 65 79 20 63 61 6e 20 62 65 20 72 65 66 6c | ocal``).so.that.they.can.be.refl |
| 333e0 | 65 63 74 65 64 2e 00 41 6c 6c 6f 77 20 74 68 69 73 20 42 46 44 20 70 65 65 72 20 74 6f 20 6e 6f | ected..Allow.this.BFD.peer.to.no |
| 33400 | 74 20 62 65 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 00 41 6c 6c 6f 77 65 64 20 | t.be.directly.connected.Allowed. |
| 33420 | 76 61 6c 75 65 73 20 66 70 72 20 54 43 50 20 66 6c 61 67 73 3a 20 60 60 53 59 4e 60 60 2c 20 60 | values.fpr.TCP.flags:.``SYN``,.` |
| 33440 | 60 41 43 4b 60 60 2c 20 60 60 46 49 4e 60 60 2c 20 60 60 52 53 54 60 60 2c 20 60 60 55 52 47 60 | `ACK``,.``FIN``,.``RST``,.``URG` |
| 33460 | 60 2c 20 60 60 50 53 48 60 60 2c 20 60 60 41 4c 4c 60 60 20 57 68 65 6e 20 73 70 65 63 69 66 79 | `,.``PSH``,.``ALL``.When.specify |
| 33480 | 69 6e 67 20 6d 6f 72 65 20 74 68 61 6e 20 6f 6e 65 20 66 6c 61 67 2c 20 66 6c 61 67 73 20 73 68 | ing.more.than.one.flag,.flags.sh |
| 334a0 | 6f 75 6c 64 20 62 65 20 63 6f 6d 6d 61 20 73 65 70 61 72 61 74 65 64 2e 20 54 68 65 20 60 60 21 | ould.be.comma.separated..The.``! |
| 334c0 | 60 60 20 6e 65 67 61 74 65 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 70 72 6f 74 6f 63 6f 6c 2e | ``.negate.the.selected.protocol. |
| 334e0 | 00 41 6c 6c 6f 77 65 64 20 76 61 6c 75 65 73 20 66 70 72 20 54 43 50 20 66 6c 61 67 73 3a 20 60 | .Allowed.values.fpr.TCP.flags:.` |
| 33500 | 60 61 63 6b 60 60 2c 20 60 60 63 77 72 60 60 2c 20 60 60 65 63 6e 60 60 2c 20 60 60 66 69 6e 60 | `ack``,.``cwr``,.``ecn``,.``fin` |
| 33520 | 60 2c 20 60 60 70 73 68 60 60 2c 20 60 60 72 73 74 60 60 2c 20 60 60 73 79 6e 60 60 20 61 6e 64 | `,.``psh``,.``rst``,.``syn``.and |
| 33540 | 20 60 60 75 72 67 60 60 2e 20 4d 75 6c 74 69 70 6c 65 20 76 61 6c 75 65 73 20 61 72 65 20 73 75 | .``urg``..Multiple.values.are.su |
| 33560 | 70 70 6f 72 74 65 64 2c 20 61 6e 64 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 73 65 6c 65 63 74 | pported,.and.for.inverted.select |
| 33580 | 69 6f 6e 20 75 73 65 20 60 60 6e 6f 74 60 60 2c 20 61 73 20 73 68 6f 77 6e 20 69 6e 20 74 68 65 | ion.use.``not``,.as.shown.in.the |
| 335a0 | 20 65 78 61 6d 70 6c 65 2e 00 41 6c 6c 6f 77 73 20 73 70 65 63 69 66 69 63 20 56 4c 41 4e 20 49 | .example..Allows.specific.VLAN.I |
| 335c0 | 44 73 20 74 6f 20 70 61 73 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 62 72 69 64 67 65 20 6d 65 | Ds.to.pass.through.the.bridge.me |
| 335e0 | 6d 62 65 72 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 63 61 6e 20 65 69 74 68 65 72 20 | mber.interface..This.can.either. |
| 33600 | 62 65 20 61 6e 20 69 6e 64 69 76 69 64 75 61 6c 20 56 4c 41 4e 20 69 64 20 6f 72 20 61 20 72 61 | be.an.individual.VLAN.id.or.a.ra |
| 33620 | 6e 67 65 20 6f 66 20 56 4c 41 4e 20 69 64 73 20 64 65 6c 69 6d 69 74 65 64 20 62 79 20 61 20 68 | nge.of.VLAN.ids.delimited.by.a.h |
| 33640 | 79 70 68 65 6e 2e 00 41 6c 6c 6f 77 73 20 74 6f 20 64 65 66 69 6e 65 20 55 52 4c 20 70 61 74 68 | yphen..Allows.to.define.URL.path |
| 33660 | 20 6d 61 74 63 68 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 61 20 73 70 65 63 69 66 69 63 20 73 | .matching.rules.for.a.specific.s |
| 33680 | 65 72 76 69 63 65 2e 00 41 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 | ervice..Allows.you.to.configure. |
| 336a0 | 74 68 65 20 6e 65 78 74 2d 68 6f 70 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 61 6e 20 69 6e | the.next-hop.interface.for.an.in |
| 336c0 | 74 65 72 66 61 63 65 2d 62 61 73 65 64 20 49 50 76 34 20 73 74 61 74 69 63 20 72 6f 75 74 65 2e | terface-based.IPv4.static.route. |
| 336e0 | 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 77 69 6c 6c 20 62 65 20 74 68 65 20 6e 65 78 74 2d | .`<interface>`.will.be.the.next- |
| 33700 | 68 6f 70 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 69 73 20 72 | hop.interface.where.traffic.is.r |
| 33720 | 6f 75 74 65 64 20 66 6f 72 20 74 68 65 20 67 69 76 65 6e 20 60 3c 73 75 62 6e 65 74 3e 60 2e 00 | outed.for.the.given.`<subnet>`.. |
| 33740 | 41 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6e 65 78 74 | Allows.you.to.configure.the.next |
| 33760 | 2d 68 6f 70 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2d | -hop.interface.for.an.interface- |
| 33780 | 62 61 73 65 64 20 49 50 76 36 20 73 74 61 74 69 63 20 72 6f 75 74 65 2e 20 60 3c 69 6e 74 65 72 | based.IPv6.static.route..`<inter |
| 337a0 | 66 61 63 65 3e 60 20 77 69 6c 6c 20 62 65 20 74 68 65 20 6e 65 78 74 2d 68 6f 70 20 69 6e 74 65 | face>`.will.be.the.next-hop.inte |
| 337c0 | 72 66 61 63 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 69 73 20 72 6f 75 74 65 64 20 66 6f | rface.where.traffic.is.routed.fo |
| 337e0 | 72 20 74 68 65 20 67 69 76 65 6e 20 60 3c 73 75 62 6e 65 74 3e 60 2e 00 41 6c 72 65 61 64 79 20 | r.the.given.`<subnet>`..Already. |
| 33800 | 6c 65 61 72 6e 65 64 20 6b 6e 6f 77 6e 5f 68 6f 73 74 73 20 66 69 6c 65 73 20 6f 66 20 63 6c 69 | learned.known_hosts.files.of.cli |
| 33820 | 65 6e 74 73 20 6e 65 65 64 20 61 6e 20 75 70 64 61 74 65 20 61 73 20 74 68 65 20 70 75 62 6c 69 | ents.need.an.update.as.the.publi |
| 33840 | 63 20 6b 65 79 20 77 69 6c 6c 20 63 68 61 6e 67 65 2e 00 41 6c 73 6f 2c 20 2a 2a 64 65 66 61 75 | c.key.will.change..Also,.**defau |
| 33860 | 6c 74 2d 61 63 74 69 6f 6e 2a 2a 20 69 73 20 61 6e 20 61 63 74 69 6f 6e 20 74 68 61 74 20 74 61 | lt-action**.is.an.action.that.ta |
| 33880 | 6b 65 73 20 70 6c 61 63 65 20 77 68 65 6e 65 76 65 72 20 61 20 70 61 63 6b 65 74 20 64 6f 65 73 | kes.place.whenever.a.packet.does |
| 338a0 | 20 6e 6f 74 20 6d 61 74 63 68 20 61 6e 79 20 72 75 6c 65 20 69 6e 20 69 74 27 73 20 63 68 61 69 | .not.match.any.rule.in.it's.chai |
| 338c0 | 6e 2e 20 46 6f 72 20 62 61 73 65 20 63 68 61 69 6e 73 2c 20 70 6f 73 73 69 62 6c 65 20 6f 70 74 | n..For.base.chains,.possible.opt |
| 338e0 | 69 6f 6e 73 20 66 6f 72 20 2a 2a 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 2a 2a 20 61 72 65 20 | ions.for.**default-action**.are. |
| 33900 | 2a 2a 61 63 63 65 70 74 2a 2a 20 6f 72 20 2a 2a 64 72 6f 70 2a 2a 2e 00 41 6c 73 6f 2c 20 2a 2a | **accept**.or.**drop**..Also,.** |
| 33920 | 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 2a 2a 20 69 73 20 61 6e 20 61 63 74 69 6f 6e 20 74 68 | default-action**.is.an.action.th |
| 33940 | 61 74 20 74 61 6b 65 73 20 70 6c 61 63 65 20 77 68 65 6e 65 76 65 72 20 61 20 70 61 63 6b 65 74 | at.takes.place.whenever.a.packet |
| 33960 | 20 64 6f 65 73 20 6e 6f 74 20 6d 61 74 63 68 20 61 6e 79 20 72 75 6c 65 20 69 6e 20 69 74 73 27 | .does.not.match.any.rule.in.its' |
| 33980 | 20 63 68 61 69 6e 2e 20 46 6f 72 20 62 61 73 65 20 63 68 61 69 6e 73 2c 20 70 6f 73 73 69 62 6c | .chain..For.base.chains,.possibl |
| 339a0 | 65 20 6f 70 74 69 6f 6e 73 20 66 6f 72 20 2a 2a 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 2a 2a | e.options.for.**default-action** |
| 339c0 | 20 61 72 65 20 2a 2a 61 63 63 65 70 74 2a 2a 20 6f 72 20 2a 2a 64 72 6f 70 2a 2a 2e 00 41 6c 73 | .are.**accept**.or.**drop**..Als |
| 339e0 | 6f 2c 20 66 6f 72 20 62 61 63 6b 77 61 72 64 73 20 63 6f 6d 70 61 74 69 62 69 6c 69 74 79 20 74 | o,.for.backwards.compatibility.t |
| 33a00 | 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 77 68 69 63 68 20 75 73 65 73 20 67 65 | his.configuration,.which.uses.ge |
| 33a20 | 6e 65 72 69 63 20 69 6e 74 65 72 66 61 63 65 20 64 65 66 69 6e 69 74 69 6f 6e 2c 20 69 73 20 73 | neric.interface.definition,.is.s |
| 33a40 | 74 69 6c 6c 20 76 61 6c 69 64 3a 00 41 6c 73 6f 2c 20 66 6f 72 20 74 68 6f 73 65 20 77 68 6f 20 | till.valid:.Also,.for.those.who. |
| 33a60 | 68 61 76 65 6e 27 74 20 75 70 64 61 74 65 64 20 74 6f 20 6e 65 77 65 72 20 76 65 72 73 69 6f 6e | haven't.updated.to.newer.version |
| 33a80 | 2c 20 6c 65 67 61 63 79 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 69 73 20 73 74 69 6c 6c 20 | ,.legacy.documentation.is.still. |
| 33aa0 | 70 72 65 73 65 6e 74 20 61 6e 64 20 76 61 6c 69 64 20 66 6f 72 20 61 6c 6c 20 73 61 67 69 74 74 | present.and.valid.for.all.sagitt |
| 33ac0 | 61 20 76 65 72 73 69 6f 6e 20 70 72 69 6f 72 20 74 6f 20 56 79 4f 53 20 31 2e 34 2d 72 6f 6c 6c | a.version.prior.to.VyOS.1.4-roll |
| 33ae0 | 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 3a 00 41 6c 73 6f 2c 20 69 66 20 61 63 74 69 6f | ing-202308040557:.Also,.if.actio |
| 33b00 | 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 71 75 65 75 65 60 60 2c 20 75 73 65 20 6e 65 78 74 20 | n.is.set.to.``queue``,.use.next. |
| 33b20 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 71 75 65 75 65 20 6f 70 74 | command.to.specify.the.queue.opt |
| 33b40 | 69 6f 6e 73 2e 20 50 6f 73 73 69 62 6c 65 20 6f 70 74 69 6f 6e 73 20 61 72 65 20 60 60 62 79 70 | ions..Possible.options.are.``byp |
| 33b60 | 61 73 73 60 60 20 61 6e 64 20 60 60 66 61 6e 6f 75 74 60 60 3a 00 41 6c 73 6f 2c 20 69 6e 20 3a | ass``.and.``fanout``:.Also,.in.: |
| 33b80 | 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 2c 20 72 65 64 69 72 65 63 74 69 | ref:`destination-nat`,.redirecti |
| 33ba0 | 6f 6e 20 74 6f 20 6c 6f 63 61 6c 68 6f 73 74 20 69 73 20 73 75 70 70 6f 72 74 65 64 2e 20 54 68 | on.to.localhost.is.supported..Th |
| 33bc0 | 65 20 72 65 64 69 72 65 63 74 20 73 74 61 74 65 6d 65 6e 74 20 69 73 20 61 20 73 70 65 63 69 61 | e.redirect.statement.is.a.specia |
| 33be0 | 6c 20 66 6f 72 6d 20 6f 66 20 64 6e 61 74 20 77 68 69 63 68 20 61 6c 77 61 79 73 20 74 72 61 6e | l.form.of.dnat.which.always.tran |
| 33c00 | 73 6c 61 74 65 73 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 74 | slates.the.destination.address.t |
| 33c20 | 6f 20 74 68 65 20 6c 6f 63 61 6c 20 68 6f 73 74 e2 80 99 73 20 6f 6e 65 2e 00 41 6c 73 6f 2c 20 | o.the.local.host...s.one..Also,. |
| 33c40 | 73 70 65 63 69 66 69 63 20 74 69 6d 65 6f 75 74 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 | specific.timeout.can.be.defined. |
| 33c60 | 70 65 72 20 72 75 6c 65 2e 20 49 6e 20 63 61 73 65 20 72 75 6c 65 20 67 65 74 73 20 61 20 68 69 | per.rule..In.case.rule.gets.a.hi |
| 33c80 | 74 2c 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 6e 61 74 69 6e 61 74 69 6f 6e 20 61 64 64 | t,.source.or.destinatination.add |
| 33ca0 | 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 64 64 65 64 20 74 6f 20 74 68 65 20 67 72 6f 75 70 2c | ress.will.be.added.to.the.group, |
| 33cc0 | 20 61 6e 64 20 74 68 69 73 20 65 6c 65 6d 65 6e 74 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 69 6e | .and.this.element.will.remain.in |
| 33ce0 | 20 74 68 65 20 67 72 6f 75 70 20 75 6e 74 69 6c 20 74 69 6d 65 6f 75 74 20 65 78 70 69 72 65 73 | .the.group.until.timeout.expires |
| 33d00 | 2e 20 49 66 20 6e 6f 20 74 69 6d 65 6f 75 74 20 69 73 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e | ..If.no.timeout.is.defined,.then |
| 33d20 | 20 74 68 65 20 65 6c 65 6d 65 6e 74 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 69 6e 20 74 68 65 20 | .the.element.will.remain.in.the. |
| 33d40 | 67 72 6f 75 70 20 75 6e 74 69 6c 20 6e 65 78 74 20 72 65 62 6f 6f 74 2c 20 6f 72 20 75 6e 74 69 | group.until.next.reboot,.or.unti |
| 33d60 | 6c 20 61 20 6e 65 77 20 63 6f 6d 6d 69 74 20 74 68 61 74 20 63 68 61 6e 67 65 73 20 66 69 72 65 | l.a.new.commit.that.changes.fire |
| 33d80 | 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 64 6f 6e 65 2e 00 41 6c 73 6f | wall.configuration.is.done..Also |
| 33da0 | 2c 20 73 70 65 63 69 66 69 63 20 74 69 6d 65 6f 75 74 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e | ,.specific.timeouts.can.be.defin |
| 33dc0 | 65 64 20 70 65 72 20 72 75 6c 65 2e 20 49 6e 20 63 61 73 65 20 72 75 6c 65 20 67 65 74 73 20 61 | ed.per.rule..In.case.rule.gets.a |
| 33de0 | 20 68 69 74 2c 20 61 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 6e 61 74 69 6e 61 74 69 6f | .hit,.a.source.or.destinatinatio |
| 33e00 | 6e 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 64 64 65 64 20 74 6f 20 74 68 65 20 67 | n.address.will.be.added.to.the.g |
| 33e20 | 72 6f 75 70 2c 20 61 6e 64 20 74 68 69 73 20 65 6c 65 6d 65 6e 74 20 77 69 6c 6c 20 72 65 6d 61 | roup,.and.this.element.will.rema |
| 33e40 | 69 6e 20 69 6e 20 74 68 65 20 67 72 6f 75 70 20 75 6e 74 69 6c 20 74 68 65 20 74 69 6d 65 6f 75 | in.in.the.group.until.the.timeou |
| 33e60 | 74 20 65 78 70 69 72 65 73 2e 20 49 66 20 6e 6f 20 74 69 6d 65 6f 75 74 20 69 73 20 64 65 66 69 | t.expires..If.no.timeout.is.defi |
| 33e80 | 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 65 6c 65 6d 65 6e 74 20 77 69 6c 6c 20 72 65 6d 61 69 | ned,.then.the.element.will.remai |
| 33ea0 | 6e 20 69 6e 20 74 68 65 20 67 72 6f 75 70 20 75 6e 74 69 6c 20 6e 65 78 74 20 72 65 62 6f 6f 74 | n.in.the.group.until.next.reboot |
| 33ec0 | 2c 20 6f 72 20 75 6e 74 69 6c 20 61 20 6e 65 77 20 63 6f 6d 6d 69 74 20 74 68 61 74 20 63 68 61 | ,.or.until.a.new.commit.that.cha |
| 33ee0 | 6e 67 65 73 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 64 | nges.firewall.configuration.is.d |
| 33f00 | 6f 6e 65 2e 00 41 6c 74 65 72 6e 61 74 65 20 52 6f 75 74 69 6e 67 20 54 61 62 6c 65 73 00 41 6c | one..Alternate.Routing.Tables.Al |
| 33f20 | 74 65 72 6e 61 74 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 73 20 61 72 65 20 75 73 65 64 20 | ternate.routing.tables.are.used. |
| 33f40 | 77 69 74 68 20 70 6f 6c 69 63 79 20 62 61 73 65 64 20 72 6f 75 74 69 6e 67 20 62 79 20 75 74 69 | with.policy.based.routing.by.uti |
| 33f60 | 6c 69 7a 69 6e 67 20 3a 72 65 66 3a 60 76 72 66 60 2e 00 41 6c 74 65 72 6e 61 74 69 76 65 20 74 | lizing.:ref:`vrf`..Alternative.t |
| 33f80 | 6f 20 6d 75 6c 74 69 63 61 73 74 2c 20 74 68 65 20 72 65 6d 6f 74 65 20 49 50 76 34 20 61 64 64 | o.multicast,.the.remote.IPv4.add |
| 33fa0 | 72 65 73 73 20 6f 66 20 74 68 65 20 56 58 4c 41 4e 20 74 75 6e 6e 65 6c 20 63 61 6e 20 62 65 20 | ress.of.the.VXLAN.tunnel.can.be. |
| 33fc0 | 73 65 74 20 64 69 72 65 63 74 6c 79 2e 20 4c 65 74 27 73 20 63 68 61 6e 67 65 20 74 68 65 20 4d | set.directly..Let's.change.the.M |
| 33fe0 | 75 6c 74 69 63 61 73 74 20 65 78 61 6d 70 6c 65 20 66 72 6f 6d 20 61 62 6f 76 65 3a 00 41 6c 74 | ulticast.example.from.above:.Alt |
| 34000 | 65 72 6e 61 74 69 76 65 6c 79 20 74 6f 20 6d 75 6c 74 69 63 61 73 74 2c 20 74 68 65 20 72 65 6d | ernatively.to.multicast,.the.rem |
| 34020 | 6f 74 65 20 49 50 76 34 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 56 58 4c 41 4e 20 74 75 | ote.IPv4.address.of.the.VXLAN.tu |
| 34040 | 6e 6e 65 6c 20 63 61 6e 20 62 65 20 73 65 74 20 64 69 72 65 63 74 6c 79 2e 20 4c 65 74 27 73 20 | nnel.can.be.set.directly..Let's. |
| 34060 | 63 68 61 6e 67 65 20 74 68 65 20 4d 75 6c 74 69 63 61 73 74 20 65 78 61 6d 70 6c 65 20 66 72 6f | change.the.Multicast.example.fro |
| 34080 | 6d 20 61 62 6f 76 65 3a 00 41 6c 77 61 79 73 20 65 78 63 6c 75 64 65 20 74 68 69 73 20 61 64 64 | m.above:.Always.exclude.this.add |
| 340a0 | 72 65 73 73 20 66 72 6f 6d 20 61 6e 79 20 64 65 66 69 6e 65 64 20 72 61 6e 67 65 2e 20 54 68 69 | ress.from.any.defined.range..Thi |
| 340c0 | 73 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 6e 65 76 65 72 20 62 65 20 61 73 73 69 67 6e 65 64 | s.address.will.never.be.assigned |
| 340e0 | 20 62 79 20 74 68 65 20 44 48 43 50 20 73 65 72 76 65 72 2e 00 41 6e 20 2a 2a 69 6e 74 65 72 66 | .by.the.DHCP.server..An.**interf |
| 34100 | 61 63 65 20 67 72 6f 75 70 2a 2a 20 72 65 70 72 65 73 65 6e 74 73 20 61 20 63 6f 6c 6c 65 63 74 | ace.group**.represents.a.collect |
| 34120 | 69 6f 6e 20 6f 66 20 69 6e 74 65 72 66 61 63 65 73 2e 00 41 6e 20 41 53 20 69 73 20 61 20 63 6f | ion.of.interfaces..An.AS.is.a.co |
| 34140 | 6e 6e 65 63 74 65 64 20 67 72 6f 75 70 20 6f 66 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 49 50 20 | nnected.group.of.one.or.more.IP. |
| 34160 | 70 72 65 66 69 78 65 73 20 72 75 6e 20 62 79 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 6e 65 74 77 | prefixes.run.by.one.or.more.netw |
| 34180 | 6f 72 6b 20 6f 70 65 72 61 74 6f 72 73 20 77 68 69 63 68 20 68 61 73 20 61 20 53 49 4e 47 4c 45 | ork.operators.which.has.a.SINGLE |
| 341a0 | 20 61 6e 64 20 43 4c 45 41 52 4c 59 20 44 45 46 49 4e 45 44 20 72 6f 75 74 69 6e 67 20 70 6f 6c | .and.CLEARLY.DEFINED.routing.pol |
| 341c0 | 69 63 79 2e 00 41 6e 20 45 74 68 65 72 6e 65 74 20 53 65 67 6d 65 6e 74 20 63 61 6e 20 62 65 20 | icy..An.Ethernet.Segment.can.be. |
| 341e0 | 63 6f 6e 66 69 67 75 72 65 64 20 62 79 20 73 70 65 63 69 66 79 69 6e 67 20 61 20 73 79 73 74 65 | configured.by.specifying.a.syste |
| 34200 | 6d 2d 4d 41 43 20 61 6e 64 20 61 20 6c 6f 63 61 6c 20 64 69 73 63 72 69 6d 69 6e 61 74 6f 72 20 | m-MAC.and.a.local.discriminator. |
| 34220 | 6f 72 20 61 20 63 6f 6d 70 6c 65 74 65 20 45 53 49 4e 41 4d 45 20 61 67 61 69 6e 73 74 20 74 68 | or.a.complete.ESINAME.against.th |
| 34240 | 65 20 62 6f 6e 64 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 74 68 65 20 50 45 2e 00 41 6e 20 49 | e.bond.interface.on.the.PE..An.I |
| 34260 | 50 76 34 20 54 43 50 20 66 69 6c 74 65 72 20 77 69 6c 6c 20 6f 6e 6c 79 20 6d 61 74 63 68 20 70 | Pv4.TCP.filter.will.only.match.p |
| 34280 | 61 63 6b 65 74 73 20 77 69 74 68 20 61 6e 20 49 50 76 34 20 68 65 61 64 65 72 20 6c 65 6e 67 74 | ackets.with.an.IPv4.header.lengt |
| 342a0 | 68 20 6f 66 20 32 30 20 62 79 74 65 73 20 28 77 68 69 63 68 20 69 73 20 74 68 65 20 6d 61 6a 6f | h.of.20.bytes.(which.is.the.majo |
| 342c0 | 72 69 74 79 20 6f 66 20 49 50 76 34 20 70 61 63 6b 65 74 73 20 61 6e 79 77 61 79 29 2e 00 41 6e | rity.of.IPv4.packets.anyway)..An |
| 342e0 | 20 53 4e 4d 50 2d 6d 61 6e 61 67 65 64 20 6e 65 74 77 6f 72 6b 20 63 6f 6e 73 69 73 74 73 20 6f | .SNMP-managed.network.consists.o |
| 34300 | 66 20 74 68 72 65 65 20 6b 65 79 20 63 6f 6d 70 6f 6e 65 6e 74 73 3a 00 41 6e 20 60 3c 69 6e 74 | f.three.key.components:.An.`<int |
| 34320 | 65 72 66 61 63 65 3e 60 20 73 70 65 63 69 66 79 69 6e 67 20 77 68 69 63 68 20 73 6c 61 76 65 20 | erface>`.specifying.which.slave. |
| 34340 | 69 73 20 74 68 65 20 70 72 69 6d 61 72 79 20 64 65 76 69 63 65 2e 20 54 68 65 20 73 70 65 63 69 | is.the.primary.device..The.speci |
| 34360 | 66 69 65 64 20 64 65 76 69 63 65 20 77 69 6c 6c 20 61 6c 77 61 79 73 20 62 65 20 74 68 65 20 61 | fied.device.will.always.be.the.a |
| 34380 | 63 74 69 76 65 20 73 6c 61 76 65 20 77 68 69 6c 65 20 69 74 20 69 73 20 61 76 61 69 6c 61 62 6c | ctive.slave.while.it.is.availabl |
| 343a0 | 65 2e 20 4f 6e 6c 79 20 77 68 65 6e 20 74 68 65 20 70 72 69 6d 61 72 79 20 69 73 20 6f 66 66 2d | e..Only.when.the.primary.is.off- |
| 343c0 | 6c 69 6e 65 20 77 69 6c 6c 20 61 6c 74 65 72 6e 61 74 65 20 64 65 76 69 63 65 73 20 62 65 20 75 | line.will.alternate.devices.be.u |
| 343e0 | 73 65 64 2e 20 54 68 69 73 20 69 73 20 75 73 65 66 75 6c 20 77 68 65 6e 20 6f 6e 65 20 73 6c 61 | sed..This.is.useful.when.one.sla |
| 34400 | 76 65 20 69 73 20 70 72 65 66 65 72 72 65 64 20 6f 76 65 72 20 61 6e 6f 74 68 65 72 2c 20 65 2e | ve.is.preferred.over.another,.e. |
| 34420 | 67 2e 2c 20 77 68 65 6e 20 6f 6e 65 20 73 6c 61 76 65 20 68 61 73 20 68 69 67 68 65 72 20 74 68 | g.,.when.one.slave.has.higher.th |
| 34440 | 72 6f 75 67 68 70 75 74 20 74 68 61 6e 20 61 6e 6f 74 68 65 72 2e 00 41 6e 20 61 64 64 69 74 69 | roughput.than.another..An.additi |
| 34460 | 6f 6e 61 6c 20 6c 61 79 65 72 20 6f 66 20 73 79 6d 6d 65 74 72 69 63 2d 6b 65 79 20 63 72 79 70 | onal.layer.of.symmetric-key.cryp |
| 34480 | 74 6f 20 63 61 6e 20 62 65 20 75 73 65 64 20 6f 6e 20 74 6f 70 20 6f 66 20 74 68 65 20 61 73 79 | to.can.be.used.on.top.of.the.asy |
| 344a0 | 6d 6d 65 74 72 69 63 20 63 72 79 70 74 6f 2e 00 41 6e 20 61 64 64 69 74 69 6f 6e 61 6c 20 6c 61 | mmetric.crypto..An.additional.la |
| 344c0 | 79 65 72 20 6f 66 20 73 79 6d 6d 65 74 72 69 63 2d 6b 65 79 20 63 72 79 70 74 6f 20 63 61 6e 20 | yer.of.symmetric-key.crypto.can. |
| 344e0 | 62 65 20 75 73 65 64 20 6f 6e 20 74 6f 70 20 6f 66 20 74 68 65 20 61 73 79 6d 6d 65 74 72 69 63 | be.used.on.top.of.the.asymmetric |
| 34500 | 20 63 72 79 70 74 6f 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 75 74 6f 6d 61 74 69 63 61 | .crypto..This.command.automatica |
| 34520 | 6c 6c 79 20 63 72 65 61 74 65 73 20 66 6f 72 20 79 6f 75 20 74 68 65 20 72 65 71 75 69 72 65 64 | lly.creates.for.you.the.required |
| 34540 | 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 69 6e 73 74 61 6c 6c 20 74 68 69 73 20 50 53 4b | .CLI.command.to.install.this.PSK |
| 34560 | 20 66 6f 72 20 61 20 67 69 76 65 6e 20 70 65 65 72 2e 00 41 6e 20 61 64 64 69 74 69 6f 6e 61 6c | .for.a.given.peer..An.additional |
| 34580 | 20 6c 61 79 65 72 20 6f 66 20 73 79 6d 6d 65 74 72 69 63 2d 6b 65 79 20 63 72 79 70 74 6f 20 63 | .layer.of.symmetric-key.crypto.c |
| 345a0 | 61 6e 20 62 65 20 75 73 65 64 20 6f 6e 20 74 6f 70 20 6f 66 20 74 68 65 20 61 73 79 6d 6d 65 74 | an.be.used.on.top.of.the.asymmet |
| 345c0 | 72 69 63 20 63 72 79 70 74 6f 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 75 74 6f 6d 61 74 | ric.crypto..This.command.automat |
| 345e0 | 69 63 61 6c 6c 79 20 63 72 65 61 74 65 73 20 74 68 65 20 72 65 71 75 69 72 65 64 20 43 4c 49 20 | ically.creates.the.required.CLI. |
| 34600 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 69 6e 73 74 61 6c 6c 20 74 68 69 73 20 50 53 4b 20 66 6f 72 20 | command.to.install.this.PSK.for. |
| 34620 | 61 20 67 69 76 65 6e 20 70 65 65 72 2e 00 41 6e 20 61 64 64 69 74 69 6f 6e 61 6c 20 6c 61 79 65 | a.given.peer..An.additional.laye |
| 34640 | 72 20 6f 66 20 73 79 6d 6d 65 74 72 69 63 2d 6b 65 79 20 63 72 79 70 74 6f 20 63 61 6e 20 62 65 | r.of.symmetric-key.crypto.can.be |
| 34660 | 20 75 73 65 64 20 6f 6e 20 74 6f 70 20 6f 66 20 74 68 65 20 61 73 79 6d 6d 65 74 72 69 63 20 63 | .used.on.top.of.the.asymmetric.c |
| 34680 | 72 79 70 74 6f 2e 20 54 68 69 73 20 69 73 20 6f 70 74 69 6f 6e 61 6c 2e 00 41 6e 20 61 64 76 61 | rypto..This.is.optional..An.adva |
| 346a0 | 6e 74 61 67 65 20 6f 66 20 74 68 69 73 20 73 63 68 65 6d 65 20 69 73 20 74 68 61 74 20 79 6f 75 | ntage.of.this.scheme.is.that.you |
| 346c0 | 20 67 65 74 20 61 20 72 65 61 6c 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 69 74 73 20 6f | .get.a.real.interface.with.its.o |
| 346e0 | 77 6e 20 61 64 64 72 65 73 73 2c 20 77 68 69 63 68 20 6d 61 6b 65 73 20 69 74 20 65 61 73 69 65 | wn.address,.which.makes.it.easie |
| 34700 | 72 20 74 6f 20 73 65 74 75 70 20 73 74 61 74 69 63 20 72 6f 75 74 65 73 20 6f 72 20 75 73 65 20 | r.to.setup.static.routes.or.use. |
| 34720 | 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 77 69 74 68 6f 75 | dynamic.routing.protocols.withou |
| 34740 | 74 20 68 61 76 69 6e 67 20 74 6f 20 6d 6f 64 69 66 79 20 49 50 73 65 63 20 70 6f 6c 69 63 69 65 | t.having.to.modify.IPsec.policie |
| 34760 | 73 2e 20 54 68 65 20 6f 74 68 65 72 20 61 64 76 61 6e 74 61 67 65 20 69 73 20 74 68 61 74 20 69 | s..The.other.advantage.is.that.i |
| 34780 | 74 20 67 72 65 61 74 6c 79 20 73 69 6d 70 6c 69 66 69 65 73 20 72 6f 75 74 65 72 20 74 6f 20 72 | t.greatly.simplifies.router.to.r |
| 347a0 | 6f 75 74 65 72 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 2c 20 77 68 69 63 68 20 63 61 6e 20 62 | outer.communication,.which.can.b |
| 347c0 | 65 20 74 72 69 63 6b 79 20 77 69 74 68 20 70 6c 61 69 6e 20 49 50 73 65 63 20 62 65 63 61 75 73 | e.tricky.with.plain.IPsec.becaus |
| 347e0 | 65 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6f 75 74 67 6f 69 6e 67 20 61 64 64 72 65 73 73 20 | e.the.external.outgoing.address. |
| 34800 | 6f 66 20 74 68 65 20 72 6f 75 74 65 72 20 75 73 75 61 6c 6c 79 20 64 6f 65 73 6e 27 74 20 6d 61 | of.the.router.usually.doesn't.ma |
| 34820 | 74 63 68 20 74 68 65 20 49 50 73 65 63 20 70 6f 6c 69 63 79 20 6f 66 20 61 20 74 79 70 69 63 61 | tch.the.IPsec.policy.of.a.typica |
| 34840 | 6c 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 73 65 74 75 70 20 61 6e 64 20 79 6f 75 20 77 6f 75 | l.site-to-site.setup.and.you.wou |
| 34860 | 6c 64 20 6e 65 65 64 20 74 6f 20 61 64 64 20 73 70 65 63 69 61 6c 20 63 6f 6e 66 69 67 75 72 61 | ld.need.to.add.special.configura |
| 34880 | 74 69 6f 6e 20 66 6f 72 20 69 74 2c 20 6f 72 20 61 64 6a 75 73 74 20 74 68 65 20 73 6f 75 72 63 | tion.for.it,.or.adjust.the.sourc |
| 348a0 | 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 20 74 72 61 66 66 69 | e.address.of.the.outgoing.traffi |
| 348c0 | 63 20 6f 66 20 79 6f 75 72 20 61 70 70 6c 69 63 61 74 69 6f 6e 73 2e 20 47 52 45 2f 49 50 73 65 | c.of.your.applications..GRE/IPse |
| 348e0 | 63 20 68 61 73 20 6e 6f 20 73 75 63 68 20 70 72 6f 62 6c 65 6d 20 61 6e 64 20 69 73 20 63 6f 6d | c.has.no.such.problem.and.is.com |
| 34900 | 70 6c 65 74 65 6c 79 20 74 72 61 6e 73 70 61 72 65 6e 74 20 66 6f 72 20 61 70 70 6c 69 63 61 74 | pletely.transparent.for.applicat |
| 34920 | 69 6f 6e 73 2e 00 41 6e 20 61 64 76 61 6e 74 61 67 65 20 6f 66 20 74 68 69 73 20 73 63 68 65 6d | ions..An.advantage.of.this.schem |
| 34940 | 65 20 69 73 20 74 68 61 74 20 79 6f 75 20 67 65 74 20 61 20 72 65 61 6c 20 69 6e 74 65 72 66 61 | e.is.that.you.get.a.real.interfa |
| 34960 | 63 65 20 77 69 74 68 20 69 74 73 20 6f 77 6e 20 61 64 64 72 65 73 73 2c 20 77 68 69 63 68 20 6d | ce.with.its.own.address,.which.m |
| 34980 | 61 6b 65 73 20 69 74 20 65 61 73 69 65 72 20 74 6f 20 73 65 74 75 70 20 73 74 61 74 69 63 20 72 | akes.it.easier.to.setup.static.r |
| 349a0 | 6f 75 74 65 73 20 6f 72 20 75 73 65 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f | outes.or.use.dynamic.routing.pro |
| 349c0 | 74 6f 63 6f 6c 73 20 77 69 74 68 6f 75 74 20 68 61 76 69 6e 67 20 74 6f 20 6d 6f 64 69 66 79 20 | tocols.without.having.to.modify. |
| 349e0 | 49 50 73 65 63 20 70 6f 6c 69 63 69 65 73 2e 20 54 68 65 20 6f 74 68 65 72 20 61 64 76 61 6e 74 | IPsec.policies..The.other.advant |
| 34a00 | 61 67 65 20 69 73 20 74 68 61 74 20 69 74 20 67 72 65 61 74 6c 79 20 73 69 6d 70 6c 69 66 69 65 | age.is.that.it.greatly.simplifie |
| 34a20 | 73 20 72 6f 75 74 65 72 20 74 6f 20 72 6f 75 74 65 72 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e | s.router.to.router.communication |
| 34a40 | 2c 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 74 72 69 63 6b 79 20 77 69 74 68 20 70 6c 61 69 6e | ,.which.can.be.tricky.with.plain |
| 34a60 | 20 49 50 73 65 63 20 62 65 63 61 75 73 65 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6f 75 74 67 | .IPsec.because.the.external.outg |
| 34a80 | 6f 69 6e 67 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 20 75 73 75 61 6c | oing.address.of.the.router.usual |
| 34aa0 | 6c 79 20 64 6f 65 73 6e 27 74 20 6d 61 74 63 68 20 74 68 65 20 49 50 73 65 63 20 70 6f 6c 69 63 | ly.doesn't.match.the.IPsec.polic |
| 34ac0 | 79 20 6f 66 20 74 79 70 69 63 61 6c 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 73 65 74 75 70 20 | y.of.typical.site-to-site.setup. |
| 34ae0 | 61 6e 64 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 61 64 64 20 73 70 65 63 69 61 6c 20 63 6f 6e 66 | and.you.need.to.add.special.conf |
| 34b00 | 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 69 74 2c 20 6f 72 20 61 64 6a 75 73 74 20 74 68 65 20 | iguration.for.it,.or.adjust.the. |
| 34b20 | 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 66 6f 72 20 6f 75 74 67 6f 69 6e 67 20 74 72 61 66 | source.address.for.outgoing.traf |
| 34b40 | 66 69 63 20 6f 66 20 79 6f 75 72 20 61 70 70 6c 69 63 61 74 69 6f 6e 73 2e 20 47 52 45 2f 49 50 | fic.of.your.applications..GRE/IP |
| 34b60 | 73 65 63 20 68 61 73 20 6e 6f 20 73 75 63 68 20 70 72 6f 62 6c 65 6d 20 61 6e 64 20 69 73 20 63 | sec.has.no.such.problem.and.is.c |
| 34b80 | 6f 6d 70 6c 65 74 65 6c 79 20 74 72 61 6e 73 70 61 72 65 6e 74 20 66 6f 72 20 74 68 65 20 61 70 | ompletely.transparent.for.the.ap |
| 34ba0 | 70 6c 69 63 61 74 69 6f 6e 73 2e 00 41 6e 20 61 67 65 6e 74 20 69 73 20 61 20 6e 65 74 77 6f 72 | plications..An.agent.is.a.networ |
| 34bc0 | 6b 2d 6d 61 6e 61 67 65 6d 65 6e 74 20 73 6f 66 74 77 61 72 65 20 6d 6f 64 75 6c 65 20 74 68 61 | k-management.software.module.tha |
| 34be0 | 74 20 72 65 73 69 64 65 73 20 6f 6e 20 61 20 6d 61 6e 61 67 65 64 20 64 65 76 69 63 65 2e 20 41 | t.resides.on.a.managed.device..A |
| 34c00 | 6e 20 61 67 65 6e 74 20 68 61 73 20 6c 6f 63 61 6c 20 6b 6e 6f 77 6c 65 64 67 65 20 6f 66 20 6d | n.agent.has.local.knowledge.of.m |
| 34c20 | 61 6e 61 67 65 6d 65 6e 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 6e 64 20 74 72 61 6e 73 6c | anagement.information.and.transl |
| 34c40 | 61 74 65 73 20 74 68 61 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 6f 72 20 66 72 6f 6d | ates.that.information.to.or.from |
| 34c60 | 20 61 6e 20 53 4e 4d 50 2d 73 70 65 63 69 66 69 63 20 66 6f 72 6d 2e 00 41 6e 20 61 6c 74 65 72 | .an.SNMP-specific.form..An.alter |
| 34c80 | 6e 61 74 65 20 63 6f 6d 6d 61 6e 64 20 63 6f 75 6c 64 20 62 65 20 22 6d 70 6c 73 2d 74 65 20 6f | nate.command.could.be."mpls-te.o |
| 34ca0 | 6e 22 20 28 54 72 61 66 66 69 63 20 45 6e 67 69 6e 65 65 72 69 6e 67 29 00 41 6e 20 61 72 62 69 | n".(Traffic.Engineering).An.arbi |
| 34cc0 | 74 72 61 72 79 20 6e 65 74 6d 61 73 6b 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 | trary.netmask.can.be.applied.to. |
| 34ce0 | 6d 61 73 6b 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 6f 6e 6c 79 20 6d 61 74 63 68 20 61 67 61 | mask.addresses.to.only.match.aga |
| 34d00 | 69 6e 73 74 20 61 20 73 70 65 63 69 66 69 63 20 70 6f 72 74 69 6f 6e 2e 00 41 6e 20 61 72 62 69 | inst.a.specific.portion..An.arbi |
| 34d20 | 74 72 61 72 79 20 6e 65 74 6d 61 73 6b 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 | trary.netmask.can.be.applied.to. |
| 34d40 | 6d 61 73 6b 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 6f 6e 6c 79 20 6d 61 74 63 68 20 61 67 61 | mask.addresses.to.only.match.aga |
| 34d60 | 69 6e 73 74 20 61 20 73 70 65 63 69 66 69 63 20 70 6f 72 74 69 6f 6e 2e 20 54 68 69 73 20 69 73 | inst.a.specific.portion..This.is |
| 34d80 | 20 70 61 72 74 69 63 75 6c 61 72 6c 79 20 75 73 65 66 75 6c 20 77 69 74 68 20 49 50 76 36 20 61 | .particularly.useful.with.IPv6.a |
| 34da0 | 6e 64 20 61 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 20 61 73 20 72 75 6c 65 | nd.a.zone-based.firewall.as.rule |
| 34dc0 | 73 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 76 61 6c 69 64 20 69 66 20 74 68 65 20 49 50 76 36 20 | s.will.remain.valid.if.the.IPv6. |
| 34de0 | 70 72 65 66 69 78 20 63 68 61 6e 67 65 73 20 61 6e 64 20 74 68 65 20 68 6f 73 74 20 70 6f 72 74 | prefix.changes.and.the.host.port |
| 34e00 | 69 6f 6e 20 6f 66 20 73 79 73 74 65 6d 73 20 49 50 76 36 20 61 64 64 72 65 73 73 20 69 73 20 73 | ion.of.systems.IPv6.address.is.s |
| 34e20 | 74 61 74 69 63 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 2c 20 77 69 74 68 20 53 4c 41 41 43 20 6f | tatic.(for.example,.with.SLAAC.o |
| 34e40 | 72 20 60 74 6f 6b 65 6e 69 73 65 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 3c 68 74 74 | r.`tokenised.IPv6.addresses.<htt |
| 34e60 | 70 73 3a 2f 2f 64 61 74 61 74 72 61 63 6b 65 72 2e 69 65 74 66 2e 6f 72 67 2f 64 6f 63 2f 69 64 | ps://datatracker.ietf.org/doc/id |
| 34e80 | 2f 64 72 61 66 74 2d 63 68 6f 77 6e 2d 36 6d 61 6e 2d 74 6f 6b 65 6e 69 73 65 64 2d 69 70 76 36 | /draft-chown-6man-tokenised-ipv6 |
| 34ea0 | 2d 69 64 65 6e 74 69 66 69 65 72 73 2d 30 32 2e 74 78 74 3e 60 5f 29 00 41 6e 20 61 72 62 69 74 | -identifiers-02.txt>`_).An.arbit |
| 34ec0 | 72 61 72 79 20 6e 65 74 6d 61 73 6b 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 6d | rary.netmask.can.be.applied.to.m |
| 34ee0 | 61 73 6b 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 6f 6e 6c 79 20 6d 61 74 63 68 20 61 67 61 69 | ask.addresses.to.only.match.agai |
| 34f00 | 6e 73 74 20 61 20 73 70 65 63 69 66 69 63 20 70 6f 72 74 69 6f 6e 2e 20 54 68 69 73 20 69 73 20 | nst.a.specific.portion..This.is. |
| 34f20 | 70 61 72 74 69 63 75 6c 61 72 6c 79 20 75 73 65 66 75 6c 20 77 69 74 68 20 49 50 76 36 20 61 6e | particularly.useful.with.IPv6.an |
| 34f40 | 64 20 61 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 20 61 73 20 72 75 6c 65 73 | d.a.zone-based.firewall.as.rules |
| 34f60 | 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 76 61 6c 69 64 20 69 66 20 74 68 65 20 49 50 76 36 20 70 | .will.remain.valid.if.the.IPv6.p |
| 34f80 | 72 65 66 69 78 20 63 68 61 6e 67 65 73 20 61 6e 64 20 74 68 65 20 68 6f 73 74 20 70 6f 72 74 69 | refix.changes.and.the.host.porti |
| 34fa0 | 6f 6e 20 6f 66 20 73 79 73 74 65 6d 73 20 49 50 76 36 20 61 64 64 72 65 73 73 20 69 73 20 73 74 | on.of.systems.IPv6.address.is.st |
| 34fc0 | 61 74 69 63 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 2c 20 77 69 74 68 20 53 4c 41 41 43 20 6f 72 | atic.(for.example,.with.SLAAC.or |
| 34fe0 | 20 60 74 6f 6b 65 6e 69 73 65 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 3c 68 74 74 70 | .`tokenised.IPv6.addresses.<http |
| 35000 | 73 3a 2f 2f 64 61 74 61 74 72 61 63 6b 65 72 2e 69 65 74 66 2e 6f 72 67 2f 64 6f 63 2f 69 64 2f | s://datatracker.ietf.org/doc/id/ |
| 35020 | 64 72 61 66 74 2d 63 68 6f 77 6e 2d 36 6d 61 6e 2d 74 6f 6b 65 6e 69 73 65 64 2d 69 70 76 36 2d | draft-chown-6man-tokenised-ipv6- |
| 35040 | 69 64 65 6e 74 69 66 69 65 72 73 2d 30 32 2e 74 78 74 3e 60 5f 29 2e 00 41 6e 20 61 72 62 69 74 | identifiers-02.txt>`_)..An.arbit |
| 35060 | 72 61 72 79 20 6e 65 74 6d 61 73 6b 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 6d | rary.netmask.can.be.applied.to.m |
| 35080 | 61 73 6b 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 6f 6e 6c 79 20 6d 61 74 63 68 20 61 67 61 69 | ask.addresses.to.only.match.agai |
| 350a0 | 6e 73 74 20 61 20 73 70 65 63 69 66 69 63 20 70 6f 72 74 69 6f 6e 2e 20 54 68 69 73 20 69 73 20 | nst.a.specific.portion..This.is. |
| 350c0 | 70 61 72 74 69 63 75 6c 61 72 6c 79 20 75 73 65 66 75 6c 20 77 69 74 68 20 49 50 76 36 20 61 73 | particularly.useful.with.IPv6.as |
| 350e0 | 20 72 75 6c 65 73 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 76 61 6c 69 64 20 69 66 20 74 68 65 20 | .rules.will.remain.valid.if.the. |
| 35100 | 49 50 76 36 20 70 72 65 66 69 78 20 63 68 61 6e 67 65 73 20 61 6e 64 20 74 68 65 20 68 6f 73 74 | IPv6.prefix.changes.and.the.host |
| 35120 | 20 70 6f 72 74 69 6f 6e 20 6f 66 20 73 79 73 74 65 6d 73 20 49 50 76 36 20 61 64 64 72 65 73 73 | .portion.of.systems.IPv6.address |
| 35140 | 20 69 73 20 73 74 61 74 69 63 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 2c 20 77 69 74 68 20 53 4c | .is.static.(for.example,.with.SL |
| 35160 | 41 41 43 20 6f 72 20 60 74 6f 6b 65 6e 69 73 65 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 | AAC.or.`tokenised.IPv6.addresses |
| 35180 | 20 3c 68 74 74 70 73 3a 2f 2f 64 61 74 61 74 72 61 63 6b 65 72 2e 69 65 74 66 2e 6f 72 67 20 2f | .<https://datatracker.ietf.org./ |
| 351a0 | 64 6f 63 2f 69 64 2f 64 72 61 66 74 2d 63 68 6f 77 6e 2d 36 6d 61 6e 2d 74 6f 6b 65 6e 69 73 65 | doc/id/draft-chown-6man-tokenise |
| 351c0 | 64 2d 69 70 76 36 2d 69 64 65 6e 74 69 66 69 65 72 73 2d 30 32 2e 74 78 74 3e 60 5f 29 00 41 6e | d-ipv6-identifiers-02.txt>`_).An |
| 351e0 | 20 61 72 62 69 74 72 61 72 79 20 6e 65 74 6d 61 73 6b 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 | .arbitrary.netmask.can.be.applie |
| 35200 | 64 20 74 6f 20 6d 61 73 6b 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 6f 6e 6c 79 20 6d 61 74 63 | d.to.mask.addresses.to.only.matc |
| 35220 | 68 20 61 67 61 69 6e 73 74 20 61 20 73 70 65 63 69 66 69 63 20 70 6f 72 74 69 6f 6e 2e 20 54 68 | h.against.a.specific.portion..Th |
| 35240 | 69 73 20 69 73 20 70 61 72 74 69 63 75 6c 61 72 6c 79 20 75 73 65 66 75 6c 20 77 69 74 68 20 49 | is.is.particularly.useful.with.I |
| 35260 | 50 76 36 20 61 73 20 72 75 6c 65 73 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 76 61 6c 69 64 20 69 | Pv6.as.rules.will.remain.valid.i |
| 35280 | 66 20 74 68 65 20 49 50 76 36 20 70 72 65 66 69 78 20 63 68 61 6e 67 65 73 20 61 6e 64 20 74 68 | f.the.IPv6.prefix.changes.and.th |
| 352a0 | 65 20 68 6f 73 74 20 70 6f 72 74 69 6f 6e 20 6f 66 20 73 79 73 74 65 6d 73 20 49 50 76 36 20 61 | e.host.portion.of.systems.IPv6.a |
| 352c0 | 64 64 72 65 73 73 20 69 73 20 73 74 61 74 69 63 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 2c 20 77 | ddress.is.static.(for.example,.w |
| 352e0 | 69 74 68 20 53 4c 41 41 43 20 6f 72 20 60 74 6f 6b 65 6e 69 73 65 64 20 49 50 76 36 20 61 64 64 | ith.SLAAC.or.`tokenised.IPv6.add |
| 35300 | 72 65 73 73 65 73 20 3c 68 74 74 70 73 3a 2f 2f 64 61 74 61 74 72 61 63 6b 65 72 2e 69 65 74 66 | resses.<https://datatracker.ietf |
| 35320 | 2e 6f 72 67 2f 64 6f 63 2f 69 64 2f 64 72 61 66 74 2d 63 68 6f 77 6e 2d 36 6d 61 6e 2d 74 6f 6b | .org/doc/id/draft-chown-6man-tok |
| 35340 | 65 6e 69 73 65 64 2d 69 70 76 36 2d 69 64 65 6e 74 69 66 69 65 72 73 2d 30 32 2e 74 78 74 3e 60 | enised-ipv6-identifiers-02.txt>` |
| 35360 | 5f 29 00 41 6e 20 62 61 73 69 63 20 69 6e 74 72 6f 64 75 63 74 69 6f 6e 20 74 6f 20 7a 6f 6e 65 | _).An.basic.introduction.to.zone |
| 35380 | 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 73 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 60 68 | -based.firewalls.can.be.found.`h |
| 353a0 | 65 72 65 20 3c 68 74 74 70 73 3a 2f 2f 73 75 70 70 6f 72 74 2e 76 79 6f 73 2e 69 6f 2f 65 6e 2f | ere.<https://support.vyos.io/en/ |
| 353c0 | 6b 62 2f 61 72 74 69 63 6c 65 73 2f 61 2d 70 72 69 6d 65 72 2d 74 6f 2d 7a 6f 6e 65 2d 62 61 73 | kb/articles/a-primer-to-zone-bas |
| 353e0 | 65 64 2d 66 69 72 65 77 61 6c 6c 3e 60 5f 2c 20 61 6e 64 20 61 6e 20 65 78 61 6d 70 6c 65 20 61 | ed-firewall>`_,.and.an.example.a |
| 35400 | 74 20 3a 72 65 66 3a 60 65 78 61 6d 70 6c 65 73 2d 7a 6f 6e 65 2d 70 6f 6c 69 63 79 60 2e 00 41 | t.:ref:`examples-zone-policy`..A |
| 35420 | 6e 20 65 78 61 6d 70 6c 65 20 6f 66 20 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 | n.example.of.a.configuration.tha |
| 35440 | 74 20 73 65 6e 64 73 20 60 60 74 65 6c 65 67 72 61 66 60 60 20 6d 65 74 72 69 63 73 20 74 6f 20 | t.sends.``telegraf``.metrics.to. |
| 35460 | 72 65 6d 6f 74 65 20 60 60 49 6e 66 6c 75 78 44 42 20 32 60 60 00 41 6e 20 65 78 61 6d 70 6c 65 | remote.``InfluxDB.2``.An.example |
| 35480 | 20 6f 66 20 63 72 65 61 74 69 6e 67 20 61 20 56 4c 41 4e 2d 61 77 61 72 65 20 62 72 69 64 67 65 | .of.creating.a.VLAN-aware.bridge |
| 354a0 | 20 69 73 20 61 73 20 66 6f 6c 6c 6f 77 73 3a 00 41 6e 20 65 78 61 6d 70 6c 65 20 6f 66 20 6b 65 | .is.as.follows:.An.example.of.ke |
| 354c0 | 79 20 67 65 6e 65 72 61 74 69 6f 6e 3a 00 41 6e 20 65 78 61 6d 70 6c 65 20 6f 66 20 74 68 65 20 | y.generation:.An.example.of.the. |
| 354e0 | 64 61 74 61 20 63 61 70 74 75 72 65 64 20 62 79 20 61 20 46 52 45 45 52 41 44 49 55 53 20 73 65 | data.captured.by.a.FREERADIUS.se |
| 35500 | 72 76 65 72 20 77 69 74 68 20 73 71 6c 20 61 63 63 6f 75 6e 74 69 6e 67 3a 00 41 6e 20 65 78 61 | rver.with.sql.accounting:.An.exa |
| 35520 | 6d 70 6c 65 3a 00 41 6e 20 6f 70 74 69 6f 6e 20 74 68 61 74 20 74 61 6b 65 73 20 61 20 71 75 6f | mple:.An.option.that.takes.a.quo |
| 35540 | 74 65 64 20 73 74 72 69 6e 67 20 69 73 20 73 65 74 20 62 79 20 72 65 70 6c 61 63 69 6e 67 20 61 | ted.string.is.set.by.replacing.a |
| 35560 | 6c 6c 20 71 75 6f 74 65 20 63 68 61 72 61 63 74 65 72 73 20 77 69 74 68 20 74 68 65 20 73 74 72 | ll.quote.characters.with.the.str |
| 35580 | 69 6e 67 20 60 60 26 71 75 6f 74 3b 60 60 20 69 6e 73 69 64 65 20 74 68 65 20 73 74 61 74 69 63 | ing.``"``.inside.the.static |
| 355a0 | 2d 6d 61 70 70 69 6e 67 2d 70 61 72 61 6d 65 74 65 72 73 20 76 61 6c 75 65 2e 20 54 68 65 20 72 | -mapping-parameters.value..The.r |
| 355c0 | 65 73 75 6c 74 69 6e 67 20 6c 69 6e 65 20 69 6e 20 64 68 63 70 64 2e 63 6f 6e 66 20 77 69 6c 6c | esulting.line.in.dhcpd.conf.will |
| 355e0 | 20 62 65 20 60 60 6f 70 74 69 6f 6e 20 70 78 65 6c 69 6e 75 78 2e 63 6f 6e 66 69 67 66 69 6c 65 | .be.``option.pxelinux.configfile |
| 35600 | 20 22 70 78 65 6c 69 6e 75 78 2e 63 66 67 2f 30 31 2d 30 30 2d 31 35 2d 31 37 2d 34 34 2d 32 64 | ."pxelinux.cfg/01-00-15-17-44-2d |
| 35620 | 2d 61 61 22 3b 60 60 2e 00 41 6e 61 6c 79 73 69 73 20 6f 6e 20 77 68 61 74 20 68 61 70 70 65 6e | -aa";``..Analysis.on.what.happen |
| 35640 | 73 20 66 6f 72 20 64 65 73 69 72 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 3a 00 41 6e 64 20 62 61 | s.for.desired.connection:.And.ba |
| 35660 | 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 66 66 69 63 20 67 65 6e 65 72 61 74 65 64 20 62 | se.chain.for.traffic.generated.b |
| 35680 | 79 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 | y.the.router.is.``set.firewall.i |
| 356a0 | 70 76 34 20 6f 75 74 70 75 74 20 2e 2e 2e 60 60 2c 20 77 68 65 72 65 20 74 77 6f 20 73 75 62 2d | pv4.output....``,.where.two.sub- |
| 356c0 | 63 68 61 69 6e 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 3a 20 2a 2a 66 69 6c 74 65 72 2a 2a | chains.are.available:.**filter** |
| 356e0 | 20 61 6e 64 20 2a 2a 72 61 77 2a 2a 3a 00 41 6e 64 20 62 61 73 65 20 63 68 61 69 6e 20 66 6f 72 | .and.**raw**:.And.base.chain.for |
| 35700 | 20 74 72 61 66 66 69 63 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 | .traffic.generated.by.the.router |
| 35720 | 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 6f 75 74 70 75 74 20 66 | .is.``set.firewall.ipv4.output.f |
| 35740 | 69 6c 74 65 72 20 2e 2e 2e 60 60 00 41 6e 64 20 62 61 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 | ilter....``.And.base.chain.for.t |
| 35760 | 72 61 66 66 69 63 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 69 | raffic.generated.by.the.router.i |
| 35780 | 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 6f 75 74 70 75 74 20 66 69 6c | s.``set.firewall.ipv6.output.fil |
| 357a0 | 74 65 72 20 2e 2e 2e 60 60 00 41 6e 64 20 62 61 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 | ter....``.And.base.chain.for.tra |
| 357c0 | 66 66 69 63 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 | ffic.generated.by.the.router.is. |
| 357e0 | 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 6f 75 74 70 75 74 20 66 69 6c 74 65 | ``set.firewall.ipv6.output.filte |
| 35800 | 72 20 2e 2e 2e 60 60 2c 20 77 68 65 72 65 20 74 77 6f 20 73 75 62 2d 63 68 61 69 6e 73 20 61 72 | r....``,.where.two.sub-chains.ar |
| 35820 | 65 20 61 76 61 69 6c 61 62 6c 65 3a 20 2a 2a 66 69 6c 74 65 72 2a 2a 20 61 6e 64 20 2a 2a 72 61 | e.available:.**filter**.and.**ra |
| 35840 | 77 2a 2a 3a 00 41 6e 64 20 63 6f 6e 74 65 6e 74 20 6f 66 20 74 68 65 20 73 63 72 69 70 74 3a 00 | w**:.And.content.of.the.script:. |
| 35860 | 41 6e 64 20 66 6f 72 20 69 70 76 36 3a 00 41 6e 64 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 68 | And.for.ipv6:.And.for.traffic.th |
| 35880 | 61 74 20 6f 72 69 67 69 6e 61 74 65 73 20 66 72 6f 6d 20 74 68 65 20 62 72 69 64 67 65 20 69 74 | at.originates.from.the.bridge.it |
| 358a0 | 73 65 6c 66 2c 20 74 68 65 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 6f 75 74 70 75 74 | self,.the.base.chain.is.**output |
| 358c0 | 2a 2a 2c 20 62 61 73 65 20 63 6f 6d 6d 61 6e 64 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 | **,.base.command.is.``set.firewa |
| 358e0 | 6c 6c 20 62 72 69 64 67 65 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 61 | ll.bridge.output.filter....``,.a |
| 35900 | 6e 64 20 74 68 65 20 70 61 74 68 20 69 73 3a 00 41 6e 64 20 6e 65 78 74 2c 20 73 6f 6d 65 20 63 | nd.the.path.is:.And.next,.some.c |
| 35920 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 78 61 6d 70 6c 65 20 77 68 65 72 65 20 67 72 6f 75 70 | onfiguration.example.where.group |
| 35940 | 73 20 61 72 65 20 75 73 65 64 3a 00 41 6e 64 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 | s.are.used:.And.op-mode.commands |
| 35960 | 3a 00 41 6e 64 20 74 68 65 20 62 61 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 66 66 69 63 | :.And.the.base.chain.for.traffic |
| 35980 | 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 | .generated.by.the.router.is.``se |
| 359a0 | 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 6f 75 74 70 75 74 20 2e 2e 2e 60 60 2c 20 77 68 | t.firewall.ipv4.output....``,.wh |
| 359c0 | 65 72 65 20 74 77 6f 20 73 75 62 2d 63 68 61 69 6e 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 | ere.two.sub-chains.are.available |
| 359e0 | 3a 20 2a 2a 66 69 6c 74 65 72 2a 2a 20 61 6e 64 20 2a 2a 72 61 77 2a 2a 3a 00 41 6e 64 20 74 68 | :.**filter**.and.**raw**:.And.th |
| 35a00 | 65 20 62 61 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 66 66 69 63 20 67 65 6e 65 72 61 74 | e.base.chain.for.traffic.generat |
| 35a20 | 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 | ed.by.the.router.is.``set.firewa |
| 35a40 | 6c 6c 20 69 70 76 36 20 6f 75 74 70 75 74 20 2e 2e 2e 60 60 2c 20 77 68 65 72 65 20 74 77 6f 20 | ll.ipv6.output....``,.where.two. |
| 35a60 | 73 75 62 2d 63 68 61 69 6e 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 3a 20 2a 2a 66 69 6c 74 | sub-chains.are.available:.**filt |
| 35a80 | 65 72 2a 2a 20 61 6e 64 20 2a 2a 72 61 77 2a 2a 3a 00 41 6e 64 20 74 68 65 20 64 69 66 66 65 72 | er**.and.**raw**:.And.the.differ |
| 35aa0 | 65 6e 74 20 49 50 76 34 20 2a 2a 72 65 73 65 74 2a 2a 20 63 6f 6d 6d 61 6e 64 73 20 61 76 61 69 | ent.IPv4.**reset**.commands.avai |
| 35ac0 | 6c 61 62 6c 65 3a 00 41 6e 64 20 74 68 65 6e 20 68 61 73 68 20 69 73 20 72 65 64 75 63 65 64 20 | lable:.And.then.hash.is.reduced. |
| 35ae0 | 6d 6f 64 75 6c 6f 20 73 6c 61 76 65 20 63 6f 75 6e 74 2e 00 41 6e 64 2c 20 74 6f 20 70 72 69 6e | modulo.slave.count..And,.to.prin |
| 35b00 | 74 20 6f 6e 6c 79 20 62 72 69 64 67 65 20 66 69 72 65 77 61 6c 6c 20 69 6e 66 6f 72 6d 61 74 69 | t.only.bridge.firewall.informati |
| 35b20 | 6f 6e 3a 00 41 6e 6f 74 68 65 72 20 74 65 72 6d 20 6f 66 74 65 6e 20 75 73 65 64 20 66 6f 72 20 | on:.Another.term.often.used.for. |
| 35b40 | 44 4e 41 54 20 69 73 20 2a 2a 31 2d 74 6f 2d 31 20 4e 41 54 2a 2a 2e 20 46 6f 72 20 61 20 31 2d | DNAT.is.**1-to-1.NAT**..For.a.1- |
| 35b60 | 74 6f 2d 31 20 4e 41 54 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 62 6f 74 68 20 44 4e 41 | to-1.NAT.configuration,.both.DNA |
| 35b80 | 54 20 61 6e 64 20 53 4e 41 54 20 61 72 65 20 75 73 65 64 20 74 6f 20 4e 41 54 20 61 6c 6c 20 74 | T.and.SNAT.are.used.to.NAT.all.t |
| 35ba0 | 72 61 66 66 69 63 20 66 72 6f 6d 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 | raffic.from.an.external.IP.addre |
| 35bc0 | 73 73 20 74 6f 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 61 6e 64 | ss.to.an.internal.IP.address.and |
| 35be0 | 20 76 69 63 65 2d 76 65 72 73 61 2e 00 41 6e 6f 74 68 65 72 20 74 68 69 6e 67 20 74 6f 20 6b 65 | .vice-versa..Another.thing.to.ke |
| 35c00 | 65 70 20 69 6e 20 6d 69 6e 64 20 77 69 74 68 20 4c 44 50 20 69 73 20 74 68 61 74 20 6d 75 63 68 | ep.in.mind.with.LDP.is.that.much |
| 35c20 | 20 6c 69 6b 65 20 42 47 50 2c 20 69 74 20 69 73 20 61 20 70 72 6f 74 6f 63 6f 6c 20 74 68 61 74 | .like.BGP,.it.is.a.protocol.that |
| 35c40 | 20 72 75 6e 73 20 6f 6e 20 74 6f 70 20 6f 66 20 54 43 50 2e 20 49 74 20 68 6f 77 65 76 65 72 20 | .runs.on.top.of.TCP..It.however. |
| 35c60 | 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 20 61 6e 20 61 62 69 6c 69 74 79 20 74 6f 20 64 6f 20 73 | does.not.have.an.ability.to.do.s |
| 35c80 | 6f 6d 65 74 68 69 6e 67 20 6c 69 6b 65 20 61 20 72 65 66 72 65 73 68 20 63 61 70 61 62 69 6c 69 | omething.like.a.refresh.capabili |
| 35ca0 | 74 79 20 6c 69 6b 65 20 42 47 50 73 20 72 6f 75 74 65 20 72 65 66 72 65 73 68 20 63 61 70 61 62 | ty.like.BGPs.route.refresh.capab |
| 35cc0 | 69 6c 69 74 79 2e 20 54 68 65 72 65 66 6f 72 65 20 6f 6e 65 20 6d 69 67 68 74 20 68 61 76 65 20 | ility..Therefore.one.might.have. |
| 35ce0 | 74 6f 20 72 65 73 65 74 20 74 68 65 20 6e 65 69 67 68 62 6f 72 20 66 6f 72 20 61 20 63 61 70 61 | to.reset.the.neighbor.for.a.capa |
| 35d00 | 62 69 6c 69 74 79 20 63 68 61 6e 67 65 20 6f 72 20 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | bility.change.or.a.configuration |
| 35d20 | 20 63 68 61 6e 67 65 20 74 6f 20 77 6f 72 6b 2e 00 41 70 70 6c 65 20 69 4f 53 2f 69 50 61 64 4f | .change.to.work..Apple.iOS/iPadO |
| 35d40 | 53 20 28 31 34 2e 32 2b 29 00 41 70 70 6c 65 20 69 4f 53 2f 69 50 61 64 4f 53 20 65 78 70 65 63 | S.(14.2+).Apple.iOS/iPadOS.expec |
| 35d60 | 74 73 20 74 68 65 20 73 65 72 76 65 72 20 6e 61 6d 65 20 74 6f 20 62 65 20 61 6c 73 6f 20 75 73 | ts.the.server.name.to.be.also.us |
| 35d80 | 65 64 20 69 6e 20 74 68 65 20 73 65 72 76 65 72 27 73 20 63 65 72 74 69 66 69 63 61 74 65 20 63 | ed.in.the.server's.certificate.c |
| 35da0 | 6f 6d 6d 6f 6e 20 6e 61 6d 65 2c 20 73 6f 20 69 74 27 73 20 62 65 73 74 20 74 6f 20 75 73 65 20 | ommon.name,.so.it's.best.to.use. |
| 35dc0 | 74 68 69 73 20 44 4e 53 20 6e 61 6d 65 20 66 6f 72 20 79 6f 75 72 20 56 50 4e 20 63 6f 6e 6e 65 | this.DNS.name.for.your.VPN.conne |
| 35de0 | 63 74 69 6f 6e 2e 00 41 70 70 6c 79 20 61 20 72 6f 75 74 65 2d 6d 61 70 20 66 69 6c 74 65 72 20 | ction..Apply.a.route-map.filter. |
| 35e00 | 74 6f 20 72 6f 75 74 65 73 20 66 6f 72 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 72 6f 74 | to.routes.for.the.specified.prot |
| 35e20 | 6f 63 6f 6c 2e 00 41 70 70 6c 79 20 61 20 72 6f 75 74 65 2d 6d 61 70 20 66 69 6c 74 65 72 20 74 | ocol..Apply.a.route-map.filter.t |
| 35e40 | 6f 20 72 6f 75 74 65 73 20 66 6f 72 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 72 6f 74 6f | o.routes.for.the.specified.proto |
| 35e60 | 63 6f 6c 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 63 61 6e | col..The.following.protocols.can |
| 35e80 | 20 62 65 20 75 73 65 64 3a 20 61 6e 79 2c 20 62 61 62 65 6c 2c 20 62 67 70 2c 20 63 6f 6e 6e 65 | .be.used:.any,.babel,.bgp,.conne |
| 35ea0 | 63 74 65 64 2c 20 65 69 67 72 70 2c 20 69 73 69 73 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c | cted,.eigrp,.isis,.kernel,.ospf, |
| 35ec0 | 20 72 69 70 2c 20 73 74 61 74 69 63 2c 20 74 61 62 6c 65 00 41 70 70 6c 79 20 61 20 72 6f 75 74 | .rip,.static,.table.Apply.a.rout |
| 35ee0 | 65 2d 6d 61 70 20 66 69 6c 74 65 72 20 74 6f 20 72 6f 75 74 65 73 20 66 6f 72 20 74 68 65 20 73 | e-map.filter.to.routes.for.the.s |
| 35f00 | 70 65 63 69 66 69 65 64 20 70 72 6f 74 6f 63 6f 6c 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 | pecified.protocol..The.following |
| 35f20 | 20 70 72 6f 74 6f 63 6f 6c 73 20 63 61 6e 20 62 65 20 75 73 65 64 3a 20 61 6e 79 2c 20 62 61 62 | .protocols.can.be.used:.any,.bab |
| 35f40 | 65 6c 2c 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 69 73 69 73 2c 20 6b 65 72 6e 65 6c | el,.bgp,.connected,.isis,.kernel |
| 35f60 | 2c 20 6f 73 70 66 76 33 2c 20 72 69 70 6e 67 2c 20 73 74 61 74 69 63 2c 20 74 61 62 6c 65 00 41 | ,.ospfv3,.ripng,.static,.table.A |
| 35f80 | 70 70 6c 79 20 72 6f 75 74 69 6e 67 20 70 6f 6c 69 63 79 20 74 6f 20 2a 2a 69 6e 62 6f 75 6e 64 | pply.routing.policy.to.**inbound |
| 35fa0 | 2a 2a 20 64 69 72 65 63 74 69 6f 6e 20 6f 66 20 6f 75 74 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 | **.direction.of.out.VLAN.interfa |
| 35fc0 | 63 65 73 00 41 70 70 6c 79 69 6e 67 20 61 20 52 75 6c 65 2d 53 65 74 20 74 6f 20 61 20 5a 6f 6e | ces.Applying.a.Rule-Set.to.a.Zon |
| 35fe0 | 65 00 41 70 70 6c 79 69 6e 67 20 61 20 52 75 6c 65 2d 53 65 74 20 74 6f 20 61 6e 20 49 6e 74 65 | e.Applying.a.Rule-Set.to.an.Inte |
| 36000 | 72 66 61 63 65 00 41 70 70 6c 79 69 6e 67 20 61 20 74 72 61 66 66 69 63 20 70 6f 6c 69 63 79 00 | rface.Applying.a.traffic.policy. |
| 36020 | 41 72 65 61 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 41 72 65 61 20 69 64 65 6e 74 69 66 69 | Area.Configuration.Area.identifi |
| 36040 | 65 72 3a 20 60 60 30 30 30 31 60 60 20 49 53 2d 49 53 20 61 72 65 61 20 6e 75 6d 62 65 72 20 28 | er:.``0001``.IS-IS.area.number.( |
| 36060 | 6e 75 6d 62 65 72 69 63 61 6c 20 61 72 65 61 20 60 60 31 60 60 29 00 41 72 65 61 20 69 64 65 6e | numberical.area.``1``).Area.iden |
| 36080 | 74 69 66 69 65 72 3a 20 60 60 30 30 30 31 60 60 20 49 53 2d 49 53 20 61 72 65 61 20 6e 75 6d 62 | tifier:.``0001``.IS-IS.area.numb |
| 360a0 | 65 72 20 28 6e 75 6d 65 72 69 63 61 6c 20 61 72 65 61 20 60 60 31 60 60 29 00 41 72 65 61 20 69 | er.(numerical.area.``1``).Area.i |
| 360c0 | 64 65 6e 74 69 66 69 65 72 3a 20 60 60 30 30 30 31 60 60 20 4f 70 65 6e 46 61 62 72 69 63 20 61 | dentifier:.``0001``.OpenFabric.a |
| 360e0 | 72 65 61 20 6e 75 6d 62 65 72 20 28 6e 75 6d 65 72 69 63 61 6c 20 61 72 65 61 20 60 60 31 60 60 | rea.number.(numerical.area.``1`` |
| 36100 | 29 00 41 72 67 75 6d 65 6e 74 73 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 70 61 73 73 65 64 | ).Arguments.which.will.be.passed |
| 36120 | 20 74 6f 20 74 68 65 20 65 78 65 63 75 74 61 62 6c 65 2e 00 41 72 69 73 74 61 20 45 4f 53 00 41 | .to.the.executable..Arista.EOS.A |
| 36140 | 72 75 62 61 2f 48 50 00 41 73 20 49 6e 74 65 72 6e 65 74 20 77 69 64 65 20 50 4d 54 55 20 64 69 | ruba/HP.As.Internet.wide.PMTU.di |
| 36160 | 73 63 6f 76 65 72 79 20 72 61 72 65 6c 79 20 77 6f 72 6b 73 2c 20 77 65 20 73 6f 6d 65 74 69 6d | scovery.rarely.works,.we.sometim |
| 36180 | 65 73 20 6e 65 65 64 20 74 6f 20 63 6c 61 6d 70 20 6f 75 72 20 54 43 50 20 4d 53 53 20 76 61 6c | es.need.to.clamp.our.TCP.MSS.val |
| 361a0 | 75 65 20 74 6f 20 61 20 73 70 65 63 69 66 69 63 20 76 61 6c 75 65 2e 20 54 68 69 73 20 69 73 20 | ue.to.a.specific.value..This.is. |
| 361c0 | 61 20 66 69 65 6c 64 20 69 6e 20 74 68 65 20 54 43 50 20 6f 70 74 69 6f 6e 73 20 70 61 72 74 20 | a.field.in.the.TCP.options.part. |
| 361e0 | 6f 66 20 61 20 53 59 4e 20 70 61 63 6b 65 74 2e 20 42 79 20 73 65 74 74 69 6e 67 20 74 68 65 20 | of.a.SYN.packet..By.setting.the. |
| 36200 | 4d 53 53 20 76 61 6c 75 65 2c 20 79 6f 75 20 61 72 65 20 74 65 6c 6c 69 6e 67 20 74 68 65 20 72 | MSS.value,.you.are.telling.the.r |
| 36220 | 65 6d 6f 74 65 20 73 69 64 65 20 75 6e 65 71 75 69 76 6f 63 61 6c 6c 79 20 27 64 6f 20 6e 6f 74 | emote.side.unequivocally.'do.not |
| 36240 | 20 74 72 79 20 74 6f 20 73 65 6e 64 20 6d 65 20 70 61 63 6b 65 74 73 20 62 69 67 67 65 72 20 74 | .try.to.send.me.packets.bigger.t |
| 36260 | 68 61 6e 20 74 68 69 73 20 76 61 6c 75 65 27 2e 00 41 73 20 53 53 54 50 20 70 72 6f 76 69 64 65 | han.this.value'..As.SSTP.provide |
| 36280 | 73 20 50 50 50 20 76 69 61 20 61 20 53 53 4c 2f 54 4c 53 20 63 68 61 6e 6e 65 6c 20 74 68 65 20 | s.PPP.via.a.SSL/TLS.channel.the. |
| 362a0 | 75 73 65 20 6f 66 20 65 69 74 68 65 72 20 70 75 62 6c 69 63 61 6c 6c 79 20 73 69 67 6e 65 64 20 | use.of.either.publically.signed. |
| 362c0 | 63 65 72 74 69 66 69 63 61 74 65 73 20 61 73 20 77 65 6c 6c 20 61 73 20 61 20 70 72 69 76 61 74 | certificates.as.well.as.a.privat |
| 362e0 | 65 20 50 4b 49 20 69 73 20 72 65 71 75 69 72 65 64 2e 00 41 73 20 53 53 54 50 20 70 72 6f 76 69 | e.PKI.is.required..As.SSTP.provi |
| 36300 | 64 65 73 20 50 50 50 20 76 69 61 20 61 20 53 53 4c 2f 54 4c 53 20 63 68 61 6e 6e 65 6c 20 74 68 | des.PPP.via.a.SSL/TLS.channel.th |
| 36320 | 65 20 75 73 65 20 6f 66 20 65 69 74 68 65 72 20 70 75 62 6c 69 63 6c 79 20 73 69 67 6e 65 64 20 | e.use.of.either.publicly.signed. |
| 36340 | 63 65 72 74 69 66 69 63 61 74 65 73 20 6f 72 20 70 72 69 76 61 74 65 20 50 4b 49 20 69 73 20 72 | certificates.or.private.PKI.is.r |
| 36360 | 65 71 75 69 72 65 64 2e 00 41 73 20 56 79 4f 53 20 69 73 20 4c 69 6e 75 78 20 62 61 73 65 64 20 | equired..As.VyOS.is.Linux.based. |
| 36380 | 74 68 65 20 64 65 66 61 75 6c 74 20 70 6f 72 74 20 75 73 65 64 20 69 73 20 6e 6f 74 20 75 73 69 | the.default.port.used.is.not.usi |
| 363a0 | 6e 67 20 34 37 38 39 20 61 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 49 41 4e 41 2d 61 73 73 69 | ng.4789.as.the.default.IANA-assi |
| 363c0 | 67 6e 65 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 55 44 50 20 70 6f 72 74 20 6e 75 6d 62 65 72 | gned.destination.UDP.port.number |
| 363e0 | 2e 20 49 6e 73 74 65 61 64 20 56 79 4f 53 20 75 73 65 73 20 74 68 65 20 4c 69 6e 75 78 20 64 65 | ..Instead.VyOS.uses.the.Linux.de |
| 36400 | 66 61 75 6c 74 20 70 6f 72 74 20 6f 66 20 38 34 37 32 2e 00 41 73 20 56 79 4f 53 20 69 73 20 62 | fault.port.of.8472..As.VyOS.is.b |
| 36420 | 61 73 65 64 20 6f 6e 20 4c 69 6e 75 78 20 61 6e 64 20 74 68 65 72 65 20 77 61 73 20 6e 6f 20 6f | ased.on.Linux.and.there.was.no.o |
| 36440 | 66 66 69 63 69 61 6c 20 49 41 4e 41 20 70 6f 72 74 20 61 73 73 69 67 6e 65 64 20 66 6f 72 20 56 | fficial.IANA.port.assigned.for.V |
| 36460 | 58 4c 41 4e 2c 20 56 79 4f 53 20 75 73 65 73 20 61 20 64 65 66 61 75 6c 74 20 70 6f 72 74 20 6f | XLAN,.VyOS.uses.a.default.port.o |
| 36480 | 66 20 38 34 37 32 2e 20 59 6f 75 20 63 61 6e 20 63 68 61 6e 67 65 20 74 68 65 20 70 6f 72 74 20 | f.8472..You.can.change.the.port. |
| 364a0 | 6f 6e 20 61 20 70 65 72 20 56 58 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 20 62 61 73 69 73 20 74 | on.a.per.VXLAN.interface.basis.t |
| 364c0 | 6f 20 67 65 74 20 69 74 20 77 6f 72 6b 69 6e 67 20 61 63 72 6f 73 73 20 6d 75 6c 74 69 70 6c 65 | o.get.it.working.across.multiple |
| 364e0 | 20 76 65 6e 64 6f 72 73 2e 00 41 73 20 56 79 4f 53 20 69 73 20 62 61 73 65 64 20 6f 6e 20 4c 69 | .vendors..As.VyOS.is.based.on.Li |
| 36500 | 6e 75 78 20 69 74 20 6c 65 76 65 72 61 67 65 73 20 69 74 73 20 66 69 72 65 77 61 6c 6c 2e 20 54 | nux.it.leverages.its.firewall..T |
| 36520 | 68 65 20 4e 65 74 66 69 6c 74 65 72 20 70 72 6f 6a 65 63 74 20 63 72 65 61 74 65 64 20 69 70 74 | he.Netfilter.project.created.ipt |
| 36540 | 61 62 6c 65 73 20 61 6e 64 20 69 74 73 20 73 75 63 63 65 73 73 6f 72 20 6e 66 74 61 62 6c 65 73 | ables.and.its.successor.nftables |
| 36560 | 20 66 6f 72 20 74 68 65 20 4c 69 6e 75 78 20 6b 65 72 6e 65 6c 20 74 6f 20 77 6f 72 6b 20 64 69 | .for.the.Linux.kernel.to.work.di |
| 36580 | 72 65 63 74 6c 79 20 6f 6e 20 70 61 63 6b 65 74 20 64 61 74 61 20 66 6c 6f 77 73 2e 20 54 68 69 | rectly.on.packet.data.flows..Thi |
| 365a0 | 73 20 6e 6f 77 20 65 78 74 65 6e 64 73 20 74 68 65 20 63 6f 6e 63 65 70 74 20 6f 66 20 7a 6f 6e | s.now.extends.the.concept.of.zon |
| 365c0 | 65 2d 62 61 73 65 64 20 73 65 63 75 72 69 74 79 20 74 6f 20 61 6c 6c 6f 77 20 66 6f 72 20 6d 61 | e-based.security.to.allow.for.ma |
| 365e0 | 6e 69 70 75 6c 61 74 69 6e 67 20 74 68 65 20 64 61 74 61 20 61 74 20 6d 75 6c 74 69 70 6c 65 20 | nipulating.the.data.at.multiple. |
| 36600 | 73 74 61 67 65 73 20 6f 6e 63 65 20 61 63 63 65 70 74 65 64 20 62 79 20 74 68 65 20 6e 65 74 77 | stages.once.accepted.by.the.netw |
| 36620 | 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 74 68 65 20 64 72 69 76 65 72 20 62 65 66 | ork.interface.and.the.driver.bef |
| 36640 | 6f 72 65 20 62 65 69 6e 67 20 68 61 6e 64 65 64 20 6f 66 66 20 74 6f 20 74 68 65 20 64 65 73 74 | ore.being.handed.off.to.the.dest |
| 36660 | 69 6e 61 74 69 6f 6e 20 28 65 2e 67 2e 2c 20 61 20 77 65 62 20 73 65 72 76 65 72 20 4f 52 20 61 | ination.(e.g.,.a.web.server.OR.a |
| 36680 | 6e 6f 74 68 65 72 20 64 65 76 69 63 65 29 2e 00 41 73 20 56 79 4f 53 20 6d 61 6b 65 73 20 75 73 | nother.device)..As.VyOS.makes.us |
| 366a0 | 65 20 6f 66 20 74 68 65 20 51 4d 49 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 63 6f 6e 6e 65 63 | e.of.the.QMI.interface.to.connec |
| 366c0 | 74 20 74 6f 20 74 68 65 20 57 57 41 4e 20 6d 6f 64 65 6d 20 63 61 72 64 73 2c 20 61 6c 73 6f 20 | t.to.the.WWAN.modem.cards,.also. |
| 366e0 | 74 68 65 20 66 69 72 6d 77 61 72 65 20 63 61 6e 20 62 65 20 72 65 70 72 6f 67 72 61 6d 6d 65 64 | the.firmware.can.be.reprogrammed |
| 36700 | 2e 00 41 73 20 56 79 4f 53 20 6d 61 6b 65 73 20 75 73 65 20 6f 66 20 74 68 65 20 51 4d 49 20 69 | ..As.VyOS.makes.use.of.the.QMI.i |
| 36720 | 6e 74 65 72 66 61 63 65 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 57 57 41 4e 20 | nterface.to.connect.to.the.WWAN. |
| 36740 | 6d 6f 64 65 6d 20 63 61 72 64 73 2c 20 74 68 65 20 66 69 72 6d 77 61 72 65 20 63 61 6e 20 62 65 | modem.cards,.the.firmware.can.be |
| 36760 | 20 72 65 70 72 6f 67 72 61 6d 6d 65 64 2e 00 41 73 20 61 20 72 65 66 65 72 65 6e 63 65 3a 20 66 | .reprogrammed..As.a.reference:.f |
| 36780 | 6f 72 20 31 30 6d 62 69 74 2f 73 20 6f 6e 20 49 6e 74 65 6c 2c 20 79 6f 75 20 6d 69 67 68 74 20 | or.10mbit/s.on.Intel,.you.might. |
| 367a0 | 6e 65 65 64 20 61 74 20 6c 65 61 73 74 20 31 30 6b 62 79 74 65 20 62 75 66 66 65 72 20 69 66 20 | need.at.least.10kbyte.buffer.if. |
| 367c0 | 79 6f 75 20 77 61 6e 74 20 74 6f 20 72 65 61 63 68 20 79 6f 75 72 20 63 6f 6e 66 69 67 75 72 65 | you.want.to.reach.your.configure |
| 367e0 | 64 20 72 61 74 65 2e 00 41 73 20 61 20 72 65 73 75 6c 74 2c 20 74 68 65 20 70 72 6f 63 65 73 73 | d.rate..As.a.result,.the.process |
| 36800 | 69 6e 67 20 6f 66 20 65 61 63 68 20 70 61 63 6b 65 74 20 62 65 63 6f 6d 65 73 20 6d 6f 72 65 20 | ing.of.each.packet.becomes.more. |
| 36820 | 65 66 66 69 63 69 65 6e 74 2c 20 70 6f 74 65 6e 74 69 61 6c 6c 79 20 6c 65 76 65 72 61 67 69 6e | efficient,.potentially.leveragin |
| 36840 | 67 20 68 61 72 64 77 61 72 65 20 65 6e 63 72 79 70 74 69 6f 6e 20 6f 66 66 6c 6f 61 64 69 6e 67 | g.hardware.encryption.offloading |
| 36860 | 20 73 75 70 70 6f 72 74 20 61 76 61 69 6c 61 62 6c 65 20 69 6e 20 74 68 65 20 6b 65 72 6e 65 6c | .support.available.in.the.kernel |
| 36880 | 2e 00 41 73 20 61 6e 20 61 6c 74 65 72 6e 61 74 69 76 65 20 74 6f 20 61 70 70 6c 79 69 6e 67 20 | ..As.an.alternative.to.applying. |
| 368a0 | 70 6f 6c 69 63 79 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 64 69 72 65 63 74 6c 79 2c | policy.to.an.interface.directly, |
| 368c0 | 20 61 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 20 63 61 6e 20 62 65 20 63 72 | .a.zone-based.firewall.can.be.cr |
| 368e0 | 65 61 74 65 64 20 74 6f 20 73 69 6d 70 6c 69 66 79 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | eated.to.simplify.configuration. |
| 36900 | 77 68 65 6e 20 6d 75 6c 74 69 70 6c 65 20 69 6e 74 65 72 66 61 63 65 73 20 62 65 6c 6f 6e 67 20 | when.multiple.interfaces.belong. |
| 36920 | 74 6f 20 74 68 65 20 73 61 6d 65 20 73 65 63 75 72 69 74 79 20 7a 6f 6e 65 2e 20 49 6e 73 74 65 | to.the.same.security.zone..Inste |
| 36940 | 61 64 20 6f 66 20 61 70 70 6c 79 69 6e 67 20 72 75 6c 65 2d 73 65 74 73 20 74 6f 20 69 6e 74 65 | ad.of.applying.rule-sets.to.inte |
| 36960 | 72 66 61 63 65 73 2c 20 74 68 65 79 20 61 72 65 20 61 70 70 6c 69 65 64 20 74 6f 20 73 6f 75 72 | rfaces,.they.are.applied.to.sour |
| 36980 | 63 65 20 7a 6f 6e 65 2d 64 65 73 74 69 6e 61 74 69 6f 6e 20 7a 6f 6e 65 20 70 61 69 72 73 2e 00 | ce.zone-destination.zone.pairs.. |
| 369a0 | 41 73 20 61 6e 79 20 6f 74 68 65 72 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 2c 20 64 79 6e | As.any.other.firewall.group,.dyn |
| 369c0 | 61 6d 69 63 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 20 63 61 6e 20 62 65 20 75 73 65 64 | amic.firewall.groups.can.be.used |
| 369e0 | 20 69 6e 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 61 73 20 6d 61 74 63 68 69 6e 67 20 6f | .in.firewall.rules.as.matching.o |
| 36a00 | 70 74 69 6f 6e 73 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 00 41 73 20 62 6f 74 68 20 4d 69 63 | ptions..For.example:.As.both.Mic |
| 36a20 | 72 6f 73 6f 66 74 20 57 69 6e 64 6f 77 73 20 61 6e 64 20 41 70 70 6c 65 20 69 4f 53 2f 69 50 61 | rosoft.Windows.and.Apple.iOS/iPa |
| 36a40 | 64 4f 53 20 6f 6e 6c 79 20 73 75 70 70 6f 72 74 20 61 20 63 65 72 74 61 69 6e 20 73 65 74 20 6f | dOS.only.support.a.certain.set.o |
| 36a60 | 66 20 65 6e 63 72 79 70 74 69 6f 6e 20 63 69 70 68 65 72 73 20 61 6e 64 20 69 6e 74 65 67 72 69 | f.encryption.ciphers.and.integri |
| 36a80 | 74 79 20 61 6c 67 6f 72 69 74 68 6d 73 20 77 65 20 77 69 6c 6c 20 76 61 6c 69 64 61 74 65 20 74 | ty.algorithms.we.will.validate.t |
| 36aa0 | 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 49 4b 45 2f 45 53 50 20 70 72 6f 70 6f 73 61 6c 73 20 | he.configured.IKE/ESP.proposals. |
| 36ac0 | 61 6e 64 20 6f 6e 6c 79 20 6c 69 73 74 20 74 68 65 20 63 6f 6d 70 61 74 69 62 6c 65 20 6f 6e 65 | and.only.list.the.compatible.one |
| 36ae0 | 73 20 74 6f 20 74 68 65 20 75 73 65 72 20 e2 80 94 20 69 66 20 6d 75 6c 74 69 70 6c 65 20 61 72 | s.to.the.user.....if.multiple.ar |
| 36b00 | 65 20 64 65 66 69 6e 65 64 2e 20 49 66 20 74 68 65 72 65 20 61 72 65 20 6e 6f 20 6d 61 74 63 68 | e.defined..If.there.are.no.match |
| 36b20 | 69 6e 67 20 70 72 6f 70 6f 73 61 6c 73 20 66 6f 75 6e 64 20 e2 80 94 20 77 65 20 63 61 6e 20 6e | ing.proposals.found.....we.can.n |
| 36b40 | 6f 74 20 67 65 6e 65 72 61 74 65 20 61 20 70 72 6f 66 69 6c 65 20 66 6f 72 20 79 6f 75 2e 00 41 | ot.generate.a.profile.for.you..A |
| 36b60 | 73 20 64 65 73 63 72 69 62 65 64 2c 20 66 69 72 73 74 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 | s.described,.first.packet.will.b |
| 36b80 | 65 20 65 76 61 6c 75 61 74 65 64 20 62 79 20 61 6c 6c 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 | e.evaluated.by.all.the.firewall. |
| 36ba0 | 70 61 74 68 2c 20 73 6f 20 64 65 73 69 72 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 68 6f 75 | path,.so.desired.connection.shou |
| 36bc0 | 6c 64 20 62 65 20 65 78 70 6c 69 63 69 74 65 6c 79 20 61 63 63 65 70 74 65 64 2e 20 53 61 6d 65 | ld.be.explicitely.accepted..Same |
| 36be0 | 20 74 68 69 6e 67 20 73 68 6f 75 6c 64 20 62 65 20 74 61 6b 65 6e 20 69 6e 74 6f 20 61 63 63 6f | .thing.should.be.taken.into.acco |
| 36c00 | 75 6e 74 20 66 6f 72 20 74 72 61 66 66 69 63 20 69 6e 20 72 65 76 65 72 73 65 20 6f 72 64 65 72 | unt.for.traffic.in.reverse.order |
| 36c20 | 2e 20 49 6e 20 6d 6f 73 74 20 63 61 73 65 73 20 73 74 61 74 65 20 70 6f 6c 69 63 69 65 73 20 61 | ..In.most.cases.state.policies.a |
| 36c40 | 72 65 20 75 73 65 64 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 61 63 63 65 70 74 20 63 6f 6e 6e 65 | re.used.in.order.to.accept.conne |
| 36c60 | 63 74 69 6f 6e 20 69 6e 20 72 65 76 65 72 73 65 20 70 61 74 63 68 2e 00 41 73 20 64 65 73 63 72 | ction.in.reverse.patch..As.descr |
| 36c80 | 69 62 65 64 2c 20 66 69 72 73 74 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 65 76 61 6c 75 | ibed,.first.packet.will.be.evalu |
| 36ca0 | 61 74 65 64 20 62 79 20 61 6c 6c 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 70 61 74 68 2c 20 73 | ated.by.all.the.firewall.path,.s |
| 36cc0 | 6f 20 64 65 73 69 72 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 68 6f 75 6c 64 20 62 65 20 65 | o.desired.connection.should.be.e |
| 36ce0 | 78 70 6c 69 63 69 74 6c 79 20 61 63 63 65 70 74 65 64 2e 20 53 61 6d 65 20 74 68 69 6e 67 20 73 | xplicitly.accepted..Same.thing.s |
| 36d00 | 68 6f 75 6c 64 20 62 65 20 74 61 6b 65 6e 20 69 6e 74 6f 20 61 63 63 6f 75 6e 74 20 66 6f 72 20 | hould.be.taken.into.account.for. |
| 36d20 | 74 72 61 66 66 69 63 20 69 6e 20 72 65 76 65 72 73 65 20 6f 72 64 65 72 2e 20 49 6e 20 6d 6f 73 | traffic.in.reverse.order..In.mos |
| 36d40 | 74 20 63 61 73 65 73 20 73 74 61 74 65 20 70 6f 6c 69 63 69 65 73 20 61 72 65 20 75 73 65 64 20 | t.cases.state.policies.are.used. |
| 36d60 | 69 6e 20 6f 72 64 65 72 20 74 6f 20 61 63 63 65 70 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 6e | in.order.to.accept.connection.in |
| 36d80 | 20 72 65 76 65 72 73 65 20 70 61 74 63 68 2e 00 41 73 20 64 65 73 63 72 69 62 65 64 2c 20 74 68 | .reverse.patch..As.described,.th |
| 36da0 | 65 20 66 69 72 73 74 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 65 76 61 6c 75 61 74 65 64 | e.first.packet.will.be.evaluated |
| 36dc0 | 20 62 79 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 70 61 74 68 2c 20 73 6f 20 61 20 64 65 73 69 | .by.the.firewall.path,.so.a.desi |
| 36de0 | 72 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 68 6f 75 6c 64 20 62 65 20 65 78 70 6c 69 63 69 | red.connection.should.be.explici |
| 36e00 | 74 6c 79 20 61 63 63 65 70 74 65 64 2e 20 53 61 6d 65 20 74 68 69 6e 67 20 73 68 6f 75 6c 64 20 | tly.accepted..Same.thing.should. |
| 36e20 | 62 65 20 74 61 6b 65 6e 20 69 6e 74 6f 20 61 63 63 6f 75 6e 74 20 66 6f 72 20 74 72 61 66 66 69 | be.taken.into.account.for.traffi |
| 36e40 | 63 20 69 6e 20 72 65 76 65 72 73 65 20 6f 72 64 65 72 2e 20 49 6e 20 6d 6f 73 74 20 63 61 73 65 | c.in.reverse.order..In.most.case |
| 36e60 | 73 20 73 74 61 74 65 20 70 6f 6c 69 63 69 65 73 20 61 72 65 20 75 73 65 64 20 69 6e 20 6f 72 64 | s.state.policies.are.used.in.ord |
| 36e80 | 65 72 20 74 6f 20 61 63 63 65 70 74 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 6e 20 74 68 65 | er.to.accept.a.connection.in.the |
| 36ea0 | 20 72 65 76 65 72 73 65 20 70 61 74 68 2e 00 41 73 20 6d 6f 72 65 20 61 6e 64 20 6d 6f 72 65 20 | .reverse.path..As.more.and.more. |
| 36ec0 | 72 6f 75 74 65 72 73 20 72 75 6e 20 6f 6e 20 48 79 70 65 72 76 69 73 6f 72 73 2c 20 65 78 70 65 | routers.run.on.Hypervisors,.expe |
| 36ee0 | 63 69 61 6c 6c 79 20 77 69 74 68 20 61 20 3a 61 62 62 72 3a 60 4e 4f 53 20 28 4e 65 74 77 6f 72 | cially.with.a.:abbr:`NOS.(Networ |
| 36f00 | 6b 20 4f 70 65 72 61 74 69 6e 67 20 53 79 73 74 65 6d 29 60 20 61 73 20 56 79 4f 53 2c 20 69 74 | k.Operating.System)`.as.VyOS,.it |
| 36f20 | 20 6d 61 6b 65 73 20 66 65 77 65 72 20 61 6e 64 20 66 65 77 65 72 20 73 65 6e 73 65 20 74 6f 20 | .makes.fewer.and.fewer.sense.to. |
| 36f40 | 75 73 65 20 73 74 61 74 69 63 20 72 65 73 6f 75 72 63 65 20 62 69 6e 64 69 6e 67 73 20 6c 69 6b | use.static.resource.bindings.lik |
| 36f60 | 65 20 60 60 73 6d 70 2d 61 66 66 69 6e 69 74 79 60 60 20 61 73 20 70 72 65 73 65 6e 74 20 69 6e | e.``smp-affinity``.as.present.in |
| 36f80 | 20 56 79 4f 53 20 31 2e 32 20 61 6e 64 20 65 61 72 6c 69 65 72 20 74 6f 20 70 69 6e 20 63 65 72 | .VyOS.1.2.and.earlier.to.pin.cer |
| 36fa0 | 74 61 69 6e 20 69 6e 74 65 72 72 75 70 74 20 68 61 6e 64 6c 65 72 73 20 74 6f 20 73 70 65 63 69 | tain.interrupt.handlers.to.speci |
| 36fc0 | 66 69 63 20 43 50 55 73 2e 00 41 73 20 6e 65 74 77 6f 72 6b 20 61 64 64 72 65 73 73 20 74 72 61 | fic.CPUs..As.network.address.tra |
| 36fe0 | 6e 73 6c 61 74 69 6f 6e 20 6d 6f 64 69 66 69 65 73 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 | nslation.modifies.the.IP.address |
| 37000 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 6e 20 70 61 63 6b 65 74 73 2c 20 4e 41 54 20 69 6d 70 | .information.in.packets,.NAT.imp |
| 37020 | 6c 65 6d 65 6e 74 61 74 69 6f 6e 73 20 6d 61 79 20 76 61 72 79 20 69 6e 20 74 68 65 69 72 20 73 | lementations.may.vary.in.their.s |
| 37040 | 70 65 63 69 66 69 63 20 62 65 68 61 76 69 6f 72 20 69 6e 20 76 61 72 69 6f 75 73 20 61 64 64 72 | pecific.behavior.in.various.addr |
| 37060 | 65 73 73 69 6e 67 20 63 61 73 65 73 20 61 6e 64 20 74 68 65 69 72 20 65 66 66 65 63 74 20 6f 6e | essing.cases.and.their.effect.on |
| 37080 | 20 6e 65 74 77 6f 72 6b 20 74 72 61 66 66 69 63 2e 20 54 68 65 20 73 70 65 63 69 66 69 63 73 20 | .network.traffic..The.specifics. |
| 370a0 | 6f 66 20 4e 41 54 20 62 65 68 61 76 69 6f 72 20 61 72 65 20 6e 6f 74 20 63 6f 6d 6d 6f 6e 6c 79 | of.NAT.behavior.are.not.commonly |
| 370c0 | 20 64 6f 63 75 6d 65 6e 74 65 64 20 62 79 20 76 65 6e 64 6f 72 73 20 6f 66 20 65 71 75 69 70 6d | .documented.by.vendors.of.equipm |
| 370e0 | 65 6e 74 20 63 6f 6e 74 61 69 6e 69 6e 67 20 4e 41 54 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f | ent.containing.NAT.implementatio |
| 37100 | 6e 73 2e 00 41 73 20 6f 66 20 56 79 4f 53 20 31 2e 34 2c 20 4f 70 65 6e 56 50 4e 20 73 69 74 65 | ns..As.of.VyOS.1.4,.OpenVPN.site |
| 37120 | 2d 74 6f 2d 73 69 74 65 20 6d 6f 64 65 20 63 61 6e 20 75 73 65 20 65 69 74 68 65 72 20 70 72 65 | -to-site.mode.can.use.either.pre |
| 37140 | 2d 73 68 61 72 65 64 20 6b 65 79 73 20 6f 72 20 78 2e 35 30 39 20 63 65 72 74 69 66 69 63 61 74 | -shared.keys.or.x.509.certificat |
| 37160 | 65 73 2e 00 41 73 20 70 65 72 20 64 65 66 61 75 6c 74 20 61 6e 64 20 69 66 20 6e 6f 74 20 6f 74 | es..As.per.default.and.if.not.ot |
| 37180 | 68 65 72 77 69 73 65 20 64 65 66 69 6e 65 64 2c 20 6d 73 63 68 61 70 2d 76 32 20 69 73 20 62 65 | herwise.defined,.mschap-v2.is.be |
| 371a0 | 69 6e 67 20 75 73 65 64 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 6e 64 20 | ing.used.for.authentication.and. |
| 371c0 | 6d 70 70 65 20 31 32 38 2d 62 69 74 20 28 73 74 61 74 65 6c 65 73 73 29 20 66 6f 72 20 65 6e 63 | mppe.128-bit.(stateless).for.enc |
| 371e0 | 72 79 70 74 69 6f 6e 2e 20 49 66 20 6e 6f 20 67 61 74 65 77 61 79 2d 61 64 64 72 65 73 73 20 69 | ryption..If.no.gateway-address.i |
| 37200 | 73 20 73 65 74 20 77 69 74 68 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 | s.set.within.the.configuration,. |
| 37220 | 74 68 65 20 6c 6f 77 65 73 74 20 49 50 20 6f 75 74 20 6f 66 20 74 68 65 20 2f 32 34 20 63 6c 69 | the.lowest.IP.out.of.the./24.cli |
| 37240 | 65 6e 74 2d 69 70 2d 70 6f 6f 6c 20 69 73 20 62 65 69 6e 67 20 75 73 65 64 2e 20 46 6f 72 20 69 | ent-ip-pool.is.being.used..For.i |
| 37260 | 6e 73 74 61 6e 63 65 2c 20 69 6e 20 74 68 65 20 65 78 61 6d 70 6c 65 20 62 65 6c 6f 77 20 69 74 | nstance,.in.the.example.below.it |
| 37280 | 20 77 6f 75 6c 64 20 62 65 20 31 39 32 2e 31 36 38 2e 30 2e 31 2e 00 41 73 20 73 61 69 64 20 62 | .would.be.192.168.0.1..As.said.b |
| 372a0 | 65 66 6f 72 65 2c 20 6f 6e 63 65 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 20 61 72 65 20 | efore,.once.firewall.groups.are. |
| 372c0 | 63 72 65 61 74 65 64 2c 20 74 68 65 79 20 63 61 6e 20 62 65 20 72 65 66 65 72 65 6e 63 65 64 20 | created,.they.can.be.referenced. |
| 372e0 | 65 69 74 68 65 72 20 69 6e 20 66 69 72 65 77 61 6c 6c 2c 20 6e 61 74 2c 20 6e 61 74 36 36 20 61 | either.in.firewall,.nat,.nat66.a |
| 37300 | 6e 64 2f 6f 72 20 70 6f 6c 69 63 79 2d 72 6f 75 74 65 20 72 75 6c 65 73 2e 00 41 73 20 73 68 6f | nd/or.policy-route.rules..As.sho |
| 37320 | 77 6e 20 69 6e 20 74 68 65 20 65 78 61 6d 70 6c 65 20 61 62 6f 76 65 2c 20 6f 6e 65 20 6f 66 20 | wn.in.the.example.above,.one.of. |
| 37340 | 74 68 65 20 70 6f 73 73 69 62 69 6c 69 74 69 65 73 20 74 6f 20 6d 61 74 63 68 20 70 61 63 6b 65 | the.possibilities.to.match.packe |
| 37360 | 74 73 20 69 73 20 62 61 73 65 64 20 6f 6e 20 6d 61 72 6b 73 20 64 6f 6e 65 20 62 79 20 74 68 65 | ts.is.based.on.marks.done.by.the |
| 37380 | 20 66 69 72 65 77 61 6c 6c 2c 20 60 74 68 61 74 20 63 61 6e 20 67 69 76 65 20 79 6f 75 20 61 20 | .firewall,.`that.can.give.you.a. |
| 373a0 | 67 72 65 61 74 20 64 65 61 6c 20 6f 66 20 66 6c 65 78 69 62 69 6c 69 74 79 60 5f 2e 00 41 73 20 | great.deal.of.flexibility`_..As. |
| 373c0 | 73 68 6f 77 6e 20 69 6e 20 74 68 65 20 6c 61 73 74 20 63 6f 6d 6d 61 6e 64 20 6f 66 20 74 68 65 | shown.in.the.last.command.of.the |
| 373e0 | 20 65 78 61 6d 70 6c 65 20 61 62 6f 76 65 2c 20 74 68 65 20 60 71 75 65 75 65 2d 74 79 70 65 60 | .example.above,.the.`queue-type` |
| 37400 | 20 73 65 74 74 69 6e 67 20 61 6c 6c 6f 77 73 20 74 68 65 73 65 20 63 6f 6d 62 69 6e 61 74 69 6f | .setting.allows.these.combinatio |
| 37420 | 6e 73 2e 20 59 6f 75 20 77 69 6c 6c 20 62 65 20 61 62 6c 65 20 74 6f 20 75 73 65 20 69 74 20 69 | ns..You.will.be.able.to.use.it.i |
| 37440 | 6e 20 6d 61 6e 79 20 70 6f 6c 69 63 69 65 73 2e 00 41 73 20 74 68 65 20 65 78 61 6d 70 6c 65 20 | n.many.policies..As.the.example. |
| 37460 | 69 6d 61 67 65 20 62 65 6c 6f 77 20 73 68 6f 77 73 2c 20 74 68 65 20 64 65 76 69 63 65 20 6e 6f | image.below.shows,.the.device.no |
| 37480 | 77 20 6e 65 65 64 73 20 72 75 6c 65 73 20 74 6f 20 61 6c 6c 6f 77 2f 62 6c 6f 63 6b 20 74 72 61 | w.needs.rules.to.allow/block.tra |
| 374a0 | 66 66 69 63 20 74 6f 20 6f 72 20 66 72 6f 6d 20 74 68 65 20 73 65 72 76 69 63 65 73 20 72 75 6e | ffic.to.or.from.the.services.run |
| 374c0 | 6e 69 6e 67 20 6f 6e 20 74 68 65 20 64 65 76 69 63 65 20 74 68 61 74 20 68 61 76 65 20 6f 70 65 | ning.on.the.device.that.have.ope |
| 374e0 | 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 6f 6e 20 74 68 61 74 20 69 6e 74 65 72 66 61 63 65 2e | n.connections.on.that.interface. |
| 37500 | 00 41 73 20 74 68 65 20 65 78 61 6d 70 6c 65 20 69 6d 61 67 65 20 62 65 6c 6f 77 20 73 68 6f 77 | .As.the.example.image.below.show |
| 37520 | 73 2c 20 74 68 65 20 64 65 76 69 63 65 20 77 61 73 20 63 6f 6e 66 69 67 75 72 65 64 20 77 69 74 | s,.the.device.was.configured.wit |
| 37540 | 68 20 72 75 6c 65 73 20 62 6c 6f 63 6b 69 6e 67 20 69 6e 62 6f 75 6e 64 20 6f 72 20 6f 75 74 62 | h.rules.blocking.inbound.or.outb |
| 37560 | 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 6e 20 65 61 63 68 20 69 6e 74 65 72 66 61 63 65 2e 00 | ound.traffic.on.each.interface.. |
| 37580 | 41 73 20 74 68 65 20 6e 61 6d 65 20 69 6d 70 6c 69 65 73 2c 20 69 74 27 73 20 49 50 76 34 20 65 | As.the.name.implies,.it's.IPv4.e |
| 375a0 | 6e 63 61 70 73 75 6c 61 74 65 64 20 69 6e 20 49 50 76 36 2c 20 61 73 20 73 69 6d 70 6c 65 20 61 | ncapsulated.in.IPv6,.as.simple.a |
| 375c0 | 73 20 74 68 61 74 2e 00 41 73 20 77 65 6c 6c 20 61 73 20 74 68 65 20 62 65 6c 6f 77 20 74 6f 20 | s.that..As.well.as.the.below.to. |
| 375e0 | 61 6c 6c 6f 77 20 4e 41 54 2d 74 72 61 76 65 72 73 61 6c 20 28 77 68 65 6e 20 4e 41 54 20 69 73 | allow.NAT-traversal.(when.NAT.is |
| 37600 | 20 64 65 74 65 63 74 65 64 20 62 79 20 74 68 65 20 56 50 4e 20 63 6c 69 65 6e 74 2c 20 45 53 50 | .detected.by.the.VPN.client,.ESP |
| 37620 | 20 69 73 20 65 6e 63 61 70 73 75 6c 61 74 65 64 20 69 6e 20 55 44 50 20 66 6f 72 20 4e 41 54 2d | .is.encapsulated.in.UDP.for.NAT- |
| 37640 | 74 72 61 76 65 72 73 61 6c 29 3a 00 41 73 20 77 69 74 68 20 6f 74 68 65 72 20 70 6f 6c 69 63 69 | traversal):.As.with.other.polici |
| 37660 | 65 73 2c 20 52 6f 75 6e 64 2d 52 6f 62 69 6e 20 63 61 6e 20 65 6d 62 65 64 5f 20 61 6e 6f 74 68 | es,.Round-Robin.can.embed_.anoth |
| 37680 | 65 72 20 70 6f 6c 69 63 79 20 69 6e 74 6f 20 61 20 63 6c 61 73 73 20 74 68 72 6f 75 67 68 20 74 | er.policy.into.a.class.through.t |
| 376a0 | 68 65 20 60 60 71 75 65 75 65 2d 74 79 70 65 60 60 20 73 65 74 74 69 6e 67 2e 00 41 73 20 77 69 | he.``queue-type``.setting..As.wi |
| 376c0 | 74 68 20 6f 74 68 65 72 20 70 6f 6c 69 63 69 65 73 2c 20 53 68 61 70 65 72 20 63 61 6e 20 65 6d | th.other.policies,.Shaper.can.em |
| 376e0 | 62 65 64 5f 20 6f 74 68 65 72 20 70 6f 6c 69 63 69 65 73 20 69 6e 74 6f 20 69 74 73 20 63 6c 61 | bed_.other.policies.into.its.cla |
| 37700 | 73 73 65 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 60 60 71 75 65 75 65 2d 74 79 70 65 60 60 20 | sses.through.the.``queue-type``. |
| 37720 | 73 65 74 74 69 6e 67 20 61 6e 64 20 74 68 65 6e 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 69 72 | setting.and.then.configure.their |
| 37740 | 20 70 61 72 61 6d 65 74 65 72 73 2e 00 41 73 20 77 69 74 68 20 6f 74 68 65 72 20 70 6f 6c 69 63 | .parameters..As.with.other.polic |
| 37760 | 69 65 73 2c 20 79 6f 75 20 63 61 6e 20 64 65 66 69 6e 65 20 64 69 66 66 65 72 65 6e 74 20 74 79 | ies,.you.can.define.different.ty |
| 37780 | 70 65 20 6f 66 20 6d 61 74 63 68 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 79 6f 75 72 20 63 6c | pe.of.matching.rules.for.your.cl |
| 377a0 | 61 73 73 65 73 3a 00 41 73 20 77 69 74 68 20 6f 74 68 65 72 20 70 6f 6c 69 63 69 65 73 2c 20 79 | asses:.As.with.other.policies,.y |
| 377c0 | 6f 75 20 63 61 6e 20 65 6d 62 65 64 5f 20 6f 74 68 65 72 20 70 6f 6c 69 63 69 65 73 20 69 6e 74 | ou.can.embed_.other.policies.int |
| 377e0 | 6f 20 74 68 65 20 63 6c 61 73 73 65 73 20 28 61 6e 64 20 64 65 66 61 75 6c 74 29 20 6f 66 20 79 | o.the.classes.(and.default).of.y |
| 37800 | 6f 75 72 20 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 20 70 6f 6c 69 63 79 20 74 68 72 6f 75 67 | our.Priority.Queue.policy.throug |
| 37820 | 68 20 74 68 65 20 60 60 71 75 65 75 65 2d 74 79 70 65 60 60 20 73 65 74 74 69 6e 67 3a 00 41 73 | h.the.``queue-type``.setting:.As |
| 37840 | 20 79 6f 75 20 63 61 6e 20 73 65 65 20 69 6e 20 74 68 65 20 65 78 61 6d 70 6c 65 20 68 65 72 65 | .you.can.see.in.the.example.here |
| 37860 | 2c 20 79 6f 75 20 63 61 6e 20 61 73 73 69 67 6e 20 74 68 65 20 73 61 6d 65 20 72 75 6c 65 2d 73 | ,.you.can.assign.the.same.rule-s |
| 37880 | 65 74 20 74 6f 20 73 65 76 65 72 61 6c 20 69 6e 74 65 72 66 61 63 65 73 2e 20 41 6e 20 69 6e 74 | et.to.several.interfaces..An.int |
| 378a0 | 65 72 66 61 63 65 20 63 61 6e 20 6f 6e 6c 79 20 68 61 76 65 20 6f 6e 65 20 72 75 6c 65 2d 73 65 | erface.can.only.have.one.rule-se |
| 378c0 | 74 20 70 65 72 20 63 68 61 69 6e 2e 00 41 73 20 79 6f 75 20 63 61 6e 20 73 65 65 2c 20 4c 65 61 | t.per.chain..As.you.can.see,.Lea |
| 378e0 | 66 32 20 61 6e 64 20 4c 65 61 66 33 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 61 6c | f2.and.Leaf3.configuration.is.al |
| 37900 | 6d 6f 73 74 20 69 64 65 6e 74 69 63 61 6c 2e 20 54 68 65 72 65 20 61 72 65 20 6c 6f 74 73 20 6f | most.identical..There.are.lots.o |
| 37920 | 66 20 63 6f 6d 6d 61 6e 64 73 20 61 62 6f 76 65 2c 20 49 27 6c 6c 20 74 72 79 20 74 6f 20 69 6e | f.commands.above,.I'll.try.to.in |
| 37940 | 74 6f 20 6d 6f 72 65 20 64 65 74 61 69 6c 20 62 65 6c 6f 77 2c 20 63 6f 6d 6d 61 6e 64 20 64 65 | to.more.detail.below,.command.de |
| 37960 | 73 63 72 69 70 74 69 6f 6e 73 20 61 72 65 20 70 6c 61 63 65 64 20 75 6e 64 65 72 20 74 68 65 20 | scriptions.are.placed.under.the. |
| 37980 | 63 6f 6d 6d 61 6e 64 20 62 6f 78 65 73 3a 00 41 73 20 79 6f 75 20 63 61 6e 20 73 65 65 2c 20 74 | command.boxes:.As.you.can.see,.t |
| 379a0 | 68 65 20 4c 65 61 66 32 20 61 6e 64 20 4c 65 61 66 33 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | he.Leaf2.and.Leaf3.configuration |
| 379c0 | 73 20 61 72 65 20 61 6c 6d 6f 73 74 20 69 64 65 6e 74 69 63 61 6c 2e 20 54 68 65 72 65 20 61 72 | s.are.almost.identical..There.ar |
| 379e0 | 65 20 6c 6f 74 73 20 6f 66 20 63 6f 6d 6d 61 6e 64 73 20 61 62 6f 76 65 2c 20 49 27 6c 6c 20 74 | e.lots.of.commands.above,.I'll.t |
| 37a00 | 72 79 20 74 6f 20 67 6f 20 69 6e 74 6f 20 6d 6f 72 65 20 64 65 74 61 69 6c 20 62 65 6c 6f 77 2e | ry.to.go.into.more.detail.below. |
| 37a20 | 20 43 6f 6d 6d 61 6e 64 20 64 65 73 63 72 69 70 74 69 6f 6e 73 20 61 72 65 20 70 6c 61 63 65 64 | .Command.descriptions.are.placed |
| 37a40 | 20 75 6e 64 65 72 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 62 6f 78 65 73 3a 00 41 73 73 69 67 6e | .under.the.command.boxes:.Assign |
| 37a60 | 20 60 3c 6d 65 6d 62 65 72 3e 60 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 62 72 69 64 67 65 20 | .`<member>`.interface.to.bridge. |
| 37a80 | 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 20 41 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 68 65 6c 70 | `<interface>`..A.completion.help |
| 37aa0 | 65 72 20 77 69 6c 6c 20 68 65 6c 70 20 79 6f 75 20 77 69 74 68 20 61 6c 6c 20 61 6c 6c 6f 77 65 | er.will.help.you.with.all.allowe |
| 37ac0 | 64 20 69 6e 74 65 72 66 61 63 65 73 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 62 72 69 64 67 65 | d.interfaces.which.can.be.bridge |
| 37ae0 | 64 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 3a 72 65 66 3a 60 65 74 68 65 72 6e 65 74 2d | d..This.includes.:ref:`ethernet- |
| 37b00 | 69 6e 74 65 72 66 61 63 65 60 2c 20 3a 72 65 66 3a 60 62 6f 6e 64 2d 69 6e 74 65 72 66 61 63 65 | interface`,.:ref:`bond-interface |
| 37b20 | 60 2c 20 3a 72 65 66 3a 60 6c 32 74 70 76 33 2d 69 6e 74 65 72 66 61 63 65 60 2c 20 3a 72 65 66 | `,.:ref:`l2tpv3-interface`,.:ref |
| 37b40 | 3a 60 6f 70 65 6e 76 70 6e 60 2c 20 3a 72 65 66 3a 60 76 78 6c 61 6e 2d 69 6e 74 65 72 66 61 63 | :`openvpn`,.:ref:`vxlan-interfac |
| 37b60 | 65 60 2c 20 3a 72 65 66 3a 60 77 69 72 65 6c 65 73 73 2d 69 6e 74 65 72 66 61 63 65 60 2c 20 3a | e`,.:ref:`wireless-interface`,.: |
| 37b80 | 72 65 66 3a 60 74 75 6e 6e 65 6c 2d 69 6e 74 65 72 66 61 63 65 60 20 61 6e 64 20 3a 72 65 66 3a | ref:`tunnel-interface`.and.:ref: |
| 37ba0 | 60 67 65 6e 65 76 65 2d 69 6e 74 65 72 66 61 63 65 60 2e 00 41 73 73 69 67 6e 20 61 20 73 70 65 | `geneve-interface`..Assign.a.spe |
| 37bc0 | 63 69 66 69 63 20 62 61 63 6b 65 6e 64 20 74 6f 20 61 20 72 75 6c 65 00 41 73 73 69 67 6e 20 61 | cific.backend.to.a.rule.Assign.a |
| 37be0 | 20 73 74 61 74 69 63 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 60 3c 75 73 65 72 3e 60 20 61 | .static.IP.address.to.`<user>`.a |
| 37c00 | 63 63 6f 75 6e 74 2e 00 41 73 73 69 67 6e 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 | ccount..Assign.interface.identif |
| 37c20 | 69 65 64 20 62 79 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 74 6f 20 56 52 46 20 6e 61 6d 65 | ied.by.`<interface>`.to.VRF.name |
| 37c40 | 64 20 60 3c 6e 61 6d 65 3e 60 2e 00 41 73 73 69 67 6e 20 6d 65 6d 62 65 72 20 69 6e 74 65 72 66 | d.`<name>`..Assign.member.interf |
| 37c60 | 61 63 65 73 20 74 6f 20 50 6f 72 74 43 68 61 6e 6e 65 6c 00 41 73 73 69 67 6e 20 73 74 61 74 69 | aces.to.PortChannel.Assign.stati |
| 37c80 | 63 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 60 3c 75 73 65 72 3e 60 20 61 63 63 6f 75 6e 74 | c.IP.address.to.`<user>`.account |
| 37ca0 | 2e 00 41 73 73 69 67 6e 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 74 68 69 73 20 | ..Assign.the.IP.address.to.this. |
| 37cc0 | 6d 61 63 68 69 6e 65 20 66 6f 72 20 60 3c 74 69 6d 65 3e 60 20 73 65 63 6f 6e 64 73 2e 00 41 73 | machine.for.`<time>`.seconds..As |
| 37ce0 | 73 69 67 6e 20 74 68 65 20 53 53 48 20 70 75 62 6c 69 63 20 6b 65 79 20 70 6f 72 74 69 6f 6e 20 | sign.the.SSH.public.key.portion. |
| 37d00 | 60 3c 6b 65 79 3e 60 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 70 65 72 2d 6b 65 79 20 60 3c | `<key>`.identified.by.per-key.`< |
| 37d20 | 69 64 65 6e 74 69 66 69 65 72 3e 60 20 74 6f 20 74 68 65 20 6c 6f 63 61 6c 20 75 73 65 72 20 60 | identifier>`.to.the.local.user.` |
| 37d40 | 3c 75 73 65 72 6e 61 6d 65 3e 60 2e 00 41 73 73 6f 63 69 61 74 65 73 20 74 68 65 20 70 72 65 76 | <username>`..Associates.the.prev |
| 37d60 | 69 6f 75 73 6c 79 20 67 65 6e 65 72 61 74 65 64 20 70 72 69 76 61 74 65 20 6b 65 79 20 74 6f 20 | iously.generated.private.key.to. |
| 37d80 | 61 20 73 70 65 63 69 66 69 63 20 57 69 72 65 47 75 61 72 64 20 69 6e 74 65 72 66 61 63 65 2e 20 | a.specific.WireGuard.interface.. |
| 37da0 | 54 68 65 20 70 72 69 76 61 74 65 20 6b 65 79 20 63 61 6e 20 62 65 20 67 65 6e 65 72 61 74 65 20 | The.private.key.can.be.generate. |
| 37dc0 | 76 69 61 20 74 68 65 20 63 6f 6d 6d 61 6e 64 00 41 73 73 75 72 65 20 74 68 61 74 20 79 6f 75 72 | via.the.command.Assure.that.your |
| 37de0 | 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 61 6c 6c 6f 77 20 74 68 65 20 74 72 61 66 66 69 | .firewall.rules.allow.the.traffi |
| 37e00 | 63 2c 20 69 6e 20 77 68 69 63 68 20 63 61 73 65 20 79 6f 75 20 68 61 76 65 20 61 20 77 6f 72 6b | c,.in.which.case.you.have.a.work |
| 37e20 | 69 6e 67 20 56 50 4e 20 75 73 69 6e 67 20 57 69 72 65 47 75 61 72 64 2e 00 41 73 73 75 72 65 64 | ing.VPN.using.WireGuard..Assured |
| 37e40 | 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 31 31 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 | .Forwarding(AF).11.Assured.Forwa |
| 37e60 | 72 64 69 6e 67 28 41 46 29 20 31 32 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 | rding(AF).12.Assured.Forwarding( |
| 37e80 | 41 46 29 20 31 33 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 32 31 | AF).13.Assured.Forwarding(AF).21 |
| 37ea0 | 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 32 32 00 41 73 73 75 72 | .Assured.Forwarding(AF).22.Assur |
| 37ec0 | 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 32 33 00 41 73 73 75 72 65 64 20 46 6f 72 | ed.Forwarding(AF).23.Assured.For |
| 37ee0 | 77 61 72 64 69 6e 67 28 41 46 29 20 33 31 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e | warding(AF).31.Assured.Forwardin |
| 37f00 | 67 28 41 46 29 20 33 32 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 | g(AF).32.Assured.Forwarding(AF). |
| 37f20 | 33 33 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 34 31 00 41 73 73 | 33.Assured.Forwarding(AF).41.Ass |
| 37f40 | 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 34 32 00 41 73 73 75 72 65 64 20 46 | ured.Forwarding(AF).42.Assured.F |
| 37f60 | 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 34 33 00 41 74 20 65 76 65 72 79 20 72 6f 75 6e 64 2c | orwarding(AF).43.At.every.round, |
| 37f80 | 20 74 68 65 20 64 65 66 69 63 69 74 20 63 6f 75 6e 74 65 72 20 61 64 64 73 20 74 68 65 20 71 75 | .the.deficit.counter.adds.the.qu |
| 37fa0 | 61 6e 74 75 6d 20 73 6f 20 74 68 61 74 20 65 76 65 6e 20 6c 61 72 67 65 20 70 61 63 6b 65 74 73 | antum.so.that.even.large.packets |
| 37fc0 | 20 77 69 6c 6c 20 68 61 76 65 20 74 68 65 69 72 20 6f 70 70 6f 72 74 75 6e 69 74 79 20 74 6f 20 | .will.have.their.opportunity.to. |
| 37fe0 | 62 65 20 64 65 71 75 65 75 65 64 2e 00 41 74 20 74 68 65 20 6d 6f 6d 65 6e 74 20 69 74 20 6e 6f | be.dequeued..At.the.moment.it.no |
| 38000 | 74 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 6c 6f 6f 6b 20 61 74 20 74 68 65 20 77 68 6f 6c 65 20 | t.possible.to.look.at.the.whole. |
| 38020 | 66 69 72 65 77 61 6c 6c 20 6c 6f 67 20 77 69 74 68 20 56 79 4f 53 20 6f 70 65 72 61 74 69 6f 6e | firewall.log.with.VyOS.operation |
| 38040 | 61 6c 20 63 6f 6d 6d 61 6e 64 73 2e 20 41 6c 6c 20 6c 6f 67 73 20 77 69 6c 6c 20 73 61 76 65 20 | al.commands..All.logs.will.save. |
| 38060 | 74 6f 20 60 60 2f 76 61 72 2f 6c 6f 67 73 2f 6d 65 73 73 61 67 65 73 60 60 2e 20 46 6f 72 20 65 | to.``/var/logs/messages``..For.e |
| 38080 | 78 61 6d 70 6c 65 3a 20 60 60 67 72 65 70 20 27 31 30 2e 31 30 2e 30 2e 31 30 27 20 2f 76 61 72 | xample:.``grep.'10.10.0.10'./var |
| 380a0 | 2f 6c 6f 67 2f 6d 65 73 73 61 67 65 73 60 60 00 41 74 20 74 68 65 20 74 69 6d 65 20 6f 66 20 74 | /log/messages``.At.the.time.of.t |
| 380c0 | 68 69 73 20 77 72 69 74 69 6e 67 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 64 69 73 70 6c 61 | his.writing.the.following.displa |
| 380e0 | 79 73 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 3a 00 41 74 20 76 65 72 79 20 6c 6f 77 20 72 61 | ys.are.supported:.At.very.low.ra |
| 38100 | 74 65 73 20 28 62 65 6c 6f 77 20 33 4d 62 69 74 29 2c 20 62 65 73 69 64 65 73 20 74 75 6e 69 6e | tes.(below.3Mbit),.besides.tunin |
| 38120 | 67 20 60 71 75 61 6e 74 75 6d 60 20 28 33 30 30 20 6b 65 65 70 73 20 62 65 69 6e 67 20 6f 6b 29 | g.`quantum`.(300.keeps.being.ok) |
| 38140 | 20 79 6f 75 20 6d 61 79 20 61 6c 73 6f 20 77 61 6e 74 20 74 6f 20 69 6e 63 72 65 61 73 65 20 60 | .you.may.also.want.to.increase.` |
| 38160 | 74 61 72 67 65 74 60 20 74 6f 20 73 6f 6d 65 74 68 69 6e 67 20 6c 69 6b 65 20 31 35 6d 73 20 61 | target`.to.something.like.15ms.a |
| 38180 | 6e 64 20 69 6e 63 72 65 61 73 65 20 60 69 6e 74 65 72 76 61 6c 60 20 74 6f 20 73 6f 6d 65 74 68 | nd.increase.`interval`.to.someth |
| 381a0 | 69 6e 67 20 61 72 6f 75 6e 64 20 31 35 30 20 6d 73 2e 00 41 74 74 61 63 68 65 73 20 75 73 65 72 | ing.around.150.ms..Attaches.user |
| 381c0 | 2d 64 65 66 69 6e 65 64 20 6e 65 74 77 6f 72 6b 20 74 6f 20 61 20 63 6f 6e 74 61 69 6e 65 72 2e | -defined.network.to.a.container. |
| 381e0 | 20 4f 6e 6c 79 20 6f 6e 65 20 6e 65 74 77 6f 72 6b 20 6d 75 73 74 20 62 65 20 73 70 65 63 69 66 | .Only.one.network.must.be.specif |
| 38200 | 69 65 64 20 61 6e 64 20 6d 75 73 74 20 61 6c 72 65 61 64 79 20 65 78 69 73 74 2e 00 41 75 74 68 | ied.and.must.already.exist..Auth |
| 38220 | 65 6e 74 69 63 61 74 69 6f 6e 00 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 28 45 41 50 6f 4c | entication.Authentication.(EAPoL |
| 38240 | 29 00 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 41 64 76 61 6e 63 65 64 20 4f 70 74 69 6f 6e | ).Authentication.Advanced.Option |
| 38260 | 73 00 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 63 6c 69 | s.Authentication.application.cli |
| 38280 | 65 6e 74 2d 69 64 2e 00 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 70 70 6c 69 63 61 74 69 | ent-id..Authentication.applicati |
| 382a0 | 6f 6e 20 63 6c 69 65 6e 74 2d 73 65 63 72 65 74 2e 00 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e | on.client-secret..Authentication |
| 382c0 | 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 74 65 6e 61 6e 74 2d 69 64 00 41 75 74 68 65 6e 74 69 63 | .application.tenant-id.Authentic |
| 382e0 | 61 74 69 6f 6e 20 69 73 20 64 6f 6e 65 20 62 79 20 75 73 69 6e 67 20 74 68 65 20 60 60 6f 70 65 | ation.is.done.by.using.the.``ope |
| 38300 | 6e 76 70 6e 2d 61 75 74 68 2d 6c 64 61 70 2e 73 6f 60 60 20 70 6c 75 67 69 6e 20 77 68 69 63 68 | nvpn-auth-ldap.so``.plugin.which |
| 38320 | 20 69 73 20 73 68 69 70 70 65 64 20 77 69 74 68 20 65 76 65 72 79 20 56 79 4f 53 20 69 6e 73 74 | .is.shipped.with.every.VyOS.inst |
| 38340 | 61 6c 6c 61 74 69 6f 6e 2e 20 41 20 64 65 64 69 63 61 74 65 64 20 63 6f 6e 66 69 67 75 72 61 74 | allation..A.dedicated.configurat |
| 38360 | 69 6f 6e 20 66 69 6c 65 20 69 73 20 72 65 71 75 69 72 65 64 2e 20 49 74 20 69 73 20 62 65 73 74 | ion.file.is.required..It.is.best |
| 38380 | 20 70 72 61 63 74 69 73 65 20 74 6f 20 73 74 6f 72 65 20 69 74 20 69 6e 20 60 60 2f 63 6f 6e 66 | .practise.to.store.it.in.``/conf |
| 383a0 | 69 67 60 60 20 74 6f 20 73 75 72 76 69 76 65 20 69 6d 61 67 65 20 75 70 64 61 74 65 73 00 41 75 | ig``.to.survive.image.updates.Au |
| 383c0 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f 72 67 61 6e 69 7a 61 74 69 6f 6e 20 6e 61 6d 65 00 41 | thentication.organization.name.A |
| 383e0 | 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 74 6f 6b 65 6e 00 41 75 74 68 65 6e 74 69 63 61 74 69 | uthentication.token.Authenticati |
| 38400 | 6f 6e 20 e2 80 93 20 74 6f 20 76 65 72 69 66 79 20 74 68 61 74 20 74 68 65 20 6d 65 73 73 61 67 | on.....to.verify.that.the.messag |
| 38420 | 65 20 69 73 20 66 72 6f 6d 20 61 20 76 61 6c 69 64 20 73 6f 75 72 63 65 2e 00 41 75 74 68 6f 72 | e.is.from.a.valid.source..Author |
| 38440 | 69 74 61 74 69 76 65 20 7a 6f 6e 65 73 00 41 75 74 68 6f 72 69 7a 61 74 69 6f 6e 20 74 6f 6b 65 | itative.zones.Authorization.toke |
| 38460 | 6e 00 41 75 74 6f 6d 61 74 69 63 20 56 4c 41 4e 20 43 72 65 61 74 69 6f 6e 00 41 75 74 6f 6d 61 | n.Automatic.VLAN.Creation.Automa |
| 38480 | 74 69 63 20 56 4c 41 4e 20 63 72 65 61 74 69 6f 6e 00 41 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 | tic.VLAN.creation.Automatically. |
| 384a0 | 63 72 65 61 74 65 20 42 46 44 20 73 65 73 73 69 6f 6e 20 66 6f 72 20 65 61 63 68 20 52 49 50 20 | create.BFD.session.for.each.RIP. |
| 384c0 | 70 65 65 72 20 64 69 73 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 | peer.discovered.in.this.interfac |
| 384e0 | 65 2e 20 57 68 65 6e 20 74 68 65 20 42 46 44 20 73 65 73 73 69 6f 6e 20 6d 6f 6e 69 74 6f 72 20 | e..When.the.BFD.session.monitor. |
| 38500 | 73 69 67 6e 61 6c 69 7a 65 20 74 68 61 74 20 74 68 65 20 6c 69 6e 6b 20 69 73 20 64 6f 77 6e 20 | signalize.that.the.link.is.down. |
| 38520 | 74 68 65 20 52 49 50 20 70 65 65 72 20 69 73 20 72 65 6d 6f 76 65 64 20 61 6e 64 20 61 6c 6c 20 | the.RIP.peer.is.removed.and.all. |
| 38540 | 74 68 65 20 6c 65 61 72 6e 65 64 20 72 6f 75 74 65 73 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 | the.learned.routes.associated.wi |
| 38560 | 74 68 20 74 68 61 74 20 70 65 65 72 20 61 72 65 20 72 65 6d 6f 76 65 64 2e 00 41 75 74 6f 6d 61 | th.that.peer.are.removed..Automa |
| 38580 | 74 69 63 61 6c 6c 79 20 72 65 62 6f 6f 74 20 73 79 73 74 65 6d 20 6f 6e 20 6b 65 72 6e 65 6c 20 | tically.reboot.system.on.kernel. |
| 385a0 | 70 61 6e 69 63 20 61 66 74 65 72 20 36 30 20 73 65 63 6f 6e 64 73 2e 00 41 75 74 6f 6e 6f 6d 6f | panic.after.60.seconds..Autonomo |
| 385c0 | 75 73 20 53 79 73 74 65 6d 73 00 41 76 61 69 6c 61 62 6c 65 20 68 65 61 6c 74 68 20 63 68 65 63 | us.Systems.Available.health.chec |
| 385e0 | 6b 20 70 72 6f 74 6f 63 6f 6c 73 3a 00 41 76 6f 69 64 69 6e 67 20 22 6c 65 61 6b 79 22 20 4e 41 | k.protocols:.Avoiding."leaky".NA |
| 38600 | 54 00 41 7a 75 72 65 2d 64 61 74 61 2d 65 78 70 6c 6f 72 65 72 00 42 46 44 00 42 46 44 20 53 74 | T.Azure-data-explorer.BFD.BFD.St |
| 38620 | 61 74 69 63 20 52 6f 75 74 65 20 4d 6f 6e 69 74 6f 72 69 6e 67 00 42 46 44 20 73 65 6e 64 73 20 | atic.Route.Monitoring.BFD.sends. |
| 38640 | 6c 6f 74 73 20 6f 66 20 73 6d 61 6c 6c 20 55 44 50 20 70 61 63 6b 65 74 73 20 76 65 72 79 20 71 | lots.of.small.UDP.packets.very.q |
| 38660 | 75 69 63 6b 6c 79 20 74 6f 20 65 6e 73 75 72 65 73 20 74 68 61 74 20 74 68 65 20 70 65 65 72 20 | uickly.to.ensures.that.the.peer. |
| 38680 | 69 73 20 73 74 69 6c 6c 20 61 6c 69 76 65 2e 00 42 47 50 00 42 47 50 20 2d 20 41 53 20 50 61 74 | is.still.alive..BGP.BGP.-.AS.Pat |
| 386a0 | 68 20 50 6f 6c 69 63 79 00 42 47 50 20 2d 20 43 6f 6d 6d 75 6e 69 74 79 20 4c 69 73 74 00 42 47 | h.Policy.BGP.-.Community.List.BG |
| 386c0 | 50 20 2d 20 45 78 74 65 6e 64 65 64 20 43 6f 6d 6d 75 6e 69 74 79 20 4c 69 73 74 00 42 47 50 20 | P.-.Extended.Community.List.BGP. |
| 386e0 | 2d 20 4c 61 72 67 65 20 43 6f 6d 6d 75 6e 69 74 79 20 4c 69 73 74 00 42 47 50 20 45 78 61 6d 70 | -.Large.Community.List.BGP.Examp |
| 38700 | 6c 65 00 42 47 50 20 52 6f 75 74 65 72 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 42 47 50 20 | le.BGP.Router.Configuration.BGP. |
| 38720 | 53 63 61 6c 69 6e 67 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 42 47 50 20 61 67 67 72 65 67 | Scaling.Configuration.BGP.aggreg |
| 38740 | 61 74 6f 72 20 61 74 74 72 69 62 75 74 65 3a 20 41 53 20 6e 75 6d 62 65 72 20 6f 72 20 49 50 20 | ator.attribute:.AS.number.or.IP. |
| 38760 | 61 64 64 72 65 73 73 20 6f 66 20 61 6e 20 61 67 67 72 65 67 61 74 69 6f 6e 2e 00 42 47 50 20 61 | address.of.an.aggregation..BGP.a |
| 38780 | 73 2d 70 61 74 68 20 6c 69 73 74 20 74 6f 20 6d 61 74 63 68 2e 00 42 47 50 20 61 74 6f 6d 69 63 | s-path.list.to.match..BGP.atomic |
| 387a0 | 20 61 67 67 72 65 67 61 74 65 20 61 74 74 72 69 62 75 74 65 2e 00 42 47 50 20 63 6f 6d 6d 75 6e | .aggregate.attribute..BGP.commun |
| 387c0 | 69 74 79 2d 6c 69 73 74 20 74 6f 20 6d 61 74 63 68 2e 00 42 47 50 20 65 78 74 65 6e 64 65 64 20 | ity-list.to.match..BGP.extended. |
| 387e0 | 63 6f 6d 6d 75 6e 69 74 79 20 74 6f 20 6d 61 74 63 68 2e 00 42 47 50 20 72 6f 6c 65 73 20 61 72 | community.to.match..BGP.roles.ar |
| 38800 | 65 20 64 65 66 69 6e 65 64 20 69 6e 20 52 46 43 20 3a 72 66 63 3a 60 39 32 33 34 60 20 61 6e 64 | e.defined.in.RFC.:rfc:`9234`.and |
| 38820 | 20 70 72 6f 76 69 64 65 20 61 6e 20 65 61 73 79 20 77 61 79 20 74 6f 20 61 64 64 20 72 6f 75 74 | .provide.an.easy.way.to.add.rout |
| 38840 | 65 20 6c 65 61 6b 20 70 72 65 76 65 6e 74 69 6f 6e 2c 20 64 65 74 65 63 74 69 6f 6e 20 61 6e 64 | e.leak.prevention,.detection.and |
| 38860 | 20 6d 69 74 69 67 61 74 69 6f 6e 2e 20 54 68 65 20 6c 6f 63 61 6c 20 52 6f 6c 65 20 76 61 6c 75 | .mitigation..The.local.Role.valu |
| 38880 | 65 20 69 73 20 6e 65 67 6f 74 69 61 74 65 64 20 77 69 74 68 20 74 68 65 20 6e 65 77 20 42 47 50 | e.is.negotiated.with.the.new.BGP |
| 388a0 | 20 52 6f 6c 65 20 63 61 70 61 62 69 6c 69 74 79 20 77 68 69 63 68 20 68 61 73 20 61 20 62 75 69 | .Role.capability.which.has.a.bui |
| 388c0 | 6c 74 2d 69 6e 20 63 68 65 63 6b 20 6f 66 20 74 68 65 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e 67 | lt-in.check.of.the.corresponding |
| 388e0 | 20 76 61 6c 75 65 2e 20 49 6e 20 63 61 73 65 20 6f 66 20 61 20 6d 69 73 6d 61 74 63 68 20 74 68 | .value..In.case.of.a.mismatch.th |
| 38900 | 65 20 6e 65 77 20 4f 50 45 4e 20 52 6f 6c 65 73 20 4d 69 73 6d 61 74 63 68 20 4e 6f 74 69 66 69 | e.new.OPEN.Roles.Mismatch.Notifi |
| 38920 | 63 61 74 69 6f 6e 20 3c 32 2c 20 31 31 3e 20 77 6f 75 6c 64 20 62 65 20 73 65 6e 74 2e 20 54 68 | cation.<2,.11>.would.be.sent..Th |
| 38940 | 65 20 63 6f 72 72 65 63 74 20 52 6f 6c 65 20 70 61 69 72 73 20 61 72 65 3a 00 42 47 50 20 72 6f | e.correct.Role.pairs.are:.BGP.ro |
| 38960 | 75 74 65 72 73 20 63 6f 6e 6e 65 63 74 65 64 20 69 6e 73 69 64 65 20 74 68 65 20 73 61 6d 65 20 | uters.connected.inside.the.same. |
| 38980 | 41 53 20 74 68 72 6f 75 67 68 20 42 47 50 20 62 65 6c 6f 6e 67 20 74 6f 20 61 6e 20 69 6e 74 65 | AS.through.BGP.belong.to.an.inte |
| 389a0 | 72 6e 61 6c 20 42 47 50 20 73 65 73 73 69 6f 6e 2c 20 6f 72 20 49 42 47 50 2e 20 49 6e 20 6f 72 | rnal.BGP.session,.or.IBGP..In.or |
| 389c0 | 64 65 72 20 74 6f 20 70 72 65 76 65 6e 74 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 6c 6f 6f | der.to.prevent.routing.table.loo |
| 389e0 | 70 73 2c 20 49 42 47 50 20 73 70 65 61 6b 65 72 20 64 6f 65 73 20 6e 6f 74 20 61 64 76 65 72 74 | ps,.IBGP.speaker.does.not.advert |
| 38a00 | 69 73 65 20 49 42 47 50 2d 6c 65 61 72 6e 65 64 20 72 6f 75 74 65 73 20 74 6f 20 6f 74 68 65 72 | ise.IBGP-learned.routes.to.other |
| 38a20 | 20 49 42 47 50 20 73 70 65 61 6b 65 72 20 28 53 70 6c 69 74 20 48 6f 72 69 7a 6f 6e 20 6d 65 63 | .IBGP.speaker.(Split.Horizon.mec |
| 38a40 | 68 61 6e 69 73 6d 29 2e 20 41 73 20 73 75 63 68 2c 20 49 42 47 50 20 72 65 71 75 69 72 65 73 20 | hanism)..As.such,.IBGP.requires. |
| 38a60 | 61 20 66 75 6c 6c 20 6d 65 73 68 20 6f 66 20 61 6c 6c 20 70 65 65 72 73 2e 20 46 6f 72 20 6c 61 | a.full.mesh.of.all.peers..For.la |
| 38a80 | 72 67 65 20 6e 65 74 77 6f 72 6b 73 2c 20 74 68 69 73 20 71 75 69 63 6b 6c 79 20 62 65 63 6f 6d | rge.networks,.this.quickly.becom |
| 38aa0 | 65 73 20 75 6e 73 63 61 6c 61 62 6c 65 2e 00 42 47 50 20 72 6f 75 74 65 73 20 6d 61 79 20 62 65 | es.unscalable..BGP.routes.may.be |
| 38ac0 | 20 6c 65 61 6b 65 64 20 28 69 2e 65 2e 20 63 6f 70 69 65 64 29 20 62 65 74 77 65 65 6e 20 61 20 | .leaked.(i.e..copied).between.a. |
| 38ae0 | 75 6e 69 63 61 73 74 20 56 52 46 20 52 49 42 20 61 6e 64 20 74 68 65 20 56 50 4e 20 53 41 46 49 | unicast.VRF.RIB.and.the.VPN.SAFI |
| 38b00 | 20 52 49 42 20 6f 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 56 52 46 20 66 6f 72 20 75 73 65 20 | .RIB.of.the.default.VRF.for.use. |
| 38b20 | 69 6e 20 4d 50 4c 53 2d 62 61 73 65 64 20 4c 33 56 50 4e 73 2e 20 55 6e 69 63 61 73 74 20 72 6f | in.MPLS-based.L3VPNs..Unicast.ro |
| 38b40 | 75 74 65 73 20 6d 61 79 20 61 6c 73 6f 20 62 65 20 6c 65 61 6b 65 64 20 62 65 74 77 65 65 6e 20 | utes.may.also.be.leaked.between. |
| 38b60 | 61 6e 79 20 56 52 46 73 20 28 69 6e 63 6c 75 64 69 6e 67 20 74 68 65 20 75 6e 69 63 61 73 74 20 | any.VRFs.(including.the.unicast. |
| 38b80 | 52 49 42 20 6f 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 42 47 50 20 69 6e 73 74 61 6e 63 65 29 | RIB.of.the.default.BGP.instance) |
| 38ba0 | 2e 20 41 20 73 68 6f 72 74 63 75 74 20 73 79 6e 74 61 78 20 69 73 20 61 6c 73 6f 20 61 76 61 69 | ..A.shortcut.syntax.is.also.avai |
| 38bc0 | 6c 61 62 6c 65 20 66 6f 72 20 73 70 65 63 69 66 79 69 6e 67 20 6c 65 61 6b 69 6e 67 20 66 72 6f | lable.for.specifying.leaking.fro |
| 38be0 | 6d 20 6f 6e 65 20 56 52 46 20 74 6f 20 61 6e 6f 74 68 65 72 20 56 52 46 20 75 73 69 6e 67 20 74 | m.one.VRF.to.another.VRF.using.t |
| 38c00 | 68 65 20 64 65 66 61 75 6c 74 20 69 6e 73 74 61 6e 63 65 e2 80 99 73 20 56 50 4e 20 52 49 42 20 | he.default.instance...s.VPN.RIB. |
| 38c20 | 61 73 20 74 68 65 20 69 6e 74 65 6d 65 64 69 61 72 79 20 2e 20 41 20 63 6f 6d 6d 6f 6e 20 61 70 | as.the.intemediary...A.common.ap |
| 38c40 | 70 6c 69 63 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 56 52 46 2d 56 52 46 20 66 65 61 74 75 72 65 | plication.of.the.VRF-VRF.feature |
| 38c60 | 20 69 73 20 74 6f 20 63 6f 6e 6e 65 63 74 20 61 20 63 75 73 74 6f 6d 65 72 e2 80 99 73 20 70 72 | .is.to.connect.a.customer...s.pr |
| 38c80 | 69 76 61 74 65 20 72 6f 75 74 69 6e 67 20 64 6f 6d 61 69 6e 20 74 6f 20 61 20 70 72 6f 76 69 64 | ivate.routing.domain.to.a.provid |
| 38ca0 | 65 72 e2 80 99 73 20 56 50 4e 20 73 65 72 76 69 63 65 2e 20 4c 65 61 6b 69 6e 67 20 69 73 20 63 | er...s.VPN.service..Leaking.is.c |
| 38cc0 | 6f 6e 66 69 67 75 72 65 64 20 66 72 6f 6d 20 74 68 65 20 70 6f 69 6e 74 20 6f 66 20 76 69 65 77 | onfigured.from.the.point.of.view |
| 38ce0 | 20 6f 66 20 61 6e 20 69 6e 64 69 76 69 64 75 61 6c 20 56 52 46 3a 20 69 6d 70 6f 72 74 20 72 65 | .of.an.individual.VRF:.import.re |
| 38d00 | 66 65 72 73 20 74 6f 20 72 6f 75 74 65 73 20 6c 65 61 6b 65 64 20 66 72 6f 6d 20 56 50 4e 20 74 | fers.to.routes.leaked.from.VPN.t |
| 38d20 | 6f 20 61 20 75 6e 69 63 61 73 74 20 56 52 46 2c 20 77 68 65 72 65 61 73 20 65 78 70 6f 72 74 20 | o.a.unicast.VRF,.whereas.export. |
| 38d40 | 72 65 66 65 72 73 20 74 6f 20 72 6f 75 74 65 73 20 6c 65 61 6b 65 64 20 66 72 6f 6d 20 61 20 75 | refers.to.routes.leaked.from.a.u |
| 38d60 | 6e 69 63 61 73 74 20 56 52 46 20 74 6f 20 56 50 4e 2e 00 42 53 53 20 63 6f 6c 6f 72 69 6e 67 20 | nicast.VRF.to.VPN..BSS.coloring. |
| 38d80 | 68 65 6c 70 73 20 74 6f 20 70 72 65 76 65 6e 74 20 63 68 61 6e 6e 65 6c 20 6a 61 6d 6d 69 6e 67 | helps.to.prevent.channel.jamming |
| 38da0 | 20 77 68 65 6e 20 6d 75 6c 74 69 70 6c 65 20 41 50 73 20 75 73 65 20 74 68 65 20 73 61 6d 65 20 | .when.multiple.APs.use.the.same. |
| 38dc0 | 63 68 61 6e 6e 65 6c 73 2e 00 42 55 4d 20 74 72 61 66 66 69 63 20 69 73 20 72 78 65 64 20 76 69 | channels..BUM.traffic.is.rxed.vi |
| 38de0 | 61 20 74 68 65 20 6f 76 65 72 6c 61 79 20 62 79 20 61 6c 6c 20 50 45 73 20 61 74 74 61 63 68 65 | a.the.overlay.by.all.PEs.attache |
| 38e00 | 64 20 74 6f 20 61 20 73 65 72 76 65 72 20 62 75 74 20 6f 6e 6c 79 20 74 68 65 20 44 46 20 63 61 | d.to.a.server.but.only.the.DF.ca |
| 38e20 | 6e 20 66 6f 72 77 61 72 64 20 74 68 65 20 64 65 2d 63 61 70 73 75 6c 61 74 65 64 20 74 72 61 66 | n.forward.the.de-capsulated.traf |
| 38e40 | 66 69 63 20 74 6f 20 74 68 65 20 61 63 63 65 73 73 20 70 6f 72 74 2e 20 54 6f 20 61 63 63 6f 6d | fic.to.the.access.port..To.accom |
| 38e60 | 6d 6f 64 61 74 65 20 74 68 61 74 20 6e 6f 6e 2d 44 46 20 66 69 6c 74 65 72 73 20 61 72 65 20 69 | modate.that.non-DF.filters.are.i |
| 38e80 | 6e 73 74 61 6c 6c 65 64 20 69 6e 20 74 68 65 20 64 61 74 61 70 6c 61 6e 65 20 74 6f 20 64 72 6f | nstalled.in.the.dataplane.to.dro |
| 38ea0 | 70 20 74 68 65 20 74 72 61 66 66 69 63 2e 00 42 61 62 65 6c 00 42 61 62 65 6c 20 61 20 64 75 61 | p.the.traffic..Babel.Babel.a.dua |
| 38ec0 | 6c 20 73 74 61 63 6b 20 70 72 6f 74 6f 63 6f 6c 2e 20 41 20 73 69 6e 67 6c 65 20 42 61 62 65 6c | l.stack.protocol..A.single.Babel |
| 38ee0 | 20 69 6e 73 74 61 6e 63 65 20 69 73 20 61 62 6c 65 20 74 6f 20 70 65 72 66 6f 72 6d 20 72 6f 75 | .instance.is.able.to.perform.rou |
| 38f00 | 74 69 6e 67 20 66 6f 72 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 2e 00 42 61 62 | ting.for.both.IPv4.and.IPv6..Bab |
| 38f20 | 65 6c 20 69 73 20 61 20 6d 6f 64 65 72 6e 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 | el.is.a.modern.routing.protocol. |
| 38f40 | 64 65 73 69 67 6e 65 64 20 74 6f 20 62 65 20 72 6f 62 75 73 74 20 61 6e 64 20 65 66 66 69 63 69 | designed.to.be.robust.and.effici |
| 38f60 | 65 6e 74 20 62 6f 74 68 20 69 6e 20 6f 72 64 69 6e 61 72 79 20 77 69 72 65 64 20 6e 65 74 77 6f | ent.both.in.ordinary.wired.netwo |
| 38f80 | 72 6b 73 20 61 6e 64 20 69 6e 20 77 69 72 65 6c 65 73 73 20 6d 65 73 68 20 6e 65 74 77 6f 72 6b | rks.and.in.wireless.mesh.network |
| 38fa0 | 73 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 69 74 20 75 73 65 73 20 68 6f 70 2d 63 6f 75 6e 74 | s..By.default,.it.uses.hop-count |
| 38fc0 | 20 6f 6e 20 77 69 72 65 64 20 6e 65 74 77 6f 72 6b 73 20 61 6e 64 20 61 20 76 61 72 69 61 6e 74 | .on.wired.networks.and.a.variant |
| 38fe0 | 20 6f 66 20 45 54 58 20 6f 6e 20 77 69 72 65 6c 65 73 73 20 6c 69 6e 6b 73 2c 20 49 74 20 63 61 | .of.ETX.on.wireless.links,.It.ca |
| 39000 | 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 74 61 6b 65 20 72 61 64 69 6f 20 64 69 | n.be.configured.to.take.radio.di |
| 39020 | 76 65 72 73 69 74 79 20 69 6e 74 6f 20 61 63 63 6f 75 6e 74 20 61 6e 64 20 74 6f 20 61 75 74 6f | versity.into.account.and.to.auto |
| 39040 | 6d 61 74 69 63 61 6c 6c 79 20 63 6f 6d 70 75 74 65 20 61 20 6c 69 6e 6b 27 73 20 6c 61 74 65 6e | matically.compute.a.link's.laten |
| 39060 | 63 79 20 61 6e 64 20 69 6e 63 6c 75 64 65 20 69 74 20 69 6e 20 74 68 65 20 6d 65 74 72 69 63 2e | cy.and.include.it.in.the.metric. |
| 39080 | 20 49 74 20 69 73 20 64 65 66 69 6e 65 64 20 69 6e 20 3a 72 66 63 3a 60 38 39 36 36 60 2e 00 42 | .It.is.defined.in.:rfc:`8966`..B |
| 390a0 | 61 63 6b 65 6e 64 00 42 61 63 6b 65 6e 64 20 73 65 72 76 69 63 65 20 63 65 72 74 69 66 69 63 61 | ackend.Backend.service.certifica |
| 390c0 | 74 65 73 20 61 72 65 20 63 68 65 63 6b 65 64 20 61 67 61 69 6e 73 74 20 74 68 65 20 63 65 72 74 | tes.are.checked.against.the.cert |
| 390e0 | 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 74 | ificate.authority.specified.in.t |
| 39100 | 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 77 68 69 63 68 20 63 6f 75 6c 64 20 62 65 | he.configuration,.which.could.be |
| 39120 | 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 43 41 2e 00 42 61 6c 61 6e 63 65 20 61 6c 67 6f 72 69 74 | .an.internal.CA..Balance.algorit |
| 39140 | 68 6d 73 3a 00 42 61 6c 61 6e 63 69 6e 67 20 52 75 6c 65 73 00 42 61 6c 61 6e 63 69 6e 67 20 62 | hms:.Balancing.Rules.Balancing.b |
| 39160 | 61 73 65 64 20 6f 6e 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 00 42 61 6c 61 6e 63 69 6e 67 20 77 69 | ased.on.domain.name.Balancing.wi |
| 39180 | 74 68 20 48 54 54 50 20 68 65 61 6c 74 68 20 63 68 65 63 6b 73 00 42 61 6e 64 77 69 64 74 68 20 | th.HTTP.health.checks.Bandwidth. |
| 391a0 | 53 68 61 70 69 6e 67 00 42 61 6e 64 77 69 64 74 68 20 53 68 61 70 69 6e 67 20 66 6f 72 20 6c 6f | Shaping.Bandwidth.Shaping.for.lo |
| 391c0 | 63 61 6c 20 75 73 65 72 73 00 42 61 6e 64 77 69 64 74 68 20 72 61 74 65 20 6c 69 6d 69 74 73 20 | cal.users.Bandwidth.rate.limits. |
| 391e0 | 63 61 6e 20 62 65 20 73 65 74 20 66 6f 72 20 6c 6f 63 61 6c 20 75 73 65 72 73 20 6f 72 20 52 41 | can.be.set.for.local.users.or.RA |
| 39200 | 44 49 55 53 20 62 61 73 65 64 20 61 74 74 72 69 62 75 74 65 73 2e 00 42 61 6e 64 77 69 64 74 68 | DIUS.based.attributes..Bandwidth |
| 39220 | 20 72 61 74 65 20 6c 69 6d 69 74 73 20 63 61 6e 20 62 65 20 73 65 74 20 66 6f 72 20 6c 6f 63 61 | .rate.limits.can.be.set.for.loca |
| 39240 | 6c 20 75 73 65 72 73 20 6f 72 20 76 69 61 20 52 41 44 49 55 53 20 62 61 73 65 64 20 61 74 74 72 | l.users.or.via.RADIUS.based.attr |
| 39260 | 69 62 75 74 65 73 2e 00 42 61 6e 64 77 69 64 74 68 20 72 61 74 65 20 6c 69 6d 69 74 73 20 63 61 | ibutes..Bandwidth.rate.limits.ca |
| 39280 | 6e 20 62 65 20 73 65 74 20 66 6f 72 20 6c 6f 63 61 6c 20 75 73 65 72 73 20 77 69 74 68 69 6e 20 | n.be.set.for.local.users.within. |
| 392a0 | 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 72 20 76 69 61 20 52 41 44 49 55 53 20 | the.configuration.or.via.RADIUS. |
| 392c0 | 62 61 73 65 64 20 61 74 74 72 69 62 75 74 65 73 2e 00 42 61 73 65 20 63 68 61 69 6e 20 66 6f 72 | based.attributes..Base.chain.for |
| 392e0 | 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 | .traffic.towards.the.router.is.` |
| 39300 | 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 | `set.firewall.ipv4.input.filter. |
| 39320 | 2e 2e 2e 60 60 00 42 61 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 77 | ...``.Base.chain.for.traffic.tow |
| 39340 | 61 72 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c | ards.the.router.is.``set.firewal |
| 39360 | 6c 20 69 70 76 36 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 42 61 73 65 20 63 | l.ipv6.input.filter....``.Base.c |
| 39380 | 68 61 69 6e 20 69 73 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 20 74 68 65 20 72 | hain.is.for.traffic.toward.the.r |
| 393a0 | 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 69 6e 70 | outer.is.``set.firewall.ipv4.inp |
| 393c0 | 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 42 61 73 65 20 63 68 61 69 6e 20 69 73 20 66 6f | ut.filter....``.Base.chain.is.fo |
| 393e0 | 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 | r.traffic.toward.the.router.is.` |
| 39400 | 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 | `set.firewall.ipv6.input.filter. |
| 39420 | 2e 2e 2e 60 60 00 42 61 73 65 6c 69 6e 65 20 44 4d 56 50 4e 20 74 6f 70 6f 6c 6f 67 79 00 42 61 | ...``.Baseline.DMVPN.topology.Ba |
| 39440 | 73 69 63 20 43 6f 6e 63 65 70 74 73 00 42 61 73 69 63 20 63 6f 6d 6d 61 6e 64 73 00 42 61 73 69 | sic.Concepts.Basic.commands.Basi |
| 39460 | 63 20 66 69 6c 74 65 72 69 6e 67 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 75 73 69 6e 67 20 61 63 | c.filtering.can.be.done.using.ac |
| 39480 | 63 65 73 73 2d 6c 69 73 74 20 61 6e 64 20 61 63 63 65 73 73 2d 6c 69 73 74 36 2e 00 42 61 73 69 | cess-list.and.access-list6..Basi |
| 394a0 | 63 20 66 69 6c 74 65 72 69 6e 67 20 63 6f 75 6c 64 20 61 6c 73 6f 20 62 65 20 61 70 70 6c 69 65 | c.filtering.could.also.be.applie |
| 394c0 | 64 20 74 6f 20 49 50 76 36 20 74 72 61 66 66 69 63 2e 00 42 61 73 69 63 20 73 65 74 75 70 00 42 | d.to.IPv6.traffic..Basic.setup.B |
| 394e0 | 65 20 73 75 72 65 20 74 6f 20 73 65 74 20 61 20 73 61 6e 65 20 64 65 66 61 75 6c 74 20 63 6f 6e | e.sure.to.set.a.sane.default.con |
| 39500 | 66 69 67 20 69 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 63 6f 6e 66 69 67 20 66 69 6c 65 2c 20 | fig.in.the.default.config.file,. |
| 39520 | 74 68 69 73 20 77 69 6c 6c 20 62 65 20 6c 6f 61 64 65 64 20 69 6e 20 74 68 65 20 63 61 73 65 20 | this.will.be.loaded.in.the.case. |
| 39540 | 74 68 61 74 20 61 20 75 73 65 72 20 69 73 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 20 61 6e 64 | that.a.user.is.authenticated.and |
| 39560 | 20 6e 6f 20 66 69 6c 65 20 69 73 20 66 6f 75 6e 64 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 | .no.file.is.found.in.the.configu |
| 39580 | 72 65 64 20 64 69 72 65 63 74 6f 72 79 20 6d 61 74 63 68 69 6e 67 20 74 68 65 20 75 73 65 72 73 | red.directory.matching.the.users |
| 395a0 | 20 75 73 65 72 6e 61 6d 65 2f 67 72 6f 75 70 2e 00 42 65 61 63 6f 6e 20 50 72 6f 74 65 63 74 69 | .username/group..Beacon.Protecti |
| 395c0 | 6f 6e 3a 20 6d 61 6e 61 67 65 6d 65 6e 74 20 66 72 61 6d 65 20 70 72 6f 74 65 63 74 69 6f 6e 20 | on:.management.frame.protection. |
| 395e0 | 66 6f 72 20 42 65 61 63 6f 6e 20 66 72 61 6d 65 73 2e 00 42 65 61 6d 66 6f 72 6d 69 6e 67 20 63 | for.Beacon.frames..Beamforming.c |
| 39600 | 61 70 61 62 69 6c 69 74 69 65 73 3a 00 42 65 63 61 75 73 65 20 61 6e 20 61 67 67 72 65 67 61 74 | apabilities:.Because.an.aggregat |
| 39620 | 6f 72 20 63 61 6e 6e 6f 74 20 62 65 20 61 63 74 69 76 65 20 77 69 74 68 6f 75 74 20 61 74 20 6c | or.cannot.be.active.without.at.l |
| 39640 | 65 61 73 74 20 6f 6e 65 20 61 76 61 69 6c 61 62 6c 65 20 6c 69 6e 6b 2c 20 73 65 74 74 69 6e 67 | east.one.available.link,.setting |
| 39660 | 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 74 6f 20 30 20 6f 72 20 74 6f 20 31 20 68 61 73 20 74 68 | .this.option.to.0.or.to.1.has.th |
| 39680 | 65 20 65 78 61 63 74 20 73 61 6d 65 20 65 66 66 65 63 74 2e 00 42 65 63 61 75 73 65 20 65 78 69 | e.exact.same.effect..Because.exi |
| 396a0 | 73 74 69 6e 67 20 73 65 73 73 69 6f 6e 73 20 64 6f 20 6e 6f 74 20 61 75 74 6f 6d 61 74 69 63 61 | sting.sessions.do.not.automatica |
| 396c0 | 6c 6c 79 20 66 61 69 6c 20 6f 76 65 72 20 74 6f 20 61 20 6e 65 77 20 70 61 74 68 2c 20 74 68 65 | lly.fail.over.to.a.new.path,.the |
| 396e0 | 20 73 65 73 73 69 6f 6e 20 74 61 62 6c 65 20 63 61 6e 20 62 65 20 66 6c 75 73 68 65 64 20 6f 6e | .session.table.can.be.flushed.on |
| 39700 | 20 65 61 63 68 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 65 20 63 68 61 6e 67 65 3a 00 42 | .each.connection.state.change:.B |
| 39720 | 65 66 6f 72 65 20 65 6e 61 62 6c 69 6e 67 20 61 6e 79 20 68 61 72 64 77 61 72 65 20 73 65 67 6d | efore.enabling.any.hardware.segm |
| 39740 | 65 6e 74 61 74 69 6f 6e 20 6f 66 66 6c 6f 61 64 20 61 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e 67 | entation.offload.a.corresponding |
| 39760 | 20 73 6f 66 74 77 61 72 65 20 6f 66 66 6c 6f 61 64 20 69 73 20 72 65 71 75 69 72 65 64 20 69 6e | .software.offload.is.required.in |
| 39780 | 20 47 53 4f 2e 20 4f 74 68 65 72 77 69 73 65 20 69 74 20 62 65 63 6f 6d 65 73 20 70 6f 73 73 69 | .GSO..Otherwise.it.becomes.possi |
| 397a0 | 62 6c 65 20 66 6f 72 20 61 20 66 72 61 6d 65 20 74 6f 20 62 65 20 72 65 2d 72 6f 75 74 65 64 20 | ble.for.a.frame.to.be.re-routed. |
| 397c0 | 62 65 74 77 65 65 6e 20 64 65 76 69 63 65 73 20 61 6e 64 20 65 6e 64 20 75 70 20 62 65 69 6e 67 | between.devices.and.end.up.being |
| 397e0 | 20 75 6e 61 62 6c 65 20 74 6f 20 62 65 20 74 72 61 6e 73 6d 69 74 74 65 64 2e 00 42 65 66 6f 72 | .unable.to.be.transmitted..Befor |
| 39800 | 65 20 74 65 73 74 69 6e 67 2c 20 77 65 20 63 61 6e 20 63 68 65 63 6b 20 6d 65 6d 62 65 72 73 20 | e.testing,.we.can.check.members. |
| 39820 | 6f 66 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 3a 00 42 65 66 6f 72 65 20 74 65 73 74 69 | of.firewall.groups:.Before.testi |
| 39840 | 6e 67 2c 20 77 65 20 63 61 6e 20 63 68 65 63 6b 20 74 68 65 20 6d 65 6d 62 65 72 73 20 6f 66 20 | ng,.we.can.check.the.members.of. |
| 39860 | 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 3a 00 42 65 66 6f 72 65 20 79 6f 75 20 61 72 65 20 | firewall.groups:.Before.you.are. |
| 39880 | 61 62 6c 65 20 74 6f 20 61 70 70 6c 79 20 61 20 72 75 6c 65 2d 73 65 74 20 74 6f 20 61 20 7a 6f | able.to.apply.a.rule-set.to.a.zo |
| 398a0 | 6e 65 20 79 6f 75 20 68 61 76 65 20 74 6f 20 63 72 65 61 74 65 20 74 68 65 20 7a 6f 6e 65 73 20 | ne.you.have.to.create.the.zones. |
| 398c0 | 66 69 72 73 74 2e 00 42 65 6c 6f 77 20 61 72 65 20 61 20 6c 69 73 74 20 6f 66 20 72 65 63 6f 72 | first..Below.are.a.list.of.recor |
| 398e0 | 64 20 74 79 70 65 73 20 61 76 61 69 6c 61 62 6c 65 20 74 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 | d.types.available.to.be.configur |
| 39900 | 65 64 20 77 69 74 68 69 6e 20 56 79 4f 53 2e 20 53 6f 6d 65 20 72 65 63 6f 72 64 73 20 73 75 70 | ed.within.VyOS..Some.records.sup |
| 39920 | 70 6f 72 74 20 73 70 65 63 69 61 6c 20 60 3c 6e 61 6d 65 3e 60 20 6b 65 79 77 6f 72 64 73 3a 00 | port.special.`<name>`.keywords:. |
| 39940 | 42 65 6c 6f 77 20 66 6c 6f 77 2d 63 68 61 72 74 20 63 6f 75 6c 64 20 62 65 20 61 20 71 75 69 63 | Below.flow-chart.could.be.a.quic |
| 39960 | 6b 20 72 65 66 65 72 65 6e 63 65 20 66 6f 72 20 74 68 65 20 63 6c 6f 73 65 2d 61 63 74 69 6f 6e | k.reference.for.the.close-action |
| 39980 | 20 63 6f 6d 62 69 6e 61 74 69 6f 6e 20 64 65 70 65 6e 64 69 6e 67 20 6f 6e 20 68 6f 77 20 74 68 | .combination.depending.on.how.th |
| 399a0 | 65 20 70 65 65 72 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 42 65 6c 6f 77 20 69 73 20 61 | e.peer.is.configured..Below.is.a |
| 399c0 | 6e 20 65 78 61 6d 70 6c 65 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 4c 4e 53 3a 00 42 65 | n.example.to.configure.a.LNS:.Be |
| 399e0 | 73 74 20 65 66 66 6f 72 74 20 74 72 61 66 66 69 63 2c 20 64 65 66 61 75 6c 74 00 42 65 74 77 65 | st.effort.traffic,.default.Betwe |
| 39a00 | 65 6e 20 63 6f 6d 70 75 74 65 72 73 2c 20 74 68 65 20 6d 6f 73 74 20 63 6f 6d 6d 6f 6e 20 63 6f | en.computers,.the.most.common.co |
| 39a20 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 75 73 65 64 20 77 61 73 20 22 38 4e 31 22 3a 20 65 69 67 68 | nfiguration.used.was."8N1":.eigh |
| 39a40 | 74 20 62 69 74 20 63 68 61 72 61 63 74 65 72 73 2c 20 77 69 74 68 20 6f 6e 65 20 73 74 61 72 74 | t.bit.characters,.with.one.start |
| 39a60 | 20 62 69 74 2c 20 6f 6e 65 20 73 74 6f 70 20 62 69 74 2c 20 61 6e 64 20 6e 6f 20 70 61 72 69 74 | .bit,.one.stop.bit,.and.no.parit |
| 39a80 | 79 20 62 69 74 2e 20 54 68 75 73 20 31 30 20 42 61 75 64 20 74 69 6d 65 73 20 61 72 65 20 75 73 | y.bit..Thus.10.Baud.times.are.us |
| 39aa0 | 65 64 20 74 6f 20 73 65 6e 64 20 61 20 73 69 6e 67 6c 65 20 63 68 61 72 61 63 74 65 72 2c 20 61 | ed.to.send.a.single.character,.a |
| 39ac0 | 6e 64 20 73 6f 20 64 69 76 69 64 69 6e 67 20 74 68 65 20 73 69 67 6e 61 6c 6c 69 6e 67 20 62 69 | nd.so.dividing.the.signalling.bi |
| 39ae0 | 74 2d 72 61 74 65 20 62 79 20 74 65 6e 20 72 65 73 75 6c 74 73 20 69 6e 20 74 68 65 20 6f 76 65 | t-rate.by.ten.results.in.the.ove |
| 39b00 | 72 61 6c 6c 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 20 73 70 65 65 64 20 69 6e 20 63 68 61 72 61 | rall.transmission.speed.in.chara |
| 39b20 | 63 74 65 72 73 20 70 65 72 20 73 65 63 6f 6e 64 2e 20 54 68 69 73 20 69 73 20 61 6c 73 6f 20 74 | cters.per.second..This.is.also.t |
| 39b40 | 68 65 20 64 65 66 61 75 6c 74 20 73 65 74 74 69 6e 67 20 69 66 20 6e 6f 6e 65 20 6f 66 20 74 68 | he.default.setting.if.none.of.th |
| 39b60 | 6f 73 65 20 6f 70 74 69 6f 6e 73 20 61 72 65 20 64 65 66 69 6e 65 64 2e 00 42 69 64 69 72 65 63 | ose.options.are.defined..Bidirec |
| 39b80 | 74 69 6f 6e 61 6c 20 4e 41 54 00 42 69 6e 61 72 79 20 76 61 6c 75 65 00 42 69 6e 64 20 63 6f 6e | tional.NAT.Binary.value.Bind.con |
| 39ba0 | 74 61 69 6e 65 72 20 6e 65 74 77 6f 72 6b 20 74 6f 20 61 20 67 69 76 65 6e 20 56 52 46 20 69 6e | tainer.network.to.a.given.VRF.in |
| 39bc0 | 73 74 61 6e 63 65 2e 00 42 69 6e 64 20 6c 69 73 74 65 6e 65 72 20 74 6f 20 73 70 65 63 69 66 69 | stance..Bind.listener.to.specifi |
| 39be0 | 63 20 69 6e 74 65 72 66 61 63 65 2f 61 64 64 72 65 73 73 2c 20 6d 61 6e 64 61 74 6f 72 79 20 66 | c.interface/address,.mandatory.f |
| 39c00 | 6f 72 20 49 50 76 36 00 42 69 6e 64 73 20 65 74 68 31 2e 32 34 31 20 61 6e 64 20 76 78 6c 61 6e | or.IPv6.Binds.eth1.241.and.vxlan |
| 39c20 | 32 34 31 20 74 6f 20 65 61 63 68 20 6f 74 68 65 72 20 62 79 20 6d 61 6b 69 6e 67 20 74 68 65 6d | 241.to.each.other.by.making.them |
| 39c40 | 20 62 6f 74 68 20 6d 65 6d 62 65 72 20 69 6e 74 65 72 66 61 63 65 73 20 6f 66 20 74 68 65 20 73 | .both.member.interfaces.of.the.s |
| 39c60 | 61 6d 65 20 62 72 69 64 67 65 2e 00 42 6c 61 63 6b 68 6f 6c 65 00 42 6c 6f 63 6b 20 73 6f 75 72 | ame.bridge..Blackhole.Block.sour |
| 39c80 | 63 65 20 49 50 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 53 75 62 73 65 71 75 65 6e 74 20 62 6c 6f | ce.IP.in.seconds..Subsequent.blo |
| 39ca0 | 63 6b 73 20 69 6e 63 72 65 61 73 65 20 62 79 20 61 20 66 61 63 74 6f 72 20 6f 66 20 31 2e 35 20 | cks.increase.by.a.factor.of.1.5. |
| 39cc0 | 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 31 32 30 2e 00 42 6c 6f 63 6b 20 73 6f 75 72 63 65 | The.default.is.120..Block.source |
| 39ce0 | 20 49 50 20 77 68 65 6e 20 74 68 65 69 72 20 63 75 6d 75 6c 61 74 69 76 65 20 61 74 74 61 63 6b | .IP.when.their.cumulative.attack |
| 39d00 | 20 73 63 6f 72 65 20 65 78 63 65 65 64 73 20 74 68 72 65 73 68 6f 6c 64 2e 20 54 68 65 20 64 65 | .score.exceeds.threshold..The.de |
| 39d20 | 66 61 75 6c 74 20 69 73 20 33 30 2e 00 42 6c 6f 63 6b 69 6e 67 20 63 61 6c 6c 20 77 69 74 68 20 | fault.is.30..Blocking.call.with. |
| 39d40 | 6e 6f 20 74 69 6d 65 6f 75 74 2e 20 53 79 73 74 65 6d 20 77 69 6c 6c 20 62 65 63 6f 6d 65 20 75 | no.timeout..System.will.become.u |
| 39d60 | 6e 72 65 73 70 6f 6e 73 69 76 65 20 69 66 20 73 63 72 69 70 74 20 64 6f 65 73 20 6e 6f 74 20 72 | nresponsive.if.script.does.not.r |
| 39d80 | 65 74 75 72 6e 21 00 42 6f 61 72 64 65 72 20 47 61 74 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c 20 | eturn!.Boarder.Gateway.Protocol. |
| 39da0 | 28 42 47 50 29 20 6f 72 69 67 69 6e 20 63 6f 64 65 20 74 6f 20 6d 61 74 63 68 2e 00 42 6f 6e 64 | (BGP).origin.code.to.match..Bond |
| 39dc0 | 20 2f 20 4c 69 6e 6b 20 41 67 67 72 65 67 61 74 69 6f 6e 00 42 6f 6e 64 20 6f 70 74 69 6f 6e 73 | ./.Link.Aggregation.Bond.options |
| 39de0 | 00 42 6f 6f 74 20 69 6d 61 67 65 20 6c 65 6e 67 74 68 20 69 6e 20 35 31 32 2d 6f 63 74 65 74 20 | .Boot.image.length.in.512-octet. |
| 39e00 | 62 6c 6f 63 6b 73 00 42 6f 6f 74 73 74 72 61 70 20 66 69 6c 65 20 6e 61 6d 65 00 42 6f 74 68 20 | blocks.Bootstrap.file.name.Both. |
| 39e20 | 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 6d 75 6c 74 69 63 61 73 74 20 69 73 20 70 6f 73 73 69 | IPv4.and.IPv6.multicast.is.possi |
| 39e40 | 62 6c 65 2e 00 42 6f 74 68 20 6c 6f 63 61 6c 20 61 64 6d 69 6e 69 73 74 65 72 65 64 20 61 6e 64 | ble..Both.local.administered.and |
| 39e60 | 20 72 65 6d 6f 74 65 20 61 64 6d 69 6e 69 73 74 65 72 65 64 20 3a 61 62 62 72 3a 60 52 41 44 49 | .remote.administered.:abbr:`RADI |
| 39e80 | 55 53 20 28 52 65 6d 6f 74 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 44 69 61 6c 2d 49 | US.(Remote.Authentication.Dial-I |
| 39ea0 | 6e 20 55 73 65 72 20 53 65 72 76 69 63 65 29 60 20 61 63 63 6f 75 6e 74 73 20 61 72 65 20 73 75 | n.User.Service)`.accounts.are.su |
| 39ec0 | 70 70 6f 72 74 65 64 2e 00 42 6f 74 68 20 72 65 70 6c 69 65 73 20 61 6e 64 20 72 65 71 75 65 73 | pported..Both.replies.and.reques |
| 39ee0 | 74 73 20 74 79 70 65 20 67 72 61 74 75 69 74 6f 75 73 20 61 72 70 20 77 69 6c 6c 20 74 72 69 67 | ts.type.gratuitous.arp.will.trig |
| 39f00 | 67 65 72 20 74 68 65 20 41 52 50 20 74 61 62 6c 65 20 74 6f 20 62 65 20 75 70 64 61 74 65 64 2c | ger.the.ARP.table.to.be.updated, |
| 39f20 | 20 69 66 20 74 68 69 73 20 73 65 74 74 69 6e 67 20 69 73 20 6f 6e 2e 00 42 72 61 6e 63 68 20 31 | .if.this.setting.is.on..Branch.1 |
| 39f40 | 27 73 20 72 6f 75 74 65 72 20 6d 69 67 68 74 20 68 61 76 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 | 's.router.might.have.the.followi |
| 39f60 | 6e 67 20 6c 69 6e 65 73 3a 00 42 72 69 64 67 65 00 42 72 69 64 67 65 20 46 69 72 65 77 61 6c 6c | ng.lines:.Bridge.Bridge.Firewall |
| 39f80 | 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 42 72 69 64 67 65 20 4f 70 74 69 6f 6e 73 00 42 72 | .Configuration.Bridge.Options.Br |
| 39fa0 | 69 64 67 65 20 52 75 6c 65 73 00 42 72 69 64 67 65 20 61 6e 73 77 65 72 73 20 6f 6e 20 49 50 20 | idge.Rules.Bridge.answers.on.IP. |
| 39fc0 | 61 64 64 72 65 73 73 20 31 39 32 2e 30 2e 32 2e 31 2f 32 34 20 61 6e 64 20 32 30 30 31 3a 64 62 | address.192.0.2.1/24.and.2001:db |
| 39fe0 | 38 3a 3a 66 66 66 66 2f 36 34 00 42 72 69 64 67 65 20 6d 61 78 69 6d 75 6d 20 61 67 69 6e 67 20 | 8::ffff/64.Bridge.maximum.aging. |
| 3a000 | 60 3c 74 69 6d 65 3e 60 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a 20 32 30 | `<time>`.in.seconds.(default:.20 |
| 3a020 | 29 2e 00 42 72 69 64 67 65 3a 00 42 75 72 73 74 20 63 6f 75 6e 74 00 42 75 73 69 6e 65 73 73 20 | )..Bridge:.Burst.count.Business. |
| 3a040 | 55 73 65 72 73 00 42 75 74 20 62 65 66 6f 72 65 20 6c 65 61 72 6e 69 6e 67 20 74 6f 20 63 6f 6e | Users.But.before.learning.to.con |
| 3a060 | 66 69 67 75 72 65 20 79 6f 75 72 20 70 6f 6c 69 63 79 2c 20 77 65 20 77 69 6c 6c 20 77 61 72 6e | figure.your.policy,.we.will.warn |
| 3a080 | 20 79 6f 75 20 61 62 6f 75 74 20 74 68 65 20 64 69 66 66 65 72 65 6e 74 20 75 6e 69 74 73 20 79 | .you.about.the.different.units.y |
| 3a0a0 | 6f 75 20 63 61 6e 20 75 73 65 20 61 6e 64 20 61 6c 73 6f 20 73 68 6f 77 20 79 6f 75 20 77 68 61 | ou.can.use.and.also.show.you.wha |
| 3a0c0 | 74 20 2a 63 6c 61 73 73 65 73 2a 20 61 72 65 20 61 6e 64 20 68 6f 77 20 74 68 65 79 20 77 6f 72 | t.*classes*.are.and.how.they.wor |
| 3a0e0 | 6b 2c 20 61 73 20 73 6f 6d 65 20 70 6f 6c 69 63 69 65 73 20 6d 61 79 20 72 65 71 75 69 72 65 20 | k,.as.some.policies.may.require. |
| 3a100 | 79 6f 75 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 6d 2e 00 42 79 20 64 65 66 61 75 6c | you.to.configure.them..By.defaul |
| 3a120 | 74 20 56 52 52 50 20 75 73 65 73 20 6d 75 6c 74 69 63 61 73 74 20 70 61 63 6b 65 74 73 2e 20 49 | t.VRRP.uses.multicast.packets..I |
| 3a140 | 66 20 79 6f 75 72 20 6e 65 74 77 6f 72 6b 20 64 6f 65 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 20 | f.your.network.does.not.support. |
| 3a160 | 6d 75 6c 74 69 63 61 73 74 20 66 6f 72 20 77 68 61 74 65 76 65 72 20 72 65 61 73 6f 6e 2c 20 79 | multicast.for.whatever.reason,.y |
| 3a180 | 6f 75 20 63 61 6e 20 6d 61 6b 65 20 56 52 52 50 20 75 73 65 20 75 6e 69 63 61 73 74 20 63 6f 6d | ou.can.make.VRRP.use.unicast.com |
| 3a1a0 | 6d 75 6e 69 63 61 74 69 6f 6e 20 69 6e 73 74 65 61 64 2e 00 42 79 20 64 65 66 61 75 6c 74 20 56 | munication.instead..By.default.V |
| 3a1c0 | 52 52 50 20 75 73 65 73 20 70 72 65 65 6d 70 74 69 6f 6e 2e 20 59 6f 75 20 63 61 6e 20 64 69 73 | RRP.uses.preemption..You.can.dis |
| 3a1e0 | 61 62 6c 65 20 69 74 20 77 69 74 68 20 74 68 65 20 22 6e 6f 2d 70 72 65 65 6d 70 74 22 20 6f 70 | able.it.with.the."no-preempt".op |
| 3a200 | 74 69 6f 6e 3a 00 42 79 20 64 65 66 61 75 6c 74 20 60 73 74 72 69 63 74 2d 6c 73 61 2d 63 68 65 | tion:.By.default.`strict-lsa-che |
| 3a220 | 63 6b 69 6e 67 60 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 74 68 65 6e 20 74 68 65 20 68 65 | cking`.is.configured.then.the.he |
| 3a240 | 6c 70 65 72 20 77 69 6c 6c 20 61 62 6f 72 74 20 74 68 65 20 47 72 61 63 65 66 75 6c 20 52 65 73 | lper.will.abort.the.Graceful.Res |
| 3a260 | 74 61 72 74 20 77 68 65 6e 20 61 20 4c 53 41 20 63 68 61 6e 67 65 20 6f 63 63 75 72 73 20 77 68 | tart.when.a.LSA.change.occurs.wh |
| 3a280 | 69 63 68 20 61 66 66 65 63 74 73 20 74 68 65 20 72 65 73 74 61 72 74 69 6e 67 20 72 6f 75 74 65 | ich.affects.the.restarting.route |
| 3a2a0 | 72 2e 00 42 79 20 64 65 66 61 75 6c 74 20 74 68 65 20 73 63 6f 70 65 20 6f 66 20 74 68 65 20 70 | r..By.default.the.scope.of.the.p |
| 3a2c0 | 6f 72 74 20 62 69 6e 64 69 6e 67 73 20 66 6f 72 20 75 6e 62 6f 75 6e 64 20 73 6f 63 6b 65 74 73 | ort.bindings.for.unbound.sockets |
| 3a2e0 | 20 69 73 20 6c 69 6d 69 74 65 64 20 74 6f 20 74 68 65 20 64 65 66 61 75 6c 74 20 56 52 46 2e 20 | .is.limited.to.the.default.VRF.. |
| 3a300 | 54 68 61 74 20 69 73 2c 20 69 74 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 6d 61 74 63 68 65 64 20 | That.is,.it.will.not.be.matched. |
| 3a320 | 62 79 20 70 61 63 6b 65 74 73 20 61 72 72 69 76 69 6e 67 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 | by.packets.arriving.on.interface |
| 3a340 | 73 20 65 6e 73 6c 61 76 65 64 20 74 6f 20 61 20 56 52 46 20 61 6e 64 20 70 72 6f 63 65 73 73 65 | s.enslaved.to.a.VRF.and.processe |
| 3a360 | 73 20 6d 61 79 20 62 69 6e 64 20 74 6f 20 74 68 65 20 73 61 6d 65 20 70 6f 72 74 20 69 66 20 74 | s.may.bind.to.the.same.port.if.t |
| 3a380 | 68 65 79 20 62 69 6e 64 20 74 6f 20 61 20 56 52 46 2e 00 42 79 20 64 65 66 61 75 6c 74 2c 20 46 | hey.bind.to.a.VRF..By.default,.F |
| 3a3a0 | 52 52 20 77 69 6c 6c 20 62 72 69 6e 67 20 75 70 20 70 65 65 72 69 6e 67 20 77 69 74 68 20 6d 69 | RR.will.bring.up.peering.with.mi |
| 3a3c0 | 6e 69 6d 61 6c 20 63 6f 6d 6d 6f 6e 20 63 61 70 61 62 69 6c 69 74 79 20 66 6f 72 20 74 68 65 20 | nimal.common.capability.for.the. |
| 3a3e0 | 62 6f 74 68 20 73 69 64 65 73 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 69 66 20 74 68 65 20 | both.sides..For.example,.if.the. |
| 3a400 | 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 68 61 73 20 75 6e 69 63 61 73 74 20 61 6e 64 20 6d 75 6c | local.router.has.unicast.and.mul |
| 3a420 | 74 69 63 61 73 74 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 61 6e 64 20 74 68 65 20 72 65 6d 6f | ticast.capabilities.and.the.remo |
| 3a440 | 74 65 20 72 6f 75 74 65 72 20 6f 6e 6c 79 20 68 61 73 20 75 6e 69 63 61 73 74 20 63 61 70 61 62 | te.router.only.has.unicast.capab |
| 3a460 | 69 6c 69 74 79 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 65 73 74 61 | ility.the.local.router.will.esta |
| 3a480 | 62 6c 69 73 68 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 68 20 75 6e 69 63 61 73 | blish.the.connection.with.unicas |
| 3a4a0 | 74 20 6f 6e 6c 79 20 63 61 70 61 62 69 6c 69 74 79 2e 20 57 68 65 6e 20 74 68 65 72 65 20 61 72 | t.only.capability..When.there.ar |
| 3a4c0 | 65 20 6e 6f 20 63 6f 6d 6d 6f 6e 20 63 61 70 61 62 69 6c 69 74 69 65 73 2c 20 46 52 52 20 73 65 | e.no.common.capabilities,.FRR.se |
| 3a4e0 | 6e 64 73 20 55 6e 73 75 70 70 6f 72 74 65 64 20 43 61 70 61 62 69 6c 69 74 79 20 65 72 72 6f 72 | nds.Unsupported.Capability.error |
| 3a500 | 20 61 6e 64 20 74 68 65 6e 20 72 65 73 65 74 73 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e | .and.then.resets.the.connection. |
| 3a520 | 00 42 79 20 64 65 66 61 75 6c 74 2c 20 56 79 4f 53 20 64 6f 65 73 20 6e 6f 74 20 61 64 76 65 72 | .By.default,.VyOS.does.not.adver |
| 3a540 | 74 69 73 65 20 61 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 28 30 2e 30 2e 30 2e 30 2f 30 29 | tise.a.default.route.(0.0.0.0/0) |
| 3a560 | 20 65 76 65 6e 20 69 66 20 69 74 20 69 73 20 69 6e 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e | .even.if.it.is.in.routing.table. |
| 3a580 | 20 57 68 65 6e 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 61 6e 6e 6f 75 6e 63 65 20 64 65 66 61 75 | .When.you.want.to.announce.defau |
| 3a5a0 | 6c 74 20 72 6f 75 74 65 73 20 74 6f 20 74 68 65 20 70 65 65 72 2c 20 75 73 65 20 74 68 69 73 20 | lt.routes.to.the.peer,.use.this. |
| 3a5c0 | 63 6f 6d 6d 61 6e 64 2e 20 55 73 69 6e 67 20 6f 70 74 69 6f 6e 61 6c 20 61 72 67 75 6d 65 6e 74 | command..Using.optional.argument |
| 3a5e0 | 20 3a 63 66 67 63 6d 64 3a 60 72 6f 75 74 65 2d 6d 61 70 60 20 79 6f 75 20 63 61 6e 20 69 6e 6a | .:cfgcmd:`route-map`.you.can.inj |
| 3a600 | 65 63 74 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 74 6f 20 67 69 76 65 6e 20 6e | ect.the.default.route.to.given.n |
| 3a620 | 65 69 67 68 62 6f 72 20 6f 6e 6c 79 20 69 66 20 74 68 65 20 63 6f 6e 64 69 74 69 6f 6e 73 20 69 | eighbor.only.if.the.conditions.i |
| 3a640 | 6e 20 74 68 65 20 72 6f 75 74 65 20 6d 61 70 20 61 72 65 20 6d 65 74 2e 00 42 79 20 64 65 66 61 | n.the.route.map.are.met..By.defa |
| 3a660 | 75 6c 74 2c 20 61 20 6e 65 77 20 74 6f 6b 65 6e 20 69 73 20 67 65 6e 65 72 61 74 65 64 20 65 76 | ult,.a.new.token.is.generated.ev |
| 3a680 | 65 72 79 20 33 30 20 73 65 63 6f 6e 64 73 20 62 79 20 74 68 65 20 6d 6f 62 69 6c 65 20 61 70 70 | ery.30.seconds.by.the.mobile.app |
| 3a6a0 | 6c 69 63 61 74 69 6f 6e 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 63 6f 6d 70 65 6e 73 61 74 65 | lication..In.order.to.compensate |
| 3a6c0 | 20 66 6f 72 20 70 6f 73 73 69 62 6c 65 20 74 69 6d 65 2d 73 6b 65 77 20 62 65 74 77 65 65 6e 20 | .for.possible.time-skew.between. |
| 3a6e0 | 74 68 65 20 63 6c 69 65 6e 74 20 61 6e 64 20 74 68 65 20 73 65 72 76 65 72 2c 20 61 6e 20 65 78 | the.client.and.the.server,.an.ex |
| 3a700 | 74 72 61 20 74 6f 6b 65 6e 20 62 65 66 6f 72 65 20 61 6e 64 20 61 66 74 65 72 20 74 68 65 20 63 | tra.token.before.and.after.the.c |
| 3a720 | 75 72 72 65 6e 74 20 74 69 6d 65 20 69 73 20 61 6c 6c 6f 77 65 64 2e 20 54 68 69 73 20 61 6c 6c | urrent.time.is.allowed..This.all |
| 3a740 | 6f 77 73 20 66 6f 72 20 61 20 74 69 6d 65 20 73 6b 65 77 20 6f 66 20 75 70 20 74 6f 20 33 30 20 | ows.for.a.time.skew.of.up.to.30. |
| 3a760 | 73 65 63 6f 6e 64 73 20 62 65 74 77 65 65 6e 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 | seconds.between.authentication.s |
| 3a780 | 65 72 76 65 72 20 61 6e 64 20 63 6c 69 65 6e 74 2e 00 42 79 20 64 65 66 61 75 6c 74 2c 20 64 64 | erver.and.client..By.default,.dd |
| 3a7a0 | 63 6c 69 65 6e 74 5f 20 77 69 6c 6c 20 75 70 64 61 74 65 20 61 20 64 79 6e 61 6d 69 63 20 64 6e | client_.will.update.a.dynamic.dn |
| 3a7c0 | 73 20 72 65 63 6f 72 64 20 75 73 69 6e 67 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 64 69 | s.record.using.the.IP.address.di |
| 3a7e0 | 72 65 63 74 6c 79 20 61 74 74 61 63 68 65 64 20 74 6f 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 | rectly.attached.to.the.interface |
| 3a800 | 2e 20 49 66 20 79 6f 75 72 20 56 79 4f 53 20 69 6e 73 74 61 6e 63 65 20 69 73 20 62 65 68 69 6e | ..If.your.VyOS.instance.is.behin |
| 3a820 | 64 20 4e 41 54 2c 20 79 6f 75 72 20 72 65 63 6f 72 64 20 77 69 6c 6c 20 62 65 20 75 70 64 61 74 | d.NAT,.your.record.will.be.updat |
| 3a840 | 65 64 20 74 6f 20 70 6f 69 6e 74 20 74 6f 20 79 6f 75 72 20 69 6e 74 65 72 6e 61 6c 20 49 50 2e | ed.to.point.to.your.internal.IP. |
| 3a860 | 00 42 79 20 64 65 66 61 75 6c 74 2c 20 65 6e 61 62 6c 69 6e 67 20 52 50 4b 49 20 64 6f 65 73 20 | .By.default,.enabling.RPKI.does. |
| 3a880 | 6e 6f 74 20 63 68 61 6e 67 65 20 62 65 73 74 20 70 61 74 68 20 73 65 6c 65 63 74 69 6f 6e 2e 20 | not.change.best.path.selection.. |
| 3a8a0 | 49 6e 20 70 61 72 74 69 63 75 6c 61 72 2c 20 69 6e 76 61 6c 69 64 20 70 72 65 66 69 78 65 73 20 | In.particular,.invalid.prefixes. |
| 3a8c0 | 77 69 6c 6c 20 73 74 69 6c 6c 20 62 65 20 63 6f 6e 73 69 64 65 72 65 64 20 64 75 72 69 6e 67 20 | will.still.be.considered.during. |
| 3a8e0 | 62 65 73 74 20 70 61 74 68 20 73 65 6c 65 63 74 69 6f 6e 2e 20 48 6f 77 65 76 65 72 2c 20 74 68 | best.path.selection..However,.th |
| 3a900 | 65 20 72 6f 75 74 65 72 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 69 67 | e.router.can.be.configured.to.ig |
| 3a920 | 6e 6f 72 65 20 61 6c 6c 20 69 6e 76 61 6c 69 64 20 70 72 65 66 69 78 65 73 2e 00 42 79 20 64 65 | nore.all.invalid.prefixes..By.de |
| 3a940 | 66 61 75 6c 74 2c 20 66 6f 72 20 73 77 69 74 63 68 65 64 20 74 72 61 66 66 69 63 2c 20 6f 6e 6c | fault,.for.switched.traffic,.onl |
| 3a960 | 79 20 74 68 65 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 | y.the.rules.defined.under.``set. |
| 3a980 | 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 60 60 20 61 72 65 20 61 70 70 6c 69 65 64 2e 20 54 | firewall.bridge``.are.applied..T |
| 3a9a0 | 68 65 72 65 20 61 72 65 20 74 77 6f 20 67 6c 6f 62 61 6c 2d 6f 70 74 69 6f 6e 73 20 74 68 61 74 | here.are.two.global-options.that |
| 3a9c0 | 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 66 | .can.be.configured.in.order.to.f |
| 3a9e0 | 6f 72 63 65 20 64 65 65 70 65 72 20 61 6e 61 6c 79 73 69 73 20 6f 66 20 74 68 65 20 70 61 63 6b | orce.deeper.analysis.of.the.pack |
| 3aa00 | 65 74 20 6f 6e 20 74 68 65 20 49 50 20 6c 61 79 65 72 2e 20 54 68 65 73 65 20 6f 70 74 69 6f 6e | et.on.the.IP.layer..These.option |
| 3aa20 | 73 20 61 72 65 3a 00 42 79 20 64 65 66 61 75 6c 74 2c 20 69 74 20 73 75 70 70 6f 72 74 73 20 62 | s.are:.By.default,.it.supports.b |
| 3aa40 | 6f 74 68 20 70 6c 61 6e 6e 65 64 20 61 6e 64 20 75 6e 70 6c 61 6e 6e 65 64 20 6f 75 74 61 67 65 | oth.planned.and.unplanned.outage |
| 3aa60 | 73 2e 00 42 79 20 64 65 66 61 75 6c 74 2c 20 6c 6f 63 61 6c 6c 79 20 61 64 76 65 72 74 69 73 65 | s..By.default,.locally.advertise |
| 3aa80 | 64 20 70 72 65 66 69 78 65 73 20 75 73 65 20 74 68 65 20 69 6d 70 6c 69 63 69 74 2d 6e 75 6c 6c | d.prefixes.use.the.implicit-null |
| 3aaa0 | 20 6c 61 62 65 6c 20 74 6f 20 65 6e 63 6f 64 65 20 69 6e 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 | .label.to.encode.in.the.outgoing |
| 3aac0 | 20 4e 4c 52 49 2e 00 42 79 20 64 65 66 61 75 6c 74 2c 20 6e 67 69 6e 78 20 65 78 70 6f 73 65 73 | .NLRI..By.default,.nginx.exposes |
| 3aae0 | 20 74 68 65 20 6c 6f 63 61 6c 20 41 50 49 20 6f 6e 20 61 6c 6c 20 76 69 72 74 75 61 6c 20 73 65 | .the.local.API.on.all.virtual.se |
| 3ab00 | 72 76 65 72 73 2e 20 55 73 65 20 74 68 69 73 20 74 6f 20 72 65 73 74 72 69 63 74 20 6e 67 69 6e | rvers..Use.this.to.restrict.ngin |
| 3ab20 | 78 20 74 6f 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 76 69 72 74 75 61 6c 20 68 6f 73 74 73 2e 00 | x.to.one.or.more.virtual.hosts.. |
| 3ab40 | 42 79 20 64 65 66 61 75 6c 74 2c 20 72 65 63 6f 72 64 65 64 20 66 6c 6f 77 73 20 77 69 6c 6c 20 | By.default,.recorded.flows.will. |
| 3ab60 | 62 65 20 73 61 76 65 64 20 69 6e 74 65 72 6e 61 6c 6c 79 20 61 6e 64 20 63 61 6e 20 62 65 20 6c | be.saved.internally.and.can.be.l |
| 3ab80 | 69 73 74 65 64 20 77 69 74 68 20 74 68 65 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 2e 20 59 6f 75 20 | isted.with.the.CLI.command..You. |
| 3aba0 | 6d 61 79 20 64 69 73 61 62 6c 65 20 75 73 69 6e 67 20 74 68 65 20 6c 6f 63 61 6c 20 69 6e 2d 6d | may.disable.using.the.local.in-m |
| 3abc0 | 65 6d 6f 72 79 20 74 61 62 6c 65 20 77 69 74 68 20 74 68 65 20 63 6f 6d 6d 61 6e 64 3a 00 42 79 | emory.table.with.the.command:.By |
| 3abe0 | 20 64 65 66 61 75 6c 74 2c 20 74 68 65 20 42 47 50 20 70 72 65 66 69 78 20 69 73 20 61 64 76 65 | .default,.the.BGP.prefix.is.adve |
| 3ac00 | 72 74 69 73 65 64 20 65 76 65 6e 20 69 66 20 69 74 27 73 20 6e 6f 74 20 70 72 65 73 65 6e 74 20 | rtised.even.if.it's.not.present. |
| 3ac20 | 69 6e 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 20 54 68 69 73 20 62 65 68 61 76 | in.the.routing.table..This.behav |
| 3ac40 | 69 6f 75 72 20 64 69 66 66 65 72 73 20 66 72 6f 6d 20 74 68 65 20 69 6d 70 6c 65 6d 65 6e 74 61 | iour.differs.from.the.implementa |
| 3ac60 | 74 69 6f 6e 20 6f 66 20 73 6f 6d 65 20 76 65 6e 64 6f 72 73 2e 00 42 79 20 64 65 66 61 75 6c 74 | tion.of.some.vendors..By.default |
| 3ac80 | 2c 20 74 68 69 73 20 62 72 69 64 67 69 6e 67 20 69 73 20 61 6c 6c 6f 77 65 64 2e 00 42 79 20 64 | ,.this.bridging.is.allowed..By.d |
| 3aca0 | 65 66 61 75 6c 74 2c 20 77 68 65 6e 20 56 79 4f 53 20 72 65 63 65 69 76 65 73 20 61 6e 20 49 43 | efault,.when.VyOS.receives.an.IC |
| 3acc0 | 4d 50 20 65 63 68 6f 20 72 65 71 75 65 73 74 20 70 61 63 6b 65 74 20 64 65 73 74 69 6e 65 64 20 | MP.echo.request.packet.destined. |
| 3ace0 | 66 6f 72 20 69 74 73 65 6c 66 2c 20 69 74 20 77 69 6c 6c 20 61 6e 73 77 65 72 20 77 69 74 68 20 | for.itself,.it.will.answer.with. |
| 3ad00 | 61 6e 20 49 43 4d 50 20 65 63 68 6f 20 72 65 70 6c 79 2c 20 75 6e 6c 65 73 73 20 79 6f 75 20 61 | an.ICMP.echo.reply,.unless.you.a |
| 3ad20 | 76 6f 69 64 20 69 74 20 74 68 72 6f 75 67 68 20 69 74 73 20 66 69 72 65 77 61 6c 6c 2e 00 42 79 | void.it.through.its.firewall..By |
| 3ad40 | 20 64 65 66 61 75 6c 74 2c 20 77 68 65 6e 20 56 79 4f 53 20 72 65 63 65 69 76 65 73 20 61 6e 20 | .default,.when.VyOS.receives.an. |
| 3ad60 | 49 43 4d 50 20 65 63 68 6f 20 72 65 71 75 65 73 74 20 70 61 63 6b 65 74 20 64 65 73 74 69 6e 65 | ICMP.echo.request.packet.destine |
| 3ad80 | 64 20 66 6f 72 20 69 74 73 65 6c 66 2c 20 69 74 20 77 69 6c 6c 20 61 6e 73 77 65 72 20 77 69 74 | d.for.itself,.it.will.answer.wit |
| 3ada0 | 68 20 61 6e 20 49 43 4d 50 20 65 63 68 6f 20 72 65 70 6c 79 2c 20 75 6e 6c 65 73 73 20 79 6f 75 | h.an.ICMP.echo.reply,.unless.you |
| 3adc0 | 20 70 72 65 76 65 6e 74 20 69 74 20 74 68 72 6f 75 67 68 20 69 74 73 20 66 69 72 65 77 61 6c 6c | .prevent.it.through.its.firewall |
| 3ade0 | 2e 00 42 79 20 75 73 69 6e 67 20 50 73 65 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 | ..By.using.Pseudo-Ethernet.inter |
| 3ae00 | 66 61 63 65 73 20 74 68 65 72 65 20 77 69 6c 6c 20 62 65 20 6c 65 73 73 20 73 79 73 74 65 6d 20 | faces.there.will.be.less.system. |
| 3ae20 | 6f 76 65 72 68 65 61 64 20 63 6f 6d 70 61 72 65 64 20 74 6f 20 72 75 6e 6e 69 6e 67 20 61 20 74 | overhead.compared.to.running.a.t |
| 3ae40 | 72 61 64 69 74 69 6f 6e 61 6c 20 62 72 69 64 67 69 6e 67 20 61 70 70 72 6f 61 63 68 2e 20 50 73 | raditional.bridging.approach..Ps |
| 3ae60 | 65 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 63 61 6e 20 61 6c 73 | eudo-Ethernet.interfaces.can.als |
| 3ae80 | 6f 20 62 65 20 75 73 65 64 20 74 6f 20 77 6f 72 6b 61 72 6f 75 6e 64 20 74 68 65 20 67 65 6e 65 | o.be.used.to.workaround.the.gene |
| 3aea0 | 72 61 6c 20 6c 69 6d 69 74 20 6f 66 20 34 30 39 36 20 76 69 72 74 75 61 6c 20 4c 41 4e 73 20 28 | ral.limit.of.4096.virtual.LANs.( |
| 3aec0 | 56 4c 41 4e 73 29 20 70 65 72 20 70 68 79 73 69 63 61 6c 20 45 74 68 65 72 6e 65 74 20 70 6f 72 | VLANs).per.physical.Ethernet.por |
| 3aee0 | 74 2c 20 73 69 6e 63 65 20 74 68 61 74 20 6c 69 6d 69 74 20 69 73 20 77 69 74 68 20 72 65 73 70 | t,.since.that.limit.is.with.resp |
| 3af00 | 65 63 74 20 74 6f 20 61 20 73 69 6e 67 6c 65 20 4d 41 43 20 61 64 64 72 65 73 73 2e 00 42 79 70 | ect.to.a.single.MAC.address..Byp |
| 3af20 | 61 73 73 69 6e 67 20 74 68 65 20 77 65 62 70 72 6f 78 79 00 43 41 20 28 43 65 72 74 69 66 69 63 | assing.the.webproxy.CA.(Certific |
| 3af40 | 61 74 65 20 41 75 74 68 6f 72 69 74 79 29 00 43 41 4b 45 00 43 47 4e 41 54 00 43 47 4e 41 54 20 | ate.Authority).CAKE.CGNAT.CGNAT. |
| 3af60 | 77 6f 72 6b 73 20 62 79 20 70 6c 61 63 69 6e 67 20 61 20 4e 41 54 20 64 65 76 69 63 65 20 77 69 | works.by.placing.a.NAT.device.wi |
| 3af80 | 74 68 69 6e 20 74 68 65 20 49 53 50 27 73 20 6e 65 74 77 6f 72 6b 2e 20 54 68 69 73 20 64 65 76 | thin.the.ISP's.network..This.dev |
| 3afa0 | 69 63 65 20 74 72 61 6e 73 6c 61 74 65 73 20 70 72 69 76 61 74 65 20 49 50 20 61 64 64 72 65 73 | ice.translates.private.IP.addres |
| 3afc0 | 73 65 73 20 66 72 6f 6d 20 63 75 73 74 6f 6d 65 72 20 6e 65 74 77 6f 72 6b 73 20 74 6f 20 61 20 | ses.from.customer.networks.to.a. |
| 3afe0 | 6c 69 6d 69 74 65 64 20 70 6f 6f 6c 20 6f 66 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 | limited.pool.of.public.IP.addres |
| 3b000 | 73 65 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 74 68 65 20 49 53 50 2e 20 54 68 69 73 20 61 6c | ses.assigned.to.the.ISP..This.al |
| 3b020 | 6c 6f 77 73 20 6d 61 6e 79 20 63 75 73 74 6f 6d 65 72 73 20 74 6f 20 73 68 61 72 65 20 61 20 73 | lows.many.customers.to.share.a.s |
| 3b040 | 6d 61 6c 6c 65 72 20 6e 75 6d 62 65 72 20 6f 66 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 | maller.number.of.public.IP.addre |
| 3b060 | 73 73 65 73 2e 00 43 52 49 54 49 43 2f 45 43 50 00 43 61 6c 6c 20 61 6e 6f 74 68 65 72 20 72 6f | sses..CRITIC/ECP.Call.another.ro |
| 3b080 | 75 74 65 2d 6d 61 70 20 70 6f 6c 69 63 79 20 6f 6e 20 6d 61 74 63 68 2e 00 43 61 70 61 62 69 6c | ute-map.policy.on.match..Capabil |
| 3b0a0 | 69 74 79 20 4e 65 67 6f 74 69 61 74 69 6f 6e 00 43 65 72 74 61 69 6e 20 76 65 6e 64 6f 72 73 20 | ity.Negotiation.Certain.vendors. |
| 3b0c0 | 75 73 65 20 62 72 6f 61 64 63 61 73 74 73 20 74 6f 20 69 64 65 6e 74 69 66 79 20 74 68 65 69 72 | use.broadcasts.to.identify.their |
| 3b0e0 | 20 65 71 75 69 70 6d 65 6e 74 20 77 69 74 68 69 6e 20 6f 6e 65 20 65 74 68 65 72 6e 65 74 20 73 | .equipment.within.one.ethernet.s |
| 3b100 | 65 67 6d 65 6e 74 2e 20 55 6e 66 6f 72 74 75 6e 61 74 65 6c 79 20 69 66 20 79 6f 75 20 73 70 6c | egment..Unfortunately.if.you.spl |
| 3b120 | 69 74 20 79 6f 75 72 20 6e 65 74 77 6f 72 6b 20 77 69 74 68 20 6d 75 6c 74 69 70 6c 65 20 56 4c | it.your.network.with.multiple.VL |
| 3b140 | 41 4e 73 20 79 6f 75 20 6c 6f 6f 73 65 20 74 68 65 20 61 62 69 6c 69 74 79 20 6f 66 20 69 64 65 | ANs.you.loose.the.ability.of.ide |
| 3b160 | 6e 74 69 66 79 69 6e 67 20 79 6f 75 72 20 65 71 75 69 70 6d 65 6e 74 2e 00 43 65 72 74 69 66 69 | ntifying.your.equipment..Certifi |
| 3b180 | 63 61 74 65 20 41 75 74 68 6f 72 69 74 79 20 28 43 41 29 00 43 65 72 74 69 66 69 63 61 74 65 20 | cate.Authority.(CA).Certificate. |
| 3b1a0 | 72 65 76 6f 63 61 74 69 6f 6e 20 6c 69 73 74 20 69 6e 20 50 45 4d 20 66 6f 72 6d 61 74 2e 00 43 | revocation.list.in.PEM.format..C |
| 3b1c0 | 65 72 74 69 66 69 63 61 74 65 73 00 43 68 61 6e 67 65 20 73 79 73 74 65 6d 20 6b 65 79 62 6f 61 | ertificates.Change.system.keyboa |
| 3b1e0 | 72 64 20 6c 61 79 6f 75 74 20 74 6f 20 67 69 76 65 6e 20 6c 61 6e 67 75 61 67 65 2e 00 43 68 61 | rd.layout.to.given.language..Cha |
| 3b200 | 6e 67 65 20 74 68 65 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 77 69 74 68 20 74 68 69 73 | nge.the.default-action.with.this |
| 3b220 | 20 73 65 74 74 69 6e 67 2e 00 43 68 61 6e 67 65 73 20 69 6e 20 42 47 50 20 70 6f 6c 69 63 69 65 | .setting..Changes.in.BGP.policie |
| 3b240 | 73 20 72 65 71 75 69 72 65 20 74 68 65 20 42 47 50 20 73 65 73 73 69 6f 6e 20 74 6f 20 62 65 20 | s.require.the.BGP.session.to.be. |
| 3b260 | 63 6c 65 61 72 65 64 2e 20 43 6c 65 61 72 69 6e 67 20 68 61 73 20 61 20 6c 61 72 67 65 20 6e 65 | cleared..Clearing.has.a.large.ne |
| 3b280 | 67 61 74 69 76 65 20 69 6d 70 61 63 74 20 6f 6e 20 6e 65 74 77 6f 72 6b 20 6f 70 65 72 61 74 69 | gative.impact.on.network.operati |
| 3b2a0 | 6f 6e 73 2e 20 53 6f 66 74 20 72 65 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 6e 61 62 6c 65 | ons..Soft.reconfiguration.enable |
| 3b2c0 | 73 20 79 6f 75 20 74 6f 20 67 65 6e 65 72 61 74 65 20 69 6e 62 6f 75 6e 64 20 75 70 64 61 74 65 | s.you.to.generate.inbound.update |
| 3b2e0 | 73 20 66 72 6f 6d 20 61 20 6e 65 69 67 68 62 6f 72 2c 20 63 68 61 6e 67 65 20 61 6e 64 20 61 63 | s.from.a.neighbor,.change.and.ac |
| 3b300 | 74 69 76 61 74 65 20 42 47 50 20 70 6f 6c 69 63 69 65 73 20 77 69 74 68 6f 75 74 20 63 6c 65 61 | tivate.BGP.policies.without.clea |
| 3b320 | 72 69 6e 67 20 74 68 65 20 42 47 50 20 73 65 73 73 69 6f 6e 2e 00 43 68 61 6e 67 65 73 20 74 6f | ring.the.BGP.session..Changes.to |
| 3b340 | 20 74 68 65 20 4e 41 54 20 73 79 73 74 65 6d 20 6f 6e 6c 79 20 61 66 66 65 63 74 20 6e 65 77 6c | .the.NAT.system.only.affect.newl |
| 3b360 | 79 20 65 73 74 61 62 6c 69 73 68 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 20 41 6c 72 65 61 | y.established.connections..Alrea |
| 3b380 | 64 79 20 65 73 74 61 62 6c 69 73 68 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 61 72 65 20 6e | dy.established.connections.are.n |
| 3b3a0 | 6f 74 20 61 66 66 65 63 74 65 64 2e 00 43 68 61 6e 67 69 6e 67 20 74 68 65 20 6b 65 79 6d 61 70 | ot.affected..Changing.the.keymap |
| 3b3c0 | 20 6f 6e 6c 79 20 68 61 73 20 61 6e 20 65 66 66 65 63 74 20 6f 6e 20 74 68 65 20 73 79 73 74 65 | .only.has.an.effect.on.the.syste |
| 3b3e0 | 6d 20 63 6f 6e 73 6f 6c 65 2c 20 75 73 69 6e 67 20 53 53 48 20 6f 72 20 53 65 72 69 61 6c 20 72 | m.console,.using.SSH.or.Serial.r |
| 3b400 | 65 6d 6f 74 65 20 61 63 63 65 73 73 20 74 6f 20 74 68 65 20 64 65 76 69 63 65 20 69 73 20 6e 6f | emote.access.to.the.device.is.no |
| 3b420 | 74 20 61 66 66 65 63 74 65 64 20 61 73 20 74 68 65 20 6b 65 79 62 6f 61 72 64 20 6c 61 79 6f 75 | t.affected.as.the.keyboard.layou |
| 3b440 | 74 20 68 65 72 65 20 63 6f 72 72 65 73 70 6f 6e 64 73 20 74 6f 20 79 6f 75 72 20 61 63 63 65 73 | t.here.corresponds.to.your.acces |
| 3b460 | 73 20 73 79 73 74 65 6d 2e 00 43 68 61 6e 6e 65 6c 20 6e 75 6d 62 65 72 20 28 49 45 45 45 20 38 | s.system..Channel.number.(IEEE.8 |
| 3b480 | 30 32 2e 31 31 29 2c 20 66 6f 72 20 32 2e 34 47 68 7a 20 28 38 30 32 2e 31 31 20 62 2f 67 2f 6e | 02.11),.for.2.4Ghz.(802.11.b/g/n |
| 3b4a0 | 29 20 63 68 61 6e 6e 65 6c 73 20 72 61 6e 67 65 20 66 72 6f 6d 20 31 2d 31 34 2e 20 4f 6e 20 35 | ).channels.range.from.1-14..On.5 |
| 3b4c0 | 47 68 7a 20 28 38 30 32 2e 31 31 20 61 2f 68 2f 6a 2f 6e 2f 61 63 29 20 63 68 61 6e 6e 65 6c 73 | Ghz.(802.11.a/h/j/n/ac).channels |
| 3b4e0 | 20 61 76 61 69 6c 61 62 6c 65 20 61 72 65 20 30 2c 20 33 34 20 74 6f 20 31 37 33 00 43 68 61 6e | .available.are.0,.34.to.173.Chan |
| 3b500 | 6e 65 6c 20 6e 75 6d 62 65 72 20 28 49 45 45 45 20 38 30 32 2e 31 31 29 2c 20 66 6f 72 20 32 2e | nel.number.(IEEE.802.11),.for.2. |
| 3b520 | 34 47 68 7a 20 28 38 30 32 2e 31 31 20 62 2f 67 2f 6e 29 20 63 68 61 6e 6e 65 6c 73 20 72 61 6e | 4Ghz.(802.11.b/g/n).channels.ran |
| 3b540 | 67 65 20 66 72 6f 6d 20 31 2d 31 34 2e 20 4f 6e 20 35 47 68 7a 20 28 38 30 32 2e 31 31 20 61 2f | ge.from.1-14..On.5Ghz.(802.11.a/ |
| 3b560 | 68 2f 6a 2f 6e 2f 61 63 29 20 63 68 61 6e 6e 65 6c 73 20 61 76 61 69 6c 61 62 6c 65 20 61 72 65 | h/j/n/ac).channels.available.are |
| 3b580 | 20 30 2c 20 33 34 20 74 6f 20 31 37 33 2e 20 4f 6e 20 36 47 48 7a 20 28 38 30 32 2e 31 31 20 61 | .0,.34.to.173..On.6GHz.(802.11.a |
| 3b5a0 | 78 29 20 63 68 61 6e 6e 65 6c 73 20 72 61 6e 67 65 20 66 72 6f 6d 20 31 20 74 6f 20 32 33 33 2e | x).channels.range.from.1.to.233. |
| 3b5c0 | 00 43 68 61 6e 6e 65 6c 20 6e 75 6d 62 65 72 20 28 49 45 45 45 20 38 30 32 2e 31 31 29 2c 20 66 | .Channel.number.(IEEE.802.11),.f |
| 3b5e0 | 6f 72 20 32 2e 34 47 68 7a 20 28 38 30 32 2e 31 31 20 62 2f 67 2f 6e 2f 61 78 29 20 63 68 61 6e | or.2.4Ghz.(802.11.b/g/n/ax).chan |
| 3b600 | 6e 65 6c 73 20 72 61 6e 67 65 20 66 72 6f 6d 20 31 2d 31 34 2e 20 4f 6e 20 35 47 68 7a 20 28 38 | nels.range.from.1-14..On.5Ghz.(8 |
| 3b620 | 30 32 2e 31 31 20 61 2f 68 2f 6a 2f 6e 2f 61 63 29 20 63 68 61 6e 6e 65 6c 73 20 61 76 61 69 6c | 02.11.a/h/j/n/ac).channels.avail |
| 3b640 | 61 62 6c 65 20 61 72 65 20 30 2c 20 33 34 20 74 6f 20 31 37 37 2e 20 4f 6e 20 36 47 48 7a 20 28 | able.are.0,.34.to.177..On.6GHz.( |
| 3b660 | 38 30 32 2e 31 31 20 61 78 29 20 63 68 61 6e 6e 65 6c 73 20 72 61 6e 67 65 20 66 72 6f 6d 20 31 | 802.11.ax).channels.range.from.1 |
| 3b680 | 20 74 6f 20 32 33 33 2e 00 43 68 65 63 6b 20 69 66 20 74 68 65 20 49 6e 74 65 6c c2 ae 20 51 41 | .to.233..Check.if.the.Intel...QA |
| 3b6a0 | 54 20 64 65 76 69 63 65 20 69 73 20 75 70 20 61 6e 64 20 72 65 61 64 79 20 74 6f 20 64 6f 20 74 | T.device.is.up.and.ready.to.do.t |
| 3b6c0 | 68 65 20 6a 6f 62 2e 00 43 68 65 63 6b 20 73 74 61 74 75 73 00 43 68 65 63 6b 20 74 68 65 20 6d | he.job..Check.status.Check.the.m |
| 3b6e0 | 61 6e 79 20 70 61 72 61 6d 65 74 65 72 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 74 68 65 | any.parameters.available.for.the |
| 3b700 | 20 60 73 68 6f 77 20 69 70 76 36 20 72 6f 75 74 65 60 20 63 6f 6d 6d 61 6e 64 3a 00 43 68 65 63 | .`show.ipv6.route`.command:.Chec |
| 3b720 | 6b 3a 00 43 68 65 63 6b 69 6e 67 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 00 43 68 65 63 6b 73 00 43 | k:.Checking.connections.Checks.C |
| 3b740 | 68 65 63 6b 73 20 66 6f 72 20 74 68 65 20 65 78 69 73 74 65 6e 63 65 20 6f 66 20 74 68 65 20 53 | hecks.for.the.existence.of.the.S |
| 3b760 | 75 72 69 63 61 74 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 69 6c 65 2c 20 75 70 64 61 | uricata.configuration.file,.upda |
| 3b780 | 74 65 73 20 74 68 65 20 73 65 72 76 69 63 65 2c 20 61 6e 64 20 74 68 65 6e 20 72 65 73 74 61 72 | tes.the.service,.and.then.restar |
| 3b7a0 | 74 73 20 69 74 2e 20 49 66 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 69 6c 65 | ts.it..If.the.configuration.file |
| 3b7c0 | 20 69 73 20 6e 6f 74 20 66 6f 75 6e 64 2c 20 61 20 6d 65 73 73 61 67 65 20 69 6e 64 69 63 61 74 | .is.not.found,.a.message.indicat |
| 3b7e0 | 65 73 20 74 68 61 74 20 53 75 72 69 63 61 74 61 20 69 73 20 6e 6f 74 20 63 6f 6e 66 69 67 75 72 | es.that.Suricata.is.not.configur |
| 3b800 | 65 64 2e 00 43 68 6f 6f 73 65 20 79 6f 75 72 20 60 60 64 69 72 65 63 74 6f 72 79 60 60 20 6c 6f | ed..Choose.your.``directory``.lo |
| 3b820 | 63 61 74 69 6f 6e 20 63 61 72 65 66 75 6c 6c 79 20 6f 72 20 79 6f 75 20 77 69 6c 6c 20 6c 6f 6f | cation.carefully.or.you.will.loo |
| 3b840 | 73 65 20 74 68 65 20 63 6f 6e 74 65 6e 74 20 6f 6e 20 69 6d 61 67 65 20 75 70 67 72 61 64 65 73 | se.the.content.on.image.upgrades |
| 3b860 | 2e 20 41 6e 79 20 64 69 72 65 63 74 6f 72 79 20 75 6e 64 65 72 20 60 60 2f 63 6f 6e 66 69 67 60 | ..Any.directory.under.``/config` |
| 3b880 | 60 20 69 73 20 73 61 76 65 20 61 74 20 74 68 69 73 20 77 69 6c 6c 20 62 65 20 6d 69 67 72 61 74 | `.is.save.at.this.will.be.migrat |
| 3b8a0 | 65 64 2e 00 43 69 73 63 6f 20 43 61 74 61 6c 79 73 74 00 43 69 73 63 6f 20 61 6e 64 20 41 6c 6c | ed..Cisco.Catalyst.Cisco.and.All |
| 3b8c0 | 69 65 64 20 54 65 6c 65 73 79 6e 20 63 61 6c 6c 20 69 74 20 50 72 69 76 61 74 65 20 56 4c 41 4e | ied.Telesyn.call.it.Private.VLAN |
| 3b8e0 | 00 43 6c 61 6d 70 20 4d 53 53 20 66 6f 72 20 61 20 73 70 65 63 69 66 69 63 20 49 50 00 43 6c 61 | .Clamp.MSS.for.a.specific.IP.Cla |
| 3b900 | 73 73 20 74 72 65 61 74 6d 65 6e 74 00 43 6c 61 73 73 65 73 00 43 6c 61 73 73 6c 65 73 73 20 73 | ss.treatment.Classes.Classless.s |
| 3b920 | 74 61 74 69 63 20 72 6f 75 74 65 00 43 6c 65 61 72 20 61 6c 6c 20 42 47 50 20 65 78 74 63 6f 6d | tatic.route.Clear.all.BGP.extcom |
| 3b940 | 6d 75 6e 69 74 69 65 73 2e 00 43 6c 69 65 6e 74 00 43 6c 69 65 6e 74 20 41 64 64 72 65 73 73 20 | munities..Client.Client.Address. |
| 3b960 | 50 6f 6f 6c 73 00 43 6c 69 65 6e 74 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 00 43 6c 69 65 | Pools.Client.Authentication.Clie |
| 3b980 | 6e 74 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 43 6c 69 65 6e 74 20 49 50 20 50 6f 6f 6c 20 | nt.Configuration.Client.IP.Pool. |
| 3b9a0 | 41 64 76 61 6e 63 65 64 20 4f 70 74 69 6f 6e 73 00 43 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 | Advanced.Options.Client.IP.addre |
| 3b9c0 | 73 73 65 73 20 77 69 6c 6c 20 62 65 20 70 72 6f 76 69 64 65 64 20 66 72 6f 6d 20 70 6f 6f 6c 20 | sses.will.be.provided.from.pool. |
| 3b9e0 | 60 31 39 32 2e 30 2e 32 2e 30 2f 32 35 60 00 43 6c 69 65 6e 74 20 53 69 64 65 00 43 6c 69 65 6e | `192.0.2.0/25`.Client.Side.Clien |
| 3ba00 | 74 20 53 69 64 65 20 3a 00 43 6c 69 65 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 43 6c | t.Side.:.Client.configuration.Cl |
| 3ba20 | 69 65 6e 74 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 00 43 6c 69 65 6e 74 20 64 6f 6d 61 69 6e 20 73 | ient.domain.name.Client.domain.s |
| 3ba40 | 65 61 72 63 68 00 43 6c 69 65 6e 74 20 69 73 6f 6c 61 74 69 6f 6e 20 63 61 6e 20 62 65 20 75 73 | earch.Client.isolation.can.be.us |
| 3ba60 | 65 64 20 74 6f 20 70 72 65 76 65 6e 74 20 6c 6f 77 2d 6c 65 76 65 6c 20 62 72 69 64 67 69 6e 67 | ed.to.prevent.low-level.bridging |
| 3ba80 | 20 6f 66 20 66 72 61 6d 65 73 20 62 65 74 77 65 65 6e 20 61 73 73 6f 63 69 61 74 65 64 20 73 74 | .of.frames.between.associated.st |
| 3baa0 | 61 74 69 6f 6e 73 20 69 6e 20 74 68 65 20 42 53 53 2e 00 43 6c 69 65 6e 74 3a 00 43 6c 69 65 6e | ations.in.the.BSS..Client:.Clien |
| 3bac0 | 74 73 20 61 72 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 74 68 65 20 43 4e 20 66 69 65 6c | ts.are.identified.by.the.CN.fiel |
| 3bae0 | 64 20 6f 66 20 74 68 65 69 72 20 78 2e 35 30 39 20 63 65 72 74 69 66 69 63 61 74 65 73 2c 20 69 | d.of.their.x.509.certificates,.i |
| 3bb00 | 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 20 74 68 65 20 43 4e 20 69 73 20 60 60 63 6c 69 65 6e | n.this.example.the.CN.is.``clien |
| 3bb20 | 74 30 60 60 3a 00 43 6c 69 65 6e 74 73 20 72 65 63 65 69 76 69 6e 67 20 61 64 76 65 72 74 69 73 | t0``:.Clients.receiving.advertis |
| 3bb40 | 65 20 6d 65 73 73 61 67 65 73 20 66 72 6f 6d 20 6d 75 6c 74 69 70 6c 65 20 73 65 72 76 65 72 73 | e.messages.from.multiple.servers |
| 3bb60 | 20 63 68 6f 6f 73 65 20 74 68 65 20 73 65 72 76 65 72 20 77 69 74 68 20 74 68 65 20 68 69 67 68 | .choose.the.server.with.the.high |
| 3bb80 | 65 73 74 20 70 72 65 66 65 72 65 6e 63 65 20 76 61 6c 75 65 2e 20 54 68 65 20 72 61 6e 67 65 20 | est.preference.value..The.range. |
| 3bba0 | 66 6f 72 20 74 68 69 73 20 76 61 6c 75 65 20 69 73 20 60 60 30 2e 2e 2e 32 35 35 60 60 2e 00 43 | for.this.value.is.``0...255``..C |
| 3bbc0 | 6c 6f 63 6b 20 64 61 65 6d 6f 6e 00 43 6f 6d 6d 61 6e 64 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 63 | lock.daemon.Command.completion.c |
| 3bbe0 | 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 6c 69 73 74 20 61 76 61 69 6c 61 62 6c 65 20 74 69 6d | an.be.used.to.list.available.tim |
| 3bc00 | 65 20 7a 6f 6e 65 73 2e 20 54 68 65 20 61 64 6a 75 73 74 6d 65 6e 74 20 66 6f 72 20 64 61 79 6c | e.zones..The.adjustment.for.dayl |
| 3bc20 | 69 67 68 74 20 74 69 6d 65 20 77 69 6c 6c 20 74 61 6b 65 20 70 6c 61 63 65 20 61 75 74 6f 6d 61 | ight.time.will.take.place.automa |
| 3bc40 | 74 69 63 61 6c 6c 79 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 74 69 6d 65 20 6f 66 20 79 65 61 | tically.based.on.the.time.of.yea |
| 3bc60 | 72 2e 00 43 6f 6d 6d 61 6e 64 20 66 6f 72 20 64 69 73 61 62 6c 69 6e 67 20 61 20 72 75 6c 65 20 | r..Command.for.disabling.a.rule. |
| 3bc80 | 62 75 74 20 6b 65 65 70 20 69 74 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | but.keep.it.in.the.configuration |
| 3bca0 | 2e 00 43 6f 6d 6d 61 6e 64 20 73 68 6f 75 6c 64 20 70 72 6f 62 61 62 6c 79 20 62 65 20 65 78 74 | ..Command.should.probably.be.ext |
| 3bcc0 | 65 6e 64 65 64 20 74 6f 20 6c 69 73 74 20 61 6c 73 6f 20 74 68 65 20 72 65 61 6c 20 69 6e 74 65 | ended.to.list.also.the.real.inte |
| 3bce0 | 72 66 61 63 65 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 74 68 69 73 20 6f 6e 65 20 56 52 46 20 | rfaces.assigned.to.this.one.VRF. |
| 3bd00 | 74 6f 20 67 65 74 20 61 20 62 65 74 74 65 72 20 6f 76 65 72 76 69 65 77 2e 00 43 6f 6d 6d 61 6e | to.get.a.better.overview..Comman |
| 3bd20 | 64 20 75 73 65 64 20 74 6f 20 75 70 64 61 74 65 20 47 65 6f 49 50 20 64 61 74 61 62 61 73 65 20 | d.used.to.update.GeoIP.database. |
| 3bd40 | 61 6e 64 20 66 69 72 65 77 61 6c 6c 20 73 65 74 73 2e 00 43 6f 6d 6d 61 6e 64 73 00 43 6f 6d 6d | and.firewall.sets..Commands.Comm |
| 3bd60 | 61 6e 64 73 20 75 73 65 64 20 66 6f 72 20 74 68 69 73 20 74 61 73 6b 20 61 72 65 3a 00 43 6f 6d | ands.used.for.this.task.are:.Com |
| 3bd80 | 6d 6f 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 76 61 6c 69 64 20 66 6f 72 20 62 6f 74 | mon.configuration,.valid.for.bot |
| 3bda0 | 68 20 70 72 69 6d 61 72 79 20 61 6e 64 20 73 65 63 6f 6e 64 61 72 79 20 6e 6f 64 65 2e 00 43 6f | h.primary.and.secondary.node..Co |
| 3bdc0 | 6d 6d 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 43 6f 6d | mmon.interface.configuration.Com |
| 3bde0 | 6d 6f 6e 20 70 61 72 61 6d 65 74 65 72 73 00 43 6f 6d 70 72 65 73 73 69 6f 6e 20 69 73 20 67 65 | mon.parameters.Compression.is.ge |
| 3be00 | 6e 65 72 61 6c 6c 79 20 6e 6f 74 20 72 65 63 6f 6d 6d 65 6e 64 65 64 2e 20 56 50 4e 20 74 75 6e | nerally.not.recommended..VPN.tun |
| 3be20 | 6e 65 6c 73 20 77 68 69 63 68 20 75 73 65 20 63 6f 6d 70 72 65 73 73 69 6f 6e 20 61 72 65 20 73 | nels.which.use.compression.are.s |
| 3be40 | 75 73 63 65 70 74 69 62 6c 65 20 74 6f 20 74 68 65 20 56 4f 52 41 4c 43 45 20 61 74 74 61 63 6b | usceptible.to.the.VORALCE.attack |
| 3be60 | 20 76 65 63 74 6f 72 2e 20 45 6e 61 62 6c 65 20 63 6f 6d 70 72 65 73 73 69 6f 6e 20 69 66 20 6e | .vector..Enable.compression.if.n |
| 3be80 | 65 65 64 65 64 2e 00 43 6f 6e 63 6c 75 73 69 6f 6e 00 43 6f 6e 66 65 64 65 72 61 74 69 6f 6e 20 | eeded..Conclusion.Confederation. |
| 3bea0 | 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 43 6f 6e 66 69 64 65 6e 74 69 61 6c 69 74 79 20 e2 80 | Configuration.Confidentiality... |
| 3bec0 | 93 20 45 6e 63 72 79 70 74 69 6f 6e 20 6f 66 20 70 61 63 6b 65 74 73 20 74 6f 20 70 72 65 76 65 | ..Encryption.of.packets.to.preve |
| 3bee0 | 6e 74 20 73 6e 6f 6f 70 69 6e 67 20 62 79 20 61 6e 20 75 6e 61 75 74 68 6f 72 69 7a 65 64 20 73 | nt.snooping.by.an.unauthorized.s |
| 3bf00 | 6f 75 72 63 65 2e 00 43 6f 6e 66 69 67 20 53 79 6e 63 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e | ource..Config.Sync.Configuration |
| 3bf20 | 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 45 78 61 6d 70 6c 65 00 43 6f 6e 66 69 67 75 72 61 | .Configuration.Example.Configura |
| 3bf40 | 74 69 6f 6e 20 45 78 61 6d 70 6c 65 73 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 47 75 69 64 | tion.Examples.Configuration.Guid |
| 3bf60 | 65 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 4f 70 74 69 6f 6e 73 00 43 6f 6e 66 69 67 75 72 | e.Configuration.Options.Configur |
| 3bf80 | 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 | ation.commands.covered.in.this.s |
| 3bfa0 | 65 63 74 69 6f 6e 3a 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 66 | ection:.Configuration.commands.f |
| 3bfc0 | 6f 72 20 74 68 65 20 70 72 69 76 61 74 65 20 61 6e 64 20 70 75 62 6c 69 63 20 6b 65 79 20 77 69 | or.the.private.and.public.key.wi |
| 3bfe0 | 6c 6c 20 62 65 20 64 69 73 70 6c 61 79 65 64 20 6f 6e 20 74 68 65 20 73 63 72 65 65 6e 20 77 68 | ll.be.displayed.on.the.screen.wh |
| 3c000 | 69 63 68 20 6e 65 65 64 73 20 74 6f 20 62 65 20 73 65 74 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 | ich.needs.to.be.set.on.the.route |
| 3c020 | 72 20 66 69 72 73 74 2e 20 4e 6f 74 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 77 69 74 68 20 74 | r.first..Note.the.command.with.t |
| 3c040 | 68 65 20 70 75 62 6c 69 63 20 6b 65 79 20 28 73 65 74 20 70 6b 69 20 6b 65 79 2d 70 61 69 72 20 | he.public.key.(set.pki.key-pair. |
| 3c060 | 69 70 73 65 63 2d 4c 45 46 54 20 70 75 62 6c 69 63 20 6b 65 79 20 27 4d 49 49 42 49 6a 41 4e 42 | ipsec-LEFT.public.key.'MIIBIjANB |
| 3c080 | 67 6b 71 68 2e 2e 2e 27 29 2e 20 54 68 65 6e 20 64 6f 20 74 68 65 20 73 61 6d 65 20 6f 6e 20 74 | gkqh...')..Then.do.the.same.on.t |
| 3c0a0 | 68 65 20 6f 70 70 6f 73 69 74 65 20 72 6f 75 74 65 72 3a 00 43 6f 6e 66 69 67 75 72 61 74 69 6f | he.opposite.router:.Configuratio |
| 3c0c0 | 6e 20 63 6f 6d 6d 61 6e 64 73 20 77 69 6c 6c 20 64 69 73 70 6c 61 79 2e 20 4e 6f 74 65 20 74 68 | n.commands.will.display..Note.th |
| 3c0e0 | 65 20 63 6f 6d 6d 61 6e 64 20 77 69 74 68 20 74 68 65 20 70 75 62 6c 69 63 20 6b 65 79 20 28 73 | e.command.with.the.public.key.(s |
| 3c100 | 65 74 20 70 6b 69 20 6b 65 79 2d 70 61 69 72 20 69 70 73 65 63 2d 4c 45 46 54 20 70 75 62 6c 69 | et.pki.key-pair.ipsec-LEFT.publi |
| 3c120 | 63 20 6b 65 79 20 27 4d 49 49 42 49 6a 41 4e 42 67 6b 71 68 2e 2e 2e 27 29 2e 20 54 68 65 6e 20 | c.key.'MIIBIjANBgkqh...')..Then. |
| 3c140 | 64 6f 20 74 68 65 20 73 61 6d 65 20 6f 6e 20 74 68 65 20 6f 70 70 6f 73 69 74 65 20 72 6f 75 74 | do.the.same.on.the.opposite.rout |
| 3c160 | 65 72 3a 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 78 61 6d 70 6c 65 3a 00 43 6f 6e 66 69 | er:.Configuration.example:.Confi |
| 3c180 | 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 74 68 65 73 65 20 65 78 70 6f 72 74 65 64 20 72 6f 75 74 | guration.for.these.exported.rout |
| 3c1a0 | 65 73 20 6d 75 73 74 2c 20 61 74 20 61 20 6d 69 6e 69 6d 75 6d 2c 20 73 70 65 63 69 66 79 20 74 | es.must,.at.a.minimum,.specify.t |
| 3c1c0 | 68 65 73 65 20 74 77 6f 20 70 61 72 61 6d 65 74 65 72 73 2e 00 43 6f 6e 66 69 67 75 72 61 74 69 | hese.two.parameters..Configurati |
| 3c1e0 | 6f 6e 20 6f 66 20 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 73 74 61 74 69 63 60 00 43 6f 6e 66 | on.of.:ref:`routing-static`.Conf |
| 3c200 | 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 61 20 44 48 43 50 20 48 41 20 70 61 69 72 3a 00 43 6f 6e | iguration.of.a.DHCP.HA.pair:.Con |
| 3c220 | 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 61 20 44 48 43 50 20 66 61 69 6c 6f 76 65 72 20 70 61 | figuration.of.a.DHCP.failover.pa |
| 3c240 | 69 72 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 72 6f 75 74 65 20 6c 65 61 6b 69 6e | ir.Configuration.of.route.leakin |
| 3c260 | 67 20 62 65 74 77 65 65 6e 20 61 20 75 6e 69 63 61 73 74 20 56 52 46 20 52 49 42 20 61 6e 64 20 | g.between.a.unicast.VRF.RIB.and. |
| 3c280 | 74 68 65 20 56 50 4e 20 53 41 46 49 20 52 49 42 20 6f 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 | the.VPN.SAFI.RIB.of.the.default. |
| 3c2a0 | 56 52 46 20 69 73 20 61 63 63 6f 6d 70 6c 69 73 68 65 64 20 76 69 61 20 63 6f 6d 6d 61 6e 64 73 | VRF.is.accomplished.via.commands |
| 3c2c0 | 20 69 6e 20 74 68 65 20 63 6f 6e 74 65 78 74 20 6f 66 20 61 20 56 52 46 20 61 64 64 72 65 73 73 | .in.the.context.of.a.VRF.address |
| 3c2e0 | 2d 66 61 6d 69 6c 79 2e 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 6c 6f | -family..Configuration.of.the.lo |
| 3c300 | 67 67 69 6e 67 20 66 69 6c 65 2e 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 72 65 73 79 6e 63 | gging.file..Configuration.resync |
| 3c320 | 68 72 6f 6e 69 7a 61 74 69 6f 6e 2e 20 57 69 74 68 20 74 68 65 20 63 75 72 72 65 6e 74 20 69 6d | hronization..With.the.current.im |
| 3c340 | 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 6f 66 20 60 73 65 72 76 69 63 65 20 63 6f 6e 66 69 67 2d | plementation.of.`service.config- |
| 3c360 | 73 79 6e 63 60 2c 20 74 68 65 20 73 65 63 6f 6e 64 61 72 79 20 6e 6f 64 65 20 6d 75 73 74 20 62 | sync`,.the.secondary.node.must.b |
| 3c380 | 65 20 6f 6e 6c 69 6e 65 2e 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 79 6e 63 68 72 6f 6e | e.online..Configuration.synchron |
| 3c3a0 | 69 7a 61 74 69 6f 6e 20 28 63 6f 6e 66 69 67 20 73 79 6e 63 29 20 69 73 20 61 20 66 65 61 74 75 | ization.(config.sync).is.a.featu |
| 3c3c0 | 72 65 20 6f 66 20 56 79 4f 53 20 74 68 61 74 20 70 65 72 6d 69 74 73 20 73 79 6e 63 68 72 6f 6e | re.of.VyOS.that.permits.synchron |
| 3c3e0 | 69 7a 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 | ization.of.the.configuration.of. |
| 3c400 | 6f 6e 65 20 56 79 4f 53 20 72 6f 75 74 65 72 20 74 6f 20 61 6e 6f 74 68 65 72 20 69 6e 20 61 20 | one.VyOS.router.to.another.in.a. |
| 3c420 | 6e 65 74 77 6f 72 6b 2e 00 43 6f 6e 66 69 67 75 72 65 00 43 6f 6e 66 69 67 75 72 65 20 3a 61 62 | network..Configure.Configure.:ab |
| 3c440 | 62 72 3a 60 4d 54 55 20 28 4d 61 78 69 6d 75 6d 20 54 72 61 6e 73 6d 69 73 73 69 6f 6e 20 55 6e | br:`MTU.(Maximum.Transmission.Un |
| 3c460 | 69 74 29 60 20 6f 6e 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 20 49 74 20 | it)`.on.given.`<interface>`..It. |
| 3c480 | 69 73 20 74 68 65 20 73 69 7a 65 20 28 69 6e 20 62 79 74 65 73 29 20 6f 66 20 74 68 65 20 6c 61 | is.the.size.(in.bytes).of.the.la |
| 3c4a0 | 72 67 65 73 74 20 65 74 68 65 72 6e 65 74 20 66 72 61 6d 65 20 73 65 6e 74 20 6f 6e 20 74 68 69 | rgest.ethernet.frame.sent.on.thi |
| 3c4c0 | 73 20 6c 69 6e 6b 2e 00 43 6f 6e 66 69 67 75 72 65 20 42 46 44 00 43 6f 6e 66 69 67 75 72 65 20 | s.link..Configure.BFD.Configure. |
| 3c4e0 | 44 4e 53 20 60 3c 72 65 63 6f 72 64 3e 60 20 77 68 69 63 68 20 73 68 6f 75 6c 64 20 62 65 20 75 | DNS.`<record>`.which.should.be.u |
| 3c500 | 70 64 61 74 65 64 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 73 65 74 20 6d 75 6c 74 69 70 6c 65 | pdated..This.can.be.set.multiple |
| 3c520 | 20 74 69 6d 65 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 44 4e 53 20 60 3c 7a 6f 6e 65 3e 60 20 74 | .times..Configure.DNS.`<zone>`.t |
| 3c540 | 6f 20 62 65 20 75 70 64 61 74 65 64 2e 00 43 6f 6e 66 69 67 75 72 65 20 47 45 4e 45 56 45 20 74 | o.be.updated..Configure.GENEVE.t |
| 3c560 | 75 6e 6e 65 6c 20 66 61 72 20 65 6e 64 2f 72 65 6d 6f 74 65 20 74 75 6e 6e 65 6c 20 65 6e 64 70 | unnel.far.end/remote.tunnel.endp |
| 3c580 | 6f 69 6e 74 2e 00 43 6f 6e 66 69 67 75 72 65 20 47 72 61 63 65 66 75 6c 20 52 65 73 74 61 72 74 | oint..Configure.Graceful.Restart |
| 3c5a0 | 20 3a 72 66 63 3a 60 33 36 32 33 60 20 68 65 6c 70 65 72 20 73 75 70 70 6f 72 74 2e 20 42 79 20 | .:rfc:`3623`.helper.support..By. |
| 3c5c0 | 64 65 66 61 75 6c 74 2c 20 68 65 6c 70 65 72 20 73 75 70 70 6f 72 74 20 69 73 20 64 69 73 61 62 | default,.helper.support.is.disab |
| 3c5e0 | 6c 65 64 20 66 6f 72 20 61 6c 6c 20 6e 65 69 67 68 62 6f 75 72 73 2e 20 54 68 69 73 20 63 6f 6e | led.for.all.neighbours..This.con |
| 3c600 | 66 69 67 20 65 6e 61 62 6c 65 73 2f 64 69 73 61 62 6c 65 73 20 68 65 6c 70 65 72 20 73 75 70 70 | fig.enables/disables.helper.supp |
| 3c620 | 6f 72 74 20 6f 6e 20 74 68 69 73 20 72 6f 75 74 65 72 20 66 6f 72 20 61 6c 6c 20 6e 65 69 67 68 | ort.on.this.router.for.all.neigh |
| 3c640 | 62 6f 75 72 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 47 72 61 63 65 66 75 6c 20 52 65 73 74 61 72 | bours..Configure.Graceful.Restar |
| 3c660 | 74 20 3a 72 66 63 3a 60 33 36 32 33 60 20 72 65 73 74 61 72 74 69 6e 67 20 73 75 70 70 6f 72 74 | t.:rfc:`3623`.restarting.support |
| 3c680 | 2e 20 57 68 65 6e 20 65 6e 61 62 6c 65 64 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 67 72 61 63 | ..When.enabled,.the.default.grac |
| 3c6a0 | 65 20 70 65 72 69 6f 64 20 69 73 20 31 32 30 20 73 65 63 6f 6e 64 73 2e 00 43 6f 6e 66 69 67 75 | e.period.is.120.seconds..Configu |
| 3c6c0 | 72 65 20 49 43 4d 50 20 74 68 72 65 73 68 6f 6c 64 20 70 61 72 61 6d 65 74 65 72 73 2e 00 43 6f | re.ICMP.threshold.parameters..Co |
| 3c6e0 | 6e 66 69 67 75 72 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 44 48 43 50 20 60 | nfigure.IP.address.of.the.DHCP.` |
| 3c700 | 3c 73 65 72 76 65 72 3e 60 20 77 68 69 63 68 20 77 69 6c 6c 20 68 61 6e 64 6c 65 20 74 68 65 20 | <server>`.which.will.handle.the. |
| 3c720 | 72 65 6c 61 79 65 64 20 70 61 63 6b 65 74 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 52 41 44 49 55 | relayed.packets..Configure.RADIU |
| 3c740 | 53 20 60 3c 73 65 72 76 65 72 3e 60 20 61 6e 64 20 69 74 73 20 72 65 71 75 69 72 65 64 20 70 6f | S.`<server>`.and.its.required.po |
| 3c760 | 72 74 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 72 65 71 75 65 73 74 73 2e 00 | rt.for.authentication.requests.. |
| 3c780 | 43 6f 6e 66 69 67 75 72 65 20 52 41 44 49 55 53 20 60 3c 73 65 72 76 65 72 3e 60 20 61 6e 64 20 | Configure.RADIUS.`<server>`.and. |
| 3c7a0 | 69 74 73 20 72 65 71 75 69 72 65 64 20 73 68 61 72 65 64 20 60 3c 73 65 63 72 65 74 3e 60 20 66 | its.required.shared.`<secret>`.f |
| 3c7c0 | 6f 72 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6e 67 20 77 69 74 68 20 74 68 65 20 52 41 44 49 55 53 | or.communicating.with.the.RADIUS |
| 3c7e0 | 20 73 65 72 76 65 72 2e 00 43 6f 6e 66 69 67 75 72 65 20 53 4e 41 54 20 72 75 6c 65 20 28 34 30 | .server..Configure.SNAT.rule.(40 |
| 3c800 | 29 20 74 6f 20 6f 6e 6c 79 20 4e 41 54 20 70 61 63 6b 65 74 73 20 77 69 74 68 20 61 20 64 65 73 | ).to.only.NAT.packets.with.a.des |
| 3c820 | 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 6f 66 20 31 39 32 2e 30 2e 32 2e 31 2e 00 43 | tination.address.of.192.0.2.1..C |
| 3c840 | 6f 6e 66 69 67 75 72 65 20 54 43 50 20 74 68 72 65 73 68 6f 6c 64 20 70 61 72 61 6d 65 74 65 72 | onfigure.TCP.threshold.parameter |
| 3c860 | 73 00 43 6f 6e 66 69 67 75 72 65 20 55 44 50 20 74 68 72 65 73 68 6f 6c 64 20 70 61 72 61 6d 65 | s.Configure.UDP.threshold.parame |
| 3c880 | 74 65 72 73 00 43 6f 6e 66 69 67 75 72 65 20 60 3c 6d 65 73 73 61 67 65 3e 60 20 77 68 69 63 68 | ters.Configure.`<message>`.which |
| 3c8a0 | 20 69 73 20 73 68 6f 77 6e 20 61 66 74 65 72 20 75 73 65 72 20 68 61 73 20 6c 6f 67 67 65 64 20 | .is.shown.after.user.has.logged. |
| 3c8c0 | 69 6e 20 74 6f 20 74 68 65 20 73 79 73 74 65 6d 2e 00 43 6f 6e 66 69 67 75 72 65 20 60 3c 6d 65 | in.to.the.system..Configure.`<me |
| 3c8e0 | 73 73 61 67 65 3e 60 20 77 68 69 63 68 20 69 73 20 73 68 6f 77 6e 20 64 75 72 69 6e 67 20 53 53 | ssage>`.which.is.shown.during.SS |
| 3c900 | 48 20 63 6f 6e 6e 65 63 74 20 61 6e 64 20 62 65 66 6f 72 65 20 61 20 75 73 65 72 20 69 73 20 6c | H.connect.and.before.a.user.is.l |
| 3c920 | 6f 67 67 65 64 20 69 6e 2e 00 43 6f 6e 66 69 67 75 72 65 20 60 3c 70 61 73 73 77 6f 72 64 3e 60 | ogged.in..Configure.`<password>` |
| 3c940 | 20 75 73 65 64 20 77 68 65 6e 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 74 68 65 20 75 70 | .used.when.authenticating.the.up |
| 3c960 | 64 61 74 65 20 72 65 71 75 65 73 74 20 66 6f 72 20 44 79 6e 44 4e 53 20 73 65 72 76 69 63 65 20 | date.request.for.DynDNS.service. |
| 3c980 | 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 73 65 72 76 69 63 65 2d 6e 61 6d 65 3e 60 2e 00 | identified.by.`<service-name>`.. |
| 3c9a0 | 43 6f 6e 66 69 67 75 72 65 20 60 3c 70 61 73 73 77 6f 72 64 3e 60 20 75 73 65 64 20 77 68 65 6e | Configure.`<password>`.used.when |
| 3c9c0 | 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 74 68 65 20 75 70 64 61 74 65 20 72 65 71 75 65 | .authenticating.the.update.reque |
| 3c9e0 | 73 74 20 66 6f 72 20 44 79 6e 44 4e 53 20 73 65 72 76 69 63 65 20 69 64 65 6e 74 69 66 69 65 64 | st.for.DynDNS.service.identified |
| 3ca00 | 20 62 79 20 60 3c 73 65 72 76 69 63 65 3e 60 2e 00 43 6f 6e 66 69 67 75 72 65 20 60 3c 75 73 65 | .by.`<service>`..Configure.`<use |
| 3ca20 | 72 6e 61 6d 65 3e 60 20 75 73 65 64 20 77 68 65 6e 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 | rname>`.used.when.authenticating |
| 3ca40 | 20 74 68 65 20 75 70 64 61 74 65 20 72 65 71 75 65 73 74 20 66 6f 72 20 44 79 6e 44 4e 53 20 73 | .the.update.request.for.DynDNS.s |
| 3ca60 | 65 72 76 69 63 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 73 65 72 76 69 63 65 2d 6e | ervice.identified.by.`<service-n |
| 3ca80 | 61 6d 65 3e 60 2e 00 43 6f 6e 66 69 67 75 72 65 20 60 3c 75 73 65 72 6e 61 6d 65 3e 60 20 75 73 | ame>`..Configure.`<username>`.us |
| 3caa0 | 65 64 20 77 68 65 6e 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 74 68 65 20 75 70 64 61 74 | ed.when.authenticating.the.updat |
| 3cac0 | 65 20 72 65 71 75 65 73 74 20 66 6f 72 20 44 79 6e 44 4e 53 20 73 65 72 76 69 63 65 20 69 64 65 | e.request.for.DynDNS.service.ide |
| 3cae0 | 6e 74 69 66 69 65 64 20 62 79 20 60 3c 73 65 72 76 69 63 65 3e 60 2e 20 46 6f 72 20 4e 61 6d 65 | ntified.by.`<service>`..For.Name |
| 3cb00 | 63 68 65 61 70 2c 20 73 65 74 20 74 68 65 20 3c 64 6f 6d 61 69 6e 3e 20 79 6f 75 20 77 69 73 68 | cheap,.set.the.<domain>.you.wish |
| 3cb20 | 20 74 6f 20 75 70 64 61 74 65 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 20 55 52 4c 20 74 68 61 74 | .to.update..Configure.a.URL.that |
| 3cb40 | 20 63 6f 6e 74 61 69 6e 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 69 6d 61 67 | .contains.information.about.imag |
| 3cb60 | 65 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 20 73 46 6c 6f 77 20 61 67 65 6e 74 20 61 64 64 72 | es..Configure.a.sFlow.agent.addr |
| 3cb80 | 65 73 73 2e 20 49 74 20 63 61 6e 20 62 65 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 | ess..It.can.be.IPv4.or.IPv6.addr |
| 3cba0 | 65 73 73 2c 20 62 75 74 20 79 6f 75 20 6d 75 73 74 20 73 65 74 20 74 68 65 20 73 61 6d 65 20 70 | ess,.but.you.must.set.the.same.p |
| 3cbc0 | 72 6f 74 6f 63 6f 6c 2c 20 77 68 69 63 68 20 69 73 20 75 73 65 64 20 66 6f 72 20 73 46 6c 6f 77 | rotocol,.which.is.used.for.sFlow |
| 3cbe0 | 20 63 6f 6c 6c 65 63 74 6f 72 20 61 64 64 72 65 73 73 65 73 2e 20 42 79 20 64 65 66 61 75 6c 74 | .collector.addresses..By.default |
| 3cc00 | 2c 20 75 73 69 6e 67 20 72 6f 75 74 65 72 2d 69 64 20 66 72 6f 6d 20 42 47 50 20 6f 72 20 4f 53 | ,.using.router-id.from.BGP.or.OS |
| 3cc20 | 50 46 20 70 72 6f 74 6f 63 6f 6c 2c 20 6f 72 20 74 68 65 20 70 72 69 6d 61 72 79 20 49 50 20 61 | PF.protocol,.or.the.primary.IP.a |
| 3cc40 | 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 66 69 72 73 74 20 69 6e 74 65 72 66 61 63 65 2e | ddress.from.the.first.interface. |
| 3cc60 | 00 43 6f 6e 66 69 67 75 72 65 20 61 20 73 74 61 74 69 63 20 72 6f 75 74 65 20 66 6f 72 20 3c 73 | .Configure.a.static.route.for.<s |
| 3cc80 | 75 62 6e 65 74 3e 20 75 73 69 6e 67 20 67 61 74 65 77 61 79 20 3c 61 64 64 72 65 73 73 3e 20 2c | ubnet>.using.gateway.<address>., |
| 3cca0 | 20 75 73 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 74 6f 20 69 6e 64 65 6e 74 69 66 79 | .use.source.address.to.indentify |
| 3ccc0 | 20 74 68 65 20 70 65 65 72 20 77 68 65 6e 20 69 73 20 6d 75 6c 74 69 2d 68 6f 70 20 73 65 73 73 | .the.peer.when.is.multi-hop.sess |
| 3cce0 | 69 6f 6e 20 61 6e 64 20 74 68 65 20 67 61 74 65 77 61 79 20 61 64 64 72 65 73 73 20 61 73 20 42 | ion.and.the.gateway.address.as.B |
| 3cd00 | 46 44 20 70 65 65 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2e 00 43 6f 6e | FD.peer.destination.address..Con |
| 3cd20 | 66 69 67 75 72 65 20 61 20 73 74 61 74 69 63 20 72 6f 75 74 65 20 66 6f 72 20 3c 73 75 62 6e 65 | figure.a.static.route.for.<subne |
| 3cd40 | 74 3e 20 75 73 69 6e 67 20 67 61 74 65 77 61 79 20 3c 61 64 64 72 65 73 73 3e 20 61 6e 64 20 75 | t>.using.gateway.<address>.and.u |
| 3cd60 | 73 65 20 74 68 65 20 67 61 74 65 77 61 79 20 61 64 64 72 65 73 73 20 61 73 20 42 46 44 20 70 65 | se.the.gateway.address.as.BFD.pe |
| 3cd80 | 65 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2e 00 43 6f 6e 66 69 67 75 72 | er.destination.address..Configur |
| 3cda0 | 65 20 61 64 64 72 65 73 73 20 6f 66 20 4e 65 74 46 6c 6f 77 20 63 6f 6c 6c 65 63 74 6f 72 2e 20 | e.address.of.NetFlow.collector.. |
| 3cdc0 | 4e 65 74 46 6c 6f 77 20 73 65 72 76 65 72 20 61 74 20 60 3c 61 64 64 72 65 73 73 3e 60 20 63 61 | NetFlow.server.at.`<address>`.ca |
| 3cde0 | 6e 20 62 65 20 62 6f 74 68 20 6c 69 73 74 65 6e 69 6e 67 20 6f 6e 20 61 6e 20 49 50 76 34 20 6f | n.be.both.listening.on.an.IPv4.o |
| 3ce00 | 72 20 49 50 76 36 20 61 64 64 72 65 73 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 64 64 72 65 73 | r.IPv6.address..Configure.addres |
| 3ce20 | 73 20 6f 66 20 73 46 6c 6f 77 20 63 6f 6c 6c 65 63 74 6f 72 2e 20 73 46 6c 6f 77 20 73 65 72 76 | s.of.sFlow.collector..sFlow.serv |
| 3ce40 | 65 72 20 61 74 20 3c 61 64 64 72 65 73 73 3e 20 63 61 6e 20 62 65 20 62 6f 74 68 20 6c 69 73 74 | er.at.<address>.can.be.both.list |
| 3ce60 | 65 6e 69 6e 67 20 6f 6e 20 61 6e 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 | ening.on.an.IPv4.or.IPv6.address |
| 3ce80 | 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 64 64 72 65 73 73 20 6f 66 20 73 46 6c 6f 77 20 63 6f 6c | ..Configure.address.of.sFlow.col |
| 3cea0 | 6c 65 63 74 6f 72 2e 20 73 46 6c 6f 77 20 73 65 72 76 65 72 20 61 74 20 60 3c 61 64 64 72 65 73 | lector..sFlow.server.at.`<addres |
| 3cec0 | 73 3e 60 20 63 61 6e 20 62 65 20 61 6e 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 | s>`.can.be.an.IPv4.or.IPv6.addre |
| 3cee0 | 73 73 2e 20 42 75 74 20 79 6f 75 20 63 61 6e 6e 6f 74 20 65 78 70 6f 72 74 20 74 6f 20 62 6f 74 | ss..But.you.cannot.export.to.bot |
| 3cf00 | 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 63 6f 6c 6c 65 63 74 6f 72 73 20 61 74 20 74 68 | h.IPv4.and.IPv6.collectors.at.th |
| 3cf20 | 65 20 73 61 6d 65 20 74 69 6d 65 21 00 43 6f 6e 66 69 67 75 72 65 20 61 67 65 6e 74 20 49 50 20 | e.same.time!.Configure.agent.IP. |
| 3cf40 | 61 64 64 72 65 73 73 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 69 73 20 69 6e 74 | address.associated.with.this.int |
| 3cf60 | 65 72 66 61 63 65 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 67 67 72 65 67 61 74 69 6f 6e 20 64 65 | erface..Configure.aggregation.de |
| 3cf80 | 6c 61 79 20 74 69 6d 65 72 20 69 6e 74 65 72 76 61 6c 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 6c | lay.timer.interval..Configure.al |
| 3cfa0 | 65 72 74 20 73 63 72 69 70 74 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 65 78 65 63 75 74 65 64 | ert.script.that.will.be.executed |
| 3cfc0 | 20 77 68 65 6e 20 61 6e 20 61 74 74 61 63 6b 20 69 73 20 64 65 74 65 63 74 65 64 2e 00 43 6f 6e | .when.an.attack.is.detected..Con |
| 3cfe0 | 66 69 67 75 72 65 20 61 6e 20 61 63 63 6f 75 6e 74 69 6e 67 20 73 65 72 76 65 72 20 61 6e 64 20 | figure.an.accounting.server.and. |
| 3d000 | 65 6e 61 62 6c 65 20 61 63 63 6f 75 6e 74 69 6e 67 20 77 69 74 68 3a 00 43 6f 6e 66 69 67 75 72 | enable.accounting.with:.Configur |
| 3d020 | 65 20 61 6e 64 20 65 6e 61 62 6c 65 20 63 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 66 6c 6f 77 20 | e.and.enable.collection.of.flow. |
| 3d040 | 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 69 64 | information.for.the.interface.id |
| 3d060 | 65 6e 74 69 66 69 65 64 20 62 79 20 3c 69 6e 74 65 72 66 61 63 65 3e 2e 00 43 6f 6e 66 69 67 75 | entified.by.<interface>..Configu |
| 3d080 | 72 65 20 61 6e 64 20 65 6e 61 62 6c 65 20 63 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 66 6c 6f 77 | re.and.enable.collection.of.flow |
| 3d0a0 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 69 | .information.for.the.interface.i |
| 3d0c0 | 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 43 6f 6e 66 | dentified.by.`<interface>`..Conf |
| 3d0e0 | 69 67 75 72 65 20 61 75 74 6f 2d 63 68 65 63 6b 69 6e 67 20 66 6f 72 20 6e 65 77 20 69 6d 61 67 | igure.auto-checking.for.new.imag |
| 3d100 | 65 73 00 43 6f 6e 66 69 67 75 72 65 20 62 61 63 6b 65 6e 64 20 60 3c 6e 61 6d 65 3e 60 20 6d 6f | es.Configure.backend.`<name>`.mo |
| 3d120 | 64 65 20 54 43 50 20 6f 72 20 48 54 54 50 00 43 6f 6e 66 69 67 75 72 65 20 62 6f 74 68 20 72 6f | de.TCP.or.HTTP.Configure.both.ro |
| 3d140 | 75 74 65 72 73 20 28 61 20 61 6e 64 20 62 29 20 66 6f 72 20 44 48 43 50 76 36 2d 50 44 20 76 69 | uters.(a.and.b).for.DHCPv6-PD.vi |
| 3d160 | 61 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 3a 00 43 6f 6e 66 69 67 75 72 65 20 64 69 72 | a.dummy.interface:.Configure.dir |
| 3d180 | 65 63 74 69 6f 6e 20 66 6f 72 20 70 72 6f 63 65 73 73 69 6e 67 20 74 72 61 66 66 69 63 2e 00 43 | ection.for.processing.traffic..C |
| 3d1a0 | 6f 6e 66 69 67 75 72 65 20 65 69 74 68 65 72 20 6f 6e 65 20 6f 72 20 74 77 6f 20 73 74 6f 70 20 | onfigure.either.one.or.two.stop. |
| 3d1c0 | 62 69 74 73 2e 20 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 6f 6e 65 20 73 74 6f 70 20 | bits..This.defaults.to.one.stop. |
| 3d1e0 | 62 69 74 73 20 69 66 20 6c 65 66 74 20 75 6e 63 6f 6e 66 69 67 75 72 65 64 2e 00 43 6f 6e 66 69 | bits.if.left.unconfigured..Confi |
| 3d200 | 67 75 72 65 20 65 69 74 68 65 72 20 73 65 76 65 6e 20 6f 72 20 65 69 67 68 74 20 64 61 74 61 20 | gure.either.seven.or.eight.data. |
| 3d220 | 62 69 74 73 2e 20 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 65 69 67 68 74 20 64 61 74 | bits..This.defaults.to.eight.dat |
| 3d240 | 61 20 62 69 74 73 20 69 66 20 6c 65 66 74 20 75 6e 63 6f 6e 66 69 67 75 72 65 64 2e 00 43 6f 6e | a.bits.if.left.unconfigured..Con |
| 3d260 | 66 69 67 75 72 65 20 67 65 6e 65 72 61 6c 20 74 68 72 65 73 68 6f 6c 64 20 70 61 72 61 6d 65 74 | figure.general.threshold.paramet |
| 3d280 | 65 72 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 68 6f 77 20 6c 6f 6e 67 20 61 6e 20 49 50 20 28 61 | ers..Configure.how.long.an.IP.(a |
| 3d2a0 | 74 74 61 63 6b 65 72 29 20 73 68 6f 75 6c 64 20 62 65 20 6b 65 70 74 20 69 6e 20 62 6c 6f 63 6b | ttacker).should.be.kept.in.block |
| 3d2c0 | 65 64 20 73 74 61 74 65 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 39 30 30 2e | ed.state..Default.value.is.1900. |
| 3d2e0 | 00 43 6f 6e 66 69 67 75 72 65 20 69 6e 64 69 76 69 64 75 61 6c 20 62 72 69 64 67 65 20 70 6f 72 | .Configure.individual.bridge.por |
| 3d300 | 74 20 60 3c 70 72 69 6f 72 69 74 79 3e 60 2e 00 43 6f 6e 66 69 67 75 72 65 20 69 6e 74 65 72 66 | t.`<priority>`..Configure.interf |
| 3d320 | 61 63 65 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 77 69 74 68 20 6f 6e 65 20 6f 72 20 6d 6f | ace.`<interface>`.with.one.or.mo |
| 3d340 | 72 65 20 69 6e 74 65 72 66 61 63 65 20 61 64 64 72 65 73 73 65 73 2e 00 43 6f 6e 66 69 67 75 72 | re.interface.addresses..Configur |
| 3d360 | 65 20 69 6e 74 65 72 66 61 63 65 2d 73 70 65 63 69 66 69 63 20 48 6f 73 74 2f 52 6f 75 74 65 72 | e.interface-specific.Host/Router |
| 3d380 | 20 62 65 68 61 76 69 6f 75 72 2e 20 49 66 20 73 65 74 2c 20 74 68 65 20 69 6e 74 65 72 66 61 63 | .behaviour..If.set,.the.interfac |
| 3d3a0 | 65 20 77 69 6c 6c 20 73 77 69 74 63 68 20 74 6f 20 68 6f 73 74 20 6d 6f 64 65 20 61 6e 64 20 49 | e.will.switch.to.host.mode.and.I |
| 3d3c0 | 50 76 36 20 66 6f 72 77 61 72 64 69 6e 67 20 77 69 6c 6c 20 62 65 20 64 69 73 61 62 6c 65 64 20 | Pv6.forwarding.will.be.disabled. |
| 3d3e0 | 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 00 43 6f 6e 66 69 67 75 72 65 20 6c 69 73 | on.this.interface..Configure.lis |
| 3d400 | 74 65 6e 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 6d 69 72 72 6f 72 69 6e 67 20 74 72 61 66 | ten.interface.for.mirroring.traf |
| 3d420 | 66 69 63 2e 00 43 6f 6e 66 69 67 75 72 65 20 6c 6f 63 61 6c 20 49 50 76 34 20 61 64 64 72 65 73 | fic..Configure.local.IPv4.addres |
| 3d440 | 73 20 74 6f 20 6c 69 73 74 65 6e 20 66 6f 72 20 73 66 6c 6f 77 2e 00 43 6f 6e 66 69 67 75 72 65 | s.to.listen.for.sflow..Configure |
| 3d460 | 20 6d 61 78 69 6d 75 6d 20 61 6c 6c 6f 77 65 64 20 63 6c 6f 63 6b 20 73 6c 6f 70 20 69 6e 20 73 | .maximum.allowed.clock.slop.in.s |
| 3d480 | 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a 20 31 38 30 29 00 43 6f 6e 66 69 67 75 72 65 20 | econds.(default:.180).Configure. |
| 3d4a0 | 6e 65 77 20 53 4e 4d 50 20 75 73 65 72 20 6e 61 6d 65 64 20 22 76 79 6f 73 22 20 77 69 74 68 20 | new.SNMP.user.named."vyos".with. |
| 3d4c0 | 70 61 73 73 77 6f 72 64 20 22 76 79 6f 73 31 32 33 34 35 36 37 38 22 00 43 6f 6e 66 69 67 75 72 | password."vyos12345678".Configur |
| 3d4e0 | 65 20 6e 65 78 74 2d 68 6f 70 20 60 3c 61 64 64 72 65 73 73 3e 60 20 61 6e 64 20 60 3c 74 61 72 | e.next-hop.`<address>`.and.`<tar |
| 3d500 | 67 65 74 2d 61 64 64 72 65 73 73 3e 60 20 66 6f 72 20 61 6e 20 49 50 76 34 20 73 74 61 74 69 63 | get-address>`.for.an.IPv4.static |
| 3d520 | 20 72 6f 75 74 65 2e 20 53 70 65 63 69 66 79 20 74 68 65 20 74 61 72 67 65 74 20 49 50 76 34 20 | .route..Specify.the.target.IPv4. |
| 3d540 | 61 64 64 72 65 73 73 20 66 6f 72 20 68 65 61 6c 74 68 20 63 68 65 63 6b 69 6e 67 2e 00 43 6f 6e | address.for.health.checking..Con |
| 3d560 | 66 69 67 75 72 65 20 6e 65 78 74 2d 68 6f 70 20 60 3c 61 64 64 72 65 73 73 3e 60 20 66 6f 72 20 | figure.next-hop.`<address>`.for. |
| 3d580 | 61 6e 20 49 50 76 34 20 73 74 61 74 69 63 20 72 6f 75 74 65 2e 20 4d 75 6c 74 69 70 6c 65 20 73 | an.IPv4.static.route..Multiple.s |
| 3d5a0 | 74 61 74 69 63 20 72 6f 75 74 65 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 2e 00 43 6f 6e | tatic.routes.can.be.created..Con |
| 3d5c0 | 66 69 67 75 72 65 20 6e 65 78 74 2d 68 6f 70 20 60 3c 61 64 64 72 65 73 73 3e 60 20 66 6f 72 20 | figure.next-hop.`<address>`.for. |
| 3d5e0 | 61 6e 20 49 50 76 36 20 73 74 61 74 69 63 20 72 6f 75 74 65 2e 20 4d 75 6c 74 69 70 6c 65 20 73 | an.IPv6.static.route..Multiple.s |
| 3d600 | 74 61 74 69 63 20 72 6f 75 74 65 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 2e 00 43 6f 6e | tatic.routes.can.be.created..Con |
| 3d620 | 66 69 67 75 72 65 20 6e 75 6d 62 65 72 20 6f 66 20 64 69 67 69 74 73 20 74 6f 20 75 73 65 20 66 | figure.number.of.digits.to.use.f |
| 3d640 | 6f 72 20 74 6f 74 70 20 68 61 73 68 20 28 64 65 66 61 75 6c 74 3a 20 36 29 00 43 6f 6e 66 69 67 | or.totp.hash.(default:.6).Config |
| 3d660 | 75 72 65 20 6f 6e 65 20 6f 66 20 74 68 65 20 70 72 65 64 65 66 69 6e 65 64 20 73 79 73 74 65 6d | ure.one.of.the.predefined.system |
| 3d680 | 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 70 72 6f 66 69 6c 65 73 2e 00 43 6f 6e 66 69 67 75 72 65 | .performance.profiles..Configure |
| 3d6a0 | 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 61 74 74 72 69 62 75 74 65 73 20 74 6f 20 74 68 65 20 67 | .one.or.more.attributes.to.the.g |
| 3d6c0 | 69 76 65 6e 20 4e 54 50 20 73 65 72 76 65 72 2e 00 43 6f 6e 66 69 67 75 72 65 20 6f 6e 65 20 6f | iven.NTP.server..Configure.one.o |
| 3d6e0 | 72 20 6d 6f 72 65 20 73 65 72 76 65 72 73 20 66 6f 72 20 73 79 6e 63 68 72 6f 6e 69 73 61 74 69 | r.more.servers.for.synchronisati |
| 3d700 | 6f 6e 2e 20 53 65 72 76 65 72 20 6e 61 6d 65 20 63 61 6e 20 62 65 20 65 69 74 68 65 72 20 61 6e | on..Server.name.can.be.either.an |
| 3d720 | 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 3a 61 62 62 72 3a 60 46 51 44 4e 20 28 46 75 6c 6c | .IP.address.or.:abbr:`FQDN.(Full |
| 3d740 | 79 20 51 75 61 6c 69 66 69 65 64 20 44 6f 6d 61 69 6e 20 4e 61 6d 65 29 60 2e 00 43 6f 6e 66 69 | y.Qualified.Domain.Name)`..Confi |
| 3d760 | 67 75 72 65 20 6f 70 74 69 6f 6e 61 6c 20 54 54 4c 20 76 61 6c 75 65 20 6f 6e 20 74 68 65 20 67 | gure.optional.TTL.value.on.the.g |
| 3d780 | 69 76 65 6e 20 72 65 73 6f 75 72 63 65 20 72 65 63 6f 72 64 2e 20 54 68 69 73 20 64 65 66 61 75 | iven.resource.record..This.defau |
| 3d7a0 | 6c 74 73 20 74 6f 20 36 30 30 20 73 65 63 6f 6e 64 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 70 68 | lts.to.600.seconds..Configure.ph |
| 3d7c0 | 79 73 69 63 61 6c 20 69 6e 74 65 72 66 61 63 65 20 64 75 70 6c 65 78 20 73 65 74 74 69 6e 67 2e | ysical.interface.duplex.setting. |
| 3d7e0 | 00 43 6f 6e 66 69 67 75 72 65 20 70 68 79 73 69 63 61 6c 20 69 6e 74 65 72 66 61 63 65 20 73 70 | .Configure.physical.interface.sp |
| 3d800 | 65 65 64 20 73 65 74 74 69 6e 67 2e 00 43 6f 6e 66 69 67 75 72 65 20 70 6f 72 74 20 6d 69 72 72 | eed.setting..Configure.port.mirr |
| 3d820 | 6f 72 69 6e 67 20 66 6f 72 20 60 69 6e 74 65 72 66 61 63 65 60 20 69 6e 62 6f 75 6e 64 20 74 72 | oring.for.`interface`.inbound.tr |
| 3d840 | 61 66 66 69 63 20 61 6e 64 20 63 6f 70 79 20 74 68 65 20 74 72 61 66 66 69 63 20 74 6f 20 60 6d | affic.and.copy.the.traffic.to.`m |
| 3d860 | 6f 6e 69 74 6f 72 2d 69 6e 74 65 72 66 61 63 65 60 00 43 6f 6e 66 69 67 75 72 65 20 70 6f 72 74 | onitor-interface`.Configure.port |
| 3d880 | 20 6d 69 72 72 6f 72 69 6e 67 20 66 6f 72 20 60 69 6e 74 65 72 66 61 63 65 60 20 6f 75 74 62 6f | .mirroring.for.`interface`.outbo |
| 3d8a0 | 75 6e 64 20 74 72 61 66 66 69 63 20 61 6e 64 20 63 6f 70 79 20 74 68 65 20 74 72 61 66 66 69 63 | und.traffic.and.copy.the.traffic |
| 3d8c0 | 20 74 6f 20 60 6d 6f 6e 69 74 6f 72 2d 69 6e 74 65 72 66 61 63 65 60 00 43 6f 6e 66 69 67 75 72 | .to.`monitor-interface`.Configur |
| 3d8e0 | 65 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 6f 66 20 72 65 6d 6f 74 65 20 56 58 4c 41 4e 20 65 6e | e.port.number.of.remote.VXLAN.en |
| 3d900 | 64 70 6f 69 6e 74 2e 00 43 6f 6e 66 69 67 75 72 65 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 74 6f | dpoint..Configure.port.number.to |
| 3d920 | 20 62 65 20 75 73 65 64 20 66 6f 72 20 73 66 6c 6f 77 20 63 6f 6e 65 63 74 69 6f 6e 2e 20 44 65 | .be.used.for.sflow.conection..De |
| 3d940 | 66 61 75 6c 74 20 70 6f 72 74 20 69 73 20 36 33 34 33 2e 00 43 6f 6e 66 69 67 75 72 65 20 70 6f | fault.port.is.6343..Configure.po |
| 3d960 | 72 74 20 6e 75 6d 62 65 72 20 74 6f 20 62 65 20 75 73 65 64 20 66 6f 72 20 73 66 6c 6f 77 20 63 | rt.number.to.be.used.for.sflow.c |
| 3d980 | 6f 6e 6e 65 63 74 69 6f 6e 2e 20 44 65 66 61 75 6c 74 20 70 6f 72 74 20 69 73 20 36 33 34 33 2e | onnection..Default.port.is.6343. |
| 3d9a0 | 00 43 6f 6e 66 69 67 75 72 65 20 70 72 6f 74 6f 63 6f 6c 20 75 73 65 64 20 66 6f 72 20 63 6f 6d | .Configure.protocol.used.for.com |
| 3d9c0 | 6d 75 6e 69 63 61 74 69 6f 6e 20 74 6f 20 72 65 6d 6f 74 65 20 73 79 73 6c 6f 67 20 68 6f 73 74 | munication.to.remote.syslog.host |
| 3d9e0 | 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 65 69 74 68 65 72 20 55 44 50 20 6f 72 20 54 43 50 2e | ..This.can.be.either.UDP.or.TCP. |
| 3da00 | 00 43 6f 6e 66 69 67 75 72 65 20 70 72 6f 78 79 20 70 6f 72 74 20 69 66 20 69 74 20 64 6f 65 73 | .Configure.proxy.port.if.it.does |
| 3da20 | 20 6e 6f 74 20 6c 69 73 74 65 6e 20 74 6f 20 74 68 65 20 64 65 66 61 75 6c 74 20 70 6f 72 74 20 | .not.listen.to.the.default.port. |
| 3da40 | 38 30 2e 00 43 6f 6e 66 69 67 75 72 65 20 72 65 71 75 65 73 74 73 20 74 6f 20 74 68 65 20 62 61 | 80..Configure.requests.to.the.ba |
| 3da60 | 63 6b 65 6e 64 20 73 65 72 76 65 72 20 74 6f 20 75 73 65 20 53 53 4c 20 65 6e 63 72 79 70 74 69 | ckend.server.to.use.SSL.encrypti |
| 3da80 | 6f 6e 20 61 6e 64 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 62 61 63 6b 65 6e 64 20 61 67 61 69 | on.and.authenticate.backend.agai |
| 3daa0 | 6e 73 74 20 3c 63 61 2d 63 65 72 74 69 66 69 63 61 74 65 3e 00 43 6f 6e 66 69 67 75 72 65 20 72 | nst.<ca-certificate>.Configure.r |
| 3dac0 | 65 71 75 65 73 74 73 20 74 6f 20 74 68 65 20 62 61 63 6b 65 6e 64 20 73 65 72 76 65 72 20 74 6f | equests.to.the.backend.server.to |
| 3dae0 | 20 75 73 65 20 53 53 4c 20 65 6e 63 72 79 70 74 69 6f 6e 20 77 69 74 68 6f 75 74 20 76 61 6c 69 | .use.SSL.encryption.without.vali |
| 3db00 | 64 61 74 69 6e 67 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 00 43 6f 6e 66 69 67 | dating.server.certificate.Config |
| 3db20 | 75 72 65 20 73 46 6c 6f 77 20 61 67 65 6e 74 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 | ure.sFlow.agent.IPv4.or.IPv6.add |
| 3db40 | 72 65 73 73 00 43 6f 6e 66 69 67 75 72 65 20 73 63 68 65 64 75 6c 65 20 63 6f 75 6e 74 65 72 2d | ress.Configure.schedule.counter- |
| 3db60 | 70 6f 6c 6c 69 6e 67 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a 20 33 30 29 | polling.in.seconds.(default:.30) |
| 3db80 | 00 43 6f 6e 66 69 67 75 72 65 20 73 65 72 76 69 63 65 20 60 3c 6e 61 6d 65 3e 60 20 6d 6f 64 65 | .Configure.service.`<name>`.mode |
| 3dba0 | 20 54 43 50 20 6f 72 20 48 54 54 50 00 43 6f 6e 66 69 67 75 72 65 20 73 65 72 76 69 63 65 20 60 | .TCP.or.HTTP.Configure.service.` |
| 3dbc0 | 3c 6e 61 6d 65 3e 60 20 74 6f 20 75 73 65 20 74 68 65 20 62 61 63 6b 65 6e 64 20 3c 6e 61 6d 65 | <name>`.to.use.the.backend.<name |
| 3dbe0 | 3e 00 43 6f 6e 66 69 67 75 72 65 20 73 65 73 73 69 6f 6e 20 74 69 6d 65 6f 75 74 20 61 66 74 65 | >.Configure.session.timeout.afte |
| 3dc00 | 72 20 77 68 69 63 68 20 74 68 65 20 75 73 65 72 20 77 69 6c 6c 20 62 65 20 6c 6f 67 67 65 64 20 | r.which.the.user.will.be.logged. |
| 3dc20 | 6f 75 74 2e 00 43 6f 6e 66 69 67 75 72 65 20 73 74 65 70 20 76 61 6c 75 65 20 66 6f 72 20 74 6f | out..Configure.step.value.for.to |
| 3dc40 | 74 70 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a 20 33 30 29 00 43 6f 6e 66 | tp.in.seconds.(default:.30).Conf |
| 3dc60 | 69 67 75 72 65 20 73 79 73 74 65 6d 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 2e 20 41 20 64 6f 6d 61 | igure.system.domain.name..A.doma |
| 3dc80 | 69 6e 20 6e 61 6d 65 20 6d 75 73 74 20 73 74 61 72 74 20 61 6e 64 20 65 6e 64 20 77 69 74 68 20 | in.name.must.start.and.end.with. |
| 3dca0 | 61 20 6c 65 74 74 65 72 20 6f 72 20 64 69 67 69 74 2c 20 61 6e 64 20 68 61 76 65 20 61 73 20 69 | a.letter.or.digit,.and.have.as.i |
| 3dcc0 | 6e 74 65 72 69 6f 72 20 63 68 61 72 61 63 74 65 72 73 20 6f 6e 6c 79 20 6c 65 74 74 65 72 73 2c | nterior.characters.only.letters, |
| 3dce0 | 20 64 69 67 69 74 73 2c 20 6f 72 20 61 20 68 79 70 68 65 6e 2e 00 43 6f 6e 66 69 67 75 72 65 20 | .digits,.or.a.hyphen..Configure. |
| 3dd00 | 74 68 65 20 41 2d 73 69 64 65 20 72 6f 75 74 65 72 20 66 6f 72 20 4e 50 54 76 36 20 75 73 69 6e | the.A-side.router.for.NPTv6.usin |
| 3dd20 | 67 20 74 68 65 20 70 72 65 66 69 78 65 73 20 61 62 6f 76 65 3a 00 43 6f 6e 66 69 67 75 72 65 20 | g.the.prefixes.above:.Configure. |
| 3dd40 | 74 68 65 20 42 2d 73 69 64 65 20 72 6f 75 74 65 72 20 66 6f 72 20 4e 50 54 76 36 20 75 73 69 6e | the.B-side.router.for.NPTv6.usin |
| 3dd60 | 67 20 74 68 65 20 70 72 65 66 69 78 65 73 20 61 62 6f 76 65 3a 00 43 6f 6e 66 69 67 75 72 65 20 | g.the.prefixes.above:.Configure. |
| 3dd80 | 74 68 65 20 44 4e 53 20 60 3c 73 65 72 76 65 72 3e 60 20 49 50 2f 46 51 44 4e 20 75 73 65 64 20 | the.DNS.`<server>`.IP/FQDN.used. |
| 3dda0 | 77 68 65 6e 20 75 70 64 61 74 69 6e 67 20 74 68 69 73 20 64 79 6e 61 6d 69 63 20 61 73 73 69 67 | when.updating.this.dynamic.assig |
| 3ddc0 | 6e 6d 65 6e 74 2e 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 48 54 54 50 20 41 50 49 20 73 65 | nment..Configure.the.HTTP.API.se |
| 3dde0 | 72 76 69 63 65 20 6f 6e 20 52 6f 75 74 65 72 20 42 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 | rvice.on.Router.B.Configure.the. |
| 3de00 | 49 50 76 34 20 6f 72 20 49 50 76 36 20 6c 69 73 74 65 6e 20 61 64 64 72 65 73 73 20 6f 66 20 74 | IPv4.or.IPv6.listen.address.of.t |
| 3de20 | 68 65 20 54 46 54 50 20 73 65 72 76 65 72 2e 20 4d 75 6c 74 69 70 6c 65 20 49 50 76 34 20 61 6e | he.TFTP.server..Multiple.IPv4.an |
| 3de40 | 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 63 61 6e 20 62 65 20 67 69 76 65 6e 2e 20 54 | d.IPv6.addresses.can.be.given..T |
| 3de60 | 68 65 72 65 20 77 69 6c 6c 20 62 65 20 6f 6e 65 20 54 46 54 50 20 73 65 72 76 65 72 20 69 6e 73 | here.will.be.one.TFTP.server.ins |
| 3de80 | 74 61 6e 63 65 73 20 6c 69 73 74 65 6e 69 6e 67 20 6f 6e 20 65 61 63 68 20 49 50 20 61 64 64 72 | tances.listening.on.each.IP.addr |
| 3dea0 | 65 73 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 63 6f 6e 66 69 67 2d 73 79 6e 63 20 73 | ess..Configure.the.config-sync.s |
| 3dec0 | 65 72 76 69 63 65 20 6f 6e 20 52 6f 75 74 65 72 20 41 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 | ervice.on.Router.A.Configure.the |
| 3dee0 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 68 65 | .connection.tracking.protocol.he |
| 3df00 | 6c 70 65 72 20 6d 6f 64 75 6c 65 73 2e 20 41 6c 6c 20 6d 6f 64 75 6c 65 73 20 61 72 65 20 65 6e | lper.modules..All.modules.are.en |
| 3df20 | 61 62 6c 65 20 62 79 20 64 65 66 61 75 6c 74 2e 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 64 | able.by.default..Configure.the.d |
| 3df40 | 69 73 63 72 65 74 65 20 70 6f 72 74 20 75 6e 64 65 72 20 77 68 69 63 68 20 74 68 65 20 52 41 44 | iscrete.port.under.which.the.RAD |
| 3df60 | 49 55 53 20 73 65 72 76 65 72 20 63 61 6e 20 62 65 20 72 65 61 63 68 65 64 2e 00 43 6f 6e 66 69 | IUS.server.can.be.reached..Confi |
| 3df80 | 67 75 72 65 20 74 68 65 20 64 69 73 63 72 65 74 65 20 70 6f 72 74 20 75 6e 64 65 72 20 77 68 69 | gure.the.discrete.port.under.whi |
| 3dfa0 | 63 68 20 74 68 65 20 54 41 43 41 43 53 20 73 65 72 76 65 72 20 63 61 6e 20 62 65 20 72 65 61 63 | ch.the.TACACS.server.can.be.reac |
| 3dfc0 | 68 65 64 2e 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6c 6f 61 64 2d 62 61 6c 61 6e 63 69 6e | hed..Configure.the.load-balancin |
| 3dfe0 | 67 20 68 61 70 72 6f 78 79 20 73 65 72 76 69 63 65 20 66 6f 72 20 48 54 54 50 2e 00 43 6f 6e 66 | g.haproxy.service.for.HTTP..Conf |
| 3e000 | 69 67 75 72 65 20 74 68 65 20 6c 6f 61 64 2d 62 61 6c 61 6e 63 69 6e 67 20 72 65 76 65 72 73 65 | igure.the.load-balancing.reverse |
| 3e020 | 2d 70 72 6f 78 79 20 73 65 72 76 69 63 65 20 66 6f 72 20 48 54 54 50 2e 00 43 6f 6e 66 69 67 75 | -proxy.service.for.HTTP..Configu |
| 3e040 | 72 65 20 74 68 65 20 74 69 6d 65 73 74 61 6d 70 69 6e 67 20 62 65 68 61 76 69 6f 72 20 77 69 74 | re.the.timestamping.behavior.wit |
| 3e060 | 68 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6f 70 74 69 6f 6e 3a 00 43 6f 6e 66 69 67 75 72 | h.the.following.option:.Configur |
| 3e080 | 65 20 74 69 6d 65 20 64 72 69 66 74 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 | e.time.drift.in.seconds.(default |
| 3e0a0 | 3a 20 30 29 00 43 6f 6e 66 69 67 75 72 65 20 74 72 61 66 66 69 63 20 63 61 70 74 75 72 65 20 6d | :.0).Configure.traffic.capture.m |
| 3e0c0 | 6f 64 65 2e 00 43 6f 6e 66 69 67 75 72 65 20 75 73 65 72 20 64 65 66 69 6e 65 64 20 3a 61 62 62 | ode..Configure.user.defined.:abb |
| 3e0e0 | 72 3a 60 4d 41 43 20 28 4d 65 64 69 61 20 41 63 63 65 73 73 20 43 6f 6e 74 72 6f 6c 29 60 20 61 | r:`MAC.(Media.Access.Control)`.a |
| 3e100 | 64 64 72 65 73 73 20 6f 6e 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 43 | ddress.on.given.`<interface>`..C |
| 3e120 | 6f 6e 66 69 67 75 72 65 20 77 61 74 65 72 6d 61 72 6b 20 77 61 72 6e 69 6e 67 20 67 65 6e 65 72 | onfigure.watermark.warning.gener |
| 3e140 | 61 74 69 6f 6e 20 66 6f 72 20 61 6e 20 49 47 4d 50 20 67 72 6f 75 70 20 6c 69 6d 69 74 2e 20 47 | ation.for.an.IGMP.group.limit..G |
| 3e160 | 65 6e 65 72 61 74 65 73 20 77 61 72 6e 69 6e 67 20 6f 6e 63 65 20 74 68 65 20 63 6f 6e 66 69 67 | enerates.warning.once.the.config |
| 3e180 | 75 72 65 64 20 67 72 6f 75 70 20 6c 69 6d 69 74 20 69 73 20 72 65 61 63 68 65 64 20 77 68 69 6c | ured.group.limit.is.reached.whil |
| 3e1a0 | 65 20 61 64 64 69 6e 67 20 6e 65 77 20 67 72 6f 75 70 73 2e 00 43 6f 6e 66 69 67 75 72 65 64 20 | e.adding.new.groups..Configured. |
| 3e1c0 | 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 60 3c 69 64 3e 60 20 69 73 20 75 73 65 64 20 62 79 20 | routing.table.`<id>`.is.used.by. |
| 3e1e0 | 56 52 46 20 60 3c 6e 61 6d 65 3e 60 2e 00 43 6f 6e 66 69 67 75 72 65 64 20 76 61 6c 75 65 00 43 | VRF.`<name>`..Configured.value.C |
| 3e200 | 6f 6e 66 69 67 75 72 65 73 20 68 61 72 64 77 61 72 65 20 74 69 6d 65 73 74 61 6d 70 69 6e 67 20 | onfigures.hardware.timestamping. |
| 3e220 | 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 3c 69 6e 74 65 72 66 61 63 65 3e 2e 20 54 68 | on.the.interface.<interface>..Th |
| 3e240 | 65 20 73 70 65 63 69 61 6c 20 76 61 6c 75 65 20 60 61 6c 6c 60 20 63 61 6e 20 61 6c 73 6f 20 62 | e.special.value.`all`.can.also.b |
| 3e260 | 65 20 73 70 65 63 69 66 69 65 64 20 74 6f 20 65 6e 61 62 6c 65 20 74 69 6d 65 73 74 61 6d 70 69 | e.specified.to.enable.timestampi |
| 3e280 | 6e 67 20 6f 6e 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 20 74 68 61 74 20 73 75 70 70 6f 72 | ng.on.all.interfaces.that.suppor |
| 3e2a0 | 74 20 69 74 2e 00 43 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 42 47 50 20 73 70 65 61 6b 65 72 | t.it..Configures.the.BGP.speaker |
| 3e2c0 | 20 73 6f 20 74 68 61 74 20 69 74 20 6f 6e 6c 79 20 61 63 63 65 70 74 73 20 69 6e 62 6f 75 6e 64 | .so.that.it.only.accepts.inbound |
| 3e2e0 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 66 72 6f 6d 2c 20 62 75 74 20 64 6f 65 73 20 6e 6f 74 20 | .connections.from,.but.does.not. |
| 3e300 | 69 6e 69 74 69 61 74 65 20 6f 75 74 62 6f 75 6e 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f | initiate.outbound.connections.to |
| 3e320 | 20 74 68 65 20 70 65 65 72 20 6f 72 20 70 65 65 72 20 67 72 6f 75 70 2e 00 43 6f 6e 66 69 67 75 | .the.peer.or.peer.group..Configu |
| 3e340 | 72 65 73 20 74 68 65 20 50 54 50 20 70 6f 72 74 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 74 68 | res.the.PTP.port..By.default,.th |
| 3e360 | 65 20 73 74 61 6e 64 61 72 64 20 70 6f 72 74 20 33 31 39 20 69 73 20 75 73 65 64 2e 00 43 6f 6e | e.standard.port.319.is.used..Con |
| 3e380 | 66 69 67 75 72 65 73 20 74 68 65 20 72 69 6e 67 20 62 75 66 66 65 72 20 73 69 7a 65 20 6f 66 20 | figures.the.ring.buffer.size.of. |
| 3e3a0 | 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 48 54 20 6d 6f | the.interface..Configuring.HT.mo |
| 3e3c0 | 64 65 20 6f 70 74 69 6f 6e 73 20 69 73 20 72 65 71 75 69 72 65 64 20 77 68 65 6e 20 75 73 69 6e | de.options.is.required.when.usin |
| 3e3e0 | 67 20 38 30 32 2e 31 31 6e 20 6f 72 20 38 30 32 2e 31 31 61 78 20 61 74 20 32 2e 34 47 48 7a 2e | g.802.11n.or.802.11ax.at.2.4GHz. |
| 3e400 | 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 49 50 6f 45 20 53 65 72 76 65 72 00 43 6f 6e 66 69 67 75 | .Configuring.IPoE.Server.Configu |
| 3e420 | 72 69 6e 67 20 49 50 73 65 63 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 4c 32 54 50 20 53 65 72 76 | ring.IPsec.Configuring.L2TP.Serv |
| 3e440 | 65 72 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 4c 4e 53 20 28 4c 32 54 50 20 4e 65 74 77 6f 72 6b | er.Configuring.LNS.(L2TP.Network |
| 3e460 | 20 53 65 72 76 65 72 29 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 50 50 50 6f 45 20 53 65 72 76 65 | .Server).Configuring.PPPoE.Serve |
| 3e480 | 72 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 50 50 54 50 20 53 65 72 76 65 72 00 43 6f 6e 66 69 67 | r.Configuring.PPTP.Server.Config |
| 3e4a0 | 75 72 69 6e 67 20 52 41 44 49 55 53 20 61 63 63 6f 75 6e 74 69 6e 67 00 43 6f 6e 66 69 67 75 72 | uring.RADIUS.accounting.Configur |
| 3e4c0 | 69 6e 67 20 52 41 44 49 55 53 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 00 43 6f 6e 66 69 67 | ing.RADIUS.authentication.Config |
| 3e4e0 | 75 72 69 6e 67 20 53 53 54 50 20 53 65 72 76 65 72 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 53 53 | uring.SSTP.Server.Configuring.SS |
| 3e500 | 54 50 20 63 6c 69 65 6e 74 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 56 79 4f 53 20 74 6f 20 61 63 | TP.client.Configuring.VyOS.to.ac |
| 3e520 | 74 20 61 73 20 79 6f 75 72 20 49 50 53 65 63 20 61 63 63 65 73 73 20 63 6f 6e 63 65 6e 74 72 61 | t.as.your.IPSec.access.concentra |
| 3e540 | 74 6f 72 20 69 73 20 6f 6e 65 20 74 68 69 6e 67 2c 20 62 75 74 20 79 6f 75 20 70 72 6f 62 61 62 | tor.is.one.thing,.but.you.probab |
| 3e560 | 6c 79 20 6e 65 65 64 20 74 6f 20 73 65 74 75 70 20 79 6f 75 72 20 63 6c 69 65 6e 74 20 63 6f 6e | ly.need.to.setup.your.client.con |
| 3e580 | 6e 65 63 74 69 6e 67 20 74 6f 20 74 68 65 20 73 65 72 76 65 72 20 73 6f 20 74 68 65 79 20 63 61 | necting.to.the.server.so.they.ca |
| 3e5a0 | 6e 20 74 61 6c 6b 20 74 6f 20 74 68 65 20 49 50 53 65 63 20 67 61 74 65 77 61 79 2e 00 43 6f 6e | n.talk.to.the.IPSec.gateway..Con |
| 3e5c0 | 66 69 67 75 72 69 6e 67 20 61 20 6c 69 73 74 65 6e 2d 61 64 64 72 65 73 73 20 69 73 20 65 73 73 | figuring.a.listen-address.is.ess |
| 3e5e0 | 65 6e 74 69 61 6c 20 66 6f 72 20 74 68 65 20 73 65 72 76 69 63 65 20 74 6f 20 77 6f 72 6b 2e 00 | ential.for.the.service.to.work.. |
| 3e600 | 43 6f 6e 6e 65 63 74 2f 44 69 73 63 6f 6e 6e 65 63 74 00 43 6f 6e 6e 65 63 74 65 64 20 63 6c 69 | Connect/Disconnect.Connected.cli |
| 3e620 | 65 6e 74 20 73 68 6f 75 6c 64 20 75 73 65 20 60 3c 61 64 64 72 65 73 73 3e 60 20 61 73 20 74 68 | ent.should.use.`<address>`.as.th |
| 3e640 | 65 69 72 20 44 4e 53 20 73 65 72 76 65 72 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 63 63 | eir.DNS.server..This.command.acc |
| 3e660 | 65 70 74 73 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 | epts.both.IPv4.and.IPv6.addresse |
| 3e680 | 73 2e 20 55 70 20 74 6f 20 74 77 6f 20 6e 61 6d 65 73 65 72 76 65 72 73 20 63 61 6e 20 62 65 20 | s..Up.to.two.nameservers.can.be. |
| 3e6a0 | 63 6f 6e 66 69 67 75 72 65 64 20 66 6f 72 20 49 50 76 34 2c 20 75 70 20 74 6f 20 74 68 72 65 65 | configured.for.IPv4,.up.to.three |
| 3e6c0 | 20 66 6f 72 20 49 50 76 36 2e 00 43 6f 6e 6e 65 63 74 65 64 20 63 6c 69 65 6e 74 73 20 73 68 6f | .for.IPv6..Connected.clients.sho |
| 3e6e0 | 75 6c 64 20 75 73 65 20 60 3c 61 64 64 72 65 73 73 3e 60 20 61 73 20 74 68 65 69 72 20 44 4e 53 | uld.use.`<address>`.as.their.DNS |
| 3e700 | 20 73 65 72 76 65 72 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 63 63 65 70 74 73 20 62 6f | .server..This.command.accepts.bo |
| 3e720 | 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 2e 20 55 70 20 74 | th.IPv4.and.IPv6.addresses..Up.t |
| 3e740 | 6f 20 74 77 6f 20 6e 61 6d 65 73 65 72 76 65 72 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 | o.two.nameservers.can.be.configu |
| 3e760 | 72 65 64 20 66 6f 72 20 49 50 76 34 2c 20 75 70 20 74 6f 20 74 68 72 65 65 20 66 6f 72 20 49 50 | red.for.IPv4,.up.to.three.for.IP |
| 3e780 | 76 36 2e 00 43 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 52 50 4b 49 20 63 61 63 68 | v6..Connections.to.the.RPKI.cach |
| 3e7a0 | 69 6e 67 20 73 65 72 76 65 72 20 63 61 6e 20 6e 6f 74 20 6f 6e 6c 79 20 62 65 20 65 73 74 61 62 | ing.server.can.not.only.be.estab |
| 3e7c0 | 6c 69 73 68 65 64 20 62 79 20 48 54 54 50 2f 54 4c 53 20 62 75 74 20 79 6f 75 20 63 61 6e 20 61 | lished.by.HTTP/TLS.but.you.can.a |
| 3e7e0 | 6c 73 6f 20 72 65 6c 79 20 6f 6e 20 61 20 73 65 63 75 72 65 20 53 53 48 20 73 65 73 73 69 6f 6e | lso.rely.on.a.secure.SSH.session |
| 3e800 | 20 74 6f 20 74 68 65 20 73 65 72 76 65 72 2e 20 54 6f 20 65 6e 61 62 6c 65 20 53 53 48 20 79 6f | .to.the.server..To.enable.SSH.yo |
| 3e820 | 75 20 66 69 72 73 74 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 20 79 6f 75 72 73 65 6c 73 20 | u.first.need.to.create.yoursels. |
| 3e840 | 61 6e 20 53 53 48 20 63 6c 69 65 6e 74 20 6b 65 79 70 61 69 72 20 75 73 69 6e 67 20 60 60 67 65 | an.SSH.client.keypair.using.``ge |
| 3e860 | 6e 65 72 61 74 65 20 73 73 68 20 63 6c 69 65 6e 74 2d 6b 65 79 20 2f 63 6f 6e 66 69 67 2f 61 75 | nerate.ssh.client-key./config/au |
| 3e880 | 74 68 2f 69 64 5f 72 73 61 5f 72 70 6b 69 60 60 2e 20 4f 6e 63 65 20 79 6f 75 72 20 6b 65 79 20 | th/id_rsa_rpki``..Once.your.key. |
| 3e8a0 | 69 73 20 63 72 65 61 74 65 64 20 79 6f 75 20 63 61 6e 20 73 65 74 75 70 20 74 68 65 20 63 6f 6e | is.created.you.can.setup.the.con |
| 3e8c0 | 6e 65 63 74 69 6f 6e 2e 00 43 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 52 50 4b 49 | nection..Connections.to.the.RPKI |
| 3e8e0 | 20 63 61 63 68 69 6e 67 20 73 65 72 76 65 72 20 63 61 6e 20 6e 6f 74 20 6f 6e 6c 79 20 62 65 20 | .caching.server.can.not.only.be. |
| 3e900 | 65 73 74 61 62 6c 69 73 68 65 64 20 62 79 20 48 54 54 50 2f 54 4c 53 20 62 75 74 20 79 6f 75 20 | established.by.HTTP/TLS.but.you. |
| 3e920 | 63 61 6e 20 61 6c 73 6f 20 72 65 6c 79 20 6f 6e 20 61 20 73 65 63 75 72 65 20 53 53 48 20 73 65 | can.also.rely.on.a.secure.SSH.se |
| 3e940 | 73 73 69 6f 6e 20 74 6f 20 74 68 65 20 73 65 72 76 65 72 2e 20 54 6f 20 65 6e 61 62 6c 65 20 53 | ssion.to.the.server..To.enable.S |
| 3e960 | 53 48 2c 20 66 69 72 73 74 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 20 61 6e 20 | SH,.first.you.need.to.create.an. |
| 3e980 | 53 53 48 20 63 6c 69 65 6e 74 20 6b 65 79 70 61 69 72 20 75 73 69 6e 67 20 60 60 67 65 6e 65 72 | SSH.client.keypair.using.``gener |
| 3e9a0 | 61 74 65 20 73 73 68 20 63 6c 69 65 6e 74 2d 6b 65 79 20 2f 63 6f 6e 66 69 67 2f 61 75 74 68 2f | ate.ssh.client-key./config/auth/ |
| 3e9c0 | 69 64 5f 72 73 61 5f 72 70 6b 69 60 60 2e 20 4f 6e 63 65 20 79 6f 75 72 20 6b 65 79 20 69 73 20 | id_rsa_rpki``..Once.your.key.is. |
| 3e9e0 | 63 72 65 61 74 65 64 20 79 6f 75 20 63 61 6e 20 73 65 74 75 70 20 74 68 65 20 63 6f 6e 6e 65 63 | created.you.can.setup.the.connec |
| 3ea00 | 74 69 6f 6e 2e 00 43 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 52 50 4b 49 20 63 61 | tion..Connections.to.the.RPKI.ca |
| 3ea20 | 63 68 69 6e 67 20 73 65 72 76 65 72 20 63 61 6e 20 6e 6f 74 20 6f 6e 6c 79 20 62 65 20 65 73 74 | ching.server.can.not.only.be.est |
| 3ea40 | 61 62 6c 69 73 68 65 64 20 62 79 20 54 43 50 20 75 73 69 6e 67 20 74 68 65 20 52 54 52 20 70 72 | ablished.by.TCP.using.the.RTR.pr |
| 3ea60 | 6f 74 6f 63 6f 6c 20 62 75 74 20 79 6f 75 20 63 61 6e 20 61 6c 73 6f 20 72 65 6c 79 20 6f 6e 20 | otocol.but.you.can.also.rely.on. |
| 3ea80 | 61 20 73 65 63 75 72 65 20 53 53 48 20 73 65 73 73 69 6f 6e 20 74 6f 20 74 68 65 20 73 65 72 76 | a.secure.SSH.session.to.the.serv |
| 3eaa0 | 65 72 2e 20 54 68 69 73 20 70 72 6f 76 69 64 65 73 20 74 72 61 6e 73 70 6f 72 74 20 69 6e 74 65 | er..This.provides.transport.inte |
| 3eac0 | 67 72 69 74 79 20 61 6e 64 20 63 6f 6e 66 69 64 65 6e 74 69 61 6c 69 74 79 20 61 6e 64 20 69 74 | grity.and.confidentiality.and.it |
| 3eae0 | 20 69 73 20 61 20 67 6f 6f 64 20 69 64 65 61 20 69 66 20 79 6f 75 72 20 76 61 6c 69 64 61 74 69 | .is.a.good.idea.if.your.validati |
| 3eb00 | 6f 6e 20 73 6f 66 74 77 61 72 65 20 73 75 70 70 6f 72 74 73 20 69 74 2e 20 20 54 6f 20 65 6e 61 | on.software.supports.it...To.ena |
| 3eb20 | 62 6c 65 20 53 53 48 2c 20 66 69 72 73 74 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 | ble.SSH,.first.you.need.to.creat |
| 3eb40 | 65 20 61 6e 20 53 53 48 20 63 6c 69 65 6e 74 20 6b 65 79 70 61 69 72 20 75 73 69 6e 67 20 60 60 | e.an.SSH.client.keypair.using.`` |
| 3eb60 | 67 65 6e 65 72 61 74 65 20 73 73 68 20 63 6c 69 65 6e 74 2d 6b 65 79 20 2f 63 6f 6e 66 69 67 2f | generate.ssh.client-key./config/ |
| 3eb80 | 61 75 74 68 2f 69 64 5f 72 73 61 5f 72 70 6b 69 60 60 2e 20 4f 6e 63 65 20 79 6f 75 72 20 6b 65 | auth/id_rsa_rpki``..Once.your.ke |
| 3eba0 | 79 20 69 73 20 63 72 65 61 74 65 64 20 79 6f 75 20 63 61 6e 20 73 65 74 75 70 20 74 68 65 20 63 | y.is.created.you.can.setup.the.c |
| 3ebc0 | 6f 6e 6e 65 63 74 69 6f 6e 2e 00 43 6f 6e 6e 74 72 61 63 6b 00 43 6f 6e 6e 74 72 61 63 6b 20 53 | onnection..Conntrack.Conntrack.S |
| 3ebe0 | 79 6e 63 00 43 6f 6e 6e 74 72 61 63 6b 20 53 79 6e 63 20 45 78 61 6d 70 6c 65 00 43 6f 6e 6e 74 | ync.Conntrack.Sync.Example.Connt |
| 3ec00 | 72 61 63 6b 20 69 67 6e 6f 72 65 20 72 75 6c 65 73 00 43 6f 6e 6e 74 72 61 63 6b 20 6c 6f 67 00 | rack.ignore.rules.Conntrack.log. |
| 3ec20 | 43 6f 6e 73 69 64 65 72 61 74 69 6f 6e 73 00 43 6f 6e 73 6f 6c 65 00 43 6f 6e 73 6f 6c 65 20 53 | Considerations.Console.Console.S |
| 3ec40 | 65 72 76 65 72 00 43 6f 6e 73 74 72 61 69 6e 20 74 68 65 20 6d 65 6d 6f 72 79 20 61 76 61 69 6c | erver.Constrain.the.memory.avail |
| 3ec60 | 61 62 6c 65 20 74 6f 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 2e 00 43 6f 6e 74 61 69 6e 65 72 | able.to.the.container..Container |
| 3ec80 | 00 43 6f 6e 74 61 69 6e 65 72 20 4e 65 74 77 6f 72 6b 73 00 43 6f 6e 74 61 69 6e 65 72 20 52 65 | .Container.Networks.Container.Re |
| 3eca0 | 67 69 73 74 72 79 00 43 6f 6e 74 72 61 63 6b 20 54 69 6d 65 6f 75 74 73 00 43 6f 6e 76 65 72 74 | gistry.Contrack.Timeouts.Convert |
| 3ecc0 | 20 74 68 65 20 61 64 64 72 65 73 73 20 70 72 65 66 69 78 20 6f 66 20 61 20 73 69 6e 67 6c 65 20 | .the.address.prefix.of.a.single. |
| 3ece0 | 60 66 63 30 30 3a 3a 2f 36 34 60 20 6e 65 74 77 6f 72 6b 20 74 6f 20 60 66 63 30 31 3a 3a 2f 36 | `fc00::/64`.network.to.`fc01::/6 |
| 3ed00 | 34 60 00 43 6f 6e 76 65 72 74 20 74 68 65 20 61 64 64 72 65 73 73 20 70 72 65 66 69 78 20 6f 66 | 4`.Convert.the.address.prefix.of |
| 3ed20 | 20 61 20 73 69 6e 67 6c 65 20 60 66 63 30 31 3a 3a 2f 36 34 60 20 6e 65 74 77 6f 72 6b 20 74 6f | .a.single.`fc01::/64`.network.to |
| 3ed40 | 20 60 66 63 30 30 3a 3a 2f 36 34 60 00 43 6f 70 79 20 74 68 65 20 6b 65 79 2c 20 61 73 20 69 74 | .`fc00::/64`.Copy.the.key,.as.it |
| 3ed60 | 20 69 73 20 6e 6f 74 20 73 74 6f 72 65 64 20 6f 6e 20 74 68 65 20 6c 6f 63 61 6c 20 66 69 6c 65 | .is.not.stored.on.the.local.file |
| 3ed80 | 73 79 73 74 65 6d 2e 20 42 65 63 61 75 73 65 20 69 74 20 69 73 20 61 20 73 79 6d 6d 65 74 72 69 | system..Because.it.is.a.symmetri |
| 3eda0 | 63 20 6b 65 79 2c 20 6f 6e 6c 79 20 79 6f 75 20 61 6e 64 20 79 6f 75 72 20 70 65 65 72 20 73 68 | c.key,.only.you.and.your.peer.sh |
| 3edc0 | 6f 75 6c 64 20 68 61 76 65 20 6b 6e 6f 77 6c 65 64 67 65 20 6f 66 20 69 74 73 20 63 6f 6e 74 65 | ould.have.knowledge.of.its.conte |
| 3ede0 | 6e 74 2e 20 4d 61 6b 65 20 73 75 72 65 20 79 6f 75 20 64 69 73 74 72 69 62 75 74 65 20 74 68 65 | nt..Make.sure.you.distribute.the |
| 3ee00 | 20 6b 65 79 20 69 6e 20 61 20 73 61 66 65 20 6d 61 6e 6e 65 72 2c 00 43 6f 75 6e 74 72 79 20 63 | .key.in.a.safe.manner,.Country.c |
| 3ee20 | 6f 64 65 20 28 49 53 4f 2f 49 45 43 20 33 31 36 36 2d 31 29 2e 20 55 73 65 64 20 74 6f 20 73 65 | ode.(ISO/IEC.3166-1)..Used.to.se |
| 3ee40 | 74 20 72 65 67 75 6c 61 74 6f 72 79 20 64 6f 6d 61 69 6e 2e 20 53 65 74 20 61 73 20 6e 65 65 64 | t.regulatory.domain..Set.as.need |
| 3ee60 | 65 64 20 74 6f 20 69 6e 64 69 63 61 74 65 20 63 6f 75 6e 74 72 79 20 69 6e 20 77 68 69 63 68 20 | ed.to.indicate.country.in.which. |
| 3ee80 | 64 65 76 69 63 65 20 69 73 20 6f 70 65 72 61 74 69 6e 67 2e 20 54 68 69 73 20 63 61 6e 20 6c 69 | device.is.operating..This.can.li |
| 3eea0 | 6d 69 74 20 61 76 61 69 6c 61 62 6c 65 20 63 68 61 6e 6e 65 6c 73 20 61 6e 64 20 74 72 61 6e 73 | mit.available.channels.and.trans |
| 3eec0 | 6d 69 74 20 70 6f 77 65 72 2e 00 43 6f 75 6e 74 72 79 20 63 6f 64 65 20 28 49 53 4f 2f 49 45 43 | mit.power..Country.code.(ISO/IEC |
| 3eee0 | 20 33 31 36 36 2d 31 29 2e 20 55 73 65 64 20 74 6f 20 73 65 74 20 72 65 67 75 6c 61 74 6f 72 79 | .3166-1)..Used.to.set.regulatory |
| 3ef00 | 20 64 6f 6d 61 69 6e 2e 20 53 65 74 20 61 73 20 6e 65 65 64 65 64 20 74 6f 20 69 6e 64 69 63 61 | .domain..Set.as.needed.to.indica |
| 3ef20 | 74 65 20 63 6f 75 6e 74 72 79 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 62 6f 78 20 69 73 20 6f | te.country.in.which.the.box.is.o |
| 3ef40 | 70 65 72 61 74 69 6e 67 2e 20 54 68 69 73 20 63 61 6e 20 6c 69 6d 69 74 20 61 76 61 69 6c 61 62 | perating..This.can.limit.availab |
| 3ef60 | 6c 65 20 63 68 61 6e 6e 65 6c 73 20 61 6e 64 20 74 72 61 6e 73 6d 69 74 20 70 6f 77 65 72 2e 00 | le.channels.and.transmit.power.. |
| 3ef80 | 43 72 65 61 74 20 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 20 70 6f 6c 69 63 79 20 69 64 65 6e | Creat.community-list.policy.iden |
| 3efa0 | 74 69 66 69 65 64 20 62 79 20 6e 61 6d 65 20 3c 74 65 78 74 3e 2e 00 43 72 65 61 74 20 65 78 74 | tified.by.name.<text>..Creat.ext |
| 3efc0 | 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 20 70 6f 6c 69 63 79 20 69 64 65 6e 74 69 66 69 65 64 | community-list.policy.identified |
| 3efe0 | 20 62 79 20 6e 61 6d 65 20 3c 74 65 78 74 3e 2e 00 43 72 65 61 74 65 20 44 48 43 50 20 61 64 64 | .by.name.<text>..Create.DHCP.add |
| 3f000 | 72 65 73 73 20 72 61 6e 67 65 20 77 69 74 68 20 61 20 72 61 6e 67 65 20 69 64 20 6f 66 20 60 3c | ress.range.with.a.range.id.of.`< |
| 3f020 | 6e 3e 60 2e 20 44 48 43 50 20 6c 65 61 73 65 73 20 61 72 65 20 74 61 6b 65 6e 20 66 72 6f 6d 20 | n>`..DHCP.leases.are.taken.from. |
| 3f040 | 74 68 69 73 20 70 6f 6f 6c 2e 20 54 68 65 20 70 6f 6f 6c 20 73 74 61 72 74 73 20 61 74 20 61 64 | this.pool..The.pool.starts.at.ad |
| 3f060 | 64 72 65 73 73 20 60 3c 61 64 64 72 65 73 73 3e 60 2e 00 43 72 65 61 74 65 20 44 48 43 50 20 61 | dress.`<address>`..Create.DHCP.a |
| 3f080 | 64 64 72 65 73 73 20 72 61 6e 67 65 20 77 69 74 68 20 61 20 72 61 6e 67 65 20 69 64 20 6f 66 20 | ddress.range.with.a.range.id.of. |
| 3f0a0 | 60 3c 6e 3e 60 2e 20 44 48 43 50 20 6c 65 61 73 65 73 20 61 72 65 20 74 61 6b 65 6e 20 66 72 6f | `<n>`..DHCP.leases.are.taken.fro |
| 3f0c0 | 6d 20 74 68 69 73 20 70 6f 6f 6c 2e 20 54 68 65 20 70 6f 6f 6c 20 73 74 6f 70 73 20 77 69 74 68 | m.this.pool..The.pool.stops.with |
| 3f0e0 | 20 61 64 64 72 65 73 73 20 60 3c 61 64 64 72 65 73 73 3e 60 2e 00 43 72 65 61 74 65 20 44 4e 53 | .address.`<address>`..Create.DNS |
| 3f100 | 20 72 65 63 6f 72 64 20 70 65 72 20 63 6c 69 65 6e 74 20 6c 65 61 73 65 2c 20 62 79 20 61 64 64 | .record.per.client.lease,.by.add |
| 3f120 | 69 6e 67 20 63 6c 69 65 6e 74 73 20 74 6f 20 2f 65 74 63 2f 68 6f 73 74 73 20 66 69 6c 65 2e 20 | ing.clients.to./etc/hosts.file.. |
| 3f140 | 45 6e 74 72 79 20 77 69 6c 6c 20 68 61 76 65 20 66 6f 72 6d 61 74 3a 20 60 3c 73 68 61 72 65 64 | Entry.will.have.format:.`<shared |
| 3f160 | 2d 6e 65 74 77 6f 72 6b 2d 6e 61 6d 65 3e 5f 3c 68 6f 73 74 6e 61 6d 65 3e 2e 3c 64 6f 6d 61 69 | -network-name>_<hostname>.<domai |
| 3f180 | 6e 2d 6e 61 6d 65 3e 60 00 43 72 65 61 74 65 20 60 3c 75 73 65 72 3e 60 20 66 6f 72 20 6c 6f 63 | n-name>`.Create.`<user>`.for.loc |
| 3f1a0 | 61 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f 6e 20 74 68 69 73 20 73 79 73 74 65 6d | al.authentication.on.this.system |
| 3f1c0 | 2e 20 54 68 65 20 75 73 65 72 73 20 70 61 73 73 77 6f 72 64 20 77 69 6c 6c 20 62 65 20 73 65 74 | ..The.users.password.will.be.set |
| 3f1e0 | 20 74 6f 20 60 3c 70 61 73 73 3e 60 2e 00 43 72 65 61 74 65 20 60 60 31 37 32 2e 31 38 2e 32 30 | .to.`<pass>`..Create.``172.18.20 |
| 3f200 | 31 2e 30 2f 32 34 60 60 20 61 73 20 61 20 73 75 62 6e 65 74 20 77 69 74 68 69 6e 20 60 60 4e 45 | 1.0/24``.as.a.subnet.within.``NE |
| 3f220 | 54 31 60 60 20 61 6e 64 20 70 61 73 73 20 61 64 64 72 65 73 73 20 6f 66 20 55 6e 69 66 69 20 63 | T1``.and.pass.address.of.Unifi.c |
| 3f240 | 6f 6e 74 72 6f 6c 6c 65 72 20 61 74 20 60 60 31 37 32 2e 31 36 2e 31 30 30 2e 31 60 60 20 74 6f | ontroller.at.``172.16.100.1``.to |
| 3f260 | 20 63 6c 69 65 6e 74 73 20 6f 66 20 74 68 61 74 20 73 75 62 6e 65 74 2e 00 43 72 65 61 74 65 20 | .clients.of.that.subnet..Create. |
| 3f280 | 61 20 43 41 20 63 68 61 69 6e 20 61 6e 64 20 6c 65 61 66 20 63 65 72 74 69 66 69 63 61 74 65 73 | a.CA.chain.and.leaf.certificates |
| 3f2a0 | 00 43 72 65 61 74 65 20 61 20 62 61 73 69 63 20 62 72 69 64 67 65 00 43 72 65 61 74 65 20 61 20 | .Create.a.basic.bridge.Create.a. |
| 3f2c0 | 66 69 6c 65 20 6e 61 6d 65 64 20 60 60 56 79 4f 53 2d 31 2e 33 2e 36 2e 31 2e 34 2e 31 2e 34 34 | file.named.``VyOS-1.3.6.1.4.1.44 |
| 3f2e0 | 36 34 31 2e 43 6f 6e 66 69 67 4d 67 6d 74 2d 43 6f 6d 6d 61 6e 64 73 60 60 20 75 73 69 6e 67 20 | 641.ConfigMgmt-Commands``.using. |
| 3f300 | 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 74 65 6e 74 3a 00 43 72 65 61 74 65 20 61 20 | the.following.content:.Create.a. |
| 3f320 | 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 72 75 6c 65 2c 20 69 74 20 63 61 6e 20 62 65 20 61 | load.balancing.rule,.it.can.be.a |
| 3f340 | 20 6e 75 6d 62 65 72 20 62 65 74 77 65 65 6e 20 31 20 61 6e 64 20 39 39 39 39 3a 00 43 72 65 61 | .number.between.1.and.9999:.Crea |
| 3f360 | 74 65 20 61 20 6e 65 77 20 3a 61 62 62 72 3a 60 43 41 20 28 43 65 72 74 69 66 69 63 61 74 65 20 | te.a.new.:abbr:`CA.(Certificate. |
| 3f380 | 41 75 74 68 6f 72 69 74 79 29 60 20 61 6e 64 20 6f 75 74 70 75 74 20 74 68 65 20 43 41 73 20 70 | Authority)`.and.output.the.CAs.p |
| 3f3a0 | 75 62 6c 69 63 20 61 6e 64 20 70 72 69 76 61 74 65 20 6b 65 79 20 6f 6e 20 74 68 65 20 63 6f 6e | ublic.and.private.key.on.the.con |
| 3f3c0 | 73 6f 6c 65 2e 00 43 72 65 61 74 65 20 61 20 6e 65 77 20 44 48 43 50 20 73 74 61 74 69 63 20 6d | sole..Create.a.new.DHCP.static.m |
| 3f3e0 | 61 70 70 69 6e 67 20 6e 61 6d 65 64 20 60 3c 64 65 73 63 72 69 70 74 69 6f 6e 3e 60 20 77 68 69 | apping.named.`<description>`.whi |
| 3f400 | 63 68 20 69 73 20 76 61 6c 69 64 20 66 6f 72 20 74 68 65 20 68 6f 73 74 20 69 64 65 6e 74 69 66 | ch.is.valid.for.the.host.identif |
| 3f420 | 69 65 64 20 62 79 20 69 74 73 20 44 48 43 50 20 75 6e 69 71 75 65 20 69 64 65 6e 74 69 66 69 65 | ied.by.its.DHCP.unique.identifie |
| 3f440 | 72 20 28 44 55 49 44 29 20 60 3c 69 64 65 6e 74 69 66 69 65 72 3e 60 2e 00 43 72 65 61 74 65 20 | r.(DUID).`<identifier>`..Create. |
| 3f460 | 61 20 6e 65 77 20 44 48 43 50 20 73 74 61 74 69 63 20 6d 61 70 70 69 6e 67 20 6e 61 6d 65 64 20 | a.new.DHCP.static.mapping.named. |
| 3f480 | 60 3c 64 65 73 63 72 69 70 74 69 6f 6e 3e 60 20 77 68 69 63 68 20 69 73 20 76 61 6c 69 64 20 66 | `<description>`.which.is.valid.f |
| 3f4a0 | 6f 72 20 74 68 65 20 68 6f 73 74 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 69 74 73 20 4d 41 | or.the.host.identified.by.its.MA |
| 3f4c0 | 43 20 60 3c 61 64 64 72 65 73 73 3e 60 2e 00 43 72 65 61 74 65 20 61 20 6e 65 77 20 56 4c 41 4e | C.`<address>`..Create.a.new.VLAN |
| 3f4e0 | 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 60 3c 69 6e 74 65 72 66 | .interface.on.interface.`<interf |
| 3f500 | 61 63 65 3e 60 20 75 73 69 6e 67 20 74 68 65 20 56 4c 41 4e 20 6e 75 6d 62 65 72 20 70 72 6f 76 | ace>`.using.the.VLAN.number.prov |
| 3f520 | 69 64 65 64 20 76 69 61 20 60 3c 76 6c 61 6e 2d 69 64 3e 60 2e 00 43 72 65 61 74 65 20 61 20 6e | ided.via.`<vlan-id>`..Create.a.n |
| 3f540 | 65 77 20 56 52 46 20 69 6e 73 74 61 6e 63 65 20 77 69 74 68 20 60 3c 6e 61 6d 65 3e 60 20 61 6e | ew.VRF.instance.with.`<name>`.an |
| 3f560 | 64 20 60 3c 69 64 3e 60 2e 20 54 68 65 20 6e 61 6d 65 20 69 73 20 75 73 65 64 20 77 68 65 6e 20 | d.`<id>`..The.name.is.used.when. |
| 3f580 | 70 6c 61 63 69 6e 67 20 69 6e 64 69 76 69 64 75 61 6c 20 69 6e 74 65 72 66 61 63 65 73 20 69 6e | placing.individual.interfaces.in |
| 3f5a0 | 74 6f 20 74 68 65 20 56 52 46 2e 00 43 72 65 61 74 65 20 61 20 6e 65 77 20 70 75 62 6c 69 63 2f | to.the.VRF..Create.a.new.public/ |
| 3f5c0 | 70 72 69 76 61 74 65 20 6b 65 79 70 61 69 72 20 61 6e 64 20 6f 75 74 70 75 74 20 74 68 65 20 63 | private.keypair.and.output.the.c |
| 3f5e0 | 65 72 74 69 66 69 63 61 74 65 20 6f 6e 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 00 43 72 65 61 74 | ertificate.on.the.console..Creat |
| 3f600 | 65 20 61 20 6e 65 77 20 70 75 62 6c 69 63 2f 70 72 69 76 61 74 65 20 6b 65 79 70 61 69 72 20 77 | e.a.new.public/private.keypair.w |
| 3f620 | 68 69 63 68 20 69 73 20 73 69 67 6e 65 64 20 62 79 20 74 68 65 20 43 41 20 72 65 66 65 72 65 6e | hich.is.signed.by.the.CA.referen |
| 3f640 | 63 65 64 20 62 79 20 60 63 61 2d 6e 61 6d 65 60 2e 20 54 68 65 20 73 69 67 6e 65 64 20 63 65 72 | ced.by.`ca-name`..The.signed.cer |
| 3f660 | 74 69 66 69 63 61 74 65 20 69 73 20 74 68 65 6e 20 6f 75 74 70 75 74 20 74 6f 20 74 68 65 20 63 | tificate.is.then.output.to.the.c |
| 3f680 | 6f 6e 73 6f 6c 65 2e 00 43 72 65 61 74 65 20 61 20 6e 65 77 20 73 65 6c 66 2d 73 69 67 6e 65 64 | onsole..Create.a.new.self-signed |
| 3f6a0 | 20 63 65 72 74 69 66 69 63 61 74 65 2e 20 54 68 65 20 70 75 62 6c 69 63 2f 70 72 69 76 61 74 65 | .certificate..The.public/private |
| 3f6c0 | 20 69 73 20 74 68 65 6e 20 73 68 6f 77 6e 20 6f 6e 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 00 43 | .is.then.shown.on.the.console..C |
| 3f6e0 | 72 65 61 74 65 20 61 20 6e 65 77 20 73 75 62 6f 72 64 69 6e 61 74 65 20 3a 61 62 62 72 3a 60 43 | reate.a.new.subordinate.:abbr:`C |
| 3f700 | 41 20 28 43 65 72 74 69 66 69 63 61 74 65 20 41 75 74 68 6f 72 69 74 79 29 60 20 61 6e 64 20 73 | A.(Certificate.Authority)`.and.s |
| 3f720 | 69 67 6e 20 69 74 20 75 73 69 6e 67 20 74 68 65 20 70 72 69 76 61 74 65 20 6b 65 79 20 72 65 66 | ign.it.using.the.private.key.ref |
| 3f740 | 65 72 65 6e 63 65 64 20 62 79 20 60 63 61 2d 6e 61 6d 65 60 2e 00 43 72 65 61 74 65 20 61 20 6e | erenced.by.`ca-name`..Create.a.n |
| 3f760 | 65 77 20 73 75 62 6f 72 64 69 6e 61 74 65 20 3a 61 62 62 72 3a 60 43 41 20 28 43 65 72 74 69 66 | ew.subordinate.:abbr:`CA.(Certif |
| 3f780 | 69 63 61 74 65 20 41 75 74 68 6f 72 69 74 79 29 60 20 61 6e 64 20 73 69 67 6e 20 69 74 20 75 73 | icate.Authority)`.and.sign.it.us |
| 3f7a0 | 69 6e 67 20 74 68 65 20 70 72 69 76 61 74 65 20 6b 65 79 20 72 65 66 65 72 65 6e 63 65 64 20 62 | ing.the.private.key.referenced.b |
| 3f7c0 | 79 20 60 6e 61 6d 65 60 2e 00 43 72 65 61 74 65 20 61 20 70 65 65 72 20 61 73 20 79 6f 75 20 77 | y.`name`..Create.a.peer.as.you.w |
| 3f7e0 | 6f 75 6c 64 20 77 68 65 6e 20 79 6f 75 20 73 70 65 63 69 66 79 20 61 6e 20 41 53 4e 2c 20 65 78 | ould.when.you.specify.an.ASN,.ex |
| 3f800 | 63 65 70 74 20 74 68 61 74 20 69 66 20 74 68 65 20 70 65 65 72 73 20 41 53 4e 20 69 73 20 64 69 | cept.that.if.the.peers.ASN.is.di |
| 3f820 | 66 66 65 72 65 6e 74 20 74 68 61 6e 20 6d 69 6e 65 20 61 73 20 73 70 65 63 69 66 69 65 64 20 75 | fferent.than.mine.as.specified.u |
| 3f840 | 6e 64 65 72 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 70 72 6f 74 6f 63 6f 6c 73 20 62 67 70 20 | nder.the.:cfgcmd:`protocols.bgp. |
| 3f860 | 3c 61 73 6e 3e 60 20 63 6f 6d 6d 61 6e 64 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 | <asn>`.command.the.connection.wi |
| 3f880 | 6c 6c 20 62 65 20 64 65 6e 69 65 64 2e 00 43 72 65 61 74 65 20 61 20 70 65 65 72 20 61 73 20 79 | ll.be.denied..Create.a.peer.as.y |
| 3f8a0 | 6f 75 20 77 6f 75 6c 64 20 77 68 65 6e 20 79 6f 75 20 73 70 65 63 69 66 79 20 61 6e 20 41 53 4e | ou.would.when.you.specify.an.ASN |
| 3f8c0 | 2c 20 65 78 63 65 70 74 20 74 68 61 74 20 69 66 20 74 68 65 20 70 65 65 72 73 20 41 53 4e 20 69 | ,.except.that.if.the.peers.ASN.i |
| 3f8e0 | 73 20 74 68 65 20 73 61 6d 65 20 61 73 20 6d 69 6e 65 20 61 73 20 73 70 65 63 69 66 69 65 64 20 | s.the.same.as.mine.as.specified. |
| 3f900 | 75 6e 64 65 72 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 70 72 6f 74 6f 63 6f 6c 73 20 62 67 70 | under.the.:cfgcmd:`protocols.bgp |
| 3f920 | 20 3c 61 73 6e 3e 60 20 63 6f 6d 6d 61 6e 64 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 | .<asn>`.command.the.connection.w |
| 3f940 | 69 6c 6c 20 62 65 20 64 65 6e 69 65 64 2e 00 43 72 65 61 74 65 20 61 20 73 74 61 74 69 63 20 68 | ill.be.denied..Create.a.static.h |
| 3f960 | 6f 73 74 6e 61 6d 65 20 6d 61 70 70 69 6e 67 20 77 68 69 63 68 20 77 69 6c 6c 20 61 6c 77 61 79 | ostname.mapping.which.will.alway |
| 3f980 | 73 20 72 65 73 6f 6c 76 65 20 74 68 65 20 6e 61 6d 65 20 60 3c 68 6f 73 74 6e 61 6d 65 3e 60 20 | s.resolve.the.name.`<hostname>`. |
| 3f9a0 | 74 6f 20 49 50 20 61 64 64 72 65 73 73 20 60 3c 61 64 64 72 65 73 73 3e 60 2e 00 43 72 65 61 74 | to.IP.address.`<address>`..Creat |
| 3f9c0 | 65 20 61 73 2d 70 61 74 68 2d 70 6f 6c 69 63 79 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 6e | e.as-path-policy.identified.by.n |
| 3f9e0 | 61 6d 65 20 3c 74 65 78 74 3e 2e 00 43 72 65 61 74 65 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 | ame.<text>..Create.firewall.rule |
| 3fa00 | 20 69 6e 20 66 6f 72 77 61 72 64 20 63 68 61 69 6e 2c 20 61 6e 64 20 64 65 66 69 6e 65 20 77 68 | .in.forward.chain,.and.define.wh |
| 3fa20 | 69 63 68 20 66 6c 6f 77 74 62 61 6c 65 20 73 68 6f 75 6c 64 20 62 65 20 75 73 65 64 2e 20 4f 6e | ich.flowtbale.should.be.used..On |
| 3fa40 | 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 61 63 74 69 6f 6e 20 69 73 20 60 60 6f 66 66 | ly.applicable.if.action.is.``off |
| 3fa60 | 6c 6f 61 64 60 60 2e 00 43 72 65 61 74 65 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 20 69 6e 20 | load``..Create.firewall.rule.in. |
| 3fa80 | 66 6f 72 77 61 72 64 20 63 68 61 69 6e 2c 20 61 6e 64 20 73 65 74 20 61 63 74 69 6f 6e 20 74 6f | forward.chain,.and.set.action.to |
| 3faa0 | 20 60 60 6f 66 66 6c 6f 61 64 60 60 2e 00 43 72 65 61 74 65 20 66 69 72 65 77 61 6c 6c 20 72 75 | .``offload``..Create.firewall.ru |
| 3fac0 | 6c 65 3a 20 63 72 65 61 74 65 20 61 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 2c 20 73 65 74 74 | le:.create.a.firewall.rule,.sett |
| 3fae0 | 69 6e 67 20 61 63 74 69 6f 6e 20 74 6f 20 60 60 6f 66 66 6c 6f 61 64 60 60 20 61 6e 64 20 75 73 | ing.action.to.``offload``.and.us |
| 3fb00 | 69 6e 67 20 64 65 73 69 72 65 64 20 66 6c 6f 77 74 61 62 6c 65 20 66 6f 72 20 60 60 6f 66 66 6c | ing.desired.flowtable.for.``offl |
| 3fb20 | 6f 61 64 2d 74 61 72 67 65 74 60 60 2e 00 43 72 65 61 74 65 20 66 6c 6f 77 74 61 62 6c 65 3a 20 | oad-target``..Create.flowtable:. |
| 3fb40 | 63 72 65 61 74 65 20 66 6c 6f 77 74 61 62 6c 65 2c 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 73 | create.flowtable,.which.includes |
| 3fb60 | 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 73 20 74 68 61 74 20 61 72 65 20 67 6f 69 6e 67 20 74 | .the.interfaces.that.are.going.t |
| 3fb80 | 6f 20 62 65 20 75 73 65 64 20 62 79 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 2e 00 43 72 65 61 | o.be.used.by.the.flowtable..Crea |
| 3fba0 | 74 65 20 6c 61 72 67 65 2d 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 20 70 6f 6c 69 63 79 20 69 | te.large-community-list.policy.i |
| 3fbc0 | 64 65 6e 74 69 66 69 65 64 20 62 79 20 6e 61 6d 65 20 3c 74 65 78 74 3e 2e 00 43 72 65 61 74 65 | dentified.by.name.<text>..Create |
| 3fbe0 | 20 6e 61 6d 65 64 20 60 3c 61 6c 69 61 73 3e 60 20 66 6f 72 20 74 68 65 20 63 6f 6e 66 69 67 75 | .named.`<alias>`.for.the.configu |
| 3fc00 | 72 65 64 20 73 74 61 74 69 63 20 6d 61 70 70 69 6e 67 20 66 6f 72 20 60 3c 68 6f 73 74 6e 61 6d | red.static.mapping.for.`<hostnam |
| 3fc20 | 65 3e 60 2e 20 54 68 75 73 20 74 68 65 20 61 64 64 72 65 73 73 20 63 6f 6e 66 69 67 75 72 65 64 | e>`..Thus.the.address.configured |
| 3fc40 | 20 61 73 20 3a 63 66 67 63 6d 64 3a 60 73 65 74 20 73 79 73 74 65 6d 20 73 74 61 74 69 63 2d 68 | .as.:cfgcmd:`set.system.static-h |
| 3fc60 | 6f 73 74 2d 6d 61 70 70 69 6e 67 20 68 6f 73 74 2d 6e 61 6d 65 20 3c 68 6f 73 74 6e 61 6d 65 3e | ost-mapping.host-name.<hostname> |
| 3fc80 | 20 69 6e 65 74 20 3c 61 64 64 72 65 73 73 3e 60 20 63 61 6e 20 62 65 20 72 65 61 63 68 65 64 20 | .inet.<address>`.can.be.reached. |
| 3fca0 | 76 69 61 20 6d 75 6c 74 69 70 6c 65 20 6e 61 6d 65 73 2e 00 43 72 65 61 74 65 20 6e 65 77 20 3a | via.multiple.names..Create.new.: |
| 3fcc0 | 72 66 63 3a 60 32 31 33 36 60 20 44 4e 53 20 75 70 64 61 74 65 20 63 6f 6e 66 69 67 75 72 61 74 | rfc:`2136`.DNS.update.configurat |
| 3fce0 | 69 6f 6e 20 77 68 69 63 68 20 77 69 6c 6c 20 75 70 64 61 74 65 20 74 68 65 20 49 50 20 61 64 64 | ion.which.will.update.the.IP.add |
| 3fd00 | 72 65 73 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 6f | ress.assigned.to.`<interface>`.o |
| 3fd20 | 6e 20 74 68 65 20 73 65 72 76 69 63 65 20 79 6f 75 20 63 6f 6e 66 69 67 75 72 65 64 20 75 6e 64 | n.the.service.you.configured.und |
| 3fd40 | 65 72 20 60 3c 73 65 72 76 69 63 65 2d 6e 61 6d 65 3e 60 2e 00 43 72 65 61 74 65 20 6e 65 77 20 | er.`<service-name>`..Create.new. |
| 3fd60 | 56 52 46 20 69 6e 73 74 61 6e 63 65 20 77 69 74 68 20 60 3c 6e 61 6d 65 3e 60 2e 20 54 68 65 20 | VRF.instance.with.`<name>`..The. |
| 3fd80 | 6e 61 6d 65 20 69 73 20 75 73 65 64 20 77 68 65 6e 20 70 6c 61 63 69 6e 67 20 69 6e 64 69 76 69 | name.is.used.when.placing.indivi |
| 3fda0 | 64 75 61 6c 20 69 6e 74 65 72 66 61 63 65 73 20 69 6e 74 6f 20 74 68 65 20 56 52 46 2e 00 43 72 | dual.interfaces.into.the.VRF..Cr |
| 3fdc0 | 65 61 74 65 20 6e 65 77 20 64 79 6e 61 6d 69 63 20 44 4e 53 20 75 70 64 61 74 65 20 63 6f 6e 66 | eate.new.dynamic.DNS.update.conf |
| 3fde0 | 69 67 75 72 61 74 69 6f 6e 20 77 68 69 63 68 20 77 69 6c 6c 20 75 70 64 61 74 65 20 74 68 65 20 | iguration.which.will.update.the. |
| 3fe00 | 49 50 20 61 64 64 72 65 73 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 60 3c 69 6e 74 65 72 66 61 | IP.address.assigned.to.`<interfa |
| 3fe20 | 63 65 3e 60 20 6f 6e 20 74 68 65 20 73 65 72 76 69 63 65 20 79 6f 75 20 63 6f 6e 66 69 67 75 72 | ce>`.on.the.service.you.configur |
| 3fe40 | 65 64 20 75 6e 64 65 72 20 60 3c 73 65 72 76 69 63 65 2d 6e 61 6d 65 3e 60 2e 00 43 72 65 61 74 | ed.under.`<service-name>`..Creat |
| 3fe60 | 65 20 6e 65 77 20 73 79 73 74 65 6d 20 75 73 65 72 20 77 69 74 68 20 75 73 65 72 6e 61 6d 65 20 | e.new.system.user.with.username. |
| 3fe80 | 60 3c 6e 61 6d 65 3e 60 20 61 6e 64 20 72 65 61 6c 2d 6e 61 6d 65 20 73 70 65 63 69 66 69 65 64 | `<name>`.and.real-name.specified |
| 3fea0 | 20 62 79 20 60 3c 73 74 72 69 6e 67 3e 60 2e 00 43 72 65 61 74 65 20 73 65 72 76 69 63 65 20 60 | .by.`<string>`..Create.service.` |
| 3fec0 | 3c 6e 61 6d 65 3e 60 20 74 6f 20 6c 69 73 74 65 6e 20 6f 6e 20 3c 70 6f 72 74 3e 00 43 72 65 61 | <name>`.to.listen.on.<port>.Crea |
| 3fee0 | 74 65 73 20 61 20 6e 61 6d 65 64 20 63 6f 6e 74 61 69 6e 65 72 20 6e 65 74 77 6f 72 6b 00 43 72 | tes.a.named.container.network.Cr |
| 3ff00 | 65 61 74 65 73 20 6c 6f 63 61 6c 20 49 50 6f 45 20 75 73 65 72 20 77 69 74 68 20 75 73 65 72 6e | eates.local.IPoE.user.with.usern |
| 3ff20 | 61 6d 65 3d 2a 2a 3c 69 6e 74 65 72 66 61 63 65 3e 2a 2a 20 61 6e 64 20 70 61 73 73 77 6f 72 64 | ame=**<interface>**.and.password |
| 3ff40 | 3d 2a 2a 3c 4d 41 43 3e 2a 2a 20 28 6d 61 63 2d 61 64 64 72 65 73 73 29 00 43 72 65 61 74 65 73 | =**<MAC>**.(mac-address).Creates |
| 3ff60 | 20 73 74 61 74 69 63 20 70 65 65 72 20 6d 61 70 70 69 6e 67 20 6f 66 20 70 72 6f 74 6f 63 6f 6c | .static.peer.mapping.of.protocol |
| 3ff80 | 2d 61 64 64 72 65 73 73 20 74 6f 20 3a 61 62 62 72 3a 60 4e 42 4d 41 20 28 4e 6f 6e 2d 62 72 6f | -address.to.:abbr:`NBMA.(Non-bro |
| 3ffa0 | 61 64 63 61 73 74 20 6d 75 6c 74 69 70 6c 65 2d 61 63 63 65 73 73 20 6e 65 74 77 6f 72 6b 29 60 | adcast.multiple-access.network)` |
| 3ffc0 | 20 61 64 64 72 65 73 73 2e 00 43 72 65 61 74 69 6e 67 20 61 20 62 72 69 64 67 65 20 69 6e 74 65 | .address..Creating.a.bridge.inte |
| 3ffe0 | 72 66 61 63 65 20 69 73 20 76 65 72 79 20 73 69 6d 70 6c 65 2e 20 49 6e 20 74 68 69 73 20 65 78 | rface.is.very.simple..In.this.ex |
| 40000 | 61 6d 70 6c 65 2c 20 77 65 20 77 69 6c 6c 20 68 61 76 65 3a 00 43 72 65 61 74 69 6e 67 20 61 20 | ample,.we.will.have:.Creating.a. |
| 40020 | 66 6c 6f 77 20 74 61 62 6c 65 3a 00 43 72 65 61 74 69 6e 67 20 61 20 74 72 61 66 66 69 63 20 70 | flow.table:.Creating.a.traffic.p |
| 40040 | 6f 6c 69 63 79 00 43 72 65 61 74 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 75 73 69 6e 67 20 66 | olicy.Creating.rules.for.using.f |
| 40060 | 6c 6f 77 20 74 61 62 6c 65 73 3a 00 43 72 65 64 65 6e 74 69 61 6c 73 20 63 61 6e 20 62 65 20 64 | low.tables:.Credentials.can.be.d |
| 40080 | 65 66 69 6e 65 64 20 68 65 72 65 20 61 6e 64 20 77 69 6c 6c 20 6f 6e 6c 79 20 62 65 20 75 73 65 | efined.here.and.will.only.be.use |
| 400a0 | 64 20 77 68 65 6e 20 61 64 64 69 6e 67 20 61 20 63 6f 6e 74 61 69 6e 65 72 20 69 6d 61 67 65 20 | d.when.adding.a.container.image. |
| 400c0 | 74 6f 20 74 68 65 20 73 79 73 74 65 6d 2e 00 43 72 69 74 69 63 61 6c 00 43 72 69 74 69 63 61 6c | to.the.system..Critical.Critical |
| 400e0 | 20 63 6f 6e 64 69 74 69 6f 6e 73 20 2d 20 65 2e 67 2e 20 68 61 72 64 20 64 72 69 76 65 20 65 72 | .conditions.-.e.g..hard.drive.er |
| 40100 | 72 6f 72 73 2e 00 43 72 79 73 74 61 6c 66 6f 6e 74 7a 20 43 46 41 2d 35 33 33 00 43 72 79 73 74 | rors..Crystalfontz.CFA-533.Cryst |
| 40120 | 61 6c 66 6f 6e 74 7a 20 43 46 41 2d 36 33 31 00 43 72 79 73 74 61 6c 66 6f 6e 74 7a 20 43 46 41 | alfontz.CFA-631.Crystalfontz.CFA |
| 40140 | 2d 36 33 33 00 43 72 79 73 74 61 6c 66 6f 6e 74 7a 20 43 46 41 2d 36 33 35 00 43 75 72 20 48 6f | -633.Crystalfontz.CFA-635.Cur.Ho |
| 40160 | 70 20 4c 69 6d 69 74 00 43 75 72 72 65 6e 74 6c 79 20 64 6f 65 73 20 6e 6f 74 20 64 6f 20 6d 75 | p.Limit.Currently.does.not.do.mu |
| 40180 | 63 68 20 61 73 20 63 61 63 68 69 6e 67 20 69 73 20 6e 6f 74 20 69 6d 70 6c 65 6d 65 6e 74 65 64 | ch.as.caching.is.not.implemented |
| 401a0 | 2e 00 43 75 72 72 65 6e 74 6c 79 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 69 73 20 73 | ..Currently.dynamic.routing.is.s |
| 401c0 | 75 70 70 6f 72 74 65 64 20 66 6f 72 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 72 6f 74 6f | upported.for.the.following.proto |
| 401e0 | 63 6f 6c 73 3a 00 43 75 73 74 6f 6d 20 46 69 6c 65 00 43 75 73 74 6f 6d 20 62 72 69 64 67 65 20 | cols:.Custom.File.Custom.bridge. |
| 40200 | 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 20 77 69 | firewall.chains.can.be.create.wi |
| 40220 | 74 68 20 63 6f 6d 6d 61 6e 64 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 | th.command.``set.firewall.bridge |
| 40240 | 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 | .name.<name>....``..In.order.to. |
| 40260 | 75 73 65 20 73 75 63 68 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 61 20 72 75 6c 65 20 77 69 | use.such.custom.chain,.a.rule.wi |
| 40280 | 74 68 20 61 63 74 69 6f 6e 20 6a 75 6d 70 2c 20 61 6e 64 20 74 68 65 20 61 70 70 72 6f 70 69 61 | th.action.jump,.and.the.appropia |
| 402a0 | 74 65 20 74 61 72 67 65 74 20 73 68 6f 75 6c 64 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 61 | te.target.should.be.defined.in.a |
| 402c0 | 20 62 61 73 65 20 63 68 61 69 6e 2e 00 43 75 73 74 6f 6d 20 62 72 69 64 67 65 20 66 69 72 65 77 | .base.chain..Custom.bridge.firew |
| 402e0 | 61 6c 6c 20 63 68 61 69 6e 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 20 77 69 74 68 20 63 6f | all.chains.can.be.create.with.co |
| 40300 | 6d 6d 61 6e 64 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 6e 61 6d 65 | mmand.``set.firewall.bridge.name |
| 40320 | 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 65 20 73 | .<name>....``..In.order.to.use.s |
| 40340 | 75 63 68 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 61 20 72 75 6c 65 20 77 69 74 68 20 61 63 | uch.custom.chain,.a.rule.with.ac |
| 40360 | 74 69 6f 6e 20 6a 75 6d 70 2c 20 61 6e 64 20 74 68 65 20 61 70 70 72 6f 70 72 69 61 74 65 20 74 | tion.jump,.and.the.appropriate.t |
| 40380 | 61 72 67 65 74 20 73 68 6f 75 6c 64 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 61 20 62 61 73 | arget.should.be.defined.in.a.bas |
| 403a0 | 65 20 63 68 61 69 6e 2e 00 43 75 73 74 6f 6d 20 62 72 69 64 67 65 20 66 69 72 65 77 61 6c 6c 20 | e.chain..Custom.bridge.firewall. |
| 403c0 | 63 68 61 69 6e 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 20 77 69 74 68 20 74 68 65 20 63 | chains.can.be.created.with.the.c |
| 403e0 | 6f 6d 6d 61 6e 64 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 6e 61 6d | ommand.``set.firewall.bridge.nam |
| 40400 | 65 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 65 20 | e.<name>....``..In.order.to.use. |
| 40420 | 73 75 63 68 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 61 20 72 75 6c 65 20 77 69 74 68 20 61 | such.custom.chain,.a.rule.with.a |
| 40440 | 63 74 69 6f 6e 20 6a 75 6d 70 2c 20 61 6e 64 20 74 68 65 20 61 70 70 72 6f 70 72 69 61 74 65 20 | ction.jump,.and.the.appropriate. |
| 40460 | 74 61 72 67 65 74 20 73 68 6f 75 6c 64 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 61 20 62 61 | target.should.be.defined.in.a.ba |
| 40480 | 73 65 20 63 68 61 69 6e 2e 00 43 75 73 74 6f 6d 20 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 73 | se.chain..Custom.firewall.chains |
| 404a0 | 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 2c 20 77 69 74 68 20 63 6f 6d 6d 61 6e 64 73 20 60 | .can.be.created,.with.commands.` |
| 404c0 | 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 5b 6e 61 6d | `set.firewall.[ipv4.|.ipv6].[nam |
| 404e0 | 65 20 7c 20 69 70 76 36 2d 6e 61 6d 65 5d 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 2e 20 49 6e 20 | e.|.ipv6-name].<name>....``..In. |
| 40500 | 6f 72 64 65 72 20 74 6f 20 75 73 65 20 73 75 63 68 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 | order.to.use.such.custom.chain,. |
| 40520 | 61 20 72 75 6c 65 20 77 69 74 68 20 2a 2a 61 63 74 69 6f 6e 20 6a 75 6d 70 2a 2a 2c 20 61 6e 64 | a.rule.with.**action.jump**,.and |
| 40540 | 20 74 68 65 20 61 70 70 72 6f 70 69 61 74 65 20 2a 2a 74 61 72 67 65 74 2a 2a 20 73 68 6f 75 6c | .the.appropiate.**target**.shoul |
| 40560 | 64 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 61 20 62 61 73 65 20 63 68 61 69 6e 2e 00 43 75 | d.be.defined.in.a.base.chain..Cu |
| 40580 | 73 74 6f 6d 20 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 73 20 63 61 6e 20 62 65 20 63 72 65 61 | stom.firewall.chains.can.be.crea |
| 405a0 | 74 65 64 2c 20 77 69 74 68 20 63 6f 6d 6d 61 6e 64 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c | ted,.with.commands.``set.firewal |
| 405c0 | 6c 20 69 70 76 34 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 2e 20 49 6e 20 6f 72 64 | l.ipv4.name.<name>....``..In.ord |
| 405e0 | 65 72 20 74 6f 20 75 73 65 20 73 75 63 68 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 61 20 72 | er.to.use.such.custom.chain,.a.r |
| 40600 | 75 6c 65 20 77 69 74 68 20 2a 2a 61 63 74 69 6f 6e 20 6a 75 6d 70 2a 2a 2c 20 61 6e 64 20 74 68 | ule.with.**action.jump**,.and.th |
| 40620 | 65 20 61 70 70 72 6f 70 69 61 74 65 20 2a 2a 74 61 72 67 65 74 2a 2a 20 73 68 6f 75 6c 64 20 62 | e.appropiate.**target**.should.b |
| 40640 | 65 20 64 65 66 69 6e 65 64 20 69 6e 20 61 20 62 61 73 65 20 63 68 61 69 6e 2e 00 43 75 73 74 6f | e.defined.in.a.base.chain..Custo |
| 40660 | 6d 20 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 | m.firewall.chains.can.be.created |
| 40680 | 2c 20 77 69 74 68 20 63 6f 6d 6d 61 6e 64 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 | ,.with.commands.``set.firewall.i |
| 406a0 | 70 76 34 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 2e 20 49 6e 20 6f 72 64 65 72 20 | pv4.name.<name>....``..In.order. |
| 406c0 | 74 6f 20 75 73 65 20 73 75 63 68 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 61 20 72 75 6c 65 | to.use.such.custom.chain,.a.rule |
| 406e0 | 20 77 69 74 68 20 2a 2a 61 63 74 69 6f 6e 20 6a 75 6d 70 2a 2a 2c 20 61 6e 64 20 74 68 65 20 61 | .with.**action.jump**,.and.the.a |
| 40700 | 70 70 72 6f 70 72 69 61 74 65 20 2a 2a 74 61 72 67 65 74 2a 2a 20 73 68 6f 75 6c 64 20 62 65 20 | ppropriate.**target**.should.be. |
| 40720 | 64 65 66 69 6e 65 64 20 69 6e 20 61 20 62 61 73 65 20 63 68 61 69 6e 2e 00 43 75 73 74 6f 6d 20 | defined.in.a.base.chain..Custom. |
| 40740 | 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 2c 20 | firewall.chains.can.be.created,. |
| 40760 | 77 69 74 68 20 63 6f 6d 6d 61 6e 64 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 | with.commands.``set.firewall.ipv |
| 40780 | 36 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f | 6.name.<name>....``..In.order.to |
| 407a0 | 20 75 73 65 20 73 75 63 68 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 61 20 72 75 6c 65 20 77 | .use.such.custom.chain,.a.rule.w |
| 407c0 | 69 74 68 20 2a 2a 61 63 74 69 6f 6e 20 6a 75 6d 70 2a 2a 2c 20 61 6e 64 20 74 68 65 20 61 70 70 | ith.**action.jump**,.and.the.app |
| 407e0 | 72 6f 70 69 61 74 65 20 2a 2a 74 61 72 67 65 74 2a 2a 20 73 68 6f 75 6c 64 20 62 65 20 64 65 66 | ropiate.**target**.should.be.def |
| 40800 | 69 6e 65 64 20 69 6e 20 61 20 62 61 73 65 20 63 68 61 69 6e 2e 00 43 75 73 74 6f 6d 20 66 69 72 | ined.in.a.base.chain..Custom.fir |
| 40820 | 65 77 61 6c 6c 20 63 68 61 69 6e 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 2c 20 77 69 74 | ewall.chains.can.be.created,.wit |
| 40840 | 68 20 63 6f 6d 6d 61 6e 64 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 6e | h.commands.``set.firewall.ipv6.n |
| 40860 | 61 6d 65 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 | ame.<name>....``..In.order.to.us |
| 40880 | 65 20 73 75 63 68 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 61 20 72 75 6c 65 20 77 69 74 68 | e.such.custom.chain,.a.rule.with |
| 408a0 | 20 2a 2a 61 63 74 69 6f 6e 20 6a 75 6d 70 2a 2a 2c 20 61 6e 64 20 74 68 65 20 61 70 70 72 6f 70 | .**action.jump**,.and.the.approp |
| 408c0 | 72 69 61 74 65 20 2a 2a 74 61 72 67 65 74 2a 2a 20 73 68 6f 75 6c 64 20 62 65 20 64 65 66 69 6e | riate.**target**.should.be.defin |
| 408e0 | 65 64 20 69 6e 20 61 20 62 61 73 65 20 63 68 61 69 6e 2e 00 43 75 73 74 6f 6d 20 68 65 61 6c 74 | ed.in.a.base.chain..Custom.healt |
| 40900 | 68 2d 63 68 65 63 6b 20 73 63 72 69 70 74 20 61 6c 6c 6f 77 73 20 63 68 65 63 6b 69 6e 67 20 72 | h-check.script.allows.checking.r |
| 40920 | 65 61 6c 2d 73 65 72 76 65 72 20 61 76 61 69 6c 61 62 69 6c 69 74 79 00 43 75 73 74 6f 6d 69 7a | eal-server.availability.Customiz |
| 40940 | 65 64 20 69 67 6e 6f 72 65 20 72 75 6c 65 73 2c 20 62 61 73 65 64 20 6f 6e 20 61 20 70 61 63 6b | ed.ignore.rules,.based.on.a.pack |
| 40960 | 65 74 20 61 6e 64 20 66 6c 6f 77 20 73 65 6c 65 63 74 6f 72 2e 00 44 43 4f 20 63 61 6e 20 62 65 | et.and.flow.selector..DCO.can.be |
| 40980 | 20 65 6e 61 62 6c 65 64 20 66 6f 72 20 62 6f 74 68 20 6e 65 77 20 61 6e 64 20 65 78 69 73 74 69 | .enabled.for.both.new.and.existi |
| 409a0 | 6e 67 20 74 75 6e 6e 65 6c 73 2c 56 79 4f 53 20 61 64 64 73 20 61 6e 20 6f 70 74 69 6f 6e 20 69 | ng.tunnels,VyOS.adds.an.option.i |
| 409c0 | 6e 20 65 61 63 68 20 74 75 6e 6e 65 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 68 65 72 | n.each.tunnel.configuration.wher |
| 409e0 | 65 20 77 65 20 63 61 6e 20 65 6e 61 62 6c 65 20 74 68 69 73 20 66 75 6e 63 74 69 6f 6e 20 20 2e | e.we.can.enable.this.function... |
| 40a00 | 54 68 65 20 63 75 72 72 65 6e 74 20 62 65 73 74 20 70 72 61 63 74 69 63 65 20 69 73 20 74 6f 20 | The.current.best.practice.is.to. |
| 40a20 | 63 72 65 61 74 65 20 61 20 6e 65 77 20 74 75 6e 6e 65 6c 20 77 69 74 68 20 44 43 4f 20 74 6f 20 | create.a.new.tunnel.with.DCO.to. |
| 40a40 | 6d 69 6e 69 6d 69 7a 65 20 74 68 65 20 63 68 61 6e 63 65 20 6f 66 20 70 72 6f 62 6c 65 6d 73 20 | minimize.the.chance.of.problems. |
| 40a60 | 77 69 74 68 20 65 78 69 73 74 69 6e 67 20 63 6c 69 65 6e 74 73 2e 00 44 43 4f 20 63 61 6e 20 62 | with.existing.clients..DCO.can.b |
| 40a80 | 65 20 65 6e 61 62 6c 65 64 20 66 6f 72 20 62 6f 74 68 20 6e 65 77 20 61 6e 64 20 65 78 69 73 74 | e.enabled.for.both.new.and.exist |
| 40aa0 | 69 6e 67 20 74 75 6e 6e 65 6c 73 2e 20 56 79 4f 53 20 61 64 64 73 20 61 6e 20 6f 70 74 69 6f 6e | ing.tunnels..VyOS.adds.an.option |
| 40ac0 | 20 69 6e 20 65 61 63 68 20 74 75 6e 6e 65 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 68 | .in.each.tunnel.configuration.wh |
| 40ae0 | 65 72 65 20 77 65 20 63 61 6e 20 65 6e 61 62 6c 65 20 74 68 69 73 20 66 75 6e 63 74 69 6f 6e 2e | ere.we.can.enable.this.function. |
| 40b00 | 20 54 68 65 20 63 75 72 72 65 6e 74 20 62 65 73 74 20 70 72 61 63 74 69 63 65 20 69 73 20 74 6f | .The.current.best.practice.is.to |
| 40b20 | 20 63 72 65 61 74 65 20 61 20 6e 65 77 20 74 75 6e 6e 65 6c 20 77 69 74 68 20 44 43 4f 20 74 6f | .create.a.new.tunnel.with.DCO.to |
| 40b40 | 20 6d 69 6e 69 6d 69 7a 65 20 74 68 65 20 63 68 61 6e 63 65 20 6f 66 20 70 72 6f 62 6c 65 6d 73 | .minimize.the.chance.of.problems |
| 40b60 | 20 77 69 74 68 20 65 78 69 73 74 69 6e 67 20 63 6c 69 65 6e 74 73 2e 00 44 43 4f 20 73 75 70 70 | .with.existing.clients..DCO.supp |
| 40b80 | 6f 72 74 20 69 73 20 61 20 70 65 72 2d 74 75 6e 6e 65 6c 20 6f 70 74 69 6f 6e 20 61 6e 64 20 69 | ort.is.a.per-tunnel.option.and.i |
| 40ba0 | 74 20 69 73 20 6e 6f 74 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 65 6e 61 62 6c 65 64 20 62 | t.is.not.automatically.enabled.b |
| 40bc0 | 79 20 64 65 66 61 75 6c 74 20 66 6f 72 20 6e 65 77 20 6f 72 20 75 70 67 72 61 64 65 64 20 74 75 | y.default.for.new.or.upgraded.tu |
| 40be0 | 6e 6e 65 6c 73 2e 20 45 78 69 73 74 69 6e 67 20 74 75 6e 6e 65 6c 73 20 77 69 6c 6c 20 63 6f 6e | nnels..Existing.tunnels.will.con |
| 40c00 | 74 69 6e 75 65 20 74 6f 20 66 75 6e 63 74 69 6f 6e 20 61 73 20 74 68 65 79 20 68 61 76 65 20 69 | tinue.to.function.as.they.have.i |
| 40c20 | 6e 20 74 68 65 20 70 61 73 74 2e 00 44 44 6f 53 20 50 72 6f 74 65 63 74 69 6f 6e 00 44 48 20 47 | n.the.past..DDoS.Protection.DH.G |
| 40c40 | 72 6f 75 70 20 31 34 00 44 48 43 50 20 48 69 67 68 20 41 76 61 69 6c 61 62 69 6c 69 74 79 20 6d | roup.14.DHCP.High.Availability.m |
| 40c60 | 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 65 78 70 6c 69 63 69 74 6c 79 20 62 79 20 | ust.be.configured.explicitly.by. |
| 40c80 | 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 74 61 74 65 6d 65 6e 74 73 20 6f 6e 20 62 6f 74 68 | the.following.statements.on.both |
| 40ca0 | 20 73 65 72 76 65 72 73 3a 00 44 48 43 50 20 52 65 6c 61 79 00 44 48 43 50 20 53 65 72 76 65 72 | .servers:.DHCP.Relay.DHCP.Server |
| 40cc0 | 00 44 48 43 50 20 66 61 69 6c 6f 76 65 72 20 70 61 72 61 6d 65 74 65 72 73 00 44 48 43 50 20 6c | .DHCP.failover.parameters.DHCP.l |
| 40ce0 | 65 61 73 65 20 72 61 6e 67 65 00 44 48 43 50 20 72 61 6e 67 65 20 73 70 61 6e 73 20 66 72 6f 6d | ease.range.DHCP.range.spans.from |
| 40d00 | 20 60 31 39 32 2e 31 36 38 2e 31 38 39 2e 31 30 60 20 2d 20 60 31 39 32 2e 31 36 38 2e 31 38 39 | .`192.168.189.10`.-.`192.168.189 |
| 40d20 | 2e 32 35 30 60 00 44 48 43 50 20 72 65 6c 61 79 20 65 78 61 6d 70 6c 65 00 44 48 43 50 20 73 65 | .250`.DHCP.relay.example.DHCP.se |
| 40d40 | 72 76 65 72 20 69 73 20 6c 6f 63 61 74 65 64 20 61 74 20 49 50 76 34 20 61 64 64 72 65 73 73 20 | rver.is.located.at.IPv4.address. |
| 40d60 | 31 30 2e 30 2e 31 2e 34 20 6f 6e 20 60 60 65 74 68 32 60 60 2e 00 44 48 43 50 76 36 20 61 64 64 | 10.0.1.4.on.``eth2``..DHCPv6.add |
| 40d80 | 72 65 73 73 20 70 6f 6f 6c 73 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 66 6f | ress.pools.must.be.configured.fo |
| 40da0 | 72 20 74 68 65 20 73 79 73 74 65 6d 20 74 6f 20 61 63 74 20 61 73 20 61 20 44 48 43 50 76 36 20 | r.the.system.to.act.as.a.DHCPv6. |
| 40dc0 | 73 65 72 76 65 72 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 20 64 65 | server..The.following.example.de |
| 40de0 | 73 63 72 69 62 65 73 20 61 20 63 6f 6d 6d 6f 6e 20 73 63 65 6e 61 72 69 6f 2e 00 44 48 43 50 76 | scribes.a.common.scenario..DHCPv |
| 40e00 | 36 20 72 65 6c 61 79 20 65 78 61 6d 70 6c 65 00 44 48 43 50 76 36 20 72 65 71 75 65 73 74 73 20 | 6.relay.example.DHCPv6.requests. |
| 40e20 | 61 72 65 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 6f 6e 20 60 6c | are.received.by.the.router.on.`l |
| 40e40 | 69 73 74 65 6e 69 6e 67 20 69 6e 74 65 72 66 61 63 65 60 20 60 60 65 74 68 31 60 60 00 44 4d 56 | istening.interface`.``eth1``.DMV |
| 40e60 | 50 4e 00 44 4d 56 50 4e 20 65 78 61 6d 70 6c 65 20 6e 65 74 77 6f 72 6b 00 44 4d 56 50 4e 20 6e | PN.DMVPN.example.network.DMVPN.n |
| 40e80 | 65 74 77 6f 72 6b 00 44 4d 56 50 4e 20 6f 6e 6c 79 20 61 75 74 6f 6d 61 74 65 73 20 74 68 65 20 | etwork.DMVPN.only.automates.the. |
| 40ea0 | 74 75 6e 6e 65 6c 20 65 6e 64 70 6f 69 6e 74 20 64 69 73 63 6f 76 65 72 79 20 61 6e 64 20 73 65 | tunnel.endpoint.discovery.and.se |
| 40ec0 | 74 75 70 2e 20 41 20 63 6f 6d 70 6c 65 74 65 20 73 6f 6c 75 74 69 6f 6e 20 61 6c 73 6f 20 69 6e | tup..A.complete.solution.also.in |
| 40ee0 | 63 6f 72 70 6f 72 61 74 65 73 20 74 68 65 20 75 73 65 20 6f 66 20 61 20 72 6f 75 74 69 6e 67 20 | corporates.the.use.of.a.routing. |
| 40f00 | 70 72 6f 74 6f 63 6f 6c 2e 20 42 47 50 20 69 73 20 70 61 72 74 69 63 75 6c 61 72 6c 79 20 77 65 | protocol..BGP.is.particularly.we |
| 40f20 | 6c 6c 20 73 75 69 74 65 64 20 66 6f 72 20 75 73 65 20 77 69 74 68 20 44 4d 56 50 4e 2e 00 44 4e | ll.suited.for.use.with.DMVPN..DN |
| 40f40 | 41 54 00 44 4e 41 54 20 69 73 20 74 79 70 69 63 61 6c 6c 79 20 72 65 66 65 72 72 65 64 20 74 6f | AT.DNAT.is.typically.referred.to |
| 40f60 | 20 61 73 20 61 20 2a 2a 50 6f 72 74 20 46 6f 72 77 61 72 64 2a 2a 2e 20 57 68 65 6e 20 75 73 69 | .as.a.**Port.Forward**..When.usi |
| 40f80 | 6e 67 20 56 79 4f 53 20 61 73 20 61 20 4e 41 54 20 72 6f 75 74 65 72 20 61 6e 64 20 66 69 72 65 | ng.VyOS.as.a.NAT.router.and.fire |
| 40fa0 | 77 61 6c 6c 2c 20 61 20 63 6f 6d 6d 6f 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 61 73 | wall,.a.common.configuration.tas |
| 40fc0 | 6b 20 69 73 20 74 6f 20 72 65 64 69 72 65 63 74 20 69 6e 63 6f 6d 69 6e 67 20 74 72 61 66 66 69 | k.is.to.redirect.incoming.traffi |
| 40fe0 | 63 20 74 6f 20 61 20 73 79 73 74 65 6d 20 62 65 68 69 6e 64 20 74 68 65 20 66 69 72 65 77 61 6c | c.to.a.system.behind.the.firewal |
| 41000 | 6c 2e 00 44 4e 41 54 20 72 75 6c 65 20 31 30 20 72 65 70 6c 61 63 65 73 20 74 68 65 20 64 65 73 | l..DNAT.rule.10.replaces.the.des |
| 41020 | 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 6f 66 20 61 6e 20 69 6e 62 6f 75 6e 64 20 70 | tination.address.of.an.inbound.p |
| 41040 | 61 63 6b 65 74 20 77 69 74 68 20 31 39 32 2e 30 2e 32 2e 31 30 00 44 4e 41 54 36 36 00 44 4e 53 | acket.with.192.0.2.10.DNAT66.DNS |
| 41060 | 20 46 6f 72 77 61 72 64 69 6e 67 00 44 4e 53 20 6e 61 6d 65 20 73 65 72 76 65 72 73 00 44 4e 53 | .Forwarding.DNS.name.servers.DNS |
| 41080 | 20 73 65 61 72 63 68 20 6c 69 73 74 20 74 6f 20 61 64 76 65 72 74 69 73 65 00 44 4e 53 20 73 65 | .search.list.to.advertise.DNS.se |
| 410a0 | 72 76 65 72 20 49 50 76 34 20 61 64 64 72 65 73 73 00 44 4e 53 20 73 65 72 76 65 72 20 69 73 20 | rver.IPv4.address.DNS.server.is. |
| 410c0 | 6c 6f 63 61 74 65 64 20 61 74 20 60 60 32 30 30 31 3a 64 62 38 3a 3a 66 66 66 66 60 60 00 44 4e | located.at.``2001:db8::ffff``.DN |
| 410e0 | 53 53 4c 00 44 53 43 50 20 76 61 6c 75 65 73 20 61 73 20 70 65 72 20 3a 72 66 63 3a 60 32 34 37 | SSL.DSCP.values.as.per.:rfc:`247 |
| 41100 | 34 60 20 61 6e 64 20 3a 72 66 63 3a 60 34 35 39 35 60 3a 00 44 53 53 53 2f 43 43 4b 20 4d 6f 64 | 4`.and.:rfc:`4595`:.DSSS/CCK.Mod |
| 41120 | 65 20 69 6e 20 34 30 20 4d 48 7a 2c 20 74 68 69 73 20 73 65 74 73 20 60 60 5b 44 53 53 53 5f 43 | e.in.40.MHz,.this.sets.``[DSSS_C |
| 41140 | 43 4b 2d 34 30 5d 60 60 00 44 61 74 61 20 69 73 20 70 72 6f 76 69 64 65 64 20 62 79 20 44 42 2d | CK-40]``.Data.is.provided.by.DB- |
| 41160 | 49 50 2e 63 6f 6d 20 75 6e 64 65 72 20 43 43 2d 42 59 2d 34 2e 30 20 6c 69 63 65 6e 73 65 2e 20 | IP.com.under.CC-BY-4.0.license.. |
| 41180 | 41 74 74 72 69 62 75 74 69 6f 6e 20 72 65 71 75 69 72 65 64 2c 20 70 65 72 6d 69 74 73 20 72 65 | Attribution.required,.permits.re |
| 411a0 | 64 69 73 74 72 69 62 75 74 69 6f 6e 20 73 6f 20 77 65 20 63 61 6e 20 69 6e 63 6c 75 64 65 20 61 | distribution.so.we.can.include.a |
| 411c0 | 20 64 61 74 61 62 61 73 65 20 69 6e 20 69 6d 61 67 65 73 28 7e 33 4d 42 20 63 6f 6d 70 72 65 73 | .database.in.images(~3MB.compres |
| 411e0 | 73 65 64 29 2e 20 49 6e 63 6c 75 64 65 73 20 63 72 6f 6e 20 73 63 72 69 70 74 20 28 6d 61 6e 75 | sed)..Includes.cron.script.(manu |
| 41200 | 61 6c 6c 79 20 63 61 6c 6c 61 62 6c 65 20 62 79 20 6f 70 2d 6d 6f 64 65 20 75 70 64 61 74 65 20 | ally.callable.by.op-mode.update. |
| 41220 | 67 65 6f 69 70 29 20 74 6f 20 6b 65 65 70 20 64 61 74 61 62 61 73 65 20 61 6e 64 20 72 75 6c 65 | geoip).to.keep.database.and.rule |
| 41240 | 73 20 75 70 64 61 74 65 64 2e 00 44 65 62 75 67 00 44 65 62 75 67 2d 6c 65 76 65 6c 20 6d 65 73 | s.updated..Debug.Debug-level.mes |
| 41260 | 73 61 67 65 73 20 2d 20 4d 65 73 73 61 67 65 73 20 74 68 61 74 20 63 6f 6e 74 61 69 6e 20 69 6e | sages.-.Messages.that.contain.in |
| 41280 | 66 6f 72 6d 61 74 69 6f 6e 20 6e 6f 72 6d 61 6c 6c 79 20 6f 66 20 75 73 65 20 6f 6e 6c 79 20 77 | formation.normally.of.use.only.w |
| 412a0 | 68 65 6e 20 64 65 62 75 67 67 69 6e 67 20 61 20 70 72 6f 67 72 61 6d 2e 00 44 65 66 61 75 6c 74 | hen.debugging.a.program..Default |
| 412c0 | 00 44 65 66 61 75 6c 74 20 31 2e 00 44 65 66 61 75 6c 74 20 47 61 74 65 77 61 79 2f 52 6f 75 74 | .Default.1..Default.Gateway/Rout |
| 412e0 | 65 00 44 65 66 61 75 6c 74 20 52 6f 75 74 65 72 20 50 72 65 66 65 72 65 6e 63 65 00 44 65 66 61 | e.Default.Router.Preference.Defa |
| 41300 | 75 6c 74 20 62 65 68 61 76 69 6f 72 20 2d 20 64 6f 6e 27 74 20 61 73 6b 20 63 6c 69 65 6e 74 20 | ult.behavior.-.don't.ask.client. |
| 41320 | 66 6f 72 20 6d 70 70 65 2c 20 62 75 74 20 61 6c 6c 6f 77 20 69 74 20 69 66 20 63 6c 69 65 6e 74 | for.mppe,.but.allow.it.if.client |
| 41340 | 20 77 61 6e 74 73 2e 20 50 6c 65 61 73 65 20 6e 6f 74 65 20 74 68 61 74 20 52 41 44 49 55 53 20 | .wants..Please.note.that.RADIUS. |
| 41360 | 6d 61 79 20 6f 76 65 72 72 69 64 65 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 62 79 20 4d 53 2d 4d | may.override.this.option.by.MS-M |
| 41380 | 50 50 45 2d 45 6e 63 72 79 70 74 69 6f 6e 2d 50 6f 6c 69 63 79 20 61 74 74 72 69 62 75 74 65 2e | PPE-Encryption-Policy.attribute. |
| 413a0 | 00 44 65 66 61 75 6c 74 20 62 65 68 61 76 69 6f 72 20 2d 20 64 6f 6e 27 74 20 61 73 6b 20 74 68 | .Default.behavior.-.don't.ask.th |
| 413c0 | 65 20 63 6c 69 65 6e 74 20 66 6f 72 20 6d 70 70 65 2c 20 62 75 74 20 61 6c 6c 6f 77 20 69 74 20 | e.client.for.mppe,.but.allow.it. |
| 413e0 | 69 66 20 74 68 65 20 63 6c 69 65 6e 74 20 77 61 6e 74 73 2e 20 50 6c 65 61 73 65 20 6e 6f 74 65 | if.the.client.wants..Please.note |
| 41400 | 20 74 68 61 74 20 52 41 44 49 55 53 20 6d 61 79 20 6f 76 65 72 72 69 64 65 20 74 68 69 73 20 6f | .that.RADIUS.may.override.this.o |
| 41420 | 70 74 69 6f 6e 20 62 79 20 4d 53 2d 4d 50 50 45 2d 45 6e 63 72 79 70 74 69 6f 6e 2d 50 6f 6c 69 | ption.by.MS-MPPE-Encryption-Poli |
| 41440 | 63 79 20 61 74 74 72 69 62 75 74 65 2e 00 44 65 66 61 75 6c 74 20 62 65 68 61 76 69 6f 72 20 2d | cy.attribute..Default.behavior.- |
| 41460 | 20 64 6f 6e 27 74 20 61 73 6b 20 74 68 65 20 63 6c 69 65 6e 74 20 66 6f 72 20 6d 70 70 65 2c 20 | .don't.ask.the.client.for.mppe,. |
| 41480 | 62 75 74 20 61 6c 6c 6f 77 20 69 74 20 69 66 20 74 68 65 20 63 6c 69 65 6e 74 20 77 61 6e 74 73 | but.allow.it.if.the.client.wants |
| 414a0 | 2e 20 50 6c 65 61 73 65 20 6e 6f 74 65 20 74 68 61 74 20 52 41 44 49 55 53 20 6d 61 79 20 6f 76 | ..Please.note.that.RADIUS.may.ov |
| 414c0 | 65 72 72 69 64 65 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 77 69 74 68 20 74 68 65 20 4d 53 2d 4d | erride.this.option.with.the.MS-M |
| 414e0 | 50 50 45 2d 45 6e 63 72 79 70 74 69 6f 6e 2d 50 6f 6c 69 63 79 20 61 74 74 72 69 62 75 74 65 2e | PPE-Encryption-Policy.attribute. |
| 41500 | 00 44 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 20 61 6e 64 20 44 4e 53 20 73 65 72 76 65 72 20 | .Default.gateway.and.DNS.server. |
| 41520 | 69 73 20 61 74 20 60 31 39 32 2e 30 2e 32 2e 32 35 34 60 00 44 65 66 61 75 6c 74 20 69 73 20 30 | is.at.`192.0.2.254`.Default.is.0 |
| 41540 | 20 66 6f 72 20 75 6e 6c 69 6d 69 74 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 31 2e 32 | .for.unlimited..For.example,.1.2 |
| 41560 | 35 20 6c 69 6d 69 74 73 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 74 6f 20 75 73 65 20 75 70 | 5.limits.the.container.to.use.up |
| 41580 | 20 74 6f 20 31 2e 32 35 20 63 6f 72 65 73 20 77 6f 72 74 68 20 6f 66 20 43 50 55 20 74 69 6d 65 | .to.1.25.cores.worth.of.CPU.time |
| 415a0 | 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 61 20 64 65 63 69 6d 61 6c 20 6e 75 6d 62 65 72 20 77 | ..This.can.be.a.decimal.number.w |
| 415c0 | 69 74 68 20 75 70 20 74 6f 20 74 68 72 65 65 20 64 65 63 69 6d 61 6c 20 70 6c 61 63 65 73 2e 00 | ith.up.to.three.decimal.places.. |
| 415e0 | 44 65 66 61 75 6c 74 20 69 73 20 33 31 30 30 00 44 65 66 61 75 6c 74 20 69 73 20 35 31 32 20 4d | Default.is.3100.Default.is.512.M |
| 41600 | 42 2e 20 55 73 65 20 30 20 4d 42 20 66 6f 72 20 75 6e 6c 69 6d 69 74 65 64 20 6d 65 6d 6f 72 79 | B..Use.0.MB.for.unlimited.memory |
| 41620 | 2e 00 44 65 66 61 75 6c 74 20 69 73 20 60 60 61 6e 79 2d 61 76 61 69 6c 61 62 6c 65 60 60 2e 00 | ..Default.is.``any-available``.. |
| 41640 | 44 65 66 61 75 6c 74 20 69 73 20 60 60 69 63 6d 70 60 60 2e 00 44 65 66 61 75 6c 74 20 69 73 20 | Default.is.``icmp``..Default.is. |
| 41660 | 74 6f 20 64 65 74 65 63 74 73 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 20 73 74 61 74 65 20 63 | to.detects.physical.link.state.c |
| 41680 | 68 61 6e 67 65 73 2e 00 44 65 66 61 75 6c 74 20 70 6f 72 74 20 69 73 20 33 31 32 38 2e 00 44 65 | hanges..Default.port.is.3128..De |
| 416a0 | 66 61 75 6c 74 3a 20 31 00 44 65 66 61 75 6c 74 3a 20 34 34 33 00 44 65 66 61 75 6c 74 73 20 74 | fault:.1.Default:.443.Defaults.t |
| 416c0 | 6f 20 27 75 69 64 27 00 44 65 66 61 75 6c 74 73 20 74 6f 20 32 32 35 2e 30 2e 30 2e 35 30 2e 00 | o.'uid'.Defaults.to.225.0.0.50.. |
| 416e0 | 44 65 66 61 75 6c 74 73 20 74 6f 20 60 60 75 73 60 60 2e 00 44 65 66 69 6e 65 20 43 6f 6e 65 63 | Defaults.to.``us``..Define.Conec |
| 41700 | 74 69 6f 6e 20 54 69 6d 65 6f 75 74 73 00 44 65 66 69 6e 65 20 49 50 76 34 20 61 6e 64 2f 6f 72 | tion.Timeouts.Define.IPv4.and/or |
| 41720 | 20 49 50 76 36 20 70 72 65 66 69 78 20 66 6f 72 20 61 20 67 69 76 65 6e 20 6e 65 74 77 6f 72 6b | .IPv6.prefix.for.a.given.network |
| 41740 | 20 6e 61 6d 65 2e 20 42 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 63 61 6e 20 62 65 | .name..Both.IPv4.and.IPv6.can.be |
| 41760 | 20 75 73 65 64 20 69 6e 20 70 61 72 61 6c 6c 65 6c 2e 00 44 65 66 69 6e 65 20 49 50 76 34 20 6f | .used.in.parallel..Define.IPv4.o |
| 41780 | 72 20 49 50 76 36 20 70 72 65 66 69 78 20 66 6f 72 20 61 20 67 69 76 65 6e 20 6e 65 74 77 6f 72 | r.IPv6.prefix.for.a.given.networ |
| 417a0 | 6b 20 6e 61 6d 65 2e 20 4f 6e 6c 79 20 6f 6e 65 20 49 50 76 34 20 61 6e 64 20 6f 6e 65 20 49 50 | k.name..Only.one.IPv4.and.one.IP |
| 417c0 | 76 36 20 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 75 73 65 64 20 70 65 72 20 6e 65 74 77 6f 72 | v6.prefix.can.be.used.per.networ |
| 417e0 | 6b 20 6e 61 6d 65 2e 00 44 65 66 69 6e 65 20 49 50 76 34 2f 49 50 76 36 20 6d 61 6e 61 67 65 6d | k.name..Define.IPv4/IPv6.managem |
| 41800 | 65 6e 74 20 61 64 64 72 65 73 73 20 74 72 61 6e 73 6d 69 74 74 65 64 20 76 69 61 20 4c 4c 44 50 | ent.address.transmitted.via.LLDP |
| 41820 | 2e 20 4d 75 6c 74 69 70 6c 65 20 61 64 64 72 65 73 73 65 73 20 63 61 6e 20 62 65 20 64 65 66 69 | ..Multiple.addresses.can.be.defi |
| 41840 | 6e 65 64 2e 20 4f 6e 6c 79 20 61 64 64 72 65 73 73 65 73 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f | ned..Only.addresses.connected.to |
| 41860 | 20 74 68 65 20 73 79 73 74 65 6d 20 77 69 6c 6c 20 62 65 20 74 72 61 6e 73 6d 69 74 74 65 64 2e | .the.system.will.be.transmitted. |
| 41880 | 00 44 65 66 69 6e 65 20 61 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 4e 65 74 77 6f 72 6b 20 67 | .Define.a.IPv4.or.IPv6.Network.g |
| 418a0 | 72 6f 75 70 2e 00 44 65 66 69 6e 65 20 61 20 49 50 76 34 20 6f 72 20 61 20 49 50 76 36 20 61 64 | roup..Define.a.IPv4.or.a.IPv6.ad |
| 418c0 | 64 72 65 73 73 20 67 72 6f 75 70 00 44 65 66 69 6e 65 20 61 20 5a 6f 6e 65 00 44 65 66 69 6e 65 | dress.group.Define.a.Zone.Define |
| 418e0 | 20 61 20 64 69 73 63 72 65 74 65 20 73 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 | .a.discrete.source.IP.address.of |
| 41900 | 20 31 30 30 2e 36 34 2e 30 2e 31 20 66 6f 72 20 53 4e 41 54 20 72 75 6c 65 20 32 30 00 44 65 66 | .100.64.0.1.for.SNAT.rule.20.Def |
| 41920 | 69 6e 65 20 61 20 64 6f 6d 61 69 6e 20 67 72 6f 75 70 2e 00 44 65 66 69 6e 65 20 61 20 6d 61 63 | ine.a.domain.group..Define.a.mac |
| 41940 | 20 67 72 6f 75 70 2e 00 44 65 66 69 6e 65 20 61 20 70 6f 72 74 20 67 72 6f 75 70 2e 20 41 20 70 | .group..Define.a.port.group..A.p |
| 41960 | 6f 72 74 20 6e 61 6d 65 20 63 61 6e 20 62 65 20 61 6e 79 20 6e 61 6d 65 20 64 65 66 69 6e 65 64 | ort.name.can.be.any.name.defined |
| 41980 | 20 69 6e 20 2f 65 74 63 2f 73 65 72 76 69 63 65 73 2e 20 65 2e 67 2e 3a 20 68 74 74 70 00 44 65 | .in./etc/services..e.g.:.http.De |
| 419a0 | 66 69 6e 65 20 61 6c 6c 6f 77 65 64 20 63 69 70 68 65 72 73 20 75 73 65 64 20 66 6f 72 20 74 68 | fine.allowed.ciphers.used.for.th |
| 419c0 | 65 20 53 53 48 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 41 20 6e 75 6d 62 65 72 20 6f 66 20 61 6c | e.SSH.connection..A.number.of.al |
| 419e0 | 6c 6f 77 65 64 20 63 69 70 68 65 72 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 2c 20 | lowed.ciphers.can.be.specified,. |
| 41a00 | 75 73 65 20 6d 75 6c 74 69 70 6c 65 20 6f 63 63 75 72 72 65 6e 63 65 73 20 74 6f 20 61 6c 6c 6f | use.multiple.occurrences.to.allo |
| 41a20 | 77 20 6d 75 6c 74 69 70 6c 65 20 63 69 70 68 65 72 73 2e 00 44 65 66 69 6e 65 20 61 6e 20 69 6e | w.multiple.ciphers..Define.an.in |
| 41a40 | 74 65 72 66 61 63 65 20 67 72 6f 75 70 2e 20 57 69 6c 64 63 61 72 64 20 61 72 65 20 61 63 63 65 | terface.group..Wildcard.are.acce |
| 41a60 | 70 74 65 64 20 74 6f 6f 2e 00 44 65 66 69 6e 65 20 62 65 68 61 76 69 6f 72 20 66 6f 72 20 67 72 | pted.too..Define.behavior.for.gr |
| 41a80 | 61 74 75 69 74 6f 75 73 20 41 52 50 20 66 72 61 6d 65 73 20 77 68 6f 27 73 20 49 50 20 69 73 20 | atuitous.ARP.frames.who's.IP.is. |
| 41aa0 | 6e 6f 74 20 61 6c 72 65 61 64 79 20 70 72 65 73 65 6e 74 20 69 6e 20 74 68 65 20 41 52 50 20 74 | not.already.present.in.the.ARP.t |
| 41ac0 | 61 62 6c 65 2e 20 49 66 20 63 6f 6e 66 69 67 75 72 65 64 20 63 72 65 61 74 65 20 6e 65 77 20 65 | able..If.configured.create.new.e |
| 41ae0 | 6e 74 72 69 65 73 20 69 6e 20 74 68 65 20 41 52 50 20 74 61 62 6c 65 2e 00 44 65 66 69 6e 65 20 | ntries.in.the.ARP.table..Define. |
| 41b00 | 62 65 68 61 76 69 6f 72 20 66 6f 72 20 67 72 61 74 75 69 74 6f 75 73 20 41 52 50 20 66 72 61 6d | behavior.for.gratuitous.ARP.fram |
| 41b20 | 65 73 20 77 68 6f 73 65 20 49 50 20 69 73 20 6e 6f 74 20 61 6c 72 65 61 64 79 20 70 72 65 73 65 | es.whose.IP.is.not.already.prese |
| 41b40 | 6e 74 20 69 6e 20 74 68 65 20 41 52 50 20 74 61 62 6c 65 2e 20 49 66 20 63 6f 6e 66 69 67 75 72 | nt.in.the.ARP.table..If.configur |
| 41b60 | 65 64 20 63 72 65 61 74 65 20 6e 65 77 20 65 6e 74 72 69 65 73 20 69 6e 20 74 68 65 20 41 52 50 | ed.create.new.entries.in.the.ARP |
| 41b80 | 20 74 61 62 6c 65 2e 00 44 65 66 69 6e 65 20 64 69 66 66 65 72 65 6e 74 20 6d 6f 64 65 73 20 66 | .table..Define.different.modes.f |
| 41ba0 | 6f 72 20 49 50 20 64 69 72 65 63 74 65 64 20 62 72 6f 61 64 63 61 73 74 20 66 6f 72 77 61 72 64 | or.IP.directed.broadcast.forward |
| 41bc0 | 69 6e 67 20 61 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 31 38 31 32 60 20 | ing.as.described.in.:rfc:`1812`. |
| 41be0 | 61 6e 64 20 3a 72 66 63 3a 60 32 36 34 34 60 2e 00 44 65 66 69 6e 65 20 64 69 66 66 65 72 65 6e | and.:rfc:`2644`..Define.differen |
| 41c00 | 74 20 6d 6f 64 65 73 20 66 6f 72 20 73 65 6e 64 69 6e 67 20 72 65 70 6c 69 65 73 20 69 6e 20 72 | t.modes.for.sending.replies.in.r |
| 41c20 | 65 73 70 6f 6e 73 65 20 74 6f 20 72 65 63 65 69 76 65 64 20 41 52 50 20 72 65 71 75 65 73 74 73 | esponse.to.received.ARP.requests |
| 41c40 | 20 74 68 61 74 20 72 65 73 6f 6c 76 65 20 6c 6f 63 61 6c 20 74 61 72 67 65 74 20 49 50 20 61 64 | .that.resolve.local.target.IP.ad |
| 41c60 | 64 72 65 73 73 65 73 3a 00 44 65 66 69 6e 65 20 64 69 66 66 65 72 65 6e 74 20 72 65 73 74 72 69 | dresses:.Define.different.restri |
| 41c80 | 63 74 69 6f 6e 20 6c 65 76 65 6c 73 20 66 6f 72 20 61 6e 6e 6f 75 6e 63 69 6e 67 20 74 68 65 20 | ction.levels.for.announcing.the. |
| 41ca0 | 6c 6f 63 61 6c 20 73 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 49 50 20 | local.source.IP.address.from.IP. |
| 41cc0 | 70 61 63 6b 65 74 73 20 69 6e 20 41 52 50 20 72 65 71 75 65 73 74 73 20 73 65 6e 74 20 6f 6e 20 | packets.in.ARP.requests.sent.on. |
| 41ce0 | 69 6e 74 65 72 66 61 63 65 2e 00 44 65 66 69 6e 65 20 68 6f 77 20 74 6f 20 68 61 6e 64 6c 65 20 | interface..Define.how.to.handle. |
| 41d00 | 6c 65 61 66 2d 73 65 6f 6e 64 73 2e 00 44 65 66 69 6e 65 20 68 6f 77 20 74 6f 20 68 61 6e 64 6c | leaf-seonds..Define.how.to.handl |
| 41d20 | 65 20 6c 65 61 70 2d 73 65 63 6f 6e 64 73 2e 00 44 65 66 69 6e 65 20 69 6e 74 65 72 66 61 63 65 | e.leap-seconds..Define.interface |
| 41d40 | 73 20 74 6f 20 62 65 20 75 73 65 64 20 69 6e 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 2e 00 44 | s.to.be.used.in.the.flowtable..D |
| 41d60 | 65 66 69 6e 65 20 6c 65 6e 67 68 74 20 6f 66 20 65 78 63 6c 75 64 65 20 70 72 65 66 69 78 20 69 | efine.lenght.of.exclude.prefix.i |
| 41d80 | 6e 20 60 3c 70 64 2d 70 72 65 66 69 78 3e 60 2e 00 44 65 66 69 6e 65 20 6c 65 6e 67 74 68 20 6f | n.`<pd-prefix>`..Define.length.o |
| 41da0 | 66 20 70 61 63 6b 65 74 20 70 61 79 6c 6f 61 64 20 74 6f 20 69 6e 63 6c 75 64 65 20 69 6e 20 6e | f.packet.payload.to.include.in.n |
| 41dc0 | 65 74 6c 69 6e 6b 20 6d 65 73 73 61 67 65 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 | etlink.message..Only.applicable. |
| 41de0 | 69 66 20 72 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 20 61 6e 64 20 6c 6f 67 20 67 72 | if.rule.log.is.enable.and.log.gr |
| 41e00 | 6f 75 70 20 69 73 20 64 65 66 69 6e 65 64 2e 00 44 65 66 69 6e 65 20 6c 65 6e 67 74 68 20 6f 66 | oup.is.defined..Define.length.of |
| 41e20 | 20 70 61 63 6b 65 74 20 70 61 79 6c 6f 61 64 20 74 6f 20 69 6e 63 6c 75 64 65 20 69 6e 20 6e 65 | .packet.payload.to.include.in.ne |
| 41e40 | 74 6c 69 6e 6b 20 6d 65 73 73 61 67 65 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 | tlink.message..Only.applicable.i |
| 41e60 | 66 20 72 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 64 20 61 6e 64 20 74 68 65 20 6c 6f | f.rule.log.is.enabled.and.the.lo |
| 41e80 | 67 20 67 72 6f 75 70 20 69 73 20 64 65 66 69 6e 65 64 2e 00 44 65 66 69 6e 65 20 6c 6f 67 20 67 | g.group.is.defined..Define.log.g |
| 41ea0 | 72 6f 75 70 20 74 6f 20 73 65 6e 64 20 6d 65 73 73 61 67 65 20 74 6f 2e 20 4f 6e 6c 79 20 61 70 | roup.to.send.message.to..Only.ap |
| 41ec0 | 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 2e 00 | plicable.if.rule.log.is.enable.. |
| 41ee0 | 44 65 66 69 6e 65 20 6c 6f 67 2d 6c 65 76 65 6c 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c | Define.log-level..Only.applicabl |
| 41f00 | 65 20 69 66 20 72 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 2e 00 44 65 66 69 6e 65 20 | e.if.rule.log.is.enable..Define. |
| 41f20 | 6c 6f 67 2d 6c 65 76 65 6c 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 | log-level..Only.applicable.if.ru |
| 41f40 | 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 64 2e 00 44 65 66 69 6e 65 20 6e 75 6d 62 65 72 | le.log.is.enabled..Define.number |
| 41f60 | 20 6f 66 20 70 61 63 6b 65 74 73 20 74 6f 20 71 75 65 75 65 20 69 6e 73 69 64 65 20 74 68 65 20 | .of.packets.to.queue.inside.the. |
| 41f80 | 6b 65 72 6e 65 6c 20 62 65 66 6f 72 65 20 73 65 6e 64 69 6e 67 20 74 68 65 6d 20 74 6f 20 75 73 | kernel.before.sending.them.to.us |
| 41fa0 | 65 72 73 70 61 63 65 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 6c 65 | erspace..Only.applicable.if.rule |
| 41fc0 | 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 20 61 6e 64 20 6c 6f 67 20 67 72 6f 75 70 20 69 73 20 | .log.is.enable.and.log.group.is. |
| 41fe0 | 64 65 66 69 6e 65 64 2e 00 44 65 66 69 6e 65 20 6f 70 65 72 61 74 69 6f 6e 20 6d 6f 64 65 20 6f | defined..Define.operation.mode.o |
| 42000 | 66 20 48 69 67 68 20 41 76 61 69 6c 61 62 69 6c 69 74 79 20 66 65 61 74 75 72 65 2e 20 44 65 66 | f.High.Availability.feature..Def |
| 42020 | 61 75 6c 74 20 76 61 6c 75 65 20 69 66 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6e 6f 74 20 73 70 65 | ault.value.if.command.is.not.spe |
| 42040 | 63 69 66 69 65 64 20 69 73 20 60 61 63 74 69 76 65 2d 61 63 74 69 76 65 60 00 44 65 66 69 6e 65 | cified.is.`active-active`.Define |
| 42060 | 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 70 61 63 6b 65 74 20 70 61 79 6c 6f 61 64 20 74 6f | .the.length.of.packet.payload.to |
| 42080 | 20 69 6e 63 6c 75 64 65 20 69 6e 20 61 20 6e 65 74 6c 69 6e 6b 20 6d 65 73 73 61 67 65 2e 20 4f | .include.in.a.netlink.message..O |
| 420a0 | 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e | nly.applicable.if.rule.log.is.en |
| 420c0 | 61 62 6c 65 64 20 61 6e 64 20 6c 6f 67 20 67 72 6f 75 70 20 69 73 20 64 65 66 69 6e 65 64 2e 00 | abled.and.log.group.is.defined.. |
| 420e0 | 44 65 66 69 6e 65 20 74 68 65 20 6c 6f 67 20 67 72 6f 75 70 20 74 6f 20 73 65 6e 64 20 6d 65 73 | Define.the.log.group.to.send.mes |
| 42100 | 73 61 67 65 73 20 74 6f 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 6c | sages.to..Only.applicable.if.rul |
| 42120 | 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 64 2e 00 44 65 66 69 6e 65 20 74 68 65 20 6e 75 6d | e.log.is.enabled..Define.the.num |
| 42140 | 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 74 6f 20 71 75 65 75 65 20 69 6e 73 69 64 65 20 74 | ber.of.packets.to.queue.inside.t |
| 42160 | 68 65 20 6b 65 72 6e 65 6c 20 62 65 66 6f 72 65 20 73 65 6e 64 69 6e 67 20 74 68 65 6d 20 74 6f | he.kernel.before.sending.them.to |
| 42180 | 20 75 73 65 72 73 70 61 63 65 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 72 | .userspace..Only.applicable.if.r |
| 421a0 | 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 64 20 61 6e 64 20 6c 6f 67 20 67 72 6f 75 70 | ule.log.is.enabled.and.log.group |
| 421c0 | 20 69 73 20 64 65 66 69 6e 65 64 2e 00 44 65 66 69 6e 65 20 74 68 65 20 6e 75 6d 62 65 72 20 6f | .is.defined..Define.the.number.o |
| 421e0 | 66 20 70 61 63 6b 65 74 73 20 74 6f 20 71 75 65 75 65 20 69 6e 73 69 64 65 20 74 68 65 20 6b 65 | f.packets.to.queue.inside.the.ke |
| 42200 | 72 6e 65 6c 20 62 65 66 6f 72 65 20 73 65 6e 64 69 6e 67 20 74 68 65 6d 20 74 6f 20 75 73 65 72 | rnel.before.sending.them.to.user |
| 42220 | 73 70 61 63 65 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 6c 65 20 6c | space..Only.applicable.if.rule.l |
| 42240 | 6f 67 20 69 73 20 65 6e 61 62 6c 65 64 20 61 6e 64 20 74 68 65 20 6c 6f 67 20 67 72 6f 75 70 20 | og.is.enabled.and.the.log.group. |
| 42260 | 69 73 20 64 65 66 69 6e 65 64 2e 00 44 65 66 69 6e 65 20 74 68 65 20 74 69 6d 65 20 69 6e 74 65 | is.defined..Define.the.time.inte |
| 42280 | 72 76 61 6c 20 74 6f 20 75 70 64 61 74 65 20 74 68 65 20 6c 6f 63 61 6c 20 63 61 63 68 65 00 44 | rval.to.update.the.local.cache.D |
| 422a0 | 65 66 69 6e 65 20 74 68 65 20 7a 6f 6e 65 20 61 73 20 61 20 6c 6f 63 61 6c 20 7a 6f 6e 65 2e 20 | efine.the.zone.as.a.local.zone.. |
| 422c0 | 41 20 6c 6f 63 61 6c 20 7a 6f 6e 65 20 68 61 73 20 6e 6f 20 69 6e 74 65 72 66 61 63 65 73 20 61 | A.local.zone.has.no.interfaces.a |
| 422e0 | 6e 64 20 77 69 6c 6c 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 | nd.will.be.applied.to.the.router |
| 42300 | 20 69 74 73 65 6c 66 2e 00 44 65 66 69 6e 65 20 74 79 70 65 20 6f 66 20 6f 66 66 6c 6f 61 64 20 | .itself..Define.type.of.offload. |
| 42320 | 74 6f 20 62 65 20 75 73 65 64 20 62 79 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 3a 20 60 60 68 | to.be.used.by.the.flowtable:.``h |
| 42340 | 61 72 64 77 61 72 65 60 60 20 6f 72 20 60 60 73 6f 66 74 77 61 72 65 60 60 2e 20 42 79 20 64 65 | ardware``.or.``software``..By.de |
| 42360 | 66 61 75 6c 74 2c 20 60 60 73 6f 66 74 77 61 72 65 60 60 20 6f 66 66 6c 6f 61 64 20 69 73 20 75 | fault,.``software``.offload.is.u |
| 42380 | 73 65 64 2e 00 44 65 66 69 6e 65 20 75 73 65 64 20 65 74 68 65 72 74 79 70 65 20 6f 66 20 62 72 | sed..Define.used.ethertype.of.br |
| 423a0 | 69 64 67 65 20 69 6e 74 65 72 66 61 63 65 2e 00 44 65 66 69 6e 65 64 20 74 68 65 20 49 50 76 34 | idge.interface..Defined.the.IPv4 |
| 423c0 | 2c 20 49 50 76 36 20 6f 72 20 46 51 44 4e 20 61 6e 64 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 6f | ,.IPv6.or.FQDN.and.port.number.o |
| 423e0 | 66 20 74 68 65 20 63 61 63 68 69 6e 67 20 52 50 4b 49 20 63 61 63 68 69 6e 67 20 69 6e 73 74 61 | f.the.caching.RPKI.caching.insta |
| 42400 | 6e 63 65 20 77 68 69 63 68 20 69 73 20 75 73 65 64 2e 00 44 65 66 69 6e 65 73 20 61 6c 74 65 72 | nce.which.is.used..Defines.alter |
| 42420 | 6e 61 74 65 20 73 6f 75 72 63 65 73 20 66 6f 72 20 6d 75 6c 74 69 63 61 73 74 69 6e 67 20 61 6e | nate.sources.for.multicasting.an |
| 42440 | 64 20 49 47 4d 50 20 64 61 74 61 2e 20 54 68 65 20 6e 65 74 77 6f 72 6b 20 61 64 64 72 65 73 73 | d.IGMP.data..The.network.address |
| 42460 | 20 6d 75 73 74 20 62 65 20 6f 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 66 6f 72 6d 61 74 | .must.be.on.the.following.format |
| 42480 | 20 27 61 2e 62 2e 63 2e 64 2f 6e 27 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 74 68 65 20 72 6f | .'a.b.c.d/n'..By.default,.the.ro |
| 424a0 | 75 74 65 72 20 77 69 6c 6c 20 61 63 63 65 70 74 20 64 61 74 61 20 66 72 6f 6d 20 73 6f 75 72 63 | uter.will.accept.data.from.sourc |
| 424c0 | 65 73 20 6f 6e 20 74 68 65 20 73 61 6d 65 20 6e 65 74 77 6f 72 6b 20 61 73 20 63 6f 6e 66 69 67 | es.on.the.same.network.as.config |
| 424e0 | 75 72 65 64 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e 20 49 66 20 74 68 65 20 6d 75 6c | ured.on.an.interface..If.the.mul |
| 42500 | 74 69 63 61 73 74 20 73 6f 75 72 63 65 20 6c 69 65 73 20 6f 6e 20 61 20 72 65 6d 6f 74 65 20 6e | ticast.source.lies.on.a.remote.n |
| 42520 | 65 74 77 6f 72 6b 2c 20 6f 6e 65 20 6d 75 73 74 20 64 65 66 69 6e 65 20 66 72 6f 6d 20 77 68 65 | etwork,.one.must.define.from.whe |
| 42540 | 72 65 20 74 72 61 66 66 69 63 20 73 68 6f 75 6c 64 20 62 65 20 61 63 63 65 70 74 65 64 2e 00 44 | re.traffic.should.be.accepted..D |
| 42560 | 65 66 69 6e 65 73 20 61 6e 20 6f 66 66 2d 4e 42 4d 41 20 6e 65 74 77 6f 72 6b 20 70 72 65 66 69 | efines.an.off-NBMA.network.prefi |
| 42580 | 78 20 66 6f 72 20 77 68 69 63 68 20 74 68 65 20 47 52 45 20 69 6e 74 65 72 66 61 63 65 20 77 69 | x.for.which.the.GRE.interface.wi |
| 425a0 | 6c 6c 20 61 63 74 20 61 73 20 61 20 67 61 74 65 77 61 79 2e 20 54 68 69 73 20 61 6e 20 61 6c 74 | ll.act.as.a.gateway..This.an.alt |
| 425c0 | 65 72 6e 61 74 69 76 65 20 74 6f 20 64 65 66 69 6e 69 6e 67 20 6c 6f 63 61 6c 20 69 6e 74 65 72 | ernative.to.defining.local.inter |
| 425e0 | 66 61 63 65 73 20 77 69 74 68 20 73 68 6f 72 74 63 75 74 2d 64 65 73 74 69 6e 61 74 69 6f 6e 20 | faces.with.shortcut-destination. |
| 42600 | 66 6c 61 67 2e 00 44 65 66 69 6e 65 73 20 62 6c 61 63 6b 68 6f 6c 65 20 64 69 73 74 61 6e 63 65 | flag..Defines.blackhole.distance |
| 42620 | 20 66 6f 72 20 74 68 69 73 20 72 6f 75 74 65 2c 20 72 6f 75 74 65 73 20 77 69 74 68 20 73 6d 61 | .for.this.route,.routes.with.sma |
| 42640 | 6c 6c 65 72 20 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 20 64 69 73 74 61 6e 63 65 20 61 72 65 | ller.administrative.distance.are |
| 42660 | 20 65 6c 65 63 74 65 64 20 70 72 69 6f 72 20 74 6f 20 74 68 6f 73 65 20 77 69 74 68 20 61 20 68 | .elected.prior.to.those.with.a.h |
| 42680 | 69 67 68 65 72 20 64 69 73 74 61 6e 63 65 2e 00 44 65 66 69 6e 65 73 20 6d 69 6e 69 6d 75 6d 20 | igher.distance..Defines.minimum. |
| 426a0 | 61 63 63 65 70 74 61 62 6c 65 20 4d 54 55 2e 20 49 66 20 63 6c 69 65 6e 74 20 77 69 6c 6c 20 74 | acceptable.MTU..If.client.will.t |
| 426c0 | 72 79 20 74 6f 20 6e 65 67 6f 74 69 61 74 65 20 6c 65 73 73 20 74 68 65 6e 20 73 70 65 63 69 66 | ry.to.negotiate.less.then.specif |
| 426e0 | 69 65 64 20 4d 54 55 20 74 68 65 6e 20 69 74 20 77 69 6c 6c 20 62 65 20 4e 41 4b 65 64 20 6f 72 | ied.MTU.then.it.will.be.NAKed.or |
| 42700 | 20 64 69 73 63 6f 6e 6e 65 63 74 65 64 20 69 66 20 72 65 6a 65 63 74 73 20 67 72 65 61 74 65 72 | .disconnected.if.rejects.greater |
| 42720 | 20 4d 54 55 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 2a 2a 31 30 30 2a 2a 2e 00 | .MTU..Default.value.is.**100**.. |
| 42740 | 44 65 66 69 6e 65 73 20 6e 65 78 74 2d 68 6f 70 20 64 69 73 74 61 6e 63 65 20 66 6f 72 20 74 68 | Defines.next-hop.distance.for.th |
| 42760 | 69 73 20 72 6f 75 74 65 2c 20 72 6f 75 74 65 73 20 77 69 74 68 20 73 6d 61 6c 6c 65 72 20 61 64 | is.route,.routes.with.smaller.ad |
| 42780 | 6d 69 6e 69 73 74 72 61 74 69 76 65 20 64 69 73 74 61 6e 63 65 20 61 72 65 20 65 6c 65 63 74 65 | ministrative.distance.are.electe |
| 427a0 | 64 20 70 72 69 6f 72 20 74 6f 20 74 68 6f 73 65 20 77 69 74 68 20 61 20 68 69 67 68 65 72 20 64 | d.prior.to.those.with.a.higher.d |
| 427c0 | 69 73 74 61 6e 63 65 2e 00 44 65 66 69 6e 65 73 20 70 72 65 66 65 72 72 65 64 20 4d 52 55 2e 20 | istance..Defines.preferred.MRU.. |
| 427e0 | 42 79 20 64 65 66 61 75 6c 74 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2e 00 44 65 66 69 6e | By.default.is.not.defined..Defin |
| 42800 | 65 73 20 70 72 6f 74 6f 63 6f 6c 73 20 66 6f 72 20 63 68 65 63 6b 69 6e 67 20 41 52 50 2c 20 49 | es.protocols.for.checking.ARP,.I |
| 42820 | 43 4d 50 2c 20 54 43 50 00 44 65 66 69 6e 65 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 60 3c 6e | CMP,.TCP.Defines.the.maximum.`<n |
| 42840 | 75 6d 62 65 72 3e 60 20 6f 66 20 75 6e 61 6e 73 77 65 72 65 64 20 65 63 68 6f 20 72 65 71 75 65 | umber>`.of.unanswered.echo.reque |
| 42860 | 73 74 73 2e 20 55 70 6f 6e 20 72 65 61 63 68 69 6e 67 20 74 68 65 20 76 61 6c 75 65 20 60 3c 6e | sts..Upon.reaching.the.value.`<n |
| 42880 | 75 6d 62 65 72 3e 60 2c 20 74 68 65 20 73 65 73 73 69 6f 6e 20 77 69 6c 6c 20 62 65 20 72 65 73 | umber>`,.the.session.will.be.res |
| 428a0 | 65 74 2e 00 44 65 66 69 6e 65 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 60 3c 6e 75 6d 62 65 72 | et..Defines.the.maximum.`<number |
| 428c0 | 3e 60 20 6f 66 20 75 6e 61 6e 73 77 65 72 65 64 20 65 63 68 6f 20 72 65 71 75 65 73 74 73 2e 20 | >`.of.unanswered.echo.requests.. |
| 428e0 | 55 70 6f 6e 20 72 65 61 63 68 69 6e 67 20 74 68 65 20 76 61 6c 75 65 20 60 3c 6e 75 6d 62 65 72 | Upon.reaching.the.value.`<number |
| 42900 | 3e 60 2c 20 74 68 65 20 73 65 73 73 69 6f 6e 20 77 69 6c 6c 20 62 65 20 72 65 73 65 74 2e 20 44 | >`,.the.session.will.be.reset..D |
| 42920 | 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 2a 2a 33 2a 2a 2e 00 44 65 66 69 6e 65 73 20 74 | efault.value.is.**3**..Defines.t |
| 42940 | 68 65 20 6d 69 6e 69 6d 75 6d 20 61 63 63 65 70 74 61 62 6c 65 20 4d 54 55 2e 20 49 66 20 61 20 | he.minimum.acceptable.MTU..If.a. |
| 42960 | 63 6c 69 65 6e 74 20 74 72 69 65 73 20 74 6f 20 6e 65 67 6f 74 69 61 74 65 20 61 6e 20 4d 54 55 | client.tries.to.negotiate.an.MTU |
| 42980 | 20 6c 6f 77 65 72 20 74 68 61 6e 20 74 68 69 73 20 69 74 20 77 69 6c 6c 20 62 65 20 4e 41 4b 65 | .lower.than.this.it.will.be.NAKe |
| 429a0 | 64 2c 20 61 6e 64 20 64 69 73 63 6f 6e 6e 65 63 74 65 64 20 69 66 20 69 74 20 72 65 6a 65 63 74 | d,.and.disconnected.if.it.reject |
| 429c0 | 73 20 61 20 67 72 65 61 74 65 72 20 4d 54 55 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 | s.a.greater.MTU..Default.value.i |
| 429e0 | 73 20 2a 2a 31 30 30 2a 2a 2e 00 44 65 66 69 6e 65 73 20 74 68 65 20 72 6f 75 6e 64 2d 74 72 69 | s.**100**..Defines.the.round-tri |
| 42a00 | 70 20 74 69 6d 65 20 75 73 65 64 20 66 6f 72 20 61 63 74 69 76 65 20 71 75 65 75 65 20 6d 61 6e | p.time.used.for.active.queue.man |
| 42a20 | 61 67 65 6d 65 6e 74 20 28 41 51 4d 29 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 2e 20 54 | agement.(AQM).in.milliseconds..T |
| 42a40 | 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 30 30 2e 00 44 65 66 69 6e 65 73 | he.default.value.is.100..Defines |
| 42a60 | 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 64 65 76 69 63 65 20 61 73 20 61 20 73 79 73 74 65 | .the.specified.device.as.a.syste |
| 42a80 | 6d 20 63 6f 6e 73 6f 6c 65 2e 20 41 76 61 69 6c 61 62 6c 65 20 63 6f 6e 73 6f 6c 65 20 64 65 76 | m.console..Available.console.dev |
| 42aa0 | 69 63 65 73 20 63 61 6e 20 62 65 20 28 73 65 65 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 68 65 6c 70 | ices.can.be.(see.completion.help |
| 42ac0 | 65 72 29 3a 00 44 65 66 69 6e 69 6e 67 20 44 79 6e 61 6d 69 63 20 41 64 64 72 65 73 73 20 47 72 | er):.Defining.Dynamic.Address.Gr |
| 42ae0 | 6f 75 70 73 00 44 65 66 69 6e 69 6e 67 20 50 65 65 72 73 00 44 65 6c 65 67 61 74 65 20 70 72 65 | oups.Defining.Peers.Delegate.pre |
| 42b00 | 66 69 78 65 73 20 66 72 6f 6d 20 60 3c 70 64 2d 70 72 65 66 69 78 3e 60 20 74 6f 20 63 6c 69 65 | fixes.from.`<pd-prefix>`.to.clie |
| 42b20 | 6e 74 73 20 69 6e 20 73 75 62 6e 65 74 20 60 3c 70 72 65 66 69 78 3e 60 2e 20 52 61 6e 67 65 20 | nts.in.subnet.`<prefix>`..Range. |
| 42b40 | 69 73 20 64 65 66 69 6e 65 64 20 62 79 20 60 3c 6c 65 6e 67 68 74 3e 60 20 69 6e 20 62 69 74 73 | is.defined.by.`<lenght>`.in.bits |
| 42b60 | 2c 20 33 32 20 74 6f 20 36 34 2e 00 44 65 6c 65 67 61 74 65 20 70 72 65 66 69 78 65 73 20 66 72 | ,.32.to.64..Delegate.prefixes.fr |
| 42b80 | 6f 6d 20 74 68 65 20 72 61 6e 67 65 20 69 6e 64 69 63 61 74 65 64 20 62 79 20 74 68 65 20 73 74 | om.the.range.indicated.by.the.st |
| 42ba0 | 61 72 74 20 61 6e 64 20 73 74 6f 70 20 71 75 61 6c 69 66 69 65 72 2e 00 44 65 6c 65 74 65 20 42 | art.and.stop.qualifier..Delete.B |
| 42bc0 | 47 50 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 6d 61 74 63 68 69 6e 67 20 74 68 65 20 63 6f 6d 6d | GP.communities.matching.the.comm |
| 42be0 | 75 6e 69 74 79 2d 6c 69 73 74 2e 00 44 65 6c 65 74 65 20 42 47 50 20 63 6f 6d 6d 75 6e 69 74 69 | unity-list..Delete.BGP.communiti |
| 42c00 | 65 73 20 6d 61 74 63 68 69 6e 67 20 74 68 65 20 6c 61 72 67 65 2d 63 6f 6d 6d 75 6e 69 74 79 2d | es.matching.the.large-community- |
| 42c20 | 6c 69 73 74 2e 00 44 65 6c 65 74 65 20 4c 6f 67 73 00 44 65 6c 65 74 65 20 61 20 70 61 72 74 69 | list..Delete.Logs.Delete.a.parti |
| 42c40 | 63 75 6c 61 72 20 63 6f 6e 74 61 69 6e 65 72 20 69 6d 61 67 65 20 62 61 73 65 64 20 6f 6e 20 69 | cular.container.image.based.on.i |
| 42c60 | 74 27 73 20 69 6d 61 67 65 20 49 44 2e 20 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 64 65 6c 65 74 | t's.image.ID..You.can.also.delet |
| 42c80 | 65 20 61 6c 6c 20 63 6f 6e 74 61 69 6e 65 72 20 69 6d 61 67 65 73 20 61 74 20 6f 6e 63 65 2e 00 | e.all.container.images.at.once.. |
| 42ca0 | 44 65 6c 65 74 65 20 61 6c 6c 20 42 47 50 20 63 6f 6d 6d 75 6e 69 74 69 65 73 00 44 65 6c 65 74 | Delete.all.BGP.communities.Delet |
| 42cc0 | 65 20 61 6c 6c 20 42 47 50 20 6c 61 72 67 65 2d 63 6f 6d 6d 75 6e 69 74 69 65 73 00 44 65 6c 65 | e.all.BGP.large-communities.Dele |
| 42ce0 | 74 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 66 72 6f 6d 20 74 68 65 20 73 79 73 74 65 6d | te.default.route.from.the.system |
| 42d00 | 2e 00 44 65 6c 65 74 65 73 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 75 73 65 72 2d 64 65 66 | ..Deletes.the.specified.user-def |
| 42d20 | 69 6e 65 64 20 66 69 6c 65 20 3c 74 65 78 74 3e 20 69 6e 20 74 68 65 20 2f 76 61 72 2f 6c 6f 67 | ined.file.<text>.in.the./var/log |
| 42d40 | 2f 75 73 65 72 20 64 69 72 65 63 74 6f 72 79 00 44 65 70 65 6e 64 69 6e 67 20 6f 6e 20 74 68 65 | /user.directory.Depending.on.the |
| 42d60 | 20 6c 6f 63 61 74 69 6f 6e 2c 20 6e 6f 74 20 61 6c 6c 20 6f 66 20 74 68 65 73 65 20 63 68 61 6e | .location,.not.all.of.these.chan |
| 42d80 | 6e 65 6c 73 20 6d 61 79 20 62 65 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 75 73 65 21 00 44 | nels.may.be.available.for.use!.D |
| 42da0 | 65 73 63 72 69 70 74 69 6f 6e 00 44 65 73 70 69 74 65 20 74 68 65 20 44 72 6f 70 2d 54 61 69 6c | escription.Despite.the.Drop-Tail |
| 42dc0 | 20 70 6f 6c 69 63 79 20 64 6f 65 73 20 6e 6f 74 20 73 6c 6f 77 20 64 6f 77 6e 20 70 61 63 6b 65 | .policy.does.not.slow.down.packe |
| 42de0 | 74 73 2c 20 69 66 20 6d 61 6e 79 20 70 61 63 6b 65 74 73 20 61 72 65 20 74 6f 20 62 65 20 73 65 | ts,.if.many.packets.are.to.be.se |
| 42e00 | 6e 74 2c 20 74 68 65 79 20 63 6f 75 6c 64 20 67 65 74 20 64 72 6f 70 70 65 64 20 77 68 65 6e 20 | nt,.they.could.get.dropped.when. |
| 42e20 | 74 72 79 69 6e 67 20 74 6f 20 67 65 74 20 65 6e 71 75 65 75 65 64 20 61 74 20 74 68 65 20 74 61 | trying.to.get.enqueued.at.the.ta |
| 42e40 | 69 6c 2e 20 54 68 69 73 20 63 61 6e 20 68 61 70 70 65 6e 20 69 66 20 74 68 65 20 71 75 65 75 65 | il..This.can.happen.if.the.queue |
| 42e60 | 20 68 61 73 20 73 74 69 6c 6c 20 6e 6f 74 20 62 65 65 6e 20 61 62 6c 65 20 74 6f 20 72 65 6c 65 | .has.still.not.been.able.to.rele |
| 42e80 | 61 73 65 20 65 6e 6f 75 67 68 20 70 61 63 6b 65 74 73 20 66 72 6f 6d 20 69 74 73 20 68 65 61 64 | ase.enough.packets.from.its.head |
| 42ea0 | 2e 00 44 65 73 70 69 74 65 20 74 68 65 20 66 61 63 74 20 74 68 61 74 20 41 44 20 69 73 20 61 20 | ..Despite.the.fact.that.AD.is.a. |
| 42ec0 | 73 75 70 65 72 73 65 74 20 6f 66 20 4c 44 41 50 00 44 65 73 74 69 6e 61 74 69 6f 6e 20 41 64 64 | superset.of.LDAP.Destination.Add |
| 42ee0 | 72 65 73 73 00 44 65 73 74 69 6e 61 74 69 6f 6e 20 4e 41 54 00 44 65 73 74 69 6e 61 74 69 6f 6e | ress.Destination.NAT.Destination |
| 42f00 | 20 50 72 65 66 69 78 00 44 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f | .Prefix.Detailed.information.abo |
| 42f20 | 75 74 20 22 63 69 73 63 6f 22 20 61 6e 64 20 22 69 62 6d 22 20 6d 6f 64 65 6c 73 20 64 69 66 66 | ut."cisco".and."ibm".models.diff |
| 42f40 | 65 72 65 6e 63 65 73 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 3a 72 66 63 3a 60 33 35 | erences.can.be.found.in.:rfc:`35 |
| 42f60 | 30 39 60 2e 20 41 20 22 73 68 6f 72 74 63 75 74 22 20 6d 6f 64 65 6c 20 61 6c 6c 6f 77 73 20 41 | 09`..A."shortcut".model.allows.A |
| 42f80 | 42 52 20 74 6f 20 63 72 65 61 74 65 20 72 6f 75 74 65 73 20 62 65 74 77 65 65 6e 20 61 72 65 61 | BR.to.create.routes.between.area |
| 42fa0 | 73 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 74 6f 70 6f 6c 6f 67 79 20 6f 66 20 74 68 65 20 61 | s.based.on.the.topology.of.the.a |
| 42fc0 | 72 65 61 73 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 69 73 20 72 6f 75 74 65 72 20 62 75 | reas.connected.to.this.router.bu |
| 42fe0 | 74 20 6e 6f 74 20 75 73 69 6e 67 20 61 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 69 6e 20 63 | t.not.using.a.backbone.area.in.c |
| 43000 | 61 73 65 20 69 66 20 6e 6f 6e 2d 62 61 63 6b 62 6f 6e 65 20 72 6f 75 74 65 20 77 69 6c 6c 20 62 | ase.if.non-backbone.route.will.b |
| 43020 | 65 20 63 68 65 61 70 65 72 2e 20 46 6f 72 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 | e.cheaper..For.more.information. |
| 43040 | 61 62 6f 75 74 20 22 73 68 6f 72 74 63 75 74 22 20 6d 6f 64 65 6c 2c 20 73 65 65 20 3a 74 3a 60 | about."shortcut".model,.see.:t:` |
| 43060 | 6f 73 70 66 2d 73 68 6f 72 74 63 75 74 2d 61 62 72 2d 30 32 2e 74 78 74 60 00 44 65 74 65 72 6d | ospf-shortcut-abr-02.txt`.Determ |
| 43080 | 69 6e 65 73 20 68 6f 77 20 6f 70 65 6e 6e 68 72 70 20 64 61 65 6d 6f 6e 20 73 68 6f 75 6c 64 20 | ines.how.opennhrp.daemon.should. |
| 430a0 | 73 6f 66 74 20 73 77 69 74 63 68 20 74 68 65 20 6d 75 6c 74 69 63 61 73 74 20 74 72 61 66 66 69 | soft.switch.the.multicast.traffi |
| 430c0 | 63 2e 20 43 75 72 72 65 6e 74 6c 79 2c 20 6d 75 6c 74 69 63 61 73 74 20 74 72 61 66 66 69 63 20 | c..Currently,.multicast.traffic. |
| 430e0 | 69 73 20 63 61 70 74 75 72 65 64 20 62 79 20 6f 70 65 6e 6e 68 72 70 20 64 61 65 6d 6f 6e 20 75 | is.captured.by.opennhrp.daemon.u |
| 43100 | 73 69 6e 67 20 61 20 70 61 63 6b 65 74 20 73 6f 63 6b 65 74 2c 20 61 6e 64 20 72 65 73 65 6e 74 | sing.a.packet.socket,.and.resent |
| 43120 | 20 62 61 63 6b 20 74 6f 20 70 72 6f 70 65 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 73 2e 20 54 68 | .back.to.proper.destinations..Th |
| 43140 | 69 73 20 6d 65 61 6e 73 20 74 68 61 74 20 6d 75 6c 74 69 63 61 73 74 20 70 61 63 6b 65 74 20 73 | is.means.that.multicast.packet.s |
| 43160 | 65 6e 64 69 6e 67 20 69 73 20 43 50 55 20 69 6e 74 65 6e 73 69 76 65 2e 00 44 65 76 69 63 65 20 | ending.is.CPU.intensive..Device. |
| 43180 | 69 73 20 69 6e 63 61 70 61 62 6c 65 20 6f 66 20 34 30 20 4d 48 7a 2c 20 64 6f 20 6e 6f 74 20 61 | is.incapable.of.40.MHz,.do.not.a |
| 431a0 | 64 76 65 72 74 69 73 65 2e 20 54 68 69 73 20 73 65 74 73 20 60 60 5b 34 30 2d 49 4e 54 4f 4c 45 | dvertise..This.sets.``[40-INTOLE |
| 431c0 | 52 41 4e 54 5d 60 60 00 44 65 76 69 63 65 73 20 65 76 61 6c 75 61 74 69 6e 67 20 77 68 65 74 68 | RANT]``.Devices.evaluating.wheth |
| 431e0 | 65 72 20 61 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 20 69 73 20 70 75 62 6c 69 63 20 6d 75 73 | er.an.IPv4.address.is.public.mus |
| 43200 | 74 20 62 65 20 75 70 64 61 74 65 64 20 74 6f 20 72 65 63 6f 67 6e 69 7a 65 20 74 68 65 20 6e 65 | t.be.updated.to.recognize.the.ne |
| 43220 | 77 20 61 64 64 72 65 73 73 20 73 70 61 63 65 2e 20 41 6c 6c 6f 63 61 74 69 6e 67 20 6d 6f 72 65 | w.address.space..Allocating.more |
| 43240 | 20 70 72 69 76 61 74 65 20 49 50 76 34 20 61 64 64 72 65 73 73 20 73 70 61 63 65 20 66 6f 72 20 | .private.IPv4.address.space.for. |
| 43260 | 4e 41 54 20 64 65 76 69 63 65 73 20 6d 69 67 68 74 20 70 72 6f 6c 6f 6e 67 20 74 68 65 20 74 72 | NAT.devices.might.prolong.the.tr |
| 43280 | 61 6e 73 69 74 69 6f 6e 20 74 6f 20 49 50 76 36 2e 00 44 69 66 66 65 72 65 6e 74 20 4e 41 54 20 | ansition.to.IPv6..Different.NAT. |
| 432a0 | 54 79 70 65 73 00 44 69 66 66 69 65 2d 48 65 6c 6c 6d 61 6e 20 70 61 72 61 6d 65 74 65 72 73 00 | Types.Diffie-Hellman.parameters. |
| 432c0 | 44 69 72 65 63 74 69 6f 6e 3a 20 2a 2a 69 6e 2a 2a 20 61 6e 64 20 2a 2a 6f 75 74 2a 2a 2e 20 50 | Direction:.**in**.and.**out**..P |
| 432e0 | 72 6f 74 65 63 74 20 70 75 62 6c 69 63 20 6e 65 74 77 6f 72 6b 20 66 72 6f 6d 20 65 78 74 65 72 | rotect.public.network.from.exter |
| 43300 | 6e 61 6c 20 61 74 74 61 63 6b 73 2c 20 61 6e 64 20 69 64 65 6e 74 69 66 79 20 69 6e 74 65 72 6e | nal.attacks,.and.identify.intern |
| 43320 | 61 6c 20 61 74 74 61 63 6b 73 20 74 6f 77 61 72 64 73 20 69 6e 74 65 72 6e 65 74 2e 00 44 69 73 | al.attacks.towards.internet..Dis |
| 43340 | 61 62 6c 65 20 28 6c 6f 63 6b 29 20 61 63 63 6f 75 6e 74 2e 20 55 73 65 72 20 77 69 6c 6c 20 6e | able.(lock).account..User.will.n |
| 43360 | 6f 74 20 62 65 20 61 62 6c 65 20 74 6f 20 6c 6f 67 20 69 6e 2e 00 44 69 73 61 62 6c 65 20 43 50 | ot.be.able.to.log.in..Disable.CP |
| 43380 | 55 20 70 6f 77 65 72 20 73 61 76 69 6e 67 20 6d 65 63 68 61 6e 69 73 6d 73 20 61 6c 73 6f 20 6b | U.power.saving.mechanisms.also.k |
| 433a0 | 6e 6f 77 6e 20 61 73 20 43 20 73 74 61 74 65 73 2e 00 44 69 73 61 62 6c 65 20 43 6f 6d 70 72 65 | nown.as.C.states..Disable.Compre |
| 433c0 | 73 73 69 6f 6e 20 43 6f 6e 74 72 6f 6c 20 50 72 6f 74 6f 63 6f 6c 20 28 43 43 50 29 2e 20 43 43 | ssion.Control.Protocol.(CCP)..CC |
| 433e0 | 50 20 69 73 20 65 6e 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 2e 00 44 69 73 61 62 6c 65 | P.is.enabled.by.default..Disable |
| 43400 | 20 4d 4c 44 20 72 65 70 6f 72 74 73 20 61 6e 64 20 71 75 65 72 79 20 6f 6e 20 74 68 65 20 69 6e | .MLD.reports.and.query.on.the.in |
| 43420 | 74 65 72 66 61 63 65 2e 00 44 69 73 61 62 6c 65 20 60 3c 75 73 65 72 3e 60 20 61 63 63 6f 75 6e | terface..Disable.`<user>`.accoun |
| 43440 | 74 2e 00 44 69 73 61 62 6c 65 20 61 20 42 46 44 20 70 65 65 72 00 44 69 73 61 62 6c 65 20 61 20 | t..Disable.a.BFD.peer.Disable.a. |
| 43460 | 63 6f 6e 74 61 69 6e 65 72 2e 00 44 69 73 61 62 6c 65 20 61 20 67 69 76 65 6e 20 63 6f 6e 74 61 | container..Disable.a.given.conta |
| 43480 | 69 6e 65 72 20 72 65 67 69 73 74 72 79 00 44 69 73 61 62 6c 65 20 61 6c 6c 20 6f 70 74 69 6f 6e | iner.registry.Disable.all.option |
| 434a0 | 61 6c 20 43 50 55 20 6d 69 74 69 67 61 74 69 6f 6e 73 2e 20 54 68 69 73 20 69 6d 70 72 6f 76 65 | al.CPU.mitigations..This.improve |
| 434c0 | 73 20 73 79 73 74 65 6d 20 70 65 72 66 6f 72 6d 61 6e 63 65 2c 20 62 75 74 20 69 74 20 6d 61 79 | s.system.performance,.but.it.may |
| 434e0 | 20 61 6c 73 6f 20 65 78 70 6f 73 65 20 75 73 65 72 73 20 74 6f 20 73 65 76 65 72 61 6c 20 43 50 | .also.expose.users.to.several.CP |
| 43500 | 55 20 76 75 6c 6e 65 72 61 62 69 6c 69 74 69 65 73 2e 00 44 69 73 61 62 6c 65 20 63 6f 6e 6e 65 | U.vulnerabilities..Disable.conne |
| 43520 | 63 74 69 6f 6e 20 6c 6f 67 67 69 6e 67 20 76 69 61 20 53 79 73 6c 6f 67 2e 00 44 69 73 61 62 6c | ction.logging.via.Syslog..Disabl |
| 43540 | 65 20 63 6f 6e 6e 74 72 61 63 6b 20 6c 6f 6f 73 65 20 74 72 61 63 6b 20 6f 70 74 69 6f 6e 00 44 | e.conntrack.loose.track.option.D |
| 43560 | 69 73 61 62 6c 65 20 64 68 63 70 2d 72 65 6c 61 79 20 73 65 72 76 69 63 65 2e 00 44 69 73 61 62 | isable.dhcp-relay.service..Disab |
| 43580 | 6c 65 20 64 68 63 70 76 36 2d 72 65 6c 61 79 20 73 65 72 76 69 63 65 2e 00 44 69 73 61 62 6c 65 | le.dhcpv6-relay.service..Disable |
| 435a0 | 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 20 49 74 20 77 69 6c 6c 20 62 65 | .given.`<interface>`..It.will.be |
| 435c0 | 20 70 6c 61 63 65 64 20 69 6e 20 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 6c 79 20 64 6f 77 6e | .placed.in.administratively.down |
| 435e0 | 20 28 60 60 41 2f 44 60 60 29 20 73 74 61 74 65 2e 00 44 69 73 61 62 6c 65 20 68 6f 73 74 69 6e | .(``A/D``).state..Disable.hostin |
| 43600 | 67 20 61 75 74 68 6f 72 69 74 61 74 69 76 65 20 7a 6f 6e 65 20 66 6f 72 20 60 3c 64 6f 6d 61 69 | g.authoritative.zone.for.`<domai |
| 43620 | 6e 2d 6e 61 6d 65 3e 60 20 77 69 74 68 6f 75 74 20 64 65 6c 65 74 69 6e 67 20 66 72 6f 6d 20 63 | n-name>`.without.deleting.from.c |
| 43640 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 44 69 73 61 62 6c 65 20 69 6d 6d 65 64 69 61 74 65 20 | onfiguration..Disable.immediate. |
| 43660 | 73 65 73 73 69 6f 6e 20 72 65 73 65 74 20 69 66 20 70 65 65 72 27 73 20 63 6f 6e 6e 65 63 74 65 | session.reset.if.peer's.connecte |
| 43680 | 64 20 6c 69 6e 6b 20 67 6f 65 73 20 64 6f 77 6e 2e 00 44 69 73 61 62 6c 65 20 70 61 73 73 77 6f | d.link.goes.down..Disable.passwo |
| 436a0 | 72 64 20 62 61 73 65 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 20 4c 6f 67 69 6e 20 76 | rd.based.authentication..Login.v |
| 436c0 | 69 61 20 53 53 48 20 6b 65 79 73 20 6f 6e 6c 79 2e 20 54 68 69 73 20 68 61 72 64 65 6e 73 20 73 | ia.SSH.keys.only..This.hardens.s |
| 436e0 | 65 63 75 72 69 74 79 21 00 44 69 73 61 62 6c 65 20 73 65 6e 64 69 6e 67 20 61 6e 64 20 72 65 63 | ecurity!.Disable.sending.and.rec |
| 43700 | 65 69 76 69 6e 67 20 50 49 4d 20 63 6f 6e 74 72 6f 6c 20 70 61 63 6b 65 74 73 20 6f 6e 20 74 68 | eiving.PIM.control.packets.on.th |
| 43720 | 65 20 69 6e 74 65 72 66 61 63 65 2e 00 44 69 73 61 62 6c 65 20 73 70 65 63 69 66 69 63 20 72 65 | e.interface..Disable.specific.re |
| 43740 | 63 6f 72 64 20 77 69 74 68 6f 75 74 20 64 65 6c 65 74 69 6e 67 20 69 74 20 66 72 6f 6d 20 63 6f | cord.without.deleting.it.from.co |
| 43760 | 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 44 69 73 61 62 6c 65 20 74 68 65 20 68 6f 73 74 20 76 61 | nfiguration..Disable.the.host.va |
| 43780 | 6c 69 64 61 74 69 6f 6e 20 74 68 72 6f 75 67 68 20 72 65 76 65 72 73 65 20 44 4e 53 20 6c 6f 6f | lidation.through.reverse.DNS.loo |
| 437a0 | 6b 75 70 73 20 2d 20 63 61 6e 20 73 70 65 65 64 75 70 20 6c 6f 67 69 6e 20 74 69 6d 65 20 77 68 | kups.-.can.speedup.login.time.wh |
| 437c0 | 65 6e 20 72 65 76 65 72 73 65 20 6c 6f 6f 6b 75 70 20 69 73 20 6e 6f 74 20 70 6f 73 73 69 62 6c | en.reverse.lookup.is.not.possibl |
| 437e0 | 65 2e 00 44 69 73 61 62 6c 65 20 74 68 65 20 70 65 65 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | e..Disable.the.peer.configuratio |
| 43800 | 6e 00 44 69 73 61 62 6c 65 20 74 68 69 73 20 49 50 76 34 20 73 74 61 74 69 63 20 72 6f 75 74 65 | n.Disable.this.IPv4.static.route |
| 43820 | 20 65 6e 74 72 79 2e 00 44 69 73 61 62 6c 65 20 74 68 69 73 20 49 50 76 36 20 73 74 61 74 69 63 | .entry..Disable.this.IPv6.static |
| 43840 | 20 72 6f 75 74 65 20 65 6e 74 72 79 2e 00 44 69 73 61 62 6c 65 20 74 68 69 73 20 73 65 72 76 69 | .route.entry..Disable.this.servi |
| 43860 | 63 65 2e 00 44 69 73 61 62 6c 65 20 74 72 61 6e 73 6d 69 74 20 6f 66 20 4c 4c 44 50 20 66 72 61 | ce..Disable.transmit.of.LLDP.fra |
| 43880 | 6d 65 73 20 6f 6e 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 20 55 73 65 66 | mes.on.given.`<interface>`..Usef |
| 438a0 | 75 6c 20 74 6f 20 65 78 63 6c 75 64 65 20 63 65 72 74 61 69 6e 20 69 6e 74 65 72 66 61 63 65 73 | ul.to.exclude.certain.interfaces |
| 438c0 | 20 66 72 6f 6d 20 4c 4c 44 50 20 77 68 65 6e 20 60 60 61 6c 6c 60 60 20 68 61 76 65 20 62 65 65 | .from.LLDP.when.``all``.have.bee |
| 438e0 | 6e 20 65 6e 61 62 6c 65 64 2e 00 44 69 73 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 20 2d | n.enabled..Disabled.by.default.- |
| 43900 | 20 6e 6f 20 6b 65 72 6e 65 6c 20 6d 6f 64 75 6c 65 20 6c 6f 61 64 65 64 2e 00 44 69 73 61 62 6c | .no.kernel.module.loaded..Disabl |
| 43920 | 65 73 20 63 61 63 68 69 6e 67 20 6f 66 20 70 65 65 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 | es.caching.of.peer.information.f |
| 43940 | 72 6f 6d 20 66 6f 72 77 61 72 64 65 64 20 4e 48 52 50 20 52 65 73 6f 6c 75 74 69 6f 6e 20 52 65 | rom.forwarded.NHRP.Resolution.Re |
| 43960 | 70 6c 79 20 70 61 63 6b 65 74 73 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f | ply.packets..This.can.be.used.to |
| 43980 | 20 72 65 64 75 63 65 20 6d 65 6d 6f 72 79 20 63 6f 6e 73 75 6d 70 74 69 6f 6e 20 6f 6e 20 62 69 | .reduce.memory.consumption.on.bi |
| 439a0 | 67 20 4e 42 4d 41 20 73 75 62 6e 65 74 73 2e 00 44 69 73 61 62 6c 65 73 20 66 6c 6f 77 20 69 73 | g.NBMA.subnets..Disables.flow.is |
| 439c0 | 6f 6c 61 74 69 6f 6e 2c 20 61 6c 6c 20 74 72 61 66 66 69 63 20 70 61 73 73 65 73 20 74 68 72 6f | olation,.all.traffic.passes.thro |
| 439e0 | 75 67 68 20 61 20 73 69 6e 67 6c 65 20 71 75 65 75 65 2e 00 44 69 73 61 62 6c 65 73 20 69 6e 74 | ugh.a.single.queue..Disables.int |
| 43a00 | 65 72 66 61 63 65 2d 62 61 73 65 64 20 49 50 76 34 20 73 74 61 74 69 63 20 72 6f 75 74 65 2e 00 | erface-based.IPv4.static.route.. |
| 43a20 | 44 69 73 61 62 6c 65 73 20 69 6e 74 65 72 66 61 63 65 2d 62 61 73 65 64 20 49 50 76 36 20 73 74 | Disables.interface-based.IPv6.st |
| 43a40 | 61 74 69 63 20 72 6f 75 74 65 2e 00 44 69 73 61 62 6c 65 73 20 71 75 69 63 6b 6c 65 61 76 65 20 | atic.route..Disables.quickleave. |
| 43a60 | 6d 6f 64 65 2e 20 49 6e 20 74 68 69 73 20 6d 6f 64 65 20 74 68 65 20 64 61 65 6d 6f 6e 20 77 69 | mode..In.this.mode.the.daemon.wi |
| 43a80 | 6c 6c 20 6e 6f 74 20 73 65 6e 64 20 61 20 4c 65 61 76 65 20 49 47 4d 50 20 6d 65 73 73 61 67 65 | ll.not.send.a.Leave.IGMP.message |
| 43aa0 | 20 75 70 73 74 72 65 61 6d 20 61 73 20 73 6f 6f 6e 20 61 73 20 69 74 20 72 65 63 65 69 76 65 73 | .upstream.as.soon.as.it.receives |
| 43ac0 | 20 61 20 4c 65 61 76 65 20 6d 65 73 73 61 67 65 20 66 6f 72 20 61 6e 79 20 64 6f 77 6e 73 74 72 | .a.Leave.message.for.any.downstr |
| 43ae0 | 65 61 6d 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 64 61 65 6d 6f 6e 20 77 69 6c 6c 20 6e | eam.interface..The.daemon.will.n |
| 43b00 | 6f 74 20 61 73 6b 20 66 6f 72 20 4d 65 6d 62 65 72 73 68 69 70 20 72 65 70 6f 72 74 73 20 6f 6e | ot.ask.for.Membership.reports.on |
| 43b20 | 20 74 68 65 20 64 6f 77 6e 73 74 72 65 61 6d 20 69 6e 74 65 72 66 61 63 65 73 2c 20 61 6e 64 20 | .the.downstream.interfaces,.and. |
| 43b40 | 69 66 20 61 20 72 65 70 6f 72 74 20 69 73 20 72 65 63 65 69 76 65 64 20 74 68 65 20 67 72 6f 75 | if.a.report.is.received.the.grou |
| 43b60 | 70 20 69 73 20 6e 6f 74 20 6a 6f 69 6e 65 64 20 61 67 61 69 6e 20 74 68 65 20 75 70 73 74 72 65 | p.is.not.joined.again.the.upstre |
| 43b80 | 61 6d 2e 00 44 69 73 61 62 6c 65 73 20 77 65 62 20 66 69 6c 74 65 72 69 6e 67 20 77 69 74 68 6f | am..Disables.web.filtering.witho |
| 43ba0 | 75 74 20 64 69 73 63 61 72 64 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 44 69 73 | ut.discarding.configuration..Dis |
| 43bc0 | 61 62 6c 65 73 20 77 65 62 20 70 72 6f 78 79 20 74 72 61 6e 73 70 61 72 65 6e 74 20 6d 6f 64 65 | ables.web.proxy.transparent.mode |
| 43be0 | 20 61 74 20 61 20 6c 69 73 74 65 6e 69 6e 67 20 61 64 64 72 65 73 73 2e 00 44 69 73 61 62 6c 69 | .at.a.listening.address..Disabli |
| 43c00 | 6e 67 20 41 64 76 65 72 74 69 73 65 6d 65 6e 74 73 00 44 69 73 61 62 6c 69 6e 67 20 61 20 56 52 | ng.Advertisements.Disabling.a.VR |
| 43c20 | 52 50 20 67 72 6f 75 70 00 44 69 73 61 62 6c 69 6e 67 20 74 68 65 20 65 6e 63 72 79 70 74 69 6f | RP.group.Disabling.the.encryptio |
| 43c40 | 6e 20 6f 6e 20 74 68 65 20 6c 69 6e 6b 20 62 79 20 72 65 6d 6f 76 69 6e 67 20 60 60 73 65 63 75 | n.on.the.link.by.removing.``secu |
| 43c60 | 72 69 74 79 20 65 6e 63 72 79 70 74 60 60 20 77 69 6c 6c 20 73 68 6f 77 20 74 68 65 20 75 6e 65 | rity.encrypt``.will.show.the.une |
| 43c80 | 6e 63 72 79 70 74 65 64 20 62 75 74 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 20 63 6f 6e 74 65 | ncrypted.but.authenticated.conte |
| 43ca0 | 6e 74 2e 00 44 69 73 61 64 76 61 6e 74 61 67 65 73 20 61 72 65 3a 00 44 69 73 61 73 73 6f 63 69 | nt..Disadvantages.are:.Disassoci |
| 43cc0 | 61 74 65 20 73 74 61 74 69 6f 6e 73 20 62 61 73 65 64 20 6f 6e 20 65 78 63 65 73 73 69 76 65 20 | ate.stations.based.on.excessive. |
| 43ce0 | 74 72 61 6e 73 6d 69 73 73 69 6f 6e 20 66 61 69 6c 75 72 65 73 20 6f 72 20 6f 74 68 65 72 20 69 | transmission.failures.or.other.i |
| 43d00 | 6e 64 69 63 61 74 69 6f 6e 73 20 6f 66 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6c 6f 73 73 2e 00 44 | ndications.of.connection.loss..D |
| 43d20 | 69 73 70 6c 61 79 20 49 50 76 34 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 66 6f 72 20 56 52 | isplay.IPv4.routing.table.for.VR |
| 43d40 | 46 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 6e 61 6d 65 3e 60 2e 00 44 69 73 70 6c 61 | F.identified.by.`<name>`..Displa |
| 43d60 | 79 20 49 50 76 36 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 66 6f 72 20 56 52 46 20 69 64 65 | y.IPv6.routing.table.for.VRF.ide |
| 43d80 | 6e 74 69 66 69 65 64 20 62 79 20 60 3c 6e 61 6d 65 3e 60 2e 00 44 69 73 70 6c 61 79 20 4c 6f 67 | ntified.by.`<name>`..Display.Log |
| 43da0 | 73 00 44 69 73 70 6c 61 79 20 4f 54 50 20 6b 65 79 20 66 6f 72 20 75 73 65 72 00 44 69 73 70 6c | s.Display.OTP.key.for.user.Displ |
| 43dc0 | 61 79 20 61 6c 6c 20 61 75 74 68 6f 72 69 7a 61 74 69 6f 6e 20 61 74 74 65 6d 70 74 73 20 6f 66 | ay.all.authorization.attempts.of |
| 43de0 | 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6d 61 67 65 00 44 69 73 70 6c 61 79 20 61 6c 6c | .the.specified.image.Display.all |
| 43e00 | 20 6b 6e 6f 77 6e 20 41 52 50 20 74 61 62 6c 65 20 65 6e 74 72 69 65 73 20 6f 6e 20 61 20 67 69 | .known.ARP.table.entries.on.a.gi |
| 43e20 | 76 65 6e 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 6c 79 20 28 60 65 74 68 31 60 29 3a 00 44 69 73 | ven.interface.only.(`eth1`):.Dis |
| 43e40 | 70 6c 61 79 20 61 6c 6c 20 6b 6e 6f 77 6e 20 41 52 50 20 74 61 62 6c 65 20 65 6e 74 72 69 65 73 | play.all.known.ARP.table.entries |
| 43e60 | 20 73 70 61 6e 6e 69 6e 67 20 61 63 72 6f 73 73 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 00 | .spanning.across.all.interfaces. |
| 43e80 | 44 69 73 70 6c 61 79 20 63 6f 6e 74 65 6e 74 73 20 6f 66 20 61 20 73 70 65 63 69 66 69 65 64 20 | Display.contents.of.a.specified. |
| 43ea0 | 75 73 65 72 2d 64 65 66 69 6e 65 64 20 6c 6f 67 20 66 69 6c 65 20 6f 66 20 74 68 65 20 73 70 65 | user-defined.log.file.of.the.spe |
| 43ec0 | 63 69 66 69 65 64 20 69 6d 61 67 65 00 44 69 73 70 6c 61 79 20 63 6f 6e 74 65 6e 74 73 20 6f 66 | cified.image.Display.contents.of |
| 43ee0 | 20 61 6c 6c 20 6d 61 73 74 65 72 20 6c 6f 67 20 66 69 6c 65 73 20 6f 66 20 74 68 65 20 73 70 65 | .all.master.log.files.of.the.spe |
| 43f00 | 63 69 66 69 65 64 20 69 6d 61 67 65 00 44 69 73 70 6c 61 79 20 6c 61 73 74 20 6c 69 6e 65 73 20 | cified.image.Display.last.lines. |
| 43f20 | 6f 66 20 74 68 65 20 73 79 73 74 65 6d 20 6c 6f 67 20 6f 66 20 74 68 65 20 73 70 65 63 69 66 69 | of.the.system.log.of.the.specifi |
| 43f40 | 65 64 20 69 6d 61 67 65 00 44 69 73 70 6c 61 79 20 6c 69 73 74 20 6f 66 20 61 6c 6c 20 75 73 65 | ed.image.Display.list.of.all.use |
| 43f60 | 72 2d 64 65 66 69 6e 65 64 20 6c 6f 67 20 66 69 6c 65 73 20 6f 66 20 74 68 65 20 73 70 65 63 69 | r-defined.log.files.of.the.speci |
| 43f80 | 66 69 65 64 20 69 6d 61 67 65 00 44 69 73 70 6c 61 79 20 6c 6f 67 20 66 69 6c 65 73 20 6f 66 20 | fied.image.Display.log.files.of. |
| 43fa0 | 67 69 76 65 6e 20 63 61 74 65 67 6f 72 79 20 6f 6e 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 20 55 | given.category.on.the.console..U |
| 43fc0 | 73 65 20 74 61 62 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 74 6f 20 67 65 74 20 61 20 6c 69 73 74 20 | se.tab.completion.to.get.a.list. |
| 43fe0 | 6f 66 20 61 76 61 69 6c 61 62 6c 65 20 63 61 74 65 67 6f 72 69 65 73 2e 20 54 68 6f 73 20 63 61 | of.available.categories..Thos.ca |
| 44000 | 74 65 67 6f 72 69 65 73 20 63 6f 75 6c 64 20 62 65 3a 20 61 6c 6c 2c 20 61 75 74 68 6f 72 69 7a | tegories.could.be:.all,.authoriz |
| 44020 | 61 74 69 6f 6e 2c 20 63 6c 75 73 74 65 72 2c 20 63 6f 6e 6e 74 72 61 63 6b 2d 73 79 6e 63 2c 20 | ation,.cluster,.conntrack-sync,. |
| 44040 | 64 68 63 70 2c 20 64 69 72 65 63 74 6f 72 79 2c 20 64 6e 73 2c 20 66 69 6c 65 2c 20 66 69 72 65 | dhcp,.directory,.dns,.file,.fire |
| 44060 | 77 61 6c 6c 2c 20 68 74 74 70 73 2c 20 69 6d 61 67 65 20 6c 6c 64 70 2c 20 6e 61 74 2c 20 6f 70 | wall,.https,.image.lldp,.nat,.op |
| 44080 | 65 6e 76 70 6e 2c 20 73 6e 6d 70 2c 20 74 61 69 6c 2c 20 76 70 6e 2c 20 76 72 72 70 00 44 69 73 | envpn,.snmp,.tail,.vpn,.vrrp.Dis |
| 440a0 | 70 6c 61 79 20 6c 6f 67 20 66 69 6c 65 73 20 6f 66 20 67 69 76 65 6e 20 63 61 74 65 67 6f 72 79 | play.log.files.of.given.category |
| 440c0 | 20 6f 6e 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 20 55 73 65 20 74 61 62 20 63 6f 6d 70 6c 65 74 | .on.the.console..Use.tab.complet |
| 440e0 | 69 6f 6e 20 74 6f 20 67 65 74 20 61 20 6c 69 73 74 20 6f 66 20 61 76 61 69 6c 61 62 6c 65 20 63 | ion.to.get.a.list.of.available.c |
| 44100 | 61 74 65 67 6f 72 69 65 73 2e 20 54 68 6f 73 65 20 63 61 74 65 67 6f 72 69 65 73 20 63 6f 75 6c | ategories..Those.categories.coul |
| 44120 | 64 20 62 65 3a 20 61 6c 6c 2c 20 61 75 74 68 6f 72 69 7a 61 74 69 6f 6e 2c 20 63 6c 75 73 74 65 | d.be:.all,.authorization,.cluste |
| 44140 | 72 2c 20 63 6f 6e 6e 74 72 61 63 6b 2d 73 79 6e 63 2c 20 64 68 63 70 2c 20 64 69 72 65 63 74 6f | r,.conntrack-sync,.dhcp,.directo |
| 44160 | 72 79 2c 20 64 6e 73 2c 20 66 69 6c 65 2c 20 66 69 72 65 77 61 6c 6c 2c 20 68 74 74 70 73 2c 20 | ry,.dns,.file,.firewall,.https,. |
| 44180 | 69 6d 61 67 65 20 6c 6c 64 70 2c 20 6e 61 74 2c 20 6f 70 65 6e 76 70 6e 2c 20 73 6e 6d 70 2c 20 | image.lldp,.nat,.openvpn,.snmp,. |
| 441a0 | 74 61 69 6c 2c 20 76 70 6e 2c 20 76 72 72 70 00 44 69 73 70 6c 61 79 73 20 69 6e 66 6f 72 6d 61 | tail,.vpn,.vrrp.Displays.informa |
| 441c0 | 74 69 6f 6e 20 61 62 6f 75 74 20 61 6c 6c 20 6e 65 69 67 68 62 6f 72 73 20 64 69 73 63 6f 76 65 | tion.about.all.neighbors.discove |
| 441e0 | 72 65 64 20 76 69 61 20 4c 4c 44 50 2e 00 44 69 73 70 6c 61 79 73 20 71 75 65 75 65 20 69 6e 66 | red.via.LLDP..Displays.queue.inf |
| 44200 | 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 61 20 50 50 50 6f 45 20 69 6e 74 65 72 66 61 63 65 2e 00 | ormation.for.a.PPPoE.interface.. |
| 44220 | 44 69 73 70 6c 61 79 73 20 74 68 65 20 72 6f 75 74 65 20 70 61 63 6b 65 74 73 20 74 61 6b 65 6e | Displays.the.route.packets.taken |
| 44240 | 20 74 6f 20 61 20 6e 65 74 77 6f 72 6b 20 68 6f 73 74 20 75 74 69 6c 69 7a 69 6e 67 20 56 52 46 | .to.a.network.host.utilizing.VRF |
| 44260 | 20 69 6e 73 74 61 6e 63 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 6e 61 6d 65 3e 60 | .instance.identified.by.`<name>` |
| 44280 | 2e 20 57 68 65 6e 20 75 73 69 6e 67 20 74 68 65 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 6f 70 | ..When.using.the.IPv4.or.IPv6.op |
| 442a0 | 74 69 6f 6e 2c 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 72 6f 75 74 65 20 70 61 63 6b 65 74 73 | tion,.displays.the.route.packets |
| 442c0 | 20 74 61 6b 65 6e 20 74 6f 20 74 68 65 20 67 69 76 65 6e 20 68 6f 73 74 73 20 49 50 20 61 64 64 | .taken.to.the.given.hosts.IP.add |
| 442e0 | 72 65 73 73 20 66 61 6d 69 6c 79 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 75 73 65 66 | ress.family..This.option.is.usef |
| 44300 | 75 6c 20 77 68 65 6e 20 74 68 65 20 68 6f 73 74 20 69 73 20 73 70 65 63 69 66 69 65 64 20 61 73 | ul.when.the.host.is.specified.as |
| 44320 | 20 61 20 68 6f 73 74 6e 61 6d 65 20 72 61 74 68 65 72 20 74 68 61 6e 20 61 6e 20 49 50 20 61 64 | .a.hostname.rather.than.an.IP.ad |
| 44340 | 64 72 65 73 73 2e 00 44 6f 20 2a 6e 6f 74 2a 20 6d 61 6e 75 61 6c 6c 79 20 65 64 69 74 20 60 2f | dress..Do.*not*.manually.edit.`/ |
| 44360 | 65 74 63 2f 68 6f 73 74 73 60 2e 20 54 68 69 73 20 66 69 6c 65 20 77 69 6c 6c 20 61 75 74 6f 6d | etc/hosts`..This.file.will.autom |
| 44380 | 61 74 69 63 61 6c 6c 79 20 62 65 20 72 65 67 65 6e 65 72 61 74 65 64 20 6f 6e 20 62 6f 6f 74 20 | atically.be.regenerated.on.boot. |
| 443a0 | 62 61 73 65 64 20 6f 6e 20 74 68 65 20 73 65 74 74 69 6e 67 73 20 69 6e 20 74 68 69 73 20 73 65 | based.on.the.settings.in.this.se |
| 443c0 | 63 74 69 6f 6e 2c 20 77 68 69 63 68 20 6d 65 61 6e 73 20 79 6f 75 27 6c 6c 20 6c 6f 73 65 20 61 | ction,.which.means.you'll.lose.a |
| 443e0 | 6c 6c 20 79 6f 75 72 20 6d 61 6e 75 61 6c 20 65 64 69 74 73 2e 20 49 6e 73 74 65 61 64 2c 20 63 | ll.your.manual.edits..Instead,.c |
| 44400 | 6f 6e 66 69 67 75 72 65 20 73 74 61 74 69 63 20 68 6f 73 74 20 6d 61 70 70 69 6e 67 73 20 61 73 | onfigure.static.host.mappings.as |
| 44420 | 20 66 6f 6c 6c 6f 77 73 2e 00 44 6f 20 6e 6f 74 20 61 6c 6c 6f 77 20 49 50 76 34 20 6e 65 78 74 | .follows..Do.not.allow.IPv4.next |
| 44440 | 68 6f 70 20 74 72 61 63 6b 69 6e 67 20 74 6f 20 72 65 73 6f 6c 76 65 20 76 69 61 20 74 68 65 20 | hop.tracking.to.resolve.via.the. |
| 44460 | 64 65 66 61 75 6c 74 20 72 6f 75 74 65 2e 20 54 68 69 73 20 70 61 72 61 6d 65 74 65 72 20 69 73 | default.route..This.parameter.is |
| 44480 | 20 63 6f 6e 66 69 67 75 72 65 64 20 70 65 72 2d 56 52 46 2c 20 73 6f 20 74 68 65 20 63 6f 6d 6d | .configured.per-VRF,.so.the.comm |
| 444a0 | 61 6e 64 20 69 73 20 61 6c 73 6f 20 61 76 61 69 6c 61 62 6c 65 20 69 6e 20 74 68 65 20 56 52 46 | and.is.also.available.in.the.VRF |
| 444c0 | 20 73 75 62 6e 6f 64 65 2e 00 44 6f 20 6e 6f 74 20 61 6c 6c 6f 77 20 49 50 76 36 20 6e 65 78 74 | .subnode..Do.not.allow.IPv6.next |
| 444e0 | 68 6f 70 20 74 72 61 63 6b 69 6e 67 20 74 6f 20 72 65 73 6f 6c 76 65 20 76 69 61 20 74 68 65 20 | hop.tracking.to.resolve.via.the. |
| 44500 | 64 65 66 61 75 6c 74 20 72 6f 75 74 65 2e 20 54 68 69 73 20 70 61 72 61 6d 65 74 65 72 20 69 73 | default.route..This.parameter.is |
| 44520 | 20 63 6f 6e 66 69 67 75 72 65 64 20 70 65 72 2d 56 52 46 2c 20 73 6f 20 74 68 65 20 63 6f 6d 6d | .configured.per-VRF,.so.the.comm |
| 44540 | 61 6e 64 20 69 73 20 61 6c 73 6f 20 61 76 61 69 6c 61 62 6c 65 20 69 6e 20 74 68 65 20 56 52 46 | and.is.also.available.in.the.VRF |
| 44560 | 20 73 75 62 6e 6f 64 65 2e 00 44 6f 20 6e 6f 74 20 61 73 73 69 67 6e 20 61 20 6c 69 6e 6b 2d 6c | .subnode..Do.not.assign.a.link-l |
| 44580 | 6f 63 61 6c 20 49 50 76 36 20 61 64 64 72 65 73 73 20 74 6f 20 74 68 69 73 20 69 6e 74 65 72 66 | ocal.IPv6.address.to.this.interf |
| 445a0 | 61 63 65 2e 00 44 6f 20 6e 6f 74 20 63 6f 6e 66 69 67 75 72 65 20 49 46 42 20 61 73 20 74 68 65 | ace..Do.not.configure.IFB.as.the |
| 445c0 | 20 66 69 72 73 74 20 73 74 65 70 2e 20 46 69 72 73 74 20 63 72 65 61 74 65 20 65 76 65 72 79 74 | .first.step..First.create.everyt |
| 445e0 | 68 69 6e 67 20 65 6c 73 65 20 6f 66 20 79 6f 75 72 20 74 72 61 66 66 69 63 2d 70 6f 6c 69 63 79 | hing.else.of.your.traffic-policy |
| 44600 | 2c 20 61 6e 64 20 74 68 65 6e 20 79 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 49 46 42 | ,.and.then.you.can.configure.IFB |
| 44620 | 2e 20 4f 74 68 65 72 77 69 73 65 20 79 6f 75 20 6d 69 67 68 74 20 67 65 74 20 74 68 65 20 60 60 | ..Otherwise.you.might.get.the.`` |
| 44640 | 52 54 4e 45 54 4c 49 4e 4b 20 61 6e 73 77 65 72 3a 20 46 69 6c 65 20 65 78 69 73 74 73 60 60 20 | RTNETLINK.answer:.File.exists``. |
| 44660 | 65 72 72 6f 72 2c 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 73 6f 6c 76 65 64 20 77 69 74 68 20 | error,.which.can.be.solved.with. |
| 44680 | 60 60 73 75 64 6f 20 69 70 20 6c 69 6e 6b 20 64 65 6c 65 74 65 20 69 66 62 30 60 60 2e 00 44 6f | ``sudo.ip.link.delete.ifb0``..Do |
| 446a0 | 20 6e 6f 74 20 6c 65 61 76 65 20 69 6e 74 72 6f 73 70 65 63 74 69 6f 6e 20 65 6e 61 62 6c 65 64 | .not.leave.introspection.enabled |
| 446c0 | 20 69 6e 20 70 72 6f 64 75 63 74 69 6f 6e 2c 20 69 74 20 69 73 20 61 20 73 65 63 75 72 69 74 79 | .in.production,.it.is.a.security |
| 446e0 | 20 72 69 73 6b 2e 00 44 6f 20 6e 6f 74 20 73 65 6e 64 20 48 61 72 64 20 52 65 73 65 74 20 43 45 | .risk..Do.not.send.Hard.Reset.CE |
| 44700 | 41 53 45 20 4e 6f 74 69 66 69 63 61 74 69 6f 6e 20 66 6f 72 20 22 41 64 6d 69 6e 69 73 74 72 61 | ASE.Notification.for."Administra |
| 44720 | 74 69 76 65 20 52 65 73 65 74 22 20 65 76 65 6e 74 73 2e 20 57 68 65 6e 20 73 65 74 20 61 6e 64 | tive.Reset".events..When.set.and |
| 44740 | 20 47 72 61 63 65 66 75 6c 20 52 65 73 74 61 72 74 20 4e 6f 74 69 66 69 63 61 74 69 6f 6e 20 63 | .Graceful.Restart.Notification.c |
| 44760 | 61 70 61 62 69 6c 69 74 79 20 69 73 20 65 78 63 68 61 6e 67 65 64 20 62 65 74 77 65 65 6e 20 74 | apability.is.exchanged.between.t |
| 44780 | 68 65 20 70 65 65 72 73 2c 20 47 72 61 63 65 66 75 6c 20 52 65 73 74 61 72 74 20 70 72 6f 63 65 | he.peers,.Graceful.Restart.proce |
| 447a0 | 64 75 72 65 73 20 61 70 70 6c 79 2c 20 61 6e 64 20 72 6f 75 74 65 73 20 77 69 6c 6c 20 62 65 20 | dures.apply,.and.routes.will.be. |
| 447c0 | 72 65 74 61 69 6e 65 64 2e 00 44 6f 20 6e 6f 74 20 75 73 65 20 74 68 65 20 6c 6f 63 61 6c 20 60 | retained..Do.not.use.the.local.` |
| 447e0 | 60 2f 65 74 63 2f 68 6f 73 74 73 60 60 20 66 69 6c 65 20 69 6e 20 6e 61 6d 65 20 72 65 73 6f 6c | `/etc/hosts``.file.in.name.resol |
| 44800 | 75 74 69 6f 6e 2e 20 56 79 4f 53 20 44 48 43 50 20 73 65 72 76 65 72 20 77 69 6c 6c 20 75 73 65 | ution..VyOS.DHCP.server.will.use |
| 44820 | 20 74 68 69 73 20 66 69 6c 65 20 74 6f 20 61 64 64 20 72 65 73 6f 6c 76 65 72 73 20 74 6f 20 61 | .this.file.to.add.resolvers.to.a |
| 44840 | 73 73 69 67 6e 65 64 20 61 64 64 72 65 73 73 65 73 2e 00 44 6f 65 73 20 6e 6f 74 20 6e 65 65 64 | ssigned.addresses..Does.not.need |
| 44860 | 20 74 6f 20 62 65 20 75 73 65 64 20 74 6f 67 65 74 68 65 72 20 77 69 74 68 20 70 72 6f 78 79 5f | .to.be.used.together.with.proxy_ |
| 44880 | 61 72 70 2e 00 44 6f 6d 61 69 6e 00 44 6f 6d 61 69 6e 20 47 72 6f 75 70 73 00 44 6f 6d 61 69 6e | arp..Domain.Domain.Groups.Domain |
| 448a0 | 20 4e 61 6d 65 00 44 6f 6d 61 69 6e 20 6e 61 6d 65 28 73 29 20 66 6f 72 20 77 68 69 63 68 20 74 | .Name.Domain.name(s).for.which.t |
| 448c0 | 6f 20 6f 62 74 61 69 6e 20 63 65 72 74 69 66 69 63 61 74 65 00 44 6f 6d 61 69 6e 20 6e 61 6d 65 | o.obtain.certificate.Domain.name |
| 448e0 | 73 20 63 61 6e 20 69 6e 63 6c 75 64 65 20 6c 65 74 74 65 72 73 2c 20 6e 75 6d 62 65 72 73 2c 20 | s.can.include.letters,.numbers,. |
| 44900 | 68 79 70 68 65 6e 73 20 61 6e 64 20 70 65 72 69 6f 64 73 20 77 69 74 68 20 61 20 6d 61 78 69 6d | hyphens.and.periods.with.a.maxim |
| 44920 | 75 6d 20 6c 65 6e 67 74 68 20 6f 66 20 32 35 33 20 63 68 61 72 61 63 74 65 72 73 2e 00 44 6f 6d | um.length.of.253.characters..Dom |
| 44940 | 61 69 6e 20 6e 61 6d 65 73 20 74 6f 20 61 70 70 6c 79 2c 20 6d 75 6c 74 69 70 6c 65 20 64 6f 6d | ain.names.to.apply,.multiple.dom |
| 44960 | 61 69 6e 2d 6e 61 6d 65 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 2e 00 44 6f 6d 61 | ain-names.can.be.specified..Doma |
| 44980 | 69 6e 20 73 65 61 72 63 68 20 6f 72 64 65 72 00 44 6f 6e 27 74 20 62 65 20 61 66 72 61 69 64 20 | in.search.order.Don't.be.afraid. |
| 449a0 | 74 68 61 74 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 72 65 2d 64 6f 20 79 6f 75 72 20 63 6f 6e 66 | that.you.need.to.re-do.your.conf |
| 449c0 | 69 67 75 72 61 74 69 6f 6e 2e 20 4b 65 79 20 74 72 61 6e 73 66 6f 72 6d 61 74 69 6f 6e 20 69 73 | iguration..Key.transformation.is |
| 449e0 | 20 68 61 6e 64 6c 65 64 2c 20 61 73 20 61 6c 77 61 79 73 2c 20 62 79 20 6f 75 72 20 6d 69 67 72 | .handled,.as.always,.by.our.migr |
| 44a00 | 61 74 69 6f 6e 20 73 63 72 69 70 74 73 2c 20 73 6f 20 74 68 69 73 20 77 69 6c 6c 20 62 65 20 61 | ation.scripts,.so.this.will.be.a |
| 44a20 | 20 73 6d 6f 6f 74 68 20 74 72 61 6e 73 69 74 69 6f 6e 20 66 6f 72 20 79 6f 75 21 00 44 6f 6e 27 | .smooth.transition.for.you!.Don' |
| 44a40 | 74 20 66 6f 72 67 65 74 2c 20 74 68 65 20 43 49 44 52 20 64 65 63 6c 61 72 65 64 20 69 6e 20 74 | t.forget,.the.CIDR.declared.in.t |
| 44a60 | 68 65 20 6e 65 74 77 6f 72 6b 20 73 74 61 74 65 6d 65 6e 74 20 2a 2a 4d 55 53 54 20 65 78 69 73 | he.network.statement.**MUST.exis |
| 44a80 | 74 20 69 6e 20 79 6f 75 72 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 28 64 79 6e 61 6d 69 63 | t.in.your.routing.table.(dynamic |
| 44aa0 | 20 6f 72 20 73 74 61 74 69 63 29 2c 20 74 68 65 20 62 65 73 74 20 77 61 79 20 74 6f 20 6d 61 6b | .or.static),.the.best.way.to.mak |
| 44ac0 | 65 20 73 75 72 65 20 74 68 61 74 20 69 73 20 74 72 75 65 20 69 73 20 63 72 65 61 74 69 6e 67 20 | e.sure.that.is.true.is.creating. |
| 44ae0 | 61 20 73 74 61 74 69 63 20 72 6f 75 74 65 3a 2a 2a 00 44 6f 6e 27 74 20 66 6f 72 67 65 74 2c 20 | a.static.route:**.Don't.forget,. |
| 44b00 | 74 68 65 20 43 49 44 52 20 64 65 63 6c 61 72 65 64 20 69 6e 20 74 68 65 20 6e 65 74 77 6f 72 6b | the.CIDR.declared.in.the.network |
| 44b20 | 20 73 74 61 74 65 6d 65 6e 74 20 4d 55 53 54 20 2a 2a 65 78 69 73 74 20 69 6e 20 79 6f 75 72 20 | .statement.MUST.**exist.in.your. |
| 44b40 | 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 28 64 79 6e 61 6d 69 63 20 6f 72 20 73 74 61 74 69 63 | routing.table.(dynamic.or.static |
| 44b60 | 29 2c 20 74 68 65 20 62 65 73 74 20 77 61 79 20 74 6f 20 6d 61 6b 65 20 73 75 72 65 20 74 68 61 | ),.the.best.way.to.make.sure.tha |
| 44b80 | 74 20 69 73 20 74 72 75 65 20 69 73 20 63 72 65 61 74 69 6e 67 20 61 20 73 74 61 74 69 63 20 72 | t.is.true.is.creating.a.static.r |
| 44ba0 | 6f 75 74 65 3a 2a 2a 00 44 6f 6e 27 74 20 67 65 74 20 63 6f 6e 66 75 73 65 64 20 61 62 6f 75 74 | oute:**.Don't.get.confused.about |
| 44bc0 | 20 74 68 65 20 75 73 65 64 20 2f 33 31 20 74 75 6e 6e 65 6c 20 73 75 62 6e 65 74 2e 20 3a 72 66 | .the.used./31.tunnel.subnet..:rf |
| 44be0 | 63 3a 60 33 30 32 31 60 20 67 69 76 65 73 20 79 6f 75 20 61 64 64 69 74 69 6f 6e 61 6c 20 69 6e | c:`3021`.gives.you.additional.in |
| 44c00 | 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 75 73 69 6e 67 20 2f 33 31 20 73 75 62 6e 65 74 73 20 | formation.for.using./31.subnets. |
| 44c20 | 6f 6e 20 70 6f 69 6e 74 2d 74 6f 2d 70 6f 69 6e 74 20 6c 69 6e 6b 73 2e 00 44 6f 77 6e 6c 6f 61 | on.point-to-point.links..Downloa |
| 44c40 | 64 20 62 61 6e 64 77 69 64 74 68 20 6c 69 6d 69 74 20 69 6e 20 6b 62 69 74 2f 73 20 66 6f 72 20 | d.bandwidth.limit.in.kbit/s.for. |
| 44c60 | 60 3c 75 73 65 72 3e 60 2e 00 44 6f 77 6e 6c 6f 61 64 20 62 61 6e 64 77 69 64 74 68 20 6c 69 6d | `<user>`..Download.bandwidth.lim |
| 44c80 | 69 74 20 69 6e 20 6b 62 69 74 2f 73 20 66 6f 72 20 75 73 65 72 20 6f 6e 20 69 6e 74 65 72 66 61 | it.in.kbit/s.for.user.on.interfa |
| 44ca0 | 63 65 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 44 6f 77 6e 6c 6f 61 64 2f 55 70 64 61 74 | ce.`<interface>`..Download/Updat |
| 44cc0 | 65 20 63 6f 6d 70 6c 65 74 65 20 62 6c 61 63 6b 6c 69 73 74 00 44 6f 77 6e 6c 6f 61 64 2f 55 70 | e.complete.blacklist.Download/Up |
| 44ce0 | 64 61 74 65 20 70 61 72 74 69 61 6c 20 62 6c 61 63 6b 6c 69 73 74 2e 00 44 72 6f 70 20 41 53 2d | date.partial.blacklist..Drop.AS- |
| 44d00 | 4e 55 4d 42 45 52 20 66 72 6f 6d 20 74 68 65 20 42 47 50 20 41 53 20 70 61 74 68 2e 00 44 72 6f | NUMBER.from.the.BGP.AS.path..Dro |
| 44d20 | 70 20 54 61 69 6c 00 44 72 6f 70 20 72 61 74 65 00 44 72 6f 70 70 65 64 20 70 61 63 6b 65 74 73 | p.Tail.Drop.rate.Dropped.packets |
| 44d40 | 20 72 65 70 6f 72 74 65 64 20 6f 6e 20 44 52 4f 50 4d 4f 4e 20 4e 65 74 6c 69 6e 6b 20 63 68 61 | .reported.on.DROPMON.Netlink.cha |
| 44d60 | 6e 6e 65 6c 20 62 79 20 4c 69 6e 75 78 20 6b 65 72 6e 65 6c 20 61 72 65 20 65 78 70 6f 72 74 65 | nnel.by.Linux.kernel.are.exporte |
| 44d80 | 64 20 76 69 61 20 74 68 65 20 73 74 61 6e 64 61 72 64 20 73 46 6c 6f 77 20 76 35 20 65 78 74 65 | d.via.the.standard.sFlow.v5.exte |
| 44da0 | 6e 73 69 6f 6e 20 66 6f 72 20 72 65 70 6f 72 74 69 6e 67 20 64 72 6f 70 70 65 64 20 70 61 63 6b | nsion.for.reporting.dropped.pack |
| 44dc0 | 65 74 73 00 44 75 61 6c 2d 53 74 61 63 6b 20 49 50 76 34 2f 49 50 76 36 20 70 72 6f 76 69 73 69 | ets.Dual-Stack.IPv4/IPv6.provisi |
| 44de0 | 6f 6e 69 6e 67 20 77 69 74 68 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 00 44 75 65 | oning.with.Prefix.Delegation.Due |
| 44e00 | 20 74 6f 20 61 20 72 61 63 65 20 63 6f 6e 64 69 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 6c 65 | .to.a.race.condition.that.can.le |
| 44e20 | 61 64 20 74 6f 20 61 20 66 61 69 6c 75 72 65 20 64 75 72 69 6e 67 20 62 6f 6f 74 20 70 72 6f 63 | ad.to.a.failure.during.boot.proc |
| 44e40 | 65 73 73 2c 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 69 6e 69 74 69 61 6c 69 | ess,.all.interfaces.are.initiali |
| 44e60 | 7a 65 64 20 62 65 66 6f 72 65 20 66 69 72 65 77 61 6c 6c 20 69 73 20 63 6f 6e 66 69 67 75 72 65 | zed.before.firewall.is.configure |
| 44e80 | 64 2e 20 54 68 69 73 20 6c 65 61 64 73 20 74 6f 20 61 20 73 69 74 75 61 74 69 6f 6e 20 77 68 65 | d..This.leads.to.a.situation.whe |
| 44ea0 | 72 65 20 74 68 65 20 73 79 73 74 65 6d 20 69 73 20 6f 70 65 6e 20 74 6f 20 61 6c 6c 20 74 72 61 | re.the.system.is.open.to.all.tra |
| 44ec0 | 66 66 69 63 2c 20 61 6e 64 20 63 61 6e 20 62 65 20 63 6f 6e 73 69 64 65 72 65 64 20 61 73 20 61 | ffic,.and.can.be.considered.as.a |
| 44ee0 | 20 73 65 63 75 72 69 74 79 20 72 69 73 6b 2e 00 44 75 6d 6d 79 00 44 75 6d 6d 79 20 69 6e 74 65 | .security.risk..Dummy.Dummy.inte |
| 44f00 | 72 66 61 63 65 00 44 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 73 20 63 61 6e 20 62 65 20 75 73 | rface.Dummy.interfaces.can.be.us |
| 44f20 | 65 64 20 61 73 20 69 6e 74 65 72 66 61 63 65 73 20 74 68 61 74 20 61 6c 77 61 79 73 20 73 74 61 | ed.as.interfaces.that.always.sta |
| 44f40 | 79 20 75 70 20 28 69 6e 20 74 68 65 20 73 61 6d 65 20 66 61 73 68 69 6f 6e 20 74 6f 20 6c 6f 6f | y.up.(in.the.same.fashion.to.loo |
| 44f60 | 70 62 61 63 6b 73 20 69 6e 20 43 69 73 63 6f 20 49 4f 53 29 2c 20 6f 72 20 66 6f 72 20 74 65 73 | pbacks.in.Cisco.IOS),.or.for.tes |
| 44f80 | 74 69 6e 67 20 70 75 72 70 6f 73 65 73 2e 00 44 75 70 6c 69 63 61 74 65 20 70 61 63 6b 65 74 73 | ting.purposes..Duplicate.packets |
| 44fa0 | 20 61 72 65 20 6e 6f 74 20 69 6e 63 6c 75 64 65 64 20 69 6e 20 74 68 65 20 70 61 63 6b 65 74 20 | .are.not.included.in.the.packet. |
| 44fc0 | 6c 6f 73 73 20 63 61 6c 63 75 6c 61 74 69 6f 6e 2c 20 61 6c 74 68 6f 75 67 68 20 74 68 65 20 72 | loss.calculation,.although.the.r |
| 44fe0 | 6f 75 6e 64 2d 74 72 69 70 20 74 69 6d 65 20 6f 66 20 74 68 65 73 65 20 70 61 63 6b 65 74 73 20 | ound-trip.time.of.these.packets. |
| 45000 | 69 73 20 75 73 65 64 20 69 6e 20 63 61 6c 63 75 6c 61 74 69 6e 67 20 74 68 65 20 6d 69 6e 69 6d | is.used.in.calculating.the.minim |
| 45020 | 75 6d 2f 20 61 76 65 72 61 67 65 2f 6d 61 78 69 6d 75 6d 20 72 6f 75 6e 64 2d 74 72 69 70 20 74 | um/.average/maximum.round-trip.t |
| 45040 | 69 6d 65 20 6e 75 6d 62 65 72 73 2e 00 44 75 72 69 6e 67 20 69 6e 69 74 69 61 6c 20 64 65 70 6c | ime.numbers..During.initial.depl |
| 45060 | 6f 79 6d 65 6e 74 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 75 73 69 6e 67 20 74 68 65 20 73 74 | oyment.we.recommend.using.the.st |
| 45080 | 61 67 69 6e 67 20 41 50 49 20 6f 66 20 4c 65 74 73 45 6e 63 72 79 70 74 20 74 6f 20 70 72 65 76 | aging.API.of.LetsEncrypt.to.prev |
| 450a0 | 65 6e 74 20 61 6e 64 20 62 6c 61 63 6b 6c 69 73 74 69 6e 67 20 6f 66 20 79 6f 75 72 20 73 79 73 | ent.and.blacklisting.of.your.sys |
| 450c0 | 74 65 6d 2e 20 54 68 65 20 41 50 49 20 65 6e 64 70 6f 69 6e 74 20 69 73 20 68 74 74 70 73 3a 2f | tem..The.API.endpoint.is.https:/ |
| 450e0 | 2f 61 63 6d 65 2d 73 74 61 67 69 6e 67 2d 76 30 32 2e 61 70 69 2e 6c 65 74 73 65 6e 63 72 79 70 | /acme-staging-v02.api.letsencryp |
| 45100 | 74 2e 6f 72 67 2f 64 69 72 65 63 74 6f 72 79 00 44 75 72 69 6e 67 20 70 72 6f 66 69 6c 65 20 69 | t.org/directory.During.profile.i |
| 45120 | 6d 70 6f 72 74 2c 20 74 68 65 20 75 73 65 72 20 69 73 20 61 73 6b 65 64 20 74 6f 20 65 6e 74 65 | mport,.the.user.is.asked.to.ente |
| 45140 | 72 20 69 74 73 20 49 50 53 65 63 20 63 72 65 64 65 6e 74 69 61 6c 73 20 28 75 73 65 72 6e 61 6d | r.its.IPSec.credentials.(usernam |
| 45160 | 65 20 61 6e 64 20 70 61 73 73 77 6f 72 64 29 20 77 68 69 63 68 20 69 73 20 73 74 6f 72 65 64 20 | e.and.password).which.is.stored. |
| 45180 | 6f 6e 20 74 68 65 20 6d 6f 62 69 6c 65 2e 00 44 79 6e 61 6d 69 63 20 44 4e 53 00 44 79 6e 61 6d | on.the.mobile..Dynamic.DNS.Dynam |
| 451a0 | 69 63 20 47 72 6f 75 70 73 00 44 79 6e 61 6d 69 63 20 61 64 64 72 65 73 73 20 67 72 6f 75 70 20 | ic.Groups.Dynamic.address.group. |
| 451c0 | 69 73 20 73 75 70 70 6f 72 74 65 64 20 62 79 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 | is.supported.by.both.IPv4.and.IP |
| 451e0 | 76 36 20 66 61 6d 69 6c 69 65 73 2e 20 43 6f 6d 6d 61 6e 64 73 20 75 73 65 64 20 74 6f 20 64 65 | v6.families..Commands.used.to.de |
| 45200 | 66 69 6e 65 20 64 79 6e 61 6d 69 63 20 49 50 76 34 7c 49 50 76 36 20 61 64 64 72 65 73 73 20 67 | fine.dynamic.IPv4|IPv6.address.g |
| 45220 | 72 6f 75 70 73 20 61 72 65 3a 00 44 79 6e 61 6d 69 63 2d 70 72 6f 74 65 63 74 69 6f 6e 00 45 41 | roups.are:.Dynamic-protection.EA |
| 45240 | 50 6f 4c 20 63 6f 6d 65 73 20 77 69 74 68 20 61 6e 20 69 64 65 6e 74 69 66 79 20 6f 70 74 69 6f | PoL.comes.with.an.identify.optio |
| 45260 | 6e 2e 20 57 65 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 75 73 65 20 74 68 65 20 69 6e 74 65 | n..We.automatically.use.the.inte |
| 45280 | 72 66 61 63 65 20 4d 41 43 20 61 64 64 72 65 73 73 20 61 73 20 69 64 65 6e 74 69 74 79 20 70 61 | rface.MAC.address.as.identity.pa |
| 452a0 | 72 61 6d 65 74 65 72 2e 00 45 53 50 20 28 45 6e 63 61 70 73 75 6c 61 74 69 6e 67 20 53 65 63 75 | rameter..ESP.(Encapsulating.Secu |
| 452c0 | 72 69 74 79 20 50 61 79 6c 6f 61 64 29 20 41 74 74 72 69 62 75 74 65 73 00 45 53 50 20 50 68 61 | rity.Payload).Attributes.ESP.Pha |
| 452e0 | 73 65 3a 00 45 53 50 20 69 73 20 75 73 65 64 20 74 6f 20 70 72 6f 76 69 64 65 20 63 6f 6e 66 69 | se:.ESP.is.used.to.provide.confi |
| 45300 | 64 65 6e 74 69 61 6c 69 74 79 2c 20 64 61 74 61 20 6f 72 69 67 69 6e 20 61 75 74 68 65 6e 74 69 | dentiality,.data.origin.authenti |
| 45320 | 63 61 74 69 6f 6e 2c 20 63 6f 6e 6e 65 63 74 69 6f 6e 6c 65 73 73 20 69 6e 74 65 67 72 69 74 79 | cation,.connectionless.integrity |
| 45340 | 2c 20 61 6e 20 61 6e 74 69 2d 72 65 70 6c 61 79 20 73 65 72 76 69 63 65 20 28 61 20 66 6f 72 6d | ,.an.anti-replay.service.(a.form |
| 45360 | 20 6f 66 20 70 61 72 74 69 61 6c 20 73 65 71 75 65 6e 63 65 20 69 6e 74 65 67 72 69 74 79 29 2c | .of.partial.sequence.integrity), |
| 45380 | 20 61 6e 64 20 6c 69 6d 69 74 65 64 20 74 72 61 66 66 69 63 20 66 6c 6f 77 20 63 6f 6e 66 69 64 | .and.limited.traffic.flow.confid |
| 453a0 | 65 6e 74 69 61 6c 69 74 79 2e 20 68 74 74 70 73 3a 2f 2f 64 61 74 61 74 72 61 63 6b 65 72 2e 69 | entiality..https://datatracker.i |
| 453c0 | 65 74 66 2e 6f 72 67 2f 64 6f 63 2f 68 74 6d 6c 2f 72 66 63 34 33 30 33 00 45 56 50 4e 20 4d 75 | etf.org/doc/html/rfc4303.EVPN.Mu |
| 453e0 | 6c 74 69 68 6f 6d 69 6e 67 00 45 56 50 4e 2d 4d 48 20 69 73 20 69 6e 74 65 6e 64 65 64 20 61 73 | ltihoming.EVPN-MH.is.intended.as |
| 45400 | 20 61 20 72 65 70 6c 61 63 65 6d 65 6e 74 20 66 6f 72 20 4d 4c 41 47 20 6f 72 20 41 6e 79 63 61 | .a.replacement.for.MLAG.or.Anyca |
| 45420 | 73 74 20 56 54 45 50 73 2e 20 49 6e 20 6d 75 6c 74 69 68 6f 6d 69 6e 67 20 65 61 63 68 20 50 45 | st.VTEPs..In.multihoming.each.PE |
| 45440 | 20 68 61 73 20 61 6e 20 75 6e 69 71 75 65 20 56 54 45 50 20 61 64 64 72 65 73 73 20 77 68 69 63 | .has.an.unique.VTEP.address.whic |
| 45460 | 68 20 72 65 71 75 69 72 65 73 20 74 68 65 20 69 6e 74 72 6f 64 75 63 74 69 6f 6e 20 6f 66 20 61 | h.requires.the.introduction.of.a |
| 45480 | 20 6e 65 77 20 64 61 74 61 70 6c 61 6e 65 20 63 6f 6e 73 74 72 75 63 74 2c 20 4d 41 43 2d 45 43 | .new.dataplane.construct,.MAC-EC |
| 454a0 | 4d 50 2e 20 48 65 72 65 20 61 20 4d 41 43 2f 46 44 42 20 65 6e 74 72 79 20 63 61 6e 20 70 6f 69 | MP..Here.a.MAC/FDB.entry.can.poi |
| 454c0 | 6e 74 20 74 6f 20 61 20 6c 69 73 74 20 6f 66 20 72 65 6d 6f 74 65 20 50 45 73 2f 56 54 45 50 73 | nt.to.a.list.of.remote.PEs/VTEPs |
| 454e0 | 2e 00 45 61 63 68 20 3a 61 62 62 72 3a 60 41 53 20 28 41 75 74 6f 6e 6f 6d 6f 75 73 20 53 79 73 | ..Each.:abbr:`AS.(Autonomous.Sys |
| 45500 | 74 65 6d 29 60 20 68 61 73 20 61 6e 20 69 64 65 6e 74 69 66 79 69 6e 67 20 6e 75 6d 62 65 72 20 | tem)`.has.an.identifying.number. |
| 45520 | 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 69 74 20 63 61 6c 6c 65 64 20 61 6e 20 3a 61 62 | associated.with.it.called.an.:ab |
| 45540 | 62 72 3a 60 41 53 4e 20 28 41 75 74 6f 6e 6f 6d 6f 75 73 20 53 79 73 74 65 6d 20 4e 75 6d 62 65 | br:`ASN.(Autonomous.System.Numbe |
| 45560 | 72 29 60 2e 20 54 68 69 73 20 69 73 20 61 20 74 77 6f 20 6f 63 74 65 74 20 76 61 6c 75 65 20 72 | r)`..This.is.a.two.octet.value.r |
| 45580 | 61 6e 67 69 6e 67 20 69 6e 20 76 61 6c 75 65 20 66 72 6f 6d 20 31 20 74 6f 20 36 35 35 33 35 2e | anging.in.value.from.1.to.65535. |
| 455a0 | 20 54 68 65 20 41 53 20 6e 75 6d 62 65 72 73 20 36 34 35 31 32 20 74 68 72 6f 75 67 68 20 36 35 | .The.AS.numbers.64512.through.65 |
| 455c0 | 35 33 35 20 61 72 65 20 64 65 66 69 6e 65 64 20 61 73 20 70 72 69 76 61 74 65 20 41 53 20 6e 75 | 535.are.defined.as.private.AS.nu |
| 455e0 | 6d 62 65 72 73 2e 20 50 72 69 76 61 74 65 20 41 53 20 6e 75 6d 62 65 72 73 20 6d 75 73 74 20 6e | mbers..Private.AS.numbers.must.n |
| 45600 | 6f 74 20 62 65 20 61 64 76 65 72 74 69 73 65 64 20 6f 6e 20 74 68 65 20 67 6c 6f 62 61 6c 20 49 | ot.be.advertised.on.the.global.I |
| 45620 | 6e 74 65 72 6e 65 74 2e 20 54 68 65 20 32 2d 62 79 74 65 20 41 53 20 6e 75 6d 62 65 72 20 72 61 | nternet..The.2-byte.AS.number.ra |
| 45640 | 6e 67 65 20 68 61 73 20 62 65 65 6e 20 65 78 68 61 75 73 74 65 64 2e 20 34 2d 62 79 74 65 20 41 | nge.has.been.exhausted..4-byte.A |
| 45660 | 53 20 6e 75 6d 62 65 72 73 20 61 72 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 3a 72 66 63 3a | S.numbers.are.specified.in.:rfc: |
| 45680 | 60 36 37 39 33 60 2c 20 61 6e 64 20 70 72 6f 76 69 64 65 20 61 20 70 6f 6f 6c 20 6f 66 20 34 32 | `6793`,.and.provide.a.pool.of.42 |
| 456a0 | 39 34 39 36 37 32 39 36 20 41 53 20 6e 75 6d 62 65 72 73 2e 00 45 61 63 68 20 4e 65 74 66 69 6c | 94967296.AS.numbers..Each.Netfil |
| 456c0 | 74 65 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 75 6e 69 71 75 65 6c 79 20 69 64 65 6e 74 | ter.connection.is.uniquely.ident |
| 456e0 | 69 66 69 65 64 20 62 79 20 61 20 28 6c 61 79 65 72 2d 33 20 70 72 6f 74 6f 63 6f 6c 2c 20 73 6f | ified.by.a.(layer-3.protocol,.so |
| 45700 | 75 72 63 65 20 61 64 64 72 65 73 73 2c 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 | urce.address,.destination.addres |
| 45720 | 73 2c 20 6c 61 79 65 72 2d 34 20 70 72 6f 74 6f 63 6f 6c 2c 20 6c 61 79 65 72 2d 34 20 6b 65 79 | s,.layer-4.protocol,.layer-4.key |
| 45740 | 29 20 74 75 70 6c 65 2e 20 54 68 65 20 6c 61 79 65 72 2d 34 20 6b 65 79 20 64 65 70 65 6e 64 73 | ).tuple..The.layer-4.key.depends |
| 45760 | 20 6f 6e 20 74 68 65 20 74 72 61 6e 73 70 6f 72 74 20 70 72 6f 74 6f 63 6f 6c 3b 20 66 6f 72 20 | .on.the.transport.protocol;.for. |
| 45780 | 54 43 50 2f 55 44 50 20 69 74 20 69 73 20 74 68 65 20 70 6f 72 74 20 6e 75 6d 62 65 72 73 2c 20 | TCP/UDP.it.is.the.port.numbers,. |
| 457a0 | 66 6f 72 20 74 75 6e 6e 65 6c 73 20 69 74 20 63 61 6e 20 62 65 20 74 68 65 69 72 20 74 75 6e 6e | for.tunnels.it.can.be.their.tunn |
| 457c0 | 65 6c 20 49 44 2c 20 62 75 74 20 6f 74 68 65 72 77 69 73 65 20 69 73 20 6a 75 73 74 20 7a 65 72 | el.ID,.but.otherwise.is.just.zer |
| 457e0 | 6f 2c 20 61 73 20 69 66 20 69 74 20 77 65 72 65 20 6e 6f 74 20 70 61 72 74 20 6f 66 20 74 68 65 | o,.as.if.it.were.not.part.of.the |
| 45800 | 20 74 75 70 6c 65 2e 20 54 6f 20 62 65 20 61 62 6c 65 20 74 6f 20 69 6e 73 70 65 63 74 20 74 68 | .tuple..To.be.able.to.inspect.th |
| 45820 | 65 20 54 43 50 20 70 6f 72 74 20 69 6e 20 61 6c 6c 20 63 61 73 65 73 2c 20 70 61 63 6b 65 74 73 | e.TCP.port.in.all.cases,.packets |
| 45840 | 20 77 69 6c 6c 20 62 65 20 6d 61 6e 64 61 74 6f 72 69 6c 79 20 64 65 66 72 61 67 6d 65 6e 74 65 | .will.be.mandatorily.defragmente |
| 45860 | 64 2e 00 45 61 63 68 20 56 58 4c 41 4e 20 73 65 67 6d 65 6e 74 20 69 73 20 69 64 65 6e 74 69 66 | d..Each.VXLAN.segment.is.identif |
| 45880 | 69 65 64 20 74 68 72 6f 75 67 68 20 61 20 32 34 2d 62 69 74 20 73 65 67 6d 65 6e 74 20 49 44 2c | ied.through.a.24-bit.segment.ID, |
| 458a0 | 20 74 65 72 6d 65 64 20 74 68 65 20 3a 61 62 62 72 3a 60 56 4e 49 20 28 56 58 4c 41 4e 20 4e 65 | .termed.the.:abbr:`VNI.(VXLAN.Ne |
| 458c0 | 74 77 6f 72 6b 20 49 64 65 6e 74 69 66 69 65 72 20 28 6f 72 20 56 58 4c 41 4e 20 53 65 67 6d 65 | twork.Identifier.(or.VXLAN.Segme |
| 458e0 | 6e 74 20 49 44 29 29 60 2c 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 75 70 20 74 6f 20 31 36 4d 20 | nt.ID))`,.This.allows.up.to.16M. |
| 45900 | 56 58 4c 41 4e 20 73 65 67 6d 65 6e 74 73 20 74 6f 20 63 6f 65 78 69 73 74 20 77 69 74 68 69 6e | VXLAN.segments.to.coexist.within |
| 45920 | 20 74 68 65 20 73 61 6d 65 20 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 20 64 6f 6d 61 69 6e 2e | .the.same.administrative.domain. |
| 45940 | 00 45 61 63 68 20 62 72 69 64 67 65 20 68 61 73 20 61 20 72 65 6c 61 74 69 76 65 20 70 72 69 6f | .Each.bridge.has.a.relative.prio |
| 45960 | 72 69 74 79 20 61 6e 64 20 63 6f 73 74 2e 20 45 61 63 68 20 69 6e 74 65 72 66 61 63 65 20 69 73 | rity.and.cost..Each.interface.is |
| 45980 | 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 61 20 70 6f 72 74 20 28 6e 75 6d 62 65 72 29 | .associated.with.a.port.(number) |
| 459a0 | 20 69 6e 20 74 68 65 20 53 54 50 20 63 6f 64 65 2e 20 45 61 63 68 20 68 61 73 20 61 20 70 72 69 | .in.the.STP.code..Each.has.a.pri |
| 459c0 | 6f 72 69 74 79 20 61 6e 64 20 61 20 63 6f 73 74 2c 20 74 68 61 74 20 69 73 20 75 73 65 64 20 74 | ority.and.a.cost,.that.is.used.t |
| 459e0 | 6f 20 64 65 63 69 64 65 20 77 68 69 63 68 20 69 73 20 74 68 65 20 73 68 6f 72 74 65 73 74 20 70 | o.decide.which.is.the.shortest.p |
| 45a00 | 61 74 68 20 74 6f 20 66 6f 72 77 61 72 64 20 61 20 70 61 63 6b 65 74 2e 20 54 68 65 20 6c 6f 77 | ath.to.forward.a.packet..The.low |
| 45a20 | 65 73 74 20 63 6f 73 74 20 70 61 74 68 20 69 73 20 61 6c 77 61 79 73 20 75 73 65 64 20 75 6e 6c | est.cost.path.is.always.used.unl |
| 45a40 | 65 73 73 20 74 68 65 20 6f 74 68 65 72 20 70 61 74 68 20 69 73 20 64 6f 77 6e 2e 20 49 66 20 79 | ess.the.other.path.is.down..If.y |
| 45a60 | 6f 75 20 68 61 76 65 20 6d 75 6c 74 69 70 6c 65 20 62 72 69 64 67 65 73 20 61 6e 64 20 69 6e 74 | ou.have.multiple.bridges.and.int |
| 45a80 | 65 72 66 61 63 65 73 20 74 68 65 6e 20 79 6f 75 20 6d 61 79 20 6e 65 65 64 20 74 6f 20 61 64 6a | erfaces.then.you.may.need.to.adj |
| 45aa0 | 75 73 74 20 74 68 65 20 70 72 69 6f 72 69 74 69 65 73 20 74 6f 20 61 63 68 69 65 76 65 20 6f 70 | ust.the.priorities.to.achieve.op |
| 45ac0 | 74 69 6d 75 6d 20 70 65 72 66 6f 72 6d 61 6e 63 65 2e 00 45 61 63 68 20 62 72 6f 61 64 63 61 73 | timum.performance..Each.broadcas |
| 45ae0 | 74 20 72 65 6c 61 79 20 69 6e 73 74 61 6e 63 65 20 63 61 6e 20 62 65 20 69 6e 64 69 76 69 64 75 | t.relay.instance.can.be.individu |
| 45b00 | 61 6c 6c 79 20 64 69 73 61 62 6c 65 64 20 77 69 74 68 6f 75 74 20 64 65 6c 65 74 69 6e 67 20 74 | ally.disabled.without.deleting.t |
| 45b20 | 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6e 6f 64 65 20 62 79 20 75 73 69 6e 67 20 74 68 65 20 | he.configured.node.by.using.the. |
| 45b40 | 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 3a 00 45 61 63 68 20 63 6c 61 73 73 20 63 61 | following.command:.Each.class.ca |
| 45b60 | 6e 20 68 61 76 65 20 61 20 67 75 61 72 61 6e 74 65 65 64 20 70 61 72 74 20 6f 66 20 74 68 65 20 | n.have.a.guaranteed.part.of.the. |
| 45b80 | 74 6f 74 61 6c 20 62 61 6e 64 77 69 64 74 68 20 64 65 66 69 6e 65 64 20 66 6f 72 20 74 68 65 20 | total.bandwidth.defined.for.the. |
| 45ba0 | 77 68 6f 6c 65 20 70 6f 6c 69 63 79 2c 20 73 6f 20 61 6c 6c 20 74 68 6f 73 65 20 73 68 61 72 65 | whole.policy,.so.all.those.share |
| 45bc0 | 73 20 74 6f 67 65 74 68 65 72 20 73 68 6f 75 6c 64 20 6e 6f 74 20 62 65 20 68 69 67 68 65 72 20 | s.together.should.not.be.higher. |
| 45be0 | 74 68 61 6e 20 74 68 65 20 70 6f 6c 69 63 79 27 73 20 77 68 6f 6c 65 20 62 61 6e 64 77 69 64 74 | than.the.policy's.whole.bandwidt |
| 45c00 | 68 2e 00 45 61 63 68 20 63 6c 61 73 73 20 69 73 20 61 73 73 69 67 6e 65 64 20 61 20 64 65 66 69 | h..Each.class.is.assigned.a.defi |
| 45c20 | 63 69 74 20 63 6f 75 6e 74 65 72 20 28 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 62 79 74 65 73 | cit.counter.(the.number.of.bytes |
| 45c40 | 20 74 68 61 74 20 61 20 66 6c 6f 77 20 69 73 20 61 6c 6c 6f 77 65 64 20 74 6f 20 74 72 61 6e 73 | .that.a.flow.is.allowed.to.trans |
| 45c60 | 6d 69 74 20 77 68 65 6e 20 69 74 20 69 73 20 69 74 73 20 74 75 72 6e 29 20 69 6e 69 74 69 61 6c | mit.when.it.is.its.turn).initial |
| 45c80 | 69 7a 65 64 20 74 6f 20 71 75 61 6e 74 75 6d 2e 20 51 75 61 6e 74 75 6d 20 69 73 20 61 20 70 61 | ized.to.quantum..Quantum.is.a.pa |
| 45ca0 | 72 61 6d 65 74 65 72 20 79 6f 75 20 63 6f 6e 66 69 67 75 72 65 20 77 68 69 63 68 20 61 63 74 73 | rameter.you.configure.which.acts |
| 45cc0 | 20 6c 69 6b 65 20 61 20 63 72 65 64 69 74 20 6f 66 20 66 69 78 20 62 79 74 65 73 20 74 68 65 20 | .like.a.credit.of.fix.bytes.the. |
| 45ce0 | 63 6f 75 6e 74 65 72 20 72 65 63 65 69 76 65 73 20 6f 6e 20 65 61 63 68 20 72 6f 75 6e 64 2e 20 | counter.receives.on.each.round.. |
| 45d00 | 54 68 65 6e 20 74 68 65 20 52 6f 75 6e 64 2d 52 6f 62 69 6e 20 70 6f 6c 69 63 79 20 73 74 61 72 | Then.the.Round-Robin.policy.star |
| 45d20 | 74 73 20 6d 6f 76 69 6e 67 20 69 74 73 20 52 6f 75 6e 64 20 52 6f 62 69 6e 20 70 6f 69 6e 74 65 | ts.moving.its.Round.Robin.pointe |
| 45d40 | 72 20 74 68 72 6f 75 67 68 20 74 68 65 20 71 75 65 75 65 73 2e 20 49 66 20 74 68 65 20 64 65 66 | r.through.the.queues..If.the.def |
| 45d60 | 69 63 69 74 20 63 6f 75 6e 74 65 72 20 69 73 20 67 72 65 61 74 65 72 20 74 68 61 6e 20 74 68 65 | icit.counter.is.greater.than.the |
| 45d80 | 20 70 61 63 6b 65 74 27 73 20 73 69 7a 65 20 61 74 20 74 68 65 20 68 65 61 64 20 6f 66 20 74 68 | .packet's.size.at.the.head.of.th |
| 45da0 | 65 20 71 75 65 75 65 2c 20 74 68 69 73 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 73 65 6e | e.queue,.this.packet.will.be.sen |
| 45dc0 | 74 20 61 6e 64 20 74 68 65 20 76 61 6c 75 65 20 6f 66 20 74 68 65 20 63 6f 75 6e 74 65 72 20 77 | t.and.the.value.of.the.counter.w |
| 45de0 | 69 6c 6c 20 62 65 20 64 65 63 72 65 6d 65 6e 74 65 64 20 62 79 20 74 68 65 20 70 61 63 6b 65 74 | ill.be.decremented.by.the.packet |
| 45e00 | 20 73 69 7a 65 2e 20 54 68 65 6e 2c 20 74 68 65 20 73 69 7a 65 20 6f 66 20 74 68 65 20 6e 65 78 | .size..Then,.the.size.of.the.nex |
| 45e20 | 74 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 63 6f 6d 70 61 72 65 64 20 74 6f 20 74 68 65 | t.packet.will.be.compared.to.the |
| 45e40 | 20 63 6f 75 6e 74 65 72 20 76 61 6c 75 65 20 61 67 61 69 6e 2c 20 72 65 70 65 61 74 69 6e 67 20 | .counter.value.again,.repeating. |
| 45e60 | 74 68 65 20 70 72 6f 63 65 73 73 2e 20 4f 6e 63 65 20 74 68 65 20 71 75 65 75 65 20 69 73 20 65 | the.process..Once.the.queue.is.e |
| 45e80 | 6d 70 74 79 20 6f 72 20 74 68 65 20 76 61 6c 75 65 20 6f 66 20 74 68 65 20 63 6f 75 6e 74 65 72 | mpty.or.the.value.of.the.counter |
| 45ea0 | 20 69 73 20 69 6e 73 75 66 66 69 63 69 65 6e 74 2c 20 74 68 65 20 52 6f 75 6e 64 2d 52 6f 62 69 | .is.insufficient,.the.Round-Robi |
| 45ec0 | 6e 20 70 6f 69 6e 74 65 72 20 77 69 6c 6c 20 6d 6f 76 65 20 74 6f 20 74 68 65 20 6e 65 78 74 20 | n.pointer.will.move.to.the.next. |
| 45ee0 | 71 75 65 75 65 2e 20 49 66 20 74 68 65 20 71 75 65 75 65 20 69 73 20 65 6d 70 74 79 2c 20 74 68 | queue..If.the.queue.is.empty,.th |
| 45f00 | 65 20 76 61 6c 75 65 20 6f 66 20 74 68 65 20 64 65 66 69 63 69 74 20 63 6f 75 6e 74 65 72 20 69 | e.value.of.the.deficit.counter.i |
| 45f20 | 73 20 72 65 73 65 74 20 74 6f 20 30 2e 00 45 61 63 68 20 64 79 6e 61 6d 69 63 20 4e 48 53 20 77 | s.reset.to.0..Each.dynamic.NHS.w |
| 45f40 | 69 6c 6c 20 67 65 74 20 61 20 70 65 65 72 20 65 6e 74 72 79 20 77 69 74 68 20 74 68 65 20 63 6f | ill.get.a.peer.entry.with.the.co |
| 45f60 | 6e 66 69 67 75 72 65 64 20 6e 65 74 77 6f 72 6b 20 61 64 64 72 65 73 73 20 61 6e 64 20 74 68 65 | nfigured.network.address.and.the |
| 45f80 | 20 64 69 73 63 6f 76 65 72 65 64 20 4e 42 4d 41 20 61 64 64 72 65 73 73 2e 00 45 61 63 68 20 68 | .discovered.NBMA.address..Each.h |
| 45fa0 | 65 61 6c 74 68 20 63 68 65 63 6b 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 69 74 73 | ealth.check.is.configured.in.its |
| 45fc0 | 20 6f 77 6e 20 74 65 73 74 2c 20 74 65 73 74 73 20 61 72 65 20 6e 75 6d 62 65 72 65 64 20 61 6e | .own.test,.tests.are.numbered.an |
| 45fe0 | 64 20 70 72 6f 63 65 73 73 65 64 20 69 6e 20 6e 75 6d 65 72 69 63 20 6f 72 64 65 72 2e 20 46 6f | d.processed.in.numeric.order..Fo |
| 46000 | 72 20 6d 75 6c 74 69 20 74 61 72 67 65 74 20 68 65 61 6c 74 68 20 63 68 65 63 6b 69 6e 67 20 6d | r.multi.target.health.checking.m |
| 46020 | 75 6c 74 69 70 6c 65 20 74 65 73 74 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 3a 00 45 61 | ultiple.tests.can.be.defined:.Ea |
| 46040 | 63 68 20 69 6e 64 69 76 69 64 75 61 6c 20 63 6f 6e 66 69 67 75 72 65 64 20 63 6f 6e 73 6f 6c 65 | ch.individual.configured.console |
| 46060 | 2d 73 65 72 76 65 72 20 64 65 76 69 63 65 20 63 61 6e 20 62 65 20 64 69 72 65 63 74 6c 79 20 65 | -server.device.can.be.directly.e |
| 46080 | 78 70 6f 73 65 64 20 74 6f 20 74 68 65 20 6f 75 74 73 69 64 65 20 77 6f 72 6c 64 2e 20 41 20 75 | xposed.to.the.outside.world..A.u |
| 460a0 | 73 65 72 20 63 61 6e 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 74 20 76 69 61 20 53 53 48 | ser.can.directly.connect.via.SSH |
| 460c0 | 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 70 6f 72 74 2e 00 45 61 63 68 20 6e 6f | .to.the.configured.port..Each.no |
| 460e0 | 64 65 20 28 48 75 62 20 61 6e 64 20 53 70 6f 6b 65 29 20 75 73 65 73 20 61 6e 20 49 50 20 61 64 | de.(Hub.and.Spoke).uses.an.IP.ad |
| 46100 | 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 31 37 32 2e 31 36 2e 32 35 | dress.from.the.network.172.16.25 |
| 46120 | 33 2e 31 32 38 2f 32 39 2e 00 45 61 63 68 20 6f 66 20 74 68 65 20 69 6e 73 74 61 6c 6c 20 63 6f | 3.128/29..Each.of.the.install.co |
| 46140 | 6d 6d 61 6e 64 20 73 68 6f 75 6c 64 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 63 | mmand.should.be.applied.to.the.c |
| 46160 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 6e 64 20 63 6f 6d 6d 69 74 65 64 20 62 65 66 6f 72 65 | onfiguration.and.commited.before |
| 46180 | 20 75 73 69 6e 67 20 75 6e 64 65 72 20 74 68 65 20 6f 70 65 6e 63 6f 6e 6e 65 63 74 20 63 6f 6e | .using.under.the.openconnect.con |
| 461a0 | 66 69 67 75 72 61 74 69 6f 6e 3a 00 45 61 63 68 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 70 65 | figuration:.Each.site-to-site.pe |
| 461c0 | 65 72 20 68 61 73 20 74 68 65 20 6e 65 78 74 20 6f 70 74 69 6f 6e 73 3a 00 45 61 63 68 20 73 75 | er.has.the.next.options:.Each.su |
| 461e0 | 62 73 63 72 69 62 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 61 20 6d 61 78 | bscriber.will.be.allocated.a.max |
| 46200 | 69 6d 75 6d 20 6f 66 20 32 30 30 30 20 70 6f 72 74 73 20 66 72 6f 6d 20 74 68 65 20 65 78 74 65 | imum.of.2000.ports.from.the.exte |
| 46220 | 72 6e 61 6c 20 70 6f 6f 6c 2e 00 45 65 6e 61 62 6c 65 73 20 74 68 65 20 47 65 6e 65 72 69 63 20 | rnal.pool..Eenables.the.Generic. |
| 46240 | 50 72 6f 74 6f 63 6f 6c 20 65 78 74 65 6e 73 69 6f 6e 20 28 56 58 4c 41 4e 2d 47 50 45 29 2e 20 | Protocol.extension.(VXLAN-GPE).. |
| 46260 | 43 75 72 72 65 6e 74 6c 79 2c 20 74 68 69 73 20 69 73 20 6f 6e 6c 79 20 73 75 70 70 6f 72 74 65 | Currently,.this.is.only.supporte |
| 46280 | 64 20 74 6f 67 65 74 68 65 72 20 77 69 74 68 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6b 65 79 | d.together.with.the.external.key |
| 462a0 | 77 6f 72 64 2e 00 45 6d 61 69 6c 20 61 64 64 72 65 73 73 20 74 6f 20 61 73 73 6f 63 69 61 74 65 | word..Email.address.to.associate |
| 462c0 | 20 77 69 74 68 20 63 65 72 74 69 66 69 63 61 74 65 00 45 6d 61 69 6c 20 75 73 65 64 20 66 6f 72 | .with.certificate.Email.used.for |
| 462e0 | 20 72 65 67 69 73 74 72 61 74 69 6f 6e 20 61 6e 64 20 72 65 63 6f 76 65 72 79 20 63 6f 6e 74 61 | .registration.and.recovery.conta |
| 46300 | 63 74 2e 00 45 6d 62 65 64 64 69 6e 67 20 6f 6e 65 20 70 6f 6c 69 63 79 20 69 6e 74 6f 20 61 6e | ct..Embedding.one.policy.into.an |
| 46320 | 6f 74 68 65 72 20 6f 6e 65 00 45 6d 65 72 67 65 6e 63 79 00 45 6e 61 62 6c 65 20 3a 61 62 62 72 | other.one.Emergency.Enable.:abbr |
| 46340 | 3a 60 42 4d 50 20 28 42 47 50 20 4d 6f 6e 69 74 6f 72 69 6e 67 20 50 72 6f 74 6f 63 6f 6c 29 60 | :`BMP.(BGP.Monitoring.Protocol)` |
| 46360 | 20 73 75 70 70 6f 72 74 00 45 6e 61 62 6c 65 20 42 46 44 20 66 6f 72 20 49 53 49 53 20 6f 6e 20 | .support.Enable.BFD.for.ISIS.on. |
| 46380 | 61 6e 20 69 6e 74 65 72 66 61 63 65 00 45 6e 61 62 6c 65 20 42 46 44 20 66 6f 72 20 4f 53 50 46 | an.interface.Enable.BFD.for.OSPF |
| 463a0 | 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 00 45 6e 61 62 6c 65 20 42 46 44 20 66 6f 72 20 | .on.an.interface.Enable.BFD.for. |
| 463c0 | 4f 53 50 46 76 33 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 00 45 6e 61 62 6c 65 20 42 46 | OSPFv3.on.an.interface.Enable.BF |
| 463e0 | 44 20 69 6e 20 42 47 50 00 45 6e 61 62 6c 65 20 42 46 44 20 69 6e 20 49 53 49 53 00 45 6e 61 62 | D.in.BGP.Enable.BFD.in.ISIS.Enab |
| 46400 | 6c 65 20 42 46 44 20 69 6e 20 4f 53 50 46 00 45 6e 61 62 6c 65 20 42 46 44 20 6f 6e 20 61 20 42 | le.BFD.in.OSPF.Enable.BFD.on.a.B |
| 46420 | 47 50 20 70 65 65 72 20 67 72 6f 75 70 00 45 6e 61 62 6c 65 20 42 46 44 20 6f 6e 20 61 20 73 69 | GP.peer.group.Enable.BFD.on.a.si |
| 46440 | 6e 67 6c 65 20 42 47 50 20 6e 65 69 67 68 62 6f 72 00 45 6e 61 62 6c 65 20 44 48 43 50 20 66 61 | ngle.BGP.neighbor.Enable.DHCP.fa |
| 46460 | 69 6c 6f 76 65 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 74 68 69 73 20 61 64 | ilover.configuration.for.this.ad |
| 46480 | 64 72 65 73 73 20 70 6f 6f 6c 2e 00 45 6e 61 62 6c 65 20 47 72 61 70 68 51 4c 20 53 63 68 65 6d | dress.pool..Enable.GraphQL.Schem |
| 464a0 | 61 20 69 6e 74 72 6f 73 70 65 63 74 69 6f 6e 2e 00 45 6e 61 62 6c 65 20 48 54 2d 64 65 6c 61 79 | a.introspection..Enable.HT-delay |
| 464c0 | 65 64 20 42 6c 6f 63 6b 20 41 63 6b 20 60 60 5b 44 45 4c 41 59 45 44 2d 42 41 5d 60 60 00 45 6e | ed.Block.Ack.``[DELAYED-BA]``.En |
| 464e0 | 61 62 6c 65 20 49 43 4d 50 20 52 6f 75 74 65 72 20 44 69 73 63 6f 76 65 72 79 20 50 72 6f 74 6f | able.ICMP.Router.Discovery.Proto |
| 46500 | 63 6f 6c 20 73 75 70 70 6f 72 74 00 45 6e 61 62 6c 65 20 49 47 4d 50 20 61 6e 64 20 4d 4c 44 20 | col.support.Enable.IGMP.and.MLD. |
| 46520 | 71 75 65 72 69 65 72 2e 00 45 6e 61 62 6c 65 20 49 47 4d 50 20 61 6e 64 20 4d 4c 44 20 73 6e 6f | querier..Enable.IGMP.and.MLD.sno |
| 46540 | 6f 70 69 6e 67 2e 00 45 6e 61 62 6c 65 20 49 50 20 66 6f 72 77 61 72 64 69 6e 67 20 6f 6e 20 63 | oping..Enable.IP.forwarding.on.c |
| 46560 | 6c 69 65 6e 74 00 45 6e 61 62 6c 65 20 49 53 2d 49 53 00 45 6e 61 62 6c 65 20 49 53 2d 49 53 20 | lient.Enable.IS-IS.Enable.IS-IS. |
| 46580 | 61 6e 64 20 49 47 50 2d 4c 44 50 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 00 45 6e 61 62 | and.IGP-LDP.synchronization.Enab |
| 465a0 | 6c 65 20 49 53 2d 49 53 20 61 6e 64 20 72 65 64 69 73 74 72 69 62 75 74 65 20 72 6f 75 74 65 73 | le.IS-IS.and.redistribute.routes |
| 465c0 | 20 6e 6f 74 20 6e 61 74 69 76 65 6c 79 20 69 6e 20 49 53 2d 49 53 00 45 6e 61 62 6c 65 20 49 53 | .not.natively.in.IS-IS.Enable.IS |
| 465e0 | 2d 49 53 20 77 69 74 68 20 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 28 45 78 70 65 72 69 | -IS.with.Segment.Routing.(Experi |
| 46600 | 6d 65 6e 74 61 6c 29 00 45 6e 61 62 6c 65 20 4c 2d 53 49 47 20 54 58 4f 50 20 70 72 6f 74 65 63 | mental).Enable.L-SIG.TXOP.protec |
| 46620 | 74 69 6f 6e 20 63 61 70 61 62 69 6c 69 74 79 00 45 6e 61 62 6c 65 20 4c 44 50 43 20 28 4c 6f 77 | tion.capability.Enable.LDPC.(Low |
| 46640 | 20 44 65 6e 73 69 74 79 20 50 61 72 69 74 79 20 43 68 65 63 6b 29 20 63 6f 64 69 6e 67 20 63 61 | .Density.Parity.Check).coding.ca |
| 46660 | 70 61 62 69 6c 69 74 79 00 45 6e 61 62 6c 65 20 4c 44 50 43 20 63 6f 64 69 6e 67 20 63 61 70 61 | pability.Enable.LDPC.coding.capa |
| 46680 | 62 69 6c 69 74 79 00 45 6e 61 62 6c 65 20 4c 4c 44 50 20 73 65 72 76 69 63 65 00 45 6e 61 62 6c | bility.Enable.LLDP.service.Enabl |
| 466a0 | 65 20 4f 53 50 46 00 45 6e 61 62 6c 65 20 4f 53 50 46 20 61 6e 64 20 49 47 50 2d 4c 44 50 20 73 | e.OSPF.Enable.OSPF.and.IGP-LDP.s |
| 466c0 | 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 3a 00 45 6e 61 62 6c 65 20 4f 53 50 46 20 77 69 74 68 | ynchronization:.Enable.OSPF.with |
| 466e0 | 20 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 28 45 78 70 65 72 69 6d 65 6e 74 61 6c 29 3a | .Segment.Routing.(Experimental): |
| 46700 | 00 45 6e 61 62 6c 65 20 4f 53 50 46 20 77 69 74 68 20 72 6f 75 74 65 20 72 65 64 69 73 74 72 69 | .Enable.OSPF.with.route.redistri |
| 46720 | 62 75 74 69 6f 6e 20 6f 66 20 74 68 65 20 6c 6f 6f 70 62 61 63 6b 20 61 6e 64 20 64 65 66 61 75 | bution.of.the.loopback.and.defau |
| 46740 | 6c 74 20 6f 72 69 67 69 6e 61 74 65 3a 00 45 6e 61 62 6c 65 20 4f 54 50 20 32 46 41 20 66 6f 72 | lt.originate:.Enable.OTP.2FA.for |
| 46760 | 20 75 73 65 72 20 60 75 73 65 72 6e 61 6d 65 60 20 77 69 74 68 20 64 65 66 61 75 6c 74 20 73 65 | .user.`username`.with.default.se |
| 46780 | 74 74 69 6e 67 73 2c 20 75 73 69 6e 67 20 74 68 65 20 42 41 53 45 33 32 20 65 6e 63 6f 64 65 64 | ttings,.using.the.BASE32.encoded |
| 467a0 | 20 32 46 41 2f 4d 46 41 20 6b 65 79 20 73 70 65 63 69 66 69 65 64 20 62 79 20 60 3c 6b 65 79 3e | .2FA/MFA.key.specified.by.`<key> |
| 467c0 | 60 2e 00 45 6e 61 62 6c 65 20 4f 70 65 6e 46 61 62 72 69 63 00 45 6e 61 62 6c 65 20 4f 70 65 6e | `..Enable.OpenFabric.Enable.Open |
| 467e0 | 56 50 4e 20 44 61 74 61 20 43 68 61 6e 6e 65 6c 20 4f 66 66 6c 6f 61 64 20 66 65 61 74 75 72 65 | VPN.Data.Channel.Offload.feature |
| 46800 | 20 62 79 20 6c 6f 61 64 69 6e 67 20 74 68 65 20 61 70 70 72 6f 70 72 69 61 74 65 20 6b 65 72 6e | .by.loading.the.appropriate.kern |
| 46820 | 65 6c 20 6d 6f 64 75 6c 65 2e 00 45 6e 61 62 6c 65 20 50 52 45 46 36 34 20 6f 70 74 69 6f 6e 20 | el.module..Enable.PREF64.option. |
| 46840 | 61 73 20 6f 75 74 6c 69 6e 65 64 20 69 6e 20 3a 72 66 63 3a 60 38 37 38 31 60 2e 00 45 6e 61 62 | as.outlined.in.:rfc:`8781`..Enab |
| 46860 | 6c 65 20 52 45 53 54 20 41 50 49 00 45 6e 61 62 6c 65 20 53 4e 4d 50 00 45 6e 61 62 6c 65 20 53 | le.REST.API.Enable.SNMP.Enable.S |
| 46880 | 4e 4d 50 20 71 75 65 72 69 65 73 20 6f 66 20 74 68 65 20 4c 4c 44 50 20 64 61 74 61 62 61 73 65 | NMP.queries.of.the.LLDP.database |
| 468a0 | 00 45 6e 61 62 6c 65 20 53 4e 4d 50 20 73 75 70 70 6f 72 74 20 66 6f 72 20 61 6e 20 69 6e 64 69 | .Enable.SNMP.support.for.an.indi |
| 468c0 | 76 69 64 75 61 6c 20 72 6f 75 74 69 6e 67 20 64 61 65 6d 6f 6e 2e 00 45 6e 61 62 6c 65 20 53 54 | vidual.routing.daemon..Enable.ST |
| 468e0 | 50 00 45 6e 61 62 6c 65 20 54 46 54 50 20 73 65 72 76 69 63 65 20 62 79 20 73 70 65 63 69 66 79 | P.Enable.TFTP.service.by.specify |
| 46900 | 69 6e 67 20 74 68 65 20 60 3c 64 69 72 65 63 74 6f 72 79 3e 60 20 77 68 69 63 68 20 77 69 6c 6c | ing.the.`<directory>`.which.will |
| 46920 | 20 62 65 20 75 73 65 64 20 74 6f 20 73 65 72 76 65 20 66 69 6c 65 73 2e 00 45 6e 61 62 6c 65 20 | .be.used.to.serve.files..Enable. |
| 46940 | 56 48 54 20 54 58 4f 50 20 50 6f 77 65 72 20 53 61 76 65 20 4d 6f 64 65 00 45 6e 61 62 6c 65 20 | VHT.TXOP.Power.Save.Mode.Enable. |
| 46960 | 56 4c 41 4e 2d 41 77 61 72 65 20 42 72 69 64 67 65 00 45 6e 61 62 6c 65 20 61 75 74 6f 6d 61 74 | VLAN-Aware.Bridge.Enable.automat |
| 46980 | 69 63 20 72 65 64 69 72 65 63 74 20 66 72 6f 6d 20 68 74 74 70 20 74 6f 20 68 74 74 70 73 2e 00 | ic.redirect.from.http.to.https.. |
| 469a0 | 45 6e 61 62 6c 65 20 63 72 65 61 74 69 6f 6e 20 6f 66 20 73 68 6f 72 74 63 75 74 20 72 6f 75 74 | Enable.creation.of.shortcut.rout |
| 469c0 | 65 73 2e 00 45 6e 61 62 6c 65 20 64 69 66 66 65 72 65 6e 74 20 74 79 70 65 73 20 6f 66 20 68 61 | es..Enable.different.types.of.ha |
| 469e0 | 72 64 77 61 72 65 20 6f 66 66 6c 6f 61 64 69 6e 67 20 6f 6e 20 74 68 65 20 67 69 76 65 6e 20 4e | rdware.offloading.on.the.given.N |
| 46a00 | 49 43 2e 00 45 6e 61 62 6c 65 20 67 69 76 65 6e 20 6c 65 67 61 63 79 20 70 72 6f 74 6f 63 6f 6c | IC..Enable.given.legacy.protocol |
| 46a20 | 20 6f 6e 20 74 68 69 73 20 4c 4c 44 50 20 69 6e 73 74 61 6e 63 65 2e 20 4c 65 67 61 63 79 20 70 | .on.this.LLDP.instance..Legacy.p |
| 46a40 | 72 6f 74 6f 63 6f 6c 73 20 69 6e 63 6c 75 64 65 3a 00 45 6e 61 62 6c 65 20 6c 61 79 65 72 20 37 | rotocols.include:.Enable.layer.7 |
| 46a60 | 20 48 54 54 50 20 68 65 61 6c 74 68 20 63 68 65 63 6b 00 45 6e 61 62 6c 65 20 6c 6f 67 67 69 6e | .HTTP.health.check.Enable.loggin |
| 46a80 | 67 20 66 6f 72 20 74 68 65 20 6d 61 74 63 68 65 64 20 70 61 63 6b 65 74 2e 20 49 66 20 74 68 69 | g.for.the.matched.packet..If.thi |
| 46aa0 | 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6e 6f 74 20 70 | s.configuration.command.is.not.p |
| 46ac0 | 72 65 73 65 6e 74 2c 20 74 68 65 6e 20 6c 6f 67 20 69 73 20 6e 6f 74 20 65 6e 61 62 6c 65 64 2e | resent,.then.log.is.not.enabled. |
| 46ae0 | 00 45 6e 61 62 6c 65 20 6c 6f 67 67 69 6e 67 20 66 6f 72 20 74 68 65 20 6d 61 74 63 68 65 64 20 | .Enable.logging.for.the.matched. |
| 46b00 | 70 61 63 6b 65 74 2e 20 49 66 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f | packet..If.this.configuration.co |
| 46b20 | 6d 6d 61 6e 64 20 69 73 20 6e 6f 74 20 70 72 65 73 65 6e 74 2c 20 74 68 65 6e 20 74 68 65 20 6c | mmand.is.not.present,.then.the.l |
| 46b40 | 6f 67 20 69 73 20 6e 6f 74 20 65 6e 61 62 6c 65 64 2e 00 45 6e 61 62 6c 65 20 6c 6f 67 67 69 6e | og.is.not.enabled..Enable.loggin |
| 46b60 | 67 20 6f 66 20 49 50 20 61 64 64 72 65 73 73 20 61 6e 64 20 70 6f 72 74 73 20 61 6c 6c 6f 63 61 | g.of.IP.address.and.ports.alloca |
| 46b80 | 74 69 6f 6e 73 2e 00 45 6e 61 62 6c 65 20 6f 72 20 44 69 73 61 62 6c 65 20 56 79 4f 53 20 74 6f | tions..Enable.or.Disable.VyOS.to |
| 46ba0 | 20 62 65 20 3a 72 66 63 3a 60 31 33 33 37 60 20 63 6f 6e 66 6f 72 6d 2e 20 54 68 65 20 66 6f 6c | .be.:rfc:`1337`.conform..The.fol |
| 46bc0 | 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 | lowing.system.parameter.will.be. |
| 46be0 | 61 6c 74 65 72 65 64 3a 00 45 6e 61 62 6c 65 20 6f 72 20 44 69 73 61 62 6c 65 20 56 79 4f 53 20 | altered:.Enable.or.Disable.VyOS. |
| 46c00 | 74 6f 20 62 65 20 3a 72 66 63 3a 60 31 33 33 37 60 20 63 6f 6e 66 6f 72 6d 61 6e 74 2e 20 54 68 | to.be.:rfc:`1337`.conformant..Th |
| 46c20 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c | e.following.system.parameter.wil |
| 46c40 | 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 45 6e 61 62 6c 65 20 6f 72 20 44 69 73 61 62 6c 65 20 | l.be.altered:.Enable.or.Disable. |
| 46c60 | 69 66 20 56 79 4f 53 20 75 73 65 20 49 50 76 34 20 54 43 50 20 53 59 4e 20 43 6f 6f 6b 69 65 73 | if.VyOS.use.IPv4.TCP.SYN.Cookies |
| 46c80 | 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 | ..The.following.system.parameter |
| 46ca0 | 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 45 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 | .will.be.altered:.Enable.or.disa |
| 46cc0 | 62 6c 65 20 49 43 4d 50 76 34 20 6f 72 20 49 43 4d 50 76 36 20 72 65 64 69 72 65 63 74 20 6d 65 | ble.ICMPv4.or.ICMPv6.redirect.me |
| 46ce0 | 73 73 61 67 65 73 20 62 65 69 6e 67 20 61 63 63 65 70 74 65 64 20 62 79 20 56 79 4f 53 2e 20 54 | ssages.being.accepted.by.VyOS..T |
| 46d00 | 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 73 20 77 | he.following.system.parameters.w |
| 46d20 | 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 45 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c | ill.be.altered:.Enable.or.disabl |
| 46d40 | 65 20 49 43 4d 50 76 34 20 72 65 64 69 72 65 63 74 20 6d 65 73 73 61 67 65 73 20 62 65 69 6e 67 | e.ICMPv4.redirect.messages.being |
| 46d60 | 20 73 65 6e 74 20 62 79 20 56 79 4f 53 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 | .sent.by.VyOS.The.following.syst |
| 46d80 | 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 45 6e | em.parameter.will.be.altered:.En |
| 46da0 | 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 69 66 20 56 79 4f 53 20 75 73 65 73 20 49 50 76 | able.or.disable.if.VyOS.uses.IPv |
| 46dc0 | 34 20 54 43 50 20 53 59 4e 20 43 6f 6f 6b 69 65 73 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 | 4.TCP.SYN.Cookies..The.following |
| 46de0 | 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 | .system.parameter.will.be.altere |
| 46e00 | 64 3a 00 45 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 6c 6f 67 67 69 6e 67 20 66 6f 72 | d:.Enable.or.disable.logging.for |
| 46e20 | 20 74 68 65 20 6d 61 74 63 68 65 64 20 70 61 63 6b 65 74 2e 00 45 6e 61 62 6c 65 20 6f 72 20 64 | .the.matched.packet..Enable.or.d |
| 46e40 | 69 73 61 62 6c 65 20 74 68 65 20 6c 6f 67 67 69 6e 67 20 6f 66 20 6d 61 72 74 69 61 6e 20 49 50 | isable.the.logging.of.martian.IP |
| 46e60 | 76 34 20 70 61 63 6b 65 74 73 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d | v4.packets..The.following.system |
| 46e80 | 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 45 6e 61 62 | .parameter.will.be.altered:.Enab |
| 46ea0 | 6c 65 20 6f 73 70 66 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 73 65 74 20 | le.ospf.on.an.interface.and.set. |
| 46ec0 | 61 73 73 6f 63 69 61 74 65 64 20 61 72 65 61 2e 00 45 6e 61 62 6c 65 20 70 6f 6c 69 63 79 20 66 | associated.area..Enable.policy.f |
| 46ee0 | 6f 72 20 73 6f 75 72 63 65 20 76 61 6c 69 64 61 74 69 6f 6e 20 62 79 20 72 65 76 65 72 73 65 64 | or.source.validation.by.reversed |
| 46f00 | 20 70 61 74 68 2c 20 61 73 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 3a 72 66 63 3a 60 33 37 30 | .path,.as.specified.in.:rfc:`370 |
| 46f20 | 34 60 2e 20 43 75 72 72 65 6e 74 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 70 72 61 63 74 69 63 65 | 4`..Current.recommended.practice |
| 46f40 | 20 69 6e 20 3a 72 66 63 3a 60 33 37 30 34 60 20 69 73 20 74 6f 20 65 6e 61 62 6c 65 20 73 74 72 | .in.:rfc:`3704`.is.to.enable.str |
| 46f60 | 69 63 74 20 6d 6f 64 65 20 74 6f 20 70 72 65 76 65 6e 74 20 49 50 20 73 70 6f 6f 66 69 6e 67 20 | ict.mode.to.prevent.IP.spoofing. |
| 46f80 | 66 72 6f 6d 20 44 44 6f 73 20 61 74 74 61 63 6b 73 2e 20 49 66 20 75 73 69 6e 67 20 61 73 79 6d | from.DDos.attacks..If.using.asym |
| 46fa0 | 6d 65 74 72 69 63 20 72 6f 75 74 69 6e 67 20 6f 72 20 6f 74 68 65 72 20 63 6f 6d 70 6c 69 63 61 | metric.routing.or.other.complica |
| 46fc0 | 74 65 64 20 72 6f 75 74 69 6e 67 2c 20 74 68 65 6e 20 6c 6f 6f 73 65 20 6d 6f 64 65 20 69 73 20 | ted.routing,.then.loose.mode.is. |
| 46fe0 | 72 65 63 6f 6d 6d 65 6e 64 65 64 2e 00 45 6e 61 62 6c 65 20 72 65 63 65 69 76 69 6e 67 20 50 50 | recommended..Enable.receiving.PP |
| 47000 | 44 55 20 75 73 69 6e 67 20 53 54 42 43 20 28 53 70 61 63 65 20 54 69 6d 65 20 42 6c 6f 63 6b 20 | DU.using.STBC.(Space.Time.Block. |
| 47020 | 43 6f 64 69 6e 67 29 00 45 6e 61 62 6c 65 20 73 61 6d 70 6c 69 6e 67 20 6f 66 20 70 61 63 6b 65 | Coding).Enable.sampling.of.packe |
| 47040 | 74 73 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 74 72 61 6e 73 6d 69 74 74 65 64 20 74 6f | ts,.which.will.be.transmitted.to |
| 47060 | 20 73 46 6c 6f 77 20 63 6f 6c 6c 65 63 74 6f 72 73 2e 00 45 6e 61 62 6c 65 20 73 65 6e 64 69 6e | .sFlow.collectors..Enable.sendin |
| 47080 | 67 20 50 50 44 55 20 75 73 69 6e 67 20 53 54 42 43 20 28 53 70 61 63 65 20 54 69 6d 65 20 42 6c | g.PPDU.using.STBC.(Space.Time.Bl |
| 470a0 | 6f 63 6b 20 43 6f 64 69 6e 67 29 00 45 6e 61 62 6c 65 20 73 65 6e 64 69 6e 67 20 6f 66 20 43 69 | ock.Coding).Enable.sending.of.Ci |
| 470c0 | 73 63 6f 20 73 74 79 6c 65 20 4e 48 52 50 20 54 72 61 66 66 69 63 20 49 6e 64 69 63 61 74 69 6f | sco.style.NHRP.Traffic.Indicatio |
| 470e0 | 6e 20 70 61 63 6b 65 74 73 2e 20 49 66 20 74 68 69 73 20 69 73 20 65 6e 61 62 6c 65 64 20 61 6e | n.packets..If.this.is.enabled.an |
| 47100 | 64 20 6f 70 65 6e 6e 68 72 70 20 64 65 74 65 63 74 73 20 61 20 66 6f 72 77 61 72 64 65 64 20 20 | d.opennhrp.detects.a.forwarded.. |
| 47120 | 70 61 63 6b 65 74 2c 20 69 74 20 77 69 6c 6c 20 73 65 6e 64 20 61 20 6d 65 73 73 61 67 65 20 74 | packet,.it.will.send.a.message.t |
| 47140 | 6f 20 74 68 65 20 6f 72 69 67 69 6e 61 6c 20 73 65 6e 64 65 72 20 6f 66 20 74 68 65 20 70 61 63 | o.the.original.sender.of.the.pac |
| 47160 | 6b 65 74 20 69 6e 73 74 72 75 63 74 69 6e 67 20 69 74 20 74 6f 20 63 72 65 61 74 65 20 61 20 64 | ket.instructing.it.to.create.a.d |
| 47180 | 69 72 65 63 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 68 20 74 68 65 20 64 65 73 74 69 6e | irect.connection.with.the.destin |
| 471a0 | 61 74 69 6f 6e 2e 20 54 68 69 73 20 69 73 20 62 61 73 69 63 61 6c 6c 79 20 61 20 70 72 6f 74 6f | ation..This.is.basically.a.proto |
| 471c0 | 63 6f 6c 20 69 6e 64 65 70 65 6e 64 65 6e 74 20 65 71 75 69 76 61 6c 65 6e 74 20 6f 66 20 49 43 | col.independent.equivalent.of.IC |
| 471e0 | 4d 50 20 72 65 64 69 72 65 63 74 2e 00 45 6e 61 62 6c 65 20 73 70 61 6e 6e 69 6e 67 20 74 72 65 | MP.redirect..Enable.spanning.tre |
| 47200 | 65 20 70 72 6f 74 6f 63 6f 6c 2e 20 53 54 50 20 69 73 20 64 69 73 61 62 6c 65 64 20 62 79 20 64 | e.protocol..STP.is.disabled.by.d |
| 47220 | 65 66 61 75 6c 74 2e 00 45 6e 61 62 6c 65 20 74 68 65 20 4f 70 61 71 75 65 2d 4c 53 41 20 63 61 | efault..Enable.the.Opaque-LSA.ca |
| 47240 | 70 61 62 69 6c 69 74 79 20 28 72 66 63 32 33 37 30 29 2c 20 6e 65 63 65 73 73 61 72 79 20 74 6f | pability.(rfc2370),.necessary.to |
| 47260 | 20 74 72 61 6e 73 70 6f 72 74 20 6c 61 62 65 6c 20 6f 6e 20 49 47 50 00 45 6e 61 62 6c 65 20 74 | .transport.label.on.IGP.Enable.t |
| 47280 | 68 69 73 20 66 65 61 74 75 72 65 20 63 61 75 73 65 73 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 | his.feature.causes.an.interface. |
| 472a0 | 72 65 73 65 74 2e 00 45 6e 61 62 6c 65 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 20 6f 66 20 4c 4c | reset..Enable.transmission.of.LL |
| 472c0 | 44 50 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 | DP.information.on.given.`<interf |
| 472e0 | 61 63 65 3e 60 2e 20 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 73 61 79 20 60 60 61 6c 6c 60 60 20 | ace>`..You.can.also.say.``all``. |
| 47300 | 68 65 72 65 20 73 6f 20 4c 4c 44 50 20 69 73 20 74 75 72 6e 65 64 20 6f 6e 20 6f 6e 20 65 76 65 | here.so.LLDP.is.turned.on.on.eve |
| 47320 | 72 79 20 69 6e 74 65 72 66 61 63 65 2e 00 45 6e 61 62 6c 65 64 20 6f 6e 2d 64 65 6d 61 6e 64 20 | ry.interface..Enabled.on-demand. |
| 47340 | 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 62 72 69 6e 67 20 75 70 20 74 68 65 20 6c | PPPoE.connections.bring.up.the.l |
| 47360 | 69 6e 6b 20 6f 6e 6c 79 20 77 68 65 6e 20 74 72 61 66 66 69 63 20 6e 65 65 64 73 20 74 6f 20 70 | ink.only.when.traffic.needs.to.p |
| 47380 | 61 73 73 20 74 68 69 73 20 6c 69 6e 6b 2e 20 20 49 66 20 74 68 65 20 6c 69 6e 6b 20 66 61 69 6c | ass.this.link...If.the.link.fail |
| 473a0 | 73 20 66 6f 72 20 61 6e 79 20 72 65 61 73 6f 6e 2c 20 74 68 65 20 6c 69 6e 6b 20 69 73 20 62 72 | s.for.any.reason,.the.link.is.br |
| 473c0 | 6f 75 67 68 74 20 62 61 63 6b 20 75 70 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 6f 6e 63 65 | ought.back.up.automatically.once |
| 473e0 | 20 74 72 61 66 66 69 63 20 70 61 73 73 65 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 61 67 | .traffic.passes.the.interface.ag |
| 47400 | 61 69 6e 2e 20 49 66 20 79 6f 75 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 6f 6e 2d 64 65 6d 61 | ain..If.you.configure.an.on-dema |
| 47420 | 6e 64 20 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f 6e 2c 20 79 6f 75 20 6d 75 73 74 20 61 6c | nd.PPPoE.connection,.you.must.al |
| 47440 | 73 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 69 64 6c 65 20 74 69 6d 65 6f 75 74 20 70 65 | so.configure.the.idle.timeout.pe |
| 47460 | 72 69 6f 64 2c 20 61 66 74 65 72 20 77 68 69 63 68 20 61 6e 20 69 64 6c 65 20 50 50 50 6f 45 20 | riod,.after.which.an.idle.PPPoE. |
| 47480 | 6c 69 6e 6b 20 77 69 6c 6c 20 62 65 20 64 69 73 63 6f 6e 6e 65 63 74 65 64 2e 20 41 20 6e 6f 6e | link.will.be.disconnected..A.non |
| 474a0 | 2d 7a 65 72 6f 20 69 64 6c 65 20 74 69 6d 65 6f 75 74 20 77 69 6c 6c 20 6e 65 76 65 72 20 64 69 | -zero.idle.timeout.will.never.di |
| 474c0 | 73 63 6f 6e 6e 65 63 74 20 74 68 65 20 6c 69 6e 6b 20 61 66 74 65 72 20 69 74 20 66 69 72 73 74 | sconnect.the.link.after.it.first |
| 474e0 | 20 63 61 6d 65 20 75 70 2e 00 45 6e 61 62 6c 65 73 20 43 69 73 63 6f 20 73 74 79 6c 65 20 61 75 | .came.up..Enables.Cisco.style.au |
| 47500 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f 6e 20 4e 48 52 50 20 70 61 63 6b 65 74 73 2e 20 54 68 | thentication.on.NHRP.packets..Th |
| 47520 | 69 73 20 65 6d 62 65 64 73 20 74 68 65 20 73 65 63 72 65 74 20 70 6c 61 69 6e 74 65 78 74 20 70 | is.embeds.the.secret.plaintext.p |
| 47540 | 61 73 73 77 6f 72 64 20 74 6f 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 20 4e 48 52 50 20 70 61 63 | assword.to.the.outgoing.NHRP.pac |
| 47560 | 6b 65 74 73 2e 20 49 6e 63 6f 6d 69 6e 67 20 4e 48 52 50 20 70 61 63 6b 65 74 73 20 6f 6e 20 74 | kets..Incoming.NHRP.packets.on.t |
| 47580 | 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 61 72 65 20 64 69 73 63 61 72 64 65 64 20 75 6e 6c 65 | his.interface.are.discarded.unle |
| 475a0 | 73 73 20 74 68 65 20 73 65 63 72 65 74 20 70 61 73 73 77 6f 72 64 20 69 73 20 70 72 65 73 65 6e | ss.the.secret.password.is.presen |
| 475c0 | 74 2e 20 4d 61 78 69 6d 75 6d 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 73 65 63 72 65 74 20 | t..Maximum.length.of.the.secret. |
| 475e0 | 69 73 20 38 20 63 68 61 72 61 63 74 65 72 73 2e 00 45 6e 61 62 6c 65 73 20 48 54 54 50 20 68 65 | is.8.characters..Enables.HTTP.he |
| 47600 | 61 6c 74 68 20 63 68 65 63 6b 73 20 75 73 69 6e 67 20 4f 50 54 49 4f 4e 20 48 54 54 50 20 72 65 | alth.checks.using.OPTION.HTTP.re |
| 47620 | 71 75 65 73 74 73 20 61 67 61 69 6e 73 74 20 27 2f 27 20 61 6e 64 20 65 78 70 65 63 74 69 6e 67 | quests.against.'/'.and.expecting |
| 47640 | 20 61 20 73 75 63 63 65 73 73 66 75 6c 20 72 65 73 70 6f 6e 73 65 20 63 6f 64 65 20 69 6e 20 74 | .a.successful.response.code.in.t |
| 47660 | 68 65 20 32 30 30 2d 33 39 39 20 72 61 6e 67 65 2e 00 45 6e 61 62 6c 65 73 20 61 6e 20 4d 50 4c | he.200-399.range..Enables.an.MPL |
| 47680 | 53 20 6c 61 62 65 6c 20 74 6f 20 62 65 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 72 6f 75 74 | S.label.to.be.attached.to.a.rout |
| 476a0 | 65 20 65 78 70 6f 72 74 65 64 20 66 72 6f 6d 20 74 68 65 20 63 75 72 72 65 6e 74 20 75 6e 69 63 | e.exported.from.the.current.unic |
| 476c0 | 61 73 74 20 56 52 46 20 74 6f 20 56 50 4e 2e 20 49 66 20 74 68 65 20 76 61 6c 75 65 20 73 70 65 | ast.VRF.to.VPN..If.the.value.spe |
| 476e0 | 63 69 66 69 65 64 20 69 73 20 61 75 74 6f 2c 20 74 68 65 20 6c 61 62 65 6c 20 76 61 6c 75 65 20 | cified.is.auto,.the.label.value. |
| 47700 | 69 73 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 61 73 73 69 67 6e 65 64 20 66 72 6f 6d 20 61 | is.automatically.assigned.from.a |
| 47720 | 20 70 6f 6f 6c 20 6d 61 69 6e 74 61 69 6e 65 64 2e 00 45 6e 61 62 6c 65 73 20 61 6e 64 20 63 6f | .pool.maintained..Enables.and.co |
| 47740 | 6e 66 69 67 75 72 65 73 20 70 2d 73 74 61 74 65 20 64 72 69 76 65 72 20 66 6f 72 20 6d 6f 64 65 | nfigures.p-state.driver.for.mode |
| 47760 | 72 6e 20 41 4d 44 20 52 79 7a 65 6e 20 61 6e 64 20 45 70 79 63 20 43 50 55 73 2e 00 45 6e 61 62 | rn.AMD.Ryzen.and.Epyc.CPUs..Enab |
| 47780 | 6c 65 73 20 62 61 6e 64 77 69 64 74 68 20 73 68 61 70 69 6e 67 20 76 69 61 20 52 41 44 49 55 53 | les.bandwidth.shaping.via.RADIUS |
| 477a0 | 2e 00 45 6e 61 62 6c 65 73 20 69 6d 70 6f 72 74 20 6f 72 20 65 78 70 6f 72 74 20 6f 66 20 72 6f | ..Enables.import.or.export.of.ro |
| 477c0 | 75 74 65 73 20 62 65 74 77 65 65 6e 20 74 68 65 20 63 75 72 72 65 6e 74 20 75 6e 69 63 61 73 74 | utes.between.the.current.unicast |
| 477e0 | 20 56 52 46 20 61 6e 64 20 56 50 4e 2e 00 45 6e 61 62 6c 65 73 20 74 68 65 20 47 65 6e 65 72 69 | .VRF.and.VPN..Enables.the.Generi |
| 47800 | 63 20 50 72 6f 74 6f 63 6f 6c 20 65 78 74 65 6e 73 69 6f 6e 20 28 56 58 4c 41 4e 2d 47 50 45 29 | c.Protocol.extension.(VXLAN-GPE) |
| 47820 | 2e 20 43 75 72 72 65 6e 74 6c 79 2c 20 74 68 69 73 20 69 73 20 6f 6e 6c 79 20 73 75 70 70 6f 72 | ..Currently,.this.is.only.suppor |
| 47840 | 74 65 64 20 74 6f 67 65 74 68 65 72 20 77 69 74 68 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6b | ted.together.with.the.external.k |
| 47860 | 65 79 77 6f 72 64 2e 00 45 6e 61 62 6c 65 73 20 74 68 65 20 4e 54 50 20 64 61 65 6d 6f 6e 20 50 | eyword..Enables.the.NTP.daemon.P |
| 47880 | 54 50 20 74 72 61 6e 73 70 6f 72 74 2e 20 54 68 65 20 4e 54 50 20 64 61 65 6d 6f 6e 20 77 69 6c | TP.transport..The.NTP.daemon.wil |
| 478a0 | 6c 20 6c 69 73 74 65 6e 20 6f 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 50 54 50 20 70 | l.listen.on.the.configured.PTP.p |
| 478c0 | 6f 72 74 2e 20 4e 6f 74 65 20 74 68 61 74 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 73 65 72 76 65 | ort..Note.that.one.or.more.serve |
| 478e0 | 72 73 20 6d 75 73 74 20 62 65 20 69 6e 64 69 76 69 64 75 61 6c 6c 79 20 65 6e 61 62 6c 65 64 20 | rs.must.be.individually.enabled. |
| 47900 | 66 6f 72 20 50 54 50 20 62 65 66 6f 72 65 20 74 68 65 20 64 61 65 6d 6f 6e 20 77 69 6c 6c 20 73 | for.PTP.before.the.daemon.will.s |
| 47920 | 79 6e 63 68 72 6f 6e 69 7a 65 20 6f 76 65 72 20 74 68 65 20 74 72 61 6e 73 70 6f 72 74 2e 00 45 | ynchronize.over.the.transport..E |
| 47940 | 6e 61 62 6c 65 73 20 74 68 65 20 65 63 68 6f 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 20 6d 6f 64 | nables.the.echo.transmission.mod |
| 47960 | 65 00 45 6e 61 62 6c 65 73 20 74 68 65 20 72 6f 6f 74 20 70 61 72 74 69 74 69 6f 6e 20 61 75 74 | e.Enables.the.root.partition.aut |
| 47980 | 6f 2d 65 78 74 65 6e 73 69 6f 6e 20 61 6e 64 20 72 65 73 69 7a 65 73 20 74 6f 20 74 68 65 20 6d | o-extension.and.resizes.to.the.m |
| 479a0 | 61 78 69 6d 75 6d 20 61 76 61 69 6c 61 62 6c 65 20 73 70 61 63 65 20 6f 6e 20 73 79 73 74 65 6d | aximum.available.space.on.system |
| 479c0 | 20 62 6f 6f 74 2e 00 45 6e 61 62 6c 69 6e 67 20 41 64 76 65 72 74 69 73 6d 65 6e 74 73 00 45 6e | .boot..Enabling.Advertisments.En |
| 479e0 | 61 62 6c 69 6e 67 20 4f 70 65 6e 56 50 4e 20 44 43 4f 00 45 6e 61 62 6c 69 6e 67 20 53 53 48 20 | abling.OpenVPN.DCO.Enabling.SSH. |
| 47a00 | 6f 6e 6c 79 20 72 65 71 75 69 72 65 73 20 79 6f 75 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 | only.requires.you.to.specify.the |
| 47a20 | 20 70 6f 72 74 20 60 60 3c 70 6f 72 74 3e 60 60 20 79 6f 75 20 77 61 6e 74 20 53 53 48 20 74 6f | .port.``<port>``.you.want.SSH.to |
| 47a40 | 20 6c 69 73 74 65 6e 20 6f 6e 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 53 53 48 20 72 75 6e 73 | .listen.on..By.default,.SSH.runs |
| 47a60 | 20 6f 6e 20 70 6f 72 74 20 32 32 2e 00 45 6e 61 62 6c 69 6e 67 20 74 68 69 73 20 66 75 6e 63 74 | .on.port.22..Enabling.this.funct |
| 47a80 | 69 6f 6e 20 69 6e 63 72 65 61 73 65 73 20 74 68 65 20 72 69 73 6b 20 6f 66 20 62 61 6e 64 77 69 | ion.increases.the.risk.of.bandwi |
| 47aa0 | 64 74 68 20 73 61 74 75 72 61 74 69 6f 6e 2e 00 45 6e 66 6f 72 63 65 20 73 74 72 69 63 74 20 70 | dth.saturation..Enforce.strict.p |
| 47ac0 | 61 74 68 20 63 68 65 63 6b 69 6e 67 00 45 6e 66 6f 72 63 65 20 73 74 72 69 63 74 20 70 61 74 68 | ath.checking.Enforce.strict.path |
| 47ae0 | 20 63 68 65 63 6b 69 6e 67 2e 00 45 6e 73 6c 61 76 65 20 60 3c 6d 65 6d 62 65 72 3e 60 20 69 6e | .checking..Enslave.`<member>`.in |
| 47b00 | 74 65 72 66 61 63 65 20 74 6f 20 62 6f 6e 64 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 45 | terface.to.bond.`<interface>`..E |
| 47b20 | 6e 73 75 72 65 20 74 68 61 74 20 77 68 65 6e 20 63 6f 6d 70 61 72 69 6e 67 20 72 6f 75 74 65 73 | nsure.that.when.comparing.routes |
| 47b40 | 20 77 68 65 72 65 20 62 6f 74 68 20 61 72 65 20 65 71 75 61 6c 20 6f 6e 20 6d 6f 73 74 20 6d 65 | .where.both.are.equal.on.most.me |
| 47b60 | 74 72 69 63 73 2c 20 69 6e 63 6c 75 64 69 6e 67 20 6c 6f 63 61 6c 2d 70 72 65 66 2c 20 41 53 5f | trics,.including.local-pref,.AS_ |
| 47b80 | 50 41 54 48 20 6c 65 6e 67 74 68 2c 20 49 47 50 20 63 6f 73 74 2c 20 4d 45 44 2c 20 74 68 61 74 | PATH.length,.IGP.cost,.MED,.that |
| 47ba0 | 20 74 68 65 20 74 69 65 20 69 73 20 62 72 6f 6b 65 6e 20 62 61 73 65 64 20 6f 6e 20 72 6f 75 74 | .the.tie.is.broken.based.on.rout |
| 47bc0 | 65 72 2d 49 44 2e 00 45 6e 74 65 72 70 72 69 73 65 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 20 | er-ID..Enterprise.installations. |
| 47be0 | 75 73 75 61 6c 6c 79 20 73 68 69 70 20 61 20 6b 69 6e 64 20 6f 66 20 64 69 72 65 63 74 6f 72 79 | usually.ship.a.kind.of.directory |
| 47c00 | 20 73 65 72 76 69 63 65 20 77 68 69 63 68 20 69 73 20 75 73 65 64 20 74 6f 20 68 61 76 65 20 61 | .service.which.is.used.to.have.a |
| 47c20 | 20 73 69 6e 67 6c 65 20 70 61 73 73 77 6f 72 64 20 73 74 6f 72 65 20 66 6f 72 20 61 6c 6c 20 65 | .single.password.store.for.all.e |
| 47c40 | 6d 70 6c 6f 79 65 65 73 2e 20 56 79 4f 53 20 61 6e 64 20 4f 70 65 6e 56 50 4e 20 73 75 70 70 6f | mployees..VyOS.and.OpenVPN.suppo |
| 47c60 | 72 74 20 75 73 69 6e 67 20 4c 44 41 50 2f 41 44 20 61 73 20 73 69 6e 67 6c 65 20 75 73 65 72 20 | rt.using.LDAP/AD.as.single.user. |
| 47c80 | 62 61 63 6b 65 6e 64 2e 00 45 72 69 63 73 73 6f 6e 20 63 61 6c 6c 20 69 74 20 4d 41 43 2d 46 6f | backend..Ericsson.call.it.MAC-Fo |
| 47ca0 | 72 63 65 64 20 46 6f 72 77 61 72 64 69 6e 67 20 28 52 46 43 20 44 72 61 66 74 29 00 45 72 72 6f | rced.Forwarding.(RFC.Draft).Erro |
| 47cc0 | 72 00 45 72 72 6f 72 20 63 6f 6e 64 69 74 69 6f 6e 73 00 45 73 74 61 62 6c 69 73 68 65 64 20 73 | r.Error.conditions.Established.s |
| 47ce0 | 65 73 73 69 6f 6e 73 20 63 61 6e 20 62 65 20 76 69 65 77 65 64 20 75 73 69 6e 67 20 74 68 65 20 | essions.can.be.viewed.using.the. |
| 47d00 | 2a 2a 73 68 6f 77 20 6c 32 74 70 2d 73 65 72 76 65 72 20 73 65 73 73 69 6f 6e 73 2a 2a 20 6f 70 | **show.l2tp-server.sessions**.op |
| 47d20 | 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 00 45 74 68 65 72 6e 65 74 00 45 74 68 65 72 | erational.command.Ethernet.Ether |
| 47d40 | 6e 65 74 20 66 6c 6f 77 20 63 6f 6e 74 72 6f 6c 20 69 73 20 61 20 6d 65 63 68 61 6e 69 73 6d 20 | net.flow.control.is.a.mechanism. |
| 47d60 | 66 6f 72 20 74 65 6d 70 6f 72 61 72 69 6c 79 20 73 74 6f 70 70 69 6e 67 20 74 68 65 20 74 72 61 | for.temporarily.stopping.the.tra |
| 47d80 | 6e 73 6d 69 73 73 69 6f 6e 20 6f 66 20 64 61 74 61 20 6f 6e 20 45 74 68 65 72 6e 65 74 20 66 61 | nsmission.of.data.on.Ethernet.fa |
| 47da0 | 6d 69 6c 79 20 63 6f 6d 70 75 74 65 72 20 6e 65 74 77 6f 72 6b 73 2e 20 54 68 65 20 67 6f 61 6c | mily.computer.networks..The.goal |
| 47dc0 | 20 6f 66 20 74 68 69 73 20 6d 65 63 68 61 6e 69 73 6d 20 69 73 20 74 6f 20 65 6e 73 75 72 65 20 | .of.this.mechanism.is.to.ensure. |
| 47de0 | 7a 65 72 6f 20 70 61 63 6b 65 74 20 6c 6f 73 73 20 69 6e 20 74 68 65 20 70 72 65 73 65 6e 63 65 | zero.packet.loss.in.the.presence |
| 47e00 | 20 6f 66 20 6e 65 74 77 6f 72 6b 20 63 6f 6e 67 65 73 74 69 6f 6e 2e 00 45 74 68 65 72 6e 65 74 | .of.network.congestion..Ethernet |
| 47e20 | 20 6f 70 74 69 6f 6e 73 00 45 74 68 65 72 74 79 70 65 20 60 60 30 78 38 31 30 30 60 60 20 69 73 | .options.Ethertype.``0x8100``.is |
| 47e40 | 20 75 73 65 64 20 66 6f 72 20 60 60 38 30 32 2e 31 71 60 60 20 61 6e 64 20 65 74 68 65 72 74 79 | .used.for.``802.1q``.and.etherty |
| 47e60 | 70 65 20 60 60 30 78 38 38 61 38 60 60 20 69 73 20 75 73 65 64 20 66 6f 72 20 60 60 38 30 32 2e | pe.``0x88a8``.is.used.for.``802. |
| 47e80 | 31 61 64 60 60 2e 00 45 76 65 6e 74 20 48 61 6e 64 6c 65 72 00 45 76 65 6e 74 20 48 61 6e 64 6c | 1ad``..Event.Handler.Event.Handl |
| 47ea0 | 65 72 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 53 74 65 70 73 00 45 76 65 6e 74 20 48 61 6e | er.Configuration.Steps.Event.Han |
| 47ec0 | 64 6c 65 72 20 54 65 63 68 6e 6f 6c 6f 67 79 20 4f 76 65 72 76 69 65 77 00 45 76 65 6e 74 20 68 | dler.Technology.Overview.Event.h |
| 47ee0 | 61 6e 64 6c 65 72 20 61 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 65 78 65 63 75 74 65 20 73 63 72 | andler.allows.you.to.execute.scr |
| 47f00 | 69 70 74 73 20 77 68 65 6e 20 61 20 73 74 72 69 6e 67 20 74 68 61 74 20 6d 61 74 63 68 65 73 20 | ipts.when.a.string.that.matches. |
| 47f20 | 61 20 72 65 67 65 78 20 6f 72 20 61 20 72 65 67 65 78 20 77 69 74 68 20 61 20 73 65 72 76 69 63 | a.regex.or.a.regex.with.a.servic |
| 47f40 | 65 20 6e 61 6d 65 20 61 70 70 65 61 72 73 20 69 6e 20 6a 6f 75 72 6e 61 6c 64 20 6c 6f 67 73 2e | e.name.appears.in.journald.logs. |
| 47f60 | 20 59 6f 75 20 63 61 6e 20 70 61 73 73 20 76 61 72 69 61 62 6c 65 73 2c 20 61 72 67 75 6d 65 6e | .You.can.pass.variables,.argumen |
| 47f80 | 74 73 2c 20 61 6e 64 20 61 20 66 75 6c 6c 20 6d 61 74 63 68 69 6e 67 20 73 74 72 69 6e 67 20 74 | ts,.and.a.full.matching.string.t |
| 47fa0 | 6f 20 74 68 65 20 73 63 72 69 70 74 2e 00 45 76 65 6e 74 20 68 61 6e 64 6c 65 72 20 73 63 72 69 | o.the.script..Event.handler.scri |
| 47fc0 | 70 74 00 45 76 65 6e 74 20 68 61 6e 64 6c 65 72 20 74 68 61 74 20 6d 6f 6e 69 74 6f 72 73 20 74 | pt.Event.handler.that.monitors.t |
| 47fe0 | 68 65 20 73 74 61 74 65 20 6f 66 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 30 2e 00 45 76 65 72 | he.state.of.interface.eth0..Ever |
| 48000 | 79 20 4e 41 54 20 72 75 6c 65 20 68 61 73 20 61 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 63 6f 6d | y.NAT.rule.has.a.translation.com |
| 48020 | 6d 61 6e 64 20 64 65 66 69 6e 65 64 2e 20 54 68 65 20 61 64 64 72 65 73 73 20 64 65 66 69 6e 65 | mand.defined..The.address.define |
| 48040 | 64 20 66 6f 72 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 69 73 20 74 68 65 20 61 64 64 | d.for.the.translation.is.the.add |
| 48060 | 72 65 73 73 20 75 73 65 64 20 77 68 65 6e 20 74 68 65 20 61 64 64 72 65 73 73 20 69 6e 66 6f 72 | ress.used.when.the.address.infor |
| 48080 | 6d 61 74 69 6f 6e 20 69 6e 20 61 20 70 61 63 6b 65 74 20 69 73 20 72 65 70 6c 61 63 65 64 2e 00 | mation.in.a.packet.is.replaced.. |
| 480a0 | 45 76 65 72 79 20 53 4e 41 54 36 36 20 72 75 6c 65 20 68 61 73 20 61 20 74 72 61 6e 73 6c 61 74 | Every.SNAT66.rule.has.a.translat |
| 480c0 | 69 6f 6e 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 64 2e 20 54 68 65 20 70 72 65 66 69 78 20 | ion.command.defined..The.prefix. |
| 480e0 | 64 65 66 69 6e 65 64 20 66 6f 72 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 69 73 20 74 | defined.for.the.translation.is.t |
| 48100 | 68 65 20 70 72 65 66 69 78 20 75 73 65 64 20 77 68 65 6e 20 74 68 65 20 61 64 64 72 65 73 73 20 | he.prefix.used.when.the.address. |
| 48120 | 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 6e 20 61 20 70 61 63 6b 65 74 20 69 73 20 72 65 70 6c 61 | information.in.a.packet.is.repla |
| 48140 | 63 65 64 2e e3 80 81 00 45 76 65 72 79 20 53 53 48 20 6b 65 79 20 63 6f 6d 65 73 20 69 6e 20 74 | ced.....Every.SSH.key.comes.in.t |
| 48160 | 68 72 65 65 20 70 61 72 74 73 3a 00 45 76 65 72 79 20 53 53 48 20 70 75 62 6c 69 63 20 6b 65 79 | hree.parts:.Every.SSH.public.key |
| 48180 | 20 70 6f 72 74 69 6f 6e 20 72 65 66 65 72 65 6e 63 65 64 20 62 79 20 60 3c 69 64 65 6e 74 69 66 | .portion.referenced.by.`<identif |
| 481a0 | 69 65 72 3e 60 20 72 65 71 75 69 72 65 73 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | ier>`.requires.the.configuration |
| 481c0 | 20 6f 66 20 74 68 65 20 60 3c 74 79 70 65 3e 60 20 6f 66 20 70 75 62 6c 69 63 2d 6b 65 79 20 75 | .of.the.`<type>`.of.public-key.u |
| 481e0 | 73 65 64 2e 20 54 68 69 73 20 74 79 70 65 20 63 61 6e 20 62 65 20 61 6e 79 20 6f 66 3a 00 45 76 | sed..This.type.can.be.any.of:.Ev |
| 48200 | 65 72 79 20 55 44 50 20 70 6f 72 74 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 66 6f 72 77 61 | ery.UDP.port.which.will.be.forwa |
| 48220 | 72 64 20 72 65 71 75 69 72 65 73 20 6f 6e 65 20 75 6e 69 71 75 65 20 49 44 2e 20 43 75 72 72 65 | rd.requires.one.unique.ID..Curre |
| 48240 | 6e 74 6c 79 20 77 65 20 73 75 70 70 6f 72 74 20 39 39 20 49 44 73 21 00 45 76 65 72 79 20 56 69 | ntly.we.support.99.IDs!.Every.Vi |
| 48260 | 72 74 75 61 6c 20 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 62 65 68 61 76 65 | rtual.Ethernet.interfaces.behave |
| 48280 | 73 20 6c 69 6b 65 20 61 20 72 65 61 6c 20 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 | s.like.a.real.Ethernet.interface |
| 482a0 | 2e 20 54 68 65 79 20 63 61 6e 20 68 61 76 65 20 49 50 76 34 2f 49 50 76 36 20 61 64 64 72 65 73 | ..They.can.have.IPv4/IPv6.addres |
| 482c0 | 73 65 73 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 6f 72 20 63 61 6e 20 72 65 71 75 65 73 74 20 61 | ses.configured,.or.can.request.a |
| 482e0 | 64 64 72 65 73 73 65 73 20 62 79 20 44 48 43 50 2f 20 44 48 43 50 76 36 20 61 6e 64 20 61 72 65 | ddresses.by.DHCP/.DHCPv6.and.are |
| 48300 | 20 61 73 73 6f 63 69 61 74 65 64 2f 6d 61 70 70 65 64 20 77 69 74 68 20 61 20 72 65 61 6c 20 65 | .associated/mapped.with.a.real.e |
| 48320 | 74 68 65 72 6e 65 74 20 70 6f 72 74 2e 20 54 68 69 73 20 61 6c 73 6f 20 6d 61 6b 65 73 20 50 73 | thernet.port..This.also.makes.Ps |
| 48340 | 65 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 69 6e 74 65 72 65 73 | eudo-Ethernet.interfaces.interes |
| 48360 | 74 69 6e 67 20 66 6f 72 20 74 65 73 74 69 6e 67 20 70 75 72 70 6f 73 65 73 2e 20 41 20 50 73 65 | ting.for.testing.purposes..A.Pse |
| 48380 | 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 64 65 76 69 63 65 20 77 69 6c 6c 20 69 6e 68 65 72 69 74 | udo-Ethernet.device.will.inherit |
| 483a0 | 20 63 68 61 72 61 63 74 65 72 69 73 74 69 63 73 20 28 73 70 65 65 64 2c 20 64 75 70 6c 65 78 2c | .characteristics.(speed,.duplex, |
| 483c0 | 20 2e 2e 2e 29 20 66 72 6f 6d 20 69 74 73 20 70 68 79 73 69 63 61 6c 20 70 61 72 65 6e 74 20 28 | ....).from.its.physical.parent.( |
| 483e0 | 74 68 65 20 73 6f 20 63 61 6c 6c 65 64 20 6c 69 6e 6b 29 20 69 6e 74 65 72 66 61 63 65 2e 00 45 | the.so.called.link).interface..E |
| 48400 | 76 65 72 79 20 57 57 41 4e 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 72 65 71 75 69 72 65 73 20 61 6e | very.WWAN.connection.requires.an |
| 48420 | 20 3a 61 62 62 72 3a 60 41 50 4e 20 28 41 63 63 65 73 73 20 50 6f 69 6e 74 20 4e 61 6d 65 29 60 | .:abbr:`APN.(Access.Point.Name)` |
| 48440 | 20 77 68 69 63 68 20 69 73 20 75 73 65 64 20 62 79 20 74 68 65 20 63 6c 69 65 6e 74 20 74 6f 20 | .which.is.used.by.the.client.to. |
| 48460 | 64 69 61 6c 20 69 6e 74 6f 20 74 68 65 20 49 53 50 73 20 6e 65 74 77 6f 72 6b 2e 20 54 68 69 73 | dial.into.the.ISPs.network..This |
| 48480 | 20 69 73 20 61 20 6d 61 6e 64 61 74 6f 72 79 20 70 61 72 61 6d 65 74 65 72 2e 20 43 6f 6e 74 61 | .is.a.mandatory.parameter..Conta |
| 484a0 | 63 74 20 79 6f 75 72 20 53 65 72 76 69 63 65 20 50 72 6f 76 69 64 65 72 20 66 6f 72 20 63 6f 72 | ct.your.Service.Provider.for.cor |
| 484c0 | 72 65 63 74 20 41 50 4e 2e 00 45 76 65 72 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 2f 72 65 6d 6f 74 | rect.APN..Every.connection/remot |
| 484e0 | 65 2d 61 63 63 65 73 73 20 70 6f 6f 6c 20 77 65 20 63 6f 6e 66 69 67 75 72 65 20 61 6c 73 6f 20 | e-access.pool.we.configure.also. |
| 48500 | 6e 65 65 64 73 20 61 20 70 6f 6f 6c 20 77 68 65 72 65 20 77 65 20 63 61 6e 20 64 72 61 77 20 6f | needs.a.pool.where.we.can.draw.o |
| 48520 | 75 72 20 63 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 65 73 20 66 72 6f 6d 2e 20 57 65 20 | ur.client.IP.addresses.from..We. |
| 48540 | 70 72 6f 76 69 64 65 20 6f 6e 65 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 70 6f 6f 6c 2e 20 | provide.one.IPv4.and.IPv6.pool.. |
| 48560 | 41 75 74 68 6f 72 69 7a 65 64 20 63 6c 69 65 6e 74 73 20 77 69 6c 6c 20 72 65 63 65 69 76 65 20 | Authorized.clients.will.receive. |
| 48580 | 61 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 31 39 32 2e 30 2e 32 | an.IPv4.address.from.the.192.0.2 |
| 485a0 | 2e 31 32 38 2f 32 35 20 70 72 65 66 69 78 20 61 6e 64 20 61 6e 20 49 50 76 36 20 61 64 64 72 65 | .128/25.prefix.and.an.IPv6.addre |
| 485c0 | 73 73 20 66 72 6f 6d 20 74 68 65 20 32 30 30 31 3a 64 62 38 3a 32 30 30 30 3a 3a 2f 36 34 20 70 | ss.from.the.2001:db8:2000::/64.p |
| 485e0 | 72 65 66 69 78 2e 20 57 65 20 63 61 6e 20 61 6c 73 6f 20 73 65 6e 64 20 73 6f 6d 65 20 44 4e 53 | refix..We.can.also.send.some.DNS |
| 48600 | 20 6e 61 6d 65 73 65 72 76 65 72 73 20 64 6f 77 6e 20 66 6f 72 20 6f 75 72 20 63 6c 69 65 6e 74 | .nameservers.down.for.our.client |
| 48620 | 73 20 74 6f 20 75 73 65 20 77 69 74 68 20 74 68 65 69 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 | s.to.use.with.their.connection.. |
| 48640 | 45 76 65 72 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 2f 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 20 70 | Every.connection/remote-access.p |
| 48660 | 6f 6f 6c 20 77 65 20 63 6f 6e 66 69 67 75 72 65 20 61 6c 73 6f 20 6e 65 65 64 73 20 61 20 70 6f | ool.we.configure.also.needs.a.po |
| 48680 | 6f 6c 20 77 68 65 72 65 20 77 65 20 63 61 6e 20 64 72 61 77 20 6f 75 72 20 63 6c 69 65 6e 74 20 | ol.where.we.can.draw.our.client. |
| 486a0 | 49 50 20 61 64 64 72 65 73 73 65 73 20 66 72 6f 6d 2e 20 57 65 20 70 72 6f 76 69 64 65 20 6f 6e | IP.addresses.from..We.provide.on |
| 486c0 | 65 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 70 6f 6f 6c 2e 20 41 75 74 68 6f 72 69 7a 65 64 | e.IPv4.and.IPv6.pool..Authorized |
| 486e0 | 20 63 6c 69 65 6e 74 73 20 77 69 6c 6c 20 72 65 63 65 69 76 65 20 61 6e 20 49 50 76 34 20 61 64 | .clients.will.receive.an.IPv4.ad |
| 48700 | 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 31 39 32 2e 30 2e 32 2e 31 32 38 2f 32 35 20 70 72 | dress.from.the.192.0.2.128/25.pr |
| 48720 | 65 66 69 78 20 61 6e 64 20 61 6e 20 49 50 76 36 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 | efix.and.an.IPv6.address.from.th |
| 48740 | 65 20 32 30 30 31 3a 64 62 38 3a 32 30 30 30 3a 3a 2f 36 34 20 70 72 65 66 69 78 2e 20 57 65 20 | e.2001:db8:2000::/64.prefix..We. |
| 48760 | 63 61 6e 20 61 6c 73 6f 20 73 65 6e 64 20 73 6f 6d 65 20 44 4e 53 20 6e 61 6d 65 73 65 72 76 65 | can.also.send.some.DNS.nameserve |
| 48780 | 72 73 20 64 6f 77 6e 20 74 6f 20 6f 75 72 20 63 6c 69 65 6e 74 73 20 75 73 65 64 20 6f 6e 20 74 | rs.down.to.our.clients.used.on.t |
| 487a0 | 68 65 69 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 45 76 65 72 79 20 63 6f 6e 6e 65 63 74 69 6f | heir.connection..Every.connectio |
| 487c0 | 6e 2f 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 20 70 6f 6f 6c 20 77 65 20 63 6f 6e 66 69 67 75 72 | n/remote-access.pool.we.configur |
| 487e0 | 65 20 61 6c 73 6f 20 6e 65 65 64 73 20 61 20 70 6f 6f 6c 20 77 68 65 72 65 20 77 65 20 63 61 6e | e.also.needs.a.pool.where.we.can |
| 48800 | 20 64 72 61 77 20 6f 75 72 20 63 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 65 73 20 66 72 | .draw.our.client.IP.addresses.fr |
| 48820 | 6f 6d 2e 20 57 65 20 70 72 6f 76 69 64 65 20 6f 6e 65 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 | om..We.provide.one.IPv4.and.IPv6 |
| 48840 | 20 70 6f 6f 6c 2e 20 41 75 74 68 6f 72 69 7a 65 64 20 63 6c 69 65 6e 74 73 20 77 69 6c 6c 20 72 | .pool..Authorized.clients.will.r |
| 48860 | 65 63 65 69 76 65 20 61 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 | eceive.an.IPv4.address.from.the. |
| 48880 | 63 6f 6e 66 69 67 75 72 65 64 20 49 50 76 34 20 70 72 65 66 69 78 20 61 6e 64 20 61 6e 20 49 50 | configured.IPv4.prefix.and.an.IP |
| 488a0 | 76 36 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 49 50 76 36 20 70 72 65 66 69 78 2e | v6.address.from.the.IPv6.prefix. |
| 488c0 | 20 57 65 20 63 61 6e 20 61 6c 73 6f 20 73 65 6e 64 20 73 6f 6d 65 20 44 4e 53 20 6e 61 6d 65 73 | .We.can.also.send.some.DNS.names |
| 488e0 | 65 72 76 65 72 73 20 64 6f 77 6e 20 74 6f 20 6f 75 72 20 63 6c 69 65 6e 74 73 20 75 73 65 64 20 | ervers.down.to.our.clients.used. |
| 48900 | 6f 6e 20 74 68 65 69 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 45 78 61 6d 70 6c 65 00 45 78 61 | on.their.connection..Example.Exa |
| 48920 | 6d 70 6c 65 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 45 78 61 6d 70 6c 65 20 43 6f 6e 66 69 | mple.Configuration.Example.Confi |
| 48940 | 67 75 72 61 74 69 6f 6e 3a 20 57 69 46 69 2d 36 20 61 74 20 32 2e 34 47 48 7a 00 45 78 61 6d 70 | guration:.WiFi-6.at.2.4GHz.Examp |
| 48960 | 6c 65 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 20 57 69 46 69 2d 36 65 20 61 74 20 36 47 48 | le.Configuration:.WiFi-6e.at.6GH |
| 48980 | 7a 00 45 78 61 6d 70 6c 65 20 49 50 76 36 20 6f 6e 6c 79 3a 00 45 78 61 6d 70 6c 65 20 4e 65 74 | z.Example.IPv6.only:.Example.Net |
| 489a0 | 77 6f 72 6b 00 45 78 61 6d 70 6c 65 20 50 61 72 74 69 61 6c 20 43 6f 6e 66 69 67 00 45 78 61 6d | work.Example.Partial.Config.Exam |
| 489c0 | 70 6c 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 57 69 72 65 47 75 61 72 64 20 | ple.configuration.for.WireGuard. |
| 489e0 | 69 6e 74 65 72 66 61 63 65 73 3a 00 45 78 61 6d 70 6c 65 20 66 6f 72 20 63 68 61 6e 67 69 6e 67 | interfaces:.Example.for.changing |
| 48a00 | 20 72 61 74 65 2d 6c 69 6d 69 74 20 76 69 61 20 52 41 44 49 55 53 20 43 6f 41 2e 00 45 78 61 6d | .rate-limit.via.RADIUS.CoA..Exam |
| 48a20 | 70 6c 65 20 66 6f 72 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 20 73 69 6d 70 6c 65 20 4c 32 54 | ple.for.configuring.a.simple.L2T |
| 48a40 | 50 20 6f 76 65 72 20 49 50 73 65 63 20 56 50 4e 20 66 6f 72 20 72 65 6d 6f 74 65 20 61 63 63 65 | P.over.IPsec.VPN.for.remote.acce |
| 48a60 | 73 73 20 28 77 6f 72 6b 73 20 77 69 74 68 20 6e 61 74 69 76 65 20 57 69 6e 64 6f 77 73 20 61 6e | ss.(works.with.native.Windows.an |
| 48a80 | 64 20 4d 61 63 20 56 50 4e 20 63 6c 69 65 6e 74 73 29 3a 00 45 78 61 6d 70 6c 65 20 6f 66 20 72 | d.Mac.VPN.clients):.Example.of.r |
| 48aa0 | 65 64 69 72 65 63 74 69 6f 6e 3a 00 45 78 61 6d 70 6c 65 20 6f 66 20 73 65 74 74 69 6e 67 20 75 | edirection:.Example.of.setting.u |
| 48ac0 | 70 20 61 20 62 61 73 69 63 20 43 47 4e 41 54 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 20 49 | p.a.basic.CGNAT.configuration:.I |
| 48ae0 | 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 2c 20 77 65 20 64 65 66 69 | n.the.following.example,.we.defi |
| 48b00 | 6e 65 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 70 6f 6f 6c 20 6e 61 6d 65 64 20 60 65 78 74 2d 31 | ne.an.external.pool.named.`ext-1 |
| 48b20 | 60 20 77 69 74 68 20 6f 6e 65 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 00 45 | `.with.one.external.IP.address.E |
| 48b40 | 78 61 6d 70 6c 65 20 73 79 6e 70 72 6f 78 79 00 45 78 61 6d 70 6c 65 2c 20 66 72 6f 6d 20 72 61 | xample.synproxy.Example,.from.ra |
| 48b60 | 64 69 75 73 2d 73 65 72 76 65 72 20 73 65 6e 64 20 63 6f 6d 6d 61 6e 64 20 66 6f 72 20 64 69 73 | dius-server.send.command.for.dis |
| 48b80 | 63 6f 6e 6e 65 63 74 20 63 6c 69 65 6e 74 20 77 69 74 68 20 75 73 65 72 6e 61 6d 65 20 74 65 73 | connect.client.with.username.tes |
| 48ba0 | 74 00 45 78 61 6d 70 6c 65 3a 00 45 78 61 6d 70 6c 65 3a 20 41 20 68 6f 75 73 65 68 6f 6c 64 20 | t.Example:.Example:.A.household. |
| 48bc0 | 6d 69 67 68 74 20 6e 65 65 64 20 31 30 30 30 20 70 6f 72 74 73 20 74 6f 20 65 6e 73 75 72 65 20 | might.need.1000.ports.to.ensure. |
| 48be0 | 73 6d 6f 6f 74 68 20 6f 70 65 72 61 74 69 6f 6e 20 66 6f 72 20 6d 75 6c 74 69 70 6c 65 20 64 65 | smooth.operation.for.multiple.de |
| 48c00 | 76 69 63 65 73 20 61 6e 64 20 61 70 70 6c 69 63 61 74 69 6f 6e 73 2e 00 45 78 61 6d 70 6c 65 3a | vices.and.applications..Example: |
| 48c20 | 20 44 65 6c 65 67 61 74 65 20 61 20 2f 36 34 20 70 72 65 66 69 78 20 74 6f 20 69 6e 74 65 72 66 | .Delegate.a./64.prefix.to.interf |
| 48c40 | 61 63 65 20 65 74 68 38 20 77 68 69 63 68 20 77 69 6c 6c 20 75 73 65 20 61 20 6c 6f 63 61 6c 20 | ace.eth8.which.will.use.a.local. |
| 48c60 | 61 64 64 72 65 73 73 20 6f 6e 20 74 68 69 73 20 72 6f 75 74 65 72 20 6f 66 20 60 60 3c 70 72 65 | address.on.this.router.of.``<pre |
| 48c80 | 66 69 78 3e 3a 3a 66 66 66 66 60 60 2c 20 61 73 20 74 68 65 20 61 64 64 72 65 73 73 20 36 35 35 | fix>::ffff``,.as.the.address.655 |
| 48ca0 | 33 34 20 77 69 6c 6c 20 63 6f 72 72 65 73 70 6f 6e 64 20 74 6f 20 60 60 66 66 66 66 60 60 20 69 | 34.will.correspond.to.``ffff``.i |
| 48cc0 | 6e 20 68 65 78 61 64 65 63 69 6d 61 6c 20 6e 6f 74 61 74 69 6f 6e 2e 00 45 78 61 6d 70 6c 65 3a | n.hexadecimal.notation..Example: |
| 48ce0 | 20 46 6f 72 20 61 6e 20 7e 38 2c 30 30 30 20 68 6f 73 74 20 6e 65 74 77 6f 72 6b 20 61 20 73 6f | .For.an.~8,000.host.network.a.so |
| 48d00 | 75 72 63 65 20 4e 41 54 20 70 6f 6f 6c 20 6f 66 20 33 32 20 49 50 20 61 64 64 72 65 73 73 65 73 | urce.NAT.pool.of.32.IP.addresses |
| 48d20 | 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 2e 00 45 78 61 6d 70 6c 65 3a 20 49 66 20 49 44 20 | .is.recommended..Example:.If.ID. |
| 48d40 | 69 73 20 31 20 61 6e 64 20 74 68 65 20 63 6c 69 65 6e 74 20 69 73 20 64 65 6c 65 67 61 74 65 64 | is.1.and.the.client.is.delegated |
| 48d60 | 20 61 6e 20 49 50 76 36 20 70 72 65 66 69 78 20 32 30 30 31 3a 64 62 38 3a 66 66 66 66 3a 3a 2f | .an.IPv6.prefix.2001:db8:ffff::/ |
| 48d80 | 34 38 2c 20 64 68 63 70 36 63 20 77 69 6c 6c 20 63 6f 6d 62 69 6e 65 20 74 68 65 20 74 77 6f 20 | 48,.dhcp6c.will.combine.the.two. |
| 48da0 | 76 61 6c 75 65 73 20 69 6e 74 6f 20 61 20 73 69 6e 67 6c 65 20 49 50 76 36 20 70 72 65 66 69 78 | values.into.a.single.IPv6.prefix |
| 48dc0 | 2c 20 32 30 30 31 3a 64 62 38 3a 66 66 66 66 3a 31 3a 3a 2f 36 34 2c 20 61 6e 64 20 77 69 6c 6c | ,.2001:db8:ffff:1::/64,.and.will |
| 48de0 | 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 70 72 65 66 69 78 20 6f 6e 20 74 68 65 20 73 70 65 | .configure.the.prefix.on.the.spe |
| 48e00 | 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 2e 00 45 78 61 6d 70 6c 65 3a 20 4d 69 72 72 6f | cified.interface..Example:.Mirro |
| 48e20 | 72 20 74 68 65 20 69 6e 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 66 20 60 62 6f 6e 64 31 60 | r.the.inbound.traffic.of.`bond1` |
| 48e40 | 20 70 6f 72 74 20 74 6f 20 60 65 74 68 33 60 00 45 78 61 6d 70 6c 65 3a 20 4d 69 72 72 6f 72 20 | .port.to.`eth3`.Example:.Mirror. |
| 48e60 | 74 68 65 20 69 6e 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 66 20 60 62 72 31 60 20 70 6f 72 | the.inbound.traffic.of.`br1`.por |
| 48e80 | 74 20 74 6f 20 60 65 74 68 33 60 00 45 78 61 6d 70 6c 65 3a 20 4d 69 72 72 6f 72 20 74 68 65 20 | t.to.`eth3`.Example:.Mirror.the. |
| 48ea0 | 69 6e 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 66 20 60 65 74 68 31 60 20 70 6f 72 74 20 74 | inbound.traffic.of.`eth1`.port.t |
| 48ec0 | 6f 20 60 65 74 68 33 60 00 45 78 61 6d 70 6c 65 3a 20 4d 69 72 72 6f 72 20 74 68 65 20 6f 75 74 | o.`eth3`.Example:.Mirror.the.out |
| 48ee0 | 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 66 20 60 62 6f 6e 64 31 60 20 70 6f 72 74 20 74 6f | bound.traffic.of.`bond1`.port.to |
| 48f00 | 20 60 65 74 68 33 60 00 45 78 61 6d 70 6c 65 3a 20 4d 69 72 72 6f 72 20 74 68 65 20 6f 75 74 62 | .`eth3`.Example:.Mirror.the.outb |
| 48f20 | 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 66 20 60 62 72 31 60 20 70 6f 72 74 20 74 6f 20 60 65 | ound.traffic.of.`br1`.port.to.`e |
| 48f40 | 74 68 33 60 00 45 78 61 6d 70 6c 65 3a 20 4d 69 72 72 6f 72 20 74 68 65 20 6f 75 74 62 6f 75 6e | th3`.Example:.Mirror.the.outboun |
| 48f60 | 64 20 74 72 61 66 66 69 63 20 6f 66 20 60 65 74 68 31 60 20 70 6f 72 74 20 74 6f 20 60 65 74 68 | d.traffic.of.`eth1`.port.to.`eth |
| 48f80 | 33 60 00 45 78 61 6d 70 6c 65 3a 20 50 72 65 66 69 78 20 4c 69 73 74 73 00 45 78 61 6d 70 6c 65 | 3`.Example:.Prefix.Lists.Example |
| 48fa0 | 3a 20 53 65 74 20 60 65 74 68 30 60 20 6d 65 6d 62 65 72 20 70 6f 72 74 20 74 6f 20 62 65 20 61 | :.Set.`eth0`.member.port.to.be.a |
| 48fc0 | 6c 6c 6f 77 65 64 20 56 4c 41 4e 20 34 00 45 78 61 6d 70 6c 65 3a 20 53 65 74 20 60 65 74 68 30 | llowed.VLAN.4.Example:.Set.`eth0 |
| 48fe0 | 60 20 6d 65 6d 62 65 72 20 70 6f 72 74 20 74 6f 20 62 65 20 61 6c 6c 6f 77 65 64 20 56 4c 41 4e | `.member.port.to.be.allowed.VLAN |
| 49000 | 20 36 2d 38 00 45 78 61 6d 70 6c 65 3a 20 53 65 74 20 60 65 74 68 30 60 20 6d 65 6d 62 65 72 20 | .6-8.Example:.Set.`eth0`.member. |
| 49020 | 70 6f 72 74 20 74 6f 20 62 65 20 6e 61 74 69 76 65 20 56 4c 41 4e 20 32 00 45 78 61 6d 70 6c 65 | port.to.be.native.VLAN.2.Example |
| 49040 | 3a 20 74 6f 20 62 65 20 61 70 70 65 6e 64 65 64 20 69 73 20 73 65 74 20 74 6f 20 60 60 76 79 6f | :.to.be.appended.is.set.to.``vyo |
| 49060 | 73 2e 6e 65 74 60 60 20 61 6e 64 20 74 68 65 20 55 52 4c 20 72 65 63 65 69 76 65 64 20 69 73 20 | s.net``.and.the.URL.received.is. |
| 49080 | 60 60 77 77 77 2f 66 6f 6f 2e 68 74 6d 6c 60 60 2c 20 74 68 65 20 73 79 73 74 65 6d 20 77 69 6c | ``www/foo.html``,.the.system.wil |
| 490a0 | 6c 20 75 73 65 20 74 68 65 20 67 65 6e 65 72 61 74 65 64 2c 20 66 69 6e 61 6c 20 55 52 4c 20 6f | l.use.the.generated,.final.URL.o |
| 490c0 | 66 20 60 60 77 77 77 2e 76 79 6f 73 2e 6e 65 74 2f 66 6f 6f 2e 68 74 6d 6c 60 60 2e 00 45 78 61 | f.``www.vyos.net/foo.html``..Exa |
| 490e0 | 6d 70 6c 65 73 00 45 78 61 6d 70 6c 65 73 20 6f 66 20 70 6f 6c 69 63 69 65 73 20 75 73 61 67 65 | mples.Examples.of.policies.usage |
| 49100 | 3a 00 45 78 61 6d 70 6c 65 73 3a 00 45 78 63 6c 75 64 65 20 49 50 20 61 64 64 72 65 73 73 65 73 | :.Examples:.Exclude.IP.addresses |
| 49120 | 20 66 72 6f 6d 20 60 60 56 52 52 50 20 70 61 63 6b 65 74 73 60 60 2e 20 54 68 69 73 20 6f 70 74 | .from.``VRRP.packets``..This.opt |
| 49140 | 69 6f 6e 20 60 60 65 78 63 6c 75 64 65 64 2d 61 64 64 72 65 73 73 60 60 20 69 73 20 75 73 65 64 | ion.``excluded-address``.is.used |
| 49160 | 20 77 68 65 6e 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 73 65 74 20 49 50 76 34 20 2b 20 49 50 76 | .when.you.want.to.set.IPv4.+.IPv |
| 49180 | 36 20 61 64 64 72 65 73 73 65 73 20 6f 6e 20 74 68 65 20 73 61 6d 65 20 76 69 72 74 75 61 6c 20 | 6.addresses.on.the.same.virtual. |
| 491a0 | 69 6e 74 65 72 66 61 63 65 20 6f 72 20 77 68 65 6e 20 75 73 65 64 20 6d 6f 72 65 20 74 68 61 6e | interface.or.when.used.more.than |
| 491c0 | 20 32 30 20 49 50 20 61 64 64 72 65 73 73 65 73 2e 00 45 78 63 6c 75 64 65 20 60 3c 65 78 63 6c | .20.IP.addresses..Exclude.`<excl |
| 491e0 | 75 64 65 2d 70 72 65 66 69 78 3e 60 20 66 72 6f 6d 20 60 3c 70 64 2d 70 72 65 66 69 78 3e 60 2e | ude-prefix>`.from.`<pd-prefix>`. |
| 49200 | 00 45 78 63 6c 75 64 65 20 61 64 64 72 65 73 73 00 45 78 63 6c 75 64 65 20 74 72 61 66 66 69 63 | .Exclude.address.Exclude.traffic |
| 49220 | 00 45 78 69 74 20 70 6f 6c 69 63 79 20 6f 6e 20 6d 61 74 63 68 3a 20 67 6f 20 74 6f 20 6e 65 78 | .Exit.policy.on.match:.go.to.nex |
| 49240 | 74 20 73 65 71 75 65 6e 63 65 20 6e 75 6d 62 65 72 2e 00 45 78 69 74 20 70 6f 6c 69 63 79 20 6f | t.sequence.number..Exit.policy.o |
| 49260 | 6e 20 6d 61 74 63 68 3a 20 67 6f 20 74 6f 20 72 75 6c 65 20 3c 31 2d 36 35 35 33 35 3e 00 45 78 | n.match:.go.to.rule.<1-65535>.Ex |
| 49280 | 70 65 64 69 74 65 64 20 66 6f 72 77 61 72 64 69 6e 67 20 28 45 46 29 00 45 78 70 6c 61 6e 61 74 | pedited.forwarding.(EF).Explanat |
| 492a0 | 69 6f 6e 00 45 78 70 6c 69 63 69 74 6c 79 20 64 65 63 6c 61 72 65 20 49 44 20 66 6f 72 20 74 68 | ion.Explicitly.declare.ID.for.th |
| 492c0 | 69 73 20 6d 69 6e 69 6f 6e 20 74 6f 20 75 73 65 20 28 64 65 66 61 75 6c 74 3a 20 68 6f 73 74 6e | is.minion.to.use.(default:.hostn |
| 492e0 | 61 6d 65 29 00 45 78 74 65 72 6e 61 6c 20 44 48 43 50 76 36 20 73 65 72 76 65 72 20 69 73 20 61 | ame).External.DHCPv6.server.is.a |
| 49300 | 74 20 32 30 30 31 3a 64 62 38 3a 3a 34 00 45 78 74 65 72 6e 61 6c 20 52 6f 75 74 65 20 53 75 6d | t.2001:db8::4.External.Route.Sum |
| 49320 | 6d 61 72 69 73 61 74 69 6f 6e 00 45 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 20 73 65 71 75 | marisation.External.address.sequ |
| 49340 | 65 6e 63 65 73 00 45 78 74 65 72 6e 61 6c 20 61 74 74 61 63 6b 3a 20 61 6e 20 61 74 74 61 63 6b | ences.External.attack:.an.attack |
| 49360 | 20 66 72 6f 6d 20 74 68 65 20 69 6e 74 65 72 6e 65 74 20 74 6f 77 61 72 64 73 20 61 6e 20 69 6e | .from.the.internet.towards.an.in |
| 49380 | 74 65 72 6e 61 6c 20 49 50 20 69 73 20 69 64 65 6e 74 69 66 79 2e 20 49 6e 20 74 68 69 73 20 63 | ternal.IP.is.identify..In.this.c |
| 493a0 | 61 73 65 2c 20 61 6c 6c 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 77 61 72 64 73 20 73 75 63 | ase,.all.connections.towards.suc |
| 493c0 | 68 20 49 50 20 77 69 6c 6c 20 62 65 20 62 6c 6f 63 6b 65 64 00 46 51 2d 43 6f 44 65 6c 00 46 51 | h.IP.will.be.blocked.FQ-CoDel.FQ |
| 493e0 | 2d 43 6f 44 65 6c 20 66 69 67 68 74 73 20 62 75 66 66 65 72 62 6c 6f 61 74 20 61 6e 64 20 72 65 | -CoDel.fights.bufferbloat.and.re |
| 49400 | 64 75 63 65 73 20 6c 61 74 65 6e 63 79 20 77 69 74 68 6f 75 74 20 74 68 65 20 6e 65 65 64 20 6f | duces.latency.without.the.need.o |
| 49420 | 66 20 63 6f 6d 70 6c 65 78 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 2e 20 49 74 20 68 61 73 | f.complex.configurations..It.has |
| 49440 | 20 62 65 63 6f 6d 65 20 74 68 65 20 6e 65 77 20 64 65 66 61 75 6c 74 20 51 75 65 75 65 69 6e 67 | .become.the.new.default.Queueing |
| 49460 | 20 44 69 73 63 69 70 6c 69 6e 65 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 73 20 6f | .Discipline.for.the.interfaces.o |
| 49480 | 66 20 73 6f 6d 65 20 47 4e 55 2f 4c 69 6e 75 78 20 64 69 73 74 72 69 62 75 74 69 6f 6e 73 2e 00 | f.some.GNU/Linux.distributions.. |
| 494a0 | 46 51 2d 43 6f 44 65 6c 20 69 73 20 62 61 73 65 64 20 6f 6e 20 61 20 6d 6f 64 69 66 69 65 64 20 | FQ-CoDel.is.based.on.a.modified. |
| 494c0 | 44 65 66 69 63 69 74 20 52 6f 75 6e 64 20 52 6f 62 69 6e 20 28 44 52 52 5f 29 20 71 75 65 75 65 | Deficit.Round.Robin.(DRR_).queue |
| 494e0 | 20 73 63 68 65 64 75 6c 65 72 20 77 69 74 68 20 74 68 65 20 43 6f 44 65 6c 20 41 63 74 69 76 65 | .scheduler.with.the.CoDel.Active |
| 49500 | 20 51 75 65 75 65 20 4d 61 6e 61 67 65 6d 65 6e 74 20 28 41 51 4d 29 20 61 6c 67 6f 72 69 74 68 | .Queue.Management.(AQM).algorith |
| 49520 | 6d 20 6f 70 65 72 61 74 69 6e 67 20 6f 6e 20 65 61 63 68 20 71 75 65 75 65 2e 00 46 51 2d 43 6f | m.operating.on.each.queue..FQ-Co |
| 49540 | 44 65 6c 20 69 73 20 74 75 6e 65 64 20 74 6f 20 72 75 6e 20 6f 6b 20 77 69 74 68 20 69 74 73 20 | Del.is.tuned.to.run.ok.with.its. |
| 49560 | 64 65 66 61 75 6c 74 20 70 61 72 61 6d 65 74 65 72 73 20 61 74 20 31 30 47 62 69 74 20 73 70 65 | default.parameters.at.10Gbit.spe |
| 49580 | 65 64 73 2e 20 49 74 20 6d 69 67 68 74 20 77 6f 72 6b 20 6f 6b 20 74 6f 6f 20 61 74 20 6f 74 68 | eds..It.might.work.ok.too.at.oth |
| 495a0 | 65 72 20 73 70 65 65 64 73 20 77 69 74 68 6f 75 74 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 6e | er.speeds.without.configuring.an |
| 495c0 | 79 74 68 69 6e 67 2c 20 62 75 74 20 68 65 72 65 20 77 65 20 77 69 6c 6c 20 65 78 70 6c 61 69 6e | ything,.but.here.we.will.explain |
| 495e0 | 20 73 6f 6d 65 20 63 61 73 65 73 20 77 68 65 6e 20 79 6f 75 20 6d 69 67 68 74 20 77 61 6e 74 20 | .some.cases.when.you.might.want. |
| 49600 | 74 6f 20 74 75 6e 65 20 69 74 73 20 70 61 72 61 6d 65 74 65 72 73 2e 00 46 51 2d 43 6f 64 65 6c | to.tune.its.parameters..FQ-Codel |
| 49620 | 20 69 73 20 61 20 6e 6f 6e 2d 73 68 61 70 69 6e 67 20 28 77 6f 72 6b 2d 63 6f 6e 73 65 72 76 69 | .is.a.non-shaping.(work-conservi |
| 49640 | 6e 67 29 20 70 6f 6c 69 63 79 2c 20 73 6f 20 69 74 20 77 69 6c 6c 20 6f 6e 6c 79 20 62 65 20 75 | ng).policy,.so.it.will.only.be.u |
| 49660 | 73 65 66 75 6c 20 69 66 20 79 6f 75 72 20 6f 75 74 67 6f 69 6e 67 20 69 6e 74 65 72 66 61 63 65 | seful.if.your.outgoing.interface |
| 49680 | 20 69 73 20 72 65 61 6c 6c 79 20 66 75 6c 6c 2e 20 49 66 20 69 74 20 69 73 20 6e 6f 74 2c 20 56 | .is.really.full..If.it.is.not,.V |
| 496a0 | 79 4f 53 20 77 69 6c 6c 20 6e 6f 74 20 6f 77 6e 20 74 68 65 20 71 75 65 75 65 20 61 6e 64 20 46 | yOS.will.not.own.the.queue.and.F |
| 496c0 | 51 2d 43 6f 64 65 6c 20 77 69 6c 6c 20 68 61 76 65 20 6e 6f 20 65 66 66 65 63 74 2e 20 49 66 20 | Q-Codel.will.have.no.effect..If. |
| 496e0 | 74 68 65 72 65 20 69 73 20 62 61 6e 64 77 69 64 74 68 20 61 76 61 69 6c 61 62 6c 65 20 6f 6e 20 | there.is.bandwidth.available.on. |
| 49700 | 74 68 65 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 2c 20 79 6f 75 20 63 61 6e 20 65 6d 62 65 64 | the.physical.link,.you.can.embed |
| 49720 | 5f 20 46 51 2d 43 6f 64 65 6c 20 69 6e 74 6f 20 61 20 63 6c 61 73 73 66 75 6c 20 73 68 61 70 69 | _.FQ-Codel.into.a.classful.shapi |
| 49740 | 6e 67 20 70 6f 6c 69 63 79 20 74 6f 20 6d 61 6b 65 20 73 75 72 65 20 69 74 20 6f 77 6e 73 20 74 | ng.policy.to.make.sure.it.owns.t |
| 49760 | 68 65 20 71 75 65 75 65 2e 20 49 66 20 79 6f 75 20 61 72 65 20 6e 6f 74 20 73 75 72 65 20 69 66 | he.queue..If.you.are.not.sure.if |
| 49780 | 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 65 6d 62 65 64 20 79 6f 75 72 20 46 51 2d 43 6f 44 65 6c | .you.need.to.embed.your.FQ-CoDel |
| 497a0 | 20 70 6f 6c 69 63 79 20 69 6e 74 6f 20 61 20 53 68 61 70 65 72 2c 20 64 6f 20 69 74 2e 00 46 52 | .policy.into.a.Shaper,.do.it..FR |
| 497c0 | 52 00 46 52 52 20 6f 66 66 65 72 73 20 6f 6e 6c 79 20 70 61 72 74 69 61 6c 20 73 75 70 70 6f 72 | R.FRR.offers.only.partial.suppor |
| 497e0 | 74 20 66 6f 72 20 73 6f 6d 65 20 6f 66 20 74 68 65 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 | t.for.some.of.the.routing.protoc |
| 49800 | 6f 6c 20 65 78 74 65 6e 73 69 6f 6e 73 20 74 68 61 74 20 61 72 65 20 75 73 65 64 20 77 69 74 68 | ol.extensions.that.are.used.with |
| 49820 | 20 4d 50 4c 53 2d 54 45 3b 20 69 74 20 64 6f 65 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 20 61 20 | .MPLS-TE;.it.does.not.support.a. |
| 49840 | 63 6f 6d 70 6c 65 74 65 20 52 53 56 50 2d 54 45 20 73 6f 6c 75 74 69 6f 6e 2e 00 46 52 52 20 73 | complete.RSVP-TE.solution..FRR.s |
| 49860 | 75 70 70 6f 72 74 73 20 61 20 6e 65 77 20 77 61 79 20 6f 66 20 63 6f 6e 66 69 67 75 72 69 6e 67 | upports.a.new.way.of.configuring |
| 49880 | 20 56 4c 41 4e 2d 74 6f 2d 56 4e 49 20 6d 61 70 70 69 6e 67 73 20 66 6f 72 20 45 56 50 4e 2d 56 | .VLAN-to-VNI.mappings.for.EVPN-V |
| 498a0 | 58 4c 41 4e 2c 20 77 68 65 6e 20 77 6f 72 6b 69 6e 67 20 77 69 74 68 20 74 68 65 20 4c 69 6e 75 | XLAN,.when.working.with.the.Linu |
| 498c0 | 78 20 6b 65 72 6e 65 6c 2e 20 49 6e 20 74 68 69 73 20 6e 65 77 20 77 61 79 2c 20 74 68 65 20 6d | x.kernel..In.this.new.way,.the.m |
| 498e0 | 61 70 70 69 6e 67 20 6f 66 20 61 20 56 4c 41 4e 20 74 6f 20 61 20 3a 61 62 62 72 3a 60 56 4e 49 | apping.of.a.VLAN.to.a.:abbr:`VNI |
| 49900 | 20 28 56 58 4c 41 4e 20 4e 65 74 77 6f 72 6b 20 49 64 65 6e 74 69 66 69 65 72 20 28 6f 72 20 56 | .(VXLAN.Network.Identifier.(or.V |
| 49920 | 58 4c 41 4e 20 53 65 67 6d 65 6e 74 20 49 44 29 29 60 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 | XLAN.Segment.ID))`.is.configured |
| 49940 | 20 61 67 61 69 6e 73 74 20 61 20 63 6f 6e 74 61 69 6e 65 72 20 56 58 4c 41 4e 20 69 6e 74 65 72 | .against.a.container.VXLAN.inter |
| 49960 | 66 61 63 65 20 77 68 69 63 68 20 69 73 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 61 20 3a | face.which.is.referred.to.as.a.: |
| 49980 | 61 62 62 72 3a 60 53 56 44 20 28 53 69 6e 67 6c 65 20 56 58 4c 41 4e 20 64 65 76 69 63 65 29 60 | abbr:`SVD.(Single.VXLAN.device)` |
| 499a0 | 2e 00 46 54 50 20 64 61 65 6d 6f 6e 00 46 61 63 69 6c 69 74 69 65 73 00 46 61 63 69 6c 69 74 69 | ..FTP.daemon.Facilities.Faciliti |
| 499c0 | 65 73 20 63 61 6e 20 62 65 20 61 64 6a 75 73 74 65 64 20 74 6f 20 6d 65 65 74 20 74 68 65 20 6e | es.can.be.adjusted.to.meet.the.n |
| 499e0 | 65 65 64 73 20 6f 66 20 74 68 65 20 75 73 65 72 3a 00 46 61 63 69 6c 69 74 79 20 43 6f 64 65 00 | eeds.of.the.user:.Facility.Code. |
| 49a00 | 46 61 69 6c 6f 76 65 72 00 46 61 69 6c 6f 76 65 72 20 52 6f 75 74 65 73 00 46 61 69 6c 6f 76 65 | Failover.Failover.Routes.Failove |
| 49a20 | 72 20 6d 65 63 68 61 6e 69 73 6d 20 74 6f 20 75 73 65 20 66 6f 72 20 63 6f 6e 6e 74 72 61 63 6b | r.mechanism.to.use.for.conntrack |
| 49a40 | 2d 73 79 6e 63 2e 00 46 61 69 6c 6f 76 65 72 20 72 6f 75 74 65 73 20 61 72 65 20 6d 61 6e 75 61 | -sync..Failover.routes.are.manua |
| 49a60 | 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 72 6f 75 74 65 73 2c 20 62 75 74 20 74 68 65 79 20 | lly.configured.routes,.but.they. |
| 49a80 | 69 6e 73 74 61 6c 6c 20 74 6f 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 69 66 20 | install.to.the.routing.table.if. |
| 49aa0 | 74 68 65 20 68 65 61 6c 74 68 2d 63 68 65 63 6b 20 74 61 72 67 65 74 20 69 73 20 61 6c 69 76 65 | the.health-check.target.is.alive |
| 49ac0 | 2e 20 49 66 20 74 68 65 20 74 61 72 67 65 74 20 69 73 20 6e 6f 74 20 61 6c 69 76 65 20 74 68 65 | ..If.the.target.is.not.alive.the |
| 49ae0 | 20 72 6f 75 74 65 20 69 73 20 72 65 6d 6f 76 65 64 20 66 72 6f 6d 20 74 68 65 20 72 6f 75 74 69 | .route.is.removed.from.the.routi |
| 49b00 | 6e 67 20 74 61 62 6c 65 20 75 6e 74 69 6c 20 74 68 65 20 74 61 72 67 65 74 20 77 69 6c 6c 20 62 | ng.table.until.the.target.will.b |
| 49b20 | 65 20 61 76 61 69 6c 61 62 6c 65 2e 00 46 61 69 6c 6f 76 65 72 20 72 6f 75 74 65 73 20 61 72 65 | e.available..Failover.routes.are |
| 49b40 | 20 6d 61 6e 75 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 72 6f 75 74 65 73 2c 20 62 75 74 | .manually.configured.routes,.but |
| 49b60 | 20 74 68 65 79 20 6f 6e 6c 79 20 69 6e 73 74 61 6c 6c 20 74 6f 20 74 68 65 20 72 6f 75 74 69 6e | .they.only.install.to.the.routin |
| 49b80 | 67 20 74 61 62 6c 65 20 69 66 20 74 68 65 20 68 65 61 6c 74 68 2d 63 68 65 63 6b 20 74 61 72 67 | g.table.if.the.health-check.targ |
| 49ba0 | 65 74 20 69 73 20 61 6c 69 76 65 2e 20 49 66 20 74 68 65 20 74 61 72 67 65 74 20 69 73 20 6e 6f | et.is.alive..If.the.target.is.no |
| 49bc0 | 74 20 61 6c 69 76 65 20 74 68 65 20 72 6f 75 74 65 20 69 73 20 72 65 6d 6f 76 65 64 20 66 72 6f | t.alive.the.route.is.removed.fro |
| 49be0 | 6d 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 75 6e 74 69 6c 20 74 68 65 20 74 61 | m.the.routing.table.until.the.ta |
| 49c00 | 72 67 65 74 20 62 65 63 6f 6d 65 73 20 61 76 61 69 6c 61 62 6c 65 2e 00 46 61 69 72 20 51 75 65 | rget.becomes.available..Fair.Que |
| 49c20 | 75 65 00 46 61 69 72 20 51 75 65 75 65 20 69 73 20 61 20 6e 6f 6e 2d 73 68 61 70 69 6e 67 20 28 | ue.Fair.Queue.is.a.non-shaping.( |
| 49c40 | 77 6f 72 6b 2d 63 6f 6e 73 65 72 76 69 6e 67 29 20 70 6f 6c 69 63 79 2c 20 73 6f 20 69 74 20 77 | work-conserving).policy,.so.it.w |
| 49c60 | 69 6c 6c 20 6f 6e 6c 79 20 62 65 20 75 73 65 66 75 6c 20 69 66 20 79 6f 75 72 20 6f 75 74 67 6f | ill.only.be.useful.if.your.outgo |
| 49c80 | 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 72 65 61 6c 6c 79 20 66 75 6c 6c 2e 20 49 66 | ing.interface.is.really.full..If |
| 49ca0 | 20 69 74 20 69 73 20 6e 6f 74 2c 20 56 79 4f 53 20 77 69 6c 6c 20 6e 6f 74 20 6f 77 6e 20 74 68 | .it.is.not,.VyOS.will.not.own.th |
| 49cc0 | 65 20 71 75 65 75 65 20 61 6e 64 20 46 61 69 72 20 51 75 65 75 65 20 77 69 6c 6c 20 68 61 76 65 | e.queue.and.Fair.Queue.will.have |
| 49ce0 | 20 6e 6f 20 65 66 66 65 63 74 2e 20 49 66 20 74 68 65 72 65 20 69 73 20 62 61 6e 64 77 69 64 74 | .no.effect..If.there.is.bandwidt |
| 49d00 | 68 20 61 76 61 69 6c 61 62 6c 65 20 6f 6e 20 74 68 65 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b | h.available.on.the.physical.link |
| 49d20 | 2c 20 79 6f 75 20 63 61 6e 20 65 6d 62 65 64 5f 20 46 61 69 72 2d 51 75 65 75 65 20 69 6e 74 6f | ,.you.can.embed_.Fair-Queue.into |
| 49d40 | 20 61 20 63 6c 61 73 73 66 75 6c 20 73 68 61 70 69 6e 67 20 70 6f 6c 69 63 79 20 74 6f 20 6d 61 | .a.classful.shaping.policy.to.ma |
| 49d60 | 6b 65 20 73 75 72 65 20 69 74 20 6f 77 6e 73 20 74 68 65 20 71 75 65 75 65 2e 00 46 61 69 72 20 | ke.sure.it.owns.the.queue..Fair. |
| 49d80 | 51 75 65 75 65 20 69 73 20 61 20 77 6f 72 6b 2d 63 6f 6e 73 65 72 76 69 6e 67 20 73 63 68 65 64 | Queue.is.a.work-conserving.sched |
| 49da0 | 75 6c 65 72 20 77 68 69 63 68 20 73 63 68 65 64 75 6c 65 73 20 74 68 65 20 74 72 61 6e 73 6d 69 | uler.which.schedules.the.transmi |
| 49dc0 | 73 73 69 6f 6e 20 6f 66 20 70 61 63 6b 65 74 73 20 62 61 73 65 64 20 6f 6e 20 66 6c 6f 77 73 2c | ssion.of.packets.based.on.flows, |
| 49de0 | 20 74 68 61 74 20 69 73 2c 20 69 74 20 62 61 6c 61 6e 63 65 73 20 74 72 61 66 66 69 63 20 64 69 | .that.is,.it.balances.traffic.di |
| 49e00 | 73 74 72 69 62 75 74 69 6e 67 20 69 74 20 74 68 72 6f 75 67 68 20 64 69 66 66 65 72 65 6e 74 20 | stributing.it.through.different. |
| 49e20 | 73 75 62 2d 71 75 65 75 65 73 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 65 6e 73 75 72 65 20 66 61 | sub-queues.in.order.to.ensure.fa |
| 49e40 | 69 72 6e 65 73 73 20 73 6f 20 74 68 61 74 20 65 61 63 68 20 66 6c 6f 77 20 69 73 20 61 62 6c 65 | irness.so.that.each.flow.is.able |
| 49e60 | 20 74 6f 20 73 65 6e 64 20 64 61 74 61 20 69 6e 20 74 75 72 6e 2c 20 70 72 65 76 65 6e 74 69 6e | .to.send.data.in.turn,.preventin |
| 49e80 | 67 20 61 6e 79 20 73 69 6e 67 6c 65 20 6f 6e 65 20 66 72 6f 6d 20 64 72 6f 77 6e 69 6e 67 20 6f | g.any.single.one.from.drowning.o |
| 49ea0 | 75 74 20 74 68 65 20 72 65 73 74 2e 00 46 61 73 74 4e 65 74 4d 6f 6e 00 46 61 73 74 4e 65 74 4d | ut.the.rest..FastNetMon.FastNetM |
| 49ec0 | 6f 6e 20 69 73 20 61 20 68 69 67 68 2d 70 65 72 66 6f 72 6d 61 6e 63 65 20 44 44 6f 53 20 64 65 | on.is.a.high-performance.DDoS.de |
| 49ee0 | 74 65 63 74 6f 72 2f 73 65 6e 73 6f 72 20 62 75 69 6c 74 20 6f 6e 20 74 6f 70 20 6f 66 20 6d 75 | tector/sensor.built.on.top.of.mu |
| 49f00 | 6c 74 69 70 6c 65 20 70 61 63 6b 65 74 20 63 61 70 74 75 72 65 20 65 6e 67 69 6e 65 73 3a 20 4e | ltiple.packet.capture.engines:.N |
| 49f20 | 65 74 46 6c 6f 77 2c 20 49 50 46 49 58 2c 20 73 46 6c 6f 77 2c 20 41 46 5f 50 41 43 4b 45 54 20 | etFlow,.IPFIX,.sFlow,.AF_PACKET. |
| 49f40 | 28 70 6f 72 74 20 6d 69 72 72 6f 72 29 2e 20 49 74 20 63 61 6e 20 64 65 74 65 63 74 20 68 6f 73 | (port.mirror)..It.can.detect.hos |
| 49f60 | 74 73 20 69 6e 20 74 68 65 20 64 65 70 6c 6f 79 65 64 20 6e 65 74 77 6f 72 6b 20 73 65 6e 64 69 | ts.in.the.deployed.network.sendi |
| 49f80 | 6e 67 20 6f 72 20 72 65 63 65 69 76 69 6e 67 20 6c 61 72 67 65 20 76 6f 6c 75 6d 65 73 20 6f 66 | ng.or.receiving.large.volumes.of |
| 49fa0 | 20 74 72 61 66 66 69 63 2c 20 70 61 63 6b 65 74 73 2f 62 79 74 65 73 2f 66 6c 6f 77 73 20 70 65 | .traffic,.packets/bytes/flows.pe |
| 49fc0 | 72 20 73 65 63 6f 6e 64 20 61 6e 64 20 70 65 72 66 6f 72 6d 20 61 20 63 6f 6e 66 69 67 75 72 61 | r.second.and.perform.a.configura |
| 49fe0 | 62 6c 65 20 61 63 74 69 6f 6e 20 74 6f 20 68 61 6e 64 6c 65 20 74 68 61 74 20 65 76 65 6e 74 2c | ble.action.to.handle.that.event, |
| 4a000 | 20 73 75 63 68 20 61 73 20 63 61 6c 6c 69 6e 67 20 61 20 63 75 73 74 6f 6d 20 73 63 72 69 70 74 | .such.as.calling.a.custom.script |
| 4a020 | 2e 00 46 65 61 74 75 72 65 73 20 6f 66 20 74 68 65 20 43 75 72 72 65 6e 74 20 49 6d 70 6c 65 6d | ..Features.of.the.Current.Implem |
| 4a040 | 65 6e 74 61 74 69 6f 6e 00 46 69 65 6c 64 00 46 69 6c 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 | entation.Field.File.identified.b |
| 4a060 | 79 20 60 3c 66 69 6c 65 6e 61 6d 65 3e 60 20 63 6f 6e 74 61 69 6e 69 6e 67 20 74 68 65 20 54 53 | y.`<filename>`.containing.the.TS |
| 4a080 | 49 47 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6b 65 79 20 66 6f 72 20 52 46 43 32 31 33 | IG.authentication.key.for.RFC213 |
| 4a0a0 | 36 20 6e 73 75 70 64 61 74 65 20 6f 6e 20 72 65 6d 6f 74 65 20 44 4e 53 20 73 65 72 76 65 72 2e | 6.nsupdate.on.remote.DNS.server. |
| 4a0c0 | 00 46 69 6c 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 6b 65 79 66 69 6c 65 3e 60 20 | .File.identified.by.`<keyfile>`. |
| 4a0e0 | 63 6f 6e 74 61 69 6e 69 6e 67 20 74 68 65 20 73 65 63 72 65 74 20 52 4e 44 43 20 6b 65 79 20 73 | containing.the.secret.RNDC.key.s |
| 4a100 | 68 61 72 65 64 20 77 69 74 68 20 72 65 6d 6f 74 65 20 44 4e 53 20 73 65 72 76 65 72 2e 00 46 69 | hared.with.remote.DNS.server..Fi |
| 4a120 | 6c 74 65 72 20 54 79 70 65 2d 33 20 73 75 6d 6d 61 72 79 2d 4c 53 41 73 20 61 6e 6e 6f 75 6e 63 | lter.Type-3.summary-LSAs.announc |
| 4a140 | 65 64 20 74 6f 20 6f 74 68 65 72 20 61 72 65 61 73 20 6f 72 69 67 69 6e 61 74 65 64 20 66 72 6f | ed.to.other.areas.originated.fro |
| 4a160 | 6d 20 69 6e 74 72 61 2d 20 61 72 65 61 20 70 61 74 68 73 20 66 72 6f 6d 20 73 70 65 63 69 66 69 | m.intra-.area.paths.from.specifi |
| 4a180 | 65 64 20 61 72 65 61 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 6d 61 6b 65 73 20 73 65 6e 73 | ed.area..This.command.makes.sens |
| 4a1a0 | 65 20 69 6e 20 41 42 52 20 6f 6e 6c 79 2e 00 46 69 6c 74 65 72 20 73 79 73 6c 6f 67 20 6d 65 73 | e.in.ABR.only..Filter.syslog.mes |
| 4a1c0 | 73 61 67 65 73 20 62 61 73 65 64 20 6f 6e 20 66 61 63 69 6c 69 74 79 20 61 6e 64 20 6c 65 76 65 | sages.based.on.facility.and.leve |
| 4a1e0 | 6c 2e 00 46 69 6c 74 65 72 20 74 72 61 66 66 69 63 20 62 61 73 65 64 20 6f 6e 20 73 6f 75 72 63 | l..Filter.traffic.based.on.sourc |
| 4a200 | 65 2f 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2e 00 46 69 6c 74 65 72 2d 49 64 | e/destination.address..Filter-Id |
| 4a220 | 3d 32 30 30 30 2f 33 30 30 30 20 28 6d 65 61 6e 73 20 32 30 30 30 4b 62 69 74 20 64 6f 77 6e 2d | =2000/3000.(means.2000Kbit.down- |
| 4a240 | 73 74 72 65 61 6d 20 72 61 74 65 20 61 6e 64 20 33 30 30 30 4b 62 69 74 20 75 70 2d 73 74 72 65 | stream.rate.and.3000Kbit.up-stre |
| 4a260 | 61 6d 20 72 61 74 65 29 00 46 69 6c 74 65 72 2d 49 64 3d 35 30 30 30 2f 34 30 30 30 20 28 6d 65 | am.rate).Filter-Id=5000/4000.(me |
| 4a280 | 61 6e 73 20 35 30 30 30 4b 62 69 74 20 64 6f 77 6e 2d 73 74 72 65 61 6d 20 72 61 74 65 20 61 6e | ans.5000Kbit.down-stream.rate.an |
| 4a2a0 | 64 20 34 30 30 30 4b 62 69 74 20 75 70 2d 73 74 72 65 61 6d 20 72 61 74 65 29 20 49 66 20 61 74 | d.4000Kbit.up-stream.rate).If.at |
| 4a2c0 | 74 72 69 62 75 74 65 20 46 69 6c 74 65 72 2d 49 64 20 72 65 64 65 66 69 6e 65 64 2c 20 72 65 70 | tribute.Filter-Id.redefined,.rep |
| 4a2e0 | 6c 61 63 65 20 69 74 20 69 6e 20 52 41 44 49 55 53 20 43 6f 41 20 72 65 71 75 65 73 74 2e 00 46 | lace.it.in.RADIUS.CoA.request..F |
| 4a300 | 69 6c 74 65 72 69 6e 67 00 46 69 6c 74 65 72 69 6e 67 20 69 73 20 75 73 65 64 20 66 6f 72 20 62 | iltering.Filtering.is.used.for.b |
| 4a320 | 6f 74 68 20 69 6e 70 75 74 20 61 6e 64 20 6f 75 74 70 75 74 20 6f 66 20 74 68 65 20 72 6f 75 74 | oth.input.and.output.of.the.rout |
| 4a340 | 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 20 4f 6e 63 65 20 66 69 6c 74 65 72 69 6e 67 20 | ing.information..Once.filtering. |
| 4a360 | 69 73 20 64 65 66 69 6e 65 64 2c 20 69 74 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 69 6e | is.defined,.it.can.be.applied.in |
| 4a380 | 20 61 6e 79 20 64 69 72 65 63 74 69 6f 6e 2e 20 56 79 4f 53 20 6d 61 6b 65 73 20 66 69 6c 74 65 | .any.direction..VyOS.makes.filte |
| 4a3a0 | 72 69 6e 67 20 70 6f 73 73 69 62 6c 65 20 75 73 69 6e 67 20 61 63 6c 73 20 61 6e 64 20 70 72 65 | ring.possible.using.acls.and.pre |
| 4a3c0 | 66 69 78 20 6c 69 73 74 73 2e 00 46 69 6e 61 6c 6c 79 2c 20 74 6f 20 61 70 70 6c 79 20 74 68 65 | fix.lists..Finally,.to.apply.the |
| 4a3e0 | 20 70 6f 6c 69 63 79 20 72 6f 75 74 65 20 74 6f 20 69 6e 67 72 65 73 73 20 74 72 61 66 66 69 63 | .policy.route.to.ingress.traffic |
| 4a400 | 20 6f 6e 20 6f 75 72 20 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 2c 20 77 65 20 75 73 65 3a 00 46 | .on.our.LAN.interface,.we.use:.F |
| 4a420 | 69 72 65 77 61 6c 6c 00 46 69 72 65 77 61 6c 6c 20 2d 20 49 50 76 34 20 52 75 6c 65 73 00 46 69 | irewall.Firewall.-.IPv4.Rules.Fi |
| 4a440 | 72 65 77 61 6c 6c 20 2d 20 49 50 76 36 20 52 75 6c 65 73 00 46 69 72 65 77 61 6c 6c 20 43 6f 6e | rewall.-.IPv6.Rules.Firewall.Con |
| 4a460 | 66 69 67 75 72 61 74 69 6f 6e 00 46 69 72 65 77 61 6c 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f | figuration.Firewall.Configuratio |
| 4a480 | 6e 20 28 44 65 70 72 65 63 61 74 65 64 29 00 46 69 72 65 77 61 6c 6c 20 44 65 73 63 72 69 70 74 | n.(Deprecated).Firewall.Descript |
| 4a4a0 | 69 6f 6e 00 46 69 72 65 77 61 6c 6c 20 45 78 63 65 70 74 69 6f 6e 73 00 46 69 72 65 77 61 6c 6c | ion.Firewall.Exceptions.Firewall |
| 4a4c0 | 20 4c 6f 67 73 00 46 69 72 65 77 61 6c 6c 20 52 75 6c 65 73 00 46 69 72 65 77 61 6c 6c 20 62 61 | .Logs.Firewall.Rules.Firewall.ba |
| 4a4e0 | 73 65 20 63 68 61 69 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 66 69 72 65 77 61 6c 6c 20 66 | se.chain.to.configure.firewall.f |
| 4a500 | 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 | iltering.rules.for.transit.traff |
| 4a520 | 69 63 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 66 6f 72 77 61 72 | ic.is.``set.firewall.ipv4.forwar |
| 4a540 | 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e | d.filter....``,.which.happens.in |
| 4a560 | 20 73 74 61 67 65 20 35 2c 20 68 69 67 68 6c 69 67 68 74 65 64 20 77 69 74 68 20 72 65 64 20 63 | .stage.5,.highlighted.with.red.c |
| 4a580 | 6f 6c 6f 72 2e 00 46 69 72 65 77 61 6c 6c 20 62 61 73 65 20 63 68 61 69 6e 20 74 6f 20 63 6f 6e | olor..Firewall.base.chain.to.con |
| 4a5a0 | 66 69 67 75 72 65 20 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 20 | figure.firewall.filtering.rules. |
| 4a5c0 | 66 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 69 73 20 60 60 73 65 74 20 66 69 72 | for.transit.traffic.is.``set.fir |
| 4a5e0 | 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c | ewall.ipv6.forward.filter....``, |
| 4a600 | 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 61 67 65 20 35 2c 20 68 69 67 68 6c | .which.happens.in.stage.5,.highl |
| 4a620 | 69 67 68 74 65 64 20 77 69 74 68 20 72 65 64 20 63 6f 6c 6f 72 2e 00 46 69 72 65 77 61 6c 6c 20 | ighted.with.red.color..Firewall. |
| 4a640 | 64 79 6e 61 6d 69 63 20 67 72 6f 75 70 73 20 61 72 65 20 64 69 66 66 65 72 65 6e 74 20 66 72 6f | dynamic.groups.are.different.fro |
| 4a660 | 6d 20 61 6c 6c 20 74 68 65 20 67 72 6f 75 70 73 20 64 65 66 69 6e 65 64 20 70 72 65 76 69 6f 75 | m.all.the.groups.defined.previou |
| 4a680 | 73 6c 79 20 62 65 63 61 75 73 65 2c 20 6e 6f 74 20 6f 6e 6c 79 20 74 68 65 79 20 63 61 6e 20 62 | sly.because,.not.only.they.can.b |
| 4a6a0 | 65 20 75 73 65 64 20 61 73 20 73 6f 75 72 63 65 2f 64 65 73 74 69 6e 61 74 69 6f 6e 20 69 6e 20 | e.used.as.source/destination.in. |
| 4a6c0 | 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 2c 20 62 75 74 20 6d 65 6d 62 65 72 73 20 6f 66 20 74 | firewall.rules,.but.members.of.t |
| 4a6e0 | 68 65 73 65 20 67 72 6f 75 70 73 20 61 72 65 20 6e 6f 74 20 64 65 66 69 6e 65 64 20 73 74 61 74 | hese.groups.are.not.defined.stat |
| 4a700 | 69 63 61 6c 6c 79 20 75 73 69 6e 67 20 76 79 6f 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e | ically.using.vyos.configuration. |
| 4a720 | 00 46 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 00 46 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 | .Firewall.groups.Firewall.groups |
| 4a740 | 20 72 65 70 72 65 73 65 6e 74 20 63 6f 6c 6c 65 63 74 69 6f 6e 73 20 6f 66 20 49 50 20 61 64 64 | .represent.collections.of.IP.add |
| 4a760 | 72 65 73 73 65 73 2c 20 6e 65 74 77 6f 72 6b 73 2c 20 70 6f 72 74 73 2c 20 6d 61 63 20 61 64 64 | resses,.networks,.ports,.mac.add |
| 4a780 | 72 65 73 73 65 73 20 6f 72 20 64 6f 6d 61 69 6e 73 2e 20 4f 6e 63 65 20 63 72 65 61 74 65 64 2c | resses.or.domains..Once.created, |
| 4a7a0 | 20 61 20 67 72 6f 75 70 20 63 61 6e 20 62 65 20 72 65 66 65 72 65 6e 63 65 64 20 62 79 20 66 69 | .a.group.can.be.referenced.by.fi |
| 4a7c0 | 72 65 77 61 6c 6c 2c 20 6e 61 74 20 61 6e 64 20 70 6f 6c 69 63 79 20 72 6f 75 74 65 20 72 75 6c | rewall,.nat.and.policy.route.rul |
| 4a7e0 | 65 73 20 61 73 20 65 69 74 68 65 72 20 61 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 6e 61 | es.as.either.a.source.or.destina |
| 4a800 | 74 69 6f 6e 20 6d 61 74 63 68 65 72 2e 20 4d 65 6d 62 65 72 73 20 63 61 6e 20 62 65 20 61 64 64 | tion.matcher..Members.can.be.add |
| 4a820 | 65 64 20 6f 72 20 72 65 6d 6f 76 65 64 20 66 72 6f 6d 20 61 20 67 72 6f 75 70 20 77 69 74 68 6f | ed.or.removed.from.a.group.witho |
| 4a840 | 75 74 20 63 68 61 6e 67 65 73 20 74 6f 2c 20 6f 72 20 74 68 65 20 6e 65 65 64 20 74 6f 20 72 65 | ut.changes.to,.or.the.need.to.re |
| 4a860 | 6c 6f 61 64 2c 20 69 6e 64 69 76 69 64 75 61 6c 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 2e | load,.individual.firewall.rules. |
| 4a880 | 00 46 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 20 72 65 70 72 65 73 65 6e 74 20 63 6f 6c 6c 65 | .Firewall.groups.represent.colle |
| 4a8a0 | 63 74 69 6f 6e 73 20 6f 66 20 49 50 20 61 64 64 72 65 73 73 65 73 2c 20 6e 65 74 77 6f 72 6b 73 | ctions.of.IP.addresses,.networks |
| 4a8c0 | 2c 20 70 6f 72 74 73 2c 20 6d 61 63 20 61 64 64 72 65 73 73 65 73 2c 20 64 6f 6d 61 69 6e 73 20 | ,.ports,.mac.addresses,.domains. |
| 4a8e0 | 6f 72 20 69 6e 74 65 72 66 61 63 65 73 2e 20 4f 6e 63 65 20 63 72 65 61 74 65 64 2c 20 61 20 67 | or.interfaces..Once.created,.a.g |
| 4a900 | 72 6f 75 70 20 63 61 6e 20 62 65 20 72 65 66 65 72 65 6e 63 65 64 20 62 79 20 66 69 72 65 77 61 | roup.can.be.referenced.by.firewa |
| 4a920 | 6c 6c 2c 20 6e 61 74 20 61 6e 64 20 70 6f 6c 69 63 79 20 72 6f 75 74 65 20 72 75 6c 65 73 20 61 | ll,.nat.and.policy.route.rules.a |
| 4a940 | 73 20 65 69 74 68 65 72 20 61 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e | s.either.a.source.or.destination |
| 4a960 | 20 6d 61 74 63 68 65 72 2c 20 61 6e 64 20 61 73 20 69 6e 62 70 75 6e 64 2f 6f 75 74 62 6f 75 6e | .matcher,.and.as.inbpund/outboun |
| 4a980 | 64 20 69 6e 20 74 68 65 20 63 61 73 65 20 6f 66 20 69 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 | d.in.the.case.of.interface.group |
| 4a9a0 | 2e 00 46 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 20 72 65 70 72 65 73 65 6e 74 20 63 6f 6c 6c | ..Firewall.groups.represent.coll |
| 4a9c0 | 65 63 74 69 6f 6e 73 20 6f 66 20 49 50 20 61 64 64 72 65 73 73 65 73 2c 20 6e 65 74 77 6f 72 6b | ections.of.IP.addresses,.network |
| 4a9e0 | 73 2c 20 70 6f 72 74 73 2c 20 6d 61 63 20 61 64 64 72 65 73 73 65 73 2c 20 64 6f 6d 61 69 6e 73 | s,.ports,.mac.addresses,.domains |
| 4aa00 | 20 6f 72 20 69 6e 74 65 72 66 61 63 65 73 2e 20 4f 6e 63 65 20 63 72 65 61 74 65 64 2c 20 61 20 | .or.interfaces..Once.created,.a. |
| 4aa20 | 67 72 6f 75 70 20 63 61 6e 20 62 65 20 72 65 66 65 72 65 6e 63 65 64 20 62 79 20 66 69 72 65 77 | group.can.be.referenced.by.firew |
| 4aa40 | 61 6c 6c 2c 20 6e 61 74 20 61 6e 64 20 70 6f 6c 69 63 79 20 72 6f 75 74 65 20 72 75 6c 65 73 20 | all,.nat.and.policy.route.rules. |
| 4aa60 | 61 73 20 65 69 74 68 65 72 20 61 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 6e 61 74 69 6f | as.either.a.source.or.destinatio |
| 4aa80 | 6e 20 6d 61 74 63 68 65 72 2c 20 61 6e 64 2f 6f 72 20 61 73 20 69 6e 62 6f 75 6e 64 2f 6f 75 74 | n.matcher,.and/or.as.inbound/out |
| 4aaa0 | 62 6f 75 6e 64 20 69 6e 20 74 68 65 20 63 61 73 65 20 6f 66 20 69 6e 74 65 72 66 61 63 65 20 67 | bound.in.the.case.of.interface.g |
| 4aac0 | 72 6f 75 70 2e 00 46 69 72 65 77 61 6c 6c 20 6d 61 72 6b 2e 20 49 74 20 70 6f 73 73 69 62 6c 65 | roup..Firewall.mark..It.possible |
| 4aae0 | 20 74 6f 20 6c 6f 61 64 62 61 6c 61 6e 63 69 6e 67 20 74 72 61 66 66 69 63 20 62 61 73 65 64 20 | .to.loadbalancing.traffic.based. |
| 4ab00 | 6f 6e 20 60 60 66 77 6d 61 72 6b 60 60 20 76 61 6c 75 65 00 46 69 72 65 77 61 6c 6c 20 70 6f 6c | on.``fwmark``.value.Firewall.pol |
| 4ab20 | 69 63 79 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 74 | icy.can.also.be.applied.to.the.t |
| 4ab40 | 75 6e 6e 65 6c 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 60 6c 6f 63 61 6c 60 2c 20 60 69 6e | unnel.interface.for.`local`,.`in |
| 4ab60 | 60 2c 20 61 6e 64 20 60 6f 75 74 60 20 64 69 72 65 63 74 69 6f 6e 73 20 61 6e 64 20 66 75 6e 63 | `,.and.`out`.directions.and.func |
| 4ab80 | 74 69 6f 6e 73 20 69 64 65 6e 74 69 63 61 6c 6c 79 20 74 6f 20 65 74 68 65 72 6e 65 74 20 69 6e | tions.identically.to.ethernet.in |
| 4aba0 | 74 65 72 66 61 63 65 73 2e 00 46 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 61 72 65 20 77 72 69 | terfaces..Firewall.rules.are.wri |
| 4abc0 | 74 74 65 6e 20 61 73 20 6e 6f 72 6d 61 6c 2c 20 75 73 69 6e 67 20 74 68 65 20 69 6e 74 65 72 6e | tten.as.normal,.using.the.intern |
| 4abe0 | 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 61 73 20 74 68 65 20 73 6f 75 72 63 65 20 6f 66 20 6f | al.IP.address.as.the.source.of.o |
| 4ac00 | 75 74 62 6f 75 6e 64 20 72 75 6c 65 73 20 61 6e 64 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f | utbound.rules.and.the.destinatio |
| 4ac20 | 6e 20 6f 66 20 69 6e 62 6f 75 6e 64 20 72 75 6c 65 73 2e 00 46 69 72 65 77 61 6c 6c 20 72 75 6c | n.of.inbound.rules..Firewall.rul |
| 4ac40 | 65 73 20 66 6f 72 20 44 65 73 74 69 6e 61 74 69 6f 6e 20 4e 41 54 00 46 69 72 65 77 61 6c 6c 2d | es.for.Destination.NAT.Firewall- |
| 4ac60 | 4c 65 67 61 63 79 00 46 69 72 6d 77 61 72 65 20 55 70 64 61 74 65 00 46 69 72 73 74 20 68 6f 70 | Legacy.Firmware.Update.First.hop |
| 4ac80 | 20 69 6e 74 65 72 66 61 63 65 20 6f 66 20 61 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2e 00 | .interface.of.a.route.to.match.. |
| 4aca0 | 46 69 72 73 74 20 6f 66 20 61 6c 6c 20 79 6f 75 20 6d 75 73 74 20 63 6f 6e 66 69 67 75 72 65 20 | First.of.all.you.must.configure. |
| 4acc0 | 42 47 50 20 72 6f 75 74 65 72 20 77 69 74 68 20 74 68 65 20 3a 61 62 62 72 3a 60 41 53 4e 20 28 | BGP.router.with.the.:abbr:`ASN.( |
| 4ace0 | 41 75 74 6f 6e 6f 6d 6f 75 73 20 53 79 73 74 65 6d 20 4e 75 6d 62 65 72 29 60 2e 20 54 68 65 20 | Autonomous.System.Number)`..The. |
| 4ad00 | 41 53 20 6e 75 6d 62 65 72 20 69 73 20 61 6e 20 69 64 65 6e 74 69 66 69 65 72 20 66 6f 72 20 74 | AS.number.is.an.identifier.for.t |
| 4ad20 | 68 65 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 2e 20 54 68 65 20 42 47 50 20 70 72 | he.autonomous.system..The.BGP.pr |
| 4ad40 | 6f 74 6f 63 6f 6c 20 75 73 65 73 20 74 68 65 20 41 53 20 6e 75 6d 62 65 72 20 66 6f 72 20 64 65 | otocol.uses.the.AS.number.for.de |
| 4ad60 | 74 65 63 74 69 6e 67 20 77 68 65 74 68 65 72 20 74 68 65 20 42 47 50 20 63 6f 6e 6e 65 63 74 69 | tecting.whether.the.BGP.connecti |
| 4ad80 | 6f 6e 20 69 73 20 69 6e 74 65 72 6e 61 6c 20 6f 72 20 65 78 74 65 72 6e 61 6c 2e 20 56 79 4f 53 | on.is.internal.or.external..VyOS |
| 4ada0 | 20 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 20 61 20 73 70 65 63 69 61 6c 20 63 6f 6d 6d 61 6e 64 | .does.not.have.a.special.command |
| 4adc0 | 20 74 6f 20 73 74 61 72 74 20 74 68 65 20 42 47 50 20 70 72 6f 63 65 73 73 2e 20 54 68 65 20 42 | .to.start.the.BGP.process..The.B |
| 4ade0 | 47 50 20 70 72 6f 63 65 73 73 20 73 74 61 72 74 73 20 77 68 65 6e 20 74 68 65 20 66 69 72 73 74 | GP.process.starts.when.the.first |
| 4ae00 | 20 6e 65 69 67 68 62 6f 72 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 46 69 72 73 74 20 6f | .neighbor.is.configured..First.o |
| 4ae20 | 66 20 61 6c 6c 2c 20 77 65 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 20 61 20 43 41 20 72 6f | f.all,.we.need.to.create.a.CA.ro |
| 4ae40 | 6f 74 20 63 65 72 74 69 66 69 63 61 74 65 20 61 6e 64 20 73 65 72 76 65 72 20 63 65 72 74 69 66 | ot.certificate.and.server.certif |
| 4ae60 | 69 63 61 74 65 20 6f 6e 20 74 68 65 20 73 65 72 76 65 72 20 73 69 64 65 2e 00 46 69 72 73 74 20 | icate.on.the.server.side..First. |
| 4ae80 | 73 63 65 6e 61 72 69 6f 3a 20 61 70 70 6c 79 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 4e 41 54 20 | scenario:.apply.destination.NAT. |
| 4aea0 | 66 6f 72 20 61 6c 6c 20 48 54 54 50 20 74 72 61 66 66 69 63 20 63 6f 6d 6d 69 6e 67 20 74 68 72 | for.all.HTTP.traffic.comming.thr |
| 4aec0 | 6f 75 67 68 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 30 2c 20 61 6e 64 20 75 73 65 72 20 34 20 | ough.interface.eth0,.and.user.4. |
| 4aee0 | 62 61 63 6b 65 6e 64 73 2e 20 46 69 72 73 74 20 62 61 63 6b 65 6e 64 20 73 68 6f 75 6c 64 20 72 | backends..First.backend.should.r |
| 4af00 | 65 63 65 69 76 65 64 20 33 30 25 20 6f 66 20 74 68 65 20 72 65 71 75 65 73 74 2c 20 73 65 63 6f | eceived.30%.of.the.request,.seco |
| 4af20 | 6e 64 20 62 61 63 6b 65 6e 64 20 73 68 6f 75 6c 64 20 67 65 74 20 32 30 25 2c 20 74 68 69 72 64 | nd.backend.should.get.20%,.third |
| 4af40 | 20 31 35 25 20 61 6e 64 20 74 68 65 20 66 6f 75 72 74 68 20 33 35 25 20 57 65 20 77 69 6c 6c 20 | .15%.and.the.fourth.35%.We.will. |
| 4af60 | 75 73 65 20 73 6f 75 72 63 65 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 | use.source.and.destination.addre |
| 4af80 | 73 73 20 66 6f 72 20 68 61 73 68 20 67 65 6e 65 72 61 74 69 6f 6e 2e 00 46 69 72 73 74 20 73 74 | ss.for.hash.generation..First.st |
| 4afa0 | 65 70 73 00 46 69 72 73 74 20 74 68 65 20 4f 54 50 20 6b 65 79 73 20 6d 75 73 74 20 62 65 20 67 | eps.First.the.OTP.keys.must.be.g |
| 4afc0 | 65 6e 65 72 61 74 65 64 20 61 6e 64 20 73 65 6e 74 20 74 6f 20 74 68 65 20 75 73 65 72 20 61 6e | enerated.and.sent.to.the.user.an |
| 4afe0 | 64 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 46 69 72 73 74 20 77 65 | d.to.the.configuration:.First.we |
| 4b000 | 20 6e 65 65 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 62 61 73 69 63 20 73 65 74 74 69 | .need.to.specify.the.basic.setti |
| 4b020 | 6e 67 73 2e 20 31 31 39 34 2f 55 44 50 20 69 73 20 74 68 65 20 64 65 66 61 75 6c 74 2e 20 54 68 | ngs..1194/UDP.is.the.default..Th |
| 4b040 | 65 20 60 60 70 65 72 73 69 73 74 65 6e 74 2d 74 75 6e 6e 65 6c 60 60 20 6f 70 74 69 6f 6e 20 69 | e.``persistent-tunnel``.option.i |
| 4b060 | 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 2c 20 61 73 20 69 74 20 70 72 65 76 65 6e 74 73 20 74 68 | s.recommended,.as.it.prevents.th |
| 4b080 | 65 20 54 55 4e 2f 54 41 50 20 64 65 76 69 63 65 20 66 72 6f 6d 20 63 6c 6f 73 69 6e 67 20 6f 6e | e.TUN/TAP.device.from.closing.on |
| 4b0a0 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 72 65 73 65 74 73 20 6f 72 20 64 61 65 6d 6f 6e 20 72 65 6c | .connection.resets.or.daemon.rel |
| 4b0c0 | 6f 61 64 73 2e 00 46 69 72 73 74 20 77 65 20 6e 65 65 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 | oads..First.we.need.to.specify.t |
| 4b0e0 | 68 65 20 62 61 73 69 63 20 73 65 74 74 69 6e 67 73 2e 20 31 31 39 34 2f 55 44 50 20 69 73 20 74 | he.basic.settings..1194/UDP.is.t |
| 4b100 | 68 65 20 64 65 66 61 75 6c 74 2e 20 54 68 65 20 60 60 70 65 72 73 69 73 74 65 6e 74 2d 74 75 6e | he.default..The.``persistent-tun |
| 4b120 | 6e 65 6c 60 60 20 6f 70 74 69 6f 6e 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 2c 20 69 74 20 | nel``.option.is.recommended,.it. |
| 4b140 | 70 72 65 76 65 6e 74 73 20 74 68 65 20 54 55 4e 2f 54 41 50 20 64 65 76 69 63 65 20 66 72 6f 6d | prevents.the.TUN/TAP.device.from |
| 4b160 | 20 63 6c 6f 73 69 6e 67 20 6f 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 72 65 73 65 74 73 20 6f 72 | .closing.on.connection.resets.or |
| 4b180 | 20 64 61 65 6d 6f 6e 20 72 65 6c 6f 61 64 73 2e 00 46 69 72 73 74 20 79 6f 75 20 77 69 6c 6c 20 | .daemon.reloads..First.you.will. |
| 4b1a0 | 6e 65 65 64 20 74 6f 20 64 65 70 6c 6f 79 20 61 6e 20 52 50 4b 49 20 76 61 6c 69 64 61 74 6f 72 | need.to.deploy.an.RPKI.validator |
| 4b1c0 | 20 66 6f 72 20 79 6f 75 72 20 72 6f 75 74 65 72 73 20 74 6f 20 75 73 65 2e 20 4e 4c 6e 65 74 20 | .for.your.routers.to.use..NLnet. |
| 4b1e0 | 4c 61 62 73 20 70 72 6f 76 69 64 65 73 20 61 20 63 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 73 6f | Labs.provides.a.collection.of.so |
| 4b200 | 66 74 77 61 72 65 5f 20 79 6f 75 20 63 61 6e 20 63 6f 6d 70 61 72 65 20 61 6e 64 20 73 65 74 74 | ftware_.you.can.compare.and.sett |
| 4b220 | 6c 65 20 6f 6e 20 6f 6e 65 2e 20 4f 6e 63 65 20 79 6f 75 72 20 73 65 72 76 65 72 20 69 73 20 72 | le.on.one..Once.your.server.is.r |
| 4b240 | 75 6e 6e 69 6e 67 20 79 6f 75 20 63 61 6e 20 73 74 61 72 74 20 76 61 6c 69 64 61 74 69 6e 67 20 | unning.you.can.start.validating. |
| 4b260 | 61 6e 6e 6f 75 6e 63 65 6d 65 6e 74 73 2e 00 46 69 72 73 74 20 79 6f 75 20 77 69 6c 6c 20 6e 65 | announcements..First.you.will.ne |
| 4b280 | 65 64 20 74 6f 20 64 65 70 6c 6f 79 20 61 6e 20 52 50 4b 49 20 76 61 6c 69 64 61 74 6f 72 20 66 | ed.to.deploy.an.RPKI.validator.f |
| 4b2a0 | 6f 72 20 79 6f 75 72 20 72 6f 75 74 65 72 73 20 74 6f 20 75 73 65 2e 20 54 68 65 20 52 49 50 45 | or.your.routers.to.use..The.RIPE |
| 4b2c0 | 20 4e 43 43 20 68 65 6c 70 66 75 6c 6c 79 20 70 72 6f 76 69 64 65 20 60 73 6f 6d 65 20 69 6e 73 | .NCC.helpfully.provide.`some.ins |
| 4b2e0 | 74 72 75 63 74 69 6f 6e 73 60 5f 20 74 6f 20 67 65 74 20 79 6f 75 20 73 74 61 72 74 65 64 20 77 | tructions`_.to.get.you.started.w |
| 4b300 | 69 74 68 20 73 65 76 65 72 61 6c 20 64 69 66 66 65 72 65 6e 74 20 6f 70 74 69 6f 6e 73 2e 20 20 | ith.several.different.options... |
| 4b320 | 4f 6e 63 65 20 79 6f 75 72 20 73 65 72 76 65 72 20 69 73 20 72 75 6e 6e 69 6e 67 20 79 6f 75 20 | Once.your.server.is.running.you. |
| 4b340 | 63 61 6e 20 73 74 61 72 74 20 76 61 6c 69 64 61 74 69 6e 67 20 61 6e 6e 6f 75 6e 63 65 6d 65 6e | can.start.validating.announcemen |
| 4b360 | 74 73 2e 00 46 69 72 73 74 2c 20 61 6c 6c 20 74 72 61 66 66 69 63 20 69 73 20 72 65 63 65 69 76 | ts..First,.all.traffic.is.receiv |
| 4b380 | 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 2c 20 61 6e 64 20 69 74 20 69 73 20 70 72 6f 63 | ed.by.the.router,.and.it.is.proc |
| 4b3a0 | 65 73 73 65 64 20 69 6e 20 74 68 65 20 2a 2a 70 72 65 72 6f 75 74 69 6e 67 2a 2a 20 73 65 63 74 | essed.in.the.**prerouting**.sect |
| 4b3c0 | 69 6f 6e 2e 00 46 69 72 73 74 2c 20 6f 6e 20 62 6f 74 68 20 72 6f 75 74 65 72 73 20 72 75 6e 20 | ion..First,.on.both.routers.run. |
| 4b3e0 | 74 68 65 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 20 22 67 65 6e 65 72 61 74 | the.operational.command."generat |
| 4b400 | 65 20 70 6b 69 20 6b 65 79 2d 70 61 69 72 20 69 6e 73 74 61 6c 6c 20 3c 6b 65 79 2d 70 61 69 72 | e.pki.key-pair.install.<key-pair |
| 4b420 | 20 6e 61 6d 3e 3e 22 2e 20 59 6f 75 20 6d 61 79 20 63 68 6f 6f 73 65 20 64 69 66 66 65 72 65 6e | .nam>>"..You.may.choose.differen |
| 4b440 | 74 20 6c 65 6e 67 74 68 20 74 68 61 6e 20 32 30 34 38 20 6f 66 20 63 6f 75 72 73 65 2e 00 46 69 | t.length.than.2048.of.course..Fi |
| 4b460 | 72 73 74 2c 20 6f 6e 20 62 6f 74 68 20 72 6f 75 74 65 72 73 20 72 75 6e 20 74 68 65 20 6f 70 65 | rst,.on.both.routers.run.the.ope |
| 4b480 | 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 20 22 67 65 6e 65 72 61 74 65 20 70 6b 69 20 6b | rational.command."generate.pki.k |
| 4b4a0 | 65 79 2d 70 61 69 72 20 69 6e 73 74 61 6c 6c 20 3c 6b 65 79 2d 70 61 69 72 20 6e 61 6d 65 3e 22 | ey-pair.install.<key-pair.name>" |
| 4b4c0 | 2e 20 59 6f 75 20 6d 61 79 20 63 68 6f 6f 73 65 20 64 69 66 66 65 72 65 6e 74 20 6c 65 6e 67 74 | ..You.may.choose.different.lengt |
| 4b4e0 | 68 20 74 68 61 6e 20 32 30 34 38 20 6f 66 20 63 6f 75 72 73 65 2e 00 46 69 72 73 74 2c 20 6f 6e | h.than.2048.of.course..First,.on |
| 4b500 | 65 20 6f 66 20 74 68 65 20 73 79 73 74 65 6d 73 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 6b 65 | e.of.the.systems.generate.the.ke |
| 4b520 | 79 20 75 73 69 6e 67 20 74 68 65 20 3a 72 65 66 3a 60 67 65 6e 65 72 61 74 65 20 70 6b 69 20 6f | y.using.the.:ref:`generate.pki.o |
| 4b540 | 70 65 6e 76 70 6e 20 73 68 61 72 65 64 2d 73 65 63 72 65 74 3c 63 6f 6e 66 69 67 75 72 61 74 69 | penvpn.shared-secret<configurati |
| 4b560 | 6f 6e 2f 70 6b 69 2f 69 6e 64 65 78 3a 70 6b 69 3e 60 20 63 6f 6d 6d 61 6e 64 2e 20 4f 6e 63 65 | on/pki/index:pki>`.command..Once |
| 4b580 | 20 67 65 6e 65 72 61 74 65 64 2c 20 79 6f 75 20 77 69 6c 6c 20 6e 65 65 64 20 74 6f 20 69 6e 73 | .generated,.you.will.need.to.ins |
| 4b5a0 | 74 61 6c 6c 20 74 68 69 73 20 6b 65 79 20 6f 6e 20 74 68 65 20 6c 6f 63 61 6c 20 73 79 73 74 65 | tall.this.key.on.the.local.syste |
| 4b5c0 | 6d 2c 20 74 68 65 6e 20 63 6f 70 79 20 61 6e 64 20 69 6e 73 74 61 6c 6c 20 74 68 69 73 20 6b 65 | m,.then.copy.and.install.this.ke |
| 4b5e0 | 79 20 74 6f 20 74 68 65 20 72 65 6d 6f 74 65 20 72 6f 75 74 65 72 2e 00 46 69 72 73 74 2c 20 77 | y.to.the.remote.router..First,.w |
| 4b600 | 65 20 63 72 65 61 74 65 20 74 68 65 20 72 6f 6f 74 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 | e.create.the.root.certificate.au |
| 4b620 | 74 68 6f 72 69 74 79 2e 00 46 69 72 73 74 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 67 65 6e 65 | thority..First,.you.need.to.gene |
| 4b640 | 72 61 74 65 20 61 20 6b 65 79 20 62 79 20 72 75 6e 6e 69 6e 67 20 60 60 72 75 6e 20 67 65 6e 65 | rate.a.key.by.running.``run.gene |
| 4b660 | 72 61 74 65 20 70 6b 69 20 6f 70 65 6e 76 70 6e 20 73 68 61 72 65 64 2d 73 65 63 72 65 74 20 69 | rate.pki.openvpn.shared-secret.i |
| 4b680 | 6e 73 74 61 6c 6c 20 3c 6e 61 6d 65 3e 60 60 20 66 72 6f 6d 20 63 6f 6e 66 69 67 75 72 61 74 69 | nstall.<name>``.from.configurati |
| 4b6a0 | 6f 6e 20 6d 6f 64 65 2e 20 59 6f 75 20 63 61 6e 20 75 73 65 20 61 6e 79 20 6e 61 6d 65 2c 20 77 | on.mode..You.can.use.any.name,.w |
| 4b6c0 | 65 20 77 69 6c 6c 20 75 73 65 20 60 60 73 32 73 60 60 2e 00 46 6c 61 73 68 00 46 6c 61 73 68 20 | e.will.use.``s2s``..Flash.Flash. |
| 4b6e0 | 4f 76 65 72 72 69 64 65 00 46 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 70 61 79 6c 6f | Override.FlexVPN.vendor.ID.paylo |
| 4b700 | 61 64 20 28 49 4b 45 76 32 20 6f 6e 6c 79 29 2c 20 77 68 69 63 68 20 69 73 20 72 65 71 75 69 72 | ad.(IKEv2.only),.which.is.requir |
| 4b720 | 65 64 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 6d 61 6b 65 20 43 69 73 63 6f 20 62 72 61 6e 64 20 | ed.in.order.to.make.Cisco.brand. |
| 4b740 | 64 65 76 69 63 65 73 20 61 6c 6c 6f 77 20 6e 65 67 6f 74 69 61 74 69 6e 67 20 61 20 6c 6f 63 61 | devices.allow.negotiating.a.loca |
| 4b760 | 6c 20 74 72 61 66 66 69 63 20 73 65 6c 65 63 74 6f 72 20 28 66 72 6f 6d 20 73 74 72 6f 6e 67 53 | l.traffic.selector.(from.strongS |
| 4b780 | 77 61 6e 27 73 20 70 6f 69 6e 74 20 6f 66 20 76 69 65 77 29 20 74 68 61 74 20 69 73 20 6e 6f 74 | wan's.point.of.view).that.is.not |
| 4b7a0 | 20 74 68 65 20 61 73 73 69 67 6e 65 64 20 76 69 72 74 75 61 6c 20 49 50 20 61 64 64 72 65 73 73 | .the.assigned.virtual.IP.address |
| 4b7c0 | 20 69 66 20 73 75 63 68 20 61 6e 20 61 64 64 72 65 73 73 20 69 73 20 72 65 71 75 65 73 74 65 64 | .if.such.an.address.is.requested |
| 4b7e0 | 20 62 79 20 73 74 72 6f 6e 67 53 77 61 6e 2e 20 53 65 6e 64 69 6e 67 20 74 68 65 20 43 69 73 63 | .by.strongSwan..Sending.the.Cisc |
| 4b800 | 6f 20 46 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 70 72 65 76 65 6e 74 73 20 74 68 65 | o.FlexVPN.vendor.ID.prevents.the |
| 4b820 | 20 70 65 65 72 20 66 72 6f 6d 20 6e 61 72 72 6f 77 69 6e 67 20 74 68 65 20 69 6e 69 74 69 61 74 | .peer.from.narrowing.the.initiat |
| 4b840 | 6f 72 27 73 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 63 20 73 65 6c 65 63 74 6f 72 20 61 6e 64 20 | or's.local.traffic.selector.and. |
| 4b860 | 61 6c 6c 6f 77 73 20 69 74 20 74 6f 20 65 2e 67 2e 20 6e 65 67 6f 74 69 61 74 65 20 61 20 54 53 | allows.it.to.e.g..negotiate.a.TS |
| 4b880 | 20 6f 66 20 30 2e 30 2e 30 2e 30 2f 30 20 3d 3d 20 30 2e 30 2e 30 2e 30 2f 30 20 69 6e 73 74 65 | .of.0.0.0.0/0.==.0.0.0.0/0.inste |
| 4b8a0 | 61 64 2e 20 54 68 69 73 20 68 61 73 20 62 65 65 6e 20 74 65 73 74 65 64 20 77 69 74 68 20 61 20 | ad..This.has.been.tested.with.a. |
| 4b8c0 | 22 74 75 6e 6e 65 6c 20 6d 6f 64 65 20 69 70 73 65 63 20 69 70 76 34 22 20 43 69 73 63 6f 20 74 | "tunnel.mode.ipsec.ipv4".Cisco.t |
| 4b8e0 | 65 6d 70 6c 61 74 65 20 62 75 74 20 73 68 6f 75 6c 64 20 61 6c 73 6f 20 77 6f 72 6b 20 66 6f 72 | emplate.but.should.also.work.for |
| 4b900 | 20 47 52 45 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 3b 00 46 6c 6f 77 20 41 63 63 6f 75 6e 74 | .GRE.encapsulation;.Flow.Account |
| 4b920 | 69 6e 67 00 46 6c 6f 77 20 45 78 70 6f 72 74 00 46 6c 6f 77 20 61 6e 64 20 70 61 63 6b 65 74 2d | ing.Flow.Export.Flow.and.packet- |
| 4b940 | 62 61 73 65 64 20 62 61 6c 61 6e 63 69 6e 67 00 46 6c 6f 77 73 20 61 72 65 20 64 65 66 69 6e 65 | based.balancing.Flows.are.define |
| 4b960 | 64 20 62 79 20 73 6f 75 72 63 65 2d 64 65 73 74 69 6e 61 74 69 6f 6e 20 68 6f 73 74 20 70 61 69 | d.by.source-destination.host.pai |
| 4b980 | 72 73 2e 00 46 6c 6f 77 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 62 79 20 74 68 65 20 35 2d 74 | rs..Flows.are.defined.by.the.5-t |
| 4b9a0 | 75 70 6c 65 2e 20 46 61 69 72 6e 65 73 73 20 69 73 20 61 70 70 6c 69 65 64 20 66 69 72 73 74 20 | uple..Fairness.is.applied.first. |
| 4b9c0 | 6f 76 65 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 65 73 2c 20 74 68 65 6e | over.destination.addresses,.then |
| 4b9e0 | 20 6f 76 65 72 20 69 6e 64 69 76 69 64 75 61 6c 20 66 6c 6f 77 73 2e 00 46 6c 6f 77 73 20 61 72 | .over.individual.flows..Flows.ar |
| 4ba00 | 65 20 64 65 66 69 6e 65 64 20 62 79 20 74 68 65 20 35 2d 74 75 70 6c 65 2e 20 46 61 69 72 6e 65 | e.defined.by.the.5-tuple..Fairne |
| 4ba20 | 73 73 20 69 73 20 61 70 70 6c 69 65 64 20 66 69 72 73 74 20 6f 76 65 72 20 73 6f 75 72 63 65 20 | ss.is.applied.first.over.source. |
| 4ba40 | 61 64 64 72 65 73 73 65 73 2c 20 74 68 65 6e 20 6f 76 65 72 20 69 6e 64 69 76 69 64 75 61 6c 20 | addresses,.then.over.individual. |
| 4ba60 | 66 6c 6f 77 73 2e 00 46 6c 6f 77 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 62 79 20 74 68 65 20 | flows..Flows.are.defined.by.the. |
| 4ba80 | 65 6e 74 69 72 65 20 35 2d 74 75 70 6c 65 20 28 73 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 | entire.5-tuple.(source.IP.addres |
| 4baa0 | 73 2c 20 73 6f 75 72 63 65 20 70 6f 72 74 2c 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 | s,.source.port,.destination.IP.a |
| 4bac0 | 64 64 72 65 73 73 2c 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 2c 20 74 72 61 6e 73 70 | ddress,.destination.port,.transp |
| 4bae0 | 6f 72 74 20 70 72 6f 74 6f 63 6f 6c 29 2e 00 46 6c 6f 77 73 20 61 72 65 20 64 65 66 69 6e 65 64 | ort.protocol)..Flows.are.defined |
| 4bb00 | 20 6f 6e 6c 79 20 62 79 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2e 00 46 6c | .only.by.destination.address..Fl |
| 4bb20 | 6f 77 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 6f 6e 6c 79 20 62 79 20 73 6f 75 72 63 65 20 61 | ows.are.defined.only.by.source.a |
| 4bb40 | 64 64 72 65 73 73 2e 00 46 6c 6f 77 73 20 63 61 6e 20 62 65 20 65 78 70 6f 72 74 65 64 20 76 69 | ddress..Flows.can.be.exported.vi |
| 4bb60 | 61 20 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 70 72 6f 74 6f 63 6f 6c 73 3a 20 4e 65 74 46 6c | a.two.different.protocols:.NetFl |
| 4bb80 | 6f 77 20 28 76 65 72 73 69 6f 6e 73 20 35 2c 20 39 20 61 6e 64 20 31 30 2f 49 50 46 49 58 29 20 | ow.(versions.5,.9.and.10/IPFIX). |
| 4bba0 | 61 6e 64 20 73 46 6c 6f 77 2e 20 41 64 64 69 74 69 6f 6e 61 6c 6c 79 2c 20 79 6f 75 20 6d 61 79 | and.sFlow..Additionally,.you.may |
| 4bbc0 | 20 73 61 76 65 20 66 6c 6f 77 73 20 74 6f 20 61 6e 20 69 6e 2d 6d 65 6d 6f 72 79 20 74 61 62 6c | .save.flows.to.an.in-memory.tabl |
| 4bbe0 | 65 20 69 6e 74 65 72 6e 61 6c 6c 79 20 69 6e 20 61 20 72 6f 75 74 65 72 2e 00 46 6c 6f 77 74 61 | e.internally.in.a.router..Flowta |
| 4bc00 | 62 6c 65 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 46 6c 6f 77 74 61 62 6c 65 73 20 20 61 6c | ble.Configuration.Flowtables..al |
| 4bc20 | 6c 6f 77 73 20 79 6f 75 20 74 6f 20 64 65 66 69 6e 65 20 61 20 66 61 73 74 70 61 74 68 20 74 68 | lows.you.to.define.a.fastpath.th |
| 4bc40 | 72 6f 75 67 68 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 64 61 74 61 70 61 74 68 2e 20 54 68 | rough.the.flowtable.datapath..Th |
| 4bc60 | 65 20 66 6c 6f 77 74 61 62 6c 65 20 73 75 70 70 6f 72 74 73 20 66 6f 72 20 74 68 65 20 6c 61 79 | e.flowtable.supports.for.the.lay |
| 4bc80 | 65 72 20 33 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 6e 64 20 74 68 65 20 6c 61 79 65 72 | er.3.IPv4.and.IPv6.and.the.layer |
| 4bca0 | 20 34 20 54 43 50 20 61 6e 64 20 55 44 50 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 46 6c 6f 77 74 61 | .4.TCP.and.UDP.protocols..Flowta |
| 4bcc0 | 62 6c 65 73 20 46 69 72 65 77 61 6c 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 46 6c 6f 77 | bles.Firewall.Configuration.Flow |
| 4bce0 | 74 61 62 6c 65 73 20 61 6c 6c 6f 77 20 79 6f 75 20 74 6f 20 64 65 66 69 6e 65 20 61 20 66 61 73 | tables.allow.you.to.define.a.fas |
| 4bd00 | 74 70 61 74 68 20 74 68 72 6f 75 67 68 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 64 61 74 61 | tpath.through.the.flowtable.data |
| 4bd20 | 70 61 74 68 2e 20 54 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 73 75 70 70 6f 72 74 73 20 66 6f 72 | path..The.flowtable.supports.for |
| 4bd40 | 20 74 68 65 20 6c 61 79 65 72 20 33 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 6e 64 20 74 | .the.layer.3.IPv4.and.IPv6.and.t |
| 4bd60 | 68 65 20 6c 61 79 65 72 20 34 20 54 43 50 20 61 6e 64 20 55 44 50 20 70 72 6f 74 6f 63 6f 6c 73 | he.layer.4.TCP.and.UDP.protocols |
| 4bd80 | 2e 00 46 6c 75 73 68 69 6e 67 20 74 68 65 20 73 65 73 73 69 6f 6e 20 74 61 62 6c 65 20 77 69 6c | ..Flushing.the.session.table.wil |
| 4bda0 | 6c 20 63 61 75 73 65 20 6f 74 68 65 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 66 61 6c | l.cause.other.connections.to.fal |
| 4bdc0 | 6c 20 62 61 63 6b 20 66 72 6f 6d 20 66 6c 6f 77 2d 62 61 73 65 64 20 74 6f 20 70 61 63 6b 65 74 | l.back.from.flow-based.to.packet |
| 4bde0 | 2d 62 61 73 65 64 20 62 61 6c 61 6e 63 69 6e 67 20 75 6e 74 69 6c 20 65 61 63 68 20 66 6c 6f 77 | -based.balancing.until.each.flow |
| 4be00 | 20 69 73 20 72 65 65 73 74 61 62 6c 69 73 68 65 64 2e 00 46 6f 6c 6c 6f 77 20 74 68 65 20 53 53 | .is.reestablished..Follow.the.SS |
| 4be20 | 48 20 64 79 6e 61 6d 69 63 2d 70 72 6f 74 65 63 74 69 6f 6e 20 6c 6f 67 2e 00 46 6f 6c 6c 6f 77 | H.dynamic-protection.log..Follow |
| 4be40 | 20 74 68 65 20 53 53 48 20 73 65 72 76 65 72 20 6c 6f 67 2e 00 46 6f 6c 6c 6f 77 20 74 68 65 20 | .the.SSH.server.log..Follow.the. |
| 4be60 | 69 6e 73 74 72 75 63 74 69 6f 6e 73 20 74 6f 20 67 65 6e 65 72 61 74 65 20 43 41 20 63 65 72 74 | instructions.to.generate.CA.cert |
| 4be80 | 20 28 69 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 65 29 3a 00 46 6f 6c 6c 6f 77 | .(in.configuration.mode):.Follow |
| 4bea0 | 20 74 68 65 20 69 6e 73 74 72 75 63 74 69 6f 6e 73 20 74 6f 20 67 65 6e 65 72 61 74 65 20 73 65 | .the.instructions.to.generate.se |
| 4bec0 | 72 76 65 72 20 63 65 72 74 20 28 69 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 65 | rver.cert.(in.configuration.mode |
| 4bee0 | 29 3a 00 46 6f 6c 6c 6f 77 20 74 68 65 20 6c 6f 67 73 20 66 6f 72 20 6d 44 4e 53 20 72 65 70 65 | ):.Follow.the.logs.for.mDNS.repe |
| 4bf00 | 61 74 65 72 20 73 65 72 76 69 63 65 2e 00 46 6f 72 20 3a 72 65 66 3a 60 62 69 64 69 72 65 63 74 | ater.service..For.:ref:`bidirect |
| 4bf20 | 69 6f 6e 61 6c 2d 6e 61 74 60 20 61 20 72 75 6c 65 20 66 6f 72 20 62 6f 74 68 20 3a 72 65 66 3a | ional-nat`.a.rule.for.both.:ref: |
| 4bf40 | 60 73 6f 75 72 63 65 2d 6e 61 74 60 20 61 6e 64 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 | `source-nat`.and.:ref:`destinati |
| 4bf60 | 6f 6e 2d 6e 61 74 60 20 6e 65 65 64 73 20 74 6f 20 62 65 20 63 72 65 61 74 65 64 2e 00 46 6f 72 | on-nat`.needs.to.be.created..For |
| 4bf80 | 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 20 72 75 6c 65 73 20 74 68 | .:ref:`destination-nat`.rules.th |
| 4bfa0 | 65 20 70 61 63 6b 65 74 73 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 77 69 | e.packets.destination.address.wi |
| 4bfc0 | 6c 6c 20 62 65 20 72 65 70 6c 61 63 65 64 20 62 79 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 | ll.be.replaced.by.the.specified. |
| 4bfe0 | 61 64 64 72 65 73 73 20 69 6e 20 74 68 65 20 60 74 72 61 6e 73 6c 61 74 69 6f 6e 20 61 64 64 72 | address.in.the.`translation.addr |
| 4c000 | 65 73 73 60 20 63 6f 6d 6d 61 6e 64 2e 00 46 6f 72 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 2d 6e | ess`.command..For.:ref:`source-n |
| 4c020 | 61 74 60 20 72 75 6c 65 73 20 74 68 65 20 70 61 63 6b 65 74 73 20 73 6f 75 72 63 65 20 61 64 64 | at`.rules.the.packets.source.add |
| 4c040 | 72 65 73 73 20 77 69 6c 6c 20 62 65 20 72 65 70 6c 61 63 65 64 20 77 69 74 68 20 74 68 65 20 61 | ress.will.be.replaced.with.the.a |
| 4c060 | 64 64 72 65 73 73 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 74 68 65 20 74 72 61 6e 73 6c 61 74 | ddress.specified.in.the.translat |
| 4c080 | 69 6f 6e 20 63 6f 6d 6d 61 6e 64 2e 20 41 20 70 6f 72 74 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 | ion.command..A.port.translation. |
| 4c0a0 | 63 61 6e 20 61 6c 73 6f 20 62 65 20 73 70 65 63 69 66 69 65 64 20 61 6e 64 20 69 73 20 70 61 72 | can.also.be.specified.and.is.par |
| 4c0c0 | 74 20 6f 66 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2e 00 46 6f | t.of.the.translation.address..Fo |
| 4c0e0 | 72 20 45 6e 63 72 79 70 74 69 6f 6e 3a 00 46 6f 72 20 48 61 73 68 69 6e 67 3a 00 46 6f 72 20 49 | r.Encryption:.For.Hashing:.For.I |
| 4c100 | 53 2d 49 53 20 74 6f 70 20 6f 70 65 72 61 74 65 20 63 6f 72 72 65 63 74 6c 79 2c 20 6f 6e 65 20 | S-IS.top.operate.correctly,.one. |
| 4c120 | 6d 75 73 74 20 64 6f 20 74 68 65 20 65 71 75 69 76 61 6c 65 6e 74 20 6f 66 20 61 20 52 6f 75 74 | must.do.the.equivalent.of.a.Rout |
| 4c140 | 65 72 20 49 44 20 69 6e 20 43 4c 4e 53 2e 20 54 68 69 73 20 52 6f 75 74 65 72 20 49 44 20 69 73 | er.ID.in.CLNS..This.Router.ID.is |
| 4c160 | 20 63 61 6c 6c 65 64 20 74 68 65 20 3a 61 62 62 72 3a 60 4e 45 54 20 28 4e 65 74 77 6f 72 6b 20 | .called.the.:abbr:`NET.(Network. |
| 4c180 | 45 6e 74 69 74 79 20 54 69 74 6c 65 29 60 2e 20 54 68 69 73 20 6d 75 73 74 20 62 65 20 75 6e 69 | Entity.Title)`..This.must.be.uni |
| 4c1a0 | 71 75 65 20 66 6f 72 20 65 61 63 68 20 61 6e 64 20 65 76 65 72 79 20 72 6f 75 74 65 72 20 74 68 | que.for.each.and.every.router.th |
| 4c1c0 | 61 74 20 69 73 20 6f 70 65 72 61 74 69 6e 67 20 69 6e 20 49 53 2d 49 53 2e 20 49 74 20 61 6c 73 | at.is.operating.in.IS-IS..It.als |
| 4c1e0 | 6f 20 6d 75 73 74 20 6e 6f 74 20 62 65 20 64 75 70 6c 69 63 61 74 65 64 20 6f 74 68 65 72 77 69 | o.must.not.be.duplicated.otherwi |
| 4c200 | 73 65 20 74 68 65 20 73 61 6d 65 20 69 73 73 75 65 73 20 74 68 61 74 20 6f 63 63 75 72 20 77 69 | se.the.same.issues.that.occur.wi |
| 4c220 | 74 68 69 6e 20 4f 53 50 46 20 77 69 6c 6c 20 6f 63 63 75 72 20 77 69 74 68 69 6e 20 49 53 2d 49 | thin.OSPF.will.occur.within.IS-I |
| 4c240 | 53 20 77 68 65 6e 20 69 74 20 63 6f 6d 65 73 20 74 6f 20 73 61 69 64 20 64 75 70 6c 69 63 61 74 | S.when.it.comes.to.said.duplicat |
| 4c260 | 69 6f 6e 2e 00 46 6f 72 20 49 6e 63 6f 6d 69 6e 67 20 61 6e 64 20 49 6d 70 6f 72 74 20 52 6f 75 | ion..For.Incoming.and.Import.Rou |
| 4c280 | 74 65 2d 6d 61 70 73 20 69 66 20 77 65 20 72 65 63 65 69 76 65 20 61 20 76 36 20 67 6c 6f 62 61 | te-maps.if.we.receive.a.v6.globa |
| 4c2a0 | 6c 20 61 6e 64 20 76 36 20 4c 4c 20 61 64 64 72 65 73 73 20 66 6f 72 20 74 68 65 20 72 6f 75 74 | l.and.v6.LL.address.for.the.rout |
| 4c2c0 | 65 2c 20 74 68 65 6e 20 70 72 65 66 65 72 20 74 6f 20 75 73 65 20 74 68 65 20 67 6c 6f 62 61 6c | e,.then.prefer.to.use.the.global |
| 4c2e0 | 20 61 64 64 72 65 73 73 20 61 73 20 74 68 65 20 6e 65 78 74 68 6f 70 2e 00 46 6f 72 20 4c 6f 63 | .address.as.the.nexthop..For.Loc |
| 4c300 | 61 6c 20 55 73 65 72 73 00 46 6f 72 20 4f 70 65 6e 46 61 62 72 69 63 20 74 6f 20 6f 70 65 72 61 | al.Users.For.OpenFabric.to.opera |
| 4c320 | 74 65 20 63 6f 72 72 65 63 74 6c 79 2c 20 6f 6e 65 20 6d 75 73 74 20 64 6f 20 74 68 65 20 65 71 | te.correctly,.one.must.do.the.eq |
| 4c340 | 75 69 76 61 6c 65 6e 74 20 6f 66 20 61 20 52 6f 75 74 65 72 20 49 44 20 69 6e 20 43 6f 6e 6e 65 | uivalent.of.a.Router.ID.in.Conne |
| 4c360 | 63 74 69 6f 6e 6c 65 73 73 20 4e 65 74 77 6f 72 6b 20 53 65 72 76 69 63 65 20 28 43 4c 4e 53 29 | ctionless.Network.Service.(CLNS) |
| 4c380 | 2e 20 54 68 69 73 20 52 6f 75 74 65 72 20 49 44 20 69 73 20 63 61 6c 6c 65 64 20 74 68 65 20 3a | ..This.Router.ID.is.called.the.: |
| 4c3a0 | 61 62 62 72 3a 60 4e 45 54 20 28 4e 65 74 77 6f 72 6b 20 45 6e 74 69 74 79 20 54 69 74 6c 65 29 | abbr:`NET.(Network.Entity.Title) |
| 4c3c0 | 60 2e 20 54 68 65 20 73 79 73 74 65 6d 20 69 64 65 6e 74 69 66 69 65 72 20 6d 75 73 74 20 62 65 | `..The.system.identifier.must.be |
| 4c3e0 | 20 75 6e 69 71 75 65 20 77 69 74 68 69 6e 20 74 68 65 20 6e 65 74 77 6f 72 6b 00 46 6f 72 20 52 | .unique.within.the.network.For.R |
| 4c400 | 41 44 49 55 53 20 75 73 65 72 73 00 46 6f 72 20 55 53 42 20 70 6f 72 74 20 69 6e 66 6f 72 6d 61 | ADIUS.users.For.USB.port.informa |
| 4c420 | 74 69 6f 6e 20 70 6c 65 61 73 65 20 72 65 66 6f 72 20 74 6f 3a 20 3a 72 65 66 3a 60 68 61 72 64 | tion.please.refor.to:.:ref:`hard |
| 4c440 | 77 61 72 65 5f 75 73 62 60 2e 00 46 6f 72 20 61 20 68 65 61 64 73 74 61 72 74 20 79 6f 75 20 63 | ware_usb`..For.a.headstart.you.c |
| 4c460 | 61 6e 20 75 73 65 20 74 68 65 20 62 65 6c 6f 77 20 65 78 61 6d 70 6c 65 20 6f 6e 20 68 6f 77 20 | an.use.the.below.example.on.how. |
| 4c480 | 74 6f 20 62 75 69 6c 64 20 61 20 62 6f 6e 64 20 77 69 74 68 20 74 77 6f 20 69 6e 74 65 72 66 61 | to.build.a.bond.with.two.interfa |
| 4c4a0 | 63 65 73 20 66 72 6f 6d 20 56 79 4f 53 20 74 6f 20 61 20 4a 75 6e 69 70 65 72 20 45 58 20 53 77 | ces.from.VyOS.to.a.Juniper.EX.Sw |
| 4c4c0 | 69 74 63 68 20 73 79 73 74 65 6d 2e 00 46 6f 72 20 61 20 68 65 61 64 73 74 61 72 74 20 79 6f 75 | itch.system..For.a.headstart.you |
| 4c4e0 | 20 63 61 6e 20 75 73 65 20 74 68 65 20 62 65 6c 6f 77 20 65 78 61 6d 70 6c 65 20 6f 6e 20 68 6f | .can.use.the.below.example.on.ho |
| 4c500 | 77 20 74 6f 20 62 75 69 6c 64 20 61 20 62 6f 6e 64 2c 70 6f 72 74 2d 63 68 61 6e 6e 65 6c 20 77 | w.to.build.a.bond,port-channel.w |
| 4c520 | 69 74 68 20 74 77 6f 20 69 6e 74 65 72 66 61 63 65 73 20 66 72 6f 6d 20 56 79 4f 53 20 74 6f 20 | ith.two.interfaces.from.VyOS.to. |
| 4c540 | 61 20 41 72 75 62 61 2f 48 50 20 32 35 31 30 47 20 73 77 69 74 63 68 2e 00 46 6f 72 20 61 20 6c | a.Aruba/HP.2510G.switch..For.a.l |
| 4c560 | 61 72 67 65 20 61 6d 6f 75 6e 74 20 6f 66 20 70 72 69 76 61 74 65 20 6d 61 63 68 69 6e 65 73 20 | arge.amount.of.private.machines. |
| 4c580 | 62 65 68 69 6e 64 20 74 68 65 20 4e 41 54 20 79 6f 75 72 20 61 64 64 72 65 73 73 20 70 6f 6f 6c | behind.the.NAT.your.address.pool |
| 4c5a0 | 20 6d 69 67 68 74 20 74 6f 20 62 65 20 62 69 67 67 65 72 2e 20 55 73 65 20 61 6e 79 20 61 64 64 | .might.to.be.bigger..Use.any.add |
| 4c5c0 | 72 65 73 73 20 69 6e 20 74 68 65 20 72 61 6e 67 65 20 31 30 30 2e 36 34 2e 30 2e 31 30 20 2d 20 | ress.in.the.range.100.64.0.10.-. |
| 4c5e0 | 31 30 30 2e 36 34 2e 30 2e 32 30 20 6f 6e 20 53 4e 41 54 20 72 75 6c 65 20 34 30 20 77 68 65 6e | 100.64.0.20.on.SNAT.rule.40.when |
| 4c600 | 20 64 6f 69 6e 67 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 00 46 6f 72 20 61 20 73 69 6d | .doing.the.translation.For.a.sim |
| 4c620 | 70 6c 65 20 68 6f 6d 65 20 6e 65 74 77 6f 72 6b 20 75 73 69 6e 67 20 6a 75 73 74 20 74 68 65 20 | ple.home.network.using.just.the. |
| 4c640 | 49 53 50 27 73 20 65 71 75 69 70 6d 65 6e 74 2c 20 74 68 69 73 20 69 73 20 75 73 75 61 6c 6c 79 | ISP's.equipment,.this.is.usually |
| 4c660 | 20 64 65 73 69 72 61 62 6c 65 2e 20 42 75 74 20 69 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 72 | .desirable..But.if.you.want.to.r |
| 4c680 | 75 6e 20 56 79 4f 53 20 61 73 20 79 6f 75 72 20 66 69 72 65 77 61 6c 6c 20 61 6e 64 20 72 6f 75 | un.VyOS.as.your.firewall.and.rou |
| 4c6a0 | 74 65 72 2c 20 74 68 69 73 20 77 69 6c 6c 20 72 65 73 75 6c 74 20 69 6e 20 68 61 76 69 6e 67 20 | ter,.this.will.result.in.having. |
| 4c6c0 | 61 20 64 6f 75 62 6c 65 20 4e 41 54 20 61 6e 64 20 66 69 72 65 77 61 6c 6c 20 73 65 74 75 70 2e | a.double.NAT.and.firewall.setup. |
| 4c6e0 | 20 54 68 69 73 20 72 65 73 75 6c 74 73 20 69 6e 20 61 20 66 65 77 20 65 78 74 72 61 20 6c 61 79 | .This.results.in.a.few.extra.lay |
| 4c700 | 65 72 73 20 6f 66 20 63 6f 6d 70 6c 65 78 69 74 79 2c 20 70 61 72 74 69 63 75 6c 61 72 6c 79 20 | ers.of.complexity,.particularly. |
| 4c720 | 69 66 20 79 6f 75 20 75 73 65 20 73 6f 6d 65 20 4e 41 54 20 6f 72 20 74 75 6e 6e 65 6c 20 66 65 | if.you.use.some.NAT.or.tunnel.fe |
| 4c740 | 61 74 75 72 65 73 2e 00 46 6f 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 6c 65 73 73 20 70 72 6f 74 6f | atures..For.connectionless.proto |
| 4c760 | 63 6f 6c 73 20 61 73 20 6c 69 6b 65 20 49 43 4d 50 20 61 6e 64 20 55 44 50 2c 20 61 20 66 6c 6f | cols.as.like.ICMP.and.UDP,.a.flo |
| 4c780 | 77 20 69 73 20 63 6f 6e 73 69 64 65 72 65 64 20 63 6f 6d 70 6c 65 74 65 20 6f 6e 63 65 20 6e 6f | w.is.considered.complete.once.no |
| 4c7a0 | 20 6d 6f 72 65 20 70 61 63 6b 65 74 73 20 66 6f 72 20 74 68 69 73 20 66 6c 6f 77 20 61 70 70 65 | .more.packets.for.this.flow.appe |
| 4c7c0 | 61 72 20 61 66 74 65 72 20 63 6f 6e 66 69 67 75 72 61 62 6c 65 20 74 69 6d 65 6f 75 74 2e 00 46 | ar.after.configurable.timeout..F |
| 4c7e0 | 6f 72 20 65 76 65 72 79 20 63 6c 69 65 6e 74 20 69 6e 20 74 68 65 20 6f 70 65 6e 76 70 6e 20 73 | or.every.client.in.the.openvpn.s |
| 4c800 | 65 72 76 65 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 20 74 6f 74 70 20 73 65 63 72 65 | erver.configuration.a.totp.secre |
| 4c820 | 74 20 69 73 20 63 72 65 61 74 65 64 2e 20 54 6f 20 64 69 73 70 6c 61 79 20 74 68 65 20 61 75 74 | t.is.created..To.display.the.aut |
| 4c840 | 68 65 6e 74 69 63 61 74 69 6f 6e 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2c 20 75 73 65 20 74 68 65 | hentication.information,.use.the |
| 4c860 | 20 63 6f 6d 6d 61 6e 64 3a 00 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 69 66 20 70 72 6f 62 6c 65 | .command:.For.example,.if.proble |
| 4c880 | 6d 73 20 77 69 74 68 20 70 6f 6f 72 20 74 69 6d 65 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f | ms.with.poor.time.synchronizatio |
| 4c8a0 | 6e 20 61 72 65 20 65 78 70 65 72 69 65 6e 63 65 64 2c 20 74 68 65 20 77 69 6e 64 6f 77 20 63 61 | n.are.experienced,.the.window.ca |
| 4c8c0 | 6e 20 62 65 20 69 6e 63 72 65 61 73 65 64 20 66 72 6f 6d 20 69 74 73 20 64 65 66 61 75 6c 74 20 | n.be.increased.from.its.default. |
| 4c8e0 | 73 69 7a 65 20 6f 66 20 33 20 70 65 72 6d 69 74 74 65 64 20 63 6f 64 65 73 20 28 6f 6e 65 20 70 | size.of.3.permitted.codes.(one.p |
| 4c900 | 72 65 76 69 6f 75 73 20 63 6f 64 65 2c 20 74 68 65 20 63 75 72 72 65 6e 74 20 63 6f 64 65 2c 20 | revious.code,.the.current.code,. |
| 4c920 | 74 68 65 20 6e 65 78 74 20 63 6f 64 65 29 20 74 6f 20 31 37 20 70 65 72 6d 69 74 74 65 64 20 63 | the.next.code).to.17.permitted.c |
| 4c940 | 6f 64 65 73 20 28 74 68 65 20 38 20 70 72 65 76 69 6f 75 73 20 63 6f 64 65 73 2c 20 74 68 65 20 | odes.(the.8.previous.codes,.the. |
| 4c960 | 63 75 72 72 65 6e 74 20 63 6f 64 65 2c 20 61 6e 64 20 74 68 65 20 38 20 6e 65 78 74 20 63 6f 64 | current.code,.and.the.8.next.cod |
| 4c980 | 65 73 29 2e 20 54 68 69 73 20 77 69 6c 6c 20 70 65 72 6d 69 74 20 66 6f 72 20 61 20 74 69 6d 65 | es)..This.will.permit.for.a.time |
| 4c9a0 | 20 73 6b 65 77 20 6f 66 20 75 70 20 74 6f 20 34 20 6d 69 6e 75 74 65 73 20 62 65 74 77 65 65 6e | .skew.of.up.to.4.minutes.between |
| 4c9c0 | 20 63 6c 69 65 6e 74 20 61 6e 64 20 73 65 72 76 65 72 2e 00 46 6f 72 20 65 78 61 6d 70 6c 65 3a | .client.and.server..For.example: |
| 4c9e0 | 00 46 6f 72 20 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 65 72 69 6e 67 2c 20 63 6f 6e 66 69 67 75 | .For.firewall.filtering,.configu |
| 4ca00 | 72 61 74 69 6f 6e 20 73 68 6f 75 6c 64 20 62 65 20 64 6f 6e 65 20 69 6e 20 60 60 73 65 74 20 66 | ration.should.be.done.in.``set.f |
| 4ca20 | 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 2e 2e 2e 60 60 00 46 6f 72 20 | irewall.[ipv4.|.ipv6]....``.For. |
| 4ca40 | 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 65 72 69 6e 67 2c 20 66 69 72 65 77 61 6c 6c 20 72 75 6c | firewall.filtering,.firewall.rul |
| 4ca60 | 65 73 20 6e 65 65 64 20 74 6f 20 62 65 20 63 72 65 61 74 65 64 2e 20 45 61 63 68 20 72 75 6c 65 | es.need.to.be.created..Each.rule |
| 4ca80 | 20 69 73 20 6e 75 6d 62 65 72 65 64 2c 20 68 61 73 20 61 6e 20 61 63 74 69 6f 6e 20 74 6f 20 61 | .is.numbered,.has.an.action.to.a |
| 4caa0 | 70 70 6c 79 20 69 66 20 74 68 65 20 72 75 6c 65 20 69 73 20 6d 61 74 63 68 65 64 2c 20 61 6e 64 | pply.if.the.rule.is.matched,.and |
| 4cac0 | 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 6f 20 73 70 65 63 69 66 79 20 6d 75 6c 74 69 70 6c 65 | .the.ability.to.specify.multiple |
| 4cae0 | 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 2e 20 44 61 74 61 20 70 61 63 6b 65 74 73 | .matching.criteria..Data.packets |
| 4cb00 | 20 67 6f 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 75 6c 65 73 20 66 72 6f 6d 20 31 20 2d 20 39 | .go.through.the.rules.from.1.-.9 |
| 4cb20 | 39 39 39 39 39 2c 20 73 6f 20 6f 72 64 65 72 20 69 73 20 63 72 75 63 69 61 6c 2e 20 41 74 20 74 | 99999,.so.order.is.crucial..At.t |
| 4cb40 | 68 65 20 66 69 72 73 74 20 6d 61 74 63 68 20 74 68 65 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 | he.first.match.the.action.of.the |
| 4cb60 | 20 72 75 6c 65 20 77 69 6c 6c 20 62 65 20 65 78 65 63 75 74 65 64 2e 00 46 6f 72 20 66 69 72 65 | .rule.will.be.executed..For.fire |
| 4cb80 | 77 61 6c 6c 20 66 69 6c 74 65 72 69 6e 67 2c 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 6e | wall.filtering,.firewall.rules.n |
| 4cba0 | 65 65 64 73 20 74 6f 20 62 65 20 63 72 65 61 74 65 64 2e 20 45 61 63 68 20 72 75 6c 65 20 69 73 | eeds.to.be.created..Each.rule.is |
| 4cbc0 | 20 6e 75 6d 62 65 72 65 64 2c 20 68 61 73 20 61 6e 20 61 63 74 69 6f 6e 20 74 6f 20 61 70 70 6c | .numbered,.has.an.action.to.appl |
| 4cbe0 | 79 20 69 66 20 74 68 65 20 72 75 6c 65 20 69 73 20 6d 61 74 63 68 65 64 2c 20 61 6e 64 20 74 68 | y.if.the.rule.is.matched,.and.th |
| 4cc00 | 65 20 61 62 69 6c 69 74 79 20 74 6f 20 73 70 65 63 69 66 79 20 6d 75 6c 74 69 70 6c 65 20 63 72 | e.ability.to.specify.multiple.cr |
| 4cc20 | 69 74 65 72 69 61 20 6d 61 74 63 68 65 72 73 2e 20 44 61 74 61 20 70 61 63 6b 65 74 73 20 67 6f | iteria.matchers..Data.packets.go |
| 4cc40 | 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 75 6c 65 73 20 66 72 6f 6d 20 31 20 2d 20 39 39 39 39 | .through.the.rules.from.1.-.9999 |
| 4cc60 | 39 39 2c 20 73 6f 20 6f 72 64 65 72 20 69 73 20 63 72 75 63 69 61 6c 2e 20 41 74 20 74 68 65 20 | 99,.so.order.is.crucial..At.the. |
| 4cc80 | 66 69 72 73 74 20 6d 61 74 63 68 20 74 68 65 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 72 75 | first.match.the.action.of.the.ru |
| 4cca0 | 6c 65 20 77 69 6c 6c 20 62 65 20 65 78 65 63 75 74 65 64 2e 00 46 6f 72 20 66 72 61 67 6d 65 6e | le.will.be.executed..For.fragmen |
| 4ccc0 | 74 65 64 20 54 43 50 20 6f 72 20 55 44 50 20 70 61 63 6b 65 74 73 20 61 6e 64 20 61 6c 6c 20 6f | ted.TCP.or.UDP.packets.and.all.o |
| 4cce0 | 74 68 65 72 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 70 72 6f 74 6f 63 6f 6c 20 74 72 61 66 | ther.IPv4.and.IPv6.protocol.traf |
| 4cd00 | 66 69 63 2c 20 74 68 65 20 73 6f 75 72 63 65 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 | fic,.the.source.and.destination. |
| 4cd20 | 70 6f 72 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 73 20 6f 6d 69 74 74 65 64 2e 20 46 6f 72 | port.information.is.omitted..For |
| 4cd40 | 20 6e 6f 6e 2d 49 50 20 74 72 61 66 66 69 63 2c 20 74 68 65 20 66 6f 72 6d 75 6c 61 20 69 73 20 | .non-IP.traffic,.the.formula.is. |
| 4cd60 | 74 68 65 20 73 61 6d 65 20 61 73 20 66 6f 72 20 74 68 65 20 6c 61 79 65 72 32 20 74 72 61 6e 73 | the.same.as.for.the.layer2.trans |
| 4cd80 | 6d 69 74 20 68 61 73 68 20 70 6f 6c 69 63 79 2e 00 46 6f 72 20 67 65 6e 65 72 61 74 69 6e 67 20 | mit.hash.policy..For.generating. |
| 4cda0 | 61 6e 20 4f 54 50 20 6b 65 79 20 69 6e 20 56 79 4f 53 2c 20 79 6f 75 20 63 61 6e 20 75 73 65 20 | an.OTP.key.in.VyOS,.you.can.use. |
| 4cdc0 | 74 68 65 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 20 28 6f 70 65 72 61 74 69 6f 6e 61 6c 20 6d 6f 64 | the.CLI.command.(operational.mod |
| 4cde0 | 65 29 3a 00 46 6f 72 20 69 6e 62 6f 75 6e 64 20 75 70 64 61 74 65 73 20 74 68 65 20 6f 72 64 65 | e):.For.inbound.updates.the.orde |
| 4ce00 | 72 20 6f 66 20 70 72 65 66 65 72 65 6e 63 65 20 69 73 3a 00 46 6f 72 20 69 6e 73 74 61 6e 63 65 | r.of.preference.is:.For.instance |
| 4ce20 | 2c 20 77 69 74 68 20 3a 63 6f 64 65 3a 60 73 65 74 20 71 6f 73 20 70 6f 6c 69 63 79 20 73 68 61 | ,.with.:code:`set.qos.policy.sha |
| 4ce40 | 70 65 72 20 4d 59 2d 53 48 41 50 45 52 20 63 6c 61 73 73 20 33 30 20 73 65 74 2d 64 73 63 70 20 | per.MY-SHAPER.class.30.set-dscp. |
| 4ce60 | 45 46 60 20 79 6f 75 20 77 6f 75 6c 64 20 62 65 20 6d 6f 64 69 66 79 69 6e 67 20 74 68 65 20 44 | EF`.you.would.be.modifying.the.D |
| 4ce80 | 53 43 50 20 66 69 65 6c 64 20 76 61 6c 75 65 20 6f 66 20 70 61 63 6b 65 74 73 20 69 6e 20 74 68 | SCP.field.value.of.packets.in.th |
| 4cea0 | 61 74 20 63 6c 61 73 73 20 74 6f 20 45 78 70 65 64 69 74 65 20 46 6f 72 77 61 72 64 69 6e 67 2e | at.class.to.Expedite.Forwarding. |
| 4cec0 | 00 46 6f 72 20 69 70 76 34 3a 00 46 6f 72 20 6c 61 74 65 73 74 20 72 65 6c 65 61 73 65 73 2c 20 | .For.ipv4:.For.latest.releases,. |
| 4cee0 | 72 65 66 65 72 20 74 68 65 20 60 66 69 72 65 77 61 6c 6c 20 28 69 6e 74 65 72 66 61 63 65 2d 67 | refer.the.`firewall.(interface-g |
| 4cf00 | 72 6f 75 70 73 29 20 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 76 79 6f 73 2e 69 6f 2f 65 6e 2f | roups).<https://docs.vyos.io/en/ |
| 4cf20 | 6c 61 74 65 73 74 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 | latest/configuration/firewall/ge |
| 4cf40 | 6e 65 72 61 6c 2e 68 74 6d 6c 23 69 6e 74 65 72 66 61 63 65 2d 67 72 6f 75 70 73 3e 60 5f 20 6d | neral.html#interface-groups>`_.m |
| 4cf60 | 61 69 6e 20 70 61 67 65 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 7a 6f 6e 65 20 62 61 73 65 64 | ain.page.to.configure.zone.based |
| 4cf80 | 20 72 75 6c 65 73 2e 20 4e 65 77 20 73 79 6e 74 61 78 20 77 61 73 20 69 6e 74 72 6f 64 75 63 65 | .rules..New.syntax.was.introduce |
| 4cfa0 | 64 20 68 65 72 65 20 3a 76 79 74 61 73 6b 3a 60 54 35 31 36 30 60 00 46 6f 72 20 6c 61 74 65 73 | d.here.:vytask:`T5160`.For.lates |
| 4cfc0 | 74 20 72 65 6c 65 61 73 65 73 2c 20 72 65 66 65 72 20 74 68 65 20 60 66 69 72 65 77 61 6c 6c 20 | t.releases,.refer.the.`firewall. |
| 4cfe0 | 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 76 79 6f 73 2e 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f | <https://docs.vyos.io/en/latest/ |
| 4d000 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2e 68 | configuration/firewall/general.h |
| 4d020 | 74 6d 6c 23 69 6e 74 65 72 66 61 63 65 2d 67 72 6f 75 70 73 3e 60 5f 20 6d 61 69 6e 20 70 61 67 | tml#interface-groups>`_.main.pag |
| 4d040 | 65 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 7a 6f 6e 65 20 62 61 73 65 64 20 72 75 6c 65 73 2e | e.to.configure.zone.based.rules. |
| 4d060 | 20 4e 65 77 20 73 79 6e 74 61 78 20 77 61 73 20 69 6e 74 72 6f 64 75 63 65 64 20 68 65 72 65 20 | .New.syntax.was.introduced.here. |
| 4d080 | 3a 76 79 74 61 73 6b 3a 60 54 35 31 36 30 60 00 46 6f 72 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 | :vytask:`T5160`.For.more.informa |
| 4d0a0 | 74 69 6f 6e 20 6f 6e 20 68 6f 77 20 4d 50 4c 53 20 6c 61 62 65 6c 20 73 77 69 74 63 68 69 6e 67 | tion.on.how.MPLS.label.switching |
| 4d0c0 | 20 77 6f 72 6b 73 2c 20 70 6c 65 61 73 65 20 67 6f 20 76 69 73 69 74 20 60 57 69 6b 69 70 65 64 | .works,.please.go.visit.`Wikiped |
| 4d0e0 | 69 61 20 28 4d 50 4c 53 29 60 5f 2e 00 46 6f 72 20 6d 75 6c 74 69 20 68 6f 70 20 73 65 73 73 69 | ia.(MPLS)`_..For.multi.hop.sessi |
| 4d100 | 6f 6e 73 20 6f 6e 6c 79 2e 20 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6d 69 6e 69 6d 75 6d 20 | ons.only..Configure.the.minimum. |
| 4d120 | 65 78 70 65 63 74 65 64 20 54 54 4c 20 66 6f 72 20 61 6e 20 69 6e 63 6f 6d 69 6e 67 20 42 46 44 | expected.TTL.for.an.incoming.BFD |
| 4d140 | 20 63 6f 6e 74 72 6f 6c 20 70 61 63 6b 65 74 2e 00 46 6f 72 20 6e 65 74 77 6f 72 6b 20 6d 61 69 | .control.packet..For.network.mai |
| 4d160 | 6e 74 65 6e 61 6e 63 65 2c 20 69 74 27 73 20 61 20 67 6f 6f 64 20 69 64 65 61 20 74 6f 20 64 69 | ntenance,.it's.a.good.idea.to.di |
| 4d180 | 72 65 63 74 20 75 73 65 72 73 20 74 6f 20 61 20 62 61 63 6b 75 70 20 73 65 72 76 65 72 20 73 6f | rect.users.to.a.backup.server.so |
| 4d1a0 | 20 74 68 61 74 20 74 68 65 20 70 72 69 6d 61 72 79 20 73 65 72 76 65 72 20 63 61 6e 20 62 65 20 | .that.the.primary.server.can.be. |
| 4d1c0 | 73 61 66 65 6c 79 20 74 61 6b 65 6e 20 6f 75 74 20 6f 66 20 73 65 72 76 69 63 65 2e 20 49 74 27 | safely.taken.out.of.service..It' |
| 4d1e0 | 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 73 77 69 74 63 68 20 79 6f 75 72 20 50 50 50 6f 45 20 | s.possible.to.switch.your.PPPoE. |
| 4d200 | 73 65 72 76 65 72 20 74 6f 20 6d 61 69 6e 74 65 6e 61 6e 63 65 20 6d 6f 64 65 20 77 68 65 72 65 | server.to.maintenance.mode.where |
| 4d220 | 20 69 74 20 6d 61 69 6e 74 61 69 6e 73 20 61 6c 72 65 61 64 79 20 65 73 74 61 62 6c 69 73 68 65 | .it.maintains.already.establishe |
| 4d240 | 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2c 20 62 75 74 20 72 65 66 75 73 65 73 20 6e 65 77 20 63 | d.connections,.but.refuses.new.c |
| 4d260 | 6f 6e 6e 65 63 74 69 6f 6e 20 61 74 74 65 6d 70 74 73 2e 00 46 6f 72 20 6e 65 74 77 6f 72 6b 73 | onnection.attempts..For.networks |
| 4d280 | 20 63 6f 6e 73 69 73 74 69 6e 67 20 6f 66 20 56 79 4f 53 20 61 6e 64 20 6f 74 68 65 72 20 4c 69 | .consisting.of.VyOS.and.other.Li |
| 4d2a0 | 6e 75 78 20 73 79 73 74 65 6d 73 20 72 75 6e 6e 69 6e 67 20 72 65 6c 61 74 69 76 65 6c 79 20 72 | nux.systems.running.relatively.r |
| 4d2c0 | 65 63 65 6e 74 20 76 65 72 73 69 6f 6e 73 20 6f 66 20 74 68 65 20 63 68 72 6f 6e 79 20 64 61 65 | ecent.versions.of.the.chrony.dae |
| 4d2e0 | 6d 6f 6e 2c 20 4e 54 50 20 70 61 63 6b 65 74 73 20 63 61 6e 20 62 65 20 22 74 75 6e 6e 65 6c 65 | mon,.NTP.packets.can.be."tunnele |
| 4d300 | 64 22 20 6f 76 65 72 20 50 54 50 2e 20 4e 54 50 20 6f 76 65 72 20 50 54 50 20 70 72 6f 76 69 64 | d".over.PTP..NTP.over.PTP.provid |
| 4d320 | 65 73 20 74 68 65 20 62 65 73 74 20 6f 66 20 62 6f 74 68 20 77 6f 72 6c 64 73 2c 20 6c 65 76 65 | es.the.best.of.both.worlds,.leve |
| 4d340 | 72 61 67 69 6e 67 20 68 61 72 64 77 61 72 65 20 73 75 70 70 6f 72 74 20 66 6f 72 20 74 69 6d 65 | raging.hardware.support.for.time |
| 4d360 | 73 74 61 6d 70 69 6e 67 20 50 54 50 20 70 61 63 6b 65 74 73 20 77 68 69 6c 65 20 72 65 74 61 69 | stamping.PTP.packets.while.retai |
| 4d380 | 6e 69 6e 67 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6c 65 78 69 62 69 6c 69 | ning.the.configuration.flexibili |
| 4d3a0 | 74 79 20 61 6e 64 20 66 61 75 6c 74 20 74 6f 6c 65 72 61 6e 63 65 20 6f 66 20 4e 54 50 2e 00 46 | ty.and.fault.tolerance.of.NTP..F |
| 4d3c0 | 6f 72 20 6f 70 74 69 6d 61 6c 20 73 63 61 6c 61 62 69 6c 69 74 79 2c 20 4d 75 6c 74 69 63 61 73 | or.optimal.scalability,.Multicas |
| 4d3e0 | 74 20 73 68 6f 75 6c 64 6e 27 74 20 62 65 20 75 73 65 64 20 61 74 20 61 6c 6c 2c 20 62 75 74 20 | t.shouldn't.be.used.at.all,.but. |
| 4d400 | 69 6e 73 74 65 61 64 20 75 73 65 20 42 47 50 20 74 6f 20 73 69 67 6e 61 6c 20 61 6c 6c 20 63 6f | instead.use.BGP.to.signal.all.co |
| 4d420 | 6e 6e 65 63 74 65 64 20 64 65 76 69 63 65 73 20 62 65 74 77 65 65 6e 20 6c 65 61 76 65 73 2e 20 | nnected.devices.between.leaves.. |
| 4d440 | 55 6e 66 6f 72 74 75 6e 61 74 65 6c 79 2c 20 56 79 4f 53 20 64 6f 65 73 20 6e 6f 74 20 79 65 74 | Unfortunately,.VyOS.does.not.yet |
| 4d460 | 20 73 75 70 70 6f 72 74 20 74 68 69 73 2e 00 46 6f 72 20 6f 75 74 62 6f 75 6e 64 20 75 70 64 61 | .support.this..For.outbound.upda |
| 4d480 | 74 65 73 20 74 68 65 20 6f 72 64 65 72 20 6f 66 20 70 72 65 66 65 72 65 6e 63 65 20 69 73 3a 00 | tes.the.order.of.preference.is:. |
| 4d4a0 | 46 6f 72 20 72 65 66 65 72 65 6e 63 65 2c 20 61 20 64 65 73 63 72 69 70 74 69 6f 6e 20 63 61 6e | For.reference,.a.description.can |
| 4d4c0 | 20 62 65 20 64 65 66 69 6e 65 64 20 66 6f 72 20 65 76 65 72 79 20 64 65 66 69 6e 65 64 20 63 75 | .be.defined.for.every.defined.cu |
| 4d4e0 | 73 74 6f 6d 20 63 68 61 69 6e 2e 00 46 6f 72 20 72 65 66 65 72 65 6e 63 65 2c 20 61 20 64 65 73 | stom.chain..For.reference,.a.des |
| 4d500 | 63 72 69 70 74 69 6f 6e 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 66 6f 72 20 65 76 65 72 | cription.can.be.defined.for.ever |
| 4d520 | 79 20 73 69 6e 67 6c 65 20 72 75 6c 65 2c 20 61 6e 64 20 66 6f 72 20 65 76 65 72 79 20 64 65 66 | y.single.rule,.and.for.every.def |
| 4d540 | 69 6e 65 64 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2e 00 46 6f 72 20 73 65 63 75 72 69 74 79 2c | ined.custom.chain..For.security, |
| 4d560 | 20 74 68 65 20 6c 69 73 74 65 6e 20 61 64 64 72 65 73 73 20 73 68 6f 75 6c 64 20 6f 6e 6c 79 20 | .the.listen.address.should.only. |
| 4d580 | 62 65 20 75 73 65 64 20 6f 6e 20 69 6e 74 65 72 6e 61 6c 2f 74 72 75 73 74 65 64 20 6e 65 74 77 | be.used.on.internal/trusted.netw |
| 4d5a0 | 6f 72 6b 73 21 00 46 6f 72 20 73 65 72 69 61 6c 20 76 69 61 20 55 53 42 20 70 6f 72 74 20 69 6e | orks!.For.serial.via.USB.port.in |
| 4d5c0 | 66 6f 72 6d 61 74 69 6f 6e 20 70 6c 65 61 73 65 20 72 65 66 6f 72 20 74 6f 3a 20 3a 72 65 66 3a | formation.please.refor.to:.:ref: |
| 4d5e0 | 60 68 61 72 64 77 61 72 65 5f 75 73 62 60 2e 00 46 6f 72 20 73 69 6d 70 6c 69 63 69 74 79 20 77 | `hardware_usb`..For.simplicity.w |
| 4d600 | 65 27 6c 6c 20 61 73 73 75 6d 65 20 74 68 61 74 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 20 69 73 | e'll.assume.that.the.protocol.is |
| 4d620 | 20 47 52 45 2c 20 69 74 27 73 20 6e 6f 74 20 68 61 72 64 20 74 6f 20 67 75 65 73 73 20 77 68 61 | .GRE,.it's.not.hard.to.guess.wha |
| 4d640 | 74 20 6e 65 65 64 73 20 74 6f 20 62 65 20 63 68 61 6e 67 65 64 20 74 6f 20 6d 61 6b 65 20 69 74 | t.needs.to.be.changed.to.make.it |
| 4d660 | 20 77 6f 72 6b 20 77 69 74 68 20 61 20 64 69 66 66 65 72 65 6e 74 20 70 72 6f 74 6f 63 6f 6c 2e | .work.with.a.different.protocol. |
| 4d680 | 20 57 65 20 61 73 73 75 6d 65 20 74 68 61 74 20 49 50 73 65 63 20 77 69 6c 6c 20 75 73 65 20 70 | .We.assume.that.IPsec.will.use.p |
| 4d6a0 | 72 65 2d 73 68 61 72 65 64 20 73 65 63 72 65 74 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 | re-shared.secret.authentication. |
| 4d6c0 | 61 6e 64 20 77 69 6c 6c 20 75 73 65 20 41 45 53 31 32 38 2f 53 48 41 31 20 66 6f 72 20 74 68 65 | and.will.use.AES128/SHA1.for.the |
| 4d6e0 | 20 63 69 70 68 65 72 20 61 6e 64 20 68 61 73 68 2e 20 41 64 6a 75 73 74 20 74 68 69 73 20 61 73 | .cipher.and.hash..Adjust.this.as |
| 4d700 | 20 6e 65 63 65 73 73 61 72 79 2e 00 46 6f 72 20 74 68 65 20 3a 72 65 66 3a 60 64 65 73 74 69 6e | .necessary..For.the.:ref:`destin |
| 4d720 | 61 74 69 6f 6e 2d 6e 61 74 36 36 60 20 72 75 6c 65 2c 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 | ation-nat66`.rule,.the.destinati |
| 4d740 | 6f 6e 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 20 69 73 72 65 70 6c 61 | on.address.of.the.packet.isrepla |
| 4d760 | 63 65 64 20 62 79 20 74 68 65 20 61 64 64 72 65 73 73 20 63 61 6c 63 75 6c 61 74 65 64 20 66 72 | ced.by.the.address.calculated.fr |
| 4d780 | 6f 6d 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 61 64 64 72 65 73 73 20 6f 72 20 70 72 65 66 | om.the.specified.address.or.pref |
| 4d7a0 | 69 78 20 69 6e 20 74 68 65 20 60 74 72 61 6e 73 6c 61 74 69 6f 6e 20 61 64 64 72 65 73 73 60 20 | ix.in.the.`translation.address`. |
| 4d7c0 | 63 6f 6d 6d 61 6e 64 00 46 6f 72 20 74 68 65 20 4f 70 65 6e 56 50 4e 20 74 72 61 66 66 69 63 20 | command.For.the.OpenVPN.traffic. |
| 4d7e0 | 74 6f 20 70 61 73 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 57 41 4e 20 69 6e 74 65 72 66 61 63 | to.pass.through.the.WAN.interfac |
| 4d800 | 65 2c 20 79 6f 75 20 6d 75 73 74 20 63 72 65 61 74 65 20 61 20 66 69 72 65 77 61 6c 6c 20 65 78 | e,.you.must.create.a.firewall.ex |
| 4d820 | 63 65 70 74 69 6f 6e 2e 00 46 6f 72 20 74 68 65 20 57 69 72 65 47 75 61 72 64 20 74 72 61 66 66 | ception..For.the.WireGuard.traff |
| 4d840 | 69 63 20 74 6f 20 70 61 73 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 57 41 4e 20 69 6e 74 65 72 | ic.to.pass.through.the.WAN.inter |
| 4d860 | 66 61 63 65 2c 20 79 6f 75 20 6d 75 73 74 20 63 72 65 61 74 65 20 61 20 66 69 72 65 77 61 6c 6c | face,.you.must.create.a.firewall |
| 4d880 | 20 65 78 63 65 70 74 69 6f 6e 2e 00 46 6f 72 20 74 68 65 20 61 76 65 72 61 67 65 20 75 73 65 72 | .exception..For.the.average.user |
| 4d8a0 | 20 61 20 73 65 72 69 61 6c 20 63 6f 6e 73 6f 6c 65 20 68 61 73 20 6e 6f 20 61 64 76 61 6e 74 61 | .a.serial.console.has.no.advanta |
| 4d8c0 | 67 65 20 6f 76 65 72 20 61 20 63 6f 6e 73 6f 6c 65 20 6f 66 66 65 72 65 64 20 62 79 20 61 20 64 | ge.over.a.console.offered.by.a.d |
| 4d8e0 | 69 72 65 63 74 6c 79 20 61 74 74 61 63 68 65 64 20 6b 65 79 62 6f 61 72 64 20 61 6e 64 20 73 63 | irectly.attached.keyboard.and.sc |
| 4d900 | 72 65 65 6e 2e 20 53 65 72 69 61 6c 20 63 6f 6e 73 6f 6c 65 73 20 61 72 65 20 6d 75 63 68 20 73 | reen..Serial.consoles.are.much.s |
| 4d920 | 6c 6f 77 65 72 2c 20 74 61 6b 69 6e 67 20 75 70 20 74 6f 20 61 20 73 65 63 6f 6e 64 20 74 6f 20 | lower,.taking.up.to.a.second.to. |
| 4d940 | 66 69 6c 6c 20 61 20 38 30 20 63 6f 6c 75 6d 6e 20 62 79 20 32 34 20 6c 69 6e 65 20 73 63 72 65 | fill.a.80.column.by.24.line.scre |
| 4d960 | 65 6e 2e 20 53 65 72 69 61 6c 20 63 6f 6e 73 6f 6c 65 73 20 67 65 6e 65 72 61 6c 6c 79 20 6f 6e | en..Serial.consoles.generally.on |
| 4d980 | 6c 79 20 73 75 70 70 6f 72 74 20 6e 6f 6e 2d 70 72 6f 70 6f 72 74 69 6f 6e 61 6c 20 41 53 43 49 | ly.support.non-proportional.ASCI |
| 4d9a0 | 49 20 74 65 78 74 2c 20 77 69 74 68 20 6c 69 6d 69 74 65 64 20 73 75 70 70 6f 72 74 20 66 6f 72 | I.text,.with.limited.support.for |
| 4d9c0 | 20 6c 61 6e 67 75 61 67 65 73 20 6f 74 68 65 72 20 74 68 61 6e 20 45 6e 67 6c 69 73 68 2e 00 46 | .languages.other.than.English..F |
| 4d9e0 | 6f 72 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 2c 20 67 72 6f 75 70 73 20 63 61 6e 20 61 | or.the.destination,.groups.can.a |
| 4da00 | 6c 73 6f 20 62 65 20 75 73 65 64 20 69 6e 73 74 65 61 64 20 6f 66 20 61 6e 20 61 64 64 72 65 73 | lso.be.used.instead.of.an.addres |
| 4da20 | 73 2e 00 46 6f 72 20 74 68 65 20 69 6e 67 72 65 73 73 20 74 72 61 66 66 69 63 20 6f 66 20 61 6e | s..For.the.ingress.traffic.of.an |
| 4da40 | 20 69 6e 74 65 72 66 61 63 65 2c 20 74 68 65 72 65 20 69 73 20 6f 6e 6c 79 20 6f 6e 65 20 70 6f | .interface,.there.is.only.one.po |
| 4da60 | 6c 69 63 79 20 79 6f 75 20 63 61 6e 20 64 69 72 65 63 74 6c 79 20 61 70 70 6c 79 2c 20 61 20 2a | licy.you.can.directly.apply,.a.* |
| 4da80 | 2a 4c 69 6d 69 74 65 72 2a 2a 20 70 6f 6c 69 63 79 2e 20 59 6f 75 20 63 61 6e 6e 6f 74 20 61 70 | *Limiter**.policy..You.cannot.ap |
| 4daa0 | 70 6c 79 20 61 20 73 68 61 70 69 6e 67 20 70 6f 6c 69 63 79 20 64 69 72 65 63 74 6c 79 20 74 6f | ply.a.shaping.policy.directly.to |
| 4dac0 | 20 74 68 65 20 69 6e 67 72 65 73 73 20 74 72 61 66 66 69 63 20 6f 66 20 61 6e 79 20 69 6e 74 65 | .the.ingress.traffic.of.any.inte |
| 4dae0 | 72 66 61 63 65 20 62 65 63 61 75 73 65 20 73 68 61 70 69 6e 67 20 6f 6e 6c 79 20 77 6f 72 6b 73 | rface.because.shaping.only.works |
| 4db00 | 20 66 6f 72 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 2e 00 46 6f 72 20 74 68 65 20 73 | .for.outbound.traffic..For.the.s |
| 4db20 | 61 6b 65 20 6f 66 20 64 65 6d 6f 6e 73 74 72 61 74 69 6f 6e 2c 20 60 65 78 61 6d 70 6c 65 20 23 | ake.of.demonstration,.`example.# |
| 4db40 | 31 20 69 6e 20 74 68 65 20 6f 66 66 69 63 69 61 6c 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 | 1.in.the.official.documentation. |
| 4db60 | 3c 68 74 74 70 73 3a 2f 2f 77 77 77 2e 7a 61 62 62 69 78 2e 63 6f 6d 2f 64 6f 63 75 6d 65 6e 74 | <https://www.zabbix.com/document |
| 4db80 | 61 74 69 6f 6e 2f 63 75 72 72 65 6e 74 2f 6d 61 6e 75 61 6c 2f 20 69 6e 73 74 61 6c 6c 61 74 69 | ation/current/manual/.installati |
| 4dba0 | 6f 6e 2f 63 6f 6e 74 61 69 6e 65 72 73 3e 60 5f 20 74 6f 20 74 68 65 20 64 65 63 6c 61 72 61 74 | on/containers>`_.to.the.declarat |
| 4dbc0 | 69 76 65 20 56 79 4f 53 20 43 4c 49 20 73 79 6e 74 61 78 2e 00 46 6f 72 20 74 68 65 20 73 61 6b | ive.VyOS.CLI.syntax..For.the.sak |
| 4dbe0 | 65 20 6f 66 20 64 65 6d 6f 6e 73 74 72 61 74 69 6f 6e 2c 20 60 65 78 61 6d 70 6c 65 20 23 31 20 | e.of.demonstration,.`example.#1. |
| 4dc00 | 69 6e 20 74 68 65 20 6f 66 66 69 63 69 61 6c 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 3c 68 | in.the.official.documentation.<h |
| 4dc20 | 74 74 70 73 3a 2f 2f 77 77 77 2e 7a 61 62 62 69 78 2e 63 6f 6d 2f 64 6f 63 75 6d 65 6e 74 61 74 | ttps://www.zabbix.com/documentat |
| 4dc40 | 69 6f 6e 2f 63 75 72 72 65 6e 74 2f 6d 61 6e 75 61 6c 2f 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 2f | ion/current/manual/installation/ |
| 4dc60 | 63 6f 6e 74 61 69 6e 65 72 73 3e 60 5f 20 74 6f 20 74 68 65 20 64 65 63 6c 61 72 61 74 69 76 65 | containers>`_.to.the.declarative |
| 4dc80 | 20 56 79 4f 53 20 43 4c 49 20 73 79 6e 74 61 78 2e 00 46 6f 72 20 74 72 61 66 66 69 63 20 64 65 | .VyOS.CLI.syntax..For.traffic.de |
| 4dca0 | 73 74 69 6e 65 64 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2c 20 6f 72 20 | stined.to.the.router.itself,.or. |
| 4dcc0 | 74 68 61 74 20 6e 65 65 64 73 20 74 6f 20 62 65 20 72 6f 75 74 65 64 20 28 61 73 73 75 6d 69 6e | that.needs.to.be.routed.(assumin |
| 4dce0 | 67 20 61 20 6c 61 79 65 72 33 20 62 72 69 64 67 65 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 29 | g.a.layer3.bridge.is.configured) |
| 4dd00 | 2c 20 74 68 65 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 69 6e 70 75 74 2a 2a 2c 20 74 | ,.the.base.chain.is.**input**,.t |
| 4dd20 | 68 65 20 62 61 73 65 20 63 6f 6d 6d 61 6e 64 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c | he.base.command.is.``set.firewal |
| 4dd40 | 6c 20 62 72 69 64 67 65 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 20 61 6e 64 20 | l.bridge.input.filter....``.and. |
| 4dd60 | 74 68 65 20 70 61 74 68 20 69 73 3a 00 46 6f 72 20 74 72 61 66 66 69 63 20 6f 72 69 67 69 6e 61 | the.path.is:.For.traffic.origina |
| 4dd80 | 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 | ted.by.the.router,.base.chain.is |
| 4dda0 | 20 2a 2a 6f 75 74 70 75 74 20 66 69 6c 74 65 72 2a 2a 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 | .**output.filter**:.``set.firewa |
| 4ddc0 | 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e | ll.[ipv4.|.ipv6].output.filter.. |
| 4dde0 | 2e 2e 60 60 00 46 6f 72 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6e 65 65 64 73 20 74 6f 20 62 | ..``.For.traffic.that.needs.to.b |
| 4de00 | 65 20 66 6f 72 77 61 72 64 65 64 20 69 6e 74 65 72 6e 61 6c 6c 79 20 62 79 20 74 68 65 20 62 72 | e.forwarded.internally.by.the.br |
| 4de20 | 69 64 67 65 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 69 73 20 2a 2a 66 6f 72 77 61 72 64 | idge,.base.chain.is.is.**forward |
| 4de40 | 2a 2a 2c 20 61 6e 64 20 69 74 27 73 20 62 61 73 65 20 63 6f 6d 6d 61 6e 64 20 66 6f 72 20 66 69 | **,.and.it's.base.command.for.fi |
| 4de60 | 6c 74 65 72 69 6e 67 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 | ltering.is.``set.firewall.bridge |
| 4de80 | 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 | .forward.filter....``,.which.hap |
| 4dea0 | 70 65 6e 73 20 69 6e 20 73 74 61 67 65 20 34 2c 20 68 69 67 68 6c 69 67 68 74 65 64 20 77 69 74 | pens.in.stage.4,.highlighted.wit |
| 4dec0 | 68 20 72 65 64 20 63 6f 6c 6f 72 2e 00 46 6f 72 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6e 65 | h.red.color..For.traffic.that.ne |
| 4dee0 | 65 64 73 20 74 6f 20 62 65 20 66 6f 72 77 61 72 65 64 20 69 6e 74 65 72 6e 61 6c 6c 79 20 62 79 | eds.to.be.forwared.internally.by |
| 4df00 | 20 74 68 65 20 62 72 69 64 67 65 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 69 73 20 2a 2a | .the.bridge,.base.chain.is.is.** |
| 4df20 | 66 6f 72 77 61 72 64 2a 2a 2c 20 61 6e 64 20 69 74 27 73 20 62 61 73 65 20 63 6f 6d 6d 61 6e 64 | forward**,.and.it's.base.command |
| 4df40 | 20 66 6f 72 20 66 69 6c 74 65 72 69 6e 67 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c | .for.filtering.is.``set.firewall |
| 4df60 | 20 62 72 69 64 67 65 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 46 6f 72 | .bridge.forward.filter....``.For |
| 4df80 | 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6e 65 65 64 73 20 74 6f 20 62 65 20 66 6f 72 77 61 72 | .traffic.that.needs.to.be.forwar |
| 4dfa0 | 65 64 20 69 6e 74 65 72 6e 61 6c 6c 79 20 62 79 20 74 68 65 20 62 72 69 64 67 65 2c 20 62 61 73 | ed.internally.by.the.bridge,.bas |
| 4dfc0 | 65 20 63 68 61 69 6e 20 69 73 20 69 73 20 2a 2a 66 6f 72 77 61 72 64 2a 2a 2c 20 61 6e 64 20 69 | e.chain.is.is.**forward**,.and.i |
| 4dfe0 | 74 27 73 20 62 61 73 65 20 63 6f 6d 6d 61 6e 64 20 66 6f 72 20 66 69 6c 74 65 72 69 6e 67 20 69 | t's.base.command.for.filtering.i |
| 4e000 | 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 66 6f 72 77 61 72 64 20 | s.``set.firewall.bridge.forward. |
| 4e020 | 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 | filter....``,.which.happens.in.s |
| 4e040 | 74 61 67 65 20 34 2c 20 68 69 67 68 6c 69 67 68 74 65 6e 65 64 20 77 69 74 68 20 72 65 64 20 63 | tage.4,.highlightened.with.red.c |
| 4e060 | 6f 6c 6f 72 2e 00 46 6f 72 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6e 65 65 64 73 20 74 6f 20 | olor..For.traffic.that.needs.to. |
| 4e080 | 62 65 20 73 77 69 74 63 68 65 64 20 69 6e 74 65 72 6e 61 6c 6c 79 20 62 79 20 74 68 65 20 62 72 | be.switched.internally.by.the.br |
| 4e0a0 | 69 64 67 65 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 66 6f 72 77 61 72 64 2a 2a 2c | idge,.base.chain.is.**forward**, |
| 4e0c0 | 20 61 6e 64 20 69 74 27 73 20 62 61 73 65 20 63 6f 6d 6d 61 6e 64 20 66 6f 72 20 66 69 6c 74 65 | .and.it's.base.command.for.filte |
| 4e0e0 | 72 69 6e 67 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 66 6f | ring.is.``set.firewall.bridge.fo |
| 4e100 | 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e | rward.filter....``,.which.happen |
| 4e120 | 73 20 69 6e 20 73 74 61 67 65 20 34 2c 20 68 69 67 68 6c 69 67 68 74 65 64 20 77 69 74 68 20 72 | s.in.stage.4,.highlighted.with.r |
| 4e140 | 65 64 20 63 6f 6c 6f 72 2e 00 46 6f 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 73 20 74 68 | ed.color..For.traffic.towards.th |
| 4e160 | 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a | e.router.itself,.base.chain.is.* |
| 4e180 | 2a 69 6e 70 75 74 20 66 69 6c 74 65 72 2a 2a 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 | *input.filter**:.``set.firewall. |
| 4e1a0 | 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 | [ipv4.|.ipv6].input.filter....`` |
| 4e1c0 | 00 46 6f 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 | .For.traffic.towards.the.router. |
| 4e1e0 | 69 74 73 65 6c 66 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 69 6e 70 75 74 2a 2a 2c | itself,.base.chain.is.**input**, |
| 4e200 | 20 77 68 69 6c 65 20 74 72 61 66 66 69 63 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 74 68 65 | .while.traffic.originated.by.the |
| 4e220 | 20 72 6f 75 74 65 72 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 6f 75 74 70 75 74 2a | .router,.base.chain.is.**output* |
| 4e240 | 2a 2e 20 41 20 6e 65 77 20 73 69 6d 70 6c 69 66 69 65 64 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 | *..A.new.simplified.packet.flow. |
| 4e260 | 64 69 61 67 72 61 6d 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 2c 20 77 68 69 63 68 20 73 68 6f | diagram.is.shown.next,.which.sho |
| 4e280 | 77 73 20 74 68 65 20 70 61 74 68 20 66 6f 72 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 61 74 | ws.the.path.for.traffic.destinat |
| 4e2a0 | 65 64 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2c 20 61 6e 64 20 74 72 61 | ed.to.the.router.itself,.and.tra |
| 4e2c0 | 66 66 69 63 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 28 73 74 | ffic.generated.by.the.router.(st |
| 4e2e0 | 61 72 74 69 6e 67 20 66 72 6f 6d 20 63 69 72 63 6c 65 20 6e 75 6d 62 65 72 20 36 29 3a 00 46 6f | arting.from.circle.number.6):.Fo |
| 4e300 | 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 | r.traffic.towards.the.router.its |
| 4e320 | 65 6c 66 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 69 6e 70 75 74 2a 2a 2c 20 77 68 | elf,.base.chain.is.**input**,.wh |
| 4e340 | 69 6c 65 20 74 72 61 66 66 69 63 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 74 68 65 20 72 6f | ile.traffic.originated.by.the.ro |
| 4e360 | 75 74 65 72 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 6f 75 74 70 75 74 2a 2a 2e 20 | uter,.base.chain.is.**output**.. |
| 4e380 | 41 20 6e 65 77 20 73 69 6d 70 6c 69 66 69 65 64 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 64 69 61 | A.new.simplified.packet.flow.dia |
| 4e3a0 | 67 72 61 6d 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 2c 20 77 68 69 63 68 20 73 68 6f 77 73 20 | gram.is.shown.next,.which.shows. |
| 4e3c0 | 74 68 65 20 70 61 74 68 20 66 6f 72 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 65 64 20 74 6f | the.path.for.traffic.destined.to |
| 4e3e0 | 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2c 20 61 6e 64 20 74 72 61 66 66 69 63 20 | .the.router.itself,.and.traffic. |
| 4e400 | 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 28 73 74 61 72 74 69 6e | generated.by.the.router.(startin |
| 4e420 | 67 20 66 72 6f 6d 20 63 69 72 63 6c 65 20 6e 75 6d 62 65 72 20 36 29 3a 00 46 6f 72 20 74 72 61 | g.from.circle.number.6):.For.tra |
| 4e440 | 66 66 69 63 20 74 6f 77 61 72 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2c 20 | ffic.towards.the.router.itself,. |
| 4e460 | 74 68 65 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 69 6e 70 75 74 2a 2a 2c 20 77 68 69 | the.base.chain.is.**input**,.whi |
| 4e480 | 6c 65 20 74 72 61 66 66 69 63 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 | le.traffic.originated.by.the.rou |
| 4e4a0 | 74 65 72 20 68 61 73 20 74 68 65 20 62 61 73 65 20 63 68 61 69 6e 20 2a 2a 6f 75 74 70 75 74 2a | ter.has.the.base.chain.**output* |
| 4e4c0 | 2a 2e 20 41 20 6e 65 77 20 73 69 6d 70 6c 69 66 69 65 64 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 | *..A.new.simplified.packet.flow. |
| 4e4e0 | 64 69 61 67 72 61 6d 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 2c 20 77 68 69 63 68 20 73 68 6f | diagram.is.shown.next,.which.sho |
| 4e500 | 77 73 20 74 68 65 20 70 61 74 68 20 66 6f 72 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 65 64 | ws.the.path.for.traffic.destined |
| 4e520 | 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2c 20 61 6e 64 20 74 72 61 66 66 | .to.the.router.itself,.and.traff |
| 4e540 | 69 63 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 28 73 74 61 72 | ic.generated.by.the.router.(star |
| 4e560 | 74 69 6e 67 20 66 72 6f 6d 20 63 69 72 63 6c 65 20 6e 75 6d 62 65 72 20 36 29 3a 00 46 6f 72 20 | ting.from.circle.number.6):.For. |
| 4e580 | 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 69 73 20 72 65 63 65 69 76 | transit.traffic,.which.is.receiv |
| 4e5a0 | 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 61 6e 64 20 66 6f 72 77 61 72 64 65 64 2c 20 | ed.by.the.router.and.forwarded,. |
| 4e5c0 | 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 2a 2a | base.chain.is.**forward.filter** |
| 4e5e0 | 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 66 | :.``set.firewall.[ipv4.|.ipv6].f |
| 4e600 | 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 46 6f 72 20 74 72 61 6e 73 69 74 20 | orward.filter....``.For.transit. |
| 4e620 | 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 | traffic,.which.is.received.by.th |
| 4e640 | 65 20 72 6f 75 74 65 72 20 61 6e 64 20 66 6f 72 77 61 72 64 65 64 2c 20 62 61 73 65 20 63 68 61 | e.router.and.forwarded,.base.cha |
| 4e660 | 69 6e 20 69 73 20 2a 2a 66 6f 72 77 61 72 64 2a 2a 2e 20 41 20 73 69 6d 70 6c 69 66 69 65 64 20 | in.is.**forward**..A.simplified. |
| 4e680 | 70 61 63 6b 65 74 20 66 6c 6f 77 20 64 69 61 67 72 61 6d 20 66 6f 72 20 74 72 61 6e 73 69 74 20 | packet.flow.diagram.for.transit. |
| 4e6a0 | 74 72 61 66 66 69 63 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 3a 00 46 6f 72 20 74 72 61 6e 73 | traffic.is.shown.next:.For.trans |
| 4e6c0 | 69 74 20 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 | it.traffic,.which.is.received.by |
| 4e6e0 | 20 74 68 65 20 72 6f 75 74 65 72 20 61 6e 64 20 66 6f 72 77 61 72 64 65 64 2c 20 74 68 65 20 62 | .the.router.and.forwarded,.the.b |
| 4e700 | 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 66 6f 72 77 61 72 64 2a 2a 2e 20 41 20 73 69 6d 70 | ase.chain.is.**forward**..A.simp |
| 4e720 | 6c 69 66 69 65 64 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 64 69 61 67 72 61 6d 20 66 6f 72 20 74 | lified.packet.flow.diagram.for.t |
| 4e740 | 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 3a 00 46 6f | ransit.traffic.is.shown.next:.Fo |
| 4e760 | 72 20 77 65 62 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 70 72 6f 76 69 64 69 6e 67 20 69 6e 66 6f | r.web.application.providing.info |
| 4e780 | 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 74 68 65 69 72 20 73 74 61 74 65 20 48 54 54 50 20 68 | rmation.about.their.state.HTTP.h |
| 4e7a0 | 65 61 6c 74 68 20 63 68 65 63 6b 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 64 65 74 65 | ealth.checks.can.be.used.to.dete |
| 4e7c0 | 72 6d 69 6e 65 20 74 68 65 69 72 20 61 76 61 69 6c 61 62 69 6c 69 74 79 2e 00 46 6f 72 6d 61 6c | rmine.their.availability..Formal |
| 4e7e0 | 6c 79 2c 20 61 20 76 69 72 74 75 61 6c 20 6c 69 6e 6b 20 6c 6f 6f 6b 73 20 6c 69 6b 65 20 61 20 | ly,.a.virtual.link.looks.like.a. |
| 4e800 | 70 6f 69 6e 74 2d 74 6f 2d 70 6f 69 6e 74 20 6e 65 74 77 6f 72 6b 20 63 6f 6e 6e 65 63 74 69 6e | point-to-point.network.connectin |
| 4e820 | 67 20 74 77 6f 20 41 42 52 20 66 72 6f 6d 20 6f 6e 65 20 61 72 65 61 20 6f 6e 65 20 6f 66 20 77 | g.two.ABR.from.one.area.one.of.w |
| 4e840 | 68 69 63 68 20 70 68 79 73 69 63 61 6c 6c 79 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 61 20 62 | hich.physically.connected.to.a.b |
| 4e860 | 61 63 6b 62 6f 6e 65 20 61 72 65 61 2e 20 54 68 69 73 20 70 73 65 75 64 6f 2d 6e 65 74 77 6f 72 | ackbone.area..This.pseudo-networ |
| 4e880 | 6b 20 69 73 20 63 6f 6e 73 69 64 65 72 65 64 20 74 6f 20 62 65 6c 6f 6e 67 20 74 6f 20 61 20 62 | k.is.considered.to.belong.to.a.b |
| 4e8a0 | 61 63 6b 62 6f 6e 65 20 61 72 65 61 2e 00 46 6f 72 77 61 72 64 20 69 6e 63 6f 6d 69 6e 67 20 44 | ackbone.area..Forward.incoming.D |
| 4e8c0 | 4e 53 20 71 75 65 72 69 65 73 20 74 6f 20 74 68 65 20 44 4e 53 20 73 65 72 76 65 72 73 20 63 6f | NS.queries.to.the.DNS.servers.co |
| 4e8e0 | 6e 66 69 67 75 72 65 64 20 75 6e 64 65 72 20 74 68 65 20 60 60 73 79 73 74 65 6d 20 6e 61 6d 65 | nfigured.under.the.``system.name |
| 4e900 | 2d 73 65 72 76 65 72 60 60 20 6e 6f 64 65 73 2e 00 46 6f 72 77 61 72 64 20 6d 65 74 68 6f 64 00 | -server``.nodes..Forward.method. |
| 4e920 | 46 6f 72 77 61 72 64 20 72 65 63 65 69 76 65 64 20 71 75 65 72 69 65 73 20 66 6f 72 20 61 20 70 | Forward.received.queries.for.a.p |
| 4e940 | 61 72 74 69 63 75 6c 61 72 20 64 6f 6d 61 69 6e 20 28 73 70 65 63 69 66 69 65 64 20 76 69 61 20 | articular.domain.(specified.via. |
| 4e960 | 60 64 6f 6d 61 69 6e 2d 6e 61 6d 65 60 29 20 74 6f 20 61 20 67 69 76 65 6e 20 6e 61 6d 65 73 65 | `domain-name`).to.a.given.namese |
| 4e980 | 72 76 65 72 2e 20 4d 75 6c 74 69 70 6c 65 20 6e 61 6d 65 73 65 72 76 65 72 73 20 63 61 6e 20 62 | rver..Multiple.nameservers.can.b |
| 4e9a0 | 65 20 73 70 65 63 69 66 69 65 64 2e 20 59 6f 75 20 63 61 6e 20 75 73 65 20 74 68 69 73 20 66 65 | e.specified..You.can.use.this.fe |
| 4e9c0 | 61 74 75 72 65 20 66 6f 72 20 61 20 44 4e 53 20 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 63 6f | ature.for.a.DNS.split-horizon.co |
| 4e9e0 | 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 46 6f 75 72 20 70 6f 6c 69 63 69 65 73 20 66 6f 72 20 72 | nfiguration..Four.policies.for.r |
| 4ea00 | 65 66 6f 72 77 61 72 64 69 6e 67 20 44 48 43 50 20 70 61 63 6b 65 74 73 20 65 78 69 73 74 3a 00 | eforwarding.DHCP.packets.exist:. |
| 4ea20 | 46 72 6f 6d 20 3a 72 66 63 3a 60 31 39 33 30 60 3a 00 46 72 6f 6d 20 61 20 73 65 63 75 72 69 74 | From.:rfc:`1930`:.From.a.securit |
| 4ea40 | 79 20 70 65 72 73 70 65 63 74 69 76 65 2c 20 69 74 20 69 73 20 6e 6f 74 20 72 65 63 6f 6d 6d 65 | y.perspective,.it.is.not.recomme |
| 4ea60 | 6e 64 65 64 20 74 6f 20 6c 65 74 20 61 20 74 68 69 72 64 20 70 61 72 74 79 20 63 72 65 61 74 65 | nded.to.let.a.third.party.create |
| 4ea80 | 20 61 6e 64 20 73 68 61 72 65 20 74 68 65 20 70 72 69 76 61 74 65 20 6b 65 79 20 66 6f 72 20 61 | .and.share.the.private.key.for.a |
| 4eaa0 | 20 73 65 63 75 72 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 59 6f 75 20 73 68 6f 75 6c 64 20 | .secured.connection..You.should. |
| 4eac0 | 63 72 65 61 74 65 20 74 68 65 20 70 72 69 76 61 74 65 20 70 6f 72 74 69 6f 6e 20 6f 6e 20 79 6f | create.the.private.portion.on.yo |
| 4eae0 | 75 72 20 6f 77 6e 20 61 6e 64 20 6f 6e 6c 79 20 68 61 6e 64 20 6f 75 74 20 74 68 65 20 70 75 62 | ur.own.and.only.hand.out.the.pub |
| 4eb00 | 6c 69 63 20 6b 65 79 2e 20 50 6c 65 61 73 65 20 6b 65 65 70 20 74 68 69 73 20 69 6e 20 6d 69 6e | lic.key..Please.keep.this.in.min |
| 4eb20 | 64 20 77 68 65 6e 20 75 73 69 6e 67 20 74 68 69 73 20 63 6f 6e 76 65 6e 69 65 6e 63 65 20 66 65 | d.when.using.this.convenience.fe |
| 4eb40 | 61 74 75 72 65 2e 00 46 72 6f 6d 20 6d 61 69 6e 20 73 74 72 75 63 74 75 72 65 20 64 65 66 69 6e | ature..From.main.structure.defin |
| 4eb60 | 65 64 20 69 6e 20 3a 64 6f 63 3a 60 46 69 72 65 77 61 6c 6c 20 4f 76 65 72 76 69 65 77 3c 2f 63 | ed.in.:doc:`Firewall.Overview</c |
| 4eb80 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 69 6e 64 65 78 3e 60 20 69 6e | onfiguration/firewall/index>`.in |
| 4eba0 | 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 79 6f 75 20 63 61 6e 20 66 69 6e 64 20 64 65 74 61 69 | .this.section.you.can.find.detai |
| 4ebc0 | 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 6c 79 20 66 6f 72 20 74 68 65 20 6e 65 78 | led.information.only.for.the.nex |
| 4ebe0 | 74 20 70 61 72 74 20 6f 66 20 74 68 65 20 67 65 6e 65 72 61 6c 20 73 74 72 75 63 74 75 72 65 3a | t.part.of.the.general.structure: |
| 4ec00 | 00 46 72 6f 6d 20 74 68 65 20 6d 61 69 6e 20 73 74 72 75 63 74 75 72 65 20 64 65 66 69 6e 65 64 | .From.the.main.structure.defined |
| 4ec20 | 20 69 6e 20 3a 64 6f 63 3a 60 46 69 72 65 77 61 6c 6c 20 4f 76 65 72 76 69 65 77 3c 2f 63 6f 6e | .in.:doc:`Firewall.Overview</con |
| 4ec40 | 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 69 6e 64 65 78 3e 60 20 69 6e 20 74 | figuration/firewall/index>`.in.t |
| 4ec60 | 68 69 73 20 73 65 63 74 69 6f 6e 20 79 6f 75 20 63 61 6e 20 66 69 6e 64 20 64 65 74 61 69 6c 65 | his.section.you.can.find.detaile |
| 4ec80 | 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 6c 79 20 66 6f 72 20 74 68 65 20 6e 65 78 74 20 | d.information.only.for.the.next. |
| 4eca0 | 70 61 72 74 20 6f 66 20 74 68 65 20 67 65 6e 65 72 61 6c 20 73 74 72 75 63 74 75 72 65 3a 00 46 | part.of.the.general.structure:.F |
| 4ecc0 | 75 72 74 68 65 72 20 52 65 61 64 69 6e 67 00 46 77 6d 61 72 6b 00 47 45 4e 45 56 45 00 47 45 4e | urther.Reading.Fwmark.GENEVE.GEN |
| 4ece0 | 45 56 45 20 69 73 20 64 65 73 69 67 6e 65 64 20 74 6f 20 73 75 70 70 6f 72 74 20 6e 65 74 77 6f | EVE.is.designed.to.support.netwo |
| 4ed00 | 72 6b 20 76 69 72 74 75 61 6c 69 7a 61 74 69 6f 6e 20 75 73 65 20 63 61 73 65 73 2c 20 77 68 65 | rk.virtualization.use.cases,.whe |
| 4ed20 | 72 65 20 74 75 6e 6e 65 6c 73 20 61 72 65 20 74 79 70 69 63 61 6c 6c 79 20 65 73 74 61 62 6c 69 | re.tunnels.are.typically.establi |
| 4ed40 | 73 68 65 64 20 74 6f 20 61 63 74 20 61 73 20 61 20 62 61 63 6b 70 6c 61 6e 65 20 62 65 74 77 65 | shed.to.act.as.a.backplane.betwe |
| 4ed60 | 65 6e 20 74 68 65 20 76 69 72 74 75 61 6c 20 73 77 69 74 63 68 65 73 20 72 65 73 69 64 69 6e 67 | en.the.virtual.switches.residing |
| 4ed80 | 20 69 6e 20 68 79 70 65 72 76 69 73 6f 72 73 2c 20 70 68 79 73 69 63 61 6c 20 73 77 69 74 63 68 | .in.hypervisors,.physical.switch |
| 4eda0 | 65 73 2c 20 6f 72 20 6d 69 64 64 6c 65 62 6f 78 65 73 20 6f 72 20 6f 74 68 65 72 20 61 70 70 6c | es,.or.middleboxes.or.other.appl |
| 4edc0 | 69 61 6e 63 65 73 2e 20 41 6e 20 61 72 62 69 74 72 61 72 79 20 49 50 20 6e 65 74 77 6f 72 6b 20 | iances..An.arbitrary.IP.network. |
| 4ede0 | 63 61 6e 20 62 65 20 75 73 65 64 20 61 73 20 61 6e 20 75 6e 64 65 72 6c 61 79 20 61 6c 74 68 6f | can.be.used.as.an.underlay.altho |
| 4ee00 | 75 67 68 20 43 6c 6f 73 20 6e 65 74 77 6f 72 6b 73 20 2d 20 41 20 74 65 63 68 6e 69 71 75 65 20 | ugh.Clos.networks.-.A.technique. |
| 4ee20 | 66 6f 72 20 63 6f 6d 70 6f 73 69 6e 67 20 6e 65 74 77 6f 72 6b 20 66 61 62 72 69 63 73 20 6c 61 | for.composing.network.fabrics.la |
| 4ee40 | 72 67 65 72 20 74 68 61 6e 20 61 20 73 69 6e 67 6c 65 20 73 77 69 74 63 68 20 77 68 69 6c 65 20 | rger.than.a.single.switch.while. |
| 4ee60 | 6d 61 69 6e 74 61 69 6e 69 6e 67 20 6e 6f 6e 2d 62 6c 6f 63 6b 69 6e 67 20 62 61 6e 64 77 69 64 | maintaining.non-blocking.bandwid |
| 4ee80 | 74 68 20 61 63 72 6f 73 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 70 6f 69 6e 74 73 2e 20 45 43 4d | th.across.connection.points..ECM |
| 4eea0 | 50 20 69 73 20 75 73 65 64 20 74 6f 20 64 69 76 69 64 65 20 74 72 61 66 66 69 63 20 61 63 72 6f | P.is.used.to.divide.traffic.acro |
| 4eec0 | 73 73 20 74 68 65 20 6d 75 6c 74 69 70 6c 65 20 6c 69 6e 6b 73 20 61 6e 64 20 73 77 69 74 63 68 | ss.the.multiple.links.and.switch |
| 4eee0 | 65 73 20 74 68 61 74 20 63 6f 6e 73 74 69 74 75 74 65 20 74 68 65 20 66 61 62 72 69 63 2e 20 53 | es.that.constitute.the.fabric..S |
| 4ef00 | 6f 6d 65 74 69 6d 65 73 20 74 65 72 6d 65 64 20 22 6c 65 61 66 20 61 6e 64 20 73 70 69 6e 65 22 | ometimes.termed."leaf.and.spine" |
| 4ef20 | 20 6f 72 20 22 66 61 74 20 74 72 65 65 22 20 74 6f 70 6f 6c 6f 67 69 65 73 2e 00 47 45 4e 45 56 | .or."fat.tree".topologies..GENEV |
| 4ef40 | 45 20 69 73 20 64 65 73 69 67 6e 65 64 20 74 6f 20 73 75 70 70 6f 72 74 20 6e 65 74 77 6f 72 6b | E.is.designed.to.support.network |
| 4ef60 | 20 76 69 72 74 75 61 6c 69 7a 61 74 69 6f 6e 20 75 73 65 20 63 61 73 65 73 2c 20 77 68 65 72 65 | .virtualization.use.cases,.where |
| 4ef80 | 20 74 75 6e 6e 65 6c 73 20 61 72 65 20 74 79 70 69 63 61 6c 6c 79 20 65 73 74 61 62 6c 69 73 68 | .tunnels.are.typically.establish |
| 4efa0 | 65 64 20 74 6f 20 61 63 74 20 61 73 20 61 20 62 61 63 6b 70 6c 61 6e 65 20 62 65 74 77 65 65 6e | ed.to.act.as.a.backplane.between |
| 4efc0 | 20 74 68 65 20 76 69 72 74 75 61 6c 20 73 77 69 74 63 68 65 73 20 72 65 73 69 64 69 6e 67 20 69 | .the.virtual.switches.residing.i |
| 4efe0 | 6e 20 68 79 70 65 72 76 69 73 6f 72 73 2c 20 70 68 79 73 69 63 61 6c 20 73 77 69 74 63 68 65 73 | n.hypervisors,.physical.switches |
| 4f000 | 2c 20 6f 72 20 6d 69 64 64 6c 65 62 6f 78 65 73 20 6f 72 20 6f 74 68 65 72 20 61 70 70 6c 69 61 | ,.or.middleboxes.or.other.applia |
| 4f020 | 6e 63 65 73 2e 20 41 6e 20 61 72 62 69 74 72 61 72 79 20 49 50 20 6e 65 74 77 6f 72 6b 20 63 61 | nces..An.arbitrary.IP.network.ca |
| 4f040 | 6e 20 62 65 20 75 73 65 64 20 61 73 20 61 6e 20 75 6e 64 65 72 6c 61 79 20 74 68 72 6f 75 67 68 | n.be.used.as.an.underlay.through |
| 4f060 | 20 43 6c 6f 73 20 6e 65 74 77 6f 72 6b 73 20 2d 20 41 20 74 65 63 68 6e 69 71 75 65 20 66 6f 72 | .Clos.networks.-.A.technique.for |
| 4f080 | 20 63 6f 6d 70 6f 73 69 6e 67 20 6e 65 74 77 6f 72 6b 20 66 61 62 72 69 63 73 20 6c 61 72 67 65 | .composing.network.fabrics.large |
| 4f0a0 | 72 20 74 68 61 6e 20 61 20 73 69 6e 67 6c 65 20 73 77 69 74 63 68 20 77 68 69 6c 65 20 6d 61 69 | r.than.a.single.switch.while.mai |
| 4f0c0 | 6e 74 61 69 6e 69 6e 67 20 6e 6f 6e 2d 62 6c 6f 63 6b 69 6e 67 20 62 61 6e 64 77 69 64 74 68 20 | ntaining.non-blocking.bandwidth. |
| 4f0e0 | 61 63 72 6f 73 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 70 6f 69 6e 74 73 2e 20 45 43 4d 50 20 69 | across.connection.points..ECMP.i |
| 4f100 | 73 20 75 73 65 64 20 74 6f 20 64 69 76 69 64 65 20 74 72 61 66 66 69 63 20 61 63 72 6f 73 73 20 | s.used.to.divide.traffic.across. |
| 4f120 | 74 68 65 20 6d 75 6c 74 69 70 6c 65 20 6c 69 6e 6b 73 20 61 6e 64 20 73 77 69 74 63 68 65 73 20 | the.multiple.links.and.switches. |
| 4f140 | 74 68 61 74 20 63 6f 6e 73 74 69 74 75 74 65 20 74 68 65 20 66 61 62 72 69 63 2e 20 53 6f 6d 65 | that.constitute.the.fabric..Some |
| 4f160 | 74 69 6d 65 73 20 74 65 72 6d 65 64 20 22 6c 65 61 66 20 61 6e 64 20 73 70 69 6e 65 22 20 6f 72 | times.termed."leaf.and.spine".or |
| 4f180 | 20 22 66 61 74 20 74 72 65 65 22 20 74 6f 70 6f 6c 6f 67 69 65 73 2e 00 47 45 4e 45 56 45 20 6f | ."fat.tree".topologies..GENEVE.o |
| 4f1a0 | 70 74 69 6f 6e 73 00 47 52 45 20 69 73 20 61 20 77 65 6c 6c 20 64 65 66 69 6e 65 64 20 73 74 61 | ptions.GRE.is.a.well.defined.sta |
| 4f1c0 | 6e 64 61 72 64 20 74 68 61 74 20 69 73 20 63 6f 6d 6d 6f 6e 20 69 6e 20 6d 6f 73 74 20 6e 65 74 | ndard.that.is.common.in.most.net |
| 4f1e0 | 77 6f 72 6b 73 2e 20 57 68 69 6c 65 20 6e 6f 74 20 69 6e 68 65 72 65 6e 74 6c 79 20 64 69 66 66 | works..While.not.inherently.diff |
| 4f200 | 69 63 75 6c 74 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 72 65 20 61 72 65 20 61 20 63 | icult.to.configure.there.are.a.c |
| 4f220 | 6f 75 70 6c 65 20 6f 66 20 74 68 69 6e 67 73 20 74 6f 20 6b 65 65 70 20 69 6e 20 6d 69 6e 64 20 | ouple.of.things.to.keep.in.mind. |
| 4f240 | 74 6f 20 6d 61 6b 65 20 73 75 72 65 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 | to.make.sure.the.configuration.p |
| 4f260 | 65 72 66 6f 72 6d 73 20 61 73 20 65 78 70 65 63 74 65 64 2e 20 41 20 63 6f 6d 6d 6f 6e 20 63 61 | erforms.as.expected..A.common.ca |
| 4f280 | 75 73 65 20 66 6f 72 20 47 52 45 20 74 75 6e 6e 65 6c 73 20 74 6f 20 66 61 69 6c 20 74 6f 20 63 | use.for.GRE.tunnels.to.fail.to.c |
| 4f2a0 | 6f 6d 65 20 75 70 20 63 6f 72 72 65 63 74 6c 79 20 69 6e 63 6c 75 64 65 20 41 43 4c 20 6f 72 20 | ome.up.correctly.include.ACL.or. |
| 4f2c0 | 46 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 74 68 61 74 20 61 72 65 | Firewall.configurations.that.are |
| 4f2e0 | 20 64 69 73 63 61 72 64 69 6e 67 20 49 50 20 70 72 6f 74 6f 63 6f 6c 20 34 37 20 6f 72 20 62 6c | .discarding.IP.protocol.47.or.bl |
| 4f300 | 6f 63 6b 69 6e 67 20 79 6f 75 72 20 73 6f 75 72 63 65 2f 64 65 73 74 69 6e 61 74 69 6f 6e 20 74 | ocking.your.source/destination.t |
| 4f320 | 72 61 66 66 69 63 2e 00 47 52 45 20 69 73 20 61 6c 73 6f 20 74 68 65 20 6f 6e 6c 79 20 63 6c 61 | raffic..GRE.is.also.the.only.cla |
| 4f340 | 73 73 69 63 20 70 72 6f 74 6f 63 6f 6c 20 74 68 61 74 20 61 6c 6c 6f 77 73 20 63 72 65 61 74 69 | ssic.protocol.that.allows.creati |
| 4f360 | 6e 67 20 6d 75 6c 74 69 70 6c 65 20 74 75 6e 6e 65 6c 73 20 77 69 74 68 20 74 68 65 20 73 61 6d | ng.multiple.tunnels.with.the.sam |
| 4f380 | 65 20 73 6f 75 72 63 65 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 64 75 65 20 74 6f 20 | e.source.and.destination.due.to. |
| 4f3a0 | 69 74 73 20 73 75 70 70 6f 72 74 20 66 6f 72 20 74 75 6e 6e 65 6c 20 6b 65 79 73 2e 20 44 65 73 | its.support.for.tunnel.keys..Des |
| 4f3c0 | 70 69 74 65 20 69 74 73 20 6e 61 6d 65 2c 20 74 68 69 73 20 66 65 61 74 75 72 65 20 68 61 73 20 | pite.its.name,.this.feature.has. |
| 4f3e0 | 6e 6f 74 68 69 6e 67 20 74 6f 20 64 6f 20 77 69 74 68 20 73 65 63 75 72 69 74 79 3a 20 69 74 27 | nothing.to.do.with.security:.it' |
| 4f400 | 73 20 73 69 6d 70 6c 79 20 61 6e 20 69 64 65 6e 74 69 66 69 65 72 20 74 68 61 74 20 61 6c 6c 6f | s.simply.an.identifier.that.allo |
| 4f420 | 77 73 20 72 6f 75 74 65 72 73 20 74 6f 20 74 65 6c 6c 20 6f 6e 65 20 74 75 6e 6e 65 6c 20 66 72 | ws.routers.to.tell.one.tunnel.fr |
| 4f440 | 6f 6d 20 61 6e 6f 74 68 65 72 2e 00 47 52 45 20 69 73 20 6f 66 74 65 6e 20 73 65 65 6e 20 61 73 | om.another..GRE.is.often.seen.as |
| 4f460 | 20 61 20 6f 6e 65 20 73 69 7a 65 20 66 69 74 73 20 61 6c 6c 20 73 6f 6c 75 74 69 6f 6e 20 77 68 | .a.one.size.fits.all.solution.wh |
| 4f480 | 65 6e 20 69 74 20 63 6f 6d 65 73 20 74 6f 20 63 6c 61 73 73 69 63 20 49 50 20 74 75 6e 6e 65 6c | en.it.comes.to.classic.IP.tunnel |
| 4f4a0 | 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 2c 20 61 6e 64 20 66 6f 72 20 61 20 67 6f 6f 64 20 72 65 | ing.protocols,.and.for.a.good.re |
| 4f4c0 | 61 73 6f 6e 2e 20 48 6f 77 65 76 65 72 2c 20 74 68 65 72 65 20 61 72 65 20 6d 6f 72 65 20 73 70 | ason..However,.there.are.more.sp |
| 4f4e0 | 65 63 69 61 6c 69 7a 65 64 20 6f 70 74 69 6f 6e 73 2c 20 61 6e 64 20 6d 61 6e 79 20 6f 66 20 74 | ecialized.options,.and.many.of.t |
| 4f500 | 68 65 6d 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 20 62 79 20 56 79 4f 53 2e 20 54 68 65 72 65 | hem.are.supported.by.VyOS..There |
| 4f520 | 20 61 72 65 20 61 6c 73 6f 20 72 61 74 68 65 72 20 6f 62 73 63 75 72 65 20 47 52 45 20 6f 70 74 | .are.also.rather.obscure.GRE.opt |
| 4f540 | 69 6f 6e 73 20 74 68 61 74 20 63 61 6e 20 62 65 20 75 73 65 66 75 6c 2e 00 47 52 45 2f 49 50 49 | ions.that.can.be.useful..GRE/IPI |
| 4f560 | 50 2f 53 49 54 20 61 6e 64 20 49 50 73 65 63 20 61 72 65 20 77 69 64 65 6c 79 20 61 63 63 65 70 | P/SIT.and.IPsec.are.widely.accep |
| 4f580 | 74 65 64 20 73 74 61 6e 64 61 72 64 73 2c 20 77 68 69 63 68 20 6d 61 6b 65 20 74 68 69 73 20 73 | ted.standards,.which.make.this.s |
| 4f5a0 | 63 68 65 6d 65 20 65 61 73 79 20 74 6f 20 69 6d 70 6c 65 6d 65 6e 74 20 62 65 74 77 65 65 6e 20 | cheme.easy.to.implement.between. |
| 4f5c0 | 56 79 4f 53 20 61 6e 64 20 76 69 72 74 75 61 6c 6c 79 20 61 6e 79 20 6f 74 68 65 72 20 72 6f 75 | VyOS.and.virtually.any.other.rou |
| 4f5e0 | 74 65 72 2e 00 47 52 45 54 41 50 00 47 65 6e 65 61 72 61 74 65 20 61 20 6e 65 77 20 4f 70 65 6e | ter..GRETAP.Genearate.a.new.Open |
| 4f600 | 56 50 4e 20 73 68 61 72 65 64 20 73 65 63 72 65 74 2e 20 54 68 65 20 67 65 6e 65 72 61 74 65 64 | VPN.shared.secret..The.generated |
| 4f620 | 20 73 65 63 72 65 64 20 69 73 20 74 68 65 20 6f 75 74 70 75 74 20 74 6f 20 74 68 65 20 63 6f 6e | .secred.is.the.output.to.the.con |
| 4f640 | 73 6f 6c 65 2e 00 47 65 6e 65 61 72 61 74 65 20 61 20 6e 65 77 20 4f 70 65 6e 56 50 4e 20 73 68 | sole..Genearate.a.new.OpenVPN.sh |
| 4f660 | 61 72 65 64 20 73 65 63 72 65 74 2e 20 54 68 65 20 67 65 6e 65 72 61 74 65 64 20 73 65 63 72 65 | ared.secret..The.generated.secre |
| 4f680 | 74 20 69 73 20 74 68 65 20 6f 75 74 70 75 74 20 74 6f 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 00 | t.is.the.output.to.the.console.. |
| 4f6a0 | 47 65 6e 65 72 61 6c 00 47 65 6e 65 72 61 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 47 65 | General.General.Configuration.Ge |
| 4f6c0 | 6e 65 72 61 6c 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 72 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 | neral.commands.for.firewall.conf |
| 4f6e0 | 69 67 75 72 61 74 69 6f 6e 2c 20 63 6f 75 6e 74 65 72 20 61 6e 64 20 73 74 61 74 69 73 63 69 74 | iguration,.counter.and.statiscit |
| 4f700 | 73 3a 00 47 65 6e 65 72 61 6c 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 72 20 66 69 72 65 77 61 6c 6c | s:.General.commands.for.firewall |
| 4f720 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 63 6f 75 6e 74 65 72 20 61 6e 64 20 73 74 61 74 | .configuration,.counter.and.stat |
| 4f740 | 69 73 74 69 63 73 3a 00 47 65 6e 65 72 61 6c 20 65 78 61 6d 70 6c 65 00 47 65 6e 65 72 61 74 65 | istics:.General.example.Generate |
| 4f760 | 20 3a 61 62 62 72 3a 60 4d 4b 41 20 28 4d 41 43 73 65 63 20 4b 65 79 20 41 67 72 65 65 6d 65 6e | .:abbr:`MKA.(MACsec.Key.Agreemen |
| 4f780 | 74 20 70 72 6f 74 6f 63 6f 6c 29 60 20 43 41 4b 20 6b 65 79 20 31 32 38 20 6f 72 20 32 35 36 20 | t.protocol)`.CAK.key.128.or.256. |
| 4f7a0 | 62 69 74 73 2e 00 47 65 6e 65 72 61 74 65 20 3a 61 62 62 72 3a 60 4d 4b 41 20 28 4d 41 43 73 65 | bits..Generate.:abbr:`MKA.(MACse |
| 4f7c0 | 63 20 4b 65 79 20 41 67 72 65 65 6d 65 6e 74 20 70 72 6f 74 6f 63 6f 6c 29 60 20 43 41 4b 20 6b | c.Key.Agreement.protocol)`.CAK.k |
| 4f7e0 | 65 79 2e 00 47 65 6e 65 72 61 74 65 20 4b 65 79 70 61 69 72 00 47 65 6e 65 72 61 74 65 20 61 20 | ey..Generate.Keypair.Generate.a. |
| 4f800 | 57 69 72 65 47 75 61 72 64 20 70 72 65 2d 73 68 61 72 65 64 20 73 65 63 72 65 74 20 75 73 65 64 | WireGuard.pre-shared.secret.used |
| 4f820 | 20 66 6f 72 20 70 65 65 72 73 20 74 6f 20 63 6f 6d 6d 75 6e 69 63 61 74 65 2e 00 47 65 6e 65 72 | .for.peers.to.communicate..Gener |
| 4f840 | 61 74 65 20 61 20 6e 65 77 20 4f 70 65 6e 56 50 4e 20 73 68 61 72 65 64 20 73 65 63 72 65 74 2e | ate.a.new.OpenVPN.shared.secret. |
| 4f860 | 20 54 68 65 20 67 65 6e 65 72 61 74 65 64 20 73 65 63 72 65 74 20 69 73 20 74 68 65 20 6f 75 74 | .The.generated.secret.is.the.out |
| 4f880 | 70 75 74 20 74 6f 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 00 47 65 6e 65 72 61 74 65 20 61 20 6e | put.to.the.console..Generate.a.n |
| 4f8a0 | 65 77 20 57 69 72 65 47 75 61 72 64 20 70 75 62 6c 69 63 2f 70 72 69 76 61 74 65 20 6b 65 79 20 | ew.WireGuard.public/private.key. |
| 4f8c0 | 70 6f 72 74 69 6f 6e 20 61 6e 64 20 6f 75 74 70 75 74 20 74 68 65 20 72 65 73 75 6c 74 20 74 6f | portion.and.output.the.result.to |
| 4f8e0 | 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 00 47 65 6e 65 72 61 74 65 20 61 20 6e 65 77 20 73 65 74 | .the.console..Generate.a.new.set |
| 4f900 | 20 6f 66 20 3a 61 62 62 72 3a 60 44 48 20 28 44 69 66 66 69 65 2d 48 65 6c 6c 6d 61 6e 29 60 20 | .of.:abbr:`DH.(Diffie-Hellman)`. |
| 4f920 | 70 61 72 61 6d 65 74 65 72 73 2e 20 54 68 65 20 6b 65 79 20 73 69 7a 65 20 69 73 20 72 65 71 75 | parameters..The.key.size.is.requ |
| 4f940 | 65 73 74 65 64 20 62 79 20 74 68 65 20 43 4c 49 20 61 6e 64 20 64 65 66 61 75 6c 74 73 20 74 6f | ested.by.the.CLI.and.defaults.to |
| 4f960 | 20 32 30 34 38 20 62 69 74 2e 00 47 65 6e 65 72 61 74 65 20 74 68 65 20 63 6f 6e 66 69 67 75 72 | .2048.bit..Generate.the.configur |
| 4f980 | 61 74 69 6f 6e 20 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 20 74 6f 20 61 64 64 20 61 20 70 75 62 | ation.mode.commands.to.add.a.pub |
| 4f9a0 | 6c 69 63 20 6b 65 79 20 66 6f 72 20 3a 72 65 66 3a 60 73 73 68 5f 6b 65 79 5f 62 61 73 65 64 5f | lic.key.for.:ref:`ssh_key_based_ |
| 4f9c0 | 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 60 2e 20 60 60 3c 6c 6f 63 61 74 69 6f 6e 3e 60 60 20 | authentication`..``<location>``. |
| 4f9e0 | 63 61 6e 20 62 65 20 61 20 6c 6f 63 61 6c 20 70 61 74 68 20 6f 72 20 61 20 55 52 4c 20 70 6f 69 | can.be.a.local.path.or.a.URL.poi |
| 4fa00 | 6e 74 69 6e 67 20 61 74 20 61 20 72 65 6d 6f 74 65 20 66 69 6c 65 2e 00 47 65 6e 65 72 61 74 65 | nting.at.a.remote.file..Generate |
| 4fa20 | 73 20 61 20 6b 65 79 70 61 69 72 2c 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 | s.a.keypair,.which.includes.the. |
| 4fa40 | 70 75 62 6c 69 63 20 61 6e 64 20 70 72 69 76 61 74 65 20 70 61 72 74 73 2c 20 61 6e 64 20 62 75 | public.and.private.parts,.and.bu |
| 4fa60 | 69 6c 64 20 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 69 | ild.a.configuration.command.to.i |
| 4fa80 | 6e 73 74 61 6c 6c 20 74 68 69 73 20 6b 65 79 20 74 6f 20 60 60 69 6e 74 65 72 66 61 63 65 60 60 | nstall.this.key.to.``interface`` |
| 4faa0 | 2e 00 47 65 6e 65 72 61 74 65 73 20 61 20 6b 65 79 70 61 69 72 2c 20 77 68 69 63 68 20 69 6e 63 | ..Generates.a.keypair,.which.inc |
| 4fac0 | 6c 75 64 65 73 20 74 68 65 20 70 75 62 6c 69 63 20 61 6e 64 20 70 72 69 76 61 74 65 20 70 61 72 | ludes.the.public.and.private.par |
| 4fae0 | 74 73 2c 20 61 6e 64 20 62 75 69 6c 64 73 20 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 | ts,.and.builds.a.configuration.c |
| 4fb00 | 6f 6d 6d 61 6e 64 20 74 6f 20 69 6e 73 74 61 6c 6c 20 74 68 69 73 20 6b 65 79 20 74 6f 20 60 60 | ommand.to.install.this.key.to.`` |
| 4fb20 | 69 6e 74 65 72 66 61 63 65 60 60 2e 00 47 65 6e 65 72 61 74 65 73 20 74 68 65 20 6b 65 79 70 61 | interface``..Generates.the.keypa |
| 4fb40 | 69 72 2c 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 70 75 62 6c 69 63 20 61 6e | ir,.which.includes.the.public.an |
| 4fb60 | 64 20 70 72 69 76 61 74 65 20 70 61 72 74 73 2e 20 54 68 65 20 6b 65 79 20 69 73 20 6e 6f 74 20 | d.private.parts..The.key.is.not. |
| 4fb80 | 73 74 6f 72 65 64 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 20 2d 20 6f 6e 6c 79 20 61 20 6b 65 | stored.on.the.system.-.only.a.ke |
| 4fba0 | 79 70 61 69 72 20 69 73 20 67 65 6e 65 72 61 74 65 64 2e 00 47 65 6e 65 72 69 63 20 52 6f 75 74 | ypair.is.generated..Generic.Rout |
| 4fbc0 | 69 6e 67 20 45 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 28 47 52 45 29 00 47 65 6e 65 76 65 20 48 | ing.Encapsulation.(GRE).Geneve.H |
| 4fbe0 | 65 61 64 65 72 3a 00 47 65 74 20 61 20 6c 69 73 74 20 6f 66 20 61 6c 6c 20 77 69 72 65 67 75 61 | eader:.Get.a.list.of.all.wiregua |
| 4fc00 | 72 64 20 69 6e 74 65 72 66 61 63 65 73 00 47 65 74 20 61 6e 20 6f 76 65 72 76 69 65 77 20 6f 76 | rd.interfaces.Get.an.overview.ov |
| 4fc20 | 65 72 20 74 68 65 20 65 6e 63 72 79 70 74 69 6f 6e 20 63 6f 75 6e 74 65 72 73 2e 00 47 65 74 20 | er.the.encryption.counters..Get. |
| 4fc40 | 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 4c 4c 44 50 20 | detailed.information.about.LLDP. |
| 4fc60 | 6e 65 69 67 68 62 6f 72 73 2e 00 47 65 74 20 74 68 65 20 44 48 43 50 76 36 2d 50 44 20 70 72 65 | neighbors..Get.the.DHCPv6-PD.pre |
| 4fc80 | 66 69 78 65 73 20 66 72 6f 6d 20 62 6f 74 68 20 72 6f 75 74 65 72 73 3a 00 47 65 74 74 69 6e 67 | fixes.from.both.routers:.Getting |
| 4fca0 | 20 73 74 61 72 74 65 64 00 47 69 76 65 6e 20 74 68 65 20 66 61 63 74 20 74 68 61 74 20 6f 70 65 | .started.Given.the.fact.that.ope |
| 4fcc0 | 6e 20 44 4e 53 20 72 65 63 75 72 73 6f 72 73 20 63 6f 75 6c 64 20 62 65 20 75 73 65 64 20 6f 6e | n.DNS.recursors.could.be.used.on |
| 4fce0 | 20 44 44 6f 53 20 61 6d 70 6c 69 66 69 63 61 74 69 6f 6e 20 61 74 74 61 63 6b 73 2c 20 79 6f 75 | .DDoS.amplification.attacks,.you |
| 4fd00 | 20 6d 75 73 74 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6e 65 74 77 6f 72 6b 73 20 77 68 69 | .must.configure.the.networks.whi |
| 4fd20 | 63 68 20 61 72 65 20 61 6c 6c 6f 77 65 64 20 74 6f 20 75 73 65 20 74 68 69 73 20 72 65 63 75 72 | ch.are.allowed.to.use.this.recur |
| 4fd40 | 73 6f 72 2e 20 41 20 6e 65 74 77 6f 72 6b 20 6f 66 20 60 60 30 2e 30 2e 30 2e 30 2f 30 60 60 20 | sor..A.network.of.``0.0.0.0/0``. |
| 4fd60 | 6f 72 20 60 60 3a 3a 2f 30 60 60 20 77 6f 75 6c 64 20 61 6c 6c 6f 77 20 61 6c 6c 20 49 50 76 34 | or.``::/0``.would.allow.all.IPv4 |
| 4fd80 | 20 61 6e 64 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 73 20 74 6f 20 71 75 65 72 79 20 74 68 69 73 | .and.IPv6.networks.to.query.this |
| 4fda0 | 20 73 65 72 76 65 72 2e 20 54 68 69 73 20 69 73 20 67 65 6e 65 72 61 6c 6c 79 20 61 20 62 61 64 | .server..This.is.generally.a.bad |
| 4fdc0 | 20 69 64 65 61 2e 00 47 69 76 65 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 | .idea..Given.the.following.examp |
| 4fde0 | 6c 65 20 77 65 20 68 61 76 65 20 6f 6e 65 20 56 79 4f 53 20 72 6f 75 74 65 72 20 61 63 74 69 6e | le.we.have.one.VyOS.router.actin |
| 4fe00 | 67 20 61 73 20 4f 70 65 6e 56 50 4e 20 73 65 72 76 65 72 20 61 6e 64 20 61 6e 6f 74 68 65 72 20 | g.as.OpenVPN.server.and.another. |
| 4fe20 | 56 79 4f 53 20 72 6f 75 74 65 72 20 61 63 74 69 6e 67 20 61 73 20 4f 70 65 6e 56 50 4e 20 63 6c | VyOS.router.acting.as.OpenVPN.cl |
| 4fe40 | 69 65 6e 74 2e 20 54 68 65 20 73 65 72 76 65 72 20 61 6c 73 6f 20 70 75 73 68 65 73 20 61 20 73 | ient..The.server.also.pushes.a.s |
| 4fe60 | 74 61 74 69 63 20 63 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 74 68 65 20 4f | tatic.client.IP.address.to.the.O |
| 4fe80 | 70 65 6e 56 50 4e 20 63 6c 69 65 6e 74 2e 20 52 65 6d 65 6d 62 65 72 2c 20 63 6c 69 65 6e 74 73 | penVPN.client..Remember,.clients |
| 4fea0 | 20 61 72 65 20 69 64 65 6e 74 69 66 69 65 64 20 75 73 69 6e 67 20 74 68 65 69 72 20 43 4e 20 61 | .are.identified.using.their.CN.a |
| 4fec0 | 74 74 72 69 62 75 74 65 20 69 6e 20 74 68 65 20 53 53 4c 20 63 65 72 74 69 66 69 63 61 74 65 2e | ttribute.in.the.SSL.certificate. |
| 4fee0 | 00 47 69 76 65 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 20 77 65 20 | .Given.the.following.example.we. |
| 4ff00 | 68 61 76 65 20 6f 6e 65 20 56 79 4f 53 20 72 6f 75 74 65 72 20 61 63 74 69 6e 67 20 61 73 20 61 | have.one.VyOS.router.acting.as.a |
| 4ff20 | 6e 20 4f 70 65 6e 56 50 4e 20 73 65 72 76 65 72 20 61 6e 64 20 61 6e 6f 74 68 65 72 20 56 79 4f | n.OpenVPN.server.and.another.VyO |
| 4ff40 | 53 20 72 6f 75 74 65 72 20 61 63 74 69 6e 67 20 61 73 20 61 6e 20 4f 70 65 6e 56 50 4e 20 63 6c | S.router.acting.as.an.OpenVPN.cl |
| 4ff60 | 69 65 6e 74 2e 20 54 68 65 20 73 65 72 76 65 72 20 61 6c 73 6f 20 70 75 73 68 65 73 20 61 20 73 | ient..The.server.also.pushes.a.s |
| 4ff80 | 74 61 74 69 63 20 63 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 74 68 65 20 4f | tatic.client.IP.address.to.the.O |
| 4ffa0 | 70 65 6e 56 50 4e 20 63 6c 69 65 6e 74 2e 20 52 65 6d 65 6d 62 65 72 2c 20 63 6c 69 65 6e 74 73 | penVPN.client..Remember,.clients |
| 4ffc0 | 20 61 72 65 20 69 64 65 6e 74 69 66 69 65 64 20 75 73 69 6e 67 20 74 68 65 69 72 20 43 4e 20 61 | .are.identified.using.their.CN.a |
| 4ffe0 | 74 74 72 69 62 75 74 65 20 69 6e 20 74 68 65 20 53 53 4c 20 63 65 72 74 69 66 69 63 61 74 65 2e | ttribute.in.the.SSL.certificate. |
| 50000 | 00 47 6c 6f 61 62 61 6c 00 47 6c 6f 62 61 6c 00 47 6c 6f 62 61 6c 20 41 64 76 61 6e 63 65 64 20 | .Gloabal.Global.Global.Advanced. |
| 50020 | 6f 70 74 69 6f 6e 73 00 47 6c 6f 62 61 6c 20 4f 70 74 69 6f 6e 73 00 47 6c 6f 62 61 6c 20 4f 70 | options.Global.Options.Global.Op |
| 50040 | 74 69 6f 6e 73 20 46 69 72 65 77 61 6c 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 47 6c 6f | tions.Firewall.Configuration.Glo |
| 50060 | 62 61 6c 20 6f 70 74 69 6f 6e 73 00 47 6c 6f 62 61 6c 20 70 61 72 61 6d 65 74 65 72 73 00 47 6c | bal.options.Global.parameters.Gl |
| 50080 | 6f 62 61 6c 20 73 65 74 74 69 6e 67 73 00 47 72 61 63 65 66 75 6c 20 52 65 73 74 61 72 74 00 47 | obal.settings.Graceful.Restart.G |
| 500a0 | 72 61 70 68 51 4c 00 47 72 61 74 75 69 74 6f 75 73 20 41 52 50 00 47 72 6f 75 70 73 00 47 72 6f | raphQL.Gratuitous.ARP.Groups.Gro |
| 500c0 | 75 70 73 20 6e 65 65 64 20 74 6f 20 68 61 76 65 20 75 6e 69 71 75 65 20 6e 61 6d 65 73 2e 20 45 | ups.need.to.have.unique.names..E |
| 500e0 | 76 65 6e 20 74 68 6f 75 67 68 20 73 6f 6d 65 20 63 6f 6e 74 61 69 6e 20 49 50 76 34 20 61 64 64 | ven.though.some.contain.IPv4.add |
| 50100 | 72 65 73 73 65 73 20 61 6e 64 20 6f 74 68 65 72 73 20 63 6f 6e 74 61 69 6e 20 49 50 76 36 20 61 | resses.and.others.contain.IPv6.a |
| 50120 | 64 64 72 65 73 73 65 73 2c 20 74 68 65 79 20 73 74 69 6c 6c 20 6e 65 65 64 20 74 6f 20 68 61 76 | ddresses,.they.still.need.to.hav |
| 50140 | 65 20 75 6e 69 71 75 65 20 6e 61 6d 65 73 2c 20 73 6f 20 79 6f 75 20 6d 61 79 20 77 61 6e 74 20 | e.unique.names,.so.you.may.want. |
| 50160 | 74 6f 20 61 70 70 65 6e 64 20 22 2d 76 34 22 20 6f 72 20 22 2d 76 36 22 20 74 6f 20 79 6f 75 72 | to.append."-v4".or."-v6".to.your |
| 50180 | 20 67 72 6f 75 70 20 6e 61 6d 65 73 2e 00 48 45 20 28 48 69 67 68 20 45 66 66 69 63 69 65 6e 63 | .group.names..HE.(High.Efficienc |
| 501a0 | 79 29 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 28 38 30 32 2e 31 31 61 78 29 00 48 45 20 6f 70 | y).capabilities.(802.11ax).HE.op |
| 501c0 | 65 72 61 74 69 6e 67 20 63 68 61 6e 6e 65 6c 20 63 65 6e 74 65 72 20 66 72 65 71 75 65 6e 63 79 | erating.channel.center.frequency |
| 501e0 | 20 2d 20 63 65 6e 74 65 72 20 66 72 65 71 20 31 20 28 66 6f 72 20 75 73 65 20 77 69 74 68 20 38 | .-.center.freq.1.(for.use.with.8 |
| 50200 | 30 2c 20 38 30 2b 38 30 20 61 6e 64 20 31 36 30 20 6d 6f 64 65 73 29 00 48 45 20 6f 70 65 72 61 | 0,.80+80.and.160.modes).HE.opera |
| 50220 | 74 69 6e 67 20 63 68 61 6e 6e 65 6c 20 63 65 6e 74 65 72 20 66 72 65 71 75 65 6e 63 79 20 2d 20 | ting.channel.center.frequency.-. |
| 50240 | 63 65 6e 74 65 72 20 66 72 65 71 20 32 20 28 66 6f 72 20 75 73 65 20 77 69 74 68 20 74 68 65 20 | center.freq.2.(for.use.with.the. |
| 50260 | 38 30 2b 38 30 20 6d 6f 64 65 29 00 48 50 20 4c 54 34 31 32 30 20 53 6e 61 70 64 72 61 67 6f 6e | 80+80.mode).HP.LT4120.Snapdragon |
| 50280 | 20 58 35 20 4c 54 45 00 48 51 27 73 20 72 6f 75 74 65 72 20 72 65 71 75 69 72 65 73 20 74 68 65 | .X5.LTE.HQ's.router.requires.the |
| 502a0 | 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 74 65 70 73 20 74 6f 20 67 65 6e 65 72 61 74 65 20 63 72 79 | .following.steps.to.generate.cry |
| 502c0 | 70 74 6f 20 6d 61 74 65 72 69 61 6c 73 20 66 6f 72 20 74 68 65 20 42 72 61 6e 63 68 20 31 3a 00 | pto.materials.for.the.Branch.1:. |
| 502e0 | 48 54 20 28 48 69 67 68 20 54 68 72 6f 75 67 68 70 75 74 29 20 63 61 70 61 62 69 6c 69 74 69 65 | HT.(High.Throughput).capabilitie |
| 50300 | 73 20 28 38 30 32 2e 31 31 6e 29 00 48 54 54 50 20 41 50 49 00 48 54 54 50 20 62 61 73 65 64 20 | s.(802.11n).HTTP.API.HTTP.based. |
| 50320 | 73 65 72 76 69 63 65 73 00 48 54 54 50 20 62 61 73 69 63 20 61 75 74 68 65 6e 74 69 63 61 74 69 | services.HTTP.basic.authenticati |
| 50340 | 6f 6e 20 75 73 65 72 6e 61 6d 65 00 48 54 54 50 20 62 61 73 69 63 20 61 75 74 68 65 6e 74 69 63 | on.username.HTTP.basic.authentic |
| 50360 | 61 74 69 6f 6e 2e 00 48 54 54 50 20 63 68 65 63 6b 73 00 48 54 54 50 20 63 6c 69 65 6e 74 00 48 | ation..HTTP.checks.HTTP.client.H |
| 50380 | 54 54 50 20 68 65 61 6c 74 68 20 63 68 65 63 6b 00 48 54 54 50 2d 41 50 49 00 48 61 69 72 70 69 | TTP.health.check.HTTP-API.Hairpi |
| 503a0 | 6e 20 4e 41 54 2f 4e 41 54 20 52 65 66 6c 65 63 74 69 6f 6e 00 48 61 6e 64 20 6f 75 74 20 70 72 | n.NAT/NAT.Reflection.Hand.out.pr |
| 503c0 | 65 66 69 78 65 73 20 6f 66 20 73 69 7a 65 20 60 3c 6c 65 6e 67 74 68 3e 60 20 69 6e 20 62 69 74 | efixes.of.size.`<length>`.in.bit |
| 503e0 | 73 20 66 72 6f 6d 20 60 3c 70 64 2d 70 72 65 66 69 78 3e 60 20 74 6f 20 63 6c 69 65 6e 74 73 20 | s.from.`<pd-prefix>`.to.clients. |
| 50400 | 69 6e 20 73 75 62 6e 65 74 20 60 3c 70 72 65 66 69 78 3e 60 20 77 68 65 6e 20 74 68 65 20 72 65 | in.subnet.`<prefix>`.when.the.re |
| 50420 | 71 75 65 73 74 20 66 6f 72 20 70 72 65 66 69 78 20 64 65 6c 65 67 61 74 69 6f 6e 2e 00 48 61 6e | quest.for.prefix.delegation..Han |
| 50440 | 64 20 6f 75 74 20 70 72 65 66 69 78 65 73 20 6f 66 20 73 69 7a 65 20 60 3c 6c 65 6e 67 74 68 3e | d.out.prefixes.of.size.`<length> |
| 50460 | 60 20 74 6f 20 63 6c 69 65 6e 74 73 20 69 6e 20 73 75 62 6e 65 74 20 60 3c 70 72 65 66 69 78 3e | `.to.clients.in.subnet.`<prefix> |
| 50480 | 60 20 77 68 65 6e 20 74 68 65 79 20 72 65 71 75 65 73 74 20 66 6f 72 20 70 72 65 66 69 78 20 64 | `.when.they.request.for.prefix.d |
| 504a0 | 65 6c 65 67 61 74 69 6f 6e 2e 00 48 61 6e 64 6c 69 6e 67 20 61 6e 64 20 6d 6f 6e 69 74 6f 72 69 | elegation..Handling.and.monitori |
| 504c0 | 6e 67 00 48 61 70 72 6f 78 79 00 48 61 70 72 6f 78 79 20 69 73 20 61 20 62 61 6c 61 6e 63 65 72 | ng.Haproxy.Haproxy.is.a.balancer |
| 504e0 | 20 61 6e 64 20 70 72 6f 78 79 20 73 65 72 76 65 72 20 74 68 61 74 20 70 72 6f 76 69 64 65 73 20 | .and.proxy.server.that.provides. |
| 50500 | 68 69 67 68 2d 61 76 61 69 6c 61 62 69 6c 69 74 79 2c 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e | high-availability,.load.balancin |
| 50520 | 67 20 61 6e 64 20 70 72 6f 78 79 69 6e 67 20 66 6f 72 20 54 43 50 20 28 6c 65 76 65 6c 20 34 29 | g.and.proxying.for.TCP.(level.4) |
| 50540 | 20 61 6e 64 20 48 54 54 50 2d 62 61 73 65 64 20 28 6c 65 76 65 6c 20 37 29 20 61 70 70 6c 69 63 | .and.HTTP-based.(level.7).applic |
| 50560 | 61 74 69 6f 6e 73 2e 00 48 61 72 64 77 61 72 65 20 54 69 6d 65 73 74 61 6d 70 69 6e 67 20 6f 66 | ations..Hardware.Timestamping.of |
| 50580 | 20 4e 54 50 20 50 61 63 6b 65 74 73 00 48 61 72 64 77 61 72 65 20 74 69 6d 65 73 74 61 6d 70 69 | .NTP.Packets.Hardware.timestampi |
| 505a0 | 6e 67 20 64 65 70 65 6e 64 73 20 6f 6e 20 4e 49 43 20 73 75 70 70 6f 72 74 2e 20 53 6f 6d 65 20 | ng.depends.on.NIC.support..Some. |
| 505c0 | 4e 49 43 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 61 70 70 6c 79 20 | NICs.can.be.configured.to.apply. |
| 505e0 | 74 69 6d 65 73 74 61 6d 70 73 20 74 6f 20 61 6e 79 20 69 6e 63 6f 6d 69 6e 67 20 70 61 63 6b 65 | timestamps.to.any.incoming.packe |
| 50600 | 74 2c 20 77 68 69 6c 65 20 6f 74 68 65 72 73 20 6f 6e 6c 79 20 73 75 70 70 6f 72 74 20 61 70 70 | t,.while.others.only.support.app |
| 50620 | 6c 79 69 6e 67 20 74 69 6d 65 73 74 61 6d 70 73 20 74 6f 20 73 70 65 63 69 66 69 63 20 70 72 6f | lying.timestamps.to.specific.pro |
| 50640 | 74 6f 63 6f 6c 73 20 28 65 2e 67 2e 20 50 54 50 29 2e 00 48 61 76 69 6e 67 20 63 6f 6e 74 72 6f | tocols.(e.g..PTP)..Having.contro |
| 50660 | 6c 20 6f 76 65 72 20 74 68 65 20 6d 61 74 63 68 69 6e 67 20 6f 66 20 49 4e 56 41 4c 49 44 20 73 | l.over.the.matching.of.INVALID.s |
| 50680 | 74 61 74 65 20 74 72 61 66 66 69 63 2c 20 65 2e 67 2e 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 | tate.traffic,.e.g..the.ability.t |
| 506a0 | 6f 20 73 65 6c 65 63 74 69 76 65 6c 79 20 6c 6f 67 2c 20 69 73 20 61 6e 20 69 6d 70 6f 72 74 61 | o.selectively.log,.is.an.importa |
| 506c0 | 6e 74 20 74 72 6f 75 62 6c 65 73 68 6f 6f 74 69 6e 67 20 74 6f 6f 6c 20 66 6f 72 20 6f 62 73 65 | nt.troubleshooting.tool.for.obse |
| 506e0 | 72 76 69 6e 67 20 62 72 6f 6b 65 6e 20 70 72 6f 74 6f 63 6f 6c 20 62 65 68 61 76 69 6f 72 2e 20 | rving.broken.protocol.behavior.. |
| 50700 | 46 6f 72 20 74 68 69 73 20 72 65 61 73 6f 6e 2c 20 56 79 4f 53 20 64 6f 65 73 20 6e 6f 74 20 67 | For.this.reason,.VyOS.does.not.g |
| 50720 | 6c 6f 62 61 6c 6c 79 20 64 72 6f 70 20 69 6e 76 61 6c 69 64 20 73 74 61 74 65 20 74 72 61 66 66 | lobally.drop.invalid.state.traff |
| 50740 | 69 63 2c 20 69 6e 73 74 65 61 64 20 61 6c 6c 6f 77 69 6e 67 20 74 68 65 20 6f 70 65 72 61 74 6f | ic,.instead.allowing.the.operato |
| 50760 | 72 20 74 6f 20 6d 61 6b 65 20 74 68 65 20 64 65 74 65 72 6d 69 6e 61 74 69 6f 6e 20 6f 6e 20 68 | r.to.make.the.determination.on.h |
| 50780 | 6f 77 20 74 68 65 20 74 72 61 66 66 69 63 20 69 73 20 68 61 6e 64 6c 65 64 2e 00 48 65 61 6c 74 | ow.the.traffic.is.handled..Healt |
| 507a0 | 68 20 63 68 65 63 6b 20 73 63 72 69 70 74 73 00 48 65 61 6c 74 68 20 63 68 65 63 6b 73 00 48 65 | h.check.scripts.Health.checks.He |
| 507c0 | 61 6c 74 68 20 63 68 65 63 6b 73 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 | alth.checks.can.also.be.configur |
| 507e0 | 65 64 20 66 6f 72 20 54 43 50 20 6d 6f 64 65 20 62 61 63 6b 65 6e 64 73 2e 20 59 6f 75 20 63 61 | ed.for.TCP.mode.backends..You.ca |
| 50800 | 6e 20 63 6f 6e 66 69 67 75 72 65 20 70 72 6f 74 6f 63 6f 6c 20 61 77 61 72 65 20 63 68 65 63 6b | n.configure.protocol.aware.check |
| 50820 | 73 20 66 6f 72 20 61 20 72 61 6e 67 65 20 6f 66 20 4c 61 79 65 72 20 37 20 70 72 6f 74 6f 63 6f | s.for.a.range.of.Layer.7.protoco |
| 50840 | 6c 73 3a 00 48 65 61 6c 74 68 2d 63 68 65 63 6b 00 48 65 72 65 20 61 72 65 20 73 6f 6d 65 20 65 | ls:.Health-check.Here.are.some.e |
| 50860 | 78 61 6d 70 6c 65 73 20 66 6f 72 20 61 70 70 6c 79 69 6e 67 20 61 20 72 75 6c 65 2d 73 65 74 20 | xamples.for.applying.a.rule-set. |
| 50880 | 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 00 48 65 72 65 20 69 73 20 61 20 73 65 63 6f 6e 64 | to.an.interface.Here.is.a.second |
| 508a0 | 20 65 78 61 6d 70 6c 65 20 6f 66 20 61 20 64 75 61 6c 2d 73 74 61 63 6b 20 74 75 6e 6e 65 6c 20 | .example.of.a.dual-stack.tunnel. |
| 508c0 | 6f 76 65 72 20 49 50 76 36 20 62 65 74 77 65 65 6e 20 61 20 56 79 4f 53 20 72 6f 75 74 65 72 20 | over.IPv6.between.a.VyOS.router. |
| 508e0 | 61 6e 64 20 61 20 4c 69 6e 75 78 20 68 6f 73 74 20 75 73 69 6e 67 20 73 79 73 74 65 6d 64 2d 6e | and.a.Linux.host.using.systemd-n |
| 50900 | 65 74 77 6f 72 6b 64 2e 00 48 65 72 65 20 69 73 20 61 6e 20 65 78 61 6d 70 6c 65 20 3a 61 62 62 | etworkd..Here.is.an.example.:abb |
| 50920 | 72 3a 60 4e 45 54 20 28 4e 65 74 77 6f 72 6b 20 45 6e 74 69 74 79 20 54 69 74 6c 65 29 60 20 76 | r:`NET.(Network.Entity.Title)`.v |
| 50940 | 61 6c 75 65 3a 00 48 65 72 65 20 69 73 20 61 6e 20 65 78 61 6d 70 6c 65 20 6f 66 20 73 75 63 68 | alue:.Here.is.an.example.of.such |
| 50960 | 20 63 6f 6d 6d 61 6e 64 3a 00 48 65 72 65 20 69 73 20 61 6e 20 65 78 61 6d 70 6c 65 20 72 6f 75 | .command:.Here.is.an.example.rou |
| 50980 | 74 65 2d 6d 61 70 20 74 6f 20 61 70 70 6c 79 20 74 6f 20 72 6f 75 74 65 73 20 6c 65 61 72 6e 65 | te-map.to.apply.to.routes.learne |
| 509a0 | 64 20 61 74 20 69 6d 70 6f 72 74 2e 20 49 6e 20 74 68 69 73 20 66 69 6c 74 65 72 20 77 65 20 72 | d.at.import..In.this.filter.we.r |
| 509c0 | 65 6a 65 63 74 20 70 72 65 66 69 78 65 73 20 77 69 74 68 20 74 68 65 20 73 74 61 74 65 20 60 69 | eject.prefixes.with.the.state.`i |
| 509e0 | 6e 76 61 6c 69 64 60 2c 20 61 6e 64 20 73 65 74 20 61 20 68 69 67 68 65 72 20 60 6c 6f 63 61 6c | nvalid`,.and.set.a.higher.`local |
| 50a00 | 2d 70 72 65 66 65 72 65 6e 63 65 60 20 69 66 20 74 68 65 20 70 72 65 66 69 78 20 69 73 20 52 50 | -preference`.if.the.prefix.is.RP |
| 50a20 | 4b 49 20 60 76 61 6c 69 64 60 20 72 61 74 68 65 72 20 74 68 61 6e 20 6d 65 72 65 6c 79 20 60 6e | KI.`valid`.rather.than.merely.`n |
| 50a40 | 6f 74 66 6f 75 6e 64 60 2e 00 48 65 72 65 20 69 73 20 61 6e 20 65 78 61 6d 70 6c 65 20 77 65 72 | otfound`..Here.is.an.example.wer |
| 50a60 | 65 20 6d 75 6c 74 69 70 6c 65 20 67 72 6f 75 70 73 20 61 72 65 20 63 72 65 61 74 65 64 3a 00 48 | e.multiple.groups.are.created:.H |
| 50a80 | 65 72 65 20 69 73 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 73 20 73 68 6f 77 69 6e | ere.is.the.routing.tables.showin |
| 50aa0 | 67 20 74 68 65 20 4d 50 4c 53 20 73 65 67 6d 65 6e 74 20 72 6f 75 74 69 6e 67 20 6c 61 62 65 6c | g.the.MPLS.segment.routing.label |
| 50ac0 | 20 6f 70 65 72 61 74 69 6f 6e 73 3a 00 48 65 72 65 20 77 65 20 70 72 6f 76 69 64 65 20 74 77 6f | .operations:.Here.we.provide.two |
| 50ae0 | 20 65 78 61 6d 70 6c 65 73 20 6f 6e 20 68 6f 77 20 74 6f 20 61 70 70 6c 79 20 4e 41 54 20 4c 6f | .examples.on.how.to.apply.NAT.Lo |
| 50b00 | 61 64 20 42 61 6c 61 6e 63 65 2e 00 48 65 72 65 27 73 20 61 6e 20 65 78 74 72 61 63 74 20 6f 66 | ad.Balance..Here's.an.extract.of |
| 50b20 | 20 61 20 73 69 6d 70 6c 65 20 31 2d 74 6f 2d 31 20 4e 41 54 20 63 6f 6e 66 69 67 75 72 61 74 69 | .a.simple.1-to-1.NAT.configurati |
| 50b40 | 6f 6e 20 77 69 74 68 20 6f 6e 65 20 69 6e 74 65 72 6e 61 6c 20 61 6e 64 20 6f 6e 65 20 65 78 74 | on.with.one.internal.and.one.ext |
| 50b60 | 65 72 6e 61 6c 20 69 6e 74 65 72 66 61 63 65 3a 00 48 65 72 65 27 73 20 6f 6e 65 20 65 78 61 6d | ernal.interface:.Here's.one.exam |
| 50b80 | 70 6c 65 20 6f 66 20 61 20 6e 65 74 77 6f 72 6b 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 66 6f 72 | ple.of.a.network.environment.for |
| 50ba0 | 20 61 6e 20 41 53 50 2e 20 54 68 65 20 41 53 50 20 72 65 71 75 65 73 74 73 20 74 68 61 74 20 61 | .an.ASP..The.ASP.requests.that.a |
| 50bc0 | 6c 6c 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 66 72 6f 6d 20 74 68 69 73 20 63 6f 6d 70 61 6e 79 | ll.connections.from.this.company |
| 50be0 | 20 73 68 6f 75 6c 64 20 63 6f 6d 65 20 66 72 6f 6d 20 31 37 32 2e 32 39 2e 34 31 2e 38 39 20 2d | .should.come.from.172.29.41.89.- |
| 50c00 | 20 61 6e 20 61 64 64 72 65 73 73 20 74 68 61 74 20 69 73 20 61 73 73 69 67 6e 65 64 20 62 79 20 | .an.address.that.is.assigned.by. |
| 50c20 | 74 68 65 20 41 53 50 20 61 6e 64 20 6e 6f 74 20 69 6e 20 75 73 65 20 61 74 20 74 68 65 20 63 75 | the.ASP.and.not.in.use.at.the.cu |
| 50c40 | 73 74 6f 6d 65 72 20 73 69 74 65 2e 00 48 65 72 65 27 73 20 74 68 65 20 49 50 20 72 6f 75 74 65 | stomer.site..Here's.the.IP.route |
| 50c60 | 73 20 74 68 61 74 20 61 72 65 20 70 6f 70 75 6c 61 74 65 64 2e 20 4a 75 73 74 20 74 68 65 20 6c | s.that.are.populated..Just.the.l |
| 50c80 | 6f 6f 70 62 61 63 6b 3a 00 48 65 72 65 27 73 20 74 68 65 20 49 50 20 72 6f 75 74 65 73 20 74 68 | oopback:.Here's.the.IP.routes.th |
| 50ca0 | 61 74 20 61 72 65 20 70 6f 70 75 6c 61 74 65 64 3a 00 48 65 72 65 27 73 20 74 68 65 20 6e 65 69 | at.are.populated:.Here's.the.nei |
| 50cc0 | 67 68 62 6f 72 73 20 75 70 3a 00 48 65 72 65 27 73 20 74 68 65 20 72 6f 75 74 65 73 3a 00 48 65 | ghbors.up:.Here's.the.routes:.He |
| 50ce0 | 77 6c 65 74 74 2d 50 61 63 6b 61 72 64 20 63 61 6c 6c 20 69 74 20 53 6f 75 72 63 65 2d 50 6f 72 | wlett-Packard.call.it.Source-Por |
| 50d00 | 74 20 66 69 6c 74 65 72 69 6e 67 20 6f 72 20 70 6f 72 74 2d 69 73 6f 6c 61 74 69 6f 6e 00 48 69 | t.filtering.or.port-isolation.Hi |
| 50d20 | 67 68 00 48 69 67 68 20 41 76 61 69 6c 61 62 69 6c 69 74 79 00 48 69 67 68 20 61 76 61 69 6c 61 | gh.High.Availability.High.availa |
| 50d40 | 62 69 6c 69 74 79 00 48 6f 6d 65 20 55 73 65 72 73 00 48 6f 70 20 63 6f 75 6e 74 20 66 69 65 6c | bility.Home.Users.Hop.count.fiel |
| 50d60 | 64 20 6f 66 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 20 52 41 20 70 61 63 6b 65 74 73 00 48 6f 73 | d.of.the.outgoing.RA.packets.Hos |
| 50d80 | 74 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 00 48 6f 73 74 20 6e 61 6d 65 00 48 6f 73 74 20 73 70 65 | t.Information.Host.name.Host.spe |
| 50da0 | 63 69 66 69 63 20 6d 61 70 70 69 6e 67 20 73 68 61 6c 6c 20 62 65 20 6e 61 6d 65 64 20 60 60 63 | cific.mapping.shall.be.named.``c |
| 50dc0 | 6c 69 65 6e 74 31 60 60 00 48 6f 73 74 6e 61 6d 65 00 48 6f 77 20 61 6e 20 49 50 20 61 64 64 72 | lient1``.Hostname.How.an.IP.addr |
| 50de0 | 65 73 73 20 69 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 | ess.is.assigned.to.an.interface. |
| 50e00 | 69 6e 20 3a 72 65 66 3a 60 65 74 68 65 72 6e 65 74 2d 69 6e 74 65 72 66 61 63 65 60 2e 20 54 68 | in.:ref:`ethernet-interface`..Th |
| 50e20 | 69 73 20 73 65 63 74 69 6f 6e 20 73 68 6f 77 73 20 68 6f 77 20 74 6f 20 73 74 61 74 69 63 61 6c | is.section.shows.how.to.statical |
| 50e40 | 6c 79 20 6d 61 70 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 61 20 68 6f 73 74 6e 61 | ly.map.an.IP.address.to.a.hostna |
| 50e60 | 6d 65 20 66 6f 72 20 6c 6f 63 61 6c 20 28 6d 65 61 6e 69 6e 67 20 6f 6e 20 74 68 69 73 20 56 79 | me.for.local.(meaning.on.this.Vy |
| 50e80 | 4f 53 20 69 6e 73 74 61 6e 63 65 29 20 6e 61 6d 65 20 72 65 73 6f 6c 75 74 69 6f 6e 2e 20 54 68 | OS.instance).name.resolution..Th |
| 50ea0 | 69 73 20 69 73 20 74 68 65 20 56 79 4f 53 20 65 71 75 69 76 61 6c 65 6e 74 20 74 6f 20 60 2f 65 | is.is.the.VyOS.equivalent.to.`/e |
| 50ec0 | 74 63 2f 68 6f 73 74 73 60 20 66 69 6c 65 20 65 6e 74 72 69 65 73 2e 00 48 6f 77 20 74 6f 20 63 | tc/hosts`.file.entries..How.to.c |
| 50ee0 | 6f 6e 66 69 67 75 72 65 20 45 76 65 6e 74 20 48 61 6e 64 6c 65 72 00 48 6f 77 20 74 6f 20 6d 61 | onfigure.Event.Handler.How.to.ma |
| 50f00 | 6b 65 20 69 74 20 77 6f 72 6b 00 48 6f 77 65 76 65 72 2c 20 6e 6f 77 20 79 6f 75 20 6e 65 65 64 | ke.it.work.However,.now.you.need |
| 50f20 | 20 74 6f 20 6d 61 6b 65 20 49 50 73 65 63 20 77 6f 72 6b 20 77 69 74 68 20 64 79 6e 61 6d 69 63 | .to.make.IPsec.work.with.dynamic |
| 50f40 | 20 61 64 64 72 65 73 73 20 6f 6e 20 6f 6e 65 20 73 69 64 65 2e 20 54 68 65 20 74 72 69 63 6b 79 | .address.on.one.side..The.tricky |
| 50f60 | 20 70 61 72 74 20 69 73 20 74 68 61 74 20 70 72 65 2d 73 68 61 72 65 64 20 73 65 63 72 65 74 20 | .part.is.that.pre-shared.secret. |
| 50f80 | 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 64 6f 65 73 6e 27 74 20 77 6f 72 6b 20 77 69 74 68 | authentication.doesn't.work.with |
| 50fa0 | 20 64 79 6e 61 6d 69 63 20 61 64 64 72 65 73 73 2c 20 73 6f 20 77 65 27 6c 6c 20 68 61 76 65 20 | .dynamic.address,.so.we'll.have. |
| 50fc0 | 74 6f 20 75 73 65 20 52 53 41 20 6b 65 79 73 2e 00 48 6f 77 65 76 65 72 2c 20 73 69 6e 63 65 20 | to.use.RSA.keys..However,.since. |
| 50fe0 | 56 79 4f 53 20 31 2e 34 2c 20 69 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 76 65 72 69 | VyOS.1.4,.it.is.possible.to.veri |
| 51000 | 66 79 20 73 65 6c 66 2d 73 69 67 6e 65 64 20 63 65 72 74 69 66 69 63 61 74 65 73 20 75 73 69 6e | fy.self-signed.certificates.usin |
| 51020 | 67 20 63 65 72 74 69 66 69 63 61 74 65 20 66 69 6e 67 65 72 70 72 69 6e 74 73 2e 00 48 6f 77 65 | g.certificate.fingerprints..Howe |
| 51040 | 76 65 72 2c 20 73 70 6c 69 74 2d 74 75 6e 6e 65 6c 69 6e 67 20 63 61 6e 20 62 65 20 61 63 68 69 | ver,.split-tunneling.can.be.achi |
| 51060 | 65 76 65 64 20 62 79 20 73 70 65 63 69 66 79 69 6e 67 20 74 68 65 20 72 65 6d 6f 74 65 20 73 75 | eved.by.specifying.the.remote.su |
| 51080 | 62 6e 65 74 73 2e 20 54 68 69 73 20 65 6e 73 75 72 65 73 20 74 68 61 74 20 6f 6e 6c 79 20 74 72 | bnets..This.ensures.that.only.tr |
| 510a0 | 61 66 66 69 63 20 64 65 73 74 69 6e 65 64 20 66 6f 72 20 74 68 65 20 72 65 6d 6f 74 65 20 73 69 | affic.destined.for.the.remote.si |
| 510c0 | 74 65 20 69 73 20 73 65 6e 74 20 6f 76 65 72 20 74 68 65 20 74 75 6e 6e 65 6c 2e 20 41 6c 6c 20 | te.is.sent.over.the.tunnel..All. |
| 510e0 | 6f 74 68 65 72 20 74 72 61 66 66 69 63 20 69 73 20 75 6e 61 66 66 65 63 74 65 64 2e 00 48 75 61 | other.traffic.is.unaffected..Hua |
| 51100 | 77 65 69 20 4d 45 39 30 39 73 2d 31 32 30 20 6d 69 6e 69 50 43 49 65 20 63 61 72 64 20 28 4c 54 | wei.ME909s-120.miniPCIe.card.(LT |
| 51120 | 45 29 00 48 75 61 77 65 69 20 4d 45 39 30 39 75 2d 35 32 31 20 6d 69 6e 69 50 43 49 65 20 63 61 | E).Huawei.ME909u-521.miniPCIe.ca |
| 51140 | 72 64 20 28 4c 54 45 29 00 48 75 62 00 49 45 45 45 20 38 30 32 2e 31 58 2f 4d 41 43 73 65 63 20 | rd.(LTE).Hub.IEEE.802.1X/MACsec. |
| 51160 | 70 72 65 2d 73 68 61 72 65 64 20 6b 65 79 20 6d 6f 64 65 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 | pre-shared.key.mode..This.allows |
| 51180 | 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 4d 41 43 73 65 63 20 77 69 74 68 20 61 20 70 72 65 2d 73 | .configuring.MACsec.with.a.pre-s |
| 511a0 | 68 61 72 65 64 20 6b 65 79 20 75 73 69 6e 67 20 61 20 3a 61 62 62 72 3a 60 43 41 4b 20 28 4d 41 | hared.key.using.a.:abbr:`CAK.(MA |
| 511c0 | 43 73 65 63 20 63 6f 6e 6e 65 63 74 69 76 69 74 79 20 61 73 73 6f 63 69 61 74 69 6f 6e 20 6b 65 | Csec.connectivity.association.ke |
| 511e0 | 79 29 60 20 61 6e 64 20 3a 61 62 62 72 3a 60 43 4b 4e 20 28 4d 41 43 73 65 63 20 63 6f 6e 6e 65 | y)`.and.:abbr:`CKN.(MACsec.conne |
| 51200 | 63 74 69 76 69 74 79 20 61 73 73 6f 63 69 61 74 69 6f 6e 20 6e 61 6d 65 29 60 20 70 61 69 72 2e | ctivity.association.name)`.pair. |
| 51220 | 00 49 45 45 45 20 38 30 32 2e 31 58 2f 4d 41 43 73 65 63 20 72 65 70 6c 61 79 20 70 72 6f 74 65 | .IEEE.802.1X/MACsec.replay.prote |
| 51240 | 63 74 69 6f 6e 20 77 69 6e 64 6f 77 2e 20 54 68 69 73 20 64 65 74 65 72 6d 69 6e 65 73 20 61 20 | ction.window..This.determines.a. |
| 51260 | 77 69 6e 64 6f 77 20 69 6e 20 77 68 69 63 68 20 72 65 70 6c 61 79 20 69 73 20 74 6f 6c 65 72 61 | window.in.which.replay.is.tolera |
| 51280 | 74 65 64 2c 20 74 6f 20 61 6c 6c 6f 77 20 72 65 63 65 69 70 74 20 6f 66 20 66 72 61 6d 65 73 20 | ted,.to.allow.receipt.of.frames. |
| 512a0 | 74 68 61 74 20 68 61 76 65 20 62 65 65 6e 20 6d 69 73 6f 72 64 65 72 65 64 20 62 79 20 74 68 65 | that.have.been.misordered.by.the |
| 512c0 | 20 6e 65 74 77 6f 72 6b 2e 00 49 45 45 45 20 38 30 32 2e 31 61 64 5f 20 77 61 73 20 61 6e 20 45 | .network..IEEE.802.1ad_.was.an.E |
| 512e0 | 74 68 65 72 6e 65 74 20 6e 65 74 77 6f 72 6b 69 6e 67 20 73 74 61 6e 64 61 72 64 20 69 6e 66 6f | thernet.networking.standard.info |
| 51300 | 72 6d 61 6c 6c 79 20 6b 6e 6f 77 6e 20 61 73 20 51 69 6e 51 20 61 73 20 61 6e 20 61 6d 65 6e 64 | rmally.known.as.QinQ.as.an.amend |
| 51320 | 6d 65 6e 74 20 74 6f 20 49 45 45 45 20 73 74 61 6e 64 61 72 64 20 38 30 32 2e 31 71 20 56 4c 41 | ment.to.IEEE.standard.802.1q.VLA |
| 51340 | 4e 20 69 6e 74 65 72 66 61 63 65 73 20 61 73 20 64 65 73 63 72 69 62 65 64 20 61 62 6f 76 65 2e | N.interfaces.as.described.above. |
| 51360 | 20 38 30 32 2e 31 61 64 20 77 61 73 20 69 6e 63 6f 72 70 6f 72 61 74 65 64 20 69 6e 74 6f 20 74 | .802.1ad.was.incorporated.into.t |
| 51380 | 68 65 20 62 61 73 65 20 38 30 32 2e 31 71 5f 20 73 74 61 6e 64 61 72 64 20 69 6e 20 32 30 31 31 | he.base.802.1q_.standard.in.2011 |
| 513a0 | 2e 20 54 68 65 20 74 65 63 68 6e 69 71 75 65 20 69 73 20 61 6c 73 6f 20 6b 6e 6f 77 6e 20 61 73 | ..The.technique.is.also.known.as |
| 513c0 | 20 70 72 6f 76 69 64 65 72 20 62 72 69 64 67 69 6e 67 2c 20 53 74 61 63 6b 65 64 20 56 4c 41 4e | .provider.bridging,.Stacked.VLAN |
| 513e0 | 73 2c 20 6f 72 20 73 69 6d 70 6c 79 20 51 69 6e 51 20 6f 72 20 51 2d 69 6e 2d 51 2e 20 22 51 2d | s,.or.simply.QinQ.or.Q-in-Q.."Q- |
| 51400 | 69 6e 2d 51 22 20 63 61 6e 20 66 6f 72 20 73 75 70 70 6f 72 74 65 64 20 64 65 76 69 63 65 73 20 | in-Q".can.for.supported.devices. |
| 51420 | 61 70 70 6c 79 20 74 6f 20 43 2d 74 61 67 20 73 74 61 63 6b 69 6e 67 20 6f 6e 20 43 2d 74 61 67 | apply.to.C-tag.stacking.on.C-tag |
| 51440 | 20 28 45 74 68 65 72 6e 65 74 20 54 79 70 65 20 3d 20 30 78 38 31 30 30 29 2e 00 49 45 45 45 20 | .(Ethernet.Type.=.0x8100)..IEEE. |
| 51460 | 38 30 32 2e 31 71 5f 2c 20 6f 66 74 65 6e 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 44 6f | 802.1q_,.often.referred.to.as.Do |
| 51480 | 74 31 71 2c 20 69 73 20 74 68 65 20 6e 65 74 77 6f 72 6b 69 6e 67 20 73 74 61 6e 64 61 72 64 20 | t1q,.is.the.networking.standard. |
| 514a0 | 74 68 61 74 20 73 75 70 70 6f 72 74 73 20 76 69 72 74 75 61 6c 20 4c 41 4e 73 20 28 56 4c 41 4e | that.supports.virtual.LANs.(VLAN |
| 514c0 | 73 29 20 6f 6e 20 61 6e 20 49 45 45 45 20 38 30 32 2e 33 20 45 74 68 65 72 6e 65 74 20 6e 65 74 | s).on.an.IEEE.802.3.Ethernet.net |
| 514e0 | 77 6f 72 6b 2e 20 54 68 65 20 73 74 61 6e 64 61 72 64 20 64 65 66 69 6e 65 73 20 61 20 73 79 73 | work..The.standard.defines.a.sys |
| 51500 | 74 65 6d 20 6f 66 20 56 4c 41 4e 20 74 61 67 67 69 6e 67 20 66 6f 72 20 45 74 68 65 72 6e 65 74 | tem.of.VLAN.tagging.for.Ethernet |
| 51520 | 20 66 72 61 6d 65 73 20 61 6e 64 20 74 68 65 20 61 63 63 6f 6d 70 61 6e 79 69 6e 67 20 70 72 6f | .frames.and.the.accompanying.pro |
| 51540 | 63 65 64 75 72 65 73 20 74 6f 20 62 65 20 75 73 65 64 20 62 79 20 62 72 69 64 67 65 73 20 61 6e | cedures.to.be.used.by.bridges.an |
| 51560 | 64 20 73 77 69 74 63 68 65 73 20 69 6e 20 68 61 6e 64 6c 69 6e 67 20 73 75 63 68 20 66 72 61 6d | d.switches.in.handling.such.fram |
| 51580 | 65 73 2e 20 54 68 65 20 73 74 61 6e 64 61 72 64 20 61 6c 73 6f 20 63 6f 6e 74 61 69 6e 73 20 70 | es..The.standard.also.contains.p |
| 515a0 | 72 6f 76 69 73 69 6f 6e 73 20 66 6f 72 20 61 20 71 75 61 6c 69 74 79 2d 6f 66 2d 73 65 72 76 69 | rovisions.for.a.quality-of-servi |
| 515c0 | 63 65 20 70 72 69 6f 72 69 74 69 7a 61 74 69 6f 6e 20 73 63 68 65 6d 65 20 63 6f 6d 6d 6f 6e 6c | ce.prioritization.scheme.commonl |
| 515e0 | 79 20 6b 6e 6f 77 6e 20 61 73 20 49 45 45 45 20 38 30 32 2e 31 70 20 61 6e 64 20 64 65 66 69 6e | y.known.as.IEEE.802.1p.and.defin |
| 51600 | 65 73 20 74 68 65 20 47 65 6e 65 72 69 63 20 41 74 74 72 69 62 75 74 65 20 52 65 67 69 73 74 72 | es.the.Generic.Attribute.Registr |
| 51620 | 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 2e 00 49 45 54 46 20 70 75 62 6c 69 73 68 65 64 20 3a | ation.Protocol..IETF.published.: |
| 51640 | 72 66 63 3a 60 36 35 39 38 60 2c 20 64 65 74 61 69 6c 69 6e 67 20 61 20 73 68 61 72 65 64 20 61 | rfc:`6598`,.detailing.a.shared.a |
| 51660 | 64 64 72 65 73 73 20 73 70 61 63 65 20 66 6f 72 20 75 73 65 20 69 6e 20 49 53 50 20 43 47 4e 20 | ddress.space.for.use.in.ISP.CGN. |
| 51680 | 64 65 70 6c 6f 79 6d 65 6e 74 73 20 74 68 61 74 20 63 61 6e 20 68 61 6e 64 6c 65 20 74 68 65 20 | deployments.that.can.handle.the. |
| 516a0 | 73 61 6d 65 20 6e 65 74 77 6f 72 6b 20 70 72 65 66 69 78 65 73 20 6f 63 63 75 72 72 69 6e 67 20 | same.network.prefixes.occurring. |
| 516c0 | 62 6f 74 68 20 6f 6e 20 69 6e 62 6f 75 6e 64 20 61 6e 64 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 | both.on.inbound.and.outbound.int |
| 516e0 | 65 72 66 61 63 65 73 2e 20 41 52 49 4e 20 72 65 74 75 72 6e 65 64 20 61 64 64 72 65 73 73 20 73 | erfaces..ARIN.returned.address.s |
| 51700 | 70 61 63 65 20 74 6f 20 74 68 65 20 3a 61 62 62 72 3a 60 49 41 4e 41 20 28 49 6e 74 65 72 6e 65 | pace.to.the.:abbr:`IANA.(Interne |
| 51720 | 74 20 41 73 73 69 67 6e 65 64 20 4e 75 6d 62 65 72 73 20 41 75 74 68 6f 72 69 74 79 29 60 20 66 | t.Assigned.Numbers.Authority)`.f |
| 51740 | 6f 72 20 74 68 69 73 20 61 6c 6c 6f 63 61 74 69 6f 6e 2e 00 49 47 4d 50 20 2d 20 49 6e 74 65 72 | or.this.allocation..IGMP.-.Inter |
| 51760 | 6e 65 74 20 47 72 6f 75 70 20 4d 61 6e 61 67 65 6d 65 6e 74 20 50 72 6f 74 6f 63 6f 6c 29 00 49 | net.Group.Management.Protocol).I |
| 51780 | 47 4d 50 20 50 72 6f 78 79 00 49 4b 45 20 28 49 6e 74 65 72 6e 65 74 20 4b 65 79 20 45 78 63 68 | GMP.Proxy.IKE.(Internet.Key.Exch |
| 517a0 | 61 6e 67 65 29 20 41 74 74 72 69 62 75 74 65 73 00 49 4b 45 20 50 68 61 73 65 3a 00 49 4b 45 20 | ange).Attributes.IKE.Phase:.IKE. |
| 517c0 | 70 65 72 66 6f 72 6d 73 20 6d 75 74 75 61 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 | performs.mutual.authentication.b |
| 517e0 | 65 74 77 65 65 6e 20 74 77 6f 20 70 61 72 74 69 65 73 20 61 6e 64 20 65 73 74 61 62 6c 69 73 68 | etween.two.parties.and.establish |
| 51800 | 65 73 20 61 6e 20 49 4b 45 20 73 65 63 75 72 69 74 79 20 61 73 73 6f 63 69 61 74 69 6f 6e 20 28 | es.an.IKE.security.association.( |
| 51820 | 53 41 29 20 74 68 61 74 20 69 6e 63 6c 75 64 65 73 20 73 68 61 72 65 64 20 73 65 63 72 65 74 20 | SA).that.includes.shared.secret. |
| 51840 | 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 | information.that.can.be.used.to. |
| 51860 | 65 66 66 69 63 69 65 6e 74 6c 79 20 65 73 74 61 62 6c 69 73 68 20 53 41 73 20 66 6f 72 20 45 6e | efficiently.establish.SAs.for.En |
| 51880 | 63 61 70 73 75 6c 61 74 69 6e 67 20 53 65 63 75 72 69 74 79 20 50 61 79 6c 6f 61 64 20 28 45 53 | capsulating.Security.Payload.(ES |
| 518a0 | 50 29 20 6f 72 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 48 65 61 64 65 72 20 28 41 48 29 | P).or.Authentication.Header.(AH) |
| 518c0 | 20 61 6e 64 20 61 20 73 65 74 20 6f 66 20 63 72 79 70 74 6f 67 72 61 70 68 69 63 20 61 6c 67 6f | .and.a.set.of.cryptographic.algo |
| 518e0 | 72 69 74 68 6d 73 20 74 6f 20 62 65 20 75 73 65 64 20 62 79 20 74 68 65 20 53 41 73 20 74 6f 20 | rithms.to.be.used.by.the.SAs.to. |
| 51900 | 70 72 6f 74 65 63 74 20 74 68 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 74 68 65 79 20 63 61 | protect.the.traffic.that.they.ca |
| 51920 | 72 72 79 2e 20 68 74 74 70 73 3a 2f 2f 64 61 74 61 74 72 61 63 6b 65 72 2e 69 65 74 66 2e 6f 72 | rry..https://datatracker.ietf.or |
| 51940 | 67 2f 64 6f 63 2f 68 74 6d 6c 2f 72 66 63 35 39 39 36 00 49 4b 45 76 31 00 49 4b 45 76 32 00 49 | g/doc/html/rfc5996.IKEv1.IKEv2.I |
| 51960 | 4b 45 76 32 20 49 50 53 65 63 20 72 6f 61 64 2d 77 61 72 72 69 6f 72 73 20 72 65 6d 6f 74 65 2d | KEv2.IPSec.road-warriors.remote- |
| 51980 | 61 63 63 65 73 73 20 56 50 4e 00 49 50 00 49 50 20 61 64 64 72 65 73 73 00 49 50 20 61 64 64 72 | access.VPN.IP.IP.address.IP.addr |
| 519a0 | 65 73 73 20 60 60 31 39 32 2e 31 36 38 2e 31 2e 31 30 30 60 60 20 73 68 61 6c 6c 20 62 65 20 73 | ess.``192.168.1.100``.shall.be.s |
| 519c0 | 74 61 74 69 63 61 6c 6c 79 20 6d 61 70 70 65 64 20 74 6f 20 63 6c 69 65 6e 74 20 6e 61 6d 65 64 | tatically.mapped.to.client.named |
| 519e0 | 20 60 60 63 6c 69 65 6e 74 31 60 60 00 49 50 20 61 64 64 72 65 73 73 20 60 60 31 39 32 2e 31 36 | .``client1``.IP.address.``192.16 |
| 51a00 | 38 2e 32 2e 31 2f 32 34 60 60 00 49 50 20 61 64 64 72 65 73 73 20 66 6f 72 20 44 48 43 50 20 73 | 8.2.1/24``.IP.address.for.DHCP.s |
| 51a20 | 65 72 76 65 72 20 69 64 65 6e 74 69 66 69 65 72 00 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 4e | erver.identifier.IP.address.of.N |
| 51a40 | 54 50 20 73 65 72 76 65 72 00 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 50 4f 50 33 20 73 65 72 | TP.server.IP.address.of.POP3.ser |
| 51a60 | 76 65 72 00 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 53 4d 54 50 20 73 65 72 76 65 72 00 49 50 | ver.IP.address.of.SMTP.server.IP |
| 51a80 | 20 61 64 64 72 65 73 73 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 | .address.of.route.to.match,.base |
| 51aa0 | 64 20 6f 6e 20 61 63 63 65 73 73 2d 6c 69 73 74 2e 00 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 | d.on.access-list..IP.address.of. |
| 51ac0 | 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 70 72 65 66 69 78 2d | route.to.match,.based.on.prefix- |
| 51ae0 | 6c 69 73 74 2e 00 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 | list..IP.address.of.route.to.mat |
| 51b00 | 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 73 70 65 63 69 66 69 65 64 20 70 72 65 66 69 78 2d 6c 65 | ch,.based.on.specified.prefix-le |
| 51b20 | 6e 67 74 68 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 69 73 20 63 61 6e 20 62 65 20 75 73 65 64 | ngth..Note.that.this.can.be.used |
| 51b40 | 20 66 6f 72 20 6b 65 72 6e 65 6c 20 72 6f 75 74 65 73 20 6f 6e 6c 79 2e 20 44 6f 20 6e 6f 74 20 | .for.kernel.routes.only..Do.not. |
| 51b60 | 61 70 70 6c 79 20 74 6f 20 74 68 65 20 72 6f 75 74 65 73 20 6f 66 20 64 79 6e 61 6d 69 63 20 72 | apply.to.the.routes.of.dynamic.r |
| 51b80 | 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 28 65 2e 67 2e 20 42 47 50 2c 20 52 49 50 2c | outing.protocols.(e.g..BGP,.RIP, |
| 51ba0 | 20 4f 53 46 50 29 2c 20 61 73 20 74 68 69 73 20 63 61 6e 20 6c 65 61 64 20 74 6f 20 75 6e 65 78 | .OSFP),.as.this.can.lead.to.unex |
| 51bc0 | 70 65 63 74 65 64 20 72 65 73 75 6c 74 73 2e 2e 00 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 65 | pected.results...IP.address.to.e |
| 51be0 | 78 63 6c 75 64 65 20 66 72 6f 6d 20 44 48 43 50 20 6c 65 61 73 65 20 72 61 6e 67 65 00 49 50 20 | xclude.from.DHCP.lease.range.IP. |
| 51c00 | 61 64 64 72 65 73 73 65 73 20 6f 72 20 6e 65 74 77 6f 72 6b 73 20 66 6f 72 20 77 68 69 63 68 20 | addresses.or.networks.for.which. |
| 51c20 | 6c 6f 63 61 6c 20 63 6f 6e 6e 74 72 61 63 6b 20 65 6e 74 72 69 65 73 20 77 69 6c 6c 20 6e 6f 74 | local.conntrack.entries.will.not |
| 51c40 | 20 62 65 20 73 79 6e 63 65 64 00 49 50 20 6d 61 6e 61 67 65 6d 65 6e 74 20 61 64 64 72 65 73 73 | .be.synced.IP.management.address |
| 51c60 | 00 49 50 20 6d 61 73 71 75 65 72 61 64 69 6e 67 20 69 73 20 61 20 74 65 63 68 6e 69 71 75 65 20 | .IP.masquerading.is.a.technique. |
| 51c80 | 74 68 61 74 20 68 69 64 65 73 20 61 6e 20 65 6e 74 69 72 65 20 49 50 20 61 64 64 72 65 73 73 20 | that.hides.an.entire.IP.address. |
| 51ca0 | 73 70 61 63 65 2c 20 75 73 75 61 6c 6c 79 20 63 6f 6e 73 69 73 74 69 6e 67 20 6f 66 20 70 72 69 | space,.usually.consisting.of.pri |
| 51cc0 | 76 61 74 65 20 49 50 20 61 64 64 72 65 73 73 65 73 2c 20 62 65 68 69 6e 64 20 61 20 73 69 6e 67 | vate.IP.addresses,.behind.a.sing |
| 51ce0 | 6c 65 20 49 50 20 61 64 64 72 65 73 73 20 69 6e 20 61 6e 6f 74 68 65 72 2c 20 75 73 75 61 6c 6c | le.IP.address.in.another,.usuall |
| 51d00 | 79 20 70 75 62 6c 69 63 20 61 64 64 72 65 73 73 20 73 70 61 63 65 2e 20 54 68 65 20 68 69 64 64 | y.public.address.space..The.hidd |
| 51d20 | 65 6e 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 63 68 61 6e 67 65 64 20 69 6e 74 6f 20 61 20 | en.addresses.are.changed.into.a. |
| 51d40 | 73 69 6e 67 6c 65 20 28 70 75 62 6c 69 63 29 20 49 50 20 61 64 64 72 65 73 73 20 61 73 20 74 68 | single.(public).IP.address.as.th |
| 51d60 | 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 | e.source.address.of.the.outgoing |
| 51d80 | 20 49 50 20 70 61 63 6b 65 74 73 20 73 6f 20 74 68 65 79 20 61 70 70 65 61 72 20 61 73 20 6f 72 | .IP.packets.so.they.appear.as.or |
| 51da0 | 69 67 69 6e 61 74 69 6e 67 20 6e 6f 74 20 66 72 6f 6d 20 74 68 65 20 68 69 64 64 65 6e 20 68 6f | iginating.not.from.the.hidden.ho |
| 51dc0 | 73 74 20 62 75 74 20 66 72 6f 6d 20 74 68 65 20 72 6f 75 74 69 6e 67 20 64 65 76 69 63 65 20 69 | st.but.from.the.routing.device.i |
| 51de0 | 74 73 65 6c 66 2e 20 42 65 63 61 75 73 65 20 6f 66 20 74 68 65 20 70 6f 70 75 6c 61 72 69 74 79 | tself..Because.of.the.popularity |
| 51e00 | 20 6f 66 20 74 68 69 73 20 74 65 63 68 6e 69 71 75 65 20 74 6f 20 63 6f 6e 73 65 72 76 65 20 49 | .of.this.technique.to.conserve.I |
| 51e20 | 50 76 34 20 61 64 64 72 65 73 73 20 73 70 61 63 65 2c 20 74 68 65 20 74 65 72 6d 20 4e 41 54 20 | Pv4.address.space,.the.term.NAT. |
| 51e40 | 68 61 73 20 62 65 63 6f 6d 65 20 76 69 72 74 75 61 6c 6c 79 20 73 79 6e 6f 6e 79 6d 6f 75 73 20 | has.become.virtually.synonymous. |
| 51e60 | 77 69 74 68 20 49 50 20 6d 61 73 71 75 65 72 61 64 69 6e 67 2e 00 49 50 20 6e 65 78 74 2d 68 6f | with.IP.masquerading..IP.next-ho |
| 51e80 | 70 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 61 63 | p.of.route.to.match,.based.on.ac |
| 51ea0 | 63 65 73 73 2d 6c 69 73 74 2e 00 49 50 20 6e 65 78 74 2d 68 6f 70 20 6f 66 20 72 6f 75 74 65 20 | cess-list..IP.next-hop.of.route. |
| 51ec0 | 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 69 70 20 61 64 64 72 65 73 73 2e 00 49 | to.match,.based.on.ip.address..I |
| 51ee0 | 50 20 6e 65 78 74 2d 68 6f 70 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 | P.next-hop.of.route.to.match,.ba |
| 51f00 | 73 65 64 20 6f 6e 20 70 72 65 66 69 78 20 6c 65 6e 67 74 68 2e 00 49 50 20 6e 65 78 74 2d 68 6f | sed.on.prefix.length..IP.next-ho |
| 51f20 | 70 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 70 72 | p.of.route.to.match,.based.on.pr |
| 51f40 | 65 66 69 78 2d 6c 69 73 74 2e 00 49 50 20 6e 65 78 74 2d 68 6f 70 20 6f 66 20 72 6f 75 74 65 20 | efix-list..IP.next-hop.of.route. |
| 51f60 | 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 74 79 70 65 2e 00 49 50 20 70 72 65 63 | to.match,.based.on.type..IP.prec |
| 51f80 | 65 64 65 6e 63 65 20 61 73 20 64 65 66 69 6e 65 64 20 69 6e 20 3a 72 66 63 3a 60 37 39 31 60 3a | edence.as.defined.in.:rfc:`791`: |
| 51fa0 | 00 49 50 20 70 72 6f 74 6f 63 6f 6c 20 6e 75 6d 62 65 72 20 35 30 20 28 45 53 50 29 00 49 50 20 | .IP.protocol.number.50.(ESP).IP. |
| 51fc0 | 72 6f 75 74 65 20 73 6f 75 72 63 65 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 | route.source.of.route.to.match,. |
| 51fe0 | 62 61 73 65 64 20 6f 6e 20 61 63 63 65 73 73 2d 6c 69 73 74 2e 00 49 50 20 72 6f 75 74 65 20 73 | based.on.access-list..IP.route.s |
| 52000 | 6f 75 72 63 65 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f | ource.of.route.to.match,.based.o |
| 52020 | 6e 20 70 72 65 66 69 78 2d 6c 69 73 74 2e 00 49 50 36 49 50 36 00 49 50 49 50 00 49 50 49 50 36 | n.prefix-list..IP6IP6.IPIP.IPIP6 |
| 52040 | 00 49 50 53 65 63 20 49 4b 45 20 61 6e 64 20 45 53 50 00 49 50 53 65 63 20 49 4b 45 20 61 6e 64 | .IPSec.IKE.and.ESP.IPSec.IKE.and |
| 52060 | 20 45 53 50 20 47 72 6f 75 70 73 3b 00 49 50 53 65 63 20 49 4b 45 76 32 20 52 65 6d 6f 74 65 20 | .ESP.Groups;.IPSec.IKEv2.Remote. |
| 52080 | 41 63 63 65 73 73 20 56 50 4e 00 49 50 53 65 63 20 49 4b 45 76 32 20 73 69 74 65 32 73 69 74 65 | Access.VPN.IPSec.IKEv2.site2site |
| 520a0 | 20 56 50 4e 00 49 50 53 65 63 20 49 4b 45 76 32 20 73 69 74 65 32 73 69 74 65 20 56 50 4e 20 28 | .VPN.IPSec.IKEv2.site2site.VPN.( |
| 520c0 | 73 6f 75 72 63 65 20 2e 2f 64 72 61 77 2e 69 6f 2f 76 70 6e 5f 73 32 73 5f 69 6b 65 76 32 2e 64 | source../draw.io/vpn_s2s_ikev2.d |
| 520e0 | 72 61 77 69 6f 29 00 49 50 53 65 63 20 56 50 4e 20 54 75 6e 6e 65 6c 73 00 49 50 53 65 63 20 56 | rawio).IPSec.VPN.Tunnels.IPSec.V |
| 52100 | 50 4e 20 74 75 6e 6e 65 6c 73 2e 00 49 50 53 65 63 3a 00 49 50 6f 45 20 53 65 72 76 65 72 00 49 | PN.tunnels..IPSec:.IPoE.Server.I |
| 52120 | 50 6f 45 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 20 6f 6e 20 64 69 66 66 65 72 65 6e | PoE.can.be.configure.on.differen |
| 52140 | 74 20 69 6e 74 65 72 66 61 63 65 73 2c 20 69 74 20 77 69 6c 6c 20 64 65 70 65 6e 64 20 6f 6e 20 | t.interfaces,.it.will.depend.on. |
| 52160 | 65 61 63 68 20 73 70 65 63 69 66 69 63 20 73 69 74 75 61 74 69 6f 6e 20 77 68 69 63 68 20 69 6e | each.specific.situation.which.in |
| 52180 | 74 65 72 66 61 63 65 20 77 69 6c 6c 20 70 72 6f 76 69 64 65 20 49 50 6f 45 20 74 6f 20 63 6c 69 | terface.will.provide.IPoE.to.cli |
| 521a0 | 65 6e 74 73 2e 20 54 68 65 20 63 6c 69 65 6e 74 73 20 6d 61 63 20 61 64 64 72 65 73 73 20 61 6e | ents..The.clients.mac.address.an |
| 521c0 | 64 20 74 68 65 20 69 6e 63 6f 6d 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 62 65 69 6e | d.the.incoming.interface.is.bein |
| 521e0 | 67 20 75 73 65 64 20 61 73 20 63 6f 6e 74 72 6f 6c 20 70 61 72 61 6d 65 74 65 72 2c 20 74 6f 20 | g.used.as.control.parameter,.to. |
| 52200 | 61 75 74 68 65 6e 74 69 63 61 74 65 20 61 20 63 6c 69 65 6e 74 2e 00 49 50 6f 45 20 63 61 6e 20 | authenticate.a.client..IPoE.can. |
| 52220 | 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 64 69 66 66 65 72 65 6e 74 20 69 6e 74 65 72 | be.configured.on.different.inter |
| 52240 | 66 61 63 65 73 2c 20 69 74 20 77 69 6c 6c 20 64 65 70 65 6e 64 20 6f 6e 20 65 61 63 68 20 73 70 | faces,.it.will.depend.on.each.sp |
| 52260 | 65 63 69 66 69 63 20 73 69 74 75 61 74 69 6f 6e 20 77 68 69 63 68 20 69 6e 74 65 72 66 61 63 65 | ecific.situation.which.interface |
| 52280 | 20 77 69 6c 6c 20 70 72 6f 76 69 64 65 20 49 50 6f 45 20 74 6f 20 63 6c 69 65 6e 74 73 2e 20 54 | .will.provide.IPoE.to.clients..T |
| 522a0 | 68 65 20 63 6c 69 65 6e 74 27 73 20 6d 61 63 20 61 64 64 72 65 73 73 20 61 6e 64 20 74 68 65 20 | he.client's.mac.address.and.the. |
| 522c0 | 69 6e 63 6f 6d 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 62 65 69 6e 67 20 75 73 65 64 | incoming.interface.is.being.used |
| 522e0 | 20 61 73 20 63 6f 6e 74 72 6f 6c 20 70 61 72 61 6d 65 74 65 72 2c 20 74 6f 20 61 75 74 68 65 6e | .as.control.parameter,.to.authen |
| 52300 | 74 69 63 61 74 65 20 61 20 63 6c 69 65 6e 74 2e 00 49 50 6f 45 20 69 73 20 61 20 6d 65 74 68 6f | ticate.a.client..IPoE.is.a.metho |
| 52320 | 64 20 6f 66 20 64 65 6c 69 76 65 72 69 6e 67 20 61 6e 20 49 50 20 70 61 79 6c 6f 61 64 20 6f 76 | d.of.delivering.an.IP.payload.ov |
| 52340 | 65 72 20 61 6e 20 45 74 68 65 72 6e 65 74 2d 62 61 73 65 64 20 61 63 63 65 73 73 20 6e 65 74 77 | er.an.Ethernet-based.access.netw |
| 52360 | 6f 72 6b 20 6f 72 20 61 6e 20 61 63 63 65 73 73 20 6e 65 74 77 6f 72 6b 20 75 73 69 6e 67 20 62 | ork.or.an.access.network.using.b |
| 52380 | 72 69 64 67 65 64 20 45 74 68 65 72 6e 65 74 20 6f 76 65 72 20 41 73 79 6e 63 68 72 6f 6e 6f 75 | ridged.Ethernet.over.Asynchronou |
| 523a0 | 73 20 54 72 61 6e 73 66 65 72 20 4d 6f 64 65 20 28 41 54 4d 29 20 77 69 74 68 6f 75 74 20 75 73 | s.Transfer.Mode.(ATM).without.us |
| 523c0 | 69 6e 67 20 50 50 50 6f 45 2e 20 49 74 20 64 69 72 65 63 74 6c 79 20 65 6e 63 61 70 73 75 6c 61 | ing.PPPoE..It.directly.encapsula |
| 523e0 | 74 65 73 20 74 68 65 20 49 50 20 64 61 74 61 67 72 61 6d 73 20 69 6e 20 45 74 68 65 72 6e 65 74 | tes.the.IP.datagrams.in.Ethernet |
| 52400 | 20 66 72 61 6d 65 73 2c 20 75 73 69 6e 67 20 74 68 65 20 73 74 61 6e 64 61 72 64 20 3a 72 66 63 | .frames,.using.the.standard.:rfc |
| 52420 | 3a 60 38 39 34 60 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 2e 00 49 50 6f 45 20 73 65 72 76 65 | :`894`.encapsulation..IPoE.serve |
| 52440 | 72 20 77 69 6c 6c 20 6c 69 73 74 65 6e 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 73 20 65 74 68 31 | r.will.listen.on.interfaces.eth1 |
| 52460 | 2e 35 30 20 61 6e 64 20 65 74 68 31 2e 35 31 00 49 50 73 65 63 00 49 50 73 65 63 20 70 6f 6c 69 | .50.and.eth1.51.IPsec.IPsec.poli |
| 52480 | 63 79 20 6d 61 74 63 68 69 6e 67 20 47 52 45 00 49 50 76 34 00 49 50 76 34 20 46 69 72 65 77 61 | cy.matching.GRE.IPv4.IPv4.Firewa |
| 524a0 | 6c 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 49 50 76 34 20 61 64 64 72 65 73 73 20 6f 66 | ll.Configuration.IPv4.address.of |
| 524c0 | 20 6e 65 78 74 20 62 6f 6f 74 73 74 72 61 70 20 73 65 72 76 65 72 00 49 50 76 34 20 61 64 64 72 | .next.bootstrap.server.IPv4.addr |
| 524e0 | 65 73 73 20 6f 66 20 72 6f 75 74 65 72 20 6f 6e 20 74 68 65 20 63 6c 69 65 6e 74 27 73 20 73 75 | ess.of.router.on.the.client's.su |
| 52500 | 62 6e 65 74 00 49 50 76 34 20 6f 72 20 49 50 76 36 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 | bnet.IPv4.or.IPv6.source.address |
| 52520 | 20 6f 66 20 4e 65 74 46 6c 6f 77 20 70 61 63 6b 65 74 73 00 49 50 76 34 20 70 65 65 72 69 6e 67 | .of.NetFlow.packets.IPv4.peering |
| 52540 | 00 49 50 76 34 20 72 65 6c 61 79 00 49 50 76 34 20 72 6f 75 74 65 20 61 6e 64 20 49 50 76 36 20 | .IPv4.relay.IPv4.route.and.IPv6. |
| 52560 | 72 6f 75 74 65 20 70 6f 6c 69 63 69 65 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 | route.policies.are.defined.in.th |
| 52580 | 69 73 20 73 65 63 74 69 6f 6e 2e 20 54 68 65 73 65 20 72 6f 75 74 65 20 70 6f 6c 69 63 69 65 73 | is.section..These.route.policies |
| 525a0 | 20 63 61 6e 20 74 68 65 6e 20 62 65 20 61 73 73 6f 63 69 61 74 65 64 20 74 6f 20 69 6e 74 65 72 | .can.then.be.associated.to.inter |
| 525c0 | 66 61 63 65 73 2e 00 49 50 76 34 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 | faces..IPv4.route.source:.bgp,.c |
| 525e0 | 6f 6e 6e 65 63 74 65 64 2c 20 65 69 67 72 70 2c 20 69 73 69 73 2c 20 6b 65 72 6e 65 6c 2c 20 6e | onnected,.eigrp,.isis,.kernel,.n |
| 52600 | 68 72 70 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2e 00 49 50 76 34 20 73 65 72 | hrp,.ospf,.rip,.static..IPv4.ser |
| 52620 | 76 65 72 00 49 50 76 34 2f 49 50 76 36 20 72 65 6d 6f 74 65 20 61 64 64 72 65 73 73 20 6f 66 20 | ver.IPv4/IPv6.remote.address.of. |
| 52640 | 74 68 65 20 56 58 4c 41 4e 20 74 75 6e 6e 65 6c 2e 20 41 6c 74 65 72 6e 61 74 69 76 65 20 74 6f | the.VXLAN.tunnel..Alternative.to |
| 52660 | 20 6d 75 6c 74 69 63 61 73 74 2c 20 74 68 65 20 72 65 6d 6f 74 65 20 49 50 76 34 2f 49 50 76 36 | .multicast,.the.remote.IPv4/IPv6 |
| 52680 | 20 61 64 64 72 65 73 73 20 63 61 6e 20 73 65 74 20 64 69 72 65 63 74 6c 79 2e 00 49 50 76 34 2f | .address.can.set.directly..IPv4/ |
| 526a0 | 49 50 76 36 20 72 65 6d 6f 74 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 56 58 4c 41 4e | IPv6.remote.address.of.the.VXLAN |
| 526c0 | 20 74 75 6e 6e 65 6c 2e 20 41 6e 20 61 6c 74 65 72 6e 61 74 69 76 65 20 74 6f 20 6d 75 6c 74 69 | .tunnel..An.alternative.to.multi |
| 526e0 | 63 61 73 74 2c 20 74 68 65 20 72 65 6d 6f 74 65 20 49 50 76 34 2f 49 50 76 36 20 61 64 64 72 65 | cast,.the.remote.IPv4/IPv6.addre |
| 52700 | 73 73 20 63 61 6e 20 62 65 20 73 65 74 20 64 69 72 65 63 74 6c 79 2e 00 49 50 76 36 00 49 50 76 | ss.can.be.set.directly..IPv6.IPv |
| 52720 | 36 20 41 63 63 65 73 73 20 4c 69 73 74 00 49 50 76 36 20 41 64 76 61 6e 63 65 64 20 4f 70 74 69 | 6.Access.List.IPv6.Advanced.Opti |
| 52740 | 6f 6e 73 00 49 50 76 36 20 44 48 43 50 76 36 2d 50 44 20 45 78 61 6d 70 6c 65 00 49 50 76 36 20 | ons.IPv6.DHCPv6-PD.Example.IPv6. |
| 52760 | 44 4e 53 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 6f 70 74 69 6f 6e 61 6c 2e 00 49 50 76 36 | DNS.addresses.are.optional..IPv6 |
| 52780 | 20 46 69 72 65 77 61 6c 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 49 50 76 36 20 4d 75 6c | .Firewall.Configuration.IPv6.Mul |
| 527a0 | 74 69 63 61 73 74 00 49 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 00 49 50 | ticast.IPv6.Prefix.Delegation.IP |
| 527c0 | 76 36 20 50 72 65 66 69 78 20 4c 69 73 74 73 00 49 50 76 36 20 53 4c 41 41 43 20 61 6e 64 20 49 | v6.Prefix.Lists.IPv6.SLAAC.and.I |
| 527e0 | 41 2d 50 44 00 49 50 76 36 20 54 43 50 20 66 69 6c 74 65 72 73 20 77 69 6c 6c 20 6f 6e 6c 79 20 | A-PD.IPv6.TCP.filters.will.only. |
| 52800 | 6d 61 74 63 68 20 49 50 76 36 20 70 61 63 6b 65 74 73 20 77 69 74 68 20 6e 6f 20 68 65 61 64 65 | match.IPv6.packets.with.no.heade |
| 52820 | 72 20 65 78 74 65 6e 73 69 6f 6e 2c 20 73 65 65 20 68 74 74 70 73 3a 2f 2f 65 6e 2e 77 69 6b 69 | r.extension,.see.https://en.wiki |
| 52840 | 70 65 64 69 61 2e 6f 72 67 2f 77 69 6b 69 2f 49 50 76 36 5f 70 61 63 6b 65 74 23 45 78 74 65 6e | pedia.org/wiki/IPv6_packet#Exten |
| 52860 | 73 69 6f 6e 5f 68 65 61 64 65 72 73 00 49 50 76 36 20 61 64 64 72 65 73 73 20 60 60 32 30 30 31 | sion_headers.IPv6.address.``2001 |
| 52880 | 3a 64 62 38 3a 3a 31 30 31 60 60 20 73 68 61 6c 6c 20 62 65 20 73 74 61 74 69 63 61 6c 6c 79 20 | :db8::101``.shall.be.statically. |
| 528a0 | 6d 61 70 70 65 64 00 49 50 76 36 20 61 64 64 72 65 73 73 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 | mapped.IPv6.address.of.route.to. |
| 528c0 | 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 49 50 76 36 20 61 63 63 65 73 73 2d 6c 69 73 74 | match,.based.on.IPv6.access-list |
| 528e0 | 2e 00 49 50 76 36 20 61 64 64 72 65 73 73 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 | ..IPv6.address.of.route.to.match |
| 52900 | 2c 20 62 61 73 65 64 20 6f 6e 20 49 50 76 36 20 70 72 65 66 69 78 2d 6c 69 73 74 2e 00 49 50 76 | ,.based.on.IPv6.prefix-list..IPv |
| 52920 | 36 20 61 64 64 72 65 73 73 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 | 6.address.of.route.to.match,.bas |
| 52940 | 65 64 20 6f 6e 20 73 70 65 63 69 66 69 65 64 20 70 72 65 66 69 78 2d 6c 65 6e 67 74 68 2e 20 4e | ed.on.specified.prefix-length..N |
| 52960 | 6f 74 65 20 74 68 61 74 20 74 68 69 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 66 6f 72 20 6b 65 | ote.that.this.can.be.used.for.ke |
| 52980 | 72 6e 65 6c 20 72 6f 75 74 65 73 20 6f 6e 6c 79 2e 20 44 6f 20 6e 6f 74 20 61 70 70 6c 79 20 74 | rnel.routes.only..Do.not.apply.t |
| 529a0 | 6f 20 74 68 65 20 72 6f 75 74 65 73 20 6f 66 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 | o.the.routes.of.dynamic.routing. |
| 529c0 | 70 72 6f 74 6f 63 6f 6c 73 20 28 65 2e 67 2e 20 42 47 50 2c 20 52 49 50 2c 20 4f 53 46 50 29 2c | protocols.(e.g..BGP,.RIP,.OSFP), |
| 529e0 | 20 61 73 20 74 68 69 73 20 63 61 6e 20 6c 65 61 64 20 74 6f 20 75 6e 65 78 70 65 63 74 65 64 20 | .as.this.can.lead.to.unexpected. |
| 52a00 | 72 65 73 75 6c 74 73 2e 2e 00 49 50 76 36 20 63 6c 69 65 6e 74 27 73 20 70 72 65 66 69 78 00 49 | results...IPv6.client's.prefix.I |
| 52a20 | 50 76 36 20 63 6c 69 65 6e 74 27 73 20 70 72 65 66 69 78 20 61 73 73 69 67 6e 6d 65 6e 74 00 49 | Pv6.client's.prefix.assignment.I |
| 52a40 | 50 76 36 20 64 65 66 61 75 6c 74 20 63 6c 69 65 6e 74 27 73 20 70 6f 6f 6c 20 61 73 73 69 67 6e | Pv6.default.client's.pool.assign |
| 52a60 | 6d 65 6e 74 00 49 50 76 36 20 70 65 65 72 69 6e 67 00 49 50 76 36 20 70 72 65 66 69 78 20 60 60 | ment.IPv6.peering.IPv6.prefix.`` |
| 52a80 | 32 30 30 31 3a 64 62 38 3a 30 3a 31 30 31 3a 3a 2f 36 34 60 60 20 73 68 61 6c 6c 20 62 65 20 73 | 2001:db8:0:101::/64``.shall.be.s |
| 52aa0 | 74 61 74 69 63 61 6c 6c 79 20 6d 61 70 70 65 64 00 49 50 76 36 20 70 72 65 66 69 78 2e 00 49 50 | tatically.mapped.IPv6.prefix..IP |
| 52ac0 | 76 36 20 72 65 6c 61 79 00 49 50 76 36 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c | v6.relay.IPv6.route.source:.bgp, |
| 52ae0 | 20 63 6f 6e 6e 65 63 74 65 64 2c 20 65 69 67 72 70 2c 20 69 73 69 73 2c 20 6b 65 72 6e 65 6c 2c | .connected,.eigrp,.isis,.kernel, |
| 52b00 | 20 6e 68 72 70 2c 20 6f 73 70 66 76 33 2c 20 72 69 70 6e 67 2c 20 73 74 61 74 69 63 2e 00 49 50 | .nhrp,.ospfv3,.ripng,.static..IP |
| 52b20 | 76 36 20 73 65 72 76 65 72 00 49 50 76 36 20 73 75 70 70 6f 72 74 00 49 53 2d 49 53 00 49 53 2d | v6.server.IPv6.support.IS-IS.IS- |
| 52b40 | 49 53 20 47 6c 6f 62 61 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 49 53 2d 49 53 20 53 52 | IS.Global.Configuration.IS-IS.SR |
| 52b60 | 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 49 53 43 2d 44 48 43 50 20 4f 70 74 69 6f 6e 20 6e | .Configuration.ISC-DHCP.Option.n |
| 52b80 | 61 6d 65 00 49 64 65 6e 74 69 74 79 20 42 61 73 65 64 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e | ame.Identity.Based.Configuration |
| 52ba0 | 00 49 66 20 2a 2a 6d 61 78 2d 74 68 72 65 73 68 6f 6c 64 2a 2a 20 69 73 20 73 65 74 20 62 75 74 | .If.**max-threshold**.is.set.but |
| 52bc0 | 20 2a 2a 6d 69 6e 2d 74 68 72 65 73 68 6f 6c 64 20 69 73 20 6e 6f 74 2c 20 74 68 65 6e 20 2a 2a | .**min-threshold.is.not,.then.** |
| 52be0 | 6d 69 6e 2d 74 68 72 65 73 68 6f 6c 64 2a 2a 20 69 73 20 73 63 61 6c 65 64 20 74 6f 20 35 30 25 | min-threshold**.is.scaled.to.50% |
| 52c00 | 20 6f 66 20 2a 2a 6d 61 78 2d 74 68 72 65 73 68 6f 6c 64 2a 2a 2e 00 49 66 20 3a 63 66 67 63 6d | .of.**max-threshold**..If.:cfgcm |
| 52c20 | 64 3a 60 73 74 72 69 63 74 60 20 69 73 20 73 65 74 20 74 68 65 20 42 47 50 20 73 65 73 73 69 6f | d:`strict`.is.set.the.BGP.sessio |
| 52c40 | 6e 20 77 6f 6e e2 80 99 74 20 62 65 63 6f 6d 65 20 65 73 74 61 62 6c 69 73 68 65 64 20 75 6e 74 | n.won...t.become.established.unt |
| 52c60 | 69 6c 20 74 68 65 20 42 47 50 20 6e 65 69 67 68 62 6f 72 20 73 65 74 73 20 6c 6f 63 61 6c 20 52 | il.the.BGP.neighbor.sets.local.R |
| 52c80 | 6f 6c 65 20 6f 6e 20 69 74 73 20 73 69 64 65 2e 20 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 | ole.on.its.side..This.configurat |
| 52ca0 | 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 69 73 20 64 65 66 69 6e 65 64 20 69 6e 20 52 46 43 20 | ion.parameter.is.defined.in.RFC. |
| 52cc0 | 3a 72 66 63 3a 60 39 32 33 34 60 20 61 6e 64 20 69 73 20 75 73 65 64 20 74 6f 20 65 6e 66 6f 72 | :rfc:`9234`.and.is.used.to.enfor |
| 52ce0 | 63 65 20 74 68 65 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 | ce.the.corresponding.configurati |
| 52d00 | 6f 6e 20 61 74 20 79 6f 75 72 20 63 6f 75 6e 74 65 72 2d 70 61 72 74 73 20 73 69 64 65 2e 00 49 | on.at.your.counter-parts.side..I |
| 52d20 | 66 20 41 52 50 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 69 73 20 75 73 65 64 20 69 6e 20 61 6e 20 65 | f.ARP.monitoring.is.used.in.an.e |
| 52d40 | 74 68 65 72 63 68 61 6e 6e 65 6c 20 63 6f 6d 70 61 74 69 62 6c 65 20 6d 6f 64 65 20 28 6d 6f 64 | therchannel.compatible.mode.(mod |
| 52d60 | 65 73 20 72 6f 75 6e 64 2d 72 6f 62 69 6e 20 61 6e 64 20 78 6f 72 2d 68 61 73 68 29 2c 20 74 68 | es.round-robin.and.xor-hash),.th |
| 52d80 | 65 20 73 77 69 74 63 68 20 73 68 6f 75 6c 64 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e | e.switch.should.be.configured.in |
| 52da0 | 20 61 20 6d 6f 64 65 20 74 68 61 74 20 65 76 65 6e 6c 79 20 64 69 73 74 72 69 62 75 74 65 73 20 | .a.mode.that.evenly.distributes. |
| 52dc0 | 70 61 63 6b 65 74 73 20 61 63 72 6f 73 73 20 61 6c 6c 20 6c 69 6e 6b 73 2e 20 49 66 20 74 68 65 | packets.across.all.links..If.the |
| 52de0 | 20 73 77 69 74 63 68 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 64 69 73 74 72 69 62 | .switch.is.configured.to.distrib |
| 52e00 | 75 74 65 20 74 68 65 20 70 61 63 6b 65 74 73 20 69 6e 20 61 6e 20 58 4f 52 20 66 61 73 68 69 6f | ute.the.packets.in.an.XOR.fashio |
| 52e20 | 6e 2c 20 61 6c 6c 20 72 65 70 6c 69 65 73 20 66 72 6f 6d 20 74 68 65 20 41 52 50 20 74 61 72 67 | n,.all.replies.from.the.ARP.targ |
| 52e40 | 65 74 73 20 77 69 6c 6c 20 62 65 20 72 65 63 65 69 76 65 64 20 6f 6e 20 74 68 65 20 73 61 6d 65 | ets.will.be.received.on.the.same |
| 52e60 | 20 6c 69 6e 6b 20 77 68 69 63 68 20 63 6f 75 6c 64 20 63 61 75 73 65 20 74 68 65 20 6f 74 68 65 | .link.which.could.cause.the.othe |
| 52e80 | 72 20 74 65 61 6d 20 6d 65 6d 62 65 72 73 20 74 6f 20 66 61 69 6c 2e 00 49 66 20 43 41 20 69 73 | r.team.members.to.fail..If.CA.is |
| 52ea0 | 20 70 72 65 73 65 6e 74 2c 20 74 68 69 73 20 63 65 72 74 69 66 69 63 61 74 65 20 77 69 6c 6c 20 | .present,.this.certificate.will. |
| 52ec0 | 62 65 20 69 6e 63 6c 75 64 65 64 20 69 6e 20 67 65 6e 65 72 61 74 65 64 20 43 52 4c 73 00 49 66 | be.included.in.generated.CRLs.If |
| 52ee0 | 20 43 4c 49 20 6f 70 74 69 6f 6e 20 69 73 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 2c 20 74 68 | .CLI.option.is.not.specified,.th |
| 52f00 | 69 73 20 66 65 61 74 75 72 65 20 69 73 20 64 69 73 61 62 6c 65 64 2e 00 49 66 20 50 49 4d 20 68 | is.feature.is.disabled..If.PIM.h |
| 52f20 | 61 73 20 74 68 65 20 61 20 63 68 6f 69 63 65 20 6f 66 20 45 43 4d 50 20 6e 65 78 74 68 6f 70 73 | as.the.a.choice.of.ECMP.nexthops |
| 52f40 | 20 66 6f 72 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 3a 61 62 62 72 3a 60 52 50 46 20 28 52 65 | .for.a.particular.:abbr:`RPF.(Re |
| 52f60 | 76 65 72 73 65 20 50 61 74 68 20 46 6f 72 77 61 72 64 69 6e 67 29 60 2c 20 50 49 4d 20 77 69 6c | verse.Path.Forwarding)`,.PIM.wil |
| 52f80 | 6c 20 63 61 75 73 65 20 53 2c 47 20 66 6c 6f 77 73 20 74 6f 20 62 65 20 73 70 72 65 61 64 20 6f | l.cause.S,G.flows.to.be.spread.o |
| 52fa0 | 75 74 20 61 6d 6f 6e 67 73 74 20 74 68 65 20 6e 65 78 74 68 6f 70 73 2e 20 49 66 20 74 68 69 73 | ut.amongst.the.nexthops..If.this |
| 52fc0 | 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 20 74 68 65 6e 20 74 | .command.is.not.specified.then.t |
| 52fe0 | 68 65 20 66 69 72 73 74 20 6e 65 78 74 68 6f 70 20 66 6f 75 6e 64 20 77 69 6c 6c 20 62 65 20 75 | he.first.nexthop.found.will.be.u |
| 53000 | 73 65 64 2e 00 49 66 20 50 49 4d 20 69 73 20 75 73 69 6e 67 20 45 43 4d 50 20 61 6e 64 20 61 6e | sed..If.PIM.is.using.ECMP.and.an |
| 53020 | 20 69 6e 74 65 72 66 61 63 65 20 67 6f 65 73 20 64 6f 77 6e 2c 20 63 61 75 73 65 20 50 49 4d 20 | .interface.goes.down,.cause.PIM. |
| 53040 | 74 6f 20 72 65 62 61 6c 61 6e 63 65 20 61 6c 6c 20 53 2c 47 20 66 6c 6f 77 73 20 61 63 72 6f 73 | to.rebalance.all.S,G.flows.acros |
| 53060 | 73 20 74 68 65 20 72 65 6d 61 69 6e 69 6e 67 20 6e 65 78 74 68 6f 70 73 2e 20 49 66 20 74 68 69 | s.the.remaining.nexthops..If.thi |
| 53080 | 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6e 6f 74 20 63 6f 6e 66 69 67 75 72 65 64 20 50 49 4d 20 | s.command.is.not.configured.PIM. |
| 530a0 | 6f 6e 6c 79 20 6d 6f 64 69 66 69 65 73 20 74 68 6f 73 65 20 53 2c 47 20 66 6c 6f 77 73 20 74 68 | only.modifies.those.S,G.flows.th |
| 530c0 | 61 74 20 77 65 72 65 20 75 73 69 6e 67 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 68 61 74 | at.were.using.the.interface.that |
| 530e0 | 20 77 65 6e 74 20 64 6f 77 6e 2e 00 49 66 20 60 60 61 6c 69 61 73 60 60 20 69 73 20 73 65 74 2c | .went.down..If.``alias``.is.set, |
| 53100 | 20 69 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 69 6e 73 74 65 61 64 20 6f 66 20 74 68 65 20 64 | .it.can.be.used.instead.of.the.d |
| 53120 | 65 76 69 63 65 20 77 68 65 6e 20 63 6f 6e 6e 65 63 74 69 6e 67 2e 00 49 66 20 60 60 61 6c 6c 60 | evice.when.connecting..If.``all` |
| 53140 | 60 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 72 65 6d 6f 76 65 20 61 6c 6c 20 41 53 20 6e 75 | `.is.specified,.remove.all.AS.nu |
| 53160 | 6d 62 65 72 73 20 66 72 6f 6d 20 74 68 65 20 41 53 5f 50 41 54 48 20 6f 66 20 74 68 65 20 42 47 | mbers.from.the.AS_PATH.of.the.BG |
| 53180 | 50 20 70 61 74 68 27 73 20 4e 4c 52 49 2e 00 49 66 20 61 20 6c 6f 63 61 6c 20 66 69 72 65 77 61 | P.path's.NLRI..If.a.local.firewa |
| 531a0 | 6c 6c 20 70 6f 6c 69 63 79 20 69 73 20 69 6e 20 70 6c 61 63 65 20 6f 6e 20 79 6f 75 72 20 65 78 | ll.policy.is.in.place.on.your.ex |
| 531c0 | 74 65 72 6e 61 6c 20 69 6e 74 65 72 66 61 63 65 20 79 6f 75 20 77 69 6c 6c 20 6e 65 65 64 20 74 | ternal.interface.you.will.need.t |
| 531e0 | 6f 20 61 6c 6c 6f 77 20 74 68 65 20 70 6f 72 74 73 20 62 65 6c 6f 77 3a 00 49 66 20 61 20 72 65 | o.allow.the.ports.below:.If.a.re |
| 53200 | 67 69 73 74 72 79 20 69 73 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 2c 20 44 6f 63 6b 65 72 2e | gistry.is.not.specified,.Docker. |
| 53220 | 69 6f 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 61 73 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 | io.will.be.used.as.the.container |
| 53240 | 20 72 65 67 69 73 74 72 79 20 75 6e 6c 65 73 73 20 61 6e 20 61 6c 74 65 72 6e 61 74 69 76 65 20 | .registry.unless.an.alternative. |
| 53260 | 72 65 67 69 73 74 72 79 20 69 73 20 73 70 65 63 69 66 69 65 64 20 75 73 69 6e 67 20 2a 2a 73 65 | registry.is.specified.using.**se |
| 53280 | 74 20 63 6f 6e 74 61 69 6e 65 72 20 72 65 67 69 73 74 72 79 20 3c 6e 61 6d 65 3e 2a 2a 20 6f 72 | t.container.registry.<name>**.or |
| 532a0 | 20 74 68 65 20 72 65 67 69 73 74 72 79 20 69 73 20 69 6e 63 6c 75 64 65 64 20 69 6e 20 74 68 65 | .the.registry.is.included.in.the |
| 532c0 | 20 69 6d 61 67 65 20 6e 61 6d 65 00 49 66 20 61 20 72 65 73 70 6f 6e 73 65 20 69 73 20 68 65 61 | .image.name.If.a.response.is.hea |
| 532e0 | 72 64 2c 20 74 68 65 20 6c 65 61 73 65 20 69 73 20 61 62 61 6e 64 6f 6e 65 64 2c 20 61 6e 64 20 | rd,.the.lease.is.abandoned,.and. |
| 53300 | 74 68 65 20 73 65 72 76 65 72 20 64 6f 65 73 20 6e 6f 74 20 72 65 73 70 6f 6e 64 20 74 6f 20 74 | the.server.does.not.respond.to.t |
| 53320 | 68 65 20 63 6c 69 65 6e 74 2e 20 54 68 65 20 6c 65 61 73 65 20 77 69 6c 6c 20 72 65 6d 61 69 6e | he.client..The.lease.will.remain |
| 53340 | 20 61 62 61 6e 64 6f 6e 65 64 20 66 6f 72 20 61 20 6d 69 6e 69 6d 75 6d 20 6f 66 20 61 62 61 6e | .abandoned.for.a.minimum.of.aban |
| 53360 | 64 6f 6e 2d 6c 65 61 73 65 2d 74 69 6d 65 20 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 73 | don-lease-time.seconds.(defaults |
| 53380 | 20 74 6f 20 32 34 20 68 6f 75 72 73 29 2e 00 49 66 20 61 20 72 6f 75 74 65 20 68 61 73 20 61 6e | .to.24.hours)..If.a.route.has.an |
| 533a0 | 20 4f 52 49 47 49 4e 41 54 4f 52 5f 49 44 20 61 74 74 72 69 62 75 74 65 20 62 65 63 61 75 73 65 | .ORIGINATOR_ID.attribute.because |
| 533c0 | 20 69 74 20 68 61 73 20 62 65 65 6e 20 72 65 66 6c 65 63 74 65 64 2c 20 74 68 61 74 20 4f 52 49 | .it.has.been.reflected,.that.ORI |
| 533e0 | 47 49 4e 41 54 4f 52 5f 49 44 20 77 69 6c 6c 20 62 65 20 75 73 65 64 2e 20 4f 74 68 65 72 77 69 | GINATOR_ID.will.be.used..Otherwi |
| 53400 | 73 65 2c 20 74 68 65 20 72 6f 75 74 65 72 2d 49 44 20 6f 66 20 74 68 65 20 70 65 65 72 20 74 68 | se,.the.router-ID.of.the.peer.th |
| 53420 | 65 20 72 6f 75 74 65 20 77 61 73 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 77 69 6c 6c 20 62 | e.route.was.received.from.will.b |
| 53440 | 65 20 75 73 65 64 2e 00 49 66 20 61 20 72 75 6c 65 20 69 73 20 64 65 66 69 6e 65 64 2c 20 74 68 | e.used..If.a.rule.is.defined,.th |
| 53460 | 65 6e 20 61 6e 20 61 63 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 64 65 66 69 6e 65 64 20 66 6f 72 | en.an.action.must.be.defined.for |
| 53480 | 20 69 74 2e 20 54 68 69 73 20 74 65 6c 6c 73 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 77 68 61 | .it..This.tells.the.firewall.wha |
| 534a0 | 74 20 74 6f 20 64 6f 20 69 66 20 61 6c 6c 20 63 72 69 74 65 72 69 61 20 6d 61 74 63 68 65 72 73 | t.to.do.if.all.criteria.matchers |
| 534c0 | 20 64 65 66 69 6e 65 64 20 66 6f 72 20 73 75 63 68 20 72 75 6c 65 20 64 6f 20 6d 61 74 63 68 2e | .defined.for.such.rule.do.match. |
| 534e0 | 00 49 66 20 61 20 72 75 6c 65 20 69 73 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 61 6e 20 61 | .If.a.rule.is.defined,.then.an.a |
| 53500 | 63 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 64 65 66 69 6e 65 64 20 66 6f 72 20 69 74 2e 20 54 68 | ction.must.be.defined.for.it..Th |
| 53520 | 69 73 20 74 65 6c 6c 73 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 77 68 61 74 20 74 6f 20 64 6f | is.tells.the.firewall.what.to.do |
| 53540 | 20 69 66 20 61 6c 6c 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 65 61 20 69 6e 20 74 68 65 | .if.all.matching.criterea.in.the |
| 53560 | 20 72 75 6c 65 20 61 72 65 20 6d 65 74 2e 00 49 66 20 61 20 72 75 6c 65 20 69 73 20 64 65 66 69 | .rule.are.met..If.a.rule.is.defi |
| 53580 | 6e 65 64 2c 20 74 68 65 6e 20 61 6e 20 61 63 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 64 65 66 69 | ned,.then.an.action.must.be.defi |
| 535a0 | 6e 65 64 20 66 6f 72 20 69 74 2e 20 54 68 69 73 20 74 65 6c 6c 73 20 74 68 65 20 66 69 72 65 77 | ned.for.it..This.tells.the.firew |
| 535c0 | 61 6c 6c 20 77 68 61 74 20 74 6f 20 64 6f 20 69 66 20 61 6c 6c 20 6f 66 20 74 68 65 20 63 72 69 | all.what.to.do.if.all.of.the.cri |
| 535e0 | 74 65 72 69 61 20 64 65 66 69 6e 65 64 20 66 6f 72 20 74 68 61 74 20 72 75 6c 65 20 6d 61 74 63 | teria.defined.for.that.rule.matc |
| 53600 | 68 2e 00 49 66 20 61 20 74 68 65 72 65 20 61 72 65 20 6e 6f 20 66 72 65 65 20 61 64 64 72 65 73 | h..If.a.there.are.no.free.addres |
| 53620 | 73 65 73 20 62 75 74 20 74 68 65 72 65 20 61 72 65 20 61 62 61 6e 64 6f 6e 65 64 20 49 50 20 61 | ses.but.there.are.abandoned.IP.a |
| 53640 | 64 64 72 65 73 73 65 73 2c 20 74 68 65 20 44 48 43 50 20 73 65 72 76 65 72 20 77 69 6c 6c 20 61 | ddresses,.the.DHCP.server.will.a |
| 53660 | 74 74 65 6d 70 74 20 74 6f 20 72 65 63 6c 61 69 6d 20 61 6e 20 61 62 61 6e 64 6f 6e 65 64 20 49 | ttempt.to.reclaim.an.abandoned.I |
| 53680 | 50 20 61 64 64 72 65 73 73 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 76 61 6c 75 | P.address.regardless.of.the.valu |
| 536a0 | 65 20 6f 66 20 61 62 61 6e 64 6f 6e 2d 6c 65 61 73 65 2d 74 69 6d 65 2e 00 49 66 20 61 63 74 69 | e.of.abandon-lease-time..If.acti |
| 536c0 | 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 71 75 65 75 65 60 60 2c 20 75 73 65 20 6e 65 78 74 | on.is.set.to.``queue``,.use.next |
| 536e0 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 71 75 65 75 65 20 74 61 | .command.to.specify.the.queue.ta |
| 53700 | 72 67 65 74 2e 20 52 61 6e 67 65 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 3a 00 49 | rget..Range.is.also.supported:.I |
| 53720 | 66 20 61 6e 20 49 53 50 20 64 65 70 6c 6f 79 73 20 61 20 3a 61 62 62 72 3a 60 43 47 4e 20 28 43 | f.an.ISP.deploys.a.:abbr:`CGN.(C |
| 53740 | 61 72 72 69 65 72 2d 67 72 61 64 65 20 4e 41 54 29 60 2c 20 61 6e 64 20 75 73 65 73 20 3a 72 66 | arrier-grade.NAT)`,.and.uses.:rf |
| 53760 | 63 3a 60 31 39 31 38 60 20 61 64 64 72 65 73 73 20 73 70 61 63 65 20 74 6f 20 6e 75 6d 62 65 72 | c:`1918`.address.space.to.number |
| 53780 | 20 63 75 73 74 6f 6d 65 72 20 67 61 74 65 77 61 79 73 2c 20 74 68 65 20 72 69 73 6b 20 6f 66 20 | .customer.gateways,.the.risk.of. |
| 537a0 | 61 64 64 72 65 73 73 20 63 6f 6c 6c 69 73 69 6f 6e 2c 20 61 6e 64 20 74 68 65 72 65 66 6f 72 65 | address.collision,.and.therefore |
| 537c0 | 20 72 6f 75 74 69 6e 67 20 66 61 69 6c 75 72 65 73 2c 20 61 72 69 73 65 73 20 77 68 65 6e 20 74 | .routing.failures,.arises.when.t |
| 537e0 | 68 65 20 63 75 73 74 6f 6d 65 72 20 6e 65 74 77 6f 72 6b 20 61 6c 72 65 61 64 79 20 75 73 65 73 | he.customer.network.already.uses |
| 53800 | 20 61 6e 20 3a 72 66 63 3a 60 31 39 31 38 60 20 61 64 64 72 65 73 73 20 73 70 61 63 65 2e 00 49 | .an.:rfc:`1918`.address.space..I |
| 53820 | 66 20 61 6e 20 61 6e 6f 74 68 65 72 20 62 72 69 64 67 65 20 69 6e 20 74 68 65 20 73 70 61 6e 6e | f.an.another.bridge.in.the.spann |
| 53840 | 69 6e 67 20 74 72 65 65 20 64 6f 65 73 20 6e 6f 74 20 73 65 6e 64 20 6f 75 74 20 61 20 68 65 6c | ing.tree.does.not.send.out.a.hel |
| 53860 | 6c 6f 20 70 61 63 6b 65 74 20 66 6f 72 20 61 20 6c 6f 6e 67 20 70 65 72 69 6f 64 20 6f 66 20 74 | lo.packet.for.a.long.period.of.t |
| 53880 | 69 6d 65 2c 20 69 74 20 69 73 20 61 73 73 75 6d 65 64 20 74 6f 20 62 65 20 64 65 61 64 2e 00 49 | ime,.it.is.assumed.to.be.dead..I |
| 538a0 | 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 | f.an.interface.is.attached.to.a. |
| 538c0 | 6e 6f 6e 2d 64 65 66 61 75 6c 74 20 76 72 66 2c 20 77 68 65 6e 20 75 73 69 6e 67 20 2a 2a 69 6e | non-default.vrf,.when.using.**in |
| 538e0 | 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 2c 20 74 68 65 20 76 72 66 20 6e 61 6d 65 20 | bound-interface**,.the.vrf.name. |
| 53900 | 6d 75 73 74 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 73 65 74 20 | must.be.used..For.example.``set. |
| 53920 | 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 72 75 6c | firewall.ipv4.forward.filter.rul |
| 53940 | 65 20 31 30 20 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 4d 47 4d 54 | e.10.inbound-interface.name.MGMT |
| 53960 | 60 60 00 49 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 74 74 61 63 68 65 64 20 74 | ``.If.an.interface.is.attached.t |
| 53980 | 6f 20 61 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 20 76 72 66 2c 20 77 68 65 6e 20 75 73 69 6e 67 20 | o.a.non-default.vrf,.when.using. |
| 539a0 | 2a 2a 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 2c 20 74 68 65 20 76 72 66 20 6e | **inbound-interface**,.the.vrf.n |
| 539c0 | 61 6d 65 20 6d 75 73 74 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 | ame.must.be.used..For.example.`` |
| 539e0 | 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 | set.firewall.ipv6.forward.filter |
| 53a00 | 20 72 75 6c 65 20 31 30 20 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 | .rule.10.inbound-interface.name. |
| 53a20 | 4d 47 4d 54 60 60 00 49 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 74 74 61 63 68 | MGMT``.If.an.interface.is.attach |
| 53a40 | 65 64 20 74 6f 20 61 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 20 76 72 66 2c 20 77 68 65 6e 20 75 73 | ed.to.a.non-default.vrf,.when.us |
| 53a60 | 69 6e 67 20 2a 2a 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 2c 20 76 72 66 20 6e | ing.**inbound-interface**,.vrf.n |
| 53a80 | 61 6d 65 20 6d 75 73 74 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 | ame.must.be.used..For.example.`` |
| 53aa0 | 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 | set.firewall.ipv4.forward.filter |
| 53ac0 | 20 72 75 6c 65 20 31 30 20 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 | .rule.10.inbound-interface.name. |
| 53ae0 | 4d 47 4d 54 60 60 00 49 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 74 74 61 63 68 | MGMT``.If.an.interface.is.attach |
| 53b00 | 65 64 20 74 6f 20 61 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 20 76 72 66 2c 20 77 68 65 6e 20 75 73 | ed.to.a.non-default.vrf,.when.us |
| 53b20 | 69 6e 67 20 2a 2a 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 2c 20 76 72 66 20 6e | ing.**inbound-interface**,.vrf.n |
| 53b40 | 61 6d 65 20 6d 75 73 74 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 | ame.must.be.used..For.example.`` |
| 53b60 | 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 | set.firewall.ipv6.forward.filter |
| 53b80 | 20 72 75 6c 65 20 31 30 20 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 | .rule.10.inbound-interface.name. |
| 53ba0 | 4d 47 4d 54 60 60 00 49 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 74 74 61 63 68 | MGMT``.If.an.interface.is.attach |
| 53bc0 | 65 64 20 74 6f 20 61 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 20 76 72 66 2c 20 77 68 65 6e 20 75 73 | ed.to.a.non-default.vrf,.when.us |
| 53be0 | 69 6e 67 20 2a 2a 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 2c 20 72 65 61 6c | ing.**outbound-interface**,.real |
| 53c00 | 20 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 6d 75 73 74 20 62 65 20 75 73 65 64 2e 20 46 6f | .interface.name.must.be.used..Fo |
| 53c20 | 72 20 65 78 61 6d 70 6c 65 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 66 6f | r.example.``set.firewall.ipv4.fo |
| 53c40 | 72 77 61 72 64 20 66 69 6c 74 65 72 20 72 75 6c 65 20 31 30 20 6f 75 74 62 6f 75 6e 64 2d 69 6e | rward.filter.rule.10.outbound-in |
| 53c60 | 74 65 72 66 61 63 65 20 6e 61 6d 65 20 65 74 68 30 60 60 00 49 66 20 61 6e 20 69 6e 74 65 72 66 | terface.name.eth0``.If.an.interf |
| 53c80 | 61 63 65 20 69 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 | ace.is.attached.to.a.non-default |
| 53ca0 | 20 76 72 66 2c 20 77 68 65 6e 20 75 73 69 6e 67 20 2a 2a 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 | .vrf,.when.using.**outbound-inte |
| 53cc0 | 72 66 61 63 65 2a 2a 2c 20 72 65 61 6c 20 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 6d 75 73 | rface**,.real.interface.name.mus |
| 53ce0 | 74 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 73 65 74 20 66 69 72 | t.be.used..For.example.``set.fir |
| 53d00 | 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 72 75 6c 65 20 31 | ewall.ipv6.forward.filter.rule.1 |
| 53d20 | 30 20 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 65 74 68 30 60 60 | 0.outbound-interface.name.eth0`` |
| 53d40 | 00 49 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 | .If.an.interface.is.attached.to. |
| 53d60 | 61 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 20 76 72 66 2c 20 77 68 65 6e 20 75 73 69 6e 67 20 2a 2a | a.non-default.vrf,.when.using.** |
| 53d80 | 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 2c 20 74 68 65 20 72 65 61 6c 20 69 | outbound-interface**,.the.real.i |
| 53da0 | 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 6d 75 73 74 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 | nterface.name.must.be.used..For. |
| 53dc0 | 65 78 61 6d 70 6c 65 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 66 6f 72 77 | example.``set.firewall.ipv4.forw |
| 53de0 | 61 72 64 20 66 69 6c 74 65 72 20 72 75 6c 65 20 31 30 20 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 | ard.filter.rule.10.outbound-inte |
| 53e00 | 72 66 61 63 65 20 6e 61 6d 65 20 65 74 68 30 60 60 00 49 66 20 61 6e 20 69 6e 74 65 72 66 61 63 | rface.name.eth0``.If.an.interfac |
| 53e20 | 65 20 69 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 20 76 | e.is.attached.to.a.non-default.v |
| 53e40 | 72 66 2c 20 77 68 65 6e 20 75 73 69 6e 67 20 2a 2a 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 | rf,.when.using.**outbound-interf |
| 53e60 | 61 63 65 2a 2a 2c 20 74 68 65 20 72 65 61 6c 20 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 6d | ace**,.the.real.interface.name.m |
| 53e80 | 75 73 74 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 73 65 74 20 66 | ust.be.used..For.example.``set.f |
| 53ea0 | 69 72 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 72 75 6c 65 | irewall.ipv6.forward.filter.rule |
| 53ec0 | 20 31 30 20 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 65 74 68 30 | .10.outbound-interface.name.eth0 |
| 53ee0 | 60 60 00 49 66 20 63 68 6f 6f 73 69 6e 67 20 61 20 76 61 6c 75 65 20 62 65 6c 6f 77 20 33 31 20 | ``.If.choosing.a.value.below.31. |
| 53f00 | 73 65 63 6f 6e 64 73 20 62 65 20 61 77 61 72 65 20 74 68 61 74 20 73 6f 6d 65 20 68 61 72 64 77 | seconds.be.aware.that.some.hardw |
| 53f20 | 61 72 65 20 70 6c 61 74 66 6f 72 6d 73 20 63 61 6e 6e 6f 74 20 73 65 65 20 64 61 74 61 20 66 6c | are.platforms.cannot.see.data.fl |
| 53f40 | 6f 77 69 6e 67 20 69 6e 20 62 65 74 74 65 72 20 74 68 61 6e 20 33 30 20 73 65 63 6f 6e 64 20 63 | owing.in.better.than.30.second.c |
| 53f60 | 68 75 6e 6b 73 2e 00 49 66 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 69 6e 63 6f 6d 69 6e 67 20 49 | hunks..If.configured,.incoming.I |
| 53f80 | 50 20 64 69 72 65 63 74 65 64 20 62 72 6f 61 64 63 61 73 74 20 70 61 63 6b 65 74 73 20 6f 6e 20 | P.directed.broadcast.packets.on. |
| 53fa0 | 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 77 69 6c 6c 20 62 65 20 66 6f 72 77 61 72 64 65 64 | this.interface.will.be.forwarded |
| 53fc0 | 2e 00 49 66 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 72 65 70 6c 79 20 6f 6e 6c 79 20 69 66 20 74 | ..If.configured,.reply.only.if.t |
| 53fe0 | 68 65 20 74 61 72 67 65 74 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 6c 6f 63 61 6c 20 61 64 | he.target.IP.address.is.local.ad |
| 54000 | 64 72 65 73 73 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 74 68 65 20 69 6e 63 6f 6d 69 6e 67 | dress.configured.on.the.incoming |
| 54020 | 20 69 6e 74 65 72 66 61 63 65 2e 00 49 66 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 74 72 79 20 74 | .interface..If.configured,.try.t |
| 54040 | 6f 20 61 76 6f 69 64 20 6c 6f 63 61 6c 20 61 64 64 72 65 73 73 65 73 20 74 68 61 74 20 61 72 65 | o.avoid.local.addresses.that.are |
| 54060 | 20 6e 6f 74 20 69 6e 20 74 68 65 20 74 61 72 67 65 74 27 73 20 73 75 62 6e 65 74 20 66 6f 72 20 | .not.in.the.target's.subnet.for. |
| 54080 | 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 6d 6f 64 65 20 69 73 20 75 73 65 | this.interface..This.mode.is.use |
| 540a0 | 66 75 6c 20 77 68 65 6e 20 74 61 72 67 65 74 20 68 6f 73 74 73 20 72 65 61 63 68 61 62 6c 65 20 | ful.when.target.hosts.reachable. |
| 540c0 | 76 69 61 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 72 65 71 75 69 72 65 20 74 68 65 20 73 | via.this.interface.require.the.s |
| 540e0 | 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 69 6e 20 41 52 50 20 72 65 71 75 65 73 74 73 | ource.IP.address.in.ARP.requests |
| 54100 | 20 74 6f 20 62 65 20 70 61 72 74 20 6f 66 20 74 68 65 69 72 20 6c 6f 67 69 63 61 6c 20 6e 65 74 | .to.be.part.of.their.logical.net |
| 54120 | 77 6f 72 6b 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 74 68 65 20 72 65 63 65 69 76 69 6e 67 | work.configured.on.the.receiving |
| 54140 | 20 69 6e 74 65 72 66 61 63 65 2e 20 57 68 65 6e 20 77 65 20 67 65 6e 65 72 61 74 65 20 74 68 65 | .interface..When.we.generate.the |
| 54160 | 20 72 65 71 75 65 73 74 20 77 65 20 77 69 6c 6c 20 63 68 65 63 6b 20 61 6c 6c 20 6f 75 72 20 73 | .request.we.will.check.all.our.s |
| 54180 | 75 62 6e 65 74 73 20 74 68 61 74 20 69 6e 63 6c 75 64 65 20 74 68 65 20 74 61 72 67 65 74 20 49 | ubnets.that.include.the.target.I |
| 541a0 | 50 20 61 6e 64 20 77 69 6c 6c 20 70 72 65 73 65 72 76 65 20 74 68 65 20 73 6f 75 72 63 65 20 61 | P.and.will.preserve.the.source.a |
| 541c0 | 64 64 72 65 73 73 20 69 66 20 69 74 20 69 73 20 66 72 6f 6d 20 73 75 63 68 20 73 75 62 6e 65 74 | ddress.if.it.is.from.such.subnet |
| 541e0 | 2e 20 49 66 20 74 68 65 72 65 20 69 73 20 6e 6f 20 73 75 63 68 20 73 75 62 6e 65 74 20 77 65 20 | ..If.there.is.no.such.subnet.we. |
| 54200 | 73 65 6c 65 63 74 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 61 63 63 6f 72 64 69 6e 67 20 | select.source.address.according. |
| 54220 | 74 6f 20 74 68 65 20 72 75 6c 65 73 20 66 6f 72 20 6c 65 76 65 6c 20 32 2e 00 49 66 20 63 6f 6e | to.the.rules.for.level.2..If.con |
| 54240 | 66 69 67 75 72 69 6e 67 20 56 58 4c 41 4e 20 69 6e 20 61 20 56 79 4f 53 20 76 69 72 74 75 61 6c | figuring.VXLAN.in.a.VyOS.virtual |
| 54260 | 20 6d 61 63 68 69 6e 65 2c 20 65 6e 73 75 72 65 20 74 68 61 74 20 4d 41 43 20 73 70 6f 6f 66 69 | .machine,.ensure.that.MAC.spoofi |
| 54280 | 6e 67 20 28 48 79 70 65 72 2d 56 29 20 6f 72 20 46 6f 72 67 65 64 20 54 72 61 6e 73 6d 69 74 73 | ng.(Hyper-V).or.Forged.Transmits |
| 542a0 | 20 28 45 53 58 29 20 61 72 65 20 70 65 72 6d 69 74 74 65 64 2c 20 6f 74 68 65 72 77 69 73 65 20 | .(ESX).are.permitted,.otherwise. |
| 542c0 | 66 6f 72 77 61 72 64 65 64 20 66 72 61 6d 65 73 20 6d 61 79 20 62 65 20 62 6c 6f 63 6b 65 64 20 | forwarded.frames.may.be.blocked. |
| 542e0 | 62 79 20 74 68 65 20 68 79 70 65 72 76 69 73 6f 72 2e 00 49 66 20 65 69 74 68 65 72 20 69 73 20 | by.the.hypervisor..If.either.is. |
| 54300 | 73 65 74 20 62 6f 74 68 20 6d 75 73 74 20 62 65 20 73 65 74 2e 00 49 66 20 66 6f 72 77 61 72 64 | set.both.must.be.set..If.forward |
| 54320 | 69 6e 67 20 74 72 61 66 66 69 63 20 74 6f 20 61 20 64 69 66 66 65 72 65 6e 74 20 70 6f 72 74 20 | ing.traffic.to.a.different.port. |
| 54340 | 74 68 61 6e 20 69 74 20 69 73 20 61 72 72 69 76 69 6e 67 20 6f 6e 2c 20 79 6f 75 20 6d 61 79 20 | than.it.is.arriving.on,.you.may. |
| 54360 | 61 6c 73 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 70 | also.configure.the.translation.p |
| 54380 | 6f 72 74 20 75 73 69 6e 67 20 60 73 65 74 20 6e 61 74 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 72 | ort.using.`set.nat.destination.r |
| 543a0 | 75 6c 65 20 5b 6e 5d 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 70 6f 72 74 60 2e 00 49 66 20 67 75 | ule.[n].translation.port`..If.gu |
| 543c0 | 61 72 61 6e 74 65 65 64 20 74 72 61 66 66 69 63 20 66 6f 72 20 61 20 63 6c 61 73 73 20 69 73 20 | aranteed.traffic.for.a.class.is. |
| 543e0 | 6d 65 74 20 61 6e 64 20 74 68 65 72 65 20 69 73 20 72 6f 6f 6d 20 66 6f 72 20 6d 6f 72 65 20 74 | met.and.there.is.room.for.more.t |
| 54400 | 72 61 66 66 69 63 2c 20 74 68 65 20 63 65 69 6c 69 6e 67 20 70 61 72 61 6d 65 74 65 72 20 63 61 | raffic,.the.ceiling.parameter.ca |
| 54420 | 6e 20 62 65 20 75 73 65 64 20 74 6f 20 73 65 74 20 68 6f 77 20 6d 75 63 68 20 6d 6f 72 65 20 62 | n.be.used.to.set.how.much.more.b |
| 54440 | 61 6e 64 77 69 64 74 68 20 63 6f 75 6c 64 20 62 65 20 75 73 65 64 2e 20 49 66 20 67 75 61 72 61 | andwidth.could.be.used..If.guara |
| 54460 | 6e 74 65 65 64 20 74 72 61 66 66 69 63 20 69 73 20 6d 65 74 20 61 6e 64 20 74 68 65 72 65 20 61 | nteed.traffic.is.met.and.there.a |
| 54480 | 72 65 20 73 65 76 65 72 61 6c 20 63 6c 61 73 73 65 73 20 77 69 6c 6c 69 6e 67 20 74 6f 20 75 73 | re.several.classes.willing.to.us |
| 544a0 | 65 20 74 68 65 69 72 20 63 65 69 6c 69 6e 67 73 2c 20 74 68 65 20 70 72 69 6f 72 69 74 79 20 70 | e.their.ceilings,.the.priority.p |
| 544c0 | 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 65 73 74 61 62 6c 69 73 68 20 74 68 65 20 6f 72 64 65 | arameter.will.establish.the.orde |
| 544e0 | 72 20 69 6e 20 77 68 69 63 68 20 74 68 61 74 20 61 64 64 69 74 69 6f 6e 61 6c 20 74 72 61 66 66 | r.in.which.that.additional.traff |
| 54500 | 69 63 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 2e 20 50 72 69 6f 72 69 74 79 20 63 | ic.will.be.allocated..Priority.c |
| 54520 | 61 6e 20 62 65 20 61 6e 79 20 6e 75 6d 62 65 72 20 66 72 6f 6d 20 30 20 74 6f 20 37 2e 20 54 68 | an.be.any.number.from.0.to.7..Th |
| 54540 | 65 20 6c 6f 77 65 72 20 74 68 65 20 6e 75 6d 62 65 72 2c 20 74 68 65 20 68 69 67 68 65 72 20 74 | e.lower.the.number,.the.higher.t |
| 54560 | 68 65 20 70 72 69 6f 72 69 74 79 2e 00 49 66 20 69 6e 74 65 72 66 61 63 65 20 77 65 72 65 20 74 | he.priority..If.interface.were.t |
| 54580 | 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 69 76 65 64 20 69 73 20 70 61 72 74 20 6f | he.packet.was.received.is.part.o |
| 545a0 | 66 20 61 20 62 72 69 64 67 65 2c 20 74 68 65 6e 20 70 61 63 6b 65 74 20 69 73 20 70 72 6f 63 65 | f.a.bridge,.then.packet.is.proce |
| 545c0 | 73 73 65 64 20 61 74 20 74 68 65 20 2a 2a 42 72 69 64 67 65 20 4c 61 79 65 72 2a 2a 2c 20 77 68 | ssed.at.the.**Bridge.Layer**,.wh |
| 545e0 | 69 63 68 20 63 6f 6e 74 61 69 6e 73 20 61 20 76 65 72 20 62 61 73 69 63 20 73 65 74 75 70 20 77 | ich.contains.a.ver.basic.setup.w |
| 54600 | 68 65 72 65 20 66 6f 72 20 62 72 69 64 67 65 20 66 69 6c 74 65 72 69 6e 67 3a 00 49 66 20 69 6e | here.for.bridge.filtering:.If.in |
| 54620 | 74 65 72 66 61 63 65 20 77 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 | terface.were.the.packet.was.rece |
| 54640 | 69 76 65 64 20 69 73 6e 27 74 20 70 61 72 74 20 6f 66 20 61 20 62 72 69 64 67 65 2c 20 74 68 65 | ived.isn't.part.of.a.bridge,.the |
| 54660 | 6e 20 70 61 63 6b 65 74 20 69 73 20 70 72 6f 63 65 73 73 65 64 20 61 74 20 74 68 65 20 2a 2a 49 | n.packet.is.processed.at.the.**I |
| 54680 | 50 20 4c 61 79 65 72 2a 2a 3a 00 49 66 20 69 74 27 73 20 6e 6f 74 20 64 72 6f 70 70 65 64 2c 20 | P.Layer**:.If.it's.not.dropped,. |
| 546a0 | 74 68 65 6e 20 74 68 65 20 70 61 63 6b 65 74 20 69 73 20 73 65 6e 74 20 74 6f 20 2a 2a 49 50 20 | then.the.packet.is.sent.to.**IP. |
| 546c0 | 4c 61 79 65 72 2a 2a 2c 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 70 72 6f 63 65 73 73 65 64 20 62 | Layer**,.and.will.be.processed.b |
| 546e0 | 79 20 74 68 65 20 2a 2a 49 50 20 4c 61 79 65 72 2a 2a 20 66 69 72 65 77 61 6c 6c 3a 20 49 50 76 | y.the.**IP.Layer**.firewall:.IPv |
| 54700 | 34 20 6f 72 20 49 50 76 36 20 72 75 6c 65 73 65 74 2e 20 43 68 65 63 6b 20 6f 6e 63 65 20 61 67 | 4.or.IPv6.ruleset..Check.once.ag |
| 54720 | 61 69 6e 20 74 68 65 20 3a 64 6f 63 3a 60 67 65 6e 65 72 61 6c 20 70 61 63 6b 65 74 20 66 6c 6f | ain.the.:doc:`general.packet.flo |
| 54740 | 77 20 64 69 61 67 72 61 6d 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c | w.diagram</configuration/firewal |
| 54760 | 6c 2f 69 6e 64 65 78 3e 60 20 69 66 20 6e 65 65 64 65 64 2e 00 49 66 20 69 74 27 73 20 76 69 74 | l/index>`.if.needed..If.it's.vit |
| 54780 | 61 6c 20 74 68 61 74 20 74 68 65 20 64 61 65 6d 6f 6e 20 73 68 6f 75 6c 64 20 61 63 74 20 65 78 | al.that.the.daemon.should.act.ex |
| 547a0 | 61 63 74 6c 79 20 6c 69 6b 65 20 61 20 72 65 61 6c 20 6d 75 6c 74 69 63 61 73 74 20 63 6c 69 65 | actly.like.a.real.multicast.clie |
| 547c0 | 6e 74 20 6f 6e 20 74 68 65 20 75 70 73 74 72 65 61 6d 20 69 6e 74 65 72 66 61 63 65 2c 20 74 68 | nt.on.the.upstream.interface,.th |
| 547e0 | 69 73 20 66 75 6e 63 74 69 6f 6e 20 73 68 6f 75 6c 64 20 62 65 20 65 6e 61 62 6c 65 64 2e 00 49 | is.function.should.be.enabled..I |
| 54800 | 66 20 6b 6e 6f 77 6e 2c 20 74 68 65 20 49 50 20 6f 66 20 74 68 65 20 72 65 6d 6f 74 65 20 72 6f | f.known,.the.IP.of.the.remote.ro |
| 54820 | 75 74 65 72 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 75 73 69 6e 67 20 74 68 65 | uter.can.be.configured.using.the |
| 54840 | 20 60 60 72 65 6d 6f 74 65 2d 68 6f 73 74 60 60 20 64 69 72 65 63 74 69 76 65 3b 20 69 66 20 75 | .``remote-host``.directive;.if.u |
| 54860 | 6e 6b 6e 6f 77 6e 2c 20 69 74 20 63 61 6e 20 62 65 20 6f 6d 69 74 74 65 64 2e 20 57 65 20 77 69 | nknown,.it.can.be.omitted..We.wi |
| 54880 | 6c 6c 20 61 73 73 75 6d 65 20 61 20 64 79 6e 61 6d 69 63 20 49 50 20 66 6f 72 20 6f 75 72 20 72 | ll.assume.a.dynamic.IP.for.our.r |
| 548a0 | 65 6d 6f 74 65 20 72 6f 75 74 65 72 2e 00 49 66 20 6c 6f 67 67 69 6e 67 20 74 6f 20 61 20 6c 6f | emote.router..If.logging.to.a.lo |
| 548c0 | 63 61 6c 20 75 73 65 72 20 61 63 63 6f 75 6e 74 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 | cal.user.account.is.configured,. |
| 548e0 | 61 6c 6c 20 64 65 66 69 6e 65 64 20 6c 6f 67 20 6d 65 73 73 61 67 65 73 20 61 72 65 20 64 69 73 | all.defined.log.messages.are.dis |
| 54900 | 70 6c 61 79 20 6f 6e 20 74 68 65 20 63 6f 6e 73 6f 6c 65 20 69 66 20 74 68 65 20 6c 6f 63 61 6c | play.on.the.console.if.the.local |
| 54920 | 20 75 73 65 72 20 69 73 20 6c 6f 67 67 65 64 20 69 6e 2c 20 69 66 20 74 68 65 20 75 73 65 72 20 | .user.is.logged.in,.if.the.user. |
| 54940 | 69 73 20 6e 6f 74 20 6c 6f 67 67 65 64 20 69 6e 2c 20 6e 6f 20 6d 65 73 73 61 67 65 73 20 61 72 | is.not.logged.in,.no.messages.ar |
| 54960 | 65 20 62 65 69 6e 67 20 64 69 73 70 6c 61 79 65 64 2e 20 46 6f 72 20 61 6e 20 65 78 70 6c 61 6e | e.being.displayed..For.an.explan |
| 54980 | 61 74 69 6f 6e 20 6f 6e 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f 66 61 63 69 6c 69 74 69 65 73 | ation.on.:ref:`syslog_facilities |
| 549a0 | 60 20 6b 65 79 77 6f 72 64 73 20 61 6e 64 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f 73 65 76 65 | `.keywords.and.:ref:`syslog_seve |
| 549c0 | 72 69 74 79 5f 6c 65 76 65 6c 60 20 6b 65 79 77 6f 72 64 73 20 73 65 65 20 74 61 62 6c 65 73 20 | rity_level`.keywords.see.tables. |
| 549e0 | 62 65 6c 6f 77 2e 00 49 66 20 6d 61 6b 69 6e 67 20 75 73 65 20 6f 66 20 6d 75 6c 74 69 70 6c 65 | below..If.making.use.of.multiple |
| 54a00 | 20 74 75 6e 6e 65 6c 73 2c 20 4f 70 65 6e 56 50 4e 20 6d 75 73 74 20 68 61 76 65 20 61 20 77 61 | .tunnels,.OpenVPN.must.have.a.wa |
| 54a20 | 79 20 74 6f 20 64 69 73 74 69 6e 67 75 69 73 68 20 62 65 74 77 65 65 6e 20 64 69 66 66 65 72 65 | y.to.distinguish.between.differe |
| 54a40 | 6e 74 20 74 75 6e 6e 65 6c 73 20 61 73 69 64 65 20 66 72 6f 6d 20 74 68 65 20 70 72 65 2d 73 68 | nt.tunnels.aside.from.the.pre-sh |
| 54a60 | 61 72 65 64 2d 6b 65 79 2e 20 54 68 69 73 20 69 73 20 65 69 74 68 65 72 20 62 79 20 72 65 66 65 | ared-key..This.is.either.by.refe |
| 54a80 | 72 65 6e 63 69 6e 67 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 70 6f 72 74 20 6e 75 6d 62 65 | rencing.IP.address.or.port.numbe |
| 54aa0 | 72 2e 20 4f 6e 65 20 6f 70 74 69 6f 6e 20 69 73 20 74 6f 20 64 65 64 69 63 61 74 65 20 61 20 70 | r..One.option.is.to.dedicate.a.p |
| 54ac0 | 75 62 6c 69 63 20 49 50 20 74 6f 20 65 61 63 68 20 74 75 6e 6e 65 6c 2e 20 41 6e 6f 74 68 65 72 | ublic.IP.to.each.tunnel..Another |
| 54ae0 | 20 6f 70 74 69 6f 6e 20 69 73 20 74 6f 20 64 65 64 69 63 61 74 65 20 61 20 70 6f 72 74 20 6e 75 | .option.is.to.dedicate.a.port.nu |
| 54b00 | 6d 62 65 72 20 74 6f 20 65 61 63 68 20 74 75 6e 6e 65 6c 20 28 65 2e 67 2e 20 31 31 39 35 2c 31 | mber.to.each.tunnel.(e.g..1195,1 |
| 54b20 | 31 39 36 2c 31 31 39 37 2e 2e 2e 29 2e 00 49 66 20 6d 75 6c 74 69 2d 70 61 74 68 69 6e 67 20 69 | 196,1197...)..If.multi-pathing.i |
| 54b40 | 73 20 65 6e 61 62 6c 65 64 2c 20 74 68 65 6e 20 63 68 65 63 6b 20 77 68 65 74 68 65 72 20 74 68 | s.enabled,.then.check.whether.th |
| 54b60 | 65 20 72 6f 75 74 65 73 20 6e 6f 74 20 79 65 74 20 64 69 73 74 69 6e 67 75 69 73 68 65 64 20 69 | e.routes.not.yet.distinguished.i |
| 54b80 | 6e 20 70 72 65 66 65 72 65 6e 63 65 20 6d 61 79 20 62 65 20 63 6f 6e 73 69 64 65 72 65 64 20 65 | n.preference.may.be.considered.e |
| 54ba0 | 71 75 61 6c 2e 20 49 66 20 3a 63 66 67 63 6d 64 3a 60 62 67 70 20 62 65 73 74 70 61 74 68 20 61 | qual..If.:cfgcmd:`bgp.bestpath.a |
| 54bc0 | 73 2d 70 61 74 68 20 6d 75 6c 74 69 70 61 74 68 2d 72 65 6c 61 78 60 20 69 73 20 73 65 74 2c 20 | s-path.multipath-relax`.is.set,. |
| 54be0 | 61 6c 6c 20 73 75 63 68 20 72 6f 75 74 65 73 20 61 72 65 20 63 6f 6e 73 69 64 65 72 65 64 20 65 | all.such.routes.are.considered.e |
| 54c00 | 71 75 61 6c 2c 20 6f 74 68 65 72 77 69 73 65 20 72 6f 75 74 65 73 20 72 65 63 65 69 76 65 64 20 | qual,.otherwise.routes.received. |
| 54c20 | 76 69 61 20 69 42 47 50 20 77 69 74 68 20 69 64 65 6e 74 69 63 61 6c 20 41 53 5f 50 41 54 48 73 | via.iBGP.with.identical.AS_PATHs |
| 54c40 | 20 6f 72 20 72 6f 75 74 65 73 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 65 42 47 50 20 6e 65 | .or.routes.received.from.eBGP.ne |
| 54c60 | 69 67 68 62 6f 75 72 73 20 69 6e 20 74 68 65 20 73 61 6d 65 20 41 53 20 61 72 65 20 63 6f 6e 73 | ighbours.in.the.same.AS.are.cons |
| 54c80 | 69 64 65 72 65 64 20 65 71 75 61 6c 2e 00 49 66 20 6e 6f 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 | idered.equal..If.no.connection.t |
| 54ca0 | 6f 20 61 6e 20 52 50 4b 49 20 63 61 63 68 65 20 73 65 72 76 65 72 20 63 61 6e 20 62 65 20 65 73 | o.an.RPKI.cache.server.can.be.es |
| 54cc0 | 74 61 62 6c 69 73 68 65 64 20 61 66 74 65 72 20 61 20 70 72 65 2d 64 65 66 69 6e 65 64 20 74 69 | tablished.after.a.pre-defined.ti |
| 54ce0 | 6d 65 6f 75 74 2c 20 74 68 65 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 70 72 6f 63 65 73 73 20 72 | meout,.the.router.will.process.r |
| 54d00 | 6f 75 74 65 73 20 77 69 74 68 6f 75 74 20 70 72 65 66 69 78 20 6f 72 69 67 69 6e 20 76 61 6c 69 | outes.without.prefix.origin.vali |
| 54d20 | 64 61 74 69 6f 6e 2e 20 49 74 20 73 74 69 6c 6c 20 77 69 6c 6c 20 74 72 79 20 74 6f 20 65 73 74 | dation..It.still.will.try.to.est |
| 54d40 | 61 62 6c 69 73 68 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f 20 61 6e 20 52 50 4b 49 20 63 | ablish.a.connection.to.an.RPKI.c |
| 54d60 | 61 63 68 65 20 73 65 72 76 65 72 20 69 6e 20 74 68 65 20 62 61 63 6b 67 72 6f 75 6e 64 2e 00 49 | ache.server.in.the.background..I |
| 54d80 | 66 20 6e 6f 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 69 73 20 73 70 65 63 69 66 69 65 64 20 74 68 | f.no.destination.is.specified.th |
| 54da0 | 65 20 72 75 6c 65 20 77 69 6c 6c 20 6d 61 74 63 68 20 6f 6e 20 61 6e 79 20 64 65 73 74 69 6e 61 | e.rule.will.match.on.any.destina |
| 54dc0 | 74 69 6f 6e 20 61 64 64 72 65 73 73 20 61 6e 64 20 70 6f 72 74 2e 00 49 66 20 6e 6f 20 69 70 20 | tion.address.and.port..If.no.ip. |
| 54de0 | 70 72 65 66 69 78 20 6c 69 73 74 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 69 74 20 61 63 74 | prefix.list.is.specified,.it.act |
| 54e00 | 73 20 61 73 20 70 65 72 6d 69 74 2e 20 49 66 20 69 70 20 70 72 65 66 69 78 20 6c 69 73 74 20 69 | s.as.permit..If.ip.prefix.list.i |
| 54e20 | 73 20 64 65 66 69 6e 65 64 2c 20 61 6e 64 20 6e 6f 20 6d 61 74 63 68 20 69 73 20 66 6f 75 6e 64 | s.defined,.and.no.match.is.found |
| 54e40 | 2c 20 64 65 66 61 75 6c 74 20 64 65 6e 79 20 69 73 20 61 70 70 6c 69 65 64 2e 00 49 66 20 6e 6f | ,.default.deny.is.applied..If.no |
| 54e60 | 20 6f 70 74 69 6f 6e 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 74 68 69 73 20 64 65 66 61 75 | .option.is.specified,.this.defau |
| 54e80 | 6c 74 73 20 74 6f 20 60 61 6c 6c 60 2e 00 49 66 20 6e 6f 74 20 73 65 74 20 28 64 65 66 61 75 6c | lts.to.`all`..If.not.set.(defaul |
| 54ea0 | 74 29 20 61 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 68 61 76 65 20 6d 75 6c 74 69 70 6c 65 20 6e | t).allows.you.to.have.multiple.n |
| 54ec0 | 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 73 20 6f 6e 20 74 68 65 20 73 61 6d 65 20 73 75 | etwork.interfaces.on.the.same.su |
| 54ee0 | 62 6e 65 74 2c 20 61 6e 64 20 68 61 76 65 20 74 68 65 20 41 52 50 73 20 66 6f 72 20 65 61 63 68 | bnet,.and.have.the.ARPs.for.each |
| 54f00 | 20 69 6e 74 65 72 66 61 63 65 20 62 65 20 61 6e 73 77 65 72 65 64 20 62 61 73 65 64 20 6f 6e 20 | .interface.be.answered.based.on. |
| 54f20 | 77 68 65 74 68 65 72 20 6f 72 20 6e 6f 74 20 74 68 65 20 6b 65 72 6e 65 6c 20 77 6f 75 6c 64 20 | whether.or.not.the.kernel.would. |
| 54f40 | 72 6f 75 74 65 20 61 20 70 61 63 6b 65 74 20 66 72 6f 6d 20 74 68 65 20 41 52 50 27 64 20 49 50 | route.a.packet.from.the.ARP'd.IP |
| 54f60 | 20 6f 75 74 20 74 68 61 74 20 69 6e 74 65 72 66 61 63 65 20 28 74 68 65 72 65 66 6f 72 65 20 79 | .out.that.interface.(therefore.y |
| 54f80 | 6f 75 20 6d 75 73 74 20 75 73 65 20 73 6f 75 72 63 65 20 62 61 73 65 64 20 72 6f 75 74 69 6e 67 | ou.must.use.source.based.routing |
| 54fa0 | 20 66 6f 72 20 74 68 69 73 20 74 6f 20 77 6f 72 6b 29 2e 00 49 66 20 6f 70 74 69 6f 6e 61 6c 20 | .for.this.to.work)..If.optional. |
| 54fc0 | 70 72 6f 66 69 6c 65 20 70 61 72 61 6d 65 74 65 72 20 69 73 20 75 73 65 64 2c 20 73 65 6c 65 63 | profile.parameter.is.used,.selec |
| 54fe0 | 74 20 61 20 42 46 44 20 70 72 6f 66 69 6c 65 20 66 6f 72 20 74 68 65 20 42 46 44 20 73 65 73 73 | t.a.BFD.profile.for.the.BFD.sess |
| 55000 | 69 6f 6e 73 20 63 72 65 61 74 65 64 20 76 69 61 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e | ions.created.via.this.interface. |
| 55020 | 00 49 66 20 73 65 74 20 74 68 65 20 6b 65 72 6e 65 6c 20 63 61 6e 20 72 65 73 70 6f 6e 64 20 74 | .If.set.the.kernel.can.respond.t |
| 55040 | 6f 20 61 72 70 20 72 65 71 75 65 73 74 73 20 77 69 74 68 20 61 64 64 72 65 73 73 65 73 20 66 72 | o.arp.requests.with.addresses.fr |
| 55060 | 6f 6d 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 73 2e 20 54 68 69 73 20 6d 61 79 20 73 65 | om.other.interfaces..This.may.se |
| 55080 | 65 6d 20 77 72 6f 6e 67 20 62 75 74 20 69 74 20 75 73 75 61 6c 6c 79 20 6d 61 6b 65 73 20 73 65 | em.wrong.but.it.usually.makes.se |
| 550a0 | 6e 73 65 2c 20 62 65 63 61 75 73 65 20 69 74 20 69 6e 63 72 65 61 73 65 73 20 74 68 65 20 63 68 | nse,.because.it.increases.the.ch |
| 550c0 | 61 6e 63 65 20 6f 66 20 73 75 63 63 65 73 73 66 75 6c 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e | ance.of.successful.communication |
| 550e0 | 2e 20 49 50 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 6f 77 6e 65 64 20 62 79 20 74 68 65 20 | ..IP.addresses.are.owned.by.the. |
| 55100 | 63 6f 6d 70 6c 65 74 65 20 68 6f 73 74 20 6f 6e 20 4c 69 6e 75 78 2c 20 6e 6f 74 20 62 79 20 70 | complete.host.on.Linux,.not.by.p |
| 55120 | 61 72 74 69 63 75 6c 61 72 20 69 6e 74 65 72 66 61 63 65 73 2e 20 4f 6e 6c 79 20 66 6f 72 20 6d | articular.interfaces..Only.for.m |
| 55140 | 6f 72 65 20 63 6f 6d 70 6c 65 78 20 73 65 74 75 70 73 20 6c 69 6b 65 20 6c 6f 61 64 2d 62 61 6c | ore.complex.setups.like.load-bal |
| 55160 | 61 6e 63 69 6e 67 2c 20 64 6f 65 73 20 74 68 69 73 20 62 65 68 61 76 69 6f 75 72 20 63 61 75 73 | ancing,.does.this.behaviour.caus |
| 55180 | 65 20 70 72 6f 62 6c 65 6d 73 2e 00 49 66 20 73 65 74 20 74 6f 20 61 6e 20 65 6d 70 74 79 20 73 | e.problems..If.set.to.an.empty.s |
| 551a0 | 74 72 69 6e 67 2c 20 74 68 65 20 6c 61 62 65 6c 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 61 64 64 | tring,.the.label.will.not.be.add |
| 551c0 | 65 64 2e 20 54 68 69 73 20 69 73 20 4e 4f 54 20 72 65 63 6f 6d 6d 65 6e 64 65 64 2c 20 61 73 20 | ed..This.is.NOT.recommended,.as. |
| 551e0 | 69 74 20 6d 61 6b 65 73 20 69 74 20 69 6d 70 6f 73 73 69 62 6c 65 20 74 6f 20 64 69 66 66 65 72 | it.makes.it.impossible.to.differ |
| 55200 | 65 6e 74 69 61 74 65 20 62 65 74 77 65 65 6e 20 6d 75 6c 74 69 70 6c 65 20 6d 65 74 72 69 63 73 | entiate.between.multiple.metrics |
| 55220 | 2e 00 49 66 20 73 65 74 20 74 6f 20 65 6e 61 62 6c 65 2c 20 6f 70 65 6e 76 70 6e 2d 6f 74 70 20 | ..If.set.to.enable,.openvpn-otp. |
| 55240 | 77 69 6c 6c 20 65 78 70 65 63 74 20 70 61 73 73 77 6f 72 64 20 61 73 20 72 65 73 75 6c 74 20 6f | will.expect.password.as.result.o |
| 55260 | 66 20 63 68 61 6c 6c 65 6e 67 65 2f 20 72 65 73 70 6f 6e 73 65 20 70 72 6f 74 6f 63 6f 6c 2e 00 | f.challenge/.response.protocol.. |
| 55280 | 49 66 20 73 65 74 2c 20 49 50 76 34 20 64 69 72 65 63 74 65 64 20 62 72 6f 61 64 63 61 73 74 20 | If.set,.IPv4.directed.broadcast. |
| 552a0 | 66 6f 72 77 61 72 64 69 6e 67 20 77 69 6c 6c 20 62 65 20 63 6f 6d 70 6c 65 74 65 6c 79 20 64 69 | forwarding.will.be.completely.di |
| 552c0 | 73 61 62 6c 65 64 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 77 68 65 74 68 65 72 20 70 65 72 | sabled.regardless.of.whether.per |
| 552e0 | 2d 69 6e 74 65 72 66 61 63 65 20 64 69 72 65 63 74 65 64 20 62 72 6f 61 64 63 61 73 74 20 66 6f | -interface.directed.broadcast.fo |
| 55300 | 72 77 61 72 64 69 6e 67 20 69 73 20 65 6e 61 62 6c 65 64 20 6f 72 20 6e 6f 74 2e 00 49 66 20 73 | rwarding.is.enabled.or.not..If.s |
| 55320 | 65 74 2c 20 74 68 65 20 64 6f 6d 61 69 6e 20 70 61 72 74 20 6f 66 20 74 68 65 20 68 6f 73 74 6e | et,.the.domain.part.of.the.hostn |
| 55340 | 61 6d 65 20 69 73 20 61 6c 77 61 79 73 20 73 65 6e 74 2c 20 65 76 65 6e 20 77 69 74 68 69 6e 20 | ame.is.always.sent,.even.within. |
| 55360 | 74 68 65 20 73 61 6d 65 20 64 6f 6d 61 69 6e 20 61 73 20 74 68 65 20 72 65 63 65 69 76 69 6e 67 | the.same.domain.as.the.receiving |
| 55380 | 20 73 79 73 74 65 6d 2e 00 49 66 20 73 65 74 2c 20 74 68 65 20 72 6f 75 74 65 72 20 77 69 6c 6c | .system..If.set,.the.router.will |
| 553a0 | 20 6e 6f 20 6c 6f 6e 67 65 72 20 73 65 6e 64 20 70 65 72 69 6f 64 69 63 20 72 6f 75 74 65 72 20 | .no.longer.send.periodic.router. |
| 553c0 | 61 64 76 65 72 74 69 73 65 6d 65 6e 74 73 20 61 6e 64 20 77 69 6c 6c 20 6e 6f 74 20 72 65 73 70 | advertisements.and.will.not.resp |
| 553e0 | 6f 6e 64 20 74 6f 20 72 6f 75 74 65 72 20 73 6f 6c 69 63 69 74 61 74 69 6f 6e 73 2e 00 49 66 20 | ond.to.router.solicitations..If. |
| 55400 | 73 75 66 66 69 78 20 69 73 20 6f 6d 69 74 74 65 64 2c 20 6d 69 6e 75 74 65 73 20 61 72 65 20 69 | suffix.is.omitted,.minutes.are.i |
| 55420 | 6d 70 6c 69 65 64 2e 00 49 66 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 6e 6f 2d 70 72 65 70 65 | mplied..If.the.:cfgcmd:`no-prepe |
| 55440 | 6e 64 60 20 61 74 74 72 69 62 75 74 65 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 74 68 65 6e | nd`.attribute.is.specified,.then |
| 55460 | 20 74 68 65 20 73 75 70 70 6c 69 65 64 20 6c 6f 63 61 6c 2d 61 73 20 69 73 20 6e 6f 74 20 70 72 | .the.supplied.local-as.is.not.pr |
| 55480 | 65 70 65 6e 64 65 64 20 74 6f 20 74 68 65 20 72 65 63 65 69 76 65 64 20 41 53 5f 50 41 54 48 2e | epended.to.the.received.AS_PATH. |
| 554a0 | 00 49 66 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 72 65 70 6c 61 63 65 2d 61 73 60 20 61 74 74 | .If.the.:cfgcmd:`replace-as`.att |
| 554c0 | 72 69 62 75 74 65 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 74 68 65 6e 20 6f 6e 6c 79 20 74 | ribute.is.specified,.then.only.t |
| 554e0 | 68 65 20 73 75 70 70 6c 69 65 64 20 6c 6f 63 61 6c 2d 61 73 20 69 73 20 70 72 65 70 65 6e 64 65 | he.supplied.local-as.is.prepende |
| 55500 | 64 20 74 6f 20 74 68 65 20 41 53 5f 50 41 54 48 20 77 68 65 6e 20 74 72 61 6e 73 6d 69 74 74 69 | d.to.the.AS_PATH.when.transmitti |
| 55520 | 6e 67 20 6c 6f 63 61 6c 2d 72 6f 75 74 65 20 75 70 64 61 74 65 73 20 74 6f 20 74 68 69 73 20 70 | ng.local-route.updates.to.this.p |
| 55540 | 65 65 72 2e 00 49 66 20 74 68 65 20 41 52 50 20 74 61 62 6c 65 20 61 6c 72 65 61 64 79 20 63 6f | eer..If.the.ARP.table.already.co |
| 55560 | 6e 74 61 69 6e 73 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 67 72 61 | ntains.the.IP.address.of.the.gra |
| 55580 | 74 75 69 74 6f 75 73 20 61 72 70 20 66 72 61 6d 65 2c 20 74 68 65 20 61 72 70 20 74 61 62 6c 65 | tuitous.arp.frame,.the.arp.table |
| 555a0 | 20 77 69 6c 6c 20 62 65 20 75 70 64 61 74 65 64 20 72 65 67 61 72 64 6c 65 73 73 20 69 66 20 74 | .will.be.updated.regardless.if.t |
| 555c0 | 68 69 73 20 73 65 74 74 69 6e 67 20 69 73 20 6f 6e 20 6f 72 20 6f 66 66 2e 00 49 66 20 74 68 65 | his.setting.is.on.or.off..If.the |
| 555e0 | 20 41 53 2d 50 61 74 68 20 66 6f 72 20 74 68 65 20 72 6f 75 74 65 20 68 61 73 20 61 20 70 72 69 | .AS-Path.for.the.route.has.a.pri |
| 55600 | 76 61 74 65 20 41 53 4e 20 62 65 74 77 65 65 6e 20 70 75 62 6c 69 63 20 41 53 4e 73 2c 20 69 74 | vate.ASN.between.public.ASNs,.it |
| 55620 | 20 69 73 20 61 73 73 75 6d 65 64 20 74 68 61 74 20 74 68 69 73 20 69 73 20 61 20 64 65 73 69 67 | .is.assumed.that.this.is.a.desig |
| 55640 | 6e 20 63 68 6f 69 63 65 2c 20 61 6e 64 20 74 68 65 20 70 72 69 76 61 74 65 20 41 53 4e 20 69 73 | n.choice,.and.the.private.ASN.is |
| 55660 | 20 6e 6f 74 20 72 65 6d 6f 76 65 64 2e 00 49 66 20 74 68 65 20 41 53 2d 50 61 74 68 20 66 6f 72 | .not.removed..If.the.AS-Path.for |
| 55680 | 20 74 68 65 20 72 6f 75 74 65 20 68 61 73 20 6f 6e 6c 79 20 70 72 69 76 61 74 65 20 41 53 4e 73 | .the.route.has.only.private.ASNs |
| 556a0 | 2c 20 74 68 65 20 70 72 69 76 61 74 65 20 41 53 4e 73 20 61 72 65 20 72 65 6d 6f 76 65 64 2e 00 | ,.the.private.ASNs.are.removed.. |
| 556c0 | 49 66 20 74 68 65 20 49 50 20 70 72 65 66 69 78 20 6d 61 73 6b 20 69 73 20 70 72 65 73 65 6e 74 | If.the.IP.prefix.mask.is.present |
| 556e0 | 2c 20 69 74 20 64 69 72 65 63 74 73 20 6f 70 65 6e 6e 68 72 70 20 74 6f 20 75 73 65 20 74 68 69 | ,.it.directs.opennhrp.to.use.thi |
| 55700 | 73 20 70 65 65 72 20 61 73 20 61 20 6e 65 78 74 20 68 6f 70 20 73 65 72 76 65 72 20 77 68 65 6e | s.peer.as.a.next.hop.server.when |
| 55720 | 20 73 65 6e 64 69 6e 67 20 52 65 73 6f 6c 75 74 69 6f 6e 20 52 65 71 75 65 73 74 73 20 6d 61 74 | .sending.Resolution.Requests.mat |
| 55740 | 63 68 69 6e 67 20 74 68 69 73 20 73 75 62 6e 65 74 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 53 | ching.this.subnet..If.the.RADIUS |
| 55760 | 20 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 44 65 | .server.sends.the.attribute.``De |
| 55780 | 6c 65 67 61 74 65 64 2d 49 50 76 36 2d 50 72 65 66 69 78 2d 50 6f 6f 6c 60 60 2c 20 49 50 76 36 | legated-IPv6-Prefix-Pool``,.IPv6 |
| 557a0 | 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 65 66 69 78 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 | .delegation.pefix.will.be.alloca |
| 557c0 | 74 65 64 20 66 72 6f 6d 20 61 20 70 72 65 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 | ted.from.a.predefined.IPv6.pool. |
| 557e0 | 60 60 64 65 6c 65 67 61 74 65 60 60 20 77 68 6f 73 65 20 6e 61 6d 65 20 65 71 75 61 6c 73 20 74 | ``delegate``.whose.name.equals.t |
| 55800 | 68 65 20 61 74 74 72 69 62 75 74 65 20 76 61 6c 75 65 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 | he.attribute.value..If.the.RADIU |
| 55820 | 53 20 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 44 | S.server.sends.the.attribute.``D |
| 55840 | 65 6c 65 67 61 74 65 64 2d 49 50 76 36 2d 50 72 65 66 69 78 2d 50 6f 6f 6c 60 60 2c 20 61 6e 20 | elegated-IPv6-Prefix-Pool``,.an. |
| 55860 | 49 50 76 36 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 20 77 69 6c 6c 20 62 65 20 61 | IPv6.delegation.prefix.will.be.a |
| 55880 | 6c 6c 6f 63 61 74 65 64 20 66 72 6f 6d 20 61 20 70 72 65 64 65 66 69 6e 65 64 20 49 50 76 36 20 | llocated.from.a.predefined.IPv6. |
| 558a0 | 70 6f 6f 6c 20 60 60 64 65 6c 65 67 61 74 65 60 60 20 77 68 6f 73 65 20 6e 61 6d 65 20 65 71 75 | pool.``delegate``.whose.name.equ |
| 558c0 | 61 6c 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 76 61 6c 75 65 2e 00 49 66 20 74 68 65 20 | als.the.attribute.value..If.the. |
| 558e0 | 52 41 44 49 55 53 20 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 74 | RADIUS.server.sends.the.attribut |
| 55900 | 65 20 60 60 46 72 61 6d 65 64 2d 49 50 2d 41 64 64 72 65 73 73 60 60 20 74 68 65 6e 20 74 68 69 | e.``Framed-IP-Address``.then.thi |
| 55920 | 73 20 49 50 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 74 | s.IP.address.will.be.allocated.t |
| 55940 | 6f 20 74 68 65 20 63 6c 69 65 6e 74 20 61 6e 64 20 74 68 65 20 6f 70 74 69 6f 6e 20 60 60 64 65 | o.the.client.and.the.option.``de |
| 55960 | 66 61 75 6c 74 2d 70 6f 6f 6c 60 60 20 77 69 74 68 69 6e 20 74 68 65 20 43 4c 49 20 63 6f 6e 66 | fault-pool``.within.the.CLI.conf |
| 55980 | 69 67 20 69 73 20 62 65 69 6e 67 20 69 67 6e 6f 72 65 64 2e 00 49 66 20 74 68 65 20 52 41 44 49 | ig.is.being.ignored..If.the.RADI |
| 559a0 | 55 53 20 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 | US.server.sends.the.attribute.`` |
| 559c0 | 46 72 61 6d 65 64 2d 49 50 2d 41 64 64 72 65 73 73 60 60 20 74 68 65 6e 20 74 68 69 73 20 49 50 | Framed-IP-Address``.then.this.IP |
| 559e0 | 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 74 6f 20 74 68 | .address.will.be.allocated.to.th |
| 55a00 | 65 20 63 6c 69 65 6e 74 20 61 6e 64 20 74 68 65 20 6f 70 74 69 6f 6e 20 60 60 64 65 66 61 75 6c | e.client.and.the.option.``defaul |
| 55a20 | 74 2d 70 6f 6f 6c 60 60 20 77 69 74 68 69 6e 20 74 68 65 20 43 4c 49 20 63 6f 6e 66 69 67 20 77 | t-pool``.within.the.CLI.config.w |
| 55a40 | 69 6c 6c 20 62 65 20 69 67 6e 6f 72 65 64 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 | ill.be.ignored..If.the.RADIUS.se |
| 55a60 | 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 46 72 61 6d 65 | rver.sends.the.attribute.``Frame |
| 55a80 | 64 2d 49 50 2d 41 64 64 72 65 73 73 60 60 20 74 68 65 6e 20 74 68 69 73 20 49 50 20 61 64 64 72 | d-IP-Address``.then.this.IP.addr |
| 55aa0 | 65 73 73 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 74 6f 20 74 68 65 20 63 6c 69 | ess.will.be.allocated.to.the.cli |
| 55ac0 | 65 6e 74 20 61 6e 64 20 74 68 65 20 6f 70 74 69 6f 6e 20 60 60 64 65 66 61 75 6c 74 2d 70 6f 6f | ent.and.the.option.``default-poo |
| 55ae0 | 6c 60 60 20 77 69 74 68 69 6e 20 74 68 65 20 43 4c 49 20 63 6f 6e 66 69 67 20 77 69 6c 6c 20 62 | l``.within.the.CLI.config.will.b |
| 55b00 | 65 69 6e 67 20 69 67 6e 6f 72 65 64 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 | eing.ignored..If.the.RADIUS.serv |
| 55b20 | 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 46 72 61 6d 65 64 2d | er.sends.the.attribute.``Framed- |
| 55b40 | 49 50 2d 41 64 64 72 65 73 73 60 60 20 74 68 65 6e 20 74 68 69 73 20 49 50 20 61 64 64 72 65 73 | IP-Address``.then.this.IP.addres |
| 55b60 | 73 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 74 6f 20 74 68 65 20 63 6c 69 65 6e | s.will.be.allocated.to.the.clien |
| 55b80 | 74 20 61 6e 64 20 74 68 65 20 6f 70 74 69 6f 6e 20 69 70 2d 70 6f 6f 6c 20 77 69 74 68 69 6e 20 | t.and.the.option.ip-pool.within. |
| 55ba0 | 74 68 65 20 43 4c 49 20 63 6f 6e 66 69 67 20 69 73 20 62 65 69 6e 67 20 69 67 6e 6f 72 65 64 2e | the.CLI.config.is.being.ignored. |
| 55bc0 | 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 | .If.the.RADIUS.server.sends.the. |
| 55be0 | 61 74 74 72 69 62 75 74 65 20 60 60 46 72 61 6d 65 64 2d 50 6f 6f 6c 60 60 2c 20 49 50 20 61 64 | attribute.``Framed-Pool``,.IP.ad |
| 55c00 | 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 66 72 6f 6d 20 61 20 70 | dress.will.be.allocated.from.a.p |
| 55c20 | 72 65 64 65 66 69 6e 65 64 20 49 50 20 70 6f 6f 6c 20 77 68 6f 73 65 20 6e 61 6d 65 20 65 71 75 | redefined.IP.pool.whose.name.equ |
| 55c40 | 61 6c 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 76 61 6c 75 65 2e 00 49 66 20 74 68 65 20 | als.the.attribute.value..If.the. |
| 55c60 | 52 41 44 49 55 53 20 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 74 | RADIUS.server.sends.the.attribut |
| 55c80 | 65 20 60 60 46 72 61 6d 65 64 2d 50 6f 6f 6c 60 60 2c 20 74 68 65 6e 20 74 68 65 20 49 50 20 61 | e.``Framed-Pool``,.then.the.IP.a |
| 55ca0 | 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 66 72 6f 6d 20 61 20 | ddress.will.be.allocated.from.a. |
| 55cc0 | 70 72 65 64 65 66 69 6e 65 64 20 49 50 20 70 6f 6f 6c 20 77 68 6f 73 65 20 6e 61 6d 65 20 65 71 | predefined.IP.pool.whose.name.eq |
| 55ce0 | 75 61 6c 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 76 61 6c 75 65 2e 00 49 66 20 74 68 65 | uals.the.attribute.value..If.the |
| 55d00 | 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 | .RADIUS.server.sends.the.attribu |
| 55d20 | 74 65 20 60 60 53 74 61 74 65 66 75 6c 2d 49 50 76 36 2d 41 64 64 72 65 73 73 2d 50 6f 6f 6c 60 | te.``Stateful-IPv6-Address-Pool` |
| 55d40 | 60 2c 20 49 50 76 36 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 | `,.IPv6.address.will.be.allocate |
| 55d60 | 64 20 66 72 6f 6d 20 61 20 70 72 65 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 60 60 | d.from.a.predefined.IPv6.pool.`` |
| 55d80 | 70 72 65 66 69 78 60 60 20 77 68 6f 73 65 20 6e 61 6d 65 20 65 71 75 61 6c 73 20 74 68 65 20 61 | prefix``.whose.name.equals.the.a |
| 55da0 | 74 74 72 69 62 75 74 65 20 76 61 6c 75 65 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 | ttribute.value..If.the.RADIUS.se |
| 55dc0 | 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 53 74 61 74 65 | rver.sends.the.attribute.``State |
| 55de0 | 66 75 6c 2d 49 50 76 36 2d 41 64 64 72 65 73 73 2d 50 6f 6f 6c 60 60 2c 20 74 68 65 20 49 50 76 | ful-IPv6-Address-Pool``,.the.IPv |
| 55e00 | 36 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 66 72 6f 6d | 6.address.will.be.allocated.from |
| 55e20 | 20 61 20 70 72 65 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 60 60 70 72 65 66 69 78 | .a.predefined.IPv6.pool.``prefix |
| 55e40 | 60 60 20 77 68 6f 73 65 20 6e 61 6d 65 20 65 71 75 61 6c 73 20 74 68 65 20 61 74 74 72 69 62 75 | ``.whose.name.equals.the.attribu |
| 55e60 | 74 65 20 76 61 6c 75 65 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 75 | te.value..If.the.RADIUS.server.u |
| 55e80 | 73 65 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 4e 41 53 2d 50 6f 72 74 2d 49 64 60 | ses.the.attribute.``NAS-Port-Id` |
| 55ea0 | 60 2c 20 70 70 70 20 74 75 6e 6e 65 6c 73 20 77 69 6c 6c 20 62 65 20 72 65 6e 61 6d 65 64 2e 00 | `,.ppp.tunnels.will.be.renamed.. |
| 55ec0 | 49 66 20 74 68 65 20 61 76 65 72 61 67 65 20 71 75 65 75 65 20 73 69 7a 65 20 69 73 20 6c 6f 77 | If.the.average.queue.size.is.low |
| 55ee0 | 65 72 20 74 68 61 6e 20 74 68 65 20 2a 2a 6d 69 6e 2d 74 68 72 65 73 68 6f 6c 64 2a 2a 2c 20 61 | er.than.the.**min-threshold**,.a |
| 55f00 | 6e 20 61 72 72 69 76 69 6e 67 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 70 6c 61 63 65 64 | n.arriving.packet.will.be.placed |
| 55f20 | 20 69 6e 20 74 68 65 20 71 75 65 75 65 2e 00 49 66 20 74 68 65 20 63 75 72 72 65 6e 74 20 71 75 | .in.the.queue..If.the.current.qu |
| 55f40 | 65 75 65 20 73 69 7a 65 20 69 73 20 6c 61 72 67 65 72 20 74 68 61 6e 20 2a 2a 71 75 65 75 65 2d | eue.size.is.larger.than.**queue- |
| 55f60 | 6c 69 6d 69 74 2a 2a 2c 20 74 68 65 6e 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 62 65 20 64 72 | limit**,.then.packets.will.be.dr |
| 55f80 | 6f 70 70 65 64 2e 20 54 68 65 20 61 76 65 72 61 67 65 20 71 75 65 75 65 20 73 69 7a 65 20 64 65 | opped..The.average.queue.size.de |
| 55fa0 | 70 65 6e 64 73 20 6f 6e 20 69 74 73 20 66 6f 72 6d 65 72 20 61 76 65 72 61 67 65 20 73 69 7a 65 | pends.on.its.former.average.size |
| 55fc0 | 20 61 6e 64 20 69 74 73 20 63 75 72 72 65 6e 74 20 6f 6e 65 2e 00 49 66 20 74 68 65 20 69 6e 74 | .and.its.current.one..If.the.int |
| 55fe0 | 65 72 66 61 63 65 20 77 68 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 | erface.where.the.packet.was.rece |
| 56000 | 69 76 65 64 20 69 73 20 70 61 72 74 20 6f 66 20 61 20 62 72 69 64 67 65 2c 20 74 68 65 6e 20 70 | ived.is.part.of.a.bridge,.then.p |
| 56020 | 61 63 6b 65 74 69 73 20 70 72 6f 63 65 73 73 65 64 20 61 74 20 74 68 65 20 2a 2a 42 72 69 64 67 | acketis.processed.at.the.**Bridg |
| 56040 | 65 20 4c 61 79 65 72 2a 2a 2c 20 77 68 69 63 68 20 63 6f 6e 74 61 69 6e 73 20 61 20 62 61 73 69 | e.Layer**,.which.contains.a.basi |
| 56060 | 63 20 73 65 74 75 70 20 66 6f 72 20 62 72 69 64 67 65 20 66 69 6c 74 65 72 69 6e 67 3a 00 49 66 | c.setup.for.bridge.filtering:.If |
| 56080 | 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 | .the.interface.where.the.packet. |
| 560a0 | 77 61 73 20 72 65 63 65 69 76 65 64 20 69 73 20 70 61 72 74 20 6f 66 20 61 20 62 72 69 64 67 65 | was.received.is.part.of.a.bridge |
| 560c0 | 2c 20 74 68 65 6e 20 74 68 65 20 70 61 63 6b 65 74 20 69 73 20 70 72 6f 63 65 73 73 65 64 20 61 | ,.then.the.packet.is.processed.a |
| 560e0 | 74 20 74 68 65 20 2a 2a 42 72 69 64 67 65 20 4c 61 79 65 72 2a 2a 2c 20 77 68 69 63 68 20 63 6f | t.the.**Bridge.Layer**,.which.co |
| 56100 | 6e 74 61 69 6e 73 20 61 20 62 61 73 69 63 20 73 65 74 75 70 20 66 6f 72 20 62 72 69 64 67 65 20 | ntains.a.basic.setup.for.bridge. |
| 56120 | 66 69 6c 74 65 72 69 6e 67 3a 00 49 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 72 | filtering:.If.the.interface.wher |
| 56140 | 65 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 69 76 65 64 20 69 73 20 70 61 72 | e.the.packet.was.received.is.par |
| 56160 | 74 20 6f 66 20 61 20 62 72 69 64 67 65 2c 20 74 68 65 6e 20 74 68 65 20 70 61 63 6b 65 74 20 69 | t.of.a.bridge,.then.the.packet.i |
| 56180 | 73 20 70 72 6f 63 65 73 73 65 64 20 61 74 20 74 68 65 20 2a 2a 42 72 69 64 67 65 20 4c 61 79 65 | s.processed.at.the.**Bridge.Laye |
| 561a0 | 72 2a 2a 3a 00 49 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 72 65 20 74 68 65 20 | r**:.If.the.interface.where.the. |
| 561c0 | 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 69 76 65 64 20 69 73 6e 27 74 20 70 61 72 74 20 6f | packet.was.received.isn't.part.o |
| 561e0 | 66 20 61 20 62 72 69 64 67 65 2c 20 74 68 65 6e 20 70 61 63 6b 65 74 20 69 73 20 70 72 6f 63 65 | f.a.bridge,.then.packet.is.proce |
| 56200 | 73 73 65 64 20 61 74 20 74 68 65 20 2a 2a 49 50 20 4c 61 79 65 72 2a 2a 3a 00 49 66 20 74 68 65 | ssed.at.the.**IP.Layer**:.If.the |
| 56220 | 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 | .interface.where.the.packet.was. |
| 56240 | 72 65 63 65 69 76 65 64 20 69 73 6e 27 74 20 70 61 72 74 20 6f 66 20 61 20 62 72 69 64 67 65 2c | received.isn't.part.of.a.bridge, |
| 56260 | 20 74 68 65 6e 20 70 61 63 6b 65 74 69 73 20 70 72 6f 63 65 73 73 65 64 20 61 74 20 74 68 65 20 | .then.packetis.processed.at.the. |
| 56280 | 2a 2a 49 50 20 4c 61 79 65 72 2a 2a 3a 00 49 66 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 20 69 73 | **IP.Layer**:.If.the.protocol.is |
| 562a0 | 20 49 50 76 36 20 74 68 65 6e 20 74 68 65 20 73 6f 75 72 63 65 20 61 6e 64 20 64 65 73 74 69 6e | .IPv6.then.the.source.and.destin |
| 562c0 | 61 74 69 6f 6e 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 66 69 72 73 74 20 68 61 73 68 65 64 | ation.addresses.are.first.hashed |
| 562e0 | 20 75 73 69 6e 67 20 69 70 76 36 5f 61 64 64 72 5f 68 61 73 68 2e 00 49 66 20 74 68 65 20 73 74 | .using.ipv6_addr_hash..If.the.st |
| 56300 | 61 74 69 63 61 6c 6c 79 20 6d 61 70 70 65 64 20 70 65 65 72 20 69 73 20 72 75 6e 6e 69 6e 67 20 | atically.mapped.peer.is.running. |
| 56320 | 43 69 73 63 6f 20 49 4f 53 2c 20 73 70 65 63 69 66 79 20 74 68 65 20 63 69 73 63 6f 20 6b 65 79 | Cisco.IOS,.specify.the.cisco.key |
| 56340 | 77 6f 72 64 2e 20 49 74 20 69 73 20 75 73 65 64 20 74 6f 20 66 69 78 20 73 74 61 74 69 63 61 6c | word..It.is.used.to.fix.statical |
| 56360 | 6c 79 20 74 68 65 20 52 65 67 69 73 74 72 61 74 69 6f 6e 20 52 65 71 75 65 73 74 20 49 44 20 73 | ly.the.Registration.Request.ID.s |
| 56380 | 6f 20 74 68 61 74 20 61 20 6d 61 74 63 68 69 6e 67 20 50 75 72 67 65 20 52 65 71 75 65 73 74 20 | o.that.a.matching.Purge.Request. |
| 563a0 | 63 61 6e 20 62 65 20 73 65 6e 74 20 69 66 20 4e 42 4d 41 20 61 64 64 72 65 73 73 20 68 61 73 20 | can.be.sent.if.NBMA.address.has. |
| 563c0 | 63 68 61 6e 67 65 64 2e 20 54 68 69 73 20 69 73 20 74 6f 20 77 6f 72 6b 20 61 72 6f 75 6e 64 20 | changed..This.is.to.work.around. |
| 563e0 | 62 72 6f 6b 65 6e 20 49 4f 53 20 77 68 69 63 68 20 72 65 71 75 69 72 65 73 20 50 75 72 67 65 20 | broken.IOS.which.requires.Purge. |
| 56400 | 52 65 71 75 65 73 74 20 49 44 20 74 6f 20 6d 61 74 63 68 20 74 68 65 20 6f 72 69 67 69 6e 61 6c | Request.ID.to.match.the.original |
| 56420 | 20 52 65 67 69 73 74 72 61 74 69 6f 6e 20 52 65 71 75 65 73 74 20 49 44 2e 00 49 66 20 74 68 65 | .Registration.Request.ID..If.the |
| 56440 | 20 73 79 73 74 65 6d 20 64 65 74 65 63 74 73 20 61 6e 20 75 6e 63 6f 6e 66 69 67 75 72 65 64 20 | .system.detects.an.unconfigured. |
| 56460 | 77 69 72 65 6c 65 73 73 20 64 65 76 69 63 65 2c 20 69 74 20 77 69 6c 6c 20 62 65 20 61 75 74 6f | wireless.device,.it.will.be.auto |
| 56480 | 6d 61 74 69 63 61 6c 6c 79 20 61 64 64 65 64 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | matically.added.the.configuratio |
| 564a0 | 6e 20 74 72 65 65 2c 20 73 70 65 63 69 66 79 69 6e 67 20 61 6e 79 20 64 65 74 65 63 74 65 64 20 | n.tree,.specifying.any.detected. |
| 564c0 | 73 65 74 74 69 6e 67 73 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 2c 20 69 74 73 20 4d 41 43 20 61 | settings.(for.example,.its.MAC.a |
| 564e0 | 64 64 72 65 73 73 29 20 61 6e 64 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 72 75 6e 20 69 6e | ddress).and.configured.to.run.in |
| 56500 | 20 6d 6f 6e 69 74 6f 72 20 6d 6f 64 65 2e 00 49 66 20 74 68 65 20 74 61 62 6c 65 20 69 73 20 65 | .monitor.mode..If.the.table.is.e |
| 56520 | 6d 70 74 79 20 61 6e 64 20 79 6f 75 20 68 61 76 65 20 61 20 77 61 72 6e 69 6e 67 20 6d 65 73 73 | mpty.and.you.have.a.warning.mess |
| 56540 | 61 67 65 2c 20 69 74 20 6d 65 61 6e 73 20 63 6f 6e 6e 74 72 61 63 6b 20 69 73 20 6e 6f 74 20 65 | age,.it.means.conntrack.is.not.e |
| 56560 | 6e 61 62 6c 65 64 2e 20 54 6f 20 65 6e 61 62 6c 65 20 63 6f 6e 6e 74 72 61 63 6b 2c 20 6a 75 73 | nabled..To.enable.conntrack,.jus |
| 56580 | 74 20 63 72 65 61 74 65 20 61 20 4e 41 54 20 6f 72 20 61 20 66 69 72 65 77 61 6c 6c 20 72 75 6c | t.create.a.NAT.or.a.firewall.rul |
| 565a0 | 65 2e 20 3a 63 66 67 63 6d 64 3a 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 73 74 61 74 65 2d 70 | e..:cfgcmd:`set.firewall.state-p |
| 565c0 | 6f 6c 69 63 79 20 65 73 74 61 62 6c 69 73 68 65 64 20 61 63 74 69 6f 6e 20 61 63 63 65 70 74 60 | olicy.established.action.accept` |
| 565e0 | 00 49 66 20 74 68 65 72 65 20 61 72 65 20 6e 6f 20 66 72 65 65 20 61 64 64 72 65 73 73 65 73 20 | .If.there.are.no.free.addresses. |
| 56600 | 62 75 74 20 74 68 65 72 65 20 61 72 65 20 61 62 61 6e 64 6f 6e 65 64 20 49 50 20 61 64 64 72 65 | but.there.are.abandoned.IP.addre |
| 56620 | 73 73 65 73 2c 20 74 68 65 20 44 48 43 50 20 73 65 72 76 65 72 20 77 69 6c 6c 20 61 74 74 65 6d | sses,.the.DHCP.server.will.attem |
| 56640 | 70 74 20 74 6f 20 72 65 63 6c 61 69 6d 20 61 6e 20 61 62 61 6e 64 6f 6e 65 64 20 49 50 20 61 64 | pt.to.reclaim.an.abandoned.IP.ad |
| 56660 | 64 72 65 73 73 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 76 61 6c 75 65 20 6f 66 | dress.regardless.of.the.value.of |
| 56680 | 20 61 62 61 6e 64 6f 6e 2d 6c 65 61 73 65 2d 74 69 6d 65 2e 00 49 66 20 74 68 65 72 65 20 69 73 | .abandon-lease-time..If.there.is |
| 566a0 | 20 53 4e 41 54 20 72 75 6c 65 73 20 6f 6e 20 65 74 68 31 2c 20 6e 65 65 64 20 74 6f 20 61 64 64 | .SNAT.rules.on.eth1,.need.to.add |
| 566c0 | 20 65 78 63 6c 75 64 65 20 72 75 6c 65 00 49 66 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 | .exclude.rule.If.this.command.is |
| 566e0 | 20 69 6e 76 6f 6b 65 64 20 66 72 6f 6d 20 63 6f 6e 66 69 67 75 72 65 20 6d 6f 64 65 20 77 69 74 | .invoked.from.configure.mode.wit |
| 56700 | 68 20 74 68 65 20 60 60 72 75 6e 60 60 20 70 72 65 66 69 78 20 74 68 65 20 6b 65 79 20 69 73 20 | h.the.``run``.prefix.the.key.is. |
| 56720 | 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 69 6e 73 74 61 6c 6c 65 64 20 74 6f 20 74 68 65 20 61 | automatically.installed.to.the.a |
| 56740 | 70 70 72 6f 70 72 69 61 74 65 20 69 6e 74 65 72 66 61 63 65 3a 00 49 66 20 74 68 69 73 20 69 73 | ppropriate.interface:.If.this.is |
| 56760 | 20 73 65 74 20 74 68 65 20 72 65 6c 61 79 20 61 67 65 6e 74 20 77 69 6c 6c 20 69 6e 73 65 72 74 | .set.the.relay.agent.will.insert |
| 56780 | 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 49 44 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 69 | .the.interface.ID..This.option.i |
| 567a0 | 73 20 73 65 74 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 69 66 20 6d 6f 72 65 20 74 68 61 6e | s.set.automatically.if.more.than |
| 567c0 | 20 6f 6e 65 20 6c 69 73 74 65 6e 69 6e 67 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 69 6e | .one.listening.interfaces.are.in |
| 567e0 | 20 75 73 65 2e 00 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 65 6e 61 62 6c 65 64 2c | .use..If.this.option.is.enabled, |
| 56800 | 20 74 68 65 6e 20 74 68 65 20 61 6c 72 65 61 64 79 2d 73 65 6c 65 63 74 65 64 20 63 68 65 63 6b | .then.the.already-selected.check |
| 56820 | 2c 20 77 68 65 72 65 20 61 6c 72 65 61 64 79 20 73 65 6c 65 63 74 65 64 20 65 42 47 50 20 72 6f | ,.where.already.selected.eBGP.ro |
| 56840 | 75 74 65 73 20 61 72 65 20 70 72 65 66 65 72 72 65 64 2c 20 69 73 20 73 6b 69 70 70 65 64 2e 00 | utes.are.preferred,.is.skipped.. |
| 56860 | 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 67 69 76 65 6e 2c 20 6f 6e 6c 79 20 53 53 | If.this.option.is.given,.only.SS |
| 56880 | 54 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 | TP.connections.to.the.specified. |
| 568a0 | 68 6f 73 74 20 61 6e 64 20 77 69 74 68 20 74 68 65 20 73 61 6d 65 20 54 4c 53 20 53 4e 49 20 77 | host.and.with.the.same.TLS.SNI.w |
| 568c0 | 69 6c 6c 20 62 65 20 61 6c 6c 6f 77 65 64 2e 00 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 | ill.be.allowed..If.this.option.i |
| 568e0 | 73 20 73 70 65 63 69 66 69 65 64 20 61 6e 64 20 69 73 20 67 72 65 61 74 65 72 20 74 68 61 6e 20 | s.specified.and.is.greater.than. |
| 56900 | 30 2c 20 74 68 65 6e 20 74 68 65 20 50 50 50 20 6d 6f 64 75 6c 65 20 77 69 6c 6c 20 73 65 6e 64 | 0,.then.the.PPP.module.will.send |
| 56920 | 20 4c 43 50 20 65 63 68 6f 20 72 65 71 75 65 73 74 73 20 65 76 65 72 79 20 60 3c 69 6e 74 65 72 | .LCP.echo.requests.every.`<inter |
| 56940 | 76 61 6c 3e 60 20 73 65 63 6f 6e 64 73 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 | val>`.seconds..Default.value.is. |
| 56960 | 2a 2a 33 30 2a 2a 2e 00 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 73 70 65 63 69 66 | **30**..If.this.option.is.specif |
| 56980 | 69 65 64 20 61 6e 64 20 69 73 20 67 72 65 61 74 65 72 20 74 68 61 6e 20 30 2c 20 74 68 65 6e 20 | ied.and.is.greater.than.0,.then. |
| 569a0 | 74 68 65 20 50 50 50 20 6d 6f 64 75 6c 65 20 77 69 6c 6c 20 73 65 6e 64 20 4c 43 50 20 70 69 6e | the.PPP.module.will.send.LCP.pin |
| 569c0 | 67 73 20 6f 66 20 74 68 65 20 65 63 68 6f 20 72 65 71 75 65 73 74 20 65 76 65 72 79 20 60 3c 69 | gs.of.the.echo.request.every.`<i |
| 569e0 | 6e 74 65 72 76 61 6c 3e 60 20 73 65 63 6f 6e 64 73 2e 00 49 66 20 74 68 69 73 20 6f 70 74 69 6f | nterval>`.seconds..If.this.optio |
| 56a00 | 6e 20 69 73 20 73 70 65 63 69 66 69 65 64 20 61 6e 64 20 69 73 20 67 72 65 61 74 65 72 20 74 68 | n.is.specified.and.is.greater.th |
| 56a20 | 61 6e 20 30 2c 20 74 68 65 6e 20 74 68 65 20 50 50 50 20 6d 6f 64 75 6c 65 20 77 69 6c 6c 20 73 | an.0,.then.the.PPP.module.will.s |
| 56a40 | 65 6e 64 20 4c 43 50 20 70 69 6e 67 73 20 6f 66 20 74 68 65 20 65 63 68 6f 20 72 65 71 75 65 73 | end.LCP.pings.of.the.echo.reques |
| 56a60 | 74 20 65 76 65 72 79 20 60 3c 69 6e 74 65 72 76 61 6c 3e 60 20 73 65 63 6f 6e 64 73 2e 20 44 65 | t.every.`<interval>`.seconds..De |
| 56a80 | 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 2a 2a 33 30 2a 2a 2e 00 49 66 20 74 68 69 73 20 6f | fault.value.is.**30**..If.this.o |
| 56aa0 | 70 74 69 6f 6e 20 69 73 20 75 6e 73 65 74 20 28 64 65 66 61 75 6c 74 29 2c 20 69 6e 63 6f 6d 69 | ption.is.unset.(default),.incomi |
| 56ac0 | 6e 67 20 49 50 20 64 69 72 65 63 74 65 64 20 62 72 6f 61 64 63 61 73 74 20 70 61 63 6b 65 74 73 | ng.IP.directed.broadcast.packets |
| 56ae0 | 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 66 6f 72 77 61 72 64 65 64 2e 00 49 66 20 74 68 69 73 20 | .will.not.be.forwarded..If.this. |
| 56b00 | 6f 70 74 69 6f 6e 20 69 73 20 75 6e 73 65 74 20 28 64 65 66 61 75 6c 74 29 2c 20 72 65 70 6c 79 | option.is.unset.(default),.reply |
| 56b20 | 20 66 6f 72 20 61 6e 79 20 6c 6f 63 61 6c 20 74 61 72 67 65 74 20 49 50 20 61 64 64 72 65 73 73 | .for.any.local.target.IP.address |
| 56b40 | 2c 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 61 6e 79 20 69 6e 74 65 72 66 61 63 65 2e 00 49 | ,.configured.on.any.interface..I |
| 56b60 | 66 20 74 68 69 73 20 70 61 72 61 6d 65 74 65 72 20 69 73 20 6e 6f 74 20 73 65 74 20 6f 72 20 30 | f.this.parameter.is.not.set.or.0 |
| 56b80 | 2c 20 61 6e 20 6f 6e 2d 64 65 6d 61 6e 64 20 6c 69 6e 6b 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 | ,.an.on-demand.link.will.not.be. |
| 56ba0 | 74 61 6b 65 6e 20 64 6f 77 6e 20 77 68 65 6e 20 69 74 20 69 73 20 69 64 6c 65 20 61 6e 64 20 61 | taken.down.when.it.is.idle.and.a |
| 56bc0 | 66 74 65 72 20 74 68 65 20 69 6e 69 74 69 61 6c 20 65 73 74 61 62 6c 69 73 68 6d 65 6e 74 20 6f | fter.the.initial.establishment.o |
| 56be0 | 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 49 74 20 77 69 6c 6c 20 73 74 61 79 20 75 | f.the.connection..It.will.stay.u |
| 56c00 | 70 20 66 6f 72 65 76 65 72 2e 00 49 66 20 74 68 69 73 20 70 61 72 61 6d 65 74 65 72 20 69 73 20 | p.forever..If.this.parameter.is. |
| 56c20 | 6e 6f 74 20 73 65 74 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 68 6f 6c 64 6f 66 66 20 74 69 6d | not.set,.the.default.holdoff.tim |
| 56c40 | 65 20 69 73 20 33 30 20 73 65 63 6f 6e 64 73 2e 00 49 66 20 75 6e 73 65 74 2c 20 69 6e 63 6f 6d | e.is.30.seconds..If.unset,.incom |
| 56c60 | 69 6e 67 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 52 41 44 49 55 53 20 73 65 | ing.connections.to.the.RADIUS.se |
| 56c80 | 72 76 65 72 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 6e 65 61 72 65 73 74 20 69 6e 74 65 72 66 | rver.will.use.the.nearest.interf |
| 56ca0 | 61 63 65 20 61 64 64 72 65 73 73 20 70 6f 69 6e 74 69 6e 67 20 74 6f 77 61 72 64 73 20 74 68 65 | ace.address.pointing.towards.the |
| 56cc0 | 20 73 65 72 76 65 72 20 2d 20 6d 61 6b 69 6e 67 20 69 74 20 65 72 72 6f 72 20 70 72 6f 6e 65 20 | .server.-.making.it.error.prone. |
| 56ce0 | 6f 6e 20 65 2e 67 2e 20 4f 53 50 46 20 6e 65 74 77 6f 72 6b 73 20 77 68 65 6e 20 61 20 6c 69 6e | on.e.g..OSPF.networks.when.a.lin |
| 56d00 | 6b 20 66 61 69 6c 73 20 61 6e 64 20 61 20 62 61 63 6b 75 70 20 72 6f 75 74 65 20 69 73 20 74 61 | k.fails.and.a.backup.route.is.ta |
| 56d20 | 6b 65 6e 2e 00 49 66 20 75 6e 73 65 74 2c 20 69 6e 63 6f 6d 69 6e 67 20 63 6f 6e 6e 65 63 74 69 | ken..If.unset,.incoming.connecti |
| 56d40 | 6f 6e 73 20 74 6f 20 74 68 65 20 54 41 43 41 43 53 20 73 65 72 76 65 72 20 77 69 6c 6c 20 75 73 | ons.to.the.TACACS.server.will.us |
| 56d60 | 65 20 74 68 65 20 6e 65 61 72 65 73 74 20 69 6e 74 65 72 66 61 63 65 20 61 64 64 72 65 73 73 20 | e.the.nearest.interface.address. |
| 56d80 | 70 6f 69 6e 74 69 6e 67 20 74 6f 77 61 72 64 73 20 74 68 65 20 73 65 72 76 65 72 20 2d 20 6d 61 | pointing.towards.the.server.-.ma |
| 56da0 | 6b 69 6e 67 20 69 74 20 65 72 72 6f 72 20 70 72 6f 6e 65 20 6f 6e 20 65 2e 67 2e 20 4f 53 50 46 | king.it.error.prone.on.e.g..OSPF |
| 56dc0 | 20 6e 65 74 77 6f 72 6b 73 20 77 68 65 6e 20 61 20 6c 69 6e 6b 20 66 61 69 6c 73 20 61 6e 64 20 | .networks.when.a.link.fails.and. |
| 56de0 | 61 20 62 61 63 6b 75 70 20 72 6f 75 74 65 20 69 73 20 74 61 6b 65 6e 2e 00 49 66 20 79 6f 75 20 | a.backup.route.is.taken..If.you. |
| 56e00 | 61 70 70 6c 79 20 61 20 70 61 72 61 6d 65 74 65 72 20 74 6f 20 61 6e 20 69 6e 64 69 76 69 64 75 | apply.a.parameter.to.an.individu |
| 56e20 | 61 6c 20 6e 65 69 67 68 62 6f 72 20 49 50 20 61 64 64 72 65 73 73 2c 20 79 6f 75 20 6f 76 65 72 | al.neighbor.IP.address,.you.over |
| 56e40 | 72 69 64 65 20 74 68 65 20 61 63 74 69 6f 6e 20 64 65 66 69 6e 65 64 20 66 6f 72 20 61 20 70 65 | ride.the.action.defined.for.a.pe |
| 56e60 | 65 72 20 67 72 6f 75 70 20 74 68 61 74 20 69 6e 63 6c 75 64 65 73 20 74 68 61 74 20 49 50 20 61 | er.group.that.includes.that.IP.a |
| 56e80 | 64 64 72 65 73 73 2e 00 49 66 20 79 6f 75 20 61 72 65 20 61 20 68 61 63 6b 65 72 20 6f 72 20 77 | ddress..If.you.are.a.hacker.or.w |
| 56ea0 | 61 6e 74 20 74 6f 20 74 72 79 20 6f 6e 20 79 6f 75 72 20 6f 77 6e 20 77 65 20 73 75 70 70 6f 72 | ant.to.try.on.your.own.we.suppor |
| 56ec0 | 74 20 70 61 73 73 69 6e 67 20 72 61 77 20 4f 70 65 6e 56 50 4e 20 6f 70 74 69 6f 6e 73 20 74 6f | t.passing.raw.OpenVPN.options.to |
| 56ee0 | 20 4f 70 65 6e 56 50 4e 2e 00 49 66 20 79 6f 75 20 61 72 65 20 63 6f 6e 66 69 67 75 72 69 6e 67 | .OpenVPN..If.you.are.configuring |
| 56f00 | 20 61 20 56 52 46 20 66 6f 72 20 6d 61 6e 61 67 65 6d 65 6e 74 20 70 75 72 70 6f 73 65 73 2c 20 | .a.VRF.for.management.purposes,. |
| 56f20 | 74 68 65 72 65 20 69 73 20 63 75 72 72 65 6e 74 6c 79 20 6e 6f 20 77 61 79 20 74 6f 20 66 6f 72 | there.is.currently.no.way.to.for |
| 56f40 | 63 65 20 73 79 73 74 65 6d 20 44 4e 53 20 74 72 61 66 66 69 63 20 76 69 61 20 61 20 73 70 65 63 | ce.system.DNS.traffic.via.a.spec |
| 56f60 | 69 66 69 63 20 56 52 46 2e 00 49 66 20 79 6f 75 20 61 72 65 20 6e 65 77 20 74 6f 20 74 68 65 73 | ific.VRF..If.you.are.new.to.thes |
| 56f80 | 65 20 72 6f 75 74 69 6e 67 20 73 65 63 75 72 69 74 79 20 74 65 63 68 6e 6f 6c 6f 67 69 65 73 20 | e.routing.security.technologies. |
| 56fa0 | 74 68 65 6e 20 74 68 65 72 65 20 69 73 20 61 6e 20 60 65 78 63 65 6c 6c 65 6e 74 20 67 75 69 64 | then.there.is.an.`excellent.guid |
| 56fc0 | 65 20 74 6f 20 52 50 4b 49 60 5f 20 62 79 20 4e 4c 6e 65 74 20 4c 61 62 73 20 77 68 69 63 68 20 | e.to.RPKI`_.by.NLnet.Labs.which. |
| 56fe0 | 77 69 6c 6c 20 67 65 74 20 79 6f 75 20 75 70 20 74 6f 20 73 70 65 65 64 20 76 65 72 79 20 71 75 | will.get.you.up.to.speed.very.qu |
| 57000 | 69 63 6b 6c 79 2e 20 54 68 65 69 72 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 65 78 70 6c 61 | ickly..Their.documentation.expla |
| 57020 | 69 6e 73 20 65 76 65 72 79 74 68 69 6e 67 20 66 72 6f 6d 20 77 68 61 74 20 52 50 4b 49 20 69 73 | ins.everything.from.what.RPKI.is |
| 57040 | 20 74 6f 20 64 65 70 6c 6f 79 69 6e 67 20 69 74 20 69 6e 20 70 72 6f 64 75 63 74 69 6f 6e 2e 20 | .to.deploying.it.in.production.. |
| 57060 | 49 74 20 61 6c 73 6f 20 68 61 73 20 73 6f 6d 65 20 60 68 65 6c 70 20 61 6e 64 20 6f 70 65 72 61 | It.also.has.some.`help.and.opera |
| 57080 | 74 69 6f 6e 61 6c 20 67 75 69 64 61 6e 63 65 60 5f 20 69 6e 63 6c 75 64 69 6e 67 20 22 57 68 61 | tional.guidance`_.including."Wha |
| 570a0 | 74 20 63 61 6e 20 49 20 64 6f 20 61 62 6f 75 74 20 6d 79 20 72 6f 75 74 65 20 68 61 76 69 6e 67 | t.can.I.do.about.my.route.having |
| 570c0 | 20 61 6e 20 49 6e 76 61 6c 69 64 20 73 74 61 74 65 3f 22 00 49 66 20 79 6f 75 20 61 72 65 20 72 | .an.Invalid.state?".If.you.are.r |
| 570e0 | 65 73 70 6f 6e 73 69 62 6c 65 20 66 6f 72 20 74 68 65 20 67 6c 6f 62 61 6c 20 61 64 64 72 65 73 | esponsible.for.the.global.addres |
| 57100 | 73 65 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 79 6f 75 72 20 6e 65 74 77 6f 72 6b 2c 20 70 6c | ses.assigned.to.your.network,.pl |
| 57120 | 65 61 73 65 20 6d 61 6b 65 20 73 75 72 65 20 74 68 61 74 20 79 6f 75 72 20 70 72 65 66 69 78 65 | ease.make.sure.that.your.prefixe |
| 57140 | 73 20 68 61 76 65 20 52 4f 41 73 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 6d | s.have.ROAs.associated.with.them |
| 57160 | 20 74 6f 20 61 76 6f 69 64 20 62 65 69 6e 67 20 60 6e 6f 74 66 6f 75 6e 64 60 20 62 79 20 52 50 | .to.avoid.being.`notfound`.by.RP |
| 57180 | 4b 49 2e 20 46 6f 72 20 6d 6f 73 74 20 41 53 4e 73 20 74 68 69 73 20 77 69 6c 6c 20 69 6e 76 6f | KI..For.most.ASNs.this.will.invo |
| 571a0 | 6c 76 65 20 70 75 62 6c 69 73 68 69 6e 67 20 52 4f 41 73 20 76 69 61 20 79 6f 75 72 20 3a 61 62 | lve.publishing.ROAs.via.your.:ab |
| 571c0 | 62 72 3a 60 52 49 52 20 28 52 65 67 69 6f 6e 61 6c 20 49 6e 74 65 72 6e 65 74 20 52 65 67 69 73 | br:`RIR.(Regional.Internet.Regis |
| 571e0 | 74 72 79 29 60 20 28 52 49 50 45 20 4e 43 43 2c 20 41 50 4e 49 43 2c 20 41 52 49 4e 2c 20 4c 41 | try)`.(RIPE.NCC,.APNIC,.ARIN,.LA |
| 57200 | 43 4e 49 43 20 6f 72 20 41 46 52 49 4e 49 43 29 2c 20 61 6e 64 20 69 73 20 73 6f 6d 65 74 68 69 | CNIC.or.AFRINIC),.and.is.somethi |
| 57220 | 6e 67 20 79 6f 75 20 61 72 65 20 65 6e 63 6f 75 72 61 67 65 64 20 74 6f 20 64 6f 20 77 68 65 6e | ng.you.are.encouraged.to.do.when |
| 57240 | 65 76 65 72 20 79 6f 75 20 70 6c 61 6e 20 74 6f 20 61 6e 6e 6f 75 6e 63 65 20 61 64 64 72 65 73 | ever.you.plan.to.announce.addres |
| 57260 | 73 65 73 20 69 6e 74 6f 20 74 68 65 20 44 46 5a 2e 00 49 66 20 79 6f 75 20 61 72 65 20 72 65 73 | ses.into.the.DFZ..If.you.are.res |
| 57280 | 70 6f 6e 73 69 62 6c 65 20 66 6f 72 20 74 68 65 20 67 6c 6f 62 61 6c 20 61 64 64 72 65 73 73 65 | ponsible.for.the.global.addresse |
| 572a0 | 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 79 6f 75 72 20 6e 65 74 77 6f 72 6b 2c 20 70 6c 65 61 | s.assigned.to.your.network,.plea |
| 572c0 | 73 65 20 6d 61 6b 65 20 73 75 72 65 20 74 68 61 74 20 79 6f 75 72 20 70 72 65 66 69 78 65 73 20 | se.make.sure.that.your.prefixes. |
| 572e0 | 68 61 76 65 20 52 4f 41 73 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 6d 20 74 | have.ROAs.associated.with.them.t |
| 57300 | 6f 20 61 76 6f 69 64 20 62 65 69 6e 67 20 60 6e 6f 74 66 6f 75 6e 64 60 20 62 79 20 52 50 4b 49 | o.avoid.being.`notfound`.by.RPKI |
| 57320 | 2e 20 46 6f 72 20 6d 6f 73 74 20 41 53 4e 73 20 74 68 69 73 20 77 69 6c 6c 20 69 6e 76 6f 6c 76 | ..For.most.ASNs.this.will.involv |
| 57340 | 65 20 70 75 62 6c 69 73 68 69 6e 67 20 52 4f 41 73 20 76 69 61 20 79 6f 75 72 20 3a 61 62 62 72 | e.publishing.ROAs.via.your.:abbr |
| 57360 | 3a 60 52 49 52 20 28 52 65 67 69 6f 6e 61 6c 20 49 6e 74 65 72 6e 65 74 20 52 65 67 69 73 74 72 | :`RIR.(Regional.Internet.Registr |
| 57380 | 79 29 60 20 28 52 49 50 45 20 4e 43 43 2c 20 41 50 4e 49 43 2c 20 41 52 49 4e 2c 20 4c 41 43 4e | y)`.(RIPE.NCC,.APNIC,.ARIN,.LACN |
| 573a0 | 49 43 2c 20 6f 72 20 41 46 52 49 4e 49 43 29 2c 20 61 6e 64 20 69 73 20 73 6f 6d 65 74 68 69 6e | IC,.or.AFRINIC),.and.is.somethin |
| 573c0 | 67 20 79 6f 75 20 61 72 65 20 65 6e 63 6f 75 72 61 67 65 64 20 74 6f 20 64 6f 20 77 68 65 6e 65 | g.you.are.encouraged.to.do.whene |
| 573e0 | 76 65 72 20 79 6f 75 20 70 6c 61 6e 20 74 6f 20 61 6e 6e 6f 75 6e 63 65 20 61 64 64 72 65 73 73 | ver.you.plan.to.announce.address |
| 57400 | 65 73 20 69 6e 74 6f 20 74 68 65 20 44 46 5a 2e 00 49 66 20 79 6f 75 20 61 72 65 20 75 73 69 6e | es.into.the.DFZ..If.you.are.usin |
| 57420 | 67 20 46 51 2d 43 6f 44 65 6c 20 65 6d 62 65 64 64 65 64 20 69 6e 74 6f 20 53 68 61 70 65 72 5f | g.FQ-CoDel.embedded.into.Shaper_ |
| 57440 | 20 61 6e 64 20 79 6f 75 20 68 61 76 65 20 6c 61 72 67 65 20 72 61 74 65 73 20 28 31 30 30 4d 62 | .and.you.have.large.rates.(100Mb |
| 57460 | 69 74 20 61 6e 64 20 61 62 6f 76 65 29 2c 20 79 6f 75 20 6d 61 79 20 63 6f 6e 73 69 64 65 72 20 | it.and.above),.you.may.consider. |
| 57480 | 69 6e 63 72 65 61 73 69 6e 67 20 60 71 75 61 6e 74 75 6d 60 20 74 6f 20 38 30 30 30 20 6f 72 20 | increasing.`quantum`.to.8000.or. |
| 574a0 | 68 69 67 68 65 72 20 73 6f 20 74 68 61 74 20 74 68 65 20 73 63 68 65 64 75 6c 65 72 20 73 61 76 | higher.so.that.the.scheduler.sav |
| 574c0 | 65 73 20 43 50 55 2e 00 49 66 20 79 6f 75 20 61 72 65 20 75 73 69 6e 67 20 4f 53 50 46 20 61 73 | es.CPU..If.you.are.using.OSPF.as |
| 574e0 | 20 49 47 50 2c 20 61 6c 77 61 79 73 20 74 68 65 20 63 6c 6f 73 65 73 74 20 69 6e 74 65 72 66 61 | .IGP,.always.the.closest.interfa |
| 57500 | 63 65 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 | ce.connected.to.the.RADIUS.serve |
| 57520 | 72 20 69 73 20 75 73 65 64 2e 20 57 69 74 68 20 56 79 4f 53 20 31 2e 32 20 79 6f 75 20 63 61 6e | r.is.used..With.VyOS.1.2.you.can |
| 57540 | 20 62 69 6e 64 20 61 6c 6c 20 6f 75 74 67 6f 69 6e 67 20 52 41 44 49 55 53 20 72 65 71 75 65 73 | .bind.all.outgoing.RADIUS.reques |
| 57560 | 74 73 20 74 6f 20 61 20 73 69 6e 67 6c 65 20 73 6f 75 72 63 65 20 49 50 20 65 2e 67 2e 20 74 68 | ts.to.a.single.source.IP.e.g..th |
| 57580 | 65 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 2e 00 49 66 20 79 6f 75 20 61 72 65 | e.loopback.interface..If.you.are |
| 575a0 | 20 75 73 69 6e 67 20 4f 53 50 46 20 61 73 20 49 47 50 2c 20 61 6c 77 61 79 73 20 74 68 65 20 63 | .using.OSPF.as.IGP,.always.the.c |
| 575c0 | 6c 6f 73 65 73 74 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 | losest.interface.connected.to.th |
| 575e0 | 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 69 73 20 75 73 65 64 2e 20 59 6f 75 20 63 61 6e | e.RADIUS.server.is.used..You.can |
| 57600 | 20 62 69 6e 64 20 61 6c 6c 20 6f 75 74 67 6f 69 6e 67 20 52 41 44 49 55 53 20 72 65 71 75 65 73 | .bind.all.outgoing.RADIUS.reques |
| 57620 | 74 73 20 74 6f 20 61 20 73 69 6e 67 6c 65 20 73 6f 75 72 63 65 20 49 50 20 65 2e 67 2e 20 74 68 | ts.to.a.single.source.IP.e.g..th |
| 57640 | 65 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 2e 00 49 66 20 79 6f 75 20 61 72 65 | e.loopback.interface..If.you.are |
| 57660 | 20 75 73 69 6e 67 20 4f 53 50 46 20 61 73 20 79 6f 75 72 20 49 47 50 2c 20 75 73 65 20 74 68 65 | .using.OSPF.as.your.IGP,.use.the |
| 57680 | 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e 6e 65 63 74 65 64 20 63 6c 6f 73 65 73 74 20 74 6f 20 | .interface.connected.closest.to. |
| 576a0 | 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 20 59 6f 75 20 63 61 6e 20 62 69 6e 64 20 | the.RADIUS.server..You.can.bind. |
| 576c0 | 61 6c 6c 20 6f 75 74 67 6f 69 6e 67 20 52 41 44 49 55 53 20 72 65 71 75 65 73 74 73 20 74 6f 20 | all.outgoing.RADIUS.requests.to. |
| 576e0 | 61 20 73 69 6e 67 6c 65 20 73 6f 75 72 63 65 20 49 50 20 65 2e 67 2e 20 74 68 65 20 6c 6f 6f 70 | a.single.source.IP.e.g..the.loop |
| 57700 | 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 2e 00 49 66 20 79 6f 75 20 63 68 61 6e 67 65 20 74 68 | back.interface..If.you.change.th |
| 57720 | 65 20 64 65 66 61 75 6c 74 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6e 64 20 68 61 73 68 69 6e 67 | e.default.encryption.and.hashing |
| 57740 | 20 61 6c 67 6f 72 69 74 68 6d 73 2c 20 62 65 20 73 75 72 65 20 74 68 61 74 20 74 68 65 20 6c 6f | .algorithms,.be.sure.that.the.lo |
| 57760 | 63 61 6c 20 61 6e 64 20 72 65 6d 6f 74 65 20 65 6e 64 73 20 68 61 76 65 20 6d 61 74 63 68 69 6e | cal.and.remote.ends.have.matchin |
| 57780 | 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 2c 20 6f 74 68 65 72 77 69 73 65 20 74 68 65 20 | g.configurations,.otherwise.the. |
| 577a0 | 74 75 6e 6e 65 6c 20 77 69 6c 6c 20 6e 6f 74 20 63 6f 6d 65 20 75 70 2e 00 49 66 20 79 6f 75 20 | tunnel.will.not.come.up..If.you. |
| 577c0 | 63 68 6f 6f 73 65 20 61 6e 79 20 61 73 20 74 68 65 20 6f 70 74 69 6f 6e 20 74 68 61 74 20 77 69 | choose.any.as.the.option.that.wi |
| 577e0 | 6c 6c 20 63 61 75 73 65 20 61 6c 6c 20 70 72 6f 74 6f 63 6f 6c 73 20 74 68 61 74 20 61 72 65 20 | ll.cause.all.protocols.that.are. |
| 57800 | 73 65 6e 64 69 6e 67 20 72 6f 75 74 65 73 20 74 6f 20 7a 65 62 72 61 2e 00 49 66 20 79 6f 75 20 | sending.routes.to.zebra..If.you. |
| 57820 | 63 6f 6e 66 69 67 75 72 65 20 61 20 63 6c 61 73 73 20 66 6f 72 20 2a 2a 56 6f 49 50 20 74 72 61 | configure.a.class.for.**VoIP.tra |
| 57840 | 66 66 69 63 2a 2a 2c 20 64 6f 6e 27 74 20 67 69 76 65 20 69 74 20 61 6e 79 20 2a 63 65 69 6c 69 | ffic**,.don't.give.it.any.*ceili |
| 57860 | 6e 67 2a 2c 20 6f 74 68 65 72 77 69 73 65 20 6e 65 77 20 56 6f 49 50 20 63 61 6c 6c 73 20 63 6f | ng*,.otherwise.new.VoIP.calls.co |
| 57880 | 75 6c 64 20 73 74 61 72 74 20 77 68 65 6e 20 74 68 65 20 6c 69 6e 6b 20 69 73 20 61 76 61 69 6c | uld.start.when.the.link.is.avail |
| 578a0 | 61 62 6c 65 20 61 6e 64 20 67 65 74 20 73 75 64 64 65 6e 6c 79 20 64 72 6f 70 70 65 64 20 77 68 | able.and.get.suddenly.dropped.wh |
| 578c0 | 65 6e 20 6f 74 68 65 72 20 63 6c 61 73 73 65 73 20 73 74 61 72 74 20 75 73 69 6e 67 20 74 68 65 | en.other.classes.start.using.the |
| 578e0 | 69 72 20 61 73 73 69 67 6e 65 64 20 2a 62 61 6e 64 77 69 64 74 68 2a 20 73 68 61 72 65 2e 00 49 | ir.assigned.*bandwidth*.share..I |
| 57900 | 66 20 79 6f 75 20 65 6e 61 62 6c 65 20 74 68 69 73 2c 20 79 6f 75 20 77 69 6c 6c 20 70 72 6f 62 | f.you.enable.this,.you.will.prob |
| 57920 | 61 62 6c 79 20 77 61 6e 74 20 74 6f 20 73 65 74 20 64 69 76 65 72 73 69 74 79 2d 66 61 63 74 6f | ably.want.to.set.diversity-facto |
| 57940 | 72 20 61 6e 64 20 63 68 61 6e 6e 65 6c 20 62 65 6c 6f 77 2e 00 49 66 20 79 6f 75 20 65 6e 74 65 | r.and.channel.below..If.you.ente |
| 57960 | 72 20 61 20 76 61 6c 75 65 20 73 6d 61 6c 6c 65 72 20 74 68 61 6e 20 36 30 20 73 65 63 6f 6e 64 | r.a.value.smaller.than.60.second |
| 57980 | 73 20 62 65 20 61 77 61 72 65 20 74 68 61 74 20 74 68 69 73 20 63 61 6e 20 61 6e 64 20 77 69 6c | s.be.aware.that.this.can.and.wil |
| 579a0 | 6c 20 61 66 66 65 63 74 20 63 6f 6e 76 65 72 67 65 6e 63 65 20 61 74 20 73 63 61 6c 65 2e 00 49 | l.affect.convergence.at.scale..I |
| 579c0 | 66 20 79 6f 75 20 66 65 65 6c 20 62 65 74 74 65 72 20 66 6f 72 77 61 72 64 69 6e 67 20 61 6c 6c | f.you.feel.better.forwarding.all |
| 579e0 | 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 72 65 71 75 65 73 74 73 20 74 6f 20 79 6f 75 72 | .authentication.requests.to.your |
| 57a00 | 20 65 6e 74 65 72 70 72 69 73 65 73 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2c 20 75 73 65 20 | .enterprises.RADIUS.server,.use. |
| 57a20 | 74 68 65 20 63 6f 6d 6d 61 6e 64 73 20 62 65 6c 6f 77 2e 00 49 66 20 79 6f 75 20 68 61 70 70 65 | the.commands.below..If.you.happe |
| 57a40 | 6e 20 74 6f 20 72 75 6e 20 74 68 69 73 20 69 6e 20 61 20 76 69 72 74 75 61 6c 20 65 6e 76 69 72 | n.to.run.this.in.a.virtual.envir |
| 57a60 | 6f 6e 6d 65 6e 74 20 6c 69 6b 65 20 62 79 20 45 56 45 2d 4e 47 20 79 6f 75 20 6e 65 65 64 20 74 | onment.like.by.EVE-NG.you.need.t |
| 57a80 | 6f 20 65 6e 73 75 72 65 20 79 6f 75 72 20 56 79 4f 53 20 4e 49 43 20 69 73 20 73 65 74 20 74 6f | o.ensure.your.VyOS.NIC.is.set.to |
| 57aa0 | 20 75 73 65 20 74 68 65 20 65 31 30 30 30 20 64 72 69 76 65 72 2e 20 55 73 69 6e 67 20 74 68 65 | .use.the.e1000.driver..Using.the |
| 57ac0 | 20 64 65 66 61 75 6c 74 20 60 60 76 69 72 74 69 6f 2d 6e 65 74 2d 70 63 69 60 60 20 6f 72 20 74 | .default.``virtio-net-pci``.or.t |
| 57ae0 | 68 65 20 60 60 76 6d 78 6e 65 74 33 60 60 20 64 72 69 76 65 72 20 77 69 6c 6c 20 6e 6f 74 20 77 | he.``vmxnet3``.driver.will.not.w |
| 57b00 | 6f 72 6b 2e 20 49 43 4d 50 20 6d 65 73 73 61 67 65 73 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 70 | ork..ICMP.messages.will.not.be.p |
| 57b20 | 72 6f 70 65 72 6c 79 20 70 72 6f 63 65 73 73 65 64 2e 20 54 68 65 79 20 61 72 65 20 76 69 73 69 | roperly.processed..They.are.visi |
| 57b40 | 62 6c 65 20 6f 6e 20 74 68 65 20 76 69 72 74 75 61 6c 20 77 69 72 65 20 62 75 74 20 77 69 6c 6c | ble.on.the.virtual.wire.but.will |
| 57b60 | 20 6e 6f 74 20 6d 61 6b 65 20 69 74 20 66 75 6c 6c 79 20 75 70 20 74 68 65 20 6e 65 74 77 6f 72 | .not.make.it.fully.up.the.networ |
| 57b80 | 6b 69 6e 67 20 73 74 61 63 6b 2e 00 49 66 20 79 6f 75 20 68 61 70 70 65 6e 20 74 6f 20 75 73 65 | king.stack..If.you.happen.to.use |
| 57ba0 | 20 53 6f 6c 61 72 57 69 6e 64 73 20 4f 72 69 6f 6e 20 61 73 20 4e 4d 53 20 79 6f 75 20 63 61 6e | .SolarWinds.Orion.as.NMS.you.can |
| 57bc0 | 20 61 6c 73 6f 20 75 73 65 20 74 68 65 20 44 65 76 69 63 65 20 54 65 6d 70 6c 61 74 65 73 20 4d | .also.use.the.Device.Templates.M |
| 57be0 | 61 6e 61 67 65 6d 65 6e 74 2e 20 41 20 74 65 6d 70 6c 61 74 65 20 66 6f 72 20 56 79 4f 53 20 63 | anagement..A.template.for.VyOS.c |
| 57c00 | 61 6e 20 62 65 20 65 61 73 69 6c 79 20 69 6d 70 6f 72 74 65 64 2e 00 49 66 20 79 6f 75 20 68 61 | an.be.easily.imported..If.you.ha |
| 57c20 | 70 70 65 6e 65 64 20 74 6f 20 75 73 65 20 61 20 43 69 73 63 6f 20 4e 4d 2d 31 36 41 20 2d 20 53 | ppened.to.use.a.Cisco.NM-16A.-.S |
| 57c40 | 69 78 74 65 65 6e 20 50 6f 72 74 20 41 73 79 6e 63 20 4e 65 74 77 6f 72 6b 20 4d 6f 64 75 6c 65 | ixteen.Port.Async.Network.Module |
| 57c60 | 20 6f 72 20 4e 4d 2d 33 32 41 20 2d 20 54 68 69 72 74 79 2d 74 77 6f 20 50 6f 72 74 20 41 73 79 | .or.NM-32A.-.Thirty-two.Port.Asy |
| 57c80 | 6e 63 20 4e 65 74 77 6f 72 6b 20 4d 6f 64 75 6c 65 20 2d 20 74 68 69 73 20 69 73 20 79 6f 75 72 | nc.Network.Module.-.this.is.your |
| 57ca0 | 20 56 79 4f 53 20 72 65 70 6c 61 63 65 6d 65 6e 74 2e 00 49 66 20 79 6f 75 20 68 61 76 65 20 61 | .VyOS.replacement..If.you.have.a |
| 57cc0 | 20 6c 6f 74 20 6f 66 20 69 6e 74 65 72 66 61 63 65 73 2c 20 61 6e 64 2f 6f 72 20 61 20 6c 6f 74 | .lot.of.interfaces,.and/or.a.lot |
| 57ce0 | 20 6f 66 20 73 75 62 6e 65 74 73 2c 20 74 68 65 6e 20 65 6e 61 62 6c 69 6e 67 20 4f 53 50 46 20 | .of.subnets,.then.enabling.OSPF. |
| 57d00 | 76 69 61 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 6d 61 79 20 72 65 73 75 6c 74 20 69 6e 20 61 | via.this.command.may.result.in.a |
| 57d20 | 20 73 6c 69 67 68 74 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 69 6d 70 72 6f 76 65 6d 65 6e 74 2e | .slight.performance.improvement. |
| 57d40 | 00 49 66 20 79 6f 75 20 68 61 76 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 68 65 20 60 49 4e 53 | .If.you.have.configured.the.`INS |
| 57d60 | 49 44 45 2d 4f 55 54 60 20 70 6f 6c 69 63 79 2c 20 79 6f 75 20 77 69 6c 6c 20 6e 65 65 64 20 74 | IDE-OUT`.policy,.you.will.need.t |
| 57d80 | 6f 20 61 64 64 20 61 64 64 69 74 69 6f 6e 61 6c 20 72 75 6c 65 73 20 74 6f 20 70 65 72 6d 69 74 | o.add.additional.rules.to.permit |
| 57da0 | 20 69 6e 62 6f 75 6e 64 20 4e 41 54 20 74 72 61 66 66 69 63 2e 00 49 66 20 79 6f 75 20 68 61 76 | .inbound.NAT.traffic..If.you.hav |
| 57dc0 | 65 20 6d 75 6c 74 69 70 6c 65 20 61 64 64 72 65 73 73 65 73 20 63 6f 6e 66 69 67 75 72 65 64 20 | e.multiple.addresses.configured. |
| 57de0 | 6f 6e 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 77 6f | on.a.particular.interface.and.wo |
| 57e00 | 75 6c 64 20 6c 69 6b 65 20 50 49 4d 20 74 6f 20 75 73 65 20 61 20 73 70 65 63 69 66 69 63 20 73 | uld.like.PIM.to.use.a.specific.s |
| 57e20 | 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 | ource.address.associated.with.th |
| 57e40 | 61 74 20 69 6e 74 65 72 66 61 63 65 2e 00 49 66 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 73 61 6d | at.interface..If.you.need.to.sam |
| 57e60 | 70 6c 65 20 61 6c 73 6f 20 65 67 72 65 73 73 20 74 72 61 66 66 69 63 2c 20 79 6f 75 20 6d 61 79 | ple.also.egress.traffic,.you.may |
| 57e80 | 20 77 61 6e 74 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 65 67 72 65 73 73 20 66 6c 6f 77 2d 61 | .want.to.configure.egress.flow-a |
| 57ea0 | 63 63 6f 75 6e 74 69 6e 67 3a 00 49 66 20 79 6f 75 20 6f 6e 6c 79 20 77 61 6e 74 20 74 6f 20 63 | ccounting:.If.you.only.want.to.c |
| 57ec0 | 68 65 63 6b 20 69 66 20 74 68 65 20 75 73 65 72 20 61 63 63 6f 75 6e 74 20 69 73 20 65 6e 61 62 | heck.if.the.user.account.is.enab |
| 57ee0 | 6c 65 64 20 61 6e 64 20 63 61 6e 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 28 61 67 61 69 6e 73 | led.and.can.authenticate.(agains |
| 57f00 | 74 20 74 68 65 20 70 72 69 6d 61 72 79 20 67 72 6f 75 70 29 20 74 68 65 20 66 6f 6c 6c 6f 77 69 | t.the.primary.group).the.followi |
| 57f20 | 6e 67 20 73 6e 69 70 70 65 64 20 69 73 20 73 75 66 66 69 63 69 65 6e 74 3a 00 49 66 20 79 6f 75 | ng.snipped.is.sufficient:.If.you |
| 57f40 | 20 73 65 74 20 61 20 63 75 73 74 6f 6d 20 52 41 44 49 55 53 20 61 74 74 72 69 62 75 74 65 20 79 | .set.a.custom.RADIUS.attribute.y |
| 57f60 | 6f 75 20 6d 75 73 74 20 64 65 66 69 6e 65 20 69 74 20 6f 6e 20 62 6f 74 68 20 64 69 63 74 69 6f | ou.must.define.it.on.both.dictio |
| 57f80 | 6e 61 72 69 65 73 20 61 74 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 61 6e 64 20 63 6c 69 65 | naries.at.RADIUS.server.and.clie |
| 57fa0 | 6e 74 2c 20 77 68 69 63 68 20 69 73 20 74 68 65 20 76 79 6f 73 20 72 6f 75 74 65 72 20 69 6e 20 | nt,.which.is.the.vyos.router.in. |
| 57fc0 | 6f 75 72 20 65 78 61 6d 70 6c 65 2e 00 49 66 20 79 6f 75 20 73 65 74 20 61 20 63 75 73 74 6f 6d | our.example..If.you.set.a.custom |
| 57fe0 | 20 52 41 44 49 55 53 20 61 74 74 72 69 62 75 74 65 20 79 6f 75 20 6d 75 73 74 20 64 65 66 69 6e | .RADIUS.attribute.you.must.defin |
| 58000 | 65 20 69 74 20 6f 6e 20 62 6f 74 68 20 64 69 63 74 69 6f 6e 61 72 69 65 73 20 61 74 20 52 41 44 | e.it.on.both.dictionaries.at.RAD |
| 58020 | 49 55 53 20 73 65 72 76 65 72 20 61 6e 64 20 63 6c 69 65 6e 74 2e 00 49 66 20 79 6f 75 20 73 65 | IUS.server.and.client..If.you.se |
| 58040 | 74 20 61 20 63 75 73 74 6f 6d 20 52 41 44 49 55 53 20 61 74 74 72 69 62 75 74 65 20 79 6f 75 20 | t.a.custom.RADIUS.attribute.you. |
| 58060 | 6d 75 73 74 20 64 65 66 69 6e 65 20 69 74 20 6f 6e 20 62 6f 74 68 20 64 69 63 74 69 6f 6e 61 72 | must.define.it.on.both.dictionar |
| 58080 | 69 65 73 20 6f 6e 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 61 6e 64 20 63 6c 69 | ies.on.the.RADIUS.server.and.cli |
| 580a0 | 65 6e 74 2e 00 49 66 20 79 6f 75 20 73 70 65 63 69 66 79 20 61 20 73 65 72 76 65 72 20 74 6f 20 | ent..If.you.specify.a.server.to. |
| 580c0 | 62 65 20 63 68 65 63 6b 65 64 20 62 75 74 20 64 6f 20 6e 6f 74 20 63 6f 6e 66 69 67 75 72 65 20 | be.checked.but.do.not.configure. |
| 580e0 | 61 20 70 72 6f 74 6f 63 6f 6c 2c 20 61 20 62 61 73 69 63 20 54 43 50 20 68 65 61 6c 74 68 20 63 | a.protocol,.a.basic.TCP.health.c |
| 58100 | 68 65 63 6b 20 77 69 6c 6c 20 62 65 20 61 74 74 65 6d 70 74 65 64 2e 20 41 20 73 65 72 76 65 72 | heck.will.be.attempted..A.server |
| 58120 | 20 73 68 61 6c 6c 20 62 65 20 64 65 65 6d 65 64 20 6f 6e 6c 69 6e 65 20 69 66 20 69 74 20 72 65 | .shall.be.deemed.online.if.it.re |
| 58140 | 73 70 6f 6e 73 65 73 20 74 6f 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 61 74 74 65 6d 70 74 20 | sponses.to.a.connection.attempt. |
| 58160 | 77 69 74 68 20 61 20 76 61 6c 69 64 20 60 60 53 59 4e 2f 41 43 4b 60 60 20 70 61 63 6b 65 74 2e | with.a.valid.``SYN/ACK``.packet. |
| 58180 | 00 49 66 20 79 6f 75 20 75 73 65 20 55 53 42 20 74 6f 20 73 65 72 69 61 6c 20 63 6f 6e 76 65 72 | .If.you.use.USB.to.serial.conver |
| 581a0 | 74 65 72 73 20 66 6f 72 20 63 6f 6e 6e 65 63 74 69 6e 67 20 74 6f 20 79 6f 75 72 20 56 79 4f 53 | ters.for.connecting.to.your.VyOS |
| 581c0 | 20 61 70 70 6c 69 61 6e 63 65 20 70 6c 65 61 73 65 20 6e 6f 74 65 20 74 68 61 74 20 6d 6f 73 74 | .appliance.please.note.that.most |
| 581e0 | 20 6f 66 20 74 68 65 6d 20 75 73 65 20 73 6f 66 74 77 61 72 65 20 65 6d 75 6c 61 74 69 6f 6e 20 | .of.them.use.software.emulation. |
| 58200 | 77 69 74 68 6f 75 74 20 66 6c 6f 77 20 63 6f 6e 74 72 6f 6c 2e 20 54 68 69 73 20 6d 65 61 6e 73 | without.flow.control..This.means |
| 58220 | 20 79 6f 75 20 73 68 6f 75 6c 64 20 73 74 61 72 74 20 77 69 74 68 20 61 20 63 6f 6d 6d 6f 6e 20 | .you.should.start.with.a.common. |
| 58240 | 62 61 75 64 20 72 61 74 65 20 28 6d 6f 73 74 20 6c 69 6b 65 6c 79 20 39 36 30 30 20 62 61 75 64 | baud.rate.(most.likely.9600.baud |
| 58260 | 29 20 61 73 20 6f 74 68 65 72 77 69 73 65 20 79 6f 75 20 70 72 6f 62 61 62 6c 79 20 63 61 6e 20 | ).as.otherwise.you.probably.can. |
| 58280 | 6e 6f 74 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 64 65 76 69 63 65 20 75 73 69 6e 67 20 | not.connect.to.the.device.using. |
| 582a0 | 68 69 67 68 20 73 70 65 65 64 20 62 61 75 64 20 72 61 74 65 73 20 61 73 20 79 6f 75 72 20 73 65 | high.speed.baud.rates.as.your.se |
| 582c0 | 72 69 61 6c 20 63 6f 6e 76 65 72 74 65 72 20 73 69 6d 70 6c 79 20 63 61 6e 20 6e 6f 74 20 70 72 | rial.converter.simply.can.not.pr |
| 582e0 | 6f 63 65 73 73 20 74 68 69 73 20 64 61 74 61 20 72 61 74 65 2e 00 49 66 20 79 6f 75 20 75 73 65 | ocess.this.data.rate..If.you.use |
| 58300 | 20 61 20 73 65 6c 66 2d 73 69 67 6e 65 64 20 63 65 72 74 69 66 69 63 61 74 65 2c 20 64 6f 20 6e | .a.self-signed.certificate,.do.n |
| 58320 | 6f 74 20 66 6f 72 67 65 74 20 74 6f 20 69 6e 73 74 61 6c 6c 20 43 41 20 6f 6e 20 74 68 65 20 63 | ot.forget.to.install.CA.on.the.c |
| 58340 | 6c 69 65 6e 74 20 73 69 64 65 2e 00 49 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 63 68 61 6e 67 | lient.side..If.you.want.to.chang |
| 58360 | 65 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 66 6c 6f 77 73 2c 20 77 | e.the.maximum.number.of.flows,.w |
| 58380 | 68 69 63 68 20 61 72 65 20 74 72 61 63 6b 69 6e 67 20 73 69 6d 75 6c 74 61 6e 65 6f 75 73 6c 79 | hich.are.tracking.simultaneously |
| 583a0 | 2c 20 79 6f 75 20 6d 61 79 20 64 6f 20 74 68 69 73 20 77 69 74 68 20 74 68 69 73 20 63 6f 6d 6d | ,.you.may.do.this.with.this.comm |
| 583c0 | 61 6e 64 20 28 64 65 66 61 75 6c 74 20 38 31 39 32 29 2e 00 49 66 20 79 6f 75 20 77 61 6e 74 20 | and.(default.8192)..If.you.want. |
| 583e0 | 74 6f 20 64 69 73 61 62 6c 65 20 61 20 72 75 6c 65 20 62 75 74 20 6c 65 74 20 69 74 20 69 6e 20 | to.disable.a.rule.but.let.it.in. |
| 58400 | 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 49 66 20 79 6f 75 20 77 61 6e 74 20 74 | the.configuration..If.you.want.t |
| 58420 | 6f 20 68 61 76 65 20 61 64 6d 69 6e 20 75 73 65 72 73 20 74 6f 20 61 75 74 68 65 6e 74 69 63 61 | o.have.admin.users.to.authentica |
| 58440 | 74 65 20 76 69 61 20 52 41 44 49 55 53 20 69 74 20 69 73 20 65 73 73 65 6e 74 69 61 6c 20 74 6f | te.via.RADIUS.it.is.essential.to |
| 58460 | 20 73 65 6e 74 20 74 68 65 20 60 60 43 69 73 63 6f 2d 41 56 2d 50 61 69 72 20 73 68 65 6c 6c 3a | .sent.the.``Cisco-AV-Pair.shell: |
| 58480 | 70 72 69 76 2d 6c 76 6c 3d 31 35 60 60 20 61 74 74 72 69 62 75 74 65 2e 20 57 69 74 68 6f 75 74 | priv-lvl=15``.attribute..Without |
| 584a0 | 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 79 6f 75 20 77 69 6c 6c 20 6f 6e 6c 79 20 67 65 74 | .the.attribute.you.will.only.get |
| 584c0 | 20 72 65 67 75 6c 61 72 2c 20 6e 6f 6e 20 70 72 69 76 69 6c 65 67 75 65 64 2c 20 73 79 73 74 65 | .regular,.non.privilegued,.syste |
| 584e0 | 6d 20 75 73 65 72 73 2e 00 49 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 75 73 65 20 65 78 69 73 | m.users..If.you.want.to.use.exis |
| 58500 | 74 69 6e 67 20 62 6c 61 63 6b 6c 69 73 74 73 20 79 6f 75 20 68 61 76 65 20 74 6f 20 63 72 65 61 | ting.blacklists.you.have.to.crea |
| 58520 | 74 65 2f 64 6f 77 6e 6c 6f 61 64 20 61 20 64 61 74 61 62 61 73 65 20 66 69 72 73 74 2e 20 4f 74 | te/download.a.database.first..Ot |
| 58540 | 68 65 72 77 69 73 65 20 79 6f 75 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 61 62 6c 65 20 74 6f 20 | herwise.you.will.not.be.able.to. |
| 58560 | 63 6f 6d 6d 69 74 20 74 68 65 20 63 6f 6e 66 69 67 20 63 68 61 6e 67 65 73 2e 00 49 66 20 79 6f | commit.the.config.changes..If.yo |
| 58580 | 75 20 77 61 6e 74 20 79 6f 75 72 20 72 6f 75 74 65 72 20 74 6f 20 66 6f 72 77 61 72 64 20 44 48 | u.want.your.router.to.forward.DH |
| 585a0 | 43 50 20 72 65 71 75 65 73 74 73 20 74 6f 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 44 48 43 50 20 | CP.requests.to.an.external.DHCP. |
| 585c0 | 73 65 72 76 65 72 20 79 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 73 79 73 | server.you.can.configure.the.sys |
| 585e0 | 74 65 6d 20 74 6f 20 61 63 74 20 61 73 20 61 20 44 48 43 50 20 72 65 6c 61 79 20 61 67 65 6e 74 | tem.to.act.as.a.DHCP.relay.agent |
| 58600 | 2e 20 54 68 65 20 44 48 43 50 20 72 65 6c 61 79 20 61 67 65 6e 74 20 77 6f 72 6b 73 20 77 69 74 | ..The.DHCP.relay.agent.works.wit |
| 58620 | 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 2e 00 49 66 20 79 6f | h.IPv4.and.IPv6.addresses..If.yo |
| 58640 | 75 20 77 61 6e 74 2c 20 6e 65 65 64 2c 20 61 6e 64 20 73 68 6f 75 6c 64 20 75 73 65 20 6d 6f 72 | u.want,.need,.and.should.use.mor |
| 58660 | 65 20 61 64 76 61 6e 63 65 64 20 65 6e 63 72 79 70 74 69 6f 6e 20 63 69 70 68 65 72 73 20 28 64 | e.advanced.encryption.ciphers.(d |
| 58680 | 65 66 61 75 6c 74 20 69 73 20 73 74 69 6c 6c 20 33 44 45 53 29 20 79 6f 75 20 6e 65 65 64 20 74 | efault.is.still.3DES).you.need.t |
| 586a0 | 6f 20 70 72 6f 76 69 73 69 6f 6e 20 79 6f 75 72 20 64 65 76 69 63 65 20 75 73 69 6e 67 20 61 20 | o.provision.your.device.using.a. |
| 586c0 | 73 6f 2d 63 61 6c 6c 65 64 20 22 44 65 76 69 63 65 20 50 72 6f 66 69 6c 65 22 2e 20 41 20 70 72 | so-called."Device.Profile"..A.pr |
| 586e0 | 6f 66 69 6c 65 20 69 73 20 61 20 73 69 6d 70 6c 65 20 74 65 78 74 20 66 69 6c 65 20 63 6f 6e 74 | ofile.is.a.simple.text.file.cont |
| 58700 | 61 69 6e 69 6e 67 20 58 4d 4c 20 6e 6f 64 65 73 20 77 69 74 68 20 61 20 60 60 2e 6d 6f 62 69 6c | aining.XML.nodes.with.a.``.mobil |
| 58720 | 65 63 6f 6e 66 69 67 60 60 20 66 69 6c 65 20 65 78 74 65 6e 73 69 6f 6e 20 74 68 61 74 20 63 61 | econfig``.file.extension.that.ca |
| 58740 | 6e 20 62 65 20 73 65 6e 74 20 61 6e 64 20 6f 70 65 6e 65 64 20 6f 6e 20 61 6e 79 20 64 65 76 69 | n.be.sent.and.opened.on.any.devi |
| 58760 | 63 65 20 66 72 6f 6d 20 61 6e 20 45 2d 4d 61 69 6c 2e 00 49 66 20 79 6f 75 27 72 65 20 6d 61 6b | ce.from.an.E-Mail..If.you're.mak |
| 58780 | 69 6e 67 20 75 73 65 20 6f 66 20 6d 75 6c 74 69 70 6c 65 20 74 75 6e 6e 65 6c 73 2c 20 4f 70 65 | ing.use.of.multiple.tunnels,.Ope |
| 587a0 | 6e 56 50 4e 20 6d 75 73 74 20 68 61 76 65 20 61 20 77 61 79 20 74 6f 20 64 69 73 74 69 6e 67 75 | nVPN.must.have.a.way.to.distingu |
| 587c0 | 69 73 68 20 62 65 74 77 65 65 6e 20 64 69 66 66 65 72 65 6e 74 20 74 75 6e 6e 65 6c 73 20 61 73 | ish.between.different.tunnels.as |
| 587e0 | 69 64 65 20 66 72 6f 6d 20 74 68 65 20 70 72 65 2d 73 68 61 72 65 64 2d 6b 65 79 2e 20 54 68 69 | ide.from.the.pre-shared-key..Thi |
| 58800 | 73 20 69 73 20 64 6f 6e 65 20 65 69 74 68 65 72 20 62 79 20 72 65 66 65 72 65 6e 63 69 6e 67 20 | s.is.done.either.by.referencing. |
| 58820 | 49 50 20 61 64 64 72 65 73 73 65 73 20 6f 72 20 70 6f 72 74 20 6e 75 6d 62 65 72 73 2e 20 4f 6e | IP.addresses.or.port.numbers..On |
| 58840 | 65 20 6f 70 74 69 6f 6e 20 69 73 20 74 6f 20 64 65 64 69 63 61 74 65 20 61 20 70 75 62 6c 69 63 | e.option.is.to.dedicate.a.public |
| 58860 | 20 49 50 20 74 6f 20 65 61 63 68 20 74 75 6e 6e 65 6c 2e 20 41 6e 6f 74 68 65 72 20 6f 70 74 69 | .IP.to.each.tunnel..Another.opti |
| 58880 | 6f 6e 20 69 73 20 74 6f 20 64 65 64 69 63 61 74 65 20 61 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 | on.is.to.dedicate.a.port.number. |
| 588a0 | 74 6f 20 65 61 63 68 20 74 75 6e 6e 65 6c 20 28 65 2e 67 2e 20 31 31 39 35 2c 31 31 39 36 2c 31 | to.each.tunnel.(e.g..1195,1196,1 |
| 588c0 | 31 39 37 2e 2e 2e 29 2e 00 49 66 20 79 6f 75 27 76 65 20 63 6f 6d 70 6c 65 74 65 64 20 61 6c 6c | 197...)..If.you've.completed.all |
| 588e0 | 20 74 68 65 20 61 62 6f 76 65 20 73 74 65 70 73 20 79 6f 75 20 6e 6f 20 64 6f 75 62 74 20 77 61 | .the.above.steps.you.no.doubt.wa |
| 58900 | 6e 74 20 74 6f 20 73 65 65 20 69 66 20 69 74 27 73 20 61 6c 6c 20 77 6f 72 6b 69 6e 67 2e 00 49 | nt.to.see.if.it's.all.working..I |
| 58920 | 67 6e 6f 72 65 20 41 53 5f 50 41 54 48 20 6c 65 6e 67 74 68 20 77 68 65 6e 20 73 65 6c 65 63 74 | gnore.AS_PATH.length.when.select |
| 58940 | 69 6e 67 20 61 20 72 6f 75 74 65 00 49 67 6e 6f 72 65 20 56 52 52 50 20 6d 61 69 6e 20 69 6e 74 | ing.a.route.Ignore.VRRP.main.int |
| 58960 | 65 72 66 61 63 65 20 66 61 75 6c 74 73 00 49 6d 61 67 65 20 74 68 61 6e 6b 66 75 6c 6c 79 20 62 | erface.faults.Image.thankfully.b |
| 58980 | 6f 72 72 6f 77 65 64 20 66 72 6f 6d 20 68 74 74 70 73 3a 2f 2f 65 6e 2e 77 69 6b 69 70 65 64 69 | orrowed.from.https://en.wikipedi |
| 589a0 | 61 2e 6f 72 67 2f 77 69 6b 69 2f 46 69 6c 65 3a 53 4e 4d 50 5f 63 6f 6d 6d 75 6e 69 63 61 74 69 | a.org/wiki/File:SNMP_communicati |
| 589c0 | 6f 6e 5f 70 72 69 6e 63 69 70 6c 65 73 5f 64 69 61 67 72 61 6d 2e 50 4e 47 20 77 68 69 63 68 20 | on_principles_diagram.PNG.which. |
| 589e0 | 69 73 20 75 6e 64 65 72 20 74 68 65 20 47 4e 55 20 46 72 65 65 20 44 6f 63 75 6d 65 6e 74 61 74 | is.under.the.GNU.Free.Documentat |
| 58a00 | 69 6f 6e 20 4c 69 63 65 6e 73 65 00 49 6d 61 67 69 6e 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e | ion.License.Imagine.the.followin |
| 58a20 | 67 20 74 6f 70 6f 6c 6f 67 79 00 49 6d 6d 65 64 69 61 74 65 00 49 6d 70 6c 65 6d 65 6e 74 65 64 | g.topology.Immediate.Implemented |
| 58a40 | 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 3a 72 66 63 3a 60 36 38 38 38 60 20 20 72 65 71 75 | .the.following.:rfc:`6888`..requ |
| 58a60 | 69 72 65 6d 65 6e 74 73 3a 00 49 6d 70 6f 72 74 20 66 69 6c 65 73 20 74 6f 20 50 4b 49 20 66 6f | irements:.Import.files.to.PKI.fo |
| 58a80 | 72 6d 61 74 00 49 6d 70 6f 72 74 20 74 68 65 20 43 41 73 20 70 72 69 76 61 74 65 20 6b 65 79 20 | rmat.Import.the.CAs.private.key. |
| 58aa0 | 70 6f 72 74 69 6f 6e 20 74 6f 20 74 68 65 20 43 4c 49 2e 20 54 68 69 73 20 73 68 6f 75 6c 64 20 | portion.to.the.CLI..This.should. |
| 58ac0 | 6e 65 76 65 72 20 6c 65 61 76 65 20 74 68 65 20 73 79 73 74 65 6d 20 61 73 20 69 74 20 69 73 20 | never.leave.the.system.as.it.is. |
| 58ae0 | 75 73 65 64 20 74 6f 20 64 65 63 72 79 70 74 20 74 68 65 20 64 61 74 61 2e 20 54 68 65 20 6b 65 | used.to.decrypt.the.data..The.ke |
| 58b00 | 79 20 69 73 20 72 65 71 75 69 72 65 64 20 69 66 20 79 6f 75 20 75 73 65 20 56 79 4f 53 20 61 73 | y.is.required.if.you.use.VyOS.as |
| 58b20 | 20 79 6f 75 72 20 63 65 72 74 69 66 69 63 61 74 65 20 67 65 6e 65 72 61 74 6f 72 2e 00 49 6d 70 | .your.certificate.generator..Imp |
| 58b40 | 6f 72 74 20 74 68 65 20 4f 70 65 6e 56 50 4e 20 73 68 61 72 65 64 20 73 65 63 72 65 74 20 73 74 | ort.the.OpenVPN.shared.secret.st |
| 58b60 | 6f 72 65 64 20 69 6e 20 66 69 6c 65 20 74 6f 20 74 68 65 20 56 79 4f 53 20 43 4c 49 2e 00 49 6d | ored.in.file.to.the.VyOS.CLI..Im |
| 58b80 | 70 6f 72 74 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 66 72 6f 6d 20 74 68 65 20 66 69 | port.the.certificate.from.the.fi |
| 58ba0 | 6c 65 20 74 6f 20 56 79 4f 53 20 43 4c 49 2e 00 49 6d 70 6f 72 74 20 74 68 65 20 70 72 69 76 61 | le.to.VyOS.CLI..Import.the.priva |
| 58bc0 | 74 65 20 6b 65 79 20 6f 66 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 74 6f 20 74 68 65 | te.key.of.the.certificate.to.the |
| 58be0 | 20 56 79 4f 53 20 43 4c 49 2e 20 54 68 69 73 20 73 68 6f 75 6c 64 20 6e 65 76 65 72 20 6c 65 61 | .VyOS.CLI..This.should.never.lea |
| 58c00 | 76 65 20 74 68 65 20 73 79 73 74 65 6d 20 61 73 20 69 74 20 69 73 20 75 73 65 64 20 74 6f 20 64 | ve.the.system.as.it.is.used.to.d |
| 58c20 | 65 63 72 79 70 74 20 74 68 65 20 64 61 74 61 2e 00 49 6d 70 6f 72 74 20 74 68 65 20 70 75 62 6c | ecrypt.the.data..Import.the.publ |
| 58c40 | 69 63 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 20 66 72 6f 6d 20 74 68 65 20 64 65 66 69 6e | ic.CA.certificate.from.the.defin |
| 58c60 | 65 64 20 66 69 6c 65 20 74 6f 20 56 79 4f 53 20 43 4c 49 2e 00 49 6d 70 6f 72 74 65 64 20 70 72 | ed.file.to.VyOS.CLI..Imported.pr |
| 58c80 | 65 66 69 78 65 73 20 64 75 72 69 6e 67 20 74 68 65 20 76 61 6c 69 64 61 74 69 6f 6e 20 6d 61 79 | efixes.during.the.validation.may |
| 58ca0 | 20 68 61 76 65 20 76 61 6c 75 65 73 3a 00 49 6e 20 3a 72 66 63 3a 60 33 30 36 39 60 20 69 74 20 | .have.values:.In.:rfc:`3069`.it. |
| 58cc0 | 69 73 20 63 61 6c 6c 65 64 20 56 4c 41 4e 20 41 67 67 72 65 67 61 74 69 6f 6e 00 49 6e 20 3a 76 | is.called.VLAN.Aggregation.In.:v |
| 58ce0 | 79 74 61 73 6b 3a 60 54 32 31 39 39 60 20 74 68 65 20 73 79 6e 74 61 78 20 6f 66 20 74 68 65 20 | ytask:`T2199`.the.syntax.of.the. |
| 58d00 | 7a 6f 6e 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 61 73 20 63 68 61 6e 67 65 64 2e 20 | zone.configuration.was.changed.. |
| 58d20 | 54 68 65 20 7a 6f 6e 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 76 65 64 20 66 72 6f | The.zone.configuration.moved.fro |
| 58d40 | 6d 20 60 60 7a 6f 6e 65 2d 70 6f 6c 69 63 79 20 7a 6f 6e 65 20 3c 6e 61 6d 65 3e 60 60 20 74 6f | m.``zone-policy.zone.<name>``.to |
| 58d60 | 20 60 60 66 69 72 65 77 61 6c 6c 20 7a 6f 6e 65 20 3c 6e 61 6d 65 3e 60 60 2e 00 49 6e 20 45 74 | .``firewall.zone.<name>``..In.Et |
| 58d80 | 68 65 72 6e 65 74 20 62 72 69 64 67 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 2c 20 | hernet.bridging.configurations,. |
| 58da0 | 4f 70 65 6e 56 50 4e 27 73 20 73 65 72 76 65 72 20 6d 6f 64 65 20 63 61 6e 20 62 65 20 73 65 74 | OpenVPN's.server.mode.can.be.set |
| 58dc0 | 20 61 73 20 61 20 27 62 72 69 64 67 65 27 20 77 68 65 72 65 20 74 68 65 20 56 50 4e 20 74 75 6e | .as.a.'bridge'.where.the.VPN.tun |
| 58de0 | 6e 65 6c 20 65 6e 63 61 70 73 75 6c 61 74 65 73 20 65 6e 74 69 72 65 20 45 74 68 65 72 6e 65 74 | nel.encapsulates.entire.Ethernet |
| 58e00 | 20 66 72 61 6d 65 73 20 28 75 70 20 74 6f 20 31 35 31 34 20 62 79 74 65 73 29 20 69 6e 73 74 65 | .frames.(up.to.1514.bytes).inste |
| 58e20 | 61 64 20 6f 66 20 6a 75 73 74 20 49 50 20 70 61 63 6b 65 74 73 20 28 75 70 20 74 6f 20 31 35 30 | ad.of.just.IP.packets.(up.to.150 |
| 58e40 | 30 20 62 79 74 65 73 29 2e 20 54 68 69 73 20 73 65 74 75 70 20 61 6c 6c 6f 77 73 20 63 6c 69 65 | 0.bytes)..This.setup.allows.clie |
| 58e60 | 6e 74 73 20 74 6f 20 74 72 61 6e 73 6d 69 74 20 4c 61 79 65 72 20 32 20 66 72 61 6d 65 73 20 74 | nts.to.transmit.Layer.2.frames.t |
| 58e80 | 68 72 6f 75 67 68 20 74 68 65 20 4f 70 65 6e 56 50 4e 20 74 75 6e 6e 65 6c 2e 20 42 65 6c 6f 77 | hrough.the.OpenVPN.tunnel..Below |
| 58ea0 | 2c 20 77 65 20 6f 75 74 6c 69 6e 65 20 61 20 62 61 73 69 63 20 63 6f 6e 66 69 67 75 72 61 74 69 | ,.we.outline.a.basic.configurati |
| 58ec0 | 6f 6e 20 74 6f 20 61 63 68 69 65 76 65 20 74 68 69 73 3a 00 49 6e 20 49 6e 74 65 72 6e 65 74 20 | on.to.achieve.this:.In.Internet. |
| 58ee0 | 50 72 6f 74 6f 63 6f 6c 20 56 65 72 73 69 6f 6e 20 36 20 28 49 50 76 36 29 20 6e 65 74 77 6f 72 | Protocol.Version.6.(IPv6).networ |
| 58f00 | 6b 73 2c 20 74 68 65 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 6f 66 20 41 52 50 20 69 73 20 | ks,.the.functionality.of.ARP.is. |
| 58f20 | 70 72 6f 76 69 64 65 64 20 62 79 20 74 68 65 20 4e 65 69 67 68 62 6f 72 20 44 69 73 63 6f 76 65 | provided.by.the.Neighbor.Discove |
| 58f40 | 72 79 20 50 72 6f 74 6f 63 6f 6c 20 28 4e 44 50 29 2e 00 49 6e 20 50 72 69 6f 72 69 74 79 20 51 | ry.Protocol.(NDP)..In.Priority.Q |
| 58f60 | 75 65 75 65 20 77 65 20 64 6f 20 6e 6f 74 20 64 65 66 69 6e 65 20 63 6c 61 73 65 73 20 77 69 74 | ueue.we.do.not.define.clases.wit |
| 58f80 | 68 20 61 20 6d 65 61 6e 69 6e 67 6c 65 73 73 20 63 6c 61 73 73 20 49 44 20 6e 75 6d 62 65 72 20 | h.a.meaningless.class.ID.number. |
| 58fa0 | 62 75 74 20 77 69 74 68 20 61 20 63 6c 61 73 73 20 70 72 69 6f 72 69 74 79 20 6e 75 6d 62 65 72 | but.with.a.class.priority.number |
| 58fc0 | 20 28 31 2d 37 29 2e 20 54 68 65 20 6c 6f 77 65 72 20 74 68 65 20 6e 75 6d 62 65 72 2c 20 74 68 | .(1-7)..The.lower.the.number,.th |
| 58fe0 | 65 20 68 69 67 68 65 72 20 74 68 65 20 70 72 69 6f 72 69 74 79 2e 00 49 6e 20 50 72 69 6f 72 69 | e.higher.the.priority..In.Priori |
| 59000 | 74 79 20 51 75 65 75 65 20 77 65 20 64 6f 20 6e 6f 74 20 64 65 66 69 6e 65 20 63 6c 61 73 73 65 | ty.Queue.we.do.not.define.classe |
| 59020 | 73 20 77 69 74 68 20 61 20 6d 65 61 6e 69 6e 67 6c 65 73 73 20 63 6c 61 73 73 20 49 44 20 6e 75 | s.with.a.meaningless.class.ID.nu |
| 59040 | 6d 62 65 72 20 62 75 74 20 77 69 74 68 20 61 20 63 6c 61 73 73 20 70 72 69 6f 72 69 74 79 20 6e | mber.but.with.a.class.priority.n |
| 59060 | 75 6d 62 65 72 20 28 31 2d 37 29 2e 20 54 68 65 20 6c 6f 77 65 72 20 74 68 65 20 6e 75 6d 62 65 | umber.(1-7)..The.lower.the.numbe |
| 59080 | 72 2c 20 74 68 65 20 68 69 67 68 65 72 20 74 68 65 20 70 72 69 6f 72 69 74 79 2e 00 49 6e 20 56 | r,.the.higher.the.priority..In.V |
| 590a0 | 79 4f 53 20 74 68 65 20 74 65 72 6d 73 20 60 60 76 69 66 2d 73 60 60 20 61 6e 64 20 60 60 76 69 | yOS.the.terms.``vif-s``.and.``vi |
| 590c0 | 66 2d 63 60 60 20 73 74 61 6e 64 20 66 6f 72 20 74 68 65 20 65 74 68 65 72 74 79 70 65 20 74 61 | f-c``.stand.for.the.ethertype.ta |
| 590e0 | 67 73 20 74 68 61 74 20 61 72 65 20 75 73 65 64 2e 00 49 6e 20 56 79 4f 53 2c 20 38 30 32 2e 31 | gs.that.are.used..In.VyOS,.802.1 |
| 59100 | 31 61 78 20 69 73 20 6f 6e 6c 79 20 69 6d 70 6c 65 6d 65 6e 74 65 64 20 66 6f 72 20 32 2e 34 47 | 1ax.is.only.implemented.for.2.4G |
| 59120 | 48 7a 20 61 6e 64 20 36 47 48 7a 2e 00 49 6e 20 56 79 4f 53 2c 20 38 30 32 2e 31 31 61 78 20 69 | Hz.and.6GHz..In.VyOS,.802.11ax.i |
| 59140 | 73 20 6f 6e 6c 79 20 69 6d 70 6c 65 6d 65 6e 74 65 64 20 66 6f 72 20 36 47 48 7a 20 61 73 20 6f | s.only.implemented.for.6GHz.as.o |
| 59160 | 66 20 79 65 74 2e 00 49 6e 20 56 79 4f 53 2c 20 45 53 50 20 61 74 74 72 69 62 75 74 65 73 20 61 | f.yet..In.VyOS,.ESP.attributes.a |
| 59180 | 72 65 20 73 70 65 63 69 66 69 65 64 20 74 68 72 6f 75 67 68 20 45 53 50 20 67 72 6f 75 70 73 2e | re.specified.through.ESP.groups. |
| 591a0 | 20 4d 75 6c 74 69 70 6c 65 20 70 72 6f 70 6f 73 61 6c 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 | .Multiple.proposals.can.be.speci |
| 591c0 | 66 69 65 64 20 69 6e 20 61 20 73 69 6e 67 6c 65 20 67 72 6f 75 70 2e 00 49 6e 20 56 79 4f 53 2c | fied.in.a.single.group..In.VyOS, |
| 591e0 | 20 49 4b 45 20 61 74 74 72 69 62 75 74 65 73 20 61 72 65 20 73 70 65 63 69 66 69 65 64 20 74 68 | .IKE.attributes.are.specified.th |
| 59200 | 72 6f 75 67 68 20 49 4b 45 20 67 72 6f 75 70 73 2e 20 4d 75 6c 74 69 70 6c 65 20 70 72 6f 70 6f | rough.IKE.groups..Multiple.propo |
| 59220 | 73 61 6c 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 61 20 73 69 6e 67 6c | sals.can.be.specified.in.a.singl |
| 59240 | 65 20 67 72 6f 75 70 2e 00 49 6e 20 56 79 4f 53 2c 20 61 20 63 6c 61 73 73 20 69 73 20 69 64 65 | e.group..In.VyOS,.a.class.is.ide |
| 59260 | 6e 74 69 66 69 65 64 20 62 79 20 61 20 6e 75 6d 62 65 72 20 79 6f 75 20 63 61 6e 20 63 68 6f 6f | ntified.by.a.number.you.can.choo |
| 59280 | 73 65 20 77 68 65 6e 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 69 74 2e 00 49 6e 20 61 20 6d 69 6e | se.when.configuring.it..In.a.min |
| 592a0 | 69 6d 61 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e | imal.configuration,.the.followin |
| 592c0 | 67 20 6d 75 73 74 20 62 65 20 70 72 6f 76 69 64 65 64 3a 00 49 6e 20 61 20 6d 75 6c 74 69 70 6c | g.must.be.provided:.In.a.multipl |
| 592e0 | 65 20 56 4c 41 4e 20 68 65 61 64 65 72 20 63 6f 6e 74 65 78 74 2c 20 6f 75 74 20 6f 66 20 63 6f | e.VLAN.header.context,.out.of.co |
| 59300 | 6e 76 65 6e 69 65 6e 63 65 20 74 68 65 20 74 65 72 6d 20 22 56 4c 41 4e 20 74 61 67 22 20 6f 72 | nvenience.the.term."VLAN.tag".or |
| 59320 | 20 6a 75 73 74 20 22 74 61 67 22 20 66 6f 72 20 73 68 6f 72 74 20 69 73 20 6f 66 74 65 6e 20 75 | .just."tag".for.short.is.often.u |
| 59340 | 73 65 64 20 69 6e 20 70 6c 61 63 65 20 6f 66 20 22 38 30 32 2e 31 71 5f 20 56 4c 41 4e 20 68 65 | sed.in.place.of."802.1q_.VLAN.he |
| 59360 | 61 64 65 72 22 2e 20 51 69 6e 51 20 61 6c 6c 6f 77 73 20 6d 75 6c 74 69 70 6c 65 20 56 4c 41 4e | ader"..QinQ.allows.multiple.VLAN |
| 59380 | 20 74 61 67 73 20 69 6e 20 61 6e 20 45 74 68 65 72 6e 65 74 20 66 72 61 6d 65 3b 20 74 6f 67 65 | .tags.in.an.Ethernet.frame;.toge |
| 593a0 | 74 68 65 72 20 74 68 65 73 65 20 74 61 67 73 20 63 6f 6e 73 74 69 74 75 74 65 20 61 20 74 61 67 | ther.these.tags.constitute.a.tag |
| 593c0 | 20 73 74 61 63 6b 2e 20 57 68 65 6e 20 75 73 65 64 20 69 6e 20 74 68 65 20 63 6f 6e 74 65 78 74 | .stack..When.used.in.the.context |
| 593e0 | 20 6f 66 20 61 6e 20 45 74 68 65 72 6e 65 74 20 66 72 61 6d 65 2c 20 61 20 51 69 6e 51 20 66 72 | .of.an.Ethernet.frame,.a.QinQ.fr |
| 59400 | 61 6d 65 20 69 73 20 61 20 66 72 61 6d 65 20 74 68 61 74 20 68 61 73 20 32 20 56 4c 41 4e 20 38 | ame.is.a.frame.that.has.2.VLAN.8 |
| 59420 | 30 32 2e 31 71 5f 20 68 65 61 64 65 72 73 20 28 64 6f 75 62 6c 65 2d 74 61 67 67 65 64 29 2e 00 | 02.1q_.headers.(double-tagged).. |
| 59440 | 49 6e 20 61 20 6e 75 74 73 68 65 6c 6c 2c 20 74 68 65 20 63 75 72 72 65 6e 74 20 69 6d 70 6c 65 | In.a.nutshell,.the.current.imple |
| 59460 | 6d 65 6e 74 61 74 69 6f 6e 20 70 72 6f 76 69 64 65 73 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 | mentation.provides.the.following |
| 59480 | 20 66 65 61 74 75 72 65 73 3a 00 49 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 3a 61 62 62 72 3a | .features:.In.addition.to.:abbr: |
| 594a0 | 60 52 41 44 49 55 53 20 28 52 65 6d 6f 74 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 44 | `RADIUS.(Remote.Authentication.D |
| 594c0 | 69 61 6c 2d 49 6e 20 55 73 65 72 20 53 65 72 76 69 63 65 29 60 2c 20 3a 61 62 62 72 3a 60 54 41 | ial-In.User.Service)`,.:abbr:`TA |
| 594e0 | 43 41 43 53 20 28 54 65 72 6d 69 6e 61 6c 20 41 63 63 65 73 73 20 43 6f 6e 74 72 6f 6c 6c 65 72 | CACS.(Terminal.Access.Controller |
| 59500 | 20 41 63 63 65 73 73 20 43 6f 6e 74 72 6f 6c 20 53 79 73 74 65 6d 29 60 20 63 61 6e 20 61 6c 73 | .Access.Control.System)`.can.als |
| 59520 | 6f 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 6c 61 72 67 65 20 64 65 70 6c 6f 79 6d 65 6e 74 73 2e | o.be.found.in.large.deployments. |
| 59540 | 00 49 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 64 69 73 70 6c 61 79 69 6e 67 20 66 6c 6f 77 20 | .In.addition.to.displaying.flow. |
| 59560 | 61 63 63 6f 75 6e 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6c 6f 63 61 6c 6c 79 2c 20 | accounting.information.locally,. |
| 59580 | 6f 6e 65 20 63 61 6e 20 61 6c 73 6f 20 65 78 70 6f 72 74 65 64 20 74 68 65 6d 20 74 6f 20 61 20 | one.can.also.exported.them.to.a. |
| 595a0 | 63 6f 6c 6c 65 63 74 69 6f 6e 20 73 65 72 76 65 72 2e 00 49 6e 20 61 64 64 69 74 69 6f 6e 20 74 | collection.server..In.addition.t |
| 595c0 | 6f 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 61 62 6f 76 65 2c 20 74 68 65 20 6f 75 74 70 75 74 20 | o.the.command.above,.the.output. |
| 595e0 | 69 73 20 69 6e 20 61 20 66 6f 72 6d 61 74 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 75 73 65 64 | is.in.a.format.which.can.be.used |
| 59600 | 20 74 6f 20 64 69 72 65 63 74 6c 79 20 69 6d 70 6f 72 74 20 74 68 65 20 6b 65 79 20 69 6e 74 6f | .to.directly.import.the.key.into |
| 59620 | 20 74 68 65 20 56 79 4f 53 20 43 4c 49 20 62 79 20 73 69 6d 70 6c 79 20 63 6f 70 79 2d 70 61 73 | .the.VyOS.CLI.by.simply.copy-pas |
| 59640 | 74 69 6e 67 20 74 68 65 20 6f 75 74 70 75 74 20 66 72 6f 6d 20 6f 70 2d 6d 6f 64 65 20 69 6e 74 | ting.the.output.from.op-mode.int |
| 59660 | 6f 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 65 2e 00 49 6e 20 61 64 64 69 74 69 6f | o.configuration.mode..In.additio |
| 59680 | 6e 20 77 65 20 73 65 74 75 70 20 49 50 76 36 20 3a 61 62 62 72 3a 60 52 41 20 28 52 6f 75 74 65 | n.we.setup.IPv6.:abbr:`RA.(Route |
| 596a0 | 72 20 41 64 76 65 72 74 69 73 65 6d 65 6e 74 73 29 60 20 74 6f 20 6d 61 6b 65 20 74 68 65 20 70 | r.Advertisements)`.to.make.the.p |
| 596c0 | 72 65 66 69 78 20 6b 6e 6f 77 6e 20 6f 6e 20 74 68 65 20 65 74 68 30 20 6c 69 6e 6b 2e 00 49 6e | refix.known.on.the.eth0.link..In |
| 596e0 | 20 61 64 64 69 74 69 6f 6e 20 79 6f 75 20 63 61 6e 20 61 6c 73 6f 20 64 69 73 61 62 6c 65 20 74 | .addition.you.can.also.disable.t |
| 59700 | 68 65 20 77 68 6f 6c 65 20 73 65 72 76 69 63 65 20 77 69 74 68 6f 75 74 20 74 68 65 20 6e 65 65 | he.whole.service.without.the.nee |
| 59720 | 64 20 74 6f 20 72 65 6d 6f 76 65 20 69 74 20 66 72 6f 6d 20 74 68 65 20 63 75 72 72 65 6e 74 20 | d.to.remove.it.from.the.current. |
| 59740 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 49 6e 20 61 64 64 69 74 69 6f 6e 20 79 6f 75 20 77 | configuration..In.addition.you.w |
| 59760 | 69 6c 6c 20 73 70 65 63 69 66 69 79 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 46 | ill.specifiy.the.IP.address.or.F |
| 59780 | 51 44 4e 20 66 6f 72 20 74 68 65 20 63 6c 69 65 6e 74 20 77 68 65 72 65 20 69 74 20 77 69 6c 6c | QDN.for.the.client.where.it.will |
| 597a0 | 20 63 6f 6e 6e 65 63 74 20 74 6f 2e 20 54 68 65 20 61 64 64 72 65 73 73 20 70 61 72 61 6d 65 74 | .connect.to..The.address.paramet |
| 597c0 | 65 72 20 63 61 6e 20 62 65 20 75 73 65 64 20 75 70 20 74 6f 20 74 77 6f 20 74 69 6d 65 73 20 61 | er.can.be.used.up.to.two.times.a |
| 597e0 | 6e 64 20 69 73 20 75 73 65 64 20 74 6f 20 61 73 73 69 67 6e 20 74 68 65 20 63 6c 69 65 6e 74 73 | nd.is.used.to.assign.the.clients |
| 59800 | 20 73 70 65 63 69 66 69 63 20 49 50 76 34 20 28 2f 33 32 29 20 6f 72 20 49 50 76 36 20 28 2f 31 | .specific.IPv4.(/32).or.IPv6.(/1 |
| 59820 | 32 38 29 20 61 64 64 72 65 73 73 2e 00 49 6e 20 61 64 64 69 74 69 6f 6e 20 79 6f 75 20 77 69 6c | 28).address..In.addition.you.wil |
| 59840 | 6c 20 73 70 65 63 69 66 79 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 46 51 44 4e | l.specify.the.IP.address.or.FQDN |
| 59860 | 20 66 6f 72 20 74 68 65 20 63 6c 69 65 6e 74 20 77 68 65 72 65 20 69 74 20 77 69 6c 6c 20 63 6f | .for.the.client.where.it.will.co |
| 59880 | 6e 6e 65 63 74 20 74 6f 2e 20 54 68 65 20 61 64 64 72 65 73 73 20 70 61 72 61 6d 65 74 65 72 20 | nnect.to..The.address.parameter. |
| 598a0 | 63 61 6e 20 62 65 20 75 73 65 64 20 75 70 20 74 6f 20 74 77 6f 20 74 69 6d 65 73 20 61 6e 64 20 | can.be.used.up.to.two.times.and. |
| 598c0 | 69 73 20 75 73 65 64 20 74 6f 20 61 73 73 69 67 6e 20 74 68 65 20 63 6c 69 65 6e 74 73 20 73 70 | is.used.to.assign.the.clients.sp |
| 598e0 | 65 63 69 66 69 63 20 49 50 76 34 20 28 2f 33 32 29 20 6f 72 20 49 50 76 36 20 28 2f 31 32 38 29 | ecific.IPv4.(/32).or.IPv6.(/128) |
| 59900 | 20 61 64 64 72 65 73 73 2e 00 49 6e 20 61 64 64 69 74 69 6f 6e 2c 20 79 6f 75 20 63 61 6e 20 73 | .address..In.addition,.you.can.s |
| 59920 | 70 65 63 69 66 79 20 6d 61 6e 79 20 6f 74 68 65 72 20 70 61 72 61 6d 65 74 65 72 73 20 74 6f 20 | pecify.many.other.parameters.to. |
| 59940 | 67 65 74 20 42 47 50 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 3a 00 49 6e 20 61 6e 20 2a 2a 61 64 64 | get.BGP.information:.In.an.**add |
| 59960 | 72 65 73 73 20 67 72 6f 75 70 2a 2a 20 61 20 73 69 6e 67 6c 65 20 49 50 20 61 64 64 72 65 73 73 | ress.group**.a.single.IP.address |
| 59980 | 20 6f 72 20 49 50 20 61 64 64 72 65 73 73 20 72 61 6e 67 65 20 69 73 20 64 65 66 69 6e 65 64 2e | .or.IP.address.range.is.defined. |
| 599a0 | 00 49 6e 20 61 6e 20 2a 2a 61 64 64 72 65 73 73 20 67 72 6f 75 70 2a 2a 20 61 20 73 69 6e 67 6c | .In.an.**address.group**.a.singl |
| 599c0 | 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 49 50 20 61 64 64 72 65 73 73 20 72 61 6e 67 65 | e.IP.address.or.IP.address.range |
| 599e0 | 73 20 61 72 65 20 64 65 66 69 6e 65 64 2e 00 49 6e 20 62 6f 74 68 20 63 61 73 65 73 2c 20 77 65 | s.are.defined..In.both.cases,.we |
| 59a00 | 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 65 74 74 69 6e 67 73 | .will.use.the.following.settings |
| 59a20 | 3a 00 49 6e 20 63 61 73 65 20 6f 66 20 70 65 65 72 2d 70 65 65 72 20 72 65 6c 61 74 69 6f 6e 73 | :.In.case.of.peer-peer.relations |
| 59a40 | 68 69 70 20 72 6f 75 74 65 73 20 63 61 6e 20 62 65 20 72 65 63 65 69 76 65 64 20 6f 6e 6c 79 20 | hip.routes.can.be.received.only. |
| 59a60 | 69 66 20 4f 54 43 20 76 61 6c 75 65 20 69 73 20 65 71 75 61 6c 20 74 6f 20 79 6f 75 72 20 6e 65 | if.OTC.value.is.equal.to.your.ne |
| 59a80 | 69 67 68 62 6f 72 20 41 53 20 6e 75 6d 62 65 72 2e 00 49 6e 20 63 61 73 65 2c 20 69 66 20 79 6f | ighbor.AS.number..In.case,.if.yo |
| 59aa0 | 75 20 6e 65 65 64 20 74 6f 20 63 61 74 63 68 20 73 6f 6d 65 20 6c 6f 67 73 20 66 72 6f 6d 20 66 | u.need.to.catch.some.logs.from.f |
| 59ac0 | 6c 6f 77 2d 61 63 63 6f 75 6e 74 69 6e 67 20 64 61 65 6d 6f 6e 2c 20 79 6f 75 20 6d 61 79 20 63 | low-accounting.daemon,.you.may.c |
| 59ae0 | 6f 6e 66 69 67 75 72 65 20 6c 6f 67 67 69 6e 67 20 66 61 63 69 6c 69 74 79 3a 00 49 6e 20 63 6f | onfigure.logging.facility:.In.co |
| 59b00 | 6e 74 72 61 73 74 20 74 6f 20 73 69 6d 70 6c 65 20 52 45 44 2c 20 56 79 4f 53 27 20 52 61 6e 64 | ntrast.to.simple.RED,.VyOS'.Rand |
| 59b20 | 6f 6d 2d 44 65 74 65 63 74 20 75 73 65 73 20 61 20 47 65 6e 65 72 61 6c 69 7a 65 64 20 52 61 6e | om-Detect.uses.a.Generalized.Ran |
| 59b40 | 64 6f 6d 20 45 61 72 6c 79 20 44 65 74 65 63 74 20 70 6f 6c 69 63 79 20 74 68 61 74 20 70 72 6f | dom.Early.Detect.policy.that.pro |
| 59b60 | 76 69 64 65 73 20 64 69 66 66 65 72 65 6e 74 20 76 69 72 74 75 61 6c 20 71 75 65 75 65 73 20 62 | vides.different.virtual.queues.b |
| 59b80 | 61 73 65 64 20 6f 6e 20 74 68 65 20 49 50 20 50 72 65 63 65 64 65 6e 63 65 20 76 61 6c 75 65 20 | ased.on.the.IP.Precedence.value. |
| 59ba0 | 73 6f 20 74 68 61 74 20 73 6f 6d 65 20 76 69 72 74 75 61 6c 20 71 75 65 75 65 73 20 63 61 6e 20 | so.that.some.virtual.queues.can. |
| 59bc0 | 64 72 6f 70 20 6d 6f 72 65 20 70 61 63 6b 65 74 73 20 74 68 61 6e 20 6f 74 68 65 72 73 2e 00 49 | drop.more.packets.than.others..I |
| 59be0 | 6e 20 66 61 69 6c 6f 76 65 72 20 6d 6f 64 65 2c 20 6f 6e 65 20 69 6e 74 65 72 66 61 63 65 20 69 | n.failover.mode,.one.interface.i |
| 59c00 | 73 20 73 65 74 20 74 6f 20 62 65 20 74 68 65 20 70 72 69 6d 61 72 79 20 69 6e 74 65 72 66 61 63 | s.set.to.be.the.primary.interfac |
| 59c20 | 65 20 61 6e 64 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 73 65 63 6f 6e | e.and.other.interfaces.are.secon |
| 59c40 | 64 61 72 79 20 6f 72 20 73 70 61 72 65 2e 20 49 6e 73 74 65 61 64 20 6f 66 20 62 61 6c 61 6e 63 | dary.or.spare..Instead.of.balanc |
| 59c60 | 69 6e 67 20 74 72 61 66 66 69 63 20 61 63 72 6f 73 73 20 61 6c 6c 20 68 65 61 6c 74 68 79 20 69 | ing.traffic.across.all.healthy.i |
| 59c80 | 6e 74 65 72 66 61 63 65 73 2c 20 6f 6e 6c 79 20 74 68 65 20 70 72 69 6d 61 72 79 20 69 6e 74 65 | nterfaces,.only.the.primary.inte |
| 59ca0 | 72 66 61 63 65 20 69 73 20 75 73 65 64 20 61 6e 64 20 69 6e 20 63 61 73 65 20 6f 66 20 66 61 69 | rface.is.used.and.in.case.of.fai |
| 59cc0 | 6c 75 72 65 2c 20 61 20 73 65 63 6f 6e 64 61 72 79 20 69 6e 74 65 72 66 61 63 65 20 73 65 6c 65 | lure,.a.secondary.interface.sele |
| 59ce0 | 63 74 65 64 20 66 72 6f 6d 20 74 68 65 20 70 6f 6f 6c 20 6f 66 20 61 76 61 69 6c 61 62 6c 65 20 | cted.from.the.pool.of.available. |
| 59d00 | 69 6e 74 65 72 66 61 63 65 73 20 74 61 6b 65 73 20 6f 76 65 72 2e 20 54 68 65 20 70 72 69 6d 61 | interfaces.takes.over..The.prima |
| 59d20 | 72 79 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 73 65 6c 65 63 74 65 64 20 62 61 73 65 64 20 6f | ry.interface.is.selected.based.o |
| 59d40 | 6e 20 69 74 73 20 77 65 69 67 68 74 20 61 6e 64 20 68 65 61 6c 74 68 2c 20 6f 74 68 65 72 73 20 | n.its.weight.and.health,.others. |
| 59d60 | 62 65 63 6f 6d 65 20 73 65 63 6f 6e 64 61 72 79 20 69 6e 74 65 72 66 61 63 65 73 2e 20 53 65 63 | become.secondary.interfaces..Sec |
| 59d80 | 6f 6e 64 61 72 79 20 69 6e 74 65 72 66 61 63 65 73 20 74 6f 20 74 61 6b 65 20 6f 76 65 72 20 61 | ondary.interfaces.to.take.over.a |
| 59da0 | 20 66 61 69 6c 65 64 20 70 72 69 6d 61 72 79 20 69 6e 74 65 72 66 61 63 65 20 61 72 65 20 63 68 | .failed.primary.interface.are.ch |
| 59dc0 | 6f 73 65 6e 20 66 72 6f 6d 20 74 68 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 72 27 73 20 69 6e | osen.from.the.load.balancer's.in |
| 59de0 | 74 65 72 66 61 63 65 20 70 6f 6f 6c 2c 20 64 65 70 65 6e 64 69 6e 67 20 6f 6e 20 74 68 65 69 72 | terface.pool,.depending.on.their |
| 59e00 | 20 77 65 69 67 68 74 20 61 6e 64 20 68 65 61 6c 74 68 2e 20 49 6e 74 65 72 66 61 63 65 20 72 6f | .weight.and.health..Interface.ro |
| 59e20 | 6c 65 73 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 73 65 6c 65 63 74 65 64 20 62 61 73 65 64 20 6f | les.can.also.be.selected.based.o |
| 59e40 | 6e 20 72 75 6c 65 20 6f 72 64 65 72 20 62 79 20 69 6e 63 6c 75 64 69 6e 67 20 69 6e 74 65 72 66 | n.rule.order.by.including.interf |
| 59e60 | 61 63 65 73 20 69 6e 20 62 61 6c 61 6e 63 69 6e 67 20 72 75 6c 65 73 20 61 6e 64 20 6f 72 64 65 | aces.in.balancing.rules.and.orde |
| 59e80 | 72 69 6e 67 20 74 68 6f 73 65 20 72 75 6c 65 73 20 61 63 63 6f 72 64 69 6e 67 6c 79 2e 20 54 6f | ring.those.rules.accordingly..To |
| 59ea0 | 20 70 75 74 20 74 68 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 72 20 69 6e 20 66 61 69 6c 6f 76 | .put.the.load.balancer.in.failov |
| 59ec0 | 65 72 20 6d 6f 64 65 2c 20 63 72 65 61 74 65 20 61 20 66 61 69 6c 6f 76 65 72 20 72 75 6c 65 3a | er.mode,.create.a.failover.rule: |
| 59ee0 | 00 49 6e 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 72 75 6c 65 73 2c 20 74 68 65 20 61 | .In.firewall.bridge.rules,.the.a |
| 59f00 | 63 74 69 6f 6e 20 63 61 6e 20 62 65 3a 00 49 6e 20 67 65 6e 65 72 61 6c 2c 20 4f 53 50 46 20 70 | ction.can.be:.In.general,.OSPF.p |
| 59f20 | 72 6f 74 6f 63 6f 6c 20 72 65 71 75 69 72 65 73 20 61 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 | rotocol.requires.a.backbone.area |
| 59f40 | 20 28 61 72 65 61 20 30 29 20 74 6f 20 62 65 20 63 6f 68 65 72 65 6e 74 20 61 6e 64 20 66 75 6c | .(area.0).to.be.coherent.and.ful |
| 59f60 | 6c 79 20 63 6f 6e 6e 65 63 74 65 64 2e 20 49 2e 65 2e 20 61 6e 79 20 62 61 63 6b 62 6f 6e 65 20 | ly.connected..I.e..any.backbone. |
| 59f80 | 61 72 65 61 20 72 6f 75 74 65 72 20 6d 75 73 74 20 68 61 76 65 20 61 20 72 6f 75 74 65 20 74 6f | area.router.must.have.a.route.to |
| 59fa0 | 20 61 6e 79 20 6f 74 68 65 72 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 72 6f 75 74 65 72 2e | .any.other.backbone.area.router. |
| 59fc0 | 20 4d 6f 72 65 6f 76 65 72 2c 20 65 76 65 72 79 20 41 42 52 20 6d 75 73 74 20 68 61 76 65 20 61 | .Moreover,.every.ABR.must.have.a |
| 59fe0 | 20 6c 69 6e 6b 20 74 6f 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 2e 20 48 6f 77 65 76 65 72 2c | .link.to.backbone.area..However, |
| 5a000 | 20 69 74 20 69 73 20 6e 6f 74 20 61 6c 77 61 79 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 68 61 | .it.is.not.always.possible.to.ha |
| 5a020 | 76 65 20 61 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 20 74 6f 20 61 20 62 61 63 6b 62 6f 6e 65 | ve.a.physical.link.to.a.backbone |
| 5a040 | 20 61 72 65 61 2e 20 49 6e 20 74 68 69 73 20 63 61 73 65 20 62 65 74 77 65 65 6e 20 74 77 6f 20 | .area..In.this.case.between.two. |
| 5a060 | 41 42 52 20 28 6f 6e 65 20 6f 66 20 74 68 65 6d 20 68 61 73 20 61 20 6c 69 6e 6b 20 74 6f 20 74 | ABR.(one.of.them.has.a.link.to.t |
| 5a080 | 68 65 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 29 20 69 6e 20 74 68 65 20 61 72 65 61 20 28 6e | he.backbone.area).in.the.area.(n |
| 5a0a0 | 6f 74 20 73 74 75 62 20 61 72 65 61 29 20 61 20 76 69 72 74 75 61 6c 20 6c 69 6e 6b 20 69 73 20 | ot.stub.area).a.virtual.link.is. |
| 5a0c0 | 6f 72 67 61 6e 69 7a 65 64 2e 00 49 6e 20 6c 61 72 67 65 20 64 65 70 6c 6f 79 6d 65 6e 74 73 20 | organized..In.large.deployments. |
| 5a0e0 | 69 74 20 69 73 20 6e 6f 74 20 72 65 61 73 6f 6e 61 62 6c 65 20 74 6f 20 63 6f 6e 66 69 67 75 72 | it.is.not.reasonable.to.configur |
| 5a100 | 65 20 65 61 63 68 20 75 73 65 72 20 69 6e 64 69 76 69 64 75 61 6c 6c 79 20 6f 6e 20 65 76 65 72 | e.each.user.individually.on.ever |
| 5a120 | 79 20 73 79 73 74 65 6d 2e 20 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 75 73 69 6e 67 20 3a 61 | y.system..VyOS.supports.using.:a |
| 5a140 | 62 62 72 3a 60 52 41 44 49 55 53 20 28 52 65 6d 6f 74 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 | bbr:`RADIUS.(Remote.Authenticati |
| 5a160 | 6f 6e 20 44 69 61 6c 2d 49 6e 20 55 73 65 72 20 53 65 72 76 69 63 65 29 60 20 73 65 72 76 65 72 | on.Dial-In.User.Service)`.server |
| 5a180 | 73 20 61 73 20 62 61 63 6b 65 6e 64 20 66 6f 72 20 75 73 65 72 20 61 75 74 68 65 6e 74 69 63 61 | s.as.backend.for.user.authentica |
| 5a1a0 | 74 69 6f 6e 2e 00 49 6e 20 6f 72 64 65 72 20 66 6f 72 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 | tion..In.order.for.flow.accounti |
| 5a1c0 | 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 62 65 20 63 6f 6c 6c 65 63 74 65 64 20 61 | ng.information.to.be.collected.a |
| 5a1e0 | 6e 64 20 64 69 73 70 6c 61 79 65 64 20 66 6f 72 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2c 20 74 | nd.displayed.for.an.interface,.t |
| 5a200 | 68 65 20 69 6e 74 65 72 66 61 63 65 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 | he.interface.must.be.configured. |
| 5a220 | 66 6f 72 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 2e 00 49 6e 20 6f 72 64 65 72 20 66 6f | for.flow.accounting..In.order.fo |
| 5a240 | 72 20 74 68 65 20 70 72 69 6d 61 72 79 20 61 6e 64 20 74 68 65 20 73 65 63 6f 6e 64 61 72 79 20 | r.the.primary.and.the.secondary. |
| 5a260 | 44 48 43 50 20 73 65 72 76 65 72 20 74 6f 20 6b 65 65 70 20 74 68 65 69 72 20 6c 65 61 73 65 20 | DHCP.server.to.keep.their.lease. |
| 5a280 | 74 61 62 6c 65 73 20 69 6e 20 73 79 6e 63 2c 20 74 68 65 79 20 6d 75 73 74 20 62 65 20 61 62 6c | tables.in.sync,.they.must.be.abl |
| 5a2a0 | 65 20 74 6f 20 72 65 61 63 68 20 65 61 63 68 20 6f 74 68 65 72 20 6f 6e 20 54 43 50 20 70 6f 72 | e.to.reach.each.other.on.TCP.por |
| 5a2c0 | 74 20 36 34 37 2e 20 49 66 20 79 6f 75 20 68 61 76 65 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 | t.647..If.you.have.firewall.rule |
| 5a2e0 | 73 20 69 6e 20 65 66 66 65 63 74 2c 20 61 64 6a 75 73 74 20 74 68 65 6d 20 61 63 63 6f 72 64 69 | s.in.effect,.adjust.them.accordi |
| 5a300 | 6e 67 6c 79 2e 00 49 6e 20 6f 72 64 65 72 20 66 6f 72 20 74 68 65 20 73 79 73 74 65 6d 20 74 6f | ngly..In.order.for.the.system.to |
| 5a320 | 20 75 73 65 20 61 6e 64 20 63 6f 6d 70 6c 65 74 65 20 75 6e 71 75 61 6c 69 66 69 65 64 20 68 6f | .use.and.complete.unqualified.ho |
| 5a340 | 73 74 20 6e 61 6d 65 73 2c 20 61 20 6c 69 73 74 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 | st.names,.a.list.can.be.defined. |
| 5a360 | 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 66 6f 72 20 64 6f 6d 61 69 6e 20 73 65 | which.will.be.used.for.domain.se |
| 5a380 | 61 72 63 68 65 73 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 61 6c 6c 6f 77 20 66 6f 72 20 4c 44 | arches..In.order.to.allow.for.LD |
| 5a3a0 | 50 20 6f 6e 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 74 6f 20 65 78 63 68 61 6e 67 | P.on.the.local.router.to.exchang |
| 5a3c0 | 65 20 6c 61 62 65 6c 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 73 20 77 69 74 68 20 6f 74 68 65 | e.label.advertisements.with.othe |
| 5a3e0 | 72 20 72 6f 75 74 65 72 73 2c 20 61 20 54 43 50 20 73 65 73 73 69 6f 6e 20 77 69 6c 6c 20 62 65 | r.routers,.a.TCP.session.will.be |
| 5a400 | 20 65 73 74 61 62 6c 69 73 68 65 64 20 62 65 74 77 65 65 6e 20 61 75 74 6f 6d 61 74 69 63 61 6c | .established.between.automatical |
| 5a420 | 6c 79 20 64 69 73 63 6f 76 65 72 65 64 20 61 6e 64 20 73 74 61 74 69 63 61 6c 6c 79 20 61 73 73 | ly.discovered.and.statically.ass |
| 5a440 | 69 67 6e 65 64 20 72 6f 75 74 65 72 73 2e 20 4c 44 50 20 77 69 6c 6c 20 74 72 79 20 74 6f 20 65 | igned.routers..LDP.will.try.to.e |
| 5a460 | 73 74 61 62 6c 69 73 68 20 61 20 54 43 50 20 73 65 73 73 69 6f 6e 20 74 6f 20 74 68 65 20 2a 2a | stablish.a.TCP.session.to.the.** |
| 5a480 | 74 72 61 6e 73 70 6f 72 74 20 61 64 64 72 65 73 73 2a 2a 20 6f 66 20 6f 74 68 65 72 20 72 6f 75 | transport.address**.of.other.rou |
| 5a4a0 | 74 65 72 73 2e 20 54 68 65 72 65 66 6f 72 65 20 66 6f 72 20 4c 44 50 20 74 6f 20 66 75 6e 63 74 | ters..Therefore.for.LDP.to.funct |
| 5a4c0 | 69 6f 6e 20 70 72 6f 70 65 72 6c 79 20 70 6c 65 61 73 65 20 6d 61 6b 65 20 73 75 72 65 20 74 68 | ion.properly.please.make.sure.th |
| 5a4e0 | 65 20 74 72 61 6e 73 70 6f 72 74 20 61 64 64 72 65 73 73 20 69 73 20 73 68 6f 77 6e 20 69 6e 20 | e.transport.address.is.shown.in. |
| 5a500 | 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 61 6e 64 20 72 65 61 63 68 61 62 6c 65 20 | the.routing.table.and.reachable. |
| 5a520 | 74 6f 20 74 72 61 66 66 69 63 20 61 74 20 61 6c 6c 20 74 69 6d 65 73 2e 00 49 6e 20 6f 72 64 65 | to.traffic.at.all.times..In.orde |
| 5a540 | 72 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 61 6e 64 20 6d 6f 64 69 66 79 20 72 6f 75 74 69 6e 67 20 | r.to.control.and.modify.routing. |
| 5a560 | 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 68 61 74 20 69 73 20 65 78 63 68 61 6e 67 65 64 20 62 65 | information.that.is.exchanged.be |
| 5a580 | 74 77 65 65 6e 20 70 65 65 72 73 20 79 6f 75 20 63 61 6e 20 75 73 65 20 72 6f 75 74 65 2d 6d 61 | tween.peers.you.can.use.route-ma |
| 5a5a0 | 70 2c 20 66 69 6c 74 65 72 2d 6c 69 73 74 2c 20 70 72 65 66 69 78 2d 6c 69 73 74 2c 20 64 69 73 | p,.filter-list,.prefix-list,.dis |
| 5a5c0 | 74 72 69 62 75 74 65 2d 6c 69 73 74 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 64 65 66 69 6e 65 | tribute-list..In.order.to.define |
| 5a5e0 | 20 77 68 69 63 68 20 74 72 61 66 66 69 63 20 67 6f 65 73 20 69 6e 74 6f 20 77 68 69 63 68 20 63 | .which.traffic.goes.into.which.c |
| 5a600 | 6c 61 73 73 2c 20 79 6f 75 20 64 65 66 69 6e 65 20 66 69 6c 74 65 72 73 20 28 74 68 61 74 20 69 | lass,.you.define.filters.(that.i |
| 5a620 | 73 2c 20 74 68 65 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 29 2e 20 50 61 63 6b 65 | s,.the.matching.criteria)..Packe |
| 5a640 | 74 73 20 67 6f 20 74 68 72 6f 75 67 68 20 74 68 65 73 65 20 6d 61 74 63 68 69 6e 67 20 72 75 6c | ts.go.through.these.matching.rul |
| 5a660 | 65 73 20 28 61 73 20 69 6e 20 74 68 65 20 72 75 6c 65 73 20 6f 66 20 61 20 66 69 72 65 77 61 6c | es.(as.in.the.rules.of.a.firewal |
| 5a680 | 6c 29 20 61 6e 64 2c 20 69 66 20 61 20 70 61 63 6b 65 74 20 6d 61 74 63 68 65 73 20 74 68 65 20 | l).and,.if.a.packet.matches.the. |
| 5a6a0 | 66 69 6c 74 65 72 2c 20 69 74 20 69 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 74 68 61 74 20 63 | filter,.it.is.assigned.to.that.c |
| 5a6c0 | 6c 61 73 73 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 68 61 76 65 20 56 79 4f 53 20 54 72 61 66 | lass..In.order.to.have.VyOS.Traf |
| 5a6e0 | 66 69 63 20 43 6f 6e 74 72 6f 6c 20 77 6f 72 6b 69 6e 67 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 | fic.Control.working.you.need.to. |
| 5a700 | 66 6f 6c 6c 6f 77 20 32 20 73 74 65 70 73 3a 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 68 61 76 65 | follow.2.steps:.In.order.to.have |
| 5a720 | 20 66 75 6c 6c 20 63 6f 6e 74 72 6f 6c 20 61 6e 64 20 6d 61 6b 65 20 75 73 65 20 6f 66 20 6d 75 | .full.control.and.make.use.of.mu |
| 5a740 | 6c 74 69 70 6c 65 20 73 74 61 74 69 63 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 65 | ltiple.static.public.IP.addresse |
| 5a760 | 73 2c 20 79 6f 75 72 20 56 79 4f 53 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 69 6e 69 74 69 61 | s,.your.VyOS.will.have.to.initia |
| 5a780 | 74 65 20 74 68 65 20 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 61 6e 64 20 63 6f 6e 74 | te.the.PPPoE.connection.and.cont |
| 5a7a0 | 72 6f 6c 20 69 74 2e 20 49 6e 20 6f 72 64 65 72 20 66 6f 72 20 74 68 69 73 20 6d 65 74 68 6f 64 | rol.it..In.order.for.this.method |
| 5a7c0 | 20 74 6f 20 77 6f 72 6b 2c 20 79 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 66 69 67 75 72 | .to.work,.you.will.have.to.figur |
| 5a7e0 | 65 20 6f 75 74 20 68 6f 77 20 74 6f 20 6d 61 6b 65 20 79 6f 75 72 20 44 53 4c 20 4d 6f 64 65 6d | e.out.how.to.make.your.DSL.Modem |
| 5a800 | 2f 52 6f 75 74 65 72 20 73 77 69 74 63 68 20 69 6e 74 6f 20 61 20 42 72 69 64 67 65 64 20 4d 6f | /Router.switch.into.a.Bridged.Mo |
| 5a820 | 64 65 20 73 6f 20 69 74 20 6f 6e 6c 79 20 61 63 74 73 20 61 73 20 61 20 44 53 4c 20 54 72 61 6e | de.so.it.only.acts.as.a.DSL.Tran |
| 5a840 | 73 63 65 69 76 65 72 20 64 65 76 69 63 65 20 74 6f 20 63 6f 6e 6e 65 63 74 20 62 65 74 77 65 65 | sceiver.device.to.connect.betwee |
| 5a860 | 6e 20 74 68 65 20 45 74 68 65 72 6e 65 74 20 6c 69 6e 6b 20 6f 66 20 79 6f 75 72 20 56 79 4f 53 | n.the.Ethernet.link.of.your.VyOS |
| 5a880 | 20 61 6e 64 20 74 68 65 20 70 68 6f 6e 65 20 63 61 62 6c 65 2e 20 4f 6e 63 65 20 79 6f 75 72 20 | .and.the.phone.cable..Once.your. |
| 5a8a0 | 44 53 4c 20 54 72 61 6e 73 63 65 69 76 65 72 20 69 73 20 69 6e 20 42 72 69 64 67 65 20 4d 6f 64 | DSL.Transceiver.is.in.Bridge.Mod |
| 5a8c0 | 65 2c 20 79 6f 75 20 73 68 6f 75 6c 64 20 67 65 74 20 6e 6f 20 49 50 20 61 64 64 72 65 73 73 20 | e,.you.should.get.no.IP.address. |
| 5a8e0 | 66 72 6f 6d 20 69 74 2e 20 50 6c 65 61 73 65 20 6d 61 6b 65 20 73 75 72 65 20 79 6f 75 20 63 6f | from.it..Please.make.sure.you.co |
| 5a900 | 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 45 74 68 65 72 6e 65 74 20 50 6f 72 74 20 31 20 69 66 20 | nnect.to.the.Ethernet.Port.1.if. |
| 5a920 | 79 6f 75 72 20 44 53 4c 20 54 72 61 6e 73 63 65 69 76 65 72 20 68 61 73 20 61 20 73 77 69 74 63 | your.DSL.Transceiver.has.a.switc |
| 5a940 | 68 2c 20 61 73 20 73 6f 6d 65 20 6f 66 20 74 68 65 6d 20 6f 6e 6c 79 20 77 6f 72 6b 20 74 68 69 | h,.as.some.of.them.only.work.thi |
| 5a960 | 73 20 77 61 79 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 6d 61 70 20 73 70 65 63 69 66 69 63 20 | s.way..In.order.to.map.specific. |
| 5a980 | 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 73 70 65 63 69 66 69 63 20 68 6f 73 74 73 | IPv6.addresses.to.specific.hosts |
| 5a9a0 | 20 73 74 61 74 69 63 20 6d 61 70 70 69 6e 67 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 2e | .static.mappings.can.be.created. |
| 5a9c0 | 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 20 65 78 70 6c 61 69 6e 73 20 | .The.following.example.explains. |
| 5a9e0 | 74 68 65 20 70 72 6f 63 65 73 73 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 6d 69 6e 69 6d 69 7a | the.process..In.order.to.minimiz |
| 5aa00 | 65 20 74 68 65 20 66 6c 6f 6f 64 69 6e 67 20 6f 66 20 41 52 50 20 61 6e 64 20 4e 44 20 6d 65 73 | e.the.flooding.of.ARP.and.ND.mes |
| 5aa20 | 73 61 67 65 73 20 69 6e 20 74 68 65 20 56 58 4c 41 4e 20 6e 65 74 77 6f 72 6b 2c 20 45 56 50 4e | sages.in.the.VXLAN.network,.EVPN |
| 5aa40 | 20 69 6e 63 6c 75 64 65 73 20 70 72 6f 76 69 73 69 6f 6e 73 20 3a 72 66 63 3a 60 37 34 33 32 23 | .includes.provisions.:rfc:`7432# |
| 5aa60 | 73 65 63 74 69 6f 6e 2d 31 30 60 20 74 68 61 74 20 61 6c 6c 6f 77 20 70 61 72 74 69 63 69 70 61 | section-10`.that.allow.participa |
| 5aa80 | 74 69 6e 67 20 56 54 45 50 73 20 74 6f 20 73 75 70 70 72 65 73 73 20 73 75 63 68 20 6d 65 73 73 | ting.VTEPs.to.suppress.such.mess |
| 5aaa0 | 61 67 65 73 20 69 6e 20 63 61 73 65 20 74 68 65 79 20 6b 6e 6f 77 20 74 68 65 20 4d 41 43 2d 49 | ages.in.case.they.know.the.MAC-I |
| 5aac0 | 50 20 62 69 6e 64 69 6e 67 20 61 6e 64 20 63 61 6e 20 72 65 70 6c 79 20 6f 6e 20 62 65 68 61 6c | P.binding.and.can.reply.on.behal |
| 5aae0 | 66 20 6f 66 20 74 68 65 20 72 65 6d 6f 74 65 20 68 6f 73 74 2e 00 49 6e 20 6f 72 64 65 72 20 74 | f.of.the.remote.host..In.order.t |
| 5ab00 | 6f 20 73 65 70 61 72 61 74 65 20 74 72 61 66 66 69 63 2c 20 46 61 69 72 20 51 75 65 75 65 20 75 | o.separate.traffic,.Fair.Queue.u |
| 5ab20 | 73 65 73 20 61 20 63 6c 61 73 73 69 66 69 65 72 20 62 61 73 65 64 20 6f 6e 20 73 6f 75 72 63 65 | ses.a.classifier.based.on.source |
| 5ab40 | 20 61 64 64 72 65 73 73 2c 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 61 6e | .address,.destination.address.an |
| 5ab60 | 64 20 73 6f 75 72 63 65 20 70 6f 72 74 2e 20 54 68 65 20 61 6c 67 6f 72 69 74 68 6d 20 65 6e 71 | d.source.port..The.algorithm.enq |
| 5ab80 | 75 65 75 65 73 20 70 61 63 6b 65 74 73 20 74 6f 20 68 61 73 68 20 62 75 63 6b 65 74 73 20 62 61 | ueues.packets.to.hash.buckets.ba |
| 5aba0 | 73 65 64 20 6f 6e 20 74 68 6f 73 65 20 74 72 65 65 20 70 61 72 61 6d 65 74 65 72 73 2e 20 45 61 | sed.on.those.tree.parameters..Ea |
| 5abc0 | 63 68 20 6f 66 20 74 68 65 73 65 20 62 75 63 6b 65 74 73 20 73 68 6f 75 6c 64 20 72 65 70 72 65 | ch.of.these.buckets.should.repre |
| 5abe0 | 73 65 6e 74 20 61 20 75 6e 69 71 75 65 20 66 6c 6f 77 2e 20 42 65 63 61 75 73 65 20 6d 75 6c 74 | sent.a.unique.flow..Because.mult |
| 5ac00 | 69 70 6c 65 20 66 6c 6f 77 73 20 6d 61 79 20 67 65 74 20 68 61 73 68 65 64 20 74 6f 20 74 68 65 | iple.flows.may.get.hashed.to.the |
| 5ac20 | 20 73 61 6d 65 20 62 75 63 6b 65 74 2c 20 74 68 65 20 68 61 73 68 69 6e 67 20 61 6c 67 6f 72 69 | .same.bucket,.the.hashing.algori |
| 5ac40 | 74 68 6d 20 69 73 20 70 65 72 74 75 72 62 65 64 20 61 74 20 63 6f 6e 66 69 67 75 72 61 62 6c 65 | thm.is.perturbed.at.configurable |
| 5ac60 | 20 69 6e 74 65 72 76 61 6c 73 20 73 6f 20 74 68 61 74 20 74 68 65 20 75 6e 66 61 69 72 6e 65 73 | .intervals.so.that.the.unfairnes |
| 5ac80 | 73 20 6c 61 73 74 73 20 6f 6e 6c 79 20 66 6f 72 20 61 20 73 68 6f 72 74 20 77 68 69 6c 65 2e 20 | s.lasts.only.for.a.short.while.. |
| 5aca0 | 50 65 72 74 75 72 62 61 74 69 6f 6e 20 6d 61 79 20 68 6f 77 65 76 65 72 20 63 61 75 73 65 20 73 | Perturbation.may.however.cause.s |
| 5acc0 | 6f 6d 65 20 69 6e 61 64 76 65 72 74 65 6e 74 20 70 61 63 6b 65 74 20 72 65 6f 72 64 65 72 69 6e | ome.inadvertent.packet.reorderin |
| 5ace0 | 67 20 74 6f 20 6f 63 63 75 72 2e 20 41 6e 20 61 64 76 69 73 61 62 6c 65 20 76 61 6c 75 65 20 63 | g.to.occur..An.advisable.value.c |
| 5ad00 | 6f 75 6c 64 20 62 65 20 31 30 20 73 65 63 6f 6e 64 73 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 | ould.be.10.seconds..In.order.to. |
| 5ad20 | 75 73 65 20 50 49 4d 2c 20 69 74 20 69 73 20 6e 65 63 65 73 73 61 72 79 20 74 6f 20 63 6f 6e 66 | use.PIM,.it.is.necessary.to.conf |
| 5ad40 | 69 67 75 72 65 20 61 20 3a 61 62 62 72 3a 60 52 50 20 28 52 65 6e 64 65 7a 76 6f 75 73 20 50 6f | igure.a.:abbr:`RP.(Rendezvous.Po |
| 5ad60 | 69 6e 74 29 60 20 66 6f 72 20 6a 6f 69 6e 20 6d 65 73 73 61 67 65 73 20 74 6f 20 62 65 20 73 65 | int)`.for.join.messages.to.be.se |
| 5ad80 | 6e 74 20 74 6f 2e 20 43 75 72 72 65 6e 74 6c 79 20 74 68 65 20 6f 6e 6c 79 20 6d 65 74 68 6f 64 | nt.to..Currently.the.only.method |
| 5ada0 | 6f 6c 6f 67 79 20 74 6f 20 64 6f 20 74 68 69 73 20 69 73 20 76 69 61 20 73 74 61 74 69 63 20 72 | ology.to.do.this.is.via.static.r |
| 5adc0 | 65 6e 64 65 7a 76 6f 75 73 20 70 6f 69 6e 74 20 63 6f 6d 6d 61 6e 64 73 2e 00 49 6e 20 6f 72 64 | endezvous.point.commands..In.ord |
| 5ade0 | 65 72 20 74 6f 20 75 73 65 20 54 53 4f 2f 4c 52 4f 20 77 69 74 68 20 56 4d 58 4e 45 54 33 20 61 | er.to.use.TSO/LRO.with.VMXNET3.a |
| 5ae00 | 64 61 70 74 65 72 73 2c 20 74 68 65 20 53 47 20 6f 66 66 6c 6f 61 64 69 6e 67 20 6f 70 74 69 6f | dapters,.the.SG.offloading.optio |
| 5ae20 | 6e 20 6d 75 73 74 20 61 6c 73 6f 20 62 65 20 65 6e 61 62 6c 65 64 2e 00 49 6e 20 6f 72 64 65 72 | n.must.also.be.enabled..In.order |
| 5ae40 | 20 74 6f 20 75 73 65 20 54 53 4f 2f 4c 52 4f 20 77 69 74 68 20 56 4d 58 4e 45 54 33 20 61 64 61 | .to.use.TSO/LRO.with.VMXNET3.ada |
| 5ae60 | 74 65 72 73 20 6f 6e 65 20 6d 75 73 74 20 61 6c 73 6f 20 65 6e 61 62 6c 65 20 74 68 65 20 53 47 | ters.one.must.also.enable.the.SG |
| 5ae80 | 20 6f 66 66 6c 6f 61 64 69 6e 67 20 6f 70 74 69 6f 6e 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 | .offloading.option..In.order.to. |
| 5aea0 | 75 73 65 20 66 6c 6f 77 74 61 62 6c 65 73 2c 20 74 68 65 20 6d 69 6e 69 6d 61 6c 20 63 6f 6e 66 | use.flowtables,.the.minimal.conf |
| 5aec0 | 69 67 75 72 61 74 69 6f 6e 20 6e 65 65 64 65 64 20 69 6e 63 6c 75 64 65 73 3a 00 49 6e 20 6f 74 | iguration.needed.includes:.In.ot |
| 5aee0 | 68 65 72 20 77 6f 72 64 73 20 69 74 20 61 6c 6c 6f 77 73 20 63 6f 6e 74 72 6f 6c 20 6f 66 20 77 | her.words.it.allows.control.of.w |
| 5af00 | 68 69 63 68 20 63 61 72 64 73 20 28 75 73 75 61 6c 6c 79 20 31 29 20 77 69 6c 6c 20 72 65 73 70 | hich.cards.(usually.1).will.resp |
| 5af20 | 6f 6e 64 20 74 6f 20 61 6e 20 61 72 70 20 72 65 71 75 65 73 74 2e 00 49 6e 20 6f 74 68 65 72 20 | ond.to.an.arp.request..In.other. |
| 5af40 | 77 6f 72 64 73 2c 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 68 61 73 20 61 | words,.connection.tracking.has.a |
| 5af60 | 6c 72 65 61 64 79 20 6f 62 73 65 72 76 65 64 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 62 | lready.observed.the.connection.b |
| 5af80 | 65 20 63 6c 6f 73 65 64 20 61 6e 64 20 68 61 73 20 74 72 61 6e 73 69 74 69 6f 6e 20 74 68 65 20 | e.closed.and.has.transition.the. |
| 5afa0 | 66 6c 6f 77 20 74 6f 20 49 4e 56 41 4c 49 44 20 74 6f 20 70 72 65 76 65 6e 74 20 61 74 74 61 63 | flow.to.INVALID.to.prevent.attac |
| 5afc0 | 6b 73 20 66 72 6f 6d 20 61 74 74 65 6d 70 74 69 6e 67 20 74 6f 20 72 65 75 73 65 20 74 68 65 20 | ks.from.attempting.to.reuse.the. |
| 5afe0 | 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 49 6e 20 6f 75 72 20 65 78 61 6d 70 6c 65 20 74 68 65 20 63 | connection..In.our.example.the.c |
| 5b000 | 65 72 74 69 66 69 63 61 74 65 20 6e 61 6d 65 20 69 73 20 63 61 6c 6c 65 64 20 76 79 6f 73 3a 00 | ertificate.name.is.called.vyos:. |
| 5b020 | 49 6e 20 6f 75 72 20 65 78 61 6d 70 6c 65 2c 20 77 65 20 75 73 65 64 20 74 68 65 20 6b 65 79 20 | In.our.example,.we.used.the.key. |
| 5b040 | 6e 61 6d 65 20 60 60 6f 70 65 6e 76 70 6e 2d 31 60 60 20 77 68 69 63 68 20 77 65 20 77 69 6c 6c | name.``openvpn-1``.which.we.will |
| 5b060 | 20 72 65 66 65 72 65 6e 63 65 20 69 6e 20 6f 75 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e | .reference.in.our.configuration. |
| 5b080 | 00 49 6e 20 6f 75 72 20 65 78 61 6d 70 6c 65 2c 20 77 65 20 77 69 6c 6c 20 62 65 20 66 6f 72 77 | .In.our.example,.we.will.be.forw |
| 5b0a0 | 61 72 64 69 6e 67 20 77 65 62 20 73 65 72 76 65 72 20 74 72 61 66 66 69 63 20 74 6f 20 61 6e 20 | arding.web.server.traffic.to.an. |
| 5b0c0 | 69 6e 74 65 72 6e 61 6c 20 77 65 62 20 73 65 72 76 65 72 20 6f 6e 20 31 39 32 2e 31 36 38 2e 30 | internal.web.server.on.192.168.0 |
| 5b0e0 | 2e 31 30 30 2e 20 48 54 54 50 20 74 72 61 66 66 69 63 20 6d 61 6b 65 73 20 75 73 65 20 6f 66 20 | .100..HTTP.traffic.makes.use.of. |
| 5b100 | 74 68 65 20 54 43 50 20 70 72 6f 74 6f 63 6f 6c 20 6f 6e 20 70 6f 72 74 20 38 30 2e 20 46 6f 72 | the.TCP.protocol.on.port.80..For |
| 5b120 | 20 6f 74 68 65 72 20 63 6f 6d 6d 6f 6e 20 70 6f 72 74 20 6e 75 6d 62 65 72 73 2c 20 73 65 65 3a | .other.common.port.numbers,.see: |
| 5b140 | 20 68 74 74 70 73 3a 2f 2f 65 6e 2e 77 69 6b 69 70 65 64 69 61 2e 6f 72 67 2f 77 69 6b 69 2f 4c | .https://en.wikipedia.org/wiki/L |
| 5b160 | 69 73 74 5f 6f 66 5f 54 43 50 5f 61 6e 64 5f 55 44 50 5f 70 6f 72 74 5f 6e 75 6d 62 65 72 73 00 | ist_of_TCP_and_UDP_port_numbers. |
| 5b180 | 49 6e 20 70 72 69 6e 63 69 70 6c 65 2c 20 76 61 6c 75 65 73 20 6d 75 73 74 20 62 65 20 3a 63 6f | In.principle,.values.must.be.:co |
| 5b1a0 | 64 65 3a 60 6d 69 6e 2d 74 68 72 65 73 68 6f 6c 64 60 20 3c 20 3a 63 6f 64 65 3a 60 6d 61 78 2d | de:`min-threshold`.<.:code:`max- |
| 5b1c0 | 74 68 72 65 73 68 6f 6c 64 60 20 3c 20 3a 63 6f 64 65 3a 60 71 75 65 75 65 2d 6c 69 6d 69 74 60 | threshold`.<.:code:`queue-limit` |
| 5b1e0 | 2e 00 49 6e 20 73 68 6f 72 74 2c 20 44 4d 56 50 4e 20 70 72 6f 76 69 64 65 73 20 74 68 65 20 63 | ..In.short,.DMVPN.provides.the.c |
| 5b200 | 61 70 61 62 69 6c 69 74 79 20 66 6f 72 20 63 72 65 61 74 69 6e 67 20 61 20 64 79 6e 61 6d 69 63 | apability.for.creating.a.dynamic |
| 5b220 | 2d 6d 65 73 68 20 56 50 4e 20 6e 65 74 77 6f 72 6b 20 77 69 74 68 6f 75 74 20 68 61 76 69 6e 67 | -mesh.VPN.network.without.having |
| 5b240 | 20 74 6f 20 70 72 65 2d 63 6f 6e 66 69 67 75 72 65 20 28 73 74 61 74 69 63 29 20 61 6c 6c 20 70 | .to.pre-configure.(static).all.p |
| 5b260 | 6f 73 73 69 62 6c 65 20 74 75 6e 6e 65 6c 20 65 6e 64 2d 70 6f 69 6e 74 20 70 65 65 72 73 2e 00 | ossible.tunnel.end-point.peers.. |
| 5b280 | 49 6e 20 73 6f 6d 65 20 63 61 73 65 20 77 68 65 72 65 20 77 65 20 6e 65 65 64 20 74 6f 20 68 61 | In.some.case.where.we.need.to.ha |
| 5b2a0 | 76 65 20 61 6e 20 6f 72 67 61 6e 69 7a 61 74 69 6f 6e 20 6f 66 20 6f 75 72 20 6d 61 74 63 68 69 | ve.an.organization.of.our.matchi |
| 5b2c0 | 6e 67 20 73 65 6c 65 63 74 69 6f 6e 2c 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 62 65 20 6d 6f 72 | ng.selection,.in.order.to.be.mor |
| 5b2e0 | 65 20 66 6c 65 78 69 62 6c 65 20 61 6e 64 20 6f 72 67 61 6e 69 7a 65 20 77 69 74 68 20 6f 75 72 | e.flexible.and.organize.with.our |
| 5b300 | 20 66 69 6c 74 65 72 20 64 65 66 69 6e 69 74 69 6f 6e 2e 20 57 65 20 63 61 6e 20 61 70 70 6c 79 | .filter.definition..We.can.apply |
| 5b320 | 20 74 72 61 66 66 69 63 20 6d 61 74 63 68 20 67 72 6f 75 70 73 2c 20 61 6c 6c 6f 77 69 6e 67 20 | .traffic.match.groups,.allowing. |
| 5b340 | 75 73 20 74 6f 20 63 72 65 61 74 65 20 64 69 73 74 69 6e 63 74 20 66 69 6c 74 65 72 20 67 72 6f | us.to.create.distinct.filter.gro |
| 5b360 | 75 70 73 20 77 69 74 68 69 6e 20 6f 75 72 20 70 6f 6c 69 63 79 20 61 6e 64 20 64 65 66 69 6e 65 | ups.within.our.policy.and.define |
| 5b380 | 20 76 61 72 69 6f 75 73 20 70 61 72 61 6d 65 74 65 72 73 20 66 6f 72 20 65 61 63 68 20 67 72 6f | .various.parameters.for.each.gro |
| 5b3a0 | 75 70 3a 00 49 6e 20 73 6f 6d 65 20 63 61 73 65 73 20 69 74 20 6d 61 79 20 62 65 20 6d 6f 72 65 | up:.In.some.cases.it.may.be.more |
| 5b3c0 | 20 63 6f 6e 76 65 6e 69 65 6e 74 20 74 6f 20 65 6e 61 62 6c 65 20 4f 53 50 46 20 6f 6e 20 61 20 | .convenient.to.enable.OSPF.on.a. |
| 5b3e0 | 70 65 72 20 69 6e 74 65 72 66 61 63 65 2f 73 75 62 6e 65 74 20 62 61 73 69 73 20 3a 63 66 67 63 | per.interface/subnet.basis.:cfgc |
| 5b400 | 6d 64 3a 60 73 65 74 20 70 72 6f 74 6f 63 6f 6c 73 20 6f 73 70 66 20 69 6e 74 65 72 66 61 63 65 | md:`set.protocols.ospf.interface |
| 5b420 | 20 3c 69 6e 74 65 72 66 61 63 65 3e 20 61 72 65 61 20 3c 78 2e 78 2e 78 2e 78 20 7c 20 78 3e 60 | .<interface>.area.<x.x.x.x.|.x>` |
| 5b440 | 00 49 6e 20 74 68 65 20 3a 72 65 66 3a 60 63 72 65 61 74 69 6e 67 5f 61 5f 74 72 61 66 66 69 63 | .In.the.:ref:`creating_a_traffic |
| 5b460 | 5f 70 6f 6c 69 63 79 60 20 73 65 63 74 69 6f 6e 20 79 6f 75 20 77 69 6c 6c 20 73 65 65 20 74 68 | _policy`.section.you.will.see.th |
| 5b480 | 61 74 20 73 6f 6d 65 20 6f 66 20 74 68 65 20 70 6f 6c 69 63 69 65 73 20 75 73 65 20 2a 63 6c 61 | at.some.of.the.policies.use.*cla |
| 5b4a0 | 73 73 65 73 2a 2e 20 54 68 6f 73 65 20 70 6f 6c 69 63 69 65 73 20 6c 65 74 20 79 6f 75 20 64 69 | sses*..Those.policies.let.you.di |
| 5b4c0 | 73 74 72 69 62 75 74 65 20 74 72 61 66 66 69 63 20 69 6e 74 6f 20 64 69 66 66 65 72 65 6e 74 20 | stribute.traffic.into.different. |
| 5b4e0 | 63 6c 61 73 73 65 73 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 64 69 66 66 65 72 65 6e 74 20 70 | classes.according.to.different.p |
| 5b500 | 61 72 61 6d 65 74 65 72 73 20 79 6f 75 20 63 61 6e 20 63 68 6f 6f 73 65 2e 20 53 6f 2c 20 61 20 | arameters.you.can.choose..So,.a. |
| 5b520 | 63 6c 61 73 73 20 69 73 20 6a 75 73 74 20 61 20 73 70 65 63 69 66 69 63 20 74 79 70 65 20 6f 66 | class.is.just.a.specific.type.of |
| 5b540 | 20 74 72 61 66 66 69 63 20 79 6f 75 20 73 65 6c 65 63 74 2e 00 49 6e 20 74 68 65 20 56 79 4f 53 | .traffic.you.select..In.the.VyOS |
| 5b560 | 20 43 4c 49 2c 20 61 20 6b 65 79 20 70 6f 69 6e 74 20 6f 66 74 65 6e 20 6f 76 65 72 6c 6f 6f 6b | .CLI,.a.key.point.often.overlook |
| 5b580 | 65 64 20 69 73 20 74 68 61 74 20 72 61 74 68 65 72 20 74 68 61 6e 20 62 65 69 6e 67 20 63 6f 6e | ed.is.that.rather.than.being.con |
| 5b5a0 | 66 69 67 75 72 65 64 20 75 73 69 6e 67 20 74 68 65 20 60 73 65 74 20 76 70 6e 60 20 73 74 61 6e | figured.using.the.`set.vpn`.stan |
| 5b5c0 | 7a 61 2c 20 4f 70 65 6e 56 50 4e 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 61 73 20 61 20 6e | za,.OpenVPN.is.configured.as.a.n |
| 5b5e0 | 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 20 75 73 69 6e 67 20 60 73 65 74 20 69 6e 74 65 | etwork.interface.using.`set.inte |
| 5b600 | 72 66 61 63 65 73 20 6f 70 65 6e 76 70 6e 60 2e 00 49 6e 20 74 68 65 20 61 62 6f 76 65 20 65 78 | rfaces.openvpn`..In.the.above.ex |
| 5b620 | 61 6d 70 6c 65 2c 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 49 50 20 6f 66 20 31 39 32 2e 30 2e 32 | ample,.an.external.IP.of.192.0.2 |
| 5b640 | 2e 32 20 69 73 20 61 73 73 75 6d 65 64 2e 00 49 6e 20 74 68 65 20 61 67 65 20 6f 66 20 76 65 72 | .2.is.assumed..In.the.age.of.ver |
| 5b660 | 79 20 66 61 73 74 20 6e 65 74 77 6f 72 6b 73 2c 20 61 20 73 65 63 6f 6e 64 20 6f 66 20 75 6e 72 | y.fast.networks,.a.second.of.unr |
| 5b680 | 65 61 63 68 61 62 69 6c 69 74 79 20 6d 61 79 20 65 71 75 61 6c 20 6d 69 6c 6c 69 6f 6e 73 20 6f | eachability.may.equal.millions.o |
| 5b6a0 | 66 20 6c 6f 73 74 20 70 61 63 6b 65 74 73 2e 20 54 68 65 20 69 64 65 61 20 62 65 68 69 6e 64 20 | f.lost.packets..The.idea.behind. |
| 5b6c0 | 42 46 44 20 69 73 20 74 6f 20 64 65 74 65 63 74 20 76 65 72 79 20 71 75 69 63 6b 6c 79 20 77 68 | BFD.is.to.detect.very.quickly.wh |
| 5b6e0 | 65 6e 20 61 20 70 65 65 72 20 69 73 20 64 6f 77 6e 20 61 6e 64 20 74 61 6b 65 20 61 63 74 69 6f | en.a.peer.is.down.and.take.actio |
| 5b700 | 6e 20 65 78 74 72 65 6d 65 6c 79 20 66 61 73 74 2e 00 49 6e 20 74 68 65 20 63 61 73 65 20 6f 66 | n.extremely.fast..In.the.case.of |
| 5b720 | 20 4c 32 54 50 76 33 2c 20 74 68 65 20 66 65 61 74 75 72 65 73 20 6c 6f 73 74 20 61 72 65 20 74 | .L2TPv3,.the.features.lost.are.t |
| 5b740 | 65 6c 65 74 72 61 66 66 69 63 20 65 6e 67 69 6e 65 65 72 69 6e 67 20 66 65 61 74 75 72 65 73 20 | eletraffic.engineering.features. |
| 5b760 | 63 6f 6e 73 69 64 65 72 65 64 20 69 6d 70 6f 72 74 61 6e 74 20 69 6e 20 4d 50 4c 53 2e 20 48 6f | considered.important.in.MPLS..Ho |
| 5b780 | 77 65 76 65 72 2c 20 74 68 65 72 65 20 69 73 20 6e 6f 20 72 65 61 73 6f 6e 20 74 68 65 73 65 20 | wever,.there.is.no.reason.these. |
| 5b7a0 | 66 65 61 74 75 72 65 73 20 63 6f 75 6c 64 20 6e 6f 74 20 62 65 20 72 65 2d 65 6e 67 69 6e 65 65 | features.could.not.be.re-enginee |
| 5b7c0 | 72 65 64 20 69 6e 20 6f 72 20 6f 6e 20 74 6f 70 20 6f 66 20 4c 32 54 50 76 33 20 69 6e 20 6c 61 | red.in.or.on.top.of.L2TPv3.in.la |
| 5b7e0 | 74 65 72 20 70 72 6f 64 75 63 74 73 2e 00 49 6e 20 74 68 65 20 63 61 73 65 20 74 68 65 20 61 76 | ter.products..In.the.case.the.av |
| 5b800 | 65 72 61 67 65 20 71 75 65 75 65 20 73 69 7a 65 20 69 73 20 62 65 74 77 65 65 6e 20 2a 2a 6d 69 | erage.queue.size.is.between.**mi |
| 5b820 | 6e 2d 74 68 72 65 73 68 6f 6c 64 2a 2a 20 61 6e 64 20 2a 2a 6d 61 78 2d 74 68 72 65 73 68 6f 6c | n-threshold**.and.**max-threshol |
| 5b840 | 64 2a 2a 2c 20 74 68 65 6e 20 61 6e 20 61 72 72 69 76 69 6e 67 20 70 61 63 6b 65 74 20 77 6f 75 | d**,.then.an.arriving.packet.wou |
| 5b860 | 6c 64 20 62 65 20 65 69 74 68 65 72 20 64 72 6f 70 70 65 64 20 6f 72 20 70 6c 61 63 65 64 20 69 | ld.be.either.dropped.or.placed.i |
| 5b880 | 6e 20 74 68 65 20 71 75 65 75 65 2c 20 69 74 20 77 69 6c 6c 20 64 65 70 65 6e 64 20 6f 6e 20 74 | n.the.queue,.it.will.depend.on.t |
| 5b8a0 | 68 65 20 64 65 66 69 6e 65 64 20 2a 2a 6d 61 72 6b 2d 70 72 6f 62 61 62 69 6c 69 74 79 2a 2a 2e | he.defined.**mark-probability**. |
| 5b8c0 | 00 49 6e 20 74 68 65 20 63 61 73 65 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 61 70 70 6c 79 20 73 | .In.the.case.you.want.to.apply.s |
| 5b8e0 | 6f 6d 65 20 6b 69 6e 64 20 6f 66 20 2a 2a 73 68 61 70 69 6e 67 2a 2a 20 74 6f 20 79 6f 75 72 20 | ome.kind.of.**shaping**.to.your. |
| 5b900 | 2a 2a 69 6e 62 6f 75 6e 64 2a 2a 20 74 72 61 66 66 69 63 2c 20 63 68 65 63 6b 20 74 68 65 20 69 | **inbound**.traffic,.check.the.i |
| 5b920 | 6e 67 72 65 73 73 2d 73 68 61 70 69 6e 67 5f 20 73 65 63 74 69 6f 6e 2e 00 49 6e 20 74 68 65 20 | ngress-shaping_.section..In.the. |
| 5b940 | 63 6f 6d 6d 61 6e 64 20 61 62 6f 76 65 2c 20 77 65 20 73 65 74 20 74 68 65 20 74 79 70 65 20 6f | command.above,.we.set.the.type.o |
| 5b960 | 66 20 70 6f 6c 69 63 79 20 77 65 20 61 72 65 20 67 6f 69 6e 67 20 74 6f 20 77 6f 72 6b 20 77 69 | f.policy.we.are.going.to.work.wi |
| 5b980 | 74 68 20 61 6e 64 20 74 68 65 20 6e 61 6d 65 20 77 65 20 63 68 6f 6f 73 65 20 66 6f 72 20 69 74 | th.and.the.name.we.choose.for.it |
| 5b9a0 | 3b 20 61 20 63 6c 61 73 73 20 28 73 6f 20 74 68 61 74 20 77 65 20 63 61 6e 20 64 69 66 66 65 72 | ;.a.class.(so.that.we.can.differ |
| 5b9c0 | 65 6e 74 69 61 74 65 20 73 6f 6d 65 20 74 72 61 66 66 69 63 29 20 61 6e 64 20 61 6e 20 69 64 65 | entiate.some.traffic).and.an.ide |
| 5b9e0 | 6e 74 69 66 69 61 62 6c 65 20 6e 75 6d 62 65 72 20 66 6f 72 20 74 68 61 74 20 63 6c 61 73 73 3b | ntifiable.number.for.that.class; |
| 5ba00 | 20 74 68 65 6e 20 77 65 20 63 6f 6e 66 69 67 75 72 65 20 61 20 6d 61 74 63 68 69 6e 67 20 72 75 | .then.we.configure.a.matching.ru |
| 5ba20 | 6c 65 20 28 6f 72 20 66 69 6c 74 65 72 29 20 61 6e 64 20 61 20 6e 61 6d 65 20 66 6f 72 20 69 74 | le.(or.filter).and.a.name.for.it |
| 5ba40 | 2e 00 49 6e 20 74 68 65 20 65 6e 64 2c 20 61 6e 20 58 4d 4c 20 73 74 72 75 63 74 75 72 65 20 69 | ..In.the.end,.an.XML.structure.i |
| 5ba60 | 73 20 67 65 6e 65 72 61 74 65 64 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 73 61 76 65 64 20 61 | s.generated.which.can.be.saved.a |
| 5ba80 | 73 20 60 60 76 79 6f 73 2e 6d 6f 62 69 6c 65 63 6f 6e 66 69 67 60 60 20 61 6e 64 20 73 65 6e 74 | s.``vyos.mobileconfig``.and.sent |
| 5baa0 | 20 74 6f 20 74 68 65 20 64 65 76 69 63 65 20 62 79 20 45 2d 4d 61 69 6c 20 77 68 65 72 65 20 69 | .to.the.device.by.E-Mail.where.i |
| 5bac0 | 74 20 6c 61 74 65 72 20 63 61 6e 20 62 65 20 69 6d 70 6f 72 74 65 64 2e 00 49 6e 20 74 68 65 20 | t.later.can.be.imported..In.the. |
| 5bae0 | 65 78 61 6d 70 6c 65 20 61 62 6f 76 65 2c 20 74 68 65 20 66 69 72 73 74 20 34 39 39 20 73 65 73 | example.above,.the.first.499.ses |
| 5bb00 | 73 69 6f 6e 73 20 63 6f 6e 6e 65 63 74 20 77 69 74 68 6f 75 74 20 64 65 6c 61 79 2e 20 50 41 44 | sions.connect.without.delay..PAD |
| 5bb20 | 4f 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 62 65 20 64 65 6c 61 79 65 64 20 35 30 20 6d 73 20 | O.packets.will.be.delayed.50.ms. |
| 5bb40 | 66 6f 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 66 72 6f 6d 20 35 30 30 20 74 6f 20 39 39 39 2c 20 | for.connection.from.500.to.999,. |
| 5bb60 | 74 68 69 73 20 74 72 69 63 6b 20 61 6c 6c 6f 77 73 20 6f 74 68 65 72 20 50 50 50 6f 45 20 73 65 | this.trick.allows.other.PPPoE.se |
| 5bb80 | 72 76 65 72 73 20 73 65 6e 64 20 50 41 44 4f 20 66 61 73 74 65 72 20 61 6e 64 20 63 6c 69 65 6e | rvers.send.PADO.faster.and.clien |
| 5bba0 | 74 73 20 77 69 6c 6c 20 63 6f 6e 6e 65 63 74 20 74 6f 20 6f 74 68 65 72 20 73 65 72 76 65 72 73 | ts.will.connect.to.other.servers |
| 5bbc0 | 2e 20 4c 61 73 74 20 63 6f 6d 6d 61 6e 64 20 73 61 79 73 20 74 68 61 74 20 74 68 69 73 20 50 50 | ..Last.command.says.that.this.PP |
| 5bbe0 | 50 6f 45 20 73 65 72 76 65 72 20 63 61 6e 20 73 65 72 76 65 20 6f 6e 6c 79 20 33 30 30 30 20 63 | PoE.server.can.serve.only.3000.c |
| 5bc00 | 6c 69 65 6e 74 73 2e 00 49 6e 20 74 68 65 20 65 78 61 6d 70 6c 65 20 75 73 65 64 20 66 6f 72 20 | lients..In.the.example.used.for. |
| 5bc20 | 74 68 65 20 51 75 69 63 6b 20 53 74 61 72 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 62 | the.Quick.Start.configuration.ab |
| 5bc40 | 6f 76 65 2c 20 77 65 20 64 65 6d 6f 6e 73 74 72 61 74 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e | ove,.we.demonstrate.the.followin |
| 5bc60 | 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 49 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e | g.configuration:.In.the.followin |
| 5bc80 | 67 20 65 78 61 6d 70 6c 65 20 77 65 20 63 61 6e 20 73 65 65 20 61 20 62 61 73 69 63 20 6d 75 6c | g.example.we.can.see.a.basic.mul |
| 5bca0 | 74 69 63 61 73 74 20 73 65 74 75 70 3a 00 49 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 | ticast.setup:.In.the.following.e |
| 5bcc0 | 78 61 6d 70 6c 65 2c 20 62 6f 74 68 20 60 55 73 65 72 31 60 20 61 6e 64 20 60 55 73 65 72 32 60 | xample,.both.`User1`.and.`User2` |
| 5bce0 | 20 77 69 6c 6c 20 62 65 20 61 62 6c 65 20 74 6f 20 53 53 48 20 69 6e 74 6f 20 56 79 4f 53 20 61 | .will.be.able.to.SSH.into.VyOS.a |
| 5bd00 | 73 20 75 73 65 72 20 60 60 76 79 6f 73 60 60 20 75 73 69 6e 67 20 74 68 65 69 72 20 76 65 72 79 | s.user.``vyos``.using.their.very |
| 5bd20 | 20 6f 77 6e 20 6b 65 79 73 2e 20 60 55 73 65 72 31 60 20 69 73 20 72 65 73 74 72 69 63 74 65 64 | .own.keys..`User1`.is.restricted |
| 5bd40 | 20 74 6f 20 6f 6e 6c 79 20 62 65 20 61 62 6c 65 20 74 6f 20 63 6f 6e 6e 65 63 74 20 66 72 6f 6d | .to.only.be.able.to.connect.from |
| 5bd60 | 20 61 20 73 69 6e 67 6c 65 20 49 50 20 61 64 64 72 65 73 73 2e 20 49 6e 20 61 64 64 69 74 69 6f | .a.single.IP.address..In.additio |
| 5bd80 | 6e 20 69 66 20 70 61 73 73 77 6f 72 64 20 62 61 73 65 20 6c 6f 67 69 6e 20 69 73 20 77 61 6e 74 | n.if.password.base.login.is.want |
| 5bda0 | 65 64 20 66 6f 72 20 74 68 65 20 60 60 76 79 6f 73 60 60 20 75 73 65 72 20 61 20 32 46 41 2f 4d | ed.for.the.``vyos``.user.a.2FA/M |
| 5bdc0 | 46 41 20 6b 65 79 63 6f 64 65 20 69 73 20 72 65 71 75 69 72 65 64 20 69 6e 20 61 64 64 69 74 69 | FA.keycode.is.required.in.additi |
| 5bde0 | 6f 6e 20 74 6f 20 74 68 65 20 70 61 73 73 77 6f 72 64 2e 00 49 6e 20 74 68 65 20 66 6f 6c 6c 6f | on.to.the.password..In.the.follo |
| 5be00 | 77 69 6e 67 20 65 78 61 6d 70 6c 65 2c 20 74 68 65 20 49 50 73 20 66 6f 72 20 74 68 65 20 72 65 | wing.example,.the.IPs.for.the.re |
| 5be20 | 6d 6f 74 65 20 63 6c 69 65 6e 74 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 65 20 | mote.clients.are.defined.in.the. |
| 5be40 | 70 65 65 72 73 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 74 68 65 20 70 65 65 72 73 20 74 6f 20 | peers..This.allows.the.peers.to. |
| 5be60 | 69 6e 74 65 72 61 63 74 20 77 69 74 68 20 6f 6e 65 20 61 6e 6f 74 68 65 72 2e 20 49 6e 20 63 6f | interact.with.one.another..In.co |
| 5be80 | 6d 70 61 72 69 73 6f 6e 20 74 6f 20 74 68 65 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 65 78 61 | mparison.to.the.site-to-site.exa |
| 5bea0 | 6d 70 6c 65 20 74 68 65 20 60 60 70 65 72 73 69 73 74 65 6e 74 2d 6b 65 65 70 61 6c 69 76 65 60 | mple.the.``persistent-keepalive` |
| 5bec0 | 60 20 66 6c 61 67 20 69 73 20 73 65 74 20 74 6f 20 31 35 20 73 65 63 6f 6e 64 73 20 74 6f 20 61 | `.flag.is.set.to.15.seconds.to.a |
| 5bee0 | 73 73 75 72 65 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 6b 65 70 74 20 61 6c 69 | ssure.the.connection.is.kept.ali |
| 5bf00 | 76 65 2e 20 54 68 69 73 20 69 73 20 6d 61 69 6e 6c 79 20 72 65 6c 65 76 61 6e 74 20 69 66 20 6f | ve..This.is.mainly.relevant.if.o |
| 5bf20 | 6e 65 20 6f 66 20 74 68 65 20 70 65 65 72 73 20 69 73 20 62 65 68 69 6e 64 20 4e 41 54 20 61 6e | ne.of.the.peers.is.behind.NAT.an |
| 5bf40 | 64 20 63 61 6e 27 74 20 62 65 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 69 66 20 74 68 65 20 63 | d.can't.be.connected.to.if.the.c |
| 5bf60 | 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 6c 6f 73 74 2e 20 54 6f 20 62 65 20 65 66 66 65 63 74 69 | onnection.is.lost..To.be.effecti |
| 5bf80 | 76 65 20 74 68 69 73 20 76 61 6c 75 65 20 6e 65 65 64 73 20 74 6f 20 62 65 20 6c 6f 77 65 72 20 | ve.this.value.needs.to.be.lower. |
| 5bfa0 | 74 68 61 6e 20 74 68 65 20 55 44 50 20 74 69 6d 65 6f 75 74 2e 00 49 6e 20 74 68 65 20 66 6f 6c | than.the.UDP.timeout..In.the.fol |
| 5bfc0 | 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 2c 20 77 68 65 6e 20 56 4c 41 4e 39 20 74 72 61 6e 73 | lowing.example,.when.VLAN9.trans |
| 5bfe0 | 69 74 69 6f 6e 73 2c 20 56 4c 41 4e 32 30 20 77 69 6c 6c 20 61 6c 73 6f 20 74 72 61 6e 73 69 74 | itions,.VLAN20.will.also.transit |
| 5c000 | 69 6f 6e 3a 00 49 6e 20 74 68 65 20 66 75 74 75 72 65 20 74 68 69 73 20 69 73 20 65 78 70 65 63 | ion:.In.the.future.this.is.expec |
| 5c020 | 74 65 64 20 74 6f 20 62 65 20 61 20 76 65 72 79 20 75 73 65 66 75 6c 20 70 72 6f 74 6f 63 6f 6c | ted.to.be.a.very.useful.protocol |
| 5c040 | 20 28 74 68 6f 75 67 68 20 74 68 65 72 65 20 61 72 65 20 60 6f 74 68 65 72 20 70 72 6f 70 6f 73 | .(though.there.are.`other.propos |
| 5c060 | 61 6c 73 60 5f 29 2e 00 49 6e 20 74 68 65 20 6e 65 78 74 20 65 78 61 6d 70 6c 65 20 61 6c 6c 20 | als`_)..In.the.next.example.all. |
| 5c080 | 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 65 64 20 74 6f 20 60 60 32 30 33 2e 30 2e 31 31 33 2e | traffic.destined.to.``203.0.113. |
| 5c0a0 | 31 60 60 20 61 6e 64 20 70 6f 72 74 20 60 60 38 32 38 30 60 60 20 70 72 6f 74 6f 63 6f 6c 20 54 | 1``.and.port.``8280``.protocol.T |
| 5c0c0 | 43 50 20 69 73 20 62 61 6c 61 6e 63 65 64 20 62 65 74 77 65 65 6e 20 32 20 72 65 61 6c 20 73 65 | CP.is.balanced.between.2.real.se |
| 5c0e0 | 72 76 65 72 73 20 60 60 31 39 32 2e 30 2e 32 2e 31 31 60 60 20 61 6e 64 20 60 60 31 39 32 2e 30 | rvers.``192.0.2.11``.and.``192.0 |
| 5c100 | 2e 32 2e 31 32 60 60 20 74 6f 20 70 6f 72 74 20 60 60 38 30 60 60 00 49 6e 20 74 68 65 20 70 61 | .2.12``.to.port.``80``.In.the.pa |
| 5c120 | 73 74 20 28 56 79 4f 53 20 31 2e 31 29 20 75 73 65 64 20 61 20 67 61 74 65 77 61 79 2d 61 64 64 | st.(VyOS.1.1).used.a.gateway-add |
| 5c140 | 72 65 73 73 20 63 6f 6e 66 69 67 75 72 65 64 20 75 6e 64 65 72 20 74 68 65 20 73 79 73 74 65 6d | ress.configured.under.the.system |
| 5c160 | 20 74 72 65 65 20 28 3a 63 66 67 63 6d 64 3a 60 73 65 74 20 73 79 73 74 65 6d 20 67 61 74 65 77 | .tree.(:cfgcmd:`set.system.gatew |
| 5c180 | 61 79 2d 61 64 64 72 65 73 73 20 3c 61 64 64 72 65 73 73 3e 60 29 2c 20 74 68 69 73 20 69 73 20 | ay-address.<address>`),.this.is. |
| 5c1a0 | 6e 6f 20 6c 6f 6e 67 65 72 20 73 75 70 70 6f 72 74 65 64 20 61 6e 64 20 65 78 69 73 74 69 6e 67 | no.longer.supported.and.existing |
| 5c1c0 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 61 72 65 20 6d 69 67 72 61 74 65 64 20 74 6f 20 | .configurations.are.migrated.to. |
| 5c1e0 | 74 68 65 20 6e 65 77 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 2e 00 49 6e 20 74 68 69 73 20 63 6f 6d | the.new.CLI.command..In.this.com |
| 5c200 | 6d 61 6e 64 20 74 72 65 65 2c 20 61 6c 6c 20 68 61 72 64 77 61 72 65 20 61 63 63 65 6c 65 72 61 | mand.tree,.all.hardware.accelera |
| 5c220 | 74 69 6f 6e 20 6f 70 74 69 6f 6e 73 20 77 69 6c 6c 20 62 65 20 68 61 6e 64 6c 65 64 2e 20 41 74 | tion.options.will.be.handled..At |
| 5c240 | 20 74 68 65 20 6d 6f 6d 65 6e 74 20 6f 6e 6c 79 20 60 49 6e 74 65 6c c2 ae 20 51 41 54 60 5f 20 | .the.moment.only.`Intel...QAT`_. |
| 5c260 | 69 73 20 73 75 70 70 6f 72 74 65 64 00 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 20 61 6c 6c | is.supported.In.this.example.all |
| 5c280 | 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 65 64 20 74 6f 20 70 6f 72 74 73 20 22 38 30 2c 20 | .traffic.destined.to.ports."80,. |
| 5c2a0 | 32 32 32 32 2c 20 38 38 38 38 22 20 70 72 6f 74 6f 63 6f 6c 20 54 43 50 20 6d 61 72 6b 73 20 74 | 2222,.8888".protocol.TCP.marks.t |
| 5c2c0 | 6f 20 66 77 6d 61 72 6b 20 22 31 31 31 22 20 61 6e 64 20 62 61 6c 61 6e 63 65 64 20 62 65 74 77 | o.fwmark."111".and.balanced.betw |
| 5c2e0 | 65 65 6e 20 32 20 72 65 61 6c 20 73 65 72 76 65 72 73 2e 20 50 6f 72 74 20 22 30 22 20 69 73 20 | een.2.real.servers..Port."0".is. |
| 5c300 | 72 65 71 75 69 72 65 64 20 69 66 20 6d 75 6c 74 69 70 6c 65 20 70 6f 72 74 73 20 61 72 65 20 75 | required.if.multiple.ports.are.u |
| 5c320 | 73 65 64 2e 00 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 20 69 6d 61 67 65 2c 20 61 20 73 69 | sed..In.this.example.image,.a.si |
| 5c340 | 6d 70 6c 69 66 65 64 20 74 72 61 66 66 69 63 20 66 6c 6f 77 20 69 73 20 73 68 6f 77 6e 20 74 6f | mplifed.traffic.flow.is.shown.to |
| 5c360 | 20 68 65 6c 70 20 70 72 6f 76 69 64 65 20 63 6f 6e 74 65 78 74 20 74 6f 20 74 68 65 20 74 65 72 | .help.provide.context.to.the.ter |
| 5c380 | 6d 73 20 6f 66 20 60 66 6f 72 77 61 72 64 60 2c 20 60 69 6e 70 75 74 60 2c 20 61 6e 64 20 60 6f | ms.of.`forward`,.`input`,.and.`o |
| 5c3a0 | 75 74 70 75 74 60 20 66 6f 72 20 74 68 65 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 43 4c 49 20 | utput`.for.the.new.firewall.CLI. |
| 5c3c0 | 66 6f 72 6d 61 74 2e 00 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 20 77 65 20 77 69 6c 6c 20 | format..In.this.example.we.will. |
| 5c3e0 | 75 73 65 20 74 68 65 20 6d 6f 73 74 20 63 6f 6d 70 6c 69 63 61 74 65 64 20 63 61 73 65 3a 20 61 | use.the.most.complicated.case:.a |
| 5c400 | 20 73 65 74 75 70 20 77 68 65 72 65 20 65 61 63 68 20 63 6c 69 65 6e 74 20 69 73 20 61 20 72 6f | .setup.where.each.client.is.a.ro |
| 5c420 | 75 74 65 72 20 74 68 61 74 20 68 61 73 20 69 74 73 20 6f 77 6e 20 73 75 62 6e 65 74 20 28 74 68 | uter.that.has.its.own.subnet.(th |
| 5c440 | 69 6e 6b 20 48 51 20 61 6e 64 20 62 72 61 6e 63 68 20 6f 66 66 69 63 65 73 29 2c 20 73 69 6e 63 | ink.HQ.and.branch.offices),.sinc |
| 5c460 | 65 20 73 69 6d 70 6c 65 72 20 73 65 74 75 70 73 20 61 72 65 20 73 75 62 73 65 74 73 20 6f 66 20 | e.simpler.setups.are.subsets.of. |
| 5c480 | 69 74 2e 00 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 2c 20 73 6f 6d 65 20 2a 4f 70 65 6e 4e | it..In.this.example,.some.*OpenN |
| 5c4a0 | 49 43 2a 20 73 65 72 76 65 72 73 20 61 72 65 20 75 73 65 64 2c 20 74 77 6f 20 49 50 76 34 20 61 | IC*.servers.are.used,.two.IPv4.a |
| 5c4c0 | 64 64 72 65 73 73 65 73 20 61 6e 64 20 74 77 6f 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 3a | ddresses.and.two.IPv6.addresses: |
| 5c4e0 | 00 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 2c 20 77 65 20 63 61 6e 20 6f 62 73 65 72 76 65 | .In.this.example,.we.can.observe |
| 5c500 | 20 74 68 61 74 20 64 69 66 66 65 72 65 6e 74 20 44 53 43 50 20 63 72 69 74 65 72 69 61 20 61 72 | .that.different.DSCP.criteria.ar |
| 5c520 | 65 20 64 65 66 69 6e 65 64 20 62 61 73 65 64 20 6f 6e 20 6f 75 72 20 51 6f 53 20 63 6f 6e 66 69 | e.defined.based.on.our.QoS.confi |
| 5c540 | 67 75 72 61 74 69 6f 6e 20 77 69 74 68 69 6e 20 74 68 65 20 73 61 6d 65 20 70 6f 6c 69 63 79 20 | guration.within.the.same.policy. |
| 5c560 | 67 72 6f 75 70 2e 00 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 2c 20 77 65 20 75 73 65 20 2a | group..In.this.example,.we.use.* |
| 5c580 | 2a 6d 61 73 71 75 65 72 61 64 65 2a 2a 20 61 73 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e | *masquerade**.as.the.translation |
| 5c5a0 | 20 61 64 64 72 65 73 73 20 69 6e 73 74 65 61 64 20 6f 66 20 61 6e 20 49 50 20 61 64 64 72 65 73 | .address.instead.of.an.IP.addres |
| 5c5c0 | 73 2e 20 54 68 65 20 2a 2a 6d 61 73 71 75 65 72 61 64 65 2a 2a 20 74 61 72 67 65 74 20 69 73 20 | s..The.**masquerade**.target.is. |
| 5c5e0 | 65 66 66 65 63 74 69 76 65 6c 79 20 61 6e 20 61 6c 69 61 73 20 74 6f 20 73 61 79 20 22 75 73 65 | effectively.an.alias.to.say."use |
| 5c600 | 20 77 68 61 74 65 76 65 72 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 6f 6e 20 74 68 65 20 6f | .whatever.IP.address.is.on.the.o |
| 5c620 | 75 74 67 6f 69 6e 67 20 69 6e 74 65 72 66 61 63 65 22 2c 20 72 61 74 68 65 72 20 74 68 61 6e 20 | utgoing.interface",.rather.than. |
| 5c640 | 61 20 73 74 61 74 69 63 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 49 50 20 61 64 64 72 65 | a.statically.configured.IP.addre |
| 5c660 | 73 73 2e 20 54 68 69 73 20 69 73 20 75 73 65 66 75 6c 20 69 66 20 79 6f 75 20 75 73 65 20 44 48 | ss..This.is.useful.if.you.use.DH |
| 5c680 | 43 50 20 66 6f 72 20 79 6f 75 72 20 6f 75 74 67 6f 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 61 | CP.for.your.outgoing.interface.a |
| 5c6a0 | 6e 64 20 64 6f 20 6e 6f 74 20 6b 6e 6f 77 20 77 68 61 74 20 74 68 65 20 65 78 74 65 72 6e 61 6c | nd.do.not.know.what.the.external |
| 5c6c0 | 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 2e 00 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c | .address.will.be..In.this.exampl |
| 5c6e0 | 65 2c 20 77 65 20 77 69 6c 6c 20 62 65 20 75 73 69 6e 67 20 74 68 65 20 65 78 61 6d 70 6c 65 20 | e,.we.will.be.using.the.example. |
| 5c700 | 51 75 69 63 6b 20 53 74 61 72 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 62 6f 76 65 20 | Quick.Start.configuration.above. |
| 5c720 | 61 73 20 61 20 73 74 61 72 74 69 6e 67 20 70 6f 69 6e 74 2e 00 49 6e 20 74 68 69 73 20 6d 65 74 | as.a.starting.point..In.this.met |
| 5c740 | 68 6f 64 2c 20 74 68 65 20 44 53 4c 20 4d 6f 64 65 6d 2f 52 6f 75 74 65 72 20 63 6f 6e 6e 65 63 | hod,.the.DSL.Modem/Router.connec |
| 5c760 | 74 73 20 74 6f 20 74 68 65 20 49 53 50 20 66 6f 72 20 79 6f 75 20 77 69 74 68 20 79 6f 75 72 20 | ts.to.the.ISP.for.you.with.your. |
| 5c780 | 63 72 65 64 65 6e 74 69 61 6c 73 20 70 72 65 70 72 6f 67 72 61 6d 6d 65 64 20 69 6e 74 6f 20 74 | credentials.preprogrammed.into.t |
| 5c7a0 | 68 65 20 64 65 76 69 63 65 2e 20 54 68 69 73 20 67 69 76 65 73 20 79 6f 75 20 61 6e 20 3a 72 66 | he.device..This.gives.you.an.:rf |
| 5c7c0 | 63 3a 60 31 39 31 38 60 20 61 64 64 72 65 73 73 2c 20 73 75 63 68 20 61 73 20 60 60 31 39 32 2e | c:`1918`.address,.such.as.``192. |
| 5c7e0 | 31 36 38 2e 31 2e 30 2f 32 34 60 60 20 62 79 20 64 65 66 61 75 6c 74 2e 00 49 6e 20 74 68 69 73 | 168.1.0/24``.by.default..In.this |
| 5c800 | 20 73 63 65 6e 61 72 69 6f 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 | .scenario:.In.this.section.there |
| 5c820 | 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 66 69 72 | 's.useful.information.of.all.fir |
| 5c840 | 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 | ewall.configuration.that.can.be. |
| 5c860 | 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 49 50 76 34 2c 20 61 6e 64 20 61 70 70 72 6f 70 69 | done.regarding.IPv4,.and.appropi |
| 5c880 | 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 69 67 75 72 61 74 | ate.op-mode.commands..Configurat |
| 5c8a0 | 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 | ion.commands.covered.in.this.sec |
| 5c8c0 | 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 | tion:.In.this.section.there's.us |
| 5c8e0 | 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c | eful.information.of.all.firewall |
| 5c900 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 | .configuration.that.can.be.done. |
| 5c920 | 72 65 67 61 72 64 69 6e 67 20 49 50 76 34 2c 20 61 6e 64 20 61 70 70 72 6f 70 72 69 61 74 65 20 | regarding.IPv4,.and.appropriate. |
| 5c940 | 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | op-mode.commands..Configuration. |
| 5c960 | 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e | commands.covered.in.this.section |
| 5c980 | 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c | :.In.this.section.there's.useful |
| 5c9a0 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e | .information.of.all.firewall.con |
| 5c9c0 | 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 | figuration.that.can.be.done.rega |
| 5c9e0 | 72 64 69 6e 67 20 49 50 76 36 2c 20 61 6e 64 20 61 70 70 72 6f 70 69 61 74 65 20 6f 70 2d 6d 6f | rding.IPv6,.and.appropiate.op-mo |
| 5ca00 | 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 | de.commands..Configuration.comma |
| 5ca20 | 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 | nds.covered.in.this.section:.In. |
| 5ca40 | 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f | this.section.there's.useful.info |
| 5ca60 | 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 | rmation.of.all.firewall.configur |
| 5ca80 | 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 | ation.that.can.be.done.regarding |
| 5caa0 | 20 49 50 76 36 2c 20 61 6e 64 20 61 70 70 72 6f 70 72 69 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 | .IPv6,.and.appropriate.op-mode.c |
| 5cac0 | 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 | ommands..Configuration.commands. |
| 5cae0 | 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 | covered.in.this.section:.In.this |
| 5cb00 | 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 | .section.there's.useful.informat |
| 5cb20 | 69 6f 6e 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | ion.of.all.firewall.configuratio |
| 5cb40 | 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 62 72 69 | n.that.can.be.done.regarding.bri |
| 5cb60 | 64 67 65 2c 20 61 6e 64 20 61 70 70 72 6f 70 69 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d | dge,.and.appropiate.op-mode.comm |
| 5cb80 | 61 6e 64 73 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 | ands..Configuration.commands.cov |
| 5cba0 | 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 | ered.in.this.section:.In.this.se |
| 5cbc0 | 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | ction.there's.useful.information |
| 5cbe0 | 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 | .of.all.firewall.configuration.t |
| 5cc00 | 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 62 72 69 64 67 65 | hat.can.be.done.regarding.bridge |
| 5cc20 | 2c 20 61 6e 64 20 61 70 70 72 6f 70 72 69 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e | ,.and.appropriate.op-mode.comman |
| 5cc40 | 64 73 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 | ds..Configuration.commands.cover |
| 5cc60 | 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 | ed.in.this.section:.In.this.sect |
| 5cc80 | 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f | ion.there's.useful.information.o |
| 5cca0 | 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 | f.all.firewall.configuration.tha |
| 5ccc0 | 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 66 6c 6f 77 74 61 62 6c | t.can.be.done.regarding.flowtabl |
| 5cce0 | 65 73 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 | es.In.this.section.there's.usefu |
| 5cd00 | 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f | l.information.of.all.firewall.co |
| 5cd20 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 | nfiguration.that.can.be.done.reg |
| 5cd40 | 61 72 64 69 6e 67 20 66 6c 6f 77 74 61 62 6c 65 73 2e 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 | arding.flowtables..In.this.secti |
| 5cd60 | 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 | on.there's.useful.information.of |
| 5cd80 | 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 | .all.firewall.configuration.that |
| 5cda0 | 20 69 73 20 6e 65 65 64 65 64 20 66 6f 72 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 | .is.needed.for.zone-based.firewa |
| 5cdc0 | 6c 6c 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 | ll..Configuration.commands.cover |
| 5cde0 | 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 | ed.in.this.section:.In.this.sect |
| 5ce00 | 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f | ion.there's.useful.information.o |
| 5ce20 | 6e 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 | n.all.firewall.configuration.tha |
| 5ce40 | 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 49 50 76 34 2c 20 61 6e | t.can.be.done.regarding.IPv4,.an |
| 5ce60 | 64 20 61 70 70 72 6f 70 72 69 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 | d.appropriate.op-mode.commands.. |
| 5ce80 | 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 | Configuration.commands.covered.i |
| 5cea0 | 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 | n.this.section:.In.this.section. |
| 5cec0 | 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 20 61 6c | there's.useful.information.on.al |
| 5cee0 | 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 | l.firewall.configuration.that.ca |
| 5cf00 | 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 49 50 76 36 2c 20 61 6e 64 20 61 70 | n.be.done.regarding.IPv6,.and.ap |
| 5cf20 | 70 72 6f 70 72 69 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 | propriate.op-mode.commands..Conf |
| 5cf40 | 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 | iguration.commands.covered.in.th |
| 5cf60 | 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 | is.section:.In.this.section.ther |
| 5cf80 | 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 20 61 6c 6c 20 66 69 | e's.useful.information.on.all.fi |
| 5cfa0 | 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 | rewall.configuration.that.can.be |
| 5cfc0 | 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 62 72 69 64 67 65 73 2c 20 61 6e 64 20 61 70 70 | .done.regarding.bridges,.and.app |
| 5cfe0 | 72 6f 70 72 69 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 69 | ropriate.op-mode.commands..Confi |
| 5d000 | 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 | guration.commands.covered.in.thi |
| 5d020 | 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 | s.section:.In.this.section.there |
| 5d040 | 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 20 61 6c 6c 20 66 69 72 | 's.useful.information.on.all.fir |
| 5d060 | 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 | ewall.configuration.that.can.be. |
| 5d080 | 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 66 6c 6f 77 74 61 62 6c 65 73 2e 00 49 6e 20 74 68 | done.regarding.flowtables..In.th |
| 5d0a0 | 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d | is.section.there's.useful.inform |
| 5d0c0 | 61 74 69 6f 6e 20 6f 6e 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 | ation.on.all.firewall.configurat |
| 5d0e0 | 69 6f 6e 20 74 68 61 74 20 69 73 20 6e 65 65 64 65 64 20 66 6f 72 20 74 68 65 20 7a 6f 6e 65 2d | ion.that.is.needed.for.the.zone- |
| 5d100 | 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f | based.firewall..Configuration.co |
| 5d120 | 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 | mmands.covered.in.this.section:. |
| 5d140 | 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 79 6f 75 20 63 61 6e 20 66 69 6e 64 20 61 6c 6c | In.this.section.you.can.find.all |
| 5d160 | 20 75 73 65 66 75 6c 20 66 69 72 65 77 61 6c 6c 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 | .useful.firewall.op-mode.command |
| 5d180 | 73 2e 00 49 6e 20 74 72 61 6e 73 70 61 72 65 6e 74 20 70 72 6f 78 79 20 6d 6f 64 65 2c 20 61 6c | s..In.transparent.proxy.mode,.al |
| 5d1a0 | 6c 20 74 72 61 66 66 69 63 20 61 72 72 69 76 69 6e 67 20 6f 6e 20 70 6f 72 74 20 38 30 20 61 6e | l.traffic.arriving.on.port.80.an |
| 5d1c0 | 64 20 64 65 73 74 69 6e 65 64 20 66 6f 72 20 74 68 65 20 49 6e 74 65 72 6e 65 74 20 69 73 20 61 | d.destined.for.the.Internet.is.a |
| 5d1e0 | 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 66 6f 72 77 61 72 64 65 64 20 74 68 72 6f 75 67 68 20 74 | utomatically.forwarded.through.t |
| 5d200 | 68 65 20 70 72 6f 78 79 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 69 6d 6d 65 64 69 61 74 65 20 | he.proxy..This.allows.immediate. |
| 5d220 | 70 72 6f 78 79 20 66 6f 72 77 61 72 64 69 6e 67 20 77 69 74 68 6f 75 74 20 63 6f 6e 66 69 67 75 | proxy.forwarding.without.configu |
| 5d240 | 72 69 6e 67 20 63 6c 69 65 6e 74 20 62 72 6f 77 73 65 72 73 2e 00 49 6e 20 74 79 70 69 63 61 6c | ring.client.browsers..In.typical |
| 5d260 | 20 75 73 65 73 20 6f 66 20 53 4e 4d 50 2c 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 61 64 6d 69 6e | .uses.of.SNMP,.one.or.more.admin |
| 5d280 | 69 73 74 72 61 74 69 76 65 20 63 6f 6d 70 75 74 65 72 73 20 63 61 6c 6c 65 64 20 6d 61 6e 61 67 | istrative.computers.called.manag |
| 5d2a0 | 65 72 73 20 68 61 76 65 20 74 68 65 20 74 61 73 6b 20 6f 66 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 | ers.have.the.task.of.monitoring. |
| 5d2c0 | 6f 72 20 6d 61 6e 61 67 69 6e 67 20 61 20 67 72 6f 75 70 20 6f 66 20 68 6f 73 74 73 20 6f 72 20 | or.managing.a.group.of.hosts.or. |
| 5d2e0 | 64 65 76 69 63 65 73 20 6f 6e 20 61 20 63 6f 6d 70 75 74 65 72 20 6e 65 74 77 6f 72 6b 2e 20 45 | devices.on.a.computer.network..E |
| 5d300 | 61 63 68 20 6d 61 6e 61 67 65 64 20 73 79 73 74 65 6d 20 65 78 65 63 75 74 65 73 20 61 20 73 6f | ach.managed.system.executes.a.so |
| 5d320 | 66 74 77 61 72 65 20 63 6f 6d 70 6f 6e 65 6e 74 20 63 61 6c 6c 65 64 20 61 6e 20 61 67 65 6e 74 | ftware.component.called.an.agent |
| 5d340 | 20 77 68 69 63 68 20 72 65 70 6f 72 74 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 76 69 61 20 53 | .which.reports.information.via.S |
| 5d360 | 4e 4d 50 20 74 6f 20 74 68 65 20 6d 61 6e 61 67 65 72 2e 00 49 6e 20 7a 6f 6e 65 2d 62 61 73 65 | NMP.to.the.manager..In.zone-base |
| 5d380 | 64 20 70 6f 6c 69 63 79 2c 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 61 73 73 69 67 6e 65 | d.policy,.interfaces.are.assigne |
| 5d3a0 | 64 20 74 6f 20 7a 6f 6e 65 73 2c 20 61 6e 64 20 69 6e 73 70 65 63 74 69 6f 6e 20 70 6f 6c 69 63 | d.to.zones,.and.inspection.polic |
| 5d3c0 | 79 20 69 73 20 61 70 70 6c 69 65 64 20 74 6f 20 74 72 61 66 66 69 63 20 6d 6f 76 69 6e 67 20 62 | y.is.applied.to.traffic.moving.b |
| 5d3e0 | 65 74 77 65 65 6e 20 74 68 65 20 7a 6f 6e 65 73 20 61 6e 64 20 61 63 74 65 64 20 6f 6e 20 61 63 | etween.the.zones.and.acted.on.ac |
| 5d400 | 63 6f 72 64 69 6e 67 20 74 6f 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 2e 20 41 20 5a 6f 6e | cording.to.firewall.rules..A.Zon |
| 5d420 | 65 20 69 73 20 61 20 67 72 6f 75 70 20 6f 66 20 69 6e 74 65 72 66 61 63 65 73 20 74 68 61 74 20 | e.is.a.group.of.interfaces.that. |
| 5d440 | 68 61 76 65 20 73 69 6d 69 6c 61 72 20 66 75 6e 63 74 69 6f 6e 73 20 6f 72 20 66 65 61 74 75 72 | have.similar.functions.or.featur |
| 5d460 | 65 73 2e 20 49 74 20 65 73 74 61 62 6c 69 73 68 65 73 20 74 68 65 20 73 65 63 75 72 69 74 79 20 | es..It.establishes.the.security. |
| 5d480 | 62 6f 72 64 65 72 73 20 6f 66 20 61 20 6e 65 74 77 6f 72 6b 2e 20 41 20 7a 6f 6e 65 20 64 65 66 | borders.of.a.network..A.zone.def |
| 5d4a0 | 69 6e 65 73 20 61 20 62 6f 75 6e 64 61 72 79 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 69 73 | ines.a.boundary.where.traffic.is |
| 5d4c0 | 20 73 75 62 6a 65 63 74 65 64 20 74 6f 20 70 6f 6c 69 63 79 20 72 65 73 74 72 69 63 74 69 6f 6e | .subjected.to.policy.restriction |
| 5d4e0 | 73 20 61 73 20 69 74 20 63 72 6f 73 73 65 73 20 74 6f 20 61 6e 6f 74 68 65 72 20 72 65 67 69 6f | s.as.it.crosses.to.another.regio |
| 5d500 | 6e 20 6f 66 20 61 20 6e 65 74 77 6f 72 6b 2e 00 49 6e 20 7a 6f 6e 65 2d 62 61 73 65 64 20 70 6f | n.of.a.network..In.zone-based.po |
| 5d520 | 6c 69 63 79 2c 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 61 73 73 69 67 6e 65 64 20 74 6f | licy,.interfaces.are.assigned.to |
| 5d540 | 20 7a 6f 6e 65 73 2c 20 61 6e 64 20 69 6e 73 70 65 63 74 69 6f 6e 20 70 6f 6c 69 63 79 20 69 73 | .zones,.and.inspection.policy.is |
| 5d560 | 20 61 70 70 6c 69 65 64 20 74 6f 20 74 72 61 66 66 69 63 20 6d 6f 76 69 6e 67 20 62 65 74 77 65 | .applied.to.traffic.moving.betwe |
| 5d580 | 65 6e 20 74 68 65 20 7a 6f 6e 65 73 20 61 6e 64 20 61 63 74 65 64 20 6f 6e 20 61 63 63 6f 72 64 | en.the.zones.and.acted.on.accord |
| 5d5a0 | 69 6e 67 20 74 6f 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 2e 20 41 20 7a 6f 6e 65 20 69 73 | ing.to.firewall.rules..A.zone.is |
| 5d5c0 | 20 61 20 67 72 6f 75 70 20 6f 66 20 69 6e 74 65 72 66 61 63 65 73 20 74 68 61 74 20 68 61 76 65 | .a.group.of.interfaces.that.have |
| 5d5e0 | 20 73 69 6d 69 6c 61 72 20 66 75 6e 63 74 69 6f 6e 73 20 6f 72 20 66 65 61 74 75 72 65 73 2e 20 | .similar.functions.or.features.. |
| 5d600 | 49 74 20 65 73 74 61 62 6c 69 73 68 65 73 20 74 68 65 20 73 65 63 75 72 69 74 79 20 62 6f 72 64 | It.establishes.the.security.bord |
| 5d620 | 65 72 73 20 6f 66 20 61 20 6e 65 74 77 6f 72 6b 2e 20 41 20 7a 6f 6e 65 20 64 65 66 69 6e 65 73 | ers.of.a.network..A.zone.defines |
| 5d640 | 20 61 20 62 6f 75 6e 64 61 72 79 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 69 73 20 73 75 62 | .a.boundary.where.traffic.is.sub |
| 5d660 | 6a 65 63 74 65 64 20 74 6f 20 70 6f 6c 69 63 79 20 72 65 73 74 72 69 63 74 69 6f 6e 73 20 61 73 | jected.to.policy.restrictions.as |
| 5d680 | 20 69 74 20 63 72 6f 73 73 65 73 20 74 6f 20 61 6e 6f 74 68 65 72 20 72 65 67 69 6f 6e 20 6f 66 | .it.crosses.to.another.region.of |
| 5d6a0 | 20 61 20 6e 65 74 77 6f 72 6b 2e 00 49 6e 62 6f 75 6e 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 | .a.network..Inbound.connections. |
| 5d6c0 | 74 6f 20 61 20 57 41 4e 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 62 65 20 69 6d 70 72 6f 70 | to.a.WAN.interface.can.be.improp |
| 5d6e0 | 65 72 6c 79 20 68 61 6e 64 6c 65 64 20 77 68 65 6e 20 74 68 65 20 72 65 70 6c 79 20 69 73 20 73 | erly.handled.when.the.reply.is.s |
| 5d700 | 65 6e 74 20 62 61 63 6b 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 2e 00 49 6e 63 6f 6d 69 6e 67 | ent.back.to.the.client..Incoming |
| 5d720 | 20 74 72 61 66 66 69 63 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 63 75 72 72 | .traffic.is.received.by.the.curr |
| 5d740 | 65 6e 74 20 73 6c 61 76 65 2e 20 49 66 20 74 68 65 20 72 65 63 65 69 76 69 6e 67 20 73 6c 61 76 | ent.slave..If.the.receiving.slav |
| 5d760 | 65 20 66 61 69 6c 73 2c 20 61 6e 6f 74 68 65 72 20 73 6c 61 76 65 20 74 61 6b 65 73 20 6f 76 65 | e.fails,.another.slave.takes.ove |
| 5d780 | 72 20 74 68 65 20 4d 41 43 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 66 61 69 6c 65 64 20 | r.the.MAC.address.of.the.failed. |
| 5d7a0 | 72 65 63 65 69 76 69 6e 67 20 73 6c 61 76 65 2e 00 49 6e 63 72 65 61 73 65 20 4d 61 78 69 6d 75 | receiving.slave..Increase.Maximu |
| 5d7c0 | 6d 20 4d 50 44 55 20 6c 65 6e 67 74 68 20 74 6f 20 37 39 39 31 20 6f 72 20 31 31 34 35 34 20 6f | m.MPDU.length.to.7991.or.11454.o |
| 5d7e0 | 63 74 65 74 73 20 28 64 65 66 61 75 6c 74 20 33 38 39 35 20 6f 63 74 65 74 73 29 00 49 6e 64 69 | ctets.(default.3895.octets).Indi |
| 5d800 | 63 61 74 69 6f 6e 00 49 6e 64 69 76 69 64 75 61 6c 20 43 6c 69 65 6e 74 20 53 75 62 6e 65 74 00 | cation.Individual.Client.Subnet. |
| 5d820 | 49 6e 66 6f 72 6d 20 63 6c 69 65 6e 74 20 74 68 61 74 20 74 68 65 20 44 4e 53 20 73 65 72 76 65 | Inform.client.that.the.DNS.serve |
| 5d840 | 72 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 61 74 20 60 3c 61 64 64 72 65 73 73 3e 60 2e 00 49 | r.can.be.found.at.`<address>`..I |
| 5d860 | 6e 66 6f 72 6d 61 74 69 6f 6e 20 67 61 74 68 65 72 65 64 20 77 69 74 68 20 4c 4c 44 50 20 69 73 | nformation.gathered.with.LLDP.is |
| 5d880 | 20 73 74 6f 72 65 64 20 69 6e 20 74 68 65 20 64 65 76 69 63 65 20 61 73 20 61 20 3a 61 62 62 72 | .stored.in.the.device.as.a.:abbr |
| 5d8a0 | 3a 60 4d 49 42 20 28 4d 61 6e 61 67 65 6d 65 6e 74 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 20 44 61 | :`MIB.(Management.Information.Da |
| 5d8c0 | 74 61 62 61 73 65 29 60 20 61 6e 64 20 63 61 6e 20 62 65 20 71 75 65 72 69 65 64 20 77 69 74 68 | tabase)`.and.can.be.queried.with |
| 5d8e0 | 20 3a 61 62 62 72 3a 60 53 4e 4d 50 20 28 53 69 6d 70 6c 65 20 4e 65 74 77 6f 72 6b 20 4d 61 6e | .:abbr:`SNMP.(Simple.Network.Man |
| 5d900 | 61 67 65 6d 65 6e 74 20 50 72 6f 74 6f 63 6f 6c 29 60 20 61 73 20 73 70 65 63 69 66 69 65 64 20 | agement.Protocol)`.as.specified. |
| 5d920 | 69 6e 20 3a 72 66 63 3a 60 32 39 32 32 60 2e 20 54 68 65 20 74 6f 70 6f 6c 6f 67 79 20 6f 66 20 | in.:rfc:`2922`..The.topology.of. |
| 5d940 | 61 6e 20 4c 4c 44 50 2d 65 6e 61 62 6c 65 64 20 6e 65 74 77 6f 72 6b 20 63 61 6e 20 62 65 20 64 | an.LLDP-enabled.network.can.be.d |
| 5d960 | 69 73 63 6f 76 65 72 65 64 20 62 79 20 63 72 61 77 6c 69 6e 67 20 74 68 65 20 68 6f 73 74 73 20 | iscovered.by.crawling.the.hosts. |
| 5d980 | 61 6e 64 20 71 75 65 72 79 69 6e 67 20 74 68 69 73 20 64 61 74 61 62 61 73 65 2e 20 49 6e 66 6f | and.querying.this.database..Info |
| 5d9a0 | 72 6d 61 74 69 6f 6e 20 74 68 61 74 20 6d 61 79 20 62 65 20 72 65 74 72 69 65 76 65 64 20 69 6e | rmation.that.may.be.retrieved.in |
| 5d9c0 | 63 6c 75 64 65 3a 00 49 6e 66 6f 72 6d 61 74 69 6f 6e 61 6c 00 49 6e 66 6f 72 6d 61 74 69 6f 6e | clude:.Informational.Information |
| 5d9e0 | 61 6c 20 6d 65 73 73 61 67 65 73 00 49 6e 70 75 74 20 66 72 6f 6d 20 60 65 74 68 30 60 20 6e 65 | al.messages.Input.from.`eth0`.ne |
| 5da00 | 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 00 49 6e 73 70 65 63 74 20 6c 6f 67 73 3a 00 49 6e | twork.interface.Inspect.logs:.In |
| 5da20 | 73 74 61 6c 6c 20 74 68 65 20 63 6c 69 65 6e 74 20 73 6f 66 74 77 61 72 65 20 76 69 61 20 61 70 | stall.the.client.software.via.ap |
| 5da40 | 74 20 61 6e 64 20 65 78 65 63 75 74 65 20 70 70 74 70 73 65 74 75 70 20 74 6f 20 67 65 6e 65 72 | t.and.execute.pptpsetup.to.gener |
| 5da60 | 61 74 65 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 49 6e 73 74 65 61 64 20 6f | ate.the.configuration..Instead.o |
| 5da80 | 66 20 61 20 6e 75 6d 65 72 69 63 61 6c 20 4d 53 53 20 76 61 6c 75 65 20 60 63 6c 61 6d 70 2d 6d | f.a.numerical.MSS.value.`clamp-m |
| 5daa0 | 73 73 2d 74 6f 2d 70 6d 74 75 60 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 61 75 74 6f 6d | ss-to-pmtu`.can.be.used.to.autom |
| 5dac0 | 61 74 69 63 61 6c 6c 79 20 73 65 74 20 74 68 65 20 70 72 6f 70 65 72 20 76 61 6c 75 65 2e 00 49 | atically.set.the.proper.value..I |
| 5dae0 | 6e 73 74 65 61 64 20 6f 66 20 70 61 73 73 77 6f 72 64 20 6f 6e 6c 79 20 61 75 74 68 65 6e 74 69 | nstead.of.password.only.authenti |
| 5db00 | 63 61 74 69 6f 6e 2c 20 32 46 41 20 70 61 73 73 77 6f 72 64 20 61 75 74 68 65 6e 74 69 63 61 74 | cation,.2FA.password.authenticat |
| 5db20 | 69 6f 6e 20 2b 20 4f 54 50 20 6b 65 79 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 41 6c 74 65 72 | ion.+.OTP.key.can.be.used..Alter |
| 5db40 | 6e 61 74 69 76 65 6c 79 2c 20 4f 54 50 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f 6e 6c | natively,.OTP.authentication.onl |
| 5db60 | 79 2c 20 77 69 74 68 6f 75 74 20 61 20 70 61 73 73 77 6f 72 64 2c 20 63 61 6e 20 62 65 20 75 73 | y,.without.a.password,.can.be.us |
| 5db80 | 65 64 2e 20 54 6f 20 64 6f 20 74 68 69 73 2c 20 61 6e 20 4f 54 50 20 63 6f 6e 66 69 67 75 72 61 | ed..To.do.this,.an.OTP.configura |
| 5dba0 | 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 61 64 64 65 64 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 | tion.must.be.added.to.the.config |
| 5dbc0 | 75 72 61 74 69 6f 6e 20 61 62 6f 76 65 3a 00 49 6e 73 74 65 61 64 20 6f 66 20 73 65 6e 64 69 6e | uration.above:.Instead.of.sendin |
| 5dbe0 | 67 20 74 68 65 20 72 65 61 6c 20 73 79 73 74 65 6d 20 68 6f 73 74 6e 61 6d 65 20 74 6f 20 74 68 | g.the.real.system.hostname.to.th |
| 5dc00 | 65 20 44 48 43 50 20 73 65 72 76 65 72 2c 20 6f 76 65 72 77 72 69 74 65 20 74 68 65 20 68 6f 73 | e.DHCP.server,.overwrite.the.hos |
| 5dc20 | 74 2d 6e 61 6d 65 20 77 69 74 68 20 74 68 69 73 20 67 69 76 65 6e 2d 76 61 6c 75 65 2e 00 49 6e | t-name.with.this.given-value..In |
| 5dc40 | 73 74 65 61 64 2c 20 6d 65 6d 62 65 72 73 20 6f 66 20 74 68 65 73 65 20 67 72 6f 75 70 73 20 61 | stead,.members.of.these.groups.a |
| 5dc60 | 72 65 20 61 64 64 65 64 20 64 79 6e 61 6d 69 63 61 6c 6c 79 20 75 73 69 6e 67 20 66 69 72 65 77 | re.added.dynamically.using.firew |
| 5dc80 | 61 6c 6c 20 72 75 6c 65 73 2e 00 49 6e 74 65 67 72 69 74 79 20 e2 80 93 20 4d 65 73 73 61 67 65 | all.rules..Integrity.....Message |
| 5dca0 | 20 69 6e 74 65 67 72 69 74 79 20 74 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 61 20 70 61 63 6b | .integrity.to.ensure.that.a.pack |
| 5dcc0 | 65 74 20 68 61 73 20 6e 6f 74 20 62 65 65 6e 20 74 61 6d 70 65 72 65 64 20 77 68 69 6c 65 20 69 | et.has.not.been.tampered.while.i |
| 5dce0 | 6e 20 74 72 61 6e 73 69 74 20 69 6e 63 6c 75 64 69 6e 67 20 61 6e 20 6f 70 74 69 6f 6e 61 6c 20 | n.transit.including.an.optional. |
| 5dd00 | 70 61 63 6b 65 74 20 72 65 70 6c 61 79 20 70 72 6f 74 65 63 74 69 6f 6e 20 6d 65 63 68 61 6e 69 | packet.replay.protection.mechani |
| 5dd20 | 73 6d 2e 00 49 6e 74 65 6c 20 41 58 32 30 30 00 49 6e 74 65 6c c2 ae 20 51 41 54 00 49 6e 74 65 | sm..Intel.AX200.Intel...QAT.Inte |
| 5dd40 | 72 63 6f 6e 6e 65 63 74 20 74 68 65 20 67 6c 6f 62 61 6c 20 56 52 46 20 77 69 74 68 20 76 72 66 | rconnect.the.global.VRF.with.vrf |
| 5dd60 | 20 22 72 65 64 22 20 75 73 69 6e 67 20 74 68 65 20 76 65 74 68 31 30 20 3c 2d 3e 20 76 65 74 68 | ."red".using.the.veth10.<->.veth |
| 5dd80 | 20 31 31 20 70 61 69 72 00 49 6e 74 65 72 66 61 63 65 20 2a 2a 65 74 68 30 2a 2a 20 75 73 65 64 | .11.pair.Interface.**eth0**.used |
| 5dda0 | 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 75 70 73 74 72 65 61 6d 2e 00 49 6e 74 65 72 66 61 | .to.connect.to.upstream..Interfa |
| 5ddc0 | 63 65 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 49 6e 74 65 72 66 61 63 65 20 47 72 6f 75 70 | ce.Configuration.Interface.Group |
| 5dde0 | 73 00 49 6e 74 65 72 66 61 63 65 20 52 6f 75 74 65 73 00 49 6e 74 65 72 66 61 63 65 20 60 65 74 | s.Interface.Routes.Interface.`et |
| 5de00 | 68 31 60 20 4c 41 4e 20 69 73 20 62 65 68 69 6e 64 20 4e 41 54 2e 20 49 6e 20 6f 72 64 65 72 20 | h1`.LAN.is.behind.NAT..In.order. |
| 5de20 | 74 6f 20 73 75 62 73 63 72 69 62 65 20 60 31 30 2e 30 2e 30 2e 30 2f 32 33 60 20 73 75 62 6e 65 | to.subscribe.`10.0.0.0/23`.subne |
| 5de40 | 74 20 6d 75 6c 74 69 63 61 73 74 20 77 68 69 63 68 20 69 73 20 69 6e 20 60 65 74 68 30 60 20 57 | t.multicast.which.is.in.`eth0`.W |
| 5de60 | 41 4e 20 77 65 20 6e 65 65 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 69 67 6d 70 2d 70 72 6f | AN.we.need.to.configure.igmp-pro |
| 5de80 | 78 79 2e 00 49 6e 74 65 72 66 61 63 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 49 6e 74 65 | xy..Interface.configuration.Inte |
| 5dea0 | 72 66 61 63 65 20 66 6f 72 20 44 48 43 50 20 52 65 6c 61 79 20 41 67 65 6e 74 20 74 6f 20 66 6f | rface.for.DHCP.Relay.Agent.to.fo |
| 5dec0 | 72 77 61 72 64 20 72 65 71 75 65 73 74 73 20 6f 75 74 2e 00 49 6e 74 65 72 66 61 63 65 20 66 6f | rward.requests.out..Interface.fo |
| 5dee0 | 72 20 44 48 43 50 20 52 65 6c 61 79 20 41 67 65 6e 74 20 74 6f 20 6c 69 73 74 65 6e 20 66 6f 72 | r.DHCP.Relay.Agent.to.listen.for |
| 5df00 | 20 72 65 71 75 65 73 74 73 2e 00 49 6e 74 65 72 66 61 63 65 20 73 70 65 63 69 66 69 63 20 63 6f | .requests..Interface.specific.co |
| 5df20 | 6d 6d 61 6e 64 73 00 49 6e 74 65 72 66 61 63 65 20 74 6f 20 75 73 65 20 66 6f 72 20 73 79 6e 63 | mmands.Interface.to.use.for.sync |
| 5df40 | 69 6e 67 20 63 6f 6e 6e 74 72 61 63 6b 20 65 6e 74 72 69 65 73 2e 00 49 6e 74 65 72 66 61 63 65 | ing.conntrack.entries..Interface |
| 5df60 | 20 75 73 65 64 20 66 6f 72 20 56 58 4c 41 4e 20 75 6e 64 65 72 6c 61 79 2e 20 54 68 69 73 20 69 | .used.for.VXLAN.underlay..This.i |
| 5df80 | 73 20 6d 61 6e 64 61 74 6f 72 79 20 77 68 65 6e 20 75 73 69 6e 67 20 56 58 4c 41 4e 20 76 69 61 | s.mandatory.when.using.VXLAN.via |
| 5dfa0 | 20 61 20 6d 75 6c 74 69 63 61 73 74 20 6e 65 74 77 6f 72 6b 2e 20 56 58 4c 41 4e 20 74 72 61 66 | .a.multicast.network..VXLAN.traf |
| 5dfc0 | 66 69 63 20 77 69 6c 6c 20 61 6c 77 61 79 73 20 65 6e 74 65 72 20 61 6e 64 20 65 78 69 74 20 74 | fic.will.always.enter.and.exit.t |
| 5dfe0 | 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 00 49 6e 74 65 72 66 61 63 65 20 77 65 69 67 68 74 00 | his.interface..Interface.weight. |
| 5e000 | 49 6e 74 65 72 66 61 63 65 73 00 49 6e 74 65 72 66 61 63 65 73 20 43 6f 6e 66 69 67 75 72 61 74 | Interfaces.Interfaces.Configurat |
| 5e020 | 69 6f 6e 00 49 6e 74 65 72 66 61 63 65 73 20 74 68 61 74 20 70 61 72 74 69 63 69 70 61 74 65 20 | ion.Interfaces.that.participate. |
| 5e040 | 69 6e 20 74 68 65 20 44 48 43 50 20 72 65 6c 61 79 20 70 72 6f 63 65 73 73 2e 20 49 66 20 74 68 | in.the.DHCP.relay.process..If.th |
| 5e060 | 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 2c 20 61 74 20 6c 65 61 73 74 20 74 77 6f | is.command.is.used,.at.least.two |
| 5e080 | 20 65 6e 74 72 69 65 73 20 6f 66 20 69 74 20 61 72 65 20 72 65 71 75 69 72 65 64 3a 20 6f 6e 65 | .entries.of.it.are.required:.one |
| 5e0a0 | 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 68 61 74 20 63 61 70 74 75 72 65 73 | .for.the.interface.that.captures |
| 5e0c0 | 20 74 68 65 20 64 68 63 70 2d 72 65 71 75 65 73 74 73 2c 20 61 6e 64 20 6f 6e 65 20 66 6f 72 20 | .the.dhcp-requests,.and.one.for. |
| 5e0e0 | 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 66 6f 72 77 61 72 64 20 73 75 63 68 20 72 65 | the.interface.to.forward.such.re |
| 5e100 | 71 75 65 73 74 73 2e 20 41 20 77 61 72 6e 69 6e 67 20 6d 65 73 73 61 67 65 20 77 69 6c 6c 20 62 | quests..A.warning.message.will.b |
| 5e120 | 65 20 73 68 6f 77 6e 20 69 66 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 2c | e.shown.if.this.command.is.used, |
| 5e140 | 20 73 69 6e 63 65 20 6e 65 77 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 73 20 73 68 6f 75 6c | .since.new.implementations.shoul |
| 5e160 | 64 20 75 73 65 20 60 60 6c 69 73 74 65 6e 2d 69 6e 74 65 72 66 61 63 65 60 60 20 61 6e 64 20 60 | d.use.``listen-interface``.and.` |
| 5e180 | 60 75 70 73 74 72 65 61 6d 2d 69 6e 74 65 72 66 61 63 65 60 60 2e 00 49 6e 74 65 72 66 61 63 65 | `upstream-interface``..Interface |
| 5e1a0 | 73 20 77 68 6f 73 65 20 44 48 43 50 20 63 6c 69 65 6e 74 20 6e 61 6d 65 73 65 72 76 65 72 73 20 | s.whose.DHCP.client.nameservers. |
| 5e1c0 | 74 6f 20 66 6f 72 77 61 72 64 20 72 65 71 75 65 73 74 73 20 74 6f 2e 00 49 6e 74 65 72 66 61 63 | to.forward.requests.to..Interfac |
| 5e1e0 | 65 73 2c 20 74 68 65 69 72 20 77 65 69 67 68 74 20 61 6e 64 20 74 68 65 20 74 79 70 65 20 6f 66 | es,.their.weight.and.the.type.of |
| 5e200 | 20 74 72 61 66 66 69 63 20 74 6f 20 62 65 20 62 61 6c 61 6e 63 65 64 20 61 72 65 20 64 65 66 69 | .traffic.to.be.balanced.are.defi |
| 5e220 | 6e 65 64 20 69 6e 20 6e 75 6d 62 65 72 65 64 20 62 61 6c 61 6e 63 69 6e 67 20 72 75 6c 65 20 73 | ned.in.numbered.balancing.rule.s |
| 5e240 | 65 74 73 2e 20 54 68 65 20 72 75 6c 65 20 73 65 74 73 20 61 72 65 20 65 78 65 63 75 74 65 64 20 | ets..The.rule.sets.are.executed. |
| 5e260 | 69 6e 20 6e 75 6d 65 72 69 63 61 6c 20 6f 72 64 65 72 20 61 67 61 69 6e 73 74 20 6f 75 74 67 6f | in.numerical.order.against.outgo |
| 5e280 | 69 6e 67 20 70 61 63 6b 65 74 73 2e 20 49 6e 20 63 61 73 65 20 6f 66 20 61 20 6d 61 74 63 68 20 | ing.packets..In.case.of.a.match. |
| 5e2a0 | 74 68 65 20 70 61 63 6b 65 74 20 69 73 20 73 65 6e 74 20 74 68 72 6f 75 67 68 20 61 6e 20 69 6e | the.packet.is.sent.through.an.in |
| 5e2c0 | 74 65 72 66 61 63 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 74 68 65 20 6d 61 74 63 68 69 6e | terface.specified.in.the.matchin |
| 5e2e0 | 67 20 72 75 6c 65 2e 20 49 66 20 61 20 70 61 63 6b 65 74 20 64 6f 65 73 6e 27 74 20 6d 61 74 63 | g.rule..If.a.packet.doesn't.matc |
| 5e300 | 68 20 61 6e 79 20 72 75 6c 65 20 69 74 20 69 73 20 73 65 6e 74 20 62 79 20 75 73 69 6e 67 20 74 | h.any.rule.it.is.sent.by.using.t |
| 5e320 | 68 65 20 73 79 73 74 65 6d 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 20 52 75 6c 65 20 6e 75 | he.system.routing.table..Rule.nu |
| 5e340 | 6d 62 65 72 73 20 63 61 6e 27 74 20 62 65 20 63 68 61 6e 67 65 64 2e 00 49 6e 74 65 72 6e 61 6c | mbers.can't.be.changed..Internal |
| 5e360 | 20 61 74 74 61 63 6b 3a 20 61 6e 20 61 74 74 61 63 6b 20 66 72 6f 6d 20 74 68 65 20 69 6e 74 65 | .attack:.an.attack.from.the.inte |
| 5e380 | 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 28 67 65 6e 65 72 61 74 65 64 20 62 79 20 61 20 63 75 73 | rnal.network.(generated.by.a.cus |
| 5e3a0 | 74 6f 6d 65 72 29 20 74 6f 77 61 72 64 73 20 74 68 65 20 69 6e 74 65 72 6e 65 74 20 69 73 20 69 | tomer).towards.the.internet.is.i |
| 5e3c0 | 64 65 6e 74 69 66 79 2e 20 49 6e 20 74 68 69 73 20 63 61 73 65 2c 20 61 6c 6c 20 63 6f 6e 6e 65 | dentify..In.this.case,.all.conne |
| 5e3e0 | 63 74 69 6f 6e 73 20 66 72 6f 6d 20 74 68 69 73 20 70 61 72 74 69 63 75 6c 61 72 20 49 50 2f 43 | ctions.from.this.particular.IP/C |
| 5e400 | 75 73 74 6f 6d 65 72 20 77 69 6c 6c 20 62 65 20 62 6c 6f 63 6b 65 64 2e 00 49 6e 74 65 72 6e 61 | ustomer.will.be.blocked..Interna |
| 5e420 | 6c 6c 79 2c 20 69 6e 20 66 6c 6f 77 2d 61 63 63 6f 75 6e 74 69 6e 67 20 70 72 6f 63 65 73 73 65 | lly,.in.flow-accounting.processe |
| 5e440 | 73 20 65 78 69 73 74 20 61 20 62 75 66 66 65 72 20 66 6f 72 20 64 61 74 61 20 65 78 63 68 61 6e | s.exist.a.buffer.for.data.exchan |
| 5e460 | 67 69 6e 67 20 62 65 74 77 65 65 6e 20 63 6f 72 65 20 70 72 6f 63 65 73 73 20 61 6e 64 20 70 6c | ging.between.core.process.and.pl |
| 5e480 | 75 67 69 6e 73 20 28 65 61 63 68 20 65 78 70 6f 72 74 20 74 61 72 67 65 74 20 69 73 20 61 20 73 | ugins.(each.export.target.is.a.s |
| 5e4a0 | 65 70 61 72 61 74 65 64 20 70 6c 75 67 69 6e 29 2e 20 49 66 20 79 6f 75 20 68 61 76 65 20 68 69 | eparated.plugin)..If.you.have.hi |
| 5e4c0 | 67 68 20 74 72 61 66 66 69 63 20 6c 65 76 65 6c 73 20 6f 72 20 6e 6f 74 65 64 20 73 6f 6d 65 20 | gh.traffic.levels.or.noted.some. |
| 5e4e0 | 70 72 6f 62 6c 65 6d 73 20 77 69 74 68 20 6d 69 73 73 65 64 20 72 65 63 6f 72 64 73 20 6f 72 20 | problems.with.missed.records.or. |
| 5e500 | 73 74 6f 70 70 69 6e 67 20 65 78 70 6f 72 74 69 6e 67 2c 20 79 6f 75 20 6d 61 79 20 74 72 79 20 | stopping.exporting,.you.may.try. |
| 5e520 | 74 6f 20 69 6e 63 72 65 61 73 65 20 61 20 64 65 66 61 75 6c 74 20 62 75 66 66 65 72 20 73 69 7a | to.increase.a.default.buffer.siz |
| 5e540 | 65 20 28 31 30 20 4d 69 42 29 20 77 69 74 68 20 74 68 65 20 6e 65 78 74 20 63 6f 6d 6d 61 6e 64 | e.(10.MiB).with.the.next.command |
| 5e560 | 3a 00 49 6e 74 65 72 6e 65 74 20 4b 65 79 20 45 78 63 68 61 6e 67 65 20 76 65 72 73 69 6f 6e 20 | :.Internet.Key.Exchange.version. |
| 5e580 | 32 20 28 49 4b 45 76 32 29 20 69 73 20 61 20 74 75 6e 6e 65 6c 69 6e 67 20 70 72 6f 74 6f 63 6f | 2.(IKEv2).is.a.tunneling.protoco |
| 5e5a0 | 6c 2c 20 62 61 73 65 64 20 6f 6e 20 49 50 73 65 63 2c 20 74 68 61 74 20 65 73 74 61 62 6c 69 73 | l,.based.on.IPsec,.that.establis |
| 5e5c0 | 68 65 73 20 61 20 73 65 63 75 72 65 20 56 50 4e 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 20 62 | hes.a.secure.VPN.communication.b |
| 5e5e0 | 65 74 77 65 65 6e 20 56 50 4e 20 64 65 76 69 63 65 73 2c 20 20 61 6e 64 20 64 65 66 69 6e 65 73 | etween.VPN.devices,..and.defines |
| 5e600 | 20 6e 65 67 6f 74 69 61 74 69 6f 6e 20 61 6e 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 | .negotiation.and.authentication. |
| 5e620 | 70 72 6f 63 65 73 73 65 73 20 66 6f 72 20 49 50 73 65 63 20 73 65 63 75 72 69 74 79 20 61 73 73 | processes.for.IPsec.security.ass |
| 5e640 | 6f 63 69 61 74 69 6f 6e 73 20 28 53 41 73 29 2e 20 49 74 20 69 73 20 6f 66 74 65 6e 20 6b 6e 6f | ociations.(SAs)..It.is.often.kno |
| 5e660 | 77 6e 20 61 73 20 49 4b 45 76 32 2f 49 50 53 65 63 20 6f 72 20 49 50 53 65 63 20 49 4b 45 76 32 | wn.as.IKEv2/IPSec.or.IPSec.IKEv2 |
| 5e680 | 20 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 20 e2 80 94 20 6f 72 20 72 6f 61 64 2d 77 61 72 72 69 | .remote-access.....or.road-warri |
| 5e6a0 | 6f 72 73 20 61 73 20 6f 74 68 65 72 73 20 63 61 6c 6c 20 69 74 2e 00 49 6e 74 65 72 6e 65 74 20 | ors.as.others.call.it..Internet. |
| 5e6c0 | 4b 65 79 20 45 78 63 68 61 6e 67 65 20 76 65 72 73 69 6f 6e 20 32 2c 20 49 4b 45 76 32 20 66 6f | Key.Exchange.version.2,.IKEv2.fo |
| 5e6e0 | 72 20 73 68 6f 72 74 2c 20 69 73 20 61 20 72 65 71 75 65 73 74 2f 72 65 73 70 6f 6e 73 65 20 70 | r.short,.is.a.request/response.p |
| 5e700 | 72 6f 74 6f 63 6f 6c 20 64 65 76 65 6c 6f 70 65 64 20 62 79 20 62 6f 74 68 20 43 69 73 63 6f 20 | rotocol.developed.by.both.Cisco. |
| 5e720 | 61 6e 64 20 4d 69 63 72 6f 73 6f 66 74 2e 20 49 74 20 69 73 20 75 73 65 64 20 74 6f 20 65 73 74 | and.Microsoft..It.is.used.to.est |
| 5e740 | 61 62 6c 69 73 68 20 61 6e 64 20 73 65 63 75 72 65 20 49 50 76 34 2f 49 50 76 36 20 63 6f 6e 6e | ablish.and.secure.IPv4/IPv6.conn |
| 5e760 | 65 63 74 69 6f 6e 73 2c 20 62 65 20 69 74 20 61 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 56 50 | ections,.be.it.a.site-to-site.VP |
| 5e780 | 4e 20 6f 72 20 66 72 6f 6d 20 61 20 72 6f 61 64 2d 77 61 72 72 69 6f 72 20 63 6f 6e 6e 65 63 74 | N.or.from.a.road-warrior.connect |
| 5e7a0 | 69 6e 67 20 74 6f 20 61 20 68 75 62 20 73 69 74 65 2e 20 49 4b 45 76 32 2c 20 77 68 65 6e 20 72 | ing.to.a.hub.site..IKEv2,.when.r |
| 5e7c0 | 75 6e 20 69 6e 20 70 6f 69 6e 74 2d 74 6f 2d 6d 75 6c 74 69 70 6f 69 6e 74 2c 20 6f 72 20 72 65 | un.in.point-to-multipoint,.or.re |
| 5e7e0 | 6d 6f 74 65 2d 61 63 63 65 73 73 2f 72 6f 61 64 2d 77 61 72 72 69 6f 72 20 6d 6f 64 65 2c 20 73 | mote-access/road-warrior.mode,.s |
| 5e800 | 65 63 75 72 65 73 20 74 68 65 20 73 65 72 76 65 72 2d 73 69 64 65 20 77 69 74 68 20 61 6e 6f 74 | ecures.the.server-side.with.anot |
| 5e820 | 68 65 72 20 6c 61 79 65 72 20 62 79 20 75 73 69 6e 67 20 61 6e 20 78 35 30 39 20 73 69 67 6e 65 | her.layer.by.using.an.x509.signe |
| 5e840 | 64 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 2e 00 49 6e 74 65 72 6e 65 74 77 6f | d.server.certificate..Internetwo |
| 5e860 | 72 6b 20 43 6f 6e 74 72 6f 6c 00 49 6e 74 65 72 76 61 6c 00 49 6e 74 65 72 76 61 6c 20 28 69 6e | rk.Control.Interval.Interval.(in |
| 5e880 | 20 73 65 63 6f 6e 64 73 29 20 66 6f 72 20 73 65 6e 64 69 6e 67 20 6d 61 72 6b 20 6d 65 73 73 61 | .seconds).for.sending.mark.messa |
| 5e8a0 | 67 65 73 20 74 6f 20 74 68 65 20 73 79 73 6c 6f 67 20 69 6e 70 75 74 20 74 6f 20 69 6e 64 69 63 | ges.to.the.syslog.input.to.indic |
| 5e8c0 | 61 74 65 20 74 68 61 74 20 74 68 65 20 6c 6f 67 67 69 6e 67 20 73 79 73 74 65 6d 20 69 73 20 66 | ate.that.the.logging.system.is.f |
| 5e8e0 | 75 6e 63 74 69 6f 6e 69 6e 67 2e 00 49 6e 74 65 72 76 61 6c 20 69 6e 20 6d 69 6c 6c 69 73 65 63 | unctioning..Interval.in.millisec |
| 5e900 | 6f 6e 64 73 00 49 6e 74 65 72 76 61 6c 20 69 6e 20 6d 69 6e 75 74 65 73 20 62 65 74 77 65 65 6e | onds.Interval.in.minutes.between |
| 5e920 | 20 75 70 64 61 74 65 73 20 28 64 65 66 61 75 6c 74 3a 20 36 30 29 00 49 6e 74 72 6f 64 75 63 69 | .updates.(default:.60).Introduci |
| 5e940 | 6e 67 20 72 6f 75 74 65 20 72 65 66 6c 65 63 74 6f 72 73 20 72 65 6d 6f 76 65 73 20 74 68 65 20 | ng.route.reflectors.removes.the. |
| 5e960 | 6e 65 65 64 20 66 6f 72 20 74 68 65 20 66 75 6c 6c 2d 6d 65 73 68 2e 20 57 68 65 6e 20 79 6f 75 | need.for.the.full-mesh..When.you |
| 5e980 | 20 63 6f 6e 66 69 67 75 72 65 20 61 20 72 6f 75 74 65 20 72 65 66 6c 65 63 74 6f 72 20 79 6f 75 | .configure.a.route.reflector.you |
| 5e9a0 | 20 68 61 76 65 20 74 6f 20 74 65 6c 6c 20 74 68 65 20 72 6f 75 74 65 72 20 77 68 65 74 68 65 72 | .have.to.tell.the.router.whether |
| 5e9c0 | 20 74 68 65 20 6f 74 68 65 72 20 49 42 47 50 20 72 6f 75 74 65 72 20 69 73 20 61 20 63 6c 69 65 | .the.other.IBGP.router.is.a.clie |
| 5e9e0 | 6e 74 20 6f 72 20 6e 6f 6e 2d 63 6c 69 65 6e 74 2e 20 41 20 63 6c 69 65 6e 74 20 69 73 20 61 6e | nt.or.non-client..A.client.is.an |
| 5ea00 | 20 49 42 47 50 20 72 6f 75 74 65 72 20 74 68 61 74 20 74 68 65 20 72 6f 75 74 65 20 72 65 66 6c | .IBGP.router.that.the.route.refl |
| 5ea20 | 65 63 74 6f 72 20 77 69 6c 6c 20 e2 80 9c 72 65 66 6c 65 63 74 e2 80 9d 20 72 6f 75 74 65 73 20 | ector.will....reflect....routes. |
| 5ea40 | 74 6f 2c 20 74 68 65 20 6e 6f 6e 2d 63 6c 69 65 6e 74 20 69 73 20 6a 75 73 74 20 61 20 72 65 67 | to,.the.non-client.is.just.a.reg |
| 5ea60 | 75 6c 61 72 20 49 42 47 50 20 6e 65 69 67 68 62 6f 72 2e 20 52 6f 75 74 65 20 72 65 66 6c 65 63 | ular.IBGP.neighbor..Route.reflec |
| 5ea80 | 74 6f 72 73 20 6d 65 63 68 61 6e 69 73 6d 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a | tors.mechanism.is.described.in.: |
| 5eaa0 | 72 66 63 3a 60 34 34 35 36 60 20 61 6e 64 20 75 70 64 61 74 65 64 20 62 79 20 3a 72 66 63 3a 60 | rfc:`4456`.and.updated.by.:rfc:` |
| 5eac0 | 37 36 30 36 60 2e 00 49 6e 74 72 75 73 69 6f 6e 20 44 65 74 65 63 74 69 6f 6e 20 28 49 44 53 29 | 7606`..Intrusion.Detection.(IDS) |
| 5eae0 | 3a 20 41 6e 61 6c 79 7a 65 73 20 6e 65 74 77 6f 72 6b 20 74 72 61 66 66 69 63 20 61 6e 64 20 64 | :.Analyzes.network.traffic.and.d |
| 5eb00 | 65 74 65 63 74 73 20 73 75 73 70 69 63 69 6f 75 73 20 61 63 74 69 76 69 74 69 65 73 2c 20 61 74 | etects.suspicious.activities,.at |
| 5eb20 | 74 61 63 6b 73 2c 20 61 6e 64 20 6d 61 6c 69 63 69 6f 75 73 20 74 72 61 66 66 69 63 2e 20 49 6e | tacks,.and.malicious.traffic..In |
| 5eb40 | 74 72 75 73 69 6f 6e 20 50 72 65 76 65 6e 74 69 6f 6e 20 28 49 50 53 29 3a 20 42 6c 6f 63 6b 73 | trusion.Prevention.(IPS):.Blocks |
| 5eb60 | 20 6f 72 20 6d 6f 64 69 66 69 65 73 20 73 75 73 70 69 63 69 6f 75 73 20 74 72 61 66 66 69 63 20 | .or.modifies.suspicious.traffic. |
| 5eb80 | 69 6e 20 72 65 61 6c 2d 74 69 6d 65 2c 20 70 72 65 76 65 6e 74 69 6e 67 20 61 74 74 61 63 6b 73 | in.real-time,.preventing.attacks |
| 5eba0 | 20 62 65 66 6f 72 65 20 74 68 65 79 20 70 65 6e 65 74 72 61 74 65 20 74 68 65 20 6e 65 74 77 6f | .before.they.penetrate.the.netwo |
| 5ebc0 | 72 6b 2e 20 4e 65 74 77 6f 72 6b 20 53 65 63 75 72 69 74 79 20 4d 6f 6e 69 74 6f 72 69 6e 67 20 | rk..Network.Security.Monitoring. |
| 5ebe0 | 28 4e 53 4d 29 3a 20 43 6f 6c 6c 65 63 74 73 20 61 6e 64 20 61 6e 61 6c 79 7a 65 73 20 6e 65 74 | (NSM):.Collects.and.analyzes.net |
| 5ec00 | 77 6f 72 6b 20 64 61 74 61 20 74 6f 20 64 65 74 65 63 74 20 61 6e 6f 6d 61 6c 69 65 73 20 61 6e | work.data.to.detect.anomalies.an |
| 5ec20 | 64 20 69 64 65 6e 74 69 66 79 20 74 68 72 65 61 74 73 2e 20 4d 75 6c 74 69 2d 50 72 6f 74 6f 63 | d.identify.threats..Multi-Protoc |
| 5ec40 | 6f 6c 20 53 75 70 70 6f 72 74 3a 20 53 75 72 69 63 61 74 61 20 73 75 70 70 6f 72 74 73 20 61 6e | ol.Support:.Suricata.supports.an |
| 5ec60 | 61 6c 79 73 69 73 20 6f 66 20 76 61 72 69 6f 75 73 20 6e 65 74 77 6f 72 6b 20 70 72 6f 74 6f 63 | alysis.of.various.network.protoc |
| 5ec80 | 6f 6c 73 20 73 75 63 68 20 61 73 20 48 54 54 50 2c 20 46 54 50 2c 20 53 4d 42 2c 20 61 6e 64 20 | ols.such.as.HTTP,.FTP,.SMB,.and. |
| 5eca0 | 6d 61 6e 79 20 6f 74 68 65 72 73 2e 20 49 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f | many.others..In.configuration.mo |
| 5ecc0 | 64 65 2c 20 74 68 65 20 63 6f 6d 6d 61 6e 64 73 20 61 72 65 20 61 73 20 66 6f 6c 6c 6f 77 73 3a | de,.the.commands.are.as.follows: |
| 5ece0 | 00 49 74 20 64 69 73 61 62 6c 65 73 20 74 72 61 6e 73 70 61 72 65 6e 74 20 68 75 67 65 20 70 61 | .It.disables.transparent.huge.pa |
| 5ed00 | 67 65 73 2c 20 61 6e 64 20 61 75 74 6f 6d 61 74 69 63 20 4e 55 4d 41 20 62 61 6c 61 6e 63 69 6e | ges,.and.automatic.NUMA.balancin |
| 5ed20 | 67 2e 20 49 74 20 61 6c 73 6f 20 75 73 65 73 20 63 70 75 70 6f 77 65 72 20 74 6f 20 73 65 74 20 | g..It.also.uses.cpupower.to.set. |
| 5ed40 | 74 68 65 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 63 70 75 66 72 65 71 20 67 6f 76 65 72 6e 6f 72 | the.performance.cpufreq.governor |
| 5ed60 | 2c 20 61 6e 64 20 72 65 71 75 65 73 74 73 20 61 20 63 70 75 5f 64 6d 61 5f 6c 61 74 65 6e 63 79 | ,.and.requests.a.cpu_dma_latency |
| 5ed80 | 20 76 61 6c 75 65 20 6f 66 20 31 2e 20 49 74 20 61 6c 73 6f 20 73 65 74 73 20 62 75 73 79 5f 72 | .value.of.1..It.also.sets.busy_r |
| 5eda0 | 65 61 64 20 61 6e 64 20 62 75 73 79 5f 70 6f 6c 6c 20 74 69 6d 65 73 20 74 6f 20 35 30 20 75 73 | ead.and.busy_poll.times.to.50.us |
| 5edc0 | 2c 20 61 6e 64 20 74 63 70 5f 66 61 73 74 6f 70 65 6e 20 74 6f 20 33 2e 00 49 74 20 65 6e 61 62 | ,.and.tcp_fastopen.to.3..It.enab |
| 5ede0 | 6c 65 73 20 74 72 61 6e 73 70 61 72 65 6e 74 20 68 75 67 65 20 70 61 67 65 73 2c 20 61 6e 64 20 | les.transparent.huge.pages,.and. |
| 5ee00 | 75 73 65 73 20 63 70 75 70 6f 77 65 72 20 74 6f 20 73 65 74 20 74 68 65 20 70 65 72 66 6f 72 6d | uses.cpupower.to.set.the.perform |
| 5ee20 | 61 6e 63 65 20 63 70 75 66 72 65 71 20 67 6f 76 65 72 6e 6f 72 2e 20 49 74 20 61 6c 73 6f 20 73 | ance.cpufreq.governor..It.also.s |
| 5ee40 | 65 74 73 20 60 60 6b 65 72 6e 65 6c 2e 73 63 68 65 64 5f 6d 69 6e 5f 67 72 61 6e 75 6c 61 72 69 | ets.``kernel.sched_min_granulari |
| 5ee60 | 74 79 5f 6e 73 60 60 20 74 6f 20 31 30 20 75 73 2c 20 60 60 6b 65 72 6e 65 6c 2e 73 63 68 65 64 | ty_ns``.to.10.us,.``kernel.sched |
| 5ee80 | 5f 77 61 6b 65 75 70 5f 67 72 61 6e 75 6c 61 72 69 74 79 5f 6e 73 60 60 20 74 6f 20 31 35 20 75 | _wakeup_granularity_ns``.to.15.u |
| 5eea0 | 73 73 2c 20 61 6e 64 20 60 60 76 6d 2e 64 69 72 74 79 5f 72 61 74 69 6f 60 60 20 74 6f 20 34 30 | ss,.and.``vm.dirty_ratio``.to.40 |
| 5eec0 | 25 2e 00 49 74 20 67 65 6e 65 72 61 74 65 73 20 74 68 65 20 6b 65 79 70 61 69 72 2c 20 77 68 69 | %..It.generates.the.keypair,.whi |
| 5eee0 | 63 68 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 70 75 62 6c 69 63 20 61 6e 64 20 70 72 69 76 61 | ch.includes.the.public.and.priva |
| 5ef00 | 74 65 20 70 61 72 74 73 2e 20 54 68 65 20 6b 65 79 20 69 73 20 6e 6f 74 20 73 74 6f 72 65 64 20 | te.parts..The.key.is.not.stored. |
| 5ef20 | 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 20 2d 20 6f 6e 6c 79 20 61 20 6b 65 79 70 61 69 72 20 69 | on.the.system.-.only.a.keypair.i |
| 5ef40 | 73 20 67 65 6e 65 72 61 74 65 64 2e 00 49 74 20 68 61 6e 64 73 20 6f 75 74 20 70 72 65 66 69 78 | s.generated..It.hands.out.prefix |
| 5ef60 | 65 73 20 60 60 32 30 30 31 3a 64 62 38 3a 30 3a 31 30 3a 3a 2f 36 34 60 60 20 74 68 72 6f 75 67 | es.``2001:db8:0:10::/64``.throug |
| 5ef80 | 68 20 60 60 32 30 30 31 3a 64 62 38 3a 30 3a 31 66 3a 3a 2f 36 34 60 60 2e 00 49 74 20 68 65 6c | h.``2001:db8:0:1f::/64``..It.hel |
| 5efa0 | 70 73 20 74 6f 20 73 75 70 70 6f 72 74 20 61 73 20 48 45 4c 50 45 52 20 6f 6e 6c 79 20 66 6f 72 | ps.to.support.as.HELPER.only.for |
| 5efc0 | 20 70 6c 61 6e 6e 65 64 20 72 65 73 74 61 72 74 73 2e 00 49 74 20 68 65 6c 70 73 20 74 6f 20 74 | .planned.restarts..It.helps.to.t |
| 5efe0 | 68 69 6e 6b 20 6f 66 20 74 68 65 20 73 79 6e 74 61 78 20 61 73 3a 20 28 73 65 65 20 62 65 6c 6f | hink.of.the.syntax.as:.(see.belo |
| 5f000 | 77 29 2e 20 54 68 65 20 27 72 75 6c 65 2d 73 65 74 27 20 73 68 6f 75 6c 64 20 62 65 20 77 72 69 | w)..The.'rule-set'.should.be.wri |
| 5f020 | 74 74 65 6e 20 66 72 6f 6d 20 74 68 65 20 70 65 72 73 70 65 63 74 69 76 65 20 6f 66 3a 20 2a 53 | tten.from.the.perspective.of:.*S |
| 5f040 | 6f 75 72 63 65 20 5a 6f 6e 65 2a 2d 74 6f 2d 3e 2a 44 65 73 74 69 6e 61 74 69 6f 6e 20 5a 6f 6e | ource.Zone*-to->*Destination.Zon |
| 5f060 | 65 2a 00 49 74 20 69 73 20 63 6f 6d 70 61 74 69 62 6c 65 20 77 69 74 68 20 43 69 73 63 6f 20 28 | e*.It.is.compatible.with.Cisco.( |
| 5f080 | 52 29 20 41 6e 79 43 6f 6e 6e 65 63 74 20 28 52 29 20 63 6c 69 65 6e 74 73 2e 00 49 74 20 69 73 | R).AnyConnect.(R).clients..It.is |
| 5f0a0 | 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 60 60 65 74 68 31 60 60 00 49 74 20 69 73 20 63 6f 6e | .connected.to.``eth1``.It.is.con |
| 5f0c0 | 6e 65 63 74 65 64 20 74 6f 20 60 60 65 74 68 31 60 60 2e 00 49 74 20 69 73 20 68 69 67 68 6c 79 | nected.to.``eth1``..It.is.highly |
| 5f0e0 | 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 74 6f 20 75 73 65 20 53 53 48 20 6b 65 79 20 61 75 74 68 | .recommended.to.use.SSH.key.auth |
| 5f100 | 65 6e 74 69 63 61 74 69 6f 6e 2e 20 42 79 20 64 65 66 61 75 6c 74 20 74 68 65 72 65 20 69 73 20 | entication..By.default.there.is. |
| 5f120 | 6f 6e 6c 79 20 6f 6e 65 20 75 73 65 72 20 28 60 60 76 79 6f 73 60 60 29 2c 20 61 6e 64 20 79 6f | only.one.user.(``vyos``),.and.yo |
| 5f140 | 75 20 63 61 6e 20 61 73 73 69 67 6e 20 61 6e 79 20 6e 75 6d 62 65 72 20 6f 66 20 6b 65 79 73 20 | u.can.assign.any.number.of.keys. |
| 5f160 | 74 6f 20 74 68 61 74 20 75 73 65 72 2e 20 59 6f 75 20 63 61 6e 20 67 65 6e 65 72 61 74 65 20 61 | to.that.user..You.can.generate.a |
| 5f180 | 20 73 73 68 20 6b 65 79 20 77 69 74 68 20 74 68 65 20 60 60 73 73 68 2d 6b 65 79 67 65 6e 60 60 | .ssh.key.with.the.``ssh-keygen`` |
| 5f1a0 | 20 63 6f 6d 6d 61 6e 64 20 6f 6e 20 79 6f 75 72 20 6c 6f 63 61 6c 20 6d 61 63 68 69 6e 65 2c 20 | .command.on.your.local.machine,. |
| 5f1c0 | 77 68 69 63 68 20 77 69 6c 6c 20 28 62 79 20 64 65 66 61 75 6c 74 29 20 73 61 76 65 20 69 74 20 | which.will.(by.default).save.it. |
| 5f1e0 | 61 73 20 60 60 7e 2f 2e 73 73 68 2f 69 64 5f 72 73 61 2e 70 75 62 60 60 2e 00 49 74 20 69 73 20 | as.``~/.ssh/id_rsa.pub``..It.is. |
| 5f200 | 68 69 67 68 6c 79 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 74 6f 20 75 73 65 20 74 68 65 20 73 61 | highly.recommended.to.use.the.sa |
| 5f220 | 6d 65 20 61 64 64 72 65 73 73 20 66 6f 72 20 62 6f 74 68 20 74 68 65 20 4c 44 50 20 72 6f 75 74 | me.address.for.both.the.LDP.rout |
| 5f240 | 65 72 2d 69 64 20 61 6e 64 20 74 68 65 20 64 69 73 63 6f 76 65 72 79 20 74 72 61 6e 73 70 6f 72 | er-id.and.the.discovery.transpor |
| 5f260 | 74 20 61 64 64 72 65 73 73 2c 20 62 75 74 20 66 6f 72 20 56 79 4f 53 20 4d 50 4c 53 20 4c 44 50 | t.address,.but.for.VyOS.MPLS.LDP |
| 5f280 | 20 74 6f 20 77 6f 72 6b 20 62 6f 74 68 20 70 61 72 61 6d 65 74 65 72 73 20 6d 75 73 74 20 62 65 | .to.work.both.parameters.must.be |
| 5f2a0 | 20 65 78 70 6c 69 63 69 74 6c 79 20 73 65 74 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 | .explicitly.set.in.the.configura |
| 5f2c0 | 74 69 6f 6e 2e 00 49 74 20 69 73 20 69 6d 70 6f 72 74 61 6e 74 20 74 6f 20 6e 6f 74 65 20 74 68 | tion..It.is.important.to.note.th |
| 5f2e0 | 61 74 20 77 68 65 6e 20 63 72 65 61 74 69 6e 67 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 | at.when.creating.firewall.rules. |
| 5f300 | 74 68 61 74 20 74 68 65 20 44 4e 41 54 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 6f 63 63 75 72 73 | that.the.DNAT.translation.occurs |
| 5f320 | 20 2a 2a 62 65 66 6f 72 65 2a 2a 20 74 72 61 66 66 69 63 20 74 72 61 76 65 72 73 65 73 20 74 68 | .**before**.traffic.traverses.th |
| 5f340 | 65 20 66 69 72 65 77 61 6c 6c 2e 20 49 6e 20 6f 74 68 65 72 20 77 6f 72 64 73 2c 20 74 68 65 20 | e.firewall..In.other.words,.the. |
| 5f360 | 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 68 61 73 20 61 6c 72 65 61 64 79 20 | destination.address.has.already. |
| 5f380 | 62 65 65 6e 20 74 72 61 6e 73 6c 61 74 65 64 20 74 6f 20 31 39 32 2e 31 36 38 2e 30 2e 31 30 30 | been.translated.to.192.168.0.100 |
| 5f3a0 | 2e 00 49 74 20 69 73 20 69 6d 70 6f 72 74 61 6e 74 20 74 6f 20 6e 6f 74 65 20 74 68 61 74 20 77 | ..It.is.important.to.note.that.w |
| 5f3c0 | 68 65 6e 20 63 72 65 61 74 69 6e 67 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 2c 20 74 68 65 | hen.creating.firewall.rules,.the |
| 5f3e0 | 20 44 4e 41 54 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 6f 63 63 75 72 73 20 2a 2a 62 65 66 6f 72 | .DNAT.translation.occurs.**befor |
| 5f400 | 65 2a 2a 20 74 72 61 66 66 69 63 20 74 72 61 76 65 72 73 65 73 20 74 68 65 20 66 69 72 65 77 61 | e**.traffic.traverses.the.firewa |
| 5f420 | 6c 6c 2e 20 49 6e 20 6f 74 68 65 72 20 77 6f 72 64 73 2c 20 74 68 65 20 64 65 73 74 69 6e 61 74 | ll..In.other.words,.the.destinat |
| 5f440 | 69 6f 6e 20 61 64 64 72 65 73 73 20 68 61 73 20 61 6c 72 65 61 64 79 20 62 65 65 6e 20 74 72 61 | ion.address.has.already.been.tra |
| 5f460 | 6e 73 6c 61 74 65 64 20 74 6f 20 31 39 32 2e 31 36 38 2e 30 2e 31 30 30 2e 00 49 74 20 69 73 20 | nslated.to.192.168.0.100..It.is. |
| 5f480 | 6e 6f 74 20 73 75 66 66 69 63 69 65 6e 74 20 74 6f 20 6f 6e 6c 79 20 63 6f 6e 66 69 67 75 72 65 | not.sufficient.to.only.configure |
| 5f4a0 | 20 61 20 4c 33 56 50 4e 20 56 52 46 73 20 62 75 74 20 4c 33 56 50 4e 20 56 52 46 73 20 6d 75 73 | .a.L3VPN.VRFs.but.L3VPN.VRFs.mus |
| 5f4c0 | 74 20 62 65 20 6d 61 69 6e 74 61 69 6e 65 64 2c 20 74 6f 6f 2e 46 6f 72 20 4c 33 56 50 4e 20 56 | t.be.maintained,.too.For.L3VPN.V |
| 5f4e0 | 52 46 20 6d 61 69 6e 74 65 6e 61 6e 63 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6f 70 65 | RF.maintenance.the.following.ope |
| 5f500 | 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 73 20 61 72 65 20 69 6e 20 70 6c 61 63 65 2e 00 | rational.commands.are.in.place.. |
| 5f520 | 49 74 20 69 73 20 6e 6f 74 20 73 75 66 66 69 63 69 65 6e 74 20 74 6f 20 6f 6e 6c 79 20 63 6f 6e | It.is.not.sufficient.to.only.con |
| 5f540 | 66 69 67 75 72 65 20 61 20 56 52 46 20 62 75 74 20 56 52 46 73 20 6d 75 73 74 20 62 65 20 6d 61 | figure.a.VRF.but.VRFs.must.be.ma |
| 5f560 | 69 6e 74 61 69 6e 65 64 2c 20 74 6f 6f 2e 20 46 6f 72 20 56 52 46 20 6d 61 69 6e 74 65 6e 61 6e | intained,.too..For.VRF.maintenan |
| 5f580 | 63 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d | ce.the.following.operational.com |
| 5f5a0 | 6d 61 6e 64 73 20 61 72 65 20 69 6e 20 70 6c 61 63 65 2e 00 49 74 20 69 73 20 6e 6f 74 20 76 61 | mands.are.in.place..It.is.not.va |
| 5f5c0 | 6c 69 64 20 74 6f 20 75 73 65 20 74 68 65 20 60 76 69 66 20 31 60 20 6f 70 74 69 6f 6e 20 66 6f | lid.to.use.the.`vif.1`.option.fo |
| 5f5e0 | 72 20 56 4c 41 4e 20 61 77 61 72 65 20 62 72 69 64 67 65 73 20 62 65 63 61 75 73 65 20 56 4c 41 | r.VLAN.aware.bridges.because.VLA |
| 5f600 | 4e 20 61 77 61 72 65 20 62 72 69 64 67 65 73 20 61 73 73 75 6d 65 20 74 68 61 74 20 61 6c 6c 20 | N.aware.bridges.assume.that.all. |
| 5f620 | 75 6e 6c 61 62 65 6c 65 64 20 70 61 63 6b 65 74 73 20 62 65 6c 6f 6e 67 20 74 6f 20 74 68 65 20 | unlabeled.packets.belong.to.the. |
| 5f640 | 64 65 66 61 75 6c 74 20 56 4c 41 4e 20 31 20 6d 65 6d 62 65 72 20 61 6e 64 20 74 68 61 74 20 74 | default.VLAN.1.member.and.that.t |
| 5f660 | 68 65 20 56 4c 41 4e 20 49 44 20 6f 66 20 74 68 65 20 62 72 69 64 67 65 27 73 20 70 61 72 65 6e | he.VLAN.ID.of.the.bridge's.paren |
| 5f680 | 74 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 6c 77 61 79 73 20 31 00 49 74 20 69 73 20 70 6f | t.interface.is.always.1.It.is.po |
| 5f6a0 | 73 73 69 62 6c 65 20 74 6f 20 65 6e 68 61 6e 63 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e | ssible.to.enhance.authentication |
| 5f6c0 | 20 73 65 63 75 72 69 74 79 20 62 79 20 75 73 69 6e 67 20 74 68 65 20 3a 61 62 62 72 3a 60 32 46 | .security.by.using.the.:abbr:`2F |
| 5f6e0 | 41 20 28 54 77 6f 2d 66 61 63 74 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 29 60 2f 3a | A.(Two-factor.authentication)`/: |
| 5f700 | 61 62 62 72 3a 60 4d 46 41 20 28 4d 75 6c 74 69 2d 66 61 63 74 6f 72 20 61 75 74 68 65 6e 74 69 | abbr:`MFA.(Multi-factor.authenti |
| 5f720 | 63 61 74 69 6f 6e 29 60 20 66 65 61 74 75 72 65 20 74 6f 67 65 74 68 65 72 20 77 69 74 68 20 3a | cation)`.feature.together.with.: |
| 5f740 | 61 62 62 72 3a 60 4f 54 50 20 28 4f 6e 65 2d 54 69 6d 65 2d 50 61 64 29 60 20 6f 6e 20 56 79 4f | abbr:`OTP.(One-Time-Pad)`.on.VyO |
| 5f760 | 53 2e 20 3a 61 62 62 72 3a 60 32 46 41 20 28 54 77 6f 2d 66 61 63 74 6f 72 20 61 75 74 68 65 6e | S..:abbr:`2FA.(Two-factor.authen |
| 5f780 | 74 69 63 61 74 69 6f 6e 29 60 2f 3a 61 62 62 72 3a 60 4d 46 41 20 28 4d 75 6c 74 69 2d 66 61 63 | tication)`/:abbr:`MFA.(Multi-fac |
| 5f7a0 | 74 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 29 60 20 69 73 20 63 6f 6e 66 69 67 75 72 | tor.authentication)`.is.configur |
| 5f7c0 | 65 64 20 69 6e 64 65 70 65 6e 64 65 6e 74 6c 79 20 70 65 72 20 65 61 63 68 20 75 73 65 72 2e 20 | ed.independently.per.each.user.. |
| 5f7e0 | 49 66 20 61 6e 20 4f 54 50 20 6b 65 79 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 66 6f 72 20 | If.an.OTP.key.is.configured.for. |
| 5f800 | 61 20 75 73 65 72 2c 20 32 46 41 2f 4d 46 41 20 69 73 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 | a.user,.2FA/MFA.is.automatically |
| 5f820 | 20 65 6e 61 62 6c 65 64 20 66 6f 72 20 74 68 61 74 20 70 61 72 74 69 63 75 6c 61 72 20 75 73 65 | .enabled.for.that.particular.use |
| 5f840 | 72 2e 20 49 66 20 61 20 75 73 65 72 20 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 20 61 6e 20 4f 54 | r..If.a.user.does.not.have.an.OT |
| 5f860 | 50 20 6b 65 79 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 74 68 65 72 65 20 69 73 20 6e 6f 20 32 46 | P.key.configured,.there.is.no.2F |
| 5f880 | 41 2f 4d 46 41 20 63 68 65 63 6b 20 66 6f 72 20 74 68 61 74 20 75 73 65 72 2e 00 49 74 20 69 73 | A/MFA.check.for.that.user..It.is |
| 5f8a0 | 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 70 65 72 6d 69 74 20 42 47 50 20 69 6e 73 74 61 6c 6c 20 | .possible.to.permit.BGP.install. |
| 5f8c0 | 56 50 4e 20 70 72 65 66 69 78 65 73 20 77 69 74 68 6f 75 74 20 74 72 61 6e 73 70 6f 72 74 20 6c | VPN.prefixes.without.transport.l |
| 5f8e0 | 61 62 65 6c 73 2e 20 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 69 6c 6c 20 69 | abels..This.configuration.will.i |
| 5f900 | 6e 73 74 61 6c 6c 20 56 50 4e 20 70 72 65 66 69 78 65 73 20 6f 72 69 67 69 6e 61 74 65 64 20 66 | nstall.VPN.prefixes.originated.f |
| 5f920 | 72 6f 6d 20 61 6e 20 65 2d 62 67 70 20 73 65 73 73 69 6f 6e 2c 20 61 6e 64 20 77 69 74 68 20 74 | rom.an.e-bgp.session,.and.with.t |
| 5f940 | 68 65 20 6e 65 78 74 2d 68 6f 70 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 2e 00 | he.next-hop.directly.connected.. |
| 5f960 | 49 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 73 70 65 63 69 66 79 20 61 20 73 74 61 74 | It.is.possible.to.specify.a.stat |
| 5f980 | 69 63 20 72 6f 75 74 65 20 66 6f 72 20 69 70 76 36 20 70 72 65 66 69 78 65 73 20 75 73 69 6e 67 | ic.route.for.ipv6.prefixes.using |
| 5f9a0 | 20 61 6e 20 53 52 76 36 20 73 65 67 6d 65 6e 74 73 20 69 6e 73 74 72 75 63 74 69 6f 6e 2e 20 54 | .an.SRv6.segments.instruction..T |
| 5f9c0 | 68 65 20 60 2f 60 20 73 65 70 61 72 61 74 6f 72 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 | he.`/`.separator.can.be.used.to. |
| 5f9e0 | 73 70 65 63 69 66 79 20 6d 75 6c 74 69 70 6c 65 20 73 65 67 6d 65 6e 74 20 69 6e 73 74 72 75 63 | specify.multiple.segment.instruc |
| 5fa00 | 74 69 6f 6e 73 2e 00 49 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 75 73 65 20 65 69 74 | tions..It.is.possible.to.use.eit |
| 5fa20 | 68 65 72 20 4d 75 6c 74 69 63 61 73 74 20 6f 72 20 55 6e 69 63 61 73 74 20 74 6f 20 73 79 6e 63 | her.Multicast.or.Unicast.to.sync |
| 5fa40 | 20 63 6f 6e 6e 74 72 61 63 6b 20 74 72 61 66 66 69 63 2e 20 4d 6f 73 74 20 65 78 61 6d 70 6c 65 | .conntrack.traffic..Most.example |
| 5fa60 | 73 20 62 65 6c 6f 77 20 73 68 6f 77 20 4d 75 6c 74 69 63 61 73 74 2c 20 62 75 74 20 75 6e 69 63 | s.below.show.Multicast,.but.unic |
| 5fa80 | 61 73 74 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 62 79 20 75 73 69 6e 67 20 74 68 | ast.can.be.specified.by.using.th |
| 5faa0 | 65 20 22 70 65 65 72 22 20 6b 65 79 77 6f 72 6b 20 61 66 74 65 72 20 74 68 65 20 73 70 65 63 69 | e."peer".keywork.after.the.speci |
| 5fac0 | 66 69 63 65 64 20 69 6e 74 65 72 66 61 63 65 2c 20 61 73 20 69 6e 20 74 68 65 20 66 6f 6c 6c 6f | ficed.interface,.as.in.the.follo |
| 5fae0 | 77 69 6e 67 20 65 78 61 6d 70 6c 65 3a 00 49 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 | wing.example:.It.is.possible.to. |
| 5fb00 | 75 73 65 20 65 69 74 68 65 72 20 4d 75 6c 74 69 63 61 73 74 20 6f 72 20 55 6e 69 63 61 73 74 20 | use.either.Multicast.or.Unicast. |
| 5fb20 | 74 6f 20 73 79 6e 63 20 63 6f 6e 6e 74 72 61 63 6b 20 74 72 61 66 66 69 63 2e 20 4d 6f 73 74 20 | to.sync.conntrack.traffic..Most. |
| 5fb40 | 65 78 61 6d 70 6c 65 73 20 62 65 6c 6f 77 20 73 68 6f 77 20 4d 75 6c 74 69 63 61 73 74 2c 20 62 | examples.below.show.Multicast,.b |
| 5fb60 | 75 74 20 75 6e 69 63 61 73 74 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 62 79 20 75 | ut.unicast.can.be.specified.by.u |
| 5fb80 | 73 69 6e 67 20 74 68 65 20 22 70 65 65 72 22 20 6b 65 79 77 6f 72 6b 20 61 66 74 65 72 20 74 68 | sing.the."peer".keywork.after.th |
| 5fba0 | 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 2c 20 61 73 20 69 6e 20 74 68 65 | e.specified.interface,.as.in.the |
| 5fbc0 | 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 3a 00 49 74 20 69 73 20 76 65 72 79 20 65 | .following.example:.It.is.very.e |
| 5fbe0 | 61 73 79 20 74 6f 20 6d 69 73 63 6f 6e 66 69 67 75 72 65 20 6d 75 6c 74 69 63 61 73 74 20 72 65 | asy.to.misconfigure.multicast.re |
| 5fc00 | 70 65 61 74 69 6e 67 20 69 66 20 79 6f 75 20 68 61 76 65 20 6d 75 6c 74 69 70 6c 65 20 4e 48 53 | peating.if.you.have.multiple.NHS |
| 5fc20 | 65 73 2e 00 49 74 20 75 73 65 73 20 61 20 73 69 6e 67 6c 65 20 54 43 50 20 6f 72 20 55 44 50 20 | es..It.uses.a.single.TCP.or.UDP. |
| 5fc40 | 63 6f 6e 6e 65 63 74 69 6f 6e 20 61 6e 64 20 64 6f 65 73 20 6e 6f 74 20 72 65 6c 79 20 6f 6e 20 | connection.and.does.not.rely.on. |
| 5fc60 | 70 61 63 6b 65 74 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 65 73 2c 20 73 6f 20 69 74 20 77 | packet.source.addresses,.so.it.w |
| 5fc80 | 69 6c 6c 20 77 6f 72 6b 20 65 76 65 6e 20 74 68 72 6f 75 67 68 20 61 20 64 6f 75 62 6c 65 20 4e | ill.work.even.through.a.double.N |
| 5fca0 | 41 54 3a 20 70 65 72 66 65 63 74 20 66 6f 72 20 70 75 62 6c 69 63 20 68 6f 74 73 70 6f 74 73 20 | AT:.perfect.for.public.hotspots. |
| 5fcc0 | 61 6e 64 20 73 75 63 68 00 49 74 20 75 73 65 73 20 61 20 73 74 6f 63 68 61 73 74 69 63 20 6d 6f | and.such.It.uses.a.stochastic.mo |
| 5fce0 | 64 65 6c 20 74 6f 20 63 6c 61 73 73 69 66 79 20 69 6e 63 6f 6d 69 6e 67 20 70 61 63 6b 65 74 73 | del.to.classify.incoming.packets |
| 5fd00 | 20 69 6e 74 6f 20 64 69 66 66 65 72 65 6e 74 20 66 6c 6f 77 73 20 61 6e 64 20 69 73 20 75 73 65 | .into.different.flows.and.is.use |
| 5fd20 | 64 20 74 6f 20 70 72 6f 76 69 64 65 20 61 20 66 61 69 72 20 73 68 61 72 65 20 6f 66 20 74 68 65 | d.to.provide.a.fair.share.of.the |
| 5fd40 | 20 62 61 6e 64 77 69 64 74 68 20 74 6f 20 61 6c 6c 20 74 68 65 20 66 6c 6f 77 73 20 75 73 69 6e | .bandwidth.to.all.the.flows.usin |
| 5fd60 | 67 20 74 68 65 20 71 75 65 75 65 2e 20 45 61 63 68 20 66 6c 6f 77 20 69 73 20 6d 61 6e 61 67 65 | g.the.queue..Each.flow.is.manage |
| 5fd80 | 64 20 62 79 20 74 68 65 20 43 6f 44 65 6c 20 71 75 65 75 69 6e 67 20 20 64 69 73 63 69 70 6c 69 | d.by.the.CoDel.queuing..discipli |
| 5fda0 | 6e 65 2e 20 52 65 6f 72 64 65 72 69 6e 67 20 77 69 74 68 69 6e 20 61 20 66 6c 6f 77 20 69 73 20 | ne..Reordering.within.a.flow.is. |
| 5fdc0 | 61 76 6f 69 64 65 64 20 73 69 6e 63 65 20 43 6f 64 65 6c 20 69 6e 74 65 72 6e 61 6c 6c 79 20 75 | avoided.since.Codel.internally.u |
| 5fde0 | 73 65 73 20 61 20 46 49 46 4f 20 71 75 65 75 65 2e 00 49 74 20 77 69 6c 6c 20 62 65 20 63 6f 6d | ses.a.FIFO.queue..It.will.be.com |
| 5fe00 | 62 69 6e 65 64 20 77 69 74 68 20 74 68 65 20 64 65 6c 65 67 61 74 65 64 20 70 72 65 66 69 78 20 | bined.with.the.delegated.prefix. |
| 5fe20 | 61 6e 64 20 74 68 65 20 73 6c 61 2d 69 64 20 74 6f 20 66 6f 72 6d 20 61 20 63 6f 6d 70 6c 65 74 | and.the.sla-id.to.form.a.complet |
| 5fe40 | 65 20 69 6e 74 65 72 66 61 63 65 20 61 64 64 72 65 73 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 | e.interface.address..The.default |
| 5fe60 | 20 69 73 20 74 6f 20 75 73 65 20 74 68 65 20 45 55 49 2d 36 34 20 61 64 64 72 65 73 73 20 6f 66 | .is.to.use.the.EUI-64.address.of |
| 5fe80 | 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 00 49 74 27 73 20 65 61 73 79 20 74 6f 20 73 65 74 | .the.interface..It's.easy.to.set |
| 5fea0 | 75 70 20 61 6e 64 20 6f 66 66 65 72 73 20 76 65 72 79 20 66 6c 65 78 69 62 6c 65 20 73 70 6c 69 | up.and.offers.very.flexible.spli |
| 5fec0 | 74 20 74 75 6e 6e 65 6c 69 6e 67 00 49 74 27 73 20 6e 6f 74 20 6c 69 6b 65 6c 79 20 74 68 61 74 | t.tunneling.It's.not.likely.that |
| 5fee0 | 20 61 6e 79 6f 6e 65 20 77 69 6c 6c 20 6e 65 65 64 20 69 74 20 61 6e 79 20 74 69 6d 65 20 73 6f | .anyone.will.need.it.any.time.so |
| 5ff00 | 6f 6e 2c 20 62 75 74 20 69 74 20 64 6f 65 73 20 65 78 69 73 74 2e 00 49 74 27 73 20 73 6c 6f 77 | on,.but.it.does.exist..It's.slow |
| 5ff20 | 65 72 20 74 68 61 6e 20 49 50 73 65 63 20 64 75 65 20 74 6f 20 68 69 67 68 65 72 20 70 72 6f 74 | er.than.IPsec.due.to.higher.prot |
| 5ff40 | 6f 63 6f 6c 20 6f 76 65 72 68 65 61 64 20 61 6e 64 20 74 68 65 20 66 61 63 74 20 69 74 20 72 75 | ocol.overhead.and.the.fact.it.ru |
| 5ff60 | 6e 73 20 69 6e 20 75 73 65 72 20 6d 6f 64 65 20 77 68 69 6c 65 20 49 50 73 65 63 2c 20 6f 6e 20 | ns.in.user.mode.while.IPsec,.on. |
| 5ff80 | 4c 69 6e 75 78 2c 20 69 73 20 69 6e 20 6b 65 72 6e 65 6c 20 6d 6f 64 65 00 49 74 27 73 20 74 69 | Linux,.is.in.kernel.mode.It's.ti |
| 5ffa0 | 6d 65 20 74 6f 20 63 68 65 63 6b 20 63 6f 6e 6e 74 72 61 63 6b 20 74 61 62 6c 65 2c 20 74 6f 20 | me.to.check.conntrack.table,.to. |
| 5ffc0 | 73 65 65 20 69 66 20 61 6e 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 61 73 20 61 63 63 65 70 74 | see.if.any.connection.was.accept |
| 5ffe0 | 65 64 2c 20 61 6e 64 20 69 66 20 77 61 73 20 70 72 6f 70 65 72 6c 79 20 6f 66 66 6c 6f 61 64 65 | ed,.and.if.was.properly.offloade |
| 60000 | 64 00 49 74 27 73 20 74 69 6d 65 20 74 6f 20 63 68 65 63 6b 20 74 68 65 20 63 6f 6e 6e 74 72 61 | d.It's.time.to.check.the.conntra |
| 60020 | 63 6b 20 74 61 62 6c 65 2c 20 74 6f 20 73 65 65 20 69 66 20 61 6e 79 20 63 6f 6e 6e 65 63 74 69 | ck.table,.to.see.if.any.connecti |
| 60040 | 6f 6e 73 20 77 65 72 65 20 61 63 63 65 70 74 65 64 2c 20 61 6e 64 20 69 66 20 69 74 20 77 61 73 | ons.were.accepted,.and.if.it.was |
| 60060 | 20 70 72 6f 70 65 72 6c 79 20 6f 66 66 6c 6f 61 64 65 64 00 4a 6f 69 6e 20 61 20 67 69 76 65 6e | .properly.offloaded.Join.a.given |
| 60080 | 20 56 52 46 2e 20 54 68 69 73 20 77 69 6c 6c 20 6f 70 65 6e 20 61 20 6e 65 77 20 73 75 62 73 68 | .VRF..This.will.open.a.new.subsh |
| 600a0 | 65 6c 6c 20 77 69 74 68 69 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 56 52 46 2e 00 4a 75 | ell.within.the.specified.VRF..Ju |
| 600c0 | 6d 70 20 74 6f 20 61 20 64 69 66 66 65 72 65 6e 74 20 72 75 6c 65 20 69 6e 20 74 68 69 73 20 72 | mp.to.a.different.rule.in.this.r |
| 600e0 | 6f 75 74 65 2d 6d 61 70 20 6f 6e 20 61 20 6d 61 74 63 68 2e 00 4a 75 6e 69 70 65 72 20 45 58 20 | oute-map.on.a.match..Juniper.EX. |
| 60100 | 53 77 69 74 63 68 00 4b 65 72 6e 65 6c 00 4b 65 72 6e 65 6c 20 50 61 72 61 6d 65 74 65 72 73 3a | Switch.Kernel.Kernel.Parameters: |
| 60120 | 20 6b 65 72 6e 65 6c 2e 6d 73 67 6d 61 78 2c 20 6b 65 72 6e 65 6c 2e 6d 73 67 6d 6e 62 2c 20 6b | .kernel.msgmax,.kernel.msgmnb,.k |
| 60140 | 65 72 6e 65 6c 2e 6d 73 67 6d 6e 69 2c 20 6b 65 72 6e 65 6c 2e 73 65 6d 2c 20 6b 65 72 6e 65 6c | ernel.msgmni,.kernel.sem,.kernel |
| 60160 | 2e 73 68 6d 61 6c 6c 2c 20 6b 65 72 6e 65 6c 2e 73 68 6d 6d 61 78 2c 20 6b 65 72 6e 65 6c 2e 73 | .shmall,.kernel.shmmax,.kernel.s |
| 60180 | 68 6d 6d 6e 69 2c 20 6b 65 72 6e 65 6c 2e 73 68 6d 5f 72 6d 69 64 5f 66 6f 72 63 65 64 00 4b 65 | hmmni,.kernel.shm_rmid_forced.Ke |
| 601a0 | 72 6e 65 6c 20 6d 65 73 73 61 67 65 73 00 4b 65 79 20 42 61 73 65 64 20 41 75 74 68 65 6e 74 69 | rnel.messages.Key.Based.Authenti |
| 601c0 | 63 61 74 69 6f 6e 00 4b 65 79 20 47 65 6e 65 72 61 74 69 6f 6e 00 4b 65 79 20 4d 61 6e 61 67 65 | cation.Key.Generation.Key.Manage |
| 601e0 | 6d 65 6e 74 00 4b 65 79 20 50 61 72 61 6d 65 74 65 72 73 3a 00 4b 65 79 20 50 6f 69 6e 74 73 3a | ment.Key.Parameters:.Key.Points: |
| 60200 | 00 4b 65 79 20 65 78 63 68 61 6e 67 65 20 61 6e 64 20 70 61 79 6c 6f 61 64 20 65 6e 63 72 79 70 | .Key.exchange.and.payload.encryp |
| 60220 | 74 69 6f 6e 20 69 73 20 64 6f 6e 65 20 75 73 69 6e 67 20 49 4b 45 20 61 6e 64 20 45 53 50 20 70 | tion.is.done.using.IKE.and.ESP.p |
| 60240 | 72 6f 70 6f 73 61 6c 73 20 61 73 20 6b 6e 6f 77 6e 20 66 72 6f 6d 20 49 4b 45 76 31 20 62 75 74 | roposals.as.known.from.IKEv1.but |
| 60260 | 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 61 72 65 20 66 61 73 74 65 72 20 74 6f 20 65 | .the.connections.are.faster.to.e |
| 60280 | 73 74 61 62 6c 69 73 68 2c 20 6d 6f 72 65 20 72 65 6c 69 61 62 6c 65 2c 20 61 6e 64 20 61 6c 73 | stablish,.more.reliable,.and.als |
| 602a0 | 6f 20 73 75 70 70 6f 72 74 20 72 6f 61 6d 69 6e 67 20 66 72 6f 6d 20 49 50 20 74 6f 20 49 50 20 | o.support.roaming.from.IP.to.IP. |
| 602c0 | 28 63 61 6c 6c 65 64 20 4d 4f 42 49 4b 45 20 77 68 69 63 68 20 6d 61 6b 65 73 20 73 75 72 65 20 | (called.MOBIKE.which.makes.sure. |
| 602e0 | 79 6f 75 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 64 6f 65 73 20 6e 6f 74 20 64 72 6f 70 20 77 68 | your.connection.does.not.drop.wh |
| 60300 | 65 6e 20 63 68 61 6e 67 69 6e 67 20 6e 65 74 77 6f 72 6b 73 20 66 72 6f 6d 20 65 2e 67 2e 20 57 | en.changing.networks.from.e.g..W |
| 60320 | 49 46 49 20 74 6f 20 4c 54 45 20 61 6e 64 20 62 61 63 6b 29 2e 20 41 75 74 68 65 6e 74 69 63 61 | IFI.to.LTE.and.back)..Authentica |
| 60340 | 74 69 6f 6e 20 63 61 6e 20 62 65 20 61 63 68 69 65 76 65 64 20 77 69 74 68 20 58 2e 35 30 39 20 | tion.can.be.achieved.with.X.509. |
| 60360 | 63 65 72 74 69 66 69 63 61 74 65 73 2e 00 4b 65 79 20 65 78 63 68 61 6e 67 65 20 61 6e 64 20 70 | certificates..Key.exchange.and.p |
| 60380 | 61 79 6c 6f 61 64 20 65 6e 63 72 79 70 74 69 6f 6e 20 69 73 20 73 74 69 6c 6c 20 64 6f 6e 65 20 | ayload.encryption.is.still.done. |
| 603a0 | 75 73 69 6e 67 20 49 4b 45 20 61 6e 64 20 45 53 50 20 70 72 6f 70 6f 73 61 6c 73 20 61 73 20 6b | using.IKE.and.ESP.proposals.as.k |
| 603c0 | 6e 6f 77 6e 20 66 72 6f 6d 20 49 4b 45 76 31 20 62 75 74 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 | nown.from.IKEv1.but.the.connecti |
| 603e0 | 6f 6e 73 20 61 72 65 20 66 61 73 74 65 72 20 74 6f 20 65 73 74 61 62 6c 69 73 68 2c 20 6d 6f 72 | ons.are.faster.to.establish,.mor |
| 60400 | 65 20 72 65 6c 69 61 62 6c 65 2c 20 61 6e 64 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 20 72 6f 61 | e.reliable,.and.also.support.roa |
| 60420 | 6d 69 6e 67 20 66 72 6f 6d 20 49 50 20 74 6f 20 49 50 20 28 63 61 6c 6c 65 64 20 4d 4f 42 49 4b | ming.from.IP.to.IP.(called.MOBIK |
| 60440 | 45 20 77 68 69 63 68 20 6d 61 6b 65 73 20 73 75 72 65 20 79 6f 75 72 20 63 6f 6e 6e 65 63 74 69 | E.which.makes.sure.your.connecti |
| 60460 | 6f 6e 20 64 6f 65 73 20 6e 6f 74 20 64 72 6f 70 20 77 68 65 6e 20 63 68 61 6e 67 69 6e 67 20 6e | on.does.not.drop.when.changing.n |
| 60480 | 65 74 77 6f 72 6b 73 20 66 72 6f 6d 20 65 2e 67 2e 20 57 49 46 49 20 74 6f 20 4c 54 45 20 61 6e | etworks.from.e.g..WIFI.to.LTE.an |
| 604a0 | 64 20 62 61 63 6b 29 2e 00 4b 65 79 20 75 73 61 67 65 20 28 43 4c 49 29 00 4b 65 79 62 6f 61 72 | d.back)..Key.usage.(CLI).Keyboar |
| 604c0 | 64 20 4c 61 79 6f 75 74 00 4b 65 79 70 61 69 72 73 00 4b 65 79 77 6f 72 64 00 4b 6e 6f 77 6e 20 | d.Layout.Keypairs.Keyword.Known. |
| 604e0 | 69 73 73 75 65 73 00 4c 32 54 50 00 4c 32 54 50 20 6f 76 65 72 20 49 50 73 65 63 00 4c 32 54 50 | issues.L2TP.L2TP.over.IPsec.L2TP |
| 60500 | 76 33 00 4c 32 54 50 76 33 20 63 61 6e 20 62 65 20 72 65 67 61 72 64 65 64 20 61 73 20 62 65 69 | v3.L2TPv3.can.be.regarded.as.bei |
| 60520 | 6e 67 20 74 6f 20 4d 50 4c 53 20 77 68 61 74 20 49 50 20 69 73 20 74 6f 20 41 54 4d 3a 20 61 20 | ng.to.MPLS.what.IP.is.to.ATM:.a. |
| 60540 | 73 69 6d 70 6c 69 66 69 65 64 20 76 65 72 73 69 6f 6e 20 6f 66 20 74 68 65 20 73 61 6d 65 20 63 | simplified.version.of.the.same.c |
| 60560 | 6f 6e 63 65 70 74 2c 20 77 69 74 68 20 6d 75 63 68 20 6f 66 20 74 68 65 20 73 61 6d 65 20 62 65 | oncept,.with.much.of.the.same.be |
| 60580 | 6e 65 66 69 74 20 61 63 68 69 65 76 65 64 20 61 74 20 61 20 66 72 61 63 74 69 6f 6e 20 6f 66 20 | nefit.achieved.at.a.fraction.of. |
| 605a0 | 74 68 65 20 65 66 66 6f 72 74 2c 20 61 74 20 74 68 65 20 63 6f 73 74 20 6f 66 20 6c 6f 73 69 6e | the.effort,.at.the.cost.of.losin |
| 605c0 | 67 20 73 6f 6d 65 20 74 65 63 68 6e 69 63 61 6c 20 66 65 61 74 75 72 65 73 20 63 6f 6e 73 69 64 | g.some.technical.features.consid |
| 605e0 | 65 72 65 64 20 6c 65 73 73 20 69 6d 70 6f 72 74 61 6e 74 20 69 6e 20 74 68 65 20 6d 61 72 6b 65 | ered.less.important.in.the.marke |
| 60600 | 74 2e 00 4c 32 54 50 76 33 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 | t..L2TPv3.is.described.in.:rfc:` |
| 60620 | 33 39 32 31 60 2e 00 4c 32 54 50 76 33 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 | 3921`..L2TPv3.is.described.in.:r |
| 60640 | 66 63 3a 60 33 39 33 31 60 2e 00 4c 32 54 50 76 33 20 6f 70 74 69 6f 6e 73 00 4c 32 54 50 76 33 | fc:`3931`..L2TPv3.options.L2TPv3 |
| 60660 | 3a 00 4c 33 56 50 4e 20 56 52 46 73 00 4c 44 41 50 00 4c 44 41 50 20 70 72 6f 74 6f 63 6f 6c 20 | :.L3VPN.VRFs.LDAP.LDAP.protocol. |
| 60680 | 76 65 72 73 69 6f 6e 2e 20 44 65 66 61 75 6c 74 73 20 74 6f 20 33 20 69 66 20 6e 6f 74 20 73 70 | version..Defaults.to.3.if.not.sp |
| 606a0 | 65 63 69 66 69 65 64 2e 00 4c 44 41 50 20 73 65 61 72 63 68 20 66 69 6c 74 65 72 20 74 6f 20 6c | ecified..LDAP.search.filter.to.l |
| 606c0 | 6f 63 61 74 65 20 74 68 65 20 75 73 65 72 20 44 4e 2e 20 52 65 71 75 69 72 65 64 20 69 66 20 74 | ocate.the.user.DN..Required.if.t |
| 606e0 | 68 65 20 75 73 65 72 73 20 61 72 65 20 69 6e 20 61 20 68 69 65 72 61 72 63 68 79 20 62 65 6c 6f | he.users.are.in.a.hierarchy.belo |
| 60700 | 77 20 74 68 65 20 62 61 73 65 20 44 4e 2c 20 6f 72 20 69 66 20 74 68 65 20 6c 6f 67 69 6e 20 6e | w.the.base.DN,.or.if.the.login.n |
| 60720 | 61 6d 65 20 69 73 20 6e 6f 74 20 77 68 61 74 20 62 75 69 6c 64 73 20 74 68 65 20 75 73 65 72 20 | ame.is.not.what.builds.the.user. |
| 60740 | 73 70 65 63 69 66 69 63 20 70 61 72 74 20 6f 66 20 74 68 65 20 75 73 65 72 73 20 44 4e 2e 00 4c | specific.part.of.the.users.DN..L |
| 60760 | 4c 44 50 00 4c 4c 44 50 20 70 65 72 66 6f 72 6d 73 20 66 75 6e 63 74 69 6f 6e 73 20 73 69 6d 69 | LDP.LLDP.performs.functions.simi |
| 60780 | 6c 61 72 20 74 6f 20 73 65 76 65 72 61 6c 20 70 72 6f 70 72 69 65 74 61 72 79 20 70 72 6f 74 6f | lar.to.several.proprietary.proto |
| 607a0 | 63 6f 6c 73 2c 20 73 75 63 68 20 61 73 20 3a 61 62 62 72 3a 60 43 44 50 20 28 43 69 73 63 6f 20 | cols,.such.as.:abbr:`CDP.(Cisco. |
| 607c0 | 44 69 73 63 6f 76 65 72 79 20 50 72 6f 74 6f 63 6f 6c 29 60 2c 20 3a 61 62 62 72 3a 60 46 44 50 | Discovery.Protocol)`,.:abbr:`FDP |
| 607e0 | 20 28 46 6f 75 6e 64 72 79 20 44 69 73 63 6f 76 65 72 79 20 50 72 6f 74 6f 63 6f 6c 29 60 2c 20 | .(Foundry.Discovery.Protocol)`,. |
| 60800 | 3a 61 62 62 72 3a 60 4e 44 50 20 28 4e 6f 72 74 65 6c 20 44 69 73 63 6f 76 65 72 79 20 50 72 6f | :abbr:`NDP.(Nortel.Discovery.Pro |
| 60820 | 74 6f 63 6f 6c 29 60 20 61 6e 64 20 3a 61 62 62 72 3a 60 4c 4c 54 44 20 28 4c 69 6e 6b 20 4c 61 | tocol)`.and.:abbr:`LLTD.(Link.La |
| 60840 | 79 65 72 20 54 6f 70 6f 6c 6f 67 79 20 44 69 73 63 6f 76 65 72 79 29 60 2e 00 4c 4e 53 20 28 4c | yer.Topology.Discovery)`..LNS.(L |
| 60860 | 32 54 50 20 4e 65 74 77 6f 72 6b 20 53 65 72 76 65 72 29 00 4c 4e 53 20 61 72 65 20 6f 66 74 65 | 2TP.Network.Server).LNS.are.ofte |
| 60880 | 6e 20 75 73 65 64 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 61 20 4c 41 43 20 28 4c 32 54 50 | n.used.to.connect.to.a.LAC.(L2TP |
| 608a0 | 20 41 63 63 65 73 73 20 43 6f 6e 63 65 6e 74 72 61 74 6f 72 29 2e 00 4c 61 62 65 6c 20 44 69 73 | .Access.Concentrator)..Label.Dis |
| 608c0 | 74 72 69 62 75 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 00 4c 61 62 65 6c 20 74 6f 20 75 73 65 20 | tribution.Protocol.Label.to.use. |
| 608e0 | 66 6f 72 20 74 68 65 20 6d 65 74 72 69 63 20 6e 61 6d 65 20 77 68 65 6e 20 73 65 6e 64 69 6e 67 | for.the.metric.name.when.sending |
| 60900 | 20 6d 65 74 72 69 63 73 2e 00 4c 61 73 74 6c 79 2c 20 77 65 20 63 61 6e 20 63 72 65 61 74 65 20 | .metrics..Lastly,.we.can.create. |
| 60920 | 74 68 65 20 6c 65 61 66 20 63 65 72 74 69 66 69 63 61 74 65 73 20 74 68 61 74 20 64 65 76 69 63 | the.leaf.certificates.that.devic |
| 60940 | 65 73 20 61 6e 64 20 75 73 65 72 73 20 77 69 6c 6c 20 75 74 69 6c 69 73 65 2e 00 4c 61 79 65 72 | es.and.users.will.utilise..Layer |
| 60960 | 20 32 20 54 75 6e 6e 65 6c 6c 69 6e 67 20 50 72 6f 74 6f 63 6f 6c 20 56 65 72 73 69 6f 6e 20 33 | .2.Tunnelling.Protocol.Version.3 |
| 60980 | 20 69 73 20 61 6e 20 49 45 54 46 20 73 74 61 6e 64 61 72 64 20 72 65 6c 61 74 65 64 20 74 6f 20 | .is.an.IETF.standard.related.to. |
| 609a0 | 4c 32 54 50 20 74 68 61 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 61 73 20 61 6e 20 61 6c 74 65 | L2TP.that.can.be.used.as.an.alte |
| 609c0 | 72 6e 61 74 69 76 65 20 70 72 6f 74 6f 63 6f 6c 20 74 6f 20 3a 72 65 66 3a 60 6d 70 6c 73 60 20 | rnative.protocol.to.:ref:`mpls`. |
| 609e0 | 66 6f 72 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 6f 66 20 6d 75 6c 74 69 70 72 6f 74 6f 63 | for.encapsulation.of.multiprotoc |
| 60a00 | 6f 6c 20 4c 61 79 65 72 20 32 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 73 20 74 72 61 66 66 69 | ol.Layer.2.communications.traffi |
| 60a20 | 63 20 6f 76 65 72 20 49 50 20 6e 65 74 77 6f 72 6b 73 2e 20 4c 69 6b 65 20 4c 32 54 50 2c 20 4c | c.over.IP.networks..Like.L2TP,.L |
| 60a40 | 32 54 50 76 33 20 70 72 6f 76 69 64 65 73 20 61 20 70 73 65 75 64 6f 2d 77 69 72 65 20 73 65 72 | 2TPv3.provides.a.pseudo-wire.ser |
| 60a60 | 76 69 63 65 20 62 75 74 20 69 73 20 73 63 61 6c 65 64 20 74 6f 20 66 69 74 20 63 61 72 72 69 65 | vice.but.is.scaled.to.fit.carrie |
| 60a80 | 72 20 72 65 71 75 69 72 65 6d 65 6e 74 73 2e 00 4c 65 61 73 65 20 74 69 6d 65 20 77 69 6c 6c 20 | r.requirements..Lease.time.will. |
| 60aa0 | 62 65 20 6c 65 66 74 20 61 74 20 74 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 77 68 69 | be.left.at.the.default.value.whi |
| 60ac0 | 63 68 20 69 73 20 32 34 20 68 6f 75 72 73 00 4c 65 61 73 65 20 74 69 6d 65 6f 75 74 20 69 6e 20 | ch.is.24.hours.Lease.timeout.in. |
| 60ae0 | 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a 20 38 36 34 30 30 29 00 4c 65 67 61 63 79 20 | seconds.(default:.86400).Legacy. |
| 60b00 | 46 69 72 65 77 61 6c 6c 00 4c 65 74 20 53 4e 4d 50 20 64 61 65 6d 6f 6e 20 6c 69 73 74 65 6e 20 | Firewall.Let.SNMP.daemon.listen. |
| 60b20 | 6f 6e 6c 79 20 6f 6e 20 49 50 20 61 64 64 72 65 73 73 20 31 39 32 2e 30 2e 32 2e 31 00 4c 65 74 | only.on.IP.address.192.0.2.1.Let |
| 60b40 | 27 73 20 61 73 73 75 6d 65 20 50 43 34 20 6f 6e 20 4c 65 61 66 32 20 77 61 6e 74 73 20 74 6f 20 | 's.assume.PC4.on.Leaf2.wants.to. |
| 60b60 | 70 69 6e 67 20 50 43 35 20 6f 6e 20 4c 65 61 66 33 2e 20 49 6e 73 74 65 61 64 20 6f 66 20 73 65 | ping.PC5.on.Leaf3..Instead.of.se |
| 60b80 | 74 74 69 6e 67 20 4c 65 61 66 33 20 61 73 20 6f 75 72 20 72 65 6d 6f 74 65 20 65 6e 64 20 6d 61 | tting.Leaf3.as.our.remote.end.ma |
| 60ba0 | 6e 75 61 6c 6c 79 2c 20 4c 65 61 66 32 20 65 6e 63 61 70 73 75 6c 61 74 65 73 20 74 68 65 20 70 | nually,.Leaf2.encapsulates.the.p |
| 60bc0 | 61 63 6b 65 74 20 69 6e 74 6f 20 61 20 55 44 50 2d 70 61 63 6b 65 74 20 61 6e 64 20 73 65 6e 64 | acket.into.a.UDP-packet.and.send |
| 60be0 | 73 20 69 74 20 74 6f 20 69 74 73 20 64 65 73 69 67 6e 61 74 65 64 20 6d 75 6c 74 69 63 61 73 74 | s.it.to.its.designated.multicast |
| 60c00 | 2d 61 64 64 72 65 73 73 20 76 69 61 20 53 70 69 6e 65 31 2e 20 57 68 65 6e 20 53 70 69 6e 65 31 | -address.via.Spine1..When.Spine1 |
| 60c20 | 20 72 65 63 65 69 76 65 73 20 74 68 69 73 20 70 61 63 6b 65 74 20 69 74 20 66 6f 72 77 61 72 64 | .receives.this.packet.it.forward |
| 60c40 | 73 20 69 74 20 74 6f 20 61 6c 6c 20 6f 74 68 65 72 20 6c 65 61 76 65 73 20 77 68 6f 20 68 61 73 | s.it.to.all.other.leaves.who.has |
| 60c60 | 20 6a 6f 69 6e 65 64 20 74 68 65 20 73 61 6d 65 20 6d 75 6c 74 69 63 61 73 74 2d 67 72 6f 75 70 | .joined.the.same.multicast-group |
| 60c80 | 2c 20 69 6e 20 74 68 69 73 20 63 61 73 65 20 4c 65 61 66 33 2e 20 57 68 65 6e 20 4c 65 61 66 33 | ,.in.this.case.Leaf3..When.Leaf3 |
| 60ca0 | 20 72 65 63 65 69 76 65 73 20 74 68 65 20 70 61 63 6b 65 74 20 69 74 20 66 6f 72 77 61 72 64 73 | .receives.the.packet.it.forwards |
| 60cc0 | 20 69 74 2c 20 77 68 69 6c 65 20 61 74 20 74 68 65 20 73 61 6d 65 20 74 69 6d 65 20 6c 65 61 72 | .it,.while.at.the.same.time.lear |
| 60ce0 | 6e 69 6e 67 20 74 68 61 74 20 50 43 34 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 62 65 68 69 6e | ning.that.PC4.is.reachable.behin |
| 60d00 | 64 20 4c 65 61 66 32 2c 20 62 65 63 61 75 73 65 20 74 68 65 20 65 6e 63 61 70 73 75 6c 61 74 65 | d.Leaf2,.because.the.encapsulate |
| 60d20 | 64 20 70 61 63 6b 65 74 20 68 61 64 20 4c 65 61 66 32 27 73 20 49 50 20 61 64 64 72 65 73 73 20 | d.packet.had.Leaf2's.IP.address. |
| 60d40 | 73 65 74 20 61 73 20 73 6f 75 72 63 65 20 49 50 2e 00 4c 65 74 27 73 20 61 73 73 75 6d 65 20 50 | set.as.source.IP..Let's.assume.P |
| 60d60 | 43 34 20 6f 6e 20 4c 65 61 66 32 20 77 61 6e 74 73 20 74 6f 20 70 69 6e 67 20 50 43 35 20 6f 6e | C4.on.Leaf2.wants.to.ping.PC5.on |
| 60d80 | 20 4c 65 61 66 33 2e 20 49 6e 73 74 65 61 64 20 6f 66 20 73 65 74 74 69 6e 67 20 4c 65 61 66 33 | .Leaf3..Instead.of.setting.Leaf3 |
| 60da0 | 20 61 73 20 6f 75 72 20 72 65 6d 6f 74 65 20 65 6e 64 20 6d 61 6e 75 61 6c 6c 79 2c 20 4c 65 61 | .as.our.remote.end.manually,.Lea |
| 60dc0 | 66 32 20 65 6e 63 61 70 73 75 6c 61 74 65 73 20 74 68 65 20 70 61 63 6b 65 74 20 69 6e 74 6f 20 | f2.encapsulates.the.packet.into. |
| 60de0 | 61 20 55 44 50 2d 70 61 63 6b 65 74 20 61 6e 64 20 73 65 6e 64 73 20 69 74 20 74 6f 20 69 74 73 | a.UDP-packet.and.sends.it.to.its |
| 60e00 | 27 20 64 65 73 69 67 6e 61 74 65 64 20 6d 75 6c 74 69 63 61 73 74 2d 61 64 64 72 65 73 73 20 76 | '.designated.multicast-address.v |
| 60e20 | 69 61 20 53 70 69 6e 65 31 2e 20 57 68 65 6e 20 53 70 69 6e 65 31 20 72 65 63 65 69 76 65 73 20 | ia.Spine1..When.Spine1.receives. |
| 60e40 | 74 68 69 73 20 70 61 63 6b 65 74 20 69 74 20 66 6f 72 77 61 72 64 73 20 69 74 20 74 6f 20 61 6c | this.packet.it.forwards.it.to.al |
| 60e60 | 6c 20 6f 74 68 65 72 20 6c 65 61 76 65 73 20 77 68 6f 20 68 61 73 20 6a 6f 69 6e 65 64 20 74 68 | l.other.leaves.who.has.joined.th |
| 60e80 | 65 20 73 61 6d 65 20 6d 75 6c 74 69 63 61 73 74 2d 67 72 6f 75 70 2c 20 69 6e 20 74 68 69 73 20 | e.same.multicast-group,.in.this. |
| 60ea0 | 63 61 73 65 20 4c 65 61 66 33 2e 20 57 68 65 6e 20 4c 65 61 66 33 20 72 65 63 65 69 76 65 73 20 | case.Leaf3..When.Leaf3.receives. |
| 60ec0 | 74 68 65 20 70 61 63 6b 65 74 20 69 74 20 66 6f 72 77 61 72 64 73 20 69 74 2c 20 77 68 69 6c 65 | the.packet.it.forwards.it,.while |
| 60ee0 | 20 61 74 20 74 68 65 20 73 61 6d 65 20 74 69 6d 65 20 6c 65 61 72 6e 69 6e 67 20 74 68 61 74 20 | .at.the.same.time.learning.that. |
| 60f00 | 50 43 34 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 62 65 68 69 6e 64 20 4c 65 61 66 32 2c 20 62 | PC4.is.reachable.behind.Leaf2,.b |
| 60f20 | 65 63 61 75 73 65 20 74 68 65 20 65 6e 63 61 70 73 75 6c 61 74 65 64 20 70 61 63 6b 65 74 20 68 | ecause.the.encapsulated.packet.h |
| 60f40 | 61 64 20 4c 65 61 66 32 27 73 20 49 50 20 61 64 64 72 65 73 73 20 73 65 74 20 61 73 20 73 6f 75 | ad.Leaf2's.IP.address.set.as.sou |
| 60f60 | 72 63 65 20 49 50 2e 00 4c 65 74 27 73 20 61 73 73 75 6d 65 20 77 65 20 68 61 76 65 20 74 77 6f | rce.IP..Let's.assume.we.have.two |
| 60f80 | 20 44 48 43 50 20 57 41 4e 20 69 6e 74 65 72 66 61 63 65 73 20 61 6e 64 20 6f 6e 65 20 4c 41 4e | .DHCP.WAN.interfaces.and.one.LAN |
| 60fa0 | 20 28 65 74 68 32 29 3a 00 4c 65 74 27 73 20 62 75 69 6c 64 20 61 20 73 69 6d 70 6c 65 20 56 50 | .(eth2):.Let's.build.a.simple.VP |
| 60fc0 | 4e 20 62 65 74 77 65 65 6e 20 32 20 49 6e 74 65 6c c2 ae 20 51 41 54 20 72 65 61 64 79 20 64 65 | N.between.2.Intel...QAT.ready.de |
| 60fe0 | 76 69 63 65 73 2e 00 4c 65 74 27 73 20 65 78 70 61 6e 64 20 74 68 65 20 65 78 61 6d 70 6c 65 20 | vices..Let's.expand.the.example. |
| 61000 | 66 72 6f 6d 20 61 62 6f 76 65 20 61 6e 64 20 61 64 64 20 77 65 69 67 68 74 20 74 6f 20 74 68 65 | from.above.and.add.weight.to.the |
| 61020 | 20 69 6e 74 65 72 66 61 63 65 73 2e 20 54 68 65 20 62 61 6e 64 77 69 64 74 68 20 66 72 6f 6d 20 | .interfaces..The.bandwidth.from. |
| 61040 | 65 74 68 30 20 69 73 20 6c 61 72 67 65 72 20 74 68 61 6e 20 65 74 68 31 2e 20 50 65 72 20 64 65 | eth0.is.larger.than.eth1..Per.de |
| 61060 | 66 61 75 6c 74 2c 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 69 73 20 64 69 73 74 72 | fault,.outbound.traffic.is.distr |
| 61080 | 69 62 75 74 65 64 20 72 61 6e 64 6f 6d 6c 79 20 61 63 72 6f 73 73 20 61 76 61 69 6c 61 62 6c 65 | ibuted.randomly.across.available |
| 610a0 | 20 69 6e 74 65 72 66 61 63 65 73 2e 20 57 65 69 67 68 74 73 20 63 61 6e 20 62 65 20 61 73 73 69 | .interfaces..Weights.can.be.assi |
| 610c0 | 67 6e 65 64 20 74 6f 20 69 6e 74 65 72 66 61 63 65 73 20 74 6f 20 69 6e 66 6c 75 65 6e 63 65 20 | gned.to.interfaces.to.influence. |
| 610e0 | 74 68 65 20 62 61 6c 61 6e 63 69 6e 67 2e 00 4c 65 74 73 20 61 73 73 75 6d 65 20 74 68 65 20 66 | the.balancing..Lets.assume.the.f |
| 61100 | 6f 6c 6c 6f 77 69 6e 67 20 74 6f 70 6f 6c 6f 67 79 3a 00 4c 65 76 65 6c 20 34 20 62 61 6c 61 6e | ollowing.topology:.Level.4.balan |
| 61120 | 63 69 6e 67 00 4c 69 66 65 74 69 6d 65 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 | cing.Lifetime.associated.with.th |
| 61140 | 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 72 20 69 6e 20 75 6e 69 74 73 20 6f 66 20 73 65 63 | e.default.router.in.units.of.sec |
| 61160 | 6f 6e 64 73 00 4c 69 66 65 74 69 6d 65 20 69 6e 20 64 61 79 73 3b 20 64 65 66 61 75 6c 74 20 69 | onds.Lifetime.in.days;.default.i |
| 61180 | 73 20 33 36 35 00 4c 69 66 65 74 69 6d 65 20 69 73 20 64 65 63 72 65 6d 65 6e 74 65 64 20 62 79 | s.365.Lifetime.is.decremented.by |
| 611a0 | 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 73 65 63 6f 6e 64 73 20 73 69 6e 63 65 20 74 68 65 | .the.number.of.seconds.since.the |
| 611c0 | 20 6c 61 73 74 20 52 41 20 2d 20 75 73 65 20 69 6e 20 63 6f 6e 6a 75 6e 63 74 69 6f 6e 20 77 69 | .last.RA.-.use.in.conjunction.wi |
| 611e0 | 74 68 20 61 20 44 48 43 50 76 36 2d 50 44 20 70 72 65 66 69 78 00 4c 69 6b 65 20 6f 6e 20 4d 69 | th.a.DHCPv6-PD.prefix.Like.on.Mi |
| 61200 | 63 72 6f 73 6f 66 74 20 57 69 6e 64 6f 77 73 2c 20 41 70 70 6c 65 20 69 4f 53 2f 69 50 61 64 4f | crosoft.Windows,.Apple.iOS/iPadO |
| 61220 | 53 20 6f 75 74 20 6f 66 20 74 68 65 20 62 6f 78 20 64 6f 65 73 20 6e 6f 74 20 65 78 70 6f 73 65 | S.out.of.the.box.does.not.expose |
| 61240 | 20 61 6c 6c 20 61 76 61 69 6c 61 62 6c 65 20 56 50 4e 20 6f 70 74 69 6f 6e 73 20 76 69 61 20 74 | .all.available.VPN.options.via.t |
| 61260 | 68 65 20 64 65 76 69 63 65 20 47 55 49 2e 00 4c 69 6d 69 74 20 61 6c 6c 6f 77 65 64 20 63 69 70 | he.device.GUI..Limit.allowed.cip |
| 61280 | 68 65 72 20 61 6c 67 6f 72 69 74 68 6d 73 20 75 73 65 64 20 64 75 72 69 6e 67 20 53 53 4c 2f 54 | her.algorithms.used.during.SSL/T |
| 612a0 | 4c 53 20 68 61 6e 64 73 68 61 6b 65 00 4c 69 6d 69 74 20 6c 6f 67 69 6e 73 20 74 6f 20 60 3c 6c | LS.handshake.Limit.logins.to.`<l |
| 612c0 | 69 6d 69 74 3e 60 20 70 65 72 20 65 76 65 72 79 20 60 60 72 61 74 65 2d 74 69 6d 65 60 60 20 73 | imit>`.per.every.``rate-time``.s |
| 612e0 | 65 63 6f 6e 64 73 2e 20 52 61 74 65 20 6c 69 6d 69 74 20 6d 75 73 74 20 62 65 20 62 65 74 77 65 | econds..Rate.limit.must.be.betwe |
| 61300 | 65 6e 20 31 20 61 6e 64 20 31 30 20 61 74 74 65 6d 70 74 73 2e 00 4c 69 6d 69 74 20 6c 6f 67 69 | en.1.and.10.attempts..Limit.logi |
| 61320 | 6e 73 20 74 6f 20 60 60 72 61 74 65 2d 6c 69 6d 69 74 60 60 20 61 74 74 65 6d 70 73 20 70 65 72 | ns.to.``rate-limit``.attemps.per |
| 61340 | 20 65 76 65 72 79 20 60 3c 73 65 63 6f 6e 64 73 3e 60 2e 20 52 61 74 65 20 74 69 6d 65 20 6d 75 | .every.`<seconds>`..Rate.time.mu |
| 61360 | 73 74 20 62 65 20 62 65 74 77 65 65 6e 20 31 35 20 61 6e 64 20 36 30 30 20 73 65 63 6f 6e 64 73 | st.be.between.15.and.600.seconds |
| 61380 | 2e 00 4c 69 6d 69 74 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 63 6f 6e 6e 65 63 | ..Limit.maximum.number.of.connec |
| 613a0 | 74 69 6f 6e 73 00 4c 69 6d 69 74 65 72 00 4c 69 6d 69 74 65 72 20 69 73 20 6f 6e 65 20 6f 66 20 | tions.Limiter.Limiter.is.one.of. |
| 613c0 | 74 68 6f 73 65 20 70 6f 6c 69 63 69 65 73 20 74 68 61 74 20 75 73 65 73 20 63 6c 61 73 73 65 73 | those.policies.that.uses.classes |
| 613e0 | 5f 20 28 49 6e 67 72 65 73 73 20 71 64 69 73 63 20 69 73 20 61 63 74 75 61 6c 6c 79 20 61 20 63 | _.(Ingress.qdisc.is.actually.a.c |
| 61400 | 6c 61 73 73 6c 65 73 73 20 70 6f 6c 69 63 79 20 62 75 74 20 66 69 6c 74 65 72 73 20 64 6f 20 77 | lassless.policy.but.filters.do.w |
| 61420 | 6f 72 6b 20 69 6e 20 69 74 29 2e 00 4c 69 6d 69 74 73 00 4c 69 6e 65 20 70 72 69 6e 74 65 72 20 | ork.in.it)..Limits.Line.printer. |
| 61440 | 73 75 62 73 79 73 74 65 6d 00 4c 69 6e 6b 20 4d 54 55 20 76 61 6c 75 65 20 70 6c 61 63 65 64 20 | subsystem.Link.MTU.value.placed. |
| 61460 | 69 6e 20 52 41 73 2c 20 65 78 63 6c 75 64 65 64 20 69 6e 20 52 41 73 20 69 66 20 75 6e 73 65 74 | in.RAs,.excluded.in.RAs.if.unset |
| 61480 | 00 4c 69 6e 6b 20 4d 54 55 20 76 61 6c 75 65 20 70 6c 61 63 65 64 20 69 6e 20 52 41 73 2c 20 65 | .Link.MTU.value.placed.in.RAs,.e |
| 614a0 | 78 6c 75 64 65 64 20 69 6e 20 52 41 73 20 69 66 20 75 6e 73 65 74 00 4c 69 6e 6b 20 61 67 67 72 | xluded.in.RAs.if.unset.Link.aggr |
| 614c0 | 65 67 61 74 69 6f 6e 00 4c 69 6e 75 78 20 6e 65 74 66 69 6c 74 65 72 20 77 69 6c 6c 20 6e 6f 74 | egation.Linux.netfilter.will.not |
| 614e0 | 20 4e 41 54 20 74 72 61 66 66 69 63 20 6d 61 72 6b 65 64 20 61 73 20 49 4e 56 41 4c 49 44 2e 20 | .NAT.traffic.marked.as.INVALID.. |
| 61500 | 54 68 69 73 20 6f 66 74 65 6e 20 63 6f 6e 66 75 73 65 73 20 70 65 6f 70 6c 65 20 69 6e 74 6f 20 | This.often.confuses.people.into. |
| 61520 | 74 68 69 6e 6b 69 6e 67 20 74 68 61 74 20 4c 69 6e 75 78 20 28 6f 72 20 73 70 65 63 69 66 69 63 | thinking.that.Linux.(or.specific |
| 61540 | 61 6c 6c 79 20 56 79 4f 53 29 20 68 61 73 20 61 20 62 72 6f 6b 65 6e 20 4e 41 54 20 69 6d 70 6c | ally.VyOS).has.a.broken.NAT.impl |
| 61560 | 65 6d 65 6e 74 61 74 69 6f 6e 20 62 65 63 61 75 73 65 20 6e 6f 6e 2d 4e 41 54 65 64 20 74 72 61 | ementation.because.non-NATed.tra |
| 61580 | 66 66 69 63 20 69 73 20 73 65 65 6e 20 6c 65 61 76 69 6e 67 20 61 6e 20 65 78 74 65 72 6e 61 6c | ffic.is.seen.leaving.an.external |
| 615a0 | 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 69 73 20 61 63 74 75 61 6c 6c 79 20 77 6f 72 | .interface..This.is.actually.wor |
| 615c0 | 6b 69 6e 67 20 61 73 20 69 6e 74 65 6e 64 65 64 2c 20 61 6e 64 20 61 20 70 61 63 6b 65 74 20 63 | king.as.intended,.and.a.packet.c |
| 615e0 | 61 70 74 75 72 65 20 6f 66 20 74 68 65 20 22 6c 65 61 6b 79 22 20 74 72 61 66 66 69 63 20 73 68 | apture.of.the."leaky".traffic.sh |
| 61600 | 6f 75 6c 64 20 72 65 76 65 61 6c 20 74 68 61 74 20 74 68 65 20 74 72 61 66 66 69 63 20 69 73 20 | ould.reveal.that.the.traffic.is. |
| 61620 | 65 69 74 68 65 72 20 61 6e 20 61 64 64 69 74 69 6f 6e 61 6c 20 54 43 50 20 22 52 53 54 22 2c 20 | either.an.additional.TCP."RST",. |
| 61640 | 22 46 49 4e 2c 41 43 4b 22 2c 20 6f 72 20 22 52 53 54 2c 41 43 4b 22 20 73 65 6e 74 20 62 79 20 | "FIN,ACK",.or."RST,ACK".sent.by. |
| 61660 | 63 6c 69 65 6e 74 20 73 79 73 74 65 6d 73 20 61 66 74 65 72 20 4c 69 6e 75 78 20 6e 65 74 66 69 | client.systems.after.Linux.netfi |
| 61680 | 6c 74 65 72 20 63 6f 6e 73 69 64 65 72 73 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 63 6c | lter.considers.the.connection.cl |
| 616a0 | 6f 73 65 64 2e 20 54 68 65 20 6d 6f 73 74 20 63 6f 6d 6d 6f 6e 20 69 73 20 74 68 65 20 61 64 64 | osed..The.most.common.is.the.add |
| 616c0 | 69 74 69 6f 6e 61 6c 20 54 43 50 20 52 53 54 20 73 6f 6d 65 20 68 6f 73 74 20 69 6d 70 6c 65 6d | itional.TCP.RST.some.host.implem |
| 616e0 | 65 6e 74 61 74 69 6f 6e 73 20 73 65 6e 64 20 61 66 74 65 72 20 74 65 72 6d 69 6e 61 74 69 6e 67 | entations.send.after.terminating |
| 61700 | 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 28 77 68 69 63 68 20 69 73 20 69 6d 70 6c 65 6d 65 6e | .a.connection.(which.is.implemen |
| 61720 | 74 61 74 69 6f 6e 2d 73 70 65 63 69 66 69 63 29 2e 00 4c 69 73 74 20 61 6c 6c 20 4d 41 43 73 65 | tation-specific)..List.all.MACse |
| 61740 | 63 20 69 6e 74 65 72 66 61 63 65 73 2e 00 4c 69 73 74 20 6f 66 20 66 61 63 69 6c 69 74 69 65 73 | c.interfaces..List.of.facilities |
| 61760 | 20 75 73 65 64 20 62 79 20 73 79 73 6c 6f 67 2e 20 4d 6f 73 74 20 66 61 63 69 6c 69 74 69 65 73 | .used.by.syslog..Most.facilities |
| 61780 | 20 6e 61 6d 65 73 20 61 72 65 20 73 65 6c 66 20 65 78 70 6c 61 6e 61 74 6f 72 79 2e 20 46 61 63 | .names.are.self.explanatory..Fac |
| 617a0 | 69 6c 69 74 69 65 73 20 6c 6f 63 61 6c 30 20 2d 20 6c 6f 63 61 6c 37 20 63 6f 6d 6d 6f 6e 20 75 | ilities.local0.-.local7.common.u |
| 617c0 | 73 61 67 65 20 69 73 20 66 2e 65 2e 20 61 73 20 6e 65 74 77 6f 72 6b 20 6c 6f 67 73 20 66 61 63 | sage.is.f.e..as.network.logs.fac |
| 617e0 | 69 6c 69 74 69 65 73 20 66 6f 72 20 6e 6f 64 65 73 20 61 6e 64 20 6e 65 74 77 6f 72 6b 20 65 71 | ilities.for.nodes.and.network.eq |
| 61800 | 75 69 70 6d 65 6e 74 2e 20 47 65 6e 65 72 61 6c 6c 79 20 69 74 20 64 65 70 65 6e 64 73 20 6f 6e | uipment..Generally.it.depends.on |
| 61820 | 20 74 68 65 20 73 69 74 75 61 74 69 6f 6e 20 68 6f 77 20 74 6f 20 63 6c 61 73 73 69 66 79 20 6c | .the.situation.how.to.classify.l |
| 61840 | 6f 67 73 20 61 6e 64 20 70 75 74 20 74 68 65 6d 20 74 6f 20 66 61 63 69 6c 69 74 69 65 73 2e 20 | ogs.and.put.them.to.facilities.. |
| 61860 | 53 65 65 20 66 61 63 69 6c 69 74 69 65 73 20 6d 6f 72 65 20 61 73 20 61 20 74 6f 6f 6c 20 72 61 | See.facilities.more.as.a.tool.ra |
| 61880 | 74 68 65 72 20 74 68 61 6e 20 61 20 64 69 72 65 63 74 69 76 65 20 74 6f 20 66 6f 6c 6c 6f 77 2e | ther.than.a.directive.to.follow. |
| 618a0 | 00 4c 69 73 74 20 6f 66 20 6e 65 74 77 6f 72 6b 73 20 6f 72 20 63 6c 69 65 6e 74 20 61 64 64 72 | .List.of.networks.or.client.addr |
| 618c0 | 65 73 73 65 73 20 70 65 72 6d 69 74 74 65 64 20 74 6f 20 63 6f 6e 74 61 63 74 20 74 68 69 73 20 | esses.permitted.to.contact.this. |
| 618e0 | 4e 54 50 20 73 65 72 76 65 72 2e 00 4c 69 73 74 20 6f 66 20 73 75 70 70 6f 72 74 65 64 20 4d 41 | NTP.server..List.of.supported.MA |
| 61900 | 43 73 3a 20 60 60 68 6d 61 63 2d 6d 64 35 60 60 2c 20 60 60 68 6d 61 63 2d 6d 64 35 2d 39 36 60 | Cs:.``hmac-md5``,.``hmac-md5-96` |
| 61920 | 60 2c 20 60 60 68 6d 61 63 2d 72 69 70 65 6d 64 31 36 30 60 60 2c 20 60 60 68 6d 61 63 2d 73 68 | `,.``hmac-ripemd160``,.``hmac-sh |
| 61940 | 61 31 60 60 2c 20 60 60 68 6d 61 63 2d 73 68 61 31 2d 39 36 60 60 2c 20 60 60 68 6d 61 63 2d 73 | a1``,.``hmac-sha1-96``,.``hmac-s |
| 61960 | 68 61 32 2d 32 35 36 60 60 2c 20 60 60 68 6d 61 63 2d 73 68 61 32 2d 35 31 32 60 60 2c 20 60 60 | ha2-256``,.``hmac-sha2-512``,.`` |
| 61980 | 75 6d 61 63 2d 36 34 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 75 6d 61 63 2d 31 32 | umac-64@openssh.com``,.``umac-12 |
| 619a0 | 38 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 68 6d 61 63 2d 6d 64 35 2d 65 74 6d 40 | 8@openssh.com``,.``hmac-md5-etm@ |
| 619c0 | 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 68 6d 61 63 2d 6d 64 35 2d 39 36 2d 65 74 6d | openssh.com``,.``hmac-md5-96-etm |
| 619e0 | 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 68 6d 61 63 2d 72 69 70 65 6d 64 31 36 30 | @openssh.com``,.``hmac-ripemd160 |
| 61a00 | 2d 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 68 6d 61 63 2d 73 68 61 31 2d | -etm@openssh.com``,.``hmac-sha1- |
| 61a20 | 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 68 6d 61 63 2d 73 68 61 31 2d 39 | etm@openssh.com``,.``hmac-sha1-9 |
| 61a40 | 36 2d 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 68 6d 61 63 2d 73 68 61 32 | 6-etm@openssh.com``,.``hmac-sha2 |
| 61a60 | 2d 32 35 36 2d 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 68 6d 61 63 2d 73 | -256-etm@openssh.com``,.``hmac-s |
| 61a80 | 68 61 32 2d 35 31 32 2d 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 75 6d 61 | ha2-512-etm@openssh.com``,.``uma |
| 61aa0 | 63 2d 36 34 2d 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 75 6d 61 63 2d 31 | c-64-etm@openssh.com``,.``umac-1 |
| 61ac0 | 32 38 2d 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 00 4c 69 73 74 20 6f 66 20 73 75 70 | 28-etm@openssh.com``.List.of.sup |
| 61ae0 | 70 6f 72 74 65 64 20 61 6c 67 6f 72 69 74 68 6d 73 3a 20 60 60 64 69 66 66 69 65 2d 68 65 6c 6c | ported.algorithms:.``diffie-hell |
| 61b00 | 6d 61 6e 2d 67 72 6f 75 70 31 2d 73 68 61 31 60 60 2c 20 60 60 64 69 66 66 69 65 2d 68 65 6c 6c | man-group1-sha1``,.``diffie-hell |
| 61b20 | 6d 61 6e 2d 67 72 6f 75 70 31 34 2d 73 68 61 31 60 60 2c 20 60 60 64 69 66 66 69 65 2d 68 65 6c | man-group14-sha1``,.``diffie-hel |
| 61b40 | 6c 6d 61 6e 2d 67 72 6f 75 70 31 34 2d 73 68 61 32 35 36 60 60 2c 20 60 60 64 69 66 66 69 65 2d | lman-group14-sha256``,.``diffie- |
| 61b60 | 68 65 6c 6c 6d 61 6e 2d 67 72 6f 75 70 31 36 2d 73 68 61 35 31 32 60 60 2c 20 60 60 64 69 66 66 | hellman-group16-sha512``,.``diff |
| 61b80 | 69 65 2d 68 65 6c 6c 6d 61 6e 2d 67 72 6f 75 70 31 38 2d 73 68 61 35 31 32 60 60 2c 20 60 60 64 | ie-hellman-group18-sha512``,.``d |
| 61ba0 | 69 66 66 69 65 2d 68 65 6c 6c 6d 61 6e 2d 67 72 6f 75 70 2d 65 78 63 68 61 6e 67 65 2d 73 68 61 | iffie-hellman-group-exchange-sha |
| 61bc0 | 31 60 60 2c 20 60 60 64 69 66 66 69 65 2d 68 65 6c 6c 6d 61 6e 2d 67 72 6f 75 70 2d 65 78 63 68 | 1``,.``diffie-hellman-group-exch |
| 61be0 | 61 6e 67 65 2d 73 68 61 32 35 36 60 60 2c 20 60 60 65 63 64 68 2d 73 68 61 32 2d 6e 69 73 74 70 | ange-sha256``,.``ecdh-sha2-nistp |
| 61c00 | 32 35 36 60 60 2c 20 60 60 65 63 64 68 2d 73 68 61 32 2d 6e 69 73 74 70 33 38 34 60 60 2c 20 60 | 256``,.``ecdh-sha2-nistp384``,.` |
| 61c20 | 60 65 63 64 68 2d 73 68 61 32 2d 6e 69 73 74 70 35 32 31 60 60 2c 20 60 60 63 75 72 76 65 32 35 | `ecdh-sha2-nistp521``,.``curve25 |
| 61c40 | 35 31 39 2d 73 68 61 32 35 36 60 60 20 61 6e 64 20 60 60 63 75 72 76 65 32 35 35 31 39 2d 73 68 | 519-sha256``.and.``curve25519-sh |
| 61c60 | 61 32 35 36 40 6c 69 62 73 73 68 2e 6f 72 67 60 60 2e 00 4c 69 73 74 20 6f 66 20 73 75 70 70 6f | a256@libssh.org``..List.of.suppo |
| 61c80 | 72 74 65 64 20 61 6c 67 6f 72 69 74 68 6d 73 3a 20 60 60 73 73 68 2d 65 64 32 35 35 31 39 60 60 | rted.algorithms:.``ssh-ed25519`` |
| 61ca0 | 2c 20 60 60 73 73 68 2d 65 64 32 35 35 31 39 2d 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 | ,.``ssh-ed25519-cert-v01@openssh |
| 61cc0 | 2e 63 6f 6d 60 60 2c 20 60 60 73 6b 2d 73 73 68 2d 65 64 32 35 35 31 39 40 6f 70 65 6e 73 73 68 | .com``,.``sk-ssh-ed25519@openssh |
| 61ce0 | 2e 63 6f 6d 60 60 2c 20 60 60 73 6b 2d 73 73 68 2d 65 64 32 35 35 31 39 2d 63 65 72 74 2d 76 30 | .com``,.``sk-ssh-ed25519-cert-v0 |
| 61d00 | 31 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 | 1@openssh.com``,.``ecdsa-sha2-ni |
| 61d20 | 73 74 70 32 35 36 60 60 2c 20 60 60 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 32 35 36 2d | stp256``,.``ecdsa-sha2-nistp256- |
| 61d40 | 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 65 63 64 73 61 2d | cert-v01@openssh.com``,.``ecdsa- |
| 61d60 | 73 68 61 32 2d 6e 69 73 74 70 33 38 34 60 60 2c 20 60 60 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 | sha2-nistp384``,.``ecdsa-sha2-ni |
| 61d80 | 73 74 70 33 38 34 2d 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 | stp384-cert-v01@openssh.com``,.` |
| 61da0 | 60 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 35 32 31 60 60 2c 20 60 60 65 63 64 73 61 2d | `ecdsa-sha2-nistp521``,.``ecdsa- |
| 61dc0 | 73 68 61 32 2d 6e 69 73 74 70 35 32 31 2d 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 | sha2-nistp521-cert-v01@openssh.c |
| 61de0 | 6f 6d 60 60 2c 20 60 60 73 6b 2d 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 32 35 36 40 6f | om``,.``sk-ecdsa-sha2-nistp256@o |
| 61e00 | 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 73 6b 2d 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 | penssh.com``,.``sk-ecdsa-sha2-ni |
| 61e20 | 73 74 70 32 35 36 2d 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 | stp256-cert-v01@openssh.com``,.` |
| 61e40 | 60 77 65 62 61 75 74 68 6e 2d 73 6b 2d 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 32 35 36 | `webauthn-sk-ecdsa-sha2-nistp256 |
| 61e60 | 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 73 73 68 2d 64 73 73 60 60 2c 20 60 60 73 | @openssh.com``,.``ssh-dss``,.``s |
| 61e80 | 73 68 2d 64 73 73 2d 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 | sh-dss-cert-v01@openssh.com``,.` |
| 61ea0 | 60 73 73 68 2d 72 73 61 60 60 2c 20 60 60 73 73 68 2d 72 73 61 2d 63 65 72 74 2d 76 30 31 40 6f | `ssh-rsa``,.``ssh-rsa-cert-v01@o |
| 61ec0 | 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 72 73 61 2d 73 68 61 32 2d 32 35 36 60 60 2c 20 | penssh.com``,.``rsa-sha2-256``,. |
| 61ee0 | 60 60 72 73 61 2d 73 68 61 32 2d 32 35 36 2d 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e | ``rsa-sha2-256-cert-v01@openssh. |
| 61f00 | 63 6f 6d 60 60 2c 20 60 60 72 73 61 2d 73 68 61 32 2d 35 31 32 60 60 2c 20 60 60 72 73 61 2d 73 | com``,.``rsa-sha2-512``,.``rsa-s |
| 61f20 | 68 61 32 2d 35 31 32 2d 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 00 4c | ha2-512-cert-v01@openssh.com``.L |
| 61f40 | 69 73 74 20 6f 66 20 73 75 70 70 6f 72 74 65 64 20 63 69 70 68 65 72 73 3a 20 60 60 33 64 65 73 | ist.of.supported.ciphers:.``3des |
| 61f60 | 2d 63 62 63 60 60 2c 20 60 60 61 65 73 31 32 38 2d 63 62 63 60 60 2c 20 60 60 61 65 73 31 39 32 | -cbc``,.``aes128-cbc``,.``aes192 |
| 61f80 | 2d 63 62 63 60 60 2c 20 60 60 61 65 73 32 35 36 2d 63 62 63 60 60 2c 20 60 60 61 65 73 31 32 38 | -cbc``,.``aes256-cbc``,.``aes128 |
| 61fa0 | 2d 63 74 72 60 60 2c 20 60 60 61 65 73 31 39 32 2d 63 74 72 60 60 2c 20 60 60 61 65 73 32 35 36 | -ctr``,.``aes192-ctr``,.``aes256 |
| 61fc0 | 2d 63 74 72 60 60 2c 20 60 60 61 72 63 66 6f 75 72 31 32 38 60 60 2c 20 60 60 61 72 63 66 6f 75 | -ctr``,.``arcfour128``,.``arcfou |
| 61fe0 | 72 32 35 36 60 60 2c 20 60 60 61 72 63 66 6f 75 72 60 60 2c 20 60 60 62 6c 6f 77 66 69 73 68 2d | r256``,.``arcfour``,.``blowfish- |
| 62000 | 63 62 63 60 60 2c 20 60 60 63 61 73 74 31 32 38 2d 63 62 63 60 60 00 4c 69 73 74 20 6f 66 20 77 | cbc``,.``cast128-cbc``.List.of.w |
| 62020 | 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 00 4c 69 73 74 65 6e 20 66 6f 72 | ell-known.communities.Listen.for |
| 62040 | 20 44 48 43 50 20 72 65 71 75 65 73 74 73 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 60 60 65 74 | .DHCP.requests.on.interface.``et |
| 62060 | 68 31 60 60 2e 00 4c 69 73 74 73 20 56 52 46 73 20 74 68 61 74 20 68 61 76 65 20 62 65 65 6e 20 | h1``..Lists.VRFs.that.have.been. |
| 62080 | 63 72 65 61 74 65 64 00 4c 6f 61 64 20 42 61 6c 61 6e 63 65 00 4c 6f 61 64 20 42 61 6c 61 6e 63 | created.Load.Balance.Load.Balanc |
| 620a0 | 69 6e 67 00 4c 6f 61 64 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 69 6d 61 67 65 20 69 6e 20 | ing.Load.the.container.image.in. |
| 620c0 | 6f 70 2d 6d 6f 64 65 2e 00 4c 6f 61 64 2d 62 61 6c 61 6e 63 69 6e 67 00 4c 6f 61 64 2d 62 61 6c | op-mode..Load-balancing.Load-bal |
| 620e0 | 61 6e 63 69 6e 67 20 61 6c 67 6f 72 69 74 68 6d 73 20 74 6f 20 62 65 20 75 73 65 64 20 66 6f 72 | ancing.algorithms.to.be.used.for |
| 62100 | 20 64 69 73 74 72 69 62 75 74 65 64 20 72 65 71 75 65 73 74 73 20 61 6d 6f 6e 67 20 74 68 65 20 | .distributed.requests.among.the. |
| 62120 | 61 76 61 69 6c 61 62 6c 65 20 73 65 72 76 65 72 73 00 4c 6f 61 64 2d 62 61 6c 61 6e 63 69 6e 67 | available.servers.Load-balancing |
| 62140 | 20 61 6c 67 6f 72 69 74 68 6d 73 20 74 6f 20 62 65 20 75 73 65 64 20 66 6f 72 20 64 69 73 74 72 | .algorithms.to.be.used.for.distr |
| 62160 | 69 62 75 74 69 6e 64 20 72 65 71 75 65 73 74 73 20 61 6d 6f 6e 67 20 74 68 65 20 76 61 69 6c 61 | ibutind.requests.among.the.vaila |
| 62180 | 62 6c 65 20 73 65 72 76 65 72 73 00 4c 6f 61 64 2d 62 61 6c 61 6e 63 69 6e 67 20 73 63 68 65 64 | ble.servers.Load-balancing.sched |
| 621a0 | 75 6c 65 20 61 6c 67 6f 72 69 74 68 6d 3a 00 4c 6f 63 61 6c 00 4c 6f 63 61 6c 20 43 6f 6e 66 69 | ule.algorithm:.Local.Local.Confi |
| 621c0 | 67 75 72 61 74 69 6f 6e 20 2d 20 41 6e 6e 6f 74 61 74 65 64 3a 00 4c 6f 63 61 6c 20 43 6f 6e 66 | guration.-.Annotated:.Local.Conf |
| 621e0 | 69 67 75 72 61 74 69 6f 6e 3a 00 4c 6f 63 61 6c 20 49 50 20 60 3c 61 64 64 72 65 73 73 3e 60 20 | iguration:.Local.IP.`<address>`. |
| 62200 | 75 73 65 64 20 77 68 65 6e 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6e 67 20 74 6f 20 74 68 65 20 48 | used.when.communicating.to.the.H |
| 62220 | 41 20 70 65 65 72 2e 00 4c 6f 63 61 6c 20 49 50 20 60 3c 61 64 64 72 65 73 73 3e 60 20 75 73 65 | A.peer..Local.IP.`<address>`.use |
| 62240 | 64 20 77 68 65 6e 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6e 67 20 74 6f 20 74 68 65 20 66 61 69 6c | d.when.communicating.to.the.fail |
| 62260 | 6f 76 65 72 20 70 65 65 72 2e 00 4c 6f 63 61 6c 20 49 50 20 61 64 64 72 65 73 73 65 73 20 74 6f | over.peer..Local.IP.addresses.to |
| 62280 | 20 6c 69 73 74 65 6e 20 6f 6e 00 4c 6f 63 61 6c 20 49 50 76 34 20 61 64 64 72 65 73 73 65 73 20 | .listen.on.Local.IPv4.addresses. |
| 622a0 | 66 6f 72 20 73 65 72 76 69 63 65 20 74 6f 20 6c 69 73 74 65 6e 20 6f 6e 2e 00 4c 6f 63 61 6c 20 | for.service.to.listen.on..Local. |
| 622c0 | 52 6f 75 74 65 20 49 50 76 34 00 4c 6f 63 61 6c 20 52 6f 75 74 65 20 49 50 76 36 00 4c 6f 63 61 | Route.IPv4.Local.Route.IPv6.Loca |
| 622e0 | 6c 20 52 6f 75 74 65 20 50 6f 6c 69 63 79 00 4c 6f 63 61 6c 20 55 73 65 72 20 41 63 63 6f 75 6e | l.Route.Policy.Local.User.Accoun |
| 62300 | 74 00 4c 6f 63 61 6c 20 70 61 74 68 20 74 68 61 74 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 6b | t.Local.path.that.includes.the.k |
| 62320 | 6e 6f 77 6e 20 68 6f 73 74 73 20 66 69 6c 65 2e 00 4c 6f 63 61 6c 20 70 61 74 68 20 74 68 61 74 | nown.hosts.file..Local.path.that |
| 62340 | 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 70 72 69 76 61 74 65 20 6b 65 79 20 66 69 6c 65 20 6f | .includes.the.private.key.file.o |
| 62360 | 66 20 74 68 65 20 72 6f 75 74 65 72 2e 00 4c 6f 63 61 6c 20 70 61 74 68 20 74 68 61 74 20 69 6e | f.the.router..Local.path.that.in |
| 62380 | 63 6c 75 64 65 73 20 74 68 65 20 70 75 62 6c 69 63 20 6b 65 79 20 66 69 6c 65 20 6f 66 20 74 68 | cludes.the.public.key.file.of.th |
| 623a0 | 65 20 72 6f 75 74 65 72 2e 00 4c 6f 63 61 6c 20 72 6f 75 74 65 00 4c 6f 63 61 6c 6c 79 20 63 6f | e.router..Local.route.Locally.co |
| 623c0 | 6e 6e 65 63 74 20 74 6f 20 73 65 72 69 61 6c 20 70 6f 72 74 20 69 64 65 6e 74 69 66 69 65 64 20 | nnect.to.serial.port.identified. |
| 623e0 | 62 79 20 60 3c 64 65 76 69 63 65 3e 60 2e 00 4c 6f 63 61 6c 6c 79 20 73 69 67 6e 69 66 69 63 61 | by.`<device>`..Locally.significa |
| 62400 | 6e 74 20 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 20 64 69 73 74 61 6e 63 65 2e 00 4c 6f 67 20 | nt.administrative.distance..Log. |
| 62420 | 61 6c 65 72 74 00 4c 6f 67 20 61 75 64 69 74 00 4c 6f 67 20 63 68 61 6e 67 65 73 20 69 6e 20 61 | alert.Log.audit.Log.changes.in.a |
| 62440 | 64 6a 61 63 65 6e 63 79 20 73 74 61 74 65 2e 00 4c 6f 67 20 65 76 65 72 79 74 68 69 6e 67 00 4c | djacency.state..Log.everything.L |
| 62460 | 6f 67 20 6d 65 73 73 61 67 65 73 20 66 72 6f 6d 20 61 20 73 70 65 63 69 66 69 65 64 20 69 6d 61 | og.messages.from.a.specified.ima |
| 62480 | 67 65 20 63 61 6e 20 62 65 20 64 69 73 70 6c 61 79 65 64 20 6f 6e 20 74 68 65 20 63 6f 6e 73 6f | ge.can.be.displayed.on.the.conso |
| 624a0 | 6c 65 2e 20 44 65 74 61 69 6c 73 20 6f 66 20 61 6c 6c 6f 77 65 64 20 70 61 72 61 6d 65 74 65 72 | le..Details.of.allowed.parameter |
| 624c0 | 73 3a 00 4c 6f 67 20 73 79 73 6c 6f 67 20 6d 65 73 73 61 67 65 73 20 74 6f 20 60 60 2f 64 65 76 | s:.Log.syslog.messages.to.``/dev |
| 624e0 | 2f 63 6f 6e 73 6f 6c 65 60 60 2c 20 66 6f 72 20 61 6e 20 65 78 70 6c 61 6e 61 74 69 6f 6e 20 6f | /console``,.for.an.explanation.o |
| 62500 | 6e 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f 66 61 63 69 6c 69 74 69 65 73 60 20 6b 65 79 77 6f | n.:ref:`syslog_facilities`.keywo |
| 62520 | 72 64 73 20 61 6e 64 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f 73 65 76 65 72 69 74 79 5f 6c 65 | rds.and.:ref:`syslog_severity_le |
| 62540 | 76 65 6c 60 20 6b 65 79 77 6f 72 64 73 20 73 65 65 20 74 61 62 6c 65 73 20 62 65 6c 6f 77 2e 00 | vel`.keywords.see.tables.below.. |
| 62560 | 4c 6f 67 20 73 79 73 6c 6f 67 20 6d 65 73 73 61 67 65 73 20 74 6f 20 66 69 6c 65 20 73 70 65 63 | Log.syslog.messages.to.file.spec |
| 62580 | 69 66 69 65 64 20 76 69 61 20 60 3c 66 69 6c 65 6e 61 6d 65 3e 60 2c 20 66 6f 72 20 61 6e 20 65 | ified.via.`<filename>`,.for.an.e |
| 625a0 | 78 70 6c 61 6e 61 74 69 6f 6e 20 6f 6e 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f 66 61 63 69 6c | xplanation.on.:ref:`syslog_facil |
| 625c0 | 69 74 69 65 73 60 20 6b 65 79 77 6f 72 64 73 20 61 6e 64 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 | ities`.keywords.and.:ref:`syslog |
| 625e0 | 5f 73 65 76 65 72 69 74 79 5f 6c 65 76 65 6c 60 20 6b 65 79 77 6f 72 64 73 20 73 65 65 20 74 61 | _severity_level`.keywords.see.ta |
| 62600 | 62 6c 65 73 20 62 65 6c 6f 77 2e 00 4c 6f 67 20 73 79 73 6c 6f 67 20 6d 65 73 73 61 67 65 73 20 | bles.below..Log.syslog.messages. |
| 62620 | 74 6f 20 72 65 6d 6f 74 65 20 68 6f 73 74 20 73 70 65 63 69 66 69 65 64 20 62 79 20 60 3c 61 64 | to.remote.host.specified.by.`<ad |
| 62640 | 64 72 65 73 73 3e 60 2e 20 54 68 65 20 61 64 64 72 65 73 73 20 63 61 6e 20 62 65 20 73 70 65 63 | dress>`..The.address.can.be.spec |
| 62660 | 69 66 69 65 64 20 62 79 20 65 69 74 68 65 72 20 46 51 44 4e 20 6f 72 20 49 50 20 61 64 64 72 65 | ified.by.either.FQDN.or.IP.addre |
| 62680 | 73 73 2e 20 46 6f 72 20 61 6e 20 65 78 70 6c 61 6e 61 74 69 6f 6e 20 6f 6e 20 3a 72 65 66 3a 60 | ss..For.an.explanation.on.:ref:` |
| 626a0 | 73 79 73 6c 6f 67 5f 66 61 63 69 6c 69 74 69 65 73 60 20 6b 65 79 77 6f 72 64 73 20 61 6e 64 20 | syslog_facilities`.keywords.and. |
| 626c0 | 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f 73 65 76 65 72 69 74 79 5f 6c 65 76 65 6c 60 20 6b 65 79 | :ref:`syslog_severity_level`.key |
| 626e0 | 77 6f 72 64 73 20 73 65 65 20 74 61 62 6c 65 73 20 62 65 6c 6f 77 2e 00 4c 6f 67 20 74 68 65 20 | words.see.tables.below..Log.the. |
| 62700 | 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 65 76 65 6e 74 73 20 70 65 72 20 70 | connection.tracking.events.per.p |
| 62720 | 72 6f 74 6f 63 6f 6c 2e 00 4c 6f 67 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 | rotocol..Log.the.connection.trac |
| 62740 | 6b 69 6e 67 20 65 76 65 6e 74 73 20 70 65 72 20 74 79 70 65 2e 00 4c 6f 67 67 69 6e 67 00 4c 6f | king.events.per.type..Logging.Lo |
| 62760 | 67 67 69 6e 67 20 63 61 6e 20 62 65 20 65 6e 61 62 6c 65 20 66 6f 72 20 65 76 65 72 79 20 73 69 | gging.can.be.enable.for.every.si |
| 62780 | 6e 67 6c 65 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 2e 20 49 66 20 65 6e 61 62 6c 65 64 2c 20 | ngle.firewall.rule..If.enabled,. |
| 627a0 | 6f 74 68 65 72 20 6c 6f 67 20 6f 70 74 69 6f 6e 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 | other.log.options.can.be.defined |
| 627c0 | 2e 00 4c 6f 67 67 69 6e 67 20 74 6f 20 61 20 72 65 6d 6f 74 65 20 68 6f 73 74 20 6c 65 61 76 65 | ..Logging.to.a.remote.host.leave |
| 627e0 | 73 20 74 68 65 20 6c 6f 63 61 6c 20 6c 6f 67 67 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | s.the.local.logging.configuratio |
| 62800 | 6e 20 69 6e 74 61 63 74 2c 20 69 74 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 | n.intact,.it.can.be.configured.i |
| 62820 | 6e 20 70 61 72 61 6c 6c 65 6c 20 74 6f 20 61 20 63 75 73 74 6f 6d 20 66 69 6c 65 20 6f 72 20 63 | n.parallel.to.a.custom.file.or.c |
| 62840 | 6f 6e 73 6f 6c 65 20 6c 6f 67 67 69 6e 67 2e 20 59 6f 75 20 63 61 6e 20 6c 6f 67 20 74 6f 20 6d | onsole.logging..You.can.log.to.m |
| 62860 | 75 6c 74 69 70 6c 65 20 68 6f 73 74 73 20 61 74 20 74 68 65 20 73 61 6d 65 20 74 69 6d 65 2c 20 | ultiple.hosts.at.the.same.time,. |
| 62880 | 75 73 69 6e 67 20 65 69 74 68 65 72 20 54 43 50 20 6f 72 20 55 44 50 2e 20 54 68 65 20 64 65 66 | using.either.TCP.or.UDP..The.def |
| 628a0 | 61 75 6c 74 20 69 73 20 73 65 6e 64 69 6e 67 20 74 68 65 20 6d 65 73 73 61 67 65 73 20 76 69 61 | ault.is.sending.the.messages.via |
| 628c0 | 20 70 6f 72 74 20 35 31 34 2f 55 44 50 2e 00 4c 6f 67 69 6e 20 42 61 6e 6e 65 72 00 4c 6f 67 69 | .port.514/UDP..Login.Banner.Logi |
| 628e0 | 6e 20 6c 69 6d 69 74 73 00 4c 6f 67 69 6e 2f 55 73 65 72 20 4d 61 6e 61 67 65 6d 65 6e 74 00 4c | n.limits.Login/User.Management.L |
| 62900 | 6f 6b 69 00 4c 6f 6f 70 20 46 72 65 65 20 41 6c 74 65 72 6e 61 74 65 20 28 4c 46 41 29 00 4c 6f | oki.Loop.Free.Alternate.(LFA).Lo |
| 62920 | 6f 70 62 61 63 6b 00 4c 6f 6f 70 62 61 63 6b 73 20 6f 63 63 75 72 73 20 61 74 20 74 68 65 20 49 | opback.Loopbacks.occurs.at.the.I |
| 62940 | 50 20 6c 65 76 65 6c 20 74 68 65 20 73 61 6d 65 20 77 61 79 20 61 73 20 66 6f 72 20 6f 74 68 65 | P.level.the.same.way.as.for.othe |
| 62960 | 72 20 69 6e 74 65 72 66 61 63 65 73 2c 20 65 74 68 65 72 6e 65 74 20 66 72 61 6d 65 73 20 61 72 | r.interfaces,.ethernet.frames.ar |
| 62980 | 65 20 6e 6f 74 20 66 6f 72 77 61 72 64 65 64 20 62 65 74 77 65 65 6e 20 50 73 65 75 64 6f 2d 45 | e.not.forwarded.between.Pseudo-E |
| 629a0 | 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 2e 00 4c 6f 77 00 4d 41 43 20 47 72 6f 75 | thernet.interfaces..Low.MAC.Grou |
| 629c0 | 70 73 00 4d 41 43 20 61 64 64 72 65 73 73 20 61 67 69 6e 67 20 60 3c 74 69 6d 65 60 3e 20 69 6e | ps.MAC.address.aging.`<time`>.in |
| 629e0 | 20 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a 20 33 30 30 29 2e 00 4d 41 43 2f 50 48 59 | .seconds.(default:.300)..MAC/PHY |
| 62a00 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 00 4d 41 43 56 4c 41 4e 20 2d 20 50 73 65 75 64 6f 20 45 74 | .information.MACVLAN.-.Pseudo.Et |
| 62a20 | 68 65 72 6e 65 74 00 4d 41 43 73 65 63 00 4d 41 43 73 65 63 20 69 73 20 61 6e 20 49 45 45 45 20 | hernet.MACsec.MACsec.is.an.IEEE. |
| 62a40 | 73 74 61 6e 64 61 72 64 20 28 49 45 45 45 20 38 30 32 2e 31 41 45 29 20 66 6f 72 20 4d 41 43 20 | standard.(IEEE.802.1AE).for.MAC. |
| 62a60 | 73 65 63 75 72 69 74 79 2c 20 69 6e 74 72 6f 64 75 63 65 64 20 69 6e 20 32 30 30 36 2e 20 49 74 | security,.introduced.in.2006..It |
| 62a80 | 20 64 65 66 69 6e 65 73 20 61 20 77 61 79 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 61 20 70 72 | .defines.a.way.to.establish.a.pr |
| 62aa0 | 6f 74 6f 63 6f 6c 20 69 6e 64 65 70 65 6e 64 65 6e 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 62 65 | otocol.independent.connection.be |
| 62ac0 | 74 77 65 65 6e 20 74 77 6f 20 68 6f 73 74 73 20 77 69 74 68 20 64 61 74 61 20 63 6f 6e 66 69 64 | tween.two.hosts.with.data.confid |
| 62ae0 | 65 6e 74 69 61 6c 69 74 79 2c 20 61 75 74 68 65 6e 74 69 63 69 74 79 20 61 6e 64 2f 6f 72 20 69 | entiality,.authenticity.and/or.i |
| 62b00 | 6e 74 65 67 72 69 74 79 2c 20 75 73 69 6e 67 20 47 43 4d 2d 41 45 53 2d 31 32 38 2e 20 4d 41 43 | ntegrity,.using.GCM-AES-128..MAC |
| 62b20 | 73 65 63 20 6f 70 65 72 61 74 65 73 20 6f 6e 20 74 68 65 20 45 74 68 65 72 6e 65 74 20 6c 61 79 | sec.operates.on.the.Ethernet.lay |
| 62b40 | 65 72 20 61 6e 64 20 61 73 20 73 75 63 68 20 69 73 20 61 20 6c 61 79 65 72 20 32 20 70 72 6f 74 | er.and.as.such.is.a.layer.2.prot |
| 62b60 | 6f 63 6f 6c 2c 20 77 68 69 63 68 20 6d 65 61 6e 73 20 69 74 27 73 20 64 65 73 69 67 6e 65 64 20 | ocol,.which.means.it's.designed. |
| 62b80 | 74 6f 20 73 65 63 75 72 65 20 74 72 61 66 66 69 63 20 77 69 74 68 69 6e 20 61 20 6c 61 79 65 72 | to.secure.traffic.within.a.layer |
| 62ba0 | 20 32 20 6e 65 74 77 6f 72 6b 2c 20 69 6e 63 6c 75 64 69 6e 67 20 44 48 43 50 20 6f 72 20 41 52 | .2.network,.including.DHCP.or.AR |
| 62bc0 | 50 20 72 65 71 75 65 73 74 73 2e 20 49 74 20 64 6f 65 73 20 6e 6f 74 20 63 6f 6d 70 65 74 65 20 | P.requests..It.does.not.compete. |
| 62be0 | 77 69 74 68 20 6f 74 68 65 72 20 73 65 63 75 72 69 74 79 20 73 6f 6c 75 74 69 6f 6e 73 20 73 75 | with.other.security.solutions.su |
| 62c00 | 63 68 20 61 73 20 49 50 73 65 63 20 28 6c 61 79 65 72 20 33 29 20 6f 72 20 54 4c 53 20 28 6c 61 | ch.as.IPsec.(layer.3).or.TLS.(la |
| 62c20 | 79 65 72 20 34 29 2c 20 61 73 20 61 6c 6c 20 74 68 6f 73 65 20 73 6f 6c 75 74 69 6f 6e 73 20 61 | yer.4),.as.all.those.solutions.a |
| 62c40 | 72 65 20 75 73 65 64 20 66 6f 72 20 74 68 65 69 72 20 6f 77 6e 20 73 70 65 63 69 66 69 63 20 75 | re.used.for.their.own.specific.u |
| 62c60 | 73 65 20 63 61 73 65 73 2e 00 4d 41 43 73 65 63 20 69 73 20 61 6e 20 69 6e 74 65 72 65 73 74 69 | se.cases..MACsec.is.an.interesti |
| 62c80 | 6e 67 20 61 6c 74 65 72 6e 61 74 69 76 65 20 74 6f 20 65 78 69 73 74 69 6e 67 20 74 75 6e 6e 65 | ng.alternative.to.existing.tunne |
| 62ca0 | 6c 69 6e 67 20 73 6f 6c 75 74 69 6f 6e 73 20 74 68 61 74 20 70 72 6f 74 65 63 74 73 20 6c 61 79 | ling.solutions.that.protects.lay |
| 62cc0 | 65 72 20 32 20 62 79 20 70 65 72 66 6f 72 6d 69 6e 67 20 69 6e 74 65 67 72 69 74 79 2c 20 6f 72 | er.2.by.performing.integrity,.or |
| 62ce0 | 69 67 69 6e 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2c 20 61 6e 64 20 6f 70 74 69 6f 6e 61 | igin.authentication,.and.optiona |
| 62d00 | 6c 6c 79 20 65 6e 63 72 79 70 74 69 6f 6e 2e 20 54 68 65 20 74 79 70 69 63 61 6c 20 75 73 65 20 | lly.encryption..The.typical.use. |
| 62d20 | 63 61 73 65 20 69 73 20 74 6f 20 75 73 65 20 4d 41 43 73 65 63 20 62 65 74 77 65 65 6e 20 68 6f | case.is.to.use.MACsec.between.ho |
| 62d40 | 73 74 73 20 61 6e 64 20 61 63 63 65 73 73 20 73 77 69 74 63 68 65 73 2c 20 62 65 74 77 65 65 6e | sts.and.access.switches,.between |
| 62d60 | 20 74 77 6f 20 68 6f 73 74 73 2c 20 6f 72 20 62 65 74 77 65 65 6e 20 74 77 6f 20 73 77 69 74 63 | .two.hosts,.or.between.two.switc |
| 62d80 | 68 65 73 2e 20 69 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 20 62 65 6c 6f 77 2c 20 77 65 20 75 | hes..in.this.example.below,.we.u |
| 62da0 | 73 65 20 56 58 4c 41 4e 20 61 6e 64 20 4d 41 43 73 65 63 20 74 6f 20 73 65 63 75 72 65 20 74 68 | se.VXLAN.and.MACsec.to.secure.th |
| 62dc0 | 65 20 74 75 6e 6e 65 6c 2e 00 4d 41 43 73 65 63 20 6f 6e 6c 79 20 70 72 6f 76 69 64 65 73 20 61 | e.tunnel..MACsec.only.provides.a |
| 62de0 | 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 79 20 64 65 66 61 75 6c 74 2c 20 65 6e 63 72 79 70 | uthentication.by.default,.encryp |
| 62e00 | 74 69 6f 6e 20 69 73 20 6f 70 74 69 6f 6e 61 6c 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 | tion.is.optional..This.command.w |
| 62e20 | 69 6c 6c 20 65 6e 61 62 6c 65 20 65 6e 63 72 79 70 74 69 6f 6e 20 66 6f 72 20 61 6c 6c 20 6f 75 | ill.enable.encryption.for.all.ou |
| 62e40 | 74 67 6f 69 6e 67 20 70 61 63 6b 65 74 73 2e 00 4d 41 43 73 65 63 20 6f 70 74 69 6f 6e 73 00 4d | tgoing.packets..MACsec.options.M |
| 62e60 | 41 43 73 65 63 20 6f 76 65 72 20 77 61 6e 00 4d 44 49 20 70 6f 77 65 72 00 4d 46 41 20 54 4f 54 | ACsec.over.wan.MDI.power.MFA.TOT |
| 62e80 | 50 20 6f 70 74 69 6f 6e 73 00 4d 46 41 2f 32 46 41 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e | P.options.MFA/2FA.authentication |
| 62ea0 | 20 75 73 69 6e 67 20 4f 54 50 20 28 6f 6e 65 20 74 69 6d 65 20 70 61 73 73 77 6f 72 64 73 29 00 | .using.OTP.(one.time.passwords). |
| 62ec0 | 4d 50 4c 53 00 4d 50 4c 53 20 73 75 70 70 6f 72 74 20 69 6e 20 56 79 4f 53 20 69 73 20 6e 6f 74 | MPLS.MPLS.support.in.VyOS.is.not |
| 62ee0 | 20 66 69 6e 69 73 68 65 64 20 79 65 74 2c 20 61 6e 64 20 74 68 65 72 65 66 6f 72 65 20 69 74 73 | .finished.yet,.and.therefore.its |
| 62f00 | 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 69 73 20 6c 69 6d 69 74 65 64 2e 20 43 75 72 72 65 | .functionality.is.limited..Curre |
| 62f20 | 6e 74 6c 79 20 74 68 65 72 65 20 69 73 20 6e 6f 20 73 75 70 70 6f 72 74 20 66 6f 72 20 4d 50 4c | ntly.there.is.no.support.for.MPL |
| 62f40 | 53 20 65 6e 61 62 6c 65 64 20 56 50 4e 20 73 65 72 76 69 63 65 73 20 73 75 63 68 20 61 73 20 4c | S.enabled.VPN.services.such.as.L |
| 62f60 | 32 56 50 4e 73 20 61 6e 64 20 6d 56 50 4e 73 2e 20 52 53 56 50 20 73 75 70 70 6f 72 74 20 69 73 | 2VPNs.and.mVPNs..RSVP.support.is |
| 62f80 | 20 61 6c 73 6f 20 6e 6f 74 20 70 72 65 73 65 6e 74 20 61 73 20 74 68 65 20 75 6e 64 65 72 6c 79 | .also.not.present.as.the.underly |
| 62fa0 | 69 6e 67 20 72 6f 75 74 69 6e 67 20 73 74 61 63 6b 20 28 46 52 52 29 20 64 6f 65 73 20 6e 6f 74 | ing.routing.stack.(FRR).does.not |
| 62fc0 | 20 69 6d 70 6c 65 6d 65 6e 74 20 69 74 2e 20 43 75 72 72 65 6e 74 6c 79 20 56 79 4f 53 20 69 6d | .implement.it..Currently.VyOS.im |
| 62fe0 | 70 6c 65 6d 65 6e 74 73 20 4c 44 50 20 61 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 52 46 43 | plements.LDP.as.described.in.RFC |
| 63000 | 20 35 30 33 36 3b 20 6f 74 68 65 72 20 4c 44 50 20 73 74 61 6e 64 61 72 64 20 61 72 65 20 74 68 | .5036;.other.LDP.standard.are.th |
| 63020 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6f 6e 65 73 3a 20 52 46 43 20 36 37 32 30 2c 20 52 46 43 20 | e.following.ones:.RFC.6720,.RFC. |
| 63040 | 36 36 36 37 2c 20 52 46 43 20 35 39 31 39 2c 20 52 46 43 20 35 35 36 31 2c 20 52 46 43 20 37 35 | 6667,.RFC.5919,.RFC.5561,.RFC.75 |
| 63060 | 35 32 2c 20 52 46 43 20 34 34 34 37 2e 20 42 65 63 61 75 73 65 20 4d 50 4c 53 20 69 73 20 61 6c | 52,.RFC.4447..Because.MPLS.is.al |
| 63080 | 72 65 61 64 79 20 61 76 61 69 6c 61 62 6c 65 20 28 46 52 52 20 61 6c 73 6f 20 73 75 70 70 6f 72 | ready.available.(FRR.also.suppor |
| 630a0 | 74 73 20 52 46 43 20 33 30 33 31 29 2e 00 4d 53 53 20 76 61 6c 75 65 20 3d 20 4d 54 55 20 2d 20 | ts.RFC.3031)..MSS.value.=.MTU.-. |
| 630c0 | 32 30 20 28 49 50 20 68 65 61 64 65 72 29 20 2d 20 32 30 20 28 54 43 50 20 68 65 61 64 65 72 29 | 20.(IP.header).-.20.(TCP.header) |
| 630e0 | 2c 20 72 65 73 75 6c 74 69 6e 67 20 69 6e 20 31 34 35 32 20 62 79 74 65 73 20 6f 6e 20 61 20 31 | ,.resulting.in.1452.bytes.on.a.1 |
| 63100 | 34 39 32 20 62 79 74 65 20 4d 54 55 2e 00 4d 53 53 20 76 61 6c 75 65 20 3d 20 4d 54 55 20 2d 20 | 492.byte.MTU..MSS.value.=.MTU.-. |
| 63120 | 34 30 20 28 49 50 76 36 20 68 65 61 64 65 72 29 20 2d 20 32 30 20 28 54 43 50 20 68 65 61 64 65 | 40.(IPv6.header).-.20.(TCP.heade |
| 63140 | 72 29 2c 20 72 65 73 75 6c 74 69 6e 67 20 69 6e 20 31 34 33 32 20 62 79 74 65 73 20 6f 6e 20 61 | r),.resulting.in.1432.bytes.on.a |
| 63160 | 20 31 34 39 32 20 62 79 74 65 20 4d 54 55 2e 00 4d 54 55 00 4d 61 69 6c 20 73 79 73 74 65 6d 00 | .1492.byte.MTU..MTU.Mail.system. |
| 63180 | 4d 61 69 6e 20 6e 6f 74 65 73 20 72 65 67 61 72 64 69 6e 67 20 74 68 69 73 20 70 61 63 6b 65 74 | Main.notes.regarding.this.packet |
| 631a0 | 20 66 6c 6f 77 20 61 6e 64 20 74 65 72 6d 69 6e 6f 6c 6f 67 79 20 75 73 65 64 20 69 6e 20 56 79 | .flow.and.terminology.used.in.Vy |
| 631c0 | 4f 53 20 66 69 72 65 77 61 6c 6c 3a 00 4d 61 69 6e 20 73 74 72 75 63 74 75 72 65 20 56 79 4f 53 | OS.firewall:.Main.structure.VyOS |
| 631e0 | 20 66 69 72 65 77 61 6c 6c 20 63 6c 69 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 3a 00 4d 61 69 | .firewall.cli.is.shown.next:.Mai |
| 63200 | 6e 20 73 74 72 75 63 74 75 72 65 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 3a 00 4d 61 69 6e 74 | n.structure.is.shown.next:.Maint |
| 63220 | 65 6e 61 6e 63 65 20 6d 6f 64 65 00 4d 61 6b 65 20 63 6f 6e 66 69 67 2d 73 79 6e 63 20 72 65 6c | enance.mode.Make.config-sync.rel |
| 63240 | 65 76 61 6e 74 20 63 68 61 6e 67 65 73 20 74 6f 20 52 6f 75 74 65 72 20 41 27 73 20 63 6f 6e 66 | evant.changes.to.Router.A's.conf |
| 63260 | 69 67 75 72 61 74 69 6f 6e 00 4d 61 6b 65 20 73 75 72 65 20 63 6f 6e 6e 74 72 61 63 6b 20 69 73 | iguration.Make.sure.conntrack.is |
| 63280 | 20 65 6e 61 62 6c 65 64 20 62 79 20 72 75 6e 6e 69 6e 67 20 61 6e 64 20 73 68 6f 77 20 63 6f 6e | .enabled.by.running.and.show.con |
| 632a0 | 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 74 61 62 6c 65 2e 00 4d 61 6e 61 67 65 20 69 | nection.tracking.table..Manage.i |
| 632c0 | 6e 74 65 72 6e 61 6c 20 71 75 65 75 65 20 73 69 7a 65 2c 20 64 65 66 61 75 6c 74 20 73 69 7a 65 | nternal.queue.size,.default.size |
| 632e0 | 20 69 73 20 34 30 39 36 20 65 76 65 6e 74 73 2e 00 4d 61 6e 61 67 65 20 6c 6f 67 20 6c 65 76 65 | .is.4096.events..Manage.log.leve |
| 63300 | 6c 00 4d 61 6e 61 67 65 64 20 64 65 76 69 63 65 73 00 4d 61 6e 61 67 65 6d 65 6e 74 20 46 72 61 | l.Managed.devices.Management.Fra |
| 63320 | 6d 65 20 50 72 6f 74 65 63 74 69 6f 6e 20 28 4d 46 50 29 20 61 63 63 6f 72 64 69 6e 67 20 74 6f | me.Protection.(MFP).according.to |
| 63340 | 20 49 45 45 45 20 38 30 32 2e 31 31 77 00 4d 61 6e 64 61 74 6f 72 79 20 53 65 74 74 69 6e 67 73 | .IEEE.802.11w.Mandatory.Settings |
| 63360 | 00 4d 61 6e 75 61 6c 20 4e 65 69 67 68 62 6f 72 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 4d | .Manual.Neighbor.Configuration.M |
| 63380 | 61 6e 75 61 6c 6c 79 20 74 72 69 67 67 65 72 20 63 65 72 74 69 66 69 63 61 74 65 20 72 65 6e 65 | anually.trigger.certificate.rene |
| 633a0 | 77 61 6c 2e 20 54 68 69 73 20 77 69 6c 6c 20 62 65 20 64 6f 6e 65 20 74 77 69 63 65 20 61 20 64 | wal..This.will.be.done.twice.a.d |
| 633c0 | 61 79 2e 00 4d 61 70 73 20 74 68 65 20 56 4e 49 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 | ay..Maps.the.VNI.to.the.specifie |
| 633e0 | 64 20 56 4c 41 4e 20 69 64 2e 20 54 68 65 20 56 4c 41 4e 20 63 61 6e 20 74 68 65 6e 20 62 65 20 | d.VLAN.id..The.VLAN.can.then.be. |
| 63400 | 63 6f 6e 73 75 6d 65 64 20 62 79 20 61 20 62 72 69 64 67 65 2e 00 4d 61 72 6b 20 52 41 44 49 55 | consumed.by.a.bridge..Mark.RADIU |
| 63420 | 53 20 73 65 72 76 65 72 20 61 73 20 6f 66 66 6c 69 6e 65 20 66 6f 72 20 74 68 69 73 20 67 69 76 | S.server.as.offline.for.this.giv |
| 63440 | 65 6e 20 60 3c 74 69 6d 65 3e 60 20 69 6e 20 73 65 63 6f 6e 64 73 2e 00 4d 61 72 6b 20 74 68 65 | en.`<time>`.in.seconds..Mark.the |
| 63460 | 20 43 41 73 20 70 72 69 76 61 74 65 20 6b 65 79 20 61 73 20 70 61 73 73 77 6f 72 64 20 70 72 6f | .CAs.private.key.as.password.pro |
| 63480 | 74 65 63 74 65 64 2e 20 55 73 65 72 20 69 73 20 61 73 6b 65 64 20 66 6f 72 20 74 68 65 20 70 61 | tected..User.is.asked.for.the.pa |
| 634a0 | 73 73 77 6f 72 64 20 77 68 65 6e 20 74 68 65 20 6b 65 79 20 69 73 20 72 65 66 65 72 65 6e 63 65 | ssword.when.the.key.is.reference |
| 634c0 | 64 2e 00 4d 61 72 6b 20 74 68 65 20 70 72 69 76 61 74 65 20 6b 65 79 20 61 73 20 70 61 73 73 77 | d..Mark.the.private.key.as.passw |
| 634e0 | 6f 72 64 20 70 72 6f 74 65 63 74 65 64 2e 20 55 73 65 72 20 69 73 20 61 73 6b 65 64 20 66 6f 72 | ord.protected..User.is.asked.for |
| 63500 | 20 74 68 65 20 70 61 73 73 77 6f 72 64 20 77 68 65 6e 20 74 68 65 20 6b 65 79 20 69 73 20 72 65 | .the.password.when.the.key.is.re |
| 63520 | 66 65 72 65 6e 63 65 64 2e 00 4d 61 74 63 68 20 42 47 50 20 6c 61 72 67 65 20 63 6f 6d 6d 75 6e | ferenced..Match.BGP.large.commun |
| 63540 | 69 74 69 65 73 2e 00 4d 61 74 63 68 20 49 50 20 61 64 64 72 65 73 73 65 73 20 62 61 73 65 64 20 | ities..Match.IP.addresses.based. |
| 63560 | 6f 6e 20 69 74 73 20 67 65 6f 6c 6f 63 61 74 69 6f 6e 2e 20 4d 6f 72 65 20 69 6e 66 6f 3a 20 60 | on.its.geolocation..More.info:.` |
| 63580 | 67 65 6f 69 70 20 6d 61 74 63 68 69 6e 67 20 3c 68 74 74 70 73 3a 2f 2f 77 69 6b 69 2e 6e 66 74 | geoip.matching.<https://wiki.nft |
| 635a0 | 61 62 6c 65 73 2e 6f 72 67 2f 77 69 6b 69 2d 6e 66 74 61 62 6c 65 73 2f 69 6e 64 65 78 2e 70 68 | ables.org/wiki-nftables/index.ph |
| 635c0 | 70 2f 47 65 6f 49 50 5f 6d 61 74 63 68 69 6e 67 3e 60 5f 2e 00 4d 61 74 63 68 20 49 50 20 61 64 | p/GeoIP_matching>`_..Match.IP.ad |
| 635e0 | 64 72 65 73 73 65 73 20 62 61 73 65 64 20 6f 6e 20 69 74 73 20 67 65 6f 6c 6f 63 61 74 69 6f 6e | dresses.based.on.its.geolocation |
| 63600 | 2e 20 4d 6f 72 65 20 69 6e 66 6f 3a 20 60 67 65 6f 69 70 20 6d 61 74 63 68 69 6e 67 20 3c 68 74 | ..More.info:.`geoip.matching.<ht |
| 63620 | 74 70 73 3a 2f 2f 77 69 6b 69 2e 6e 66 74 61 62 6c 65 73 2e 6f 72 67 2f 77 69 6b 69 2d 6e 66 74 | tps://wiki.nftables.org/wiki-nft |
| 63640 | 61 62 6c 65 73 2f 69 6e 64 65 78 2e 70 68 70 2f 47 65 6f 49 50 5f 6d 61 74 63 68 69 6e 67 3e 60 | ables/index.php/GeoIP_matching>` |
| 63660 | 5f 2e 20 55 73 65 20 69 6e 76 65 72 73 65 2d 6d 61 74 63 68 20 74 6f 20 6d 61 74 63 68 20 61 6e | _..Use.inverse-match.to.match.an |
| 63680 | 79 74 68 69 6e 67 20 65 78 63 65 70 74 20 74 68 65 20 67 69 76 65 6e 20 63 6f 75 6e 74 72 79 2d | ything.except.the.given.country- |
| 636a0 | 63 6f 64 65 73 2e 00 4d 61 74 63 68 20 52 50 4b 49 20 76 61 6c 69 64 61 74 69 6f 6e 20 72 65 73 | codes..Match.RPKI.validation.res |
| 636c0 | 75 6c 74 2e 00 4d 61 74 63 68 20 61 20 70 72 6f 74 6f 63 6f 6c 20 63 72 69 74 65 72 69 61 2e 20 | ult..Match.a.protocol.criteria.. |
| 636e0 | 41 20 70 72 6f 74 6f 63 6f 6c 20 6e 75 6d 62 65 72 20 6f 72 20 61 20 6e 61 6d 65 20 77 68 69 63 | A.protocol.number.or.a.name.whic |
| 63700 | 68 20 69 73 20 64 65 66 69 6e 65 64 20 69 6e 3a 20 60 60 2f 65 74 63 2f 70 72 6f 74 6f 63 6f 6c | h.is.defined.in:.``/etc/protocol |
| 63720 | 73 60 60 2e 20 53 70 65 63 69 61 6c 20 6e 61 6d 65 73 20 61 72 65 20 60 60 61 6c 6c 60 60 20 66 | s``..Special.names.are.``all``.f |
| 63740 | 6f 72 20 61 6c 6c 20 70 72 6f 74 6f 63 6f 6c 73 20 61 6e 64 20 60 60 74 63 70 5f 75 64 70 60 60 | or.all.protocols.and.``tcp_udp`` |
| 63760 | 20 66 6f 72 20 74 63 70 20 61 6e 64 20 75 64 70 20 62 61 73 65 64 20 70 61 63 6b 65 74 73 2e 20 | .for.tcp.and.udp.based.packets.. |
| 63780 | 54 68 65 20 60 60 21 60 60 20 6e 65 67 61 74 65 73 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 70 | The.``!``.negates.the.selected.p |
| 637a0 | 72 6f 74 6f 63 6f 6c 2e 00 4d 61 74 63 68 20 61 20 70 72 6f 74 6f 63 6f 6c 20 63 72 69 74 65 72 | rotocol..Match.a.protocol.criter |
| 637c0 | 69 61 2e 20 41 20 70 72 6f 74 6f 63 6f 6c 20 6e 75 6d 62 65 72 20 6f 72 20 61 20 6e 61 6d 65 20 | ia..A.protocol.number.or.a.name. |
| 637e0 | 77 68 69 63 68 20 69 73 20 68 65 72 65 20 64 65 66 69 6e 65 64 3a 20 60 60 2f 65 74 63 2f 70 72 | which.is.here.defined:.``/etc/pr |
| 63800 | 6f 74 6f 63 6f 6c 73 60 60 2e 20 53 70 65 63 69 61 6c 20 6e 61 6d 65 73 20 61 72 65 20 60 60 61 | otocols``..Special.names.are.``a |
| 63820 | 6c 6c 60 60 20 66 6f 72 20 61 6c 6c 20 70 72 6f 74 6f 63 6f 6c 73 20 61 6e 64 20 60 60 74 63 70 | ll``.for.all.protocols.and.``tcp |
| 63840 | 5f 75 64 70 60 60 20 66 6f 72 20 74 63 70 20 61 6e 64 20 75 64 70 20 62 61 73 65 64 20 70 61 63 | _udp``.for.tcp.and.udp.based.pac |
| 63860 | 6b 65 74 73 2e 20 54 68 65 20 60 60 21 60 60 20 6e 65 67 61 74 65 20 74 68 65 20 73 65 6c 65 63 | kets..The.``!``.negate.the.selec |
| 63880 | 74 65 64 20 70 72 6f 74 6f 63 6f 6c 2e 00 4d 61 74 63 68 20 61 67 61 69 6e 73 74 20 74 68 65 20 | ted.protocol..Match.against.the. |
| 638a0 | 73 74 61 74 65 20 6f 66 20 61 20 70 61 63 6b 65 74 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f | state.of.a.packet..Match.based.o |
| 638c0 | 6e 20 56 4c 41 4e 20 69 64 65 6e 74 69 66 69 65 72 2e 20 52 61 6e 67 65 20 69 73 20 61 6c 73 6f | n.VLAN.identifier..Range.is.also |
| 638e0 | 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 56 4c 41 4e 20 | .supported..Match.based.on.VLAN. |
| 63900 | 70 72 69 6f 72 69 74 79 20 28 50 72 69 6f 72 69 74 79 20 43 6f 64 65 20 50 6f 69 6e 74 20 2d 20 | priority.(Priority.Code.Point.-. |
| 63920 | 50 43 50 29 2e 20 52 61 6e 67 65 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 4d | PCP)..Range.is.also.supported..M |
| 63940 | 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6d 61 72 6b 2e 00 4d | atch.based.on.connection.mark..M |
| 63960 | 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e | atch.based.on.connection.trackin |
| 63980 | 67 20 70 72 6f 74 6f 63 6f 6c 20 68 65 6c 70 65 72 20 6d 6f 64 75 6c 65 20 74 6f 20 73 65 63 75 | g.protocol.helper.module.to.secu |
| 639a0 | 72 65 20 75 73 65 20 6f 66 20 74 68 61 74 20 68 65 6c 70 65 72 20 6d 6f 64 75 6c 65 2e 20 53 65 | re.use.of.that.helper.module..Se |
| 639c0 | 65 20 62 65 6c 6f 77 20 66 6f 72 20 70 6f 73 73 69 62 6c 65 20 63 6f 6d 70 6c 65 74 69 6f 6e 73 | e.below.for.possible.completions |
| 639e0 | 20 60 3c 6d 6f 64 75 6c 65 3e 60 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 64 73 63 70 | .`<module>`..Match.based.on.dscp |
| 63a00 | 20 76 61 6c 75 65 20 63 72 69 74 65 72 69 61 2e 20 4d 75 6c 74 69 70 6c 65 20 76 61 6c 75 65 73 | .value.criteria..Multiple.values |
| 63a20 | 20 66 72 6f 6d 20 30 20 74 6f 20 36 33 20 61 6e 64 20 72 61 6e 67 65 73 20 61 72 65 20 73 75 70 | .from.0.to.63.and.ranges.are.sup |
| 63a40 | 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 64 73 63 70 20 76 61 6c 75 | ported..Match.based.on.dscp.valu |
| 63a60 | 65 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 66 72 61 67 6d 65 6e 74 20 63 72 69 74 65 | e..Match.based.on.fragment.crite |
| 63a80 | 72 69 61 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 66 72 61 67 6d 65 6e 74 61 74 69 6f | ria..Match.based.on.fragmentatio |
| 63aa0 | 6e 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 63 6d 70 20 63 6f 64 65 20 61 6e 64 20 | n..Match.based.on.icmp.code.and. |
| 63ac0 | 74 79 70 65 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 63 6d 70 20 74 79 70 65 2d 6e | type..Match.based.on.icmp.type-n |
| 63ae0 | 61 6d 65 20 63 72 69 74 65 72 69 61 2e 20 55 73 65 20 74 61 62 20 66 6f 72 20 69 6e 66 6f 72 6d | ame.criteria..Use.tab.for.inform |
| 63b00 | 61 74 69 6f 6e 20 61 62 6f 75 74 20 77 68 61 74 20 2a 2a 74 79 70 65 2d 6e 61 6d 65 2a 2a 20 63 | ation.about.what.**type-name**.c |
| 63b20 | 72 69 74 65 72 69 61 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 | riteria.are.supported..Match.bas |
| 63b40 | 65 64 20 6f 6e 20 69 63 6d 70 20 74 79 70 65 2d 6e 61 6d 65 2e 20 55 73 65 20 74 61 62 20 66 6f | ed.on.icmp.type-name..Use.tab.fo |
| 63b60 | 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 77 68 61 74 20 2a 2a 74 79 70 65 2d | r.information.about.what.**type- |
| 63b80 | 6e 61 6d 65 2a 2a 20 63 72 69 74 65 72 69 61 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 4d | name**.criteria.are.supported..M |
| 63ba0 | 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 63 6d 70 76 36 20 74 79 70 65 2d 6e 61 6d 65 20 63 | atch.based.on.icmpv6.type-name.c |
| 63bc0 | 72 69 74 65 72 69 61 2e 20 55 73 65 20 74 61 62 20 66 6f 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | riteria..Use.tab.for.information |
| 63be0 | 20 61 62 6f 75 74 20 77 68 61 74 20 2a 2a 74 79 70 65 2d 6e 61 6d 65 2a 2a 20 63 72 69 74 65 72 | .about.what.**type-name**.criter |
| 63c00 | 69 61 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e | ia.are.supported..Match.based.on |
| 63c20 | 20 69 63 6d 70 76 36 20 74 79 70 65 2d 6e 61 6d 65 2e 20 55 73 65 20 74 61 62 20 66 6f 72 20 69 | .icmpv6.type-name..Use.tab.for.i |
| 63c40 | 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 77 68 61 74 20 2a 2a 74 79 70 65 2d 6e 61 6d | nformation.about.what.**type-nam |
| 63c60 | 65 2a 2a 20 63 72 69 74 65 72 69 61 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 | e**.criteria.are.supported..Matc |
| 63c80 | 68 20 62 61 73 65 64 20 6f 6e 20 69 63 6d 70 7c 69 63 6d 70 76 36 20 63 6f 64 65 20 61 6e 64 20 | h.based.on.icmp|icmpv6.code.and. |
| 63ca0 | 74 79 70 65 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 63 6d 70 7c 69 63 6d 70 76 36 | type..Match.based.on.icmp|icmpv6 |
| 63cc0 | 20 74 79 70 65 2d 6e 61 6d 65 20 63 72 69 74 65 72 69 61 2e 20 55 73 65 20 74 61 62 20 66 6f 72 | .type-name.criteria..Use.tab.for |
| 63ce0 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 77 68 61 74 20 2a 2a 74 79 70 65 2d 6e | .information.about.what.**type-n |
| 63d00 | 61 6d 65 2a 2a 20 63 72 69 74 65 72 69 61 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 | ame**.criteria.are.supported..Ma |
| 63d20 | 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 63 6d 70 7c 69 63 6d 70 76 36 20 74 79 70 65 2d 6e 61 | tch.based.on.icmp|icmpv6.type-na |
| 63d40 | 6d 65 20 63 72 69 74 65 72 69 61 2e 20 55 73 65 20 74 61 62 20 66 6f 72 20 69 6e 66 6f 72 6d 61 | me.criteria..Use.tab.for.informa |
| 63d60 | 74 69 6f 6e 20 61 62 6f 75 74 20 77 68 61 74 20 74 79 70 65 2d 6e 61 6d 65 20 63 72 69 74 65 72 | tion.about.what.type-name.criter |
| 63d80 | 69 61 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e | ia.are.supported..Match.based.on |
| 63da0 | 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 2e 20 50 72 65 70 65 6e | .inbound.interface.group..Prepen |
| 63dc0 | 64 69 6e 67 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 | ding.character.``!``.for.inverte |
| 63de0 | 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 69 73 20 61 6c 73 6f 20 73 75 70 70 | d.matching.criteria.is.also.supp |
| 63e00 | 6f 72 74 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 49 46 41 43 45 5f 47 52 4f 55 50 | ortd..For.example.``!IFACE_GROUP |
| 63e20 | 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 | ``.Match.based.on.inbound.interf |
| 63e40 | 61 63 65 20 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 63 68 61 72 61 63 74 65 72 20 | ace.group..Prepending.character. |
| 63e60 | 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 | ``!``.for.inverted.matching.crit |
| 63e80 | 65 72 69 61 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 20 46 6f 72 20 65 78 61 6d | eria.is.also.supported..For.exam |
| 63ea0 | 70 6c 65 20 60 60 21 49 46 41 43 45 5f 47 52 4f 55 50 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 | ple.``!IFACE_GROUP``.Match.based |
| 63ec0 | 20 6f 6e 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 2e 20 57 69 6c 63 61 72 64 20 60 | .on.inbound.interface..Wilcard.` |
| 63ee0 | 60 2a 60 60 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 | `*``.can.be.used..For.example:.` |
| 63f00 | 60 65 74 68 32 2a 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 6e 62 6f 75 6e 64 20 | `eth2*``.Match.based.on.inbound. |
| 63f20 | 69 6e 74 65 72 66 61 63 65 2e 20 57 69 6c 63 61 72 64 20 60 60 2a 60 60 20 63 61 6e 20 62 65 20 | interface..Wilcard.``*``.can.be. |
| 63f40 | 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 60 65 74 68 32 2a 60 60 2e 20 50 72 | used..For.example:.``eth2*``..Pr |
| 63f60 | 65 70 65 6e 64 69 6e 67 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 | epending.character.``!``.for.inv |
| 63f80 | 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 69 73 20 61 6c 73 6f 20 | erted.matching.criteria.is.also. |
| 63fa0 | 73 75 70 70 6f 72 74 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 65 74 68 32 60 60 00 | supportd..For.example.``!eth2``. |
| 63fc0 | 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 | Match.based.on.inbound.interface |
| 63fe0 | 2e 20 57 69 6c 64 63 61 72 64 20 60 60 2a 60 60 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 46 6f | ..Wildcard.``*``.can.be.used..Fo |
| 64000 | 72 20 65 78 61 6d 70 6c 65 3a 20 60 60 65 74 68 32 2a 60 60 2e 20 50 72 65 70 65 6e 64 69 6e 67 | r.example:.``eth2*``..Prepending |
| 64020 | 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 | .character.``!``.for.inverted.ma |
| 64040 | 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 | tching.criteria.is.also.supporte |
| 64060 | 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 65 74 68 32 60 60 00 4d 61 74 63 68 20 62 | d..For.example.``!eth2``.Match.b |
| 64080 | 61 73 65 64 20 6f 6e 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 2e 20 57 69 6c 64 63 | ased.on.inbound.interface..Wildc |
| 640a0 | 61 72 64 20 60 60 2a 60 60 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 | ard.``*``.can.be.used..For.examp |
| 640c0 | 6c 65 3a 20 60 60 65 74 68 32 2a 60 60 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 | le:.``eth2*``..Prepending.the.ch |
| 640e0 | 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 | aracter.``!``.to.invert.the.crit |
| 64100 | 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e | eria.to.match.is.also.supported. |
| 64120 | 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 65 74 68 32 60 60 00 4d 61 74 63 68 20 62 61 73 | .For.example.``!eth2``.Match.bas |
| 64140 | 65 64 20 6f 6e 20 69 6e 62 6f 75 6e 64 2f 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 | ed.on.inbound/outbound.interface |
| 64160 | 2e 20 57 69 6c 63 61 72 64 20 60 60 2a 60 60 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 46 6f 72 | ..Wilcard.``*``.can.be.used..For |
| 64180 | 20 65 78 61 6d 70 6c 65 3a 20 60 60 65 74 68 32 2a 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 | .example:.``eth2*``.Match.based. |
| 641a0 | 6f 6e 20 69 70 73 65 63 20 63 72 69 74 65 72 69 61 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f | on.ipsec.criteria..Match.based.o |
| 641c0 | 6e 20 69 70 73 65 63 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 6e 61 74 20 63 6f 6e 6e | n.ipsec..Match.based.on.nat.conn |
| 641e0 | 65 63 74 69 6f 6e 20 73 74 61 74 75 73 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 6f 75 | ection.status..Match.based.on.ou |
| 64200 | 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 | tbound.interface.group..Prependi |
| 64220 | 6e 67 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 | ng.character.``!``.for.inverted. |
| 64240 | 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 | matching.criteria.is.also.suppor |
| 64260 | 74 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 49 46 41 43 45 5f 47 52 4f 55 50 60 60 | td..For.example.``!IFACE_GROUP`` |
| 64280 | 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 | .Match.based.on.outbound.interfa |
| 642a0 | 63 65 20 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 63 68 61 72 61 63 74 65 72 20 60 | ce.group..Prepending.character.` |
| 642c0 | 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 | `!``.for.inverted.matching.crite |
| 642e0 | 72 69 61 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 | ria.is.also.supported..For.examp |
| 64300 | 6c 65 20 60 60 21 49 46 41 43 45 5f 47 52 4f 55 50 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 | le.``!IFACE_GROUP``.Match.based. |
| 64320 | 6f 6e 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 2e 20 50 72 65 | on.outbound.interface.group..Pre |
| 64340 | 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 | pending.the.character.``!``.to.i |
| 64360 | 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 | nvert.the.criteria.to.match.is.a |
| 64380 | 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 49 46 | lso.supported..For.example.``!IF |
| 643a0 | 41 43 45 5f 47 52 4f 55 50 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 6f 75 74 62 6f | ACE_GROUP``.Match.based.on.outbo |
| 643c0 | 75 6e 64 20 69 6e 74 65 72 66 61 63 65 2e 20 57 69 6c 63 61 72 64 20 60 60 2a 60 60 20 63 61 6e | und.interface..Wilcard.``*``.can |
| 643e0 | 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 60 65 74 68 32 2a 60 60 | .be.used..For.example:.``eth2*`` |
| 64400 | 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 | .Match.based.on.outbound.interfa |
| 64420 | 63 65 2e 20 57 69 6c 63 61 72 64 20 60 60 2a 60 60 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 46 | ce..Wilcard.``*``.can.be.used..F |
| 64440 | 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 60 65 74 68 32 2a 60 60 2e 20 50 72 65 70 65 6e 64 69 6e | or.example:.``eth2*``..Prependin |
| 64460 | 67 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d | g.character.``!``.for.inverted.m |
| 64480 | 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 | atching.criteria.is.also.support |
| 644a0 | 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 65 74 68 32 60 60 00 4d 61 74 63 68 20 62 | d..For.example.``!eth2``.Match.b |
| 644c0 | 61 73 65 64 20 6f 6e 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 2e 20 57 69 6c 64 | ased.on.outbound.interface..Wild |
| 644e0 | 63 61 72 64 20 60 60 2a 60 60 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d | card.``*``.can.be.used..For.exam |
| 64500 | 70 6c 65 3a 20 60 60 65 74 68 32 2a 60 60 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 63 68 61 72 61 | ple:.``eth2*``..Prepending.chara |
| 64520 | 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 | cter.``!``.for.inverted.matching |
| 64540 | 20 63 72 69 74 65 72 69 61 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 20 46 6f 72 | .criteria.is.also.supported..For |
| 64560 | 20 65 78 61 6d 70 6c 65 20 60 60 21 65 74 68 32 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f | .example.``!eth2``.Match.based.o |
| 64580 | 6e 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 2e 20 57 69 6c 64 63 61 72 64 20 60 | n.outbound.interface..Wildcard.` |
| 645a0 | 60 2a 60 60 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 | `*``.can.be.used..For.example:.` |
| 645c0 | 60 65 74 68 32 2a 60 60 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 61 72 61 63 74 | `eth2*``..Prepending.the.charact |
| 645e0 | 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 65 72 69 61 20 | er.``!``.to.invert.the.criteria. |
| 64600 | 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 20 46 6f 72 20 | to.match.is.also.supported..For. |
| 64620 | 65 78 61 6d 70 6c 65 20 60 60 21 65 74 68 32 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e | example.``!eth2``.Match.based.on |
| 64640 | 20 70 61 63 6b 65 74 20 6c 65 6e 67 74 68 20 63 72 69 74 65 72 69 61 2e 20 4d 75 6c 74 69 70 6c | .packet.length.criteria..Multipl |
| 64660 | 65 20 76 61 6c 75 65 73 20 66 72 6f 6d 20 31 20 74 6f 20 36 35 35 33 35 20 61 6e 64 20 72 61 6e | e.values.from.1.to.65535.and.ran |
| 64680 | 67 65 73 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f | ges.are.supported..Match.based.o |
| 646a0 | 6e 20 70 61 63 6b 65 74 20 74 79 70 65 20 63 72 69 74 65 72 69 61 2e 00 4d 61 74 63 68 20 62 61 | n.packet.type.criteria..Match.ba |
| 646c0 | 73 65 64 20 6f 6e 20 70 72 6f 74 6f 63 6f 6c 20 6e 75 6d 62 65 72 20 6f 72 20 6e 61 6d 65 20 61 | sed.on.protocol.number.or.name.a |
| 646e0 | 73 20 64 65 66 69 6e 65 64 20 69 6e 20 60 60 2f 65 74 63 2f 70 72 6f 74 6f 63 6f 6c 73 60 60 2e | s.defined.in.``/etc/protocols``. |
| 64700 | 20 53 70 65 63 69 61 6c 20 6e 61 6d 65 73 20 61 72 65 20 60 60 61 6c 6c 60 60 20 66 6f 72 20 61 | .Special.names.are.``all``.for.a |
| 64720 | 6c 6c 20 70 72 6f 74 6f 63 6f 6c 73 20 61 6e 64 20 60 60 74 63 70 5f 75 64 70 60 60 20 66 6f 72 | ll.protocols.and.``tcp_udp``.for |
| 64740 | 20 74 63 70 20 61 6e 64 20 75 64 70 20 62 61 73 65 64 20 70 61 63 6b 65 74 73 2e 20 54 68 65 20 | .tcp.and.udp.based.packets..The. |
| 64760 | 60 60 21 60 60 20 6e 65 67 61 74 65 73 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 70 72 6f 74 6f | ``!``.negates.the.selected.proto |
| 64780 | 63 6f 6c 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 72 65 63 65 6e 74 6c 79 20 73 65 65 | col..Match.based.on.recently.see |
| 647a0 | 6e 20 73 6f 75 72 63 65 73 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 73 6f 75 72 63 65 | n.sources..Match.based.on.source |
| 647c0 | 20 61 6e 64 2f 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2e 20 54 68 69 | .and/or.destination.address..Thi |
| 647e0 | 73 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 67 72 6f 75 | s.is.similar.to.the.network.grou |
| 64800 | 70 73 20 70 61 72 74 2c 20 62 75 74 20 68 65 72 65 20 79 6f 75 20 61 72 65 20 61 62 6c 65 20 74 | ps.part,.but.here.you.are.able.t |
| 64820 | 6f 20 6e 65 67 61 74 65 20 74 68 65 20 6d 61 74 63 68 69 6e 67 20 61 64 64 72 65 73 73 65 73 2e | o.negate.the.matching.addresses. |
| 64840 | 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 45 74 68 65 72 6e 65 74 20 74 79 70 | .Match.based.on.the.Ethernet.typ |
| 64860 | 65 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 20 77 68 65 6e 20 69 74 20 69 73 20 56 4c 41 4e 20 | e.of.the.packet.when.it.is.VLAN. |
| 64880 | 74 61 67 67 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 45 74 68 65 72 | tagged..Match.based.on.the.Ether |
| 648a0 | 6e 65 74 20 74 79 70 65 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 2e 00 4d 61 74 63 68 20 62 61 | net.type.of.the.packet..Match.ba |
| 648c0 | 73 65 64 20 6f 6e 20 74 68 65 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 20 67 72 6f | sed.on.the.inbound.interface.gro |
| 648e0 | 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 61 72 61 63 74 65 72 20 60 60 21 | up..Prepending.the.character.``! |
| 64900 | 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 | ``.to.invert.the.criteria.to.mat |
| 64920 | 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c | ch.is.also.supported..For.exampl |
| 64940 | 65 20 60 60 21 49 46 41 43 45 5f 47 52 4f 55 50 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f | e.``!IFACE_GROUP``.Match.based.o |
| 64960 | 6e 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 61 76 65 72 61 67 65 20 72 61 74 65 2c 20 73 70 65 63 | n.the.maximum.average.rate,.spec |
| 64980 | 69 66 69 65 64 20 61 73 20 2a 2a 69 6e 74 65 67 65 72 2f 75 6e 69 74 2a 2a 2e 20 46 6f 72 20 65 | ified.as.**integer/unit**..For.e |
| 649a0 | 78 61 6d 70 6c 65 20 2a 2a 35 2f 6d 69 6e 75 74 65 73 2a 2a 00 4d 61 74 63 68 20 62 61 73 65 64 | xample.**5/minutes**.Match.based |
| 649c0 | 20 6f 6e 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 74 | .on.the.maximum.number.of.packet |
| 649e0 | 73 20 74 6f 20 61 6c 6c 6f 77 20 69 6e 20 65 78 63 65 73 73 20 6f 66 20 72 61 74 65 2e 00 4d 61 | s.to.allow.in.excess.of.rate..Ma |
| 64a00 | 74 63 68 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 70 61 63 6b 65 74 20 6c 65 6e 67 74 68 2e 20 | tch.based.on.the.packet.length.. |
| 64a20 | 4d 75 6c 74 69 70 6c 65 20 76 61 6c 75 65 73 20 66 72 6f 6d 20 31 20 74 6f 20 36 35 35 33 35 20 | Multiple.values.from.1.to.65535. |
| 64a40 | 61 6e 64 20 72 61 6e 67 65 73 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 | and.ranges.are.supported..Match. |
| 64a60 | 62 61 73 65 64 20 6f 6e 20 74 68 65 20 70 61 63 6b 65 74 20 74 79 70 65 2e 00 4d 61 74 63 68 20 | based.on.the.packet.type..Match. |
| 64a80 | 62 61 73 65 64 20 6f 6e 20 76 6c 61 6e 20 49 44 2e 20 52 61 6e 67 65 20 69 73 20 61 6c 73 6f 20 | based.on.vlan.ID..Range.is.also. |
| 64aa0 | 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 76 6c 61 6e 20 70 | supported..Match.based.on.vlan.p |
| 64ac0 | 72 69 6f 72 69 74 79 28 70 63 70 29 2e 20 52 61 6e 67 65 20 69 73 20 61 6c 73 6f 20 73 75 70 70 | riority(pcp)..Range.is.also.supp |
| 64ae0 | 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 73 20 6f 6e 20 72 65 63 65 6e 74 6c 79 20 73 | orted..Match.bases.on.recently.s |
| 64b00 | 65 65 6e 20 73 6f 75 72 63 65 73 2e 00 4d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 65 | een.sources..Match.criteria.base |
| 64b20 | 64 20 6f 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6d 61 72 6b 2e 00 4d 61 74 63 68 20 63 72 69 74 | d.on.connection.mark..Match.crit |
| 64b40 | 65 72 69 61 20 62 61 73 65 64 20 6f 6e 20 6e 61 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 | eria.based.on.nat.connection.sta |
| 64b60 | 74 75 73 2e 00 4d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 65 64 20 6f 6e 20 73 6f 75 | tus..Match.criteria.based.on.sou |
| 64b80 | 72 63 65 20 61 6e 64 2f 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2e 20 | rce.and/or.destination.address.. |
| 64ba0 | 54 68 69 73 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 67 | This.is.similar.to.the.network.g |
| 64bc0 | 72 6f 75 70 73 20 70 61 72 74 2c 20 62 75 74 20 68 65 72 65 20 79 6f 75 20 61 72 65 20 61 62 6c | roups.part,.but.here.you.are.abl |
| 64be0 | 65 20 74 6f 20 6e 65 67 61 74 65 20 74 68 65 20 6d 61 74 63 68 69 6e 67 20 61 64 64 72 65 73 73 | e.to.negate.the.matching.address |
| 64c00 | 65 73 2e 00 4d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 65 64 20 6f 6e 20 73 6f 75 72 | es..Match.criteria.based.on.sour |
| 64c20 | 63 65 20 61 6e 64 2f 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6d 61 63 2d 61 64 64 72 65 73 | ce.and/or.destination.mac-addres |
| 64c40 | 73 2e 00 4d 61 74 63 68 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 00 4d 61 74 63 68 20 66 69 72 65 77 | s..Match.domain.name.Match.firew |
| 64c60 | 61 6c 6c 20 6d 61 72 6b 20 76 61 6c 75 65 00 4d 61 74 63 68 20 68 6f 70 2d 6c 69 6d 69 74 20 70 | all.mark.value.Match.hop-limit.p |
| 64c80 | 61 72 61 6d 65 74 65 72 2c 20 77 68 65 72 65 20 27 65 71 27 20 73 74 61 6e 64 73 20 66 6f 72 20 | arameter,.where.'eq'.stands.for. |
| 64ca0 | 27 65 71 75 61 6c 27 3b 20 27 67 74 27 20 73 74 61 6e 64 73 20 66 6f 72 20 27 67 72 65 61 74 65 | 'equal';.'gt'.stands.for.'greate |
| 64cc0 | 72 20 74 68 61 6e 27 2c 20 61 6e 64 20 27 6c 74 27 20 73 74 61 6e 64 73 20 66 6f 72 20 27 6c 65 | r.than',.and.'lt'.stands.for.'le |
| 64ce0 | 73 73 20 74 68 61 6e 27 2e 00 4d 61 74 63 68 20 6c 6f 63 61 6c 20 70 72 65 66 65 72 65 6e 63 65 | ss.than'..Match.local.preference |
| 64d00 | 2e 00 4d 61 74 63 68 20 72 6f 75 74 65 20 6d 65 74 72 69 63 2e 00 4d 61 74 63 68 20 74 68 65 20 | ..Match.route.metric..Match.the. |
| 64d20 | 68 6f 70 2d 6c 69 6d 69 74 20 70 61 72 61 6d 65 74 65 72 2c 20 77 68 65 72 65 20 27 65 71 27 20 | hop-limit.parameter,.where.'eq'. |
| 64d40 | 73 74 61 6e 64 73 20 66 6f 72 20 27 65 71 75 61 6c 27 3b 20 27 67 74 27 20 73 74 61 6e 64 73 20 | stands.for.'equal';.'gt'.stands. |
| 64d60 | 66 6f 72 20 27 67 72 65 61 74 65 72 20 74 68 61 6e 27 2c 20 61 6e 64 20 27 6c 74 27 20 73 74 61 | for.'greater.than',.and.'lt'.sta |
| 64d80 | 6e 64 73 20 66 6f 72 20 27 6c 65 73 73 20 74 68 61 6e 27 2e 00 4d 61 74 63 68 20 74 68 65 20 74 | nds.for.'less.than'..Match.the.t |
| 64da0 | 69 6d 65 20 74 6f 20 6c 69 76 65 20 70 61 72 61 6d 65 74 65 72 2c 20 77 68 65 72 65 20 27 65 71 | ime.to.live.parameter,.where.'eq |
| 64dc0 | 27 20 73 74 61 6e 64 73 20 66 6f 72 20 27 65 71 75 61 6c 27 3b 20 27 67 74 27 20 73 74 61 6e 64 | '.stands.for.'equal';.'gt'.stand |
| 64de0 | 73 20 66 6f 72 20 27 67 72 65 61 74 65 72 20 74 68 61 6e 27 2c 20 61 6e 64 20 27 6c 74 27 20 73 | s.for.'greater.than',.and.'lt'.s |
| 64e00 | 74 61 6e 64 73 20 66 6f 72 20 27 6c 65 73 73 20 74 68 61 6e 27 2e 00 4d 61 74 63 68 20 74 69 6d | tands.for.'less.than'..Match.tim |
| 64e20 | 65 20 74 6f 20 6c 69 76 65 20 70 61 72 61 6d 65 74 65 72 2c 20 77 68 65 72 65 20 27 65 71 27 20 | e.to.live.parameter,.where.'eq'. |
| 64e40 | 73 74 61 6e 64 73 20 66 6f 72 20 27 65 71 75 61 6c 27 3b 20 27 67 74 27 20 73 74 61 6e 64 73 20 | stands.for.'equal';.'gt'.stands. |
| 64e60 | 66 6f 72 20 27 67 72 65 61 74 65 72 20 74 68 61 6e 27 2c 20 61 6e 64 20 27 6c 74 27 20 73 74 61 | for.'greater.than',.and.'lt'.sta |
| 64e80 | 6e 64 73 20 66 6f 72 20 27 6c 65 73 73 20 74 68 61 6e 27 2e 00 4d 61 74 63 68 20 77 68 65 6e 20 | nds.for.'less.than'..Match.when. |
| 64ea0 | 27 63 6f 75 6e 74 27 20 61 6d 6f 75 6e 74 20 6f 66 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 61 72 | 'count'.amount.of.connections.ar |
| 64ec0 | 65 20 73 65 65 6e 20 77 69 74 68 69 6e 20 27 74 69 6d 65 27 2e 20 54 68 65 73 65 20 6d 61 74 63 | e.seen.within.'time'..These.matc |
| 64ee0 | 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 62 6c 6f | hing.criteria.can.be.used.to.blo |
| 64f00 | 63 6b 20 62 72 75 74 65 2d 66 6f 72 63 65 20 61 74 74 65 6d 70 74 73 2e 00 4d 61 74 63 68 69 6e | ck.brute-force.attempts..Matchin |
| 64f20 | 67 20 63 72 69 74 65 72 69 61 00 4d 61 74 63 68 69 6e 67 20 74 72 61 66 66 69 63 00 4d 61 78 69 | g.criteria.Matching.traffic.Maxi |
| 64f40 | 6d 75 6d 20 41 2d 4d 53 44 55 20 6c 65 6e 67 74 68 20 33 38 33 39 20 28 64 65 66 61 75 6c 74 29 | mum.A-MSDU.length.3839.(default) |
| 64f60 | 20 6f 72 20 37 39 33 35 20 6f 63 74 65 74 73 00 4d 61 78 69 6d 75 6d 20 54 72 61 6e 73 6d 69 73 | .or.7935.octets.Maximum.Transmis |
| 64f80 | 73 69 6f 6e 20 55 6e 69 74 20 28 4d 54 55 29 20 28 64 65 66 61 75 6c 74 3a 20 2a 2a 31 34 33 36 | sion.Unit.(MTU).(default:.**1436 |
| 64fa0 | 2a 2a 29 00 4d 61 78 69 6d 75 6d 20 54 72 61 6e 73 6d 69 73 73 69 6f 6e 20 55 6e 69 74 20 28 4d | **).Maximum.Transmission.Unit.(M |
| 64fc0 | 54 55 29 20 28 64 65 66 61 75 6c 74 3a 20 2a 2a 31 34 39 32 2a 2a 29 00 4d 61 78 69 6d 75 6d 20 | TU).(default:.**1492**).Maximum. |
| 64fe0 | 54 72 61 6e 73 6d 69 73 73 69 6f 6e 20 55 6e 69 74 20 28 4d 54 55 29 20 28 64 65 66 61 75 6c 74 | Transmission.Unit.(MTU).(default |
| 65000 | 3a 20 2a 2a 31 35 30 30 2a 2a 29 00 4d 61 78 69 6d 75 6d 20 61 63 63 65 70 74 65 64 20 63 6f 6e | :.**1500**).Maximum.accepted.con |
| 65020 | 6e 65 63 74 69 6f 6e 20 72 61 74 65 20 28 65 2e 67 2e 20 31 2f 6d 69 6e 2c 20 36 30 2f 73 65 63 | nection.rate.(e.g..1/min,.60/sec |
| 65040 | 29 00 4d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 44 4e 53 20 63 61 63 68 65 20 65 6e | ).Maximum.number.of.DNS.cache.en |
| 65060 | 74 72 69 65 73 2e 20 31 20 6d 69 6c 6c 69 6f 6e 20 70 65 72 20 43 50 55 20 63 6f 72 65 20 77 69 | tries..1.million.per.CPU.core.wi |
| 65080 | 6c 6c 20 67 65 6e 65 72 61 6c 6c 79 20 73 75 66 66 69 63 65 20 66 6f 72 20 6d 6f 73 74 20 69 6e | ll.generally.suffice.for.most.in |
| 650a0 | 73 74 61 6c 6c 61 74 69 6f 6e 73 2e 00 4d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 49 | stallations..Maximum.number.of.I |
| 650c0 | 50 76 34 20 6e 61 6d 65 73 65 72 76 65 72 73 00 4d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f | Pv4.nameservers.Maximum.number.o |
| 650e0 | 66 20 61 75 74 68 65 6e 74 69 63 61 74 6f 72 20 70 72 6f 63 65 73 73 65 73 20 74 6f 20 73 70 61 | f.authenticator.processes.to.spa |
| 65100 | 77 6e 2e 20 49 66 20 79 6f 75 20 73 74 61 72 74 20 74 6f 6f 20 66 65 77 20 53 71 75 69 64 20 77 | wn..If.you.start.too.few.Squid.w |
| 65120 | 69 6c 6c 20 68 61 76 65 20 74 6f 20 77 61 69 74 20 66 6f 72 20 74 68 65 6d 20 74 6f 20 70 72 6f | ill.have.to.wait.for.them.to.pro |
| 65140 | 63 65 73 73 20 61 20 62 61 63 6b 6c 6f 67 20 6f 66 20 63 72 65 64 65 6e 74 69 61 6c 20 76 65 72 | cess.a.backlog.of.credential.ver |
| 65160 | 69 66 69 63 61 74 69 6f 6e 73 2c 20 73 6c 6f 77 69 6e 67 20 69 74 20 64 6f 77 6e 2e 20 57 68 65 | ifications,.slowing.it.down..Whe |
| 65180 | 6e 20 70 61 73 73 77 6f 72 64 20 76 65 72 69 66 69 63 61 74 69 6f 6e 73 20 61 72 65 20 64 6f 6e | n.password.verifications.are.don |
| 651a0 | 65 20 76 69 61 20 61 20 28 73 6c 6f 77 29 20 6e 65 74 77 6f 72 6b 20 79 6f 75 20 61 72 65 20 6c | e.via.a.(slow).network.you.are.l |
| 651c0 | 69 6b 65 6c 79 20 74 6f 20 6e 65 65 64 20 6c 6f 74 73 20 6f 66 20 61 75 74 68 65 6e 74 69 63 61 | ikely.to.need.lots.of.authentica |
| 651e0 | 74 6f 72 20 70 72 6f 63 65 73 73 65 73 2e 00 4d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 | tor.processes..Maximum.number.of |
| 65200 | 20 63 6f 6e 63 75 72 72 65 6e 74 20 73 65 73 73 69 6f 6e 20 73 74 61 72 74 20 61 74 74 65 6d 70 | .concurrent.session.start.attemp |
| 65220 | 74 73 00 4d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 73 74 61 74 69 6f 6e 73 20 61 6c | ts.Maximum.number.of.stations.al |
| 65240 | 6c 6f 77 65 64 20 69 6e 20 73 74 61 74 69 6f 6e 20 74 61 62 6c 65 2e 20 4e 65 77 20 73 74 61 74 | lowed.in.station.table..New.stat |
| 65260 | 69 6f 6e 73 20 77 69 6c 6c 20 62 65 20 72 65 6a 65 63 74 65 64 20 61 66 74 65 72 20 74 68 65 20 | ions.will.be.rejected.after.the. |
| 65280 | 73 74 61 74 69 6f 6e 20 74 61 62 6c 65 20 69 73 20 66 75 6c 6c 2e 20 49 45 45 45 20 38 30 32 2e | station.table.is.full..IEEE.802. |
| 652a0 | 31 31 20 68 61 73 20 61 20 6c 69 6d 69 74 20 6f 66 20 32 30 30 37 20 64 69 66 66 65 72 65 6e 74 | 11.has.a.limit.of.2007.different |
| 652c0 | 20 61 73 73 6f 63 69 61 74 69 6f 6e 20 49 44 73 2c 20 73 6f 20 74 68 69 73 20 6e 75 6d 62 65 72 | .association.IDs,.so.this.number |
| 652e0 | 20 73 68 6f 75 6c 64 20 6e 6f 74 20 62 65 20 6c 61 72 67 65 72 20 74 68 61 6e 20 74 68 61 74 2e | .should.not.be.larger.than.that. |
| 65300 | 00 4d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 74 69 6d 65 73 20 61 6e 20 65 78 70 69 | .Maximum.number.of.times.an.expi |
| 65320 | 72 65 64 20 72 65 63 6f 72 64 e2 80 99 73 20 54 54 4c 20 69 73 20 65 78 74 65 6e 64 65 64 20 62 | red.record...s.TTL.is.extended.b |
| 65340 | 79 20 33 30 73 20 77 68 65 6e 20 73 65 72 76 69 6e 67 20 73 74 61 6c 65 2e 20 45 78 74 65 6e 73 | y.30s.when.serving.stale..Extens |
| 65360 | 69 6f 6e 20 6f 6e 6c 79 20 6f 63 63 75 72 73 20 69 66 20 61 20 72 65 63 6f 72 64 20 63 61 6e 6e | ion.only.occurs.if.a.record.cann |
| 65380 | 6f 74 20 62 65 20 72 65 66 72 65 73 68 65 64 2e 20 41 20 76 61 6c 75 65 20 6f 66 20 30 20 6d 65 | ot.be.refreshed..A.value.of.0.me |
| 653a0 | 61 6e 73 20 74 68 65 20 53 65 72 76 65 20 53 74 61 6c 65 20 6d 65 63 68 61 6e 69 73 6d 20 69 73 | ans.the.Serve.Stale.mechanism.is |
| 653c0 | 20 6e 6f 74 20 75 73 65 64 2e 20 54 6f 20 61 6c 6c 6f 77 20 72 65 63 6f 72 64 73 20 62 65 63 6f | .not.used..To.allow.records.beco |
| 653e0 | 6d 69 6e 67 20 73 74 61 6c 65 20 74 6f 20 62 65 20 73 65 72 76 65 64 20 66 6f 72 20 61 6e 20 68 | ming.stale.to.be.served.for.an.h |
| 65400 | 6f 75 72 2c 20 75 73 65 20 61 20 76 61 6c 75 65 20 6f 66 20 31 32 30 2e 00 4d 61 78 69 6d 75 6d | our,.use.a.value.of.120..Maximum |
| 65420 | 20 6e 75 6d 62 65 72 20 6f 66 20 74 72 69 65 73 20 74 6f 20 73 65 6e 64 20 41 63 63 65 73 73 2d | .number.of.tries.to.send.Access- |
| 65440 | 52 65 71 75 65 73 74 2f 41 63 63 6f 75 6e 74 69 6e 67 2d 52 65 71 75 65 73 74 20 71 75 65 72 69 | Request/Accounting-Request.queri |
| 65460 | 65 73 00 4d 65 64 69 75 6d 00 4d 65 6d 62 65 72 20 49 6e 74 65 72 66 61 63 65 73 00 4d 65 6d 62 | es.Medium.Member.Interfaces.Memb |
| 65480 | 65 72 20 69 6e 74 65 72 66 61 63 65 73 20 60 65 74 68 31 60 20 61 6e 64 20 56 4c 41 4e 20 31 30 | er.interfaces.`eth1`.and.VLAN.10 |
| 654a0 | 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 60 65 74 68 32 60 00 4d 65 73 73 61 67 65 73 20 67 65 | .on.interface.`eth2`.Messages.ge |
| 654c0 | 6e 65 72 61 74 65 64 20 69 6e 74 65 72 6e 61 6c 6c 79 20 62 79 20 73 79 73 6c 6f 67 64 00 4d 65 | nerated.internally.by.syslogd.Me |
| 654e0 | 74 72 69 73 20 76 65 72 73 69 6f 6e 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 60 60 32 | tris.version,.the.default.is.``2 |
| 65500 | 60 60 00 4d 69 63 72 6f 73 6f 66 74 20 57 69 6e 64 6f 77 73 20 28 31 30 2b 29 00 4d 69 63 72 6f | ``.Microsoft.Windows.(10+).Micro |
| 65520 | 73 6f 66 74 20 57 69 6e 64 6f 77 73 20 65 78 70 65 63 74 73 20 74 68 65 20 73 65 72 76 65 72 20 | soft.Windows.expects.the.server. |
| 65540 | 6e 61 6d 65 20 74 6f 20 62 65 20 61 6c 73 6f 20 75 73 65 64 20 69 6e 20 74 68 65 20 73 65 72 76 | name.to.be.also.used.in.the.serv |
| 65560 | 65 72 27 73 20 63 65 72 74 69 66 69 63 61 74 65 20 63 6f 6d 6d 6f 6e 20 6e 61 6d 65 2c 20 73 6f | er's.certificate.common.name,.so |
| 65580 | 20 69 74 27 73 20 62 65 73 74 20 74 6f 20 75 73 65 20 74 68 69 73 20 44 4e 53 20 6e 61 6d 65 20 | .it's.best.to.use.this.DNS.name. |
| 655a0 | 66 6f 72 20 79 6f 75 72 20 56 50 4e 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 4d 69 6e 20 61 6e 64 | for.your.VPN.connection..Min.and |
| 655c0 | 20 6d 61 78 20 69 6e 74 65 72 76 61 6c 73 20 62 65 74 77 65 65 6e 20 75 6e 73 6f 6c 69 63 69 74 | .max.intervals.between.unsolicit |
| 655e0 | 65 64 20 6d 75 6c 74 69 63 61 73 74 20 52 41 73 00 4d 69 6e 69 6d 75 6d 20 66 69 72 65 77 61 6c | ed.multicast.RAs.Minimum.firewal |
| 65600 | 6c 20 72 75 6c 65 73 65 74 20 69 73 20 70 72 6f 76 69 64 65 64 2c 20 77 68 69 63 68 20 69 6e 63 | l.ruleset.is.provided,.which.inc |
| 65620 | 6c 75 64 65 73 20 73 6f 6d 65 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 61 6e 64 20 | ludes.some.filtering.rules,.and. |
| 65640 | 61 70 70 72 6f 70 72 69 61 74 65 20 72 75 6c 65 73 20 66 6f 72 20 75 73 69 6e 67 20 66 6c 6f 77 | appropriate.rules.for.using.flow |
| 65660 | 74 61 62 6c 65 20 6f 66 66 6c 6f 61 64 20 63 61 70 61 62 69 6c 69 74 69 65 73 2e 00 4d 69 6e 75 | table.offload.capabilities..Minu |
| 65680 | 6d 75 6d 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 65 74 20 69 73 20 70 72 6f 76 69 64 65 64 | mum.firewall.ruleset.is.provided |
| 656a0 | 2c 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 73 20 73 6f 6d 65 20 66 69 6c 74 65 72 69 6e 67 20 | ,.which.includes.some.filtering. |
| 656c0 | 72 75 6c 65 73 2c 20 61 6e 64 20 61 70 70 72 6f 70 69 61 74 65 20 72 75 6c 65 73 20 66 6f 72 20 | rules,.and.appropiate.rules.for. |
| 656e0 | 75 73 69 6e 67 20 66 6c 6f 77 74 61 62 6c 65 20 6f 66 66 6c 6f 61 64 20 63 61 70 61 62 69 6c 69 | using.flowtable.offload.capabili |
| 65700 | 74 69 65 73 2e 00 4d 6f 64 69 66 79 20 74 68 65 20 6a 6f 69 6e 2f 70 72 75 6e 65 20 69 6e 74 65 | ties..Modify.the.join/prune.inte |
| 65720 | 72 76 61 6c 20 74 68 61 74 20 50 49 4d 20 75 73 65 73 20 74 6f 20 74 68 65 20 6e 65 77 20 76 61 | rval.that.PIM.uses.to.the.new.va |
| 65740 | 6c 75 65 2e 20 54 69 6d 65 20 69 73 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 73 65 63 6f 6e 64 | lue..Time.is.specified.in.second |
| 65760 | 73 2e 00 4d 6f 64 69 66 79 20 74 68 65 20 74 69 6d 65 20 6f 75 74 20 76 61 6c 75 65 20 66 6f 72 | s..Modify.the.time.out.value.for |
| 65780 | 20 61 20 53 2c 47 20 66 6c 6f 77 20 66 72 6f 6d 20 31 2d 36 35 35 33 35 20 73 65 63 6f 6e 64 73 | .a.S,G.flow.from.1-65535.seconds |
| 657a0 | 20 61 74 20 3a 61 62 62 72 3a 60 52 50 20 28 52 65 6e 64 65 7a 76 6f 75 73 20 50 6f 69 6e 74 29 | .at.:abbr:`RP.(Rendezvous.Point) |
| 657c0 | 60 2e 20 54 68 65 20 6e 6f 72 6d 61 6c 20 6b 65 65 70 61 6c 69 76 65 20 70 65 72 69 6f 64 20 66 | `..The.normal.keepalive.period.f |
| 657e0 | 6f 72 20 74 68 65 20 4b 41 54 28 53 2c 47 29 20 64 65 66 61 75 6c 74 73 20 74 6f 20 32 31 30 20 | or.the.KAT(S,G).defaults.to.210. |
| 65800 | 73 65 63 6f 6e 64 73 2e 20 48 6f 77 65 76 65 72 2c 20 61 74 20 74 68 65 20 3a 61 62 62 72 3a 60 | seconds..However,.at.the.:abbr:` |
| 65820 | 52 50 20 28 52 65 6e 64 65 7a 76 6f 75 73 20 50 6f 69 6e 74 29 60 2c 20 74 68 65 20 6b 65 65 70 | RP.(Rendezvous.Point)`,.the.keep |
| 65840 | 61 6c 69 76 65 20 70 65 72 69 6f 64 20 6d 75 73 74 20 62 65 20 61 74 20 6c 65 61 73 74 20 74 68 | alive.period.must.be.at.least.th |
| 65860 | 65 20 52 65 67 69 73 74 65 72 5f 53 75 70 70 72 65 73 73 69 6f 6e 5f 54 69 6d 65 2c 20 6f 72 20 | e.Register_Suppression_Time,.or. |
| 65880 | 74 68 65 20 52 50 20 6d 61 79 20 74 69 6d 65 20 6f 75 74 20 74 68 65 20 28 53 2c 47 29 20 73 74 | the.RP.may.time.out.the.(S,G).st |
| 658a0 | 61 74 65 20 62 65 66 6f 72 65 20 74 68 65 20 6e 65 78 74 20 4e 75 6c 6c 2d 52 65 67 69 73 74 65 | ate.before.the.next.Null-Registe |
| 658c0 | 72 20 61 72 72 69 76 65 73 2e 20 54 68 75 73 2c 20 74 68 65 20 4b 41 54 28 53 2c 47 29 20 69 73 | r.arrives..Thus,.the.KAT(S,G).is |
| 658e0 | 20 73 65 74 20 74 6f 20 6d 61 78 28 4b 65 65 70 61 6c 69 76 65 5f 50 65 72 69 6f 64 2c 20 52 50 | .set.to.max(Keepalive_Period,.RP |
| 65900 | 5f 4b 65 65 70 61 6c 69 76 65 5f 50 65 72 69 6f 64 29 20 77 68 65 6e 20 61 20 52 65 67 69 73 74 | _Keepalive_Period).when.a.Regist |
| 65920 | 65 72 2d 53 74 6f 70 20 69 73 20 73 65 6e 74 2e 00 4d 6f 64 69 66 79 20 74 68 65 20 74 69 6d 65 | er-Stop.is.sent..Modify.the.time |
| 65940 | 20 6f 75 74 20 76 61 6c 75 65 20 66 6f 72 20 61 20 53 2c 47 20 66 6c 6f 77 20 66 72 6f 6d 20 31 | .out.value.for.a.S,G.flow.from.1 |
| 65960 | 2d 36 35 35 33 35 20 73 65 63 6f 6e 64 73 2e 20 49 66 20 63 68 6f 6f 73 69 6e 67 20 61 20 76 61 | -65535.seconds..If.choosing.a.va |
| 65980 | 6c 75 65 20 62 65 6c 6f 77 20 33 31 20 73 65 63 6f 6e 64 73 20 62 65 20 61 77 61 72 65 20 74 68 | lue.below.31.seconds.be.aware.th |
| 659a0 | 61 74 20 73 6f 6d 65 20 68 61 72 64 77 61 72 65 20 70 6c 61 74 66 6f 72 6d 73 20 63 61 6e 6e 6f | at.some.hardware.platforms.canno |
| 659c0 | 74 20 73 65 65 20 64 61 74 61 20 66 6c 6f 77 69 6e 67 20 69 6e 20 62 65 74 74 65 72 20 74 68 61 | t.see.data.flowing.in.better.tha |
| 659e0 | 6e 20 33 30 20 73 65 63 6f 6e 64 20 63 68 75 6e 6b 73 2e 00 4d 6f 64 69 66 79 20 74 68 65 20 74 | n.30.second.chunks..Modify.the.t |
| 65a00 | 69 6d 65 20 74 68 61 74 20 70 69 6d 20 77 69 6c 6c 20 72 65 67 69 73 74 65 72 20 73 75 70 70 72 | ime.that.pim.will.register.suppr |
| 65a20 | 65 73 73 20 61 20 46 48 52 20 77 69 6c 6c 20 73 65 6e 64 20 72 65 67 69 73 74 65 72 20 6e 6f 74 | ess.a.FHR.will.send.register.not |
| 65a40 | 69 66 69 63 61 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 6b 65 72 6e 65 6c 2e 00 4d 6f 6e 69 74 6f | ifications.to.the.kernel..Monito |
| 65a60 | 72 20 6d 6f 64 65 20 6c 65 74 73 20 74 68 65 20 73 79 73 74 65 6d 20 70 61 73 73 69 76 65 6c 79 | r.mode.lets.the.system.passively |
| 65a80 | 20 6d 6f 6e 69 74 6f 72 20 77 69 72 65 6c 65 73 73 20 74 72 61 66 66 69 63 00 4d 6f 6e 69 74 6f | .monitor.wireless.traffic.Monito |
| 65aa0 | 72 2c 20 74 68 65 20 73 79 73 74 65 6d 20 70 61 73 73 69 76 65 6c 79 20 6d 6f 6e 69 74 6f 72 73 | r,.the.system.passively.monitors |
| 65ac0 | 20 61 6e 79 20 6b 69 6e 64 20 6f 66 20 77 69 72 65 6c 65 73 73 20 74 72 61 66 66 69 63 00 4d 6f | .any.kind.of.wireless.traffic.Mo |
| 65ae0 | 6e 69 74 6f 72 69 6e 67 00 4d 6f 6e 69 74 6f 72 69 6e 67 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 | nitoring.Monitoring.functionalit |
| 65b00 | 79 20 77 69 74 68 20 60 60 74 65 6c 65 67 72 61 66 60 60 20 61 6e 64 20 60 60 49 6e 66 6c 75 78 | y.with.``telegraf``.and.``Influx |
| 65b20 | 44 42 20 32 60 60 20 69 73 20 70 72 6f 76 69 64 65 64 2e 20 54 65 6c 65 67 72 61 66 20 69 73 20 | DB.2``.is.provided..Telegraf.is. |
| 65b40 | 74 68 65 20 6f 70 65 6e 20 73 6f 75 72 63 65 20 73 65 72 76 65 72 20 61 67 65 6e 74 20 74 6f 20 | the.open.source.server.agent.to. |
| 65b60 | 68 65 6c 70 20 79 6f 75 20 63 6f 6c 6c 65 63 74 20 6d 65 74 72 69 63 73 2c 20 65 76 65 6e 74 73 | help.you.collect.metrics,.events |
| 65b80 | 20 61 6e 64 20 6c 6f 67 73 20 66 72 6f 6d 20 79 6f 75 72 20 72 6f 75 74 65 72 73 2e 00 4d 6f 72 | .and.logs.from.your.routers..Mor |
| 65ba0 | 65 20 64 65 74 61 69 6c 73 20 61 62 6f 75 74 20 74 68 65 20 49 50 73 65 63 20 61 6e 64 20 56 54 | e.details.about.the.IPsec.and.VT |
| 65bc0 | 49 20 69 73 73 75 65 20 61 6e 64 20 6f 70 74 69 6f 6e 20 64 69 73 61 62 6c 65 2d 72 6f 75 74 65 | I.issue.and.option.disable-route |
| 65be0 | 2d 61 75 74 6f 69 6e 73 74 61 6c 6c 20 68 74 74 70 73 3a 2f 2f 62 6c 6f 67 2e 76 79 6f 73 2e 69 | -autoinstall.https://blog.vyos.i |
| 65c00 | 6f 2f 76 79 6f 73 2d 31 2d 64 6f 74 2d 32 2d 30 2d 64 65 76 65 6c 6f 70 6d 65 6e 74 2d 6e 65 77 | o/vyos-1-dot-2-0-development-new |
| 65c20 | 73 2d 69 6e 2d 6a 75 6c 79 00 4d 6f 73 74 20 6f 70 65 72 61 74 69 6e 67 20 73 79 73 74 65 6d 73 | s-in-july.Most.operating.systems |
| 65c40 | 20 69 6e 63 6c 75 64 65 20 6e 61 74 69 76 65 20 63 6c 69 65 6e 74 20 73 75 70 70 6f 72 74 20 66 | .include.native.client.support.f |
| 65c60 | 6f 72 20 49 50 73 65 63 20 49 4b 45 76 32 20 56 50 4e 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2c 20 | or.IPsec.IKEv2.VPN.connections,. |
| 65c80 | 61 6e 64 20 6f 74 68 65 72 73 20 74 79 70 69 63 61 6c 6c 79 20 68 61 76 65 20 61 6e 20 61 70 70 | and.others.typically.have.an.app |
| 65ca0 | 20 6f 72 20 61 64 64 2d 6f 6e 20 70 61 63 6b 61 67 65 20 77 68 69 63 68 20 61 64 64 73 20 74 68 | .or.add-on.package.which.adds.th |
| 65cc0 | 65 20 63 61 70 61 62 69 6c 69 74 79 2e 20 54 68 69 73 20 73 65 63 74 69 6f 6e 20 63 6f 76 65 72 | e.capability..This.section.cover |
| 65ce0 | 73 20 49 50 73 65 63 20 49 4b 45 76 32 20 63 6c 69 65 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 | s.IPsec.IKEv2.client.configurati |
| 65d00 | 6f 6e 20 66 6f 72 20 57 69 6e 64 6f 77 73 20 31 30 2e 00 4d 6f 75 6e 74 20 61 20 76 6f 6c 75 6d | on.for.Windows.10..Mount.a.volum |
| 65d20 | 65 20 69 6e 74 6f 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 00 4d 75 6c 74 69 00 4d 75 6c 74 69 | e.into.the.container.Multi.Multi |
| 65d40 | 2d 63 6c 69 65 6e 74 20 73 65 72 76 65 72 20 69 73 20 74 68 65 20 6d 6f 73 74 20 70 6f 70 75 6c | -client.server.is.the.most.popul |
| 65d60 | 61 72 20 4f 70 65 6e 56 50 4e 20 6d 6f 64 65 20 6f 6e 20 72 6f 75 74 65 72 73 2e 20 49 74 20 61 | ar.OpenVPN.mode.on.routers..It.a |
| 65d80 | 6c 77 61 79 73 20 75 73 65 73 20 78 2e 35 30 39 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 | lways.uses.x.509.authentication. |
| 65da0 | 61 6e 64 20 74 68 65 72 65 66 6f 72 65 20 72 65 71 75 69 72 65 73 20 61 20 50 4b 49 20 73 65 74 | and.therefore.requires.a.PKI.set |
| 65dc0 | 75 70 2e 20 52 65 66 65 72 20 74 68 69 73 20 74 6f 70 69 63 20 3a 72 65 66 3a 60 63 6f 6e 66 69 | up..Refer.this.topic.:ref:`confi |
| 65de0 | 67 75 72 61 74 69 6f 6e 2f 70 6b 69 2f 69 6e 64 65 78 3a 70 6b 69 60 20 74 6f 20 67 65 6e 65 72 | guration/pki/index:pki`.to.gener |
| 65e00 | 61 74 65 20 61 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 2c 20 61 20 73 65 72 76 65 72 20 63 | ate.a.CA.certificate,.a.server.c |
| 65e20 | 65 72 74 69 66 69 63 61 74 65 20 61 6e 64 20 6b 65 79 2c 20 61 20 63 65 72 74 69 66 69 63 61 74 | ertificate.and.key,.a.certificat |
| 65e40 | 65 20 72 65 76 6f 63 61 74 69 6f 6e 20 6c 69 73 74 2c 20 61 20 44 69 66 66 69 65 2d 48 65 6c 6c | e.revocation.list,.a.Diffie-Hell |
| 65e60 | 6d 61 6e 20 6b 65 79 20 65 78 63 68 61 6e 67 65 20 70 61 72 61 6d 65 74 65 72 73 20 66 69 6c 65 | man.key.exchange.parameters.file |
| 65e80 | 2e 20 59 6f 75 20 64 6f 20 6e 6f 74 20 6e 65 65 64 20 63 6c 69 65 6e 74 20 63 65 72 74 69 66 69 | ..You.do.not.need.client.certifi |
| 65ea0 | 63 61 74 65 73 20 61 6e 64 20 6b 65 79 73 20 66 6f 72 20 74 68 65 20 73 65 72 76 65 72 20 73 65 | cates.and.keys.for.the.server.se |
| 65ec0 | 74 75 70 2e 00 4d 75 6c 74 69 2d 63 6c 69 65 6e 74 20 73 65 72 76 65 72 20 69 73 20 74 68 65 20 | tup..Multi-client.server.is.the. |
| 65ee0 | 6d 6f 73 74 20 70 6f 70 75 6c 61 72 20 4f 70 65 6e 56 50 4e 20 6d 6f 64 65 20 6f 6e 20 72 6f 75 | most.popular.OpenVPN.mode.on.rou |
| 65f00 | 74 65 72 73 2e 20 49 74 20 61 6c 77 61 79 73 20 75 73 65 73 20 78 2e 35 30 39 20 61 75 74 68 65 | ters..It.always.uses.x.509.authe |
| 65f20 | 6e 74 69 63 61 74 69 6f 6e 20 61 6e 64 20 74 68 65 72 65 66 6f 72 65 20 72 65 71 75 69 72 65 73 | ntication.and.therefore.requires |
| 65f40 | 20 61 20 50 4b 49 20 73 65 74 75 70 2e 20 52 65 66 65 72 20 74 68 69 73 20 74 6f 70 69 63 20 3a | .a.PKI.setup..Refer.this.topic.: |
| 65f60 | 72 65 66 3a 60 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 70 6b 69 2f 69 6e 64 65 78 3a 70 6b 69 | ref:`configuration/pki/index:pki |
| 65f80 | 60 20 74 6f 20 67 65 6e 65 72 61 74 65 20 61 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 2c 20 | `.to.generate.a.CA.certificate,. |
| 65fa0 | 61 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 20 61 6e 64 20 6b 65 79 2c 20 61 20 | a.server.certificate.and.key,.a. |
| 65fc0 | 63 65 72 74 69 66 69 63 61 74 65 20 72 65 76 6f 63 61 74 69 6f 6e 20 6c 69 73 74 2c 20 61 6e 64 | certificate.revocation.list,.and |
| 65fe0 | 20 61 20 44 69 66 66 69 65 2d 48 65 6c 6c 6d 61 6e 20 6b 65 79 20 65 78 63 68 61 6e 67 65 20 70 | .a.Diffie-Hellman.key.exchange.p |
| 66000 | 61 72 61 6d 65 74 65 72 73 20 66 69 6c 65 2e 20 59 6f 75 20 64 6f 20 6e 6f 74 20 6e 65 65 64 20 | arameters.file..You.do.not.need. |
| 66020 | 63 6c 69 65 6e 74 20 63 65 72 74 69 66 69 63 61 74 65 73 20 61 6e 64 20 6b 65 79 73 20 66 6f 72 | client.certificates.and.keys.for |
| 66040 | 20 74 68 65 20 73 65 72 76 65 72 20 73 65 74 75 70 2e 00 4d 75 6c 74 69 2d 66 61 63 74 6f 72 20 | .the.server.setup..Multi-factor. |
| 66060 | 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 00 4d 75 6c 74 69 2d 68 6f 6d 65 64 2e 20 49 6e 20 61 | Authentication.Multi-homed..In.a |
| 66080 | 20 6d 75 6c 74 69 2d 68 6f 6d 65 64 20 6e 65 74 77 6f 72 6b 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 | .multi-homed.network.environment |
| 660a0 | 2c 20 74 68 65 20 4e 41 54 36 36 20 64 65 76 69 63 65 20 63 6f 6e 6e 65 63 74 73 20 74 6f 20 61 | ,.the.NAT66.device.connects.to.a |
| 660c0 | 6e 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 61 6e 64 20 73 69 6d 75 6c 74 61 6e 65 | n.internal.network.and.simultane |
| 660e0 | 6f 75 73 6c 79 20 63 6f 6e 6e 65 63 74 73 20 74 6f 20 64 69 66 66 65 72 65 6e 74 20 65 78 74 65 | ously.connects.to.different.exte |
| 66100 | 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 73 2e 20 41 64 64 72 65 73 73 20 74 72 61 6e 73 6c 61 74 69 | rnal.networks..Address.translati |
| 66120 | 6f 6e 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 65 61 63 68 20 65 78 74 | on.can.be.configured.on.each.ext |
| 66140 | 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 73 69 64 65 20 69 6e 74 65 72 66 61 63 65 20 6f 66 20 | ernal.network.side.interface.of. |
| 66160 | 74 68 65 20 4e 41 54 36 36 20 64 65 76 69 63 65 20 74 6f 20 63 6f 6e 76 65 72 74 20 74 68 65 20 | the.NAT66.device.to.convert.the. |
| 66180 | 73 61 6d 65 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 61 64 64 72 65 73 73 20 69 6e | same.internal.network.address.in |
| 661a0 | 74 6f 20 64 69 66 66 65 72 65 6e 74 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 61 64 | to.different.external.network.ad |
| 661c0 | 64 72 65 73 73 65 73 2c 20 61 6e 64 20 72 65 61 6c 69 7a 65 20 74 68 65 20 6d 61 70 70 69 6e 67 | dresses,.and.realize.the.mapping |
| 661e0 | 20 6f 66 20 74 68 65 20 73 61 6d 65 20 69 6e 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 20 74 6f | .of.the.same.internal.address.to |
| 66200 | 20 6d 75 6c 74 69 70 6c 65 20 65 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 65 73 2e 00 4d 75 | .multiple.external.addresses..Mu |
| 66220 | 6c 74 69 3a 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 6d 75 6c 74 69 70 6c 65 20 74 | lti:.can.be.specified.multiple.t |
| 66240 | 69 6d 65 73 2e 00 4d 75 6c 74 69 63 61 73 74 00 4d 75 6c 74 69 63 61 73 74 20 44 4e 53 20 75 73 | imes..Multicast.Multicast.DNS.us |
| 66260 | 65 73 20 74 68 65 20 32 32 34 2e 30 2e 30 2e 32 35 31 20 61 64 64 72 65 73 73 2c 20 77 68 69 63 | es.the.224.0.0.251.address,.whic |
| 66280 | 68 20 69 73 20 22 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 6c 79 20 73 63 6f 70 65 64 22 20 61 | h.is."administratively.scoped".a |
| 662a0 | 6e 64 20 64 6f 65 73 20 6e 6f 74 20 6c 65 61 76 65 20 74 68 65 20 73 75 62 6e 65 74 2e 20 49 74 | nd.does.not.leave.the.subnet..It |
| 662c0 | 20 72 65 74 72 61 6e 73 6d 69 74 73 20 6d 44 4e 53 20 70 61 63 6b 65 74 73 20 66 72 6f 6d 20 6f | .retransmits.mDNS.packets.from.o |
| 662e0 | 6e 65 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 73 | ne.interface.to.other.interfaces |
| 66300 | 2e 20 54 68 69 73 20 65 6e 61 62 6c 65 73 20 73 75 70 70 6f 72 74 20 66 6f 72 20 65 2e 67 2e 20 | ..This.enables.support.for.e.g.. |
| 66320 | 41 70 70 6c 65 20 41 69 72 70 6c 61 79 20 64 65 76 69 63 65 73 20 61 63 72 6f 73 73 20 6d 75 6c | Apple.Airplay.devices.across.mul |
| 66340 | 74 69 70 6c 65 20 56 4c 41 4e 73 2e 00 4d 75 6c 74 69 63 61 73 74 20 44 4e 53 20 75 73 65 73 20 | tiple.VLANs..Multicast.DNS.uses. |
| 66360 | 74 68 65 20 72 65 73 65 72 76 65 64 20 61 64 64 72 65 73 73 20 60 60 32 32 34 2e 30 2e 30 2e 32 | the.reserved.address.``224.0.0.2 |
| 66380 | 35 31 60 60 2c 20 77 68 69 63 68 20 69 73 20 60 22 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 6c | 51``,.which.is.`"administrativel |
| 663a0 | 79 20 73 63 6f 70 65 64 22 60 20 61 6e 64 20 64 6f 65 73 20 6e 6f 74 20 6c 65 61 76 65 20 74 68 | y.scoped"`.and.does.not.leave.th |
| 663c0 | 65 20 73 75 62 6e 65 74 2e 20 6d 44 4e 53 20 72 65 70 65 61 74 65 72 20 72 65 74 72 61 6e 73 6d | e.subnet..mDNS.repeater.retransm |
| 663e0 | 69 74 73 20 6d 44 4e 53 20 70 61 63 6b 65 74 73 20 66 72 6f 6d 20 6f 6e 65 20 69 6e 74 65 72 66 | its.mDNS.packets.from.one.interf |
| 66400 | 61 63 65 20 74 6f 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 73 2e 20 54 68 69 73 20 65 6e | ace.to.other.interfaces..This.en |
| 66420 | 61 62 6c 65 73 20 73 75 70 70 6f 72 74 20 66 6f 72 20 64 65 76 69 63 65 73 20 75 73 69 6e 67 20 | ables.support.for.devices.using. |
| 66440 | 6d 44 4e 53 20 64 69 73 63 6f 76 65 72 79 20 28 6c 69 6b 65 20 6e 65 74 77 6f 72 6b 20 70 72 69 | mDNS.discovery.(like.network.pri |
| 66460 | 6e 74 65 72 73 2c 20 41 70 70 6c 65 20 41 69 72 70 6c 61 79 2c 20 43 68 72 6f 6d 65 63 61 73 74 | nters,.Apple.Airplay,.Chromecast |
| 66480 | 2c 20 76 61 72 69 6f 75 73 20 49 50 20 62 61 73 65 64 20 68 6f 6d 65 2d 61 75 74 6f 6d 61 74 69 | ,.various.IP.based.home-automati |
| 664a0 | 6f 6e 20 64 65 76 69 63 65 73 20 65 74 63 29 20 61 63 72 6f 73 73 20 6d 75 6c 74 69 70 6c 65 20 | on.devices.etc).across.multiple. |
| 664c0 | 56 4c 41 4e 73 2e 00 4d 75 6c 74 69 63 61 73 74 20 56 58 4c 41 4e 00 4d 75 6c 74 69 63 61 73 74 | VLANs..Multicast.VXLAN.Multicast |
| 664e0 | 20 67 72 6f 75 70 20 61 64 64 72 65 73 73 20 66 6f 72 20 56 58 4c 41 4e 20 69 6e 74 65 72 66 61 | .group.address.for.VXLAN.interfa |
| 66500 | 63 65 2e 20 56 58 4c 41 4e 20 74 75 6e 6e 65 6c 73 20 63 61 6e 20 62 65 20 62 75 69 6c 74 20 65 | ce..VXLAN.tunnels.can.be.built.e |
| 66520 | 69 74 68 65 72 20 76 69 61 20 4d 75 6c 74 69 63 61 73 74 20 6f 72 20 76 69 61 20 55 6e 69 63 61 | ither.via.Multicast.or.via.Unica |
| 66540 | 73 74 2e 00 4d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 70 20 61 64 64 72 65 73 73 20 66 6f 72 20 | st..Multicast.group.address.for. |
| 66560 | 74 68 65 20 56 58 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 2e 20 56 58 4c 41 4e 20 74 75 6e 6e 65 | the.VXLAN.interface..VXLAN.tunne |
| 66580 | 6c 73 20 63 61 6e 20 62 65 20 62 75 69 6c 74 20 65 69 74 68 65 72 20 76 69 61 20 4d 75 6c 74 69 | ls.can.be.built.either.via.Multi |
| 665a0 | 63 61 73 74 20 6f 72 20 76 69 61 20 55 6e 69 63 61 73 74 2e 00 4d 75 6c 74 69 63 61 73 74 20 67 | cast.or.via.Unicast..Multicast.g |
| 665c0 | 72 6f 75 70 20 74 6f 20 75 73 65 20 66 6f 72 20 73 79 6e 63 69 6e 67 20 63 6f 6e 6e 74 72 61 63 | roup.to.use.for.syncing.conntrac |
| 665e0 | 6b 20 65 6e 74 72 69 65 73 2e 00 4d 75 6c 74 69 63 61 73 74 20 72 65 63 65 69 76 65 72 73 20 77 | k.entries..Multicast.receivers.w |
| 66600 | 69 6c 6c 20 74 61 6c 6b 20 49 47 4d 50 20 74 6f 20 74 68 65 69 72 20 6c 6f 63 61 6c 20 72 6f 75 | ill.talk.IGMP.to.their.local.rou |
| 66620 | 74 65 72 2c 20 73 6f 2c 20 62 65 73 69 64 65 73 20 68 61 76 69 6e 67 20 50 49 4d 20 63 6f 6e 66 | ter,.so,.besides.having.PIM.conf |
| 66640 | 69 67 75 72 65 64 20 69 6e 20 65 76 65 72 79 20 72 6f 75 74 65 72 2c 20 49 47 4d 50 20 6d 75 73 | igured.in.every.router,.IGMP.mus |
| 66660 | 74 20 61 6c 73 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 61 6e 79 20 72 6f 75 74 | t.also.be.configured.in.any.rout |
| 66680 | 65 72 20 77 68 65 72 65 20 74 68 65 72 65 20 63 6f 75 6c 64 20 62 65 20 61 20 6d 75 6c 74 69 63 | er.where.there.could.be.a.multic |
| 666a0 | 61 73 74 20 72 65 63 65 69 76 65 72 20 6c 6f 63 61 6c 6c 79 20 63 6f 6e 6e 65 63 74 65 64 2e 00 | ast.receiver.locally.connected.. |
| 666c0 | 4d 75 6c 74 69 63 61 73 74 20 72 65 63 65 69 76 65 72 73 20 77 69 6c 6c 20 74 61 6c 6b 20 4d 4c | Multicast.receivers.will.talk.ML |
| 666e0 | 44 20 74 6f 20 74 68 65 69 72 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 2c 20 73 6f 2c 20 62 65 73 | D.to.their.local.router,.so,.bes |
| 66700 | 69 64 65 73 20 68 61 76 69 6e 67 20 50 49 4d 76 36 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 | ides.having.PIMv6.configured.in. |
| 66720 | 65 76 65 72 79 20 72 6f 75 74 65 72 2c 20 4d 4c 44 20 6d 75 73 74 20 61 6c 73 6f 20 62 65 20 63 | every.router,.MLD.must.also.be.c |
| 66740 | 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 61 6e 79 20 72 6f 75 74 65 72 20 77 68 65 72 65 20 74 68 | onfigured.in.any.router.where.th |
| 66760 | 65 72 65 20 63 6f 75 6c 64 20 62 65 20 61 20 6d 75 6c 74 69 63 61 73 74 20 72 65 63 65 69 76 65 | ere.could.be.a.multicast.receive |
| 66780 | 72 20 6c 6f 63 61 6c 6c 79 20 63 6f 6e 6e 65 63 74 65 64 2e 00 4d 75 6c 74 69 63 61 73 74 2d 72 | r.locally.connected..Multicast-r |
| 667a0 | 6f 75 74 69 6e 67 20 69 73 20 72 65 71 75 69 72 65 64 20 66 6f 72 20 74 68 65 20 6c 65 61 76 65 | outing.is.required.for.the.leave |
| 667c0 | 73 20 74 6f 20 66 6f 72 77 61 72 64 20 74 72 61 66 66 69 63 20 62 65 74 77 65 65 6e 20 65 61 63 | s.to.forward.traffic.between.eac |
| 667e0 | 68 20 6f 74 68 65 72 20 69 6e 20 61 20 6d 6f 72 65 20 73 63 61 6c 61 62 6c 65 20 77 61 79 2e 20 | h.other.in.a.more.scalable.way.. |
| 66800 | 54 68 69 73 20 61 6c 73 6f 20 72 65 71 75 69 72 65 73 20 50 49 4d 20 74 6f 20 62 65 20 65 6e 61 | This.also.requires.PIM.to.be.ena |
| 66820 | 62 6c 65 64 20 74 6f 77 61 72 64 73 20 74 68 65 20 6c 65 61 76 65 73 20 73 6f 20 74 68 61 74 20 | bled.towards.the.leaves.so.that. |
| 66840 | 74 68 65 20 53 70 69 6e 65 20 63 61 6e 20 6c 65 61 72 6e 20 77 68 61 74 20 6d 75 6c 74 69 63 61 | the.Spine.can.learn.what.multica |
| 66860 | 73 74 20 67 72 6f 75 70 73 20 65 61 63 68 20 4c 65 61 66 20 65 78 70 65 63 74 73 20 74 72 61 66 | st.groups.each.Leaf.expects.traf |
| 66880 | 66 69 63 20 66 72 6f 6d 2e 00 4d 75 6c 74 69 70 6c 65 20 44 4e 53 20 73 65 72 76 65 72 73 20 63 | fic.from..Multiple.DNS.servers.c |
| 668a0 | 61 6e 20 62 65 20 64 65 66 69 6e 65 64 2e 00 4d 75 6c 74 69 70 6c 65 20 52 50 4b 49 20 63 61 63 | an.be.defined..Multiple.RPKI.cac |
| 668c0 | 68 69 6e 67 20 69 6e 73 74 61 6e 63 65 73 20 63 61 6e 20 62 65 20 73 75 70 70 6c 69 65 64 20 61 | hing.instances.can.be.supplied.a |
| 668e0 | 6e 64 20 74 68 65 79 20 6e 65 65 64 20 61 20 70 72 65 66 65 72 65 6e 63 65 20 69 6e 20 77 68 69 | nd.they.need.a.preference.in.whi |
| 66900 | 63 68 20 74 68 65 69 72 20 72 65 73 75 6c 74 20 73 65 74 73 20 61 72 65 20 75 73 65 64 2e 00 4d | ch.their.result.sets.are.used..M |
| 66920 | 75 6c 74 69 70 6c 65 20 55 70 6c 69 6e 6b 73 00 4d 75 6c 74 69 70 6c 65 20 56 4c 41 4e 20 74 6f | ultiple.Uplinks.Multiple.VLAN.to |
| 66940 | 20 56 4e 49 20 6d 61 70 70 69 6e 67 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 | .VNI.mappings.can.be.configured. |
| 66960 | 61 67 61 69 6e 73 74 20 74 68 65 20 73 61 6d 65 20 53 56 44 2e 20 54 68 69 73 20 61 6c 6c 6f 77 | against.the.same.SVD..This.allow |
| 66980 | 73 20 66 6f 72 20 61 20 73 69 67 6e 69 66 69 63 61 6e 74 20 73 63 61 6c 69 6e 67 20 6f 66 20 74 | s.for.a.significant.scaling.of.t |
| 669a0 | 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 56 4e 49 73 20 73 69 6e 63 65 20 61 20 73 65 70 61 72 61 | he.number.of.VNIs.since.a.separa |
| 669c0 | 74 65 20 56 58 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 6e 6f 20 6c 6f 6e 67 65 72 20 | te.VXLAN.interface.is.no.longer. |
| 669e0 | 72 65 71 75 69 72 65 64 20 66 6f 72 20 65 61 63 68 20 56 4e 49 2e 00 4d 75 6c 74 69 70 6c 65 20 | required.for.each.VNI..Multiple. |
| 66a00 | 61 6c 69 61 73 65 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 70 65 72 20 68 6f 73 | aliases.can.be.specified.per.hos |
| 66a20 | 74 2d 6e 61 6d 65 2e 00 4d 75 6c 74 69 70 6c 65 20 61 6c 69 61 73 65 73 20 63 61 6e 20 70 65 20 | t-name..Multiple.aliases.can.pe. |
| 66a40 | 73 70 65 63 69 66 69 65 64 20 70 65 72 20 68 6f 73 74 2d 6e 61 6d 65 2e 00 4d 75 6c 74 69 70 6c | specified.per.host-name..Multipl |
| 66a60 | 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 | e.destination.ports.can.be.speci |
| 66a80 | 66 69 65 64 20 61 73 20 61 20 63 6f 6d 6d 61 2d 73 65 70 61 72 61 74 65 64 20 6c 69 73 74 2e 20 | fied.as.a.comma-separated.list.. |
| 66aa0 | 54 68 65 20 77 68 6f 6c 65 20 6c 69 73 74 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 22 6e 65 67 61 | The.whole.list.can.also.be."nega |
| 66ac0 | 74 65 64 22 20 75 73 69 6e 67 20 27 21 27 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 27 21 32 | ted".using.'!'..For.example:.'!2 |
| 66ae0 | 32 2c 74 65 6c 6e 65 74 2c 68 74 74 70 2c 31 32 33 2c 31 30 30 31 2d 31 30 30 35 27 00 4d 75 6c | 2,telnet,http,123,1001-1005'.Mul |
| 66b00 | 74 69 70 6c 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 73 20 63 61 6e 20 62 65 20 73 | tiple.destination.ports.can.be.s |
| 66b20 | 70 65 63 69 66 69 65 64 20 61 73 20 61 20 63 6f 6d 6d 61 2d 73 65 70 61 72 61 74 65 64 20 6c 69 | pecified.as.a.comma-separated.li |
| 66b40 | 73 74 2e 20 54 68 65 20 77 68 6f 6c 65 20 6c 69 73 74 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 22 | st..The.whole.list.can.also.be." |
| 66b60 | 6e 65 67 61 74 65 64 22 20 75 73 69 6e 67 20 27 21 27 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a | negated".using.'!'..For.example: |
| 66b80 | 20 60 21 32 32 2c 74 65 6c 6e 65 74 2c 68 74 74 70 2c 31 32 33 2c 31 30 30 31 2d 31 30 30 35 60 | .`!22,telnet,http,123,1001-1005` |
| 66ba0 | 60 00 4d 75 6c 74 69 70 6c 65 20 65 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 65 73 00 4d 75 | `.Multiple.external.addresses.Mu |
| 66bc0 | 6c 74 69 70 6c 65 20 69 6e 74 65 72 66 61 63 65 73 20 6d 61 79 20 62 65 20 73 70 65 63 69 66 69 | ltiple.interfaces.may.be.specifi |
| 66be0 | 65 64 2e 00 4d 75 6c 74 69 70 6c 65 20 6e 65 74 77 6f 72 6b 73 2f 63 6c 69 65 6e 74 20 49 50 20 | ed..Multiple.networks/client.IP. |
| 66c00 | 61 64 64 72 65 73 73 65 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 4d 75 6c | addresses.can.be.configured..Mul |
| 66c20 | 74 69 70 6c 65 20 73 65 72 76 65 72 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 2e 00 | tiple.servers.can.be.specified.. |
| 66c40 | 4d 75 6c 74 69 70 6c 65 20 73 65 72 76 69 63 65 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 70 65 | Multiple.services.can.be.used.pe |
| 66c60 | 72 20 69 6e 74 65 72 66 61 63 65 2e 20 4a 75 73 74 20 73 70 65 63 69 66 79 20 61 73 20 6d 61 6e | r.interface..Just.specify.as.man |
| 66c80 | 79 20 73 65 72 76 69 63 65 73 20 70 65 72 20 69 6e 74 65 72 66 61 63 65 20 61 73 20 79 6f 75 20 | y.services.per.interface.as.you. |
| 66ca0 | 6c 69 6b 65 21 00 4d 75 6c 74 69 70 6c 65 20 73 6f 75 72 63 65 20 70 6f 72 74 73 20 63 61 6e 20 | like!.Multiple.source.ports.can. |
| 66cc0 | 62 65 20 73 70 65 63 69 66 69 65 64 20 61 73 20 61 20 63 6f 6d 6d 61 2d 73 65 70 61 72 61 74 65 | be.specified.as.a.comma-separate |
| 66ce0 | 64 20 6c 69 73 74 2e 20 54 68 65 20 77 68 6f 6c 65 20 6c 69 73 74 20 63 61 6e 20 61 6c 73 6f 20 | d.list..The.whole.list.can.also. |
| 66d00 | 62 65 20 22 6e 65 67 61 74 65 64 22 20 75 73 69 6e 67 20 60 60 21 60 60 2e 20 46 6f 72 20 65 78 | be."negated".using.``!``..For.ex |
| 66d20 | 61 6d 70 6c 65 3a 00 4d 75 6c 74 69 70 6c 65 20 74 61 72 67 65 74 20 49 50 20 61 64 64 72 65 73 | ample:.Multiple.target.IP.addres |
| 66d40 | 73 65 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 2e 20 41 74 20 6c 65 61 73 74 20 6f | ses.can.be.specified..At.least.o |
| 66d60 | 6e 65 20 49 50 20 61 64 64 72 65 73 73 20 6d 75 73 74 20 62 65 20 67 69 76 65 6e 20 66 6f 72 20 | ne.IP.address.must.be.given.for. |
| 66d80 | 41 52 50 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 74 6f 20 66 75 6e 63 74 69 6f 6e 2e 00 4d 75 6c 74 | ARP.monitoring.to.function..Mult |
| 66da0 | 69 70 6c 65 20 75 73 65 72 73 20 63 61 6e 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 73 61 | iple.users.can.connect.to.the.sa |
| 66dc0 | 6d 65 20 73 65 72 69 61 6c 20 64 65 76 69 63 65 20 62 75 74 20 6f 6e 6c 79 20 6f 6e 65 20 69 73 | me.serial.device.but.only.one.is |
| 66de0 | 20 61 6c 6c 6f 77 65 64 20 74 6f 20 77 72 69 74 65 20 74 6f 20 74 68 65 20 63 6f 6e 73 6f 6c 65 | .allowed.to.write.to.the.console |
| 66e00 | 20 70 6f 72 74 2e 00 4d 75 6c 74 69 70 72 6f 74 6f 63 6f 6c 20 65 78 74 65 6e 73 69 6f 6e 73 20 | .port..Multiprotocol.extensions. |
| 66e20 | 65 6e 61 62 6c 65 20 42 47 50 20 74 6f 20 63 61 72 72 79 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f | enable.BGP.to.carry.routing.info |
| 66e40 | 72 6d 61 74 69 6f 6e 20 66 6f 72 20 6d 75 6c 74 69 70 6c 65 20 6e 65 74 77 6f 72 6b 20 6c 61 79 | rmation.for.multiple.network.lay |
| 66e60 | 65 72 20 70 72 6f 74 6f 63 6f 6c 73 2e 20 42 47 50 20 73 75 70 70 6f 72 74 73 20 61 6e 20 41 64 | er.protocols..BGP.supports.an.Ad |
| 66e80 | 64 72 65 73 73 20 46 61 6d 69 6c 79 20 49 64 65 6e 74 69 66 69 65 72 20 28 41 46 49 29 20 66 6f | dress.Family.Identifier.(AFI).fo |
| 66ea0 | 72 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 2e 00 4e 00 4e 41 54 00 4e 41 54 20 28 73 70 65 63 | r.IPv4.and.IPv6..N.NAT.NAT.(spec |
| 66ec0 | 69 66 69 63 61 6c 6c 79 2c 20 53 6f 75 72 63 65 20 4e 41 54 29 3b 00 4e 41 54 20 43 6f 6e 66 69 | ifically,.Source.NAT);.NAT.Confi |
| 66ee0 | 67 75 72 61 74 69 6f 6e 00 4e 41 54 20 4c 6f 61 64 20 42 61 6c 61 6e 63 65 00 4e 41 54 20 4c 6f | guration.NAT.Load.Balance.NAT.Lo |
| 66f00 | 61 64 20 42 61 6c 61 6e 63 65 20 75 73 65 73 20 61 6e 20 61 6c 67 6f 72 69 74 68 6d 20 74 68 61 | ad.Balance.uses.an.algorithm.tha |
| 66f20 | 74 20 67 65 6e 65 72 61 74 65 73 20 61 20 68 61 73 68 20 61 6e 64 20 62 61 73 65 64 20 6f 6e 20 | t.generates.a.hash.and.based.on. |
| 66f40 | 69 74 2c 20 74 68 65 6e 20 69 74 20 61 70 70 6c 69 65 73 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e | it,.then.it.applies.correspondin |
| 66f60 | 67 20 74 72 61 6e 73 6c 61 74 69 6f 6e 2e 20 54 68 69 73 20 68 61 73 68 20 63 61 6e 20 62 65 20 | g.translation..This.hash.can.be. |
| 66f80 | 67 65 6e 65 72 61 74 65 64 20 72 61 6e 64 6f 6d 6c 79 2c 20 6f 72 20 63 61 6e 20 75 73 65 20 64 | generated.randomly,.or.can.use.d |
| 66fa0 | 61 74 61 20 66 72 6f 6d 20 74 68 65 20 69 70 20 68 65 61 64 65 72 3a 20 73 6f 75 72 63 65 2d 61 | ata.from.the.ip.header:.source-a |
| 66fc0 | 64 64 72 65 73 73 2c 20 64 65 73 74 69 6e 61 74 69 6f 6e 2d 61 64 64 72 65 73 73 2c 20 73 6f 75 | ddress,.destination-address,.sou |
| 66fe0 | 72 63 65 2d 70 6f 72 74 20 61 6e 64 2f 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 2d 70 6f 72 74 | rce-port.and/or.destination-port |
| 67000 | 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 69 74 20 77 69 6c 6c 20 67 65 6e 65 72 61 74 65 20 74 | ..By.default,.it.will.generate.t |
| 67020 | 68 65 20 68 61 73 68 20 72 61 6e 64 6f 6d 6c 79 2e 00 4e 41 54 20 52 75 6c 65 73 65 74 00 4e 41 | he.hash.randomly..NAT.Ruleset.NA |
| 67040 | 54 20 62 65 66 6f 72 65 20 56 50 4e 00 4e 41 54 20 62 65 66 6f 72 65 20 56 50 4e 20 54 6f 70 6f | T.before.VPN.NAT.before.VPN.Topo |
| 67060 | 6c 6f 67 79 00 4e 41 54 2c 20 52 6f 75 74 69 6e 67 2c 20 46 69 72 65 77 61 6c 6c 20 49 6e 74 65 | logy.NAT,.Routing,.Firewall.Inte |
| 67080 | 72 61 63 74 69 6f 6e 00 4e 41 54 34 34 00 4e 41 54 36 34 00 4e 41 54 36 34 20 63 6c 69 65 6e 74 | raction.NAT44.NAT64.NAT64.client |
| 670a0 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 4e 41 54 36 34 20 70 72 65 66 69 78 20 6d 61 73 | .configuration:.NAT64.prefix.mas |
| 670c0 | 6b 20 6d 75 73 74 20 62 65 20 6f 6e 65 20 6f 66 3a 20 2f 33 32 2c 20 2f 34 30 2c 20 2f 34 38 2c | k.must.be.one.of:./32,./40,./48, |
| 670e0 | 20 2f 35 36 2c 20 2f 36 34 20 6f 72 20 39 36 2e 00 4e 41 54 36 34 20 73 65 72 76 65 72 20 63 6f | ./56,./64.or.96..NAT64.server.co |
| 67100 | 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 4e 41 54 36 36 28 4e 50 54 76 36 29 00 4e 48 52 50 20 70 | nfiguration:.NAT66(NPTv6).NHRP.p |
| 67120 | 72 6f 76 69 64 65 73 20 74 68 65 20 64 79 6e 61 6d 69 63 20 74 75 6e 6e 65 6c 20 65 6e 64 70 6f | rovides.the.dynamic.tunnel.endpo |
| 67140 | 69 6e 74 20 64 69 73 63 6f 76 65 72 79 20 6d 65 63 68 61 6e 69 73 6d 20 28 65 6e 64 70 6f 69 6e | int.discovery.mechanism.(endpoin |
| 67160 | 74 20 72 65 67 69 73 74 72 61 74 69 6f 6e 2c 20 61 6e 64 20 65 6e 64 70 6f 69 6e 74 20 64 69 73 | t.registration,.and.endpoint.dis |
| 67180 | 63 6f 76 65 72 79 2f 6c 6f 6f 6b 75 70 29 2c 20 6d 47 52 45 20 70 72 6f 76 69 64 65 73 20 74 68 | covery/lookup),.mGRE.provides.th |
| 671a0 | 65 20 74 75 6e 6e 65 6c 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 69 74 73 65 6c 66 2c 20 61 | e.tunnel.encapsulation.itself,.a |
| 671c0 | 6e 64 20 74 68 65 20 49 50 53 65 63 20 70 72 6f 74 6f 63 6f 6c 73 20 68 61 6e 64 6c 65 20 74 68 | nd.the.IPSec.protocols.handle.th |
| 671e0 | 65 20 6b 65 79 20 65 78 63 68 61 6e 67 65 2c 20 61 6e 64 20 63 72 79 70 74 6f 20 6d 65 63 68 61 | e.key.exchange,.and.crypto.mecha |
| 67200 | 6e 69 73 6d 2e 00 4e 54 50 00 4e 54 50 20 69 73 20 69 6e 74 65 6e 64 65 64 20 74 6f 20 73 79 6e | nism..NTP.NTP.is.intended.to.syn |
| 67220 | 63 68 72 6f 6e 69 7a 65 20 61 6c 6c 20 70 61 72 74 69 63 69 70 61 74 69 6e 67 20 63 6f 6d 70 75 | chronize.all.participating.compu |
| 67240 | 74 65 72 73 20 74 6f 20 77 69 74 68 69 6e 20 61 20 66 65 77 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 | ters.to.within.a.few.millisecond |
| 67260 | 73 20 6f 66 20 3a 61 62 62 72 3a 60 55 54 43 20 28 43 6f 6f 72 64 69 6e 61 74 65 64 20 55 6e 69 | s.of.:abbr:`UTC.(Coordinated.Uni |
| 67280 | 76 65 72 73 61 6c 20 54 69 6d 65 29 60 2e 20 49 74 20 75 73 65 73 20 74 68 65 20 69 6e 74 65 72 | versal.Time)`..It.uses.the.inter |
| 672a0 | 73 65 63 74 69 6f 6e 20 61 6c 67 6f 72 69 74 68 6d 2c 20 61 20 6d 6f 64 69 66 69 65 64 20 76 65 | section.algorithm,.a.modified.ve |
| 672c0 | 72 73 69 6f 6e 20 6f 66 20 4d 61 72 7a 75 6c 6c 6f 27 73 20 61 6c 67 6f 72 69 74 68 6d 2c 20 74 | rsion.of.Marzullo's.algorithm,.t |
| 672e0 | 6f 20 73 65 6c 65 63 74 20 61 63 63 75 72 61 74 65 20 74 69 6d 65 20 73 65 72 76 65 72 73 20 61 | o.select.accurate.time.servers.a |
| 67300 | 6e 64 20 69 73 20 64 65 73 69 67 6e 65 64 20 74 6f 20 6d 69 74 69 67 61 74 65 20 74 68 65 20 65 | nd.is.designed.to.mitigate.the.e |
| 67320 | 66 66 65 63 74 73 20 6f 66 20 76 61 72 69 61 62 6c 65 20 6e 65 74 77 6f 72 6b 20 6c 61 74 65 6e | ffects.of.variable.network.laten |
| 67340 | 63 79 2e 20 4e 54 50 20 63 61 6e 20 75 73 75 61 6c 6c 79 20 6d 61 69 6e 74 61 69 6e 20 74 69 6d | cy..NTP.can.usually.maintain.tim |
| 67360 | 65 20 74 6f 20 77 69 74 68 69 6e 20 74 65 6e 73 20 6f 66 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 | e.to.within.tens.of.milliseconds |
| 67380 | 20 6f 76 65 72 20 74 68 65 20 70 75 62 6c 69 63 20 49 6e 74 65 72 6e 65 74 2c 20 61 6e 64 20 63 | .over.the.public.Internet,.and.c |
| 673a0 | 61 6e 20 61 63 68 69 65 76 65 20 62 65 74 74 65 72 20 74 68 61 6e 20 6f 6e 65 20 6d 69 6c 6c 69 | an.achieve.better.than.one.milli |
| 673c0 | 73 65 63 6f 6e 64 20 61 63 63 75 72 61 63 79 20 69 6e 20 6c 6f 63 61 6c 20 61 72 65 61 20 6e 65 | second.accuracy.in.local.area.ne |
| 673e0 | 74 77 6f 72 6b 73 20 75 6e 64 65 72 20 69 64 65 61 6c 20 63 6f 6e 64 69 74 69 6f 6e 73 2e 20 41 | tworks.under.ideal.conditions..A |
| 67400 | 73 79 6d 6d 65 74 72 69 63 20 72 6f 75 74 65 73 20 61 6e 64 20 6e 65 74 77 6f 72 6b 20 63 6f 6e | symmetric.routes.and.network.con |
| 67420 | 67 65 73 74 69 6f 6e 20 63 61 6e 20 63 61 75 73 65 20 65 72 72 6f 72 73 20 6f 66 20 31 30 30 20 | gestion.can.cause.errors.of.100. |
| 67440 | 6d 73 20 6f 72 20 6d 6f 72 65 2e 00 4e 54 50 20 70 72 6f 63 65 73 73 20 77 69 6c 6c 20 6f 6e 6c | ms.or.more..NTP.process.will.onl |
| 67460 | 79 20 6c 69 73 74 65 6e 20 6f 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 49 50 20 61 64 64 | y.listen.on.the.specified.IP.add |
| 67480 | 72 65 73 73 2e 20 59 6f 75 20 6d 75 73 74 20 73 70 65 63 69 66 79 20 74 68 65 20 60 3c 61 64 64 | ress..You.must.specify.the.`<add |
| 674a0 | 72 65 73 73 3e 60 20 61 6e 64 20 6f 70 74 69 6f 6e 61 6c 6c 79 20 74 68 65 20 70 65 72 6d 69 74 | ress>`.and.optionally.the.permit |
| 674c0 | 74 65 64 20 63 6c 69 65 6e 74 73 2e 20 4d 75 6c 74 69 70 6c 65 20 6c 69 73 74 65 6e 20 61 64 64 | ted.clients..Multiple.listen.add |
| 674e0 | 72 65 73 73 65 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 4e 54 50 20 70 72 | resses.can.be.configured..NTP.pr |
| 67500 | 6f 63 65 73 73 20 77 69 6c 6c 20 6f 6e 6c 79 20 6c 69 73 74 65 6e 20 6f 6e 20 74 68 65 20 73 70 | ocess.will.only.listen.on.the.sp |
| 67520 | 65 63 69 66 69 65 64 20 49 50 20 61 64 64 72 65 73 73 2e 20 59 6f 75 20 6d 75 73 74 20 73 70 65 | ecified.IP.address..You.must.spe |
| 67540 | 63 69 66 79 20 74 68 65 20 60 3c 61 64 64 72 65 73 73 3e 60 20 61 6e 64 20 6f 70 74 69 6f 6e 61 | cify.the.`<address>`.and.optiona |
| 67560 | 6c 6c 79 20 74 68 65 20 70 65 72 6d 69 74 74 65 64 20 63 6c 69 65 6e 74 73 2e 20 4d 75 6c 74 69 | lly.the.permitted.clients..Multi |
| 67580 | 70 6c 65 20 6c 69 73 74 65 6e 20 61 64 64 72 65 73 73 65 73 20 66 6f 72 20 73 61 6d 65 20 49 50 | ple.listen.addresses.for.same.IP |
| 675a0 | 20 66 61 6d 69 6c 79 20 69 73 20 6e 6f 20 6c 6f 6e 67 65 72 20 73 75 70 70 6f 72 74 65 64 2e 20 | .family.is.no.longer.supported.. |
| 675c0 | 4f 6e 6c 79 20 6f 6e 65 20 49 50 76 34 20 61 6e 64 20 6f 6e 65 20 49 50 76 36 20 61 64 64 72 65 | Only.one.IPv4.and.one.IPv6.addre |
| 675e0 | 73 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 75 73 69 6e 67 20 73 65 70 61 | ss.can.be.configured,.using.sepa |
| 67600 | 72 61 74 65 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 72 20 65 61 63 68 2e 00 4e 54 50 20 73 75 62 73 | rate.commands.for.each..NTP.subs |
| 67620 | 79 73 74 65 6d 00 4e 54 50 20 73 75 70 70 6c 69 65 73 20 61 20 77 61 72 6e 69 6e 67 20 6f 66 20 | ystem.NTP.supplies.a.warning.of. |
| 67640 | 61 6e 79 20 69 6d 70 65 6e 64 69 6e 67 20 6c 65 61 70 20 73 65 63 6f 6e 64 20 61 64 6a 75 73 74 | any.impending.leap.second.adjust |
| 67660 | 6d 65 6e 74 2c 20 62 75 74 20 6e 6f 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 6c | ment,.but.no.information.about.l |
| 67680 | 6f 63 61 6c 20 74 69 6d 65 20 7a 6f 6e 65 73 20 6f 72 20 64 61 79 6c 69 67 68 74 20 73 61 76 69 | ocal.time.zones.or.daylight.savi |
| 676a0 | 6e 67 20 74 69 6d 65 20 69 73 20 74 72 61 6e 73 6d 69 74 74 65 64 2e 00 4e 61 6d 65 20 53 65 72 | ng.time.is.transmitted..Name.Ser |
| 676c0 | 76 65 72 00 4e 61 6d 65 20 6f 66 20 69 6e 73 74 61 6c 6c 65 64 20 63 65 72 74 69 66 69 63 61 74 | ver.Name.of.installed.certificat |
| 676e0 | 65 20 61 75 74 68 6f 72 69 74 79 20 63 65 72 74 69 66 69 63 61 74 65 2e 00 4e 61 6d 65 20 6f 66 | e.authority.certificate..Name.of |
| 67700 | 20 69 6e 73 74 61 6c 6c 65 64 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 2e 00 4e | .installed.server.certificate..N |
| 67720 | 61 6d 65 20 6f 66 20 73 74 61 74 69 63 20 6d 61 70 70 69 6e 67 00 4e 61 6d 65 20 6f 66 20 74 68 | ame.of.static.mapping.Name.of.th |
| 67740 | 65 20 73 69 6e 67 6c 65 20 74 61 62 6c 65 20 4f 6e 6c 79 20 69 66 20 73 65 74 20 67 72 6f 75 70 | e.single.table.Only.if.set.group |
| 67760 | 2d 6d 65 74 72 69 63 73 20 73 69 6e 67 6c 65 2d 74 61 62 6c 65 2e 00 4e 61 6d 65 20 6f 72 20 49 | -metrics.single-table..Name.or.I |
| 67780 | 50 76 34 20 61 64 64 72 65 73 73 20 6f 66 20 54 46 54 50 20 73 65 72 76 65 72 00 4e 65 74 42 49 | Pv4.address.of.TFTP.server.NetBI |
| 677a0 | 4f 53 20 6f 76 65 72 20 54 43 50 2f 49 50 20 6e 61 6d 65 20 73 65 72 76 65 72 00 4e 65 74 46 6c | OS.over.TCP/IP.name.server.NetFl |
| 677c0 | 6f 77 00 4e 65 74 46 6c 6f 77 20 2f 20 49 50 46 49 58 00 4e 65 74 46 6c 6f 77 20 65 6e 67 69 6e | ow.NetFlow./.IPFIX.NetFlow.engin |
| 677e0 | 65 2d 69 64 20 77 68 69 63 68 20 77 69 6c 6c 20 61 70 70 65 61 72 20 69 6e 20 4e 65 74 46 6c 6f | e-id.which.will.appear.in.NetFlo |
| 67800 | 77 20 64 61 74 61 2e 20 54 68 65 20 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 32 35 35 2e 00 4e | w.data..The.range.is.0.to.255..N |
| 67820 | 65 74 46 6c 6f 77 20 69 73 20 61 20 66 65 61 74 75 72 65 20 74 68 61 74 20 77 61 73 20 69 6e 74 | etFlow.is.a.feature.that.was.int |
| 67840 | 72 6f 64 75 63 65 64 20 6f 6e 20 43 69 73 63 6f 20 72 6f 75 74 65 72 73 20 61 72 6f 75 6e 64 20 | roduced.on.Cisco.routers.around. |
| 67860 | 31 39 39 36 20 74 68 61 74 20 70 72 6f 76 69 64 65 73 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 | 1996.that.provides.the.ability.t |
| 67880 | 6f 20 63 6f 6c 6c 65 63 74 20 49 50 20 6e 65 74 77 6f 72 6b 20 74 72 61 66 66 69 63 20 61 73 20 | o.collect.IP.network.traffic.as. |
| 678a0 | 69 74 20 65 6e 74 65 72 73 20 6f 72 20 65 78 69 74 73 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e | it.enters.or.exits.an.interface. |
| 678c0 | 20 42 79 20 61 6e 61 6c 79 7a 69 6e 67 20 74 68 65 20 64 61 74 61 20 70 72 6f 76 69 64 65 64 20 | .By.analyzing.the.data.provided. |
| 678e0 | 62 79 20 4e 65 74 46 6c 6f 77 2c 20 61 20 6e 65 74 77 6f 72 6b 20 61 64 6d 69 6e 69 73 74 72 61 | by.NetFlow,.a.network.administra |
| 67900 | 74 6f 72 20 63 61 6e 20 64 65 74 65 72 6d 69 6e 65 20 74 68 69 6e 67 73 20 73 75 63 68 20 61 73 | tor.can.determine.things.such.as |
| 67920 | 20 74 68 65 20 73 6f 75 72 63 65 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6f 66 20 74 | .the.source.and.destination.of.t |
| 67940 | 72 61 66 66 69 63 2c 20 63 6c 61 73 73 20 6f 66 20 73 65 72 76 69 63 65 2c 20 61 6e 64 20 74 68 | raffic,.class.of.service,.and.th |
| 67960 | 65 20 63 61 75 73 65 73 20 6f 66 20 63 6f 6e 67 65 73 74 69 6f 6e 2e 20 41 20 74 79 70 69 63 61 | e.causes.of.congestion..A.typica |
| 67980 | 6c 20 66 6c 6f 77 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 73 65 74 75 70 20 28 75 73 69 6e 67 20 4e | l.flow.monitoring.setup.(using.N |
| 679a0 | 65 74 46 6c 6f 77 29 20 63 6f 6e 73 69 73 74 73 20 6f 66 20 74 68 72 65 65 20 6d 61 69 6e 20 63 | etFlow).consists.of.three.main.c |
| 679c0 | 6f 6d 70 6f 6e 65 6e 74 73 3a 00 4e 65 74 46 6c 6f 77 20 69 73 20 75 73 75 61 6c 6c 79 20 65 6e | omponents:.NetFlow.is.usually.en |
| 679e0 | 61 62 6c 65 64 20 6f 6e 20 61 20 70 65 72 2d 69 6e 74 65 72 66 61 63 65 20 62 61 73 69 73 20 74 | abled.on.a.per-interface.basis.t |
| 67a00 | 6f 20 6c 69 6d 69 74 20 6c 6f 61 64 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 72 20 63 6f 6d 70 6f | o.limit.load.on.the.router.compo |
| 67a20 | 6e 65 6e 74 73 20 69 6e 76 6f 6c 76 65 64 20 69 6e 20 4e 65 74 46 6c 6f 77 2c 20 6f 72 20 74 6f | nents.involved.in.NetFlow,.or.to |
| 67a40 | 20 6c 69 6d 69 74 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 20 4e 65 74 46 6c 6f 77 20 72 65 63 | .limit.the.amount.of.NetFlow.rec |
| 67a60 | 6f 72 64 73 20 65 78 70 6f 72 74 65 64 2e 00 4e 65 74 46 6c 6f 77 20 76 35 20 65 78 61 6d 70 6c | ords.exported..NetFlow.v5.exampl |
| 67a80 | 65 3a 00 4e 65 74 66 69 6c 74 65 72 20 62 61 73 65 64 00 4e 65 74 6d 61 73 6b 20 67 72 65 61 74 | e:.Netfilter.based.Netmask.great |
| 67aa0 | 65 72 20 74 68 61 6e 20 6c 65 6e 67 74 68 2e 00 4e 65 74 6d 61 73 6b 20 6c 65 73 73 20 74 68 61 | er.than.length..Netmask.less.tha |
| 67ac0 | 6e 20 6c 65 6e 67 74 68 00 4e 65 74 77 6f 72 6b 20 41 64 76 65 72 74 69 73 65 6d 65 6e 74 20 43 | n.length.Network.Advertisement.C |
| 67ae0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 4e 65 74 77 6f 72 6b 20 43 6f 6e 74 72 6f 6c 00 4e 65 74 | onfiguration.Network.Control.Net |
| 67b00 | 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 00 4e 65 74 77 6f 72 6b 20 47 72 6f 75 70 73 00 4e 65 74 | work.Emulator.Network.Groups.Net |
| 67b20 | 77 6f 72 6b 20 49 44 20 28 53 53 49 44 29 20 60 60 45 6e 74 65 72 70 72 69 73 65 2d 54 45 53 54 | work.ID.(SSID).``Enterprise-TEST |
| 67b40 | 60 60 00 4e 65 74 77 6f 72 6b 20 49 44 20 28 53 53 49 44 29 20 60 60 54 45 53 54 60 60 00 4e 65 | ``.Network.ID.(SSID).``TEST``.Ne |
| 67b60 | 74 77 6f 72 6b 20 49 44 20 28 53 53 49 44 29 20 60 60 74 65 73 74 2e 61 78 60 60 00 4e 65 74 77 | twork.ID.(SSID).``test.ax``.Netw |
| 67b80 | 6f 72 6b 20 54 6f 70 6f 6c 6f 67 79 20 44 69 61 67 72 61 6d 00 4e 65 74 77 6f 72 6b 20 6d 61 6e | ork.Topology.Diagram.Network.man |
| 67ba0 | 61 67 65 6d 65 6e 74 20 73 74 61 74 69 6f 6e 20 28 4e 4d 53 29 20 2d 20 73 6f 66 74 77 61 72 65 | agement.station.(NMS).-.software |
| 67bc0 | 20 77 68 69 63 68 20 72 75 6e 73 20 6f 6e 20 74 68 65 20 6d 61 6e 61 67 65 72 00 4e 65 74 77 6f | .which.runs.on.the.manager.Netwo |
| 67be0 | 72 6b 20 6e 65 77 73 20 73 75 62 73 79 73 74 65 6d 00 4e 65 74 77 6f 72 6b 20 74 6f 20 62 65 20 | rk.news.subsystem.Network.to.be. |
| 67c00 | 70 72 6f 74 65 63 74 65 64 3a 20 31 39 32 2e 30 2e 32 2e 30 2f 32 34 20 28 70 75 62 6c 69 63 20 | protected:.192.0.2.0/24.(public. |
| 67c20 | 49 50 73 20 75 73 65 20 62 79 20 63 75 73 74 6f 6d 65 72 73 29 00 4e 65 74 77 6f 72 6b 73 20 61 | IPs.use.by.customers).Networks.a |
| 67c40 | 6c 6c 6f 77 65 64 20 74 6f 20 71 75 65 72 79 20 74 68 69 73 20 73 65 72 76 65 72 00 4e 65 77 20 | llowed.to.query.this.server.New. |
| 67c60 | 75 73 65 72 20 77 69 6c 6c 20 75 73 65 20 53 48 41 2f 41 45 53 20 66 6f 72 20 61 75 74 68 65 6e | user.will.use.SHA/AES.for.authen |
| 67c80 | 74 69 63 61 74 69 6f 6e 20 61 6e 64 20 70 72 69 76 61 63 79 00 4e 65 78 74 20 69 74 20 69 73 20 | tication.and.privacy.Next.it.is. |
| 67ca0 | 6e 65 63 65 73 73 61 72 79 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 32 46 41 20 66 6f 72 20 4f | necessary.to.configure.2FA.for.O |
| 67cc0 | 70 65 6e 43 6f 6e 6e 65 63 74 3a 00 4e 65 78 74 2d 68 6f 70 20 69 6e 74 65 72 66 61 63 65 20 66 | penConnect:.Next-hop.interface.f |
| 67ce0 | 6f 72 20 74 68 65 20 72 6f 75 74 65 00 4e 65 78 74 68 6f 70 20 49 50 20 61 64 64 72 65 73 73 2e | or.the.route.Nexthop.IP.address. |
| 67d00 | 00 4e 65 78 74 68 6f 70 20 49 50 76 36 20 61 64 64 72 65 73 73 20 74 6f 20 6d 61 74 63 68 2e 00 | .Nexthop.IPv6.address.to.match.. |
| 67d20 | 4e 65 78 74 68 6f 70 20 49 50 76 36 20 61 64 64 72 65 73 73 2e 00 4e 65 78 74 68 6f 70 20 54 72 | Nexthop.IPv6.address..Nexthop.Tr |
| 67d40 | 61 63 6b 69 6e 67 00 4e 65 78 74 68 6f 70 20 74 72 61 63 6b 69 6e 67 20 72 65 73 6f 6c 76 65 20 | acking.Nexthop.tracking.resolve. |
| 67d60 | 6e 65 78 74 68 6f 70 73 20 76 69 61 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 62 | nexthops.via.the.default.route.b |
| 67d80 | 79 20 64 65 66 61 75 6c 74 2e 20 54 68 69 73 20 69 73 20 65 6e 61 62 6c 65 64 20 62 79 20 64 65 | y.default..This.is.enabled.by.de |
| 67da0 | 66 61 75 6c 74 20 66 6f 72 20 61 20 74 72 61 64 69 74 69 6f 6e 61 6c 20 70 72 6f 66 69 6c 65 20 | fault.for.a.traditional.profile. |
| 67dc0 | 6f 66 20 46 52 52 20 77 68 69 63 68 20 77 65 20 75 73 65 2e 20 49 74 20 61 6e 64 20 63 61 6e 20 | of.FRR.which.we.use..It.and.can. |
| 67de0 | 62 65 20 64 69 73 61 62 6c 65 64 20 69 66 20 79 6f 75 20 64 6f 20 6e 6f 74 20 77 61 6e 27 74 20 | be.disabled.if.you.do.not.wan't. |
| 67e00 | 74 6f 20 65 2e 67 2e 20 61 6c 6c 6f 77 20 42 47 50 20 74 6f 20 70 65 65 72 20 61 63 72 6f 73 73 | to.e.g..allow.BGP.to.peer.across |
| 67e20 | 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 2e 00 4e 65 78 74 68 6f 70 20 74 72 61 63 | .the.default.route..Nexthop.trac |
| 67e40 | 6b 69 6e 67 20 72 65 73 6f 6c 76 65 20 6e 65 78 74 68 6f 70 73 20 76 69 61 20 74 68 65 20 64 65 | king.resolve.nexthops.via.the.de |
| 67e60 | 66 61 75 6c 74 20 72 6f 75 74 65 20 62 79 20 64 65 66 61 75 6c 74 2e 20 54 68 69 73 20 69 73 20 | fault.route.by.default..This.is. |
| 67e80 | 65 6e 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 20 66 6f 72 20 61 20 74 72 61 64 69 74 69 | enabled.by.default.for.a.traditi |
| 67ea0 | 6f 6e 61 6c 20 70 72 6f 66 69 6c 65 20 6f 66 20 46 52 52 20 77 68 69 63 68 20 77 65 20 75 73 65 | onal.profile.of.FRR.which.we.use |
| 67ec0 | 2e 20 49 74 20 61 6e 64 20 63 61 6e 20 62 65 20 64 69 73 61 62 6c 65 64 20 69 66 20 79 6f 75 20 | ..It.and.can.be.disabled.if.you. |
| 67ee0 | 64 6f 20 6e 6f 74 20 77 61 6e 74 20 74 6f 20 65 2e 67 2e 20 61 6c 6c 6f 77 20 42 47 50 20 74 6f | do.not.want.to.e.g..allow.BGP.to |
| 67f00 | 20 70 65 65 72 20 61 63 72 6f 73 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 2e 00 | .peer.across.the.default.route.. |
| 67f20 | 4e 6f 20 52 4f 41 20 65 78 69 73 74 73 20 77 68 69 63 68 20 63 6f 76 65 72 73 20 74 68 61 74 20 | No.ROA.exists.which.covers.that. |
| 67f40 | 70 72 65 66 69 78 2e 20 55 6e 66 6f 72 74 75 6e 61 74 65 6c 79 20 74 68 69 73 20 69 73 20 74 68 | prefix..Unfortunately.this.is.th |
| 67f60 | 65 20 63 61 73 65 20 66 6f 72 20 61 62 6f 75 74 20 34 30 25 2d 35 30 25 20 6f 66 20 74 68 65 20 | e.case.for.about.40%-50%.of.the. |
| 67f80 | 70 72 65 66 69 78 65 73 20 77 68 69 63 68 20 77 65 72 65 20 61 6e 6e 6f 75 6e 63 65 64 20 74 6f | prefixes.which.were.announced.to |
| 67fa0 | 20 74 68 65 20 3a 61 62 62 72 3a 60 44 46 5a 20 28 64 65 66 61 75 6c 74 2d 66 72 65 65 20 7a 6f | .the.:abbr:`DFZ.(default-free.zo |
| 67fc0 | 6e 65 29 60 20 61 74 20 74 68 65 20 73 74 61 72 74 20 6f 66 20 32 30 32 34 2e 00 4e 6f 20 52 4f | ne)`.at.the.start.of.2024..No.RO |
| 67fe0 | 41 20 65 78 69 73 74 73 20 77 68 69 63 68 20 63 6f 76 65 72 73 20 74 68 61 74 20 70 72 65 66 69 | A.exists.which.covers.that.prefi |
| 68000 | 78 2e 20 55 6e 66 6f 72 74 75 6e 61 74 65 6c 79 20 74 68 69 73 20 69 73 20 74 68 65 20 63 61 73 | x..Unfortunately.this.is.the.cas |
| 68020 | 65 20 66 6f 72 20 61 62 6f 75 74 20 38 30 25 20 6f 66 20 74 68 65 20 49 50 76 34 20 70 72 65 66 | e.for.about.80%.of.the.IPv4.pref |
| 68040 | 69 78 65 73 20 77 68 69 63 68 20 77 65 72 65 20 61 6e 6e 6f 75 6e 63 65 64 20 74 6f 20 74 68 65 | ixes.which.were.announced.to.the |
| 68060 | 20 3a 61 62 62 72 3a 60 44 46 5a 20 28 64 65 66 61 75 6c 74 2d 66 72 65 65 20 7a 6f 6e 65 29 60 | .:abbr:`DFZ.(default-free.zone)` |
| 68080 | 20 61 74 20 74 68 65 20 73 74 61 72 74 20 6f 66 20 32 30 32 30 00 4e 6f 20 56 4c 41 4e 20 74 61 | .at.the.start.of.2020.No.VLAN.ta |
| 680a0 | 67 67 69 6e 67 20 72 65 71 75 69 72 65 64 20 62 79 20 79 6f 75 72 20 49 53 50 2e 00 4e 6f 20 72 | gging.required.by.your.ISP..No.r |
| 680c0 | 6f 75 74 65 20 69 73 20 73 75 70 70 72 65 73 73 65 64 20 69 6e 64 65 66 69 6e 69 74 65 6c 79 2e | oute.is.suppressed.indefinitely. |
| 680e0 | 20 4d 61 78 69 6d 75 6d 2d 73 75 70 70 72 65 73 73 2d 74 69 6d 65 20 64 65 66 69 6e 65 73 20 74 | .Maximum-suppress-time.defines.t |
| 68100 | 68 65 20 6d 61 78 69 6d 75 6d 20 74 69 6d 65 20 61 20 72 6f 75 74 65 20 63 61 6e 20 62 65 20 73 | he.maximum.time.a.route.can.be.s |
| 68120 | 75 70 70 72 65 73 73 65 64 20 62 65 66 6f 72 65 20 69 74 20 69 73 20 72 65 2d 61 64 76 65 72 74 | uppressed.before.it.is.re-advert |
| 68140 | 69 73 65 64 2e 00 4e 6f 20 73 75 70 70 6f 72 74 20 66 6f 72 20 53 52 4c 42 00 4e 6f 20 73 75 70 | ised..No.support.for.SRLB.No.sup |
| 68160 | 70 6f 72 74 20 66 6f 72 20 62 69 6e 64 69 6e 67 20 53 49 44 00 4e 6f 20 73 75 70 70 6f 72 74 20 | port.for.binding.SID.No.support. |
| 68180 | 66 6f 72 20 6c 65 76 65 6c 20 72 65 64 69 73 74 72 69 62 75 74 69 6f 6e 20 28 4c 31 20 74 6f 20 | for.level.redistribution.(L1.to. |
| 681a0 | 4c 32 20 6f 72 20 4c 32 20 74 6f 20 4c 31 29 00 4e 6f 6e 2d 74 72 61 6e 73 70 61 72 65 6e 74 20 | L2.or.L2.to.L1).Non-transparent. |
| 681c0 | 70 72 6f 78 79 69 6e 67 20 72 65 71 75 69 72 65 73 20 74 68 61 74 20 74 68 65 20 63 6c 69 65 6e | proxying.requires.that.the.clien |
| 681e0 | 74 20 62 72 6f 77 73 65 72 73 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 77 69 74 68 20 74 68 | t.browsers.be.configured.with.th |
| 68200 | 65 20 70 72 6f 78 79 20 73 65 74 74 69 6e 67 73 20 62 65 66 6f 72 65 20 72 65 71 75 65 73 74 73 | e.proxy.settings.before.requests |
| 68220 | 20 61 72 65 20 72 65 64 69 72 65 63 74 65 64 2e 20 54 68 65 20 61 64 76 61 6e 74 61 67 65 20 6f | .are.redirected..The.advantage.o |
| 68240 | 66 20 74 68 69 73 20 69 73 20 74 68 61 74 20 74 68 65 20 63 6c 69 65 6e 74 20 77 65 62 20 62 72 | f.this.is.that.the.client.web.br |
| 68260 | 6f 77 73 65 72 20 63 61 6e 20 64 65 74 65 63 74 20 74 68 61 74 20 61 20 70 72 6f 78 79 20 69 73 | owser.can.detect.that.a.proxy.is |
| 68280 | 20 69 6e 20 75 73 65 20 61 6e 64 20 63 61 6e 20 62 65 68 61 76 65 20 61 63 63 6f 72 64 69 6e 67 | .in.use.and.can.behave.according |
| 682a0 | 6c 79 2e 20 49 6e 20 61 64 64 69 74 69 6f 6e 2c 20 77 65 62 2d 74 72 61 6e 73 6d 69 74 74 65 64 | ly..In.addition,.web-transmitted |
| 682c0 | 20 6d 61 6c 77 61 72 65 20 63 61 6e 20 73 6f 6d 65 74 69 6d 65 73 20 62 65 20 62 6c 6f 63 6b 65 | .malware.can.sometimes.be.blocke |
| 682e0 | 64 20 62 79 20 61 20 6e 6f 6e 2d 74 72 61 6e 73 70 61 72 65 6e 74 20 77 65 62 20 70 72 6f 78 79 | d.by.a.non-transparent.web.proxy |
| 68300 | 2c 20 73 69 6e 63 65 20 74 68 65 79 20 61 72 65 20 6e 6f 74 20 61 77 61 72 65 20 6f 66 20 74 68 | ,.since.they.are.not.aware.of.th |
| 68320 | 65 20 70 72 6f 78 79 20 73 65 74 74 69 6e 67 73 2e 00 4e 6f 6e 65 20 6f 66 20 74 68 65 20 6f 70 | e.proxy.settings..None.of.the.op |
| 68340 | 65 72 61 74 69 6e 67 20 73 79 73 74 65 6d 73 20 68 61 76 65 20 63 6c 69 65 6e 74 20 73 6f 66 74 | erating.systems.have.client.soft |
| 68360 | 77 61 72 65 20 69 6e 73 74 61 6c 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 00 4e 6f 72 6d 61 6c | ware.installed.by.default.Normal |
| 68380 | 20 62 75 74 20 73 69 67 6e 69 66 69 63 61 6e 74 20 63 6f 6e 64 69 74 69 6f 6e 73 20 2d 20 63 6f | .but.significant.conditions.-.co |
| 683a0 | 6e 64 69 74 69 6f 6e 73 20 74 68 61 74 20 61 72 65 20 6e 6f 74 20 65 72 72 6f 72 20 63 6f 6e 64 | nditions.that.are.not.error.cond |
| 683c0 | 69 74 69 6f 6e 73 2c 20 62 75 74 20 74 68 61 74 20 6d 61 79 20 72 65 71 75 69 72 65 20 73 70 65 | itions,.but.that.may.require.spe |
| 683e0 | 63 69 61 6c 20 68 61 6e 64 6c 69 6e 67 2e 00 4e 6f 74 20 61 6c 6c 20 3a 72 66 63 3a 60 36 38 38 | cial.handling..Not.all.:rfc:`688 |
| 68400 | 38 60 20 72 65 71 75 69 72 65 6d 65 6e 74 73 20 61 72 65 20 69 6d 70 6c 65 6d 65 6e 74 65 64 20 | 8`.requirements.are.implemented. |
| 68420 | 69 6e 20 43 47 4e 41 54 2e 00 4e 6f 74 20 61 6c 6c 20 74 72 61 6e 73 6d 69 74 20 70 6f 6c 69 63 | in.CGNAT..Not.all.transmit.polic |
| 68440 | 69 65 73 20 6d 61 79 20 62 65 20 38 30 32 2e 33 61 64 20 63 6f 6d 70 6c 69 61 6e 74 2c 20 70 61 | ies.may.be.802.3ad.compliant,.pa |
| 68460 | 72 74 69 63 75 6c 61 72 6c 79 20 69 6e 20 72 65 67 61 72 64 73 20 74 6f 20 74 68 65 20 70 61 63 | rticularly.in.regards.to.the.pac |
| 68480 | 6b 65 74 20 6d 69 73 6f 72 64 65 72 69 6e 67 20 72 65 71 75 69 72 65 6d 65 6e 74 73 20 6f 66 20 | ket.misordering.requirements.of. |
| 684a0 | 73 65 63 74 69 6f 6e 20 34 33 2e 32 2e 34 20 6f 66 20 74 68 65 20 38 30 32 2e 33 61 64 20 73 74 | section.43.2.4.of.the.802.3ad.st |
| 684c0 | 61 6e 64 61 72 64 2e 00 4e 6f 74 65 20 74 68 61 74 20 64 65 6c 65 74 69 6e 67 20 74 68 65 20 6c | andard..Note.that.deleting.the.l |
| 684e0 | 6f 67 20 66 69 6c 65 20 64 6f 65 73 20 6e 6f 74 20 73 74 6f 70 20 74 68 65 20 73 79 73 74 65 6d | og.file.does.not.stop.the.system |
| 68500 | 20 66 72 6f 6d 20 6c 6f 67 67 69 6e 67 20 65 76 65 6e 74 73 2e 20 49 66 20 79 6f 75 20 75 73 65 | .from.logging.events..If.you.use |
| 68520 | 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 68 69 6c 65 20 74 68 65 20 73 79 73 74 65 6d 20 69 | .this.command.while.the.system.i |
| 68540 | 73 20 6c 6f 67 67 69 6e 67 20 65 76 65 6e 74 73 2c 20 6f 6c 64 20 6c 6f 67 20 65 76 65 6e 74 73 | s.logging.events,.old.log.events |
| 68560 | 20 77 69 6c 6c 20 62 65 20 64 65 6c 65 74 65 64 2c 20 62 75 74 20 65 76 65 6e 74 73 20 61 66 74 | .will.be.deleted,.but.events.aft |
| 68580 | 65 72 20 74 68 65 20 64 65 6c 65 74 65 20 6f 70 65 72 61 74 69 6f 6e 20 77 69 6c 6c 20 62 65 20 | er.the.delete.operation.will.be. |
| 685a0 | 72 65 63 6f 72 64 65 64 20 69 6e 20 74 68 65 20 6e 65 77 20 66 69 6c 65 2e 20 54 6f 20 64 65 6c | recorded.in.the.new.file..To.del |
| 685c0 | 65 74 65 20 74 68 65 20 66 69 6c 65 20 61 6c 74 6f 67 65 74 68 65 72 2c 20 66 69 72 73 74 20 64 | ete.the.file.altogether,.first.d |
| 685e0 | 65 6c 65 74 65 20 6c 6f 67 67 69 6e 67 20 74 6f 20 74 68 65 20 66 69 6c 65 20 75 73 69 6e 67 20 | elete.logging.to.the.file.using. |
| 68600 | 73 79 73 74 65 6d 20 73 79 73 6c 6f 67 20 3a 72 65 66 3a 60 63 75 73 74 6f 6d 2d 66 69 6c 65 60 | system.syslog.:ref:`custom-file` |
| 68620 | 20 63 6f 6d 6d 61 6e 64 2c 20 61 6e 64 20 74 68 65 6e 20 64 65 6c 65 74 65 20 74 68 65 20 66 69 | .command,.and.then.delete.the.fi |
| 68640 | 6c 65 2e 00 4e 6f 74 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 77 69 74 68 20 74 68 65 20 70 75 | le..Note.the.command.with.the.pu |
| 68660 | 62 6c 69 63 20 6b 65 79 20 28 73 65 74 20 70 6b 69 20 6b 65 79 2d 70 61 69 72 20 69 70 73 65 63 | blic.key.(set.pki.key-pair.ipsec |
| 68680 | 2d 52 49 47 48 54 20 70 75 62 6c 69 63 20 6b 65 79 20 27 46 41 41 4f 43 41 51 38 41 4d 49 49 2e | -RIGHT.public.key.'FAAOCAQ8AMII. |
| 686a0 | 2e 2e 27 29 2e 00 4e 6f 74 65 3a 20 63 65 72 74 69 66 69 63 61 74 65 20 6e 61 6d 65 73 20 64 6f | ..')..Note:.certificate.names.do |
| 686c0 | 6e 27 74 20 6d 61 74 74 65 72 2c 20 77 65 20 75 73 65 20 27 6f 70 65 6e 76 70 6e 2d 6c 6f 63 61 | n't.matter,.we.use.'openvpn-loca |
| 686e0 | 6c 27 20 61 6e 64 20 27 6f 70 65 6e 76 70 6e 2d 72 65 6d 6f 74 65 27 20 62 75 74 20 74 68 65 79 | l'.and.'openvpn-remote'.but.they |
| 68700 | 20 63 61 6e 20 62 65 20 61 72 62 69 74 72 61 72 79 2e 00 4e 6f 74 69 63 65 00 4e 6f 77 20 63 6f | .can.be.arbitrary..Notice.Now.co |
| 68720 | 6e 66 69 67 75 72 65 20 63 6f 6e 6e 74 72 61 63 6b 2d 73 79 6e 63 20 73 65 72 76 69 63 65 20 6f | nfigure.conntrack-sync.service.o |
| 68740 | 6e 20 60 60 72 6f 75 74 65 72 31 60 60 20 2a 2a 61 6e 64 2a 2a 20 60 60 72 6f 75 74 65 72 32 60 | n.``router1``.**and**.``router2` |
| 68760 | 60 00 4e 6f 77 20 74 68 65 20 6e 6f 74 65 64 20 70 75 62 6c 69 63 20 6b 65 79 73 20 73 68 6f 75 | `.Now.the.noted.public.keys.shou |
| 68780 | 6c 64 20 62 65 20 65 6e 74 65 72 65 64 20 6f 6e 20 74 68 65 20 6f 70 70 6f 73 69 74 65 20 72 6f | ld.be.entered.on.the.opposite.ro |
| 687a0 | 75 74 65 72 73 2e 00 4e 6f 77 20 74 68 65 20 75 73 65 72 20 63 61 6e 20 63 6f 6e 6e 65 63 74 20 | uters..Now.the.user.can.connect. |
| 687c0 | 74 68 72 6f 75 67 68 20 73 73 68 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 28 61 73 73 75 6d | through.ssh.to.the.router.(assum |
| 687e0 | 69 6e 67 20 73 73 68 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 29 2e 00 4e 6f 77 20 75 73 65 72 | ing.ssh.is.configured)..Now.user |
| 68800 | 20 63 61 6e 20 63 6f 6e 6e 65 63 74 20 74 68 72 6f 75 67 68 20 73 73 68 20 74 6f 20 74 68 65 20 | .can.connect.through.ssh.to.the. |
| 68820 | 72 6f 75 74 65 72 20 28 61 73 73 75 6d 69 6e 67 20 73 73 68 20 69 73 20 63 6f 6e 66 69 67 75 72 | router.(assuming.ssh.is.configur |
| 68840 | 65 64 29 2e 00 4e 6f 77 20 77 65 20 61 64 64 20 74 68 65 20 6f 70 74 69 6f 6e 20 74 6f 20 74 68 | ed)..Now.we.add.the.option.to.th |
| 68860 | 65 20 73 63 6f 70 65 2c 20 61 64 61 70 74 20 74 6f 20 79 6f 75 72 20 73 65 74 75 70 00 4e 6f 77 | e.scope,.adapt.to.your.setup.Now |
| 68880 | 20 77 65 20 6e 65 65 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 73 65 72 76 65 72 20 6e | .we.need.to.specify.the.server.n |
| 688a0 | 65 74 77 6f 72 6b 20 73 65 74 74 69 6e 67 73 2e 20 49 6e 20 61 6c 6c 20 63 61 73 65 73 20 77 65 | etwork.settings..In.all.cases.we |
| 688c0 | 20 6e 65 65 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 73 75 62 6e 65 74 20 66 6f 72 20 | .need.to.specify.the.subnet.for. |
| 688e0 | 63 6c 69 65 6e 74 20 74 75 6e 6e 65 6c 20 65 6e 64 70 6f 69 6e 74 73 2e 20 53 69 6e 63 65 20 77 | client.tunnel.endpoints..Since.w |
| 68900 | 65 20 77 61 6e 74 20 63 6c 69 65 6e 74 73 20 74 6f 20 61 63 63 65 73 73 20 61 20 73 70 65 63 69 | e.want.clients.to.access.a.speci |
| 68920 | 66 69 63 20 6e 65 74 77 6f 72 6b 20 62 65 68 69 6e 64 20 6f 75 72 20 72 6f 75 74 65 72 2c 20 77 | fic.network.behind.our.router,.w |
| 68940 | 65 20 77 69 6c 6c 20 75 73 65 20 61 20 70 75 73 68 2d 72 6f 75 74 65 20 6f 70 74 69 6f 6e 20 66 | e.will.use.a.push-route.option.f |
| 68960 | 6f 72 20 69 6e 73 74 61 6c 6c 69 6e 67 20 74 68 61 74 20 72 6f 75 74 65 20 6f 6e 20 63 6c 69 65 | or.installing.that.route.on.clie |
| 68980 | 6e 74 73 2e 00 4e 6f 77 20 77 68 65 6e 20 63 6f 6e 6e 65 63 74 69 6e 67 20 74 68 65 20 75 73 65 | nts..Now.when.connecting.the.use |
| 689a0 | 72 20 77 69 6c 6c 20 66 69 72 73 74 20 62 65 20 61 73 6b 65 64 20 66 6f 72 20 74 68 65 20 70 61 | r.will.first.be.asked.for.the.pa |
| 689c0 | 73 73 77 6f 72 64 20 61 6e 64 20 74 68 65 6e 20 74 68 65 20 4f 54 50 20 6b 65 79 2e 00 4e 6f 77 | ssword.and.then.the.OTP.key..Now |
| 689e0 | 20 79 6f 75 20 61 72 65 20 72 65 61 64 79 20 74 6f 20 73 65 74 75 70 20 49 50 73 65 63 2e 20 54 | .you.are.ready.to.setup.IPsec..T |
| 68a00 | 68 65 20 6b 65 79 20 70 6f 69 6e 74 73 3a 00 4e 6f 77 20 79 6f 75 20 61 72 65 20 72 65 61 64 79 | he.key.points:.Now.you.are.ready |
| 68a20 | 20 74 6f 20 73 65 74 75 70 20 49 50 73 65 63 2e 20 59 6f 75 27 6c 6c 20 6e 65 65 64 20 74 6f 20 | .to.setup.IPsec..You'll.need.to. |
| 68a40 | 75 73 65 20 61 6e 20 49 44 20 69 6e 73 74 65 61 64 20 6f 66 20 61 64 64 72 65 73 73 20 66 6f 72 | use.an.ID.instead.of.address.for |
| 68a60 | 20 74 68 65 20 70 65 65 72 2e 00 4e 75 6d 62 65 72 20 6f 66 20 61 6e 74 65 6e 6e 61 73 20 6f 6e | .the.peer..Number.of.antennas.on |
| 68a80 | 20 74 68 69 73 20 63 61 72 64 00 4e 75 6d 62 65 72 20 6f 66 20 62 69 74 73 20 6f 66 20 63 6c 69 | .this.card.Number.of.bits.of.cli |
| 68aa0 | 65 6e 74 20 49 50 76 34 20 61 64 64 72 65 73 73 20 74 6f 20 70 61 73 73 20 77 68 65 6e 20 73 65 | ent.IPv4.address.to.pass.when.se |
| 68ac0 | 6e 64 69 6e 67 20 45 44 4e 53 20 43 6c 69 65 6e 74 20 53 75 62 6e 65 74 20 61 64 64 72 65 73 73 | nding.EDNS.Client.Subnet.address |
| 68ae0 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 4e 75 6d 62 65 72 20 6f 66 20 6c 69 6e 65 73 20 74 6f | .information..Number.of.lines.to |
| 68b00 | 20 62 65 20 64 69 73 70 6c 61 79 65 64 2c 20 64 65 66 61 75 6c 74 20 31 30 00 4f 53 50 46 00 4f | .be.displayed,.default.10.OSPF.O |
| 68b20 | 53 50 46 20 53 52 20 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 4f 53 50 46 20 69 73 20 61 20 | SPF.SR..Configuration.OSPF.is.a. |
| 68b40 | 77 69 64 65 6c 79 20 75 73 65 64 20 49 47 50 20 69 6e 20 6c 61 72 67 65 20 65 6e 74 65 72 70 72 | widely.used.IGP.in.large.enterpr |
| 68b60 | 69 73 65 20 6e 65 74 77 6f 72 6b 73 2e 00 4f 53 50 46 20 72 6f 75 74 69 6e 67 20 64 65 76 69 63 | ise.networks..OSPF.routing.devic |
| 68b80 | 65 73 20 6e 6f 72 6d 61 6c 6c 79 20 64 69 73 63 6f 76 65 72 20 74 68 65 69 72 20 6e 65 69 67 68 | es.normally.discover.their.neigh |
| 68ba0 | 62 6f 72 73 20 64 79 6e 61 6d 69 63 61 6c 6c 79 20 62 79 20 6c 69 73 74 65 6e 69 6e 67 20 74 6f | bors.dynamically.by.listening.to |
| 68bc0 | 20 74 68 65 20 62 72 6f 61 64 63 61 73 74 20 6f 72 20 6d 75 6c 74 69 63 61 73 74 20 68 65 6c 6c | .the.broadcast.or.multicast.hell |
| 68be0 | 6f 20 70 61 63 6b 65 74 73 20 6f 6e 20 74 68 65 20 6e 65 74 77 6f 72 6b 2e 20 42 65 63 61 75 73 | o.packets.on.the.network..Becaus |
| 68c00 | 65 20 61 6e 20 4e 42 4d 41 20 6e 65 74 77 6f 72 6b 20 64 6f 65 73 20 6e 6f 74 20 73 75 70 70 6f | e.an.NBMA.network.does.not.suppo |
| 68c20 | 72 74 20 62 72 6f 61 64 63 61 73 74 20 28 6f 72 20 6d 75 6c 74 69 63 61 73 74 29 2c 20 74 68 65 | rt.broadcast.(or.multicast),.the |
| 68c40 | 20 64 65 76 69 63 65 20 63 61 6e 6e 6f 74 20 64 69 73 63 6f 76 65 72 20 69 74 73 20 6e 65 69 67 | .device.cannot.discover.its.neig |
| 68c60 | 68 62 6f 72 73 20 64 79 6e 61 6d 69 63 61 6c 6c 79 2c 20 73 6f 20 79 6f 75 20 6d 75 73 74 20 63 | hbors.dynamically,.so.you.must.c |
| 68c80 | 6f 6e 66 69 67 75 72 65 20 61 6c 6c 20 74 68 65 20 6e 65 69 67 68 62 6f 72 73 20 73 74 61 74 69 | onfigure.all.the.neighbors.stati |
| 68ca0 | 63 61 6c 6c 79 2e 00 4f 53 50 46 76 32 20 28 49 50 76 34 29 00 4f 53 50 46 76 33 20 28 49 50 76 | cally..OSPFv2.(IPv4).OSPFv3.(IPv |
| 68cc0 | 36 29 00 4f 54 50 2d 6b 65 79 20 67 65 6e 65 72 61 74 69 6f 6e 00 4f 66 66 6c 6f 61 64 69 6e 67 | 6).OTP-key.generation.Offloading |
| 68ce0 | 00 4f 66 66 73 65 74 20 6f 66 20 74 68 65 20 63 6c 69 65 6e 74 27 73 20 73 75 62 6e 65 74 20 69 | .Offset.of.the.client's.subnet.i |
| 68d00 | 6e 20 73 65 63 6f 6e 64 73 20 66 72 6f 6d 20 43 6f 6f 72 64 69 6e 61 74 65 64 20 55 6e 69 76 65 | n.seconds.from.Coordinated.Unive |
| 68d20 | 72 73 61 6c 20 54 69 6d 65 20 28 55 54 43 29 00 4f 66 74 65 6e 20 77 65 20 6e 65 65 64 20 74 6f | rsal.Time.(UTC).Often.we.need.to |
| 68d40 | 20 65 6d 62 65 64 20 6f 6e 65 20 70 6f 6c 69 63 79 20 69 6e 74 6f 20 61 6e 6f 74 68 65 72 20 6f | .embed.one.policy.into.another.o |
| 68d60 | 6e 65 2e 20 49 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 64 6f 20 73 6f 20 6f 6e 20 63 | ne..It.is.possible.to.do.so.on.c |
| 68d80 | 6c 61 73 73 66 75 6c 20 70 6f 6c 69 63 69 65 73 2c 20 62 79 20 61 74 74 61 63 68 69 6e 67 20 61 | lassful.policies,.by.attaching.a |
| 68da0 | 20 6e 65 77 20 70 6f 6c 69 63 79 20 69 6e 74 6f 20 61 20 63 6c 61 73 73 2e 20 46 6f 72 20 69 6e | .new.policy.into.a.class..For.in |
| 68dc0 | 73 74 61 6e 63 65 2c 20 79 6f 75 20 6d 69 67 68 74 20 77 61 6e 74 20 74 6f 20 61 70 70 6c 79 20 | stance,.you.might.want.to.apply. |
| 68de0 | 64 69 66 66 65 72 65 6e 74 20 70 6f 6c 69 63 69 65 73 20 74 6f 20 74 68 65 20 64 69 66 66 65 72 | different.policies.to.the.differ |
| 68e00 | 65 6e 74 20 63 6c 61 73 73 65 73 20 6f 66 20 61 20 52 6f 75 6e 64 2d 52 6f 62 69 6e 20 70 6f 6c | ent.classes.of.a.Round-Robin.pol |
| 68e20 | 69 63 79 20 79 6f 75 20 68 61 76 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 4f 66 74 65 6e 20 79 | icy.you.have.configured..Often.y |
| 68e40 | 6f 75 20 77 69 6c 6c 20 61 6c 73 6f 20 68 61 76 65 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 79 | ou.will.also.have.to.configure.y |
| 68e60 | 6f 75 72 20 2a 64 65 66 61 75 6c 74 2a 20 74 72 61 66 66 69 63 20 69 6e 20 74 68 65 20 73 61 6d | our.*default*.traffic.in.the.sam |
| 68e80 | 65 20 77 61 79 20 79 6f 75 20 64 6f 20 77 69 74 68 20 61 20 63 6c 61 73 73 2e 20 2a 44 65 66 61 | e.way.you.do.with.a.class..*Defa |
| 68ea0 | 75 6c 74 2a 20 63 61 6e 20 62 65 20 63 6f 6e 73 69 64 65 72 65 64 20 61 20 63 6c 61 73 73 20 61 | ult*.can.be.considered.a.class.a |
| 68ec0 | 73 20 69 74 20 62 65 68 61 76 65 73 20 6c 69 6b 65 20 74 68 61 74 2e 20 49 74 20 63 6f 6e 74 61 | s.it.behaves.like.that..It.conta |
| 68ee0 | 69 6e 73 20 61 6e 79 20 74 72 61 66 66 69 63 20 74 68 61 74 20 64 69 64 20 6e 6f 74 20 6d 61 74 | ins.any.traffic.that.did.not.mat |
| 68f00 | 63 68 20 61 6e 79 20 6f 66 20 74 68 65 20 64 65 66 69 6e 65 64 20 63 6c 61 73 73 65 73 2c 20 73 | ch.any.of.the.defined.classes,.s |
| 68f20 | 6f 20 69 74 20 69 73 20 6c 69 6b 65 20 61 6e 20 6f 70 65 6e 20 63 6c 61 73 73 2c 20 61 20 63 6c | o.it.is.like.an.open.class,.a.cl |
| 68f40 | 61 73 73 20 77 69 74 68 6f 75 74 20 6d 61 74 63 68 69 6e 67 20 66 69 6c 74 65 72 73 2e 00 4f 6e | ass.without.matching.filters..On |
| 68f60 | 20 61 63 74 69 76 65 20 72 6f 75 74 65 72 20 72 75 6e 3a 00 4f 6e 20 62 6f 74 68 20 73 69 64 65 | .active.router.run:.On.both.side |
| 68f80 | 73 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 67 65 6e 65 72 61 74 65 20 61 20 73 65 6c 66 2d 73 | s,.you.need.to.generate.a.self-s |
| 68fa0 | 69 67 6e 65 64 20 63 65 72 74 69 66 69 63 61 74 65 2c 20 70 72 65 66 65 72 72 61 62 6c 79 20 75 | igned.certificate,.preferrably.u |
| 68fc0 | 73 69 6e 67 20 74 68 65 20 22 65 63 22 20 28 65 6c 6c 69 70 74 69 63 20 63 75 72 76 65 29 20 74 | sing.the."ec".(elliptic.curve).t |
| 68fe0 | 79 70 65 2e 20 59 6f 75 20 63 61 6e 20 67 65 6e 65 72 61 74 65 20 74 68 65 6d 20 62 79 20 65 78 | ype..You.can.generate.them.by.ex |
| 69000 | 65 63 75 74 69 6e 67 20 63 6f 6d 6d 61 6e 64 20 60 60 72 75 6e 20 67 65 6e 65 72 61 74 65 20 70 | ecuting.command.``run.generate.p |
| 69020 | 6b 69 20 63 65 72 74 69 66 69 63 61 74 65 20 73 65 6c 66 2d 73 69 67 6e 65 64 20 69 6e 73 74 61 | ki.certificate.self-signed.insta |
| 69040 | 6c 6c 20 3c 6e 61 6d 65 3e 60 60 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | ll.<name>``.in.the.configuration |
| 69060 | 20 6d 6f 64 65 2e 20 4f 6e 63 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 69 73 20 63 6f 6d 70 6c | .mode..Once.the.command.is.compl |
| 69080 | 65 74 65 2c 20 69 74 20 77 69 6c 6c 20 61 64 64 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 | ete,.it.will.add.the.certificate |
| 690a0 | 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 65 73 73 69 6f 6e 2c 20 74 | .to.the.configuration.session,.t |
| 690c0 | 6f 20 74 68 65 20 60 60 70 6b 69 60 60 20 73 75 62 74 72 65 65 2e 20 59 6f 75 20 63 61 6e 20 74 | o.the.``pki``.subtree..You.can.t |
| 690e0 | 68 65 6e 20 72 65 76 69 65 77 20 74 68 65 20 70 72 6f 70 6f 73 65 64 20 63 68 61 6e 67 65 73 20 | hen.review.the.proposed.changes. |
| 69100 | 61 6e 64 20 63 6f 6d 6d 69 74 20 74 68 65 6d 2e 00 4f 6e 20 6c 6f 77 20 72 61 74 65 73 20 28 62 | and.commit.them..On.low.rates.(b |
| 69120 | 65 6c 6f 77 20 34 30 4d 62 69 74 29 20 79 6f 75 20 6d 61 79 20 77 61 6e 74 20 74 6f 20 74 75 6e | elow.40Mbit).you.may.want.to.tun |
| 69140 | 65 20 60 71 75 61 6e 74 75 6d 60 20 64 6f 77 6e 20 74 6f 20 73 6f 6d 65 74 68 69 6e 67 20 6c 69 | e.`quantum`.down.to.something.li |
| 69160 | 6b 65 20 33 30 30 20 62 79 74 65 73 2e 00 4f 6e 20 6d 6f 73 74 20 73 63 65 6e 61 72 69 6f 73 2c | ke.300.bytes..On.most.scenarios, |
| 69180 | 20 74 68 65 72 65 27 73 20 6e 6f 20 6e 65 65 64 20 74 6f 20 63 68 61 6e 67 65 20 73 70 65 63 69 | .there's.no.need.to.change.speci |
| 691a0 | 66 69 63 20 70 61 72 61 6d 65 74 65 72 73 2c 20 61 6e 64 20 75 73 69 6e 67 20 64 65 66 61 75 6c | fic.parameters,.and.using.defaul |
| 691c0 | 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 65 6e 6f 75 67 68 2e 20 42 75 74 20 74 | t.configuration.is.enough..But.t |
| 691e0 | 68 65 72 65 20 61 72 65 20 63 61 73 65 73 20 77 65 72 65 20 65 78 74 72 61 20 63 6f 6e 66 69 67 | here.are.cases.were.extra.config |
| 69200 | 75 72 61 74 69 6f 6e 20 69 73 20 6e 65 65 64 65 64 2e 00 4f 6e 20 73 74 61 6e 64 62 79 20 72 6f | uration.is.needed..On.standby.ro |
| 69220 | 75 74 65 72 20 72 75 6e 3a 00 4f 6e 20 73 79 73 74 65 6d 73 20 77 69 74 68 20 6d 75 6c 74 69 70 | uter.run:.On.systems.with.multip |
| 69240 | 6c 65 20 72 65 64 75 6e 64 61 6e 74 20 75 70 6c 69 6e 6b 73 20 61 6e 64 20 72 6f 75 74 65 73 2c | le.redundant.uplinks.and.routes, |
| 69260 | 20 69 74 27 73 20 61 20 67 6f 6f 64 20 69 64 65 61 20 74 6f 20 75 73 65 20 61 20 64 65 64 69 63 | .it's.a.good.idea.to.use.a.dedic |
| 69280 | 61 74 65 64 20 61 64 64 72 65 73 73 20 66 6f 72 20 6d 61 6e 61 67 65 6d 65 6e 74 20 61 6e 64 20 | ated.address.for.management.and. |
| 692a0 | 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 2e 20 48 6f 77 65 76 | dynamic.routing.protocols..Howev |
| 692c0 | 65 72 2c 20 61 73 73 69 67 6e 69 6e 67 20 74 68 61 74 20 61 64 64 72 65 73 73 20 74 6f 20 61 20 | er,.assigning.that.address.to.a. |
| 692e0 | 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 20 69 73 20 72 69 73 6b 79 3a 20 69 66 20 74 68 61 74 20 | physical.link.is.risky:.if.that. |
| 69300 | 6c 69 6e 6b 20 67 6f 65 73 20 64 6f 77 6e 2c 20 74 68 61 74 20 61 64 64 72 65 73 73 20 77 69 6c | link.goes.down,.that.address.wil |
| 69320 | 6c 20 62 65 63 6f 6d 65 20 69 6e 61 63 63 65 73 73 69 62 6c 65 2e 20 41 20 63 6f 6d 6d 6f 6e 20 | l.become.inaccessible..A.common. |
| 69340 | 73 6f 6c 75 74 69 6f 6e 20 69 73 20 74 6f 20 61 73 73 69 67 6e 20 74 68 65 20 6d 61 6e 61 67 65 | solution.is.to.assign.the.manage |
| 69360 | 6d 65 6e 74 20 61 64 64 72 65 73 73 20 74 6f 20 61 20 6c 6f 6f 70 62 61 63 6b 20 6f 72 20 61 20 | ment.address.to.a.loopback.or.a. |
| 69380 | 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 61 64 76 65 72 74 69 73 65 20 74 68 | dummy.interface.and.advertise.th |
| 693a0 | 61 74 20 61 64 64 72 65 73 73 20 76 69 61 20 61 6c 6c 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b | at.address.via.all.physical.link |
| 693c0 | 73 2c 20 73 6f 20 74 68 61 74 20 69 74 27 73 20 72 65 61 63 68 61 62 6c 65 20 74 68 72 6f 75 67 | s,.so.that.it's.reachable.throug |
| 693e0 | 68 20 61 6e 79 20 6f 66 20 74 68 65 6d 2e 20 53 69 6e 63 65 20 69 6e 20 4c 69 6e 75 78 2d 62 61 | h.any.of.them..Since.in.Linux-ba |
| 69400 | 73 65 64 20 73 79 73 74 65 6d 73 2c 20 74 68 65 72 65 20 63 61 6e 20 62 65 20 6f 6e 6c 79 20 6f | sed.systems,.there.can.be.only.o |
| 69420 | 6e 65 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 2c 20 69 74 27 73 20 62 65 74 74 | ne.loopback.interface,.it's.bett |
| 69440 | 65 72 20 74 6f 20 75 73 65 20 61 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 | er.to.use.a.dummy.interface.for. |
| 69460 | 74 68 61 74 20 70 75 72 70 6f 73 65 2c 20 73 69 6e 63 65 20 74 68 65 79 20 63 61 6e 20 62 65 20 | that.purpose,.since.they.can.be. |
| 69480 | 61 64 64 65 64 2c 20 72 65 6d 6f 76 65 64 2c 20 61 6e 64 20 74 61 6b 65 6e 20 75 70 20 61 6e 64 | added,.removed,.and.taken.up.and |
| 694a0 | 20 64 6f 77 6e 20 69 6e 64 65 70 65 6e 64 65 6e 74 6c 79 2e 00 4f 6e 20 74 68 65 20 4c 45 46 54 | .down.independently..On.the.LEFT |
| 694c0 | 20 28 73 74 61 74 69 63 20 61 64 64 72 65 73 73 29 3a 00 4f 6e 20 74 68 65 20 4c 45 46 54 3a 00 | .(static.address):.On.the.LEFT:. |
| 694e0 | 4f 6e 20 74 68 65 20 52 49 47 48 54 20 28 64 79 6e 61 6d 69 63 20 61 64 64 72 65 73 73 29 3a 00 | On.the.RIGHT.(dynamic.address):. |
| 69500 | 4f 6e 20 74 68 65 20 52 49 47 48 54 2c 20 73 65 74 75 70 20 62 79 20 61 6e 61 6c 6f 67 79 20 61 | On.the.RIGHT,.setup.by.analogy.a |
| 69520 | 6e 64 20 73 77 61 70 20 6c 6f 63 61 6c 20 61 6e 64 20 72 65 6d 6f 74 65 20 61 64 64 72 65 73 73 | nd.swap.local.and.remote.address |
| 69540 | 65 73 2e 00 4f 6e 20 74 68 65 20 52 49 47 48 54 3a 00 4f 6e 20 74 68 65 20 61 63 74 69 76 65 20 | es..On.the.RIGHT:.On.the.active. |
| 69560 | 72 6f 75 74 65 72 2c 20 79 6f 75 20 73 68 6f 75 6c 64 20 68 61 76 65 20 69 6e 66 6f 72 6d 61 74 | router,.you.should.have.informat |
| 69580 | 69 6f 6e 20 69 6e 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 2d 63 61 63 68 65 20 6f 66 20 63 6f 6e | ion.in.the.internal-cache.of.con |
| 695a0 | 6e 74 72 61 63 6b 2d 73 79 6e 63 2e 20 54 68 65 20 73 61 6d 65 20 63 75 72 72 65 6e 74 20 61 63 | ntrack-sync..The.same.current.ac |
| 695c0 | 74 69 76 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 6e 75 6d 62 65 72 20 73 68 6f 75 6c 64 20 62 | tive.connections.number.should.b |
| 695e0 | 65 20 73 68 6f 77 6e 20 69 6e 20 74 68 65 20 65 78 74 65 72 6e 61 6c 2d 63 61 63 68 65 20 6f 66 | e.shown.in.the.external-cache.of |
| 69600 | 20 74 68 65 20 73 74 61 6e 64 62 79 20 72 6f 75 74 65 72 00 4f 6e 20 74 68 65 20 69 6e 69 74 69 | .the.standby.router.On.the.initi |
| 69620 | 61 74 6f 72 2c 20 77 65 20 6e 65 65 64 20 74 6f 20 73 65 74 20 74 68 65 20 72 65 6d 6f 74 65 2d | ator,.we.need.to.set.the.remote- |
| 69640 | 69 64 20 6f 70 74 69 6f 6e 20 73 6f 20 74 68 61 74 20 69 74 20 63 61 6e 20 69 64 65 6e 74 69 66 | id.option.so.that.it.can.identif |
| 69660 | 79 20 49 4b 45 20 74 72 61 66 66 69 63 20 66 72 6f 6d 20 74 68 65 20 72 65 73 70 6f 6e 64 65 72 | y.IKE.traffic.from.the.responder |
| 69680 | 20 63 6f 72 72 65 63 74 6c 79 2e 00 4f 6e 20 74 68 65 20 69 6e 69 74 69 61 74 6f 72 2c 20 77 65 | .correctly..On.the.initiator,.we |
| 696a0 | 20 73 65 74 20 74 68 65 20 70 65 65 72 20 61 64 64 72 65 73 73 20 74 6f 20 69 74 73 20 70 75 62 | .set.the.peer.address.to.its.pub |
| 696c0 | 6c 69 63 20 61 64 64 72 65 73 73 2c 20 62 75 74 20 6f 6e 20 74 68 65 20 72 65 73 70 6f 6e 64 65 | lic.address,.but.on.the.responde |
| 696e0 | 72 20 77 65 20 6f 6e 6c 79 20 73 65 74 20 74 68 65 20 69 64 2e 00 4f 6e 20 74 68 65 20 6c 61 73 | r.we.only.set.the.id..On.the.las |
| 69700 | 74 20 68 6f 70 20 72 6f 75 74 65 72 20 69 66 20 69 74 20 69 73 20 64 65 73 69 72 65 64 20 74 6f | t.hop.router.if.it.is.desired.to |
| 69720 | 20 6e 6f 74 20 73 77 69 74 63 68 20 6f 76 65 72 20 74 6f 20 74 68 65 20 53 50 54 20 74 72 65 65 | .not.switch.over.to.the.SPT.tree |
| 69740 | 20 63 6f 6e 66 69 67 75 72 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 2e 00 4f 6e 20 74 68 65 20 | .configure.this.command..On.the. |
| 69760 | 72 65 73 70 6f 6e 64 65 72 2c 20 77 65 20 6e 65 65 64 20 74 6f 20 73 65 74 20 74 68 65 20 6c 6f | responder,.we.need.to.set.the.lo |
| 69780 | 63 61 6c 20 69 64 20 73 6f 20 74 68 61 74 20 69 6e 69 74 69 61 74 6f 72 20 63 61 6e 20 6b 6e 6f | cal.id.so.that.initiator.can.kno |
| 697a0 | 77 20 77 68 6f 27 73 20 74 61 6c 6b 69 6e 67 20 74 6f 20 69 74 20 66 6f 72 20 74 68 65 20 70 6f | w.who's.talking.to.it.for.the.po |
| 697c0 | 69 6e 74 20 23 33 20 74 6f 20 77 6f 72 6b 2e 00 4f 6e 63 65 20 61 20 63 6c 61 73 73 20 68 61 73 | int.#3.to.work..Once.a.class.has |
| 697e0 | 20 61 20 66 69 6c 74 65 72 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 79 6f 75 20 77 69 6c 6c 20 61 | .a.filter.configured,.you.will.a |
| 69800 | 6c 73 6f 20 68 61 76 65 20 74 6f 20 64 65 66 69 6e 65 20 77 68 61 74 20 79 6f 75 20 77 61 6e 74 | lso.have.to.define.what.you.want |
| 69820 | 20 74 6f 20 64 6f 20 77 69 74 68 20 74 68 65 20 74 72 61 66 66 69 63 20 6f 66 20 74 68 61 74 20 | .to.do.with.the.traffic.of.that. |
| 69840 | 63 6c 61 73 73 2c 20 77 68 61 74 20 73 70 65 63 69 66 69 63 20 54 72 61 66 66 69 63 2d 43 6f 6e | class,.what.specific.Traffic-Con |
| 69860 | 74 72 6f 6c 20 74 72 65 61 74 6d 65 6e 74 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 67 69 76 65 20 | trol.treatment.you.want.to.give. |
| 69880 | 69 74 2e 20 59 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 64 69 66 66 65 72 65 6e 74 20 70 6f 73 73 | it..You.will.have.different.poss |
| 698a0 | 69 62 69 6c 69 74 69 65 73 20 64 65 70 65 6e 64 69 6e 67 20 6f 6e 20 74 68 65 20 54 72 61 66 66 | ibilities.depending.on.the.Traff |
| 698c0 | 69 63 20 50 6f 6c 69 63 79 20 79 6f 75 20 61 72 65 20 63 6f 6e 66 69 67 75 72 69 6e 67 2e 00 4f | ic.Policy.you.are.configuring..O |
| 698e0 | 6e 63 65 20 61 20 6e 65 69 67 68 62 6f 72 20 68 61 73 20 62 65 65 6e 20 66 6f 75 6e 64 2c 20 74 | nce.a.neighbor.has.been.found,.t |
| 69900 | 68 65 20 65 6e 74 72 79 20 69 73 20 63 6f 6e 73 69 64 65 72 65 64 20 74 6f 20 62 65 20 76 61 6c | he.entry.is.considered.to.be.val |
| 69920 | 69 64 20 66 6f 72 20 61 74 20 6c 65 61 73 74 20 66 6f 72 20 74 68 69 73 20 73 70 65 63 69 66 69 | id.for.at.least.for.this.specifi |
| 69940 | 63 20 74 69 6d 65 2e 20 41 6e 20 65 6e 74 72 79 27 73 20 76 61 6c 69 64 69 74 79 20 77 69 6c 6c | c.time..An.entry's.validity.will |
| 69960 | 20 62 65 20 65 78 74 65 6e 64 65 64 20 69 66 20 69 74 20 72 65 63 65 69 76 65 73 20 70 6f 73 69 | .be.extended.if.it.receives.posi |
| 69980 | 74 69 76 65 20 66 65 65 64 62 61 63 6b 20 66 72 6f 6d 20 68 69 67 68 65 72 20 6c 65 76 65 6c 20 | tive.feedback.from.higher.level. |
| 699a0 | 70 72 6f 74 6f 63 6f 6c 73 2e 00 4f 6e 63 65 20 61 20 72 6f 75 74 65 20 69 73 20 61 73 73 65 73 | protocols..Once.a.route.is.asses |
| 699c0 | 73 65 64 20 61 20 70 65 6e 61 6c 74 79 2c 20 74 68 65 20 70 65 6e 61 6c 74 79 20 69 73 20 64 65 | sed.a.penalty,.the.penalty.is.de |
| 699e0 | 63 72 65 61 73 65 64 20 62 79 20 68 61 6c 66 20 65 61 63 68 20 74 69 6d 65 20 61 20 70 72 65 64 | creased.by.half.each.time.a.pred |
| 69a00 | 65 66 69 6e 65 64 20 61 6d 6f 75 6e 74 20 6f 66 20 74 69 6d 65 20 65 6c 61 70 73 65 73 20 28 68 | efined.amount.of.time.elapses.(h |
| 69a20 | 61 6c 66 2d 6c 69 66 65 2d 74 69 6d 65 29 2e 20 57 68 65 6e 20 74 68 65 20 61 63 63 75 6d 75 6c | alf-life-time)..When.the.accumul |
| 69a40 | 61 74 65 64 20 70 65 6e 61 6c 74 69 65 73 20 66 61 6c 6c 20 62 65 6c 6f 77 20 61 20 70 72 65 64 | ated.penalties.fall.below.a.pred |
| 69a60 | 65 66 69 6e 65 64 20 74 68 72 65 73 68 6f 6c 64 20 28 72 65 75 73 65 2d 76 61 6c 75 65 29 2c 20 | efined.threshold.(reuse-value),. |
| 69a80 | 74 68 65 20 72 6f 75 74 65 20 69 73 20 75 6e 73 75 70 70 72 65 73 73 65 64 20 61 6e 64 20 61 64 | the.route.is.unsuppressed.and.ad |
| 69aa0 | 64 65 64 20 62 61 63 6b 20 69 6e 74 6f 20 74 68 65 20 42 47 50 20 72 6f 75 74 69 6e 67 20 74 61 | ded.back.into.the.BGP.routing.ta |
| 69ac0 | 62 6c 65 2e 00 4f 6e 63 65 20 61 20 74 72 61 66 66 69 63 2d 70 6f 6c 69 63 79 20 69 73 20 63 72 | ble..Once.a.traffic-policy.is.cr |
| 69ae0 | 65 61 74 65 64 2c 20 79 6f 75 20 63 61 6e 20 61 70 70 6c 79 20 69 74 20 74 6f 20 61 6e 20 69 6e | eated,.you.can.apply.it.to.an.in |
| 69b00 | 74 65 72 66 61 63 65 3a 00 4f 6e 63 65 20 61 20 75 73 65 72 20 68 61 73 20 32 46 41 2f 4f 54 50 | terface:.Once.a.user.has.2FA/OTP |
| 69b20 | 20 63 6f 6e 66 69 67 75 72 65 64 20 61 67 61 69 6e 73 74 20 74 68 65 69 72 20 61 63 63 6f 75 6e | .configured.against.their.accoun |
| 69b40 | 74 2c 20 74 68 65 79 20 6d 75 73 74 20 6c 6f 67 69 6e 20 75 73 69 6e 67 20 74 68 65 69 72 20 70 | t,.they.must.login.using.their.p |
| 69b60 | 61 73 73 77 6f 72 64 20 77 69 74 68 20 74 68 65 20 4f 54 50 20 63 6f 64 65 20 61 70 70 65 6e 64 | assword.with.the.OTP.code.append |
| 69b80 | 65 64 20 74 6f 20 69 74 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 49 66 20 74 68 65 20 75 73 | ed.to.it..For.example:.If.the.us |
| 69ba0 | 65 72 73 20 70 61 73 73 77 6f 72 64 20 69 73 20 76 79 6f 73 72 6f 63 6b 73 20 61 6e 64 20 74 68 | ers.password.is.vyosrocks.and.th |
| 69bc0 | 65 20 4f 54 50 20 63 6f 64 65 20 69 73 20 38 31 37 34 35 34 20 74 68 65 6e 20 74 68 65 79 20 77 | e.OTP.code.is.817454.then.they.w |
| 69be0 | 6f 75 6c 64 20 65 6e 74 65 72 20 74 68 65 69 72 20 70 61 73 73 77 6f 72 64 20 61 73 20 76 79 6f | ould.enter.their.password.as.vyo |
| 69c00 | 73 72 6f 63 6b 73 38 31 37 34 35 34 00 4f 6e 63 65 20 63 72 65 61 74 65 64 20 69 6e 20 74 68 65 | srocks817454.Once.created.in.the |
| 69c20 | 20 73 79 73 74 65 6d 2c 20 50 73 65 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 | .system,.Pseudo-Ethernet.interfa |
| 69c40 | 63 65 73 20 63 61 6e 20 62 65 20 72 65 66 65 72 65 6e 63 65 64 20 69 6e 20 74 68 65 20 65 78 61 | ces.can.be.referenced.in.the.exa |
| 69c60 | 63 74 20 73 61 6d 65 20 77 61 79 20 61 73 20 6f 74 68 65 72 20 45 74 68 65 72 6e 65 74 20 69 6e | ct.same.way.as.other.Ethernet.in |
| 69c80 | 74 65 72 66 61 63 65 73 2e 20 4e 6f 74 65 73 20 61 62 6f 75 74 20 75 73 69 6e 67 20 50 73 65 75 | terfaces..Notes.about.using.Pseu |
| 69ca0 | 64 6f 2d 20 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 3a 00 4f 6e 63 65 20 64 79 | do-.Ethernet.interfaces:.Once.dy |
| 69cc0 | 6e 61 6d 69 63 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 20 61 72 65 20 64 65 66 69 6e 65 | namic.firewall.groups.are.define |
| 69ce0 | 64 2c 20 74 68 65 79 20 73 68 6f 75 6c 64 20 62 65 20 75 73 65 64 20 69 6e 20 66 69 72 65 77 61 | d,.they.should.be.used.in.firewa |
| 69d00 | 6c 6c 20 72 75 6c 65 73 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 64 79 6e 61 6d 69 63 61 6c 6c 79 | ll.rules.in.order.to.dynamically |
| 69d20 | 20 61 64 64 20 65 6c 65 6d 65 6e 74 73 20 74 6f 20 69 74 2e 00 4f 6e 63 65 20 66 6c 6f 77 20 61 | .add.elements.to.it..Once.flow.a |
| 69d40 | 63 63 6f 75 6e 74 69 6e 67 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 61 6e 20 69 6e | ccounting.is.configured.on.an.in |
| 69d60 | 74 65 72 66 61 63 65 73 20 69 74 20 70 72 6f 76 69 64 65 73 20 74 68 65 20 61 62 69 6c 69 74 79 | terfaces.it.provides.the.ability |
| 69d80 | 20 74 6f 20 64 69 73 70 6c 61 79 20 63 61 70 74 75 72 65 64 20 6e 65 74 77 6f 72 6b 20 74 72 61 | .to.display.captured.network.tra |
| 69da0 | 66 66 69 63 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 61 6c 6c 20 63 6f 6e 66 69 67 75 | ffic.information.for.all.configu |
| 69dc0 | 72 65 64 20 69 6e 74 65 72 66 61 63 65 73 2e 00 4f 6e 63 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 | red.interfaces..Once.the.command |
| 69de0 | 20 69 73 20 63 6f 6d 70 6c 65 74 65 64 2c 20 69 74 20 77 69 6c 6c 20 61 64 64 20 74 68 65 20 63 | .is.completed,.it.will.add.the.c |
| 69e00 | 65 72 74 69 66 69 63 61 74 65 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | ertificate.to.the.configuration. |
| 69e20 | 73 65 73 73 69 6f 6e 2c 20 74 6f 20 74 68 65 20 70 6b 69 20 73 75 62 74 72 65 65 2e 20 59 6f 75 | session,.to.the.pki.subtree..You |
| 69e40 | 20 63 61 6e 20 74 68 65 6e 20 72 65 76 69 65 77 20 74 68 65 20 70 72 6f 70 6f 73 65 64 20 63 68 | .can.then.review.the.proposed.ch |
| 69e60 | 61 6e 67 65 73 20 61 6e 64 20 63 6f 6d 6d 69 74 20 74 68 65 6d 2e 00 4f 6e 63 65 20 74 68 65 20 | anges.and.commit.them..Once.the. |
| 69e80 | 66 69 72 73 74 20 70 61 63 6b 65 74 20 6f 66 20 74 68 65 20 66 6c 6f 77 20 73 75 63 63 65 73 73 | first.packet.of.the.flow.success |
| 69ea0 | 66 75 6c 6c 79 20 67 6f 65 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 49 50 20 66 6f 72 77 61 72 | fully.goes.through.the.IP.forwar |
| 69ec0 | 64 69 6e 67 20 70 61 74 68 20 28 62 6c 61 63 6b 20 63 69 72 63 6c 65 73 20 70 61 74 68 29 2c 20 | ding.path.(black.circles.path),. |
| 69ee0 | 66 72 6f 6d 20 74 68 65 20 73 65 63 6f 6e 64 20 70 61 63 6b 65 74 20 6f 6e 2c 20 79 6f 75 20 6d | from.the.second.packet.on,.you.m |
| 69f00 | 69 67 68 74 20 64 65 63 69 64 65 20 74 6f 20 6f 66 66 6c 6f 61 64 20 74 68 65 20 66 6c 6f 77 20 | ight.decide.to.offload.the.flow. |
| 69f20 | 74 6f 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 74 68 72 6f 75 67 68 20 79 6f 75 72 20 72 75 | to.the.flowtable.through.your.ru |
| 69f40 | 6c 65 73 65 74 2e 20 54 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 69 6e 66 72 61 73 74 72 75 63 74 | leset..The.flowtable.infrastruct |
| 69f60 | 75 72 65 20 70 72 6f 76 69 64 65 73 20 61 20 72 75 6c 65 20 61 63 74 69 6f 6e 20 74 68 61 74 20 | ure.provides.a.rule.action.that. |
| 69f80 | 61 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 73 70 65 63 69 66 79 20 77 68 65 6e 20 74 6f 20 61 64 | allows.you.to.specify.when.to.ad |
| 69fa0 | 64 20 61 20 66 6c 6f 77 20 74 6f 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 28 4f 6e 20 66 6f | d.a.flow.to.the.flowtable.(On.fo |
| 69fc0 | 72 77 61 72 64 20 66 69 6c 74 65 72 69 6e 67 2c 20 72 65 64 20 63 69 72 63 6c 65 20 6e 75 6d 62 | rward.filtering,.red.circle.numb |
| 69fe0 | 65 72 20 36 29 00 4f 6e 63 65 20 74 68 65 20 6c 6f 63 61 6c 20 74 75 6e 6e 65 6c 20 65 6e 64 70 | er.6).Once.the.local.tunnel.endp |
| 6a000 | 6f 69 6e 74 20 60 60 73 65 74 20 73 65 72 76 69 63 65 20 70 70 70 6f 65 2d 73 65 72 76 65 72 20 | oint.``set.service.pppoe-server. |
| 6a020 | 67 61 74 65 77 61 79 2d 61 64 64 72 65 73 73 20 27 31 30 2e 31 2e 31 2e 32 27 60 60 20 68 61 73 | gateway-address.'10.1.1.2'``.has |
| 6a040 | 20 62 65 65 6e 20 64 65 66 69 6e 65 64 2c 20 74 68 65 20 63 6c 69 65 6e 74 20 49 50 20 70 6f 6f | .been.defined,.the.client.IP.poo |
| 6a060 | 6c 20 63 61 6e 20 62 65 20 65 69 74 68 65 72 20 64 65 66 69 6e 65 64 20 61 73 20 61 20 72 61 6e | l.can.be.either.defined.as.a.ran |
| 6a080 | 67 65 20 6f 72 20 61 73 20 73 75 62 6e 65 74 20 75 73 69 6e 67 20 43 49 44 52 20 6e 6f 74 61 74 | ge.or.as.subnet.using.CIDR.notat |
| 6a0a0 | 69 6f 6e 2e 20 49 66 20 74 68 65 20 43 49 44 52 20 6e 6f 74 61 74 69 6f 6e 20 69 73 20 75 73 65 | ion..If.the.CIDR.notation.is.use |
| 6a0c0 | 64 2c 20 6d 75 6c 74 69 70 6c 65 20 73 75 62 6e 65 74 73 20 63 61 6e 20 62 65 20 73 65 74 75 70 | d,.multiple.subnets.can.be.setup |
| 6a0e0 | 20 77 68 69 63 68 20 61 72 65 20 75 73 65 64 20 73 65 71 75 65 6e 74 69 61 6c 6c 79 2e 00 4f 6e | .which.are.used.sequentially..On |
| 6a100 | 63 65 20 74 68 65 20 6d 61 74 63 68 69 6e 67 20 72 75 6c 65 73 20 61 72 65 20 73 65 74 20 66 6f | ce.the.matching.rules.are.set.fo |
| 6a120 | 72 20 61 20 63 6c 61 73 73 2c 20 79 6f 75 20 63 61 6e 20 73 74 61 72 74 20 63 6f 6e 66 69 67 75 | r.a.class,.you.can.start.configu |
| 6a140 | 72 69 6e 67 20 68 6f 77 20 79 6f 75 20 77 61 6e 74 20 6d 61 74 63 68 69 6e 67 20 74 72 61 66 66 | ring.how.you.want.matching.traff |
| 6a160 | 69 63 20 74 6f 20 62 65 68 61 76 65 2e 00 4f 6e 63 65 20 74 68 65 20 75 73 65 72 20 69 73 20 63 | ic.to.behave..Once.the.user.is.c |
| 6a180 | 6f 6e 6e 65 63 74 65 64 2c 20 74 68 65 20 75 73 65 72 20 73 65 73 73 69 6f 6e 20 69 73 20 75 73 | onnected,.the.user.session.is.us |
| 6a1a0 | 69 6e 67 20 74 68 65 20 73 65 74 20 6c 69 6d 69 74 73 20 61 6e 64 20 63 61 6e 20 62 65 20 64 69 | ing.the.set.limits.and.can.be.di |
| 6a1c0 | 73 70 6c 61 79 65 64 20 76 69 61 20 27 73 68 6f 77 20 70 70 70 6f 65 2d 73 65 72 76 65 72 20 73 | splayed.via.'show.pppoe-server.s |
| 6a1e0 | 65 73 73 69 6f 6e 73 27 2e 00 4f 6e 63 65 20 74 68 65 20 75 73 65 72 20 69 73 20 63 6f 6e 6e 65 | essions'..Once.the.user.is.conne |
| 6a200 | 63 74 65 64 2c 20 74 68 65 20 75 73 65 72 20 73 65 73 73 69 6f 6e 20 69 73 20 75 73 69 6e 67 20 | cted,.the.user.session.is.using. |
| 6a220 | 74 68 65 20 73 65 74 20 6c 69 6d 69 74 73 20 61 6e 64 20 63 61 6e 20 62 65 20 64 69 73 70 6c 61 | the.set.limits.and.can.be.displa |
| 6a240 | 79 65 64 20 76 69 61 20 60 60 73 68 6f 77 20 70 70 70 6f 65 2d 73 65 72 76 65 72 20 73 65 73 73 | yed.via.``show.pppoe-server.sess |
| 6a260 | 69 6f 6e 73 60 60 2e 00 4f 6e 63 65 20 79 6f 75 20 63 6f 6d 6d 69 74 20 74 68 65 20 61 62 6f 76 | ions``..Once.you.commit.the.abov |
| 6a280 | 65 20 63 68 61 6e 67 65 73 20 79 6f 75 20 63 61 6e 20 63 72 65 61 74 65 20 61 20 63 6f 6e 66 69 | e.changes.you.can.create.a.confi |
| 6a2a0 | 67 20 66 69 6c 65 20 69 6e 20 74 68 65 20 2f 63 6f 6e 66 69 67 2f 61 75 74 68 2f 6f 63 73 65 72 | g.file.in.the./config/auth/ocser |
| 6a2c0 | 76 2f 63 6f 6e 66 69 67 2d 70 65 72 2d 75 73 65 72 20 64 69 72 65 63 74 6f 72 79 20 74 68 61 74 | v/config-per-user.directory.that |
| 6a2e0 | 20 6d 61 74 63 68 65 73 20 61 20 75 73 65 72 6e 61 6d 65 20 6f 66 20 61 20 75 73 65 72 20 79 6f | .matches.a.username.of.a.user.yo |
| 6a300 | 75 20 68 61 76 65 20 63 72 65 61 74 65 64 20 65 2e 67 2e 20 22 74 73 74 22 2e 20 4e 6f 77 20 77 | u.have.created.e.g.."tst"..Now.w |
| 6a320 | 68 65 6e 20 6c 6f 67 67 69 6e 67 20 69 6e 20 77 69 74 68 20 74 68 65 20 22 74 73 74 22 20 75 73 | hen.logging.in.with.the."tst".us |
| 6a340 | 65 72 20 74 68 65 20 63 6f 6e 66 69 67 20 6f 70 74 69 6f 6e 73 20 79 6f 75 20 73 65 74 20 69 6e | er.the.config.options.you.set.in |
| 6a360 | 20 74 68 69 73 20 66 69 6c 65 20 77 69 6c 6c 20 62 65 20 6c 6f 61 64 65 64 2e 00 4f 6e 63 65 20 | .this.file.will.be.loaded..Once. |
| 6a380 | 79 6f 75 20 68 61 76 65 20 61 6e 20 45 74 68 65 72 6e 65 74 20 64 65 76 69 63 65 20 63 6f 6e 6e | you.have.an.Ethernet.device.conn |
| 6a3a0 | 65 63 74 65 64 2c 20 69 2e 65 2e 20 60 65 74 68 30 60 2c 20 74 68 65 6e 20 79 6f 75 20 63 61 6e | ected,.i.e..`eth0`,.then.you.can |
| 6a3c0 | 20 63 6f 6e 66 69 67 75 72 65 20 69 74 20 74 6f 20 6f 70 65 6e 20 74 68 65 20 50 50 50 6f 45 20 | .configure.it.to.open.the.PPPoE. |
| 6a3e0 | 73 65 73 73 69 6f 6e 20 66 6f 72 20 79 6f 75 20 61 6e 64 20 79 6f 75 72 20 44 53 4c 20 54 72 61 | session.for.you.and.your.DSL.Tra |
| 6a400 | 6e 73 63 65 69 76 65 72 20 28 4d 6f 64 65 6d 2f 52 6f 75 74 65 72 29 20 6a 75 73 74 20 61 63 74 | nsceiver.(Modem/Router).just.act |
| 6a420 | 73 20 74 6f 20 74 72 61 6e 73 6c 61 74 65 20 79 6f 75 72 20 6d 65 73 73 61 67 65 73 20 69 6e 20 | s.to.translate.your.messages.in. |
| 6a440 | 61 20 77 61 79 20 74 68 61 74 20 76 44 53 4c 2f 61 44 53 4c 20 75 6e 64 65 72 73 74 61 6e 64 73 | a.way.that.vDSL/aDSL.understands |
| 6a460 | 2e 00 4f 6e 63 65 20 79 6f 75 20 68 61 76 65 20 73 65 74 75 70 20 79 6f 75 72 20 53 53 54 50 20 | ..Once.you.have.setup.your.SSTP. |
| 6a480 | 73 65 72 76 65 72 20 74 68 65 72 65 20 63 6f 6d 65 73 20 74 68 65 20 74 69 6d 65 20 74 6f 20 64 | server.there.comes.the.time.to.d |
| 6a4a0 | 6f 20 73 6f 6d 65 20 62 61 73 69 63 20 74 65 73 74 69 6e 67 2e 20 54 68 65 20 4c 69 6e 75 78 20 | o.some.basic.testing..The.Linux. |
| 6a4c0 | 63 6c 69 65 6e 74 20 75 73 65 64 20 66 6f 72 20 74 65 73 74 69 6e 67 20 69 73 20 63 61 6c 6c 65 | client.used.for.testing.is.calle |
| 6a4e0 | 64 20 73 73 74 70 63 5f 2e 20 73 73 74 70 63 5f 20 72 65 71 75 69 72 65 73 20 61 20 50 50 50 20 | d.sstpc_..sstpc_.requires.a.PPP. |
| 6a500 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 70 65 65 72 20 66 69 6c 65 2e 00 4f 6e 63 65 20 79 6f | configuration/peer.file..Once.yo |
| 6a520 | 75 72 20 72 6f 75 74 65 72 73 20 61 72 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 72 65 6a | ur.routers.are.configured.to.rej |
| 6a540 | 65 63 74 20 52 50 4b 49 2d 69 6e 76 61 6c 69 64 20 70 72 65 66 69 78 65 73 2c 20 79 6f 75 20 63 | ect.RPKI-invalid.prefixes,.you.c |
| 6a560 | 61 6e 20 74 65 73 74 20 77 68 65 74 68 65 72 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | an.test.whether.the.configuratio |
| 6a580 | 6e 20 69 73 20 77 6f 72 6b 69 6e 67 20 63 6f 72 72 65 63 74 6c 79 20 75 73 69 6e 67 20 43 6c 6f | n.is.working.correctly.using.Clo |
| 6a5a0 | 75 64 66 6c 61 72 65 27 73 20 74 65 73 74 5f 20 77 65 62 73 69 74 65 2e 20 4b 65 65 70 20 69 6e | udflare's.test_.website..Keep.in |
| 6a5c0 | 20 6d 69 6e 64 20 74 68 61 74 20 69 6e 20 6f 72 64 65 72 20 66 6f 72 20 74 68 69 73 20 74 6f 20 | .mind.that.in.order.for.this.to. |
| 6a5e0 | 77 6f 72 6b 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 68 61 76 65 20 6e 6f 20 64 65 66 61 75 6c | work,.you.need.to.have.no.defaul |
| 6a600 | 74 20 72 6f 75 74 65 73 20 6f 72 20 61 6e 79 74 68 69 6e 67 20 65 6c 73 65 20 74 68 61 74 20 77 | t.routes.or.anything.else.that.w |
| 6a620 | 6f 75 6c 64 20 73 74 69 6c 6c 20 73 65 6e 64 20 74 72 61 66 66 69 63 20 74 6f 20 52 50 4b 49 2d | ould.still.send.traffic.to.RPKI- |
| 6a640 | 69 6e 76 61 6c 69 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 73 2e 00 4f 6e 63 65 20 79 6f 75 72 20 | invalid.destinations..Once.your. |
| 6a660 | 72 6f 75 74 65 72 73 20 61 72 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 72 65 6a 65 63 74 | routers.are.configured.to.reject |
| 6a680 | 20 52 50 4b 49 2d 69 6e 76 61 6c 69 64 20 70 72 65 66 69 78 65 73 2c 20 79 6f 75 20 63 61 6e 20 | .RPKI-invalid.prefixes,.you.can. |
| 6a6a0 | 74 65 73 74 20 77 68 65 74 68 65 72 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 | test.whether.the.configuration.i |
| 6a6c0 | 73 20 77 6f 72 6b 69 6e 67 20 63 6f 72 72 65 63 74 6c 79 20 75 73 69 6e 67 20 74 68 65 20 60 52 | s.working.correctly.using.the.`R |
| 6a6e0 | 49 50 45 20 4c 61 62 73 20 52 50 4b 49 20 54 65 73 74 60 5f 20 65 78 70 65 72 69 6d 65 6e 74 61 | IPE.Labs.RPKI.Test`_.experimenta |
| 6a700 | 6c 20 74 6f 6f 6c 2e 00 4f 6e 65 20 54 79 70 65 2d 33 20 73 75 6d 6d 61 72 79 2d 4c 53 41 20 77 | l.tool..One.Type-3.summary-LSA.w |
| 6a720 | 69 74 68 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 20 3c 45 2e 46 2e 47 2e 48 2f 4d 3e 20 69 73 20 | ith.routing.info.<E.F.G.H/M>.is. |
| 6a740 | 61 6e 6e 6f 75 6e 63 65 64 20 69 6e 74 6f 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 69 66 20 | announced.into.backbone.area.if. |
| 6a760 | 64 65 66 69 6e 65 64 20 61 72 65 61 20 63 6f 6e 74 61 69 6e 73 20 61 74 20 6c 65 61 73 74 20 6f | defined.area.contains.at.least.o |
| 6a780 | 6e 65 20 69 6e 74 72 61 2d 61 72 65 61 20 6e 65 74 77 6f 72 6b 20 28 69 2e 65 2e 20 64 65 73 63 | ne.intra-area.network.(i.e..desc |
| 6a7a0 | 72 69 62 65 64 20 77 69 74 68 20 72 6f 75 74 65 72 2d 4c 53 41 20 6f 72 20 6e 65 74 77 6f 72 6b | ribed.with.router-LSA.or.network |
| 6a7c0 | 2d 4c 53 41 29 20 66 72 6f 6d 20 72 61 6e 67 65 20 3c 41 2e 42 2e 43 2e 44 2f 4d 3e 2e 20 54 68 | -LSA).from.range.<A.B.C.D/M>..Th |
| 6a7e0 | 69 73 20 63 6f 6d 6d 61 6e 64 20 6d 61 6b 65 73 20 73 65 6e 73 65 20 69 6e 20 41 42 52 20 6f 6e | is.command.makes.sense.in.ABR.on |
| 6a800 | 6c 79 2e 00 4f 6e 65 20 69 6d 70 6c 69 63 69 74 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 65 78 69 | ly..One.implicit.environment.exi |
| 6a820 | 73 74 73 2e 00 4f 6e 65 20 6f 66 20 74 68 65 20 69 6d 70 6f 72 74 61 6e 74 20 66 65 61 74 75 72 | sts..One.of.the.important.featur |
| 6a840 | 65 73 20 62 75 69 6c 74 20 6f 6e 20 74 6f 70 20 6f 66 20 74 68 65 20 4e 65 74 66 69 6c 74 65 72 | es.built.on.top.of.the.Netfilter |
| 6a860 | 20 66 72 61 6d 65 77 6f 72 6b 20 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e | .framework.is.connection.trackin |
| 6a880 | 67 2e 20 43 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 61 6c 6c 6f 77 73 20 74 68 | g..Connection.tracking.allows.th |
| 6a8a0 | 65 20 6b 65 72 6e 65 6c 20 74 6f 20 6b 65 65 70 20 74 72 61 63 6b 20 6f 66 20 61 6c 6c 20 6c 6f | e.kernel.to.keep.track.of.all.lo |
| 6a8c0 | 67 69 63 61 6c 20 6e 65 74 77 6f 72 6b 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 6f 72 20 73 65 73 | gical.network.connections.or.ses |
| 6a8e0 | 73 69 6f 6e 73 2c 20 61 6e 64 20 74 68 65 72 65 62 79 20 72 65 6c 61 74 65 20 61 6c 6c 20 6f 66 | sions,.and.thereby.relate.all.of |
| 6a900 | 20 74 68 65 20 70 61 63 6b 65 74 73 20 77 68 69 63 68 20 6d 61 79 20 6d 61 6b 65 20 75 70 20 74 | .the.packets.which.may.make.up.t |
| 6a920 | 68 61 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 4e 41 54 20 72 65 6c 69 65 73 20 6f 6e 20 74 68 | hat.connection..NAT.relies.on.th |
| 6a940 | 69 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 74 72 61 6e 73 6c 61 74 65 20 61 6c 6c 20 | is.information.to.translate.all. |
| 6a960 | 72 65 6c 61 74 65 64 20 70 61 63 6b 65 74 73 20 69 6e 20 74 68 65 20 73 61 6d 65 20 77 61 79 2c | related.packets.in.the.same.way, |
| 6a980 | 20 61 6e 64 20 69 70 74 61 62 6c 65 73 20 63 61 6e 20 75 73 65 20 74 68 69 73 20 69 6e 66 6f 72 | .and.iptables.can.use.this.infor |
| 6a9a0 | 6d 61 74 69 6f 6e 20 74 6f 20 61 63 74 20 61 73 20 61 20 73 74 61 74 65 66 75 6c 20 66 69 72 65 | mation.to.act.as.a.stateful.fire |
| 6a9c0 | 77 61 6c 6c 2e 00 4f 6e 65 20 6f 66 20 74 68 65 20 75 73 65 73 20 6f 66 20 46 61 69 72 20 51 75 | wall..One.of.the.uses.of.Fair.Qu |
| 6a9e0 | 65 75 65 20 6d 69 67 68 74 20 62 65 20 74 68 65 20 6d 69 74 69 67 61 74 69 6f 6e 20 6f 66 20 44 | eue.might.be.the.mitigation.of.D |
| 6aa00 | 65 6e 69 61 6c 20 6f 66 20 53 65 72 76 69 63 65 20 61 74 74 61 63 6b 73 2e 00 4f 6e 6c 79 20 38 | enial.of.Service.attacks..Only.8 |
| 6aa20 | 30 32 2e 31 51 2d 74 61 67 67 65 64 20 70 61 63 6b 65 74 73 20 61 72 65 20 61 63 63 65 70 74 65 | 02.1Q-tagged.packets.are.accepte |
| 6aa40 | 64 20 6f 6e 20 45 74 68 65 72 6e 65 74 20 76 69 66 73 2e 00 4f 6e 6c 79 20 56 52 52 50 20 69 73 | d.on.Ethernet.vifs..Only.VRRP.is |
| 6aa60 | 20 73 75 70 70 6f 72 74 65 64 2e 20 52 65 71 75 69 72 65 64 20 6f 70 74 69 6f 6e 2e 00 4f 6e 6c | .supported..Required.option..Onl |
| 6aa80 | 79 20 61 6c 6c 6f 77 20 63 65 72 74 61 69 6e 20 49 50 20 61 64 64 72 65 73 73 65 73 20 6f 72 20 | y.allow.certain.IP.addresses.or. |
| 6aaa0 | 70 72 65 66 69 78 65 73 20 74 6f 20 61 63 63 65 73 73 20 74 68 65 20 68 74 74 70 73 20 77 65 62 | prefixes.to.access.the.https.web |
| 6aac0 | 73 65 72 76 65 72 2e 00 4f 6e 6c 79 20 69 6e 20 74 68 65 20 73 6f 75 72 63 65 20 63 72 69 74 65 | server..Only.in.the.source.crite |
| 6aae0 | 72 69 61 2c 20 79 6f 75 20 63 61 6e 20 73 70 65 63 69 66 79 20 61 20 6d 61 63 2d 61 64 64 72 65 | ria,.you.can.specify.a.mac-addre |
| 6ab00 | 73 73 2e 00 4f 6e 6c 79 20 6f 6e 65 20 53 52 47 42 20 61 6e 64 20 64 65 66 61 75 6c 74 20 53 50 | ss..Only.one.SRGB.and.default.SP |
| 6ab20 | 46 20 41 6c 67 6f 72 69 74 68 6d 20 69 73 20 73 75 70 70 6f 72 74 65 64 00 4f 6e 6c 79 20 72 65 | F.Algorithm.is.supported.Only.re |
| 6ab40 | 71 75 65 73 74 20 61 6e 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 44 48 43 50 20 73 | quest.an.address.from.the.DHCP.s |
| 6ab60 | 65 72 76 65 72 20 62 75 74 20 64 6f 20 6e 6f 74 20 72 65 71 75 65 73 74 20 61 20 64 65 66 61 75 | erver.but.do.not.request.a.defau |
| 6ab80 | 6c 74 20 67 61 74 65 77 61 79 2e 00 4f 6e 6c 79 20 72 65 71 75 65 73 74 20 61 6e 20 61 64 64 72 | lt.gateway..Only.request.an.addr |
| 6aba0 | 65 73 73 20 66 72 6f 6d 20 74 68 65 20 50 50 50 6f 45 20 73 65 72 76 65 72 20 62 75 74 20 64 6f | ess.from.the.PPPoE.server.but.do |
| 6abc0 | 20 6e 6f 74 20 69 6e 73 74 61 6c 6c 20 61 6e 79 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 2e 00 | .not.install.any.default.route.. |
| 6abe0 | 4f 6e 6c 79 20 72 65 71 75 65 73 74 20 61 6e 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 | Only.request.an.address.from.the |
| 6ac00 | 20 53 53 54 50 20 73 65 72 76 65 72 20 62 75 74 20 64 6f 20 6e 6f 74 20 69 6e 73 74 61 6c 6c 20 | .SSTP.server.but.do.not.install. |
| 6ac20 | 61 6e 79 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 2e 00 4f 6e 6c 79 20 74 68 65 20 74 79 70 65 | any.default.route..Only.the.type |
| 6ac40 | 20 28 60 60 73 73 68 2d 72 73 61 60 60 29 20 61 6e 64 20 74 68 65 20 6b 65 79 20 28 60 60 41 41 | .(``ssh-rsa``).and.the.key.(``AA |
| 6ac60 | 41 42 33 4e 2e 2e 2e 60 60 29 20 61 72 65 20 75 73 65 64 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 | AB3N...``).are.used..Note.that.t |
| 6ac80 | 68 65 20 6b 65 79 20 77 69 6c 6c 20 75 73 75 61 6c 6c 79 20 62 65 20 73 65 76 65 72 61 6c 20 68 | he.key.will.usually.be.several.h |
| 6aca0 | 75 6e 64 72 65 64 20 63 68 61 72 61 63 74 65 72 73 20 6c 6f 6e 67 2c 20 61 6e 64 20 79 6f 75 20 | undred.characters.long,.and.you. |
| 6acc0 | 77 69 6c 6c 20 6e 65 65 64 20 74 6f 20 63 6f 70 79 20 61 6e 64 20 70 61 73 74 65 20 69 74 2e 20 | will.need.to.copy.and.paste.it.. |
| 6ace0 | 53 6f 6d 65 20 74 65 72 6d 69 6e 61 6c 20 65 6d 75 6c 61 74 6f 72 73 20 6d 61 79 20 61 63 63 69 | Some.terminal.emulators.may.acci |
| 6ad00 | 64 65 6e 74 61 6c 6c 79 20 73 70 6c 69 74 20 74 68 69 73 20 6f 76 65 72 20 73 65 76 65 72 61 6c | dentally.split.this.over.several |
| 6ad20 | 20 6c 69 6e 65 73 2e 20 42 65 20 61 74 74 65 6e 74 69 76 65 20 77 68 65 6e 20 79 6f 75 20 70 61 | .lines..Be.attentive.when.you.pa |
| 6ad40 | 73 74 65 20 69 74 20 74 68 61 74 20 69 74 20 6f 6e 6c 79 20 70 61 73 74 65 73 20 61 73 20 61 20 | ste.it.that.it.only.pastes.as.a. |
| 6ad60 | 73 69 6e 67 6c 65 20 6c 69 6e 65 2e 20 54 68 65 20 74 68 69 72 64 20 70 61 72 74 20 69 73 20 73 | single.line..The.third.part.is.s |
| 6ad80 | 69 6d 70 6c 79 20 61 6e 20 69 64 65 6e 74 69 66 69 65 72 2c 20 61 6e 64 20 69 73 20 66 6f 72 20 | imply.an.identifier,.and.is.for. |
| 6ada0 | 79 6f 75 72 20 6f 77 6e 20 72 65 66 65 72 65 6e 63 65 2e 00 4f 6e 6c 79 20 77 6f 72 6b 73 20 77 | your.own.reference..Only.works.w |
| 6adc0 | 69 74 68 20 61 20 56 58 4c 41 4e 20 64 65 76 69 63 65 20 77 69 74 68 20 65 78 74 65 72 6e 61 6c | ith.a.VXLAN.device.with.external |
| 6ade0 | 20 66 6c 61 67 20 73 65 74 2e 00 4f 70 2d 6d 6f 64 65 20 63 68 65 63 6b 20 76 69 72 74 75 61 6c | .flag.set..Op-mode.check.virtual |
| 6ae00 | 2d 73 65 72 76 65 72 20 73 74 61 74 75 73 00 4f 70 65 6e 43 6f 6e 6e 65 63 74 00 4f 70 65 6e 43 | -server.status.OpenConnect.OpenC |
| 6ae20 | 6f 6e 6e 65 63 74 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 73 65 6e 64 | onnect.can.be.configured.to.send |
| 6ae40 | 20 61 63 63 6f 75 6e 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 61 20 52 41 44 | .accounting.information.to.a.RAD |
| 6ae60 | 49 55 53 20 73 65 72 76 65 72 20 74 6f 20 63 61 70 74 75 72 65 20 75 73 65 72 20 73 65 73 73 69 | IUS.server.to.capture.user.sessi |
| 6ae80 | 6f 6e 20 64 61 74 61 20 73 75 63 68 20 61 73 20 74 69 6d 65 20 6f 66 20 63 6f 6e 6e 65 63 74 2f | on.data.such.as.time.of.connect/ |
| 6aea0 | 64 69 73 63 6f 6e 6e 65 63 74 2c 20 64 61 74 61 20 74 72 61 6e 73 66 65 72 72 65 64 2c 20 61 6e | disconnect,.data.transferred,.an |
| 6aec0 | 64 20 73 6f 20 6f 6e 2e 00 4f 70 65 6e 43 6f 6e 6e 65 63 74 20 73 65 72 76 65 72 20 6d 61 74 63 | d.so.on..OpenConnect.server.matc |
| 6aee0 | 68 65 73 20 74 68 65 20 66 69 6c 65 6e 61 6d 65 20 69 6e 20 61 20 63 61 73 65 20 73 65 6e 73 69 | hes.the.filename.in.a.case.sensi |
| 6af00 | 74 69 76 65 20 6d 61 6e 6e 65 72 2c 20 6d 61 6b 65 20 73 75 72 65 20 74 68 65 20 75 73 65 72 6e | tive.manner,.make.sure.the.usern |
| 6af20 | 61 6d 65 2f 67 72 6f 75 70 20 6e 61 6d 65 20 79 6f 75 20 63 6f 6e 66 69 67 75 72 65 20 6d 61 74 | ame/group.name.you.configure.mat |
| 6af40 | 63 68 65 73 20 74 68 65 20 66 69 6c 65 6e 61 6d 65 20 65 78 61 63 74 6c 79 2e 00 4f 70 65 6e 43 | ches.the.filename.exactly..OpenC |
| 6af60 | 6f 6e 6e 65 63 74 20 73 75 70 70 6f 72 74 73 20 61 20 73 75 62 73 65 74 20 6f 66 20 69 74 27 73 | onnect.supports.a.subset.of.it's |
| 6af80 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 70 74 69 6f 6e 73 20 74 6f 20 62 65 20 61 70 70 | .configuration.options.to.be.app |
| 6afa0 | 6c 69 65 64 20 6f 6e 20 61 20 70 65 72 20 75 73 65 72 2f 67 72 6f 75 70 20 62 61 73 69 73 2c 20 | lied.on.a.per.user/group.basis,. |
| 6afc0 | 66 6f 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 75 72 70 6f 73 65 73 20 77 65 20 72 65 | for.configuration.purposes.we.re |
| 6afe0 | 66 65 72 20 74 6f 20 74 68 69 73 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 61 73 20 22 49 64 | fer.to.this.functionality.as."Id |
| 6b000 | 65 6e 74 69 74 79 20 62 61 73 65 64 20 63 6f 6e 66 69 67 22 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 | entity.based.config"..The.follow |
| 6b020 | 69 6e 67 20 60 4f 70 65 6e 43 6f 6e 6e 65 63 74 20 53 65 72 76 65 72 20 4d 61 6e 75 61 6c 20 3c | ing.`OpenConnect.Server.Manual.< |
| 6b040 | 68 74 74 70 73 3a 2f 2f 6f 63 73 65 72 76 2e 67 69 74 6c 61 62 2e 69 6f 2f 77 77 77 2f 6d 61 6e | https://ocserv.gitlab.io/www/man |
| 6b060 | 75 61 6c 2e 68 74 6d 6c 23 3a 7e 3a 74 65 78 74 3d 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 25 32 | ual.html#:~:text=Configuration%2 |
| 6b080 | 30 66 69 6c 65 73 25 32 30 74 68 61 74 25 20 32 30 77 69 6c 6c 25 32 30 62 65 25 32 30 61 70 70 | 0files%20that%.20will%20be%20app |
| 6b0a0 | 6c 69 65 64 25 32 30 70 65 72 25 32 30 75 73 65 72 25 32 30 63 6f 6e 6e 65 63 74 69 6f 6e 25 32 | lied%20per%20user%20connection%2 |
| 6b0c0 | 30 6f 72 25 30 41 25 32 33 25 32 30 70 65 72 25 32 30 67 72 6f 75 70 3e 60 5f 20 6f 75 74 6c 69 | 0or%0A%23%20per%20group>`_.outli |
| 6b0e0 | 6e 65 73 20 74 68 65 20 73 65 74 20 6f 66 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 70 74 | nes.the.set.of.configuration.opt |
| 6b100 | 69 6f 6e 73 20 74 68 61 74 20 61 72 65 20 61 6c 6c 6f 77 65 64 2e 20 54 68 69 73 20 63 61 6e 20 | ions.that.are.allowed..This.can. |
| 6b120 | 62 65 20 6c 65 76 65 72 61 67 65 64 20 74 6f 20 61 70 70 6c 79 20 64 69 66 66 65 72 65 6e 74 20 | be.leveraged.to.apply.different. |
| 6b140 | 73 65 74 73 20 6f 66 20 63 6f 6e 66 69 67 73 20 74 6f 20 64 69 66 66 65 72 65 6e 74 20 75 73 65 | sets.of.configs.to.different.use |
| 6b160 | 72 73 20 6f 72 20 67 72 6f 75 70 73 20 6f 66 20 75 73 65 72 73 2e 00 4f 70 65 6e 43 6f 6e 6e 65 | rs.or.groups.of.users..OpenConne |
| 6b180 | 63 74 2d 63 6f 6d 70 61 74 69 62 6c 65 20 73 65 72 76 65 72 20 66 65 61 74 75 72 65 20 68 61 73 | ct-compatible.server.feature.has |
| 6b1a0 | 20 62 65 65 6e 20 61 76 61 69 6c 61 62 6c 65 20 73 69 6e 63 65 20 45 71 75 75 6c 65 75 73 20 28 | .been.available.since.Equuleus.( |
| 6b1c0 | 31 2e 33 29 2e 20 4f 70 65 6e 63 6f 6e 6e 65 63 74 20 56 50 4e 20 73 75 70 70 6f 72 74 73 20 53 | 1.3)..Openconnect.VPN.supports.S |
| 6b1e0 | 53 4c 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 61 6e 64 20 6f 66 66 65 72 73 20 66 75 6c 6c 20 6e 65 | SL.connection.and.offers.full.ne |
| 6b200 | 74 77 6f 72 6b 20 61 63 63 65 73 73 2e 20 53 53 4c 20 56 50 4e 20 6e 65 74 77 6f 72 6b 20 65 78 | twork.access..SSL.VPN.network.ex |
| 6b220 | 74 65 6e 73 69 6f 6e 20 63 6f 6e 6e 65 63 74 73 20 74 68 65 20 65 6e 64 2d 75 73 65 72 20 73 79 | tension.connects.the.end-user.sy |
| 6b240 | 73 74 65 6d 20 74 6f 20 74 68 65 20 63 6f 72 70 6f 72 61 74 65 20 6e 65 74 77 6f 72 6b 20 77 69 | stem.to.the.corporate.network.wi |
| 6b260 | 74 68 20 61 63 63 65 73 73 20 63 6f 6e 74 72 6f 6c 73 20 62 61 73 65 64 20 6f 6e 6c 79 20 6f 6e | th.access.controls.based.only.on |
| 6b280 | 20 6e 65 74 77 6f 72 6b 20 6c 61 79 65 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2c 20 73 75 63 68 | .network.layer.information,.such |
| 6b2a0 | 20 61 73 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 20 61 6e 64 20 70 | .as.destination.IP.address.and.p |
| 6b2c0 | 6f 72 74 20 6e 75 6d 62 65 72 2e 20 53 6f 2c 20 69 74 20 70 72 6f 76 69 64 65 73 20 73 61 66 65 | ort.number..So,.it.provides.safe |
| 6b2e0 | 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 20 66 6f 72 20 61 6c 6c 20 74 79 70 65 73 20 6f 66 20 | .communication.for.all.types.of. |
| 6b300 | 64 65 76 69 63 65 20 74 72 61 66 66 69 63 20 61 63 72 6f 73 73 20 70 75 62 6c 69 63 20 6e 65 74 | device.traffic.across.public.net |
| 6b320 | 77 6f 72 6b 73 20 61 6e 64 20 70 72 69 76 61 74 65 20 6e 65 74 77 6f 72 6b 73 2c 20 61 6c 73 6f | works.and.private.networks,.also |
| 6b340 | 20 65 6e 63 72 79 70 74 73 20 74 68 65 20 74 72 61 66 66 69 63 20 77 69 74 68 20 53 53 4c 20 70 | .encrypts.the.traffic.with.SSL.p |
| 6b360 | 72 6f 74 6f 63 6f 6c 2e 00 4f 70 65 6e 43 6f 6e 6e 65 63 74 2d 63 6f 6d 70 61 74 69 62 6c 65 20 | rotocol..OpenConnect-compatible. |
| 6b380 | 73 65 72 76 65 72 20 66 65 61 74 75 72 65 20 69 73 20 61 76 61 69 6c 61 62 6c 65 20 66 72 6f 6d | server.feature.is.available.from |
| 6b3a0 | 20 74 68 69 73 20 72 65 6c 65 61 73 65 2e 20 4f 70 65 6e 63 6f 6e 6e 65 63 74 20 56 50 4e 20 73 | .this.release..Openconnect.VPN.s |
| 6b3c0 | 75 70 70 6f 72 74 73 20 53 53 4c 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 61 6e 64 20 6f 66 66 65 72 | upports.SSL.connection.and.offer |
| 6b3e0 | 73 20 66 75 6c 6c 20 6e 65 74 77 6f 72 6b 20 61 63 63 65 73 73 2e 20 53 53 4c 20 56 50 4e 20 6e | s.full.network.access..SSL.VPN.n |
| 6b400 | 65 74 77 6f 72 6b 20 65 78 74 65 6e 73 69 6f 6e 20 63 6f 6e 6e 65 63 74 73 20 74 68 65 20 65 6e | etwork.extension.connects.the.en |
| 6b420 | 64 2d 75 73 65 72 20 73 79 73 74 65 6d 20 74 6f 20 74 68 65 20 63 6f 72 70 6f 72 61 74 65 20 6e | d-user.system.to.the.corporate.n |
| 6b440 | 65 74 77 6f 72 6b 20 77 69 74 68 20 61 63 63 65 73 73 20 63 6f 6e 74 72 6f 6c 73 20 62 61 73 65 | etwork.with.access.controls.base |
| 6b460 | 64 20 6f 6e 6c 79 20 6f 6e 20 6e 65 74 77 6f 72 6b 20 6c 61 79 65 72 20 69 6e 66 6f 72 6d 61 74 | d.only.on.network.layer.informat |
| 6b480 | 69 6f 6e 2c 20 73 75 63 68 20 61 73 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 | ion,.such.as.destination.IP.addr |
| 6b4a0 | 65 73 73 20 61 6e 64 20 70 6f 72 74 20 6e 75 6d 62 65 72 2e 20 53 6f 2c 20 69 74 20 70 72 6f 76 | ess.and.port.number..So,.it.prov |
| 6b4c0 | 69 64 65 73 20 73 61 66 65 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 20 66 6f 72 20 61 6c 6c 20 | ides.safe.communication.for.all. |
| 6b4e0 | 74 79 70 65 73 20 6f 66 20 64 65 76 69 63 65 20 74 72 61 66 66 69 63 20 61 63 72 6f 73 73 20 70 | types.of.device.traffic.across.p |
| 6b500 | 75 62 6c 69 63 20 6e 65 74 77 6f 72 6b 73 20 61 6e 64 20 70 72 69 76 61 74 65 20 6e 65 74 77 6f | ublic.networks.and.private.netwo |
| 6b520 | 72 6b 73 2c 20 61 6c 73 6f 20 65 6e 63 72 79 70 74 73 20 74 68 65 20 74 72 61 66 66 69 63 20 77 | rks,.also.encrypts.the.traffic.w |
| 6b540 | 69 74 68 20 53 53 4c 20 70 72 6f 74 6f 63 6f 6c 2e 00 4f 70 65 6e 46 61 62 72 69 63 00 4f 70 65 | ith.SSL.protocol..OpenFabric.Ope |
| 6b560 | 6e 46 61 62 72 69 63 20 47 6c 6f 62 61 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 4f 70 65 | nFabric.Global.Configuration.Ope |
| 6b580 | 6e 46 61 62 72 69 63 20 61 20 64 75 61 6c 20 73 74 61 63 6b 20 70 72 6f 74 6f 63 6f 6c 2e 20 41 | nFabric.a.dual.stack.protocol..A |
| 6b5a0 | 20 73 69 6e 67 6c 65 20 4f 70 65 6e 46 61 62 72 69 63 20 69 6e 73 74 61 6e 63 65 20 69 73 20 61 | .single.OpenFabric.instance.is.a |
| 6b5c0 | 62 6c 65 20 74 6f 20 70 65 72 66 6f 72 6d 20 72 6f 75 74 69 6e 67 20 66 6f 72 20 62 6f 74 68 20 | ble.to.perform.routing.for.both. |
| 6b5e0 | 49 50 76 34 20 61 6e 64 20 49 50 76 36 2e 00 4f 70 65 6e 46 61 62 72 69 63 2c 20 73 70 65 63 69 | IPv4.and.IPv6..OpenFabric,.speci |
| 6b600 | 66 69 65 64 20 69 6e 20 60 64 72 61 66 74 2d 77 68 69 74 65 2d 6f 70 65 6e 66 61 62 72 69 63 2d | fied.in.`draft-white-openfabric- |
| 6b620 | 30 36 2e 74 78 74 20 3c 68 74 74 70 73 3a 2f 2f 64 61 74 61 74 72 61 63 6b 65 72 2e 69 65 74 66 | 06.txt.<https://datatracker.ietf |
| 6b640 | 2e 6f 72 67 2f 64 6f 63 2f 68 74 6d 6c 2f 64 72 61 66 74 2d 77 68 69 74 65 2d 6f 70 65 6e 66 61 | .org/doc/html/draft-white-openfa |
| 6b660 | 62 72 69 63 2d 30 36 3e 60 5f 2c 20 69 73 20 61 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f | bric-06>`_,.is.a.routing.protoco |
| 6b680 | 6c 20 64 65 72 69 76 65 64 20 66 72 6f 6d 20 49 53 2d 49 53 2c 20 70 72 6f 76 69 64 69 6e 67 20 | l.derived.from.IS-IS,.providing. |
| 6b6a0 | 6c 69 6e 6b 2d 73 74 61 74 65 20 72 6f 75 74 69 6e 67 20 77 69 74 68 20 65 66 66 69 63 69 65 6e | link-state.routing.with.efficien |
| 6b6c0 | 74 20 66 6c 6f 6f 64 69 6e 67 20 66 6f 72 20 74 6f 70 6f 6c 6f 67 69 65 73 20 6c 69 6b 65 20 73 | t.flooding.for.topologies.like.s |
| 6b6e0 | 70 69 6e 65 2d 6c 65 61 66 20 6e 65 74 77 6f 72 6b 73 2e 00 4f 70 65 6e 56 50 4e 00 4f 70 65 6e | pine-leaf.networks..OpenVPN.Open |
| 6b700 | 56 50 4e 20 2a 2a 77 69 6c 6c 20 6e 6f 74 2a 2a 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 63 | VPN.**will.not**.automatically.c |
| 6b720 | 72 65 61 74 65 20 72 6f 75 74 65 73 20 69 6e 20 74 68 65 20 6b 65 72 6e 65 6c 20 66 6f 72 20 63 | reate.routes.in.the.kernel.for.c |
| 6b740 | 6c 69 65 6e 74 20 73 75 62 6e 65 74 73 20 77 68 65 6e 20 74 68 65 79 20 63 6f 6e 6e 65 63 74 20 | lient.subnets.when.they.connect. |
| 6b760 | 61 6e 64 20 77 69 6c 6c 20 6f 6e 6c 79 20 75 73 65 20 63 6c 69 65 6e 74 2d 73 75 62 6e 65 74 20 | and.will.only.use.client-subnet. |
| 6b780 | 61 73 73 6f 63 69 61 74 69 6f 6e 20 69 6e 74 65 72 6e 61 6c 6c 79 2c 20 73 6f 20 77 65 20 6e 65 | association.internally,.so.we.ne |
| 6b7a0 | 65 64 20 74 6f 20 63 72 65 61 74 65 20 61 20 72 6f 75 74 65 20 74 6f 20 74 68 65 20 31 30 2e 32 | ed.to.create.a.route.to.the.10.2 |
| 6b7c0 | 33 2e 30 2e 30 2f 32 30 20 6e 65 74 77 6f 72 6b 20 6f 75 72 73 65 6c 76 65 73 3a 00 4f 70 65 6e | 3.0.0/20.network.ourselves:.Open |
| 6b7e0 | 56 50 4e 20 44 43 4f 20 69 73 20 6e 6f 74 20 61 20 66 75 6c 6c 79 20 73 75 70 70 6f 72 74 65 64 | VPN.DCO.is.not.a.fully.supported |
| 6b800 | 20 4f 70 65 6e 56 50 4e 20 66 65 61 74 75 72 65 2c 20 61 6e 64 20 69 73 20 63 75 72 72 65 6e 74 | .OpenVPN.feature,.and.is.current |
| 6b820 | 6c 79 20 63 6f 6e 73 69 64 65 72 65 64 20 65 78 70 65 72 69 6d 65 6e 74 61 6c 2e 20 46 75 72 74 | ly.considered.experimental..Furt |
| 6b840 | 68 65 72 6d 6f 72 65 2c 20 74 68 65 72 65 20 61 72 65 20 63 65 72 74 61 69 6e 20 4f 70 65 6e 56 | hermore,.there.are.certain.OpenV |
| 6b860 | 50 4e 20 66 65 61 74 75 72 65 73 20 61 6e 64 20 75 73 65 20 63 61 73 65 73 20 74 68 61 74 20 72 | PN.features.and.use.cases.that.r |
| 6b880 | 65 6d 61 69 6e 20 69 6e 63 6f 6d 70 61 74 69 62 6c 65 20 77 69 74 68 20 44 43 4f 2e 20 54 6f 20 | emain.incompatible.with.DCO..To. |
| 6b8a0 | 67 65 74 20 61 20 63 6f 6d 70 72 65 68 65 6e 73 69 76 65 20 75 6e 64 65 72 73 74 61 6e 64 69 6e | get.a.comprehensive.understandin |
| 6b8c0 | 67 20 6f 66 20 74 68 65 20 6c 69 6d 69 74 61 74 69 6f 6e 73 20 61 73 73 6f 63 69 61 74 65 64 20 | g.of.the.limitations.associated. |
| 6b8e0 | 77 69 74 68 20 44 43 4f 2c 20 72 65 66 65 72 20 74 6f 20 74 68 65 20 6c 69 73 74 20 6f 66 20 6b | with.DCO,.refer.to.the.list.of.k |
| 6b900 | 6e 6f 77 6e 20 6c 69 6d 69 74 61 74 69 6f 6e 73 20 69 6e 20 74 68 65 20 64 6f 63 75 6d 65 6e 74 | nown.limitations.in.the.document |
| 6b920 | 61 74 69 6f 6e 2e 00 4f 70 65 6e 56 50 4e 20 44 43 4f 20 69 73 20 6e 6f 74 20 66 75 6c 6c 20 4f | ation..OpenVPN.DCO.is.not.full.O |
| 6b940 | 70 65 6e 56 50 4e 20 66 65 61 74 75 72 65 73 20 73 75 70 70 6f 72 74 65 64 20 2c 20 69 73 20 63 | penVPN.features.supported.,.is.c |
| 6b960 | 75 72 72 65 6e 74 6c 79 20 63 6f 6e 73 69 64 65 72 65 64 20 65 78 70 65 72 69 6d 65 6e 74 61 6c | urrently.considered.experimental |
| 6b980 | 2e 20 46 75 72 74 68 65 72 6d 6f 72 65 2c 20 74 68 65 72 65 20 61 72 65 20 63 65 72 74 61 69 6e | ..Furthermore,.there.are.certain |
| 6b9a0 | 20 4f 70 65 6e 56 50 4e 20 66 65 61 74 75 72 65 73 20 61 6e 64 20 75 73 65 20 63 61 73 65 73 20 | .OpenVPN.features.and.use.cases. |
| 6b9c0 | 74 68 61 74 20 72 65 6d 61 69 6e 20 69 6e 63 6f 6d 70 61 74 69 62 6c 65 20 77 69 74 68 20 44 43 | that.remain.incompatible.with.DC |
| 6b9e0 | 4f 2e 20 54 6f 20 67 65 74 20 61 20 63 6f 6d 70 72 65 68 65 6e 73 69 76 65 20 75 6e 64 65 72 73 | O..To.get.a.comprehensive.unders |
| 6ba00 | 74 61 6e 64 69 6e 67 20 6f 66 20 74 68 65 20 6c 69 6d 69 74 61 74 69 6f 6e 73 20 61 73 73 6f 63 | tanding.of.the.limitations.assoc |
| 6ba20 | 69 61 74 65 64 20 77 69 74 68 20 44 43 4f 2c 20 72 65 66 65 72 20 74 6f 20 74 68 65 20 6c 69 73 | iated.with.DCO,.refer.to.the.lis |
| 6ba40 | 74 20 6f 66 20 6b 6e 6f 77 6e 20 6c 69 6d 69 74 61 74 69 6f 6e 73 20 69 6e 20 74 68 65 20 64 6f | t.of.known.limitations.in.the.do |
| 6ba60 | 63 75 6d 65 6e 74 61 74 69 6f 6e 2e 00 4f 70 65 6e 56 50 4e 20 44 61 74 61 20 43 68 61 6e 6e 65 | cumentation..OpenVPN.Data.Channe |
| 6ba80 | 6c 20 4f 66 66 6c 6f 61 64 20 28 44 43 4f 29 00 4f 70 65 6e 56 50 4e 20 44 61 74 61 20 43 68 61 | l.Offload.(DCO).OpenVPN.Data.Cha |
| 6baa0 | 6e 6e 65 6c 20 4f 66 66 6c 6f 61 64 20 28 44 43 4f 29 20 65 6e 61 62 6c 65 73 20 73 69 67 6e 69 | nnel.Offload.(DCO).enables.signi |
| 6bac0 | 66 69 63 61 6e 74 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 65 6e 68 61 6e 63 65 6d 65 6e 74 20 69 | ficant.performance.enhancement.i |
| 6bae0 | 6e 20 65 6e 63 72 79 70 74 65 64 20 4f 70 65 6e 56 50 4e 20 64 61 74 61 20 70 72 6f 63 65 73 73 | n.encrypted.OpenVPN.data.process |
| 6bb00 | 69 6e 67 2e 20 42 79 20 6d 69 6e 69 6d 69 7a 69 6e 67 20 63 6f 6e 74 65 78 74 20 73 77 69 74 63 | ing..By.minimizing.context.switc |
| 6bb20 | 68 69 6e 67 20 66 6f 72 20 65 61 63 68 20 70 61 63 6b 65 74 2c 20 44 43 4f 20 65 66 66 65 63 74 | hing.for.each.packet,.DCO.effect |
| 6bb40 | 69 76 65 6c 79 20 72 65 64 75 63 65 73 20 6f 76 65 72 68 65 61 64 2e 20 54 68 69 73 20 6f 70 74 | ively.reduces.overhead..This.opt |
| 6bb60 | 69 6d 69 7a 61 74 69 6f 6e 20 69 73 20 61 63 68 69 65 76 65 64 20 62 79 20 6b 65 65 70 69 6e 67 | imization.is.achieved.by.keeping |
| 6bb80 | 20 6d 6f 73 74 20 64 61 74 61 20 68 61 6e 64 6c 69 6e 67 20 74 61 73 6b 73 20 77 69 74 68 69 6e | .most.data.handling.tasks.within |
| 6bba0 | 20 74 68 65 20 6b 65 72 6e 65 6c 2c 20 61 76 6f 69 64 69 6e 67 20 66 72 65 71 75 65 6e 74 20 73 | .the.kernel,.avoiding.frequent.s |
| 6bbc0 | 77 69 74 63 68 65 73 20 62 65 74 77 65 65 6e 20 6b 65 72 6e 65 6c 20 61 6e 64 20 75 73 65 72 20 | witches.between.kernel.and.user. |
| 6bbe0 | 73 70 61 63 65 20 66 6f 72 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6e 64 20 70 61 63 6b 65 74 20 | space.for.encryption.and.packet. |
| 6bc00 | 68 61 6e 64 6c 69 6e 67 2e 00 4f 70 65 6e 56 50 4e 20 4c 6f 67 73 00 4f 70 65 6e 56 50 4e 20 61 | handling..OpenVPN.Logs.OpenVPN.a |
| 6bc20 | 6c 6c 6f 77 73 20 66 6f 72 20 65 69 74 68 65 72 20 54 43 50 20 6f 72 20 55 44 50 2e 20 55 44 50 | llows.for.either.TCP.or.UDP..UDP |
| 6bc40 | 20 77 69 6c 6c 20 70 72 6f 76 69 64 65 20 74 68 65 20 6c 6f 77 65 73 74 20 6c 61 74 65 6e 63 79 | .will.provide.the.lowest.latency |
| 6bc60 | 2c 20 77 68 69 6c 65 20 54 43 50 20 77 69 6c 6c 20 77 6f 72 6b 20 62 65 74 74 65 72 20 66 6f 72 | ,.while.TCP.will.work.better.for |
| 6bc80 | 20 6c 6f 73 73 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 3b 20 67 65 6e 65 72 61 6c 6c 79 20 55 44 | .lossy.connections;.generally.UD |
| 6bca0 | 50 20 69 73 20 70 72 65 66 65 72 72 65 64 20 77 68 65 6e 20 70 6f 73 73 69 62 6c 65 2e 00 4f 70 | P.is.preferred.when.possible..Op |
| 6bcc0 | 65 6e 56 50 4e 20 69 73 20 70 6f 70 75 6c 61 72 20 66 6f 72 20 63 6c 69 65 6e 74 2d 73 65 72 76 | enVPN.is.popular.for.client-serv |
| 6bce0 | 65 72 20 73 65 74 75 70 73 2c 20 62 75 74 20 69 74 73 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 | er.setups,.but.its.site-to-site. |
| 6bd00 | 6d 6f 64 65 20 72 65 6d 61 69 6e 73 20 61 20 72 65 6c 61 74 69 76 65 6c 79 20 6f 62 73 63 75 72 | mode.remains.a.relatively.obscur |
| 6bd20 | 65 20 66 65 61 74 75 72 65 2c 20 61 6e 64 20 6d 61 6e 79 20 72 6f 75 74 65 72 20 61 70 70 6c 69 | e.feature,.and.many.router.appli |
| 6bd40 | 61 6e 63 65 73 20 73 74 69 6c 6c 20 64 6f 6e 27 74 20 73 75 70 70 6f 72 74 20 69 74 2e 20 48 6f | ances.still.don't.support.it..Ho |
| 6bd60 | 77 65 76 65 72 2c 20 69 74 27 73 20 76 65 72 79 20 75 73 65 66 75 6c 20 66 6f 72 20 71 75 69 63 | wever,.it's.very.useful.for.quic |
| 6bd80 | 6b 6c 79 20 73 65 74 74 69 6e 67 20 75 70 20 74 75 6e 6e 65 6c 73 20 62 65 74 77 65 65 6e 20 72 | kly.setting.up.tunnels.between.r |
| 6bda0 | 6f 75 74 65 72 73 2e 00 4f 70 65 6e 56 50 4e 20 73 74 61 74 75 73 20 63 61 6e 20 62 65 20 76 65 | outers..OpenVPN.status.can.be.ve |
| 6bdc0 | 72 69 66 69 65 64 20 75 73 69 6e 67 20 74 68 65 20 60 73 68 6f 77 20 6f 70 65 6e 76 70 6e 60 20 | rified.using.the.`show.openvpn`. |
| 6bde0 | 6f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 73 2e 20 53 65 65 20 74 68 65 20 62 75 | operational.commands..See.the.bu |
| 6be00 | 69 6c 74 2d 69 6e 20 68 65 6c 70 20 66 6f 72 20 61 20 63 6f 6d 70 6c 65 74 65 20 6c 69 73 74 20 | ilt-in.help.for.a.complete.list. |
| 6be20 | 6f 66 20 6f 70 74 69 6f 6e 73 2e 00 4f 70 65 6e 63 6f 6e 6e 65 63 74 20 43 6f 6e 66 69 67 75 72 | of.options..Openconnect.Configur |
| 6be40 | 61 74 69 6f 6e 00 4f 70 65 72 61 74 69 6e 67 20 4d 6f 64 65 73 00 4f 70 65 72 61 74 69 6f 6e 00 | ation.Operating.Modes.Operation. |
| 6be60 | 4f 70 65 72 61 74 69 6f 6e 20 43 6f 6d 6d 61 6e 64 73 00 4f 70 65 72 61 74 69 6f 6e 20 4d 6f 64 | Operation.Commands.Operation.Mod |
| 6be80 | 65 00 4f 70 65 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 00 4f 70 65 72 61 74 69 6f 6e 20 6d | e.Operation.commands.Operation.m |
| 6bea0 | 6f 64 65 20 6f 66 20 77 69 72 65 6c 65 73 73 20 72 61 64 69 6f 2e 00 4f 70 65 72 61 74 69 6f 6e | ode.of.wireless.radio..Operation |
| 6bec0 | 2d 6d 6f 64 65 00 4f 70 65 72 61 74 69 6f 6e 2d 6d 6f 64 65 20 46 69 72 65 77 61 6c 6c 00 4f 70 | -mode.Operation-mode.Firewall.Op |
| 6bee0 | 65 72 61 74 69 6f 6e 61 6c 20 43 6f 6d 6d 61 6e 64 73 00 4f 70 65 72 61 74 69 6f 6e 61 6c 20 4d | erational.Commands.Operational.M |
| 6bf00 | 6f 64 65 20 43 6f 6d 6d 61 6e 64 73 00 4f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 | ode.Commands.Operational.command |
| 6bf20 | 73 00 4f 70 74 69 6f 6e 00 4f 70 74 69 6f 6e 20 34 33 20 66 6f 72 20 55 6e 69 46 49 00 4f 70 74 | s.Option.Option.43.for.UniFI.Opt |
| 6bf40 | 69 6f 6e 20 64 65 73 63 72 69 70 74 69 6f 6e 00 4f 70 74 69 6f 6e 20 6e 75 6d 62 65 72 00 4f 70 | ion.description.Option.number.Op |
| 6bf60 | 74 69 6f 6e 20 73 70 65 63 69 66 79 69 6e 67 20 74 68 65 20 72 61 74 65 20 69 6e 20 77 68 69 63 | tion.specifying.the.rate.in.whic |
| 6bf80 | 68 20 77 65 27 6c 6c 20 61 73 6b 20 6f 75 72 20 6c 69 6e 6b 20 70 61 72 74 6e 65 72 20 74 6f 20 | h.we'll.ask.our.link.partner.to. |
| 6bfa0 | 74 72 61 6e 73 6d 69 74 20 4c 41 43 50 44 55 20 70 61 63 6b 65 74 73 20 69 6e 20 38 30 32 2e 33 | transmit.LACPDU.packets.in.802.3 |
| 6bfc0 | 61 64 20 6d 6f 64 65 2e 00 4f 70 74 69 6f 6e 20 74 6f 20 64 69 73 61 62 6c 65 20 72 75 6c 65 2e | ad.mode..Option.to.disable.rule. |
| 6bfe0 | 00 4f 70 74 69 6f 6e 20 74 6f 20 65 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 6c 6f 67 | .Option.to.enable.or.disable.log |
| 6c000 | 20 6d 61 74 63 68 69 6e 67 20 72 75 6c 65 2e 00 4f 70 74 69 6f 6e 20 74 6f 20 6c 6f 67 20 70 61 | .matching.rule..Option.to.log.pa |
| 6c020 | 63 6b 65 74 73 20 68 69 74 74 69 6e 67 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 2e 00 4f 70 | ckets.hitting.default-action..Op |
| 6c040 | 74 69 6f 6e 61 6c 00 4f 70 74 69 6f 6e 61 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 4f 70 | tional.Optional.Configuration.Op |
| 6c060 | 74 69 6f 6e 61 6c 20 70 61 72 61 6d 65 74 65 72 20 70 72 65 66 69 78 2d 6c 69 73 74 20 63 61 6e | tional.parameter.prefix-list.can |
| 6c080 | 20 62 65 20 75 73 65 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 77 68 69 63 68 20 67 72 6f 75 70 73 20 | .be.use.to.control.which.groups. |
| 6c0a0 | 74 6f 20 73 77 69 74 63 68 20 6f 72 20 6e 6f 74 20 73 77 69 74 63 68 2e 20 49 66 20 61 20 67 72 | to.switch.or.not.switch..If.a.gr |
| 6c0c0 | 6f 75 70 20 69 73 20 50 45 52 4d 49 54 20 61 73 20 70 65 72 20 74 68 65 20 70 72 65 66 69 78 2d | oup.is.PERMIT.as.per.the.prefix- |
| 6c0e0 | 6c 69 73 74 2c 20 74 68 65 6e 20 74 68 65 20 53 50 54 20 73 77 69 74 63 68 6f 76 65 72 20 64 6f | list,.then.the.SPT.switchover.do |
| 6c100 | 65 73 20 6e 6f 74 20 68 61 70 70 65 6e 20 66 6f 72 20 69 74 20 61 6e 64 20 69 66 20 69 74 20 69 | es.not.happen.for.it.and.if.it.i |
| 6c120 | 73 20 44 45 4e 59 2c 20 74 68 65 6e 20 74 68 65 20 53 50 54 20 73 77 69 74 63 68 6f 76 65 72 20 | s.DENY,.then.the.SPT.switchover. |
| 6c140 | 68 61 70 70 65 6e 73 2e 00 4f 70 74 69 6f 6e 61 6c 2c 20 69 66 20 79 6f 75 20 77 61 6e 74 20 74 | happens..Optional,.if.you.want.t |
| 6c160 | 6f 20 65 6e 61 62 6c 65 20 75 70 6c 6f 61 64 73 2c 20 65 6c 73 65 20 54 46 54 50 20 73 65 72 76 | o.enable.uploads,.else.TFTP.serv |
| 6c180 | 65 72 20 77 69 6c 6c 20 61 63 74 20 61 73 20 61 20 72 65 61 64 2d 6f 6e 6c 79 20 73 65 72 76 65 | er.will.act.as.a.read-only.serve |
| 6c1a0 | 72 2e 00 4f 70 74 69 6f 6e 61 6c 2f 64 65 66 61 75 6c 74 20 73 65 74 74 69 6e 67 73 00 4f 70 74 | r..Optional/default.settings.Opt |
| 6c1c0 | 69 6f 6e 61 6c 6c 79 20 73 65 74 20 61 20 73 70 65 63 69 66 69 63 20 73 74 61 74 69 63 20 49 50 | ionally.set.a.specific.static.IP |
| 6c1e0 | 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 20 66 6f 72 20 74 68 65 20 63 6f 6e 74 61 | v4.or.IPv6.address.for.the.conta |
| 6c200 | 69 6e 65 72 2e 20 54 68 69 73 20 61 64 64 72 65 73 73 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 | iner..This.address.must.be.withi |
| 6c220 | 6e 20 74 68 65 20 6e 61 6d 65 64 20 6e 65 74 77 6f 72 6b 20 70 72 65 66 69 78 2e 00 4f 70 74 69 | n.the.named.network.prefix..Opti |
| 6c240 | 6f 6e 73 00 4f 70 74 69 6f 6e 73 20 28 47 6c 6f 62 61 6c 20 49 50 73 65 63 20 73 65 74 74 69 6e | ons.Options.(Global.IPsec.settin |
| 6c260 | 67 73 29 20 41 74 74 72 69 62 75 74 65 73 00 4f 70 74 69 6f 6e 73 20 75 73 65 64 20 66 6f 72 20 | gs).Attributes.Options.used.for. |
| 6c280 | 71 75 65 75 65 20 74 61 72 67 65 74 2e 20 41 63 74 69 6f 6e 20 71 75 65 75 65 20 6d 75 73 74 20 | queue.target..Action.queue.must. |
| 6c2a0 | 62 65 20 64 65 66 69 6e 65 64 20 74 6f 20 75 73 65 20 74 68 69 73 20 73 65 74 74 69 6e 67 00 4f | be.defined.to.use.this.setting.O |
| 6c2c0 | 72 20 2a 2a 62 69 6e 61 72 79 2a 2a 20 70 72 65 66 69 78 65 73 2e 00 4f 72 2c 20 66 6f 72 20 65 | r.**binary**.prefixes..Or,.for.e |
| 6c2e0 | 78 61 6d 70 6c 65 20 66 74 70 2c 20 60 64 65 6c 65 74 65 20 73 79 73 74 65 6d 20 63 6f 6e 6e 74 | xample.ftp,.`delete.system.connt |
| 6c300 | 72 61 63 6b 20 6d 6f 64 75 6c 65 73 20 66 74 70 60 2e 00 4f 72 64 65 72 20 63 6f 6e 6e 74 72 61 | rack.modules.ftp`..Order.conntra |
| 6c320 | 63 6b 64 20 74 6f 20 72 65 71 75 65 73 74 20 61 20 63 6f 6d 70 6c 65 74 65 20 63 6f 6e 6e 74 72 | ckd.to.request.a.complete.conntr |
| 6c340 | 61 63 6b 20 74 61 62 6c 65 20 72 65 73 79 6e 63 20 61 67 61 69 6e 73 74 20 74 68 65 20 6f 74 68 | ack.table.resync.against.the.oth |
| 6c360 | 65 72 20 6e 6f 64 65 20 61 74 20 73 74 61 72 74 75 70 2e 00 4f 72 69 67 69 6e 61 74 65 20 61 6e | er.node.at.startup..Originate.an |
| 6c380 | 20 41 53 2d 45 78 74 65 72 6e 61 6c 20 28 74 79 70 65 2d 35 29 20 4c 53 41 20 64 65 73 63 72 69 | .AS-External.(type-5).LSA.descri |
| 6c3a0 | 62 69 6e 67 20 61 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 69 6e 74 6f 20 61 6c 6c 20 65 78 | bing.a.default.route.into.all.ex |
| 6c3c0 | 74 65 72 6e 61 6c 2d 72 6f 75 74 69 6e 67 20 63 61 70 61 62 6c 65 20 61 72 65 61 73 2c 20 6f 66 | ternal-routing.capable.areas,.of |
| 6c3e0 | 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 6d 65 74 72 69 63 20 61 6e 64 20 6d 65 74 72 69 63 | .the.specified.metric.and.metric |
| 6c400 | 20 74 79 70 65 2e 20 49 66 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 61 6c 77 61 79 73 60 20 6b | .type..If.the.:cfgcmd:`always`.k |
| 6c420 | 65 79 77 6f 72 64 20 69 73 20 67 69 76 65 6e 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 | eyword.is.given.then.the.default |
| 6c440 | 20 69 73 20 61 6c 77 61 79 73 20 61 64 76 65 72 74 69 73 65 64 2c 20 65 76 65 6e 20 77 68 65 6e | .is.always.advertised,.even.when |
| 6c460 | 20 74 68 65 72 65 20 69 73 20 6e 6f 20 64 65 66 61 75 6c 74 20 70 72 65 73 65 6e 74 20 69 6e 20 | .there.is.no.default.present.in. |
| 6c480 | 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 20 54 68 65 20 61 72 67 75 6d 65 6e 74 20 | the.routing.table..The.argument. |
| 6c4a0 | 3a 63 66 67 63 6d 64 3a 60 72 6f 75 74 65 2d 6d 61 70 60 20 73 70 65 63 69 66 69 65 73 20 74 6f | :cfgcmd:`route-map`.specifies.to |
| 6c4c0 | 20 61 64 76 65 72 74 69 73 65 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 69 66 20 | .advertise.the.default.route.if. |
| 6c4e0 | 74 68 65 20 72 6f 75 74 65 20 6d 61 70 20 69 73 20 73 61 74 69 73 66 69 65 64 2e 00 4f 74 68 65 | the.route.map.is.satisfied..Othe |
| 6c500 | 72 20 61 74 74 72 69 62 75 74 65 73 20 63 61 6e 20 62 65 20 75 73 65 64 2c 20 62 75 74 20 74 68 | r.attributes.can.be.used,.but.th |
| 6c520 | 65 79 20 68 61 76 65 20 74 6f 20 62 65 20 69 6e 20 6f 6e 65 20 6f 66 20 74 68 65 20 64 69 63 74 | ey.have.to.be.in.one.of.the.dict |
| 6c540 | 69 6f 6e 61 72 69 65 73 20 69 6e 20 2a 2f 75 73 72 2f 73 68 61 72 65 2f 61 63 63 65 6c 2d 70 70 | ionaries.in.*/usr/share/accel-pp |
| 6c560 | 70 2f 72 61 64 69 75 73 2a 2e 00 4f 75 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d | p/radius*..Our.configuration.com |
| 6c580 | 6d 61 6e 64 73 20 77 6f 75 6c 64 20 62 65 3a 00 4f 75 72 20 72 65 6d 6f 74 65 20 65 6e 64 20 6f | mands.would.be:.Our.remote.end.o |
| 6c5a0 | 66 20 74 68 65 20 74 75 6e 6e 65 6c 20 66 6f 72 20 70 65 65 72 20 60 74 6f 2d 77 67 30 32 60 20 | f.the.tunnel.for.peer.`to-wg02`. |
| 6c5c0 | 69 73 20 72 65 61 63 68 61 62 6c 65 20 61 74 20 31 39 32 2e 30 2e 32 2e 31 20 70 6f 72 74 20 35 | is.reachable.at.192.0.2.1.port.5 |
| 6c5e0 | 31 38 32 30 00 4f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 62 61 6c | 1820.Outbound.traffic.can.be.bal |
| 6c600 | 61 6e 63 65 64 20 62 65 74 77 65 65 6e 20 74 77 6f 20 6f 72 20 6d 6f 72 65 20 6f 75 74 62 6f 75 | anced.between.two.or.more.outbou |
| 6c620 | 6e 64 20 69 6e 74 65 72 66 61 63 65 73 2e 20 49 66 20 61 20 70 61 74 68 20 66 61 69 6c 73 2c 20 | nd.interfaces..If.a.path.fails,. |
| 6c640 | 74 72 61 66 66 69 63 20 69 73 20 62 61 6c 61 6e 63 65 64 20 61 63 72 6f 73 73 20 74 68 65 20 72 | traffic.is.balanced.across.the.r |
| 6c660 | 65 6d 61 69 6e 69 6e 67 20 68 65 61 6c 74 68 79 20 70 61 74 68 73 2c 20 61 20 72 65 63 6f 76 65 | emaining.healthy.paths,.a.recove |
| 6c680 | 72 65 64 20 70 61 74 68 20 69 73 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 61 64 64 65 64 20 | red.path.is.automatically.added. |
| 6c6a0 | 62 61 63 6b 20 74 6f 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 61 6e 64 20 75 73 | back.to.the.routing.table.and.us |
| 6c6c0 | 65 64 20 62 79 20 74 68 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 72 2e 20 54 68 65 20 6c 6f 61 | ed.by.the.load.balancer..The.loa |
| 6c6e0 | 64 20 62 61 6c 61 6e 63 65 72 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 61 64 64 73 20 72 6f | d.balancer.automatically.adds.ro |
| 6c700 | 75 74 65 73 20 66 6f 72 20 65 61 63 68 20 70 61 74 68 20 74 6f 20 74 68 65 20 72 6f 75 74 69 6e | utes.for.each.path.to.the.routin |
| 6c720 | 67 20 74 61 62 6c 65 20 61 6e 64 20 62 61 6c 61 6e 63 65 73 20 74 72 61 66 66 69 63 20 61 63 72 | g.table.and.balances.traffic.acr |
| 6c740 | 6f 73 73 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 74 65 72 66 61 63 65 73 2c 20 64 | oss.the.configured.interfaces,.d |
| 6c760 | 65 74 65 72 6d 69 6e 65 64 20 62 79 20 69 6e 74 65 72 66 61 63 65 20 68 65 61 6c 74 68 20 61 6e | etermined.by.interface.health.an |
| 6c780 | 64 20 77 65 69 67 68 74 2e 00 4f 75 74 67 6f 69 6e 67 20 74 72 61 66 66 69 63 20 69 73 20 62 61 | d.weight..Outgoing.traffic.is.ba |
| 6c7a0 | 6c 61 6e 63 65 64 20 69 6e 20 61 20 66 6c 6f 77 2d 62 61 73 65 64 20 6d 61 6e 6e 65 72 2e 20 41 | lanced.in.a.flow-based.manner..A |
| 6c7c0 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 74 61 62 6c 65 20 69 73 20 75 73 | .connection.tracking.table.is.us |
| 6c7e0 | 65 64 20 74 6f 20 74 72 61 63 6b 20 66 6c 6f 77 73 20 62 79 20 74 68 65 69 72 20 73 6f 75 72 63 | ed.to.track.flows.by.their.sourc |
| 6c800 | 65 20 61 64 64 72 65 73 73 2c 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 61 | e.address,.destination.address.a |
| 6c820 | 6e 64 20 70 6f 72 74 2e 20 45 61 63 68 20 66 6c 6f 77 20 69 73 20 61 73 73 69 67 6e 65 64 20 74 | nd.port..Each.flow.is.assigned.t |
| 6c840 | 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 74 68 65 20 | o.an.interface.according.to.the. |
| 6c860 | 64 65 66 69 6e 65 64 20 62 61 6c 61 6e 63 69 6e 67 20 72 75 6c 65 73 20 61 6e 64 20 73 75 62 73 | defined.balancing.rules.and.subs |
| 6c880 | 65 71 75 65 6e 74 20 70 61 63 6b 65 74 73 20 61 72 65 20 73 65 6e 74 20 74 68 72 6f 75 67 68 20 | equent.packets.are.sent.through. |
| 6c8a0 | 74 68 65 20 73 61 6d 65 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 68 61 73 20 74 68 65 | the.same.interface..This.has.the |
| 6c8c0 | 20 61 64 76 61 6e 74 61 67 65 20 74 68 61 74 20 70 61 63 6b 65 74 73 20 61 6c 77 61 79 73 20 61 | .advantage.that.packets.always.a |
| 6c8e0 | 72 72 69 76 65 20 69 6e 20 6f 72 64 65 72 20 69 66 20 6c 69 6e 6b 73 20 77 69 74 68 20 64 69 66 | rrive.in.order.if.links.with.dif |
| 6c900 | 66 65 72 65 6e 74 20 73 70 65 65 64 73 20 61 72 65 20 69 6e 20 75 73 65 2e 00 4f 75 74 70 75 74 | ferent.speeds.are.in.use..Output |
| 6c920 | 20 66 72 6f 6d 20 60 65 74 68 30 60 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 00 4f | .from.`eth0`.network.interface.O |
| 6c940 | 75 74 70 75 74 20 70 6c 75 67 69 6e 20 50 72 6f 6d 65 74 68 65 75 73 20 63 6c 69 65 6e 74 00 4f | utput.plugin.Prometheus.client.O |
| 6c960 | 76 65 72 20 49 50 00 4f 76 65 72 20 49 50 53 65 63 2c 20 4c 32 20 56 50 4e 20 28 62 72 69 64 67 | ver.IP.Over.IPSec,.L2.VPN.(bridg |
| 6c980 | 65 29 00 4f 76 65 72 20 55 44 50 00 4f 76 65 72 72 69 64 65 20 73 74 61 74 69 63 2d 6d 61 70 70 | e).Over.UDP.Override.static-mapp |
| 6c9a0 | 69 6e 67 27 73 20 6e 61 6d 65 2d 73 65 72 76 65 72 20 77 69 74 68 20 61 20 63 75 73 74 6f 6d 20 | ing's.name-server.with.a.custom. |
| 6c9c0 | 6f 6e 65 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 6f 6e 6c 79 20 74 6f 20 74 68 | one.that.will.be.sent.only.to.th |
| 6c9e0 | 69 73 20 68 6f 73 74 2e 00 4f 76 65 72 72 69 64 65 20 74 68 65 20 64 65 66 61 75 6c 74 20 63 6f | is.host..Override.the.default.co |
| 6ca00 | 6d 6d 61 6e 64 20 66 72 6f 6d 20 74 68 65 20 69 6d 61 67 65 20 66 6f 72 20 61 20 63 6f 6e 74 61 | mmand.from.the.image.for.a.conta |
| 6ca20 | 69 6e 65 72 2e 00 4f 76 65 72 72 69 64 65 20 74 68 65 20 64 65 66 61 75 6c 74 20 65 6e 74 72 79 | iner..Override.the.default.entry |
| 6ca40 | 70 6f 69 6e 74 20 66 72 6f 6d 20 74 68 65 20 69 6d 61 67 65 20 66 6f 72 20 61 20 63 6f 6e 74 61 | point.from.the.image.for.a.conta |
| 6ca60 | 69 6e 65 72 2e 00 4f 76 65 72 76 69 65 77 00 4f 76 65 72 76 69 65 77 20 61 6e 64 20 62 61 73 69 | iner..Overview.Overview.and.basi |
| 6ca80 | 63 20 63 6f 6e 63 65 70 74 73 00 4f 76 65 72 76 69 65 77 20 6f 66 20 64 65 66 69 6e 65 64 20 67 | c.concepts.Overview.of.defined.g |
| 6caa0 | 72 6f 75 70 73 2e 20 59 6f 75 20 73 65 65 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 | roups..You.see.the.firewall.grou |
| 6cac0 | 70 20 6e 61 6d 65 2c 20 74 79 70 65 2c 20 72 65 66 65 72 65 6e 63 65 73 20 28 77 68 65 72 65 20 | p.name,.type,.references.(where. |
| 6cae0 | 74 68 65 20 67 72 6f 75 70 20 69 73 20 75 73 65 64 29 2c 20 6d 65 6d 62 65 72 73 2c 20 74 69 6d | the.group.is.used),.members,.tim |
| 6cb00 | 65 6f 75 74 20 61 6e 64 20 65 78 70 69 72 61 74 69 6f 6e 20 28 6c 61 73 74 20 74 77 6f 20 6f 6e | eout.and.expiration.(last.two.on |
| 6cb20 | 6c 79 20 70 72 65 73 65 6e 74 20 69 6e 20 64 79 6e 61 6d 69 63 20 66 69 72 65 77 61 6c 6c 20 67 | ly.present.in.dynamic.firewall.g |
| 6cb40 | 72 6f 75 70 73 29 2e 00 4f 76 65 72 76 69 65 77 20 6f 66 20 64 65 66 69 6e 65 64 20 67 72 6f 75 | roups)..Overview.of.defined.grou |
| 6cb60 | 70 73 2e 20 59 6f 75 20 73 65 65 20 74 68 65 20 74 79 70 65 2c 20 74 68 65 20 6d 65 6d 62 65 72 | ps..You.see.the.type,.the.member |
| 6cb80 | 73 2c 20 61 6e 64 20 77 68 65 72 65 20 74 68 65 20 67 72 6f 75 70 20 69 73 20 75 73 65 64 2e 00 | s,.and.where.the.group.is.used.. |
| 6cba0 | 4f 76 65 72 77 72 69 74 65 73 20 74 68 65 20 6c 6f 63 61 6c 20 73 79 73 74 65 6d 20 68 6f 73 74 | Overwrites.the.local.system.host |
| 6cbc0 | 20 6e 61 6d 65 20 75 73 65 64 20 69 6e 20 73 79 73 6c 6f 67 73 2e 00 50 42 52 20 6d 75 6c 74 69 | .name.used.in.syslogs..PBR.multi |
| 6cbe0 | 70 6c 65 20 75 70 6c 69 6e 6b 73 00 50 43 31 20 69 73 20 69 6e 20 74 68 65 20 60 60 64 65 66 61 | ple.uplinks.PC1.is.in.the.``defa |
| 6cc00 | 75 6c 74 60 60 20 56 52 46 20 61 6e 64 20 61 63 74 69 6e 67 20 61 73 20 65 2e 67 2e 20 61 20 22 | ult``.VRF.and.acting.as.e.g..a." |
| 6cc20 | 66 69 6c 65 73 65 72 76 65 72 22 00 50 43 32 20 69 73 20 69 6e 20 56 52 46 20 60 60 62 6c 75 65 | fileserver".PC2.is.in.VRF.``blue |
| 6cc40 | 60 60 20 77 68 69 63 68 20 69 73 20 74 68 65 20 64 65 76 65 6c 6f 70 6d 65 6e 74 20 64 65 70 61 | ``.which.is.the.development.depa |
| 6cc60 | 72 74 6d 65 6e 74 00 50 43 33 20 61 6e 64 20 50 43 34 20 61 72 65 20 63 6f 6e 6e 65 63 74 65 64 | rtment.PC3.and.PC4.are.connected |
| 6cc80 | 20 74 6f 20 61 20 62 72 69 64 67 65 20 64 65 76 69 63 65 20 6f 6e 20 72 6f 75 74 65 72 20 60 60 | .to.a.bridge.device.on.router.`` |
| 6cca0 | 52 31 60 60 20 77 68 69 63 68 20 69 73 20 69 6e 20 56 52 46 20 60 60 72 65 64 60 60 2e 20 53 61 | R1``.which.is.in.VRF.``red``..Sa |
| 6ccc0 | 79 20 74 68 69 73 20 69 73 20 74 68 65 20 48 52 20 64 65 70 61 72 74 6d 65 6e 74 2e 00 50 43 34 | y.this.is.the.HR.department..PC4 |
| 6cce0 | 20 68 61 73 20 49 50 20 31 30 2e 30 2e 30 2e 34 2f 32 34 20 61 6e 64 20 50 43 35 20 68 61 73 20 | .has.IP.10.0.0.4/24.and.PC5.has. |
| 6cd00 | 49 50 20 31 30 2e 30 2e 30 2e 35 2f 32 34 2c 20 73 6f 20 74 68 65 79 20 62 65 6c 69 65 76 65 20 | IP.10.0.0.5/24,.so.they.believe. |
| 6cd20 | 74 68 65 79 20 61 72 65 20 69 6e 20 74 68 65 20 73 61 6d 65 20 62 72 6f 61 64 63 61 73 74 20 64 | they.are.in.the.same.broadcast.d |
| 6cd40 | 6f 6d 61 69 6e 2e 00 50 43 35 20 72 65 63 65 69 76 65 73 20 74 68 65 20 70 69 6e 67 20 65 63 68 | omain..PC5.receives.the.ping.ech |
| 6cd60 | 6f 2c 20 72 65 73 70 6f 6e 64 73 20 77 69 74 68 20 61 6e 20 65 63 68 6f 20 72 65 70 6c 79 20 74 | o,.responds.with.an.echo.reply.t |
| 6cd80 | 68 61 74 20 4c 65 61 66 33 20 72 65 63 65 69 76 65 73 20 61 6e 64 20 74 68 69 73 20 74 69 6d 65 | hat.Leaf3.receives.and.this.time |
| 6cda0 | 20 66 6f 72 77 61 72 64 73 20 74 6f 20 4c 65 61 66 32 27 73 20 75 6e 69 63 61 73 74 20 61 64 64 | .forwards.to.Leaf2's.unicast.add |
| 6cdc0 | 72 65 73 73 20 64 69 72 65 63 74 6c 79 20 62 65 63 61 75 73 65 20 69 74 20 6c 65 61 72 6e 65 64 | ress.directly.because.it.learned |
| 6cde0 | 20 74 68 65 20 6c 6f 63 61 74 69 6f 6e 20 6f 66 20 50 43 34 20 61 62 6f 76 65 2e 20 57 68 65 6e | .the.location.of.PC4.above..When |
| 6ce00 | 20 4c 65 61 66 32 20 72 65 63 65 69 76 65 73 20 74 68 65 20 65 63 68 6f 20 72 65 70 6c 79 20 66 | .Leaf2.receives.the.echo.reply.f |
| 6ce20 | 72 6f 6d 20 50 43 35 20 69 74 20 73 65 65 73 20 74 68 61 74 20 69 74 20 63 61 6d 65 20 66 72 6f | rom.PC5.it.sees.that.it.came.fro |
| 6ce40 | 6d 20 4c 65 61 66 33 20 61 6e 64 20 73 6f 20 72 65 6d 65 6d 62 65 72 73 20 74 68 61 74 20 50 43 | m.Leaf3.and.so.remembers.that.PC |
| 6ce60 | 35 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 76 69 61 20 4c 65 61 66 33 2e 00 50 49 4d 20 28 50 | 5.is.reachable.via.Leaf3..PIM.(P |
| 6ce80 | 72 6f 74 6f 63 6f 6c 20 49 6e 64 65 70 65 6e 64 65 6e 74 20 4d 75 6c 74 69 63 61 73 74 29 20 6d | rotocol.Independent.Multicast).m |
| 6cea0 | 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 65 76 65 72 79 20 69 6e 74 65 72 | ust.be.configured.in.every.inter |
| 6cec0 | 66 61 63 65 20 6f 66 20 65 76 65 72 79 20 70 61 72 74 69 63 69 70 61 74 69 6e 67 20 72 6f 75 74 | face.of.every.participating.rout |
| 6cee0 | 65 72 2e 20 45 76 65 72 79 20 72 6f 75 74 65 72 20 6d 75 73 74 20 61 6c 73 6f 20 68 61 76 65 20 | er..Every.router.must.also.have. |
| 6cf00 | 74 68 65 20 6c 6f 63 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 52 65 6e 64 65 76 6f 75 7a 20 50 6f | the.location.of.the.Rendevouz.Po |
| 6cf20 | 69 6e 74 20 6d 61 6e 75 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 68 65 6e 2c 20 75 | int.manually.configured..Then,.u |
| 6cf40 | 6e 69 64 69 72 65 63 74 69 6f 6e 61 6c 20 73 68 61 72 65 64 20 74 72 65 65 73 20 72 6f 6f 74 65 | nidirectional.shared.trees.roote |
| 6cf60 | 64 20 61 74 20 74 68 65 20 52 65 6e 64 65 76 6f 75 7a 20 50 6f 69 6e 74 20 77 69 6c 6c 20 61 75 | d.at.the.Rendevouz.Point.will.au |
| 6cf80 | 74 6f 6d 61 74 69 63 61 6c 6c 79 20 62 65 20 62 75 69 6c 74 20 66 6f 72 20 6d 75 6c 74 69 63 61 | tomatically.be.built.for.multica |
| 6cfa0 | 73 74 20 64 69 73 74 72 69 62 75 74 69 6f 6e 2e 00 50 49 4d 20 61 6e 64 20 49 47 4d 50 00 50 49 | st.distribution..PIM.and.IGMP.PI |
| 6cfc0 | 4d 20 e2 80 93 20 50 72 6f 74 6f 63 6f 6c 20 49 6e 64 65 70 65 6e 64 65 6e 74 20 4d 75 6c 74 69 | M.....Protocol.Independent.Multi |
| 6cfe0 | 63 61 73 74 00 50 49 4d 2d 53 4d 20 2d 20 50 49 4d 20 53 70 61 72 73 65 20 4d 6f 64 65 00 50 49 | cast.PIM-SM.-.PIM.Sparse.Mode.PI |
| 6d000 | 4d 36 20 2d 20 50 72 6f 74 6f 63 6f 6c 20 49 6e 64 65 70 65 6e 64 65 6e 74 20 4d 75 6c 74 69 63 | M6.-.Protocol.Independent.Multic |
| 6d020 | 61 73 74 20 66 6f 72 20 49 50 76 36 00 50 49 4d 76 36 20 28 50 72 6f 74 6f 63 6f 6c 20 49 6e 64 | ast.for.IPv6.PIMv6.(Protocol.Ind |
| 6d040 | 65 70 65 6e 64 65 6e 74 20 4d 75 6c 74 69 63 61 73 74 20 66 6f 72 20 49 50 76 36 29 20 6d 75 73 | ependent.Multicast.for.IPv6).mus |
| 6d060 | 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 65 76 65 72 79 20 69 6e 74 65 72 66 61 | t.be.configured.in.every.interfa |
| 6d080 | 63 65 20 6f 66 20 65 76 65 72 79 20 70 61 72 74 69 63 69 70 61 74 69 6e 67 20 72 6f 75 74 65 72 | ce.of.every.participating.router |
| 6d0a0 | 2e 20 45 76 65 72 79 20 72 6f 75 74 65 72 20 6d 75 73 74 20 61 6c 73 6f 20 68 61 76 65 20 74 68 | ..Every.router.must.also.have.th |
| 6d0c0 | 65 20 6c 6f 63 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 52 65 6e 64 65 76 6f 75 7a 20 50 6f 69 6e | e.location.of.the.Rendevouz.Poin |
| 6d0e0 | 74 20 6d 61 6e 75 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 68 65 6e 2c 20 75 6e 69 | t.manually.configured..Then,.uni |
| 6d100 | 64 69 72 65 63 74 69 6f 6e 61 6c 20 73 68 61 72 65 64 20 74 72 65 65 73 20 72 6f 6f 74 65 64 20 | directional.shared.trees.rooted. |
| 6d120 | 61 74 20 74 68 65 20 52 65 6e 64 65 76 6f 75 7a 20 50 6f 69 6e 74 20 77 69 6c 6c 20 61 75 74 6f | at.the.Rendevouz.Point.will.auto |
| 6d140 | 6d 61 74 69 63 61 6c 6c 79 20 62 65 20 62 75 69 6c 74 20 66 6f 72 20 6d 75 6c 74 69 63 61 73 74 | matically.be.built.for.multicast |
| 6d160 | 20 64 69 73 74 72 69 62 75 74 69 6f 6e 2e 00 50 4b 49 00 50 50 44 55 00 50 50 50 20 41 64 76 61 | .distribution..PKI.PPDU.PPP.Adva |
| 6d180 | 6e 63 65 64 20 4f 70 74 69 6f 6e 73 00 50 50 50 20 53 65 74 74 69 6e 67 73 00 50 50 50 6f 45 00 | nced.Options.PPP.Settings.PPPoE. |
| 6d1a0 | 50 50 50 6f 45 20 53 65 72 76 65 72 00 50 50 50 6f 45 20 6f 70 74 69 6f 6e 73 00 50 50 54 50 2d | PPPoE.Server.PPPoE.options.PPTP- |
| 6d1c0 | 53 65 72 76 65 72 00 50 54 50 20 54 72 61 6e 73 70 6f 72 74 20 6f 66 20 4e 54 50 20 50 61 63 6b | Server.PTP.Transport.of.NTP.Pack |
| 6d1e0 | 65 74 73 00 50 61 63 6b 65 74 20 4d 6f 64 69 66 69 63 61 74 69 6f 6e 73 00 50 61 63 6b 65 74 2d | ets.Packet.Modifications.Packet- |
| 6d200 | 62 61 73 65 64 20 62 61 6c 61 6e 63 69 6e 67 20 63 61 6e 20 6c 65 61 64 20 74 6f 20 61 20 62 65 | based.balancing.can.lead.to.a.be |
| 6d220 | 74 74 65 72 20 62 61 6c 61 6e 63 65 20 61 63 72 6f 73 73 20 69 6e 74 65 72 66 61 63 65 73 20 77 | tter.balance.across.interfaces.w |
| 6d240 | 68 65 6e 20 6f 75 74 20 6f 66 20 6f 72 64 65 72 20 70 61 63 6b 65 74 73 20 61 72 65 20 6e 6f 20 | hen.out.of.order.packets.are.no. |
| 6d260 | 69 73 73 75 65 2e 20 50 65 72 2d 70 61 63 6b 65 74 2d 62 61 73 65 64 20 62 61 6c 61 6e 63 69 6e | issue..Per-packet-based.balancin |
| 6d280 | 67 20 63 61 6e 20 62 65 20 73 65 74 20 66 6f 72 20 61 20 62 61 6c 61 6e 63 69 6e 67 20 72 75 6c | g.can.be.set.for.a.balancing.rul |
| 6d2a0 | 65 20 77 69 74 68 3a 00 50 61 72 61 6d 65 74 65 72 73 20 62 65 67 69 6e 6e 69 6e 67 20 77 69 74 | e.with:.Parameters.beginning.wit |
| 6d2c0 | 68 20 66 73 2e 6d 71 75 65 75 65 2e 2a 00 50 61 72 61 6d 65 74 65 72 73 20 62 65 67 69 6e 6e 69 | h.fs.mqueue.*.Parameters.beginni |
| 6d2e0 | 6e 67 20 77 69 74 68 20 6e 65 74 2e 2a 20 28 6f 6e 6c 79 20 69 66 20 75 73 65 72 2d 64 65 66 69 | ng.with.net.*.(only.if.user-defi |
| 6d300 | 6e 65 64 20 6e 65 74 77 6f 72 6b 20 69 73 20 75 73 65 64 29 00 50 61 72 74 69 63 75 6c 61 72 6c | ned.network.is.used).Particularl |
| 6d320 | 79 20 6c 61 72 67 65 20 6e 65 74 77 6f 72 6b 73 20 6d 61 79 20 77 69 73 68 20 74 6f 20 72 75 6e | y.large.networks.may.wish.to.run |
| 6d340 | 20 74 68 65 69 72 20 6f 77 6e 20 52 50 4b 49 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 | .their.own.RPKI.certificate.auth |
| 6d360 | 6f 72 69 74 79 20 61 6e 64 20 70 75 62 6c 69 63 61 74 69 6f 6e 20 73 65 72 76 65 72 20 69 6e 73 | ority.and.publication.server.ins |
| 6d380 | 74 65 61 64 20 6f 66 20 70 75 62 6c 69 73 68 69 6e 67 20 52 4f 41 73 20 76 69 61 20 74 68 65 69 | tead.of.publishing.ROAs.via.thei |
| 6d3a0 | 72 20 52 49 52 2e 20 54 68 69 73 20 69 73 20 61 20 73 75 62 6a 65 63 74 20 66 61 72 20 62 65 79 | r.RIR..This.is.a.subject.far.bey |
| 6d3c0 | 6f 6e 64 20 74 68 65 20 73 63 6f 70 65 20 6f 66 20 56 79 4f 53 27 20 64 6f 63 75 6d 65 6e 74 61 | ond.the.scope.of.VyOS'.documenta |
| 6d3e0 | 74 69 6f 6e 2e 20 43 6f 6e 73 69 64 65 72 20 72 65 61 64 69 6e 67 20 61 62 6f 75 74 20 4b 72 69 | tion..Consider.reading.about.Kri |
| 6d400 | 6c 6c 5f 20 69 66 20 74 68 69 73 20 69 73 20 61 20 72 61 62 62 69 74 20 68 6f 6c 65 20 79 6f 75 | ll_.if.this.is.a.rabbit.hole.you |
| 6d420 | 20 6e 65 65 64 20 6f 72 20 65 73 70 65 63 69 61 6c 6c 79 20 77 61 6e 74 20 74 6f 20 64 69 76 65 | .need.or.especially.want.to.dive |
| 6d440 | 20 64 6f 77 6e 2e 00 50 61 73 73 20 61 64 64 72 65 73 73 20 6f 66 20 55 6e 69 66 69 20 63 6f 6e | .down..Pass.address.of.Unifi.con |
| 6d460 | 74 72 6f 6c 6c 65 72 20 61 74 20 60 60 31 37 32 2e 31 36 2e 31 30 30 2e 31 60 60 20 74 6f 20 61 | troller.at.``172.16.100.1``.to.a |
| 6d480 | 6c 6c 20 63 6c 69 65 6e 74 73 20 6f 66 20 60 60 4e 45 54 31 60 60 00 50 61 74 68 20 60 3c 63 6f | ll.clients.of.``NET1``.Path.`<co |
| 6d4a0 | 73 74 3e 60 20 76 61 6c 75 65 20 66 6f 72 20 53 70 61 6e 6e 69 6e 67 20 54 72 65 65 20 50 72 6f | st>`.value.for.Spanning.Tree.Pro |
| 6d4c0 | 74 6f 63 6f 6c 2e 20 45 61 63 68 20 69 6e 74 65 72 66 61 63 65 20 69 6e 20 61 20 62 72 69 64 67 | tocol..Each.interface.in.a.bridg |
| 6d4e0 | 65 20 63 6f 75 6c 64 20 68 61 76 65 20 61 20 64 69 66 66 65 72 65 6e 74 20 73 70 65 65 64 20 61 | e.could.have.a.different.speed.a |
| 6d500 | 6e 64 20 74 68 69 73 20 76 61 6c 75 65 20 69 73 20 75 73 65 64 20 77 68 65 6e 20 64 65 63 69 64 | nd.this.value.is.used.when.decid |
| 6d520 | 69 6e 67 20 77 68 69 63 68 20 6c 69 6e 6b 20 74 6f 20 75 73 65 2e 20 46 61 73 74 65 72 20 69 6e | ing.which.link.to.use..Faster.in |
| 6d540 | 74 65 72 66 61 63 65 73 20 73 68 6f 75 6c 64 20 68 61 76 65 20 6c 6f 77 65 72 20 63 6f 73 74 73 | terfaces.should.have.lower.costs |
| 6d560 | 2e 00 50 61 74 68 20 74 6f 20 60 3c 66 69 6c 65 3e 60 20 70 6f 69 6e 74 69 6e 67 20 74 6f 20 74 | ..Path.to.`<file>`.pointing.to.t |
| 6d580 | 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 20 63 65 72 74 69 66 69 | he.certificate.authority.certifi |
| 6d5a0 | 63 61 74 65 2e 00 50 61 74 68 20 74 6f 20 60 3c 66 69 6c 65 3e 60 20 70 6f 69 6e 74 69 6e 67 20 | cate..Path.to.`<file>`.pointing. |
| 6d5c0 | 74 6f 20 74 68 65 20 73 65 72 76 65 72 73 20 63 65 72 74 69 66 69 63 61 74 65 20 28 70 75 62 6c | to.the.servers.certificate.(publ |
| 6d5e0 | 69 63 20 70 6f 72 74 69 6f 6e 29 2e 00 50 65 65 72 20 2d 20 50 65 65 72 00 50 65 65 72 20 47 72 | ic.portion)..Peer.-.Peer.Peer.Gr |
| 6d600 | 6f 75 70 73 00 50 65 65 72 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 6d 61 74 63 68 2e 00 50 | oups.Peer.IP.address.to.match..P |
| 6d620 | 65 65 72 20 50 61 72 61 6d 65 74 65 72 73 00 50 65 65 72 20 67 72 6f 75 70 73 20 61 72 65 20 75 | eer.Parameters.Peer.groups.are.u |
| 6d640 | 73 65 64 20 74 6f 20 68 65 6c 70 20 69 6d 70 72 6f 76 65 20 73 63 61 6c 69 6e 67 20 62 79 20 67 | sed.to.help.improve.scaling.by.g |
| 6d660 | 65 6e 65 72 61 74 69 6e 67 20 74 68 65 20 73 61 6d 65 20 75 70 64 61 74 65 20 69 6e 66 6f 72 6d | enerating.the.same.update.inform |
| 6d680 | 61 74 69 6f 6e 20 74 6f 20 61 6c 6c 20 6d 65 6d 62 65 72 73 20 6f 66 20 61 20 70 65 65 72 20 67 | ation.to.all.members.of.a.peer.g |
| 6d6a0 | 72 6f 75 70 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 69 73 20 6d 65 61 6e 73 20 74 68 61 74 20 | roup..Note.that.this.means.that. |
| 6d6c0 | 74 68 65 20 72 6f 75 74 65 73 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 61 20 6d 65 6d 62 65 72 | the.routes.generated.by.a.member |
| 6d6e0 | 20 6f 66 20 61 20 70 65 65 72 20 67 72 6f 75 70 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 62 61 | .of.a.peer.group.will.be.sent.ba |
| 6d700 | 63 6b 20 74 6f 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 69 6e 67 20 70 65 65 72 20 77 69 74 68 | ck.to.that.originating.peer.with |
| 6d720 | 20 74 68 65 20 6f 72 69 67 69 6e 61 74 6f 72 20 69 64 65 6e 74 69 66 69 65 72 20 61 74 74 72 69 | .the.originator.identifier.attri |
| 6d740 | 62 75 74 65 20 73 65 74 20 74 6f 20 69 6e 64 69 63 61 74 65 64 20 74 68 65 20 6f 72 69 67 69 6e | bute.set.to.indicated.the.origin |
| 6d760 | 61 74 69 6e 67 20 70 65 65 72 2e 20 41 6c 6c 20 70 65 65 72 73 20 6e 6f 74 20 61 73 73 6f 63 69 | ating.peer..All.peers.not.associ |
| 6d780 | 61 74 65 64 20 77 69 74 68 20 61 20 73 70 65 63 69 66 69 63 20 70 65 65 72 20 67 72 6f 75 70 20 | ated.with.a.specific.peer.group. |
| 6d7a0 | 61 72 65 20 74 72 65 61 74 65 64 20 61 73 20 62 65 6c 6f 6e 67 69 6e 67 20 74 6f 20 61 20 64 65 | are.treated.as.belonging.to.a.de |
| 6d7c0 | 66 61 75 6c 74 20 70 65 65 72 20 67 72 6f 75 70 2c 20 61 6e 64 20 77 69 6c 6c 20 73 68 61 72 65 | fault.peer.group,.and.will.share |
| 6d7e0 | 20 75 70 64 61 74 65 73 2e 00 50 65 65 72 20 74 6f 20 73 65 6e 64 20 75 6e 69 63 61 73 74 20 55 | .updates..Peer.to.send.unicast.U |
| 6d800 | 44 50 20 63 6f 6e 6e 74 72 61 63 6b 20 73 79 6e 63 20 65 6e 74 69 72 65 73 20 74 6f 2c 20 69 66 | DP.conntrack.sync.entires.to,.if |
| 6d820 | 20 6e 6f 74 20 75 73 69 6e 67 20 4d 75 6c 74 69 63 61 73 74 20 63 6f 6e 66 69 67 75 72 61 74 69 | .not.using.Multicast.configurati |
| 6d840 | 6f 6e 20 66 72 6f 6d 20 61 62 6f 76 65 20 61 62 6f 76 65 2e 00 50 65 65 72 73 20 43 6f 6e 66 69 | on.from.above.above..Peers.Confi |
| 6d860 | 67 75 72 61 74 69 6f 6e 00 50 65 72 20 64 65 66 61 75 6c 74 20 56 79 4f 53 73 20 68 61 73 20 6d | guration.Per.default.VyOSs.has.m |
| 6d880 | 69 6e 69 6d 61 6c 20 73 79 73 6c 6f 67 20 6c 6f 67 67 69 6e 67 20 65 6e 61 62 6c 65 64 20 77 68 | inimal.syslog.logging.enabled.wh |
| 6d8a0 | 69 63 68 20 69 73 20 73 74 6f 72 65 64 20 61 6e 64 20 72 6f 74 61 74 65 64 20 6c 6f 63 61 6c 6c | ich.is.stored.and.rotated.locall |
| 6d8c0 | 79 2e 20 45 72 72 6f 72 73 20 77 69 6c 6c 20 62 65 20 61 6c 77 61 79 73 20 6c 6f 67 67 65 64 20 | y..Errors.will.be.always.logged. |
| 6d8e0 | 74 6f 20 61 20 6c 6f 63 61 6c 20 66 69 6c 65 2c 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 73 20 | to.a.local.file,.which.includes. |
| 6d900 | 60 6c 6f 63 61 6c 37 60 20 65 72 72 6f 72 20 6d 65 73 73 61 67 65 73 2c 20 65 6d 65 72 67 65 6e | `local7`.error.messages,.emergen |
| 6d920 | 63 79 20 6d 65 73 73 61 67 65 73 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 74 6f 20 74 68 65 20 | cy.messages.will.be.sent.to.the. |
| 6d940 | 63 6f 6e 73 6f 6c 65 2c 20 74 6f 6f 2e 00 50 65 72 20 64 65 66 61 75 6c 74 20 65 76 65 72 79 20 | console,.too..Per.default.every. |
| 6d960 | 70 61 63 6b 65 74 20 69 73 20 73 61 6d 70 6c 65 64 20 28 74 68 61 74 20 69 73 2c 20 74 68 65 20 | packet.is.sampled.(that.is,.the. |
| 6d980 | 73 61 6d 70 6c 69 6e 67 20 72 61 74 65 20 69 73 20 31 29 2e 00 50 65 72 20 64 65 66 61 75 6c 74 | sampling.rate.is.1)..Per.default |
| 6d9a0 | 20 74 68 65 20 75 73 65 72 20 73 65 73 73 69 6f 6e 20 69 73 20 62 65 69 6e 67 20 72 65 70 6c 61 | .the.user.session.is.being.repla |
| 6d9c0 | 63 65 64 20 69 66 20 61 20 73 65 63 6f 6e 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 72 | ced.if.a.second.authentication.r |
| 6d9e0 | 65 71 75 65 73 74 20 73 75 63 63 65 65 64 73 2e 20 53 75 63 68 20 73 65 73 73 69 6f 6e 20 72 65 | equest.succeeds..Such.session.re |
| 6da00 | 71 75 65 73 74 73 20 63 61 6e 20 62 65 20 65 69 74 68 65 72 20 64 65 6e 69 65 64 20 6f 72 20 61 | quests.can.be.either.denied.or.a |
| 6da20 | 6c 6c 6f 77 65 64 20 65 6e 74 69 72 65 6c 79 2c 20 77 68 69 63 68 20 77 6f 75 6c 64 20 61 6c 6c | llowed.entirely,.which.would.all |
| 6da40 | 6f 77 20 6d 75 6c 74 69 70 6c 65 20 73 65 73 73 69 6f 6e 73 20 66 6f 72 20 61 20 75 73 65 72 20 | ow.multiple.sessions.for.a.user. |
| 6da60 | 69 6e 20 74 68 65 20 6c 61 74 74 65 72 20 63 61 73 65 2e 20 49 66 20 69 74 20 69 73 20 64 65 6e | in.the.latter.case..If.it.is.den |
| 6da80 | 69 65 64 2c 20 74 68 65 20 73 65 63 6f 6e 64 20 73 65 73 73 69 6f 6e 20 69 73 20 62 65 69 6e 67 | ied,.the.second.session.is.being |
| 6daa0 | 20 72 65 6a 65 63 74 65 64 20 65 76 65 6e 20 69 66 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 | .rejected.even.if.the.authentica |
| 6dac0 | 74 69 6f 6e 20 73 75 63 63 65 65 64 73 2c 20 74 68 65 20 75 73 65 72 20 68 61 73 20 74 6f 20 74 | tion.succeeds,.the.user.has.to.t |
| 6dae0 | 65 72 6d 69 6e 61 74 65 20 69 74 73 20 66 69 72 73 74 20 73 65 73 73 69 6f 6e 20 61 6e 64 20 63 | erminate.its.first.session.and.c |
| 6db00 | 61 6e 20 74 68 65 6e 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 67 61 69 6e 2e 00 50 65 | an.then.authentication.again..Pe |
| 6db20 | 72 20 64 65 66 61 75 6c 74 2c 20 69 6e 74 65 72 66 61 63 65 73 20 75 73 65 64 20 69 6e 20 61 20 | r.default,.interfaces.used.in.a. |
| 6db40 | 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 70 6f 6f 6c 20 72 65 70 6c 61 63 65 20 74 68 65 20 | load.balancing.pool.replace.the. |
| 6db60 | 73 6f 75 72 63 65 20 49 50 20 6f 66 20 65 61 63 68 20 6f 75 74 67 6f 69 6e 67 20 70 61 63 6b 65 | source.IP.of.each.outgoing.packe |
| 6db80 | 74 20 77 69 74 68 20 69 74 73 20 6f 77 6e 20 61 64 64 72 65 73 73 20 74 6f 20 65 6e 73 75 72 65 | t.with.its.own.address.to.ensure |
| 6dba0 | 20 74 68 61 74 20 72 65 70 6c 69 65 73 20 61 72 72 69 76 65 20 6f 6e 20 74 68 65 20 73 61 6d 65 | .that.replies.arrive.on.the.same |
| 6dbc0 | 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 77 6f 72 6b 73 20 74 68 72 6f 75 67 68 20 61 | .interface..This.works.through.a |
| 6dbe0 | 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 67 65 6e 65 72 61 74 65 64 20 73 6f 75 72 63 65 20 4e 41 | utomatically.generated.source.NA |
| 6dc00 | 54 20 28 53 4e 41 54 29 20 72 75 6c 65 73 2c 20 74 68 65 73 65 20 72 75 6c 65 73 20 61 72 65 20 | T.(SNAT).rules,.these.rules.are. |
| 6dc20 | 6f 6e 6c 79 20 61 70 70 6c 69 65 64 20 74 6f 20 62 61 6c 61 6e 63 65 64 20 74 72 61 66 66 69 63 | only.applied.to.balanced.traffic |
| 6dc40 | 2e 20 49 6e 20 63 61 73 65 73 20 77 68 65 72 65 20 74 68 69 73 20 62 65 68 61 76 69 6f 75 72 20 | ..In.cases.where.this.behaviour. |
| 6dc60 | 69 73 20 6e 6f 74 20 64 65 73 69 72 65 64 2c 20 74 68 65 20 61 75 74 6f 6d 61 74 69 63 20 67 65 | is.not.desired,.the.automatic.ge |
| 6dc80 | 6e 65 72 61 74 69 6f 6e 20 6f 66 20 53 4e 41 54 20 72 75 6c 65 73 20 63 61 6e 20 62 65 20 64 69 | neration.of.SNAT.rules.can.be.di |
| 6dca0 | 73 61 62 6c 65 64 3a 00 50 65 72 66 6f 72 6d 20 4e 41 54 20 6c 6f 6f 6b 75 70 20 62 65 66 6f 72 | sabled:.Perform.NAT.lookup.befor |
| 6dcc0 | 65 20 61 70 70 6c 79 69 6e 67 20 66 6c 6f 77 2d 69 73 6f 6c 61 74 69 6f 6e 20 72 75 6c 65 73 2e | e.applying.flow-isolation.rules. |
| 6dce0 | 00 50 65 72 66 6f 72 6d 61 6e 63 65 00 50 65 72 69 6f 64 69 63 61 6c 6c 79 2c 20 61 20 68 65 6c | .Performance.Periodically,.a.hel |
| 6dd00 | 6c 6f 20 70 61 63 6b 65 74 20 69 73 20 73 65 6e 74 20 6f 75 74 20 62 79 20 74 68 65 20 52 6f 6f | lo.packet.is.sent.out.by.the.Roo |
| 6dd20 | 74 20 42 72 69 64 67 65 20 61 6e 64 20 74 68 65 20 44 65 73 69 67 6e 61 74 65 64 20 42 72 69 64 | t.Bridge.and.the.Designated.Brid |
| 6dd40 | 67 65 73 2e 20 48 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 61 72 65 20 75 73 65 64 20 74 6f 20 63 | ges..Hello.packets.are.used.to.c |
| 6dd60 | 6f 6d 6d 75 6e 69 63 61 74 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 74 68 65 | ommunicate.information.about.the |
| 6dd80 | 20 74 6f 70 6f 6c 6f 67 79 20 74 68 72 6f 75 67 68 6f 75 74 20 74 68 65 20 65 6e 74 69 72 65 20 | .topology.throughout.the.entire. |
| 6dda0 | 42 72 69 64 67 65 64 20 4c 6f 63 61 6c 20 41 72 65 61 20 4e 65 74 77 6f 72 6b 2e 00 50 69 6e 67 | Bridged.Local.Area.Network..Ping |
| 6ddc0 | 20 63 6f 6d 6d 61 6e 64 20 63 61 6e 20 62 65 20 69 6e 74 65 72 72 75 70 74 65 64 20 61 74 20 61 | .command.can.be.interrupted.at.a |
| 6dde0 | 6e 79 20 67 69 76 65 6e 20 74 69 6d 65 20 75 73 69 6e 67 20 60 60 3c 43 74 72 6c 3e 2b 63 60 60 | ny.given.time.using.``<Ctrl>+c`` |
| 6de00 | 2e 20 41 20 62 72 69 65 66 20 73 74 61 74 69 73 74 69 63 20 69 73 20 73 68 6f 77 6e 20 61 66 74 | ..A.brief.statistic.is.shown.aft |
| 6de20 | 65 72 77 61 72 64 73 2e 00 50 69 6e 67 20 75 73 65 73 20 49 43 4d 50 20 70 72 6f 74 6f 63 6f 6c | erwards..Ping.uses.ICMP.protocol |
| 6de40 | 27 73 20 6d 61 6e 64 61 74 6f 72 79 20 45 43 48 4f 5f 52 45 51 55 45 53 54 20 64 61 74 61 67 72 | 's.mandatory.ECHO_REQUEST.datagr |
| 6de60 | 61 6d 20 74 6f 20 65 6c 69 63 69 74 20 61 6e 20 49 43 4d 50 20 45 43 48 4f 5f 52 45 53 50 4f 4e | am.to.elicit.an.ICMP.ECHO_RESPON |
| 6de80 | 53 45 20 66 72 6f 6d 20 61 20 68 6f 73 74 20 6f 72 20 67 61 74 65 77 61 79 2e 20 45 43 48 4f 5f | SE.from.a.host.or.gateway..ECHO_ |
| 6dea0 | 52 45 51 55 45 53 54 20 64 61 74 61 67 72 61 6d 73 20 28 70 69 6e 67 73 29 20 77 69 6c 6c 20 68 | REQUEST.datagrams.(pings).will.h |
| 6dec0 | 61 76 65 20 61 6e 20 49 50 20 61 6e 64 20 49 43 4d 50 20 68 65 61 64 65 72 2c 20 66 6f 6c 6c 6f | ave.an.IP.and.ICMP.header,.follo |
| 6dee0 | 77 65 64 20 62 79 20 22 73 74 72 75 63 74 20 74 69 6d 65 76 61 6c 22 20 61 6e 64 20 61 6e 20 61 | wed.by."struct.timeval".and.an.a |
| 6df00 | 72 62 69 74 72 61 72 79 20 6e 75 6d 62 65 72 20 6f 66 20 70 61 64 20 62 79 74 65 73 20 75 73 65 | rbitrary.number.of.pad.bytes.use |
| 6df20 | 64 20 74 6f 20 66 69 6c 6c 20 6f 75 74 20 74 68 65 20 70 61 63 6b 65 74 2e 00 50 69 6e 67 69 6e | d.to.fill.out.the.packet..Pingin |
| 6df40 | 67 20 28 49 50 76 36 29 20 74 68 65 20 6f 74 68 65 72 20 68 6f 73 74 20 61 6e 64 20 69 6e 74 65 | g.(IPv6).the.other.host.and.inte |
| 6df60 | 72 63 65 70 74 69 6e 67 20 74 68 65 20 74 72 61 66 66 69 63 20 69 6e 20 60 60 65 74 68 31 60 60 | rcepting.the.traffic.in.``eth1`` |
| 6df80 | 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 74 68 65 20 63 6f 6e 74 65 6e 74 20 69 73 20 65 6e | .will.show.you.the.content.is.en |
| 6dfa0 | 63 72 79 70 74 65 64 2e 00 50 6c 61 63 65 20 69 6e 74 65 72 66 61 63 65 20 69 6e 20 67 69 76 65 | crypted..Place.interface.in.give |
| 6dfc0 | 6e 20 56 52 46 20 69 6e 73 74 61 6e 63 65 2e 00 50 6c 61 79 20 61 6e 20 61 75 64 69 62 6c 65 20 | n.VRF.instance..Play.an.audible. |
| 6dfe0 | 62 65 65 70 20 74 6f 20 74 68 65 20 73 79 73 74 65 6d 20 73 70 65 61 6b 65 72 20 77 68 65 6e 20 | beep.to.the.system.speaker.when. |
| 6e000 | 73 79 73 74 65 6d 20 69 73 20 72 65 61 64 79 2e 00 50 6c 65 61 73 65 20 62 65 20 61 77 61 72 65 | system.is.ready..Please.be.aware |
| 6e020 | 2c 20 64 75 65 20 74 6f 20 61 6e 20 75 70 73 74 72 65 61 6d 20 62 75 67 2c 20 63 6f 6e 66 69 67 | ,.due.to.an.upstream.bug,.config |
| 6e040 | 20 63 68 61 6e 67 65 73 2f 63 6f 6d 6d 69 74 73 20 77 69 6c 6c 20 72 65 73 74 61 72 74 20 74 68 | .changes/commits.will.restart.th |
| 6e060 | 65 20 70 70 70 20 64 61 65 6d 6f 6e 20 61 6e 64 20 77 69 6c 6c 20 72 65 73 65 74 20 65 78 69 73 | e.ppp.daemon.and.will.reset.exis |
| 6e080 | 74 69 6e 67 20 49 50 6f 45 20 73 65 73 73 69 6f 6e 73 2c 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 | ting.IPoE.sessions,.in.order.to. |
| 6e0a0 | 62 65 63 6f 6d 65 20 65 66 66 65 63 74 69 76 65 2e 00 50 6c 65 61 73 65 20 62 65 20 61 77 61 72 | become.effective..Please.be.awar |
| 6e0c0 | 65 2c 20 64 75 65 20 74 6f 20 61 6e 20 75 70 73 74 72 65 61 6d 20 62 75 67 2c 20 63 6f 6e 66 69 | e,.due.to.an.upstream.bug,.confi |
| 6e0e0 | 67 20 63 68 61 6e 67 65 73 2f 63 6f 6d 6d 69 74 73 20 77 69 6c 6c 20 72 65 73 74 61 72 74 20 74 | g.changes/commits.will.restart.t |
| 6e100 | 68 65 20 70 70 70 20 64 61 65 6d 6f 6e 20 61 6e 64 20 77 69 6c 6c 20 72 65 73 65 74 20 65 78 69 | he.ppp.daemon.and.will.reset.exi |
| 6e120 | 73 74 69 6e 67 20 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 66 72 6f 6d 20 63 6f 6e | sting.PPPoE.connections.from.con |
| 6e140 | 6e 65 63 74 65 64 20 75 73 65 72 73 2c 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 62 65 63 6f 6d 65 | nected.users,.in.order.to.become |
| 6e160 | 20 65 66 66 65 63 74 69 76 65 2e 00 50 6c 65 61 73 65 20 72 65 66 65 72 20 74 6f 20 74 68 65 20 | .effective..Please.refer.to.the. |
| 6e180 | 3a 72 65 66 3a 60 69 70 73 65 63 60 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 66 6f 72 20 74 | :ref:`ipsec`.documentation.for.t |
| 6e1a0 | 68 65 20 69 6e 64 69 76 69 64 75 61 6c 20 49 50 53 65 63 20 72 65 6c 61 74 65 64 20 6f 70 74 69 | he.individual.IPSec.related.opti |
| 6e1c0 | 6f 6e 73 2e 00 50 6c 65 61 73 65 20 72 65 66 65 72 20 74 6f 20 74 68 65 20 3a 72 65 66 3a 60 74 | ons..Please.refer.to.the.:ref:`t |
| 6e1e0 | 75 6e 6e 65 6c 2d 69 6e 74 65 72 66 61 63 65 60 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 66 | unnel-interface`.documentation.f |
| 6e200 | 6f 72 20 74 68 65 20 69 6e 64 69 76 69 64 75 61 6c 20 74 75 6e 6e 65 6c 20 72 65 6c 61 74 65 64 | or.the.individual.tunnel.related |
| 6e220 | 20 6f 70 74 69 6f 6e 73 2e 00 50 6c 65 61 73 65 20 73 65 65 20 74 68 65 20 3a 72 65 66 3a 60 64 | .options..Please.see.the.:ref:`d |
| 6e240 | 68 63 70 2d 64 6e 73 2d 71 75 69 63 6b 2d 73 74 61 72 74 60 20 63 6f 6e 66 69 67 75 72 61 74 69 | hcp-dns-quick-start`.configurati |
| 6e260 | 6f 6e 2e 00 50 6c 65 61 73 65 20 74 61 6b 65 20 61 20 6c 6f 6f 6b 20 61 74 20 74 68 65 20 3a 72 | on..Please.take.a.look.at.the.:r |
| 6e280 | 65 66 3a 60 76 79 6f 73 61 70 69 60 20 70 61 67 65 20 66 6f 72 20 61 6e 20 64 65 74 61 69 6c 65 | ef:`vyosapi`.page.for.an.detaile |
| 6e2a0 | 64 20 68 6f 77 2d 74 6f 2e 00 50 6c 65 61 73 65 20 74 61 6b 65 20 61 20 6c 6f 6f 6b 20 61 74 20 | d.how-to..Please.take.a.look.at. |
| 6e2c0 | 74 68 65 20 43 6f 6e 74 72 69 62 75 74 69 6e 67 20 47 75 69 64 65 20 66 6f 72 20 6f 75 72 20 3a | the.Contributing.Guide.for.our.: |
| 6e2e0 | 72 65 66 3a 60 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 60 2e 00 50 6c 65 61 73 65 20 74 61 6b 65 | ref:`documentation`..Please.take |
| 6e300 | 20 61 20 6c 6f 6f 6b 20 69 6e 20 74 68 65 20 41 75 74 6f 6d 61 74 69 6f 6e 20 73 65 63 74 69 6f | .a.look.in.the.Automation.sectio |
| 6e320 | 6e 20 74 6f 20 66 69 6e 64 20 73 6f 6d 65 20 75 73 65 66 75 6c 6c 20 45 78 61 6d 70 6c 65 73 2e | n.to.find.some.usefull.Examples. |
| 6e340 | 00 50 6c 65 61 73 65 2c 20 72 65 66 65 72 20 74 6f 20 61 70 70 72 6f 70 69 61 74 65 20 73 65 63 | .Please,.refer.to.appropiate.sec |
| 6e360 | 74 69 6f 6e 20 66 6f 72 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 | tion.for.more.information.about. |
| 6e380 | 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 50 6c 65 61 73 65 2c 20 | firewall.configuration:.Please,. |
| 6e3a0 | 72 65 66 65 72 20 74 6f 20 61 70 70 72 6f 70 72 69 61 74 65 20 73 65 63 74 69 6f 6e 20 66 6f 72 | refer.to.appropriate.section.for |
| 6e3c0 | 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 66 69 72 65 77 61 6c 6c | .more.information.about.firewall |
| 6e3e0 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 50 6f 6c 69 63 69 65 73 20 61 72 65 20 75 73 65 | .configuration:.Policies.are.use |
| 6e400 | 64 20 66 6f 72 20 66 69 6c 74 65 72 69 6e 67 20 61 6e 64 20 74 72 61 66 66 69 63 20 6d 61 6e 61 | d.for.filtering.and.traffic.mana |
| 6e420 | 67 65 6d 65 6e 74 2e 20 57 69 74 68 20 70 6f 6c 69 63 69 65 73 2c 20 6e 65 74 77 6f 72 6b 20 61 | gement..With.policies,.network.a |
| 6e440 | 64 6d 69 6e 69 73 74 72 61 74 6f 72 73 20 63 6f 75 6c 64 20 66 69 6c 74 65 72 20 61 6e 64 20 74 | dministrators.could.filter.and.t |
| 6e460 | 72 65 61 74 20 74 72 61 66 66 69 63 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 74 68 65 69 72 20 | reat.traffic.according.to.their. |
| 6e480 | 6e 65 65 64 73 2e 00 50 6f 6c 69 63 69 65 73 20 66 6f 72 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 | needs..Policies.for.local.traffi |
| 6e4a0 | 63 20 61 72 65 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 2e 00 50 | c.are.defined.in.this.section..P |
| 6e4c0 | 6f 6c 69 63 69 65 73 2c 20 69 6e 20 56 79 4f 53 2c 20 61 72 65 20 69 6d 70 6c 65 6d 65 6e 74 65 | olicies,.in.VyOS,.are.implemente |
| 6e4e0 | 64 20 75 73 69 6e 67 20 46 52 52 20 66 69 6c 74 65 72 69 6e 67 20 61 6e 64 20 72 6f 75 74 65 20 | d.using.FRR.filtering.and.route. |
| 6e500 | 6d 61 70 73 2e 20 44 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 46 52 | maps..Detailed.information.of.FR |
| 6e520 | 52 20 63 6f 75 6c 64 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 68 74 74 70 3a 2f 2f 64 6f 63 73 2e | R.could.be.found.in.http://docs. |
| 6e540 | 66 72 72 6f 75 74 69 6e 67 2e 6f 72 67 2f 00 50 6f 6c 69 63 79 00 50 6f 6c 69 63 79 20 53 65 63 | frrouting.org/.Policy.Policy.Sec |
| 6e560 | 74 69 6f 6e 73 00 50 6f 6c 69 63 79 20 66 6f 72 20 63 68 65 63 6b 69 6e 67 20 74 61 72 67 65 74 | tions.Policy.for.checking.target |
| 6e580 | 73 00 50 6f 6c 69 63 79 20 74 6f 20 74 72 61 63 6b 20 70 72 65 76 69 6f 75 73 6c 79 20 65 73 74 | s.Policy.to.track.previously.est |
| 6e5a0 | 61 62 6c 69 73 68 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 50 6f 6c 69 63 79 2d 42 61 73 | ablished.connections..Policy-Bas |
| 6e5c0 | 65 64 20 52 6f 75 74 69 6e 67 20 77 69 74 68 20 6d 75 6c 74 69 70 6c 65 20 49 53 50 20 75 70 6c | ed.Routing.with.multiple.ISP.upl |
| 6e5e0 | 69 6e 6b 73 20 28 73 6f 75 72 63 65 20 2e 2f 64 72 61 77 2e 69 6f 2f 70 62 72 5f 65 78 61 6d 70 | inks.(source../draw.io/pbr_examp |
| 6e600 | 6c 65 5f 31 2e 64 72 61 77 69 6f 29 00 50 6f 72 74 20 47 72 6f 75 70 73 00 50 6f 72 74 20 4d 69 | le_1.drawio).Port.Groups.Port.Mi |
| 6e620 | 72 72 6f 72 20 28 53 50 41 4e 29 00 50 6f 72 74 20 63 61 6c 63 75 6c 61 74 69 6f 6e 00 50 6f 72 | rror.(SPAN).Port.calculation.Por |
| 6e640 | 74 20 66 6f 72 20 44 79 6e 61 6d 69 63 20 41 75 74 68 6f 72 69 7a 61 74 69 6f 6e 20 45 78 74 65 | t.for.Dynamic.Authorization.Exte |
| 6e660 | 6e 73 69 6f 6e 20 73 65 72 76 65 72 20 28 44 4d 2f 43 6f 41 29 00 50 6f 72 74 20 67 72 6f 75 70 | nsion.server.(DM/CoA).Port.group |
| 6e680 | 73 20 61 72 65 20 75 73 65 66 75 6c 20 77 68 65 6e 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 72 | s.are.useful.when.you.need.to.cr |
| 6e6a0 | 65 61 74 65 20 72 75 6c 65 73 20 74 68 61 74 20 61 70 70 6c 79 20 74 6f 20 73 70 65 63 69 66 69 | eate.rules.that.apply.to.specifi |
| 6e6c0 | 63 20 70 6f 72 74 73 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 69 66 20 79 6f 75 20 77 61 6e | c.ports..For.example,.if.you.wan |
| 6e6e0 | 74 20 74 6f 20 63 72 65 61 74 65 20 61 20 72 75 6c 65 20 74 68 61 74 20 6d 6f 6e 69 74 6f 72 73 | t.to.create.a.rule.that.monitors |
| 6e700 | 20 74 72 61 66 66 69 63 20 64 69 72 65 63 74 65 64 20 74 6f 20 61 20 73 70 65 63 69 66 69 63 20 | .traffic.directed.to.a.specific. |
| 6e720 | 70 6f 72 74 20 6f 72 20 67 72 6f 75 70 20 6f 66 20 70 6f 72 74 73 2c 20 79 6f 75 20 63 61 6e 20 | port.or.group.of.ports,.you.can. |
| 6e740 | 75 73 65 20 74 68 65 20 67 72 6f 75 70 20 6e 61 6d 65 20 69 6e 73 74 65 61 64 20 6f 66 20 74 68 | use.the.group.name.instead.of.th |
| 6e760 | 65 20 61 63 74 75 61 6c 20 70 6f 72 74 2e 20 54 68 69 73 20 61 6c 73 6f 20 73 69 6d 70 6c 69 66 | e.actual.port..This.also.simplif |
| 6e780 | 69 65 73 20 72 75 6c 65 20 6d 61 6e 61 67 65 6d 65 6e 74 20 61 6e 64 20 6d 61 6b 65 73 20 74 68 | ies.rule.management.and.makes.th |
| 6e7a0 | 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 72 65 20 66 6c 65 78 69 62 6c 65 2e 00 50 | e.configuration.more.flexible..P |
| 6e7c0 | 6f 72 74 20 6b 6e 6f 63 6b 69 6e 67 20 65 78 61 6d 70 6c 65 00 50 6f 72 74 20 6e 61 6d 65 20 61 | ort.knocking.example.Port.name.a |
| 6e7e0 | 6e 64 20 64 65 73 63 72 69 70 74 69 6f 6e 00 50 6f 72 74 20 6e 75 6d 62 65 72 20 75 73 65 64 20 | nd.description.Port.number.used. |
| 6e800 | 62 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 2c 20 64 65 66 61 75 6c 74 20 69 73 20 60 60 39 32 37 33 | by.connection,.default.is.``9273 |
| 6e820 | 60 60 00 50 6f 72 74 20 6e 75 6d 62 65 72 20 75 73 65 64 20 62 79 20 63 6f 6e 6e 65 63 74 69 6f | ``.Port.number.used.by.connectio |
| 6e840 | 6e 2e 00 50 6f 72 74 20 74 6f 20 6c 69 73 74 65 6e 20 66 6f 72 20 48 54 54 50 53 20 72 65 71 75 | n..Port.to.listen.for.HTTPS.requ |
| 6e860 | 65 73 74 73 3b 20 64 65 66 61 75 6c 74 20 34 34 33 00 50 6f 72 74 69 6f 6e 73 20 6f 66 20 74 68 | ests;.default.443.Portions.of.th |
| 6e880 | 65 20 6e 65 74 77 6f 72 6b 20 77 68 69 63 68 20 61 72 65 20 56 4c 41 4e 2d 61 77 61 72 65 20 28 | e.network.which.are.VLAN-aware.( |
| 6e8a0 | 69 2e 65 2e 2c 20 49 45 45 45 20 38 30 32 2e 31 71 5f 20 63 6f 6e 66 6f 72 6d 61 6e 74 29 20 63 | i.e.,.IEEE.802.1q_.conformant).c |
| 6e8c0 | 61 6e 20 69 6e 63 6c 75 64 65 20 56 4c 41 4e 20 74 61 67 73 2e 20 57 68 65 6e 20 61 20 66 72 61 | an.include.VLAN.tags..When.a.fra |
| 6e8e0 | 6d 65 20 65 6e 74 65 72 73 20 74 68 65 20 56 4c 41 4e 2d 61 77 61 72 65 20 70 6f 72 74 69 6f 6e | me.enters.the.VLAN-aware.portion |
| 6e900 | 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b 2c 20 61 20 74 61 67 20 69 73 20 61 64 64 65 64 20 | .of.the.network,.a.tag.is.added. |
| 6e920 | 74 6f 20 72 65 70 72 65 73 65 6e 74 20 74 68 65 20 56 4c 41 4e 20 6d 65 6d 62 65 72 73 68 69 70 | to.represent.the.VLAN.membership |
| 6e940 | 2e 20 45 61 63 68 20 66 72 61 6d 65 20 6d 75 73 74 20 62 65 20 64 69 73 74 69 6e 67 75 69 73 68 | ..Each.frame.must.be.distinguish |
| 6e960 | 61 62 6c 65 20 61 73 20 62 65 69 6e 67 20 77 69 74 68 69 6e 20 65 78 61 63 74 6c 79 20 6f 6e 65 | able.as.being.within.exactly.one |
| 6e980 | 20 56 4c 41 4e 2e 20 41 20 66 72 61 6d 65 20 69 6e 20 74 68 65 20 56 4c 41 4e 2d 61 77 61 72 65 | .VLAN..A.frame.in.the.VLAN-aware |
| 6e9a0 | 20 70 6f 72 74 69 6f 6e 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 74 68 61 74 20 64 6f 65 | .portion.of.the.network.that.doe |
| 6e9c0 | 73 20 6e 6f 74 20 63 6f 6e 74 61 69 6e 20 61 20 56 4c 41 4e 20 74 61 67 20 69 73 20 61 73 73 75 | s.not.contain.a.VLAN.tag.is.assu |
| 6e9e0 | 6d 65 64 20 74 6f 20 62 65 20 66 6c 6f 77 69 6e 67 20 6f 6e 20 74 68 65 20 6e 61 74 69 76 65 20 | med.to.be.flowing.on.the.native. |
| 6ea00 | 56 4c 41 4e 2e 00 50 72 65 2d 73 68 61 72 65 64 20 6b 65 79 73 00 50 72 65 63 65 64 65 6e 63 65 | VLAN..Pre-shared.keys.Precedence |
| 6ea20 | 00 50 72 65 65 6d 70 74 69 6f 6e 00 50 72 65 66 65 72 20 61 20 73 70 65 63 69 66 69 63 20 72 6f | .Preemption.Prefer.a.specific.ro |
| 6ea40 | 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 72 6f 75 74 65 73 20 6f 76 65 72 20 61 6e 6f 74 68 | uting.protocol.routes.over.anoth |
| 6ea60 | 65 72 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 74 | er.routing.protocol.running.on.t |
| 6ea80 | 68 65 20 73 61 6d 65 20 72 6f 75 74 65 72 2e 00 50 72 65 66 65 72 20 68 69 67 68 65 72 20 6c 6f | he.same.router..Prefer.higher.lo |
| 6eaa0 | 63 61 6c 20 70 72 65 66 65 72 65 6e 63 65 20 72 6f 75 74 65 73 20 74 6f 20 6c 6f 77 65 72 2e 00 | cal.preference.routes.to.lower.. |
| 6eac0 | 50 72 65 66 65 72 20 68 69 67 68 65 72 20 6c 6f 63 61 6c 20 77 65 69 67 68 74 20 72 6f 75 74 65 | Prefer.higher.local.weight.route |
| 6eae0 | 73 20 74 6f 20 6c 6f 77 65 72 20 72 6f 75 74 65 73 2e 00 50 72 65 66 65 72 20 6c 6f 63 61 6c 20 | s.to.lower.routes..Prefer.local. |
| 6eb00 | 72 6f 75 74 65 73 20 28 73 74 61 74 69 63 73 2c 20 61 67 67 72 65 67 61 74 65 73 2c 20 72 65 64 | routes.(statics,.aggregates,.red |
| 6eb20 | 69 73 74 72 69 62 75 74 65 64 29 20 74 6f 20 72 65 63 65 69 76 65 64 20 72 6f 75 74 65 73 2e 00 | istributed).to.received.routes.. |
| 6eb40 | 50 72 65 66 65 72 20 73 68 6f 72 74 65 73 74 20 68 6f 70 2d 63 6f 75 6e 74 20 41 53 5f 50 41 54 | Prefer.shortest.hop-count.AS_PAT |
| 6eb60 | 48 73 2e 00 50 72 65 66 65 72 20 74 68 65 20 6c 6f 77 65 73 74 20 6f 72 69 67 69 6e 20 74 79 70 | Hs..Prefer.the.lowest.origin.typ |
| 6eb80 | 65 20 72 6f 75 74 65 2e 20 54 68 61 74 20 69 73 2c 20 70 72 65 66 65 72 20 49 47 50 20 6f 72 69 | e.route..That.is,.prefer.IGP.ori |
| 6eba0 | 67 69 6e 20 72 6f 75 74 65 73 20 74 6f 20 45 47 50 2c 20 74 6f 20 49 6e 63 6f 6d 70 6c 65 74 65 | gin.routes.to.EGP,.to.Incomplete |
| 6ebc0 | 20 72 6f 75 74 65 73 2e 00 50 72 65 66 65 72 20 74 68 65 20 72 6f 75 74 65 20 72 65 63 65 69 76 | .routes..Prefer.the.route.receiv |
| 6ebe0 | 65 64 20 66 72 6f 6d 20 61 6e 20 65 78 74 65 72 6e 61 6c 2c 20 65 42 47 50 20 70 65 65 72 20 6f | ed.from.an.external,.eBGP.peer.o |
| 6ec00 | 76 65 72 20 72 6f 75 74 65 73 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 6f 74 68 65 72 20 74 | ver.routes.received.from.other.t |
| 6ec20 | 79 70 65 73 20 6f 66 20 70 65 65 72 73 2e 00 50 72 65 66 65 72 20 74 68 65 20 72 6f 75 74 65 20 | ypes.of.peers..Prefer.the.route. |
| 6ec40 | 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 74 68 65 20 70 65 65 72 20 77 69 74 68 20 74 68 65 20 | received.from.the.peer.with.the. |
| 6ec60 | 68 69 67 68 65 72 20 74 72 61 6e 73 70 6f 72 74 20 6c 61 79 65 72 20 61 64 64 72 65 73 73 2c 20 | higher.transport.layer.address,. |
| 6ec80 | 61 73 20 61 20 6c 61 73 74 2d 72 65 73 6f 72 74 20 74 69 65 2d 62 72 65 61 6b 65 72 2e 00 50 72 | as.a.last-resort.tie-breaker..Pr |
| 6eca0 | 65 66 65 72 20 74 68 65 20 72 6f 75 74 65 20 77 69 74 68 20 74 68 65 20 6c 6f 77 65 72 20 49 47 | efer.the.route.with.the.lower.IG |
| 6ecc0 | 50 20 63 6f 73 74 2e 00 50 72 65 66 65 72 20 74 68 65 20 72 6f 75 74 65 20 77 69 74 68 20 74 68 | P.cost..Prefer.the.route.with.th |
| 6ece0 | 65 20 6c 6f 77 65 73 74 20 60 72 6f 75 74 65 72 2d 49 44 60 2e 20 49 66 20 74 68 65 20 72 6f 75 | e.lowest.`router-ID`..If.the.rou |
| 6ed00 | 74 65 20 68 61 73 20 61 6e 20 60 4f 52 49 47 49 4e 41 54 4f 52 5f 49 44 60 20 61 74 74 72 69 62 | te.has.an.`ORIGINATOR_ID`.attrib |
| 6ed20 | 75 74 65 2c 20 74 68 72 6f 75 67 68 20 69 42 47 50 20 72 65 66 6c 65 63 74 69 6f 6e 2c 20 74 68 | ute,.through.iBGP.reflection,.th |
| 6ed40 | 65 6e 20 74 68 61 74 20 72 6f 75 74 65 72 20 49 44 20 69 73 20 75 73 65 64 2c 20 6f 74 68 65 72 | en.that.router.ID.is.used,.other |
| 6ed60 | 77 69 73 65 20 74 68 65 20 60 72 6f 75 74 65 72 2d 49 44 60 20 6f 66 20 74 68 65 20 70 65 65 72 | wise.the.`router-ID`.of.the.peer |
| 6ed80 | 20 74 68 65 20 72 6f 75 74 65 20 77 61 73 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 69 73 20 | .the.route.was.received.from.is. |
| 6eda0 | 75 73 65 64 2e 00 50 72 65 66 65 72 65 6e 63 65 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 | used..Preference.associated.with |
| 6edc0 | 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 72 00 50 72 65 66 69 78 20 43 6f 6e 76 65 | .the.default.router.Prefix.Conve |
| 6ede0 | 72 73 69 6f 6e 00 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 00 50 72 65 66 69 78 20 4c | rsion.Prefix.Delegation.Prefix.L |
| 6ee00 | 69 73 74 20 50 6f 6c 69 63 79 00 50 72 65 66 69 78 20 4c 69 73 74 73 00 50 72 65 66 69 78 20 63 | ist.Policy.Prefix.Lists.Prefix.c |
| 6ee20 | 61 6e 20 6e 6f 74 20 62 65 20 75 73 65 64 20 66 6f 72 20 6f 6e 2d 6c 69 6e 6b 20 64 65 74 65 72 | an.not.be.used.for.on-link.deter |
| 6ee40 | 6d 69 6e 61 74 69 6f 6e 00 50 72 65 66 69 78 20 63 61 6e 20 6e 6f 74 20 62 65 20 75 73 65 64 20 | mination.Prefix.can.not.be.used. |
| 6ee60 | 66 6f 72 20 73 74 61 74 65 6c 65 73 73 20 61 64 64 72 65 73 73 20 61 75 74 6f 2d 63 6f 6e 66 69 | for.stateless.address.auto-confi |
| 6ee80 | 67 75 72 61 74 69 6f 6e 00 50 72 65 66 69 78 20 66 69 6c 74 65 72 69 6e 67 20 63 61 6e 20 62 65 | guration.Prefix.filtering.can.be |
| 6eea0 | 20 64 6f 6e 65 20 75 73 69 6e 67 20 70 72 65 66 69 78 2d 6c 69 73 74 20 61 6e 64 20 70 72 65 66 | .done.using.prefix-list.and.pref |
| 6eec0 | 69 78 2d 6c 69 73 74 36 2e 00 50 72 65 66 69 78 20 6c 65 6e 67 74 68 20 69 6e 20 69 6e 74 65 72 | ix-list6..Prefix.length.in.inter |
| 6eee0 | 66 61 63 65 20 6d 75 73 74 20 62 65 20 65 71 75 61 6c 20 6f 72 20 62 69 67 67 65 72 20 28 69 2e | face.must.be.equal.or.bigger.(i. |
| 6ef00 | 65 2e 20 73 6d 61 6c 6c 65 72 20 6e 65 74 77 6f 72 6b 29 20 74 68 61 6e 20 70 72 65 66 69 78 20 | e..smaller.network).than.prefix. |
| 6ef20 | 6c 65 6e 67 74 68 20 69 6e 20 6e 65 74 77 6f 72 6b 20 73 74 61 74 65 6d 65 6e 74 2e 20 46 6f 72 | length.in.network.statement..For |
| 6ef40 | 20 65 78 61 6d 70 6c 65 20 73 74 61 74 65 6d 65 6e 74 20 61 62 6f 76 65 20 64 6f 65 73 6e 27 74 | .example.statement.above.doesn't |
| 6ef60 | 20 65 6e 61 62 6c 65 20 6f 73 70 66 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 61 | .enable.ospf.on.interface.with.a |
| 6ef80 | 64 64 72 65 73 73 20 31 39 32 2e 31 36 38 2e 31 2e 31 2f 32 33 2c 20 62 75 74 20 69 74 20 64 6f | ddress.192.168.1.1/23,.but.it.do |
| 6efa0 | 65 73 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 61 64 64 72 65 73 73 20 31 39 32 | es.on.interface.with.address.192 |
| 6efc0 | 2e 31 36 38 2e 31 2e 31 32 39 2f 32 35 2e 00 50 72 65 66 69 78 20 6c 69 73 74 73 20 70 72 6f 76 | .168.1.129/25..Prefix.lists.prov |
| 6efe0 | 69 64 65 73 20 74 68 65 20 6d 6f 73 74 20 70 6f 77 65 72 66 75 6c 20 70 72 65 66 69 78 20 62 61 | ides.the.most.powerful.prefix.ba |
| 6f000 | 73 65 64 20 66 69 6c 74 65 72 69 6e 67 20 6d 65 63 68 61 6e 69 73 6d 2e 20 49 6e 20 61 64 64 69 | sed.filtering.mechanism..In.addi |
| 6f020 | 74 69 6f 6e 20 74 6f 20 61 63 63 65 73 73 2d 6c 69 73 74 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 | tion.to.access-list.functionalit |
| 6f040 | 79 2c 20 69 70 20 70 72 65 66 69 78 2d 6c 69 73 74 20 68 61 73 20 70 72 65 66 69 78 20 6c 65 6e | y,.ip.prefix-list.has.prefix.len |
| 6f060 | 67 74 68 20 72 61 6e 67 65 20 73 70 65 63 69 66 69 63 61 74 69 6f 6e 2e 00 50 72 65 66 69 78 20 | gth.range.specification..Prefix. |
| 6f080 | 74 6f 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 2e 00 50 72 65 66 69 78 65 73 00 50 72 65 70 65 | to.match.against..Prefixes.Prepe |
| 6f0a0 | 6e 64 20 74 68 65 20 65 78 69 73 74 69 6e 67 20 6c 61 73 74 20 41 53 20 6e 75 6d 62 65 72 20 28 | nd.the.existing.last.AS.number.( |
| 6f0c0 | 74 68 65 20 6c 65 66 74 6d 6f 73 74 20 41 53 4e 29 20 74 6f 20 74 68 65 20 41 53 5f 50 41 54 48 | the.leftmost.ASN).to.the.AS_PATH |
| 6f0e0 | 2e 00 50 72 65 70 65 6e 64 20 74 68 65 20 67 69 76 65 6e 20 73 74 72 69 6e 67 20 6f 66 20 41 53 | ..Prepend.the.given.string.of.AS |
| 6f100 | 20 6e 75 6d 62 65 72 73 20 74 6f 20 74 68 65 20 41 53 5f 50 41 54 48 20 6f 66 20 74 68 65 20 42 | .numbers.to.the.AS_PATH.of.the.B |
| 6f120 | 47 50 20 70 61 74 68 27 73 20 4e 4c 52 49 2e 00 50 72 69 6e 63 69 70 6c 65 20 6f 66 20 53 4e 4d | GP.path's.NLRI..Principle.of.SNM |
| 6f140 | 50 20 43 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 00 50 72 69 6e 74 20 61 20 73 75 6d 6d 61 72 79 20 | P.Communication.Print.a.summary. |
| 6f160 | 6f 66 20 6e 65 69 67 68 62 6f 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 66 6f 72 20 74 68 65 20 | of.neighbor.connections.for.the. |
| 6f180 | 73 70 65 63 69 66 69 65 64 20 41 46 49 2f 53 41 46 49 20 63 6f 6d 62 69 6e 61 74 69 6f 6e 2e 00 | specified.AFI/SAFI.combination.. |
| 6f1a0 | 50 72 69 6e 74 20 61 63 74 69 76 65 20 49 50 56 34 20 6f 72 20 49 50 56 36 20 72 6f 75 74 65 73 | Print.active.IPV4.or.IPV6.routes |
| 6f1c0 | 20 61 64 76 65 72 74 69 73 65 64 20 76 69 61 20 74 68 65 20 56 50 4e 20 53 41 46 49 2e 00 50 72 | .advertised.via.the.VPN.SAFI..Pr |
| 6f1e0 | 69 6e 74 20 6f 75 74 20 74 68 65 20 6c 69 73 74 20 6f 66 20 65 78 69 73 74 69 6e 67 20 63 72 79 | int.out.the.list.of.existing.cry |
| 6f200 | 70 74 6f 20 70 6f 6c 69 63 69 65 73 00 50 72 69 6e 74 20 6f 75 74 20 74 68 65 20 6c 69 73 74 20 | pto.policies.Print.out.the.list. |
| 6f220 | 6f 66 20 65 78 69 73 74 69 6e 67 20 69 6e 2d 6b 65 72 6e 65 6c 20 63 72 79 70 74 6f 20 73 74 61 | of.existing.in-kernel.crypto.sta |
| 6f240 | 74 65 00 50 72 69 6f 72 69 74 79 00 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 00 50 72 69 6f 72 | te.Priority.Priority.Queue.Prior |
| 6f260 | 69 74 79 20 51 75 65 75 65 2c 20 61 73 20 6f 74 68 65 72 20 6e 6f 6e 2d 73 68 61 70 69 6e 67 20 | ity.Queue,.as.other.non-shaping. |
| 6f280 | 70 6f 6c 69 63 69 65 73 2c 20 69 73 20 6f 6e 6c 79 20 75 73 65 66 75 6c 20 69 66 20 79 6f 75 72 | policies,.is.only.useful.if.your |
| 6f2a0 | 20 6f 75 74 67 6f 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 72 65 61 6c 6c 79 20 66 75 | .outgoing.interface.is.really.fu |
| 6f2c0 | 6c 6c 2e 20 49 66 20 69 74 20 69 73 20 6e 6f 74 2c 20 56 79 4f 53 20 77 69 6c 6c 20 6e 6f 74 20 | ll..If.it.is.not,.VyOS.will.not. |
| 6f2e0 | 6f 77 6e 20 74 68 65 20 71 75 65 75 65 20 61 6e 64 20 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 | own.the.queue.and.Priority.Queue |
| 6f300 | 20 77 69 6c 6c 20 68 61 76 65 20 6e 6f 20 65 66 66 65 63 74 2e 20 49 66 20 74 68 65 72 65 20 69 | .will.have.no.effect..If.there.i |
| 6f320 | 73 20 62 61 6e 64 77 69 64 74 68 20 61 76 61 69 6c 61 62 6c 65 20 6f 6e 20 74 68 65 20 70 68 79 | s.bandwidth.available.on.the.phy |
| 6f340 | 73 69 63 61 6c 20 6c 69 6e 6b 2c 20 79 6f 75 20 63 61 6e 20 65 6d 62 65 64 5f 20 50 72 69 6f 72 | sical.link,.you.can.embed_.Prior |
| 6f360 | 69 74 79 20 51 75 65 75 65 20 69 6e 74 6f 20 61 20 63 6c 61 73 73 66 75 6c 20 73 68 61 70 69 6e | ity.Queue.into.a.classful.shapin |
| 6f380 | 67 20 70 6f 6c 69 63 79 20 74 6f 20 6d 61 6b 65 20 73 75 72 65 20 69 74 20 6f 77 6e 73 20 74 68 | g.policy.to.make.sure.it.owns.th |
| 6f3a0 | 65 20 71 75 65 75 65 2e 20 49 6e 20 74 68 61 74 20 63 61 73 65 20 70 61 63 6b 65 74 73 20 63 61 | e.queue..In.that.case.packets.ca |
| 6f3c0 | 6e 20 62 65 20 70 72 69 6f 72 69 74 69 7a 65 64 20 62 61 73 65 64 20 6f 6e 20 44 53 43 50 2e 00 | n.be.prioritized.based.on.DSCP.. |
| 6f3e0 | 50 72 69 76 61 74 65 20 56 4c 41 4e 20 70 72 6f 78 79 20 61 72 70 2e 20 42 61 73 69 63 61 6c 6c | Private.VLAN.proxy.arp..Basicall |
| 6f400 | 79 20 61 6c 6c 6f 77 20 70 72 6f 78 79 20 61 72 70 20 72 65 70 6c 69 65 73 20 62 61 63 6b 20 74 | y.allow.proxy.arp.replies.back.t |
| 6f420 | 6f 20 74 68 65 20 73 61 6d 65 20 69 6e 74 65 72 66 61 63 65 20 28 66 72 6f 6d 20 77 68 69 63 68 | o.the.same.interface.(from.which |
| 6f440 | 20 74 68 65 20 41 52 50 20 72 65 71 75 65 73 74 2f 73 6f 6c 69 63 69 74 61 74 69 6f 6e 20 77 61 | .the.ARP.request/solicitation.wa |
| 6f460 | 73 20 72 65 63 65 69 76 65 64 29 2e 00 50 72 6f 66 69 6c 65 20 67 65 6e 65 72 61 74 69 6f 6e 20 | s.received)..Profile.generation. |
| 6f480 | 68 61 70 70 65 6e 73 20 66 72 6f 6d 20 74 68 65 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 6c 65 76 | happens.from.the.operational.lev |
| 6f4a0 | 65 6c 20 61 6e 64 20 69 73 20 61 73 20 73 69 6d 70 6c 65 20 61 73 20 69 73 73 75 69 6e 67 20 74 | el.and.is.as.simple.as.issuing.t |
| 6f4c0 | 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 72 65 61 74 65 20 61 | he.following.command.to.create.a |
| 6f4e0 | 20 70 72 6f 66 69 6c 65 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 49 4b 45 76 32 | .profile.to.connect.to.the.IKEv2 |
| 6f500 | 20 61 63 63 65 73 73 20 73 65 72 76 65 72 20 61 74 20 60 60 76 70 6e 2e 76 79 6f 73 2e 6e 65 74 | .access.server.at.``vpn.vyos.net |
| 6f520 | 60 60 20 77 69 74 68 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 74 68 | ``.with.the.configuration.for.th |
| 6f540 | 65 20 60 60 72 77 60 60 20 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 20 63 6f 6e 6e 65 63 74 69 6f | e.``rw``.remote-access.connectio |
| 6f560 | 6e 20 67 72 6f 75 70 2e 00 50 72 6f 6d 65 74 68 65 75 73 2d 63 6c 69 65 6e 74 00 50 72 6f 74 65 | n.group..Prometheus-client.Prote |
| 6f580 | 63 74 73 20 68 6f 73 74 20 66 72 6f 6d 20 62 72 75 74 65 2d 66 6f 72 63 65 20 61 74 74 61 63 6b | cts.host.from.brute-force.attack |
| 6f5a0 | 73 20 61 67 61 69 6e 73 74 20 53 53 48 2e 20 4c 6f 67 20 6d 65 73 73 61 67 65 73 20 61 72 65 20 | s.against.SSH..Log.messages.are. |
| 6f5c0 | 70 61 72 73 65 64 2c 20 6c 69 6e 65 2d 62 79 2d 6c 69 6e 65 2c 20 66 6f 72 20 72 65 63 6f 67 6e | parsed,.line-by-line,.for.recogn |
| 6f5e0 | 69 7a 65 64 20 70 61 74 74 65 72 6e 73 2e 20 49 66 20 61 6e 20 61 74 74 61 63 6b 2c 20 73 75 63 | ized.patterns..If.an.attack,.suc |
| 6f600 | 68 20 61 73 20 73 65 76 65 72 61 6c 20 6c 6f 67 69 6e 20 66 61 69 6c 75 72 65 73 20 77 69 74 68 | h.as.several.login.failures.with |
| 6f620 | 69 6e 20 61 20 66 65 77 20 73 65 63 6f 6e 64 73 2c 20 69 73 20 64 65 74 65 63 74 65 64 2c 20 74 | in.a.few.seconds,.is.detected,.t |
| 6f640 | 68 65 20 6f 66 66 65 6e 64 69 6e 67 20 49 50 20 69 73 20 62 6c 6f 63 6b 65 64 2e 20 4f 66 66 65 | he.offending.IP.is.blocked..Offe |
| 6f660 | 6e 64 65 72 73 20 61 72 65 20 75 6e 62 6c 6f 63 6b 65 64 20 61 66 74 65 72 20 61 20 73 65 74 20 | nders.are.unblocked.after.a.set. |
| 6f680 | 69 6e 74 65 72 76 61 6c 2e 00 50 72 6f 74 6f 63 6f 6c 20 66 6f 72 20 77 68 69 63 68 20 65 78 70 | interval..Protocol.for.which.exp |
| 6f6a0 | 65 63 74 20 65 6e 74 72 69 65 73 20 6e 65 65 64 20 74 6f 20 62 65 20 73 79 6e 63 68 72 6f 6e 69 | ect.entries.need.to.be.synchroni |
| 6f6c0 | 7a 65 64 2e 00 50 72 6f 74 6f 63 6f 6c 73 00 50 72 6f 74 6f 63 6f 6c 73 20 61 72 65 3a 20 74 63 | zed..Protocols.Protocols.are:.tc |
| 6f6e0 | 70 2c 20 73 63 74 70 2c 20 64 63 63 70 2c 20 75 64 70 2c 20 69 63 6d 70 20 61 6e 64 20 69 70 76 | p,.sctp,.dccp,.udp,.icmp.and.ipv |
| 6f700 | 36 2d 69 63 6d 70 2e 00 50 72 6f 76 69 64 65 20 54 46 54 50 20 73 65 72 76 65 72 20 6c 69 73 74 | 6-icmp..Provide.TFTP.server.list |
| 6f720 | 65 6e 69 6e 67 20 6f 6e 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 64 64 72 | ening.on.both.IPv4.and.IPv6.addr |
| 6f740 | 65 73 73 65 73 20 60 60 31 39 32 2e 30 2e 32 2e 31 60 60 20 61 6e 64 20 60 60 32 30 30 31 3a 64 | esses.``192.0.2.1``.and.``2001:d |
| 6f760 | 62 38 3a 3a 31 60 60 20 73 65 72 76 69 6e 67 20 74 68 65 20 63 6f 6e 74 65 6e 74 20 66 72 6f 6d | b8::1``.serving.the.content.from |
| 6f780 | 20 60 60 2f 63 6f 6e 66 69 67 2f 74 66 74 70 62 6f 6f 74 60 60 2e 20 55 70 6c 6f 61 64 69 6e 67 | .``/config/tftpboot``..Uploading |
| 6f7a0 | 20 76 69 61 20 54 46 54 50 20 74 6f 20 74 68 69 73 20 73 65 72 76 65 72 20 69 73 20 64 69 73 61 | .via.TFTP.to.this.server.is.disa |
| 6f7c0 | 62 6c 65 64 2e 00 50 72 6f 76 69 64 65 20 61 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 | bled..Provide.a.IPv4.or.IPv6.add |
| 6f7e0 | 72 65 73 73 20 67 72 6f 75 70 20 64 65 73 63 72 69 70 74 69 6f 6e 00 50 72 6f 76 69 64 65 20 61 | ress.group.description.Provide.a |
| 6f800 | 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 20 67 72 6f 75 70 20 64 65 73 63 | .IPv4.or.IPv6.network.group.desc |
| 6f820 | 72 69 70 74 69 6f 6e 2e 00 50 72 6f 76 69 64 65 20 61 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 | ription..Provide.a.description.f |
| 6f840 | 6f 72 20 65 61 63 68 20 72 75 6c 65 2e 00 50 72 6f 76 69 64 65 20 61 20 64 65 73 63 72 69 70 74 | or.each.rule..Provide.a.descript |
| 6f860 | 69 6f 6e 20 74 6f 20 74 68 65 20 66 6c 6f 77 20 74 61 62 6c 65 2e 00 50 72 6f 76 69 64 65 20 61 | ion.to.the.flow.table..Provide.a |
| 6f880 | 20 64 6f 6d 61 69 6e 20 67 72 6f 75 70 20 64 65 73 63 72 69 70 74 69 6f 6e 2e 00 50 72 6f 76 69 | .domain.group.description..Provi |
| 6f8a0 | 64 65 20 61 20 6d 61 63 20 67 72 6f 75 70 20 64 65 73 63 72 69 70 74 69 6f 6e 2e 00 50 72 6f 76 | de.a.mac.group.description..Prov |
| 6f8c0 | 69 64 65 20 61 20 70 6f 72 74 20 67 72 6f 75 70 20 64 65 73 63 72 69 70 74 69 6f 6e 2e 00 50 72 | ide.a.port.group.description..Pr |
| 6f8e0 | 6f 76 69 64 65 20 61 20 72 75 6c 65 2d 73 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 74 6f 20 | ovide.a.rule-set.description.to. |
| 6f900 | 61 20 63 75 73 74 6f 6d 20 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 2e 00 50 72 6f 76 69 64 65 | a.custom.firewall.chain..Provide |
| 6f920 | 20 61 20 72 75 6c 65 2d 73 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 2e 00 50 72 6f 76 69 64 65 | .a.rule-set.description..Provide |
| 6f940 | 20 61 6e 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 20 67 72 6f 75 70 20 64 | .an.IPv4.or.IPv6.network.group.d |
| 6f960 | 65 73 63 72 69 70 74 69 6f 6e 2e 00 50 72 6f 76 69 64 65 20 61 6e 20 69 6e 74 65 72 66 61 63 65 | escription..Provide.an.interface |
| 6f980 | 20 67 72 6f 75 70 20 64 65 73 63 72 69 70 74 69 6f 6e 00 50 72 6f 76 69 64 65 72 20 2d 20 43 75 | .group.description.Provider.-.Cu |
| 6f9a0 | 73 74 6f 6d 65 72 00 50 72 6f 76 69 64 65 73 20 61 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 | stomer.Provides.a.backbone.area. |
| 6f9c0 | 63 6f 68 65 72 65 6e 63 65 20 62 79 20 76 69 72 74 75 61 6c 20 6c 69 6e 6b 20 65 73 74 61 62 6c | coherence.by.virtual.link.establ |
| 6f9e0 | 69 73 68 6d 65 6e 74 2e 00 50 72 6f 76 69 64 65 73 20 61 20 70 65 72 2d 64 65 76 69 63 65 20 63 | ishment..Provides.a.per-device.c |
| 6fa00 | 6f 6e 74 72 6f 6c 20 74 6f 20 65 6e 61 62 6c 65 2f 64 69 73 61 62 6c 65 20 74 68 65 20 74 68 72 | ontrol.to.enable/disable.the.thr |
| 6fa20 | 65 61 64 65 64 20 6d 6f 64 65 20 66 6f 72 20 61 6c 6c 20 74 68 65 20 4e 41 50 49 20 69 6e 73 74 | eaded.mode.for.all.the.NAPI.inst |
| 6fa40 | 61 6e 63 65 73 20 6f 66 20 74 68 65 20 67 69 76 65 6e 20 6e 65 74 77 6f 72 6b 20 64 65 76 69 63 | ances.of.the.given.network.devic |
| 6fa60 | 65 2c 20 77 69 74 68 6f 75 74 20 74 68 65 20 6e 65 65 64 20 66 6f 72 20 61 20 64 65 76 69 63 65 | e,.without.the.need.for.a.device |
| 6fa80 | 20 75 70 2f 64 6f 77 6e 2e 00 50 72 6f 78 79 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d | .up/down..Proxy.authentication.m |
| 6faa0 | 65 74 68 6f 64 2c 20 63 75 72 72 65 6e 74 6c 79 20 6f 6e 6c 79 20 4c 44 41 50 20 69 73 20 73 75 | ethod,.currently.only.LDAP.is.su |
| 6fac0 | 70 70 6f 72 74 65 64 2e 00 50 73 65 75 64 6f 20 45 74 68 65 72 6e 65 74 2f 4d 41 43 56 4c 41 4e | pported..Pseudo.Ethernet/MACVLAN |
| 6fae0 | 20 6f 70 74 69 6f 6e 73 00 50 73 65 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 | .options.Pseudo-Ethernet.interfa |
| 6fb00 | 63 65 73 20 63 61 6e 20 6e 6f 74 20 62 65 20 72 65 61 63 68 65 64 20 66 72 6f 6d 20 79 6f 75 72 | ces.can.not.be.reached.from.your |
| 6fb20 | 20 69 6e 74 65 72 6e 61 6c 20 68 6f 73 74 2e 20 54 68 69 73 20 6d 65 61 6e 73 20 74 68 61 74 20 | .internal.host..This.means.that. |
| 6fb40 | 79 6f 75 20 63 61 6e 20 6e 6f 74 20 74 72 79 20 74 6f 20 70 69 6e 67 20 61 20 50 73 65 75 64 6f | you.can.not.try.to.ping.a.Pseudo |
| 6fb60 | 2d 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 20 66 72 6f 6d 20 74 68 65 20 68 6f 73 | -Ethernet.interface.from.the.hos |
| 6fb80 | 74 20 73 79 73 74 65 6d 20 6f 6e 20 77 68 69 63 68 20 69 74 20 69 73 20 64 65 66 69 6e 65 64 2e | t.system.on.which.it.is.defined. |
| 6fba0 | 20 54 68 65 20 70 69 6e 67 20 77 69 6c 6c 20 62 65 20 6c 6f 73 74 2e 00 50 73 65 75 64 6f 2d 45 | .The.ping.will.be.lost..Pseudo-E |
| 6fbc0 | 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 6d 61 79 20 6e 6f 74 20 77 6f 72 6b 20 | thernet.interfaces.may.not.work. |
| 6fbe0 | 69 6e 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 73 20 77 68 69 63 68 20 65 78 70 65 63 74 20 61 20 3a | in.environments.which.expect.a.: |
| 6fc00 | 61 62 62 72 3a 60 4e 49 43 20 28 4e 65 74 77 6f 72 6b 20 49 6e 74 65 72 66 61 63 65 20 43 61 72 | abbr:`NIC.(Network.Interface.Car |
| 6fc20 | 64 29 60 20 74 6f 20 6f 6e 6c 79 20 68 61 76 65 20 61 20 73 69 6e 67 6c 65 20 61 64 64 72 65 73 | d)`.to.only.have.a.single.addres |
| 6fc40 | 73 2e 20 54 68 69 73 20 61 70 70 6c 69 65 73 20 74 6f 3a 20 2d 20 56 4d 77 61 72 65 20 6d 61 63 | s..This.applies.to:.-.VMware.mac |
| 6fc60 | 68 69 6e 65 73 20 75 73 69 6e 67 20 64 65 66 61 75 6c 74 20 73 65 74 74 69 6e 67 73 20 2d 20 4e | hines.using.default.settings.-.N |
| 6fc80 | 65 74 77 6f 72 6b 20 73 77 69 74 63 68 65 73 20 77 69 74 68 20 73 65 63 75 72 69 74 79 20 73 65 | etwork.switches.with.security.se |
| 6fca0 | 74 74 69 6e 67 73 20 61 6c 6c 6f 77 69 6e 67 20 6f 6e 6c 79 20 61 20 73 69 6e 67 6c 65 20 4d 41 | ttings.allowing.only.a.single.MA |
| 6fcc0 | 43 20 61 64 64 72 65 73 73 20 2d 20 78 44 53 4c 20 6d 6f 64 65 6d 73 20 74 68 61 74 20 74 72 79 | C.address.-.xDSL.modems.that.try |
| 6fce0 | 20 74 6f 20 6c 65 61 72 6e 20 74 68 65 20 4d 41 43 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 | .to.learn.the.MAC.address.of.the |
| 6fd00 | 20 4e 49 43 00 50 73 65 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 6f 72 20 4d 41 43 56 4c 41 4e 20 | .NIC.Pseudo-Ethernet.or.MACVLAN. |
| 6fd20 | 69 6e 74 65 72 66 61 63 65 73 20 63 61 6e 20 62 65 20 73 65 65 6e 20 61 73 20 73 75 62 69 6e 74 | interfaces.can.be.seen.as.subint |
| 6fd40 | 65 72 66 61 63 65 73 20 74 6f 20 72 65 67 75 6c 61 72 20 65 74 68 65 72 6e 65 74 20 69 6e 74 65 | erfaces.to.regular.ethernet.inte |
| 6fd60 | 72 66 61 63 65 73 2e 20 45 61 63 68 20 61 6e 64 20 65 76 65 72 79 20 73 75 62 69 6e 74 65 72 66 | rfaces..Each.and.every.subinterf |
| 6fd80 | 61 63 65 20 69 73 20 63 72 65 61 74 65 64 20 61 20 64 69 66 66 65 72 65 6e 74 20 6d 65 64 69 61 | ace.is.created.a.different.media |
| 6fda0 | 20 61 63 63 65 73 73 20 63 6f 6e 74 72 6f 6c 20 28 4d 41 43 29 20 61 64 64 72 65 73 73 2c 20 66 | .access.control.(MAC).address,.f |
| 6fdc0 | 6f 72 20 61 20 73 69 6e 67 6c 65 20 70 68 79 73 69 63 61 6c 20 45 74 68 65 72 6e 65 74 20 70 6f | or.a.single.physical.Ethernet.po |
| 6fde0 | 72 74 2e 20 50 73 65 75 64 6f 2d 20 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 | rt..Pseudo-.Ethernet.interfaces. |
| 6fe00 | 68 61 76 65 20 6d 6f 73 74 20 6f 66 20 74 68 65 69 72 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 69 | have.most.of.their.application.i |
| 6fe20 | 6e 20 76 69 72 74 75 61 6c 69 7a 65 64 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 73 2c 00 50 75 62 6c | n.virtualized.environments,.Publ |
| 6fe40 | 69 73 68 20 61 20 70 6f 72 74 20 66 6f 72 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 2e 00 50 75 | ish.a.port.for.the.container..Pu |
| 6fe60 | 6c 6c 20 61 20 6e 65 77 20 69 6d 61 67 65 20 66 6f 72 20 63 6f 6e 74 61 69 6e 65 72 00 51 69 6e | ll.a.new.image.for.container.Qin |
| 6fe80 | 51 20 28 38 30 32 2e 31 61 64 29 00 51 6f 53 00 51 75 65 75 65 20 73 69 7a 65 20 66 6f 72 20 6c | Q.(802.1ad).QoS.Queue.size.for.l |
| 6fea0 | 69 73 74 65 6e 69 6e 67 20 74 6f 20 6c 6f 63 61 6c 20 63 6f 6e 6e 74 72 61 63 6b 20 65 76 65 6e | istening.to.local.conntrack.even |
| 6fec0 | 74 73 20 69 6e 20 4d 42 2e 00 51 75 65 75 65 20 73 69 7a 65 20 66 6f 72 20 73 79 6e 63 69 6e 67 | ts.in.MB..Queue.size.for.syncing |
| 6fee0 | 20 63 6f 6e 6e 74 72 61 63 6b 20 65 6e 74 72 69 65 73 20 69 6e 20 4d 42 2e 00 51 75 6f 74 65 73 | .conntrack.entries.in.MB..Quotes |
| 6ff00 | 20 63 61 6e 20 62 65 20 75 73 65 64 20 69 6e 73 69 64 65 20 70 61 72 61 6d 65 74 65 72 20 76 61 | .can.be.used.inside.parameter.va |
| 6ff20 | 6c 75 65 73 20 62 79 20 72 65 70 6c 61 63 69 6e 67 20 61 6c 6c 20 71 75 6f 74 65 20 63 68 61 72 | lues.by.replacing.all.quote.char |
| 6ff40 | 61 63 74 65 72 73 20 77 69 74 68 20 74 68 65 20 73 74 72 69 6e 67 20 60 60 26 71 75 6f 74 3b 60 | acters.with.the.string.``"` |
| 6ff60 | 60 2e 20 54 68 65 79 20 77 69 6c 6c 20 62 65 20 72 65 70 6c 61 63 65 64 20 77 69 74 68 20 6c 69 | `..They.will.be.replaced.with.li |
| 6ff80 | 74 65 72 61 6c 20 71 75 6f 74 65 20 63 68 61 72 61 63 74 65 72 73 20 77 68 65 6e 20 67 65 6e 65 | teral.quote.characters.when.gene |
| 6ffa0 | 72 61 74 69 6e 67 20 64 68 63 70 64 2e 63 6f 6e 66 2e 00 52 31 20 68 61 73 20 31 39 32 2e 30 2e | rating.dhcpd.conf..R1.has.192.0. |
| 6ffc0 | 32 2e 31 2f 32 34 20 26 20 32 30 30 31 3a 64 62 38 3a 3a 31 2f 36 34 00 52 31 20 69 73 20 6d 61 | 2.1/24.&.2001:db8::1/64.R1.is.ma |
| 6ffe0 | 6e 61 67 65 64 20 74 68 72 6f 75 67 68 20 61 6e 20 6f 75 74 2d 6f 66 2d 62 61 6e 64 20 6e 65 74 | naged.through.an.out-of-band.net |
| 70000 | 77 6f 72 6b 20 74 68 61 74 20 72 65 73 69 64 65 73 20 69 6e 20 56 52 46 20 60 60 6d 67 6d 74 60 | work.that.resides.in.VRF.``mgmt` |
| 70020 | 60 00 52 31 3a 00 52 32 20 68 61 73 20 31 39 32 2e 30 2e 32 2e 32 2f 32 34 20 26 20 32 30 30 31 | `.R1:.R2.has.192.0.2.2/24.&.2001 |
| 70040 | 3a 64 62 38 3a 3a 32 2f 36 34 00 52 32 3a 00 52 41 44 49 55 53 00 52 41 44 49 55 53 20 53 65 74 | :db8::2/64.R2:.RADIUS.RADIUS.Set |
| 70060 | 75 70 00 52 41 44 49 55 53 20 61 64 76 61 6e 63 65 64 20 66 65 61 74 75 72 65 73 00 52 41 44 49 | up.RADIUS.advanced.features.RADI |
| 70080 | 55 53 20 61 64 76 61 6e 63 65 64 20 6f 70 74 69 6f 6e 73 00 52 41 44 49 55 53 20 61 75 74 68 65 | US.advanced.options.RADIUS.authe |
| 700a0 | 6e 74 69 63 61 74 69 6f 6e 00 52 41 44 49 55 53 20 62 61 6e 64 77 69 64 74 68 20 73 68 61 70 69 | ntication.RADIUS.bandwidth.shapi |
| 700c0 | 6e 67 20 61 74 74 72 69 62 75 74 65 00 52 41 44 49 55 53 20 70 72 6f 76 69 64 65 73 20 74 68 65 | ng.attribute.RADIUS.provides.the |
| 700e0 | 20 49 50 20 61 64 64 72 65 73 73 65 73 20 69 6e 20 74 68 65 20 65 78 61 6d 70 6c 65 20 61 62 6f | .IP.addresses.in.the.example.abo |
| 70100 | 76 65 20 76 69 61 20 46 72 61 6d 65 64 2d 49 50 2d 41 64 64 72 65 73 73 2e 00 52 41 44 49 55 53 | ve.via.Framed-IP-Address..RADIUS |
| 70120 | 20 73 65 72 76 65 72 20 61 74 20 60 60 31 39 32 2e 31 36 38 2e 33 2e 31 30 60 60 20 77 69 74 68 | .server.at.``192.168.3.10``.with |
| 70140 | 20 73 68 61 72 65 64 2d 73 65 63 72 65 74 20 60 60 56 79 4f 53 50 61 73 73 77 6f 72 64 60 60 00 | .shared-secret.``VyOSPassword``. |
| 70160 | 52 41 44 49 55 53 20 73 65 72 76 65 72 73 20 63 6f 75 6c 64 20 62 65 20 68 61 72 64 65 6e 65 64 | RADIUS.servers.could.be.hardened |
| 70180 | 20 62 79 20 6f 6e 6c 79 20 61 6c 6c 6f 77 69 6e 67 20 63 65 72 74 61 69 6e 20 49 50 20 61 64 64 | .by.only.allowing.certain.IP.add |
| 701a0 | 72 65 73 73 65 73 20 74 6f 20 63 6f 6e 6e 65 63 74 2e 20 41 73 20 6f 66 20 74 68 69 73 20 74 68 | resses.to.connect..As.of.this.th |
| 701c0 | 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 65 61 63 68 20 52 41 44 49 55 53 20 | e.source.address.of.each.RADIUS. |
| 701e0 | 71 75 65 72 79 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 52 41 44 49 55 53 20 | query.can.be.configured..RADIUS. |
| 70200 | 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 00 52 45 51 20 32 3a 20 41 20 43 47 4e 20 6d 75 73 74 | source.address.REQ.2:.A.CGN.must |
| 70220 | 20 68 61 76 65 20 61 20 64 65 66 61 75 6c 74 20 22 49 50 20 61 64 64 72 65 73 73 20 70 6f 6f 6c | .have.a.default."IP.address.pool |
| 70240 | 69 6e 67 22 20 62 65 68 61 76 69 6f 72 20 6f 66 20 22 50 61 69 72 65 64 22 2e 20 43 47 4e 20 6d | ing".behavior.of."Paired"..CGN.m |
| 70260 | 75 73 74 20 75 73 65 20 74 68 65 20 73 61 6d 65 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 | ust.use.the.same.external.IP.add |
| 70280 | 72 65 73 73 20 6d 61 70 70 69 6e 67 20 66 6f 72 20 61 6c 6c 20 73 65 73 73 69 6f 6e 73 20 61 73 | ress.mapping.for.all.sessions.as |
| 702a0 | 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 20 73 61 6d 65 20 69 6e 74 65 72 6e 61 6c 20 | sociated.with.the.same.internal. |
| 702c0 | 49 50 20 61 64 64 72 65 73 73 2c 20 62 65 20 74 68 65 79 20 54 43 50 2c 20 55 44 50 2c 20 49 43 | IP.address,.be.they.TCP,.UDP,.IC |
| 702e0 | 4d 50 2c 20 73 6f 6d 65 74 68 69 6e 67 20 65 6c 73 65 2c 20 6f 72 20 61 20 6d 69 78 20 6f 66 20 | MP,.something.else,.or.a.mix.of. |
| 70300 | 64 69 66 66 65 72 65 6e 74 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 52 45 51 20 33 3a 20 54 68 65 20 | different.protocols..REQ.3:.The. |
| 70320 | 43 47 4e 20 66 75 6e 63 74 69 6f 6e 20 73 68 6f 75 6c 64 20 6e 6f 74 20 68 61 76 65 20 61 6e 79 | CGN.function.should.not.have.any |
| 70340 | 20 6c 69 6d 69 74 61 74 69 6f 6e 73 20 6f 6e 20 74 68 65 20 73 69 7a 65 20 6f 72 20 74 68 65 20 | .limitations.on.the.size.or.the. |
| 70360 | 63 6f 6e 74 69 67 75 69 74 79 20 6f 66 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 61 64 64 72 65 | contiguity.of.the.external.addre |
| 70380 | 73 73 20 70 6f 6f 6c 2e 00 52 45 51 20 34 3a 20 41 20 43 47 4e 20 6d 75 73 74 20 73 75 70 70 6f | ss.pool..REQ.4:.A.CGN.must.suppo |
| 703a0 | 72 74 20 6c 69 6d 69 74 69 6e 67 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 65 78 74 65 72 6e | rt.limiting.the.number.of.extern |
| 703c0 | 61 6c 20 70 6f 72 74 73 20 28 6f 72 2c 20 65 71 75 69 76 61 6c 65 6e 74 6c 79 2c 20 22 69 64 65 | al.ports.(or,.equivalently,."ide |
| 703e0 | 6e 74 69 66 69 65 72 73 22 20 66 6f 72 20 49 43 4d 50 29 20 74 68 61 74 20 61 72 65 20 61 73 73 | ntifiers".for.ICMP).that.are.ass |
| 70400 | 69 67 6e 65 64 20 70 65 72 20 73 75 62 73 63 72 69 62 65 72 00 52 45 53 54 00 52 46 43 20 33 37 | igned.per.subscriber.REST.RFC.37 |
| 70420 | 36 38 20 63 72 65 61 74 65 73 20 61 20 76 69 72 74 75 61 6c 20 69 6e 74 65 72 66 61 63 65 2e 20 | 68.creates.a.virtual.interface.. |
| 70440 | 49 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 61 70 70 6c 79 20 74 68 65 20 64 65 73 74 69 6e 61 | If.you.want.to.apply.the.destina |
| 70460 | 74 69 6f 6e 20 4e 41 54 20 72 75 6c 65 20 74 6f 20 74 68 65 20 74 72 61 66 66 69 63 20 73 65 6e | tion.NAT.rule.to.the.traffic.sen |
| 70480 | 74 20 74 6f 20 74 68 65 20 76 69 72 74 75 61 6c 20 4d 41 43 2c 20 73 65 74 20 74 68 65 20 63 72 | t.to.the.virtual.MAC,.set.the.cr |
| 704a0 | 65 61 74 65 64 20 76 69 72 74 75 61 6c 20 69 6e 74 65 72 66 61 63 65 20 61 73 20 60 69 6e 62 6f | eated.virtual.interface.as.`inbo |
| 704c0 | 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 60 2e 00 52 46 43 20 33 37 36 38 20 64 65 66 69 6e 65 73 | und-interface`..RFC.3768.defines |
| 704e0 | 20 61 20 76 69 72 74 75 61 6c 20 4d 41 43 20 61 64 64 72 65 73 73 20 74 6f 20 65 61 63 68 20 56 | .a.virtual.MAC.address.to.each.V |
| 70500 | 52 52 50 20 76 69 72 74 75 61 6c 20 72 6f 75 74 65 72 2e 20 54 68 69 73 20 76 69 72 74 75 61 6c | RRP.virtual.router..This.virtual |
| 70520 | 20 72 6f 75 74 65 72 20 4d 41 43 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 75 73 65 64 | .router.MAC.address.will.be.used |
| 70540 | 20 61 73 20 74 68 65 20 73 6f 75 72 63 65 20 69 6e 20 61 6c 6c 20 70 65 72 69 6f 64 69 63 20 56 | .as.the.source.in.all.periodic.V |
| 70560 | 52 52 50 20 6d 65 73 73 61 67 65 73 20 73 65 6e 74 20 62 79 20 74 68 65 20 61 63 74 69 76 65 20 | RRP.messages.sent.by.the.active. |
| 70580 | 6e 6f 64 65 2e 20 57 68 65 6e 20 74 68 65 20 72 66 63 33 37 36 38 2d 63 6f 6d 70 61 74 69 62 69 | node..When.the.rfc3768-compatibi |
| 705a0 | 6c 69 74 79 20 6f 70 74 69 6f 6e 20 69 73 20 73 65 74 2c 20 61 20 6e 65 77 20 56 52 52 50 20 69 | lity.option.is.set,.a.new.VRRP.i |
| 705c0 | 6e 74 65 72 66 61 63 65 20 69 73 20 63 72 65 61 74 65 64 2c 20 74 6f 20 77 68 69 63 68 20 74 68 | nterface.is.created,.to.which.th |
| 705e0 | 65 20 4d 41 43 20 61 64 64 72 65 73 73 20 61 6e 64 20 74 68 65 20 76 69 72 74 75 61 6c 20 49 50 | e.MAC.address.and.the.virtual.IP |
| 70600 | 20 61 64 64 72 65 73 73 20 69 73 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 61 73 73 69 67 6e | .address.is.automatically.assign |
| 70620 | 65 64 2e 00 52 46 43 20 38 36 38 20 74 69 6d 65 20 73 65 72 76 65 72 20 49 50 76 34 20 61 64 64 | ed..RFC.868.time.server.IPv4.add |
| 70640 | 72 65 73 73 00 52 49 50 00 52 49 50 76 31 20 61 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a | ress.RIP.RIPv1.as.described.in.: |
| 70660 | 72 66 63 3a 60 31 30 35 38 60 00 52 49 50 76 32 20 61 73 20 64 65 73 63 72 69 62 65 64 20 69 6e | rfc:`1058`.RIPv2.as.described.in |
| 70680 | 20 3a 72 66 63 3a 60 32 34 35 33 60 00 52 50 4b 49 00 52 53 2d 53 65 72 76 65 72 20 2d 20 52 53 | .:rfc:`2453`.RPKI.RS-Server.-.RS |
| 706a0 | 2d 43 6c 69 65 6e 74 00 52 53 41 20 63 61 6e 20 62 65 20 75 73 65 64 20 66 6f 72 20 73 65 72 76 | -Client.RSA.can.be.used.for.serv |
| 706c0 | 69 63 65 73 20 73 75 63 68 20 61 73 20 6b 65 79 20 65 78 63 68 61 6e 67 65 73 20 61 6e 64 20 66 | ices.such.as.key.exchanges.and.f |
| 706e0 | 6f 72 20 65 6e 63 72 79 70 74 69 6f 6e 20 70 75 72 70 6f 73 65 73 2e 20 54 6f 20 6d 61 6b 65 20 | or.encryption.purposes..To.make. |
| 70700 | 49 50 53 65 63 20 77 6f 72 6b 20 77 69 74 68 20 64 79 6e 61 6d 69 63 20 61 64 64 72 65 73 73 20 | IPSec.work.with.dynamic.address. |
| 70720 | 6f 6e 20 6f 6e 65 2f 62 6f 74 68 20 73 69 64 65 73 2c 20 77 65 20 77 69 6c 6c 20 68 61 76 65 20 | on.one/both.sides,.we.will.have. |
| 70740 | 74 6f 20 75 73 65 20 52 53 41 20 6b 65 79 73 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 | to.use.RSA.keys.for.authenticati |
| 70760 | 6f 6e 2e 20 54 68 65 79 20 61 72 65 20 76 65 72 79 20 66 61 73 74 20 61 6e 64 20 65 61 73 79 20 | on..They.are.very.fast.and.easy. |
| 70780 | 74 6f 20 73 65 74 75 70 2e 00 52 53 41 2d 4b 65 79 73 00 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 | to.setup..RSA-Keys.Random-Detect |
| 707a0 | 00 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 20 63 6f 75 6c 64 20 62 65 20 75 73 65 66 75 6c 20 66 | .Random-Detect.could.be.useful.f |
| 707c0 | 6f 72 20 68 65 61 76 79 20 74 72 61 66 66 69 63 2e 20 4f 6e 65 20 75 73 65 20 6f 66 20 74 68 69 | or.heavy.traffic..One.use.of.thi |
| 707e0 | 73 20 61 6c 67 6f 72 69 74 68 6d 20 6d 69 67 68 74 20 62 65 20 74 6f 20 70 72 65 76 65 6e 74 20 | s.algorithm.might.be.to.prevent. |
| 70800 | 61 20 62 61 63 6b 62 6f 6e 65 20 6f 76 65 72 6c 6f 61 64 2e 20 42 75 74 20 6f 6e 6c 79 20 66 6f | a.backbone.overload..But.only.fo |
| 70820 | 72 20 54 43 50 20 28 62 65 63 61 75 73 65 20 64 72 6f 70 70 65 64 20 70 61 63 6b 65 74 73 20 63 | r.TCP.(because.dropped.packets.c |
| 70840 | 6f 75 6c 64 20 62 65 20 72 65 74 72 61 6e 73 6d 69 74 74 65 64 29 2c 20 6e 6f 74 20 66 6f 72 20 | ould.be.retransmitted),.not.for. |
| 70860 | 55 44 50 2e 00 52 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 2c 20 64 65 66 61 75 6c 74 20 | UDP..Range.is.1.to.255,.default. |
| 70880 | 69 73 20 31 2e 00 52 61 6e 67 65 20 69 73 20 31 20 74 6f 20 33 30 30 2c 20 64 65 66 61 75 6c 74 | is.1..Range.is.1.to.300,.default |
| 708a0 | 20 69 73 20 31 30 2e 00 52 61 74 65 20 43 6f 6e 74 72 6f 6c 00 52 61 74 65 20 6c 69 6d 69 74 00 | .is.10..Rate.Control.Rate.limit. |
| 708c0 | 52 61 74 65 20 6c 69 6d 69 74 20 74 68 65 20 64 6f 77 6e 6c 6f 61 64 20 62 61 6e 64 77 69 64 74 | Rate.limit.the.download.bandwidt |
| 708e0 | 68 20 66 6f 72 20 60 3c 75 73 65 72 3e 60 20 74 6f 20 60 3c 62 61 6e 64 77 69 64 74 68 3e 60 20 | h.for.`<user>`.to.`<bandwidth>`. |
| 70900 | 6b 62 69 74 2f 73 2e 00 52 61 74 65 20 6c 69 6d 69 74 20 74 68 65 20 75 70 6c 6f 61 64 20 62 61 | kbit/s..Rate.limit.the.upload.ba |
| 70920 | 6e 64 77 69 64 74 68 20 66 6f 72 20 60 3c 75 73 65 72 3e 60 20 74 6f 20 60 3c 62 61 6e 64 77 69 | ndwidth.for.`<user>`.to.`<bandwi |
| 70940 | 64 74 68 3e 60 20 6b 62 69 74 2f 73 00 52 61 74 65 20 6c 69 6d 69 74 20 74 68 65 20 75 70 6c 6f | dth>`.kbit/s.Rate.limit.the.uplo |
| 70960 | 61 64 20 62 61 6e 64 77 69 64 74 68 20 66 6f 72 20 60 3c 75 73 65 72 3e 60 20 74 6f 20 60 3c 62 | ad.bandwidth.for.`<user>`.to.`<b |
| 70980 | 61 6e 64 77 69 64 74 68 3e 60 20 6b 62 69 74 2f 73 2e 00 52 61 74 65 2d 43 6f 6e 74 72 6f 6c 20 | andwidth>`.kbit/s..Rate-Control. |
| 709a0 | 69 73 20 61 20 43 50 55 2d 66 72 69 65 6e 64 6c 79 20 70 6f 6c 69 63 79 2e 20 59 6f 75 20 6d 69 | is.a.CPU-friendly.policy..You.mi |
| 709c0 | 67 68 74 20 63 6f 6e 73 69 64 65 72 20 75 73 69 6e 67 20 69 74 20 77 68 65 6e 20 79 6f 75 20 6a | ght.consider.using.it.when.you.j |
| 709e0 | 75 73 74 20 73 69 6d 70 6c 79 20 77 61 6e 74 20 74 6f 20 73 6c 6f 77 20 74 72 61 66 66 69 63 20 | ust.simply.want.to.slow.traffic. |
| 70a00 | 64 6f 77 6e 2e 00 52 61 74 65 2d 43 6f 6e 74 72 6f 6c 20 69 73 20 61 20 63 6c 61 73 73 6c 65 73 | down..Rate-Control.is.a.classles |
| 70a20 | 73 20 70 6f 6c 69 63 79 20 74 68 61 74 20 6c 69 6d 69 74 73 20 74 68 65 20 70 61 63 6b 65 74 20 | s.policy.that.limits.the.packet. |
| 70a40 | 66 6c 6f 77 20 74 6f 20 61 20 73 65 74 20 72 61 74 65 2e 20 49 74 20 69 73 20 61 20 70 75 72 65 | flow.to.a.set.rate..It.is.a.pure |
| 70a60 | 20 73 68 61 70 65 72 2c 20 69 74 20 64 6f 65 73 20 6e 6f 74 20 73 63 68 65 64 75 6c 65 20 74 72 | .shaper,.it.does.not.schedule.tr |
| 70a80 | 61 66 66 69 63 2e 20 54 72 61 66 66 69 63 20 69 73 20 66 69 6c 74 65 72 65 64 20 62 61 73 65 64 | affic..Traffic.is.filtered.based |
| 70aa0 | 20 6f 6e 20 74 68 65 20 65 78 70 65 6e 64 69 74 75 72 65 20 6f 66 20 74 6f 6b 65 6e 73 2e 20 54 | .on.the.expenditure.of.tokens..T |
| 70ac0 | 6f 6b 65 6e 73 20 72 6f 75 67 68 6c 79 20 63 6f 72 72 65 73 70 6f 6e 64 20 74 6f 20 62 79 74 65 | okens.roughly.correspond.to.byte |
| 70ae0 | 73 2e 00 52 61 77 20 50 61 72 61 6d 65 74 65 72 73 00 52 61 77 20 70 61 72 61 6d 65 74 65 72 73 | s..Raw.Parameters.Raw.parameters |
| 70b00 | 20 63 61 6e 20 62 65 20 70 61 73 73 65 64 20 74 6f 20 73 68 61 72 65 64 2d 6e 65 74 77 6f 72 6b | .can.be.passed.to.shared-network |
| 70b20 | 2d 6e 61 6d 65 2c 20 73 75 62 6e 65 74 20 61 6e 64 20 73 74 61 74 69 63 2d 6d 61 70 70 69 6e 67 | -name,.subnet.and.static-mapping |
| 70b40 | 3a 00 52 65 2d 67 65 6e 65 72 61 74 65 64 20 61 20 6b 6e 6f 77 6e 20 70 75 62 2f 70 72 69 76 61 | :.Re-generated.a.known.pub/priva |
| 70b60 | 74 65 20 6b 65 79 66 69 6c 65 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 | te.keyfile.which.can.be.used.to. |
| 70b80 | 63 6f 6e 6e 65 63 74 20 74 6f 20 6f 74 68 65 72 20 73 65 72 76 69 63 65 73 20 28 65 2e 67 2e 20 | connect.to.other.services.(e.g.. |
| 70ba0 | 52 50 4b 49 20 63 61 63 68 65 29 2e 00 52 65 2d 67 65 6e 65 72 61 74 65 64 20 74 68 65 20 70 75 | RPKI.cache)..Re-generated.the.pu |
| 70bc0 | 62 6c 69 63 2f 70 72 69 76 61 74 65 20 6b 65 79 70 6f 72 74 69 6f 6e 20 77 68 69 63 68 20 53 53 | blic/private.keyportion.which.SS |
| 70be0 | 48 20 75 73 65 73 20 74 6f 20 73 65 63 75 72 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 52 65 | H.uses.to.secure.connections..Re |
| 70c00 | 61 63 68 61 62 6c 65 20 54 69 6d 65 00 52 65 61 6c 20 73 65 72 76 65 72 00 52 65 61 6c 20 73 65 | achable.Time.Real.server.Real.se |
| 70c20 | 72 76 65 72 20 49 50 20 61 64 64 72 65 73 73 20 61 6e 64 20 70 6f 72 74 00 52 65 61 6c 20 73 65 | rver.IP.address.and.port.Real.se |
| 70c40 | 72 76 65 72 20 69 73 20 61 75 74 6f 2d 65 78 63 6c 75 64 65 64 20 69 66 20 70 6f 72 74 20 63 68 | rver.is.auto-excluded.if.port.ch |
| 70c60 | 65 63 6b 20 77 69 74 68 20 74 68 69 73 20 73 65 72 76 65 72 20 66 61 69 6c 2e 00 52 65 63 65 69 | eck.with.this.server.fail..Recei |
| 70c80 | 76 65 20 74 72 61 66 66 69 63 20 66 72 6f 6d 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 63 72 65 61 | ve.traffic.from.connections.crea |
| 70ca0 | 74 65 64 20 62 79 20 74 68 65 20 73 65 72 76 65 72 20 69 73 20 61 6c 73 6f 20 62 61 6c 61 6e 63 | ted.by.the.server.is.also.balanc |
| 70cc0 | 65 64 2e 20 57 68 65 6e 20 74 68 65 20 6c 6f 63 61 6c 20 73 79 73 74 65 6d 20 73 65 6e 64 73 20 | ed..When.the.local.system.sends. |
| 70ce0 | 61 6e 20 41 52 50 20 52 65 71 75 65 73 74 20 74 68 65 20 62 6f 6e 64 69 6e 67 20 64 72 69 76 65 | an.ARP.Request.the.bonding.drive |
| 70d00 | 72 20 63 6f 70 69 65 73 20 61 6e 64 20 73 61 76 65 73 20 74 68 65 20 70 65 65 72 27 73 20 49 50 | r.copies.and.saves.the.peer's.IP |
| 70d20 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 74 68 65 20 41 52 50 20 70 61 63 6b 65 74 | .information.from.the.ARP.packet |
| 70d40 | 2e 20 57 68 65 6e 20 74 68 65 20 41 52 50 20 52 65 70 6c 79 20 61 72 72 69 76 65 73 20 66 72 6f | ..When.the.ARP.Reply.arrives.fro |
| 70d60 | 6d 20 74 68 65 20 70 65 65 72 2c 20 69 74 73 20 68 61 72 64 77 61 72 65 20 61 64 64 72 65 73 73 | m.the.peer,.its.hardware.address |
| 70d80 | 20 69 73 20 72 65 74 72 69 65 76 65 64 20 61 6e 64 20 74 68 65 20 62 6f 6e 64 69 6e 67 20 64 72 | .is.retrieved.and.the.bonding.dr |
| 70da0 | 69 76 65 72 20 69 6e 69 74 69 61 74 65 73 20 61 6e 20 41 52 50 20 72 65 70 6c 79 20 74 6f 20 74 | iver.initiates.an.ARP.reply.to.t |
| 70dc0 | 68 69 73 20 70 65 65 72 20 61 73 73 69 67 6e 69 6e 67 20 69 74 20 74 6f 20 6f 6e 65 20 6f 66 20 | his.peer.assigning.it.to.one.of. |
| 70de0 | 74 68 65 20 73 6c 61 76 65 73 20 69 6e 20 74 68 65 20 62 6f 6e 64 2e 20 41 20 70 72 6f 62 6c 65 | the.slaves.in.the.bond..A.proble |
| 70e00 | 6d 61 74 69 63 20 6f 75 74 63 6f 6d 65 20 6f 66 20 75 73 69 6e 67 20 41 52 50 20 6e 65 67 6f 74 | matic.outcome.of.using.ARP.negot |
| 70e20 | 69 61 74 69 6f 6e 20 66 6f 72 20 62 61 6c 61 6e 63 69 6e 67 20 69 73 20 74 68 61 74 20 65 61 63 | iation.for.balancing.is.that.eac |
| 70e40 | 68 20 74 69 6d 65 20 74 68 61 74 20 61 6e 20 41 52 50 20 72 65 71 75 65 73 74 20 69 73 20 62 72 | h.time.that.an.ARP.request.is.br |
| 70e60 | 6f 61 64 63 61 73 74 20 69 74 20 75 73 65 73 20 74 68 65 20 68 61 72 64 77 61 72 65 20 61 64 64 | oadcast.it.uses.the.hardware.add |
| 70e80 | 72 65 73 73 20 6f 66 20 74 68 65 20 62 6f 6e 64 2e 20 48 65 6e 63 65 2c 20 70 65 65 72 73 20 6c | ress.of.the.bond..Hence,.peers.l |
| 70ea0 | 65 61 72 6e 20 74 68 65 20 68 61 72 64 77 61 72 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 | earn.the.hardware.address.of.the |
| 70ec0 | 20 62 6f 6e 64 20 61 6e 64 20 74 68 65 20 62 61 6c 61 6e 63 69 6e 67 20 6f 66 20 72 65 63 65 69 | .bond.and.the.balancing.of.recei |
| 70ee0 | 76 65 20 74 72 61 66 66 69 63 20 63 6f 6c 6c 61 70 73 65 73 20 74 6f 20 74 68 65 20 63 75 72 72 | ve.traffic.collapses.to.the.curr |
| 70f00 | 65 6e 74 20 73 6c 61 76 65 2e 20 54 68 69 73 20 69 73 20 68 61 6e 64 6c 65 64 20 62 79 20 73 65 | ent.slave..This.is.handled.by.se |
| 70f20 | 6e 64 69 6e 67 20 75 70 64 61 74 65 73 20 28 41 52 50 20 52 65 70 6c 69 65 73 29 20 74 6f 20 61 | nding.updates.(ARP.Replies).to.a |
| 70f40 | 6c 6c 20 74 68 65 20 70 65 65 72 73 20 77 69 74 68 20 74 68 65 69 72 20 69 6e 64 69 76 69 64 75 | ll.the.peers.with.their.individu |
| 70f60 | 61 6c 6c 79 20 61 73 73 69 67 6e 65 64 20 68 61 72 64 77 61 72 65 20 61 64 64 72 65 73 73 20 73 | ally.assigned.hardware.address.s |
| 70f80 | 75 63 68 20 74 68 61 74 20 74 68 65 20 74 72 61 66 66 69 63 20 69 73 20 72 65 64 69 73 74 72 69 | uch.that.the.traffic.is.redistri |
| 70fa0 | 62 75 74 65 64 2e 20 52 65 63 65 69 76 65 20 74 72 61 66 66 69 63 20 69 73 20 61 6c 73 6f 20 72 | buted..Receive.traffic.is.also.r |
| 70fc0 | 65 64 69 73 74 72 69 62 75 74 65 64 20 77 68 65 6e 20 61 20 6e 65 77 20 73 6c 61 76 65 20 69 73 | edistributed.when.a.new.slave.is |
| 70fe0 | 20 61 64 64 65 64 20 74 6f 20 74 68 65 20 62 6f 6e 64 20 61 6e 64 20 77 68 65 6e 20 61 6e 20 69 | .added.to.the.bond.and.when.an.i |
| 71000 | 6e 61 63 74 69 76 65 20 73 6c 61 76 65 20 69 73 20 72 65 2d 61 63 74 69 76 61 74 65 64 2e 20 54 | nactive.slave.is.re-activated..T |
| 71020 | 68 65 20 72 65 63 65 69 76 65 20 6c 6f 61 64 20 69 73 20 64 69 73 74 72 69 62 75 74 65 64 20 73 | he.receive.load.is.distributed.s |
| 71040 | 65 71 75 65 6e 74 69 61 6c 6c 79 20 28 72 6f 75 6e 64 20 72 6f 62 69 6e 29 20 61 6d 6f 6e 67 20 | equentially.(round.robin).among. |
| 71060 | 74 68 65 20 67 72 6f 75 70 20 6f 66 20 68 69 67 68 65 73 74 20 73 70 65 65 64 20 73 6c 61 76 65 | the.group.of.highest.speed.slave |
| 71080 | 73 20 69 6e 20 74 68 65 20 62 6f 6e 64 2e 00 52 65 63 65 69 76 65 64 20 52 41 44 49 55 53 20 61 | s.in.the.bond..Received.RADIUS.a |
| 710a0 | 74 74 72 69 62 75 74 65 73 20 68 61 76 65 20 61 20 68 69 67 68 65 72 20 70 72 69 6f 72 69 74 79 | ttributes.have.a.higher.priority |
| 710c0 | 20 74 68 61 6e 20 70 61 72 61 6d 65 74 65 72 73 20 64 65 66 69 6e 65 64 20 77 69 74 68 69 6e 20 | .than.parameters.defined.within. |
| 710e0 | 74 68 65 20 43 4c 49 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 72 65 66 65 72 20 74 6f 20 | the.CLI.configuration,.refer.to. |
| 71100 | 74 68 65 20 65 78 70 6c 61 6e 61 74 69 6f 6e 20 62 65 6c 6f 77 2e 00 52 65 63 6f 6d 6d 65 6e 64 | the.explanation.below..Recommend |
| 71120 | 65 64 20 66 6f 72 20 6c 61 72 67 65 72 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 2e 00 52 65 63 | ed.for.larger.installations..Rec |
| 71140 | 6f 72 64 20 74 79 70 65 73 00 52 65 64 69 72 65 63 74 20 48 54 54 50 20 74 6f 20 48 54 54 50 53 | ord.types.Redirect.HTTP.to.HTTPS |
| 71160 | 00 52 65 64 69 72 65 63 74 20 4d 69 63 72 6f 73 6f 66 74 20 52 44 50 20 74 72 61 66 66 69 63 20 | .Redirect.Microsoft.RDP.traffic. |
| 71180 | 66 72 6f 6d 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 28 4c 41 4e 2c 20 70 72 69 76 61 74 65 29 | from.the.internal.(LAN,.private) |
| 711a0 | 20 6e 65 74 77 6f 72 6b 20 76 69 61 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e | .network.via.:ref:`destination-n |
| 711c0 | 61 74 60 20 69 6e 20 72 75 6c 65 20 31 31 30 20 74 6f 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 2c | at`.in.rule.110.to.the.internal, |
| 711e0 | 20 70 72 69 76 61 74 65 20 68 6f 73 74 20 31 39 32 2e 30 2e 32 2e 34 30 2e 20 57 65 20 61 6c 73 | .private.host.192.0.2.40..We.als |
| 71200 | 6f 20 6e 65 65 64 20 61 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 2d 6e 61 74 60 20 72 75 6c 65 20 | o.need.a.:ref:`source-nat`.rule. |
| 71220 | 31 31 30 20 66 6f 72 20 74 68 65 20 72 65 76 65 72 73 65 20 70 61 74 68 20 6f 66 20 74 68 65 20 | 110.for.the.reverse.path.of.the. |
| 71240 | 74 72 61 66 66 69 63 2e 20 54 68 65 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 31 39 | traffic..The.internal.network.19 |
| 71260 | 32 2e 30 2e 32 2e 30 2f 32 34 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 76 69 61 20 69 6e 74 65 | 2.0.2.0/24.is.reachable.via.inte |
| 71280 | 72 66 61 63 65 20 60 65 74 68 30 2e 31 30 60 2e 00 52 65 64 69 72 65 63 74 20 4d 69 63 72 6f 73 | rface.`eth0.10`..Redirect.Micros |
| 712a0 | 6f 66 74 20 52 44 50 20 74 72 61 66 66 69 63 20 66 72 6f 6d 20 74 68 65 20 6f 75 74 73 69 64 65 | oft.RDP.traffic.from.the.outside |
| 712c0 | 20 28 57 41 4e 2c 20 65 78 74 65 72 6e 61 6c 29 20 77 6f 72 6c 64 20 76 69 61 20 3a 72 65 66 3a | .(WAN,.external).world.via.:ref: |
| 712e0 | 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 20 69 6e 20 72 75 6c 65 20 31 30 30 20 74 6f | `destination-nat`.in.rule.100.to |
| 71300 | 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 2c 20 70 72 69 76 61 74 65 20 68 6f 73 74 20 31 39 32 2e | .the.internal,.private.host.192. |
| 71320 | 30 2e 32 2e 34 30 2e 00 52 65 64 69 72 65 63 74 20 55 52 4c 20 74 6f 20 61 20 6e 65 77 20 6c 6f | 0.2.40..Redirect.URL.to.a.new.lo |
| 71340 | 63 61 74 69 6f 6e 00 52 65 64 69 73 74 72 69 62 75 74 69 6f 6e 20 43 6f 6e 66 69 67 75 72 61 74 | cation.Redistribution.Configurat |
| 71360 | 69 6f 6e 00 52 65 64 75 6e 64 61 6e 63 79 20 61 6e 64 20 6c 6f 61 64 20 73 68 61 72 69 6e 67 2e | ion.Redundancy.and.load.sharing. |
| 71380 | 20 54 68 65 72 65 20 61 72 65 20 6d 75 6c 74 69 70 6c 65 20 4e 41 54 36 36 20 64 65 76 69 63 65 | .There.are.multiple.NAT66.device |
| 713a0 | 73 20 61 74 20 74 68 65 20 65 64 67 65 20 6f 66 20 61 6e 20 49 50 76 36 20 6e 65 74 77 6f 72 6b | s.at.the.edge.of.an.IPv6.network |
| 713c0 | 20 74 6f 20 61 6e 6f 74 68 65 72 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 2e 20 54 68 65 20 70 61 | .to.another.IPv6.network..The.pa |
| 713e0 | 74 68 20 74 68 72 6f 75 67 68 20 74 68 65 20 4e 41 54 36 36 20 64 65 76 69 63 65 20 74 6f 20 61 | th.through.the.NAT66.device.to.a |
| 71400 | 6e 6f 74 68 65 72 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 20 66 6f 72 6d 73 20 61 6e 20 65 71 75 | nother.IPv6.network.forms.an.equ |
| 71420 | 69 76 61 6c 65 6e 74 20 72 6f 75 74 65 2c 20 61 6e 64 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 | ivalent.route,.and.traffic.can.b |
| 71440 | 65 20 6c 6f 61 64 2d 73 68 61 72 65 64 20 6f 6e 20 74 68 65 73 65 20 4e 41 54 36 36 20 64 65 76 | e.load-shared.on.these.NAT66.dev |
| 71460 | 69 63 65 73 2e 20 49 6e 20 74 68 69 73 20 63 61 73 65 2c 20 79 6f 75 20 63 61 6e 20 63 6f 6e 66 | ices..In.this.case,.you.can.conf |
| 71480 | 69 67 75 72 65 20 74 68 65 20 73 61 6d 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 74 72 | igure.the.same.source.address.tr |
| 714a0 | 61 6e 73 6c 61 74 69 6f 6e 20 72 75 6c 65 73 20 6f 6e 20 74 68 65 73 65 20 4e 41 54 36 36 20 64 | anslation.rules.on.these.NAT66.d |
| 714c0 | 65 76 69 63 65 73 2c 20 73 6f 20 74 68 61 74 20 61 6e 79 20 4e 41 54 36 36 20 64 65 76 69 63 65 | evices,.so.that.any.NAT66.device |
| 714e0 | 20 63 61 6e 20 68 61 6e 64 6c 65 20 49 50 76 36 20 74 72 61 66 66 69 63 20 62 65 74 77 65 65 6e | .can.handle.IPv6.traffic.between |
| 71500 | 20 64 69 66 66 65 72 65 6e 74 20 73 69 74 65 73 2e 00 52 65 67 69 73 74 65 72 20 44 4e 53 20 72 | .different.sites..Register.DNS.r |
| 71520 | 65 63 6f 72 64 20 60 60 65 78 61 6d 70 6c 65 2e 76 79 6f 73 2e 69 6f 60 60 20 6f 6e 20 44 4e 53 | ecord.``example.vyos.io``.on.DNS |
| 71540 | 20 73 65 72 76 65 72 20 60 60 6e 73 31 2e 76 79 6f 73 2e 69 6f 60 60 00 52 65 67 75 6c 61 72 20 | .server.``ns1.vyos.io``.Regular. |
| 71560 | 56 4c 41 4e 73 20 28 38 30 32 2e 31 71 29 00 52 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f | VLANs.(802.1q).Regular.expressio |
| 71580 | 6e 20 74 6f 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 20 61 20 63 6f 6d 6d 75 6e 69 74 79 2d 6c | n.to.match.against.a.community-l |
| 715a0 | 69 73 74 2e 00 52 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 20 74 6f 20 6d 61 74 63 68 | ist..Regular.expression.to.match |
| 715c0 | 20 61 67 61 69 6e 73 74 20 61 20 6c 61 72 67 65 20 63 6f 6d 6d 75 6e 69 74 79 20 6c 69 73 74 2e | .against.a.large.community.list. |
| 715e0 | 00 52 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 20 74 6f 20 6d 61 74 63 68 20 61 67 61 | .Regular.expression.to.match.aga |
| 71600 | 69 6e 73 74 20 61 6e 20 41 53 20 70 61 74 68 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 22 36 34 | inst.an.AS.path..For.example."64 |
| 71620 | 35 30 31 20 36 34 35 30 32 22 2e 00 52 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 20 74 | 501.64502"..Regular.expression.t |
| 71640 | 6f 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 20 61 6e 20 65 78 74 65 6e 64 65 64 20 63 6f 6d 6d | o.match.against.an.extended.comm |
| 71660 | 75 6e 69 74 79 20 6c 69 73 74 2c 20 77 68 65 72 65 20 74 65 78 74 20 63 6f 75 6c 64 20 62 65 3a | unity.list,.where.text.could.be: |
| 71680 | 00 52 65 6a 65 63 74 20 44 48 43 50 20 6c 65 61 73 65 73 20 66 72 6f 6d 20 61 20 67 69 76 65 6e | .Reject.DHCP.leases.from.a.given |
| 716a0 | 20 61 64 64 72 65 73 73 20 6f 72 20 72 61 6e 67 65 2e 20 54 68 69 73 20 69 73 20 75 73 65 66 75 | .address.or.range..This.is.usefu |
| 716c0 | 6c 20 77 68 65 6e 20 61 20 6d 6f 64 65 6d 20 67 69 76 65 73 20 61 20 6c 6f 63 61 6c 20 49 50 20 | l.when.a.modem.gives.a.local.IP. |
| 716e0 | 77 68 65 6e 20 66 69 72 73 74 20 73 74 61 72 74 69 6e 67 2e 00 52 65 6d 65 6d 62 65 72 20 73 6f | when.first.starting..Remember.so |
| 71700 | 75 72 63 65 20 49 50 20 69 6e 20 73 65 63 6f 6e 64 73 20 62 65 66 6f 72 65 20 72 65 73 65 74 20 | urce.IP.in.seconds.before.reset. |
| 71720 | 74 68 65 69 72 20 73 63 6f 72 65 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 31 38 30 30 | their.score..The.default.is.1800 |
| 71740 | 2e 00 52 65 6d 6f 74 65 20 41 63 63 65 73 73 00 52 65 6d 6f 74 65 20 41 63 63 65 73 73 20 22 52 | ..Remote.Access.Remote.Access."R |
| 71760 | 6f 61 64 57 61 72 72 69 6f 72 22 20 45 78 61 6d 70 6c 65 00 52 65 6d 6f 74 65 20 41 63 63 65 73 | oadWarrior".Example.Remote.Acces |
| 71780 | 73 20 22 52 6f 61 64 57 61 72 72 69 6f 72 22 20 63 6c 69 65 6e 74 73 00 52 65 6d 6f 74 65 20 43 | s."RoadWarrior".clients.Remote.C |
| 717a0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 2d 20 41 6e 6e 6f 74 61 74 65 64 3a 00 52 65 6d 6f 74 65 | onfiguration.-.Annotated:.Remote |
| 717c0 | 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 52 65 6d 6f 74 65 20 48 6f 73 74 00 52 65 6d 6f | .Configuration:.Remote.Host.Remo |
| 717e0 | 74 65 20 4c 6f 6b 69 20 70 6f 72 74 00 52 65 6d 6f 74 65 20 4c 6f 6b 69 20 75 72 6c 00 52 65 6d | te.Loki.port.Remote.Loki.url.Rem |
| 71800 | 6f 74 65 20 55 52 4c 00 52 65 6d 6f 74 65 20 55 52 4c 20 74 6f 20 53 70 6c 75 6e 6b 20 63 6f 6c | ote.URL.Remote.URL.to.Splunk.col |
| 71820 | 6c 65 63 74 6f 72 00 52 65 6d 6f 74 65 20 55 52 4c 2e 00 52 65 6d 6f 74 65 20 60 60 49 6e 66 6c | lector.Remote.URL..Remote.``Infl |
| 71840 | 75 78 44 42 60 60 20 62 75 63 6b 65 74 20 6e 61 6d 65 00 52 65 6d 6f 74 65 20 64 61 74 61 62 61 | uxDB``.bucket.name.Remote.databa |
| 71860 | 73 65 20 6e 61 6d 65 2e 00 52 65 6d 6f 74 65 20 70 65 65 72 20 49 50 20 60 3c 61 64 64 72 65 73 | se.name..Remote.peer.IP.`<addres |
| 71880 | 73 3e 60 20 6f 66 20 74 68 65 20 73 65 63 6f 6e 64 20 44 48 43 50 20 73 65 72 76 65 72 20 69 6e | s>`.of.the.second.DHCP.server.in |
| 718a0 | 20 74 68 69 73 20 48 41 20 63 6c 75 73 74 65 72 2e 00 52 65 6d 6f 74 65 20 70 65 65 72 20 49 50 | .this.HA.cluster..Remote.peer.IP |
| 718c0 | 20 60 3c 61 64 64 72 65 73 73 3e 60 20 6f 66 20 74 68 65 20 73 65 63 6f 6e 64 20 44 48 43 50 20 | .`<address>`.of.the.second.DHCP. |
| 718e0 | 73 65 72 76 65 72 20 69 6e 20 74 68 69 73 20 66 61 69 6c 6f 76 65 72 20 63 6c 75 73 74 65 72 2e | server.in.this.failover.cluster. |
| 71900 | 00 52 65 6d 6f 74 65 20 70 6f 72 74 00 52 65 6d 6f 74 65 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e | .Remote.port.Remote.transmission |
| 71920 | 20 69 6e 74 65 72 76 61 6c 20 77 69 6c 6c 20 62 65 20 6d 75 6c 74 69 70 6c 69 65 64 20 62 79 20 | .interval.will.be.multiplied.by. |
| 71940 | 74 68 69 73 20 76 61 6c 75 65 00 52 65 6e 61 6d 69 6e 67 20 63 6c 69 65 6e 74 73 20 69 6e 74 65 | this.value.Renaming.clients.inte |
| 71960 | 72 66 61 63 65 73 20 62 79 20 52 41 44 49 55 53 00 52 65 70 65 61 74 20 74 68 65 20 70 72 6f 63 | rfaces.by.RADIUS.Repeat.the.proc |
| 71980 | 65 64 75 72 65 20 6f 6e 20 74 68 65 20 6f 74 68 65 72 20 72 6f 75 74 65 72 2e 00 52 65 70 6c 61 | edure.on.the.other.router..Repla |
| 719a0 | 79 20 70 72 6f 74 65 63 74 69 6f 6e 00 52 65 71 75 65 73 74 20 6f 6e 6c 79 20 61 20 74 65 6d 70 | y.protection.Request.only.a.temp |
| 719c0 | 6f 72 61 72 79 20 61 64 64 72 65 73 73 20 61 6e 64 20 6e 6f 74 20 66 6f 72 6d 20 61 6e 20 49 41 | orary.address.and.not.form.an.IA |
| 719e0 | 5f 4e 41 20 28 49 64 65 6e 74 69 74 79 20 41 73 73 6f 63 69 61 74 69 6f 6e 20 66 6f 72 20 4e 6f | _NA.(Identity.Association.for.No |
| 71a00 | 6e 2d 74 65 6d 70 6f 72 61 72 79 20 41 64 64 72 65 73 73 65 73 29 20 70 61 72 74 6e 65 72 73 68 | n-temporary.Addresses).partnersh |
| 71a20 | 69 70 2e 00 52 65 71 75 65 73 74 73 20 61 72 65 20 66 6f 72 77 61 72 64 65 64 20 74 68 72 6f 75 | ip..Requests.are.forwarded.throu |
| 71a40 | 67 68 20 60 60 65 74 68 32 60 60 20 61 73 20 74 68 65 20 60 75 70 73 74 72 65 61 6d 20 69 6e 74 | gh.``eth2``.as.the.`upstream.int |
| 71a60 | 65 72 66 61 63 65 60 00 52 65 71 75 69 72 65 20 74 68 65 20 70 65 65 72 20 74 6f 20 61 75 74 68 | erface`.Require.the.peer.to.auth |
| 71a80 | 65 6e 74 69 63 61 74 65 20 69 74 73 65 6c 66 20 75 73 69 6e 67 20 6f 6e 65 20 6f 66 20 74 68 65 | enticate.itself.using.one.of.the |
| 71aa0 | 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 3a 20 70 61 70 2c 20 63 68 61 70 2c | .following.protocols:.pap,.chap, |
| 71ac0 | 20 6d 73 63 68 61 70 2c 20 6d 73 63 68 61 70 2d 76 32 2e 00 52 65 71 75 69 72 65 6d 65 6e 74 73 | .mschap,.mschap-v2..Requirements |
| 71ae0 | 00 52 65 71 75 69 72 65 6d 65 6e 74 73 20 74 6f 20 65 6e 61 62 6c 65 20 73 79 6e 70 72 6f 78 79 | .Requirements.to.enable.synproxy |
| 71b00 | 3a 00 52 65 71 75 69 72 65 6d 65 6e 74 73 3a 00 52 65 73 65 72 76 65 64 20 50 6f 72 74 73 3a 20 | :.Requirements:.Reserved.Ports:. |
| 71b20 | 41 73 73 75 6d 65 20 31 30 32 34 20 70 6f 72 74 73 20 61 72 65 20 72 65 73 65 72 76 65 64 20 66 | Assume.1024.ports.are.reserved.f |
| 71b40 | 6f 72 20 77 65 6c 6c 2d 6b 6e 6f 77 6e 20 73 65 72 76 69 63 65 73 20 61 6e 64 20 61 64 6d 69 6e | or.well-known.services.and.admin |
| 71b60 | 69 73 74 72 61 74 69 76 65 20 70 75 72 70 6f 73 65 73 2e 00 52 65 73 65 74 00 52 65 73 65 74 20 | istrative.purposes..Reset.Reset. |
| 71b80 | 4f 70 65 6e 56 50 4e 00 52 65 73 65 74 20 61 6c 6c 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 49 | OpenVPN.Reset.all.site-to-site.I |
| 71ba0 | 50 53 65 63 20 56 50 4e 20 73 65 73 73 69 6f 6e 73 2e 20 49 74 20 74 65 72 6d 69 6e 61 74 65 73 | PSec.VPN.sessions..It.terminates |
| 71bc0 | 20 61 6c 6c 20 61 63 74 69 76 65 20 63 68 69 6c 64 5f 73 61 20 61 6e 64 20 72 65 69 6e 69 74 69 | .all.active.child_sa.and.reiniti |
| 71be0 | 61 74 65 73 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 52 65 73 65 74 20 61 6c 6c 20 74 | ates.the.connection..Reset.all.t |
| 71c00 | 75 6e 6e 65 6c 73 20 66 6f 72 20 61 20 67 69 76 65 6e 20 70 65 65 72 2c 20 63 61 6e 20 73 70 65 | unnels.for.a.given.peer,.can.spe |
| 71c20 | 63 69 66 79 20 74 75 6e 6e 65 6c 20 6f 72 20 76 74 69 20 69 6e 74 65 72 66 61 63 65 2e 20 49 74 | cify.tunnel.or.vti.interface..It |
| 71c40 | 20 74 65 72 6d 69 6e 61 74 65 73 20 61 20 73 70 65 63 69 66 69 63 20 63 68 69 6c 64 5f 73 61 20 | .terminates.a.specific.child_sa. |
| 71c60 | 61 6e 64 20 72 65 69 6e 69 74 69 61 74 65 73 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 | and.reinitiates.the.connection.. |
| 71c80 | 52 65 73 65 74 20 63 6f 6d 6d 61 6e 64 73 00 52 65 73 65 74 73 20 74 68 65 20 6c 6f 63 61 6c 20 | Reset.commands.Resets.the.local. |
| 71ca0 | 44 4e 53 20 66 6f 72 77 61 72 64 69 6e 67 20 63 61 63 68 65 20 64 61 74 61 62 61 73 65 2e 20 59 | DNS.forwarding.cache.database..Y |
| 71cc0 | 6f 75 20 63 61 6e 20 72 65 73 65 74 20 74 68 65 20 63 61 63 68 65 20 66 6f 72 20 61 6c 6c 20 65 | ou.can.reset.the.cache.for.all.e |
| 71ce0 | 6e 74 72 69 65 73 20 6f 72 20 6f 6e 6c 79 20 66 6f 72 20 65 6e 74 72 69 65 73 20 74 6f 20 61 20 | ntries.or.only.for.entries.to.a. |
| 71d00 | 73 70 65 63 69 66 69 63 20 64 6f 6d 61 69 6e 2e 00 52 65 73 74 61 72 74 00 52 65 73 74 61 72 74 | specific.domain..Restart.Restart |
| 71d20 | 20 44 48 43 50 20 72 65 6c 61 79 20 73 65 72 76 69 63 65 00 52 65 73 74 61 72 74 20 44 48 43 50 | .DHCP.relay.service.Restart.DHCP |
| 71d40 | 76 36 20 72 65 6c 61 79 20 61 67 65 6e 74 20 69 6d 6d 65 64 69 61 74 65 6c 79 2e 00 52 65 73 74 | v6.relay.agent.immediately..Rest |
| 71d60 | 61 72 74 20 61 20 67 69 76 65 6e 20 63 6f 6e 74 61 69 6e 65 72 00 52 65 73 74 61 72 74 20 6d 44 | art.a.given.container.Restart.mD |
| 71d80 | 4e 53 20 72 65 70 65 61 74 65 72 20 73 65 72 76 69 63 65 2e 00 52 65 73 74 61 72 74 20 74 68 65 | NS.repeater.service..Restart.the |
| 71da0 | 20 44 48 43 50 20 73 65 72 76 65 72 00 52 65 73 74 61 72 74 20 74 68 65 20 49 47 4d 50 20 70 72 | .DHCP.server.Restart.the.IGMP.pr |
| 71dc0 | 6f 78 79 20 70 72 6f 63 65 73 73 2e 00 52 65 73 74 61 72 74 20 74 68 65 20 49 50 73 65 63 20 56 | oxy.process..Restart.the.IPsec.V |
| 71de0 | 50 4e 20 70 72 6f 63 65 73 73 20 61 6e 64 20 72 65 2d 65 73 74 61 62 6c 69 73 68 65 73 20 74 68 | PN.process.and.re-establishes.th |
| 71e00 | 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 52 65 73 74 61 72 74 20 74 68 65 20 53 53 48 20 64 61 | e.connection..Restart.the.SSH.da |
| 71e20 | 65 6d 6f 6e 20 70 72 6f 63 65 73 73 2c 20 74 68 65 20 63 75 72 72 65 6e 74 20 73 65 73 73 69 6f | emon.process,.the.current.sessio |
| 71e40 | 6e 20 69 73 20 6e 6f 74 20 61 66 66 65 63 74 65 64 2c 20 6f 6e 6c 79 20 74 68 65 20 62 61 63 6b | n.is.not.affected,.only.the.back |
| 71e60 | 67 72 6f 75 6e 64 20 64 61 65 6d 6f 6e 20 69 73 20 72 65 73 74 61 72 74 65 64 2e 00 52 65 73 74 | ground.daemon.is.restarted..Rest |
| 71e80 | 61 72 74 73 20 74 68 65 20 44 4e 53 20 72 65 63 75 72 73 6f 72 20 70 72 6f 63 65 73 73 2e 20 54 | arts.the.DNS.recursor.process..T |
| 71ea0 | 68 69 73 20 61 6c 73 6f 20 69 6e 76 61 6c 69 64 61 74 65 73 20 74 68 65 20 6c 6f 63 61 6c 20 44 | his.also.invalidates.the.local.D |
| 71ec0 | 4e 53 20 66 6f 72 77 61 72 64 69 6e 67 20 63 61 63 68 65 2e 00 52 65 73 74 61 72 74 73 20 74 68 | NS.forwarding.cache..Restarts.th |
| 71ee0 | 65 20 73 65 72 76 69 63 65 2e 20 49 74 20 63 68 65 63 6b 73 20 69 66 20 74 68 65 20 53 75 72 69 | e.service..It.checks.if.the.Suri |
| 71f00 | 63 61 74 61 20 73 65 72 76 69 63 65 20 69 73 20 61 63 74 69 76 65 20 62 65 66 6f 72 65 20 61 74 | cata.service.is.active.before.at |
| 71f20 | 74 65 6d 70 74 69 6e 67 20 74 6f 20 72 65 73 74 61 72 74 20 69 74 2e 20 49 66 20 69 74 20 69 73 | tempting.to.restart.it..If.it.is |
| 71f40 | 20 6e 6f 74 20 61 63 74 69 76 65 2c 20 61 20 6d 65 73 73 61 67 65 20 69 6e 64 69 63 61 74 65 73 | .not.active,.a.message.indicates |
| 71f60 | 20 74 68 61 74 20 74 68 65 20 73 65 72 76 69 63 65 20 69 73 20 6e 6f 74 20 63 6f 6e 66 69 67 75 | .that.the.service.is.not.configu |
| 71f80 | 72 65 64 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 20 77 68 65 6e 20 61 | red..This.command.is.used.when.a |
| 71fa0 | 64 64 69 6e 67 20 6e 65 77 20 72 75 6c 65 73 20 6d 61 6e 75 61 6c 6c 79 2e 00 52 65 73 75 6c 74 | dding.new.rules.manually..Result |
| 71fc0 | 69 6e 67 20 69 6e 00 52 65 73 75 6c 74 73 20 69 6e 3a 00 52 65 74 72 61 6e 73 6d 69 74 20 54 69 | ing.in.Results.in:.Retransmit.Ti |
| 71fe0 | 6d 65 72 00 52 65 74 72 69 65 76 65 20 63 75 72 72 65 6e 74 20 73 74 61 74 69 73 74 69 63 73 20 | mer.Retrieve.current.statistics. |
| 72000 | 6f 66 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 75 62 73 79 73 74 65 6d | of.connection.tracking.subsystem |
| 72020 | 2e 00 52 65 74 72 69 65 76 65 20 63 75 72 72 65 6e 74 20 73 74 61 74 75 73 20 6f 66 20 63 6f 6e | ..Retrieve.current.status.of.con |
| 72040 | 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 75 62 73 79 73 74 65 6d 2e 00 52 65 74 72 | nection.tracking.subsystem..Retr |
| 72060 | 69 65 76 65 20 70 75 62 6c 69 63 20 6b 65 79 20 70 6f 72 74 69 6f 6e 20 66 72 6f 6d 20 63 6f 6e | ieve.public.key.portion.from.con |
| 72080 | 66 69 67 75 72 65 64 20 57 49 72 65 47 75 61 72 64 20 69 6e 74 65 72 66 61 63 65 2e 00 52 65 76 | figured.WIreGuard.interface..Rev |
| 720a0 | 65 72 73 65 2d 70 72 6f 78 79 00 52 6f 75 6e 64 20 52 6f 62 69 6e 00 52 6f 75 74 65 20 41 67 67 | erse-proxy.Round.Robin.Route.Agg |
| 720c0 | 72 65 67 61 74 69 6f 6e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 52 6f 75 74 65 20 44 61 6d | regation.Configuration.Route.Dam |
| 720e0 | 70 65 6e 69 6e 67 00 52 6f 75 74 65 20 46 69 6c 74 65 72 69 6e 67 00 52 6f 75 74 65 20 46 69 6c | pening.Route.Filtering.Route.Fil |
| 72100 | 74 65 72 69 6e 67 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 52 6f 75 74 65 20 4d 61 70 00 52 | tering.Configuration.Route.Map.R |
| 72120 | 6f 75 74 65 20 4d 61 70 20 50 6f 6c 69 63 79 00 52 6f 75 74 65 20 52 65 64 69 73 74 72 69 62 75 | oute.Map.Policy.Route.Redistribu |
| 72140 | 74 69 6f 6e 00 52 6f 75 74 65 20 52 65 66 6c 65 63 74 6f 72 20 43 6f 6e 66 69 67 75 72 61 74 69 | tion.Route.Reflector.Configurati |
| 72160 | 6f 6e 00 52 6f 75 74 65 20 53 65 6c 65 63 74 69 6f 6e 00 52 6f 75 74 65 20 53 65 6c 65 63 74 69 | on.Route.Selection.Route.Selecti |
| 72180 | 6f 6e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 52 6f 75 74 65 20 61 6e 64 20 52 6f 75 74 65 | on.Configuration.Route.and.Route |
| 721a0 | 36 20 50 6f 6c 69 63 79 00 52 6f 75 74 65 20 64 61 6d 70 65 6e 69 6e 67 20 77 69 63 68 20 64 65 | 6.Policy.Route.dampening.wich.de |
| 721c0 | 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 32 34 33 39 60 20 65 6e 61 62 6c 65 73 20 79 | scribed.in.:rfc:`2439`.enables.y |
| 721e0 | 6f 75 20 74 6f 20 69 64 65 6e 74 69 66 79 20 72 6f 75 74 65 73 20 74 68 61 74 20 72 65 70 65 61 | ou.to.identify.routes.that.repea |
| 72200 | 74 65 64 6c 79 20 66 61 69 6c 20 61 6e 64 20 72 65 74 75 72 6e 2e 20 49 66 20 72 6f 75 74 65 20 | tedly.fail.and.return..If.route. |
| 72220 | 64 61 6d 70 65 6e 69 6e 67 20 69 73 20 65 6e 61 62 6c 65 64 2c 20 61 6e 20 75 6e 73 74 61 62 6c | dampening.is.enabled,.an.unstabl |
| 72240 | 65 20 72 6f 75 74 65 20 61 63 63 75 6d 75 6c 61 74 65 73 20 70 65 6e 61 6c 74 69 65 73 20 65 61 | e.route.accumulates.penalties.ea |
| 72260 | 63 68 20 74 69 6d 65 20 74 68 65 20 72 6f 75 74 65 20 66 61 69 6c 73 20 61 6e 64 20 72 65 74 75 | ch.time.the.route.fails.and.retu |
| 72280 | 72 6e 73 2e 20 49 66 20 74 68 65 20 61 63 63 75 6d 75 6c 61 74 65 64 20 70 65 6e 61 6c 74 69 65 | rns..If.the.accumulated.penaltie |
| 722a0 | 73 20 65 78 63 65 65 64 20 61 20 74 68 72 65 73 68 6f 6c 64 2c 20 74 68 65 20 72 6f 75 74 65 20 | s.exceed.a.threshold,.the.route. |
| 722c0 | 69 73 20 6e 6f 20 6c 6f 6e 67 65 72 20 61 64 76 65 72 74 69 73 65 64 2e 20 54 68 69 73 20 69 73 | is.no.longer.advertised..This.is |
| 722e0 | 20 72 6f 75 74 65 20 73 75 70 70 72 65 73 73 69 6f 6e 2e 20 52 6f 75 74 65 73 20 74 68 61 74 20 | .route.suppression..Routes.that. |
| 72300 | 68 61 76 65 20 62 65 65 6e 20 73 75 70 70 72 65 73 73 65 64 20 61 72 65 20 72 65 2d 65 6e 74 65 | have.been.suppressed.are.re-ente |
| 72320 | 72 65 64 20 69 6e 74 6f 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 6f 6e 6c 79 20 | red.into.the.routing.table.only. |
| 72340 | 77 68 65 6e 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 20 74 68 65 69 72 20 70 65 6e 61 6c 74 79 | when.the.amount.of.their.penalty |
| 72360 | 20 66 61 6c 6c 73 20 62 65 6c 6f 77 20 61 20 74 68 72 65 73 68 6f 6c 64 2e 00 52 6f 75 74 65 20 | .falls.below.a.threshold..Route. |
| 72380 | 66 69 6c 74 65 72 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 75 73 69 6e 67 20 61 20 72 6f | filter.can.be.applied.using.a.ro |
| 723a0 | 75 74 65 2d 6d 61 70 3a 00 52 6f 75 74 65 20 6d 61 70 20 69 73 20 61 20 70 6f 77 65 72 66 75 6c | ute-map:.Route.map.is.a.powerful |
| 723c0 | 6c 20 63 6f 6d 6d 61 6e 64 2c 20 74 68 61 74 20 67 69 76 65 73 20 6e 65 74 77 6f 72 6b 20 61 64 | l.command,.that.gives.network.ad |
| 723e0 | 6d 69 6e 69 73 74 72 61 74 6f 72 73 20 61 20 76 65 72 79 20 75 73 65 66 75 6c 20 61 6e 64 20 66 | ministrators.a.very.useful.and.f |
| 72400 | 6c 65 78 69 62 6c 65 20 74 6f 6f 6c 20 66 6f 72 20 74 72 61 66 66 69 63 20 6d 61 6e 69 70 75 6c | lexible.tool.for.traffic.manipul |
| 72420 | 61 74 69 6f 6e 2e 00 52 6f 75 74 65 20 6d 61 70 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 | ation..Route.maps.can.be.configu |
| 72440 | 72 65 64 20 74 6f 20 6d 61 74 63 68 20 61 20 73 70 65 63 69 66 69 63 20 52 50 4b 49 20 76 61 6c | red.to.match.a.specific.RPKI.val |
| 72460 | 69 64 61 74 69 6f 6e 20 73 74 61 74 65 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 74 68 65 20 63 | idation.state..This.allows.the.c |
| 72480 | 72 65 61 74 69 6f 6e 20 6f 66 20 6c 6f 63 61 6c 20 70 6f 6c 69 63 69 65 73 2c 20 77 68 69 63 68 | reation.of.local.policies,.which |
| 724a0 | 20 68 61 6e 64 6c 65 20 42 47 50 20 72 6f 75 74 65 73 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 | .handle.BGP.routes.based.on.the. |
| 724c0 | 6f 75 74 63 6f 6d 65 20 6f 66 20 74 68 65 20 50 72 65 66 69 78 20 4f 72 69 67 69 6e 20 56 61 6c | outcome.of.the.Prefix.Origin.Val |
| 724e0 | 69 64 61 74 69 6f 6e 2e 00 52 6f 75 74 65 20 6d 65 74 72 69 63 00 52 6f 75 74 65 20 74 61 67 20 | idation..Route.metric.Route.tag. |
| 72500 | 74 6f 20 6d 61 74 63 68 2e 00 52 6f 75 74 65 72 20 41 64 76 65 72 74 69 73 65 6d 65 6e 74 73 00 | to.match..Router.Advertisements. |
| 72520 | 52 6f 75 74 65 72 20 4c 69 66 65 74 69 6d 65 00 52 6f 75 74 65 72 20 72 65 63 65 69 76 65 73 20 | Router.Lifetime.Router.receives. |
| 72540 | 44 48 43 50 20 63 6c 69 65 6e 74 20 72 65 71 75 65 73 74 73 20 6f 6e 20 60 60 65 74 68 31 60 60 | DHCP.client.requests.on.``eth1`` |
| 72560 | 20 61 6e 64 20 72 65 6c 61 79 73 20 74 68 65 6d 20 74 6f 20 74 68 65 20 73 65 72 76 65 72 20 61 | .and.relays.them.to.the.server.a |
| 72580 | 74 20 31 30 2e 30 2e 31 2e 34 20 6f 6e 20 60 60 65 74 68 32 60 60 2e 00 52 6f 75 74 65 73 20 65 | t.10.0.1.4.on.``eth2``..Routes.e |
| 725a0 | 78 70 6f 72 74 65 64 20 66 72 6f 6d 20 61 20 75 6e 69 63 61 73 74 20 56 52 46 20 74 6f 20 74 68 | xported.from.a.unicast.VRF.to.th |
| 725c0 | 65 20 56 50 4e 20 52 49 42 20 6d 75 73 74 20 62 65 20 61 75 67 6d 65 6e 74 65 64 20 62 79 20 74 | e.VPN.RIB.must.be.augmented.by.t |
| 725e0 | 77 6f 20 70 61 72 61 6d 65 74 65 72 73 3a 00 52 6f 75 74 65 73 20 6f 6e 20 4e 6f 64 65 20 32 3a | wo.parameters:.Routes.on.Node.2: |
| 72600 | 00 52 6f 75 74 65 73 20 74 68 61 74 20 61 72 65 20 73 65 6e 74 20 66 72 6f 6d 20 70 72 6f 76 69 | .Routes.that.are.sent.from.provi |
| 72620 | 64 65 72 2c 20 72 73 2d 73 65 72 76 65 72 2c 20 6f 72 20 74 68 65 20 70 65 65 72 20 6c 6f 63 61 | der,.rs-server,.or.the.peer.loca |
| 72640 | 6c 2d 72 6f 6c 65 20 28 6f 72 20 69 66 20 72 65 63 65 69 76 65 64 20 62 79 20 63 75 73 74 6f 6d | l-role.(or.if.received.by.custom |
| 72660 | 65 72 2c 20 72 73 2d 63 6c 69 65 6e 74 2c 20 6f 72 20 74 68 65 20 70 65 65 72 20 6c 6f 63 61 6c | er,.rs-client,.or.the.peer.local |
| 72680 | 2d 72 6f 6c 65 29 20 77 69 6c 6c 20 62 65 20 6d 61 72 6b 65 64 20 77 69 74 68 20 61 20 6e 65 77 | -role).will.be.marked.with.a.new |
| 726a0 | 20 4f 6e 6c 79 20 74 6f 20 43 75 73 74 6f 6d 65 72 20 28 4f 54 43 29 20 61 74 74 72 69 62 75 74 | .Only.to.Customer.(OTC).attribut |
| 726c0 | 65 2e 00 52 6f 75 74 65 73 20 77 69 74 68 20 61 20 64 69 73 74 61 6e 63 65 20 6f 66 20 32 35 35 | e..Routes.with.a.distance.of.255 |
| 726e0 | 20 61 72 65 20 65 66 66 65 63 74 69 76 65 6c 79 20 64 69 73 61 62 6c 65 64 20 61 6e 64 20 6e 6f | .are.effectively.disabled.and.no |
| 72700 | 74 20 69 6e 73 74 61 6c 6c 65 64 20 69 6e 74 6f 20 74 68 65 20 6b 65 72 6e 65 6c 2e 00 52 6f 75 | t.installed.into.the.kernel..Rou |
| 72720 | 74 65 73 20 77 69 74 68 20 74 68 69 73 20 61 74 74 72 69 62 75 74 65 20 63 61 6e 20 6f 6e 6c 79 | tes.with.this.attribute.can.only |
| 72740 | 20 62 65 20 73 65 6e 74 20 74 6f 20 79 6f 75 72 20 6e 65 69 67 68 62 6f 72 20 69 66 20 79 6f 75 | .be.sent.to.your.neighbor.if.you |
| 72760 | 72 20 6c 6f 63 61 6c 2d 72 6f 6c 65 20 69 73 20 70 72 6f 76 69 64 65 72 20 6f 72 20 72 73 2d 73 | r.local-role.is.provider.or.rs-s |
| 72780 | 65 72 76 65 72 2e 20 52 6f 75 74 65 73 20 77 69 74 68 20 74 68 69 73 20 61 74 74 72 69 62 75 74 | erver..Routes.with.this.attribut |
| 727a0 | 65 20 63 61 6e 20 62 65 20 72 65 63 65 69 76 65 64 20 6f 6e 6c 79 20 69 66 20 79 6f 75 72 20 6c | e.can.be.received.only.if.your.l |
| 727c0 | 6f 63 61 6c 2d 72 6f 6c 65 20 69 73 20 63 75 73 74 6f 6d 65 72 20 6f 72 20 72 73 2d 63 6c 69 65 | ocal-role.is.customer.or.rs-clie |
| 727e0 | 6e 74 2e 00 52 6f 75 74 69 6e 65 00 52 6f 75 74 69 6e 67 00 52 6f 75 74 69 6e 67 20 74 61 62 6c | nt..Routine.Routing.Routing.tabl |
| 72800 | 65 73 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 69 6e 20 74 68 69 73 20 65 78 61 | es.that.will.be.used.in.this.exa |
| 72820 | 6d 70 6c 65 20 61 72 65 3a 00 52 75 6c 65 20 31 30 20 6d 61 74 63 68 65 73 20 72 65 71 75 65 73 | mple.are:.Rule.10.matches.reques |
| 72840 | 74 73 20 77 69 74 68 20 74 68 65 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 60 60 6e 6f 64 65 31 2e | ts.with.the.domain.name.``node1. |
| 72860 | 65 78 61 6d 70 6c 65 2e 63 6f 6d 60 60 20 66 6f 72 77 61 72 64 73 20 74 6f 20 74 68 65 20 62 61 | example.com``.forwards.to.the.ba |
| 72880 | 63 6b 65 6e 64 20 60 60 62 6b 2d 61 70 69 2d 30 31 60 60 00 52 75 6c 65 20 31 30 20 6d 61 74 63 | ckend.``bk-api-01``.Rule.10.matc |
| 728a0 | 68 65 73 20 72 65 71 75 65 73 74 73 20 77 69 74 68 20 74 68 65 20 65 78 61 63 74 20 55 52 4c 20 | hes.requests.with.the.exact.URL. |
| 728c0 | 70 61 74 68 20 60 60 2f 2e 77 65 6c 6c 2d 6b 6e 6f 77 6e 2f 78 78 78 60 60 20 61 6e 64 20 72 65 | path.``/.well-known/xxx``.and.re |
| 728e0 | 64 69 72 65 63 74 73 20 74 6f 20 6c 6f 63 61 74 69 6f 6e 20 60 60 2f 63 65 72 74 73 2f 60 60 2e | directs.to.location.``/certs/``. |
| 72900 | 00 52 75 6c 65 20 31 31 30 20 69 73 20 68 69 74 2c 20 73 6f 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 | .Rule.110.is.hit,.so.connection. |
| 72920 | 69 73 20 61 63 63 65 70 74 65 64 2e 00 52 75 6c 65 20 32 30 20 6d 61 74 63 68 65 73 20 72 65 71 | is.accepted..Rule.20.matches.req |
| 72940 | 75 65 73 74 73 20 77 69 74 68 20 55 52 4c 20 70 61 74 68 73 20 65 6e 64 69 6e 67 20 69 6e 20 60 | uests.with.URL.paths.ending.in.` |
| 72960 | 60 2f 6d 61 69 6c 60 60 20 6f 72 20 65 78 61 63 74 20 70 61 74 68 20 60 60 2f 65 6d 61 69 6c 2f | `/mail``.or.exact.path.``/email/ |
| 72980 | 62 61 72 60 60 20 72 65 64 69 72 65 63 74 20 74 6f 20 6c 6f 63 61 74 69 6f 6e 20 60 60 2f 70 6f | bar``.redirect.to.location.``/po |
| 729a0 | 73 74 66 69 78 2f 60 60 2e 00 52 75 6c 65 20 32 30 20 6d 61 74 63 68 65 73 20 72 65 71 75 65 73 | stfix/``..Rule.20.matches.reques |
| 729c0 | 74 73 20 77 69 74 68 20 74 68 65 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 60 60 6e 6f 64 65 32 2e | ts.with.the.domain.name.``node2. |
| 729e0 | 65 78 61 6d 70 6c 65 2e 63 6f 6d 60 60 20 66 6f 72 77 61 72 64 73 20 74 6f 20 74 68 65 20 62 61 | example.com``.forwards.to.the.ba |
| 72a00 | 63 6b 65 6e 64 20 60 60 62 6b 2d 61 70 69 2d 30 32 60 60 00 52 75 6c 65 20 53 74 61 74 75 73 00 | ckend.``bk-api-02``.Rule.Status. |
| 72a20 | 52 75 6c 65 2d 53 65 74 73 00 52 75 6c 65 2d 73 65 74 20 6f 76 65 72 76 69 65 77 00 52 75 6c 65 | Rule-Sets.Rule-set.overview.Rule |
| 72a40 | 73 00 52 75 6c 65 73 20 61 6c 6c 6f 77 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 61 6e 64 20 72 6f 75 | s.Rules.allow.to.control.and.rou |
| 72a60 | 74 65 20 69 6e 63 6f 6d 69 6e 67 20 74 72 61 66 66 69 63 20 74 6f 20 73 70 65 63 69 66 69 63 20 | te.incoming.traffic.to.specific. |
| 72a80 | 62 61 63 6b 65 6e 64 20 62 61 73 65 64 20 6f 6e 20 70 72 65 64 65 66 69 6e 65 64 20 63 6f 6e 64 | backend.based.on.predefined.cond |
| 72aa0 | 69 74 69 6f 6e 73 2e 20 52 75 6c 65 73 20 61 6c 6c 6f 77 20 74 6f 20 64 65 66 69 6e 65 20 6d 61 | itions..Rules.allow.to.define.ma |
| 72ac0 | 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 61 6e 64 20 70 65 72 66 6f 72 6d 20 61 63 74 69 | tching.criteria.and.perform.acti |
| 72ae0 | 6f 6e 20 61 63 63 6f 72 64 69 6e 67 6c 79 2e 00 52 75 6c 65 73 20 77 69 6c 6c 20 62 65 20 63 72 | on.accordingly..Rules.will.be.cr |
| 72b00 | 65 61 74 65 64 20 66 6f 72 20 62 6f 74 68 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 2d 6e 61 74 60 | eated.for.both.:ref:`source-nat` |
| 72b20 | 20 61 6e 64 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 2e 00 52 75 6e | .and.:ref:`destination-nat`..Run |
| 72b40 | 6e 69 6e 67 20 42 65 68 69 6e 64 20 4e 41 54 00 53 4e 41 54 00 53 4e 41 54 36 34 00 53 4e 41 54 | ning.Behind.NAT.SNAT.SNAT64.SNAT |
| 72b60 | 36 36 00 53 4e 4d 50 00 53 4e 4d 50 20 45 78 74 65 6e 73 69 6f 6e 73 00 53 4e 4d 50 20 50 72 6f | 66.SNMP.SNMP.Extensions.SNMP.Pro |
| 72b80 | 74 6f 63 6f 6c 20 56 65 72 73 69 6f 6e 73 00 53 4e 4d 50 20 63 61 6e 20 77 6f 72 6b 20 73 79 6e | tocol.Versions.SNMP.can.work.syn |
| 72ba0 | 63 68 72 6f 6e 6f 75 73 6c 79 20 6f 72 20 61 73 79 6e 63 68 72 6f 6e 6f 75 73 6c 79 2e 20 49 6e | chronously.or.asynchronously..In |
| 72bc0 | 20 73 79 6e 63 68 72 6f 6e 6f 75 73 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 2c 20 74 68 65 20 | .synchronous.communication,.the. |
| 72be0 | 6d 6f 6e 69 74 6f 72 69 6e 67 20 73 79 73 74 65 6d 20 71 75 65 72 69 65 73 20 74 68 65 20 72 6f | monitoring.system.queries.the.ro |
| 72c00 | 75 74 65 72 20 70 65 72 69 6f 64 69 63 61 6c 6c 79 2e 20 49 6e 20 61 73 79 6e 63 68 72 6f 6e 6f | uter.periodically..In.asynchrono |
| 72c20 | 75 73 2c 20 74 68 65 20 72 6f 75 74 65 72 20 73 65 6e 64 73 20 6e 6f 74 69 66 69 63 61 74 69 6f | us,.the.router.sends.notificatio |
| 72c40 | 6e 20 74 6f 20 74 68 65 20 22 74 72 61 70 22 20 28 74 68 65 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 | n.to.the."trap".(the.monitoring. |
| 72c60 | 68 6f 73 74 29 2e 00 53 4e 4d 50 20 69 73 20 61 20 63 6f 6d 70 6f 6e 65 6e 74 20 6f 66 20 74 68 | host)..SNMP.is.a.component.of.th |
| 72c80 | 65 20 49 6e 74 65 72 6e 65 74 20 50 72 6f 74 6f 63 6f 6c 20 53 75 69 74 65 20 61 73 20 64 65 66 | e.Internet.Protocol.Suite.as.def |
| 72ca0 | 69 6e 65 64 20 62 79 20 74 68 65 20 49 6e 74 65 72 6e 65 74 20 45 6e 67 69 6e 65 65 72 69 6e 67 | ined.by.the.Internet.Engineering |
| 72cc0 | 20 54 61 73 6b 20 46 6f 72 63 65 20 28 49 45 54 46 29 2e 20 49 74 20 63 6f 6e 73 69 73 74 73 20 | .Task.Force.(IETF)..It.consists. |
| 72ce0 | 6f 66 20 61 20 73 65 74 20 6f 66 20 73 74 61 6e 64 61 72 64 73 20 66 6f 72 20 6e 65 74 77 6f 72 | of.a.set.of.standards.for.networ |
| 72d00 | 6b 20 6d 61 6e 61 67 65 6d 65 6e 74 2c 20 69 6e 63 6c 75 64 69 6e 67 20 61 6e 20 61 70 70 6c 69 | k.management,.including.an.appli |
| 72d20 | 63 61 74 69 6f 6e 20 6c 61 79 65 72 20 70 72 6f 74 6f 63 6f 6c 2c 20 61 20 64 61 74 61 62 61 73 | cation.layer.protocol,.a.databas |
| 72d40 | 65 20 73 63 68 65 6d 61 2c 20 61 6e 64 20 61 20 73 65 74 20 6f 66 20 64 61 74 61 20 6f 62 6a 65 | e.schema,.and.a.set.of.data.obje |
| 72d60 | 63 74 73 2e 00 53 4e 4d 50 20 69 73 20 77 69 64 65 6c 79 20 75 73 65 64 20 69 6e 20 6e 65 74 77 | cts..SNMP.is.widely.used.in.netw |
| 72d80 | 6f 72 6b 20 6d 61 6e 61 67 65 6d 65 6e 74 20 66 6f 72 20 6e 65 74 77 6f 72 6b 20 6d 6f 6e 69 74 | ork.management.for.network.monit |
| 72da0 | 6f 72 69 6e 67 2e 20 53 4e 4d 50 20 65 78 70 6f 73 65 73 20 6d 61 6e 61 67 65 6d 65 6e 74 20 64 | oring..SNMP.exposes.management.d |
| 72dc0 | 61 74 61 20 69 6e 20 74 68 65 20 66 6f 72 6d 20 6f 66 20 76 61 72 69 61 62 6c 65 73 20 6f 6e 20 | ata.in.the.form.of.variables.on. |
| 72de0 | 74 68 65 20 6d 61 6e 61 67 65 64 20 73 79 73 74 65 6d 73 20 6f 72 67 61 6e 69 7a 65 64 20 69 6e | the.managed.systems.organized.in |
| 72e00 | 20 61 20 6d 61 6e 61 67 65 6d 65 6e 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 62 61 73 65 20 28 | .a.management.information.base.( |
| 72e20 | 4d 49 42 5f 29 20 77 68 69 63 68 20 64 65 73 63 72 69 62 65 20 74 68 65 20 73 79 73 74 65 6d 20 | MIB_).which.describe.the.system. |
| 72e40 | 73 74 61 74 75 73 20 61 6e 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 54 68 65 73 65 20 | status.and.configuration..These. |
| 72e60 | 76 61 72 69 61 62 6c 65 73 20 63 61 6e 20 74 68 65 6e 20 62 65 20 72 65 6d 6f 74 65 6c 79 20 71 | variables.can.then.be.remotely.q |
| 72e80 | 75 65 72 69 65 64 20 28 61 6e 64 2c 20 69 6e 20 73 6f 6d 65 20 63 69 72 63 75 6d 73 74 61 6e 63 | ueried.(and,.in.some.circumstanc |
| 72ea0 | 65 73 2c 20 6d 61 6e 69 70 75 6c 61 74 65 64 29 20 62 79 20 6d 61 6e 61 67 69 6e 67 20 61 70 70 | es,.manipulated).by.managing.app |
| 72ec0 | 6c 69 63 61 74 69 6f 6e 73 2e 00 53 4e 4d 50 76 32 00 53 4e 4d 50 76 32 20 64 6f 65 73 20 6e 6f | lications..SNMPv2.SNMPv2.does.no |
| 72ee0 | 74 20 73 75 70 70 6f 72 74 20 61 6e 79 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 65 63 | t.support.any.authentication.mec |
| 72f00 | 68 61 6e 69 73 6d 73 2c 20 6f 74 68 65 72 20 74 68 61 6e 20 63 6c 69 65 6e 74 20 73 6f 75 72 63 | hanisms,.other.than.client.sourc |
| 72f20 | 65 20 61 64 64 72 65 73 73 2c 20 73 6f 20 79 6f 75 20 73 68 6f 75 6c 64 20 73 70 65 63 69 66 79 | e.address,.so.you.should.specify |
| 72f40 | 20 61 64 64 72 65 73 73 65 73 20 6f 66 20 63 6c 69 65 6e 74 73 20 61 6c 6c 6f 77 65 64 20 74 6f | .addresses.of.clients.allowed.to |
| 72f60 | 20 6d 6f 6e 69 74 6f 72 20 74 68 65 20 72 6f 75 74 65 72 2e 20 4e 6f 74 65 20 74 68 61 74 20 53 | .monitor.the.router..Note.that.S |
| 72f80 | 4e 4d 50 76 32 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 73 20 6e 6f 20 65 6e 63 72 79 70 74 69 6f | NMPv2.also.supports.no.encryptio |
| 72fa0 | 6e 20 61 6e 64 20 61 6c 77 61 79 73 20 73 65 6e 64 73 20 64 61 74 61 20 69 6e 20 70 6c 61 69 6e | n.and.always.sends.data.in.plain |
| 72fc0 | 20 74 65 78 74 2e 00 53 4e 4d 50 76 32 20 69 73 20 74 68 65 20 6f 72 69 67 69 6e 61 6c 20 61 6e | .text..SNMPv2.is.the.original.an |
| 72fe0 | 64 20 6d 6f 73 74 20 63 6f 6d 6d 6f 6e 6c 79 20 75 73 65 64 20 76 65 72 73 69 6f 6e 2e 20 46 6f | d.most.commonly.used.version..Fo |
| 73000 | 72 20 61 75 74 68 6f 72 69 7a 69 6e 67 20 63 6c 69 65 6e 74 73 2c 20 53 4e 4d 50 20 75 73 65 73 | r.authorizing.clients,.SNMP.uses |
| 73020 | 20 74 68 65 20 63 6f 6e 63 65 70 74 20 6f 66 20 63 6f 6d 6d 75 6e 69 74 69 65 73 2e 20 43 6f 6d | .the.concept.of.communities..Com |
| 73040 | 6d 75 6e 69 74 69 65 73 20 6d 61 79 20 68 61 76 65 20 61 75 74 68 6f 72 69 7a 61 74 69 6f 6e 20 | munities.may.have.authorization. |
| 73060 | 73 65 74 20 74 6f 20 72 65 61 64 20 6f 6e 6c 79 20 28 74 68 69 73 20 69 73 20 6d 6f 73 74 20 63 | set.to.read.only.(this.is.most.c |
| 73080 | 6f 6d 6d 6f 6e 29 20 6f 72 20 74 6f 20 72 65 61 64 20 61 6e 64 20 77 72 69 74 65 20 28 74 68 69 | ommon).or.to.read.and.write.(thi |
| 730a0 | 73 20 6f 70 74 69 6f 6e 20 69 73 20 6e 6f 74 20 61 63 74 69 76 65 6c 79 20 75 73 65 64 20 69 6e | s.option.is.not.actively.used.in |
| 730c0 | 20 56 79 4f 53 29 2e 00 53 4e 4d 50 76 33 00 53 4e 4d 50 76 33 20 28 76 65 72 73 69 6f 6e 20 33 | .VyOS)..SNMPv3.SNMPv3.(version.3 |
| 730e0 | 20 6f 66 20 74 68 65 20 53 4e 4d 50 20 70 72 6f 74 6f 63 6f 6c 29 20 69 6e 74 72 6f 64 75 63 65 | .of.the.SNMP.protocol).introduce |
| 73100 | 64 20 61 20 77 68 6f 6c 65 20 73 6c 65 77 20 6f 66 20 6e 65 77 20 73 65 63 75 72 69 74 79 20 72 | d.a.whole.slew.of.new.security.r |
| 73120 | 65 6c 61 74 65 64 20 66 65 61 74 75 72 65 73 20 74 68 61 74 20 68 61 76 65 20 62 65 65 6e 20 6d | elated.features.that.have.been.m |
| 73140 | 69 73 73 69 6e 67 20 66 72 6f 6d 20 74 68 65 20 70 72 65 76 69 6f 75 73 20 76 65 72 73 69 6f 6e | issing.from.the.previous.version |
| 73160 | 73 2e 20 53 65 63 75 72 69 74 79 20 77 61 73 20 6f 6e 65 20 6f 66 20 74 68 65 20 62 69 67 67 65 | s..Security.was.one.of.the.bigge |
| 73180 | 73 74 20 77 65 61 6b 6e 65 73 73 20 6f 66 20 53 4e 4d 50 20 75 6e 74 69 6c 20 76 33 2e 20 41 75 | st.weakness.of.SNMP.until.v3..Au |
| 731a0 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 69 6e 20 53 4e 4d 50 20 56 65 72 73 69 6f 6e 73 20 31 20 | thentication.in.SNMP.Versions.1. |
| 731c0 | 61 6e 64 20 32 20 61 6d 6f 75 6e 74 73 20 74 6f 20 6e 6f 74 68 69 6e 67 20 6d 6f 72 65 20 74 68 | and.2.amounts.to.nothing.more.th |
| 731e0 | 61 6e 20 61 20 70 61 73 73 77 6f 72 64 20 28 63 6f 6d 6d 75 6e 69 74 79 20 73 74 72 69 6e 67 29 | an.a.password.(community.string) |
| 73200 | 20 73 65 6e 74 20 69 6e 20 63 6c 65 61 72 20 74 65 78 74 20 62 65 74 77 65 65 6e 20 61 20 6d 61 | .sent.in.clear.text.between.a.ma |
| 73220 | 6e 61 67 65 72 20 61 6e 64 20 61 67 65 6e 74 2e 20 45 61 63 68 20 53 4e 4d 50 76 33 20 6d 65 73 | nager.and.agent..Each.SNMPv3.mes |
| 73240 | 73 61 67 65 20 63 6f 6e 74 61 69 6e 73 20 73 65 63 75 72 69 74 79 20 70 61 72 61 6d 65 74 65 72 | sage.contains.security.parameter |
| 73260 | 73 20 77 68 69 63 68 20 61 72 65 20 65 6e 63 6f 64 65 64 20 61 73 20 61 6e 20 6f 63 74 65 74 20 | s.which.are.encoded.as.an.octet. |
| 73280 | 73 74 72 69 6e 67 2e 20 54 68 65 20 6d 65 61 6e 69 6e 67 20 6f 66 20 74 68 65 73 65 20 73 65 63 | string..The.meaning.of.these.sec |
| 732a0 | 75 72 69 74 79 20 70 61 72 61 6d 65 74 65 72 73 20 64 65 70 65 6e 64 73 20 6f 6e 20 74 68 65 20 | urity.parameters.depends.on.the. |
| 732c0 | 73 65 63 75 72 69 74 79 20 6d 6f 64 65 6c 20 62 65 69 6e 67 20 75 73 65 64 2e 00 53 50 41 4e 20 | security.model.being.used..SPAN. |
| 732e0 | 70 6f 72 74 20 6d 69 72 72 6f 72 69 6e 67 20 63 61 6e 20 63 6f 70 79 20 74 68 65 20 69 6e 62 6f | port.mirroring.can.copy.the.inbo |
| 73300 | 75 6e 64 2f 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 66 20 74 68 65 20 69 6e 74 65 | und/outbound.traffic.of.the.inte |
| 73320 | 72 66 61 63 65 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 | rface.to.the.specified.interface |
| 73340 | 2c 20 75 73 75 61 6c 6c 79 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 62 65 20 63 | ,.usually.the.interface.can.be.c |
| 73360 | 6f 6e 6e 65 63 74 65 64 20 74 6f 20 73 6f 6d 65 20 73 70 65 63 69 61 6c 20 65 71 75 69 70 6d 65 | onnected.to.some.special.equipme |
| 73380 | 6e 74 2c 20 73 75 63 68 20 61 73 20 61 20 62 65 68 61 76 69 6f 72 20 63 6f 6e 74 72 6f 6c 20 73 | nt,.such.as.a.behavior.control.s |
| 733a0 | 79 73 74 65 6d 2c 20 69 6e 74 72 75 73 69 6f 6e 20 64 65 74 65 63 74 69 6f 6e 20 73 79 73 74 65 | ystem,.intrusion.detection.syste |
| 733c0 | 6d 20 6f 72 20 74 72 61 66 66 69 63 20 63 6f 6c 6c 65 63 74 6f 72 2c 20 61 6e 64 20 63 61 6e 20 | m.or.traffic.collector,.and.can. |
| 733e0 | 63 6f 70 79 20 61 6c 6c 20 72 65 6c 61 74 65 64 20 74 72 61 66 66 69 63 20 66 72 6f 6d 20 74 68 | copy.all.related.traffic.from.th |
| 73400 | 69 73 20 70 6f 72 74 2e 20 54 68 65 20 62 65 6e 65 66 69 74 20 6f 66 20 6d 69 72 72 6f 72 69 6e | is.port..The.benefit.of.mirrorin |
| 73420 | 67 20 74 68 65 20 74 72 61 66 66 69 63 20 69 73 20 74 68 61 74 20 74 68 65 20 61 70 70 6c 69 63 | g.the.traffic.is.that.the.applic |
| 73440 | 61 74 69 6f 6e 20 69 73 20 69 73 6f 6c 61 74 65 64 20 66 72 6f 6d 20 74 68 65 20 73 6f 75 72 63 | ation.is.isolated.from.the.sourc |
| 73460 | 65 20 74 72 61 66 66 69 63 20 61 6e 64 20 73 6f 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 70 72 6f | e.traffic.and.so.application.pro |
| 73480 | 63 65 73 73 69 6e 67 20 64 6f 65 73 20 6e 6f 74 20 61 66 66 65 63 74 20 74 68 65 20 74 72 61 66 | cessing.does.not.affect.the.traf |
| 734a0 | 66 69 63 20 6f 72 20 74 68 65 20 73 79 73 74 65 6d 20 70 65 72 66 6f 72 6d 61 6e 63 65 2e 00 53 | fic.or.the.system.performance..S |
| 734c0 | 50 41 4e 20 70 6f 72 74 20 6d 69 72 72 6f 72 69 6e 67 20 63 61 6e 20 63 6f 70 79 20 74 68 65 20 | PAN.port.mirroring.can.copy.the. |
| 734e0 | 69 6e 62 6f 75 6e 64 2f 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 66 20 74 68 65 20 | inbound/outbound.traffic.of.the. |
| 73500 | 69 6e 74 65 72 66 61 63 65 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 | interface.to.the.specified.inter |
| 73520 | 66 61 63 65 2c 20 75 73 75 61 6c 6c 79 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 | face,.usually.the.interface.can. |
| 73540 | 62 65 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 73 6f 6d 65 20 73 70 65 63 69 61 6c 20 65 71 75 | be.connected.to.some.special.equ |
| 73560 | 69 70 6d 65 6e 74 2c 20 73 75 63 68 20 61 73 20 62 65 68 61 76 69 6f 72 20 63 6f 6e 74 72 6f 6c | ipment,.such.as.behavior.control |
| 73580 | 20 73 79 73 74 65 6d 2c 20 69 6e 74 72 75 73 69 6f 6e 20 64 65 74 65 63 74 69 6f 6e 20 73 79 73 | .system,.intrusion.detection.sys |
| 735a0 | 74 65 6d 20 61 6e 64 20 74 72 61 66 66 69 63 20 63 6f 6c 6c 65 63 74 6f 72 2c 20 61 6e 64 20 63 | tem.and.traffic.collector,.and.c |
| 735c0 | 61 6e 20 63 6f 70 79 20 61 6c 6c 20 72 65 6c 61 74 65 64 20 74 72 61 66 66 69 63 20 66 72 6f 6d | an.copy.all.related.traffic.from |
| 735e0 | 20 74 68 69 73 20 70 6f 72 74 2e 20 54 68 65 20 62 65 6e 65 66 69 74 20 6f 66 20 6d 69 72 72 6f | .this.port..The.benefit.of.mirro |
| 73600 | 72 69 6e 67 20 74 68 65 20 74 72 61 66 66 69 63 20 69 73 20 74 68 61 74 20 74 68 65 20 61 70 70 | ring.the.traffic.is.that.the.app |
| 73620 | 6c 69 63 61 74 69 6f 6e 20 69 73 20 69 73 6f 6c 61 74 65 64 20 66 72 6f 6d 20 74 68 65 20 73 6f | lication.is.isolated.from.the.so |
| 73640 | 75 72 63 65 20 74 72 61 66 66 69 63 20 61 6e 64 20 73 6f 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 | urce.traffic.and.so.application. |
| 73660 | 70 72 6f 63 65 73 73 69 6e 67 20 64 6f 65 73 20 6e 6f 74 20 61 66 66 65 63 74 20 74 68 65 20 74 | processing.does.not.affect.the.t |
| 73680 | 72 61 66 66 69 63 20 6f 72 20 74 68 65 20 73 79 73 74 65 6d 20 70 65 72 66 6f 72 6d 61 6e 63 65 | raffic.or.the.system.performance |
| 736a0 | 2e 00 53 53 48 00 53 53 48 20 3a 72 65 66 3a 60 73 73 68 5f 6b 65 79 5f 62 61 73 65 64 5f 61 75 | ..SSH.SSH.:ref:`ssh_key_based_au |
| 736c0 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 60 00 53 53 48 20 3a 72 65 66 3a 60 73 73 68 5f 6f 70 65 72 | thentication`.SSH.:ref:`ssh_oper |
| 736e0 | 61 74 69 6f 6e 60 00 53 53 48 20 63 6c 69 65 6e 74 00 53 53 48 20 70 72 6f 76 69 64 65 73 20 61 | ation`.SSH.client.SSH.provides.a |
| 73700 | 20 73 65 63 75 72 65 20 63 68 61 6e 6e 65 6c 20 6f 76 65 72 20 61 6e 20 75 6e 73 65 63 75 72 65 | .secure.channel.over.an.unsecure |
| 73720 | 64 20 6e 65 74 77 6f 72 6b 20 69 6e 20 61 20 63 6c 69 65 6e 74 2d 73 65 72 76 65 72 20 61 72 63 | d.network.in.a.client-server.arc |
| 73740 | 68 69 74 65 63 74 75 72 65 2c 20 63 6f 6e 6e 65 63 74 69 6e 67 20 61 6e 20 53 53 48 20 63 6c 69 | hitecture,.connecting.an.SSH.cli |
| 73760 | 65 6e 74 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 77 69 74 68 20 61 6e 20 53 53 48 20 73 65 72 76 | ent.application.with.an.SSH.serv |
| 73780 | 65 72 2e 20 43 6f 6d 6d 6f 6e 20 61 70 70 6c 69 63 61 74 69 6f 6e 73 20 69 6e 63 6c 75 64 65 20 | er..Common.applications.include. |
| 737a0 | 72 65 6d 6f 74 65 20 63 6f 6d 6d 61 6e 64 2d 6c 69 6e 65 20 6c 6f 67 69 6e 20 61 6e 64 20 72 65 | remote.command-line.login.and.re |
| 737c0 | 6d 6f 74 65 20 63 6f 6d 6d 61 6e 64 20 65 78 65 63 75 74 69 6f 6e 2c 20 62 75 74 20 61 6e 79 20 | mote.command.execution,.but.any. |
| 737e0 | 6e 65 74 77 6f 72 6b 20 73 65 72 76 69 63 65 20 63 61 6e 20 62 65 20 73 65 63 75 72 65 64 20 77 | network.service.can.be.secured.w |
| 73800 | 69 74 68 20 53 53 48 2e 20 54 68 65 20 70 72 6f 74 6f 63 6f 6c 20 73 70 65 63 69 66 69 63 61 74 | ith.SSH..The.protocol.specificat |
| 73820 | 69 6f 6e 20 64 69 73 74 69 6e 67 75 69 73 68 65 73 20 62 65 74 77 65 65 6e 20 74 77 6f 20 6d 61 | ion.distinguishes.between.two.ma |
| 73840 | 6a 6f 72 20 76 65 72 73 69 6f 6e 73 2c 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 53 53 48 | jor.versions,.referred.to.as.SSH |
| 73860 | 2d 31 20 61 6e 64 20 53 53 48 2d 32 2e 00 53 53 48 20 75 73 65 72 6e 61 6d 65 20 74 6f 20 65 73 | -1.and.SSH-2..SSH.username.to.es |
| 73880 | 74 61 62 6c 69 73 68 20 61 6e 20 53 53 48 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f 20 74 68 65 | tablish.an.SSH.connection.to.the |
| 738a0 | 20 63 61 63 68 65 20 73 65 72 76 65 72 2e 00 53 53 48 20 77 61 73 20 64 65 73 69 67 6e 65 64 20 | .cache.server..SSH.was.designed. |
| 738c0 | 61 73 20 61 20 72 65 70 6c 61 63 65 6d 65 6e 74 20 66 6f 72 20 54 65 6c 6e 65 74 20 61 6e 64 20 | as.a.replacement.for.Telnet.and. |
| 738e0 | 66 6f 72 20 75 6e 73 65 63 75 72 65 64 20 72 65 6d 6f 74 65 20 73 68 65 6c 6c 20 70 72 6f 74 6f | for.unsecured.remote.shell.proto |
| 73900 | 63 6f 6c 73 20 73 75 63 68 20 61 73 20 74 68 65 20 42 65 72 6b 65 6c 65 79 20 72 6c 6f 67 69 6e | cols.such.as.the.Berkeley.rlogin |
| 73920 | 2c 20 72 73 68 2c 20 61 6e 64 20 72 65 78 65 63 20 70 72 6f 74 6f 63 6f 6c 73 2e 20 54 68 6f 73 | ,.rsh,.and.rexec.protocols..Thos |
| 73940 | 65 20 70 72 6f 74 6f 63 6f 6c 73 20 73 65 6e 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2c 20 6e 6f | e.protocols.send.information,.no |
| 73960 | 74 61 62 6c 79 20 70 61 73 73 77 6f 72 64 73 2c 20 69 6e 20 70 6c 61 69 6e 74 65 78 74 2c 20 72 | tably.passwords,.in.plaintext,.r |
| 73980 | 65 6e 64 65 72 69 6e 67 20 74 68 65 6d 20 73 75 73 63 65 70 74 69 62 6c 65 20 74 6f 20 69 6e 74 | endering.them.susceptible.to.int |
| 739a0 | 65 72 63 65 70 74 69 6f 6e 20 61 6e 64 20 64 69 73 63 6c 6f 73 75 72 65 20 75 73 69 6e 67 20 70 | erception.and.disclosure.using.p |
| 739c0 | 61 63 6b 65 74 20 61 6e 61 6c 79 73 69 73 2e 20 54 68 65 20 65 6e 63 72 79 70 74 69 6f 6e 20 75 | acket.analysis..The.encryption.u |
| 739e0 | 73 65 64 20 62 79 20 53 53 48 20 69 73 20 69 6e 74 65 6e 64 65 64 20 74 6f 20 70 72 6f 76 69 64 | sed.by.SSH.is.intended.to.provid |
| 73a00 | 65 20 63 6f 6e 66 69 64 65 6e 74 69 61 6c 69 74 79 20 61 6e 64 20 69 6e 74 65 67 72 69 74 79 20 | e.confidentiality.and.integrity. |
| 73a20 | 6f 66 20 64 61 74 61 20 6f 76 65 72 20 61 6e 20 75 6e 73 65 63 75 72 65 64 20 6e 65 74 77 6f 72 | of.data.over.an.unsecured.networ |
| 73a40 | 6b 2c 20 73 75 63 68 20 61 73 20 74 68 65 20 49 6e 74 65 72 6e 65 74 2e 00 53 53 49 44 20 74 6f | k,.such.as.the.Internet..SSID.to |
| 73a60 | 20 62 65 20 75 73 65 64 20 69 6e 20 49 45 45 45 20 38 30 32 2e 31 31 20 6d 61 6e 61 67 65 6d 65 | .be.used.in.IEEE.802.11.manageme |
| 73a80 | 6e 74 20 66 72 61 6d 65 73 00 53 53 4c 20 42 72 69 64 67 69 6e 67 00 53 53 4c 20 43 65 72 74 69 | nt.frames.SSL.Bridging.SSL.Certi |
| 73aa0 | 66 69 63 61 74 65 73 00 53 53 4c 20 43 65 72 74 69 66 69 63 61 74 65 73 20 67 65 6e 65 72 61 74 | ficates.SSL.Certificates.generat |
| 73ac0 | 69 6f 6e 00 53 53 4c 20 6d 61 74 63 68 20 53 65 72 76 65 72 20 4e 61 6d 65 20 49 6e 64 69 63 61 | ion.SSL.match.Server.Name.Indica |
| 73ae0 | 74 69 6f 6e 20 28 53 4e 49 29 20 6f 70 74 69 6f 6e 3a 00 53 53 54 50 20 43 6c 69 65 6e 74 00 53 | tion.(SNI).option:.SSTP.Client.S |
| 73b00 | 53 54 50 20 43 6c 69 65 6e 74 20 4f 70 74 69 6f 6e 73 00 53 53 54 50 20 53 65 72 76 65 72 00 53 | STP.Client.Options.SSTP.Server.S |
| 73b20 | 53 54 50 20 69 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 4c 69 6e 75 78 2c 20 42 53 44 2c | STP.is.available.for.Linux,.BSD, |
| 73b40 | 20 61 6e 64 20 57 69 6e 64 6f 77 73 2e 00 53 53 54 50 20 72 65 6d 6f 74 65 20 73 65 72 76 65 72 | .and.Windows..SSTP.remote.server |
| 73b60 | 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 2e 20 43 61 6e 20 62 65 20 65 69 74 68 65 72 20 61 6e | .to.connect.to..Can.be.either.an |
| 73b80 | 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 46 51 44 4e 2e 00 53 54 50 20 50 61 72 61 6d 65 74 | .IP.address.or.FQDN..STP.Paramet |
| 73ba0 | 65 72 00 53 61 6c 74 2d 4d 69 6e 69 6f 6e 00 53 61 6c 74 53 74 61 63 6b 5f 20 69 73 20 50 79 74 | er.Salt-Minion.SaltStack_.is.Pyt |
| 73bc0 | 68 6f 6e 2d 62 61 73 65 64 2c 20 6f 70 65 6e 2d 73 6f 75 72 63 65 20 73 6f 66 74 77 61 72 65 20 | hon-based,.open-source.software. |
| 73be0 | 66 6f 72 20 65 76 65 6e 74 2d 64 72 69 76 65 6e 20 49 54 20 61 75 74 6f 6d 61 74 69 6f 6e 2c 20 | for.event-driven.IT.automation,. |
| 73c00 | 72 65 6d 6f 74 65 20 74 61 73 6b 20 65 78 65 63 75 74 69 6f 6e 2c 20 61 6e 64 20 63 6f 6e 66 69 | remote.task.execution,.and.confi |
| 73c20 | 67 75 72 61 74 69 6f 6e 20 6d 61 6e 61 67 65 6d 65 6e 74 2e 20 53 75 70 70 6f 72 74 69 6e 67 20 | guration.management..Supporting. |
| 73c40 | 74 68 65 20 22 69 6e 66 72 61 73 74 72 75 63 74 75 72 65 20 61 73 20 63 6f 64 65 22 20 61 70 70 | the."infrastructure.as.code".app |
| 73c60 | 72 6f 61 63 68 20 74 6f 20 64 61 74 61 20 63 65 6e 74 65 72 20 73 79 73 74 65 6d 20 61 6e 64 20 | roach.to.data.center.system.and. |
| 73c80 | 6e 65 74 77 6f 72 6b 20 64 65 70 6c 6f 79 6d 65 6e 74 20 61 6e 64 20 6d 61 6e 61 67 65 6d 65 6e | network.deployment.and.managemen |
| 73ca0 | 74 2c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 75 74 6f 6d 61 74 69 6f 6e 2c 20 53 65 63 | t,.configuration.automation,.Sec |
| 73cc0 | 4f 70 73 20 6f 72 63 68 65 73 74 72 61 74 69 6f 6e 2c 20 76 75 6c 6e 65 72 61 62 69 6c 69 74 79 | Ops.orchestration,.vulnerability |
| 73ce0 | 20 72 65 6d 65 64 69 61 74 69 6f 6e 2c 20 61 6e 64 20 68 79 62 72 69 64 20 63 6c 6f 75 64 20 63 | .remediation,.and.hybrid.cloud.c |
| 73d00 | 6f 6e 74 72 6f 6c 2e 00 53 61 6d 65 20 61 73 20 65 78 70 6f 72 74 2d 6c 69 73 74 2c 20 62 75 74 | ontrol..Same.as.export-list,.but |
| 73d20 | 20 69 74 20 61 70 70 6c 69 65 73 20 74 6f 20 70 61 74 68 73 20 61 6e 6e 6f 75 6e 63 65 64 20 69 | .it.applies.to.paths.announced.i |
| 73d40 | 6e 74 6f 20 73 70 65 63 69 66 69 65 64 20 61 72 65 61 20 61 73 20 54 79 70 65 2d 33 20 73 75 6d | nto.specified.area.as.Type-3.sum |
| 73d60 | 6d 61 72 79 2d 4c 53 41 73 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 6d 61 6b 65 73 20 73 65 | mary-LSAs..This.command.makes.se |
| 73d80 | 6e 73 65 20 69 6e 20 41 42 52 20 6f 6e 6c 79 2e 00 53 61 6d 65 20 73 70 65 63 69 66 69 63 20 6d | nse.in.ABR.only..Same.specific.m |
| 73da0 | 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 74 68 61 74 20 63 61 6e 20 62 65 20 75 73 65 | atching.criteria.that.can.be.use |
| 73dc0 | 64 20 69 6e 20 62 72 69 64 67 65 20 66 69 72 65 77 61 6c 6c 20 61 72 65 20 64 65 73 63 72 69 62 | d.in.bridge.firewall.are.describ |
| 73de0 | 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 53 61 6d 70 6c 65 20 63 6f 6e 66 69 | ed.in.this.section:.Sample.confi |
| 73e00 | 67 75 72 61 74 69 6f 6e 20 6f 66 20 53 56 44 20 77 69 74 68 20 56 4c 41 4e 20 74 6f 20 56 4e 49 | guration.of.SVD.with.VLAN.to.VNI |
| 73e20 | 20 6d 61 70 70 69 6e 67 73 20 69 73 20 73 68 6f 77 6e 20 62 65 6c 6f 77 2e 00 53 61 6d 70 6c 65 | .mappings.is.shown.below..Sample |
| 73e40 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 6f 20 73 65 74 75 70 20 4c 44 50 20 6f 6e 20 56 | .configuration.to.setup.LDP.on.V |
| 73e60 | 79 4f 53 00 53 63 61 6e 6e 69 6e 67 20 69 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 65 64 20 6f 6e | yOS.Scanning.is.not.supported.on |
| 73e80 | 20 61 6c 6c 20 77 69 72 65 6c 65 73 73 20 64 72 69 76 65 72 73 20 61 6e 64 20 77 69 72 65 6c 65 | .all.wireless.drivers.and.wirele |
| 73ea0 | 73 73 20 68 61 72 64 77 61 72 65 2e 20 52 65 66 65 72 20 74 6f 20 79 6f 75 72 20 64 72 69 76 65 | ss.hardware..Refer.to.your.drive |
| 73ec0 | 72 20 61 6e 64 20 77 69 72 65 6c 65 73 73 20 68 61 72 64 77 61 72 65 20 64 6f 63 75 6d 65 6e 74 | r.and.wireless.hardware.document |
| 73ee0 | 61 74 69 6f 6e 20 66 6f 72 20 66 75 72 74 68 65 72 20 64 65 74 61 69 6c 73 2e 00 53 63 72 69 70 | ation.for.further.details..Scrip |
| 73f00 | 74 20 65 78 65 63 75 74 69 6f 6e 00 53 63 72 69 70 74 20 74 6f 20 72 75 6e 20 62 65 66 6f 72 65 | t.execution.Script.to.run.before |
| 73f20 | 20 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6d 65 73 20 75 70 00 53 63 72 69 | .session.interface.comes.up.Scri |
| 73f40 | 70 74 20 74 6f 20 72 75 6e 20 62 65 66 6f 72 65 20 74 68 65 20 73 65 73 73 69 6f 6e 20 69 6e 74 | pt.to.run.before.the.session.int |
| 73f60 | 65 72 66 61 63 65 20 63 6f 6d 65 73 20 75 70 00 53 63 72 69 70 74 20 74 6f 20 72 75 6e 20 77 68 | erface.comes.up.Script.to.run.wh |
| 73f80 | 65 6e 20 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 63 68 61 6e 67 65 64 20 62 79 20 | en.session.interface.changed.by. |
| 73fa0 | 52 41 44 49 55 53 20 43 6f 41 20 68 61 6e 64 6c 69 6e 67 00 53 63 72 69 70 74 20 74 6f 20 72 75 | RADIUS.CoA.handling.Script.to.ru |
| 73fc0 | 6e 20 77 68 65 6e 20 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 67 6f 69 6e 67 20 74 | n.when.session.interface.going.t |
| 73fe0 | 6f 20 74 65 72 6d 69 6e 61 74 65 00 53 63 72 69 70 74 20 74 6f 20 72 75 6e 20 77 68 65 6e 20 73 | o.terminate.Script.to.run.when.s |
| 74000 | 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 63 6f 6d 70 6c 65 74 65 6c 79 20 63 | ession.interface.is.completely.c |
| 74020 | 6f 6e 66 69 67 75 72 65 64 20 61 6e 64 20 73 74 61 72 74 65 64 00 53 63 72 69 70 74 20 74 6f 20 | onfigured.and.started.Script.to. |
| 74040 | 72 75 6e 20 77 68 65 6e 20 74 68 65 20 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 61 | run.when.the.session.interface.a |
| 74060 | 62 6f 75 74 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 00 53 63 72 69 70 74 20 74 6f 20 72 75 6e 20 | bout.to.terminate.Script.to.run. |
| 74080 | 77 68 65 6e 20 74 68 65 20 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 62 | when.the.session.interface.is.ab |
| 740a0 | 6f 75 74 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 00 53 63 72 69 70 74 20 74 6f 20 72 75 6e 20 77 | out.to.terminate.Script.to.run.w |
| 740c0 | 68 65 6e 20 74 68 65 20 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 63 68 61 | hen.the.session.interface.is.cha |
| 740e0 | 6e 67 65 64 20 62 79 20 52 41 44 49 55 53 20 43 6f 41 20 68 61 6e 64 6c 69 6e 67 00 53 63 72 69 | nged.by.RADIUS.CoA.handling.Scri |
| 74100 | 70 74 20 74 6f 20 72 75 6e 20 77 68 65 6e 20 74 68 65 20 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 | pt.to.run.when.the.session.inter |
| 74120 | 66 61 63 65 20 69 73 20 63 6f 6d 70 6c 65 74 65 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 61 6e | face.is.completely.configured.an |
| 74140 | 64 20 73 74 61 72 74 65 64 00 53 63 72 69 70 74 69 6e 67 00 53 65 63 6f 6e 64 20 73 63 65 6e 61 | d.started.Scripting.Second.scena |
| 74160 | 72 69 6f 3a 20 61 70 70 6c 79 20 73 6f 75 72 63 65 20 4e 41 54 20 66 6f 72 20 61 6c 6c 20 6f 75 | rio:.apply.source.NAT.for.all.ou |
| 74180 | 74 67 6f 69 6e 67 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 66 72 6f 6d 20 4c 41 4e 20 31 30 2e 30 | tgoing.connections.from.LAN.10.0 |
| 741a0 | 2e 30 2e 30 2f 38 2c 20 75 73 69 6e 67 20 33 20 70 75 62 6c 69 63 20 61 64 64 72 65 73 73 65 73 | .0.0/8,.using.3.public.addresses |
| 741c0 | 20 61 6e 64 20 65 71 75 61 6c 20 64 69 73 74 72 69 62 75 74 69 6f 6e 2e 20 57 65 20 77 69 6c 6c | .and.equal.distribution..We.will |
| 741e0 | 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 68 61 73 68 20 72 61 6e 64 6f 6d 6c 79 2e 00 53 65 63 | .generate.the.hash.randomly..Sec |
| 74200 | 6f 6e 64 6c 79 2c 20 77 65 20 63 72 65 61 74 65 20 74 68 65 20 69 6e 74 65 72 6d 65 64 69 61 72 | ondly,.we.create.the.intermediar |
| 74220 | 79 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 69 65 73 2c 20 77 68 69 63 68 | y.certificate.authorities,.which |
| 74240 | 20 61 72 65 20 75 73 65 64 20 74 6f 20 73 69 67 6e 20 74 68 65 20 6c 65 61 66 20 63 65 72 74 69 | .are.used.to.sign.the.leaf.certi |
| 74260 | 66 69 63 61 74 65 73 2e 00 53 65 63 72 65 74 20 66 6f 72 20 44 79 6e 61 6d 69 63 20 41 75 74 68 | ficates..Secret.for.Dynamic.Auth |
| 74280 | 6f 72 69 7a 61 74 69 6f 6e 20 45 78 74 65 6e 73 69 6f 6e 20 73 65 72 76 65 72 20 28 44 4d 2f 43 | orization.Extension.server.(DM/C |
| 742a0 | 6f 41 29 00 53 65 63 75 72 69 74 79 00 53 65 63 75 72 69 74 79 2f 61 75 74 68 65 6e 74 69 63 61 | oA).Security.Security/authentica |
| 742c0 | 74 69 6f 6e 20 6d 65 73 73 61 67 65 73 00 53 65 65 20 3a 72 66 63 3a 60 37 37 36 31 23 73 65 63 | tion.messages.See.:rfc:`7761#sec |
| 742e0 | 74 69 6f 6e 2d 34 2e 31 60 20 66 6f 72 20 64 65 74 61 69 6c 73 2e 00 53 65 65 20 62 65 6c 6f 77 | tion-4.1`.for.details..See.below |
| 74300 | 20 74 68 65 20 64 69 66 66 65 72 65 6e 74 20 70 61 72 61 6d 65 74 65 72 73 20 61 76 61 69 6c 61 | .the.different.parameters.availa |
| 74320 | 62 6c 65 20 66 6f 72 20 74 68 65 20 49 50 76 34 20 2a 2a 73 68 6f 77 2a 2a 20 63 6f 6d 6d 61 6e | ble.for.the.IPv4.**show**.comman |
| 74340 | 64 3a 00 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 00 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 | d:.Segment.Routing.Segment.Routi |
| 74360 | 6e 67 20 28 53 52 29 20 69 73 20 61 20 6e 65 74 77 6f 72 6b 20 61 72 63 68 69 74 65 63 74 75 72 | ng.(SR).is.a.network.architectur |
| 74380 | 65 20 74 68 61 74 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 73 6f 75 72 63 65 2d 72 6f 75 74 | e.that.is.similar.to.source-rout |
| 743a0 | 69 6e 67 20 2e 20 49 6e 20 74 68 69 73 20 61 72 63 68 69 74 65 63 74 75 72 65 2c 20 74 68 65 20 | ing...In.this.architecture,.the. |
| 743c0 | 69 6e 67 72 65 73 73 20 72 6f 75 74 65 72 20 61 64 64 73 20 61 20 6c 69 73 74 20 6f 66 20 73 65 | ingress.router.adds.a.list.of.se |
| 743e0 | 67 6d 65 6e 74 73 2c 20 6b 6e 6f 77 6e 20 61 73 20 53 49 44 73 2c 20 74 6f 20 74 68 65 20 70 61 | gments,.known.as.SIDs,.to.the.pa |
| 74400 | 63 6b 65 74 20 61 73 20 69 74 20 65 6e 74 65 72 73 20 74 68 65 20 6e 65 74 77 6f 72 6b 2e 20 54 | cket.as.it.enters.the.network..T |
| 74420 | 68 65 73 65 20 73 65 67 6d 65 6e 74 73 20 72 65 70 72 65 73 65 6e 74 20 64 69 66 66 65 72 65 6e | hese.segments.represent.differen |
| 74440 | 74 20 70 6f 72 74 69 6f 6e 73 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 70 61 74 68 20 74 | t.portions.of.the.network.path.t |
| 74460 | 68 61 74 20 74 68 65 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 74 61 6b 65 2e 00 53 65 67 6d 65 6e | hat.the.packet.will.take..Segmen |
| 74480 | 74 20 52 6f 75 74 69 6e 67 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 61 6e 20 65 | t.Routing.can.be.applied.to.an.e |
| 744a0 | 78 69 73 74 69 6e 67 20 4d 50 4c 53 2d 62 61 73 65 64 20 64 61 74 61 20 70 6c 61 6e 65 20 61 6e | xisting.MPLS-based.data.plane.an |
| 744c0 | 64 20 64 65 66 69 6e 65 73 20 61 20 63 6f 6e 74 72 6f 6c 20 70 6c 61 6e 65 20 6e 65 74 77 6f 72 | d.defines.a.control.plane.networ |
| 744e0 | 6b 20 61 72 63 68 69 74 65 63 74 75 72 65 2e 20 49 6e 20 4d 50 4c 53 20 6e 65 74 77 6f 72 6b 73 | k.architecture..In.MPLS.networks |
| 74500 | 2c 20 73 65 67 6d 65 6e 74 73 20 61 72 65 20 65 6e 63 6f 64 65 64 20 61 73 20 4d 50 4c 53 20 6c | ,.segments.are.encoded.as.MPLS.l |
| 74520 | 61 62 65 6c 73 20 61 6e 64 20 61 72 65 20 61 64 64 65 64 20 61 74 20 74 68 65 20 69 6e 67 72 65 | abels.and.are.added.at.the.ingre |
| 74540 | 73 73 20 72 6f 75 74 65 72 2e 20 54 68 65 73 65 20 4d 50 4c 53 20 6c 61 62 65 6c 73 20 61 72 65 | ss.router..These.MPLS.labels.are |
| 74560 | 20 74 68 65 6e 20 65 78 63 68 61 6e 67 65 64 20 61 6e 64 20 70 6f 70 75 6c 61 74 65 64 20 62 79 | .then.exchanged.and.populated.by |
| 74580 | 20 49 6e 74 65 72 69 6f 72 20 47 61 74 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c 73 20 28 49 47 50 | .Interior.Gateway.Protocols.(IGP |
| 745a0 | 73 29 20 6c 69 6b 65 20 49 53 2d 49 53 20 6f 72 20 4f 53 50 46 20 77 68 69 63 68 20 61 72 65 20 | s).like.IS-IS.or.OSPF.which.are. |
| 745c0 | 72 75 6e 6e 69 6e 67 20 6f 6e 20 6d 6f 73 74 20 49 53 50 73 2e 00 53 65 67 6d 65 6e 74 20 72 6f | running.on.most.ISPs..Segment.ro |
| 745e0 | 75 74 69 6e 67 20 28 53 52 29 20 69 73 20 75 73 65 64 20 62 79 20 74 68 65 20 49 47 50 20 70 72 | uting.(SR).is.used.by.the.IGP.pr |
| 74600 | 6f 74 6f 63 6f 6c 73 20 74 6f 20 69 6e 74 65 72 63 6f 6e 6e 65 63 74 20 6e 65 74 77 6f 72 6b 20 | otocols.to.interconnect.network. |
| 74620 | 64 65 76 69 63 65 73 2c 20 62 65 6c 6f 77 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 68 6f | devices,.below.configuration.sho |
| 74640 | 77 73 20 68 6f 77 20 74 6f 20 65 6e 61 62 6c 65 20 53 52 20 6f 6e 20 49 53 2d 49 53 3a 00 53 65 | ws.how.to.enable.SR.on.IS-IS:.Se |
| 74660 | 67 6d 65 6e 74 20 72 6f 75 74 69 6e 67 20 28 53 52 29 20 69 73 20 75 73 65 64 20 62 79 20 74 68 | gment.routing.(SR).is.used.by.th |
| 74680 | 65 20 49 47 50 20 70 72 6f 74 6f 63 6f 6c 73 20 74 6f 20 69 6e 74 65 72 63 6f 6e 6e 65 63 74 20 | e.IGP.protocols.to.interconnect. |
| 746a0 | 6e 65 74 77 6f 72 6b 20 64 65 76 69 63 65 73 2c 20 62 65 6c 6f 77 20 63 6f 6e 66 69 67 75 72 61 | network.devices,.below.configura |
| 746c0 | 74 69 6f 6e 20 73 68 6f 77 73 20 68 6f 77 20 74 6f 20 65 6e 61 62 6c 65 20 53 52 20 6f 6e 20 4f | tion.shows.how.to.enable.SR.on.O |
| 746e0 | 53 50 46 3a 00 53 65 67 6d 65 6e 74 20 72 6f 75 74 69 6e 67 20 64 65 66 69 6e 65 73 20 61 20 63 | SPF:.Segment.routing.defines.a.c |
| 74700 | 6f 6e 74 72 6f 6c 20 70 6c 61 6e 65 20 6e 65 74 77 6f 72 6b 20 61 72 63 68 69 74 65 63 74 75 72 | ontrol.plane.network.architectur |
| 74720 | 65 20 61 6e 64 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 61 6e 20 65 78 69 73 74 | e.and.can.be.applied.to.an.exist |
| 74740 | 69 6e 67 20 4d 50 4c 53 20 62 61 73 65 64 20 64 61 74 61 70 6c 61 6e 65 2e 20 49 6e 20 74 68 65 | ing.MPLS.based.dataplane..In.the |
| 74760 | 20 4d 50 4c 53 20 6e 65 74 77 6f 72 6b 73 2c 20 73 65 67 6d 65 6e 74 73 20 61 72 65 20 65 6e 63 | .MPLS.networks,.segments.are.enc |
| 74780 | 6f 64 65 64 20 61 73 20 4d 50 4c 53 20 6c 61 62 65 6c 73 20 61 6e 64 20 61 72 65 20 69 6d 70 6f | oded.as.MPLS.labels.and.are.impo |
| 747a0 | 73 65 64 20 61 74 20 74 68 65 20 69 6e 67 72 65 73 73 20 72 6f 75 74 65 72 2e 20 4d 50 4c 53 20 | sed.at.the.ingress.router..MPLS. |
| 747c0 | 6c 61 62 65 6c 73 20 61 72 65 20 65 78 63 68 61 6e 67 65 64 20 61 6e 64 20 70 6f 70 75 6c 61 74 | labels.are.exchanged.and.populat |
| 747e0 | 65 64 20 62 79 20 49 47 50 73 20 6c 69 6b 65 20 49 53 2d 49 53 2e 53 65 67 6d 65 6e 74 20 52 6f | ed.by.IGPs.like.IS-IS.Segment.Ro |
| 74800 | 75 74 69 6e 67 20 61 73 20 70 65 72 20 52 46 43 38 36 36 37 20 66 6f 72 20 4d 50 4c 53 20 64 61 | uting.as.per.RFC8667.for.MPLS.da |
| 74820 | 74 61 70 6c 61 6e 65 2e 20 49 74 20 73 75 70 70 6f 72 74 73 20 49 50 76 34 2c 20 49 50 76 36 20 | taplane..It.supports.IPv4,.IPv6. |
| 74840 | 61 6e 64 20 45 43 4d 50 20 61 6e 64 20 68 61 73 20 62 65 65 6e 20 74 65 73 74 65 64 20 61 67 61 | and.ECMP.and.has.been.tested.aga |
| 74860 | 69 6e 73 74 20 43 69 73 63 6f 20 26 20 4a 75 6e 69 70 65 72 20 72 6f 75 74 65 72 73 2e 68 6f 77 | inst.Cisco.&.Juniper.routers.how |
| 74880 | 65 76 65 72 2c 74 68 69 73 20 64 65 70 6c 6f 79 6d 65 6e 74 20 69 73 20 73 74 69 6c 6c 20 45 58 | ever,this.deployment.is.still.EX |
| 748a0 | 50 45 52 49 4d 45 4e 54 41 4c 20 66 6f 72 20 46 52 52 2e 00 53 65 6c 65 63 74 20 54 4c 53 20 76 | PERIMENTAL.for.FRR..Select.TLS.v |
| 748c0 | 65 72 73 69 6f 6e 20 75 73 65 64 2e 00 53 65 6c 65 63 74 20 63 69 70 68 65 72 20 73 75 69 74 65 | ersion.used..Select.cipher.suite |
| 748e0 | 20 75 73 65 64 20 66 6f 72 20 63 72 79 70 74 6f 67 72 61 70 68 69 63 20 6f 70 65 72 61 74 69 6f | .used.for.cryptographic.operatio |
| 74900 | 6e 73 2e 20 54 68 69 73 20 73 65 74 74 69 6e 67 20 69 73 20 6d 61 6e 64 61 74 6f 72 79 2e 00 53 | ns..This.setting.is.mandatory..S |
| 74920 | 65 6c 65 63 74 20 68 6f 77 20 6c 61 62 65 6c 73 20 61 72 65 20 61 6c 6c 6f 63 61 74 65 64 20 69 | elect.how.labels.are.allocated.i |
| 74940 | 6e 20 74 68 65 20 67 69 76 65 6e 20 56 52 46 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 74 68 65 | n.the.given.VRF..By.default,.the |
| 74960 | 20 70 65 72 2d 76 72 66 20 6d 6f 64 65 20 69 73 20 73 65 6c 65 63 74 65 64 2c 20 61 6e 64 20 6f | .per-vrf.mode.is.selected,.and.o |
| 74980 | 6e 65 20 6c 61 62 65 6c 20 69 73 20 75 73 65 64 20 66 6f 72 20 61 6c 6c 20 70 72 65 66 69 78 65 | ne.label.is.used.for.all.prefixe |
| 749a0 | 73 20 66 72 6f 6d 20 74 68 65 20 56 52 46 2e 20 54 68 65 20 70 65 72 2d 6e 65 78 74 68 6f 70 20 | s.from.the.VRF..The.per-nexthop. |
| 749c0 | 77 69 6c 6c 20 75 73 65 20 61 20 75 6e 69 71 75 65 20 6c 61 62 65 6c 20 66 6f 72 20 61 6c 6c 20 | will.use.a.unique.label.for.all. |
| 749e0 | 70 72 65 66 69 78 65 73 20 74 68 61 74 20 61 72 65 20 72 65 61 63 68 61 62 6c 65 20 76 69 61 20 | prefixes.that.are.reachable.via. |
| 74a00 | 74 68 65 20 73 61 6d 65 20 6e 65 78 74 68 6f 70 2e 00 53 65 6c 66 20 53 69 67 6e 65 64 20 43 41 | the.same.nexthop..Self.Signed.CA |
| 74a20 | 00 53 65 6e 64 20 61 20 50 72 6f 78 79 20 50 72 6f 74 6f 63 6f 6c 20 76 65 72 73 69 6f 6e 20 31 | .Send.a.Proxy.Protocol.version.1 |
| 74a40 | 20 68 65 61 64 65 72 20 28 74 65 78 74 20 66 6f 72 6d 61 74 29 00 53 65 6e 64 20 61 20 50 72 6f | .header.(text.format).Send.a.Pro |
| 74a60 | 78 79 20 50 72 6f 74 6f 63 6f 6c 20 76 65 72 73 69 6f 6e 20 32 20 68 65 61 64 65 72 20 28 62 69 | xy.Protocol.version.2.header.(bi |
| 74a80 | 6e 61 72 79 20 66 6f 72 6d 61 74 29 00 53 65 6e 64 20 61 6c 6c 20 44 4e 53 20 71 75 65 72 69 65 | nary.format).Send.all.DNS.querie |
| 74aa0 | 73 20 74 6f 20 74 68 65 20 49 50 76 34 2f 49 50 76 36 20 44 4e 53 20 73 65 72 76 65 72 20 73 70 | s.to.the.IPv4/IPv6.DNS.server.sp |
| 74ac0 | 65 63 69 66 69 65 64 20 75 6e 64 65 72 20 60 3c 61 64 64 72 65 73 73 3e 60 20 6f 6e 20 6f 70 74 | ecified.under.`<address>`.on.opt |
| 74ae0 | 69 6f 6e 61 6c 20 70 6f 72 74 20 73 70 65 63 69 66 69 65 64 20 75 6e 64 65 72 20 60 3c 70 6f 72 | ional.port.specified.under.`<por |
| 74b00 | 74 3e 60 2e 20 54 68 65 20 70 6f 72 74 20 64 65 66 61 75 6c 74 73 20 74 6f 20 35 33 2e 20 59 6f | t>`..The.port.defaults.to.53..Yo |
| 74b20 | 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 6d 75 6c 74 69 70 6c 65 20 6e 61 6d 65 73 65 72 | u.can.configure.multiple.nameser |
| 74b40 | 76 65 72 73 20 68 65 72 65 2e 00 53 65 6e 64 20 65 6d 70 74 79 20 53 53 49 44 20 69 6e 20 62 65 | vers.here..Send.empty.SSID.in.be |
| 74b60 | 61 63 6f 6e 73 20 61 6e 64 20 69 67 6e 6f 72 65 20 70 72 6f 62 65 20 72 65 71 75 65 73 74 20 66 | acons.and.ignore.probe.request.f |
| 74b80 | 72 61 6d 65 73 20 74 68 61 74 20 64 6f 20 6e 6f 74 20 73 70 65 63 69 66 79 20 66 75 6c 6c 20 53 | rames.that.do.not.specify.full.S |
| 74ba0 | 53 49 44 2c 20 69 2e 65 2e 2c 20 72 65 71 75 69 72 65 20 73 74 61 74 69 6f 6e 73 20 74 6f 20 6b | SID,.i.e.,.require.stations.to.k |
| 74bc0 | 6e 6f 77 20 53 53 49 44 2e 00 53 65 6e 64 20 65 6d 70 74 79 20 53 53 49 44 20 69 6e 20 62 65 61 | now.SSID..Send.empty.SSID.in.bea |
| 74be0 | 63 6f 6e 73 20 61 6e 64 20 69 67 6e 6f 72 65 20 70 72 6f 62 65 20 72 65 71 75 65 73 74 20 66 72 | cons.and.ignore.probe.request.fr |
| 74c00 | 61 6d 65 73 20 74 68 61 74 20 64 6f 20 6e 6f 74 20 73 70 65 63 69 66 79 20 66 75 6c 6c 20 53 53 | ames.that.do.not.specify.full.SS |
| 74c20 | 49 44 2c 20 69 2e 65 2e 2c 20 72 65 71 75 69 72 65 20 73 74 61 74 69 6f 6e 73 20 74 6f 20 6b 6e | ID,.i.e.,.require.stations.to.kn |
| 74c40 | 6f 77 20 74 68 65 20 53 53 49 44 2e 00 53 65 6e 74 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 20 | ow.the.SSID..Sent.to.the.client. |
| 74c60 | 28 4c 41 43 29 20 69 6e 20 74 68 65 20 48 6f 73 74 2d 4e 61 6d 65 20 61 74 74 72 69 62 75 74 65 | (LAC).in.the.Host-Name.attribute |
| 74c80 | 00 53 65 72 69 61 6c 20 43 6f 6e 73 6f 6c 65 00 53 65 72 69 61 6c 20 69 6e 74 65 72 66 61 63 65 | .Serial.Console.Serial.interface |
| 74ca0 | 73 20 63 61 6e 20 62 65 20 61 6e 79 20 69 6e 74 65 72 66 61 63 65 20 77 68 69 63 68 20 69 73 20 | s.can.be.any.interface.which.is. |
| 74cc0 | 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 65 20 43 50 55 20 6f 72 | directly.connected.to.the.CPU.or |
| 74ce0 | 20 63 68 69 70 73 65 74 20 28 6d 6f 73 74 6c 79 20 6b 6e 6f 77 6e 20 61 73 20 61 20 74 74 79 53 | .chipset.(mostly.known.as.a.ttyS |
| 74d00 | 20 69 6e 74 65 72 66 61 63 65 20 69 6e 20 4c 69 6e 75 78 29 20 6f 72 20 61 6e 79 20 6f 74 68 65 | .interface.in.Linux).or.any.othe |
| 74d20 | 72 20 55 53 42 20 74 6f 20 73 65 72 69 61 6c 20 63 6f 6e 76 65 72 74 65 72 20 28 50 72 6f 6c 69 | r.USB.to.serial.converter.(Proli |
| 74d40 | 66 69 63 20 50 4c 32 33 30 33 20 6f 72 20 46 54 44 49 20 46 54 32 33 32 2f 46 54 34 32 33 32 20 | fic.PL2303.or.FTDI.FT232/FT4232. |
| 74d60 | 62 61 73 65 64 20 63 68 69 70 73 29 2e 00 53 65 72 76 65 72 00 53 65 72 76 65 72 20 43 65 72 74 | based.chips)..Server.Server.Cert |
| 74d80 | 69 66 69 63 61 74 65 00 53 65 72 76 65 72 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 53 65 72 | ificate.Server.Configuration.Ser |
| 74da0 | 76 65 72 20 53 69 64 65 00 53 65 72 76 65 72 20 53 69 64 65 3a 00 53 65 72 76 65 72 20 62 72 69 | ver.Side.Server.Side:.Server.bri |
| 74dc0 | 64 67 65 00 53 65 72 76 65 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 53 65 72 76 65 72 20 | dge.Server.configuration.Server. |
| 74de0 | 6e 61 6d 65 73 20 66 6f 72 20 76 69 72 74 75 61 6c 20 68 6f 73 74 73 20 69 74 20 63 61 6e 20 62 | names.for.virtual.hosts.it.can.b |
| 74e00 | 65 20 65 78 61 63 74 2c 20 77 69 6c 64 63 61 72 64 20 6f 72 20 72 65 67 65 78 2e 00 53 65 72 76 | e.exact,.wildcard.or.regex..Serv |
| 74e20 | 65 72 3a 00 53 65 72 76 69 63 65 00 53 65 72 76 69 63 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | er:.Service.Service.configuratio |
| 74e40 | 6e 20 69 73 20 72 65 73 70 6f 6e 73 69 62 6c 65 20 66 6f 72 20 62 69 6e 64 69 6e 67 20 74 6f 20 | n.is.responsible.for.binding.to. |
| 74e60 | 61 20 73 70 65 63 69 66 69 63 20 70 6f 72 74 2c 20 77 68 69 6c 65 20 74 68 65 20 62 61 63 6b 65 | a.specific.port,.while.the.backe |
| 74e80 | 6e 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 64 65 74 65 72 6d 69 6e 65 73 20 74 68 65 20 | nd.configuration.determines.the. |
| 74ea0 | 74 79 70 65 20 6f 66 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 74 6f 20 62 65 20 61 70 70 | type.of.load.balancing.to.be.app |
| 74ec0 | 6c 69 65 64 20 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 72 65 61 6c 20 73 65 72 76 | lied.and.specifies.the.real.serv |
| 74ee0 | 65 72 73 20 74 6f 20 62 65 20 75 74 69 6c 69 7a 65 64 2e 00 53 65 74 20 42 46 44 20 70 65 65 72 | ers.to.be.utilized..Set.BFD.peer |
| 74f00 | 20 49 50 76 34 20 61 64 64 72 65 73 73 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 00 53 65 | .IPv4.address.or.IPv6.address.Se |
| 74f20 | 74 20 42 47 50 20 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 20 74 6f 20 65 78 61 63 74 6c 79 20 | t.BGP.community-list.to.exactly. |
| 74f40 | 6d 61 74 63 68 2e 00 53 65 74 20 42 47 50 20 6c 6f 63 61 6c 20 70 72 65 66 65 72 65 6e 63 65 20 | match..Set.BGP.local.preference. |
| 74f60 | 61 74 74 72 69 62 75 74 65 2e 00 53 65 74 20 42 47 50 20 6f 72 69 67 69 6e 20 63 6f 64 65 2e 00 | attribute..Set.BGP.origin.code.. |
| 74f80 | 53 65 74 20 42 47 50 20 6f 72 69 67 69 6e 61 74 6f 72 20 49 44 20 61 74 74 72 69 62 75 74 65 2e | Set.BGP.originator.ID.attribute. |
| 74fa0 | 00 53 65 74 20 42 47 50 20 77 65 69 67 68 74 20 61 74 74 72 69 62 75 74 65 00 53 65 74 20 44 4e | .Set.BGP.weight.attribute.Set.DN |
| 74fc0 | 41 54 20 72 75 6c 65 20 32 30 20 74 6f 20 6f 6e 6c 79 20 4e 41 54 20 55 44 50 20 70 61 63 6b 65 | AT.rule.20.to.only.NAT.UDP.packe |
| 74fe0 | 74 73 00 53 65 74 20 49 50 20 66 72 61 67 6d 65 6e 74 20 6d 61 74 63 68 2c 20 77 68 65 72 65 3a | ts.Set.IP.fragment.match,.where: |
| 75000 | 00 53 65 74 20 49 50 53 65 63 20 69 6e 62 6f 75 6e 64 20 6d 61 74 63 68 20 63 72 69 74 65 72 69 | .Set.IPSec.inbound.match.criteri |
| 75020 | 61 73 2c 20 77 68 65 72 65 3a 00 53 65 74 20 4f 53 50 46 20 65 78 74 65 72 6e 61 6c 20 6d 65 74 | as,.where:.Set.OSPF.external.met |
| 75040 | 72 69 63 2d 74 79 70 65 2e 00 53 65 74 20 53 4e 41 54 20 72 75 6c 65 20 32 30 20 74 6f 20 6f 6e | ric-type..Set.SNAT.rule.20.to.on |
| 75060 | 6c 79 20 4e 41 54 20 54 43 50 20 61 6e 64 20 55 44 50 20 70 61 63 6b 65 74 73 00 53 65 74 20 53 | ly.NAT.TCP.and.UDP.packets.Set.S |
| 75080 | 4e 41 54 20 72 75 6c 65 20 32 30 20 74 6f 20 6f 6e 6c 79 20 4e 41 54 20 70 61 63 6b 65 74 73 20 | NAT.rule.20.to.only.NAT.packets. |
| 750a0 | 61 72 72 69 76 69 6e 67 20 66 72 6f 6d 20 74 68 65 20 31 39 32 2e 30 2e 32 2e 30 2f 32 34 20 6e | arriving.from.the.192.0.2.0/24.n |
| 750c0 | 65 74 77 6f 72 6b 00 53 65 74 20 53 4e 41 54 20 72 75 6c 65 20 33 30 20 74 6f 20 6f 6e 6c 79 20 | etwork.Set.SNAT.rule.30.to.only. |
| 750e0 | 4e 41 54 20 70 61 63 6b 65 74 73 20 61 72 72 69 76 69 6e 67 20 66 72 6f 6d 20 74 68 65 20 32 30 | NAT.packets.arriving.from.the.20 |
| 75100 | 33 2e 30 2e 31 31 33 2e 30 2f 32 34 20 6e 65 74 77 6f 72 6b 20 77 69 74 68 20 61 20 73 6f 75 72 | 3.0.113.0/24.network.with.a.sour |
| 75120 | 63 65 20 70 6f 72 74 20 6f 66 20 38 30 20 61 6e 64 20 34 34 33 00 53 65 74 20 53 53 4c 20 63 65 | ce.port.of.80.and.443.Set.SSL.ce |
| 75140 | 72 74 65 66 69 63 61 74 65 20 3c 6e 61 6d 65 3e 20 66 6f 72 20 73 65 72 76 69 63 65 20 3c 6e 61 | rteficate.<name>.for.service.<na |
| 75160 | 6d 65 3e 00 53 65 74 20 53 53 4c 20 63 65 72 74 69 66 69 63 61 74 65 20 3c 6e 61 6d 65 3e 20 66 | me>.Set.SSL.certificate.<name>.f |
| 75180 | 6f 72 20 73 65 72 76 69 63 65 20 3c 6e 61 6d 65 3e 00 53 65 74 20 54 43 50 2d 4d 53 53 20 28 6d | or.service.<name>.Set.TCP-MSS.(m |
| 751a0 | 61 78 69 6d 75 6d 20 73 65 67 6d 65 6e 74 20 73 69 7a 65 29 20 66 6f 72 20 74 68 65 20 63 6f 6e | aximum.segment.size).for.the.con |
| 751c0 | 6e 65 63 74 69 6f 6e 00 53 65 74 20 54 54 4c 20 74 6f 20 33 30 30 20 73 65 63 6f 6e 64 73 00 53 | nection.Set.TTL.to.300.seconds.S |
| 751e0 | 65 74 20 56 69 72 74 75 61 6c 20 54 75 6e 6e 65 6c 20 49 6e 74 65 72 66 61 63 65 00 53 65 74 20 | et.Virtual.Tunnel.Interface.Set. |
| 75200 | 61 20 63 6f 6e 74 61 69 6e 65 72 20 64 65 73 63 72 69 70 74 69 6f 6e 00 53 65 74 20 61 20 64 65 | a.container.description.Set.a.de |
| 75220 | 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 73 68 61 70 65 72 2e 00 53 65 74 20 61 20 | scription.for.the.shaper..Set.a. |
| 75240 | 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 6e 64 2f 6f 72 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 | destination.and/or.source.addres |
| 75260 | 73 2e 20 41 63 63 65 70 74 65 64 20 69 6e 70 75 74 20 66 6f 72 20 69 70 76 34 3a 00 53 65 74 20 | s..Accepted.input.for.ipv4:.Set. |
| 75280 | 61 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 6e 64 2f 6f 72 20 73 6f 75 72 63 65 20 70 6f 72 74 | a.destination.and/or.source.port |
| 752a0 | 2e 20 41 63 63 65 70 74 65 64 20 69 6e 70 75 74 3a 00 53 65 74 20 61 20 68 75 6d 61 6e 20 72 65 | ..Accepted.input:.Set.a.human.re |
| 752c0 | 61 64 61 62 6c 65 2c 20 64 65 73 63 72 69 70 74 69 76 65 20 61 6c 69 61 73 20 66 6f 72 20 74 68 | adable,.descriptive.alias.for.th |
| 752e0 | 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 41 6c 69 61 73 20 69 73 20 75 73 65 64 20 62 79 20 | is.connection..Alias.is.used.by. |
| 75300 | 65 2e 67 2e 20 74 68 65 20 3a 6f 70 63 6d 64 3a 60 73 68 6f 77 20 69 6e 74 65 72 66 61 63 65 73 | e.g..the.:opcmd:`show.interfaces |
| 75320 | 60 20 63 6f 6d 6d 61 6e 64 20 6f 72 20 53 4e 4d 50 20 62 61 73 65 64 20 6d 6f 6e 69 74 6f 72 69 | `.command.or.SNMP.based.monitori |
| 75340 | 6e 67 20 74 6f 6f 6c 73 2e 00 53 65 74 20 61 20 6c 69 6d 69 74 20 6f 6e 20 74 68 65 20 6d 61 78 | ng.tools..Set.a.limit.on.the.max |
| 75360 | 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 63 6f 6e 63 75 72 72 65 6e 74 20 6c 6f 67 67 65 64 | imum.number.of.concurrent.logged |
| 75380 | 2d 69 6e 20 75 73 65 72 73 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 00 53 65 74 20 61 20 6d | -in.users.on.the.system..Set.a.m |
| 753a0 | 65 61 6e 69 6e 67 66 75 6c 20 64 65 73 63 72 69 70 74 69 6f 6e 2e 00 53 65 74 20 61 20 6e 61 6d | eaningful.description..Set.a.nam |
| 753c0 | 65 64 20 61 70 69 20 6b 65 79 2e 20 45 76 65 72 79 20 6b 65 79 20 68 61 73 20 74 68 65 20 73 61 | ed.api.key..Every.key.has.the.sa |
| 753e0 | 6d 65 2c 20 66 75 6c 6c 20 70 65 72 6d 69 73 73 69 6f 6e 73 20 6f 6e 20 74 68 65 20 73 79 73 74 | me,.full.permissions.on.the.syst |
| 75400 | 65 6d 2e 00 53 65 74 20 61 20 72 75 6c 65 20 64 65 73 63 72 69 70 74 69 6f 6e 2e 00 53 65 74 20 | em..Set.a.rule.description..Set. |
| 75420 | 61 20 73 70 65 63 69 66 69 63 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6d 61 72 6b 2e 00 53 65 74 20 | a.specific.connection.mark..Set. |
| 75440 | 61 20 73 70 65 63 69 66 69 63 20 70 61 63 6b 65 74 20 6d 61 72 6b 20 76 61 6c 75 65 2e 00 53 65 | a.specific.packet.mark.value..Se |
| 75460 | 74 20 61 20 73 70 65 63 69 66 69 63 20 70 61 63 6b 65 74 20 6d 61 72 6b 2e 00 53 65 74 20 61 20 | t.a.specific.packet.mark..Set.a. |
| 75480 | 73 70 65 63 69 66 69 63 20 76 61 6c 75 65 20 6f 66 20 44 69 66 66 65 72 65 6e 74 69 61 74 65 64 | specific.value.of.Differentiated |
| 754a0 | 20 53 65 72 76 69 63 65 73 20 43 6f 64 65 70 6f 69 6e 74 20 28 44 53 43 50 29 2e 00 53 65 74 20 | .Services.Codepoint.(DSCP)..Set. |
| 754c0 | 61 63 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 72 6f 75 74 65 2d 6d 61 70 20 70 6f 6c 69 63 79 2e | action.for.the.route-map.policy. |
| 754e0 | 00 53 65 74 20 61 63 74 69 6f 6e 20 74 6f 20 74 61 6b 65 20 6f 6e 20 65 6e 74 72 69 65 73 20 6d | .Set.action.to.take.on.entries.m |
| 75500 | 61 74 63 68 69 6e 67 20 74 68 69 73 20 72 75 6c 65 2e 00 53 65 74 20 61 6e 20 3a 61 62 62 72 3a | atching.this.rule..Set.an.:abbr: |
| 75520 | 60 41 20 28 41 64 64 72 65 73 73 29 60 20 72 65 63 6f 72 64 2e 20 53 75 70 70 6f 72 74 73 20 60 | `A.(Address)`.record..Supports.` |
| 75540 | 60 40 60 60 20 61 6e 64 20 60 60 61 6e 79 60 60 20 6b 65 79 77 6f 72 64 73 2e 00 53 65 74 20 61 | `@``.and.``any``.keywords..Set.a |
| 75560 | 6e 20 3a 61 62 62 72 3a 60 41 41 41 41 20 28 49 50 76 36 20 41 64 64 72 65 73 73 29 60 20 72 65 | n.:abbr:`AAAA.(IPv6.Address)`.re |
| 75580 | 63 6f 72 64 2e 20 53 75 70 70 6f 72 74 73 20 60 60 40 60 60 20 61 6e 64 20 60 60 61 6e 79 60 60 | cord..Supports.``@``.and.``any`` |
| 755a0 | 20 6b 65 79 77 6f 72 64 73 2e 00 53 65 74 20 61 6e 20 3a 61 62 62 72 3a 60 43 4e 41 4d 45 20 28 | .keywords..Set.an.:abbr:`CNAME.( |
| 755c0 | 43 61 6e 6f 6e 69 63 61 6c 20 6e 61 6d 65 29 60 20 72 65 63 6f 72 64 2e 20 53 75 70 70 6f 72 74 | Canonical.name)`.record..Support |
| 755e0 | 73 20 60 60 40 60 60 20 6b 65 79 77 6f 72 64 2e 00 53 65 74 20 61 6e 20 3a 61 62 62 72 3a 60 4e | s.``@``.keyword..Set.an.:abbr:`N |
| 75600 | 41 50 54 52 20 28 4e 61 6d 69 6e 67 20 61 75 74 68 6f 72 69 74 79 20 70 6f 69 6e 74 65 72 29 60 | APTR.(Naming.authority.pointer)` |
| 75620 | 20 72 65 63 6f 72 64 2e 20 53 75 70 70 6f 72 74 73 20 60 60 40 60 60 20 6b 65 79 77 6f 72 64 2e | .record..Supports.``@``.keyword. |
| 75640 | 20 4e 41 50 54 52 20 72 65 63 6f 72 64 73 20 73 75 70 70 6f 72 74 20 74 68 65 20 66 6f 6c 6c 6f | .NAPTR.records.support.the.follo |
| 75660 | 77 69 6e 67 20 6f 70 74 69 6f 6e 73 3a 00 53 65 74 20 61 6e 20 3a 61 62 62 72 3a 60 4e 53 20 28 | wing.options:.Set.an.:abbr:`NS.( |
| 75680 | 4e 61 6d 65 73 65 72 76 65 72 29 60 20 72 65 63 6f 72 64 2e 00 53 65 74 20 61 6e 20 3a 61 62 62 | Nameserver)`.record..Set.an.:abb |
| 756a0 | 72 3a 60 50 54 52 20 28 50 6f 69 6e 74 65 72 20 72 65 63 6f 72 64 29 60 20 72 65 63 6f 72 64 2e | r:`PTR.(Pointer.record)`.record. |
| 756c0 | 20 53 75 70 70 6f 72 74 73 20 60 60 40 60 60 20 6b 65 79 77 6f 72 64 2e 00 53 65 74 20 61 6e 20 | .Supports.``@``.keyword..Set.an. |
| 756e0 | 3a 61 62 62 72 3a 60 53 50 46 20 28 53 65 6e 64 65 72 20 70 6f 6c 69 63 79 20 66 72 61 6d 65 77 | :abbr:`SPF.(Sender.policy.framew |
| 75700 | 6f 72 6b 29 60 20 72 65 63 6f 72 64 2e 20 53 75 70 70 6f 72 74 73 20 60 60 40 60 60 20 6b 65 79 | ork)`.record..Supports.``@``.key |
| 75720 | 77 6f 72 64 2e 00 53 65 74 20 61 6e 20 3a 61 62 62 72 3a 60 53 52 56 20 28 53 65 72 76 69 63 65 | word..Set.an.:abbr:`SRV.(Service |
| 75740 | 29 60 20 72 65 63 6f 72 64 2e 20 53 75 70 70 6f 72 74 73 20 60 60 40 60 60 20 6b 65 79 77 6f 72 | )`.record..Supports.``@``.keywor |
| 75760 | 64 2e 00 53 65 74 20 61 6e 20 3a 61 62 62 72 3a 60 54 58 54 20 28 54 65 78 74 29 60 20 72 65 63 | d..Set.an.:abbr:`TXT.(Text)`.rec |
| 75780 | 6f 72 64 2e 20 53 75 70 70 6f 72 74 73 20 60 60 40 60 60 20 6b 65 79 77 6f 72 64 2e 00 53 65 74 | ord..Supports.``@``.keyword..Set |
| 757a0 | 20 61 6e 20 41 50 49 2d 4b 45 59 20 69 73 20 74 68 65 20 6d 69 6e 69 6d 61 6c 20 63 6f 6e 66 69 | .an.API-KEY.is.the.minimal.confi |
| 757c0 | 67 75 72 61 74 69 6f 6e 20 74 6f 20 67 65 74 20 61 20 77 6f 72 6b 69 6e 67 20 41 50 49 20 45 6e | guration.to.get.a.working.API.En |
| 757e0 | 64 70 6f 69 6e 74 2e 00 53 65 74 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 70 6f 72 74 2d 72 61 6e | dpoint..Set.an.external.port-ran |
| 75800 | 67 65 20 66 6f 72 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 70 6f 6f 6c 2c 20 74 68 65 20 64 65 | ge.for.the.external.pool,.the.de |
| 75820 | 66 61 75 6c 74 20 72 61 6e 67 65 20 69 73 20 31 30 32 34 2d 36 35 35 33 35 2e 20 4d 75 6c 74 69 | fault.range.is.1024-65535..Multi |
| 75840 | 70 6c 65 20 65 6e 74 72 69 65 73 20 63 61 6e 20 62 65 20 61 64 64 65 64 20 74 6f 20 74 68 65 20 | ple.entries.can.be.added.to.the. |
| 75860 | 73 61 6d 65 20 70 6f 6f 6c 2e 00 53 65 74 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 61 | same.pool..Set.authentication.ba |
| 75880 | 63 6b 65 6e 64 2e 20 54 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 61 75 74 68 65 6e 74 69 63 61 | ckend..The.configured.authentica |
| 758a0 | 74 69 6f 6e 20 62 61 63 6b 65 6e 64 20 69 73 20 75 73 65 64 20 66 6f 72 20 61 6c 6c 20 71 75 65 | tion.backend.is.used.for.all.que |
| 758c0 | 72 69 65 73 2e 00 53 65 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6d 61 72 6b 20 76 61 6c 75 65 2e | ries..Set.connection.mark.value. |
| 758e0 | 00 53 65 74 20 63 6f 6e 74 61 69 6e 65 72 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 6f 72 20 70 | .Set.container.capabilities.or.p |
| 75900 | 65 72 6d 69 73 73 69 6f 6e 73 2e 00 53 65 74 20 63 6f 6e 74 61 69 6e 65 72 20 73 79 73 63 74 6c | ermissions..Set.container.sysctl |
| 75920 | 20 76 61 6c 75 65 73 2e 00 53 65 74 20 63 75 73 74 6f 6d 20 48 54 54 50 20 68 65 61 64 65 72 73 | .values..Set.custom.HTTP.headers |
| 75940 | 20 74 6f 20 62 65 20 69 6e 63 6c 75 64 65 64 20 69 6e 20 61 6c 6c 20 72 65 73 70 6f 6e 73 65 73 | .to.be.included.in.all.responses |
| 75960 | 00 53 65 74 20 63 75 73 74 6f 6d 20 48 54 54 50 20 68 65 61 64 65 72 73 20 74 6f 20 62 65 20 69 | .Set.custom.HTTP.headers.to.be.i |
| 75980 | 6e 63 6c 75 64 65 64 20 69 6e 20 61 6c 6c 20 72 65 73 70 6f 6e 73 65 73 20 75 73 69 6e 67 20 74 | ncluded.in.all.responses.using.t |
| 759a0 | 68 65 20 62 61 63 6b 65 6e 64 00 53 65 74 20 64 65 6c 61 79 20 62 65 74 77 65 65 6e 20 67 72 61 | he.backend.Set.delay.between.gra |
| 759c0 | 74 75 69 74 6f 75 73 20 41 52 50 20 6d 65 73 73 61 67 65 73 20 73 65 6e 74 20 6f 6e 20 61 6e 20 | tuitous.ARP.messages.sent.on.an. |
| 759e0 | 69 6e 74 65 72 66 61 63 65 2e 00 53 65 74 20 64 65 6c 61 79 20 66 6f 72 20 73 65 63 6f 6e 64 20 | interface..Set.delay.for.second. |
| 75a00 | 73 65 74 20 6f 66 20 67 72 61 74 75 69 74 6f 75 73 20 41 52 50 73 20 61 66 74 65 72 20 74 72 61 | set.of.gratuitous.ARPs.after.tra |
| 75a20 | 6e 73 69 74 69 6f 6e 20 74 6f 20 4d 41 53 54 45 52 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 | nsition.to.MASTER..Set.descripti |
| 75a40 | 6f 6e 20 60 3c 74 65 78 74 3e 60 20 66 6f 72 20 64 79 6e 61 6d 69 63 20 44 4e 53 20 73 65 72 76 | on.`<text>`.for.dynamic.DNS.serv |
| 75a60 | 69 63 65 20 62 65 69 6e 67 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 53 65 74 20 64 65 73 63 72 69 | ice.being.configured..Set.descri |
| 75a80 | 70 74 69 6f 6e 20 66 6f 72 20 61 73 2d 70 61 74 68 2d 6c 69 73 74 20 70 6f 6c 69 63 79 2e 00 53 | ption.for.as-path-list.policy..S |
| 75aa0 | 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 | et.description.for.community-lis |
| 75ac0 | 74 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 65 78 | t.policy..Set.description.for.ex |
| 75ae0 | 74 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 64 65 73 63 | tcommunity-list.policy..Set.desc |
| 75b00 | 72 69 70 74 69 6f 6e 20 66 6f 72 20 6c 61 72 67 65 2d 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 | ription.for.large-community-list |
| 75b20 | 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 72 75 6c | .policy..Set.description.for.rul |
| 75b40 | 65 20 69 6e 20 49 50 76 36 20 70 72 65 66 69 78 2d 6c 69 73 74 2e 00 53 65 74 20 64 65 73 63 72 | e.in.IPv6.prefix-list..Set.descr |
| 75b60 | 69 70 74 69 6f 6e 20 66 6f 72 20 72 75 6c 65 20 69 6e 20 74 68 65 20 70 72 65 66 69 78 2d 6c 69 | iption.for.rule.in.the.prefix-li |
| 75b80 | 73 74 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 72 75 6c 65 2e 00 53 65 | st..Set.description.for.rule..Se |
| 75ba0 | 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 49 50 76 36 20 61 63 63 65 73 | t.description.for.the.IPv6.acces |
| 75bc0 | 73 20 6c 69 73 74 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 | s.list..Set.description.for.the. |
| 75be0 | 49 50 76 36 20 70 72 65 66 69 78 2d 6c 69 73 74 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 64 65 73 | IPv6.prefix-list.policy..Set.des |
| 75c00 | 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 61 63 63 65 73 73 20 6c 69 73 74 2e 00 53 65 | cription.for.the.access.list..Se |
| 75c20 | 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 70 72 65 66 69 78 2d 6c 69 73 | t.description.for.the.prefix-lis |
| 75c40 | 74 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 74 68 | t.policy..Set.description.for.th |
| 75c60 | 65 20 72 6f 75 74 65 2d 6d 61 70 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 | e.route-map.policy..Set.descript |
| 75c80 | 69 6f 6e 20 66 6f 72 20 74 68 65 20 72 75 6c 65 20 69 6e 20 74 68 65 20 72 6f 75 74 65 2d 6d 61 | ion.for.the.rule.in.the.route-ma |
| 75ca0 | 70 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 6f 66 20 74 68 65 | p.policy..Set.description.of.the |
| 75cc0 | 20 70 65 65 72 20 6f 72 20 70 65 65 72 20 67 72 6f 75 70 2e 00 53 65 74 20 64 65 73 63 72 69 70 | .peer.or.peer.group..Set.descrip |
| 75ce0 | 74 69 6f 6e 2e 00 53 65 74 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 6f 72 | tion..Set.destination.address.or |
| 75d00 | 20 70 72 65 66 69 78 20 74 6f 20 6d 61 74 63 68 2e 00 53 65 74 20 64 65 73 74 69 6e 61 74 69 6f | .prefix.to.match..Set.destinatio |
| 75d20 | 6e 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 6d 65 74 72 69 63 2e 20 41 64 64 20 6f | n.routing.protocol.metric..Add.o |
| 75d40 | 72 20 73 75 62 74 72 61 63 74 20 6d 65 74 72 69 63 2c 20 6f 72 20 73 65 74 20 6d 65 74 72 69 63 | r.subtract.metric,.or.set.metric |
| 75d60 | 20 76 61 6c 75 65 2e 00 53 65 74 20 65 74 68 31 20 74 6f 20 62 65 20 74 68 65 20 6c 69 73 74 65 | .value..Set.eth1.to.be.the.liste |
| 75d80 | 6e 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 74 68 65 20 44 48 43 50 76 36 20 72 65 | ning.interface.for.the.DHCPv6.re |
| 75da0 | 6c 61 79 2e 00 53 65 74 20 65 78 65 63 75 74 69 6f 6e 20 74 69 6d 65 20 69 6e 20 63 6f 6d 6d 6f | lay..Set.execution.time.in.commo |
| 75dc0 | 6e 20 63 72 6f 6e 5f 20 74 69 6d 65 20 66 6f 72 6d 61 74 2e 20 41 20 63 72 6f 6e 20 60 3c 73 70 | n.cron_.time.format..A.cron.`<sp |
| 75de0 | 65 63 3e 60 20 6f 66 20 60 60 33 30 20 2a 2f 36 20 2a 20 2a 20 2a 60 60 20 77 6f 75 6c 64 20 65 | ec>`.of.``30.*/6.*.*.*``.would.e |
| 75e00 | 78 65 63 75 74 65 20 74 68 65 20 60 3c 74 61 73 6b 3e 60 20 61 74 20 6d 69 6e 75 74 65 20 33 30 | xecute.the.`<task>`.at.minute.30 |
| 75e20 | 20 70 61 73 74 20 65 76 65 72 79 20 36 74 68 20 68 6f 75 72 2e 00 53 65 74 20 65 78 74 63 6f 6d | .past.every.6th.hour..Set.extcom |
| 75e40 | 6d 75 6e 69 74 79 20 62 61 6e 64 77 69 64 74 68 00 53 65 74 20 65 78 74 65 72 6e 61 6c 20 73 6f | munity.bandwidth.Set.external.so |
| 75e60 | 75 72 63 65 20 70 6f 72 74 20 6c 69 6d 69 74 73 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 61 6c | urce.port.limits.that.will.be.al |
| 75e80 | 6c 6f 63 61 74 65 64 20 74 6f 20 65 61 63 68 20 73 75 62 73 63 72 69 62 65 72 20 69 6e 64 69 76 | located.to.each.subscriber.indiv |
| 75ea0 | 69 64 75 61 6c 6c 79 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 32 30 | idually..The.default.value.is.20 |
| 75ec0 | 30 30 2e 00 53 65 74 20 68 6f 70 20 6c 69 6d 69 74 20 76 61 6c 75 65 2e 00 53 65 74 20 69 66 20 | 00..Set.hop.limit.value..Set.if. |
| 75ee0 | 61 6e 74 65 6e 6e 61 20 70 61 74 74 65 72 6e 20 64 6f 65 73 20 6e 6f 74 20 63 68 61 6e 67 65 20 | antenna.pattern.does.not.change. |
| 75f00 | 64 75 72 69 6e 67 20 74 68 65 20 6c 69 66 65 74 69 6d 65 20 6f 66 20 61 6e 20 61 73 73 6f 63 69 | during.the.lifetime.of.an.associ |
| 75f20 | 61 74 69 6f 6e 00 53 65 74 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 6d | ation.Set.inbound.interface.to.m |
| 75f40 | 61 74 63 68 2e 00 53 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 74 6f 20 61 20 7a 6f 6e 65 2e 20 | atch..Set.interfaces.to.a.zone.. |
| 75f60 | 41 20 7a 6f 6e 65 20 63 61 6e 20 68 61 76 65 20 6d 75 6c 74 69 70 6c 65 20 69 6e 74 65 72 66 61 | A.zone.can.have.multiple.interfa |
| 75f80 | 63 65 73 2e 20 42 75 74 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 6f 6e 6c 79 20 62 | ces..But.an.interface.can.only.b |
| 75fa0 | 65 20 61 20 6d 65 6d 62 65 72 20 69 6e 20 6f 6e 65 20 7a 6f 6e 65 2e 00 53 65 74 20 6c 6f 63 61 | e.a.member.in.one.zone..Set.loca |
| 75fc0 | 6c 20 3a 61 62 62 72 3a 60 41 53 4e 20 28 41 75 74 6f 6e 6f 6d 6f 75 73 20 53 79 73 74 65 6d 20 | l.:abbr:`ASN.(Autonomous.System. |
| 75fe0 | 4e 75 6d 62 65 72 29 60 20 74 68 61 74 20 74 68 69 73 20 72 6f 75 74 65 72 20 72 65 70 72 65 73 | Number)`.that.this.router.repres |
| 76000 | 65 6e 74 73 2e 20 54 68 69 73 20 69 73 20 61 20 61 20 6d 61 6e 64 61 74 6f 72 79 20 6f 70 74 69 | ents..This.is.a.a.mandatory.opti |
| 76020 | 6f 6e 21 00 53 65 74 20 6c 6f 63 61 6c 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 20 | on!.Set.local.autonomous.system. |
| 76040 | 6e 75 6d 62 65 72 20 74 68 61 74 20 74 68 69 73 20 72 6f 75 74 65 72 20 72 65 70 72 65 73 65 6e | number.that.this.router.represen |
| 76060 | 74 73 2e 20 54 68 69 73 20 69 73 20 61 20 6d 61 6e 64 61 74 6f 72 79 20 6f 70 74 69 6f 6e 21 00 | ts..This.is.a.mandatory.option!. |
| 76080 | 53 65 74 20 6d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 65 64 20 6f 6e 20 63 6f 6e 6e | Set.match.criteria.based.on.conn |
| 760a0 | 65 63 74 69 6f 6e 20 6d 61 72 6b 2e 00 53 65 74 20 6d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 | ection.mark..Set.match.criteria. |
| 760c0 | 62 61 73 65 64 20 6f 6e 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 2c 20 77 68 65 72 65 | based.on.destination.port,.where |
| 760e0 | 20 3c 6d 61 74 63 68 5f 63 72 69 74 65 72 69 61 3e 20 63 6f 75 6c 64 20 62 65 3a 00 53 65 74 20 | .<match_criteria>.could.be:.Set. |
| 76100 | 6d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 65 64 20 6f 6e 20 73 65 73 73 69 6f 6e 20 | match.criteria.based.on.session. |
| 76120 | 73 74 61 74 65 2e 00 53 65 74 20 6d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 65 64 20 | state..Set.match.criteria.based. |
| 76140 | 6f 6e 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 67 72 6f 75 70 73 2c | on.source.or.destination.groups, |
| 76160 | 20 77 68 65 72 65 20 3c 74 65 78 74 3e 20 77 6f 75 6c 64 20 62 65 20 74 68 65 20 67 72 6f 75 70 | .where.<text>.would.be.the.group |
| 76180 | 20 6e 61 6d 65 2f 69 64 65 6e 74 69 66 69 65 72 2e 20 50 72 65 70 65 6e 64 20 63 68 61 72 61 63 | .name/identifier..Prepend.charac |
| 761a0 | 74 65 72 20 27 21 27 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 | ter.'!'.for.inverted.matching.cr |
| 761c0 | 69 74 65 72 69 61 2e 00 53 65 74 20 6d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 65 64 | iteria..Set.match.criteria.based |
| 761e0 | 20 6f 6e 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 69 70 76 34 7c 69 | .on.source.or.destination.ipv4|i |
| 76200 | 70 76 36 20 61 64 64 72 65 73 73 2c 20 77 68 65 72 65 20 3c 6d 61 74 63 68 5f 63 72 69 74 65 72 | pv6.address,.where.<match_criter |
| 76220 | 69 61 3e 20 63 6f 75 6c 64 20 62 65 3a 00 53 65 74 20 6d 61 74 63 68 20 63 72 69 74 65 72 69 61 | ia>.could.be:.Set.match.criteria |
| 76240 | 20 62 61 73 65 64 20 6f 6e 20 74 63 70 20 66 6c 61 67 73 2e 20 41 6c 6c 6f 77 65 64 20 76 61 6c | .based.on.tcp.flags..Allowed.val |
| 76260 | 75 65 73 20 66 6f 72 20 54 43 50 20 66 6c 61 67 73 3a 20 53 59 4e 20 41 43 4b 20 46 49 4e 20 52 | ues.for.TCP.flags:.SYN.ACK.FIN.R |
| 76280 | 53 54 20 55 52 47 20 50 53 48 20 41 4c 4c 2e 20 57 68 65 6e 20 73 70 65 63 69 66 79 69 6e 67 20 | ST.URG.PSH.ALL..When.specifying. |
| 762a0 | 6d 6f 72 65 20 74 68 61 6e 20 6f 6e 65 20 66 6c 61 67 2c 20 66 6c 61 67 73 20 73 68 6f 75 6c 64 | more.than.one.flag,.flags.should |
| 762c0 | 20 62 65 20 63 6f 6d 6d 61 2d 73 65 70 61 72 61 74 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 | .be.comma-separated..For.example |
| 762e0 | 20 3a 20 76 61 6c 75 65 20 6f 66 20 27 53 59 4e 2c 21 41 43 4b 2c 21 46 49 4e 2c 21 52 53 54 27 | .:.value.of.'SYN,!ACK,!FIN,!RST' |
| 76300 | 20 77 69 6c 6c 20 6f 6e 6c 79 20 6d 61 74 63 68 20 70 61 63 6b 65 74 73 20 77 69 74 68 20 74 68 | .will.only.match.packets.with.th |
| 76320 | 65 20 53 59 4e 20 66 6c 61 67 20 73 65 74 2c 20 61 6e 64 20 74 68 65 20 41 43 4b 2c 20 46 49 4e | e.SYN.flag.set,.and.the.ACK,.FIN |
| 76340 | 20 61 6e 64 20 52 53 54 20 66 6c 61 67 73 20 75 6e 73 65 74 2e 00 53 65 74 20 6d 61 78 69 6d 75 | .and.RST.flags.unset..Set.maximu |
| 76360 | 6d 20 60 3c 73 69 7a 65 3e 60 20 6f 66 20 44 48 43 50 20 70 61 63 6b 65 74 73 20 69 6e 63 6c 75 | m.`<size>`.of.DHCP.packets.inclu |
| 76380 | 64 69 6e 67 20 72 65 6c 61 79 20 61 67 65 6e 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 20 49 66 | ding.relay.agent.information..If |
| 763a0 | 20 61 20 44 48 43 50 20 70 61 63 6b 65 74 20 73 69 7a 65 20 73 75 72 70 61 73 73 65 73 20 74 68 | .a.DHCP.packet.size.surpasses.th |
| 763c0 | 69 73 20 76 61 6c 75 65 20 69 74 20 77 69 6c 6c 20 62 65 20 66 6f 72 77 61 72 64 65 64 20 77 69 | is.value.it.will.be.forwarded.wi |
| 763e0 | 74 68 6f 75 74 20 61 70 70 65 6e 64 69 6e 67 20 72 65 6c 61 79 20 61 67 65 6e 74 20 69 6e 66 6f | thout.appending.relay.agent.info |
| 76400 | 72 6d 61 74 69 6f 6e 2e 20 52 61 6e 67 65 20 36 34 2e 2e 2e 31 34 30 30 2c 20 64 65 66 61 75 6c | rmation..Range.64...1400,.defaul |
| 76420 | 74 20 35 37 36 2e 00 53 65 74 20 6d 61 78 69 6d 75 6d 20 61 76 65 72 61 67 65 20 6d 61 74 63 68 | t.576..Set.maximum.average.match |
| 76440 | 69 6e 67 20 72 61 74 65 2e 20 46 6f 72 6d 61 74 20 66 6f 72 20 72 61 74 65 3a 20 69 6e 74 65 67 | ing.rate..Format.for.rate:.integ |
| 76460 | 65 72 2f 74 69 6d 65 5f 75 6e 69 74 2c 20 77 68 65 72 65 20 74 69 6d 65 5f 75 6e 69 74 20 63 6f | er/time_unit,.where.time_unit.co |
| 76480 | 75 6c 64 20 62 65 20 61 6e 79 20 6f 6e 65 20 6f 66 20 73 65 63 6f 6e 64 2c 20 6d 69 6e 75 74 65 | uld.be.any.one.of.second,.minute |
| 764a0 | 2c 20 68 6f 75 72 20 6f 72 20 64 61 79 2e 46 6f 72 20 65 78 61 6d 70 6c 65 20 31 2f 73 65 63 6f | ,.hour.or.day.For.example.1/seco |
| 764c0 | 6e 64 20 69 6d 70 6c 69 65 73 20 72 75 6c 65 20 74 6f 20 62 65 20 6d 61 74 63 68 65 64 20 61 74 | nd.implies.rule.to.be.matched.at |
| 764e0 | 20 61 6e 20 61 76 65 72 61 67 65 20 6f 66 20 6f 6e 63 65 20 70 65 72 20 73 65 63 6f 6e 64 2e 00 | .an.average.of.once.per.second.. |
| 76500 | 53 65 74 20 6d 61 78 69 6d 75 6d 20 68 6f 70 20 63 6f 75 6e 74 20 62 65 66 6f 72 65 20 70 61 63 | Set.maximum.hop.count.before.pac |
| 76520 | 6b 65 74 73 20 61 72 65 20 64 69 73 63 61 72 64 65 64 2c 20 64 65 66 61 75 6c 74 3a 20 31 30 00 | kets.are.discarded,.default:.10. |
| 76540 | 53 65 74 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 74 6f | Set.maximum.number.of.packets.to |
| 76560 | 20 61 6c 6f 77 20 69 6e 20 65 78 63 65 73 73 20 6f 66 20 72 61 74 65 2e 00 53 65 74 20 6d 69 6e | .alow.in.excess.of.rate..Set.min |
| 76580 | 69 6d 75 6d 20 74 69 6d 65 20 69 6e 74 65 72 76 61 6c 20 66 6f 72 20 72 65 66 72 65 73 68 69 6e | imum.time.interval.for.refreshin |
| 765a0 | 67 20 67 72 61 74 75 69 74 6f 75 73 20 41 52 50 73 20 77 68 69 6c 65 20 4d 41 53 54 45 52 2e 00 | g.gratuitous.ARPs.while.MASTER.. |
| 765c0 | 53 65 74 20 6d 6f 64 65 20 66 6f 72 20 49 50 73 65 63 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f | Set.mode.for.IPsec.authenticatio |
| 765e0 | 6e 20 62 65 74 77 65 65 6e 20 56 79 4f 53 20 61 6e 64 20 4c 32 54 50 20 63 6c 69 65 6e 74 73 2e | n.between.VyOS.and.L2TP.clients. |
| 76600 | 00 53 65 74 20 6e 75 6d 62 65 72 20 6f 66 20 67 72 61 74 75 69 74 6f 75 73 20 41 52 50 20 6d 65 | .Set.number.of.gratuitous.ARP.me |
| 76620 | 73 73 61 67 65 73 20 74 6f 20 73 65 6e 64 20 61 74 20 61 20 74 69 6d 65 20 61 66 74 65 72 20 74 | ssages.to.send.at.a.time.after.t |
| 76640 | 72 61 6e 73 69 74 69 6f 6e 20 74 6f 20 4d 41 53 54 45 52 2e 00 53 65 74 20 6e 75 6d 62 65 72 20 | ransition.to.MASTER..Set.number. |
| 76660 | 6f 66 20 67 72 61 74 75 69 74 6f 75 73 20 41 52 50 20 6d 65 73 73 61 67 65 73 20 74 6f 20 73 65 | of.gratuitous.ARP.messages.to.se |
| 76680 | 6e 64 20 61 74 20 61 20 74 69 6d 65 20 77 68 69 6c 65 20 4d 41 53 54 45 52 2e 00 53 65 74 20 6e | nd.at.a.time.while.MASTER..Set.n |
| 766a0 | 75 6d 62 65 72 20 6f 66 20 73 65 63 6f 6e 64 73 20 66 6f 72 20 48 65 6c 6c 6f 20 49 6e 74 65 72 | umber.of.seconds.for.Hello.Inter |
| 766c0 | 76 61 6c 20 74 69 6d 65 72 20 76 61 6c 75 65 2e 20 53 65 74 74 69 6e 67 20 74 68 69 73 20 76 61 | val.timer.value..Setting.this.va |
| 766e0 | 6c 75 65 2c 20 48 65 6c 6c 6f 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 65 | lue,.Hello.packet.will.be.sent.e |
| 76700 | 76 65 72 79 20 74 69 6d 65 72 20 76 61 6c 75 65 20 73 65 63 6f 6e 64 73 20 6f 6e 20 74 68 65 20 | very.timer.value.seconds.on.the. |
| 76720 | 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 76 61 6c 75 65 20 | specified.interface..This.value. |
| 76740 | 6d 75 73 74 20 62 65 20 74 68 65 20 73 61 6d 65 20 66 6f 72 20 61 6c 6c 20 72 6f 75 74 65 72 73 | must.be.the.same.for.all.routers |
| 76760 | 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 63 6f 6d 6d 6f 6e 20 6e 65 74 77 6f 72 6b 2e 20 54 | .attached.to.a.common.network..T |
| 76780 | 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 30 20 73 65 63 6f 6e 64 73 2e 20 | he.default.value.is.10.seconds.. |
| 767a0 | 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 35 35 33 35 | The.interval.range.is.1.to.65535 |
| 767c0 | 2e 00 53 65 74 20 6e 75 6d 62 65 72 20 6f 66 20 73 65 63 6f 6e 64 73 20 66 6f 72 20 72 6f 75 74 | ..Set.number.of.seconds.for.rout |
| 767e0 | 65 72 20 44 65 61 64 20 49 6e 74 65 72 76 61 6c 20 74 69 6d 65 72 20 76 61 6c 75 65 20 75 73 65 | er.Dead.Interval.timer.value.use |
| 76800 | 64 20 66 6f 72 20 57 61 69 74 20 54 69 6d 65 72 20 61 6e 64 20 49 6e 61 63 74 69 76 69 74 79 20 | d.for.Wait.Timer.and.Inactivity. |
| 76820 | 54 69 6d 65 72 2e 20 54 68 69 73 20 76 61 6c 75 65 20 6d 75 73 74 20 62 65 20 74 68 65 20 73 61 | Timer..This.value.must.be.the.sa |
| 76840 | 6d 65 20 66 6f 72 20 61 6c 6c 20 72 6f 75 74 65 72 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 | me.for.all.routers.attached.to.a |
| 76860 | 20 63 6f 6d 6d 6f 6e 20 6e 65 74 77 6f 72 6b 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c | .common.network..The.default.val |
| 76880 | 75 65 20 69 73 20 34 30 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 | ue.is.40.seconds..The.interval.r |
| 768a0 | 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 35 35 33 35 2e 00 53 65 74 20 70 61 63 6b 65 74 20 6d | ange.is.1.to.65535..Set.packet.m |
| 768c0 | 6f 64 69 66 69 63 61 74 69 6f 6e 73 3a 20 45 78 70 6c 69 63 69 74 6c 79 20 73 65 74 20 54 43 50 | odifications:.Explicitly.set.TCP |
| 768e0 | 20 4d 61 78 69 6d 75 6d 20 73 65 67 6d 65 6e 74 20 73 69 7a 65 20 76 61 6c 75 65 2e 00 53 65 74 | .Maximum.segment.size.value..Set |
| 76900 | 20 70 61 63 6b 65 74 20 6d 6f 64 69 66 69 63 61 74 69 6f 6e 73 3a 20 50 61 63 6b 65 74 20 44 69 | .packet.modifications:.Packet.Di |
| 76920 | 66 66 65 72 65 6e 74 69 61 74 65 64 20 53 65 72 76 69 63 65 73 20 43 6f 64 65 70 6f 69 6e 74 20 | fferentiated.Services.Codepoint. |
| 76940 | 28 44 53 43 50 29 00 53 65 74 20 70 61 72 61 6d 65 74 65 72 73 20 66 6f 72 20 6d 61 74 63 68 69 | (DSCP).Set.parameters.for.matchi |
| 76960 | 6e 67 20 72 65 63 65 6e 74 6c 79 20 73 65 65 6e 20 73 6f 75 72 63 65 73 2e 20 54 68 69 73 20 6d | ng.recently.seen.sources..This.m |
| 76980 | 61 74 63 68 20 63 6f 75 6c 64 20 62 65 20 75 73 65 64 20 62 79 20 73 65 65 74 69 6e 67 20 63 6f | atch.could.be.used.by.seeting.co |
| 769a0 | 75 6e 74 20 28 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 73 65 65 6e 20 6d 6f 72 65 20 74 68 | unt.(source.address.seen.more.th |
| 769c0 | 61 6e 20 3c 31 2d 32 35 35 3e 20 74 69 6d 65 73 29 20 61 6e 64 2f 6f 72 20 74 69 6d 65 20 28 73 | an.<1-255>.times).and/or.time.(s |
| 769e0 | 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 73 65 65 6e 20 69 6e 20 74 68 65 20 6c 61 73 74 20 3c | ource.address.seen.in.the.last.< |
| 76a00 | 30 2d 34 32 39 34 39 36 37 32 39 35 3e 20 73 65 63 6f 6e 64 73 29 2e 00 53 65 74 20 70 72 65 64 | 0-4294967295>.seconds)..Set.pred |
| 76a20 | 65 66 69 6e 65 64 20 73 68 61 72 65 64 20 73 65 63 72 65 74 20 70 68 72 61 73 65 2e 00 53 65 74 | efined.shared.secret.phrase..Set |
| 76a40 | 20 70 72 65 66 69 78 65 73 20 74 6f 20 74 61 62 6c 65 2e 00 53 65 74 20 70 72 6f 78 79 20 66 6f | .prefixes.to.table..Set.proxy.fo |
| 76a60 | 72 20 61 6c 6c 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 69 6e 69 74 69 61 74 65 64 20 62 79 20 56 | r.all.connections.initiated.by.V |
| 76a80 | 79 4f 53 2c 20 69 6e 63 6c 75 64 69 6e 67 20 48 54 54 50 2c 20 48 54 54 50 53 2c 20 61 6e 64 20 | yOS,.including.HTTP,.HTTPS,.and. |
| 76aa0 | 46 54 50 20 28 61 6e 6f 6e 79 6d 6f 75 73 20 66 74 70 29 2e 00 53 65 74 20 72 6f 75 74 65 20 74 | FTP.(anonymous.ftp)..Set.route.t |
| 76ac0 | 61 72 67 65 74 20 76 61 6c 75 65 20 69 6e 20 66 6f 72 6d 61 74 20 60 60 3c 30 2d 36 35 35 33 35 | arget.value.in.format.``<0-65535 |
| 76ae0 | 3a 30 2d 34 32 39 34 39 36 37 32 39 35 3e 60 60 20 6f 72 20 60 60 3c 49 50 3a 30 2d 36 35 35 33 | :0-4294967295>``.or.``<IP:0-6553 |
| 76b00 | 35 3e 60 60 2e 00 53 65 74 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 74 6f 20 66 6f 72 77 61 | 5>``..Set.routing.table.to.forwa |
| 76b20 | 72 64 20 70 61 63 6b 65 74 20 74 6f 2e 00 53 65 74 20 72 75 6c 65 20 61 63 74 69 6f 6e 20 74 6f | rd.packet.to..Set.rule.action.to |
| 76b40 | 20 64 72 6f 70 2e 00 53 65 74 20 73 65 72 76 69 63 65 20 74 6f 20 62 69 6e 64 20 6f 6e 20 49 50 | .drop..Set.service.to.bind.on.IP |
| 76b60 | 20 61 64 64 72 65 73 73 2c 20 62 79 20 64 65 66 61 75 6c 74 20 6c 69 73 74 65 6e 20 6f 6e 20 61 | .address,.by.default.listen.on.a |
| 76b80 | 6e 79 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 00 53 65 74 20 73 69 74 65 20 6f 66 20 6f 72 69 | ny.IPv4.and.IPv6.Set.site.of.ori |
| 76ba0 | 67 69 6e 20 76 61 6c 75 65 20 69 6e 20 66 6f 72 6d 61 74 20 60 60 3c 30 2d 36 35 35 33 35 3a 30 | gin.value.in.format.``<0-65535:0 |
| 76bc0 | 2d 34 32 39 34 39 36 37 32 39 35 3e 60 60 20 6f 72 20 60 60 3c 49 50 3a 30 2d 36 35 35 33 35 3e | -4294967295>``.or.``<IP:0-65535> |
| 76be0 | 60 60 2e 00 53 65 74 20 73 6f 6d 65 20 61 74 74 72 69 62 75 74 65 73 20 28 6c 69 6b 65 20 41 53 | ``..Set.some.attributes.(like.AS |
| 76c00 | 20 50 41 54 48 20 6f 72 20 43 6f 6d 6d 75 6e 69 74 79 20 76 61 6c 75 65 29 20 74 6f 20 61 64 76 | .PATH.or.Community.value).to.adv |
| 76c20 | 65 72 74 69 73 65 64 20 72 6f 75 74 65 73 20 74 6f 20 6e 65 69 67 68 62 6f 72 73 2e 00 53 65 74 | ertised.routes.to.neighbors..Set |
| 76c40 | 20 73 6f 6d 65 20 6d 65 74 72 69 63 20 74 6f 20 72 6f 75 74 65 73 20 6c 65 61 72 6e 65 64 20 66 | .some.metric.to.routes.learned.f |
| 76c60 | 72 6f 6d 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 6e 65 69 67 68 62 6f 72 2e 00 53 65 74 20 73 | rom.a.particular.neighbor..Set.s |
| 76c80 | 6f 75 72 63 65 20 49 50 2f 49 50 76 36 20 61 64 64 72 65 73 73 20 66 6f 72 20 72 6f 75 74 65 2e | ource.IP/IPv6.address.for.route. |
| 76ca0 | 00 53 65 74 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 72 20 70 72 65 66 69 78 20 74 6f | .Set.source.address.or.prefix.to |
| 76cc0 | 20 6d 61 74 63 68 2e 00 53 65 74 20 73 6f 75 72 63 65 2d 61 64 64 72 65 73 73 20 74 6f 20 79 6f | .match..Set.source-address.to.yo |
| 76ce0 | 75 72 20 6c 6f 63 61 6c 20 49 50 20 28 4c 41 4e 29 2e 00 53 65 74 20 74 61 67 20 76 61 6c 75 65 | ur.local.IP.(LAN)..Set.tag.value |
| 76d00 | 20 66 6f 72 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 2e 00 53 65 74 20 74 68 65 20 22 | .for.routing.protocol..Set.the." |
| 76d20 | 72 65 63 75 72 73 69 6f 6e 20 64 65 73 69 72 65 64 22 20 62 69 74 20 69 6e 20 72 65 71 75 65 73 | recursion.desired".bit.in.reques |
| 76d40 | 74 73 20 74 6f 20 74 68 65 20 75 70 73 74 72 65 61 6d 20 6e 61 6d 65 73 65 72 76 65 72 2e 00 53 | ts.to.the.upstream.nameserver..S |
| 76d60 | 65 74 20 74 68 65 20 3a 61 62 62 72 3a 60 44 52 20 28 44 65 73 69 67 6e 61 74 65 64 20 52 6f 75 | et.the.:abbr:`DR.(Designated.Rou |
| 76d80 | 74 65 72 29 60 20 50 72 69 6f 72 69 74 79 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 | ter)`.Priority.for.the.interface |
| 76da0 | 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 66 75 6c 20 74 6f 20 61 6c 6c 6f | ..This.command.is.useful.to.allo |
| 76dc0 | 77 20 74 68 65 20 75 73 65 72 20 74 6f 20 69 6e 66 6c 75 65 6e 63 65 20 77 68 61 74 20 6e 6f 64 | w.the.user.to.influence.what.nod |
| 76de0 | 65 20 62 65 63 6f 6d 65 73 20 74 68 65 20 44 52 20 66 6f 72 20 61 20 4c 41 4e 20 73 65 67 6d 65 | e.becomes.the.DR.for.a.LAN.segme |
| 76e00 | 6e 74 2e 00 53 65 74 20 74 68 65 20 3a 61 62 62 72 3a 60 4d 52 55 20 28 4d 61 78 69 6d 75 6d 20 | nt..Set.the.:abbr:`MRU.(Maximum. |
| 76e20 | 52 65 63 65 69 76 65 20 55 6e 69 74 29 60 20 74 6f 20 60 6d 72 75 60 2e 20 50 50 50 64 20 77 69 | Receive.Unit)`.to.`mru`..PPPd.wi |
| 76e40 | 6c 6c 20 61 73 6b 20 74 68 65 20 70 65 65 72 20 74 6f 20 73 65 6e 64 20 70 61 63 6b 65 74 73 20 | ll.ask.the.peer.to.send.packets. |
| 76e60 | 6f 66 20 6e 6f 20 6d 6f 72 65 20 74 68 61 6e 20 60 6d 72 75 60 20 62 79 74 65 73 2e 20 54 68 65 | of.no.more.than.`mru`.bytes..The |
| 76e80 | 20 76 61 6c 75 65 20 6f 66 20 60 6d 72 75 60 20 6d 75 73 74 20 62 65 20 62 65 74 77 65 65 6e 20 | .value.of.`mru`.must.be.between. |
| 76ea0 | 31 32 38 20 61 6e 64 20 31 36 33 38 34 2e 00 53 65 74 20 74 68 65 20 3a 61 62 62 72 3a 60 54 54 | 128.and.16384..Set.the.:abbr:`TT |
| 76ec0 | 4c 20 28 54 69 6d 65 2d 74 6f 2d 6c 69 76 65 29 60 20 66 6f 72 20 74 68 65 20 72 65 63 6f 72 64 | L.(Time-to-live)`.for.the.record |
| 76ee0 | 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 44 65 66 61 75 6c 74 20 69 73 20 33 30 30 20 73 65 63 6f | .in.seconds..Default.is.300.seco |
| 76f00 | 6e 64 73 2e 00 53 65 74 20 74 68 65 20 42 47 50 20 6e 65 78 74 68 6f 70 20 61 64 64 72 65 73 73 | nds..Set.the.BGP.nexthop.address |
| 76f20 | 20 74 6f 20 74 68 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 70 65 65 72 2e 20 46 6f 72 | .to.the.address.of.the.peer..For |
| 76f40 | 20 61 6e 20 69 6e 63 6f 6d 69 6e 67 20 72 6f 75 74 65 2d 6d 61 70 20 74 68 69 73 20 6d 65 61 6e | .an.incoming.route-map.this.mean |
| 76f60 | 73 20 74 68 65 20 69 70 20 61 64 64 72 65 73 73 20 6f 66 20 6f 75 72 20 70 65 65 72 20 69 73 20 | s.the.ip.address.of.our.peer.is. |
| 76f80 | 75 73 65 64 2e 20 46 6f 72 20 61 6e 20 6f 75 74 67 6f 69 6e 67 20 72 6f 75 74 65 2d 6d 61 70 20 | used..For.an.outgoing.route-map. |
| 76fa0 | 74 68 69 73 20 6d 65 61 6e 73 20 74 68 65 20 69 70 20 61 64 64 72 65 73 73 20 6f 66 20 6f 75 72 | this.means.the.ip.address.of.our |
| 76fc0 | 20 73 65 6c 66 20 69 73 20 75 73 65 64 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 74 68 65 20 70 | .self.is.used.to.establish.the.p |
| 76fe0 | 65 65 72 69 6e 67 20 77 69 74 68 20 6f 75 72 20 6e 65 69 67 68 62 6f 72 2e 00 53 65 74 20 74 68 | eering.with.our.neighbor..Set.th |
| 77000 | 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 6c 6f 63 61 6c 20 69 6e 74 65 72 66 | e.IP.address.of.the.local.interf |
| 77020 | 61 63 65 20 74 6f 20 62 65 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 74 75 6e 6e 65 6c 2e 00 53 | ace.to.be.used.for.the.tunnel..S |
| 77040 | 65 74 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 72 65 6d 6f 74 65 20 | et.the.IP.address.of.the.remote. |
| 77060 | 70 65 65 72 2e 20 49 74 20 6d 61 79 20 62 65 20 73 70 65 63 69 66 69 65 64 20 61 73 20 61 6e 20 | peer..It.may.be.specified.as.an. |
| 77080 | 49 50 76 34 20 61 64 64 72 65 73 73 20 6f 72 20 61 6e 20 49 50 76 36 20 61 64 64 72 65 73 73 2e | IPv4.address.or.an.IPv6.address. |
| 770a0 | 00 53 65 74 20 74 68 65 20 49 50 76 34 20 73 6f 75 72 63 65 20 76 61 6c 69 64 61 74 69 6f 6e 20 | .Set.the.IPv4.source.validation. |
| 770c0 | 6d 6f 64 65 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d | mode..The.following.system.param |
| 770e0 | 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 53 65 74 20 74 68 65 20 4d 4c | eter.will.be.altered:.Set.the.ML |
| 77100 | 44 20 6c 61 73 74 20 6d 65 6d 62 65 72 20 71 75 65 72 79 20 63 6f 75 6e 74 2e 20 54 68 65 20 64 | D.last.member.query.count..The.d |
| 77120 | 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 32 2e 00 53 65 74 20 74 68 65 20 4d 4c 44 20 6c | efault.value.is.2..Set.the.MLD.l |
| 77140 | 61 73 74 20 6d 65 6d 62 65 72 20 71 75 65 72 79 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 6d 69 6c | ast.member.query.interval.in.mil |
| 77160 | 6c 69 73 65 63 6f 6e 64 73 20 28 31 30 30 2d 36 35 35 33 35 30 30 29 2e 20 54 68 65 20 64 65 66 | liseconds.(100-6553500)..The.def |
| 77180 | 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 30 30 30 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 2e | ault.value.is.1000.milliseconds. |
| 771a0 | 00 53 65 74 20 74 68 65 20 4d 4c 44 20 71 75 65 72 79 20 72 65 73 70 6f 6e 73 65 20 74 69 6d 65 | .Set.the.MLD.query.response.time |
| 771c0 | 6f 75 74 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 20 28 31 30 30 2d 36 35 35 33 35 30 30 | out.in.milliseconds.(100-6553500 |
| 771e0 | 29 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 30 30 30 30 20 6d 69 | )..The.default.value.is.10000.mi |
| 77200 | 6c 6c 69 73 65 63 6f 6e 64 73 2e 00 53 65 74 20 74 68 65 20 4d 4c 44 20 76 65 72 73 69 6f 6e 20 | lliseconds..Set.the.MLD.version. |
| 77220 | 75 73 65 64 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 64 65 66 61 | used.on.this.interface..The.defa |
| 77240 | 75 6c 74 20 76 61 6c 75 65 20 69 73 20 32 2e 00 53 65 74 20 74 68 65 20 4d 61 78 69 6d 75 6d 20 | ult.value.is.2..Set.the.Maximum. |
| 77260 | 53 74 61 63 6b 20 44 65 70 74 68 20 73 75 70 70 6f 72 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 | Stack.Depth.supported.by.the.rou |
| 77280 | 74 65 72 2e 20 54 68 65 20 76 61 6c 75 65 20 64 65 70 65 6e 64 20 6f 66 20 74 68 65 20 4d 50 4c | ter..The.value.depend.of.the.MPL |
| 772a0 | 53 20 64 61 74 61 70 6c 61 6e 65 2e 00 53 65 74 20 74 68 65 20 50 49 4d 20 68 65 6c 6c 6f 20 61 | S.dataplane..Set.the.PIM.hello.a |
| 772c0 | 6e 64 20 68 6f 6c 64 20 69 6e 74 65 72 76 61 6c 20 66 6f 72 20 61 20 69 6e 74 65 72 66 61 63 65 | nd.hold.interval.for.a.interface |
| 772e0 | 2e 00 53 65 74 20 74 68 65 20 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 47 6c 6f 62 61 6c | ..Set.the.Segment.Routing.Global |
| 77300 | 20 42 6c 6f 63 6b 20 69 2e 65 2e 20 74 68 65 20 6c 61 62 65 6c 20 72 61 6e 67 65 20 75 73 65 64 | .Block.i.e..the.label.range.used |
| 77320 | 20 62 79 20 4d 50 4c 53 20 74 6f 20 73 74 6f 72 65 20 6c 61 62 65 6c 20 69 6e 20 74 68 65 20 4d | .by.MPLS.to.store.label.in.the.M |
| 77340 | 50 4c 53 20 46 49 42 20 66 6f 72 20 50 72 65 66 69 78 20 53 49 44 2e 20 4e 6f 74 65 20 74 68 61 | PLS.FIB.for.Prefix.SID..Note.tha |
| 77360 | 74 20 74 68 65 20 62 6c 6f 63 6b 20 73 69 7a 65 20 6d 61 79 20 6e 6f 74 20 65 78 63 65 65 64 20 | t.the.block.size.may.not.exceed. |
| 77380 | 36 35 35 33 35 2e 00 53 65 74 20 74 68 65 20 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 47 | 65535..Set.the.Segment.Routing.G |
| 773a0 | 6c 6f 62 61 6c 20 42 6c 6f 63 6b 20 69 2e 65 2e 20 74 68 65 20 6c 6f 77 20 6c 61 62 65 6c 20 72 | lobal.Block.i.e..the.low.label.r |
| 773c0 | 61 6e 67 65 20 75 73 65 64 20 62 79 20 4d 50 4c 53 20 74 6f 20 73 74 6f 72 65 20 6c 61 62 65 6c | ange.used.by.MPLS.to.store.label |
| 773e0 | 20 69 6e 20 74 68 65 20 4d 50 4c 53 20 46 49 42 20 66 6f 72 20 50 72 65 66 69 78 20 53 49 44 2e | .in.the.MPLS.FIB.for.Prefix.SID. |
| 77400 | 20 4e 6f 74 65 20 74 68 61 74 20 74 68 65 20 62 6c 6f 63 6b 20 73 69 7a 65 20 6d 61 79 20 6e 6f | .Note.that.the.block.size.may.no |
| 77420 | 74 20 65 78 63 65 65 64 20 36 35 35 33 35 2e 00 53 65 74 20 74 68 65 20 53 65 67 6d 65 6e 74 20 | t.exceed.65535..Set.the.Segment. |
| 77440 | 52 6f 75 74 69 6e 67 20 4c 6f 63 61 6c 20 42 6c 6f 63 6b 20 69 2e 65 2e 20 74 68 65 20 6c 61 62 | Routing.Local.Block.i.e..the.lab |
| 77460 | 65 6c 20 72 61 6e 67 65 20 75 73 65 64 20 62 79 20 4d 50 4c 53 20 74 6f 20 73 74 6f 72 65 20 6c | el.range.used.by.MPLS.to.store.l |
| 77480 | 61 62 65 6c 20 69 6e 20 74 68 65 20 4d 50 4c 53 20 46 49 42 20 66 6f 72 20 50 72 65 66 69 78 20 | abel.in.the.MPLS.FIB.for.Prefix. |
| 774a0 | 53 49 44 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 65 20 62 6c 6f 63 6b 20 73 69 7a 65 20 6d 61 | SID..Note.that.the.block.size.ma |
| 774c0 | 79 20 6e 6f 74 20 65 78 63 65 65 64 20 36 35 35 33 35 2e 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 | y.not.exceed.65535.Segment.Routi |
| 774e0 | 6e 67 20 4c 6f 63 61 6c 20 42 6c 6f 63 6b 2c 20 54 68 65 20 6e 65 67 61 74 69 76 65 20 63 6f 6d | ng.Local.Block,.The.negative.com |
| 77500 | 6d 61 6e 64 20 61 6c 77 61 79 73 20 75 6e 73 65 74 73 20 62 6f 74 68 2e 00 53 65 74 20 74 68 65 | mand.always.unsets.both..Set.the |
| 77520 | 20 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 4c 6f 63 61 6c 20 42 6c 6f 63 6b 20 69 2e 65 | .Segment.Routing.Local.Block.i.e |
| 77540 | 2e 20 74 68 65 20 6c 6f 77 20 6c 61 62 65 6c 20 72 61 6e 67 65 20 75 73 65 64 20 62 79 20 4d 50 | ..the.low.label.range.used.by.MP |
| 77560 | 4c 53 20 74 6f 20 73 74 6f 72 65 20 6c 61 62 65 6c 20 69 6e 20 74 68 65 20 4d 50 4c 53 20 46 49 | LS.to.store.label.in.the.MPLS.FI |
| 77580 | 42 20 66 6f 72 20 50 72 65 66 69 78 20 53 49 44 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 65 20 | B.for.Prefix.SID..Note.that.the. |
| 775a0 | 62 6c 6f 63 6b 20 73 69 7a 65 20 6d 61 79 20 6e 6f 74 20 65 78 63 65 65 64 20 36 35 35 33 35 2e | block.size.may.not.exceed.65535. |
| 775c0 | 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 4c 6f 63 61 6c 20 42 6c 6f 63 6b 2c 20 54 68 65 | Segment.Routing.Local.Block,.The |
| 775e0 | 20 6e 65 67 61 74 69 76 65 20 63 6f 6d 6d 61 6e 64 20 61 6c 77 61 79 73 20 75 6e 73 65 74 73 20 | .negative.command.always.unsets. |
| 77600 | 62 6f 74 68 2e 00 53 65 74 20 74 68 65 20 54 43 50 2d 4d 53 53 20 28 54 43 50 20 6d 61 78 69 6d | both..Set.the.TCP-MSS.(TCP.maxim |
| 77620 | 75 6d 20 73 65 67 6d 65 6e 74 20 73 69 7a 65 29 20 66 6f 72 20 74 68 65 20 63 6f 6e 6e 65 63 74 | um.segment.size).for.the.connect |
| 77640 | 69 6f 6e 2e 00 53 65 74 20 74 68 65 20 54 43 50 2d 4d 53 53 20 28 6d 61 78 69 6d 75 6d 20 73 65 | ion..Set.the.TCP-MSS.(maximum.se |
| 77660 | 67 6d 65 6e 74 20 73 69 7a 65 29 20 66 6f 72 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 00 53 | gment.size).for.the.connection.S |
| 77680 | 65 74 20 74 68 65 20 54 54 4c 20 28 54 69 6d 65 20 74 6f 20 4c 69 76 65 29 20 76 61 6c 75 65 2e | et.the.TTL.(Time.to.Live).value. |
| 776a0 | 00 53 65 74 20 74 68 65 20 55 73 65 72 20 49 44 20 6f 72 20 47 72 6f 75 70 20 49 44 20 6f 66 20 | .Set.the.User.ID.or.Group.ID.of. |
| 776c0 | 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 00 53 65 74 20 74 68 65 20 60 60 73 73 68 64 60 60 20 6c | the.container.Set.the.``sshd``.l |
| 776e0 | 6f 67 20 6c 65 76 65 6c 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 60 60 69 6e 66 6f 60 | og.level..The.default.is.``info` |
| 77700 | 60 2e 00 53 65 74 20 74 68 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 62 61 63 6b 65 6e | `..Set.the.address.of.the.backen |
| 77720 | 64 20 70 6f 72 74 00 53 65 74 20 74 68 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 62 61 | d.port.Set.the.address.of.the.ba |
| 77740 | 63 6b 65 6e 64 20 73 65 72 76 65 72 20 74 6f 20 77 68 69 63 68 20 74 68 65 20 69 6e 63 6f 6d 69 | ckend.server.to.which.the.incomi |
| 77760 | 6e 67 20 74 72 61 66 66 69 63 20 77 69 6c 6c 20 62 65 20 66 6f 72 77 61 72 64 65 64 00 53 65 74 | ng.traffic.will.be.forwarded.Set |
| 77780 | 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 74 79 70 65 20 66 6f 72 20 47 72 61 | .the.authentication.type.for.Gra |
| 777a0 | 70 68 51 4c 2c 20 64 65 66 61 75 6c 74 20 6f 70 74 69 6f 6e 20 69 73 20 6b 65 79 2e 20 41 76 61 | phQL,.default.option.is.key..Ava |
| 777c0 | 69 6c 61 62 6c 65 20 6f 70 74 69 6f 6e 73 20 61 72 65 3a 00 53 65 74 20 74 68 65 20 62 79 74 65 | ilable.options.are:.Set.the.byte |
| 777e0 | 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 4a 57 54 20 73 65 63 72 65 74 2e 20 44 65 66 61 75 | .length.of.the.JWT.secret..Defau |
| 77800 | 6c 74 20 69 73 20 33 32 2e 00 53 65 74 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 61 72 67 75 6d 65 | lt.is.32..Set.the.command.argume |
| 77820 | 6e 74 73 20 66 6f 72 20 61 20 63 6f 6e 74 61 69 6e 65 72 2e 00 53 65 74 20 74 68 65 20 64 65 66 | nts.for.a.container..Set.the.def |
| 77840 | 61 75 6c 74 20 56 52 52 50 20 76 65 72 73 69 6f 6e 20 74 6f 20 75 73 65 2e 20 54 68 69 73 20 64 | ault.VRRP.version.to.use..This.d |
| 77860 | 65 66 61 75 6c 74 73 20 74 6f 20 32 2c 20 62 75 74 20 49 50 76 36 20 69 6e 73 74 61 6e 63 65 73 | efaults.to.2,.but.IPv6.instances |
| 77880 | 20 77 69 6c 6c 20 61 6c 77 61 79 73 20 75 73 65 20 76 65 72 73 69 6f 6e 20 33 2e 00 53 65 74 20 | .will.always.use.version.3..Set. |
| 778a0 | 74 68 65 20 64 65 76 69 63 65 27 73 20 74 72 61 6e 73 6d 69 74 20 28 54 58 29 20 6b 65 79 2e 20 | the.device's.transmit.(TX).key.. |
| 778c0 | 54 68 69 73 20 6b 65 79 20 6d 75 73 74 20 62 65 20 61 20 68 65 78 20 73 74 72 69 6e 67 20 74 68 | This.key.must.be.a.hex.string.th |
| 778e0 | 61 74 20 69 73 20 31 36 2d 62 79 74 65 73 20 28 47 43 4d 2d 41 45 53 2d 31 32 38 29 20 6f 72 20 | at.is.16-bytes.(GCM-AES-128).or. |
| 77900 | 33 32 2d 62 79 74 65 73 20 28 47 43 4d 2d 41 45 53 2d 32 35 36 29 2e 00 53 65 74 20 74 68 65 20 | 32-bytes.(GCM-AES-256)..Set.the. |
| 77920 | 64 69 73 74 61 6e 63 65 20 66 6f 72 20 74 68 65 20 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 | distance.for.the.default.gateway |
| 77940 | 20 73 65 6e 74 20 62 79 20 74 68 65 20 44 48 43 50 20 73 65 72 76 65 72 2e 00 53 65 74 20 74 68 | .sent.by.the.DHCP.server..Set.th |
| 77960 | 65 20 64 69 73 74 61 6e 63 65 20 66 6f 72 20 74 68 65 20 64 65 66 61 75 6c 74 20 67 61 74 65 77 | e.distance.for.the.default.gatew |
| 77980 | 61 79 20 73 65 6e 74 20 62 79 20 74 68 65 20 50 50 50 6f 45 20 73 65 72 76 65 72 2e 00 53 65 74 | ay.sent.by.the.PPPoE.server..Set |
| 779a0 | 20 74 68 65 20 64 69 73 74 61 6e 63 65 20 66 6f 72 20 74 68 65 20 64 65 66 61 75 6c 74 20 67 61 | .the.distance.for.the.default.ga |
| 779c0 | 74 65 77 61 79 20 73 65 6e 74 20 62 79 20 74 68 65 20 53 53 54 50 20 73 65 72 76 65 72 2e 00 53 | teway.sent.by.the.SSTP.server..S |
| 779e0 | 65 74 20 74 68 65 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 74 79 70 65 20 6f 66 20 74 68 65 | et.the.encapsulation.type.of.the |
| 77a00 | 20 74 75 6e 6e 65 6c 2e 20 56 61 6c 69 64 20 76 61 6c 75 65 73 20 66 6f 72 20 65 6e 63 61 70 73 | .tunnel..Valid.values.for.encaps |
| 77a20 | 75 6c 61 74 69 6f 6e 20 61 72 65 3a 20 75 64 70 2c 20 69 70 2e 00 53 65 74 20 74 68 65 20 67 6c | ulation.are:.udp,.ip..Set.the.gl |
| 77a40 | 6f 62 61 6c 20 73 65 74 74 69 6e 67 20 66 6f 72 20 61 6e 20 65 73 74 61 62 6c 69 73 68 65 64 20 | obal.setting.for.an.established. |
| 77a60 | 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 53 65 74 20 74 68 65 20 67 6c 6f 62 61 6c 20 73 65 74 74 69 | connection..Set.the.global.setti |
| 77a80 | 6e 67 20 66 6f 72 20 69 6e 76 61 6c 69 64 20 70 61 63 6b 65 74 73 2e 00 53 65 74 20 74 68 65 20 | ng.for.invalid.packets..Set.the. |
| 77aa0 | 67 6c 6f 62 61 6c 20 73 65 74 74 69 6e 67 20 66 6f 72 20 72 65 6c 61 74 65 64 20 63 6f 6e 6e 65 | global.setting.for.related.conne |
| 77ac0 | 63 74 69 6f 6e 73 2e 00 53 65 74 20 74 68 65 20 68 6f 73 74 20 6e 61 6d 65 20 66 6f 72 20 61 20 | ctions..Set.the.host.name.for.a. |
| 77ae0 | 63 6f 6e 74 61 69 6e 65 72 2e 00 53 65 74 20 74 68 65 20 6c 69 66 65 74 69 6d 65 20 66 6f 72 20 | container..Set.the.lifetime.for. |
| 77b00 | 4a 57 54 20 74 6f 6b 65 6e 73 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 44 65 66 61 75 6c 74 20 69 | JWT.tokens.in.seconds..Default.i |
| 77b20 | 73 20 33 36 30 30 20 73 65 63 6f 6e 64 73 2e 00 53 65 74 20 74 68 65 20 6c 69 73 74 65 6e 20 70 | s.3600.seconds..Set.the.listen.p |
| 77b40 | 6f 72 74 20 6f 66 20 74 68 65 20 6c 6f 63 61 6c 20 41 50 49 2c 20 74 68 69 73 20 68 61 73 20 6e | ort.of.the.local.API,.this.has.n |
| 77b60 | 6f 20 65 66 66 65 63 74 20 6f 6e 20 74 68 65 20 77 65 62 73 65 72 76 65 72 2e 20 54 68 65 20 64 | o.effect.on.the.webserver..The.d |
| 77b80 | 65 66 61 75 6c 74 20 69 73 20 70 6f 72 74 20 38 30 38 30 00 53 65 74 20 74 68 65 20 6d 61 78 69 | efault.is.port.8080.Set.the.maxi |
| 77ba0 | 6d 75 6d 20 68 6f 70 20 60 3c 63 6f 75 6e 74 3e 60 20 62 65 66 6f 72 65 20 70 61 63 6b 65 74 73 | mum.hop.`<count>`.before.packets |
| 77bc0 | 20 61 72 65 20 64 69 73 63 61 72 64 65 64 2e 20 52 61 6e 67 65 20 30 2e 2e 2e 32 35 35 2c 20 64 | .are.discarded..Range.0...255,.d |
| 77be0 | 65 66 61 75 6c 74 20 31 30 2e 00 53 65 74 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6c 65 6e 67 74 | efault.10..Set.the.maximum.lengt |
| 77c00 | 68 20 6f 66 20 41 2d 4d 50 44 55 20 70 72 65 2d 45 4f 46 20 70 61 64 64 69 6e 67 20 74 68 61 74 | h.of.A-MPDU.pre-EOF.padding.that |
| 77c20 | 20 74 68 65 20 73 74 61 74 69 6f 6e 20 63 61 6e 20 72 65 63 65 69 76 65 00 53 65 74 20 74 68 65 | .the.station.can.receive.Set.the |
| 77c40 | 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 54 43 50 20 68 61 6c 66 2d 6f 70 65 6e | .maximum.number.of.TCP.half-open |
| 77c60 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 53 65 74 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 72 65 | .connections..Set.the.maximum.re |
| 77c80 | 71 75 65 73 74 20 62 6f 64 79 20 73 69 7a 65 20 69 6e 20 6d 65 67 61 62 79 74 65 73 2e 20 44 65 | quest.body.size.in.megabytes..De |
| 77ca0 | 66 61 75 6c 74 20 69 73 20 31 4d 42 2e 00 53 65 74 20 74 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 | fault.is.1MB..Set.the.name.of.th |
| 77cc0 | 65 20 53 53 4c 20 3a 61 62 62 72 3a 60 43 41 20 28 43 65 72 74 69 66 69 63 61 74 65 20 41 75 74 | e.SSL.:abbr:`CA.(Certificate.Aut |
| 77ce0 | 68 6f 72 69 74 79 29 60 20 50 4b 49 20 65 6e 74 72 79 20 75 73 65 64 20 66 6f 72 20 61 75 74 68 | hority)`.PKI.entry.used.for.auth |
| 77d00 | 65 6e 74 69 63 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 72 65 6d 6f 74 65 20 73 69 64 65 2e 20 49 | entication.of.the.remote.side..I |
| 77d20 | 66 20 61 6e 20 69 6e 74 65 72 6d 65 64 69 61 74 65 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 | f.an.intermediate.CA.certificate |
| 77d40 | 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 74 68 65 6e 20 61 6c 6c 20 70 61 72 65 6e 74 20 43 | .is.specified,.then.all.parent.C |
| 77d60 | 41 20 63 65 72 74 69 66 69 63 61 74 65 73 20 74 68 61 74 20 65 78 69 73 74 20 69 6e 20 74 68 65 | A.certificates.that.exist.in.the |
| 77d80 | 20 50 4b 49 2c 20 73 75 63 68 20 61 73 20 74 68 65 20 72 6f 6f 74 20 43 41 20 6f 72 20 61 64 64 | .PKI,.such.as.the.root.CA.or.add |
| 77da0 | 69 74 69 6f 6e 61 6c 20 69 6e 74 65 72 6d 65 64 69 61 74 65 20 43 41 73 2c 20 77 69 6c 6c 20 61 | itional.intermediate.CAs,.will.a |
| 77dc0 | 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 62 65 20 75 73 65 64 20 64 75 72 69 6e 67 20 63 65 72 74 | utomatically.be.used.during.cert |
| 77de0 | 69 66 69 63 61 74 65 20 76 61 6c 69 64 61 74 69 6f 6e 20 74 6f 20 65 6e 73 75 72 65 20 74 68 61 | ificate.validation.to.ensure.tha |
| 77e00 | 74 20 74 68 65 20 66 75 6c 6c 20 63 68 61 69 6e 20 6f 66 20 74 72 75 73 74 20 69 73 20 61 76 61 | t.the.full.chain.of.trust.is.ava |
| 77e20 | 69 6c 61 62 6c 65 2e 00 53 65 74 20 74 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 65 20 78 35 30 39 | ilable..Set.the.name.of.the.x509 |
| 77e40 | 20 63 6c 69 65 6e 74 20 6b 65 79 70 61 69 72 20 75 73 65 64 20 74 6f 20 61 75 74 68 65 6e 74 69 | .client.keypair.used.to.authenti |
| 77e60 | 63 61 74 65 20 61 67 61 69 6e 73 74 20 74 68 65 20 38 30 32 2e 31 78 20 73 79 73 74 65 6d 2e 20 | cate.against.the.802.1x.system.. |
| 77e80 | 41 6c 6c 20 70 61 72 65 6e 74 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 73 20 6f 66 20 74 68 | All.parent.CA.certificates.of.th |
| 77ea0 | 65 20 63 6c 69 65 6e 74 20 63 65 72 74 69 66 69 63 61 74 65 2c 20 73 75 63 68 20 61 73 20 69 6e | e.client.certificate,.such.as.in |
| 77ec0 | 74 65 72 6d 65 64 69 61 74 65 20 61 6e 64 20 72 6f 6f 74 20 43 41 73 2c 20 77 69 6c 6c 20 62 65 | termediate.and.root.CAs,.will.be |
| 77ee0 | 20 73 65 6e 74 20 61 73 20 70 61 72 74 20 6f 66 20 74 68 65 20 45 41 50 2d 54 4c 53 20 68 61 6e | .sent.as.part.of.the.EAP-TLS.han |
| 77f00 | 64 73 68 61 6b 65 2e 00 53 65 74 20 74 68 65 20 6e 61 74 69 76 65 20 56 4c 41 4e 20 49 44 20 66 | dshake..Set.the.native.VLAN.ID.f |
| 77f20 | 6c 61 67 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 57 68 65 6e 20 61 20 64 61 74 | lag.of.the.interface..When.a.dat |
| 77f40 | 61 20 70 61 63 6b 65 74 20 77 69 74 68 6f 75 74 20 61 20 56 4c 41 4e 20 74 61 67 20 65 6e 74 65 | a.packet.without.a.VLAN.tag.ente |
| 77f60 | 72 73 20 74 68 65 20 70 6f 72 74 2c 20 74 68 65 20 64 61 74 61 20 70 61 63 6b 65 74 20 77 69 6c | rs.the.port,.the.data.packet.wil |
| 77f80 | 6c 20 62 65 20 66 6f 72 63 65 64 20 74 6f 20 61 64 64 20 61 20 74 61 67 20 6f 66 20 61 20 73 70 | l.be.forced.to.add.a.tag.of.a.sp |
| 77fa0 | 65 63 69 66 69 63 20 76 6c 61 6e 20 69 64 2e 20 57 68 65 6e 20 74 68 65 20 76 6c 61 6e 20 69 64 | ecific.vlan.id..When.the.vlan.id |
| 77fc0 | 20 66 6c 61 67 20 66 6c 6f 77 73 20 6f 75 74 2c 20 74 68 65 20 74 61 67 20 6f 66 20 74 68 65 20 | .flag.flows.out,.the.tag.of.the. |
| 77fe0 | 76 6c 61 6e 20 69 64 20 77 69 6c 6c 20 62 65 20 73 74 72 69 70 70 65 64 00 53 65 74 20 74 68 65 | vlan.id.will.be.stripped.Set.the |
| 78000 | 20 6e 61 74 69 76 65 20 56 4c 41 4e 20 49 44 20 66 6c 61 67 20 6f 66 20 74 68 65 20 69 6e 74 65 | .native.VLAN.ID.flag.of.the.inte |
| 78020 | 72 66 61 63 65 2e 20 57 68 65 6e 20 61 20 64 61 74 61 20 70 61 63 6b 65 74 20 77 69 74 68 6f 75 | rface..When.a.data.packet.withou |
| 78040 | 74 20 61 20 56 4c 41 4e 20 74 61 67 20 65 6e 74 65 72 73 20 74 68 65 20 70 6f 72 74 2c 20 74 68 | t.a.VLAN.tag.enters.the.port,.th |
| 78060 | 65 20 64 61 74 61 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 68 61 76 65 20 61 20 73 70 65 63 69 66 | e.data.packet.will.have.a.specif |
| 78080 | 69 63 20 76 6c 61 6e 20 69 64 20 61 64 64 65 64 20 74 6f 20 69 74 2e 20 57 68 65 6e 20 74 68 65 | ic.vlan.id.added.to.it..When.the |
| 780a0 | 20 70 61 63 6b 65 74 20 66 6c 6f 77 73 20 6f 75 74 2c 20 74 68 65 20 6e 61 74 69 76 65 20 76 6c | .packet.flows.out,.the.native.vl |
| 780c0 | 61 6e 20 74 61 67 20 77 69 6c 6c 20 62 65 20 73 74 72 69 70 70 65 64 2e 00 53 65 74 20 74 68 65 | an.tag.will.be.stripped..Set.the |
| 780e0 | 20 6e 65 78 74 2d 68 6f 70 20 61 73 20 75 6e 63 68 61 6e 67 65 64 2e 20 50 61 73 73 20 74 68 72 | .next-hop.as.unchanged..Pass.thr |
| 78100 | 6f 75 67 68 20 74 68 65 20 72 6f 75 74 65 2d 6d 61 70 20 77 69 74 68 6f 75 74 20 63 68 61 6e 67 | ough.the.route-map.without.chang |
| 78120 | 69 6e 67 20 69 74 73 20 76 61 6c 75 65 00 53 65 74 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 | ing.its.value.Set.the.number.of. |
| 78140 | 54 43 50 20 6d 61 78 69 6d 75 6d 20 72 65 74 72 61 6e 73 6d 69 74 20 61 74 74 65 6d 70 74 73 2e | TCP.maximum.retransmit.attempts. |
| 78160 | 00 53 65 74 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 68 65 61 6c 74 68 20 63 68 65 63 6b 20 | .Set.the.number.of.health.check. |
| 78180 | 66 61 69 6c 75 72 65 73 20 62 65 66 6f 72 65 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 | failures.before.an.interface.is. |
| 781a0 | 6d 61 72 6b 65 64 20 61 73 20 75 6e 61 76 61 69 6c 61 62 6c 65 2c 20 72 61 6e 67 65 20 66 6f 72 | marked.as.unavailable,.range.for |
| 781c0 | 20 6e 75 6d 62 65 72 20 69 73 20 31 20 74 6f 20 31 30 2c 20 64 65 66 61 75 6c 74 20 31 2e 20 4f | .number.is.1.to.10,.default.1..O |
| 781e0 | 72 20 73 65 74 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 73 75 63 63 65 73 73 66 75 6c 20 68 | r.set.the.number.of.successful.h |
| 78200 | 65 61 6c 74 68 20 63 68 65 63 6b 73 20 62 65 66 6f 72 65 20 61 6e 20 69 6e 74 65 72 66 61 63 65 | ealth.checks.before.an.interface |
| 78220 | 20 69 73 20 61 64 64 65 64 20 62 61 63 6b 20 74 6f 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 | .is.added.back.to.the.interface. |
| 78240 | 70 6f 6f 6c 2c 20 72 61 6e 67 65 20 66 6f 72 20 6e 75 6d 62 65 72 20 69 73 20 31 20 74 6f 20 31 | pool,.range.for.number.is.1.to.1 |
| 78260 | 30 2c 20 64 65 66 61 75 6c 74 20 31 2e 00 53 65 74 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 | 0,.default.1..Set.the.number.of. |
| 78280 | 73 65 63 6f 6e 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 77 61 69 74 73 20 75 6e 74 69 6c 20 72 | seconds.the.router.waits.until.r |
| 782a0 | 65 74 72 79 69 6e 67 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 63 61 63 68 65 20 | etrying.to.connect.to.the.cache. |
| 782c0 | 73 65 72 76 65 72 2e 00 53 65 74 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 73 65 63 6f 6e 64 | server..Set.the.number.of.second |
| 782e0 | 73 20 74 68 65 20 72 6f 75 74 65 72 20 77 61 69 74 73 20 75 6e 74 69 6c 20 74 68 65 20 72 6f 75 | s.the.router.waits.until.the.rou |
| 78300 | 74 65 72 20 65 78 70 69 72 65 73 20 74 68 65 20 63 61 63 68 65 2e 00 53 65 74 20 74 68 65 20 6f | ter.expires.the.cache..Set.the.o |
| 78320 | 70 74 69 6f 6e 73 20 66 6f 72 20 74 68 69 73 20 70 75 62 6c 69 63 20 6b 65 79 2e 20 53 65 65 20 | ptions.for.this.public.key..See. |
| 78340 | 74 68 65 20 73 73 68 20 60 60 61 75 74 68 6f 72 69 7a 65 64 5f 6b 65 79 73 60 60 20 6d 61 6e 20 | the.ssh.``authorized_keys``.man. |
| 78360 | 70 61 67 65 20 66 6f 72 20 64 65 74 61 69 6c 73 20 6f 66 20 77 68 61 74 20 79 6f 75 20 63 61 6e | page.for.details.of.what.you.can |
| 78380 | 20 73 70 65 63 69 66 79 20 68 65 72 65 2e 20 54 6f 20 70 6c 61 63 65 20 61 20 60 60 22 60 60 20 | .specify.here..To.place.a.``"``. |
| 783a0 | 63 68 61 72 61 63 74 65 72 20 69 6e 20 74 68 65 20 6f 70 74 69 6f 6e 73 20 66 69 65 6c 64 2c 20 | character.in.the.options.field,. |
| 783c0 | 75 73 65 20 60 60 26 71 75 6f 74 3b 60 60 2c 20 66 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 66 72 | use.``"``,.for.example.``fr |
| 783e0 | 6f 6d 3d 26 71 75 6f 74 3b 31 30 2e 30 2e 30 2e 30 2f 32 34 26 71 75 6f 74 3b 60 60 20 74 6f 20 | om="10.0.0.0/24"``.to. |
| 78400 | 72 65 73 74 72 69 63 74 20 77 68 65 72 65 20 74 68 65 20 75 73 65 72 20 6d 61 79 20 63 6f 6e 6e | restrict.where.the.user.may.conn |
| 78420 | 65 63 74 20 66 72 6f 6d 20 77 68 65 6e 20 75 73 69 6e 67 20 74 68 69 73 20 6b 65 79 2e 00 53 65 | ect.from.when.using.this.key..Se |
| 78440 | 74 20 74 68 65 20 70 61 72 69 74 79 20 6f 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 63 6f 6e 73 | t.the.parity.option.for.the.cons |
| 78460 | 6f 6c 65 2e 20 49 66 20 75 6e 73 65 74 20 74 68 69 73 20 77 69 6c 6c 20 64 65 66 61 75 6c 74 20 | ole..If.unset.this.will.default. |
| 78480 | 74 6f 20 6e 6f 6e 65 2e 00 53 65 74 20 74 68 65 20 70 65 65 72 27 73 20 4d 41 43 20 61 64 64 72 | to.none..Set.the.peer's.MAC.addr |
| 784a0 | 65 73 73 00 53 65 74 20 74 68 65 20 70 65 65 72 27 73 20 6b 65 79 20 75 73 65 64 20 74 6f 20 72 | ess.Set.the.peer's.key.used.to.r |
| 784c0 | 65 63 65 69 76 65 20 28 52 58 29 20 74 72 61 66 66 69 63 00 53 65 74 20 74 68 65 20 70 65 65 72 | eceive.(RX).traffic.Set.the.peer |
| 784e0 | 2d 73 65 73 73 69 6f 6e 2d 69 64 2c 20 77 68 69 63 68 20 69 73 20 61 20 33 32 2d 62 69 74 20 69 | -session-id,.which.is.a.32-bit.i |
| 78500 | 6e 74 65 67 65 72 20 76 61 6c 75 65 20 61 73 73 69 67 6e 65 64 20 74 6f 20 74 68 65 20 73 65 73 | nteger.value.assigned.to.the.ses |
| 78520 | 73 69 6f 6e 20 62 79 20 74 68 65 20 70 65 65 72 2e 20 54 68 65 20 76 61 6c 75 65 20 75 73 65 64 | sion.by.the.peer..The.value.used |
| 78540 | 20 6d 75 73 74 20 6d 61 74 63 68 20 74 68 65 20 73 65 73 73 69 6f 6e 5f 69 64 20 76 61 6c 75 65 | .must.match.the.session_id.value |
| 78560 | 20 62 65 69 6e 67 20 75 73 65 64 20 61 74 20 74 68 65 20 70 65 65 72 2e 00 53 65 74 20 74 68 65 | .being.used.at.the.peer..Set.the |
| 78580 | 20 72 61 6e 67 65 20 6f 66 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 65 73 20 | .range.of.external.IP.addresses. |
| 785a0 | 66 6f 72 20 74 68 65 20 43 47 4e 41 54 20 70 6f 6f 6c 2e 00 53 65 74 20 74 68 65 20 72 61 6e 67 | for.the.CGNAT.pool..Set.the.rang |
| 785c0 | 65 20 6f 66 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 65 73 20 66 6f 72 20 74 | e.of.external.IP.addresses.for.t |
| 785e0 | 68 65 20 43 47 4e 41 54 20 70 6f 6f 6c 2e 20 54 68 65 20 73 65 71 75 65 6e 63 65 20 69 73 20 6f | he.CGNAT.pool..The.sequence.is.o |
| 78600 | 70 74 69 6f 6e 61 6c 3b 20 69 66 20 73 65 74 2c 20 61 20 6c 6f 77 65 72 20 76 61 6c 75 65 20 6d | ptional;.if.set,.a.lower.value.m |
| 78620 | 65 61 6e 73 20 68 69 67 68 65 72 20 70 72 69 6f 72 69 74 79 2e 00 53 65 74 20 74 68 65 20 72 61 | eans.higher.priority..Set.the.ra |
| 78640 | 6e 67 65 20 6f 66 20 69 6e 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 65 73 20 66 6f 72 | nge.of.internal.IP.addresses.for |
| 78660 | 20 74 68 65 20 43 47 4e 41 54 20 70 6f 6f 6c 2e 00 53 65 74 20 74 68 65 20 72 65 73 74 61 72 74 | .the.CGNAT.pool..Set.the.restart |
| 78680 | 20 62 65 68 61 76 69 6f 72 20 6f 66 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 2e 00 53 65 74 20 | .behavior.of.the.container..Set. |
| 786a0 | 74 68 65 20 72 6f 75 74 65 20 6d 65 74 72 69 63 2e 20 57 68 65 6e 20 75 73 65 64 20 77 69 74 68 | the.route.metric..When.used.with |
| 786c0 | 20 42 47 50 2c 20 73 65 74 20 74 68 65 20 42 47 50 20 61 74 74 72 69 62 75 74 65 20 4d 45 44 20 | .BGP,.set.the.BGP.attribute.MED. |
| 786e0 | 74 6f 20 61 20 73 70 65 63 69 66 69 63 20 76 61 6c 75 65 2e 20 55 73 65 20 60 60 2b 2f 2d 60 60 | to.a.specific.value..Use.``+/-`` |
| 78700 | 20 74 6f 20 61 64 64 20 6f 72 20 73 75 62 74 72 61 63 74 20 74 68 65 20 73 70 65 63 69 66 69 65 | .to.add.or.subtract.the.specifie |
| 78720 | 64 20 76 61 6c 75 65 20 74 6f 2f 66 72 6f 6d 20 74 68 65 20 65 78 69 73 74 69 6e 67 2f 4d 45 44 | d.value.to/from.the.existing/MED |
| 78740 | 2e 20 55 73 65 20 60 60 72 74 74 60 60 20 74 6f 20 73 65 74 20 74 68 65 20 4d 45 44 20 74 6f 20 | ..Use.``rtt``.to.set.the.MED.to. |
| 78760 | 74 68 65 20 72 6f 75 6e 64 20 74 72 69 70 20 74 69 6d 65 20 6f 72 20 60 60 2b 72 74 74 2f 2d 72 | the.round.trip.time.or.``+rtt/-r |
| 78780 | 74 74 60 60 20 74 6f 20 61 64 64 2f 73 75 62 74 72 61 63 74 20 74 68 65 20 72 6f 75 6e 64 20 74 | tt``.to.add/subtract.the.round.t |
| 787a0 | 72 69 70 20 74 69 6d 65 20 74 6f 2f 66 72 6f 6d 20 74 68 65 20 4d 45 44 2e 00 53 65 74 20 74 68 | rip.time.to/from.the.MED..Set.th |
| 787c0 | 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 74 6f 20 66 6f 72 77 61 72 64 20 70 61 63 6b 65 | e.routing.table.to.forward.packe |
| 787e0 | 74 20 77 69 74 68 2e 00 53 65 74 20 74 68 65 20 72 75 6c 65 20 66 6f 72 20 74 68 65 20 73 6f 75 | t.with..Set.the.rule.for.the.sou |
| 78800 | 72 63 65 20 70 6f 6f 6c 2e 00 53 65 74 20 74 68 65 20 72 75 6c 65 20 66 6f 72 20 74 68 65 20 74 | rce.pool..Set.the.rule.for.the.t |
| 78820 | 72 61 6e 73 6c 61 74 69 6f 6e 20 70 6f 6f 6c 2e 00 53 65 74 20 74 68 65 20 73 65 73 73 69 6f 6e | ranslation.pool..Set.the.session |
| 78840 | 20 69 64 2c 20 77 68 69 63 68 20 69 73 20 61 20 33 32 2d 62 69 74 20 69 6e 74 65 67 65 72 20 76 | .id,.which.is.a.32-bit.integer.v |
| 78860 | 61 6c 75 65 2e 20 55 6e 69 71 75 65 6c 79 20 69 64 65 6e 74 69 66 69 65 73 20 74 68 65 20 73 65 | alue..Uniquely.identifies.the.se |
| 78880 | 73 73 69 6f 6e 20 62 65 69 6e 67 20 63 72 65 61 74 65 64 2e 20 54 68 65 20 76 61 6c 75 65 20 75 | ssion.being.created..The.value.u |
| 788a0 | 73 65 64 20 6d 75 73 74 20 6d 61 74 63 68 20 74 68 65 20 70 65 65 72 5f 73 65 73 73 69 6f 6e 5f | sed.must.match.the.peer_session_ |
| 788c0 | 69 64 20 76 61 6c 75 65 20 62 65 69 6e 67 20 75 73 65 64 20 61 74 20 74 68 65 20 70 65 65 72 2e | id.value.being.used.at.the.peer. |
| 788e0 | 00 53 65 74 20 74 68 65 20 73 68 61 70 65 72 20 62 61 6e 64 77 69 64 74 68 2c 20 65 69 74 68 65 | .Set.the.shaper.bandwidth,.eithe |
| 78900 | 72 20 61 73 20 61 6e 20 65 78 70 6c 69 63 69 74 20 62 69 74 72 61 74 65 20 6f 72 20 61 20 70 65 | r.as.an.explicit.bitrate.or.a.pe |
| 78920 | 72 63 65 6e 74 61 67 65 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 62 61 6e 64 77 69 | rcentage.of.the.interface.bandwi |
| 78940 | 64 74 68 2e 00 53 65 74 20 74 68 65 20 73 69 7a 65 20 6f 66 20 74 68 65 20 68 61 73 68 20 74 61 | dth..Set.the.size.of.the.hash.ta |
| 78960 | 62 6c 65 2e 20 54 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 68 61 73 | ble..The.connection.tracking.has |
| 78980 | 68 20 74 61 62 6c 65 20 6d 61 6b 65 73 20 73 65 61 72 63 68 69 6e 67 20 74 68 65 20 63 6f 6e 6e | h.table.makes.searching.the.conn |
| 789a0 | 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 74 61 62 6c 65 20 66 61 73 74 65 72 2e 20 54 68 | ection.tracking.table.faster..Th |
| 789c0 | 65 20 68 61 73 68 20 74 61 62 6c 65 20 75 73 65 73 20 e2 80 9c 62 75 63 6b 65 74 73 e2 80 9d 20 | e.hash.table.uses....buckets.... |
| 789e0 | 74 6f 20 72 65 63 6f 72 64 20 65 6e 74 72 69 65 73 20 69 6e 20 74 68 65 20 63 6f 6e 6e 65 63 74 | to.record.entries.in.the.connect |
| 78a00 | 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 74 61 62 6c 65 2e 00 53 65 74 20 74 68 65 20 73 6f 75 72 | ion.tracking.table..Set.the.sour |
| 78a20 | 63 65 20 49 50 20 6f 66 20 66 6f 72 77 61 72 64 65 64 20 70 61 63 6b 65 74 73 2c 20 6f 74 68 65 | ce.IP.of.forwarded.packets,.othe |
| 78a40 | 72 77 69 73 65 20 6f 72 69 67 69 6e 61 6c 20 73 65 6e 64 65 72 73 20 61 64 64 72 65 73 73 20 69 | rwise.original.senders.address.i |
| 78a60 | 73 20 75 73 65 64 2e 00 53 65 74 20 74 68 65 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e | s.used..Set.the.timeout.in.secon |
| 78a80 | 64 73 20 66 6f 72 20 61 20 70 72 6f 74 6f 63 6f 6c 20 6f 72 20 73 74 61 74 65 20 69 6e 20 61 20 | ds.for.a.protocol.or.state.in.a. |
| 78aa0 | 63 75 73 74 6f 6d 20 72 75 6c 65 2e 00 53 65 74 20 74 68 65 20 74 69 6d 65 6f 75 74 20 69 6e 20 | custom.rule..Set.the.timeout.in. |
| 78ac0 | 73 65 63 6f 6e 64 73 20 66 6f 72 20 61 20 70 72 6f 74 6f 63 6f 6c 20 6f 72 20 73 74 61 74 65 2e | seconds.for.a.protocol.or.state. |
| 78ae0 | 00 53 65 74 20 74 68 65 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 75 6e 64 73 20 66 6f 72 | .Set.the.timeout.in.secounds.for |
| 78b00 | 20 61 20 70 72 6f 74 6f 63 6f 6c 20 6f 72 20 73 74 61 74 65 20 69 6e 20 61 20 63 75 73 74 6f 6d | .a.protocol.or.state.in.a.custom |
| 78b20 | 20 72 75 6c 65 2e 00 53 65 74 20 74 68 65 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 75 6e | .rule..Set.the.timeout.in.secoun |
| 78b40 | 64 73 20 66 6f 72 20 61 20 70 72 6f 74 6f 63 6f 6c 20 6f 72 20 73 74 61 74 65 2e 00 53 65 74 20 | ds.for.a.protocol.or.state..Set. |
| 78b60 | 74 68 65 20 74 75 6e 6e 65 6c 20 69 64 2c 20 77 68 69 63 68 20 69 73 20 61 20 33 32 2d 62 69 74 | the.tunnel.id,.which.is.a.32-bit |
| 78b80 | 20 69 6e 74 65 67 65 72 20 76 61 6c 75 65 2e 20 55 6e 69 71 75 65 6c 79 20 69 64 65 6e 74 69 66 | .integer.value..Uniquely.identif |
| 78ba0 | 69 65 73 20 74 68 65 20 74 75 6e 6e 65 6c 20 69 6e 74 6f 20 77 68 69 63 68 20 74 68 65 20 73 65 | ies.the.tunnel.into.which.the.se |
| 78bc0 | 73 73 69 6f 6e 20 77 69 6c 6c 20 62 65 20 63 72 65 61 74 65 64 2e 00 53 65 74 20 74 68 65 20 77 | ssion.will.be.created..Set.the.w |
| 78be0 | 69 6e 64 6f 77 20 73 63 61 6c 65 20 66 61 63 74 6f 72 20 66 6f 72 20 54 43 50 20 77 69 6e 64 6f | indow.scale.factor.for.TCP.windo |
| 78c00 | 77 20 73 63 61 6c 69 6e 67 00 53 65 74 20 77 69 6e 64 6f 77 20 6f 66 20 63 6f 6e 63 75 72 72 65 | w.scaling.Set.window.of.concurre |
| 78c20 | 6e 74 6c 79 20 76 61 6c 69 64 20 63 6f 64 65 73 2e 00 53 65 74 73 20 74 68 65 20 48 54 54 50 20 | ntly.valid.codes..Sets.the.HTTP. |
| 78c40 | 6d 65 74 68 6f 64 20 74 6f 20 62 65 20 75 73 65 64 2c 20 63 61 6e 20 62 65 20 65 69 74 68 65 72 | method.to.be.used,.can.be.either |
| 78c60 | 3a 20 6f 70 74 69 6f 6e 2c 20 67 65 74 2c 20 70 6f 73 74 2c 20 70 75 74 00 53 65 74 73 20 74 68 | :.option,.get,.post,.put.Sets.th |
| 78c80 | 65 20 65 6e 64 70 6f 69 6e 74 20 74 6f 20 62 65 20 75 73 65 64 20 66 6f 72 20 68 65 61 6c 74 68 | e.endpoint.to.be.used.for.health |
| 78ca0 | 20 63 68 65 63 6b 73 00 53 65 74 73 20 74 68 65 20 65 78 70 65 63 74 65 64 20 72 65 73 75 6c 74 | .checks.Sets.the.expected.result |
| 78cc0 | 20 63 6f 6e 64 69 74 69 6f 6e 20 66 6f 72 20 63 6f 6e 73 69 64 65 72 69 6e 67 20 61 20 73 65 72 | .condition.for.considering.a.ser |
| 78ce0 | 76 65 72 20 68 65 61 6c 74 68 79 2e 00 53 65 74 73 20 74 68 65 20 65 78 70 65 63 74 65 64 20 72 | ver.healthy..Sets.the.expected.r |
| 78d00 | 65 73 75 6c 74 20 63 6f 6e 64 69 74 69 6f 6e 20 66 6f 72 20 63 6f 6e 73 69 64 65 72 69 6e 67 20 | esult.condition.for.considering. |
| 78d20 | 61 20 73 65 72 76 65 72 20 68 65 61 6c 74 68 79 2e 20 53 6f 6d 65 20 70 6f 73 73 69 62 6c 65 20 | a.server.healthy..Some.possible. |
| 78d40 | 65 78 61 6d 70 6c 65 73 20 61 72 65 3a 00 53 65 74 73 20 74 68 65 20 69 6d 61 67 65 20 6e 61 6d | examples.are:.Sets.the.image.nam |
| 78d60 | 65 20 69 6e 20 74 68 65 20 68 75 62 20 72 65 67 69 73 74 72 79 00 53 65 74 73 20 74 68 65 20 69 | e.in.the.hub.registry.Sets.the.i |
| 78d80 | 6e 74 65 72 66 61 63 65 20 74 6f 20 6c 69 73 74 65 6e 20 66 6f 72 20 6d 75 6c 74 69 63 61 73 74 | nterface.to.listen.for.multicast |
| 78da0 | 20 70 61 63 6b 65 74 73 20 6f 6e 2e 20 43 6f 75 6c 64 20 62 65 20 61 20 6c 6f 6f 70 62 61 63 6b | .packets.on..Could.be.a.loopback |
| 78dc0 | 2c 20 6e 6f 74 20 79 65 74 20 74 65 73 74 65 64 2e 00 53 65 74 73 20 74 68 65 20 6c 69 73 74 65 | ,.not.yet.tested..Sets.the.liste |
| 78de0 | 6e 69 6e 67 20 70 6f 72 74 20 66 6f 72 20 61 20 6c 69 73 74 65 6e 69 6e 67 20 61 64 64 72 65 73 | ning.port.for.a.listening.addres |
| 78e00 | 73 2e 20 54 68 69 73 20 6f 76 65 72 72 69 64 65 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 70 6f | s..This.overrides.the.default.po |
| 78e20 | 72 74 20 6f 66 20 33 31 32 38 20 6f 6e 20 74 68 65 20 73 70 65 63 69 66 69 63 20 6c 69 73 74 65 | rt.of.3128.on.the.specific.liste |
| 78e40 | 6e 20 61 64 64 72 65 73 73 2e 00 53 65 74 73 20 74 68 65 20 75 6e 69 71 75 65 20 69 64 20 66 6f | n.address..Sets.the.unique.id.fo |
| 78e60 | 72 20 74 68 69 73 20 76 78 6c 61 6e 2d 69 6e 74 65 72 66 61 63 65 2e 20 4e 6f 74 20 73 75 72 65 | r.this.vxlan-interface..Not.sure |
| 78e80 | 20 68 6f 77 20 69 74 20 63 6f 72 72 65 6c 61 74 65 73 20 77 69 74 68 20 6d 75 6c 74 69 63 61 73 | .how.it.correlates.with.multicas |
| 78ea0 | 74 2d 61 64 64 72 65 73 73 2e 00 53 65 74 74 69 6e 67 20 52 45 53 54 20 41 50 49 20 61 6e 64 20 | t-address..Setting.REST.API.and. |
| 78ec0 | 61 6e 20 41 50 49 2d 4b 45 59 20 69 73 20 74 68 65 20 6d 69 6e 69 6d 61 6c 20 63 6f 6e 66 69 67 | an.API-KEY.is.the.minimal.config |
| 78ee0 | 75 72 61 74 69 6f 6e 20 74 6f 20 67 65 74 20 61 20 77 6f 72 6b 69 6e 67 20 41 50 49 20 45 6e 64 | uration.to.get.a.working.API.End |
| 78f00 | 70 6f 69 6e 74 2e 00 53 65 74 74 69 6e 67 20 56 52 52 50 20 67 72 6f 75 70 20 70 72 69 6f 72 69 | point..Setting.VRRP.group.priori |
| 78f20 | 74 79 00 53 65 74 74 69 6e 67 20 6e 61 6d 65 00 53 65 74 74 69 6e 67 20 74 68 69 73 20 75 70 20 | ty.Setting.name.Setting.this.up. |
| 78f40 | 6f 6e 20 41 57 53 20 77 69 6c 6c 20 72 65 71 75 69 72 65 20 61 20 22 43 75 73 74 6f 6d 20 50 72 | on.AWS.will.require.a."Custom.Pr |
| 78f60 | 6f 74 6f 63 6f 6c 20 52 75 6c 65 22 20 66 6f 72 20 70 72 6f 74 6f 63 6f 6c 20 6e 75 6d 62 65 72 | otocol.Rule".for.protocol.number |
| 78f80 | 20 22 34 37 22 20 28 47 52 45 29 20 41 6c 6c 6f 77 20 52 75 6c 65 20 69 6e 20 54 57 4f 20 70 6c | ."47".(GRE).Allow.Rule.in.TWO.pl |
| 78fa0 | 61 63 65 73 2e 20 46 69 72 73 74 6c 79 20 6f 6e 20 74 68 65 20 56 50 43 20 4e 65 74 77 6f 72 6b | aces..Firstly.on.the.VPC.Network |
| 78fc0 | 20 41 43 4c 2c 20 61 6e 64 20 73 65 63 6f 6e 64 6c 79 20 6f 6e 20 74 68 65 20 73 65 63 75 72 69 | .ACL,.and.secondly.on.the.securi |
| 78fe0 | 74 79 20 67 72 6f 75 70 20 6e 65 74 77 6f 72 6b 20 41 43 4c 20 61 74 74 61 63 68 65 64 20 74 6f | ty.group.network.ACL.attached.to |
| 79000 | 20 74 68 65 20 45 43 32 20 69 6e 73 74 61 6e 63 65 2e 20 54 68 69 73 20 68 61 73 20 62 65 65 6e | .the.EC2.instance..This.has.been |
| 79020 | 20 74 65 73 74 65 64 20 61 73 20 77 6f 72 6b 69 6e 67 20 66 6f 72 20 74 68 65 20 6f 66 66 69 63 | .tested.as.working.for.the.offic |
| 79040 | 69 61 6c 20 41 4d 49 20 69 6d 61 67 65 20 6f 6e 20 74 68 65 20 41 57 53 20 4d 61 72 6b 65 74 70 | ial.AMI.image.on.the.AWS.Marketp |
| 79060 | 6c 61 63 65 2e 20 28 4c 6f 63 61 74 65 20 74 68 65 20 63 6f 72 72 65 63 74 20 56 50 43 20 61 6e | lace..(Locate.the.correct.VPC.an |
| 79080 | 64 20 73 65 63 75 72 69 74 79 20 67 72 6f 75 70 20 62 79 20 6e 61 76 69 67 61 74 69 6e 67 20 74 | d.security.group.by.navigating.t |
| 790a0 | 68 72 6f 75 67 68 20 74 68 65 20 64 65 74 61 69 6c 73 20 70 61 6e 65 20 62 65 6c 6f 77 20 79 6f | hrough.the.details.pane.below.yo |
| 790c0 | 75 72 20 45 43 32 20 69 6e 73 74 61 6e 63 65 20 69 6e 20 74 68 65 20 41 57 53 20 63 6f 6e 73 6f | ur.EC2.instance.in.the.AWS.conso |
| 790e0 | 6c 65 29 2e 00 53 65 74 74 69 6e 67 20 75 70 20 49 50 53 65 63 3a 00 53 65 74 74 69 6e 67 20 75 | le)..Setting.up.IPSec:.Setting.u |
| 79100 | 70 20 4f 70 65 6e 56 50 4e 00 53 65 74 74 69 6e 67 20 75 70 20 61 20 66 75 6c 6c 2d 62 6c 6f 77 | p.OpenVPN.Setting.up.a.full-blow |
| 79120 | 6e 20 50 4b 49 20 77 69 74 68 20 61 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 20 77 6f 75 6c | n.PKI.with.a.CA.certificate.woul |
| 79140 | 64 20 61 72 67 75 61 62 6c 79 20 64 65 66 65 61 74 20 74 68 65 20 70 75 72 70 6f 73 65 20 6f 66 | d.arguably.defeat.the.purpose.of |
| 79160 | 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 4f 70 65 6e 56 50 4e 2c 20 73 69 6e 63 65 20 69 74 73 | .site-to-site.OpenVPN,.since.its |
| 79180 | 20 6d 61 69 6e 20 67 6f 61 6c 20 69 73 20 73 75 70 70 6f 73 65 64 20 74 6f 20 62 65 20 63 6f 6e | .main.goal.is.supposed.to.be.con |
| 791a0 | 66 69 67 75 72 61 74 69 6f 6e 20 73 69 6d 70 6c 69 63 69 74 79 2c 20 63 6f 6d 70 61 72 65 64 20 | figuration.simplicity,.compared. |
| 791c0 | 74 6f 20 73 65 72 76 65 72 20 73 65 74 75 70 73 20 74 68 61 74 20 6e 65 65 64 20 74 6f 20 73 75 | to.server.setups.that.need.to.su |
| 791e0 | 70 70 6f 72 74 20 6d 75 6c 74 69 70 6c 65 20 63 6c 69 65 6e 74 73 2e 00 53 65 74 74 69 6e 67 20 | pport.multiple.clients..Setting. |
| 79200 | 75 70 20 63 65 72 74 69 66 69 63 61 74 65 73 00 53 65 74 74 69 6e 67 20 75 70 20 63 65 72 74 69 | up.certificates.Setting.up.certi |
| 79220 | 66 69 63 61 74 65 73 3a 00 53 65 74 74 69 6e 67 20 75 70 20 74 75 6e 6e 65 6c 3a 00 53 65 74 74 | ficates:.Setting.up.tunnel:.Sett |
| 79240 | 69 6e 67 20 77 69 6c 6c 20 6f 6e 6c 79 20 62 65 63 6f 6d 65 20 61 63 74 69 76 65 20 77 69 74 68 | ing.will.only.become.active.with |
| 79260 | 20 74 68 65 20 6e 65 78 74 20 72 65 62 6f 6f 74 21 00 53 65 74 75 70 20 44 48 43 50 20 48 41 20 | .the.next.reboot!.Setup.DHCP.HA. |
| 79280 | 66 6f 72 20 6e 65 74 77 6f 72 6b 20 31 39 32 2e 30 2e 32 2e 30 2f 32 34 00 53 65 74 75 70 20 44 | for.network.192.0.2.0/24.Setup.D |
| 792a0 | 48 43 50 20 66 61 69 6c 6f 76 65 72 20 66 6f 72 20 6e 65 74 77 6f 72 6b 20 31 39 32 2e 30 2e 32 | HCP.failover.for.network.192.0.2 |
| 792c0 | 2e 30 2f 32 34 00 53 65 74 75 70 20 65 6e 63 72 79 70 74 65 64 20 70 61 73 73 77 6f 72 64 20 66 | .0/24.Setup.encrypted.password.f |
| 792e0 | 6f 72 20 67 69 76 65 6e 20 75 73 65 72 6e 61 6d 65 2e 20 54 68 69 73 20 69 73 20 75 73 65 66 75 | or.given.username..This.is.usefu |
| 79300 | 6c 20 66 6f 72 20 74 72 61 6e 73 66 65 72 72 69 6e 67 20 61 20 68 61 73 68 65 64 20 70 61 73 73 | l.for.transferring.a.hashed.pass |
| 79320 | 77 6f 72 64 20 66 72 6f 6d 20 73 79 73 74 65 6d 20 74 6f 20 73 79 73 74 65 6d 2e 00 53 65 74 75 | word.from.system.to.system..Setu |
| 79340 | 70 20 74 68 65 20 60 3c 74 69 6d 65 6f 75 74 3e 60 20 69 6e 20 73 65 63 6f 6e 64 73 20 77 68 65 | p.the.`<timeout>`.in.seconds.whe |
| 79360 | 6e 20 71 75 65 72 79 69 6e 67 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 53 65 | n.querying.the.RADIUS.server..Se |
| 79380 | 74 75 70 20 74 68 65 20 60 3c 74 69 6d 65 6f 75 74 3e 60 20 69 6e 20 73 65 63 6f 6e 64 73 20 77 | tup.the.`<timeout>`.in.seconds.w |
| 793a0 | 68 65 6e 20 71 75 65 72 79 69 6e 67 20 74 68 65 20 54 41 43 41 43 53 20 73 65 72 76 65 72 2e 00 | hen.querying.the.TACACS.server.. |
| 793c0 | 53 65 74 75 70 20 74 68 65 20 64 79 6e 61 6d 69 63 20 44 4e 53 20 68 6f 73 74 6e 61 6d 65 20 60 | Setup.the.dynamic.DNS.hostname.` |
| 793e0 | 3c 68 6f 73 74 6e 61 6d 65 3e 60 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 20 | <hostname>`.associated.with.the. |
| 79400 | 44 79 6e 44 4e 53 20 70 72 6f 76 69 64 65 72 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c | DynDNS.provider.identified.by.`< |
| 79420 | 73 65 72 76 69 63 65 2d 6e 61 6d 65 3e 60 2e 00 53 65 74 75 70 20 74 68 65 20 64 79 6e 61 6d 69 | service-name>`..Setup.the.dynami |
| 79440 | 63 20 44 4e 53 20 68 6f 73 74 6e 61 6d 65 20 60 3c 68 6f 73 74 6e 61 6d 65 3e 60 20 61 73 73 6f | c.DNS.hostname.`<hostname>`.asso |
| 79460 | 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 20 44 79 6e 44 4e 53 20 70 72 6f 76 69 64 65 72 20 | ciated.with.the.DynDNS.provider. |
| 79480 | 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 73 65 72 76 69 63 65 3e 60 20 77 68 65 6e 20 74 | identified.by.`<service>`.when.t |
| 794a0 | 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 6e 20 61 64 64 72 65 73 73 20 60 3c 69 6e 74 65 72 | he.IP.address.on.address.`<inter |
| 794c0 | 66 61 63 65 3e 60 20 63 68 61 6e 67 65 73 2e 00 53 65 74 75 70 20 74 68 65 20 64 79 6e 61 6d 69 | face>`.changes..Setup.the.dynami |
| 794e0 | 63 20 44 4e 53 20 68 6f 73 74 6e 61 6d 65 20 60 3c 68 6f 73 74 6e 61 6d 65 3e 60 20 61 73 73 6f | c.DNS.hostname.`<hostname>`.asso |
| 79500 | 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 20 44 79 6e 44 4e 53 20 70 72 6f 76 69 64 65 72 20 | ciated.with.the.DynDNS.provider. |
| 79520 | 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 73 65 72 76 69 63 65 3e 60 20 77 68 65 6e 20 74 | identified.by.`<service>`.when.t |
| 79540 | 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 60 3c 69 6e 74 | he.IP.address.on.interface.`<int |
| 79560 | 65 72 66 61 63 65 3e 60 20 63 68 61 6e 67 65 73 2e 00 53 65 76 65 72 61 6c 20 63 6f 6d 6d 61 6e | erface>`.changes..Several.comman |
| 79580 | 64 73 20 75 74 69 6c 69 7a 65 20 63 55 52 4c 20 74 6f 20 69 6e 69 74 69 61 74 65 20 74 72 61 6e | ds.utilize.cURL.to.initiate.tran |
| 795a0 | 73 66 65 72 73 2e 20 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6c 6f 63 61 6c 20 73 6f 75 72 63 | sfers..Configure.the.local.sourc |
| 795c0 | 65 20 49 50 76 34 2f 49 50 76 36 20 61 64 64 72 65 73 73 20 75 73 65 64 20 66 6f 72 20 61 6c 6c | e.IPv4/IPv6.address.used.for.all |
| 795e0 | 20 63 55 52 4c 20 6f 70 65 72 61 74 69 6f 6e 73 2e 00 53 65 76 65 72 61 6c 20 63 6f 6d 6d 61 6e | .cURL.operations..Several.comman |
| 79600 | 64 73 20 75 74 69 6c 69 7a 65 20 63 75 72 6c 20 74 6f 20 69 6e 69 74 69 61 74 65 20 74 72 61 6e | ds.utilize.curl.to.initiate.tran |
| 79620 | 73 66 65 72 73 2e 20 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6c 6f 63 61 6c 20 73 6f 75 72 63 | sfers..Configure.the.local.sourc |
| 79640 | 65 20 69 6e 74 65 72 66 61 63 65 20 75 73 65 64 20 66 6f 72 20 61 6c 6c 20 43 55 52 4c 20 6f 70 | e.interface.used.for.all.CURL.op |
| 79660 | 65 72 61 74 69 6f 6e 73 2e 00 53 65 76 65 72 69 74 79 00 53 65 76 65 72 69 74 79 20 4c 65 76 65 | erations..Severity.Severity.Leve |
| 79680 | 6c 00 53 68 61 70 65 72 00 53 68 6f 72 74 20 47 49 20 63 61 70 61 62 69 6c 69 74 69 65 73 00 53 | l.Shaper.Short.GI.capabilities.S |
| 796a0 | 68 6f 72 74 20 47 49 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 66 6f 72 20 32 30 20 61 6e 64 20 | hort.GI.capabilities.for.20.and. |
| 796c0 | 34 30 20 4d 48 7a 00 53 68 6f 72 74 20 62 75 72 73 74 73 20 63 61 6e 20 62 65 20 61 6c 6c 6f 77 | 40.MHz.Short.bursts.can.be.allow |
| 796e0 | 65 64 20 74 6f 20 65 78 63 65 65 64 20 74 68 65 20 6c 69 6d 69 74 2e 20 4f 6e 20 63 72 65 61 74 | ed.to.exceed.the.limit..On.creat |
| 79700 | 69 6f 6e 2c 20 74 68 65 20 52 61 74 65 2d 43 6f 6e 74 72 6f 6c 20 74 72 61 66 66 69 63 20 69 73 | ion,.the.Rate-Control.traffic.is |
| 79720 | 20 73 74 6f 63 6b 65 64 20 77 69 74 68 20 74 6f 6b 65 6e 73 20 77 68 69 63 68 20 63 6f 72 72 65 | .stocked.with.tokens.which.corre |
| 79740 | 73 70 6f 6e 64 20 74 6f 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 20 74 72 61 66 66 69 63 20 74 | spond.to.the.amount.of.traffic.t |
| 79760 | 68 61 74 20 63 61 6e 20 62 65 20 62 75 72 73 74 20 69 6e 20 6f 6e 65 20 67 6f 2e 20 54 6f 6b 65 | hat.can.be.burst.in.one.go..Toke |
| 79780 | 6e 73 20 61 72 72 69 76 65 20 61 74 20 61 20 73 74 65 61 64 79 20 72 61 74 65 2c 20 75 6e 74 69 | ns.arrive.at.a.steady.rate,.unti |
| 797a0 | 6c 20 74 68 65 20 62 75 63 6b 65 74 20 69 73 20 66 75 6c 6c 2e 00 53 68 6f 72 74 63 75 74 20 73 | l.the.bucket.is.full..Shortcut.s |
| 797c0 | 79 6e 74 61 78 20 66 6f 72 20 73 70 65 63 69 66 79 69 6e 67 20 61 75 74 6f 6d 61 74 69 63 20 6c | yntax.for.specifying.automatic.l |
| 797e0 | 65 61 6b 69 6e 67 20 66 72 6f 6d 20 76 72 66 20 56 52 46 4e 41 4d 45 20 74 6f 20 74 68 65 20 63 | eaking.from.vrf.VRFNAME.to.the.c |
| 79800 | 75 72 72 65 6e 74 20 56 52 46 20 75 73 69 6e 67 20 74 68 65 20 56 50 4e 20 52 49 42 20 61 73 20 | urrent.VRF.using.the.VPN.RIB.as. |
| 79820 | 69 6e 74 65 72 6d 65 64 69 61 72 79 2e 20 54 68 65 20 52 44 20 61 6e 64 20 52 54 20 61 72 65 20 | intermediary..The.RD.and.RT.are. |
| 79840 | 61 75 74 6f 20 64 65 72 69 76 65 64 20 61 6e 64 20 73 68 6f 75 6c 64 20 6e 6f 74 20 62 65 20 73 | auto.derived.and.should.not.be.s |
| 79860 | 70 65 63 69 66 69 65 64 20 65 78 70 6c 69 63 69 74 6c 79 20 66 6f 72 20 65 69 74 68 65 72 20 74 | pecified.explicitly.for.either.t |
| 79880 | 68 65 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 56 52 46 e2 80 99 73 | he.source.or.destination.VRF...s |
| 798a0 | 2e 00 53 68 6f 77 00 53 68 6f 77 20 43 47 4e 41 54 20 61 6c 6c 6f 63 61 74 69 6f 6e 73 00 53 68 | ..Show.Show.CGNAT.allocations.Sh |
| 798c0 | 6f 77 20 44 48 43 50 20 73 65 72 76 65 72 20 64 61 65 6d 6f 6e 20 6c 6f 67 20 66 69 6c 65 00 53 | ow.DHCP.server.daemon.log.file.S |
| 798e0 | 68 6f 77 20 44 48 43 50 76 36 20 73 65 72 76 65 72 20 64 61 65 6d 6f 6e 20 6c 6f 67 20 66 69 6c | how.DHCPv6.server.daemon.log.fil |
| 79900 | 65 00 53 68 6f 77 20 46 69 72 65 77 61 6c 6c 20 6c 6f 67 00 53 68 6f 77 20 4c 4c 44 50 20 6e 65 | e.Show.Firewall.log.Show.LLDP.ne |
| 79920 | 69 67 68 62 6f 72 73 20 63 6f 6e 6e 65 63 74 65 64 20 76 69 61 20 69 6e 74 65 72 66 61 63 65 20 | ighbors.connected.via.interface. |
| 79940 | 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 53 68 6f 77 20 53 53 48 20 64 79 6e 61 6d 69 63 2d | `<interface>`..Show.SSH.dynamic- |
| 79960 | 70 72 6f 74 65 63 74 69 6f 6e 20 6c 6f 67 2e 00 53 68 6f 77 20 53 53 48 20 73 65 72 76 65 72 20 | protection.log..Show.SSH.server. |
| 79980 | 6c 6f 67 2e 00 53 68 6f 77 20 53 53 48 20 73 65 72 76 65 72 20 70 75 62 6c 69 63 20 6b 65 79 20 | log..Show.SSH.server.public.key. |
| 799a0 | 66 69 6e 67 65 72 70 72 69 6e 74 73 2c 20 69 6e 63 6c 75 64 69 6e 67 20 61 20 76 69 73 75 61 6c | fingerprints,.including.a.visual |
| 799c0 | 20 41 53 43 49 49 20 61 72 74 20 72 65 70 72 65 73 65 6e 74 61 74 69 6f 6e 2e 00 53 68 6f 77 20 | .ASCII.art.representation..Show. |
| 799e0 | 53 53 48 20 73 65 72 76 65 72 20 70 75 62 6c 69 63 20 6b 65 79 20 66 69 6e 67 65 72 70 72 69 6e | SSH.server.public.key.fingerprin |
| 79a00 | 74 73 2e 00 53 68 6f 77 20 57 41 4e 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 72 20 69 6e 66 6f 72 | ts..Show.WAN.load.balancer.infor |
| 79a20 | 6d 61 74 69 6f 6e 20 69 6e 63 6c 75 64 69 6e 67 20 74 65 73 74 20 74 79 70 65 73 20 61 6e 64 20 | mation.including.test.types.and. |
| 79a40 | 74 61 72 67 65 74 73 2e 20 41 20 63 68 61 72 61 63 74 65 72 20 61 74 20 74 68 65 20 73 74 61 72 | targets..A.character.at.the.star |
| 79a60 | 74 20 6f 66 20 65 61 63 68 20 6c 69 6e 65 20 64 65 70 69 63 74 73 20 74 68 65 20 73 74 61 74 65 | t.of.each.line.depicts.the.state |
| 79a80 | 20 6f 66 20 74 68 65 20 74 65 73 74 00 53 68 6f 77 20 57 57 41 4e 20 6d 6f 64 75 6c 65 20 49 4d | .of.the.test.Show.WWAN.module.IM |
| 79aa0 | 45 49 2e 00 53 68 6f 77 20 57 57 41 4e 20 6d 6f 64 75 6c 65 20 49 4d 53 49 2e 00 53 68 6f 77 20 | EI..Show.WWAN.module.IMSI..Show. |
| 79ac0 | 57 57 41 4e 20 6d 6f 64 75 6c 65 20 4d 53 49 53 44 4e 2e 00 53 68 6f 77 20 57 57 41 4e 20 6d 6f | WWAN.module.MSISDN..Show.WWAN.mo |
| 79ae0 | 64 75 6c 65 20 53 49 4d 20 63 61 72 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 53 68 6f 77 20 | dule.SIM.card.information..Show. |
| 79b00 | 57 57 41 4e 20 6d 6f 64 75 6c 65 20 66 69 72 6d 77 61 72 65 2e 00 53 68 6f 77 20 57 57 41 4e 20 | WWAN.module.firmware..Show.WWAN. |
| 79b20 | 6d 6f 64 75 6c 65 20 68 61 72 64 77 61 72 65 20 63 61 70 61 62 69 6c 69 74 69 65 73 2e 00 53 68 | module.hardware.capabilities..Sh |
| 79b40 | 6f 77 20 57 57 41 4e 20 6d 6f 64 75 6c 65 20 68 61 72 64 77 61 72 65 20 72 65 76 69 73 69 6f 6e | ow.WWAN.module.hardware.revision |
| 79b60 | 2e 00 53 68 6f 77 20 57 57 41 4e 20 6d 6f 64 75 6c 65 20 6d 6f 64 65 6c 2e 00 53 68 6f 77 20 57 | ..Show.WWAN.module.model..Show.W |
| 79b80 | 57 41 4e 20 6d 6f 64 75 6c 65 20 73 69 67 6e 61 6c 20 73 74 72 65 6e 67 74 68 2e 00 53 68 6f 77 | WAN.module.signal.strength..Show |
| 79ba0 | 20 61 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 61 | .a.detailed.information.of.all.a |
| 79bc0 | 63 74 69 76 65 20 49 50 73 65 63 20 53 65 63 75 72 69 74 79 20 41 73 73 6f 63 69 61 74 69 6f 6e | ctive.IPsec.Security.Association |
| 79be0 | 73 20 28 53 41 29 20 69 6e 20 76 65 72 62 6f 73 65 20 66 6f 72 6d 61 74 2e 00 53 68 6f 77 20 61 | s.(SA).in.verbose.format..Show.a |
| 79c00 | 20 6c 69 73 74 20 61 76 61 69 6c 61 62 6c 65 20 63 6f 6e 74 61 69 6e 65 72 20 6e 65 74 77 6f 72 | .list.available.container.networ |
| 79c20 | 6b 73 00 53 68 6f 77 20 61 20 6c 69 73 74 20 6f 66 20 69 6e 73 74 61 6c 6c 65 64 20 3a 61 62 62 | ks.Show.a.list.of.installed.:abb |
| 79c40 | 72 3a 60 43 41 20 28 43 65 72 74 69 66 69 63 61 74 65 20 41 75 74 68 6f 72 69 74 79 29 60 20 63 | r:`CA.(Certificate.Authority)`.c |
| 79c60 | 65 72 74 69 66 69 63 61 74 65 73 2e 00 53 68 6f 77 20 61 20 6c 69 73 74 20 6f 66 20 69 6e 73 74 | ertificates..Show.a.list.of.inst |
| 79c80 | 61 6c 6c 65 64 20 3a 61 62 62 72 3a 60 43 52 4c 73 20 28 43 65 72 74 69 66 69 63 61 74 65 20 52 | alled.:abbr:`CRLs.(Certificate.R |
| 79ca0 | 65 76 6f 63 61 74 69 6f 6e 20 4c 69 73 74 29 60 2e 00 53 68 6f 77 20 61 20 6c 69 73 74 20 6f 66 | evocation.List)`..Show.a.list.of |
| 79cc0 | 20 69 6e 73 74 61 6c 6c 65 64 20 63 65 72 74 69 66 69 63 61 74 65 73 00 53 68 6f 77 20 61 64 64 | .installed.certificates.Show.add |
| 79ce0 | 72 65 73 73 20 61 6e 64 20 70 6f 72 74 20 61 6c 6c 6f 63 61 74 69 6f 6e 73 00 53 68 6f 77 20 61 | ress.and.port.allocations.Show.a |
| 79d00 | 6c 6c 20 42 46 44 20 70 65 65 72 73 00 53 68 6f 77 20 61 6c 6c 20 61 63 74 69 76 65 20 49 50 73 | ll.BFD.peers.Show.all.active.IPs |
| 79d20 | 65 63 20 53 65 63 75 72 69 74 79 20 41 73 73 6f 63 69 61 74 69 6f 6e 73 20 28 53 41 29 00 53 68 | ec.Security.Associations.(SA).Sh |
| 79d40 | 6f 77 20 61 6c 6c 20 61 6c 6c 6f 63 61 74 69 6f 6e 73 20 66 6f 72 20 61 6e 20 65 78 74 65 72 6e | ow.all.allocations.for.an.extern |
| 79d60 | 61 6c 20 49 50 20 61 64 64 72 65 73 73 00 53 68 6f 77 20 61 6c 6c 20 61 6c 6c 6f 63 61 74 69 6f | al.IP.address.Show.all.allocatio |
| 79d80 | 6e 73 20 66 6f 72 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 00 53 68 | ns.for.an.internal.IP.address.Sh |
| 79da0 | 6f 77 20 61 6c 6c 20 63 75 72 72 65 6e 74 6c 79 20 61 63 74 69 76 65 20 49 4b 45 20 53 65 63 75 | ow.all.currently.active.IKE.Secu |
| 79dc0 | 72 69 74 79 20 41 73 73 6f 63 69 61 74 69 6f 6e 73 20 28 53 41 29 20 66 6f 72 20 61 20 73 70 65 | rity.Associations.(SA).for.a.spe |
| 79de0 | 63 69 66 69 63 20 70 65 65 72 2e 00 53 68 6f 77 20 61 6c 6c 20 63 75 72 72 65 6e 74 6c 79 20 61 | cific.peer..Show.all.currently.a |
| 79e00 | 63 74 69 76 65 20 49 4b 45 20 53 65 63 75 72 69 74 79 20 41 73 73 6f 63 69 61 74 69 6f 6e 73 20 | ctive.IKE.Security.Associations. |
| 79e20 | 28 53 41 29 20 74 68 61 74 20 61 72 65 20 75 73 69 6e 67 20 4e 41 54 20 54 72 61 76 65 72 73 61 | (SA).that.are.using.NAT.Traversa |
| 79e40 | 6c 2e 00 53 68 6f 77 20 61 6c 6c 20 63 75 72 72 65 6e 74 6c 79 20 61 63 74 69 76 65 20 49 4b 45 | l..Show.all.currently.active.IKE |
| 79e60 | 20 53 65 63 75 72 69 74 79 20 41 73 73 6f 63 69 61 74 69 6f 6e 73 2e 00 53 68 6f 77 20 61 6c 6c | .Security.Associations..Show.all |
| 79e80 | 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 70 72 65 2d 73 68 61 72 65 64 20 73 65 63 72 65 | .the.configured.pre-shared.secre |
| 79ea0 | 74 20 6b 65 79 73 2e 00 53 68 6f 77 20 61 76 61 69 6c 61 62 6c 65 20 6f 66 66 6c 6f 61 64 69 6e | t.keys..Show.available.offloadin |
| 79ec0 | 67 20 66 75 6e 63 74 69 6f 6e 73 20 6f 6e 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 | g.functions.on.given.`<interface |
| 79ee0 | 3e 60 00 53 68 6f 77 20 62 69 6e 64 65 64 20 71 61 74 20 64 65 76 69 63 65 20 69 6e 74 65 72 72 | >`.Show.binded.qat.device.interr |
| 79f00 | 75 70 74 73 20 74 6f 20 63 65 72 74 61 69 6e 20 63 6f 72 65 2e 00 53 68 6f 77 20 62 72 69 64 67 | upts.to.certain.core..Show.bridg |
| 79f20 | 65 20 60 3c 6e 61 6d 65 3e 60 20 66 64 62 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 63 75 72 72 | e.`<name>`.fdb.displays.the.curr |
| 79f40 | 65 6e 74 20 66 6f 72 77 61 72 64 69 6e 67 20 74 61 62 6c 65 3a 00 53 68 6f 77 20 62 72 69 64 67 | ent.forwarding.table:.Show.bridg |
| 79f60 | 65 20 60 3c 6e 61 6d 65 3e 60 20 6d 64 62 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 63 75 72 72 | e.`<name>`.mdb.displays.the.curr |
| 79f80 | 65 6e 74 20 6d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 70 20 6d 65 6d 62 65 72 73 68 69 70 20 74 | ent.multicast.group.membership.t |
| 79fa0 | 61 62 6c 65 2e 54 68 65 20 74 61 62 6c 65 20 69 73 20 70 6f 70 75 6c 61 74 65 64 20 62 79 20 49 | able.The.table.is.populated.by.I |
| 79fc0 | 47 4d 50 20 61 6e 64 20 4d 4c 44 20 73 6e 6f 6f 70 69 6e 67 20 69 6e 20 74 68 65 20 62 72 69 64 | GMP.and.MLD.snooping.in.the.brid |
| 79fe0 | 67 65 20 64 72 69 76 65 72 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 2e 00 53 68 6f 77 20 62 72 | ge.driver.automatically..Show.br |
| 7a000 | 69 65 66 20 69 6e 74 65 72 66 61 63 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 53 68 6f 77 20 | ief.interface.information..Show. |
| 7a020 | 63 6f 6d 6d 61 6e 64 73 00 53 68 6f 77 20 63 6f 6e 66 69 67 75 72 65 64 20 73 65 72 69 61 6c 20 | commands.Show.configured.serial. |
| 7a040 | 70 6f 72 74 73 20 61 6e 64 20 74 68 65 69 72 20 72 65 73 70 65 63 74 69 76 65 20 69 6e 74 65 72 | ports.and.their.respective.inter |
| 7a060 | 66 61 63 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 53 68 6f 77 20 63 6f 6e 6e 65 63 74 | face.configuration..Show.connect |
| 7a080 | 69 6f 6e 20 64 61 74 61 20 6f 66 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 64 20 74 72 61 66 66 69 | ion.data.of.load.balanced.traffi |
| 7a0a0 | 63 3a 00 53 68 6f 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 79 6e 63 69 6e 67 20 65 78 74 65 72 | c:.Show.connection.syncing.exter |
| 7a0c0 | 6e 61 6c 20 63 61 63 68 65 20 65 6e 74 72 69 65 73 00 53 68 6f 77 20 63 6f 6e 6e 65 63 74 69 6f | nal.cache.entries.Show.connectio |
| 7a0e0 | 6e 20 73 79 6e 63 69 6e 67 20 69 6e 74 65 72 6e 61 6c 20 63 61 63 68 65 20 65 6e 74 72 69 65 73 | n.syncing.internal.cache.entries |
| 7a100 | 00 53 68 6f 77 20 63 75 72 72 65 6e 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 20 75 73 65 72 73 2e | .Show.currently.connected.users. |
| 7a120 | 00 53 68 6f 77 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 | .Show.detailed.information.about |
| 7a140 | 20 61 6c 6c 20 6c 65 61 72 6e 65 64 20 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 4e 6f 64 | .all.learned.Segment.Routing.Nod |
| 7a160 | 65 73 00 53 68 6f 77 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f | es.Show.detailed.information.abo |
| 7a180 | 75 74 20 70 72 65 66 69 78 2d 73 69 64 20 61 6e 64 20 6c 61 62 65 6c 20 6c 65 61 72 6e 65 64 00 | ut.prefix-sid.and.label.learned. |
| 7a1a0 | 53 68 6f 77 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 | Show.detailed.information.about. |
| 7a1c0 | 74 68 65 20 75 6e 64 65 72 6c 61 79 69 6e 67 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 73 20 6f | the.underlaying.physical.links.o |
| 7a1e0 | 6e 20 67 69 76 65 6e 20 62 6f 6e 64 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 53 68 6f 77 | n.given.bond.`<interface>`..Show |
| 7a200 | 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 20 67 69 76 65 6e 20 60 | .detailed.information.on.given.` |
| 7a220 | 3c 69 6e 74 65 72 66 61 63 65 3e 60 00 53 68 6f 77 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 | <interface>`.Show.detailed.infor |
| 7a240 | 6d 61 74 69 6f 6e 20 6f 6e 20 74 68 65 20 67 69 76 65 6e 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 | mation.on.the.given.loopback.int |
| 7a260 | 65 72 66 61 63 65 20 60 6c 6f 60 2e 00 53 68 6f 77 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 | erface.`lo`..Show.detailed.infor |
| 7a280 | 6d 61 74 69 6f 6e 20 73 75 6d 6d 61 72 79 20 6f 6e 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 | mation.summary.on.given.`<interf |
| 7a2a0 | 61 63 65 3e 60 00 53 68 6f 77 20 64 65 74 61 69 6c 73 20 6f 66 20 61 6c 6c 20 61 76 61 69 6c 61 | ace>`.Show.details.of.all.availa |
| 7a2c0 | 62 6c 65 20 56 50 4e 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 00 53 68 6f 77 20 66 6c 6f 77 20 61 63 | ble.VPN.connections.Show.flow.ac |
| 7a2e0 | 63 6f 75 6e 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 67 69 76 65 6e 20 60 | counting.information.for.given.` |
| 7a300 | 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 66 6f 72 20 61 20 73 70 65 63 69 66 69 63 20 68 6f 73 74 | <interface>`.for.a.specific.host |
| 7a320 | 20 6f 6e 6c 79 2e 00 53 68 6f 77 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 20 69 6e 66 6f | .only..Show.flow.accounting.info |
| 7a340 | 72 6d 61 74 69 6f 6e 20 66 6f 72 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e | rmation.for.given.`<interface>`. |
| 7a360 | 00 53 68 6f 77 20 67 65 6e 65 72 61 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 | .Show.general.information.about. |
| 7a380 | 73 70 65 63 69 66 69 63 20 57 69 72 65 47 75 61 72 64 20 69 6e 74 65 72 66 61 63 65 00 53 68 6f | specific.WireGuard.interface.Sho |
| 7a3a0 | 77 20 69 6e 66 6f 20 61 62 6f 75 74 20 74 68 65 20 57 69 72 65 67 75 61 72 64 20 73 65 72 76 69 | w.info.about.the.Wireguard.servi |
| 7a3c0 | 63 65 2e 20 49 74 20 61 6c 73 6f 20 73 68 6f 77 73 20 74 68 65 20 6c 61 74 65 73 74 20 68 61 6e | ce..It.also.shows.the.latest.han |
| 7a3e0 | 64 73 68 61 6b 65 2e 00 53 68 6f 77 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 70 | dshake..Show.information.about.p |
| 7a400 | 68 79 73 69 63 61 6c 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 00 53 68 6f 77 20 6c 69 73 74 20 | hysical.`<interface>`.Show.list. |
| 7a420 | 6f 66 20 49 50 73 20 63 75 72 72 65 6e 74 6c 79 20 62 6c 6f 63 6b 65 64 20 62 79 20 53 53 48 20 | of.IPs.currently.blocked.by.SSH. |
| 7a440 | 64 79 6e 61 6d 69 63 2d 70 72 6f 74 65 63 74 69 6f 6e 2e 00 53 68 6f 77 20 6c 6f 67 73 20 66 6f | dynamic-protection..Show.logs.fo |
| 7a460 | 72 20 49 50 73 65 63 00 53 68 6f 77 20 6c 6f 67 73 20 66 6f 72 20 6d 44 4e 53 20 72 65 70 65 61 | r.IPsec.Show.logs.for.mDNS.repea |
| 7a480 | 74 65 72 20 73 65 72 76 69 63 65 2e 00 53 68 6f 77 20 6c 6f 67 73 20 66 72 6f 6d 20 61 20 67 69 | ter.service..Show.logs.from.a.gi |
| 7a4a0 | 76 65 6e 20 63 6f 6e 74 61 69 6e 65 72 00 53 68 6f 77 20 6c 6f 67 73 20 66 72 6f 6d 20 61 6c 6c | ven.container.Show.logs.from.all |
| 7a4c0 | 20 44 48 43 50 20 63 6c 69 65 6e 74 20 70 72 6f 63 65 73 73 65 73 2e 00 53 68 6f 77 20 6c 6f 67 | .DHCP.client.processes..Show.log |
| 7a4e0 | 73 20 66 72 6f 6d 20 61 6c 6c 20 44 48 43 50 76 36 20 63 6c 69 65 6e 74 20 70 72 6f 63 65 73 73 | s.from.all.DHCPv6.client.process |
| 7a500 | 65 73 2e 00 53 68 6f 77 20 6c 6f 67 73 20 66 72 6f 6d 20 73 70 65 63 69 66 69 63 20 60 69 6e 74 | es..Show.logs.from.specific.`int |
| 7a520 | 65 72 66 61 63 65 60 20 44 48 43 50 20 63 6c 69 65 6e 74 20 70 72 6f 63 65 73 73 2e 00 53 68 6f | erface`.DHCP.client.process..Sho |
| 7a540 | 77 20 6c 6f 67 73 20 66 72 6f 6d 20 73 70 65 63 69 66 69 63 20 60 69 6e 74 65 72 66 61 63 65 60 | w.logs.from.specific.`interface` |
| 7a560 | 20 44 48 43 50 76 36 20 63 6c 69 65 6e 74 20 70 72 6f 63 65 73 73 2e 00 53 68 6f 77 20 6f 6e 6c | .DHCPv6.client.process..Show.onl |
| 7a580 | 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 73 70 65 63 69 66 69 65 64 20 43 65 72 74 | y.information.for.specified.Cert |
| 7a5a0 | 69 66 69 63 61 74 65 20 41 75 74 68 6f 72 69 74 79 2e 00 53 68 6f 77 20 6f 6e 6c 79 20 69 6e 66 | ificate.Authority..Show.only.inf |
| 7a5c0 | 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 73 70 65 63 69 66 69 65 64 20 63 65 72 74 69 66 69 63 61 | ormation.for.specified.certifica |
| 7a5e0 | 74 65 2e 00 53 68 6f 77 20 6f 6e 6c 79 20 6c 65 61 73 65 73 20 69 6e 20 74 68 65 20 73 70 65 63 | te..Show.only.leases.in.the.spec |
| 7a600 | 69 66 69 65 64 20 70 6f 6f 6c 2e 00 53 68 6f 77 20 6f 6e 6c 79 20 6c 65 61 73 65 73 20 77 69 74 | ified.pool..Show.only.leases.wit |
| 7a620 | 68 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 73 74 61 74 65 2e 20 50 6f 73 73 69 62 6c 65 20 | h.the.specified.state..Possible. |
| 7a640 | 73 74 61 74 65 73 3a 20 61 62 61 6e 64 6f 6e 65 64 2c 20 61 63 74 69 76 65 2c 20 61 6c 6c 2c 20 | states:.abandoned,.active,.all,. |
| 7a660 | 62 61 63 6b 75 70 2c 20 65 78 70 69 72 65 64 2c 20 66 72 65 65 2c 20 72 65 6c 65 61 73 65 64 2c | backup,.expired,.free,.released, |
| 7a680 | 20 72 65 73 65 74 20 28 64 65 66 61 75 6c 74 20 3d 20 61 63 74 69 76 65 29 00 53 68 6f 77 20 6f | .reset.(default.=.active).Show.o |
| 7a6a0 | 6e 6c 79 20 6c 65 61 73 65 73 20 77 69 74 68 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 73 74 | nly.leases.with.the.specified.st |
| 7a6c0 | 61 74 65 2e 20 50 6f 73 73 69 62 6c 65 20 73 74 61 74 65 73 3a 20 61 6c 6c 2c 20 61 63 74 69 76 | ate..Possible.states:.all,.activ |
| 7a6e0 | 65 2c 20 66 72 65 65 2c 20 65 78 70 69 72 65 64 2c 20 72 65 6c 65 61 73 65 64 2c 20 61 62 61 6e | e,.free,.expired,.released,.aban |
| 7a700 | 64 6f 6e 65 64 2c 20 72 65 73 65 74 2c 20 62 61 63 6b 75 70 20 28 64 65 66 61 75 6c 74 20 3d 20 | doned,.reset,.backup.(default.=. |
| 7a720 | 61 63 74 69 76 65 29 00 53 68 6f 77 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 65 6e 74 72 79 | active).Show.routing.table.entry |
| 7a740 | 20 66 6f 72 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 2e 00 53 68 6f 77 20 73 70 65 | .for.the.default.route..Show.spe |
| 7a760 | 63 69 66 69 63 20 4d 41 43 73 65 63 20 69 6e 74 65 72 66 61 63 65 20 69 6e 66 6f 72 6d 61 74 69 | cific.MACsec.interface.informati |
| 7a780 | 6f 6e 00 53 68 6f 77 20 73 74 61 74 75 73 20 6f 66 20 6e 65 77 20 73 65 74 75 70 3a 00 53 68 6f | on.Show.status.of.new.setup:.Sho |
| 7a7a0 | 77 20 73 74 61 74 75 73 65 73 20 6f 66 20 61 6c 6c 20 61 63 74 69 76 65 20 6c 65 61 73 65 73 20 | w.statuses.of.all.active.leases. |
| 7a7c0 | 67 72 61 6e 74 65 64 20 62 79 20 6c 6f 63 61 6c 20 28 74 68 69 73 20 73 65 72 76 65 72 29 20 6f | granted.by.local.(this.server).o |
| 7a7e0 | 72 20 72 65 6d 6f 74 65 20 28 66 61 69 6c 6f 76 65 72 20 73 65 72 76 65 72 29 3a 00 53 68 6f 77 | r.remote.(failover.server):.Show |
| 7a800 | 20 73 74 61 74 75 73 65 73 20 6f 66 20 61 6c 6c 20 61 63 74 69 76 65 20 6c 65 61 73 65 73 3a 00 | .statuses.of.all.active.leases:. |
| 7a820 | 53 68 6f 77 20 74 68 65 20 44 48 43 50 20 73 65 72 76 65 72 20 73 74 61 74 69 73 74 69 63 73 20 | Show.the.DHCP.server.statistics. |
| 7a840 | 66 6f 72 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 6f 6f 6c 2e 00 53 68 6f 77 20 74 68 65 | for.the.specified.pool..Show.the |
| 7a860 | 20 44 48 43 50 20 73 65 72 76 65 72 20 73 74 61 74 69 73 74 69 63 73 3a 00 53 68 6f 77 20 74 68 | .DHCP.server.statistics:.Show.th |
| 7a880 | 65 20 63 6f 6e 73 6f 6c 65 20 73 65 72 76 65 72 20 6c 6f 67 2e 00 53 68 6f 77 20 74 68 65 20 64 | e.console.server.log..Show.the.d |
| 7a8a0 | 65 74 61 69 6c 65 64 20 73 74 61 74 75 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 49 4b | etailed.status.information.of.IK |
| 7a8c0 | 45 20 63 68 61 72 6f 6e 20 70 72 6f 63 65 73 73 2e 00 53 68 6f 77 20 74 68 65 20 66 75 6c 6c 20 | E.charon.process..Show.the.full. |
| 7a8e0 | 63 6f 6e 66 69 67 20 75 70 6c 6f 61 64 65 64 20 74 6f 20 74 68 65 20 51 41 54 20 64 65 76 69 63 | config.uploaded.to.the.QAT.devic |
| 7a900 | 65 2e 00 53 68 6f 77 20 74 68 65 20 6c 69 73 74 20 6f 66 20 61 6c 6c 20 61 63 74 69 76 65 20 63 | e..Show.the.list.of.all.active.c |
| 7a920 | 6f 6e 74 61 69 6e 65 72 73 2e 00 53 68 6f 77 20 74 68 65 20 6c 6f 63 61 6c 20 63 6f 6e 74 61 69 | ontainers..Show.the.local.contai |
| 7a940 | 6e 65 72 20 69 6d 61 67 65 73 2e 00 53 68 6f 77 20 74 68 65 20 6c 6f 67 73 20 6f 66 20 61 20 73 | ner.images..Show.the.logs.of.a.s |
| 7a960 | 70 65 63 69 66 69 63 20 52 75 6c 65 2d 53 65 74 2e 00 53 68 6f 77 20 74 68 65 20 6c 6f 67 73 20 | pecific.Rule-Set..Show.the.logs. |
| 7a980 | 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 3b 20 73 68 6f 77 20 61 6c 6c 20 62 72 69 64 67 65 | of.all.firewall;.show.all.bridge |
| 7a9a0 | 20 66 69 72 65 77 61 6c 6c 20 6c 6f 67 73 3b 20 73 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f | .firewall.logs;.show.all.logs.fo |
| 7a9c0 | 72 20 66 6f 72 77 61 72 64 20 68 6f 6f 6b 3b 20 73 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f | r.forward.hook;.show.all.logs.fo |
| 7a9e0 | 72 20 66 6f 72 77 61 72 64 20 68 6f 6f 6b 20 61 6e 64 20 70 72 69 6f 72 69 74 79 20 66 69 6c 74 | r.forward.hook.and.priority.filt |
| 7aa00 | 65 72 3b 20 73 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f 72 20 70 61 72 74 69 63 75 6c 61 72 | er;.show.all.logs.for.particular |
| 7aa20 | 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 3b 20 73 68 6f 77 20 6c 6f 67 73 20 66 6f 72 20 73 70 65 | .custom.chain;.show.logs.for.spe |
| 7aa40 | 63 69 66 69 63 20 52 75 6c 65 2d 53 65 74 2e 00 53 68 6f 77 20 74 68 65 20 6c 6f 67 73 20 6f 66 | cific.Rule-Set..Show.the.logs.of |
| 7aa60 | 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 3b 20 73 68 6f 77 20 61 6c 6c 20 69 70 76 34 20 66 69 72 | .all.firewall;.show.all.ipv4.fir |
| 7aa80 | 65 77 61 6c 6c 20 6c 6f 67 73 3b 20 73 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f 72 20 70 61 | ewall.logs;.show.all.logs.for.pa |
| 7aaa0 | 72 74 69 63 75 6c 61 72 20 68 6f 6f 6b 3b 20 73 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f 72 | rticular.hook;.show.all.logs.for |
| 7aac0 | 20 70 61 72 74 69 63 75 6c 61 72 20 68 6f 6f 6b 20 61 6e 64 20 70 72 69 6f 72 69 74 79 3b 20 73 | .particular.hook.and.priority;.s |
| 7aae0 | 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f 72 20 70 61 72 74 69 63 75 6c 61 72 20 63 75 73 74 | how.all.logs.for.particular.cust |
| 7ab00 | 6f 6d 20 63 68 61 69 6e 3b 20 73 68 6f 77 20 6c 6f 67 73 20 66 6f 72 20 73 70 65 63 69 66 69 63 | om.chain;.show.logs.for.specific |
| 7ab20 | 20 52 75 6c 65 2d 53 65 74 2e 00 53 68 6f 77 20 74 68 65 20 6c 6f 67 73 20 6f 66 20 61 6c 6c 20 | .Rule-Set..Show.the.logs.of.all. |
| 7ab40 | 66 69 72 65 77 61 6c 6c 3b 20 73 68 6f 77 20 61 6c 6c 20 69 70 76 36 20 66 69 72 65 77 61 6c 6c | firewall;.show.all.ipv6.firewall |
| 7ab60 | 20 6c 6f 67 73 3b 20 73 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f 72 20 70 61 72 74 69 63 75 | .logs;.show.all.logs.for.particu |
| 7ab80 | 6c 61 72 20 68 6f 6f 6b 3b 20 73 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f 72 20 70 61 72 74 | lar.hook;.show.all.logs.for.part |
| 7aba0 | 69 63 75 6c 61 72 20 68 6f 6f 6b 20 61 6e 64 20 70 72 69 6f 72 69 74 79 3b 20 73 68 6f 77 20 61 | icular.hook.and.priority;.show.a |
| 7abc0 | 6c 6c 20 6c 6f 67 73 20 66 6f 72 20 70 61 72 74 69 63 75 6c 61 72 20 63 75 73 74 6f 6d 20 63 68 | ll.logs.for.particular.custom.ch |
| 7abe0 | 61 69 6e 3b 20 73 68 6f 77 20 6c 6f 67 73 20 66 6f 72 20 73 70 65 63 69 66 69 63 20 52 75 6c 65 | ain;.show.logs.for.specific.Rule |
| 7ac00 | 2d 53 65 74 2e 00 53 68 6f 77 20 74 68 65 20 72 6f 75 74 65 00 53 68 6f 77 20 74 68 65 20 73 74 | -Set..Show.the.route.Show.the.st |
| 7ac20 | 61 74 75 73 20 6f 66 20 72 75 6e 6e 69 6e 67 20 49 50 73 65 63 20 70 72 6f 63 65 73 73 20 61 6e | atus.of.running.IPsec.process.an |
| 7ac40 | 64 20 70 72 6f 63 65 73 73 20 49 44 2e 00 53 68 6f 77 20 74 72 61 6e 73 63 65 69 76 65 72 20 69 | d.process.ID..Show.transceiver.i |
| 7ac60 | 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 70 6c 75 67 69 6e 20 6d 6f 64 75 6c 65 73 2c 20 | nformation.from.plugin.modules,. |
| 7ac80 | 65 2e 67 20 53 46 50 2b 2c 20 51 53 46 50 00 53 68 6f 77 69 6e 67 20 42 46 44 20 6d 6f 6e 69 74 | e.g.SFP+,.QSFP.Showing.BFD.monit |
| 7aca0 | 6f 72 65 64 20 73 74 61 74 69 63 20 72 6f 75 74 65 73 00 53 68 6f 77 73 20 73 74 61 74 75 73 20 | ored.static.routes.Shows.status. |
| 7acc0 | 6f 66 20 61 6c 6c 20 61 73 73 69 67 6e 65 64 20 6c 65 61 73 65 73 3a 00 53 69 64 65 20 41 3a 00 | of.all.assigned.leases:.Side.A:. |
| 7ace0 | 53 69 64 65 20 42 3a 00 53 69 65 72 72 61 20 57 69 72 65 6c 65 73 73 20 41 69 72 50 72 69 6d 65 | Side.B:.Sierra.Wireless.AirPrime |
| 7ad00 | 20 4d 43 37 33 30 34 20 6d 69 6e 69 50 43 49 65 20 63 61 72 64 20 28 4c 54 45 29 00 53 69 65 72 | .MC7304.miniPCIe.card.(LTE).Sier |
| 7ad20 | 72 61 20 57 69 72 65 6c 65 73 73 20 41 69 72 50 72 69 6d 65 20 4d 43 37 34 33 30 20 6d 69 6e 69 | ra.Wireless.AirPrime.MC7430.mini |
| 7ad40 | 50 43 49 65 20 63 61 72 64 20 28 4c 54 45 29 00 53 69 65 72 72 61 20 57 69 72 65 6c 65 73 73 20 | PCIe.card.(LTE).Sierra.Wireless. |
| 7ad60 | 41 69 72 50 72 69 6d 65 20 4d 43 37 34 35 35 20 6d 69 6e 69 50 43 49 65 20 63 61 72 64 20 28 4c | AirPrime.MC7455.miniPCIe.card.(L |
| 7ad80 | 54 45 29 00 53 69 65 72 72 61 20 57 69 72 65 6c 65 73 73 20 41 69 72 50 72 69 6d 65 20 4d 43 37 | TE).Sierra.Wireless.AirPrime.MC7 |
| 7ada0 | 37 31 30 20 6d 69 6e 69 50 43 49 65 20 63 61 72 64 20 28 4c 54 45 29 00 53 69 6d 69 6c 61 72 20 | 710.miniPCIe.card.(LTE).Similar. |
| 7adc0 | 63 6f 6d 62 69 6e 61 74 69 6f 6e 73 20 61 72 65 20 61 70 70 6c 69 63 61 62 6c 65 20 66 6f 72 20 | combinations.are.applicable.for. |
| 7ade0 | 74 68 65 20 64 65 61 64 2d 70 65 65 72 2d 64 65 74 65 63 74 69 6f 6e 2e 00 53 69 6d 69 6c 61 72 | the.dead-peer-detection..Similar |
| 7ae00 | 6c 79 20 74 72 61 66 66 69 63 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 45 53 20 70 65 65 72 | ly.traffic.received.from.ES.peer |
| 7ae20 | 73 20 76 69 61 20 74 68 65 20 6f 76 65 72 6c 61 79 20 63 61 6e 6e 6f 74 20 62 65 20 66 6f 72 77 | s.via.the.overlay.cannot.be.forw |
| 7ae40 | 61 72 64 65 64 20 74 6f 20 74 68 65 20 73 65 72 76 65 72 2e 20 54 68 69 73 20 69 73 20 73 70 6c | arded.to.the.server..This.is.spl |
| 7ae60 | 69 74 2d 68 6f 72 69 7a 6f 6e 2d 66 69 6c 74 65 72 69 6e 67 20 77 69 74 68 20 6c 6f 63 61 6c 20 | it-horizon-filtering.with.local. |
| 7ae80 | 62 69 61 73 2e 00 53 69 6d 70 6c 65 20 42 61 62 65 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | bias..Simple.Babel.configuration |
| 7aea0 | 20 75 73 69 6e 67 20 32 20 6e 6f 64 65 73 20 61 6e 64 20 72 65 64 69 73 74 72 69 62 75 74 69 6e | .using.2.nodes.and.redistributin |
| 7aec0 | 67 20 63 6f 6e 6e 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 73 2e 00 53 69 6d 70 6c 65 20 52 | g.connected.interfaces..Simple.R |
| 7aee0 | 49 50 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 75 73 69 6e 67 20 32 20 6e 6f 64 65 73 20 61 | IP.configuration.using.2.nodes.a |
| 7af00 | 6e 64 20 72 65 64 69 73 74 72 69 62 75 74 69 6e 67 20 63 6f 6e 6e 65 63 74 65 64 20 69 6e 74 65 | nd.redistributing.connected.inte |
| 7af20 | 72 66 61 63 65 73 2e 00 53 69 6d 70 6c 65 20 73 65 74 75 70 20 77 69 74 68 20 6f 6e 65 20 75 73 | rfaces..Simple.setup.with.one.us |
| 7af40 | 65 72 20 61 64 64 65 64 20 61 6e 64 20 70 61 73 73 77 6f 72 64 20 61 75 74 68 65 6e 74 69 63 61 | er.added.and.password.authentica |
| 7af60 | 74 69 6f 6e 3a 00 53 69 6d 70 6c 65 20 74 65 78 74 20 70 61 73 73 77 6f 72 64 20 61 75 74 68 65 | tion:.Simple.text.password.authe |
| 7af80 | 6e 74 69 63 61 74 69 6f 6e 20 69 73 20 69 6e 73 65 63 75 72 65 20 61 6e 64 20 64 65 70 72 65 63 | ntication.is.insecure.and.deprec |
| 7afa0 | 61 74 65 64 20 69 6e 20 66 61 76 6f 75 72 20 6f 66 20 4d 44 35 20 48 4d 41 43 20 61 75 74 68 65 | ated.in.favour.of.MD5.HMAC.authe |
| 7afc0 | 6e 74 69 63 61 74 69 6f 6e 2e 00 53 69 6e 63 65 20 62 6f 74 68 20 72 6f 75 74 65 72 73 20 64 6f | ntication..Since.both.routers.do |
| 7afe0 | 20 6e 6f 74 20 6b 6e 6f 77 20 74 68 65 69 72 20 65 66 66 65 63 74 69 76 65 20 70 75 62 6c 69 63 | .not.know.their.effective.public |
| 7b000 | 20 61 64 64 72 65 73 73 65 73 2c 20 77 65 20 73 65 74 20 74 68 65 20 6c 6f 63 61 6c 2d 61 64 64 | .addresses,.we.set.the.local-add |
| 7b020 | 72 65 73 73 20 6f 66 20 74 68 65 20 70 65 65 72 20 74 6f 20 22 61 6e 79 22 2e 00 53 69 6e 63 65 | ress.of.the.peer.to."any"..Since |
| 7b040 | 20 62 72 69 64 67 65 73 20 6f 70 65 72 61 74 65 73 20 61 74 20 6c 61 79 65 72 20 32 2c 20 62 6f | .bridges.operates.at.layer.2,.bo |
| 7b060 | 74 68 20 6d 61 74 63 68 65 72 73 20 66 6f 72 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 72 | th.matchers.for.IPv4.and.IPv6.ar |
| 7b080 | 65 20 73 75 70 70 6f 72 74 65 64 20 69 6e 20 62 72 69 64 67 65 20 66 69 72 65 77 61 6c 6c 20 63 | e.supported.in.bridge.firewall.c |
| 7b0a0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 53 61 6d 65 20 61 70 70 6c 69 65 73 20 66 6f 72 20 66 | onfiguration..Same.applies.for.f |
| 7b0c0 | 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 2e 00 53 69 6e 63 65 20 62 72 69 64 67 65 73 20 6f 70 | irewall.groups..Since.bridges.op |
| 7b0e0 | 65 72 61 74 73 20 61 74 20 6c 61 79 65 72 20 32 2c 20 62 6f 74 68 20 6d 61 74 63 68 65 72 73 20 | erats.at.layer.2,.both.matchers. |
| 7b100 | 66 6f 72 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 20 | for.IPv4.and.IPv6.are.supported. |
| 7b120 | 69 6e 20 62 72 69 64 67 65 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | in.bridge.firewall.configuration |
| 7b140 | 2e 20 53 61 6d 65 20 61 70 70 6c 69 65 73 20 74 6f 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 | ..Same.applies.to.firewall.group |
| 7b160 | 73 2e 00 53 69 6e 63 65 20 69 74 27 73 20 61 20 48 51 20 61 6e 64 20 62 72 61 6e 63 68 20 6f 66 | s..Since.it's.a.HQ.and.branch.of |
| 7b180 | 66 69 63 65 73 20 73 65 74 75 70 2c 20 77 65 20 77 69 6c 6c 20 77 61 6e 74 20 61 6c 6c 20 63 6c | fices.setup,.we.will.want.all.cl |
| 7b1a0 | 69 65 6e 74 73 20 74 6f 20 68 61 76 65 20 66 69 78 65 64 20 61 64 64 72 65 73 73 65 73 20 61 6e | ients.to.have.fixed.addresses.an |
| 7b1c0 | 64 20 77 65 20 77 69 6c 6c 20 72 6f 75 74 65 20 74 72 61 66 66 69 63 20 74 6f 20 73 70 65 63 69 | d.we.will.route.traffic.to.speci |
| 7b1e0 | 66 69 63 20 73 75 62 6e 65 74 73 20 74 68 72 6f 75 67 68 20 74 68 65 6d 2e 20 57 65 20 6e 65 65 | fic.subnets.through.them..We.nee |
| 7b200 | 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 65 61 63 68 20 63 6c 69 65 6e 74 20 | d.configuration.for.each.client. |
| 7b220 | 74 6f 20 61 63 68 69 65 76 65 20 74 68 69 73 2e 00 53 69 6e 63 65 20 69 74 27 73 20 61 20 48 51 | to.achieve.this..Since.it's.a.HQ |
| 7b240 | 20 77 69 74 68 20 62 72 61 6e 63 68 20 6f 66 66 69 63 65 73 20 73 65 74 75 70 2c 20 77 65 20 77 | .with.branch.offices.setup,.we.w |
| 7b260 | 69 6c 6c 20 77 61 6e 74 20 61 6c 6c 20 63 6c 69 65 6e 74 73 20 74 6f 20 68 61 76 65 20 66 69 78 | ill.want.all.clients.to.have.fix |
| 7b280 | 65 64 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 77 65 20 77 69 6c 6c 20 72 6f 75 74 65 20 74 | ed.addresses.and.we.will.route.t |
| 7b2a0 | 72 61 66 66 69 63 20 74 6f 20 73 70 65 63 69 66 69 63 20 73 75 62 6e 65 74 73 20 74 68 72 6f 75 | raffic.to.specific.subnets.throu |
| 7b2c0 | 67 68 20 74 68 65 6d 2e 20 57 65 20 6e 65 65 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 | gh.them..We.need.configuration.f |
| 7b2e0 | 6f 72 20 65 61 63 68 20 63 6c 69 65 6e 74 20 74 6f 20 61 63 68 69 65 76 65 20 74 68 69 73 2e 00 | or.each.client.to.achieve.this.. |
| 7b300 | 53 69 6e 63 65 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 77 6f 75 6c 64 20 62 65 | Since.the.RADIUS.server.would.be |
| 7b320 | 20 61 20 73 69 6e 67 6c 65 20 70 6f 69 6e 74 20 6f 66 20 66 61 69 6c 75 72 65 2c 20 6d 75 6c 74 | .a.single.point.of.failure,.mult |
| 7b340 | 69 70 6c 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 73 20 63 61 6e 20 62 65 20 73 65 74 75 70 | iple.RADIUS.servers.can.be.setup |
| 7b360 | 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 73 75 62 73 65 71 75 65 6e 74 69 61 6c 6c | .and.will.be.used.subsequentiall |
| 7b380 | 79 2e 00 53 69 6e 63 65 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 77 6f 75 6c 64 | y..Since.the.RADIUS.server.would |
| 7b3a0 | 20 62 65 20 61 20 73 69 6e 67 6c 65 20 70 6f 69 6e 74 20 6f 66 20 66 61 69 6c 75 72 65 2c 20 6d | .be.a.single.point.of.failure,.m |
| 7b3c0 | 75 6c 74 69 70 6c 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 73 20 63 61 6e 20 62 65 20 73 65 | ultiple.RADIUS.servers.can.be.se |
| 7b3e0 | 74 75 70 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 73 75 62 73 65 71 75 65 6e 74 69 | tup.and.will.be.used.subsequenti |
| 7b400 | 61 6c 6c 79 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 00 53 69 6e 63 65 20 74 68 65 20 6d 44 4e | ally..For.example:.Since.the.mDN |
| 7b420 | 53 20 70 72 6f 74 6f 63 6f 6c 20 73 65 6e 64 73 20 74 68 65 20 3a 61 62 62 72 3a 60 41 41 28 41 | S.protocol.sends.the.:abbr:`AA(A |
| 7b440 | 75 74 68 6f 72 69 74 61 74 69 76 65 20 41 6e 73 77 65 72 29 60 20 72 65 63 6f 72 64 73 20 69 6e | uthoritative.Answer)`.records.in |
| 7b460 | 20 74 68 65 20 70 61 63 6b 65 74 20 69 74 73 65 6c 66 2c 20 74 68 65 20 72 65 70 65 61 74 65 72 | .the.packet.itself,.the.repeater |
| 7b480 | 20 64 6f 65 73 20 6e 6f 74 20 6e 65 65 64 20 74 6f 20 66 6f 72 67 65 20 74 68 65 20 73 6f 75 72 | .does.not.need.to.forge.the.sour |
| 7b4a0 | 63 65 20 61 64 64 72 65 73 73 2e 20 49 6e 73 74 65 61 64 2c 20 74 68 65 20 73 6f 75 72 63 65 20 | ce.address..Instead,.the.source. |
| 7b4c0 | 61 64 64 72 65 73 73 20 69 73 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 68 61 74 | address.is.of.the.interface.that |
| 7b4e0 | 20 72 65 70 65 61 74 73 20 74 68 65 20 70 61 63 6b 65 74 2e 00 53 69 6e 63 65 20 74 68 65 20 6d | .repeats.the.packet..Since.the.m |
| 7b500 | 44 4e 53 20 70 72 6f 74 6f 63 6f 6c 20 73 65 6e 64 73 20 74 68 65 20 41 41 20 72 65 63 6f 72 64 | DNS.protocol.sends.the.AA.record |
| 7b520 | 73 20 69 6e 20 74 68 65 20 70 61 63 6b 65 74 20 69 74 73 65 6c 66 2c 20 74 68 65 20 72 65 70 65 | s.in.the.packet.itself,.the.repe |
| 7b540 | 61 74 65 72 20 64 6f 65 73 20 6e 6f 74 20 6e 65 65 64 20 74 6f 20 66 6f 72 67 65 20 74 68 65 20 | ater.does.not.need.to.forge.the. |
| 7b560 | 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 2e 20 49 6e 73 74 65 61 64 2c 20 74 68 65 20 73 6f 75 | source.address..Instead,.the.sou |
| 7b580 | 72 63 65 20 61 64 64 72 65 73 73 20 69 73 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 | rce.address.is.of.the.interface. |
| 7b5a0 | 74 68 61 74 20 72 65 70 65 61 74 73 20 74 68 65 20 70 61 63 6b 65 74 2e 00 53 69 6e 63 65 20 77 | that.repeats.the.packet..Since.w |
| 7b5c0 | 65 20 61 72 65 20 61 6e 61 6c 79 7a 69 6e 67 20 61 74 74 61 63 6b 73 20 74 6f 20 61 6e 64 20 66 | e.are.analyzing.attacks.to.and.f |
| 7b5e0 | 72 6f 6d 20 6f 75 72 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 2c 20 74 77 6f 20 74 79 | rom.our.internal.network,.two.ty |
| 7b600 | 70 65 73 20 6f 66 20 61 74 74 61 63 6b 73 20 63 61 6e 20 62 65 20 69 64 65 6e 74 69 66 69 65 64 | pes.of.attacks.can.be.identified |
| 7b620 | 2c 20 61 6e 64 20 64 69 66 66 65 72 65 6e 74 20 61 63 74 69 6f 6e 73 20 61 72 65 20 6e 65 65 64 | ,.and.different.actions.are.need |
| 7b640 | 65 64 3a 00 53 69 6e 63 65 20 77 65 20 61 72 65 20 61 6e 61 6c 79 7a 69 6e 67 20 61 74 74 61 63 | ed:.Since.we.are.analyzing.attac |
| 7b660 | 6b 73 20 74 6f 20 61 6e 64 20 66 72 6f 6d 20 6f 75 72 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 | ks.to.and.from.our.internal.netw |
| 7b680 | 6f 72 6b 2c 20 74 77 6f 20 74 79 70 65 73 20 6f 66 20 61 74 74 61 63 6b 73 20 63 61 6e 20 62 65 | ork,.two.types.of.attacks.can.be |
| 7b6a0 | 20 69 64 65 6e 74 69 66 69 65 64 2c 20 61 6e 64 20 64 69 66 66 65 72 65 6e 74 73 20 61 63 74 69 | .identified,.and.differents.acti |
| 7b6c0 | 6f 6e 73 20 61 72 65 20 6e 65 65 64 65 64 3a 00 53 69 6e 67 6c 65 20 56 58 4c 41 4e 20 64 65 76 | ons.are.needed:.Single.VXLAN.dev |
| 7b6e0 | 69 63 65 20 28 53 56 44 29 00 53 69 6e 67 6c 65 20 65 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 | ice.(SVD).Single.external.addres |
| 7b700 | 73 00 53 69 74 65 20 74 6f 20 53 69 74 65 20 56 50 4e 00 53 69 74 65 2d 74 6f 2d 53 69 74 65 00 | s.Site.to.Site.VPN.Site-to-Site. |
| 7b720 | 53 69 74 65 2d 74 6f 2d 73 69 74 65 20 6d 6f 64 65 20 70 72 6f 76 69 64 65 73 20 61 20 77 61 79 | Site-to-site.mode.provides.a.way |
| 7b740 | 20 74 6f 20 61 64 64 20 72 65 6d 6f 74 65 20 70 65 65 72 73 2c 20 77 68 69 63 68 20 63 6f 75 6c | .to.add.remote.peers,.which.coul |
| 7b760 | 64 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 65 78 63 68 61 6e 67 65 20 65 6e 63 72 | d.be.configured.to.exchange.encr |
| 7b780 | 79 70 74 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 74 68 65 6d 20 61 | ypted.information.between.them.a |
| 7b7a0 | 6e 64 20 56 79 4f 53 20 69 74 73 65 6c 66 20 6f 72 20 63 6f 6e 6e 65 63 74 65 64 2f 72 6f 75 74 | nd.VyOS.itself.or.connected/rout |
| 7b7c0 | 65 64 20 6e 65 74 77 6f 72 6b 73 2e 00 53 69 74 65 2d 74 6f 2d 73 69 74 65 20 6d 6f 64 65 20 73 | ed.networks..Site-to-site.mode.s |
| 7b7e0 | 75 70 70 6f 72 74 73 20 78 2e 35 30 39 20 62 75 74 20 64 6f 65 73 6e 27 74 20 72 65 71 75 69 72 | upports.x.509.but.doesn't.requir |
| 7b800 | 65 20 69 74 20 61 6e 64 20 63 61 6e 20 61 6c 73 6f 20 77 6f 72 6b 20 77 69 74 68 20 73 74 61 74 | e.it.and.can.also.work.with.stat |
| 7b820 | 69 63 20 6b 65 79 73 2c 20 77 68 69 63 68 20 69 73 20 73 69 6d 70 6c 65 72 20 69 6e 20 6d 61 6e | ic.keys,.which.is.simpler.in.man |
| 7b840 | 79 20 63 61 73 65 73 2e 20 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 2c 20 77 65 27 6c 6c 20 | y.cases..In.this.example,.we'll. |
| 7b860 | 63 6f 6e 66 69 67 75 72 65 20 61 20 73 69 6d 70 6c 65 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 | configure.a.simple.site-to-site. |
| 7b880 | 4f 70 65 6e 56 50 4e 20 74 75 6e 6e 65 6c 20 75 73 69 6e 67 20 61 20 32 30 34 38 2d 62 69 74 20 | OpenVPN.tunnel.using.a.2048-bit. |
| 7b8a0 | 70 72 65 2d 73 68 61 72 65 64 20 6b 65 79 2e 00 53 69 7a 65 20 6f 66 20 74 68 65 20 52 53 41 20 | pre-shared.key..Size.of.the.RSA. |
| 7b8c0 | 6b 65 79 2e 00 53 6c 61 76 65 20 73 65 6c 65 63 74 69 6f 6e 20 66 6f 72 20 6f 75 74 67 6f 69 6e | key..Slave.selection.for.outgoin |
| 7b8e0 | 67 20 74 72 61 66 66 69 63 20 69 73 20 64 6f 6e 65 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 74 | g.traffic.is.done.according.to.t |
| 7b900 | 68 65 20 74 72 61 6e 73 6d 69 74 20 68 61 73 68 20 70 6f 6c 69 63 79 2c 20 77 68 69 63 68 20 6d | he.transmit.hash.policy,.which.m |
| 7b920 | 61 79 20 62 65 20 63 68 61 6e 67 65 64 20 66 72 6f 6d 20 74 68 65 20 64 65 66 61 75 6c 74 20 73 | ay.be.changed.from.the.default.s |
| 7b940 | 69 6d 70 6c 65 20 58 4f 52 20 70 6f 6c 69 63 79 20 76 69 61 20 74 68 65 20 3a 63 66 67 63 6d 64 | imple.XOR.policy.via.the.:cfgcmd |
| 7b960 | 3a 60 68 61 73 68 2d 70 6f 6c 69 63 79 60 20 6f 70 74 69 6f 6e 2c 20 64 6f 63 75 6d 65 6e 74 65 | :`hash-policy`.option,.documente |
| 7b980 | 64 20 62 65 6c 6f 77 2e 00 53 6f 20 69 6e 20 6f 75 72 20 66 69 72 65 77 61 6c 6c 20 70 6f 6c 69 | d.below..So.in.our.firewall.poli |
| 7b9a0 | 63 79 2c 20 77 65 20 77 61 6e 74 20 74 6f 20 61 6c 6c 6f 77 20 74 72 61 66 66 69 63 20 63 6f 6d | cy,.we.want.to.allow.traffic.com |
| 7b9c0 | 69 6e 67 20 69 6e 20 6f 6e 20 74 68 65 20 6f 75 74 73 69 64 65 20 69 6e 74 65 72 66 61 63 65 2c | ing.in.on.the.outside.interface, |
| 7b9e0 | 20 64 65 73 74 69 6e 65 64 20 66 6f 72 20 54 43 50 20 70 6f 72 74 20 38 30 20 61 6e 64 20 74 68 | .destined.for.TCP.port.80.and.th |
| 7ba00 | 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 31 39 32 2e 31 36 38 2e 30 2e 31 30 30 2e 00 53 | e.IP.address.of.192.168.0.100..S |
| 7ba20 | 6f 20 69 6e 20 6f 75 72 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 65 74 2c 20 77 65 20 77 61 | o.in.our.firewall.ruleset,.we.wa |
| 7ba40 | 6e 74 20 74 6f 20 61 6c 6c 6f 77 20 74 72 61 66 66 69 63 20 77 68 69 63 68 20 70 72 65 76 69 6f | nt.to.allow.traffic.which.previo |
| 7ba60 | 75 73 6c 79 20 6d 61 74 63 68 65 64 20 61 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6e 61 74 20 72 | usly.matched.a.destination.nat.r |
| 7ba80 | 75 6c 65 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 61 76 6f 69 64 20 63 72 65 61 74 69 6e 67 20 | ule..In.order.to.avoid.creating. |
| 7baa0 | 6d 61 6e 79 20 72 75 6c 65 73 2c 20 6f 6e 65 20 66 6f 72 20 65 61 63 68 20 64 65 73 74 69 6e 61 | many.rules,.one.for.each.destina |
| 7bac0 | 74 69 6f 6e 20 6e 61 74 20 72 75 6c 65 2c 20 77 65 20 63 61 6e 20 61 63 63 65 70 74 20 61 6c 6c | tion.nat.rule,.we.can.accept.all |
| 7bae0 | 20 2a 2a 27 64 6e 61 74 27 2a 2a 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 77 69 74 68 20 6f 6e 65 | .**'dnat'**.connections.with.one |
| 7bb00 | 20 73 69 6d 70 6c 65 20 72 75 6c 65 2c 20 75 73 69 6e 67 20 60 60 63 6f 6e 6e 65 63 74 69 6f 6e | .simple.rule,.using.``connection |
| 7bb20 | 2d 73 74 61 74 75 73 60 60 20 6d 61 74 63 68 65 72 3a 00 53 6f 2c 20 66 69 72 65 77 61 6c 6c 20 | -status``.matcher:.So,.firewall. |
| 7bb40 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6e 65 65 64 65 64 20 66 6f 72 20 74 68 69 73 20 73 65 | configuration.needed.for.this.se |
| 7bb60 | 74 75 70 3a 00 53 6f 6c 61 72 57 69 6e 64 73 00 53 6f 6d 65 20 49 53 50 73 20 62 79 20 64 65 66 | tup:.SolarWinds.Some.ISPs.by.def |
| 7bb80 | 61 75 6c 74 20 6f 6e 6c 79 20 64 65 6c 65 67 61 74 65 20 61 20 2f 36 34 20 70 72 65 66 69 78 2e | ault.only.delegate.a./64.prefix. |
| 7bba0 | 20 54 6f 20 72 65 71 75 65 73 74 20 66 6f 72 20 61 20 73 70 65 63 69 66 69 63 20 70 72 65 66 69 | .To.request.for.a.specific.prefi |
| 7bbc0 | 78 20 73 69 7a 65 20 75 73 65 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 74 6f 20 72 65 71 75 65 73 | x.size.use.this.option.to.reques |
| 7bbe0 | 74 20 66 6f 72 20 61 20 62 69 67 67 65 72 20 64 65 6c 65 67 61 74 69 6f 6e 20 66 6f 72 20 74 68 | t.for.a.bigger.delegation.for.th |
| 7bc00 | 69 73 20 70 64 20 60 3c 69 64 3e 60 2e 20 54 68 69 73 20 76 61 6c 75 65 20 69 73 20 69 6e 20 74 | is.pd.`<id>`..This.value.is.in.t |
| 7bc20 | 68 65 20 72 61 6e 67 65 20 66 72 6f 6d 20 33 32 20 2d 20 36 34 20 73 6f 20 79 6f 75 20 63 6f 75 | he.range.from.32.-.64.so.you.cou |
| 7bc40 | 6c 64 20 72 65 71 75 65 73 74 20 75 70 20 74 6f 20 61 20 2f 33 32 20 70 72 65 66 69 78 20 28 69 | ld.request.up.to.a./32.prefix.(i |
| 7bc60 | 66 20 79 6f 75 72 20 49 53 50 20 61 6c 6c 6f 77 73 20 74 68 69 73 29 20 64 6f 77 6e 20 74 6f 20 | f.your.ISP.allows.this).down.to. |
| 7bc80 | 61 20 2f 36 34 20 64 65 6c 65 67 61 74 69 6f 6e 2e 00 53 6f 6d 65 20 49 54 20 65 6e 76 69 72 6f | a./64.delegation..Some.IT.enviro |
| 7bca0 | 6e 6d 65 6e 74 73 20 72 65 71 75 69 72 65 20 74 68 65 20 75 73 65 20 6f 66 20 61 20 70 72 6f 78 | nments.require.the.use.of.a.prox |
| 7bcc0 | 79 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 49 6e 74 65 72 6e 65 74 2e 20 57 69 | y.to.connect.to.the.Internet..Wi |
| 7bce0 | 74 68 6f 75 74 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 56 79 4f 53 20 75 70 | thout.this.configuration.VyOS.up |
| 7bd00 | 64 61 74 65 73 20 63 6f 75 6c 64 20 6e 6f 74 20 62 65 20 69 6e 73 74 61 6c 6c 65 64 20 64 69 72 | dates.could.not.be.installed.dir |
| 7bd20 | 65 63 74 6c 79 20 62 79 20 75 73 69 6e 67 20 74 68 65 20 3a 6f 70 63 6d 64 3a 60 61 64 64 20 73 | ectly.by.using.the.:opcmd:`add.s |
| 7bd40 | 79 73 74 65 6d 20 69 6d 61 67 65 60 20 63 6f 6d 6d 61 6e 64 20 28 3a 72 65 66 3a 60 75 70 64 61 | ystem.image`.command.(:ref:`upda |
| 7bd60 | 74 65 5f 76 79 6f 73 60 29 2e 00 53 6f 6d 65 20 52 41 44 49 55 53 20 73 65 76 65 72 73 20 75 73 | te_vyos`)..Some.RADIUS.severs.us |
| 7bd80 | 65 20 61 6e 20 61 63 63 65 73 73 20 63 6f 6e 74 72 6f 6c 20 6c 69 73 74 20 77 68 69 63 68 20 61 | e.an.access.control.list.which.a |
| 7bda0 | 6c 6c 6f 77 73 20 6f 72 20 64 65 6e 69 65 73 20 71 75 65 72 69 65 73 2c 20 6d 61 6b 65 20 73 75 | llows.or.denies.queries,.make.su |
| 7bdc0 | 72 65 20 74 6f 20 61 64 64 20 79 6f 75 72 20 56 79 4f 53 20 72 6f 75 74 65 72 20 74 6f 20 74 68 | re.to.add.your.VyOS.router.to.th |
| 7bde0 | 65 20 61 6c 6c 6f 77 65 64 20 63 6c 69 65 6e 74 20 6c 69 73 74 2e 00 53 6f 6d 65 20 52 41 44 49 | e.allowed.client.list..Some.RADI |
| 7be00 | 55 53 5f 20 73 65 76 65 72 73 20 75 73 65 20 61 6e 20 61 63 63 65 73 73 20 63 6f 6e 74 72 6f 6c | US_.severs.use.an.access.control |
| 7be20 | 20 6c 69 73 74 20 77 68 69 63 68 20 61 6c 6c 6f 77 73 20 6f 72 20 64 65 6e 69 65 73 20 71 75 65 | .list.which.allows.or.denies.que |
| 7be40 | 72 69 65 73 2c 20 6d 61 6b 65 20 73 75 72 65 20 74 6f 20 61 64 64 20 79 6f 75 72 20 56 79 4f 53 | ries,.make.sure.to.add.your.VyOS |
| 7be60 | 20 72 6f 75 74 65 72 20 74 6f 20 74 68 65 20 61 6c 6c 6f 77 65 64 20 63 6c 69 65 6e 74 20 6c 69 | .router.to.the.allowed.client.li |
| 7be80 | 73 74 2e 00 53 6f 6d 65 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 73 65 72 76 69 63 65 20 70 72 6f | st..Some.application.service.pro |
| 7bea0 | 76 69 64 65 72 73 20 28 41 53 50 73 29 20 6f 70 65 72 61 74 65 20 61 20 56 50 4e 20 67 61 74 65 | viders.(ASPs).operate.a.VPN.gate |
| 7bec0 | 77 61 79 20 74 6f 20 70 72 6f 76 69 64 65 20 61 63 63 65 73 73 20 74 6f 20 74 68 65 69 72 20 69 | way.to.provide.access.to.their.i |
| 7bee0 | 6e 74 65 72 6e 61 6c 20 72 65 73 6f 75 72 63 65 73 2c 20 61 6e 64 20 72 65 71 75 69 72 65 20 74 | nternal.resources,.and.require.t |
| 7bf00 | 68 61 74 20 61 20 63 6f 6e 6e 65 63 74 69 6e 67 20 6f 72 67 61 6e 69 73 61 74 69 6f 6e 20 74 72 | hat.a.connecting.organisation.tr |
| 7bf20 | 61 6e 73 6c 61 74 65 20 61 6c 6c 20 74 72 61 66 66 69 63 20 74 6f 20 74 68 65 20 73 65 72 76 69 | anslate.all.traffic.to.the.servi |
| 7bf40 | 63 65 20 70 72 6f 76 69 64 65 72 20 6e 65 74 77 6f 72 6b 20 74 6f 20 61 20 73 6f 75 72 63 65 20 | ce.provider.network.to.a.source. |
| 7bf60 | 61 64 64 72 65 73 73 20 70 72 6f 76 69 64 65 64 20 62 79 20 74 68 65 20 41 53 50 2e 00 53 6f 6d | address.provided.by.the.ASP..Som |
| 7bf80 | 65 20 63 6f 6e 74 61 69 6e 65 72 20 72 65 67 69 73 74 72 69 65 73 20 72 65 71 75 69 72 65 20 63 | e.container.registries.require.c |
| 7bfa0 | 72 65 64 65 6e 74 69 61 6c 73 20 74 6f 20 62 65 20 75 73 65 64 2e 00 53 6f 6d 65 20 66 69 72 65 | redentials.to.be.used..Some.fire |
| 7bfc0 | 77 61 6c 6c 20 73 65 74 74 69 6e 67 73 20 61 72 65 20 67 6c 6f 62 61 6c 20 61 6e 64 20 68 61 76 | wall.settings.are.global.and.hav |
| 7bfe0 | 65 20 61 6e 20 61 66 66 65 63 74 20 6f 6e 20 74 68 65 20 77 68 6f 6c 65 20 73 79 73 74 65 6d 2e | e.an.affect.on.the.whole.system. |
| 7c000 | 00 53 6f 6d 65 20 66 69 72 65 77 61 6c 6c 20 73 65 74 74 69 6e 67 73 20 61 72 65 20 67 6c 6f 62 | .Some.firewall.settings.are.glob |
| 7c020 | 61 6c 20 61 6e 64 20 68 61 76 65 20 61 6e 20 61 66 66 65 63 74 20 6f 6e 20 74 68 65 20 77 68 6f | al.and.have.an.affect.on.the.who |
| 7c040 | 6c 65 20 73 79 73 74 65 6d 2e 20 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 | le.system..In.this.section.there |
| 7c060 | 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 74 68 65 73 | 's.useful.information.about.thes |
| 7c080 | 65 20 67 6c 6f 62 61 6c 2d 6f 70 74 69 6f 6e 73 20 74 68 61 74 20 63 61 6e 20 62 65 20 63 6f 6e | e.global-options.that.can.be.con |
| 7c0a0 | 66 69 67 75 72 65 64 20 75 73 69 6e 67 20 76 79 6f 73 20 63 6c 69 2e 00 53 6f 6d 65 20 70 6f 6c | figured.using.vyos.cli..Some.pol |
| 7c0c0 | 69 63 69 65 73 20 61 6c 72 65 61 64 79 20 69 6e 63 6c 75 64 65 20 6f 74 68 65 72 20 65 6d 62 65 | icies.already.include.other.embe |
| 7c0e0 | 64 64 65 64 20 70 6f 6c 69 63 69 65 73 20 69 6e 73 69 64 65 2e 20 54 68 61 74 20 69 73 20 74 68 | dded.policies.inside..That.is.th |
| 7c100 | 65 20 63 61 73 65 20 6f 66 20 53 68 61 70 65 72 5f 3a 20 65 61 63 68 20 6f 66 20 69 74 73 20 63 | e.case.of.Shaper_:.each.of.its.c |
| 7c120 | 6c 61 73 73 65 73 20 75 73 65 20 66 61 69 72 2d 71 75 65 75 65 20 75 6e 6c 65 73 73 20 79 6f 75 | lasses.use.fair-queue.unless.you |
| 7c140 | 20 63 68 61 6e 67 65 20 69 74 2e 00 53 6f 6d 65 20 70 6f 6c 69 63 69 65 73 20 63 61 6e 20 62 65 | .change.it..Some.policies.can.be |
| 7c160 | 20 63 6f 6d 62 69 6e 65 64 2c 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 61 62 6c 65 20 74 6f 20 65 | .combined,.you.will.be.able.to.e |
| 7c180 | 6d 62 65 64 5f 20 61 20 64 69 66 66 65 72 65 6e 74 20 70 6f 6c 69 63 79 20 74 68 61 74 20 77 69 | mbed_.a.different.policy.that.wi |
| 7c1a0 | 6c 6c 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 61 20 63 6c 61 73 73 20 6f 66 20 74 68 65 20 | ll.be.applied.to.a.class.of.the. |
| 7c1c0 | 6d 61 69 6e 20 70 6f 6c 69 63 79 2e 00 53 6f 6d 65 20 70 6f 73 73 69 62 6c 65 20 65 78 61 6d 70 | main.policy..Some.possible.examp |
| 7c1e0 | 6c 65 73 20 61 72 65 3a 00 53 6f 6d 65 20 70 72 6f 78 79 73 20 72 65 71 75 69 72 65 2f 73 75 70 | les.are:.Some.proxys.require/sup |
| 7c200 | 70 6f 72 74 20 74 68 65 20 22 62 61 73 69 63 22 20 48 54 54 50 20 61 75 74 68 65 6e 74 69 63 61 | port.the."basic".HTTP.authentica |
| 7c220 | 74 69 6f 6e 20 73 63 68 65 6d 65 20 61 73 20 70 65 72 20 3a 72 66 63 3a 60 37 36 31 37 60 2c 20 | tion.scheme.as.per.:rfc:`7617`,. |
| 7c240 | 74 68 75 73 20 61 20 70 61 73 73 77 6f 72 64 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 | thus.a.password.can.be.configure |
| 7c260 | 64 2e 00 53 6f 6d 65 20 70 72 6f 78 79 73 20 72 65 71 75 69 72 65 2f 73 75 70 70 6f 72 74 20 74 | d..Some.proxys.require/support.t |
| 7c280 | 68 65 20 22 62 61 73 69 63 22 20 48 54 54 50 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 | he."basic".HTTP.authentication.s |
| 7c2a0 | 63 68 65 6d 65 20 61 73 20 70 65 72 20 3a 72 66 63 3a 60 37 36 31 37 60 2c 20 74 68 75 73 20 61 | cheme.as.per.:rfc:`7617`,.thus.a |
| 7c2c0 | 20 75 73 65 72 6e 61 6d 65 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 53 6f 6d | .username.can.be.configured..Som |
| 7c2e0 | 65 20 72 65 63 65 6e 74 20 49 53 50 73 20 72 65 71 75 69 72 65 20 79 6f 75 20 74 6f 20 62 75 69 | e.recent.ISPs.require.you.to.bui |
| 7c300 | 6c 64 20 74 68 65 20 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 68 72 6f 75 67 68 20 | ld.the.PPPoE.connection.through. |
| 7c320 | 61 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 2e 20 4f 6e 65 20 6f 66 20 74 68 6f 73 65 20 49 | a.VLAN.interface..One.of.those.I |
| 7c340 | 53 50 73 20 69 73 20 65 2e 67 2e 20 44 65 75 74 73 63 68 65 20 54 65 6c 65 6b 6f 6d 20 69 6e 20 | SPs.is.e.g..Deutsche.Telekom.in. |
| 7c360 | 47 65 72 6d 61 6e 79 2e 20 56 79 4f 53 20 63 61 6e 20 65 61 73 69 6c 79 20 63 72 65 61 74 65 20 | Germany..VyOS.can.easily.create. |
| 7c380 | 61 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e 20 74 68 72 6f 75 67 68 20 61 6e 20 65 6e 63 61 70 | a.PPPoE.session.through.an.encap |
| 7c3a0 | 73 75 6c 61 74 65 64 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 66 6f 6c 6c | sulated.VLAN.interface..The.foll |
| 7c3c0 | 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 69 6c 6c 20 72 75 6e 20 79 6f 75 | owing.configuration.will.run.you |
| 7c3e0 | 72 20 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 68 72 6f 75 67 68 20 56 4c 41 4e 37 | r.PPPoE.connection.through.VLAN7 |
| 7c400 | 20 77 68 69 63 68 20 69 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 56 4c 41 4e 20 66 6f 72 20 44 | .which.is.the.default.VLAN.for.D |
| 7c420 | 65 75 74 73 63 68 65 20 54 65 6c 65 6b 6f 6d 3a 00 53 6f 6d 65 20 73 65 72 76 69 63 65 73 20 64 | eutsche.Telekom:.Some.services.d |
| 7c440 | 6f 6e 27 74 20 77 6f 72 6b 20 63 6f 72 72 65 63 74 6c 79 20 77 68 65 6e 20 62 65 69 6e 67 20 68 | on't.work.correctly.when.being.h |
| 7c460 | 61 6e 64 6c 65 64 20 76 69 61 20 61 20 77 65 62 20 70 72 6f 78 79 2e 20 53 6f 20 73 6f 6d 65 74 | andled.via.a.web.proxy..So.somet |
| 7c480 | 69 6d 65 73 20 69 74 20 69 73 20 75 73 65 66 75 6c 20 74 6f 20 62 79 70 61 73 73 20 61 20 74 72 | imes.it.is.useful.to.bypass.a.tr |
| 7c4a0 | 61 6e 73 70 61 72 65 6e 74 20 70 72 6f 78 79 3a 00 53 6f 6d 65 20 75 73 65 72 73 20 74 65 6e 64 | ansparent.proxy:.Some.users.tend |
| 7c4c0 | 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 68 65 69 72 20 6d 6f 62 69 6c 65 20 64 65 76 69 63 65 73 | .to.connect.their.mobile.devices |
| 7c4e0 | 20 75 73 69 6e 67 20 57 69 72 65 47 75 61 72 64 20 74 6f 20 74 68 65 69 72 20 56 79 4f 53 20 72 | .using.WireGuard.to.their.VyOS.r |
| 7c500 | 6f 75 74 65 72 2e 20 54 6f 20 65 61 73 65 20 64 65 70 6c 6f 79 6d 65 6e 74 20 6f 6e 65 20 63 61 | outer..To.ease.deployment.one.ca |
| 7c520 | 6e 20 67 65 6e 65 72 61 74 65 20 61 20 22 70 65 72 20 6d 6f 62 69 6c 65 22 20 63 6f 6e 66 69 67 | n.generate.a."per.mobile".config |
| 7c540 | 75 72 61 74 69 6f 6e 20 66 72 6f 6d 20 74 68 65 20 56 79 4f 53 20 43 4c 49 2e 00 53 6f 6d 65 74 | uration.from.the.VyOS.CLI..Somet |
| 7c560 | 69 6d 65 73 20 6f 70 74 69 6f 6e 20 6c 69 6e 65 73 20 69 6e 20 74 68 65 20 67 65 6e 65 72 61 74 | imes.option.lines.in.the.generat |
| 7c580 | 65 64 20 4f 70 65 6e 56 50 4e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 72 65 71 75 69 72 65 | ed.OpenVPN.configuration.require |
| 7c5a0 | 20 71 75 6f 74 65 73 2e 20 54 68 69 73 20 69 73 20 64 6f 6e 65 20 74 68 72 6f 75 67 68 20 61 20 | .quotes..This.is.done.through.a. |
| 7c5c0 | 68 61 63 6b 20 6f 6e 20 6f 75 72 20 63 6f 6e 66 69 67 20 67 65 6e 65 72 61 74 6f 72 2e 20 59 6f | hack.on.our.config.generator..Yo |
| 7c5e0 | 75 20 63 61 6e 20 70 61 73 73 20 71 75 6f 74 65 73 20 75 73 69 6e 67 20 74 68 65 20 60 60 26 71 | u.can.pass.quotes.using.the.``&q |
| 7c600 | 75 6f 74 3b 60 60 20 73 74 61 74 65 6d 65 6e 74 2e 00 53 6f 72 74 20 74 68 65 20 6f 75 74 70 75 | uot;``.statement..Sort.the.outpu |
| 7c620 | 74 20 62 79 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 6b 65 79 2e 20 50 6f 73 73 69 62 6c 65 | t.by.the.specified.key..Possible |
| 7c640 | 20 6b 65 79 73 3a 20 65 78 70 69 72 65 73 2c 20 69 61 69 64 5f 64 75 69 64 2c 20 69 70 2c 20 6c | .keys:.expires,.iaid_duid,.ip,.l |
| 7c660 | 61 73 74 5f 63 6f 6d 6d 2c 20 70 6f 6f 6c 2c 20 72 65 6d 61 69 6e 69 6e 67 2c 20 73 74 61 74 65 | ast_comm,.pool,.remaining,.state |
| 7c680 | 2c 20 74 79 70 65 20 28 64 65 66 61 75 6c 74 20 3d 20 69 70 29 00 53 6f 72 74 20 74 68 65 20 6f | ,.type.(default.=.ip).Sort.the.o |
| 7c6a0 | 75 74 70 75 74 20 62 79 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 6b 65 79 2e 20 50 6f 73 73 | utput.by.the.specified.key..Poss |
| 7c6c0 | 69 62 6c 65 20 6b 65 79 73 3a 20 69 70 2c 20 68 61 72 64 77 61 72 65 5f 61 64 64 72 65 73 73 2c | ible.keys:.ip,.hardware_address, |
| 7c6e0 | 20 73 74 61 74 65 2c 20 73 74 61 72 74 2c 20 65 6e 64 2c 20 72 65 6d 61 69 6e 69 6e 67 2c 20 70 | .state,.start,.end,.remaining,.p |
| 7c700 | 6f 6f 6c 2c 20 68 6f 73 74 6e 61 6d 65 20 28 64 65 66 61 75 6c 74 20 3d 20 69 70 29 00 53 6f 75 | ool,.hostname.(default.=.ip).Sou |
| 7c720 | 72 63 65 20 41 64 64 72 65 73 73 00 53 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 75 73 | rce.Address.Source.IP.address.us |
| 7c740 | 65 64 20 66 6f 72 20 56 58 4c 41 4e 20 75 6e 64 65 72 6c 61 79 2e 20 54 68 69 73 20 69 73 20 6d | ed.for.VXLAN.underlay..This.is.m |
| 7c760 | 61 6e 64 61 74 6f 72 79 20 77 68 65 6e 20 75 73 69 6e 67 20 56 58 4c 41 4e 20 76 69 61 20 4c 32 | andatory.when.using.VXLAN.via.L2 |
| 7c780 | 56 50 4e 2f 45 56 50 4e 2e 00 53 6f 75 72 63 65 20 49 50 76 34 20 61 64 64 72 65 73 73 20 75 73 | VPN/EVPN..Source.IPv4.address.us |
| 7c7a0 | 65 64 20 69 6e 20 61 6c 6c 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 71 75 65 69 72 65 73 2e | ed.in.all.RADIUS.server.queires. |
| 7c7c0 | 00 53 6f 75 72 63 65 20 4e 41 54 20 72 75 6c 65 73 00 53 6f 75 72 63 65 20 50 72 65 66 69 78 00 | .Source.NAT.rules.Source.Prefix. |
| 7c7e0 | 53 6f 75 72 63 65 20 61 6c 6c 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 52 41 | Source.all.connections.to.the.RA |
| 7c800 | 44 49 55 53 20 73 65 72 76 65 72 73 20 66 72 6f 6d 20 67 69 76 65 6e 20 56 52 46 20 60 3c 6e 61 | DIUS.servers.from.given.VRF.`<na |
| 7c820 | 6d 65 3e 60 2e 00 53 6f 75 72 63 65 20 61 6c 6c 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 | me>`..Source.all.connections.to. |
| 7c840 | 74 68 65 20 54 41 43 41 43 53 20 73 65 72 76 65 72 73 20 66 72 6f 6d 20 67 69 76 65 6e 20 56 52 | the.TACACS.servers.from.given.VR |
| 7c860 | 46 20 60 3c 6e 61 6d 65 3e 60 2e 00 53 6f 75 72 63 65 20 70 72 6f 74 6f 63 6f 6c 20 74 6f 20 6d | F.`<name>`..Source.protocol.to.m |
| 7c880 | 61 74 63 68 2e 00 53 6f 75 72 63 65 20 74 75 6e 6e 65 6c 20 66 72 6f 6d 20 64 75 6d 6d 79 20 69 | atch..Source.tunnel.from.dummy.i |
| 7c8a0 | 6e 74 65 72 66 61 63 65 00 53 6f 75 72 63 65 20 74 75 6e 6e 65 6c 20 66 72 6f 6d 20 6c 6f 6f 70 | nterface.Source.tunnel.from.loop |
| 7c8c0 | 62 61 63 6b 73 00 53 70 61 6e 6e 69 6e 67 20 54 72 65 65 20 50 72 6f 74 6f 63 6f 6c 20 66 6f 72 | backs.Spanning.Tree.Protocol.for |
| 7c8e0 | 77 61 72 64 69 6e 67 20 60 3c 64 65 6c 61 79 3e 60 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 64 65 | warding.`<delay>`.in.seconds.(de |
| 7c900 | 66 61 75 6c 74 3a 20 31 35 29 2e 00 53 70 61 6e 6e 69 6e 67 20 54 72 65 65 20 50 72 6f 74 6f 63 | fault:.15)..Spanning.Tree.Protoc |
| 7c920 | 6f 6c 20 68 65 6c 6c 6f 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 20 60 3c 69 6e 74 65 72 76 61 | ol.hello.advertisement.`<interva |
| 7c940 | 6c 3e 60 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a 20 32 29 2e 00 53 70 61 | l>`.in.seconds.(default:.2)..Spa |
| 7c960 | 6e 6e 69 6e 67 20 54 72 65 65 20 50 72 6f 74 6f 63 6f 6c 20 69 73 20 6e 6f 74 20 65 6e 61 62 6c | nning.Tree.Protocol.is.not.enabl |
| 7c980 | 65 64 20 62 79 20 64 65 66 61 75 6c 74 20 69 6e 20 56 79 4f 53 2e 20 3a 72 65 66 3a 60 73 74 70 | ed.by.default.in.VyOS..:ref:`stp |
| 7c9a0 | 60 20 63 61 6e 20 62 65 20 65 61 73 69 6c 79 20 65 6e 61 62 6c 65 64 20 69 66 20 6e 65 65 64 65 | `.can.be.easily.enabled.if.neede |
| 7c9c0 | 64 2e 00 53 70 61 74 69 61 6c 20 4d 75 6c 74 69 70 6c 65 78 69 6e 67 20 50 6f 77 65 72 20 53 61 | d..Spatial.Multiplexing.Power.Sa |
| 7c9e0 | 76 65 20 28 53 4d 50 53 29 20 73 65 74 74 69 6e 67 73 00 53 70 65 63 66 79 69 6e 67 20 6e 68 73 | ve.(SMPS).settings.Specfying.nhs |
| 7ca00 | 20 6d 61 6b 65 73 20 61 6c 6c 20 6d 75 6c 74 69 63 61 73 74 20 70 61 63 6b 65 74 73 20 74 6f 20 | .makes.all.multicast.packets.to. |
| 7ca20 | 62 65 20 72 65 70 65 61 74 65 64 20 74 6f 20 65 61 63 68 20 73 74 61 74 69 63 61 6c 6c 79 20 63 | be.repeated.to.each.statically.c |
| 7ca40 | 6f 6e 66 69 67 75 72 65 64 20 6e 65 78 74 20 68 6f 70 2e 00 53 70 65 63 69 66 69 65 73 20 3a 61 | onfigured.next.hop..Specifies.:a |
| 7ca60 | 62 62 72 3a 60 4d 50 50 45 20 28 4d 69 63 72 6f 73 6f 66 74 20 50 6f 69 6e 74 2d 74 6f 2d 50 6f | bbr:`MPPE.(Microsoft.Point-to-Po |
| 7ca80 | 69 6e 74 20 45 6e 63 72 79 70 74 69 6f 6e 29 60 20 6e 65 67 6f 74 69 61 74 69 6f 6e 20 70 72 65 | int.Encryption)`.negotiation.pre |
| 7caa0 | 66 65 72 65 6e 63 65 2e 00 53 70 65 63 69 66 69 65 73 20 3a 61 62 62 72 3a 60 4d 50 50 45 20 28 | ference..Specifies.:abbr:`MPPE.( |
| 7cac0 | 4d 69 63 72 6f 73 6f 66 74 20 50 6f 69 6e 74 2d 74 6f 2d 50 6f 69 6e 74 20 45 6e 63 72 79 70 74 | Microsoft.Point-to-Point.Encrypt |
| 7cae0 | 69 6f 6e 29 60 20 6e 65 67 6f 74 69 6f 61 74 69 6f 6e 20 70 72 65 66 65 72 65 6e 63 65 2e 00 53 | ion)`.negotioation.preference..S |
| 7cb00 | 70 65 63 69 66 69 65 73 20 49 50 20 61 64 64 72 65 73 73 20 66 6f 72 20 44 79 6e 61 6d 69 63 20 | pecifies.IP.address.for.Dynamic. |
| 7cb20 | 41 75 74 68 6f 72 69 7a 61 74 69 6f 6e 20 45 78 74 65 6e 73 69 6f 6e 20 73 65 72 76 65 72 20 28 | Authorization.Extension.server.( |
| 7cb40 | 44 4d 2f 43 6f 41 29 00 53 70 65 63 69 66 69 65 73 20 49 50 76 34 20 6e 65 67 6f 74 69 61 74 69 | DM/CoA).Specifies.IPv4.negotiati |
| 7cb60 | 6f 6e 20 70 72 65 66 65 72 65 6e 63 65 2e 00 53 70 65 63 69 66 69 65 73 20 49 50 76 36 20 6e 65 | on.preference..Specifies.IPv6.ne |
| 7cb80 | 67 6f 74 69 61 74 69 6f 6e 20 70 72 65 66 65 72 65 6e 63 65 2e 00 53 70 65 63 69 66 69 65 73 20 | gotiation.preference..Specifies. |
| 7cba0 | 53 65 72 76 69 63 65 2d 4e 61 6d 65 20 74 6f 20 72 65 73 70 6f 6e 64 2e 20 49 66 20 61 62 73 65 | Service-Name.to.respond..If.abse |
| 7cbc0 | 6e 74 20 61 6e 79 20 53 65 72 76 69 63 65 2d 4e 61 6d 65 20 69 73 20 61 63 63 65 70 74 61 62 6c | nt.any.Service-Name.is.acceptabl |
| 7cbe0 | 65 20 61 6e 64 20 63 6c 69 65 6e 74 e2 80 99 73 20 53 65 72 76 69 63 65 2d 4e 61 6d 65 20 77 69 | e.and.client...s.Service-Name.wi |
| 7cc00 | 6c 6c 20 62 65 20 73 65 6e 74 20 62 61 63 6b 2e 20 41 6c 73 6f 20 70 6f 73 73 69 62 6c 65 20 73 | ll.be.sent.back..Also.possible.s |
| 7cc20 | 65 74 20 6d 75 6c 74 69 70 6c 65 20 73 65 72 76 69 63 65 2d 6e 61 6d 65 73 3a 20 60 73 6e 31 2c | et.multiple.service-names:.`sn1, |
| 7cc40 | 73 6e 32 2c 73 6e 33 60 00 53 70 65 63 69 66 69 65 73 20 61 64 64 72 65 73 73 20 74 6f 20 62 65 | sn2,sn3`.Specifies.address.to.be |
| 7cc60 | 20 75 73 65 64 20 61 73 20 73 65 72 76 65 72 20 69 70 20 61 64 64 72 65 73 73 20 69 66 20 72 61 | .used.as.server.ip.address.if.ra |
| 7cc80 | 64 69 75 73 20 63 61 6e 20 61 73 73 69 67 6e 20 6f 6e 6c 79 20 63 6c 69 65 6e 74 20 61 64 64 72 | dius.can.assign.only.client.addr |
| 7cca0 | 65 73 73 2e 20 49 6e 20 73 75 63 68 20 63 61 73 65 20 69 66 20 63 6c 69 65 6e 74 20 61 64 64 72 | ess..In.such.case.if.client.addr |
| 7ccc0 | 65 73 73 20 69 73 20 6d 61 74 63 68 65 64 20 6e 65 74 77 6f 72 6b 20 61 6e 64 20 6d 61 73 6b 20 | ess.is.matched.network.and.mask. |
| 7cce0 | 74 68 65 6e 20 73 70 65 63 69 66 69 65 64 20 61 64 64 72 65 73 73 20 61 6e 64 20 6d 61 73 6b 20 | then.specified.address.and.mask. |
| 7cd00 | 77 69 6c 6c 20 62 65 20 75 73 65 64 2e 20 59 6f 75 20 63 61 6e 20 73 70 65 63 69 66 79 20 6d 75 | will.be.used..You.can.specify.mu |
| 7cd20 | 6c 74 69 70 6c 65 20 73 75 63 68 20 6f 70 74 69 6f 6e 73 2e 00 53 70 65 63 69 66 69 65 73 20 61 | ltiple.such.options..Specifies.a |
| 7cd40 | 6e 20 6f 70 74 69 6f 6e 61 6c 20 72 6f 75 74 65 2d 6d 61 70 20 74 6f 20 62 65 20 61 70 70 6c 69 | n.optional.route-map.to.be.appli |
| 7cd60 | 65 64 20 74 6f 20 72 6f 75 74 65 73 20 69 6d 70 6f 72 74 65 64 20 6f 72 20 65 78 70 6f 72 74 65 | ed.to.routes.imported.or.exporte |
| 7cd80 | 64 20 62 65 74 77 65 65 6e 20 74 68 65 20 63 75 72 72 65 6e 74 20 75 6e 69 63 61 73 74 20 56 52 | d.between.the.current.unicast.VR |
| 7cda0 | 46 20 61 6e 64 20 56 50 4e 2e 00 53 70 65 63 69 66 69 65 73 20 61 6e 20 75 70 73 74 72 65 61 6d | F.and.VPN..Specifies.an.upstream |
| 7cdc0 | 20 6e 65 74 77 6f 72 6b 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 66 72 6f 6d 20 77 68 69 63 | .network.`<interface>`.from.whic |
| 7cde0 | 68 20 72 65 70 6c 69 65 73 20 66 72 6f 6d 20 60 3c 73 65 72 76 65 72 3e 60 20 61 6e 64 20 6f 74 | h.replies.from.`<server>`.and.ot |
| 7ce00 | 68 65 72 20 72 65 6c 61 79 20 61 67 65 6e 74 73 20 77 69 6c 6c 20 62 65 20 61 63 63 65 70 74 65 | her.relay.agents.will.be.accepte |
| 7ce20 | 64 2e 00 53 70 65 63 69 66 69 65 73 20 66 69 78 65 64 20 6f 72 20 72 61 6e 64 6f 6d 20 69 6e 74 | d..Specifies.fixed.or.random.int |
| 7ce40 | 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 66 6f 72 20 49 50 76 36 2e 20 42 79 20 64 | erface.identifier.for.IPv6..By.d |
| 7ce60 | 65 66 61 75 6c 74 20 69 73 20 66 69 78 65 64 2e 00 53 70 65 63 69 66 69 65 73 20 68 6f 77 20 6c | efault.is.fixed..Specifies.how.l |
| 7ce80 | 6f 6e 67 20 73 71 75 69 64 20 61 73 73 75 6d 65 73 20 61 6e 20 65 78 74 65 72 6e 61 6c 6c 79 20 | ong.squid.assumes.an.externally. |
| 7cea0 | 76 61 6c 69 64 61 74 65 64 20 75 73 65 72 6e 61 6d 65 3a 70 61 73 73 77 6f 72 64 20 70 61 69 72 | validated.username:password.pair |
| 7cec0 | 20 69 73 20 76 61 6c 69 64 20 66 6f 72 20 2d 20 69 6e 20 6f 74 68 65 72 20 77 6f 72 64 73 20 68 | .is.valid.for.-.in.other.words.h |
| 7cee0 | 6f 77 20 6f 66 74 65 6e 20 74 68 65 20 68 65 6c 70 65 72 20 70 72 6f 67 72 61 6d 20 69 73 20 63 | ow.often.the.helper.program.is.c |
| 7cf00 | 61 6c 6c 65 64 20 66 6f 72 20 74 68 61 74 20 75 73 65 72 2e 20 53 65 74 20 74 68 69 73 20 6c 6f | alled.for.that.user..Set.this.lo |
| 7cf20 | 77 20 74 6f 20 66 6f 72 63 65 20 72 65 76 61 6c 69 64 61 74 69 6f 6e 20 77 69 74 68 20 73 68 6f | w.to.force.revalidation.with.sho |
| 7cf40 | 72 74 20 6c 69 76 65 64 20 70 61 73 73 77 6f 72 64 73 2e 00 53 70 65 63 69 66 69 65 73 20 69 66 | rt.lived.passwords..Specifies.if |
| 7cf60 | 20 61 20 66 69 78 65 64 20 6f 72 20 72 61 6e 64 6f 6d 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 | .a.fixed.or.random.interface.ide |
| 7cf80 | 6e 74 69 66 69 65 72 20 69 73 20 75 73 65 64 20 66 6f 72 20 49 50 76 36 2e 20 54 68 65 20 64 65 | ntifier.is.used.for.IPv6..The.de |
| 7cfa0 | 66 61 75 6c 74 20 69 73 20 66 69 78 65 64 2e 00 53 70 65 63 69 66 69 65 73 20 69 66 20 75 6e 6b | fault.is.fixed..Specifies.if.unk |
| 7cfc0 | 6e 6f 77 6e 20 73 6f 75 72 63 65 20 6c 69 6e 6b 20 6c 61 79 65 72 20 61 64 64 72 65 73 73 65 73 | nown.source.link.layer.addresses |
| 7cfe0 | 20 61 6e 64 20 49 50 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 65 6e 74 65 72 65 64 20 69 6e | .and.IP.addresses.are.entered.in |
| 7d000 | 74 6f 20 74 68 65 20 56 58 4c 41 4e 20 64 65 76 69 63 65 20 66 6f 72 77 61 72 64 69 6e 67 20 64 | to.the.VXLAN.device.forwarding.d |
| 7d020 | 61 74 61 62 61 73 65 2e 00 53 70 65 63 69 66 69 65 73 20 6e 75 6d 62 65 72 20 6f 66 20 69 6e 74 | atabase..Specifies.number.of.int |
| 7d040 | 65 72 66 61 63 65 73 20 74 6f 20 63 61 63 68 65 2e 20 54 68 69 73 20 70 72 65 76 65 6e 74 73 20 | erfaces.to.cache..This.prevents. |
| 7d060 | 69 6e 74 65 72 66 61 63 65 73 20 66 72 6f 6d 20 62 65 69 6e 67 20 72 65 6d 6f 76 65 64 20 6f 6e | interfaces.from.being.removed.on |
| 7d080 | 63 65 20 74 68 65 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e 67 20 73 65 73 73 69 6f 6e 20 69 73 20 | ce.the.corresponding.session.is. |
| 7d0a0 | 64 65 73 74 72 6f 79 65 64 2e 20 49 6e 73 74 65 61 64 2c 20 69 6e 74 65 72 66 61 63 65 73 20 61 | destroyed..Instead,.interfaces.a |
| 7d0c0 | 72 65 20 63 61 63 68 65 64 20 66 6f 72 20 6c 61 74 65 72 20 75 73 65 20 69 6e 20 6e 65 77 20 73 | re.cached.for.later.use.in.new.s |
| 7d0e0 | 65 73 73 69 6f 6e 73 2e 20 54 68 69 73 20 73 68 6f 75 6c 64 20 72 65 64 75 63 65 20 74 68 65 20 | essions..This.should.reduce.the. |
| 7d100 | 6b 65 72 6e 65 6c 2d 6c 65 76 65 6c 20 69 6e 74 65 72 66 61 63 65 20 63 72 65 61 74 69 6f 6e 2f | kernel-level.interface.creation/ |
| 7d120 | 64 65 6c 65 74 69 6f 6e 20 72 61 74 65 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 | deletion.rate..Default.value.is. |
| 7d140 | 2a 2a 30 2a 2a 2e 00 53 70 65 63 69 66 69 65 73 20 6e 75 6d 62 65 72 20 6f 66 20 69 6e 74 65 72 | **0**..Specifies.number.of.inter |
| 7d160 | 66 61 63 65 73 20 74 6f 20 6b 65 65 70 20 69 6e 20 63 61 63 68 65 2e 20 49 74 20 6d 65 61 6e 73 | faces.to.keep.in.cache..It.means |
| 7d180 | 20 74 68 61 74 20 64 6f 6e e2 80 99 74 20 64 65 73 74 72 6f 79 20 69 6e 74 65 72 66 61 63 65 20 | .that.don...t.destroy.interface. |
| 7d1a0 | 61 66 74 65 72 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e 67 20 73 65 73 73 69 6f 6e 20 69 73 20 64 | after.corresponding.session.is.d |
| 7d1c0 | 65 73 74 72 6f 79 65 64 2c 20 69 6e 73 74 65 61 64 20 70 6c 61 63 65 20 69 74 20 74 6f 20 63 61 | estroyed,.instead.place.it.to.ca |
| 7d1e0 | 63 68 65 20 61 6e 64 20 75 73 65 20 69 74 20 6c 61 74 65 72 20 66 6f 72 20 6e 65 77 20 73 65 73 | che.and.use.it.later.for.new.ses |
| 7d200 | 73 69 6f 6e 73 20 72 65 70 65 61 74 65 64 6c 79 2e 20 54 68 69 73 20 73 68 6f 75 6c 64 20 72 65 | sions.repeatedly..This.should.re |
| 7d220 | 64 75 63 65 20 6b 65 72 6e 65 6c 2d 6c 65 76 65 6c 20 69 6e 74 65 72 66 61 63 65 20 63 72 65 61 | duce.kernel-level.interface.crea |
| 7d240 | 74 69 6f 6e 2f 64 65 6c 65 74 69 6f 6e 20 72 61 74 65 20 6c 61 63 6b 2e 20 44 65 66 61 75 6c 74 | tion/deletion.rate.lack..Default |
| 7d260 | 20 76 61 6c 75 65 20 69 73 20 2a 2a 30 2a 2a 2e 00 53 70 65 63 69 66 69 65 73 20 6f 6e 65 20 6f | .value.is.**0**..Specifies.one.o |
| 7d280 | 66 20 74 68 65 20 62 6f 6e 64 69 6e 67 20 70 6f 6c 69 63 69 65 73 2e 20 54 68 65 20 64 65 66 61 | f.the.bonding.policies..The.defa |
| 7d2a0 | 75 6c 74 20 69 73 20 38 30 32 2e 33 61 64 2e 20 50 6f 73 73 69 62 6c 65 20 76 61 6c 75 65 73 20 | ult.is.802.3ad..Possible.values. |
| 7d2c0 | 61 72 65 3a 00 53 70 65 63 69 66 69 65 73 20 70 65 65 72 20 69 6e 74 65 72 66 61 63 65 20 69 64 | are:.Specifies.peer.interface.id |
| 7d2e0 | 65 6e 74 69 66 69 65 72 20 66 6f 72 20 49 50 76 36 2e 20 42 79 20 64 65 66 61 75 6c 74 20 69 73 | entifier.for.IPv6..By.default.is |
| 7d300 | 20 66 69 78 65 64 2e 00 53 70 65 63 69 66 69 65 73 20 70 72 6f 78 79 20 73 65 72 76 69 63 65 20 | .fixed..Specifies.proxy.service. |
| 7d320 | 6c 69 73 74 65 6e 69 6e 67 20 61 64 64 72 65 73 73 2e 20 54 68 65 20 6c 69 73 74 65 6e 20 61 64 | listening.address..The.listen.ad |
| 7d340 | 64 72 65 73 73 20 69 73 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 6e 20 77 68 69 63 68 | dress.is.the.IP.address.on.which |
| 7d360 | 20 74 68 65 20 77 65 62 20 70 72 6f 78 79 20 73 65 72 76 69 63 65 20 6c 69 73 74 65 6e 73 20 66 | .the.web.proxy.service.listens.f |
| 7d380 | 6f 72 20 63 6c 69 65 6e 74 20 72 65 71 75 65 73 74 73 2e 00 53 70 65 63 69 66 69 65 73 20 72 65 | or.client.requests..Specifies.re |
| 7d3a0 | 6c 61 79 20 61 67 65 6e 74 20 49 50 20 61 64 64 72 65 00 53 70 65 63 69 66 69 65 73 20 73 69 6e | lay.agent.IP.addre.Specifies.sin |
| 7d3c0 | 67 6c 65 20 60 3c 67 61 74 65 77 61 79 3e 60 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 62 65 | gle.`<gateway>`.IP.address.to.be |
| 7d3e0 | 20 75 73 65 64 20 61 73 20 6c 6f 63 61 6c 20 61 64 64 72 65 73 73 20 6f 66 20 50 50 50 20 69 6e | .used.as.local.address.of.PPP.in |
| 7d400 | 74 65 72 66 61 63 65 73 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 61 74 20 74 68 65 20 3a 61 62 | terfaces..Specifies.that.the.:ab |
| 7d420 | 62 72 3a 60 4e 42 4d 41 20 28 4e 6f 6e 2d 62 72 6f 61 64 63 61 73 74 20 6d 75 6c 74 69 70 6c 65 | br:`NBMA.(Non-broadcast.multiple |
| 7d440 | 2d 61 63 63 65 73 73 20 6e 65 74 77 6f 72 6b 29 60 20 61 64 64 72 65 73 73 65 73 20 6f 66 20 74 | -access.network)`.addresses.of.t |
| 7d460 | 68 65 20 6e 65 78 74 20 68 6f 70 20 73 65 72 76 65 72 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 | he.next.hop.servers.are.defined. |
| 7d480 | 69 6e 20 74 68 65 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 6e 62 6d 61 2d 64 6f 6d 61 69 6e 2d 6e | in.the.domain.name.nbma-domain-n |
| 7d4a0 | 61 6d 65 2e 20 46 6f 72 20 65 61 63 68 20 41 20 72 65 63 6f 72 64 20 6f 70 65 6e 6e 68 72 70 20 | ame..For.each.A.record.opennhrp. |
| 7d4c0 | 63 72 65 61 74 65 73 20 61 20 64 79 6e 61 6d 69 63 20 4e 48 53 20 65 6e 74 72 79 2e 00 53 70 65 | creates.a.dynamic.NHS.entry..Spe |
| 7d4e0 | 63 69 66 69 65 73 20 74 68 65 20 41 52 50 20 6c 69 6e 6b 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 60 | cifies.the.ARP.link.monitoring.` |
| 7d500 | 3c 74 69 6d 65 3e 60 20 69 6e 20 73 65 63 6f 6e 64 73 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 | <time>`.in.seconds..Specifies.th |
| 7d520 | 65 20 49 50 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 75 73 65 20 61 73 20 41 52 50 20 6d 6f 6e | e.IP.addresses.to.use.as.ARP.mon |
| 7d540 | 69 74 6f 72 69 6e 67 20 70 65 65 72 73 20 77 68 65 6e 20 3a 63 66 67 63 6d 64 3a 60 61 72 70 2d | itoring.peers.when.:cfgcmd:`arp- |
| 7d560 | 6d 6f 6e 69 74 6f 72 20 69 6e 74 65 72 76 61 6c 60 20 6f 70 74 69 6f 6e 20 69 73 20 3e 20 30 2e | monitor.interval`.option.is.>.0. |
| 7d580 | 20 54 68 65 73 65 20 61 72 65 20 74 68 65 20 74 61 72 67 65 74 73 20 6f 66 20 74 68 65 20 41 52 | .These.are.the.targets.of.the.AR |
| 7d5a0 | 50 20 72 65 71 75 65 73 74 20 73 65 6e 74 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 | P.request.sent.to.determine.the. |
| 7d5c0 | 68 65 61 6c 74 68 20 6f 66 20 74 68 65 20 6c 69 6e 6b 20 74 6f 20 74 68 65 20 74 61 72 67 65 74 | health.of.the.link.to.the.target |
| 7d5e0 | 73 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 61 76 61 69 6c 61 62 6c 65 20 3a 61 62 62 72 | s..Specifies.the.available.:abbr |
| 7d600 | 3a 60 4d 41 43 20 28 4d 65 73 73 61 67 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 43 6f | :`MAC.(Message.Authentication.Co |
| 7d620 | 64 65 29 60 20 61 6c 67 6f 72 69 74 68 6d 73 2e 20 54 68 65 20 4d 41 43 20 61 6c 67 6f 72 69 74 | de)`.algorithms..The.MAC.algorit |
| 7d640 | 68 6d 20 69 73 20 75 73 65 64 20 69 6e 20 70 72 6f 74 6f 63 6f 6c 20 76 65 72 73 69 6f 6e 20 32 | hm.is.used.in.protocol.version.2 |
| 7d660 | 20 66 6f 72 20 64 61 74 61 20 69 6e 74 65 67 72 69 74 79 20 70 72 6f 74 65 63 74 69 6f 6e 2e 20 | .for.data.integrity.protection.. |
| 7d680 | 4d 75 6c 74 69 70 6c 65 20 61 6c 67 6f 72 69 74 68 6d 73 20 63 61 6e 20 62 65 20 70 72 6f 76 69 | Multiple.algorithms.can.be.provi |
| 7d6a0 | 64 65 64 20 62 79 20 75 73 69 6e 67 20 6d 75 6c 74 69 70 6c 65 20 63 6f 6d 6d 61 6e 64 73 2c 20 | ded.by.using.multiple.commands,. |
| 7d6c0 | 64 65 66 69 6e 69 6e 67 20 6f 6e 65 20 61 6c 67 6f 72 69 74 68 6d 20 70 65 72 20 63 6f 6d 6d 61 | defining.one.algorithm.per.comma |
| 7d6e0 | 6e 64 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 61 76 61 69 6c 61 62 6c 65 20 3a 61 62 62 | nd..Specifies.the.available.:abb |
| 7d700 | 72 3a 60 4d 41 43 20 28 4d 65 73 73 61 67 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 43 | r:`MAC.(Message.Authentication.C |
| 7d720 | 6f 64 65 29 60 20 61 6c 67 6f 72 69 74 68 6d 73 2e 20 54 68 65 20 4d 41 43 20 61 6c 67 6f 72 69 | ode)`.algorithms..The.MAC.algori |
| 7d740 | 74 68 6d 20 69 73 20 75 73 65 64 20 69 6e 20 70 72 6f 74 6f 63 6f 6c 20 76 65 72 73 69 6f 6e 20 | thm.is.used.in.protocol.version. |
| 7d760 | 32 20 66 6f 72 20 64 61 74 61 20 69 6e 74 65 67 72 69 74 79 20 70 72 6f 74 65 63 74 69 6f 6e 2e | 2.for.data.integrity.protection. |
| 7d780 | 20 4d 75 6c 74 69 70 6c 65 20 61 6c 67 6f 72 69 74 68 6d 73 20 63 61 6e 20 62 65 20 70 72 6f 76 | .Multiple.algorithms.can.be.prov |
| 7d7a0 | 69 64 65 64 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 62 61 73 65 20 44 4e 20 75 6e 64 65 | ided..Specifies.the.base.DN.unde |
| 7d7c0 | 72 20 77 68 69 63 68 20 74 68 65 20 75 73 65 72 73 20 61 72 65 20 6c 6f 63 61 74 65 64 2e 00 53 | r.which.the.users.are.located..S |
| 7d7e0 | 70 65 63 69 66 69 65 73 20 74 68 65 20 63 6c 69 65 6e 74 20 63 6f 6e 6e 65 63 74 69 76 69 74 79 | pecifies.the.client.connectivity |
| 7d800 | 20 6d 6f 64 65 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 63 6c 69 65 6e 74 73 20 73 75 62 | .mode..Specifies.the.clients.sub |
| 7d820 | 6e 65 74 20 6d 61 73 6b 20 61 73 20 70 65 72 20 52 46 43 20 39 35 30 2e 20 49 66 20 75 6e 73 65 | net.mask.as.per.RFC.950..If.unse |
| 7d840 | 74 2c 20 73 75 62 6e 65 74 20 64 65 63 6c 61 72 61 74 69 6f 6e 20 69 73 20 75 73 65 64 2e 00 53 | t,.subnet.declaration.is.used..S |
| 7d860 | 70 65 63 69 66 69 65 73 20 74 68 65 20 68 6f 6c 64 69 6e 67 20 74 69 6d 65 20 66 6f 72 20 4e 48 | pecifies.the.holding.time.for.NH |
| 7d880 | 52 50 20 52 65 67 69 73 74 72 61 74 69 6f 6e 20 52 65 71 75 65 73 74 73 20 61 6e 64 20 52 65 73 | RP.Registration.Requests.and.Res |
| 7d8a0 | 6f 6c 75 74 69 6f 6e 20 52 65 70 6c 69 65 73 20 73 65 6e 74 20 66 72 6f 6d 20 74 68 69 73 20 69 | olution.Replies.sent.from.this.i |
| 7d8c0 | 6e 74 65 72 66 61 63 65 20 6f 72 20 73 68 6f 72 74 63 75 74 2d 74 61 72 67 65 74 2e 20 54 68 65 | nterface.or.shortcut-target..The |
| 7d8e0 | 20 68 6f 6c 64 74 69 6d 65 20 69 73 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 73 65 63 6f 6e 64 | .holdtime.is.specified.in.second |
| 7d900 | 73 20 61 6e 64 20 64 65 66 61 75 6c 74 73 20 74 6f 20 74 77 6f 20 68 6f 75 72 73 2e 00 53 70 65 | s.and.defaults.to.two.hours..Spe |
| 7d920 | 63 69 66 69 65 73 20 74 68 65 20 69 6e 74 65 72 76 61 6c 20 61 74 20 77 68 69 63 68 20 4e 65 74 | cifies.the.interval.at.which.Net |
| 7d940 | 66 6c 6f 77 20 64 61 74 61 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 74 6f 20 61 20 63 6f 6c 6c | flow.data.will.be.sent.to.a.coll |
| 7d960 | 65 63 74 6f 72 2e 20 41 73 20 70 65 72 20 64 65 66 61 75 6c 74 2c 20 4e 65 74 66 6c 6f 77 20 64 | ector..As.per.default,.Netflow.d |
| 7d980 | 61 74 61 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 65 76 65 72 79 20 36 30 20 73 65 63 6f 6e 64 | ata.will.be.sent.every.60.second |
| 7d9a0 | 73 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 73 69 7a 65 20 6f 66 | s..Specifies.the.maximum.size.of |
| 7d9c0 | 20 61 20 72 65 70 6c 79 20 62 6f 64 79 20 69 6e 20 4b 42 2c 20 75 73 65 64 20 74 6f 20 6c 69 6d | .a.reply.body.in.KB,.used.to.lim |
| 7d9e0 | 69 74 20 74 68 65 20 72 65 70 6c 79 20 73 69 7a 65 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 | it.the.reply.size..Specifies.the |
| 7da00 | 20 6d 69 6e 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 6c 69 6e 6b 73 20 74 68 61 74 20 6d 75 | .minimum.number.of.links.that.mu |
| 7da20 | 73 74 20 62 65 20 61 63 74 69 76 65 20 62 65 66 6f 72 65 20 61 73 73 65 72 74 69 6e 67 20 63 61 | st.be.active.before.asserting.ca |
| 7da40 | 72 72 69 65 72 2e 20 49 74 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 74 68 65 20 43 69 73 63 | rrier..It.is.similar.to.the.Cisc |
| 7da60 | 6f 20 45 74 68 65 72 43 68 61 6e 6e 65 6c 20 6d 69 6e 2d 6c 69 6e 6b 73 20 66 65 61 74 75 72 65 | o.EtherChannel.min-links.feature |
| 7da80 | 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 73 65 74 74 69 6e 67 20 74 68 65 20 6d 69 6e 69 6d 75 | ..This.allows.setting.the.minimu |
| 7daa0 | 6d 20 6e 75 6d 62 65 72 20 6f 66 20 6d 65 6d 62 65 72 20 70 6f 72 74 73 20 74 68 61 74 20 6d 75 | m.number.of.member.ports.that.mu |
| 7dac0 | 73 74 20 62 65 20 75 70 20 28 6c 69 6e 6b 2d 75 70 20 73 74 61 74 65 29 20 62 65 66 6f 72 65 20 | st.be.up.(link-up.state).before. |
| 7dae0 | 6d 61 72 6b 69 6e 67 20 74 68 65 20 62 6f 6e 64 20 64 65 76 69 63 65 20 61 73 20 75 70 20 28 63 | marking.the.bond.device.as.up.(c |
| 7db00 | 61 72 72 69 65 72 20 6f 6e 29 2e 20 54 68 69 73 20 69 73 20 75 73 65 66 75 6c 20 66 6f 72 20 73 | arrier.on)..This.is.useful.for.s |
| 7db20 | 69 74 75 61 74 69 6f 6e 73 20 77 68 65 72 65 20 68 69 67 68 65 72 20 6c 65 76 65 6c 20 73 65 72 | ituations.where.higher.level.ser |
| 7db40 | 76 69 63 65 73 20 73 75 63 68 20 61 73 20 63 6c 75 73 74 65 72 69 6e 67 20 77 61 6e 74 20 74 6f | vices.such.as.clustering.want.to |
| 7db60 | 20 65 6e 73 75 72 65 20 61 20 6d 69 6e 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 6c 6f 77 20 | .ensure.a.minimum.number.of.low. |
| 7db80 | 62 61 6e 64 77 69 64 74 68 20 6c 69 6e 6b 73 20 61 72 65 20 61 63 74 69 76 65 20 62 65 66 6f 72 | bandwidth.links.are.active.befor |
| 7dba0 | 65 20 73 77 69 74 63 68 6f 76 65 72 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 6e 61 6d 65 | e.switchover..Specifies.the.name |
| 7dbc0 | 20 6f 66 20 74 68 65 20 44 4e 20 61 74 74 72 69 62 75 74 65 20 74 68 61 74 20 63 6f 6e 74 61 69 | .of.the.DN.attribute.that.contai |
| 7dbe0 | 6e 73 20 74 68 65 20 75 73 65 72 6e 61 6d 65 2f 6c 6f 67 69 6e 2e 20 43 6f 6d 62 69 6e 65 64 20 | ns.the.username/login..Combined. |
| 7dc00 | 77 69 74 68 20 74 68 65 20 62 61 73 65 20 44 4e 20 74 6f 20 63 6f 6e 73 74 72 75 63 74 20 74 68 | with.the.base.DN.to.construct.th |
| 7dc20 | 65 20 75 73 65 72 73 20 44 4e 20 77 68 65 6e 20 6e 6f 20 73 65 61 72 63 68 20 66 69 6c 74 65 72 | e.users.DN.when.no.search.filter |
| 7dc40 | 20 69 73 20 73 70 65 63 69 66 69 65 64 20 28 60 66 69 6c 74 65 72 2d 65 78 70 72 65 73 73 69 6f | .is.specified.(`filter-expressio |
| 7dc60 | 6e 60 29 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 70 65 65 72 20 69 6e 74 65 72 66 61 63 | n`)..Specifies.the.peer.interfac |
| 7dc80 | 65 20 69 64 65 6e 74 69 66 69 65 72 20 66 6f 72 20 49 50 76 36 2e 20 54 68 65 20 64 65 66 61 75 | e.identifier.for.IPv6..The.defau |
| 7dca0 | 6c 74 20 69 73 20 66 69 78 65 64 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 70 68 79 73 69 | lt.is.fixed..Specifies.the.physi |
| 7dcc0 | 63 61 6c 20 60 3c 65 74 68 58 3e 60 20 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 20 | cal.`<ethX>`.Ethernet.interface. |
| 7dce0 | 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 61 20 50 73 65 75 64 6f 20 45 74 68 65 72 6e 65 | associated.with.a.Pseudo.Etherne |
| 7dd00 | 74 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 70 | t.`<interface>`..Specifies.the.p |
| 7dd20 | 6f 72 74 20 60 3c 70 6f 72 74 3e 60 20 74 68 61 74 20 74 68 65 20 53 53 54 50 20 70 6f 72 74 20 | ort.`<port>`.that.the.SSTP.port. |
| 7dd40 | 77 69 6c 6c 20 6c 69 73 74 65 6e 20 6f 6e 20 28 64 65 66 61 75 6c 74 20 34 34 33 29 2e 00 53 70 | will.listen.on.(default.443)..Sp |
| 7dd60 | 65 63 69 66 69 65 73 20 74 68 65 20 70 72 6f 74 65 63 74 69 6f 6e 20 73 63 6f 70 65 20 28 61 6b | ecifies.the.protection.scope.(ak |
| 7dd80 | 61 20 72 65 61 6c 6d 20 6e 61 6d 65 29 20 77 68 69 63 68 20 69 73 20 74 6f 20 62 65 20 72 65 70 | a.realm.name).which.is.to.be.rep |
| 7dda0 | 6f 72 74 65 64 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 20 66 6f 72 20 74 68 65 20 61 75 74 68 | orted.to.the.client.for.the.auth |
| 7ddc0 | 65 6e 74 69 63 61 74 69 6f 6e 20 73 63 68 65 6d 65 2e 20 49 74 20 69 73 20 63 6f 6d 6d 6f 6e 6c | entication.scheme..It.is.commonl |
| 7dde0 | 79 20 70 61 72 74 20 6f 66 20 74 68 65 20 74 65 78 74 20 74 68 65 20 75 73 65 72 20 77 69 6c 6c | y.part.of.the.text.the.user.will |
| 7de00 | 20 73 65 65 20 77 68 65 6e 20 70 72 6f 6d 70 74 65 64 20 66 6f 72 20 74 68 65 69 72 20 75 73 65 | .see.when.prompted.for.their.use |
| 7de20 | 72 6e 61 6d 65 20 61 6e 64 20 70 61 73 73 77 6f 72 64 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 | rname.and.password..Specifies.th |
| 7de40 | 65 20 72 6f 75 74 65 20 64 69 73 74 69 6e 67 75 69 73 68 65 72 20 74 6f 20 62 65 20 61 64 64 65 | e.route.distinguisher.to.be.adde |
| 7de60 | 64 20 74 6f 20 61 20 72 6f 75 74 65 20 65 78 70 6f 72 74 65 64 20 66 72 6f 6d 20 74 68 65 20 63 | d.to.a.route.exported.from.the.c |
| 7de80 | 75 72 72 65 6e 74 20 75 6e 69 63 61 73 74 20 56 52 46 20 74 6f 20 56 50 4e 2e 00 53 70 65 63 69 | urrent.unicast.VRF.to.VPN..Speci |
| 7dea0 | 66 69 65 73 20 74 68 65 20 72 6f 75 74 65 2d 74 61 72 67 65 74 20 6c 69 73 74 20 74 6f 20 62 65 | fies.the.route-target.list.to.be |
| 7dec0 | 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 72 6f 75 74 65 20 28 65 78 70 6f 72 74 29 20 6f 72 | .attached.to.a.route.(export).or |
| 7dee0 | 20 74 68 65 20 72 6f 75 74 65 2d 74 61 72 67 65 74 20 6c 69 73 74 20 74 6f 20 6d 61 74 63 68 20 | .the.route-target.list.to.match. |
| 7df00 | 61 67 61 69 6e 73 74 20 28 69 6d 70 6f 72 74 29 20 77 68 65 6e 20 65 78 70 6f 72 74 69 6e 67 2f | against.(import).when.exporting/ |
| 7df20 | 69 6d 70 6f 72 74 69 6e 67 20 62 65 74 77 65 65 6e 20 74 68 65 20 63 75 72 72 65 6e 74 20 75 6e | importing.between.the.current.un |
| 7df40 | 69 63 61 73 74 20 56 52 46 20 61 6e 64 20 56 50 4e 2e 54 68 65 20 52 54 4c 49 53 54 20 69 73 20 | icast.VRF.and.VPN.The.RTLIST.is. |
| 7df60 | 61 20 73 70 61 63 65 2d 73 65 70 61 72 61 74 65 64 20 6c 69 73 74 20 6f 66 20 72 6f 75 74 65 2d | a.space-separated.list.of.route- |
| 7df80 | 74 61 72 67 65 74 73 2c 20 77 68 69 63 68 20 61 72 65 20 42 47 50 20 65 78 74 65 6e 64 65 64 20 | targets,.which.are.BGP.extended. |
| 7dfa0 | 63 6f 6d 6d 75 6e 69 74 79 20 76 61 6c 75 65 73 20 61 73 20 64 65 73 63 72 69 62 65 64 20 69 6e | community.values.as.described.in |
| 7dfc0 | 20 45 78 74 65 6e 64 65 64 20 43 6f 6d 6d 75 6e 69 74 69 65 73 20 41 74 74 72 69 62 75 74 65 2e | .Extended.Communities.Attribute. |
| 7dfe0 | 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 73 69 67 6e 61 74 75 72 65 20 61 6c 67 6f 72 69 74 | .Specifies.the.signature.algorit |
| 7e000 | 68 6d 73 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 61 63 63 65 70 74 65 64 20 66 6f 72 20 70 75 | hms.that.will.be.accepted.for.pu |
| 7e020 | 62 6c 69 63 20 6b 65 79 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 00 53 70 65 63 69 66 69 65 | blic.key.authentication.Specifie |
| 7e040 | 73 20 74 68 65 20 76 65 6e 64 6f 72 20 64 69 63 74 69 6f 6e 61 72 79 2c 20 54 68 69 73 20 64 69 | s.the.vendor.dictionary,.This.di |
| 7e060 | 63 74 69 6f 6e 61 72 79 20 6e 65 65 64 73 20 74 6f 20 62 65 20 70 72 65 73 65 6e 74 20 69 6e 20 | ctionary.needs.to.be.present.in. |
| 7e080 | 2f 75 73 72 2f 73 68 61 72 65 2f 61 63 63 65 6c 2d 70 70 70 2f 72 61 64 69 75 73 2e 00 53 70 65 | /usr/share/accel-ppp/radius..Spe |
| 7e0a0 | 63 69 66 69 65 73 20 74 68 65 20 76 65 6e 64 6f 72 20 64 69 63 74 69 6f 6e 61 72 79 2c 20 64 69 | cifies.the.vendor.dictionary,.di |
| 7e0c0 | 63 74 69 6f 6e 61 72 79 20 6e 65 65 64 73 20 74 6f 20 62 65 20 69 6e 20 2f 75 73 72 2f 73 68 61 | ctionary.needs.to.be.in./usr/sha |
| 7e0e0 | 72 65 2f 61 63 63 65 6c 2d 70 70 70 2f 72 61 64 69 75 73 2e 00 53 70 65 63 69 66 69 65 73 20 74 | re/accel-ppp/radius..Specifies.t |
| 7e100 | 68 65 20 76 65 6e 64 6f 72 20 64 69 63 74 69 6f 6e 61 72 79 2e 20 54 68 69 73 20 64 69 63 74 69 | he.vendor.dictionary..This.dicti |
| 7e120 | 6f 6e 61 72 79 20 6e 65 65 64 73 20 74 6f 20 62 65 20 70 72 65 73 65 6e 74 20 69 6e 20 2f 75 73 | onary.needs.to.be.present.in./us |
| 7e140 | 72 2f 73 68 61 72 65 2f 61 63 63 65 6c 2d 70 70 70 2f 72 61 64 69 75 73 2e 00 53 70 65 63 69 66 | r/share/accel-ppp/radius..Specif |
| 7e160 | 69 65 73 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 6f 20 77 61 69 74 20 66 | ies.timeout.in.seconds.to.wait.f |
| 7e180 | 6f 72 20 61 6e 79 20 70 65 65 72 20 61 63 74 69 76 69 74 79 2e 20 49 66 20 74 68 69 73 20 6f 70 | or.any.peer.activity..If.this.op |
| 7e1a0 | 74 69 6f 6e 20 69 73 20 73 70 65 63 69 66 69 65 64 20 69 74 20 74 75 72 6e 73 20 6f 6e 20 61 64 | tion.is.specified.it.turns.on.ad |
| 7e1c0 | 61 70 74 69 76 65 20 6c 63 70 20 65 63 68 6f 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 61 6e | aptive.lcp.echo.functionality.an |
| 7e1e0 | 64 20 22 6c 63 70 2d 65 63 68 6f 2d 66 61 69 6c 75 72 65 22 20 69 73 20 6e 6f 74 20 75 73 65 64 | d."lcp-echo-failure".is.not.used |
| 7e200 | 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 2a 2a 30 2a 2a 2e 00 53 70 65 63 69 66 | ..Default.value.is.**0**..Specif |
| 7e220 | 69 65 73 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 6f 20 77 61 69 74 20 66 | ies.timeout.in.seconds.to.wait.f |
| 7e240 | 6f 72 20 61 6e 79 20 70 65 65 72 20 61 63 74 69 76 69 74 79 2e 20 49 66 20 74 68 69 73 20 6f 70 | or.any.peer.activity..If.this.op |
| 7e260 | 74 69 6f 6e 20 73 70 65 63 69 66 69 65 64 20 69 74 20 74 75 72 6e 73 20 6f 6e 20 61 64 61 70 74 | tion.specified.it.turns.on.adapt |
| 7e280 | 69 76 65 20 6c 63 70 20 65 63 68 6f 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 61 6e 64 20 22 | ive.lcp.echo.functionality.and." |
| 7e2a0 | 6c 63 70 2d 65 63 68 6f 2d 66 61 69 6c 75 72 65 22 20 69 73 20 6e 6f 74 20 75 73 65 64 2e 00 53 | lcp-echo-failure".is.not.used..S |
| 7e2c0 | 70 65 63 69 66 69 65 73 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 6f 20 77 | pecifies.timeout.in.seconds.to.w |
| 7e2e0 | 61 69 74 20 66 6f 72 20 61 6e 79 20 70 65 65 72 20 61 63 74 69 76 69 74 79 2e 20 49 66 20 74 68 | ait.for.any.peer.activity..If.th |
| 7e300 | 69 73 20 6f 70 74 69 6f 6e 20 73 70 65 63 69 66 69 65 64 20 69 74 20 74 75 72 6e 73 20 6f 6e 20 | is.option.specified.it.turns.on. |
| 7e320 | 61 64 61 70 74 69 76 65 20 6c 63 70 20 65 63 68 6f 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 | adaptive.lcp.echo.functionality. |
| 7e340 | 61 6e 64 20 22 6c 63 70 2d 65 63 68 6f 2d 66 61 69 6c 75 72 65 22 20 69 73 20 6e 6f 74 20 75 73 | and."lcp-echo-failure".is.not.us |
| 7e360 | 65 64 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 2a 2a 30 2a 2a 2e 00 53 70 65 63 | ed..Default.value.is.**0**..Spec |
| 7e380 | 69 66 69 65 73 20 77 68 65 74 68 65 72 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 63 6f 6e 74 72 6f | ifies.whether.an.external.contro |
| 7e3a0 | 6c 20 70 6c 61 6e 65 20 28 65 2e 67 2e 20 42 47 50 20 4c 32 56 50 4e 2f 45 56 50 4e 29 20 6f 72 | l.plane.(e.g..BGP.L2VPN/EVPN).or |
| 7e3c0 | 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 46 44 42 20 73 68 6f 75 6c 64 20 62 65 20 75 73 65 64 | .the.internal.FDB.should.be.used |
| 7e3e0 | 2e 00 53 70 65 63 69 66 69 65 73 20 77 68 65 74 68 65 72 20 74 68 65 20 56 58 4c 41 4e 20 64 65 | ..Specifies.whether.the.VXLAN.de |
| 7e400 | 76 69 63 65 20 69 73 20 63 61 70 61 62 6c 65 20 6f 66 20 76 6e 69 20 66 69 6c 74 65 72 69 6e 67 | vice.is.capable.of.vni.filtering |
| 7e420 | 2e 00 53 70 65 63 69 66 69 65 73 20 77 68 65 74 68 65 72 20 74 68 69 73 20 4e 53 53 41 20 62 6f | ..Specifies.whether.this.NSSA.bo |
| 7e440 | 72 64 65 72 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 75 6e 63 6f 6e 64 69 74 69 6f 6e 61 6c 6c 79 | rder.router.will.unconditionally |
| 7e460 | 20 74 72 61 6e 73 6c 61 74 65 20 54 79 70 65 2d 37 20 4c 53 41 73 20 69 6e 74 6f 20 54 79 70 65 | .translate.Type-7.LSAs.into.Type |
| 7e480 | 2d 35 20 4c 53 41 73 2e 20 57 68 65 6e 20 72 6f 6c 65 20 69 73 20 41 6c 77 61 79 73 2c 20 54 79 | -5.LSAs..When.role.is.Always,.Ty |
| 7e4a0 | 70 65 2d 37 20 4c 53 41 73 20 61 72 65 20 74 72 61 6e 73 6c 61 74 65 64 20 69 6e 74 6f 20 54 79 | pe-7.LSAs.are.translated.into.Ty |
| 7e4c0 | 70 65 2d 35 20 4c 53 41 73 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 74 72 61 6e | pe-5.LSAs.regardless.of.the.tran |
| 7e4e0 | 73 6c 61 74 6f 72 20 73 74 61 74 65 20 6f 66 20 6f 74 68 65 72 20 4e 53 53 41 20 62 6f 72 64 65 | slator.state.of.other.NSSA.borde |
| 7e500 | 72 20 72 6f 75 74 65 72 73 2e 20 57 68 65 6e 20 72 6f 6c 65 20 69 73 20 43 61 6e 64 69 64 61 74 | r.routers..When.role.is.Candidat |
| 7e520 | 65 2c 20 74 68 69 73 20 72 6f 75 74 65 72 20 70 61 72 74 69 63 69 70 61 74 65 73 20 69 6e 20 74 | e,.this.router.participates.in.t |
| 7e540 | 68 65 20 74 72 61 6e 73 6c 61 74 6f 72 20 65 6c 65 63 74 69 6f 6e 20 74 6f 20 64 65 74 65 72 6d | he.translator.election.to.determ |
| 7e560 | 69 6e 65 20 69 66 20 69 74 20 77 69 6c 6c 20 70 65 72 66 6f 72 6d 20 74 68 65 20 74 72 61 6e 73 | ine.if.it.will.perform.the.trans |
| 7e580 | 6c 61 74 69 6f 6e 73 20 64 75 74 69 65 73 2e 20 57 68 65 6e 20 72 6f 6c 65 20 69 73 20 4e 65 76 | lations.duties..When.role.is.Nev |
| 7e5a0 | 65 72 2c 20 74 68 69 73 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 6e 65 76 65 72 20 74 72 61 6e 73 | er,.this.router.will.never.trans |
| 7e5c0 | 6c 61 74 65 20 54 79 70 65 2d 37 20 4c 53 41 73 20 69 6e 74 6f 20 54 79 70 65 2d 35 20 4c 53 41 | late.Type-7.LSAs.into.Type-5.LSA |
| 7e5e0 | 73 2e 00 53 70 65 63 69 66 69 65 73 20 77 68 69 63 68 20 52 41 44 49 55 53 20 73 65 72 76 65 72 | s..Specifies.which.RADIUS.server |
| 7e600 | 20 61 74 74 72 69 62 75 74 65 20 63 6f 6e 74 61 69 6e 73 20 74 68 65 20 72 61 74 65 20 6c 69 6d | .attribute.contains.the.rate.lim |
| 7e620 | 69 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 61 74 74 72 | it.information..The.default.attr |
| 7e640 | 69 62 75 74 65 20 69 73 20 60 46 69 6c 74 65 72 2d 49 64 60 2e 00 53 70 65 63 69 66 69 65 73 20 | ibute.is.`Filter-Id`..Specifies. |
| 7e660 | 77 68 69 63 68 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 61 74 74 72 69 62 75 74 65 20 63 6f | which.RADIUS.server.attribute.co |
| 7e680 | 6e 74 61 69 6e 73 20 74 68 65 20 72 61 74 65 20 6c 69 6d 69 74 20 69 6e 66 6f 72 6d 61 74 69 6f | ntains.the.rate.limit.informatio |
| 7e6a0 | 6e 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 61 74 74 72 69 62 75 74 65 20 69 73 20 60 60 46 69 | n..The.default.attribute.is.``Fi |
| 7e6c0 | 6c 74 65 72 2d 49 64 60 60 2e 00 53 70 65 63 69 66 79 20 44 48 43 50 76 34 20 72 65 6c 61 79 20 | lter-Id``..Specify.DHCPv4.relay. |
| 7e6e0 | 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 70 61 73 73 20 72 65 71 75 65 73 74 73 20 74 6f 2e 20 | IP.address.to.pass.requests.to.. |
| 7e700 | 49 66 20 73 70 65 63 69 66 69 65 64 20 67 69 61 64 64 72 20 69 73 20 61 6c 73 6f 20 6e 65 65 64 | If.specified.giaddr.is.also.need |
| 7e720 | 65 64 2e 00 53 70 65 63 69 66 79 20 49 50 76 34 20 61 6e 64 2f 6f 72 20 49 50 76 36 20 6e 65 74 | ed..Specify.IPv4.and/or.IPv6.net |
| 7e740 | 77 6f 72 6b 73 20 74 68 61 74 20 73 68 6f 75 6c 64 20 62 65 20 70 72 6f 74 65 63 74 65 64 2f 6d | works.that.should.be.protected/m |
| 7e760 | 6f 6e 69 74 6f 72 65 64 2e 00 53 70 65 63 69 66 79 20 49 50 76 34 20 61 6e 64 2f 6f 72 20 49 50 | onitored..Specify.IPv4.and/or.IP |
| 7e780 | 76 36 20 6e 65 74 77 6f 72 6b 73 20 77 68 69 63 68 20 61 72 65 20 67 6f 69 6e 67 20 74 6f 20 62 | v6.networks.which.are.going.to.b |
| 7e7a0 | 65 20 65 78 63 6c 75 64 65 64 2e 00 53 70 65 63 69 66 79 20 49 50 76 34 2f 49 50 76 36 20 6c 69 | e.excluded..Specify.IPv4/IPv6.li |
| 7e7c0 | 73 74 65 6e 20 61 64 64 72 65 73 73 20 6f 66 20 53 53 48 20 73 65 72 76 65 72 2e 20 4d 75 6c 74 | sten.address.of.SSH.server..Mult |
| 7e7e0 | 69 70 6c 65 20 61 64 64 72 65 73 73 65 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 2e 00 53 | iple.addresses.can.be.defined..S |
| 7e800 | 70 65 63 69 66 79 20 61 20 3a 61 62 62 72 3a 60 53 49 50 20 28 53 65 73 73 69 6f 6e 20 49 6e 69 | pecify.a.:abbr:`SIP.(Session.Ini |
| 7e820 | 74 69 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 29 60 20 73 65 72 76 65 72 20 62 79 20 49 50 76 | tiation.Protocol)`.server.by.IPv |
| 7e840 | 36 20 61 64 64 72 65 73 73 20 6f 66 20 46 75 6c 6c 79 20 51 75 61 6c 69 66 69 65 64 20 44 6f 6d | 6.address.of.Fully.Qualified.Dom |
| 7e860 | 61 69 6e 20 4e 61 6d 65 20 66 6f 72 20 61 6c 6c 20 44 48 43 50 76 36 20 63 6c 69 65 6e 74 73 2e | ain.Name.for.all.DHCPv6.clients. |
| 7e880 | 00 53 70 65 63 69 66 79 20 61 20 46 75 6c 6c 79 20 51 75 61 6c 69 66 69 65 64 20 44 6f 6d 61 69 | .Specify.a.Fully.Qualified.Domai |
| 7e8a0 | 6e 20 4e 61 6d 65 20 61 73 20 73 6f 75 72 63 65 2f 64 65 73 74 69 6e 61 74 69 6f 6e 20 6d 61 74 | n.Name.as.source/destination.mat |
| 7e8c0 | 63 68 65 72 2e 20 45 6e 73 75 72 65 20 72 6f 75 74 65 72 20 69 73 20 61 62 6c 65 20 74 6f 20 72 | cher..Ensure.router.is.able.to.r |
| 7e8e0 | 65 73 6f 6c 76 65 20 73 75 63 68 20 64 6e 73 20 71 75 65 72 79 2e 00 53 70 65 63 69 66 79 20 61 | esolve.such.dns.query..Specify.a |
| 7e900 | 20 46 75 6c 6c 79 20 51 75 61 6c 69 66 69 65 64 20 44 6f 6d 61 69 6e 20 4e 61 6d 65 20 61 73 20 | .Fully.Qualified.Domain.Name.as. |
| 7e920 | 73 6f 75 72 63 65 2f 64 65 73 74 69 6e 61 74 69 6f 6e 20 74 6f 20 6d 61 74 63 68 2e 20 45 6e 73 | source/destination.to.match..Ens |
| 7e940 | 75 72 65 20 74 68 61 74 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 61 62 6c 65 20 74 6f 20 72 | ure.that.the.router.is.able.to.r |
| 7e960 | 65 73 6f 6c 76 65 20 74 68 69 73 20 64 6e 73 20 71 75 65 72 79 2e 00 53 70 65 63 69 66 79 20 61 | esolve.this.dns.query..Specify.a |
| 7e980 | 20 4e 49 53 20 73 65 72 76 65 72 20 61 64 64 72 65 73 73 20 66 6f 72 20 44 48 43 50 76 36 20 63 | .NIS.server.address.for.DHCPv6.c |
| 7e9a0 | 6c 69 65 6e 74 73 2e 00 53 70 65 63 69 66 79 20 61 20 4e 49 53 2b 20 73 65 72 76 65 72 20 61 64 | lients..Specify.a.NIS+.server.ad |
| 7e9c0 | 64 72 65 73 73 20 66 6f 72 20 44 48 43 50 76 36 20 63 6c 69 65 6e 74 73 2e 00 53 70 65 63 69 66 | dress.for.DHCPv6.clients..Specif |
| 7e9e0 | 79 20 61 20 72 61 6e 67 65 20 6f 66 20 67 72 6f 75 70 20 61 64 64 72 65 73 73 65 73 20 76 69 61 | y.a.range.of.group.addresses.via |
| 7ea00 | 20 61 20 70 72 65 66 69 78 2d 6c 69 73 74 20 74 68 61 74 20 66 6f 72 63 65 73 20 50 49 4d 20 74 | .a.prefix-list.that.forces.PIM.t |
| 7ea20 | 6f 20 6e 65 76 65 72 20 64 6f 20 3a 61 62 62 72 3a 60 53 53 4d 20 28 53 6f 75 72 63 65 2d 53 70 | o.never.do.:abbr:`SSM.(Source-Sp |
| 7ea40 | 65 63 69 66 69 63 20 4d 75 6c 74 69 63 61 73 74 29 60 20 6f 76 65 72 2e 00 53 70 65 63 69 66 79 | ecific.Multicast)`.over..Specify |
| 7ea60 | 20 61 62 73 6f 6c 75 74 65 20 60 3c 70 61 74 68 3e 60 20 74 6f 20 73 63 72 69 70 74 20 77 68 69 | .absolute.`<path>`.to.script.whi |
| 7ea80 | 63 68 20 77 69 6c 6c 20 62 65 20 72 75 6e 20 77 68 65 6e 20 60 3c 74 61 73 6b 3e 60 20 69 73 20 | ch.will.be.run.when.`<task>`.is. |
| 7eaa0 | 65 78 65 63 75 74 65 64 2e 00 53 70 65 63 69 66 79 20 61 6c 6c 6f 77 65 64 20 3a 61 62 62 72 3a | executed..Specify.allowed.:abbr: |
| 7eac0 | 60 4b 45 58 20 28 4b 65 79 20 45 78 63 68 61 6e 67 65 29 60 20 61 6c 67 6f 72 69 74 68 6d 73 2e | `KEX.(Key.Exchange)`.algorithms. |
| 7eae0 | 00 53 70 65 63 69 66 79 20 61 6e 20 61 6c 74 65 72 6e 61 74 65 20 41 53 20 66 6f 72 20 74 68 69 | .Specify.an.alternate.AS.for.thi |
| 7eb00 | 73 20 42 47 50 20 70 72 6f 63 65 73 73 20 77 68 65 6e 20 69 6e 74 65 72 61 63 74 69 6e 67 20 77 | s.BGP.process.when.interacting.w |
| 7eb20 | 69 74 68 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 65 65 72 20 6f 72 20 70 65 65 72 20 67 | ith.the.specified.peer.or.peer.g |
| 7eb40 | 72 6f 75 70 2e 20 57 69 74 68 20 6e 6f 20 6d 6f 64 69 66 69 65 72 73 2c 20 74 68 65 20 73 70 65 | roup..With.no.modifiers,.the.spe |
| 7eb60 | 63 69 66 69 65 64 20 6c 6f 63 61 6c 2d 61 73 20 69 73 20 70 72 65 70 65 6e 64 65 64 20 74 6f 20 | cified.local-as.is.prepended.to. |
| 7eb80 | 74 68 65 20 72 65 63 65 69 76 65 64 20 41 53 5f 50 41 54 48 20 77 68 65 6e 20 72 65 63 65 69 76 | the.received.AS_PATH.when.receiv |
| 7eba0 | 69 6e 67 20 72 6f 75 74 69 6e 67 20 75 70 64 61 74 65 73 20 66 72 6f 6d 20 74 68 65 20 70 65 65 | ing.routing.updates.from.the.pee |
| 7ebc0 | 72 2c 20 61 6e 64 20 70 72 65 70 65 6e 64 65 64 20 74 6f 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 | r,.and.prepended.to.the.outgoing |
| 7ebe0 | 20 41 53 5f 50 41 54 48 20 28 61 66 74 65 72 20 74 68 65 20 70 72 6f 63 65 73 73 20 6c 6f 63 61 | .AS_PATH.(after.the.process.loca |
| 7ec00 | 6c 20 41 53 29 20 77 68 65 6e 20 74 72 61 6e 73 6d 69 74 74 69 6e 67 20 6c 6f 63 61 6c 20 72 6f | l.AS).when.transmitting.local.ro |
| 7ec20 | 75 74 65 73 20 74 6f 20 74 68 65 20 70 65 65 72 2e 00 53 70 65 63 69 66 79 20 61 6e 20 61 6c 74 | utes.to.the.peer..Specify.an.alt |
| 7ec40 | 65 72 6e 61 74 65 20 54 43 50 20 70 6f 72 74 20 77 68 65 72 65 20 74 68 65 20 6c 64 61 70 20 73 | ernate.TCP.port.where.the.ldap.s |
| 7ec60 | 65 72 76 65 72 20 69 73 20 6c 69 73 74 65 6e 69 6e 67 20 69 66 20 6f 74 68 65 72 20 74 68 61 6e | erver.is.listening.if.other.than |
| 7ec80 | 20 74 68 65 20 64 65 66 61 75 6c 74 20 4c 44 41 50 20 70 6f 72 74 20 33 38 39 2e 00 53 70 65 63 | .the.default.LDAP.port.389..Spec |
| 7eca0 | 69 66 79 20 66 61 63 69 6c 69 74 79 20 61 6e 64 20 6c 65 76 65 6c 20 66 6f 72 20 6c 6f 67 67 69 | ify.facility.and.level.for.loggi |
| 7ecc0 | 6e 67 2e 20 46 6f 72 20 61 6e 20 65 78 70 6c 61 6e 61 74 69 6f 6e 20 6f 6e 20 3a 72 65 66 3a 60 | ng..For.an.explanation.on.:ref:` |
| 7ece0 | 73 79 73 6c 6f 67 5f 66 61 63 69 6c 69 74 69 65 73 60 20 61 6e 64 20 3a 72 65 66 3a 60 73 79 73 | syslog_facilities`.and.:ref:`sys |
| 7ed00 | 6c 6f 67 5f 73 65 76 65 72 69 74 79 5f 6c 65 76 65 6c 60 20 73 65 65 20 74 61 62 6c 65 73 20 69 | log_severity_level`.see.tables.i |
| 7ed20 | 6e 20 73 79 73 6c 6f 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 65 63 74 69 6f 6e 2e 00 | n.syslog.configuration.section.. |
| 7ed40 | 53 70 65 63 69 66 79 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 6f 20 77 | Specify.interval.in.seconds.to.w |
| 7ed60 | 61 69 74 20 62 65 74 77 65 65 6e 20 44 79 6e 61 6d 69 63 20 44 4e 53 20 75 70 64 61 74 65 73 2e | ait.between.Dynamic.DNS.updates. |
| 7ed80 | 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 20 33 30 30 20 73 65 63 6f 6e 64 73 2e 00 53 70 | .The.default.is..300.seconds..Sp |
| 7eda0 | 65 63 69 66 79 20 6c 6f 63 61 6c 20 72 61 6e 67 65 20 6f 66 20 69 70 20 61 64 64 72 65 73 73 20 | ecify.local.range.of.ip.address. |
| 7edc0 | 74 6f 20 67 69 76 65 20 74 6f 20 64 68 63 70 20 63 6c 69 65 6e 74 73 2e 20 46 69 72 73 74 20 49 | to.give.to.dhcp.clients..First.I |
| 7ede0 | 50 20 69 6e 20 72 61 6e 67 65 20 69 73 20 72 6f 75 74 65 72 20 49 50 2e 20 49 66 20 79 6f 75 20 | P.in.range.is.router.IP..If.you. |
| 7ee00 | 6e 65 65 64 20 6d 6f 72 65 20 63 75 73 74 6f 6d 69 7a 61 74 69 6f 6e 20 75 73 65 20 60 63 6c 69 | need.more.customization.use.`cli |
| 7ee20 | 65 6e 74 2d 69 70 2d 70 6f 6f 6c 60 00 53 70 65 63 69 66 79 20 6e 61 6d 65 20 6f 66 20 74 68 65 | ent-ip-pool`.Specify.name.of.the |
| 7ee40 | 20 3a 61 62 62 72 3a 60 56 52 46 20 28 56 69 72 74 75 61 6c 20 52 6f 75 74 69 6e 67 20 61 6e 64 | .:abbr:`VRF.(Virtual.Routing.and |
| 7ee60 | 20 46 6f 72 77 61 72 64 69 6e 67 29 60 20 69 6e 73 74 61 6e 63 65 2e 00 53 70 65 63 69 66 79 20 | .Forwarding)`.instance..Specify. |
| 7ee80 | 6e 65 78 74 68 6f 70 20 6f 6e 20 74 68 65 20 70 61 74 68 20 74 6f 20 74 68 65 20 64 65 73 74 69 | nexthop.on.the.path.to.the.desti |
| 7eea0 | 6e 61 74 69 6f 6e 2c 20 60 60 69 70 76 34 2d 61 64 64 72 65 73 73 60 60 20 63 61 6e 20 62 65 20 | nation,.``ipv4-address``.can.be. |
| 7eec0 | 73 65 74 20 74 6f 20 60 60 64 68 63 70 60 60 00 53 70 65 63 69 66 79 20 73 74 61 74 69 63 20 72 | set.to.``dhcp``.Specify.static.r |
| 7eee0 | 6f 75 74 65 20 69 6e 74 6f 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 73 65 6e 64 | oute.into.the.routing.table.send |
| 7ef00 | 69 6e 67 20 61 6c 6c 20 6e 6f 6e 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 63 20 74 6f 20 74 68 65 | ing.all.non.local.traffic.to.the |
| 7ef20 | 20 6e 65 78 74 68 6f 70 20 61 64 64 72 65 73 73 20 60 3c 61 64 64 72 65 73 73 3e 60 2e 00 53 70 | .nexthop.address.`<address>`..Sp |
| 7ef40 | 65 63 69 66 79 20 74 68 65 20 49 50 20 60 3c 61 64 64 72 65 73 73 3e 60 20 6f 66 20 74 68 65 20 | ecify.the.IP.`<address>`.of.the. |
| 7ef60 | 52 41 44 49 55 53 20 73 65 72 76 65 72 20 75 73 65 72 20 77 69 74 68 20 74 68 65 20 70 72 65 2d | RADIUS.server.user.with.the.pre- |
| 7ef80 | 73 68 61 72 65 64 2d 73 65 63 72 65 74 20 67 69 76 65 6e 20 69 6e 20 60 3c 73 65 63 72 65 74 3e | shared-secret.given.in.`<secret> |
| 7efa0 | 60 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 49 50 20 60 3c 61 64 64 72 65 73 73 3e 60 20 6f 66 | `..Specify.the.IP.`<address>`.of |
| 7efc0 | 20 74 68 65 20 54 41 43 41 43 53 20 73 65 72 76 65 72 20 75 73 65 72 20 77 69 74 68 20 74 68 65 | .the.TACACS.server.user.with.the |
| 7efe0 | 20 70 72 65 2d 73 68 61 72 65 64 2d 73 65 63 72 65 74 20 67 69 76 65 6e 20 69 6e 20 60 3c 73 65 | .pre-shared-secret.given.in.`<se |
| 7f000 | 63 72 65 74 3e 60 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 49 50 76 34 20 73 6f 75 72 63 65 20 | cret>`..Specify.the.IPv4.source. |
| 7f020 | 61 64 64 72 65 73 73 20 74 6f 20 75 73 65 20 66 6f 72 20 74 68 65 20 42 47 50 20 73 65 73 73 69 | address.to.use.for.the.BGP.sessi |
| 7f040 | 6f 6e 20 74 6f 20 74 68 69 73 20 6e 65 69 67 68 62 6f 72 2c 20 6d 61 79 20 62 65 20 73 70 65 63 | on.to.this.neighbor,.may.be.spec |
| 7f060 | 69 66 69 65 64 20 61 73 20 65 69 74 68 65 72 20 61 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 20 | ified.as.either.an.IPv4.address. |
| 7f080 | 64 69 72 65 63 74 6c 79 20 6f 72 20 61 73 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 | directly.or.as.an.interface.name |
| 7f0a0 | 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 4c 44 41 50 20 73 65 72 76 65 72 20 74 6f 20 63 6f 6e | ..Specify.the.LDAP.server.to.con |
| 7f0c0 | 6e 65 63 74 20 74 6f 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 61 64 64 72 65 73 73 2c 20 41 50 | nect.to..Specify.the.address,.AP |
| 7f0e0 | 49 20 6b 65 79 2c 20 74 69 6d 65 6f 75 74 20 61 6e 64 20 70 6f 72 74 20 6f 66 20 74 68 65 20 73 | I.key,.timeout.and.port.of.the.s |
| 7f100 | 65 63 6f 6e 64 61 72 79 20 72 6f 75 74 65 72 2e 20 59 6f 75 20 6e 65 65 64 20 74 6f 20 65 6e 61 | econdary.router..You.need.to.ena |
| 7f120 | 62 6c 65 20 61 6e 64 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 48 54 54 50 20 41 50 49 20 73 | ble.and.configure.the.HTTP.API.s |
| 7f140 | 65 72 76 69 63 65 20 6f 6e 20 74 68 65 20 73 65 63 6f 6e 64 61 72 79 20 72 6f 75 74 65 72 20 66 | ervice.on.the.secondary.router.f |
| 7f160 | 6f 72 20 63 6f 6e 66 69 67 20 73 79 6e 63 20 74 6f 20 6f 70 65 72 61 74 65 2e 00 53 70 65 63 69 | or.config.sync.to.operate..Speci |
| 7f180 | 66 79 20 74 68 65 20 69 64 65 6e 74 69 66 69 65 72 20 76 61 6c 75 65 20 6f 66 20 74 68 65 20 73 | fy.the.identifier.value.of.the.s |
| 7f1a0 | 69 74 65 2d 6c 65 76 65 6c 20 61 67 67 72 65 67 61 74 6f 72 20 28 53 4c 41 29 20 6f 6e 20 74 68 | ite-level.aggregator.(SLA).on.th |
| 7f1c0 | 65 20 69 6e 74 65 72 66 61 63 65 2e 20 49 44 20 6d 75 73 74 20 62 65 20 61 20 64 65 63 69 6d 61 | e.interface..ID.must.be.a.decima |
| 7f1e0 | 6c 20 6e 75 6d 62 65 72 20 67 72 65 61 74 65 72 20 74 68 65 6e 20 30 20 77 68 69 63 68 20 66 69 | l.number.greater.then.0.which.fi |
| 7f200 | 74 73 20 69 6e 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 53 4c 41 20 49 44 73 20 28 73 65 65 | ts.in.the.length.of.SLA.IDs.(see |
| 7f220 | 20 62 65 6c 6f 77 29 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 61 | .below)..Specify.the.interface.a |
| 7f240 | 64 64 72 65 73 73 20 75 73 65 64 20 6c 6f 63 61 6c 6c 79 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 | ddress.used.locally.on.the.inter |
| 7f260 | 66 61 63 65 20 77 68 65 72 65 20 74 68 65 20 70 72 65 66 69 78 20 68 61 73 20 62 65 65 6e 20 64 | face.where.the.prefix.has.been.d |
| 7f280 | 65 6c 65 67 61 74 65 64 20 74 6f 2e 20 49 44 20 6d 75 73 74 20 62 65 20 61 20 64 65 63 69 6d 61 | elegated.to..ID.must.be.a.decima |
| 7f2a0 | 6c 20 69 6e 74 65 67 65 72 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 6d 69 6e 69 6d 75 6d 20 72 | l.integer..Specify.the.minimum.r |
| 7f2c0 | 65 71 75 69 72 65 64 20 54 4c 53 20 76 65 72 73 69 6f 6e 20 31 2e 32 20 6f 72 20 31 2e 33 00 53 | equired.TLS.version.1.2.or.1.3.S |
| 7f2e0 | 70 65 63 69 66 79 20 74 68 65 20 70 6c 61 69 6e 74 65 78 74 20 70 61 73 73 77 6f 72 64 20 75 73 | pecify.the.plaintext.password.us |
| 7f300 | 65 72 20 62 79 20 75 73 65 72 20 60 3c 6e 61 6d 65 3e 60 20 6f 6e 20 74 68 69 73 20 73 79 73 74 | er.by.user.`<name>`.on.this.syst |
| 7f320 | 65 6d 2e 20 54 68 65 20 70 6c 61 69 6e 74 65 78 74 20 70 61 73 73 77 6f 72 64 20 77 69 6c 6c 20 | em..The.plaintext.password.will. |
| 7f340 | 62 65 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 74 72 61 6e 73 66 65 72 72 65 64 20 69 6e 74 | be.automatically.transferred.int |
| 7f360 | 6f 20 61 20 73 65 63 75 72 65 20 68 61 73 68 65 64 20 70 61 73 73 77 6f 72 64 20 61 6e 64 20 6e | o.a.secure.hashed.password.and.n |
| 7f380 | 6f 74 20 73 61 76 65 64 20 61 6e 79 77 68 65 72 65 20 69 6e 20 70 6c 61 69 6e 74 65 78 74 2e 00 | ot.saved.anywhere.in.plaintext.. |
| 7f3a0 | 53 70 65 63 69 66 79 20 74 68 65 20 70 6f 72 74 20 75 73 65 64 20 6f 6e 20 77 68 69 63 68 20 74 | Specify.the.port.used.on.which.t |
| 7f3c0 | 68 65 20 70 72 6f 78 79 20 73 65 72 76 69 63 65 20 69 73 20 6c 69 73 74 65 6e 69 6e 67 20 66 6f | he.proxy.service.is.listening.fo |
| 7f3e0 | 72 20 72 65 71 75 65 73 74 73 2e 20 54 68 69 73 20 70 6f 72 74 20 69 73 20 74 68 65 20 64 65 66 | r.requests..This.port.is.the.def |
| 7f400 | 61 75 6c 74 20 70 6f 72 74 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 73 70 65 63 69 66 69 65 64 | ault.port.used.for.the.specified |
| 7f420 | 20 6c 69 73 74 65 6e 2d 61 64 64 72 65 73 73 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 73 65 63 | .listen-address..Specify.the.sec |
| 7f440 | 74 69 6f 6e 20 6f 66 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 6f 20 73 79 6e | tion.of.the.configuration.to.syn |
| 7f460 | 63 68 72 6f 6e 69 7a 65 2e 20 49 66 20 6d 6f 72 65 20 74 68 61 6e 20 6f 6e 65 20 73 65 63 74 69 | chronize..If.more.than.one.secti |
| 7f480 | 6f 6e 20 69 73 20 74 6f 20 62 65 20 73 79 6e 63 68 72 6f 6e 69 7a 65 64 2c 20 72 65 70 65 61 74 | on.is.to.be.synchronized,.repeat |
| 7f4a0 | 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 61 64 64 20 61 64 64 69 74 69 6f 6e 61 6c 20 73 | .the.command.to.add.additional.s |
| 7f4c0 | 65 63 74 69 6f 6e 73 20 61 73 20 72 65 71 75 69 72 65 64 2e 00 53 70 65 63 69 66 79 20 74 68 65 | ections.as.required..Specify.the |
| 7f4e0 | 20 73 79 73 74 65 6d 73 20 60 3c 74 69 6d 65 7a 6f 6e 65 3e 60 20 61 73 20 74 68 65 20 52 65 67 | .systems.`<timezone>`.as.the.Reg |
| 7f500 | 69 6f 6e 2f 4c 6f 63 61 74 69 6f 6e 20 74 68 61 74 20 62 65 73 74 20 64 65 66 69 6e 65 73 20 79 | ion/Location.that.best.defines.y |
| 7f520 | 6f 75 72 20 6c 6f 63 61 74 69 6f 6e 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 73 70 65 63 69 | our.location..For.example,.speci |
| 7f540 | 66 79 69 6e 67 20 55 53 2f 50 61 63 69 66 69 63 20 73 65 74 73 20 74 68 65 20 74 69 6d 65 20 7a | fying.US/Pacific.sets.the.time.z |
| 7f560 | 6f 6e 65 20 74 6f 20 55 53 20 50 61 63 69 66 69 63 20 74 69 6d 65 2e 00 53 70 65 63 69 66 79 20 | one.to.US.Pacific.time..Specify. |
| 7f580 | 74 68 65 20 74 69 6d 65 20 69 6e 74 65 72 76 61 6c 20 77 68 65 6e 20 60 3c 74 61 73 6b 3e 60 20 | the.time.interval.when.`<task>`. |
| 7f5a0 | 73 68 6f 75 6c 64 20 62 65 20 65 78 65 63 75 74 65 64 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c | should.be.executed..The.interval |
| 7f5c0 | 20 69 73 20 73 70 65 63 69 66 69 65 64 20 61 73 20 6e 75 6d 62 65 72 20 77 69 74 68 20 6f 6e 65 | .is.specified.as.number.with.one |
| 7f5e0 | 20 6f 66 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 75 66 66 69 78 65 73 3a 00 53 70 65 63 | .of.the.following.suffixes:.Spec |
| 7f600 | 69 66 79 20 74 69 6d 65 6f 75 74 20 2f 20 75 70 64 61 74 65 20 69 6e 74 65 72 76 61 6c 20 74 6f | ify.timeout./.update.interval.to |
| 7f620 | 20 63 68 65 63 6b 20 69 66 20 49 50 20 61 64 64 72 65 73 73 20 63 68 61 6e 67 65 64 2e 00 53 70 | .check.if.IP.address.changed..Sp |
| 7f640 | 65 63 69 66 79 20 74 69 6d 65 6f 75 74 20 69 6e 74 65 72 76 61 6c 20 66 6f 72 20 6b 65 65 70 61 | ecify.timeout.interval.for.keepa |
| 7f660 | 6c 69 76 65 20 6d 65 73 73 61 67 65 20 69 6e 20 73 65 63 6f 6e 64 73 2e 00 53 70 65 63 69 66 79 | live.message.in.seconds..Specify |
| 7f680 | 20 77 68 65 72 65 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 73 68 61 72 65 64 20 62 79 20 6d 75 | .where.interface.is.shared.by.mu |
| 7f6a0 | 6c 74 69 70 6c 65 20 75 73 65 72 73 20 6f 72 20 69 74 20 69 73 20 76 6c 61 6e 2d 70 65 72 2d 75 | ltiple.users.or.it.is.vlan-per-u |
| 7f6c0 | 73 65 72 2e 00 53 70 69 6e 65 31 20 69 73 20 61 20 43 69 73 63 6f 20 49 4f 53 20 72 6f 75 74 65 | ser..Spine1.is.a.Cisco.IOS.route |
| 7f6e0 | 72 20 72 75 6e 6e 69 6e 67 20 76 65 72 73 69 6f 6e 20 31 35 2e 34 2c 20 4c 65 61 66 32 20 61 6e | r.running.version.15.4,.Leaf2.an |
| 7f700 | 64 20 4c 65 61 66 33 20 61 72 65 20 65 61 63 68 20 56 79 4f 53 20 72 6f 75 74 65 72 73 20 72 75 | d.Leaf3.are.each.VyOS.routers.ru |
| 7f720 | 6e 6e 69 6e 67 20 31 2e 32 2e 00 53 70 69 6e 65 31 20 69 73 20 61 20 43 69 73 63 6f 20 49 4f 53 | nning.1.2..Spine1.is.a.Cisco.IOS |
| 7f740 | 20 72 6f 75 74 65 72 20 72 75 6e 6e 69 6e 67 20 76 65 72 73 69 6f 6e 20 31 35 2e 34 2c 20 4c 65 | .router.running.version.15.4,.Le |
| 7f760 | 61 66 32 20 61 6e 64 20 4c 65 61 66 33 20 69 73 20 65 61 63 68 20 61 20 56 79 4f 53 20 72 6f 75 | af2.and.Leaf3.is.each.a.VyOS.rou |
| 7f780 | 74 65 72 20 72 75 6e 6e 69 6e 67 20 31 2e 32 2e 00 53 70 6c 75 6e 6b 00 53 70 6f 6b 65 00 53 71 | ter.running.1.2..Splunk.Spoke.Sq |
| 7f7a0 | 75 69 64 5f 20 69 73 20 61 20 63 61 63 68 69 6e 67 20 61 6e 64 20 66 6f 72 77 61 72 64 69 6e 67 | uid_.is.a.caching.and.forwarding |
| 7f7c0 | 20 48 54 54 50 20 77 65 62 20 70 72 6f 78 79 2e 20 49 74 20 68 61 73 20 61 20 77 69 64 65 20 76 | .HTTP.web.proxy..It.has.a.wide.v |
| 7f7e0 | 61 72 69 65 74 79 20 6f 66 20 75 73 65 73 2c 20 69 6e 63 6c 75 64 69 6e 67 20 73 70 65 65 64 69 | ariety.of.uses,.including.speedi |
| 7f800 | 6e 67 20 75 70 20 61 20 77 65 62 20 73 65 72 76 65 72 20 62 79 20 63 61 63 68 69 6e 67 20 72 65 | ng.up.a.web.server.by.caching.re |
| 7f820 | 70 65 61 74 65 64 20 72 65 71 75 65 73 74 73 2c 20 63 61 63 68 69 6e 67 20 77 65 62 2c 20 44 4e | peated.requests,.caching.web,.DN |
| 7f840 | 53 20 61 6e 64 20 6f 74 68 65 72 20 63 6f 6d 70 75 74 65 72 20 6e 65 74 77 6f 72 6b 20 6c 6f 6f | S.and.other.computer.network.loo |
| 7f860 | 6b 75 70 73 20 66 6f 72 20 61 20 67 72 6f 75 70 20 6f 66 20 70 65 6f 70 6c 65 20 73 68 61 72 69 | kups.for.a.group.of.people.shari |
| 7f880 | 6e 67 20 6e 65 74 77 6f 72 6b 20 72 65 73 6f 75 72 63 65 73 2c 20 61 6e 64 20 61 69 64 69 6e 67 | ng.network.resources,.and.aiding |
| 7f8a0 | 20 73 65 63 75 72 69 74 79 20 62 79 20 66 69 6c 74 65 72 69 6e 67 20 74 72 61 66 66 69 63 2e 20 | .security.by.filtering.traffic.. |
| 7f8c0 | 41 6c 74 68 6f 75 67 68 20 70 72 69 6d 61 72 69 6c 79 20 75 73 65 64 20 66 6f 72 20 48 54 54 50 | Although.primarily.used.for.HTTP |
| 7f8e0 | 20 61 6e 64 20 46 54 50 2c 20 53 71 75 69 64 20 69 6e 63 6c 75 64 65 73 20 6c 69 6d 69 74 65 64 | .and.FTP,.Squid.includes.limited |
| 7f900 | 20 73 75 70 70 6f 72 74 20 66 6f 72 20 73 65 76 65 72 61 6c 20 6f 74 68 65 72 20 70 72 6f 74 6f | .support.for.several.other.proto |
| 7f920 | 63 6f 6c 73 20 69 6e 63 6c 75 64 69 6e 67 20 49 6e 74 65 72 6e 65 74 20 47 6f 70 68 65 72 2c 20 | cols.including.Internet.Gopher,. |
| 7f940 | 53 53 4c 2c 5b 36 5d 20 54 4c 53 20 61 6e 64 20 48 54 54 50 53 2e 20 53 71 75 69 64 20 64 6f 65 | SSL,[6].TLS.and.HTTPS..Squid.doe |
| 7f960 | 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 20 74 68 65 20 53 4f 43 4b 53 20 70 72 6f 74 6f 63 6f 6c | s.not.support.the.SOCKS.protocol |
| 7f980 | 2e 00 53 74 61 72 74 20 57 65 62 73 65 72 76 65 72 20 69 6e 20 67 69 76 65 6e 20 20 56 52 46 2e | ..Start.Webserver.in.given..VRF. |
| 7f9a0 | 00 53 74 61 72 74 20 57 65 62 73 65 72 76 65 72 20 69 6e 20 67 69 76 65 6e 20 56 52 46 2e 00 53 | .Start.Webserver.in.given.VRF..S |
| 7f9c0 | 74 61 72 74 20 62 79 20 63 68 65 63 6b 69 6e 67 20 66 6f 72 20 49 50 53 65 63 20 53 41 73 20 28 | tart.by.checking.for.IPSec.SAs.( |
| 7f9e0 | 53 65 63 75 72 69 74 79 20 41 73 73 6f 63 69 61 74 69 6f 6e 73 29 20 77 69 74 68 3a 00 53 74 61 | Security.Associations).with:.Sta |
| 7fa00 | 72 74 69 6e 67 20 66 72 6f 6d 20 2a 2a 56 79 4f 53 2d 31 2e 35 2d 72 6f 6c 6c 69 6e 67 2d 32 30 | rting.from.**VyOS-1.5-rolling-20 |
| 7fa20 | 32 34 31 30 30 36 30 30 30 37 2a 2a 2c 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 63 61 6e 20 6d | 2410060007**,.the.firewall.can.m |
| 7fa40 | 6f 64 69 66 79 20 70 61 63 6b 65 74 73 20 62 65 66 6f 72 65 20 74 68 65 79 20 61 72 65 20 73 65 | odify.packets.before.they.are.se |
| 7fa60 | 6e 74 20 6f 75 74 2e 20 54 68 69 73 20 66 65 61 75 72 65 20 70 72 6f 76 69 64 65 73 20 6d 6f 72 | nt.out..This.feaure.provides.mor |
| 7fa80 | 65 20 66 6c 65 78 69 62 69 6c 69 74 79 20 69 6e 20 70 61 63 6b 65 74 20 68 61 6e 64 6c 69 6e 67 | e.flexibility.in.packet.handling |
| 7faa0 | 2e 00 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 56 79 4f 53 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 | ..Starting.from.VyOS.1.4-rolling |
| 7fac0 | 2d 32 30 32 33 30 38 30 34 30 35 35 37 2c 20 61 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 73 74 | -202308040557,.a.new.firewall.st |
| 7fae0 | 72 75 63 74 75 72 65 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 6f 6e 20 61 6c 6c 20 56 79 4f 53 | ructure.can.be.found.on.all.VyOS |
| 7fb00 | 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 2e 20 54 68 65 20 5a 6f 6e 65 20 62 61 73 65 64 20 66 | .installations..The.Zone.based.f |
| 7fb20 | 69 72 65 77 61 6c 6c 20 77 61 73 20 72 65 6d 6f 76 65 64 20 69 6e 20 74 68 61 74 20 76 65 72 73 | irewall.was.removed.in.that.vers |
| 7fb40 | 69 6f 6e 2c 20 62 75 74 20 72 65 20 69 6e 74 72 6f 64 75 63 65 64 20 69 6e 20 56 79 4f 53 20 31 | ion,.but.re.introduced.in.VyOS.1 |
| 7fb60 | 2e 34 20 61 6e 64 20 31 2e 35 2e 20 41 6c 6c 20 76 65 72 73 69 6f 6e 73 20 62 75 69 6c 74 20 61 | .4.and.1.5..All.versions.built.a |
| 7fb80 | 66 74 65 72 20 32 30 32 33 2d 31 30 2d 32 32 20 68 61 76 65 20 74 68 69 73 20 66 65 61 74 75 72 | fter.2023-10-22.have.this.featur |
| 7fba0 | 65 2e 20 44 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 66 6f 72 20 6d 6f 73 74 20 6f 66 20 74 68 65 | e..Documentation.for.most.of.the |
| 7fbc0 | 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 43 4c 49 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 | .new.firewall.CLI.can.be.found.i |
| 7fbe0 | 6e 20 74 68 65 20 60 66 69 72 65 77 61 6c 6c 20 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 76 79 | n.the.`firewall.<https://docs.vy |
| 7fc00 | 6f 73 2e 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 | os.io/en/latest/configuration/fi |
| 7fc20 | 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2e 68 74 6d 6c 3e 60 5f 20 63 68 61 70 74 65 72 2e 00 | rewall/general.html>`_.chapter.. |
| 7fc40 | 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 56 79 4f 53 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 | Starting.from.VyOS.1.4-rolling-2 |
| 7fc60 | 30 32 33 30 38 30 34 30 35 35 37 2c 20 61 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 73 74 72 75 | 02308040557,.a.new.firewall.stru |
| 7fc80 | 63 74 75 72 65 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 6f 6e 20 61 6c 6c 20 56 79 4f 53 20 69 | cture.can.be.found.on.all.VyOS.i |
| 7fca0 | 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 2e 20 54 68 65 20 5a 6f 6e 65 20 62 61 73 65 64 20 66 69 72 | nstallations..The.Zone.based.fir |
| 7fcc0 | 65 77 61 6c 6c 20 77 61 73 20 72 65 6d 6f 76 65 64 20 69 6e 20 74 68 61 74 20 76 65 72 73 69 6f | ewall.was.removed.in.that.versio |
| 7fce0 | 6e 2c 20 62 75 74 20 72 65 20 69 6e 74 72 6f 64 75 63 65 64 20 69 6e 20 56 79 4f 53 20 31 2e 34 | n,.but.re.introduced.in.VyOS.1.4 |
| 7fd00 | 20 61 6e 64 20 31 2e 35 2e 20 41 6c 6c 20 76 65 72 73 69 6f 6e 73 20 62 75 69 6c 74 20 61 66 74 | .and.1.5..All.versions.built.aft |
| 7fd20 | 65 72 20 32 30 32 33 2d 31 30 2d 32 32 20 68 61 76 65 20 74 68 69 73 20 66 65 61 74 75 72 65 2e | er.2023-10-22.have.this.feature. |
| 7fd40 | 20 44 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 66 6f 72 20 6d 6f 73 74 20 6f 66 20 74 68 65 20 6e | .Documentation.for.most.of.the.n |
| 7fd60 | 65 77 20 66 69 72 65 77 61 6c 6c 20 43 4c 49 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 | ew.firewall.CLI.can.be.found.in. |
| 7fd80 | 74 68 65 20 60 66 69 72 65 77 61 6c 6c 20 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 76 79 6f 73 | the.`firewall.<https://docs.vyos |
| 7fda0 | 2e 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 | .io/en/latest/configuration/fire |
| 7fdc0 | 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2e 68 74 6d 6c 3e 60 5f 20 63 68 61 70 74 65 72 2e 20 54 68 | wall/general.html>`_.chapter..Th |
| 7fde0 | 65 20 6c 65 67 61 63 79 20 66 69 72 65 77 61 6c 6c 20 69 73 20 73 74 69 6c 6c 20 61 76 61 69 6c | e.legacy.firewall.is.still.avail |
| 7fe00 | 61 62 6c 65 20 66 6f 72 20 76 65 72 73 69 6f 6e 73 20 62 65 66 6f 72 65 20 31 2e 34 2d 72 6f 6c | able.for.versions.before.1.4-rol |
| 7fe20 | 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 20 61 6e 64 20 63 61 6e 20 62 65 20 66 6f 75 | ling-202308040557.and.can.be.fou |
| 7fe40 | 6e 64 20 69 6e 20 74 68 65 20 3a 64 6f 63 3a 60 6c 65 67 61 63 79 20 66 69 72 65 77 61 6c 6c 20 | nd.in.the.:doc:`legacy.firewall. |
| 7fe60 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 | configuration.</configuration/fi |
| 7fe80 | 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2d 6c 65 67 61 63 79 3e 60 20 63 68 61 70 74 65 72 2e | rewall/general-legacy>`.chapter. |
| 7fea0 | 00 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 56 79 4f 53 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d | .Starting.from.VyOS.1.4-rolling- |
| 7fec0 | 32 30 32 33 30 38 30 34 30 35 35 37 2c 20 61 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 73 74 72 | 202308040557,.a.new.firewall.str |
| 7fee0 | 75 63 74 75 72 65 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 6f 6e 20 61 6c 6c 20 56 79 4f 53 20 | ucture.can.be.found.on.all.VyOS. |
| 7ff00 | 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 2e 20 5a 6f 6e 65 20 62 61 73 65 64 20 66 69 72 65 77 61 | installations..Zone.based.firewa |
| 7ff20 | 6c 6c 20 77 61 73 20 72 65 6d 6f 76 65 64 20 69 6e 20 74 68 61 74 20 76 65 72 73 69 6f 6e 2c 20 | ll.was.removed.in.that.version,. |
| 7ff40 | 62 75 74 20 72 65 20 69 6e 74 72 6f 64 75 63 65 64 20 69 6e 20 56 79 4f 53 20 31 2e 34 20 61 6e | but.re.introduced.in.VyOS.1.4.an |
| 7ff60 | 64 20 31 2e 35 2e 20 41 6c 6c 20 76 65 72 73 69 6f 6e 73 20 62 75 69 6c 74 20 61 66 74 65 72 20 | d.1.5..All.versions.built.after. |
| 7ff80 | 32 30 32 33 2d 31 30 2d 32 32 20 68 61 73 20 74 68 69 73 20 66 65 61 74 75 72 65 2e 20 44 6f 63 | 2023-10-22.has.this.feature..Doc |
| 7ffa0 | 75 6d 65 6e 74 61 74 69 6f 6e 20 66 6f 72 20 6d 6f 73 74 20 6f 66 20 74 68 65 20 6e 65 77 20 66 | umentation.for.most.of.the.new.f |
| 7ffc0 | 69 72 65 77 61 6c 6c 20 43 4c 49 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 74 68 65 20 | irewall.CLI.can.be.found.in.the. |
| 7ffe0 | 60 66 69 72 65 77 61 6c 6c 20 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 76 79 6f 73 2e 69 6f 2f | `firewall.<https://docs.vyos.io/ |
| 80000 | 65 6e 2f 6c 61 74 65 73 74 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c | en/latest/configuration/firewall |
| 80020 | 2f 67 65 6e 65 72 61 6c 2e 68 74 6d 6c 3e 60 5f 20 63 68 61 70 74 65 72 2e 20 54 68 65 20 6c 65 | /general.html>`_.chapter..The.le |
| 80040 | 67 61 63 79 20 66 69 72 65 77 61 6c 6c 20 69 73 20 73 74 69 6c 6c 20 61 76 61 69 6c 61 62 6c 65 | gacy.firewall.is.still.available |
| 80060 | 20 66 6f 72 20 76 65 72 73 69 6f 6e 73 20 62 65 66 6f 72 65 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 | .for.versions.before.1.4-rolling |
| 80080 | 2d 32 30 32 33 30 38 30 34 30 35 35 37 20 61 6e 64 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 | -202308040557.and.can.be.found.i |
| 800a0 | 6e 20 74 68 65 20 3a 64 6f 63 3a 60 6c 65 67 61 63 79 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 | n.the.:doc:`legacy.firewall.conf |
| 800c0 | 69 67 75 72 61 74 69 6f 6e 20 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 | iguration.</configuration/firewa |
| 800e0 | 6c 6c 2f 67 65 6e 65 72 61 6c 2d 6c 65 67 61 63 79 3e 60 20 63 68 61 70 74 65 72 2e 00 53 74 61 | ll/general-legacy>`.chapter..Sta |
| 80100 | 72 74 69 6e 67 20 66 72 6f 6d 20 56 79 4f 53 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 | rting.from.VyOS.1.4-rolling-2023 |
| 80120 | 30 38 30 34 30 35 35 37 2c 20 61 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 73 74 72 75 63 74 75 | 08040557,.a.new.firewall.structu |
| 80140 | 72 65 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 6f 6e 20 61 6c 6c 20 76 79 6f 73 20 69 6e 73 74 | re.can.be.found.on.all.vyos.inst |
| 80160 | 61 6c 61 74 69 6f 6e 73 2c 20 61 6e 64 20 7a 6f 6e 65 20 62 61 73 65 64 20 66 69 72 65 77 61 6c | alations,.and.zone.based.firewal |
| 80180 | 6c 20 69 73 20 6e 6f 20 6c 6f 6e 67 65 72 20 73 75 70 70 6f 72 74 65 64 2e 20 44 6f 63 75 6d 65 | l.is.no.longer.supported..Docume |
| 801a0 | 6e 74 61 74 69 6f 6e 20 66 6f 72 20 6d 6f 73 74 20 6f 66 20 74 68 65 20 6e 65 77 20 66 69 72 65 | ntation.for.most.of.the.new.fire |
| 801c0 | 77 61 6c 6c 20 43 4c 49 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 74 68 65 20 60 66 69 | wall.CLI.can.be.found.in.the.`fi |
| 801e0 | 72 65 77 61 6c 6c 20 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 76 79 6f 73 2e 69 6f 2f 65 6e 2f | rewall.<https://docs.vyos.io/en/ |
| 80200 | 6c 61 74 65 73 74 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 | latest/configuration/firewall/ge |
| 80220 | 6e 65 72 61 6c 2e 68 74 6d 6c 3e 60 5f 20 63 68 61 70 74 65 72 2e 20 54 68 65 20 6c 65 67 61 63 | neral.html>`_.chapter..The.legac |
| 80240 | 79 20 66 69 72 65 77 61 6c 6c 20 69 73 20 73 74 69 6c 6c 20 61 76 61 69 6c 61 62 6c 65 20 66 6f | y.firewall.is.still.available.fo |
| 80260 | 72 20 76 65 72 73 69 6f 6e 73 20 62 65 66 6f 72 65 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 | r.versions.before.1.4-rolling-20 |
| 80280 | 32 33 30 38 30 34 30 35 35 37 20 61 6e 64 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 74 | 2308040557.and.can.be.found.in.t |
| 802a0 | 68 65 20 3a 72 65 66 3a 60 66 69 72 65 77 61 6c 6c 2d 6c 65 67 61 63 79 60 20 63 68 61 70 74 65 | he.:ref:`firewall-legacy`.chapte |
| 802c0 | 72 2e 20 54 68 65 20 65 78 61 6d 70 6c 65 73 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 | r..The.examples.in.this.section. |
| 802e0 | 75 73 65 20 74 68 65 20 6c 65 67 61 63 79 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 | use.the.legacy.firewall.configur |
| 80300 | 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 2c 20 73 69 6e 63 65 20 74 68 69 73 20 66 65 61 74 75 | ation.commands,.since.this.featu |
| 80320 | 72 65 20 68 61 73 20 62 65 65 6e 20 72 65 6d 6f 76 65 64 20 69 6e 20 65 61 72 6c 69 65 72 20 72 | re.has.been.removed.in.earlier.r |
| 80340 | 65 6c 65 61 73 65 73 2e 00 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 56 79 4f 53 20 31 2e 34 2d | eleases..Starting.from.VyOS.1.4- |
| 80360 | 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 2c 20 61 20 6e 65 77 20 66 69 72 65 | rolling-202308040557,.a.new.fire |
| 80380 | 77 61 6c 6c 20 73 74 72 75 63 74 75 72 65 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 6f 6e 20 61 | wall.structure.can.be.found.on.a |
| 803a0 | 6c 6c 20 76 79 6f 73 20 69 6e 73 74 61 6c 61 74 69 6f 6e 73 2e 20 5a 6f 6e 65 20 62 61 73 65 64 | ll.vyos.instalations..Zone.based |
| 803c0 | 20 66 69 72 65 77 61 6c 6c 20 77 61 73 20 72 65 6d 6f 76 65 64 20 69 6e 20 74 68 61 74 20 76 65 | .firewall.was.removed.in.that.ve |
| 803e0 | 72 73 69 6f 6e 2c 20 62 75 74 20 72 65 20 69 6e 74 72 6f 64 75 63 65 64 20 69 6e 20 56 79 4f 53 | rsion,.but.re.introduced.in.VyOS |
| 80400 | 20 31 2e 34 20 61 6e 64 20 31 2e 35 2e 20 41 6c 6c 20 76 65 72 73 69 6f 6e 73 20 62 75 69 6c 74 | .1.4.and.1.5..All.versions.built |
| 80420 | 20 61 66 74 65 72 20 32 30 32 33 2d 31 30 2d 32 32 20 68 61 73 20 74 68 69 73 20 66 65 61 74 75 | .after.2023-10-22.has.this.featu |
| 80440 | 72 65 2e 20 44 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 66 6f 72 20 6d 6f 73 74 20 6f 66 20 74 68 | re..Documentation.for.most.of.th |
| 80460 | 65 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 43 4c 49 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 | e.new.firewall.CLI.can.be.found. |
| 80480 | 69 6e 20 74 68 65 20 60 66 69 72 65 77 61 6c 6c 20 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 76 | in.the.`firewall.<https://docs.v |
| 804a0 | 79 6f 73 2e 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 | yos.io/en/latest/configuration/f |
| 804c0 | 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2e 68 74 6d 6c 3e 60 5f 20 63 68 61 70 74 65 72 2e | irewall/general.html>`_.chapter. |
| 804e0 | 20 54 68 65 20 6c 65 67 61 63 79 20 66 69 72 65 77 61 6c 6c 20 69 73 20 73 74 69 6c 6c 20 61 76 | .The.legacy.firewall.is.still.av |
| 80500 | 61 69 6c 61 62 6c 65 20 66 6f 72 20 76 65 72 73 69 6f 6e 73 20 62 65 66 6f 72 65 20 31 2e 34 2d | ailable.for.versions.before.1.4- |
| 80520 | 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 20 61 6e 64 20 63 61 6e 20 62 65 20 | rolling-202308040557.and.can.be. |
| 80540 | 66 6f 75 6e 64 20 69 6e 20 74 68 65 20 3a 64 6f 63 3a 60 6c 65 67 61 63 79 20 66 69 72 65 77 61 | found.in.the.:doc:`legacy.firewa |
| 80560 | 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | ll.configuration.</configuration |
| 80580 | 2f 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2d 6c 65 67 61 63 79 3e 60 20 63 68 61 70 74 | /firewall/general-legacy>`.chapt |
| 805a0 | 65 72 2e 00 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 56 79 4f 53 20 31 2e 34 2d 72 6f 6c 6c 69 | er..Starting.from.VyOS.1.4-rolli |
| 805c0 | 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 2c 20 61 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 | ng-202308040557,.a.new.firewall. |
| 805e0 | 73 74 72 75 63 74 75 72 65 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 6f 6e 20 61 6c 6c 20 76 79 | structure.can.be.found.on.all.vy |
| 80600 | 6f 73 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 2e 00 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 | os.installations..Starting.from. |
| 80620 | 56 79 4f 53 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 2c 20 61 | VyOS.1.4-rolling-202308040557,.a |
| 80640 | 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 73 74 72 75 63 74 75 72 65 20 63 61 6e 20 62 65 20 66 | .new.firewall.structure.can.be.f |
| 80660 | 6f 75 6e 64 20 6f 6e 20 61 6c 6c 20 76 79 6f 73 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 2e 20 | ound.on.all.vyos.installations.. |
| 80680 | 44 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 66 6f 72 20 6d 6f 73 74 20 6e 65 77 20 66 69 72 65 77 | Documentation.for.most.new.firew |
| 806a0 | 61 6c 6c 20 63 6c 69 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 68 65 72 65 3a 00 53 74 61 72 74 | all.cli.can.be.found.here:.Start |
| 806c0 | 69 6e 67 20 6f 66 20 77 69 74 68 20 56 79 4f 53 20 31 2e 33 20 28 65 71 75 75 6c 65 75 73 29 20 | ing.of.with.VyOS.1.3.(equuleus). |
| 806e0 | 77 65 20 61 64 64 65 64 20 73 75 70 70 6f 72 74 20 66 6f 72 20 72 75 6e 6e 69 6e 67 20 56 79 4f | we.added.support.for.running.VyO |
| 80700 | 53 20 61 73 20 61 6e 20 4f 75 74 2d 6f 66 2d 42 61 6e 64 20 4d 61 6e 61 67 65 6d 65 6e 74 20 64 | S.as.an.Out-of-Band.Management.d |
| 80720 | 65 76 69 63 65 20 77 68 69 63 68 20 70 72 6f 76 69 64 65 73 20 72 65 6d 6f 74 65 20 61 63 63 65 | evice.which.provides.remote.acce |
| 80740 | 73 73 20 62 79 20 6d 65 61 6e 73 20 6f 66 20 53 53 48 20 74 6f 20 64 69 72 65 63 74 6c 79 20 61 | ss.by.means.of.SSH.to.directly.a |
| 80760 | 74 74 61 63 68 65 64 20 73 65 72 69 61 6c 20 69 6e 74 65 72 66 61 63 65 73 2e 00 53 74 61 72 74 | ttached.serial.interfaces..Start |
| 80780 | 69 6e 67 20 77 69 74 68 20 56 79 4f 53 20 31 2e 32 20 61 20 3a 61 62 62 72 3a 60 6d 44 4e 53 20 | ing.with.VyOS.1.2.a.:abbr:`mDNS. |
| 807a0 | 28 4d 75 6c 74 69 63 61 73 74 20 44 4e 53 29 60 20 72 65 70 65 61 74 65 72 20 66 75 6e 63 74 69 | (Multicast.DNS)`.repeater.functi |
| 807c0 | 6f 6e 61 6c 69 74 79 20 69 73 20 70 72 6f 76 69 64 65 64 2e 20 41 64 64 69 74 69 6f 6e 61 6c 20 | onality.is.provided..Additional. |
| 807e0 | 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 63 61 6e 20 62 65 20 6f 62 74 61 69 6e 65 64 20 66 72 6f 6d | information.can.be.obtained.from |
| 80800 | 20 68 74 74 70 73 3a 2f 2f 65 6e 2e 77 69 6b 69 70 65 64 69 61 2e 6f 72 67 2f 77 69 6b 69 2f 4d | .https://en.wikipedia.org/wiki/M |
| 80820 | 75 6c 74 69 63 61 73 74 5f 44 4e 53 2e 00 53 74 61 74 69 63 00 53 74 61 74 69 63 20 3a 61 62 62 | ulticast_DNS..Static.Static.:abb |
| 80840 | 72 3a 60 53 41 4b 20 28 53 65 63 75 72 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 4b 65 | r:`SAK.(Secure.Authentication.Ke |
| 80860 | 79 29 60 20 6d 6f 64 65 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6d 61 6e 75 61 | y)`.mode.can.be.configured.manua |
| 80880 | 6c 6c 79 20 6f 6e 20 65 61 63 68 20 64 65 76 69 63 65 20 77 69 73 68 69 6e 67 20 74 6f 20 75 73 | lly.on.each.device.wishing.to.us |
| 808a0 | 65 20 4d 41 43 73 65 63 2e 20 4b 65 79 73 20 6d 75 73 74 20 62 65 20 73 65 74 20 73 74 61 74 69 | e.MACsec..Keys.must.be.set.stati |
| 808c0 | 63 61 6c 6c 79 20 6f 6e 20 61 6c 6c 20 64 65 76 69 63 65 73 20 66 6f 72 20 74 72 61 66 66 69 63 | cally.on.all.devices.for.traffic |
| 808e0 | 20 74 6f 20 66 6c 6f 77 20 70 72 6f 70 65 72 6c 79 2e 20 4b 65 79 20 72 6f 74 61 74 69 6f 6e 20 | .to.flow.properly..Key.rotation. |
| 80900 | 69 73 20 64 65 70 65 6e 64 65 6e 74 20 6f 6e 20 74 68 65 20 61 64 6d 69 6e 69 73 74 72 61 74 6f | is.dependent.on.the.administrato |
| 80920 | 72 20 75 70 64 61 74 69 6e 67 20 61 6c 6c 20 6b 65 79 73 20 6d 61 6e 75 61 6c 6c 79 20 61 63 72 | r.updating.all.keys.manually.acr |
| 80940 | 6f 73 73 20 63 6f 6e 6e 65 63 74 65 64 20 64 65 76 69 63 65 73 2e 20 53 74 61 74 69 63 20 53 41 | oss.connected.devices..Static.SA |
| 80960 | 4b 20 6d 6f 64 65 20 63 61 6e 20 6e 6f 74 20 62 65 20 75 73 65 64 20 77 69 74 68 20 4d 4b 41 2e | K.mode.can.not.be.used.with.MKA. |
| 80980 | 00 53 74 61 74 69 63 20 44 48 43 50 20 49 50 20 61 64 64 72 65 73 73 20 61 73 73 69 67 6e 20 74 | .Static.DHCP.IP.address.assign.t |
| 809a0 | 6f 20 68 6f 73 74 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 64 65 73 63 72 69 70 74 69 | o.host.identified.by.`<descripti |
| 809c0 | 6f 6e 3e 60 2e 20 49 50 20 61 64 64 72 65 73 73 20 6d 75 73 74 20 62 65 20 69 6e 73 69 64 65 20 | on>`..IP.address.must.be.inside. |
| 809e0 | 74 68 65 20 60 3c 73 75 62 6e 65 74 3e 60 20 77 68 69 63 68 20 69 73 20 64 65 66 69 6e 65 64 20 | the.`<subnet>`.which.is.defined. |
| 80a00 | 62 75 74 20 63 61 6e 20 62 65 20 6f 75 74 73 69 64 65 20 74 68 65 20 64 79 6e 61 6d 69 63 20 72 | but.can.be.outside.the.dynamic.r |
| 80a20 | 61 6e 67 65 20 63 72 65 61 74 65 64 20 77 69 74 68 20 3a 63 66 67 63 6d 64 3a 60 73 65 74 20 73 | ange.created.with.:cfgcmd:`set.s |
| 80a40 | 65 72 76 69 63 65 20 64 68 63 70 2d 73 65 72 76 65 72 20 73 68 61 72 65 64 2d 6e 65 74 77 6f 72 | ervice.dhcp-server.shared-networ |
| 80a60 | 6b 2d 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 73 75 62 6e 65 74 20 3c 73 75 62 6e 65 74 3e 20 72 61 | k-name.<name>.subnet.<subnet>.ra |
| 80a80 | 6e 67 65 20 3c 6e 3e 60 2e 20 49 66 20 6e 6f 20 69 70 2d 61 64 64 72 65 73 73 20 69 73 20 73 70 | nge.<n>`..If.no.ip-address.is.sp |
| 80aa0 | 65 63 69 66 69 65 64 2c 20 61 6e 20 49 50 20 66 72 6f 6d 20 74 68 65 20 64 79 6e 61 6d 69 63 20 | ecified,.an.IP.from.the.dynamic. |
| 80ac0 | 70 6f 6f 6c 20 69 73 20 75 73 65 64 2e 00 53 74 61 74 69 63 20 48 6f 73 74 6e 61 6d 65 20 4d 61 | pool.is.used..Static.Hostname.Ma |
| 80ae0 | 70 70 69 6e 67 00 53 74 61 74 69 63 20 4b 65 79 73 00 53 74 61 74 69 63 20 52 6f 75 74 65 73 00 | pping.Static.Keys.Static.Routes. |
| 80b00 | 53 74 61 74 69 63 20 52 6f 75 74 69 6e 67 20 6f 72 20 6f 74 68 65 72 20 64 79 6e 61 6d 69 63 20 | Static.Routing.or.other.dynamic. |
| 80b20 | 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 6f 76 | routing.protocols.can.be.used.ov |
| 80b40 | 65 72 20 74 68 65 20 76 74 75 6e 20 69 6e 74 65 72 66 61 63 65 00 53 74 61 74 69 63 20 52 6f 75 | er.the.vtun.interface.Static.Rou |
| 80b60 | 74 69 6e 67 3a 00 53 74 61 74 69 63 20 6d 61 70 70 69 6e 67 73 00 53 74 61 74 69 63 20 6d 61 70 | ting:.Static.mappings.Static.map |
| 80b80 | 70 69 6e 67 73 20 61 72 65 6e 27 74 20 73 68 6f 77 6e 2e 20 54 6f 20 73 68 6f 77 20 61 6c 6c 20 | pings.aren't.shown..To.show.all. |
| 80ba0 | 73 74 61 74 65 73 2c 20 75 73 65 20 60 60 73 68 6f 77 20 64 68 63 70 20 73 65 72 76 65 72 20 6c | states,.use.``show.dhcp.server.l |
| 80bc0 | 65 61 73 65 73 20 73 74 61 74 65 20 61 6c 6c 60 60 2e 00 53 74 61 74 69 63 20 72 6f 75 74 65 73 | eases.state.all``..Static.routes |
| 80be0 | 20 61 72 65 20 6d 61 6e 75 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 72 6f 75 74 65 73 2c | .are.manually.configured.routes, |
| 80c00 | 20 77 68 69 63 68 2c 20 69 6e 20 67 65 6e 65 72 61 6c 2c 20 63 61 6e 6e 6f 74 20 62 65 20 75 70 | .which,.in.general,.cannot.be.up |
| 80c20 | 64 61 74 65 64 20 64 79 6e 61 6d 69 63 61 6c 6c 79 20 66 72 6f 6d 20 69 6e 66 6f 72 6d 61 74 69 | dated.dynamically.from.informati |
| 80c40 | 6f 6e 20 56 79 4f 53 20 6c 65 61 72 6e 73 20 61 62 6f 75 74 20 74 68 65 20 6e 65 74 77 6f 72 6b | on.VyOS.learns.about.the.network |
| 80c60 | 20 74 6f 70 6f 6c 6f 67 79 20 66 72 6f 6d 20 6f 74 68 65 72 20 72 6f 75 74 69 6e 67 20 70 72 6f | .topology.from.other.routing.pro |
| 80c80 | 74 6f 63 6f 6c 73 2e 20 48 6f 77 65 76 65 72 2c 20 69 66 20 61 20 6c 69 6e 6b 20 66 61 69 6c 73 | tocols..However,.if.a.link.fails |
| 80ca0 | 2c 20 74 68 65 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 72 65 6d 6f 76 65 20 72 6f 75 74 65 73 2c | ,.the.router.will.remove.routes, |
| 80cc0 | 20 69 6e 63 6c 75 64 69 6e 67 20 73 74 61 74 69 63 20 72 6f 75 74 65 73 2c 20 66 72 6f 6d 20 74 | .including.static.routes,.from.t |
| 80ce0 | 68 65 20 3a 61 62 62 72 3a 60 52 49 50 42 20 28 52 6f 75 74 69 6e 67 20 49 6e 66 6f 72 6d 61 74 | he.:abbr:`RIPB.(Routing.Informat |
| 80d00 | 69 6f 6e 20 42 61 73 65 29 60 20 74 68 61 74 20 75 73 65 64 20 74 68 69 73 20 69 6e 74 65 72 66 | ion.Base)`.that.used.this.interf |
| 80d20 | 61 63 65 20 74 6f 20 72 65 61 63 68 20 74 68 65 20 6e 65 78 74 20 68 6f 70 2e 20 49 6e 20 67 65 | ace.to.reach.the.next.hop..In.ge |
| 80d40 | 6e 65 72 61 6c 2c 20 73 74 61 74 69 63 20 72 6f 75 74 65 73 20 73 68 6f 75 6c 64 20 6f 6e 6c 79 | neral,.static.routes.should.only |
| 80d60 | 20 62 65 20 75 73 65 64 20 66 6f 72 20 76 65 72 79 20 73 69 6d 70 6c 65 20 6e 65 74 77 6f 72 6b | .be.used.for.very.simple.network |
| 80d80 | 20 74 6f 70 6f 6c 6f 67 69 65 73 2c 20 6f 72 20 74 6f 20 6f 76 65 72 72 69 64 65 20 74 68 65 20 | .topologies,.or.to.override.the. |
| 80da0 | 62 65 68 61 76 69 6f 72 20 6f 66 20 61 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 | behavior.of.a.dynamic.routing.pr |
| 80dc0 | 6f 74 6f 63 6f 6c 20 66 6f 72 20 61 20 73 6d 61 6c 6c 20 6e 75 6d 62 65 72 20 6f 66 20 72 6f 75 | otocol.for.a.small.number.of.rou |
| 80de0 | 74 65 73 2e 20 54 68 65 20 63 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 72 6f 75 74 65 | tes..The.collection.of.all.route |
| 80e00 | 73 20 74 68 65 20 72 6f 75 74 65 72 20 68 61 73 20 6c 65 61 72 6e 65 64 20 66 72 6f 6d 20 69 74 | s.the.router.has.learned.from.it |
| 80e20 | 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 72 20 66 72 6f 6d 20 69 74 73 20 64 79 6e 61 | s.configuration.or.from.its.dyna |
| 80e40 | 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 69 73 20 73 74 6f 72 65 64 20 | mic.routing.protocols.is.stored. |
| 80e60 | 69 6e 20 74 68 65 20 52 49 42 2e 20 55 6e 69 63 61 73 74 20 72 6f 75 74 65 73 20 61 72 65 20 64 | in.the.RIB..Unicast.routes.are.d |
| 80e80 | 69 72 65 63 74 6c 79 20 75 73 65 64 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 66 6f | irectly.used.to.determine.the.fo |
| 80ea0 | 72 77 61 72 64 69 6e 67 20 74 61 62 6c 65 20 75 73 65 64 20 66 6f 72 20 75 6e 69 63 61 73 74 20 | rwarding.table.used.for.unicast. |
| 80ec0 | 70 61 63 6b 65 74 20 66 6f 72 77 61 72 64 69 6e 67 2e 00 53 74 61 74 69 63 20 72 6f 75 74 65 73 | packet.forwarding..Static.routes |
| 80ee0 | 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 72 65 66 65 72 65 6e 63 69 6e 67 20 74 | .can.be.configured.referencing.t |
| 80f00 | 68 65 20 74 75 6e 6e 65 6c 20 69 6e 74 65 72 66 61 63 65 3b 20 66 6f 72 20 65 78 61 6d 70 6c 65 | he.tunnel.interface;.for.example |
| 80f20 | 2c 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 75 73 65 20 61 20 6e 65 | ,.the.local.router.will.use.a.ne |
| 80f40 | 74 77 6f 72 6b 20 6f 66 20 31 30 2e 30 2e 30 2e 30 2f 31 36 2c 20 77 68 69 6c 65 20 74 68 65 20 | twork.of.10.0.0.0/16,.while.the. |
| 80f60 | 72 65 6d 6f 74 65 20 68 61 73 20 61 20 6e 65 74 77 6f 72 6b 20 6f 66 20 31 30 2e 31 2e 30 2e 30 | remote.has.a.network.of.10.1.0.0 |
| 80f80 | 2f 31 36 3a 00 53 74 61 74 69 6f 6e 20 6d 6f 64 65 20 61 63 74 73 20 61 73 20 61 20 57 69 2d 46 | /16:.Station.mode.acts.as.a.Wi-F |
| 80fa0 | 69 20 63 6c 69 65 6e 74 20 61 63 63 65 73 73 69 6e 67 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 74 | i.client.accessing.the.network.t |
| 80fc0 | 68 72 6f 75 67 68 20 61 6e 20 61 76 61 69 6c 61 62 6c 65 20 57 41 50 00 53 74 61 74 69 6f 6e 20 | hrough.an.available.WAP.Station. |
| 80fe0 | 73 75 70 70 6f 72 74 73 20 72 65 63 65 69 76 69 6e 67 20 56 48 54 20 76 61 72 69 61 6e 74 20 48 | supports.receiving.VHT.variant.H |
| 81000 | 54 20 43 6f 6e 74 72 6f 6c 20 66 69 65 6c 64 00 53 74 61 74 75 73 00 53 74 69 63 6b 79 20 43 6f | T.Control.field.Status.Sticky.Co |
| 81020 | 6e 6e 65 63 74 69 6f 6e 73 00 53 74 6f 72 61 67 65 20 6f 66 20 72 6f 75 74 65 20 75 70 64 61 74 | nnections.Storage.of.route.updat |
| 81040 | 65 73 20 75 73 65 73 20 6d 65 6d 6f 72 79 2e 20 49 66 20 79 6f 75 20 65 6e 61 62 6c 65 20 73 6f | es.uses.memory..If.you.enable.so |
| 81060 | 66 74 20 72 65 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 6e 62 6f 75 6e 64 20 66 6f 72 20 6d | ft.reconfiguration.inbound.for.m |
| 81080 | 75 6c 74 69 70 6c 65 20 6e 65 69 67 68 62 6f 72 73 2c 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 | ultiple.neighbors,.the.amount.of |
| 810a0 | 20 6d 65 6d 6f 72 79 20 75 73 65 64 20 63 61 6e 20 62 65 63 6f 6d 65 20 73 69 67 6e 69 66 69 63 | .memory.used.can.become.signific |
| 810c0 | 61 6e 74 2e 00 53 75 66 66 69 78 65 73 00 53 75 6d 6d 61 72 69 73 61 74 69 6f 6e 20 73 74 61 72 | ant..Suffixes.Summarisation.star |
| 810e0 | 74 73 20 6f 6e 6c 79 20 61 66 74 65 72 20 74 68 69 73 20 64 65 6c 61 79 20 74 69 6d 65 72 20 65 | ts.only.after.this.delay.timer.e |
| 81100 | 78 70 69 72 79 2e 00 53 75 70 70 6f 72 74 65 64 20 4d 6f 64 75 6c 65 73 00 53 75 70 70 6f 72 74 | xpiry..Supported.Modules.Support |
| 81120 | 65 64 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 20 73 65 74 2e 00 53 75 70 70 6f 72 74 65 64 20 | ed.channel.width.set..Supported. |
| 81140 | 64 61 65 6d 6f 6e 73 3a 00 53 75 70 70 6f 72 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 79 70 | daemons:.Supported.interface.typ |
| 81160 | 65 73 3a 00 53 75 70 70 6f 72 74 65 64 20 72 65 6d 6f 74 65 20 70 72 6f 74 6f 63 6f 6c 73 20 61 | es:.Supported.remote.protocols.a |
| 81180 | 72 65 20 46 54 50 2c 20 46 54 50 53 2c 20 48 54 54 50 2c 20 48 54 54 50 53 2c 20 53 43 50 2f 53 | re.FTP,.FTPS,.HTTP,.HTTPS,.SCP/S |
| 811a0 | 46 54 50 20 61 6e 64 20 54 46 54 50 2e 00 53 75 70 70 6f 72 74 65 64 20 76 65 72 73 69 6f 6e 73 | FTP.and.TFTP..Supported.versions |
| 811c0 | 20 6f 66 20 52 49 50 20 61 72 65 3a 00 53 75 70 70 6f 72 74 73 20 61 73 20 48 45 4c 50 45 52 20 | .of.RIP.are:.Supports.as.HELPER. |
| 811e0 | 66 6f 72 20 63 6f 6e 66 69 67 75 72 65 64 20 67 72 61 63 65 20 70 65 72 69 6f 64 2e 00 53 75 70 | for.configured.grace.period..Sup |
| 81200 | 70 6f 73 65 20 74 68 65 20 4c 45 46 54 20 72 6f 75 74 65 72 20 68 61 73 20 65 78 74 65 72 6e 61 | pose.the.LEFT.router.has.externa |
| 81220 | 6c 20 61 64 64 72 65 73 73 20 31 39 32 2e 30 2e 32 2e 31 30 20 6f 6e 20 69 74 73 20 65 74 68 30 | l.address.192.0.2.10.on.its.eth0 |
| 81240 | 20 69 6e 74 65 72 66 61 63 65 2c 20 61 6e 64 20 74 68 65 20 52 49 47 48 54 20 72 6f 75 74 65 72 | .interface,.and.the.RIGHT.router |
| 81260 | 20 69 73 20 32 30 33 2e 30 2e 31 31 33 2e 34 35 00 53 75 70 70 6f 73 65 20 79 6f 75 20 77 61 6e | .is.203.0.113.45.Suppose.you.wan |
| 81280 | 74 20 74 6f 20 75 73 65 20 31 30 2e 32 33 2e 31 2e 30 2f 32 34 20 6e 65 74 77 6f 72 6b 20 66 6f | t.to.use.10.23.1.0/24.network.fo |
| 812a0 | 72 20 63 6c 69 65 6e 74 20 74 75 6e 6e 65 6c 20 65 6e 64 70 6f 69 6e 74 73 20 61 6e 64 20 61 6c | r.client.tunnel.endpoints.and.al |
| 812c0 | 6c 20 63 6c 69 65 6e 74 20 73 75 62 6e 65 74 73 20 62 65 6c 6f 6e 67 20 74 6f 20 31 30 2e 32 33 | l.client.subnets.belong.to.10.23 |
| 812e0 | 2e 30 2e 30 2f 32 30 2e 20 41 6c 6c 20 63 6c 69 65 6e 74 73 20 6e 65 65 64 20 61 63 63 65 73 73 | .0.0/20..All.clients.need.access |
| 81300 | 20 74 6f 20 74 68 65 20 31 39 32 2e 31 36 38 2e 30 2e 30 2f 31 36 20 6e 65 74 77 6f 72 6b 2e 00 | .to.the.192.168.0.0/16.network.. |
| 81320 | 53 75 70 70 72 65 73 73 20 73 65 6e 64 69 6e 67 20 43 61 70 61 62 69 6c 69 74 79 20 4e 65 67 6f | Suppress.sending.Capability.Nego |
| 81340 | 74 69 61 74 69 6f 6e 20 61 73 20 4f 50 45 4e 20 6d 65 73 73 61 67 65 20 6f 70 74 69 6f 6e 61 6c | tiation.as.OPEN.message.optional |
| 81360 | 20 70 61 72 61 6d 65 74 65 72 20 74 6f 20 74 68 65 20 70 65 65 72 2e 20 54 68 69 73 20 63 6f 6d | .parameter.to.the.peer..This.com |
| 81380 | 6d 61 6e 64 20 6f 6e 6c 79 20 61 66 66 65 63 74 73 20 74 68 65 20 70 65 65 72 20 69 73 20 63 6f | mand.only.affects.the.peer.is.co |
| 813a0 | 6e 66 69 67 75 72 65 64 20 6f 74 68 65 72 20 74 68 61 6e 20 49 50 76 34 20 75 6e 69 63 61 73 74 | nfigured.other.than.IPv4.unicast |
| 813c0 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 53 75 72 69 63 61 74 61 20 46 65 61 74 75 72 65 | .configuration..Suricata.Feature |
| 813e0 | 73 00 53 75 72 69 63 61 74 61 20 61 6e 64 20 56 79 4f 53 20 61 72 65 20 70 6f 77 65 72 66 75 6c | s.Suricata.and.VyOS.are.powerful |
| 81400 | 20 74 6f 6f 6c 73 20 66 6f 72 20 65 6e 73 75 72 69 6e 67 20 6e 65 74 77 6f 72 6b 20 73 65 63 75 | .tools.for.ensuring.network.secu |
| 81420 | 72 69 74 79 20 61 6e 64 20 74 72 61 66 66 69 63 20 6d 61 6e 61 67 65 6d 65 6e 74 2e 20 53 75 72 | rity.and.traffic.management..Sur |
| 81440 | 69 63 61 74 61 20 69 73 20 61 6e 20 6f 70 65 6e 2d 73 6f 75 72 63 65 20 69 6e 74 72 75 73 69 6f | icata.is.an.open-source.intrusio |
| 81460 | 6e 20 64 65 74 65 63 74 69 6f 6e 20 61 6e 64 20 70 72 65 76 65 6e 74 69 6f 6e 20 73 79 73 74 65 | n.detection.and.prevention.syste |
| 81480 | 6d 20 28 49 44 53 2f 49 50 53 29 20 74 68 61 74 20 61 6e 61 6c 79 7a 65 73 20 6e 65 74 77 6f 72 | m.(IDS/IPS).that.analyzes.networ |
| 814a0 | 6b 20 70 61 63 6b 65 74 73 20 69 6e 20 72 65 61 6c 2d 74 69 6d 65 2e 00 53 79 6e 61 6d 69 63 20 | k.packets.in.real-time..Synamic. |
| 814c0 | 69 6e 73 74 72 75 63 74 73 20 74 6f 20 66 6f 72 77 61 72 64 20 74 6f 20 61 6c 6c 20 70 65 65 72 | instructs.to.forward.to.all.peer |
| 814e0 | 73 20 77 68 69 63 68 20 77 65 20 68 61 76 65 20 61 20 64 69 72 65 63 74 20 63 6f 6e 6e 65 63 74 | s.which.we.have.a.direct.connect |
| 81500 | 69 6f 6e 20 77 69 74 68 2e 20 41 6c 74 65 72 6e 61 74 69 76 65 6c 79 2c 20 79 6f 75 20 63 61 6e | ion.with..Alternatively,.you.can |
| 81520 | 20 73 70 65 63 69 66 79 20 74 68 65 20 64 69 72 65 63 74 69 76 65 20 6d 75 6c 74 69 70 6c 65 20 | .specify.the.directive.multiple. |
| 81540 | 74 69 6d 65 73 20 66 6f 72 20 65 61 63 68 20 70 72 6f 74 6f 63 6f 6c 2d 61 64 64 72 65 73 73 20 | times.for.each.protocol-address. |
| 81560 | 74 68 65 20 6d 75 6c 74 69 63 61 73 74 20 74 72 61 66 66 69 63 20 73 68 6f 75 6c 64 20 62 65 20 | the.multicast.traffic.should.be. |
| 81580 | 73 65 6e 74 20 74 6f 2e 00 53 79 6e 63 20 67 72 6f 75 70 73 00 53 79 6e 63 68 72 6f 6e 69 7a 65 | sent.to..Sync.groups.Synchronize |
| 815a0 | 20 74 68 65 20 74 69 6d 65 2d 7a 6f 6e 65 20 61 6e 64 20 4f 53 50 46 20 63 6f 6e 66 69 67 75 72 | .the.time-zone.and.OSPF.configur |
| 815c0 | 61 74 69 6f 6e 20 66 72 6f 6d 20 52 6f 75 74 65 72 20 41 20 74 6f 20 52 6f 75 74 65 72 20 42 00 | ation.from.Router.A.to.Router.B. |
| 815e0 | 53 79 6e 70 72 6f 78 79 00 53 79 6e 70 72 6f 78 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 00 53 79 | Synproxy.Synproxy.connections.Sy |
| 81600 | 6e 70 72 6f 78 79 20 72 65 6c 69 65 73 20 6f 6e 20 73 79 6e 63 6f 6f 6b 69 65 73 20 61 6e 64 20 | nproxy.relies.on.syncookies.and. |
| 81620 | 54 43 50 20 74 69 6d 65 73 74 61 6d 70 73 2c 20 65 6e 73 75 72 65 20 74 68 65 73 65 20 61 72 65 | TCP.timestamps,.ensure.these.are |
| 81640 | 20 65 6e 61 62 6c 65 64 00 53 79 6e 74 61 78 20 68 61 73 20 63 68 61 6e 67 65 64 20 66 72 6f 6d | .enabled.Syntax.has.changed.from |
| 81660 | 20 56 79 4f 53 20 31 2e 32 20 28 63 72 75 78 29 20 61 6e 64 20 69 74 20 77 69 6c 6c 20 62 65 20 | .VyOS.1.2.(crux).and.it.will.be. |
| 81680 | 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 6d 69 67 72 61 74 65 64 20 64 75 72 69 6e 67 20 61 6e | automatically.migrated.during.an |
| 816a0 | 20 75 70 67 72 61 64 65 2e 00 53 79 73 63 74 6c 00 53 79 73 6c 6f 67 00 53 79 73 6c 6f 67 20 73 | .upgrade..Sysctl.Syslog.Syslog.s |
| 816c0 | 75 70 70 6f 72 74 73 20 6c 6f 67 67 69 6e 67 20 74 6f 20 6d 75 6c 74 69 70 6c 65 20 74 61 72 67 | upports.logging.to.multiple.targ |
| 816e0 | 65 74 73 2c 20 74 68 6f 73 65 20 74 61 72 67 65 74 73 20 63 6f 75 6c 64 20 62 65 20 61 20 70 6c | ets,.those.targets.could.be.a.pl |
| 81700 | 61 69 6e 20 66 69 6c 65 20 6f 6e 20 79 6f 75 72 20 56 79 4f 53 20 69 6e 73 74 61 6c 6c 61 74 69 | ain.file.on.your.VyOS.installati |
| 81720 | 6f 6e 20 69 74 73 65 6c 66 2c 20 61 20 73 65 72 69 61 6c 20 63 6f 6e 73 6f 6c 65 20 6f 72 20 61 | on.itself,.a.serial.console.or.a |
| 81740 | 20 72 65 6d 6f 74 65 20 73 79 73 6c 6f 67 20 73 65 72 76 65 72 20 77 68 69 63 68 20 69 73 20 72 | .remote.syslog.server.which.is.r |
| 81760 | 65 61 63 68 65 64 20 76 69 61 20 3a 61 62 62 72 3a 60 49 50 20 28 49 6e 74 65 72 6e 65 74 20 50 | eached.via.:abbr:`IP.(Internet.P |
| 81780 | 72 6f 74 6f 63 6f 6c 29 60 20 55 44 50 2f 54 43 50 2e 00 53 79 73 6c 6f 67 20 75 73 65 73 20 6c | rotocol)`.UDP/TCP..Syslog.uses.l |
| 817a0 | 6f 67 72 6f 74 61 74 65 20 74 6f 20 72 6f 74 61 74 65 20 6c 6f 67 66 69 6c 65 73 20 61 66 74 65 | ogrotate.to.rotate.logfiles.afte |
| 817c0 | 72 20 61 20 6e 75 6d 62 65 72 20 6f 66 20 67 69 76 65 73 20 62 79 74 65 73 2e 20 57 65 20 6b 65 | r.a.number.of.gives.bytes..We.ke |
| 817e0 | 65 70 20 61 73 20 6d 61 6e 79 20 61 73 20 60 3c 6e 75 6d 62 65 72 3e 60 20 72 6f 74 61 74 65 64 | ep.as.many.as.`<number>`.rotated |
| 81800 | 20 66 69 6c 65 20 62 65 66 6f 72 65 20 74 68 65 79 20 61 72 65 20 64 65 6c 65 74 65 64 20 6f 6e | .file.before.they.are.deleted.on |
| 81820 | 20 74 68 65 20 73 79 73 74 65 6d 2e 00 53 79 73 6c 6f 67 20 75 73 65 73 20 6c 6f 67 72 6f 74 61 | .the.system..Syslog.uses.logrota |
| 81840 | 74 65 20 74 6f 20 72 6f 74 61 74 65 20 6c 6f 67 69 6c 65 73 20 61 66 74 65 72 20 61 20 6e 75 6d | te.to.rotate.logiles.after.a.num |
| 81860 | 62 65 72 20 6f 66 20 67 69 76 65 73 20 62 79 74 65 73 2e 20 57 65 20 6b 65 65 70 20 61 73 20 6d | ber.of.gives.bytes..We.keep.as.m |
| 81880 | 61 6e 79 20 61 73 20 60 3c 6e 75 6d 62 65 72 3e 60 20 72 6f 74 61 74 65 64 20 66 69 6c 65 20 62 | any.as.`<number>`.rotated.file.b |
| 818a0 | 65 66 6f 72 65 20 74 68 65 79 20 61 72 65 20 64 65 6c 65 74 65 64 20 6f 6e 20 74 68 65 20 73 79 | efore.they.are.deleted.on.the.sy |
| 818c0 | 73 74 65 6d 2e 00 53 79 73 6c 6f 67 20 77 69 6c 6c 20 77 72 69 74 65 20 60 3c 73 69 7a 65 3e 60 | stem..Syslog.will.write.`<size>` |
| 818e0 | 20 6b 69 6c 6f 62 79 74 65 73 20 69 6e 74 6f 20 74 68 65 20 66 69 6c 65 20 73 70 65 63 69 66 69 | .kilobytes.into.the.file.specifi |
| 81900 | 65 64 20 62 79 20 60 3c 66 69 6c 65 6e 61 6d 65 3e 60 2e 20 41 66 74 65 72 20 74 68 69 73 20 6c | ed.by.`<filename>`..After.this.l |
| 81920 | 69 6d 69 74 20 68 61 73 20 62 65 65 6e 20 72 65 61 63 68 65 64 2c 20 74 68 65 20 63 75 73 74 6f | imit.has.been.reached,.the.custo |
| 81940 | 6d 20 66 69 6c 65 20 69 73 20 22 72 6f 74 61 74 65 64 22 20 62 79 20 6c 6f 67 72 6f 74 61 74 65 | m.file.is."rotated".by.logrotate |
| 81960 | 20 61 6e 64 20 61 20 6e 65 77 20 63 75 73 74 6f 6d 20 66 69 6c 65 20 69 73 20 63 72 65 61 74 65 | .and.a.new.custom.file.is.create |
| 81980 | 64 2e 00 53 79 73 74 65 6d 00 53 79 73 74 65 6d 20 44 4e 53 00 53 79 73 74 65 6d 20 44 69 73 70 | d..System.System.DNS.System.Disp |
| 819a0 | 6c 61 79 20 28 4c 43 44 29 00 53 79 73 74 65 6d 20 4e 61 6d 65 20 61 6e 64 20 44 65 73 63 72 69 | lay.(LCD).System.Name.and.Descri |
| 819c0 | 70 74 69 6f 6e 00 53 79 73 74 65 6d 20 50 72 6f 78 79 00 53 79 73 74 65 6d 20 57 69 64 65 20 63 | ption.System.Proxy.System.Wide.c |
| 819e0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 53 79 73 74 65 6d 20 63 61 70 61 62 69 6c 69 74 69 65 73 | onfiguration.System.capabilities |
| 81a00 | 20 28 73 77 69 74 63 68 69 6e 67 2c 20 72 6f 75 74 69 6e 67 2c 20 65 74 63 2e 29 00 53 79 73 74 | .(switching,.routing,.etc.).Syst |
| 81a20 | 65 6d 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 00 53 79 73 74 65 6d | em.configuration.commands.System |
| 81a40 | 20 64 61 65 6d 6f 6e 73 00 53 79 73 74 65 6d 20 69 64 65 6e 74 69 66 69 65 72 3a 20 60 60 31 39 | .daemons.System.identifier:.``19 |
| 81a60 | 32 31 2e 36 38 30 30 2e 31 30 30 32 60 60 20 2d 20 66 6f 72 20 73 79 73 74 65 6d 20 69 64 65 6e | 21.6800.1002``.-.for.system.iden |
| 81a80 | 74 69 66 69 65 72 73 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 74 6f 20 75 73 65 20 49 50 20 61 | tifiers.we.recommend.to.use.IP.a |
| 81aa0 | 64 64 72 65 73 73 20 6f 72 20 4d 41 43 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 72 6f 75 | ddress.or.MAC.address.of.the.rou |
| 81ac0 | 74 65 72 20 69 74 73 65 6c 66 2e 20 54 68 65 20 77 61 79 20 74 6f 20 63 6f 6e 73 74 72 75 63 74 | ter.itself..The.way.to.construct |
| 81ae0 | 20 74 68 69 73 20 69 73 20 74 6f 20 6b 65 65 70 20 61 6c 6c 20 6f 66 20 74 68 65 20 7a 65 72 6f | .this.is.to.keep.all.of.the.zero |
| 81b00 | 65 73 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 20 49 50 20 61 64 64 72 65 73 73 2c 20 61 6e 64 | es.of.the.router.IP.address,.and |
| 81b20 | 20 74 68 65 6e 20 63 68 61 6e 67 65 20 74 68 65 20 70 65 72 69 6f 64 73 20 66 72 6f 6d 20 62 65 | .then.change.the.periods.from.be |
| 81b40 | 69 6e 67 20 65 76 65 72 79 20 74 68 72 65 65 20 6e 75 6d 62 65 72 73 20 74 6f 20 65 76 65 72 79 | ing.every.three.numbers.to.every |
| 81b60 | 20 66 6f 75 72 20 6e 75 6d 62 65 72 73 2e 20 54 68 65 20 61 64 64 72 65 73 73 20 74 68 61 74 20 | .four.numbers..The.address.that. |
| 81b80 | 69 73 20 6c 69 73 74 65 64 20 68 65 72 65 20 69 73 20 60 60 31 39 32 2e 31 36 38 2e 31 2e 32 60 | is.listed.here.is.``192.168.1.2` |
| 81ba0 | 60 2c 20 77 68 69 63 68 20 69 66 20 65 78 70 61 6e 64 65 64 20 77 69 6c 6c 20 74 75 72 6e 20 69 | `,.which.if.expanded.will.turn.i |
| 81bc0 | 6e 74 6f 20 60 60 31 39 32 2e 31 36 38 2e 30 30 31 2e 30 30 32 60 60 2e 20 54 68 65 6e 20 61 6c | nto.``192.168.001.002``..Then.al |
| 81be0 | 6c 20 6f 6e 65 20 68 61 73 20 74 6f 20 64 6f 20 69 73 20 6d 6f 76 65 20 74 68 65 20 64 6f 74 73 | l.one.has.to.do.is.move.the.dots |
| 81c00 | 20 74 6f 20 68 61 76 65 20 66 6f 75 72 20 6e 75 6d 62 65 72 73 20 69 6e 73 74 65 61 64 20 6f 66 | .to.have.four.numbers.instead.of |
| 81c20 | 20 74 68 72 65 65 2e 20 54 68 69 73 20 67 69 76 65 73 20 75 73 20 60 60 31 39 32 31 2e 36 38 30 | .three..This.gives.us.``1921.680 |
| 81c40 | 30 2e 31 30 30 32 60 60 2e 00 53 79 73 74 65 6d 20 69 64 65 6e 74 69 66 69 65 72 3a 20 60 60 31 | 0.1002``..System.identifier:.``1 |
| 81c60 | 39 32 31 2e 36 38 30 30 2e 31 30 30 32 60 60 20 2d 20 66 6f 72 20 73 79 73 74 65 6d 20 69 64 65 | 921.6800.1002``.-.for.system.ide |
| 81c80 | 74 69 66 69 65 72 73 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 74 6f 20 75 73 65 20 49 50 20 61 | tifiers.we.recommend.to.use.IP.a |
| 81ca0 | 64 64 72 65 73 73 20 6f 72 20 4d 41 43 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 72 6f 75 | ddress.or.MAC.address.of.the.rou |
| 81cc0 | 74 65 72 20 69 74 73 65 6c 66 2e 20 54 68 65 20 77 61 79 20 74 6f 20 63 6f 6e 73 74 72 75 63 74 | ter.itself..The.way.to.construct |
| 81ce0 | 20 74 68 69 73 20 69 73 20 74 6f 20 6b 65 65 70 20 61 6c 6c 20 6f 66 20 74 68 65 20 7a 65 72 6f | .this.is.to.keep.all.of.the.zero |
| 81d00 | 65 73 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 20 49 50 20 61 64 64 72 65 73 73 2c 20 61 6e 64 | es.of.the.router.IP.address,.and |
| 81d20 | 20 74 68 65 6e 20 63 68 61 6e 67 65 20 74 68 65 20 70 65 72 69 6f 64 73 20 66 72 6f 6d 20 62 65 | .then.change.the.periods.from.be |
| 81d40 | 69 6e 67 20 65 76 65 72 79 20 74 68 72 65 65 20 6e 75 6d 62 65 72 73 20 74 6f 20 65 76 65 72 79 | ing.every.three.numbers.to.every |
| 81d60 | 20 66 6f 75 72 20 6e 75 6d 62 65 72 73 2e 20 54 68 65 20 61 64 64 72 65 73 73 20 74 68 61 74 20 | .four.numbers..The.address.that. |
| 81d80 | 69 73 20 6c 69 73 74 65 64 20 68 65 72 65 20 69 73 20 60 60 31 39 32 2e 31 36 38 2e 31 2e 32 60 | is.listed.here.is.``192.168.1.2` |
| 81da0 | 60 2c 20 77 68 69 63 68 20 69 66 20 65 78 70 61 6e 64 65 64 20 77 69 6c 6c 20 74 75 72 6e 20 69 | `,.which.if.expanded.will.turn.i |
| 81dc0 | 6e 74 6f 20 60 60 31 39 32 2e 31 36 38 2e 30 30 31 2e 30 30 32 60 60 2e 20 54 68 65 6e 20 61 6c | nto.``192.168.001.002``..Then.al |
| 81de0 | 6c 20 6f 6e 65 20 68 61 73 20 74 6f 20 64 6f 20 69 73 20 6d 6f 76 65 20 74 68 65 20 64 6f 74 73 | l.one.has.to.do.is.move.the.dots |
| 81e00 | 20 74 6f 20 68 61 76 65 20 66 6f 75 72 20 6e 75 6d 62 65 72 73 20 69 6e 73 74 65 61 64 20 6f 66 | .to.have.four.numbers.instead.of |
| 81e20 | 20 74 68 72 65 65 2e 20 54 68 69 73 20 67 69 76 65 73 20 75 73 20 60 60 31 39 32 31 2e 36 38 30 | .three..This.gives.us.``1921.680 |
| 81e40 | 30 2e 31 30 30 32 60 60 2e 00 53 79 73 74 65 6d 20 69 73 20 75 6e 75 73 61 62 6c 65 20 2d 20 61 | 0.1002``..System.is.unusable.-.a |
| 81e60 | 20 70 61 6e 69 63 20 63 6f 6e 64 69 74 69 6f 6e 00 54 41 43 41 43 53 20 45 78 61 6d 70 6c 65 00 | .panic.condition.TACACS.Example. |
| 81e80 | 54 41 43 41 43 53 20 69 73 20 64 65 66 69 6e 65 64 20 69 6e 20 3a 72 66 63 3a 60 38 39 30 37 60 | TACACS.is.defined.in.:rfc:`8907` |
| 81ea0 | 2e 00 54 41 43 41 43 53 20 73 65 72 76 65 72 73 20 63 6f 75 6c 64 20 62 65 20 68 61 72 64 65 6e | ..TACACS.servers.could.be.harden |
| 81ec0 | 65 64 20 62 79 20 6f 6e 6c 79 20 61 6c 6c 6f 77 69 6e 67 20 63 65 72 74 61 69 6e 20 49 50 20 61 | ed.by.only.allowing.certain.IP.a |
| 81ee0 | 64 64 72 65 73 73 65 73 20 74 6f 20 63 6f 6e 6e 65 63 74 2e 20 41 73 20 6f 66 20 74 68 69 73 20 | ddresses.to.connect..As.of.this. |
| 81f00 | 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 65 61 63 68 20 54 41 43 41 43 | the.source.address.of.each.TACAC |
| 81f20 | 53 20 71 75 65 72 79 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 54 41 43 41 43 | S.query.can.be.configured..TACAC |
| 81f40 | 53 2b 00 54 42 44 00 54 43 50 20 26 20 55 44 50 20 73 65 72 76 69 63 65 73 20 72 75 6e 6e 69 6e | S+.TBD.TCP.&.UDP.services.runnin |
| 81f60 | 67 20 69 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 56 52 46 20 63 6f 6e 74 65 78 74 20 28 69 65 | g.in.the.default.VRF.context.(ie |
| 81f80 | 2e 2c 20 6e 6f 74 20 62 6f 75 6e 64 20 74 6f 20 61 6e 79 20 56 52 46 20 64 65 76 69 63 65 29 20 | .,.not.bound.to.any.VRF.device). |
| 81fa0 | 63 61 6e 20 77 6f 72 6b 20 61 63 72 6f 73 73 20 61 6c 6c 20 56 52 46 20 64 6f 6d 61 69 6e 73 20 | can.work.across.all.VRF.domains. |
| 81fc0 | 62 79 20 65 6e 61 62 6c 69 6e 67 20 74 68 69 73 20 6f 70 74 69 6f 6e 2e 00 54 43 50 20 63 68 65 | by.enabling.this.option..TCP.che |
| 81fe0 | 63 6b 73 00 54 46 54 50 20 53 65 72 76 65 72 00 54 61 67 20 69 73 20 74 68 65 20 6f 70 74 69 6f | cks.TFTP.Server.Tag.is.the.optio |
| 82000 | 6e 61 6c 20 70 61 72 61 6d 65 74 65 72 2e 20 49 66 20 74 61 67 20 63 6f 6e 66 69 67 75 72 65 64 | nal.parameter..If.tag.configured |
| 82020 | 20 53 75 6d 6d 61 72 79 20 72 6f 75 74 65 20 77 69 6c 6c 20 62 65 20 6f 72 69 67 69 6e 61 74 65 | .Summary.route.will.be.originate |
| 82040 | 64 20 77 69 74 68 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 61 67 2e 00 54 61 73 6b 20 | d.with.the.configured.tag..Task. |
| 82060 | 53 63 68 65 64 75 6c 65 72 00 54 65 6c 65 67 72 61 66 00 54 65 6c 65 67 72 61 66 20 63 61 6e 20 | Scheduler.Telegraf.Telegraf.can. |
| 82080 | 62 65 20 75 73 65 64 20 74 6f 20 73 65 6e 64 20 6c 6f 67 73 20 74 6f 20 4c 6f 6b 69 20 75 73 69 | be.used.to.send.logs.to.Loki.usi |
| 820a0 | 6e 67 20 74 61 67 73 20 61 73 20 6c 61 62 65 6c 73 2e 00 54 65 6c 65 67 72 61 66 20 6f 75 74 70 | ng.tags.as.labels..Telegraf.outp |
| 820c0 | 75 74 20 70 6c 75 67 69 6e 20 61 7a 75 72 65 2d 64 61 74 61 2d 65 78 70 6c 6f 72 65 72 5f 00 54 | ut.plugin.azure-data-explorer_.T |
| 820e0 | 65 6c 65 67 72 61 66 20 6f 75 74 70 75 74 20 70 6c 75 67 69 6e 20 70 72 6f 6d 65 74 68 65 75 73 | elegraf.output.plugin.prometheus |
| 82100 | 2d 63 6c 69 65 6e 74 5f 00 54 65 6c 65 67 72 61 66 20 6f 75 74 70 75 74 20 70 6c 75 67 69 6e 20 | -client_.Telegraf.output.plugin. |
| 82120 | 73 70 6c 75 6e 6b 5f 2e 20 48 54 54 50 20 45 76 65 6e 74 20 43 6f 6c 6c 65 63 74 6f 72 2e 00 54 | splunk_..HTTP.Event.Collector..T |
| 82140 | 65 6c 6c 20 50 49 4d 20 74 68 61 74 20 77 65 20 77 6f 75 6c 64 20 6e 6f 74 20 6c 69 6b 65 20 74 | ell.PIM.that.we.would.not.like.t |
| 82160 | 6f 20 75 73 65 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 70 72 6f 63 65 73 73 20 | o.use.this.interface.to.process. |
| 82180 | 62 6f 6f 74 73 74 72 61 70 20 6d 65 73 73 61 67 65 73 2e 00 54 65 6c 6c 20 50 49 4d 20 74 68 61 | bootstrap.messages..Tell.PIM.tha |
| 821a0 | 74 20 77 65 20 77 6f 75 6c 64 20 6e 6f 74 20 6c 69 6b 65 20 74 6f 20 75 73 65 20 74 68 69 73 20 | t.we.would.not.like.to.use.this. |
| 821c0 | 69 6e 74 65 72 66 61 63 65 20 74 6f 20 70 72 6f 63 65 73 73 20 75 6e 69 63 61 73 74 20 62 6f 6f | interface.to.process.unicast.boo |
| 821e0 | 74 73 74 72 61 70 20 6d 65 73 73 61 67 65 73 2e 00 54 65 6c 6c 20 68 6f 73 74 73 20 74 6f 20 75 | tstrap.messages..Tell.hosts.to.u |
| 82200 | 73 65 20 74 68 65 20 61 64 6d 69 6e 69 73 74 65 72 65 64 20 28 73 74 61 74 65 66 75 6c 29 20 70 | se.the.administered.(stateful).p |
| 82220 | 72 6f 74 6f 63 6f 6c 20 28 69 2e 65 2e 20 44 48 43 50 29 20 66 6f 72 20 61 75 74 6f 63 6f 6e 66 | rotocol.(i.e..DHCP).for.autoconf |
| 82240 | 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 6f 74 68 65 72 20 28 6e 6f 6e 2d 61 64 64 72 65 73 73 29 | iguration.of.other.(non-address) |
| 82260 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 00 54 65 6c 6c 20 68 6f 73 74 73 20 74 6f 20 75 73 65 20 74 | .information.Tell.hosts.to.use.t |
| 82280 | 68 65 20 61 64 6d 69 6e 69 73 74 65 72 65 64 20 73 74 61 74 65 66 75 6c 20 70 72 6f 74 6f 63 6f | he.administered.stateful.protoco |
| 822a0 | 6c 20 28 69 2e 65 2e 20 44 48 43 50 29 20 66 6f 72 20 61 75 74 6f 63 6f 6e 66 69 67 75 72 61 74 | l.(i.e..DHCP).for.autoconfigurat |
| 822c0 | 69 6f 6e 00 54 65 6c 6c 20 74 68 65 20 41 50 20 74 68 61 74 20 61 6e 74 65 6e 6e 61 20 70 6f 73 | ion.Tell.the.AP.that.antenna.pos |
| 822e0 | 69 74 69 6f 6e 73 20 61 72 65 20 66 69 78 65 64 20 61 6e 64 20 77 69 6c 6c 20 6e 6f 74 20 63 68 | itions.are.fixed.and.will.not.ch |
| 82300 | 61 6e 67 65 20 64 75 72 69 6e 67 20 74 68 65 20 6c 69 66 65 74 69 6d 65 20 6f 66 20 61 6e 20 61 | ange.during.the.lifetime.of.an.a |
| 82320 | 73 73 6f 63 69 61 74 69 6f 6e 2e 00 54 65 6d 70 6f 72 61 72 79 20 64 69 73 61 62 6c 65 20 74 68 | ssociation..Temporary.disable.th |
| 82340 | 69 73 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 54 65 6d 70 6f 72 61 72 79 20 64 69 73 61 | is.RADIUS.server..Temporary.disa |
| 82360 | 62 6c 65 20 74 68 69 73 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 20 49 74 20 77 6f 6e 27 74 | ble.this.RADIUS.server..It.won't |
| 82380 | 20 62 65 20 71 75 65 72 69 65 64 2e 00 54 65 6d 70 6f 72 61 72 79 20 64 69 73 61 62 6c 65 20 74 | .be.queried..Temporary.disable.t |
| 823a0 | 68 69 73 20 54 41 43 41 43 53 20 73 65 72 76 65 72 2e 20 49 74 20 77 6f 6e 27 74 20 62 65 20 71 | his.TACACS.server..It.won't.be.q |
| 823c0 | 75 65 72 69 65 64 2e 00 54 65 72 6d 69 6e 61 74 65 20 53 53 4c 00 54 65 73 74 20 63 6f 6e 6e 65 | ueried..Terminate.SSL.Test.conne |
| 823e0 | 63 74 69 6e 67 20 67 69 76 65 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 2d 6f 72 69 65 6e 74 65 64 20 | cting.given.connection-oriented. |
| 82400 | 69 6e 74 65 72 66 61 63 65 2e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 63 61 6e 20 62 65 20 | interface..`<interface>`.can.be. |
| 82420 | 60 60 70 70 70 6f 65 30 60 60 20 61 73 20 74 68 65 20 65 78 61 6d 70 6c 65 2e 00 54 65 73 74 20 | ``pppoe0``.as.the.example..Test. |
| 82440 | 63 6f 6e 6e 65 63 74 69 6e 67 20 67 69 76 65 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 2d 6f 72 69 65 | connecting.given.connection-orie |
| 82460 | 6e 74 65 64 20 69 6e 74 65 72 66 61 63 65 2e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 63 61 | nted.interface..`<interface>`.ca |
| 82480 | 6e 20 62 65 20 60 60 73 73 74 70 63 30 60 60 20 61 73 20 74 68 65 20 65 78 61 6d 70 6c 65 2e 00 | n.be.``sstpc0``.as.the.example.. |
| 824a0 | 54 65 73 74 20 64 69 73 63 6f 6e 6e 65 63 74 69 6e 67 20 67 69 76 65 6e 20 63 6f 6e 6e 65 63 74 | Test.disconnecting.given.connect |
| 824c0 | 69 6f 6e 2d 6f 72 69 65 6e 74 65 64 20 69 6e 74 65 72 66 61 63 65 2e 20 60 3c 69 6e 74 65 72 66 | ion-oriented.interface..`<interf |
| 824e0 | 61 63 65 3e 60 20 63 61 6e 20 62 65 20 60 60 70 70 70 6f 65 30 60 60 20 61 73 20 74 68 65 20 65 | ace>`.can.be.``pppoe0``.as.the.e |
| 82500 | 78 61 6d 70 6c 65 2e 00 54 65 73 74 20 64 69 73 63 6f 6e 6e 65 63 74 69 6e 67 20 67 69 76 65 6e | xample..Test.disconnecting.given |
| 82520 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 2d 6f 72 69 65 6e 74 65 64 20 69 6e 74 65 72 66 61 63 65 2e 20 | .connection-oriented.interface.. |
| 82540 | 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 63 61 6e 20 62 65 20 60 60 73 73 74 70 63 30 60 60 20 | `<interface>`.can.be.``sstpc0``. |
| 82560 | 61 73 20 74 68 65 20 65 78 61 6d 70 6c 65 2e 00 54 65 73 74 20 66 72 6f 6d 20 74 68 65 20 49 50 | as.the.example..Test.from.the.IP |
| 82580 | 76 36 20 6f 6e 6c 79 20 63 6c 69 65 6e 74 3a 00 54 65 73 74 69 6e 67 20 53 53 54 50 00 54 65 73 | v6.only.client:.Testing.SSTP.Tes |
| 825a0 | 74 69 6e 67 20 61 6e 64 20 56 61 6c 69 64 61 74 69 6f 6e 00 54 68 61 6e 6b 73 20 74 6f 20 74 68 | ting.and.Validation.Thanks.to.th |
| 825c0 | 69 73 20 64 69 73 63 6f 76 65 72 79 2c 20 61 6e 79 20 73 75 62 73 65 71 75 65 6e 74 20 74 72 61 | is.discovery,.any.subsequent.tra |
| 825e0 | 66 66 69 63 20 62 65 74 77 65 65 6e 20 50 43 34 20 61 6e 64 20 50 43 35 20 77 69 6c 6c 20 6e 6f | ffic.between.PC4.and.PC5.will.no |
| 82600 | 74 20 62 65 20 75 73 69 6e 67 20 74 68 65 20 6d 75 6c 74 69 63 61 73 74 2d 61 64 64 72 65 73 73 | t.be.using.the.multicast-address |
| 82620 | 20 62 65 74 77 65 65 6e 20 74 68 65 20 6c 65 61 76 65 73 20 61 73 20 74 68 65 79 20 62 6f 74 68 | .between.the.leaves.as.they.both |
| 82640 | 20 6b 6e 6f 77 20 62 65 68 69 6e 64 20 77 68 69 63 68 20 4c 65 61 66 20 74 68 65 20 50 43 73 20 | .know.behind.which.Leaf.the.PCs. |
| 82660 | 61 72 65 20 63 6f 6e 6e 65 63 74 65 64 2e 20 54 68 69 73 20 73 61 76 65 73 20 74 72 61 66 66 69 | are.connected..This.saves.traffi |
| 82680 | 63 20 61 73 20 6c 65 73 73 20 6d 75 6c 74 69 63 61 73 74 20 70 61 63 6b 65 74 73 20 73 65 6e 74 | c.as.less.multicast.packets.sent |
| 826a0 | 20 72 65 64 75 63 65 73 20 74 68 65 20 6c 6f 61 64 20 6f 6e 20 74 68 65 20 6e 65 74 77 6f 72 6b | .reduces.the.load.on.the.network |
| 826c0 | 2c 20 77 68 69 63 68 20 69 6d 70 72 6f 76 65 73 20 73 63 61 6c 61 62 69 6c 69 74 79 20 77 68 65 | ,.which.improves.scalability.whe |
| 826e0 | 6e 20 6d 6f 72 65 20 6c 65 61 76 65 73 20 61 72 65 20 61 64 64 65 64 2e 00 54 68 61 74 20 69 73 | n.more.leaves.are.added..That.is |
| 82700 | 20 68 6f 77 20 69 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 64 6f 20 74 68 65 20 73 6f | .how.it.is.possible.to.do.the.so |
| 82720 | 2d 63 61 6c 6c 65 64 20 22 69 6e 67 72 65 73 73 20 73 68 61 70 69 6e 67 22 2e 00 54 68 61 74 20 | -called."ingress.shaping"..That. |
| 82740 | 6c 6f 6f 6b 73 20 67 6f 6f 64 20 2d 20 77 65 20 64 65 66 69 6e 65 64 20 32 20 74 75 6e 6e 65 6c | looks.good.-.we.defined.2.tunnel |
| 82760 | 73 20 61 6e 64 20 74 68 65 79 27 72 65 20 62 6f 74 68 20 75 70 20 61 6e 64 20 72 75 6e 6e 69 6e | s.and.they're.both.up.and.runnin |
| 82780 | 67 2e 00 54 68 65 20 3a 61 62 62 72 3a 60 41 53 4e 20 28 41 75 74 6f 6e 6f 6d 6f 75 73 20 53 79 | g..The.:abbr:`ASN.(Autonomous.Sy |
| 827a0 | 73 74 65 6d 20 4e 75 6d 62 65 72 29 60 20 69 73 20 6f 6e 65 20 6f 66 20 74 68 65 20 65 73 73 65 | stem.Number)`.is.one.of.the.esse |
| 827c0 | 6e 74 69 61 6c 20 65 6c 65 6d 65 6e 74 73 20 6f 66 20 42 47 50 2e 20 42 47 50 20 69 73 20 61 20 | ntial.elements.of.BGP..BGP.is.a. |
| 827e0 | 64 69 73 74 61 6e 63 65 20 76 65 63 74 6f 72 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c | distance.vector.routing.protocol |
| 82800 | 2c 20 61 6e 64 20 74 68 65 20 41 53 2d 50 61 74 68 20 66 72 61 6d 65 77 6f 72 6b 20 70 72 6f 76 | ,.and.the.AS-Path.framework.prov |
| 82820 | 69 64 65 73 20 64 69 73 74 61 6e 63 65 20 76 65 63 74 6f 72 20 6d 65 74 72 69 63 20 61 6e 64 20 | ides.distance.vector.metric.and. |
| 82840 | 6c 6f 6f 70 20 64 65 74 65 63 74 69 6f 6e 20 74 6f 20 42 47 50 2e 00 54 68 65 20 3a 61 62 62 72 | loop.detection.to.BGP..The.:abbr |
| 82860 | 3a 60 44 4e 50 54 76 36 20 28 44 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 76 36 2d 74 6f 2d 49 50 | :`DNPTv6.(Destination.IPv6-to-IP |
| 82880 | 76 36 20 4e 65 74 77 6f 72 6b 20 50 72 65 66 69 78 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 | v6.Network.Prefix.Translation)`. |
| 828a0 | 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 | destination.address.translation. |
| 828c0 | 66 75 6e 63 74 69 6f 6e 20 69 73 20 75 73 65 64 20 69 6e 20 73 63 65 6e 61 72 69 6f 73 20 77 68 | function.is.used.in.scenarios.wh |
| 828e0 | 65 72 65 20 74 68 65 20 73 65 72 76 65 72 20 69 6e 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 6e | ere.the.server.in.the.internal.n |
| 82900 | 65 74 77 6f 72 6b 20 70 72 6f 76 69 64 65 73 20 73 65 72 76 69 63 65 73 20 74 6f 20 74 68 65 20 | etwork.provides.services.to.the. |
| 82920 | 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 2c 20 73 75 63 68 20 61 73 20 70 72 6f 76 69 64 | external.network,.such.as.provid |
| 82940 | 69 6e 67 20 57 65 62 20 73 65 72 76 69 63 65 73 20 6f 72 20 46 54 50 20 73 65 72 76 69 63 65 73 | ing.Web.services.or.FTP.services |
| 82960 | 20 74 6f 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 2e 20 42 79 20 63 6f 6e | .to.the.external.network..By.con |
| 82980 | 66 69 67 75 72 69 6e 67 20 74 68 65 20 6d 61 70 70 69 6e 67 20 72 65 6c 61 74 69 6f 6e 73 68 69 | figuring.the.mapping.relationshi |
| 829a0 | 70 20 62 65 74 77 65 65 6e 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 73 65 72 76 65 72 20 61 64 | p.between.the.internal.server.ad |
| 829c0 | 64 72 65 73 73 20 61 6e 64 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 61 | dress.and.the.external.network.a |
| 829e0 | 64 64 72 65 73 73 20 6f 6e 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 73 | ddress.on.the.external.network.s |
| 82a00 | 69 64 65 20 69 6e 74 65 72 66 61 63 65 20 6f 66 20 74 68 65 20 4e 41 54 36 36 20 64 65 76 69 63 | ide.interface.of.the.NAT66.devic |
| 82a20 | 65 2c 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 75 73 65 72 73 20 63 61 6e 20 61 63 | e,.external.network.users.can.ac |
| 82a40 | 63 65 73 73 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 73 65 72 76 65 72 | cess.the.internal.network.server |
| 82a60 | 20 74 68 72 6f 75 67 68 20 74 68 65 20 64 65 73 69 67 6e 61 74 65 64 20 65 78 74 65 72 6e 61 6c | .through.the.designated.external |
| 82a80 | 20 6e 65 74 77 6f 72 6b 20 61 64 64 72 65 73 73 2e 00 54 68 65 20 3a 61 62 62 72 3a 60 4d 50 4c | .network.address..The.:abbr:`MPL |
| 82aa0 | 53 20 28 4d 75 6c 74 69 2d 50 72 6f 74 6f 63 6f 6c 20 4c 61 62 65 6c 20 53 77 69 74 63 68 69 6e | S.(Multi-Protocol.Label.Switchin |
| 82ac0 | 67 29 60 20 61 72 63 68 69 74 65 63 74 75 72 65 20 64 6f 65 73 20 6e 6f 74 20 61 73 73 75 6d 65 | g)`.architecture.does.not.assume |
| 82ae0 | 20 61 20 73 69 6e 67 6c 65 20 70 72 6f 74 6f 63 6f 6c 20 74 6f 20 63 72 65 61 74 65 20 4d 50 4c | .a.single.protocol.to.create.MPL |
| 82b00 | 53 20 70 61 74 68 73 2e 20 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 74 68 65 20 4c 61 62 65 6c | S.paths..VyOS.supports.the.Label |
| 82b20 | 20 44 69 73 74 72 69 62 75 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 20 28 4c 44 50 29 20 61 73 20 | .Distribution.Protocol.(LDP).as. |
| 82b40 | 69 6d 70 6c 65 6d 65 6e 74 65 64 20 62 79 20 46 52 52 2c 20 62 61 73 65 64 20 6f 6e 20 3a 72 66 | implemented.by.FRR,.based.on.:rf |
| 82b60 | 63 3a 60 35 30 33 36 60 2e 00 54 68 65 20 3a 61 62 62 72 3a 60 57 4c 41 4e 20 28 57 69 72 65 6c | c:`5036`..The.:abbr:`WLAN.(Wirel |
| 82b80 | 65 73 73 20 4c 41 4e 29 60 20 69 6e 74 65 72 66 61 63 65 20 70 72 6f 76 69 64 65 73 20 38 30 32 | ess.LAN)`.interface.provides.802 |
| 82ba0 | 2e 31 31 20 28 61 2f 62 2f 67 2f 6e 2f 61 63 29 20 77 69 72 65 6c 65 73 73 20 73 75 70 70 6f 72 | .11.(a/b/g/n/ac).wireless.suppor |
| 82bc0 | 74 20 28 63 6f 6d 6d 6f 6e 6c 79 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 57 69 2d 46 69 | t.(commonly.referred.to.as.Wi-Fi |
| 82be0 | 29 20 62 79 20 6d 65 61 6e 73 20 6f 66 20 63 6f 6d 70 61 74 69 62 6c 65 20 68 61 72 64 77 61 72 | ).by.means.of.compatible.hardwar |
| 82c00 | 65 2e 20 49 66 20 79 6f 75 72 20 68 61 72 64 77 61 72 65 20 73 75 70 70 6f 72 74 73 20 69 74 2c | e..If.your.hardware.supports.it, |
| 82c20 | 20 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 6d 75 6c 74 69 70 6c 65 20 6c 6f 67 69 63 61 6c 20 | .VyOS.supports.multiple.logical. |
| 82c40 | 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 73 20 70 65 72 20 70 68 79 73 69 63 61 6c | wireless.interfaces.per.physical |
| 82c60 | 20 64 65 76 69 63 65 2e 00 54 68 65 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 2d 6e 61 74 36 36 60 | .device..The.:ref:`source-nat66` |
| 82c80 | 20 72 75 6c 65 20 72 65 70 6c 61 63 65 73 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 | .rule.replaces.the.source.addres |
| 82ca0 | 73 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 20 61 6e 64 20 63 61 6c 63 75 6c 61 74 65 73 20 74 | s.of.the.packet.and.calculates.t |
| 82cc0 | 68 65 20 63 6f 6e 76 65 72 74 65 64 20 61 64 64 72 65 73 73 20 75 73 69 6e 67 20 74 68 65 20 70 | he.converted.address.using.the.p |
| 82ce0 | 72 65 66 69 78 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 74 68 65 20 72 75 6c 65 2e 00 54 68 65 | refix.specified.in.the.rule..The |
| 82d00 | 20 41 52 50 20 6d 6f 6e 69 74 6f 72 20 77 6f 72 6b 73 20 62 79 20 70 65 72 69 6f 64 69 63 61 6c | .ARP.monitor.works.by.periodical |
| 82d20 | 6c 79 20 63 68 65 63 6b 69 6e 67 20 74 68 65 20 73 6c 61 76 65 20 64 65 76 69 63 65 73 20 74 6f | ly.checking.the.slave.devices.to |
| 82d40 | 20 64 65 74 65 72 6d 69 6e 65 20 77 68 65 74 68 65 72 20 74 68 65 79 20 68 61 76 65 20 73 65 6e | .determine.whether.they.have.sen |
| 82d60 | 74 20 6f 72 20 72 65 63 65 69 76 65 64 20 74 72 61 66 66 69 63 20 72 65 63 65 6e 74 6c 79 20 28 | t.or.received.traffic.recently.( |
| 82d80 | 74 68 65 20 70 72 65 63 69 73 65 20 63 72 69 74 65 72 69 61 20 64 65 70 65 6e 64 73 20 75 70 6f | the.precise.criteria.depends.upo |
| 82da0 | 6e 20 74 68 65 20 62 6f 6e 64 69 6e 67 20 6d 6f 64 65 2c 20 61 6e 64 20 74 68 65 20 73 74 61 74 | n.the.bonding.mode,.and.the.stat |
| 82dc0 | 65 20 6f 66 20 74 68 65 20 73 6c 61 76 65 29 2e 20 52 65 67 75 6c 61 72 20 74 72 61 66 66 69 63 | e.of.the.slave)..Regular.traffic |
| 82de0 | 20 69 73 20 67 65 6e 65 72 61 74 65 64 20 76 69 61 20 41 52 50 20 70 72 6f 62 65 73 20 69 73 73 | .is.generated.via.ARP.probes.iss |
| 82e00 | 75 65 64 20 66 6f 72 20 74 68 65 20 61 64 64 72 65 73 73 65 73 20 73 70 65 63 69 66 69 65 64 20 | ued.for.the.addresses.specified. |
| 82e20 | 62 79 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 61 72 70 2d 6d 6f 6e 69 74 6f 72 20 74 61 72 67 | by.the.:cfgcmd:`arp-monitor.targ |
| 82e40 | 65 74 60 20 6f 70 74 69 6f 6e 2e 00 54 68 65 20 41 53 50 20 68 61 73 20 64 6f 63 75 6d 65 6e 74 | et`.option..The.ASP.has.document |
| 82e60 | 65 64 20 74 68 65 69 72 20 49 50 53 65 63 20 72 65 71 75 69 72 65 6d 65 6e 74 73 3a 00 54 68 65 | ed.their.IPSec.requirements:.The |
| 82e80 | 20 42 47 50 20 72 6f 75 74 65 72 20 63 61 6e 20 63 6f 6e 6e 65 63 74 20 74 6f 20 6f 6e 65 20 6f | .BGP.router.can.connect.to.one.o |
| 82ea0 | 72 20 6d 6f 72 65 20 52 50 4b 49 20 63 61 63 68 65 20 73 65 72 76 65 72 73 20 74 6f 20 72 65 63 | r.more.RPKI.cache.servers.to.rec |
| 82ec0 | 65 69 76 65 20 76 61 6c 69 64 61 74 65 64 20 70 72 65 66 69 78 20 74 6f 20 6f 72 69 67 69 6e 20 | eive.validated.prefix.to.origin. |
| 82ee0 | 41 53 20 6d 61 70 70 69 6e 67 73 2e 20 41 64 76 61 6e 63 65 64 20 66 61 69 6c 6f 76 65 72 20 63 | AS.mappings..Advanced.failover.c |
| 82f00 | 61 6e 20 62 65 20 69 6d 70 6c 65 6d 65 6e 74 65 64 20 62 79 20 73 65 72 76 65 72 20 73 6f 63 6b | an.be.implemented.by.server.sock |
| 82f20 | 65 74 73 20 77 69 74 68 20 64 69 66 66 65 72 65 6e 74 20 70 72 65 66 65 72 65 6e 63 65 20 76 61 | ets.with.different.preference.va |
| 82f40 | 6c 75 65 73 2e 00 54 68 65 20 43 4c 49 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 73 | lues..The.CLI.configuration.is.s |
| 82f60 | 61 6d 65 20 61 73 20 6d 65 6e 74 69 6f 6e 65 64 20 69 6e 20 61 62 6f 76 65 20 61 72 74 69 63 6c | ame.as.mentioned.in.above.articl |
| 82f80 | 65 73 2e 20 54 68 65 20 6f 6e 6c 79 20 64 69 66 66 65 72 65 6e 63 65 20 69 73 2c 20 74 68 61 74 | es..The.only.difference.is,.that |
| 82fa0 | 20 65 61 63 68 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 75 73 65 64 2c 20 6d 75 73 | .each.routing.protocol.used,.mus |
| 82fc0 | 74 20 62 65 20 70 72 65 66 69 78 65 64 20 77 69 74 68 20 74 68 65 20 60 76 72 66 20 6e 61 6d 65 | t.be.prefixed.with.the.`vrf.name |
| 82fe0 | 20 3c 6e 61 6d 65 3e 60 20 63 6f 6d 6d 61 6e 64 2e 00 54 68 65 20 43 4c 4e 53 20 61 64 64 72 65 | .<name>`.command..The.CLNS.addre |
| 83000 | 73 73 20 63 6f 6e 73 69 73 74 73 20 6f 66 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 61 72 | ss.consists.of.the.following.par |
| 83020 | 74 73 3a 00 54 68 65 20 44 46 20 70 72 65 66 65 72 65 6e 63 65 20 69 73 20 63 6f 6e 66 69 67 75 | ts:.The.DF.preference.is.configu |
| 83040 | 72 61 62 6c 65 20 70 65 72 2d 45 53 2e 00 54 68 65 20 44 48 43 50 20 75 6e 69 71 75 65 20 69 64 | rable.per-ES..The.DHCP.unique.id |
| 83060 | 65 6e 74 69 66 69 65 72 20 28 44 55 49 44 29 20 69 73 20 75 73 65 64 20 62 79 20 61 20 63 6c 69 | entifier.(DUID).is.used.by.a.cli |
| 83080 | 65 6e 74 20 74 6f 20 67 65 74 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 61 20 | ent.to.get.an.IP.address.from.a. |
| 830a0 | 44 48 43 50 76 36 20 73 65 72 76 65 72 2e 20 49 74 20 68 61 73 20 61 20 32 2d 62 79 74 65 20 44 | DHCPv6.server..It.has.a.2-byte.D |
| 830c0 | 55 49 44 20 74 79 70 65 20 66 69 65 6c 64 2c 20 61 6e 64 20 61 20 76 61 72 69 61 62 6c 65 2d 6c | UID.type.field,.and.a.variable-l |
| 830e0 | 65 6e 67 74 68 20 69 64 65 6e 74 69 66 69 65 72 20 66 69 65 6c 64 20 75 70 20 74 6f 20 31 32 38 | ength.identifier.field.up.to.128 |
| 83100 | 20 62 79 74 65 73 2e 20 49 74 73 20 61 63 74 75 61 6c 20 6c 65 6e 67 74 68 20 64 65 70 65 6e 64 | .bytes..Its.actual.length.depend |
| 83120 | 73 20 6f 6e 20 69 74 73 20 74 79 70 65 2e 20 54 68 65 20 73 65 72 76 65 72 20 63 6f 6d 70 61 72 | s.on.its.type..The.server.compar |
| 83140 | 65 73 20 74 68 65 20 44 55 49 44 20 77 69 74 68 20 69 74 73 20 64 61 74 61 62 61 73 65 20 61 6e | es.the.DUID.with.its.database.an |
| 83160 | 64 20 64 65 6c 69 76 65 72 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 64 61 74 61 20 28 61 | d.delivers.configuration.data.(a |
| 83180 | 64 64 72 65 73 73 2c 20 6c 65 61 73 65 20 74 69 6d 65 73 2c 20 44 4e 53 20 73 65 72 76 65 72 73 | ddress,.lease.times,.DNS.servers |
| 831a0 | 2c 20 65 74 63 2e 29 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 2e 00 54 68 65 20 44 4e 20 61 6e | ,.etc.).to.the.client..The.DN.an |
| 831c0 | 64 20 70 61 73 73 77 6f 72 64 20 74 6f 20 62 69 6e 64 20 61 73 20 77 68 69 6c 65 20 70 65 72 66 | d.password.to.bind.as.while.perf |
| 831e0 | 6f 72 6d 69 6e 67 20 73 65 61 72 63 68 65 73 2e 00 54 68 65 20 44 4e 20 61 6e 64 20 70 61 73 73 | orming.searches..The.DN.and.pass |
| 83200 | 77 6f 72 64 20 74 6f 20 62 69 6e 64 20 61 73 20 77 68 69 6c 65 20 70 65 72 66 6f 72 6d 69 6e 67 | word.to.bind.as.while.performing |
| 83220 | 20 73 65 61 72 63 68 65 73 2e 20 41 73 20 74 68 65 20 70 61 73 73 77 6f 72 64 20 6e 65 65 64 73 | .searches..As.the.password.needs |
| 83240 | 20 74 6f 20 62 65 20 70 72 69 6e 74 65 64 20 69 6e 20 70 6c 61 69 6e 20 74 65 78 74 20 69 6e 20 | .to.be.printed.in.plain.text.in. |
| 83260 | 79 6f 75 72 20 53 71 75 69 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 74 20 69 73 20 73 | your.Squid.configuration.it.is.s |
| 83280 | 74 72 6f 6e 67 6c 79 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 74 6f 20 75 73 65 20 61 20 61 63 63 | trongly.recommended.to.use.a.acc |
| 832a0 | 6f 75 6e 74 20 77 69 74 68 20 6d 69 6e 69 6d 61 6c 20 61 73 73 6f 63 69 61 74 65 64 20 70 72 69 | ount.with.minimal.associated.pri |
| 832c0 | 76 69 6c 65 67 65 73 2e 20 54 68 69 73 20 74 6f 20 6c 69 6d 69 74 20 74 68 65 20 64 61 6d 61 67 | vileges..This.to.limit.the.damag |
| 832e0 | 65 20 69 6e 20 63 61 73 65 20 73 6f 6d 65 6f 6e 65 20 63 6f 75 6c 64 20 67 65 74 20 68 6f 6c 64 | e.in.case.someone.could.get.hold |
| 83300 | 20 6f 66 20 61 20 63 6f 70 79 20 6f 66 20 79 6f 75 72 20 53 71 75 69 64 20 63 6f 6e 66 69 67 75 | .of.a.copy.of.your.Squid.configu |
| 83320 | 72 61 74 69 6f 6e 20 66 69 6c 65 2e 00 54 68 65 20 46 51 2d 43 6f 44 65 6c 20 70 6f 6c 69 63 79 | ration.file..The.FQ-CoDel.policy |
| 83340 | 20 64 69 73 74 72 69 62 75 74 65 73 20 74 68 65 20 74 72 61 66 66 69 63 20 69 6e 74 6f 20 31 30 | .distributes.the.traffic.into.10 |
| 83360 | 32 34 20 46 49 46 4f 20 71 75 65 75 65 73 20 61 6e 64 20 74 72 69 65 73 20 74 6f 20 70 72 6f 76 | 24.FIFO.queues.and.tries.to.prov |
| 83380 | 69 64 65 20 67 6f 6f 64 20 73 65 72 76 69 63 65 20 62 65 74 77 65 65 6e 20 61 6c 6c 20 6f 66 20 | ide.good.service.between.all.of. |
| 833a0 | 74 68 65 6d 2e 20 49 74 20 61 6c 73 6f 20 74 72 69 65 73 20 74 6f 20 6b 65 65 70 20 74 68 65 20 | them..It.also.tries.to.keep.the. |
| 833c0 | 6c 65 6e 67 74 68 20 6f 66 20 61 6c 6c 20 74 68 65 20 71 75 65 75 65 73 20 73 68 6f 72 74 2e 00 | length.of.all.the.queues.short.. |
| 833e0 | 54 68 65 20 48 54 54 50 20 73 65 72 76 69 63 65 20 6c 69 73 74 65 6e 20 6f 6e 20 54 43 50 20 70 | The.HTTP.service.listen.on.TCP.p |
| 83400 | 6f 72 74 20 38 30 2e 00 54 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 69 6e | ort.80..The.IP.address.of.the.in |
| 83420 | 74 65 72 6e 61 6c 20 73 79 73 74 65 6d 20 77 65 20 77 69 73 68 20 74 6f 20 66 6f 72 77 61 72 64 | ternal.system.we.wish.to.forward |
| 83440 | 20 74 72 61 66 66 69 63 20 74 6f 2e 00 54 68 65 20 49 6e 74 65 6c 20 41 58 32 30 30 20 63 61 72 | .traffic.to..The.Intel.AX200.car |
| 83460 | 64 20 64 6f 65 73 20 6e 6f 74 20 77 6f 72 6b 20 6f 75 74 20 6f 66 20 74 68 65 20 62 6f 78 20 69 | d.does.not.work.out.of.the.box.i |
| 83480 | 6e 20 41 50 20 6d 6f 64 65 2c 20 73 65 65 20 68 74 74 70 73 3a 2f 2f 75 6e 69 78 2e 73 74 61 63 | n.AP.mode,.see.https://unix.stac |
| 834a0 | 6b 65 78 63 68 61 6e 67 65 2e 63 6f 6d 2f 71 75 65 73 74 69 6f 6e 73 2f 35 39 38 32 37 35 2f 69 | kexchange.com/questions/598275/i |
| 834c0 | 6e 74 65 6c 2d 61 78 32 30 30 2d 61 70 2d 6d 6f 64 65 2e 20 59 6f 75 20 63 61 6e 20 73 74 69 6c | ntel-ax200-ap-mode..You.can.stil |
| 834e0 | 6c 20 70 75 74 20 74 68 69 73 20 63 61 72 64 20 69 6e 74 6f 20 41 50 20 6d 6f 64 65 20 75 73 69 | l.put.this.card.into.AP.mode.usi |
| 83500 | 6e 67 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 | ng.the.following.configuration:. |
| 83520 | 54 68 65 20 4f 49 44 20 60 60 2e 31 2e 33 2e 36 2e 31 2e 34 2e 31 2e 38 30 37 32 2e 31 2e 33 2e | The.OID.``.1.3.6.1.4.1.8072.1.3. |
| 83540 | 32 2e 33 2e 31 2e 31 2e 34 2e 31 31 36 2e 31 30 31 2e 31 31 35 2e 31 31 36 60 60 2c 20 6f 6e 63 | 2.3.1.1.4.116.101.115.116``,.onc |
| 83560 | 65 20 63 61 6c 6c 65 64 2c 20 77 69 6c 6c 20 63 6f 6e 74 61 69 6e 20 74 68 65 20 6f 75 74 70 75 | e.called,.will.contain.the.outpu |
| 83580 | 74 20 6f 66 20 74 68 65 20 65 78 74 65 6e 73 69 6f 6e 2e 00 54 68 65 20 50 6f 69 6e 74 2d 74 6f | t.of.the.extension..The.Point-to |
| 835a0 | 2d 50 6f 69 6e 74 20 54 75 6e 6e 65 6c 69 6e 67 20 50 72 6f 74 6f 63 6f 6c 20 28 50 50 54 50 5f | -Point.Tunneling.Protocol.(PPTP_ |
| 835c0 | 29 20 68 61 73 20 62 65 65 6e 20 69 6d 70 6c 65 6d 65 6e 74 65 64 20 69 6e 20 56 79 4f 53 20 6f | ).has.been.implemented.in.VyOS.o |
| 835e0 | 6e 6c 79 20 66 6f 72 20 62 61 63 6b 77 61 72 64 73 20 63 6f 6d 70 61 74 69 62 69 6c 69 74 79 2e | nly.for.backwards.compatibility. |
| 83600 | 20 50 50 54 50 20 68 61 73 20 6d 61 6e 79 20 77 65 6c 6c 20 6b 6e 6f 77 6e 20 73 65 63 75 72 69 | .PPTP.has.many.well.known.securi |
| 83620 | 74 79 20 69 73 73 75 65 73 20 61 6e 64 20 79 6f 75 20 73 68 6f 75 6c 64 20 75 73 65 20 6f 6e 65 | ty.issues.and.you.should.use.one |
| 83640 | 20 6f 66 20 74 68 65 20 6d 61 6e 79 20 6f 74 68 65 72 20 6e 65 77 20 56 50 4e 20 69 6d 70 6c 65 | .of.the.many.other.new.VPN.imple |
| 83660 | 6d 65 6e 74 61 74 69 6f 6e 73 2e 00 54 68 65 20 50 6f 77 65 72 44 4e 53 20 72 65 63 75 72 73 6f | mentations..The.PowerDNS.recurso |
| 83680 | 72 20 68 61 73 20 35 20 64 69 66 66 65 72 65 6e 74 20 6c 65 76 65 6c 73 20 6f 66 20 44 4e 53 53 | r.has.5.different.levels.of.DNSS |
| 836a0 | 45 43 20 70 72 6f 63 65 73 73 69 6e 67 2c 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 73 65 74 20 | EC.processing,.which.can.be.set. |
| 836c0 | 77 69 74 68 20 74 68 65 20 64 6e 73 73 65 63 20 73 65 74 74 69 6e 67 2e 20 49 6e 20 6f 72 64 65 | with.the.dnssec.setting..In.orde |
| 836e0 | 72 20 66 72 6f 6d 20 6c 65 61 73 74 20 74 6f 20 6d 6f 73 74 20 70 72 6f 63 65 73 73 69 6e 67 2c | r.from.least.to.most.processing, |
| 83700 | 20 74 68 65 73 65 20 61 72 65 3a 00 54 68 65 20 50 72 65 63 69 73 69 6f 6e 20 54 69 6d 65 20 50 | .these.are:.The.Precision.Time.P |
| 83720 | 72 6f 74 6f 63 6f 6c 20 28 49 45 45 45 20 31 35 38 38 29 20 69 73 20 61 20 6c 6f 63 61 6c 20 6e | rotocol.(IEEE.1588).is.a.local.n |
| 83740 | 65 74 77 6f 72 6b 20 74 69 6d 65 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 70 72 6f 74 | etwork.time.synchronization.prot |
| 83760 | 6f 63 6f 6c 20 74 68 61 74 20 70 72 6f 76 69 64 65 73 20 68 69 67 68 20 70 72 65 63 69 73 69 6f | ocol.that.provides.high.precisio |
| 83780 | 6e 20 74 69 6d 65 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 62 79 20 6c 65 76 65 72 61 | n.time.synchronization.by.levera |
| 837a0 | 67 69 6e 67 20 68 61 72 64 77 61 72 65 20 63 6c 6f 63 6b 73 20 69 6e 20 4e 49 43 73 20 61 6e 64 | ging.hardware.clocks.in.NICs.and |
| 837c0 | 20 6f 74 68 65 72 20 6e 65 74 77 6f 72 6b 20 65 6c 65 6d 65 6e 74 73 2e 20 56 79 4f 53 20 64 6f | .other.network.elements..VyOS.do |
| 837e0 | 65 73 20 6e 6f 74 20 63 75 72 72 65 6e 74 6c 79 20 73 75 70 70 6f 72 74 20 73 74 61 6e 64 61 72 | es.not.currently.support.standar |
| 83800 | 64 73 2d 62 61 73 65 64 20 50 54 50 2c 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 64 65 70 6c 6f | ds-based.PTP,.which.can.be.deplo |
| 83820 | 79 65 64 20 69 6e 64 65 70 65 6e 64 65 6e 74 6c 79 20 6f 66 20 4e 54 50 2e 00 54 68 65 20 50 72 | yed.independently.of.NTP..The.Pr |
| 83840 | 69 6f 72 69 74 79 20 51 75 65 75 65 20 69 73 20 61 20 63 6c 61 73 73 66 75 6c 20 73 63 68 65 64 | iority.Queue.is.a.classful.sched |
| 83860 | 75 6c 69 6e 67 20 70 6f 6c 69 63 79 2e 20 49 74 20 64 6f 65 73 20 6e 6f 74 20 64 65 6c 61 79 20 | uling.policy..It.does.not.delay. |
| 83880 | 70 61 63 6b 65 74 73 20 28 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 20 69 73 20 6e 6f 74 20 61 | packets.(Priority.Queue.is.not.a |
| 838a0 | 20 73 68 61 70 69 6e 67 20 70 6f 6c 69 63 79 29 2c 20 69 74 20 73 69 6d 70 6c 79 20 64 65 71 75 | .shaping.policy),.it.simply.dequ |
| 838c0 | 65 75 65 73 20 70 61 63 6b 65 74 73 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 74 68 65 69 72 20 | eues.packets.according.to.their. |
| 838e0 | 70 72 69 6f 72 69 74 79 2e 00 54 68 65 20 52 41 44 49 55 53 20 61 63 63 6f 75 6e 74 69 6e 67 20 | priority..The.RADIUS.accounting. |
| 83900 | 66 65 61 74 75 72 65 20 6d 75 73 74 20 62 65 20 75 73 65 64 20 77 69 74 68 20 74 68 65 20 4f 70 | feature.must.be.used.with.the.Op |
| 83920 | 65 6e 43 6f 6e 6e 65 63 74 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 6f 64 65 20 52 41 | enConnect.authentication.mode.RA |
| 83940 | 44 49 55 53 2e 20 49 74 20 63 61 6e 6e 6f 74 20 62 65 20 75 73 65 64 20 77 69 74 68 20 6c 6f 63 | DIUS..It.cannot.be.used.with.loc |
| 83960 | 61 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 20 59 6f 75 20 6d 75 73 74 20 63 6f 6e 66 | al.authentication..You.must.conf |
| 83980 | 69 67 75 72 65 20 74 68 65 20 4f 70 65 6e 43 6f 6e 6e 65 63 74 20 61 75 74 68 65 6e 74 69 63 61 | igure.the.OpenConnect.authentica |
| 839a0 | 74 69 6f 6e 20 6d 6f 64 65 20 74 6f 20 22 72 61 64 69 75 73 22 2e 00 54 68 65 20 52 41 44 49 55 | tion.mode.to."radius"..The.RADIU |
| 839c0 | 53 20 64 69 63 74 69 6f 6e 61 72 69 65 73 20 69 6e 20 56 79 4f 53 20 61 72 65 20 6c 6f 63 61 74 | S.dictionaries.in.VyOS.are.locat |
| 839e0 | 65 64 20 61 74 20 60 60 2f 75 73 72 2f 73 68 61 72 65 2f 61 63 63 65 6c 2d 70 70 70 2f 72 61 64 | ed.at.``/usr/share/accel-ppp/rad |
| 83a00 | 69 75 73 2f 60 60 00 54 68 65 20 53 52 20 73 65 67 6d 65 6e 74 73 20 61 72 65 20 70 6f 72 74 69 | ius/``.The.SR.segments.are.porti |
| 83a20 | 6f 6e 73 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 70 61 74 68 20 74 61 6b 65 6e 20 62 79 | ons.of.the.network.path.taken.by |
| 83a40 | 20 74 68 65 20 70 61 63 6b 65 74 2c 20 61 6e 64 20 61 72 65 20 63 61 6c 6c 65 64 20 53 49 44 73 | .the.packet,.and.are.called.SIDs |
| 83a60 | 2e 20 41 74 20 65 61 63 68 20 6e 6f 64 65 2c 20 74 68 65 20 66 69 72 73 74 20 53 49 44 20 6f 66 | ..At.each.node,.the.first.SID.of |
| 83a80 | 20 74 68 65 20 6c 69 73 74 20 69 73 20 72 65 61 64 2c 20 65 78 65 63 75 74 65 64 20 61 73 20 61 | .the.list.is.read,.executed.as.a |
| 83aa0 | 20 66 6f 72 77 61 72 64 69 6e 67 20 66 75 6e 63 74 69 6f 6e 2c 20 61 6e 64 20 6d 61 79 20 62 65 | .forwarding.function,.and.may.be |
| 83ac0 | 20 70 6f 70 70 65 64 20 74 6f 20 6c 65 74 20 74 68 65 20 6e 65 78 74 20 6e 6f 64 65 20 72 65 61 | .popped.to.let.the.next.node.rea |
| 83ae0 | 64 20 74 68 65 20 6e 65 78 74 20 53 49 44 20 6f 66 20 74 68 65 20 6c 69 73 74 2e 20 54 68 65 20 | d.the.next.SID.of.the.list..The. |
| 83b00 | 53 49 44 20 6c 69 73 74 20 63 6f 6d 70 6c 65 74 65 6c 79 20 64 65 74 65 72 6d 69 6e 65 73 20 74 | SID.list.completely.determines.t |
| 83b20 | 68 65 20 70 61 74 68 20 77 68 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 69 73 20 66 6f 72 77 | he.path.where.the.packet.is.forw |
| 83b40 | 61 72 64 65 64 2e 00 54 68 65 20 53 68 61 70 65 72 20 70 6f 6c 69 63 79 20 64 6f 65 73 20 6e 6f | arded..The.Shaper.policy.does.no |
| 83b60 | 74 20 67 75 61 72 61 6e 74 65 65 20 61 20 6c 6f 77 20 64 65 6c 61 79 2c 20 62 75 74 20 69 74 20 | t.guarantee.a.low.delay,.but.it. |
| 83b80 | 64 6f 65 73 20 67 75 61 72 61 6e 74 65 65 20 62 61 6e 64 77 69 64 74 68 20 74 6f 20 64 69 66 66 | does.guarantee.bandwidth.to.diff |
| 83ba0 | 65 72 65 6e 74 20 74 72 61 66 66 69 63 20 63 6c 61 73 73 65 73 20 61 6e 64 20 61 6c 73 6f 20 6c | erent.traffic.classes.and.also.l |
| 83bc0 | 65 74 73 20 79 6f 75 20 64 65 63 69 64 65 20 68 6f 77 20 74 6f 20 61 6c 6c 6f 63 61 74 65 20 6d | ets.you.decide.how.to.allocate.m |
| 83be0 | 6f 72 65 20 74 72 61 66 66 69 63 20 6f 6e 63 65 20 74 68 65 20 67 75 61 72 61 6e 74 65 65 73 20 | ore.traffic.once.the.guarantees. |
| 83c00 | 61 72 65 20 6d 65 74 2e 00 54 68 65 20 55 44 50 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 75 73 65 | are.met..The.UDP.port.number.use |
| 83c20 | 64 20 62 79 20 79 6f 75 72 20 61 70 6c 6c 69 63 61 74 69 6f 6e 2e 20 49 74 20 69 73 20 6d 61 6e | d.by.your.apllication..It.is.man |
| 83c40 | 64 61 74 6f 72 79 20 66 6f 72 20 74 68 69 73 20 6b 69 6e 64 20 6f 66 20 6f 70 65 72 61 74 69 6f | datory.for.this.kind.of.operatio |
| 83c60 | 6e 2e 00 54 68 65 20 55 44 50 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 75 73 65 64 20 62 79 20 79 | n..The.UDP.port.number.used.by.y |
| 83c80 | 6f 75 72 20 61 70 70 6c 69 63 61 74 69 6f 6e 2e 20 49 74 20 69 73 20 6d 61 6e 64 61 74 6f 72 79 | our.application..It.is.mandatory |
| 83ca0 | 20 66 6f 72 20 74 68 69 73 20 6b 69 6e 64 20 6f 66 20 6f 70 65 72 61 74 69 6f 6e 2e 00 54 68 65 | .for.this.kind.of.operation..The |
| 83cc0 | 20 56 58 4c 41 4e 20 73 70 65 63 69 66 69 63 61 74 69 6f 6e 20 77 61 73 20 6f 72 69 67 69 6e 61 | .VXLAN.specification.was.origina |
| 83ce0 | 6c 6c 79 20 63 72 65 61 74 65 64 20 62 79 20 56 4d 77 61 72 65 2c 20 41 72 69 73 74 61 20 4e 65 | lly.created.by.VMware,.Arista.Ne |
| 83d00 | 74 77 6f 72 6b 73 20 61 6e 64 20 43 69 73 63 6f 2e 20 4f 74 68 65 72 20 62 61 63 6b 65 72 73 20 | tworks.and.Cisco..Other.backers. |
| 83d20 | 6f 66 20 74 68 65 20 56 58 4c 41 4e 20 74 65 63 68 6e 6f 6c 6f 67 79 20 69 6e 63 6c 75 64 65 20 | of.the.VXLAN.technology.include. |
| 83d40 | 48 75 61 77 65 69 2c 20 42 72 6f 61 64 63 6f 6d 2c 20 43 69 74 72 69 78 2c 20 50 69 63 61 38 2c | Huawei,.Broadcom,.Citrix,.Pica8, |
| 83d60 | 20 42 69 67 20 53 77 69 74 63 68 20 4e 65 74 77 6f 72 6b 73 2c 20 43 75 6d 75 6c 75 73 20 4e 65 | .Big.Switch.Networks,.Cumulus.Ne |
| 83d80 | 74 77 6f 72 6b 73 2c 20 44 65 6c 6c 20 45 4d 43 2c 20 45 72 69 63 73 73 6f 6e 2c 20 4d 65 6c 6c | tworks,.Dell.EMC,.Ericsson,.Mell |
| 83da0 | 61 6e 6f 78 2c 20 46 72 65 65 42 53 44 2c 20 4f 70 65 6e 42 53 44 2c 20 52 65 64 20 48 61 74 2c | anox,.FreeBSD,.OpenBSD,.Red.Hat, |
| 83dc0 | 20 4a 6f 79 65 6e 74 2c 20 61 6e 64 20 4a 75 6e 69 70 65 72 20 4e 65 74 77 6f 72 6b 73 2e 00 54 | .Joyent,.and.Juniper.Networks..T |
| 83de0 | 68 65 20 56 79 4f 53 20 44 4e 53 20 66 6f 72 77 61 72 64 65 72 20 63 61 6e 20 61 6c 73 6f 20 62 | he.VyOS.DNS.forwarder.can.also.b |
| 83e00 | 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 68 6f 73 74 20 61 75 74 68 6f 72 69 74 61 74 69 | e.configured.to.host.authoritati |
| 83e20 | 76 65 20 72 65 63 6f 72 64 73 20 66 6f 72 20 61 20 64 6f 6d 61 69 6e 2e 00 54 68 65 20 56 79 4f | ve.records.for.a.domain..The.VyO |
| 83e40 | 53 20 44 4e 53 20 66 6f 72 77 61 72 64 65 72 20 64 6f 65 73 20 6e 6f 74 20 72 65 71 75 69 72 65 | S.DNS.forwarder.does.not.require |
| 83e60 | 20 61 6e 20 75 70 73 74 72 65 61 6d 20 44 4e 53 20 73 65 72 76 65 72 2e 20 49 74 20 63 61 6e 20 | .an.upstream.DNS.server..It.can. |
| 83e80 | 73 65 72 76 65 20 61 73 20 61 20 66 75 6c 6c 20 72 65 63 75 72 73 69 76 65 20 44 4e 53 20 73 65 | serve.as.a.full.recursive.DNS.se |
| 83ea0 | 72 76 65 72 20 2d 20 62 75 74 20 69 74 20 63 61 6e 20 61 6c 73 6f 20 66 6f 72 77 61 72 64 20 71 | rver.-.but.it.can.also.forward.q |
| 83ec0 | 75 65 72 69 65 73 20 74 6f 20 63 6f 6e 66 69 67 75 72 61 62 6c 65 20 75 70 73 74 72 65 61 6d 20 | ueries.to.configurable.upstream. |
| 83ee0 | 44 4e 53 20 73 65 72 76 65 72 73 2e 20 42 79 20 6e 6f 74 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 | DNS.servers..By.not.configuring. |
| 83f00 | 61 6e 79 20 75 70 73 74 72 65 61 6d 20 44 4e 53 20 73 65 72 76 65 72 73 20 79 6f 75 20 61 6c 73 | any.upstream.DNS.servers.you.als |
| 83f20 | 6f 20 61 76 6f 69 64 20 62 65 69 6e 67 20 74 72 61 63 6b 65 64 20 62 79 20 74 68 65 20 70 72 6f | o.avoid.being.tracked.by.the.pro |
| 83f40 | 76 69 64 65 72 20 6f 66 20 79 6f 75 72 20 75 70 73 74 72 65 61 6d 20 44 4e 53 20 73 65 72 76 65 | vider.of.your.upstream.DNS.serve |
| 83f60 | 72 2e 00 54 68 65 20 56 79 4f 53 20 44 4e 53 20 66 6f 72 77 61 72 64 65 72 20 77 69 6c 6c 20 6f | r..The.VyOS.DNS.forwarder.will.o |
| 83f80 | 6e 6c 79 20 61 63 63 65 70 74 20 6c 6f 6f 6b 75 70 20 72 65 71 75 65 73 74 73 20 66 72 6f 6d 20 | nly.accept.lookup.requests.from. |
| 83fa0 | 74 68 65 20 4c 41 4e 20 73 75 62 6e 65 74 73 20 2d 20 31 39 32 2e 31 36 38 2e 31 2e 30 2f 32 34 | the.LAN.subnets.-.192.168.1.0/24 |
| 83fc0 | 20 61 6e 64 20 32 30 30 31 3a 64 62 38 3a 3a 2f 36 34 00 54 68 65 20 56 79 4f 53 20 44 4e 53 20 | .and.2001:db8::/64.The.VyOS.DNS. |
| 83fe0 | 66 6f 72 77 61 72 64 65 72 20 77 69 6c 6c 20 6f 6e 6c 79 20 6c 69 73 74 65 6e 20 66 6f 72 20 72 | forwarder.will.only.listen.for.r |
| 84000 | 65 71 75 65 73 74 73 20 6f 6e 20 74 68 65 20 65 74 68 31 20 28 4c 41 4e 29 20 69 6e 74 65 72 66 | equests.on.the.eth1.(LAN).interf |
| 84020 | 61 63 65 20 61 64 64 72 65 73 73 65 73 20 2d 20 31 39 32 2e 31 36 38 2e 31 2e 32 35 34 20 66 6f | ace.addresses.-.192.168.1.254.fo |
| 84040 | 72 20 49 50 76 34 20 61 6e 64 20 32 30 30 31 3a 64 62 38 3a 3a 66 66 66 66 20 66 6f 72 20 49 50 | r.IPv4.and.2001:db8::ffff.for.IP |
| 84060 | 76 36 00 54 68 65 20 56 79 4f 53 20 44 4e 53 20 66 6f 72 77 61 72 64 65 72 20 77 69 6c 6c 20 70 | v6.The.VyOS.DNS.forwarder.will.p |
| 84080 | 61 73 73 20 72 65 76 65 72 73 65 20 6c 6f 6f 6b 75 70 73 20 66 6f 72 20 20 31 30 2e 69 6e 2d 61 | ass.reverse.lookups.for..10.in-a |
| 840a0 | 64 64 72 2e 61 72 70 61 2c 20 31 36 38 2e 31 39 32 2e 69 6e 2d 61 64 64 72 2e 61 72 70 61 2c 20 | ddr.arpa,.168.192.in-addr.arpa,. |
| 840c0 | 31 36 2d 33 31 2e 31 37 32 2e 69 6e 2d 61 64 64 72 2e 61 72 70 61 20 7a 6f 6e 65 73 20 74 6f 20 | 16-31.172.in-addr.arpa.zones.to. |
| 840e0 | 75 70 73 74 72 65 61 6d 20 73 65 72 76 65 72 2e 00 54 68 65 20 56 79 4f 53 20 50 4b 49 20 73 75 | upstream.server..The.VyOS.PKI.su |
| 84100 | 62 73 79 73 74 65 6d 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 75 73 65 64 20 74 6f 20 61 75 74 6f | bsystem.can.also.be.used.to.auto |
| 84120 | 6d 61 74 69 63 61 6c 6c 79 20 72 65 74 72 69 65 76 65 20 43 65 72 74 69 66 69 63 61 74 65 73 20 | matically.retrieve.Certificates. |
| 84140 | 75 73 69 6e 67 20 74 68 65 20 3a 61 62 62 72 3a 60 41 43 4d 45 20 28 41 75 74 6f 6d 61 74 69 63 | using.the.:abbr:`ACME.(Automatic |
| 84160 | 20 43 65 72 74 69 66 69 63 61 74 65 20 4d 61 6e 61 67 65 6d 65 6e 74 20 45 6e 76 69 72 6f 6e 6d | .Certificate.Management.Environm |
| 84180 | 65 6e 74 29 60 20 70 72 6f 74 6f 63 6f 6c 2e 00 54 68 65 20 56 79 4f 53 20 63 6f 6e 74 61 69 6e | ent)`.protocol..The.VyOS.contain |
| 841a0 | 65 72 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 69 73 20 62 61 73 65 64 20 6f 6e 20 60 50 | er.implementation.is.based.on.`P |
| 841c0 | 6f 64 6d 61 6e 20 3c 68 74 74 70 73 3a 2f 2f 70 6f 64 6d 61 6e 2e 69 6f 2f 3e 60 5f 20 61 73 20 | odman.<https://podman.io/>`_.as. |
| 841e0 | 61 20 64 65 61 6d 6f 6e 6c 65 73 73 20 63 6f 6e 74 61 69 6e 65 72 20 65 6e 67 69 6e 65 2e 00 54 | a.deamonless.container.engine..T |
| 84200 | 68 65 20 56 79 4f 53 20 63 6f 6e 74 61 69 6e 65 72 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e | he.VyOS.container.implementation |
| 84220 | 20 69 73 20 62 61 73 65 64 20 6f 6e 20 60 50 6f 64 6d 61 6e 3c 68 74 74 70 73 3a 2f 2f 70 6f 64 | .is.based.on.`Podman<https://pod |
| 84240 | 6d 61 6e 2e 69 6f 2f 3e 60 20 61 73 20 61 20 64 65 61 6d 6f 6e 6c 65 73 73 20 63 6f 6e 74 61 69 | man.io/>`.as.a.deamonless.contai |
| 84260 | 6e 65 72 20 65 6e 67 69 6e 65 2e 00 54 68 65 20 57 41 50 20 69 6e 20 74 68 69 73 20 65 78 61 6d | ner.engine..The.WAP.in.this.exam |
| 84280 | 70 6c 65 20 68 61 73 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 68 61 72 61 63 74 65 72 69 | ple.has.the.following.characteri |
| 842a0 | 73 74 69 63 73 3a 00 54 68 65 20 57 69 72 65 6c 65 73 73 20 57 69 64 65 2d 41 72 65 61 2d 4e 65 | stics:.The.Wireless.Wide-Area-Ne |
| 842c0 | 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 20 70 72 6f 76 69 64 65 73 20 61 63 63 65 73 73 20 | twork.interface.provides.access. |
| 842e0 | 28 74 68 72 6f 75 67 68 20 61 20 77 69 72 65 6c 65 73 73 20 6d 6f 64 65 6d 2f 77 77 61 6e 29 20 | (through.a.wireless.modem/wwan). |
| 84300 | 74 6f 20 77 69 72 65 6c 65 73 73 20 6e 65 74 77 6f 72 6b 73 20 70 72 6f 76 69 64 65 64 20 62 79 | to.wireless.networks.provided.by |
| 84320 | 20 76 61 72 69 6f 75 73 20 63 65 6c 6c 75 6c 61 72 20 70 72 6f 76 69 64 65 72 73 2e 00 54 68 65 | .various.cellular.providers..The |
| 84340 | 20 60 60 43 44 60 60 2d 62 69 74 20 69 73 20 68 6f 6e 6f 72 65 64 20 63 6f 72 72 65 63 74 6c 79 | .``CD``-bit.is.honored.correctly |
| 84360 | 20 66 6f 72 20 70 72 6f 63 65 73 73 20 61 6e 64 20 76 61 6c 69 64 61 74 65 2e 20 46 6f 72 20 6c | .for.process.and.validate..For.l |
| 84380 | 6f 67 2d 66 61 69 6c 2c 20 66 61 69 6c 75 72 65 73 20 77 69 6c 6c 20 62 65 20 6c 6f 67 67 65 64 | og-fail,.failures.will.be.logged |
| 843a0 | 20 74 6f 6f 2e 00 54 68 65 20 60 60 61 64 64 72 65 73 73 60 60 20 63 61 6e 20 62 65 20 63 6f 6e | .too..The.``address``.can.be.con |
| 843c0 | 66 69 67 75 72 65 64 20 65 69 74 68 65 72 20 6f 6e 20 74 68 65 20 56 52 52 50 20 69 6e 74 65 72 | figured.either.on.the.VRRP.inter |
| 843e0 | 66 61 63 65 20 6f 72 20 6f 6e 20 6e 6f 74 20 56 52 52 50 20 69 6e 74 65 72 66 61 63 65 2e 00 54 | face.or.on.not.VRRP.interface..T |
| 84400 | 68 65 20 60 60 61 64 64 72 65 73 73 60 60 20 70 61 72 61 6d 65 74 65 72 20 63 61 6e 20 62 65 20 | he.``address``.parameter.can.be. |
| 84420 | 65 69 74 68 65 72 20 61 6e 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 2c 20 | either.an.IPv4.or.IPv6.address,. |
| 84440 | 62 75 74 20 79 6f 75 20 63 61 6e 20 6e 6f 74 20 6d 69 78 20 49 50 76 34 20 61 6e 64 20 49 50 76 | but.you.can.not.mix.IPv4.and.IPv |
| 84460 | 36 20 69 6e 20 74 68 65 20 73 61 6d 65 20 67 72 6f 75 70 2c 20 61 6e 64 20 77 69 6c 6c 20 6e 65 | 6.in.the.same.group,.and.will.ne |
| 84480 | 65 64 20 74 6f 20 63 72 65 61 74 65 20 67 72 6f 75 70 73 20 77 69 74 68 20 64 69 66 66 65 72 65 | ed.to.create.groups.with.differe |
| 844a0 | 6e 74 20 56 52 49 44 73 20 73 70 65 63 69 61 6c 6c 79 20 66 6f 72 20 49 50 76 34 20 61 6e 64 20 | nt.VRIDs.specially.for.IPv4.and. |
| 844c0 | 49 50 76 36 2e 20 49 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 75 73 65 20 49 50 76 34 20 2b 20 | IPv6..If.you.want.to.use.IPv4.+. |
| 844e0 | 49 50 76 36 20 61 64 64 72 65 73 73 20 79 6f 75 20 63 61 6e 20 75 73 65 20 6f 70 74 69 6f 6e 20 | IPv6.address.you.can.use.option. |
| 84500 | 60 60 65 78 63 6c 75 64 65 64 2d 61 64 64 72 65 73 73 60 60 00 54 68 65 20 60 60 62 6b 2d 62 72 | ``excluded-address``.The.``bk-br |
| 84520 | 69 64 67 65 2d 73 73 6c 60 60 20 62 61 63 6b 65 6e 64 20 63 6f 6e 6e 65 63 74 73 20 74 6f 20 73 | idge-ssl``.backend.connects.to.s |
| 84540 | 72 30 31 20 73 65 72 76 65 72 20 6f 6e 20 70 6f 72 74 20 34 34 33 20 76 69 61 20 48 54 54 50 53 | r01.server.on.port.443.via.HTTPS |
| 84560 | 20 61 6e 64 20 63 68 65 63 6b 73 20 62 61 63 6b 65 6e 64 20 73 65 72 76 65 72 20 68 61 73 20 61 | .and.checks.backend.server.has.a |
| 84580 | 20 76 61 6c 69 64 20 63 65 72 74 69 66 69 63 61 74 65 20 74 72 75 73 74 65 64 20 62 79 20 43 41 | .valid.certificate.trusted.by.CA |
| 845a0 | 20 60 60 63 61 63 65 72 74 60 60 00 54 68 65 20 60 60 68 74 74 70 60 60 20 73 65 72 76 69 63 65 | .``cacert``.The.``http``.service |
| 845c0 | 20 69 73 20 6c 65 73 74 65 6e 73 20 6f 6e 20 70 6f 72 74 20 38 30 20 61 6e 64 20 66 6f 72 63 65 | .is.lestens.on.port.80.and.force |
| 845e0 | 20 72 65 64 69 72 65 63 74 73 20 66 72 6f 6d 20 48 54 54 50 20 74 6f 20 48 54 54 50 53 2e 00 54 | .redirects.from.HTTP.to.HTTPS..T |
| 84600 | 68 65 20 60 60 68 74 74 70 60 60 20 73 65 72 76 69 63 65 20 69 73 20 6c 69 73 74 65 6e 73 20 6f | he.``http``.service.is.listens.o |
| 84620 | 6e 20 70 6f 72 74 20 38 30 20 61 6e 64 20 66 6f 72 63 65 20 72 65 64 69 72 65 63 74 73 20 66 72 | n.port.80.and.force.redirects.fr |
| 84640 | 6f 6d 20 48 54 54 50 20 74 6f 20 48 54 54 50 53 2e 00 54 68 65 20 60 60 68 74 74 70 73 60 60 20 | om.HTTP.to.HTTPS..The.``https``. |
| 84660 | 73 65 72 76 69 63 65 20 6c 69 73 74 65 6e 73 20 6f 6e 20 70 6f 72 74 20 34 34 33 20 77 69 74 68 | service.listens.on.port.443.with |
| 84680 | 20 62 61 63 6b 65 6e 64 20 60 60 62 6b 2d 62 72 69 64 67 65 2d 73 73 6c 60 60 20 74 6f 20 68 61 | .backend.``bk-bridge-ssl``.to.ha |
| 846a0 | 6e 64 6c 65 20 48 54 54 50 53 20 74 72 61 66 66 69 63 2e 20 49 74 20 75 73 65 73 20 63 65 72 74 | ndle.HTTPS.traffic..It.uses.cert |
| 846c0 | 69 66 69 63 61 74 65 20 6e 61 6d 65 64 20 60 60 63 65 72 74 60 60 20 66 6f 72 20 53 53 4c 20 74 | ificate.named.``cert``.for.SSL.t |
| 846e0 | 65 72 6d 69 6e 61 74 69 6f 6e 2e 00 54 68 65 20 60 60 68 74 74 70 73 60 60 20 73 65 72 76 69 63 | ermination..The.``https``.servic |
| 84700 | 65 20 6c 69 73 74 65 6e 73 20 6f 6e 20 70 6f 72 74 20 34 34 33 20 77 69 74 68 20 62 61 63 6b 65 | e.listens.on.port.443.with.backe |
| 84720 | 6e 64 20 60 60 62 6b 2d 64 65 66 61 75 6c 74 60 60 20 74 6f 20 68 61 6e 64 6c 65 20 48 54 54 50 | nd.``bk-default``.to.handle.HTTP |
| 84740 | 53 20 74 72 61 66 66 69 63 2e 20 49 74 20 75 73 65 73 20 63 65 72 74 69 66 69 63 61 74 65 20 6e | S.traffic..It.uses.certificate.n |
| 84760 | 61 6d 65 64 20 60 60 63 65 72 74 60 60 20 66 6f 72 20 53 53 4c 20 74 65 72 6d 69 6e 61 74 69 6f | amed.``cert``.for.SSL.terminatio |
| 84780 | 6e 2e 00 54 68 65 20 60 60 68 74 74 70 73 60 60 20 73 65 72 76 69 63 65 20 6c 69 73 74 65 6e 73 | n..The.``https``.service.listens |
| 847a0 | 20 6f 6e 20 70 6f 72 74 20 34 34 33 20 77 69 74 68 20 62 61 63 6b 65 6e 64 20 60 60 62 6b 2d 64 | .on.port.443.with.backend.``bk-d |
| 847c0 | 65 66 61 75 6c 74 60 60 20 74 6f 20 68 61 6e 64 6c 65 20 48 54 54 50 53 20 74 72 61 66 66 69 63 | efault``.to.handle.HTTPS.traffic |
| 847e0 | 2e 20 49 74 20 75 73 65 73 20 63 65 72 74 69 66 69 63 61 74 65 20 6e 61 6d 65 64 20 60 60 63 65 | ..It.uses.certificate.named.``ce |
| 84800 | 72 74 60 60 20 66 6f 72 20 53 53 4c 20 74 65 72 6d 69 6e 61 74 69 6f 6e 2e 20 48 53 54 53 20 68 | rt``.for.SSL.termination..HSTS.h |
| 84820 | 65 61 64 65 72 20 69 73 20 73 65 74 20 77 69 74 68 20 61 20 31 2d 79 65 61 72 20 65 78 70 69 72 | eader.is.set.with.a.1-year.expir |
| 84840 | 79 2c 20 74 6f 20 74 65 6c 6c 20 62 72 6f 77 73 65 72 73 20 74 6f 20 61 6c 77 61 79 73 20 75 73 | y,.to.tell.browsers.to.always.us |
| 84860 | 65 20 53 53 4c 20 66 6f 72 20 73 69 74 65 2e 00 54 68 65 20 60 60 68 74 74 70 73 60 60 20 73 65 | e.SSL.for.site..The.``https``.se |
| 84880 | 72 76 69 63 65 20 6c 69 73 74 65 6e 73 20 6f 6e 20 70 6f 72 74 20 34 34 33 20 77 69 74 68 20 62 | rvice.listens.on.port.443.with.b |
| 848a0 | 61 63 6b 65 6e 64 20 60 62 6b 2d 64 65 66 61 75 6c 74 60 20 74 6f 20 68 61 6e 64 6c 65 20 48 54 | ackend.`bk-default`.to.handle.HT |
| 848c0 | 54 50 53 20 74 72 61 66 66 69 63 2e 20 49 74 20 75 73 65 73 20 63 65 72 74 69 66 69 63 61 74 65 | TPS.traffic..It.uses.certificate |
| 848e0 | 20 6e 61 6d 65 64 20 60 60 63 65 72 74 60 60 20 66 6f 72 20 53 53 4c 20 74 65 72 6d 69 6e 61 74 | .named.``cert``.for.SSL.terminat |
| 84900 | 69 6f 6e 2e 00 54 68 65 20 60 60 70 65 72 73 69 73 74 65 6e 74 2d 74 75 6e 6e 65 6c 60 60 20 64 | ion..The.``persistent-tunnel``.d |
| 84920 | 69 72 65 63 74 69 76 65 20 77 69 6c 6c 20 61 6c 6c 6f 77 20 75 73 20 74 6f 20 63 6f 6e 66 69 67 | irective.will.allow.us.to.config |
| 84940 | 75 72 65 20 74 75 6e 6e 65 6c 2d 72 65 6c 61 74 65 64 20 61 74 74 72 69 62 75 74 65 73 2c 20 73 | ure.tunnel-related.attributes,.s |
| 84960 | 75 63 68 20 61 73 20 66 69 72 65 77 61 6c 6c 20 70 6f 6c 69 63 79 20 61 73 20 77 65 20 77 6f 75 | uch.as.firewall.policy.as.we.wou |
| 84980 | 6c 64 20 6f 6e 20 61 6e 79 20 6e 6f 72 6d 61 6c 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 | ld.on.any.normal.network.interfa |
| 849a0 | 63 65 2e 00 54 68 65 20 60 60 73 6f 75 72 63 65 2d 61 64 64 72 65 73 73 60 60 20 6d 75 73 74 20 | ce..The.``source-address``.must. |
| 849c0 | 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 6f 6e 65 20 6f 66 20 56 79 4f 53 20 69 6e 74 | be.configured.on.one.of.VyOS.int |
| 849e0 | 65 72 66 61 63 65 2e 20 42 65 73 74 20 70 72 61 63 74 69 63 65 20 77 6f 75 6c 64 20 62 65 20 61 | erface..Best.practice.would.be.a |
| 84a00 | 20 6c 6f 6f 70 62 61 63 6b 20 6f 72 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 | .loopback.or.dummy.interface..Th |
| 84a20 | 65 20 60 60 73 6f 75 72 63 65 2d 61 64 64 72 65 73 73 60 60 20 6d 75 73 74 20 62 65 20 63 6f 6e | e.``source-address``.must.be.con |
| 84a40 | 66 69 67 75 72 65 64 20 74 6f 20 74 68 61 74 20 6f 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e | figured.to.that.of.an.interface. |
| 84a60 | 20 42 65 73 74 20 70 72 61 63 74 69 63 65 20 77 6f 75 6c 64 20 62 65 20 61 20 6c 6f 6f 70 62 61 | .Best.practice.would.be.a.loopba |
| 84a80 | 63 6b 20 6f 72 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 65 20 60 73 68 6f 77 | ck.or.dummy.interface..The.`show |
| 84aa0 | 20 62 72 69 64 67 65 60 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 20 63 61 6e | .bridge`.operational.command.can |
| 84ac0 | 20 62 65 20 75 73 65 64 20 74 6f 20 64 69 73 70 6c 61 79 20 63 6f 6e 66 69 67 75 72 65 64 20 62 | .be.used.to.display.configured.b |
| 84ae0 | 72 69 64 67 65 73 3a 00 54 68 65 20 61 62 6f 76 65 20 64 69 72 65 63 74 6f 72 79 20 61 6e 64 20 | ridges:.The.above.directory.and. |
| 84b00 | 64 65 66 61 75 6c 74 2d 63 6f 6e 66 69 67 20 6d 75 73 74 20 62 65 20 61 20 63 68 69 6c 64 20 64 | default-config.must.be.a.child.d |
| 84b20 | 69 72 65 63 74 6f 72 79 20 6f 66 20 2f 63 6f 6e 66 69 67 2f 61 75 74 68 2c 20 73 69 6e 63 65 20 | irectory.of./config/auth,.since. |
| 84b40 | 66 69 6c 65 73 20 6f 75 74 73 69 64 65 20 74 68 69 73 20 64 69 72 65 63 74 6f 72 79 20 61 72 65 | files.outside.this.directory.are |
| 84b60 | 20 6e 6f 74 20 70 65 72 73 69 73 74 65 64 20 61 66 74 65 72 20 61 6e 20 69 6d 61 67 65 20 75 70 | .not.persisted.after.an.image.up |
| 84b80 | 67 72 61 64 65 2e 00 54 68 65 20 61 63 74 69 6f 6e 20 63 61 6e 20 62 65 20 3a 00 54 68 65 20 61 | grade..The.action.can.be.:.The.a |
| 84ba0 | 64 64 72 65 73 73 20 6f 66 20 52 6f 75 74 65 72 20 42 20 69 73 20 31 30 2e 30 2e 32 30 2e 31 31 | ddress.of.Router.B.is.10.0.20.11 |
| 84bc0 | 32 20 61 6e 64 20 74 68 65 20 70 6f 72 74 20 75 73 65 64 20 69 73 20 38 34 34 33 00 54 68 65 20 | 2.and.the.port.used.is.8443.The. |
| 84be0 | 61 64 64 72 65 73 73 20 74 68 65 20 73 65 72 76 65 72 20 6c 69 73 74 65 6e 73 20 74 6f 20 64 75 | address.the.server.listens.to.du |
| 84c00 | 72 69 6e 67 20 68 74 74 70 2d 30 31 20 63 68 61 6c 6c 65 6e 67 65 00 54 68 65 20 61 64 76 61 6e | ring.http-01.challenge.The.advan |
| 84c20 | 74 61 67 65 20 6f 66 20 74 68 69 73 20 69 73 20 74 68 61 74 20 74 68 65 20 72 6f 75 74 65 2d 73 | tage.of.this.is.that.the.route-s |
| 84c40 | 65 6c 65 63 74 69 6f 6e 20 28 61 74 20 74 68 69 73 20 70 6f 69 6e 74 29 20 77 69 6c 6c 20 62 65 | election.(at.this.point).will.be |
| 84c60 | 20 6d 6f 72 65 20 64 65 74 65 72 6d 69 6e 69 73 74 69 63 2e 20 54 68 65 20 64 69 73 61 64 76 61 | .more.deterministic..The.disadva |
| 84c80 | 6e 74 61 67 65 20 69 73 20 74 68 61 74 20 61 20 66 65 77 20 6f 72 20 65 76 65 6e 20 6f 6e 65 20 | ntage.is.that.a.few.or.even.one. |
| 84ca0 | 6c 6f 77 65 73 74 2d 49 44 20 72 6f 75 74 65 72 20 6d 61 79 20 61 74 74 72 61 63 74 20 61 6c 6c | lowest-ID.router.may.attract.all |
| 84cc0 | 20 74 72 61 66 66 69 63 20 74 6f 20 6f 74 68 65 72 77 69 73 65 2d 65 71 75 61 6c 20 70 61 74 68 | .traffic.to.otherwise-equal.path |
| 84ce0 | 73 20 62 65 63 61 75 73 65 20 6f 66 20 74 68 69 73 20 63 68 65 63 6b 2e 20 49 74 20 6d 61 79 20 | s.because.of.this.check..It.may. |
| 84d00 | 69 6e 63 72 65 61 73 65 20 74 68 65 20 70 6f 73 73 69 62 69 6c 69 74 79 20 6f 66 20 4d 45 44 20 | increase.the.possibility.of.MED. |
| 84d20 | 6f 72 20 49 47 50 20 6f 73 63 69 6c 6c 61 74 69 6f 6e 2c 20 75 6e 6c 65 73 73 20 6f 74 68 65 72 | or.IGP.oscillation,.unless.other |
| 84d40 | 20 6d 65 61 73 75 72 65 73 20 77 65 72 65 20 74 61 6b 65 6e 20 74 6f 20 61 76 6f 69 64 20 74 68 | .measures.were.taken.to.avoid.th |
| 84d60 | 65 73 65 2e 20 54 68 65 20 65 78 61 63 74 20 62 65 68 61 76 69 6f 75 72 20 77 69 6c 6c 20 62 65 | ese..The.exact.behaviour.will.be |
| 84d80 | 20 73 65 6e 73 69 74 69 76 65 20 74 6f 20 74 68 65 20 69 42 47 50 20 61 6e 64 20 72 65 66 6c 65 | .sensitive.to.the.iBGP.and.refle |
| 84da0 | 63 74 69 6f 6e 20 74 6f 70 6f 6c 6f 67 79 2e 00 54 68 65 20 61 6c 6c 6f 63 61 74 65 64 20 61 64 | ction.topology..The.allocated.ad |
| 84dc0 | 64 72 65 73 73 20 62 6c 6f 63 6b 20 69 73 20 31 30 30 2e 36 34 2e 30 2e 30 2f 31 30 2e 00 54 68 | dress.block.is.100.64.0.0/10..Th |
| 84de0 | 65 20 61 6d 6f 75 6e 74 20 6f 66 20 44 75 70 6c 69 63 61 74 65 20 41 64 64 72 65 73 73 20 44 65 | e.amount.of.Duplicate.Address.De |
| 84e00 | 74 65 63 74 69 6f 6e 20 70 72 6f 62 65 73 20 74 6f 20 73 65 6e 64 2e 00 54 68 65 20 61 74 74 72 | tection.probes.to.send..The.attr |
| 84e20 | 69 62 75 74 65 73 20 3a 63 66 67 63 6d 64 3a 60 70 72 65 66 69 78 2d 6c 69 73 74 60 20 61 6e 64 | ibutes.:cfgcmd:`prefix-list`.and |
| 84e40 | 20 3a 63 66 67 63 6d 64 3a 60 64 69 73 74 72 69 62 75 74 65 2d 6c 69 73 74 60 20 61 72 65 20 6d | .:cfgcmd:`distribute-list`.are.m |
| 84e60 | 75 74 75 61 6c 6c 79 20 65 78 63 6c 75 73 69 76 65 2c 20 61 6e 64 20 6f 6e 6c 79 20 6f 6e 65 20 | utually.exclusive,.and.only.one. |
| 84e80 | 63 6f 6d 6d 61 6e 64 20 28 64 69 73 74 72 69 62 75 74 65 2d 6c 69 73 74 20 6f 72 20 70 72 65 66 | command.(distribute-list.or.pref |
| 84ea0 | 69 78 2d 6c 69 73 74 29 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 65 61 63 68 20 | ix-list).can.be.applied.to.each. |
| 84ec0 | 69 6e 62 6f 75 6e 64 20 6f 72 20 6f 75 74 62 6f 75 6e 64 20 64 69 72 65 63 74 69 6f 6e 20 66 6f | inbound.or.outbound.direction.fo |
| 84ee0 | 72 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 6e 65 69 67 68 62 6f 72 2e 00 54 68 65 20 61 76 61 | r.a.particular.neighbor..The.ava |
| 84f00 | 69 6c 61 62 6c 65 20 6d 6f 64 65 73 20 61 72 65 3a 00 54 68 65 20 61 76 61 69 6c 61 62 6c 65 20 | ilable.modes.are:.The.available. |
| 84f20 | 6f 70 74 69 6f 6e 73 20 66 6f 72 20 3c 6d 61 74 63 68 3e 20 61 72 65 3a 00 54 68 65 20 62 61 73 | options.for.<match>.are:.The.bas |
| 84f40 | 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 73 20 74 68 65 20 | e.chain.for.traffic.towards.the. |
| 84f60 | 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 69 6e | router.is.``set.firewall.ipv4.in |
| 84f80 | 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 54 68 65 20 62 61 73 65 20 63 68 61 69 6e 20 | put.filter....``.The.base.chain. |
| 84fa0 | 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 69 | for.traffic.towards.the.router.i |
| 84fc0 | 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 69 6e 70 75 74 20 66 69 6c 74 | s.``set.firewall.ipv6.input.filt |
| 84fe0 | 65 72 20 2e 2e 2e 60 60 00 54 68 65 20 62 61 73 65 20 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e | er....``.The.base.firewall.chain |
| 85000 | 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 20 66 6f | .to.configure.filtering.rules.fo |
| 85020 | 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 | r.transit.traffic.is.``set.firew |
| 85040 | 61 6c 6c 20 69 70 76 34 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 | all.ipv4.forward.filter....``,.w |
| 85060 | 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 61 67 65 20 35 2c 20 68 69 67 68 6c 69 67 | hich.happens.in.stage.5,.highlig |
| 85080 | 68 74 65 64 20 69 6e 20 74 68 65 20 63 6f 6c 6f 72 20 72 65 64 2e 00 54 68 65 20 62 61 73 65 20 | hted.in.the.color.red..The.base. |
| 850a0 | 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 66 69 6c 74 | firewall.chain.to.configure.filt |
| 850c0 | 65 72 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 | ering.rules.for.transit.traffic. |
| 850e0 | 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 20 66 | is.``set.firewall.ipv6.forward.f |
| 85100 | 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 | ilter....``,.which.happens.in.st |
| 85120 | 61 67 65 20 35 2c 20 68 69 67 68 6c 69 67 68 74 65 64 20 69 6e 20 74 68 65 20 63 6f 6c 6f 72 20 | age.5,.highlighted.in.the.color. |
| 85140 | 72 65 64 2e 00 54 68 65 20 62 65 6c 6f 77 20 72 65 66 65 72 65 6e 63 65 64 20 49 50 20 61 64 64 | red..The.below.referenced.IP.add |
| 85160 | 72 65 73 73 20 60 31 39 32 2e 30 2e 32 2e 31 60 20 69 73 20 75 73 65 64 20 61 73 20 65 78 61 6d | ress.`192.0.2.1`.is.used.as.exam |
| 85180 | 70 6c 65 20 61 64 64 72 65 73 73 20 72 65 70 72 65 73 65 6e 74 69 6e 67 20 61 20 67 6c 6f 62 61 | ple.address.representing.a.globa |
| 851a0 | 6c 20 75 6e 69 63 61 73 74 20 61 64 64 72 65 73 73 20 75 6e 64 65 72 20 77 68 69 63 68 20 74 68 | l.unicast.address.under.which.th |
| 851c0 | 65 20 48 55 42 20 63 61 6e 20 62 65 20 63 6f 6e 74 61 63 74 65 64 20 62 79 20 65 61 63 68 20 61 | e.HUB.can.be.contacted.by.each.a |
| 851e0 | 6e 64 20 65 76 65 72 79 20 69 6e 64 69 76 69 64 75 61 6c 20 73 70 6f 6b 65 2e 00 54 68 65 20 62 | nd.every.individual.spoke..The.b |
| 85200 | 6f 6e 64 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 70 72 6f 76 69 64 65 73 20 61 20 6d 65 74 68 | onding.interface.provides.a.meth |
| 85220 | 6f 64 20 66 6f 72 20 61 67 67 72 65 67 61 74 69 6e 67 20 6d 75 6c 74 69 70 6c 65 20 6e 65 74 77 | od.for.aggregating.multiple.netw |
| 85240 | 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 73 20 69 6e 74 6f 20 61 20 73 69 6e 67 6c 65 20 6c 6f 67 | ork.interfaces.into.a.single.log |
| 85260 | 69 63 61 6c 20 22 62 6f 6e 64 65 64 22 20 69 6e 74 65 72 66 61 63 65 2c 20 6f 72 20 4c 41 47 2c | ical."bonded".interface,.or.LAG, |
| 85280 | 20 6f 72 20 65 74 68 65 72 2d 63 68 61 6e 6e 65 6c 2c 20 6f 72 20 70 6f 72 74 2d 63 68 61 6e 6e | .or.ether-channel,.or.port-chann |
| 852a0 | 65 6c 2e 20 54 68 65 20 62 65 68 61 76 69 6f 72 20 6f 66 20 74 68 65 20 62 6f 6e 64 65 64 20 69 | el..The.behavior.of.the.bonded.i |
| 852c0 | 6e 74 65 72 66 61 63 65 73 20 64 65 70 65 6e 64 73 20 75 70 6f 6e 20 74 68 65 20 6d 6f 64 65 3b | nterfaces.depends.upon.the.mode; |
| 852e0 | 20 67 65 6e 65 72 61 6c 6c 79 20 73 70 65 61 6b 69 6e 67 2c 20 6d 6f 64 65 73 20 70 72 6f 76 69 | .generally.speaking,.modes.provi |
| 85300 | 64 65 20 65 69 74 68 65 72 20 68 6f 74 20 73 74 61 6e 64 62 79 20 6f 72 20 6c 6f 61 64 20 62 61 | de.either.hot.standby.or.load.ba |
| 85320 | 6c 61 6e 63 69 6e 67 20 73 65 72 76 69 63 65 73 2e 20 41 64 64 69 74 69 6f 6e 61 6c 6c 79 2c 20 | lancing.services..Additionally,. |
| 85340 | 6c 69 6e 6b 20 69 6e 74 65 67 72 69 74 79 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 6d 61 79 20 62 65 | link.integrity.monitoring.may.be |
| 85360 | 20 70 65 72 66 6f 72 6d 65 64 2e 00 54 68 65 20 63 61 73 65 20 6f 66 20 69 6e 67 72 65 73 73 20 | .performed..The.case.of.ingress. |
| 85380 | 73 68 61 70 69 6e 67 00 54 68 65 20 63 68 72 6f 6e 79 20 64 61 65 6d 6f 6e 20 6f 6e 20 56 79 4f | shaping.The.chrony.daemon.on.VyO |
| 853a0 | 53 20 63 61 6e 20 6c 65 76 65 72 61 67 65 20 4e 49 43 20 68 61 72 64 77 61 72 65 20 63 61 70 61 | S.can.leverage.NIC.hardware.capa |
| 853c0 | 62 69 6c 69 74 69 65 73 20 74 6f 20 72 65 63 6f 72 64 20 74 68 65 20 65 78 61 63 74 20 74 69 6d | bilities.to.record.the.exact.tim |
| 853e0 | 65 20 70 61 63 6b 65 74 73 20 61 72 65 20 72 65 63 65 69 76 65 64 20 6f 6e 20 74 68 65 20 69 6e | e.packets.are.received.on.the.in |
| 85400 | 74 65 72 66 61 63 65 2c 20 61 73 20 77 65 6c 6c 20 61 73 20 77 68 65 6e 20 70 61 63 6b 65 74 73 | terface,.as.well.as.when.packets |
| 85420 | 20 77 65 72 65 20 61 63 74 75 61 6c 6c 79 20 74 72 61 6e 73 6d 69 74 74 65 64 2e 20 54 68 69 73 | .were.actually.transmitted..This |
| 85440 | 20 70 72 6f 76 69 64 65 73 20 69 6d 70 72 6f 76 65 64 20 61 63 63 75 72 61 63 79 20 61 6e 64 20 | .provides.improved.accuracy.and. |
| 85460 | 73 74 61 62 69 6c 69 74 79 20 77 68 65 6e 20 74 68 65 20 73 79 73 74 65 6d 20 69 73 20 75 6e 64 | stability.when.the.system.is.und |
| 85480 | 65 72 20 6c 6f 61 64 2c 20 61 73 20 71 75 65 75 69 6e 67 20 61 6e 64 20 4f 53 20 63 6f 6e 74 65 | er.load,.as.queuing.and.OS.conte |
| 854a0 | 78 74 20 73 77 69 74 63 68 69 6e 67 20 63 61 6e 20 69 6e 74 72 6f 64 75 63 65 20 61 20 76 61 72 | xt.switching.can.introduce.a.var |
| 854c0 | 69 61 62 6c 65 20 64 65 6c 61 79 20 62 65 74 77 65 65 6e 20 77 68 65 6e 20 74 68 65 20 70 61 63 | iable.delay.between.when.the.pac |
| 854e0 | 6b 65 74 20 69 73 20 72 65 63 65 69 76 65 64 20 6f 6e 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 61 | ket.is.received.on.the.network.a |
| 85500 | 6e 64 20 77 68 65 6e 20 69 74 20 69 73 20 61 63 74 75 61 6c 6c 79 20 70 72 6f 63 65 73 73 65 64 | nd.when.it.is.actually.processed |
| 85520 | 20 62 79 20 74 68 65 20 4e 54 50 20 64 61 65 6d 6f 6e 2e 00 54 68 65 20 63 6c 69 65 6e 74 27 73 | .by.the.NTP.daemon..The.client's |
| 85540 | 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 62 65 20 70 75 74 20 69 6e 74 6f 20 61 20 56 52 46 | .interface.can.be.put.into.a.VRF |
| 85560 | 20 63 6f 6e 74 65 78 74 20 76 69 61 20 61 20 52 41 44 49 55 53 20 41 63 63 65 73 73 2d 41 63 63 | .context.via.a.RADIUS.Access-Acc |
| 85580 | 65 70 74 20 70 61 63 6b 65 74 2c 20 6f 72 20 63 68 61 6e 67 65 64 20 76 69 61 20 52 41 44 49 55 | ept.packet,.or.changed.via.RADIU |
| 855a0 | 53 20 43 6f 41 2e 20 60 60 41 63 63 65 6c 2d 56 52 46 2d 4e 61 6d 65 60 60 20 69 73 20 75 73 65 | S.CoA..``Accel-VRF-Name``.is.use |
| 855c0 | 64 20 66 6f 72 20 74 68 65 73 65 20 70 75 72 70 6f 73 65 73 2e 20 54 68 69 73 20 69 73 20 61 20 | d.for.these.purposes..This.is.a. |
| 855e0 | 63 75 73 74 6f 6d 20 60 41 43 43 45 4c 2d 50 50 50 20 61 74 74 72 69 62 75 74 65 60 5f 2e 20 44 | custom.`ACCEL-PPP.attribute`_..D |
| 85600 | 65 66 69 6e 65 20 69 74 20 69 6e 20 79 6f 75 72 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 | efine.it.in.your.RADIUS.server.. |
| 85620 | 54 68 65 20 63 6c 69 65 6e 74 2c 20 6f 6e 63 65 20 73 75 63 63 65 73 73 66 75 6c 6c 79 20 61 75 | The.client,.once.successfully.au |
| 85640 | 74 68 65 6e 74 69 63 61 74 65 64 2c 20 77 69 6c 6c 20 72 65 63 65 69 76 65 20 61 6e 20 49 50 76 | thenticated,.will.receive.an.IPv |
| 85660 | 34 20 61 6e 64 20 61 6e 20 49 50 76 36 20 2f 36 34 20 61 64 64 72 65 73 73 20 74 6f 20 74 65 72 | 4.and.an.IPv6./64.address.to.ter |
| 85680 | 6d 69 6e 61 74 65 20 74 68 65 20 50 50 50 6f 45 20 65 6e 64 70 6f 69 6e 74 20 6f 6e 20 74 68 65 | minate.the.PPPoE.endpoint.on.the |
| 856a0 | 20 63 6c 69 65 6e 74 20 73 69 64 65 20 61 6e 64 20 61 20 2f 35 36 20 73 75 62 6e 65 74 20 66 6f | .client.side.and.a./56.subnet.fo |
| 856c0 | 72 20 74 68 65 20 63 6c 69 65 6e 74 73 20 69 6e 74 65 72 6e 61 6c 20 75 73 65 2e 00 54 68 65 20 | r.the.clients.internal.use..The. |
| 856e0 | 63 6c 69 65 6e 74 2c 20 6f 6e 63 65 20 73 75 63 63 65 73 73 66 75 6c 6c 79 20 61 75 74 68 65 6e | client,.once.successfully.authen |
| 85700 | 74 69 63 61 74 65 64 2c 20 77 69 6c 6c 20 72 65 63 65 69 76 65 20 61 6e 20 49 50 76 34 20 61 6e | ticated,.will.receive.an.IPv4.an |
| 85720 | 64 20 61 6e 20 49 50 76 36 20 2f 36 34 20 61 64 64 72 65 73 73 20 74 6f 20 74 65 72 6d 69 6e 61 | d.an.IPv6./64.address.to.termina |
| 85740 | 74 65 20 74 68 65 20 70 70 70 6f 65 20 65 6e 64 70 6f 69 6e 74 20 6f 6e 20 74 68 65 20 63 6c 69 | te.the.pppoe.endpoint.on.the.cli |
| 85760 | 65 6e 74 20 73 69 64 65 20 61 6e 64 20 61 20 2f 35 36 20 73 75 62 6e 65 74 20 66 6f 72 20 74 68 | ent.side.and.a./56.subnet.for.th |
| 85780 | 65 20 63 6c 69 65 6e 74 73 20 69 6e 74 65 72 6e 61 6c 20 75 73 65 2e 00 54 68 65 20 63 6c 69 65 | e.clients.internal.use..The.clie |
| 857a0 | 6e 74 73 20 3a 61 62 62 72 3a 60 43 50 45 20 28 43 75 73 74 6f 6d 65 72 20 50 72 65 6d 69 73 65 | nts.:abbr:`CPE.(Customer.Premise |
| 857c0 | 73 20 45 71 75 69 70 6d 65 6e 74 29 60 20 63 61 6e 20 6e 6f 77 20 63 6f 6d 6d 75 6e 69 63 61 74 | s.Equipment)`.can.now.communicat |
| 857e0 | 65 20 76 69 61 20 49 50 76 34 20 6f 72 20 49 50 76 36 2e 20 41 6c 6c 20 64 65 76 69 63 65 73 20 | e.via.IPv4.or.IPv6..All.devices. |
| 85800 | 62 65 68 69 6e 64 20 60 60 32 30 30 31 3a 64 62 38 3a 3a 61 30 30 3a 32 37 66 66 3a 66 65 32 66 | behind.``2001:db8::a00:27ff:fe2f |
| 85820 | 3a 64 38 30 36 2f 36 34 60 60 20 63 61 6e 20 75 73 65 20 61 64 64 72 65 73 73 65 73 20 66 72 6f | :d806/64``.can.use.addresses.fro |
| 85840 | 6d 20 60 60 32 30 30 31 3a 64 62 38 3a 31 3a 3a 2f 35 36 60 60 20 61 6e 64 20 63 61 6e 20 67 6c | m.``2001:db8:1::/56``.and.can.gl |
| 85860 | 6f 62 61 6c 6c 79 20 63 6f 6d 6d 75 6e 69 63 61 74 65 20 77 69 74 68 6f 75 74 20 74 68 65 20 6e | obally.communicate.without.the.n |
| 85880 | 65 65 64 20 6f 66 20 61 6e 79 20 4e 41 54 20 72 75 6c 65 73 2e 00 54 68 65 20 63 6f 6d 6d 61 6e | eed.of.any.NAT.rules..The.comman |
| 858a0 | 64 20 3a 6f 70 63 6d 64 3a 60 73 68 6f 77 20 69 6e 74 65 72 66 61 63 65 73 20 77 69 72 65 67 75 | d.:opcmd:`show.interfaces.wiregu |
| 858c0 | 61 72 64 20 77 67 30 31 20 70 75 62 6c 69 63 2d 6b 65 79 60 20 77 69 6c 6c 20 74 68 65 6e 20 73 | ard.wg01.public-key`.will.then.s |
| 858e0 | 68 6f 77 20 74 68 65 20 70 75 62 6c 69 63 20 6b 65 79 2c 20 77 68 69 63 68 20 6e 65 65 64 73 20 | how.the.public.key,.which.needs. |
| 85900 | 74 6f 20 62 65 20 73 68 61 72 65 64 20 77 69 74 68 20 74 68 65 20 70 65 65 72 2e 00 54 68 65 20 | to.be.shared.with.the.peer..The. |
| 85920 | 63 6f 6d 6d 61 6e 64 20 61 6c 73 6f 20 67 65 6e 65 72 61 74 65 73 20 61 20 63 6f 6e 66 69 67 75 | command.also.generates.a.configu |
| 85940 | 72 61 74 69 6f 6e 20 73 6e 69 70 70 65 64 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 63 6f 70 79 | ration.snipped.which.can.be.copy |
| 85960 | 2f 70 61 73 74 65 64 20 69 6e 74 6f 20 74 68 65 20 56 79 4f 53 20 43 4c 49 20 69 66 20 6e 65 65 | /pasted.into.the.VyOS.CLI.if.nee |
| 85980 | 64 65 64 2e 20 54 68 65 20 73 75 70 70 6c 69 65 64 20 60 60 3c 6e 61 6d 65 3e 60 60 20 6f 6e 20 | ded..The.supplied.``<name>``.on. |
| 859a0 | 74 68 65 20 43 4c 49 20 77 69 6c 6c 20 62 65 63 6f 6d 65 20 74 68 65 20 70 65 65 72 20 6e 61 6d | the.CLI.will.become.the.peer.nam |
| 859c0 | 65 20 69 6e 20 74 68 65 20 73 6e 69 70 70 65 74 2e 00 54 68 65 20 63 6f 6d 6d 61 6e 64 20 61 6c | e.in.the.snippet..The.command.al |
| 859e0 | 73 6f 20 67 65 6e 65 72 61 74 65 73 20 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 6e 69 | so.generates.a.configuration.sni |
| 85a00 | 70 70 65 74 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 63 6f 70 79 2f 70 61 73 74 65 64 20 69 6e | ppet.which.can.be.copy/pasted.in |
| 85a20 | 74 6f 20 74 68 65 20 56 79 4f 53 20 43 4c 49 20 69 66 20 6e 65 65 64 65 64 2e 20 54 68 65 20 73 | to.the.VyOS.CLI.if.needed..The.s |
| 85a40 | 75 70 70 6c 69 65 64 20 60 60 3c 6e 61 6d 65 3e 60 60 20 6f 6e 20 74 68 65 20 43 4c 49 20 77 69 | upplied.``<name>``.on.the.CLI.wi |
| 85a60 | 6c 6c 20 62 65 63 6f 6d 65 20 74 68 65 20 70 65 65 72 20 6e 61 6d 65 20 69 6e 20 74 68 65 20 73 | ll.become.the.peer.name.in.the.s |
| 85a80 | 6e 69 70 70 65 74 2e 00 54 68 65 20 63 6f 6d 6d 61 6e 64 20 62 65 6c 6f 77 20 65 6e 61 62 6c 65 | nippet..The.command.below.enable |
| 85aa0 | 73 20 69 74 2c 20 61 73 73 75 6d 69 6e 67 20 74 68 65 20 52 41 44 49 55 53 20 63 6f 6e 6e 65 63 | s.it,.assuming.the.RADIUS.connec |
| 85ac0 | 74 69 6f 6e 20 68 61 73 20 62 65 65 6e 20 73 65 74 75 70 20 61 6e 64 20 69 73 20 77 6f 72 6b 69 | tion.has.been.setup.and.is.worki |
| 85ae0 | 6e 67 2e 00 54 68 65 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 63 75 72 72 65 6e 74 | ng..The.command.displays.current |
| 85b00 | 20 52 49 50 20 73 74 61 74 75 73 2e 20 49 74 20 69 6e 63 6c 75 64 65 73 20 52 49 50 20 74 69 6d | .RIP.status..It.includes.RIP.tim |
| 85b20 | 65 72 2c 20 66 69 6c 74 65 72 69 6e 67 2c 20 76 65 72 73 69 6f 6e 2c 20 52 49 50 20 65 6e 61 62 | er,.filtering,.version,.RIP.enab |
| 85b40 | 6c 65 64 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 52 49 50 20 70 65 65 72 20 69 6e 66 6f 72 | led.interface.and.RIP.peer.infor |
| 85b60 | 6d 61 74 69 6f 6e 2e 00 54 68 65 20 63 6f 6d 6d 61 6e 64 20 70 6f 6e 20 54 45 53 54 55 4e 4e 45 | mation..The.command.pon.TESTUNNE |
| 85b80 | 4c 20 65 73 74 61 62 6c 69 73 68 65 73 20 74 68 65 20 50 50 54 50 20 74 75 6e 6e 65 6c 20 74 6f | L.establishes.the.PPTP.tunnel.to |
| 85ba0 | 20 74 68 65 20 72 65 6d 6f 74 65 20 73 79 73 74 65 6d 2e 00 54 68 65 20 63 6f 6d 6d 61 6e 64 20 | .the.remote.system..The.command. |
| 85bc0 | 74 72 61 6e 73 6c 61 74 65 73 20 74 6f 20 22 2d 2d 63 70 75 73 3d 3c 6e 75 6d 3e 22 20 77 68 65 | translates.to."--cpus=<num>".whe |
| 85be0 | 6e 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 69 73 20 63 72 65 61 74 65 64 2e 00 54 68 65 20 | n.the.container.is.created..The. |
| 85c00 | 63 6f 6d 6d 61 6e 64 20 74 72 61 6e 73 6c 61 74 65 73 20 74 6f 20 22 2d 2d 6e 65 74 20 68 6f 73 | command.translates.to."--net.hos |
| 85c20 | 74 22 20 77 68 65 6e 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 69 73 20 63 72 65 61 74 65 64 | t".when.the.container.is.created |
| 85c40 | 2e 00 54 68 65 20 63 6f 6d 6d 61 6e 64 20 74 72 61 6e 73 6c 61 74 65 73 20 74 6f 20 22 2d 2d 70 | ..The.command.translates.to."--p |
| 85c60 | 69 64 20 68 6f 73 74 22 20 77 68 65 6e 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 69 73 20 63 | id.host".when.the.container.is.c |
| 85c80 | 72 65 61 74 65 64 2e 00 54 68 65 20 63 6f 6d 70 75 74 65 72 73 20 6f 6e 20 61 6e 20 69 6e 74 65 | reated..The.computers.on.an.inte |
| 85ca0 | 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 63 61 6e 20 75 73 65 20 61 6e 79 20 6f 66 20 74 68 65 20 | rnal.network.can.use.any.of.the. |
| 85cc0 | 61 64 64 72 65 73 73 65 73 20 73 65 74 20 61 73 69 64 65 20 62 79 20 74 68 65 20 3a 61 62 62 72 | addresses.set.aside.by.the.:abbr |
| 85ce0 | 3a 60 49 41 4e 41 20 28 49 6e 74 65 72 6e 65 74 20 41 73 73 69 67 6e 65 64 20 4e 75 6d 62 65 72 | :`IANA.(Internet.Assigned.Number |
| 85d00 | 73 20 41 75 74 68 6f 72 69 74 79 29 60 20 66 6f 72 20 70 72 69 76 61 74 65 20 61 64 64 72 65 73 | s.Authority)`.for.private.addres |
| 85d20 | 73 69 6e 67 20 28 73 65 65 20 3a 72 66 63 3a 60 31 39 31 38 60 29 2e 20 54 68 65 73 65 20 72 65 | sing.(see.:rfc:`1918`)..These.re |
| 85d40 | 73 65 72 76 65 64 20 49 50 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 6e 6f 74 20 69 6e 20 75 | served.IP.addresses.are.not.in.u |
| 85d60 | 73 65 20 6f 6e 20 74 68 65 20 49 6e 74 65 72 6e 65 74 2c 20 73 6f 20 61 6e 20 65 78 74 65 72 6e | se.on.the.Internet,.so.an.extern |
| 85d80 | 61 6c 20 6d 61 63 68 69 6e 65 20 77 69 6c 6c 20 6e 6f 74 20 64 69 72 65 63 74 6c 79 20 72 6f 75 | al.machine.will.not.directly.rou |
| 85da0 | 74 65 20 74 6f 20 74 68 65 6d 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 61 64 64 72 65 73 | te.to.them..The.following.addres |
| 85dc0 | 73 65 73 20 61 72 65 20 72 65 73 65 72 76 65 64 20 66 6f 72 20 70 72 69 76 61 74 65 20 75 73 65 | ses.are.reserved.for.private.use |
| 85de0 | 3a 00 54 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 69 6c 6c 20 6c 6f 6f 6b 20 61 73 | :.The.configuration.will.look.as |
| 85e00 | 20 66 6f 6c 6c 6f 77 73 3a 00 54 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 61 62 6f | .follows:.The.configurations.abo |
| 85e20 | 76 65 20 77 69 6c 6c 20 64 65 66 61 75 6c 74 20 74 6f 20 75 73 69 6e 67 20 32 35 36 2d 62 69 74 | ve.will.default.to.using.256-bit |
| 85e40 | 20 41 45 53 20 69 6e 20 47 43 4d 20 6d 6f 64 65 20 66 6f 72 20 65 6e 63 72 79 70 74 69 6f 6e 20 | .AES.in.GCM.mode.for.encryption. |
| 85e60 | 28 69 66 20 62 6f 74 68 20 73 69 64 65 73 20 73 75 70 70 6f 72 74 20 4e 43 50 29 20 61 6e 64 20 | (if.both.sides.support.NCP).and. |
| 85e80 | 53 48 41 2d 31 20 66 6f 72 20 48 4d 41 43 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 20 53 | SHA-1.for.HMAC.authentication..S |
| 85ea0 | 48 41 2d 31 20 69 73 20 63 6f 6e 73 69 64 65 72 65 64 20 77 65 61 6b 2c 20 62 75 74 20 6f 74 68 | HA-1.is.considered.weak,.but.oth |
| 85ec0 | 65 72 20 68 61 73 68 69 6e 67 20 61 6c 67 6f 72 69 74 68 6d 73 20 61 72 65 20 61 76 61 69 6c 61 | er.hashing.algorithms.are.availa |
| 85ee0 | 62 6c 65 2c 20 61 73 20 61 72 65 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6c 67 6f 72 69 74 68 6d | ble,.as.are.encryption.algorithm |
| 85f00 | 73 3a 00 54 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 61 62 6f 76 65 20 77 69 6c 6c | s:.The.configurations.above.will |
| 85f20 | 20 64 65 66 61 75 6c 74 20 74 6f 20 75 73 69 6e 67 20 32 35 36 2d 62 69 74 20 41 45 53 20 69 6e | .default.to.using.256-bit.AES.in |
| 85f40 | 20 47 43 4d 20 6d 6f 64 65 20 66 6f 72 20 65 6e 63 72 79 70 74 69 6f 6e 20 28 69 66 20 62 6f 74 | .GCM.mode.for.encryption.(if.bot |
| 85f60 | 68 20 73 69 64 65 73 20 73 75 70 70 6f 72 74 20 64 61 74 61 20 63 69 70 68 65 72 20 6e 65 67 6f | h.sides.support.data.cipher.nego |
| 85f80 | 74 69 61 74 69 6f 6e 29 20 61 6e 64 20 53 48 41 2d 31 20 66 6f 72 20 48 4d 41 43 20 61 75 74 68 | tiation).and.SHA-1.for.HMAC.auth |
| 85fa0 | 65 6e 74 69 63 61 74 69 6f 6e 2e 20 53 48 41 2d 31 20 69 73 20 63 6f 6e 73 69 64 65 72 65 64 20 | entication..SHA-1.is.considered. |
| 85fc0 | 77 65 61 6b 2c 20 62 75 74 20 6f 74 68 65 72 20 68 61 73 68 69 6e 67 20 61 6c 67 6f 72 69 74 68 | weak,.but.other.hashing.algorith |
| 85fe0 | 6d 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 2c 20 61 73 20 61 72 65 20 65 6e 63 72 79 70 74 | ms.are.available,.as.are.encrypt |
| 86000 | 69 6f 6e 20 61 6c 67 6f 72 69 74 68 6d 73 3a 00 54 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 | ion.algorithms:.The.connection.s |
| 86020 | 74 61 74 65 20 68 6f 77 65 76 65 72 20 69 73 20 63 6f 6d 70 6c 65 74 65 6c 79 20 69 6e 64 65 70 | tate.however.is.completely.indep |
| 86040 | 65 6e 64 65 6e 74 20 6f 66 20 61 6e 79 20 75 70 70 65 72 2d 6c 65 76 65 6c 20 73 74 61 74 65 2c | endent.of.any.upper-level.state, |
| 86060 | 20 73 75 63 68 20 61 73 20 54 43 50 27 73 20 6f 72 20 53 43 54 50 27 73 20 73 74 61 74 65 2e 20 | .such.as.TCP's.or.SCTP's.state.. |
| 86080 | 50 61 72 74 20 6f 66 20 74 68 65 20 72 65 61 73 6f 6e 20 66 6f 72 20 74 68 69 73 20 69 73 20 74 | Part.of.the.reason.for.this.is.t |
| 860a0 | 68 61 74 20 77 68 65 6e 20 6d 65 72 65 6c 79 20 66 6f 72 77 61 72 64 69 6e 67 20 70 61 63 6b 65 | hat.when.merely.forwarding.packe |
| 860c0 | 74 73 2c 20 69 2e 65 2e 20 6e 6f 20 6c 6f 63 61 6c 20 64 65 6c 69 76 65 72 79 2c 20 74 68 65 20 | ts,.i.e..no.local.delivery,.the. |
| 860e0 | 54 43 50 20 65 6e 67 69 6e 65 20 6d 61 79 20 6e 6f 74 20 6e 65 63 65 73 73 61 72 69 6c 79 20 62 | TCP.engine.may.not.necessarily.b |
| 86100 | 65 20 69 6e 76 6f 6b 65 64 20 61 74 20 61 6c 6c 2e 20 45 76 65 6e 20 63 6f 6e 6e 65 63 74 69 6f | e.invoked.at.all..Even.connectio |
| 86120 | 6e 6c 65 73 73 2d 6d 6f 64 65 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 73 20 73 75 63 68 20 61 73 | nless-mode.transmissions.such.as |
| 86140 | 20 55 44 50 2c 20 49 50 73 65 63 20 28 41 48 2f 45 53 50 29 2c 20 47 52 45 20 61 6e 64 20 6f 74 | .UDP,.IPsec.(AH/ESP),.GRE.and.ot |
| 86160 | 68 65 72 20 74 75 6e 6e 65 6c 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 68 61 76 65 2c 20 61 74 | her.tunneling.protocols.have,.at |
| 86180 | 20 6c 65 61 73 74 2c 20 61 20 70 73 65 75 64 6f 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 | .least,.a.pseudo.connection.stat |
| 861a0 | 65 2e 20 54 68 65 20 68 65 75 72 69 73 74 69 63 20 66 6f 72 20 73 75 63 68 20 70 72 6f 74 6f 63 | e..The.heuristic.for.such.protoc |
| 861c0 | 6f 6c 73 20 69 73 20 6f 66 74 65 6e 20 62 61 73 65 64 20 75 70 6f 6e 20 61 20 70 72 65 73 65 74 | ols.is.often.based.upon.a.preset |
| 861e0 | 20 74 69 6d 65 6f 75 74 20 76 61 6c 75 65 20 66 6f 72 20 69 6e 61 63 74 69 76 69 74 79 2c 20 61 | .timeout.value.for.inactivity,.a |
| 86200 | 66 74 65 72 20 77 68 6f 73 65 20 65 78 70 69 72 61 74 69 6f 6e 20 61 20 4e 65 74 66 69 6c 74 65 | fter.whose.expiration.a.Netfilte |
| 86220 | 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 64 72 6f 70 70 65 64 2e 00 54 68 65 20 63 6f 6e | r.connection.is.dropped..The.con |
| 86240 | 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 65 78 70 65 63 74 20 74 61 62 6c 65 20 63 6f | nection.tracking.expect.table.co |
| 86260 | 6e 74 61 69 6e 73 20 6f 6e 65 20 65 6e 74 72 79 20 66 6f 72 20 65 61 63 68 20 65 78 70 65 63 74 | ntains.one.entry.for.each.expect |
| 86280 | 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 72 65 6c 61 74 65 64 20 74 6f 20 61 6e 20 65 78 69 73 | ed.connection.related.to.an.exis |
| 862a0 | 74 69 6e 67 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 54 68 65 73 65 20 61 72 65 20 67 65 6e 65 72 | ting.connection..These.are.gener |
| 862c0 | 61 6c 6c 79 20 75 73 65 64 20 62 79 20 e2 80 9c 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b | ally.used.by....connection.track |
| 862e0 | 69 6e 67 20 68 65 6c 70 65 72 e2 80 9d 20 6d 6f 64 75 6c 65 73 20 73 75 63 68 20 61 73 20 46 54 | ing.helper....modules.such.as.FT |
| 86300 | 50 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 73 69 7a 65 20 6f 66 20 74 68 65 20 65 78 70 65 63 | P..The.default.size.of.the.expec |
| 86320 | 74 20 74 61 62 6c 65 20 69 73 20 32 30 34 38 20 65 6e 74 72 69 65 73 2e 00 54 68 65 20 63 6f 6e | t.table.is.2048.entries..The.con |
| 86340 | 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 74 61 62 6c 65 20 63 6f 6e 74 61 69 6e 73 20 | nection.tracking.table.contains. |
| 86360 | 6f 6e 65 20 65 6e 74 72 79 20 66 6f 72 20 65 61 63 68 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 62 65 | one.entry.for.each.connection.be |
| 86380 | 69 6e 67 20 74 72 61 63 6b 65 64 20 62 79 20 74 68 65 20 73 79 73 74 65 6d 2e 00 54 68 65 20 63 | ing.tracked.by.the.system..The.c |
| 863a0 | 6f 6e 74 61 69 6e 65 72 20 61 6e 64 20 74 68 65 20 68 6f 73 74 20 73 68 61 72 65 20 74 68 65 20 | ontainer.and.the.host.share.the. |
| 863c0 | 73 61 6d 65 20 70 72 6f 63 65 73 73 20 6e 61 6d 65 73 70 61 63 65 2e 20 54 68 69 73 20 6d 65 61 | same.process.namespace..This.mea |
| 863e0 | 6e 73 20 74 68 61 74 20 70 72 6f 63 65 73 73 65 73 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 74 68 65 | ns.that.processes.running.on.the |
| 86400 | 20 68 6f 73 74 20 61 72 65 20 76 69 73 69 62 6c 65 20 69 6e 73 69 64 65 20 74 68 65 20 63 6f 6e | .host.are.visible.inside.the.con |
| 86420 | 74 61 69 6e 65 72 2c 20 61 6e 64 20 70 72 6f 63 65 73 73 65 73 20 69 6e 73 69 64 65 20 74 68 65 | tainer,.and.processes.inside.the |
| 86440 | 20 63 6f 6e 74 61 69 6e 65 72 20 61 72 65 20 76 69 73 69 62 6c 65 20 6f 6e 20 74 68 65 20 68 6f | .container.are.visible.on.the.ho |
| 86460 | 73 74 2e 00 54 68 65 20 63 75 72 72 65 6e 74 20 61 74 74 72 69 62 75 74 65 20 27 46 69 6c 74 65 | st..The.current.attribute.'Filte |
| 86480 | 72 2d 49 64 27 20 69 73 20 62 65 69 6e 67 20 75 73 65 64 20 61 73 20 64 65 66 61 75 6c 74 20 61 | r-Id'.is.being.used.as.default.a |
| 864a0 | 6e 64 20 63 61 6e 20 62 65 20 73 65 74 75 70 20 77 69 74 68 69 6e 20 52 41 44 49 55 53 3a 00 54 | nd.can.be.setup.within.RADIUS:.T |
| 864c0 | 68 65 20 63 75 72 72 65 6e 74 20 61 74 74 72 69 62 75 74 65 20 60 60 46 69 6c 74 65 72 2d 49 64 | he.current.attribute.``Filter-Id |
| 864e0 | 60 60 20 69 73 20 62 65 69 6e 67 20 75 73 65 64 20 61 73 20 64 65 66 61 75 6c 74 20 61 6e 64 20 | ``.is.being.used.as.default.and. |
| 86500 | 63 61 6e 20 62 65 20 73 65 74 75 70 20 77 69 74 68 69 6e 20 52 41 44 49 55 53 3a 00 54 68 65 20 | can.be.setup.within.RADIUS:.The. |
| 86520 | 63 75 72 72 65 6e 74 20 70 72 6f 74 6f 63 6f 6c 20 69 73 20 76 65 72 73 69 6f 6e 20 34 20 28 4e | current.protocol.is.version.4.(N |
| 86540 | 54 50 76 34 29 2c 20 77 68 69 63 68 20 69 73 20 61 20 70 72 6f 70 6f 73 65 64 20 73 74 61 6e 64 | TPv4),.which.is.a.proposed.stand |
| 86560 | 61 72 64 20 61 73 20 64 6f 63 75 6d 65 6e 74 65 64 20 69 6e 20 3a 72 66 63 3a 60 35 39 30 35 60 | ard.as.documented.in.:rfc:`5905` |
| 86580 | 2e 20 49 74 20 69 73 20 62 61 63 6b 77 61 72 64 20 63 6f 6d 70 61 74 69 62 6c 65 20 77 69 74 68 | ..It.is.backward.compatible.with |
| 865a0 | 20 76 65 72 73 69 6f 6e 20 33 2c 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 3a 72 66 63 3a 60 31 | .version.3,.specified.in.:rfc:`1 |
| 865c0 | 33 30 35 60 2e 00 54 68 65 20 64 61 65 6d 6f 6e 20 64 6f 75 62 6c 65 73 20 74 68 65 20 73 69 7a | 305`..The.daemon.doubles.the.siz |
| 865e0 | 65 20 6f 66 20 74 68 65 20 6e 65 74 6c 69 6e 6b 20 65 76 65 6e 74 20 73 6f 63 6b 65 74 20 62 75 | e.of.the.netlink.event.socket.bu |
| 86600 | 66 66 65 72 20 73 69 7a 65 20 69 66 20 69 74 20 64 65 74 65 63 74 73 20 6e 65 74 6c 69 6e 6b 20 | ffer.size.if.it.detects.netlink. |
| 86620 | 65 76 65 6e 74 20 6d 65 73 73 61 67 65 20 64 72 6f 70 70 69 6e 67 2e 20 54 68 69 73 20 63 6c 61 | event.message.dropping..This.cla |
| 86640 | 75 73 65 20 73 65 74 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 62 75 66 66 65 72 20 73 69 7a 65 | use.sets.the.maximum.buffer.size |
| 86660 | 20 67 72 6f 77 74 68 20 74 68 61 74 20 63 61 6e 20 62 65 20 72 65 61 63 68 65 64 2e 00 54 68 65 | .growth.that.can.be.reached..The |
| 86680 | 20 64 65 66 61 75 6c 74 20 52 41 44 49 55 53 20 61 74 74 72 69 62 75 74 65 20 66 6f 72 20 72 61 | .default.RADIUS.attribute.for.ra |
| 866a0 | 74 65 20 6c 69 6d 69 74 69 6e 67 20 69 73 20 60 60 46 69 6c 74 65 72 2d 49 64 60 60 2c 20 62 75 | te.limiting.is.``Filter-Id``,.bu |
| 866c0 | 74 20 79 6f 75 20 6d 61 79 20 61 6c 73 6f 20 72 65 64 65 66 69 6e 65 20 69 74 2e 00 54 68 65 20 | t.you.may.also.redefine.it..The. |
| 866e0 | 64 65 66 61 75 6c 74 20 56 79 4f 53 20 75 73 65 72 20 61 63 63 6f 75 6e 74 20 28 60 76 79 6f 73 | default.VyOS.user.account.(`vyos |
| 86700 | 60 29 2c 20 61 73 20 77 65 6c 6c 20 61 73 20 6e 65 77 6c 79 20 63 72 65 61 74 65 64 20 75 73 65 | `),.as.well.as.newly.created.use |
| 86720 | 72 20 61 63 63 6f 75 6e 74 73 2c 20 68 61 76 65 20 61 6c 6c 20 63 61 70 61 62 69 6c 69 74 69 65 | r.accounts,.have.all.capabilitie |
| 86740 | 73 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 73 79 73 74 65 6d 2e 20 41 6c 6c 20 61 | s.to.configure.the.system..All.a |
| 86760 | 63 63 6f 75 6e 74 73 20 68 61 76 65 20 73 75 64 6f 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 61 | ccounts.have.sudo.capabilities.a |
| 86780 | 6e 64 20 74 68 65 72 65 66 6f 72 65 20 63 61 6e 20 6f 70 65 72 61 74 65 20 61 73 20 72 6f 6f 74 | nd.therefore.can.operate.as.root |
| 867a0 | 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 68 6f 73 74 | .on.the.system..The.default.host |
| 867c0 | 6e 61 6d 65 20 75 73 65 64 20 69 73 20 60 76 79 6f 73 60 2e 00 54 68 65 20 64 65 66 61 75 6c 74 | name.used.is.`vyos`..The.default |
| 867e0 | 20 69 73 20 31 34 39 32 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 60 60 38 30 32 2e 31 | .is.1492..The.default.is.``802.1 |
| 86800 | 71 60 60 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 6c 65 61 73 65 20 74 69 6d 65 20 66 6f 72 20 | q``..The.default.lease.time.for. |
| 86820 | 44 48 43 50 76 36 20 6c 65 61 73 65 73 20 69 73 20 32 34 20 68 6f 75 72 73 2e 20 54 68 69 73 20 | DHCPv6.leases.is.24.hours..This. |
| 86840 | 63 61 6e 20 62 65 20 63 68 61 6e 67 65 64 20 62 79 20 73 75 70 70 6c 79 69 6e 67 20 61 20 60 60 | can.be.changed.by.supplying.a.`` |
| 86860 | 64 65 66 61 75 6c 74 2d 74 69 6d 65 60 60 2c 20 60 60 6d 61 78 69 6d 75 6d 2d 74 69 6d 65 60 60 | default-time``,.``maximum-time`` |
| 86880 | 20 61 6e 64 20 60 60 6d 69 6e 69 6d 75 6d 2d 74 69 6d 65 60 60 2e 20 41 6c 6c 20 76 61 6c 75 65 | .and.``minimum-time``..All.value |
| 868a0 | 73 20 6e 65 65 64 20 74 6f 20 62 65 20 73 75 70 70 6c 69 65 64 20 69 6e 20 73 65 63 6f 6e 64 73 | s.need.to.be.supplied.in.seconds |
| 868c0 | 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 70 6f 72 74 20 75 64 70 20 69 73 20 73 65 74 20 74 6f | ..The.default.port.udp.is.set.to |
| 868e0 | 20 38 34 37 32 2e 20 49 74 20 63 61 6e 20 62 65 20 63 68 61 6e 67 65 64 20 77 69 74 68 20 60 60 | .8472..It.can.be.changed.with.`` |
| 86900 | 73 65 74 20 69 6e 74 65 72 66 61 63 65 20 76 78 6c 61 6e 20 3c 76 78 6c 61 6e 4e 3e 20 70 6f 72 | set.interface.vxlan.<vxlanN>.por |
| 86920 | 74 20 3c 70 6f 72 74 3e 60 60 00 54 68 65 20 64 65 66 61 75 6c 74 20 74 69 6d 65 20 69 73 20 36 | t.<port>``.The.default.time.is.6 |
| 86940 | 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 63 6f 72 | 0.seconds..The.default.value.cor |
| 86960 | 72 65 73 70 6f 6e 64 73 20 74 6f 20 36 34 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 | responds.to.64..The.default.valu |
| 86980 | 65 20 69 73 20 30 2e 20 54 68 69 73 20 77 69 6c 6c 20 63 61 75 73 65 20 74 68 65 20 63 61 72 72 | e.is.0..This.will.cause.the.carr |
| 869a0 | 69 65 72 20 74 6f 20 62 65 20 61 73 73 65 72 74 65 64 20 28 66 6f 72 20 38 30 32 2e 33 61 64 20 | ier.to.be.asserted.(for.802.3ad. |
| 869c0 | 6d 6f 64 65 29 20 77 68 65 6e 65 76 65 72 20 74 68 65 72 65 20 69 73 20 61 6e 20 61 63 74 69 76 | mode).whenever.there.is.an.activ |
| 869e0 | 65 20 61 67 67 72 65 67 61 74 6f 72 2c 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 | e.aggregator,.regardless.of.the. |
| 86a00 | 6e 75 6d 62 65 72 20 6f 66 20 61 76 61 69 6c 61 62 6c 65 20 6c 69 6e 6b 73 20 69 6e 20 74 68 61 | number.of.available.links.in.tha |
| 86a20 | 74 20 61 67 67 72 65 67 61 74 6f 72 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 | t.aggregator..The.default.value. |
| 86a40 | 69 73 20 33 20 70 61 63 6b 65 74 73 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 | is.3.packets..The.default.value. |
| 86a60 | 69 73 20 33 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 33 30 30 20 73 | is.3..The.default.value.is.300.s |
| 86a80 | 65 63 6f 6e 64 73 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 30 30 | econds..The.default.value.is.600 |
| 86aa0 | 20 73 65 63 6f 6e 64 73 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 37 | .seconds..The.default.value.is.7 |
| 86ac0 | 32 30 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 | 200.seconds..The.default.value.i |
| 86ae0 | 73 20 38 36 34 30 30 20 73 65 63 6f 6e 64 73 20 77 68 69 63 68 20 63 6f 72 72 65 73 70 6f 6e 64 | s.86400.seconds.which.correspond |
| 86b00 | 73 20 74 6f 20 6f 6e 65 20 64 61 79 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 | s.to.one.day..The.default.value. |
| 86b20 | 69 73 20 73 6c 6f 77 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 73 20 66 6f 72 20 | is.slow..The.default.values.for. |
| 86b40 | 74 68 65 20 6d 69 6e 69 6d 75 6d 2d 74 68 72 65 73 68 6f 6c 64 20 64 65 70 65 6e 64 20 6f 6e 20 | the.minimum-threshold.depend.on. |
| 86b60 | 49 50 20 70 72 65 63 65 64 65 6e 63 65 3a 00 54 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 | IP.precedence:.The.destination.p |
| 86b80 | 6f 72 74 20 75 73 65 64 20 66 6f 72 20 63 72 65 61 74 69 6e 67 20 61 20 56 58 4c 41 4e 20 69 6e | ort.used.for.creating.a.VXLAN.in |
| 86ba0 | 74 65 72 66 61 63 65 20 69 6e 20 4c 69 6e 75 78 20 64 65 66 61 75 6c 74 73 20 74 6f 20 69 74 73 | terface.in.Linux.defaults.to.its |
| 86bc0 | 20 70 72 65 2d 73 74 61 6e 64 61 72 64 20 76 61 6c 75 65 20 6f 66 20 38 34 37 32 20 74 6f 20 70 | .pre-standard.value.of.8472.to.p |
| 86be0 | 72 65 73 65 72 76 65 20 62 61 63 6b 77 61 72 64 20 63 6f 6d 70 61 74 69 62 69 6c 69 74 79 2e 20 | reserve.backward.compatibility.. |
| 86c00 | 41 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 64 69 72 65 63 74 69 76 65 20 74 6f 20 73 75 70 | A.configuration.directive.to.sup |
| 86c20 | 70 6f 72 74 20 61 20 75 73 65 72 2d 73 70 65 63 69 66 69 65 64 20 64 65 73 74 69 6e 61 74 69 6f | port.a.user-specified.destinatio |
| 86c40 | 6e 20 70 6f 72 74 20 74 6f 20 6f 76 65 72 72 69 64 65 20 74 68 61 74 20 62 65 68 61 76 69 6f 72 | n.port.to.override.that.behavior |
| 86c60 | 20 69 73 20 61 76 61 69 6c 61 62 6c 65 20 75 73 69 6e 67 20 74 68 65 20 61 62 6f 76 65 20 63 6f | .is.available.using.the.above.co |
| 86c80 | 6d 6d 61 6e 64 2e 00 54 68 65 20 64 65 76 69 63 65 20 63 61 6e 20 6f 6e 6c 79 20 72 65 63 65 69 | mmand..The.device.can.only.recei |
| 86ca0 | 76 65 20 70 61 63 6b 65 74 73 20 77 69 74 68 20 56 4e 49 73 20 63 6f 6e 66 69 67 75 72 65 64 20 | ve.packets.with.VNIs.configured. |
| 86cc0 | 69 6e 20 74 68 65 20 56 4e 49 20 66 69 6c 74 65 72 69 6e 67 20 74 61 62 6c 65 2e 00 54 68 65 20 | in.the.VNI.filtering.table..The. |
| 86ce0 | 64 69 61 6c 6f 67 75 65 20 62 65 74 77 65 65 6e 20 48 41 20 70 61 72 74 6e 65 72 73 20 69 73 20 | dialogue.between.HA.partners.is. |
| 86d00 | 6e 65 69 74 68 65 72 20 65 6e 63 72 79 70 74 65 64 20 6e 6f 72 20 61 75 74 68 65 6e 74 69 63 61 | neither.encrypted.nor.authentica |
| 86d20 | 74 65 64 2e 20 53 69 6e 63 65 20 6d 6f 73 74 20 44 48 43 50 20 73 65 72 76 65 72 73 20 65 78 69 | ted..Since.most.DHCP.servers.exi |
| 86d40 | 73 74 20 77 69 74 68 69 6e 20 61 6e 20 6f 72 67 61 6e 69 73 61 74 69 6f 6e 27 73 20 6f 77 6e 20 | st.within.an.organisation's.own. |
| 86d60 | 73 65 63 75 72 65 20 49 6e 74 72 61 6e 65 74 2c 20 74 68 69 73 20 77 6f 75 6c 64 20 62 65 20 61 | secure.Intranet,.this.would.be.a |
| 86d80 | 6e 20 75 6e 6e 65 63 65 73 73 61 72 79 20 6f 76 65 72 68 65 61 64 2e 20 48 6f 77 65 76 65 72 2c | n.unnecessary.overhead..However, |
| 86da0 | 20 69 66 20 79 6f 75 20 68 61 76 65 20 44 48 43 50 20 48 41 20 70 65 65 72 73 20 77 68 6f 73 65 | .if.you.have.DHCP.HA.peers.whose |
| 86dc0 | 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 73 20 74 72 61 76 65 72 73 65 20 69 6e 73 65 63 75 72 | .communications.traverse.insecur |
| 86de0 | 65 20 6e 65 74 77 6f 72 6b 73 2c 20 74 68 65 6e 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 74 68 | e.networks,.then.we.recommend.th |
| 86e00 | 61 74 20 79 6f 75 20 63 6f 6e 73 69 64 65 72 20 74 68 65 20 75 73 65 20 6f 66 20 56 50 4e 20 74 | at.you.consider.the.use.of.VPN.t |
| 86e20 | 75 6e 6e 65 6c 69 6e 67 20 62 65 74 77 65 65 6e 20 74 68 65 6d 20 74 6f 20 65 6e 73 75 72 65 20 | unneling.between.them.to.ensure. |
| 86e40 | 74 68 61 74 20 74 68 65 20 48 41 20 70 61 72 74 6e 65 72 73 68 69 70 20 69 73 20 69 6d 6d 75 6e | that.the.HA.partnership.is.immun |
| 86e60 | 65 20 74 6f 20 64 69 73 72 75 70 74 69 6f 6e 20 28 61 63 63 69 64 65 6e 74 61 6c 20 6f 72 20 6f | e.to.disruption.(accidental.or.o |
| 86e80 | 74 68 65 72 77 69 73 65 29 20 76 69 61 20 74 68 69 72 64 20 70 61 72 74 69 65 73 2e 00 54 68 65 | therwise).via.third.parties..The |
| 86ea0 | 20 64 69 61 6c 6f 67 75 65 20 62 65 74 77 65 65 6e 20 66 61 69 6c 6f 76 65 72 20 70 61 72 74 6e | .dialogue.between.failover.partn |
| 86ec0 | 65 72 73 20 69 73 20 6e 65 69 74 68 65 72 20 65 6e 63 72 79 70 74 65 64 20 6e 6f 72 20 61 75 74 | ers.is.neither.encrypted.nor.aut |
| 86ee0 | 68 65 6e 74 69 63 61 74 65 64 2e 20 53 69 6e 63 65 20 6d 6f 73 74 20 44 48 43 50 20 73 65 72 76 | henticated..Since.most.DHCP.serv |
| 86f00 | 65 72 73 20 65 78 69 73 74 20 77 69 74 68 69 6e 20 61 6e 20 6f 72 67 61 6e 69 73 61 74 69 6f 6e | ers.exist.within.an.organisation |
| 86f20 | 27 73 20 6f 77 6e 20 73 65 63 75 72 65 20 49 6e 74 72 61 6e 65 74 2c 20 74 68 69 73 20 77 6f 75 | 's.own.secure.Intranet,.this.wou |
| 86f40 | 6c 64 20 62 65 20 61 6e 20 75 6e 6e 65 63 65 73 73 61 72 79 20 6f 76 65 72 68 65 61 64 2e 20 48 | ld.be.an.unnecessary.overhead..H |
| 86f60 | 6f 77 65 76 65 72 2c 20 69 66 20 79 6f 75 20 68 61 76 65 20 44 48 43 50 20 66 61 69 6c 6f 76 65 | owever,.if.you.have.DHCP.failove |
| 86f80 | 72 20 70 65 65 72 73 20 77 68 6f 73 65 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 73 20 74 72 61 | r.peers.whose.communications.tra |
| 86fa0 | 76 65 72 73 65 20 69 6e 73 65 63 75 72 65 20 6e 65 74 77 6f 72 6b 73 2c 20 74 68 65 6e 20 77 65 | verse.insecure.networks,.then.we |
| 86fc0 | 20 72 65 63 6f 6d 6d 65 6e 64 20 74 68 61 74 20 79 6f 75 20 63 6f 6e 73 69 64 65 72 20 74 68 65 | .recommend.that.you.consider.the |
| 86fe0 | 20 75 73 65 20 6f 66 20 56 50 4e 20 74 75 6e 6e 65 6c 69 6e 67 20 62 65 74 77 65 65 6e 20 74 68 | .use.of.VPN.tunneling.between.th |
| 87000 | 65 6d 20 74 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 74 68 65 20 66 61 69 6c 6f 76 65 72 20 70 | em.to.ensure.that.the.failover.p |
| 87020 | 61 72 74 6e 65 72 73 68 69 70 20 69 73 20 69 6d 6d 75 6e 65 20 74 6f 20 64 69 73 72 75 70 74 69 | artnership.is.immune.to.disrupti |
| 87040 | 6f 6e 20 28 61 63 63 69 64 65 6e 74 61 6c 20 6f 72 20 6f 74 68 65 72 77 69 73 65 29 20 76 69 61 | on.(accidental.or.otherwise).via |
| 87060 | 20 74 68 69 72 64 20 70 61 72 74 69 65 73 2e 00 54 68 65 20 64 6f 6d 61 69 6e 2d 6e 61 6d 65 20 | .third.parties..The.domain-name. |
| 87080 | 70 61 72 61 6d 65 74 65 72 20 73 68 6f 75 6c 64 20 62 65 20 74 68 65 20 64 6f 6d 61 69 6e 20 6e | parameter.should.be.the.domain.n |
| 870a0 | 61 6d 65 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 61 70 70 65 6e 64 65 64 20 74 6f 20 74 68 65 | ame.that.will.be.appended.to.the |
| 870c0 | 20 63 6c 69 65 6e 74 27 73 20 68 6f 73 74 6e 61 6d 65 20 74 6f 20 66 6f 72 6d 20 61 20 66 75 6c | .client's.hostname.to.form.a.ful |
| 870e0 | 6c 79 2d 71 75 61 6c 69 66 69 65 64 20 64 6f 6d 61 69 6e 2d 6e 61 6d 65 20 28 46 51 44 4e 29 20 | ly-qualified.domain-name.(FQDN). |
| 87100 | 28 44 48 43 50 20 4f 70 74 69 6f 6e 20 30 31 35 29 2e 00 54 68 65 20 64 6f 6d 61 69 6e 2d 6e 61 | (DHCP.Option.015)..The.domain-na |
| 87120 | 6d 65 20 70 61 72 61 6d 65 74 65 72 20 73 68 6f 75 6c 64 20 62 65 20 74 68 65 20 64 6f 6d 61 69 | me.parameter.should.be.the.domai |
| 87140 | 6e 20 6e 61 6d 65 20 75 73 65 64 20 77 68 65 6e 20 63 6f 6d 70 6c 65 74 69 6e 67 20 44 4e 53 20 | n.name.used.when.completing.DNS. |
| 87160 | 72 65 71 75 65 73 74 20 77 68 65 72 65 20 6e 6f 20 66 75 6c 6c 20 46 51 44 4e 20 69 73 20 70 61 | request.where.no.full.FQDN.is.pa |
| 87180 | 73 73 65 64 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 63 61 6e 20 62 65 20 67 69 76 65 6e 20 6d | ssed..This.option.can.be.given.m |
| 871a0 | 75 6c 74 69 70 6c 65 20 74 69 6d 65 73 20 69 66 20 79 6f 75 20 6e 65 65 64 20 6d 75 6c 74 69 70 | ultiple.times.if.you.need.multip |
| 871c0 | 6c 65 20 73 65 61 72 63 68 20 64 6f 6d 61 69 6e 73 20 28 44 48 43 50 20 4f 70 74 69 6f 6e 20 31 | le.search.domains.(DHCP.Option.1 |
| 871e0 | 31 39 29 2e 00 54 68 65 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 20 61 6c 6c 6f 77 73 20 | 19)..The.dummy.interface.allows. |
| 87200 | 75 73 20 74 6f 20 68 61 76 65 20 61 6e 20 65 71 75 69 76 61 6c 65 6e 74 20 6f 66 20 74 68 65 20 | us.to.have.an.equivalent.of.the. |
| 87220 | 43 69 73 63 6f 20 49 4f 53 20 4c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 20 2d 20 61 | Cisco.IOS.Loopback.interface.-.a |
| 87240 | 20 72 6f 75 74 65 72 2d 69 6e 74 65 72 6e 61 6c 20 69 6e 74 65 72 66 61 63 65 20 77 65 20 63 61 | .router-internal.interface.we.ca |
| 87260 | 6e 20 75 73 65 20 66 6f 72 20 49 50 20 61 64 64 72 65 73 73 65 73 20 74 68 65 20 72 6f 75 74 65 | n.use.for.IP.addresses.the.route |
| 87280 | 72 20 6d 75 73 74 20 6b 6e 6f 77 20 61 62 6f 75 74 2c 20 62 75 74 20 77 68 69 63 68 20 61 72 65 | r.must.know.about,.but.which.are |
| 872a0 | 20 6e 6f 74 20 61 63 74 75 61 6c 6c 79 20 61 73 73 69 67 6e 65 64 20 74 6f 20 61 20 72 65 61 6c | .not.actually.assigned.to.a.real |
| 872c0 | 20 6e 65 74 77 6f 72 6b 2e 00 54 68 65 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 20 69 73 | .network..The.dummy.interface.is |
| 872e0 | 20 72 65 61 6c 6c 79 20 61 20 6c 69 74 74 6c 65 20 65 78 6f 74 69 63 2c 20 62 75 74 20 72 61 74 | .really.a.little.exotic,.but.rat |
| 87300 | 68 65 72 20 75 73 65 66 75 6c 20 6e 65 76 65 72 74 68 65 6c 65 73 73 2e 20 44 75 6d 6d 79 20 69 | her.useful.nevertheless..Dummy.i |
| 87320 | 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 6d 75 63 68 20 6c 69 6b 65 20 74 68 65 20 3a 72 65 66 | nterfaces.are.much.like.the.:ref |
| 87340 | 3a 60 6c 6f 6f 70 62 61 63 6b 2d 69 6e 74 65 72 66 61 63 65 60 20 69 6e 74 65 72 66 61 63 65 2c | :`loopback-interface`.interface, |
| 87360 | 20 65 78 63 65 70 74 20 79 6f 75 20 63 61 6e 20 68 61 76 65 20 61 73 20 6d 61 6e 79 20 61 73 20 | .except.you.can.have.as.many.as. |
| 87380 | 79 6f 75 20 77 61 6e 74 2e 00 54 68 65 20 65 6d 62 65 64 64 65 64 20 53 71 75 69 64 20 70 72 6f | you.want..The.embedded.Squid.pro |
| 873a0 | 78 79 20 63 61 6e 20 75 73 65 20 4c 44 41 50 20 74 6f 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 | xy.can.use.LDAP.to.authenticate. |
| 873c0 | 75 73 65 72 73 20 61 67 61 69 6e 73 74 20 61 20 63 6f 6d 70 61 6e 79 20 77 69 64 65 20 64 69 72 | users.against.a.company.wide.dir |
| 873e0 | 65 63 74 6f 72 79 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 | ectory..The.following.configurat |
| 87400 | 69 6f 6e 20 69 73 20 61 6e 20 65 78 61 6d 70 6c 65 20 6f 66 20 68 6f 77 20 74 6f 20 75 73 65 20 | ion.is.an.example.of.how.to.use. |
| 87420 | 41 63 74 69 76 65 20 44 69 72 65 63 74 6f 72 79 20 61 73 20 61 75 74 68 65 6e 74 69 63 61 74 69 | Active.Directory.as.authenticati |
| 87440 | 6f 6e 20 62 61 63 6b 65 6e 64 2e 20 51 75 65 72 69 65 73 20 61 72 65 20 64 6f 6e 65 20 76 69 61 | on.backend..Queries.are.done.via |
| 87460 | 20 4c 44 41 50 2e 00 54 68 65 20 65 78 61 6d 70 6c 65 20 61 62 6f 76 65 20 75 73 65 73 20 31 39 | .LDAP..The.example.above.uses.19 |
| 87480 | 32 2e 30 2e 32 2e 32 20 61 73 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 2e 20 | 2.0.2.2.as.external.IP.address.. |
| 874a0 | 41 20 4c 41 43 20 6e 6f 72 6d 61 6c 6c 79 20 72 65 71 75 69 72 65 73 20 61 6e 20 61 75 74 68 65 | A.LAC.normally.requires.an.authe |
| 874c0 | 6e 74 69 63 61 74 69 6f 6e 20 70 61 73 73 77 6f 72 64 2c 20 77 68 69 63 68 20 69 73 20 73 65 74 | ntication.password,.which.is.set |
| 874e0 | 20 69 6e 20 74 68 65 20 65 78 61 6d 70 6c 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 6f | .in.the.example.configuration.to |
| 87500 | 20 60 60 6c 6e 73 20 73 68 61 72 65 64 2d 73 65 63 72 65 74 20 27 73 65 63 72 65 74 27 60 60 2e | .``lns.shared-secret.'secret'``. |
| 87520 | 20 54 68 69 73 20 73 65 74 75 70 20 72 65 71 75 69 72 65 73 20 74 68 65 20 43 6f 6d 70 72 65 73 | .This.setup.requires.the.Compres |
| 87540 | 73 69 6f 6e 20 43 6f 6e 74 72 6f 6c 20 50 72 6f 74 6f 63 6f 6c 20 28 43 43 50 29 20 62 65 69 6e | sion.Control.Protocol.(CCP).bein |
| 87560 | 67 20 64 69 73 61 62 6c 65 64 2c 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 60 60 73 65 74 20 76 70 | g.disabled,.the.command.``set.vp |
| 87580 | 6e 20 6c 32 74 70 20 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 20 63 63 70 2d 64 69 73 61 62 6c 65 | n.l2tp.remote-access.ccp-disable |
| 875a0 | 60 60 20 61 63 63 6f 6d 70 6c 69 73 68 65 73 20 74 68 61 74 2e 00 54 68 65 20 65 78 61 6d 70 6c | ``.accomplishes.that..The.exampl |
| 875c0 | 65 20 62 65 6c 6f 77 20 63 6f 76 65 72 73 20 61 20 64 75 61 6c 2d 73 74 61 63 6b 20 63 6f 6e 66 | e.below.covers.a.dual-stack.conf |
| 875e0 | 69 67 75 72 61 74 69 6f 6e 20 76 69 61 20 70 70 70 6f 65 2d 73 65 72 76 65 72 2e 00 54 68 65 20 | iguration.via.pppoe-server..The. |
| 87600 | 65 78 61 6d 70 6c 65 20 62 65 6c 6f 77 20 63 6f 76 65 72 73 20 61 20 64 75 61 6c 2d 73 74 61 63 | example.below.covers.a.dual-stac |
| 87620 | 6b 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 68 65 20 65 78 61 6d 70 6c 65 20 62 65 6c | k.configuration..The.example.bel |
| 87640 | 6f 77 20 75 73 65 73 20 41 43 4e 20 61 73 20 61 63 63 65 73 73 2d 63 6f 6e 63 65 6e 74 72 61 74 | ow.uses.ACN.as.access-concentrat |
| 87660 | 6f 72 20 6e 61 6d 65 2c 20 61 73 73 69 67 6e 73 20 61 6e 20 61 64 64 72 65 73 73 20 66 72 6f 6d | or.name,.assigns.an.address.from |
| 87680 | 20 74 68 65 20 70 6f 6f 6c 20 31 30 2e 31 2e 31 2e 31 30 30 2d 31 31 31 2c 20 74 65 72 6d 69 6e | .the.pool.10.1.1.100-111,.termin |
| 876a0 | 61 74 65 73 20 61 74 20 74 68 65 20 6c 6f 63 61 6c 20 65 6e 64 70 6f 69 6e 74 20 31 30 2e 31 2e | ates.at.the.local.endpoint.10.1. |
| 876c0 | 31 2e 31 20 61 6e 64 20 73 65 72 76 65 73 20 72 65 71 75 65 73 74 73 20 6f 6e 6c 79 20 6f 6e 20 | 1.1.and.serves.requests.only.on. |
| 876e0 | 65 74 68 31 2e 00 54 68 65 20 65 78 61 6d 70 6c 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | eth1..The.example.configuration. |
| 87700 | 62 65 6c 6f 77 20 77 69 6c 6c 20 61 73 73 69 67 6e 20 61 6e 20 49 50 20 74 6f 20 74 68 65 20 63 | below.will.assign.an.IP.to.the.c |
| 87720 | 6c 69 65 6e 74 20 6f 6e 20 74 68 65 20 69 6e 63 6f 6d 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 | lient.on.the.incoming.interface. |
| 87740 | 65 74 68 31 20 77 69 74 68 20 74 68 65 20 63 6c 69 65 6e 74 20 6d 61 63 20 61 64 64 72 65 73 73 | eth1.with.the.client.mac.address |
| 87760 | 20 30 30 3a 35 30 3a 37 39 3a 36 36 3a 36 38 3a 30 30 2e 20 4f 74 68 65 72 20 44 48 43 50 20 64 | .00:50:79:66:68:00..Other.DHCP.d |
| 87780 | 69 73 63 6f 76 65 72 79 20 72 65 71 75 65 73 74 73 20 77 69 6c 6c 20 62 65 20 69 67 6e 6f 72 65 | iscovery.requests.will.be.ignore |
| 877a0 | 64 2c 20 75 6e 6c 65 73 73 20 74 68 65 20 63 6c 69 65 6e 74 20 6d 61 63 20 68 61 73 20 62 65 65 | d,.unless.the.client.mac.has.bee |
| 877c0 | 6e 20 65 6e 61 62 6c 65 64 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 | n.enabled.in.the.configuration.. |
| 877e0 | 54 68 65 20 65 78 61 6d 70 6c 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 62 65 6c 6f 77 20 | The.example.configuration.below. |
| 87800 | 77 69 6c 6c 20 61 73 73 69 67 6e 20 61 6e 20 49 50 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 20 | will.assign.an.IP.to.the.client. |
| 87820 | 6f 6e 20 74 68 65 20 69 6e 63 6f 6d 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 32 20 77 | on.the.incoming.interface.eth2.w |
| 87840 | 69 74 68 20 74 68 65 20 63 6c 69 65 6e 74 20 6d 61 63 20 61 64 64 72 65 73 73 20 30 38 3a 30 30 | ith.the.client.mac.address.08:00 |
| 87860 | 3a 32 37 3a 32 66 3a 64 38 3a 30 36 2e 20 4f 74 68 65 72 20 44 48 43 50 20 64 69 73 63 6f 76 65 | :27:2f:d8:06..Other.DHCP.discove |
| 87880 | 72 79 20 72 65 71 75 65 73 74 73 20 77 69 6c 6c 20 62 65 20 69 67 6e 6f 72 65 64 2c 20 75 6e 6c | ry.requests.will.be.ignored,.unl |
| 878a0 | 65 73 73 20 74 68 65 20 63 6c 69 65 6e 74 20 6d 61 63 20 68 61 73 20 62 65 65 6e 20 65 6e 61 62 | ess.the.client.mac.has.been.enab |
| 878c0 | 6c 65 64 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 68 65 20 65 78 | led.in.the.configuration..The.ex |
| 878e0 | 61 6d 70 6c 65 20 63 72 65 61 74 65 73 20 61 20 77 69 72 65 6c 65 73 73 20 73 74 61 74 69 6f 6e | ample.creates.a.wireless.station |
| 87900 | 20 28 63 6f 6d 6d 6f 6e 6c 79 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 57 69 2d 46 69 20 | .(commonly.referred.to.as.Wi-Fi. |
| 87920 | 63 6c 69 65 6e 74 29 20 74 68 61 74 20 61 63 63 65 73 73 65 73 20 74 68 65 20 6e 65 74 77 6f 72 | client).that.accesses.the.networ |
| 87940 | 6b 20 74 68 72 6f 75 67 68 20 74 68 65 20 57 41 50 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 65 | k.through.the.WAP.defined.in.the |
| 87960 | 20 61 62 6f 76 65 20 65 78 61 6d 70 6c 65 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 70 68 79 73 | .above.example..The.default.phys |
| 87980 | 69 63 61 6c 20 64 65 76 69 63 65 20 28 60 60 70 68 79 30 60 60 29 20 69 73 20 75 73 65 64 2e 00 | ical.device.(``phy0``).is.used.. |
| 879a0 | 54 68 65 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 74 72 61 6e 73 | The.external.IP.address.to.trans |
| 879c0 | 6c 61 74 65 20 74 6f 00 54 68 65 20 66 69 72 65 77 61 6c 6c 20 73 75 70 70 6f 72 74 73 20 74 68 | late.to.The.firewall.supports.th |
| 879e0 | 65 20 63 72 65 61 74 69 6f 6e 20 6f 66 20 67 72 6f 75 70 73 20 66 6f 72 20 61 64 64 72 65 73 73 | e.creation.of.groups.for.address |
| 87a00 | 65 73 2c 20 64 6f 6d 61 69 6e 73 2c 20 69 6e 74 65 72 66 61 63 65 73 2c 20 6d 61 63 2d 61 64 64 | es,.domains,.interfaces,.mac-add |
| 87a20 | 72 65 73 73 65 73 2c 20 6e 65 74 77 6f 72 6b 73 20 61 6e 64 20 70 6f 72 74 20 67 72 6f 75 70 73 | resses,.networks.and.port.groups |
| 87a40 | 2e 20 54 68 69 73 20 67 72 6f 75 70 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 6c 61 74 65 72 20 | ..This.groups.can.be.used.later. |
| 87a60 | 69 6e 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 65 74 20 61 73 20 64 65 73 69 72 65 64 2e 00 | in.firewall.ruleset.as.desired.. |
| 87a80 | 54 68 65 20 66 69 72 65 77 61 6c 6c 20 73 75 70 70 6f 72 74 73 20 74 68 65 20 63 72 65 61 74 69 | The.firewall.supports.the.creati |
| 87aa0 | 6f 6e 20 6f 66 20 67 72 6f 75 70 73 20 66 6f 72 20 70 6f 72 74 73 2c 20 61 64 64 72 65 73 73 65 | on.of.groups.for.ports,.addresse |
| 87ac0 | 73 2c 20 61 6e 64 20 6e 65 74 77 6f 72 6b 73 20 28 69 6d 70 6c 65 6d 65 6e 74 65 64 20 75 73 69 | s,.and.networks.(implemented.usi |
| 87ae0 | 6e 67 20 6e 65 74 66 69 6c 74 65 72 20 69 70 73 65 74 29 20 61 6e 64 20 74 68 65 20 6f 70 74 69 | ng.netfilter.ipset).and.the.opti |
| 87b00 | 6f 6e 20 6f 66 20 69 6e 74 65 72 66 61 63 65 20 6f 72 20 7a 6f 6e 65 20 62 61 73 65 64 20 66 69 | on.of.interface.or.zone.based.fi |
| 87b20 | 72 65 77 61 6c 6c 20 70 6f 6c 69 63 79 2e 00 54 68 65 20 66 69 72 73 74 20 49 50 20 69 6e 20 74 | rewall.policy..The.first.IP.in.t |
| 87b40 | 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 6e 65 74 77 6f 72 6b 20 69 73 20 72 65 73 65 72 76 65 64 | he.container.network.is.reserved |
| 87b60 | 20 62 79 20 74 68 65 20 65 6e 67 69 6e 65 20 61 6e 64 20 63 61 6e 6e 6f 74 20 62 65 20 75 73 65 | .by.the.engine.and.cannot.be.use |
| 87b80 | 64 00 54 68 65 20 66 69 72 73 74 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 70 61 72 61 6d | d.The.first.address.of.the.param |
| 87ba0 | 65 74 65 72 20 60 60 63 6c 69 65 6e 74 2d 73 75 62 6e 65 74 60 60 2c 20 77 69 6c 6c 20 62 65 20 | eter.``client-subnet``,.will.be. |
| 87bc0 | 75 73 65 64 20 61 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 2e 20 43 6f 6e | used.as.the.default.gateway..Con |
| 87be0 | 6e 65 63 74 65 64 20 73 65 73 73 69 6f 6e 73 20 63 61 6e 20 62 65 20 63 68 65 63 6b 65 64 20 76 | nected.sessions.can.be.checked.v |
| 87c00 | 69 61 20 74 68 65 20 60 60 73 68 6f 77 20 69 70 6f 65 2d 73 65 72 76 65 72 20 73 65 73 73 69 6f | ia.the.``show.ipoe-server.sessio |
| 87c20 | 6e 73 60 60 20 63 6f 6d 6d 61 6e 64 2e 00 54 68 65 20 66 69 72 73 74 20 61 6e 64 20 61 72 67 75 | ns``.command..The.first.and.argu |
| 87c40 | 61 62 6c 79 20 63 6c 65 61 6e 65 72 20 6f 70 74 69 6f 6e 20 69 73 20 74 6f 20 6d 61 6b 65 20 79 | ably.cleaner.option.is.to.make.y |
| 87c60 | 6f 75 72 20 49 50 73 65 63 20 70 6f 6c 69 63 79 20 6d 61 74 63 68 20 47 52 45 20 70 61 63 6b 65 | our.IPsec.policy.match.GRE.packe |
| 87c80 | 74 73 20 62 65 74 77 65 65 6e 20 65 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 65 73 20 6f 66 | ts.between.external.addresses.of |
| 87ca0 | 20 79 6f 75 72 20 72 6f 75 74 65 72 73 2e 20 54 68 69 73 20 69 73 20 74 68 65 20 62 65 73 74 20 | .your.routers..This.is.the.best. |
| 87cc0 | 6f 70 74 69 6f 6e 20 69 66 20 62 6f 74 68 20 72 6f 75 74 65 72 73 20 68 61 76 65 20 73 74 61 74 | option.if.both.routers.have.stat |
| 87ce0 | 69 63 20 65 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 65 73 2e 00 54 68 65 20 66 69 72 73 74 | ic.external.addresses..The.first |
| 87d00 | 20 66 6c 6f 77 20 63 6f 6e 74 72 6f 6c 20 6d 65 63 68 61 6e 69 73 6d 2c 20 74 68 65 20 70 61 75 | .flow.control.mechanism,.the.pau |
| 87d20 | 73 65 20 66 72 61 6d 65 2c 20 77 61 73 20 64 65 66 69 6e 65 64 20 62 79 20 74 68 65 20 49 45 45 | se.frame,.was.defined.by.the.IEE |
| 87d40 | 45 20 38 30 32 2e 33 78 20 73 74 61 6e 64 61 72 64 2e 00 54 68 65 20 66 69 72 73 74 20 69 70 20 | E.802.3x.standard..The.first.ip. |
| 87d60 | 61 64 64 72 65 73 73 20 69 73 20 74 68 65 20 52 50 27 73 20 61 64 64 72 65 73 73 20 61 6e 64 20 | address.is.the.RP's.address.and. |
| 87d80 | 74 68 65 20 73 65 63 6f 6e 64 20 76 61 6c 75 65 20 69 73 20 74 68 65 20 6d 61 74 63 68 69 6e 67 | the.second.value.is.the.matching |
| 87da0 | 20 70 72 65 66 69 78 20 6f 66 20 67 72 6f 75 70 20 72 61 6e 67 65 73 20 63 6f 76 65 72 65 64 2e | .prefix.of.group.ranges.covered. |
| 87dc0 | 00 54 68 65 20 66 69 72 73 74 20 72 65 67 69 73 74 72 61 74 69 6f 6e 20 72 65 71 75 65 73 74 20 | .The.first.registration.request. |
| 87de0 | 69 73 20 73 65 6e 74 20 74 6f 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 20 62 72 6f 61 64 63 61 73 | is.sent.to.the.protocol.broadcas |
| 87e00 | 74 20 61 64 64 72 65 73 73 2c 20 61 6e 64 20 74 68 65 20 73 65 72 76 65 72 27 73 20 72 65 61 6c | t.address,.and.the.server's.real |
| 87e20 | 20 70 72 6f 74 6f 63 6f 6c 20 61 64 64 72 65 73 73 20 69 73 20 64 79 6e 61 6d 69 63 61 6c 6c 79 | .protocol.address.is.dynamically |
| 87e40 | 20 64 65 74 65 63 74 65 64 20 66 72 6f 6d 20 74 68 65 20 66 69 72 73 74 20 72 65 67 69 73 74 72 | .detected.from.the.first.registr |
| 87e60 | 61 74 69 6f 6e 20 72 65 70 6c 79 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 50 50 50 20 63 | ation.reply..The.following.PPP.c |
| 87e80 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 65 73 74 73 20 4d 53 43 48 41 50 2d 76 32 3a 00 54 68 | onfiguration.tests.MSCHAP-v2:.Th |
| 87ea0 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 60 72 65 63 65 69 76 65 2d 66 69 6c 74 65 72 60 20 6d 6f 64 | e.following.`receive-filter`.mod |
| 87ec0 | 65 73 20 63 61 6e 20 62 65 20 73 65 6c 65 63 74 65 64 3a 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e | es.can.be.selected:.The.followin |
| 87ee0 | 67 20 63 6f 6d 6d 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 67 65 6e 65 72 61 74 | g.command.can.be.used.to.generat |
| 87f00 | 65 20 74 68 65 20 4f 54 50 20 6b 65 79 20 61 73 20 77 65 6c 6c 20 61 73 20 74 68 65 20 43 4c 49 | e.the.OTP.key.as.well.as.the.CLI |
| 87f20 | 20 63 6f 6d 6d 61 6e 64 73 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 6d 3a 00 54 68 65 | .commands.to.configure.them:.The |
| 87f40 | 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 20 75 73 65 73 20 74 68 65 20 65 78 70 6c | .following.command.uses.the.expl |
| 87f60 | 69 63 69 74 2d 6e 75 6c 6c 20 6c 61 62 65 6c 20 76 61 6c 75 65 20 66 6f 72 20 61 6c 6c 20 74 68 | icit-null.label.value.for.all.th |
| 87f80 | 65 20 42 47 50 20 69 6e 73 74 61 6e 63 65 73 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 | e.BGP.instances..The.following.c |
| 87fa0 | 6f 6d 6d 61 6e 64 73 20 6c 65 74 20 79 6f 75 20 63 68 65 63 6b 20 74 75 6e 6e 65 6c 20 73 74 61 | ommands.let.you.check.tunnel.sta |
| 87fc0 | 74 75 73 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 20 6c 65 74 20 | tus..The.following.commands.let. |
| 87fe0 | 79 6f 75 20 72 65 73 65 74 20 4f 70 65 6e 56 50 4e 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 | you.reset.OpenVPN..The.following |
| 88000 | 20 63 6f 6d 6d 61 6e 64 73 20 74 72 61 6e 73 6c 61 74 65 20 74 6f 20 22 2d 2d 6e 65 74 20 68 6f | .commands.translate.to."--net.ho |
| 88020 | 73 74 22 20 77 68 65 6e 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 69 73 20 63 72 65 61 74 65 | st".when.the.container.is.create |
| 88040 | 64 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 20 77 6f 75 6c 64 20 62 | d.The.following.commands.would.b |
| 88060 | 65 20 72 65 71 75 69 72 65 64 20 74 6f 20 73 65 74 20 6f 70 74 69 6f 6e 73 20 66 6f 72 20 61 20 | e.required.to.set.options.for.a. |
| 88080 | 67 69 76 65 6e 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 69 | given.dynamic.routing.protocol.i |
| 880a0 | 6e 73 69 64 65 20 61 20 67 69 76 65 6e 20 76 72 66 3a 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 | nside.a.given.vrf:.The.following |
| 880c0 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 64 65 6d 6f 6e 73 74 72 61 74 65 73 20 68 6f 77 20 | .configuration.demonstrates.how. |
| 880e0 | 74 6f 20 75 73 65 20 56 79 4f 53 20 74 6f 20 61 63 68 69 65 76 65 20 6c 6f 61 64 20 62 61 6c 61 | to.use.VyOS.to.achieve.load.bala |
| 88100 | 6e 63 69 6e 67 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 2e 00 | ncing.based.on.the.domain.name.. |
| 88120 | 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 78 70 6c | The.following.configuration.expl |
| 88140 | 69 63 69 74 6c 79 20 6a 6f 69 6e 73 20 6d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 70 20 60 66 66 | icitly.joins.multicast.group.`ff |
| 88160 | 31 35 3a 3a 31 32 33 34 60 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 60 65 74 68 31 60 20 61 6e | 15::1234`.on.interface.`eth1`.an |
| 88180 | 64 20 73 6f 75 72 63 65 2d 73 70 65 63 69 66 69 63 20 6d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 | d.source-specific.multicast.grou |
| 881a0 | 70 20 60 66 66 31 35 3a 3a 35 36 37 38 60 20 77 69 74 68 20 73 6f 75 72 63 65 20 61 64 64 72 65 | p.`ff15::5678`.with.source.addre |
| 881c0 | 73 73 20 60 32 30 30 31 3a 64 62 38 3a 3a 31 60 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 60 65 | ss.`2001:db8::1`.on.interface.`e |
| 881e0 | 74 68 31 60 3a 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | th1`:.The.following.configuratio |
| 88200 | 6e 20 6f 6e 20 56 79 4f 53 20 61 70 70 6c 69 65 73 20 74 6f 20 61 6c 6c 20 66 6f 6c 6c 6f 77 69 | n.on.VyOS.applies.to.all.followi |
| 88220 | 6e 67 20 33 72 64 20 70 61 72 74 79 20 76 65 6e 64 6f 72 73 2e 20 49 74 20 63 72 65 61 74 65 73 | ng.3rd.party.vendors..It.creates |
| 88240 | 20 61 20 62 6f 6e 64 20 77 69 74 68 20 74 77 6f 20 6c 69 6e 6b 73 20 61 6e 64 20 56 4c 41 4e 20 | .a.bond.with.two.links.and.VLAN. |
| 88260 | 31 30 2c 20 31 30 30 20 6f 6e 20 74 68 65 20 62 6f 6e 64 65 64 20 69 6e 74 65 72 66 61 63 65 73 | 10,.100.on.the.bonded.interfaces |
| 88280 | 20 77 69 74 68 20 61 20 70 65 72 20 56 49 46 20 49 50 76 34 20 61 64 64 72 65 73 73 2e 00 54 68 | .with.a.per.VIF.IPv4.address..Th |
| 882a0 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 72 65 76 65 72 73 | e.following.configuration.revers |
| 882c0 | 65 2d 70 72 6f 78 79 20 74 65 72 6d 69 6e 61 74 65 20 53 53 4c 2e 00 54 68 65 20 66 6f 6c 6c 6f | e-proxy.terminate.SSL..The.follo |
| 882e0 | 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 65 72 6d 69 6e 61 74 65 73 20 53 53 | wing.configuration.terminates.SS |
| 88300 | 4c 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 72 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 | L.on.the.router..The.following.c |
| 88320 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 65 72 6d 69 6e 61 74 65 73 20 69 6e 63 6f 6d 69 6e 67 | onfiguration.terminates.incoming |
| 88340 | 20 48 54 54 50 53 20 74 72 61 66 66 69 63 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 72 2c 20 74 68 | .HTTPS.traffic.on.the.router,.th |
| 88360 | 65 6e 20 72 65 2d 65 6e 63 72 79 70 74 73 20 74 68 65 20 74 72 61 66 66 69 63 20 61 6e 64 20 73 | en.re-encrypts.the.traffic.and.s |
| 88380 | 65 6e 64 73 20 74 6f 20 74 68 65 20 62 61 63 6b 65 6e 64 20 73 65 72 76 65 72 20 76 69 61 20 48 | ends.to.the.backend.server.via.H |
| 883a0 | 54 54 50 53 2e 20 54 68 69 73 20 69 73 20 75 73 65 66 75 6c 20 69 66 20 65 6e 63 72 79 70 74 69 | TTPS..This.is.useful.if.encrypti |
| 883c0 | 6f 6e 20 69 73 20 72 65 71 75 69 72 65 64 20 66 6f 72 20 62 6f 74 68 20 6c 65 67 73 2c 20 62 75 | on.is.required.for.both.legs,.bu |
| 883e0 | 74 20 79 6f 75 20 64 6f 20 6e 6f 74 20 77 61 6e 74 20 74 6f 20 69 6e 73 74 61 6c 6c 20 70 75 62 | t.you.do.not.want.to.install.pub |
| 88400 | 6c 69 63 6c 79 20 74 72 75 73 74 65 64 20 63 65 72 74 69 66 69 63 61 74 65 73 20 6f 6e 20 65 61 | licly.trusted.certificates.on.ea |
| 88420 | 63 68 20 62 61 63 6b 65 6e 64 20 73 65 72 76 65 72 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 | ch.backend.server..The.following |
| 88440 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 69 6c 6c 20 61 73 73 69 67 6e 20 61 20 2f 36 34 | .configuration.will.assign.a./64 |
| 88460 | 20 70 72 65 66 69 78 20 6f 75 74 20 6f 66 20 61 20 2f 35 36 20 64 65 6c 65 67 61 74 69 6f 6e 20 | .prefix.out.of.a./56.delegation. |
| 88480 | 74 6f 20 65 74 68 30 2e 20 54 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 61 73 73 69 67 6e | to.eth0..The.IPv6.address.assign |
| 884a0 | 65 64 20 74 6f 20 65 74 68 30 20 77 69 6c 6c 20 62 65 20 3c 70 72 65 66 69 78 3e 3a 3a 66 66 66 | ed.to.eth0.will.be.<prefix>::fff |
| 884c0 | 66 2f 36 34 2e 20 49 66 20 79 6f 75 20 64 6f 20 6e 6f 74 20 6b 6e 6f 77 20 74 68 65 20 70 72 65 | f/64..If.you.do.not.know.the.pre |
| 884e0 | 66 69 78 20 73 69 7a 65 20 64 65 6c 65 67 61 74 65 64 20 74 6f 20 79 6f 75 2c 20 73 74 61 72 74 | fix.size.delegated.to.you,.start |
| 88500 | 20 77 69 74 68 20 73 6c 61 2d 6c 65 6e 20 30 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 | .with.sla-len.0..The.following.c |
| 88520 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 69 6c 6c 20 73 65 74 75 70 20 61 20 50 50 50 6f 45 20 | onfiguration.will.setup.a.PPPoE. |
| 88540 | 73 65 73 73 69 6f 6e 20 73 6f 75 72 63 65 20 66 72 6f 6d 20 65 74 68 31 20 61 6e 64 20 61 73 73 | session.source.from.eth1.and.ass |
| 88560 | 69 67 6e 20 61 20 2f 36 34 20 70 72 65 66 69 78 20 6f 75 74 20 6f 66 20 61 20 2f 35 36 20 64 65 | ign.a./64.prefix.out.of.a./56.de |
| 88580 | 6c 65 67 61 74 69 6f 6e 20 28 72 65 71 75 65 73 74 65 64 20 66 72 6f 6d 20 74 68 65 20 49 53 50 | legation.(requested.from.the.ISP |
| 885a0 | 29 20 74 6f 20 65 74 68 30 2e 20 54 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 61 73 73 69 | ).to.eth0..The.IPv6.address.assi |
| 885c0 | 67 6e 65 64 20 74 6f 20 65 74 68 30 20 77 69 6c 6c 20 62 65 20 3c 70 72 65 66 69 78 3e 3a 3a 31 | gned.to.eth0.will.be.<prefix>::1 |
| 885e0 | 2f 36 34 2e 20 49 66 20 79 6f 75 20 64 6f 20 6e 6f 74 20 6b 6e 6f 77 20 74 68 65 20 70 72 65 66 | /64..If.you.do.not.know.the.pref |
| 88600 | 69 78 20 73 69 7a 65 20 64 65 6c 65 67 61 74 65 64 20 74 6f 20 79 6f 75 2c 20 73 74 61 72 74 20 | ix.size.delegated.to.you,.start. |
| 88620 | 77 69 74 68 20 73 6c 61 2d 6c 65 6e 20 30 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 | with.sla-len.0..The.following.ex |
| 88640 | 61 6d 70 6c 65 20 61 6c 6c 6f 77 73 20 56 79 4f 53 20 74 6f 20 75 73 65 20 3a 61 62 62 72 3a 60 | ample.allows.VyOS.to.use.:abbr:` |
| 88660 | 50 42 52 20 28 50 6f 6c 69 63 79 2d 42 61 73 65 64 20 52 6f 75 74 69 6e 67 29 60 20 66 6f 72 20 | PBR.(Policy-Based.Routing)`.for. |
| 88680 | 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 6f 72 69 67 69 6e 61 74 65 64 20 66 72 6f 6d 20 74 | traffic,.which.originated.from.t |
| 886a0 | 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2e 20 54 68 61 74 20 73 6f 6c 75 74 69 6f 6e 20 | he.router.itself..That.solution. |
| 886c0 | 66 6f 72 20 6d 75 6c 74 69 70 6c 65 20 49 53 50 27 73 20 61 6e 64 20 56 79 4f 53 20 72 6f 75 74 | for.multiple.ISP's.and.VyOS.rout |
| 886e0 | 65 72 20 77 69 6c 6c 20 72 65 73 70 6f 6e 64 20 66 72 6f 6d 20 74 68 65 20 73 61 6d 65 20 69 6e | er.will.respond.from.the.same.in |
| 88700 | 74 65 72 66 61 63 65 20 74 68 61 74 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 | terface.that.the.packet.was.rece |
| 88720 | 69 76 65 64 2e 20 41 6c 73 6f 2c 20 69 74 20 75 73 65 64 2c 20 69 66 20 77 65 20 77 61 6e 74 20 | ived..Also,.it.used,.if.we.want. |
| 88740 | 74 68 61 74 20 6f 6e 65 20 56 50 4e 20 74 75 6e 6e 65 6c 20 74 6f 20 62 65 20 74 68 72 6f 75 67 | that.one.VPN.tunnel.to.be.throug |
| 88760 | 68 20 6f 6e 65 20 70 72 6f 76 69 64 65 72 2c 20 61 6e 64 20 74 68 65 20 73 65 63 6f 6e 64 20 74 | h.one.provider,.and.the.second.t |
| 88780 | 68 72 6f 75 67 68 20 61 6e 6f 74 68 65 72 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 | hrough.another..The.following.ex |
| 887a0 | 61 6d 70 6c 65 20 63 72 65 61 74 65 73 20 61 20 57 41 50 2e 20 57 68 65 6e 20 63 6f 6e 66 69 67 | ample.creates.a.WAP..When.config |
| 887c0 | 75 72 69 6e 67 20 6d 75 6c 74 69 70 6c 65 20 57 41 50 20 69 6e 74 65 72 66 61 63 65 73 2c 20 79 | uring.multiple.WAP.interfaces,.y |
| 887e0 | 6f 75 20 6d 75 73 74 20 73 70 65 63 69 66 79 20 75 6e 69 71 75 65 20 49 50 20 61 64 64 72 65 73 | ou.must.specify.unique.IP.addres |
| 88800 | 73 65 73 2c 20 63 68 61 6e 6e 65 6c 73 2c 20 4e 65 74 77 6f 72 6b 20 49 44 73 20 63 6f 6d 6d 6f | ses,.channels,.Network.IDs.commo |
| 88820 | 6e 6c 79 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 3a 61 62 62 72 3a 60 53 53 49 44 20 28 | nly.referred.to.as.:abbr:`SSID.( |
| 88840 | 53 65 72 76 69 63 65 20 53 65 74 20 49 64 65 6e 74 69 66 69 65 72 29 60 2c 20 61 6e 64 20 4d 41 | Service.Set.Identifier)`,.and.MA |
| 88860 | 43 20 61 64 64 72 65 73 73 65 73 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 | C.addresses..The.following.examp |
| 88880 | 6c 65 20 69 73 20 62 61 73 65 64 20 6f 6e 20 61 20 53 69 65 72 72 61 20 57 69 72 65 6c 65 73 73 | le.is.based.on.a.Sierra.Wireless |
| 888a0 | 20 4d 43 37 37 31 30 20 6d 69 6e 69 50 43 49 65 20 63 61 72 64 20 28 6f 6e 6c 79 20 74 68 65 20 | .MC7710.miniPCIe.card.(only.the. |
| 888c0 | 66 6f 72 6d 20 66 61 63 74 6f 72 20 69 6e 20 72 65 61 6c 69 74 79 20 69 74 20 72 75 6e 73 20 55 | form.factor.in.reality.it.runs.U |
| 888e0 | 42 53 29 20 61 6e 64 20 44 65 75 74 73 63 68 65 20 54 65 6c 65 6b 6f 6d 20 61 73 20 49 53 50 2e | BS).and.Deutsche.Telekom.as.ISP. |
| 88900 | 20 54 68 65 20 63 61 72 64 20 69 73 20 61 73 73 65 6d 62 6c 65 64 20 69 6e 74 6f 20 61 20 3a 72 | .The.card.is.assembled.into.a.:r |
| 88920 | 65 66 3a 60 70 63 2d 65 6e 67 69 6e 65 73 2d 61 70 75 34 60 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 | ef:`pc-engines-apu4`..The.follow |
| 88940 | 69 6e 67 20 65 78 61 6d 70 6c 65 20 74 6f 70 6f 6c 6f 67 79 20 77 61 73 20 62 75 69 6c 74 20 75 | ing.example.topology.was.built.u |
| 88960 | 73 69 6e 67 20 45 56 45 2d 4e 47 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 | sing.EVE-NG..The.following.examp |
| 88980 | 6c 65 20 77 69 6c 6c 20 73 68 6f 77 20 68 6f 77 20 56 79 4f 53 20 63 61 6e 20 62 65 20 75 73 65 | le.will.show.how.VyOS.can.be.use |
| 889a0 | 64 20 74 6f 20 72 65 64 69 72 65 63 74 20 77 65 62 20 74 72 61 66 66 69 63 20 74 6f 20 61 6e 20 | d.to.redirect.web.traffic.to.an. |
| 889c0 | 65 78 74 65 72 6e 61 6c 20 74 72 61 6e 73 70 61 72 65 6e 74 20 70 72 6f 78 79 3a 00 54 68 65 20 | external.transparent.proxy:.The. |
| 889e0 | 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 73 20 73 68 6f 77 20 68 6f 77 20 74 6f 20 63 | following.examples.show.how.to.c |
| 88a00 | 6f 6e 66 69 67 75 72 65 20 4e 41 54 36 34 20 6f 6e 20 61 20 56 79 4f 53 20 72 6f 75 74 65 72 2e | onfigure.NAT64.on.a.VyOS.router. |
| 88a20 | 20 54 68 65 20 31 39 32 2e 30 2e 32 2e 31 30 20 61 64 64 72 65 73 73 20 69 73 20 75 73 65 64 20 | .The.192.0.2.10.address.is.used. |
| 88a40 | 61 73 20 74 68 65 20 49 50 76 34 20 61 64 64 72 65 73 73 20 66 6f 72 20 74 68 65 20 74 72 61 6e | as.the.IPv4.address.for.the.tran |
| 88a60 | 73 6c 61 74 69 6f 6e 20 70 6f 6f 6c 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d | slation.pool..The.following.exam |
| 88a80 | 70 6c 65 73 20 77 69 6c 6c 20 73 68 6f 77 20 76 61 6c 69 64 20 63 6f 6e 66 69 67 75 72 61 74 69 | ples.will.show.valid.configurati |
| 88aa0 | 6f 6e 73 20 66 6f 72 20 57 69 46 69 2d 36 20 28 32 2e 34 47 48 7a 29 20 61 6e 64 20 57 69 46 69 | ons.for.WiFi-6.(2.4GHz).and.WiFi |
| 88ac0 | 2d 36 65 20 28 36 47 48 7a 29 20 41 63 63 65 73 73 2d 50 6f 69 6e 74 73 20 77 69 74 68 20 74 68 | -6e.(6GHz).Access-Points.with.th |
| 88ae0 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 68 61 72 61 63 74 65 72 69 73 74 69 63 73 3a 00 54 68 65 | e.following.characteristics:.The |
| 88b00 | 20 66 6f 6c 6c 6f 77 69 6e 67 20 68 61 72 64 77 61 72 65 20 6d 6f 64 75 6c 65 73 20 68 61 76 65 | .following.hardware.modules.have |
| 88b20 | 20 62 65 65 6e 20 74 65 73 74 65 64 20 73 75 63 63 65 73 73 66 75 6c 6c 79 20 69 6e 20 61 6e 20 | .been.tested.successfully.in.an. |
| 88b40 | 3a 72 65 66 3a 60 70 63 2d 65 6e 67 69 6e 65 73 2d 61 70 75 34 60 20 62 6f 61 72 64 3a 00 54 68 | :ref:`pc-engines-apu4`.board:.Th |
| 88b60 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 69 73 20 74 68 65 20 63 6f 6e 66 69 67 20 66 6f 72 20 74 68 | e.following.is.the.config.for.th |
| 88b80 | 65 20 69 50 68 6f 6e 65 20 70 65 65 72 20 61 62 6f 76 65 2e 20 49 74 27 73 20 69 6d 70 6f 72 74 | e.iPhone.peer.above..It's.import |
| 88ba0 | 61 6e 74 20 74 6f 20 6e 6f 74 65 20 74 68 61 74 20 74 68 65 20 60 60 41 6c 6c 6f 77 65 64 49 50 | ant.to.note.that.the.``AllowedIP |
| 88bc0 | 73 60 60 20 77 69 6c 64 63 61 72 64 20 73 65 74 74 69 6e 67 20 64 69 72 65 63 74 73 20 61 6c 6c | s``.wildcard.setting.directs.all |
| 88be0 | 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 74 72 61 66 66 69 63 20 74 68 72 6f 75 67 68 20 74 | .IPv4.and.IPv6.traffic.through.t |
| 88c00 | 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 72 6f | he.connection..The.following.pro |
| 88c20 | 74 6f 63 6f 6c 73 20 63 61 6e 20 62 65 20 75 73 65 64 3a 20 61 6e 79 2c 20 62 61 62 65 6c 2c 20 | tocols.can.be.used:.any,.babel,. |
| 88c40 | 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 65 69 67 72 70 2c 20 69 73 69 73 2c 20 6b 65 72 | bgp,.connected,.eigrp,.isis,.ker |
| 88c60 | 6e 65 6c 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2c 20 74 61 62 6c 65 00 54 68 | nel,.ospf,.rip,.static,.table.Th |
| 88c80 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 63 61 6e 20 62 65 20 75 73 65 | e.following.protocols.can.be.use |
| 88ca0 | 64 3a 20 61 6e 79 2c 20 62 61 62 65 6c 2c 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 69 | d:.any,.babel,.bgp,.connected,.i |
| 88cc0 | 73 69 73 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 76 33 2c 20 72 69 70 6e 67 2c 20 73 74 61 74 | sis,.kernel,.ospfv3,.ripng,.stat |
| 88ce0 | 69 63 2c 20 74 61 62 6c 65 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 74 72 75 63 74 75 72 | ic,.table.The.following.structur |
| 88d00 | 65 20 72 65 73 70 72 65 73 65 6e 74 20 74 68 65 20 63 6c 69 20 73 74 72 75 63 74 75 72 65 2e 00 | e.respresent.the.cli.structure.. |
| 88d20 | 54 68 65 20 66 6f 72 6d 75 6c 61 20 66 6f 72 20 75 6e 66 72 61 67 6d 65 6e 74 65 64 20 54 43 50 | The.formula.for.unfragmented.TCP |
| 88d40 | 20 61 6e 64 20 55 44 50 20 70 61 63 6b 65 74 73 20 69 73 00 54 68 65 20 66 6f 72 77 61 72 64 69 | .and.UDP.packets.is.The.forwardi |
| 88d60 | 6e 67 20 64 65 6c 61 79 20 74 69 6d 65 20 69 73 20 74 68 65 20 74 69 6d 65 20 73 70 65 6e 74 20 | ng.delay.time.is.the.time.spent. |
| 88d80 | 69 6e 20 65 61 63 68 20 6f 66 20 74 68 65 20 6c 69 73 74 65 6e 69 6e 67 20 61 6e 64 20 6c 65 61 | in.each.of.the.listening.and.lea |
| 88da0 | 72 6e 69 6e 67 20 73 74 61 74 65 73 20 62 65 66 6f 72 65 20 74 68 65 20 46 6f 72 77 61 72 64 69 | rning.states.before.the.Forwardi |
| 88dc0 | 6e 67 20 73 74 61 74 65 20 69 73 20 65 6e 74 65 72 65 64 2e 20 54 68 69 73 20 64 65 6c 61 79 20 | ng.state.is.entered..This.delay. |
| 88de0 | 69 73 20 73 6f 20 74 68 61 74 20 77 68 65 6e 20 61 20 6e 65 77 20 62 72 69 64 67 65 20 63 6f 6d | is.so.that.when.a.new.bridge.com |
| 88e00 | 65 73 20 6f 6e 74 6f 20 61 20 62 75 73 79 20 6e 65 74 77 6f 72 6b 20 69 74 20 6c 6f 6f 6b 73 20 | es.onto.a.busy.network.it.looks. |
| 88e20 | 61 74 20 73 6f 6d 65 20 74 72 61 66 66 69 63 20 62 65 66 6f 72 65 20 70 61 72 74 69 63 69 70 61 | at.some.traffic.before.participa |
| 88e40 | 74 69 6e 67 2e 00 54 68 65 20 67 65 6e 65 72 61 74 65 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | ting..The.generated.configuratio |
| 88e60 | 6e 20 77 69 6c 6c 20 6c 6f 6f 6b 20 6c 69 6b 65 3a 00 54 68 65 20 67 65 6e 65 72 61 74 65 64 20 | n.will.look.like:.The.generated. |
| 88e80 | 70 61 72 61 6d 65 74 65 72 73 20 61 72 65 20 74 68 65 6e 20 6f 75 74 70 75 74 20 74 6f 20 74 68 | parameters.are.then.output.to.th |
| 88ea0 | 65 20 63 6f 6e 73 6f 6c 65 2e 00 54 68 65 20 67 65 6e 65 72 69 63 20 6e 61 6d 65 20 6f 66 20 51 | e.console..The.generic.name.of.Q |
| 88ec0 | 75 61 6c 69 74 79 20 6f 66 20 53 65 72 76 69 63 65 20 6f 72 20 54 72 61 66 66 69 63 20 43 6f 6e | uality.of.Service.or.Traffic.Con |
| 88ee0 | 74 72 6f 6c 20 69 6e 76 6f 6c 76 65 73 20 74 68 69 6e 67 73 20 6c 69 6b 65 20 73 68 61 70 69 6e | trol.involves.things.like.shapin |
| 88f00 | 67 20 74 72 61 66 66 69 63 2c 20 73 63 68 65 64 75 6c 69 6e 67 20 6f 72 20 64 72 6f 70 70 69 6e | g.traffic,.scheduling.or.droppin |
| 88f20 | 67 20 70 61 63 6b 65 74 73 2c 20 77 68 69 63 68 20 61 72 65 20 74 68 65 20 6b 69 6e 64 20 6f 66 | g.packets,.which.are.the.kind.of |
| 88f40 | 20 74 68 69 6e 67 73 20 79 6f 75 20 6d 61 79 20 77 61 6e 74 20 74 6f 20 70 6c 61 79 20 77 69 74 | .things.you.may.want.to.play.wit |
| 88f60 | 68 20 77 68 65 6e 20 79 6f 75 20 68 61 76 65 2c 20 66 6f 72 20 69 6e 73 74 61 6e 63 65 2c 20 61 | h.when.you.have,.for.instance,.a |
| 88f80 | 20 62 61 6e 64 77 69 64 74 68 20 62 6f 74 74 6c 65 6e 65 63 6b 20 69 6e 20 61 20 6c 69 6e 6b 20 | .bandwidth.bottleneck.in.a.link. |
| 88fa0 | 61 6e 64 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 73 6f 6d 65 68 6f 77 20 70 72 69 6f 72 69 74 69 | and.you.want.to.somehow.prioriti |
| 88fc0 | 7a 65 20 73 6f 6d 65 20 74 79 70 65 20 6f 66 20 74 72 61 66 66 69 63 20 6f 76 65 72 20 61 6e 6f | ze.some.type.of.traffic.over.ano |
| 88fe0 | 74 68 65 72 2e 00 54 68 65 20 68 61 73 68 20 74 79 70 65 20 75 73 65 64 20 77 68 65 6e 20 64 69 | ther..The.hash.type.used.when.di |
| 89000 | 73 63 6f 76 65 72 69 6e 67 20 66 69 6c 65 20 6f 6e 20 6d 61 73 74 65 72 20 73 65 72 76 65 72 20 | scovering.file.on.master.server. |
| 89020 | 28 64 65 66 61 75 6c 74 3a 20 73 68 61 32 35 36 29 00 54 68 65 20 68 65 61 6c 74 68 20 6f 66 20 | (default:.sha256).The.health.of. |
| 89040 | 69 6e 74 65 72 66 61 63 65 73 20 61 6e 64 20 70 61 74 68 73 20 61 73 73 69 67 6e 65 64 20 74 6f | interfaces.and.paths.assigned.to |
| 89060 | 20 74 68 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 72 20 69 73 20 70 65 72 69 6f 64 69 63 61 6c | .the.load.balancer.is.periodical |
| 89080 | 6c 79 20 63 68 65 63 6b 65 64 20 62 79 20 73 65 6e 64 69 6e 67 20 49 43 4d 50 20 70 61 63 6b 65 | ly.checked.by.sending.ICMP.packe |
| 890a0 | 74 73 20 28 70 69 6e 67 29 20 74 6f 20 72 65 6d 6f 74 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 73 | ts.(ping).to.remote.destinations |
| 890c0 | 2c 20 61 20 54 54 4c 20 74 65 73 74 20 6f 72 20 74 68 65 20 65 78 65 63 75 74 69 6f 6e 20 6f 66 | ,.a.TTL.test.or.the.execution.of |
| 890e0 | 20 61 20 75 73 65 72 20 64 65 66 69 6e 65 64 20 73 63 72 69 70 74 2e 20 49 66 20 61 6e 20 69 6e | .a.user.defined.script..If.an.in |
| 89100 | 74 65 72 66 61 63 65 20 66 61 69 6c 73 20 74 68 65 20 68 65 61 6c 74 68 20 63 68 65 63 6b 20 69 | terface.fails.the.health.check.i |
| 89120 | 74 20 69 73 20 72 65 6d 6f 76 65 64 20 66 72 6f 6d 20 74 68 65 20 6c 6f 61 64 20 62 61 6c 61 6e | t.is.removed.from.the.load.balan |
| 89140 | 63 65 72 27 73 20 70 6f 6f 6c 20 6f 66 20 69 6e 74 65 72 66 61 63 65 73 2e 20 54 6f 20 65 6e 61 | cer's.pool.of.interfaces..To.ena |
| 89160 | 62 6c 65 20 68 65 61 6c 74 68 20 63 68 65 63 6b 69 6e 67 20 66 6f 72 20 61 6e 20 69 6e 74 65 72 | ble.health.checking.for.an.inter |
| 89180 | 66 61 63 65 3a 00 54 68 65 20 68 65 6c 6c 6f 2d 6d 75 6c 74 69 70 6c 69 65 72 20 73 70 65 63 69 | face:.The.hello-multiplier.speci |
| 891a0 | 66 69 65 73 20 68 6f 77 20 6d 61 6e 79 20 48 65 6c 6c 6f 73 20 74 6f 20 73 65 6e 64 20 70 65 72 | fies.how.many.Hellos.to.send.per |
| 891c0 | 20 73 65 63 6f 6e 64 2c 20 66 72 6f 6d 20 31 20 28 65 76 65 72 79 20 73 65 63 6f 6e 64 29 20 74 | .second,.from.1.(every.second).t |
| 891e0 | 6f 20 31 30 20 28 65 76 65 72 79 20 31 30 30 6d 73 29 2e 20 54 68 75 73 20 6f 6e 65 20 63 61 6e | o.10.(every.100ms)..Thus.one.can |
| 89200 | 20 68 61 76 65 20 31 73 20 63 6f 6e 76 65 72 67 65 6e 63 65 20 74 69 6d 65 20 66 6f 72 20 4f 53 | .have.1s.convergence.time.for.OS |
| 89220 | 50 46 2e 20 49 66 20 74 68 69 73 20 66 6f 72 6d 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 74 | PF..If.this.form.is.specified,.t |
| 89240 | 68 65 6e 20 74 68 65 20 68 65 6c 6c 6f 2d 69 6e 74 65 72 76 61 6c 20 61 64 76 65 72 74 69 73 65 | hen.the.hello-interval.advertise |
| 89260 | 64 20 69 6e 20 48 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 69 73 20 73 65 74 20 74 6f 20 30 20 61 | d.in.Hello.packets.is.set.to.0.a |
| 89280 | 6e 64 20 74 68 65 20 68 65 6c 6c 6f 2d 69 6e 74 65 72 76 61 6c 20 6f 6e 20 72 65 63 65 69 76 65 | nd.the.hello-interval.on.receive |
| 892a0 | 64 20 48 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 69 73 20 6e 6f 74 20 63 68 65 63 6b 65 64 2c 20 | d.Hello.packets.is.not.checked,. |
| 892c0 | 74 68 75 73 20 74 68 65 20 68 65 6c 6c 6f 2d 6d 75 6c 74 69 70 6c 69 65 72 20 6e 65 65 64 20 4e | thus.the.hello-multiplier.need.N |
| 892e0 | 4f 54 20 62 65 20 74 68 65 20 73 61 6d 65 20 61 63 72 6f 73 73 20 6d 75 6c 74 69 70 6c 65 20 72 | OT.be.the.same.across.multiple.r |
| 89300 | 6f 75 74 65 72 73 20 6f 6e 20 61 20 63 6f 6d 6d 6f 6e 20 6c 69 6e 6b 2e 00 54 68 65 20 68 6f 73 | outers.on.a.common.link..The.hos |
| 89320 | 74 6e 61 6d 65 20 63 61 6e 20 62 65 20 75 70 20 74 6f 20 36 33 20 63 68 61 72 61 63 74 65 72 73 | tname.can.be.up.to.63.characters |
| 89340 | 2e 20 41 20 68 6f 73 74 6e 61 6d 65 20 6d 75 73 74 20 73 74 61 72 74 20 61 6e 64 20 65 6e 64 20 | ..A.hostname.must.start.and.end. |
| 89360 | 77 69 74 68 20 61 20 6c 65 74 74 65 72 20 6f 72 20 64 69 67 69 74 2c 20 61 6e 64 20 68 61 76 65 | with.a.letter.or.digit,.and.have |
| 89380 | 20 61 73 20 69 6e 74 65 72 69 6f 72 20 63 68 61 72 61 63 74 65 72 73 20 6f 6e 6c 79 20 6c 65 74 | .as.interior.characters.only.let |
| 893a0 | 74 65 72 73 2c 20 64 69 67 69 74 73 2c 20 6f 72 20 61 20 68 79 70 68 65 6e 2e 00 54 68 65 20 68 | ters,.digits,.or.a.hyphen..The.h |
| 893c0 | 6f 73 74 6e 61 6d 65 20 6f 72 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 6d 61 73 | ostname.or.IP.address.of.the.mas |
| 893e0 | 74 65 72 00 54 68 65 20 69 64 65 6e 74 69 66 69 65 72 20 69 73 20 74 68 65 20 64 65 76 69 63 65 | ter.The.identifier.is.the.device |
| 89400 | 27 73 20 44 55 49 44 3a 20 63 6f 6c 6f 6e 2d 73 65 70 61 72 61 74 65 64 20 68 65 78 20 6c 69 73 | 's.DUID:.colon-separated.hex.lis |
| 89420 | 74 20 28 61 73 20 75 73 65 64 20 62 79 20 69 73 63 2d 64 68 63 70 20 6f 70 74 69 6f 6e 20 64 68 | t.(as.used.by.isc-dhcp.option.dh |
| 89440 | 63 70 76 36 2e 63 6c 69 65 6e 74 2d 69 64 29 2e 20 49 66 20 74 68 65 20 64 65 76 69 63 65 20 61 | cpv6.client-id)..If.the.device.a |
| 89460 | 6c 72 65 61 64 79 20 68 61 73 20 61 20 64 79 6e 61 6d 69 63 20 6c 65 61 73 65 20 66 72 6f 6d 20 | lready.has.a.dynamic.lease.from. |
| 89480 | 74 68 65 20 44 48 43 50 76 36 20 73 65 72 76 65 72 2c 20 69 74 73 20 44 55 49 44 20 63 61 6e 20 | the.DHCPv6.server,.its.DUID.can. |
| 894a0 | 62 65 20 66 6f 75 6e 64 20 77 69 74 68 20 60 60 73 68 6f 77 20 73 65 72 76 69 63 65 20 64 68 63 | be.found.with.``show.service.dhc |
| 894c0 | 70 76 36 20 73 65 72 76 65 72 20 6c 65 61 73 65 73 60 60 2e 20 54 68 65 20 44 55 49 44 20 62 65 | pv6.server.leases``..The.DUID.be |
| 894e0 | 67 69 6e 73 20 61 74 20 74 68 65 20 35 74 68 20 6f 63 74 65 74 20 28 61 66 74 65 72 20 74 68 65 | gins.at.the.5th.octet.(after.the |
| 89500 | 20 34 74 68 20 63 6f 6c 6f 6e 29 20 6f 66 20 49 41 49 44 5f 44 55 49 44 2e 00 54 68 65 20 69 6e | .4th.colon).of.IAID_DUID..The.in |
| 89520 | 64 69 76 69 64 75 61 6c 20 73 70 6f 6b 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 6f 6e | dividual.spoke.configurations.on |
| 89540 | 6c 79 20 64 69 66 66 65 72 20 69 6e 20 74 68 65 20 6c 6f 63 61 6c 20 49 50 20 61 64 64 72 65 73 | ly.differ.in.the.local.IP.addres |
| 89560 | 73 20 6f 6e 20 74 68 65 20 60 60 74 75 6e 31 30 60 60 20 69 6e 74 65 72 66 61 63 65 2e 20 53 65 | s.on.the.``tun10``.interface..Se |
| 89580 | 65 20 74 68 65 20 61 62 6f 76 65 20 64 69 61 67 72 61 6d 20 66 6f 72 20 74 68 65 20 69 6e 64 69 | e.the.above.diagram.for.the.indi |
| 895a0 | 76 69 64 75 61 6c 20 49 50 20 61 64 64 72 65 73 73 65 73 2e 00 54 68 65 20 69 6e 6e 65 72 20 74 | vidual.IP.addresses..The.inner.t |
| 895c0 | 61 67 20 69 73 20 74 68 65 20 74 61 67 20 77 68 69 63 68 20 69 73 20 63 6c 6f 73 65 73 74 20 74 | ag.is.the.tag.which.is.closest.t |
| 895e0 | 6f 20 74 68 65 20 70 61 79 6c 6f 61 64 20 70 6f 72 74 69 6f 6e 20 6f 66 20 74 68 65 20 66 72 61 | o.the.payload.portion.of.the.fra |
| 89600 | 6d 65 2e 20 49 74 20 69 73 20 6f 66 66 69 63 69 61 6c 6c 79 20 63 61 6c 6c 65 64 20 43 2d 54 41 | me..It.is.officially.called.C-TA |
| 89620 | 47 20 28 63 75 73 74 6f 6d 65 72 20 74 61 67 2c 20 77 69 74 68 20 65 74 68 65 72 74 79 70 65 20 | G.(customer.tag,.with.ethertype. |
| 89640 | 30 78 38 31 30 30 29 2e 20 54 68 65 20 6f 75 74 65 72 20 74 61 67 20 69 73 20 74 68 65 20 6f 6e | 0x8100)..The.outer.tag.is.the.on |
| 89660 | 65 20 63 6c 6f 73 65 72 2f 63 6c 6f 73 65 73 74 20 74 6f 20 74 68 65 20 45 74 68 65 72 6e 65 74 | e.closer/closest.to.the.Ethernet |
| 89680 | 20 68 65 61 64 65 72 2c 20 69 74 73 20 6e 61 6d 65 20 69 73 20 53 2d 54 41 47 20 28 73 65 72 76 | .header,.its.name.is.S-TAG.(serv |
| 896a0 | 69 63 65 20 74 61 67 20 77 69 74 68 20 45 74 68 65 72 6e 65 74 20 54 79 70 65 20 3d 20 30 78 38 | ice.tag.with.Ethernet.Type.=.0x8 |
| 896c0 | 38 61 38 29 2e 00 54 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 68 61 74 20 77 69 6c 6c 20 62 65 | 8a8)..The.interface.that.will.be |
| 896e0 | 20 6d 6f 6e 69 74 6f 72 65 64 20 62 79 20 74 68 65 20 53 75 72 69 63 61 74 61 20 73 65 72 76 69 | .monitored.by.the.Suricata.servi |
| 89700 | 63 65 2e 00 54 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 72 61 66 66 69 63 20 77 69 6c 6c 20 62 | ce..The.interface.traffic.will.b |
| 89720 | 65 20 63 6f 6d 69 6e 67 20 69 6e 20 6f 6e 3b 00 54 68 65 20 69 6e 74 65 72 66 61 63 65 20 75 73 | e.coming.in.on;.The.interface.us |
| 89740 | 65 64 20 74 6f 20 72 65 63 65 69 76 65 20 61 6e 64 20 72 65 6c 61 79 20 69 6e 64 69 76 69 64 75 | ed.to.receive.and.relay.individu |
| 89760 | 61 6c 20 62 72 6f 61 64 63 61 73 74 20 70 61 63 6b 65 74 73 2e 20 49 66 20 79 6f 75 20 77 61 6e | al.broadcast.packets..If.you.wan |
| 89780 | 74 20 74 6f 20 72 65 63 65 69 76 65 2f 72 65 6c 61 79 20 70 61 63 6b 65 74 73 20 6f 6e 20 62 6f | t.to.receive/relay.packets.on.bo |
| 897a0 | 74 68 20 60 65 74 68 31 60 20 61 6e 64 20 60 65 74 68 32 60 20 62 6f 74 68 20 69 6e 74 65 72 66 | th.`eth1`.and.`eth2`.both.interf |
| 897c0 | 61 63 65 73 20 6e 65 65 64 20 74 6f 20 62 65 20 61 64 64 65 64 2e 00 54 68 65 20 69 6e 74 65 72 | aces.need.to.be.added..The.inter |
| 897e0 | 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 65 73 20 77 65 20 77 61 6e 74 20 74 6f 20 74 72 61 6e | nal.IP.addresses.we.want.to.tran |
| 89800 | 73 6c 61 74 65 00 54 68 65 20 69 6e 76 65 72 73 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | slate.The.inverse.configuration. |
| 89820 | 68 61 73 20 74 6f 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 72 65 6d 6f 74 65 20 | has.to.be.applied.to.the.remote. |
| 89840 | 73 69 64 65 2e 00 54 68 65 20 6c 61 72 67 65 73 74 20 4d 54 55 20 73 69 7a 65 20 79 6f 75 20 63 | side..The.largest.MTU.size.you.c |
| 89860 | 61 6e 20 75 73 65 20 77 69 74 68 20 44 53 4c 20 69 73 20 31 34 39 32 20 64 75 65 20 74 6f 20 50 | an.use.with.DSL.is.1492.due.to.P |
| 89880 | 50 50 6f 45 20 6f 76 65 72 68 65 61 64 2e 20 49 66 20 79 6f 75 20 61 72 65 20 73 77 69 74 63 68 | PPoE.overhead..If.you.are.switch |
| 898a0 | 69 6e 67 20 66 72 6f 6d 20 61 20 44 48 43 50 20 62 61 73 65 64 20 49 53 50 20 6c 69 6b 65 20 63 | ing.from.a.DHCP.based.ISP.like.c |
| 898c0 | 61 62 6c 65 20 74 68 65 6e 20 62 65 20 61 77 61 72 65 20 74 68 61 74 20 74 68 69 6e 67 73 20 6c | able.then.be.aware.that.things.l |
| 898e0 | 69 6b 65 20 56 50 4e 20 6c 69 6e 6b 73 20 6d 61 79 20 6e 65 65 64 20 74 6f 20 68 61 76 65 20 74 | ike.VPN.links.may.need.to.have.t |
| 89900 | 68 65 69 72 20 4d 54 55 20 73 69 7a 65 73 20 61 64 6a 75 73 74 65 64 20 74 6f 20 77 6f 72 6b 20 | heir.MTU.sizes.adjusted.to.work. |
| 89920 | 77 69 74 68 69 6e 20 74 68 69 73 20 6c 69 6d 69 74 2e 00 54 68 65 20 6c 61 73 74 20 73 74 65 70 | within.this.limit..The.last.step |
| 89940 | 20 69 73 20 74 6f 20 64 65 66 69 6e 65 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 72 6f 75 74 65 | .is.to.define.an.interface.route |
| 89960 | 20 66 6f 72 20 31 39 32 2e 31 36 38 2e 32 2e 30 2f 32 34 20 74 6f 20 67 65 74 20 74 68 72 6f 75 | .for.192.168.2.0/24.to.get.throu |
| 89980 | 67 68 20 74 68 65 20 57 69 72 65 47 75 61 72 64 20 69 6e 74 65 72 66 61 63 65 20 60 77 67 30 31 | gh.the.WireGuard.interface.`wg01 |
| 899a0 | 60 2e 20 4d 75 6c 74 69 70 6c 65 20 49 50 73 20 6f 72 20 6e 65 74 77 6f 72 6b 73 20 63 61 6e 20 | `..Multiple.IPs.or.networks.can. |
| 899c0 | 62 65 20 64 65 66 69 6e 65 64 20 61 6e 64 20 72 6f 75 74 65 64 2e 20 54 68 65 20 6c 61 73 74 20 | be.defined.and.routed..The.last. |
| 899e0 | 63 68 65 63 6b 20 69 73 20 61 6c 6c 6f 77 65 64 2d 69 70 73 20 77 68 69 63 68 20 65 69 74 68 65 | check.is.allowed-ips.which.eithe |
| 89a00 | 72 20 70 72 65 76 65 6e 74 73 20 6f 72 20 61 6c 6c 6f 77 73 20 74 68 65 20 74 72 61 66 66 69 63 | r.prevents.or.allows.the.traffic |
| 89a20 | 2e 00 54 68 65 20 6c 65 67 61 63 79 20 61 6e 64 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 | ..The.legacy.and.zone-based.fire |
| 89a40 | 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 70 74 69 6f 6e 73 20 69 73 20 6e 6f | wall.configuration.options.is.no |
| 89a60 | 74 20 6c 6f 6e 67 65 72 20 73 75 70 70 6f 72 74 65 64 2e 20 54 68 65 79 20 61 72 65 20 68 65 72 | t.longer.supported..They.are.her |
| 89a80 | 65 20 66 6f 72 20 72 65 66 65 72 65 6e 63 65 20 70 75 72 70 6f 73 65 73 20 6f 6e 6c 79 2e 00 54 | e.for.reference.purposes.only..T |
| 89aa0 | 68 65 20 6c 69 6d 69 74 65 72 20 70 65 72 66 6f 72 6d 73 20 62 61 73 69 63 20 69 6e 67 72 65 73 | he.limiter.performs.basic.ingres |
| 89ac0 | 73 20 70 6f 6c 69 63 69 6e 67 20 6f 66 20 74 72 61 66 66 69 63 20 66 6c 6f 77 73 2e 20 4d 75 6c | s.policing.of.traffic.flows..Mul |
| 89ae0 | 74 69 70 6c 65 20 63 6c 61 73 73 65 73 20 6f 66 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 | tiple.classes.of.traffic.can.be. |
| 89b00 | 64 65 66 69 6e 65 64 20 61 6e 64 20 74 72 61 66 66 69 63 20 6c 69 6d 69 74 73 20 63 61 6e 20 62 | defined.and.traffic.limits.can.b |
| 89b20 | 65 20 61 70 70 6c 69 65 64 20 74 6f 20 65 61 63 68 20 63 6c 61 73 73 2e 20 41 6c 74 68 6f 75 67 | e.applied.to.each.class..Althoug |
| 89b40 | 68 20 74 68 65 20 70 6f 6c 69 63 65 72 20 75 73 65 73 20 61 20 74 6f 6b 65 6e 20 62 75 63 6b 65 | h.the.policer.uses.a.token.bucke |
| 89b60 | 74 20 6d 65 63 68 61 6e 69 73 6d 20 69 6e 74 65 72 6e 61 6c 6c 79 2c 20 69 74 20 64 6f 65 73 20 | t.mechanism.internally,.it.does. |
| 89b80 | 6e 6f 74 20 68 61 76 65 20 74 68 65 20 63 61 70 61 62 69 6c 69 74 79 20 74 6f 20 64 65 6c 61 79 | not.have.the.capability.to.delay |
| 89ba0 | 20 61 20 70 61 63 6b 65 74 20 61 73 20 61 20 73 68 61 70 69 6e 67 20 6d 65 63 68 61 6e 69 73 6d | .a.packet.as.a.shaping.mechanism |
| 89bc0 | 20 64 6f 65 73 2e 20 54 72 61 66 66 69 63 20 65 78 63 65 65 64 69 6e 67 20 74 68 65 20 64 65 66 | .does..Traffic.exceeding.the.def |
| 89be0 | 69 6e 65 64 20 62 61 6e 64 77 69 64 74 68 20 6c 69 6d 69 74 73 20 69 73 20 64 69 72 65 63 74 6c | ined.bandwidth.limits.is.directl |
| 89c00 | 79 20 64 72 6f 70 70 65 64 2e 20 41 20 6d 61 78 69 6d 75 6d 20 61 6c 6c 6f 77 65 64 20 62 75 72 | y.dropped..A.maximum.allowed.bur |
| 89c20 | 73 74 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 6f 2e 00 54 68 65 20 6c 69 | st.can.be.configured.too..The.li |
| 89c40 | 6e 6b 20 62 61 6e 64 77 69 64 74 68 20 65 78 74 65 6e 64 65 64 20 63 6f 6d 6d 75 6e 69 74 79 20 | nk.bandwidth.extended.community. |
| 89c60 | 69 73 20 65 6e 63 6f 64 65 64 20 61 73 20 6e 6f 6e 2d 74 72 61 6e 73 69 74 69 76 65 00 54 68 65 | is.encoded.as.non-transitive.The |
| 89c80 | 20 6c 6f 63 61 6c 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 74 6f | .local.IPv4.or.IPv6.addresses.to |
| 89ca0 | 20 62 69 6e 64 20 74 68 65 20 44 4e 53 20 66 6f 72 77 61 72 64 65 72 20 74 6f 2e 20 54 68 65 20 | .bind.the.DNS.forwarder.to..The. |
| 89cc0 | 66 6f 72 77 61 72 64 65 72 20 77 69 6c 6c 20 6c 69 73 74 65 6e 20 6f 6e 20 74 68 69 73 20 61 64 | forwarder.will.listen.on.this.ad |
| 89ce0 | 64 72 65 73 73 20 66 6f 72 20 69 6e 63 6f 6d 69 6e 67 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 | dress.for.incoming.connections.. |
| 89d00 | 54 68 65 20 6c 6f 63 61 6c 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 | The.local.IPv4.or.IPv6.addresses |
| 89d20 | 20 74 6f 20 75 73 65 20 61 73 20 61 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 66 6f 72 20 | .to.use.as.a.source.address.for. |
| 89d40 | 73 65 6e 64 69 6e 67 20 71 75 65 72 69 65 73 2e 20 54 68 65 20 66 6f 72 77 61 72 64 65 72 20 77 | sending.queries..The.forwarder.w |
| 89d60 | 69 6c 6c 20 73 65 6e 64 20 66 6f 72 77 61 72 64 65 64 20 6f 75 74 62 6f 75 6e 64 20 44 4e 53 20 | ill.send.forwarded.outbound.DNS. |
| 89d80 | 72 65 71 75 65 73 74 73 20 66 72 6f 6d 20 74 68 69 73 20 61 64 64 72 65 73 73 2e 00 54 68 65 20 | requests.from.this.address..The. |
| 89da0 | 6c 6f 63 61 6c 20 73 69 74 65 20 77 69 6c 6c 20 68 61 76 65 20 61 20 73 75 62 6e 65 74 20 6f 66 | local.site.will.have.a.subnet.of |
| 89dc0 | 20 31 30 2e 30 2e 30 2e 30 2f 31 36 2e 00 54 68 65 20 6c 6f 6f 70 62 61 63 6b 20 6e 65 74 77 6f | .10.0.0.0/16..The.loopback.netwo |
| 89de0 | 72 6b 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 20 76 69 72 74 75 61 6c 20 6e 65 74 | rking.interface.is.a.virtual.net |
| 89e00 | 77 6f 72 6b 20 64 65 76 69 63 65 20 69 6d 70 6c 65 6d 65 6e 74 65 64 20 65 6e 74 69 72 65 6c 79 | work.device.implemented.entirely |
| 89e20 | 20 69 6e 20 73 6f 66 74 77 61 72 65 2e 20 41 6c 6c 20 74 72 61 66 66 69 63 20 73 65 6e 74 20 74 | .in.software..All.traffic.sent.t |
| 89e40 | 6f 20 69 74 20 22 6c 6f 6f 70 73 20 62 61 63 6b 22 20 61 6e 64 20 6a 75 73 74 20 74 61 72 67 65 | o.it."loops.back".and.just.targe |
| 89e60 | 74 73 20 73 65 72 76 69 63 65 73 20 6f 6e 20 79 6f 75 72 20 6c 6f 63 61 6c 20 6d 61 63 68 69 6e | ts.services.on.your.local.machin |
| 89e80 | 65 2e 00 54 68 65 20 6d 61 69 6e 20 62 65 6e 65 66 69 74 20 74 6f 20 63 6f 6e 66 69 67 75 72 61 | e..The.main.benefit.to.configura |
| 89ea0 | 74 69 6f 6e 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 69 73 20 74 68 61 74 20 69 74 20 | tion.synchronization.is.that.it. |
| 89ec0 | 65 6c 69 6d 69 6e 61 74 65 73 20 68 61 76 69 6e 67 20 74 6f 20 6d 61 6e 75 61 6c 6c 79 20 72 65 | eliminates.having.to.manually.re |
| 89ee0 | 70 6c 69 63 61 74 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 68 61 6e 67 65 73 20 6d 61 | plicate.configuration.changes.ma |
| 89f00 | 64 65 20 6f 6e 20 74 68 65 20 70 72 69 6d 61 72 79 20 72 6f 75 74 65 72 20 74 6f 20 74 68 65 20 | de.on.the.primary.router.to.the. |
| 89f20 | 73 65 63 6f 6e 64 61 72 79 20 28 72 65 70 6c 69 63 61 29 20 72 6f 75 74 65 72 2e 00 54 68 65 20 | secondary.(replica).router..The. |
| 89f40 | 6d 61 69 6e 20 70 6f 69 6e 74 73 20 72 65 67 61 72 64 69 6e 67 20 74 68 69 73 20 70 61 63 6b 65 | main.points.regarding.this.packe |
| 89f60 | 74 20 66 6c 6f 77 20 61 6e 64 20 74 65 72 6d 69 6e 6f 6c 6f 67 79 20 75 73 65 64 20 69 6e 20 56 | t.flow.and.terminology.used.in.V |
| 89f80 | 79 4f 53 20 66 69 72 65 77 61 6c 6c 20 61 72 65 20 63 6f 76 65 72 65 64 20 62 65 6c 6f 77 3a 00 | yOS.firewall.are.covered.below:. |
| 89fa0 | 54 68 65 20 6d 61 69 6e 20 73 74 72 75 63 74 75 72 65 20 56 79 4f 53 20 66 69 72 65 77 61 6c 6c | The.main.structure.VyOS.firewall |
| 89fc0 | 20 63 6c 69 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 3a 00 54 68 65 20 6d 61 69 6e 20 73 74 72 | .cli.is.shown.next:.The.main.str |
| 89fe0 | 75 63 74 75 72 65 20 6f 66 20 74 68 65 20 56 79 4f 53 20 66 69 72 65 77 61 6c 6c 20 43 4c 49 20 | ucture.of.the.VyOS.firewall.CLI. |
| 8a000 | 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 3a 00 54 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 | is.shown.next:.The.maximum.numbe |
| 8a020 | 72 20 6f 66 20 74 61 72 67 65 74 73 20 74 68 61 74 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 | r.of.targets.that.can.be.specifi |
| 8a040 | 65 64 20 69 73 20 31 36 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 6e | ed.is.16..The.default.value.is.n |
| 8a060 | 6f 20 49 50 20 61 64 64 72 65 73 73 2e 00 54 68 65 20 6d 65 61 6e 69 6e 67 20 6f 66 20 74 68 65 | o.IP.address..The.meaning.of.the |
| 8a080 | 20 43 6c 61 73 73 20 49 44 20 69 73 20 6e 6f 74 20 74 68 65 20 73 61 6d 65 20 66 6f 72 20 65 76 | .Class.ID.is.not.the.same.for.ev |
| 8a0a0 | 65 72 79 20 74 79 70 65 20 6f 66 20 70 6f 6c 69 63 79 2e 20 4e 6f 72 6d 61 6c 6c 79 20 70 6f 6c | ery.type.of.policy..Normally.pol |
| 8a0c0 | 69 63 69 65 73 20 6a 75 73 74 20 6e 65 65 64 20 61 20 6d 65 61 6e 69 6e 67 6c 65 73 73 20 6e 75 | icies.just.need.a.meaningless.nu |
| 8a0e0 | 6d 62 65 72 20 74 6f 20 69 64 65 6e 74 69 66 79 20 61 20 63 6c 61 73 73 20 28 43 6c 61 73 73 20 | mber.to.identify.a.class.(Class. |
| 8a100 | 49 44 29 2c 20 62 75 74 20 74 68 61 74 20 64 6f 65 73 20 6e 6f 74 20 61 70 70 6c 79 20 74 6f 20 | ID),.but.that.does.not.apply.to. |
| 8a120 | 65 76 65 72 79 20 70 6f 6c 69 63 79 2e 20 54 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 61 20 63 6c | every.policy..The.number.of.a.cl |
| 8a140 | 61 73 73 20 69 6e 20 61 20 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 20 69 74 20 64 6f 65 73 20 | ass.in.a.Priority.Queue.it.does. |
| 8a160 | 6e 6f 74 20 6f 6e 6c 79 20 69 64 65 6e 74 69 66 79 20 69 74 2c 20 69 74 20 61 6c 73 6f 20 64 65 | not.only.identify.it,.it.also.de |
| 8a180 | 66 69 6e 65 73 20 69 74 73 20 70 72 69 6f 72 69 74 79 2e 00 54 68 65 20 6d 65 6d 62 65 72 20 69 | fines.its.priority..The.member.i |
| 8a1a0 | 6e 74 65 72 66 61 63 65 20 60 65 74 68 31 60 20 69 73 20 61 20 74 72 75 6e 6b 20 74 68 61 74 20 | nterface.`eth1`.is.a.trunk.that. |
| 8a1c0 | 61 6c 6c 6f 77 73 20 56 4c 41 4e 20 31 30 20 74 6f 20 70 61 73 73 00 54 68 65 20 6d 65 74 72 69 | allows.VLAN.10.to.pass.The.metri |
| 8a1e0 | 63 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 36 37 37 37 32 31 35 20 28 4d 61 78 20 76 61 | c.range.is.1.to.16777215.(Max.va |
| 8a200 | 6c 75 65 20 64 65 70 65 6e 64 20 69 66 20 6d 65 74 72 69 63 20 73 75 70 70 6f 72 74 20 6e 61 72 | lue.depend.if.metric.support.nar |
| 8a220 | 72 6f 77 20 6f 72 20 77 69 64 65 20 76 61 6c 75 65 29 2e 00 54 68 65 20 6d 69 6e 69 6d 61 6c 20 | row.or.wide.value)..The.minimal. |
| 8a240 | 65 63 68 6f 20 72 65 63 65 69 76 65 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 20 69 6e 74 65 72 76 | echo.receive.transmission.interv |
| 8a260 | 61 6c 20 74 68 61 74 20 74 68 69 73 20 73 79 73 74 65 6d 20 69 73 20 63 61 70 61 62 6c 65 20 6f | al.that.this.system.is.capable.o |
| 8a280 | 66 20 68 61 6e 64 6c 69 6e 67 00 54 68 65 20 6d 6f 73 74 20 76 69 73 69 62 6c 65 20 61 70 70 6c | f.handling.The.most.visible.appl |
| 8a2a0 | 69 63 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 20 69 73 20 66 6f 72 20 61 | ication.of.the.protocol.is.for.a |
| 8a2c0 | 63 63 65 73 73 20 74 6f 20 73 68 65 6c 6c 20 61 63 63 6f 75 6e 74 73 20 6f 6e 20 55 6e 69 78 2d | ccess.to.shell.accounts.on.Unix- |
| 8a2e0 | 6c 69 6b 65 20 6f 70 65 72 61 74 69 6e 67 20 73 79 73 74 65 6d 73 2c 20 62 75 74 20 69 74 20 73 | like.operating.systems,.but.it.s |
| 8a300 | 65 65 73 20 73 6f 6d 65 20 6c 69 6d 69 74 65 64 20 75 73 65 20 6f 6e 20 57 69 6e 64 6f 77 73 20 | ees.some.limited.use.on.Windows. |
| 8a320 | 61 73 20 77 65 6c 6c 2e 20 49 6e 20 32 30 31 35 2c 20 4d 69 63 72 6f 73 6f 66 74 20 61 6e 6e 6f | as.well..In.2015,.Microsoft.anno |
| 8a340 | 75 6e 63 65 64 20 74 68 61 74 20 74 68 65 79 20 77 6f 75 6c 64 20 69 6e 63 6c 75 64 65 20 6e 61 | unced.that.they.would.include.na |
| 8a360 | 74 69 76 65 20 73 75 70 70 6f 72 74 20 66 6f 72 20 53 53 48 20 69 6e 20 61 20 66 75 74 75 72 65 | tive.support.for.SSH.in.a.future |
| 8a380 | 20 72 65 6c 65 61 73 65 2e 00 54 68 65 20 6d 75 6c 74 69 63 61 73 74 2d 67 72 6f 75 70 20 75 73 | .release..The.multicast-group.us |
| 8a3a0 | 65 64 20 62 79 20 61 6c 6c 20 6c 65 61 76 65 73 20 66 6f 72 20 74 68 69 73 20 76 6c 61 6e 20 65 | ed.by.all.leaves.for.this.vlan.e |
| 8a3c0 | 78 74 65 6e 73 69 6f 6e 2e 20 48 61 73 20 74 6f 20 62 65 20 74 68 65 20 73 61 6d 65 20 6f 6e 20 | xtension..Has.to.be.the.same.on. |
| 8a3e0 | 61 6c 6c 20 6c 65 61 76 65 73 20 74 68 61 74 20 68 61 73 20 74 68 69 73 20 69 6e 74 65 72 66 61 | all.leaves.that.has.this.interfa |
| 8a400 | 63 65 2e 00 54 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 65 20 73 65 72 76 69 63 65 20 63 61 6e 20 | ce..The.name.of.the.service.can. |
| 8a420 | 62 65 20 64 69 66 66 65 72 65 6e 74 2c 20 69 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 20 69 74 | be.different,.in.this.example.it |
| 8a440 | 20 69 73 20 6f 6e 6c 79 20 66 6f 72 20 63 6f 6e 76 65 6e 69 65 6e 63 65 2e 00 54 68 65 20 6e 65 | .is.only.for.convenience..The.ne |
| 8a460 | 74 6d 61 73 6b 20 6f 72 20 64 6f 6d 61 69 6e 20 74 68 61 74 20 45 44 4e 53 20 43 6c 69 65 6e 74 | tmask.or.domain.that.EDNS.Client |
| 8a480 | 20 53 75 62 6e 65 74 20 73 68 6f 75 6c 64 20 62 65 20 65 6e 61 62 6c 65 64 20 66 6f 72 20 69 6e | .Subnet.should.be.enabled.for.in |
| 8a4a0 | 20 6f 75 74 67 6f 69 6e 67 20 71 75 65 72 69 65 73 2e 00 54 68 65 20 6e 65 74 77 6f 72 6b 20 74 | .outgoing.queries..The.network.t |
| 8a4c0 | 6f 70 6f 6c 6f 67 79 20 69 73 20 64 65 63 6c 61 72 65 64 20 62 79 20 73 68 61 72 65 64 2d 6e 65 | opology.is.declared.by.shared-ne |
| 8a4e0 | 74 77 6f 72 6b 2d 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 73 75 62 6e 65 74 20 64 65 63 6c 61 72 | twork-name.and.the.subnet.declar |
| 8a500 | 61 74 69 6f 6e 73 2e 20 54 68 65 20 44 48 43 50 20 73 65 72 76 69 63 65 20 63 61 6e 20 73 65 72 | ations..The.DHCP.service.can.ser |
| 8a520 | 76 65 20 6d 75 6c 74 69 70 6c 65 20 73 68 61 72 65 64 20 6e 65 74 77 6f 72 6b 73 2c 20 77 69 74 | ve.multiple.shared.networks,.wit |
| 8a540 | 68 20 65 61 63 68 20 73 68 61 72 65 64 20 6e 65 74 77 6f 72 6b 20 68 61 76 69 6e 67 20 31 20 6f | h.each.shared.network.having.1.o |
| 8a560 | 72 20 6d 6f 72 65 20 73 75 62 6e 65 74 73 2e 20 45 61 63 68 20 73 75 62 6e 65 74 20 6d 75 73 74 | r.more.subnets..Each.subnet.must |
| 8a580 | 20 62 65 20 70 72 65 73 65 6e 74 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e 20 41 20 72 | .be.present.on.an.interface..A.r |
| 8a5a0 | 61 6e 67 65 20 63 61 6e 20 62 65 20 64 65 63 6c 61 72 65 64 20 69 6e 73 69 64 65 20 61 20 73 75 | ange.can.be.declared.inside.a.su |
| 8a5c0 | 62 6e 65 74 20 74 6f 20 64 65 66 69 6e 65 20 61 20 70 6f 6f 6c 20 6f 66 20 64 79 6e 61 6d 69 63 | bnet.to.define.a.pool.of.dynamic |
| 8a5e0 | 20 61 64 64 72 65 73 73 65 73 2e 20 4d 75 6c 74 69 70 6c 65 20 72 61 6e 67 65 73 20 63 61 6e 20 | .addresses..Multiple.ranges.can. |
| 8a600 | 62 65 20 64 65 66 69 6e 65 64 20 61 6e 64 20 63 61 6e 20 63 6f 6e 74 61 69 6e 20 68 6f 6c 65 73 | be.defined.and.can.contain.holes |
| 8a620 | 2e 20 53 74 61 74 69 63 20 6d 61 70 70 69 6e 67 73 20 63 61 6e 20 62 65 20 73 65 74 20 74 6f 20 | ..Static.mappings.can.be.set.to. |
| 8a640 | 61 73 73 69 67 6e 20 22 73 74 61 74 69 63 22 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 63 6c 69 | assign."static".addresses.to.cli |
| 8a660 | 65 6e 74 73 20 62 61 73 65 64 20 6f 6e 20 74 68 65 69 72 20 4d 41 43 20 61 64 64 72 65 73 73 2e | ents.based.on.their.MAC.address. |
| 8a680 | 00 54 68 65 20 6e 65 78 74 20 65 78 61 6d 70 6c 65 20 69 73 20 61 20 73 69 6d 70 6c 65 20 63 6f | .The.next.example.is.a.simple.co |
| 8a6a0 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 63 6f 6e 6e 74 72 61 63 6b 2d 73 79 6e 63 2e 00 54 | nfiguration.of.conntrack-sync..T |
| 8a6c0 | 68 65 20 6e 65 78 74 20 73 74 65 70 20 69 73 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 79 6f 75 | he.next.step.is.to.configure.you |
| 8a6e0 | 72 20 6c 6f 63 61 6c 20 73 69 64 65 20 61 73 20 77 65 6c 6c 20 61 73 20 74 68 65 20 70 6f 6c 69 | r.local.side.as.well.as.the.poli |
| 8a700 | 63 79 20 62 61 73 65 64 20 74 72 75 73 74 65 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 | cy.based.trusted.destination.add |
| 8a720 | 72 65 73 73 65 73 2e 20 49 66 20 79 6f 75 20 6f 6e 6c 79 20 69 6e 69 74 69 61 74 65 20 61 20 63 | resses..If.you.only.initiate.a.c |
| 8a740 | 6f 6e 6e 65 63 74 69 6f 6e 2c 20 74 68 65 20 6c 69 73 74 65 6e 20 70 6f 72 74 20 61 6e 64 20 61 | onnection,.the.listen.port.and.a |
| 8a760 | 64 64 72 65 73 73 2f 70 6f 72 74 20 69 73 20 6f 70 74 69 6f 6e 61 6c 3b 20 68 6f 77 65 76 65 72 | ddress/port.is.optional;.however |
| 8a780 | 2c 20 69 66 20 79 6f 75 20 61 63 74 20 6c 69 6b 65 20 61 20 73 65 72 76 65 72 20 61 6e 64 20 65 | ,.if.you.act.like.a.server.and.e |
| 8a7a0 | 6e 64 70 6f 69 6e 74 73 20 69 6e 69 74 69 61 74 65 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e | ndpoints.initiate.the.connection |
| 8a7c0 | 73 20 74 6f 20 79 6f 75 72 20 73 79 73 74 65 6d 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 64 65 | s.to.your.system,.you.need.to.de |
| 8a7e0 | 66 69 6e 65 20 61 20 70 6f 72 74 20 79 6f 75 72 20 63 6c 69 65 6e 74 73 20 63 61 6e 20 63 6f 6e | fine.a.port.your.clients.can.con |
| 8a800 | 6e 65 63 74 20 74 6f 2c 20 6f 74 68 65 72 77 69 73 65 20 74 68 65 20 70 6f 72 74 20 69 73 20 72 | nect.to,.otherwise.the.port.is.r |
| 8a820 | 61 6e 64 6f 6d 6c 79 20 63 68 6f 73 65 6e 20 61 6e 64 20 6d 61 79 20 6d 61 6b 65 20 63 6f 6e 6e | andomly.chosen.and.may.make.conn |
| 8a840 | 65 63 74 69 6f 6e 20 64 69 66 66 69 63 75 6c 74 20 77 69 74 68 20 66 69 72 65 77 61 6c 6c 20 72 | ection.difficult.with.firewall.r |
| 8a860 | 75 6c 65 73 2c 20 73 69 6e 63 65 20 74 68 65 20 70 6f 72 74 20 6d 61 79 20 62 65 20 64 69 66 66 | ules,.since.the.port.may.be.diff |
| 8a880 | 65 72 65 6e 74 20 65 61 63 68 20 74 69 6d 65 20 74 68 65 20 73 79 73 74 65 6d 20 69 73 20 72 65 | erent.each.time.the.system.is.re |
| 8a8a0 | 62 6f 6f 74 65 64 2e 00 54 68 65 20 6e 6f 74 65 64 20 70 75 62 6c 69 63 20 6b 65 79 73 20 73 68 | booted..The.noted.public.keys.sh |
| 8a8c0 | 6f 75 6c 64 20 62 65 20 65 6e 74 65 72 65 64 20 6f 6e 20 74 68 65 20 6f 70 70 6f 73 69 74 65 20 | ould.be.entered.on.the.opposite. |
| 8a8e0 | 72 6f 75 74 65 72 73 2e 00 54 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 6d 69 6c 6c 69 73 65 63 6f | routers..The.number.of.milliseco |
| 8a900 | 6e 64 73 20 74 6f 20 77 61 69 74 20 66 6f 72 20 61 20 72 65 6d 6f 74 65 20 61 75 74 68 6f 72 69 | nds.to.wait.for.a.remote.authori |
| 8a920 | 74 61 74 69 76 65 20 73 65 72 76 65 72 20 74 6f 20 72 65 73 70 6f 6e 64 20 62 65 66 6f 72 65 20 | tative.server.to.respond.before. |
| 8a940 | 74 69 6d 69 6e 67 20 6f 75 74 20 61 6e 64 20 72 65 73 70 6f 6e 64 69 6e 67 20 77 69 74 68 20 53 | timing.out.and.responding.with.S |
| 8a960 | 45 52 56 46 41 49 4c 2e 00 54 68 65 20 6e 75 6d 62 65 72 20 70 61 72 61 6d 65 74 65 72 20 28 31 | ERVFAIL..The.number.parameter.(1 |
| 8a980 | 2d 31 30 29 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 20 61 63 | -10).configures.the.amount.of.ac |
| 8a9a0 | 63 65 70 74 65 64 20 6f 63 63 75 72 65 6e 63 65 73 20 6f 66 20 74 68 65 20 73 79 73 74 65 6d 20 | cepted.occurences.of.the.system. |
| 8a9c0 | 41 53 20 6e 75 6d 62 65 72 20 69 6e 20 41 53 20 70 61 74 68 2e 00 54 68 65 20 6f 66 66 69 63 69 | AS.number.in.AS.path..The.offici |
| 8a9e0 | 61 6c 20 70 6f 72 74 20 66 6f 72 20 4f 70 65 6e 56 50 4e 20 69 73 20 31 31 39 34 2c 20 77 68 69 | al.port.for.OpenVPN.is.1194,.whi |
| 8aa00 | 63 68 20 77 65 20 72 65 73 65 72 76 65 20 66 6f 72 20 63 6c 69 65 6e 74 20 56 50 4e 3b 20 77 65 | ch.we.reserve.for.client.VPN;.we |
| 8aa20 | 20 77 69 6c 6c 20 75 73 65 20 31 31 39 35 20 66 6f 72 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 | .will.use.1195.for.site-to-site. |
| 8aa40 | 56 50 4e 2e 00 54 68 65 20 6f 6e 6c 79 20 73 74 61 67 65 73 20 56 79 4f 53 20 77 69 6c 6c 20 70 | VPN..The.only.stages.VyOS.will.p |
| 8aa60 | 72 6f 63 65 73 73 20 61 73 20 70 61 72 74 20 6f 66 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 63 | rocess.as.part.of.the.firewall.c |
| 8aa80 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 74 68 65 20 60 66 6f 72 77 61 72 64 60 20 28 46 | onfiguration.is.the.`forward`.(F |
| 8aaa0 | 34 20 73 74 61 67 65 29 2c 20 60 69 6e 70 75 74 60 20 28 4c 34 20 73 74 61 67 65 29 2c 20 61 6e | 4.stage),.`input`.(L4.stage),.an |
| 8aac0 | 64 20 60 6f 75 74 70 75 74 60 20 28 4c 35 20 73 74 61 67 65 29 2e 20 41 6c 6c 20 74 68 65 20 6f | d.`output`.(L5.stage)..All.the.o |
| 8aae0 | 74 68 65 72 20 73 74 61 67 65 73 20 61 6e 64 20 73 74 65 70 73 20 61 72 65 20 66 6f 72 20 72 65 | ther.stages.and.steps.are.for.re |
| 8ab00 | 66 65 72 65 6e 63 65 20 61 6e 64 20 63 61 6e 74 20 62 65 20 6d 61 6e 69 70 75 6c 61 74 65 64 20 | ference.and.cant.be.manipulated. |
| 8ab20 | 74 68 72 6f 75 67 68 20 56 79 4f 53 2e 00 54 68 65 20 6f 70 74 69 6f 6e 61 6c 20 60 64 69 73 61 | through.VyOS..The.optional.`disa |
| 8ab40 | 62 6c 65 60 20 6f 70 74 69 6f 6e 20 61 6c 6c 6f 77 73 20 74 6f 20 65 78 63 6c 75 64 65 20 69 6e | ble`.option.allows.to.exclude.in |
| 8ab60 | 74 65 72 66 61 63 65 20 66 72 6f 6d 20 70 61 73 73 69 76 65 20 73 74 61 74 65 2e 20 54 68 69 73 | terface.from.passive.state..This |
| 8ab80 | 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 20 69 66 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 | .command.is.used.if.the.command. |
| 8aba0 | 3a 63 66 67 63 6d 64 3a 60 70 61 73 73 69 76 65 2d 69 6e 74 65 72 66 61 63 65 20 64 65 66 61 75 | :cfgcmd:`passive-interface.defau |
| 8abc0 | 6c 74 60 20 77 61 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 54 68 65 20 6f 70 74 69 6f 6e 61 6c | lt`.was.configured..The.optional |
| 8abe0 | 20 70 61 72 61 6d 65 74 65 72 20 72 65 67 69 73 74 65 72 20 73 70 65 63 69 66 69 65 73 20 74 68 | .parameter.register.specifies.th |
| 8ac00 | 61 74 20 52 65 67 69 73 74 72 61 74 69 6f 6e 20 52 65 71 75 65 73 74 20 73 68 6f 75 6c 64 20 62 | at.Registration.Request.should.b |
| 8ac20 | 65 20 73 65 6e 74 20 74 6f 20 74 68 69 73 20 70 65 65 72 20 6f 6e 20 73 74 61 72 74 75 70 2e 00 | e.sent.to.this.peer.on.startup.. |
| 8ac40 | 54 68 65 20 6f 72 69 67 69 6e 61 6c 20 38 30 32 2e 31 71 5f 20 73 70 65 63 69 66 69 63 61 74 69 | The.original.802.1q_.specificati |
| 8ac60 | 6f 6e 20 61 6c 6c 6f 77 73 20 61 20 73 69 6e 67 6c 65 20 56 69 72 74 75 61 6c 20 4c 6f 63 61 6c | on.allows.a.single.Virtual.Local |
| 8ac80 | 20 41 72 65 61 20 4e 65 74 77 6f 72 6b 20 28 56 4c 41 4e 29 20 68 65 61 64 65 72 20 74 6f 20 62 | .Area.Network.(VLAN).header.to.b |
| 8aca0 | 65 20 69 6e 73 65 72 74 65 64 20 69 6e 74 6f 20 61 6e 20 45 74 68 65 72 6e 65 74 20 66 72 61 6d | e.inserted.into.an.Ethernet.fram |
| 8acc0 | 65 2e 20 51 69 6e 51 20 61 6c 6c 6f 77 73 20 6d 75 6c 74 69 70 6c 65 20 56 4c 41 4e 20 74 61 67 | e..QinQ.allows.multiple.VLAN.tag |
| 8ace0 | 73 20 74 6f 20 62 65 20 69 6e 73 65 72 74 65 64 20 69 6e 74 6f 20 61 20 73 69 6e 67 6c 65 20 66 | s.to.be.inserted.into.a.single.f |
| 8ad00 | 72 61 6d 65 2c 20 61 6e 20 65 73 73 65 6e 74 69 61 6c 20 63 61 70 61 62 69 6c 69 74 79 20 66 6f | rame,.an.essential.capability.fo |
| 8ad20 | 72 20 69 6d 70 6c 65 6d 65 6e 74 69 6e 67 20 4d 65 74 72 6f 20 45 74 68 65 72 6e 65 74 20 6e 65 | r.implementing.Metro.Ethernet.ne |
| 8ad40 | 74 77 6f 72 6b 20 74 6f 70 6f 6c 6f 67 69 65 73 2e 20 4a 75 73 74 20 61 73 20 51 69 6e 51 20 65 | twork.topologies..Just.as.QinQ.e |
| 8ad60 | 78 74 65 6e 64 73 20 38 30 32 2e 31 51 2c 20 51 69 6e 51 20 69 74 73 65 6c 66 20 69 73 20 65 78 | xtends.802.1Q,.QinQ.itself.is.ex |
| 8ad80 | 74 65 6e 64 65 64 20 62 79 20 6f 74 68 65 72 20 4d 65 74 72 6f 20 45 74 68 65 72 6e 65 74 20 70 | tended.by.other.Metro.Ethernet.p |
| 8ada0 | 72 6f 74 6f 63 6f 6c 73 2e 00 54 68 65 20 6f 75 74 67 6f 69 6e 67 20 69 6e 74 65 72 66 61 63 65 | rotocols..The.outgoing.interface |
| 8adc0 | 20 74 6f 20 70 65 72 66 6f 72 6d 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 6f 6e 00 54 | .to.perform.the.translation.on.T |
| 8ade0 | 68 65 20 70 65 65 72 20 6e 61 6d 65 20 6d 75 73 74 20 62 65 20 61 6e 20 61 6c 70 68 61 6e 75 6d | he.peer.name.must.be.an.alphanum |
| 8ae00 | 65 72 69 63 20 61 6e 64 20 63 61 6e 20 68 61 76 65 20 68 79 70 65 6e 20 6f 72 20 75 6e 64 65 72 | eric.and.can.have.hypen.or.under |
| 8ae20 | 73 63 6f 72 65 20 61 73 20 73 70 65 63 69 61 6c 20 63 68 61 72 61 63 74 65 72 73 2e 20 49 74 20 | score.as.special.characters..It. |
| 8ae40 | 69 73 20 70 75 72 65 6c 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 61 6c 2e 00 54 68 65 20 70 65 65 | is.purely.informational..The.pee |
| 8ae60 | 72 20 6e 61 6d 65 73 20 52 49 47 48 54 20 61 6e 64 20 4c 45 46 54 20 61 72 65 20 75 73 65 64 20 | r.names.RIGHT.and.LEFT.are.used. |
| 8ae80 | 61 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 61 6c 20 74 65 78 74 2e 00 54 68 65 20 70 65 65 72 20 | as.informational.text..The.peer. |
| 8aea0 | 77 69 74 68 20 6c 6f 77 65 72 20 70 72 69 6f 72 69 74 79 20 77 69 6c 6c 20 62 65 63 6f 6d 65 20 | with.lower.priority.will.become. |
| 8aec0 | 74 68 65 20 6b 65 79 20 73 65 72 76 65 72 20 61 6e 64 20 73 74 61 72 74 20 64 69 73 74 72 69 62 | the.key.server.and.start.distrib |
| 8aee0 | 75 74 69 6e 67 20 53 41 4b 73 2e 00 54 68 65 20 70 69 6e 67 20 63 6f 6d 6d 61 6e 64 20 69 73 20 | uting.SAKs..The.ping.command.is. |
| 8af00 | 75 73 65 64 20 74 6f 20 74 65 73 74 20 77 68 65 74 68 65 72 20 61 20 6e 65 74 77 6f 72 6b 20 68 | used.to.test.whether.a.network.h |
| 8af20 | 6f 73 74 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 6f 72 20 6e 6f 74 2e 00 54 68 65 20 70 6f 70 | ost.is.reachable.or.not..The.pop |
| 8af40 | 75 6c 61 72 20 55 6e 69 78 2f 4c 69 6e 75 78 20 60 60 64 69 67 60 60 20 74 6f 6f 6c 20 73 65 74 | ular.Unix/Linux.``dig``.tool.set |
| 8af60 | 73 20 74 68 65 20 41 44 2d 62 69 74 20 69 6e 20 74 68 65 20 71 75 65 72 79 2e 20 54 68 69 73 20 | s.the.AD-bit.in.the.query..This. |
| 8af80 | 6d 69 67 68 74 20 6c 65 61 64 20 74 6f 20 75 6e 65 78 70 65 63 74 65 64 20 71 75 65 72 79 20 72 | might.lead.to.unexpected.query.r |
| 8afa0 | 65 73 75 6c 74 73 20 77 68 65 6e 20 74 65 73 74 69 6e 67 2e 20 53 65 74 20 60 60 2b 6e 6f 61 64 | esults.when.testing..Set.``+noad |
| 8afc0 | 60 60 20 6f 6e 20 74 68 65 20 60 60 64 69 67 60 60 20 63 6f 6d 6d 61 6e 64 20 6c 69 6e 65 20 77 | ``.on.the.``dig``.command.line.w |
| 8afe0 | 68 65 6e 20 74 68 69 73 20 69 73 20 74 68 65 20 63 61 73 65 2e 00 54 68 65 20 70 72 65 2d 73 68 | hen.this.is.the.case..The.pre-sh |
| 8b000 | 61 72 65 64 20 6b 65 79 20 6d 6f 64 65 20 69 73 20 64 65 70 72 65 63 61 74 65 64 20 61 6e 64 20 | ared.key.mode.is.deprecated.and. |
| 8b020 | 77 69 6c 6c 20 62 65 20 72 65 6d 6f 76 65 64 20 66 72 6f 6d 20 66 75 74 75 72 65 20 4f 70 65 6e | will.be.removed.from.future.Open |
| 8b040 | 56 50 4e 20 76 65 72 73 69 6f 6e 73 2c 20 73 6f 20 56 79 4f 53 20 77 69 6c 6c 20 68 61 76 65 20 | VPN.versions,.so.VyOS.will.have. |
| 8b060 | 74 6f 20 72 65 6d 6f 76 65 20 73 75 70 70 6f 72 74 20 66 6f 72 20 74 68 61 74 20 6f 70 74 69 6f | to.remove.support.for.that.optio |
| 8b080 | 6e 20 61 73 20 77 65 6c 6c 2e 20 54 68 65 20 72 65 61 73 6f 6e 20 69 73 20 74 68 61 74 20 75 73 | n.as.well..The.reason.is.that.us |
| 8b0a0 | 69 6e 67 20 70 72 65 2d 73 68 61 72 65 64 20 6b 65 79 73 20 69 73 20 73 69 67 6e 69 66 69 63 61 | ing.pre-shared.keys.is.significa |
| 8b0c0 | 6e 74 6c 79 20 6c 65 73 73 20 73 65 63 75 72 65 20 74 68 61 6e 20 75 73 69 6e 67 20 54 4c 53 2e | ntly.less.secure.than.using.TLS. |
| 8b0e0 | 00 54 68 65 20 70 72 65 66 69 78 20 61 6e 64 20 41 53 4e 20 74 68 61 74 20 6f 72 69 67 69 6e 61 | .The.prefix.and.ASN.that.origina |
| 8b100 | 74 65 64 20 69 74 20 6d 61 74 63 68 20 61 20 73 69 67 6e 65 64 20 52 4f 41 2e 20 54 68 65 73 65 | ted.it.match.a.signed.ROA..These |
| 8b120 | 20 61 72 65 20 70 72 6f 62 61 62 6c 79 20 74 72 75 73 74 77 6f 72 74 68 79 20 72 6f 75 74 65 20 | .are.probably.trustworthy.route. |
| 8b140 | 61 6e 6e 6f 75 6e 63 65 6d 65 6e 74 73 2e 00 54 68 65 20 70 72 65 66 69 78 20 6f 72 20 70 72 65 | announcements..The.prefix.or.pre |
| 8b160 | 66 69 78 20 6c 65 6e 67 74 68 20 61 6e 64 20 41 53 4e 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 | fix.length.and.ASN.that.originat |
| 8b180 | 65 64 20 69 74 20 64 6f 65 73 6e 27 74 20 6d 61 74 63 68 20 61 6e 79 20 65 78 69 73 74 69 6e 67 | ed.it.doesn't.match.any.existing |
| 8b1a0 | 20 52 4f 41 2e 20 54 68 69 73 20 63 6f 75 6c 64 20 62 65 20 74 68 65 20 72 65 73 75 6c 74 20 6f | .ROA..This.could.be.the.result.o |
| 8b1c0 | 66 20 61 20 70 72 65 66 69 78 20 68 69 6a 61 63 6b 2c 20 6f 72 20 6d 65 72 65 6c 79 20 61 20 6d | f.a.prefix.hijack,.or.merely.a.m |
| 8b1e0 | 69 73 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 62 75 74 20 73 68 6f 75 6c 64 20 70 72 6f 62 | isconfiguration,.but.should.prob |
| 8b200 | 61 62 6c 79 20 62 65 20 74 72 65 61 74 65 64 20 61 73 20 75 6e 74 72 75 73 74 77 6f 72 74 68 79 | ably.be.treated.as.untrustworthy |
| 8b220 | 20 72 6f 75 74 65 20 61 6e 6e 6f 75 6e 63 65 6d 65 6e 74 73 2e 00 54 68 65 20 70 72 69 6d 61 72 | .route.announcements..The.primar |
| 8b240 | 79 20 44 48 43 50 20 73 65 72 76 65 72 20 75 73 65 73 20 61 64 64 72 65 73 73 20 60 31 39 32 2e | y.DHCP.server.uses.address.`192. |
| 8b260 | 31 36 38 2e 31 38 39 2e 32 35 32 60 00 54 68 65 20 70 72 69 6d 61 72 79 20 61 6e 64 20 73 65 63 | 168.189.252`.The.primary.and.sec |
| 8b280 | 6f 6e 64 61 72 79 20 73 74 61 74 65 6d 65 6e 74 73 20 64 65 74 65 72 6d 69 6e 65 73 20 77 68 65 | ondary.statements.determines.whe |
| 8b2a0 | 74 68 65 72 20 74 68 65 20 73 65 72 76 65 72 20 69 73 20 70 72 69 6d 61 72 79 20 6f 72 20 73 65 | ther.the.server.is.primary.or.se |
| 8b2c0 | 63 6f 6e 64 61 72 79 2e 00 54 68 65 20 70 72 69 6d 61 72 79 20 6f 70 74 69 6f 6e 20 69 73 20 6f | condary..The.primary.option.is.o |
| 8b2e0 | 6e 6c 79 20 76 61 6c 69 64 20 66 6f 72 20 61 63 74 69 76 65 2d 62 61 63 6b 75 70 2c 20 74 72 61 | nly.valid.for.active-backup,.tra |
| 8b300 | 6e 73 6d 69 74 2d 6c 6f 61 64 2d 62 61 6c 61 6e 63 65 2c 20 61 6e 64 20 61 64 61 70 74 69 76 65 | nsmit-load-balance,.and.adaptive |
| 8b320 | 2d 6c 6f 61 64 2d 62 61 6c 61 6e 63 65 20 6d 6f 64 65 2e 00 54 68 65 20 70 72 69 6f 72 69 74 79 | -load-balance.mode..The.priority |
| 8b340 | 20 6d 75 73 74 20 62 65 20 61 6e 20 69 6e 74 65 67 65 72 20 6e 75 6d 62 65 72 20 66 72 6f 6d 20 | .must.be.an.integer.number.from. |
| 8b360 | 31 20 74 6f 20 32 35 35 2e 20 48 69 67 68 65 72 20 70 72 69 6f 72 69 74 79 20 76 61 6c 75 65 20 | 1.to.255..Higher.priority.value. |
| 8b380 | 69 6e 63 72 65 61 73 65 73 20 72 6f 75 74 65 72 27 73 20 70 72 65 63 65 64 65 6e 63 65 20 69 6e | increases.router's.precedence.in |
| 8b3a0 | 20 74 68 65 20 6d 61 73 74 65 72 20 65 6c 65 63 74 69 6f 6e 73 2e 00 54 68 65 20 70 72 6f 63 65 | .the.master.elections..The.proce |
| 8b3c0 | 64 75 72 65 20 74 6f 20 73 70 65 63 69 66 79 20 61 20 3a 61 62 62 72 3a 60 4e 49 53 2b 20 28 4e | dure.to.specify.a.:abbr:`NIS+.(N |
| 8b3e0 | 65 74 77 6f 72 6b 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 20 53 65 72 76 69 63 65 20 50 6c 75 73 29 | etwork.Information.Service.Plus) |
| 8b400 | 60 20 64 6f 6d 61 69 6e 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 74 68 65 20 4e 49 53 20 64 | `.domain.is.similar.to.the.NIS.d |
| 8b420 | 6f 6d 61 69 6e 20 6f 6e 65 3a 00 54 68 65 20 70 72 6f 6d 70 74 20 69 73 20 61 64 6a 75 73 74 65 | omain.one:.The.prompt.is.adjuste |
| 8b440 | 64 20 74 6f 20 72 65 66 6c 65 63 74 20 74 68 69 73 20 63 68 61 6e 67 65 20 69 6e 20 62 6f 74 68 | d.to.reflect.this.change.in.both |
| 8b460 | 20 63 6f 6e 66 69 67 20 61 6e 64 20 6f 70 2d 6d 6f 64 65 2e 00 54 68 65 20 70 72 6f 74 6f 63 6f | .config.and.op-mode..The.protoco |
| 8b480 | 6c 20 61 6e 64 20 70 6f 72 74 20 77 65 20 77 69 73 68 20 74 6f 20 66 6f 72 77 61 72 64 3b 00 54 | l.and.port.we.wish.to.forward;.T |
| 8b4a0 | 68 65 20 70 72 6f 74 6f 63 6f 6c 20 69 73 20 75 73 75 61 6c 6c 79 20 64 65 73 63 72 69 62 65 64 | he.protocol.is.usually.described |
| 8b4c0 | 20 69 6e 20 74 65 72 6d 73 20 6f 66 20 61 20 63 6c 69 65 6e 74 2d 73 65 72 76 65 72 20 6d 6f 64 | .in.terms.of.a.client-server.mod |
| 8b4e0 | 65 6c 2c 20 62 75 74 20 63 61 6e 20 61 73 20 65 61 73 69 6c 79 20 62 65 20 75 73 65 64 20 69 6e | el,.but.can.as.easily.be.used.in |
| 8b500 | 20 70 65 65 72 2d 74 6f 2d 70 65 65 72 20 72 65 6c 61 74 69 6f 6e 73 68 69 70 73 20 77 68 65 72 | .peer-to-peer.relationships.wher |
| 8b520 | 65 20 62 6f 74 68 20 70 65 65 72 73 20 63 6f 6e 73 69 64 65 72 20 74 68 65 20 6f 74 68 65 72 20 | e.both.peers.consider.the.other. |
| 8b540 | 74 6f 20 62 65 20 61 20 70 6f 74 65 6e 74 69 61 6c 20 74 69 6d 65 20 73 6f 75 72 63 65 2e 20 49 | to.be.a.potential.time.source..I |
| 8b560 | 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 73 20 73 65 6e 64 20 61 6e 64 20 72 65 63 65 69 76 65 20 | mplementations.send.and.receive. |
| 8b580 | 74 69 6d 65 73 74 61 6d 70 73 20 75 73 69 6e 67 20 3a 61 62 62 72 3a 60 55 44 50 20 28 55 73 65 | timestamps.using.:abbr:`UDP.(Use |
| 8b5a0 | 72 20 44 61 74 61 67 72 61 6d 20 50 72 6f 74 6f 63 6f 6c 29 60 20 6f 6e 20 70 6f 72 74 20 6e 75 | r.Datagram.Protocol)`.on.port.nu |
| 8b5c0 | 6d 62 65 72 20 31 32 33 2e 00 54 68 65 20 70 72 6f 74 6f 63 6f 6c 20 6f 76 65 72 68 65 61 64 20 | mber.123..The.protocol.overhead. |
| 8b5e0 | 6f 66 20 4c 32 54 50 76 33 20 69 73 20 61 6c 73 6f 20 73 69 67 6e 69 66 69 63 61 6e 74 6c 79 20 | of.L2TPv3.is.also.significantly. |
| 8b600 | 62 69 67 67 65 72 20 74 68 61 6e 20 4d 50 4c 53 2e 00 54 68 65 20 70 72 6f 78 79 20 73 65 72 76 | bigger.than.MPLS..The.proxy.serv |
| 8b620 | 69 63 65 20 69 6e 20 56 79 4f 53 20 69 73 20 62 61 73 65 64 20 6f 6e 20 53 71 75 69 64 5f 20 61 | ice.in.VyOS.is.based.on.Squid_.a |
| 8b640 | 6e 64 20 73 6f 6d 65 20 72 65 6c 61 74 65 64 20 6d 6f 64 75 6c 65 73 2e 00 54 68 65 20 70 75 62 | nd.some.related.modules..The.pub |
| 8b660 | 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 6c 6f 63 61 6c 20 73 69 64 65 | lic.IP.address.of.the.local.side |
| 8b680 | 20 6f 66 20 74 68 65 20 56 50 4e 20 77 69 6c 6c 20 62 65 20 31 39 38 2e 35 31 2e 31 30 30 2e 31 | .of.the.VPN.will.be.198.51.100.1 |
| 8b6a0 | 30 2e 00 54 68 65 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 | 0..The.public.IP.address.of.the. |
| 8b6c0 | 72 65 6d 6f 74 65 20 73 69 64 65 20 6f 66 20 74 68 65 20 56 50 4e 20 77 69 6c 6c 20 62 65 20 32 | remote.side.of.the.VPN.will.be.2 |
| 8b6e0 | 30 33 2e 30 2e 31 31 33 2e 31 31 2e 00 54 68 65 20 72 61 74 65 2d 6c 69 6d 69 74 20 69 73 20 73 | 03.0.113.11..The.rate-limit.is.s |
| 8b700 | 65 74 20 69 6e 20 6b 62 69 74 2f 73 65 63 2e 00 54 68 65 20 72 65 67 75 6c 61 72 20 65 78 70 72 | et.in.kbit/sec..The.regular.expr |
| 8b720 | 65 73 73 69 6f 6e 20 6d 61 74 63 68 65 73 20 69 66 20 61 6e 64 20 6f 6e 6c 79 20 69 66 20 74 68 | ession.matches.if.and.only.if.th |
| 8b740 | 65 20 65 6e 74 69 72 65 20 73 74 72 69 6e 67 20 6d 61 74 63 68 65 73 20 74 68 65 20 70 61 74 74 | e.entire.string.matches.the.patt |
| 8b760 | 65 72 6e 2e 00 54 68 65 20 72 65 6d 6f 74 65 20 70 65 65 72 20 60 74 6f 2d 77 67 30 32 60 20 75 | ern..The.remote.peer.`to-wg02`.u |
| 8b780 | 73 65 73 20 58 4d 72 6c 50 79 6b 61 78 68 64 41 41 69 53 6a 68 74 50 6c 76 69 33 30 4e 56 6b 76 | ses.XMrlPykaxhdAAiSjhtPlvi30NVkv |
| 8b7a0 | 4c 51 6c 69 51 75 4b 50 37 41 49 37 43 79 49 3d 20 61 73 20 69 74 73 20 70 75 62 6c 69 63 20 6b | LQliQuKP7AI7CyI=.as.its.public.k |
| 8b7c0 | 65 79 20 70 6f 72 74 69 6f 6e 00 54 68 65 20 72 65 6d 6f 74 65 20 73 69 74 65 20 77 69 6c 6c 20 | ey.portion.The.remote.site.will. |
| 8b7e0 | 68 61 76 65 20 61 20 73 75 62 6e 65 74 20 6f 66 20 31 30 2e 31 2e 30 2e 30 2f 31 36 2e 00 54 68 | have.a.subnet.of.10.1.0.0/16..Th |
| 8b800 | 65 20 72 65 6d 6f 74 65 20 75 73 65 72 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 6f 70 65 6e 63 | e.remote.user.will.use.the.openc |
| 8b820 | 6f 6e 6e 65 63 74 20 63 6c 69 65 6e 74 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 | onnect.client.to.connect.to.the. |
| 8b840 | 72 6f 75 74 65 72 20 61 6e 64 20 77 69 6c 6c 20 72 65 63 65 69 76 65 20 61 6e 20 49 50 20 61 64 | router.and.will.receive.an.IP.ad |
| 8b860 | 64 72 65 73 73 20 66 72 6f 6d 20 61 20 56 50 4e 20 70 6f 6f 6c 2c 20 61 6c 6c 6f 77 69 6e 67 20 | dress.from.a.VPN.pool,.allowing. |
| 8b880 | 66 75 6c 6c 20 61 63 63 65 73 73 20 74 6f 20 74 68 65 20 6e 65 74 77 6f 72 6b 2e 00 54 68 65 20 | full.access.to.the.network..The. |
| 8b8a0 | 72 65 71 75 65 73 74 6f 72 20 6e 65 74 6d 61 73 6b 20 66 6f 72 20 77 68 69 63 68 20 74 68 65 20 | requestor.netmask.for.which.the. |
| 8b8c0 | 72 65 71 75 65 73 74 6f 72 20 49 50 20 41 64 64 72 65 73 73 20 73 68 6f 75 6c 64 20 62 65 20 75 | requestor.IP.Address.should.be.u |
| 8b8e0 | 73 65 64 20 61 73 20 74 68 65 20 45 44 4e 53 20 43 6c 69 65 6e 74 20 53 75 62 6e 65 74 20 66 6f | sed.as.the.EDNS.Client.Subnet.fo |
| 8b900 | 72 20 6f 75 74 67 6f 69 6e 67 20 71 75 65 72 69 65 73 2e 00 54 68 65 20 72 65 71 75 69 72 65 64 | r.outgoing.queries..The.required |
| 8b920 | 20 63 6f 6e 66 69 67 20 66 69 6c 65 20 6d 61 79 20 6c 6f 6f 6b 20 6c 69 6b 65 20 74 68 69 73 3a | .config.file.may.look.like.this: |
| 8b940 | 00 54 68 65 20 72 65 71 75 69 72 65 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 61 6e 20 | .The.required.configuration.can. |
| 8b960 | 62 65 20 62 72 6f 6b 65 6e 20 64 6f 77 6e 20 69 6e 74 6f 20 34 20 6d 61 6a 6f 72 20 70 69 65 63 | be.broken.down.into.4.major.piec |
| 8b980 | 65 73 3a 00 54 68 65 20 72 65 73 75 6c 74 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | es:.The.resulting.configuration. |
| 8b9a0 | 77 69 6c 6c 20 6c 6f 6f 6b 20 6c 69 6b 65 3a 00 54 68 65 20 72 6f 6f 74 20 63 61 75 73 65 20 6f | will.look.like:.The.root.cause.o |
| 8b9c0 | 66 20 74 68 65 20 70 72 6f 62 6c 65 6d 20 69 73 20 74 68 61 74 20 66 6f 72 20 56 54 49 20 74 75 | f.the.problem.is.that.for.VTI.tu |
| 8b9e0 | 6e 6e 65 6c 73 20 74 6f 20 77 6f 72 6b 2c 20 74 68 65 69 72 20 74 72 61 66 66 69 63 20 73 65 6c | nnels.to.work,.their.traffic.sel |
| 8ba00 | 65 63 74 6f 72 73 20 68 61 76 65 20 74 6f 20 62 65 20 73 65 74 20 74 6f 20 30 2e 30 2e 30 2e 30 | ectors.have.to.be.set.to.0.0.0.0 |
| 8ba20 | 2f 30 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 20 6d 61 74 63 68 20 74 68 65 20 74 75 6e 6e | /0.for.traffic.to.match.the.tunn |
| 8ba40 | 65 6c 2c 20 65 76 65 6e 20 74 68 6f 75 67 68 20 61 63 74 75 61 6c 20 72 6f 75 74 69 6e 67 20 64 | el,.even.though.actual.routing.d |
| 8ba60 | 65 63 69 73 69 6f 6e 20 69 73 20 6d 61 64 65 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 6e 65 74 | ecision.is.made.according.to.net |
| 8ba80 | 66 69 6c 74 65 72 20 6d 61 72 6b 73 2e 20 55 6e 6c 65 73 73 20 72 6f 75 74 65 20 69 6e 73 65 72 | filter.marks..Unless.route.inser |
| 8baa0 | 74 69 6f 6e 20 69 73 20 64 69 73 61 62 6c 65 64 20 65 6e 74 69 72 65 6c 79 2c 20 53 74 72 6f 6e | tion.is.disabled.entirely,.Stron |
| 8bac0 | 67 53 57 41 4e 20 74 68 75 73 20 6d 69 73 74 61 6b 65 6e 6c 79 20 69 6e 73 65 72 74 73 20 61 20 | gSWAN.thus.mistakenly.inserts.a. |
| 8bae0 | 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 74 68 72 6f 75 67 68 20 74 68 65 20 56 54 49 20 70 65 | default.route.through.the.VTI.pe |
| 8bb00 | 65 72 20 61 64 64 72 65 73 73 2c 20 77 68 69 63 68 20 6d 61 6b 65 73 20 61 6c 6c 20 74 72 61 66 | er.address,.which.makes.all.traf |
| 8bb20 | 66 69 63 20 72 6f 75 74 65 64 20 74 6f 20 6e 6f 77 68 65 72 65 2e 00 54 68 65 20 72 6f 75 6e 64 | fic.routed.to.nowhere..The.round |
| 8bb40 | 2d 72 6f 62 69 6e 20 70 6f 6c 69 63 79 20 69 73 20 61 20 63 6c 61 73 73 66 75 6c 20 73 63 68 65 | -robin.policy.is.a.classful.sche |
| 8bb60 | 64 75 6c 65 72 20 74 68 61 74 20 64 69 76 69 64 65 73 20 74 72 61 66 66 69 63 20 69 6e 20 64 69 | duler.that.divides.traffic.in.di |
| 8bb80 | 66 66 65 72 65 6e 74 20 63 6c 61 73 73 65 73 5f 20 79 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 | fferent.classes_.you.can.configu |
| 8bba0 | 72 65 20 28 75 70 20 74 6f 20 34 30 39 36 29 2e 20 59 6f 75 20 63 61 6e 20 65 6d 62 65 64 5f 20 | re.(up.to.4096)..You.can.embed_. |
| 8bbc0 | 61 20 6e 65 77 20 70 6f 6c 69 63 79 20 69 6e 74 6f 20 65 61 63 68 20 6f 66 20 74 68 6f 73 65 20 | a.new.policy.into.each.of.those. |
| 8bbe0 | 63 6c 61 73 73 65 73 20 28 64 65 66 61 75 6c 74 20 69 6e 63 6c 75 64 65 64 29 2e 00 54 68 65 20 | classes.(default.included)..The. |
| 8bc00 | 72 6f 75 74 65 20 73 65 6c 65 63 74 69 6f 6e 20 70 72 6f 63 65 73 73 20 75 73 65 64 20 62 79 20 | route.selection.process.used.by. |
| 8bc20 | 46 52 52 27 73 20 42 47 50 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 75 73 65 73 20 74 68 | FRR's.BGP.implementation.uses.th |
| 8bc40 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 64 65 63 69 73 69 6f 6e 20 63 72 69 74 65 72 69 6f 6e 2c 20 | e.following.decision.criterion,. |
| 8bc60 | 73 74 61 72 74 69 6e 67 20 61 74 20 74 68 65 20 74 6f 70 20 6f 66 20 74 68 65 20 6c 69 73 74 20 | starting.at.the.top.of.the.list. |
| 8bc80 | 61 6e 64 20 67 6f 69 6e 67 20 74 6f 77 61 72 64 73 20 74 68 65 20 62 6f 74 74 6f 6d 20 75 6e 74 | and.going.towards.the.bottom.unt |
| 8bca0 | 69 6c 20 6f 6e 65 20 6f 66 20 74 68 65 20 66 61 63 74 6f 72 73 20 63 61 6e 20 62 65 20 75 73 65 | il.one.of.the.factors.can.be.use |
| 8bcc0 | 64 2e 00 54 68 65 20 72 6f 75 74 65 20 77 69 74 68 20 74 68 65 20 73 68 6f 72 74 65 73 74 20 63 | d..The.route.with.the.shortest.c |
| 8bce0 | 6c 75 73 74 65 72 2d 6c 69 73 74 20 6c 65 6e 67 74 68 20 69 73 20 75 73 65 64 2e 20 54 68 65 20 | luster-list.length.is.used..The. |
| 8bd00 | 63 6c 75 73 74 65 72 2d 6c 69 73 74 20 72 65 66 6c 65 63 74 73 20 74 68 65 20 69 42 47 50 20 72 | cluster-list.reflects.the.iBGP.r |
| 8bd20 | 65 66 6c 65 63 74 69 6f 6e 20 70 61 74 68 20 74 68 65 20 72 6f 75 74 65 20 68 61 73 20 74 61 6b | eflection.path.the.route.has.tak |
| 8bd40 | 65 6e 2e 00 54 68 65 20 72 6f 75 74 65 72 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 75 70 64 | en..The.router.automatically.upd |
| 8bd60 | 61 74 65 73 20 6c 69 6e 6b 2d 73 74 61 74 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 77 69 74 68 | ates.link-state.information.with |
| 8bd80 | 20 69 74 73 20 6e 65 69 67 68 62 6f 72 73 2e 20 4f 6e 6c 79 20 61 6e 20 6f 62 73 6f 6c 65 74 65 | .its.neighbors..Only.an.obsolete |
| 8bda0 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 73 20 75 70 64 61 74 65 64 20 77 68 69 63 68 20 61 67 | .information.is.updated.which.ag |
| 8bdc0 | 65 20 68 61 73 20 65 78 63 65 65 64 65 64 20 61 20 73 70 65 63 69 66 69 63 20 74 68 72 65 73 68 | e.has.exceeded.a.specific.thresh |
| 8bde0 | 6f 6c 64 2e 20 54 68 69 73 20 70 61 72 61 6d 65 74 65 72 20 63 68 61 6e 67 65 73 20 61 20 74 68 | old..This.parameter.changes.a.th |
| 8be00 | 72 65 73 68 6f 6c 64 20 76 61 6c 75 65 2c 20 77 68 69 63 68 20 62 79 20 64 65 66 61 75 6c 74 20 | reshold.value,.which.by.default. |
| 8be20 | 69 73 20 31 38 30 30 20 73 65 63 6f 6e 64 73 20 28 68 61 6c 66 20 61 6e 20 68 6f 75 72 29 2e 20 | is.1800.seconds.(half.an.hour).. |
| 8be40 | 54 68 65 20 76 61 6c 75 65 20 69 73 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 77 68 6f 6c | The.value.is.applied.to.the.whol |
| 8be60 | 65 20 4f 53 50 46 20 72 6f 75 74 65 72 2e 20 54 68 65 20 74 69 6d 65 72 20 72 61 6e 67 65 20 69 | e.OSPF.router..The.timer.range.i |
| 8be80 | 73 20 31 30 20 74 6f 20 31 38 30 30 2e 00 54 68 65 20 72 6f 75 74 65 72 20 73 68 6f 75 6c 64 20 | s.10.to.1800..The.router.should. |
| 8bea0 | 64 69 73 63 61 72 64 20 44 48 43 50 20 70 61 63 6b 61 67 65 73 20 61 6c 72 65 61 64 79 20 63 6f | discard.DHCP.packages.already.co |
| 8bec0 | 6e 74 61 69 6e 69 6e 67 20 72 65 6c 61 79 20 61 67 65 6e 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | ntaining.relay.agent.information |
| 8bee0 | 20 74 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 6f 6e 6c 79 20 72 65 71 75 65 73 74 73 20 66 72 | .to.ensure.that.only.requests.fr |
| 8bf00 | 6f 6d 20 44 48 43 50 20 63 6c 69 65 6e 74 73 20 61 72 65 20 66 6f 72 77 61 72 64 65 64 2e 00 54 | om.DHCP.clients.are.forwarded..T |
| 8bf20 | 68 65 20 73 46 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 20 62 61 73 65 64 20 6f 6e 20 68 73 66 | he.sFlow.accounting.based.on.hsf |
| 8bf40 | 6c 6f 77 64 20 68 74 74 70 73 3a 2f 2f 73 66 6c 6f 77 2e 6e 65 74 2f 00 54 68 65 20 73 61 6d 65 | lowd.https://sflow.net/.The.same |
| 8bf60 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 70 74 69 6f 6e 73 20 61 70 70 6c 79 20 77 68 65 | .configuration.options.apply.whe |
| 8bf80 | 6e 20 49 64 65 6e 74 69 74 79 20 62 61 73 65 64 20 63 6f 6e 66 69 67 20 69 73 20 63 6f 6e 66 69 | n.Identity.based.config.is.confi |
| 8bfa0 | 67 75 72 65 64 20 69 6e 20 67 72 6f 75 70 20 6d 6f 64 65 20 65 78 63 65 70 74 20 74 68 61 74 20 | gured.in.group.mode.except.that. |
| 8bfc0 | 67 72 6f 75 70 20 6d 6f 64 65 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 75 73 65 64 20 77 69 74 68 | group.mode.can.only.be.used.with |
| 8bfe0 | 20 52 41 44 49 55 53 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 00 54 68 65 20 73 63 68 65 | .RADIUS.authentication..The.sche |
| 8c000 | 6d 65 20 61 62 6f 76 65 20 64 6f 65 73 6e 27 74 20 77 6f 72 6b 20 77 68 65 6e 20 6f 6e 65 20 6f | me.above.doesn't.work.when.one.o |
| 8c020 | 66 20 74 68 65 20 72 6f 75 74 65 72 73 20 68 61 73 20 61 20 64 79 6e 61 6d 69 63 20 65 78 74 65 | f.the.routers.has.a.dynamic.exte |
| 8c040 | 72 6e 61 6c 20 61 64 64 72 65 73 73 20 74 68 6f 75 67 68 2e 20 54 68 65 20 63 6c 61 73 73 69 63 | rnal.address.though..The.classic |
| 8c060 | 20 77 6f 72 6b 61 72 6f 75 6e 64 20 66 6f 72 20 74 68 69 73 20 69 73 20 74 6f 20 73 65 74 75 70 | .workaround.for.this.is.to.setup |
| 8c080 | 20 61 6e 20 61 64 64 72 65 73 73 20 6f 6e 20 61 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 | .an.address.on.a.loopback.interf |
| 8c0a0 | 61 63 65 20 61 6e 64 20 75 73 65 20 69 74 20 61 73 20 61 20 73 6f 75 72 63 65 20 61 64 64 72 65 | ace.and.use.it.as.a.source.addre |
| 8c0c0 | 73 73 20 66 6f 72 20 74 68 65 20 47 52 45 20 74 75 6e 6e 65 6c 2c 20 74 68 65 6e 20 73 65 74 75 | ss.for.the.GRE.tunnel,.then.setu |
| 8c0e0 | 70 20 61 6e 20 49 50 73 65 63 20 70 6f 6c 69 63 79 20 74 6f 20 6d 61 74 63 68 20 74 68 6f 73 65 | p.an.IPsec.policy.to.match.those |
| 8c100 | 20 6c 6f 6f 70 62 61 63 6b 20 61 64 64 72 65 73 73 65 73 2e 00 54 68 65 20 73 65 61 72 63 68 20 | .loopback.addresses..The.search. |
| 8c120 | 66 69 6c 74 65 72 20 63 61 6e 20 63 6f 6e 74 61 69 6e 20 75 70 20 74 6f 20 31 35 20 6f 63 63 75 | filter.can.contain.up.to.15.occu |
| 8c140 | 72 72 65 6e 63 65 73 20 6f 66 20 25 73 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 72 65 70 6c | rrences.of.%s.which.will.be.repl |
| 8c160 | 61 63 65 64 20 62 79 20 74 68 65 20 75 73 65 72 6e 61 6d 65 2c 20 61 73 20 69 6e 20 22 75 69 64 | aced.by.the.username,.as.in."uid |
| 8c180 | 3d 25 73 22 20 66 6f 72 20 3a 72 66 63 3a 60 32 30 33 37 60 20 64 69 72 65 63 74 6f 72 69 65 73 | =%s".for.:rfc:`2037`.directories |
| 8c1a0 | 2e 20 46 6f 72 20 61 20 64 65 74 61 69 6c 65 64 20 64 65 73 63 72 69 70 74 69 6f 6e 20 6f 66 20 | ..For.a.detailed.description.of. |
| 8c1c0 | 4c 44 41 50 20 73 65 61 72 63 68 20 66 69 6c 74 65 72 20 73 79 6e 74 61 78 20 73 65 65 20 3a 72 | LDAP.search.filter.syntax.see.:r |
| 8c1e0 | 66 63 3a 60 32 32 35 34 60 2e 00 54 68 65 20 73 65 63 6f 6e 64 61 72 79 20 44 48 43 50 20 73 65 | fc:`2254`..The.secondary.DHCP.se |
| 8c200 | 72 76 65 72 20 75 73 65 73 20 61 64 64 72 65 73 73 20 60 31 39 32 2e 31 36 38 2e 31 38 39 2e 32 | rver.uses.address.`192.168.189.2 |
| 8c220 | 35 33 60 00 54 68 65 20 73 65 63 75 72 69 74 79 20 61 70 70 72 6f 61 63 68 20 69 6e 20 53 4e 4d | 53`.The.security.approach.in.SNM |
| 8c240 | 50 76 33 20 74 61 72 67 65 74 73 3a 00 54 68 65 20 73 65 71 75 65 6e 63 65 20 60 60 5e 45 63 3f | Pv3.targets:.The.sequence.``^Ec? |
| 8c260 | 60 60 20 74 72 61 6e 73 6c 61 74 65 73 20 74 6f 3a 20 60 60 43 74 72 6c 2b 45 20 63 20 3f 60 60 | ``.translates.to:.``Ctrl+E.c.?`` |
| 8c280 | 2e 20 54 6f 20 71 75 69 74 20 74 68 65 20 73 65 73 73 69 6f 6e 20 75 73 65 3a 20 60 60 43 74 72 | ..To.quit.the.session.use:.``Ctr |
| 8c2a0 | 6c 2b 45 20 63 20 2e 60 60 00 54 68 65 20 73 65 74 75 70 20 69 73 20 74 68 69 73 3a 20 4c 65 61 | l+E.c..``.The.setup.is.this:.Lea |
| 8c2c0 | 66 32 20 2d 20 53 70 69 6e 65 31 20 2d 20 4c 65 61 66 33 00 54 68 65 20 73 69 7a 65 20 6f 66 20 | f2.-.Spine1.-.Leaf3.The.size.of. |
| 8c2e0 | 74 68 65 20 6f 6e 2d 64 69 73 6b 20 50 72 6f 78 79 20 63 61 63 68 65 20 69 73 20 75 73 65 72 20 | the.on-disk.Proxy.cache.is.user. |
| 8c300 | 63 6f 6e 66 69 67 75 72 61 62 6c 65 2e 20 54 68 65 20 50 72 6f 78 69 65 73 20 64 65 66 61 75 6c | configurable..The.Proxies.defaul |
| 8c320 | 74 20 63 61 63 68 65 2d 73 69 7a 65 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 31 30 | t.cache-size.is.configured.to.10 |
| 8c340 | 30 20 4d 42 2e 00 54 68 65 20 73 70 65 65 64 20 28 62 61 75 64 72 61 74 65 29 20 6f 66 20 74 68 | 0.MB..The.speed.(baudrate).of.th |
| 8c360 | 65 20 63 6f 6e 73 6f 6c 65 20 64 65 76 69 63 65 2e 20 53 75 70 70 6f 72 74 65 64 20 76 61 6c 75 | e.console.device..Supported.valu |
| 8c380 | 65 73 20 61 72 65 3a 00 54 68 65 20 73 74 61 6e 64 61 72 64 20 77 61 73 20 64 65 76 65 6c 6f 70 | es.are:.The.standard.was.develop |
| 8c3a0 | 65 64 20 62 79 20 49 45 45 45 20 38 30 32 2e 31 2c 20 61 20 77 6f 72 6b 69 6e 67 20 67 72 6f 75 | ed.by.IEEE.802.1,.a.working.grou |
| 8c3c0 | 70 20 6f 66 20 74 68 65 20 49 45 45 45 20 38 30 32 20 73 74 61 6e 64 61 72 64 73 20 63 6f 6d 6d | p.of.the.IEEE.802.standards.comm |
| 8c3e0 | 69 74 74 65 65 2c 20 61 6e 64 20 63 6f 6e 74 69 6e 75 65 73 20 74 6f 20 62 65 20 61 63 74 69 76 | ittee,.and.continues.to.be.activ |
| 8c400 | 65 6c 79 20 72 65 76 69 73 65 64 2e 20 4f 6e 65 20 6f 66 20 74 68 65 20 6e 6f 74 61 62 6c 65 20 | ely.revised..One.of.the.notable. |
| 8c420 | 72 65 76 69 73 69 6f 6e 73 20 69 73 20 38 30 32 2e 31 51 2d 32 30 31 34 20 77 68 69 63 68 20 69 | revisions.is.802.1Q-2014.which.i |
| 8c440 | 6e 63 6f 72 70 6f 72 61 74 65 64 20 49 45 45 45 20 38 30 32 2e 31 61 71 20 28 53 68 6f 72 74 65 | ncorporated.IEEE.802.1aq.(Shorte |
| 8c460 | 73 74 20 50 61 74 68 20 42 72 69 64 67 69 6e 67 29 20 61 6e 64 20 6d 75 63 68 20 6f 66 20 74 68 | st.Path.Bridging).and.much.of.th |
| 8c480 | 65 20 49 45 45 45 20 38 30 32 2e 31 64 20 73 74 61 6e 64 61 72 64 2e 00 54 68 65 20 73 75 62 73 | e.IEEE.802.1d.standard..The.subs |
| 8c4a0 | 65 74 20 6f 66 20 70 6f 73 73 69 62 6c 65 20 70 61 72 61 6d 65 74 65 72 73 20 61 72 65 3a 00 54 | et.of.possible.parameters.are:.T |
| 8c4c0 | 68 65 20 73 75 70 70 6f 72 74 65 64 20 76 61 6c 75 65 73 20 66 6f 72 20 61 20 73 70 65 63 69 66 | he.supported.values.for.a.specif |
| 8c4e0 | 69 63 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 62 65 20 6f 62 74 61 69 6e 65 64 20 77 69 74 | ic.interface.can.be.obtained.wit |
| 8c500 | 68 3a 20 60 65 74 68 74 6f 6f 6c 20 2d 67 20 3c 69 6e 74 65 72 66 61 63 65 3e 60 00 54 68 65 20 | h:.`ethtool.-g.<interface>`.The. |
| 8c520 | 73 79 73 2d 6d 61 63 20 61 6e 64 20 6c 6f 63 61 6c 20 64 69 73 63 72 69 6d 69 6e 61 74 6f 72 20 | sys-mac.and.local.discriminator. |
| 8c540 | 61 72 65 20 75 73 65 64 20 66 6f 72 20 67 65 6e 65 72 61 74 69 6e 67 20 61 20 31 30 2d 62 79 74 | are.used.for.generating.a.10-byt |
| 8c560 | 65 2c 20 54 79 70 65 2d 33 20 45 74 68 65 72 6e 65 74 20 53 65 67 6d 65 6e 74 20 49 44 2e 20 45 | e,.Type-3.Ethernet.Segment.ID..E |
| 8c580 | 53 49 4e 41 4d 45 20 69 73 20 61 20 31 30 2d 62 79 74 65 2c 20 54 79 70 65 2d 30 20 45 74 68 65 | SINAME.is.a.10-byte,.Type-0.Ethe |
| 8c5a0 | 72 6e 65 74 20 53 65 67 6d 65 6e 74 20 49 44 20 2d 20 22 30 30 3a 41 41 3a 42 42 3a 43 43 3a 44 | rnet.Segment.ID.-."00:AA:BB:CC:D |
| 8c5c0 | 44 3a 45 45 3a 46 46 3a 47 47 3a 48 48 3a 49 49 22 2e 00 54 68 65 20 73 79 73 74 65 6d 20 4c 43 | D:EE:FF:GG:HH:II"..The.system.LC |
| 8c5e0 | 44 20 3a 61 62 62 72 3a 60 4c 43 44 20 28 4c 69 71 75 69 64 2d 63 72 79 73 74 61 6c 20 64 69 73 | D.:abbr:`LCD.(Liquid-crystal.dis |
| 8c600 | 70 6c 61 79 29 60 20 6f 70 74 69 6f 6e 20 69 73 20 66 6f 72 20 75 73 65 72 73 20 72 75 6e 6e 69 | play)`.option.is.for.users.runni |
| 8c620 | 6e 67 20 56 79 4f 53 20 6f 6e 20 68 61 72 64 77 61 72 65 20 74 68 61 74 20 66 65 61 74 75 72 65 | ng.VyOS.on.hardware.that.feature |
| 8c640 | 73 20 61 6e 20 4c 43 44 20 64 69 73 70 6c 61 79 2e 20 54 68 69 73 20 69 73 20 74 79 70 69 63 61 | s.an.LCD.display..This.is.typica |
| 8c660 | 6c 6c 79 20 61 20 73 6d 61 6c 6c 20 64 69 73 70 6c 61 79 20 62 75 69 6c 74 20 69 6e 20 61 6e 20 | lly.a.small.display.built.in.an. |
| 8c680 | 31 39 20 69 6e 63 68 20 72 61 63 6b 2d 6d 6f 75 6e 74 61 62 6c 65 20 61 70 70 6c 69 61 6e 63 65 | 19.inch.rack-mountable.appliance |
| 8c6a0 | 2e 20 54 68 6f 73 65 20 64 69 73 70 6c 61 79 73 20 61 72 65 20 75 73 65 64 20 74 6f 20 73 68 6f | ..Those.displays.are.used.to.sho |
| 8c6c0 | 77 20 72 75 6e 74 69 6d 65 20 64 61 74 61 2e 00 54 68 65 20 73 79 73 74 65 6d 20 69 73 20 63 6f | w.runtime.data..The.system.is.co |
| 8c6e0 | 6e 66 69 67 75 72 65 64 20 74 6f 20 61 74 74 65 6d 70 74 20 64 6f 6d 61 69 6e 20 63 6f 6d 70 6c | nfigured.to.attempt.domain.compl |
| 8c700 | 65 74 69 6f 6e 20 69 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6f 72 64 65 72 3a 20 76 79 | etion.in.the.following.order:.vy |
| 8c720 | 6f 73 2e 69 6f 20 28 66 69 72 73 74 29 2c 20 76 79 6f 73 2e 6e 65 74 20 28 73 65 63 6f 6e 64 29 | os.io.(first),.vyos.net.(second) |
| 8c740 | 20 61 6e 64 20 76 79 6f 73 2e 6e 65 74 77 6f 72 6b 20 28 6c 61 73 74 29 3a 00 54 68 65 20 74 61 | .and.vyos.network.(last):.The.ta |
| 8c760 | 62 6c 65 20 63 6f 6e 73 69 73 74 73 20 6f 66 20 66 6f 6c 6c 6f 77 69 6e 67 20 64 61 74 61 3a 00 | ble.consists.of.following.data:. |
| 8c780 | 54 68 65 20 74 61 73 6b 20 73 63 68 65 64 75 6c 65 72 20 61 6c 6c 6f 77 73 20 79 6f 75 20 74 6f | The.task.scheduler.allows.you.to |
| 8c7a0 | 20 65 78 65 63 75 74 65 20 74 61 73 6b 73 20 6f 6e 20 61 20 67 69 76 65 6e 20 73 63 68 65 64 75 | .execute.tasks.on.a.given.schedu |
| 8c7c0 | 6c 65 2e 20 49 74 20 6d 61 6b 65 73 20 75 73 65 20 6f 66 20 55 4e 49 58 20 63 72 6f 6e 5f 2e 00 | le..It.makes.use.of.UNIX.cron_.. |
| 8c7e0 | 54 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 6d 75 73 74 20 62 65 20 | The.translation.address.must.be. |
| 8c800 | 73 65 74 20 74 6f 20 6f 6e 65 20 6f 66 20 74 68 65 20 61 76 61 69 6c 61 62 6c 65 20 61 64 64 72 | set.to.one.of.the.available.addr |
| 8c820 | 65 73 73 65 73 20 6f 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 60 6f 75 74 62 6f 75 6e | esses.on.the.configured.`outboun |
| 8c840 | 64 2d 69 6e 74 65 72 66 61 63 65 60 20 6f 72 20 69 74 20 6d 75 73 74 20 62 65 20 73 65 74 20 74 | d-interface`.or.it.must.be.set.t |
| 8c860 | 6f 20 60 6d 61 73 71 75 65 72 61 64 65 60 20 77 68 69 63 68 20 77 69 6c 6c 20 75 73 65 20 74 68 | o.`masquerade`.which.will.use.th |
| 8c880 | 65 20 70 72 69 6d 61 72 79 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 60 6f 75 74 | e.primary.IP.address.of.the.`out |
| 8c8a0 | 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 60 20 61 73 20 69 74 73 20 74 72 61 6e 73 6c 61 74 | bound-interface`.as.its.translat |
| 8c8c0 | 69 6f 6e 20 61 64 64 72 65 73 73 2e 00 54 68 65 20 74 75 6e 6e 65 6c 20 77 69 6c 6c 20 75 73 65 | ion.address..The.tunnel.will.use |
| 8c8e0 | 20 31 30 2e 32 35 35 2e 31 2e 31 20 66 6f 72 20 74 68 65 20 6c 6f 63 61 6c 20 49 50 20 61 6e 64 | .10.255.1.1.for.the.local.IP.and |
| 8c900 | 20 31 30 2e 32 35 35 2e 31 2e 32 20 66 6f 72 20 74 68 65 20 72 65 6d 6f 74 65 2e 00 54 68 65 20 | .10.255.1.2.for.the.remote..The. |
| 8c920 | 74 79 70 65 20 63 61 6e 20 62 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 3a 20 61 73 62 72 2d | type.can.be.the.following:.asbr- |
| 8c940 | 73 75 6d 6d 61 72 79 2c 20 65 78 74 65 72 6e 61 6c 2c 20 6e 65 74 77 6f 72 6b 2c 20 6e 73 73 61 | summary,.external,.network,.nssa |
| 8c960 | 2d 65 78 74 65 72 6e 61 6c 2c 20 6f 70 61 71 75 65 2d 61 72 65 61 2c 20 6f 70 61 71 75 65 2d 61 | -external,.opaque-area,.opaque-a |
| 8c980 | 73 2c 20 6f 70 61 71 75 65 2d 6c 69 6e 6b 2c 20 72 6f 75 74 65 72 2c 20 73 75 6d 6d 61 72 79 2e | s,.opaque-link,.router,.summary. |
| 8c9a0 | 00 54 68 65 20 75 6c 74 69 6d 61 74 65 20 67 6f 61 6c 20 6f 66 20 63 6c 61 73 73 69 66 79 69 6e | .The.ultimate.goal.of.classifyin |
| 8c9c0 | 67 20 74 72 61 66 66 69 63 20 69 73 20 74 6f 20 67 69 76 65 20 65 61 63 68 20 63 6c 61 73 73 20 | g.traffic.is.to.give.each.class. |
| 8c9e0 | 61 20 64 69 66 66 65 72 65 6e 74 20 74 72 65 61 74 6d 65 6e 74 2e 00 54 68 65 20 75 73 65 20 6f | a.different.treatment..The.use.o |
| 8ca00 | 66 20 49 50 6f 45 20 61 64 64 72 65 73 73 65 73 20 74 68 65 20 64 69 73 61 64 76 61 6e 74 61 67 | f.IPoE.addresses.the.disadvantag |
| 8ca20 | 65 20 74 68 61 74 20 50 50 50 20 69 73 20 75 6e 73 75 69 74 65 64 20 66 6f 72 20 6d 75 6c 74 69 | e.that.PPP.is.unsuited.for.multi |
| 8ca40 | 63 61 73 74 20 64 65 6c 69 76 65 72 79 20 74 6f 20 6d 75 6c 74 69 70 6c 65 20 75 73 65 72 73 2e | cast.delivery.to.multiple.users. |
| 8ca60 | 20 54 79 70 69 63 61 6c 6c 79 2c 20 49 50 6f 45 20 75 73 65 73 20 44 79 6e 61 6d 69 63 20 48 6f | .Typically,.IPoE.uses.Dynamic.Ho |
| 8ca80 | 73 74 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 20 61 6e 64 20 45 78 | st.Configuration.Protocol.and.Ex |
| 8caa0 | 74 65 6e 73 69 62 6c 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c | tensible.Authentication.Protocol |
| 8cac0 | 20 74 6f 20 70 72 6f 76 69 64 65 20 74 68 65 20 73 61 6d 65 20 66 75 6e 63 74 69 6f 6e 61 6c 69 | .to.provide.the.same.functionali |
| 8cae0 | 74 79 20 61 73 20 50 50 50 6f 45 2c 20 62 75 74 20 69 6e 20 61 20 6c 65 73 73 20 72 6f 62 75 73 | ty.as.PPPoE,.but.in.a.less.robus |
| 8cb00 | 74 20 6d 61 6e 6e 65 72 2e 00 54 68 65 20 76 61 6c 75 65 20 6f 66 20 74 68 65 20 61 74 74 72 69 | t.manner..The.value.of.the.attri |
| 8cb20 | 62 75 74 65 20 60 60 4e 41 53 2d 50 6f 72 74 2d 49 64 60 60 20 6d 75 73 74 20 62 65 20 6c 65 73 | bute.``NAS-Port-Id``.must.be.les |
| 8cb40 | 73 20 74 68 61 6e 20 31 36 20 63 68 61 72 61 63 74 65 72 73 2c 20 6f 74 68 65 72 77 69 73 65 20 | s.than.16.characters,.otherwise. |
| 8cb60 | 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 6f 6e 27 74 20 62 65 20 72 65 6e 61 6d 65 64 2e 00 | the.interface.won't.be.renamed.. |
| 8cb80 | 54 68 65 20 76 65 6e 64 6f 72 2d 63 6c 61 73 73 2d 69 64 20 6f 70 74 69 6f 6e 20 63 61 6e 20 62 | The.vendor-class-id.option.can.b |
| 8cba0 | 65 20 75 73 65 64 20 74 6f 20 72 65 71 75 65 73 74 20 61 20 73 70 65 63 69 66 69 63 20 63 6c 61 | e.used.to.request.a.specific.cla |
| 8cbc0 | 73 73 20 6f 66 20 76 65 6e 64 6f 72 20 6f 70 74 69 6f 6e 73 20 66 72 6f 6d 20 74 68 65 20 73 65 | ss.of.vendor.options.from.the.se |
| 8cbe0 | 72 76 65 72 2e 00 54 68 65 20 76 65 74 68 20 64 65 76 69 63 65 73 20 61 72 65 20 76 69 72 74 75 | rver..The.veth.devices.are.virtu |
| 8cc00 | 61 6c 20 45 74 68 65 72 6e 65 74 20 64 65 76 69 63 65 73 2e 20 54 68 65 79 20 63 61 6e 20 61 63 | al.Ethernet.devices..They.can.ac |
| 8cc20 | 74 20 61 73 20 74 75 6e 6e 65 6c 73 20 62 65 74 77 65 65 6e 20 6e 65 74 77 6f 72 6b 20 6e 61 6d | t.as.tunnels.between.network.nam |
| 8cc40 | 65 73 70 61 63 65 73 20 74 6f 20 63 72 65 61 74 65 20 61 20 62 72 69 64 67 65 20 74 6f 20 61 20 | espaces.to.create.a.bridge.to.a. |
| 8cc60 | 70 68 79 73 69 63 61 6c 20 6e 65 74 77 6f 72 6b 20 64 65 76 69 63 65 20 69 6e 20 61 6e 6f 74 68 | physical.network.device.in.anoth |
| 8cc80 | 65 72 20 6e 61 6d 65 73 70 61 63 65 20 6f 72 20 56 52 46 2c 20 62 75 74 20 63 61 6e 20 61 6c 73 | er.namespace.or.VRF,.but.can.als |
| 8cca0 | 6f 20 62 65 20 75 73 65 64 20 61 73 20 73 74 61 6e 64 61 6c 6f 6e 65 20 6e 65 74 77 6f 72 6b 20 | o.be.used.as.standalone.network. |
| 8ccc0 | 64 65 76 69 63 65 73 2e 00 54 68 65 20 77 65 6c 6c 20 6b 6e 6f 77 6e 20 4e 41 54 36 34 20 70 72 | devices..The.well.known.NAT64.pr |
| 8cce0 | 65 66 69 78 20 69 73 20 60 60 36 34 3a 66 66 39 62 3a 3a 2f 39 36 60 60 00 54 68 65 20 77 69 6e | efix.is.``64:ff9b::/96``.The.win |
| 8cd00 | 64 6f 77 20 73 69 7a 65 20 6d 75 73 74 20 62 65 20 62 65 74 77 65 65 6e 20 31 20 61 6e 64 20 32 | dow.size.must.be.between.1.and.2 |
| 8cd20 | 31 2e 00 54 68 65 20 77 69 72 65 6c 65 73 73 20 63 6c 69 65 6e 74 20 28 73 75 70 70 6c 69 63 61 | 1..The.wireless.client.(supplica |
| 8cd40 | 6e 74 29 20 61 75 74 68 65 6e 74 69 63 61 74 65 73 20 61 67 61 69 6e 73 74 20 74 68 65 20 52 41 | nt).authenticates.against.the.RA |
| 8cd60 | 44 49 55 53 20 73 65 72 76 65 72 20 28 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 65 72 76 | DIUS.server.(authentication.serv |
| 8cd80 | 65 72 29 20 75 73 69 6e 67 20 61 6e 20 3a 61 62 62 72 3a 60 45 41 50 20 28 45 78 74 65 6e 73 69 | er).using.an.:abbr:`EAP.(Extensi |
| 8cda0 | 62 6c 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 29 60 20 20 6d | ble.Authentication.Protocol)`..m |
| 8cdc0 | 65 74 68 6f 64 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 74 68 65 20 52 41 44 49 55 53 20 73 | ethod.configured.on.the.RADIUS.s |
| 8cde0 | 65 72 76 65 72 2e 20 54 68 65 20 57 41 50 20 28 61 6c 73 6f 20 72 65 66 65 72 72 65 64 20 74 6f | erver..The.WAP.(also.referred.to |
| 8ce00 | 20 61 73 20 61 75 74 68 65 6e 74 69 63 61 74 6f 72 29 20 72 6f 6c 65 20 69 73 20 74 6f 20 73 65 | .as.authenticator).role.is.to.se |
| 8ce20 | 6e 64 20 61 6c 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 65 73 73 61 67 65 73 20 62 | nd.all.authentication.messages.b |
| 8ce40 | 65 74 77 65 65 6e 20 74 68 65 20 73 75 70 70 6c 69 63 61 6e 74 20 61 6e 64 20 74 68 65 20 63 6f | etween.the.supplicant.and.the.co |
| 8ce60 | 6e 66 69 67 75 72 65 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 65 72 76 65 72 2c 20 | nfigured.authentication.server,. |
| 8ce80 | 74 68 75 73 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 69 73 20 72 65 73 70 6f 6e | thus.the.RADIUS.server.is.respon |
| 8cea0 | 73 69 62 6c 65 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 74 68 65 20 75 73 65 | sible.for.authenticating.the.use |
| 8cec0 | 72 73 2e 00 54 68 65 20 77 69 72 65 6c 65 73 73 20 63 6c 69 65 6e 74 20 28 73 75 70 70 6c 69 63 | rs..The.wireless.client.(supplic |
| 8cee0 | 61 6e 74 29 20 61 75 74 68 65 6e 74 69 63 61 74 65 73 20 61 67 61 69 6e 73 74 20 74 68 65 20 52 | ant).authenticates.against.the.R |
| 8cf00 | 41 44 49 55 53 20 73 65 72 76 65 72 20 28 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 65 72 | ADIUS.server.(authentication.ser |
| 8cf20 | 76 65 72 29 20 75 73 69 6e 67 20 61 6e 20 3a 61 62 62 72 3a 60 45 41 50 20 28 45 78 74 65 6e 73 | ver).using.an.:abbr:`EAP.(Extens |
| 8cf40 | 69 62 6c 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 29 60 20 6d | ible.Authentication.Protocol)`.m |
| 8cf60 | 65 74 68 6f 64 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 74 68 65 20 52 41 44 49 55 53 20 73 | ethod.configured.on.the.RADIUS.s |
| 8cf80 | 65 72 76 65 72 2e 20 54 68 65 20 57 41 50 20 28 61 6c 73 6f 20 72 65 66 65 72 72 65 64 20 74 6f | erver..The.WAP.(also.referred.to |
| 8cfa0 | 20 61 73 20 61 75 74 68 65 6e 74 69 63 61 74 6f 72 29 20 72 6f 6c 65 20 69 73 20 74 6f 20 73 65 | .as.authenticator).role.is.to.se |
| 8cfc0 | 6e 64 20 61 6c 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 65 73 73 61 67 65 73 20 62 | nd.all.authentication.messages.b |
| 8cfe0 | 65 74 77 65 65 6e 20 74 68 65 20 73 75 70 70 6c 69 63 61 6e 74 20 61 6e 64 20 74 68 65 20 63 6f | etween.the.supplicant.and.the.co |
| 8d000 | 6e 66 69 67 75 72 65 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 65 72 76 65 72 2c 20 | nfigured.authentication.server,. |
| 8d020 | 74 68 75 73 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 69 73 20 72 65 73 70 6f 6e | thus.the.RADIUS.server.is.respon |
| 8d040 | 73 69 62 6c 65 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 74 68 65 20 75 73 65 | sible.for.authenticating.the.use |
| 8d060 | 72 73 2e 00 54 68 65 20 77 72 69 74 69 6e 67 20 6f 66 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 | rs..The.writing.of.the.configura |
| 8d080 | 74 69 6f 6e 20 74 6f 20 74 68 65 20 73 65 63 6f 6e 64 61 72 79 20 72 6f 75 74 65 72 20 69 73 20 | tion.to.the.secondary.router.is. |
| 8d0a0 | 70 65 72 66 6f 72 6d 65 64 20 74 68 72 6f 75 67 68 20 74 68 65 20 56 79 4f 53 20 48 54 54 50 20 | performed.through.the.VyOS.HTTP. |
| 8d0c0 | 41 50 49 2e 20 54 68 65 20 75 73 65 72 20 63 61 6e 20 73 70 65 63 69 66 79 20 77 68 69 63 68 20 | API..The.user.can.specify.which. |
| 8d0e0 | 70 6f 72 74 69 6f 6e 28 73 29 20 6f 66 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | portion(s).of.the.configuration. |
| 8d100 | 77 69 6c 6c 20 62 65 20 73 79 6e 63 68 72 6f 6e 69 7a 65 64 20 61 6e 64 20 74 68 65 20 6d 6f 64 | will.be.synchronized.and.the.mod |
| 8d120 | 65 20 74 6f 20 75 73 65 20 2d 20 77 68 65 74 68 65 72 20 74 6f 20 72 65 70 6c 61 63 65 20 6f 72 | e.to.use.-.whether.to.replace.or |
| 8d140 | 20 61 64 64 2e 00 54 68 65 6e 20 61 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e 67 20 53 4e 41 54 20 | .add..Then.a.corresponding.SNAT. |
| 8d160 | 72 75 6c 65 20 69 73 20 63 72 65 61 74 65 64 20 74 6f 20 4e 41 54 20 6f 75 74 67 6f 69 6e 67 20 | rule.is.created.to.NAT.outgoing. |
| 8d180 | 74 72 61 66 66 69 63 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 49 50 20 74 6f 20 61 | traffic.for.the.internal.IP.to.a |
| 8d1a0 | 20 72 65 73 65 72 76 65 64 20 65 78 74 65 72 6e 61 6c 20 49 50 2e 20 54 68 69 73 20 64 65 64 69 | .reserved.external.IP..This.dedi |
| 8d1c0 | 63 61 74 65 73 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 | cates.an.external.IP.address.to. |
| 8d1e0 | 61 6e 20 69 6e 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 61 6e 64 20 69 73 20 75 73 | an.internal.IP.address.and.is.us |
| 8d200 | 65 66 75 6c 20 66 6f 72 20 70 72 6f 74 6f 63 6f 6c 73 20 77 68 69 63 68 20 64 6f 6e 27 74 20 68 | eful.for.protocols.which.don't.h |
| 8d220 | 61 76 65 20 74 68 65 20 6e 6f 74 69 6f 6e 20 6f 66 20 70 6f 72 74 73 2c 20 73 75 63 68 20 61 73 | ave.the.notion.of.ports,.such.as |
| 8d240 | 20 47 52 45 2e 00 54 68 65 6e 20 77 65 20 6e 65 65 64 20 74 6f 20 67 65 6e 65 72 61 74 65 2c 20 | .GRE..Then.we.need.to.generate,. |
| 8d260 | 61 64 64 20 61 6e 64 20 73 70 65 63 69 66 79 20 74 68 65 20 6e 61 6d 65 73 20 6f 66 20 74 68 65 | add.and.specify.the.names.of.the |
| 8d280 | 20 63 72 79 70 74 6f 67 72 61 70 68 69 63 20 6d 61 74 65 72 69 61 6c 73 2e 20 45 61 63 68 20 6f | .cryptographic.materials..Each.o |
| 8d2a0 | 66 20 74 68 65 20 69 6e 73 74 61 6c 6c 20 63 6f 6d 6d 61 6e 64 20 73 68 6f 75 6c 64 20 62 65 20 | f.the.install.command.should.be. |
| 8d2c0 | 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 6e 64 | applied.to.the.configuration.and |
| 8d2e0 | 20 63 6f 6d 6d 69 74 65 64 20 62 65 66 6f 72 65 20 75 73 69 6e 67 20 75 6e 64 65 72 20 74 68 65 | .commited.before.using.under.the |
| 8d300 | 20 6f 70 65 6e 76 70 6e 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | .openvpn.interface.configuration |
| 8d320 | 2e 00 54 68 65 6e 20 77 65 20 6e 65 65 64 20 74 6f 20 67 65 6e 65 72 61 74 65 2c 20 61 64 64 20 | ..Then.we.need.to.generate,.add. |
| 8d340 | 61 6e 64 20 73 70 65 63 69 66 79 20 74 68 65 20 6e 61 6d 65 73 20 6f 66 20 74 68 65 20 63 72 79 | and.specify.the.names.of.the.cry |
| 8d360 | 70 74 6f 67 72 61 70 68 69 63 20 6d 61 74 65 72 69 61 6c 73 2e 20 45 61 63 68 20 6f 66 20 74 68 | ptographic.materials..Each.of.th |
| 8d380 | 65 20 69 6e 73 74 61 6c 6c 20 63 6f 6d 6d 61 6e 64 73 20 73 68 6f 75 6c 64 20 62 65 20 61 70 70 | e.install.commands.should.be.app |
| 8d3a0 | 6c 69 65 64 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 6e 64 20 63 6f | lied.to.the.configuration.and.co |
| 8d3c0 | 6d 6d 69 74 65 64 20 62 65 66 6f 72 65 20 75 73 69 6e 67 20 75 6e 64 65 72 20 74 68 65 20 6f 70 | mmited.before.using.under.the.op |
| 8d3e0 | 65 6e 76 70 6e 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 | envpn.interface.configuration..T |
| 8d400 | 68 65 6e 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 69 6e 73 74 61 6c 6c 20 74 68 65 20 6b 65 79 20 | hen.you.need.to.install.the.key. |
| 8d420 | 6f 6e 20 74 68 65 20 72 65 6d 6f 74 65 20 72 6f 75 74 65 72 3a 00 54 68 65 6e 20 79 6f 75 20 6e | on.the.remote.router:.Then.you.n |
| 8d440 | 65 65 64 20 74 6f 20 73 65 74 20 74 68 65 20 6b 65 79 20 69 6e 20 79 6f 75 72 20 4f 70 65 6e 56 | eed.to.set.the.key.in.your.OpenV |
| 8d460 | 50 4e 20 69 6e 74 65 72 66 61 63 65 20 73 65 74 74 69 6e 67 73 3a 00 54 68 65 6e 2c 20 46 61 73 | PN.interface.settings:.Then,.Fas |
| 8d480 | 74 4e 65 74 4d 6f 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 54 68 65 72 65 20 61 72 65 | tNetMon.configuration:.There.are |
| 8d4a0 | 20 33 20 64 65 66 61 75 6c 74 20 4e 54 50 20 73 65 72 76 65 72 20 73 65 74 2e 20 59 6f 75 20 61 | .3.default.NTP.server.set..You.a |
| 8d4c0 | 72 65 20 61 62 6c 65 20 74 6f 20 63 68 61 6e 67 65 20 74 68 65 6d 2e 00 54 68 65 72 65 20 61 72 | re.able.to.change.them..There.ar |
| 8d4e0 | 65 20 61 20 6c 6f 74 20 6f 66 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 61 67 61 | e.a.lot.of.matching.criteria.aga |
| 8d500 | 69 6e 73 74 20 77 68 69 63 68 20 74 68 65 20 70 61 63 6b 61 67 65 20 63 61 6e 20 62 65 20 74 65 | inst.which.the.package.can.be.te |
| 8d520 | 73 74 65 64 2e 00 54 68 65 72 65 20 61 72 65 20 61 20 6c 6f 74 20 6f 66 20 6d 61 74 63 68 69 6e | sted..There.are.a.lot.of.matchin |
| 8d540 | 67 20 63 72 69 74 65 72 69 61 20 61 67 61 69 6e 73 74 20 77 68 69 63 68 20 74 68 65 20 70 61 63 | g.criteria.against.which.the.pac |
| 8d560 | 6b 65 74 20 63 61 6e 20 62 65 20 74 65 73 74 65 64 2e 00 54 68 65 72 65 20 61 72 65 20 61 20 6c | ket.can.be.tested..There.are.a.l |
| 8d580 | 6f 74 20 6f 66 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 61 67 61 69 6e 73 74 20 | ot.of.matching.criteria.against. |
| 8d5a0 | 77 68 69 63 68 20 74 68 65 20 70 61 63 6b 65 74 20 63 61 6e 20 62 65 20 74 65 73 74 65 64 2e 20 | which.the.packet.can.be.tested.. |
| 8d5c0 | 50 6c 65 61 73 65 20 72 65 66 65 72 20 74 6f 20 3a 64 6f 63 3a 60 49 50 76 34 3c 2f 63 6f 6e 66 | Please.refer.to.:doc:`IPv4</conf |
| 8d5e0 | 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 69 70 76 34 3e 60 20 61 6e 64 20 3a 64 | iguration/firewall/ipv4>`.and.:d |
| 8d600 | 6f 63 3a 60 49 50 76 36 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c | oc:`IPv6</configuration/firewall |
| 8d620 | 2f 69 70 76 36 3e 60 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 66 6f 72 20 6d 6f | /ipv6>`.matching.criteria.for.mo |
| 8d640 | 72 65 20 64 65 74 61 69 6c 73 2e 00 54 68 65 72 65 20 61 72 65 20 61 20 6c 6f 74 20 6f 66 20 6d | re.details..There.are.a.lot.of.m |
| 8d660 | 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 6f 70 74 69 6f 6e 73 20 61 76 61 69 6c 61 62 | atching.criteria.options.availab |
| 8d680 | 6c 65 2c 20 62 6f 74 68 20 66 6f 72 20 60 60 70 6f 6c 69 63 79 20 72 6f 75 74 65 60 60 20 61 6e | le,.both.for.``policy.route``.an |
| 8d6a0 | 64 20 60 60 70 6f 6c 69 63 79 20 72 6f 75 74 65 36 60 60 2e 20 54 68 65 73 65 20 6f 70 74 69 6f | d.``policy.route6``..These.optio |
| 8d6c0 | 6e 73 20 61 72 65 20 6c 69 73 74 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 2e 00 54 | ns.are.listed.in.this.section..T |
| 8d6e0 | 68 65 72 65 20 61 72 65 20 64 69 66 66 65 72 65 6e 74 20 70 61 72 61 6d 65 74 65 72 73 20 66 6f | here.are.different.parameters.fo |
| 8d700 | 72 20 67 65 74 74 69 6e 67 20 70 72 65 66 69 78 2d 6c 69 73 74 20 69 6e 66 6f 72 6d 61 74 69 6f | r.getting.prefix-list.informatio |
| 8d720 | 6e 3a 00 54 68 65 72 65 20 61 72 65 20 6c 69 6d 69 74 73 20 6f 6e 20 77 68 69 63 68 20 63 68 61 | n:.There.are.limits.on.which.cha |
| 8d740 | 6e 6e 65 6c 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 77 69 74 68 20 48 54 34 30 2d 20 61 6e 64 | nnels.can.be.used.with.HT40-.and |
| 8d760 | 20 48 54 34 30 2b 2e 20 46 6f 6c 6c 6f 77 69 6e 67 20 74 61 62 6c 65 20 73 68 6f 77 73 20 74 68 | .HT40+..Following.table.shows.th |
| 8d780 | 65 20 63 68 61 6e 6e 65 6c 73 20 74 68 61 74 20 6d 61 79 20 62 65 20 61 76 61 69 6c 61 62 6c 65 | e.channels.that.may.be.available |
| 8d7a0 | 20 66 6f 72 20 48 54 34 30 2d 20 61 6e 64 20 48 54 34 30 2b 20 75 73 65 20 70 65 72 20 49 45 45 | .for.HT40-.and.HT40+.use.per.IEE |
| 8d7c0 | 45 20 38 30 32 2e 31 31 6e 20 41 6e 6e 65 78 20 4a 3a 00 54 68 65 72 65 20 61 72 65 20 6d 61 6e | E.802.11n.Annex.J:.There.are.man |
| 8d7e0 | 79 20 70 61 72 61 6d 65 74 65 72 73 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 61 62 6c 65 20 74 6f | y.parameters.you.will.be.able.to |
| 8d800 | 20 75 73 65 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 6d 61 74 63 68 20 74 68 65 20 74 72 61 66 66 | .use.in.order.to.match.the.traff |
| 8d820 | 69 63 20 79 6f 75 20 77 61 6e 74 20 66 6f 72 20 61 20 63 6c 61 73 73 3a 00 54 68 65 72 65 20 61 | ic.you.want.for.a.class:.There.a |
| 8d840 | 72 65 20 6d 75 6c 74 69 70 6c 65 20 76 65 72 73 69 6f 6e 73 20 61 76 61 69 6c 61 62 6c 65 20 66 | re.multiple.versions.available.f |
| 8d860 | 6f 72 20 74 68 65 20 4e 65 74 46 6c 6f 77 20 64 61 74 61 2e 20 54 68 65 20 60 3c 76 65 72 73 69 | or.the.NetFlow.data..The.`<versi |
| 8d880 | 6f 6e 3e 60 20 75 73 65 64 20 69 6e 20 74 68 65 20 65 78 70 6f 72 74 65 64 20 66 6c 6f 77 20 64 | on>`.used.in.the.exported.flow.d |
| 8d8a0 | 61 74 61 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 68 65 72 65 2e 20 54 68 65 20 | ata.can.be.configured.here..The. |
| 8d8c0 | 66 6f 6c 6c 6f 77 69 6e 67 20 76 65 72 73 69 6f 6e 73 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 | following.versions.are.supported |
| 8d8e0 | 3a 00 54 68 65 72 65 20 61 72 65 20 72 61 74 65 2d 6c 69 6d 69 74 65 64 20 61 6e 64 20 6e 6f 6e | :.There.are.rate-limited.and.non |
| 8d900 | 20 72 61 74 65 2d 6c 69 6d 69 74 65 64 20 75 73 65 72 73 20 28 4d 41 43 73 29 00 54 68 65 72 65 | .rate-limited.users.(MACs).There |
| 8d920 | 20 61 72 65 20 73 6f 6d 65 20 73 63 65 6e 61 72 69 6f 73 20 77 68 65 72 65 20 73 65 72 69 61 6c | .are.some.scenarios.where.serial |
| 8d940 | 20 63 6f 6e 73 6f 6c 65 73 20 61 72 65 20 75 73 65 66 75 6c 2e 20 53 79 73 74 65 6d 20 61 64 6d | .consoles.are.useful..System.adm |
| 8d960 | 69 6e 69 73 74 72 61 74 69 6f 6e 20 6f 66 20 72 65 6d 6f 74 65 20 63 6f 6d 70 75 74 65 72 73 20 | inistration.of.remote.computers. |
| 8d980 | 69 73 20 75 73 75 61 6c 6c 79 20 64 6f 6e 65 20 75 73 69 6e 67 20 3a 72 65 66 3a 60 73 73 68 60 | is.usually.done.using.:ref:`ssh` |
| 8d9a0 | 2c 20 62 75 74 20 74 68 65 72 65 20 61 72 65 20 74 69 6d 65 73 20 77 68 65 6e 20 61 63 63 65 73 | ,.but.there.are.times.when.acces |
| 8d9c0 | 73 20 74 6f 20 74 68 65 20 63 6f 6e 73 6f 6c 65 20 69 73 20 74 68 65 20 6f 6e 6c 79 20 77 61 79 | s.to.the.console.is.the.only.way |
| 8d9e0 | 20 74 6f 20 64 69 61 67 6e 6f 73 65 20 61 6e 64 20 63 6f 72 72 65 63 74 20 73 6f 66 74 77 61 72 | .to.diagnose.and.correct.softwar |
| 8da00 | 65 20 66 61 69 6c 75 72 65 73 2e 20 4d 61 6a 6f 72 20 75 70 67 72 61 64 65 73 20 74 6f 20 74 68 | e.failures..Major.upgrades.to.th |
| 8da20 | 65 20 69 6e 73 74 61 6c 6c 65 64 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 6d 61 79 20 61 6c 73 | e.installed.distribution.may.als |
| 8da40 | 6f 20 72 65 71 75 69 72 65 20 63 6f 6e 73 6f 6c 65 20 61 63 63 65 73 73 2e 00 54 68 65 72 65 20 | o.require.console.access..There. |
| 8da60 | 61 72 65 20 74 68 72 65 65 20 6d 6f 64 65 73 20 6f 66 20 6f 70 65 72 61 74 69 6f 6e 20 66 6f 72 | are.three.modes.of.operation.for |
| 8da80 | 20 61 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 3a 00 54 68 65 72 65 20 61 72 65 | .a.wireless.interface:.There.are |
| 8daa0 | 20 74 77 6f 20 74 79 70 65 73 20 6f 66 20 4e 65 74 77 6f 72 6b 20 41 64 6d 69 6e 73 20 77 68 6f | .two.types.of.Network.Admins.who |
| 8dac0 | 20 64 65 61 6c 20 77 69 74 68 20 42 47 50 2c 20 74 68 6f 73 65 20 77 68 6f 20 68 61 76 65 20 63 | .deal.with.BGP,.those.who.have.c |
| 8dae0 | 72 65 61 74 65 64 20 61 6e 20 69 6e 74 65 72 6e 61 74 69 6f 6e 61 6c 20 69 6e 63 69 64 65 6e 74 | reated.an.international.incident |
| 8db00 | 20 61 6e 64 2f 6f 72 20 6f 75 74 61 67 65 2c 20 61 6e 64 20 74 68 6f 73 65 20 77 68 6f 20 61 72 | .and/or.outage,.and.those.who.ar |
| 8db20 | 65 20 6c 79 69 6e 67 00 54 68 65 72 65 20 61 72 65 20 74 77 6f 20 77 61 79 73 20 74 68 61 74 20 | e.lying.There.are.two.ways.that. |
| 8db40 | 68 65 6c 70 20 75 73 20 74 6f 20 6d 69 74 69 67 61 74 65 20 74 68 65 20 42 47 50 73 20 66 75 6c | help.us.to.mitigate.the.BGPs.ful |
| 8db60 | 6c 2d 6d 65 73 68 20 72 65 71 75 69 72 65 6d 65 6e 74 20 69 6e 20 61 20 6e 65 74 77 6f 72 6b 3a | l-mesh.requirement.in.a.network: |
| 8db80 | 00 54 68 65 72 65 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 6f 6e 65 20 6c 6f 6f 70 62 61 63 6b 20 | .There.can.only.be.one.loopback. |
| 8dba0 | 60 60 6c 6f 60 60 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 20 | ``lo``.interface.on.the.system.. |
| 8dbc0 | 49 66 20 79 6f 75 20 6e 65 65 64 20 6d 75 6c 74 69 70 6c 65 20 69 6e 74 65 72 66 61 63 65 73 2c | If.you.need.multiple.interfaces, |
| 8dbe0 | 20 70 6c 65 61 73 65 20 75 73 65 20 74 68 65 20 3a 72 65 66 3a 60 64 75 6d 6d 79 2d 69 6e 74 65 | .please.use.the.:ref:`dummy-inte |
| 8dc00 | 72 66 61 63 65 60 20 69 6e 74 65 72 66 61 63 65 20 74 79 70 65 2e 00 54 68 65 72 65 20 63 6f 75 | rface`.interface.type..There.cou |
| 8dc20 | 6c 64 20 62 65 20 61 20 77 69 64 65 20 72 61 6e 67 65 20 6f 66 20 72 6f 75 74 69 6e 67 20 70 6f | ld.be.a.wide.range.of.routing.po |
| 8dc40 | 6c 69 63 69 65 73 2e 20 53 6f 6d 65 20 65 78 61 6d 70 6c 65 73 20 61 72 65 20 6c 69 73 74 65 64 | licies..Some.examples.are.listed |
| 8dc60 | 20 62 65 6c 6f 77 3a 00 54 68 65 72 65 20 69 73 20 61 20 76 65 72 79 20 6e 69 63 65 20 70 69 63 | .below:.There.is.a.very.nice.pic |
| 8dc80 | 74 75 72 65 2f 65 78 70 6c 61 6e 61 74 69 6f 6e 20 69 6e 20 74 68 65 20 56 79 61 74 74 61 20 64 | ture/explanation.in.the.Vyatta.d |
| 8dca0 | 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 77 68 69 63 68 20 73 68 6f 75 6c 64 20 62 65 20 72 65 77 | ocumentation.which.should.be.rew |
| 8dcc0 | 72 69 74 74 65 6e 20 68 65 72 65 2e 00 54 68 65 72 65 20 69 73 20 61 6c 73 6f 20 61 20 47 52 45 | ritten.here..There.is.also.a.GRE |
| 8dce0 | 20 6f 76 65 72 20 49 50 76 36 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 61 76 61 69 6c 61 62 | .over.IPv6.encapsulation.availab |
| 8dd00 | 6c 65 2c 20 69 74 20 69 73 20 63 61 6c 6c 65 64 3a 20 60 60 69 70 36 67 72 65 60 60 2e 00 54 68 | le,.it.is.called:.``ip6gre``..Th |
| 8dd20 | 65 72 65 20 69 73 20 61 6e 20 65 6e 74 69 72 65 20 63 68 61 70 74 65 72 20 61 62 6f 75 74 20 68 | ere.is.an.entire.chapter.about.h |
| 8dd40 | 6f 77 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 3a 72 65 66 3a 60 76 72 66 60 2c 20 70 6c | ow.to.configure.a.:ref:`vrf`,.pl |
| 8dd60 | 65 61 73 65 20 63 68 65 63 6b 20 74 68 69 73 20 66 6f 72 20 61 64 64 69 74 69 6f 6e 61 6c 20 69 | ease.check.this.for.additional.i |
| 8dd80 | 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 54 68 65 72 65 27 73 20 61 20 76 61 72 69 65 74 79 20 6f 66 | nformation..There's.a.variety.of |
| 8dda0 | 20 63 6c 69 65 6e 74 20 47 55 49 20 66 72 6f 6e 74 65 6e 64 73 20 66 6f 72 20 61 6e 79 20 70 6c | .client.GUI.frontends.for.any.pl |
| 8ddc0 | 61 74 66 6f 72 6d 00 54 68 65 73 65 20 61 72 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 73 20 66 6f | atform.These.are.the.commands.fo |
| 8dde0 | 72 20 61 20 62 61 73 69 63 20 73 65 74 75 70 2e 00 54 68 65 73 65 20 63 6f 6d 6d 61 6e 64 73 20 | r.a.basic.setup..These.commands. |
| 8de00 | 61 6c 6c 6f 77 20 74 68 65 20 56 4c 41 4e 31 30 20 61 6e 64 20 56 4c 41 4e 31 31 20 68 6f 73 74 | allow.the.VLAN10.and.VLAN11.host |
| 8de20 | 73 20 74 6f 20 63 6f 6d 6d 75 6e 69 63 61 74 65 20 77 69 74 68 20 65 61 63 68 20 6f 74 68 65 72 | s.to.communicate.with.each.other |
| 8de40 | 20 75 73 69 6e 67 20 74 68 65 20 6d 61 69 6e 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 00 54 | .using.the.main.routing.table..T |
| 8de60 | 68 65 73 65 20 63 6f 6d 6d 61 6e 64 73 20 63 72 65 61 74 65 20 61 20 66 6c 65 78 69 62 6c 65 20 | hese.commands.create.a.flexible. |
| 8de80 | 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 74 68 65 20 53 75 | interface.for.configuring.the.Su |
| 8dea0 | 72 69 63 61 74 61 20 73 65 72 76 69 63 65 2c 20 61 6c 6c 6f 77 69 6e 67 20 75 73 65 72 73 20 74 | ricata.service,.allowing.users.t |
| 8dec0 | 6f 20 73 70 65 63 69 66 79 20 61 64 64 72 65 73 73 65 73 2c 20 70 6f 72 74 73 2c 20 61 6e 64 20 | o.specify.addresses,.ports,.and. |
| 8dee0 | 6c 6f 67 67 69 6e 67 20 70 61 72 61 6d 65 74 65 72 73 2e 00 54 68 65 73 65 20 63 6f 6e 66 69 67 | logging.parameters..These.config |
| 8df00 | 75 72 61 74 69 6f 6e 20 69 73 20 6e 6f 74 20 6d 61 6e 64 61 74 6f 72 79 20 61 6e 64 20 69 6e 20 | uration.is.not.mandatory.and.in. |
| 8df20 | 6d 6f 73 74 20 63 61 73 65 73 20 74 68 65 72 65 27 73 20 6e 6f 20 6e 65 65 64 20 74 6f 20 63 6f | most.cases.there's.no.need.to.co |
| 8df40 | 6e 66 69 67 75 72 65 20 69 74 2e 20 42 75 74 20 69 66 20 6e 65 63 65 73 73 61 72 79 2c 20 47 72 | nfigure.it..But.if.necessary,.Gr |
| 8df60 | 61 74 75 69 74 6f 75 73 20 41 52 50 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 | atuitous.ARP.can.be.configured.i |
| 8df80 | 6e 20 60 60 67 6c 6f 62 61 6c 2d 70 61 72 61 6d 65 74 65 72 73 60 60 20 61 6e 64 2f 6f 72 20 69 | n.``global-parameters``.and/or.i |
| 8dfa0 | 6e 20 60 60 67 72 6f 75 70 60 60 20 73 65 63 74 69 6f 6e 2e 00 54 68 65 73 65 20 70 61 72 61 6d | n.``group``.section..These.param |
| 8dfc0 | 65 74 65 72 73 20 61 72 65 20 70 61 73 73 65 64 20 61 73 2d 69 73 20 74 6f 20 69 73 63 2d 64 68 | eters.are.passed.as-is.to.isc-dh |
| 8dfe0 | 63 70 27 73 20 64 68 63 70 64 2e 63 6f 6e 66 20 75 6e 64 65 72 20 74 68 65 20 63 6f 6e 66 69 67 | cp's.dhcpd.conf.under.the.config |
| 8e000 | 75 72 61 74 69 6f 6e 20 6e 6f 64 65 20 74 68 65 79 20 61 72 65 20 64 65 66 69 6e 65 64 20 69 6e | uration.node.they.are.defined.in |
| 8e020 | 2e 20 54 68 65 79 20 61 72 65 20 6e 6f 74 20 76 61 6c 69 64 61 74 65 64 20 73 6f 20 61 6e 20 65 | ..They.are.not.validated.so.an.e |
| 8e040 | 72 72 6f 72 20 69 6e 20 74 68 65 20 72 61 77 20 70 61 72 61 6d 65 74 65 72 73 20 77 6f 6e 27 74 | rror.in.the.raw.parameters.won't |
| 8e060 | 20 62 65 20 63 61 75 67 68 74 20 62 79 20 76 79 6f 73 27 73 20 73 63 72 69 70 74 73 20 61 6e 64 | .be.caught.by.vyos's.scripts.and |
| 8e080 | 20 77 69 6c 6c 20 63 61 75 73 65 20 64 68 63 70 64 20 74 6f 20 66 61 69 6c 20 74 6f 20 73 74 61 | .will.cause.dhcpd.to.fail.to.sta |
| 8e0a0 | 72 74 2e 20 41 6c 77 61 79 73 20 76 65 72 69 66 79 20 74 68 61 74 20 74 68 65 20 70 61 72 61 6d | rt..Always.verify.that.the.param |
| 8e0c0 | 65 74 65 72 73 20 61 72 65 20 63 6f 72 72 65 63 74 20 62 65 66 6f 72 65 20 63 6f 6d 6d 69 74 74 | eters.are.correct.before.committ |
| 8e0e0 | 69 6e 67 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 52 65 66 65 72 20 74 6f 20 | ing.the.configuration..Refer.to. |
| 8e100 | 69 73 63 2d 64 68 63 70 27 73 20 64 68 63 70 64 2e 63 6f 6e 66 20 6d 61 6e 75 61 6c 20 66 6f 72 | isc-dhcp's.dhcpd.conf.manual.for |
| 8e120 | 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 6b 62 2e 69 73 | .more.information:.https://kb.is |
| 8e140 | 63 2e 6f 72 67 2f 64 6f 63 73 2f 69 73 63 2d 64 68 63 70 2d 34 34 2d 6d 61 6e 75 61 6c 2d 70 61 | c.org/docs/isc-dhcp-44-manual-pa |
| 8e160 | 67 65 73 2d 64 68 63 70 64 63 6f 6e 66 00 54 68 65 73 65 20 70 61 72 61 6d 65 74 65 72 73 20 6e | ges-dhcpdconf.These.parameters.n |
| 8e180 | 65 65 64 20 74 6f 20 62 65 20 70 61 72 74 20 6f 66 20 74 68 65 20 44 48 43 50 20 67 6c 6f 62 61 | eed.to.be.part.of.the.DHCP.globa |
| 8e1a0 | 6c 20 6f 70 74 69 6f 6e 73 2e 20 54 68 65 79 20 73 74 61 79 20 75 6e 63 68 61 6e 67 65 64 2e 00 | l.options..They.stay.unchanged.. |
| 8e1c0 | 54 68 65 79 20 63 61 6e 20 62 65 20 2a 2a 64 65 63 69 6d 61 6c 2a 2a 20 70 72 65 66 69 78 65 73 | They.can.be.**decimal**.prefixes |
| 8e1e0 | 2e 00 54 68 69 6e 67 73 20 74 6f 20 62 65 20 63 6f 6e 73 69 64 65 72 65 64 20 69 6e 20 74 68 69 | ..Things.to.be.considered.in.thi |
| 8e200 | 73 20 73 65 74 75 70 3a 00 54 68 69 6e 67 73 20 74 6f 20 62 65 20 63 6f 6e 73 69 64 72 65 64 20 | s.setup:.Things.to.be.considred. |
| 8e220 | 69 6e 20 74 68 69 73 20 73 65 74 75 70 3a 00 54 68 69 73 20 61 64 64 72 65 73 73 20 6d 75 73 74 | in.this.setup:.This.address.must |
| 8e240 | 20 62 65 20 74 68 65 20 61 64 64 72 65 73 73 20 6f 66 20 61 20 6c 6f 63 61 6c 20 69 6e 74 65 72 | .be.the.address.of.a.local.inter |
| 8e260 | 66 61 63 65 2e 20 49 74 20 6d 61 79 20 62 65 20 73 70 65 63 69 66 69 65 64 20 61 73 20 61 6e 20 | face..It.may.be.specified.as.an. |
| 8e280 | 49 50 76 34 20 61 64 64 72 65 73 73 20 6f 72 20 61 6e 20 49 50 76 36 20 61 64 64 72 65 73 73 2e | IPv4.address.or.an.IPv6.address. |
| 8e2a0 | 00 54 68 69 73 20 61 6c 67 6f 72 69 74 68 6d 20 69 73 20 38 30 32 2e 33 61 64 20 63 6f 6d 70 6c | .This.algorithm.is.802.3ad.compl |
| 8e2c0 | 69 61 6e 74 2e 00 54 68 69 73 20 61 6c 67 6f 72 69 74 68 6d 20 69 73 20 6e 6f 74 20 66 75 6c 6c | iant..This.algorithm.is.not.full |
| 8e2e0 | 79 20 38 30 32 2e 33 61 64 20 63 6f 6d 70 6c 69 61 6e 74 2e 20 41 20 73 69 6e 67 6c 65 20 54 43 | y.802.3ad.compliant..A.single.TC |
| 8e300 | 50 20 6f 72 20 55 44 50 20 63 6f 6e 76 65 72 73 61 74 69 6f 6e 20 63 6f 6e 74 61 69 6e 69 6e 67 | P.or.UDP.conversation.containing |
| 8e320 | 20 62 6f 74 68 20 66 72 61 67 6d 65 6e 74 65 64 20 61 6e 64 20 75 6e 66 72 61 67 6d 65 6e 74 65 | .both.fragmented.and.unfragmente |
| 8e340 | 64 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 73 65 65 20 70 61 63 6b 65 74 73 20 73 74 72 69 70 | d.packets.will.see.packets.strip |
| 8e360 | 65 64 20 61 63 72 6f 73 73 20 74 77 6f 20 69 6e 74 65 72 66 61 63 65 73 2e 20 54 68 69 73 20 6d | ed.across.two.interfaces..This.m |
| 8e380 | 61 79 20 72 65 73 75 6c 74 20 69 6e 20 6f 75 74 20 6f 66 20 6f 72 64 65 72 20 64 65 6c 69 76 65 | ay.result.in.out.of.order.delive |
| 8e3a0 | 72 79 2e 20 4d 6f 73 74 20 74 72 61 66 66 69 63 20 74 79 70 65 73 20 77 69 6c 6c 20 6e 6f 74 20 | ry..Most.traffic.types.will.not. |
| 8e3c0 | 6d 65 65 74 20 74 68 65 73 65 20 63 72 69 74 65 72 69 61 2c 20 61 73 20 54 43 50 20 72 61 72 65 | meet.these.criteria,.as.TCP.rare |
| 8e3e0 | 6c 79 20 66 72 61 67 6d 65 6e 74 73 20 74 72 61 66 66 69 63 2c 20 61 6e 64 20 6d 6f 73 74 20 55 | ly.fragments.traffic,.and.most.U |
| 8e400 | 44 50 20 74 72 61 66 66 69 63 20 69 73 20 6e 6f 74 20 69 6e 76 6f 6c 76 65 64 20 69 6e 20 65 78 | DP.traffic.is.not.involved.in.ex |
| 8e420 | 74 65 6e 64 65 64 20 63 6f 6e 76 65 72 73 61 74 69 6f 6e 73 2e 20 4f 74 68 65 72 20 69 6d 70 6c | tended.conversations..Other.impl |
| 8e440 | 65 6d 65 6e 74 61 74 69 6f 6e 73 20 6f 66 20 38 30 32 2e 33 61 64 20 6d 61 79 20 6f 72 20 6d 61 | ementations.of.802.3ad.may.or.ma |
| 8e460 | 79 20 6e 6f 74 20 74 6f 6c 65 72 61 74 65 20 74 68 69 73 20 6e 6f 6e 63 6f 6d 70 6c 69 61 6e 63 | y.not.tolerate.this.noncomplianc |
| 8e480 | 65 2e 00 54 68 69 73 20 61 6c 67 6f 72 69 74 68 6d 20 77 69 6c 6c 20 70 6c 61 63 65 20 61 6c 6c | e..This.algorithm.will.place.all |
| 8e4a0 | 20 74 72 61 66 66 69 63 20 74 6f 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 6e 65 74 77 6f 72 6b | .traffic.to.a.particular.network |
| 8e4c0 | 20 70 65 65 72 20 6f 6e 20 74 68 65 20 73 61 6d 65 20 73 6c 61 76 65 2e 00 54 68 69 73 20 61 6c | .peer.on.the.same.slave..This.al |
| 8e4e0 | 67 6f 72 69 74 68 6d 20 77 69 6c 6c 20 70 6c 61 63 65 20 61 6c 6c 20 74 72 61 66 66 69 63 20 74 | gorithm.will.place.all.traffic.t |
| 8e500 | 6f 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 6e 65 74 77 6f 72 6b 20 70 65 65 72 20 6f 6e 20 74 | o.a.particular.network.peer.on.t |
| 8e520 | 68 65 20 73 61 6d 65 20 73 6c 61 76 65 2e 20 46 6f 72 20 6e 6f 6e 2d 49 50 20 74 72 61 66 66 69 | he.same.slave..For.non-IP.traffi |
| 8e540 | 63 2c 20 74 68 65 20 66 6f 72 6d 75 6c 61 20 69 73 20 74 68 65 20 73 61 6d 65 20 61 73 20 66 6f | c,.the.formula.is.the.same.as.fo |
| 8e560 | 72 20 74 68 65 20 6c 61 79 65 72 32 20 74 72 61 6e 73 6d 69 74 20 68 61 73 68 20 70 6f 6c 69 63 | r.the.layer2.transmit.hash.polic |
| 8e580 | 79 2e 00 54 68 69 73 20 61 6c 6c 6f 77 73 20 61 76 6f 69 64 69 6e 67 20 74 68 65 20 74 69 6d 65 | y..This.allows.avoiding.the.time |
| 8e5a0 | 72 73 20 64 65 66 69 6e 65 64 20 69 6e 20 42 47 50 20 61 6e 64 20 4f 53 50 46 20 70 72 6f 74 6f | rs.defined.in.BGP.and.OSPF.proto |
| 8e5c0 | 63 6f 6c 20 74 6f 20 65 78 70 69 72 65 73 2e 00 54 68 69 73 20 61 6c 6c 6f 77 73 20 74 68 65 20 | col.to.expires..This.allows.the. |
| 8e5e0 | 6f 70 65 72 61 74 6f 72 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 74 68 65 20 6e 75 6d 62 65 72 20 6f | operator.to.control.the.number.o |
| 8e600 | 66 20 6f 70 65 6e 20 66 69 6c 65 20 64 65 73 63 72 69 70 74 6f 72 73 20 65 61 63 68 20 64 61 65 | f.open.file.descriptors.each.dae |
| 8e620 | 6d 6f 6e 20 69 73 20 61 6c 6c 6f 77 65 64 20 74 6f 20 73 74 61 72 74 20 77 69 74 68 2e 20 49 66 | mon.is.allowed.to.start.with..If |
| 8e640 | 20 74 68 65 20 6f 70 65 72 61 74 6f 72 20 70 6c 61 6e 73 20 74 6f 20 72 75 6e 20 62 67 70 20 77 | .the.operator.plans.to.run.bgp.w |
| 8e660 | 69 74 68 20 73 65 76 65 72 61 6c 20 74 68 6f 75 73 61 6e 64 73 20 6f 66 20 70 65 65 72 73 20 74 | ith.several.thousands.of.peers.t |
| 8e680 | 68 65 6e 20 74 68 69 73 20 69 73 20 77 68 65 72 65 20 77 65 20 77 6f 75 6c 64 20 6d 6f 64 69 66 | hen.this.is.where.we.would.modif |
| 8e6a0 | 79 20 46 52 52 20 74 6f 20 61 6c 6c 6f 77 20 74 68 69 73 20 74 6f 20 68 61 70 70 65 6e 2e 00 54 | y.FRR.to.allow.this.to.happen..T |
| 8e6c0 | 68 69 73 20 61 6c 73 6f 20 77 6f 72 6b 73 20 66 6f 72 20 72 65 76 65 72 73 65 2d 6c 6f 6f 6b 75 | his.also.works.for.reverse-looku |
| 8e6e0 | 70 20 7a 6f 6e 65 73 20 28 60 60 31 38 2e 31 37 32 2e 69 6e 2d 61 64 64 72 2e 61 72 70 61 60 60 | p.zones.(``18.172.in-addr.arpa`` |
| 8e700 | 29 2e 00 54 68 69 73 20 61 72 74 69 63 6c 65 20 74 6f 75 63 68 65 73 20 6f 6e 20 27 63 6c 61 73 | )..This.article.touches.on.'clas |
| 8e720 | 73 69 63 27 20 49 50 20 74 75 6e 6e 65 6c 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 54 68 69 | sic'.IP.tunneling.protocols..Thi |
| 8e740 | 73 20 62 6c 75 65 70 72 69 6e 74 20 75 73 65 73 20 56 79 4f 53 20 61 73 20 74 68 65 20 44 4d 56 | s.blueprint.uses.VyOS.as.the.DMV |
| 8e760 | 50 4e 20 48 75 62 20 61 6e 64 20 43 69 73 63 6f 20 28 37 32 30 36 56 58 52 29 20 61 6e 64 20 56 | PN.Hub.and.Cisco.(7206VXR).and.V |
| 8e780 | 79 4f 53 20 61 73 20 6d 75 6c 74 69 70 6c 65 20 73 70 6f 6b 65 20 73 69 74 65 73 2e 20 54 68 65 | yOS.as.multiple.spoke.sites..The |
| 8e7a0 | 20 6c 61 62 20 77 61 73 20 62 75 69 6c 64 20 75 73 69 6e 67 20 3a 61 62 62 72 3a 60 45 56 45 2d | .lab.was.build.using.:abbr:`EVE- |
| 8e7c0 | 4e 47 20 28 45 6d 75 6c 61 74 65 64 20 56 69 72 74 75 61 6c 20 45 6e 76 69 72 6f 6e 6d 65 6e 74 | NG.(Emulated.Virtual.Environment |
| 8e7e0 | 20 4e 47 29 60 2e 00 54 68 69 73 20 62 6c 75 65 70 72 69 6e 74 20 75 73 65 73 20 56 79 4f 53 20 | .NG)`..This.blueprint.uses.VyOS. |
| 8e800 | 61 73 20 74 68 65 20 44 4d 56 50 4e 20 48 75 62 20 61 6e 64 20 43 69 73 63 6f 20 28 37 32 30 36 | as.the.DMVPN.Hub.and.Cisco.(7206 |
| 8e820 | 56 58 52 29 20 61 6e 64 20 56 79 4f 53 20 61 73 20 6d 75 6c 74 69 70 6c 65 20 73 70 6f 6b 65 20 | VXR).and.VyOS.as.multiple.spoke. |
| 8e840 | 73 69 74 65 73 2e 20 54 68 65 20 6c 61 62 20 77 61 73 20 62 75 69 6c 74 20 75 73 69 6e 67 20 3a | sites..The.lab.was.built.using.: |
| 8e860 | 61 62 62 72 3a 60 45 56 45 2d 4e 47 20 28 45 6d 75 6c 61 74 65 64 20 56 69 72 74 75 61 6c 20 45 | abbr:`EVE-NG.(Emulated.Virtual.E |
| 8e880 | 6e 76 69 72 6f 6e 6d 65 6e 74 20 4e 47 29 60 2e 00 54 68 69 73 20 63 61 6e 20 62 65 20 63 6f 6e | nvironment.NG)`..This.can.be.con |
| 8e8a0 | 66 69 72 6d 65 64 20 75 73 69 6e 67 20 74 68 65 20 60 60 73 68 6f 77 20 69 70 20 72 6f 75 74 65 | firmed.using.the.``show.ip.route |
| 8e8c0 | 20 74 61 62 6c 65 20 31 30 30 60 60 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 | .table.100``.operational.command |
| 8e8e0 | 2e 00 54 68 69 73 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 64 6f 6e 65 20 69 66 20 61 6c 6c 20 79 | ..This.can.only.be.done.if.all.y |
| 8e900 | 6f 75 72 20 75 73 65 72 73 20 61 72 65 20 6c 6f 63 61 74 65 64 20 64 69 72 65 63 74 6c 79 20 75 | our.users.are.located.directly.u |
| 8e920 | 6e 64 65 72 20 74 68 65 20 73 61 6d 65 20 70 6f 73 69 74 69 6f 6e 20 69 6e 20 74 68 65 20 4c 44 | nder.the.same.position.in.the.LD |
| 8e940 | 41 50 20 74 72 65 65 20 61 6e 64 20 74 68 65 20 6c 6f 67 69 6e 20 6e 61 6d 65 20 69 73 20 75 73 | AP.tree.and.the.login.name.is.us |
| 8e960 | 65 64 20 66 6f 72 20 6e 61 6d 69 6e 67 20 65 61 63 68 20 75 73 65 72 20 6f 62 6a 65 63 74 2e 20 | ed.for.naming.each.user.object.. |
| 8e980 | 49 66 20 79 6f 75 72 20 4c 44 41 50 20 74 72 65 65 20 64 6f 65 73 20 6e 6f 74 20 6d 61 74 63 68 | If.your.LDAP.tree.does.not.match |
| 8e9a0 | 20 74 68 65 73 65 20 63 72 69 74 65 72 69 61 73 20 6f 72 20 69 66 20 79 6f 75 20 77 61 6e 74 20 | .these.criterias.or.if.you.want. |
| 8e9c0 | 74 6f 20 66 69 6c 74 65 72 20 77 68 6f 20 61 72 65 20 76 61 6c 69 64 20 75 73 65 72 73 20 74 68 | to.filter.who.are.valid.users.th |
| 8e9e0 | 65 6e 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 75 73 65 20 61 20 73 65 61 72 63 68 20 66 69 6c 74 | en.you.need.to.use.a.search.filt |
| 8ea00 | 65 72 20 74 6f 20 73 65 61 72 63 68 20 66 6f 72 20 79 6f 75 72 20 75 73 65 72 73 20 44 4e 20 28 | er.to.search.for.your.users.DN.( |
| 8ea20 | 60 66 69 6c 74 65 72 2d 65 78 70 72 65 73 73 69 6f 6e 60 29 2e 00 54 68 69 73 20 63 68 61 70 65 | `filter-expression`)..This.chape |
| 8ea40 | 74 65 72 20 64 65 73 63 72 69 62 65 73 20 68 6f 77 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 6b | ter.describes.how.to.configure.k |
| 8ea60 | 65 72 6e 65 6c 20 70 61 72 61 6d 65 74 65 72 73 20 61 74 20 72 75 6e 74 69 6d 65 2e 00 54 68 69 | ernel.parameters.at.runtime..Thi |
| 8ea80 | 73 20 63 68 61 70 74 65 72 20 64 65 73 63 72 69 62 65 20 74 68 65 20 70 6f 73 73 69 62 69 6c 69 | s.chapter.describe.the.possibili |
| 8eaa0 | 74 69 65 73 20 6f 66 20 61 64 76 61 6e 63 65 64 20 73 79 73 74 65 6d 20 62 65 68 61 76 69 6f 72 | ties.of.advanced.system.behavior |
| 8eac0 | 2e 00 54 68 69 73 20 63 6f 6d 6d 61 64 20 73 65 74 73 20 6e 65 74 77 6f 72 6b 20 65 6e 74 69 74 | ..This.commad.sets.network.entit |
| 8eae0 | 79 20 74 69 74 6c 65 20 28 4e 45 54 29 20 70 72 6f 76 69 64 65 64 20 69 6e 20 49 53 4f 20 66 6f | y.title.(NET).provided.in.ISO.fo |
| 8eb00 | 72 6d 61 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 63 63 65 70 74 20 69 6e 63 6f 6d 69 | rmat..This.command.accept.incomi |
| 8eb20 | 6e 67 20 72 6f 75 74 65 73 20 77 69 74 68 20 41 53 20 70 61 74 68 20 63 6f 6e 74 61 69 6e 69 6e | ng.routes.with.AS.path.containin |
| 8eb40 | 67 20 41 53 20 6e 75 6d 62 65 72 20 77 69 74 68 20 74 68 65 20 73 61 6d 65 20 76 61 6c 75 65 20 | g.AS.number.with.the.same.value. |
| 8eb60 | 61 73 20 74 68 65 20 63 75 72 72 65 6e 74 20 73 79 73 74 65 6d 20 41 53 2e 20 54 68 69 73 20 69 | as.the.current.system.AS..This.i |
| 8eb80 | 73 20 75 73 65 64 20 77 68 65 6e 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 75 73 65 20 74 68 65 20 | s.used.when.you.want.to.use.the. |
| 8eba0 | 73 61 6d 65 20 41 53 20 6e 75 6d 62 65 72 20 69 6e 20 79 6f 75 72 20 73 69 74 65 73 2c 20 62 75 | same.AS.number.in.your.sites,.bu |
| 8ebc0 | 74 20 79 6f 75 20 63 61 6e e2 80 99 74 20 63 6f 6e 6e 65 63 74 20 74 68 65 6d 20 64 69 72 65 63 | t.you.can...t.connect.them.direc |
| 8ebe0 | 74 6c 79 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 20 6f 76 65 72 72 69 64 65 | tly..This.command.allow.override |
| 8ec00 | 20 74 68 65 20 72 65 73 75 6c 74 20 6f 66 20 43 61 70 61 62 69 6c 69 74 79 20 4e 65 67 6f 74 69 | .the.result.of.Capability.Negoti |
| 8ec20 | 61 74 69 6f 6e 20 77 69 74 68 20 6c 6f 63 61 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 | ation.with.local.configuration.. |
| 8ec40 | 49 67 6e 6f 72 65 20 72 65 6d 6f 74 65 20 70 65 65 72 e2 80 99 73 20 63 61 70 61 62 69 6c 69 74 | Ignore.remote.peer...s.capabilit |
| 8ec60 | 79 20 76 61 6c 75 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 70 65 65 | y.value..This.command.allows.pee |
| 8ec80 | 72 69 6e 67 73 20 62 65 74 77 65 65 6e 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 | rings.between.directly.connected |
| 8eca0 | 20 65 42 47 50 20 70 65 65 72 73 20 75 73 69 6e 67 20 6c 6f 6f 70 62 61 63 6b 20 61 64 64 72 65 | .eBGP.peers.using.loopback.addre |
| 8ecc0 | 73 73 65 73 20 77 69 74 68 6f 75 74 20 61 64 6a 75 73 74 69 6e 67 20 74 68 65 20 64 65 66 61 75 | sses.without.adjusting.the.defau |
| 8ece0 | 6c 74 20 54 54 4c 20 6f 66 20 31 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 | lt.TTL.of.1..This.command.allows |
| 8ed00 | 20 73 65 73 73 69 6f 6e 73 20 74 6f 20 62 65 20 65 73 74 61 62 6c 69 73 68 65 64 20 77 69 74 68 | .sessions.to.be.established.with |
| 8ed20 | 20 65 42 47 50 20 6e 65 69 67 68 62 6f 72 73 20 77 68 65 6e 20 74 68 65 79 20 61 72 65 20 6d 75 | .eBGP.neighbors.when.they.are.mu |
| 8ed40 | 6c 74 69 70 6c 65 20 68 6f 70 73 20 61 77 61 79 2e 20 57 68 65 6e 20 74 68 65 20 6e 65 69 67 68 | ltiple.hops.away..When.the.neigh |
| 8ed60 | 62 6f 72 20 69 73 20 6e 6f 74 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 20 61 6e | bor.is.not.directly.connected.an |
| 8ed80 | 64 20 74 68 69 73 20 6b 6e 6f 62 20 69 73 20 6e 6f 74 20 65 6e 61 62 6c 65 64 2c 20 74 68 65 20 | d.this.knob.is.not.enabled,.the. |
| 8eda0 | 73 65 73 73 69 6f 6e 20 77 69 6c 6c 20 6e 6f 74 20 65 73 74 61 62 6c 69 73 68 2e 20 54 68 65 20 | session.will.not.establish..The. |
| 8edc0 | 6e 75 6d 62 65 72 20 6f 66 20 68 6f 70 73 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 | number.of.hops.range.is.1.to.255 |
| 8ede0 | 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6d 75 74 75 61 6c 6c 79 20 65 78 63 6c 75 | ..This.command.is.mutually.exclu |
| 8ee00 | 73 69 76 65 20 77 69 74 68 20 3a 63 66 67 63 6d 64 3a 60 74 74 6c 2d 73 65 63 75 72 69 74 79 20 | sive.with.:cfgcmd:`ttl-security. |
| 8ee20 | 68 6f 70 73 60 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 74 68 65 20 72 | hops`..This.command.allows.the.r |
| 8ee40 | 6f 75 74 65 72 20 74 6f 20 70 72 65 66 65 72 20 72 6f 75 74 65 20 74 6f 20 73 70 65 63 69 66 69 | outer.to.prefer.route.to.specifi |
| 8ee60 | 65 64 20 70 72 65 66 69 78 20 6c 65 61 72 6e 65 64 20 76 69 61 20 49 47 50 20 74 68 72 6f 75 67 | ed.prefix.learned.via.IGP.throug |
| 8ee80 | 68 20 62 61 63 6b 64 6f 6f 72 20 6c 69 6e 6b 20 69 6e 73 74 65 61 64 20 6f 66 20 61 20 72 6f 75 | h.backdoor.link.instead.of.a.rou |
| 8eea0 | 74 65 20 74 6f 20 74 68 65 20 73 61 6d 65 20 70 72 65 66 69 78 20 6c 65 61 72 6e 65 64 20 76 69 | te.to.the.same.prefix.learned.vi |
| 8eec0 | 61 20 45 42 47 50 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 74 6f 20 6c | a.EBGP..This.command.allows.to.l |
| 8eee0 | 6f 67 20 63 68 61 6e 67 65 73 20 69 6e 20 61 64 6a 61 63 65 6e 63 79 2e 20 57 69 74 68 20 74 68 | og.changes.in.adjacency..With.th |
| 8ef00 | 65 20 6f 70 74 69 6f 6e 61 6c 20 3a 63 66 67 63 6d 64 3a 60 64 65 74 61 69 6c 60 20 61 72 67 75 | e.optional.:cfgcmd:`detail`.argu |
| 8ef20 | 6d 65 6e 74 2c 20 61 6c 6c 20 63 68 61 6e 67 65 73 20 69 6e 20 61 64 6a 61 63 65 6e 63 79 20 73 | ment,.all.changes.in.adjacency.s |
| 8ef40 | 74 61 74 75 73 20 61 72 65 20 73 68 6f 77 6e 2e 20 57 69 74 68 6f 75 74 20 3a 63 66 67 63 6d 64 | tatus.are.shown..Without.:cfgcmd |
| 8ef60 | 3a 60 64 65 74 61 69 6c 60 2c 20 6f 6e 6c 79 20 63 68 61 6e 67 65 73 20 74 6f 20 66 75 6c 6c 20 | :`detail`,.only.changes.to.full. |
| 8ef80 | 6f 72 20 72 65 67 72 65 73 73 69 6f 6e 73 20 61 72 65 20 73 68 6f 77 6e 2e 00 54 68 69 73 20 63 | or.regressions.are.shown..This.c |
| 8efa0 | 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 64 69 73 | ommand.allows.to.specify.the.dis |
| 8efc0 | 74 72 69 62 75 74 69 6f 6e 20 74 79 70 65 20 66 6f 72 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 63 | tribution.type.for.the.network.c |
| 8efe0 | 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 3a 00 54 68 69 73 | onnected.to.this.interface:.This |
| 8f000 | 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 74 6f 20 75 73 65 20 72 6f 75 74 65 20 6d 61 70 | .command.allows.to.use.route.map |
| 8f020 | 20 74 6f 20 66 69 6c 74 65 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 20 | .to.filter.redistributed.routes. |
| 8f040 | 66 72 6f 6d 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 2e 20 54 68 65 72 65 20 61 | from.given.route.source..There.a |
| 8f060 | 72 65 20 66 69 76 65 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 | re.five.modes.available.for.rout |
| 8f080 | 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c | e.source:.bgp,.connected,.kernel |
| 8f0a0 | 2c 20 72 69 70 6e 67 2c 20 73 74 61 74 69 63 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c | ,.ripng,.static..This.command.al |
| 8f0c0 | 6c 6f 77 73 20 74 6f 20 75 73 65 20 72 6f 75 74 65 20 6d 61 70 20 74 6f 20 66 69 6c 74 65 72 20 | lows.to.use.route.map.to.filter. |
| 8f0e0 | 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 20 66 72 6f 6d 20 74 68 65 20 67 69 | redistributed.routes.from.the.gi |
| 8f100 | 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 2e 20 54 68 65 72 65 20 61 72 65 20 66 69 76 65 | ven.route.source..There.are.five |
| 8f120 | 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 | .modes.available.for.route.sourc |
| 8f140 | 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c | e:.bgp,.connected,.kernel,.ospf, |
| 8f160 | 20 73 74 61 74 69 63 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 74 6f 20 | .static..This.command.allows.to. |
| 8f180 | 75 73 65 20 72 6f 75 74 65 20 6d 61 70 20 74 6f 20 66 69 6c 74 65 72 20 72 65 64 69 73 74 72 69 | use.route.map.to.filter.redistri |
| 8f1a0 | 62 75 74 65 64 20 72 6f 75 74 65 73 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 | buted.routes.from.the.given.rout |
| 8f1c0 | 65 20 73 6f 75 72 63 65 2e 20 54 68 65 72 65 20 61 72 65 20 66 69 76 65 20 6d 6f 64 65 73 20 61 | e.source..There.are.five.modes.a |
| 8f1e0 | 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 | vailable.for.route.source:.bgp,. |
| 8f200 | 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2e 00 | connected,.kernel,.rip,.static.. |
| 8f220 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 74 6f 20 75 73 65 20 72 6f 75 74 65 | This.command.allows.to.use.route |
| 8f240 | 20 6d 61 70 20 74 6f 20 66 69 6c 74 65 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 | .map.to.filter.redistributed.rou |
| 8f260 | 74 65 73 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 2e | tes.from.the.given.route.source. |
| 8f280 | 20 54 68 65 72 65 20 61 72 65 20 73 69 78 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 | .There.are.six.modes.available.f |
| 8f2a0 | 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c | or.route.source:.bgp,.connected, |
| 8f2c0 | 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2e 00 54 68 69 73 | .kernel,.ospf,.rip,.static..This |
| 8f2e0 | 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 74 6f 20 75 73 65 20 72 6f 75 74 65 20 6d 61 70 | .command.allows.to.use.route.map |
| 8f300 | 20 74 6f 20 66 69 6c 74 65 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 2e | .to.filter.redistributed.routes. |
| 8f320 | 20 54 68 65 72 65 20 61 72 65 20 73 69 78 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 | .There.are.six.modes.available.f |
| 8f340 | 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e | or.route.source:.connected,.kern |
| 8f360 | 65 6c 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2c 20 74 61 62 6c 65 2e 00 54 68 | el,.ospf,.rip,.static,.table..Th |
| 8f380 | 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 79 6f 75 20 61 70 70 6c 79 20 61 63 63 65 | is.command.allows.you.apply.acce |
| 8f3a0 | 73 73 20 6c 69 73 74 73 20 74 6f 20 61 20 63 68 6f 73 65 6e 20 69 6e 74 65 72 66 61 63 65 20 74 | ss.lists.to.a.chosen.interface.t |
| 8f3c0 | 6f 20 66 69 6c 74 65 72 20 74 68 65 20 42 61 62 65 6c 20 72 6f 75 74 65 73 2e 00 54 68 69 73 20 | o.filter.the.Babel.routes..This. |
| 8f3e0 | 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 79 6f 75 20 61 70 70 6c 79 20 61 63 63 65 73 73 20 | command.allows.you.apply.access. |
| 8f400 | 6c 69 73 74 73 20 74 6f 20 61 20 63 68 6f 73 65 6e 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 66 | lists.to.a.chosen.interface.to.f |
| 8f420 | 69 6c 74 65 72 20 74 68 65 20 52 49 50 20 70 61 74 68 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | ilter.the.RIP.path..This.command |
| 8f440 | 20 61 6c 6c 6f 77 73 20 79 6f 75 20 61 70 70 6c 79 20 70 72 65 66 69 78 20 6c 69 73 74 73 20 74 | .allows.you.apply.prefix.lists.t |
| 8f460 | 6f 20 61 20 63 68 6f 73 65 6e 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 66 69 6c 74 65 72 20 74 | o.a.chosen.interface.to.filter.t |
| 8f480 | 68 65 20 42 61 62 65 6c 20 72 6f 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c | he.Babel.routes..This.command.al |
| 8f4a0 | 6c 6f 77 73 20 79 6f 75 20 61 70 70 6c 79 20 70 72 65 66 69 78 20 6c 69 73 74 73 20 74 6f 20 61 | lows.you.apply.prefix.lists.to.a |
| 8f4c0 | 20 63 68 6f 73 65 6e 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 66 69 6c 74 65 72 20 74 68 65 20 | .chosen.interface.to.filter.the. |
| 8f4e0 | 52 49 50 20 70 61 74 68 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 79 6f | RIP.path..This.command.allows.yo |
| 8f500 | 75 20 74 6f 20 73 65 6c 65 63 74 20 61 20 73 70 65 63 69 66 69 63 20 61 63 63 65 73 73 20 63 6f | u.to.select.a.specific.access.co |
| 8f520 | 6e 63 65 6e 74 72 61 74 6f 72 20 77 68 65 6e 20 79 6f 75 20 6b 6e 6f 77 20 74 68 65 20 61 63 63 | ncentrator.when.you.know.the.acc |
| 8f540 | 65 73 73 20 63 6f 6e 63 65 6e 74 72 61 74 6f 72 73 20 60 3c 6e 61 6d 65 3e 60 2e 00 54 68 69 73 | ess.concentrators.`<name>`..This |
| 8f560 | 20 63 6f 6d 6d 61 6e 64 20 61 70 70 6c 69 65 73 20 72 6f 75 74 65 2d 6d 61 70 20 74 6f 20 73 65 | .command.applies.route-map.to.se |
| 8f580 | 6c 65 63 74 69 76 65 6c 79 20 75 6e 73 75 70 70 72 65 73 73 20 70 72 65 66 69 78 65 73 20 73 75 | lectively.unsuppress.prefixes.su |
| 8f5a0 | 70 70 72 65 73 73 65 64 20 62 79 20 73 75 6d 6d 61 72 69 73 61 74 69 6f 6e 2e 00 54 68 69 73 20 | ppressed.by.summarisation..This. |
| 8f5c0 | 63 6f 6d 6d 61 6e 64 20 61 70 70 6c 69 65 73 20 74 68 65 20 41 53 20 70 61 74 68 20 61 63 63 65 | command.applies.the.AS.path.acce |
| 8f5e0 | 73 73 20 6c 69 73 74 20 66 69 6c 74 65 72 73 20 6e 61 6d 65 64 20 69 6e 20 3c 6e 61 6d 65 3e 20 | ss.list.filters.named.in.<name>. |
| 8f600 | 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 42 47 50 20 6e 65 69 67 68 62 6f 72 20 74 6f | to.the.specified.BGP.neighbor.to |
| 8f620 | 20 72 65 73 74 72 69 63 74 20 74 68 65 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f | .restrict.the.routing.informatio |
| 8f640 | 6e 20 74 68 61 74 20 42 47 50 20 6c 65 61 72 6e 73 20 61 6e 64 2f 6f 72 20 61 64 76 65 72 74 69 | n.that.BGP.learns.and/or.adverti |
| 8f660 | 73 65 73 2e 20 54 68 65 20 61 72 67 75 6d 65 6e 74 73 20 3a 63 66 67 63 6d 64 3a 60 65 78 70 6f | ses..The.arguments.:cfgcmd:`expo |
| 8f680 | 72 74 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 69 6d 70 6f 72 74 60 20 73 70 65 63 69 66 79 | rt`.and.:cfgcmd:`import`.specify |
| 8f6a0 | 20 74 68 65 20 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 41 53 20 70 | .the.direction.in.which.the.AS.p |
| 8f6c0 | 61 74 68 20 61 63 63 65 73 73 20 6c 69 73 74 20 61 72 65 20 61 70 70 6c 69 65 64 2e 00 54 68 69 | ath.access.list.are.applied..Thi |
| 8f6e0 | 73 20 63 6f 6d 6d 61 6e 64 20 61 70 70 6c 69 65 73 20 74 68 65 20 61 63 63 65 73 73 20 6c 69 73 | s.command.applies.the.access.lis |
| 8f700 | 74 20 66 69 6c 74 65 72 73 20 6e 61 6d 65 64 20 69 6e 20 3c 6e 75 6d 62 65 72 3e 20 74 6f 20 74 | t.filters.named.in.<number>.to.t |
| 8f720 | 68 65 20 73 70 65 63 69 66 69 65 64 20 42 47 50 20 6e 65 69 67 68 62 6f 72 20 74 6f 20 72 65 73 | he.specified.BGP.neighbor.to.res |
| 8f740 | 74 72 69 63 74 20 74 68 65 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 68 | trict.the.routing.information.th |
| 8f760 | 61 74 20 42 47 50 20 6c 65 61 72 6e 73 20 61 6e 64 2f 6f 72 20 61 64 76 65 72 74 69 73 65 73 2e | at.BGP.learns.and/or.advertises. |
| 8f780 | 20 54 68 65 20 61 72 67 75 6d 65 6e 74 73 20 3a 63 66 67 63 6d 64 3a 60 65 78 70 6f 72 74 60 20 | .The.arguments.:cfgcmd:`export`. |
| 8f7a0 | 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 69 6d 70 6f 72 74 60 20 73 70 65 63 69 66 79 20 74 68 65 | and.:cfgcmd:`import`.specify.the |
| 8f7c0 | 20 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 61 63 63 65 73 73 20 6c | .direction.in.which.the.access.l |
| 8f7e0 | 69 73 74 20 61 72 65 20 61 70 70 6c 69 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 70 | ist.are.applied..This.command.ap |
| 8f800 | 70 6c 69 65 73 20 74 68 65 20 70 72 66 65 66 69 78 20 6c 69 73 74 20 66 69 6c 74 65 72 73 20 6e | plies.the.prfefix.list.filters.n |
| 8f820 | 61 6d 65 64 20 69 6e 20 3c 6e 61 6d 65 3e 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 | amed.in.<name>.to.the.specified. |
| 8f840 | 42 47 50 20 6e 65 69 67 68 62 6f 72 20 74 6f 20 72 65 73 74 72 69 63 74 20 74 68 65 20 72 6f 75 | BGP.neighbor.to.restrict.the.rou |
| 8f860 | 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 68 61 74 20 42 47 50 20 6c 65 61 72 6e 73 | ting.information.that.BGP.learns |
| 8f880 | 20 61 6e 64 2f 6f 72 20 61 64 76 65 72 74 69 73 65 73 2e 20 54 68 65 20 61 72 67 75 6d 65 6e 74 | .and/or.advertises..The.argument |
| 8f8a0 | 73 20 3a 63 66 67 63 6d 64 3a 60 65 78 70 6f 72 74 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 | s.:cfgcmd:`export`.and.:cfgcmd:` |
| 8f8c0 | 69 6d 70 6f 72 74 60 20 73 70 65 63 69 66 79 20 74 68 65 20 64 69 72 65 63 74 69 6f 6e 20 69 6e | import`.specify.the.direction.in |
| 8f8e0 | 20 77 68 69 63 68 20 74 68 65 20 70 72 65 66 69 78 20 6c 69 73 74 20 61 72 65 20 61 70 70 6c 69 | .which.the.prefix.list.are.appli |
| 8f900 | 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 70 70 6c 69 65 73 20 74 68 65 20 72 6f 75 | ed..This.command.applies.the.rou |
| 8f920 | 74 65 20 6d 61 70 20 6e 61 6d 65 64 20 69 6e 20 3c 6e 61 6d 65 3e 20 74 6f 20 74 68 65 20 73 70 | te.map.named.in.<name>.to.the.sp |
| 8f940 | 65 63 69 66 69 65 64 20 42 47 50 20 6e 65 69 67 68 62 6f 72 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 | ecified.BGP.neighbor.to.control. |
| 8f960 | 61 6e 64 20 6d 6f 64 69 66 79 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 | and.modify.routing.information.t |
| 8f980 | 68 61 74 20 69 73 20 65 78 63 68 61 6e 67 65 64 20 62 65 74 77 65 65 6e 20 70 65 65 72 73 2e 20 | hat.is.exchanged.between.peers.. |
| 8f9a0 | 54 68 65 20 61 72 67 75 6d 65 6e 74 73 20 3a 63 66 67 63 6d 64 3a 60 65 78 70 6f 72 74 60 20 61 | The.arguments.:cfgcmd:`export`.a |
| 8f9c0 | 6e 64 20 3a 63 66 67 63 6d 64 3a 60 69 6d 70 6f 72 74 60 20 73 70 65 63 69 66 79 20 74 68 65 20 | nd.:cfgcmd:`import`.specify.the. |
| 8f9e0 | 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 72 6f 75 74 65 20 6d 61 70 | direction.in.which.the.route.map |
| 8fa00 | 20 61 72 65 20 61 70 70 6c 69 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 62 69 6e 64 20 | .are.applied..This.command.bind. |
| 8fa20 | 73 70 65 63 69 66 69 63 20 70 65 65 72 20 74 6f 20 70 65 65 72 20 67 72 6f 75 70 20 77 69 74 68 | specific.peer.to.peer.group.with |
| 8fa40 | 20 61 20 67 69 76 65 6e 20 6e 61 6d 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 61 6e 20 | .a.given.name..This.command.can. |
| 8fa60 | 62 65 20 75 73 65 64 20 74 6f 20 66 69 6c 74 65 72 20 74 68 65 20 42 61 62 65 6c 20 72 6f 75 74 | be.used.to.filter.the.Babel.rout |
| 8fa80 | 65 73 20 75 73 69 6e 67 20 61 63 63 65 73 73 20 6c 69 73 74 73 2e 20 3a 63 66 67 63 6d 64 3a 60 | es.using.access.lists..:cfgcmd:` |
| 8faa0 | 69 6e 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 6f 75 74 60 20 74 68 69 73 20 69 73 20 74 68 | in`.and.:cfgcmd:`out`.this.is.th |
| 8fac0 | 65 20 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 61 63 63 65 73 73 20 | e.direction.in.which.the.access. |
| 8fae0 | 6c 69 73 74 73 20 61 72 65 20 61 70 70 6c 69 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | lists.are.applied..This.command. |
| 8fb00 | 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 66 69 6c 74 65 72 20 74 68 65 20 42 61 62 65 6c 20 | can.be.used.to.filter.the.Babel. |
| 8fb20 | 72 6f 75 74 65 73 20 75 73 69 6e 67 20 70 72 65 66 69 78 20 6c 69 73 74 73 2e 20 3a 63 66 67 63 | routes.using.prefix.lists..:cfgc |
| 8fb40 | 6d 64 3a 60 69 6e 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 6f 75 74 60 20 74 68 69 73 20 69 | md:`in`.and.:cfgcmd:`out`.this.i |
| 8fb60 | 73 20 74 68 65 20 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 70 72 65 | s.the.direction.in.which.the.pre |
| 8fb80 | 66 69 78 20 6c 69 73 74 73 20 61 72 65 20 61 70 70 6c 69 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d | fix.lists.are.applied..This.comm |
| 8fba0 | 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 66 69 6c 74 65 72 20 74 68 65 20 52 49 | and.can.be.used.to.filter.the.RI |
| 8fbc0 | 50 20 70 61 74 68 20 75 73 69 6e 67 20 61 63 63 65 73 73 20 6c 69 73 74 73 2e 20 3a 63 66 67 63 | P.path.using.access.lists..:cfgc |
| 8fbe0 | 6d 64 3a 60 69 6e 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 6f 75 74 60 20 74 68 69 73 20 69 | md:`in`.and.:cfgcmd:`out`.this.i |
| 8fc00 | 73 20 74 68 65 20 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 61 63 63 | s.the.direction.in.which.the.acc |
| 8fc20 | 65 73 73 20 6c 69 73 74 73 20 61 72 65 20 61 70 70 6c 69 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d | ess.lists.are.applied..This.comm |
| 8fc40 | 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 66 69 6c 74 65 72 20 74 68 65 20 52 49 | and.can.be.used.to.filter.the.RI |
| 8fc60 | 50 20 70 61 74 68 20 75 73 69 6e 67 20 70 72 65 66 69 78 20 6c 69 73 74 73 2e 20 3a 63 66 67 63 | P.path.using.prefix.lists..:cfgc |
| 8fc80 | 6d 64 3a 60 69 6e 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 6f 75 74 60 20 74 68 69 73 20 69 | md:`in`.and.:cfgcmd:`out`.this.i |
| 8fca0 | 73 20 74 68 65 20 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 70 72 65 | s.the.direction.in.which.the.pre |
| 8fcc0 | 66 69 78 20 6c 69 73 74 73 20 61 72 65 20 61 70 70 6c 69 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d | fix.lists.are.applied..This.comm |
| 8fce0 | 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 77 69 74 68 20 70 72 65 76 69 6f 75 73 20 63 6f | and.can.be.used.with.previous.co |
| 8fd00 | 6d 6d 61 6e 64 20 74 6f 20 73 65 74 73 20 64 65 66 61 75 6c 74 20 52 49 50 20 64 69 73 74 61 6e | mmand.to.sets.default.RIP.distan |
| 8fd20 | 63 65 20 74 6f 20 73 70 65 63 69 66 69 65 64 20 76 61 6c 75 65 20 77 68 65 6e 20 74 68 65 20 72 | ce.to.specified.value.when.the.r |
| 8fd40 | 6f 75 74 65 20 73 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 6d 61 74 63 68 65 73 20 74 | oute.source.IP.address.matches.t |
| 8fd60 | 68 65 20 73 70 65 63 69 66 69 65 64 20 70 72 65 66 69 78 20 61 6e 64 20 74 68 65 20 73 70 65 63 | he.specified.prefix.and.the.spec |
| 8fd80 | 69 66 69 65 64 20 61 63 63 65 73 73 2d 6c 69 73 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | ified.access-list..This.command. |
| 8fda0 | 63 68 61 6e 67 65 20 64 69 73 74 61 6e 63 65 20 76 61 6c 75 65 20 6f 66 20 42 47 50 2e 20 54 68 | change.distance.value.of.BGP..Th |
| 8fdc0 | 65 20 61 72 67 75 6d 65 6e 74 73 20 61 72 65 20 74 68 65 20 64 69 73 74 61 6e 63 65 20 76 61 6c | e.arguments.are.the.distance.val |
| 8fde0 | 75 65 73 20 66 6f 72 20 65 78 74 65 72 6e 61 6c 20 72 6f 75 74 65 73 2c 20 69 6e 74 65 72 6e 61 | ues.for.external.routes,.interna |
| 8fe00 | 6c 20 72 6f 75 74 65 73 20 61 6e 64 20 6c 6f 63 61 6c 20 72 6f 75 74 65 73 20 72 65 73 70 65 63 | l.routes.and.local.routes.respec |
| 8fe20 | 74 69 76 65 6c 79 2e 20 54 68 65 20 64 69 73 74 61 6e 63 65 20 72 61 6e 67 65 20 69 73 20 31 20 | tively..The.distance.range.is.1. |
| 8fe40 | 74 6f 20 32 35 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 68 61 6e 67 65 20 64 69 73 74 | to.255..This.command.change.dist |
| 8fe60 | 61 6e 63 65 20 76 61 6c 75 65 20 6f 66 20 4f 53 50 46 20 67 6c 6f 62 61 6c 6c 79 2e 20 54 68 65 | ance.value.of.OSPF.globally..The |
| 8fe80 | 20 64 69 73 74 61 6e 63 65 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 2e 00 54 68 69 | .distance.range.is.1.to.255..Thi |
| 8fea0 | 73 20 63 6f 6d 6d 61 6e 64 20 63 68 61 6e 67 65 20 64 69 73 74 61 6e 63 65 20 76 61 6c 75 65 20 | s.command.change.distance.value. |
| 8fec0 | 6f 66 20 4f 53 50 46 2e 20 54 68 65 20 61 72 67 75 6d 65 6e 74 73 20 61 72 65 20 74 68 65 20 64 | of.OSPF..The.arguments.are.the.d |
| 8fee0 | 69 73 74 61 6e 63 65 20 76 61 6c 75 65 73 20 66 6f 72 20 65 78 74 65 72 6e 61 6c 20 72 6f 75 74 | istance.values.for.external.rout |
| 8ff00 | 65 73 2c 20 69 6e 74 65 72 2d 61 72 65 61 20 72 6f 75 74 65 73 20 61 6e 64 20 69 6e 74 72 61 2d | es,.inter-area.routes.and.intra- |
| 8ff20 | 61 72 65 61 20 72 6f 75 74 65 73 20 72 65 73 70 65 63 74 69 76 65 6c 79 2e 20 54 68 65 20 64 69 | area.routes.respectively..The.di |
| 8ff40 | 73 74 61 6e 63 65 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 2e 00 54 68 69 73 20 63 | stance.range.is.1.to.255..This.c |
| 8ff60 | 6f 6d 6d 61 6e 64 20 63 68 61 6e 67 65 20 64 69 73 74 61 6e 63 65 20 76 61 6c 75 65 20 6f 66 20 | ommand.change.distance.value.of. |
| 8ff80 | 4f 53 50 46 76 33 20 67 6c 6f 62 61 6c 6c 79 2e 20 54 68 65 20 64 69 73 74 61 6e 63 65 20 72 61 | OSPFv3.globally..The.distance.ra |
| 8ffa0 | 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 68 | nge.is.1.to.255..This.command.ch |
| 8ffc0 | 61 6e 67 65 20 64 69 73 74 61 6e 63 65 20 76 61 6c 75 65 20 6f 66 20 4f 53 50 46 76 33 2e 20 54 | ange.distance.value.of.OSPFv3..T |
| 8ffe0 | 68 65 20 61 72 67 75 6d 65 6e 74 73 20 61 72 65 20 74 68 65 20 64 69 73 74 61 6e 63 65 20 76 61 | he.arguments.are.the.distance.va |
| 90000 | 6c 75 65 73 20 66 6f 72 20 65 78 74 65 72 6e 61 6c 20 72 6f 75 74 65 73 2c 20 69 6e 74 65 72 2d | lues.for.external.routes,.inter- |
| 90020 | 61 72 65 61 20 72 6f 75 74 65 73 20 61 6e 64 20 69 6e 74 72 61 2d 61 72 65 61 20 72 6f 75 74 65 | area.routes.and.intra-area.route |
| 90040 | 73 20 72 65 73 70 65 63 74 69 76 65 6c 79 2e 20 54 68 65 20 64 69 73 74 61 6e 63 65 20 72 61 6e | s.respectively..The.distance.ran |
| 90060 | 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 68 61 | ge.is.1.to.255..This.command.cha |
| 90080 | 6e 67 65 20 74 68 65 20 64 69 73 74 61 6e 63 65 20 76 61 6c 75 65 20 6f 66 20 52 49 50 2e 20 54 | nge.the.distance.value.of.RIP..T |
| 900a0 | 68 65 20 64 69 73 74 61 6e 63 65 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 2e 00 54 | he.distance.range.is.1.to.255..T |
| 900c0 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 68 61 6e 67 65 73 20 74 68 65 20 65 42 47 50 20 62 65 68 | his.command.changes.the.eBGP.beh |
| 900e0 | 61 76 69 6f 72 20 6f 66 20 46 52 52 2e 20 42 79 20 64 65 66 61 75 6c 74 20 46 52 52 20 65 6e 61 | avior.of.FRR..By.default.FRR.ena |
| 90100 | 62 6c 65 73 20 3a 72 66 63 3a 60 38 32 31 32 60 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 77 | bles.:rfc:`8212`.functionality.w |
| 90120 | 68 69 63 68 20 61 66 66 65 63 74 73 20 68 6f 77 20 65 42 47 50 20 72 6f 75 74 65 73 20 61 72 65 | hich.affects.how.eBGP.routes.are |
| 90140 | 20 61 64 76 65 72 74 69 73 65 64 2c 20 6e 61 6d 65 6c 79 20 6e 6f 20 72 6f 75 74 65 73 20 61 72 | .advertised,.namely.no.routes.ar |
| 90160 | 65 20 61 64 76 65 72 74 69 73 65 64 20 61 63 72 6f 73 73 20 65 42 47 50 20 73 65 73 73 69 6f 6e | e.advertised.across.eBGP.session |
| 90180 | 73 20 77 69 74 68 6f 75 74 20 73 6f 6d 65 20 73 6f 72 74 20 6f 66 20 65 67 72 65 73 73 20 72 6f | s.without.some.sort.of.egress.ro |
| 901a0 | 75 74 65 2d 6d 61 70 2f 70 6f 6c 69 63 79 20 69 6e 20 70 6c 61 63 65 2e 20 49 6e 20 56 79 4f 53 | ute-map/policy.in.place..In.VyOS |
| 901c0 | 20 68 6f 77 65 76 65 72 20 77 65 20 68 61 76 65 20 74 68 69 73 20 52 46 43 20 66 75 6e 63 74 69 | .however.we.have.this.RFC.functi |
| 901e0 | 6f 6e 61 6c 69 74 79 20 64 69 73 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 20 73 6f 20 74 | onality.disabled.by.default.so.t |
| 90200 | 68 61 74 20 77 65 20 63 61 6e 20 70 72 65 73 65 72 76 65 20 62 61 63 6b 77 61 72 64 73 20 63 6f | hat.we.can.preserve.backwards.co |
| 90220 | 6d 70 61 74 69 62 69 6c 69 74 79 20 77 69 74 68 20 6f 6c 64 65 72 20 76 65 72 73 69 6f 6e 73 20 | mpatibility.with.older.versions. |
| 90240 | 6f 66 20 56 79 4f 53 2e 20 57 69 74 68 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 6f 6e 65 20 63 61 | of.VyOS..With.this.option.one.ca |
| 90260 | 6e 20 65 6e 61 62 6c 65 20 3a 72 66 63 3a 60 38 32 31 32 60 20 66 75 6e 63 74 69 6f 6e 61 6c 69 | n.enable.:rfc:`8212`.functionali |
| 90280 | 74 79 20 74 6f 20 6f 70 65 72 61 74 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 6f 6e 66 | ty.to.operate..This.command.conf |
| 902a0 | 69 67 75 72 65 73 20 70 61 64 64 69 6e 67 20 6f 6e 20 68 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 | igures.padding.on.hello.packets. |
| 902c0 | 74 6f 20 61 63 63 6f 6d 6d 6f 64 61 74 65 20 61 73 79 6d 6d 65 74 72 69 63 61 6c 20 6d 61 78 69 | to.accommodate.asymmetrical.maxi |
| 902e0 | 6d 75 6d 20 74 72 61 6e 73 66 65 72 20 75 6e 69 74 73 20 28 4d 54 55 73 29 20 66 72 6f 6d 20 64 | mum.transfer.units.(MTUs).from.d |
| 90300 | 69 66 66 65 72 65 6e 74 20 68 6f 73 74 73 20 61 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a | ifferent.hosts.as.described.in.: |
| 90320 | 72 66 63 3a 60 33 37 31 39 60 2e 20 54 68 69 73 20 68 65 6c 70 73 20 74 6f 20 70 72 65 76 65 6e | rfc:`3719`..This.helps.to.preven |
| 90340 | 74 20 61 20 70 72 65 6d 61 74 75 72 65 20 61 64 6a 61 63 65 6e 63 79 20 55 70 20 73 74 61 74 65 | t.a.premature.adjacency.Up.state |
| 90360 | 20 77 68 65 6e 20 6f 6e 65 20 72 6f 75 74 69 6e 67 20 64 65 76 69 63 65 73 20 4d 54 55 20 64 6f | .when.one.routing.devices.MTU.do |
| 90380 | 65 73 20 6e 6f 74 20 6d 65 65 74 20 74 68 65 20 72 65 71 75 69 72 65 6d 65 6e 74 73 20 74 6f 20 | es.not.meet.the.requirements.to. |
| 903a0 | 65 73 74 61 62 6c 69 73 68 20 74 68 65 20 61 64 6a 61 63 65 6e 63 79 2e 00 54 68 69 73 20 63 6f | establish.the.adjacency..This.co |
| 903c0 | 6d 6d 61 6e 64 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 74 | mmand.configures.the.authenticat |
| 903e0 | 69 6f 6e 20 70 61 73 73 77 6f 72 64 20 66 6f 72 20 61 20 72 6f 75 74 69 6e 67 20 64 6f 6d 61 69 | ion.password.for.a.routing.domai |
| 90400 | 6e 2c 20 61 73 20 63 6c 65 61 72 20 74 65 78 74 20 6f 72 20 6d 64 35 20 6f 6e 65 2e 00 54 68 69 | n,.as.clear.text.or.md5.one..Thi |
| 90420 | 73 20 63 6f 6d 6d 61 6e 64 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 61 75 74 68 65 6e 74 | s.command.configures.the.authent |
| 90440 | 69 63 61 74 69 6f 6e 20 70 61 73 73 77 6f 72 64 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 | ication.password.for.the.interfa |
| 90460 | 63 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 | ce..This.command.configures.the. |
| 90480 | 6d 61 78 69 6d 75 6d 20 73 69 7a 65 20 6f 66 20 67 65 6e 65 72 61 74 65 64 20 3a 61 62 62 72 3a | maximum.size.of.generated.:abbr: |
| 904a0 | 60 4c 53 50 73 20 28 4c 69 6e 6b 20 53 74 61 74 65 20 50 44 55 73 29 60 2c 20 69 6e 20 62 79 74 | `LSPs.(Link.State.PDUs)`,.in.byt |
| 904c0 | 65 73 2e 20 54 68 65 20 73 69 7a 65 20 72 61 6e 67 65 20 69 73 20 31 32 38 20 74 6f 20 34 33 35 | es..The.size.range.is.128.to.435 |
| 904e0 | 32 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 70 | 2..This.command.configures.the.p |
| 90500 | 61 73 73 69 76 65 20 6d 6f 64 65 20 66 6f 72 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 00 | assive.mode.for.this.interface.. |
| 90520 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 61 20 6e 65 77 20 6e 65 69 67 68 | This.command.creates.a.new.neigh |
| 90540 | 62 6f 72 20 77 68 6f 73 65 20 72 65 6d 6f 74 65 2d 61 73 20 69 73 20 3c 6e 61 73 6e 3e 2e 20 54 | bor.whose.remote-as.is.<nasn>..T |
| 90560 | 68 65 20 6e 65 69 67 68 62 6f 72 20 61 64 64 72 65 73 73 20 63 61 6e 20 62 65 20 61 6e 20 49 50 | he.neighbor.address.can.be.an.IP |
| 90580 | 76 34 20 61 64 64 72 65 73 73 20 6f 72 20 61 6e 20 49 50 76 36 20 61 64 64 72 65 73 73 20 6f 72 | v4.address.or.an.IPv6.address.or |
| 905a0 | 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 75 73 65 20 66 6f 72 20 74 68 65 20 63 6f 6e | .an.interface.to.use.for.the.con |
| 905c0 | 6e 65 63 74 69 6f 6e 2e 20 54 68 65 20 63 6f 6d 6d 61 6e 64 20 69 73 20 61 70 70 6c 69 63 61 62 | nection..The.command.is.applicab |
| 905e0 | 6c 65 20 66 6f 72 20 70 65 65 72 20 61 6e 64 20 70 65 65 72 20 67 72 6f 75 70 2e 00 54 68 69 73 | le.for.peer.and.peer.group..This |
| 90600 | 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 61 20 6e 65 77 20 72 6f 75 74 65 2d 6d 61 70 | .command.creates.a.new.route-map |
| 90620 | 20 70 6f 6c 69 63 79 2c 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 3c 74 65 78 74 3e 2e 00 54 | .policy,.identified.by.<text>..T |
| 90640 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 61 20 6e 65 77 20 72 75 6c 65 20 69 | his.command.creates.a.new.rule.i |
| 90660 | 6e 20 74 68 65 20 49 50 76 36 20 61 63 63 65 73 73 20 6c 69 73 74 20 61 6e 64 20 64 65 66 69 6e | n.the.IPv6.access.list.and.defin |
| 90680 | 65 73 20 61 6e 20 61 63 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 | es.an.action..This.command.creat |
| 906a0 | 65 73 20 61 20 6e 65 77 20 72 75 6c 65 20 69 6e 20 74 68 65 20 49 50 76 36 20 70 72 65 66 69 78 | es.a.new.rule.in.the.IPv6.prefix |
| 906c0 | 2d 6c 69 73 74 20 61 6e 64 20 64 65 66 69 6e 65 73 20 61 6e 20 61 63 74 69 6f 6e 2e 00 54 68 69 | -list.and.defines.an.action..Thi |
| 906e0 | 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 61 20 6e 65 77 20 72 75 6c 65 20 69 6e 20 | s.command.creates.a.new.rule.in. |
| 90700 | 74 68 65 20 61 63 63 65 73 73 20 6c 69 73 74 20 61 6e 64 20 64 65 66 69 6e 65 73 20 61 6e 20 61 | the.access.list.and.defines.an.a |
| 90720 | 63 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 61 20 6e 65 | ction..This.command.creates.a.ne |
| 90740 | 77 20 72 75 6c 65 20 69 6e 20 74 68 65 20 70 72 65 66 69 78 2d 6c 69 73 74 20 61 6e 64 20 64 65 | w.rule.in.the.prefix-list.and.de |
| 90760 | 66 69 6e 65 73 20 61 6e 20 61 63 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 | fines.an.action..This.command.cr |
| 90780 | 65 61 74 65 73 20 74 68 65 20 6e 65 77 20 49 50 76 36 20 61 63 63 65 73 73 20 6c 69 73 74 2c 20 | eates.the.new.IPv6.access.list,. |
| 907a0 | 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 3c 74 65 78 74 3e 00 54 68 69 73 20 63 6f 6d 6d 61 6e | identified.by.<text>.This.comman |
| 907c0 | 64 20 63 72 65 61 74 65 73 20 74 68 65 20 6e 65 77 20 49 50 76 36 20 70 72 65 66 69 78 2d 6c 69 | d.creates.the.new.IPv6.prefix-li |
| 907e0 | 73 74 20 70 6f 6c 69 63 79 2c 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 3c 74 65 78 74 3e 2e | st.policy,.identified.by.<text>. |
| 90800 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 74 68 65 20 6e 65 77 20 61 63 | .This.command.creates.the.new.ac |
| 90820 | 63 65 73 73 20 6c 69 73 74 20 70 6f 6c 69 63 79 2c 20 77 68 65 72 65 20 3c 61 63 6c 5f 6e 75 6d | cess.list.policy,.where.<acl_num |
| 90840 | 62 65 72 3e 20 6d 75 73 74 20 62 65 20 61 20 6e 75 6d 62 65 72 20 66 72 6f 6d 20 31 20 74 6f 20 | ber>.must.be.a.number.from.1.to. |
| 90860 | 32 36 39 39 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 74 68 65 20 6e | 2699..This.command.creates.the.n |
| 90880 | 65 77 20 70 72 65 66 69 78 2d 6c 69 73 74 20 70 6f 6c 69 63 79 2c 20 69 64 65 6e 74 69 66 69 65 | ew.prefix-list.policy,.identifie |
| 908a0 | 64 20 62 79 20 3c 74 65 78 74 3e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 | d.by.<text>..This.command.define |
| 908c0 | 73 20 61 20 6e 65 77 20 70 65 65 72 20 67 72 6f 75 70 2e 20 59 6f 75 20 63 61 6e 20 73 70 65 63 | s.a.new.peer.group..You.can.spec |
| 908e0 | 69 66 79 20 74 6f 20 74 68 65 20 67 72 6f 75 70 20 74 68 65 20 73 61 6d 65 20 70 61 72 61 6d 65 | ify.to.the.group.the.same.parame |
| 90900 | 74 65 72 73 20 74 68 61 74 20 79 6f 75 20 63 61 6e 20 73 70 65 63 69 66 79 20 66 6f 72 20 73 70 | ters.that.you.can.specify.for.sp |
| 90920 | 65 63 69 66 69 63 20 6e 65 69 67 68 62 6f 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 | ecific.neighbors..This.command.d |
| 90940 | 65 66 69 6e 65 73 20 6d 61 74 63 68 69 6e 67 20 70 61 72 61 6d 65 74 65 72 73 20 66 6f 72 20 49 | efines.matching.parameters.for.I |
| 90960 | 50 76 36 20 61 63 63 65 73 73 20 6c 69 73 74 20 72 75 6c 65 2e 20 4d 61 74 63 68 69 6e 67 20 63 | Pv6.access.list.rule..Matching.c |
| 90980 | 72 69 74 65 72 69 61 20 63 6f 75 6c 64 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 73 6f 75 72 | riteria.could.be.applied.to.sour |
| 909a0 | 63 65 20 70 61 72 61 6d 65 74 65 72 73 3a 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 | ce.parameters:.This.command.defi |
| 909c0 | 6e 65 73 20 6d 61 74 63 68 69 6e 67 20 70 61 72 61 6d 65 74 65 72 73 20 66 6f 72 20 61 63 63 65 | nes.matching.parameters.for.acce |
| 909e0 | 73 73 20 6c 69 73 74 20 72 75 6c 65 2e 20 4d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 | ss.list.rule..Matching.criteria. |
| 90a00 | 63 6f 75 6c 64 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 | could.be.applied.to.destination. |
| 90a20 | 6f 72 20 73 6f 75 72 63 65 20 70 61 72 61 6d 65 74 65 72 73 3a 00 54 68 69 73 20 63 6f 6d 6d 61 | or.source.parameters:.This.comma |
| 90a40 | 6e 64 20 64 65 66 69 6e 65 73 20 74 68 65 20 49 53 2d 49 53 20 72 6f 75 74 65 72 20 62 65 68 61 | nd.defines.the.IS-IS.router.beha |
| 90a60 | 76 69 6f 72 3a 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 73 20 74 68 65 20 61 | vior:.This.command.defines.the.a |
| 90a80 | 63 63 75 6d 75 6c 61 74 65 64 20 70 65 6e 61 6c 74 79 20 61 6d 6f 75 6e 74 20 61 74 20 77 68 69 | ccumulated.penalty.amount.at.whi |
| 90aa0 | 63 68 20 74 68 65 20 72 6f 75 74 65 20 69 73 20 72 65 2d 61 64 76 65 72 74 69 73 65 64 2e 20 54 | ch.the.route.is.re-advertised..T |
| 90ac0 | 68 65 20 70 65 6e 61 6c 74 79 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 30 30 30 30 2e 00 | he.penalty.range.is.1.to.20000.. |
| 90ae0 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 73 20 74 68 65 20 61 63 63 75 6d 75 6c | This.command.defines.the.accumul |
| 90b00 | 61 74 65 64 20 70 65 6e 61 6c 74 79 20 61 6d 6f 75 6e 74 20 61 74 20 77 68 69 63 68 20 74 68 65 | ated.penalty.amount.at.which.the |
| 90b20 | 20 72 6f 75 74 65 20 69 73 20 73 75 70 70 72 65 73 73 65 64 2e 20 54 68 65 20 70 65 6e 61 6c 74 | .route.is.suppressed..The.penalt |
| 90b40 | 79 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 30 30 30 30 2e 00 54 68 69 73 20 63 6f 6d 6d | y.range.is.1.to.20000..This.comm |
| 90b60 | 61 6e 64 20 64 65 66 69 6e 65 73 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 20 74 69 6d 65 20 69 | and.defines.the.amount.of.time.i |
| 90b80 | 6e 20 6d 69 6e 75 74 65 73 20 61 66 74 65 72 20 77 68 69 63 68 20 61 20 70 65 6e 61 6c 74 79 20 | n.minutes.after.which.a.penalty. |
| 90ba0 | 69 73 20 72 65 64 75 63 65 64 20 62 79 20 68 61 6c 66 2e 20 54 68 65 20 74 69 6d 65 72 20 72 61 | is.reduced.by.half..The.timer.ra |
| 90bc0 | 6e 67 65 20 69 73 20 31 30 20 74 6f 20 34 35 20 6d 69 6e 75 74 65 73 2e 00 54 68 69 73 20 63 6f | nge.is.10.to.45.minutes..This.co |
| 90be0 | 6d 6d 61 6e 64 20 64 65 66 69 6e 65 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 | mmand.defines.the.maximum.number |
| 90c00 | 20 6f 66 20 70 61 72 61 6c 6c 65 6c 20 72 6f 75 74 65 73 20 74 68 61 74 20 74 68 65 20 42 47 50 | .of.parallel.routes.that.the.BGP |
| 90c20 | 20 63 61 6e 20 73 75 70 70 6f 72 74 2e 20 49 6e 20 6f 72 64 65 72 20 66 6f 72 20 42 47 50 20 74 | .can.support..In.order.for.BGP.t |
| 90c40 | 6f 20 75 73 65 20 74 68 65 20 73 65 63 6f 6e 64 20 70 61 74 68 2c 20 74 68 65 20 66 6f 6c 6c 6f | o.use.the.second.path,.the.follo |
| 90c60 | 77 69 6e 67 20 61 74 74 72 69 62 75 74 65 73 20 68 61 76 65 20 74 6f 20 6d 61 74 63 68 3a 20 57 | wing.attributes.have.to.match:.W |
| 90c80 | 65 69 67 68 74 2c 20 4c 6f 63 61 6c 20 50 72 65 66 65 72 65 6e 63 65 2c 20 41 53 20 50 61 74 68 | eight,.Local.Preference,.AS.Path |
| 90ca0 | 20 28 62 6f 74 68 20 41 53 20 6e 75 6d 62 65 72 20 61 6e 64 20 41 53 20 70 61 74 68 20 6c 65 6e | .(both.AS.number.and.AS.path.len |
| 90cc0 | 67 74 68 29 2c 20 4f 72 69 67 69 6e 20 63 6f 64 65 2c 20 4d 45 44 2c 20 49 47 50 20 6d 65 74 72 | gth),.Origin.code,.MED,.IGP.metr |
| 90ce0 | 69 63 2e 20 41 6c 73 6f 2c 20 74 68 65 20 6e 65 78 74 20 68 6f 70 20 61 64 64 72 65 73 73 20 66 | ic..Also,.the.next.hop.address.f |
| 90d00 | 6f 72 20 65 61 63 68 20 70 61 74 68 20 6d 75 73 74 20 62 65 20 64 69 66 66 65 72 65 6e 74 2e 00 | or.each.path.must.be.different.. |
| 90d20 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 73 20 74 68 65 20 6d 61 78 69 6d 75 6d | This.command.defines.the.maximum |
| 90d40 | 20 74 69 6d 65 20 69 6e 20 6d 69 6e 75 74 65 73 20 74 68 61 74 20 61 20 72 6f 75 74 65 20 69 73 | .time.in.minutes.that.a.route.is |
| 90d60 | 20 73 75 70 70 72 65 73 73 65 64 2e 20 54 68 65 20 74 69 6d 65 72 20 72 61 6e 67 65 20 69 73 20 | .suppressed..The.timer.range.is. |
| 90d80 | 31 20 74 6f 20 32 35 35 20 6d 69 6e 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 | 1.to.255.minutes..This.command.d |
| 90da0 | 69 73 61 62 6c 65 20 74 68 65 20 70 65 65 72 20 6f 72 20 70 65 65 72 20 67 72 6f 75 70 2e 20 54 | isable.the.peer.or.peer.group..T |
| 90dc0 | 6f 20 72 65 65 6e 61 62 6c 65 20 74 68 65 20 70 65 65 72 20 75 73 65 20 74 68 65 20 64 65 6c 65 | o.reenable.the.peer.use.the.dele |
| 90de0 | 74 65 20 66 6f 72 6d 20 6f 66 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 2e 00 54 68 69 73 20 63 6f | te.form.of.this.command..This.co |
| 90e00 | 6d 6d 61 6e 64 20 64 69 73 61 62 6c 65 73 20 49 47 50 2d 4c 44 50 20 73 79 6e 63 20 66 6f 72 20 | mmand.disables.IGP-LDP.sync.for. |
| 90e20 | 74 68 69 73 20 73 70 65 63 69 66 69 63 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 69 73 20 63 6f | this.specific.interface..This.co |
| 90e40 | 6d 6d 61 6e 64 20 64 69 73 61 62 6c 65 73 20 54 68 72 65 65 2d 57 61 79 20 48 61 6e 64 73 68 61 | mmand.disables.Three-Way.Handsha |
| 90e60 | 6b 65 20 66 6f 72 20 50 32 50 20 61 64 6a 61 63 65 6e 63 69 65 73 20 77 68 69 63 68 20 64 65 73 | ke.for.P2P.adjacencies.which.des |
| 90e80 | 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 35 33 30 33 60 2e 20 54 68 72 65 65 2d 57 61 79 | cribed.in.:rfc:`5303`..Three-Way |
| 90ea0 | 20 48 61 6e 64 73 68 61 6b 65 20 69 73 20 65 6e 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 | .Handshake.is.enabled.by.default |
| 90ec0 | 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 61 62 6c 65 73 20 63 68 65 63 6b 20 6f 66 | ..This.command.disables.check.of |
| 90ee0 | 20 74 68 65 20 4d 54 55 20 76 61 6c 75 65 20 69 6e 20 74 68 65 20 4f 53 50 46 20 44 42 44 20 70 | .the.MTU.value.in.the.OSPF.DBD.p |
| 90f00 | 61 63 6b 65 74 73 2e 20 54 68 75 73 2c 20 75 73 65 20 6f 66 20 74 68 69 73 20 63 6f 6d 6d 61 6e | ackets..Thus,.use.of.this.comman |
| 90f20 | 64 20 61 6c 6c 6f 77 73 20 74 68 65 20 4f 53 50 46 20 61 64 6a 61 63 65 6e 63 79 20 74 6f 20 72 | d.allows.the.OSPF.adjacency.to.r |
| 90f40 | 65 61 63 68 20 74 68 65 20 46 55 4c 4c 20 73 74 61 74 65 20 65 76 65 6e 20 74 68 6f 75 67 68 20 | each.the.FULL.state.even.though. |
| 90f60 | 74 68 65 72 65 20 69 73 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 4d 54 55 20 6d 69 73 6d 61 74 | there.is.an.interface.MTU.mismat |
| 90f80 | 63 68 20 62 65 74 77 65 65 6e 20 74 77 6f 20 4f 53 50 46 20 72 6f 75 74 65 72 73 2e 00 54 68 69 | ch.between.two.OSPF.routers..Thi |
| 90fa0 | 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 61 62 6c 65 73 20 69 74 2e 00 54 68 69 73 20 63 6f 6d 6d | s.command.disables.it..This.comm |
| 90fc0 | 61 6e 64 20 64 69 73 61 62 6c 65 73 20 72 6f 75 74 65 20 72 65 66 6c 65 63 74 69 6f 6e 20 62 65 | and.disables.route.reflection.be |
| 90fe0 | 74 77 65 65 6e 20 72 6f 75 74 65 20 72 65 66 6c 65 63 74 6f 72 20 63 6c 69 65 6e 74 73 2e 20 42 | tween.route.reflector.clients..B |
| 91000 | 79 20 64 65 66 61 75 6c 74 2c 20 74 68 65 20 63 6c 69 65 6e 74 73 20 6f 66 20 61 20 72 6f 75 74 | y.default,.the.clients.of.a.rout |
| 91020 | 65 20 72 65 66 6c 65 63 74 6f 72 20 61 72 65 20 6e 6f 74 20 72 65 71 75 69 72 65 64 20 74 6f 20 | e.reflector.are.not.required.to. |
| 91040 | 62 65 20 66 75 6c 6c 79 20 6d 65 73 68 65 64 20 61 6e 64 20 74 68 65 20 72 6f 75 74 65 73 20 66 | be.fully.meshed.and.the.routes.f |
| 91060 | 72 6f 6d 20 61 20 63 6c 69 65 6e 74 20 61 72 65 20 72 65 66 6c 65 63 74 65 64 20 74 6f 20 6f 74 | rom.a.client.are.reflected.to.ot |
| 91080 | 68 65 72 20 63 6c 69 65 6e 74 73 2e 20 48 6f 77 65 76 65 72 2c 20 69 66 20 74 68 65 20 63 6c 69 | her.clients..However,.if.the.cli |
| 910a0 | 65 6e 74 73 20 61 72 65 20 66 75 6c 6c 79 20 6d 65 73 68 65 64 2c 20 72 6f 75 74 65 20 72 65 66 | ents.are.fully.meshed,.route.ref |
| 910c0 | 6c 65 63 74 69 6f 6e 20 69 73 20 6e 6f 74 20 72 65 71 75 69 72 65 64 2e 20 49 6e 20 74 68 69 73 | lection.is.not.required..In.this |
| 910e0 | 20 63 61 73 65 2c 20 75 73 65 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 6e 6f 2d 63 6c 69 65 6e | .case,.use.the.:cfgcmd:`no-clien |
| 91100 | 74 2d 74 6f 2d 63 6c 69 65 6e 74 2d 72 65 66 6c 65 63 74 69 6f 6e 60 20 63 6f 6d 6d 61 6e 64 20 | t-to-client-reflection`.command. |
| 91120 | 74 6f 20 64 69 73 61 62 6c 65 20 63 6c 69 65 6e 74 2d 74 6f 2d 63 6c 69 65 6e 74 20 72 65 66 6c | to.disable.client-to-client.refl |
| 91140 | 65 63 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 61 62 6c 65 73 20 73 70 | ection..This.command.disables.sp |
| 91160 | 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 42 79 | lit-horizon.on.the.interface..By |
| 91180 | 20 64 65 66 61 75 6c 74 2c 20 56 79 4f 53 20 64 6f 65 73 20 6e 6f 74 20 61 64 76 65 72 74 69 73 | .default,.VyOS.does.not.advertis |
| 911a0 | 65 20 52 49 50 20 72 6f 75 74 65 73 20 6f 75 74 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 6f | e.RIP.routes.out.the.interface.o |
| 911c0 | 76 65 72 20 77 68 69 63 68 20 74 68 65 79 20 77 65 72 65 20 6c 65 61 72 6e 65 64 20 28 73 70 6c | ver.which.they.were.learned.(spl |
| 911e0 | 69 74 20 68 6f 72 69 7a 6f 6e 29 2e 33 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 61 62 | it.horizon).3.This.command.disab |
| 91200 | 6c 65 73 20 74 68 65 20 6c 6f 61 64 20 73 68 61 72 69 6e 67 20 61 63 72 6f 73 73 20 6d 75 6c 74 | les.the.load.sharing.across.mult |
| 91220 | 69 70 6c 65 20 4c 46 41 20 62 61 63 6b 75 70 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 | iple.LFA.backups..This.command.d |
| 91240 | 69 73 70 6c 61 79 73 20 42 47 50 20 64 61 6d 70 65 6e 65 64 20 72 6f 75 74 65 73 2e 00 54 68 69 | isplays.BGP.dampened.routes..Thi |
| 91260 | 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 42 47 50 20 72 65 63 65 69 76 65 64 2d | s.command.displays.BGP.received- |
| 91280 | 72 6f 75 74 65 73 20 74 68 61 74 20 61 72 65 20 61 63 63 65 70 74 65 64 20 61 66 74 65 72 20 66 | routes.that.are.accepted.after.f |
| 912a0 | 69 6c 74 65 72 69 6e 67 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 | iltering..This.command.displays. |
| 912c0 | 42 47 50 20 72 6f 75 74 65 73 20 61 64 76 65 72 74 69 73 65 64 20 74 6f 20 61 20 6e 65 69 67 68 | BGP.routes.advertised.to.a.neigh |
| 912e0 | 62 6f 72 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 42 47 50 20 72 | bor..This.command.displays.BGP.r |
| 91300 | 6f 75 74 65 73 20 61 6c 6c 6f 77 65 64 20 62 79 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 41 | outes.allowed.by.the.specified.A |
| 91320 | 53 20 50 61 74 68 20 61 63 63 65 73 73 20 6c 69 73 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | S.Path.access.list..This.command |
| 91340 | 20 64 69 73 70 6c 61 79 73 20 42 47 50 20 72 6f 75 74 65 73 20 6f 72 69 67 69 6e 61 74 69 6e 67 | .displays.BGP.routes.originating |
| 91360 | 20 66 72 6f 6d 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 42 47 50 20 6e 65 69 67 68 62 6f 72 | .from.the.specified.BGP.neighbor |
| 91380 | 20 62 65 66 6f 72 65 20 69 6e 62 6f 75 6e 64 20 70 6f 6c 69 63 79 20 69 73 20 61 70 70 6c 69 65 | .before.inbound.policy.is.applie |
| 913a0 | 64 2e 20 54 6f 20 75 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 6e 62 6f 75 6e 64 20 73 | d..To.use.this.command.inbound.s |
| 913c0 | 6f 66 74 20 72 65 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 65 6e 61 62 | oft.reconfiguration.must.be.enab |
| 913e0 | 6c 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 4c 53 41 73 20 | led..This.command.displays.LSAs. |
| 91400 | 69 6e 20 4d 61 78 41 67 65 20 6c 69 73 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 | in.MaxAge.list..This.command.dis |
| 91420 | 70 6c 61 79 73 20 52 49 50 20 72 6f 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 | plays.RIP.routes..This.command.d |
| 91440 | 69 73 70 6c 61 79 73 20 61 20 64 61 74 61 62 61 73 65 20 63 6f 6e 74 65 6e 74 73 20 66 6f 72 20 | isplays.a.database.contents.for. |
| 91460 | 61 20 73 70 65 63 69 66 69 63 20 6c 69 6e 6b 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 20 74 79 | a.specific.link.advertisement.ty |
| 91480 | 70 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 61 20 73 75 6d 6d | pe..This.command.displays.a.summ |
| 914a0 | 61 72 79 20 74 61 62 6c 65 20 77 69 74 68 20 61 20 64 61 74 61 62 61 73 65 20 63 6f 6e 74 65 6e | ary.table.with.a.database.conten |
| 914c0 | 74 73 20 28 4c 53 41 29 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 | ts.(LSA)..This.command.displays. |
| 914e0 | 61 20 74 61 62 6c 65 20 6f 66 20 70 61 74 68 73 20 74 6f 20 61 72 65 61 20 62 6f 75 6e 64 61 72 | a.table.of.paths.to.area.boundar |
| 91500 | 79 20 61 6e 64 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 20 62 6f 75 6e 64 61 72 79 | y.and.autonomous.system.boundary |
| 91520 | 20 72 6f 75 74 65 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 | .routers..This.command.displays. |
| 91540 | 61 6c 6c 20 65 6e 74 72 69 65 73 20 69 6e 20 42 47 50 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 | all.entries.in.BGP.routing.table |
| 91560 | 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 64 61 6d 70 65 6e 65 64 | ..This.command.displays.dampened |
| 91580 | 20 72 6f 75 74 65 73 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 42 47 50 20 6e 65 69 67 68 62 | .routes.received.from.BGP.neighb |
| 915a0 | 6f 72 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 65 78 74 65 72 6e | or..This.command.displays.extern |
| 915c0 | 61 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 69 6e 74 | al.information.redistributed.int |
| 915e0 | 6f 20 4f 53 50 46 76 33 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 69 | o.OSPFv3.This.command.displays.i |
| 91600 | 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 42 47 50 20 72 6f 75 74 65 73 20 77 68 6f 73 | nformation.about.BGP.routes.whos |
| 91620 | 65 20 41 53 20 70 61 74 68 20 6d 61 74 63 68 65 73 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 | e.AS.path.matches.the.specified. |
| 91640 | 72 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | regular.expression..This.command |
| 91660 | 20 64 69 73 70 6c 61 79 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 66 6c 61 70 | .displays.information.about.flap |
| 91680 | 70 69 6e 67 20 42 47 50 20 72 6f 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 | ping.BGP.routes..This.command.di |
| 916a0 | 73 70 6c 61 79 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 74 68 65 20 70 61 72 | splays.information.about.the.par |
| 916c0 | 74 69 63 75 6c 61 72 20 65 6e 74 72 79 20 69 6e 20 74 68 65 20 42 47 50 20 72 6f 75 74 69 6e 67 | ticular.entry.in.the.BGP.routing |
| 916e0 | 20 74 61 62 6c 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 72 6f | .table..This.command.displays.ro |
| 91700 | 75 74 65 73 20 74 68 61 74 20 61 72 65 20 70 65 72 6d 69 74 74 65 64 20 62 79 20 74 68 65 20 42 | utes.that.are.permitted.by.the.B |
| 91720 | 47 50 20 63 6f 6d 6d 75 6e 69 74 79 20 6c 69 73 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | GP.community.list..This.command. |
| 91740 | 64 69 73 70 6c 61 79 73 20 72 6f 75 74 65 73 20 74 68 61 74 20 62 65 6c 6f 6e 67 20 74 6f 20 73 | displays.routes.that.belong.to.s |
| 91760 | 70 65 63 69 66 69 65 64 20 42 47 50 20 63 6f 6d 6d 75 6e 69 74 69 65 73 2e 20 56 61 6c 69 64 20 | pecified.BGP.communities..Valid. |
| 91780 | 76 61 6c 75 65 20 69 73 20 61 20 63 6f 6d 6d 75 6e 69 74 79 20 6e 75 6d 62 65 72 20 69 6e 20 74 | value.is.a.community.number.in.t |
| 917a0 | 68 65 20 72 61 6e 67 65 20 66 72 6f 6d 20 31 20 74 6f 20 34 32 39 34 39 36 37 32 30 30 2c 20 6f | he.range.from.1.to.4294967200,.o |
| 917c0 | 72 20 41 41 3a 4e 4e 20 28 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 2d 63 6f 6d 6d 75 | r.AA:NN.(autonomous.system-commu |
| 917e0 | 6e 69 74 79 20 6e 75 6d 62 65 72 2f 32 2d 62 79 74 65 20 6e 75 6d 62 65 72 29 2c 20 6e 6f 2d 65 | nity.number/2-byte.number),.no-e |
| 91800 | 78 70 6f 72 74 2c 20 6c 6f 63 61 6c 2d 61 73 2c 20 6f 72 20 6e 6f 2d 61 64 76 65 72 74 69 73 65 | xport,.local-as,.or.no-advertise |
| 91820 | 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 72 6f 75 74 65 73 20 77 | ..This.command.displays.routes.w |
| 91840 | 69 74 68 20 63 6c 61 73 73 6c 65 73 73 20 69 6e 74 65 72 64 6f 6d 61 69 6e 20 72 6f 75 74 69 6e | ith.classless.interdomain.routin |
| 91860 | 67 20 28 43 49 44 52 29 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 | g.(CIDR)..This.command.displays. |
| 91880 | 73 74 61 74 65 20 61 6e 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 4f 53 50 46 20 | state.and.configuration.of.OSPF. |
| 918a0 | 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 2c 20 6f 72 20 61 6c 6c 20 | the.specified.interface,.or.all. |
| 918c0 | 69 6e 74 65 72 66 61 63 65 73 20 69 66 20 6e 6f 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 67 69 | interfaces.if.no.interface.is.gi |
| 918e0 | 76 65 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 73 74 61 74 65 | ven..This.command.displays.state |
| 91900 | 20 61 6e 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 4f 53 50 46 20 74 68 65 20 73 | .and.configuration.of.OSPF.the.s |
| 91920 | 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 2c 20 6f 72 20 61 6c 6c 20 69 6e 74 65 72 | pecified.interface,.or.all.inter |
| 91940 | 66 61 63 65 73 20 69 66 20 6e 6f 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 67 69 76 65 6e 2e 20 | faces.if.no.interface.is.given.. |
| 91960 | 57 68 69 74 68 20 74 68 65 20 61 72 67 75 6d 65 6e 74 20 3a 63 66 67 63 6d 64 3a 60 70 72 65 66 | Whith.the.argument.:cfgcmd:`pref |
| 91980 | 69 78 60 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 68 6f 77 73 20 63 6f 6e 6e 65 63 74 65 64 | ix`.this.command.shows.connected |
| 919a0 | 20 70 72 65 66 69 78 65 73 20 74 6f 20 61 64 76 65 72 74 69 73 65 2e 00 54 68 69 73 20 63 6f 6d | .prefixes.to.advertise..This.com |
| 919c0 | 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 4f 53 50 46 20 72 6f 75 74 69 6e 67 20 74 | mand.displays.the.OSPF.routing.t |
| 919e0 | 61 62 6c 65 2c 20 61 73 20 64 65 74 65 72 6d 69 6e 65 64 20 62 79 20 74 68 65 20 6d 6f 73 74 20 | able,.as.determined.by.the.most. |
| 91a00 | 72 65 63 65 6e 74 20 53 50 46 20 63 61 6c 63 75 6c 61 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d | recent.SPF.calculation..This.com |
| 91a20 | 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 4f 53 50 46 20 72 6f 75 74 69 6e 67 20 74 | mand.displays.the.OSPF.routing.t |
| 91a40 | 61 62 6c 65 2c 20 61 73 20 64 65 74 65 72 6d 69 6e 65 64 20 62 79 20 74 68 65 20 6d 6f 73 74 20 | able,.as.determined.by.the.most. |
| 91a60 | 72 65 63 65 6e 74 20 53 50 46 20 63 61 6c 63 75 6c 61 74 69 6f 6e 2e 20 57 69 74 68 20 74 68 65 | recent.SPF.calculation..With.the |
| 91a80 | 20 6f 70 74 69 6f 6e 61 6c 20 3a 63 66 67 63 6d 64 3a 60 64 65 74 61 69 6c 60 20 61 72 67 75 6d | .optional.:cfgcmd:`detail`.argum |
| 91aa0 | 65 6e 74 2c 20 65 61 63 68 20 72 6f 75 74 65 20 69 74 65 6d 27 73 20 61 64 76 65 72 74 69 73 65 | ent,.each.route.item's.advertise |
| 91ac0 | 72 20 72 6f 75 74 65 72 20 61 6e 64 20 6e 65 74 77 6f 72 6b 20 61 74 74 72 69 62 75 74 65 20 77 | r.router.and.network.attribute.w |
| 91ae0 | 69 6c 6c 20 62 65 20 73 68 6f 77 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c | ill.be.shown..This.command.displ |
| 91b00 | 61 79 73 20 74 68 65 20 6e 65 69 67 68 62 6f 72 20 44 52 20 63 68 6f 69 63 65 20 69 6e 66 6f 72 | ays.the.neighbor.DR.choice.infor |
| 91b20 | 6d 61 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 74 68 | mation..This.command.displays.th |
| 91b40 | 65 20 6e 65 69 67 68 62 6f 72 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 6e 20 61 20 64 65 74 | e.neighbors.information.in.a.det |
| 91b60 | 61 69 6c 65 64 20 66 6f 72 6d 20 66 6f 72 20 61 20 6e 65 69 67 68 62 6f 72 20 77 68 6f 73 65 20 | ailed.form.for.a.neighbor.whose. |
| 91b80 | 49 50 20 61 64 64 72 65 73 73 20 69 73 20 73 70 65 63 69 66 69 65 64 2e 00 54 68 69 73 20 63 6f | IP.address.is.specified..This.co |
| 91ba0 | 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 6e 65 69 67 68 62 6f 72 73 20 69 6e 66 | mmand.displays.the.neighbors.inf |
| 91bc0 | 6f 72 6d 61 74 69 6f 6e 20 69 6e 20 61 20 64 65 74 61 69 6c 65 64 20 66 6f 72 6d 2c 20 6e 6f 74 | ormation.in.a.detailed.form,.not |
| 91be0 | 20 6a 75 73 74 20 61 20 73 75 6d 6d 61 72 79 20 74 61 62 6c 65 2e 00 54 68 69 73 20 63 6f 6d 6d | .just.a.summary.table..This.comm |
| 91c00 | 61 6e 64 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 6e 65 69 67 68 62 6f 72 73 20 73 74 61 74 75 | and.displays.the.neighbors.statu |
| 91c20 | 73 20 66 6f 72 20 61 20 6e 65 69 67 68 62 6f 72 20 6f 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 | s.for.a.neighbor.on.the.specifie |
| 91c40 | 64 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 | d.interface..This.command.displa |
| 91c60 | 79 73 20 74 68 65 20 6e 65 69 67 68 62 6f 72 73 20 73 74 61 74 75 73 2e 00 54 68 69 73 20 63 6f | ys.the.neighbors.status..This.co |
| 91c80 | 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 73 74 61 74 75 73 20 6f 66 20 61 6c 6c | mmand.displays.the.status.of.all |
| 91ca0 | 20 42 47 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 | .BGP.connections..This.command.e |
| 91cc0 | 6e 61 62 6c 65 20 6c 6f 67 67 69 6e 67 20 6e 65 69 67 68 62 6f 72 20 75 70 2f 64 6f 77 6e 20 63 | nable.logging.neighbor.up/down.c |
| 91ce0 | 68 61 6e 67 65 73 20 61 6e 64 20 72 65 73 65 74 20 72 65 61 73 6f 6e 2e 00 54 68 69 73 20 63 6f | hanges.and.reset.reason..This.co |
| 91d00 | 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 2f 64 69 73 61 62 6c 65 73 20 73 75 6d 6d 61 72 69 73 61 74 | mmand.enable/disables.summarisat |
| 91d20 | 69 6f 6e 20 66 6f 72 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 61 64 64 72 65 73 73 20 72 | ion.for.the.configured.address.r |
| 91d40 | 61 6e 67 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 3a 61 62 62 72 | ange..This.command.enables.:abbr |
| 91d60 | 3a 60 42 46 44 20 28 42 69 64 69 72 65 63 74 69 6f 6e 61 6c 20 46 6f 72 77 61 72 64 69 6e 67 20 | :`BFD.(Bidirectional.Forwarding. |
| 91d80 | 44 65 74 65 63 74 69 6f 6e 29 60 20 6f 6e 20 74 68 69 73 20 4f 53 50 46 20 6c 69 6e 6b 20 69 6e | Detection)`.on.this.OSPF.link.in |
| 91da0 | 74 65 72 66 61 63 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 3a 72 | terface..This.command.enables.:r |
| 91dc0 | 66 63 3a 60 36 32 33 32 60 20 70 75 72 67 65 20 6f 72 69 67 69 6e 61 74 6f 72 20 69 64 65 6e 74 | fc:`6232`.purge.originator.ident |
| 91de0 | 69 66 69 63 61 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 | ification..This.command.enables. |
| 91e00 | 3a 72 66 63 3a 60 36 32 33 32 60 20 70 75 72 67 65 20 6f 72 69 67 69 6e 61 74 6f 72 20 69 64 65 | :rfc:`6232`.purge.originator.ide |
| 91e20 | 6e 74 69 66 69 63 61 74 69 6f 6e 2e 20 45 6e 61 62 6c 65 20 70 75 72 67 65 20 6f 72 69 67 69 6e | ntification..Enable.purge.origin |
| 91e40 | 61 74 6f 72 20 69 64 65 6e 74 69 66 69 63 61 74 69 6f 6e 20 28 50 4f 49 29 20 62 79 20 61 64 64 | ator.identification.(POI).by.add |
| 91e60 | 69 6e 67 20 74 68 65 20 74 79 70 65 2c 20 6c 65 6e 67 74 68 20 61 6e 64 20 76 61 6c 75 65 20 28 | ing.the.type,.length.and.value.( |
| 91e80 | 54 4c 56 29 20 77 69 74 68 20 74 68 65 20 49 6e 74 65 72 6d 65 64 69 61 74 65 20 53 79 73 74 65 | TLV).with.the.Intermediate.Syste |
| 91ea0 | 6d 20 28 49 53 29 20 69 64 65 6e 74 69 66 69 63 61 74 69 6f 6e 20 74 6f 20 74 68 65 20 4c 53 50 | m.(IS).identification.to.the.LSP |
| 91ec0 | 73 20 74 68 61 74 20 64 6f 20 6e 6f 74 20 63 6f 6e 74 61 69 6e 20 50 4f 49 20 69 6e 66 6f 72 6d | s.that.do.not.contain.POI.inform |
| 91ee0 | 61 74 69 6f 6e 2e 20 49 66 20 61 6e 20 49 53 20 67 65 6e 65 72 61 74 65 73 20 61 20 70 75 72 67 | ation..If.an.IS.generates.a.purg |
| 91f00 | 65 2c 20 56 79 4f 53 20 61 64 64 73 20 74 68 69 73 20 54 4c 56 20 77 69 74 68 20 74 68 65 20 73 | e,.VyOS.adds.this.TLV.with.the.s |
| 91f20 | 79 73 74 65 6d 20 49 44 20 6f 66 20 74 68 65 20 49 53 20 74 6f 20 74 68 65 20 70 75 72 67 65 2e | ystem.ID.of.the.IS.to.the.purge. |
| 91f40 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 49 50 20 66 61 73 74 20 72 65 | .This.command.enables.IP.fast.re |
| 91f60 | 2d 72 6f 75 74 69 6e 67 20 74 68 61 74 20 69 73 20 70 61 72 74 20 6f 66 20 3a 72 66 63 3a 60 35 | -routing.that.is.part.of.:rfc:`5 |
| 91f80 | 32 38 36 60 2e 20 53 70 65 63 69 66 69 63 61 6c 6c 79 20 74 68 69 73 20 69 73 20 61 20 70 72 65 | 286`..Specifically.this.is.a.pre |
| 91fa0 | 66 69 78 20 6c 69 73 74 20 77 68 69 63 68 20 72 65 66 65 72 65 6e 63 65 73 20 61 20 70 72 65 66 | fix.list.which.references.a.pref |
| 91fc0 | 69 78 20 69 6e 20 77 68 69 63 68 20 77 69 6c 6c 20 73 65 6c 65 63 74 20 65 6c 69 67 69 62 6c 65 | ix.in.which.will.select.eligible |
| 91fe0 | 20 50 51 20 6e 6f 64 65 73 20 66 6f 72 20 72 65 6d 6f 74 65 20 4c 46 41 20 62 61 63 6b 75 70 73 | .PQ.nodes.for.remote.LFA.backups |
| 92000 | 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 49 53 2d 49 53 20 6f 6e 20 | ..This.command.enables.IS-IS.on. |
| 92020 | 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2c 20 61 6e 64 20 61 6c 6c 6f 77 73 20 66 6f 72 20 61 | this.interface,.and.allows.for.a |
| 92040 | 64 6a 61 63 65 6e 63 79 20 74 6f 20 6f 63 63 75 72 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 65 | djacency.to.occur..Note.that.the |
| 92060 | 20 6e 61 6d 65 20 6f 66 20 49 53 2d 49 53 20 69 6e 73 74 61 6e 63 65 20 6d 75 73 74 20 62 65 20 | .name.of.IS-IS.instance.must.be. |
| 92080 | 74 68 65 20 73 61 6d 65 20 61 73 20 74 68 65 20 6f 6e 65 20 75 73 65 64 20 74 6f 20 63 6f 6e 66 | the.same.as.the.one.used.to.conf |
| 920a0 | 69 67 75 72 65 20 74 68 65 20 49 53 2d 49 53 20 70 72 6f 63 65 73 73 2e 00 54 68 69 73 20 63 6f | igure.the.IS-IS.process..This.co |
| 920c0 | 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 4f 70 65 6e 46 61 62 72 69 63 20 69 6e 73 74 61 6e 63 | mmand.enables.OpenFabric.instanc |
| 920e0 | 65 20 77 69 74 68 20 3c 4e 41 4d 45 3e 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2c | e.with.<NAME>.on.this.interface, |
| 92100 | 20 61 6e 64 20 61 6c 6c 6f 77 73 20 66 6f 72 20 61 64 6a 61 63 65 6e 63 79 20 74 6f 20 6f 63 63 | .and.allows.for.adjacency.to.occ |
| 92120 | 75 72 20 66 6f 72 20 61 64 64 72 65 73 73 20 66 61 6d 69 6c 79 20 28 49 50 76 34 20 6f 72 20 49 | ur.for.address.family.(IPv4.or.I |
| 92140 | 50 76 36 20 6f 72 20 62 6f 74 68 29 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c | Pv6.or.both)..This.command.enabl |
| 92160 | 65 73 20 52 49 50 20 61 6e 64 20 73 65 74 73 20 74 68 65 20 52 49 50 20 65 6e 61 62 6c 65 20 69 | es.RIP.and.sets.the.RIP.enable.i |
| 92180 | 6e 74 65 72 66 61 63 65 20 62 79 20 4e 45 54 57 4f 52 4b 2e 20 54 68 65 20 69 6e 74 65 72 66 61 | nterface.by.NETWORK..The.interfa |
| 921a0 | 63 65 73 20 77 68 69 63 68 20 68 61 76 65 20 61 64 64 72 65 73 73 65 73 20 6d 61 74 63 68 69 6e | ces.which.have.addresses.matchin |
| 921c0 | 67 20 77 69 74 68 20 4e 45 54 57 4f 52 4b 20 61 72 65 20 65 6e 61 62 6c 65 64 2e 00 54 68 69 73 | g.with.NETWORK.are.enabled..This |
| 921e0 | 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 70 6f 69 73 6f 6e 2d 72 65 76 65 72 73 65 20 | .command.enables.poison-reverse. |
| 92200 | 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 49 66 20 62 6f 74 68 20 70 6f 69 73 6f 6e | on.the.interface..If.both.poison |
| 92220 | 20 72 65 76 65 72 73 65 20 61 6e 64 20 73 70 6c 69 74 20 68 6f 72 69 7a 6f 6e 20 61 72 65 20 65 | .reverse.and.split.horizon.are.e |
| 92240 | 6e 61 62 6c 65 64 2c 20 74 68 65 6e 20 56 79 4f 53 20 61 64 76 65 72 74 69 73 65 73 20 74 68 65 | nabled,.then.VyOS.advertises.the |
| 92260 | 20 6c 65 61 72 6e 65 64 20 72 6f 75 74 65 73 20 61 73 20 75 6e 72 65 61 63 68 61 62 6c 65 20 6f | .learned.routes.as.unreachable.o |
| 92280 | 76 65 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 77 68 69 63 68 20 74 68 65 20 72 | ver.the.interface.on.which.the.r |
| 922a0 | 6f 75 74 65 20 77 61 73 20 6c 65 61 72 6e 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 | oute.was.learned..This.command.e |
| 922c0 | 6e 61 62 6c 65 73 20 72 6f 75 74 69 6e 67 20 75 73 69 6e 67 20 72 61 64 69 6f 20 66 72 65 71 75 | nables.routing.using.radio.frequ |
| 922e0 | 65 6e 63 79 20 64 69 76 65 72 73 69 74 79 2e 20 54 68 69 73 20 69 73 20 68 69 67 68 6c 79 20 72 | ency.diversity..This.is.highly.r |
| 92300 | 65 63 6f 6d 6d 65 6e 64 65 64 20 69 6e 20 6e 65 74 77 6f 72 6b 73 20 77 69 74 68 20 6d 61 6e 79 | ecommended.in.networks.with.many |
| 92320 | 20 77 69 72 65 6c 65 73 73 20 6e 6f 64 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e | .wireless.nodes..This.command.en |
| 92340 | 61 62 6c 65 73 20 73 65 6e 64 69 6e 67 20 74 69 6d 65 73 74 61 6d 70 73 20 77 69 74 68 20 65 61 | ables.sending.timestamps.with.ea |
| 92360 | 63 68 20 48 65 6c 6c 6f 20 61 6e 64 20 49 48 55 20 6d 65 73 73 61 67 65 20 69 6e 20 6f 72 64 65 | ch.Hello.and.IHU.message.in.orde |
| 92380 | 72 20 74 6f 20 63 6f 6d 70 75 74 65 20 52 54 54 20 76 61 6c 75 65 73 2e 20 49 74 20 69 73 20 72 | r.to.compute.RTT.values..It.is.r |
| 923a0 | 65 63 6f 6d 6d 65 6e 64 65 64 20 74 6f 20 65 6e 61 62 6c 65 20 74 69 6d 65 73 74 61 6d 70 73 20 | ecommended.to.enable.timestamps. |
| 923c0 | 6f 6e 20 74 75 6e 6e 65 6c 20 69 6e 74 65 72 66 61 63 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | on.tunnel.interfaces..This.comma |
| 923e0 | 6e 64 20 65 6e 61 62 6c 65 73 20 73 75 70 70 6f 72 74 20 66 6f 72 20 64 79 6e 61 6d 69 63 20 68 | nd.enables.support.for.dynamic.h |
| 92400 | 6f 73 74 6e 61 6d 65 20 54 4c 56 2e 20 44 79 6e 61 6d 69 63 20 68 6f 73 74 6e 61 6d 65 20 6d 61 | ostname.TLV..Dynamic.hostname.ma |
| 92420 | 70 70 69 6e 67 20 64 65 74 65 72 6d 69 6e 65 64 20 61 73 20 64 65 73 63 72 69 62 65 64 20 69 6e | pping.determined.as.described.in |
| 92440 | 20 3a 72 66 63 3a 60 32 37 36 33 60 2c 20 44 79 6e 61 6d 69 63 20 48 6f 73 74 6e 61 6d 65 20 45 | .:rfc:`2763`,.Dynamic.Hostname.E |
| 92460 | 78 63 68 61 6e 67 65 20 4d 65 63 68 61 6e 69 73 6d 20 66 6f 72 20 49 53 2d 49 53 2e 00 54 68 69 | xchange.Mechanism.for.IS-IS..Thi |
| 92480 | 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 74 68 65 20 49 50 76 34 20 66 69 72 65 77 | s.command.enables.the.IPv4.firew |
| 924a0 | 61 6c 6c 20 66 6f 72 20 62 72 69 64 67 65 64 20 74 72 61 66 66 69 63 2e 20 49 66 20 74 68 69 73 | all.for.bridged.traffic..If.this |
| 924c0 | 20 6f 70 74 69 6f 6e 73 20 69 73 20 75 73 65 64 2c 20 74 68 65 6e 20 70 61 63 6b 65 74 20 77 69 | .options.is.used,.then.packet.wi |
| 924e0 | 6c 6c 20 61 6c 73 6f 20 62 65 20 70 61 72 73 65 64 20 62 79 20 72 75 6c 65 73 20 64 65 66 69 6e | ll.also.be.parsed.by.rules.defin |
| 92500 | 65 64 20 69 6e 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 2e 2e 2e 60 60 00 | ed.in.``set.firewall.ipv4....``. |
| 92520 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 74 68 65 20 49 50 76 36 20 66 69 | This.command.enables.the.IPv6.fi |
| 92540 | 72 65 77 61 6c 6c 20 66 6f 72 20 62 72 69 64 67 65 64 20 74 72 61 66 66 69 63 2e 20 49 66 20 74 | rewall.for.bridged.traffic..If.t |
| 92560 | 68 69 73 20 6f 70 74 69 6f 6e 73 20 69 73 20 75 73 65 64 2c 20 74 68 65 6e 20 70 61 63 6b 65 74 | his.options.is.used,.then.packet |
| 92580 | 20 77 69 6c 6c 20 61 6c 73 6f 20 62 65 20 70 61 72 73 65 64 20 62 79 20 72 75 6c 65 73 20 64 65 | .will.also.be.parsed.by.rules.de |
| 925a0 | 66 69 6e 65 64 20 69 6e 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 2e 2e 2e | fined.in.``set.firewall.ipv6.... |
| 925c0 | 60 60 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 74 68 65 20 4f 52 46 20 | ``.This.command.enables.the.ORF. |
| 925e0 | 63 61 70 61 62 69 6c 69 74 79 20 28 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 35 | capability.(described.in.:rfc:`5 |
| 92600 | 32 39 31 60 29 20 6f 6e 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 2c 20 61 6e 64 20 65 | 291`).on.the.local.router,.and.e |
| 92620 | 6e 61 62 6c 65 73 20 4f 52 46 20 63 61 70 61 62 69 6c 69 74 79 20 61 64 76 65 72 74 69 73 65 6d | nables.ORF.capability.advertisem |
| 92640 | 65 6e 74 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 42 47 50 20 70 65 65 72 2e 20 54 | ent.to.the.specified.BGP.peer..T |
| 92660 | 68 65 20 3a 63 66 67 63 6d 64 3a 60 72 65 63 65 69 76 65 60 20 6b 65 79 77 6f 72 64 20 63 6f 6e | he.:cfgcmd:`receive`.keyword.con |
| 92680 | 66 69 67 75 72 65 73 20 61 20 72 6f 75 74 65 72 20 74 6f 20 61 64 76 65 72 74 69 73 65 20 4f 52 | figures.a.router.to.advertise.OR |
| 926a0 | 46 20 72 65 63 65 69 76 65 20 63 61 70 61 62 69 6c 69 74 69 65 73 2e 20 54 68 65 20 3a 63 66 67 | F.receive.capabilities..The.:cfg |
| 926c0 | 63 6d 64 3a 60 73 65 6e 64 60 20 6b 65 79 77 6f 72 64 20 63 6f 6e 66 69 67 75 72 65 73 20 61 20 | cmd:`send`.keyword.configures.a. |
| 926e0 | 72 6f 75 74 65 72 20 74 6f 20 61 64 76 65 72 74 69 73 65 20 4f 52 46 20 73 65 6e 64 20 63 61 70 | router.to.advertise.ORF.send.cap |
| 92700 | 61 62 69 6c 69 74 69 65 73 2e 20 54 6f 20 61 64 76 65 72 74 69 73 65 20 61 20 66 69 6c 74 65 72 | abilities..To.advertise.a.filter |
| 92720 | 20 66 72 6f 6d 20 61 20 73 65 6e 64 65 72 2c 20 79 6f 75 20 6d 75 73 74 20 63 72 65 61 74 65 20 | .from.a.sender,.you.must.create. |
| 92740 | 61 6e 20 49 50 20 70 72 65 66 69 78 20 6c 69 73 74 20 66 6f 72 20 74 68 65 20 73 70 65 63 69 66 | an.IP.prefix.list.for.the.specif |
| 92760 | 69 65 64 20 42 47 50 20 70 65 65 72 20 61 70 70 6c 69 65 64 20 69 6e 20 69 6e 62 6f 75 6e 64 20 | ied.BGP.peer.applied.in.inbound. |
| 92780 | 64 65 72 65 63 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 | derection..This.command.enables. |
| 927a0 | 74 68 65 20 70 61 73 73 69 76 65 20 6d 6f 64 65 20 66 6f 72 20 74 68 69 73 20 69 6e 74 65 72 66 | the.passive.mode.for.this.interf |
| 927c0 | 61 63 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 66 6f 72 63 65 73 20 47 65 6e 65 72 | ace..This.command.enforces.Gener |
| 927e0 | 61 6c 69 7a 65 64 20 54 54 4c 20 53 65 63 75 72 69 74 79 20 4d 65 63 68 61 6e 69 73 6d 20 28 47 | alized.TTL.Security.Mechanism.(G |
| 92800 | 54 53 4d 29 2c 20 61 73 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 3a 72 66 63 3a 60 35 30 38 32 | TSM),.as.specified.in.:rfc:`5082 |
| 92820 | 60 2e 20 57 69 74 68 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 2c 20 6f 6e 6c 79 20 6e 65 69 67 68 | `..With.this.command,.only.neigh |
| 92840 | 62 6f 72 73 20 74 68 61 74 20 61 72 65 20 73 70 65 63 69 66 69 65 64 20 6e 75 6d 62 65 72 20 6f | bors.that.are.specified.number.o |
| 92860 | 66 20 68 6f 70 73 20 61 77 61 79 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 77 65 64 20 74 6f 20 62 | f.hops.away.will.be.allowed.to.b |
| 92880 | 65 63 6f 6d 65 20 6e 65 69 67 68 62 6f 72 73 2e 20 54 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 68 | ecome.neighbors..The.number.of.h |
| 928a0 | 6f 70 73 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 34 2e 20 54 68 69 73 20 63 6f 6d 6d | ops.range.is.1.to.254..This.comm |
| 928c0 | 61 6e 64 20 69 73 20 6d 75 74 75 61 6c 6c 79 20 65 78 63 6c 75 73 69 76 65 20 77 69 74 68 20 3a | and.is.mutually.exclusive.with.: |
| 928e0 | 63 66 67 63 6d 64 3a 60 65 62 67 70 2d 6d 75 6c 74 69 68 6f 70 60 2e 00 54 68 69 73 20 63 6f 6d | cfgcmd:`ebgp-multihop`..This.com |
| 92900 | 6d 61 6e 64 20 66 6f 72 63 65 73 20 73 74 72 69 63 74 6c 79 20 63 6f 6d 70 61 72 65 20 72 65 6d | mand.forces.strictly.compare.rem |
| 92920 | 6f 74 65 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 61 6e 64 20 6c 6f 63 61 6c 20 63 61 70 61 62 | ote.capabilities.and.local.capab |
| 92940 | 69 6c 69 74 69 65 73 2e 20 49 66 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 61 72 65 20 64 69 66 | ilities..If.capabilities.are.dif |
| 92960 | 66 65 72 65 6e 74 2c 20 73 65 6e 64 20 55 6e 73 75 70 70 6f 72 74 65 64 20 43 61 70 61 62 69 6c | ferent,.send.Unsupported.Capabil |
| 92980 | 69 74 79 20 65 72 72 6f 72 20 74 68 65 6e 20 72 65 73 65 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e | ity.error.then.reset.connection. |
| 929a0 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 66 6f 72 63 65 73 20 74 68 65 20 42 47 50 20 73 70 65 | .This.command.forces.the.BGP.spe |
| 929c0 | 61 6b 65 72 20 74 6f 20 72 65 70 6f 72 74 20 69 74 73 65 6c 66 20 61 73 20 74 68 65 20 6e 65 78 | aker.to.report.itself.as.the.nex |
| 929e0 | 74 20 68 6f 70 20 66 6f 72 20 61 6e 20 61 64 76 65 72 74 69 73 65 64 20 72 6f 75 74 65 20 69 74 | t.hop.for.an.advertised.route.it |
| 92a00 | 20 61 64 76 65 72 74 69 73 65 64 20 74 6f 20 61 20 6e 65 69 67 68 62 6f 72 2e 00 54 68 69 73 20 | .advertised.to.a.neighbor..This. |
| 92a20 | 63 6f 6d 6d 61 6e 64 20 67 65 6e 65 72 61 74 65 20 61 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 | command.generate.a.default.route |
| 92a40 | 20 69 6e 74 6f 20 74 68 65 20 52 49 50 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 67 69 76 65 | .into.the.RIP..This.command.give |
| 92a60 | 73 20 61 20 62 72 69 65 66 20 73 74 61 74 75 73 20 6f 76 65 72 76 69 65 77 20 6f 66 20 61 20 73 | s.a.brief.status.overview.of.a.s |
| 92a80 | 70 65 63 69 66 69 65 64 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 | pecified.wireless.interface..The |
| 92aa0 | 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 63 | .wireless.interface.identifier.c |
| 92ac0 | 61 6e 20 72 61 6e 67 65 20 66 72 6f 6d 20 77 6c 61 6e 30 20 74 6f 20 77 6c 61 6e 39 39 39 2e 00 | an.range.from.wlan0.to.wlan999.. |
| 92ae0 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 67 6f 65 73 20 68 61 6e 64 20 69 6e 20 68 61 6e 64 20 77 | This.command.goes.hand.in.hand.w |
| 92b00 | 69 74 68 20 74 68 65 20 6c 69 73 74 65 6e 20 72 61 6e 67 65 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 | ith.the.listen.range.command.to. |
| 92b20 | 6c 69 6d 69 74 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 20 42 47 50 20 6e 65 69 67 68 62 6f 72 | limit.the.amount.of.BGP.neighbor |
| 92b40 | 73 20 74 68 61 74 20 61 72 65 20 61 6c 6c 6f 77 65 64 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f | s.that.are.allowed.to.connect.to |
| 92b60 | 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 2e 20 54 68 65 20 6c 69 6d 69 74 20 72 61 6e | .the.local.router..The.limit.ran |
| 92b80 | 67 65 20 69 73 20 31 20 74 6f 20 35 30 30 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 67 6f | ge.is.1.to.5000..This.command.go |
| 92ba0 | 74 20 61 64 64 65 64 20 69 6e 20 56 79 4f 53 20 31 2e 34 20 61 6e 64 20 69 6e 76 65 72 74 73 20 | t.added.in.VyOS.1.4.and.inverts. |
| 92bc0 | 74 68 65 20 6c 6f 67 69 63 20 66 72 6f 6d 20 74 68 65 20 6f 6c 64 20 60 60 64 65 66 61 75 6c 74 | the.logic.from.the.old.``default |
| 92be0 | 2d 72 6f 75 74 65 60 60 20 43 4c 49 20 6f 70 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e | -route``.CLI.option..This.comman |
| 92c00 | 64 20 69 6e 73 74 65 61 64 20 6f 66 20 73 75 6d 6d 61 72 69 7a 69 6e 67 20 69 6e 74 72 61 20 61 | d.instead.of.summarizing.intra.a |
| 92c20 | 72 65 61 20 70 61 74 68 73 20 66 69 6c 74 65 72 20 74 68 65 6d 20 2d 20 69 2e 65 2e 20 69 6e 74 | rea.paths.filter.them.-.i.e..int |
| 92c40 | 72 61 20 61 72 65 61 20 70 61 74 68 73 20 66 72 6f 6d 20 74 68 69 73 20 72 61 6e 67 65 20 61 72 | ra.area.paths.from.this.range.ar |
| 92c60 | 65 20 6e 6f 74 20 61 64 76 65 72 74 69 73 65 64 20 69 6e 74 6f 20 6f 74 68 65 72 20 61 72 65 61 | e.not.advertised.into.other.area |
| 92c80 | 73 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 6d 61 6b 65 73 20 73 65 6e 73 65 20 69 6e 20 41 | s..This.command.makes.sense.in.A |
| 92ca0 | 42 52 20 6f 6e 6c 79 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 61 6c 73 6f 20 75 73 | BR.only..This.command.is.also.us |
| 92cc0 | 65 64 20 74 6f 20 65 6e 61 62 6c 65 20 74 68 65 20 4f 53 50 46 20 70 72 6f 63 65 73 73 2e 20 54 | ed.to.enable.the.OSPF.process..T |
| 92ce0 | 68 65 20 61 72 65 61 20 6e 75 6d 62 65 72 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 | he.area.number.can.be.specified. |
| 92d00 | 69 6e 20 64 65 63 69 6d 61 6c 20 6e 6f 74 61 74 69 6f 6e 20 69 6e 20 74 68 65 20 72 61 6e 67 65 | in.decimal.notation.in.the.range |
| 92d20 | 20 66 72 6f 6d 20 30 20 74 6f 20 34 32 39 34 39 36 37 32 39 35 2e 20 4f 72 20 69 74 20 63 61 6e | .from.0.to.4294967295..Or.it.can |
| 92d40 | 20 62 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 64 6f 74 74 65 64 20 64 65 63 69 6d 61 6c 20 | .be.specified.in.dotted.decimal. |
| 92d60 | 6e 6f 74 61 74 69 6f 6e 20 73 69 6d 69 6c 61 72 20 74 6f 20 69 70 20 61 64 64 72 65 73 73 2e 00 | notation.similar.to.ip.address.. |
| 92d80 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6f 6e 6c 79 20 61 6c 6c 6f 77 65 64 20 66 6f 72 | This.command.is.only.allowed.for |
| 92da0 | 20 65 42 47 50 20 70 65 65 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6f 6e 6c | .eBGP.peers..This.command.is.onl |
| 92dc0 | 79 20 61 6c 6c 6f 77 65 64 20 66 6f 72 20 65 42 47 50 20 70 65 65 72 73 2e 20 49 74 20 69 73 20 | y.allowed.for.eBGP.peers..It.is. |
| 92de0 | 6e 6f 74 20 61 70 70 6c 69 63 61 62 6c 65 20 66 6f 72 20 70 65 65 72 20 67 72 6f 75 70 73 2e 00 | not.applicable.for.peer.groups.. |
| 92e00 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6f 6e 6c 79 20 75 73 65 66 75 6c 20 61 74 20 73 | This.command.is.only.useful.at.s |
| 92e20 | 63 61 6c 65 20 77 68 65 6e 20 79 6f 75 20 63 61 6e 20 70 6f 73 73 69 62 6c 79 20 68 61 76 65 20 | cale.when.you.can.possibly.have. |
| 92e40 | 61 20 6c 61 72 67 65 20 6e 75 6d 62 65 72 20 6f 66 20 50 49 4d 20 63 6f 6e 74 72 6f 6c 20 70 61 | a.large.number.of.PIM.control.pa |
| 92e60 | 63 6b 65 74 73 20 66 6c 6f 77 69 6e 67 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 73 | ckets.flowing..This.command.is.s |
| 92e80 | 70 65 63 69 66 69 63 20 74 6f 20 46 52 52 20 61 6e 64 20 56 79 4f 53 2e 20 54 68 65 20 72 6f 75 | pecific.to.FRR.and.VyOS..The.rou |
| 92ea0 | 74 65 20 63 6f 6d 6d 61 6e 64 20 6d 61 6b 65 73 20 61 20 73 74 61 74 69 63 20 72 6f 75 74 65 20 | te.command.makes.a.static.route. |
| 92ec0 | 6f 6e 6c 79 20 69 6e 73 69 64 65 20 52 49 50 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 68 | only.inside.RIP..This.command.sh |
| 92ee0 | 6f 75 6c 64 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 62 79 20 61 64 76 61 6e 63 65 64 20 75 73 | ould.be.used.only.by.advanced.us |
| 92f00 | 65 72 73 20 77 68 6f 20 61 72 65 20 70 61 72 74 69 63 75 6c 61 72 6c 79 20 6b 6e 6f 77 6c 65 64 | ers.who.are.particularly.knowled |
| 92f20 | 67 65 61 62 6c 65 20 61 62 6f 75 74 20 74 68 65 20 52 49 50 20 70 72 6f 74 6f 63 6f 6c 2e 20 49 | geable.about.the.RIP.protocol..I |
| 92f40 | 6e 20 6d 6f 73 74 20 63 61 73 65 73 2c 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 63 72 65 61 74 | n.most.cases,.we.recommend.creat |
| 92f60 | 69 6e 67 20 61 20 73 74 61 74 69 63 20 72 6f 75 74 65 20 69 6e 20 56 79 4f 53 20 61 6e 64 20 72 | ing.a.static.route.in.VyOS.and.r |
| 92f80 | 65 64 69 73 74 72 69 62 75 74 69 6e 67 20 69 74 20 69 6e 20 52 49 50 20 75 73 69 6e 67 20 3a 63 | edistributing.it.in.RIP.using.:c |
| 92fa0 | 66 67 63 6d 64 3a 60 72 65 64 69 73 74 72 69 62 75 74 65 20 73 74 61 74 69 63 60 2e 00 54 68 69 | fgcmd:`redistribute.static`..Thi |
| 92fc0 | 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 20 66 6f 72 20 61 64 76 65 72 74 69 73 69 6e | s.command.is.used.for.advertisin |
| 92fe0 | 67 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 73 2e 00 54 68 69 73 20 63 6f | g.IPv4.or.IPv6.networks..This.co |
| 93000 | 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 20 74 6f 20 72 65 74 72 69 65 76 65 20 69 6e 66 6f 72 6d | mmand.is.used.to.retrieve.inform |
| 93020 | 61 74 69 6f 6e 20 61 62 6f 75 74 20 57 41 50 20 77 69 74 68 69 6e 20 74 68 65 20 72 61 6e 67 65 | ation.about.WAP.within.the.range |
| 93040 | 20 6f 66 20 79 6f 75 72 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 | .of.your.wireless.interface..Thi |
| 93060 | 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 66 75 6c 20 6f 6e 20 77 69 72 65 6c 65 73 73 20 | s.command.is.useful.on.wireless. |
| 93080 | 69 6e 74 65 72 66 61 63 65 73 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 73 74 61 74 69 6f 6e | interfaces.configured.in.station |
| 930a0 | 20 6d 6f 64 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 66 75 6c 20 69 66 | .mode..This.command.is.useful.if |
| 930c0 | 20 6f 6e 65 20 64 65 73 69 72 65 73 20 74 6f 20 6c 6f 6f 73 65 6e 20 74 68 65 20 72 65 71 75 69 | .one.desires.to.loosen.the.requi |
| 930e0 | 72 65 6d 65 6e 74 20 66 6f 72 20 42 47 50 20 74 6f 20 68 61 76 65 20 73 74 72 69 63 74 6c 79 20 | rement.for.BGP.to.have.strictly. |
| 93100 | 64 65 66 69 6e 65 64 20 6e 65 69 67 68 62 6f 72 73 2e 20 53 70 65 63 69 66 69 63 61 6c 6c 79 20 | defined.neighbors..Specifically. |
| 93120 | 77 68 61 74 20 69 73 20 61 6c 6c 6f 77 65 64 20 69 73 20 66 6f 72 20 74 68 65 20 6c 6f 63 61 6c | what.is.allowed.is.for.the.local |
| 93140 | 20 72 6f 75 74 65 72 20 74 6f 20 6c 69 73 74 65 6e 20 74 6f 20 61 20 72 61 6e 67 65 20 6f 66 20 | .router.to.listen.to.a.range.of. |
| 93160 | 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 64 65 66 69 6e 65 64 20 62 | IPv4.or.IPv6.addresses.defined.b |
| 93180 | 79 20 61 20 70 72 65 66 69 78 20 61 6e 64 20 74 6f 20 61 63 63 65 70 74 20 42 47 50 20 6f 70 65 | y.a.prefix.and.to.accept.BGP.ope |
| 931a0 | 6e 20 6d 65 73 73 61 67 65 73 2e 20 57 68 65 6e 20 61 20 54 43 50 20 63 6f 6e 6e 65 63 74 69 6f | n.messages..When.a.TCP.connectio |
| 931c0 | 6e 20 28 61 6e 64 20 73 75 62 73 65 71 75 65 6e 74 6c 79 20 61 20 42 47 50 20 6f 70 65 6e 20 6d | n.(and.subsequently.a.BGP.open.m |
| 931e0 | 65 73 73 61 67 65 29 20 66 72 6f 6d 20 77 69 74 68 69 6e 20 74 68 69 73 20 72 61 6e 67 65 20 74 | essage).from.within.this.range.t |
| 93200 | 72 69 65 73 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 | ries.to.connect.the.local.router |
| 93220 | 20 74 68 65 6e 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 72 65 73 70 | .then.the.local.router.will.resp |
| 93240 | 6f 6e 64 20 61 6e 64 20 63 6f 6e 6e 65 63 74 20 77 69 74 68 20 74 68 65 20 70 61 72 61 6d 65 74 | ond.and.connect.with.the.paramet |
| 93260 | 65 72 73 20 74 68 61 74 20 61 72 65 20 64 65 66 69 6e 65 64 20 77 69 74 68 69 6e 20 74 68 65 20 | ers.that.are.defined.within.the. |
| 93280 | 70 65 65 72 20 67 72 6f 75 70 2e 20 4f 6e 65 20 6d 75 73 74 20 64 65 66 69 6e 65 20 61 20 70 65 | peer.group..One.must.define.a.pe |
| 932a0 | 65 72 2d 67 72 6f 75 70 20 66 6f 72 20 65 61 63 68 20 72 61 6e 67 65 20 74 68 61 74 20 69 73 20 | er-group.for.each.range.that.is. |
| 932c0 | 6c 69 73 74 65 64 2e 20 49 66 20 6e 6f 20 70 65 65 72 2d 67 72 6f 75 70 20 69 73 20 64 65 66 69 | listed..If.no.peer-group.is.defi |
| 932e0 | 6e 65 64 20 74 68 65 6e 20 61 6e 20 65 72 72 6f 72 20 77 69 6c 6c 20 6b 65 65 70 20 79 6f 75 20 | ned.then.an.error.will.keep.you. |
| 93300 | 66 72 6f 6d 20 63 6f 6d 6d 69 74 74 69 6e 67 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | from.committing.the.configuratio |
| 93320 | 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 6d 6f 64 69 66 69 65 73 20 74 68 65 20 64 65 66 | n..This.command.modifies.the.def |
| 93340 | 61 75 6c 74 20 6d 65 74 72 69 63 20 28 68 6f 70 20 63 6f 75 6e 74 29 20 76 61 6c 75 65 20 66 6f | ault.metric.(hop.count).value.fo |
| 93360 | 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 2e 20 54 68 65 20 6d 65 74 72 | r.redistributed.routes..The.metr |
| 93380 | 69 63 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 36 2e 20 54 68 65 20 64 65 66 61 75 6c 74 | ic.range.is.1.to.16..The.default |
| 933a0 | 20 76 61 6c 75 65 20 69 73 20 31 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 6f 65 73 20 6e | .value.is.1..This.command.does.n |
| 933c0 | 6f 74 20 61 66 66 65 63 74 20 63 6f 6e 6e 65 63 74 65 64 20 72 6f 75 74 65 20 65 76 65 6e 20 69 | ot.affect.connected.route.even.i |
| 933e0 | 66 20 69 74 20 69 73 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 62 79 20 3a 63 66 67 63 6d 64 | f.it.is.redistributed.by.:cfgcmd |
| 93400 | 3a 60 72 65 64 69 73 74 72 69 62 75 74 65 20 63 6f 6e 6e 65 63 74 65 64 60 2e 20 54 6f 20 6d 6f | :`redistribute.connected`..To.mo |
| 93420 | 64 69 66 79 20 63 6f 6e 6e 65 63 74 65 64 20 72 6f 75 74 65 73 20 6d 65 74 72 69 63 20 76 61 6c | dify.connected.routes.metric.val |
| 93440 | 75 65 2c 20 70 6c 65 61 73 65 20 75 73 65 20 3a 63 66 67 63 6d 64 3a 60 72 65 64 69 73 74 72 69 | ue,.please.use.:cfgcmd:`redistri |
| 93460 | 62 75 74 65 20 63 6f 6e 6e 65 63 74 65 64 20 6d 65 74 72 69 63 60 2e 00 54 68 69 73 20 63 6f 6d | bute.connected.metric`..This.com |
| 93480 | 6d 61 6e 64 20 6f 76 65 72 72 69 64 65 20 41 53 20 6e 75 6d 62 65 72 20 6f 66 20 74 68 65 20 6f | mand.override.AS.number.of.the.o |
| 934a0 | 72 69 67 69 6e 61 74 69 6e 67 20 72 6f 75 74 65 72 20 77 69 74 68 20 74 68 65 20 6c 6f 63 61 6c | riginating.router.with.the.local |
| 934c0 | 20 41 53 20 6e 75 6d 62 65 72 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 70 72 65 76 65 6e 74 | .AS.number..This.command.prevent |
| 934e0 | 73 20 66 72 6f 6d 20 73 65 6e 64 69 6e 67 20 62 61 63 6b 20 70 72 65 66 69 78 65 73 20 6c 65 61 | s.from.sending.back.prefixes.lea |
| 93500 | 72 6e 65 64 20 66 72 6f 6d 20 74 68 65 20 6e 65 69 67 68 62 6f 72 2e 00 54 68 69 73 20 63 6f 6d | rned.from.the.neighbor..This.com |
| 93520 | 6d 61 6e 64 20 70 72 6f 76 69 64 65 73 20 74 6f 20 63 6f 6d 70 61 72 65 20 64 69 66 66 65 72 65 | mand.provides.to.compare.differe |
| 93540 | 6e 74 20 4d 45 44 20 76 61 6c 75 65 73 20 74 68 61 74 20 61 64 76 65 72 74 69 73 65 64 20 62 79 | nt.MED.values.that.advertised.by |
| 93560 | 20 6e 65 69 67 68 62 6f 75 72 73 20 69 6e 20 74 68 65 20 73 61 6d 65 20 41 53 20 66 6f 72 20 72 | .neighbours.in.the.same.AS.for.r |
| 93580 | 6f 75 74 65 73 20 73 65 6c 65 63 74 69 6f 6e 2e 20 57 68 65 6e 20 74 68 69 73 20 63 6f 6d 6d 61 | outes.selection..When.this.comma |
| 935a0 | 6e 64 20 69 73 20 65 6e 61 62 6c 65 64 2c 20 72 6f 75 74 65 73 20 66 72 6f 6d 20 74 68 65 20 73 | nd.is.enabled,.routes.from.the.s |
| 935c0 | 61 6d 65 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 20 61 72 65 20 67 72 6f 75 70 65 | ame.autonomous.system.are.groupe |
| 935e0 | 64 20 74 6f 67 65 74 68 65 72 2c 20 61 6e 64 20 74 68 65 20 62 65 73 74 20 65 6e 74 72 69 65 73 | d.together,.and.the.best.entries |
| 93600 | 20 6f 66 20 65 61 63 68 20 67 72 6f 75 70 20 61 72 65 20 63 6f 6d 70 61 72 65 64 2e 00 54 68 69 | .of.each.group.are.compared..Thi |
| 93620 | 73 20 63 6f 6d 6d 61 6e 64 20 70 72 6f 76 69 64 65 73 20 74 6f 20 63 6f 6d 70 61 72 65 20 74 68 | s.command.provides.to.compare.th |
| 93640 | 65 20 4d 45 44 20 6f 6e 20 72 6f 75 74 65 73 2c 20 65 76 65 6e 20 77 68 65 6e 20 74 68 65 79 20 | e.MED.on.routes,.even.when.they. |
| 93660 | 77 65 72 65 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 64 69 66 66 65 72 65 6e 74 20 6e 65 69 | were.received.from.different.nei |
| 93680 | 67 68 62 6f 75 72 69 6e 67 20 41 53 65 73 2e 20 53 65 74 74 69 6e 67 20 74 68 69 73 20 6f 70 74 | ghbouring.ASes..Setting.this.opt |
| 936a0 | 69 6f 6e 20 6d 61 6b 65 73 20 74 68 65 20 6f 72 64 65 72 20 6f 66 20 70 72 65 66 65 72 65 6e 63 | ion.makes.the.order.of.preferenc |
| 936c0 | 65 20 6f 66 20 72 6f 75 74 65 73 20 6d 6f 72 65 20 64 65 66 69 6e 65 64 2c 20 61 6e 64 20 73 68 | e.of.routes.more.defined,.and.sh |
| 936e0 | 6f 75 6c 64 20 65 6c 69 6d 69 6e 61 74 65 20 4d 45 44 20 69 6e 64 75 63 65 64 20 6f 73 63 69 6c | ould.eliminate.MED.induced.oscil |
| 93700 | 6c 61 74 69 6f 6e 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 64 69 73 74 72 69 62 75 | lations..This.command.redistribu |
| 93720 | 74 65 73 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 74 68 65 | tes.routing.information.from.the |
| 93740 | 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 20 69 6e 74 6f 20 74 68 65 20 49 53 49 | .given.route.source.into.the.ISI |
| 93760 | 53 20 64 61 74 61 62 61 73 65 20 61 73 20 4c 65 76 65 6c 2d 31 2e 20 54 68 65 72 65 20 61 72 65 | S.database.as.Level-1..There.are |
| 93780 | 20 73 69 78 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 | .six.modes.available.for.route.s |
| 937a0 | 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 6f | ource:.bgp,.connected,.kernel,.o |
| 937c0 | 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 | spf,.rip,.static..This.command.r |
| 937e0 | 65 64 69 73 74 72 69 62 75 74 65 73 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | edistributes.routing.information |
| 93800 | 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 20 69 6e 74 | .from.the.given.route.source.int |
| 93820 | 6f 20 74 68 65 20 49 53 49 53 20 64 61 74 61 62 61 73 65 20 61 73 20 4c 65 76 65 6c 2d 32 2e 20 | o.the.ISIS.database.as.Level-2.. |
| 93840 | 54 68 65 72 65 20 61 72 65 20 73 69 78 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f | There.are.six.modes.available.fo |
| 93860 | 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 | r.route.source:.bgp,.connected,. |
| 93880 | 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2e 00 54 68 69 73 20 | kernel,.ospf,.rip,.static..This. |
| 938a0 | 63 6f 6d 6d 61 6e 64 20 72 65 64 69 73 74 72 69 62 75 74 65 73 20 72 6f 75 74 69 6e 67 20 69 6e | command.redistributes.routing.in |
| 938c0 | 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 | formation.from.the.given.route.s |
| 938e0 | 6f 75 72 63 65 20 69 6e 74 6f 20 74 68 65 20 52 49 50 20 74 61 62 6c 65 73 2e 20 54 68 65 72 65 | ource.into.the.RIP.tables..There |
| 93900 | 20 61 72 65 20 66 69 76 65 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f | .are.five.modes.available.for.ro |
| 93920 | 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e | ute.source:.bgp,.connected,.kern |
| 93940 | 65 6c 2c 20 6f 73 70 66 2c 20 73 74 61 74 69 63 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 | el,.ospf,.static..This.command.r |
| 93960 | 65 64 69 73 74 72 69 62 75 74 65 73 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | edistributes.routing.information |
| 93980 | 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 20 74 6f 20 | .from.the.given.route.source.to. |
| 939a0 | 74 68 65 20 42 47 50 20 70 72 6f 63 65 73 73 2e 20 54 68 65 72 65 20 61 72 65 20 73 69 78 20 6d | the.BGP.process..There.are.six.m |
| 939c0 | 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a | odes.available.for.route.source: |
| 939e0 | 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 | .connected,.kernel,.ospf,.rip,.s |
| 93a00 | 74 61 74 69 63 2c 20 74 61 62 6c 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 64 69 73 | tatic,.table..This.command.redis |
| 93a20 | 74 72 69 62 75 74 65 73 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f | tributes.routing.information.fro |
| 93a40 | 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 20 74 6f 20 74 68 65 20 | m.the.given.route.source.to.the. |
| 93a60 | 42 61 62 65 6c 20 70 72 6f 63 65 73 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 64 69 | Babel.process..This.command.redi |
| 93a80 | 73 74 72 69 62 75 74 65 73 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 | stributes.routing.information.fr |
| 93aa0 | 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 20 74 6f 20 74 68 65 | om.the.given.route.source.to.the |
| 93ac0 | 20 4f 53 50 46 20 70 72 6f 63 65 73 73 2e 20 54 68 65 72 65 20 61 72 65 20 66 69 76 65 20 6d 6f | .OSPF.process..There.are.five.mo |
| 93ae0 | 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 | des.available.for.route.source:. |
| 93b00 | 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 72 69 70 2c 20 73 74 61 | bgp,.connected,.kernel,.rip,.sta |
| 93b20 | 74 69 63 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 64 69 73 74 72 69 62 75 74 65 73 20 | tic..This.command.redistributes. |
| 93b40 | 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 74 68 65 20 67 69 76 | routing.information.from.the.giv |
| 93b60 | 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 20 74 6f 20 74 68 65 20 4f 53 50 46 76 33 20 70 72 | en.route.source.to.the.OSPFv3.pr |
| 93b80 | 6f 63 65 73 73 2e 20 54 68 65 72 65 20 61 72 65 20 66 69 76 65 20 6d 6f 64 65 73 20 61 76 61 69 | ocess..There.are.five.modes.avai |
| 93ba0 | 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e | lable.for.route.source:.bgp,.con |
| 93bc0 | 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 72 69 70 6e 67 2c 20 73 74 61 74 69 63 2e 00 54 | nected,.kernel,.ripng,.static..T |
| 93be0 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 6d 6f 76 65 73 20 74 68 65 20 70 72 69 76 61 74 65 20 | his.command.removes.the.private. |
| 93c00 | 41 53 4e 20 6f 66 20 72 6f 75 74 65 73 20 74 68 61 74 20 61 72 65 20 61 64 76 65 72 74 69 73 65 | ASN.of.routes.that.are.advertise |
| 93c20 | 64 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 70 65 65 72 2e 20 49 74 20 72 65 6d | d.to.the.configured.peer..It.rem |
| 93c40 | 6f 76 65 73 20 6f 6e 6c 79 20 70 72 69 76 61 74 65 20 41 53 4e 73 20 6f 6e 20 72 6f 75 74 65 73 | oves.only.private.ASNs.on.routes |
| 93c60 | 20 61 64 76 65 72 74 69 73 65 64 20 74 6f 20 45 42 47 50 20 70 65 65 72 73 2e 00 54 68 69 73 20 | .advertised.to.EBGP.peers..This. |
| 93c80 | 63 6f 6d 6d 61 6e 64 20 72 65 73 65 74 73 20 42 47 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 | command.resets.BGP.connections.t |
| 93ca0 | 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 6e 65 69 67 68 62 6f 72 20 49 50 20 61 64 64 72 | o.the.specified.neighbor.IP.addr |
| 93cc0 | 65 73 73 2e 20 57 69 74 68 20 61 72 67 75 6d 65 6e 74 20 3a 63 66 67 63 6d 64 3a 60 73 6f 66 74 | ess..With.argument.:cfgcmd:`soft |
| 93ce0 | 60 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 6e 69 74 69 61 74 65 73 20 61 20 73 6f 66 74 20 | `.this.command.initiates.a.soft. |
| 93d00 | 72 65 73 65 74 2e 20 49 66 20 79 6f 75 20 64 6f 20 6e 6f 74 20 73 70 65 63 69 66 79 20 74 68 65 | reset..If.you.do.not.specify.the |
| 93d20 | 20 3a 63 66 67 63 6d 64 3a 60 69 6e 60 20 6f 72 20 3a 63 66 67 63 6d 64 3a 60 6f 75 74 60 20 6f | .:cfgcmd:`in`.or.:cfgcmd:`out`.o |
| 93d40 | 70 74 69 6f 6e 73 2c 20 62 6f 74 68 20 69 6e 62 6f 75 6e 64 20 61 6e 64 20 6f 75 74 62 6f 75 6e | ptions,.both.inbound.and.outboun |
| 93d60 | 64 20 73 6f 66 74 20 72 65 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 72 65 20 74 72 69 67 67 | d.soft.reconfiguration.are.trigg |
| 93d80 | 65 72 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 73 65 74 73 20 42 47 50 20 63 6f | ered..This.command.resets.BGP.co |
| 93da0 | 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 65 65 72 20 | nnections.to.the.specified.peer. |
| 93dc0 | 67 72 6f 75 70 2e 20 57 69 74 68 20 61 72 67 75 6d 65 6e 74 20 3a 63 66 67 63 6d 64 3a 60 73 6f | group..With.argument.:cfgcmd:`so |
| 93de0 | 66 74 60 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 6e 69 74 69 61 74 65 73 20 61 20 73 6f 66 | ft`.this.command.initiates.a.sof |
| 93e00 | 74 20 72 65 73 65 74 2e 20 49 66 20 79 6f 75 20 64 6f 20 6e 6f 74 20 73 70 65 63 69 66 79 20 74 | t.reset..If.you.do.not.specify.t |
| 93e20 | 68 65 20 3a 63 66 67 63 6d 64 3a 60 69 6e 60 20 6f 72 20 3a 63 66 67 63 6d 64 3a 60 6f 75 74 60 | he.:cfgcmd:`in`.or.:cfgcmd:`out` |
| 93e40 | 20 6f 70 74 69 6f 6e 73 2c 20 62 6f 74 68 20 69 6e 62 6f 75 6e 64 20 61 6e 64 20 6f 75 74 62 6f | .options,.both.inbound.and.outbo |
| 93e60 | 75 6e 64 20 73 6f 66 74 20 72 65 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 72 65 20 74 72 69 | und.soft.reconfiguration.are.tri |
| 93e80 | 67 67 65 72 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 73 65 74 73 20 61 6c 6c 20 | ggered..This.command.resets.all. |
| 93ea0 | 42 47 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 6f 66 20 67 69 76 65 6e 20 72 6f 75 74 65 72 2e | BGP.connections.of.given.router. |
| 93ec0 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 73 65 74 73 20 61 6c 6c 20 65 78 74 65 72 6e 61 | .This.command.resets.all.externa |
| 93ee0 | 6c 20 42 47 50 20 70 65 65 72 73 20 6f 66 20 67 69 76 65 6e 20 72 6f 75 74 65 72 2e 00 54 68 69 | l.BGP.peers.of.given.router..Thi |
| 93f00 | 73 20 63 6f 6d 6d 61 6e 64 20 73 65 6c 65 63 74 73 20 41 42 52 20 6d 6f 64 65 6c 2e 20 4f 53 50 | s.command.selects.ABR.model..OSP |
| 93f20 | 46 20 72 6f 75 74 65 72 20 73 75 70 70 6f 72 74 73 20 66 6f 75 72 20 41 42 52 20 6d 6f 64 65 6c | F.router.supports.four.ABR.model |
| 93f40 | 73 3a 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 20 64 65 66 61 75 6c 74 20 6d 65 74 72 | s:.This.command.set.default.metr |
| 93f60 | 69 63 20 66 6f 72 20 63 69 72 63 75 69 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 | ic.for.circuit..This.command.set |
| 93f80 | 20 74 68 65 20 63 68 61 6e 6e 65 6c 20 6e 75 6d 62 65 72 20 74 68 61 74 20 64 69 76 65 72 73 69 | .the.channel.number.that.diversi |
| 93fa0 | 74 79 20 72 6f 75 74 69 6e 67 20 75 73 65 73 20 66 6f 72 20 74 68 69 73 20 69 6e 74 65 72 66 61 | ty.routing.uses.for.this.interfa |
| 93fc0 | 63 65 20 28 73 65 65 20 64 69 76 65 72 73 69 74 79 20 6f 70 74 69 6f 6e 20 61 62 6f 76 65 29 2e | ce.(see.diversity.option.above). |
| 93fe0 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 41 54 54 20 62 69 74 20 74 6f 20 31 20 | .This.command.sets.ATT.bit.to.1. |
| 94000 | 69 6e 20 4c 65 76 65 6c 31 20 4c 53 50 73 2e 20 49 74 20 69 73 20 64 65 73 63 72 69 62 65 64 20 | in.Level1.LSPs..It.is.described. |
| 94020 | 69 6e 20 3a 72 66 63 3a 60 33 37 38 37 60 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 | in.:rfc:`3787`..This.command.set |
| 94040 | 73 20 43 6f 6d 70 6c 65 74 65 20 53 65 71 75 65 6e 63 65 20 4e 75 6d 62 65 72 20 50 61 63 6b 65 | s.Complete.Sequence.Number.Packe |
| 94060 | 74 73 20 28 43 53 4e 50 29 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 54 | ts.(CSNP).interval.in.seconds..T |
| 94080 | 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 30 30 2e 00 54 | he.interval.range.is.1.to.600..T |
| 940a0 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 4c 53 50 20 6d 61 78 69 6d 75 6d 20 4c 53 50 | his.command.sets.LSP.maximum.LSP |
| 940c0 | 20 6c 69 66 65 74 69 6d 65 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 72 76 | .lifetime.in.seconds..The.interv |
| 940e0 | 61 6c 20 72 61 6e 67 65 20 69 73 20 33 35 30 20 74 6f 20 36 35 35 33 35 2e 20 4c 53 50 73 20 72 | al.range.is.350.to.65535..LSPs.r |
| 94100 | 65 6d 61 69 6e 20 69 6e 20 61 20 64 61 74 61 62 61 73 65 20 66 6f 72 20 31 32 30 30 20 73 65 63 | emain.in.a.database.for.1200.sec |
| 94120 | 6f 6e 64 73 20 62 79 20 64 65 66 61 75 6c 74 2e 20 49 66 20 74 68 65 79 20 61 72 65 20 6e 6f 74 | onds.by.default..If.they.are.not |
| 94140 | 20 72 65 66 72 65 73 68 65 64 20 62 79 20 74 68 61 74 20 74 69 6d 65 2c 20 74 68 65 79 20 61 72 | .refreshed.by.that.time,.they.ar |
| 94160 | 65 20 64 65 6c 65 74 65 64 2e 20 59 6f 75 20 63 61 6e 20 63 68 61 6e 67 65 20 74 68 65 20 4c 53 | e.deleted..You.can.change.the.LS |
| 94180 | 50 20 72 65 66 72 65 73 68 20 69 6e 74 65 72 76 61 6c 20 6f 72 20 74 68 65 20 4c 53 50 20 6c 69 | P.refresh.interval.or.the.LSP.li |
| 941a0 | 66 65 74 69 6d 65 2e 20 54 68 65 20 4c 53 50 20 72 65 66 72 65 73 68 20 69 6e 74 65 72 76 61 6c | fetime..The.LSP.refresh.interval |
| 941c0 | 20 73 68 6f 75 6c 64 20 62 65 20 6c 65 73 73 20 74 68 61 6e 20 74 68 65 20 4c 53 50 20 6c 69 66 | .should.be.less.than.the.LSP.lif |
| 941e0 | 65 74 69 6d 65 20 6f 72 20 65 6c 73 65 20 4c 53 50 73 20 77 69 6c 6c 20 74 69 6d 65 20 6f 75 74 | etime.or.else.LSPs.will.time.out |
| 94200 | 20 62 65 66 6f 72 65 20 74 68 65 79 20 61 72 65 20 72 65 66 72 65 73 68 65 64 2e 00 54 68 69 73 | .before.they.are.refreshed..This |
| 94220 | 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 4c 53 50 20 6d 61 78 69 6d 75 6d 20 4c 53 50 20 6c 69 | .command.sets.LSP.maximum.LSP.li |
| 94240 | 66 65 74 69 6d 65 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 | fetime.in.seconds..The.interval. |
| 94260 | 72 61 6e 67 65 20 69 73 20 33 36 30 20 74 6f 20 36 35 35 33 35 2e 20 4c 53 50 73 20 72 65 6d 61 | range.is.360.to.65535..LSPs.rema |
| 94280 | 69 6e 20 69 6e 20 61 20 64 61 74 61 62 61 73 65 20 66 6f 72 20 31 32 30 30 20 73 65 63 6f 6e 64 | in.in.a.database.for.1200.second |
| 942a0 | 73 20 62 79 20 64 65 66 61 75 6c 74 2e 20 49 66 20 74 68 65 79 20 61 72 65 20 6e 6f 74 20 72 65 | s.by.default..If.they.are.not.re |
| 942c0 | 66 72 65 73 68 65 64 20 62 79 20 74 68 61 74 20 74 69 6d 65 2c 20 74 68 65 79 20 61 72 65 20 64 | freshed.by.that.time,.they.are.d |
| 942e0 | 65 6c 65 74 65 64 2e 20 59 6f 75 20 63 61 6e 20 63 68 61 6e 67 65 20 74 68 65 20 4c 53 50 20 72 | eleted..You.can.change.the.LSP.r |
| 94300 | 65 66 72 65 73 68 20 69 6e 74 65 72 76 61 6c 20 6f 72 20 74 68 65 20 4c 53 50 20 6c 69 66 65 74 | efresh.interval.or.the.LSP.lifet |
| 94320 | 69 6d 65 2e 20 54 68 65 20 4c 53 50 20 72 65 66 72 65 73 68 20 69 6e 74 65 72 76 61 6c 20 73 68 | ime..The.LSP.refresh.interval.sh |
| 94340 | 6f 75 6c 64 20 62 65 20 6c 65 73 73 20 74 68 61 6e 20 74 68 65 20 4c 53 50 20 6c 69 66 65 74 69 | ould.be.less.than.the.LSP.lifeti |
| 94360 | 6d 65 20 6f 72 20 65 6c 73 65 20 4c 53 50 73 20 77 69 6c 6c 20 74 69 6d 65 20 6f 75 74 20 62 65 | me.or.else.LSPs.will.time.out.be |
| 94380 | 66 6f 72 65 20 74 68 65 79 20 61 72 65 20 72 65 66 72 65 73 68 65 64 2e 00 54 68 69 73 20 63 6f | fore.they.are.refreshed..This.co |
| 943a0 | 6d 6d 61 6e 64 20 73 65 74 73 20 4c 53 50 20 72 65 66 72 65 73 68 20 69 6e 74 65 72 76 61 6c 20 | mmand.sets.LSP.refresh.interval. |
| 943c0 | 69 6e 20 73 65 63 6f 6e 64 73 2e 20 49 53 2d 49 53 20 67 65 6e 65 72 61 74 65 73 20 4c 53 50 73 | in.seconds..IS-IS.generates.LSPs |
| 943e0 | 20 77 68 65 6e 20 74 68 65 20 73 74 61 74 65 20 6f 66 20 61 20 6c 69 6e 6b 20 63 68 61 6e 67 65 | .when.the.state.of.a.link.change |
| 94400 | 73 2e 20 48 6f 77 65 76 65 72 2c 20 74 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 72 6f 75 74 69 | s..However,.to.ensure.that.routi |
| 94420 | 6e 67 20 64 61 74 61 62 61 73 65 73 20 6f 6e 20 61 6c 6c 20 72 6f 75 74 65 72 73 20 72 65 6d 61 | ng.databases.on.all.routers.rema |
| 94440 | 69 6e 20 63 6f 6e 76 65 72 67 65 64 2c 20 4c 53 50 73 20 69 6e 20 73 74 61 62 6c 65 20 6e 65 74 | in.converged,.LSPs.in.stable.net |
| 94460 | 77 6f 72 6b 73 20 61 72 65 20 67 65 6e 65 72 61 74 65 64 20 6f 6e 20 61 20 72 65 67 75 6c 61 72 | works.are.generated.on.a.regular |
| 94480 | 20 62 61 73 69 73 20 65 76 65 6e 20 74 68 6f 75 67 68 20 74 68 65 72 65 20 68 61 73 20 62 65 65 | .basis.even.though.there.has.bee |
| 944a0 | 6e 20 6e 6f 20 63 68 61 6e 67 65 20 74 6f 20 74 68 65 20 73 74 61 74 65 20 6f 66 20 74 68 65 20 | n.no.change.to.the.state.of.the. |
| 944c0 | 6c 69 6e 6b 73 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 | links..The.interval.range.is.1.t |
| 944e0 | 6f 20 36 35 32 33 35 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 39 30 | o.65235..The.default.value.is.90 |
| 94500 | 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 4c 53 50 | 0.seconds..This.command.sets.LSP |
| 94520 | 20 72 65 66 72 65 73 68 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 54 68 | .refresh.interval.in.seconds..Th |
| 94540 | 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 35 32 33 35 2e 00 | e.interval.range.is.1.to.65235.. |
| 94560 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 4f 53 50 46 20 61 75 74 68 65 6e 74 69 63 | This.command.sets.OSPF.authentic |
| 94580 | 61 74 69 6f 6e 20 6b 65 79 20 74 6f 20 61 20 73 69 6d 70 6c 65 20 70 61 73 73 77 6f 72 64 2e 20 | ation.key.to.a.simple.password.. |
| 945a0 | 41 66 74 65 72 20 73 65 74 74 69 6e 67 2c 20 61 6c 6c 20 4f 53 50 46 20 70 61 63 6b 65 74 73 20 | After.setting,.all.OSPF.packets. |
| 945c0 | 61 72 65 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 2e 20 4b 65 79 20 68 61 73 20 6c 65 6e 67 74 | are.authenticated..Key.has.lengt |
| 945e0 | 68 20 75 70 20 74 6f 20 38 20 63 68 61 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 | h.up.to.8.chars..This.command.se |
| 94600 | 74 73 20 50 53 4e 50 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 | ts.PSNP.interval.in.seconds..The |
| 94620 | 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 31 32 37 2e 00 54 68 69 | .interval.range.is.0.to.127..Thi |
| 94640 | 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 50 61 72 74 69 61 6c 20 53 65 71 75 65 6e 63 65 20 | s.command.sets.Partial.Sequence. |
| 94660 | 4e 75 6d 62 65 72 20 50 61 63 6b 65 74 73 20 28 50 53 4e 50 29 20 69 6e 74 65 72 76 61 6c 20 69 | Number.Packets.(PSNP).interval.i |
| 94680 | 6e 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 | n.seconds..The.interval.range.is |
| 946a0 | 20 31 20 74 6f 20 31 32 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 52 6f 75 | .1.to.120..This.command.sets.Rou |
| 946c0 | 74 65 72 20 50 72 69 6f 72 69 74 79 20 69 6e 74 65 67 65 72 20 76 61 6c 75 65 2e 20 54 68 65 20 | ter.Priority.integer.value..The. |
| 946e0 | 72 6f 75 74 65 72 20 77 69 74 68 20 74 68 65 20 68 69 67 68 65 73 74 20 70 72 69 6f 72 69 74 79 | router.with.the.highest.priority |
| 94700 | 20 77 69 6c 6c 20 62 65 20 6d 6f 72 65 20 65 6c 69 67 69 62 6c 65 20 74 6f 20 62 65 63 6f 6d 65 | .will.be.more.eligible.to.become |
| 94720 | 20 44 65 73 69 67 6e 61 74 65 64 20 52 6f 75 74 65 72 2e 20 53 65 74 74 69 6e 67 20 74 68 65 20 | .Designated.Router..Setting.the. |
| 94740 | 76 61 6c 75 65 20 74 6f 20 30 2c 20 6d 61 6b 65 73 20 74 68 65 20 72 6f 75 74 65 72 20 69 6e 65 | value.to.0,.makes.the.router.ine |
| 94760 | 6c 69 67 69 62 6c 65 20 74 6f 20 62 65 63 6f 6d 65 20 44 65 73 69 67 6e 61 74 65 64 20 52 6f 75 | ligible.to.become.Designated.Rou |
| 94780 | 74 65 72 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 2e 20 54 68 65 | ter..The.default.value.is.1..The |
| 947a0 | 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 32 35 35 2e 00 54 68 69 | .interval.range.is.0.to.255..Thi |
| 947c0 | 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 61 20 73 74 61 74 69 63 20 74 69 65 72 20 6e 75 6d | s.command.sets.a.static.tier.num |
| 947e0 | 62 65 72 20 74 6f 20 61 64 76 65 72 74 69 73 65 20 61 73 20 6c 6f 63 61 74 69 6f 6e 20 69 6e 20 | ber.to.advertise.as.location.in. |
| 94800 | 74 68 65 20 66 61 62 72 69 63 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 64 65 | the.fabric..This.command.sets.de |
| 94820 | 66 61 75 6c 74 20 52 49 50 20 64 69 73 74 61 6e 63 65 20 74 6f 20 61 20 73 70 65 63 69 66 69 65 | fault.RIP.distance.to.a.specifie |
| 94840 | 64 20 76 61 6c 75 65 20 77 68 65 6e 20 74 68 65 20 72 6f 75 74 65 73 20 73 6f 75 72 63 65 20 49 | d.value.when.the.routes.source.I |
| 94860 | 50 20 61 64 64 72 65 73 73 20 6d 61 74 63 68 65 73 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 | P.address.matches.the.specified. |
| 94880 | 70 72 65 66 69 78 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 64 65 66 61 75 6c | prefix..This.command.sets.defaul |
| 948a0 | 74 20 6d 65 74 72 69 63 20 66 6f 72 20 63 69 72 63 75 69 74 2e 20 54 68 65 20 6d 65 74 72 69 63 | t.metric.for.circuit..The.metric |
| 948c0 | 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 36 37 37 37 32 31 35 2e 00 54 68 69 73 20 63 6f | .range.is.1.to.16777215..This.co |
| 948e0 | 6d 6d 61 6e 64 20 73 65 74 73 20 68 65 6c 6c 6f 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 | mmand.sets.hello.interval.in.sec |
| 94900 | 6f 6e 64 73 20 6f 6e 20 61 20 67 69 76 65 6e 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 72 | onds.on.a.given.interface..The.r |
| 94920 | 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 30 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 | ange.is.1.to.600..This.command.s |
| 94940 | 65 74 73 20 68 65 6c 6c 6f 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f 6e 64 73 20 6f 6e | ets.hello.interval.in.seconds.on |
| 94960 | 20 61 20 67 69 76 65 6e 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 72 61 6e 67 65 20 69 73 | .a.given.interface..The.range.is |
| 94980 | 20 31 20 74 6f 20 36 30 30 2e 20 48 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 61 72 65 20 75 73 65 | .1.to.600..Hello.packets.are.use |
| 949a0 | 64 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 61 6e 64 20 6d 61 69 6e 74 61 69 6e 20 61 64 6a 61 | d.to.establish.and.maintain.adja |
| 949c0 | 63 65 6e 63 79 20 62 65 74 77 65 65 6e 20 4f 70 65 6e 46 61 62 72 69 63 20 6e 65 69 67 68 62 6f | cency.between.OpenFabric.neighbo |
| 949e0 | 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6c 69 6e 6b 20 63 6f 73 74 20 | rs..This.command.sets.link.cost. |
| 94a00 | 66 6f 72 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 | for.the.specified.interface..The |
| 94a20 | 20 63 6f 73 74 20 76 61 6c 75 65 20 69 73 20 73 65 74 20 74 6f 20 72 6f 75 74 65 72 2d 4c 53 41 | .cost.value.is.set.to.router-LSA |
| 94a40 | e2 80 99 73 20 6d 65 74 72 69 63 20 66 69 65 6c 64 20 61 6e 64 20 75 73 65 64 20 66 6f 72 20 53 | ...s.metric.field.and.used.for.S |
| 94a60 | 50 46 20 63 61 6c 63 75 6c 61 74 69 6f 6e 2e 20 54 68 65 20 63 6f 73 74 20 72 61 6e 67 65 20 69 | PF.calculation..The.cost.range.i |
| 94a80 | 73 20 31 20 74 6f 20 36 35 35 33 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 | s.1.to.65535..This.command.sets. |
| 94aa0 | 6d 69 6e 69 6d 75 6d 20 69 6e 74 65 72 76 61 6c 20 61 74 20 77 68 69 63 68 20 6c 69 6e 6b 2d 73 | minimum.interval.at.which.link-s |
| 94ac0 | 74 61 74 65 20 70 61 63 6b 65 74 73 20 28 4c 53 50 73 29 20 61 72 65 20 67 65 6e 65 72 61 74 65 | tate.packets.(LSPs).are.generate |
| 94ae0 | 64 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 32 | d..The.interval.range.is.1.to.12 |
| 94b00 | 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6d 69 6e 69 6d 75 6d 20 69 6e 74 | 0..This.command.sets.minimum.int |
| 94b20 | 65 72 76 61 6c 20 62 65 74 77 65 65 6e 20 63 6f 6e 73 65 63 75 74 69 76 65 20 53 50 46 20 63 61 | erval.between.consecutive.SPF.ca |
| 94b40 | 6c 63 75 6c 61 74 69 6f 6e 73 20 69 6e 20 73 65 63 6f 6e 64 73 2e 54 68 65 20 69 6e 74 65 72 76 | lculations.in.seconds.The.interv |
| 94b60 | 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 32 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | al.range.is.1.to.120..This.comma |
| 94b80 | 6e 64 20 73 65 74 73 20 6d 69 6e 69 6d 75 6d 20 69 6e 74 65 72 76 61 6c 20 62 65 74 77 65 65 6e | nd.sets.minimum.interval.between |
| 94ba0 | 20 63 6f 6e 73 65 63 75 74 69 76 65 20 73 68 6f 72 74 65 73 74 20 70 61 74 68 20 66 69 72 73 74 | .consecutive.shortest.path.first |
| 94bc0 | 20 28 53 50 46 29 20 63 61 6c 63 75 6c 61 74 69 6f 6e 73 20 69 6e 20 73 65 63 6f 6e 64 73 2e 54 | .(SPF).calculations.in.seconds.T |
| 94be0 | 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 32 30 2e 00 54 | he.interval.range.is.1.to.120..T |
| 94c00 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6d 69 6e 69 6d 75 6d 20 69 6e 74 65 72 76 61 | his.command.sets.minimum.interva |
| 94c20 | 6c 20 69 6e 20 73 65 63 6f 6e 64 73 20 62 65 74 77 65 65 6e 20 72 65 67 65 6e 65 72 61 74 69 6e | l.in.seconds.between.regeneratin |
| 94c40 | 67 20 73 61 6d 65 20 4c 53 50 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 | g.same.LSP..The.interval.range.i |
| 94c60 | 73 20 31 20 74 6f 20 31 32 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6d 75 | s.1.to.120..This.command.sets.mu |
| 94c80 | 6c 74 69 70 6c 69 65 72 20 66 6f 72 20 68 65 6c 6c 6f 20 68 6f 6c 64 69 6e 67 20 74 69 6d 65 20 | ltiplier.for.hello.holding.time. |
| 94ca0 | 6f 6e 20 61 20 67 69 76 65 6e 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 72 61 6e 67 65 20 | on.a.given.interface..The.range. |
| 94cc0 | 69 73 20 32 20 74 6f 20 31 30 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6e | is.2.to.100..This.command.sets.n |
| 94ce0 | 65 74 77 6f 72 6b 20 65 6e 74 69 74 79 20 74 69 74 6c 65 20 28 4e 45 54 29 20 70 72 6f 76 69 64 | etwork.entity.title.(NET).provid |
| 94d00 | 65 64 20 69 6e 20 49 53 4f 20 66 6f 72 6d 61 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 | ed.in.ISO.format..This.command.s |
| 94d20 | 65 74 73 20 6e 75 6d 62 65 72 20 6f 66 20 73 65 63 6f 6e 64 73 20 66 6f 72 20 49 6e 66 54 72 61 | ets.number.of.seconds.for.InfTra |
| 94d40 | 6e 73 44 65 6c 61 79 20 76 61 6c 75 65 2e 20 49 74 20 61 6c 6c 6f 77 73 20 74 6f 20 73 65 74 20 | nsDelay.value..It.allows.to.set. |
| 94d60 | 61 6e 64 20 61 64 6a 75 73 74 20 66 6f 72 20 65 61 63 68 20 69 6e 74 65 72 66 61 63 65 20 74 68 | and.adjust.for.each.interface.th |
| 94d80 | 65 20 64 65 6c 61 79 20 69 6e 74 65 72 76 61 6c 20 62 65 66 6f 72 65 20 73 74 61 72 74 69 6e 67 | e.delay.interval.before.starting |
| 94da0 | 20 74 68 65 20 73 79 6e 63 68 72 6f 6e 69 7a 69 6e 67 20 70 72 6f 63 65 73 73 20 6f 66 20 74 68 | .the.synchronizing.process.of.th |
| 94dc0 | 65 20 72 6f 75 74 65 72 27 73 20 64 61 74 61 62 61 73 65 20 77 69 74 68 20 61 6c 6c 20 6e 65 69 | e.router's.database.with.all.nei |
| 94de0 | 67 68 62 6f 72 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 20 73 | ghbors..The.default.value.is.1.s |
| 94e00 | 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 33 20 | econds..The.interval.range.is.3. |
| 94e20 | 74 6f 20 36 35 35 33 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6e 75 6d 62 | to.65535..This.command.sets.numb |
| 94e40 | 65 72 20 6f 66 20 73 65 63 6f 6e 64 73 20 66 6f 72 20 52 78 6d 74 49 6e 74 65 72 76 61 6c 20 74 | er.of.seconds.for.RxmtInterval.t |
| 94e60 | 69 6d 65 72 20 76 61 6c 75 65 2e 20 54 68 69 73 20 76 61 6c 75 65 20 69 73 20 75 73 65 64 20 77 | imer.value..This.value.is.used.w |
| 94e80 | 68 65 6e 20 72 65 74 72 61 6e 73 6d 69 74 74 69 6e 67 20 44 61 74 61 62 61 73 65 20 44 65 73 63 | hen.retransmitting.Database.Desc |
| 94ea0 | 72 69 70 74 69 6f 6e 20 61 6e 64 20 4c 69 6e 6b 20 53 74 61 74 65 20 52 65 71 75 65 73 74 20 70 | ription.and.Link.State.Request.p |
| 94ec0 | 61 63 6b 65 74 73 20 69 66 20 61 63 6b 6e 6f 77 6c 65 64 67 65 20 77 61 73 20 6e 6f 74 20 72 65 | ackets.if.acknowledge.was.not.re |
| 94ee0 | 63 65 69 76 65 64 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 35 20 73 | ceived..The.default.value.is.5.s |
| 94f00 | 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 33 20 | econds..The.interval.range.is.3. |
| 94f20 | 74 6f 20 36 35 35 33 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6f 6c 64 2d | to.65535..This.command.sets.old- |
| 94f40 | 73 74 79 6c 65 20 28 49 53 4f 20 31 30 35 38 39 29 20 6f 72 20 6e 65 77 20 73 74 79 6c 65 20 70 | style.(ISO.10589).or.new.style.p |
| 94f60 | 61 63 6b 65 74 20 66 6f 72 6d 61 74 73 3a 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 | acket.formats:.This.command.sets |
| 94f80 | 20 6f 74 68 65 72 20 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e 73 20 3c 6e 73 75 62 61 73 6e 3e 20 | .other.confederations.<nsubasn>. |
| 94fa0 | 61 73 20 6d 65 6d 62 65 72 73 20 6f 66 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 20 | as.members.of.autonomous.system. |
| 94fc0 | 73 70 65 63 69 66 69 65 64 20 62 79 20 3a 63 66 67 63 6d 64 3a 60 63 6f 6e 66 65 64 65 72 61 74 | specified.by.:cfgcmd:`confederat |
| 94fe0 | 69 6f 6e 20 69 64 65 6e 74 69 66 69 65 72 20 3c 61 73 6e 3e 60 2e 00 54 68 69 73 20 63 6f 6d 6d | ion.identifier.<asn>`..This.comm |
| 95000 | 61 6e 64 20 73 65 74 73 20 6f 76 65 72 6c 6f 61 64 20 62 69 74 20 74 6f 20 61 76 6f 69 64 20 61 | and.sets.overload.bit.to.avoid.a |
| 95020 | 6e 79 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 74 68 72 6f 75 67 68 20 74 68 69 73 20 | ny.transit.traffic.through.this. |
| 95040 | 72 6f 75 74 65 72 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6f 76 65 72 6c 6f | router..This.command.sets.overlo |
| 95060 | 61 64 20 62 69 74 20 74 6f 20 61 76 6f 69 64 20 61 6e 79 20 74 72 61 6e 73 69 74 20 74 72 61 66 | ad.bit.to.avoid.any.transit.traf |
| 95080 | 66 69 63 20 74 68 72 6f 75 67 68 20 74 68 69 73 20 72 6f 75 74 65 72 2e 20 49 74 20 69 73 20 64 | fic.through.this.router..It.is.d |
| 950a0 | 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 33 37 38 37 60 2e 00 54 68 69 73 20 63 6f | escribed.in.:rfc:`3787`..This.co |
| 950c0 | 6d 6d 61 6e 64 20 73 65 74 73 20 70 72 69 6f 72 69 74 79 20 66 6f 72 20 74 68 65 20 69 6e 74 65 | mmand.sets.priority.for.the.inte |
| 950e0 | 72 66 61 63 65 20 66 6f 72 20 3a 61 62 62 72 3a 60 44 49 53 20 28 44 65 73 69 67 6e 61 74 65 64 | rface.for.:abbr:`DIS.(Designated |
| 95100 | 20 49 6e 74 65 72 6d 65 64 69 61 74 65 20 53 79 73 74 65 6d 29 60 20 65 6c 65 63 74 69 6f 6e 2e | .Intermediate.System)`.election. |
| 95120 | 20 54 68 65 20 70 72 69 6f 72 69 74 79 20 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 31 32 37 2e | .The.priority.range.is.0.to.127. |
| 95140 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 61 64 6d 69 6e 69 73 74 72 | .This.command.sets.the.administr |
| 95160 | 61 74 69 76 65 20 64 69 73 74 61 6e 63 65 20 66 6f 72 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 | ative.distance.for.a.particular. |
| 95180 | 72 6f 75 74 65 2e 20 54 68 65 20 64 69 73 74 61 6e 63 65 20 72 61 6e 67 65 20 69 73 20 31 20 74 | route..The.distance.range.is.1.t |
| 951a0 | 6f 20 32 35 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 61 75 74 | o.255..This.command.sets.the.aut |
| 951c0 | 68 65 6e 74 69 63 61 74 69 6f 6e 20 70 61 73 73 77 6f 72 64 20 66 6f 72 20 74 68 65 20 69 6e 74 | hentication.password.for.the.int |
| 951e0 | 65 72 66 61 63 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 63 6f | erface..This.command.sets.the.co |
| 95200 | 73 74 20 6f 66 20 64 65 66 61 75 6c 74 2d 73 75 6d 6d 61 72 79 20 4c 53 41 73 20 61 6e 6e 6f 75 | st.of.default-summary.LSAs.annou |
| 95220 | 6e 63 65 64 20 74 6f 20 73 74 75 62 62 79 20 61 72 65 61 73 2e 20 54 68 65 20 63 6f 73 74 20 72 | nced.to.stubby.areas..The.cost.r |
| 95240 | 61 6e 67 65 20 69 73 20 30 20 74 6f 20 31 36 37 37 37 32 31 35 2e 00 54 68 69 73 20 63 6f 6d 6d | ange.is.0.to.16777215..This.comm |
| 95260 | 61 6e 64 20 73 65 74 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 63 6f 73 74 20 6f 66 20 4c 53 41 | and.sets.the.default.cost.of.LSA |
| 95280 | 73 20 61 6e 6e 6f 75 6e 63 65 64 20 74 6f 20 4e 53 53 41 20 61 72 65 61 73 2e 20 54 68 65 20 63 | s.announced.to.NSSA.areas..The.c |
| 952a0 | 6f 73 74 20 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 31 36 37 37 37 32 31 35 2e 00 54 68 69 73 | ost.range.is.0.to.16777215..This |
| 952c0 | 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 69 6e 69 74 69 61 6c 20 64 65 6c 61 79 2c | .command.sets.the.initial.delay, |
| 952e0 | 20 74 68 65 20 69 6e 69 74 69 61 6c 2d 68 6f 6c 64 74 69 6d 65 20 61 6e 64 20 74 68 65 20 6d 61 | .the.initial-holdtime.and.the.ma |
| 95300 | 78 69 6d 75 6d 2d 68 6f 6c 64 74 69 6d 65 20 62 65 74 77 65 65 6e 20 77 68 65 6e 20 53 50 46 20 | ximum-holdtime.between.when.SPF. |
| 95320 | 69 73 20 63 61 6c 63 75 6c 61 74 65 64 20 61 6e 64 20 74 68 65 20 65 76 65 6e 74 20 77 68 69 63 | is.calculated.and.the.event.whic |
| 95340 | 68 20 74 72 69 67 67 65 72 65 64 20 74 68 65 20 63 61 6c 63 75 6c 61 74 69 6f 6e 2e 20 54 68 65 | h.triggered.the.calculation..The |
| 95360 | 20 74 69 6d 65 73 20 61 72 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 6d 69 6c 6c 69 73 65 63 | .times.are.specified.in.millisec |
| 95380 | 6f 6e 64 73 20 61 6e 64 20 6d 75 73 74 20 62 65 20 69 6e 20 74 68 65 20 72 61 6e 67 65 20 6f 66 | onds.and.must.be.in.the.range.of |
| 953a0 | 20 30 20 74 6f 20 36 30 30 30 30 30 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 2e 20 3a 63 66 67 63 | .0.to.600000.milliseconds..:cfgc |
| 953c0 | 6d 64 3a 60 64 65 6c 61 79 60 20 73 65 74 73 20 74 68 65 20 69 6e 69 74 69 61 6c 20 53 50 46 20 | md:`delay`.sets.the.initial.SPF. |
| 953e0 | 73 63 68 65 64 75 6c 65 20 64 65 6c 61 79 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 2e 20 | schedule.delay.in.milliseconds.. |
| 95400 | 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 32 30 30 20 6d 73 2e 20 3a 63 66 | The.default.value.is.200.ms..:cf |
| 95420 | 67 63 6d 64 3a 60 69 6e 69 74 69 61 6c 2d 68 6f 6c 64 74 69 6d 65 60 20 73 65 74 73 20 74 68 65 | gcmd:`initial-holdtime`.sets.the |
| 95440 | 20 6d 69 6e 69 6d 75 6d 20 68 6f 6c 64 20 74 69 6d 65 20 62 65 74 77 65 65 6e 20 74 77 6f 20 63 | .minimum.hold.time.between.two.c |
| 95460 | 6f 6e 73 65 63 75 74 69 76 65 20 53 50 46 20 63 61 6c 63 75 6c 61 74 69 6f 6e 73 2e 20 54 68 65 | onsecutive.SPF.calculations..The |
| 95480 | 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 30 30 30 20 6d 73 2e 20 3a 63 66 67 63 | .default.value.is.1000.ms..:cfgc |
| 954a0 | 6d 64 3a 60 6d 61 78 2d 68 6f 6c 64 74 69 6d 65 60 20 73 65 74 73 20 74 68 65 20 6d 61 78 69 6d | md:`max-holdtime`.sets.the.maxim |
| 954c0 | 75 6d 20 77 61 69 74 20 74 69 6d 65 20 62 65 74 77 65 65 6e 20 74 77 6f 20 63 6f 6e 73 65 63 75 | um.wait.time.between.two.consecu |
| 954e0 | 74 69 76 65 20 53 50 46 20 63 61 6c 63 75 6c 61 74 69 6f 6e 73 2e 20 54 68 65 20 64 65 66 61 75 | tive.SPF.calculations..The.defau |
| 95500 | 6c 74 20 76 61 6c 75 65 20 69 73 20 31 30 30 30 30 20 6d 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | lt.value.is.10000.ms..This.comma |
| 95520 | 6e 64 20 73 65 74 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 62 61 6e 64 77 69 64 74 68 20 | nd.sets.the.interface.bandwidth. |
| 95540 | 66 6f 72 20 63 6f 73 74 20 63 61 6c 63 75 6c 61 74 69 6f 6e 73 2c 20 77 68 65 72 65 20 62 61 6e | for.cost.calculations,.where.ban |
| 95560 | 64 77 69 64 74 68 20 63 61 6e 20 62 65 20 69 6e 20 72 61 6e 67 65 20 66 72 6f 6d 20 31 20 74 6f | dwidth.can.be.in.range.from.1.to |
| 95580 | 20 31 30 30 30 30 30 2c 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 4d 62 69 74 73 2f 73 2e 00 54 | .100000,.specified.in.Mbits/s..T |
| 955a0 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 | his.command.sets.the.interface.t |
| 955c0 | 79 70 65 3a 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 69 6e 74 65 72 | ype:.This.command.sets.the.inter |
| 955e0 | 66 61 63 65 20 77 69 74 68 20 52 49 50 20 4d 44 35 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e | face.with.RIP.MD5.authentication |
| 95600 | 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 73 6f 20 73 65 74 73 20 4d 44 35 20 4b 65 79 | ..This.command.also.sets.MD5.Key |
| 95620 | 2e 20 54 68 65 20 6b 65 79 20 6d 75 73 74 20 62 65 20 73 68 6f 72 74 65 72 20 74 68 61 6e 20 31 | ..The.key.must.be.shorter.than.1 |
| 95640 | 36 20 63 68 61 72 61 63 74 65 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 | 6.characters..This.command.sets. |
| 95660 | 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 52 49 50 20 73 69 6d 70 6c 65 20 70 61 | the.interface.with.RIP.simple.pa |
| 95680 | 73 73 77 6f 72 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 20 54 68 69 73 20 63 6f 6d 6d | ssword.authentication..This.comm |
| 956a0 | 61 6e 64 20 61 6c 73 6f 20 73 65 74 73 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 74 72 | and.also.sets.authentication.str |
| 956c0 | 69 6e 67 2e 20 54 68 65 20 73 74 72 69 6e 67 20 6d 75 73 74 20 62 65 20 73 68 6f 72 74 65 72 20 | ing..The.string.must.be.shorter. |
| 956e0 | 74 68 61 6e 20 31 36 20 63 68 61 72 61 63 74 65 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | than.16.characters..This.command |
| 95700 | 20 73 65 74 73 20 74 68 65 20 6d 75 6c 74 69 70 6c 69 63 61 74 69 76 65 20 66 61 63 74 6f 72 20 | .sets.the.multiplicative.factor. |
| 95720 | 75 73 65 64 20 66 6f 72 20 64 69 76 65 72 73 69 74 79 20 72 6f 75 74 69 6e 67 2c 20 69 6e 20 75 | used.for.diversity.routing,.in.u |
| 95740 | 6e 69 74 73 20 6f 66 20 31 2f 32 35 36 3b 20 6c 6f 77 65 72 20 76 61 6c 75 65 73 20 63 61 75 73 | nits.of.1/256;.lower.values.caus |
| 95760 | 65 20 64 69 76 65 72 73 69 74 79 20 74 6f 20 70 6c 61 79 20 61 20 6d 6f 72 65 20 69 6d 70 6f 72 | e.diversity.to.play.a.more.impor |
| 95780 | 74 61 6e 74 20 72 6f 6c 65 20 69 6e 20 72 6f 75 74 65 20 73 65 6c 65 63 74 69 6f 6e 2e 20 54 68 | tant.role.in.route.selection..Th |
| 957a0 | 65 20 64 65 66 61 75 6c 74 20 69 74 20 32 35 36 2c 20 77 68 69 63 68 20 6d 65 61 6e 73 20 74 68 | e.default.it.256,.which.means.th |
| 957c0 | 61 74 20 64 69 76 65 72 73 69 74 79 20 70 6c 61 79 73 20 6e 6f 20 72 6f 6c 65 20 69 6e 20 72 6f | at.diversity.plays.no.role.in.ro |
| 957e0 | 75 74 65 20 73 65 6c 65 63 74 69 6f 6e 3b 20 79 6f 75 20 77 69 6c 6c 20 70 72 6f 62 61 62 6c 79 | ute.selection;.you.will.probably |
| 95800 | 20 77 61 6e 74 20 74 6f 20 73 65 74 20 74 68 61 74 20 74 6f 20 31 32 38 20 6f 72 20 6c 65 73 73 | .want.to.set.that.to.128.or.less |
| 95820 | 20 6f 6e 20 6e 6f 64 65 73 20 77 69 74 68 20 6d 75 6c 74 69 70 6c 65 20 69 6e 64 65 70 65 6e 64 | .on.nodes.with.multiple.independ |
| 95840 | 65 6e 74 20 72 61 64 69 6f 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 | ent.radios..This.command.sets.th |
| 95860 | 65 20 72 65 66 65 72 65 6e 63 65 20 62 61 6e 64 77 69 64 74 68 20 66 6f 72 20 63 6f 73 74 20 63 | e.reference.bandwidth.for.cost.c |
| 95880 | 61 6c 63 75 6c 61 74 69 6f 6e 73 2c 20 77 68 65 72 65 20 62 61 6e 64 77 69 64 74 68 20 63 61 6e | alculations,.where.bandwidth.can |
| 958a0 | 20 62 65 20 69 6e 20 72 61 6e 67 65 20 66 72 6f 6d 20 31 20 74 6f 20 34 32 39 34 39 36 37 2c 20 | .be.in.range.from.1.to.4294967,. |
| 958c0 | 73 70 65 63 69 66 69 65 64 20 69 6e 20 4d 62 69 74 73 2f 73 2e 20 54 68 65 20 64 65 66 61 75 6c | specified.in.Mbits/s..The.defaul |
| 958e0 | 74 20 69 73 20 31 30 30 4d 62 69 74 2f 73 20 28 69 2e 65 2e 20 61 20 6c 69 6e 6b 20 6f 66 20 62 | t.is.100Mbit/s.(i.e..a.link.of.b |
| 95900 | 61 6e 64 77 69 64 74 68 20 31 30 30 4d 62 69 74 2f 73 20 6f 72 20 68 69 67 68 65 72 20 77 69 6c | andwidth.100Mbit/s.or.higher.wil |
| 95920 | 6c 20 68 61 76 65 20 61 20 63 6f 73 74 20 6f 66 20 31 2e 20 43 6f 73 74 20 6f 66 20 6c 6f 77 65 | l.have.a.cost.of.1..Cost.of.lowe |
| 95940 | 72 20 62 61 6e 64 77 69 64 74 68 20 6c 69 6e 6b 73 20 77 69 6c 6c 20 62 65 20 73 63 61 6c 65 64 | r.bandwidth.links.will.be.scaled |
| 95960 | 20 77 69 74 68 20 72 65 66 65 72 65 6e 63 65 20 74 6f 20 74 68 69 73 20 63 6f 73 74 29 2e 00 54 | .with.reference.to.this.cost)..T |
| 95980 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 72 6f 75 74 65 72 2d 49 44 20 6f | his.command.sets.the.router-ID.o |
| 959a0 | 66 20 74 68 65 20 4f 53 50 46 20 70 72 6f 63 65 73 73 2e 20 54 68 65 20 72 6f 75 74 65 72 2d 49 | f.the.OSPF.process..The.router-I |
| 959c0 | 44 20 6d 61 79 20 62 65 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 72 6f | D.may.be.an.IP.address.of.the.ro |
| 959e0 | 75 74 65 72 2c 20 62 75 74 20 6e 65 65 64 20 6e 6f 74 20 62 65 20 e2 80 93 20 69 74 20 63 61 6e | uter,.but.need.not.be.....it.can |
| 95a00 | 20 62 65 20 61 6e 79 20 61 72 62 69 74 72 61 72 79 20 33 32 62 69 74 20 6e 75 6d 62 65 72 2e 20 | .be.any.arbitrary.32bit.number.. |
| 95a20 | 48 6f 77 65 76 65 72 20 69 74 20 4d 55 53 54 20 62 65 20 75 6e 69 71 75 65 20 77 69 74 68 69 6e | However.it.MUST.be.unique.within |
| 95a40 | 20 74 68 65 20 65 6e 74 69 72 65 20 4f 53 50 46 20 64 6f 6d 61 69 6e 20 74 6f 20 74 68 65 20 4f | .the.entire.OSPF.domain.to.the.O |
| 95a60 | 53 50 46 20 73 70 65 61 6b 65 72 20 e2 80 93 20 62 61 64 20 74 68 69 6e 67 73 20 77 69 6c 6c 20 | SPF.speaker.....bad.things.will. |
| 95a80 | 68 61 70 70 65 6e 20 69 66 20 6d 75 6c 74 69 70 6c 65 20 4f 53 50 46 20 73 70 65 61 6b 65 72 73 | happen.if.multiple.OSPF.speakers |
| 95aa0 | 20 61 72 65 20 63 6f 6e 66 69 67 75 72 65 64 20 77 69 74 68 20 74 68 65 20 73 61 6d 65 20 72 6f | .are.configured.with.the.same.ro |
| 95ac0 | 75 74 65 72 2d 49 44 21 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 72 | uter-ID!.This.command.sets.the.r |
| 95ae0 | 6f 75 74 65 72 2d 49 44 20 6f 66 20 74 68 65 20 4f 53 50 46 76 33 20 70 72 6f 63 65 73 73 2e 20 | outer-ID.of.the.OSPFv3.process.. |
| 95b00 | 54 68 65 20 72 6f 75 74 65 72 2d 49 44 20 6d 61 79 20 62 65 20 61 6e 20 49 50 20 61 64 64 72 65 | The.router-ID.may.be.an.IP.addre |
| 95b20 | 73 73 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 2c 20 62 75 74 20 6e 65 65 64 20 6e 6f 74 20 62 | ss.of.the.router,.but.need.not.b |
| 95b40 | 65 20 e2 80 93 20 69 74 20 63 61 6e 20 62 65 20 61 6e 79 20 61 72 62 69 74 72 61 72 79 20 33 32 | e.....it.can.be.any.arbitrary.32 |
| 95b60 | 62 69 74 20 6e 75 6d 62 65 72 2e 20 48 6f 77 65 76 65 72 20 69 74 20 4d 55 53 54 20 62 65 20 75 | bit.number..However.it.MUST.be.u |
| 95b80 | 6e 69 71 75 65 20 77 69 74 68 69 6e 20 74 68 65 20 65 6e 74 69 72 65 20 4f 53 50 46 76 33 20 64 | nique.within.the.entire.OSPFv3.d |
| 95ba0 | 6f 6d 61 69 6e 20 74 6f 20 74 68 65 20 4f 53 50 46 76 33 20 73 70 65 61 6b 65 72 20 e2 80 93 20 | omain.to.the.OSPFv3.speaker..... |
| 95bc0 | 62 61 64 20 74 68 69 6e 67 73 20 77 69 6c 6c 20 68 61 70 70 65 6e 20 69 66 20 6d 75 6c 74 69 70 | bad.things.will.happen.if.multip |
| 95be0 | 6c 65 20 4f 53 50 46 76 33 20 73 70 65 61 6b 65 72 73 20 61 72 65 20 63 6f 6e 66 69 67 75 72 65 | le.OSPFv3.speakers.are.configure |
| 95c00 | 64 20 77 69 74 68 20 74 68 65 20 73 61 6d 65 20 72 6f 75 74 65 72 2d 49 44 21 00 54 68 69 73 20 | d.with.the.same.router-ID!.This. |
| 95c20 | 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 | command.sets.the.specified.inter |
| 95c40 | 66 61 63 65 20 74 6f 20 70 61 73 73 69 76 65 20 6d 6f 64 65 2e 20 4f 6e 20 70 61 73 73 69 76 65 | face.to.passive.mode..On.passive |
| 95c60 | 20 6d 6f 64 65 20 69 6e 74 65 72 66 61 63 65 2c 20 61 6c 6c 20 72 65 63 65 69 76 69 6e 67 20 70 | .mode.interface,.all.receiving.p |
| 95c80 | 61 63 6b 65 74 73 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 61 73 20 6e 6f 72 6d 61 6c 20 61 | ackets.are.processed.as.normal.a |
| 95ca0 | 6e 64 20 56 79 4f 53 20 64 6f 65 73 20 6e 6f 74 20 73 65 6e 64 20 65 69 74 68 65 72 20 6d 75 6c | nd.VyOS.does.not.send.either.mul |
| 95cc0 | 74 69 63 61 73 74 20 6f 72 20 75 6e 69 63 61 73 74 20 52 49 50 20 70 61 63 6b 65 74 73 20 65 78 | ticast.or.unicast.RIP.packets.ex |
| 95ce0 | 63 65 70 74 20 74 6f 20 52 49 50 20 6e 65 69 67 68 62 6f 72 73 20 73 70 65 63 69 66 69 65 64 20 | cept.to.RIP.neighbors.specified. |
| 95d00 | 77 69 74 68 20 6e 65 69 67 68 62 6f 72 20 63 6f 6d 6d 61 6e 64 2e 00 54 68 69 73 20 63 6f 6d 6d | with.neighbor.command..This.comm |
| 95d20 | 61 6e 64 20 73 68 6f 75 6c 64 20 4e 4f 54 20 62 65 20 73 65 74 20 6e 6f 72 6d 61 6c 6c 79 2e 00 | and.should.NOT.be.set.normally.. |
| 95d40 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 68 6f 77 73 20 62 6f 74 68 20 73 74 61 74 75 73 20 61 | This.command.shows.both.status.a |
| 95d60 | 6e 64 20 73 74 61 74 69 73 74 69 63 73 20 6f 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 77 | nd.statistics.on.the.specified.w |
| 95d80 | 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 77 69 72 65 6c 65 73 73 20 | ireless.interface..The.wireless. |
| 95da0 | 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 63 61 6e 20 72 61 6e 67 65 20 66 | interface.identifier.can.range.f |
| 95dc0 | 72 6f 6d 20 77 6c 61 6e 30 20 74 6f 20 77 6c 61 6e 39 39 39 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | rom.wlan0.to.wlan999..This.comma |
| 95de0 | 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 20 42 47 50 20 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e | nd.specifies.a.BGP.confederation |
| 95e00 | 20 69 64 65 6e 74 69 66 69 65 72 2e 20 3c 61 73 6e 3e 20 69 73 20 74 68 65 20 6e 75 6d 62 65 72 | .identifier..<asn>.is.the.number |
| 95e20 | 20 6f 66 20 74 68 65 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 20 74 68 61 74 20 69 | .of.the.autonomous.system.that.i |
| 95e40 | 6e 74 65 72 6e 61 6c 6c 79 20 69 6e 63 6c 75 64 65 73 20 6d 75 6c 74 69 70 6c 65 20 73 75 62 2d | nternally.includes.multiple.sub- |
| 95e60 | 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 73 20 28 61 20 63 6f 6e 66 65 64 65 72 61 74 | autonomous.systems.(a.confederat |
| 95e80 | 69 6f 6e 29 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 20 42 | ion)..This.command.specifies.a.B |
| 95ea0 | 61 62 65 6c 20 65 6e 61 62 6c 65 64 20 69 6e 74 65 72 66 61 63 65 20 62 79 20 69 6e 74 65 72 66 | abel.enabled.interface.by.interf |
| 95ec0 | 61 63 65 20 6e 61 6d 65 2e 20 42 6f 74 68 20 74 68 65 20 73 65 6e 64 69 6e 67 20 61 6e 64 20 72 | ace.name..Both.the.sending.and.r |
| 95ee0 | 65 63 65 69 76 69 6e 67 20 6f 66 20 42 61 62 65 6c 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 62 | eceiving.of.Babel.packets.will.b |
| 95f00 | 65 20 65 6e 61 62 6c 65 64 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 73 70 65 63 69 | e.enabled.on.the.interface.speci |
| 95f20 | 66 69 65 64 20 69 6e 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | fied.in.this.command..This.comma |
| 95f40 | 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 20 4d 44 35 20 70 61 73 73 77 6f 72 64 20 74 6f 20 62 | nd.specifies.a.MD5.password.to.b |
| 95f60 | 65 20 75 73 65 64 20 77 69 74 68 20 74 68 65 20 74 63 70 20 73 6f 63 6b 65 74 20 74 68 61 74 20 | e.used.with.the.tcp.socket.that. |
| 95f80 | 69 73 20 62 65 69 6e 67 20 75 73 65 64 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 | is.being.used.to.connect.to.the. |
| 95fa0 | 72 65 6d 6f 74 65 20 70 65 65 72 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 | remote.peer..This.command.specif |
| 95fc0 | 69 65 73 20 61 20 52 49 50 20 65 6e 61 62 6c 65 64 20 69 6e 74 65 72 66 61 63 65 20 62 79 20 69 | ies.a.RIP.enabled.interface.by.i |
| 95fe0 | 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 2e 20 42 6f 74 68 20 74 68 65 20 73 65 6e 64 69 6e 67 20 | nterface.name..Both.the.sending. |
| 96000 | 61 6e 64 20 72 65 63 65 69 76 69 6e 67 20 6f 66 20 52 49 50 20 70 61 63 6b 65 74 73 20 77 69 6c | and.receiving.of.RIP.packets.wil |
| 96020 | 6c 20 62 65 20 65 6e 61 62 6c 65 64 20 6f 6e 20 74 68 65 20 70 6f 72 74 20 73 70 65 63 69 66 69 | l.be.enabled.on.the.port.specifi |
| 96040 | 65 64 20 69 6e 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | ed.in.this.command..This.command |
| 96060 | 20 73 70 65 63 69 66 69 65 73 20 61 20 52 49 50 20 6e 65 69 67 68 62 6f 72 2e 20 57 68 65 6e 20 | .specifies.a.RIP.neighbor..When. |
| 96080 | 61 20 6e 65 69 67 68 62 6f 72 20 64 6f 65 73 6e e2 80 99 74 20 75 6e 64 65 72 73 74 61 6e 64 20 | a.neighbor.doesn...t.understand. |
| 960a0 | 6d 75 6c 74 69 63 61 73 74 2c 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 20 | multicast,.this.command.is.used. |
| 960c0 | 74 6f 20 73 70 65 63 69 66 79 20 6e 65 69 67 68 62 6f 72 73 2e 20 49 6e 20 73 6f 6d 65 20 63 61 | to.specify.neighbors..In.some.ca |
| 960e0 | 73 65 73 2c 20 6e 6f 74 20 61 6c 6c 20 72 6f 75 74 65 72 73 20 77 69 6c 6c 20 62 65 20 61 62 6c | ses,.not.all.routers.will.be.abl |
| 96100 | 65 20 74 6f 20 75 6e 64 65 72 73 74 61 6e 64 20 6d 75 6c 74 69 63 61 73 74 69 6e 67 2c 20 77 68 | e.to.understand.multicasting,.wh |
| 96120 | 65 72 65 20 70 61 63 6b 65 74 73 20 61 72 65 20 73 65 6e 74 20 74 6f 20 61 20 6e 65 74 77 6f 72 | ere.packets.are.sent.to.a.networ |
| 96140 | 6b 20 6f 72 20 61 20 67 72 6f 75 70 20 6f 66 20 61 64 64 72 65 73 73 65 73 2e 20 49 6e 20 61 20 | k.or.a.group.of.addresses..In.a. |
| 96160 | 73 69 74 75 61 74 69 6f 6e 20 77 68 65 72 65 20 61 20 6e 65 69 67 68 62 6f 72 20 63 61 6e 6e 6f | situation.where.a.neighbor.canno |
| 96180 | 74 20 70 72 6f 63 65 73 73 20 6d 75 6c 74 69 63 61 73 74 20 70 61 63 6b 65 74 73 2c 20 69 74 20 | t.process.multicast.packets,.it. |
| 961a0 | 69 73 20 6e 65 63 65 73 73 61 72 79 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 61 20 64 69 72 65 | is.necessary.to.establish.a.dire |
| 961c0 | 63 74 20 6c 69 6e 6b 20 62 65 74 77 65 65 6e 20 72 6f 75 74 65 72 73 2e 00 54 68 69 73 20 63 6f | ct.link.between.routers..This.co |
| 961e0 | 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 20 64 65 66 61 75 6c 74 20 77 65 69 67 68 74 | mmand.specifies.a.default.weight |
| 96200 | 20 76 61 6c 75 65 20 66 6f 72 20 74 68 65 20 6e 65 69 67 68 62 6f 72 e2 80 99 73 20 72 6f 75 74 | .value.for.the.neighbor...s.rout |
| 96220 | 65 73 2e 20 54 68 65 20 6e 75 6d 62 65 72 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 35 35 | es..The.number.range.is.1.to.655 |
| 96240 | 33 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 20 6d 61 78 | 35..This.command.specifies.a.max |
| 96260 | 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 70 72 65 66 69 78 65 73 20 77 65 20 63 61 6e 20 72 | imum.number.of.prefixes.we.can.r |
| 96280 | 65 63 65 69 76 65 20 66 72 6f 6d 20 61 20 67 69 76 65 6e 20 70 65 65 72 2e 20 49 66 20 74 68 69 | eceive.from.a.given.peer..If.thi |
| 962a0 | 73 20 6e 75 6d 62 65 72 20 69 73 20 65 78 63 65 65 64 65 64 2c 20 74 68 65 20 42 47 50 20 73 65 | s.number.is.exceeded,.the.BGP.se |
| 962c0 | 73 73 69 6f 6e 20 77 69 6c 6c 20 62 65 20 64 65 73 74 72 6f 79 65 64 2e 20 54 68 65 20 6e 75 6d | ssion.will.be.destroyed..The.num |
| 962e0 | 62 65 72 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 34 32 39 34 39 36 37 32 39 35 2e 00 54 68 | ber.range.is.1.to.4294967295..Th |
| 96300 | 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 6c 6c 20 69 6e 74 65 72 66 61 | is.command.specifies.all.interfa |
| 96320 | 63 65 73 20 61 73 20 70 61 73 73 69 76 65 20 62 79 20 64 65 66 61 75 6c 74 2e 20 42 65 63 61 75 | ces.as.passive.by.default..Becau |
| 96340 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 68 61 6e 67 65 73 20 74 68 65 20 63 6f 6e 66 | se.this.command.changes.the.conf |
| 96360 | 69 67 75 72 61 74 69 6f 6e 20 6c 6f 67 69 63 20 74 6f 20 61 20 64 65 66 61 75 6c 74 20 70 61 73 | iguration.logic.to.a.default.pas |
| 96380 | 73 69 76 65 3b 20 74 68 65 72 65 66 6f 72 65 2c 20 69 6e 74 65 72 66 61 63 65 73 20 77 68 65 72 | sive;.therefore,.interfaces.wher |
| 963a0 | 65 20 72 6f 75 74 65 72 20 61 64 6a 61 63 65 6e 63 69 65 73 20 61 72 65 20 65 78 70 65 63 74 65 | e.router.adjacencies.are.expecte |
| 963c0 | 64 20 6e 65 65 64 20 74 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 77 69 74 68 20 74 68 65 | d.need.to.be.configured.with.the |
| 963e0 | 20 3a 63 66 67 63 6d 64 3a 60 70 61 73 73 69 76 65 2d 69 6e 74 65 72 66 61 63 65 2d 65 78 63 6c | .:cfgcmd:`passive-interface-excl |
| 96400 | 75 64 65 60 20 63 6f 6d 6d 61 6e 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 | ude`.command..This.command.speci |
| 96420 | 66 69 65 73 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 20 74 6f 20 70 61 73 73 69 76 65 20 6d | fies.all.interfaces.to.passive.m |
| 96440 | 6f 64 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 6e 20 61 | ode..This.command.specifies.an.a |
| 96460 | 67 67 72 65 67 61 74 65 20 61 64 64 72 65 73 73 20 61 6e 64 20 70 72 6f 76 69 64 65 73 20 74 68 | ggregate.address.and.provides.th |
| 96480 | 61 74 20 6c 6f 6e 67 65 72 2d 70 72 65 66 69 78 65 73 20 69 6e 73 69 64 65 20 6f 66 20 74 68 65 | at.longer-prefixes.inside.of.the |
| 964a0 | 20 61 67 67 72 65 67 61 74 65 20 61 64 64 72 65 73 73 20 61 72 65 20 73 75 70 70 72 65 73 73 65 | .aggregate.address.are.suppresse |
| 964c0 | 64 20 62 65 66 6f 72 65 20 73 65 6e 64 69 6e 67 20 42 47 50 20 75 70 64 61 74 65 73 20 6f 75 74 | d.before.sending.BGP.updates.out |
| 964e0 | 20 74 6f 20 70 65 65 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 | .to.peers..This.command.specifie |
| 96500 | 73 20 61 6e 20 61 67 67 72 65 67 61 74 65 20 61 64 64 72 65 73 73 20 77 69 74 68 20 61 20 6d 61 | s.an.aggregate.address.with.a.ma |
| 96520 | 74 68 65 6d 61 74 69 63 61 6c 20 73 65 74 20 6f 66 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 | thematical.set.of.autonomous.sys |
| 96540 | 74 65 6d 73 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 75 6d 6d 61 72 69 7a 65 73 20 74 68 | tems..This.command.summarizes.th |
| 96560 | 65 20 41 53 5f 50 41 54 48 20 61 74 74 72 69 62 75 74 65 73 20 6f 66 20 61 6c 6c 20 74 68 65 20 | e.AS_PATH.attributes.of.all.the. |
| 96580 | 69 6e 64 69 76 69 64 75 61 6c 20 72 6f 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | individual.routes..This.command. |
| 965a0 | 73 70 65 63 69 66 69 65 73 20 61 6e 20 61 67 67 72 65 67 61 74 65 20 61 64 64 72 65 73 73 2e 20 | specifies.an.aggregate.address.. |
| 965c0 | 54 68 65 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 61 6c 73 6f 20 61 6e 6e 6f 75 6e 63 65 20 6c 6f | The.router.will.also.announce.lo |
| 965e0 | 6e 67 65 72 2d 70 72 65 66 69 78 65 73 20 69 6e 73 69 64 65 20 6f 66 20 74 68 65 20 61 67 67 72 | nger-prefixes.inside.of.the.aggr |
| 96600 | 65 67 61 74 65 20 61 64 64 72 65 73 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 | egate.address..This.command.spec |
| 96620 | 69 66 69 65 73 20 61 74 74 72 69 62 75 74 65 73 20 74 6f 20 62 65 20 6c 65 66 74 20 75 6e 63 68 | ifies.attributes.to.be.left.unch |
| 96640 | 61 6e 67 65 64 20 66 6f 72 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 73 20 73 65 6e 74 20 74 6f | anged.for.advertisements.sent.to |
| 96660 | 20 61 20 70 65 65 72 20 6f 72 20 70 65 65 72 20 67 72 6f 75 70 2e 00 54 68 69 73 20 63 6f 6d 6d | .a.peer.or.peer.group..This.comm |
| 96680 | 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 63 69 72 63 75 69 74 20 74 79 70 65 20 66 6f 72 20 69 | and.specifies.circuit.type.for.i |
| 966a0 | 6e 74 65 72 66 61 63 65 3a 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 | nterface:.This.command.specifies |
| 966c0 | 20 63 6c 75 73 74 65 72 20 49 44 20 77 68 69 63 68 20 69 64 65 6e 74 69 66 69 65 73 20 61 20 63 | .cluster.ID.which.identifies.a.c |
| 966e0 | 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 72 6f 75 74 65 20 72 65 66 6c 65 63 74 6f 72 73 20 61 6e | ollection.of.route.reflectors.an |
| 96700 | 64 20 74 68 65 69 72 20 63 6c 69 65 6e 74 73 2c 20 61 6e 64 20 69 73 20 75 73 65 64 20 62 79 20 | d.their.clients,.and.is.used.by. |
| 96720 | 72 6f 75 74 65 20 72 65 66 6c 65 63 74 6f 72 73 20 74 6f 20 61 76 6f 69 64 20 6c 6f 6f 70 69 6e | route.reflectors.to.avoid.loopin |
| 96740 | 67 2e 20 42 79 20 64 65 66 61 75 6c 74 20 63 6c 75 73 74 65 72 20 49 44 20 69 73 20 73 65 74 20 | g..By.default.cluster.ID.is.set. |
| 96760 | 74 6f 20 74 68 65 20 42 47 50 20 72 6f 75 74 65 72 20 69 64 20 76 61 6c 75 65 2c 20 62 75 74 20 | to.the.BGP.router.id.value,.but. |
| 96780 | 63 61 6e 20 62 65 20 73 65 74 20 74 6f 20 61 6e 20 61 72 62 69 74 72 61 72 79 20 33 32 2d 62 69 | can.be.set.to.an.arbitrary.32-bi |
| 967a0 | 74 20 76 61 6c 75 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 | t.value..This.command.specifies. |
| 967c0 | 68 6f 6c 64 2d 74 69 6d 65 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 74 69 6d 65 72 20 | hold-time.in.seconds..The.timer. |
| 967e0 | 72 61 6e 67 65 20 69 73 20 34 20 74 6f 20 36 35 35 33 35 2e 20 54 68 65 20 64 65 66 61 75 6c 74 | range.is.4.to.65535..The.default |
| 96800 | 20 76 61 6c 75 65 20 69 73 20 31 38 30 20 73 65 63 6f 6e 64 2e 20 49 66 20 79 6f 75 20 73 65 74 | .value.is.180.second..If.you.set |
| 96820 | 20 76 61 6c 75 65 20 74 6f 20 30 20 56 79 4f 53 20 77 69 6c 6c 20 6e 6f 74 20 68 6f 6c 64 20 72 | .value.to.0.VyOS.will.not.hold.r |
| 96840 | 6f 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 69 6e | outes..This.command.specifies.in |
| 96860 | 74 65 72 66 61 63 65 20 61 73 20 70 61 73 73 69 76 65 2e 20 50 61 73 73 69 76 65 20 69 6e 74 65 | terface.as.passive..Passive.inte |
| 96880 | 72 66 61 63 65 20 61 64 76 65 72 74 69 73 65 73 20 69 74 73 20 61 64 64 72 65 73 73 2c 20 62 75 | rface.advertises.its.address,.bu |
| 968a0 | 74 20 64 6f 65 73 20 6e 6f 74 20 72 75 6e 20 74 68 65 20 4f 53 50 46 20 70 72 6f 74 6f 63 6f 6c | t.does.not.run.the.OSPF.protocol |
| 968c0 | 20 28 61 64 6a 61 63 65 6e 63 69 65 73 20 61 72 65 20 6e 6f 74 20 66 6f 72 6d 65 64 20 61 6e 64 | .(adjacencies.are.not.formed.and |
| 968e0 | 20 68 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 61 72 65 20 6e 6f 74 20 67 65 6e 65 72 61 74 65 64 | .hello.packets.are.not.generated |
| 96900 | 29 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 6b 65 65 70 2d 61 | )..This.command.specifies.keep-a |
| 96920 | 6c 69 76 65 20 74 69 6d 65 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 74 69 6d 65 72 20 | live.time.in.seconds..The.timer. |
| 96940 | 63 61 6e 20 72 61 6e 67 65 20 66 72 6f 6d 20 34 20 74 6f 20 36 35 35 33 35 2e 20 54 68 65 20 64 | can.range.from.4.to.65535..The.d |
| 96960 | 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 30 20 73 65 63 6f 6e 64 2e 00 54 68 69 73 20 | efault.value.is.60.second..This. |
| 96980 | 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 6d 65 74 72 69 63 20 28 4d 45 44 29 20 66 | command.specifies.metric.(MED).f |
| 969a0 | 6f 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 2e 20 54 68 65 20 6d 65 74 | or.redistributed.routes..The.met |
| 969c0 | 72 69 63 20 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 34 32 39 34 39 36 37 32 39 35 2e 20 54 68 | ric.range.is.0.to.4294967295..Th |
| 969e0 | 65 72 65 20 61 72 65 20 73 69 78 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 | ere.are.six.modes.available.for. |
| 96a00 | 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c | route.source:.connected,.kernel, |
| 96a20 | 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2c 20 74 61 62 6c 65 2e 00 54 68 69 73 20 | .ospf,.rip,.static,.table..This. |
| 96a40 | 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 6d 65 74 72 69 63 20 66 6f 72 20 72 65 64 | command.specifies.metric.for.red |
| 96a60 | 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e | istributed.routes.from.the.given |
| 96a80 | 20 72 6f 75 74 65 20 73 6f 75 72 63 65 2e 20 54 68 65 72 65 20 61 72 65 20 66 69 76 65 20 6d 6f | .route.source..There.are.five.mo |
| 96aa0 | 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 | des.available.for.route.source:. |
| 96ac0 | 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 73 74 | bgp,.connected,.kernel,.ospf,.st |
| 96ae0 | 61 74 69 63 2e 20 54 68 65 20 6d 65 74 72 69 63 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 | atic..The.metric.range.is.1.to.1 |
| 96b00 | 36 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 6d 65 74 72 69 63 | 6..This.command.specifies.metric |
| 96b20 | 20 66 6f 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 20 66 72 6f 6d 20 74 | .for.redistributed.routes.from.t |
| 96b40 | 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 2e 20 54 68 65 72 65 20 61 72 65 | he.given.route.source..There.are |
| 96b60 | 20 66 69 76 65 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 | .five.modes.available.for.route. |
| 96b80 | 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 | source:.bgp,.connected,.kernel,. |
| 96ba0 | 72 69 70 2c 20 73 74 61 74 69 63 2e 20 54 68 65 20 6d 65 74 72 69 63 20 72 61 6e 67 65 20 69 73 | rip,.static..The.metric.range.is |
| 96bc0 | 20 31 20 74 6f 20 31 36 37 37 37 32 31 34 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 | .1.to.16777214..This.command.spe |
| 96be0 | 63 69 66 69 65 73 20 6d 65 74 72 69 63 20 66 6f 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 | cifies.metric.for.redistributed. |
| 96c00 | 72 6f 75 74 65 73 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 | routes.from.the.given.route.sour |
| 96c20 | 63 65 2e 20 54 68 65 72 65 20 61 72 65 20 73 69 78 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c | ce..There.are.six.modes.availabl |
| 96c40 | 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 | e.for.route.source:.bgp,.connect |
| 96c60 | 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2e 20 54 | ed,.kernel,.ospf,.rip,.static..T |
| 96c80 | 68 65 20 6d 65 74 72 69 63 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 36 37 37 37 32 31 35 | he.metric.range.is.1.to.16777215 |
| 96ca0 | 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 6d 65 74 72 69 63 20 | ..This.command.specifies.metric. |
| 96cc0 | 74 79 70 65 20 66 6f 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 2e 20 44 | type.for.redistributed.routes..D |
| 96ce0 | 69 66 66 65 72 65 6e 63 65 20 62 65 74 77 65 65 6e 20 74 77 6f 20 6d 65 74 72 69 63 20 74 79 70 | ifference.between.two.metric.typ |
| 96d00 | 65 73 20 74 68 61 74 20 6d 65 74 72 69 63 20 74 79 70 65 20 31 20 69 73 20 61 20 6d 65 74 72 69 | es.that.metric.type.1.is.a.metri |
| 96d20 | 63 20 77 68 69 63 68 20 69 73 20 22 63 6f 6d 6d 65 6e 73 75 72 61 62 6c 65 22 20 77 69 74 68 20 | c.which.is."commensurable".with. |
| 96d40 | 69 6e 6e 65 72 20 4f 53 50 46 20 6c 69 6e 6b 73 2e 20 57 68 65 6e 20 63 61 6c 63 75 6c 61 74 69 | inner.OSPF.links..When.calculati |
| 96d60 | 6e 67 20 61 20 6d 65 74 72 69 63 20 74 6f 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 64 65 73 74 | ng.a.metric.to.the.external.dest |
| 96d80 | 69 6e 61 74 69 6f 6e 2c 20 74 68 65 20 66 75 6c 6c 20 70 61 74 68 20 6d 65 74 72 69 63 20 69 73 | ination,.the.full.path.metric.is |
| 96da0 | 20 63 61 6c 63 75 6c 61 74 65 64 20 61 73 20 61 20 6d 65 74 72 69 63 20 73 75 6d 20 70 61 74 68 | .calculated.as.a.metric.sum.path |
| 96dc0 | 20 6f 66 20 61 20 72 6f 75 74 65 72 20 77 68 69 63 68 20 68 61 64 20 61 64 76 65 72 74 69 73 65 | .of.a.router.which.had.advertise |
| 96de0 | 64 20 74 68 69 73 20 6c 69 6e 6b 20 70 6c 75 73 20 74 68 65 20 6c 69 6e 6b 20 6d 65 74 72 69 63 | d.this.link.plus.the.link.metric |
| 96e00 | 2e 20 54 68 75 73 2c 20 61 20 72 6f 75 74 65 20 77 69 74 68 20 74 68 65 20 6c 65 61 73 74 20 73 | ..Thus,.a.route.with.the.least.s |
| 96e20 | 75 6d 6d 61 72 79 20 6d 65 74 72 69 63 20 77 69 6c 6c 20 62 65 20 73 65 6c 65 63 74 65 64 2e 20 | ummary.metric.will.be.selected.. |
| 96e40 | 49 66 20 65 78 74 65 72 6e 61 6c 20 6c 69 6e 6b 20 69 73 20 61 64 76 65 72 74 69 73 65 64 20 77 | If.external.link.is.advertised.w |
| 96e60 | 69 74 68 20 6d 65 74 72 69 63 20 74 79 70 65 20 32 20 74 68 65 20 70 61 74 68 20 69 73 20 73 65 | ith.metric.type.2.the.path.is.se |
| 96e80 | 6c 65 63 74 65 64 20 77 68 69 63 68 20 6c 69 65 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 6f | lected.which.lies.through.the.ro |
| 96ea0 | 75 74 65 72 20 77 68 69 63 68 20 61 64 76 65 72 74 69 73 65 64 20 74 68 69 73 20 6c 69 6e 6b 20 | uter.which.advertised.this.link. |
| 96ec0 | 77 69 74 68 20 74 68 65 20 6c 65 61 73 74 20 6d 65 74 72 69 63 20 64 65 73 70 69 74 65 20 6f 66 | with.the.least.metric.despite.of |
| 96ee0 | 20 74 68 65 20 66 61 63 74 20 74 68 61 74 20 69 6e 74 65 72 6e 61 6c 20 70 61 74 68 20 74 6f 20 | .the.fact.that.internal.path.to. |
| 96f00 | 74 68 69 73 20 72 6f 75 74 65 72 20 69 73 20 6c 6f 6e 67 65 72 20 28 77 69 74 68 20 6d 6f 72 65 | this.router.is.longer.(with.more |
| 96f20 | 20 63 6f 73 74 29 2e 20 48 6f 77 65 76 65 72 2c 20 69 66 20 74 77 6f 20 72 6f 75 74 65 72 73 20 | .cost)..However,.if.two.routers. |
| 96f40 | 61 64 76 65 72 74 69 73 65 64 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 6c 69 6e 6b 20 61 6e 64 20 | advertised.an.external.link.and. |
| 96f60 | 77 69 74 68 20 6d 65 74 72 69 63 20 74 79 70 65 20 32 20 74 68 65 20 70 72 65 66 65 72 65 6e 63 | with.metric.type.2.the.preferenc |
| 96f80 | 65 20 69 73 20 67 69 76 65 6e 20 74 6f 20 74 68 65 20 70 61 74 68 20 77 68 69 63 68 20 6c 69 65 | e.is.given.to.the.path.which.lie |
| 96fa0 | 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 6f 75 74 65 72 20 77 69 74 68 20 61 20 73 68 6f 72 | s.through.the.router.with.a.shor |
| 96fc0 | 74 65 72 20 69 6e 74 65 72 6e 61 6c 20 70 61 74 68 2e 20 49 66 20 74 77 6f 20 64 69 66 66 65 72 | ter.internal.path..If.two.differ |
| 96fe0 | 65 6e 74 20 72 6f 75 74 65 72 73 20 61 64 76 65 72 74 69 73 65 64 20 74 77 6f 20 6c 69 6e 6b 73 | ent.routers.advertised.two.links |
| 97000 | 20 74 6f 20 74 68 65 20 73 61 6d 65 20 65 78 74 65 72 6e 61 6c 20 64 65 73 74 69 6d 61 74 69 6f | .to.the.same.external.destimatio |
| 97020 | 6e 20 62 75 74 20 77 69 74 68 20 64 69 66 66 65 72 65 6e 74 20 6d 65 74 72 69 63 20 74 79 70 65 | n.but.with.different.metric.type |
| 97040 | 2c 20 6d 65 74 72 69 63 20 74 79 70 65 20 31 20 69 73 20 70 72 65 66 65 72 72 65 64 2e 20 49 66 | ,.metric.type.1.is.preferred..If |
| 97060 | 20 74 79 70 65 20 6f 66 20 61 20 6d 65 74 72 69 63 20 6c 65 66 74 20 75 6e 64 65 66 69 6e 65 64 | .type.of.a.metric.left.undefined |
| 97080 | 20 74 68 65 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 63 6f 6e 73 69 64 65 72 20 74 68 65 73 65 20 | .the.router.will.consider.these. |
| 970a0 | 65 78 74 65 72 6e 61 6c 20 6c 69 6e 6b 73 20 74 6f 20 68 61 76 65 20 61 20 64 65 66 61 75 6c 74 | external.links.to.have.a.default |
| 970c0 | 20 6d 65 74 72 69 63 20 74 79 70 65 20 32 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 | .metric.type.2..This.command.spe |
| 970e0 | 63 69 66 69 65 73 20 6e 65 74 77 6f 72 6b 20 74 79 70 65 20 74 6f 20 50 6f 69 6e 74 2d 74 6f 2d | cifies.network.type.to.Point-to- |
| 97100 | 50 6f 69 6e 74 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 6e 65 74 77 6f 72 6b 20 74 79 70 65 20 | Point..The.default.network.type. |
| 97120 | 69 73 20 62 72 6f 61 64 63 61 73 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 | is.broadcast..This.command.speci |
| 97140 | 66 69 65 73 20 74 68 61 74 20 42 47 50 20 63 6f 6e 73 69 64 65 72 73 20 74 68 65 20 4d 45 44 20 | fies.that.BGP.considers.the.MED. |
| 97160 | 77 68 65 6e 20 63 6f 6d 70 61 72 69 6e 67 20 72 6f 75 74 65 73 20 6f 72 69 67 69 6e 61 74 65 64 | when.comparing.routes.originated |
| 97180 | 20 66 72 6f 6d 20 64 69 66 66 65 72 65 6e 74 20 73 75 62 2d 41 53 73 20 77 69 74 68 69 6e 20 74 | .from.different.sub-ASs.within.t |
| 971a0 | 68 65 20 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e 20 74 6f 20 77 68 69 63 68 20 74 68 69 73 20 42 | he.confederation.to.which.this.B |
| 971c0 | 47 50 20 73 70 65 61 6b 65 72 20 62 65 6c 6f 6e 67 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 | GP.speaker.belongs..The.default. |
| 971e0 | 73 74 61 74 65 2c 20 77 68 65 72 65 20 74 68 65 20 4d 45 44 20 61 74 74 72 69 62 75 74 65 20 69 | state,.where.the.MED.attribute.i |
| 97200 | 73 20 6e 6f 74 20 63 6f 6e 73 69 64 65 72 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 | s.not.considered..This.command.s |
| 97220 | 70 65 63 69 66 69 65 73 20 74 68 61 74 20 42 47 50 20 64 65 63 69 73 69 6f 6e 20 70 72 6f 63 65 | pecifies.that.BGP.decision.proce |
| 97240 | 73 73 20 73 68 6f 75 6c 64 20 63 6f 6e 73 69 64 65 72 20 70 61 74 68 73 20 6f 66 20 65 71 75 61 | ss.should.consider.paths.of.equa |
| 97260 | 6c 20 41 53 5f 50 41 54 48 20 6c 65 6e 67 74 68 20 63 61 6e 64 69 64 61 74 65 73 20 66 6f 72 20 | l.AS_PATH.length.candidates.for. |
| 97280 | 6d 75 6c 74 69 70 61 74 68 20 63 6f 6d 70 75 74 61 74 69 6f 6e 2e 20 57 69 74 68 6f 75 74 20 74 | multipath.computation..Without.t |
| 972a0 | 68 65 20 6b 6e 6f 62 2c 20 74 68 65 20 65 6e 74 69 72 65 20 41 53 5f 50 41 54 48 20 6d 75 73 74 | he.knob,.the.entire.AS_PATH.must |
| 972c0 | 20 6d 61 74 63 68 20 66 6f 72 20 6d 75 6c 74 69 70 61 74 68 20 63 6f 6d 70 75 74 61 74 69 6f 6e | .match.for.multipath.computation |
| 972e0 | 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 61 74 20 61 20 | ..This.command.specifies.that.a. |
| 97300 | 72 6f 75 74 65 20 77 69 74 68 20 61 20 4d 45 44 20 69 73 20 61 6c 77 61 79 73 20 63 6f 6e 73 69 | route.with.a.MED.is.always.consi |
| 97320 | 64 65 72 65 64 20 74 6f 20 62 65 20 62 65 74 74 65 72 20 74 68 61 6e 20 61 20 72 6f 75 74 65 20 | dered.to.be.better.than.a.route. |
| 97340 | 77 69 74 68 6f 75 74 20 61 20 4d 45 44 20 62 79 20 63 61 75 73 69 6e 67 20 74 68 65 20 6d 69 73 | without.a.MED.by.causing.the.mis |
| 97360 | 73 69 6e 67 20 4d 45 44 20 61 74 74 72 69 62 75 74 65 20 74 6f 20 68 61 76 65 20 61 20 76 61 6c | sing.MED.attribute.to.have.a.val |
| 97380 | 75 65 20 6f 66 20 69 6e 66 69 6e 69 74 79 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 73 74 61 74 | ue.of.infinity..The.default.stat |
| 973a0 | 65 2c 20 77 68 65 72 65 20 74 68 65 20 6d 69 73 73 69 6e 67 20 4d 45 44 20 61 74 74 72 69 62 75 | e,.where.the.missing.MED.attribu |
| 973c0 | 74 65 20 69 73 20 63 6f 6e 73 69 64 65 72 65 64 20 74 6f 20 68 61 76 65 20 61 20 76 61 6c 75 65 | te.is.considered.to.have.a.value |
| 973e0 | 20 6f 66 20 7a 65 72 6f 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 | .of.zero..This.command.specifies |
| 97400 | 20 74 68 61 74 20 72 6f 75 74 65 20 75 70 64 61 74 65 73 20 72 65 63 65 69 76 65 64 20 66 72 6f | .that.route.updates.received.fro |
| 97420 | 6d 20 74 68 69 73 20 6e 65 69 67 68 62 6f 72 20 77 69 6c 6c 20 62 65 20 73 74 6f 72 65 64 20 75 | m.this.neighbor.will.be.stored.u |
| 97440 | 6e 6d 6f 64 69 66 69 65 64 2c 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 69 6e 62 | nmodified,.regardless.of.the.inb |
| 97460 | 6f 75 6e 64 20 70 6f 6c 69 63 79 2e 20 57 68 65 6e 20 69 6e 62 6f 75 6e 64 20 73 6f 66 74 20 72 | ound.policy..When.inbound.soft.r |
| 97480 | 65 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 65 6e 61 62 6c 65 64 2c 20 74 68 65 20 73 | econfiguration.is.enabled,.the.s |
| 974a0 | 74 6f 72 65 64 20 75 70 64 61 74 65 73 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 62 79 20 74 | tored.updates.are.processed.by.t |
| 974c0 | 68 65 20 6e 65 77 20 70 6f 6c 69 63 79 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 6f 20 63 | he.new.policy.configuration.to.c |
| 974e0 | 72 65 61 74 65 20 6e 65 77 20 69 6e 62 6f 75 6e 64 20 75 70 64 61 74 65 73 2e 00 54 68 69 73 20 | reate.new.inbound.updates..This. |
| 97500 | 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 61 74 20 73 69 6d 70 6c 65 20 70 61 | command.specifies.that.simple.pa |
| 97520 | 73 73 77 6f 72 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 68 6f 75 6c 64 20 62 65 20 | ssword.authentication.should.be. |
| 97540 | 75 73 65 64 20 66 6f 72 20 74 68 65 20 67 69 76 65 6e 20 61 72 65 61 2e 20 54 68 65 20 70 61 73 | used.for.the.given.area..The.pas |
| 97560 | 73 77 6f 72 64 20 6d 75 73 74 20 61 6c 73 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e | sword.must.also.be.configured.on |
| 97580 | 20 61 20 70 65 72 2d 69 6e 74 65 72 66 61 63 65 20 62 61 73 69 73 2e 00 54 68 69 73 20 63 6f 6d | .a.per-interface.basis..This.com |
| 975a0 | 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 61 74 20 74 68 65 20 63 6f 6d 6d 75 6e 69 74 | mand.specifies.that.the.communit |
| 975c0 | 79 20 61 74 74 72 69 62 75 74 65 20 73 68 6f 75 6c 64 20 6e 6f 74 20 62 65 20 73 65 6e 74 20 69 | y.attribute.should.not.be.sent.i |
| 975e0 | 6e 20 72 6f 75 74 65 20 75 70 64 61 74 65 73 20 74 6f 20 61 20 70 65 65 72 2e 20 42 79 20 64 65 | n.route.updates.to.a.peer..By.de |
| 97600 | 66 61 75 6c 74 20 63 6f 6d 6d 75 6e 69 74 79 20 61 74 74 72 69 62 75 74 65 20 69 73 20 73 65 6e | fault.community.attribute.is.sen |
| 97620 | 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 61 74 20 74 | t..This.command.specifies.that.t |
| 97640 | 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e 20 70 61 74 68 20 | he.length.of.confederation.path. |
| 97660 | 73 65 74 73 20 61 6e 64 20 73 65 71 75 65 6e 63 65 73 20 73 68 6f 75 6c 64 20 62 65 20 74 61 6b | sets.and.sequences.should.be.tak |
| 97680 | 65 6e 20 69 6e 74 6f 20 61 63 63 6f 75 6e 74 20 64 75 72 69 6e 67 20 74 68 65 20 42 47 50 20 62 | en.into.account.during.the.BGP.b |
| 976a0 | 65 73 74 20 70 61 74 68 20 64 65 63 69 73 69 6f 6e 20 70 72 6f 63 65 73 73 2e 00 54 68 69 73 20 | est.path.decision.process..This. |
| 976c0 | 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 | command.specifies.the.IP.address |
| 976e0 | 20 6f 66 20 74 68 65 20 6e 65 69 67 68 62 6f 72 69 6e 67 20 64 65 76 69 63 65 2e 00 54 68 69 73 | .of.the.neighboring.device..This |
| 97700 | 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 4f 53 50 46 20 65 6e 61 62 | .command.specifies.the.OSPF.enab |
| 97720 | 6c 65 64 20 69 6e 74 65 72 66 61 63 65 28 73 29 2e 20 49 66 20 74 68 65 20 69 6e 74 65 72 66 61 | led.interface(s)..If.the.interfa |
| 97740 | 63 65 20 68 61 73 20 61 6e 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 64 65 66 69 6e 65 64 20 72 | ce.has.an.address.from.defined.r |
| 97760 | 61 6e 67 65 20 74 68 65 6e 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 4f 53 | ange.then.the.command.enables.OS |
| 97780 | 50 46 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 73 6f 20 72 6f 75 74 65 72 20 63 | PF.on.this.interface.so.router.c |
| 977a0 | 61 6e 20 70 72 6f 76 69 64 65 20 6e 65 74 77 6f 72 6b 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 | an.provide.network.information.t |
| 977c0 | 6f 20 74 68 65 20 6f 74 68 65 72 20 6f 73 70 66 20 72 6f 75 74 65 72 73 20 76 69 61 20 74 68 69 | o.the.other.ospf.routers.via.thi |
| 977e0 | 73 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 | s.interface..This.command.specif |
| 97800 | 69 65 73 20 74 68 65 20 4f 53 50 46 76 33 20 65 6e 61 62 6c 65 64 20 69 6e 74 65 72 66 61 63 65 | ies.the.OSPFv3.enabled.interface |
| 97820 | 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 61 6c 73 6f 20 75 73 65 64 20 74 6f 20 65 | ..This.command.is.also.used.to.e |
| 97840 | 6e 61 62 6c 65 20 74 68 65 20 4f 53 50 46 20 70 72 6f 63 65 73 73 2e 20 54 68 65 20 61 72 65 61 | nable.the.OSPF.process..The.area |
| 97860 | 20 6e 75 6d 62 65 72 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 64 65 63 69 | .number.can.be.specified.in.deci |
| 97880 | 6d 61 6c 20 6e 6f 74 61 74 69 6f 6e 20 69 6e 20 74 68 65 20 72 61 6e 67 65 20 66 72 6f 6d 20 30 | mal.notation.in.the.range.from.0 |
| 978a0 | 20 74 6f 20 34 32 39 34 39 36 37 32 39 35 2e 20 4f 72 20 69 74 20 63 61 6e 20 62 65 20 73 70 65 | .to.4294967295..Or.it.can.be.spe |
| 978c0 | 63 69 66 69 65 64 20 69 6e 20 64 6f 74 74 65 64 20 64 65 63 69 6d 61 6c 20 6e 6f 74 61 74 69 6f | cified.in.dotted.decimal.notatio |
| 978e0 | 6e 20 73 69 6d 69 6c 61 72 20 74 6f 20 69 70 20 61 64 64 72 65 73 73 2e 00 54 68 69 73 20 63 6f | n.similar.to.ip.address..This.co |
| 97900 | 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 61 72 65 61 20 74 6f 20 62 65 20 61 | mmand.specifies.the.area.to.be.a |
| 97920 | 20 4e 53 53 41 20 54 6f 74 61 6c 6c 79 20 53 74 75 62 20 41 72 65 61 2e 20 41 42 52 73 20 66 6f | .NSSA.Totally.Stub.Area..ABRs.fo |
| 97940 | 72 20 73 75 63 68 20 61 6e 20 61 72 65 61 20 64 6f 20 6e 6f 74 20 6e 65 65 64 20 74 6f 20 70 61 | r.such.an.area.do.not.need.to.pa |
| 97960 | 73 73 20 4e 65 74 77 6f 72 6b 2d 53 75 6d 6d 61 72 79 20 28 74 79 70 65 2d 33 29 20 4c 53 41 73 | ss.Network-Summary.(type-3).LSAs |
| 97980 | 20 28 65 78 63 65 70 74 20 74 68 65 20 64 65 66 61 75 6c 74 20 73 75 6d 6d 61 72 79 20 72 6f 75 | .(except.the.default.summary.rou |
| 979a0 | 74 65 29 2c 20 41 53 42 52 2d 53 75 6d 6d 61 72 79 20 4c 53 41 73 20 28 74 79 70 65 2d 34 29 20 | te),.ASBR-Summary.LSAs.(type-4). |
| 979c0 | 61 6e 64 20 41 53 2d 45 78 74 65 72 6e 61 6c 20 4c 53 41 73 20 28 74 79 70 65 2d 35 29 20 69 6e | and.AS-External.LSAs.(type-5).in |
| 979e0 | 74 6f 20 74 68 65 20 61 72 65 61 2e 20 42 75 74 20 54 79 70 65 2d 37 20 4c 53 41 73 20 74 68 61 | to.the.area..But.Type-7.LSAs.tha |
| 97a00 | 74 20 63 6f 6e 76 65 72 74 20 74 6f 20 54 79 70 65 2d 35 20 61 74 20 74 68 65 20 4e 53 53 41 20 | t.convert.to.Type-5.at.the.NSSA. |
| 97a20 | 41 42 52 20 61 72 65 20 61 6c 6c 6f 77 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 | ABR.are.allowed..This.command.sp |
| 97a40 | 65 63 69 66 69 65 73 20 74 68 65 20 61 72 65 61 20 74 6f 20 62 65 20 61 20 4e 6f 74 20 53 6f 20 | ecifies.the.area.to.be.a.Not.So. |
| 97a60 | 53 74 75 62 62 79 20 41 72 65 61 2e 20 45 78 74 65 72 6e 61 6c 20 72 6f 75 74 69 6e 67 20 69 6e | Stubby.Area..External.routing.in |
| 97a80 | 66 6f 72 6d 61 74 69 6f 6e 20 69 73 20 69 6d 70 6f 72 74 65 64 20 69 6e 74 6f 20 61 6e 20 4e 53 | formation.is.imported.into.an.NS |
| 97aa0 | 53 41 20 69 6e 20 54 79 70 65 2d 37 20 4c 53 41 73 2e 20 54 79 70 65 2d 37 20 4c 53 41 73 20 61 | SA.in.Type-7.LSAs..Type-7.LSAs.a |
| 97ac0 | 72 65 20 73 69 6d 69 6c 61 72 20 74 6f 20 54 79 70 65 2d 35 20 41 53 2d 65 78 74 65 72 6e 61 6c | re.similar.to.Type-5.AS-external |
| 97ae0 | 20 4c 53 41 73 2c 20 65 78 63 65 70 74 20 74 68 61 74 20 74 68 65 79 20 63 61 6e 20 6f 6e 6c 79 | .LSAs,.except.that.they.can.only |
| 97b00 | 20 62 65 20 66 6c 6f 6f 64 65 64 20 69 6e 74 6f 20 74 68 65 20 4e 53 53 41 2e 20 49 6e 20 6f 72 | .be.flooded.into.the.NSSA..In.or |
| 97b20 | 64 65 72 20 74 6f 20 66 75 72 74 68 65 72 20 70 72 6f 70 61 67 61 74 65 20 74 68 65 20 4e 53 53 | der.to.further.propagate.the.NSS |
| 97b40 | 41 20 65 78 74 65 72 6e 61 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2c 20 74 68 65 20 54 79 70 65 | A.external.information,.the.Type |
| 97b60 | 2d 37 20 4c 53 41 20 6d 75 73 74 20 62 65 20 74 72 61 6e 73 6c 61 74 65 64 20 74 6f 20 61 20 54 | -7.LSA.must.be.translated.to.a.T |
| 97b80 | 79 70 65 2d 35 20 41 53 2d 65 78 74 65 72 6e 61 6c 2d 4c 53 41 20 62 79 20 74 68 65 20 4e 53 53 | ype-5.AS-external-LSA.by.the.NSS |
| 97ba0 | 41 20 41 42 52 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 | A.ABR..This.command.specifies.th |
| 97bc0 | 65 20 61 72 65 61 20 74 6f 20 62 65 20 61 20 53 74 75 62 20 41 72 65 61 2e 20 54 68 61 74 20 69 | e.area.to.be.a.Stub.Area..That.i |
| 97be0 | 73 2c 20 61 6e 20 61 72 65 61 20 77 68 65 72 65 20 6e 6f 20 72 6f 75 74 65 72 20 6f 72 69 67 69 | s,.an.area.where.no.router.origi |
| 97c00 | 6e 61 74 65 73 20 72 6f 75 74 65 73 20 65 78 74 65 72 6e 61 6c 20 74 6f 20 4f 53 50 46 20 61 6e | nates.routes.external.to.OSPF.an |
| 97c20 | 64 20 68 65 6e 63 65 20 61 6e 20 61 72 65 61 20 77 68 65 72 65 20 61 6c 6c 20 65 78 74 65 72 6e | d.hence.an.area.where.all.extern |
| 97c40 | 61 6c 20 72 6f 75 74 65 73 20 61 72 65 20 76 69 61 20 74 68 65 20 41 42 52 28 73 29 2e 20 48 65 | al.routes.are.via.the.ABR(s)..He |
| 97c60 | 6e 63 65 2c 20 41 42 52 73 20 66 6f 72 20 73 75 63 68 20 61 6e 20 61 72 65 61 20 64 6f 20 6e 6f | nce,.ABRs.for.such.an.area.do.no |
| 97c80 | 74 20 6e 65 65 64 20 74 6f 20 70 61 73 73 20 41 53 2d 45 78 74 65 72 6e 61 6c 20 4c 53 41 73 20 | t.need.to.pass.AS-External.LSAs. |
| 97ca0 | 28 74 79 70 65 2d 35 29 20 6f 72 20 41 53 42 52 2d 53 75 6d 6d 61 72 79 20 4c 53 41 73 20 28 74 | (type-5).or.ASBR-Summary.LSAs.(t |
| 97cc0 | 79 70 65 2d 34 29 20 69 6e 74 6f 20 74 68 65 20 61 72 65 61 2e 20 54 68 65 79 20 6e 65 65 64 20 | ype-4).into.the.area..They.need. |
| 97ce0 | 6f 6e 6c 79 20 70 61 73 73 20 4e 65 74 77 6f 72 6b 2d 53 75 6d 6d 61 72 79 20 28 74 79 70 65 2d | only.pass.Network-Summary.(type- |
| 97d00 | 33 29 20 4c 53 41 73 20 69 6e 74 6f 20 73 75 63 68 20 61 6e 20 61 72 65 61 2c 20 61 6c 6f 6e 67 | 3).LSAs.into.such.an.area,.along |
| 97d20 | 20 77 69 74 68 20 61 20 64 65 66 61 75 6c 74 2d 72 6f 75 74 65 20 73 75 6d 6d 61 72 79 2e 00 54 | .with.a.default-route.summary..T |
| 97d40 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 61 72 65 61 20 74 | his.command.specifies.the.area.t |
| 97d60 | 6f 20 62 65 20 61 20 54 6f 74 61 6c 6c 79 20 53 74 75 62 20 41 72 65 61 2e 20 49 6e 20 61 64 64 | o.be.a.Totally.Stub.Area..In.add |
| 97d80 | 69 74 69 6f 6e 20 74 6f 20 73 74 75 62 20 61 72 65 61 20 6c 69 6d 69 74 61 74 69 6f 6e 73 20 74 | ition.to.stub.area.limitations.t |
| 97da0 | 68 69 73 20 61 72 65 61 20 74 79 70 65 20 70 72 65 76 65 6e 74 73 20 61 6e 20 41 42 52 20 66 72 | his.area.type.prevents.an.ABR.fr |
| 97dc0 | 6f 6d 20 69 6e 6a 65 63 74 69 6e 67 20 4e 65 74 77 6f 72 6b 2d 53 75 6d 6d 61 72 79 20 28 74 79 | om.injecting.Network-Summary.(ty |
| 97de0 | 70 65 2d 33 29 20 4c 53 41 73 20 69 6e 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 73 74 | pe-3).LSAs.into.the.specified.st |
| 97e00 | 75 62 20 61 72 65 61 2e 20 4f 6e 6c 79 20 64 65 66 61 75 6c 74 20 73 75 6d 6d 61 72 79 20 72 6f | ub.area..Only.default.summary.ro |
| 97e20 | 75 74 65 20 69 73 20 61 6c 6c 6f 77 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 | ute.is.allowed..This.command.spe |
| 97e40 | 63 69 66 69 65 73 20 74 68 65 20 62 61 73 65 20 72 65 63 65 69 76 65 20 63 6f 73 74 20 66 6f 72 | cifies.the.base.receive.cost.for |
| 97e60 | 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 20 46 6f 72 20 77 69 72 65 6c 65 73 73 20 69 6e | .this.interface..For.wireless.in |
| 97e80 | 74 65 72 66 61 63 65 73 2c 20 69 74 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 6d 75 6c 74 69 | terfaces,.it.specifies.the.multi |
| 97ea0 | 70 6c 69 65 72 20 75 73 65 64 20 66 6f 72 20 63 6f 6d 70 75 74 69 6e 67 20 74 68 65 20 45 54 58 | plier.used.for.computing.the.ETX |
| 97ec0 | 20 72 65 63 65 70 74 69 6f 6e 20 63 6f 73 74 20 28 64 65 66 61 75 6c 74 20 32 35 36 29 3b 20 66 | .reception.cost.(default.256);.f |
| 97ee0 | 6f 72 20 77 69 72 65 64 20 69 6e 74 65 72 66 61 63 65 73 2c 20 69 74 20 73 70 65 63 69 66 69 65 | or.wired.interfaces,.it.specifie |
| 97f00 | 73 20 74 68 65 20 63 6f 73 74 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 61 64 76 65 72 74 69 73 | s.the.cost.that.will.be.advertis |
| 97f20 | 65 64 20 74 6f 20 6e 65 69 67 68 62 6f 75 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 | ed.to.neighbours..This.command.s |
| 97f40 | 70 65 63 69 66 69 65 73 20 74 68 65 20 64 65 63 61 79 20 66 61 63 74 6f 72 20 66 6f 72 20 74 68 | pecifies.the.decay.factor.for.th |
| 97f60 | 65 20 65 78 70 6f 6e 65 6e 74 69 61 6c 20 6d 6f 76 69 6e 67 20 61 76 65 72 61 67 65 20 6f 66 20 | e.exponential.moving.average.of. |
| 97f80 | 52 54 54 20 73 61 6d 70 6c 65 73 2c 20 69 6e 20 75 6e 69 74 73 20 6f 66 20 31 2f 32 35 36 2e 20 | RTT.samples,.in.units.of.1/256.. |
| 97fa0 | 48 69 67 68 65 72 20 76 61 6c 75 65 73 20 64 69 73 63 61 72 64 20 6f 6c 64 20 73 61 6d 70 6c 65 | Higher.values.discard.old.sample |
| 97fc0 | 73 20 66 61 73 74 65 72 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 34 32 2e 00 54 68 69 | s.faster..The.default.is.42..Thi |
| 97fe0 | 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 | s.command.specifies.the.default. |
| 98000 | 6c 6f 63 61 6c 20 70 72 65 66 65 72 65 6e 63 65 20 76 61 6c 75 65 2e 20 54 68 65 20 6c 6f 63 61 | local.preference.value..The.loca |
| 98020 | 6c 20 70 72 65 66 65 72 65 6e 63 65 20 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 34 32 39 34 39 | l.preference.range.is.0.to.42949 |
| 98040 | 36 37 32 39 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 | 67295..This.command.specifies.th |
| 98060 | 65 20 64 65 66 61 75 6c 74 20 6d 65 74 72 69 63 20 76 61 6c 75 65 20 6f 66 20 72 65 64 69 73 74 | e.default.metric.value.of.redist |
| 98080 | 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 2e 20 54 68 65 20 6d 65 74 72 69 63 20 72 61 6e 67 65 | ributed.routes..The.metric.range |
| 980a0 | 20 69 73 20 30 20 74 6f 20 31 36 37 37 37 32 31 34 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | .is.0.to.16777214..This.command. |
| 980c0 | 73 70 65 63 69 66 69 65 73 20 74 68 65 20 67 61 72 62 61 67 65 2d 63 6f 6c 6c 65 63 74 69 6f 6e | specifies.the.garbage-collection |
| 980e0 | 20 74 69 6d 65 72 2e 20 55 70 6f 6e 20 65 78 70 69 72 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 67 | .timer..Upon.expiration.of.the.g |
| 98100 | 61 72 62 61 67 65 2d 63 6f 6c 6c 65 63 74 69 6f 6e 20 74 69 6d 65 72 2c 20 74 68 65 20 72 6f 75 | arbage-collection.timer,.the.rou |
| 98120 | 74 65 20 69 73 20 66 69 6e 61 6c 6c 79 20 72 65 6d 6f 76 65 64 20 66 72 6f 6d 20 74 68 65 20 72 | te.is.finally.removed.from.the.r |
| 98140 | 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 20 54 68 65 20 74 69 6d 65 20 72 61 6e 67 65 20 69 73 20 | outing.table..The.time.range.is. |
| 98160 | 35 20 74 6f 20 32 31 34 37 34 38 33 36 34 37 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c | 5.to.2147483647..The.default.val |
| 98180 | 75 65 20 69 73 20 31 32 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | ue.is.120.seconds..This.command. |
| 981a0 | 73 70 65 63 69 66 69 65 73 20 74 68 65 20 67 69 76 65 6e 20 6e 65 69 67 68 62 6f 72 20 61 73 20 | specifies.the.given.neighbor.as. |
| 981c0 | 72 6f 75 74 65 20 72 65 66 6c 65 63 74 6f 72 20 63 6c 69 65 6e 74 2e 00 54 68 69 73 20 63 6f 6d | route.reflector.client..This.com |
| 981e0 | 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 69 6d | mand.specifies.the.length.of.tim |
| 98200 | 65 2c 20 69 6e 20 73 65 63 6f 6e 64 73 2c 20 62 65 66 6f 72 65 20 74 68 65 20 72 6f 75 74 69 6e | e,.in.seconds,.before.the.routin |
| 98220 | 67 20 64 65 76 69 63 65 20 73 65 6e 64 73 20 68 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 6f 75 74 | g.device.sends.hello.packets.out |
| 98240 | 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 62 65 66 6f 72 65 20 69 74 20 65 73 74 61 | .of.the.interface.before.it.esta |
| 98260 | 62 6c 69 73 68 65 73 20 61 64 6a 61 63 65 6e 63 79 20 77 69 74 68 20 61 20 6e 65 69 67 68 62 6f | blishes.adjacency.with.a.neighbo |
| 98280 | 72 2e 20 54 68 65 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 35 35 33 35 20 73 65 63 6f 6e | r..The.range.is.1.to.65535.secon |
| 982a0 | 64 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 30 20 73 65 63 6f | ds..The.default.value.is.60.seco |
| 982c0 | 6e 64 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 | nds..This.command.specifies.the. |
| 982e0 | 6d 61 78 69 6d 75 6d 20 52 54 54 2c 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 2c 20 61 62 | maximum.RTT,.in.milliseconds,.ab |
| 98300 | 6f 76 65 20 77 68 69 63 68 20 77 65 20 64 6f 6e 27 74 20 69 6e 63 72 65 61 73 65 20 74 68 65 20 | ove.which.we.don't.increase.the. |
| 98320 | 63 6f 73 74 20 74 6f 20 61 20 6e 65 69 67 68 62 6f 75 72 2e 20 54 68 65 20 64 65 66 61 75 6c 74 | cost.to.a.neighbour..The.default |
| 98340 | 20 69 73 20 31 32 30 20 6d 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 | .is.120.ms..This.command.specifi |
| 98360 | 65 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 63 6f 73 74 20 61 64 64 65 64 20 74 6f 20 61 20 6e | es.the.maximum.cost.added.to.a.n |
| 98380 | 65 69 67 68 62 6f 75 72 20 62 65 63 61 75 73 65 20 6f 66 20 52 54 54 2c 20 69 2e 65 2e 20 77 68 | eighbour.because.of.RTT,.i.e..wh |
| 983a0 | 65 6e 20 74 68 65 20 52 54 54 20 69 73 20 68 69 67 68 65 72 20 6f 72 20 65 71 75 61 6c 20 74 68 | en.the.RTT.is.higher.or.equal.th |
| 983c0 | 61 6e 20 72 74 74 2d 6d 61 78 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 31 35 30 2e 20 | an.rtt-max..The.default.is.150.. |
| 983e0 | 53 65 74 74 69 6e 67 20 69 74 20 74 6f 20 30 20 65 66 66 65 63 74 69 76 65 6c 79 20 64 69 73 61 | Setting.it.to.0.effectively.disa |
| 98400 | 62 6c 65 73 20 74 68 65 20 75 73 65 20 6f 66 20 61 20 52 54 54 2d 62 61 73 65 64 20 63 6f 73 74 | bles.the.use.of.a.RTT-based.cost |
| 98420 | 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 6d 69 6e | ..This.command.specifies.the.min |
| 98440 | 69 6d 75 6d 20 52 54 54 2c 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 2c 20 73 74 61 72 74 | imum.RTT,.in.milliseconds,.start |
| 98460 | 69 6e 67 20 66 72 6f 6d 20 77 68 69 63 68 20 77 65 20 69 6e 63 72 65 61 73 65 20 74 68 65 20 63 | ing.from.which.we.increase.the.c |
| 98480 | 6f 73 74 20 74 6f 20 61 20 6e 65 69 67 68 62 6f 75 72 2e 20 54 68 65 20 61 64 64 69 74 69 6f 6e | ost.to.a.neighbour..The.addition |
| 984a0 | 61 6c 20 63 6f 73 74 20 69 73 20 6c 69 6e 65 61 72 20 69 6e 20 28 72 74 74 20 2d 20 72 74 74 2d | al.cost.is.linear.in.(rtt.-.rtt- |
| 984c0 | 6d 69 6e 29 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 31 30 20 6d 73 2e 00 54 68 69 73 | min)..The.default.is.10.ms..This |
| 984e0 | 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 6d 69 6e 69 6d 75 6d 20 72 | .command.specifies.the.minimum.r |
| 98500 | 6f 75 74 65 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 20 69 6e 74 65 72 76 61 6c 20 66 6f 72 20 | oute.advertisement.interval.for. |
| 98520 | 74 68 65 20 70 65 65 72 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 76 61 6c 75 65 20 69 73 20 | the.peer..The.interval.value.is. |
| 98540 | 30 20 74 6f 20 36 30 30 20 73 65 63 6f 6e 64 73 2c 20 77 69 74 68 20 74 68 65 20 64 65 66 61 75 | 0.to.600.seconds,.with.the.defau |
| 98560 | 6c 74 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 20 69 6e 74 65 72 76 61 6c 20 62 65 69 6e 67 20 | lt.advertisement.interval.being. |
| 98580 | 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 72 6f | 0..This.command.specifies.the.ro |
| 985a0 | 75 74 65 72 20 70 72 69 6f 72 69 74 79 20 76 61 6c 75 65 20 6f 66 20 74 68 65 20 6e 6f 6e 62 72 | uter.priority.value.of.the.nonbr |
| 985c0 | 6f 61 64 63 61 73 74 20 6e 65 69 67 68 62 6f 72 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 | oadcast.neighbor.associated.with |
| 985e0 | 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 73 70 65 63 69 66 69 65 64 2e 20 54 68 65 20 64 | .the.IP.address.specified..The.d |
| 98600 | 65 66 61 75 6c 74 20 69 73 20 30 2e 20 54 68 69 73 20 6b 65 79 77 6f 72 64 20 64 6f 65 73 20 6e | efault.is.0..This.keyword.does.n |
| 98620 | 6f 74 20 61 70 70 6c 79 20 74 6f 20 70 6f 69 6e 74 2d 74 6f 2d 6d 75 6c 74 69 70 6f 69 6e 74 20 | ot.apply.to.point-to-multipoint. |
| 98640 | 69 6e 74 65 72 66 61 63 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 | interfaces..This.command.specifi |
| 98660 | 65 73 20 74 68 65 20 72 6f 75 74 65 72 2d 49 44 2e 20 49 66 20 72 6f 75 74 65 72 20 49 44 20 69 | es.the.router-ID..If.router.ID.i |
| 98680 | 73 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 20 69 74 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 | s.not.specified.it.will.use.the. |
| 986a0 | 68 69 67 68 65 73 74 20 69 6e 74 65 72 66 61 63 65 20 49 50 20 61 64 64 72 65 73 73 2e 00 54 68 | highest.interface.IP.address..Th |
| 986c0 | 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 74 69 6d 65 20 63 6f | is.command.specifies.the.time.co |
| 986e0 | 6e 73 74 61 6e 74 2c 20 69 6e 20 73 65 63 6f 6e 64 73 2c 20 6f 66 20 74 68 65 20 73 6d 6f 6f 74 | nstant,.in.seconds,.of.the.smoot |
| 98700 | 68 69 6e 67 20 61 6c 67 6f 72 69 74 68 6d 20 75 73 65 64 20 66 6f 72 20 69 6d 70 6c 65 6d 65 6e | hing.algorithm.used.for.implemen |
| 98720 | 74 69 6e 67 20 68 79 73 74 65 72 65 73 69 73 2e 20 4c 61 72 67 65 72 20 76 61 6c 75 65 73 20 72 | ting.hysteresis..Larger.values.r |
| 98740 | 65 64 75 63 65 20 72 6f 75 74 65 20 6f 73 63 69 6c 6c 61 74 69 6f 6e 20 61 74 20 74 68 65 20 63 | educe.route.oscillation.at.the.c |
| 98760 | 6f 73 74 20 6f 66 20 76 65 72 79 20 73 6c 69 67 68 74 6c 79 20 69 6e 63 72 65 61 73 69 6e 67 20 | ost.of.very.slightly.increasing. |
| 98780 | 63 6f 6e 76 65 72 67 65 6e 63 65 20 74 69 6d 65 2e 20 54 68 65 20 76 61 6c 75 65 20 30 20 64 69 | convergence.time..The.value.0.di |
| 987a0 | 73 61 62 6c 65 73 20 68 79 73 74 65 72 65 73 69 73 2c 20 61 6e 64 20 69 73 20 73 75 69 74 61 62 | sables.hysteresis,.and.is.suitab |
| 987c0 | 6c 65 20 66 6f 72 20 77 69 72 65 64 20 6e 65 74 77 6f 72 6b 73 2e 20 54 68 65 20 64 65 66 61 75 | le.for.wired.networks..The.defau |
| 987e0 | 6c 74 20 69 73 20 34 20 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 | lt.is.4.s..This.command.specifie |
| 98800 | 73 20 74 68 65 20 74 69 6d 65 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 20 61 66 74 65 72 | s.the.time.in.milliseconds.after |
| 98820 | 20 77 68 69 63 68 20 61 6e 20 27 69 6d 70 6f 72 74 61 6e 74 27 20 72 65 71 75 65 73 74 20 6f 72 | .which.an.'important'.request.or |
| 98840 | 20 75 70 64 61 74 65 20 77 69 6c 6c 20 62 65 20 72 65 73 65 6e 74 2e 20 54 68 65 20 64 65 66 61 | .update.will.be.resent..The.defa |
| 98860 | 75 6c 74 20 69 73 20 32 30 30 30 20 6d 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 | ult.is.2000.ms..This.command.spe |
| 98880 | 63 69 66 69 65 73 20 74 68 65 20 74 69 6d 65 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 20 | cifies.the.time.in.milliseconds. |
| 988a0 | 62 65 74 77 65 65 6e 20 74 77 6f 20 73 63 68 65 64 75 6c 65 64 20 68 65 6c 6c 6f 73 2e 20 4f 6e | between.two.scheduled.hellos..On |
| 988c0 | 20 77 69 72 65 64 20 6c 69 6e 6b 73 2c 20 42 61 62 65 6c 20 6e 6f 74 69 63 65 73 20 61 20 6c 69 | .wired.links,.Babel.notices.a.li |
| 988e0 | 6e 6b 20 66 61 69 6c 75 72 65 20 77 69 74 68 69 6e 20 74 77 6f 20 68 65 6c 6c 6f 20 69 6e 74 65 | nk.failure.within.two.hello.inte |
| 98900 | 72 76 61 6c 73 3b 20 6f 6e 20 77 69 72 65 6c 65 73 73 20 6c 69 6e 6b 73 2c 20 74 68 65 20 6c 69 | rvals;.on.wireless.links,.the.li |
| 98920 | 6e 6b 20 71 75 61 6c 69 74 79 20 76 61 6c 75 65 20 69 73 20 72 65 65 73 74 69 6d 61 74 65 64 20 | nk.quality.value.is.reestimated. |
| 98940 | 61 74 20 65 76 65 72 79 20 68 65 6c 6c 6f 20 69 6e 74 65 72 76 61 6c 2e 20 54 68 65 20 64 65 66 | at.every.hello.interval..The.def |
| 98960 | 61 75 6c 74 20 69 73 20 34 30 30 30 20 6d 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 | ault.is.4000.ms..This.command.sp |
| 98980 | 65 63 69 66 69 65 73 20 74 68 65 20 74 69 6d 65 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 | ecifies.the.time.in.milliseconds |
| 989a0 | 20 62 65 74 77 65 65 6e 20 74 77 6f 20 73 63 68 65 64 75 6c 65 64 20 75 70 64 61 74 65 73 2e 20 | .between.two.scheduled.updates.. |
| 989c0 | 53 69 6e 63 65 20 42 61 62 65 6c 20 6d 61 6b 65 73 20 65 78 74 65 6e 73 69 76 65 20 75 73 65 20 | Since.Babel.makes.extensive.use. |
| 989e0 | 6f 66 20 74 72 69 67 67 65 72 65 64 20 75 70 64 61 74 65 73 2c 20 74 68 69 73 20 63 61 6e 20 62 | of.triggered.updates,.this.can.b |
| 98a00 | 65 20 73 65 74 20 74 6f 20 66 61 69 72 6c 79 20 68 69 67 68 20 76 61 6c 75 65 73 20 6f 6e 20 6c | e.set.to.fairly.high.values.on.l |
| 98a20 | 69 6e 6b 73 20 77 69 74 68 20 6c 69 74 74 6c 65 20 70 61 63 6b 65 74 20 6c 6f 73 73 2e 20 54 68 | inks.with.little.packet.loss..Th |
| 98a40 | 65 20 64 65 66 61 75 6c 74 20 69 73 20 32 30 30 30 30 20 6d 73 2e 00 54 68 69 73 20 63 6f 6d 6d | e.default.is.20000.ms..This.comm |
| 98a60 | 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 74 69 6d 65 6f 75 74 20 74 69 6d 65 72 2e | and.specifies.the.timeout.timer. |
| 98a80 | 20 55 70 6f 6e 20 65 78 70 69 72 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 74 69 6d 65 6f 75 74 2c | .Upon.expiration.of.the.timeout, |
| 98aa0 | 20 74 68 65 20 72 6f 75 74 65 20 69 73 20 6e 6f 20 6c 6f 6e 67 65 72 20 76 61 6c 69 64 3b 20 68 | .the.route.is.no.longer.valid;.h |
| 98ac0 | 6f 77 65 76 65 72 2c 20 69 74 20 69 73 20 72 65 74 61 69 6e 65 64 20 69 6e 20 74 68 65 20 72 6f | owever,.it.is.retained.in.the.ro |
| 98ae0 | 75 74 69 6e 67 20 74 61 62 6c 65 20 66 6f 72 20 61 20 73 68 6f 72 74 20 74 69 6d 65 20 73 6f 20 | uting.table.for.a.short.time.so. |
| 98b00 | 74 68 61 74 20 6e 65 69 67 68 62 6f 72 73 20 63 61 6e 20 62 65 20 6e 6f 74 69 66 69 65 64 20 74 | that.neighbors.can.be.notified.t |
| 98b20 | 68 61 74 20 74 68 65 20 72 6f 75 74 65 20 68 61 73 20 62 65 65 6e 20 64 72 6f 70 70 65 64 2e 20 | hat.the.route.has.been.dropped.. |
| 98b40 | 54 68 65 20 74 69 6d 65 20 72 61 6e 67 65 20 69 73 20 35 20 74 6f 20 32 31 34 37 34 38 33 36 34 | The.time.range.is.5.to.214748364 |
| 98b60 | 37 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 38 30 20 73 65 63 6f | 7..The.default.value.is.180.seco |
| 98b80 | 6e 64 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 | nds..This.command.specifies.the. |
| 98ba0 | 75 70 64 61 74 65 20 74 69 6d 65 72 2e 20 45 76 65 72 79 20 75 70 64 61 74 65 20 74 69 6d 65 72 | update.timer..Every.update.timer |
| 98bc0 | 20 73 65 63 6f 6e 64 73 2c 20 74 68 65 20 52 49 50 20 70 72 6f 63 65 73 73 20 69 73 20 61 77 61 | .seconds,.the.RIP.process.is.awa |
| 98be0 | 6b 65 6e 65 64 20 74 6f 20 73 65 6e 64 20 61 6e 20 75 6e 73 6f 6c 69 63 69 74 65 64 20 72 65 73 | kened.to.send.an.unsolicited.res |
| 98c00 | 70 6f 6e 73 65 20 6d 65 73 73 61 67 65 20 63 6f 6e 74 61 69 6e 69 6e 67 20 74 68 65 20 63 6f 6d | ponse.message.containing.the.com |
| 98c20 | 70 6c 65 74 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 74 6f 20 61 6c 6c 20 6e 65 69 67 68 | plete.routing.table.to.all.neigh |
| 98c40 | 62 6f 72 69 6e 67 20 52 49 50 20 72 6f 75 74 65 72 73 2e 20 54 68 65 20 74 69 6d 65 20 72 61 6e | boring.RIP.routers..The.time.ran |
| 98c60 | 67 65 20 69 73 20 35 20 74 6f 20 32 31 34 37 34 38 33 36 34 37 2e 20 54 68 65 20 64 65 66 61 75 | ge.is.5.to.2147483647..The.defau |
| 98c80 | 6c 74 20 76 61 6c 75 65 20 69 73 20 33 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 69 73 20 63 6f 6d | lt.value.is.30.seconds..This.com |
| 98ca0 | 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 77 68 65 74 68 65 72 20 74 6f 20 70 65 72 66 6f 72 | mand.specifies.whether.to.perfor |
| 98cc0 | 6d 20 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 | m.split-horizon.on.the.interface |
| 98ce0 | 2e 20 53 70 65 63 69 66 79 69 6e 67 20 6e 6f 20 62 61 62 65 6c 20 73 70 6c 69 74 2d 68 6f 72 69 | ..Specifying.no.babel.split-hori |
| 98d00 | 7a 6f 6e 20 69 73 20 61 6c 77 61 79 73 20 63 6f 72 72 65 63 74 2c 20 77 68 69 6c 65 20 62 61 62 | zon.is.always.correct,.while.bab |
| 98d20 | 65 6c 20 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 69 73 20 61 6e 20 6f 70 74 69 6d 69 73 61 74 | el.split-horizon.is.an.optimisat |
| 98d40 | 69 6f 6e 20 74 68 61 74 20 73 68 6f 75 6c 64 20 6f 6e 6c 79 20 62 65 20 75 73 65 64 20 6f 6e 20 | ion.that.should.only.be.used.on. |
| 98d60 | 73 79 6d 6d 65 74 72 69 63 20 61 6e 64 20 74 72 61 6e 73 69 74 69 76 65 20 28 77 69 72 65 64 29 | symmetric.and.transitive.(wired) |
| 98d80 | 20 6e 65 74 77 6f 72 6b 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 79 20 | .networks..This.command.specify. |
| 98da0 | 74 68 61 74 20 4f 53 50 46 20 70 61 63 6b 65 74 73 20 6d 75 73 74 20 62 65 20 61 75 74 68 65 6e | that.OSPF.packets.must.be.authen |
| 98dc0 | 74 69 63 61 74 65 64 20 77 69 74 68 20 4d 44 35 20 48 4d 41 43 73 20 77 69 74 68 69 6e 20 74 68 | ticated.with.MD5.HMACs.within.th |
| 98de0 | 65 20 67 69 76 65 6e 20 61 72 65 61 2e 20 4b 65 79 69 6e 67 20 6d 61 74 65 72 69 61 6c 20 6d 75 | e.given.area..Keying.material.mu |
| 98e00 | 73 74 20 61 6c 73 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 61 20 70 65 72 2d 69 | st.also.be.configured.on.a.per-i |
| 98e20 | 6e 74 65 72 66 61 63 65 20 62 61 73 69 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 | nterface.basis..This.command.spe |
| 98e40 | 63 69 66 79 73 20 74 68 61 74 20 4d 44 35 20 48 4d 41 43 20 61 75 74 68 65 6e 74 69 63 61 74 69 | cifys.that.MD5.HMAC.authenticati |
| 98e60 | 6f 6e 20 6d 75 73 74 20 62 65 20 75 73 65 64 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 | on.must.be.used.on.this.interfac |
| 98e80 | 65 2e 20 49 74 20 73 65 74 73 20 4f 53 50 46 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6b | e..It.sets.OSPF.authentication.k |
| 98ea0 | 65 79 20 74 6f 20 61 20 63 72 79 70 74 6f 67 72 61 70 68 69 63 20 70 61 73 73 77 6f 72 64 2e 20 | ey.to.a.cryptographic.password.. |
| 98ec0 | 4b 65 79 2d 69 64 20 69 64 65 6e 74 69 66 69 65 73 20 73 65 63 72 65 74 20 6b 65 79 20 75 73 65 | Key-id.identifies.secret.key.use |
| 98ee0 | 64 20 74 6f 20 63 72 65 61 74 65 20 74 68 65 20 6d 65 73 73 61 67 65 20 64 69 67 65 73 74 2e 20 | d.to.create.the.message.digest.. |
| 98f00 | 54 68 69 73 20 49 44 20 69 73 20 70 61 72 74 20 6f 66 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 20 | This.ID.is.part.of.the.protocol. |
| 98f20 | 61 6e 64 20 6d 75 73 74 20 62 65 20 63 6f 6e 73 69 73 74 65 6e 74 20 61 63 72 6f 73 73 20 72 6f | and.must.be.consistent.across.ro |
| 98f40 | 75 74 65 72 73 20 6f 6e 20 61 20 6c 69 6e 6b 2e 20 54 68 65 20 6b 65 79 20 63 61 6e 20 62 65 20 | uters.on.a.link..The.key.can.be. |
| 98f60 | 6c 6f 6e 67 20 75 70 20 74 6f 20 31 36 20 63 68 61 72 73 20 28 6c 61 72 67 65 72 20 73 74 72 69 | long.up.to.16.chars.(larger.stri |
| 98f80 | 6e 67 73 20 77 69 6c 6c 20 62 65 20 74 72 75 6e 63 61 74 65 64 29 2c 20 61 6e 64 20 69 73 20 61 | ngs.will.be.truncated),.and.is.a |
| 98fa0 | 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 20 67 69 76 65 6e 20 6b 65 79 2d 69 64 2e | ssociated.with.the.given.key-id. |
| 98fc0 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 75 6d 6d 61 72 69 7a 65 73 20 69 6e 74 72 61 20 61 | .This.command.summarizes.intra.a |
| 98fe0 | 72 65 61 20 70 61 74 68 73 20 66 72 6f 6d 20 73 70 65 63 69 66 69 65 64 20 61 72 65 61 20 69 6e | rea.paths.from.specified.area.in |
| 99000 | 74 6f 20 6f 6e 65 20 54 79 70 65 2d 33 20 49 6e 74 65 72 2d 41 72 65 61 20 50 72 65 66 69 78 20 | to.one.Type-3.Inter-Area.Prefix. |
| 99020 | 4c 53 41 20 61 6e 6e 6f 75 6e 63 65 64 20 74 6f 20 6f 74 68 65 72 20 61 72 65 61 73 2e 20 54 68 | LSA.announced.to.other.areas..Th |
| 99040 | 69 73 20 63 6f 6d 6d 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 69 6e 20 41 | is.command.can.be.used.only.in.A |
| 99060 | 42 52 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 75 6d 6d 61 72 69 7a 65 73 20 69 6e 74 72 | BR..This.command.summarizes.intr |
| 99080 | 61 20 61 72 65 61 20 70 61 74 68 73 20 66 72 6f 6d 20 73 70 65 63 69 66 69 65 64 20 61 72 65 61 | a.area.paths.from.specified.area |
| 990a0 | 20 69 6e 74 6f 20 6f 6e 65 20 73 75 6d 6d 61 72 79 2d 4c 53 41 20 28 54 79 70 65 2d 33 29 20 61 | .into.one.summary-LSA.(Type-3).a |
| 990c0 | 6e 6e 6f 75 6e 63 65 64 20 74 6f 20 6f 74 68 65 72 20 61 72 65 61 73 2e 20 54 68 69 73 20 63 6f | nnounced.to.other.areas..This.co |
| 990e0 | 6d 6d 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 69 6e 20 41 42 52 20 61 6e | mmand.can.be.used.only.in.ABR.an |
| 99100 | 64 20 4f 4e 4c 59 20 72 6f 75 74 65 72 2d 4c 53 41 73 20 28 54 79 70 65 2d 31 29 20 61 6e 64 20 | d.ONLY.router-LSAs.(Type-1).and. |
| 99120 | 6e 65 74 77 6f 72 6b 2d 4c 53 41 73 20 28 54 79 70 65 2d 32 29 20 28 69 2e 65 2e 20 4c 53 41 73 | network-LSAs.(Type-2).(i.e..LSAs |
| 99140 | 20 77 69 74 68 20 73 63 6f 70 65 20 61 72 65 61 29 20 63 61 6e 20 62 65 20 73 75 6d 6d 61 72 69 | .with.scope.area).can.be.summari |
| 99160 | 7a 65 64 2e 20 41 53 2d 65 78 74 65 72 6e 61 6c 2d 4c 53 41 73 20 28 54 79 70 65 2d 35 29 20 63 | zed..AS-external-LSAs.(Type-5).c |
| 99180 | 61 6e e2 80 99 74 20 62 65 20 73 75 6d 6d 61 72 69 7a 65 64 20 2d 20 74 68 65 69 72 20 73 63 6f | an...t.be.summarized.-.their.sco |
| 991a0 | 70 65 20 69 73 20 41 53 2e 20 54 68 65 20 6f 70 74 69 6f 6e 61 6c 20 61 72 67 75 6d 65 6e 74 20 | pe.is.AS..The.optional.argument. |
| 991c0 | 3a 63 66 67 63 6d 64 3a 60 63 6f 73 74 60 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 61 67 67 | :cfgcmd:`cost`.specifies.the.agg |
| 991e0 | 72 65 67 61 74 65 64 20 6c 69 6e 6b 20 6d 65 74 72 69 63 2e 20 54 68 65 20 6d 65 74 72 69 63 20 | regated.link.metric..The.metric. |
| 99200 | 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 31 36 37 37 37 32 31 35 2e 00 54 68 69 73 20 63 6f 6d | range.is.0.to.16777215..This.com |
| 99220 | 6d 61 6e 64 20 74 6f 20 65 6e 73 75 72 65 20 6e 6f 74 20 61 64 76 65 72 74 69 73 65 20 74 68 65 | mand.to.ensure.not.advertise.the |
| 99240 | 20 73 75 6d 6d 61 72 79 20 6c 73 61 20 66 6f 72 20 74 68 65 20 6d 61 74 63 68 65 64 20 65 78 74 | .summary.lsa.for.the.matched.ext |
| 99260 | 65 72 6e 61 6c 20 4c 53 41 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 75 73 65 73 20 74 6f | ernal.LSAs..This.command.uses.to |
| 99280 | 20 63 6c 65 61 72 20 42 47 50 20 72 6f 75 74 65 20 64 61 6d 70 65 6e 69 6e 67 20 69 6e 66 6f 72 | .clear.BGP.route.dampening.infor |
| 992a0 | 6d 61 74 69 6f 6e 20 61 6e 64 20 74 6f 20 75 6e 73 75 70 70 72 65 73 73 20 73 75 70 70 72 65 73 | mation.and.to.unsuppress.suppres |
| 992c0 | 73 65 64 20 72 6f 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 61 73 20 69 6e 74 | sed.routes..This.command.was.int |
| 992e0 | 72 6f 64 75 63 65 64 20 69 6e 20 56 79 4f 53 20 31 2e 34 20 2d 20 69 74 20 77 61 73 20 70 72 65 | roduced.in.VyOS.1.4.-.it.was.pre |
| 99300 | 76 69 6f 75 73 6c 79 20 63 61 6c 6c 65 64 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 6f | viously.called:.``set.firewall.o |
| 99320 | 70 74 69 6f 6e 73 20 69 6e 74 65 72 66 61 63 65 20 3c 6e 61 6d 65 3e 20 61 64 6a 75 73 74 2d 6d | ptions.interface.<name>.adjust-m |
| 99340 | 73 73 20 3c 76 61 6c 75 65 3e 60 60 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 61 73 20 69 6e | ss.<value>``.This.command.was.in |
| 99360 | 74 72 6f 64 75 63 65 64 20 69 6e 20 56 79 4f 53 20 31 2e 34 20 2d 20 69 74 20 77 61 73 20 70 72 | troduced.in.VyOS.1.4.-.it.was.pr |
| 99380 | 65 76 69 6f 75 73 6c 79 20 63 61 6c 6c 65 64 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 | eviously.called:.``set.firewall. |
| 993a0 | 6f 70 74 69 6f 6e 73 20 69 6e 74 65 72 66 61 63 65 20 3c 6e 61 6d 65 3e 20 61 64 6a 75 73 74 2d | options.interface.<name>.adjust- |
| 993c0 | 6d 73 73 36 20 3c 76 61 6c 75 65 3e 60 60 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c | mss6.<value>``.This.command.will |
| 993e0 | 20 63 68 61 6e 67 65 20 74 68 65 20 68 6f 6c 64 20 64 6f 77 6e 20 76 61 6c 75 65 20 66 6f 72 20 | .change.the.hold.down.value.for. |
| 99400 | 49 47 50 2d 4c 44 50 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 64 75 72 69 6e 67 20 63 | IGP-LDP.synchronization.during.c |
| 99420 | 6f 6e 76 65 72 67 65 6e 63 65 2f 69 6e 74 65 72 66 61 63 65 20 66 6c 61 70 20 65 76 65 6e 74 73 | onvergence/interface.flap.events |
| 99440 | 2c 20 62 75 74 20 66 6f 72 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 6c 79 2e 00 54 | ,.but.for.this.interface.only..T |
| 99460 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 63 68 61 6e 67 65 20 74 68 65 20 68 6f 6c 64 | his.command.will.change.the.hold |
| 99480 | 20 64 6f 77 6e 20 76 61 6c 75 65 20 67 6c 6f 62 61 6c 6c 79 20 66 6f 72 20 49 47 50 2d 4c 44 50 | .down.value.globally.for.IGP-LDP |
| 994a0 | 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 64 75 72 69 6e 67 20 63 6f 6e 76 65 72 67 65 | .synchronization.during.converge |
| 994c0 | 6e 63 65 2f 69 6e 74 65 72 66 61 63 65 20 66 6c 61 70 20 65 76 65 6e 74 73 2e 00 54 68 69 73 20 | nce/interface.flap.events..This. |
| 994e0 | 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 63 6f 6e 66 69 67 75 72 65 20 61 20 74 69 65 2d 62 72 65 | command.will.configure.a.tie-bre |
| 99500 | 61 6b 65 72 20 66 6f 72 20 6d 75 6c 74 69 70 6c 65 20 6c 6f 63 61 6c 20 4c 46 41 20 62 61 63 6b | aker.for.multiple.local.LFA.back |
| 99520 | 75 70 73 2e 20 54 68 65 20 6c 6f 77 65 72 20 69 6e 64 65 78 20 6e 75 6d 62 65 72 73 20 77 69 6c | ups..The.lower.index.numbers.wil |
| 99540 | 6c 20 62 65 20 70 72 6f 63 65 73 73 65 64 20 66 69 72 73 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | l.be.processed.first..This.comma |
| 99560 | 6e 64 20 77 69 6c 6c 20 65 6e 61 62 6c 65 20 49 47 50 2d 4c 44 50 20 73 79 6e 63 68 72 6f 6e 69 | nd.will.enable.IGP-LDP.synchroni |
| 99580 | 7a 61 74 69 6f 6e 20 67 6c 6f 62 61 6c 6c 79 20 66 6f 72 20 49 53 49 53 2e 20 54 68 69 73 20 72 | zation.globally.for.ISIS..This.r |
| 995a0 | 65 71 75 69 72 65 73 20 66 6f 72 20 4c 44 50 20 74 6f 20 62 65 20 66 75 6e 63 74 69 6f 6e 61 6c | equires.for.LDP.to.be.functional |
| 995c0 | 2e 20 54 68 69 73 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 35 34 34 | ..This.is.described.in.:rfc:`544 |
| 995e0 | 33 60 2e 20 42 79 20 64 65 66 61 75 6c 74 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 20 6f 70 | 3`..By.default.all.interfaces.op |
| 99600 | 65 72 61 74 69 6f 6e 61 6c 20 69 6e 20 49 53 2d 49 53 20 61 72 65 20 65 6e 61 62 6c 65 64 20 66 | erational.in.IS-IS.are.enabled.f |
| 99620 | 6f 72 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 2e 20 4c 6f 6f 70 62 61 63 6b 73 20 61 72 | or.synchronization..Loopbacks.ar |
| 99640 | 65 20 65 78 65 6d 70 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 65 6e 61 62 | e.exempt..This.command.will.enab |
| 99660 | 6c 65 20 49 47 50 2d 4c 44 50 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 67 6c 6f 62 61 | le.IGP-LDP.synchronization.globa |
| 99680 | 6c 6c 79 20 66 6f 72 20 4f 53 50 46 2e 20 54 68 69 73 20 72 65 71 75 69 72 65 73 20 66 6f 72 20 | lly.for.OSPF..This.requires.for. |
| 996a0 | 4c 44 50 20 74 6f 20 62 65 20 66 75 6e 63 74 69 6f 6e 61 6c 2e 20 54 68 69 73 20 69 73 20 64 65 | LDP.to.be.functional..This.is.de |
| 996c0 | 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 35 34 34 33 60 2e 20 42 79 20 64 65 66 61 75 | scribed.in.:rfc:`5443`..By.defau |
| 996e0 | 6c 74 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 69 6e | lt.all.interfaces.operational.in |
| 99700 | 20 4f 53 50 46 20 61 72 65 20 65 6e 61 62 6c 65 64 20 66 6f 72 20 73 79 6e 63 68 72 6f 6e 69 7a | .OSPF.are.enabled.for.synchroniz |
| 99720 | 61 74 69 6f 6e 2e 20 4c 6f 6f 70 62 61 63 6b 73 20 61 72 65 20 65 78 65 6d 70 74 2e 00 54 68 69 | ation..Loopbacks.are.exempt..Thi |
| 99740 | 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 67 65 6e 65 72 61 74 65 20 61 20 64 65 66 61 75 6c | s.command.will.generate.a.defaul |
| 99760 | 74 2d 72 6f 75 74 65 20 69 6e 20 4c 31 20 64 61 74 61 62 61 73 65 2e 00 54 68 69 73 20 63 6f 6d | t-route.in.L1.database..This.com |
| 99780 | 6d 61 6e 64 20 77 69 6c 6c 20 67 65 6e 65 72 61 74 65 20 61 20 64 65 66 61 75 6c 74 2d 72 6f 75 | mand.will.generate.a.default-rou |
| 997a0 | 74 65 20 69 6e 20 4c 32 20 64 61 74 61 62 61 73 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | te.in.L2.database..This.command. |
| 997c0 | 77 69 6c 6c 20 67 69 76 65 20 61 6e 20 6f 76 65 72 76 69 65 77 20 6f 66 20 61 20 72 75 6c 65 20 | will.give.an.overview.of.a.rule. |
| 997e0 | 69 6e 20 61 20 73 69 6e 67 6c 65 20 72 75 6c 65 2d 73 65 74 00 54 68 69 73 20 63 6f 6d 6d 61 6e | in.a.single.rule-set.This.comman |
| 99800 | 64 20 77 69 6c 6c 20 67 69 76 65 20 61 6e 20 6f 76 65 72 76 69 65 77 20 6f 66 20 61 20 72 75 6c | d.will.give.an.overview.of.a.rul |
| 99820 | 65 20 69 6e 20 61 20 73 69 6e 67 6c 65 20 72 75 6c 65 2d 73 65 74 2c 20 70 6c 75 73 20 69 6e 66 | e.in.a.single.rule-set,.plus.inf |
| 99840 | 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 2e 00 54 68 69 | ormation.for.default.action..Thi |
| 99860 | 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 67 69 76 65 20 61 6e 20 6f 76 65 72 76 69 65 77 20 | s.command.will.give.an.overview. |
| 99880 | 6f 66 20 61 20 72 75 6c 65 20 69 6e 20 61 20 73 69 6e 67 6c 65 20 72 75 6c 65 2d 73 65 74 2e 00 | of.a.rule.in.a.single.rule-set.. |
| 998a0 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 67 69 76 65 20 61 6e 20 6f 76 65 72 76 69 | This.command.will.give.an.overvi |
| 998c0 | 65 77 20 6f 66 20 61 20 73 69 6e 67 6c 65 20 72 75 6c 65 2d 73 65 74 2e 00 54 68 69 73 20 63 6f | ew.of.a.single.rule-set..This.co |
| 998e0 | 6d 6d 61 6e 64 20 77 69 6c 6c 20 6c 69 6d 69 74 20 4c 46 41 20 62 61 63 6b 75 70 20 63 6f 6d 70 | mmand.will.limit.LFA.backup.comp |
| 99900 | 75 74 61 74 69 6f 6e 20 75 70 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 72 65 66 | utation.up.to.the.specified.pref |
| 99920 | 69 78 20 70 72 69 6f 72 69 74 79 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 6f 75 6c 64 20 | ix.priority..This.command.would. |
| 99940 | 61 6c 6c 6f 77 20 74 68 65 20 64 79 6e 61 6d 69 63 20 75 70 64 61 74 65 20 6f 66 20 63 61 70 61 | allow.the.dynamic.update.of.capa |
| 99960 | 62 69 6c 69 74 69 65 73 20 6f 76 65 72 20 61 6e 20 65 73 74 61 62 6c 69 73 68 65 64 20 42 47 50 | bilities.over.an.established.BGP |
| 99980 | 20 73 65 73 73 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 73 20 63 72 65 61 74 65 73 20 | .session..This.commands.creates. |
| 999a0 | 61 20 62 72 69 64 67 65 20 74 68 61 74 20 69 73 20 75 73 65 64 20 74 6f 20 62 69 6e 64 20 74 72 | a.bridge.that.is.used.to.bind.tr |
| 999c0 | 61 66 66 69 63 20 6f 6e 20 65 74 68 31 20 76 6c 61 6e 20 32 34 31 20 77 69 74 68 20 74 68 65 20 | affic.on.eth1.vlan.241.with.the. |
| 999e0 | 76 78 6c 61 6e 32 34 31 2d 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 49 50 20 61 64 64 72 65 | vxlan241-interface..The.IP.addre |
| 99a00 | 73 73 20 69 73 20 6e 6f 74 20 72 65 71 75 69 72 65 64 2e 20 49 74 20 6d 61 79 20 68 6f 77 65 76 | ss.is.not.required..It.may.howev |
| 99a20 | 65 72 20 62 65 20 75 73 65 64 20 61 73 20 61 20 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 20 | er.be.used.as.a.default.gateway. |
| 99a40 | 66 6f 72 20 65 61 63 68 20 4c 65 61 66 20 77 68 69 63 68 20 61 6c 6c 6f 77 73 20 64 65 76 69 63 | for.each.Leaf.which.allows.devic |
| 99a60 | 65 73 20 6f 6e 20 74 68 65 20 76 6c 61 6e 20 74 6f 20 72 65 61 63 68 20 6f 74 68 65 72 20 73 75 | es.on.the.vlan.to.reach.other.su |
| 99a80 | 62 6e 65 74 73 2e 20 54 68 69 73 20 72 65 71 75 69 72 65 73 20 74 68 61 74 20 74 68 65 20 73 75 | bnets..This.requires.that.the.su |
| 99aa0 | 62 6e 65 74 73 20 61 72 65 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 62 79 20 4f 53 50 46 20 | bnets.are.redistributed.by.OSPF. |
| 99ac0 | 73 6f 20 74 68 61 74 20 74 68 65 20 53 70 69 6e 65 20 77 69 6c 6c 20 6c 65 61 72 6e 20 68 6f 77 | so.that.the.Spine.will.learn.how |
| 99ae0 | 20 74 6f 20 72 65 61 63 68 20 69 74 2e 20 54 6f 20 64 6f 20 74 68 69 73 20 79 6f 75 20 6e 65 65 | .to.reach.it..To.do.this.you.nee |
| 99b00 | 64 20 74 6f 20 63 68 61 6e 67 65 20 74 68 65 20 4f 53 50 46 20 6e 65 74 77 6f 72 6b 20 66 72 6f | d.to.change.the.OSPF.network.fro |
| 99b20 | 6d 20 27 31 30 2e 30 2e 30 2e 30 2f 38 27 20 74 6f 20 27 30 2e 30 2e 30 2e 30 2f 30 27 20 74 6f | m.'10.0.0.0/8'.to.'0.0.0.0/0'.to |
| 99b40 | 20 61 6c 6c 6f 77 20 31 37 32 2e 31 36 2f 31 32 2d 6e 65 74 77 6f 72 6b 73 20 74 6f 20 62 65 20 | .allow.172.16/12-networks.to.be. |
| 99b60 | 61 64 76 65 72 74 69 73 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 73 20 73 70 65 63 69 66 | advertised..This.commands.specif |
| 99b80 | 69 65 73 20 74 68 65 20 46 69 6e 69 74 65 20 53 74 61 74 65 20 4d 61 63 68 69 6e 65 20 28 46 53 | ies.the.Finite.State.Machine.(FS |
| 99ba0 | 4d 29 20 69 6e 74 65 6e 64 65 64 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 74 68 65 20 74 69 6d 69 6e | M).intended.to.control.the.timin |
| 99bc0 | 67 20 6f 66 20 74 68 65 20 65 78 65 63 75 74 69 6f 6e 20 6f 66 20 53 50 46 20 63 61 6c 63 75 6c | g.of.the.execution.of.SPF.calcul |
| 99be0 | 61 74 69 6f 6e 73 20 69 6e 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 49 47 50 20 65 76 65 6e 74 73 | ations.in.response.to.IGP.events |
| 99c00 | 2e 20 54 68 65 20 70 72 6f 63 65 73 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a | ..The.process.described.in.:rfc: |
| 99c20 | 60 38 34 30 35 60 2e 00 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 6e 61 62 6c | `8405`..This.configuration.enabl |
| 99c40 | 65 73 20 48 54 54 50 20 68 65 61 6c 74 68 20 63 68 65 63 6b 73 20 6f 6e 20 62 61 63 6b 65 6e 64 | es.HTTP.health.checks.on.backend |
| 99c60 | 20 73 65 72 76 65 72 73 2e 00 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 6e 61 | .servers..This.configuration.ena |
| 99c80 | 62 6c 65 73 20 74 68 65 20 54 43 50 20 72 65 76 65 72 73 65 20 70 72 6f 78 79 20 66 6f 72 20 74 | bles.the.TCP.reverse.proxy.for.t |
| 99ca0 | 68 65 20 22 6d 79 2d 74 63 70 2d 61 70 69 22 20 73 65 72 76 69 63 65 2e 20 49 6e 63 6f 6d 69 6e | he."my-tcp-api".service..Incomin |
| 99cc0 | 67 20 54 43 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 6f 6e 20 70 6f 72 74 20 38 38 38 38 20 77 | g.TCP.connections.on.port.8888.w |
| 99ce0 | 69 6c 6c 20 62 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 64 20 61 63 72 6f 73 73 20 74 68 65 20 | ill.be.load.balanced.across.the. |
| 99d00 | 62 61 63 6b 65 6e 64 20 73 65 72 76 65 72 73 20 28 73 72 76 30 31 20 61 6e 64 20 73 72 76 30 32 | backend.servers.(srv01.and.srv02 |
| 99d20 | 29 20 75 73 69 6e 67 20 74 68 65 20 72 6f 75 6e 64 2d 72 6f 62 69 6e 20 6c 6f 61 64 2d 62 61 6c | ).using.the.round-robin.load-bal |
| 99d40 | 61 6e 63 69 6e 67 20 61 6c 67 6f 72 69 74 68 6d 2e 00 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 | ancing.algorithm..This.configura |
| 99d60 | 74 69 6f 6e 20 67 65 6e 65 72 61 74 65 73 20 26 20 69 6e 73 74 61 6c 6c 73 20 69 6e 74 6f 20 74 | tion.generates.&.installs.into.t |
| 99d80 | 68 65 20 56 79 4f 53 20 50 4b 49 20 73 79 73 74 65 6d 20 61 20 72 6f 6f 74 20 63 65 72 74 69 66 | he.VyOS.PKI.system.a.root.certif |
| 99da0 | 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 2c 20 61 6c 6f 6e 67 73 69 64 65 20 74 77 6f 20 69 | icate.authority,.alongside.two.i |
| 99dc0 | 6e 74 65 72 6d 65 64 69 61 72 79 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 | ntermediary.certificate.authorit |
| 99de0 | 69 65 73 20 66 6f 72 20 63 6c 69 65 6e 74 20 26 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 | ies.for.client.&.server.certific |
| 99e00 | 61 74 65 73 2e 20 54 68 65 73 65 20 43 41 73 20 61 72 65 20 74 68 65 6e 20 75 73 65 64 20 74 6f | ates..These.CAs.are.then.used.to |
| 99e20 | 20 67 65 6e 65 72 61 74 65 20 61 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 20 66 | .generate.a.server.certificate.f |
| 99e40 | 6f 72 20 74 68 65 20 72 6f 75 74 65 72 2c 20 61 6e 64 20 61 20 63 6c 69 65 6e 74 20 63 65 72 74 | or.the.router,.and.a.client.cert |
| 99e60 | 69 66 69 63 61 74 65 20 66 6f 72 20 61 20 75 73 65 72 2e 00 54 68 69 73 20 63 6f 6e 66 69 67 75 | ificate.for.a.user..This.configu |
| 99e80 | 72 61 74 69 6f 6e 20 6c 69 73 74 65 6e 20 6f 6e 20 70 6f 72 74 20 38 30 20 61 6e 64 20 72 65 64 | ration.listen.on.port.80.and.red |
| 99ea0 | 69 72 65 63 74 20 69 6e 63 6f 6d 69 6e 67 20 72 65 71 75 65 73 74 73 20 74 6f 20 48 54 54 50 53 | irect.incoming.requests.to.HTTPS |
| 99ec0 | 3a 00 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 69 66 69 65 73 20 74 68 | :.This.configuration.modifies.th |
| 99ee0 | 65 20 62 65 68 61 76 69 6f 72 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 73 74 61 74 65 6d | e.behavior.of.the.network.statem |
| 99f00 | 65 6e 74 2e 20 49 66 20 79 6f 75 20 68 61 76 65 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 65 64 | ent..If.you.have.this.configured |
| 99f20 | 20 74 68 65 20 75 6e 64 65 72 6c 79 69 6e 67 20 6e 65 74 77 6f 72 6b 20 6d 75 73 74 20 65 78 69 | .the.underlying.network.must.exi |
| 99f40 | 73 74 20 69 6e 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 00 54 68 69 73 20 63 6f | st.in.the.routing.table..This.co |
| 99f60 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 69 73 20 72 65 71 75 69 72 65 | nfiguration.parameter.is.require |
| 99f80 | 64 20 61 6e 64 20 6d 75 73 74 20 62 65 20 75 6e 69 71 75 65 20 74 6f 20 65 61 63 68 20 73 75 62 | d.and.must.be.unique.to.each.sub |
| 99fa0 | 6e 65 74 2e 20 49 74 20 69 73 20 72 65 71 75 69 72 65 64 20 74 6f 20 6d 61 70 20 73 75 62 6e 65 | net..It.is.required.to.map.subne |
| 99fc0 | 74 73 20 74 6f 20 6c 65 61 73 65 20 66 69 6c 65 20 65 6e 74 72 69 65 73 2e 00 54 68 69 73 20 63 | ts.to.lease.file.entries..This.c |
| 99fe0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 6c 65 74 73 20 74 68 65 20 | onfiguration.parameter.lets.the. |
| 9a000 | 44 48 43 50 20 73 65 72 76 65 72 20 74 6f 20 6c 69 73 74 65 6e 20 66 6f 72 20 44 48 43 50 20 72 | DHCP.server.to.listen.for.DHCP.r |
| 9a020 | 65 71 75 65 73 74 73 20 73 65 6e 74 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 61 64 | equests.sent.to.the.specified.ad |
| 9a040 | 64 72 65 73 73 2c 20 69 74 20 69 73 20 6f 6e 6c 79 20 72 65 61 6c 69 73 74 69 63 61 6c 6c 79 20 | dress,.it.is.only.realistically. |
| 9a060 | 75 73 65 66 75 6c 20 66 6f 72 20 61 20 73 65 72 76 65 72 20 77 68 6f 73 65 20 6f 6e 6c 79 20 63 | useful.for.a.server.whose.only.c |
| 9a080 | 6c 69 65 6e 74 73 20 61 72 65 20 72 65 61 63 68 65 64 20 76 69 61 20 75 6e 69 63 61 73 74 73 2c | lients.are.reached.via.unicasts, |
| 9a0a0 | 20 73 75 63 68 20 61 73 20 76 69 61 20 44 48 43 50 20 72 65 6c 61 79 20 61 67 65 6e 74 73 2e 00 | .such.as.via.DHCP.relay.agents.. |
| 9a0c0 | 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 6c 65 74 | This.configuration.parameter.let |
| 9a0e0 | 73 20 79 6f 75 20 73 70 65 63 69 66 79 20 61 20 76 65 6e 64 6f 72 2d 6f 70 74 69 6f 6e 20 66 6f | s.you.specify.a.vendor-option.fo |
| 9a100 | 72 20 74 68 65 20 65 6e 74 69 72 65 20 73 68 61 72 65 64 20 6e 65 74 77 6f 72 6b 20 64 65 66 69 | r.the.entire.shared.network.defi |
| 9a120 | 6e 69 74 69 6f 6e 2e 20 41 6c 6c 20 73 75 62 6e 65 74 73 20 77 69 6c 6c 20 69 6e 68 65 72 69 74 | nition..All.subnets.will.inherit |
| 9a140 | 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 74 65 6d 20 69 66 20 6e 6f 74 20 | .this.configuration.item.if.not. |
| 9a160 | 73 70 65 63 69 66 69 65 64 20 6c 6f 63 61 6c 6c 79 2e 20 41 6e 20 65 78 61 6d 70 6c 65 20 66 6f | specified.locally..An.example.fo |
| 9a180 | 72 20 55 62 69 71 75 69 74 69 20 69 73 20 73 68 6f 77 6e 20 62 65 6c 6f 77 3a 00 54 68 69 73 20 | r.Ubiquiti.is.shown.below:.This. |
| 9a1a0 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 6c 65 74 73 20 79 6f 75 | configuration.parameter.lets.you |
| 9a1c0 | 20 73 70 65 63 69 66 79 20 61 20 76 65 6e 64 6f 72 2d 6f 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 | .specify.a.vendor-option.for.the |
| 9a1e0 | 20 73 75 62 6e 65 74 20 73 70 65 63 69 66 69 65 64 20 77 69 74 68 69 6e 20 74 68 65 20 73 68 61 | .subnet.specified.within.the.sha |
| 9a200 | 72 65 64 20 6e 65 74 77 6f 72 6b 20 64 65 66 69 6e 69 74 69 6f 6e 2e 20 41 6e 20 65 78 61 6d 70 | red.network.definition..An.examp |
| 9a220 | 6c 65 20 66 6f 72 20 55 62 69 71 75 69 74 69 20 69 73 20 73 68 6f 77 6e 20 62 65 6c 6f 77 3a 00 | le.for.Ubiquiti.is.shown.below:. |
| 9a240 | 54 68 69 73 20 63 6f 75 6c 64 20 62 65 20 68 65 6c 70 66 75 6c 20 69 66 20 79 6f 75 20 77 61 6e | This.could.be.helpful.if.you.wan |
| 9a260 | 74 20 74 6f 20 74 65 73 74 20 68 6f 77 20 61 6e 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 62 65 68 | t.to.test.how.an.application.beh |
| 9a280 | 61 76 65 73 20 75 6e 64 65 72 20 63 65 72 74 61 69 6e 20 6e 65 74 77 6f 72 6b 20 63 6f 6e 64 69 | aves.under.certain.network.condi |
| 9a2a0 | 74 69 6f 6e 73 2e 00 54 68 69 73 20 63 72 65 61 74 65 73 20 61 20 72 6f 75 74 65 20 70 6f 6c 69 | tions..This.creates.a.route.poli |
| 9a2c0 | 63 79 20 63 61 6c 6c 65 64 20 46 49 4c 54 45 52 2d 57 45 42 20 77 69 74 68 20 6f 6e 65 20 72 75 | cy.called.FILTER-WEB.with.one.ru |
| 9a2e0 | 6c 65 20 74 6f 20 73 65 74 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 66 6f 72 20 | le.to.set.the.routing.table.for. |
| 9a300 | 6d 61 74 63 68 69 6e 67 20 74 72 61 66 66 69 63 20 28 54 43 50 20 70 6f 72 74 20 38 30 29 20 74 | matching.traffic.(TCP.port.80).t |
| 9a320 | 6f 20 74 61 62 6c 65 20 49 44 20 31 30 30 20 69 6e 73 74 65 61 64 20 6f 66 20 74 68 65 20 64 65 | o.table.ID.100.instead.of.the.de |
| 9a340 | 66 61 75 6c 74 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 00 54 68 69 73 20 64 65 66 61 75 6c | fault.routing.table..This.defaul |
| 9a360 | 74 73 20 74 6f 20 31 30 30 30 30 2e 00 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 31 38 | ts.to.10000..This.defaults.to.18 |
| 9a380 | 31 32 2e 00 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 32 30 30 37 2e 00 54 68 69 73 20 | 12..This.defaults.to.2007..This. |
| 9a3a0 | 64 65 66 61 75 6c 74 73 20 74 6f 20 33 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 69 73 20 64 65 66 | defaults.to.30.seconds..This.def |
| 9a3c0 | 61 75 6c 74 73 20 74 6f 20 33 30 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 69 73 20 64 65 66 61 75 | aults.to.300.seconds..This.defau |
| 9a3e0 | 6c 74 73 20 74 6f 20 34 39 2e 00 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 35 2e 00 54 | lts.to.49..This.defaults.to.5..T |
| 9a400 | 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 55 44 50 00 54 68 69 73 20 64 65 66 61 75 6c 74 | his.defaults.to.UDP.This.default |
| 9a420 | 73 20 74 6f 20 62 6f 74 68 20 31 2e 32 20 61 6e 64 20 31 2e 33 2e 00 54 68 69 73 20 64 65 66 61 | s.to.both.1.2.and.1.3..This.defa |
| 9a440 | 75 6c 74 73 20 74 6f 20 68 74 74 70 73 3a 2f 2f 61 63 6d 65 2d 76 30 32 2e 61 70 69 2e 6c 65 74 | ults.to.https://acme-v02.api.let |
| 9a460 | 73 65 6e 63 72 79 70 74 2e 6f 72 67 2f 64 69 72 65 63 74 6f 72 79 00 54 68 69 73 20 64 65 66 61 | sencrypt.org/directory.This.defa |
| 9a480 | 75 6c 74 73 20 74 6f 20 70 68 79 30 2e 00 54 68 69 73 20 64 65 70 65 6e 64 73 20 6f 6e 20 74 68 | ults.to.phy0..This.depends.on.th |
| 9a4a0 | 65 20 64 72 69 76 65 72 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 61 6e 64 20 6d 61 79 20 6e 6f | e.driver.capabilities.and.may.no |
| 9a4c0 | 74 20 62 65 20 61 76 61 69 6c 61 62 6c 65 20 77 69 74 68 20 61 6c 6c 20 64 72 69 76 65 72 73 2e | t.be.available.with.all.drivers. |
| 9a4e0 | 00 54 68 69 73 20 64 69 61 62 6c 65 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 63 61 63 68 65 20 | .This.diable.the.external.cache. |
| 9a500 | 61 6e 64 20 64 69 72 65 63 74 6c 79 20 69 6e 6a 65 63 74 73 20 74 68 65 20 66 6c 6f 77 2d 73 74 | and.directly.injects.the.flow-st |
| 9a520 | 61 74 65 73 20 69 6e 74 6f 20 74 68 65 20 69 6e 2d 6b 65 72 6e 65 6c 20 43 6f 6e 6e 65 63 74 69 | ates.into.the.in-kernel.Connecti |
| 9a540 | 6f 6e 20 54 72 61 63 6b 69 6e 67 20 53 79 73 74 65 6d 20 6f 66 20 74 68 65 20 62 61 63 6b 75 70 | on.Tracking.System.of.the.backup |
| 9a560 | 20 66 69 72 65 77 61 6c 6c 2e 00 54 68 69 73 20 64 69 61 67 72 61 6d 20 63 6f 72 72 65 73 70 6f | .firewall..This.diagram.correspo |
| 9a580 | 6e 64 73 20 77 69 74 68 20 74 68 65 20 65 78 61 6d 70 6c 65 20 73 69 74 65 20 74 6f 20 73 69 74 | nds.with.the.example.site.to.sit |
| 9a5a0 | 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 62 65 6c 6f 77 2e 00 54 68 69 73 20 65 6e 61 62 | e.configuration.below..This.enab |
| 9a5c0 | 6c 65 73 20 3a 72 66 63 3a 60 33 31 33 37 60 20 73 75 70 70 6f 72 74 2c 20 77 68 65 72 65 20 74 | les.:rfc:`3137`.support,.where.t |
| 9a5e0 | 68 65 20 4f 53 50 46 20 70 72 6f 63 65 73 73 20 64 65 73 63 72 69 62 65 73 20 69 74 73 20 74 72 | he.OSPF.process.describes.its.tr |
| 9a600 | 61 6e 73 69 74 20 6c 69 6e 6b 73 20 69 6e 20 69 74 73 20 72 6f 75 74 65 72 2d 4c 53 41 20 61 73 | ansit.links.in.its.router-LSA.as |
| 9a620 | 20 68 61 76 69 6e 67 20 69 6e 66 69 6e 69 74 65 20 64 69 73 74 61 6e 63 65 20 73 6f 20 74 68 61 | .having.infinite.distance.so.tha |
| 9a640 | 74 20 6f 74 68 65 72 20 72 6f 75 74 65 72 73 20 77 69 6c 6c 20 61 76 6f 69 64 20 63 61 6c 63 75 | t.other.routers.will.avoid.calcu |
| 9a660 | 6c 61 74 69 6e 67 20 74 72 61 6e 73 69 74 20 70 61 74 68 73 20 74 68 72 6f 75 67 68 20 74 68 65 | lating.transit.paths.through.the |
| 9a680 | 20 72 6f 75 74 65 72 20 77 68 69 6c 65 20 73 74 69 6c 6c 20 62 65 69 6e 67 20 61 62 6c 65 20 74 | .router.while.still.being.able.t |
| 9a6a0 | 6f 20 72 65 61 63 68 20 6e 65 74 77 6f 72 6b 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 6f 75 | o.reach.networks.through.the.rou |
| 9a6c0 | 74 65 72 2e 00 54 68 69 73 20 65 6e 61 62 6c 65 73 20 74 68 65 20 67 72 65 65 6e 66 69 65 6c 64 | ter..This.enables.the.greenfield |
| 9a6e0 | 20 6f 70 74 69 6f 6e 20 77 68 69 63 68 20 73 65 74 73 20 74 68 65 20 60 60 5b 47 46 5d 60 60 20 | .option.which.sets.the.``[GF]``. |
| 9a700 | 6f 70 74 69 6f 6e 00 54 68 69 73 20 65 73 74 61 62 6c 69 73 68 65 73 20 6f 75 72 20 50 6f 72 74 | option.This.establishes.our.Port |
| 9a720 | 20 46 6f 72 77 61 72 64 20 72 75 6c 65 2c 20 62 75 74 20 69 66 20 77 65 20 63 72 65 61 74 65 64 | .Forward.rule,.but.if.we.created |
| 9a740 | 20 61 20 66 69 72 65 77 61 6c 6c 20 70 6f 6c 69 63 79 20 69 74 20 77 69 6c 6c 20 6c 69 6b 65 6c | .a.firewall.policy.it.will.likel |
| 9a760 | 79 20 62 6c 6f 63 6b 20 74 68 65 20 74 72 61 66 66 69 63 2e 00 54 68 69 73 20 65 78 61 6d 70 6c | y.block.the.traffic..This.exampl |
| 9a780 | 65 20 63 72 65 61 74 65 73 20 61 6e 20 49 50 76 34 20 70 72 65 66 69 78 2d 6c 69 73 74 20 6e 61 | e.creates.an.IPv4.prefix-list.na |
| 9a7a0 | 6d 65 64 20 50 4c 34 2d 45 58 41 4d 50 4c 45 2d 4e 41 4d 45 2c 20 64 65 66 69 6e 65 73 20 33 20 | med.PL4-EXAMPLE-NAME,.defines.3. |
| 9a7c0 | 72 75 6c 65 73 20 65 61 63 68 20 77 69 74 68 20 31 20 70 72 65 66 69 78 2c 20 61 6e 64 20 6d 61 | rules.each.with.1.prefix,.and.ma |
| 9a7e0 | 74 63 68 65 73 20 6c 65 20 28 6c 65 73 73 20 74 68 61 6e 2f 65 71 75 61 6c 20 74 6f 29 20 2f 33 | tches.le.(less.than/equal.to)./3 |
| 9a800 | 32 2e 00 54 68 69 73 20 65 78 61 6d 70 6c 65 20 73 68 6f 77 73 20 68 6f 77 20 74 6f 20 74 61 72 | 2..This.example.shows.how.to.tar |
| 9a820 | 67 65 74 20 61 6e 20 4d 53 53 20 63 6c 61 6d 70 20 28 69 6e 20 6f 75 72 20 65 78 61 6d 70 6c 65 | get.an.MSS.clamp.(in.our.example |
| 9a840 | 20 74 6f 20 31 33 36 30 20 62 79 74 65 73 29 20 74 6f 20 61 20 73 70 65 63 69 66 69 63 20 64 65 | .to.1360.bytes).to.a.specific.de |
| 9a860 | 73 74 69 6e 61 74 69 6f 6e 20 49 50 2e 00 54 68 69 73 20 65 78 61 6d 70 6c 65 20 75 73 65 73 20 | stination.IP..This.example.uses. |
| 9a880 | 43 41 43 65 72 74 20 61 73 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 2e | CACert.as.certificate.authority. |
| 9a8a0 | 00 54 68 69 73 20 66 65 61 74 75 72 65 20 63 6c 6f 73 65 6c 79 20 77 6f 72 6b 73 20 74 6f 67 65 | .This.feature.closely.works.toge |
| 9a8c0 | 74 68 65 72 20 77 69 74 68 20 3a 72 65 66 3a 60 70 6b 69 60 20 73 75 62 73 79 73 74 65 6d 20 61 | ther.with.:ref:`pki`.subsystem.a |
| 9a8e0 | 73 20 79 6f 75 20 72 65 71 75 69 72 65 64 20 61 20 78 35 30 39 20 63 65 72 74 69 66 69 63 61 74 | s.you.required.a.x509.certificat |
| 9a900 | 65 2e 00 54 68 69 73 20 66 65 61 74 75 72 65 20 73 65 72 76 65 73 20 74 68 65 20 70 75 72 70 6f | e..This.feature.serves.the.purpo |
| 9a920 | 73 65 20 6f 66 20 74 68 69 67 68 74 65 6e 69 6e 67 20 74 68 65 20 70 61 63 6b 65 74 20 76 61 6c | se.of.thightening.the.packet.val |
| 9a940 | 69 64 61 74 69 6f 6e 20 72 65 71 75 69 72 65 6d 65 6e 74 73 20 74 6f 20 61 76 6f 69 64 20 72 65 | idation.requirements.to.avoid.re |
| 9a960 | 63 65 69 76 69 6e 67 20 42 46 44 20 63 6f 6e 74 72 6f 6c 20 70 61 63 6b 65 74 73 20 66 72 6f 6d | ceiving.BFD.control.packets.from |
| 9a980 | 20 6f 74 68 65 72 20 73 65 73 73 69 6f 6e 73 2e 00 54 68 69 73 20 66 65 61 74 75 72 65 20 73 75 | .other.sessions..This.feature.su |
| 9a9a0 | 6d 6d 61 72 69 73 65 73 20 6f 72 69 67 69 6e 61 74 65 64 20 65 78 74 65 72 6e 61 6c 20 4c 53 41 | mmarises.originated.external.LSA |
| 9a9c0 | 73 20 28 54 79 70 65 2d 35 20 61 6e 64 20 54 79 70 65 2d 37 29 2e 20 53 75 6d 6d 61 72 79 20 52 | s.(Type-5.and.Type-7)..Summary.R |
| 9a9e0 | 6f 75 74 65 20 77 69 6c 6c 20 62 65 20 6f 72 69 67 69 6e 61 74 65 64 20 6f 6e 2d 62 65 68 61 6c | oute.will.be.originated.on-behal |
| 9aa00 | 66 20 6f 66 20 61 6c 6c 20 6d 61 74 63 68 65 64 20 65 78 74 65 72 6e 61 6c 20 4c 53 41 73 2e 00 | f.of.all.matched.external.LSAs.. |
| 9aa20 | 54 68 69 73 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 69 73 20 63 6f 6e 74 72 6f 6c 6c 65 64 | This.functionality.is.controlled |
| 9aa40 | 20 62 79 20 61 64 64 69 6e 67 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 | .by.adding.the.following.configu |
| 9aa60 | 72 61 74 69 6f 6e 3a 00 54 68 69 73 20 66 75 6e 63 74 69 6f 6e 73 20 66 6f 72 20 62 6f 74 68 20 | ration:.This.functions.for.both. |
| 9aa80 | 69 6e 64 69 76 69 64 75 61 6c 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 61 64 64 72 65 73 73 | individual.addresses.and.address |
| 9aaa0 | 20 67 72 6f 75 70 73 2e 00 54 68 69 73 20 67 69 76 65 73 20 75 73 20 49 47 50 2d 4c 44 50 20 73 | .groups..This.gives.us.IGP-LDP.s |
| 9aac0 | 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 66 6f 72 20 61 6c 6c 20 6e 6f 6e 2d 6c 6f 6f 70 62 | ynchronization.for.all.non-loopb |
| 9aae0 | 61 63 6b 20 69 6e 74 65 72 66 61 63 65 73 20 77 69 74 68 20 61 20 68 6f 6c 64 64 6f 77 6e 20 74 | ack.interfaces.with.a.holddown.t |
| 9ab00 | 69 6d 65 72 20 6f 66 20 7a 65 72 6f 20 73 65 63 6f 6e 64 73 3a 00 54 68 69 73 20 67 69 76 65 73 | imer.of.zero.seconds:.This.gives |
| 9ab20 | 20 75 73 20 4d 50 4c 53 20 73 65 67 6d 65 6e 74 20 72 6f 75 74 69 6e 67 20 65 6e 61 62 6c 65 64 | .us.MPLS.segment.routing.enabled |
| 9ab40 | 20 61 6e 64 20 6c 61 62 65 6c 73 20 66 6f 72 20 66 61 72 20 65 6e 64 20 6c 6f 6f 70 62 61 63 6b | .and.labels.for.far.end.loopback |
| 9ab60 | 73 3a 00 54 68 69 73 20 67 69 76 65 73 20 75 73 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6e | s:.This.gives.us.the.following.n |
| 9ab80 | 65 69 67 68 62 6f 72 73 68 69 70 73 2c 20 4c 65 76 65 6c 20 31 20 61 6e 64 20 4c 65 76 65 6c 20 | eighborships,.Level.1.and.Level. |
| 9aba0 | 32 3a 00 54 68 69 73 20 67 69 76 65 73 20 75 73 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6e | 2:.This.gives.us.the.following.n |
| 9abc0 | 65 69 67 68 62 6f 72 73 68 69 70 73 3a 00 54 68 69 73 20 69 6e 73 74 72 75 63 74 73 20 6f 70 65 | eighborships:.This.instructs.ope |
| 9abe0 | 6e 6e 68 72 70 20 74 6f 20 72 65 70 6c 79 20 77 69 74 68 20 61 75 74 68 6f 72 61 74 69 76 65 20 | nnhrp.to.reply.with.authorative. |
| 9ac00 | 61 6e 73 77 65 72 73 20 6f 6e 20 4e 48 52 50 20 52 65 73 6f 6c 75 74 69 6f 6e 20 52 65 71 75 65 | answers.on.NHRP.Resolution.Reque |
| 9ac20 | 73 74 73 20 64 65 73 74 69 6e 69 65 64 20 74 6f 20 61 64 64 72 65 73 73 65 73 20 69 6e 20 74 68 | sts.destinied.to.addresses.in.th |
| 9ac40 | 69 73 20 69 6e 74 65 72 66 61 63 65 20 28 69 6e 73 74 65 61 64 20 6f 66 20 66 6f 72 77 61 72 64 | is.interface.(instead.of.forward |
| 9ac60 | 69 6e 67 20 74 68 65 20 70 61 63 6b 65 74 73 29 2e 20 54 68 69 73 20 65 66 66 65 63 74 69 76 65 | ing.the.packets)..This.effective |
| 9ac80 | 6c 79 20 61 6c 6c 6f 77 73 20 74 68 65 20 63 72 65 61 74 69 6f 6e 20 6f 66 20 73 68 6f 72 74 63 | ly.allows.the.creation.of.shortc |
| 9aca0 | 75 74 20 72 6f 75 74 65 73 20 74 6f 20 73 75 62 6e 65 74 73 20 6c 6f 63 61 74 65 64 20 6f 6e 20 | ut.routes.to.subnets.located.on. |
| 9acc0 | 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 69 73 20 69 73 20 61 20 63 6f 6d 6d 6f 6e 20 | the.interface..This.is.a.common. |
| 9ace0 | 73 63 65 6e 61 72 69 6f 20 77 68 65 72 65 20 62 6f 74 68 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 | scenario.where.both.:ref:`source |
| 9ad00 | 2d 6e 61 74 60 20 61 6e 64 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 | -nat`.and.:ref:`destination-nat` |
| 9ad20 | 20 61 72 65 20 63 6f 6e 66 69 67 75 72 65 64 20 61 74 20 74 68 65 20 73 61 6d 65 20 74 69 6d 65 | .are.configured.at.the.same.time |
| 9ad40 | 2e 20 49 74 27 73 20 63 6f 6d 6d 6f 6e 6c 79 20 75 73 65 64 20 77 68 65 6e 20 69 6e 74 65 72 6e | ..It's.commonly.used.when.intern |
| 9ad60 | 61 6c 20 28 70 72 69 76 61 74 65 29 20 68 6f 73 74 73 20 6e 65 65 64 20 74 6f 20 65 73 74 61 62 | al.(private).hosts.need.to.estab |
| 9ad80 | 6c 69 73 68 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 68 20 65 78 74 65 72 6e 61 6c 20 | lish.a.connection.with.external. |
| 9ada0 | 72 65 73 6f 75 72 63 65 73 20 61 6e 64 20 65 78 74 65 72 6e 61 6c 20 73 79 73 74 65 6d 73 20 6e | resources.and.external.systems.n |
| 9adc0 | 65 65 64 20 74 6f 20 61 63 63 65 73 73 20 69 6e 74 65 72 6e 61 6c 20 28 70 72 69 76 61 74 65 29 | eed.to.access.internal.(private) |
| 9ade0 | 20 72 65 73 6f 75 72 63 65 73 2e 00 54 68 69 73 20 69 73 20 61 20 63 6f 6e 66 69 67 75 72 61 74 | .resources..This.is.a.configurat |
| 9ae00 | 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 66 6f 72 20 74 68 65 20 60 3c 73 75 62 6e 65 74 3e 60 | ion.parameter.for.the.`<subnet>` |
| 9ae20 | 2c 20 73 61 79 69 6e 67 20 74 68 61 74 20 61 73 20 70 61 72 74 20 6f 66 20 74 68 65 20 72 65 73 | ,.saying.that.as.part.of.the.res |
| 9ae40 | 70 6f 6e 73 65 2c 20 74 65 6c 6c 20 74 68 65 20 63 6c 69 65 6e 74 20 74 68 61 74 20 74 68 65 20 | ponse,.tell.the.client.that.the. |
| 9ae60 | 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 20 63 61 6e 20 62 65 20 72 65 61 63 68 65 64 20 61 | default.gateway.can.be.reached.a |
| 9ae80 | 74 20 60 3c 61 64 64 72 65 73 73 3e 60 2e 00 54 68 69 73 20 69 73 20 61 20 63 6f 6e 66 69 67 75 | t.`<address>`..This.is.a.configu |
| 9aea0 | 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 66 6f 72 20 74 68 65 20 73 75 62 6e 65 74 2c | ration.parameter.for.the.subnet, |
| 9aec0 | 20 73 61 79 69 6e 67 20 74 68 61 74 20 61 73 20 70 61 72 74 20 6f 66 20 74 68 65 20 72 65 73 70 | .saying.that.as.part.of.the.resp |
| 9aee0 | 6f 6e 73 65 2c 20 74 65 6c 6c 20 74 68 65 20 63 6c 69 65 6e 74 20 74 68 61 74 20 74 68 65 20 44 | onse,.tell.the.client.that.the.D |
| 9af00 | 4e 53 20 73 65 72 76 65 72 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 61 74 20 60 3c 61 64 64 72 | NS.server.can.be.found.at.`<addr |
| 9af20 | 65 73 73 3e 60 2e 00 54 68 69 73 20 69 73 20 61 20 6d 61 6e 64 61 74 6f 72 79 20 63 6f 6d 6d 61 | ess>`..This.is.a.mandatory.comma |
| 9af40 | 6e 64 2e 20 53 65 74 73 20 72 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 20 74 6f 20 6d | nd..Sets.regular.expression.to.m |
| 9af60 | 61 74 63 68 20 61 67 61 69 6e 73 74 20 6c 6f 67 20 73 74 72 69 6e 67 20 6d 65 73 73 61 67 65 2e | atch.against.log.string.message. |
| 9af80 | 00 54 68 69 73 20 69 73 20 61 20 6d 61 6e 64 61 74 6f 72 79 20 63 6f 6d 6d 61 6e 64 2e 20 53 65 | .This.is.a.mandatory.command..Se |
| 9afa0 | 74 73 20 74 68 65 20 66 75 6c 6c 20 70 61 74 68 20 74 6f 20 74 68 65 20 73 63 72 69 70 74 2e 20 | ts.the.full.path.to.the.script.. |
| 9afc0 | 54 68 65 20 73 63 72 69 70 74 20 66 69 6c 65 20 6d 75 73 74 20 62 65 20 65 78 65 63 75 74 61 62 | The.script.file.must.be.executab |
| 9afe0 | 6c 65 2e 00 54 68 69 73 20 69 73 20 61 20 6d 61 6e 64 61 74 6f 72 79 20 6f 70 74 69 6f 6e 00 54 | le..This.is.a.mandatory.option.T |
| 9b000 | 68 69 73 20 69 73 20 61 20 6d 61 6e 64 61 74 6f 72 79 20 73 65 74 74 69 6e 67 2e 00 54 68 69 73 | his.is.a.mandatory.setting..This |
| 9b020 | 20 69 73 20 61 63 68 69 65 76 65 64 20 62 79 20 75 73 69 6e 67 20 74 68 65 20 66 69 72 73 74 20 | .is.achieved.by.using.the.first. |
| 9b040 | 74 68 72 65 65 20 62 69 74 73 20 6f 66 20 74 68 65 20 54 6f 53 20 28 54 79 70 65 20 6f 66 20 53 | three.bits.of.the.ToS.(Type.of.S |
| 9b060 | 65 72 76 69 63 65 29 20 66 69 65 6c 64 20 74 6f 20 63 61 74 65 67 6f 72 69 7a 65 20 64 61 74 61 | ervice).field.to.categorize.data |
| 9b080 | 20 73 74 72 65 61 6d 73 20 61 6e 64 2c 20 69 6e 20 61 63 63 6f 72 64 61 6e 63 65 20 77 69 74 68 | .streams.and,.in.accordance.with |
| 9b0a0 | 20 74 68 65 20 64 65 66 69 6e 65 64 20 70 72 65 63 65 64 65 6e 63 65 20 70 61 72 61 6d 65 74 65 | .the.defined.precedence.paramete |
| 9b0c0 | 72 73 2c 20 61 20 64 65 63 69 73 69 6f 6e 20 69 73 20 6d 61 64 65 2e 00 54 68 69 73 20 69 73 20 | rs,.a.decision.is.made..This.is. |
| 9b0e0 | 61 6c 73 6f 20 6b 6e 6f 77 6e 20 61 73 20 74 68 65 20 48 55 42 73 20 49 50 20 61 64 64 72 65 73 | also.known.as.the.HUBs.IP.addres |
| 9b100 | 73 20 6f 72 20 46 51 44 4e 2e 00 54 68 69 73 20 69 73 20 61 6e 20 6f 70 74 69 6f 6e 61 6c 20 63 | s.or.FQDN..This.is.an.optional.c |
| 9b120 | 6f 6d 6d 61 6e 64 20 62 65 63 61 75 73 65 20 74 68 65 20 65 76 65 6e 74 20 68 61 6e 64 6c 65 72 | ommand.because.the.event.handler |
| 9b140 | 20 77 69 6c 6c 20 62 65 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 63 72 65 61 74 65 64 20 61 | .will.be.automatically.created.a |
| 9b160 | 66 74 65 72 20 61 6e 79 20 6f 66 20 74 68 65 20 6e 65 78 74 20 63 6f 6d 6d 61 6e 64 73 2e 00 54 | fter.any.of.the.next.commands..T |
| 9b180 | 68 69 73 20 69 73 20 61 6e 20 6f 70 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 2e 20 41 64 64 73 | his.is.an.optional.command..Adds |
| 9b1a0 | 20 61 72 67 75 6d 65 6e 74 73 20 74 6f 20 74 68 65 20 73 63 72 69 70 74 2e 20 41 72 67 75 6d 65 | .arguments.to.the.script..Argume |
| 9b1c0 | 6e 74 73 20 6d 75 73 74 20 62 65 20 73 65 70 61 72 61 74 65 64 20 62 79 20 73 70 61 63 65 73 2e | nts.must.be.separated.by.spaces. |
| 9b1e0 | 00 54 68 69 73 20 69 73 20 61 6e 20 6f 70 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 2e 20 41 64 | .This.is.an.optional.command..Ad |
| 9b200 | 64 73 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 61 6e 64 20 69 74 73 20 76 61 6c 75 65 20 74 6f 20 | ds.environment.and.its.value.to. |
| 9b220 | 74 68 65 20 73 63 72 69 70 74 2e 20 55 73 65 20 73 65 70 61 72 61 74 65 20 63 6f 6d 6d 61 6e 64 | the.script..Use.separate.command |
| 9b240 | 73 20 66 6f 72 20 65 61 63 68 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 2e 00 54 68 69 73 20 69 73 20 | s.for.each.environment..This.is. |
| 9b260 | 61 6e 20 6f 70 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 2e 20 46 69 6c 74 65 72 73 20 6c 6f 67 | an.optional.command..Filters.log |
| 9b280 | 20 6d 65 73 73 61 67 65 73 20 62 79 20 73 79 73 6c 6f 67 2d 69 64 65 6e 74 69 66 69 65 72 2e 00 | .messages.by.syslog-identifier.. |
| 9b2a0 | 54 68 69 73 20 69 73 20 64 6f 6e 65 20 74 6f 20 73 75 70 70 6f 72 74 20 28 65 74 68 65 72 6e 65 | This.is.done.to.support.(etherne |
| 9b2c0 | 74 29 20 73 77 69 74 63 68 20 66 65 61 74 75 72 65 73 2c 20 6c 69 6b 65 20 3a 72 66 63 3a 60 33 | t).switch.features,.like.:rfc:`3 |
| 9b2e0 | 30 36 39 60 2c 20 77 68 65 72 65 20 74 68 65 20 69 6e 64 69 76 69 64 75 61 6c 20 70 6f 72 74 73 | 069`,.where.the.individual.ports |
| 9b300 | 20 61 72 65 20 4e 4f 54 20 61 6c 6c 6f 77 65 64 20 74 6f 20 63 6f 6d 6d 75 6e 69 63 61 74 65 20 | .are.NOT.allowed.to.communicate. |
| 9b320 | 77 69 74 68 20 65 61 63 68 20 6f 74 68 65 72 2c 20 62 75 74 20 74 68 65 79 20 61 72 65 20 61 6c | with.each.other,.but.they.are.al |
| 9b340 | 6c 6f 77 65 64 20 74 6f 20 74 61 6c 6b 20 74 6f 20 74 68 65 20 75 70 73 74 72 65 61 6d 20 72 6f | lowed.to.talk.to.the.upstream.ro |
| 9b360 | 75 74 65 72 2e 20 41 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 33 30 36 39 | uter..As.described.in.:rfc:`3069 |
| 9b380 | 60 2c 20 69 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 61 6c 6c 6f 77 20 74 68 65 73 65 | `,.it.is.possible.to.allow.these |
| 9b3a0 | 20 68 6f 73 74 73 20 74 6f 20 63 6f 6d 6d 75 6e 69 63 61 74 65 20 74 68 72 6f 75 67 68 20 74 68 | .hosts.to.communicate.through.th |
| 9b3c0 | 65 20 75 70 73 74 72 65 61 6d 20 72 6f 75 74 65 72 20 62 79 20 70 72 6f 78 79 5f 61 72 70 27 69 | e.upstream.router.by.proxy_arp'i |
| 9b3e0 | 6e 67 2e 00 54 68 69 73 20 69 73 20 65 73 70 65 63 69 61 6c 6c 79 20 75 73 65 66 75 6c 20 66 6f | ng..This.is.especially.useful.fo |
| 9b400 | 72 20 74 68 65 20 75 70 73 74 72 65 61 6d 20 69 6e 74 65 72 66 61 63 65 2c 20 73 69 6e 63 65 20 | r.the.upstream.interface,.since. |
| 9b420 | 74 68 65 20 73 6f 75 72 63 65 20 66 6f 72 20 6d 75 6c 74 69 63 61 73 74 20 74 72 61 66 66 69 63 | the.source.for.multicast.traffic |
| 9b440 | 20 69 73 20 6f 66 74 65 6e 20 66 72 6f 6d 20 61 20 72 65 6d 6f 74 65 20 6c 6f 63 61 74 69 6f 6e | .is.often.from.a.remote.location |
| 9b460 | 2e 00 54 68 69 73 20 69 73 20 6f 6e 65 20 6f 66 20 74 68 65 20 73 69 6d 70 6c 65 73 74 20 74 79 | ..This.is.one.of.the.simplest.ty |
| 9b480 | 70 65 73 20 6f 66 20 74 75 6e 6e 65 6c 73 2c 20 61 73 20 64 65 66 69 6e 65 64 20 62 79 20 3a 72 | pes.of.tunnels,.as.defined.by.:r |
| 9b4a0 | 66 63 3a 60 32 30 30 33 60 2e 20 49 74 20 74 61 6b 65 73 20 61 6e 20 49 50 76 34 20 70 61 63 6b | fc:`2003`..It.takes.an.IPv4.pack |
| 9b4c0 | 65 74 20 61 6e 64 20 73 65 6e 64 73 20 69 74 20 61 73 20 61 20 70 61 79 6c 6f 61 64 20 6f 66 20 | et.and.sends.it.as.a.payload.of. |
| 9b4e0 | 61 6e 6f 74 68 65 72 20 49 50 76 34 20 70 61 63 6b 65 74 2e 20 46 6f 72 20 74 68 69 73 20 72 65 | another.IPv4.packet..For.this.re |
| 9b500 | 61 73 6f 6e 2c 20 74 68 65 72 65 20 61 72 65 20 6e 6f 20 6f 74 68 65 72 20 63 6f 6e 66 69 67 75 | ason,.there.are.no.other.configu |
| 9b520 | 72 61 74 69 6f 6e 20 6f 70 74 69 6f 6e 73 20 66 6f 72 20 74 68 69 73 20 6b 69 6e 64 20 6f 66 20 | ration.options.for.this.kind.of. |
| 9b540 | 74 75 6e 6e 65 6c 2e 00 54 68 69 73 20 69 73 20 6f 70 74 69 6f 6e 61 6c 2e 00 54 68 69 73 20 69 | tunnel..This.is.optional..This.i |
| 9b560 | 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 67 72 6f 75 70 73 20 | s.similar.to.the.network.groups. |
| 9b580 | 70 61 72 74 2c 20 62 75 74 20 68 65 72 65 20 79 6f 75 20 61 72 65 20 61 62 6c 65 20 74 6f 20 6e | part,.but.here.you.are.able.to.n |
| 9b5a0 | 65 67 61 74 65 20 74 68 65 20 6d 61 74 63 68 69 6e 67 20 61 64 64 72 65 73 73 65 73 2e 00 54 68 | egate.the.matching.addresses..Th |
| 9b5c0 | 69 73 20 69 73 20 74 68 65 20 49 50 76 36 20 63 6f 75 6e 74 65 72 70 61 72 74 20 6f 66 20 49 50 | is.is.the.IPv6.counterpart.of.IP |
| 9b5e0 | 49 50 2e 20 49 27 6d 20 6e 6f 74 20 61 77 61 72 65 20 6f 66 20 61 6e 20 52 46 43 20 74 68 61 74 | IP..I'm.not.aware.of.an.RFC.that |
| 9b600 | 20 64 65 66 69 6e 65 73 20 74 68 69 73 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 73 70 65 63 | .defines.this.encapsulation.spec |
| 9b620 | 69 66 69 63 61 6c 6c 79 2c 20 62 75 74 20 69 74 27 73 20 61 20 6e 61 74 75 72 61 6c 20 73 70 65 | ifically,.but.it's.a.natural.spe |
| 9b640 | 63 69 66 69 63 20 63 61 73 65 20 6f 66 20 49 50 76 36 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e | cific.case.of.IPv6.encapsulation |
| 9b660 | 20 6d 65 63 68 61 6e 69 73 6d 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 32 34 | .mechanisms.described.in.:rfc:24 |
| 9b680 | 37 33 60 2e 00 54 68 69 73 20 69 73 20 74 68 65 20 4c 41 4e 20 65 78 74 65 6e 73 69 6f 6e 20 75 | 73`..This.is.the.LAN.extension.u |
| 9b6a0 | 73 65 20 63 61 73 65 2e 20 54 68 65 20 65 74 68 30 20 70 6f 72 74 20 6f 66 20 74 68 65 20 64 69 | se.case..The.eth0.port.of.the.di |
| 9b6c0 | 73 74 61 6e 74 20 56 50 4e 20 70 65 65 72 73 20 77 69 6c 6c 20 62 65 20 64 69 72 65 63 74 6c 79 | stant.VPN.peers.will.be.directly |
| 9b6e0 | 20 63 6f 6e 6e 65 63 74 65 64 20 6c 69 6b 65 20 69 66 20 74 68 65 72 65 20 77 61 73 20 61 20 73 | .connected.like.if.there.was.a.s |
| 9b700 | 77 69 74 63 68 20 62 65 74 77 65 65 6e 20 74 68 65 6d 2e 00 54 68 69 73 20 69 73 20 74 68 65 20 | witch.between.them..This.is.the. |
| 9b720 | 4c 43 44 20 6d 6f 64 65 6c 20 75 73 65 64 20 69 6e 20 79 6f 75 72 20 73 79 73 74 65 6d 2e 00 54 | LCD.model.used.in.your.system..T |
| 9b740 | 68 69 73 20 69 73 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 | his.is.the.configuration.paramet |
| 9b760 | 65 72 20 66 6f 72 20 74 68 65 20 65 6e 74 69 72 65 20 73 68 61 72 65 64 20 6e 65 74 77 6f 72 6b | er.for.the.entire.shared.network |
| 9b780 | 20 64 65 66 69 6e 69 74 69 6f 6e 2e 20 41 6c 6c 20 73 75 62 6e 65 74 73 20 77 69 6c 6c 20 69 6e | .definition..All.subnets.will.in |
| 9b7a0 | 68 65 72 69 74 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 74 65 6d 20 69 66 | herit.this.configuration.item.if |
| 9b7c0 | 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 20 6c 6f 63 61 6c 6c 79 2e 00 54 68 69 73 20 69 73 20 | .not.specified.locally..This.is. |
| 9b7e0 | 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 66 6f 72 20 | the.configuration.parameter.for. |
| 9b800 | 74 68 65 20 65 6e 74 69 72 65 20 73 68 61 72 65 64 20 6e 65 74 77 6f 72 6b 20 64 65 66 69 6e 69 | the.entire.shared.network.defini |
| 9b820 | 74 69 6f 6e 2e 20 41 6c 6c 20 73 75 62 6e 65 74 73 20 77 69 6c 6c 20 69 6e 68 65 72 69 74 20 74 | tion..All.subnets.will.inherit.t |
| 9b840 | 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 74 65 6d 20 69 66 20 6e 6f 74 20 73 70 | his.configuration.item.if.not.sp |
| 9b860 | 65 63 69 66 69 65 64 20 6c 6f 63 61 6c 6c 79 2e 20 4d 75 6c 74 69 70 6c 65 20 44 4e 53 20 73 65 | ecified.locally..Multiple.DNS.se |
| 9b880 | 72 76 65 72 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 2e 00 54 68 69 73 20 69 73 20 74 68 | rvers.can.be.defined..This.is.th |
| 9b8a0 | 65 20 65 71 75 69 76 61 6c 65 6e 74 20 6f 66 20 74 68 65 20 68 6f 73 74 20 62 6c 6f 63 6b 20 69 | e.equivalent.of.the.host.block.i |
| 9b8c0 | 6e 20 64 68 63 70 64 2e 63 6f 6e 66 20 6f 66 20 69 73 63 2d 64 68 63 70 64 2e 00 54 68 69 73 20 | n.dhcpd.conf.of.isc-dhcpd..This. |
| 9b8e0 | 69 73 20 74 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 65 20 70 68 79 73 69 63 61 6c 20 69 6e 74 65 | is.the.name.of.the.physical.inte |
| 9b900 | 72 66 61 63 65 20 75 73 65 64 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 79 6f 75 72 20 4c 43 | rface.used.to.connect.to.your.LC |
| 9b920 | 44 20 64 69 73 70 6c 61 79 2e 20 54 61 62 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 69 73 20 73 75 70 | D.display..Tab.completion.is.sup |
| 9b940 | 70 6f 72 74 65 64 20 61 6e 64 20 69 74 20 77 69 6c 6c 20 6c 69 73 74 20 79 6f 75 20 61 6c 6c 20 | ported.and.it.will.list.you.all. |
| 9b960 | 61 76 61 69 6c 61 62 6c 65 20 73 65 72 69 61 6c 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 69 73 | available.serial.interface..This |
| 9b980 | 20 69 73 20 74 68 65 20 70 6f 6c 69 63 79 20 74 68 61 74 20 72 65 71 75 69 65 72 65 73 20 74 68 | .is.the.policy.that.requieres.th |
| 9b9a0 | 65 20 6c 6f 77 65 73 74 20 72 65 73 6f 75 72 63 65 73 20 66 6f 72 20 74 68 65 20 73 61 6d 65 20 | e.lowest.resources.for.the.same. |
| 9b9c0 | 61 6d 6f 75 6e 74 20 6f 66 20 74 72 61 66 66 69 63 2e 20 42 75 74 20 2a 2a 76 65 72 79 20 6c 69 | amount.of.traffic..But.**very.li |
| 9b9e0 | 6b 65 6c 79 20 79 6f 75 20 64 6f 20 6e 6f 74 20 6e 65 65 64 20 69 74 20 61 73 20 79 6f 75 20 63 | kely.you.do.not.need.it.as.you.c |
| 9ba00 | 61 6e 6e 6f 74 20 67 65 74 20 6d 75 63 68 20 66 72 6f 6d 20 69 74 2e 20 53 6f 6d 65 74 69 6d 65 | annot.get.much.from.it..Sometime |
| 9ba20 | 73 20 69 74 20 69 73 20 75 73 65 64 20 6a 75 73 74 20 74 6f 20 65 6e 61 62 6c 65 20 6c 6f 67 67 | s.it.is.used.just.to.enable.logg |
| 9ba40 | 69 6e 67 2e 2a 2a 00 54 68 69 73 20 69 73 20 74 68 65 20 70 6f 6c 69 63 79 20 74 68 61 74 20 72 | ing.**.This.is.the.policy.that.r |
| 9ba60 | 65 71 75 69 72 65 73 20 74 68 65 20 6c 6f 77 65 73 74 20 72 65 73 6f 75 72 63 65 73 20 66 6f 72 | equires.the.lowest.resources.for |
| 9ba80 | 20 74 68 65 20 73 61 6d 65 20 61 6d 6f 75 6e 74 20 6f 66 20 74 72 61 66 66 69 63 2e 20 42 75 74 | .the.same.amount.of.traffic..But |
| 9baa0 | 20 2a 2a 76 65 72 79 20 6c 69 6b 65 6c 79 20 79 6f 75 20 64 6f 20 6e 6f 74 20 6e 65 65 64 20 69 | .**very.likely.you.do.not.need.i |
| 9bac0 | 74 20 61 73 20 79 6f 75 20 63 61 6e 6e 6f 74 20 67 65 74 20 6d 75 63 68 20 66 72 6f 6d 20 69 74 | t.as.you.cannot.get.much.from.it |
| 9bae0 | 2e 20 53 6f 6d 65 74 69 6d 65 73 20 69 74 20 69 73 20 75 73 65 64 20 6a 75 73 74 20 74 6f 20 65 | ..Sometimes.it.is.used.just.to.e |
| 9bb00 | 6e 61 62 6c 65 20 6c 6f 67 67 69 6e 67 2e 2a 2a 00 54 68 69 73 20 69 73 20 75 73 65 66 75 6c 2c | nable.logging.**.This.is.useful, |
| 9bb20 | 20 66 6f 72 20 65 78 61 6d 70 6c 65 2c 20 69 6e 20 63 6f 6d 62 69 6e 61 74 69 6f 6e 20 77 69 74 | .for.example,.in.combination.wit |
| 9bb40 | 68 20 68 6f 73 74 66 69 6c 65 20 75 70 64 61 74 65 2e 00 54 68 69 73 20 69 73 20 77 68 65 72 65 | h.hostfile.update..This.is.where |
| 9bb60 | 20 22 55 44 50 20 62 72 6f 61 64 63 61 73 74 20 72 65 6c 61 79 22 20 63 6f 6d 65 73 20 69 6e 74 | ."UDP.broadcast.relay".comes.int |
| 9bb80 | 6f 20 70 6c 61 79 21 20 49 74 20 77 69 6c 6c 20 66 6f 72 77 61 72 64 20 72 65 63 65 69 76 65 64 | o.play!.It.will.forward.received |
| 9bba0 | 20 62 72 6f 61 64 63 61 73 74 73 20 74 6f 20 6f 74 68 65 72 20 63 6f 6e 66 69 67 75 72 65 64 20 | .broadcasts.to.other.configured. |
| 9bbc0 | 6e 65 74 77 6f 72 6b 73 2e 00 54 68 69 73 20 6d 61 6b 65 73 20 74 68 65 20 73 65 72 76 65 72 20 | networks..This.makes.the.server. |
| 9bbe0 | 61 75 74 68 6f 72 69 74 61 74 69 76 65 6c 79 20 6e 6f 74 20 61 77 61 72 65 20 6f 66 3a 20 31 30 | authoritatively.not.aware.of:.10 |
| 9bc00 | 2e 69 6e 2d 61 64 64 72 2e 61 72 70 61 2c 20 31 36 38 2e 31 39 32 2e 69 6e 2d 61 64 64 72 2e 61 | .in-addr.arpa,.168.192.in-addr.a |
| 9bc20 | 72 70 61 2c 20 31 36 2d 33 31 2e 31 37 32 2e 69 6e 2d 61 64 64 72 2e 61 72 70 61 2c 20 77 68 69 | rpa,.16-31.172.in-addr.arpa,.whi |
| 9bc40 | 63 68 20 65 6e 61 62 6c 69 6e 67 20 75 70 73 74 72 65 61 6d 20 44 4e 53 20 73 65 72 76 65 72 28 | ch.enabling.upstream.DNS.server( |
| 9bc60 | 73 29 20 74 6f 20 62 65 20 75 73 65 64 20 66 6f 72 20 72 65 76 65 72 73 65 20 6c 6f 6f 6b 75 70 | s).to.be.used.for.reverse.lookup |
| 9bc80 | 73 20 6f 66 20 74 68 65 73 65 20 7a 6f 6e 65 73 2e 00 54 68 69 73 20 6d 65 74 68 6f 64 20 61 75 | s.of.these.zones..This.method.au |
| 9bca0 | 74 6f 6d 61 74 69 63 61 6c 6c 79 20 64 69 73 61 62 6c 65 73 20 49 50 76 36 20 74 72 61 66 66 69 | tomatically.disables.IPv6.traffi |
| 9bcc0 | 63 20 66 6f 72 77 61 72 64 69 6e 67 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 69 6e | c.forwarding.on.the.interface.in |
| 9bce0 | 20 71 75 65 73 74 69 6f 6e 2e 00 54 68 69 73 20 6d 6f 64 65 20 70 72 6f 76 69 64 65 73 20 66 61 | .question..This.mode.provides.fa |
| 9bd00 | 75 6c 74 20 74 6f 6c 65 72 61 6e 63 65 2e 00 54 68 69 73 20 6d 6f 64 65 20 70 72 6f 76 69 64 65 | ult.tolerance..This.mode.provide |
| 9bd20 | 73 20 66 61 75 6c 74 20 74 6f 6c 65 72 61 6e 63 65 2e 20 54 68 65 20 3a 63 66 67 63 6d 64 3a 60 | s.fault.tolerance..The.:cfgcmd:` |
| 9bd40 | 70 72 69 6d 61 72 79 60 20 6f 70 74 69 6f 6e 2c 20 64 6f 63 75 6d 65 6e 74 65 64 20 62 65 6c 6f | primary`.option,.documented.belo |
| 9bd60 | 77 2c 20 61 66 66 65 63 74 73 20 74 68 65 20 62 65 68 61 76 69 6f 72 20 6f 66 20 74 68 69 73 20 | w,.affects.the.behavior.of.this. |
| 9bd80 | 6d 6f 64 65 2e 00 54 68 69 73 20 6d 6f 64 65 20 70 72 6f 76 69 64 65 73 20 6c 6f 61 64 20 62 61 | mode..This.mode.provides.load.ba |
| 9bda0 | 6c 61 6e 63 69 6e 67 20 61 6e 64 20 66 61 75 6c 74 20 74 6f 6c 65 72 61 6e 63 65 2e 00 54 68 69 | lancing.and.fault.tolerance..Thi |
| 9bdc0 | 73 20 6f 70 74 69 6f 6e 20 61 64 64 73 20 50 6f 77 65 72 20 43 6f 6e 73 74 72 61 69 6e 74 20 65 | s.option.adds.Power.Constraint.e |
| 9bde0 | 6c 65 6d 65 6e 74 20 77 68 65 6e 20 61 70 70 6c 69 63 61 62 6c 65 20 61 6e 64 20 43 6f 75 6e 74 | lement.when.applicable.and.Count |
| 9be00 | 72 79 20 65 6c 65 6d 65 6e 74 20 69 73 20 61 64 64 65 64 2e 20 50 6f 77 65 72 20 43 6f 6e 73 74 | ry.element.is.added..Power.Const |
| 9be20 | 72 61 69 6e 74 20 65 6c 65 6d 65 6e 74 20 69 73 20 72 65 71 75 69 72 65 64 20 62 79 20 54 72 61 | raint.element.is.required.by.Tra |
| 9be40 | 6e 73 6d 69 74 20 50 6f 77 65 72 20 43 6f 6e 74 72 6f 6c 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e | nsmit.Power.Control..This.option |
| 9be60 | 20 61 64 64 73 20 74 68 65 20 50 6f 77 65 72 20 43 6f 6e 73 74 72 61 69 6e 74 20 69 6e 66 6f 72 | .adds.the.Power.Constraint.infor |
| 9be80 | 6d 61 74 69 6f 6e 20 65 6c 65 6d 65 6e 74 20 77 68 65 6e 20 61 70 70 6c 69 63 61 62 6c 65 20 61 | mation.element.when.applicable.a |
| 9bea0 | 6e 64 20 74 68 65 20 43 6f 75 6e 74 72 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 65 6c 65 6d 65 | nd.the.Country.information.eleme |
| 9bec0 | 6e 74 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 68 65 20 50 6f 77 65 72 20 43 6f 6e 73 | nt.is.configured..The.Power.Cons |
| 9bee0 | 74 72 61 69 6e 74 20 65 6c 65 6d 65 6e 74 20 69 73 20 72 65 71 75 69 72 65 64 20 62 79 20 54 72 | traint.element.is.required.by.Tr |
| 9bf00 | 61 6e 73 6d 69 74 20 50 6f 77 65 72 20 43 6f 6e 74 72 6f 6c 2e 00 54 68 69 73 20 6f 70 74 69 6f | ansmit.Power.Control..This.optio |
| 9bf20 | 6e 20 61 6c 6c 6f 77 20 74 6f 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 38 30 32 2e 33 61 64 | n.allow.to.specifies.the.802.3ad |
| 9bf40 | 20 73 79 73 74 65 6d 20 4d 41 43 20 61 64 64 72 65 73 73 2e 59 6f 75 20 63 61 6e 20 73 65 74 20 | .system.MAC.address.You.can.set. |
| 9bf60 | 61 20 72 61 6e 64 6f 6d 20 6d 61 63 2d 61 64 64 72 65 73 73 20 74 68 61 74 20 63 61 6e 20 62 65 | a.random.mac-address.that.can.be |
| 9bf80 | 20 75 73 65 64 20 66 6f 72 20 74 68 65 73 65 20 4c 41 43 50 44 55 20 65 78 63 68 61 6e 67 65 73 | .used.for.these.LACPDU.exchanges |
| 9bfa0 | 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 6d | ..This.option.can.be.specified.m |
| 9bfc0 | 75 6c 74 69 70 6c 65 20 74 69 6d 65 73 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 63 61 6e 20 62 | ultiple.times..This.option.can.b |
| 9bfe0 | 65 20 73 75 70 70 6c 69 65 64 20 6d 75 6c 74 69 70 6c 65 20 74 69 6d 65 73 2e 00 54 68 69 73 20 | e.supplied.multiple.times..This. |
| 9c000 | 6f 70 74 69 6f 6e 20 69 73 20 6d 61 6e 64 61 74 6f 72 79 20 69 6e 20 41 63 63 65 73 73 2d 50 6f | option.is.mandatory.in.Access-Po |
| 9c020 | 69 6e 74 20 6d 6f 64 65 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 72 65 71 75 69 72 65 | int.mode..This.option.is.require |
| 9c040 | 64 20 77 68 65 6e 20 72 75 6e 6e 69 6e 67 20 61 20 44 4d 56 50 4e 20 73 70 6f 6b 65 2e 00 54 68 | d.when.running.a.DMVPN.spoke..Th |
| 9c060 | 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 75 73 65 64 20 62 79 20 73 6f 6d 65 20 44 48 43 50 20 63 | is.option.is.used.by.some.DHCP.c |
| 9c080 | 6c 69 65 6e 74 73 20 61 73 20 61 20 77 61 79 20 66 6f 72 20 75 73 65 72 73 20 74 6f 20 73 70 65 | lients.as.a.way.for.users.to.spe |
| 9c0a0 | 63 69 66 79 20 69 64 65 6e 74 69 66 79 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 | cify.identifying.information.to. |
| 9c0c0 | 74 68 65 20 63 6c 69 65 6e 74 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 69 6e 20 | the.client..This.can.be.used.in. |
| 9c0e0 | 61 20 73 69 6d 69 6c 61 72 20 77 61 79 20 74 6f 20 74 68 65 20 76 65 6e 64 6f 72 2d 63 6c 61 73 | a.similar.way.to.the.vendor-clas |
| 9c100 | 73 2d 69 64 65 6e 74 69 66 69 65 72 20 6f 70 74 69 6f 6e 2c 20 62 75 74 20 74 68 65 20 76 61 6c | s-identifier.option,.but.the.val |
| 9c120 | 75 65 20 6f 66 20 74 68 65 20 6f 70 74 69 6f 6e 20 69 73 20 73 70 65 63 69 66 69 65 64 20 62 79 | ue.of.the.option.is.specified.by |
| 9c140 | 20 74 68 65 20 75 73 65 72 2c 20 6e 6f 74 20 74 68 65 20 76 65 6e 64 6f 72 2e 00 54 68 69 73 20 | .the.user,.not.the.vendor..This. |
| 9c160 | 6f 70 74 69 6f 6e 20 69 73 20 75 73 65 64 20 62 79 20 73 6f 6d 65 20 44 48 43 50 20 63 6c 69 65 | option.is.used.by.some.DHCP.clie |
| 9c180 | 6e 74 73 20 74 6f 20 69 64 65 6e 74 69 66 79 20 74 68 65 20 76 65 6e 64 6f 72 20 74 79 70 65 20 | nts.to.identify.the.vendor.type. |
| 9c1a0 | 61 6e 64 20 70 6f 73 73 69 62 6c 79 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f | and.possibly.the.configuration.o |
| 9c1c0 | 66 20 61 20 44 48 43 50 20 63 6c 69 65 6e 74 2e 20 54 68 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | f.a.DHCP.client..The.information |
| 9c1e0 | 20 69 73 20 61 20 73 74 72 69 6e 67 20 6f 66 20 62 79 74 65 73 20 77 68 6f 73 65 20 63 6f 6e 74 | .is.a.string.of.bytes.whose.cont |
| 9c200 | 65 6e 74 73 20 61 72 65 20 73 70 65 63 69 66 69 63 20 74 6f 20 74 68 65 20 76 65 6e 64 6f 72 20 | ents.are.specific.to.the.vendor. |
| 9c220 | 61 6e 64 20 61 72 65 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 61 20 73 74 61 6e 64 | and.are.not.specified.in.a.stand |
| 9c240 | 61 72 64 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 75 73 65 64 20 77 69 | ard..This.option.must.be.used.wi |
| 9c260 | 74 68 20 60 60 74 69 6d 65 6f 75 74 60 60 20 6f 70 74 69 6f 6e 2e 00 54 68 69 73 20 6f 70 74 69 | th.``timeout``.option..This.opti |
| 9c280 | 6f 6e 20 6f 6e 6c 79 20 61 66 66 65 63 74 73 20 38 30 32 2e 33 61 64 20 6d 6f 64 65 2e 00 54 68 | on.only.affects.802.3ad.mode..Th |
| 9c2a0 | 69 73 20 6f 70 74 69 6f 6e 20 72 65 71 75 69 72 65 73 20 3a 61 62 62 72 3a 60 4d 46 50 20 28 4d | is.option.requires.:abbr:`MFP.(M |
| 9c2c0 | 61 6e 61 67 65 6d 65 6e 74 20 46 72 61 6d 65 20 50 72 6f 74 65 63 74 69 6f 6e 29 60 20 74 6f 20 | anagement.Frame.Protection)`.to. |
| 9c2e0 | 62 65 20 65 6e 61 62 6c 65 64 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 73 70 65 63 69 66 69 65 | be.enabled..This.option.specifie |
| 9c300 | 73 20 61 20 64 65 6c 61 79 20 69 6e 20 73 65 63 6f 6e 64 73 20 62 65 66 6f 72 65 20 76 72 72 70 | s.a.delay.in.seconds.before.vrrp |
| 9c320 | 20 69 6e 73 74 61 6e 63 65 73 20 73 74 61 72 74 20 75 70 20 61 66 74 65 72 20 6b 65 65 70 61 6c | .instances.start.up.after.keepal |
| 9c340 | 69 76 65 64 20 73 74 61 72 74 73 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 77 61 73 20 63 61 6c | ived.starts..This.option.was.cal |
| 9c360 | 6c 65 64 20 2d 2d 6e 63 70 2d 63 69 70 68 65 72 73 20 69 6e 20 4f 70 65 6e 56 50 4e 20 32 2e 34 | led.--ncp-ciphers.in.OpenVPN.2.4 |
| 9c380 | 20 62 75 74 20 68 61 73 20 62 65 65 6e 20 72 65 6e 61 6d 65 64 20 74 6f 20 2d 2d 64 61 74 61 2d | .but.has.been.renamed.to.--data- |
| 9c3a0 | 63 69 70 68 65 72 73 20 69 6e 20 4f 70 65 6e 56 50 4e 20 32 2e 35 20 74 6f 20 6d 6f 72 65 20 61 | ciphers.in.OpenVPN.2.5.to.more.a |
| 9c3c0 | 63 63 75 72 61 74 65 6c 79 20 72 65 66 6c 65 63 74 20 69 74 73 20 6d 65 61 6e 69 6e 67 2e 20 54 | ccurately.reflect.its.meaning..T |
| 9c3e0 | 68 65 20 66 69 72 73 74 20 63 69 70 68 65 72 20 69 6e 20 74 68 61 74 20 6c 69 73 74 20 74 68 61 | he.first.cipher.in.that.list.tha |
| 9c400 | 74 20 69 73 20 61 6c 73 6f 20 69 6e 20 74 68 65 20 63 6c 69 65 6e 74 27 73 20 2d 2d 64 61 74 61 | t.is.also.in.the.client's.--data |
| 9c420 | 2d 63 69 70 68 65 72 73 20 6c 69 73 74 20 69 73 20 63 68 6f 73 65 6e 2e 20 49 66 20 6e 6f 20 63 | -ciphers.list.is.chosen..If.no.c |
| 9c440 | 6f 6d 6d 6f 6e 20 63 69 70 68 65 72 20 69 73 20 66 6f 75 6e 64 20 74 68 65 20 63 6c 69 65 6e 74 | ommon.cipher.is.found.the.client |
| 9c460 | 20 69 73 20 72 65 6a 65 63 74 65 64 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 73 20 64 65 66 61 75 | .is.rejected..This.options.defau |
| 9c480 | 6c 74 73 20 74 6f 20 32 30 34 38 00 54 68 69 73 20 70 61 72 61 6d 65 74 65 72 20 61 6c 6c 6f 77 | lts.to.2048.This.parameter.allow |
| 9c4a0 | 73 20 74 6f 20 22 73 68 6f 72 74 63 75 74 22 20 72 6f 75 74 65 73 20 28 6e 6f 6e 2d 62 61 63 6b | s.to."shortcut".routes.(non-back |
| 9c4c0 | 62 6f 6e 65 29 20 66 6f 72 20 69 6e 74 65 72 2d 61 72 65 61 20 72 6f 75 74 65 73 2e 20 54 68 65 | bone).for.inter-area.routes..The |
| 9c4e0 | 72 65 20 61 72 65 20 74 68 72 65 65 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 | re.are.three.modes.available.for |
| 9c500 | 20 72 6f 75 74 65 73 20 73 68 6f 72 74 63 75 74 74 69 6e 67 3a 00 54 68 69 73 20 70 6f 6c 69 63 | .routes.shortcutting:.This.polic |
| 9c520 | 79 20 69 73 20 69 6e 74 65 6e 64 65 64 20 74 6f 20 70 72 6f 76 69 64 65 20 61 20 6d 6f 72 65 20 | y.is.intended.to.provide.a.more. |
| 9c540 | 62 61 6c 61 6e 63 65 64 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 6f 66 20 74 72 61 66 66 69 63 | balanced.distribution.of.traffic |
| 9c560 | 20 74 68 61 6e 20 6c 61 79 65 72 32 20 61 6c 6f 6e 65 2c 20 65 73 70 65 63 69 61 6c 6c 79 20 69 | .than.layer2.alone,.especially.i |
| 9c580 | 6e 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 73 20 77 68 65 72 65 20 61 20 6c 61 79 65 72 33 20 67 61 | n.environments.where.a.layer3.ga |
| 9c5a0 | 74 65 77 61 79 20 64 65 76 69 63 65 20 69 73 20 72 65 71 75 69 72 65 64 20 74 6f 20 72 65 61 63 | teway.device.is.required.to.reac |
| 9c5c0 | 68 20 6d 6f 73 74 20 64 65 73 74 69 6e 61 74 69 6f 6e 73 2e 00 54 68 69 73 20 70 72 6f 6d 70 74 | h.most.destinations..This.prompt |
| 9c5e0 | 65 64 20 73 6f 6d 65 20 49 53 50 73 20 74 6f 20 64 65 76 65 6c 6f 70 20 61 20 70 6f 6c 69 63 79 | ed.some.ISPs.to.develop.a.policy |
| 9c600 | 20 77 69 74 68 69 6e 20 74 68 65 20 3a 61 62 62 72 3a 60 41 52 49 4e 20 28 41 6d 65 72 69 63 61 | .within.the.:abbr:`ARIN.(America |
| 9c620 | 6e 20 52 65 67 69 73 74 72 79 20 66 6f 72 20 49 6e 74 65 72 6e 65 74 20 4e 75 6d 62 65 72 73 29 | n.Registry.for.Internet.Numbers) |
| 9c640 | 60 20 74 6f 20 61 6c 6c 6f 63 61 74 65 20 6e 65 77 20 70 72 69 76 61 74 65 20 61 64 64 72 65 73 | `.to.allocate.new.private.addres |
| 9c660 | 73 20 73 70 61 63 65 20 66 6f 72 20 43 47 4e 73 2c 20 62 75 74 20 41 52 49 4e 20 64 65 66 65 72 | s.space.for.CGNs,.but.ARIN.defer |
| 9c680 | 72 65 64 20 74 6f 20 74 68 65 20 49 45 54 46 20 62 65 66 6f 72 65 20 69 6d 70 6c 65 6d 65 6e 74 | red.to.the.IETF.before.implement |
| 9c6a0 | 69 6e 67 20 74 68 65 20 70 6f 6c 69 63 79 20 69 6e 64 69 63 61 74 69 6e 67 20 74 68 61 74 20 74 | ing.the.policy.indicating.that.t |
| 9c6c0 | 68 65 20 6d 61 74 74 65 72 20 77 61 73 20 6e 6f 74 20 61 20 74 79 70 69 63 61 6c 20 61 6c 6c 6f | he.matter.was.not.a.typical.allo |
| 9c6e0 | 63 61 74 69 6f 6e 20 69 73 73 75 65 20 62 75 74 20 61 20 72 65 73 65 72 76 61 74 69 6f 6e 20 6f | cation.issue.but.a.reservation.o |
| 9c700 | 66 20 61 64 64 72 65 73 73 65 73 20 66 6f 72 20 74 65 63 68 6e 69 63 61 6c 20 70 75 72 70 6f 73 | f.addresses.for.technical.purpos |
| 9c720 | 65 73 20 28 70 65 72 20 3a 72 66 63 3a 60 32 38 36 30 60 29 2e 00 54 68 69 73 20 72 65 71 75 69 | es.(per.:rfc:`2860`)..This.requi |
| 9c740 | 72 65 64 20 73 65 74 74 69 6e 67 20 64 65 66 69 6e 65 73 20 74 68 65 20 61 63 74 69 6f 6e 20 6f | red.setting.defines.the.action.o |
| 9c760 | 66 20 74 68 65 20 63 75 72 72 65 6e 74 20 72 75 6c 65 2e 20 49 66 20 61 63 74 69 6f 6e 20 69 73 | f.the.current.rule..If.action.is |
| 9c780 | 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2c 20 74 68 65 6e 20 60 60 6a 75 6d 70 2d 74 61 | .set.to.``jump``,.then.``jump-ta |
| 9c7a0 | 72 67 65 74 60 60 20 69 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 00 54 68 69 73 20 72 65 71 75 | rget``.is.also.needed..This.requ |
| 9c7c0 | 69 72 65 64 20 73 65 74 74 69 6e 67 20 64 65 66 69 6e 65 73 20 74 68 65 20 61 63 74 69 6f 6e 20 | ired.setting.defines.the.action. |
| 9c7e0 | 6f 66 20 74 68 65 20 63 75 72 72 65 6e 74 20 72 75 6c 65 2e 20 49 66 20 61 63 74 69 6f 6e 20 69 | of.the.current.rule..If.action.i |
| 9c800 | 73 20 73 65 74 20 74 6f 20 6a 75 6d 70 2c 20 74 68 65 6e 20 6a 75 6d 70 2d 74 61 72 67 65 74 20 | s.set.to.jump,.then.jump-target. |
| 9c820 | 69 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 00 54 68 69 73 20 72 65 71 75 69 72 65 64 20 73 65 | is.also.needed..This.required.se |
| 9c840 | 74 74 69 6e 67 20 64 65 66 69 6e 65 73 20 74 68 65 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 | tting.defines.the.action.of.the. |
| 9c860 | 63 75 72 72 65 6e 74 20 72 75 6c 65 2e 20 49 66 20 74 68 65 20 61 63 74 69 6f 6e 20 69 73 20 73 | current.rule..If.the.action.is.s |
| 9c880 | 65 74 20 74 6f 20 6a 75 6d 70 2c 20 74 68 65 6e 20 61 20 6a 75 6d 70 2d 74 61 72 67 65 74 20 69 | et.to.jump,.then.a.jump-target.i |
| 9c8a0 | 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 00 54 68 69 73 20 72 65 71 75 69 72 65 73 20 74 77 6f | s.also.needed..This.requires.two |
| 9c8c0 | 20 66 69 6c 65 73 2c 20 6f 6e 65 20 74 6f 20 63 72 65 61 74 65 20 74 68 65 20 64 65 76 69 63 65 | .files,.one.to.create.the.device |
| 9c8e0 | 20 28 58 58 58 2e 6e 65 74 64 65 76 29 20 61 6e 64 20 6f 6e 65 20 74 6f 20 63 6f 6e 66 69 67 75 | .(XXX.netdev).and.one.to.configu |
| 9c900 | 72 65 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 6f 6e 20 74 68 65 20 64 65 76 69 63 65 20 28 58 58 | re.the.network.on.the.device.(XX |
| 9c920 | 58 2e 6e 65 74 77 6f 72 6b 29 00 54 68 69 73 20 72 65 73 75 6c 74 73 20 69 6e 20 74 68 65 20 61 | X.network).This.results.in.the.a |
| 9c940 | 63 74 69 76 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 54 68 69 73 20 73 61 79 73 20 74 | ctive.configuration:.This.says.t |
| 9c960 | 68 61 74 20 74 68 69 73 20 64 65 76 69 63 65 20 69 73 20 74 68 65 20 6f 6e 6c 79 20 44 48 43 50 | hat.this.device.is.the.only.DHCP |
| 9c980 | 20 73 65 72 76 65 72 20 66 6f 72 20 74 68 69 73 20 6e 65 74 77 6f 72 6b 2e 20 49 66 20 6f 74 68 | .server.for.this.network..If.oth |
| 9c9a0 | 65 72 20 64 65 76 69 63 65 73 20 61 72 65 20 74 72 79 69 6e 67 20 74 6f 20 6f 66 66 65 72 20 44 | er.devices.are.trying.to.offer.D |
| 9c9c0 | 48 43 50 20 6c 65 61 73 65 73 2c 20 74 68 69 73 20 6d 61 63 68 69 6e 65 20 77 69 6c 6c 20 73 65 | HCP.leases,.this.machine.will.se |
| 9c9e0 | 6e 64 20 27 44 48 43 50 4e 41 4b 27 20 74 6f 20 61 6e 79 20 64 65 76 69 63 65 20 74 72 79 69 6e | nd.'DHCPNAK'.to.any.device.tryin |
| 9ca00 | 67 20 74 6f 20 72 65 71 75 65 73 74 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 74 68 61 74 20 | g.to.request.an.IP.address.that. |
| 9ca20 | 69 73 20 6e 6f 74 20 76 61 6c 69 64 20 66 6f 72 20 74 68 69 73 20 6e 65 74 77 6f 72 6b 2e 00 54 | is.not.valid.for.this.network..T |
| 9ca40 | 68 69 73 20 73 65 63 74 69 6f 6e 20 64 65 73 63 72 69 62 65 73 20 63 6f 6e 66 69 67 75 72 69 6e | his.section.describes.configurin |
| 9ca60 | 67 20 44 4e 53 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2c 20 6e 61 6d 65 6c 79 3a 00 54 68 69 | g.DNS.on.the.system,.namely:.Thi |
| 9ca80 | 73 20 73 65 63 74 69 6f 6e 20 64 65 73 63 72 69 62 65 73 20 74 68 65 20 73 79 73 74 65 6d 27 73 | s.section.describes.the.system's |
| 9caa0 | 20 68 6f 73 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 6e 64 20 68 6f 77 20 74 6f 20 63 6f 6e | .host.information.and.how.to.con |
| 9cac0 | 66 69 67 75 72 65 20 74 68 65 6d 2c 20 69 74 20 63 6f 76 65 72 73 20 74 68 65 20 66 6f 6c 6c 6f | figure.them,.it.covers.the.follo |
| 9cae0 | 77 69 6e 67 20 74 6f 70 69 63 73 3a 00 54 68 69 73 20 73 65 63 74 69 6f 6e 20 6e 65 65 64 73 20 | wing.topics:.This.section.needs. |
| 9cb00 | 69 6d 70 72 6f 76 65 6d 65 6e 74 73 2c 20 65 78 61 6d 70 6c 65 73 20 61 6e 64 20 65 78 70 6c 61 | improvements,.examples.and.expla |
| 9cb20 | 6e 61 74 69 6f 6e 73 2e 00 54 68 69 73 20 73 65 74 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 | nations..This.set.the.default.ac |
| 9cb40 | 74 69 6f 6e 20 6f 66 20 74 68 65 20 72 75 6c 65 2d 73 65 74 20 69 66 20 6e 6f 20 72 75 6c 65 20 | tion.of.the.rule-set.if.no.rule. |
| 9cb60 | 6d 61 74 63 68 65 64 20 61 20 70 61 63 6b 65 74 20 63 72 69 74 65 72 69 61 2e 20 49 66 20 64 65 | matched.a.packet.criteria..If.de |
| 9cb80 | 66 61 63 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 | facult-action.is.set.to.``jump`` |
| 9cba0 | 2c 20 74 68 65 6e 20 60 60 64 65 66 61 75 6c 74 2d 6a 75 6d 70 2d 74 61 72 67 65 74 60 60 20 69 | ,.then.``default-jump-target``.i |
| 9cbc0 | 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 00 54 68 69 73 20 73 65 74 20 74 68 65 20 64 65 66 61 | s.also.needed..This.set.the.defa |
| 9cbe0 | 75 6c 74 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 72 75 6c 65 2d 73 65 74 20 69 66 20 6e 6f | ult.action.of.the.rule-set.if.no |
| 9cc00 | 20 72 75 6c 65 20 6d 61 74 63 68 65 64 20 61 20 70 61 63 6b 65 74 20 63 72 69 74 65 72 69 61 2e | .rule.matched.a.packet.criteria. |
| 9cc20 | 20 49 66 20 64 65 66 61 63 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 | .If.defacult-action.is.set.to.`` |
| 9cc40 | 6a 75 6d 70 60 60 2c 20 74 68 65 6e 20 60 60 64 65 66 61 75 6c 74 2d 6a 75 6d 70 2d 74 61 72 67 | jump``,.then.``default-jump-targ |
| 9cc60 | 65 74 60 60 20 69 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 20 4e 6f 74 65 20 74 68 61 74 20 66 | et``.is.also.needed..Note.that.f |
| 9cc80 | 6f 72 20 62 61 73 65 20 63 68 61 69 6e 73 2c 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 63 | or.base.chains,.default.action.c |
| 9cca0 | 61 6e 20 6f 6e 6c 79 20 62 65 20 73 65 74 20 74 6f 20 60 60 61 63 63 65 70 74 60 60 20 6f 72 20 | an.only.be.set.to.``accept``.or. |
| 9ccc0 | 60 60 64 72 6f 70 60 60 2c 20 77 68 69 6c 65 20 6f 6e 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c | ``drop``,.while.on.custom.chain, |
| 9cce0 | 20 6d 6f 72 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 2e 00 54 68 69 | .more.actions.are.available..Thi |
| 9cd00 | 73 20 73 65 74 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 | s.set.the.default.action.of.the. |
| 9cd20 | 72 75 6c 65 2d 73 65 74 20 69 66 20 6e 6f 20 72 75 6c 65 20 6d 61 74 63 68 65 64 20 61 20 70 61 | rule-set.if.no.rule.matched.a.pa |
| 9cd40 | 63 6b 65 74 20 63 72 69 74 65 72 69 61 2e 20 49 66 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e | cket.criteria..If.default-action |
| 9cd60 | 20 69 73 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2c 20 74 68 65 6e 20 60 60 64 65 66 61 | .is.set.to.``jump``,.then.``defa |
| 9cd80 | 75 6c 74 2d 6a 75 6d 70 2d 74 61 72 67 65 74 60 60 20 69 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 | ult-jump-target``.is.also.needed |
| 9cda0 | 2e 20 4e 6f 74 65 20 74 68 61 74 20 66 6f 72 20 62 61 73 65 20 63 68 61 69 6e 73 2c 20 64 65 66 | ..Note.that.for.base.chains,.def |
| 9cdc0 | 61 75 6c 74 20 61 63 74 69 6f 6e 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 73 65 74 20 74 6f 20 60 | ault.action.can.only.be.set.to.` |
| 9cde0 | 60 61 63 63 65 70 74 60 60 20 6f 72 20 60 60 64 72 6f 70 60 60 2c 20 77 68 69 6c 65 20 6f 6e 20 | `accept``.or.``drop``,.while.on. |
| 9ce00 | 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 6d 6f 72 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 61 | custom.chain,.more.actions.are.a |
| 9ce20 | 76 61 69 6c 61 62 6c 65 2e 00 54 68 69 73 20 73 65 74 73 20 74 68 65 20 61 63 63 65 70 74 65 64 | vailable..This.sets.the.accepted |
| 9ce40 | 20 63 69 70 68 65 72 73 20 74 6f 20 75 73 65 20 77 68 65 6e 20 76 65 72 73 69 6f 6e 20 3d 3e 20 | .ciphers.to.use.when.version.=>. |
| 9ce60 | 32 2e 34 2e 30 20 61 6e 64 20 4e 43 50 20 69 73 20 65 6e 61 62 6c 65 64 20 28 77 68 69 63 68 20 | 2.4.0.and.NCP.is.enabled.(which. |
| 9ce80 | 69 73 20 74 68 65 20 64 65 66 61 75 6c 74 29 2e 20 44 65 66 61 75 6c 74 20 4e 43 50 20 63 69 70 | is.the.default)..Default.NCP.cip |
| 9cea0 | 68 65 72 20 66 6f 72 20 76 65 72 73 69 6f 6e 73 20 3e 3d 20 32 2e 34 2e 30 20 69 73 20 61 65 73 | her.for.versions.>=.2.4.0.is.aes |
| 9cec0 | 32 35 36 67 63 6d 2e 20 54 68 65 20 66 69 72 73 74 20 63 69 70 68 65 72 20 69 6e 20 74 68 69 73 | 256gcm..The.first.cipher.in.this |
| 9cee0 | 20 6c 69 73 74 20 69 73 20 77 68 61 74 20 73 65 72 76 65 72 20 70 75 73 68 65 73 20 74 6f 20 63 | .list.is.what.server.pushes.to.c |
| 9cf00 | 6c 69 65 6e 74 73 2e 00 54 68 69 73 20 73 65 74 73 20 74 68 65 20 63 69 70 68 65 72 20 77 68 65 | lients..This.sets.the.cipher.whe |
| 9cf20 | 6e 20 4e 43 50 20 28 4e 65 67 6f 74 69 61 62 6c 65 20 43 72 79 70 74 6f 20 50 61 72 61 6d 65 74 | n.NCP.(Negotiable.Crypto.Paramet |
| 9cf40 | 65 72 73 29 20 69 73 20 64 69 73 61 62 6c 65 64 20 6f 72 20 4f 70 65 6e 56 50 4e 20 76 65 72 73 | ers).is.disabled.or.OpenVPN.vers |
| 9cf60 | 69 6f 6e 20 3c 20 32 2e 34 2e 30 2e 00 54 68 69 73 20 73 65 74 73 20 74 68 65 20 63 69 70 68 65 | ion.<.2.4.0..This.sets.the.ciphe |
| 9cf80 | 72 20 77 68 65 6e 20 4e 43 50 20 28 4e 65 67 6f 74 69 61 62 6c 65 20 43 72 79 70 74 6f 20 50 61 | r.when.NCP.(Negotiable.Crypto.Pa |
| 9cfa0 | 72 61 6d 65 74 65 72 73 29 20 69 73 20 64 69 73 61 62 6c 65 64 20 6f 72 20 4f 70 65 6e 56 50 4e | rameters).is.disabled.or.OpenVPN |
| 9cfc0 | 20 76 65 72 73 69 6f 6e 20 3c 20 32 2e 34 2e 30 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 73 68 | .version.<.2.4.0..This.option.sh |
| 9cfe0 | 6f 75 6c 64 20 6e 6f 74 20 62 65 20 75 73 65 64 20 61 6e 79 20 6c 6f 6e 67 65 72 20 69 6e 20 54 | ould.not.be.used.any.longer.in.T |
| 9d000 | 4c 53 20 6d 6f 64 65 20 61 6e 64 20 73 74 69 6c 6c 20 65 78 69 73 74 73 20 66 6f 72 20 63 6f 6d | LS.mode.and.still.exists.for.com |
| 9d020 | 70 61 74 69 62 69 6c 69 74 79 20 77 69 74 68 20 6f 6c 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | patibility.with.old.configuratio |
| 9d040 | 6e 73 2e 00 54 68 69 73 20 73 65 74 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e | ns..This.sets.the.default.action |
| 9d060 | 20 6f 66 20 74 68 65 20 72 75 6c 65 2d 73 65 74 20 69 66 20 61 20 70 61 63 6b 65 74 20 64 6f 65 | .of.the.rule-set.if.a.packet.doe |
| 9d080 | 73 20 6e 6f 74 20 6d 61 74 63 68 20 61 6e 79 20 6f 66 20 74 68 65 20 72 75 6c 65 73 20 69 6e 20 | s.not.match.any.of.the.rules.in. |
| 9d0a0 | 74 68 61 74 20 63 68 61 69 6e 2e 20 49 66 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 | that.chain..If.default-action.is |
| 9d0c0 | 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2c 20 74 68 65 6e 20 60 60 64 65 66 61 75 6c 74 | .set.to.``jump``,.then.``default |
| 9d0e0 | 2d 6a 75 6d 70 2d 74 61 72 67 65 74 60 60 20 69 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 20 4e | -jump-target``.is.also.needed..N |
| 9d100 | 6f 74 65 20 74 68 61 74 20 66 6f 72 20 62 61 73 65 20 63 68 61 69 6e 73 2c 20 64 65 66 61 75 6c | ote.that.for.base.chains,.defaul |
| 9d120 | 74 20 61 63 74 69 6f 6e 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 73 65 74 20 74 6f 20 60 60 61 63 | t.action.can.only.be.set.to.``ac |
| 9d140 | 63 65 70 74 60 60 20 6f 72 20 60 60 64 72 6f 70 60 60 2c 20 77 68 69 6c 65 20 6f 6e 20 63 75 73 | cept``.or.``drop``,.while.on.cus |
| 9d160 | 74 6f 6d 20 63 68 61 69 6e 73 20 6d 6f 72 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 61 76 61 69 | tom.chains.more.actions.are.avai |
| 9d180 | 6c 61 62 6c 65 2e 00 54 68 69 73 20 73 65 74 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 | lable..This.sets.the.default.act |
| 9d1a0 | 69 6f 6e 20 6f 66 20 74 68 65 20 72 75 6c 65 2d 73 65 74 20 69 66 20 61 20 70 61 63 6b 65 74 20 | ion.of.the.rule-set.if.a.packet. |
| 9d1c0 | 64 6f 65 73 20 6e 6f 74 20 6d 61 74 63 68 20 74 68 65 20 63 72 69 74 65 72 69 61 20 6f 66 20 61 | does.not.match.the.criteria.of.a |
| 9d1e0 | 6e 79 20 72 75 6c 65 2e 20 49 66 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 | ny.rule..If.default-action.is.se |
| 9d200 | 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2c 20 74 68 65 6e 20 60 60 64 65 66 61 75 6c 74 2d 6a 75 | t.to.``jump``,.then.``default-ju |
| 9d220 | 6d 70 2d 74 61 72 67 65 74 60 60 20 69 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 20 4e 6f 74 65 | mp-target``.is.also.needed..Note |
| 9d240 | 20 74 68 61 74 20 66 6f 72 20 62 61 73 65 20 63 68 61 69 6e 73 2c 20 74 68 65 20 64 65 66 61 75 | .that.for.base.chains,.the.defau |
| 9d260 | 6c 74 20 61 63 74 69 6f 6e 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 73 65 74 20 74 6f 20 60 60 61 | lt.action.can.only.be.set.to.``a |
| 9d280 | 63 63 65 70 74 60 60 20 6f 72 20 60 60 64 72 6f 70 60 60 2c 20 77 68 69 6c 65 20 6f 6e 20 63 75 | ccept``.or.``drop``,.while.on.cu |
| 9d2a0 | 73 74 6f 6d 20 63 68 61 69 6e 73 2c 20 6d 6f 72 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 61 76 | stom.chains,.more.actions.are.av |
| 9d2c0 | 61 69 6c 61 62 6c 65 2e 00 54 68 69 73 20 73 65 74 74 69 6e 67 20 63 6f 6e 66 69 67 75 72 65 73 | ailable..This.setting.configures |
| 9d2e0 | 20 53 70 61 63 69 61 6c 20 53 74 72 65 61 6d 20 61 6e 64 20 4d 6f 64 75 6c 61 74 69 6f 6e 20 43 | .Spacial.Stream.and.Modulation.C |
| 9d300 | 6f 64 69 6e 67 20 53 63 68 65 6d 65 20 73 65 74 74 69 6e 67 73 20 66 6f 72 20 48 45 20 6d 6f 64 | oding.Scheme.settings.for.HE.mod |
| 9d320 | 65 20 28 48 45 2d 4d 43 53 29 2e 20 49 74 20 69 73 20 75 73 75 61 6c 6c 79 20 6e 6f 74 20 6e 65 | e.(HE-MCS)..It.is.usually.not.ne |
| 9d340 | 65 64 65 64 20 74 6f 20 73 65 74 20 74 68 69 73 20 65 78 70 6c 69 63 69 74 6c 79 2c 20 62 75 74 | eded.to.set.this.explicitly,.but |
| 9d360 | 20 69 74 20 6d 69 67 68 74 20 68 65 6c 70 20 77 69 74 68 20 73 6f 6d 65 20 57 69 46 69 20 61 64 | .it.might.help.with.some.WiFi.ad |
| 9d380 | 61 70 74 65 72 73 2e 00 54 68 69 73 20 73 65 74 74 69 6e 67 20 64 65 66 61 75 6c 74 73 20 74 6f | apters..This.setting.defaults.to |
| 9d3a0 | 20 31 35 30 30 20 61 6e 64 20 69 73 20 76 61 6c 69 64 20 62 65 74 77 65 65 6e 20 31 30 20 61 6e | .1500.and.is.valid.between.10.an |
| 9d3c0 | 64 20 36 30 30 30 30 2e 00 54 68 69 73 20 73 65 74 74 69 6e 67 20 65 6e 61 62 6c 65 20 6f 72 20 | d.60000..This.setting.enable.or. |
| 9d3e0 | 64 69 73 61 62 6c 65 20 74 68 65 20 72 65 73 70 6f 6e 73 65 20 6f 66 20 69 63 6d 70 20 62 72 6f | disable.the.response.of.icmp.bro |
| 9d400 | 61 64 63 61 73 74 20 6d 65 73 73 61 67 65 73 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 | adcast.messages..The.following.s |
| 9d420 | 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a | ystem.parameter.will.be.altered: |
| 9d440 | 00 54 68 69 73 20 73 65 74 74 69 6e 67 20 65 6e 61 62 6c 65 73 20 6f 72 20 64 69 73 61 62 6c 65 | .This.setting.enables.or.disable |
| 9d460 | 73 20 74 68 65 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 69 63 6d 70 20 62 72 6f 61 64 63 61 73 74 | s.the.response.to.icmp.broadcast |
| 9d480 | 20 6d 65 73 73 61 67 65 73 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 | .messages..The.following.system. |
| 9d4a0 | 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 54 68 69 73 20 | parameter.will.be.altered:.This. |
| 9d4c0 | 73 65 74 74 69 6e 67 20 68 61 6e 64 6c 65 20 69 66 20 56 79 4f 53 20 61 63 63 65 70 74 20 70 61 | setting.handle.if.VyOS.accept.pa |
| 9d4e0 | 63 6b 65 74 73 20 77 69 74 68 20 61 20 73 6f 75 72 63 65 20 72 6f 75 74 65 20 6f 70 74 69 6f 6e | ckets.with.a.source.route.option |
| 9d500 | 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 | ..The.following.system.parameter |
| 9d520 | 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 54 68 69 73 20 73 65 74 74 69 6e 67 20 68 | .will.be.altered:.This.setting.h |
| 9d540 | 61 6e 64 6c 65 73 20 69 66 20 56 79 4f 53 20 61 63 63 65 70 74 73 20 70 61 63 6b 65 74 73 20 77 | andles.if.VyOS.accepts.packets.w |
| 9d560 | 69 74 68 20 61 20 73 6f 75 72 63 65 20 72 6f 75 74 65 20 6f 70 74 69 6f 6e 2e 20 54 68 65 20 66 | ith.a.source.route.option..The.f |
| 9d580 | 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 73 20 77 69 6c 6c 20 | ollowing.system.parameters.will. |
| 9d5a0 | 62 65 20 61 6c 74 65 72 65 64 3a 00 54 68 69 73 20 73 65 74 74 69 6e 67 2c 20 77 68 69 63 68 20 | be.altered:.This.setting,.which. |
| 9d5c0 | 64 65 66 61 75 6c 74 73 20 74 6f 20 33 36 30 30 20 73 65 63 6f 6e 64 73 2c 20 70 75 74 73 20 61 | defaults.to.3600.seconds,.puts.a |
| 9d5e0 | 20 6d 61 78 69 6d 75 6d 20 6f 6e 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 20 74 69 6d 65 20 6e | .maximum.on.the.amount.of.time.n |
| 9d600 | 65 67 61 74 69 76 65 20 65 6e 74 72 69 65 73 20 61 72 65 20 63 61 63 68 65 64 2e 00 54 68 69 73 | egative.entries.are.cached..This |
| 9d620 | 20 73 65 74 75 70 20 77 69 6c 6c 20 6d 61 6b 65 20 74 68 65 20 56 52 52 50 20 70 72 6f 63 65 73 | .setup.will.make.the.VRRP.proces |
| 9d640 | 73 20 65 78 65 63 75 74 65 20 74 68 65 20 60 60 2f 63 6f 6e 66 69 67 2f 73 63 72 69 70 74 73 2f | s.execute.the.``/config/scripts/ |
| 9d660 | 76 72 72 70 2d 63 68 65 63 6b 2e 73 68 20 73 63 72 69 70 74 60 60 20 65 76 65 72 79 20 36 30 20 | vrrp-check.sh.script``.every.60. |
| 9d680 | 73 65 63 6f 6e 64 73 2c 20 61 6e 64 20 74 72 61 6e 73 69 74 69 6f 6e 20 74 68 65 20 67 72 6f 75 | seconds,.and.transition.the.grou |
| 9d6a0 | 70 20 74 6f 20 74 68 65 20 66 61 75 6c 74 20 73 74 61 74 65 20 69 66 20 69 74 20 66 61 69 6c 73 | p.to.the.fault.state.if.it.fails |
| 9d6c0 | 20 28 69 2e 65 2e 20 65 78 69 74 73 20 77 69 74 68 20 6e 6f 6e 2d 7a 65 72 6f 20 73 74 61 74 75 | .(i.e..exits.with.non-zero.statu |
| 9d6e0 | 73 29 20 74 68 72 65 65 20 74 69 6d 65 73 3a 00 54 68 69 73 20 73 70 65 63 69 66 69 65 73 20 74 | s).three.times:.This.specifies.t |
| 9d700 | 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 43 50 55 20 72 65 73 6f 75 72 63 65 73 20 74 68 65 20 63 | he.number.of.CPU.resources.the.c |
| 9d720 | 6f 6e 74 61 69 6e 65 72 20 63 61 6e 20 75 73 65 2e 00 54 68 69 73 20 73 74 61 67 65 20 69 6e 63 | ontainer.can.use..This.stage.inc |
| 9d740 | 6c 75 64 65 73 3a 00 54 68 69 73 20 73 74 61 74 65 6d 65 6e 74 20 73 70 65 63 69 66 69 65 73 20 | ludes:.This.statement.specifies. |
| 9d760 | 64 68 63 70 36 63 20 74 6f 20 6f 6e 6c 79 20 65 78 63 68 61 6e 67 65 20 69 6e 66 6f 72 6d 61 74 | dhcp6c.to.only.exchange.informat |
| 9d780 | 69 6f 6e 61 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 73 20 77 | ional.configuration.parameters.w |
| 9d7a0 | 69 74 68 20 73 65 72 76 65 72 73 2e 20 41 20 6c 69 73 74 20 6f 66 20 44 4e 53 20 73 65 72 76 65 | ith.servers..A.list.of.DNS.serve |
| 9d7c0 | 72 20 61 64 64 72 65 73 73 65 73 20 69 73 20 61 6e 20 65 78 61 6d 70 6c 65 20 6f 66 20 73 75 63 | r.addresses.is.an.example.of.suc |
| 9d7e0 | 68 20 70 61 72 61 6d 65 74 65 72 73 2e 20 54 68 69 73 20 73 74 61 74 65 6d 65 6e 74 20 69 73 20 | h.parameters..This.statement.is. |
| 9d800 | 75 73 65 66 75 6c 20 77 68 65 6e 20 74 68 65 20 63 6c 69 65 6e 74 20 64 6f 65 73 20 6e 6f 74 20 | useful.when.the.client.does.not. |
| 9d820 | 6e 65 65 64 20 73 74 61 74 65 66 75 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 | need.stateful.configuration.para |
| 9d840 | 6d 65 74 65 72 73 20 73 75 63 68 20 61 73 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 6f 72 | meters.such.as.IPv6.addresses.or |
| 9d860 | 20 70 72 65 66 69 78 65 73 2e 00 54 68 69 73 20 73 75 70 70 6f 72 74 20 6d 61 79 20 62 65 20 65 | .prefixes..This.support.may.be.e |
| 9d880 | 6e 61 62 6c 65 64 20 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 6c 79 20 28 61 6e 64 20 69 6e 64 | nabled.administratively.(and.ind |
| 9d8a0 | 65 66 69 6e 69 74 65 6c 79 29 20 77 69 74 68 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 61 64 6d | efinitely).with.the.:cfgcmd:`adm |
| 9d8c0 | 69 6e 69 73 74 72 61 74 69 76 65 60 20 63 6f 6d 6d 61 6e 64 2e 20 49 74 20 6d 61 79 20 61 6c 73 | inistrative`.command..It.may.als |
| 9d8e0 | 6f 20 62 65 20 65 6e 61 62 6c 65 64 20 63 6f 6e 64 69 74 69 6f 6e 61 6c 6c 79 2e 20 43 6f 6e 64 | o.be.enabled.conditionally..Cond |
| 9d900 | 69 74 69 6f 6e 61 6c 20 65 6e 61 62 6c 69 6e 67 20 6f 66 20 6d 61 78 2d 6d 65 74 72 69 63 20 72 | itional.enabling.of.max-metric.r |
| 9d920 | 6f 75 74 65 72 2d 6c 73 61 73 20 63 61 6e 20 62 65 20 66 6f 72 20 61 20 70 65 72 69 6f 64 20 6f | outer-lsas.can.be.for.a.period.o |
| 9d940 | 66 20 73 65 63 6f 6e 64 73 20 61 66 74 65 72 20 73 74 61 72 74 75 70 20 77 69 74 68 20 74 68 65 | f.seconds.after.startup.with.the |
| 9d960 | 20 3a 63 66 67 63 6d 64 3a 60 6f 6e 2d 73 74 61 72 74 75 70 20 3c 73 65 63 6f 6e 64 73 3e 60 20 | .:cfgcmd:`on-startup.<seconds>`. |
| 9d980 | 63 6f 6d 6d 61 6e 64 20 61 6e 64 2f 6f 72 20 66 6f 72 20 61 20 70 65 72 69 6f 64 20 6f 66 20 73 | command.and/or.for.a.period.of.s |
| 9d9a0 | 65 63 6f 6e 64 73 20 70 72 69 6f 72 20 74 6f 20 73 68 75 74 64 6f 77 6e 20 77 69 74 68 20 74 68 | econds.prior.to.shutdown.with.th |
| 9d9c0 | 65 20 3a 63 66 67 63 6d 64 3a 60 6f 6e 2d 73 68 75 74 64 6f 77 6e 20 3c 73 65 63 6f 6e 64 73 3e | e.:cfgcmd:`on-shutdown.<seconds> |
| 9d9e0 | 60 20 63 6f 6d 6d 61 6e 64 2e 20 54 68 65 20 74 69 6d 65 20 72 61 6e 67 65 20 69 73 20 35 20 74 | `.command..The.time.range.is.5.t |
| 9da00 | 6f 20 38 36 34 30 30 2e 00 54 68 69 73 20 74 65 63 68 6e 69 71 75 65 20 69 73 20 63 6f 6d 6d 6f | o.86400..This.technique.is.commo |
| 9da20 | 6e 6c 79 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 4e 41 54 20 52 65 66 6c 65 63 74 69 6f | nly.referred.to.as.NAT.Reflectio |
| 9da40 | 6e 20 6f 72 20 48 61 69 72 70 69 6e 20 4e 41 54 2e 00 54 68 69 73 20 74 65 63 68 6e 6f 6c 6f 67 | n.or.Hairpin.NAT..This.technolog |
| 9da60 | 79 20 69 73 20 6b 6e 6f 77 6e 20 62 79 20 64 69 66 66 65 72 65 6e 74 20 6e 61 6d 65 73 3a 00 54 | y.is.known.by.different.names:.T |
| 9da80 | 68 69 73 20 74 68 65 20 73 69 6d 70 6c 65 73 74 20 71 75 65 75 65 20 70 6f 73 73 69 62 6c 65 20 | his.the.simplest.queue.possible. |
| 9daa0 | 79 6f 75 20 63 61 6e 20 61 70 70 6c 79 20 74 6f 20 79 6f 75 72 20 74 72 61 66 66 69 63 2e 20 54 | you.can.apply.to.your.traffic..T |
| 9dac0 | 72 61 66 66 69 63 20 6d 75 73 74 20 67 6f 20 74 68 72 6f 75 67 68 20 61 20 66 69 6e 69 74 65 20 | raffic.must.go.through.a.finite. |
| 9dae0 | 71 75 65 75 65 20 62 65 66 6f 72 65 20 69 74 20 69 73 20 61 63 74 75 61 6c 6c 79 20 73 65 6e 74 | queue.before.it.is.actually.sent |
| 9db00 | 2e 20 59 6f 75 20 6d 75 73 74 20 64 65 66 69 6e 65 20 68 6f 77 20 6d 61 6e 79 20 70 61 63 6b 65 | ..You.must.define.how.many.packe |
| 9db20 | 74 73 20 74 68 61 74 20 71 75 65 75 65 20 63 61 6e 20 63 6f 6e 74 61 69 6e 2e 00 54 68 69 73 20 | ts.that.queue.can.contain..This. |
| 9db40 | 74 6f 70 6f 6c 6f 67 79 20 77 61 73 20 62 75 69 6c 74 20 75 73 69 6e 67 20 47 4e 53 33 2e 00 54 | topology.was.built.using.GNS3..T |
| 9db60 | 68 69 73 20 77 69 6c 6c 20 61 64 64 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6f 70 74 69 6f | his.will.add.the.following.optio |
| 9db80 | 6e 20 74 6f 20 74 68 65 20 4b 65 72 6e 65 6c 20 63 6f 6d 6d 61 6e 64 6c 69 6e 65 3a 00 54 68 69 | n.to.the.Kernel.commandline:.Thi |
| 9dba0 | 73 20 77 69 6c 6c 20 61 64 64 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 74 77 6f 20 6f 70 74 | s.will.add.the.following.two.opt |
| 9dbc0 | 69 6f 6e 73 20 74 6f 20 74 68 65 20 4b 65 72 6e 65 6c 20 63 6f 6d 6d 61 6e 64 6c 69 6e 65 3a 00 | ions.to.the.Kernel.commandline:. |
| 9dbe0 | 54 68 69 73 20 77 69 6c 6c 20 62 65 20 74 68 65 20 6d 6f 73 74 20 77 69 64 65 6c 79 20 75 73 65 | This.will.be.the.most.widely.use |
| 9dc00 | 64 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 61 20 72 6f 75 74 65 72 20 63 61 72 72 79 69 6e 67 | d.interface.on.a.router.carrying |
| 9dc20 | 20 74 72 61 66 66 69 63 20 74 6f 20 74 68 65 20 72 65 61 6c 20 77 6f 72 6c 64 2e 00 54 68 69 73 | .traffic.to.the.real.world..This |
| 9dc40 | 20 77 69 6c 6c 20 63 6f 6e 66 69 67 75 72 65 20 61 20 73 74 61 74 69 63 20 41 52 50 20 65 6e 74 | .will.configure.a.static.ARP.ent |
| 9dc60 | 72 79 20 61 6c 77 61 79 73 20 72 65 73 6f 6c 76 69 6e 67 20 60 3c 61 64 64 72 65 73 73 3e 60 20 | ry.always.resolving.`<address>`. |
| 9dc80 | 74 6f 20 60 3c 6d 61 63 3e 60 20 66 6f 72 20 69 6e 74 65 72 66 61 63 65 20 60 3c 69 6e 74 65 72 | to.`<mac>`.for.interface.`<inter |
| 9dca0 | 66 61 63 65 3e 60 2e 00 54 68 69 73 20 77 69 6c 6c 20 6d 61 74 63 68 20 54 43 50 20 74 72 61 66 | face>`..This.will.match.TCP.traf |
| 9dcc0 | 66 69 63 20 77 69 74 68 20 73 6f 75 72 63 65 20 70 6f 72 74 20 38 30 2e 00 54 68 69 73 20 77 69 | fic.with.source.port.80..This.wi |
| 9dce0 | 6c 6c 20 72 65 6e 64 65 72 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 64 64 63 6c 69 65 6e 74 | ll.render.the.following.ddclient |
| 9dd00 | 5f 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 6e 74 72 79 3a 00 54 68 69 73 20 77 69 6c 6c | _.configuration.entry:.This.will |
| 9dd20 | 20 73 68 6f 77 20 79 6f 75 20 61 20 62 61 73 69 63 20 66 69 72 65 77 61 6c 6c 20 6f 76 65 72 76 | .show.you.a.basic.firewall.overv |
| 9dd40 | 69 65 77 00 54 68 69 73 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 62 61 73 69 63 20 66 | iew.This.will.show.you.a.basic.f |
| 9dd60 | 69 72 65 77 61 6c 6c 20 6f 76 65 72 76 69 65 77 2c 20 66 6f 72 20 61 6c 6c 20 72 75 6c 65 2d 73 | irewall.overview,.for.all.rule-s |
| 9dd80 | 65 74 73 2c 20 61 6e 64 20 6e 6f 74 20 6f 6e 6c 79 20 66 6f 72 20 69 70 76 34 00 54 68 69 73 20 | ets,.and.not.only.for.ipv4.This. |
| 9dda0 | 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 62 61 73 69 63 20 66 69 72 65 77 61 6c 6c 20 6f | will.show.you.a.basic.firewall.o |
| 9ddc0 | 76 65 72 76 69 65 77 2c 20 66 6f 72 20 61 6c 6c 20 72 75 6c 65 2d 73 65 74 73 2c 20 61 6e 64 20 | verview,.for.all.rule-sets,.and. |
| 9dde0 | 6e 6f 74 20 6f 6e 6c 79 20 66 6f 72 20 69 70 76 36 00 54 68 69 73 20 77 69 6c 6c 20 73 68 6f 77 | not.only.for.ipv6.This.will.show |
| 9de00 | 20 79 6f 75 20 61 20 62 61 73 69 63 20 66 69 72 65 77 61 6c 6c 20 6f 76 65 72 76 69 65 77 2c 20 | .you.a.basic.firewall.overview,. |
| 9de20 | 66 6f 72 20 61 6c 6c 20 72 75 6c 65 73 65 74 2c 20 61 6e 64 20 6e 6f 74 20 6f 6e 6c 79 20 66 6f | for.all.ruleset,.and.not.only.fo |
| 9de40 | 72 20 69 70 76 34 00 54 68 69 73 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 62 61 73 69 | r.ipv4.This.will.show.you.a.basi |
| 9de60 | 63 20 73 75 6d 6d 61 72 79 20 6f 66 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 7a 6f 6e 65 2e 00 | c.summary.of.a.particular.zone.. |
| 9de80 | 54 68 69 73 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 62 61 73 69 63 20 73 75 6d 6d 61 | This.will.show.you.a.basic.summa |
| 9dea0 | 72 79 20 6f 66 20 74 68 65 20 7a 6f 6e 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 68 | ry.of.the.zone.configuration..Th |
| 9dec0 | 69 73 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 62 61 73 69 63 20 73 75 6d 6d 61 72 79 | is.will.show.you.a.basic.summary |
| 9dee0 | 20 6f 66 20 7a 6f 6e 65 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 68 69 73 20 77 69 | .of.zones.configuration..This.wi |
| 9df00 | 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 72 75 6c 65 2d 73 65 74 20 73 74 61 74 69 73 74 69 63 | ll.show.you.a.rule-set.statistic |
| 9df20 | 20 73 69 6e 63 65 20 74 68 65 20 6c 61 73 74 20 62 6f 6f 74 2e 00 54 68 69 73 20 77 69 6c 6c 20 | .since.the.last.boot..This.will. |
| 9df40 | 73 68 6f 77 20 79 6f 75 20 61 20 73 74 61 74 69 73 74 69 63 20 6f 66 20 61 6c 6c 20 72 75 6c 65 | show.you.a.statistic.of.all.rule |
| 9df60 | 2d 73 65 74 73 20 73 69 6e 63 65 20 74 68 65 20 6c 61 73 74 20 62 6f 6f 74 2e 00 54 68 69 73 20 | -sets.since.the.last.boot..This. |
| 9df80 | 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 73 75 6d 6d 61 72 79 20 6f 66 20 72 75 6c 65 2d | will.show.you.a.summary.of.rule- |
| 9dfa0 | 73 65 74 73 20 61 6e 64 20 67 72 6f 75 70 73 00 54 68 69 73 20 77 6f 72 6b 61 72 6f 75 6e 64 20 | sets.and.groups.This.workaround. |
| 9dfc0 | 6c 65 74 73 20 79 6f 75 20 61 70 70 6c 79 20 61 20 73 68 61 70 69 6e 67 20 70 6f 6c 69 63 79 20 | lets.you.apply.a.shaping.policy. |
| 9dfe0 | 74 6f 20 74 68 65 20 69 6e 67 72 65 73 73 20 74 72 61 66 66 69 63 20 62 79 20 66 69 72 73 74 20 | to.the.ingress.traffic.by.first. |
| 9e000 | 72 65 64 69 72 65 63 74 69 6e 67 20 69 74 20 74 6f 20 61 6e 20 69 6e 2d 62 65 74 77 65 65 6e 20 | redirecting.it.to.an.in-between. |
| 9e020 | 76 69 72 74 75 61 6c 20 69 6e 74 65 72 66 61 63 65 20 28 60 49 6e 74 65 72 6d 65 64 69 61 74 65 | virtual.interface.(`Intermediate |
| 9e040 | 20 46 75 6e 63 74 69 6f 6e 61 6c 20 42 6c 6f 63 6b 60 5f 29 2e 20 54 68 65 72 65 2c 20 69 6e 20 | .Functional.Block`_)..There,.in. |
| 9e060 | 74 68 61 74 20 76 69 72 74 75 61 6c 20 69 6e 74 65 72 66 61 63 65 2c 20 79 6f 75 20 77 69 6c 6c | that.virtual.interface,.you.will |
| 9e080 | 20 62 65 20 61 62 6c 65 20 74 6f 20 61 70 70 6c 79 20 61 6e 79 20 6f 66 20 74 68 65 20 70 6f 6c | .be.able.to.apply.any.of.the.pol |
| 9e0a0 | 69 63 69 65 73 20 74 68 61 74 20 77 6f 72 6b 20 66 6f 72 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 | icies.that.work.for.outbound.tra |
| 9e0c0 | 66 66 69 63 2c 20 66 6f 72 20 69 6e 73 74 61 6e 63 65 2c 20 61 20 73 68 61 70 69 6e 67 20 6f 6e | ffic,.for.instance,.a.shaping.on |
| 9e0e0 | 65 2e 00 54 68 69 73 20 77 6f 75 6c 64 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 66 6f 6c 6c 6f | e..This.would.generate.the.follo |
| 9e100 | 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 54 68 72 65 65 20 73 69 67 6e 69 66 | wing.configuration:.Three.signif |
| 9e120 | 69 63 61 6e 74 20 76 65 72 73 69 6f 6e 73 20 6f 66 20 53 4e 4d 50 20 68 61 76 65 20 62 65 65 6e | icant.versions.of.SNMP.have.been |
| 9e140 | 20 64 65 76 65 6c 6f 70 65 64 20 61 6e 64 20 64 65 70 6c 6f 79 65 64 2e 20 53 4e 4d 50 76 31 20 | .developed.and.deployed..SNMPv1. |
| 9e160 | 69 73 20 74 68 65 20 6f 72 69 67 69 6e 61 6c 20 76 65 72 73 69 6f 6e 20 6f 66 20 74 68 65 20 70 | is.the.original.version.of.the.p |
| 9e180 | 72 6f 74 6f 63 6f 6c 2e 20 4d 6f 72 65 20 72 65 63 65 6e 74 20 76 65 72 73 69 6f 6e 73 2c 20 53 | rotocol..More.recent.versions,.S |
| 9e1a0 | 4e 4d 50 76 32 63 20 61 6e 64 20 53 4e 4d 50 76 33 2c 20 66 65 61 74 75 72 65 20 69 6d 70 72 6f | NMPv2c.and.SNMPv3,.feature.impro |
| 9e1c0 | 76 65 6d 65 6e 74 73 20 69 6e 20 70 65 72 66 6f 72 6d 61 6e 63 65 2c 20 66 6c 65 78 69 62 69 6c | vements.in.performance,.flexibil |
| 9e1e0 | 69 74 79 20 61 6e 64 20 73 65 63 75 72 69 74 79 2e 00 54 69 6d 65 20 5a 6f 6e 65 00 54 69 6d 65 | ity.and.security..Time.Zone.Time |
| 9e200 | 20 5a 6f 6e 65 20 73 65 74 74 69 6e 67 20 69 73 20 76 65 72 79 20 69 6d 70 6f 72 74 61 6e 74 20 | .Zone.setting.is.very.important. |
| 9e220 | 61 73 20 65 2e 67 20 61 6c 6c 20 79 6f 75 72 20 6c 6f 67 66 69 6c 65 20 65 6e 74 72 69 65 73 20 | as.e.g.all.your.logfile.entries. |
| 9e240 | 77 69 6c 6c 20 62 65 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 | will.be.based.on.the.configured. |
| 9e260 | 7a 6f 6e 65 2e 20 57 69 74 68 6f 75 74 20 70 72 6f 70 65 72 20 74 69 6d 65 20 7a 6f 6e 65 20 63 | zone..Without.proper.time.zone.c |
| 9e280 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 74 20 77 69 6c 6c 20 62 65 20 76 65 72 79 20 64 69 66 | onfiguration.it.will.be.very.dif |
| 9e2a0 | 66 69 63 75 6c 74 20 74 6f 20 63 6f 6d 70 61 72 65 20 6c 6f 67 66 69 6c 65 73 20 66 72 6f 6d 20 | ficult.to.compare.logfiles.from. |
| 9e2c0 | 64 69 66 66 65 72 65 6e 74 20 73 79 73 74 65 6d 73 2e 00 54 69 6d 65 20 69 6e 20 6d 69 6c 6c 69 | different.systems..Time.in.milli |
| 9e2e0 | 73 65 63 6f 6e 64 73 20 62 65 74 77 65 65 6e 20 72 65 74 72 61 6e 73 6d 69 74 74 65 64 20 4e 65 | seconds.between.retransmitted.Ne |
| 9e300 | 69 67 68 62 6f 72 20 53 6f 6c 69 63 69 74 61 74 69 6f 6e 20 6d 65 73 73 61 67 65 73 00 54 69 6d | ighbor.Solicitation.messages.Tim |
| 9e320 | 65 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 68 61 74 20 74 68 65 20 70 72 65 66 69 78 20 77 69 6c | e.in.seconds.that.the.prefix.wil |
| 9e340 | 6c 20 72 65 6d 61 69 6e 20 70 72 65 66 65 72 72 65 64 20 28 64 65 66 61 75 6c 74 20 34 20 68 6f | l.remain.preferred.(default.4.ho |
| 9e360 | 75 72 73 29 00 54 69 6d 65 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 68 61 74 20 74 68 65 20 70 72 | urs).Time.in.seconds.that.the.pr |
| 9e380 | 65 66 69 78 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 76 61 6c 69 64 20 28 64 65 66 61 75 6c 74 3a | efix.will.remain.valid.(default: |
| 9e3a0 | 20 33 30 20 64 61 79 73 29 00 54 69 6d 65 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 68 61 74 20 74 | .30.days).Time.in.seconds.that.t |
| 9e3c0 | 68 65 20 70 72 65 66 69 78 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 76 61 6c 69 64 20 28 64 65 66 | he.prefix.will.remain.valid.(def |
| 9e3e0 | 61 75 6c 74 3a 20 36 35 35 32 38 20 73 65 63 6f 6e 64 73 29 00 54 69 6d 65 20 69 73 20 69 6e 20 | ault:.65528.seconds).Time.is.in. |
| 9e400 | 6d 69 6e 75 74 65 73 20 61 6e 64 20 64 65 66 61 75 6c 74 73 20 74 6f 20 36 30 2e 00 54 69 6d 65 | minutes.and.defaults.to.60..Time |
| 9e420 | 20 74 6f 20 6d 61 74 63 68 20 74 68 65 20 64 65 66 69 6e 65 64 20 72 75 6c 65 2e 00 54 69 6d 65 | .to.match.the.defined.rule..Time |
| 9e440 | 2c 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 2c 20 74 68 61 74 20 61 20 6e 6f 64 65 20 61 | ,.in.milliseconds,.that.a.node.a |
| 9e460 | 73 73 75 6d 65 73 20 61 20 6e 65 69 67 68 62 6f 72 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 61 | ssumes.a.neighbor.is.reachable.a |
| 9e480 | 66 74 65 72 20 68 61 76 69 6e 67 20 72 65 63 65 69 76 65 64 20 61 20 72 65 61 63 68 61 62 69 6c | fter.having.received.a.reachabil |
| 9e4a0 | 69 74 79 20 63 6f 6e 66 69 72 6d 61 74 69 6f 6e 00 54 69 6d 65 6f 75 74 20 63 61 6e 20 62 65 20 | ity.confirmation.Timeout.can.be. |
| 9e4c0 | 64 65 66 69 6e 65 64 20 75 73 69 6e 67 20 73 65 63 6f 6e 64 73 2c 20 6d 69 6e 75 74 65 73 2c 20 | defined.using.seconds,.minutes,. |
| 9e4e0 | 68 6f 75 72 73 20 6f 72 20 64 61 79 73 3a 00 54 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e 64 | hours.or.days:.Timeout.in.second |
| 9e500 | 73 00 54 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e 64 73 20 62 65 74 77 65 65 6e 20 68 65 61 | s.Timeout.in.seconds.between.hea |
| 9e520 | 6c 74 68 20 74 61 72 67 65 74 20 63 68 65 63 6b 73 2e 00 54 69 6d 65 6f 75 74 20 74 6f 20 77 61 | lth.target.checks..Timeout.to.wa |
| 9e540 | 69 74 20 72 65 70 6c 79 20 66 6f 72 20 49 6e 74 65 72 69 6d 2d 55 70 64 61 74 65 20 70 61 63 6b | it.reply.for.Interim-Update.pack |
| 9e560 | 65 74 73 2e 20 28 64 65 66 61 75 6c 74 20 33 20 73 65 63 6f 6e 64 73 29 00 54 69 6d 65 6f 75 74 | ets..(default.3.seconds).Timeout |
| 9e580 | 20 74 6f 20 77 61 69 74 20 72 65 73 70 6f 6e 73 65 20 66 72 6f 6d 20 73 65 72 76 65 72 20 28 73 | .to.wait.response.from.server.(s |
| 9e5a0 | 65 63 6f 6e 64 73 29 00 54 69 6d 65 72 73 00 54 6f 20 61 63 74 69 76 61 74 65 20 74 68 65 20 56 | econds).Timers.To.activate.the.V |
| 9e5c0 | 4c 41 4e 20 61 77 61 72 65 20 62 72 69 64 67 65 2c 20 79 6f 75 20 6d 75 73 74 20 61 63 74 69 76 | LAN.aware.bridge,.you.must.activ |
| 9e5e0 | 61 74 65 20 74 68 69 73 20 73 65 74 74 69 6e 67 20 74 6f 20 75 73 65 20 56 4c 41 4e 20 73 65 74 | ate.this.setting.to.use.VLAN.set |
| 9e600 | 74 69 6e 67 73 20 66 6f 72 20 74 68 65 20 62 72 69 64 67 65 00 54 6f 20 61 6c 6c 6f 77 20 56 50 | tings.for.the.bridge.To.allow.VP |
| 9e620 | 4e 2d 63 6c 69 65 6e 74 73 20 61 63 63 65 73 73 20 76 69 61 20 79 6f 75 72 20 65 78 74 65 72 6e | N-clients.access.via.your.extern |
| 9e640 | 61 6c 20 61 64 64 72 65 73 73 2c 20 61 20 4e 41 54 20 72 75 6c 65 20 69 73 20 72 65 71 75 69 72 | al.address,.a.NAT.rule.is.requir |
| 9e660 | 65 64 3a 00 54 6f 20 61 6c 6c 6f 77 20 6c 69 73 74 69 6e 67 20 61 64 64 69 74 69 6f 6e 61 6c 20 | ed:.To.allow.listing.additional. |
| 9e680 | 63 75 73 74 6f 6d 20 64 6f 6d 61 69 6e 2c 20 66 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 6f 70 65 | custom.domain,.for.example.``ope |
| 9e6a0 | 6e 74 68 72 65 61 64 2e 74 68 72 65 61 64 2e 68 6f 6d 65 2e 61 72 70 61 60 60 2c 20 73 6f 20 74 | nthread.thread.home.arpa``,.so.t |
| 9e6c0 | 68 61 74 20 69 74 20 63 61 6e 20 72 65 66 6c 65 63 74 65 64 20 69 6e 20 61 64 64 69 74 69 6f 6e | hat.it.can.reflected.in.addition |
| 9e6e0 | 20 74 6f 20 74 68 65 20 64 65 66 61 75 6c 74 20 60 60 6c 6f 63 61 6c 60 60 2c 20 75 73 65 20 74 | .to.the.default.``local``,.use.t |
| 9e700 | 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 3a 00 54 6f 20 61 6c 6c 6f 77 20 6f | he.following.command:.To.allow.o |
| 9e720 | 6e 6c 79 20 73 70 65 63 69 66 69 63 20 73 65 72 76 69 63 65 73 2c 20 66 6f 72 20 65 78 61 6d 70 | nly.specific.services,.for.examp |
| 9e740 | 6c 65 20 60 60 5f 61 69 72 70 6c 61 79 2e 5f 74 63 70 60 60 20 6f 72 20 60 60 5f 69 70 70 2e 5f | le.``_airplay._tcp``.or.``_ipp._ |
| 9e760 | 74 63 70 60 60 2c 20 28 69 6e 73 74 65 61 64 20 6f 66 20 61 6c 6c 20 73 65 72 76 69 63 65 73 29 | tcp``,.(instead.of.all.services) |
| 9e780 | 20 74 6f 20 62 65 20 72 65 2d 62 72 6f 61 64 63 61 73 74 65 64 2c 20 75 73 65 20 74 68 65 20 66 | .to.be.re-broadcasted,.use.the.f |
| 9e7a0 | 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 3a 00 54 6f 20 61 6c 6c 6f 77 20 74 72 61 66 66 | ollowing.command:.To.allow.traff |
| 9e7c0 | 69 63 20 74 6f 20 70 61 73 73 20 74 68 72 6f 75 67 68 20 74 6f 20 63 6c 69 65 6e 74 73 2c 20 79 | ic.to.pass.through.to.clients,.y |
| 9e7e0 | 6f 75 20 6e 65 65 64 20 74 6f 20 61 64 64 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 72 75 6c | ou.need.to.add.the.following.rul |
| 9e800 | 65 73 2e 20 28 69 66 20 79 6f 75 20 75 73 65 64 20 74 68 65 20 64 65 66 61 75 6c 74 20 63 6f 6e | es..(if.you.used.the.default.con |
| 9e820 | 66 69 67 75 72 61 74 69 6f 6e 20 61 74 20 74 68 65 20 74 6f 70 20 6f 66 20 74 68 69 73 20 70 61 | figuration.at.the.top.of.this.pa |
| 9e840 | 67 65 29 00 54 6f 20 61 70 70 6c 79 20 74 68 69 73 20 70 6f 6c 69 63 79 20 74 6f 20 74 68 65 20 | ge).To.apply.this.policy.to.the. |
| 9e860 | 63 6f 72 72 65 63 74 20 69 6e 74 65 72 66 61 63 65 2c 20 63 6f 6e 66 69 67 75 72 65 20 69 74 20 | correct.interface,.configure.it. |
| 9e880 | 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 69 6e 62 6f 75 6e 64 20 6c 6f 63 | on.the.interface.the.inbound.loc |
| 9e8a0 | 61 6c 20 68 6f 73 74 20 77 69 6c 6c 20 73 65 6e 64 20 74 68 72 6f 75 67 68 20 74 6f 20 72 65 61 | al.host.will.send.through.to.rea |
| 9e8c0 | 63 68 20 6f 75 72 20 64 65 73 74 69 6e 65 64 20 74 61 72 67 65 74 20 68 6f 73 74 20 28 69 6e 20 | ch.our.destined.target.host.(in. |
| 9e8e0 | 6f 75 72 20 65 78 61 6d 70 6c 65 20 65 74 68 31 29 2e 00 54 6f 20 61 75 74 6f 20 75 70 64 61 74 | our.example.eth1)..To.auto.updat |
| 9e900 | 65 20 74 68 65 20 62 6c 61 63 6b 6c 69 73 74 20 66 69 6c 65 73 00 54 6f 20 61 75 74 6f 6d 61 74 | e.the.blacklist.files.To.automat |
| 9e920 | 69 63 61 6c 6c 79 20 61 73 73 69 67 6e 20 74 68 65 20 63 6c 69 65 6e 74 20 61 6e 20 49 50 20 61 | ically.assign.the.client.an.IP.a |
| 9e940 | 64 64 72 65 73 73 20 61 73 20 74 75 6e 6e 65 6c 20 65 6e 64 70 6f 69 6e 74 2c 20 61 20 63 6c 69 | ddress.as.tunnel.endpoint,.a.cli |
| 9e960 | 65 6e 74 20 49 50 20 70 6f 6f 6c 20 69 73 20 6e 65 65 64 65 64 2e 20 54 68 65 20 73 6f 75 72 63 | ent.IP.pool.is.needed..The.sourc |
| 9e980 | 65 20 63 61 6e 20 62 65 20 65 69 74 68 65 72 20 52 41 44 49 55 53 20 6f 72 20 61 20 6c 6f 63 61 | e.can.be.either.RADIUS.or.a.loca |
| 9e9a0 | 6c 20 73 75 62 6e 65 74 20 6f 72 20 49 50 20 72 61 6e 67 65 20 64 65 66 69 6e 69 74 69 6f 6e 2e | l.subnet.or.IP.range.definition. |
| 9e9c0 | 00 54 6f 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 61 73 73 69 67 6e 20 74 68 65 20 63 6c 69 | .To.automatically.assign.the.cli |
| 9e9e0 | 65 6e 74 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 61 73 20 74 75 6e 6e 65 6c 20 65 6e 64 70 | ent.an.IP.address.as.tunnel.endp |
| 9ea00 | 6f 69 6e 74 2c 20 61 20 63 6c 69 65 6e 74 20 49 50 20 70 6f 6f 6c 20 69 73 20 6e 65 65 64 65 64 | oint,.a.client.IP.pool.is.needed |
| 9ea20 | 2e 20 54 68 65 20 73 6f 75 72 63 65 20 63 61 6e 20 62 65 20 65 69 74 68 65 72 20 52 41 44 49 55 | ..The.source.can.be.either.RADIU |
| 9ea40 | 53 20 6f 72 20 61 20 6e 61 6d 65 64 20 70 6f 6f 6c 2e 20 54 68 65 72 65 20 69 73 20 70 6f 73 73 | S.or.a.named.pool..There.is.poss |
| 9ea60 | 69 62 69 6c 69 74 79 20 74 6f 20 63 72 65 61 74 65 20 6d 75 6c 74 69 70 6c 65 20 6e 61 6d 65 64 | ibility.to.create.multiple.named |
| 9ea80 | 20 70 6f 6f 6c 73 2e 20 45 61 63 68 20 6e 61 6d 65 64 20 70 6f 6f 6c 20 63 61 6e 20 69 6e 63 6c | .pools..Each.named.pool.can.incl |
| 9eaa0 | 75 64 65 20 6f 6e 6c 79 20 6f 6e 65 20 61 64 64 72 65 73 73 20 72 61 6e 67 65 2e 20 54 6f 20 75 | ude.only.one.address.range..To.u |
| 9eac0 | 73 65 20 6d 75 6c 74 69 70 6c 65 20 61 64 64 72 65 73 73 20 72 61 6e 67 65 73 20 63 6f 6e 66 69 | se.multiple.address.ranges.confi |
| 9eae0 | 67 75 72 65 20 60 60 6e 65 78 74 2d 70 6f 6f 6c 60 60 20 6f 70 74 69 6f 6e 2e 00 54 6f 20 62 65 | gure.``next-pool``.option..To.be |
| 9eb00 | 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 60 60 61 63 74 69 6f 6e 60 60 20 69 73 20 73 65 | .used.only.when.``action``.is.se |
| 9eb20 | 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | t.to.``jump``..Use.this.command. |
| 9eb40 | 74 6f 20 73 70 65 63 69 66 79 20 6a 75 6d 70 20 74 61 72 67 65 74 2e 00 54 6f 20 62 65 20 75 73 | to.specify.jump.target..To.be.us |
| 9eb60 | 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 60 60 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 60 60 20 | ed.only.when.``default-action``. |
| 9eb80 | 69 73 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d | is.set.to.``jump``..Use.this.com |
| 9eba0 | 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 6a 75 6d 70 20 74 61 72 67 65 74 20 66 6f 72 20 | mand.to.specify.jump.target.for. |
| 9ebc0 | 64 65 66 61 75 6c 74 20 72 75 6c 65 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 | default.rule..To.be.used.only.wh |
| 9ebe0 | 65 6e 20 60 60 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 60 60 20 69 73 20 73 65 74 20 74 6f 20 | en.``default-action``.is.set.to. |
| 9ec00 | 60 60 6a 75 6d 70 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 | ``jump``..Use.this.command.to.sp |
| 9ec20 | 65 63 69 66 79 20 74 68 65 20 6a 75 6d 70 20 74 61 72 67 65 74 20 66 6f 72 20 74 68 65 20 64 65 | ecify.the.jump.target.for.the.de |
| 9ec40 | 66 61 75 6c 74 20 72 75 6c 65 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e | fault.rule..To.be.used.only.when |
| 9ec60 | 20 60 60 64 65 66 75 6c 74 2d 61 63 74 69 6f 6e 60 60 20 69 73 20 73 65 74 20 74 6f 20 60 60 6a | .``defult-action``.is.set.to.``j |
| 9ec80 | 75 6d 70 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 | ump``..Use.this.command.to.speci |
| 9eca0 | 66 79 20 6a 75 6d 70 20 74 61 72 67 65 74 20 66 6f 72 20 64 65 66 61 75 6c 74 20 72 75 6c 65 2e | fy.jump.target.for.default.rule. |
| 9ecc0 | 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 61 63 74 69 6f 6e 20 69 73 20 | .To.be.used.only.when.action.is. |
| 9ece0 | 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | set.to.``jump``..Use.this.comman |
| 9ed00 | 64 20 74 6f 20 73 70 65 63 69 66 79 20 6a 75 6d 70 20 74 61 72 67 65 74 2e 00 54 6f 20 62 65 20 | d.to.specify.jump.target..To.be. |
| 9ed20 | 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 | used.only.when.action.is.set.to. |
| 9ed40 | 60 60 6a 75 6d 70 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 | ``jump``..Use.this.command.to.sp |
| 9ed60 | 65 63 69 66 79 20 74 68 65 20 6a 75 6d 70 20 74 61 72 67 65 74 2e 00 54 6f 20 62 65 20 75 73 65 | ecify.the.jump.target..To.be.use |
| 9ed80 | 64 20 6f 6e 6c 79 20 77 68 65 6e 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 71 | d.only.when.action.is.set.to.``q |
| 9eda0 | 75 65 75 65 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 69 73 74 | ueue``..Use.this.command.to.dist |
| 9edc0 | 72 69 62 75 74 65 20 70 61 63 6b 65 74 73 20 62 65 74 77 65 65 6e 20 73 65 76 65 72 61 6c 20 71 | ribute.packets.between.several.q |
| 9ede0 | 75 65 75 65 73 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 61 63 74 69 | ueues..To.be.used.only.when.acti |
| 9ee00 | 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 71 75 65 75 65 60 60 2e 20 55 73 65 20 74 68 69 73 | on.is.set.to.``queue``..Use.this |
| 9ee20 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6c 65 74 20 70 61 63 6b 65 74 20 67 6f 20 74 68 72 6f 75 67 | .command.to.let.packet.go.throug |
| 9ee40 | 68 20 66 69 72 65 77 61 6c 6c 20 77 68 65 6e 20 6e 6f 20 75 73 65 72 73 70 61 63 65 20 73 6f 66 | h.firewall.when.no.userspace.sof |
| 9ee60 | 74 77 61 72 65 20 69 73 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 65 20 71 75 65 75 65 2e | tware.is.connected.to.the.queue. |
| 9ee80 | 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 61 63 74 69 6f 6e 20 69 73 20 | .To.be.used.only.when.action.is. |
| 9eea0 | 73 65 74 20 74 6f 20 60 60 71 75 65 75 65 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 | set.to.``queue``..Use.this.comma |
| 9eec0 | 6e 64 20 74 6f 20 6c 65 74 20 74 68 65 20 70 61 63 6b 65 74 20 67 6f 20 74 68 72 6f 75 67 68 20 | nd.to.let.the.packet.go.through. |
| 9eee0 | 66 69 72 65 77 61 6c 6c 20 77 68 65 6e 20 6e 6f 20 75 73 65 72 73 70 61 63 65 20 73 6f 66 74 77 | firewall.when.no.userspace.softw |
| 9ef00 | 61 72 65 20 69 73 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 65 20 71 75 65 75 65 2e 00 54 | are.is.connected.to.the.queue..T |
| 9ef20 | 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 61 63 74 69 6f 6e 20 69 73 20 73 65 | o.be.used.only.when.action.is.se |
| 9ef40 | 74 20 74 6f 20 60 60 71 75 65 75 65 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 | t.to.``queue``..Use.this.command |
| 9ef60 | 20 74 6f 20 73 70 65 63 69 66 79 20 71 75 65 75 65 20 74 61 72 67 65 74 20 74 6f 20 75 73 65 2e | .to.specify.queue.target.to.use. |
| 9ef80 | 20 51 75 65 75 65 20 72 61 6e 67 65 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 | .Queue.range.is.also.supported.. |
| 9efa0 | 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 61 63 74 69 6f 6e 20 69 73 20 73 | To.be.used.only.when.action.is.s |
| 9efc0 | 65 74 20 74 6f 20 60 60 71 75 65 75 65 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | et.to.``queue``..Use.this.comman |
| 9efe0 | 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 71 75 65 75 65 20 74 61 72 67 65 74 20 74 6f | d.to.specify.the.queue.target.to |
| 9f000 | 20 75 73 65 2e 20 51 75 65 75 65 20 72 61 6e 67 65 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 | .use..Queue.range.is.also.suppor |
| 9f020 | 74 65 64 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 61 63 74 69 6f 6e | ted..To.be.used.only.when.action |
| 9f040 | 20 69 73 20 73 65 74 20 74 6f 20 6a 75 6d 70 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | .is.set.to.jump..Use.this.comman |
| 9f060 | 64 20 74 6f 20 73 70 65 63 69 66 79 20 6a 75 6d 70 20 74 61 72 67 65 74 2e 00 54 6f 20 62 79 70 | d.to.specify.jump.target..To.byp |
| 9f080 | 61 73 73 20 74 68 65 20 70 72 6f 78 79 20 66 6f 72 20 65 76 65 72 79 20 72 65 71 75 65 73 74 20 | ass.the.proxy.for.every.request. |
| 9f0a0 | 74 68 61 74 20 69 73 20 63 6f 6d 69 6e 67 20 66 72 6f 6d 20 61 20 73 70 65 63 69 66 69 63 20 73 | that.is.coming.from.a.specific.s |
| 9f0c0 | 6f 75 72 63 65 3a 00 54 6f 20 62 79 70 61 73 73 20 74 68 65 20 70 72 6f 78 79 20 66 6f 72 20 65 | ource:.To.bypass.the.proxy.for.e |
| 9f0e0 | 76 65 72 79 20 72 65 71 75 65 73 74 20 74 68 61 74 20 69 73 20 64 69 72 65 63 74 65 64 20 74 6f | very.request.that.is.directed.to |
| 9f100 | 20 61 20 73 70 65 63 69 66 69 63 20 64 65 73 74 69 6e 61 74 69 6f 6e 3a 00 54 6f 20 63 6f 6e 66 | .a.specific.destination:.To.conf |
| 9f120 | 69 67 75 72 65 20 49 50 76 36 20 61 73 73 69 67 6e 6d 65 6e 74 73 20 66 6f 72 20 63 6c 69 65 6e | igure.IPv6.assignments.for.clien |
| 9f140 | 74 73 2c 20 74 77 6f 20 6f 70 74 69 6f 6e 73 20 6e 65 65 64 20 74 6f 20 62 65 20 63 6f 6e 66 69 | ts,.two.options.need.to.be.confi |
| 9f160 | 67 75 72 65 64 2e 20 41 20 67 6c 6f 62 61 6c 20 70 72 65 66 69 78 20 77 68 69 63 68 20 69 73 20 | gured..A.global.prefix.which.is. |
| 9f180 | 74 65 72 6d 69 6e 61 74 65 64 20 6f 6e 20 74 68 65 20 63 6c 69 65 6e 74 73 20 63 70 65 20 61 6e | terminated.on.the.clients.cpe.an |
| 9f1a0 | 64 20 61 20 64 65 6c 65 67 61 74 65 64 20 70 72 65 66 69 78 2c 20 74 68 65 20 63 6c 69 65 6e 74 | d.a.delegated.prefix,.the.client |
| 9f1c0 | 20 63 61 6e 20 75 73 65 20 66 6f 72 20 64 65 76 69 63 65 73 20 72 6f 75 74 65 64 20 76 69 61 20 | .can.use.for.devices.routed.via. |
| 9f1e0 | 74 68 65 20 63 6c 69 65 6e 74 73 20 63 70 65 2e 00 54 6f 20 63 6f 6e 66 69 67 75 72 65 20 56 79 | the.clients.cpe..To.configure.Vy |
| 9f200 | 4f 53 20 77 69 74 68 20 74 68 65 20 3a 64 6f 63 3a 60 6c 65 67 61 63 79 20 66 69 72 65 77 61 6c | OS.with.the.:doc:`legacy.firewal |
| 9f220 | 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f | l.configuration.</configuration/ |
| 9f240 | 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2d 6c 65 67 61 63 79 3e 60 00 54 6f 20 63 6f 6e | firewall/general-legacy>`.To.con |
| 9f260 | 66 69 67 75 72 65 20 56 79 4f 53 20 77 69 74 68 20 74 68 65 20 3a 64 6f 63 3a 60 7a 6f 6e 65 2d | figure.VyOS.with.the.:doc:`zone- |
| 9f280 | 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 3c 2f 63 | based.firewall.configuration.</c |
| 9f2a0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 7a 6f 6e 65 3e 60 00 54 6f 20 | onfiguration/firewall/zone>`.To. |
| 9f2c0 | 63 6f 6e 66 69 67 75 72 65 20 56 79 4f 53 20 77 69 74 68 20 74 68 65 20 6e 65 77 20 3a 64 6f 63 | configure.VyOS.with.the.new.:doc |
| 9f2e0 | 3a 60 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 3c 2f 63 6f 6e 66 69 | :`firewall.configuration.</confi |
| 9f300 | 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 3e 60 00 54 6f 20 63 | guration/firewall/general>`.To.c |
| 9f320 | 6f 6e 66 69 67 75 72 65 20 62 6c 6f 63 6b 69 6e 67 20 61 64 64 20 74 68 65 20 66 6f 6c 6c 6f 77 | onfigure.blocking.add.the.follow |
| 9f340 | 69 6e 67 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 54 6f 20 63 6f 6e 66 | ing.to.the.configuration.To.conf |
| 9f360 | 69 67 75 72 65 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 79 6f | igure.site-to-site.connection.yo |
| 9f380 | 75 20 6e 65 65 64 20 74 6f 20 61 64 64 20 70 65 65 72 73 20 77 69 74 68 20 74 68 65 20 60 60 73 | u.need.to.add.peers.with.the.``s |
| 9f3a0 | 65 74 20 76 70 6e 20 69 70 73 65 63 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 70 65 65 72 20 3c | et.vpn.ipsec.site-to-site.peer.< |
| 9f3c0 | 6e 61 6d 65 3e 60 60 20 63 6f 6d 6d 61 6e 64 2e 00 54 6f 20 63 6f 6e 66 69 67 75 72 65 20 73 79 | name>``.command..To.configure.sy |
| 9f3e0 | 73 6c 6f 67 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 73 77 69 74 63 68 20 69 6e 74 6f 20 63 6f | slog,.you.need.to.switch.into.co |
| 9f400 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 65 2e 00 54 6f 20 63 6f 6e 66 69 67 75 72 65 20 79 | nfiguration.mode..To.configure.y |
| 9f420 | 6f 75 72 20 4c 43 44 20 64 69 73 70 6c 61 79 20 79 6f 75 20 6d 75 73 74 20 66 69 72 73 74 20 69 | our.LCD.display.you.must.first.i |
| 9f440 | 64 65 6e 74 69 66 79 20 74 68 65 20 75 73 65 64 20 68 61 72 64 77 61 72 65 2c 20 61 6e 64 20 63 | dentify.the.used.hardware,.and.c |
| 9f460 | 6f 6e 6e 65 63 74 69 76 69 74 79 20 6f 66 20 74 68 65 20 64 69 73 70 6c 61 79 20 74 6f 20 79 6f | onnectivity.of.the.display.to.yo |
| 9f480 | 75 72 20 73 79 73 74 65 6d 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 61 6e 79 20 73 65 72 69 61 | ur.system..This.can.be.any.seria |
| 9f4a0 | 6c 20 70 6f 72 74 20 28 60 74 74 79 53 78 78 60 29 20 6f 72 20 73 65 72 69 61 6c 20 76 69 61 20 | l.port.(`ttySxx`).or.serial.via. |
| 9f4c0 | 55 53 42 20 6f 72 20 65 76 65 6e 20 6f 6c 64 20 70 61 72 61 6c 6c 65 6c 20 70 6f 72 74 20 69 6e | USB.or.even.old.parallel.port.in |
| 9f4e0 | 74 65 72 66 61 63 65 73 2e 00 54 6f 20 63 72 65 61 74 65 20 56 4c 41 4e 73 20 70 65 72 20 75 73 | terfaces..To.create.VLANs.per.us |
| 9f500 | 65 72 20 64 75 72 69 6e 67 20 72 75 6e 74 69 6d 65 2c 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 | er.during.runtime,.the.following |
| 9f520 | 20 73 65 74 74 69 6e 67 73 20 61 72 65 20 72 65 71 75 69 72 65 64 20 6f 6e 20 61 20 70 65 72 20 | .settings.are.required.on.a.per. |
| 9f540 | 69 6e 74 65 72 66 61 63 65 20 62 61 73 69 73 2e 20 56 4c 41 4e 20 49 44 20 61 6e 64 20 56 4c 41 | interface.basis..VLAN.ID.and.VLA |
| 9f560 | 4e 20 72 61 6e 67 65 20 63 61 6e 20 62 65 20 70 72 65 73 65 6e 74 20 69 6e 20 74 68 65 20 63 6f | N.range.can.be.present.in.the.co |
| 9f580 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 74 20 74 68 65 20 73 61 6d 65 20 74 69 6d 65 2e 00 54 6f | nfiguration.at.the.same.time..To |
| 9f5a0 | 20 63 72 65 61 74 65 20 61 20 6e 65 77 20 6c 69 6e 65 20 69 6e 20 79 6f 75 72 20 6c 6f 67 69 6e | .create.a.new.line.in.your.login |
| 9f5c0 | 20 6d 65 73 73 61 67 65 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 65 73 63 61 70 65 20 74 68 65 20 | .message.you.need.to.escape.the. |
| 9f5e0 | 6e 65 77 20 6c 69 6e 65 20 63 68 61 72 61 63 74 65 72 20 62 79 20 75 73 69 6e 67 20 60 60 5c 5c | new.line.character.by.using.``\\ |
| 9f600 | 6e 60 60 2e 00 54 6f 20 63 72 65 61 74 65 20 6d 6f 72 65 20 74 68 61 6e 20 6f 6e 65 20 74 75 6e | n``..To.create.more.than.one.tun |
| 9f620 | 6e 65 6c 2c 20 75 73 65 20 64 69 73 74 69 6e 63 74 20 55 44 50 20 70 6f 72 74 73 2e 00 54 6f 20 | nel,.use.distinct.UDP.ports..To. |
| 9f640 | 63 72 65 61 74 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 31 30 30 20 61 6e 64 20 61 64 64 | create.routing.table.100.and.add |
| 9f660 | 20 61 20 6e 65 77 20 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 20 74 6f 20 62 65 20 75 73 65 | .a.new.default.gateway.to.be.use |
| 9f680 | 64 20 62 79 20 74 72 61 66 66 69 63 20 6d 61 74 63 68 69 6e 67 20 6f 75 72 20 72 6f 75 74 65 20 | d.by.traffic.matching.our.route. |
| 9f6a0 | 70 6f 6c 69 63 79 3a 00 54 6f 20 64 65 66 69 6e 65 20 61 20 7a 6f 6e 65 20 73 65 74 75 70 20 65 | policy:.To.define.a.zone.setup.e |
| 9f6c0 | 69 74 68 65 72 20 6f 6e 65 20 77 69 74 68 20 69 6e 74 65 72 66 61 63 65 73 20 6f 72 20 61 20 6c | ither.one.with.interfaces.or.a.l |
| 9f6e0 | 6f 63 61 6c 20 7a 6f 6e 65 2e 00 54 6f 20 64 69 73 61 62 6c 65 20 61 64 76 65 72 74 69 73 65 6d | ocal.zone..To.disable.advertisem |
| 9f700 | 65 6e 74 73 20 77 69 74 68 6f 75 74 20 64 65 6c 65 74 69 6e 67 20 74 68 65 20 63 6f 6e 66 69 67 | ents.without.deleting.the.config |
| 9f720 | 75 72 61 74 69 6f 6e 3a 00 54 6f 20 64 69 73 70 6c 61 79 20 74 68 65 20 63 6f 6e 66 69 67 75 72 | uration:.To.display.the.configur |
| 9f740 | 65 64 20 4f 54 50 20 75 73 65 72 20 6b 65 79 2c 20 75 73 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 | ed.OTP.user.key,.use.the.command |
| 9f760 | 3a 00 54 6f 20 64 69 73 70 6c 61 79 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 4f 54 50 20 | :.To.display.the.configured.OTP. |
| 9f780 | 75 73 65 72 20 73 65 74 74 69 6e 67 73 2c 20 75 73 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 3a 00 | user.settings,.use.the.command:. |
| 9f7a0 | 54 6f 20 65 6e 61 62 6c 65 20 4d 4c 44 20 72 65 70 6f 72 74 73 20 61 6e 64 20 71 75 65 72 79 20 | To.enable.MLD.reports.and.query. |
| 9f7c0 | 6f 6e 20 69 6e 74 65 72 66 61 63 65 73 20 60 65 74 68 30 60 20 61 6e 64 20 60 65 74 68 31 60 3a | on.interfaces.`eth0`.and.`eth1`: |
| 9f7e0 | 00 54 6f 20 65 6e 61 62 6c 65 20 52 41 44 49 55 53 20 62 61 73 65 64 20 61 75 74 68 65 6e 74 69 | .To.enable.RADIUS.based.authenti |
| 9f800 | 63 61 74 69 6f 6e 2c 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 6f 64 65 20 | cation,.the.authentication.mode. |
| 9f820 | 6e 65 65 64 73 20 74 6f 20 62 65 20 63 68 61 6e 67 65 64 20 77 69 74 68 69 6e 20 74 68 65 20 63 | needs.to.be.changed.within.the.c |
| 9f840 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 50 72 65 76 69 6f 75 73 20 73 65 74 74 69 6e 67 73 20 | onfiguration..Previous.settings. |
| 9f860 | 6c 69 6b 65 20 74 68 65 20 6c 6f 63 61 6c 20 75 73 65 72 73 20 73 74 69 6c 6c 20 65 78 69 73 74 | like.the.local.users.still.exist |
| 9f880 | 20 77 69 74 68 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 68 6f 77 65 76 | .within.the.configuration,.howev |
| 9f8a0 | 65 72 20 74 68 65 79 20 61 72 65 20 6e 6f 74 20 75 73 65 64 20 69 66 20 74 68 65 20 6d 6f 64 65 | er.they.are.not.used.if.the.mode |
| 9f8c0 | 20 68 61 73 20 62 65 65 6e 20 63 68 61 6e 67 65 64 20 66 72 6f 6d 20 6c 6f 63 61 6c 20 74 6f 20 | .has.been.changed.from.local.to. |
| 9f8e0 | 72 61 64 69 75 73 2e 20 4f 6e 63 65 20 63 68 61 6e 67 65 64 20 62 61 63 6b 20 74 6f 20 6c 6f 63 | radius..Once.changed.back.to.loc |
| 9f900 | 61 6c 2c 20 69 74 20 77 69 6c 6c 20 75 73 65 20 61 6c 6c 20 6c 6f 63 61 6c 20 61 63 63 6f 75 6e | al,.it.will.use.all.local.accoun |
| 9f920 | 74 73 20 61 67 61 69 6e 2e 00 54 6f 20 65 6e 61 62 6c 65 20 52 41 44 49 55 53 20 62 61 73 65 64 | ts.again..To.enable.RADIUS.based |
| 9f940 | 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2c 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 74 | .authentication,.the.authenticat |
| 9f960 | 69 6f 6e 20 6d 6f 64 65 20 6e 65 65 64 73 20 74 6f 20 62 65 20 63 68 61 6e 67 65 64 20 77 69 74 | ion.mode.needs.to.be.changed.wit |
| 9f980 | 68 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 50 72 65 76 69 6f 75 73 20 | hin.the.configuration..Previous. |
| 9f9a0 | 73 65 74 74 69 6e 67 73 20 6c 69 6b 65 20 74 68 65 20 6c 6f 63 61 6c 20 75 73 65 72 73 2c 20 73 | settings.like.the.local.users,.s |
| 9f9c0 | 74 69 6c 6c 20 65 78 69 73 74 73 20 77 69 74 68 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 | till.exists.within.the.configura |
| 9f9e0 | 74 69 6f 6e 2c 20 68 6f 77 65 76 65 72 20 74 68 65 79 20 61 72 65 20 6e 6f 74 20 75 73 65 64 20 | tion,.however.they.are.not.used. |
| 9fa00 | 69 66 20 74 68 65 20 6d 6f 64 65 20 68 61 73 20 62 65 65 6e 20 63 68 61 6e 67 65 64 20 66 72 6f | if.the.mode.has.been.changed.fro |
| 9fa20 | 6d 20 6c 6f 63 61 6c 20 74 6f 20 72 61 64 69 75 73 2e 20 4f 6e 63 65 20 63 68 61 6e 67 65 64 20 | m.local.to.radius..Once.changed. |
| 9fa40 | 62 61 63 6b 20 74 6f 20 6c 6f 63 61 6c 2c 20 69 74 20 77 69 6c 6c 20 75 73 65 20 61 6c 6c 20 6c | back.to.local,.it.will.use.all.l |
| 9fa60 | 6f 63 61 6c 20 61 63 63 6f 75 6e 74 73 20 61 67 61 69 6e 2e 00 54 6f 20 65 6e 61 62 6c 65 20 62 | ocal.accounts.again..To.enable.b |
| 9fa80 | 61 6e 64 77 69 64 74 68 20 73 68 61 70 69 6e 67 20 76 69 61 20 52 41 44 49 55 53 2c 20 74 68 65 | andwidth.shaping.via.RADIUS,.the |
| 9faa0 | 20 6f 70 74 69 6f 6e 20 72 61 74 65 2d 6c 69 6d 69 74 20 6e 65 65 64 73 20 74 6f 20 62 65 20 65 | .option.rate-limit.needs.to.be.e |
| 9fac0 | 6e 61 62 6c 65 64 2e 00 54 6f 20 65 6e 61 62 6c 65 20 64 65 62 75 67 20 6d 65 73 73 61 67 65 73 | nabled..To.enable.debug.messages |
| 9fae0 | 2e 20 41 76 61 69 6c 61 62 6c 65 20 76 69 61 20 3a 6f 70 63 6d 64 3a 60 73 68 6f 77 20 6c 6f 67 | ..Available.via.:opcmd:`show.log |
| 9fb00 | 60 20 6f 72 20 3a 6f 70 63 6d 64 3a 60 6d 6f 6e 69 74 6f 72 20 6c 6f 67 60 00 54 6f 20 65 6e 61 | `.or.:opcmd:`monitor.log`.To.ena |
| 9fb20 | 62 6c 65 20 6d 44 4e 53 20 72 65 70 65 61 74 65 72 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 6f | ble.mDNS.repeater.you.need.to.co |
| 9fb40 | 6e 66 69 67 75 72 65 20 61 74 20 6c 65 61 73 74 20 74 77 6f 20 69 6e 74 65 72 66 61 63 65 73 20 | nfigure.at.least.two.interfaces. |
| 9fb60 | 73 6f 20 74 68 61 74 20 61 6c 6c 20 69 6e 63 6f 6d 69 6e 67 20 6d 44 4e 53 20 70 61 63 6b 65 74 | so.that.all.incoming.mDNS.packet |
| 9fb80 | 73 20 66 72 6f 6d 20 6f 6e 65 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e 66 69 67 75 72 65 64 20 | s.from.one.interface.configured. |
| 9fba0 | 68 65 72 65 20 63 61 6e 20 62 65 20 72 65 2d 62 72 6f 61 64 63 61 73 74 65 64 20 74 6f 20 61 6e | here.can.be.re-broadcasted.to.an |
| 9fbc0 | 79 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 28 73 29 20 63 6f 6e 66 69 67 75 72 65 64 20 | y.other.interface(s).configured. |
| 9fbe0 | 75 6e 64 65 72 20 74 68 69 73 20 73 65 63 74 69 6f 6e 2e 00 54 6f 20 65 6e 61 62 6c 65 20 6d 44 | under.this.section..To.enable.mD |
| 9fc00 | 4e 53 20 72 65 70 65 61 74 65 72 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 | NS.repeater.you.need.to.configur |
| 9fc20 | 65 20 61 74 20 6c 65 61 73 74 20 74 77 6f 20 69 6e 74 65 72 66 61 63 65 73 2e 20 54 6f 20 72 65 | e.at.least.two.interfaces..To.re |
| 9fc40 | 2d 62 72 6f 61 64 63 61 73 74 20 61 6c 6c 20 69 6e 63 6f 6d 69 6e 67 20 6d 44 4e 53 20 70 61 63 | -broadcast.all.incoming.mDNS.pac |
| 9fc60 | 6b 65 74 73 20 66 72 6f 6d 20 61 6e 79 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e 66 69 67 75 72 | kets.from.any.interface.configur |
| 9fc80 | 65 64 20 68 65 72 65 20 74 6f 20 61 6e 79 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 20 63 | ed.here.to.any.other.interface.c |
| 9fca0 | 6f 6e 66 69 67 75 72 65 64 20 75 6e 64 65 72 20 74 68 69 73 20 73 65 63 74 69 6f 6e 2e 00 54 6f | onfigured.under.this.section..To |
| 9fcc0 | 20 65 6e 61 62 6c 65 20 74 68 65 20 48 54 54 50 20 73 65 63 75 72 69 74 79 20 68 65 61 64 65 72 | .enable.the.HTTP.security.header |
| 9fce0 | 73 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 69 6c 65 2c 20 75 73 65 | s.in.the.configuration.file,.use |
| 9fd00 | 20 74 68 65 20 63 6f 6d 6d 61 6e 64 3a 00 54 6f 20 65 6e 61 62 6c 65 2f 64 69 73 61 62 6c 65 20 | .the.command:.To.enable/disable. |
| 9fd20 | 68 65 6c 70 65 72 20 73 75 70 70 6f 72 74 20 66 6f 72 20 61 20 73 70 65 63 69 66 69 63 20 6e 65 | helper.support.for.a.specific.ne |
| 9fd40 | 69 67 68 62 6f 75 72 2c 20 74 68 65 20 72 6f 75 74 65 72 2d 69 64 20 28 41 2e 42 2e 43 2e 44 29 | ighbour,.the.router-id.(A.B.C.D) |
| 9fd60 | 20 68 61 73 20 74 6f 20 62 65 20 73 70 65 63 69 66 69 65 64 2e 00 54 6f 20 65 78 63 6c 75 64 65 | .has.to.be.specified..To.exclude |
| 9fd80 | 20 74 72 61 66 66 69 63 20 66 72 6f 6d 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 2c 20 74 72 | .traffic.from.load.balancing,.tr |
| 9fda0 | 61 66 66 69 63 20 6d 61 74 63 68 69 6e 67 20 61 6e 20 65 78 63 6c 75 64 65 20 72 75 6c 65 20 69 | affic.matching.an.exclude.rule.i |
| 9fdc0 | 73 20 6e 6f 74 20 62 61 6c 61 6e 63 65 64 20 62 75 74 20 72 6f 75 74 65 64 20 74 68 72 6f 75 67 | s.not.balanced.but.routed.throug |
| 9fde0 | 68 20 74 68 65 20 73 79 73 74 65 6d 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 69 6e 73 74 65 | h.the.system.routing.table.inste |
| 9fe00 | 61 64 3a 00 54 6f 20 65 78 70 6c 61 69 6e 20 74 68 65 20 75 73 61 67 65 20 6f 66 20 4c 4e 53 20 | ad:.To.explain.the.usage.of.LNS. |
| 9fe20 | 66 6f 6c 6c 6f 77 20 6f 75 72 20 62 6c 75 65 70 72 69 6e 74 20 3a 72 65 66 3a 60 65 78 61 6d 70 | follow.our.blueprint.:ref:`examp |
| 9fe40 | 6c 65 73 2d 6c 61 63 2d 6c 6e 73 60 2e 00 54 6f 20 65 78 74 65 6e 64 20 53 4e 4d 50 20 61 67 65 | les-lac-lns`..To.extend.SNMP.age |
| 9fe60 | 6e 74 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 2c 20 63 75 73 74 6f 6d 20 73 63 72 69 70 74 73 | nt.functionality,.custom.scripts |
| 9fe80 | 20 63 61 6e 20 62 65 20 65 78 65 63 75 74 65 64 20 65 76 65 72 79 20 74 69 6d 65 20 74 68 65 20 | .can.be.executed.every.time.the. |
| 9fea0 | 61 67 65 6e 74 20 69 73 20 62 65 69 6e 67 20 63 61 6c 6c 65 64 2e 20 54 68 69 73 20 63 61 6e 20 | agent.is.being.called..This.can. |
| 9fec0 | 62 65 20 61 63 68 69 65 76 65 64 20 62 79 20 75 73 69 6e 67 20 60 60 61 72 62 69 74 72 61 72 79 | be.achieved.by.using.``arbitrary |
| 9fee0 | 20 65 78 74 65 6e 73 69 6f 6e 63 6f 6d 6d 61 6e 64 73 60 60 2e 20 54 68 65 20 66 69 72 73 74 20 | .extensioncommands``..The.first. |
| 9ff00 | 73 74 65 70 20 69 73 20 74 6f 20 63 72 65 61 74 65 20 61 20 66 75 6e 63 74 69 6f 6e 61 6c 20 73 | step.is.to.create.a.functional.s |
| 9ff20 | 63 72 69 70 74 20 6f 66 20 63 6f 75 72 73 65 2c 20 74 68 65 6e 20 75 70 6c 6f 61 64 20 69 74 20 | cript.of.course,.then.upload.it. |
| 9ff40 | 74 6f 20 79 6f 75 72 20 56 79 4f 53 20 69 6e 73 74 61 6e 63 65 20 76 69 61 20 74 68 65 20 63 6f | to.your.VyOS.instance.via.the.co |
| 9ff60 | 6d 6d 61 6e 64 20 60 60 73 63 70 20 79 6f 75 72 5f 73 63 72 69 70 74 2e 73 68 20 76 79 6f 73 40 | mmand.``scp.your_script.sh.vyos@ |
| 9ff80 | 79 6f 75 72 5f 72 6f 75 74 65 72 3a 2f 63 6f 6e 66 69 67 2f 75 73 65 72 2d 64 61 74 61 60 60 2e | your_router:/config/user-data``. |
| 9ffa0 | 20 4f 6e 63 65 20 74 68 65 20 73 63 72 69 70 74 20 69 73 20 75 70 6c 6f 61 64 65 64 2c 20 69 74 | .Once.the.script.is.uploaded,.it |
| 9ffc0 | 20 6e 65 65 64 73 20 74 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 76 69 61 20 74 68 65 20 | .needs.to.be.configured.via.the. |
| 9ffe0 | 63 6f 6d 6d 61 6e 64 20 62 65 6c 6f 77 2e 00 54 6f 20 66 6f 72 77 61 72 64 20 61 6c 6c 20 62 72 | command.below..To.forward.all.br |
| a0000 | 6f 61 64 63 61 73 74 20 70 61 63 6b 65 74 73 20 72 65 63 65 69 76 65 64 20 6f 6e 20 60 55 44 50 | oadcast.packets.received.on.`UDP |
| a0020 | 20 70 6f 72 74 20 31 39 30 30 60 20 6f 6e 20 60 65 74 68 33 60 2c 20 60 65 74 68 34 60 20 6f 72 | .port.1900`.on.`eth3`,.`eth4`.or |
| a0040 | 20 60 65 74 68 35 60 20 74 6f 20 61 6c 6c 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 73 20 | .`eth5`.to.all.other.interfaces. |
| a0060 | 69 6e 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 6f 20 67 65 6e 65 72 61 | in.this.configuration..To.genera |
| a0080 | 74 65 20 74 68 65 20 43 41 2c 20 74 68 65 20 73 65 72 76 65 72 20 70 72 69 76 61 74 65 20 6b 65 | te.the.CA,.the.server.private.ke |
| a00a0 | 79 20 61 6e 64 20 63 65 72 74 69 66 69 63 61 74 65 73 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 | y.and.certificates.the.following |
| a00c0 | 20 63 6f 6d 6d 61 6e 64 73 20 63 61 6e 20 62 65 20 75 73 65 64 2e 00 54 6f 20 67 65 74 20 69 74 | .commands.can.be.used..To.get.it |
| a00e0 | 20 74 6f 20 77 6f 72 6b 20 61 73 20 61 6e 20 61 63 63 65 73 73 20 70 6f 69 6e 74 20 77 69 74 68 | .to.work.as.an.access.point.with |
| a0100 | 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 79 6f 75 20 77 69 6c 6c 20 6e 65 65 | .this.configuration.you.will.nee |
| a0120 | 64 20 74 6f 20 73 65 74 20 75 70 20 61 20 44 48 43 50 20 73 65 72 76 65 72 20 74 6f 20 77 6f 72 | d.to.set.up.a.DHCP.server.to.wor |
| a0140 | 6b 20 77 69 74 68 20 74 68 61 74 20 6e 65 74 77 6f 72 6b 2e 20 59 6f 75 20 63 61 6e 20 2d 20 6f | k.with.that.network..You.can.-.o |
| a0160 | 66 20 63 6f 75 72 73 65 20 2d 20 61 6c 73 6f 20 62 72 69 64 67 65 20 74 68 65 20 57 69 72 65 6c | f.course.-.also.bridge.the.Wirel |
| a0180 | 65 73 73 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 61 6e 79 20 63 6f 6e 66 69 67 75 72 65 | ess.interface.with.any.configure |
| a01a0 | 64 20 62 72 69 64 67 65 20 28 3a 72 65 66 3a 60 62 72 69 64 67 65 2d 69 6e 74 65 72 66 61 63 65 | d.bridge.(:ref:`bridge-interface |
| a01c0 | 60 29 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 00 54 6f 20 68 61 6e 64 20 6f 75 74 20 69 6e | `).on.the.system..To.hand.out.in |
| a01e0 | 64 69 76 69 64 75 61 6c 20 70 72 65 66 69 78 65 73 20 74 6f 20 79 6f 75 72 20 63 6c 69 65 6e 74 | dividual.prefixes.to.your.client |
| a0200 | 73 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 | s.the.following.configuration.is |
| a0220 | 20 75 73 65 64 3a 00 54 6f 20 69 6d 70 6f 72 74 20 69 74 20 66 72 6f 6d 20 74 68 65 20 66 69 6c | .used:.To.import.it.from.the.fil |
| a0240 | 65 73 79 73 74 65 6d 20 75 73 65 3a 00 54 6f 20 6b 6e 6f 77 20 6d 6f 72 65 20 61 62 6f 75 74 20 | esystem.use:.To.know.more.about. |
| a0260 | 73 63 72 69 70 74 69 6e 67 2c 20 63 68 65 63 6b 20 74 68 65 20 3a 72 65 66 3a 60 63 6f 6d 6d 61 | scripting,.check.the.:ref:`comma |
| a0280 | 6e 64 2d 73 63 72 69 70 74 69 6e 67 60 20 73 65 63 74 69 6f 6e 2e 00 54 6f 20 6c 69 73 74 65 6e | nd-scripting`.section..To.listen |
| a02a0 | 20 6f 6e 20 62 6f 74 68 20 60 65 74 68 30 60 20 61 6e 64 20 60 65 74 68 31 60 20 6d 44 4e 53 20 | .on.both.`eth0`.and.`eth1`.mDNS. |
| a02c0 | 70 61 63 6b 65 74 73 20 61 6e 64 20 61 6c 73 6f 20 72 65 70 65 61 74 20 70 61 63 6b 65 74 73 20 | packets.and.also.repeat.packets. |
| a02e0 | 72 65 63 65 69 76 65 64 20 6f 6e 20 60 65 74 68 30 60 20 74 6f 20 60 65 74 68 31 60 20 28 61 6e | received.on.`eth0`.to.`eth1`.(an |
| a0300 | 64 20 76 69 63 65 2d 76 65 72 73 61 29 20 75 73 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 | d.vice-versa).use.the.following. |
| a0320 | 63 6f 6d 6d 61 6e 64 73 3a 00 54 6f 20 6d 61 6e 69 70 75 6c 61 74 65 20 6f 72 20 64 69 73 70 6c | commands:.To.manipulate.or.displ |
| a0340 | 61 79 20 41 52 50 5f 20 74 61 62 6c 65 20 65 6e 74 72 69 65 73 2c 20 74 68 65 20 66 6f 6c 6c 6f | ay.ARP_.table.entries,.the.follo |
| a0360 | 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 20 61 72 65 20 69 6d 70 6c 65 6d 65 6e 74 65 64 2e 00 54 | wing.commands.are.implemented..T |
| a0380 | 6f 20 70 65 72 66 6f 72 6d 20 61 20 67 72 61 63 65 66 75 6c 20 73 68 75 74 64 6f 77 6e 2c 20 74 | o.perform.a.graceful.shutdown,.t |
| a03a0 | 68 65 20 46 52 52 20 60 60 67 72 61 63 65 66 75 6c 2d 72 65 73 74 61 72 74 20 70 72 65 70 61 72 | he.FRR.``graceful-restart.prepar |
| a03c0 | 65 20 69 70 20 6f 73 70 66 60 60 20 45 58 45 43 2d 6c 65 76 65 6c 20 63 6f 6d 6d 61 6e 64 20 6e | e.ip.ospf``.EXEC-level.command.n |
| a03e0 | 65 65 64 73 20 74 6f 20 62 65 20 69 73 73 75 65 64 20 62 65 66 6f 72 65 20 72 65 73 74 61 72 74 | eeds.to.be.issued.before.restart |
| a0400 | 69 6e 67 20 74 68 65 20 6f 73 70 66 64 20 64 61 65 6d 6f 6e 2e 00 54 6f 20 70 72 65 76 65 6e 74 | ing.the.ospfd.daemon..To.prevent |
| a0420 | 20 69 73 73 75 65 73 20 77 69 74 68 20 64 69 76 65 72 67 65 6e 74 20 63 6f 6e 66 69 67 75 72 61 | .issues.with.divergent.configura |
| a0440 | 74 69 6f 6e 73 20 62 65 74 77 65 65 6e 20 74 68 65 20 70 61 69 72 20 6f 66 20 72 6f 75 74 65 72 | tions.between.the.pair.of.router |
| a0460 | 73 2c 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 69 73 20 73 74 72 69 63 74 6c 79 20 75 | s,.synchronization.is.strictly.u |
| a0480 | 6e 69 64 69 72 65 63 74 69 6f 6e 61 6c 20 66 72 6f 6d 20 70 72 69 6d 61 72 79 20 74 6f 20 72 65 | nidirectional.from.primary.to.re |
| a04a0 | 70 6c 69 63 61 2e 20 42 6f 74 68 20 72 6f 75 74 65 72 73 20 73 68 6f 75 6c 64 20 62 65 20 6f 6e | plica..Both.routers.should.be.on |
| a04c0 | 6c 69 6e 65 20 61 6e 64 20 72 75 6e 20 74 68 65 20 73 61 6d 65 20 76 65 72 73 69 6f 6e 20 6f 66 | line.and.run.the.same.version.of |
| a04e0 | 20 56 79 4f 53 2e 00 54 6f 20 72 65 71 75 65 73 74 20 61 20 2f 35 36 20 70 72 65 66 69 78 20 66 | .VyOS..To.request.a./56.prefix.f |
| a0500 | 72 6f 6d 20 79 6f 75 72 20 49 53 50 20 75 73 65 3a 00 54 6f 20 72 65 73 74 61 72 74 20 74 68 65 | rom.your.ISP.use:.To.restart.the |
| a0520 | 20 44 48 43 50 76 36 20 73 65 72 76 65 72 00 54 6f 20 73 65 74 75 70 20 53 4e 41 54 2c 20 77 65 | .DHCPv6.server.To.setup.SNAT,.we |
| a0540 | 20 6e 65 65 64 20 74 6f 20 6b 6e 6f 77 3a 00 54 6f 20 73 65 74 75 70 20 61 20 64 65 73 74 69 6e | .need.to.know:.To.setup.a.destin |
| a0560 | 61 74 69 6f 6e 20 4e 41 54 20 72 75 6c 65 20 77 65 20 6e 65 65 64 20 74 6f 20 67 61 74 68 65 72 | ation.NAT.rule.we.need.to.gather |
| a0580 | 3a 00 54 6f 20 75 70 64 61 74 65 20 74 68 65 20 66 69 72 6d 77 61 72 65 2c 20 56 79 4f 53 20 61 | :.To.update.the.firmware,.VyOS.a |
| a05a0 | 6c 73 6f 20 73 68 69 70 73 20 74 68 65 20 60 71 6d 69 2d 66 69 72 6d 77 61 72 65 2d 75 70 64 61 | lso.ships.the.`qmi-firmware-upda |
| a05c0 | 74 65 60 20 62 69 6e 61 72 79 2e 20 54 6f 20 75 70 67 72 61 64 65 20 74 68 65 20 66 69 72 6d 77 | te`.binary..To.upgrade.the.firmw |
| a05e0 | 61 72 65 20 6f 66 20 61 6e 20 65 2e 67 2e 20 53 69 65 72 72 61 20 57 69 72 65 6c 65 73 73 20 4d | are.of.an.e.g..Sierra.Wireless.M |
| a0600 | 43 37 37 31 30 20 6d 6f 64 75 6c 65 20 74 6f 20 74 68 65 20 66 69 72 6d 77 61 72 65 20 70 72 6f | C7710.module.to.the.firmware.pro |
| a0620 | 76 69 64 65 64 20 69 6e 20 74 68 65 20 66 69 6c 65 20 60 60 39 39 39 39 39 39 39 5f 39 39 39 39 | vided.in.the.file.``9999999_9999 |
| a0640 | 39 39 39 5f 39 32 30 30 5f 30 33 2e 30 35 2e 31 34 2e 30 30 5f 30 30 5f 67 65 6e 65 72 69 63 5f | 999_9200_03.05.14.00_00_generic_ |
| a0660 | 30 30 30 2e 30 30 30 5f 30 30 31 5f 53 50 4b 47 5f 4d 43 2e 63 77 65 60 60 20 75 73 65 20 74 68 | 000.000_001_SPKG_MC.cwe``.use.th |
| a0680 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 3a 00 54 6f 20 75 73 65 20 61 20 52 41 | e.following.command:.To.use.a.RA |
| a06a0 | 44 49 55 53 20 73 65 72 76 65 72 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 | DIUS.server.for.authentication.a |
| a06c0 | 6e 64 20 62 61 6e 64 77 69 64 74 68 2d 73 68 61 70 69 6e 67 2c 20 74 68 65 20 66 6f 6c 6c 6f 77 | nd.bandwidth-shaping,.the.follow |
| a06e0 | 69 6e 67 20 65 78 61 6d 70 6c 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 61 6e 20 62 65 | ing.example.configuration.can.be |
| a0700 | 20 75 73 65 64 2e 00 54 6f 20 75 73 65 20 61 20 72 61 64 69 75 73 20 73 65 72 76 65 72 2c 20 79 | .used..To.use.a.radius.server,.y |
| a0720 | 6f 75 20 6e 65 65 64 20 74 6f 20 73 77 69 74 63 68 20 74 6f 20 61 75 74 68 65 6e 74 69 63 61 74 | ou.need.to.switch.to.authenticat |
| a0740 | 69 6f 6e 20 6d 6f 64 65 20 52 41 44 49 55 53 20 61 6e 64 20 74 68 65 6e 20 63 6f 6e 66 69 67 75 | ion.mode.RADIUS.and.then.configu |
| a0760 | 72 65 20 69 74 2e 00 54 6f 20 75 73 65 20 73 75 63 68 20 61 20 73 65 72 76 69 63 65 2c 20 6f 6e | re.it..To.use.such.a.service,.on |
| a0780 | 65 20 6d 75 73 74 20 64 65 66 69 6e 65 20 61 20 6c 6f 67 69 6e 2c 20 70 61 73 73 77 6f 72 64 2c | e.must.define.a.login,.password, |
| a07a0 | 20 6f 6e 65 20 6f 72 20 6d 75 6c 74 69 70 6c 65 20 68 6f 73 74 6e 61 6d 65 73 2c 20 70 72 6f 74 | .one.or.multiple.hostnames,.prot |
| a07c0 | 6f 63 6f 6c 20 61 6e 64 20 73 65 72 76 65 72 2e 00 54 6f 20 75 73 65 20 74 68 65 20 53 61 6c 74 | ocol.and.server..To.use.the.Salt |
| a07e0 | 2d 4d 69 6e 69 6f 6e 2c 20 61 20 72 75 6e 6e 69 6e 67 20 53 61 6c 74 2d 4d 61 73 74 65 72 20 69 | -Minion,.a.running.Salt-Master.i |
| a0800 | 73 20 72 65 71 75 69 72 65 64 2e 20 59 6f 75 20 63 61 6e 20 66 69 6e 64 20 6d 6f 72 65 20 69 6e | s.required..You.can.find.more.in |
| a0820 | 20 74 68 65 20 60 53 61 6c 74 20 50 6f 6a 65 63 74 20 44 6f 63 75 6d 65 6e 74 61 69 6f 6e 20 3c | .the.`Salt.Poject.Documentaion.< |
| a0840 | 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 73 61 6c 74 70 72 6f 6a 65 63 74 2e 69 6f 2f 65 6e 2f 6c | https://docs.saltproject.io/en/l |
| a0860 | 61 74 65 73 74 2f 63 6f 6e 74 65 6e 74 73 2e 68 74 6d 6c 3e 60 5f 00 54 6f 20 75 73 65 20 74 68 | atest/contents.html>`_.To.use.th |
| a0880 | 65 20 53 61 6c 74 2d 4d 69 6e 69 6f 6e 2c 20 61 20 72 75 6e 6e 69 6e 67 20 53 61 6c 74 2d 4d 61 | e.Salt-Minion,.a.running.Salt-Ma |
| a08a0 | 73 74 65 72 20 69 73 20 72 65 71 75 69 72 65 64 2e 20 59 6f 75 20 63 61 6e 20 66 69 6e 64 20 6d | ster.is.required..You.can.find.m |
| a08c0 | 6f 72 65 20 69 6e 20 74 68 65 20 60 53 61 6c 74 20 50 72 6f 6a 65 63 74 20 44 6f 63 75 6d 65 6e | ore.in.the.`Salt.Project.Documen |
| a08e0 | 74 61 74 69 6f 6e 20 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 73 61 6c 74 70 72 6f 6a 65 63 74 | tation.<https://docs.saltproject |
| a0900 | 2e 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f 63 6f 6e 74 65 6e 74 73 2e 68 74 6d 6c 3e 60 5f 00 54 | .io/en/latest/contents.html>`_.T |
| a0920 | 6f 20 75 73 65 20 74 68 69 73 20 66 75 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 65 | o.use.this.full.configuration.we |
| a0940 | 20 61 73 75 6d 65 20 61 20 70 75 62 6c 69 63 20 61 63 63 65 73 73 69 62 6c 65 20 68 6f 73 74 6e | .asume.a.public.accessible.hostn |
| a0960 | 61 6d 65 2e 00 54 6f 70 6f 6c 6f 67 79 3a 00 54 6f 70 6f 6c 6f 67 79 3a 20 50 43 34 20 2d 20 4c | ame..Topology:.Topology:.PC4.-.L |
| a0980 | 65 61 66 32 20 2d 20 53 70 69 6e 65 31 20 2d 20 4c 65 61 66 33 20 2d 20 50 43 35 00 54 6f 74 61 | eaf2.-.Spine1.-.Leaf3.-.PC5.Tota |
| a09a0 | 6c 20 50 6f 72 74 73 3a 20 36 35 35 33 36 20 28 30 20 74 6f 20 36 35 35 33 35 29 00 54 6f 75 62 | l.Ports:.65536.(0.to.65535).Toub |
| a09c0 | 6c 65 73 68 6f 6f 74 69 6e 67 00 54 72 61 63 6b 00 54 72 61 63 6b 20 6f 70 74 69 6f 6e 20 74 6f | leshooting.Track.Track.option.to |
| a09e0 | 20 74 72 61 63 6b 20 6e 6f 6e 20 56 52 52 50 20 69 6e 74 65 72 66 61 63 65 20 73 74 61 74 65 73 | .track.non.VRRP.interface.states |
| a0a00 | 2e 20 56 52 52 50 20 63 68 61 6e 67 65 73 20 73 74 61 74 75 73 20 74 6f 20 60 60 46 41 55 4c 54 | ..VRRP.changes.status.to.``FAULT |
| a0a20 | 60 60 20 69 66 20 6f 6e 65 20 6f 66 20 74 68 65 20 74 72 61 63 6b 20 69 6e 74 65 72 66 61 63 65 | ``.if.one.of.the.track.interface |
| a0a40 | 73 20 69 6e 20 73 74 61 74 65 20 60 60 64 6f 77 6e 60 60 2e 00 54 72 61 64 69 74 69 6f 6e 61 6c | s.in.state.``down``..Traditional |
| a0a60 | 20 42 47 50 20 64 69 64 20 6e 6f 74 20 68 61 76 65 20 74 68 65 20 66 65 61 74 75 72 65 20 74 6f | .BGP.did.not.have.the.feature.to |
| a0a80 | 20 64 65 74 65 63 74 20 61 20 72 65 6d 6f 74 65 20 70 65 65 72 27 73 20 63 61 70 61 62 69 6c 69 | .detect.a.remote.peer's.capabili |
| a0aa0 | 74 69 65 73 2c 20 65 2e 67 2e 20 77 68 65 74 68 65 72 20 69 74 20 63 61 6e 20 68 61 6e 64 6c 65 | ties,.e.g..whether.it.can.handle |
| a0ac0 | 20 70 72 65 66 69 78 20 74 79 70 65 73 20 6f 74 68 65 72 20 74 68 61 6e 20 49 50 76 34 20 75 6e | .prefix.types.other.than.IPv4.un |
| a0ae0 | 69 63 61 73 74 20 72 6f 75 74 65 73 2e 20 54 68 69 73 20 77 61 73 20 61 20 62 69 67 20 70 72 6f | icast.routes..This.was.a.big.pro |
| a0b00 | 62 6c 65 6d 20 75 73 69 6e 67 20 4d 75 6c 74 69 70 72 6f 74 6f 63 6f 6c 20 45 78 74 65 6e 73 69 | blem.using.Multiprotocol.Extensi |
| a0b20 | 6f 6e 20 66 6f 72 20 42 47 50 20 69 6e 20 61 6e 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 6e 65 74 | on.for.BGP.in.an.operational.net |
| a0b40 | 77 6f 72 6b 2e 20 3a 72 66 63 3a 60 32 38 34 32 60 20 61 64 6f 70 74 65 64 20 61 20 66 65 61 74 | work..:rfc:`2842`.adopted.a.feat |
| a0b60 | 75 72 65 20 63 61 6c 6c 65 64 20 43 61 70 61 62 69 6c 69 74 79 20 4e 65 67 6f 74 69 61 74 69 6f | ure.called.Capability.Negotiatio |
| a0b80 | 6e 2e 20 2a 62 67 70 64 2a 20 75 73 65 20 74 68 69 73 20 43 61 70 61 62 69 6c 69 74 79 20 4e 65 | n..*bgpd*.use.this.Capability.Ne |
| a0ba0 | 67 6f 74 69 61 74 69 6f 6e 20 74 6f 20 64 65 74 65 63 74 20 74 68 65 20 72 65 6d 6f 74 65 20 70 | gotiation.to.detect.the.remote.p |
| a0bc0 | 65 65 72 27 73 20 63 61 70 61 62 69 6c 69 74 69 65 73 2e 20 49 66 20 61 20 70 65 65 72 20 69 73 | eer's.capabilities..If.a.peer.is |
| a0be0 | 20 6f 6e 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 61 73 20 61 6e 20 49 50 76 34 20 75 6e 69 63 | .only.configured.as.an.IPv4.unic |
| a0c00 | 61 73 74 20 6e 65 69 67 68 62 6f 72 2c 20 2a 62 67 70 64 2a 20 64 6f 65 73 20 6e 6f 74 20 73 65 | ast.neighbor,.*bgpd*.does.not.se |
| a0c20 | 6e 64 20 74 68 65 73 65 20 43 61 70 61 62 69 6c 69 74 79 20 4e 65 67 6f 74 69 61 74 69 6f 6e 20 | nd.these.Capability.Negotiation. |
| a0c40 | 70 61 63 6b 65 74 73 20 28 61 74 20 6c 65 61 73 74 20 6e 6f 74 20 75 6e 6c 65 73 73 20 6f 74 68 | packets.(at.least.not.unless.oth |
| a0c60 | 65 72 20 6f 70 74 69 6f 6e 61 6c 20 42 47 50 20 66 65 61 74 75 72 65 73 20 72 65 71 75 69 72 65 | er.optional.BGP.features.require |
| a0c80 | 20 63 61 70 61 62 69 6c 69 74 79 20 6e 65 67 6f 74 69 61 74 69 6f 6e 29 2e 00 54 72 61 64 69 74 | .capability.negotiation)..Tradit |
| a0ca0 | 69 6f 6e 61 6c 6c 79 20 66 69 72 65 77 61 6c 6c 73 20 77 65 65 72 65 20 63 6f 6e 66 69 67 75 72 | ionally.firewalls.weere.configur |
| a0cc0 | 65 64 20 77 69 74 68 20 74 68 65 20 63 6f 6e 63 65 70 74 20 6f 66 20 64 61 74 61 20 67 6f 69 6e | ed.with.the.concept.of.data.goin |
| a0ce0 | 67 20 69 6e 20 61 6e 64 20 6f 75 74 20 6f 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 | g.in.and.out.of.an.interface..Th |
| a0d00 | 65 20 72 6f 75 74 65 72 20 6a 75 73 74 20 6c 69 73 74 65 6e 65 64 20 74 6f 20 74 68 65 20 64 61 | e.router.just.listened.to.the.da |
| a0d20 | 74 61 20 66 6c 6f 77 69 6e 67 20 74 68 72 6f 75 67 68 20 61 6e 64 20 72 65 73 70 6f 6e 64 69 6e | ta.flowing.through.and.respondin |
| a0d40 | 67 20 61 73 20 72 65 71 75 69 72 65 64 20 69 66 20 69 74 20 77 61 73 20 64 69 72 65 63 74 65 64 | g.as.required.if.it.was.directed |
| a0d60 | 20 61 74 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2e 00 54 72 61 64 69 74 69 6f 6e | .at.the.router.itself..Tradition |
| a0d80 | 61 6c 6c 79 20 68 61 72 64 77 61 72 65 20 72 6f 75 74 65 72 73 20 69 6d 70 6c 65 6d 65 6e 74 20 | ally.hardware.routers.implement. |
| a0da0 | 49 50 73 65 63 20 65 78 63 6c 75 73 69 76 65 6c 79 20 64 75 65 20 74 6f 20 72 65 6c 61 74 69 76 | IPsec.exclusively.due.to.relativ |
| a0dc0 | 65 20 65 61 73 65 20 6f 66 20 69 6d 70 6c 65 6d 65 6e 74 69 6e 67 20 69 74 20 69 6e 20 68 61 72 | e.ease.of.implementing.it.in.har |
| a0de0 | 64 77 61 72 65 20 61 6e 64 20 69 6e 73 75 66 66 69 63 69 65 6e 74 20 43 50 55 20 70 6f 77 65 72 | dware.and.insufficient.CPU.power |
| a0e00 | 20 66 6f 72 20 64 6f 69 6e 67 20 65 6e 63 72 79 70 74 69 6f 6e 20 69 6e 20 73 6f 66 74 77 61 72 | .for.doing.encryption.in.softwar |
| a0e20 | 65 2e 20 53 69 6e 63 65 20 56 79 4f 53 20 69 73 20 61 20 73 6f 66 74 77 61 72 65 20 72 6f 75 74 | e..Since.VyOS.is.a.software.rout |
| a0e40 | 65 72 2c 20 74 68 69 73 20 69 73 20 6c 65 73 73 20 6f 66 20 61 20 63 6f 6e 63 65 72 6e 2e 20 4f | er,.this.is.less.of.a.concern..O |
| a0e60 | 70 65 6e 56 50 4e 20 68 61 73 20 62 65 65 6e 20 77 69 64 65 6c 79 20 75 73 65 64 20 6f 6e 20 55 | penVPN.has.been.widely.used.on.U |
| a0e80 | 4e 49 58 20 70 6c 61 74 66 6f 72 6d 20 66 6f 72 20 61 20 6c 6f 6e 67 20 74 69 6d 65 20 61 6e 64 | NIX.platform.for.a.long.time.and |
| a0ea0 | 20 69 73 20 61 20 70 6f 70 75 6c 61 72 20 6f 70 74 69 6f 6e 20 66 6f 72 20 72 65 6d 6f 74 65 20 | .is.a.popular.option.for.remote. |
| a0ec0 | 61 63 63 65 73 73 20 56 50 4e 2c 20 74 68 6f 75 67 68 20 69 74 27 73 20 61 6c 73 6f 20 63 61 70 | access.VPN,.though.it's.also.cap |
| a0ee0 | 61 62 6c 65 20 6f 66 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 | able.of.site-to-site.connections |
| a0f00 | 2e 00 54 72 61 64 69 74 69 6f 6e 61 6c 6c 79 20 68 61 72 64 77 61 72 65 20 72 6f 75 74 65 72 73 | ..Traditionally.hardware.routers |
| a0f20 | 20 69 6d 70 6c 65 6d 65 6e 74 20 49 50 73 65 63 20 65 78 63 6c 75 73 69 76 65 6c 79 20 64 75 65 | .implement.IPsec.exclusively.due |
| a0f40 | 20 74 6f 20 72 65 6c 61 74 69 76 65 20 65 61 73 65 20 6f 66 20 69 6d 70 6c 65 6d 65 6e 74 69 6e | .to.relative.ease.of.implementin |
| a0f60 | 67 20 69 74 20 69 6e 20 68 61 72 64 77 61 72 65 20 61 6e 64 20 69 6e 73 75 66 66 69 63 69 65 6e | g.it.in.hardware.and.insufficien |
| a0f80 | 74 20 43 50 55 20 70 6f 77 65 72 20 66 6f 72 20 64 6f 69 6e 67 20 65 6e 63 72 79 70 74 69 6f 6e | t.CPU.power.for.doing.encryption |
| a0fa0 | 20 69 6e 20 73 6f 66 74 77 61 72 65 2e 20 53 69 6e 63 65 20 56 79 4f 53 20 69 73 20 61 20 73 6f | .in.software..Since.VyOS.is.a.so |
| a0fc0 | 66 74 77 61 72 65 20 72 6f 75 74 65 72 2c 20 74 68 69 73 20 69 73 20 6c 65 73 73 20 6f 66 20 61 | ftware.router,.this.is.less.of.a |
| a0fe0 | 20 63 6f 6e 63 65 72 6e 2e 20 4f 70 65 6e 56 50 4e 20 68 61 73 20 62 65 65 6e 20 77 69 64 65 6c | .concern..OpenVPN.has.been.widel |
| a1000 | 79 20 75 73 65 64 20 6f 6e 20 74 68 65 20 55 4e 49 58 20 70 6c 61 74 66 6f 72 6d 20 66 6f 72 20 | y.used.on.the.UNIX.platform.for. |
| a1020 | 61 20 6c 6f 6e 67 20 74 69 6d 65 20 61 6e 64 20 69 73 20 61 20 70 6f 70 75 6c 61 72 20 6f 70 74 | a.long.time.and.is.a.popular.opt |
| a1040 | 69 6f 6e 20 66 6f 72 20 72 65 6d 6f 74 65 20 61 63 63 65 73 73 20 56 50 4e 2c 20 74 68 6f 75 67 | ion.for.remote.access.VPN,.thoug |
| a1060 | 68 20 69 74 27 73 20 61 6c 73 6f 20 63 61 70 61 62 6c 65 20 6f 66 20 73 69 74 65 2d 74 6f 2d 73 | h.it's.also.capable.of.site-to-s |
| a1080 | 69 74 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 54 72 61 66 66 69 63 20 46 69 6c 74 65 72 73 | ite.connections..Traffic.Filters |
| a10a0 | 00 54 72 61 66 66 69 63 20 46 69 6c 74 65 72 73 20 61 72 65 20 75 73 65 64 20 74 6f 20 63 6f 6e | .Traffic.Filters.are.used.to.con |
| a10c0 | 74 72 6f 6c 20 77 68 69 63 68 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 68 61 76 65 20 74 68 65 | trol.which.packets.will.have.the |
| a10e0 | 20 64 65 66 69 6e 65 64 20 4e 41 54 20 72 75 6c 65 73 20 61 70 70 6c 69 65 64 2e 20 46 69 76 65 | .defined.NAT.rules.applied..Five |
| a1100 | 20 64 69 66 66 65 72 65 6e 74 20 66 69 6c 74 65 72 73 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 | .different.filters.can.be.applie |
| a1120 | 64 20 77 69 74 68 69 6e 20 61 20 4e 41 54 20 72 75 6c 65 2e 00 54 72 61 66 66 69 63 20 4d 61 74 | d.within.a.NAT.rule..Traffic.Mat |
| a1140 | 63 68 20 47 72 6f 75 70 00 54 72 61 66 66 69 63 20 50 6f 6c 69 63 79 00 54 72 61 66 66 69 63 20 | ch.Group.Traffic.Policy.Traffic. |
| a1160 | 63 61 6e 6e 6f 74 20 66 6c 6f 77 20 62 65 74 77 65 65 6e 20 61 20 7a 6f 6e 65 20 6d 65 6d 62 65 | cannot.flow.between.a.zone.membe |
| a1180 | 72 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 61 6e 79 20 69 6e 74 65 72 66 61 63 65 20 74 68 | r.interface.and.any.interface.th |
| a11a0 | 61 74 20 69 73 20 6e 6f 74 20 61 20 7a 6f 6e 65 20 6d 65 6d 62 65 72 2e 00 54 72 61 66 66 69 63 | at.is.not.a.zone.member..Traffic |
| a11c0 | 20 63 61 6e 6e 6f 74 20 66 6c 6f 77 20 62 65 74 77 65 65 6e 20 7a 6f 6e 65 20 6d 65 6d 62 65 72 | .cannot.flow.between.zone.member |
| a11e0 | 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 61 6e 79 20 69 6e 74 65 72 66 61 63 65 20 74 68 61 | .interface.and.any.interface.tha |
| a1200 | 74 20 69 73 20 6e 6f 74 20 61 20 7a 6f 6e 65 20 6d 65 6d 62 65 72 2e 00 54 72 61 66 66 69 63 20 | t.is.not.a.zone.member..Traffic. |
| a1220 | 66 72 6f 6d 20 6d 75 6c 74 69 63 61 73 74 20 73 6f 75 72 63 65 73 20 77 69 6c 6c 20 67 6f 20 74 | from.multicast.sources.will.go.t |
| a1240 | 6f 20 74 68 65 20 52 65 6e 64 65 7a 76 6f 75 73 20 50 6f 69 6e 74 2c 20 61 6e 64 20 72 65 63 65 | o.the.Rendezvous.Point,.and.rece |
| a1260 | 69 76 65 72 73 20 77 69 6c 6c 20 70 75 6c 6c 20 69 74 20 66 72 6f 6d 20 61 20 73 68 61 72 65 64 | ivers.will.pull.it.from.a.shared |
| a1280 | 20 74 72 65 65 20 75 73 69 6e 67 20 3a 61 62 62 72 3a 60 49 47 4d 50 20 28 49 6e 74 65 72 6e 65 | .tree.using.:abbr:`IGMP.(Interne |
| a12a0 | 74 20 47 72 6f 75 70 20 4d 61 6e 61 67 65 6d 65 6e 74 20 50 72 6f 74 6f 63 6f 6c 29 60 2e 00 54 | t.Group.Management.Protocol)`..T |
| a12c0 | 72 61 66 66 69 63 20 66 72 6f 6d 20 6d 75 6c 74 69 63 61 73 74 20 73 6f 75 72 63 65 73 20 77 69 | raffic.from.multicast.sources.wi |
| a12e0 | 6c 6c 20 67 6f 20 74 6f 20 74 68 65 20 52 65 6e 64 65 7a 76 6f 75 73 20 50 6f 69 6e 74 2c 20 61 | ll.go.to.the.Rendezvous.Point,.a |
| a1300 | 6e 64 20 72 65 63 65 69 76 65 72 73 20 77 69 6c 6c 20 70 75 6c 6c 20 69 74 20 66 72 6f 6d 20 61 | nd.receivers.will.pull.it.from.a |
| a1320 | 20 73 68 61 72 65 64 20 74 72 65 65 20 75 73 69 6e 67 20 49 47 4d 50 20 28 49 6e 74 65 72 6e 65 | .shared.tree.using.IGMP.(Interne |
| a1340 | 74 20 47 72 6f 75 70 20 4d 61 6e 61 67 65 6d 65 6e 74 20 50 72 6f 74 6f 63 6f 6c 29 2e 00 54 72 | t.Group.Management.Protocol)..Tr |
| a1360 | 61 66 66 69 63 20 66 72 6f 6d 20 6d 75 6c 74 69 63 61 73 74 20 73 6f 75 72 63 65 73 20 77 69 6c | affic.from.multicast.sources.wil |
| a1380 | 6c 20 67 6f 20 74 6f 20 74 68 65 20 52 65 6e 64 65 7a 76 6f 75 73 20 50 6f 69 6e 74 2c 20 61 6e | l.go.to.the.Rendezvous.Point,.an |
| a13a0 | 64 20 72 65 63 65 69 76 65 72 73 20 77 69 6c 6c 20 70 75 6c 6c 20 69 74 20 66 72 6f 6d 20 61 20 | d.receivers.will.pull.it.from.a. |
| a13c0 | 73 68 61 72 65 64 20 74 72 65 65 20 75 73 69 6e 67 20 4d 4c 44 20 28 4d 75 6c 74 69 63 61 73 74 | shared.tree.using.MLD.(Multicast |
| a13e0 | 20 4c 69 73 74 65 6e 65 72 20 44 69 73 63 6f 76 65 72 79 29 2e 00 54 72 61 66 66 69 63 20 6d 75 | .Listener.Discovery)..Traffic.mu |
| a1400 | 73 74 20 62 65 20 73 79 6d 6d 65 74 72 69 63 00 54 72 61 66 66 69 63 20 77 68 69 63 68 20 69 73 | st.be.symmetric.Traffic.which.is |
| a1420 | 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 6f 6e 20 61 6e 20 69 6e | .received.by.the.router.on.an.in |
| a1440 | 74 65 72 66 61 63 65 20 77 68 69 63 68 20 69 73 20 6d 65 6d 62 65 72 20 6f 66 20 61 20 62 72 69 | terface.which.is.member.of.a.bri |
| a1460 | 64 67 65 20 69 73 20 70 72 6f 63 65 73 73 65 64 20 6f 6e 20 74 68 65 20 2a 2a 42 72 69 64 67 65 | dge.is.processed.on.the.**Bridge |
| a1480 | 20 4c 61 79 65 72 2a 2a 2e 20 41 20 73 69 6d 70 6c 69 66 69 65 64 20 70 61 63 6b 65 74 20 66 6c | .Layer**..A.simplified.packet.fl |
| a14a0 | 6f 77 20 64 69 61 67 72 61 6d 20 66 6f 72 20 74 68 69 73 20 6c 61 79 65 72 20 69 73 20 73 68 6f | ow.diagram.for.this.layer.is.sho |
| a14c0 | 77 6e 20 6e 65 78 74 3a 00 54 72 61 66 66 69 63 20 77 68 69 63 68 20 69 73 20 72 65 63 65 69 76 | wn.next:.Traffic.which.is.receiv |
| a14e0 | 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 | ed.by.the.router.on.an.interface |
| a1500 | 20 77 68 69 63 68 20 69 73 20 6d 65 6d 62 65 72 20 6f 66 20 61 20 62 72 69 64 67 65 20 69 73 20 | .which.is.member.of.a.bridge.is. |
| a1520 | 70 72 6f 63 65 73 73 65 64 20 6f 6e 20 74 68 65 20 2a 2a 42 72 69 64 67 65 20 4c 61 79 65 72 2a | processed.on.the.**Bridge.Layer* |
| a1540 | 2a 2e 20 42 65 66 6f 72 65 20 74 68 65 20 62 72 69 64 67 65 20 64 65 63 69 73 69 6f 6e 20 69 73 | *..Before.the.bridge.decision.is |
| a1560 | 20 6d 61 64 65 2c 20 61 6c 6c 20 70 61 63 6b 65 74 73 20 61 72 65 20 61 6e 61 6c 79 7a 65 64 20 | .made,.all.packets.are.analyzed. |
| a1580 | 61 74 20 2a 2a 50 72 65 72 6f 75 74 69 6e 67 2a 2a 2e 20 46 69 72 73 74 20 66 69 6c 74 65 72 73 | at.**Prerouting**..First.filters |
| a15a0 | 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 68 65 72 65 2c 20 61 6e 64 20 61 6c 73 6f 20 72 | .can.be.applied.here,.and.also.r |
| a15c0 | 75 6c 65 73 20 66 6f 72 20 69 67 6e 6f 72 69 6e 67 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 | ules.for.ignoring.connection.tra |
| a15e0 | 63 6b 69 6e 67 20 73 79 73 74 65 6d 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 | cking.system.can.be.configured.. |
| a1600 | 54 68 65 20 72 65 6c 65 76 61 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 | The.relevant.configuration.that. |
| a1620 | 61 63 74 73 20 69 6e 20 2a 2a 70 72 65 72 6f 75 74 69 6e 67 2a 2a 20 69 73 3a 00 54 72 61 6e 73 | acts.in.**prerouting**.is:.Trans |
| a1640 | 69 74 69 6f 6e 20 73 63 72 69 70 74 73 00 54 72 61 6e 73 69 74 69 6f 6e 20 73 63 72 69 70 74 73 | ition.scripts.Transition.scripts |
| a1660 | 20 63 61 6e 20 68 65 6c 70 20 79 6f 75 20 69 6d 70 6c 65 6d 65 6e 74 20 76 61 72 69 6f 75 73 20 | .can.help.you.implement.various. |
| a1680 | 66 69 78 75 70 73 2c 20 73 75 63 68 20 61 73 20 73 74 61 72 74 69 6e 67 20 61 6e 64 20 73 74 6f | fixups,.such.as.starting.and.sto |
| a16a0 | 70 70 69 6e 67 20 73 65 72 76 69 63 65 73 2c 20 6f 72 20 65 76 65 6e 20 6d 6f 64 69 66 79 69 6e | pping.services,.or.even.modifyin |
| a16c0 | 67 20 74 68 65 20 56 79 4f 53 20 63 6f 6e 66 69 67 20 6f 6e 20 56 52 52 50 20 74 72 61 6e 73 69 | g.the.VyOS.config.on.VRRP.transi |
| a16e0 | 74 69 6f 6e 2e 20 54 68 69 73 20 73 65 74 75 70 20 77 69 6c 6c 20 6d 61 6b 65 20 74 68 65 20 56 | tion..This.setup.will.make.the.V |
| a1700 | 52 52 50 20 70 72 6f 63 65 73 73 20 65 78 65 63 75 74 65 20 74 68 65 20 60 60 2f 63 6f 6e 66 69 | RRP.process.execute.the.``/confi |
| a1720 | 67 2f 73 63 72 69 70 74 73 2f 76 72 72 70 2d 66 61 69 6c 2e 73 68 60 60 20 77 69 74 68 20 61 72 | g/scripts/vrrp-fail.sh``.with.ar |
| a1740 | 67 75 6d 65 6e 74 20 60 60 46 6f 6f 60 60 20 77 68 65 6e 20 56 52 52 50 20 66 61 69 6c 73 2c 20 | gument.``Foo``.when.VRRP.fails,. |
| a1760 | 61 6e 64 20 74 68 65 20 60 60 2f 63 6f 6e 66 69 67 2f 73 63 72 69 70 74 73 2f 76 72 72 70 2d 6d | and.the.``/config/scripts/vrrp-m |
| a1780 | 61 73 74 65 72 2e 73 68 60 60 20 77 68 65 6e 20 74 68 65 20 72 6f 75 74 65 72 20 62 65 63 6f 6d | aster.sh``.when.the.router.becom |
| a17a0 | 65 73 20 74 68 65 20 6d 61 73 74 65 72 3a 00 54 72 61 6e 73 70 61 72 65 6e 74 20 50 72 6f 78 79 | es.the.master:.Transparent.Proxy |
| a17c0 | 00 54 72 6f 75 62 6c 65 73 68 6f 6f 74 69 6e 67 00 54 75 6e 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 | .Troubleshooting.Tuning.commands |
| a17e0 | 00 54 75 6e 6e 65 6c 00 54 75 6e 6e 65 6c 20 6b 65 79 73 00 54 75 6e 6e 65 6c 20 70 61 73 73 77 | .Tunnel.Tunnel.keys.Tunnel.passw |
| a1800 | 6f 72 64 20 75 73 65 64 20 74 6f 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 74 68 65 20 63 6c 69 | ord.used.to.authenticate.the.cli |
| a1820 | 65 6e 74 20 28 4c 41 43 29 00 54 75 72 6e 20 6f 6e 20 66 6c 6f 77 2d 62 61 73 65 64 20 74 69 6d | ent.(LAC).Turn.on.flow-based.tim |
| a1840 | 65 73 74 61 6d 70 20 65 78 74 65 6e 73 69 6f 6e 2e 00 54 77 6f 20 65 6e 76 69 72 6f 6e 6d 65 6e | estamp.extension..Two.environmen |
| a1860 | 74 20 76 61 72 69 61 62 6c 65 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 3a 00 54 77 6f 20 69 | t.variables.are.available:.Two.i |
| a1880 | 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 67 6f 69 6e 67 20 74 6f 20 62 65 20 75 73 65 64 20 69 | nterfaces.are.going.to.be.used.i |
| a18a0 | 6e 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 73 3a 20 65 74 68 30 20 61 6e 64 20 65 74 68 31 00 | n.the.flowtables:.eth0.and.eth1. |
| a18c0 | 54 77 6f 20 6e 65 77 20 66 69 6c 65 73 20 60 60 2f 63 6f 6e 66 69 67 2f 61 75 74 68 2f 69 64 5f | Two.new.files.``/config/auth/id_ |
| a18e0 | 72 73 61 5f 72 70 6b 69 60 60 20 61 6e 64 20 60 60 2f 63 6f 6e 66 69 67 2f 61 75 74 68 2f 69 64 | rsa_rpki``.and.``/config/auth/id |
| a1900 | 5f 72 73 61 5f 72 70 6b 69 2e 70 75 62 60 60 20 77 69 6c 6c 20 62 65 20 63 72 65 61 74 65 64 2e | _rsa_rpki.pub``.will.be.created. |
| a1920 | 00 54 77 6f 20 6f 70 74 69 6f 6e 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 60 | .Two.options.are.available.for.` |
| a1940 | 6d 6f 64 65 60 3a 20 65 69 74 68 65 72 20 60 6c 6f 61 64 60 20 61 6e 64 20 72 65 70 6c 61 63 65 | mode`:.either.`load`.and.replace |
| a1960 | 20 6f 72 20 60 73 65 74 60 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 65 63 74 | .or.`set`.the.configuration.sect |
| a1980 | 69 6f 6e 2e 00 54 77 6f 20 72 6f 75 74 65 72 73 20 63 6f 6e 6e 65 63 74 65 64 20 62 6f 74 68 20 | ion..Two.routers.connected.both. |
| a19a0 | 76 69 61 20 65 74 68 31 20 74 68 72 6f 75 67 68 20 61 6e 20 75 6e 74 72 75 73 74 65 64 20 73 77 | via.eth1.through.an.untrusted.sw |
| a19c0 | 69 74 63 68 00 54 79 70 65 20 6f 66 20 6d 65 74 72 69 63 73 20 67 72 6f 75 70 69 6e 67 20 77 68 | itch.Type.of.metrics.grouping.wh |
| a19e0 | 65 6e 20 70 75 73 68 20 74 6f 20 41 7a 75 72 65 20 44 61 74 61 20 45 78 70 6c 6f 72 65 72 2e 20 | en.push.to.Azure.Data.Explorer.. |
| a1a00 | 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 60 60 74 61 62 6c 65 2d 70 65 72 2d 6d 65 74 72 69 | The.default.is.``table-per-metri |
| a1a20 | 63 60 60 2e 00 54 79 70 65 2d 31 20 28 45 41 44 2d 70 65 72 2d 45 53 20 61 6e 64 20 45 41 44 2d | c``..Type-1.(EAD-per-ES.and.EAD- |
| a1a40 | 70 65 72 2d 45 56 49 29 20 72 6f 75 74 65 73 20 61 72 65 20 75 73 65 64 20 74 6f 20 61 64 76 65 | per-EVI).routes.are.used.to.adve |
| a1a60 | 72 74 69 73 65 20 74 68 65 20 6c 6f 63 61 6c 6c 79 20 61 74 74 61 63 68 65 64 20 45 53 73 20 61 | rtise.the.locally.attached.ESs.a |
| a1a80 | 6e 64 20 74 6f 20 6c 65 61 72 6e 20 6f 66 66 20 72 65 6d 6f 74 65 20 45 53 73 20 69 6e 20 74 68 | nd.to.learn.off.remote.ESs.in.th |
| a1aa0 | 65 20 6e 65 74 77 6f 72 6b 2e 20 4c 6f 63 61 6c 20 54 79 70 65 2d 32 2f 4d 41 43 2d 49 50 20 72 | e.network..Local.Type-2/MAC-IP.r |
| a1ac0 | 6f 75 74 65 73 20 61 72 65 20 61 6c 73 6f 20 61 64 76 65 72 74 69 73 65 64 20 77 69 74 68 20 61 | outes.are.also.advertised.with.a |
| a1ae0 | 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 45 53 49 20 61 6c 6c 6f 77 69 6e 67 20 66 6f 72 20 4d 41 | .destination.ESI.allowing.for.MA |
| a1b00 | 43 2d 49 50 20 73 79 6e 63 69 6e 67 20 62 65 74 77 65 65 6e 20 45 74 68 65 72 6e 65 74 20 53 65 | C-IP.syncing.between.Ethernet.Se |
| a1b20 | 67 6d 65 6e 74 20 70 65 65 72 73 2e 20 52 65 66 65 72 65 6e 63 65 3a 20 52 46 43 20 37 34 33 32 | gment.peers..Reference:.RFC.7432 |
| a1b40 | 2c 20 52 46 43 20 38 33 36 35 00 54 79 70 65 2d 34 20 28 45 53 52 29 20 72 6f 75 74 65 73 20 61 | ,.RFC.8365.Type-4.(ESR).routes.a |
| a1b60 | 72 65 20 75 73 65 64 20 66 6f 72 20 44 65 73 69 67 6e 61 74 65 64 20 46 6f 72 77 61 72 64 65 72 | re.used.for.Designated.Forwarder |
| a1b80 | 20 28 44 46 29 20 65 6c 65 63 74 69 6f 6e 2e 20 44 46 73 20 66 6f 72 77 61 72 64 20 42 55 4d 20 | .(DF).election..DFs.forward.BUM. |
| a1ba0 | 74 72 61 66 66 69 63 20 72 65 63 65 69 76 65 64 20 76 69 61 20 74 68 65 20 6f 76 65 72 6c 61 79 | traffic.received.via.the.overlay |
| a1bc0 | 20 6e 65 74 77 6f 72 6b 2e 20 54 68 69 73 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 75 73 | .network..This.implementation.us |
| a1be0 | 65 73 20 61 20 70 72 65 66 65 72 65 6e 63 65 20 62 61 73 65 64 20 44 46 20 65 6c 65 63 74 69 6f | es.a.preference.based.DF.electio |
| a1c00 | 6e 20 73 70 65 63 69 66 69 65 64 20 62 79 20 64 72 61 66 74 2d 69 65 74 66 2d 62 65 73 73 2d 65 | n.specified.by.draft-ietf-bess-e |
| a1c20 | 76 70 6e 2d 70 72 65 66 2d 64 66 2e 00 54 79 70 69 63 61 6c 6c 79 2c 20 61 20 31 2d 74 6f 2d 31 | vpn-pref-df..Typically,.a.1-to-1 |
| a1c40 | 20 4e 41 54 20 72 75 6c 65 20 6f 6d 69 74 73 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 | .NAT.rule.omits.the.destination. |
| a1c60 | 70 6f 72 74 20 28 61 6c 6c 20 70 6f 72 74 73 29 20 61 6e 64 20 72 65 70 6c 61 63 65 73 20 74 68 | port.(all.ports).and.replaces.th |
| a1c80 | 65 20 70 72 6f 74 6f 63 6f 6c 20 77 69 74 68 20 65 69 74 68 65 72 20 2a 2a 61 6c 6c 2a 2a 20 6f | e.protocol.with.either.**all**.o |
| a1ca0 | 72 20 2a 2a 69 70 2a 2a 2e 00 55 44 50 20 42 72 6f 61 64 63 61 73 74 20 52 65 6c 61 79 00 55 44 | r.**ip**..UDP.Broadcast.Relay.UD |
| a1cc0 | 50 20 6d 6f 64 65 20 77 6f 72 6b 73 20 62 65 74 74 65 72 20 77 69 74 68 20 4e 41 54 3a 00 55 44 | P.mode.works.better.with.NAT:.UD |
| a1ce0 | 50 20 70 6f 72 74 20 31 37 30 31 20 66 6f 72 20 49 50 73 65 63 00 55 44 50 20 70 6f 72 74 20 34 | P.port.1701.for.IPsec.UDP.port.4 |
| a1d00 | 35 30 30 20 28 4e 41 54 2d 54 29 00 55 44 50 20 70 6f 72 74 20 35 30 30 20 28 49 4b 45 29 00 55 | 500.(NAT-T).UDP.port.500.(IKE).U |
| a1d20 | 52 4c 20 46 69 6c 74 65 72 69 6e 67 20 69 73 20 70 72 6f 76 69 64 65 64 20 62 79 20 53 71 75 69 | RL.Filtering.is.provided.by.Squi |
| a1d40 | 64 47 75 61 72 64 5f 2e 00 55 52 4c 20 66 69 6c 74 65 72 69 6e 67 00 55 52 4c 20 77 69 74 68 20 | dGuard_..URL.filtering.URL.with. |
| a1d60 | 73 69 67 6e 61 74 75 72 65 20 6f 66 20 6d 61 73 74 65 72 20 66 6f 72 20 61 75 74 68 20 72 65 70 | signature.of.master.for.auth.rep |
| a1d80 | 6c 79 20 76 65 72 69 66 69 63 61 74 69 6f 6e 00 55 53 42 20 74 6f 20 73 65 72 69 61 6c 20 63 6f | ly.verification.USB.to.serial.co |
| a1da0 | 6e 76 65 72 74 65 72 73 20 77 69 6c 6c 20 68 61 6e 64 6c 65 20 6d 6f 73 74 20 6f 66 20 74 68 65 | nverters.will.handle.most.of.the |
| a1dc0 | 69 72 20 77 6f 72 6b 20 69 6e 20 73 6f 66 74 77 61 72 65 20 73 6f 20 79 6f 75 20 73 68 6f 75 6c | ir.work.in.software.so.you.shoul |
| a1de0 | 64 20 62 65 20 63 61 72 65 66 75 6c 6c 20 77 69 74 68 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 | d.be.carefull.with.the.selected. |
| a1e00 | 62 61 75 64 72 61 74 65 20 61 73 20 73 6f 6d 65 20 74 69 6d 65 73 20 74 68 65 79 20 63 61 6e 27 | baudrate.as.some.times.they.can' |
| a1e20 | 74 20 63 6f 70 65 20 77 69 74 68 20 74 68 65 20 65 78 70 65 63 74 65 64 20 73 70 65 65 64 2e 00 | t.cope.with.the.expected.speed.. |
| a1e40 | 55 55 43 50 20 73 75 62 73 79 73 74 65 6d 00 55 6e 64 65 72 20 73 6f 6d 65 20 63 69 72 63 75 6d | UUCP.subsystem.Under.some.circum |
| a1e60 | 73 74 61 6e 63 65 73 2c 20 4c 52 4f 20 69 73 20 6b 6e 6f 77 6e 20 74 6f 20 6d 6f 64 69 66 79 20 | stances,.LRO.is.known.to.modify. |
| a1e80 | 74 68 65 20 70 61 63 6b 65 74 20 68 65 61 64 65 72 73 20 6f 66 20 66 6f 72 77 61 72 64 65 64 20 | the.packet.headers.of.forwarded. |
| a1ea0 | 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 62 72 65 61 6b 73 20 74 68 65 20 65 6e 64 2d 74 6f | traffic,.which.breaks.the.end-to |
| a1ec0 | 2d 65 6e 64 20 70 72 69 6e 63 69 70 6c 65 20 6f 66 20 63 6f 6d 70 75 74 65 72 20 6e 65 74 77 6f | -end.principle.of.computer.netwo |
| a1ee0 | 72 6b 69 6e 67 2e 20 4c 52 4f 20 69 73 20 61 6c 73 6f 20 6f 6e 6c 79 20 61 62 6c 65 20 74 6f 20 | rking..LRO.is.also.only.able.to. |
| a1f00 | 6f 66 66 6c 6f 61 64 20 54 43 50 20 73 65 67 6d 65 6e 74 73 20 65 6e 63 61 70 73 75 6c 61 74 65 | offload.TCP.segments.encapsulate |
| a1f20 | 64 20 69 6e 20 49 50 76 34 20 70 61 63 6b 65 74 73 2e 20 44 75 65 20 74 6f 20 74 68 65 73 65 20 | d.in.IPv4.packets..Due.to.these. |
| a1f40 | 6c 69 6d 69 74 61 74 69 6f 6e 73 2c 20 69 74 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 74 | limitations,.it.is.recommended.t |
| a1f60 | 6f 20 75 73 65 20 47 52 4f 20 28 47 65 6e 65 72 69 63 20 52 65 63 65 69 76 65 20 4f 66 66 6c 6f | o.use.GRO.(Generic.Receive.Offlo |
| a1f80 | 61 64 29 20 77 68 65 72 65 20 70 6f 73 73 69 62 6c 65 2e 20 4d 6f 72 65 20 69 6e 66 6f 72 6d 61 | ad).where.possible..More.informa |
| a1fa0 | 74 69 6f 6e 20 6f 6e 20 74 68 65 20 6c 69 6d 69 74 61 74 69 6f 6e 73 20 6f 66 20 4c 52 4f 20 63 | tion.on.the.limitations.of.LRO.c |
| a1fc0 | 61 6e 20 62 65 20 66 6f 75 6e 64 20 68 65 72 65 3a 20 68 74 74 70 73 3a 2f 2f 6c 77 6e 2e 6e 65 | an.be.found.here:.https://lwn.ne |
| a1fe0 | 74 2f 41 72 74 69 63 6c 65 73 2f 33 35 38 39 31 30 2f 00 55 6e 69 63 61 73 74 00 55 6e 69 63 61 | t/Articles/358910/.Unicast.Unica |
| a2000 | 73 74 20 56 52 52 50 00 55 6e 69 63 61 73 74 20 56 58 4c 41 4e 00 55 6e 69 74 20 6f 66 20 74 68 | st.VRRP.Unicast.VXLAN.Unit.of.th |
| a2020 | 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 4d 42 2e 00 55 6e 69 74 73 00 55 6e 74 69 6c 20 56 79 | is.command.is.MB..Units.Until.Vy |
| a2040 | 4f 53 20 31 2e 34 2c 20 74 68 65 20 6f 6e 6c 79 20 6f 70 74 69 6f 6e 20 66 6f 72 20 73 69 74 65 | OS.1.4,.the.only.option.for.site |
| a2060 | 2d 74 6f 2d 73 69 74 65 20 4f 70 65 6e 56 50 4e 20 77 69 74 68 6f 75 74 20 50 4b 49 20 77 61 73 | -to-site.OpenVPN.without.PKI.was |
| a2080 | 20 74 6f 20 75 73 65 20 70 72 65 2d 73 68 61 72 65 64 20 6b 65 79 73 2e 20 54 68 61 74 20 6f 70 | .to.use.pre-shared.keys..That.op |
| a20a0 | 74 69 6f 6e 20 69 73 20 73 74 69 6c 6c 20 61 76 61 69 6c 61 62 6c 65 20 62 75 74 20 69 74 20 69 | tion.is.still.available.but.it.i |
| a20c0 | 73 20 64 65 70 72 65 63 61 74 65 64 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 72 65 6d 6f 76 65 64 | s.deprecated.and.will.be.removed |
| a20e0 | 20 69 6e 20 74 68 65 20 66 75 74 75 72 65 2e 20 48 6f 77 65 76 65 72 2c 20 69 66 20 79 6f 75 20 | .in.the.future..However,.if.you. |
| a2100 | 6e 65 65 64 20 74 6f 20 73 65 74 20 75 70 20 61 20 74 75 6e 6e 65 6c 20 74 6f 20 61 6e 20 6f 6c | need.to.set.up.a.tunnel.to.an.ol |
| a2120 | 64 65 72 20 56 79 4f 53 20 76 65 72 73 69 6f 6e 20 6f 72 20 61 20 73 79 73 74 65 6d 20 77 69 74 | der.VyOS.version.or.a.system.wit |
| a2140 | 68 20 6f 6c 64 65 72 20 4f 70 65 6e 56 50 4e 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 73 74 69 | h.older.OpenVPN,.you.need.to.sti |
| a2160 | 6c 6c 20 6e 65 65 64 20 74 6f 20 6b 6e 6f 77 20 68 6f 77 20 74 6f 20 75 73 65 20 69 74 2e 00 55 | ll.need.to.know.how.to.use.it..U |
| a2180 | 70 20 74 6f 20 73 65 76 65 6e 20 71 75 65 75 65 73 20 2d 64 65 66 69 6e 65 64 20 61 73 20 63 6c | p.to.seven.queues.-defined.as.cl |
| a21a0 | 61 73 73 65 73 5f 20 77 69 74 68 20 64 69 66 66 65 72 65 6e 74 20 70 72 69 6f 72 69 74 69 65 73 | asses_.with.different.priorities |
| a21c0 | 2d 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 50 61 63 6b 65 74 73 20 61 72 65 | -.can.be.configured..Packets.are |
| a21e0 | 20 70 6c 61 63 65 64 20 69 6e 74 6f 20 71 75 65 75 65 73 20 62 61 73 65 64 20 6f 6e 20 61 73 73 | .placed.into.queues.based.on.ass |
| a2200 | 6f 63 69 61 74 65 64 20 6d 61 74 63 68 20 63 72 69 74 65 72 69 61 2e 20 50 61 63 6b 65 74 73 20 | ociated.match.criteria..Packets. |
| a2220 | 61 72 65 20 74 72 61 6e 73 6d 69 74 74 65 64 20 66 72 6f 6d 20 74 68 65 20 71 75 65 75 65 73 20 | are.transmitted.from.the.queues. |
| a2240 | 69 6e 20 70 72 69 6f 72 69 74 79 20 6f 72 64 65 72 2e 20 49 66 20 63 6c 61 73 73 65 73 20 77 69 | in.priority.order..If.classes.wi |
| a2260 | 74 68 20 61 20 68 69 67 68 65 72 20 70 72 69 6f 72 69 74 79 20 61 72 65 20 62 65 69 6e 67 20 66 | th.a.higher.priority.are.being.f |
| a2280 | 69 6c 6c 65 64 20 77 69 74 68 20 70 61 63 6b 65 74 73 20 63 6f 6e 74 69 6e 75 6f 75 73 6c 79 2c | illed.with.packets.continuously, |
| a22a0 | 20 70 61 63 6b 65 74 73 20 66 72 6f 6d 20 6c 6f 77 65 72 20 70 72 69 6f 72 69 74 79 20 63 6c 61 | .packets.from.lower.priority.cla |
| a22c0 | 73 73 65 73 20 77 69 6c 6c 20 6f 6e 6c 79 20 62 65 20 74 72 61 6e 73 6d 69 74 74 65 64 20 61 66 | sses.will.only.be.transmitted.af |
| a22e0 | 74 65 72 20 74 72 61 66 66 69 63 20 76 6f 6c 75 6d 65 20 66 72 6f 6d 20 68 69 67 68 65 72 20 70 | ter.traffic.volume.from.higher.p |
| a2300 | 72 69 6f 72 69 74 79 20 63 6c 61 73 73 65 73 20 64 65 63 72 65 61 73 65 73 2e 00 55 70 64 61 74 | riority.classes.decreases..Updat |
| a2320 | 65 00 55 70 64 61 74 65 20 63 6f 6e 74 61 69 6e 65 72 20 69 6d 61 67 65 00 55 70 64 61 74 65 20 | e.Update.container.image.Update. |
| a2340 | 67 65 6f 69 70 20 64 61 74 61 62 61 73 65 00 55 70 64 61 74 65 73 00 55 70 64 61 74 65 73 20 66 | geoip.database.Updates.Updates.f |
| a2360 | 72 6f 6d 20 74 68 65 20 52 50 4b 49 20 63 61 63 68 65 20 73 65 72 76 65 72 73 20 61 72 65 20 64 | rom.the.RPKI.cache.servers.are.d |
| a2380 | 69 72 65 63 74 6c 79 20 61 70 70 6c 69 65 64 20 61 6e 64 20 70 61 74 68 20 73 65 6c 65 63 74 69 | irectly.applied.and.path.selecti |
| a23a0 | 6f 6e 20 69 73 20 75 70 64 61 74 65 64 20 61 63 63 6f 72 64 69 6e 67 6c 79 2e 20 28 53 6f 66 74 | on.is.updated.accordingly..(Soft |
| a23c0 | 20 72 65 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 65 6e 61 62 6c 65 64 | .reconfiguration.must.be.enabled |
| a23e0 | 20 66 6f 72 20 74 68 69 73 20 74 6f 20 77 6f 72 6b 29 2e 00 55 70 6c 69 6e 6b 2f 43 6f 72 65 20 | .for.this.to.work)..Uplink/Core. |
| a2400 | 74 72 61 63 6b 69 6e 67 2e 00 55 70 6c 6f 61 64 20 62 61 6e 64 77 69 64 74 68 20 6c 69 6d 69 74 | tracking..Upload.bandwidth.limit |
| a2420 | 20 69 6e 20 6b 62 69 74 2f 73 20 66 6f 72 20 60 3c 75 73 65 72 3e 60 2e 00 55 70 6c 6f 61 64 20 | .in.kbit/s.for.`<user>`..Upload. |
| a2440 | 62 61 6e 64 77 69 64 74 68 20 6c 69 6d 69 74 20 69 6e 20 6b 62 69 74 2f 73 20 66 6f 72 20 66 6f | bandwidth.limit.in.kbit/s.for.fo |
| a2460 | 72 20 75 73 65 72 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 60 3c 69 6e 74 65 72 66 61 63 65 3e | r.user.on.interface.`<interface> |
| a2480 | 60 2e 00 55 70 6f 6e 20 72 65 63 65 70 74 69 6f 6e 20 6f 66 20 61 6e 20 69 6e 63 6f 6d 69 6e 67 | `..Upon.reception.of.an.incoming |
| a24a0 | 20 70 61 63 6b 65 74 2c 20 77 68 65 6e 20 61 20 72 65 73 70 6f 6e 73 65 20 69 73 20 73 65 6e 74 | .packet,.when.a.response.is.sent |
| a24c0 | 2c 20 69 74 20 6d 69 67 68 74 20 62 65 20 64 65 73 69 72 65 64 20 74 6f 20 65 6e 73 75 72 65 20 | ,.it.might.be.desired.to.ensure. |
| a24e0 | 74 68 61 74 20 69 74 20 6c 65 61 76 65 73 20 66 72 6f 6d 20 74 68 65 20 73 61 6d 65 20 69 6e 74 | that.it.leaves.from.the.same.int |
| a2500 | 65 72 66 61 63 65 20 61 73 20 74 68 65 20 69 6e 62 6f 75 6e 64 20 6f 6e 65 2e 20 54 68 69 73 20 | erface.as.the.inbound.one..This. |
| a2520 | 63 61 6e 20 62 65 20 61 63 68 69 65 76 65 64 20 62 79 20 65 6e 61 62 6c 69 6e 67 20 73 74 69 63 | can.be.achieved.by.enabling.stic |
| a2540 | 6b 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 69 6e 20 74 68 65 20 6c 6f 61 64 20 62 61 6c 61 6e | ky.connections.in.the.load.balan |
| a2560 | 63 69 6e 67 3a 00 55 70 6f 6e 20 73 68 75 74 64 6f 77 6e 2c 20 74 68 69 73 20 6f 70 74 69 6f 6e | cing:.Upon.shutdown,.this.option |
| a2580 | 20 77 69 6c 6c 20 64 65 70 72 65 63 61 74 65 20 74 68 65 20 70 72 65 66 69 78 20 62 79 20 61 6e | .will.deprecate.the.prefix.by.an |
| a25a0 | 6e 6f 75 6e 63 69 6e 67 20 69 74 20 69 6e 20 74 68 65 20 73 68 75 74 64 6f 77 6e 20 52 41 00 55 | nouncing.it.in.the.shutdown.RA.U |
| a25c0 | 73 61 62 6c 65 20 50 6f 72 74 73 20 2f 20 50 6f 72 74 73 20 70 65 72 20 53 75 62 73 63 72 69 62 | sable.Ports./.Ports.per.Subscrib |
| a25e0 | 65 72 00 55 73 61 62 6c 65 20 50 6f 72 74 73 3a 20 36 35 35 33 36 20 2d 20 31 30 32 34 20 3d 20 | er.Usable.Ports:.65536.-.1024.=. |
| a2600 | 36 34 35 31 32 00 55 73 65 20 38 30 32 2e 31 31 61 78 20 70 72 6f 74 6f 63 6f 6c 00 55 73 65 20 | 64512.Use.802.11ax.protocol.Use. |
| a2620 | 38 30 32 2e 31 31 6e 20 70 72 6f 74 6f 63 6f 6c 00 55 73 65 20 3a 61 62 62 72 3a 60 44 48 20 28 | 802.11n.protocol.Use.:abbr:`DH.( |
| a2640 | 44 69 66 66 69 65 e2 80 93 48 65 6c 6c 6d 61 6e 29 60 20 70 61 72 61 6d 65 74 65 72 73 20 66 72 | Diffie...Hellman)`.parameters.fr |
| a2660 | 6f 6d 20 50 4b 49 20 73 75 62 73 79 73 74 65 6d 2e 20 4d 75 73 74 20 62 65 20 61 74 20 6c 65 61 | om.PKI.subsystem..Must.be.at.lea |
| a2680 | 73 74 20 32 30 34 38 20 62 69 74 73 20 69 6e 20 6c 65 6e 67 74 68 2e 00 55 73 65 20 43 41 20 63 | st.2048.bits.in.length..Use.CA.c |
| a26a0 | 65 72 74 69 66 69 63 61 74 65 20 66 72 6f 6d 20 50 4b 49 20 73 75 62 73 79 73 74 65 6d 00 55 73 | ertificate.from.PKI.subsystem.Us |
| a26c0 | 65 20 44 79 6e 44 4e 53 20 61 73 20 79 6f 75 72 20 70 72 65 66 65 72 72 65 64 20 70 72 6f 76 69 | e.DynDNS.as.your.preferred.provi |
| a26e0 | 64 65 72 3a 00 55 73 65 20 49 50 20 66 69 72 65 77 61 6c 6c 00 55 73 65 20 54 4c 53 20 62 75 74 | der:.Use.IP.firewall.Use.TLS.but |
| a2700 | 20 73 6b 69 70 20 68 6f 73 74 20 76 61 6c 69 64 61 74 69 6f 6e 00 55 73 65 20 54 4c 53 20 65 6e | .skip.host.validation.Use.TLS.en |
| a2720 | 63 72 79 70 74 69 6f 6e 2e 00 55 73 65 20 60 3c 73 75 62 6e 65 74 3e 60 20 61 73 20 74 68 65 20 | cryption..Use.`<subnet>`.as.the. |
| a2740 | 49 50 20 70 6f 6f 6c 20 66 6f 72 20 61 6c 6c 20 63 6f 6e 6e 65 63 74 69 6e 67 20 63 6c 69 65 6e | IP.pool.for.all.connecting.clien |
| a2760 | 74 73 2e 00 55 73 65 20 60 60 73 68 6f 77 20 6c 6f 67 20 7c 20 73 74 72 69 70 2d 70 72 69 76 61 | ts..Use.``show.log.|.strip-priva |
| a2780 | 74 65 60 60 20 69 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 68 69 64 65 20 70 72 69 76 61 74 65 | te``.if.you.want.to.hide.private |
| a27a0 | 20 64 61 74 61 20 77 68 65 6e 20 73 68 61 72 69 6e 67 20 79 6f 75 72 20 6c 6f 67 73 2e 00 55 73 | .data.when.sharing.your.logs..Us |
| a27c0 | 65 20 60 64 65 6c 65 74 65 20 73 79 73 74 65 6d 20 63 6f 6e 6e 74 72 61 63 6b 20 6d 6f 64 75 6c | e.`delete.system.conntrack.modul |
| a27e0 | 65 73 60 20 74 6f 20 64 65 61 63 74 69 76 65 20 61 6c 6c 20 6d 6f 64 75 6c 65 73 2e 00 55 73 65 | es`.to.deactive.all.modules..Use |
| a2800 | 20 61 20 70 65 72 73 69 73 74 65 6e 74 20 4c 44 41 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 4e | .a.persistent.LDAP.connection..N |
| a2820 | 6f 72 6d 61 6c 6c 79 20 74 68 65 20 4c 44 41 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 6f | ormally.the.LDAP.connection.is.o |
| a2840 | 6e 6c 79 20 6f 70 65 6e 20 77 68 69 6c 65 20 76 61 6c 69 64 61 74 69 6e 67 20 61 20 75 73 65 72 | nly.open.while.validating.a.user |
| a2860 | 6e 61 6d 65 20 74 6f 20 70 72 65 73 65 72 76 65 20 72 65 73 6f 75 72 63 65 73 20 61 74 20 74 68 | name.to.preserve.resources.at.th |
| a2880 | 65 20 4c 44 41 50 20 73 65 72 76 65 72 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 63 61 75 73 65 | e.LDAP.server..This.option.cause |
| a28a0 | 73 20 74 68 65 20 4c 44 41 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f 20 62 65 20 6b 65 70 74 | s.the.LDAP.connection.to.be.kept |
| a28c0 | 20 6f 70 65 6e 2c 20 61 6c 6c 6f 77 69 6e 67 20 69 74 20 74 6f 20 62 65 20 72 65 75 73 65 64 20 | .open,.allowing.it.to.be.reused. |
| a28e0 | 66 6f 72 20 66 75 72 74 68 65 72 20 75 73 65 72 20 76 61 6c 69 64 61 74 69 6f 6e 73 2e 00 55 73 | for.further.user.validations..Us |
| a2900 | 65 20 61 20 73 70 65 63 69 66 69 63 20 61 64 64 72 65 73 73 2d 67 72 6f 75 70 2e 20 50 72 65 70 | e.a.specific.address-group..Prep |
| a2920 | 65 6e 64 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 | end.character.``!``.for.inverted |
| a2940 | 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 | .matching.criteria..Use.a.specif |
| a2960 | 69 63 20 61 64 64 72 65 73 73 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 | ic.address-group..Prepending.the |
| a2980 | 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 | .character.``!``.to.invert.the.c |
| a29a0 | 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 | riteria.to.match.is.also.support |
| a29c0 | 65 64 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 20 64 6f 6d 61 69 6e 2d 67 72 6f 75 70 2e | ed..Use.a.specific.domain-group. |
| a29e0 | 20 50 72 65 70 65 6e 64 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 | .Prepend.character.``!``.for.inv |
| a2a00 | 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 2e 00 55 73 65 20 61 20 73 | erted.matching.criteria..Use.a.s |
| a2a20 | 70 65 63 69 66 69 63 20 64 6f 6d 61 69 6e 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 | pecific.domain-group..Prepending |
| a2a40 | 20 74 68 65 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 | .the.character.``!``.to.invert.t |
| a2a60 | 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 | he.criteria.to.match.is.also.sup |
| a2a80 | 70 6f 72 74 65 64 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 20 64 79 6e 61 6d 69 63 2d 61 | ported..Use.a.specific.dynamic-a |
| a2aa0 | 64 64 72 65 73 73 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 20 63 68 61 72 61 63 74 65 72 20 | ddress-group..Prepend.character. |
| a2ac0 | 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 | ``!``.for.inverted.matching.crit |
| a2ae0 | 65 72 69 61 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 20 64 79 6e 61 6d 69 63 2d 61 64 64 | eria..Use.a.specific.dynamic-add |
| a2b00 | 72 65 73 73 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 61 72 61 | ress-group..Prepending.the.chara |
| a2b20 | 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 65 72 69 | cter.``!``.to.invert.the.criteri |
| a2b40 | 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 55 73 | a.to.match.is.also.supported..Us |
| a2b60 | 65 20 61 20 73 70 65 63 69 66 69 63 20 6d 61 63 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 20 | e.a.specific.mac-group..Prepend. |
| a2b80 | 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 | character.``!``.for.inverted.mat |
| a2ba0 | 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 20 6d | ching.criteria..Use.a.specific.m |
| a2bc0 | 61 63 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 61 72 61 63 74 | ac-group..Prepending.the.charact |
| a2be0 | 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 65 72 69 61 20 | er.``!``.to.invert.the.criteria. |
| a2c00 | 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 55 73 65 20 | to.match.is.also.supported..Use. |
| a2c20 | 61 20 73 70 65 63 69 66 69 63 20 6e 65 74 77 6f 72 6b 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e | a.specific.network-group..Prepen |
| a2c40 | 64 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d | d.character.``!``.for.inverted.m |
| a2c60 | 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 | atching.criteria..Use.a.specific |
| a2c80 | 20 6e 65 74 77 6f 72 6b 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 | .network-group..Prepending.the.c |
| a2ca0 | 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 | haracter.``!``.to.invert.the.cri |
| a2cc0 | 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 | teria.to.match.is.also.supported |
| a2ce0 | 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 20 70 6f 72 74 2d 67 72 6f 75 70 2e 20 50 72 65 | ..Use.a.specific.port-group..Pre |
| a2d00 | 70 65 6e 64 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 | pend.character.``!``.for.inverte |
| a2d20 | 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 2e 00 55 73 65 20 61 20 73 70 65 63 69 | d.matching.criteria..Use.a.speci |
| a2d40 | 66 69 63 20 70 6f 72 74 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 | fic.port-group..Prepending.the.c |
| a2d60 | 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 | haracter.``!``.to.invert.the.cri |
| a2d80 | 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 | teria.to.match.is.also.supported |
| a2da0 | 2e 00 55 73 65 20 61 63 74 69 76 65 2d 61 63 74 69 76 65 20 48 41 20 6d 6f 64 65 2e 00 55 73 65 | ..Use.active-active.HA.mode..Use |
| a2dc0 | 20 61 64 64 72 65 73 73 20 60 6d 61 73 71 75 65 72 61 64 65 60 20 28 74 68 65 20 69 6e 74 65 72 | .address.`masquerade`.(the.inter |
| a2de0 | 66 61 63 65 73 20 70 72 69 6d 61 72 79 20 61 64 64 72 65 73 73 29 20 6f 6e 20 72 75 6c 65 20 33 | faces.primary.address).on.rule.3 |
| a2e00 | 30 00 55 73 65 20 61 6e 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 67 65 6e 65 72 61 74 65 64 | 0.Use.an.automatically.generated |
| a2e20 | 20 73 65 6c 66 2d 73 69 67 6e 65 64 20 63 65 72 74 69 66 69 63 61 74 65 00 55 73 65 20 61 6e 79 | .self-signed.certificate.Use.any |
| a2e40 | 20 6c 6f 63 61 6c 20 61 64 64 72 65 73 73 2c 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 61 6e | .local.address,.configured.on.an |
| a2e60 | 79 20 69 6e 74 65 72 66 61 63 65 20 69 66 20 74 68 69 73 20 69 73 20 6e 6f 74 20 73 65 74 2e 00 | y.interface.if.this.is.not.set.. |
| a2e80 | 55 73 65 20 61 75 74 68 20 6b 65 79 20 66 69 6c 65 20 61 74 20 60 60 2f 63 6f 6e 66 69 67 2f 61 | Use.auth.key.file.at.``/config/a |
| a2ea0 | 75 74 68 2f 6d 79 2e 6b 65 79 60 60 00 55 73 65 20 63 65 72 74 69 66 69 63 61 74 65 20 66 72 6f | uth/my.key``.Use.certificate.fro |
| a2ec0 | 6d 20 50 4b 49 20 73 75 62 73 79 73 74 65 6d 00 55 73 65 20 63 6f 6e 66 69 67 75 72 65 64 20 60 | m.PKI.subsystem.Use.configured.` |
| a2ee0 | 3c 75 72 6c 3e 60 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 79 6f 75 72 20 49 50 20 61 64 64 72 | <url>`.to.determine.your.IP.addr |
| a2f00 | 65 73 73 2e 20 64 64 63 6c 69 65 6e 74 5f 20 77 69 6c 6c 20 6c 6f 61 64 20 60 3c 75 72 6c 3e 60 | ess..ddclient_.will.load.`<url>` |
| a2f20 | 20 61 6e 64 20 74 72 69 65 73 20 74 6f 20 65 78 74 72 61 63 74 20 79 6f 75 72 20 49 50 20 61 64 | .and.tries.to.extract.your.IP.ad |
| a2f40 | 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 72 65 73 70 6f 6e 73 65 2e 00 55 73 65 20 64 65 53 | dress.from.the.response..Use.deS |
| a2f60 | 45 43 20 28 64 65 64 79 6e 2e 69 6f 29 20 61 73 20 79 6f 75 72 20 70 72 65 66 65 72 72 65 64 20 | EC.(dedyn.io).as.your.preferred. |
| a2f80 | 70 72 6f 76 69 64 65 72 3a 00 55 73 65 20 69 6e 76 65 72 73 65 2d 6d 61 74 63 68 20 74 6f 20 6d | provider:.Use.inverse-match.to.m |
| a2fa0 | 61 74 63 68 20 61 6e 79 74 68 69 6e 67 20 65 78 63 65 70 74 20 74 68 65 20 67 69 76 65 6e 20 63 | atch.anything.except.the.given.c |
| a2fc0 | 6f 75 6e 74 72 79 2d 63 6f 64 65 73 2e 00 55 73 65 20 6c 6f 63 61 6c 20 73 6f 63 6b 65 74 20 66 | ountry-codes..Use.local.socket.f |
| a2fe0 | 6f 72 20 41 50 49 00 55 73 65 20 6c 6f 63 61 6c 20 75 73 65 72 20 60 66 6f 6f 60 20 77 69 74 68 | or.API.Use.local.user.`foo`.with |
| a3000 | 20 70 61 73 73 77 6f 72 64 20 60 62 61 72 60 00 55 73 65 20 74 61 62 20 63 6f 6d 70 6c 65 74 69 | .password.`bar`.Use.tab.completi |
| a3020 | 6f 6e 20 74 6f 20 67 65 74 20 61 20 6c 69 73 74 20 6f 66 20 63 61 74 65 67 6f 72 69 65 73 2e 00 | on.to.get.a.list.of.categories.. |
| a3040 | 55 73 65 20 74 68 65 20 51 52 20 63 6f 64 65 20 74 6f 20 61 64 64 20 74 68 65 20 75 73 65 72 20 | Use.the.QR.code.to.add.the.user. |
| a3060 | 61 63 63 6f 75 6e 74 20 69 6e 20 47 6f 6f 67 6c 65 20 61 75 74 68 65 6e 74 69 63 61 74 6f 72 20 | account.in.Google.authenticator. |
| a3080 | 61 70 70 6c 69 63 61 74 69 6f 6e 20 61 6e 64 20 6f 6e 20 63 6c 69 65 6e 74 20 73 69 64 65 2c 20 | application.and.on.client.side,. |
| a30a0 | 75 73 65 20 74 68 65 20 4f 54 50 20 6e 75 6d 62 65 72 20 61 73 20 70 61 73 73 77 6f 72 64 2e 00 | use.the.OTP.number.as.password.. |
| a30c0 | 55 73 65 20 74 68 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 73 70 65 63 69 66 69 65 64 | Use.the.address.of.the.specified |
| a30e0 | 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 74 68 65 20 6c 6f 63 61 6c 20 6d 61 63 68 69 6e 65 20 | .interface.on.the.local.machine. |
| a3100 | 61 73 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 63 6f 6e | as.the.source.address.of.the.con |
| a3120 | 6e 65 63 74 69 6f 6e 2e 00 55 73 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 74 6f 70 6f 6c | nection..Use.the.following.topol |
| a3140 | 6f 67 79 20 74 6f 20 62 75 69 6c 64 20 61 20 6e 61 74 36 36 20 62 61 73 65 64 20 69 73 6f 6c 61 | ogy.to.build.a.nat66.based.isola |
| a3160 | 74 65 64 20 6e 65 74 77 6f 72 6b 20 62 65 74 77 65 65 6e 20 69 6e 74 65 72 6e 61 6c 20 61 6e 64 | ted.network.between.internal.and |
| a3180 | 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 73 20 28 64 79 6e 61 6d 69 63 20 70 72 65 66 | .external.networks.(dynamic.pref |
| a31a0 | 69 78 20 69 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 65 64 29 3a 00 55 73 65 20 74 68 65 20 66 6f | ix.is.not.supported):.Use.the.fo |
| a31c0 | 6c 6c 6f 77 69 6e 67 20 74 6f 70 6f 6c 6f 67 79 20 74 6f 20 74 72 61 6e 73 6c 61 74 65 20 69 6e | llowing.topology.to.translate.in |
| a31e0 | 74 65 72 6e 61 6c 20 75 73 65 72 20 6c 6f 63 61 6c 20 61 64 64 72 65 73 73 65 73 20 28 60 60 66 | ternal.user.local.addresses.(``f |
| a3200 | 63 3a 3a 2f 37 60 60 29 20 74 6f 20 44 48 43 50 76 36 2d 50 44 20 70 72 6f 76 69 64 65 64 20 70 | c::/7``).to.DHCPv6-PD.provided.p |
| a3220 | 72 65 66 69 78 65 73 20 66 72 6f 6d 20 61 6e 20 49 53 50 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f | refixes.from.an.ISP.connected.to |
| a3240 | 20 61 20 56 79 4f 53 20 48 41 20 70 61 69 72 2e 00 55 73 65 20 74 68 65 20 73 70 65 63 69 66 69 | .a.VyOS.HA.pair..Use.the.specifi |
| a3260 | 65 64 20 61 64 64 72 65 73 73 20 6f 6e 20 74 68 65 20 6c 6f 63 61 6c 20 6d 61 63 68 69 6e 65 20 | ed.address.on.the.local.machine. |
| a3280 | 61 73 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 63 6f 6e | as.the.source.address.of.the.con |
| a32a0 | 6e 65 63 74 69 6f 6e 2e 20 4f 6e 6c 79 20 75 73 65 66 75 6c 20 6f 6e 20 73 79 73 74 65 6d 73 20 | nection..Only.useful.on.systems. |
| a32c0 | 77 69 74 68 20 6d 6f 72 65 20 74 68 61 6e 20 6f 6e 65 20 61 64 64 72 65 73 73 2e 00 55 73 65 20 | with.more.than.one.address..Use. |
| a32e0 | 74 68 65 73 65 20 63 6f 6d 6d 61 6e 64 73 20 69 66 20 79 6f 75 20 77 6f 75 6c 64 20 6c 69 6b 65 | these.commands.if.you.would.like |
| a3300 | 20 74 6f 20 73 65 74 20 74 68 65 20 64 69 73 63 6f 76 65 72 79 20 68 65 6c 6c 6f 20 61 6e 64 20 | .to.set.the.discovery.hello.and. |
| a3320 | 68 6f 6c 64 20 74 69 6d 65 20 70 61 72 61 6d 65 74 65 72 73 20 66 6f 72 20 74 68 65 20 74 61 72 | hold.time.parameters.for.the.tar |
| a3340 | 67 65 74 65 64 20 4c 44 50 20 6e 65 69 67 68 62 6f 72 73 2e 00 55 73 65 20 74 68 65 73 65 20 63 | geted.LDP.neighbors..Use.these.c |
| a3360 | 6f 6d 6d 61 6e 64 73 20 69 66 20 79 6f 75 20 77 6f 75 6c 64 20 6c 69 6b 65 20 74 6f 20 73 65 74 | ommands.if.you.would.like.to.set |
| a3380 | 20 74 68 65 20 64 69 73 63 6f 76 65 72 79 20 68 65 6c 6c 6f 20 61 6e 64 20 68 6f 6c 64 20 74 69 | .the.discovery.hello.and.hold.ti |
| a33a0 | 6d 65 20 70 61 72 61 6d 65 74 65 72 73 2e 00 55 73 65 20 74 68 65 73 65 20 63 6f 6d 6d 61 6e 64 | me.parameters..Use.these.command |
| a33c0 | 73 20 74 6f 20 61 6c 73 6f 20 75 73 65 20 49 50 76 34 2c 20 6f 72 20 49 50 76 36 20 66 69 72 65 | s.to.also.use.IPv4,.or.IPv6.fire |
| a33e0 | 77 61 6c 6c 20 72 75 6c 65 73 20 66 6f 72 20 62 72 69 64 67 65 64 20 74 72 61 66 66 69 63 00 55 | wall.rules.for.bridged.traffic.U |
| a3400 | 73 65 20 74 68 65 73 65 20 63 6f 6d 6d 61 6e 64 73 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 74 68 65 | se.these.commands.to.control.the |
| a3420 | 20 65 78 70 6f 72 74 69 6e 67 20 6f 66 20 66 6f 72 77 61 72 64 69 6e 67 20 65 71 75 69 76 61 6c | .exporting.of.forwarding.equival |
| a3440 | 65 6e 63 65 20 63 6c 61 73 73 65 73 20 28 46 45 43 73 29 20 66 6f 72 20 4c 44 50 20 74 6f 20 6e | ence.classes.(FECs).for.LDP.to.n |
| a3460 | 65 69 67 68 62 6f 72 73 2e 20 54 68 69 73 20 77 6f 75 6c 64 20 62 65 20 75 73 65 66 75 6c 20 66 | eighbors..This.would.be.useful.f |
| a3480 | 6f 72 20 65 78 61 6d 70 6c 65 20 6f 6e 20 6f 6e 6c 79 20 61 6e 6e 6f 75 6e 63 69 6e 67 20 74 68 | or.example.on.only.announcing.th |
| a34a0 | 65 20 6c 61 62 65 6c 65 64 20 72 6f 75 74 65 73 20 74 68 61 74 20 61 72 65 20 6e 65 65 64 65 64 | e.labeled.routes.that.are.needed |
| a34c0 | 20 61 6e 64 20 6e 6f 74 20 6f 6e 65 73 20 74 68 61 74 20 61 72 65 20 6e 6f 74 20 6e 65 65 64 65 | .and.not.ones.that.are.not.neede |
| a34e0 | 64 2c 20 73 75 63 68 20 61 73 20 61 6e 6e 6f 75 6e 63 69 6e 67 20 6c 6f 6f 70 62 61 63 6b 20 69 | d,.such.as.announcing.loopback.i |
| a3500 | 6e 74 65 72 66 61 63 65 73 20 61 6e 64 20 6e 6f 20 6f 74 68 65 72 73 2e 00 55 73 65 20 74 68 65 | nterfaces.and.no.others..Use.the |
| a3520 | 73 65 20 63 6f 6d 6d 61 6e 64 73 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 74 68 65 20 69 6d 70 6f 72 | se.commands.to.control.the.impor |
| a3540 | 74 69 6e 67 20 6f 66 20 66 6f 72 77 61 72 64 69 6e 67 20 65 71 75 69 76 61 6c 65 6e 63 65 20 63 | ting.of.forwarding.equivalence.c |
| a3560 | 6c 61 73 73 65 73 20 28 46 45 43 73 29 20 66 6f 72 20 4c 44 50 20 66 72 6f 6d 20 6e 65 69 67 68 | lasses.(FECs).for.LDP.from.neigh |
| a3580 | 62 6f 72 73 2e 20 54 68 69 73 20 77 6f 75 6c 64 20 62 65 20 75 73 65 66 75 6c 20 66 6f 72 20 65 | bors..This.would.be.useful.for.e |
| a35a0 | 78 61 6d 70 6c 65 20 6f 6e 20 6f 6e 6c 79 20 61 63 63 65 70 74 69 6e 67 20 74 68 65 20 6c 61 62 | xample.on.only.accepting.the.lab |
| a35c0 | 65 6c 65 64 20 72 6f 75 74 65 73 20 74 68 61 74 20 61 72 65 20 6e 65 65 64 65 64 20 61 6e 64 20 | eled.routes.that.are.needed.and. |
| a35e0 | 6e 6f 74 20 6f 6e 65 73 20 74 68 61 74 20 61 72 65 20 6e 6f 74 20 6e 65 65 64 65 64 2c 20 73 75 | not.ones.that.are.not.needed,.su |
| a3600 | 63 68 20 61 73 20 61 63 63 65 70 74 69 6e 67 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 | ch.as.accepting.loopback.interfa |
| a3620 | 63 65 73 20 61 6e 64 20 72 65 6a 65 63 74 69 6e 67 20 61 6c 6c 20 6f 74 68 65 72 73 2e 00 55 73 | ces.and.rejecting.all.others..Us |
| a3640 | 65 20 74 68 69 73 20 50 49 4d 20 63 6f 6d 6d 61 6e 64 20 69 6e 20 74 68 65 20 73 65 6c 65 63 74 | e.this.PIM.command.in.the.select |
| a3660 | 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 73 65 74 20 74 68 65 20 70 72 69 6f 72 69 74 79 | ed.interface.to.set.the.priority |
| a3680 | 20 28 31 2d 34 32 39 34 39 36 37 32 39 35 29 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 69 6e 66 6c | .(1-4294967295).you.want.to.infl |
| a36a0 | 75 65 6e 63 65 20 69 6e 20 74 68 65 20 65 6c 65 63 74 69 6f 6e 20 6f 66 20 61 20 6e 6f 64 65 20 | uence.in.the.election.of.a.node. |
| a36c0 | 74 6f 20 62 65 63 6f 6d 65 20 74 68 65 20 44 65 73 69 67 6e 61 74 65 64 20 52 6f 75 74 65 72 20 | to.become.the.Designated.Router. |
| a36e0 | 66 6f 72 20 61 20 4c 41 4e 20 73 65 67 6d 65 6e 74 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 70 | for.a.LAN.segment..The.default.p |
| a3700 | 72 69 6f 72 69 74 79 20 69 73 20 31 2c 20 73 65 74 20 61 20 20 68 69 67 68 65 72 20 76 61 6c 75 | riority.is.1,.set.a..higher.valu |
| a3720 | 65 20 74 6f 20 67 69 76 65 20 74 68 65 20 72 6f 75 74 65 72 20 6d 6f 72 65 20 70 72 65 66 65 72 | e.to.give.the.router.more.prefer |
| a3740 | 65 6e 63 65 20 69 6e 20 74 68 65 20 44 52 20 65 6c 65 63 74 69 6f 6e 20 70 72 6f 63 65 73 73 2e | ence.in.the.DR.election.process. |
| a3760 | 00 55 73 65 20 74 68 69 73 20 50 49 4d 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6d 6f 64 69 66 79 20 | .Use.this.PIM.command.to.modify. |
| a3780 | 74 68 65 20 74 69 6d 65 20 6f 75 74 20 76 61 6c 75 65 20 28 33 31 2d 36 30 30 30 30 20 73 65 63 | the.time.out.value.(31-60000.sec |
| a37a0 | 6f 6e 64 73 29 20 66 6f 72 20 61 6e 20 60 28 53 2c 47 29 20 3c 68 74 74 70 73 3a 2f 2f 74 6f 6f | onds).for.an.`(S,G).<https://too |
| a37c0 | 6c 73 2e 69 65 74 66 2e 6f 72 67 2f 68 74 6d 6c 2f 72 66 63 37 37 36 31 23 73 65 63 74 69 6f 6e | ls.ietf.org/html/rfc7761#section |
| a37e0 | 2d 34 2e 31 3e 60 5f 20 66 6c 6f 77 2e 20 33 31 20 73 65 63 6f 6e 64 73 20 69 73 20 63 68 6f 73 | -4.1>`_.flow..31.seconds.is.chos |
| a3800 | 65 6e 20 66 6f 72 20 61 20 6c 6f 77 65 72 20 62 6f 75 6e 64 20 61 73 20 73 6f 6d 65 20 68 61 72 | en.for.a.lower.bound.as.some.har |
| a3820 | 64 77 61 72 65 20 70 6c 61 74 66 6f 72 6d 73 20 63 61 6e 6e 6f 74 20 73 65 65 20 64 61 74 61 20 | dware.platforms.cannot.see.data. |
| a3840 | 66 6c 6f 77 69 6e 67 20 69 6e 20 62 65 74 74 65 72 20 74 68 61 6e 20 33 30 20 73 65 63 6f 6e 64 | flowing.in.better.than.30.second |
| a3860 | 73 20 63 68 75 6e 6b 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 61 6e 64 20 74 6f 20 73 65 74 | s.chunks..Use.this.comand.to.set |
| a3880 | 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 66 72 6f 6d 20 77 68 69 63 | .the.IPv6.address.pool.from.whic |
| a38a0 | 68 20 61 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 20 77 69 6c 6c 20 67 65 74 20 61 6e 20 49 50 76 | h.a.PPPoE.client.will.get.an.IPv |
| a38c0 | 36 20 70 72 65 66 69 78 20 6f 66 20 79 6f 75 72 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 | 6.prefix.of.your.defined.length. |
| a38e0 | 28 6d 61 73 6b 29 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 68 65 20 50 50 50 6f 45 20 65 6e | (mask).to.terminate.the.PPPoE.en |
| a3900 | 64 70 6f 69 6e 74 20 61 74 20 74 68 65 69 72 20 73 69 64 65 2e 20 54 68 65 20 6d 61 73 6b 20 6c | dpoint.at.their.side..The.mask.l |
| a3920 | 65 6e 67 74 68 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 34 38 20 74 6f 20 31 32 38 20 | ength.can.be.set.from.48.to.128. |
| a3940 | 62 69 74 20 6c 6f 6e 67 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 | bit.long,.the.default.value.is.6 |
| a3960 | 34 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 | 4..Use.this.comand.to.set.the.IP |
| a3980 | 76 36 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 66 72 6f 6d 20 77 68 69 63 68 20 61 6e 20 49 50 | v6.address.pool.from.which.an.IP |
| a39a0 | 6f 45 20 63 6c 69 65 6e 74 20 77 69 6c 6c 20 67 65 74 20 61 6e 20 49 50 76 36 20 70 72 65 66 69 | oE.client.will.get.an.IPv6.prefi |
| a39c0 | 78 20 6f 66 20 79 6f 75 72 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 6d 61 73 6b 29 20 | x.of.your.defined.length.(mask). |
| a39e0 | 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 68 65 20 49 50 6f 45 20 65 6e 64 70 6f 69 6e 74 20 61 | to.terminate.the.IPoE.endpoint.a |
| a3a00 | 74 20 74 68 65 69 72 20 73 69 64 65 2e 20 54 68 65 20 6d 61 73 6b 20 6c 65 6e 67 74 68 20 63 61 | t.their.side..The.mask.length.ca |
| a3a20 | 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 34 38 20 74 6f 20 31 32 38 20 62 69 74 20 6c 6f 6e 67 | n.be.set.from.48.to.128.bit.long |
| a3a40 | 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 34 2e 00 55 73 65 20 74 | ,.the.default.value.is.64..Use.t |
| a3a60 | 68 69 73 20 63 6f 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 | his.comand.to.set.the.IPv6.addre |
| a3a80 | 73 73 20 70 6f 6f 6c 20 66 72 6f 6d 20 77 68 69 63 68 20 61 6e 20 50 50 50 6f 45 20 63 6c 69 65 | ss.pool.from.which.an.PPPoE.clie |
| a3aa0 | 6e 74 20 77 69 6c 6c 20 67 65 74 20 61 6e 20 49 50 76 36 20 70 72 65 66 69 78 20 6f 66 20 79 6f | nt.will.get.an.IPv6.prefix.of.yo |
| a3ac0 | 75 72 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 6d 61 73 6b 29 20 74 6f 20 74 65 72 6d | ur.defined.length.(mask).to.term |
| a3ae0 | 69 6e 61 74 65 20 74 68 65 20 50 50 50 6f 45 20 65 6e 64 70 6f 69 6e 74 20 61 74 20 74 68 65 69 | inate.the.PPPoE.endpoint.at.thei |
| a3b00 | 72 20 73 69 64 65 2e 20 54 68 65 20 6d 61 73 6b 20 6c 65 6e 67 74 68 20 63 61 6e 20 62 65 20 73 | r.side..The.mask.length.can.be.s |
| a3b20 | 65 74 20 66 72 6f 6d 20 34 38 20 74 6f 20 31 32 38 20 62 69 74 20 6c 6f 6e 67 2c 20 74 68 65 20 | et.from.48.to.128.bit.long,.the. |
| a3b40 | 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 34 2e 00 55 73 65 20 74 68 69 73 20 63 6f | default.value.is.64..Use.this.co |
| a3b60 | 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 6f 6f | mand.to.set.the.IPv6.address.poo |
| a3b80 | 6c 20 66 72 6f 6d 20 77 68 69 63 68 20 61 6e 20 50 50 54 50 20 63 6c 69 65 6e 74 20 77 69 6c 6c | l.from.which.an.PPTP.client.will |
| a3ba0 | 20 67 65 74 20 61 6e 20 49 50 76 36 20 70 72 65 66 69 78 20 6f 66 20 79 6f 75 72 20 64 65 66 69 | .get.an.IPv6.prefix.of.your.defi |
| a3bc0 | 6e 65 64 20 6c 65 6e 67 74 68 20 28 6d 61 73 6b 29 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 | ned.length.(mask).to.terminate.t |
| a3be0 | 68 65 20 50 50 54 50 20 65 6e 64 70 6f 69 6e 74 20 61 74 20 74 68 65 69 72 20 73 69 64 65 2e 20 | he.PPTP.endpoint.at.their.side.. |
| a3c00 | 54 68 65 20 6d 61 73 6b 20 6c 65 6e 67 74 68 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 | The.mask.length.can.be.set.from. |
| a3c20 | 34 38 20 74 6f 20 31 32 38 20 62 69 74 20 6c 6f 6e 67 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 | 48.to.128.bit.long,.the.default. |
| a3c40 | 76 61 6c 75 65 20 69 73 20 36 34 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 61 6e 64 20 74 6f 20 | value.is.64..Use.this.comand.to. |
| a3c60 | 73 65 74 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 66 72 6f 6d 20 77 | set.the.IPv6.address.pool.from.w |
| a3c80 | 68 69 63 68 20 61 6e 20 53 53 54 50 20 63 6c 69 65 6e 74 20 77 69 6c 6c 20 67 65 74 20 61 6e 20 | hich.an.SSTP.client.will.get.an. |
| a3ca0 | 49 50 76 36 20 70 72 65 66 69 78 20 6f 66 20 79 6f 75 72 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 | IPv6.prefix.of.your.defined.leng |
| a3cc0 | 74 68 20 28 6d 61 73 6b 29 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 68 65 20 53 53 54 50 20 | th.(mask).to.terminate.the.SSTP. |
| a3ce0 | 65 6e 64 70 6f 69 6e 74 20 61 74 20 74 68 65 69 72 20 73 69 64 65 2e 20 54 68 65 20 6d 61 73 6b | endpoint.at.their.side..The.mask |
| a3d00 | 20 6c 65 6e 67 74 68 20 63 61 6e 20 62 65 20 73 65 74 20 62 65 74 77 65 65 6e 20 34 38 20 61 6e | .length.can.be.set.between.48.an |
| a3d20 | 64 20 31 32 38 20 62 69 74 73 20 6c 6f 6e 67 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c | d.128.bits.long,.the.default.val |
| a3d40 | 75 65 20 69 73 20 36 34 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 61 6e 64 20 74 6f 20 73 65 74 | ue.is.64..Use.this.comand.to.set |
| a3d60 | 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 66 72 6f 6d 20 77 68 69 63 | .the.IPv6.address.pool.from.whic |
| a3d80 | 68 20 61 6e 20 53 53 54 50 20 63 6c 69 65 6e 74 20 77 69 6c 6c 20 67 65 74 20 61 6e 20 49 50 76 | h.an.SSTP.client.will.get.an.IPv |
| a3da0 | 36 20 70 72 65 66 69 78 20 6f 66 20 79 6f 75 72 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 | 6.prefix.of.your.defined.length. |
| a3dc0 | 28 6d 61 73 6b 29 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 68 65 20 53 53 54 50 20 65 6e 64 | (mask).to.terminate.the.SSTP.end |
| a3de0 | 70 6f 69 6e 74 20 61 74 20 74 68 65 69 72 20 73 69 64 65 2e 20 54 68 65 20 6d 61 73 6b 20 6c 65 | point.at.their.side..The.mask.le |
| a3e00 | 6e 67 74 68 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 34 38 20 74 6f 20 31 32 38 20 62 | ngth.can.be.set.from.48.to.128.b |
| a3e20 | 69 74 20 6c 6f 6e 67 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 34 | it.long,.the.default.value.is.64 |
| a3e40 | 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 76 | ..Use.this.comand.to.set.the.IPv |
| a3e60 | 36 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 66 72 6f 6d 20 77 68 69 63 68 20 61 6e 20 6c 32 74 | 6.address.pool.from.which.an.l2t |
| a3e80 | 70 20 63 6c 69 65 6e 74 20 77 69 6c 6c 20 67 65 74 20 61 6e 20 49 50 76 36 20 70 72 65 66 69 78 | p.client.will.get.an.IPv6.prefix |
| a3ea0 | 20 6f 66 20 79 6f 75 72 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 6d 61 73 6b 29 20 74 | .of.your.defined.length.(mask).t |
| a3ec0 | 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 68 65 20 6c 32 74 70 20 65 6e 64 70 6f 69 6e 74 20 61 74 | o.terminate.the.l2tp.endpoint.at |
| a3ee0 | 20 74 68 65 69 72 20 73 69 64 65 2e 20 54 68 65 20 6d 61 73 6b 20 6c 65 6e 67 74 68 20 63 61 6e | .their.side..The.mask.length.can |
| a3f00 | 20 62 65 20 73 65 74 20 62 65 74 77 65 65 6e 20 34 38 20 61 6e 64 20 31 32 38 20 62 69 74 73 20 | .be.set.between.48.and.128.bits. |
| a3f20 | 6c 6f 6e 67 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 34 2e 00 55 | long,.the.default.value.is.64..U |
| a3f40 | 73 65 20 74 68 69 73 20 63 6f 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 76 36 20 61 | se.this.comand.to.set.the.IPv6.a |
| a3f60 | 64 64 72 65 73 73 20 70 6f 6f 6c 20 66 72 6f 6d 20 77 68 69 63 68 20 61 6e 20 6c 32 74 70 20 63 | ddress.pool.from.which.an.l2tp.c |
| a3f80 | 6c 69 65 6e 74 20 77 69 6c 6c 20 67 65 74 20 61 6e 20 49 50 76 36 20 70 72 65 66 69 78 20 6f 66 | lient.will.get.an.IPv6.prefix.of |
| a3fa0 | 20 79 6f 75 72 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 6d 61 73 6b 29 20 74 6f 20 74 | .your.defined.length.(mask).to.t |
| a3fc0 | 65 72 6d 69 6e 61 74 65 20 74 68 65 20 6c 32 74 70 20 65 6e 64 70 6f 69 6e 74 20 61 74 20 74 68 | erminate.the.l2tp.endpoint.at.th |
| a3fe0 | 65 69 72 20 73 69 64 65 2e 20 54 68 65 20 6d 61 73 6b 20 6c 65 6e 67 74 68 20 63 61 6e 20 62 65 | eir.side..The.mask.length.can.be |
| a4000 | 20 73 65 74 20 66 72 6f 6d 20 34 38 20 74 6f 20 31 32 38 20 62 69 74 20 6c 6f 6e 67 2c 20 74 68 | .set.from.48.to.128.bit.long,.th |
| a4020 | 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 34 2e 00 55 73 65 20 74 68 69 73 20 | e.default.value.is.64..Use.this. |
| a4040 | 63 6f 6d 6d 61 6e 64 20 66 6f 72 20 65 76 65 72 79 20 70 6f 6f 6c 20 6f 66 20 63 6c 69 65 6e 74 | command.for.every.pool.of.client |
| a4060 | 20 49 50 20 61 64 64 72 65 73 73 65 73 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 64 65 66 69 6e 65 | .IP.addresses.you.want.to.define |
| a4080 | 2e 20 54 68 65 20 61 64 64 72 65 73 73 65 73 20 6f 66 20 74 68 69 73 20 70 6f 6f 6c 20 77 69 6c | ..The.addresses.of.this.pool.wil |
| a40a0 | 6c 20 62 65 20 67 69 76 65 6e 20 74 6f 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 73 2e 20 59 6f 75 | l.be.given.to.PPPoE.clients..You |
| a40c0 | 20 6d 75 73 74 20 75 73 65 20 43 49 44 52 20 6e 6f 74 61 74 69 6f 6e 20 61 6e 64 20 69 74 20 6d | .must.use.CIDR.notation.and.it.m |
| a40e0 | 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f 32 34 20 73 75 62 6e 65 74 2e 00 55 73 65 20 | ust.be.within.a./24.subnet..Use. |
| a4100 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 66 6f 72 20 65 76 65 72 79 20 70 6f 6f 6c 20 6f 66 20 63 | this.command.for.every.pool.of.c |
| a4120 | 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 65 73 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 64 | lient.IP.addresses.you.want.to.d |
| a4140 | 65 66 69 6e 65 2e 20 54 68 65 20 61 64 64 72 65 73 73 65 73 20 6f 66 20 74 68 69 73 20 70 6f 6f | efine..The.addresses.of.this.poo |
| a4160 | 6c 20 77 69 6c 6c 20 62 65 20 67 69 76 65 6e 20 74 6f 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 73 | l.will.be.given.to.PPPoE.clients |
| a4180 | 2e 20 59 6f 75 20 6d 75 73 74 20 75 73 65 20 43 49 44 52 20 6e 6f 74 61 74 69 6f 6e 2e 00 55 73 | ..You.must.use.CIDR.notation..Us |
| a41a0 | 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 66 20 79 6f 75 20 77 6f 75 6c 64 20 6c 69 6b 65 | e.this.command.if.you.would.like |
| a41c0 | 20 66 6f 72 20 74 68 65 20 72 6f 75 74 65 72 20 74 6f 20 61 64 76 65 72 74 69 73 65 20 46 45 43 | .for.the.router.to.advertise.FEC |
| a41e0 | 73 20 77 69 74 68 20 61 20 6c 61 62 65 6c 20 6f 66 20 30 20 66 6f 72 20 65 78 70 6c 69 63 69 74 | s.with.a.label.of.0.for.explicit |
| a4200 | 20 6e 75 6c 6c 20 6f 70 65 72 61 74 69 6f 6e 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 | .null.operations..Use.this.comma |
| a4220 | 6e 64 20 69 66 20 79 6f 75 20 77 6f 75 6c 64 20 6c 69 6b 65 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 | nd.if.you.would.like.to.control. |
| a4240 | 74 68 65 20 6c 6f 63 61 6c 20 46 45 43 20 61 6c 6c 6f 63 61 74 69 6f 6e 73 20 66 6f 72 20 4c 44 | the.local.FEC.allocations.for.LD |
| a4260 | 50 2e 20 41 20 67 6f 6f 64 20 65 78 61 6d 70 6c 65 20 77 6f 75 6c 64 20 62 65 20 66 6f 72 20 79 | P..A.good.example.would.be.for.y |
| a4280 | 6f 75 72 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 74 6f 20 6e 6f 74 20 61 6c 6c 6f 63 61 74 65 | our.local.router.to.not.allocate |
| a42a0 | 20 61 20 6c 61 62 65 6c 20 66 6f 72 20 65 76 65 72 79 74 68 69 6e 67 2e 20 4a 75 73 74 20 61 20 | .a.label.for.everything..Just.a. |
| a42c0 | 6c 61 62 65 6c 20 66 6f 72 20 77 68 61 74 20 69 74 27 73 20 75 73 65 66 75 6c 2e 20 41 20 67 6f | label.for.what.it's.useful..A.go |
| a42e0 | 6f 64 20 65 78 61 6d 70 6c 65 20 77 6f 75 6c 64 20 62 65 20 6a 75 73 74 20 61 20 6c 6f 6f 70 62 | od.example.would.be.just.a.loopb |
| a4300 | 61 63 6b 20 6c 61 62 65 6c 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 66 20 79 | ack.label..Use.this.command.if.y |
| a4320 | 6f 75 20 77 6f 75 6c 64 20 6c 69 6b 65 20 74 6f 20 73 65 74 20 74 68 65 20 54 43 50 20 73 65 73 | ou.would.like.to.set.the.TCP.ses |
| a4340 | 73 69 6f 6e 20 68 6f 6c 64 20 74 69 6d 65 20 69 6e 74 65 72 76 61 6c 73 2e 00 55 73 65 20 74 68 | sion.hold.time.intervals..Use.th |
| a4360 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 61 6c 6c 6f 77 20 74 68 65 20 73 65 6c 65 63 74 65 64 | is.command.to.allow.the.selected |
| a4380 | 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 6a 6f 69 6e 20 61 20 6d 75 6c 74 69 63 61 73 74 20 67 | .interface.to.join.a.multicast.g |
| a43a0 | 72 6f 75 70 20 64 65 66 69 6e 69 6e 67 20 74 68 65 20 6d 75 6c 74 69 63 61 73 74 20 61 64 64 72 | roup.defining.the.multicast.addr |
| a43c0 | 65 73 73 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 6a 6f 69 6e 20 61 6e 64 20 74 68 65 20 73 6f 75 | ess.you.want.to.join.and.the.sou |
| a43e0 | 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 6f 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d | rce.IP.address.too..Use.this.com |
| a4400 | 6d 61 6e 64 20 74 6f 20 61 6c 6c 6f 77 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 | mand.to.allow.the.selected.inter |
| a4420 | 66 61 63 65 20 74 6f 20 6a 6f 69 6e 20 61 20 6d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 70 2e 00 | face.to.join.a.multicast.group.. |
| a4440 | 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 61 6c 6c 6f 77 20 74 68 65 20 73 65 | Use.this.command.to.allow.the.se |
| a4460 | 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 6a 6f 69 6e 20 61 20 73 6f 75 72 63 | lected.interface.to.join.a.sourc |
| a4480 | 65 2d 73 70 65 63 69 66 69 63 20 6d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 70 2e 00 55 73 65 20 | e-specific.multicast.group..Use. |
| a44a0 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 68 65 63 6b 20 6c 6f 67 20 6d 65 73 73 61 67 | this.command.to.check.log.messag |
| a44c0 | 65 73 20 73 70 65 63 69 66 69 63 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e 00 55 73 65 | es.specific.to.an.interface..Use |
| a44e0 | 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 68 65 63 6b 20 6c 6f 67 20 6d 65 73 73 61 | .this.command.to.check.log.messa |
| a4500 | 67 65 73 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 20 65 6e 74 72 69 65 73 20 66 6f 72 20 73 75 | ges.which.include.entries.for.su |
| a4520 | 63 63 65 73 73 66 75 6c 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 61 73 20 77 65 6c 6c 20 61 73 20 | ccessful.connections.as.well.as. |
| a4540 | 66 61 69 6c 75 72 65 73 20 61 6e 64 20 65 72 72 6f 72 73 20 72 65 6c 61 74 65 64 20 74 6f 20 61 | failures.and.errors.related.to.a |
| a4560 | 6c 6c 20 4f 70 65 6e 56 50 4e 20 69 6e 74 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 68 69 73 20 | ll.OpenVPN.interfaces..Use.this. |
| a4580 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 68 65 63 6b 20 74 68 65 20 74 75 6e 6e 65 6c 20 73 74 61 74 | command.to.check.the.tunnel.stat |
| a45a0 | 75 73 20 66 6f 72 20 4f 70 65 6e 56 50 4e 20 63 6c 69 65 6e 74 20 69 6e 74 65 72 66 61 63 65 73 | us.for.OpenVPN.client.interfaces |
| a45c0 | 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 68 65 63 6b 20 74 68 65 20 | ..Use.this.command.to.check.the. |
| a45e0 | 74 75 6e 6e 65 6c 20 73 74 61 74 75 73 20 66 6f 72 20 4f 70 65 6e 56 50 4e 20 73 65 72 76 65 72 | tunnel.status.for.OpenVPN.server |
| a4600 | 20 69 6e 74 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | .interfaces..Use.this.command.to |
| a4620 | 20 63 68 65 63 6b 20 74 68 65 20 74 75 6e 6e 65 6c 20 73 74 61 74 75 73 20 66 6f 72 20 4f 70 65 | .check.the.tunnel.status.for.Ope |
| a4640 | 6e 56 50 4e 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 69 6e 74 65 72 66 61 63 65 73 2e 00 55 73 | nVPN.site-to-site.interfaces..Us |
| a4660 | 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6c 65 61 72 20 42 6f 72 64 65 72 20 47 | e.this.command.to.clear.Border.G |
| a4680 | 61 74 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c 20 73 74 61 74 69 73 74 69 63 73 20 6f 72 20 73 74 | ateway.Protocol.statistics.or.st |
| a46a0 | 61 74 75 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 | atus..Use.this.command.to.config |
| a46c0 | 75 72 65 20 44 48 43 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 20 28 52 46 | ure.DHCPv6.Prefix.Delegation.(RF |
| a46e0 | 43 33 36 33 33 29 20 6f 6e 20 49 50 6f 45 2e 20 59 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f | C3633).on.IPoE..You.will.have.to |
| a4700 | 20 73 65 74 20 79 6f 75 72 20 49 50 76 36 20 70 6f 6f 6c 20 61 6e 64 20 74 68 65 20 6c 65 6e 67 | .set.your.IPv6.pool.and.the.leng |
| a4720 | 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 2e 20 46 72 6f | th.of.the.delegation.prefix..Fro |
| a4740 | 6d 20 74 68 65 20 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 79 6f 75 20 77 69 6c 6c | m.the.defined.IPv6.pool.you.will |
| a4760 | 20 62 65 20 68 61 6e 64 69 6e 67 20 6f 75 74 20 6e 65 74 77 6f 72 6b 73 20 6f 66 20 74 68 65 20 | .be.handing.out.networks.of.the. |
| a4780 | 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 64 65 6c 65 67 61 74 69 6f 6e 2d 70 72 65 66 69 | defined.length.(delegation-prefi |
| a47a0 | 78 29 2e 20 54 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e | x)..The.length.of.the.delegation |
| a47c0 | 20 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 33 32 20 74 6f 20 36 34 | .prefix.can.be.set.from.32.to.64 |
| a47e0 | 20 62 69 74 20 6c 6f 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 | .bit.long..Use.this.command.to.c |
| a4800 | 6f 6e 66 69 67 75 72 65 20 44 48 43 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f | onfigure.DHCPv6.Prefix.Delegatio |
| a4820 | 6e 20 28 52 46 43 33 36 33 33 29 20 6f 6e 20 50 50 50 6f 45 2e 20 59 6f 75 20 77 69 6c 6c 20 68 | n.(RFC3633).on.PPPoE..You.will.h |
| a4840 | 61 76 65 20 74 6f 20 73 65 74 20 79 6f 75 72 20 49 50 76 36 20 70 6f 6f 6c 20 61 6e 64 20 74 68 | ave.to.set.your.IPv6.pool.and.th |
| a4860 | 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 | e.length.of.the.delegation.prefi |
| a4880 | 78 2e 20 46 72 6f 6d 20 74 68 65 20 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 79 6f | x..From.the.defined.IPv6.pool.yo |
| a48a0 | 75 20 77 69 6c 6c 20 62 65 20 68 61 6e 64 69 6e 67 20 6f 75 74 20 6e 65 74 77 6f 72 6b 73 20 6f | u.will.be.handing.out.networks.o |
| a48c0 | 66 20 74 68 65 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 64 65 6c 65 67 61 74 69 6f 6e | f.the.defined.length.(delegation |
| a48e0 | 2d 70 72 65 66 69 78 29 2e 20 54 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 | -prefix)..The.length.of.the.dele |
| a4900 | 67 61 74 69 6f 6e 20 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 33 32 | gation.prefix.can.be.set.from.32 |
| a4920 | 20 74 6f 20 36 34 20 62 69 74 20 6c 6f 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | .to.64.bit.long..Use.this.comman |
| a4940 | 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 44 48 43 50 76 36 20 50 72 65 66 69 78 20 44 65 6c | d.to.configure.DHCPv6.Prefix.Del |
| a4960 | 65 67 61 74 69 6f 6e 20 28 52 46 43 33 36 33 33 29 20 6f 6e 20 50 50 54 50 2e 20 59 6f 75 20 77 | egation.(RFC3633).on.PPTP..You.w |
| a4980 | 69 6c 6c 20 68 61 76 65 20 74 6f 20 73 65 74 20 79 6f 75 72 20 49 50 76 36 20 70 6f 6f 6c 20 61 | ill.have.to.set.your.IPv6.pool.a |
| a49a0 | 6e 64 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 | nd.the.length.of.the.delegation. |
| a49c0 | 70 72 65 66 69 78 2e 20 46 72 6f 6d 20 74 68 65 20 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f | prefix..From.the.defined.IPv6.po |
| a49e0 | 6f 6c 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 68 61 6e 64 69 6e 67 20 6f 75 74 20 6e 65 74 77 6f | ol.you.will.be.handing.out.netwo |
| a4a00 | 72 6b 73 20 6f 66 20 74 68 65 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 64 65 6c 65 67 | rks.of.the.defined.length.(deleg |
| a4a20 | 61 74 69 6f 6e 2d 70 72 65 66 69 78 29 2e 20 54 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 | ation-prefix)..The.length.of.the |
| a4a40 | 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 | .delegation.prefix.can.be.set.fr |
| a4a60 | 6f 6d 20 33 32 20 74 6f 20 36 34 20 62 69 74 20 6c 6f 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 | om.32.to.64.bit.long..Use.this.c |
| a4a80 | 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 44 48 43 50 76 36 20 50 72 65 66 69 | ommand.to.configure.DHCPv6.Prefi |
| a4aa0 | 78 20 44 65 6c 65 67 61 74 69 6f 6e 20 28 52 46 43 33 36 33 33 29 20 6f 6e 20 53 53 54 50 2e 20 | x.Delegation.(RFC3633).on.SSTP.. |
| a4ac0 | 59 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 73 65 74 20 79 6f 75 72 20 49 50 76 36 20 70 | You.will.have.to.set.your.IPv6.p |
| a4ae0 | 6f 6f 6c 20 61 6e 64 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 | ool.and.the.length.of.the.delega |
| a4b00 | 74 69 6f 6e 20 70 72 65 66 69 78 2e 20 46 72 6f 6d 20 74 68 65 20 64 65 66 69 6e 65 64 20 49 50 | tion.prefix..From.the.defined.IP |
| a4b20 | 76 36 20 70 6f 6f 6c 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 68 61 6e 64 69 6e 67 20 6f 75 74 20 | v6.pool.you.will.be.handing.out. |
| a4b40 | 6e 65 74 77 6f 72 6b 73 20 6f 66 20 74 68 65 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 | networks.of.the.defined.length.( |
| a4b60 | 64 65 6c 65 67 61 74 69 6f 6e 2d 70 72 65 66 69 78 29 2e 20 54 68 65 20 6c 65 6e 67 74 68 20 6f | delegation-prefix)..The.length.o |
| a4b80 | 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 73 | f.the.delegation.prefix.can.be.s |
| a4ba0 | 65 74 20 62 65 74 77 65 65 6e 20 33 32 20 61 6e 64 20 36 34 20 62 69 74 73 20 6c 6f 6e 67 2e 00 | et.between.32.and.64.bits.long.. |
| a4bc0 | 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 44 48 | Use.this.command.to.configure.DH |
| a4be0 | 43 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 20 28 52 46 43 33 36 33 33 29 | CPv6.Prefix.Delegation.(RFC3633) |
| a4c00 | 20 6f 6e 20 53 53 54 50 2e 20 59 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 73 65 74 20 79 | .on.SSTP..You.will.have.to.set.y |
| a4c20 | 6f 75 72 20 49 50 76 36 20 70 6f 6f 6c 20 61 6e 64 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 | our.IPv6.pool.and.the.length.of. |
| a4c40 | 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 2e 20 46 72 6f 6d 20 74 68 65 20 | the.delegation.prefix..From.the. |
| a4c60 | 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 68 61 | defined.IPv6.pool.you.will.be.ha |
| a4c80 | 6e 64 69 6e 67 20 6f 75 74 20 6e 65 74 77 6f 72 6b 73 20 6f 66 20 74 68 65 20 64 65 66 69 6e 65 | nding.out.networks.of.the.define |
| a4ca0 | 64 20 6c 65 6e 67 74 68 20 28 64 65 6c 65 67 61 74 69 6f 6e 2d 70 72 65 66 69 78 29 2e 20 54 68 | d.length.(delegation-prefix)..Th |
| a4cc0 | 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 | e.length.of.the.delegation.prefi |
| a4ce0 | 78 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 33 32 20 74 6f 20 36 34 20 62 69 74 20 6c | x.can.be.set.from.32.to.64.bit.l |
| a4d00 | 6f 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 | ong..Use.this.command.to.configu |
| a4d20 | 72 65 20 44 48 43 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 20 28 52 46 43 | re.DHCPv6.Prefix.Delegation.(RFC |
| a4d40 | 33 36 33 33 29 20 6f 6e 20 6c 32 74 70 2e 20 59 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 | 3633).on.l2tp..You.will.have.to. |
| a4d60 | 73 65 74 20 79 6f 75 72 20 49 50 76 36 20 70 6f 6f 6c 20 61 6e 64 20 74 68 65 20 6c 65 6e 67 74 | set.your.IPv6.pool.and.the.lengt |
| a4d80 | 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 2e 20 46 72 6f 6d | h.of.the.delegation.prefix..From |
| a4da0 | 20 74 68 65 20 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 79 6f 75 20 77 69 6c 6c 20 | .the.defined.IPv6.pool.you.will. |
| a4dc0 | 62 65 20 68 61 6e 64 69 6e 67 20 6f 75 74 20 6e 65 74 77 6f 72 6b 73 20 6f 66 20 74 68 65 20 64 | be.handing.out.networks.of.the.d |
| a4de0 | 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 64 65 6c 65 67 61 74 69 6f 6e 2d 70 72 65 66 69 78 | efined.length.(delegation-prefix |
| a4e00 | 29 2e 20 54 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 | )..The.length.of.the.delegation. |
| a4e20 | 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 62 65 74 77 65 65 6e 20 33 32 20 61 6e 64 20 36 34 20 | prefix.can.be.between.32.and.64. |
| a4e40 | 62 69 74 73 20 6c 6f 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 | bits.long..Use.this.command.to.c |
| a4e60 | 6f 6e 66 69 67 75 72 65 20 44 48 43 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f | onfigure.DHCPv6.Prefix.Delegatio |
| a4e80 | 6e 20 28 52 46 43 33 36 33 33 29 20 6f 6e 20 6c 32 74 70 2e 20 59 6f 75 20 77 69 6c 6c 20 68 61 | n.(RFC3633).on.l2tp..You.will.ha |
| a4ea0 | 76 65 20 74 6f 20 73 65 74 20 79 6f 75 72 20 49 50 76 36 20 70 6f 6f 6c 20 61 6e 64 20 74 68 65 | ve.to.set.your.IPv6.pool.and.the |
| a4ec0 | 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 | .length.of.the.delegation.prefix |
| a4ee0 | 2e 20 46 72 6f 6d 20 74 68 65 20 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 79 6f 75 | ..From.the.defined.IPv6.pool.you |
| a4f00 | 20 77 69 6c 6c 20 62 65 20 68 61 6e 64 69 6e 67 20 6f 75 74 20 6e 65 74 77 6f 72 6b 73 20 6f 66 | .will.be.handing.out.networks.of |
| a4f20 | 20 74 68 65 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 64 65 6c 65 67 61 74 69 6f 6e 2d | .the.defined.length.(delegation- |
| a4f40 | 70 72 65 66 69 78 29 2e 20 54 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 | prefix)..The.length.of.the.deleg |
| a4f60 | 61 74 69 6f 6e 20 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 33 32 20 | ation.prefix.can.be.set.from.32. |
| a4f80 | 74 6f 20 36 34 20 62 69 74 20 6c 6f 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 | to.64.bit.long..Use.this.command |
| a4fa0 | 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 44 48 43 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 | .to.configure.DHCPv6.Prefix.Dele |
| a4fc0 | 67 61 74 69 6f 6e 20 28 52 46 43 33 36 33 33 29 2e 20 59 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 | gation.(RFC3633)..You.will.have. |
| a4fe0 | 74 6f 20 73 65 74 20 79 6f 75 72 20 49 50 76 36 20 70 6f 6f 6c 20 61 6e 64 20 74 68 65 20 6c 65 | to.set.your.IPv6.pool.and.the.le |
| a5000 | 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 2e 20 46 | ngth.of.the.delegation.prefix..F |
| a5020 | 72 6f 6d 20 74 68 65 20 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 79 6f 75 20 77 69 | rom.the.defined.IPv6.pool.you.wi |
| a5040 | 6c 6c 20 62 65 20 68 61 6e 64 69 6e 67 20 6f 75 74 20 6e 65 74 77 6f 72 6b 73 20 6f 66 20 74 68 | ll.be.handing.out.networks.of.th |
| a5060 | 65 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 64 65 6c 65 67 61 74 69 6f 6e 2d 70 72 65 | e.defined.length.(delegation-pre |
| a5080 | 66 69 78 29 2e 20 54 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 | fix)..The.length.of.the.delegati |
| a50a0 | 6f 6e 20 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 33 32 20 74 6f 20 | on.prefix.can.be.set.from.32.to. |
| a50c0 | 36 34 20 62 69 74 20 6c 6f 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | 64.bit.long..Use.this.command.to |
| a50e0 | 20 63 6f 6e 66 69 67 75 72 65 20 44 79 6e 61 6d 69 63 20 41 75 74 68 6f 72 69 7a 61 74 69 6f 6e | .configure.Dynamic.Authorization |
| a5100 | 20 45 78 74 65 6e 73 69 6f 6e 73 20 74 6f 20 52 41 44 49 55 53 20 73 6f 20 74 68 61 74 20 79 6f | .Extensions.to.RADIUS.so.that.yo |
| a5120 | 75 20 63 61 6e 20 72 65 6d 6f 74 65 6c 79 20 64 69 73 63 6f 6e 6e 65 63 74 20 73 65 73 73 69 6f | u.can.remotely.disconnect.sessio |
| a5140 | 6e 73 20 61 6e 64 20 63 68 61 6e 67 65 20 73 6f 6d 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f | ns.and.change.some.authenticatio |
| a5160 | 6e 20 70 61 72 61 6d 65 74 65 72 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 | n.parameters..Use.this.command.t |
| a5180 | 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 22 62 6c 61 63 6b 2d 68 6f 6c 65 22 20 72 6f 75 74 65 | o.configure.a."black-hole".route |
| a51a0 | 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 72 2e 20 41 20 62 6c 61 63 6b 2d 68 6f 6c 65 20 72 6f 75 | .on.the.router..A.black-hole.rou |
| a51c0 | 74 65 20 69 73 20 61 20 72 6f 75 74 65 20 66 6f 72 20 77 68 69 63 68 20 74 68 65 20 73 79 73 74 | te.is.a.route.for.which.the.syst |
| a51e0 | 65 6d 20 73 69 6c 65 6e 74 6c 79 20 64 69 73 63 61 72 64 20 70 61 63 6b 65 74 73 20 74 68 61 74 | em.silently.discard.packets.that |
| a5200 | 20 61 72 65 20 6d 61 74 63 68 65 64 2e 20 54 68 69 73 20 70 72 65 76 65 6e 74 73 20 6e 65 74 77 | .are.matched..This.prevents.netw |
| a5220 | 6f 72 6b 73 20 6c 65 61 6b 69 6e 67 20 6f 75 74 20 70 75 62 6c 69 63 20 69 6e 74 65 72 66 61 63 | orks.leaking.out.public.interfac |
| a5240 | 65 73 2c 20 62 75 74 20 69 74 20 64 6f 65 73 20 6e 6f 74 20 70 72 65 76 65 6e 74 20 74 68 65 6d | es,.but.it.does.not.prevent.them |
| a5260 | 20 66 72 6f 6d 20 62 65 69 6e 67 20 75 73 65 64 20 61 73 20 61 20 6d 6f 72 65 20 73 70 65 63 69 | .from.being.used.as.a.more.speci |
| a5280 | 66 69 63 20 72 6f 75 74 65 20 69 6e 73 69 64 65 20 79 6f 75 72 20 6e 65 74 77 6f 72 6b 2e 00 55 | fic.route.inside.your.network..U |
| a52a0 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 4e | se.this.command.to.configure.a.N |
| a52c0 | 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 20 70 6f 6c 69 63 79 20 64 65 66 69 6e 69 6e 67 20 | etwork.Emulator.policy.defining. |
| a52e0 | 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 66 69 78 65 64 20 61 6d 6f 75 6e 74 20 6f 66 | its.name.and.the.fixed.amount.of |
| a5300 | 20 74 69 6d 65 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 61 64 64 20 74 6f 20 61 6c 6c 20 70 61 63 | .time.you.want.to.add.to.all.pac |
| a5320 | 6b 65 74 20 67 6f 69 6e 67 20 6f 75 74 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 | ket.going.out.of.the.interface.. |
| a5340 | 54 68 65 20 6c 61 74 65 6e 63 79 20 77 69 6c 6c 20 62 65 20 61 64 64 65 64 20 74 68 72 6f 75 67 | The.latency.will.be.added.throug |
| a5360 | 68 20 74 68 65 20 54 6f 6b 65 6e 20 42 75 63 6b 65 74 20 46 69 6c 74 65 72 20 71 64 69 73 63 2e | h.the.Token.Bucket.Filter.qdisc. |
| a5380 | 20 49 74 20 77 69 6c 6c 20 6f 6e 6c 79 20 74 61 6b 65 20 65 66 66 65 63 74 20 69 66 20 79 6f 75 | .It.will.only.take.effect.if.you |
| a53a0 | 20 68 61 76 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 74 73 20 62 61 6e 64 77 69 64 74 68 20 74 | .have.configured.its.bandwidth.t |
| a53c0 | 6f 6f 2e 20 59 6f 75 20 63 61 6e 20 75 73 65 20 73 65 63 73 2c 20 6d 73 20 61 6e 64 20 75 73 2e | oo..You.can.use.secs,.ms.and.us. |
| a53e0 | 20 44 65 66 61 75 6c 74 3a 20 35 30 6d 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 | .Default:.50ms..Use.this.command |
| a5400 | 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 20 70 | .to.configure.a.Priority.Queue.p |
| a5420 | 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 73 65 74 20 61 20 63 6c 61 73 73 | olicy,.set.its.name,.set.a.class |
| a5440 | 20 77 69 74 68 20 61 20 70 72 69 6f 72 69 74 79 20 66 72 6f 6d 20 31 20 74 6f 20 37 20 61 6e 64 | .with.a.priority.from.1.to.7.and |
| a5460 | 20 64 65 66 69 6e 65 20 61 20 68 61 72 64 20 6c 69 6d 69 74 20 6f 6e 20 74 68 65 20 72 65 61 6c | .define.a.hard.limit.on.the.real |
| a5480 | 20 71 75 65 75 65 20 73 69 7a 65 2e 20 57 68 65 6e 20 74 68 69 73 20 6c 69 6d 69 74 20 69 73 20 | .queue.size..When.this.limit.is. |
| a54a0 | 72 65 61 63 68 65 64 2c 20 6e 65 77 20 70 61 63 6b 65 74 73 20 61 72 65 20 64 72 6f 70 70 65 64 | reached,.new.packets.are.dropped |
| a54c0 | 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 | ..Use.this.command.to.configure. |
| a54e0 | 61 20 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 20 70 6f 6c 69 63 79 20 61 6e 64 20 73 65 74 20 69 | a.Random-Detect.policy.and.set.i |
| a5500 | 74 73 20 6e 61 6d 65 2c 20 74 68 65 6e 20 6e 61 6d 65 20 74 68 65 20 49 50 20 50 72 65 63 65 64 | ts.name,.then.name.the.IP.Preced |
| a5520 | 65 6e 63 65 20 66 6f 72 20 74 68 65 20 76 69 72 74 75 61 6c 20 71 75 65 75 65 20 79 6f 75 20 61 | ence.for.the.virtual.queue.you.a |
| a5540 | 72 65 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 6e 64 20 77 68 61 74 20 74 68 65 20 6d 61 78 69 | re.configuring.and.what.the.maxi |
| a5560 | 6d 75 6d 20 73 69 7a 65 20 6f 66 20 69 74 73 20 71 75 65 75 65 20 77 69 6c 6c 20 62 65 20 28 66 | mum.size.of.its.queue.will.be.(f |
| a5580 | 72 6f 6d 20 31 20 74 6f 20 31 2d 34 32 39 34 39 36 37 32 39 35 20 70 61 63 6b 65 74 73 29 2e 20 | rom.1.to.1-4294967295.packets).. |
| a55a0 | 50 61 63 6b 65 74 73 20 61 72 65 20 64 72 6f 70 70 65 64 20 77 68 65 6e 20 74 68 65 20 63 75 72 | Packets.are.dropped.when.the.cur |
| a55c0 | 72 65 6e 74 20 71 75 65 75 65 20 6c 65 6e 67 74 68 20 72 65 61 63 68 65 73 20 74 68 69 73 20 76 | rent.queue.length.reaches.this.v |
| a55e0 | 61 6c 75 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 | alue..Use.this.command.to.config |
| a5600 | 75 72 65 20 61 20 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 20 70 6f 6c 69 63 79 20 61 6e 64 20 73 | ure.a.Random-Detect.policy.and.s |
| a5620 | 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 74 68 65 6e 20 73 74 61 74 65 20 74 68 65 20 49 50 20 50 | et.its.name,.then.state.the.IP.P |
| a5640 | 72 65 63 65 64 65 6e 63 65 20 66 6f 72 20 74 68 65 20 76 69 72 74 75 61 6c 20 71 75 65 75 65 20 | recedence.for.the.virtual.queue. |
| a5660 | 79 6f 75 20 61 72 65 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 6e 64 20 77 68 61 74 20 69 74 73 | you.are.configuring.and.what.its |
| a5680 | 20 6d 61 72 6b 20 28 64 72 6f 70 29 20 70 72 6f 62 61 62 69 6c 69 74 79 20 77 69 6c 6c 20 62 65 | .mark.(drop).probability.will.be |
| a56a0 | 2e 20 53 65 74 20 74 68 65 20 70 72 6f 62 61 62 69 6c 69 74 79 20 62 79 20 67 69 76 69 6e 67 20 | ..Set.the.probability.by.giving. |
| a56c0 | 74 68 65 20 4e 20 76 61 6c 75 65 20 6f 66 20 74 68 65 20 66 72 61 63 74 69 6f 6e 20 31 2f 4e 20 | the.N.value.of.the.fraction.1/N. |
| a56e0 | 28 64 65 66 61 75 6c 74 3a 20 31 30 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | (default:.10)..Use.this.command. |
| a5700 | 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 20 70 6f 6c | to.configure.a.Random-Detect.pol |
| a5720 | 69 63 79 20 61 6e 64 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 74 68 65 6e 20 73 74 61 74 65 | icy.and.set.its.name,.then.state |
| a5740 | 20 74 68 65 20 49 50 20 50 72 65 63 65 64 65 6e 63 65 20 66 6f 72 20 74 68 65 20 76 69 72 74 75 | .the.IP.Precedence.for.the.virtu |
| a5760 | 61 6c 20 71 75 65 75 65 20 79 6f 75 20 61 72 65 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 6e 64 | al.queue.you.are.configuring.and |
| a5780 | 20 77 68 61 74 20 69 74 73 20 6d 61 78 69 6d 75 6d 20 74 68 72 65 73 68 6f 6c 64 20 66 6f 72 20 | .what.its.maximum.threshold.for. |
| a57a0 | 72 61 6e 64 6f 6d 20 64 65 74 65 63 74 69 6f 6e 20 77 69 6c 6c 20 62 65 20 28 66 72 6f 6d 20 30 | random.detection.will.be.(from.0 |
| a57c0 | 20 74 6f 20 34 30 39 36 20 70 61 63 6b 65 74 73 2c 20 64 65 66 61 75 6c 74 3a 20 31 38 29 2e 20 | .to.4096.packets,.default:.18).. |
| a57e0 | 41 74 20 74 68 69 73 20 73 69 7a 65 2c 20 74 68 65 20 6d 61 72 6b 69 6e 67 20 28 64 72 6f 70 29 | At.this.size,.the.marking.(drop) |
| a5800 | 20 70 72 6f 62 61 62 69 6c 69 74 79 20 69 73 20 6d 61 78 69 6d 61 6c 2e 00 55 73 65 20 74 68 69 | .probability.is.maximal..Use.thi |
| a5820 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 61 6e 64 6f 6d 2d | s.command.to.configure.a.Random- |
| a5840 | 44 65 74 65 63 74 20 70 6f 6c 69 63 79 20 61 6e 64 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 | Detect.policy.and.set.its.name,. |
| a5860 | 74 68 65 6e 20 73 74 61 74 65 20 74 68 65 20 49 50 20 50 72 65 63 65 64 65 6e 63 65 20 66 6f 72 | then.state.the.IP.Precedence.for |
| a5880 | 20 74 68 65 20 76 69 72 74 75 61 6c 20 71 75 65 75 65 20 79 6f 75 20 61 72 65 20 63 6f 6e 66 69 | .the.virtual.queue.you.are.confi |
| a58a0 | 67 75 72 69 6e 67 20 61 6e 64 20 77 68 61 74 20 69 74 73 20 6d 69 6e 69 6d 75 6d 20 74 68 72 65 | guring.and.what.its.minimum.thre |
| a58c0 | 73 68 6f 6c 64 20 66 6f 72 20 72 61 6e 64 6f 6d 20 64 65 74 65 63 74 69 6f 6e 20 77 69 6c 6c 20 | shold.for.random.detection.will. |
| a58e0 | 62 65 20 28 66 72 6f 6d 20 30 20 74 6f 20 34 30 39 36 20 70 61 63 6b 65 74 73 29 2e 20 20 49 66 | be.(from.0.to.4096.packets)...If |
| a5900 | 20 74 68 69 73 20 76 61 6c 75 65 20 69 73 20 65 78 63 65 65 64 65 64 2c 20 70 61 63 6b 65 74 73 | .this.value.is.exceeded,.packets |
| a5920 | 20 73 74 61 72 74 20 62 65 69 6e 67 20 65 6c 69 67 69 62 6c 65 20 66 6f 72 20 62 65 69 6e 67 20 | .start.being.eligible.for.being. |
| a5940 | 64 72 6f 70 70 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e | dropped..Use.this.command.to.con |
| a5960 | 66 69 67 75 72 65 20 61 20 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 20 70 6f 6c 69 63 79 20 61 6e | figure.a.Random-Detect.policy.an |
| a5980 | 64 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 74 68 65 6e 20 73 74 61 74 65 20 74 68 65 20 49 | d.set.its.name,.then.state.the.I |
| a59a0 | 50 20 50 72 65 63 65 64 65 6e 63 65 20 66 6f 72 20 74 68 65 20 76 69 72 74 75 61 6c 20 71 75 65 | P.Precedence.for.the.virtual.que |
| a59c0 | 75 65 20 79 6f 75 20 61 72 65 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 6e 64 20 77 68 61 74 20 | ue.you.are.configuring.and.what. |
| a59e0 | 74 68 65 20 73 69 7a 65 20 6f 66 20 69 74 73 20 61 76 65 72 61 67 65 2d 70 61 63 6b 65 74 20 73 | the.size.of.its.average-packet.s |
| a5a00 | 68 6f 75 6c 64 20 62 65 20 28 69 6e 20 62 79 74 65 73 2c 20 64 65 66 61 75 6c 74 3a 20 31 30 32 | hould.be.(in.bytes,.default:.102 |
| a5a20 | 34 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 | 4)..Use.this.command.to.configur |
| a5a40 | 65 20 61 20 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 | e.a.Random-Detect.policy,.set.it |
| a5a60 | 73 20 6e 61 6d 65 20 61 6e 64 20 73 65 74 20 74 68 65 20 61 76 61 69 6c 61 62 6c 65 20 62 61 6e | s.name.and.set.the.available.ban |
| a5a80 | 64 77 69 64 74 68 20 66 6f 72 20 74 68 69 73 20 70 6f 6c 69 63 79 2e 20 49 74 20 69 73 20 75 73 | dwidth.for.this.policy..It.is.us |
| a5aa0 | 65 64 20 66 6f 72 20 63 61 6c 63 75 6c 61 74 69 6e 67 20 74 68 65 20 61 76 65 72 61 67 65 20 71 | ed.for.calculating.the.average.q |
| a5ac0 | 75 65 75 65 20 73 69 7a 65 20 61 66 74 65 72 20 73 6f 6d 65 20 69 64 6c 65 20 74 69 6d 65 2e 20 | ueue.size.after.some.idle.time.. |
| a5ae0 | 49 74 20 73 68 6f 75 6c 64 20 62 65 20 73 65 74 20 74 6f 20 74 68 65 20 62 61 6e 64 77 69 64 74 | It.should.be.set.to.the.bandwidt |
| a5b00 | 68 20 6f 66 20 79 6f 75 72 20 69 6e 74 65 72 66 61 63 65 2e 20 52 61 6e 64 6f 6d 20 44 65 74 65 | h.of.your.interface..Random.Dete |
| a5b20 | 63 74 20 69 73 20 6e 6f 74 20 61 20 73 68 61 70 69 6e 67 20 70 6f 6c 69 63 79 2c 20 74 68 69 73 | ct.is.not.a.shaping.policy,.this |
| a5b40 | 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 6e 6f 74 20 73 68 61 70 65 2e 00 55 73 65 20 74 68 69 | .command.will.not.shape..Use.thi |
| a5b60 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 61 74 65 2d 43 6f | s.command.to.configure.a.Rate-Co |
| a5b80 | 6e 74 72 6f 6c 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 | ntrol.policy,.set.its.name.and.t |
| a5ba0 | 68 65 20 6d 61 78 69 6d 75 6d 20 61 6d 6f 75 6e 74 20 6f 66 20 74 69 6d 65 20 61 20 70 61 63 6b | he.maximum.amount.of.time.a.pack |
| a5bc0 | 65 74 20 63 61 6e 20 62 65 20 71 75 65 75 65 64 20 28 64 65 66 61 75 6c 74 3a 20 35 30 20 6d 73 | et.can.be.queued.(default:.50.ms |
| a5be0 | 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 | )..Use.this.command.to.configure |
| a5c00 | 20 61 20 52 61 74 65 2d 43 6f 6e 74 72 6f 6c 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 | .a.Rate-Control.policy,.set.its. |
| a5c20 | 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 72 61 74 65 20 6c 69 6d 69 74 20 79 6f 75 20 77 61 6e 74 | name.and.the.rate.limit.you.want |
| a5c40 | 20 74 6f 20 68 61 76 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f | .to.have..Use.this.command.to.co |
| a5c60 | 6e 66 69 67 75 72 65 20 61 20 52 61 74 65 2d 43 6f 6e 74 72 6f 6c 20 70 6f 6c 69 63 79 2c 20 73 | nfigure.a.Rate-Control.policy,.s |
| a5c80 | 65 74 20 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 73 69 7a 65 20 6f 66 20 74 68 65 20 | et.its.name.and.the.size.of.the. |
| a5ca0 | 62 75 63 6b 65 74 20 69 6e 20 62 79 74 65 73 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 61 76 | bucket.in.bytes.which.will.be.av |
| a5cc0 | 61 69 6c 61 62 6c 65 20 66 6f 72 20 62 75 72 73 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d | ailable.for.burst..Use.this.comm |
| a5ce0 | 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 6f 75 6e 64 2d 52 6f 62 69 6e 20 70 | and.to.configure.a.Round-Robin.p |
| a5d00 | 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 73 65 74 20 61 20 63 6c 61 73 73 | olicy,.set.its.name,.set.a.class |
| a5d20 | 20 49 44 2c 20 61 6e 64 20 74 68 65 20 71 75 61 6e 74 75 6d 20 66 6f 72 20 74 68 61 74 20 63 6c | .ID,.and.the.quantum.for.that.cl |
| a5d40 | 61 73 73 2e 20 54 68 65 20 64 65 66 69 63 69 74 20 63 6f 75 6e 74 65 72 20 77 69 6c 6c 20 61 64 | ass..The.deficit.counter.will.ad |
| a5d60 | 64 20 74 68 61 74 20 76 61 6c 75 65 20 65 61 63 68 20 72 6f 75 6e 64 2e 00 55 73 65 20 74 68 69 | d.that.value.each.round..Use.thi |
| a5d80 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 6f 75 6e 64 2d 52 | s.command.to.configure.a.Round-R |
| a5da0 | 6f 62 69 6e 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 73 65 74 20 61 | obin.policy,.set.its.name,.set.a |
| a5dc0 | 20 63 6c 61 73 73 20 49 44 2c 20 61 6e 64 20 74 68 65 20 71 75 65 75 65 20 73 69 7a 65 20 69 6e | .class.ID,.and.the.queue.size.in |
| a5de0 | 20 70 61 63 6b 65 74 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f | .packets..Use.this.command.to.co |
| a5e00 | 6e 66 69 67 75 72 65 20 61 20 53 68 61 70 65 72 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 | nfigure.a.Shaper.policy,.set.its |
| a5e20 | 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 62 61 6e 64 77 69 64 74 68 20 | .name.and.the.maximum.bandwidth. |
| a5e40 | 66 6f 72 20 61 6c 6c 20 63 6f 6d 62 69 6e 65 64 20 74 72 61 66 66 69 63 2e 00 55 73 65 20 74 68 | for.all.combined.traffic..Use.th |
| a5e60 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 53 68 61 70 65 72 | is.command.to.configure.a.Shaper |
| a5e80 | 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 64 65 66 69 6e 65 20 61 20 | .policy,.set.its.name,.define.a. |
| a5ea0 | 63 6c 61 73 73 20 61 6e 64 20 73 65 74 20 74 68 65 20 67 75 61 72 61 6e 74 65 65 64 20 74 72 61 | class.and.set.the.guaranteed.tra |
| a5ec0 | 66 66 69 63 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 61 6c 6c 6f 63 61 74 65 20 74 6f 20 74 68 61 | ffic.you.want.to.allocate.to.tha |
| a5ee0 | 74 20 63 6c 61 73 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e | t.class..Use.this.command.to.con |
| a5f00 | 66 69 67 75 72 65 20 61 20 53 68 61 70 65 72 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 | figure.a.Shaper.policy,.set.its. |
| a5f20 | 6e 61 6d 65 2c 20 64 65 66 69 6e 65 20 61 20 63 6c 61 73 73 20 61 6e 64 20 73 65 74 20 74 68 65 | name,.define.a.class.and.set.the |
| a5f40 | 20 6d 61 78 69 6d 75 6d 20 73 70 65 65 64 20 70 6f 73 73 69 62 6c 65 20 66 6f 72 20 74 68 69 73 | .maximum.speed.possible.for.this |
| a5f60 | 20 63 6c 61 73 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 63 65 69 6c 69 6e 67 20 76 61 6c 75 | .class..The.default.ceiling.valu |
| a5f80 | 65 20 69 73 20 74 68 65 20 62 61 6e 64 77 69 64 74 68 20 76 61 6c 75 65 2e 00 55 73 65 20 74 68 | e.is.the.bandwidth.value..Use.th |
| a5fa0 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 53 68 61 70 65 72 | is.command.to.configure.a.Shaper |
| a5fc0 | 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 64 65 66 69 6e 65 20 61 20 | .policy,.set.its.name,.define.a. |
| a5fe0 | 63 6c 61 73 73 20 61 6e 64 20 73 65 74 20 74 68 65 20 70 72 69 6f 72 69 74 79 20 66 6f 72 20 75 | class.and.set.the.priority.for.u |
| a6000 | 73 61 67 65 20 6f 66 20 61 76 61 69 6c 61 62 6c 65 20 62 61 6e 64 77 69 64 74 68 20 6f 6e 63 65 | sage.of.available.bandwidth.once |
| a6020 | 20 67 75 61 72 61 6e 74 65 65 73 20 68 61 76 65 20 62 65 65 6e 20 6d 65 74 2e 20 54 68 65 20 6c | .guarantees.have.been.met..The.l |
| a6040 | 6f 77 65 72 20 74 68 65 20 70 72 69 6f 72 69 74 79 20 6e 75 6d 62 65 72 2c 20 74 68 65 20 68 69 | ower.the.priority.number,.the.hi |
| a6060 | 67 68 65 72 20 74 68 65 20 70 72 69 6f 72 69 74 79 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 70 | gher.the.priority..The.default.p |
| a6080 | 72 69 6f 72 69 74 79 20 76 61 6c 75 65 20 69 73 20 30 2c 20 74 68 65 20 68 69 67 68 65 73 74 20 | riority.value.is.0,.the.highest. |
| a60a0 | 70 72 69 6f 72 69 74 79 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f | priority..Use.this.command.to.co |
| a60c0 | 6e 66 69 67 75 72 65 20 61 20 53 68 61 70 65 72 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 | nfigure.a.Shaper.policy,.set.its |
| a60e0 | 20 6e 61 6d 65 2c 20 64 65 66 69 6e 65 20 61 20 63 6c 61 73 73 20 61 6e 64 20 73 65 74 20 74 68 | .name,.define.a.class.and.set.th |
| a6100 | 65 20 73 69 7a 65 20 6f 66 20 74 68 65 20 60 74 6f 63 6b 65 6e 20 62 75 63 6b 65 74 60 5f 20 69 | e.size.of.the.`tocken.bucket`_.i |
| a6120 | 6e 20 62 79 74 65 73 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 61 76 61 69 6c 61 62 6c 65 | n.bytes,.which.will.be.available |
| a6140 | 20 74 6f 20 62 65 20 73 65 6e 74 20 61 74 20 63 65 69 6c 69 6e 67 20 73 70 65 65 64 20 28 64 65 | .to.be.sent.at.ceiling.speed.(de |
| a6160 | 66 61 75 6c 74 3a 20 31 35 4b 62 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 | fault:.15Kb)..Use.this.command.t |
| a6180 | 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 64 61 74 61 2d 72 61 74 65 20 6c 69 6d 69 74 20 74 6f | o.configure.a.data-rate.limit.to |
| a61a0 | 20 50 50 50 4f 6f 45 20 63 6c 69 65 6e 74 73 20 66 6f 72 20 74 72 61 66 66 69 63 20 64 6f 77 6e | .PPPOoE.clients.for.traffic.down |
| a61c0 | 6c 6f 61 64 20 6f 72 20 75 70 6c 6f 61 64 2e 20 54 68 65 20 72 61 74 65 2d 6c 69 6d 69 74 20 69 | load.or.upload..The.rate-limit.i |
| a61e0 | 73 20 73 65 74 20 69 6e 20 6b 62 69 74 2f 73 65 63 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d | s.set.in.kbit/sec..Use.this.comm |
| a6200 | 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 64 72 6f 70 2d 74 61 69 6c 20 70 6f 6c | and.to.configure.a.drop-tail.pol |
| a6220 | 69 63 79 20 28 50 46 49 46 4f 29 2e 20 43 68 6f 6f 73 65 20 61 20 75 6e 69 71 75 65 20 6e 61 6d | icy.(PFIFO)..Choose.a.unique.nam |
| a6240 | 65 20 66 6f 72 20 74 68 69 73 20 70 6f 6c 69 63 79 20 61 6e 64 20 74 68 65 20 73 69 7a 65 20 6f | e.for.this.policy.and.the.size.o |
| a6260 | 66 20 74 68 65 20 71 75 65 75 65 20 62 79 20 73 65 74 74 69 6e 67 20 74 68 65 20 6e 75 6d 62 65 | f.the.queue.by.setting.the.numbe |
| a6280 | 72 20 6f 66 20 70 61 63 6b 65 74 73 20 69 74 20 63 61 6e 20 63 6f 6e 74 61 69 6e 20 28 6d 61 78 | r.of.packets.it.can.contain.(max |
| a62a0 | 69 6d 75 6d 20 34 32 39 34 39 36 37 32 39 35 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 | imum.4294967295)..Use.this.comma |
| a62c0 | 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 73 70 65 63 69 66 69 63 20 73 65 73 73 69 | nd.to.configure.a.specific.sessi |
| a62e0 | 6f 6e 20 68 6f 6c 64 20 74 69 6d 65 20 66 6f 72 20 4c 44 50 20 70 65 65 72 73 2e 20 53 65 74 20 | on.hold.time.for.LDP.peers..Set. |
| a6300 | 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 4c 44 50 20 70 65 65 72 20 61 | the.IP.address.of.the.LDP.peer.a |
| a6320 | 6e 64 20 61 20 73 65 73 73 69 6f 6e 20 68 6f 6c 64 20 74 69 6d 65 20 74 68 61 74 20 73 68 6f 75 | nd.a.session.hold.time.that.shou |
| a6340 | 6c 64 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 66 6f 72 20 69 74 2e 20 59 6f 75 20 6d 61 79 | ld.be.configured.for.it..You.may |
| a6360 | 20 68 61 76 65 20 74 6f 20 72 65 73 65 74 20 74 68 65 20 6e 65 69 67 68 62 6f 72 20 66 6f 72 20 | .have.to.reset.the.neighbor.for. |
| a6380 | 74 68 69 73 20 74 6f 20 77 6f 72 6b 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 | this.to.work..Use.this.command.t |
| a63a0 | 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 49 6e 67 72 65 73 73 20 50 6f 6c 69 63 65 72 2c 20 | o.configure.an.Ingress.Policer,. |
| a63c0 | 64 65 66 69 6e 69 6e 67 20 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 62 75 72 73 74 20 | defining.its.name.and.the.burst. |
| a63e0 | 73 69 7a 65 20 69 6e 20 62 79 74 65 73 20 28 64 65 66 61 75 6c 74 3a 20 31 35 29 20 66 6f 72 20 | size.in.bytes.(default:.15).for. |
| a6400 | 69 74 73 20 64 65 66 61 75 6c 74 20 70 6f 6c 69 63 79 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d | its.default.policy..Use.this.com |
| a6420 | 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 49 6e 67 72 65 73 73 20 50 6f 6c | mand.to.configure.an.Ingress.Pol |
| a6440 | 69 63 65 72 2c 20 64 65 66 69 6e 69 6e 67 20 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 | icer,.defining.its.name.and.the. |
| a6460 | 6d 61 78 69 6d 75 6d 20 61 6c 6c 6f 77 65 64 20 62 61 6e 64 77 69 64 74 68 20 66 6f 72 20 69 74 | maximum.allowed.bandwidth.for.it |
| a6480 | 73 20 64 65 66 61 75 6c 74 20 70 6f 6c 69 63 79 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 | s.default.policy..Use.this.comma |
| a64a0 | 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 49 6e 67 72 65 73 73 20 50 6f 6c 69 63 | nd.to.configure.an.Ingress.Polic |
| a64c0 | 65 72 2c 20 64 65 66 69 6e 69 6e 67 20 69 74 73 20 6e 61 6d 65 2c 20 61 20 63 6c 61 73 73 20 69 | er,.defining.its.name,.a.class.i |
| a64e0 | 64 65 6e 74 69 66 69 65 72 20 28 31 2d 34 30 39 30 29 20 61 6e 64 20 74 68 65 20 62 75 72 73 74 | dentifier.(1-4090).and.the.burst |
| a6500 | 20 73 69 7a 65 20 69 6e 20 62 79 74 65 73 20 66 6f 72 20 74 68 69 73 20 63 6c 61 73 73 20 28 64 | .size.in.bytes.for.this.class.(d |
| a6520 | 65 66 61 75 6c 74 3a 20 31 35 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | efault:.15)..Use.this.command.to |
| a6540 | 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 49 6e 67 72 65 73 73 20 50 6f 6c 69 63 65 72 2c 20 64 | .configure.an.Ingress.Policer,.d |
| a6560 | 65 66 69 6e 69 6e 67 20 69 74 73 20 6e 61 6d 65 2c 20 61 20 63 6c 61 73 73 20 69 64 65 6e 74 69 | efining.its.name,.a.class.identi |
| a6580 | 66 69 65 72 20 28 31 2d 34 30 39 30 29 20 61 6e 64 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 61 6c | fier.(1-4090).and.the.maximum.al |
| a65a0 | 6c 6f 77 65 64 20 62 61 6e 64 77 69 64 74 68 20 66 6f 72 20 74 68 69 73 20 63 6c 61 73 73 2e 00 | lowed.bandwidth.for.this.class.. |
| a65c0 | 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e | Use.this.command.to.configure.an |
| a65e0 | 20 49 6e 67 72 65 73 73 20 50 6f 6c 69 63 65 72 2c 20 64 65 66 69 6e 69 6e 67 20 69 74 73 20 6e | .Ingress.Policer,.defining.its.n |
| a6600 | 61 6d 65 2c 20 61 20 63 6c 61 73 73 20 69 64 65 6e 74 69 66 69 65 72 20 28 31 2d 34 30 39 30 29 | ame,.a.class.identifier.(1-4090) |
| a6620 | 2c 20 61 20 63 6c 61 73 73 20 6d 61 74 63 68 69 6e 67 20 72 75 6c 65 20 6e 61 6d 65 20 61 6e 64 | ,.a.class.matching.rule.name.and |
| a6640 | 20 69 74 73 20 64 65 73 63 72 69 70 74 69 6f 6e 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 | .its.description..Use.this.comma |
| a6660 | 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 49 6e 67 72 65 73 73 20 50 6f 6c 69 63 | nd.to.configure.an.Ingress.Polic |
| a6680 | 65 72 2c 20 64 65 66 69 6e 69 6e 67 20 69 74 73 20 6e 61 6d 65 2c 20 61 20 63 6c 61 73 73 20 69 | er,.defining.its.name,.a.class.i |
| a66a0 | 64 65 6e 74 69 66 69 65 72 20 28 31 2d 34 30 39 30 29 2c 20 61 6e 64 20 74 68 65 20 70 72 69 6f | dentifier.(1-4090),.and.the.prio |
| a66c0 | 72 69 74 79 20 28 30 2d 32 30 2c 20 64 65 66 61 75 6c 74 20 32 30 29 20 69 6e 20 77 68 69 63 68 | rity.(0-20,.default.20).in.which |
| a66e0 | 20 74 68 65 20 72 75 6c 65 20 69 73 20 65 76 61 6c 75 61 74 65 64 20 28 74 68 65 20 6c 6f 77 65 | .the.rule.is.evaluated.(the.lowe |
| a6700 | 72 20 74 68 65 20 6e 75 6d 62 65 72 2c 20 74 68 65 20 68 69 67 68 65 72 20 74 68 65 20 70 72 69 | r.the.number,.the.higher.the.pri |
| a6720 | 6f 72 69 74 79 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 | ority)..Use.this.command.to.conf |
| a6740 | 69 67 75 72 65 20 61 6e 20 66 71 2d 63 6f 64 65 6c 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 | igure.an.fq-codel.policy,.set.it |
| a6760 | 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 | s.name.and.the.maximum.number.of |
| a6780 | 20 62 79 74 65 73 20 28 64 65 66 61 75 6c 74 3a 20 31 35 31 34 29 20 74 6f 20 62 65 20 64 65 71 | .bytes.(default:.1514).to.be.deq |
| a67a0 | 75 65 75 65 64 20 66 72 6f 6d 20 61 20 71 75 65 75 65 20 61 74 20 6f 6e 63 65 2e 00 55 73 65 20 | ueued.from.a.queue.at.once..Use. |
| a67c0 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 66 71 2d | this.command.to.configure.an.fq- |
| a67e0 | 63 6f 64 65 6c 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 | codel.policy,.set.its.name.and.t |
| a6800 | 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 73 75 62 2d 71 75 65 75 65 73 20 28 64 65 66 61 75 6c 74 | he.number.of.sub-queues.(default |
| a6820 | 3a 20 31 30 32 34 29 20 69 6e 74 6f 20 77 68 69 63 68 20 70 61 63 6b 65 74 73 20 61 72 65 20 63 | :.1024).into.which.packets.are.c |
| a6840 | 6c 61 73 73 69 66 69 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 | lassified..Use.this.command.to.c |
| a6860 | 6f 6e 66 69 67 75 72 65 20 61 6e 20 66 71 2d 63 6f 64 65 6c 20 70 6f 6c 69 63 79 2c 20 73 65 74 | onfigure.an.fq-codel.policy,.set |
| a6880 | 20 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 74 69 6d 65 20 70 65 72 69 6f 64 20 75 73 | .its.name.and.the.time.period.us |
| a68a0 | 65 64 20 62 79 20 74 68 65 20 63 6f 6e 74 72 6f 6c 20 6c 6f 6f 70 20 6f 66 20 43 6f 44 65 6c 20 | ed.by.the.control.loop.of.CoDel. |
| a68c0 | 74 6f 20 64 65 74 65 63 74 20 77 68 65 6e 20 61 20 70 65 72 73 69 73 74 65 6e 74 20 71 75 65 75 | to.detect.when.a.persistent.queu |
| a68e0 | 65 20 69 73 20 64 65 76 65 6c 6f 70 69 6e 67 2c 20 65 6e 73 75 72 69 6e 67 20 74 68 61 74 20 74 | e.is.developing,.ensuring.that.t |
| a6900 | 68 65 20 6d 65 61 73 75 72 65 64 20 6d 69 6e 69 6d 75 6d 20 64 65 6c 61 79 20 64 6f 65 73 20 6e | he.measured.minimum.delay.does.n |
| a6920 | 6f 74 20 62 65 63 6f 6d 65 20 74 6f 6f 20 73 74 61 6c 65 20 28 64 65 66 61 75 6c 74 3a 20 31 30 | ot.become.too.stale.(default:.10 |
| a6940 | 30 6d 73 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 | 0ms)..Use.this.command.to.config |
| a6960 | 75 72 65 20 61 6e 20 66 71 2d 63 6f 64 65 6c 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 | ure.an.fq-codel.policy,.set.its. |
| a6980 | 6e 61 6d 65 2c 20 61 6e 64 20 64 65 66 69 6e 65 20 61 20 68 61 72 64 20 6c 69 6d 69 74 20 6f 6e | name,.and.define.a.hard.limit.on |
| a69a0 | 20 74 68 65 20 72 65 61 6c 20 71 75 65 75 65 20 73 69 7a 65 2e 20 57 68 65 6e 20 74 68 69 73 20 | .the.real.queue.size..When.this. |
| a69c0 | 6c 69 6d 69 74 20 69 73 20 72 65 61 63 68 65 64 2c 20 6e 65 77 20 70 61 63 6b 65 74 73 20 61 72 | limit.is.reached,.new.packets.ar |
| a69e0 | 65 20 64 72 6f 70 70 65 64 20 28 64 65 66 61 75 6c 74 3a 20 31 30 32 34 30 20 70 61 63 6b 65 74 | e.dropped.(default:.10240.packet |
| a6a00 | 73 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 | s)..Use.this.command.to.configur |
| a6a20 | 65 20 61 6e 20 66 71 2d 63 6f 64 65 6c 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 | e.an.fq-codel.policy,.set.its.na |
| a6a40 | 6d 65 2c 20 61 6e 64 20 64 65 66 69 6e 65 20 74 68 65 20 61 63 63 65 70 74 61 62 6c 65 20 6d 69 | me,.and.define.the.acceptable.mi |
| a6a60 | 6e 69 6d 75 6d 20 73 74 61 6e 64 69 6e 67 2f 70 65 72 73 69 73 74 65 6e 74 20 71 75 65 75 65 20 | nimum.standing/persistent.queue. |
| a6a80 | 64 65 6c 61 79 2e 20 54 68 69 73 20 6d 69 6e 69 6d 75 6d 20 64 65 6c 61 79 20 69 73 20 69 64 65 | delay..This.minimum.delay.is.ide |
| a6aa0 | 6e 74 69 66 69 65 64 20 62 79 20 74 72 61 63 6b 69 6e 67 20 74 68 65 20 6c 6f 63 61 6c 20 6d 69 | ntified.by.tracking.the.local.mi |
| a6ac0 | 6e 69 6d 75 6d 20 71 75 65 75 65 20 64 65 6c 61 79 20 74 68 61 74 20 70 61 63 6b 65 74 73 20 65 | nimum.queue.delay.that.packets.e |
| a6ae0 | 78 70 65 72 69 65 6e 63 65 20 28 64 65 66 61 75 6c 74 3a 20 35 6d 73 29 2e 00 55 73 65 20 74 68 | xperience.(default:.5ms)..Use.th |
| a6b00 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 69 6e 74 65 72 | is.command.to.configure.an.inter |
| a6b20 | 66 61 63 65 20 77 69 74 68 20 49 47 4d 50 20 73 6f 20 74 68 61 74 20 50 49 4d 20 63 61 6e 20 72 | face.with.IGMP.so.that.PIM.can.r |
| a6b40 | 65 63 65 69 76 65 20 49 47 4d 50 20 72 65 70 6f 72 74 73 20 61 6e 64 20 71 75 65 72 79 20 6f 6e | eceive.IGMP.reports.and.query.on |
| a6b60 | 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 2e 20 42 79 20 64 65 66 61 | .the.selected.interface..By.defa |
| a6b80 | 75 6c 74 20 49 47 4d 50 20 76 65 72 73 69 6f 6e 20 33 20 77 69 6c 6c 20 62 65 20 75 73 65 64 2e | ult.IGMP.version.3.will.be.used. |
| a6ba0 | 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 | .Use.this.command.to.configure.a |
| a6bc0 | 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 66 6f 72 20 4c 44 50 20 70 65 65 72 73 2e 20 53 65 74 | uthentication.for.LDP.peers..Set |
| a6be0 | 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 4c 44 50 20 70 65 65 72 20 | .the.IP.address.of.the.LDP.peer. |
| a6c00 | 61 6e 64 20 61 20 70 61 73 73 77 6f 72 64 20 74 68 61 74 20 73 68 6f 75 6c 64 20 62 65 20 73 68 | and.a.password.that.should.be.sh |
| a6c20 | 61 72 65 64 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 62 65 63 6f 6d 65 20 6e 65 69 67 68 62 6f 72 | ared.in.order.to.become.neighbor |
| a6c40 | 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 | s..Use.this.command.to.configure |
| a6c60 | 20 69 6e 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 49 | .in.the.selected.interface.the.I |
| a6c80 | 47 4d 50 20 68 6f 73 74 20 71 75 65 72 79 20 69 6e 74 65 72 76 61 6c 20 28 31 2d 31 38 30 30 29 | GMP.host.query.interval.(1-1800) |
| a6ca0 | 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 68 61 74 20 50 49 4d 20 77 69 6c 6c 20 75 73 65 2e 00 55 | .in.seconds.that.PIM.will.use..U |
| a6cc0 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 69 6e 20 | se.this.command.to.configure.in. |
| a6ce0 | 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 49 47 4d 50 20 | the.selected.interface.the.IGMP. |
| a6d00 | 71 75 65 72 79 20 72 65 73 70 6f 6e 73 65 20 74 69 6d 65 6f 75 74 20 76 61 6c 75 65 20 28 31 30 | query.response.timeout.value.(10 |
| a6d20 | 2d 32 35 30 29 20 69 6e 20 64 65 63 69 73 65 63 6f 6e 64 73 2e 20 49 66 20 61 20 72 65 70 6f 72 | -250).in.deciseconds..If.a.repor |
| a6d40 | 74 20 69 73 20 6e 6f 74 20 72 65 74 75 72 6e 65 64 20 69 6e 20 74 68 65 20 73 70 65 63 69 66 69 | t.is.not.returned.in.the.specifi |
| a6d60 | 65 64 20 74 69 6d 65 2c 20 69 74 20 77 69 6c 6c 20 62 65 20 61 73 73 75 6d 65 64 20 74 68 65 20 | ed.time,.it.will.be.assumed.the. |
| a6d80 | 28 53 2c 47 29 20 6f 72 20 28 2a 2c 47 29 20 73 74 61 74 65 20 3a 72 66 63 3a 60 37 37 36 31 23 | (S,G).or.(*,G).state.:rfc:`7761# |
| a6da0 | 73 65 63 74 69 6f 6e 2d 34 2e 31 60 20 68 61 73 20 74 69 6d 65 64 20 6f 75 74 2e 00 55 73 65 20 | section-4.1`.has.timed.out..Use. |
| a6dc0 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 69 6e 20 74 68 65 | this.command.to.configure.in.the |
| a6de0 | 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 49 47 4d 50 20 71 75 65 | .selected.interface.the.IGMP.que |
| a6e00 | 72 79 20 72 65 73 70 6f 6e 73 65 20 74 69 6d 65 6f 75 74 20 76 61 6c 75 65 20 28 31 30 2d 32 35 | ry.response.timeout.value.(10-25 |
| a6e20 | 30 29 20 69 6e 20 64 65 63 69 73 65 63 6f 6e 64 73 2e 20 49 66 20 61 20 72 65 70 6f 72 74 20 69 | 0).in.deciseconds..If.a.report.i |
| a6e40 | 73 20 6e 6f 74 20 72 65 74 75 72 6e 65 64 20 69 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 | s.not.returned.in.the.specified. |
| a6e60 | 74 69 6d 65 2c 20 69 74 20 77 69 6c 6c 20 62 65 20 61 73 73 75 6d 65 64 20 74 68 65 20 28 53 2c | time,.it.will.be.assumed.the.(S, |
| a6e80 | 47 29 20 6f 72 20 28 5c 2a 2c 47 29 20 73 74 61 74 65 20 3a 72 66 63 3a 60 37 37 36 31 23 73 65 | G).or.(\*,G).state.:rfc:`7761#se |
| a6ea0 | 63 74 69 6f 6e 2d 34 2e 31 60 20 68 61 73 20 74 69 6d 65 64 20 6f 75 74 2e 00 55 73 65 20 74 68 | ction-4.1`.has.timed.out..Use.th |
| a6ec0 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 69 6e 20 74 68 65 20 73 | is.command.to.configure.in.the.s |
| a6ee0 | 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 49 47 4d 50 20 71 75 65 72 79 | elected.interface.the.IGMP.query |
| a6f00 | 20 72 65 73 70 6f 6e 73 65 20 74 69 6d 65 6f 75 74 20 76 61 6c 75 65 20 28 31 30 2d 32 35 30 29 | .response.timeout.value.(10-250) |
| a6f20 | 20 69 6e 20 64 65 63 69 73 65 63 6f 6e 64 73 2e 20 49 66 20 61 20 72 65 70 6f 72 74 20 69 73 20 | .in.deciseconds..If.a.report.is. |
| a6f40 | 6e 6f 74 20 72 65 74 75 72 6e 65 64 20 69 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 74 69 | not.returned.in.the.specified.ti |
| a6f60 | 6d 65 2c 20 69 74 20 77 69 6c 6c 20 62 65 20 61 73 73 75 6d 65 64 20 74 68 65 20 60 28 53 2c 47 | me,.it.will.be.assumed.the.`(S,G |
| a6f80 | 29 20 6f 72 20 28 2a 2c 47 29 20 73 74 61 74 65 20 3c 68 74 74 70 73 3a 2f 2f 74 6f 6f 6c 73 2e | ).or.(*,G).state.<https://tools. |
| a6fa0 | 69 65 74 66 2e 6f 72 67 2f 68 74 6d 6c 2f 72 66 63 37 37 36 31 23 73 65 63 74 69 6f 6e 2d 34 2e | ietf.org/html/rfc7761#section-4. |
| a6fc0 | 31 3e 60 5f 20 68 61 73 20 74 69 6d 65 64 20 6f 75 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d | 1>`_.has.timed.out..Use.this.com |
| a6fe0 | 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 69 6e 20 74 68 65 20 73 65 6c 65 63 74 65 | mand.to.configure.in.the.selecte |
| a7000 | 64 20 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 4d 4c 44 20 68 6f 73 74 20 71 75 65 72 79 20 69 | d.interface.the.MLD.host.query.i |
| a7020 | 6e 74 65 72 76 61 6c 20 28 31 2d 36 35 35 33 35 29 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 68 61 | nterval.(1-65535).in.seconds.tha |
| a7040 | 74 20 50 49 4d 20 77 69 6c 6c 20 75 73 65 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 | t.PIM.will.use..The.default.valu |
| a7060 | 65 20 69 73 20 31 32 35 20 73 65 63 6f 6e 64 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 | e.is.125.seconds..Use.this.comma |
| a7080 | 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 20 73 61 6d 70 6c 69 6e 67 20 72 61 | nd.to.configure.the..sampling.ra |
| a70a0 | 74 65 20 66 6f 72 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 2e 20 54 68 65 20 73 79 73 74 | te.for.flow.accounting..The.syst |
| a70c0 | 65 6d 20 73 61 6d 70 6c 65 73 20 6f 6e 65 20 69 6e 20 65 76 65 72 79 20 60 3c 72 61 74 65 3e 60 | em.samples.one.in.every.`<rate>` |
| a70e0 | 20 70 61 63 6b 65 74 73 2c 20 77 68 65 72 65 20 60 3c 72 61 74 65 3e 60 20 69 73 20 74 68 65 20 | .packets,.where.`<rate>`.is.the. |
| a7100 | 76 61 6c 75 65 20 63 6f 6e 66 69 67 75 72 65 64 20 66 6f 72 20 74 68 65 20 73 61 6d 70 6c 69 6e | value.configured.for.the.samplin |
| a7120 | 67 2d 72 61 74 65 20 6f 70 74 69 6f 6e 2e 20 54 68 65 20 61 64 76 61 6e 74 61 67 65 20 6f 66 20 | g-rate.option..The.advantage.of. |
| a7140 | 73 61 6d 70 6c 69 6e 67 20 65 76 65 72 79 20 6e 20 70 61 63 6b 65 74 73 2c 20 77 68 65 72 65 20 | sampling.every.n.packets,.where. |
| a7160 | 6e 20 3e 20 31 2c 20 61 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 64 65 63 72 65 61 73 65 20 74 68 | n.>.1,.allows.you.to.decrease.th |
| a7180 | 65 20 61 6d 6f 75 6e 74 20 6f 66 20 70 72 6f 63 65 73 73 69 6e 67 20 72 65 73 6f 75 72 63 65 73 | e.amount.of.processing.resources |
| a71a0 | 20 72 65 71 75 69 72 65 64 20 66 6f 72 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 2e 20 54 | .required.for.flow.accounting..T |
| a71c0 | 68 65 20 64 69 73 61 64 76 61 6e 74 61 67 65 20 6f 66 20 6e 6f 74 20 73 61 6d 70 6c 69 6e 67 20 | he.disadvantage.of.not.sampling. |
| a71e0 | 65 76 65 72 79 20 70 61 63 6b 65 74 20 69 73 20 74 68 61 74 20 74 68 65 20 73 74 61 74 69 73 74 | every.packet.is.that.the.statist |
| a7200 | 69 63 73 20 70 72 6f 64 75 63 65 64 20 61 72 65 20 65 73 74 69 6d 61 74 65 73 20 6f 66 20 61 63 | ics.produced.are.estimates.of.ac |
| a7220 | 74 75 61 6c 20 64 61 74 61 20 66 6c 6f 77 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | tual.data.flows..Use.this.comman |
| a7240 | 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 61 6e | d.to.configure.the.IP.address.an |
| a7260 | 64 20 74 68 65 20 73 68 61 72 65 64 20 73 65 63 72 65 74 20 6b 65 79 20 6f 66 20 79 6f 75 72 20 | d.the.shared.secret.key.of.your. |
| a7280 | 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 20 20 59 6f 75 20 63 61 6e 20 68 61 76 65 20 6d 75 6c | RADIUS.server...You.can.have.mul |
| a72a0 | 74 69 70 6c 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 73 20 63 6f 6e 66 69 67 75 72 65 64 20 | tiple.RADIUS.servers.configured. |
| a72c0 | 69 66 20 79 6f 75 20 77 69 73 68 20 74 6f 20 61 63 68 69 65 76 65 20 72 65 64 75 6e 64 61 6e 63 | if.you.wish.to.achieve.redundanc |
| a72e0 | 79 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 | y..Use.this.command.to.configure |
| a7300 | 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 75 73 65 64 20 61 73 20 74 68 65 20 4c 44 50 20 | .the.IP.address.used.as.the.LDP. |
| a7320 | 72 6f 75 74 65 72 2d 69 64 20 6f 66 20 74 68 65 20 6c 6f 63 61 6c 20 64 65 76 69 63 65 2e 00 55 | router-id.of.the.local.device..U |
| a7340 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 | se.this.command.to.configure.the |
| a7360 | 20 50 49 4d 20 68 65 6c 6c 6f 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 | .PIM.hello.interval.in.seconds.( |
| a7380 | 31 2d 31 38 30 29 20 66 6f 72 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 | 1-180).for.the.selected.interfac |
| a73a0 | 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 | e..Use.this.command.to.configure |
| a73c0 | 20 74 68 65 20 62 75 72 73 74 20 73 69 7a 65 20 6f 66 20 74 68 65 20 74 72 61 66 66 69 63 20 69 | .the.burst.size.of.the.traffic.i |
| a73e0 | 6e 20 61 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 20 70 6f 6c 69 63 79 2e 20 44 65 66 | n.a.Network.Emulator.policy..Def |
| a7400 | 69 6e 65 20 74 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 65 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c | ine.the.name.of.the.Network.Emul |
| a7420 | 61 74 6f 72 20 70 6f 6c 69 63 79 20 61 6e 64 20 69 74 73 20 74 72 61 66 66 69 63 20 62 75 72 73 | ator.policy.and.its.traffic.burs |
| a7440 | 74 20 73 69 7a 65 20 28 69 74 20 77 69 6c 6c 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 68 | t.size.(it.will.be.configured.th |
| a7460 | 72 6f 75 67 68 20 74 68 65 20 54 6f 6b 65 6e 20 42 75 63 6b 65 74 20 46 69 6c 74 65 72 20 71 64 | rough.the.Token.Bucket.Filter.qd |
| a7480 | 69 73 63 29 2e 20 44 65 66 61 75 6c 74 3a 31 35 6b 62 2e 20 49 74 20 77 69 6c 6c 20 6f 6e 6c 79 | isc)..Default:15kb..It.will.only |
| a74a0 | 20 74 61 6b 65 20 65 66 66 65 63 74 20 69 66 20 79 6f 75 20 68 61 76 65 20 63 6f 6e 66 69 67 75 | .take.effect.if.you.have.configu |
| a74c0 | 72 65 64 20 69 74 73 20 62 61 6e 64 77 69 64 74 68 20 74 6f 6f 2e 00 55 73 65 20 74 68 69 73 20 | red.its.bandwidth.too..Use.this. |
| a74e0 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6c 6f 63 61 6c 20 67 | command.to.configure.the.local.g |
| a7500 | 61 74 65 77 61 79 20 49 50 20 61 64 64 72 65 73 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d | ateway.IP.address..Use.this.comm |
| a7520 | 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 72 61 74 | and.to.configure.the.maximum.rat |
| a7540 | 65 20 61 74 20 77 68 69 63 68 20 74 72 61 66 66 69 63 20 77 69 6c 6c 20 62 65 20 73 68 61 70 65 | e.at.which.traffic.will.be.shape |
| a7560 | 64 20 69 6e 20 61 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 20 70 6f 6c 69 63 79 2e 20 | d.in.a.Network.Emulator.policy.. |
| a7580 | 44 65 66 69 6e 65 20 74 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 65 20 70 6f 6c 69 63 79 20 61 6e | Define.the.name.of.the.policy.an |
| a75a0 | 64 20 74 68 65 20 72 61 74 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 | d.the.rate..Use.this.command.to. |
| a75c0 | 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 73 61 6d 70 6c 69 6e 67 20 72 61 74 65 20 66 6f 72 20 | configure.the.sampling.rate.for. |
| a75e0 | 73 46 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 20 28 64 65 66 61 75 6c 74 3a 20 31 30 30 30 29 | sFlow.accounting.(default:.1000) |
| a7600 | 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 | .Use.this.command.to.configure.t |
| a7620 | 68 65 20 75 73 65 72 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 70 61 73 73 77 6f 72 64 20 6f 66 20 | he.username.and.the.password.of. |
| a7640 | 61 20 6c 6f 63 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 75 73 65 72 2e 00 55 73 65 20 74 | a.locally.configured.user..Use.t |
| a7660 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 74 68 65 20 6d 61 78 69 6d | his.command.to.control.the.maxim |
| a7680 | 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 65 71 75 61 6c 20 63 6f 73 74 20 70 61 74 68 73 20 74 6f | um.number.of.equal.cost.paths.to |
| a76a0 | 20 72 65 61 63 68 20 61 20 73 70 65 63 69 66 69 63 20 64 65 73 74 69 6e 61 74 69 6f 6e 2e 20 54 | .reach.a.specific.destination..T |
| a76c0 | 68 65 20 75 70 70 65 72 20 6c 69 6d 69 74 20 6d 61 79 20 64 69 66 66 65 72 20 69 66 20 79 6f 75 | he.upper.limit.may.differ.if.you |
| a76e0 | 20 63 68 61 6e 67 65 20 74 68 65 20 76 61 6c 75 65 20 6f 66 20 4d 55 4c 54 49 50 41 54 48 5f 4e | .change.the.value.of.MULTIPATH_N |
| a7700 | 55 4d 20 64 75 72 69 6e 67 20 63 6f 6d 70 69 6c 61 74 69 6f 6e 2e 20 54 68 65 20 64 65 66 61 75 | UM.during.compilation..The.defau |
| a7720 | 6c 74 20 69 73 20 4d 55 4c 54 49 50 41 54 48 5f 4e 55 4d 20 28 36 34 29 2e 00 55 73 65 20 74 68 | lt.is.MULTIPATH_NUM.(64)..Use.th |
| a7740 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 72 65 61 74 65 20 61 20 46 61 69 72 2d 51 75 65 75 | is.command.to.create.a.Fair-Queu |
| a7760 | 65 20 70 6f 6c 69 63 79 20 61 6e 64 20 67 69 76 65 20 69 74 20 61 20 6e 61 6d 65 2e 20 49 74 20 | e.policy.and.give.it.a.name..It. |
| a7780 | 69 73 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 53 74 6f 63 68 61 73 74 69 63 20 46 61 69 72 6e | is.based.on.the.Stochastic.Fairn |
| a77a0 | 65 73 73 20 51 75 65 75 65 69 6e 67 20 61 6e 64 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 | ess.Queueing.and.can.be.applied. |
| a77c0 | 74 6f 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 2e 00 55 73 65 20 74 68 69 73 20 63 6f | to.outbound.traffic..Use.this.co |
| a77e0 | 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 49 50 73 65 63 20 69 6e 74 65 72 66 61 63 65 2e | mmand.to.define.IPsec.interface. |
| a7800 | 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 61 20 46 61 | .Use.this.command.to.define.a.Fa |
| a7820 | 69 72 2d 51 75 65 75 65 20 70 6f 6c 69 63 79 2c 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 53 74 | ir-Queue.policy,.based.on.the.St |
| a7840 | 6f 63 68 61 73 74 69 63 20 46 61 69 72 6e 65 73 73 20 51 75 65 75 65 69 6e 67 2c 20 61 6e 64 20 | ochastic.Fairness.Queueing,.and. |
| a7860 | 73 65 74 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 6d 61 78 69 6d 75 6d 20 70 61 63 6b 65 74 | set.the.number.of.maximum.packet |
| a7880 | 73 20 61 6c 6c 6f 77 65 64 20 74 6f 20 77 61 69 74 20 69 6e 20 74 68 65 20 71 75 65 75 65 2e 20 | s.allowed.to.wait.in.the.queue.. |
| a78a0 | 41 6e 79 20 6f 74 68 65 72 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 64 72 6f 70 70 65 64 | Any.other.packet.will.be.dropped |
| a78c0 | 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 61 20 46 | ..Use.this.command.to.define.a.F |
| a78e0 | 61 69 72 2d 51 75 65 75 65 20 70 6f 6c 69 63 79 2c 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 53 | air-Queue.policy,.based.on.the.S |
| a7900 | 74 6f 63 68 61 73 74 69 63 20 46 61 69 72 6e 65 73 73 20 51 75 65 75 65 69 6e 67 2c 20 61 6e 64 | tochastic.Fairness.Queueing,.and |
| a7920 | 20 73 65 74 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 73 65 63 6f 6e 64 73 20 61 74 20 77 68 | .set.the.number.of.seconds.at.wh |
| a7940 | 69 63 68 20 61 20 6e 65 77 20 71 75 65 75 65 20 61 6c 67 6f 72 69 74 68 6d 20 70 65 72 74 75 72 | ich.a.new.queue.algorithm.pertur |
| a7960 | 62 61 74 69 6f 6e 20 77 69 6c 6c 20 6f 63 63 75 72 20 28 6d 61 78 69 6d 75 6d 20 34 32 39 34 39 | bation.will.occur.(maximum.42949 |
| a7980 | 36 37 32 39 35 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 | 67295)..Use.this.command.to.defi |
| a79a0 | 6e 65 20 64 65 66 61 75 6c 74 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 6e 61 6d | ne.default.IPv6.address.pool.nam |
| a79c0 | 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 64 65 | e..Use.this.command.to.define.de |
| a79e0 | 66 61 75 6c 74 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 6e 61 6d 65 2e 00 55 73 65 20 74 68 69 | fault.address.pool.name..Use.thi |
| a7a00 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 64 6f 6d 61 69 6e 73 2c 20 6f 6e 65 | s.command.to.define.domains,.one |
| a7a20 | 20 61 74 20 61 20 74 69 6d 65 2c 20 73 6f 20 74 68 61 74 20 74 68 65 20 73 79 73 74 65 6d 20 75 | .at.a.time,.so.that.the.system.u |
| a7a40 | 73 65 73 20 74 68 65 6d 20 74 6f 20 63 6f 6d 70 6c 65 74 65 20 75 6e 71 75 61 6c 69 66 69 65 64 | ses.them.to.complete.unqualified |
| a7a60 | 20 68 6f 73 74 20 6e 61 6d 65 73 2e 20 4d 61 78 69 6d 75 6d 3a 20 36 20 65 6e 74 72 69 65 73 2e | .host.names..Maximum:.6.entries. |
| a7a80 | 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 69 6e 20 74 | .Use.this.command.to.define.in.t |
| a7aa0 | 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 74 68 65 72 20 79 6f | he.selected.interface.whether.yo |
| a7ac0 | 75 20 63 68 6f 6f 73 65 20 49 47 4d 50 20 76 65 72 73 69 6f 6e 20 32 20 6f 72 20 33 2e 00 55 73 | u.choose.IGMP.version.2.or.3..Us |
| a7ae0 | 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 69 6e 20 74 68 65 20 | e.this.command.to.define.in.the. |
| a7b00 | 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 74 68 65 72 20 79 6f 75 20 63 | selected.interface.whether.you.c |
| a7b20 | 68 6f 6f 73 65 20 49 47 4d 50 20 76 65 72 73 69 6f 6e 20 32 20 6f 72 20 33 2e 20 54 68 65 20 64 | hoose.IGMP.version.2.or.3..The.d |
| a7b40 | 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 33 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d | efault.value.is.3..Use.this.comm |
| a7b60 | 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 72 61 6e | and.to.define.the.IP.address.ran |
| a7b80 | 67 65 20 74 6f 20 62 65 20 67 69 76 65 6e 20 74 6f 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 73 2e | ge.to.be.given.to.PPPoE.clients. |
| a7ba0 | 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2d 78 2e 78 2e 78 2e 78 60 60 | .If.notation.``x.x.x.x-x.x.x.x`` |
| a7bc0 | 2c 20 69 74 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f 32 34 20 73 75 62 6e 65 74 | ,.it.must.be.within.a./24.subnet |
| a7be0 | 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2f 78 60 60 20 69 73 20 75 | ..If.notation.``x.x.x.x/x``.is.u |
| a7c00 | 73 65 64 20 74 68 65 72 65 20 69 73 20 70 6f 73 73 69 62 69 6c 69 74 79 20 74 6f 20 73 65 74 20 | sed.there.is.possibility.to.set. |
| a7c20 | 68 6f 73 74 2f 6e 65 74 6d 61 73 6b 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 | host/netmask..Use.this.command.t |
| a7c40 | 6f 20 64 65 66 69 6e 65 20 74 68 65 20 66 69 72 73 74 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 | o.define.the.first.IP.address.of |
| a7c60 | 20 61 20 70 6f 6f 6c 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 62 65 20 67 69 76 65 6e | .a.pool.of.addresses.to.be.given |
| a7c80 | 20 74 6f 20 49 50 6f 45 20 63 6c 69 65 6e 74 73 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 | .to.IPoE.clients..If.notation.`` |
| a7ca0 | 78 2e 78 2e 78 2e 78 2d 78 2e 78 2e 78 2e 78 60 60 2c 20 69 74 20 6d 75 73 74 20 62 65 20 77 69 | x.x.x.x-x.x.x.x``,.it.must.be.wi |
| a7cc0 | 74 68 69 6e 20 61 20 2f 32 34 20 73 75 62 6e 65 74 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 | thin.a./24.subnet..If.notation.` |
| a7ce0 | 60 78 2e 78 2e 78 2e 78 2f 78 60 60 20 69 73 20 75 73 65 64 20 74 68 65 72 65 20 69 73 20 70 6f | `x.x.x.x/x``.is.used.there.is.po |
| a7d00 | 73 73 69 62 69 6c 69 74 79 20 74 6f 20 73 65 74 20 68 6f 73 74 2f 6e 65 74 6d 61 73 6b 2e 00 55 | ssibility.to.set.host/netmask..U |
| a7d20 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 66 69 | se.this.command.to.define.the.fi |
| a7d40 | 72 73 74 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 61 20 70 6f 6f 6c 20 6f 66 20 61 64 64 72 | rst.IP.address.of.a.pool.of.addr |
| a7d60 | 65 73 73 65 73 20 74 6f 20 62 65 20 67 69 76 65 6e 20 74 6f 20 50 50 50 6f 45 20 63 6c 69 65 6e | esses.to.be.given.to.PPPoE.clien |
| a7d80 | 74 73 2e 20 49 74 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f 32 34 20 73 75 62 6e | ts..It.must.be.within.a./24.subn |
| a7da0 | 65 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 | et..Use.this.command.to.define.t |
| a7dc0 | 68 65 20 66 69 72 73 74 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 61 20 70 6f 6f 6c 20 6f 66 | he.first.IP.address.of.a.pool.of |
| a7de0 | 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 62 65 20 67 69 76 65 6e 20 74 6f 20 50 50 54 50 20 63 | .addresses.to.be.given.to.PPTP.c |
| a7e00 | 6c 69 65 6e 74 73 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2d 78 2e | lients..If.notation.``x.x.x.x-x. |
| a7e20 | 78 2e 78 2e 78 60 60 2c 20 69 74 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f 32 34 | x.x.x``,.it.must.be.within.a./24 |
| a7e40 | 20 73 75 62 6e 65 74 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2f 78 | .subnet..If.notation.``x.x.x.x/x |
| a7e60 | 60 60 20 69 73 20 75 73 65 64 20 74 68 65 72 65 20 69 73 20 70 6f 73 73 69 62 69 6c 69 74 79 20 | ``.is.used.there.is.possibility. |
| a7e80 | 74 6f 20 73 65 74 20 68 6f 73 74 2f 6e 65 74 6d 61 73 6b 2e 00 55 73 65 20 74 68 69 73 20 63 6f | to.set.host/netmask..Use.this.co |
| a7ea0 | 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 66 69 72 73 74 20 49 50 20 61 64 64 | mmand.to.define.the.first.IP.add |
| a7ec0 | 72 65 73 73 20 6f 66 20 61 20 70 6f 6f 6c 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 62 | ress.of.a.pool.of.addresses.to.b |
| a7ee0 | 65 20 67 69 76 65 6e 20 74 6f 20 53 53 54 50 20 63 6c 69 65 6e 74 73 2e 20 49 66 20 6e 6f 74 61 | e.given.to.SSTP.clients..If.nota |
| a7f00 | 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2d 78 2e 78 2e 78 2e 78 60 60 2c 20 69 74 20 6d 75 73 | tion.``x.x.x.x-x.x.x.x``,.it.mus |
| a7f20 | 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f 32 34 20 73 75 62 6e 65 74 2e 20 49 66 20 6e 6f 74 | t.be.within.a./24.subnet..If.not |
| a7f40 | 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2f 78 60 60 20 69 73 20 75 73 65 64 20 74 68 65 72 | ation.``x.x.x.x/x``.is.used.ther |
| a7f60 | 65 20 69 73 20 70 6f 73 73 69 62 69 6c 69 74 79 20 74 6f 20 73 65 74 20 68 6f 73 74 2f 6e 65 74 | e.is.possibility.to.set.host/net |
| a7f80 | 6d 61 73 6b 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 | mask..Use.this.command.to.define |
| a7fa0 | 20 74 68 65 20 66 69 72 73 74 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 61 20 70 6f 6f 6c 20 | .the.first.IP.address.of.a.pool. |
| a7fc0 | 6f 66 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 62 65 20 67 69 76 65 6e 20 74 6f 20 6c 32 74 70 | of.addresses.to.be.given.to.l2tp |
| a7fe0 | 20 63 6c 69 65 6e 74 73 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2d | .clients..If.notation.``x.x.x.x- |
| a8000 | 78 2e 78 2e 78 2e 78 60 60 2c 20 69 74 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f | x.x.x.x``,.it.must.be.within.a./ |
| a8020 | 32 34 20 73 75 62 6e 65 74 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 | 24.subnet..If.notation.``x.x.x.x |
| a8040 | 2f 78 60 60 20 69 73 20 75 73 65 64 20 74 68 65 72 65 20 69 73 20 70 6f 73 73 69 62 69 6c 69 74 | /x``.is.used.there.is.possibilit |
| a8060 | 79 20 74 6f 20 73 65 74 20 68 6f 73 74 2f 6e 65 74 6d 61 73 6b 2e 00 55 73 65 20 74 68 69 73 20 | y.to.set.host/netmask..Use.this. |
| a8080 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 66 69 72 73 74 20 49 50 20 61 | command.to.define.the.first.IP.a |
| a80a0 | 64 64 72 65 73 73 20 6f 66 20 61 20 70 6f 6f 6c 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 74 6f | ddress.of.a.pool.of.addresses.to |
| a80c0 | 20 62 65 20 67 69 76 65 6e 20 74 6f 20 70 70 70 6f 65 20 63 6c 69 65 6e 74 73 2e 20 49 66 20 6e | .be.given.to.pppoe.clients..If.n |
| a80e0 | 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2d 78 2e 78 2e 78 2e 78 60 60 2c 20 69 74 20 | otation.``x.x.x.x-x.x.x.x``,.it. |
| a8100 | 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f 32 34 20 73 75 62 6e 65 74 2e 20 49 66 20 | must.be.within.a./24.subnet..If. |
| a8120 | 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2f 78 60 60 20 69 73 20 75 73 65 64 20 74 | notation.``x.x.x.x/x``.is.used.t |
| a8140 | 68 65 72 65 20 69 73 20 70 6f 73 73 69 62 69 6c 69 74 79 20 74 6f 20 73 65 74 20 68 6f 73 74 2f | here.is.possibility.to.set.host/ |
| a8160 | 6e 65 74 6d 61 73 6b 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 | netmask..Use.this.command.to.def |
| a8180 | 69 6e 65 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 50 50 50 6f 45 20 73 65 72 76 | ine.the.interface.the.PPPoE.serv |
| a81a0 | 65 72 20 77 69 6c 6c 20 75 73 65 20 74 6f 20 6c 69 73 74 65 6e 20 66 6f 72 20 50 50 50 6f 45 20 | er.will.use.to.listen.for.PPPoE. |
| a81c0 | 63 6c 69 65 6e 74 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 | clients..Use.this.command.to.def |
| a81e0 | 69 6e 65 20 74 68 65 20 6c 61 73 74 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 61 20 70 6f 6f | ine.the.last.IP.address.of.a.poo |
| a8200 | 6c 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 62 65 20 67 69 76 65 6e 20 74 6f 20 50 50 | l.of.addresses.to.be.given.to.PP |
| a8220 | 50 6f 45 20 63 6c 69 65 6e 74 73 2e 20 49 74 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 61 | PoE.clients..It.must.be.within.a |
| a8240 | 20 2f 32 34 20 73 75 62 6e 65 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | ./24.subnet..Use.this.command.to |
| a8260 | 20 64 65 66 69 6e 65 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 71 75 65 75 65 20 | .define.the.length.of.the.queue. |
| a8280 | 6f 66 20 79 6f 75 72 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 20 70 6f 6c 69 63 79 2e | of.your.Network.Emulator.policy. |
| a82a0 | 20 53 65 74 20 74 68 65 20 70 6f 6c 69 63 79 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 6d 61 78 | .Set.the.policy.name.and.the.max |
| a82c0 | 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 28 31 2d 34 32 39 34 39 36 | imum.number.of.packets.(1-429496 |
| a82e0 | 37 32 39 35 29 20 74 68 65 20 71 75 65 75 65 20 6d 61 79 20 68 6f 6c 64 20 71 75 65 75 65 64 20 | 7295).the.queue.may.hold.queued. |
| a8300 | 61 74 20 61 20 74 69 6d 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 | at.a.time..Use.this.command.to.d |
| a8320 | 65 66 69 6e 65 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 65 6e 74 72 | efine.the.maximum.number.of.entr |
| a8340 | 69 65 73 20 74 6f 20 6b 65 65 70 20 69 6e 20 74 68 65 20 41 52 50 20 63 61 63 68 65 20 28 31 30 | ies.to.keep.in.the.ARP.cache.(10 |
| a8360 | 32 34 2c 20 32 30 34 38 2c 20 34 30 39 36 2c 20 38 31 39 32 2c 20 31 36 33 38 34 2c 20 33 32 37 | 24,.2048,.4096,.8192,.16384,.327 |
| a8380 | 36 38 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 | 68)..Use.this.command.to.define. |
| a83a0 | 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 65 6e 74 72 69 65 73 20 74 6f | the.maximum.number.of.entries.to |
| a83c0 | 20 6b 65 65 70 20 69 6e 20 74 68 65 20 4e 65 69 67 68 62 6f 72 20 63 61 63 68 65 20 28 31 30 32 | .keep.in.the.Neighbor.cache.(102 |
| a83e0 | 34 2c 20 32 30 34 38 2c 20 34 30 39 36 2c 20 38 31 39 32 2c 20 31 36 33 38 34 2c 20 33 32 37 36 | 4,.2048,.4096,.8192,.16384,.3276 |
| a8400 | 38 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 | 8)..Use.this.command.to.define.t |
| a8420 | 68 65 20 6e 65 78 74 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 6e 61 6d 65 2e 00 55 73 65 20 74 | he.next.address.pool.name..Use.t |
| a8440 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 77 68 65 74 68 65 72 20 79 6f | his.command.to.define.whether.yo |
| a8460 | 75 72 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 73 20 77 69 6c 6c 20 6c 6f 63 61 6c 6c 79 20 61 75 | ur.PPPoE.clients.will.locally.au |
| a8480 | 74 68 65 6e 74 69 63 61 74 65 20 69 6e 20 79 6f 75 72 20 56 79 4f 53 20 73 79 73 74 65 6d 20 6f | thenticate.in.your.VyOS.system.o |
| a84a0 | 72 20 69 6e 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d | r.in.RADIUS.server..Use.this.com |
| a84c0 | 6d 61 6e 64 20 74 6f 20 64 69 72 65 63 74 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 6e | mand.to.direct.an.interface.to.n |
| a84e0 | 6f 74 20 64 65 74 65 63 74 20 61 6e 79 20 70 68 79 73 69 63 61 6c 20 73 74 61 74 65 20 63 68 61 | ot.detect.any.physical.state.cha |
| a8500 | 6e 67 65 73 20 6f 6e 20 61 20 6c 69 6e 6b 2c 20 66 6f 72 20 65 78 61 6d 70 6c 65 2c 20 77 68 65 | nges.on.a.link,.for.example,.whe |
| a8520 | 6e 20 74 68 65 20 63 61 62 6c 65 20 69 73 20 75 6e 70 6c 75 67 67 65 64 2e 00 55 73 65 20 74 68 | n.the.cable.is.unplugged..Use.th |
| a8540 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 69 73 61 62 6c 65 20 49 50 76 34 20 64 69 72 65 63 | is.command.to.disable.IPv4.direc |
| a8560 | 74 65 64 20 62 72 6f 61 64 63 61 73 74 20 66 6f 72 77 61 72 64 69 6e 67 20 6f 6e 20 61 6c 6c 20 | ted.broadcast.forwarding.on.all. |
| a8580 | 69 6e 74 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 | interfaces..Use.this.command.to. |
| a85a0 | 64 69 73 61 62 6c 65 20 49 50 76 34 20 66 6f 72 77 61 72 64 69 6e 67 20 6f 6e 20 61 6c 6c 20 69 | disable.IPv4.forwarding.on.all.i |
| a85c0 | 6e 74 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 | nterfaces..Use.this.command.to.d |
| a85e0 | 69 73 61 62 6c 65 20 49 50 76 36 20 66 6f 72 77 61 72 64 69 6e 67 20 6f 6e 20 61 6c 6c 20 69 6e | isable.IPv6.forwarding.on.all.in |
| a8600 | 74 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 69 | terfaces..Use.this.command.to.di |
| a8620 | 73 61 62 6c 65 20 49 50 76 36 20 6f 70 65 72 61 74 69 6f 6e 20 6f 6e 20 69 6e 74 65 72 66 61 63 | sable.IPv6.operation.on.interfac |
| a8640 | 65 20 77 68 65 6e 20 44 75 70 6c 69 63 61 74 65 20 41 64 64 72 65 73 73 20 44 65 74 65 63 74 69 | e.when.Duplicate.Address.Detecti |
| a8660 | 6f 6e 20 66 61 69 6c 73 20 6f 6e 20 4c 69 6e 6b 2d 4c 6f 63 61 6c 20 61 64 64 72 65 73 73 2e 00 | on.fails.on.Link-Local.address.. |
| a8680 | 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 69 73 61 62 6c 65 20 74 68 65 20 | Use.this.command.to.disable.the. |
| a86a0 | 67 65 6e 65 72 61 74 69 6f 6e 20 6f 66 20 45 74 68 65 72 6e 65 74 20 66 6c 6f 77 20 63 6f 6e 74 | generation.of.Ethernet.flow.cont |
| a86c0 | 72 6f 6c 20 28 70 61 75 73 65 20 66 72 61 6d 65 73 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d | rol.(pause.frames)..Use.this.com |
| a86e0 | 6d 61 6e 64 20 74 6f 20 65 6d 75 6c 61 74 65 20 6e 6f 69 73 65 20 69 6e 20 61 20 4e 65 74 77 6f | mand.to.emulate.noise.in.a.Netwo |
| a8700 | 72 6b 20 45 6d 75 6c 61 74 6f 72 20 70 6f 6c 69 63 79 2e 20 53 65 74 20 74 68 65 20 70 6f 6c 69 | rk.Emulator.policy..Set.the.poli |
| a8720 | 63 79 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 70 65 72 63 65 6e 74 61 67 65 20 6f 66 20 63 6f | cy.name.and.the.percentage.of.co |
| a8740 | 72 72 75 70 74 65 64 20 70 61 63 6b 65 74 73 20 79 6f 75 20 77 61 6e 74 2e 20 41 20 72 61 6e 64 | rrupted.packets.you.want..A.rand |
| a8760 | 6f 6d 20 65 72 72 6f 72 20 77 69 6c 6c 20 62 65 20 69 6e 74 72 6f 64 75 63 65 64 20 69 6e 20 61 | om.error.will.be.introduced.in.a |
| a8780 | 20 72 61 6e 64 6f 6d 20 70 6f 73 69 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 63 68 6f 73 65 6e 20 | .random.position.for.the.chosen. |
| a87a0 | 70 65 72 63 65 6e 74 20 6f 66 20 70 61 63 6b 65 74 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d | percent.of.packets..Use.this.com |
| a87c0 | 6d 61 6e 64 20 74 6f 20 65 6d 75 6c 61 74 65 20 70 61 63 6b 65 74 2d 6c 6f 73 73 20 63 6f 6e 64 | mand.to.emulate.packet-loss.cond |
| a87e0 | 69 74 69 6f 6e 73 20 69 6e 20 61 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 20 70 6f 6c | itions.in.a.Network.Emulator.pol |
| a8800 | 69 63 79 2e 20 53 65 74 20 74 68 65 20 70 6f 6c 69 63 79 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 | icy..Set.the.policy.name.and.the |
| a8820 | 20 70 65 72 63 65 6e 74 61 67 65 20 6f 66 20 6c 6f 73 73 20 70 61 63 6b 65 74 73 20 79 6f 75 72 | .percentage.of.loss.packets.your |
| a8840 | 20 74 72 61 66 66 69 63 20 77 69 6c 6c 20 73 75 66 66 65 72 2e 00 55 73 65 20 74 68 69 73 20 63 | .traffic.will.suffer..Use.this.c |
| a8860 | 6f 6d 6d 61 6e 64 20 74 6f 20 65 6d 75 6c 61 74 65 20 70 61 63 6b 65 74 2d 72 65 6f 72 64 65 72 | ommand.to.emulate.packet-reorder |
| a8880 | 69 6e 67 20 63 6f 6e 64 69 74 69 6f 6e 73 20 69 6e 20 61 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c | ing.conditions.in.a.Network.Emul |
| a88a0 | 61 74 6f 72 20 70 6f 6c 69 63 79 2e 20 53 65 74 20 74 68 65 20 70 6f 6c 69 63 79 20 6e 61 6d 65 | ator.policy..Set.the.policy.name |
| a88c0 | 20 61 6e 64 20 74 68 65 20 70 65 72 63 65 6e 74 61 67 65 20 6f 66 20 72 65 6f 72 64 65 72 65 64 | .and.the.percentage.of.reordered |
| a88e0 | 20 70 61 63 6b 65 74 73 20 79 6f 75 72 20 74 72 61 66 66 69 63 20 77 69 6c 6c 20 73 75 66 66 65 | .packets.your.traffic.will.suffe |
| a8900 | 72 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 4c 44 | r..Use.this.command.to.enable.LD |
| a8920 | 50 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 79 6f 75 20 64 65 66 69 6e 65 2e 00 55 | P.on.the.interface.you.define..U |
| a8940 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 4d 50 4c 53 20 70 | se.this.command.to.enable.MPLS.p |
| a8960 | 72 6f 63 65 73 73 69 6e 67 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 79 6f 75 20 64 | rocessing.on.the.interface.you.d |
| a8980 | 65 66 69 6e 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c | efine..Use.this.command.to.enabl |
| a89a0 | 65 20 50 49 4d 20 69 6e 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 | e.PIM.in.the.selected.interface. |
| a89c0 | 73 6f 20 74 68 61 74 20 69 74 20 63 61 6e 20 63 6f 6d 6d 75 6e 69 63 61 74 65 20 77 69 74 68 20 | so.that.it.can.communicate.with. |
| a89e0 | 50 49 4d 20 6e 65 69 67 68 62 6f 72 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | PIM.neighbors..Use.this.command. |
| a8a00 | 74 6f 20 65 6e 61 62 6c 65 20 50 49 4d 76 36 20 69 6e 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 | to.enable.PIMv6.in.the.selected. |
| a8a20 | 69 6e 74 65 72 66 61 63 65 20 73 6f 20 74 68 61 74 20 69 74 20 63 61 6e 20 63 6f 6d 6d 75 6e 69 | interface.so.that.it.can.communi |
| a8a40 | 63 61 74 65 20 77 69 74 68 20 50 49 4d 76 36 20 6e 65 69 67 68 62 6f 72 73 2e 20 54 68 69 73 20 | cate.with.PIMv6.neighbors..This. |
| a8a60 | 63 6f 6d 6d 61 6e 64 20 61 6c 73 6f 20 65 6e 61 62 6c 65 73 20 4d 4c 44 20 72 65 70 6f 72 74 73 | command.also.enables.MLD.reports |
| a8a80 | 20 61 6e 64 20 71 75 65 72 79 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 75 6e 6c 65 | .and.query.on.the.interface.unle |
| a8aa0 | 73 73 20 3a 63 66 67 63 6d 64 3a 60 6d 6c 64 20 64 69 73 61 62 6c 65 60 20 69 73 20 63 6f 6e 66 | ss.:cfgcmd:`mld.disable`.is.conf |
| a8ac0 | 69 67 75 72 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 | igured..Use.this.command.to.enab |
| a8ae0 | 6c 65 20 61 63 71 75 69 73 69 74 69 6f 6e 20 6f 66 20 49 50 76 36 20 61 64 64 72 65 73 73 20 75 | le.acquisition.of.IPv6.address.u |
| a8b00 | 73 69 6e 67 20 73 74 61 74 65 6c 65 73 73 20 61 75 74 6f 63 6f 6e 66 69 67 20 28 53 4c 41 41 43 | sing.stateless.autoconfig.(SLAAC |
| a8b20 | 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 62 61 | )..Use.this.command.to.enable.ba |
| a8b40 | 6e 64 77 69 64 74 68 20 73 68 61 70 69 6e 67 20 76 69 61 20 52 41 44 49 55 53 2e 00 55 73 65 20 | ndwidth.shaping.via.RADIUS..Use. |
| a8b60 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 70 72 6f 78 79 20 41 64 64 | this.command.to.enable.proxy.Add |
| a8b80 | 72 65 73 73 20 52 65 73 6f 6c 75 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 20 28 41 52 50 29 20 6f | ress.Resolution.Protocol.(ARP).o |
| a8ba0 | 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 20 50 72 6f 78 79 20 41 52 50 20 61 6c 6c 6f | n.this.interface..Proxy.ARP.allo |
| a8bc0 | 77 73 20 61 6e 20 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 72 65 73 70 | ws.an.Ethernet.interface.to.resp |
| a8be0 | 6f 6e 64 20 77 69 74 68 20 69 74 73 20 6f 77 6e 20 3a 61 62 62 72 3a 60 4d 41 43 20 28 4d 65 64 | ond.with.its.own.:abbr:`MAC.(Med |
| a8c00 | 69 61 20 41 63 63 65 73 73 20 43 6f 6e 74 72 6f 6c 29 60 20 61 64 64 72 65 73 73 20 74 6f 20 41 | ia.Access.Control)`.address.to.A |
| a8c20 | 52 50 20 72 65 71 75 65 73 74 73 20 66 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 | RP.requests.for.destination.IP.a |
| a8c40 | 64 64 72 65 73 73 65 73 20 6f 6e 20 73 75 62 6e 65 74 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 | ddresses.on.subnets.attached.to. |
| a8c60 | 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 73 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 20 | other.interfaces.on.the.system.. |
| a8c80 | 53 75 62 73 65 71 75 65 6e 74 20 70 61 63 6b 65 74 73 20 73 65 6e 74 20 74 6f 20 74 68 6f 73 65 | Subsequent.packets.sent.to.those |
| a8ca0 | 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 66 6f | .destination.IP.addresses.are.fo |
| a8cc0 | 72 77 61 72 64 65 64 20 61 70 70 72 6f 70 72 69 61 74 65 6c 79 20 62 79 20 74 68 65 20 73 79 73 | rwarded.appropriately.by.the.sys |
| a8ce0 | 74 65 6d 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 | tem..Use.this.command.to.enable. |
| a8d00 | 74 61 72 67 65 74 65 64 20 4c 44 50 20 73 65 73 73 69 6f 6e 73 20 74 6f 20 74 68 65 20 6c 6f 63 | targeted.LDP.sessions.to.the.loc |
| a8d20 | 61 6c 20 72 6f 75 74 65 72 2e 20 54 68 65 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 74 68 65 6e 20 | al.router..The.router.will.then. |
| a8d40 | 72 65 73 70 6f 6e 64 20 74 6f 20 61 6e 79 20 73 65 73 73 69 6f 6e 73 20 74 68 61 74 20 61 72 65 | respond.to.any.sessions.that.are |
| a8d60 | 20 74 72 79 69 6e 67 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 69 74 20 74 68 61 74 20 61 72 | .trying.to.connect.to.it.that.ar |
| a8d80 | 65 20 6e 6f 74 20 61 20 6c 69 6e 6b 20 6c 6f 63 61 6c 20 74 79 70 65 20 6f 66 20 54 43 50 20 63 | e.not.a.link.local.type.of.TCP.c |
| a8da0 | 6f 6e 6e 65 63 74 69 6f 6e 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 | onnection..Use.this.command.to.e |
| a8dc0 | 6e 61 62 6c 65 20 74 68 65 20 64 65 6c 61 79 20 6f 66 20 50 41 44 4f 20 28 50 50 50 6f 45 20 41 | nable.the.delay.of.PADO.(PPPoE.A |
| a8de0 | 63 74 69 76 65 20 44 69 73 63 6f 76 65 72 79 20 4f 66 66 65 72 29 20 70 61 63 6b 65 74 73 2c 20 | ctive.Discovery.Offer).packets,. |
| a8e00 | 77 68 69 63 68 20 63 61 6e 20 62 65 20 75 73 65 64 20 61 73 20 61 20 73 65 73 73 69 6f 6e 20 62 | which.can.be.used.as.a.session.b |
| a8e20 | 61 6c 61 6e 63 69 6e 67 20 6d 65 63 68 61 6e 69 73 6d 20 77 69 74 68 20 6f 74 68 65 72 20 50 50 | alancing.mechanism.with.other.PP |
| a8e40 | 50 6f 45 20 73 65 72 76 65 72 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | PoE.servers..Use.this.command.to |
| a8e60 | 20 65 6e 61 62 6c 65 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 74 6f 20 74 72 79 20 | .enable.the.local.router.to.try. |
| a8e80 | 61 6e 64 20 63 6f 6e 6e 65 63 74 20 77 69 74 68 20 61 20 74 61 72 67 65 74 65 64 20 4c 44 50 20 | and.connect.with.a.targeted.LDP. |
| a8ea0 | 73 65 73 73 69 6f 6e 20 74 6f 20 61 6e 6f 74 68 65 72 20 72 6f 75 74 65 72 2e 00 55 73 65 20 74 | session.to.another.router..Use.t |
| a8ec0 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 74 68 65 20 6c 6f 67 67 69 6e | his.command.to.enable.the.loggin |
| a8ee0 | 67 20 6f 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 6f 6e 20 63 75 73 74 6f | g.of.the.default.action.on.custo |
| a8f00 | 6d 20 63 68 61 69 6e 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e | m.chains..Use.this.command.to.en |
| a8f20 | 61 62 6c 65 20 74 68 65 20 6c 6f 67 67 69 6e 67 20 6f 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 | able.the.logging.of.the.default. |
| a8f40 | 61 63 74 69 6f 6e 20 6f 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 63 68 61 69 6e 2e 00 55 | action.on.the.specified.chain..U |
| a8f60 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 74 68 65 20 6c 6f | se.this.command.to.enable.the.lo |
| a8f80 | 67 67 69 6e 67 20 6f 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 2e 00 55 73 65 | gging.of.the.default.action..Use |
| a8fa0 | 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 2c 20 64 69 73 61 62 6c 65 | .this.command.to.enable,.disable |
| a8fc0 | 2c 20 6f 72 20 73 70 65 63 69 66 79 20 68 6f 70 20 63 6f 75 6e 74 20 66 6f 72 20 54 54 4c 20 73 | ,.or.specify.hop.count.for.TTL.s |
| a8fe0 | 65 63 75 72 69 74 79 20 66 6f 72 20 4c 44 50 20 70 65 65 72 73 2e 20 42 79 20 64 65 66 61 75 6c | ecurity.for.LDP.peers..By.defaul |
| a9000 | 74 20 74 68 65 20 76 61 6c 75 65 20 69 73 20 73 65 74 20 74 6f 20 32 35 35 20 28 6f 72 20 6d 61 | t.the.value.is.set.to.255.(or.ma |
| a9020 | 78 20 54 54 4c 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 66 6c 75 73 | x.TTL)..Use.this.command.to.flus |
| a9040 | 68 20 74 68 65 20 6b 65 72 6e 65 6c 20 49 50 76 36 20 72 6f 75 74 65 20 63 61 63 68 65 2e 20 41 | h.the.kernel.IPv6.route.cache..A |
| a9060 | 6e 20 61 64 64 72 65 73 73 20 63 61 6e 20 62 65 20 61 64 64 65 64 20 74 6f 20 66 6c 75 73 68 20 | n.address.can.be.added.to.flush. |
| a9080 | 69 74 20 6f 6e 6c 79 20 66 6f 72 20 74 68 61 74 20 72 6f 75 74 65 2e 00 55 73 65 20 74 68 69 73 | it.only.for.that.route..Use.this |
| a90a0 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 67 65 74 20 61 6e 20 6f 76 65 72 76 69 65 77 20 6f 66 20 61 | .command.to.get.an.overview.of.a |
| a90c0 | 20 7a 6f 6e 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 67 65 74 20 69 | .zone..Use.this.command.to.get.i |
| a90e0 | 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 4f 53 50 46 76 33 2e 00 55 73 65 20 74 68 69 | nformation.about.OSPFv3..Use.thi |
| a9100 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 67 65 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f | s.command.to.get.information.abo |
| a9120 | 75 74 20 74 68 65 20 52 49 50 4e 47 20 70 72 6f 74 6f 63 6f 6c 00 55 73 65 20 74 68 69 73 20 63 | ut.the.RIPNG.protocol.Use.this.c |
| a9140 | 6f 6d 6d 61 6e 64 20 74 6f 20 69 6e 73 74 72 75 63 74 20 74 68 65 20 73 79 73 74 65 6d 20 74 6f | ommand.to.instruct.the.system.to |
| a9160 | 20 65 73 74 61 62 6c 69 73 68 20 61 20 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 61 75 | .establish.a.PPPoE.connection.au |
| a9180 | 74 6f 6d 61 74 69 63 61 6c 6c 79 20 6f 6e 63 65 20 74 72 61 66 66 69 63 20 70 61 73 73 65 73 20 | tomatically.once.traffic.passes. |
| a91a0 | 74 68 72 6f 75 67 68 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 41 20 64 69 73 61 62 6c 65 | through.the.interface..A.disable |
| a91c0 | 64 20 6f 6e 2d 64 65 6d 61 6e 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 65 73 74 61 62 6c | d.on-demand.connection.is.establ |
| a91e0 | 69 73 68 65 64 20 61 74 20 62 6f 6f 74 20 74 69 6d 65 20 61 6e 64 20 72 65 6d 61 69 6e 73 20 75 | ished.at.boot.time.and.remains.u |
| a9200 | 70 2e 20 49 66 20 74 68 65 20 6c 69 6e 6b 20 66 61 69 6c 73 20 66 6f 72 20 61 6e 79 20 72 65 61 | p..If.the.link.fails.for.any.rea |
| a9220 | 73 6f 6e 2c 20 74 68 65 20 6c 69 6e 6b 20 69 73 20 62 72 6f 75 67 68 74 20 62 61 63 6b 20 75 70 | son,.the.link.is.brought.back.up |
| a9240 | 20 69 6d 6d 65 64 69 61 74 65 6c 79 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 | .immediately..Use.this.command.t |
| a9260 | 6f 20 6c 69 6e 6b 20 74 68 65 20 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f 20 61 | o.link.the.PPPoE.connection.to.a |
| a9280 | 20 70 68 79 73 69 63 61 6c 20 69 6e 74 65 72 66 61 63 65 2e 20 45 61 63 68 20 50 50 50 6f 45 20 | .physical.interface..Each.PPPoE. |
| a92a0 | 63 6f 6e 6e 65 63 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 65 73 74 61 62 6c 69 73 68 65 64 20 6f | connection.must.be.established.o |
| a92c0 | 76 65 72 20 61 20 70 68 79 73 69 63 61 6c 20 69 6e 74 65 72 66 61 63 65 2e 20 49 6e 74 65 72 66 | ver.a.physical.interface..Interf |
| a92e0 | 61 63 65 73 20 63 61 6e 20 62 65 20 72 65 67 75 6c 61 72 20 45 74 68 65 72 6e 65 74 20 69 6e 74 | aces.can.be.regular.Ethernet.int |
| a9300 | 65 72 66 61 63 65 73 2c 20 56 49 46 73 20 6f 72 20 62 6f 6e 64 69 6e 67 20 69 6e 74 65 72 66 61 | erfaces,.VIFs.or.bonding.interfa |
| a9320 | 63 65 73 2f 56 49 46 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6c 6f | ces/VIFs..Use.this.command.to.lo |
| a9340 | 63 61 6c 6c 79 20 63 68 65 63 6b 20 74 68 65 20 61 63 74 69 76 65 20 73 65 73 73 69 6f 6e 73 20 | cally.check.the.active.sessions. |
| a9360 | 69 6e 20 74 68 65 20 49 50 6f 45 20 73 65 72 76 65 72 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d | in.the.IPoE.server..Use.this.com |
| a9380 | 6d 61 6e 64 20 74 6f 20 6c 6f 63 61 6c 6c 79 20 63 68 65 63 6b 20 74 68 65 20 61 63 74 69 76 65 | mand.to.locally.check.the.active |
| a93a0 | 20 73 65 73 73 69 6f 6e 73 20 69 6e 20 74 68 65 20 50 50 50 6f 45 20 73 65 72 76 65 72 2e 00 55 | .sessions.in.the.PPPoE.server..U |
| a93c0 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6c 6f 63 61 6c 6c 79 20 63 68 65 63 6b | se.this.command.to.locally.check |
| a93e0 | 20 74 68 65 20 61 63 74 69 76 65 20 73 65 73 73 69 6f 6e 73 20 69 6e 20 74 68 65 20 50 50 54 50 | .the.active.sessions.in.the.PPTP |
| a9400 | 20 73 65 72 76 65 72 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6c 6f 63 | .server..Use.this.command.to.loc |
| a9420 | 61 6c 6c 79 20 63 68 65 63 6b 20 74 68 65 20 61 63 74 69 76 65 20 73 65 73 73 69 6f 6e 73 20 69 | ally.check.the.active.sessions.i |
| a9440 | 6e 20 74 68 65 20 53 53 54 50 20 73 65 72 76 65 72 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d | n.the.SSTP.server..Use.this.comm |
| a9460 | 61 6e 64 20 74 6f 20 6d 61 6e 75 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 65 6e 64 | and.to.manually.configure.a.Rend |
| a9480 | 65 7a 76 6f 75 73 20 50 6f 69 6e 74 20 66 6f 72 20 50 49 4d 20 73 6f 20 74 68 61 74 20 6a 6f 69 | ezvous.Point.for.PIM.so.that.joi |
| a94a0 | 6e 20 6d 65 73 73 61 67 65 73 20 63 61 6e 20 62 65 20 73 65 6e 74 20 74 68 65 72 65 2e 20 53 65 | n.messages.can.be.sent.there..Se |
| a94c0 | 74 20 74 68 65 20 52 65 6e 64 65 76 6f 75 7a 20 50 6f 69 6e 74 20 61 64 64 72 65 73 73 20 61 6e | t.the.Rendevouz.Point.address.an |
| a94e0 | 64 20 74 68 65 20 6d 61 74 63 68 69 6e 67 20 70 72 65 66 69 78 20 6f 66 20 67 72 6f 75 70 20 72 | d.the.matching.prefix.of.group.r |
| a9500 | 61 6e 67 65 73 20 63 6f 76 65 72 65 64 2e 20 54 68 65 73 65 20 76 61 6c 75 65 73 20 6d 75 73 74 | anges.covered..These.values.must |
| a9520 | 20 62 65 20 73 68 61 72 65 64 20 77 69 74 68 20 65 76 65 72 79 20 72 6f 75 74 65 72 20 70 61 72 | .be.shared.with.every.router.par |
| a9540 | 74 69 63 69 70 61 74 69 6e 67 20 69 6e 20 74 68 65 20 50 49 4d 20 6e 65 74 77 6f 72 6b 2e 00 55 | ticipating.in.the.PIM.network..U |
| a9560 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6e 6f 74 20 69 6e 73 74 61 6c 6c 20 61 | se.this.command.to.not.install.a |
| a9580 | 64 76 65 72 74 69 73 65 64 20 44 4e 53 20 6e 61 6d 65 73 65 72 76 65 72 73 20 69 6e 74 6f 20 74 | dvertised.DNS.nameservers.into.t |
| a95a0 | 68 65 20 6c 6f 63 61 6c 20 73 79 73 74 65 6d 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | he.local.system..Use.this.comman |
| a95c0 | 64 20 74 6f 20 70 72 65 66 65 72 20 49 50 76 34 20 66 6f 72 20 54 43 50 20 70 65 65 72 20 74 72 | d.to.prefer.IPv4.for.TCP.peer.tr |
| a95e0 | 61 6e 73 70 6f 72 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 66 6f 72 20 4c 44 50 20 77 68 65 6e 20 | ansport.connection.for.LDP.when. |
| a9600 | 62 6f 74 68 20 61 6e 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 4c 44 50 20 61 64 64 72 65 73 | both.an.IPv4.and.IPv6.LDP.addres |
| a9620 | 73 20 61 72 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 74 68 65 20 73 61 6d 65 20 69 6e 74 | s.are.configured.on.the.same.int |
| a9640 | 65 72 66 61 63 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 72 65 73 65 | erface..Use.this.command.to.rese |
| a9660 | 74 20 49 50 76 36 20 4e 65 69 67 68 62 6f 72 20 44 69 73 63 6f 76 65 72 79 20 50 72 6f 74 6f 63 | t.IPv6.Neighbor.Discovery.Protoc |
| a9680 | 6f 6c 20 63 61 63 68 65 20 66 6f 72 20 61 6e 20 61 64 64 72 65 73 73 20 6f 72 20 69 6e 74 65 72 | ol.cache.for.an.address.or.inter |
| a96a0 | 66 61 63 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 72 65 73 65 74 20 | face..Use.this.command.to.reset. |
| a96c0 | 61 6e 20 4c 44 50 20 6e 65 69 67 68 62 6f 72 2f 54 43 50 20 73 65 73 73 69 6f 6e 20 74 68 61 74 | an.LDP.neighbor/TCP.session.that |
| a96e0 | 20 69 73 20 65 73 74 61 62 6c 69 73 68 65 64 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 | .is.established.Use.this.command |
| a9700 | 20 74 6f 20 72 65 73 65 74 20 74 68 65 20 4f 70 65 6e 56 50 4e 20 70 72 6f 63 65 73 73 20 6f 6e | .to.reset.the.OpenVPN.process.on |
| a9720 | 20 61 20 73 70 65 63 69 66 69 63 20 69 6e 74 65 72 66 61 63 65 2e 00 55 73 65 20 74 68 69 73 20 | .a.specific.interface..Use.this. |
| a9740 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 72 65 73 65 74 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 4f | command.to.reset.the.specified.O |
| a9760 | 70 65 6e 56 50 4e 20 63 6c 69 65 6e 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | penVPN.client..Use.this.command. |
| a9780 | 74 6f 20 72 65 73 74 72 69 63 74 20 74 68 65 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e 20 6f 6e | to.restrict.the.PPPoE.session.on |
| a97a0 | 20 61 20 67 69 76 65 6e 20 61 63 63 65 73 73 20 63 6f 6e 63 65 6e 74 72 61 74 6f 72 2e 20 4e 6f | .a.given.access.concentrator..No |
| a97c0 | 72 6d 61 6c 6c 79 2c 20 61 20 68 6f 73 74 20 73 65 6e 64 73 20 61 20 50 50 50 6f 45 20 69 6e 69 | rmally,.a.host.sends.a.PPPoE.ini |
| a97e0 | 74 69 61 74 69 6f 6e 20 70 61 63 6b 65 74 20 74 6f 20 73 74 61 72 74 20 74 68 65 20 50 50 50 6f | tiation.packet.to.start.the.PPPo |
| a9800 | 45 20 64 69 73 63 6f 76 65 72 79 20 70 72 6f 63 65 73 73 2c 20 61 20 6e 75 6d 62 65 72 20 6f 66 | E.discovery.process,.a.number.of |
| a9820 | 20 61 63 63 65 73 73 20 63 6f 6e 63 65 6e 74 72 61 74 6f 72 73 20 72 65 73 70 6f 6e 64 20 77 69 | .access.concentrators.respond.wi |
| a9840 | 74 68 20 6f 66 66 65 72 20 70 61 63 6b 65 74 73 20 61 6e 64 20 74 68 65 20 68 6f 73 74 20 73 65 | th.offer.packets.and.the.host.se |
| a9860 | 6c 65 63 74 73 20 6f 6e 65 20 6f 66 20 74 68 65 20 72 65 73 70 6f 6e 64 69 6e 67 20 61 63 63 65 | lects.one.of.the.responding.acce |
| a9880 | 73 73 20 63 6f 6e 63 65 6e 74 72 61 74 6f 72 73 20 74 6f 20 73 65 72 76 65 20 74 68 69 73 20 73 | ss.concentrators.to.serve.this.s |
| a98a0 | 65 73 73 69 6f 6e 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 65 20 | ession..Use.this.command.to.see. |
| a98c0 | 4c 44 50 20 69 6e 74 65 72 66 61 63 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 00 55 73 65 20 74 68 | LDP.interface.information.Use.th |
| a98e0 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 65 20 4c 44 50 20 6e 65 69 67 68 62 6f 72 20 69 | is.command.to.see.LDP.neighbor.i |
| a9900 | 6e 66 6f 72 6d 61 74 69 6f 6e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 | nformation.Use.this.command.to.s |
| a9920 | 65 65 20 64 65 74 61 69 6c 65 64 20 4c 44 50 20 6e 65 69 67 68 62 6f 72 20 69 6e 66 6f 72 6d 61 | ee.detailed.LDP.neighbor.informa |
| a9940 | 74 69 6f 6e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 65 20 64 69 73 | tion.Use.this.command.to.see.dis |
| a9960 | 63 6f 76 65 72 79 20 68 65 6c 6c 6f 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 00 55 73 65 20 74 68 69 | covery.hello.information.Use.thi |
| a9980 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 65 20 74 68 65 20 4c 61 62 65 6c 20 49 6e 66 6f 72 | s.command.to.see.the.Label.Infor |
| a99a0 | 6d 61 74 69 6f 6e 20 42 61 73 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | mation.Base..Use.this.command.to |
| a99c0 | 20 73 65 74 20 61 20 6e 61 6d 65 20 66 6f 72 20 74 68 69 73 20 50 50 50 6f 45 2d 73 65 72 76 65 | .set.a.name.for.this.PPPoE-serve |
| a99e0 | 72 20 61 63 63 65 73 73 20 63 6f 6e 63 65 6e 74 72 61 74 6f 72 2e 00 55 73 65 20 74 68 69 73 20 | r.access.concentrator..Use.this. |
| a9a00 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 20 72 65 2d 64 69 61 6c 20 64 65 6c 61 79 20 74 69 6d | command.to.set.re-dial.delay.tim |
| a9a20 | 65 20 74 6f 20 62 65 20 75 73 65 64 20 77 69 74 68 20 70 65 72 73 69 73 74 20 50 50 50 6f 45 20 | e.to.be.used.with.persist.PPPoE. |
| a9a40 | 73 65 73 73 69 6f 6e 73 2e 20 57 68 65 6e 20 74 68 65 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e | sessions..When.the.PPPoE.session |
| a9a60 | 20 69 73 20 74 65 72 6d 69 6e 61 74 65 64 20 62 79 20 70 65 65 72 2c 20 61 6e 64 20 6f 6e 2d 64 | .is.terminated.by.peer,.and.on-d |
| a9a80 | 65 6d 61 6e 64 20 6f 70 74 69 6f 6e 20 69 73 20 6e 6f 74 20 73 65 74 2c 20 74 68 65 20 72 6f 75 | emand.option.is.not.set,.the.rou |
| a9aa0 | 74 65 72 20 77 69 6c 6c 20 61 74 74 65 6d 70 74 20 74 6f 20 72 65 2d 65 73 74 61 62 6c 69 73 68 | ter.will.attempt.to.re-establish |
| a9ac0 | 20 74 68 65 20 50 50 50 6f 45 20 6c 69 6e 6b 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | .the.PPPoE.link..Use.this.comman |
| a9ae0 | 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 6c | d.to.set.the.IP.address.of.the.l |
| a9b00 | 6f 63 61 6c 20 65 6e 64 70 6f 69 6e 74 20 6f 66 20 61 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e | ocal.endpoint.of.a.PPPoE.session |
| a9b20 | 2e 20 49 66 20 69 74 20 69 73 20 6e 6f 74 20 73 65 74 20 69 74 20 77 69 6c 6c 20 62 65 20 6e 65 | ..If.it.is.not.set.it.will.be.ne |
| a9b40 | 67 6f 74 69 61 74 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 | gotiated..Use.this.command.to.se |
| a9b60 | 74 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 72 65 6d 6f 74 65 20 65 | t.the.IP.address.of.the.remote.e |
| a9b80 | 6e 64 70 6f 69 6e 74 20 6f 66 20 61 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e 2e 20 49 66 20 69 | ndpoint.of.a.PPPoE.session..If.i |
| a9ba0 | 74 20 69 73 20 6e 6f 74 20 73 65 74 20 69 74 20 77 69 6c 6c 20 62 65 20 6e 65 67 6f 74 69 61 74 | t.is.not.set.it.will.be.negotiat |
| a9bc0 | 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 | ed..Use.this.command.to.set.the. |
| a9be0 | 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 20 6f 66 20 65 76 65 72 79 20 44 6f | IPv4.or.IPv6.address.of.every.Do |
| a9c00 | 6d 61 6e 20 4e 61 6d 65 20 53 65 72 76 65 72 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 63 6f 6e 66 | man.Name.Server.you.want.to.conf |
| a9c20 | 69 67 75 72 65 2e 20 54 68 65 79 20 77 69 6c 6c 20 62 65 20 70 72 6f 70 61 67 61 74 65 64 20 74 | igure..They.will.be.propagated.t |
| a9c40 | 6f 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | o.PPPoE.clients..Use.this.comman |
| a9c60 | 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 74 72 61 6e 73 70 | d.to.set.the.IPv4.or.IPv6.transp |
| a9c80 | 6f 72 74 2d 61 64 64 72 65 73 73 20 75 73 65 64 20 62 79 20 4c 44 50 2e 00 55 73 65 20 74 68 69 | ort-address.used.by.LDP..Use.thi |
| a9ca0 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 69 64 6c 65 20 74 69 6d 65 6f 75 | s.command.to.set.the.idle.timeou |
| a9cc0 | 74 20 69 6e 74 65 72 76 61 6c 20 74 6f 20 62 65 20 75 73 65 64 20 77 69 74 68 20 6f 6e 2d 64 65 | t.interval.to.be.used.with.on-de |
| a9ce0 | 6d 61 6e 64 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e 73 2e 20 57 68 65 6e 20 61 6e 20 6f 6e 2d | mand.PPPoE.sessions..When.an.on- |
| a9d00 | 64 65 6d 61 6e 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 65 73 74 61 62 6c 69 73 68 65 64 | demand.connection.is.established |
| a9d20 | 2c 20 74 68 65 20 6c 69 6e 6b 20 69 73 20 62 72 6f 75 67 68 74 20 75 70 20 6f 6e 6c 79 20 77 68 | ,.the.link.is.brought.up.only.wh |
| a9d40 | 65 6e 20 74 72 61 66 66 69 63 20 69 73 20 73 65 6e 74 20 61 6e 64 20 69 73 20 64 69 73 61 62 6c | en.traffic.is.sent.and.is.disabl |
| a9d60 | 65 64 20 77 68 65 6e 20 74 68 65 20 6c 69 6e 6b 20 69 73 20 69 64 6c 65 20 66 6f 72 20 74 68 65 | ed.when.the.link.is.idle.for.the |
| a9d80 | 20 69 6e 74 65 72 76 61 6c 20 73 70 65 63 69 66 69 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f | .interval.specified..Use.this.co |
| a9da0 | 6d 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 70 61 73 73 77 6f 72 64 20 66 6f 72 20 61 75 | mmand.to.set.the.password.for.au |
| a9dc0 | 74 68 65 6e 74 69 63 61 74 69 6e 67 20 77 69 74 68 20 61 20 72 65 6d 6f 74 65 20 50 50 50 6f 45 | thenticating.with.a.remote.PPPoE |
| a9de0 | 20 65 6e 64 70 6f 69 6e 74 2e 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 69 73 20 6f 70 74 | .endpoint..Authentication.is.opt |
| a9e00 | 69 6f 6e 61 6c 20 66 72 6f 6d 20 74 68 65 20 73 79 73 74 65 6d 27 73 20 70 6f 69 6e 74 20 6f 66 | ional.from.the.system's.point.of |
| a9e20 | 20 76 69 65 77 20 62 75 74 20 6d 6f 73 74 20 73 65 72 76 69 63 65 20 70 72 6f 76 69 64 65 72 73 | .view.but.most.service.providers |
| a9e40 | 20 72 65 71 75 69 72 65 20 69 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | .require.it..Use.this.command.to |
| a9e60 | 20 73 65 74 20 74 68 65 20 74 61 72 67 65 74 20 74 6f 20 75 73 65 2e 20 41 63 74 69 6f 6e 20 71 | .set.the.target.to.use..Action.q |
| a9e80 | 75 65 75 65 20 6d 75 73 74 20 62 65 20 64 65 66 69 6e 65 64 20 74 6f 20 75 73 65 20 74 68 69 73 | ueue.must.be.defined.to.use.this |
| a9ea0 | 20 73 65 74 74 69 6e 67 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 | .setting.Use.this.command.to.set |
| a9ec0 | 20 74 68 65 20 75 73 65 72 6e 61 6d 65 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 | .the.username.for.authenticating |
| a9ee0 | 20 77 69 74 68 20 61 20 72 65 6d 6f 74 65 20 50 50 50 6f 45 20 65 6e 64 70 6f 69 6e 74 2e 20 41 | .with.a.remote.PPPoE.endpoint..A |
| a9f00 | 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 69 73 20 6f 70 74 69 6f 6e 61 6c 20 66 72 6f 6d 20 74 | uthentication.is.optional.from.t |
| a9f20 | 68 65 20 73 79 73 74 65 6d 27 73 20 70 6f 69 6e 74 20 6f 66 20 76 69 65 77 20 62 75 74 20 6d 6f | he.system's.point.of.view.but.mo |
| a9f40 | 73 74 20 73 65 72 76 69 63 65 20 70 72 6f 76 69 64 65 72 73 20 72 65 71 75 69 72 65 20 69 74 2e | st.service.providers.require.it. |
| a9f60 | 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 68 6f 77 20 49 50 76 36 20 42 | .Use.this.command.to.show.IPv6.B |
| a9f80 | 6f 72 64 65 72 20 47 61 74 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c 20 69 6e 66 6f 72 6d 61 74 69 | order.Gateway.Protocol.informati |
| a9fa0 | 6f 6e 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 68 6f 77 20 49 50 76 | on..Use.this.command.to.show.IPv |
| a9fc0 | 36 20 4e 65 69 67 68 62 6f 72 20 44 69 73 63 6f 76 65 72 79 20 50 72 6f 74 6f 63 6f 6c 20 69 6e | 6.Neighbor.Discovery.Protocol.in |
| a9fe0 | 66 6f 72 6d 61 74 69 6f 6e 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 | formation..Use.this.command.to.s |
| aa000 | 68 6f 77 20 49 50 76 36 20 66 6f 72 77 61 72 64 69 6e 67 20 73 74 61 74 75 73 2e 00 55 73 65 20 | how.IPv6.forwarding.status..Use. |
| aa020 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 68 6f 77 20 49 50 76 36 20 6d 75 6c 74 69 63 | this.command.to.show.IPv6.multic |
| aa040 | 61 73 74 20 67 72 6f 75 70 20 6d 65 6d 62 65 72 73 68 69 70 2e 00 55 73 65 20 74 68 69 73 20 63 | ast.group.membership..Use.this.c |
| aa060 | 6f 6d 6d 61 6e 64 20 74 6f 20 73 68 6f 77 20 49 50 76 36 20 72 6f 75 74 65 73 2e 00 55 73 65 20 | ommand.to.show.IPv6.routes..Use. |
| aa080 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 68 6f 77 20 61 6c 6c 20 49 50 76 36 20 61 63 | this.command.to.show.all.IPv6.ac |
| aa0a0 | 63 65 73 73 20 6c 69 73 74 73 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 | cess.lists.Use.this.command.to.s |
| aa0c0 | 68 6f 77 20 61 6c 6c 20 49 50 76 36 20 70 72 65 66 69 78 20 6c 69 73 74 73 00 55 73 65 20 74 68 | how.all.IPv6.prefix.lists.Use.th |
| aa0e0 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 68 6f 77 20 74 68 65 20 73 74 61 74 75 73 20 6f 66 | is.command.to.show.the.status.of |
| aa100 | 20 74 68 65 20 52 49 50 4e 47 20 70 72 6f 74 6f 63 6f 6c 00 55 73 65 20 74 68 69 73 20 63 6f 6d | .the.RIPNG.protocol.Use.this.com |
| aa120 | 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 61 20 44 4e 53 20 73 65 72 76 65 72 20 66 6f 72 | mand.to.specify.a.DNS.server.for |
| aa140 | 20 74 68 65 20 73 79 73 74 65 6d 20 74 6f 20 62 65 20 75 73 65 64 20 66 6f 72 20 44 4e 53 20 6c | .the.system.to.be.used.for.DNS.l |
| aa160 | 6f 6f 6b 75 70 73 2e 20 4d 6f 72 65 20 74 68 61 6e 20 6f 6e 65 20 44 4e 53 20 73 65 72 76 65 72 | ookups..More.than.one.DNS.server |
| aa180 | 20 63 61 6e 20 62 65 20 61 64 64 65 64 2c 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 6f 6e 65 20 61 | .can.be.added,.configuring.one.a |
| aa1a0 | 74 20 61 20 74 69 6d 65 2e 20 42 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 64 64 | t.a.time..Both.IPv4.and.IPv6.add |
| aa1c0 | 72 65 73 73 65 73 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 | resses.are.supported..Use.this.c |
| aa1e0 | 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 61 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 | ommand.to.specify.a.domain.name. |
| aa200 | 74 6f 20 62 65 20 61 70 70 65 6e 64 65 64 20 74 6f 20 64 6f 6d 61 69 6e 2d 6e 61 6d 65 73 20 77 | to.be.appended.to.domain-names.w |
| aa220 | 69 74 68 69 6e 20 55 52 4c 73 20 74 68 61 74 20 64 6f 20 6e 6f 74 20 69 6e 63 6c 75 64 65 20 61 | ithin.URLs.that.do.not.include.a |
| aa240 | 20 64 6f 74 20 60 60 2e 60 60 20 74 68 65 20 64 6f 6d 61 69 6e 20 69 73 20 61 70 70 65 6e 64 65 | .dot.``.``.the.domain.is.appende |
| aa260 | 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 61 | d..Use.this.command.to.specify.a |
| aa280 | 20 73 65 72 76 69 63 65 20 6e 61 6d 65 20 62 79 20 77 68 69 63 68 20 74 68 65 20 6c 6f 63 61 6c | .service.name.by.which.the.local |
| aa2a0 | 20 50 50 50 6f 45 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 73 65 6c 65 63 74 20 61 63 63 65 | .PPPoE.interface.can.select.acce |
| aa2c0 | 73 73 20 63 6f 6e 63 65 6e 74 72 61 74 6f 72 73 20 74 6f 20 63 6f 6e 6e 65 63 74 20 77 69 74 68 | ss.concentrators.to.connect.with |
| aa2e0 | 2e 20 49 74 20 77 69 6c 6c 20 63 6f 6e 6e 65 63 74 20 74 6f 20 61 6e 79 20 61 63 63 65 73 73 20 | ..It.will.connect.to.any.access. |
| aa300 | 63 6f 6e 63 65 6e 74 72 61 74 6f 72 20 69 66 20 6e 6f 74 20 73 65 74 2e 00 55 73 65 20 74 68 69 | concentrator.if.not.set..Use.thi |
| aa320 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 75 73 65 20 4c 61 79 65 72 20 34 20 69 6e 66 6f 72 6d 61 | s.command.to.use.Layer.4.informa |
| aa340 | 74 69 6f 6e 20 66 6f 72 20 49 50 76 34 20 45 43 4d 50 20 68 61 73 68 69 6e 67 2e 00 55 73 65 20 | tion.for.IPv4.ECMP.hashing..Use. |
| aa360 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 75 73 65 20 61 20 43 69 73 63 6f 20 6e 6f 6e 2d | this.command.to.use.a.Cisco.non- |
| aa380 | 63 6f 6d 70 6c 69 61 6e 74 20 66 6f 72 6d 61 74 20 74 6f 20 73 65 6e 64 20 61 6e 64 20 69 6e 74 | compliant.format.to.send.and.int |
| aa3a0 | 65 72 70 72 65 74 20 74 68 65 20 44 75 61 6c 2d 53 74 61 63 6b 20 63 61 70 61 62 69 6c 69 74 79 | erpret.the.Dual-Stack.capability |
| aa3c0 | 20 54 4c 56 20 66 6f 72 20 49 50 76 36 20 4c 44 50 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 73 | .TLV.for.IPv6.LDP.communications |
| aa3e0 | 2e 20 54 68 69 73 20 69 73 20 72 65 6c 61 74 65 64 20 74 6f 20 3a 72 66 63 3a 60 37 35 35 32 60 | ..This.is.related.to.:rfc:`7552` |
| aa400 | 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 75 73 65 20 6f 72 64 65 72 65 | ..Use.this.command.to.use.ordere |
| aa420 | 64 20 6c 61 62 65 6c 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 63 6f 6e 74 72 6f 6c 20 6d 6f 64 | d.label.distribution.control.mod |
| aa440 | 65 2e 20 46 52 52 20 62 79 20 64 65 66 61 75 6c 74 20 75 73 65 73 20 69 6e 64 65 70 65 6e 64 65 | e..FRR.by.default.uses.independe |
| aa460 | 6e 74 20 6c 61 62 65 6c 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 63 6f 6e 74 72 6f 6c 20 6d 6f | nt.label.distribution.control.mo |
| aa480 | 64 65 20 66 6f 72 20 6c 61 62 65 6c 20 64 69 73 74 72 69 62 75 74 69 6f 6e 2e 20 20 54 68 69 73 | de.for.label.distribution...This |
| aa4a0 | 20 69 73 20 72 65 6c 61 74 65 64 20 74 6f 20 3a 72 66 63 3a 60 35 30 33 36 60 2e 00 55 73 65 20 | .is.related.to.:rfc:`5036`..Use. |
| aa4c0 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 75 73 65 72 20 4c 61 79 65 72 20 34 20 69 6e 66 | this.command.to.user.Layer.4.inf |
| aa4e0 | 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 45 43 4d 50 20 68 61 73 68 69 6e 67 2e 00 55 73 65 20 74 | ormation.for.ECMP.hashing..Use.t |
| aa500 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 76 69 65 77 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 | his.command.to.view.operational. |
| aa520 | 73 74 61 74 75 73 20 61 6e 64 20 64 65 74 61 69 6c 73 20 77 69 72 65 6c 65 73 73 2d 73 70 65 63 | status.and.details.wireless-spec |
| aa540 | 69 66 69 63 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 61 6c 6c 20 77 69 72 65 6c | ific.information.about.all.wirel |
| aa560 | 65 73 73 20 69 6e 74 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 | ess.interfaces..Use.this.command |
| aa580 | 20 74 6f 20 76 69 65 77 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 73 74 61 74 75 73 20 61 6e 64 20 | .to.view.operational.status.and. |
| aa5a0 | 77 69 72 65 6c 65 73 73 2d 73 70 65 63 69 66 69 63 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 | wireless-specific.information.ab |
| aa5c0 | 6f 75 74 20 61 6c 6c 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 73 2e 00 55 73 65 | out.all.wireless.interfaces..Use |
| aa5e0 | 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 76 69 65 77 20 77 69 72 65 6c 65 73 73 20 69 | .this.command.to.view.wireless.i |
| aa600 | 6e 74 65 72 66 61 63 65 20 71 75 65 75 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 20 54 68 65 20 | nterface.queue.information..The. |
| aa620 | 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 63 61 | wireless.interface.identifier.ca |
| aa640 | 6e 20 72 61 6e 67 65 20 66 72 6f 6d 20 77 6c 61 6e 30 20 74 6f 20 77 6c 61 6e 39 39 39 2e 00 55 | n.range.from.wlan0.to.wlan999..U |
| aa660 | 73 65 64 20 66 6f 72 20 74 72 6f 75 62 6c 65 73 68 6f 6f 74 69 6e 67 2e 00 55 73 65 64 20 74 6f | sed.for.troubleshooting..Used.to |
| aa680 | 20 62 6c 6f 63 6b 20 61 20 73 70 65 63 69 66 69 63 20 6d 69 6d 65 2d 74 79 70 65 2e 00 55 73 65 | .block.a.specific.mime-type..Use |
| aa6a0 | 64 20 74 6f 20 62 6c 6f 63 6b 20 73 70 65 63 69 66 69 63 20 64 6f 6d 61 69 6e 73 20 62 79 20 74 | d.to.block.specific.domains.by.t |
| aa6c0 | 68 65 20 50 72 6f 78 79 2e 20 53 70 65 63 69 66 79 69 6e 67 20 22 76 79 6f 73 2e 6e 65 74 22 20 | he.Proxy..Specifying."vyos.net". |
| aa6e0 | 77 69 6c 6c 20 62 6c 6f 63 6b 20 61 6c 6c 20 61 63 63 65 73 73 20 74 6f 20 76 79 6f 73 2e 6e 65 | will.block.all.access.to.vyos.ne |
| aa700 | 74 2c 20 61 6e 64 20 73 70 65 63 69 66 79 69 6e 67 20 22 2e 78 78 78 22 20 77 69 6c 6c 20 62 6c | t,.and.specifying.".xxx".will.bl |
| aa720 | 6f 63 6b 20 61 6c 6c 20 61 63 63 65 73 73 20 74 6f 20 55 52 4c 73 20 68 61 76 69 6e 67 20 61 6e | ock.all.access.to.URLs.having.an |
| aa740 | 20 55 52 4c 20 65 6e 64 69 6e 67 20 6f 6e 20 2e 78 78 78 2e 00 55 73 65 72 20 69 6e 74 65 72 66 | .URL.ending.on..xxx..User.interf |
| aa760 | 61 63 65 20 63 61 6e 20 62 65 20 70 75 74 20 74 6f 20 56 52 46 20 63 6f 6e 74 65 78 74 20 76 69 | ace.can.be.put.to.VRF.context.vi |
| aa780 | 61 20 52 41 44 49 55 53 20 41 63 63 65 73 73 2d 41 63 63 65 70 74 20 70 61 63 6b 65 74 2c 20 6f | a.RADIUS.Access-Accept.packet,.o |
| aa7a0 | 72 20 63 68 61 6e 67 65 20 69 74 20 76 69 61 20 52 41 44 49 55 53 20 43 6f 41 2e 20 60 60 41 63 | r.change.it.via.RADIUS.CoA..``Ac |
| aa7c0 | 63 65 6c 2d 56 52 46 2d 4e 61 6d 65 60 60 20 69 73 20 75 73 65 64 20 66 72 6f 6d 20 74 68 65 73 | cel-VRF-Name``.is.used.from.thes |
| aa7e0 | 65 20 70 75 72 70 6f 73 65 73 2e 20 49 74 20 69 73 20 63 75 73 74 6f 6d 20 60 41 43 43 45 4c 2d | e.purposes..It.is.custom.`ACCEL- |
| aa800 | 50 50 50 20 61 74 74 72 69 62 75 74 65 60 5f 2e 20 44 65 66 69 6e 65 20 69 74 20 69 6e 20 79 6f | PPP.attribute`_..Define.it.in.yo |
| aa820 | 75 72 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 55 73 65 72 2d 6c 65 76 65 6c 20 6d 65 73 | ur.RADIUS.server..User-level.mes |
| aa840 | 73 61 67 65 73 00 55 73 69 6e 67 20 27 73 6f 66 74 2d 72 65 63 6f 6e 66 69 67 75 72 61 74 69 6f | sages.Using.'soft-reconfiguratio |
| aa860 | 6e 27 20 77 65 20 67 65 74 20 74 68 65 20 70 6f 6c 69 63 79 20 75 70 64 61 74 65 20 77 69 74 68 | n'.we.get.the.policy.update.with |
| aa880 | 6f 75 74 20 62 6f 75 6e 63 69 6e 67 20 74 68 65 20 6e 65 69 67 68 62 6f 72 2e 00 55 73 69 6e 67 | out.bouncing.the.neighbor..Using |
| aa8a0 | 20 2a 2a 6f 70 65 6e 76 70 6e 2d 6f 70 74 69 6f 6e 20 2d 72 65 6e 65 67 2d 73 65 63 2a 2a 20 63 | .**openvpn-option.-reneg-sec**.c |
| aa8c0 | 61 6e 20 62 65 20 74 72 69 63 6b 79 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 75 73 65 | an.be.tricky..This.option.is.use |
| aa8e0 | 64 20 74 6f 20 72 65 6e 65 67 6f 74 69 61 74 65 20 64 61 74 61 20 63 68 61 6e 6e 65 6c 20 61 66 | d.to.renegotiate.data.channel.af |
| aa900 | 74 65 72 20 6e 20 73 65 63 6f 6e 64 73 2e 20 57 68 65 6e 20 75 73 65 64 20 61 74 20 62 6f 74 68 | ter.n.seconds..When.used.at.both |
| aa920 | 20 73 65 72 76 65 72 20 61 6e 64 20 63 6c 69 65 6e 74 2c 20 74 68 65 20 6c 6f 77 65 72 20 76 61 | .server.and.client,.the.lower.va |
| aa940 | 6c 75 65 20 77 69 6c 6c 20 74 72 69 67 67 65 72 20 74 68 65 20 72 65 6e 65 67 6f 74 69 61 74 69 | lue.will.trigger.the.renegotiati |
| aa960 | 6f 6e 2e 20 49 66 20 79 6f 75 20 73 65 74 20 69 74 20 74 6f 20 30 20 6f 6e 20 6f 6e 65 20 73 69 | on..If.you.set.it.to.0.on.one.si |
| aa980 | 64 65 20 6f 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 28 74 6f 20 64 69 73 61 62 6c 65 | de.of.the.connection.(to.disable |
| aa9a0 | 20 69 74 29 2c 20 74 68 65 20 63 68 6f 73 65 6e 20 76 61 6c 75 65 20 6f 6e 20 74 68 65 20 6f 74 | .it),.the.chosen.value.on.the.ot |
| aa9c0 | 68 65 72 20 73 69 64 65 20 77 69 6c 6c 20 64 65 74 65 72 6d 69 6e 65 20 77 68 65 6e 20 74 68 65 | her.side.will.determine.when.the |
| aa9e0 | 20 72 65 6e 65 67 6f 74 69 61 74 69 6f 6e 20 77 69 6c 6c 20 6f 63 63 75 72 2e 00 55 73 69 6e 67 | .renegotiation.will.occur..Using |
| aaa00 | 20 2a 2a 6f 70 65 6e 76 70 6e 2d 6f 70 74 69 6f 6e 20 2d 72 65 6e 65 67 2d 73 65 63 2a 2a 20 63 | .**openvpn-option.-reneg-sec**.c |
| aaa20 | 61 6e 20 62 65 20 74 72 69 63 6b 79 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 75 73 65 | an.be.tricky..This.option.is.use |
| aaa40 | 64 20 74 6f 20 72 65 6e 65 67 6f 74 69 61 74 65 20 64 61 74 61 20 63 68 61 6e 6e 65 6c 20 61 66 | d.to.renegotiate.data.channel.af |
| aaa60 | 74 65 72 20 6e 20 73 65 63 6f 6e 64 73 2e 20 57 68 65 6e 20 75 73 65 64 20 6f 6e 20 62 6f 74 68 | ter.n.seconds..When.used.on.both |
| aaa80 | 20 74 68 65 20 73 65 72 76 65 72 20 61 6e 64 20 63 6c 69 65 6e 74 2c 20 74 68 65 20 6c 6f 77 65 | .the.server.and.client,.the.lowe |
| aaaa0 | 72 20 76 61 6c 75 65 20 77 69 6c 6c 20 74 72 69 67 67 65 72 20 74 68 65 20 72 65 6e 65 67 6f 74 | r.value.will.trigger.the.renegot |
| aaac0 | 69 61 74 69 6f 6e 2e 20 49 66 20 79 6f 75 20 73 65 74 20 69 74 20 74 6f 20 30 20 6f 6e 20 6f 6e | iation..If.you.set.it.to.0.on.on |
| aaae0 | 65 20 73 69 64 65 20 6f 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 28 74 6f 20 64 69 73 | e.side.of.the.connection.(to.dis |
| aab00 | 61 62 6c 65 20 69 74 29 2c 20 74 68 65 20 63 68 6f 73 65 6e 20 76 61 6c 75 65 20 6f 6e 20 74 68 | able.it),.the.chosen.value.on.th |
| aab20 | 65 20 6f 74 68 65 72 20 73 69 64 65 20 77 69 6c 6c 20 64 65 74 65 72 6d 69 6e 65 20 77 68 65 6e | e.other.side.will.determine.when |
| aab40 | 20 74 68 65 20 72 65 6e 65 67 6f 74 69 61 74 69 6f 6e 20 77 69 6c 6c 20 6f 63 63 75 72 2e 00 55 | .the.renegotiation.will.occur..U |
| aab60 | 73 69 6e 67 20 42 47 50 20 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e 00 55 73 69 6e 67 20 42 47 50 | sing.BGP.confederation.Using.BGP |
| aab80 | 20 72 6f 75 74 65 2d 72 65 66 6c 65 63 74 6f 72 73 00 55 73 69 6e 67 20 44 79 6e 61 6d 69 63 20 | .route-reflectors.Using.Dynamic. |
| aaba0 | 46 69 72 65 77 61 6c 6c 20 47 72 6f 75 70 73 00 55 73 69 6e 67 20 4e 65 74 46 6c 6f 77 20 6f 6e | Firewall.Groups.Using.NetFlow.on |
| aabc0 | 20 72 6f 75 74 65 72 73 20 77 69 74 68 20 68 69 67 68 20 74 72 61 66 66 69 63 20 6c 65 76 65 6c | .routers.with.high.traffic.level |
| aabe0 | 73 20 6d 61 79 20 6c 65 61 64 20 74 6f 20 68 69 67 68 20 43 50 55 20 75 73 61 67 65 20 61 6e 64 | s.may.lead.to.high.CPU.usage.and |
| aac00 | 20 6d 61 79 20 61 66 66 65 63 74 20 74 68 65 20 72 6f 75 74 65 72 27 73 20 70 65 72 66 6f 72 6d | .may.affect.the.router's.perform |
| aac20 | 61 6e 63 65 2e 20 49 6e 20 73 75 63 68 20 63 61 73 65 73 2c 20 63 6f 6e 73 69 64 65 72 20 75 73 | ance..In.such.cases,.consider.us |
| aac40 | 69 6e 67 20 73 46 6c 6f 77 20 69 6e 73 74 65 61 64 2e 00 55 73 69 6e 67 20 56 4c 41 4e 20 61 77 | ing.sFlow.instead..Using.VLAN.aw |
| aac60 | 61 72 65 20 42 72 69 64 67 65 00 55 73 69 6e 67 20 61 64 64 72 65 73 73 20 61 6e 64 20 70 6f 72 | are.Bridge.Using.address.and.por |
| aac80 | 74 20 67 72 6f 75 70 73 20 61 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 6d 61 6b 65 20 79 6f 75 72 | t.groups.allows.you.to.make.your |
| aaca0 | 20 53 75 72 69 63 61 74 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 72 65 20 66 6c 65 | .Suricata.configuration.more.fle |
| aacc0 | 78 69 62 6c 65 20 61 6e 64 20 6d 61 6e 61 67 65 61 62 6c 65 2e 20 49 6e 73 74 65 61 64 20 6f 66 | xible.and.manageable..Instead.of |
| aace0 | 20 73 70 65 63 69 66 79 69 6e 67 20 49 50 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 70 6f 72 | .specifying.IP.addresses.and.por |
| aad00 | 74 73 20 64 69 72 65 63 74 6c 79 20 69 6e 20 65 61 63 68 20 72 75 6c 65 2c 20 79 6f 75 20 63 61 | ts.directly.in.each.rule,.you.ca |
| aad20 | 6e 20 64 65 66 69 6e 65 20 74 68 65 6d 20 6f 6e 63 65 20 69 6e 20 74 68 65 20 76 61 72 73 20 73 | n.define.them.once.in.the.vars.s |
| aad40 | 65 63 74 69 6f 6e 20 61 6e 64 20 74 68 65 6e 20 72 65 66 65 72 65 6e 63 65 20 74 68 65 6d 20 62 | ection.and.then.reference.them.b |
| aad60 | 79 20 67 72 6f 75 70 20 6e 61 6d 65 73 2e 20 54 68 69 73 20 69 73 20 65 73 70 65 63 69 61 6c 6c | y.group.names..This.is.especiall |
| aad80 | 79 20 75 73 65 66 75 6c 20 69 6e 20 6c 61 72 67 65 20 6e 65 74 77 6f 72 6b 73 20 61 6e 64 20 63 | y.useful.in.large.networks.and.c |
| aada0 | 6f 6d 70 6c 65 78 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 77 68 65 72 65 20 6d 75 6c 74 | omplex.configurations.where.mult |
| aadc0 | 69 70 6c 65 20 49 50 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 70 6f 72 74 73 20 6e 65 65 64 | iple.IP.addresses.and.ports.need |
| aade0 | 20 74 6f 20 62 65 20 6d 6f 6e 69 74 6f 72 65 64 2e 00 55 73 69 6e 67 20 64 79 6e 61 6d 69 63 20 | .to.be.monitored..Using.dynamic. |
| aae00 | 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 2c 20 77 65 20 63 61 6e 20 73 65 63 75 72 65 20 61 | firewall.groups,.we.can.secure.a |
| aae20 | 63 63 65 73 73 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 2c 20 6f 72 20 61 6e 79 20 6f 74 68 65 | ccess.to.the.router,.or.any.othe |
| aae40 | 72 20 64 65 76 69 63 65 20 69 66 20 6e 65 65 64 65 64 2c 20 62 79 20 75 73 69 6e 67 20 74 68 65 | r.device.if.needed,.by.using.the |
| aae60 | 20 74 65 63 68 6e 69 71 75 65 20 6f 66 20 70 6f 72 74 20 6b 6e 6f 63 6b 69 6e 67 2e 00 55 73 69 | .technique.of.port.knocking..Usi |
| aae80 | 6e 67 20 6f 75 72 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 63 68 61 70 74 65 72 20 2d 20 3a | ng.our.documentation.chapter.-.: |
| aaea0 | 72 65 66 3a 60 70 6b 69 60 20 67 65 6e 65 72 61 74 65 20 61 6e 64 20 69 6e 73 74 61 6c 6c 20 43 | ref:`pki`.generate.and.install.C |
| aaec0 | 41 20 61 6e 64 20 53 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 00 55 73 69 6e 67 20 74 | A.and.Server.certificate.Using.t |
| aaee0 | 68 65 20 6f 70 65 72 61 74 69 6f 6e 20 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 76 69 65 | he.operation.mode.command.to.vie |
| aaf00 | 77 20 42 72 69 64 67 65 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 00 55 73 69 6e 67 20 74 68 69 73 20 | w.Bridge.Information.Using.this. |
| aaf20 | 63 6f 6d 6d 61 6e 64 2c 20 79 6f 75 20 77 69 6c 6c 20 63 72 65 61 74 65 20 61 20 6e 65 77 20 63 | command,.you.will.create.a.new.c |
| aaf40 | 6c 69 65 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 68 69 63 68 20 63 61 6e 20 63 6f | lient.configuration.which.can.co |
| aaf60 | 6e 6e 65 63 74 20 74 6f 20 60 60 69 6e 74 65 72 66 61 63 65 60 60 20 6f 6e 20 74 68 69 73 20 72 | nnect.to.``interface``.on.this.r |
| aaf80 | 6f 75 74 65 72 2e 20 54 68 65 20 70 75 62 6c 69 63 20 6b 65 79 20 66 72 6f 6d 20 74 68 65 20 73 | outer..The.public.key.from.the.s |
| aafa0 | 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 75 74 6f 6d 61 74 69 63 61 | pecified.interface.is.automatica |
| aafc0 | 6c 6c 79 20 65 78 74 72 61 63 74 65 64 20 61 6e 64 20 65 6d 62 65 64 64 65 64 20 69 6e 74 6f 20 | lly.extracted.and.embedded.into. |
| aafe0 | 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 55 73 75 61 6c 6c 79 20 74 68 69 73 20 | the.configuration..Usually.this. |
| ab000 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 75 73 65 64 20 69 6e 20 50 45 73 20 28 50 72 | configuration.is.used.in.PEs.(Pr |
| ab020 | 6f 76 69 64 65 72 20 45 64 67 65 29 20 74 6f 20 72 65 70 6c 61 63 65 20 74 68 65 20 69 6e 63 6f | ovider.Edge).to.replace.the.inco |
| ab040 | 6d 69 6e 67 20 63 75 73 74 6f 6d 65 72 20 41 53 20 6e 75 6d 62 65 72 20 73 6f 20 74 68 65 20 63 | ming.customer.AS.number.so.the.c |
| ab060 | 6f 6e 6e 65 63 74 65 64 20 43 45 20 28 20 43 75 73 74 6f 6d 65 72 20 45 64 67 65 29 20 63 61 6e | onnected.CE.(.Customer.Edge).can |
| ab080 | 20 75 73 65 20 74 68 65 20 73 61 6d 65 20 41 53 20 6e 75 6d 62 65 72 20 61 73 20 74 68 65 20 6f | .use.the.same.AS.number.as.the.o |
| ab0a0 | 74 68 65 72 20 63 75 73 74 6f 6d 65 72 20 73 69 74 65 73 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 | ther.customer.sites..This.allows |
| ab0c0 | 20 63 75 73 74 6f 6d 65 72 73 20 6f 66 20 74 68 65 20 70 72 6f 76 69 64 65 72 20 6e 65 74 77 6f | .customers.of.the.provider.netwo |
| ab0e0 | 72 6b 20 74 6f 20 75 73 65 20 74 68 65 20 73 61 6d 65 20 41 53 20 6e 75 6d 62 65 72 20 61 63 72 | rk.to.use.the.same.AS.number.acr |
| ab100 | 6f 73 73 20 74 68 65 69 72 20 73 69 74 65 73 2e 00 56 48 54 20 28 56 65 72 79 20 48 69 67 68 20 | oss.their.sites..VHT.(Very.High. |
| ab120 | 54 68 72 6f 75 67 68 70 75 74 29 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 28 38 30 32 2e 31 31 | Throughput).capabilities.(802.11 |
| ab140 | 61 63 29 00 56 48 54 20 6c 69 6e 6b 20 61 64 61 70 74 61 74 69 6f 6e 20 63 61 70 61 62 69 6c 69 | ac).VHT.link.adaptation.capabili |
| ab160 | 74 69 65 73 00 56 48 54 20 6f 70 65 72 61 74 69 6e 67 20 63 68 61 6e 6e 65 6c 20 63 65 6e 74 65 | ties.VHT.operating.channel.cente |
| ab180 | 72 20 66 72 65 71 75 65 6e 63 79 20 2d 20 63 65 6e 74 65 72 20 66 72 65 71 20 31 20 28 66 6f 72 | r.frequency.-.center.freq.1.(for |
| ab1a0 | 20 75 73 65 20 77 69 74 68 20 38 30 2c 20 38 30 2b 38 30 20 61 6e 64 20 31 36 30 20 6d 6f 64 65 | .use.with.80,.80+80.and.160.mode |
| ab1c0 | 73 29 00 56 48 54 20 6f 70 65 72 61 74 69 6e 67 20 63 68 61 6e 6e 65 6c 20 63 65 6e 74 65 72 20 | s).VHT.operating.channel.center. |
| ab1e0 | 66 72 65 71 75 65 6e 63 79 20 2d 20 63 65 6e 74 65 72 20 66 72 65 71 20 32 20 28 66 6f 72 20 75 | frequency.-.center.freq.2.(for.u |
| ab200 | 73 65 20 77 69 74 68 20 74 68 65 20 38 30 2b 38 30 20 6d 6f 64 65 29 00 56 4c 41 4e 00 56 4c 41 | se.with.the.80+80.mode).VLAN.VLA |
| ab220 | 4e 20 31 30 20 6f 6e 20 6d 65 6d 62 65 72 20 69 6e 74 65 72 66 61 63 65 20 60 65 74 68 32 60 20 | N.10.on.member.interface.`eth2`. |
| ab240 | 28 41 43 43 45 53 53 20 6d 6f 64 65 29 00 56 4c 41 4e 20 45 78 61 6d 70 6c 65 00 56 4c 41 4e 20 | (ACCESS.mode).VLAN.Example.VLAN. |
| ab260 | 4f 70 74 69 6f 6e 73 00 56 4c 41 4e 20 6d 6f 6e 69 74 6f 72 20 66 6f 72 20 61 75 74 6f 6d 61 74 | Options.VLAN.monitor.for.automat |
| ab280 | 69 63 20 63 72 65 61 74 69 6f 6e 20 6f 66 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 73 20 66 | ic.creation.of.VLAN.interfaces.f |
| ab2a0 | 6f 72 20 73 70 65 63 69 66 69 63 20 75 73 65 72 20 6f 6e 20 73 70 65 63 69 66 69 63 20 3c 69 6e | or.specific.user.on.specific.<in |
| ab2c0 | 74 65 72 66 61 63 65 3e 00 56 4c 41 4e 20 6e 61 6d 65 00 56 4c 41 4e 27 73 20 63 61 6e 20 62 65 | terface>.VLAN.name.VLAN's.can.be |
| ab2e0 | 20 63 72 65 61 74 65 64 20 62 79 20 41 63 63 65 6c 2d 70 70 70 20 6f 6e 20 74 68 65 20 66 6c 79 | .created.by.Accel-ppp.on.the.fly |
| ab300 | 20 76 69 61 20 74 68 65 20 75 73 65 20 6f 66 20 61 20 4b 65 72 6e 65 6c 20 6d 6f 64 75 6c 65 20 | .via.the.use.of.a.Kernel.module. |
| ab320 | 6e 61 6d 65 64 20 60 60 76 6c 61 6e 5f 6d 6f 6e 60 60 2c 20 77 68 69 63 68 20 69 73 20 6d 6f 6e | named.``vlan_mon``,.which.is.mon |
| ab340 | 69 74 6f 72 69 6e 67 20 69 6e 63 6f 6d 69 6e 67 20 76 6c 61 6e 73 20 61 6e 64 20 63 72 65 61 74 | itoring.incoming.vlans.and.creat |
| ab360 | 65 73 20 74 68 65 20 6e 65 63 65 73 73 61 72 79 20 56 4c 41 4e 20 69 66 20 72 65 71 75 69 72 65 | es.the.necessary.VLAN.if.require |
| ab380 | 64 20 61 6e 64 20 61 6c 6c 6f 77 65 64 2e 20 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 74 68 65 | d.and.allowed..VyOS.supports.the |
| ab3a0 | 20 75 73 65 20 6f 66 20 65 69 74 68 65 72 20 56 4c 41 4e 20 49 44 27 73 20 6f 72 20 65 6e 74 69 | .use.of.either.VLAN.ID's.or.enti |
| ab3c0 | 72 65 20 72 61 6e 67 65 73 2c 20 62 6f 74 68 20 76 61 6c 75 65 73 20 63 61 6e 20 62 65 20 64 65 | re.ranges,.both.values.can.be.de |
| ab3e0 | 66 69 6e 65 64 20 61 74 20 74 68 65 20 73 61 6d 65 20 74 69 6d 65 20 66 6f 72 20 61 6e 20 69 6e | fined.at.the.same.time.for.an.in |
| ab400 | 74 65 72 66 61 63 65 2e 00 56 4c 41 4e 27 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 20 62 | terface..VLAN's.can.be.created.b |
| ab420 | 79 20 41 63 63 65 6c 2d 70 70 70 20 6f 6e 20 74 68 65 20 66 6c 79 20 76 69 61 20 74 68 65 20 75 | y.Accel-ppp.on.the.fly.via.the.u |
| ab440 | 73 65 20 6f 66 20 61 20 4b 65 72 6e 65 6c 20 6d 6f 64 75 6c 65 20 6e 61 6d 65 64 20 60 76 6c 61 | se.of.a.Kernel.module.named.`vla |
| ab460 | 6e 5f 6d 6f 6e 60 2c 20 77 68 69 63 68 20 69 73 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 69 6e 63 6f | n_mon`,.which.is.monitoring.inco |
| ab480 | 6d 69 6e 67 20 76 6c 61 6e 73 20 61 6e 64 20 63 72 65 61 74 65 73 20 74 68 65 20 6e 65 63 65 73 | ming.vlans.and.creates.the.neces |
| ab4a0 | 73 61 72 79 20 56 4c 41 4e 20 69 66 20 72 65 71 75 69 72 65 64 20 61 6e 64 20 61 6c 6c 6f 77 65 | sary.VLAN.if.required.and.allowe |
| ab4c0 | 64 2e 20 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 74 68 65 20 75 73 65 20 6f 66 20 65 69 74 68 | d..VyOS.supports.the.use.of.eith |
| ab4e0 | 65 72 20 56 4c 41 4e 20 49 44 27 73 20 6f 72 20 65 6e 74 69 72 65 20 72 61 6e 67 65 73 2c 20 62 | er.VLAN.ID's.or.entire.ranges,.b |
| ab500 | 6f 74 68 20 76 61 6c 75 65 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 61 74 20 74 68 65 | oth.values.can.be.defined.at.the |
| ab520 | 20 73 61 6d 65 20 74 69 6d 65 20 66 6f 72 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e 00 56 4d 77 | .same.time.for.an.interface..VMw |
| ab540 | 61 72 65 20 75 73 65 72 73 20 73 68 6f 75 6c 64 20 65 6e 73 75 72 65 20 74 68 61 74 20 61 20 56 | are.users.should.ensure.that.a.V |
| ab560 | 4d 58 4e 45 54 33 20 61 64 61 70 74 65 72 20 69 73 20 75 73 65 64 2e 20 45 31 30 30 30 20 61 64 | MXNET3.adapter.is.used..E1000.ad |
| ab580 | 61 70 74 65 72 73 20 68 61 76 65 20 6b 6e 6f 77 6e 20 69 73 73 75 65 73 20 77 69 74 68 20 47 52 | apters.have.known.issues.with.GR |
| ab5a0 | 45 20 70 72 6f 63 65 73 73 69 6e 67 2e 00 56 50 4e 00 56 50 4e 2d 63 6c 69 65 6e 74 73 20 77 69 | E.processing..VPN.VPN-clients.wi |
| ab5c0 | 6c 6c 20 72 65 71 75 65 73 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 | ll.request.configuration.paramet |
| ab5e0 | 65 72 73 2c 20 6f 70 74 69 6f 6e 61 6c 6c 79 20 79 6f 75 20 63 61 6e 20 44 4e 53 20 70 61 72 61 | ers,.optionally.you.can.DNS.para |
| ab600 | 6d 65 74 65 72 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 2e 00 56 52 46 00 56 52 46 20 52 6f 75 | meter.to.the.client..VRF.VRF.Rou |
| ab620 | 74 65 20 4c 65 61 6b 69 6e 67 00 56 52 46 20 61 6e 64 20 4e 41 54 00 56 52 46 20 62 6c 75 65 20 | te.Leaking.VRF.and.NAT.VRF.blue. |
| ab640 | 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 00 56 52 46 20 64 65 66 61 75 6c 74 20 72 6f 75 74 69 6e | routing.table.VRF.default.routin |
| ab660 | 67 20 74 61 62 6c 65 00 56 52 46 20 72 65 64 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 00 56 52 | g.table.VRF.red.routing.table.VR |
| ab680 | 46 20 72 6f 75 74 65 20 6c 65 61 6b 69 6e 67 00 56 52 46 20 74 6f 70 6f 6c 6f 67 79 20 65 78 61 | F.route.leaking.VRF.topology.exa |
| ab6a0 | 6d 70 6c 65 00 56 52 52 50 20 28 56 69 72 74 75 61 6c 20 52 6f 75 74 65 72 20 52 65 64 75 6e 64 | mple.VRRP.(Virtual.Router.Redund |
| ab6c0 | 61 6e 63 79 20 50 72 6f 74 6f 63 6f 6c 29 20 70 72 6f 76 69 64 65 73 20 61 63 74 69 76 65 2f 62 | ancy.Protocol).provides.active/b |
| ab6e0 | 61 63 6b 75 70 20 72 65 64 75 6e 64 61 6e 63 79 20 66 6f 72 20 72 6f 75 74 65 72 73 2e 20 45 76 | ackup.redundancy.for.routers..Ev |
| ab700 | 65 72 79 20 56 52 52 50 20 72 6f 75 74 65 72 20 68 61 73 20 61 20 70 68 79 73 69 63 61 6c 20 49 | ery.VRRP.router.has.a.physical.I |
| ab720 | 50 2f 49 50 76 36 20 61 64 64 72 65 73 73 2c 20 61 6e 64 20 61 20 76 69 72 74 75 61 6c 20 61 64 | P/IPv6.address,.and.a.virtual.ad |
| ab740 | 64 72 65 73 73 2e 20 4f 6e 20 73 74 61 72 74 75 70 2c 20 72 6f 75 74 65 72 73 20 65 6c 65 63 74 | dress..On.startup,.routers.elect |
| ab760 | 20 74 68 65 20 6d 61 73 74 65 72 2c 20 61 6e 64 20 74 68 65 20 72 6f 75 74 65 72 20 77 69 74 68 | .the.master,.and.the.router.with |
| ab780 | 20 74 68 65 20 68 69 67 68 65 73 74 20 70 72 69 6f 72 69 74 79 20 62 65 63 6f 6d 65 73 20 74 68 | .the.highest.priority.becomes.th |
| ab7a0 | 65 20 6d 61 73 74 65 72 20 61 6e 64 20 61 73 73 69 67 6e 73 20 74 68 65 20 76 69 72 74 75 61 6c | e.master.and.assigns.the.virtual |
| ab7c0 | 20 61 64 64 72 65 73 73 20 74 6f 20 69 74 73 20 69 6e 74 65 72 66 61 63 65 2e 20 41 6c 6c 20 72 | .address.to.its.interface..All.r |
| ab7e0 | 6f 75 74 65 72 73 20 77 69 74 68 20 6c 6f 77 65 72 20 70 72 69 6f 72 69 74 69 65 73 20 62 65 63 | outers.with.lower.priorities.bec |
| ab800 | 6f 6d 65 20 62 61 63 6b 75 70 20 72 6f 75 74 65 72 73 2e 20 54 68 65 20 6d 61 73 74 65 72 20 74 | ome.backup.routers..The.master.t |
| ab820 | 68 65 6e 20 73 74 61 72 74 73 20 73 65 6e 64 69 6e 67 20 6b 65 65 70 61 6c 69 76 65 20 70 61 63 | hen.starts.sending.keepalive.pac |
| ab840 | 6b 65 74 73 20 74 6f 20 6e 6f 74 69 66 79 20 6f 74 68 65 72 20 72 6f 75 74 65 72 73 20 74 68 61 | kets.to.notify.other.routers.tha |
| ab860 | 74 20 69 74 27 73 20 61 76 61 69 6c 61 62 6c 65 2e 20 49 66 20 74 68 65 20 6d 61 73 74 65 72 20 | t.it's.available..If.the.master. |
| ab880 | 66 61 69 6c 73 20 61 6e 64 20 73 74 6f 70 73 20 73 65 6e 64 69 6e 67 20 6b 65 65 70 61 6c 69 76 | fails.and.stops.sending.keepaliv |
| ab8a0 | 65 20 70 61 63 6b 65 74 73 2c 20 74 68 65 20 72 6f 75 74 65 72 20 77 69 74 68 20 74 68 65 20 6e | e.packets,.the.router.with.the.n |
| ab8c0 | 65 78 74 20 68 69 67 68 65 73 74 20 70 72 69 6f 72 69 74 79 20 62 65 63 6f 6d 65 73 20 74 68 65 | ext.highest.priority.becomes.the |
| ab8e0 | 20 6e 65 77 20 6d 61 73 74 65 72 20 61 6e 64 20 74 61 6b 65 73 20 6f 76 65 72 20 74 68 65 20 76 | .new.master.and.takes.over.the.v |
| ab900 | 69 72 74 75 61 6c 20 61 64 64 72 65 73 73 2e 00 56 52 52 50 20 63 61 6e 20 75 73 65 20 74 77 6f | irtual.address..VRRP.can.use.two |
| ab920 | 20 6d 6f 64 65 73 3a 20 70 72 65 65 6d 70 74 69 76 65 20 61 6e 64 20 6e 6f 6e 2d 70 72 65 65 6d | .modes:.preemptive.and.non-preem |
| ab940 | 70 74 69 76 65 2e 20 49 6e 20 74 68 65 20 70 72 65 65 6d 70 74 69 76 65 20 6d 6f 64 65 2c 20 69 | ptive..In.the.preemptive.mode,.i |
| ab960 | 66 20 61 20 72 6f 75 74 65 72 20 77 69 74 68 20 61 20 68 69 67 68 65 72 20 70 72 69 6f 72 69 74 | f.a.router.with.a.higher.priorit |
| ab980 | 79 20 66 61 69 6c 73 20 61 6e 64 20 74 68 65 6e 20 63 6f 6d 65 73 20 62 61 63 6b 2c 20 72 6f 75 | y.fails.and.then.comes.back,.rou |
| ab9a0 | 74 65 72 73 20 77 69 74 68 20 6c 6f 77 65 72 20 70 72 69 6f 72 69 74 79 20 77 69 6c 6c 20 67 69 | ters.with.lower.priority.will.gi |
| ab9c0 | 76 65 20 75 70 20 74 68 65 69 72 20 6d 61 73 74 65 72 20 73 74 61 74 75 73 2e 20 49 6e 20 6e 6f | ve.up.their.master.status..In.no |
| ab9e0 | 6e 2d 70 72 65 65 6d 70 74 69 76 65 20 6d 6f 64 65 2c 20 74 68 65 20 6e 65 77 6c 79 20 65 6c 65 | n-preemptive.mode,.the.newly.ele |
| aba00 | 63 74 65 64 20 6d 61 73 74 65 72 20 77 69 6c 6c 20 6b 65 65 70 20 74 68 65 20 6d 61 73 74 65 72 | cted.master.will.keep.the.master |
| aba20 | 20 73 74 61 74 75 73 20 61 6e 64 20 74 68 65 20 76 69 72 74 75 61 6c 20 61 64 64 72 65 73 73 20 | .status.and.the.virtual.address. |
| aba40 | 69 6e 64 65 66 69 6e 69 74 65 6c 79 2e 00 56 52 52 50 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 | indefinitely..VRRP.functionality |
| aba60 | 20 63 61 6e 20 62 65 20 65 78 74 65 6e 64 65 64 20 77 69 74 68 20 73 63 72 69 70 74 73 2e 20 56 | .can.be.extended.with.scripts..V |
| aba80 | 79 4f 53 20 73 75 70 70 6f 72 74 73 20 74 77 6f 20 6b 69 6e 64 73 20 6f 66 20 73 63 72 69 70 74 | yOS.supports.two.kinds.of.script |
| abaa0 | 73 3a 20 68 65 61 6c 74 68 20 63 68 65 63 6b 20 73 63 72 69 70 74 73 20 61 6e 64 20 74 72 61 6e | s:.health.check.scripts.and.tran |
| abac0 | 73 69 74 69 6f 6e 20 73 63 72 69 70 74 73 2e 20 48 65 61 6c 74 68 20 63 68 65 63 6b 20 73 63 72 | sition.scripts..Health.check.scr |
| abae0 | 69 70 74 73 20 65 78 65 63 75 74 65 20 63 75 73 74 6f 6d 20 63 68 65 63 6b 73 20 69 6e 20 61 64 | ipts.execute.custom.checks.in.ad |
| abb00 | 64 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 6d 61 73 74 65 72 20 72 6f 75 74 65 72 20 72 65 61 63 | dition.to.the.master.router.reac |
| abb20 | 68 61 62 69 6c 69 74 79 2e 20 54 72 61 6e 73 69 74 69 6f 6e 20 73 63 72 69 70 74 73 20 61 72 65 | hability..Transition.scripts.are |
| abb40 | 20 65 78 65 63 75 74 65 64 20 77 68 65 6e 20 56 52 52 50 20 73 74 61 74 65 20 63 68 61 6e 67 65 | .executed.when.VRRP.state.change |
| abb60 | 73 20 66 72 6f 6d 20 6d 61 73 74 65 72 20 74 6f 20 62 61 63 6b 75 70 20 6f 72 20 66 61 75 6c 74 | s.from.master.to.backup.or.fault |
| abb80 | 20 61 6e 64 20 76 69 63 65 20 76 65 72 73 61 20 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 | .and.vice.versa.and.can.be.used. |
| abba0 | 74 6f 20 65 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 63 65 72 74 61 69 6e 20 73 65 72 | to.enable.or.disable.certain.ser |
| abbc0 | 76 69 63 65 73 2c 20 66 6f 72 20 65 78 61 6d 70 6c 65 2e 00 56 52 52 50 20 67 72 6f 75 70 73 20 | vices,.for.example..VRRP.groups. |
| abbe0 | 61 72 65 20 63 72 65 61 74 65 64 20 77 69 74 68 20 74 68 65 20 60 60 73 65 74 20 68 69 67 68 2d | are.created.with.the.``set.high- |
| abc00 | 61 76 61 69 6c 61 62 69 6c 69 74 79 20 76 72 72 70 20 67 72 6f 75 70 20 24 47 52 4f 55 50 5f 4e | availability.vrrp.group.$GROUP_N |
| abc20 | 41 4d 45 60 60 20 63 6f 6d 6d 61 6e 64 73 2e 20 54 68 65 20 72 65 71 75 69 72 65 64 20 70 61 72 | AME``.commands..The.required.par |
| abc40 | 61 6d 65 74 65 72 73 20 61 72 65 20 69 6e 74 65 72 66 61 63 65 2c 20 76 72 69 64 2c 20 61 6e 64 | ameters.are.interface,.vrid,.and |
| abc60 | 20 61 64 64 72 65 73 73 2e 00 56 52 52 50 20 6b 65 65 70 61 6c 69 76 65 20 70 61 63 6b 65 74 73 | .address..VRRP.keepalive.packets |
| abc80 | 20 75 73 65 20 6d 75 6c 74 69 63 61 73 74 2c 20 61 6e 64 20 56 52 52 50 20 73 65 74 75 70 73 20 | .use.multicast,.and.VRRP.setups. |
| abca0 | 61 72 65 20 6c 69 6d 69 74 65 64 20 74 6f 20 61 20 73 69 6e 67 6c 65 20 64 61 74 61 6c 69 6e 6b | are.limited.to.a.single.datalink |
| abcc0 | 20 6c 61 79 65 72 20 73 65 67 6d 65 6e 74 2e 20 59 6f 75 20 63 61 6e 20 73 65 74 75 70 20 6d 75 | .layer.segment..You.can.setup.mu |
| abce0 | 6c 74 69 70 6c 65 20 56 52 52 50 20 67 72 6f 75 70 73 20 28 61 6c 73 6f 20 63 61 6c 6c 65 64 20 | ltiple.VRRP.groups.(also.called. |
| abd00 | 76 69 72 74 75 61 6c 20 72 6f 75 74 65 72 73 29 2e 20 56 69 72 74 75 61 6c 20 72 6f 75 74 65 72 | virtual.routers)..Virtual.router |
| abd20 | 73 20 61 72 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 61 20 56 52 49 44 20 28 56 69 72 74 | s.are.identified.by.a.VRID.(Virt |
| abd40 | 75 61 6c 20 52 6f 75 74 65 72 20 49 44 65 6e 74 69 66 69 65 72 29 2e 20 49 66 20 79 6f 75 20 73 | ual.Router.IDentifier)..If.you.s |
| abd60 | 65 74 75 70 20 6d 75 6c 74 69 70 6c 65 20 67 72 6f 75 70 73 20 6f 6e 20 74 68 65 20 73 61 6d 65 | etup.multiple.groups.on.the.same |
| abd80 | 20 69 6e 74 65 72 66 61 63 65 2c 20 74 68 65 69 72 20 56 52 49 44 73 20 6d 75 73 74 20 62 65 20 | .interface,.their.VRIDs.must.be. |
| abda0 | 75 6e 69 71 75 65 20 69 66 20 74 68 65 79 20 75 73 65 20 74 68 65 20 73 61 6d 65 20 61 64 64 72 | unique.if.they.use.the.same.addr |
| abdc0 | 65 73 73 20 66 61 6d 69 6c 79 2c 20 62 75 74 20 69 74 27 73 20 70 6f 73 73 69 62 6c 65 20 28 65 | ess.family,.but.it's.possible.(e |
| abde0 | 76 65 6e 20 69 66 20 6e 6f 74 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 66 6f 72 20 72 65 61 64 61 | ven.if.not.recommended.for.reada |
| abe00 | 62 69 6c 69 74 79 20 72 65 61 73 6f 6e 73 29 20 74 6f 20 75 73 65 20 64 75 70 6c 69 63 61 74 65 | bility.reasons).to.use.duplicate |
| abe20 | 20 56 52 49 44 73 20 6f 6e 20 64 69 66 66 65 72 65 6e 74 20 69 6e 74 65 72 66 61 63 65 73 2e 00 | .VRIDs.on.different.interfaces.. |
| abe40 | 56 52 52 50 20 70 72 69 6f 72 69 74 79 20 63 61 6e 20 62 65 20 73 65 74 20 77 69 74 68 20 60 60 | VRRP.priority.can.be.set.with.`` |
| abe60 | 70 72 69 6f 72 69 74 79 60 60 20 6f 70 74 69 6f 6e 3a 00 56 54 49 20 2d 20 56 69 72 74 75 61 6c | priority``.option:.VTI.-.Virtual |
| abe80 | 20 54 75 6e 6e 65 6c 20 49 6e 74 65 72 66 61 63 65 00 56 58 4c 41 4e 00 56 58 4c 41 4e 20 69 73 | .Tunnel.Interface.VXLAN.VXLAN.is |
| abea0 | 20 61 6e 20 65 76 6f 6c 75 74 69 6f 6e 20 6f 66 20 65 66 66 6f 72 74 73 20 74 6f 20 73 74 61 6e | .an.evolution.of.efforts.to.stan |
| abec0 | 64 61 72 64 69 7a 65 20 61 6e 20 6f 76 65 72 6c 61 79 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e | dardize.an.overlay.encapsulation |
| abee0 | 20 70 72 6f 74 6f 63 6f 6c 2e 20 49 74 20 69 6e 63 72 65 61 73 65 73 20 74 68 65 20 73 63 61 6c | .protocol..It.increases.the.scal |
| abf00 | 61 62 69 6c 69 74 79 20 75 70 20 74 6f 20 31 36 20 6d 69 6c 6c 69 6f 6e 20 6c 6f 67 69 63 61 6c | ability.up.to.16.million.logical |
| abf20 | 20 6e 65 74 77 6f 72 6b 73 20 61 6e 64 20 61 6c 6c 6f 77 73 20 66 6f 72 20 6c 61 79 65 72 20 32 | .networks.and.allows.for.layer.2 |
| abf40 | 20 61 64 6a 61 63 65 6e 63 79 20 61 63 72 6f 73 73 20 49 50 20 6e 65 74 77 6f 72 6b 73 2e 20 4d | .adjacency.across.IP.networks..M |
| abf60 | 75 6c 74 69 63 61 73 74 20 6f 72 20 75 6e 69 63 61 73 74 20 77 69 74 68 20 68 65 61 64 2d 65 6e | ulticast.or.unicast.with.head-en |
| abf80 | 64 20 72 65 70 6c 69 63 61 74 69 6f 6e 20 28 48 45 52 29 20 69 73 20 75 73 65 64 20 74 6f 20 66 | d.replication.(HER).is.used.to.f |
| abfa0 | 6c 6f 6f 64 20 62 72 6f 61 64 63 61 73 74 2c 20 75 6e 6b 6e 6f 77 6e 20 75 6e 69 63 61 73 74 2c | lood.broadcast,.unknown.unicast, |
| abfc0 | 20 61 6e 64 20 6d 75 6c 74 69 63 61 73 74 20 28 42 55 4d 29 20 74 72 61 66 66 69 63 2e 00 56 58 | .and.multicast.(BUM).traffic..VX |
| abfe0 | 4c 41 4e 20 73 70 65 63 69 66 69 63 20 6f 70 74 69 6f 6e 73 00 56 58 4c 41 4e 20 77 61 73 20 6f | LAN.specific.options.VXLAN.was.o |
| ac000 | 66 66 69 63 69 61 6c 6c 79 20 64 6f 63 75 6d 65 6e 74 65 64 20 62 79 20 74 68 65 20 49 45 54 46 | fficially.documented.by.the.IETF |
| ac020 | 20 69 6e 20 3a 72 66 63 3a 60 37 33 34 38 60 2e 00 56 61 6c 69 64 20 76 61 6c 75 65 73 20 61 72 | .in.:rfc:`7348`..Valid.values.ar |
| ac040 | 65 20 30 2e 2e 32 35 35 2e 00 56 61 6c 69 64 20 76 61 6c 75 65 73 20 61 72 65 20 31 2e 2e 36 33 | e.0..255..Valid.values.are.1..63 |
| ac060 | 00 56 61 6c 75 65 00 56 61 6c 75 65 20 74 6f 20 73 65 6e 64 20 74 6f 20 52 41 44 49 55 53 20 73 | .Value.Value.to.send.to.RADIUS.s |
| ac080 | 65 72 76 65 72 20 69 6e 20 4e 41 53 2d 49 50 2d 41 64 64 72 65 73 73 20 61 74 74 72 69 62 75 74 | erver.in.NAS-IP-Address.attribut |
| ac0a0 | 65 20 61 6e 64 20 74 6f 20 62 65 20 6d 61 74 63 68 65 64 20 69 6e 20 44 4d 2f 43 6f 41 20 72 65 | e.and.to.be.matched.in.DM/CoA.re |
| ac0c0 | 71 75 65 73 74 73 2e 20 41 6c 73 6f 20 44 4d 2f 43 6f 41 20 73 65 72 76 65 72 20 77 69 6c 6c 20 | quests..Also.DM/CoA.server.will. |
| ac0e0 | 62 69 6e 64 20 74 6f 20 74 68 61 74 20 61 64 64 72 65 73 73 2e 00 56 61 6c 75 65 20 74 6f 20 73 | bind.to.that.address..Value.to.s |
| ac100 | 65 6e 64 20 74 6f 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 69 6e 20 4e 41 53 2d 49 64 65 6e | end.to.RADIUS.server.in.NAS-Iden |
| ac120 | 74 69 66 69 65 72 20 61 74 74 72 69 62 75 74 65 20 61 6e 64 20 74 6f 20 62 65 20 6d 61 74 63 68 | tifier.attribute.and.to.be.match |
| ac140 | 65 64 20 69 6e 20 44 4d 2f 43 6f 41 20 72 65 71 75 65 73 74 73 2e 00 56 65 72 69 66 69 63 61 74 | ed.in.DM/CoA.requests..Verificat |
| ac160 | 69 6f 6e 00 56 65 72 69 66 69 63 61 74 69 6f 6e 3a 00 56 65 72 69 66 79 20 63 6f 6e 66 69 67 75 | ion.Verification:.Verify.configu |
| ac180 | 72 61 74 69 6f 6e 20 63 68 61 6e 67 65 73 20 68 61 76 65 20 62 65 65 6e 20 72 65 70 6c 69 63 61 | ration.changes.have.been.replica |
| ac1a0 | 74 65 64 20 74 6f 20 52 6f 75 74 65 72 20 42 00 56 65 72 69 66 79 20 74 68 61 74 20 63 6f 6e 6e | ted.to.Router.B.Verify.that.conn |
| ac1c0 | 65 63 74 69 6f 6e 73 20 61 72 65 20 68 69 74 74 69 6e 67 20 74 68 65 20 72 75 6c 65 20 6f 6e 20 | ections.are.hitting.the.rule.on. |
| ac1e0 | 62 6f 74 68 20 73 69 64 65 73 3a 00 56 65 72 73 69 6f 6e 00 56 69 72 74 75 61 6c 20 45 74 68 65 | both.sides:.Version.Virtual.Ethe |
| ac200 | 72 6e 65 74 00 56 69 72 74 75 61 6c 20 53 65 72 76 65 72 20 61 6c 6c 6f 77 73 20 74 6f 20 4c 6f | rnet.Virtual.Server.allows.to.Lo |
| ac220 | 61 64 2d 62 61 6c 61 6e 63 65 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 76 | ad-balance.traffic.destination.v |
| ac240 | 69 72 74 75 61 6c 2d 61 64 64 72 65 73 73 3a 70 6f 72 74 20 62 65 74 77 65 65 6e 20 73 65 76 65 | irtual-address:port.between.seve |
| ac260 | 72 61 6c 20 72 65 61 6c 20 73 65 72 76 65 72 73 2e 00 56 69 72 74 75 61 6c 2d 73 65 72 76 65 72 | ral.real.servers..Virtual-server |
| ac280 | 00 56 69 72 74 75 61 6c 2d 73 65 72 76 65 72 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 | .Virtual-server.can.be.configure |
| ac2a0 | 64 20 77 69 74 68 20 56 52 52 50 20 76 69 72 74 75 61 6c 20 61 64 64 72 65 73 73 20 6f 72 20 77 | d.with.VRRP.virtual.address.or.w |
| ac2c0 | 69 74 68 6f 75 74 20 56 52 52 50 2e 00 56 6f 6c 75 6d 65 20 69 73 20 65 69 74 68 65 72 20 6d 6f | ithout.VRRP..Volume.is.either.mo |
| ac2e0 | 75 6e 74 65 64 20 61 73 20 72 77 20 28 72 65 61 64 2d 77 72 69 74 65 20 2d 20 64 65 66 61 75 6c | unted.as.rw.(read-write.-.defaul |
| ac300 | 74 29 20 6f 72 20 72 6f 20 28 72 65 61 64 2d 6f 6e 6c 79 29 00 56 79 4f 53 20 31 2e 31 20 73 75 | t).or.ro.(read-only).VyOS.1.1.su |
| ac320 | 70 70 6f 72 74 65 64 20 6c 6f 67 69 6e 20 61 73 20 75 73 65 72 20 60 60 72 6f 6f 74 60 60 2e 20 | pported.login.as.user.``root``.. |
| ac340 | 54 68 69 73 20 68 61 73 20 62 65 65 6e 20 72 65 6d 6f 76 65 64 20 64 75 65 20 74 6f 20 74 69 67 | This.has.been.removed.due.to.tig |
| ac360 | 68 74 65 72 20 73 65 63 75 72 69 74 79 20 69 6e 20 56 79 4f 53 20 31 2e 32 2e 00 56 79 4f 53 20 | hter.security.in.VyOS.1.2..VyOS. |
| ac380 | 31 2e 33 20 28 65 71 75 75 6c 65 75 73 29 20 73 75 70 70 6f 72 74 73 20 44 48 43 50 76 36 2d 50 | 1.3.(equuleus).supports.DHCPv6-P |
| ac3a0 | 44 20 28 3a 72 66 63 3a 60 33 36 33 33 60 29 2e 20 44 48 43 50 76 36 20 50 72 65 66 69 78 20 44 | D.(:rfc:`3633`)..DHCPv6.Prefix.D |
| ac3c0 | 65 6c 65 67 61 74 69 6f 6e 20 69 73 20 73 75 70 70 6f 72 74 65 64 20 62 79 20 6d 6f 73 74 20 49 | elegation.is.supported.by.most.I |
| ac3e0 | 53 50 73 20 77 68 6f 20 70 72 6f 76 69 64 65 20 6e 61 74 69 76 65 20 49 50 76 36 20 66 6f 72 20 | SPs.who.provide.native.IPv6.for. |
| ac400 | 63 6f 6e 73 75 6d 65 72 73 20 6f 6e 20 66 69 78 65 64 20 6e 65 74 77 6f 72 6b 73 2e 00 56 79 4f | consumers.on.fixed.networks..VyO |
| ac420 | 53 20 31 2e 34 20 28 73 61 67 69 74 74 61 29 20 69 6e 74 72 6f 64 75 63 65 64 20 64 79 6e 61 6d | S.1.4.(sagitta).introduced.dynam |
| ac440 | 69 63 20 72 6f 75 74 69 6e 67 20 73 75 70 70 6f 72 74 20 66 6f 72 20 56 52 46 73 2e 00 56 79 4f | ic.routing.support.for.VRFs..VyO |
| ac460 | 53 20 31 2e 34 20 63 68 61 6e 67 65 64 20 74 68 65 20 77 61 79 20 69 6e 20 68 6f 77 20 65 6e 63 | S.1.4.changed.the.way.in.how.enc |
| ac480 | 72 79 70 74 69 6f 6e 20 6b 65 79 73 20 6f 72 20 63 65 72 74 69 66 69 63 61 74 65 73 20 61 72 65 | ryption.keys.or.certificates.are |
| ac4a0 | 20 73 74 6f 72 65 64 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 20 49 6e 20 74 68 65 20 70 72 | .stored.on.the.system..In.the.pr |
| ac4c0 | 65 20 56 79 4f 53 20 31 2e 34 20 65 72 61 2c 20 63 65 72 74 69 66 69 63 61 74 65 73 20 67 6f 74 | e.VyOS.1.4.era,.certificates.got |
| ac4e0 | 20 73 74 6f 72 65 64 20 75 6e 64 65 72 20 2f 63 6f 6e 66 69 67 20 61 6e 64 20 65 76 65 72 79 20 | .stored.under./config.and.every. |
| ac500 | 73 65 72 76 69 63 65 20 72 65 66 65 72 65 6e 63 65 64 20 61 20 66 69 6c 65 2e 20 54 68 61 74 20 | service.referenced.a.file..That. |
| ac520 | 6d 61 64 65 20 63 6f 70 79 69 6e 67 20 61 20 72 75 6e 6e 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 | made.copying.a.running.configura |
| ac540 | 74 69 6f 6e 20 66 72 6f 6d 20 73 79 73 74 65 6d 20 41 20 74 6f 20 73 79 73 74 65 6d 20 42 20 61 | tion.from.system.A.to.system.B.a |
| ac560 | 20 62 69 74 20 68 61 72 64 65 72 2c 20 61 73 20 79 6f 75 20 68 61 64 20 74 6f 20 63 6f 70 79 20 | .bit.harder,.as.you.had.to.copy. |
| ac580 | 74 68 65 20 66 69 6c 65 73 20 61 6e 64 20 74 68 65 69 72 20 70 65 72 6d 69 73 73 69 6f 6e 73 20 | the.files.and.their.permissions. |
| ac5a0 | 62 79 20 68 61 6e 64 2e 00 56 79 4f 53 20 31 2e 34 20 63 68 61 6e 67 65 64 20 74 68 65 20 77 61 | by.hand..VyOS.1.4.changed.the.wa |
| ac5c0 | 79 20 69 6e 20 68 6f 77 20 65 6e 63 72 79 74 69 6f 6e 20 6b 65 79 73 20 6f 72 20 63 65 72 74 69 | y.in.how.encrytion.keys.or.certi |
| ac5e0 | 66 69 63 61 74 65 73 20 61 72 65 20 73 74 6f 72 65 64 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d | ficates.are.stored.on.the.system |
| ac600 | 2e 20 49 6e 20 74 68 65 20 70 72 65 20 56 79 4f 53 20 31 2e 34 20 65 72 61 2c 20 63 65 72 74 69 | ..In.the.pre.VyOS.1.4.era,.certi |
| ac620 | 66 69 63 61 74 65 73 20 67 6f 74 20 73 74 6f 72 65 64 20 75 6e 64 65 72 20 2f 63 6f 6e 66 69 67 | ficates.got.stored.under./config |
| ac640 | 20 61 6e 64 20 65 76 65 72 79 20 73 65 72 76 69 63 65 20 72 65 66 65 72 65 6e 63 65 64 20 61 20 | .and.every.service.referenced.a. |
| ac660 | 66 69 6c 65 2e 20 54 68 61 74 20 6d 61 64 65 20 63 6f 70 79 69 6e 67 20 61 20 72 75 6e 6e 69 6e | file..That.made.copying.a.runnin |
| ac680 | 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 72 6f 6d 20 73 79 73 74 65 6d 20 41 20 74 6f | g.configuration.from.system.A.to |
| ac6a0 | 20 73 79 73 74 65 6d 20 42 20 61 20 62 69 74 20 68 61 72 64 65 72 2c 20 61 73 20 79 6f 75 20 68 | .system.B.a.bit.harder,.as.you.h |
| ac6c0 | 61 64 20 74 6f 20 63 6f 70 79 20 74 68 65 20 66 69 6c 65 73 20 61 6e 64 20 74 68 65 69 72 20 70 | ad.to.copy.the.files.and.their.p |
| ac6e0 | 65 72 6d 69 73 73 69 6f 6e 73 20 62 79 20 68 61 6e 64 2e 00 56 79 4f 53 20 31 2e 34 20 75 73 65 | ermissions.by.hand..VyOS.1.4.use |
| ac700 | 73 20 63 68 72 6f 6e 79 20 69 6e 73 74 65 61 64 20 6f 66 20 6e 74 70 64 20 28 73 65 65 20 3a 76 | s.chrony.instead.of.ntpd.(see.:v |
| ac720 | 79 74 61 73 6b 3a 60 54 33 30 30 38 60 29 20 77 68 69 63 68 20 77 69 6c 6c 20 6e 6f 20 6c 6f 6e | ytask:`T3008`).which.will.no.lon |
| ac740 | 67 65 72 20 61 63 63 65 70 74 20 61 6e 6f 6e 79 6d 6f 75 73 20 4e 54 50 20 72 65 71 75 65 73 74 | ger.accept.anonymous.NTP.request |
| ac760 | 73 20 61 73 20 69 6e 20 56 79 4f 53 20 31 2e 33 2e 20 41 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 | s.as.in.VyOS.1.3..All.configurat |
| ac780 | 69 6f 6e 73 20 77 69 6c 6c 20 62 65 20 6d 69 67 72 61 74 65 64 20 74 6f 20 6b 65 65 70 20 74 68 | ions.will.be.migrated.to.keep.th |
| ac7a0 | 65 20 61 6e 6f 6e 79 6d 6f 75 73 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 2e 20 46 6f 72 20 6e | e.anonymous.functionality..For.n |
| ac7c0 | 65 77 20 73 65 74 75 70 73 20 69 66 20 79 6f 75 20 68 61 76 65 20 63 6c 69 65 6e 74 73 20 75 73 | ew.setups.if.you.have.clients.us |
| ac7e0 | 69 6e 67 20 79 6f 75 72 20 56 79 4f 53 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 20 61 73 20 4e 54 | ing.your.VyOS.installation.as.NT |
| ac800 | 50 20 73 65 72 76 65 72 2c 20 79 6f 75 20 6d 75 73 74 20 73 70 65 63 69 66 79 20 74 68 65 20 60 | P.server,.you.must.specify.the.` |
| ac820 | 61 6c 6c 6f 77 2d 63 6c 69 65 6e 74 60 20 64 69 72 65 63 74 69 76 65 2e 00 56 79 4f 53 20 41 72 | allow-client`.directive..VyOS.Ar |
| ac840 | 69 73 74 61 20 45 4f 53 20 73 65 74 75 70 00 56 79 4f 53 20 45 53 50 20 67 72 6f 75 70 20 68 61 | ista.EOS.setup.VyOS.ESP.group.ha |
| ac860 | 73 20 74 68 65 20 6e 65 78 74 20 6f 70 74 69 6f 6e 73 3a 00 56 79 4f 53 20 46 69 65 6c 64 00 56 | s.the.next.options:.VyOS.Field.V |
| ac880 | 79 4f 53 20 49 4b 45 20 67 72 6f 75 70 20 68 61 73 20 74 68 65 20 6e 65 78 74 20 6f 70 74 69 6f | yOS.IKE.group.has.the.next.optio |
| ac8a0 | 6e 73 3a 00 56 79 4f 53 20 4d 49 42 73 00 56 79 4f 53 20 4e 41 54 36 36 20 44 48 43 50 76 36 20 | ns:.VyOS.MIBs.VyOS.NAT66.DHCPv6. |
| ac8c0 | 75 73 69 6e 67 20 61 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 00 56 79 4f 53 20 4e 41 54 | using.a.dummy.interface.VyOS.NAT |
| ac8e0 | 36 36 20 53 69 6d 70 6c 65 20 43 6f 6e 66 69 67 75 72 65 00 56 79 4f 53 20 4e 65 74 77 6f 72 6b | 66.Simple.Configure.VyOS.Network |
| ac900 | 20 45 6d 75 6c 61 74 6f 72 20 70 6f 6c 69 63 79 20 65 6d 75 6c 61 74 65 73 20 74 68 65 20 63 6f | .Emulator.policy.emulates.the.co |
| ac920 | 6e 64 69 74 69 6f 6e 73 20 79 6f 75 20 63 61 6e 20 73 75 66 66 65 72 20 69 6e 20 61 20 72 65 61 | nditions.you.can.suffer.in.a.rea |
| ac940 | 6c 20 6e 65 74 77 6f 72 6b 2e 20 59 6f 75 20 77 69 6c 6c 20 62 65 20 61 62 6c 65 20 74 6f 20 63 | l.network..You.will.be.able.to.c |
| ac960 | 6f 6e 66 69 67 75 72 65 20 74 68 69 6e 67 73 20 6c 69 6b 65 20 72 61 74 65 2c 20 62 75 72 73 74 | onfigure.things.like.rate,.burst |
| ac980 | 2c 20 64 65 6c 61 79 2c 20 70 61 63 6b 65 74 20 6c 6f 73 73 2c 20 70 61 63 6b 65 74 20 63 6f 72 | ,.delay,.packet.loss,.packet.cor |
| ac9a0 | 72 75 70 74 69 6f 6e 20 6f 72 20 70 61 63 6b 65 74 20 72 65 6f 72 64 65 72 69 6e 67 2e 00 56 79 | ruption.or.packet.reordering..Vy |
| ac9c0 | 4f 53 20 4f 70 74 69 6f 6e 00 56 79 4f 53 20 50 6f 6c 69 63 79 2d 42 61 73 65 64 20 52 6f 75 74 | OS.Option.VyOS.Policy-Based.Rout |
| ac9e0 | 69 6e 67 20 28 50 42 52 29 20 77 6f 72 6b 73 20 62 79 20 6d 61 74 63 68 69 6e 67 20 73 6f 75 72 | ing.(PBR).works.by.matching.sour |
| aca00 | 63 65 20 49 50 20 61 64 64 72 65 73 73 20 72 61 6e 67 65 73 20 61 6e 64 20 66 6f 72 77 61 72 64 | ce.IP.address.ranges.and.forward |
| aca20 | 69 6e 67 20 74 68 65 20 74 72 61 66 66 69 63 20 75 73 69 6e 67 20 64 69 66 66 65 72 65 6e 74 20 | ing.the.traffic.using.different. |
| aca40 | 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 73 2e 00 56 79 4f 53 20 53 4e 4d 50 20 73 75 70 70 6f 72 | routing.tables..VyOS.SNMP.suppor |
| aca60 | 74 73 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 2e 00 56 79 4f 53 20 61 6c 73 6f | ts.both.IPv4.and.IPv6..VyOS.also |
| aca80 | 20 63 6f 6d 65 73 20 77 69 74 68 20 61 20 62 75 69 6c 64 20 69 6e 20 53 53 54 50 20 73 65 72 76 | .comes.with.a.build.in.SSTP.serv |
| acaa0 | 65 72 2c 20 73 65 65 20 3a 72 65 66 3a 60 73 73 74 70 60 2e 00 56 79 4f 53 20 61 6c 73 6f 20 70 | er,.see.:ref:`sstp`..VyOS.also.p |
| acac0 | 72 6f 76 69 64 65 73 20 44 48 43 50 76 36 20 73 65 72 76 65 72 20 66 75 6e 63 74 69 6f 6e 61 6c | rovides.DHCPv6.server.functional |
| acae0 | 69 74 79 20 77 68 69 63 68 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 74 68 69 73 20 73 | ity.which.is.described.in.this.s |
| acb00 | 65 63 74 69 6f 6e 2e 00 56 79 4f 53 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 73 20 28 63 75 72 72 | ection..VyOS.also.supports.(curr |
| acb20 | 65 6e 74 6c 79 29 20 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 6d 6f 64 65 73 20 6f 66 20 61 75 | ently).two.different.modes.of.au |
| acb40 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 2c 20 6c 6f 63 61 6c 20 61 6e 64 20 52 41 44 49 55 53 2e 20 | thentication,.local.and.RADIUS.. |
| acb60 | 54 6f 20 63 72 65 61 74 65 20 61 20 6e 65 77 20 6c 6f 63 61 6c 20 75 73 65 72 20 6e 61 6d 65 64 | To.create.a.new.local.user.named |
| acb80 | 20 60 60 76 79 6f 73 60 60 20 77 69 74 68 20 70 61 73 73 77 6f 72 64 20 60 60 76 79 6f 73 60 60 | .``vyos``.with.password.``vyos`` |
| acba0 | 20 75 73 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 2e 00 56 79 4f | .use.the.following.commands..VyO |
| acbc0 | 53 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 73 20 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 6d 6f | S.also.supports.two.different.mo |
| acbe0 | 64 65 73 20 6f 66 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2c 20 6c 6f 63 61 6c 20 61 6e 64 | des.of.authentication,.local.and |
| acc00 | 20 52 41 44 49 55 53 2e 20 54 6f 20 63 72 65 61 74 65 20 61 20 6e 65 77 20 6c 6f 63 61 6c 20 75 | .RADIUS..To.create.a.new.local.u |
| acc20 | 73 65 72 20 6e 61 6d 65 64 20 22 76 79 6f 73 22 20 77 69 74 68 20 61 20 70 61 73 73 77 6f 72 64 | ser.named."vyos".with.a.password |
| acc40 | 20 6f 66 20 22 76 79 6f 73 22 20 75 73 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d | .of."vyos".use.the.following.com |
| acc60 | 6d 61 6e 64 73 2e 00 56 79 4f 53 20 63 61 6e 20 61 6c 73 6f 20 72 75 6e 20 69 6e 20 44 4d 56 50 | mands..VyOS.can.also.run.in.DMVP |
| acc80 | 4e 20 73 70 6f 6b 65 20 6d 6f 64 65 2e 00 56 79 4f 53 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 | N.spoke.mode..VyOS.can.be.config |
| acca0 | 75 72 65 64 20 74 6f 20 74 72 61 63 6b 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 75 73 69 6e 67 20 | ured.to.track.connections.using. |
| accc0 | 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 75 62 73 79 73 74 65 | the.connection.tracking.subsyste |
| acce0 | 6d 2e 20 43 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 62 65 63 6f 6d 65 73 20 6f | m..Connection.tracking.becomes.o |
| acd00 | 70 65 72 61 74 69 6f 6e 61 6c 20 6f 6e 63 65 20 65 69 74 68 65 72 20 73 74 61 74 65 66 75 6c 20 | perational.once.either.stateful. |
| acd20 | 66 69 72 65 77 61 6c 6c 20 6f 72 20 4e 41 54 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 56 | firewall.or.NAT.is.configured..V |
| acd40 | 79 4f 53 20 63 61 6e 20 6e 6f 74 20 6f 6e 6c 79 20 61 63 74 20 61 73 20 61 6e 20 4f 70 65 6e 56 | yOS.can.not.only.act.as.an.OpenV |
| acd60 | 50 4e 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 6f 72 20 73 65 72 76 65 72 20 66 6f 72 20 6d 75 | PN.site-to-site.or.server.for.mu |
| acd80 | 6c 74 69 70 6c 65 20 63 6c 69 65 6e 74 73 20 62 75 74 20 79 6f 75 20 63 61 6e 20 61 6c 73 6f 20 | ltiple.clients.but.you.can.also. |
| acda0 | 63 6f 6e 66 69 67 75 72 65 20 61 6e 79 20 56 79 4f 53 20 4f 70 65 6e 56 50 4e 20 69 6e 74 65 72 | configure.any.VyOS.OpenVPN.inter |
| acdc0 | 66 61 63 65 20 61 73 20 61 6e 20 4f 70 65 6e 56 50 4e 20 63 6c 69 65 6e 74 20 74 68 61 74 20 63 | face.as.an.OpenVPN.client.that.c |
| acde0 | 6f 6e 6e 65 63 74 73 20 74 6f 20 61 20 56 79 4f 53 20 4f 70 65 6e 56 50 4e 20 73 65 72 76 65 72 | onnects.to.a.VyOS.OpenVPN.server |
| ace00 | 20 6f 72 20 61 6e 79 20 6f 74 68 65 72 20 4f 70 65 6e 56 50 4e 20 73 65 72 76 65 72 2e 00 56 79 | .or.any.other.OpenVPN.server..Vy |
| ace20 | 4f 53 20 63 61 6e 20 6e 6f 74 20 6f 6e 6c 79 20 61 63 74 20 61 73 20 61 6e 20 4f 70 65 6e 56 50 | OS.can.not.only.act.as.an.OpenVP |
| ace40 | 4e 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 6f 72 20 73 65 72 76 65 72 20 66 6f 72 20 6d 75 6c | N.site-to-site.or.server.for.mul |
| ace60 | 74 69 70 6c 65 20 63 6c 69 65 6e 74 73 2e 20 59 6f 75 20 63 61 6e 20 69 6e 64 65 65 64 20 61 6c | tiple.clients..You.can.indeed.al |
| ace80 | 73 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 79 20 56 79 4f 53 20 4f 70 65 6e 56 50 4e 20 69 6e | so.configure.any.VyOS.OpenVPN.in |
| acea0 | 74 65 72 66 61 63 65 20 61 73 20 61 6e 20 4f 70 65 6e 56 50 4e 20 63 6c 69 65 6e 74 20 63 6f 6e | terface.as.an.OpenVPN.client.con |
| acec0 | 6e 65 63 74 69 6e 67 20 74 6f 20 61 20 56 79 4f 53 20 4f 70 65 6e 56 50 4e 20 73 65 72 76 65 72 | necting.to.a.VyOS.OpenVPN.server |
| acee0 | 20 6f 72 20 61 6e 79 20 6f 74 68 65 72 20 4f 70 65 6e 56 50 4e 20 73 65 72 76 65 72 2e 00 56 79 | .or.any.other.OpenVPN.server..Vy |
| acf00 | 4f 53 20 64 65 66 61 75 6c 74 20 77 69 6c 6c 20 62 65 20 60 61 75 74 6f 60 2e 00 56 79 4f 53 20 | OS.default.will.be.`auto`..VyOS. |
| acf20 | 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 20 61 20 73 70 65 63 69 61 6c 20 63 6f 6d 6d 61 6e 64 20 | does.not.have.a.special.command. |
| acf40 | 74 6f 20 73 74 61 72 74 20 74 68 65 20 42 61 62 65 6c 20 70 72 6f 63 65 73 73 2e 20 54 68 65 20 | to.start.the.Babel.process..The. |
| acf60 | 42 61 62 65 6c 20 70 72 6f 63 65 73 73 20 73 74 61 72 74 73 20 77 68 65 6e 20 74 68 65 20 66 69 | Babel.process.starts.when.the.fi |
| acf80 | 72 73 74 20 42 61 62 65 6c 20 65 6e 61 62 6c 65 64 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 63 | rst.Babel.enabled.interface.is.c |
| acfa0 | 6f 6e 66 69 67 75 72 65 64 2e 00 56 79 4f 53 20 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 20 61 20 | onfigured..VyOS.does.not.have.a. |
| acfc0 | 73 70 65 63 69 61 6c 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 74 61 72 74 20 74 68 65 20 4f 53 50 | special.command.to.start.the.OSP |
| acfe0 | 46 20 70 72 6f 63 65 73 73 2e 20 54 68 65 20 4f 53 50 46 20 70 72 6f 63 65 73 73 20 73 74 61 72 | F.process..The.OSPF.process.star |
| ad000 | 74 73 20 77 68 65 6e 20 74 68 65 20 66 69 72 73 74 20 6f 73 70 66 20 65 6e 61 62 6c 65 64 20 69 | ts.when.the.first.ospf.enabled.i |
| ad020 | 6e 74 65 72 66 61 63 65 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 56 79 4f 53 20 64 6f 65 | nterface.is.configured..VyOS.doe |
| ad040 | 73 20 6e 6f 74 20 68 61 76 65 20 61 20 73 70 65 63 69 61 6c 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 | s.not.have.a.special.command.to. |
| ad060 | 73 74 61 72 74 20 74 68 65 20 4f 53 50 46 76 33 20 70 72 6f 63 65 73 73 2e 20 54 68 65 20 4f 53 | start.the.OSPFv3.process..The.OS |
| ad080 | 50 46 76 33 20 70 72 6f 63 65 73 73 20 73 74 61 72 74 73 20 77 68 65 6e 20 74 68 65 20 66 69 72 | PFv3.process.starts.when.the.fir |
| ad0a0 | 73 74 20 6f 73 70 66 20 65 6e 61 62 6c 65 64 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 63 6f 6e | st.ospf.enabled.interface.is.con |
| ad0c0 | 66 69 67 75 72 65 64 2e 00 56 79 4f 53 20 66 61 63 69 6c 69 74 61 74 65 73 20 49 50 20 4d 75 6c | figured..VyOS.facilitates.IP.Mul |
| ad0e0 | 74 69 63 61 73 74 20 62 79 20 73 75 70 70 6f 72 74 69 6e 67 20 2a 2a 50 49 4d 20 53 70 61 72 73 | ticast.by.supporting.**PIM.Spars |
| ad100 | 65 20 4d 6f 64 65 2a 2a 2c 20 2a 2a 49 47 4d 50 2a 2a 20 61 6e 64 20 2a 2a 49 47 4d 50 2d 50 72 | e.Mode**,.**IGMP**.and.**IGMP-Pr |
| ad120 | 6f 78 79 2a 2a 2e 00 56 79 4f 53 20 66 61 63 69 6c 69 74 61 74 65 73 20 49 50 76 36 20 4d 75 6c | oxy**..VyOS.facilitates.IPv6.Mul |
| ad140 | 74 69 63 61 73 74 20 62 79 20 73 75 70 70 6f 72 74 69 6e 67 20 2a 2a 50 49 4d 76 36 2a 2a 20 61 | ticast.by.supporting.**PIMv6**.a |
| ad160 | 6e 64 20 2a 2a 4d 4c 44 2a 2a 2e 00 56 79 4f 53 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 46 61 | nd.**MLD**..VyOS.includes.the.Fa |
| ad180 | 73 74 4e 65 74 4d 6f 6e 20 43 6f 6d 6d 75 6e 69 74 79 20 45 64 69 74 69 6f 6e 2e 00 56 79 4f 53 | stNetMon.Community.Edition..VyOS |
| ad1a0 | 20 69 73 20 61 62 6c 65 20 74 6f 20 75 70 64 61 74 65 20 61 20 72 65 6d 6f 74 65 20 44 4e 53 20 | .is.able.to.update.a.remote.DNS. |
| ad1c0 | 72 65 63 6f 72 64 20 77 68 65 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 67 65 74 73 20 61 20 | record.when.an.interface.gets.a. |
| ad1e0 | 6e 65 77 20 49 50 20 61 64 64 72 65 73 73 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 64 6f 20 73 | new.IP.address..In.order.to.do.s |
| ad200 | 6f 2c 20 56 79 4f 53 20 69 6e 63 6c 75 64 65 73 20 64 64 63 6c 69 65 6e 74 5f 2c 20 61 20 50 65 | o,.VyOS.includes.ddclient_,.a.Pe |
| ad220 | 72 6c 20 73 63 72 69 70 74 20 77 72 69 74 74 65 6e 20 66 6f 72 20 74 68 69 73 20 6f 6e 6c 79 20 | rl.script.written.for.this.only. |
| ad240 | 6f 6e 65 20 70 75 72 70 6f 73 65 2e 00 56 79 4f 53 20 69 73 20 61 6c 73 6f 20 61 62 6c 65 20 74 | one.purpose..VyOS.is.also.able.t |
| ad260 | 6f 20 75 73 65 20 61 6e 79 20 73 65 72 76 69 63 65 20 72 65 6c 79 69 6e 67 20 6f 6e 20 70 72 6f | o.use.any.service.relying.on.pro |
| ad280 | 74 6f 63 6f 6c 73 20 73 75 70 70 6f 72 74 65 64 20 62 79 20 64 64 63 6c 69 65 6e 74 2e 00 56 79 | tocols.supported.by.ddclient..Vy |
| ad2a0 | 4f 53 20 69 74 73 65 6c 66 20 73 75 70 70 6f 72 74 73 20 53 4e 4d 50 76 32 5f 20 28 76 65 72 73 | OS.itself.supports.SNMPv2_.(vers |
| ad2c0 | 69 6f 6e 20 32 29 20 61 6e 64 20 53 4e 4d 50 76 33 5f 20 28 76 65 72 73 69 6f 6e 20 33 29 20 77 | ion.2).and.SNMPv3_.(version.3).w |
| ad2e0 | 68 65 72 65 20 74 68 65 20 6c 61 74 65 72 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 62 65 | here.the.later.is.recommended.be |
| ad300 | 63 61 75 73 65 20 6f 66 20 69 6d 70 72 6f 76 65 64 20 73 65 63 75 72 69 74 79 20 28 6f 70 74 69 | cause.of.improved.security.(opti |
| ad320 | 6f 6e 61 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 6e 64 20 65 6e 63 72 79 70 74 69 | onal.authentication.and.encrypti |
| ad340 | 6f 6e 29 2e 00 56 79 4f 53 20 6c 65 74 73 20 79 6f 75 20 63 6f 6e 74 72 6f 6c 20 74 72 61 66 66 | on)..VyOS.lets.you.control.traff |
| ad360 | 69 63 20 69 6e 20 6d 61 6e 79 20 64 69 66 66 65 72 65 6e 74 20 77 61 79 73 2c 20 68 65 72 65 20 | ic.in.many.different.ways,.here. |
| ad380 | 77 65 20 77 69 6c 6c 20 63 6f 76 65 72 20 65 76 65 72 79 20 70 6f 73 73 69 62 69 6c 69 74 79 2e | we.will.cover.every.possibility. |
| ad3a0 | 20 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 61 73 20 6d 61 6e 79 20 70 6f 6c 69 63 | .You.can.configure.as.many.polic |
| ad3c0 | 69 65 73 20 61 73 20 79 6f 75 20 77 61 6e 74 2c 20 62 75 74 20 79 6f 75 20 77 69 6c 6c 20 6f 6e | ies.as.you.want,.but.you.will.on |
| ad3e0 | 6c 79 20 62 65 20 61 62 6c 65 20 74 6f 20 61 70 70 6c 79 20 6f 6e 65 20 70 6f 6c 69 63 79 20 70 | ly.be.able.to.apply.one.policy.p |
| ad400 | 65 72 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 64 69 72 65 63 74 69 6f 6e 20 28 69 6e 62 6f | er.interface.and.direction.(inbo |
| ad420 | 75 6e 64 20 6f 72 20 6f 75 74 62 6f 75 6e 64 29 2e 00 56 79 4f 53 20 6d 61 6b 65 73 20 75 73 65 | und.or.outbound)..VyOS.makes.use |
| ad440 | 20 6f 66 20 3a 61 62 62 72 3a 60 46 52 52 20 28 46 72 65 65 20 52 61 6e 67 65 20 52 6f 75 74 69 | .of.:abbr:`FRR.(Free.Range.Routi |
| ad460 | 6e 67 29 60 20 61 6e 64 20 77 65 20 77 6f 75 6c 64 20 6c 69 6b 65 20 74 6f 20 74 68 61 6e 6b 20 | ng)`.and.we.would.like.to.thank. |
| ad480 | 74 68 65 6d 20 66 6f 72 20 74 68 65 69 72 20 65 66 66 6f 72 74 21 00 56 79 4f 53 20 6d 61 6b 65 | them.for.their.effort!.VyOS.make |
| ad4a0 | 73 20 75 73 65 20 6f 66 20 4c 69 6e 75 78 20 60 6e 65 74 66 69 6c 74 65 72 20 3c 68 74 74 70 73 | s.use.of.Linux.`netfilter.<https |
| ad4c0 | 3a 2f 2f 6e 65 74 66 69 6c 74 65 72 2e 6f 72 67 2f 3e 60 5f 20 66 6f 72 20 70 61 63 6b 65 74 20 | ://netfilter.org/>`_.for.packet. |
| ad4e0 | 66 69 6c 74 65 72 69 6e 67 2e 00 56 79 4f 53 20 6e 6f 74 20 6f 6e 6c 79 20 63 61 6e 20 6e 6f 77 | filtering..VyOS.not.only.can.now |
| ad500 | 20 6d 61 6e 61 67 65 20 63 65 72 74 69 66 69 63 61 74 65 73 20 69 73 73 75 65 64 20 62 79 20 33 | .manage.certificates.issued.by.3 |
| ad520 | 72 64 20 70 61 72 74 79 20 43 65 72 74 69 66 69 63 61 74 65 20 41 75 74 68 6f 72 69 74 69 65 73 | rd.party.Certificate.Authorities |
| ad540 | 2c 20 69 74 20 63 61 6e 20 61 6c 73 6f 20 61 63 74 20 61 73 20 61 20 43 41 20 6f 6e 20 69 74 73 | ,.it.can.also.act.as.a.CA.on.its |
| ad560 | 20 6f 77 6e 2e 20 59 6f 75 20 63 61 6e 20 63 72 65 61 74 65 20 79 6f 75 72 20 6f 77 6e 20 72 6f | .own..You.can.create.your.own.ro |
| ad580 | 6f 74 20 43 41 20 61 6e 64 20 73 69 67 6e 20 6b 65 79 73 20 77 69 74 68 20 69 74 20 62 79 20 6d | ot.CA.and.sign.keys.with.it.by.m |
| ad5a0 | 61 6b 69 6e 67 20 75 73 65 20 6f 66 20 73 6f 6d 65 20 73 69 6d 70 6c 65 20 6f 70 2d 6d 6f 64 65 | aking.use.of.some.simple.op-mode |
| ad5c0 | 20 63 6f 6d 6d 61 6e 64 73 2e 00 56 79 4f 53 20 6e 6f 77 20 61 6c 73 6f 20 68 61 73 20 74 68 65 | .commands..VyOS.now.also.has.the |
| ad5e0 | 20 61 62 69 6c 69 74 79 20 74 6f 20 63 72 65 61 74 65 20 43 41 73 2c 20 6b 65 79 73 2c 20 44 69 | .ability.to.create.CAs,.keys,.Di |
| ad600 | 66 66 69 65 2d 48 65 6c 6c 6d 61 6e 20 61 6e 64 20 6f 74 68 65 72 20 6b 65 79 70 61 69 72 73 20 | ffie-Hellman.and.other.keypairs. |
| ad620 | 66 72 6f 6d 20 61 6e 20 65 61 73 79 20 74 6f 20 61 63 63 65 73 73 20 6f 70 65 72 61 74 69 6f 6e | from.an.easy.to.access.operation |
| ad640 | 61 6c 20 6c 65 76 65 6c 20 63 6f 6d 6d 61 6e 64 2e 00 56 79 4f 53 20 6f 70 65 72 61 74 69 6f 6e | al.level.command..VyOS.operation |
| ad660 | 61 6c 20 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 20 61 72 65 20 6e 6f 74 20 6f 6e 6c 79 20 61 76 | al.mode.commands.are.not.only.av |
| ad680 | 61 69 6c 61 62 6c 65 20 66 6f 72 20 67 65 6e 65 72 61 74 69 6e 67 20 6b 65 79 73 20 62 75 74 20 | ailable.for.generating.keys.but. |
| ad6a0 | 61 6c 73 6f 20 74 6f 20 64 69 73 70 6c 61 79 20 74 68 65 6d 2e 00 56 79 4f 53 20 70 72 6f 76 69 | also.to.display.them..VyOS.provi |
| ad6c0 | 64 65 20 61 6e 20 48 54 54 50 20 41 50 49 2e 20 59 6f 75 20 63 61 6e 20 75 73 65 20 69 74 20 74 | de.an.HTTP.API..You.can.use.it.t |
| ad6e0 | 6f 20 65 78 65 63 75 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2c 20 75 70 64 61 | o.execute.op-mode.commands,.upda |
| ad700 | 74 65 20 56 79 4f 53 2c 20 73 65 74 20 6f 72 20 64 65 6c 65 74 65 20 63 6f 6e 66 69 67 2e 00 56 | te.VyOS,.set.or.delete.config..V |
| ad720 | 79 4f 53 20 70 72 6f 76 69 64 65 73 20 44 4e 53 20 69 6e 66 72 61 73 74 72 75 63 74 75 72 65 20 | yOS.provides.DNS.infrastructure. |
| ad740 | 66 6f 72 20 73 6d 61 6c 6c 20 6e 65 74 77 6f 72 6b 73 2e 20 49 74 20 69 73 20 64 65 73 69 67 6e | for.small.networks..It.is.design |
| ad760 | 65 64 20 74 6f 20 62 65 20 6c 69 67 68 74 77 65 69 67 68 74 20 61 6e 64 20 68 61 76 65 20 61 20 | ed.to.be.lightweight.and.have.a. |
| ad780 | 73 6d 61 6c 6c 20 66 6f 6f 74 70 72 69 6e 74 2c 20 73 75 69 74 61 62 6c 65 20 66 6f 72 20 72 65 | small.footprint,.suitable.for.re |
| ad7a0 | 73 6f 75 72 63 65 20 63 6f 6e 73 74 72 61 69 6e 65 64 20 72 6f 75 74 65 72 73 20 61 6e 64 20 66 | source.constrained.routers.and.f |
| ad7c0 | 69 72 65 77 61 6c 6c 73 2e 20 46 6f 72 20 74 68 69 73 20 77 65 20 75 74 69 6c 69 7a 65 20 50 6f | irewalls..For.this.we.utilize.Po |
| ad7e0 | 77 65 72 44 4e 53 20 72 65 63 75 72 73 6f 72 2e 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 48 | werDNS.recursor..VyOS.provides.H |
| ad800 | 69 67 68 20 41 76 61 69 6c 61 62 69 6c 69 74 79 20 73 75 70 70 6f 72 74 20 66 6f 72 20 44 48 43 | igh.Availability.support.for.DHC |
| ad820 | 50 20 73 65 72 76 65 72 2e 20 44 48 43 50 20 48 69 67 68 20 41 76 61 69 6c 61 62 69 6c 69 74 79 | P.server..DHCP.High.Availability |
| ad840 | 20 63 61 6e 20 61 63 74 20 69 6e 20 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 6d 6f 64 65 73 3a | .can.act.in.two.different.modes: |
| ad860 | 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 61 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 67 65 6e 65 | .VyOS.provides.a.command.to.gene |
| ad880 | 72 61 74 65 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 70 72 6f 66 69 6c 65 20 75 73 65 64 20 62 | rate.a.connection.profile.used.b |
| ad8a0 | 79 20 57 69 6e 64 6f 77 73 20 63 6c 69 65 6e 74 73 20 74 68 61 74 20 77 69 6c 6c 20 63 6f 6e 6e | y.Windows.clients.that.will.conn |
| ad8c0 | 65 63 74 20 74 6f 20 74 68 65 20 22 72 77 22 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 6e 20 6f 75 | ect.to.the."rw".connection.on.ou |
| ad8e0 | 72 20 56 79 4f 53 20 73 65 72 76 65 72 2e 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 70 6f 6c | r.VyOS.server..VyOS.provides.pol |
| ad900 | 69 63 69 65 73 20 63 6f 6d 6d 61 6e 64 73 20 65 78 63 6c 75 73 69 76 65 6c 79 20 66 6f 72 20 42 | icies.commands.exclusively.for.B |
| ad920 | 47 50 20 74 72 61 66 66 69 63 20 66 69 6c 74 65 72 69 6e 67 20 61 6e 64 20 6d 61 6e 69 70 75 6c | GP.traffic.filtering.and.manipul |
| ad940 | 61 74 69 6f 6e 3a 20 2a 2a 61 73 2d 70 61 74 68 2d 6c 69 73 74 2a 2a 20 69 73 20 6f 6e 65 20 6f | ation:.**as-path-list**.is.one.o |
| ad960 | 66 20 74 68 65 6d 2e 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 70 6f 6c 69 63 69 65 73 20 63 | f.them..VyOS.provides.policies.c |
| ad980 | 6f 6d 6d 61 6e 64 73 20 65 78 63 6c 75 73 69 76 65 6c 79 20 66 6f 72 20 42 47 50 20 74 72 61 66 | ommands.exclusively.for.BGP.traf |
| ad9a0 | 66 69 63 20 66 69 6c 74 65 72 69 6e 67 20 61 6e 64 20 6d 61 6e 69 70 75 6c 61 74 69 6f 6e 3a 20 | fic.filtering.and.manipulation:. |
| ad9c0 | 2a 2a 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 2a 2a 20 69 73 20 6f 6e 65 20 6f 66 20 74 68 65 | **community-list**.is.one.of.the |
| ad9e0 | 6d 2e 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 70 6f 6c 69 63 69 65 73 20 63 6f 6d 6d 61 6e | m..VyOS.provides.policies.comman |
| ada00 | 64 73 20 65 78 63 6c 75 73 69 76 65 6c 79 20 66 6f 72 20 42 47 50 20 74 72 61 66 66 69 63 20 66 | ds.exclusively.for.BGP.traffic.f |
| ada20 | 69 6c 74 65 72 69 6e 67 20 61 6e 64 20 6d 61 6e 69 70 75 6c 61 74 69 6f 6e 3a 20 2a 2a 65 78 74 | iltering.and.manipulation:.**ext |
| ada40 | 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 2a 2a 20 69 73 20 6f 6e 65 20 6f 66 20 74 68 65 6d 2e | community-list**.is.one.of.them. |
| ada60 | 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 70 6f 6c 69 63 69 65 73 20 63 6f 6d 6d 61 6e 64 73 | .VyOS.provides.policies.commands |
| ada80 | 20 65 78 63 6c 75 73 69 76 65 6c 79 20 66 6f 72 20 42 47 50 20 74 72 61 66 66 69 63 20 66 69 6c | .exclusively.for.BGP.traffic.fil |
| adaa0 | 74 65 72 69 6e 67 20 61 6e 64 20 6d 61 6e 69 70 75 6c 61 74 69 6f 6e 3a 20 2a 2a 6c 61 72 67 65 | tering.and.manipulation:.**large |
| adac0 | 2d 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 2a 2a 20 69 73 20 6f 6e 65 20 6f 66 20 74 68 65 6d | -community-list**.is.one.of.them |
| adae0 | 2e 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 73 6f 6d 65 20 6f 70 65 72 61 74 69 6f 6e 61 6c | ..VyOS.provides.some.operational |
| adb00 | 20 63 6f 6d 6d 61 6e 64 73 20 6f 6e 20 4f 70 65 6e 56 50 4e 2e 00 56 79 4f 53 20 70 72 6f 76 69 | .commands.on.OpenVPN..VyOS.provi |
| adb20 | 64 65 73 20 73 75 70 70 6f 72 74 20 66 6f 72 20 44 48 43 50 20 66 61 69 6c 6f 76 65 72 2e 20 44 | des.support.for.DHCP.failover..D |
| adb40 | 48 43 50 20 66 61 69 6c 6f 76 65 72 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 | HCP.failover.must.be.configured. |
| adb60 | 65 78 70 6c 69 63 69 74 6c 79 20 62 79 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 74 61 74 | explicitly.by.the.following.stat |
| adb80 | 65 6d 65 6e 74 73 2e 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 74 68 69 73 20 75 74 69 6c 69 | ements..VyOS.provides.this.utili |
| adba0 | 74 79 20 74 6f 20 69 6d 70 6f 72 74 20 65 78 69 73 74 69 6e 67 20 63 65 72 74 69 66 69 63 61 74 | ty.to.import.existing.certificat |
| adbc0 | 65 73 2f 6b 65 79 20 66 69 6c 65 73 20 64 69 72 65 63 74 6c 79 20 69 6e 74 6f 20 50 4b 49 20 66 | es/key.files.directly.into.PKI.f |
| adbe0 | 72 6f 6d 20 6f 70 2d 6d 6f 64 65 2e 20 50 72 65 76 69 6f 75 73 20 74 6f 20 56 79 4f 53 20 31 2e | rom.op-mode..Previous.to.VyOS.1. |
| adc00 | 34 2c 20 63 65 72 74 69 66 69 63 61 74 65 73 20 77 65 72 65 20 73 74 6f 72 65 64 20 75 6e 64 65 | 4,.certificates.were.stored.unde |
| adc20 | 72 20 74 68 65 20 2f 63 6f 6e 66 69 67 20 66 6f 6c 64 65 72 20 70 65 72 6d 61 6e 65 6e 74 6c 79 | r.the./config.folder.permanently |
| adc40 | 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 72 65 74 61 69 6e 65 64 20 70 6f 73 74 20 75 70 67 72 61 | .and.will.be.retained.post.upgra |
| adc60 | 64 65 2e 00 56 79 4f 53 20 72 65 76 65 72 73 65 2d 70 72 6f 78 79 20 69 73 20 62 61 6c 61 6e 63 | de..VyOS.reverse-proxy.is.balanc |
| adc80 | 65 72 20 61 6e 64 20 70 72 6f 78 79 20 73 65 72 76 65 72 20 74 68 61 74 20 70 72 6f 76 69 64 65 | er.and.proxy.server.that.provide |
| adca0 | 73 20 68 69 67 68 2d 61 76 61 69 6c 61 62 69 6c 69 74 79 2c 20 6c 6f 61 64 20 62 61 6c 61 6e 63 | s.high-availability,.load.balanc |
| adcc0 | 69 6e 67 20 61 6e 64 20 70 72 6f 78 79 69 6e 67 20 66 6f 72 20 54 43 50 20 28 6c 65 76 65 6c 20 | ing.and.proxying.for.TCP.(level. |
| adce0 | 34 29 20 61 6e 64 20 48 54 54 50 2d 62 61 73 65 64 20 28 6c 65 76 65 6c 20 37 29 20 61 70 70 6c | 4).and.HTTP-based.(level.7).appl |
| add00 | 69 63 61 74 69 6f 6e 73 2e 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 3a 61 62 62 72 3a 60 50 | ications..VyOS.supports.:abbr:`P |
| add20 | 49 4d 2d 53 4d 20 28 50 49 4d 20 53 70 61 72 73 65 20 4d 6f 64 65 29 60 20 61 73 20 77 65 6c 6c | IM-SM.(PIM.Sparse.Mode)`.as.well |
| add40 | 20 61 73 20 3a 61 62 62 72 3a 60 49 47 4d 50 20 28 49 6e 74 65 72 6e 65 74 20 47 72 6f 75 70 20 | .as.:abbr:`IGMP.(Internet.Group. |
| add60 | 4d 61 6e 61 67 65 6d 65 6e 74 20 50 72 6f 74 6f 63 6f 6c 29 60 20 76 32 20 61 6e 64 20 76 33 00 | Management.Protocol)`.v2.and.v3. |
| add80 | 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 62 6f 74 68 20 49 47 4d 50 20 76 65 72 73 69 6f 6e 20 | VyOS.supports.both.IGMP.version. |
| adda0 | 32 20 61 6e 64 20 76 65 72 73 69 6f 6e 20 33 20 28 77 68 69 63 68 20 61 6c 6c 6f 77 73 20 73 6f | 2.and.version.3.(which.allows.so |
| addc0 | 75 72 63 65 2d 73 70 65 63 69 66 69 63 20 6d 75 6c 74 69 63 61 73 74 29 2e 00 56 79 4f 53 20 73 | urce-specific.multicast)..VyOS.s |
| adde0 | 75 70 70 6f 72 74 73 20 62 6f 74 68 20 4d 4c 44 20 76 65 72 73 69 6f 6e 20 31 20 61 6e 64 20 76 | upports.both.MLD.version.1.and.v |
| ade00 | 65 72 73 69 6f 6e 20 32 20 28 77 68 69 63 68 20 61 6c 6c 6f 77 73 20 73 6f 75 72 63 65 2d 73 70 | ersion.2.(which.allows.source-sp |
| ade20 | 65 63 69 66 69 63 20 6d 75 6c 74 69 63 61 73 74 29 2e 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 | ecific.multicast)..VyOS.supports |
| ade40 | 20 66 6c 6f 77 2d 61 63 63 6f 75 6e 74 69 6e 67 20 66 6f 72 20 62 6f 74 68 20 49 50 76 34 20 61 | .flow-accounting.for.both.IPv4.a |
| ade60 | 6e 64 20 49 50 76 36 20 74 72 61 66 66 69 63 2e 20 54 68 65 20 73 79 73 74 65 6d 20 61 63 74 73 | nd.IPv6.traffic..The.system.acts |
| ade80 | 20 61 73 20 61 20 66 6c 6f 77 20 65 78 70 6f 72 74 65 72 2c 20 61 6e 64 20 79 6f 75 20 61 72 65 | .as.a.flow.exporter,.and.you.are |
| adea0 | 20 66 72 65 65 20 74 6f 20 75 73 65 20 69 74 20 77 69 74 68 20 61 6e 79 20 63 6f 6d 70 61 74 69 | .free.to.use.it.with.any.compati |
| adec0 | 62 6c 65 20 63 6f 6c 6c 65 63 74 6f 72 2e 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 6d 75 6c | ble.collector..VyOS.supports.mul |
| adee0 | 74 69 2d 66 61 63 74 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 28 4d 46 41 29 20 6f | ti-factor.authentication.(MFA).o |
| adf00 | 72 20 74 77 6f 2d 66 61 63 74 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 75 73 69 6e | r.two-factor.authentication.usin |
| adf20 | 67 20 54 69 6d 65 2d 62 61 73 65 64 20 4f 6e 65 2d 54 69 6d 65 20 50 61 73 73 77 6f 72 64 20 28 | g.Time-based.One-Time.Password.( |
| adf40 | 54 4f 54 50 29 2e 20 43 6f 6d 70 61 74 69 62 6c 65 20 77 69 74 68 20 47 6f 6f 67 6c 65 20 41 75 | TOTP)..Compatible.with.Google.Au |
| adf60 | 74 68 65 6e 74 69 63 61 74 6f 72 20 73 6f 66 74 77 61 72 65 20 74 6f 6b 65 6e 2c 20 6f 74 68 65 | thenticator.software.token,.othe |
| adf80 | 72 20 73 6f 66 74 77 61 72 65 20 74 6f 6b 65 6e 73 2e 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 | r.software.tokens..VyOS.supports |
| adfa0 | 20 6d 75 6c 74 69 70 6c 65 20 49 4b 45 76 32 20 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 20 63 6f | .multiple.IKEv2.remote-access.co |
| adfc0 | 6e 6e 65 63 74 69 6f 6e 73 2e 20 45 76 65 72 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 63 61 6e 20 | nnections..Every.connection.can. |
| adfe0 | 68 61 76 65 20 69 74 73 20 64 65 64 69 63 61 74 65 64 20 49 4b 45 2f 45 53 50 20 63 69 70 68 65 | have.its.dedicated.IKE/ESP.ciphe |
| ae000 | 72 73 2c 20 63 65 72 74 69 66 69 63 61 74 65 73 20 6f 72 20 6c 6f 63 61 6c 20 6c 69 73 74 65 6e | rs,.certificates.or.local.listen |
| ae020 | 20 61 64 64 72 65 73 73 20 66 6f 72 20 65 2e 67 2e 20 69 6e 62 6f 75 6e 64 20 6c 6f 61 64 20 62 | .address.for.e.g..inbound.load.b |
| ae040 | 61 6c 61 6e 63 69 6e 67 2e 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 6d 75 6c 74 69 70 6c 65 | alancing..VyOS.supports.multiple |
| ae060 | 20 49 4b 45 76 32 20 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 | .IKEv2.remote-access.connections |
| ae080 | 2e 20 45 76 65 72 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 63 61 6e 20 68 61 76 65 20 69 74 73 20 | ..Every.connection.can.have.its. |
| ae0a0 | 6f 77 6e 20 64 65 64 69 63 61 74 65 64 20 49 4b 45 2f 45 53 50 20 63 69 70 68 65 72 73 2c 20 63 | own.dedicated.IKE/ESP.ciphers,.c |
| ae0c0 | 65 72 74 69 66 69 63 61 74 65 73 20 6f 72 20 6c 6f 63 61 6c 20 6c 69 73 74 65 6e 20 61 64 64 72 | ertificates.or.local.listen.addr |
| ae0e0 | 65 73 73 20 66 6f 72 20 65 2e 67 2e 20 69 6e 62 6f 75 6e 64 20 6c 6f 61 64 20 62 61 6c 61 6e 63 | ess.for.e.g..inbound.load.balanc |
| ae100 | 69 6e 67 2e 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 6f 6e 6c 69 6e 65 20 63 68 65 63 6b 69 | ing..VyOS.supports.online.checki |
| ae120 | 6e 67 20 66 6f 72 20 75 70 64 61 74 65 73 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 73 46 6c | ng.for.updates.VyOS.supports.sFl |
| ae140 | 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 20 66 6f 72 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 | ow.accounting.for.both.IPv4.and. |
| ae160 | 49 50 76 36 20 74 72 61 66 66 69 63 2e 20 54 68 65 20 73 79 73 74 65 6d 20 61 63 74 73 20 61 73 | IPv6.traffic..The.system.acts.as |
| ae180 | 20 61 20 66 6c 6f 77 20 65 78 70 6f 72 74 65 72 2c 20 61 6e 64 20 79 6f 75 20 61 72 65 20 66 72 | .a.flow.exporter,.and.you.are.fr |
| ae1a0 | 65 65 20 74 6f 20 75 73 65 20 69 74 20 77 69 74 68 20 61 6e 79 20 63 6f 6d 70 61 74 69 62 6c 65 | ee.to.use.it.with.any.compatible |
| ae1c0 | 20 63 6f 6c 6c 65 63 74 6f 72 2e 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 73 65 74 74 69 6e | .collector..VyOS.supports.settin |
| ae1e0 | 67 20 74 69 6d 65 6f 75 74 73 20 66 6f 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 61 63 63 6f 72 | g.timeouts.for.connections.accor |
| ae200 | 64 69 6e 67 20 74 6f 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 79 70 65 2e 20 59 6f 75 | ding.to.the.connection.type..You |
| ae220 | 20 63 61 6e 20 73 65 74 20 74 69 6d 65 6f 75 74 20 76 61 6c 75 65 73 20 66 6f 72 20 67 65 6e 65 | .can.set.timeout.values.for.gene |
| ae240 | 72 69 63 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2c 20 66 6f 72 20 49 43 4d 50 20 63 6f 6e 6e 65 63 | ric.connections,.for.ICMP.connec |
| ae260 | 74 69 6f 6e 73 2c 20 55 44 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2c 20 6f 72 20 66 6f 72 20 54 | tions,.UDP.connections,.or.for.T |
| ae280 | 43 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 69 6e 20 61 20 6e 75 6d 62 65 72 20 6f 66 20 64 69 | CP.connections.in.a.number.of.di |
| ae2a0 | 66 66 65 72 65 6e 74 20 73 74 61 74 65 73 2e 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 73 65 | fferent.states..VyOS.supports.se |
| ae2c0 | 74 74 69 6e 67 20 75 70 20 50 50 50 6f 45 20 69 6e 20 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 | tting.up.PPPoE.in.two.different. |
| ae2e0 | 77 61 79 73 20 74 6f 20 61 20 50 50 50 6f 45 20 69 6e 74 65 72 6e 65 74 20 63 6f 6e 6e 65 63 74 | ways.to.a.PPPoE.internet.connect |
| ae300 | 69 6f 6e 2e 20 54 68 69 73 20 69 73 20 62 65 63 61 75 73 65 20 6d 6f 73 74 20 49 53 50 73 20 70 | ion..This.is.because.most.ISPs.p |
| ae320 | 72 6f 76 69 64 65 20 61 20 6d 6f 64 65 6d 20 74 68 61 74 20 69 73 20 61 6c 73 6f 20 61 20 77 69 | rovide.a.modem.that.is.also.a.wi |
| ae340 | 72 65 6c 65 73 73 20 72 6f 75 74 65 72 2e 00 56 79 4f 53 20 75 73 65 73 20 49 53 43 20 44 48 43 | reless.router..VyOS.uses.ISC.DHC |
| ae360 | 50 20 73 65 72 76 65 72 20 66 6f 72 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 | P.server.for.both.IPv4.and.IPv6. |
| ae380 | 61 64 64 72 65 73 73 20 61 73 73 69 67 6e 6d 65 6e 74 2e 00 56 79 4f 53 20 75 73 65 73 20 4b 65 | address.assignment..VyOS.uses.Ke |
| ae3a0 | 61 20 44 48 43 50 20 73 65 72 76 65 72 20 66 6f 72 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 | a.DHCP.server.for.both.IPv4.and. |
| ae3c0 | 49 50 76 36 20 61 64 64 72 65 73 73 20 61 73 73 69 67 6e 6d 65 6e 74 2e 00 56 79 4f 53 20 75 73 | IPv6.address.assignment..VyOS.us |
| ae3e0 | 65 73 20 5b 46 52 52 6f 75 74 69 6e 67 5d 28 68 74 74 70 73 3a 2f 2f 66 72 72 6f 75 74 69 6e 67 | es.[FRRouting](https://frrouting |
| ae400 | 2e 6f 72 67 2f 29 20 61 73 20 74 68 65 20 63 6f 6e 74 72 6f 6c 20 70 6c 61 6e 65 20 66 6f 72 20 | .org/).as.the.control.plane.for. |
| ae420 | 64 79 6e 61 6d 69 63 20 61 6e 64 20 73 74 61 74 69 63 20 72 6f 75 74 69 6e 67 2e 20 54 68 65 20 | dynamic.and.static.routing..The. |
| ae440 | 72 6f 75 74 69 6e 67 20 64 61 65 6d 6f 6e 20 62 65 68 61 76 69 6f 72 20 63 61 6e 20 62 65 20 61 | routing.daemon.behavior.can.be.a |
| ae460 | 64 6a 75 73 74 65 64 20 64 75 72 69 6e 67 20 72 75 6e 74 69 6d 65 2c 20 62 75 74 20 72 65 71 75 | djusted.during.runtime,.but.requ |
| ae480 | 69 72 65 20 65 69 74 68 65 72 20 61 20 72 65 73 74 61 72 74 20 6f 66 20 74 68 65 20 72 6f 75 74 | ire.either.a.restart.of.the.rout |
| ae4a0 | 69 6e 67 20 64 61 65 6d 6f 6e 2c 20 6f 72 20 61 20 72 65 62 6f 6f 74 20 6f 66 20 74 68 65 20 73 | ing.daemon,.or.a.reboot.of.the.s |
| ae4c0 | 79 73 74 65 6d 2e 00 56 79 4f 53 20 75 73 65 73 20 74 68 65 20 60 69 6e 74 65 72 66 61 63 65 73 | ystem..VyOS.uses.the.`interfaces |
| ae4e0 | 20 77 77 61 6e 60 20 73 75 62 73 79 73 74 65 6d 20 66 6f 72 20 63 6f 6e 66 69 67 75 72 61 74 69 | .wwan`.subsystem.for.configurati |
| ae500 | 6f 6e 2e 00 56 79 4f 53 20 75 73 65 73 20 74 68 65 20 60 6d 69 72 72 6f 72 60 20 6f 70 74 69 6f | on..VyOS.uses.the.`mirror`.optio |
| ae520 | 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 70 6f 72 74 20 6d 69 72 72 6f 72 69 6e 67 2e 20 54 | n.to.configure.port.mirroring..T |
| ae540 | 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 64 69 76 69 64 65 64 20 69 6e 74 6f | he.configuration.is.divided.into |
| ae560 | 20 32 20 64 69 66 66 65 72 65 6e 74 20 64 69 72 65 63 74 69 6f 6e 73 2e 20 44 65 73 74 69 6e 61 | .2.different.directions..Destina |
| ae580 | 74 69 6f 6e 20 70 6f 72 74 73 20 73 68 6f 75 6c 64 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 | tion.ports.should.be.configured. |
| ae5a0 | 66 6f 72 20 64 69 66 66 65 72 65 6e 74 20 74 72 61 66 66 69 63 20 64 69 72 65 63 74 69 6f 6e 73 | for.different.traffic.directions |
| ae5c0 | 2e 00 56 79 4f 53 20 75 74 69 6c 69 7a 65 73 20 60 61 63 63 65 6c 2d 70 70 70 60 5f 20 74 6f 20 | ..VyOS.utilizes.`accel-ppp`_.to. |
| ae5e0 | 70 72 6f 76 69 64 65 20 3a 61 62 62 72 3a 60 49 50 6f 45 20 28 49 6e 74 65 72 6e 65 74 20 50 72 | provide.:abbr:`IPoE.(Internet.Pr |
| ae600 | 6f 74 6f 63 6f 6c 20 6f 76 65 72 20 45 74 68 65 72 6e 65 74 29 60 20 73 65 72 76 65 72 20 66 75 | otocol.over.Ethernet)`.server.fu |
| ae620 | 6e 63 74 69 6f 6e 61 6c 69 74 79 2e 20 49 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 77 69 74 68 | nctionality..It.can.be.used.with |
| ae640 | 20 6c 6f 63 61 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 28 6d 61 63 2d 61 64 64 72 65 | .local.authentication.(mac-addre |
| ae660 | 73 73 29 20 6f 72 20 61 20 63 6f 6e 6e 65 63 74 65 64 20 52 41 44 49 55 53 20 73 65 72 76 65 72 | ss).or.a.connected.RADIUS.server |
| ae680 | 2e 00 56 79 4f 53 20 75 74 69 6c 69 7a 65 73 20 60 61 63 63 65 6c 2d 70 70 70 60 5f 20 74 6f 20 | ..VyOS.utilizes.`accel-ppp`_.to. |
| ae6a0 | 70 72 6f 76 69 64 65 20 50 50 50 6f 45 20 73 65 72 76 65 72 20 66 75 6e 63 74 69 6f 6e 61 6c 69 | provide.PPPoE.server.functionali |
| ae6c0 | 74 79 2e 20 49 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 77 69 74 68 20 6c 6f 63 61 6c 20 61 75 | ty..It.can.be.used.with.local.au |
| ae6e0 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f 72 20 61 20 63 6f 6e 6e 65 63 74 65 64 20 52 41 44 49 | thentication.or.a.connected.RADI |
| ae700 | 55 53 20 73 65 72 76 65 72 2e 00 56 79 4f 53 20 75 74 69 6c 69 7a 65 73 20 61 63 63 65 6c 2d 70 | US.server..VyOS.utilizes.accel-p |
| ae720 | 70 70 5f 20 74 6f 20 70 72 6f 76 69 64 65 20 4c 32 54 50 20 73 65 72 76 65 72 20 66 75 6e 63 74 | pp_.to.provide.L2TP.server.funct |
| ae740 | 69 6f 6e 61 6c 69 74 79 2e 20 49 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 77 69 74 68 20 6c 6f | ionality..It.can.be.used.with.lo |
| ae760 | 63 61 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f 72 20 61 20 63 6f 6e 6e 65 63 74 65 | cal.authentication.or.a.connecte |
| ae780 | 64 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 56 79 4f 53 20 75 74 69 6c 69 7a 65 73 20 61 | d.RADIUS.server..VyOS.utilizes.a |
| ae7a0 | 63 63 65 6c 2d 70 70 70 5f 20 74 6f 20 70 72 6f 76 69 64 65 20 53 53 54 50 20 73 65 72 76 65 72 | ccel-ppp_.to.provide.SSTP.server |
| ae7c0 | 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 2e 20 57 65 20 73 75 70 70 6f 72 74 20 62 6f 74 68 20 | .functionality..We.support.both. |
| ae7e0 | 6c 6f 63 61 6c 20 61 6e 64 20 52 41 44 49 55 53 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e | local.and.RADIUS.authentication. |
| ae800 | 00 57 41 4e 20 4c 6f 61 64 20 42 61 6c 61 63 69 6e 67 20 73 68 6f 75 6c 64 20 6e 6f 74 20 62 65 | .WAN.Load.Balacing.should.not.be |
| ae820 | 20 75 73 65 64 20 77 68 65 6e 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f | .used.when.dynamic.routing.proto |
| ae840 | 63 6f 6c 20 69 73 20 75 73 65 64 2f 6e 65 65 64 65 64 2e 20 54 68 69 73 20 66 65 61 74 75 72 65 | col.is.used/needed..This.feature |
| ae860 | 20 63 72 65 61 74 65 73 20 63 75 73 74 6f 6d 69 7a 65 64 20 72 6f 75 74 69 6e 67 20 74 61 62 6c | .creates.customized.routing.tabl |
| ae880 | 65 73 20 61 6e 64 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 2c 20 74 68 61 74 20 6d 61 6b 65 | es.and.firewall.rules,.that.make |
| ae8a0 | 73 20 69 74 20 69 6e 63 6f 6d 70 61 74 69 62 6c 65 20 74 6f 20 75 73 65 20 77 69 74 68 20 72 6f | s.it.incompatible.to.use.with.ro |
| ae8c0 | 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 57 41 4e 20 69 6e 74 65 72 66 61 63 65 20 6f | uting.protocols..WAN.interface.o |
| ae8e0 | 6e 20 60 65 74 68 31 60 00 57 41 4e 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 00 57 4c 41 4e | n.`eth1`.WAN.load.balancing.WLAN |
| ae900 | 2f 57 49 46 49 20 2d 20 57 69 72 65 6c 65 73 73 20 4c 41 4e 00 57 4d 4d 2d 50 53 20 55 6e 73 63 | /WIFI.-.Wireless.LAN.WMM-PS.Unsc |
| ae920 | 68 65 64 75 6c 65 64 20 41 75 74 6f 6d 61 74 69 63 20 50 6f 77 65 72 20 53 61 76 65 20 44 65 6c | heduled.Automatic.Power.Save.Del |
| ae940 | 69 76 65 72 79 20 5b 55 2d 41 50 53 44 5d 00 57 50 41 20 70 61 73 73 70 68 72 61 73 65 20 60 60 | ivery.[U-APSD].WPA.passphrase.`` |
| ae960 | 31 32 33 34 35 36 37 38 60 60 00 57 50 41 20 70 61 73 73 70 68 72 61 73 65 20 60 60 73 75 70 65 | 12345678``.WPA.passphrase.``supe |
| ae980 | 72 2d 64 6f 6f 70 65 72 2d 73 65 63 75 72 65 2d 70 61 73 73 70 68 72 61 73 65 60 60 00 57 57 41 | r-dooper-secure-passphrase``.WWA |
| ae9a0 | 4e 20 2d 20 57 69 72 65 6c 65 73 73 20 57 69 64 65 2d 41 72 65 61 2d 4e 65 74 77 6f 72 6b 00 57 | N.-.Wireless.Wide-Area-Network.W |
| ae9c0 | 61 72 6e 69 6e 67 00 57 61 72 6e 69 6e 67 20 63 6f 6e 64 69 74 69 6f 6e 73 00 57 65 20 61 73 73 | arning.Warning.conditions.We.ass |
| ae9e0 | 75 6d 65 20 74 68 61 74 20 74 68 65 20 4c 45 46 54 20 72 6f 75 74 65 72 20 68 61 73 20 73 74 61 | ume.that.the.LEFT.router.has.sta |
| aea00 | 74 69 63 20 31 39 32 2e 30 2e 32 2e 31 30 20 61 64 64 72 65 73 73 20 6f 6e 20 65 74 68 30 2c 20 | tic.192.0.2.10.address.on.eth0,. |
| aea20 | 61 6e 64 20 74 68 65 20 52 49 47 48 54 20 72 6f 75 74 65 72 20 68 61 73 20 61 20 64 79 6e 61 6d | and.the.RIGHT.router.has.a.dynam |
| aea40 | 69 63 20 61 64 64 72 65 73 73 20 6f 6e 20 65 74 68 30 2e 00 57 65 20 63 61 6e 20 61 6c 73 6f 20 | ic.address.on.eth0..We.can.also. |
| aea60 | 63 72 65 61 74 65 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 73 20 75 73 69 6e 67 20 43 65 | create.the.certificates.using.Ce |
| aea80 | 72 62 6f 72 74 20 77 68 69 63 68 20 69 73 20 61 6e 20 65 61 73 79 2d 74 6f 2d 75 73 65 20 63 6c | rbort.which.is.an.easy-to-use.cl |
| aeaa0 | 69 65 6e 74 20 74 68 61 74 20 66 65 74 63 68 65 73 20 61 20 63 65 72 74 69 66 69 63 61 74 65 20 | ient.that.fetches.a.certificate. |
| aeac0 | 66 72 6f 6d 20 4c 65 74 27 73 20 45 6e 63 72 79 70 74 20 61 6e 20 6f 70 65 6e 20 63 65 72 74 69 | from.Let's.Encrypt.an.open.certi |
| aeae0 | 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 20 6c 61 75 6e 63 68 65 64 20 62 79 20 74 68 65 | ficate.authority.launched.by.the |
| aeb00 | 20 45 46 46 2c 20 4d 6f 7a 69 6c 6c 61 2c 20 61 6e 64 20 6f 74 68 65 72 73 20 61 6e 64 20 64 65 | .EFF,.Mozilla,.and.others.and.de |
| aeb20 | 70 6c 6f 79 73 20 69 74 20 74 6f 20 61 20 77 65 62 20 73 65 72 76 65 72 2e 00 57 65 20 63 61 6e | ploys.it.to.a.web.server..We.can |
| aeb40 | 20 61 6c 73 6f 20 63 72 65 61 74 65 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 73 20 75 73 | .also.create.the.certificates.us |
| aeb60 | 69 6e 67 20 43 65 72 74 62 6f 74 20 77 68 69 63 68 20 69 73 20 61 6e 20 65 61 73 79 2d 74 6f 2d | ing.Certbot.which.is.an.easy-to- |
| aeb80 | 75 73 65 20 63 6c 69 65 6e 74 20 74 68 61 74 20 66 65 74 63 68 65 73 20 61 20 63 65 72 74 69 66 | use.client.that.fetches.a.certif |
| aeba0 | 69 63 61 74 65 20 66 72 6f 6d 20 4c 65 74 27 73 20 45 6e 63 72 79 70 74 20 61 6e 20 6f 70 65 6e | icate.from.Let's.Encrypt.an.open |
| aebc0 | 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 20 6c 61 75 6e 63 68 65 64 20 | .certificate.authority.launched. |
| aebe0 | 62 79 20 74 68 65 20 45 46 46 2c 20 4d 6f 7a 69 6c 6c 61 2c 20 61 6e 64 20 6f 74 68 65 72 73 20 | by.the.EFF,.Mozilla,.and.others. |
| aec00 | 61 6e 64 20 64 65 70 6c 6f 79 73 20 69 74 20 74 6f 20 61 20 77 65 62 20 73 65 72 76 65 72 2e 00 | and.deploys.it.to.a.web.server.. |
| aec20 | 57 65 20 63 61 6e 20 62 75 69 6c 64 20 72 6f 75 74 65 2d 6d 61 70 73 20 66 6f 72 20 69 6d 70 6f | We.can.build.route-maps.for.impo |
| aec40 | 72 74 20 62 61 73 65 64 20 6f 6e 20 74 68 65 73 65 20 73 74 61 74 65 73 2e 20 48 65 72 65 20 69 | rt.based.on.these.states..Here.i |
| aec60 | 73 20 61 20 73 69 6d 70 6c 65 20 52 50 4b 49 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 77 | s.a.simple.RPKI.configuration,.w |
| aec80 | 68 65 72 65 20 60 72 6f 75 74 69 6e 61 74 6f 72 60 20 69 73 20 74 68 65 20 52 50 4b 49 2d 76 61 | here.`routinator`.is.the.RPKI-va |
| aeca0 | 6c 69 64 61 74 69 6e 67 20 22 63 61 63 68 65 22 20 73 65 72 76 65 72 20 77 69 74 68 20 69 70 20 | lidating."cache".server.with.ip. |
| aecc0 | 60 31 39 32 2e 30 2e 32 2e 31 60 3a 00 57 65 20 63 61 6e 27 74 20 73 75 70 70 6f 72 74 20 61 6c | `192.0.2.1`:.We.can't.support.al |
| aece0 | 6c 20 64 69 73 70 6c 61 79 73 20 66 72 6f 6d 20 74 68 65 20 62 65 67 69 6e 6e 69 6e 67 2e 20 49 | l.displays.from.the.beginning..I |
| aed00 | 66 20 79 6f 75 72 20 64 69 73 70 6c 61 79 20 74 79 70 65 20 69 73 20 6d 69 73 73 69 6e 67 2c 20 | f.your.display.type.is.missing,. |
| aed20 | 70 6c 65 61 73 65 20 63 72 65 61 74 65 20 61 20 66 65 61 74 75 72 65 20 72 65 71 75 65 73 74 20 | please.create.a.feature.request. |
| aed40 | 76 69 61 20 50 68 61 62 72 69 63 61 74 6f 72 5f 2e 00 57 65 20 63 6f 6e 66 69 67 75 72 65 20 61 | via.Phabricator_..We.configure.a |
| aed60 | 20 6e 65 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6e 61 6d 65 64 20 60 60 72 77 60 60 20 66 6f 72 | .new.connection.named.``rw``.for |
| aed80 | 20 72 6f 61 64 2d 77 61 72 72 69 6f 72 2c 20 74 68 61 74 20 69 64 65 6e 74 69 66 69 65 73 20 69 | .road-warrior,.that.identifies.i |
| aeda0 | 74 73 65 6c 66 20 61 73 20 60 60 31 39 32 2e 30 2e 32 2e 31 60 60 20 74 6f 20 74 68 65 20 63 6c | tself.as.``192.0.2.1``.to.the.cl |
| aedc0 | 69 65 6e 74 73 20 61 6e 64 20 75 73 65 73 20 74 68 65 20 60 60 76 79 6f 73 60 60 20 63 65 72 74 | ients.and.uses.the.``vyos``.cert |
| aede0 | 69 66 69 63 61 74 65 20 73 69 67 6e 65 64 20 62 79 20 74 68 65 20 60 43 41 63 65 72 74 5f 43 6c | ificate.signed.by.the.`CAcert_Cl |
| aee00 | 61 73 73 33 5f 52 6f 6f 74 60 60 20 69 6e 74 65 72 6d 65 64 69 61 74 65 20 43 41 2e 20 57 65 20 | ass3_Root``.intermediate.CA..We. |
| aee20 | 73 65 6c 65 63 74 20 6f 75 72 20 70 72 65 76 69 6f 75 73 6c 79 20 73 70 65 63 69 66 69 65 64 20 | select.our.previously.specified. |
| aee40 | 49 4b 45 2f 45 53 50 20 67 72 6f 75 70 73 20 61 6e 64 20 61 6c 73 6f 20 6c 69 6e 6b 20 74 68 65 | IKE/ESP.groups.and.also.link.the |
| aee60 | 20 49 50 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 74 6f 20 64 72 61 77 20 61 64 64 72 65 73 73 | .IP.address.pool.to.draw.address |
| aee80 | 65 73 20 66 72 6f 6d 2e 00 57 65 20 63 6f 75 6c 64 20 65 78 70 61 6e 64 20 6f 6e 20 74 68 69 73 | es.from..We.could.expand.on.this |
| aeea0 | 20 61 6e 64 20 61 6c 73 6f 20 64 65 6e 79 20 6c 69 6e 6b 20 6c 6f 63 61 6c 20 61 6e 64 20 6d 75 | .and.also.deny.link.local.and.mu |
| aeec0 | 6c 74 69 63 61 73 74 20 69 6e 20 74 68 65 20 72 75 6c 65 20 32 30 20 61 63 74 69 6f 6e 20 64 65 | lticast.in.the.rule.20.action.de |
| aeee0 | 6e 79 2e 00 57 65 20 64 6f 20 6e 6f 74 20 68 61 76 65 20 43 4c 49 20 6e 6f 64 65 73 20 66 6f 72 | ny..We.do.not.have.CLI.nodes.for |
| aef00 | 20 65 76 65 72 79 20 73 69 6e 67 6c 65 20 4f 70 65 6e 56 50 4e 20 6f 70 74 69 6f 6e 2e 20 49 66 | .every.single.OpenVPN.option..If |
| aef20 | 20 61 6e 20 6f 70 74 69 6f 6e 20 69 73 20 6d 69 73 73 69 6e 67 2c 20 61 20 66 65 61 74 75 72 65 | .an.option.is.missing,.a.feature |
| aef40 | 20 72 65 71 75 65 73 74 20 73 68 6f 75 6c 64 20 62 65 20 6f 70 65 6e 65 64 20 61 74 20 50 68 61 | .request.should.be.opened.at.Pha |
| aef60 | 62 72 69 63 61 74 6f 72 5f 20 73 6f 20 61 6c 6c 20 75 73 65 72 73 20 63 61 6e 20 62 65 6e 65 66 | bricator_.so.all.users.can.benef |
| aef80 | 69 74 20 66 72 6f 6d 20 69 74 20 28 73 65 65 20 3a 72 65 66 3a 60 69 73 73 75 65 73 5f 66 65 61 | it.from.it.(see.:ref:`issues_fea |
| aefa0 | 74 75 72 65 73 60 29 2e 00 57 65 20 64 6f 6e 27 74 20 72 65 63 6f 6d 65 6e 64 20 74 6f 20 75 73 | tures`)..We.don't.recomend.to.us |
| aefc0 | 65 20 61 72 67 75 6d 65 6e 74 73 2e 20 55 73 69 6e 67 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 73 20 | e.arguments..Using.environments. |
| aefe0 | 69 73 20 6d 6f 72 65 20 70 72 65 66 66 65 72 65 62 6c 65 2e 00 57 65 20 67 65 6e 65 72 61 74 65 | is.more.preffereble..We.generate |
| af000 | 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 70 72 6f 66 69 6c 65 20 75 73 65 64 20 62 79 20 57 69 | .a.connection.profile.used.by.Wi |
| af020 | 6e 64 6f 77 73 20 63 6c 69 65 6e 74 73 20 74 68 61 74 20 77 69 6c 6c 20 63 6f 6e 6e 65 63 74 20 | ndows.clients.that.will.connect. |
| af040 | 74 6f 20 74 68 65 20 22 72 77 22 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 6e 20 6f 75 72 20 56 79 | to.the."rw".connection.on.our.Vy |
| af060 | 4f 53 20 73 65 72 76 65 72 20 6f 6e 20 74 68 65 20 56 50 4e 20 73 65 72 76 65 72 73 20 49 50 20 | OS.server.on.the.VPN.servers.IP. |
| af080 | 61 64 64 72 65 73 73 2f 66 71 64 6e 20 60 76 70 6e 2e 76 79 6f 73 2e 6e 65 74 60 2e 00 57 65 20 | address/fqdn.`vpn.vyos.net`..We. |
| af0a0 | 6c 69 73 74 65 6e 20 6f 6e 20 70 6f 72 74 20 35 31 38 32 30 00 57 65 20 6e 65 65 64 20 74 6f 20 | listen.on.port.51820.We.need.to. |
| af0c0 | 67 65 6e 65 72 61 74 65 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 77 68 69 63 68 20 61 | generate.the.certificate.which.a |
| af0e0 | 75 74 68 65 6e 74 69 63 61 74 65 73 20 75 73 65 72 73 20 77 68 6f 20 61 74 74 65 6d 70 74 20 74 | uthenticates.users.who.attempt.t |
| af100 | 6f 20 61 63 63 65 73 73 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 72 65 73 6f 75 72 63 65 20 74 68 | o.access.the.network.resource.th |
| af120 | 72 6f 75 67 68 20 74 68 65 20 53 53 4c 20 56 50 4e 20 74 75 6e 6e 65 6c 73 2e 20 54 68 65 20 66 | rough.the.SSL.VPN.tunnels..The.f |
| af140 | 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 20 77 69 6c 6c 20 63 72 65 61 74 65 20 61 20 | ollowing.commands.will.create.a. |
| af160 | 73 65 6c 66 20 73 69 67 6e 65 64 20 63 65 72 74 69 66 69 63 61 74 65 73 20 61 6e 64 20 77 69 6c | self.signed.certificates.and.wil |
| af180 | 6c 20 62 65 20 73 74 6f 72 65 64 20 69 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 57 65 | l.be.stored.in.configuration:.We |
| af1a0 | 20 6e 6f 77 20 75 74 69 6c 69 7a 65 20 60 74 75 6e 65 64 60 20 66 6f 72 20 64 79 6e 61 6d 69 63 | .now.utilize.`tuned`.for.dynamic |
| af1c0 | 20 72 65 73 6f 75 72 63 65 20 62 61 6c 61 6e 63 69 6e 67 20 62 61 73 65 64 20 6f 6e 20 70 72 6f | .resource.balancing.based.on.pro |
| af1e0 | 66 69 6c 65 73 2e 00 57 65 20 6f 6e 6c 79 20 61 6c 6c 6f 77 20 74 68 65 20 31 39 32 2e 31 36 38 | files..We.only.allow.the.192.168 |
| af200 | 2e 32 2e 30 2f 32 34 20 73 75 62 6e 65 74 20 74 6f 20 74 72 61 76 65 6c 20 6f 76 65 72 20 74 68 | .2.0/24.subnet.to.travel.over.th |
| af220 | 65 20 74 75 6e 6e 65 6c 00 57 65 20 6f 6e 6c 79 20 6e 65 65 64 20 61 20 73 69 6e 67 6c 65 20 73 | e.tunnel.We.only.need.a.single.s |
| af240 | 74 65 70 20 66 6f 72 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 3a 00 57 65 20 72 6f 75 74 65 | tep.for.this.interface:.We.route |
| af260 | 20 61 6c 6c 20 74 72 61 66 66 69 63 20 66 6f 72 20 74 68 65 20 31 39 32 2e 31 36 38 2e 32 2e 30 | .all.traffic.for.the.192.168.2.0 |
| af280 | 2f 32 34 20 6e 65 74 77 6f 72 6b 20 74 6f 20 69 6e 74 65 72 66 61 63 65 20 60 77 67 30 31 60 00 | /24.network.to.interface.`wg01`. |
| af2a0 | 57 65 20 75 73 65 20 61 20 76 6f 6e 74 61 69 6e 65 72 20 70 72 6f 76 69 64 69 6e 67 20 74 68 65 | We.use.a.vontainer.providing.the |
| af2c0 | 20 54 41 43 41 43 53 20 73 65 72 76 65 20 72 69 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 2e 00 | .TACACS.serve.rin.this.example.. |
| af2e0 | 57 65 20 77 69 6c 6c 20 6f 6e 6c 79 20 61 63 63 65 70 74 20 74 72 61 66 66 69 63 20 63 6f 6d 69 | We.will.only.accept.traffic.comi |
| af300 | 6e 67 20 66 72 6f 6d 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 30 2c 20 70 72 6f 74 6f 63 6f 6c | ng.from.interface.eth0,.protocol |
| af320 | 20 74 63 70 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 31 31 32 32 2e 20 | .tcp.and.destination.port.1122.. |
| af340 | 41 6c 6c 20 6f 74 68 65 72 20 74 72 61 66 66 69 63 20 74 72 65 73 70 61 73 73 69 6e 67 20 74 68 | All.other.traffic.trespassing.th |
| af360 | 65 20 72 6f 75 74 65 72 20 73 68 6f 75 6c 64 20 62 65 20 62 6c 6f 63 6b 65 64 2e 00 57 65 20 77 | e.router.should.be.blocked..We.w |
| af380 | 69 6c 6c 20 6f 6e 6c 79 20 61 63 63 65 70 74 20 74 72 61 66 66 69 63 20 63 6f 6d 6d 69 6e 67 20 | ill.only.accept.traffic.comming. |
| af3a0 | 66 72 6f 6d 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 30 2c 20 70 72 6f 74 6f 63 6f 6c 20 74 63 | from.interface.eth0,.protocol.tc |
| af3c0 | 70 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 31 31 32 32 2e 20 41 6c 6c | p.and.destination.port.1122..All |
| af3e0 | 20 6f 74 68 65 72 20 74 72 61 66 66 69 63 20 74 72 61 73 70 61 73 73 69 6e 67 20 74 68 65 20 72 | .other.traffic.traspassing.the.r |
| af400 | 6f 75 74 65 72 20 73 68 6f 75 6c 64 20 62 65 20 62 6c 6f 63 6b 65 64 2e 00 57 65 27 6c 6c 20 63 | outer.should.be.blocked..We'll.c |
| af420 | 6f 6e 66 69 67 75 72 65 20 4f 70 65 6e 56 50 4e 20 75 73 69 6e 67 20 73 65 6c 66 2d 73 69 67 6e | onfigure.OpenVPN.using.self-sign |
| af440 | 65 64 20 63 65 72 74 69 66 69 63 61 74 65 73 2c 20 61 6e 64 20 74 68 65 6e 20 64 69 73 63 75 73 | ed.certificates,.and.then.discus |
| af460 | 73 20 74 68 65 20 6c 65 67 61 63 79 20 70 72 65 2d 73 68 61 72 65 64 20 6b 65 79 20 6d 6f 64 65 | s.the.legacy.pre-shared.key.mode |
| af480 | 2e 00 57 65 27 6c 6c 20 75 73 65 20 74 68 65 20 49 4b 45 20 61 6e 64 20 45 53 50 20 67 72 6f 75 | ..We'll.use.the.IKE.and.ESP.grou |
| af4a0 | 70 73 20 63 72 65 61 74 65 64 20 61 62 6f 76 65 20 66 6f 72 20 74 68 69 73 20 56 50 4e 2e 20 42 | ps.created.above.for.this.VPN..B |
| af4c0 | 65 63 61 75 73 65 20 77 65 20 6e 65 65 64 20 61 63 63 65 73 73 20 74 6f 20 32 20 64 69 66 66 65 | ecause.we.need.access.to.2.diffe |
| af4e0 | 72 65 6e 74 20 73 75 62 6e 65 74 73 20 6f 6e 20 74 68 65 20 66 61 72 20 73 69 64 65 2c 20 77 65 | rent.subnets.on.the.far.side,.we |
| af500 | 20 77 69 6c 6c 20 6e 65 65 64 20 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 74 75 6e 6e 65 6c 73 | .will.need.two.different.tunnels |
| af520 | 2e 20 49 66 20 79 6f 75 20 63 68 61 6e 67 65 64 20 74 68 65 20 6e 61 6d 65 73 20 6f 66 20 74 68 | ..If.you.changed.the.names.of.th |
| af540 | 65 20 45 53 50 20 67 72 6f 75 70 20 61 6e 64 20 49 4b 45 20 67 72 6f 75 70 20 69 6e 20 74 68 65 | e.ESP.group.and.IKE.group.in.the |
| af560 | 20 70 72 65 76 69 6f 75 73 20 73 74 65 70 2c 20 6d 61 6b 65 20 73 75 72 65 20 79 6f 75 20 75 73 | .previous.step,.make.sure.you.us |
| af580 | 65 20 74 68 65 20 63 6f 72 72 65 63 74 20 6e 61 6d 65 73 20 68 65 72 65 20 74 6f 6f 2e 00 57 65 | e.the.correct.names.here.too..We |
| af5a0 | 62 20 50 72 6f 78 79 20 41 75 74 6f 64 69 73 63 6f 76 65 72 79 20 28 57 50 41 44 29 20 55 52 4c | b.Proxy.Autodiscovery.(WPAD).URL |
| af5c0 | 00 57 65 62 70 72 6f 78 79 00 57 65 62 73 65 72 76 65 72 20 73 68 6f 75 6c 64 20 6c 69 73 74 65 | .Webproxy.Webserver.should.liste |
| af5e0 | 6e 20 6f 6e 20 73 70 65 63 69 66 69 65 64 20 70 6f 72 74 2e 00 57 65 62 73 65 72 76 65 72 20 73 | n.on.specified.port..Webserver.s |
| af600 | 68 6f 75 6c 64 20 6f 6e 6c 79 20 6c 69 73 74 65 6e 20 6f 6e 20 73 70 65 63 69 66 69 65 64 20 49 | hould.only.listen.on.specified.I |
| af620 | 50 20 61 64 64 72 65 73 73 00 57 68 65 6e 20 4c 44 50 20 69 73 20 77 6f 72 6b 69 6e 67 2c 20 79 | P.address.When.LDP.is.working,.y |
| af640 | 6f 75 20 77 69 6c 6c 20 62 65 20 61 62 6c 65 20 74 6f 20 73 65 65 20 6c 61 62 65 6c 20 69 6e 66 | ou.will.be.able.to.see.label.inf |
| af660 | 6f 72 6d 61 74 69 6f 6e 20 69 6e 20 74 68 65 20 6f 75 74 63 6f 6d 65 20 6f 66 20 60 60 73 68 6f | ormation.in.the.outcome.of.``sho |
| af680 | 77 20 69 70 20 72 6f 75 74 65 60 60 2e 20 42 65 73 69 64 65 73 20 74 68 61 74 20 69 6e 66 6f 72 | w.ip.route``..Besides.that.infor |
| af6a0 | 6d 61 74 69 6f 6e 2c 20 74 68 65 72 65 20 61 72 65 20 61 6c 73 6f 20 73 70 65 63 69 66 69 63 20 | mation,.there.are.also.specific. |
| af6c0 | 2a 73 68 6f 77 2a 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 72 20 4c 44 50 3a 00 57 68 65 6e 20 50 49 | *show*.commands.for.LDP:.When.PI |
| af6e0 | 4d 20 72 65 63 65 69 76 65 73 20 61 20 72 65 67 69 73 74 65 72 20 70 61 63 6b 65 74 20 74 68 65 | M.receives.a.register.packet.the |
| af700 | 20 73 6f 75 72 63 65 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 63 6f | .source.of.the.packet.will.be.co |
| af720 | 6d 70 61 72 65 64 20 74 6f 20 74 68 65 20 70 72 65 66 69 78 2d 6c 69 73 74 20 73 70 65 63 69 66 | mpared.to.the.prefix-list.specif |
| af740 | 69 65 64 2c 20 61 6e 64 20 69 66 20 61 20 70 65 72 6d 69 74 20 69 73 20 72 65 63 65 69 76 65 64 | ied,.and.if.a.permit.is.received |
| af760 | 20 6e 6f 72 6d 61 6c 20 70 72 6f 63 65 73 73 69 6e 67 20 63 6f 6e 74 69 6e 75 65 73 2e 20 49 66 | .normal.processing.continues..If |
| af780 | 20 61 20 64 65 6e 79 20 69 73 20 72 65 74 75 72 6e 65 64 20 66 6f 72 20 74 68 65 20 73 6f 75 72 | .a.deny.is.returned.for.the.sour |
| af7a0 | 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 72 65 67 69 73 74 65 72 20 70 61 63 6b 65 | ce.address.of.the.register.packe |
| af7c0 | 74 20 61 20 72 65 67 69 73 74 65 72 20 73 74 6f 70 20 6d 65 73 73 61 67 65 20 69 73 20 73 65 6e | t.a.register.stop.message.is.sen |
| af7e0 | 74 20 74 6f 20 74 68 65 20 73 6f 75 72 63 65 2e 00 57 68 65 6e 20 56 52 46 73 20 61 72 65 20 75 | t.to.the.source..When.VRFs.are.u |
| af800 | 73 65 64 20 69 74 20 69 73 20 6e 6f 74 20 6f 6e 6c 79 20 6d 61 6e 64 61 74 6f 72 79 20 74 6f 20 | sed.it.is.not.only.mandatory.to. |
| af820 | 63 72 65 61 74 65 20 61 20 56 52 46 20 62 75 74 20 61 6c 73 6f 20 74 68 65 20 56 52 46 20 69 74 | create.a.VRF.but.also.the.VRF.it |
| af840 | 73 65 6c 66 20 6e 65 65 64 73 20 74 6f 20 62 65 20 61 73 73 69 67 6e 65 64 20 74 6f 20 61 6e 20 | self.needs.to.be.assigned.to.an. |
| af860 | 69 6e 74 65 72 66 61 63 65 2e 00 57 68 65 6e 20 61 20 60 60 63 75 73 74 6f 6d 60 60 20 44 79 6e | interface..When.a.``custom``.Dyn |
| af880 | 44 4e 53 20 70 72 6f 76 69 64 65 72 20 69 73 20 75 73 65 64 20 74 68 65 20 60 3c 73 65 72 76 65 | DNS.provider.is.used.the.`<serve |
| af8a0 | 72 3e 60 20 77 68 65 72 65 20 75 70 64 61 74 65 20 72 65 71 75 65 73 74 73 20 61 72 65 20 62 65 | r>`.where.update.requests.are.be |
| af8c0 | 69 6e 67 20 73 65 6e 74 20 74 6f 20 6d 75 73 74 20 62 65 20 73 70 65 63 69 66 69 65 64 2e 00 57 | ing.sent.to.must.be.specified..W |
| af8e0 | 68 65 6e 20 61 20 60 60 63 75 73 74 6f 6d 60 60 20 44 79 6e 44 4e 53 20 70 72 6f 76 69 64 65 72 | hen.a.``custom``.DynDNS.provider |
| af900 | 20 69 73 20 75 73 65 64 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 20 75 73 65 64 20 66 6f 72 20 63 | .is.used.the.protocol.used.for.c |
| af920 | 6f 6d 6d 75 6e 69 63 61 74 69 6e 67 20 74 6f 20 74 68 65 20 70 72 6f 76 69 64 65 72 20 6d 75 73 | ommunicating.to.the.provider.mus |
| af940 | 74 20 62 65 20 73 70 65 63 69 66 69 65 64 20 75 6e 64 65 72 20 60 3c 70 72 6f 74 6f 63 6f 6c 3e | t.be.specified.under.`<protocol> |
| af960 | 60 2e 20 53 65 65 20 74 68 65 20 65 6d 62 65 64 64 65 64 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 68 | `..See.the.embedded.completion.h |
| af980 | 65 6c 70 65 72 20 66 6f 72 20 61 76 61 69 6c 61 62 6c 65 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 57 | elper.for.available.protocols..W |
| af9a0 | 68 65 6e 20 61 20 60 60 63 75 73 74 6f 6d 60 60 20 44 79 6e 44 4e 53 20 70 72 6f 76 69 64 65 72 | hen.a.``custom``.DynDNS.provider |
| af9c0 | 20 69 73 20 75 73 65 64 2c 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 20 75 73 65 64 20 66 6f 72 20 | .is.used,.the.protocol.used.for. |
| af9e0 | 63 6f 6d 6d 75 6e 69 63 61 74 69 6e 67 20 74 6f 20 74 68 65 20 70 72 6f 76 69 64 65 72 20 6d 75 | communicating.to.the.provider.mu |
| afa00 | 73 74 20 62 65 20 73 70 65 63 69 66 69 65 64 20 75 6e 64 65 72 20 60 3c 70 72 6f 74 6f 63 6f 6c | st.be.specified.under.`<protocol |
| afa20 | 3e 60 2e 20 53 65 65 20 74 68 65 20 65 6d 62 65 64 64 65 64 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 | >`..See.the.embedded.completion. |
| afa40 | 68 65 6c 70 65 72 20 77 68 65 6e 20 65 6e 74 65 72 69 6e 67 20 61 62 6f 76 65 20 63 6f 6d 6d 61 | helper.when.entering.above.comma |
| afa60 | 6e 64 20 66 6f 72 20 61 76 61 69 6c 61 62 6c 65 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 57 68 65 6e | nd.for.available.protocols..When |
| afa80 | 20 61 20 66 61 69 6c 6f 76 65 72 20 6f 63 63 75 72 73 20 69 6e 20 61 63 74 69 76 65 2d 62 61 63 | .a.failover.occurs.in.active-bac |
| afaa0 | 6b 75 70 20 6d 6f 64 65 2c 20 62 6f 6e 64 69 6e 67 20 77 69 6c 6c 20 69 73 73 75 65 20 6f 6e 65 | kup.mode,.bonding.will.issue.one |
| afac0 | 20 6f 72 20 6d 6f 72 65 20 67 72 61 74 75 69 74 6f 75 73 20 41 52 50 73 20 6f 6e 20 74 68 65 20 | .or.more.gratuitous.ARPs.on.the. |
| afae0 | 6e 65 77 6c 79 20 61 63 74 69 76 65 20 73 6c 61 76 65 2e 20 4f 6e 65 20 67 72 61 74 75 69 74 6f | newly.active.slave..One.gratuito |
| afb00 | 75 73 20 41 52 50 20 69 73 20 69 73 73 75 65 64 20 66 6f 72 20 74 68 65 20 62 6f 6e 64 69 6e 67 | us.ARP.is.issued.for.the.bonding |
| afb20 | 20 6d 61 73 74 65 72 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 65 61 63 68 20 56 4c 41 4e 20 | .master.interface.and.each.VLAN. |
| afb40 | 69 6e 74 65 72 66 61 63 65 73 20 63 6f 6e 66 69 67 75 72 65 64 20 61 62 6f 76 65 20 69 74 2c 20 | interfaces.configured.above.it,. |
| afb60 | 70 72 6f 76 69 64 65 64 20 74 68 61 74 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 68 61 73 20 | provided.that.the.interface.has. |
| afb80 | 61 74 20 6c 65 61 73 74 20 6f 6e 65 20 49 50 20 61 64 64 72 65 73 73 20 63 6f 6e 66 69 67 75 72 | at.least.one.IP.address.configur |
| afba0 | 65 64 2e 20 47 72 61 74 75 69 74 6f 75 73 20 41 52 50 73 20 69 73 73 75 65 64 20 66 6f 72 20 56 | ed..Gratuitous.ARPs.issued.for.V |
| afbc0 | 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 74 61 67 67 65 64 20 77 69 74 68 20 74 | LAN.interfaces.are.tagged.with.t |
| afbe0 | 68 65 20 61 70 70 72 6f 70 72 69 61 74 65 20 56 4c 41 4e 20 69 64 2e 00 57 68 65 6e 20 61 20 6c | he.appropriate.VLAN.id..When.a.l |
| afc00 | 69 6e 6b 20 69 73 20 72 65 63 6f 6e 6e 65 63 74 65 64 20 6f 72 20 61 20 6e 65 77 20 73 6c 61 76 | ink.is.reconnected.or.a.new.slav |
| afc20 | 65 20 6a 6f 69 6e 73 20 74 68 65 20 62 6f 6e 64 20 74 68 65 20 72 65 63 65 69 76 65 20 74 72 61 | e.joins.the.bond.the.receive.tra |
| afc40 | 66 66 69 63 20 69 73 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 61 6d 6f 6e 67 20 61 6c 6c 20 | ffic.is.redistributed.among.all. |
| afc60 | 61 63 74 69 76 65 20 73 6c 61 76 65 73 20 69 6e 20 74 68 65 20 62 6f 6e 64 20 62 79 20 69 6e 69 | active.slaves.in.the.bond.by.ini |
| afc80 | 74 69 61 74 69 6e 67 20 41 52 50 20 52 65 70 6c 69 65 73 20 77 69 74 68 20 74 68 65 20 73 65 6c | tiating.ARP.Replies.with.the.sel |
| afca0 | 65 63 74 65 64 20 4d 41 43 20 61 64 64 72 65 73 73 20 74 6f 20 65 61 63 68 20 6f 66 20 74 68 65 | ected.MAC.address.to.each.of.the |
| afcc0 | 20 63 6c 69 65 6e 74 73 2e 20 54 68 65 20 75 70 64 65 6c 61 79 20 70 61 72 61 6d 65 74 65 72 20 | .clients..The.updelay.parameter. |
| afce0 | 28 64 65 74 61 69 6c 65 64 20 62 65 6c 6f 77 29 20 6d 75 73 74 20 62 65 20 73 65 74 20 74 6f 20 | (detailed.below).must.be.set.to. |
| afd00 | 61 20 76 61 6c 75 65 20 65 71 75 61 6c 20 6f 72 20 67 72 65 61 74 65 72 20 74 68 61 6e 20 74 68 | a.value.equal.or.greater.than.th |
| afd20 | 65 20 73 77 69 74 63 68 27 73 20 66 6f 72 77 61 72 64 69 6e 67 20 64 65 6c 61 79 20 73 6f 20 74 | e.switch's.forwarding.delay.so.t |
| afd40 | 68 61 74 20 74 68 65 20 41 52 50 20 52 65 70 6c 69 65 73 20 73 65 6e 74 20 74 6f 20 74 68 65 20 | hat.the.ARP.Replies.sent.to.the. |
| afd60 | 70 65 65 72 73 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 62 6c 6f 63 6b 65 64 20 62 79 20 74 68 65 | peers.will.not.be.blocked.by.the |
| afd80 | 20 73 77 69 74 63 68 2e 00 57 68 65 6e 20 61 20 70 61 63 6b 65 74 20 69 73 20 74 6f 20 62 65 20 | .switch..When.a.packet.is.to.be. |
| afda0 | 73 65 6e 74 2c 20 69 74 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 67 6f 20 74 68 72 6f 75 67 68 | sent,.it.will.have.to.go.through |
| afdc0 | 20 74 68 61 74 20 71 75 65 75 65 2c 20 73 6f 20 74 68 65 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 | .that.queue,.so.the.packet.will. |
| afde0 | 62 65 20 70 6c 61 63 65 64 20 61 74 20 74 68 65 20 74 61 69 6c 20 6f 66 20 69 74 2e 20 57 68 65 | be.placed.at.the.tail.of.it..Whe |
| afe00 | 6e 20 74 68 65 20 70 61 63 6b 65 74 20 63 6f 6d 70 6c 65 74 65 6c 79 20 67 6f 65 73 20 74 68 72 | n.the.packet.completely.goes.thr |
| afe20 | 6f 75 67 68 20 69 74 2c 20 69 74 20 77 69 6c 6c 20 62 65 20 64 65 71 75 65 75 65 64 20 65 6d 70 | ough.it,.it.will.be.dequeued.emp |
| afe40 | 74 79 69 6e 67 20 69 74 73 20 70 6c 61 63 65 20 69 6e 20 74 68 65 20 71 75 65 75 65 20 61 6e 64 | tying.its.place.in.the.queue.and |
| afe60 | 20 62 65 69 6e 67 20 65 76 65 6e 74 75 61 6c 6c 79 20 68 61 6e 64 65 64 20 74 6f 20 74 68 65 20 | .being.eventually.handed.to.the. |
| afe80 | 4e 49 43 20 74 6f 20 62 65 20 61 63 74 75 61 6c 6c 79 20 73 65 6e 74 20 6f 75 74 2e 00 57 68 65 | NIC.to.be.actually.sent.out..Whe |
| afea0 | 6e 20 61 20 70 65 65 72 20 72 65 63 65 69 76 65 73 20 61 20 6d 61 72 74 69 61 6e 20 6e 65 78 74 | n.a.peer.receives.a.martian.next |
| afec0 | 68 6f 70 20 61 73 20 70 61 72 74 20 6f 66 20 74 68 65 20 4e 4c 52 49 20 66 6f 72 20 61 20 72 6f | hop.as.part.of.the.NLRI.for.a.ro |
| afee0 | 75 74 65 20 70 65 72 6d 69 74 20 74 68 65 20 6e 65 78 74 68 6f 70 20 74 6f 20 62 65 20 75 73 65 | ute.permit.the.nexthop.to.be.use |
| aff00 | 64 20 61 73 20 73 75 63 68 2c 20 69 6e 73 74 65 61 64 20 6f 66 20 72 65 6a 65 63 74 69 6e 67 20 | d.as.such,.instead.of.rejecting. |
| aff20 | 61 6e 64 20 72 65 73 65 74 74 69 6e 67 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 57 68 | and.resetting.the.connection..Wh |
| aff40 | 65 6e 20 61 20 72 6f 75 74 65 20 66 61 69 6c 73 2c 20 61 20 72 6f 75 74 69 6e 67 20 75 70 64 61 | en.a.route.fails,.a.routing.upda |
| aff60 | 74 65 20 69 73 20 73 65 6e 74 20 74 6f 20 77 69 74 68 64 72 61 77 20 74 68 65 20 72 6f 75 74 65 | te.is.sent.to.withdraw.the.route |
| aff80 | 20 66 72 6f 6d 20 74 68 65 20 6e 65 74 77 6f 72 6b 27 73 20 72 6f 75 74 69 6e 67 20 74 61 62 6c | .from.the.network's.routing.tabl |
| affa0 | 65 73 2e 20 57 68 65 6e 20 74 68 65 20 72 6f 75 74 65 20 69 73 20 72 65 2d 65 6e 61 62 6c 65 64 | es..When.the.route.is.re-enabled |
| affc0 | 2c 20 74 68 65 20 63 68 61 6e 67 65 20 69 6e 20 61 76 61 69 6c 61 62 69 6c 69 74 79 20 69 73 20 | ,.the.change.in.availability.is. |
| affe0 | 61 6c 73 6f 20 61 64 76 65 72 74 69 73 65 64 2e 20 41 20 72 6f 75 74 65 20 74 68 61 74 20 63 6f | also.advertised..A.route.that.co |
| b0000 | 6e 74 69 6e 75 61 6c 6c 79 20 66 61 69 6c 73 20 61 6e 64 20 72 65 74 75 72 6e 73 20 72 65 71 75 | ntinually.fails.and.returns.requ |
| b0020 | 69 72 65 73 20 61 20 67 72 65 61 74 20 64 65 61 6c 20 6f 66 20 6e 65 74 77 6f 72 6b 20 74 72 61 | ires.a.great.deal.of.network.tra |
| b0040 | 66 66 69 63 20 74 6f 20 75 70 64 61 74 65 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 61 62 6f 75 74 | ffic.to.update.the.network.about |
| b0060 | 20 74 68 65 20 72 6f 75 74 65 27 73 20 73 74 61 74 75 73 2e 00 57 68 65 6e 20 61 64 64 69 6e 67 | .the.route's.status..When.adding |
| b0080 | 20 49 50 76 36 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 65 78 63 68 61 6e | .IPv6.routing.information.exchan |
| b00a0 | 67 65 20 66 65 61 74 75 72 65 20 74 6f 20 42 47 50 2e 20 54 68 65 72 65 20 77 65 72 65 20 73 6f | ge.feature.to.BGP..There.were.so |
| b00c0 | 6d 65 20 70 72 6f 70 6f 73 61 6c 73 2e 20 3a 61 62 62 72 3a 60 49 45 54 46 20 28 49 6e 74 65 72 | me.proposals..:abbr:`IETF.(Inter |
| b00e0 | 6e 65 74 20 45 6e 67 69 6e 65 65 72 69 6e 67 20 54 61 73 6b 20 46 6f 72 63 65 29 60 20 3a 61 62 | net.Engineering.Task.Force)`.:ab |
| b0100 | 62 72 3a 60 49 44 52 20 28 49 6e 74 65 72 20 44 6f 6d 61 69 6e 20 52 6f 75 74 69 6e 67 29 60 20 | br:`IDR.(Inter.Domain.Routing)`. |
| b0120 | 61 64 6f 70 74 65 64 20 61 20 70 72 6f 70 6f 73 61 6c 20 63 61 6c 6c 65 64 20 4d 75 6c 74 69 70 | adopted.a.proposal.called.Multip |
| b0140 | 72 6f 74 6f 63 6f 6c 20 45 78 74 65 6e 73 69 6f 6e 20 66 6f 72 20 42 47 50 2e 20 54 68 65 20 73 | rotocol.Extension.for.BGP..The.s |
| b0160 | 70 65 63 69 66 69 63 61 74 69 6f 6e 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 | pecification.is.described.in.:rf |
| b0180 | 63 3a 60 32 32 38 33 60 2e 20 54 68 65 20 70 72 6f 74 6f 63 6f 6c 20 64 6f 65 73 20 6e 6f 74 20 | c:`2283`..The.protocol.does.not. |
| b01a0 | 64 65 66 69 6e 65 20 6e 65 77 20 70 72 6f 74 6f 63 6f 6c 73 2e 20 49 74 20 64 65 66 69 6e 65 73 | define.new.protocols..It.defines |
| b01c0 | 20 6e 65 77 20 61 74 74 72 69 62 75 74 65 73 20 74 6f 20 65 78 69 73 74 69 6e 67 20 42 47 50 2e | .new.attributes.to.existing.BGP. |
| b01e0 | 20 57 68 65 6e 20 69 74 20 69 73 20 75 73 65 64 20 65 78 63 68 61 6e 67 69 6e 67 20 49 50 76 36 | .When.it.is.used.exchanging.IPv6 |
| b0200 | 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 74 20 69 73 20 63 61 6c 6c 65 | .routing.information.it.is.calle |
| b0220 | 64 20 42 47 50 2d 34 2b 2e 20 57 68 65 6e 20 69 74 20 69 73 20 75 73 65 64 20 66 6f 72 20 65 78 | d.BGP-4+..When.it.is.used.for.ex |
| b0240 | 63 68 61 6e 67 69 6e 67 20 6d 75 6c 74 69 63 61 73 74 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 | changing.multicast.routing.infor |
| b0260 | 6d 61 74 69 6f 6e 20 69 74 20 69 73 20 63 61 6c 6c 65 64 20 4d 42 47 50 2e 00 57 68 65 6e 20 61 | mation.it.is.called.MBGP..When.a |
| b0280 | 6c 6c 20 74 68 65 20 75 6e 64 65 72 6c 61 79 20 6c 69 6e 6b 73 20 67 6f 20 64 6f 77 6e 20 74 68 | ll.the.underlay.links.go.down.th |
| b02a0 | 65 20 50 45 20 6e 6f 20 6c 6f 6e 67 65 72 20 68 61 73 20 61 63 63 65 73 73 20 74 6f 20 74 68 65 | e.PE.no.longer.has.access.to.the |
| b02c0 | 20 56 78 4c 41 4e 20 2b 6f 76 65 72 6c 61 79 2e 20 54 6f 20 70 72 65 76 65 6e 74 20 62 6c 61 63 | .VxLAN.+overlay..To.prevent.blac |
| b02e0 | 6b 68 6f 6c 69 6e 67 20 6f 66 20 74 72 61 66 66 69 63 20 74 68 65 20 73 65 72 76 65 72 2f 45 53 | kholing.of.traffic.the.server/ES |
| b0300 | 20 6c 69 6e 6b 73 20 61 72 65 20 70 72 6f 74 6f 64 6f 77 6e 65 64 20 6f 6e 20 74 68 65 20 50 45 | .links.are.protodowned.on.the.PE |
| b0320 | 2e 00 57 68 65 6e 20 61 6e 20 61 75 74 68 6f 72 69 74 61 74 69 76 65 20 73 65 72 76 65 72 20 64 | ..When.an.authoritative.server.d |
| b0340 | 6f 65 73 20 6e 6f 74 20 61 6e 73 77 65 72 20 61 20 71 75 65 72 79 20 6f 72 20 73 65 6e 64 73 20 | oes.not.answer.a.query.or.sends. |
| b0360 | 61 20 72 65 70 6c 79 20 74 68 65 20 72 65 63 75 72 73 6f 72 20 64 6f 65 73 20 6e 6f 74 20 6c 69 | a.reply.the.recursor.does.not.li |
| b0380 | 6b 65 2c 20 69 74 20 69 73 20 74 68 72 6f 74 74 6c 65 64 2e 20 41 6e 79 20 73 65 72 76 65 72 73 | ke,.it.is.throttled..Any.servers |
| b03a0 | 20 6d 61 74 63 68 69 6e 67 20 74 68 65 20 73 75 70 70 6c 69 65 64 20 6e 65 74 6d 61 73 6b 73 20 | .matching.the.supplied.netmasks. |
| b03c0 | 77 69 6c 6c 20 6e 65 76 65 72 20 62 65 20 74 68 72 6f 74 74 6c 65 64 2e 00 57 68 65 6e 20 63 6f | will.never.be.throttled..When.co |
| b03e0 | 6e 66 69 67 75 72 65 64 2c 20 50 50 50 6f 45 20 77 69 6c 6c 20 63 72 65 61 74 65 20 74 68 65 20 | nfigured,.PPPoE.will.create.the. |
| b0400 | 6e 65 63 65 73 73 61 72 79 20 56 4c 41 4e 73 20 77 68 65 6e 20 72 65 71 75 69 72 65 64 2e 20 4f | necessary.VLANs.when.required..O |
| b0420 | 6e 63 65 20 74 68 65 20 75 73 65 72 20 73 65 73 73 69 6f 6e 20 68 61 73 20 62 65 65 6e 20 63 61 | nce.the.user.session.has.been.ca |
| b0440 | 6e 63 65 6c 6c 65 64 20 61 6e 64 20 74 68 65 20 56 4c 41 4e 20 69 73 20 6e 6f 74 20 6e 65 65 64 | ncelled.and.the.VLAN.is.not.need |
| b0460 | 65 64 20 61 6e 79 6d 6f 72 65 2c 20 56 79 4f 53 20 77 69 6c 6c 20 72 65 6d 6f 76 65 20 69 74 20 | ed.anymore,.VyOS.will.remove.it. |
| b0480 | 61 67 61 69 6e 2e 00 57 68 65 6e 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 20 52 61 6e 64 6f 6d | again..When.configuring.a.Random |
| b04a0 | 2d 44 65 74 65 63 74 20 70 6f 6c 69 63 79 3a 20 2a 2a 74 68 65 20 68 69 67 68 65 72 20 74 68 65 | -Detect.policy:.**the.higher.the |
| b04c0 | 20 70 72 65 63 65 64 65 6e 63 65 20 6e 75 6d 62 65 72 2c 20 74 68 65 20 68 69 67 68 65 72 20 74 | .precedence.number,.the.higher.t |
| b04e0 | 68 65 20 70 72 69 6f 72 69 74 79 2a 2a 2e 00 57 68 65 6e 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 | he.priority**..When.configuring. |
| b0500 | 79 6f 75 72 20 66 69 6c 74 65 72 2c 20 79 6f 75 20 63 61 6e 20 75 73 65 20 74 68 65 20 60 60 54 | your.filter,.you.can.use.the.``T |
| b0520 | 61 62 60 60 20 6b 65 79 20 74 6f 20 73 65 65 20 74 68 65 20 6d 61 6e 79 20 64 69 66 66 65 72 65 | ab``.key.to.see.the.many.differe |
| b0540 | 6e 74 20 70 61 72 61 6d 65 74 65 72 73 20 79 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 2e | nt.parameters.you.can.configure. |
| b0560 | 00 57 68 65 6e 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 79 6f 75 72 20 74 72 61 66 66 69 63 20 70 | .When.configuring.your.traffic.p |
| b0580 | 6f 6c 69 63 79 2c 20 79 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 73 65 74 20 64 61 74 61 | olicy,.you.will.have.to.set.data |
| b05a0 | 20 72 61 74 65 20 76 61 6c 75 65 73 2c 20 77 61 74 63 68 20 6f 75 74 20 74 68 65 20 75 6e 69 74 | .rate.values,.watch.out.the.unit |
| b05c0 | 73 20 79 6f 75 20 61 72 65 20 6d 61 6e 61 67 69 6e 67 2c 20 69 74 20 69 73 20 65 61 73 79 20 74 | s.you.are.managing,.it.is.easy.t |
| b05e0 | 6f 20 67 65 74 20 63 6f 6e 66 75 73 65 64 20 77 69 74 68 20 74 68 65 20 64 69 66 66 65 72 65 6e | o.get.confused.with.the.differen |
| b0600 | 74 20 70 72 65 66 69 78 65 73 20 61 6e 64 20 73 75 66 66 69 78 65 73 20 79 6f 75 20 63 61 6e 20 | t.prefixes.and.suffixes.you.can. |
| b0620 | 75 73 65 2e 20 56 79 4f 53 20 77 69 6c 6c 20 61 6c 77 61 79 73 20 73 68 6f 77 20 79 6f 75 20 74 | use..VyOS.will.always.show.you.t |
| b0640 | 68 65 20 64 69 66 66 65 72 65 6e 74 20 75 6e 69 74 73 20 79 6f 75 20 63 61 6e 20 75 73 65 2e 00 | he.different.units.you.can.use.. |
| b0660 | 57 68 65 6e 20 64 65 66 69 6e 69 6e 67 20 61 20 72 75 6c 65 2c 20 69 74 20 69 73 20 65 6e 61 62 | When.defining.a.rule,.it.is.enab |
| b0680 | 6c 65 20 62 79 20 64 65 66 61 75 6c 74 2e 20 49 6e 20 73 6f 6d 65 20 63 61 73 65 73 2c 20 69 74 | le.by.default..In.some.cases,.it |
| b06a0 | 20 69 73 20 75 73 65 66 75 6c 20 74 6f 20 6a 75 73 74 20 64 69 73 61 62 6c 65 20 74 68 65 20 72 | .is.useful.to.just.disable.the.r |
| b06c0 | 75 6c 65 2c 20 72 61 74 68 65 72 20 74 68 61 6e 20 72 65 6d 6f 76 69 6e 67 20 69 74 2e 00 57 68 | ule,.rather.than.removing.it..Wh |
| b06e0 | 65 6e 20 64 65 66 69 6e 69 6e 67 20 61 20 72 75 6c 65 2c 20 69 74 20 69 73 20 65 6e 61 62 6c 65 | en.defining.a.rule,.it.is.enable |
| b0700 | 64 20 62 79 20 64 65 66 61 75 6c 74 2e 20 49 6e 20 73 6f 6d 65 20 63 61 73 65 73 2c 20 69 74 20 | d.by.default..In.some.cases,.it. |
| b0720 | 69 73 20 75 73 65 66 75 6c 20 74 6f 20 6a 75 73 74 20 64 69 73 61 62 6c 65 20 74 68 65 20 72 75 | is.useful.to.just.disable.the.ru |
| b0740 | 6c 65 2c 20 72 61 74 68 65 72 20 74 68 61 6e 20 72 65 6d 6f 76 69 6e 67 20 69 74 2e 00 57 68 65 | le,.rather.than.removing.it..Whe |
| b0760 | 6e 20 64 65 66 69 6e 69 6e 67 20 74 68 65 20 74 72 61 6e 73 6c 61 74 65 64 20 61 64 64 72 65 73 | n.defining.the.translated.addres |
| b0780 | 73 2c 20 63 61 6c 6c 65 64 20 60 60 62 61 63 6b 65 6e 64 73 60 60 2c 20 61 20 60 60 77 65 69 67 | s,.called.``backends``,.a.``weig |
| b07a0 | 68 74 60 60 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 68 69 73 20 6c 65 | ht``.must.be.configured..This.le |
| b07c0 | 74 73 20 74 68 65 20 75 73 65 72 20 64 65 66 69 6e 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 20 | ts.the.user.define.load.balance. |
| b07e0 | 64 69 73 74 72 69 62 75 74 69 6f 6e 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 74 68 65 69 72 20 | distribution.according.to.their. |
| b0800 | 6e 65 65 64 73 2e 20 54 68 65 6d 20 73 75 6d 20 6f 66 20 61 6c 6c 20 74 68 65 20 77 65 69 67 68 | needs..Them.sum.of.all.the.weigh |
| b0820 | 74 73 20 64 65 66 69 6e 65 64 20 66 6f 72 20 74 68 65 20 62 61 63 6b 65 6e 64 73 20 73 68 6f 75 | ts.defined.for.the.backends.shou |
| b0840 | 6c 64 20 62 65 20 65 71 75 61 6c 20 74 6f 20 31 30 30 2e 20 49 6e 20 6f 64 65 72 20 77 6f 72 64 | ld.be.equal.to.100..In.oder.word |
| b0860 | 73 2c 20 74 68 65 20 77 65 69 67 68 74 20 64 65 66 69 6e 65 64 20 66 6f 72 20 74 68 65 20 62 61 | s,.the.weight.defined.for.the.ba |
| b0880 | 63 6b 65 6e 64 20 69 73 20 74 68 65 20 70 65 72 63 65 6e 74 61 67 65 20 6f 66 20 74 68 65 20 63 | ckend.is.the.percentage.of.the.c |
| b08a0 | 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 68 61 74 20 77 69 6c 6c 20 72 65 63 65 69 76 65 20 73 75 63 | onnections.that.will.receive.suc |
| b08c0 | 68 20 62 61 63 6b 65 6e 64 2e 00 57 68 65 6e 20 64 65 71 75 65 75 69 6e 67 2c 20 65 61 63 68 20 | h.backend..When.dequeuing,.each. |
| b08e0 | 68 61 73 68 2d 62 75 63 6b 65 74 20 77 69 74 68 20 64 61 74 61 20 69 73 20 71 75 65 72 69 65 64 | hash-bucket.with.data.is.queried |
| b0900 | 20 69 6e 20 61 20 72 6f 75 6e 64 20 72 6f 62 69 6e 20 66 61 73 68 69 6f 6e 2e 20 59 6f 75 20 63 | .in.a.round.robin.fashion..You.c |
| b0920 | 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 71 | an.configure.the.length.of.the.q |
| b0940 | 75 65 75 65 2e 00 57 68 65 6e 20 64 65 73 69 67 6e 69 6e 67 20 79 6f 75 72 20 4e 41 54 20 72 75 | ueue..When.designing.your.NAT.ru |
| b0960 | 6c 65 73 65 74 20 6c 65 61 76 65 20 73 6f 6d 65 20 73 70 61 63 65 20 62 65 74 77 65 65 6e 20 63 | leset.leave.some.space.between.c |
| b0980 | 6f 6e 73 65 63 75 74 69 76 65 20 72 75 6c 65 73 20 66 6f 72 20 6c 61 74 65 72 20 65 78 74 65 6e | onsecutive.rules.for.later.exten |
| b09a0 | 73 69 6f 6e 2e 20 59 6f 75 72 20 72 75 6c 65 73 65 74 20 63 6f 75 6c 64 20 73 74 61 72 74 20 77 | sion..Your.ruleset.could.start.w |
| b09c0 | 69 74 68 20 6e 75 6d 62 65 72 73 20 31 30 2c 20 32 30 2c 20 33 30 2e 20 59 6f 75 20 74 68 75 73 | ith.numbers.10,.20,.30..You.thus |
| b09e0 | 20 63 61 6e 20 6c 61 74 65 72 20 65 78 74 65 6e 64 20 74 68 65 20 72 75 6c 65 73 65 74 20 61 6e | .can.later.extend.the.ruleset.an |
| b0a00 | 64 20 70 6c 61 63 65 20 6e 65 77 20 72 75 6c 65 73 20 62 65 74 77 65 65 6e 20 65 78 69 73 74 69 | d.place.new.rules.between.existi |
| b0a20 | 6e 67 20 6f 6e 65 73 2e 00 57 68 65 6e 20 64 6f 69 6e 67 20 66 61 75 6c 74 20 69 73 6f 6c 61 74 | ng.ones..When.doing.fault.isolat |
| b0a40 | 69 6f 6e 20 77 69 74 68 20 70 69 6e 67 2c 20 79 6f 75 20 73 68 6f 75 6c 64 20 66 69 72 73 74 20 | ion.with.ping,.you.should.first. |
| b0a60 | 72 75 6e 20 69 74 20 6f 6e 20 74 68 65 20 6c 6f 63 61 6c 20 68 6f 73 74 2c 20 74 6f 20 76 65 72 | run.it.on.the.local.host,.to.ver |
| b0a80 | 69 66 79 20 74 68 61 74 20 74 68 65 20 6c 6f 63 61 6c 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 | ify.that.the.local.network.inter |
| b0aa0 | 66 61 63 65 20 69 73 20 75 70 20 61 6e 64 20 72 75 6e 6e 69 6e 67 2e 20 54 68 65 6e 2c 20 63 6f | face.is.up.and.running..Then,.co |
| b0ac0 | 6e 74 69 6e 75 65 20 77 69 74 68 20 68 6f 73 74 73 20 61 6e 64 20 67 61 74 65 77 61 79 73 20 66 | ntinue.with.hosts.and.gateways.f |
| b0ae0 | 75 72 74 68 65 72 20 64 6f 77 6e 20 74 68 65 20 72 6f 61 64 20 74 6f 77 61 72 64 73 20 79 6f 75 | urther.down.the.road.towards.you |
| b0b00 | 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 2e 20 52 6f 75 6e 64 2d 74 72 69 70 20 74 69 6d 65 20 61 | r.destination..Round-trip.time.a |
| b0b20 | 6e 64 20 70 61 63 6b 65 74 20 6c 6f 73 73 20 73 74 61 74 69 73 74 69 63 73 20 61 72 65 20 63 6f | nd.packet.loss.statistics.are.co |
| b0b40 | 6d 70 75 74 65 64 2e 00 57 68 65 6e 20 66 69 72 73 74 20 63 6f 6e 6e 65 63 74 69 6e 67 20 74 6f | mputed..When.first.connecting.to |
| b0b60 | 20 74 68 65 20 6e 65 77 20 56 50 4e 20 74 68 65 20 75 73 65 72 20 69 73 20 70 72 6f 6d 70 74 65 | .the.new.VPN.the.user.is.prompte |
| b0b80 | 64 20 74 6f 20 65 6e 74 65 72 20 70 72 6f 70 65 72 20 63 72 65 64 65 6e 74 69 61 6c 73 2e 00 57 | d.to.enter.proper.credentials..W |
| b0ba0 | 68 65 6e 20 69 6d 70 6c 65 6d 65 6e 74 69 6e 67 20 43 47 4e 41 54 2c 20 65 6e 73 75 72 69 6e 67 | hen.implementing.CGNAT,.ensuring |
| b0bc0 | 20 74 68 61 74 20 74 68 65 72 65 20 61 72 65 20 65 6e 6f 75 67 68 20 70 6f 72 74 73 20 61 6c 6c | .that.there.are.enough.ports.all |
| b0be0 | 6f 63 61 74 65 64 20 70 65 72 20 73 75 62 73 63 72 69 62 65 72 20 69 73 20 63 72 69 74 69 63 61 | ocated.per.subscriber.is.critica |
| b0c00 | 6c 2e 20 42 65 6c 6f 77 20 69 73 20 61 20 73 75 6d 6d 61 72 79 20 62 61 73 65 64 20 6f 6e 20 52 | l..Below.is.a.summary.based.on.R |
| b0c20 | 46 43 20 36 38 38 38 2e 00 57 68 65 6e 20 6c 6f 61 64 69 6e 67 20 74 68 65 20 63 65 72 74 69 66 | FC.6888..When.loading.the.certif |
| b0c40 | 69 63 61 74 65 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 6d 61 6e 75 61 6c 6c 79 20 73 74 72 69 70 | icate.you.need.to.manually.strip |
| b0c60 | 20 74 68 65 20 60 60 2d 2d 2d 2d 2d 42 45 47 49 4e 20 43 45 52 54 49 46 49 43 41 54 45 2d 2d 2d | .the.``-----BEGIN.CERTIFICATE--- |
| b0c80 | 2d 2d 60 60 20 61 6e 64 20 60 60 2d 2d 2d 2d 2d 45 4e 44 20 43 45 52 54 49 46 49 43 41 54 45 2d | --``.and.``-----END.CERTIFICATE- |
| b0ca0 | 2d 2d 2d 2d 60 60 20 74 61 67 73 2e 20 41 6c 73 6f 2c 20 74 68 65 20 63 65 72 74 69 66 69 63 61 | ----``.tags..Also,.the.certifica |
| b0cc0 | 74 65 2f 6b 65 79 20 6e 65 65 64 73 20 74 6f 20 62 65 20 70 72 65 73 65 6e 74 65 64 20 69 6e 20 | te/key.needs.to.be.presented.in. |
| b0ce0 | 61 20 73 69 6e 67 6c 65 20 6c 69 6e 65 20 77 69 74 68 6f 75 74 20 6c 69 6e 65 20 62 72 65 61 6b | a.single.line.without.line.break |
| b0d00 | 73 20 28 60 60 5c 6e 60 60 29 2c 20 74 68 69 73 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 75 73 69 | s.(``\n``),.this.can.be.done.usi |
| b0d20 | 6e 67 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 68 65 6c 6c 20 63 6f 6d 6d 61 6e 64 3a 00 | ng.the.following.shell.command:. |
| b0d40 | 57 68 65 6e 20 6c 6f 61 64 69 6e 67 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 79 6f 75 | When.loading.the.certificate.you |
| b0d60 | 20 6e 65 65 64 20 74 6f 20 6d 61 6e 75 61 6c 6c 79 20 73 74 72 69 70 20 74 68 65 20 60 60 2d 2d | .need.to.manually.strip.the.``-- |
| b0d80 | 2d 2d 2d 42 45 47 49 4e 20 4b 45 59 2d 2d 2d 2d 2d 60 60 20 61 6e 64 20 60 60 2d 2d 2d 2d 2d 45 | ---BEGIN.KEY-----``.and.``-----E |
| b0da0 | 4e 44 20 4b 45 59 2d 2d 2d 2d 2d 60 60 20 74 61 67 73 2e 20 41 6c 73 6f 2c 20 74 68 65 20 63 65 | ND.KEY-----``.tags..Also,.the.ce |
| b0dc0 | 72 74 69 66 69 63 61 74 65 2f 6b 65 79 20 6e 65 65 64 73 20 74 6f 20 62 65 20 70 72 65 73 65 6e | rtificate/key.needs.to.be.presen |
| b0de0 | 74 65 64 20 69 6e 20 61 20 73 69 6e 67 6c 65 20 6c 69 6e 65 20 77 69 74 68 6f 75 74 20 6c 69 6e | ted.in.a.single.line.without.lin |
| b0e00 | 65 20 62 72 65 61 6b 73 20 28 60 60 5c 6e 60 60 29 2c 20 74 68 69 73 20 63 61 6e 20 62 65 20 64 | e.breaks.(``\n``),.this.can.be.d |
| b0e20 | 6f 6e 65 20 75 73 69 6e 67 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 68 65 6c 6c 20 63 6f | one.using.the.following.shell.co |
| b0e40 | 6d 6d 61 6e 64 3a 00 57 68 65 6e 20 6d 61 74 68 63 69 6e 67 20 61 6c 6c 20 70 61 74 74 65 72 6e | mmand:.When.mathcing.all.pattern |
| b0e60 | 73 20 64 65 66 69 6e 65 64 20 69 6e 20 61 20 72 75 6c 65 2c 20 74 68 65 6e 20 64 69 66 66 65 72 | s.defined.in.a.rule,.then.differ |
| b0e80 | 65 6e 74 20 61 63 74 69 6f 6e 73 20 63 61 6e 20 62 65 20 6d 61 64 65 2e 20 54 68 69 73 20 69 6e | ent.actions.can.be.made..This.in |
| b0ea0 | 63 6c 75 64 65 73 20 64 72 6f 70 69 6e 67 20 74 68 65 20 70 61 63 6b 65 74 2c 20 6d 6f 64 69 66 | cludes.droping.the.packet,.modif |
| b0ec0 | 79 69 6e 67 20 63 65 72 74 61 69 6e 20 64 61 74 61 2c 20 6f 72 20 73 65 74 74 69 6e 67 20 61 20 | ying.certain.data,.or.setting.a. |
| b0ee0 | 64 69 66 66 65 72 65 6e 74 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 00 57 68 65 6e 20 6e 6f | different.routing.table..When.no |
| b0f00 | 20 6f 70 74 69 6f 6e 73 2f 70 61 72 61 6d 65 74 65 72 73 20 61 72 65 20 75 73 65 64 2c 20 74 68 | .options/parameters.are.used,.th |
| b0f20 | 65 20 63 6f 6e 74 65 6e 74 73 20 6f 66 20 74 68 65 20 6d 61 69 6e 20 73 79 73 6c 6f 67 20 66 69 | e.contents.of.the.main.syslog.fi |
| b0f40 | 6c 65 20 61 72 65 20 64 69 73 70 6c 61 79 65 64 2e 00 57 68 65 6e 20 6e 6f 2d 72 65 6c 65 61 73 | le.are.displayed..When.no-releas |
| b0f60 | 65 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 64 68 63 70 36 63 20 77 69 6c 6c 20 61 76 6f 69 | e.is.specified,.dhcp6c.will.avoi |
| b0f80 | 64 20 73 65 6e 64 69 6e 67 20 61 20 72 65 6c 65 61 73 65 20 6d 65 73 73 61 67 65 20 6f 6e 20 63 | d.sending.a.release.message.on.c |
| b0fa0 | 6c 69 65 6e 74 20 65 78 69 74 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 70 72 65 76 65 6e 74 20 6c | lient.exit.in.order.to.prevent.l |
| b0fc0 | 6f 73 69 6e 67 20 61 6e 20 61 73 73 69 67 6e 65 64 20 61 64 64 72 65 73 73 20 6f 72 20 70 72 65 | osing.an.assigned.address.or.pre |
| b0fe0 | 66 69 78 2e 00 57 68 65 6e 20 6e 6f 2d 72 65 6c 65 61 73 65 20 69 73 20 73 70 65 63 69 66 69 65 | fix..When.no-release.is.specifie |
| b1000 | 64 2c 20 64 68 63 70 36 63 20 77 69 6c 6c 20 73 65 6e 64 20 61 20 72 65 6c 65 61 73 65 20 6d 65 | d,.dhcp6c.will.send.a.release.me |
| b1020 | 73 73 61 67 65 20 6f 6e 20 63 6c 69 65 6e 74 20 65 78 69 74 20 74 6f 20 70 72 65 76 65 6e 74 20 | ssage.on.client.exit.to.prevent. |
| b1040 | 6c 6f 73 69 6e 67 20 61 6e 20 61 73 73 69 67 6e 65 64 20 61 64 64 72 65 73 73 20 6f 72 20 70 72 | losing.an.assigned.address.or.pr |
| b1060 | 65 66 69 78 2e 00 57 68 65 6e 20 70 72 6f 63 65 73 73 69 6e 67 20 70 61 63 6b 65 74 73 20 66 72 | efix..When.processing.packets.fr |
| b1080 | 6f 6d 20 61 20 6e 65 69 67 68 62 6f 72 20 70 72 6f 63 65 73 73 20 74 68 65 20 6e 75 6d 62 65 72 | om.a.neighbor.process.the.number |
| b10a0 | 20 6f 66 20 70 61 63 6b 65 74 73 20 69 6e 63 6f 6d 69 6e 67 20 61 74 20 6f 6e 65 20 74 69 6d 65 | .of.packets.incoming.at.one.time |
| b10c0 | 20 62 65 66 6f 72 65 20 6d 6f 76 69 6e 67 20 6f 6e 20 74 6f 20 74 68 65 20 6e 65 78 74 20 74 61 | .before.moving.on.to.the.next.ta |
| b10e0 | 73 6b 2e 00 57 68 65 6e 20 72 61 70 69 64 2d 63 6f 6d 6d 69 74 20 69 73 20 73 70 65 63 69 66 69 | sk..When.rapid-commit.is.specifi |
| b1100 | 65 64 2c 20 64 68 63 70 36 63 20 77 69 6c 6c 20 69 6e 63 6c 75 64 65 20 61 20 72 61 70 69 64 2d | ed,.dhcp6c.will.include.a.rapid- |
| b1120 | 63 6f 6d 6d 69 74 20 6f 70 74 69 6f 6e 20 69 6e 20 73 6f 6c 69 63 69 74 20 6d 65 73 73 61 67 65 | commit.option.in.solicit.message |
| b1140 | 73 20 61 6e 64 20 77 61 69 74 20 66 6f 72 20 61 6e 20 69 6d 6d 65 64 69 61 74 65 20 72 65 70 6c | s.and.wait.for.an.immediate.repl |
| b1160 | 79 20 69 6e 73 74 65 61 64 20 6f 66 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 73 2e 00 57 68 65 | y.instead.of.advertisements..Whe |
| b1180 | 6e 20 72 65 6d 6f 74 65 20 70 65 65 72 20 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 20 63 61 70 61 | n.remote.peer.does.not.have.capa |
| b11a0 | 62 69 6c 69 74 79 20 6e 65 67 6f 74 69 61 74 69 6f 6e 20 66 65 61 74 75 72 65 2c 20 72 65 6d 6f | bility.negotiation.feature,.remo |
| b11c0 | 74 65 20 70 65 65 72 20 77 69 6c 6c 20 6e 6f 74 20 73 65 6e 64 20 61 6e 79 20 63 61 70 61 62 69 | te.peer.will.not.send.any.capabi |
| b11e0 | 6c 69 74 69 65 73 20 61 74 20 61 6c 6c 2e 20 49 6e 20 74 68 61 74 20 63 61 73 65 2c 20 62 67 70 | lities.at.all..In.that.case,.bgp |
| b1200 | 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 70 65 65 72 20 77 69 74 68 20 63 6f 6e 66 69 67 | .configures.the.peer.with.config |
| b1220 | 75 72 65 64 20 63 61 70 61 62 69 6c 69 74 69 65 73 2e 00 57 68 65 6e 20 72 75 6e 6e 69 6e 67 20 | ured.capabilities..When.running. |
| b1240 | 69 74 20 61 74 20 31 47 62 69 74 20 61 6e 64 20 6c 6f 77 65 72 2c 20 79 6f 75 20 6d 61 79 20 77 | it.at.1Gbit.and.lower,.you.may.w |
| b1260 | 61 6e 74 20 74 6f 20 72 65 64 75 63 65 20 74 68 65 20 60 71 75 65 75 65 2d 6c 69 6d 69 74 60 20 | ant.to.reduce.the.`queue-limit`. |
| b1280 | 74 6f 20 31 30 30 30 20 70 61 63 6b 65 74 73 20 6f 72 20 6c 65 73 73 2e 20 49 6e 20 72 61 74 65 | to.1000.packets.or.less..In.rate |
| b12a0 | 73 20 6c 69 6b 65 20 31 30 4d 62 69 74 2c 20 79 6f 75 20 6d 61 79 20 77 61 6e 74 20 74 6f 20 73 | s.like.10Mbit,.you.may.want.to.s |
| b12c0 | 65 74 20 69 74 20 74 6f 20 36 30 30 20 70 61 63 6b 65 74 73 2e 00 57 68 65 6e 20 73 65 6e 64 69 | et.it.to.600.packets..When.sendi |
| b12e0 | 6e 67 20 50 49 4d 20 68 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 74 65 6c 6c 20 50 49 4d 20 74 6f | ng.PIM.hello.packets.tell.PIM.to |
| b1300 | 20 6e 6f 74 20 73 65 6e 64 20 61 6e 79 20 76 36 20 73 65 63 6f 6e 64 61 72 79 20 61 64 64 72 65 | .not.send.any.v6.secondary.addre |
| b1320 | 73 73 65 73 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 69 6e 66 6f | sses.on.the.interface..This.info |
| b1340 | 72 6d 61 74 69 6f 6e 20 69 73 20 75 73 65 64 20 74 6f 20 61 6c 6c 6f 77 20 50 49 4d 20 74 6f 20 | rmation.is.used.to.allow.PIM.to. |
| b1360 | 75 73 65 20 76 36 20 6e 65 78 74 68 6f 70 73 20 69 6e 20 69 74 27 73 20 64 65 63 69 73 69 6f 6e | use.v6.nexthops.in.it's.decision |
| b1380 | 20 66 6f 72 20 3a 61 62 62 72 3a 60 52 50 46 20 28 52 65 76 65 72 73 65 20 50 61 74 68 20 46 6f | .for.:abbr:`RPF.(Reverse.Path.Fo |
| b13a0 | 72 77 61 72 64 69 6e 67 29 60 20 6c 6f 6f 6b 75 70 20 69 66 20 74 68 69 73 20 6f 70 74 69 6f 6e | rwarding)`.lookup.if.this.option |
| b13c0 | 20 69 73 20 6e 6f 74 20 73 65 74 20 28 64 65 66 61 75 6c 74 29 2e 00 57 68 65 6e 20 73 65 74 20 | .is.not.set.(default)..When.set. |
| b13e0 | 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 65 6e 61 62 6c 65 64 20 66 6f 72 20 22 64 69 | the.interface.is.enabled.for."di |
| b1400 | 61 6c 2d 6f 6e 2d 64 65 6d 61 6e 64 22 2e 00 57 68 65 6e 20 73 70 65 63 69 66 69 65 64 2c 20 74 | al-on-demand"..When.specified,.t |
| b1420 | 68 69 73 20 73 68 6f 75 6c 64 20 62 65 20 74 68 65 20 6f 6e 6c 79 20 6b 65 79 77 6f 72 64 20 66 | his.should.be.the.only.keyword.f |
| b1440 | 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 00 57 68 65 6e 20 73 74 61 72 74 69 6e 67 20 | or.the.interface..When.starting. |
| b1460 | 61 20 56 79 4f 53 20 6c 69 76 65 20 73 79 73 74 65 6d 20 28 74 68 65 20 69 6e 73 74 61 6c 6c 61 | a.VyOS.live.system.(the.installa |
| b1480 | 74 69 6f 6e 20 43 44 29 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6b 65 79 62 6f 61 72 64 | tion.CD).the.configured.keyboard |
| b14a0 | 20 6c 61 79 6f 75 74 20 64 65 66 61 75 6c 74 73 20 74 6f 20 55 53 2e 20 41 73 20 74 68 69 73 20 | .layout.defaults.to.US..As.this. |
| b14c0 | 6d 69 67 68 74 20 6e 6f 74 20 73 75 69 74 65 20 65 76 65 72 79 6f 6e 65 27 73 20 75 73 65 20 63 | might.not.suite.everyone's.use.c |
| b14e0 | 61 73 65 20 79 6f 75 20 63 61 6e 20 61 64 6a 75 73 74 20 74 68 65 20 75 73 65 64 20 6b 65 79 62 | ase.you.can.adjust.the.used.keyb |
| b1500 | 6f 61 72 64 20 6c 61 79 6f 75 74 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 20 63 6f 6e 73 6f 6c | oard.layout.on.the.system.consol |
| b1520 | 65 2e 00 57 68 65 6e 20 73 74 61 72 74 69 6e 67 20 61 20 56 79 4f 53 20 6c 69 76 65 20 73 79 73 | e..When.starting.a.VyOS.live.sys |
| b1540 | 74 65 6d 20 28 74 68 65 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 20 43 44 29 20 74 68 65 20 63 6f | tem.(the.installation.CD).the.co |
| b1560 | 6e 66 69 67 75 72 65 64 20 6b 65 79 62 6f 61 72 64 20 6c 61 79 6f 75 74 20 64 65 66 61 75 6c 74 | nfigured.keyboard.layout.default |
| b1580 | 73 20 74 6f 20 55 53 2e 20 41 73 20 74 68 69 73 20 6d 69 67 68 74 20 6e 6f 74 20 73 75 69 74 65 | s.to.US..As.this.might.not.suite |
| b15a0 | 20 65 76 65 72 79 6f 6e 65 73 20 75 73 65 20 63 61 73 65 20 79 6f 75 20 63 61 6e 20 61 64 6a 75 | .everyones.use.case.you.can.adju |
| b15c0 | 73 74 20 74 68 65 20 75 73 65 64 20 6b 65 79 62 6f 61 72 64 20 6c 61 79 6f 75 74 20 6f 6e 20 74 | st.the.used.keyboard.layout.on.t |
| b15e0 | 68 65 20 73 79 73 74 65 6d 20 63 6f 6e 73 6f 6c 65 2e 00 57 68 65 6e 20 74 68 65 20 44 48 43 50 | he.system.console..When.the.DHCP |
| b1600 | 20 73 65 72 76 65 72 20 69 73 20 63 6f 6e 73 69 64 65 72 69 6e 67 20 64 79 6e 61 6d 69 63 61 6c | .server.is.considering.dynamical |
| b1620 | 6c 79 20 61 6c 6c 6f 63 61 74 69 6e 67 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 61 | ly.allocating.an.IP.address.to.a |
| b1640 | 20 63 6c 69 65 6e 74 2c 20 69 74 20 66 69 72 73 74 20 73 65 6e 64 73 20 61 6e 20 49 43 4d 50 20 | .client,.it.first.sends.an.ICMP. |
| b1660 | 45 63 68 6f 20 72 65 71 75 65 73 74 20 28 61 20 70 69 6e 67 29 20 74 6f 20 74 68 65 20 61 64 64 | Echo.request.(a.ping).to.the.add |
| b1680 | 72 65 73 73 20 62 65 69 6e 67 20 61 73 73 69 67 6e 65 64 2e 20 49 74 20 77 61 69 74 73 20 66 6f | ress.being.assigned..It.waits.fo |
| b16a0 | 72 20 61 20 73 65 63 6f 6e 64 2c 20 61 6e 64 20 69 66 20 6e 6f 20 49 43 4d 50 20 45 63 68 6f 20 | r.a.second,.and.if.no.ICMP.Echo. |
| b16c0 | 72 65 73 70 6f 6e 73 65 20 68 61 73 20 62 65 65 6e 20 68 65 61 72 64 2c 20 69 74 20 61 73 73 69 | response.has.been.heard,.it.assi |
| b16e0 | 67 6e 73 20 74 68 65 20 61 64 64 72 65 73 73 2e 00 57 68 65 6e 20 74 68 65 20 63 6c 6f 73 65 2d | gns.the.address..When.the.close- |
| b1700 | 61 63 74 69 6f 6e 20 6f 70 74 69 6f 6e 20 69 73 20 73 65 74 20 6f 6e 20 74 68 65 20 70 65 65 72 | action.option.is.set.on.the.peer |
| b1720 | 73 2c 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2d 74 79 70 65 20 6f 66 20 65 61 63 68 20 70 | s,.the.connection-type.of.each.p |
| b1740 | 65 65 72 20 68 61 73 20 74 6f 20 63 6f 6e 73 69 64 65 72 65 64 20 63 61 72 65 66 75 6c 6c 79 2e | eer.has.to.considered.carefully. |
| b1760 | 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 69 66 20 74 68 65 20 6f 70 74 69 6f 6e 20 69 73 20 73 | .For.example,.if.the.option.is.s |
| b1780 | 65 74 20 6f 6e 20 62 6f 74 68 20 70 65 65 72 73 2c 20 74 68 65 6e 20 62 6f 74 68 20 77 6f 75 6c | et.on.both.peers,.then.both.woul |
| b17a0 | 64 20 61 74 74 65 6d 70 74 20 74 6f 20 69 6e 69 74 69 61 74 65 20 61 6e 64 20 68 6f 6c 64 20 6f | d.attempt.to.initiate.and.hold.o |
| b17c0 | 70 65 6e 20 6d 75 6c 74 69 70 6c 65 20 63 6f 70 69 65 73 20 6f 66 20 65 61 63 68 20 63 68 69 6c | pen.multiple.copies.of.each.chil |
| b17e0 | 64 20 53 41 2e 20 54 68 69 73 20 6d 69 67 68 74 20 6c 65 61 64 20 74 6f 20 69 6e 73 74 61 62 69 | d.SA..This.might.lead.to.instabi |
| b1800 | 6c 69 74 79 20 6f 66 20 74 68 65 20 64 65 76 69 63 65 20 6f 72 20 63 70 75 2f 6d 65 6d 6f 72 79 | lity.of.the.device.or.cpu/memory |
| b1820 | 20 75 74 69 6c 69 7a 61 74 69 6f 6e 2e 00 57 68 65 6e 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 61 | .utilization..When.the.command.a |
| b1840 | 62 6f 76 65 20 69 73 20 73 65 74 2c 20 56 79 4f 53 20 77 69 6c 6c 20 61 6e 73 77 65 72 20 65 76 | bove.is.set,.VyOS.will.answer.ev |
| b1860 | 65 72 79 20 49 43 4d 50 20 65 63 68 6f 20 72 65 71 75 65 73 74 20 61 64 64 72 65 73 73 65 64 20 | ery.ICMP.echo.request.addressed. |
| b1880 | 74 6f 20 69 74 73 65 6c 66 2c 20 62 75 74 20 74 68 61 74 20 77 69 6c 6c 20 6f 6e 6c 79 20 68 61 | to.itself,.but.that.will.only.ha |
| b18a0 | 70 70 65 6e 20 69 66 20 6e 6f 20 6f 74 68 65 72 20 72 75 6c 65 20 69 73 20 61 70 70 6c 69 65 64 | ppen.if.no.other.rule.is.applied |
| b18c0 | 20 64 72 6f 70 70 69 6e 67 20 6f 72 20 72 65 6a 65 63 74 69 6e 67 20 6c 6f 63 61 6c 20 65 63 68 | .dropping.or.rejecting.local.ech |
| b18e0 | 6f 20 72 65 71 75 65 73 74 73 2e 20 49 6e 20 63 61 73 65 20 6f 66 20 63 6f 6e 66 6c 69 63 74 2c | o.requests..In.case.of.conflict, |
| b1900 | 20 56 79 4f 53 20 77 69 6c 6c 20 6e 6f 74 20 61 6e 73 77 65 72 20 49 43 4d 50 20 65 63 68 6f 20 | .VyOS.will.not.answer.ICMP.echo. |
| b1920 | 72 65 71 75 65 73 74 73 2e 00 57 68 65 6e 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 61 62 6f 76 65 | requests..When.the.command.above |
| b1940 | 20 69 73 20 73 65 74 2c 20 56 79 4f 53 20 77 69 6c 6c 20 61 6e 73 77 65 72 20 6e 6f 20 49 43 4d | .is.set,.VyOS.will.answer.no.ICM |
| b1960 | 50 20 65 63 68 6f 20 72 65 71 75 65 73 74 20 61 64 64 72 65 73 73 65 64 20 74 6f 20 69 74 73 65 | P.echo.request.addressed.to.itse |
| b1980 | 6c 66 20 61 74 20 61 6c 6c 2c 20 6e 6f 20 6d 61 74 74 65 72 20 77 68 65 72 65 20 69 74 20 63 6f | lf.at.all,.no.matter.where.it.co |
| b19a0 | 6d 65 73 20 66 72 6f 6d 20 6f 72 20 77 68 65 74 68 65 72 20 6d 6f 72 65 20 73 70 65 63 69 66 69 | mes.from.or.whether.more.specifi |
| b19c0 | 63 20 72 75 6c 65 73 20 61 72 65 20 62 65 69 6e 67 20 61 70 70 6c 69 65 64 20 74 6f 20 61 63 63 | c.rules.are.being.applied.to.acc |
| b19e0 | 65 70 74 20 74 68 65 6d 2e 00 57 68 65 6e 20 74 68 65 20 76 72 72 70 20 67 72 6f 75 70 20 69 73 | ept.them..When.the.vrrp.group.is |
| b1a00 | 20 61 20 6d 65 6d 62 65 72 20 6f 66 20 74 68 65 20 73 79 6e 63 20 67 72 6f 75 70 20 77 69 6c 6c | .a.member.of.the.sync.group.will |
| b1a20 | 20 75 73 65 20 6f 6e 6c 79 20 74 68 65 20 73 79 6e 63 20 67 72 6f 75 70 20 68 65 61 6c 74 68 20 | .use.only.the.sync.group.health. |
| b1a40 | 63 68 65 63 6b 20 73 63 72 69 70 74 2e 20 54 68 69 73 20 65 78 61 6d 70 6c 65 20 73 68 6f 77 73 | check.script..This.example.shows |
| b1a60 | 20 68 6f 77 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 69 74 20 66 6f 72 20 74 68 65 20 73 79 6e | .how.to.configure.it.for.the.syn |
| b1a80 | 63 20 67 72 6f 75 70 3a 00 57 68 65 6e 20 74 69 6d 65 73 74 61 6d 70 69 6e 67 20 69 73 20 65 6e | c.group:.When.timestamping.is.en |
| b1aa0 | 61 62 6c 65 64 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2c 20 63 68 72 6f 6e 79 27 73 20 | abled.on.an.interface,.chrony's. |
| b1ac0 | 64 65 66 61 75 6c 74 20 62 65 68 61 76 69 6f 72 20 69 73 20 74 6f 20 74 72 79 20 74 6f 20 63 6f | default.behavior.is.to.try.to.co |
| b1ae0 | 6e 66 69 67 75 72 65 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 6f 6e 6c 79 20 74 69 | nfigure.the.interface.to.only.ti |
| b1b00 | 6d 65 73 74 61 6d 70 20 4e 54 50 20 70 61 63 6b 65 74 73 2e 20 49 66 20 74 68 69 73 20 6d 6f 64 | mestamp.NTP.packets..If.this.mod |
| b1b20 | 65 20 69 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 65 64 2c 20 63 68 72 6f 6e 79 20 77 69 6c 6c 20 | e.is.not.supported,.chrony.will. |
| b1b40 | 61 74 74 65 6d 70 74 20 74 6f 20 73 65 74 20 69 74 20 74 6f 20 74 69 6d 65 73 74 61 6d 70 20 61 | attempt.to.set.it.to.timestamp.a |
| b1b60 | 6c 6c 20 70 61 63 6b 65 74 73 2e 20 49 66 20 6e 65 69 74 68 65 72 20 6f 70 74 69 6f 6e 20 69 73 | ll.packets..If.neither.option.is |
| b1b80 | 20 73 75 70 70 6f 72 74 65 64 20 28 65 2e 67 2e 20 74 68 65 20 4e 49 43 20 63 61 6e 20 6f 6e 6c | .supported.(e.g..the.NIC.can.onl |
| b1ba0 | 79 20 74 69 6d 65 73 74 61 6d 70 20 72 65 63 65 69 76 65 64 20 50 54 50 20 70 61 63 6b 65 74 73 | y.timestamp.received.PTP.packets |
| b1bc0 | 29 2c 20 63 68 72 6f 6e 79 20 77 69 6c 6c 20 6c 65 76 65 72 61 67 65 20 74 69 6d 65 73 74 61 6d | ),.chrony.will.leverage.timestam |
| b1be0 | 70 69 6e 67 20 6f 6e 20 74 72 61 6e 73 6d 69 74 74 65 64 20 70 61 63 6b 65 74 73 20 6f 6e 6c 79 | ping.on.transmitted.packets.only |
| b1c00 | 2c 20 77 68 69 63 68 20 73 74 69 6c 6c 20 70 72 6f 76 69 64 65 73 20 73 6f 6d 65 20 62 65 6e 65 | ,.which.still.provides.some.bene |
| b1c20 | 66 69 74 2e 00 57 68 65 6e 20 75 73 69 6e 67 20 44 48 43 50 20 74 6f 20 72 65 74 72 69 65 76 65 | fit..When.using.DHCP.to.retrieve |
| b1c40 | 20 49 50 76 34 20 61 64 64 72 65 73 73 20 61 6e 64 20 69 66 20 6c 6f 63 61 6c 20 63 75 73 74 6f | .IPv4.address.and.if.local.custo |
| b1c60 | 6d 69 7a 61 74 69 6f 6e 73 20 61 72 65 20 6e 65 65 64 65 64 2c 20 74 68 65 79 20 73 68 6f 75 6c | mizations.are.needed,.they.shoul |
| b1c80 | 64 20 62 65 20 70 6f 73 73 69 62 6c 65 20 75 73 69 6e 67 20 74 68 65 20 65 6e 74 65 72 20 61 6e | d.be.possible.using.the.enter.an |
| b1ca0 | 64 20 65 78 69 74 20 68 6f 6f 6b 73 20 70 72 6f 76 69 64 65 64 2e 20 54 68 65 20 68 6f 6f 6b 20 | d.exit.hooks.provided..The.hook. |
| b1cc0 | 64 69 72 73 20 61 72 65 3a 00 57 68 65 6e 20 75 73 69 6e 67 20 45 56 45 2d 4e 47 20 74 6f 20 6c | dirs.are:.When.using.EVE-NG.to.l |
| b1ce0 | 61 62 20 74 68 69 73 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 65 6e 73 75 72 65 20 79 6f 75 20 61 | ab.this.environment.ensure.you.a |
| b1d00 | 72 65 20 75 73 69 6e 67 20 65 31 30 30 30 20 61 73 20 74 68 65 20 64 65 73 69 72 65 64 20 64 72 | re.using.e1000.as.the.desired.dr |
| b1d20 | 69 76 65 72 20 66 6f 72 20 79 6f 75 72 20 56 79 4f 53 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 | iver.for.your.VyOS.network.inter |
| b1d40 | 66 61 63 65 73 2e 20 57 68 65 6e 20 75 73 69 6e 67 20 74 68 65 20 72 65 67 75 6c 61 72 20 76 69 | faces..When.using.the.regular.vi |
| b1d60 | 72 74 69 6f 20 6e 65 74 77 6f 72 6b 20 64 72 69 76 65 72 20 6e 6f 20 4c 41 43 50 20 50 44 55 73 | rtio.network.driver.no.LACP.PDUs |
| b1d80 | 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 62 79 20 56 79 4f 53 20 74 68 75 73 20 74 68 65 20 70 | .will.be.sent.by.VyOS.thus.the.p |
| b1da0 | 6f 72 74 2d 63 68 61 6e 6e 65 6c 20 77 69 6c 6c 20 6e 65 76 65 72 20 62 65 63 6f 6d 65 20 61 63 | ort-channel.will.never.become.ac |
| b1dc0 | 74 69 76 65 21 00 57 68 65 6e 20 75 73 69 6e 67 20 4e 41 54 20 66 6f 72 20 61 20 6c 61 72 67 65 | tive!.When.using.NAT.for.a.large |
| b1de0 | 20 6e 75 6d 62 65 72 20 6f 66 20 68 6f 73 74 20 73 79 73 74 65 6d 73 20 69 74 20 72 65 63 6f 6d | .number.of.host.systems.it.recom |
| b1e00 | 6d 65 6e 64 65 64 20 74 68 61 74 20 61 20 6d 69 6e 69 6d 75 6d 20 6f 66 20 31 20 49 50 20 61 64 | mended.that.a.minimum.of.1.IP.ad |
| b1e20 | 64 72 65 73 73 20 69 73 20 75 73 65 64 20 74 6f 20 4e 41 54 20 65 76 65 72 79 20 32 35 36 20 68 | dress.is.used.to.NAT.every.256.h |
| b1e40 | 6f 73 74 20 73 79 73 74 65 6d 73 2e 20 54 68 69 73 20 69 73 20 64 75 65 20 74 6f 20 74 68 65 20 | ost.systems..This.is.due.to.the. |
| b1e60 | 6c 69 6d 69 74 20 6f 66 20 36 35 2c 30 30 30 20 70 6f 72 74 20 6e 75 6d 62 65 72 73 20 61 76 61 | limit.of.65,000.port.numbers.ava |
| b1e80 | 69 6c 61 62 6c 65 20 66 6f 72 20 75 6e 69 71 75 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 73 20 61 | ilable.for.unique.translations.a |
| b1ea0 | 6e 64 20 61 20 72 65 73 65 72 76 69 6e 67 20 61 6e 20 61 76 65 72 61 67 65 20 6f 66 20 32 30 30 | nd.a.reserving.an.average.of.200 |
| b1ec0 | 2d 33 30 30 20 73 65 73 73 69 6f 6e 73 20 70 65 72 20 68 6f 73 74 20 73 79 73 74 65 6d 2e 00 57 | -300.sessions.per.host.system..W |
| b1ee0 | 68 65 6e 20 75 73 69 6e 67 20 4e 41 54 20 66 6f 72 20 61 20 6c 61 72 67 65 20 6e 75 6d 62 65 72 | hen.using.NAT.for.a.large.number |
| b1f00 | 20 6f 66 20 68 6f 73 74 20 73 79 73 74 65 6d 73 20 69 74 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 | .of.host.systems.it.recommended. |
| b1f20 | 74 68 61 74 20 61 20 6d 69 6e 69 6d 75 6d 20 6f 66 20 31 20 49 50 20 61 64 64 72 65 73 73 20 69 | that.a.minimum.of.1.IP.address.i |
| b1f40 | 73 20 75 73 65 64 20 74 6f 20 4e 41 54 20 65 76 65 72 79 20 32 35 36 20 70 72 69 76 61 74 65 20 | s.used.to.NAT.every.256.private. |
| b1f60 | 68 6f 73 74 20 73 79 73 74 65 6d 73 2e 20 54 68 69 73 20 69 73 20 64 75 65 20 74 6f 20 74 68 65 | host.systems..This.is.due.to.the |
| b1f80 | 20 6c 69 6d 69 74 20 6f 66 20 36 35 2c 30 30 30 20 70 6f 72 74 20 6e 75 6d 62 65 72 73 20 61 76 | .limit.of.65,000.port.numbers.av |
| b1fa0 | 61 69 6c 61 62 6c 65 20 66 6f 72 20 75 6e 69 71 75 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 73 20 | ailable.for.unique.translations. |
| b1fc0 | 61 6e 64 20 61 20 72 65 73 65 72 76 69 6e 67 20 61 6e 20 61 76 65 72 61 67 65 20 6f 66 20 32 30 | and.a.reserving.an.average.of.20 |
| b1fe0 | 30 2d 33 30 30 20 73 65 73 73 69 6f 6e 73 20 70 65 72 20 68 6f 73 74 20 73 79 73 74 65 6d 2e 00 | 0-300.sessions.per.host.system.. |
| b2000 | 57 68 65 6e 20 75 73 69 6e 67 20 53 53 48 2c 20 6b 6e 6f 77 6e 2d 68 6f 73 74 73 2d 66 69 6c 65 | When.using.SSH,.known-hosts-file |
| b2020 | 2c 20 70 72 69 76 61 74 65 2d 6b 65 79 2d 66 69 6c 65 20 61 6e 64 20 70 75 62 6c 69 63 2d 6b 65 | ,.private-key-file.and.public-ke |
| b2040 | 79 2d 66 69 6c 65 20 61 72 65 20 6d 61 6e 64 61 74 6f 72 79 20 6f 70 74 69 6f 6e 73 2e 00 57 68 | y-file.are.mandatory.options..Wh |
| b2060 | 65 6e 20 75 73 69 6e 67 20 53 53 48 2c 20 70 72 69 76 61 74 65 2d 6b 65 79 2d 66 69 6c 65 20 61 | en.using.SSH,.private-key-file.a |
| b2080 | 6e 64 20 70 75 62 6c 69 63 2d 6b 65 79 2d 66 69 6c 65 20 61 72 65 20 6d 61 6e 64 61 74 6f 72 79 | nd.public-key-file.are.mandatory |
| b20a0 | 20 6f 70 74 69 6f 6e 73 2e 00 57 68 65 6e 20 75 73 69 6e 67 20 54 69 6d 65 2d 62 61 73 65 64 20 | .options..When.using.Time-based. |
| b20c0 | 6f 6e 65 2d 74 69 6d 65 20 70 61 73 73 77 6f 72 64 20 28 54 4f 54 50 29 20 28 4f 54 50 20 48 4f | one-time.password.(TOTP).(OTP.HO |
| b20e0 | 54 50 2d 74 69 6d 65 29 2c 20 62 65 20 73 75 72 65 20 74 68 61 74 20 74 68 65 20 74 69 6d 65 20 | TP-time),.be.sure.that.the.time. |
| b2100 | 6f 6e 20 74 68 65 20 73 65 72 76 65 72 20 61 6e 64 20 74 68 65 20 4f 54 50 20 74 6f 6b 65 6e 20 | on.the.server.and.the.OTP.token. |
| b2120 | 67 65 6e 65 72 61 74 6f 72 20 61 72 65 20 73 79 6e 63 68 72 6f 6e 69 7a 65 64 20 62 79 20 4e 54 | generator.are.synchronized.by.NT |
| b2140 | 50 00 57 68 65 6e 20 75 73 69 6e 67 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 49 50 73 65 63 20 | P.When.using.site-to-site.IPsec. |
| b2160 | 77 69 74 68 20 56 54 49 20 69 6e 74 65 72 66 61 63 65 73 2c 20 62 65 20 73 75 72 65 20 74 6f 20 | with.VTI.interfaces,.be.sure.to. |
| b2180 | 64 69 73 61 62 6c 65 20 72 6f 75 74 65 20 61 75 74 6f 69 6e 73 74 61 6c 6c 00 57 68 65 6e 20 75 | disable.route.autoinstall.When.u |
| b21a0 | 73 69 6e 67 20 74 68 65 20 49 50 76 36 20 70 72 6f 74 6f 63 6f 6c 2c 20 4d 52 55 20 6d 75 73 74 | sing.the.IPv6.protocol,.MRU.must |
| b21c0 | 20 62 65 20 61 74 20 6c 65 61 73 74 20 31 32 38 30 20 62 79 74 65 73 2e 00 57 68 65 6e 20 75 74 | .be.at.least.1280.bytes..When.ut |
| b21e0 | 69 6c 69 7a 69 6e 67 20 56 79 4f 53 20 69 6e 20 61 6e 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 77 | ilizing.VyOS.in.an.environment.w |
| b2200 | 69 74 68 20 41 72 69 73 74 61 20 67 65 61 72 20 79 6f 75 20 63 61 6e 20 75 73 65 20 74 68 69 73 | ith.Arista.gear.you.can.use.this |
| b2220 | 20 62 6c 75 65 20 70 72 69 6e 74 20 61 73 20 61 6e 20 69 6e 69 74 69 61 6c 20 73 65 74 75 70 20 | .blue.print.as.an.initial.setup. |
| b2240 | 74 6f 20 67 65 74 20 61 6e 20 4c 41 43 50 20 62 6f 6e 64 20 2f 20 70 6f 72 74 2d 63 68 61 6e 6e | to.get.an.LACP.bond./.port-chann |
| b2260 | 65 6c 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 62 65 74 77 65 65 6e 20 74 68 6f 73 65 20 74 77 6f | el.operational.between.those.two |
| b2280 | 20 64 65 76 69 63 65 73 2e 00 57 68 65 72 65 20 62 6f 74 68 20 72 6f 75 74 65 73 20 77 65 72 65 | .devices..Where.both.routes.were |
| b22a0 | 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 65 42 47 50 20 70 65 65 72 73 2c 20 74 68 65 6e 20 | .received.from.eBGP.peers,.then. |
| b22c0 | 70 72 65 66 65 72 20 74 68 65 20 72 6f 75 74 65 20 77 68 69 63 68 20 69 73 20 61 6c 72 65 61 64 | prefer.the.route.which.is.alread |
| b22e0 | 79 20 73 65 6c 65 63 74 65 64 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 69 73 20 63 68 65 63 6b | y.selected..Note.that.this.check |
| b2300 | 20 69 73 20 6e 6f 74 20 61 70 70 6c 69 65 64 20 69 66 20 3a 63 66 67 63 6d 64 3a 60 62 67 70 20 | .is.not.applied.if.:cfgcmd:`bgp. |
| b2320 | 62 65 73 74 70 61 74 68 20 63 6f 6d 70 61 72 65 2d 72 6f 75 74 65 72 69 64 60 20 69 73 20 63 6f | bestpath.compare-routerid`.is.co |
| b2340 | 6e 66 69 67 75 72 65 64 2e 20 54 68 69 73 20 63 68 65 63 6b 20 63 61 6e 20 70 72 65 76 65 6e 74 | nfigured..This.check.can.prevent |
| b2360 | 20 73 6f 6d 65 20 63 61 73 65 73 20 6f 66 20 6f 73 63 69 6c 6c 61 74 69 6f 6e 2e 00 57 68 65 72 | .some.cases.of.oscillation..Wher |
| b2380 | 65 20 66 69 72 65 77 61 6c 6c 20 62 61 73 65 20 63 68 61 69 6e 20 74 6f 20 63 6f 6e 66 69 67 75 | e.firewall.base.chain.to.configu |
| b23a0 | 72 65 20 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 | re.firewall.filtering.rules.for. |
| b23c0 | 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c | transit.traffic.is.``set.firewal |
| b23e0 | 6c 20 69 70 76 34 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 | l.ipv4.forward.filter....``,.whi |
| b2400 | 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 61 67 65 20 35 2c 20 68 69 67 68 6c 69 67 68 74 | ch.happens.in.stage.5,.highlight |
| b2420 | 65 64 20 77 69 74 68 20 72 65 64 20 63 6f 6c 6f 72 2e 00 57 68 65 72 65 20 66 69 72 65 77 61 6c | ed.with.red.color..Where.firewal |
| b2440 | 6c 20 62 61 73 65 20 63 68 61 69 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 66 69 72 65 77 61 | l.base.chain.to.configure.firewa |
| b2460 | 6c 6c 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 74 72 61 6e 73 69 74 20 74 | ll.filtering.rules.for.transit.t |
| b2480 | 72 61 66 66 69 63 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 66 6f | raffic.is.``set.firewall.ipv4.fo |
| b24a0 | 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e | rward.filter....``,.which.happen |
| b24c0 | 73 20 69 6e 20 73 74 61 67 65 20 35 2c 20 68 69 67 68 6c 69 67 68 74 65 6e 65 64 20 77 69 74 68 | s.in.stage.5,.highlightened.with |
| b24e0 | 20 72 65 64 20 63 6f 6c 6f 72 2e 00 57 68 65 72 65 20 66 69 72 65 77 61 6c 6c 20 62 61 73 65 20 | .red.color..Where.firewall.base. |
| b2500 | 63 68 61 69 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 | chain.to.configure.firewall.filt |
| b2520 | 65 72 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 | ering.rules.for.transit.traffic. |
| b2540 | 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 20 66 | is.``set.firewall.ipv6.forward.f |
| b2560 | 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 | ilter....``,.which.happens.in.st |
| b2580 | 61 67 65 20 35 2c 20 68 69 67 68 6c 69 67 68 74 65 64 20 77 69 74 68 20 72 65 64 20 63 6f 6c 6f | age.5,.highlighted.with.red.colo |
| b25a0 | 72 2e 00 57 68 65 72 65 20 66 69 72 65 77 61 6c 6c 20 62 61 73 65 20 63 68 61 69 6e 20 74 6f 20 | r..Where.firewall.base.chain.to. |
| b25c0 | 63 6f 6e 66 69 67 75 72 65 20 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c | configure.firewall.filtering.rul |
| b25e0 | 65 73 20 66 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 69 73 20 60 60 73 65 74 20 | es.for.transit.traffic.is.``set. |
| b2600 | 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e | firewall.ipv6.forward.filter.... |
| b2620 | 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 61 67 65 20 35 2c 20 68 69 | ``,.which.happens.in.stage.5,.hi |
| b2640 | 67 68 6c 69 67 68 74 65 6e 65 64 20 77 69 74 68 20 72 65 64 20 63 6f 6c 6f 72 2e 00 57 68 65 72 | ghlightened.with.red.color..Wher |
| b2660 | 65 20 72 6f 75 74 65 73 20 77 69 74 68 20 61 20 4d 45 44 20 77 65 72 65 20 72 65 63 65 69 76 65 | e.routes.with.a.MED.were.receive |
| b2680 | 64 20 66 72 6f 6d 20 74 68 65 20 73 61 6d 65 20 41 53 2c 20 70 72 65 66 65 72 20 74 68 65 20 72 | d.from.the.same.AS,.prefer.the.r |
| b26a0 | 6f 75 74 65 20 77 69 74 68 20 74 68 65 20 6c 6f 77 65 73 74 20 4d 45 44 2e 00 57 68 65 72 65 2c | oute.with.the.lowest.MED..Where, |
| b26c0 | 20 6d 61 69 6e 20 6b 65 79 20 77 6f 72 64 73 20 61 6e 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | .main.key.words.and.configuratio |
| b26e0 | 6e 20 70 61 74 68 73 20 74 68 61 74 20 6e 65 65 64 73 20 74 6f 20 62 65 20 75 6e 64 65 72 73 74 | n.paths.that.needs.to.be.underst |
| b2700 | 6f 6f 64 3a 00 57 68 65 74 68 65 72 20 74 6f 20 61 63 63 65 70 74 20 44 41 44 20 28 44 75 70 6c | ood:.Whether.to.accept.DAD.(Dupl |
| b2720 | 69 63 61 74 65 20 41 64 64 72 65 73 73 20 44 65 74 65 63 74 69 6f 6e 29 2e 00 57 68 69 63 68 20 | icate.Address.Detection)..Which. |
| b2740 | 67 65 6e 65 72 61 74 65 73 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 | generates.the.following.configur |
| b2760 | 61 74 69 6f 6e 3a 00 57 68 69 63 68 20 72 65 73 75 6c 74 73 20 69 6e 20 61 20 63 6f 6e 66 69 67 | ation:.Which.results.in.a.config |
| b2780 | 75 72 61 74 69 6f 6e 20 6f 66 3a 00 57 68 69 63 68 20 77 6f 75 6c 64 20 67 65 6e 65 72 61 74 65 | uration.of:.Which.would.generate |
| b27a0 | 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 4e 41 54 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 63 | .the.following.NAT.destination.c |
| b27c0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 57 68 69 6c 65 20 2a 2a 6e 65 74 77 6f 72 6b 20 67 72 | onfiguration:.While.**network.gr |
| b27e0 | 6f 75 70 73 2a 2a 20 61 63 63 65 70 74 20 49 50 20 6e 65 74 77 6f 72 6b 73 20 69 6e 20 43 49 44 | oups**.accept.IP.networks.in.CID |
| b2800 | 52 20 6e 6f 74 61 74 69 6f 6e 2c 20 73 70 65 63 69 66 69 63 20 49 50 20 61 64 64 72 65 73 73 65 | R.notation,.specific.IP.addresse |
| b2820 | 73 20 63 61 6e 20 62 65 20 61 64 64 65 64 20 61 73 20 61 20 33 32 2d 62 69 74 20 70 72 65 66 69 | s.can.be.added.as.a.32-bit.prefi |
| b2840 | 78 2e 20 49 66 20 79 6f 75 20 66 6f 72 65 73 65 65 20 74 68 65 20 6e 65 65 64 20 74 6f 20 61 64 | x..If.you.foresee.the.need.to.ad |
| b2860 | 64 20 61 20 6d 69 78 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 6e 65 74 77 6f 72 6b | d.a.mix.of.addresses.and.network |
| b2880 | 73 2c 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 67 72 6f 75 70 20 69 73 20 72 65 63 6f 6d 6d 65 6e | s,.the.network.group.is.recommen |
| b28a0 | 64 65 64 2e 00 57 68 69 6c 65 20 2a 2a 6e 65 74 77 6f 72 6b 20 67 72 6f 75 70 73 2a 2a 20 61 63 | ded..While.**network.groups**.ac |
| b28c0 | 63 65 70 74 20 49 50 20 6e 65 74 77 6f 72 6b 73 20 69 6e 20 43 49 44 52 20 6e 6f 74 61 74 69 6f | cept.IP.networks.in.CIDR.notatio |
| b28e0 | 6e 2c 20 73 70 65 63 69 66 69 63 20 49 50 20 61 64 64 72 65 73 73 65 73 20 63 61 6e 20 62 65 20 | n,.specific.IP.addresses.can.be. |
| b2900 | 61 64 64 65 64 20 61 73 20 61 20 33 32 2d 62 69 74 20 70 72 65 66 69 78 2e 20 49 66 20 79 6f 75 | added.as.a.32-bit.prefix..If.you |
| b2920 | 20 66 6f 72 65 73 65 65 20 74 68 65 20 6e 65 65 64 20 74 6f 20 61 64 64 20 61 20 6d 69 78 20 6f | .foresee.the.need.to.add.a.mix.o |
| b2940 | 66 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 6e 65 74 77 6f 72 6b 73 2c 20 74 68 65 6e 20 61 | f.addresses.and.networks,.then.a |
| b2960 | 20 6e 65 74 77 6f 72 6b 20 67 72 6f 75 70 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 2e 00 57 | .network.group.is.recommended..W |
| b2980 | 68 69 6c 65 20 6d 61 6e 79 20 61 72 65 20 61 77 61 72 65 20 6f 66 20 4f 70 65 6e 56 50 4e 20 61 | hile.many.are.aware.of.OpenVPN.a |
| b29a0 | 73 20 61 20 43 6c 69 65 6e 74 20 56 50 4e 20 73 6f 6c 75 74 69 6f 6e 2c 20 69 74 20 69 73 20 6f | s.a.Client.VPN.solution,.it.is.o |
| b29c0 | 66 74 65 6e 20 6f 76 65 72 6c 6f 6f 6b 65 64 20 61 73 20 61 20 73 69 74 65 2d 74 6f 2d 73 69 74 | ften.overlooked.as.a.site-to-sit |
| b29e0 | 65 20 56 50 4e 20 73 6f 6c 75 74 69 6f 6e 20 64 75 65 20 74 6f 20 6c 61 63 6b 20 6f 66 20 73 75 | e.VPN.solution.due.to.lack.of.su |
| b2a00 | 70 70 6f 72 74 20 66 6f 72 20 74 68 69 73 20 6d 6f 64 65 20 69 6e 20 6d 61 6e 79 20 72 6f 75 74 | pport.for.this.mode.in.many.rout |
| b2a20 | 65 72 20 70 6c 61 74 66 6f 72 6d 73 2e 00 57 68 69 6c 65 20 6e 6f 72 6d 61 6c 20 47 52 45 20 69 | er.platforms..While.normal.GRE.i |
| b2a40 | 73 20 66 6f 72 20 6c 61 79 65 72 20 33 2c 20 47 52 45 54 41 50 20 69 73 20 66 6f 72 20 6c 61 79 | s.for.layer.3,.GRETAP.is.for.lay |
| b2a60 | 65 72 20 32 2e 20 47 52 45 54 41 50 20 63 61 6e 20 65 6e 63 61 70 73 75 6c 61 74 65 20 45 74 68 | er.2..GRETAP.can.encapsulate.Eth |
| b2a80 | 65 72 6e 65 74 20 66 72 61 6d 65 73 2c 20 74 68 75 73 20 69 74 20 63 61 6e 20 62 65 20 62 72 69 | ernet.frames,.thus.it.can.be.bri |
| b2aa0 | 64 67 65 64 20 77 69 74 68 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 73 20 74 6f 20 63 72 | dged.with.other.interfaces.to.cr |
| b2ac0 | 65 61 74 65 20 64 61 74 61 6c 69 6e 6b 20 6c 61 79 65 72 20 73 65 67 6d 65 6e 74 73 20 74 68 61 | eate.datalink.layer.segments.tha |
| b2ae0 | 74 20 73 70 61 6e 20 6d 75 6c 74 69 70 6c 65 20 72 65 6d 6f 74 65 20 73 69 74 65 73 2e 00 57 68 | t.span.multiple.remote.sites..Wh |
| b2b00 | 69 74 65 6c 69 73 74 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 6e 65 74 77 6f 72 6b | itelist.of.addresses.and.network |
| b2b20 | 73 2e 20 41 6c 77 61 79 73 20 61 6c 6c 6f 77 20 69 6e 62 6f 75 6e 64 20 63 6f 6e 6e 65 63 74 69 | s..Always.allow.inbound.connecti |
| b2b40 | 6f 6e 73 20 66 72 6f 6d 20 74 68 65 73 65 20 73 79 73 74 65 6d 73 2e 00 57 69 46 69 2d 36 28 65 | ons.from.these.systems..WiFi-6(e |
| b2b60 | 29 20 2d 20 38 30 32 2e 31 31 61 78 00 57 69 6c 6c 20 61 64 64 20 60 60 70 65 72 73 69 73 74 2d | ).-.802.11ax.Will.add.``persist- |
| b2b80 | 6b 65 79 60 60 20 74 6f 20 74 68 65 20 67 65 6e 65 72 61 74 65 64 20 4f 70 65 6e 56 50 4e 20 63 | key``.to.the.generated.OpenVPN.c |
| b2ba0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 50 6c 65 61 73 65 20 75 73 65 20 74 68 69 73 20 6f 6e | onfiguration..Please.use.this.on |
| b2bc0 | 6c 79 20 61 73 20 6c 61 73 74 20 72 65 73 6f 72 74 20 2d 20 74 68 69 6e 67 73 20 6d 69 67 68 74 | ly.as.last.resort.-.things.might |
| b2be0 | 20 62 72 65 61 6b 20 61 6e 64 20 4f 70 65 6e 56 50 4e 20 77 6f 6e 27 74 20 73 74 61 72 74 20 69 | .break.and.OpenVPN.won't.start.i |
| b2c00 | 66 20 79 6f 75 20 70 61 73 73 20 69 6e 76 61 6c 69 64 20 6f 70 74 69 6f 6e 73 2f 73 79 6e 74 61 | f.you.pass.invalid.options/synta |
| b2c20 | 78 2e 00 57 69 6c 6c 20 61 64 64 20 60 60 70 65 72 73 69 73 74 65 6e 74 2d 6b 65 79 60 60 20 61 | x..Will.add.``persistent-key``.a |
| b2c40 | 74 20 74 68 65 20 65 6e 64 20 6f 66 20 74 68 65 20 67 65 6e 65 72 61 74 65 64 20 4f 70 65 6e 56 | t.the.end.of.the.generated.OpenV |
| b2c60 | 50 4e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 50 6c 65 61 73 65 20 75 73 65 20 74 68 69 | PN.configuration..Please.use.thi |
| b2c80 | 73 20 6f 6e 6c 79 20 61 73 20 6c 61 73 74 20 72 65 73 6f 72 74 20 2d 20 74 68 69 6e 67 73 20 6d | s.only.as.last.resort.-.things.m |
| b2ca0 | 69 67 68 74 20 62 72 65 61 6b 20 61 6e 64 20 4f 70 65 6e 56 50 4e 20 77 6f 6e 27 74 20 73 74 61 | ight.break.and.OpenVPN.won't.sta |
| b2cc0 | 72 74 20 69 66 20 79 6f 75 20 70 61 73 73 20 69 6e 76 61 6c 69 64 20 6f 70 74 69 6f 6e 73 2f 73 | rt.if.you.pass.invalid.options/s |
| b2ce0 | 79 6e 74 61 78 2e 00 57 69 6c 6c 20 61 64 64 20 60 60 70 75 73 68 20 22 6b 65 65 70 61 6c 69 76 | yntax..Will.add.``push."keepaliv |
| b2d00 | 65 20 31 20 31 30 22 60 60 20 74 6f 20 74 68 65 20 67 65 6e 65 72 61 74 65 64 20 4f 70 65 6e 56 | e.1.10"``.to.the.generated.OpenV |
| b2d20 | 50 4e 20 63 6f 6e 66 69 67 20 66 69 6c 65 2e 00 57 69 6c 6c 20 61 64 64 20 60 60 72 6f 75 74 65 | PN.config.file..Will.add.``route |
| b2d40 | 2d 75 70 20 22 2f 63 6f 6e 66 69 67 2f 61 75 74 68 2f 74 75 6e 5f 75 70 2e 73 68 20 61 72 67 31 | -up."/config/auth/tun_up.sh.arg1 |
| b2d60 | 22 60 60 20 74 6f 20 74 68 65 20 67 65 6e 65 72 61 74 65 64 20 4f 70 65 6e 56 50 4e 20 63 6f 6e | "``.to.the.generated.OpenVPN.con |
| b2d80 | 66 69 67 20 66 69 6c 65 2e 20 54 68 65 20 70 61 74 68 20 61 6e 64 20 61 72 67 75 6d 65 6e 74 73 | fig.file..The.path.and.arguments |
| b2da0 | 20 6e 65 65 64 20 74 6f 20 62 65 20 73 69 6e 67 6c 65 2d 20 6f 72 20 64 6f 75 62 6c 65 2d 71 75 | .need.to.be.single-.or.double-qu |
| b2dc0 | 6f 74 65 64 2e 00 57 69 6c 6c 20 62 65 20 72 65 63 6f 72 64 65 64 20 6f 6e 6c 79 20 70 61 63 6b | oted..Will.be.recorded.only.pack |
| b2de0 | 65 74 73 2f 66 6c 6f 77 73 20 6f 6e 20 2a 2a 69 6e 63 6f 6d 69 6e 67 2a 2a 20 64 69 72 65 63 74 | ets/flows.on.**incoming**.direct |
| b2e00 | 69 6f 6e 20 69 6e 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 74 65 72 66 61 63 65 73 20 62 79 20 | ion.in.configured.interfaces.by. |
| b2e20 | 64 65 66 61 75 6c 74 2e 00 57 69 6c 6c 20 64 72 6f 70 20 60 3c 73 68 61 72 65 64 2d 6e 65 74 77 | default..Will.drop.`<shared-netw |
| b2e40 | 6f 72 6b 2d 6e 61 6d 65 3e 5f 60 20 66 72 6f 6d 20 63 6c 69 65 6e 74 20 44 4e 53 20 72 65 63 6f | ork-name>_`.from.client.DNS.reco |
| b2e60 | 72 64 2c 20 75 73 69 6e 67 20 6f 6e 6c 79 20 74 68 65 20 68 6f 73 74 20 64 65 63 6c 61 72 61 74 | rd,.using.only.the.host.declarat |
| b2e80 | 69 6f 6e 20 6e 61 6d 65 20 61 6e 64 20 64 6f 6d 61 69 6e 3a 20 60 3c 68 6f 73 74 6e 61 6d 65 3e | ion.name.and.domain:.`<hostname> |
| b2ea0 | 2e 3c 64 6f 6d 61 69 6e 2d 6e 61 6d 65 3e 60 00 57 69 6e 64 6f 77 73 20 31 30 20 64 6f 65 73 20 | .<domain-name>`.Windows.10.does. |
| b2ec0 | 6e 6f 74 20 61 6c 6c 6f 77 20 61 20 75 73 65 72 20 74 6f 20 63 68 6f 6f 73 65 20 74 68 65 20 69 | not.allow.a.user.to.choose.the.i |
| b2ee0 | 6e 74 65 67 72 69 74 79 20 61 6e 64 20 65 6e 63 72 79 70 74 69 6f 6e 20 63 69 70 68 65 72 73 20 | ntegrity.and.encryption.ciphers. |
| b2f00 | 75 73 69 6e 67 20 74 68 65 20 47 55 49 20 61 6e 64 20 69 74 20 75 73 65 73 20 73 6f 6d 65 20 6f | using.the.GUI.and.it.uses.some.o |
| b2f20 | 6c 64 65 72 20 70 72 6f 70 6f 73 61 6c 73 20 62 79 20 64 65 66 61 75 6c 74 2e 20 41 20 75 73 65 | lder.proposals.by.default..A.use |
| b2f40 | 72 20 63 61 6e 20 6f 6e 6c 79 20 63 68 61 6e 67 65 20 74 68 65 20 70 72 6f 70 6f 73 61 6c 73 20 | r.can.only.change.the.proposals. |
| b2f60 | 6f 6e 20 74 68 65 20 63 6c 69 65 6e 74 20 73 69 64 65 20 62 79 20 63 6f 6e 66 69 67 75 72 69 6e | on.the.client.side.by.configurin |
| b2f80 | 67 20 74 68 65 20 49 50 53 65 63 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 70 72 6f 66 69 6c 65 20 76 | g.the.IPSec.connection.profile.v |
| b2fa0 | 69 61 20 50 6f 77 65 72 53 68 65 6c 6c 2e 00 57 69 6e 64 6f 77 73 20 49 6e 74 65 72 6e 65 74 20 | ia.PowerShell..Windows.Internet. |
| b2fc0 | 4e 61 6d 65 20 53 65 72 76 69 63 65 20 28 57 49 4e 53 29 20 73 65 72 76 65 72 73 20 70 72 6f 70 | Name.Service.(WINS).servers.prop |
| b2fe0 | 61 67 61 74 65 64 20 74 6f 20 63 6c 69 65 6e 74 00 57 69 6e 64 6f 77 73 20 65 78 70 65 63 74 73 | agated.to.client.Windows.expects |
| b3000 | 20 74 68 65 20 73 65 72 76 65 72 20 6e 61 6d 65 20 74 6f 20 62 65 20 61 6c 73 6f 20 75 73 65 64 | .the.server.name.to.be.also.used |
| b3020 | 20 69 6e 20 74 68 65 20 73 65 72 76 65 72 27 73 20 63 65 72 74 69 66 69 63 61 74 65 20 63 6f 6d | .in.the.server's.certificate.com |
| b3040 | 6d 6f 6e 20 6e 61 6d 65 2c 20 73 6f 20 69 74 27 73 20 62 65 73 74 20 74 6f 20 75 73 65 20 74 68 | mon.name,.so.it's.best.to.use.th |
| b3060 | 69 73 20 44 4e 53 20 6e 61 6d 65 20 66 6f 72 20 79 6f 75 72 20 56 50 4e 20 63 6f 6e 6e 65 63 74 | is.DNS.name.for.your.VPN.connect |
| b3080 | 69 6f 6e 2e 00 57 69 72 65 47 75 61 72 64 00 57 69 72 65 47 75 61 72 64 20 43 6c 69 65 6e 74 20 | ion..WireGuard.WireGuard.Client. |
| b30a0 | 51 52 20 63 6f 64 65 00 57 69 72 65 47 75 61 72 64 20 69 6e 74 65 72 66 61 63 65 20 69 74 73 65 | QR.code.WireGuard.interface.itse |
| b30c0 | 6c 66 20 75 73 65 73 20 61 64 64 72 65 73 73 20 31 30 2e 31 2e 30 2e 31 2f 33 30 00 57 69 72 65 | lf.uses.address.10.1.0.1/30.Wire |
| b30e0 | 47 75 61 72 64 20 69 73 20 61 6e 20 65 78 74 72 65 6d 65 6c 79 20 73 69 6d 70 6c 65 20 79 65 74 | Guard.is.an.extremely.simple.yet |
| b3100 | 20 66 61 73 74 20 61 6e 64 20 6d 6f 64 65 72 6e 20 56 50 4e 20 74 68 61 74 20 75 74 69 6c 69 7a | .fast.and.modern.VPN.that.utiliz |
| b3120 | 65 73 20 73 74 61 74 65 2d 6f 66 2d 74 68 65 2d 61 72 74 20 63 72 79 70 74 6f 67 72 61 70 68 79 | es.state-of-the-art.cryptography |
| b3140 | 2e 20 53 65 65 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 77 69 72 65 67 75 61 72 64 2e 63 6f 6d 20 | ..See.https://www.wireguard.com. |
| b3160 | 66 6f 72 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 57 69 72 65 47 75 61 72 64 20 | for.more.information..WireGuard. |
| b3180 | 72 65 71 75 69 72 65 73 20 74 68 65 20 67 65 6e 65 72 61 74 69 6f 6e 20 6f 66 20 61 20 6b 65 79 | requires.the.generation.of.a.key |
| b31a0 | 70 61 69 72 2c 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 73 20 61 20 70 72 69 76 61 74 65 20 6b | pair,.which.includes.a.private.k |
| b31c0 | 65 79 20 74 6f 20 64 65 63 72 79 70 74 20 69 6e 63 6f 6d 69 6e 67 20 74 72 61 66 66 69 63 2c 20 | ey.to.decrypt.incoming.traffic,. |
| b31e0 | 61 6e 64 20 61 20 70 75 62 6c 69 63 20 6b 65 79 20 66 6f 72 20 70 65 65 72 28 73 29 20 74 6f 20 | and.a.public.key.for.peer(s).to. |
| b3200 | 65 6e 63 72 79 70 74 20 74 72 61 66 66 69 63 2e 00 57 69 72 65 6c 65 73 73 20 63 68 61 6e 6e 65 | encrypt.traffic..Wireless.channe |
| b3220 | 6c 20 60 60 31 31 60 60 20 66 6f 72 20 32 2e 34 47 48 7a 00 57 69 72 65 6c 65 73 73 20 63 68 61 | l.``11``.for.2.4GHz.Wireless.cha |
| b3240 | 6e 6e 65 6c 20 60 60 31 60 60 00 57 69 72 65 6c 65 73 73 20 63 68 61 6e 6e 65 6c 20 60 60 35 60 | nnel.``1``.Wireless.channel.``5` |
| b3260 | 60 20 66 6f 72 20 36 47 48 7a 00 57 69 72 65 6c 65 73 73 20 64 65 76 69 63 65 20 74 79 70 65 20 | `.for.6GHz.Wireless.device.type. |
| b3280 | 66 6f 72 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 00 57 69 72 65 6c 65 73 73 20 68 61 72 64 | for.this.interface.Wireless.hard |
| b32a0 | 77 61 72 65 20 64 65 76 69 63 65 20 75 73 65 64 20 61 73 20 75 6e 64 65 72 6c 61 79 20 72 61 64 | ware.device.used.as.underlay.rad |
| b32c0 | 69 6f 2e 00 57 69 72 65 6c 65 73 73 20 6f 70 74 69 6f 6e 73 00 57 69 72 65 6c 65 73 73 20 6f 70 | io..Wireless.options.Wireless.op |
| b32e0 | 74 69 6f 6e 73 20 28 53 74 61 74 69 6f 6e 2f 43 6c 69 65 6e 74 29 00 57 69 72 65 6c 65 73 73 4d | tions.(Station/Client).WirelessM |
| b3300 | 6f 64 65 6d 20 28 57 57 41 4e 29 20 6f 70 74 69 6f 6e 73 00 57 69 74 68 20 56 79 4f 53 20 62 65 | odem.(WWAN).options.With.VyOS.be |
| b3320 | 69 6e 67 20 62 61 73 65 64 20 6f 6e 20 74 6f 70 20 6f 66 20 4c 69 6e 75 78 20 61 6e 64 20 69 74 | ing.based.on.top.of.Linux.and.it |
| b3340 | 73 20 6b 65 72 6e 65 6c 2c 20 74 68 65 20 4e 65 74 66 69 6c 74 65 72 20 70 72 6f 6a 65 63 74 20 | s.kernel,.the.Netfilter.project. |
| b3360 | 63 72 65 61 74 65 64 20 74 68 65 20 69 70 74 61 62 6c 65 73 20 61 6e 64 20 6e 6f 77 20 74 68 65 | created.the.iptables.and.now.the |
| b3380 | 20 73 75 63 63 65 73 73 6f 72 20 6e 66 74 61 62 6c 65 73 20 66 6f 72 20 74 68 65 20 4c 69 6e 75 | .successor.nftables.for.the.Linu |
| b33a0 | 78 20 6b 65 72 6e 65 6c 20 74 6f 20 77 6f 72 6b 20 64 69 72 65 63 74 6c 79 20 6f 6e 20 74 68 65 | x.kernel.to.work.directly.on.the |
| b33c0 | 20 64 61 74 61 20 66 6c 6f 77 73 2e 20 54 68 69 73 20 6e 6f 77 20 65 78 74 65 6e 64 73 20 74 68 | .data.flows..This.now.extends.th |
| b33e0 | 65 20 63 6f 6e 63 65 70 74 20 6f 66 20 7a 6f 6e 65 2d 62 61 73 65 64 20 73 65 63 75 72 69 74 79 | e.concept.of.zone-based.security |
| b3400 | 20 74 6f 20 61 6c 6c 6f 77 20 66 6f 72 20 6d 61 6e 69 70 75 6c 61 74 69 6e 67 20 74 68 65 20 64 | .to.allow.for.manipulating.the.d |
| b3420 | 61 74 61 20 61 74 20 6d 75 6c 74 69 70 6c 65 20 73 74 61 67 65 73 20 6f 6e 63 65 20 61 63 63 65 | ata.at.multiple.stages.once.acce |
| b3440 | 70 74 65 64 20 62 79 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 20 61 6e | pted.by.the.network.interface.an |
| b3460 | 64 20 74 68 65 20 64 72 69 76 65 72 20 62 65 66 6f 72 65 20 62 65 69 6e 67 20 68 61 6e 64 65 64 | d.the.driver.before.being.handed |
| b3480 | 20 6f 66 66 20 74 6f 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 28 65 2e 67 2e 20 61 20 | .off.to.the.destination.(e.g..a. |
| b34a0 | 77 65 62 20 73 65 72 76 65 72 20 4f 52 20 61 6e 6f 74 68 65 72 20 64 65 76 69 63 65 29 2e 00 57 | web.server.OR.another.device)..W |
| b34c0 | 69 74 68 20 57 69 72 65 47 75 61 72 64 2c 20 61 20 52 6f 61 64 20 57 61 72 72 69 6f 72 20 56 50 | ith.WireGuard,.a.Road.Warrior.VP |
| b34e0 | 4e 20 63 6f 6e 66 69 67 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 61 20 73 69 74 65 2d 74 6f | N.config.is.similar.to.a.site-to |
| b3500 | 2d 73 69 74 65 20 56 50 4e 2e 20 49 74 20 6a 75 73 74 20 6c 61 63 6b 73 20 74 68 65 20 60 60 61 | -site.VPN..It.just.lacks.the.``a |
| b3520 | 64 64 72 65 73 73 60 60 20 61 6e 64 20 60 60 70 6f 72 74 60 60 20 73 74 61 74 65 6d 65 6e 74 73 | ddress``.and.``port``.statements |
| b3540 | 2e 00 57 69 74 68 20 74 68 65 20 60 60 6e 61 6d 65 2d 73 65 72 76 65 72 60 60 20 6f 70 74 69 6f | ..With.the.``name-server``.optio |
| b3560 | 6e 20 73 65 74 20 74 6f 20 60 60 6e 6f 6e 65 60 60 2c 20 56 79 4f 53 20 77 69 6c 6c 20 69 67 6e | n.set.to.``none``,.VyOS.will.ign |
| b3580 | 6f 72 65 20 74 68 65 20 6e 61 6d 65 73 65 72 76 65 72 73 20 79 6f 75 72 20 49 53 50 20 73 65 6e | ore.the.nameservers.your.ISP.sen |
| b35a0 | 64 73 20 79 6f 75 20 61 6e 64 20 74 68 75 73 20 79 6f 75 20 63 61 6e 20 66 75 6c 6c 79 20 72 65 | ds.you.and.thus.you.can.fully.re |
| b35c0 | 6c 79 20 6f 6e 20 74 68 65 20 6f 6e 65 73 20 79 6f 75 20 68 61 76 65 20 63 6f 6e 66 69 67 75 72 | ly.on.the.ones.you.have.configur |
| b35e0 | 65 64 20 73 74 61 74 69 63 61 6c 6c 79 2e 00 57 69 74 68 20 74 68 65 20 66 69 72 65 77 61 6c 6c | ed.statically..With.the.firewall |
| b3600 | 20 79 6f 75 20 63 61 6e 20 73 65 74 20 72 75 6c 65 73 20 74 6f 20 61 63 63 65 70 74 2c 20 64 72 | .you.can.set.rules.to.accept,.dr |
| b3620 | 6f 70 20 6f 72 20 72 65 6a 65 63 74 20 49 43 4d 50 20 69 6e 2c 20 6f 75 74 20 6f 72 20 6c 6f 63 | op.or.reject.ICMP.in,.out.or.loc |
| b3640 | 61 6c 20 74 72 61 66 66 69 63 2e 20 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 75 73 65 20 74 68 65 | al.traffic..You.can.also.use.the |
| b3660 | 20 67 65 6e 65 72 61 6c 20 2a 2a 66 69 72 65 77 61 6c 6c 20 61 6c 6c 2d 70 69 6e 67 2a 2a 20 63 | .general.**firewall.all-ping**.c |
| b3680 | 6f 6d 6d 61 6e 64 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 66 66 65 63 74 73 20 6f 6e 6c | ommand..This.command.affects.onl |
| b36a0 | 79 20 74 6f 20 4c 4f 43 41 4c 20 28 70 61 63 6b 65 74 73 20 64 65 73 74 69 6e 65 64 20 66 6f 72 | y.to.LOCAL.(packets.destined.for |
| b36c0 | 20 79 6f 75 72 20 56 79 4f 53 20 73 79 73 74 65 6d 29 2c 20 6e 6f 74 20 74 6f 20 49 4e 20 6f 72 | .your.VyOS.system),.not.to.IN.or |
| b36e0 | 20 4f 55 54 20 74 72 61 66 66 69 63 2e 00 57 69 74 68 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 2c | .OUT.traffic..With.this.command, |
| b3700 | 20 79 6f 75 20 63 61 6e 20 73 70 65 63 69 66 79 20 68 6f 77 20 74 68 65 20 55 52 4c 20 70 61 74 | .you.can.specify.how.the.URL.pat |
| b3720 | 68 20 73 68 6f 75 6c 64 20 62 65 20 6d 61 74 63 68 65 64 20 61 67 61 69 6e 73 74 20 69 6e 63 6f | h.should.be.matched.against.inco |
| b3740 | 6d 69 6e 67 20 72 65 71 75 65 73 74 73 2e 00 57 69 74 68 20 74 68 69 73 20 63 6f 6e 66 69 67 75 | ming.requests..With.this.configu |
| b3760 | 72 61 74 69 6f 6e 2c 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 67 65 74 20 73 73 68 20 61 63 63 65 | ration,.in.order.to.get.ssh.acce |
| b3780 | 73 73 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 2c 20 74 68 65 20 75 73 65 72 20 6e 65 65 64 73 | ss.to.the.router,.the.user.needs |
| b37a0 | 20 74 6f 3a 00 57 69 74 68 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 69 6e | .to:.With.this.configuration,.in |
| b37c0 | 20 6f 72 64 65 72 20 74 6f 20 67 65 74 20 73 73 68 20 61 63 63 65 73 73 20 74 6f 20 74 68 65 20 | .order.to.get.ssh.access.to.the. |
| b37e0 | 72 6f 75 74 65 72 2c 20 75 73 65 72 20 6e 65 65 64 73 20 74 6f 3a 00 57 69 74 68 20 7a 6f 6e 65 | router,.user.needs.to:.With.zone |
| b3800 | 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 73 20 61 20 6e 65 77 20 63 6f 6e 63 65 70 74 20 77 | -based.firewalls.a.new.concept.w |
| b3820 | 61 73 20 69 6d 70 6c 65 6d 65 6e 74 65 64 2c 20 69 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 74 | as.implemented,.in.addition.to.t |
| b3840 | 68 65 20 73 74 61 6e 64 61 72 64 20 69 6e 20 61 6e 64 20 6f 75 74 20 74 72 61 66 66 69 63 20 66 | he.standard.in.and.out.traffic.f |
| b3860 | 6c 6f 77 73 2c 20 61 20 6c 6f 63 61 6c 20 66 6c 6f 77 20 77 61 73 20 61 64 64 65 64 2e 20 54 68 | lows,.a.local.flow.was.added..Th |
| b3880 | 69 73 20 6c 6f 63 61 6c 20 66 6c 6f 77 20 77 61 73 20 66 6f 72 20 74 72 61 66 66 69 63 20 6f 72 | is.local.flow.was.for.traffic.or |
| b38a0 | 69 67 69 6e 61 74 69 6e 67 20 61 6e 64 20 64 65 73 74 69 6e 65 64 20 74 6f 20 74 68 65 20 72 6f | iginating.and.destined.to.the.ro |
| b38c0 | 75 74 65 72 20 69 74 73 65 6c 66 2e 20 57 68 69 63 68 20 6d 65 61 6e 73 20 74 68 61 74 20 61 64 | uter.itself..Which.means.that.ad |
| b38e0 | 64 69 74 69 6f 6e 61 6c 20 72 75 6c 65 73 20 77 65 72 65 20 72 65 71 75 69 72 65 64 20 74 6f 20 | ditional.rules.were.required.to. |
| b3900 | 73 65 63 75 72 65 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 69 74 73 65 6c 66 20 66 72 6f 6d 20 | secure.the.firewall.itself.from. |
| b3920 | 74 68 65 20 6e 65 74 77 6f 72 6b 2c 20 69 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 | the.network,.in.addition.to.the. |
| b3940 | 65 78 69 73 74 69 6e 67 20 69 6e 62 6f 75 6e 64 20 61 6e 64 20 6f 75 74 62 6f 75 6e 64 20 72 75 | existing.inbound.and.outbound.ru |
| b3960 | 6c 65 73 20 66 72 6f 6d 20 74 68 65 20 74 72 61 64 69 74 69 6f 6e 61 6c 20 63 6f 6e 63 65 70 74 | les.from.the.traditional.concept |
| b3980 | 20 61 62 6f 76 65 2e 00 57 69 74 68 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c | .above..With.zone-based.firewall |
| b39a0 | 73 20 61 20 6e 65 77 20 63 6f 6e 63 65 70 74 20 77 61 73 20 69 6d 70 6c 65 6d 65 6e 74 65 64 2c | s.a.new.concept.was.implemented, |
| b39c0 | 20 69 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 73 74 61 6e 64 61 72 64 20 69 6e 20 | .in.addition.to.the.standard.in. |
| b39e0 | 61 6e 64 20 6f 75 74 20 74 72 61 66 66 69 63 20 66 6c 6f 77 73 2c 20 61 20 6c 6f 63 61 6c 20 66 | and.out.traffic.flows,.a.local.f |
| b3a00 | 6c 6f 77 20 77 61 73 20 61 64 64 65 64 2e 20 54 68 69 73 20 6c 6f 63 61 6c 20 77 61 73 20 66 6f | low.was.added..This.local.was.fo |
| b3a20 | 72 20 74 72 61 66 66 69 63 20 6f 72 69 67 69 6e 61 74 69 6e 67 20 61 6e 64 20 64 65 73 74 69 6e | r.traffic.originating.and.destin |
| b3a40 | 65 64 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2e 20 57 68 69 63 68 20 6d | ed.to.the.router.itself..Which.m |
| b3a60 | 65 61 6e 73 20 61 64 64 69 74 69 6f 6e 61 6c 20 72 75 6c 65 73 20 77 65 72 65 20 72 65 71 75 69 | eans.additional.rules.were.requi |
| b3a80 | 72 65 64 20 74 6f 20 73 65 63 75 72 65 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 69 74 73 65 6c | red.to.secure.the.firewall.itsel |
| b3aa0 | 66 20 66 72 6f 6d 20 74 68 65 20 6e 65 74 77 6f 72 6b 2c 20 69 6e 20 61 64 64 69 74 69 6f 6e 20 | f.from.the.network,.in.addition. |
| b3ac0 | 74 6f 20 74 68 65 20 65 78 69 73 74 69 6e 67 20 69 6e 62 6f 75 6e 64 20 61 6e 64 20 6f 75 74 62 | to.the.existing.inbound.and.outb |
| b3ae0 | 6f 75 6e 64 20 72 75 6c 65 73 20 66 72 6f 6d 20 74 68 65 20 74 72 61 64 69 74 69 6f 6e 61 6c 20 | ound.rules.from.the.traditional. |
| b3b00 | 63 6f 6e 63 65 70 74 20 61 62 6f 76 65 2e 00 57 69 74 68 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 | concept.above..With.zone-based.f |
| b3b20 | 69 72 65 77 61 6c 6c 73 20 61 20 6e 65 77 20 63 6f 6e 63 65 70 74 20 77 61 73 20 69 6d 70 6c 65 | irewalls.a.new.concept.was.imple |
| b3b40 | 6d 65 6e 74 65 64 2c 20 69 6e 20 61 64 64 74 69 6f 6e 20 74 6f 20 74 68 65 20 73 74 61 6e 64 61 | mented,.in.addtion.to.the.standa |
| b3b60 | 72 64 20 69 6e 20 61 6e 64 20 6f 75 74 20 74 72 61 66 66 69 63 20 66 6c 6f 77 73 2c 20 61 20 6c | rd.in.and.out.traffic.flows,.a.l |
| b3b80 | 6f 63 61 6c 20 66 6c 6f 77 20 77 61 73 20 61 64 64 65 64 2e 20 54 68 69 73 20 6c 6f 63 61 6c 20 | ocal.flow.was.added..This.local. |
| b3ba0 | 77 61 73 20 66 6f 72 20 74 72 61 66 66 69 63 20 6f 72 69 67 69 6e 61 74 69 6e 67 20 61 6e 64 20 | was.for.traffic.originating.and. |
| b3bc0 | 64 65 73 74 69 6e 65 64 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2e 20 57 | destined.to.the.router.itself..W |
| b3be0 | 68 69 63 68 20 6d 65 61 6e 73 20 61 64 64 69 74 69 6f 6e 61 6c 20 72 75 6c 65 73 20 77 65 72 65 | hich.means.additional.rules.were |
| b3c00 | 20 72 65 71 75 69 72 65 64 20 74 6f 20 73 65 63 75 72 65 20 74 68 65 20 66 69 72 65 77 61 6c 6c | .required.to.secure.the.firewall |
| b3c20 | 20 69 74 73 65 6c 66 20 66 72 6f 6d 20 74 68 65 20 6e 65 74 77 6f 72 6b 2c 20 69 6e 20 61 64 64 | .itself.from.the.network,.in.add |
| b3c40 | 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 65 78 69 73 74 69 6e 67 20 69 6e 62 6f 75 6e 64 20 61 6e | ition.to.the.existing.inbound.an |
| b3c60 | 64 20 6f 75 74 62 6f 75 6e 64 20 72 75 6c 65 73 20 66 72 6f 6d 20 74 68 65 20 74 72 61 64 69 74 | d.outbound.rules.from.the.tradit |
| b3c80 | 69 6f 6e 61 6c 20 63 6f 6e 63 65 70 74 20 61 62 6f 76 65 2e 00 59 00 59 6f 75 20 61 70 70 6c 79 | ional.concept.above..Y.You.apply |
| b3ca0 | 20 61 20 72 75 6c 65 2d 73 65 74 20 61 6c 77 61 79 73 20 74 6f 20 61 20 7a 6f 6e 65 20 66 72 6f | .a.rule-set.always.to.a.zone.fro |
| b3cc0 | 6d 20 61 6e 20 6f 74 68 65 72 20 7a 6f 6e 65 2c 20 69 74 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 | m.an.other.zone,.it.is.recommend |
| b3ce0 | 65 64 20 74 6f 20 63 72 65 61 74 65 20 6f 6e 65 20 72 75 6c 65 2d 73 65 74 20 66 6f 72 20 65 61 | ed.to.create.one.rule-set.for.ea |
| b3d00 | 63 68 20 7a 6f 6e 65 20 70 61 69 72 2e 00 59 6f 75 20 61 72 65 20 61 62 6c 65 20 74 6f 20 73 65 | ch.zone.pair..You.are.able.to.se |
| b3d20 | 74 20 70 6f 73 74 2d 6c 6f 67 69 6e 20 6f 72 20 70 72 65 2d 6c 6f 67 69 6e 20 62 61 6e 6e 65 72 | t.post-login.or.pre-login.banner |
| b3d40 | 20 6d 65 73 73 61 67 65 73 20 74 6f 20 64 69 73 70 6c 61 79 20 63 65 72 74 61 69 6e 20 69 6e 66 | .messages.to.display.certain.inf |
| b3d60 | 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 74 68 69 73 20 73 79 73 74 65 6d 2e 00 59 6f 75 20 61 72 | ormation.for.this.system..You.ar |
| b3d80 | 65 20 62 65 20 61 62 6c 65 20 74 6f 20 64 6f 77 6e 6c 6f 61 64 20 74 68 65 20 66 69 6c 65 73 20 | e.be.able.to.download.the.files. |
| b3da0 | 75 73 69 6e 67 20 53 43 50 2c 20 6f 6e 63 65 20 74 68 65 20 53 53 48 20 73 65 72 76 69 63 65 20 | using.SCP,.once.the.SSH.service. |
| b3dc0 | 68 61 73 20 62 65 65 6e 20 61 63 74 69 76 61 74 65 64 20 6c 69 6b 65 20 73 6f 00 59 6f 75 20 63 | has.been.activated.like.so.You.c |
| b3de0 | 61 6e 20 61 6c 73 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 74 69 6d 65 20 69 6e 74 65 72 | an.also.configure.the.time.inter |
| b3e00 | 76 61 6c 20 66 6f 72 20 70 72 65 65 6d 70 74 69 6f 6e 20 77 69 74 68 20 74 68 65 20 22 70 72 65 | val.for.preemption.with.the."pre |
| b3e20 | 65 6d 70 74 2d 64 65 6c 61 79 22 20 6f 70 74 69 6f 6e 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c | empt-delay".option..For.example, |
| b3e40 | 20 74 6f 20 73 65 74 20 74 68 65 20 68 69 67 68 65 72 20 70 72 69 6f 72 69 74 79 20 72 6f 75 74 | .to.set.the.higher.priority.rout |
| b3e60 | 65 72 20 74 6f 20 74 61 6b 65 20 6f 76 65 72 20 69 6e 20 31 38 30 20 73 65 63 6f 6e 64 73 2c 20 | er.to.take.over.in.180.seconds,. |
| b3e80 | 75 73 65 3a 00 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 64 65 66 69 6e 65 20 63 75 73 74 6f 6d 20 | use:.You.can.also.define.custom. |
| b3ea0 | 74 69 6d 65 6f 75 74 20 76 61 6c 75 65 73 20 74 6f 20 61 70 70 6c 79 20 74 6f 20 61 20 73 70 65 | timeout.values.to.apply.to.a.spe |
| b3ec0 | 63 69 66 69 63 20 73 75 62 73 65 74 20 6f 66 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2c 20 62 61 73 | cific.subset.of.connections,.bas |
| b3ee0 | 65 64 20 6f 6e 20 61 20 70 61 63 6b 65 74 20 61 6e 64 20 66 6c 6f 77 20 73 65 6c 65 63 74 6f 72 | ed.on.a.packet.and.flow.selector |
| b3f00 | 2e 20 54 6f 20 64 6f 20 74 68 69 73 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 | ..To.do.this,.you.need.to.create |
| b3f20 | 20 61 20 72 75 6c 65 20 64 65 66 69 6e 69 6e 67 20 74 68 65 20 70 61 63 6b 65 74 20 61 6e 64 20 | .a.rule.defining.the.packet.and. |
| b3f40 | 66 6c 6f 77 20 73 65 6c 65 63 74 6f 72 2e 00 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 6b 65 65 70 | flow.selector..You.can.also.keep |
| b3f60 | 20 64 69 66 66 65 72 65 6e 74 20 44 4e 53 20 7a 6f 6e 65 20 75 70 64 61 74 65 64 2e 20 4a 75 73 | .different.DNS.zone.updated..Jus |
| b3f80 | 74 20 63 72 65 61 74 65 20 61 20 6e 65 77 20 63 6f 6e 66 69 67 20 6e 6f 64 65 3a 20 60 60 73 65 | t.create.a.new.config.node:.``se |
| b3fa0 | 74 20 73 65 72 76 69 63 65 20 64 6e 73 20 64 79 6e 61 6d 69 63 20 69 6e 74 65 72 66 61 63 65 20 | t.service.dns.dynamic.interface. |
| b3fc0 | 3c 69 6e 74 65 72 66 61 63 65 3e 20 72 66 63 32 31 33 36 20 3c 6f 74 68 65 72 2d 73 65 72 76 69 | <interface>.rfc2136.<other-servi |
| b3fe0 | 63 65 2d 6e 61 6d 65 3e 60 60 00 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 6f 70 74 20 66 6f 72 20 | ce-name>``.You.can.also.opt.for. |
| b4000 | 75 73 69 6e 67 20 60 3a 3a 2f 36 34 60 20 61 73 20 70 72 65 66 69 78 20 66 6f 72 20 79 6f 75 72 | using.`::/64`.as.prefix.for.your |
| b4020 | 20 3a 61 62 62 72 3a 60 52 41 73 20 28 52 6f 75 74 65 72 20 41 64 76 65 72 74 69 73 65 6d 65 6e | .:abbr:`RAs.(Router.Advertisemen |
| b4040 | 74 73 29 60 2e 20 54 68 69 73 20 77 69 6c 6c 20 74 61 6b 65 20 74 68 65 20 49 50 76 36 20 47 55 | ts)`..This.will.take.the.IPv6.GU |
| b4060 | 41 20 70 72 65 66 69 78 20 61 73 73 69 67 6e 65 64 20 74 6f 20 74 68 65 20 69 6e 74 65 72 66 61 | A.prefix.assigned.to.the.interfa |
| b4080 | 63 65 2c 20 77 68 69 63 68 20 63 6f 6d 65 73 20 69 6e 20 68 61 6e 64 79 20 77 68 65 6e 20 75 73 | ce,.which.comes.in.handy.when.us |
| b40a0 | 69 6e 67 20 44 48 43 50 76 36 2d 50 44 2e 00 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 73 70 65 63 | ing.DHCPv6-PD..You.can.also.spec |
| b40c0 | 69 66 79 20 77 68 69 63 68 20 49 50 76 36 20 61 63 63 65 73 73 2d 6c 69 73 74 20 73 68 6f 75 6c | ify.which.IPv6.access-list.shoul |
| b40e0 | 64 20 62 65 20 73 68 6f 77 6e 3a 00 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 74 75 6e 65 20 6d 75 | d.be.shown:.You.can.also.tune.mu |
| b4100 | 6c 74 69 63 61 73 74 20 77 69 74 68 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 | lticast.with.the.following.comma |
| b4120 | 6e 64 73 2e 00 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 75 73 65 20 61 6e 6f 74 68 65 72 20 61 74 | nds..You.can.also.use.another.at |
| b4140 | 74 72 69 62 75 74 65 73 20 66 6f 72 20 69 64 65 6e 74 69 66 79 20 63 6c 69 65 6e 74 20 66 6f 72 | tributes.for.identify.client.for |
| b4160 | 20 64 69 73 63 6f 6e 6e 65 63 74 2c 20 6c 69 6b 65 20 46 72 61 6d 65 64 2d 49 50 2d 41 64 64 72 | .disconnect,.like.Framed-IP-Addr |
| b4180 | 65 73 73 2c 20 41 63 63 74 2d 53 65 73 73 69 6f 6e 2d 49 64 2c 20 65 74 63 2e 20 52 65 73 75 6c | ess,.Acct-Session-Id,.etc..Resul |
| b41a0 | 74 20 63 6f 6d 6d 61 6e 64 73 20 61 70 70 65 61 72 73 20 69 6e 20 6c 6f 67 2e 00 59 6f 75 20 63 | t.commands.appears.in.log..You.c |
| b41c0 | 61 6e 20 61 6c 73 6f 20 77 72 69 74 65 20 61 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 | an.also.write.a.description.for. |
| b41e0 | 61 20 66 69 6c 74 65 72 3a 00 59 6f 75 20 63 61 6e 20 61 73 73 69 67 6e 20 6d 75 6c 74 69 70 6c | a.filter:.You.can.assign.multipl |
| b4200 | 65 20 6b 65 79 73 20 74 6f 20 74 68 65 20 73 61 6d 65 20 75 73 65 72 20 62 79 20 75 73 69 6e 67 | e.keys.to.the.same.user.by.using |
| b4220 | 20 61 20 75 6e 69 71 75 65 20 69 64 65 6e 74 69 66 69 65 72 20 70 65 72 20 53 53 48 20 6b 65 79 | .a.unique.identifier.per.SSH.key |
| b4240 | 2e 00 59 6f 75 20 63 61 6e 20 61 76 6f 69 64 20 74 68 65 20 22 6c 65 61 6b 79 22 20 62 65 68 61 | ..You.can.avoid.the."leaky".beha |
| b4260 | 76 69 6f 72 20 62 79 20 75 73 69 6e 67 20 61 20 66 69 72 65 77 61 6c 6c 20 70 6f 6c 69 63 79 20 | vior.by.using.a.firewall.policy. |
| b4280 | 74 68 61 74 20 64 72 6f 70 73 20 22 69 6e 76 61 6c 69 64 22 20 73 74 61 74 65 20 70 61 63 6b 65 | that.drops."invalid".state.packe |
| b42a0 | 74 73 2e 00 59 6f 75 20 63 61 6e 20 63 68 65 63 6b 20 79 6f 75 72 20 4e 49 43 20 64 72 69 76 65 | ts..You.can.check.your.NIC.drive |
| b42c0 | 72 20 62 79 20 69 73 73 75 69 6e 67 20 3a 6f 70 63 6d 64 3a 60 73 68 6f 77 20 69 6e 74 65 72 66 | r.by.issuing.:opcmd:`show.interf |
| b42e0 | 61 63 65 73 20 65 74 68 65 72 6e 65 74 20 65 74 68 30 20 70 68 79 73 69 63 61 6c 20 7c 20 67 72 | aces.ethernet.eth0.physical.|.gr |
| b4300 | 65 70 20 2d 69 20 64 72 69 76 65 72 60 00 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 | ep.-i.driver`.You.can.configure. |
| b4320 | 61 20 70 6f 6c 69 63 79 20 69 6e 74 6f 20 61 20 63 6c 61 73 73 20 74 68 72 6f 75 67 68 20 74 68 | a.policy.into.a.class.through.th |
| b4340 | 65 20 60 60 71 75 65 75 65 2d 74 79 70 65 60 60 20 73 65 74 74 69 6e 67 2e 00 59 6f 75 20 63 61 | e.``queue-type``.setting..You.ca |
| b4360 | 6e 20 63 6f 6e 66 69 67 75 72 65 20 63 6c 61 73 73 65 73 20 28 75 70 20 74 6f 20 34 30 39 30 29 | n.configure.classes.(up.to.4090) |
| b4380 | 20 77 69 74 68 20 64 69 66 66 65 72 65 6e 74 20 73 65 74 74 69 6e 67 73 20 61 6e 64 20 61 20 64 | .with.different.settings.and.a.d |
| b43a0 | 65 66 61 75 6c 74 20 70 6f 6c 69 63 79 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 61 70 70 6c | efault.policy.which.will.be.appl |
| b43c0 | 69 65 64 20 74 6f 20 61 6e 79 20 74 72 61 66 66 69 63 20 6e 6f 74 20 6d 61 74 63 68 69 6e 67 20 | ied.to.any.traffic.not.matching. |
| b43e0 | 61 6e 79 20 6f 66 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 63 6c 61 73 73 65 73 2e 00 59 | any.of.the.configured.classes..Y |
| b4400 | 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 6d 75 6c 74 69 70 6c 65 20 69 6e 74 65 72 66 | ou.can.configure.multiple.interf |
| b4420 | 61 63 65 73 20 77 68 69 63 68 20 77 68 6f 75 6c 64 20 70 61 72 74 69 63 69 70 61 74 65 20 69 6e | aces.which.whould.participate.in |
| b4440 | 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 2e 00 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 | .flow.accounting..You.can.config |
| b4460 | 75 72 65 20 6d 75 6c 74 69 70 6c 65 20 69 6e 74 65 72 66 61 63 65 73 20 77 68 69 63 68 20 77 68 | ure.multiple.interfaces.which.wh |
| b4480 | 6f 75 6c 64 20 70 61 72 74 69 63 69 70 61 74 65 20 69 6e 20 73 66 6c 6f 77 20 61 63 63 6f 75 6e | ould.participate.in.sflow.accoun |
| b44a0 | 74 69 6e 67 2e 00 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 6d 75 6c 74 69 70 6c 65 | ting..You.can.configure.multiple |
| b44c0 | 20 69 6e 74 65 72 66 61 63 65 73 20 77 68 69 63 68 20 77 6f 75 6c 64 20 70 61 72 74 69 63 69 70 | .interfaces.which.would.particip |
| b44e0 | 61 74 65 20 69 6e 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 2e 00 59 6f 75 20 63 61 6e 20 | ate.in.flow.accounting..You.can. |
| b4500 | 63 6f 6e 66 69 67 75 72 65 20 6d 75 6c 74 69 70 6c 65 20 69 6e 74 65 72 66 61 63 65 73 20 77 68 | configure.multiple.interfaces.wh |
| b4520 | 69 63 68 20 77 6f 75 6c 64 20 70 61 72 74 69 63 69 70 61 74 65 20 69 6e 20 73 66 6c 6f 77 20 61 | ich.would.participate.in.sflow.a |
| b4540 | 63 63 6f 75 6e 74 69 6e 67 2e 00 59 6f 75 20 63 61 6e 20 63 72 65 61 74 65 20 6d 75 6c 74 69 70 | ccounting..You.can.create.multip |
| b4560 | 6c 65 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 73 20 6f 6e 20 61 20 70 68 79 73 69 63 61 6c | le.VLAN.interfaces.on.a.physical |
| b4580 | 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 56 4c 41 4e 20 49 44 20 72 61 6e 67 65 20 69 73 | .interface..The.VLAN.ID.range.is |
| b45a0 | 20 66 72 6f 6d 20 30 20 74 6f 20 34 30 39 34 2e 00 59 6f 75 20 63 61 6e 20 64 65 66 69 6e 65 20 | .from.0.to.4094..You.can.define. |
| b45c0 | 63 75 73 74 6f 6d 20 74 69 6d 65 6f 75 74 20 76 61 6c 75 65 73 20 74 6f 20 61 70 70 6c 79 20 74 | custom.timeout.values.to.apply.t |
| b45e0 | 6f 20 61 20 73 70 65 63 69 66 69 63 20 73 75 62 73 65 74 20 6f 66 20 63 6f 6e 6e 65 63 74 69 6f | o.a.specific.subset.of.connectio |
| b4600 | 6e 73 2c 20 62 61 73 65 64 20 6f 6e 20 61 20 70 61 63 6b 65 74 20 61 6e 64 20 66 6c 6f 77 20 73 | ns,.based.on.a.packet.and.flow.s |
| b4620 | 65 6c 65 63 74 6f 72 2e 20 54 6f 20 64 6f 20 74 68 69 73 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f | elector..To.do.this,.you.need.to |
| b4640 | 20 63 72 65 61 74 65 20 61 20 72 75 6c 65 20 64 65 66 69 6e 69 6e 67 20 74 68 65 20 70 61 63 6b | .create.a.rule.defining.the.pack |
| b4660 | 65 74 20 61 6e 64 20 66 6c 6f 77 20 73 65 6c 65 63 74 6f 72 2e 00 59 6f 75 20 63 61 6e 20 64 69 | et.and.flow.selector..You.can.di |
| b4680 | 73 61 62 6c 65 20 61 20 56 52 52 50 20 67 72 6f 75 70 20 77 69 74 68 20 60 60 64 69 73 61 62 6c | sable.a.VRRP.group.with.``disabl |
| b46a0 | 65 60 60 20 6f 70 74 69 6f 6e 3a 00 59 6f 75 20 63 61 6e 20 67 65 74 20 6d 6f 72 65 20 73 70 65 | e``.option:.You.can.get.more.spe |
| b46c0 | 63 69 66 69 63 20 4f 53 50 46 76 33 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 62 79 20 75 73 69 6e | cific.OSPFv3.information.by.usin |
| b46e0 | 67 20 74 68 65 20 70 61 72 61 6d 65 74 65 72 73 20 73 68 6f 77 6e 20 62 65 6c 6f 77 3a 00 59 6f | g.the.parameters.shown.below:.Yo |
| b4700 | 75 20 63 61 6e 20 6e 6f 74 20 61 73 73 69 67 6e 20 74 68 65 20 73 61 6d 65 20 61 6c 6c 6f 77 65 | u.can.not.assign.the.same.allowe |
| b4720 | 64 2d 69 70 73 20 73 74 61 74 65 6d 65 6e 74 20 74 6f 20 6d 75 6c 74 69 70 6c 65 20 57 69 72 65 | d-ips.statement.to.multiple.Wire |
| b4740 | 47 75 61 72 64 20 70 65 65 72 73 2e 20 54 68 69 73 20 61 20 64 65 73 69 67 6e 20 64 65 63 69 73 | Guard.peers..This.a.design.decis |
| b4760 | 69 6f 6e 2e 20 46 6f 72 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 70 6c 65 61 73 65 | ion..For.more.information.please |
| b4780 | 20 63 68 65 63 6b 20 74 68 65 20 60 57 69 72 65 47 75 61 72 64 20 6d 61 69 6c 69 6e 67 20 6c 69 | .check.the.`WireGuard.mailing.li |
| b47a0 | 73 74 60 5f 2e 00 59 6f 75 20 63 61 6e 20 6e 6f 74 20 72 75 6e 20 74 68 69 73 20 69 6e 20 61 20 | st`_..You.can.not.run.this.in.a. |
| b47c0 | 56 52 52 50 20 73 65 74 75 70 2c 20 69 66 20 6d 75 6c 74 69 70 6c 65 20 6d 44 4e 53 20 72 65 70 | VRRP.setup,.if.multiple.mDNS.rep |
| b47e0 | 65 61 74 65 72 73 20 61 72 65 20 6c 61 75 6e 63 68 65 64 20 69 6e 20 61 20 73 75 62 6e 65 74 20 | eaters.are.launched.in.a.subnet. |
| b4800 | 79 6f 75 20 77 69 6c 6c 20 65 78 70 65 72 69 65 6e 63 65 20 74 68 65 20 6d 44 4e 53 20 70 61 63 | you.will.experience.the.mDNS.pac |
| b4820 | 6b 65 74 20 73 74 6f 72 6d 20 64 65 61 74 68 21 00 59 6f 75 20 63 61 6e 20 6e 6f 77 20 22 64 69 | ket.storm.death!.You.can.now."di |
| b4840 | 61 6c 22 20 74 68 65 20 70 65 65 72 20 77 69 74 68 20 74 68 65 20 66 6f 6c 6c 77 6f 69 6e 67 20 | al".the.peer.with.the.follwoing. |
| b4860 | 63 6f 6d 6d 61 6e 64 3a 20 60 60 73 73 74 70 63 20 2d 2d 6c 6f 67 2d 6c 65 76 65 6c 20 34 20 2d | command:.``sstpc.--log-level.4.- |
| b4880 | 2d 6c 6f 67 2d 73 74 64 65 72 72 20 2d 2d 75 73 65 72 20 76 79 6f 73 20 2d 2d 70 61 73 73 77 6f | -log-stderr.--user.vyos.--passwo |
| b48a0 | 72 64 20 76 79 6f 73 20 76 70 6e 2e 65 78 61 6d 70 6c 65 2e 63 6f 6d 20 2d 2d 20 63 61 6c 6c 20 | rd.vyos.vpn.example.com.--.call. |
| b48c0 | 76 79 6f 73 60 60 2e 00 59 6f 75 20 63 61 6e 20 6e 6f 77 20 53 53 48 20 69 6e 74 6f 20 79 6f 75 | vyos``..You.can.now.SSH.into.you |
| b48e0 | 72 20 73 79 73 74 65 6d 20 75 73 69 6e 67 20 61 64 6d 69 6e 2f 61 64 6d 69 6e 20 61 73 20 61 20 | r.system.using.admin/admin.as.a. |
| b4900 | 64 65 66 61 75 6c 74 20 75 73 65 72 20 73 75 70 70 6c 69 65 64 20 66 72 6f 6d 20 74 68 65 20 60 | default.user.supplied.from.the.` |
| b4920 | 60 6c 66 6b 65 69 74 65 6c 2f 74 61 63 61 63 73 5f 70 6c 75 73 3a 6c 61 74 65 73 74 60 60 20 63 | `lfkeitel/tacacs_plus:latest``.c |
| b4940 | 6f 6e 74 61 69 6e 65 72 2e 00 59 6f 75 20 63 61 6e 20 6f 6e 6c 79 20 61 70 70 6c 79 20 6f 6e 65 | ontainer..You.can.only.apply.one |
| b4960 | 20 70 6f 6c 69 63 79 20 70 65 72 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 64 69 72 65 63 74 | .policy.per.interface.and.direct |
| b4980 | 69 6f 6e 2c 20 62 75 74 20 79 6f 75 20 63 6f 75 6c 64 20 72 65 75 73 65 20 61 20 70 6f 6c 69 63 | ion,.but.you.could.reuse.a.polic |
| b49a0 | 79 20 6f 6e 20 64 69 66 66 65 72 65 6e 74 20 69 6e 74 65 72 66 61 63 65 73 20 61 6e 64 20 64 69 | y.on.different.interfaces.and.di |
| b49c0 | 72 65 63 74 69 6f 6e 73 3a 00 59 6f 75 20 63 61 6e 20 6f 6e 6c 79 20 73 70 65 63 69 66 79 20 61 | rections:.You.can.only.specify.a |
| b49e0 | 20 73 6f 75 72 63 65 20 6d 61 63 2d 61 64 64 72 65 73 73 20 74 6f 20 6d 61 74 63 68 2e 00 59 6f | .source.mac-address.to.match..Yo |
| b4a00 | 75 20 63 61 6e 20 72 75 6e 20 74 68 65 20 55 44 50 20 62 72 6f 61 64 63 61 73 74 20 72 65 6c 61 | u.can.run.the.UDP.broadcast.rela |
| b4a20 | 79 20 73 65 72 76 69 63 65 20 6f 6e 20 6d 75 6c 74 69 70 6c 65 20 72 6f 75 74 65 72 73 20 63 6f | y.service.on.multiple.routers.co |
| b4a40 | 6e 6e 65 63 74 65 64 20 74 6f 20 61 20 73 75 62 6e 65 74 2e 20 54 68 65 72 65 20 69 73 20 2a 2a | nnected.to.a.subnet..There.is.** |
| b4a60 | 4e 4f 2a 2a 20 55 44 50 20 62 72 6f 61 64 63 61 73 74 20 72 65 6c 61 79 20 70 61 63 6b 65 74 20 | NO**.UDP.broadcast.relay.packet. |
| b4a80 | 73 74 6f 72 6d 21 00 59 6f 75 20 63 61 6e 20 73 70 65 63 69 66 79 20 61 20 73 74 61 74 69 63 20 | storm!.You.can.specify.a.static. |
| b4aa0 | 44 48 43 50 20 61 73 73 69 67 6e 6d 65 6e 74 20 6f 6e 20 61 20 70 65 72 20 68 6f 73 74 20 62 61 | DHCP.assignment.on.a.per.host.ba |
| b4ac0 | 73 69 73 2e 20 59 6f 75 20 77 69 6c 6c 20 6e 65 65 64 20 74 68 65 20 4d 41 43 20 61 64 64 72 65 | sis..You.will.need.the.MAC.addre |
| b4ae0 | 73 73 20 6f 66 20 74 68 65 20 73 74 61 74 69 6f 6e 20 61 6e 64 20 79 6f 75 72 20 64 65 73 69 72 | ss.of.the.station.and.your.desir |
| b4b00 | 65 64 20 49 50 20 61 64 64 72 65 73 73 2e 20 54 68 65 20 61 64 64 72 65 73 73 20 6d 75 73 74 20 | ed.IP.address..The.address.must. |
| b4b20 | 62 65 20 69 6e 73 69 64 65 20 74 68 65 20 73 75 62 6e 65 74 20 64 65 66 69 6e 69 74 69 6f 6e 20 | be.inside.the.subnet.definition. |
| b4b40 | 62 75 74 20 63 61 6e 20 62 65 20 6f 75 74 73 69 64 65 20 6f 66 20 74 68 65 20 72 61 6e 67 65 20 | but.can.be.outside.of.the.range. |
| b4b60 | 73 74 61 74 65 6d 65 6e 74 2e 00 59 6f 75 20 63 61 6e 20 74 65 73 74 20 74 68 65 20 53 4e 4d 50 | statement..You.can.test.the.SNMP |
| b4b80 | 76 33 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 66 72 6f 6d 20 61 6e 79 20 6c 69 6e 75 78 20 | v3.functionality.from.any.linux. |
| b4ba0 | 62 61 73 65 64 20 73 79 73 74 65 6d 2c 20 6a 75 73 74 20 72 75 6e 20 74 68 65 20 66 6f 6c 6c 6f | based.system,.just.run.the.follo |
| b4bc0 | 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 3a 20 60 60 73 6e 6d 70 77 61 6c 6b 20 2d 76 20 33 20 2d 75 | wing.command:.``snmpwalk.-v.3.-u |
| b4be0 | 20 76 79 6f 73 20 2d 61 20 53 48 41 20 2d 41 20 76 79 6f 73 31 32 33 34 35 36 37 38 20 2d 78 20 | .vyos.-a.SHA.-A.vyos12345678.-x. |
| b4c00 | 41 45 53 20 2d 58 20 76 79 6f 73 31 32 33 34 35 36 37 38 20 2d 6c 20 61 75 74 68 50 72 69 76 20 | AES.-X.vyos12345678.-l.authPriv. |
| b4c20 | 31 39 32 2e 30 2e 32 2e 31 20 2e 31 60 60 00 59 6f 75 20 63 61 6e 20 75 73 65 20 77 69 6c 64 63 | 192.0.2.1..1``.You.can.use.wildc |
| b4c40 | 61 72 64 20 60 60 2a 60 60 20 74 6f 20 6d 61 74 63 68 20 61 20 67 72 6f 75 70 20 6f 66 20 69 6e | ard.``*``.to.match.a.group.of.in |
| b4c60 | 74 65 72 66 61 63 65 73 2e 00 59 6f 75 20 63 61 6e 20 76 65 72 69 66 79 20 79 6f 75 72 20 56 52 | terfaces..You.can.verify.your.VR |
| b4c80 | 52 50 20 67 72 6f 75 70 20 73 74 61 74 75 73 20 77 69 74 68 20 74 68 65 20 6f 70 65 72 61 74 69 | RP.group.status.with.the.operati |
| b4ca0 | 6f 6e 61 6c 20 6d 6f 64 65 20 60 60 72 75 6e 20 73 68 6f 77 20 76 72 72 70 60 60 20 63 6f 6d 6d | onal.mode.``run.show.vrrp``.comm |
| b4cc0 | 61 6e 64 3a 00 59 6f 75 20 63 61 6e 20 76 69 65 77 20 74 68 61 74 20 74 68 65 20 70 6f 6c 69 63 | and:.You.can.view.that.the.polic |
| b4ce0 | 79 20 69 73 20 62 65 69 6e 67 20 63 6f 72 72 65 63 74 6c 79 20 28 6f 72 20 69 6e 63 6f 72 72 65 | y.is.being.correctly.(or.incorre |
| b4d00 | 63 74 6c 79 29 20 75 74 69 6c 69 73 65 64 20 77 69 74 68 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e | ctly).utilised.with.the.followin |
| b4d20 | 67 20 63 6f 6d 6d 61 6e 64 3a 00 59 6f 75 20 63 61 6e 6e 6f 74 20 65 61 73 69 6c 79 20 72 65 64 | g.command:.You.cannot.easily.red |
| b4d40 | 69 73 74 72 69 62 75 74 65 20 49 50 76 36 20 72 6f 75 74 65 73 20 76 69 61 20 4f 53 50 46 76 33 | istribute.IPv6.routes.via.OSPFv3 |
| b4d60 | 20 6f 6e 20 61 20 57 69 72 65 47 75 61 72 64 20 69 6e 74 65 72 66 61 63 65 20 6c 69 6e 6b 2e 20 | .on.a.WireGuard.interface.link.. |
| b4d80 | 54 68 69 73 20 72 65 71 75 69 72 65 73 20 79 6f 75 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 6c | This.requires.you.to.configure.l |
| b4da0 | 69 6e 6b 2d 6c 6f 63 61 6c 20 61 64 64 72 65 73 73 65 73 20 6d 61 6e 75 61 6c 6c 79 20 6f 6e 20 | ink-local.addresses.manually.on. |
| b4dc0 | 74 68 65 20 57 69 72 65 47 75 61 72 64 20 69 6e 74 65 72 66 61 63 65 73 2c 20 73 65 65 20 3a 76 | the.WireGuard.interfaces,.see.:v |
| b4de0 | 79 74 61 73 6b 3a 60 54 31 34 38 33 60 2e 00 59 6f 75 20 64 6f 20 2a 2a 6e 6f 74 2a 2a 20 6e 65 | ytask:`T1483`..You.do.**not**.ne |
| b4e00 | 65 64 20 74 6f 20 63 6f 70 79 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 74 6f 20 74 68 | ed.to.copy.the.certificate.to.th |
| b4e20 | 65 20 6f 74 68 65 72 20 72 6f 75 74 65 72 2e 20 49 6e 73 74 65 61 64 2c 20 79 6f 75 20 6e 65 65 | e.other.router..Instead,.you.nee |
| b4e40 | 64 20 74 6f 20 72 65 74 72 69 65 76 65 20 69 74 73 20 53 48 41 2d 32 35 36 20 66 69 6e 67 65 72 | d.to.retrieve.its.SHA-256.finger |
| b4e60 | 70 72 69 6e 74 2e 20 4f 70 65 6e 56 50 4e 20 6f 6e 6c 79 20 73 75 70 70 6f 72 74 73 20 53 48 41 | print..OpenVPN.only.supports.SHA |
| b4e80 | 2d 32 35 36 20 66 69 6e 67 65 72 70 72 69 6e 74 73 20 61 74 20 74 68 65 20 6d 6f 6d 65 6e 74 2c | -256.fingerprints.at.the.moment, |
| b4ea0 | 20 73 6f 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 75 73 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e | .so.you.need.to.use.the.followin |
| b4ec0 | 67 20 63 6f 6d 6d 61 6e 64 3a 00 59 6f 75 20 6d 61 79 20 61 6c 73 6f 20 61 64 64 69 74 69 6f 6e | g.command:.You.may.also.addition |
| b4ee0 | 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 20 74 69 6d 65 6f 75 74 73 20 66 6f 72 20 64 69 66 66 | ally.configure.timeouts.for.diff |
| b4f00 | 65 72 65 6e 74 20 74 79 70 65 73 20 6f 66 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 59 6f 75 20 | erent.types.of.connections..You. |
| b4f20 | 6d 61 79 20 65 78 70 65 63 74 20 72 65 61 6c 20 74 68 72 6f 75 67 68 70 75 74 73 20 61 72 6f 75 | may.expect.real.throughputs.arou |
| b4f40 | 6e 64 20 31 30 4d 42 79 74 65 73 2f 73 20 6f 72 20 68 69 67 68 65 72 20 69 6e 20 63 72 6f 77 64 | nd.10MBytes/s.or.higher.in.crowd |
| b4f60 | 65 64 20 61 72 65 61 73 2e 00 59 6f 75 20 6d 61 79 20 65 78 70 65 63 74 20 72 65 61 6c 20 74 68 | ed.areas..You.may.expect.real.th |
| b4f80 | 72 6f 75 67 68 70 75 74 73 20 61 72 6f 75 6e 64 20 35 30 4d 42 79 74 65 73 2f 73 20 74 6f 20 31 | roughputs.around.50MBytes/s.to.1 |
| b4fa0 | 35 30 4d 42 79 74 65 73 2f 73 2c 20 64 65 70 65 6e 64 69 6e 67 20 6f 6e 20 6f 62 73 74 72 75 63 | 50MBytes/s,.depending.on.obstruc |
| b4fc0 | 74 69 6f 6e 73 20 62 79 20 77 61 6c 6c 73 2c 20 77 61 74 65 72 2c 20 6d 65 74 61 6c 20 6f 72 20 | tions.by.walls,.water,.metal.or. |
| b4fe0 | 6f 74 68 65 72 20 6d 61 74 65 72 69 61 6c 73 20 77 69 74 68 20 68 69 67 68 20 65 6c 65 63 74 72 | other.materials.with.high.electr |
| b5000 | 6f 2d 6d 61 67 6e 65 74 69 63 20 64 61 6d 70 65 6e 69 6e 67 20 61 74 20 36 47 48 7a 2e 20 42 65 | o-magnetic.dampening.at.6GHz..Be |
| b5020 | 73 74 20 72 65 73 75 6c 74 73 20 61 72 65 20 61 63 68 69 65 76 65 64 20 77 69 74 68 20 74 68 65 | st.results.are.achieved.with.the |
| b5040 | 20 41 50 20 62 65 69 6e 67 20 69 6e 20 74 68 65 20 73 61 6d 65 20 72 6f 6f 6d 20 61 6e 64 20 69 | .AP.being.in.the.same.room.and.i |
| b5060 | 6e 20 6c 69 6e 65 2d 6f 66 2d 73 69 67 68 74 2e 00 59 6f 75 20 6d 61 79 20 70 72 65 66 65 72 20 | n.line-of-sight..You.may.prefer. |
| b5080 | 6c 6f 63 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 | locally.configured.capabilities. |
| b50a0 | 6d 6f 72 65 20 74 68 61 6e 20 74 68 65 20 6e 65 67 6f 74 69 61 74 65 64 20 63 61 70 61 62 69 6c | more.than.the.negotiated.capabil |
| b50c0 | 69 74 69 65 73 20 65 76 65 6e 20 74 68 6f 75 67 68 20 72 65 6d 6f 74 65 20 70 65 65 72 20 73 65 | ities.even.though.remote.peer.se |
| b50e0 | 6e 64 73 20 63 61 70 61 62 69 6c 69 74 69 65 73 2e 20 49 66 20 74 68 65 20 70 65 65 72 20 69 73 | nds.capabilities..If.the.peer.is |
| b5100 | 20 63 6f 6e 66 69 67 75 72 65 64 20 62 79 20 3a 63 66 67 63 6d 64 3a 60 6f 76 65 72 72 69 64 65 | .configured.by.:cfgcmd:`override |
| b5120 | 2d 63 61 70 61 62 69 6c 69 74 79 60 2c 20 56 79 4f 53 20 69 67 6e 6f 72 65 73 20 72 65 63 65 69 | -capability`,.VyOS.ignores.recei |
| b5140 | 76 65 64 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 74 68 65 6e 20 6f 76 65 72 72 69 64 65 20 6e | ved.capabilities.then.override.n |
| b5160 | 65 67 6f 74 69 61 74 65 64 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 77 69 74 68 20 63 6f 6e 66 | egotiated.capabilities.with.conf |
| b5180 | 69 67 75 72 65 64 20 76 61 6c 75 65 73 2e 00 59 6f 75 20 6d 61 79 20 77 61 6e 74 20 74 6f 20 64 | igured.values..You.may.want.to.d |
| b51a0 | 69 73 61 62 6c 65 20 73 65 6e 64 69 6e 67 20 43 61 70 61 62 69 6c 69 74 79 20 4e 65 67 6f 74 69 | isable.sending.Capability.Negoti |
| b51c0 | 61 74 69 6f 6e 20 4f 50 45 4e 20 6d 65 73 73 61 67 65 20 6f 70 74 69 6f 6e 61 6c 20 70 61 72 61 | ation.OPEN.message.optional.para |
| b51e0 | 6d 65 74 65 72 20 74 6f 20 74 68 65 20 70 65 65 72 20 77 68 65 6e 20 72 65 6d 6f 74 65 20 70 65 | meter.to.the.peer.when.remote.pe |
| b5200 | 65 72 20 64 6f 65 73 20 6e 6f 74 20 69 6d 70 6c 65 6d 65 6e 74 20 43 61 70 61 62 69 6c 69 74 79 | er.does.not.implement.Capability |
| b5220 | 20 4e 65 67 6f 74 69 61 74 69 6f 6e 2e 20 50 6c 65 61 73 65 20 75 73 65 20 3a 63 66 67 63 6d 64 | .Negotiation..Please.use.:cfgcmd |
| b5240 | 3a 60 64 69 73 61 62 6c 65 2d 63 61 70 61 62 69 6c 69 74 79 2d 6e 65 67 6f 74 69 61 74 69 6f 6e | :`disable-capability-negotiation |
| b5260 | 60 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 69 73 61 62 6c 65 20 74 68 65 20 66 65 61 74 75 72 65 | `.command.to.disable.the.feature |
| b5280 | 2e 00 59 6f 75 20 6e 65 65 64 20 32 20 73 65 70 61 72 61 74 65 20 66 69 72 65 77 61 6c 6c 73 20 | ..You.need.2.separate.firewalls. |
| b52a0 | 74 6f 20 64 65 66 69 6e 65 20 74 72 61 66 66 69 63 3a 20 6f 6e 65 20 66 6f 72 20 65 61 63 68 20 | to.define.traffic:.one.for.each. |
| b52c0 | 64 69 72 65 63 74 69 6f 6e 2e 00 59 6f 75 20 6e 65 65 64 20 74 6f 20 64 69 73 61 62 6c 65 20 74 | direction..You.need.to.disable.t |
| b52e0 | 68 65 20 69 6e 2d 6d 65 6d 6f 72 79 20 74 61 62 6c 65 20 69 6e 20 70 72 6f 64 75 63 74 69 6f 6e | he.in-memory.table.in.production |
| b5300 | 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 73 21 20 55 73 69 6e 67 20 3a 61 62 62 72 3a 60 49 4d 54 20 | .environments!.Using.:abbr:`IMT. |
| b5320 | 28 49 6e 2d 4d 65 6d 6f 72 79 20 54 61 62 6c 65 29 60 20 6d 61 79 20 6c 65 61 64 20 74 6f 20 68 | (In-Memory.Table)`.may.lead.to.h |
| b5340 | 65 61 76 79 20 43 50 55 20 6f 76 65 72 6c 6f 61 64 69 6e 67 20 61 6e 64 20 75 6e 73 74 61 62 6c | eavy.CPU.overloading.and.unstabl |
| b5360 | 65 20 66 6c 6f 77 2d 61 63 63 6f 75 6e 74 69 6e 67 20 62 65 68 61 76 69 6f 72 2e 00 59 6f 75 20 | e.flow-accounting.behavior..You. |
| b5380 | 6e 65 65 64 20 79 6f 75 72 20 50 50 50 6f 45 20 63 72 65 64 65 6e 74 69 61 6c 73 20 66 72 6f 6d | need.your.PPPoE.credentials.from |
| b53a0 | 20 79 6f 75 72 20 44 53 4c 20 49 53 50 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 63 6f 6e 66 69 67 | .your.DSL.ISP.in.order.to.config |
| b53c0 | 75 72 65 20 74 68 69 73 2e 20 54 68 65 20 75 73 75 61 6c 20 75 73 65 72 6e 61 6d 65 20 69 73 20 | ure.this..The.usual.username.is. |
| b53e0 | 69 6e 20 74 68 65 20 66 6f 72 6d 20 6f 66 20 6e 61 6d 65 40 68 6f 73 74 2e 6e 65 74 20 62 75 74 | in.the.form.of.name@host.net.but |
| b5400 | 20 6d 61 79 20 76 61 72 79 20 64 65 70 65 6e 64 69 6e 67 20 6f 6e 20 49 53 50 2e 00 59 6f 75 20 | .may.vary.depending.on.ISP..You. |
| b5420 | 6e 6f 77 20 73 65 65 20 74 68 65 20 6c 6f 6e 67 65 72 20 41 53 20 70 61 74 68 2e 00 59 6f 75 20 | now.see.the.longer.AS.path..You. |
| b5440 | 73 68 6f 75 6c 64 20 61 64 64 20 61 20 66 69 72 65 77 61 6c 6c 20 74 6f 20 79 6f 75 72 20 63 6f | should.add.a.firewall.to.your.co |
| b5460 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 62 6f 76 65 20 61 73 20 77 65 6c 6c 20 62 79 20 61 73 73 | nfiguration.above.as.well.by.ass |
| b5480 | 69 67 6e 69 6e 67 20 69 74 20 74 6f 20 74 68 65 20 70 70 70 6f 65 30 20 69 74 73 65 6c 66 20 61 | igning.it.to.the.pppoe0.itself.a |
| b54a0 | 73 20 73 68 6f 77 6e 20 68 65 72 65 3a 00 59 6f 75 20 73 68 6f 75 6c 64 20 61 6c 73 6f 20 65 6e | s.shown.here:.You.should.also.en |
| b54c0 | 73 75 72 65 20 74 68 61 74 20 74 68 65 20 4f 55 54 49 53 44 45 5f 4c 4f 43 41 4c 20 66 69 72 65 | sure.that.the.OUTISDE_LOCAL.fire |
| b54e0 | 77 61 6c 6c 20 67 72 6f 75 70 20 69 73 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 57 41 4e | wall.group.is.applied.to.the.WAN |
| b5500 | 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 61 20 64 69 72 65 63 74 69 6f 6e 20 28 6c 6f 63 61 | .interface.and.a.direction.(loca |
| b5520 | 6c 29 2e 00 59 6f 75 20 73 68 6f 75 6c 64 20 61 6c 73 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 | l)..You.should.also.ensure.that. |
| b5540 | 74 68 65 20 4f 55 54 53 49 44 45 5f 4c 4f 43 41 4c 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 | the.OUTSIDE_LOCAL.firewall.group |
| b5560 | 20 69 73 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 57 41 4e 20 69 6e 74 65 72 66 61 63 65 | .is.applied.to.the.WAN.interface |
| b5580 | 20 61 6e 64 20 61 20 64 69 72 65 63 74 69 6f 6e 20 28 6c 6f 63 61 6c 29 2e 00 59 6f 75 20 77 69 | .and.a.direction.(local)..You.wi |
| b55a0 | 6c 6c 20 61 6c 73 6f 20 6e 65 65 64 20 74 68 65 20 70 75 62 6c 69 63 20 6b 65 79 20 6f 66 20 79 | ll.also.need.the.public.key.of.y |
| b55c0 | 6f 75 72 20 70 65 65 72 20 61 73 20 77 65 6c 6c 20 61 73 20 74 68 65 20 6e 65 74 77 6f 72 6b 28 | our.peer.as.well.as.the.network( |
| b55e0 | 73 29 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 74 75 6e 6e 65 6c 20 28 61 6c 6c 6f 77 65 64 2d 69 | s).you.want.to.tunnel.(allowed-i |
| b5600 | 70 73 29 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 57 69 72 65 47 75 61 72 64 20 74 75 6e | ps).to.configure.a.WireGuard.tun |
| b5620 | 6e 65 6c 2e 20 54 68 65 20 70 75 62 6c 69 63 20 6b 65 79 20 62 65 6c 6f 77 20 69 73 20 61 6c 77 | nel..The.public.key.below.is.alw |
| b5640 | 61 79 73 20 74 68 65 20 70 75 62 6c 69 63 20 6b 65 79 20 66 72 6f 6d 20 79 6f 75 72 20 70 65 65 | ays.the.public.key.from.your.pee |
| b5660 | 72 2c 20 6e 6f 74 20 79 6f 75 72 20 6c 6f 63 61 6c 20 6f 6e 65 2e 00 59 6f 75 72 20 49 53 50 73 | r,.not.your.local.one..Your.ISPs |
| b5680 | 20 6d 6f 64 65 6d 20 69 73 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 70 6f 72 74 20 60 60 65 74 | .modem.is.connected.to.port.``et |
| b56a0 | 68 30 60 60 20 6f 66 20 79 6f 75 72 20 56 79 4f 53 20 62 6f 78 2e 00 59 6f 75 72 20 4c 41 4e 20 | h0``.of.your.VyOS.box..Your.LAN. |
| b56c0 | 63 6f 6e 6e 65 63 74 65 64 20 6f 6e 20 65 74 68 30 20 75 73 65 73 20 70 72 65 66 69 78 20 60 60 | connected.on.eth0.uses.prefix.`` |
| b56e0 | 32 30 30 31 3a 64 62 38 3a 62 65 65 66 3a 32 3a 3a 2f 36 34 60 60 20 77 69 74 68 20 74 68 65 20 | 2001:db8:beef:2::/64``.with.the. |
| b5700 | 72 6f 75 74 65 72 20 62 65 65 69 6e 67 20 60 60 32 30 30 31 3a 64 62 38 3a 62 65 65 66 3a 32 3a | router.beeing.``2001:db8:beef:2: |
| b5720 | 3a 31 60 60 00 5a 65 62 72 61 20 73 75 70 70 6f 72 74 73 20 70 72 65 66 69 78 2d 6c 69 73 74 73 | :1``.Zebra.supports.prefix-lists |
| b5740 | 20 61 6e 64 20 52 6f 75 74 65 20 4d 61 70 73 20 74 6f 20 6d 61 74 63 68 20 72 6f 75 74 65 73 20 | .and.Route.Maps.to.match.routes. |
| b5760 | 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 6f 74 68 65 72 20 46 52 52 20 63 6f 6d 70 6f 6e 65 6e | received.from.other.FRR.componen |
| b5780 | 74 73 2e 20 54 68 65 20 70 65 72 6d 69 74 2f 64 65 6e 79 20 66 61 63 69 6c 69 74 69 65 73 20 70 | ts..The.permit/deny.facilities.p |
| b57a0 | 72 6f 76 69 64 65 64 20 62 79 20 74 68 65 73 65 20 63 6f 6d 6d 61 6e 64 73 20 63 61 6e 20 62 65 | rovided.by.these.commands.can.be |
| b57c0 | 20 75 73 65 64 20 74 6f 20 66 69 6c 74 65 72 20 77 68 69 63 68 20 72 6f 75 74 65 73 20 7a 65 62 | .used.to.filter.which.routes.zeb |
| b57e0 | 72 61 20 77 69 6c 6c 20 69 6e 73 74 61 6c 6c 20 69 6e 20 74 68 65 20 6b 65 72 6e 65 6c 2e 00 5a | ra.will.install.in.the.kernel..Z |
| b5800 | 65 62 72 61 20 73 75 70 70 6f 72 74 73 20 70 72 65 66 69 78 2d 6c 69 73 74 73 20 61 6e 64 20 52 | ebra.supports.prefix-lists.and.R |
| b5820 | 6f 75 74 65 20 4d 61 70 73 73 20 74 6f 20 6d 61 74 63 68 20 72 6f 75 74 65 73 20 72 65 63 65 69 | oute.Mapss.to.match.routes.recei |
| b5840 | 76 65 64 20 66 72 6f 6d 20 6f 74 68 65 72 20 46 52 52 20 63 6f 6d 70 6f 6e 65 6e 74 73 2e 20 54 | ved.from.other.FRR.components..T |
| b5860 | 68 65 20 70 65 72 6d 69 74 2f 64 65 6e 79 20 66 61 63 69 6c 69 74 69 65 73 20 70 72 6f 76 69 64 | he.permit/deny.facilities.provid |
| b5880 | 65 64 20 62 79 20 74 68 65 73 65 20 63 6f 6d 6d 61 6e 64 73 20 63 61 6e 20 62 65 20 75 73 65 64 | ed.by.these.commands.can.be.used |
| b58a0 | 20 74 6f 20 66 69 6c 74 65 72 20 77 68 69 63 68 20 72 6f 75 74 65 73 20 7a 65 62 72 61 20 77 69 | .to.filter.which.routes.zebra.wi |
| b58c0 | 6c 6c 20 69 6e 73 74 61 6c 6c 20 69 6e 20 74 68 65 20 6b 65 72 6e 65 6c 2e 00 5a 65 62 72 61 2f | ll.install.in.the.kernel..Zebra/ |
| b58e0 | 4b 65 72 6e 65 6c 20 72 6f 75 74 65 20 66 69 6c 74 65 72 69 6e 67 00 5a 6f 6e 65 20 42 61 73 65 | Kernel.route.filtering.Zone.Base |
| b5900 | 64 20 46 69 72 65 77 61 6c 6c 00 5a 6f 6e 65 20 42 61 73 65 64 20 46 69 72 65 77 61 6c 6c 20 28 | d.Firewall.Zone.Based.Firewall.( |
| b5920 | 44 65 70 72 65 63 61 74 65 64 29 00 5a 6f 6e 65 2d 50 6f 6c 69 63 79 20 4f 76 65 72 76 69 65 77 | Deprecated).Zone-Policy.Overview |
| b5940 | 00 5a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 00 5b 41 2e 42 2e 43 2e 44 5d 20 e2 | .Zone-based.firewall.[A.B.C.D].. |
| b5960 | 80 93 20 6c 69 6e 6b 2d 73 74 61 74 65 2d 69 64 2e 20 57 69 74 68 20 74 68 69 73 20 73 70 65 63 | ...link-state-id..With.this.spec |
| b5980 | 69 66 69 65 64 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 70 6f 72 74 69 | ified.the.command.displays.porti |
| b59a0 | 6f 6e 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 74 68 | on.of.the.network.environment.th |
| b59c0 | 61 74 20 69 73 20 62 65 69 6e 67 20 64 65 73 63 72 69 62 65 64 20 62 79 20 74 68 65 20 61 64 76 | at.is.being.described.by.the.adv |
| b59e0 | 65 72 74 69 73 65 6d 65 6e 74 2e 20 54 68 65 20 76 61 6c 75 65 20 65 6e 74 65 72 65 64 20 64 65 | ertisement..The.value.entered.de |
| b5a00 | 70 65 6e 64 73 20 6f 6e 20 74 68 65 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 e2 80 99 73 20 4c | pends.on.the.advertisement...s.L |
| b5a20 | 53 20 74 79 70 65 2e 20 49 74 20 6d 75 73 74 20 62 65 20 65 6e 74 65 72 65 64 20 69 6e 20 74 68 | S.type..It.must.be.entered.in.th |
| b5a40 | 65 20 66 6f 72 6d 20 6f 66 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 2e 00 60 31 2e 20 43 72 65 | e.form.of.an.IP.address..`1..Cre |
| b5a60 | 61 74 65 20 61 6e 20 65 76 65 6e 74 20 68 61 6e 64 6c 65 72 60 5f 00 60 32 2e 20 41 64 64 20 72 | ate.an.event.handler`_.`2..Add.r |
| b5a80 | 65 67 65 78 20 74 6f 20 74 68 65 20 73 63 72 69 70 74 60 5f 00 60 33 2e 20 41 64 64 20 61 20 66 | egex.to.the.script`_.`3..Add.a.f |
| b5aa0 | 75 6c 6c 20 70 61 74 68 20 74 6f 20 74 68 65 20 73 63 72 69 70 74 60 5f 00 60 34 2e 20 41 64 64 | ull.path.to.the.script`_.`4..Add |
| b5ac0 | 20 6f 70 74 69 6f 6e 61 6c 20 70 61 72 61 6d 65 74 65 72 73 60 5f 00 60 3c 6e 61 6d 65 3e 60 20 | .optional.parameters`_.`<name>`. |
| b5ae0 | 6d 75 73 74 20 62 65 20 69 64 65 6e 74 69 63 61 6c 20 6f 6e 20 62 6f 74 68 20 73 69 64 65 73 21 | must.be.identical.on.both.sides! |
| b5b00 | 00 60 43 6f 6d 6d 6f 6e 20 41 70 70 6c 69 63 61 74 69 6f 6e 73 20 4b 65 70 74 20 45 6e 68 61 6e | .`Common.Applications.Kept.Enhan |
| b5b20 | 63 65 64 60 5f 20 28 43 41 4b 45 29 20 69 73 20 61 20 63 6f 6d 70 72 65 68 65 6e 73 69 76 65 20 | ced`_.(CAKE).is.a.comprehensive. |
| b5b40 | 71 75 65 75 65 20 6d 61 6e 61 67 65 6d 65 6e 74 20 73 79 73 74 65 6d 2c 20 69 6d 70 6c 65 6d 65 | queue.management.system,.impleme |
| b5b60 | 6e 74 65 64 20 61 73 20 61 20 71 75 65 75 65 20 64 69 73 63 69 70 6c 69 6e 65 20 28 71 64 69 73 | nted.as.a.queue.discipline.(qdis |
| b5b80 | 63 29 20 66 6f 72 20 74 68 65 20 4c 69 6e 75 78 20 6b 65 72 6e 65 6c 2e 20 49 74 20 69 73 20 64 | c).for.the.Linux.kernel..It.is.d |
| b5ba0 | 65 73 69 67 6e 65 64 20 74 6f 20 72 65 70 6c 61 63 65 20 61 6e 64 20 69 6d 70 72 6f 76 65 20 75 | esigned.to.replace.and.improve.u |
| b5bc0 | 70 6f 6e 20 74 68 65 20 63 6f 6d 70 6c 65 78 20 68 69 65 72 61 72 63 68 79 20 6f 66 20 73 69 6d | pon.the.complex.hierarchy.of.sim |
| b5be0 | 70 6c 65 20 71 64 69 73 63 73 20 70 72 65 73 65 6e 74 6c 79 20 72 65 71 75 69 72 65 64 20 74 6f | ple.qdiscs.presently.required.to |
| b5c00 | 20 65 66 66 65 63 74 69 76 65 6c 79 20 74 61 63 6b 6c 65 20 74 68 65 20 62 75 66 66 65 72 62 6c | .effectively.tackle.the.bufferbl |
| b5c20 | 6f 61 74 20 70 72 6f 62 6c 65 6d 20 61 74 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 65 64 67 65 2e | oat.problem.at.the.network.edge. |
| b5c40 | 00 60 60 24 20 74 61 69 6c 20 2d 6e 20 2b 32 20 63 61 2e 6b 65 79 20 7c 20 68 65 61 64 20 2d 6e | .``$.tail.-n.+2.ca.key.|.head.-n |
| b5c60 | 20 2d 31 20 7c 20 74 72 20 2d 64 20 27 5c 6e 27 60 60 00 60 60 24 20 74 61 69 6c 20 2d 6e 20 2b | .-1.|.tr.-d.'\n'``.``$.tail.-n.+ |
| b5c80 | 32 20 63 61 2e 70 65 6d 20 7c 20 68 65 61 64 20 2d 6e 20 2d 31 20 7c 20 74 72 20 2d 64 20 27 5c | 2.ca.pem.|.head.-n.-1.|.tr.-d.'\ |
| b5ca0 | 6e 27 60 60 00 60 60 24 20 74 61 69 6c 20 2d 6e 20 2b 32 20 63 65 72 74 2e 6b 65 79 20 7c 20 68 | n'``.``$.tail.-n.+2.cert.key.|.h |
| b5cc0 | 65 61 64 20 2d 6e 20 2d 31 20 7c 20 74 72 20 2d 64 20 27 5c 6e 27 60 60 00 60 60 24 20 74 61 69 | ead.-n.-1.|.tr.-d.'\n'``.``$.tai |
| b5ce0 | 6c 20 2d 6e 20 2b 32 20 63 65 72 74 2e 70 65 6d 20 7c 20 68 65 61 64 20 2d 6e 20 2d 31 20 7c 20 | l.-n.+2.cert.pem.|.head.-n.-1.|. |
| b5d00 | 74 72 20 2d 64 20 27 5c 6e 27 60 60 00 60 60 2b 60 60 20 73 75 63 63 65 73 73 66 75 6c 00 60 60 | tr.-d.'\n'``.``+``.successful.`` |
| b5d20 | 2d 60 60 20 66 61 69 6c 65 64 00 60 60 2f 63 6f 6e 66 69 67 2f 73 63 72 69 70 74 73 2f 64 68 63 | -``.failed.``/config/scripts/dhc |
| b5d40 | 70 2d 63 6c 69 65 6e 74 2f 70 6f 73 74 2d 68 6f 6f 6b 73 2e 64 2f 60 60 00 60 60 2f 63 6f 6e 66 | p-client/post-hooks.d/``.``/conf |
| b5d60 | 69 67 2f 73 63 72 69 70 74 73 2f 64 68 63 70 2d 63 6c 69 65 6e 74 2f 70 72 65 2d 68 6f 6f 6b 73 | ig/scripts/dhcp-client/pre-hooks |
| b5d80 | 2e 64 2f 60 60 00 60 60 30 2e 70 6f 6f 6c 2e 6e 74 70 2e 6f 72 67 60 60 00 60 60 30 60 60 20 2d | .d/``.``0.pool.ntp.org``.``0``.- |
| b5da0 | 20 32 30 20 6f 72 20 34 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 20 28 64 65 66 | .20.or.40.MHz.channel.width.(def |
| b5dc0 | 61 75 6c 74 29 00 60 60 30 60 60 20 2d 20 48 45 2d 4d 43 53 20 30 2d 37 00 60 60 30 60 60 3a 20 | ault).``0``.-.HE-MCS.0-7.``0``:. |
| b5de0 | 4e 6f 20 72 65 70 6c 61 79 20 77 69 6e 64 6f 77 2c 20 73 74 72 69 63 74 20 63 68 65 63 6b 00 60 | No.replay.window,.strict.check.` |
| b5e00 | 60 31 2d 34 32 39 34 39 36 37 32 39 35 60 60 3a 20 4e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 | `1-4294967295``:.Number.of.packe |
| b5e20 | 74 73 20 74 68 61 74 20 63 6f 75 6c 64 20 62 65 20 6d 69 73 6f 72 64 65 72 65 64 00 60 60 31 2e | ts.that.could.be.misordered.``1. |
| b5e40 | 70 6f 6f 6c 2e 6e 74 70 2e 6f 72 67 60 60 00 60 60 31 31 35 32 30 30 60 60 20 2d 20 31 31 35 2c | pool.ntp.org``.``115200``.-.115, |
| b5e60 | 32 30 30 20 62 70 73 20 28 64 65 66 61 75 6c 74 20 66 6f 72 20 73 65 72 69 61 6c 20 63 6f 6e 73 | 200.bps.(default.for.serial.cons |
| b5e80 | 6f 6c 65 29 00 60 60 31 32 30 30 60 60 20 2d 20 31 32 30 30 20 62 70 73 00 60 60 31 33 31 60 60 | ole).``1200``.-.1200.bps.``131`` |
| b5ea0 | 20 2d 20 32 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 00 60 60 31 33 31 60 60 20 | .-.20.MHz.channel.width.``131``. |
| b5ec0 | 2d 20 32 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 20 28 36 47 48 7a 29 00 60 60 | -.20.MHz.channel.width.(6GHz).`` |
| b5ee0 | 31 33 32 60 60 20 2d 20 34 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 00 60 60 31 | 132``.-.40.MHz.channel.width.``1 |
| b5f00 | 33 32 60 60 20 2d 20 34 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 20 28 36 47 48 | 32``.-.40.MHz.channel.width.(6GH |
| b5f20 | 7a 29 00 60 60 31 33 33 60 60 20 2d 20 38 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 | z).``133``.-.80.MHz.channel.widt |
| b5f40 | 68 00 60 60 31 33 33 60 60 20 2d 20 38 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 | h.``133``.-.80.MHz.channel.width |
| b5f60 | 20 28 36 47 48 7a 29 00 60 60 31 33 34 60 60 20 2d 20 31 36 30 20 4d 48 7a 20 63 68 61 6e 6e 65 | .(6GHz).``134``.-.160.MHz.channe |
| b5f80 | 6c 20 77 69 64 74 68 00 60 60 31 33 34 60 60 20 2d 20 31 36 30 20 4d 48 7a 20 63 68 61 6e 6e 65 | l.width.``134``.-.160.MHz.channe |
| b5fa0 | 6c 20 77 69 64 74 68 20 28 36 47 48 7a 29 00 60 60 31 33 35 60 60 20 2d 20 38 30 2b 38 30 20 4d | l.width.(6GHz).``135``.-.80+80.M |
| b5fc0 | 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 00 60 60 31 33 35 60 60 20 2d 20 38 30 2b 38 30 | Hz.channel.width.``135``.-.80+80 |
| b5fe0 | 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 20 28 36 47 48 7a 29 00 60 60 31 39 32 2e | .MHz.channel.width.(6GHz).``192. |
| b6000 | 31 36 38 2e 32 2e 32 35 34 60 60 20 49 50 20 61 64 64 72 65 65 73 73 20 6f 6e 20 56 79 4f 53 20 | 168.2.254``.IP.addreess.on.VyOS. |
| b6020 | 65 74 68 32 20 66 72 6f 6d 20 49 53 50 32 00 60 60 31 39 32 30 30 60 60 20 2d 20 31 39 2c 32 30 | eth2.from.ISP2.``19200``.-.19,20 |
| b6040 | 30 20 62 70 73 00 60 60 31 60 60 20 2d 20 38 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 | 0.bps.``1``.-.80.MHz.channel.wid |
| b6060 | 74 68 00 60 60 31 60 60 20 2d 20 48 45 2d 4d 43 53 20 30 2d 39 00 60 60 32 2e 70 6f 6f 6c 2e 6e | th.``1``.-.HE-MCS.0-9.``2.pool.n |
| b6080 | 74 70 2e 6f 72 67 60 60 00 60 60 32 30 33 2e 30 2e 31 31 33 2e 32 35 34 60 60 20 49 50 20 61 64 | tp.org``.``203.0.113.254``.IP.ad |
| b60a0 | 64 72 65 65 73 73 20 6f 6e 20 56 79 4f 53 20 65 74 68 31 20 66 72 6f 6d 20 49 53 50 31 00 60 60 | dreess.on.VyOS.eth1.from.ISP1.`` |
| b60c0 | 32 34 30 30 60 60 20 2d 20 32 34 30 30 20 62 70 73 00 60 60 32 60 60 20 2d 20 31 36 30 20 4d 48 | 2400``.-.2400.bps.``2``.-.160.MH |
| b60e0 | 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 00 60 60 32 60 60 20 2d 20 48 45 2d 4d 43 53 20 30 | z.channel.width.``2``.-.HE-MCS.0 |
| b6100 | 2d 31 31 00 60 60 33 38 34 30 30 60 60 20 2d 20 33 38 2c 34 30 30 20 62 70 73 20 28 64 65 66 61 | -11.``38400``.-.38,400.bps.(defa |
| b6120 | 75 6c 74 20 66 6f 72 20 58 65 6e 20 63 6f 6e 73 6f 6c 65 29 00 60 60 33 60 60 20 2d 20 38 30 2b | ult.for.Xen.console).``3``.-.80+ |
| b6140 | 38 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 00 60 60 33 60 60 20 2d 20 48 45 2d | 80.MHz.channel.width.``3``.-.HE- |
| b6160 | 4d 43 53 20 69 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 65 64 00 60 60 34 38 30 30 60 60 20 2d 20 | MCS.is.not.supported.``4800``.-. |
| b6180 | 34 38 30 30 20 62 70 73 00 60 60 35 37 36 30 30 60 60 20 2d 20 35 37 2c 36 30 30 20 62 70 73 00 | 4800.bps.``57600``.-.57,600.bps. |
| b61a0 | 60 60 36 34 3a 66 66 39 62 3a 3a 2f 39 36 60 60 20 69 73 20 74 68 65 20 77 65 6c 6c 2d 6b 6e 6f | ``64:ff9b::/96``.is.the.well-kno |
| b61c0 | 77 6e 20 70 72 65 66 69 78 20 66 6f 72 20 49 50 76 34 2d 65 6d 62 65 64 64 65 64 20 49 50 76 36 | wn.prefix.for.IPv4-embedded.IPv6 |
| b61e0 | 20 61 64 64 72 65 73 73 65 73 2e 20 54 68 65 20 70 72 65 66 69 78 20 69 73 20 75 73 65 64 20 74 | .addresses..The.prefix.is.used.t |
| b6200 | 6f 20 72 65 70 72 65 73 65 6e 74 20 49 50 76 34 20 61 64 64 72 65 73 73 65 73 20 69 6e 20 61 6e | o.represent.IPv4.addresses.in.an |
| b6220 | 20 49 50 76 36 20 61 64 64 72 65 73 73 20 66 6f 72 6d 61 74 2e 20 54 68 65 20 49 50 76 34 20 61 | .IPv6.address.format..The.IPv4.a |
| b6240 | 64 64 72 65 73 73 20 69 73 20 65 6e 63 6f 64 65 64 20 69 6e 20 74 68 65 20 6c 6f 77 2d 6f 72 64 | ddress.is.encoded.in.the.low-ord |
| b6260 | 65 72 20 33 32 20 62 69 74 73 20 6f 66 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 2e 20 | er.32.bits.of.the.IPv6.address.. |
| b6280 | 54 68 65 20 68 69 67 68 2d 6f 72 64 65 72 20 33 32 20 62 69 74 73 20 61 72 65 20 73 65 74 20 74 | The.high-order.32.bits.are.set.t |
| b62a0 | 6f 20 74 68 65 20 77 65 6c 6c 2d 6b 6e 6f 77 6e 20 70 72 65 66 69 78 20 36 34 3a 66 66 39 62 3a | o.the.well-known.prefix.64:ff9b: |
| b62c0 | 3a 2f 39 36 2e 00 60 60 38 30 32 2e 33 61 64 60 60 20 2d 20 49 45 45 45 20 38 30 32 2e 33 61 64 | :/96..``802.3ad``.-.IEEE.802.3ad |
| b62e0 | 20 44 79 6e 61 6d 69 63 20 6c 69 6e 6b 20 61 67 67 72 65 67 61 74 69 6f 6e 2e 20 43 72 65 61 74 | .Dynamic.link.aggregation..Creat |
| b6300 | 65 73 20 61 67 67 72 65 67 61 74 69 6f 6e 20 67 72 6f 75 70 73 20 74 68 61 74 20 73 68 61 72 65 | es.aggregation.groups.that.share |
| b6320 | 20 74 68 65 20 73 61 6d 65 20 73 70 65 65 64 20 61 6e 64 20 64 75 70 6c 65 78 20 73 65 74 74 69 | .the.same.speed.and.duplex.setti |
| b6340 | 6e 67 73 2e 20 55 74 69 6c 69 7a 65 73 20 61 6c 6c 20 73 6c 61 76 65 73 20 69 6e 20 74 68 65 20 | ngs..Utilizes.all.slaves.in.the. |
| b6360 | 61 63 74 69 76 65 20 61 67 67 72 65 67 61 74 6f 72 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 74 | active.aggregator.according.to.t |
| b6380 | 68 65 20 38 30 32 2e 33 61 64 20 73 70 65 63 69 66 69 63 61 74 69 6f 6e 2e 00 60 60 38 31 60 60 | he.802.3ad.specification..``81`` |
| b63a0 | 20 2d 20 32 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 20 28 32 2e 34 47 48 7a 29 | .-.20.MHz.channel.width.(2.4GHz) |
| b63c0 | 00 60 60 38 33 60 60 20 2d 20 34 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 2c 20 | .``83``.-.40.MHz.channel.width,. |
| b63e0 | 73 65 63 6f 6e 64 61 72 79 20 32 30 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 61 62 6f 76 65 20 70 72 | secondary.20MHz.channel.above.pr |
| b6400 | 69 6d 61 72 79 20 63 68 61 6e 6e 65 6c 20 28 32 2e 34 47 48 7a 29 00 60 60 38 34 60 60 20 2d 20 | imary.channel.(2.4GHz).``84``.-. |
| b6420 | 34 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 2c 20 73 65 63 6f 6e 64 61 72 79 20 | 40.MHz.channel.width,.secondary. |
| b6440 | 32 30 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 62 65 6c 6f 77 20 70 72 69 6d 61 72 79 20 63 68 61 6e | 20MHz.channel.below.primary.chan |
| b6460 | 6e 65 6c 20 28 32 2e 34 47 48 7a 29 00 60 60 39 36 30 30 60 60 20 2d 20 39 36 30 30 20 62 70 73 | nel.(2.4GHz).``9600``.-.9600.bps |
| b6480 | 00 60 60 3c 20 64 68 2d 67 72 6f 75 70 20 3e 60 60 20 64 65 66 69 6e 65 73 20 61 20 44 69 66 66 | .``<.dh-group.>``.defines.a.Diff |
| b64a0 | 69 65 2d 48 65 6c 6c 6d 61 6e 20 67 72 6f 75 70 20 66 6f 72 20 50 46 53 3b 00 60 60 40 60 60 20 | ie-Hellman.group.for.PFS;.``@``. |
| b64c0 | 55 73 65 20 40 20 61 73 20 72 65 63 6f 72 64 20 6e 61 6d 65 20 74 6f 20 73 65 74 20 74 68 65 20 | Use.@.as.record.name.to.set.the. |
| b64e0 | 72 65 63 6f 72 64 20 66 6f 72 20 74 68 65 20 72 6f 6f 74 20 64 6f 6d 61 69 6e 2e 00 60 60 4b 6e | record.for.the.root.domain..``Kn |
| b6500 | 6f 77 6e 20 6c 69 6d 69 74 61 74 69 6f 6e 73 3a 60 60 00 60 60 53 74 61 74 65 66 75 6c 2d 49 50 | own.limitations:``.``Stateful-IP |
| b6520 | 76 36 2d 41 64 64 72 65 73 73 2d 50 6f 6f 6c 60 60 20 61 6e 64 20 60 60 44 65 6c 65 67 61 74 65 | v6-Address-Pool``.and.``Delegate |
| b6540 | 64 2d 49 50 76 36 2d 50 72 65 66 69 78 2d 50 6f 6f 6c 60 60 20 61 72 65 20 64 65 66 69 6e 65 64 | d-IPv6-Prefix-Pool``.are.defined |
| b6560 | 20 69 6e 20 52 46 43 36 39 31 31 2e 20 49 66 20 74 68 65 79 20 61 72 65 20 6e 6f 74 20 64 65 66 | .in.RFC6911..If.they.are.not.def |
| b6580 | 69 6e 65 64 20 69 6e 20 79 6f 75 72 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2c 20 61 64 64 20 | ined.in.your.RADIUS.server,.add. |
| b65a0 | 6e 65 77 20 64 69 63 74 69 6f 6e 61 72 79 5f 2e 00 60 60 57 4c 42 5f 49 4e 54 45 52 46 41 43 45 | new.dictionary_..``WLB_INTERFACE |
| b65c0 | 5f 4e 41 4d 45 3d 5b 69 6e 74 65 72 66 61 63 65 6e 61 6d 65 5d 60 60 3a 20 49 6e 74 65 72 66 61 | _NAME=[interfacename]``:.Interfa |
| b65e0 | 63 65 20 74 6f 20 62 65 20 6d 6f 6e 69 74 6f 72 65 64 00 60 60 57 4c 42 5f 49 4e 54 45 52 46 41 | ce.to.be.monitored.``WLB_INTERFA |
| b6600 | 43 45 5f 53 54 41 54 45 3d 5b 41 43 54 49 56 45 7c 46 41 49 4c 45 44 5d 60 60 3a 20 49 6e 74 65 | CE_STATE=[ACTIVE|FAILED]``:.Inte |
| b6620 | 72 66 61 63 65 20 73 74 61 74 65 00 60 60 61 60 60 20 2d 20 38 30 32 2e 31 31 61 20 2d 20 35 34 | rface.state.``a``.-.802.11a.-.54 |
| b6640 | 20 4d 62 69 74 73 2f 73 65 63 00 60 60 61 63 60 60 20 2d 20 38 30 32 2e 31 31 61 63 20 2d 20 31 | .Mbits/sec.``ac``.-.802.11ac.-.1 |
| b6660 | 33 30 30 20 4d 62 69 74 73 2f 73 65 63 00 60 60 61 63 63 65 70 74 2d 6f 77 6e 2d 6e 65 78 74 68 | 300.Mbits/sec.``accept-own-nexth |
| b6680 | 6f 70 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d | op``.-...........Well-known.comm |
| b66a0 | 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 61 63 63 65 70 74 2d 6f 77 6e 2d 6e 65 78 74 68 6f 70 | unities.value.accept-own-nexthop |
| b66c0 | 20 30 78 46 46 46 46 30 30 30 38 00 60 60 61 63 63 65 70 74 2d 6f 77 6e 60 60 20 2d 20 20 20 20 | .0xFFFF0008.``accept-own``.-.... |
| b66e0 | 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e | ...............Well-known.commun |
| b6700 | 69 74 69 65 73 20 76 61 6c 75 65 20 41 43 43 45 50 54 5f 4f 57 4e 20 30 78 46 46 46 46 30 30 30 | ities.value.ACCEPT_OWN.0xFFFF000 |
| b6720 | 31 00 60 60 61 63 63 65 70 74 60 60 3a 20 61 63 63 65 70 74 20 74 68 65 20 70 61 63 6b 65 74 2e | 1.``accept``:.accept.the.packet. |
| b6740 | 00 60 60 61 63 63 65 73 73 2d 70 6f 69 6e 74 60 60 20 2d 20 41 63 63 65 73 73 2d 70 6f 69 6e 74 | .``access-point``.-.Access-point |
| b6760 | 20 66 6f 72 77 61 72 64 73 20 70 61 63 6b 65 74 73 20 62 65 74 77 65 65 6e 20 6f 74 68 65 72 20 | .forwards.packets.between.other. |
| b6780 | 6e 6f 64 65 73 00 60 60 61 63 74 69 6f 6e 60 60 20 6b 65 65 70 2d 61 6c 69 76 65 20 66 61 69 6c | nodes.``action``.keep-alive.fail |
| b67a0 | 75 72 65 20 61 63 74 69 6f 6e 3a 00 60 60 61 63 74 69 76 65 2d 62 61 63 6b 75 70 60 60 20 2d 20 | ure.action:.``active-backup``.-. |
| b67c0 | 41 63 74 69 76 65 2d 62 61 63 6b 75 70 20 70 6f 6c 69 63 79 3a 20 4f 6e 6c 79 20 6f 6e 65 20 73 | Active-backup.policy:.Only.one.s |
| b67e0 | 6c 61 76 65 20 69 6e 20 74 68 65 20 62 6f 6e 64 20 69 73 20 61 63 74 69 76 65 2e 20 41 20 64 69 | lave.in.the.bond.is.active..A.di |
| b6800 | 66 66 65 72 65 6e 74 20 73 6c 61 76 65 20 62 65 63 6f 6d 65 73 20 61 63 74 69 76 65 20 69 66 2c | fferent.slave.becomes.active.if, |
| b6820 | 20 61 6e 64 20 6f 6e 6c 79 20 69 66 2c 20 74 68 65 20 61 63 74 69 76 65 20 73 6c 61 76 65 20 66 | .and.only.if,.the.active.slave.f |
| b6840 | 61 69 6c 73 2e 20 54 68 65 20 62 6f 6e 64 27 73 20 4d 41 43 20 61 64 64 72 65 73 73 20 69 73 20 | ails..The.bond's.MAC.address.is. |
| b6860 | 65 78 74 65 72 6e 61 6c 6c 79 20 76 69 73 69 62 6c 65 20 6f 6e 20 6f 6e 6c 79 20 6f 6e 65 20 70 | externally.visible.on.only.one.p |
| b6880 | 6f 72 74 20 28 6e 65 74 77 6f 72 6b 20 61 64 61 70 74 65 72 29 20 74 6f 20 61 76 6f 69 64 20 63 | ort.(network.adapter).to.avoid.c |
| b68a0 | 6f 6e 66 75 73 69 6e 67 20 74 68 65 20 73 77 69 74 63 68 2e 00 60 60 61 63 74 69 76 65 60 60 20 | onfusing.the.switch..``active``. |
| b68c0 | 54 68 69 73 20 69 73 20 74 68 65 20 6c 6f 77 2d 6c 65 76 65 6c 20 66 69 72 6d 77 61 72 65 20 63 | This.is.the.low-level.firmware.c |
| b68e0 | 6f 6e 74 72 6f 6c 20 6d 6f 64 65 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 70 72 6f 66 69 6c 65 | ontrol.mode.based.on.the.profile |
| b6900 | 20 73 65 74 20 61 6e 64 20 74 68 65 20 73 79 73 74 65 6d 20 67 6f 76 65 72 6e 6f 72 20 68 61 73 | .set.and.the.system.governor.has |
| b6920 | 20 6e 6f 20 65 66 66 65 63 74 2e 00 60 60 61 64 61 70 74 69 76 65 2d 6c 6f 61 64 2d 62 61 6c 61 | .no.effect..``adaptive-load-bala |
| b6940 | 6e 63 65 60 60 20 2d 20 41 64 61 70 74 69 76 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 3a | nce``.-.Adaptive.load.balancing: |
| b6960 | 20 69 6e 63 6c 75 64 65 73 20 74 72 61 6e 73 6d 69 74 2d 6c 6f 61 64 2d 62 61 6c 61 6e 63 65 20 | .includes.transmit-load-balance. |
| b6980 | 70 6c 75 73 20 72 65 63 65 69 76 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 66 6f 72 20 | plus.receive.load.balancing.for. |
| b69a0 | 49 50 56 34 20 74 72 61 66 66 69 63 2c 20 61 6e 64 20 64 6f 65 73 20 6e 6f 74 20 72 65 71 75 69 | IPV4.traffic,.and.does.not.requi |
| b69c0 | 72 65 20 61 6e 79 20 73 70 65 63 69 61 6c 20 73 77 69 74 63 68 20 73 75 70 70 6f 72 74 2e 20 54 | re.any.special.switch.support..T |
| b69e0 | 68 65 20 72 65 63 65 69 76 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 69 73 20 61 63 68 | he.receive.load.balancing.is.ach |
| b6a00 | 69 65 76 65 64 20 62 79 20 41 52 50 20 6e 65 67 6f 74 69 61 74 69 6f 6e 2e 20 54 68 65 20 62 6f | ieved.by.ARP.negotiation..The.bo |
| b6a20 | 6e 64 69 6e 67 20 64 72 69 76 65 72 20 69 6e 74 65 72 63 65 70 74 73 20 74 68 65 20 41 52 50 20 | nding.driver.intercepts.the.ARP. |
| b6a40 | 52 65 70 6c 69 65 73 20 73 65 6e 74 20 62 79 20 74 68 65 20 6c 6f 63 61 6c 20 73 79 73 74 65 6d | Replies.sent.by.the.local.system |
| b6a60 | 20 6f 6e 20 74 68 65 69 72 20 77 61 79 20 6f 75 74 20 61 6e 64 20 6f 76 65 72 77 72 69 74 65 73 | .on.their.way.out.and.overwrites |
| b6a80 | 20 74 68 65 20 73 6f 75 72 63 65 20 68 61 72 64 77 61 72 65 20 61 64 64 72 65 73 73 20 77 69 74 | .the.source.hardware.address.wit |
| b6aa0 | 68 20 74 68 65 20 75 6e 69 71 75 65 20 68 61 72 64 77 61 72 65 20 61 64 64 72 65 73 73 20 6f 66 | h.the.unique.hardware.address.of |
| b6ac0 | 20 6f 6e 65 20 6f 66 20 74 68 65 20 73 6c 61 76 65 73 20 69 6e 20 74 68 65 20 62 6f 6e 64 20 73 | .one.of.the.slaves.in.the.bond.s |
| b6ae0 | 75 63 68 20 74 68 61 74 20 64 69 66 66 65 72 65 6e 74 20 70 65 65 72 73 20 75 73 65 20 64 69 66 | uch.that.different.peers.use.dif |
| b6b00 | 66 65 72 65 6e 74 20 68 61 72 64 77 61 72 65 20 61 64 64 72 65 73 73 65 73 20 66 6f 72 20 74 68 | ferent.hardware.addresses.for.th |
| b6b20 | 65 20 73 65 72 76 65 72 2e 00 60 60 61 64 64 72 65 73 73 60 60 20 49 50 20 61 64 64 72 65 73 73 | e.server..``address``.IP.address |
| b6b40 | 20 6f 72 20 73 75 62 6e 65 74 2e 00 60 60 61 67 67 72 65 73 73 69 76 65 60 60 20 75 73 65 20 41 | .or.subnet..``aggressive``.use.A |
| b6b60 | 67 67 72 65 73 73 69 76 65 20 6d 6f 64 65 20 66 6f 72 20 4b 65 79 20 45 78 63 68 61 6e 67 65 73 | ggressive.mode.for.Key.Exchanges |
| b6b80 | 20 69 6e 20 74 68 65 20 49 4b 45 76 31 20 70 72 6f 74 6f 63 6f 6c 20 61 67 67 72 65 73 73 69 76 | .in.the.IKEv1.protocol.aggressiv |
| b6ba0 | 65 20 6d 6f 64 65 20 69 73 20 6d 75 63 68 20 6d 6f 72 65 20 69 6e 73 65 63 75 72 65 20 63 6f 6d | e.mode.is.much.more.insecure.com |
| b6bc0 | 70 61 72 65 64 20 74 6f 20 4d 61 69 6e 20 6d 6f 64 65 3b 00 60 60 61 6c 6c 2d 61 76 61 69 6c 61 | pared.to.Main.mode;.``all-availa |
| b6be0 | 62 6c 65 60 60 20 61 6c 6c 20 63 68 65 63 6b 69 6e 67 20 74 61 72 67 65 74 20 61 64 64 72 65 73 | ble``.all.checking.target.addres |
| b6c00 | 73 65 73 20 6d 75 73 74 20 62 65 20 61 76 61 69 6c 61 62 6c 65 20 74 6f 20 70 61 73 73 20 74 68 | ses.must.be.available.to.pass.th |
| b6c20 | 69 73 20 63 68 65 63 6b 00 60 60 61 6d 64 5f 70 73 74 61 74 65 3d 7b 6d 6f 64 65 7d 60 60 20 53 | is.check.``amd_pstate={mode}``.S |
| b6c40 | 65 74 73 20 74 68 65 20 70 2d 73 74 61 74 65 20 6d 6f 64 65 00 60 60 61 6e 79 2d 61 76 61 69 6c | ets.the.p-state.mode.``any-avail |
| b6c60 | 61 62 6c 65 60 60 20 61 6e 79 20 6f 66 20 74 68 65 20 63 68 65 63 6b 69 6e 67 20 74 61 72 67 65 | able``.any.of.the.checking.targe |
| b6c80 | 74 20 61 64 64 72 65 73 73 65 73 20 6d 75 73 74 20 62 65 20 61 76 61 69 6c 61 62 6c 65 20 74 6f | t.addresses.must.be.available.to |
| b6ca0 | 20 70 61 73 73 20 74 68 69 73 20 63 68 65 63 6b 00 60 60 61 6e 79 60 60 20 55 73 65 20 61 6e 79 | .pass.this.check.``any``.Use.any |
| b6cc0 | 20 61 73 20 72 65 63 6f 72 64 20 6e 61 6d 65 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 | .as.record.name.to.configure.the |
| b6ce0 | 20 72 65 63 6f 72 64 20 61 73 20 61 20 77 69 6c 64 63 61 72 64 2e 00 60 60 61 75 74 68 65 6e 74 | .record.as.a.wildcard..``authent |
| b6d00 | 69 63 61 74 69 6f 6e 20 6c 6f 63 61 6c 2d 69 64 2f 72 65 6d 6f 74 65 2d 69 64 60 60 20 2d 20 49 | ication.local-id/remote-id``.-.I |
| b6d20 | 4b 45 20 69 64 65 6e 74 69 66 69 63 61 74 69 6f 6e 20 69 73 20 75 73 65 64 20 66 6f 72 20 76 61 | KE.identification.is.used.for.va |
| b6d40 | 6c 69 64 61 74 69 6f 6e 20 6f 66 20 56 50 4e 20 70 65 65 72 20 64 65 76 69 63 65 73 20 64 75 72 | lidation.of.VPN.peer.devices.dur |
| b6d60 | 69 6e 67 20 49 4b 45 20 6e 65 67 6f 74 69 61 74 69 6f 6e 2e 20 49 66 20 79 6f 75 20 64 6f 20 6e | ing.IKE.negotiation..If.you.do.n |
| b6d80 | 6f 74 20 63 6f 6e 66 69 67 75 72 65 20 6c 6f 63 61 6c 2f 72 65 6d 6f 74 65 2d 69 64 65 6e 74 69 | ot.configure.local/remote-identi |
| b6da0 | 74 79 2c 20 74 68 65 20 64 65 76 69 63 65 20 75 73 65 73 20 74 68 65 20 49 50 76 34 20 6f 72 20 | ty,.the.device.uses.the.IPv4.or. |
| b6dc0 | 49 50 76 36 20 61 64 64 72 65 73 73 20 74 68 61 74 20 63 6f 72 72 65 73 70 6f 6e 64 73 20 74 6f | IPv6.address.that.corresponds.to |
| b6de0 | 20 74 68 65 20 6c 6f 63 61 6c 2f 72 65 6d 6f 74 65 20 70 65 65 72 20 62 79 20 64 65 66 61 75 6c | .the.local/remote.peer.by.defaul |
| b6e00 | 74 2e 20 49 6e 20 63 65 72 74 61 69 6e 20 6e 65 74 77 6f 72 6b 20 73 65 74 75 70 73 20 28 6c 69 | t..In.certain.network.setups.(li |
| b6e20 | 6b 65 20 69 70 73 65 63 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 64 79 6e 61 6d 69 63 20 | ke.ipsec.interface.with.dynamic. |
| b6e40 | 61 64 64 72 65 73 73 2c 20 6f 72 20 62 65 68 69 6e 64 20 74 68 65 20 4e 41 54 20 29 2c 20 74 68 | address,.or.behind.the.NAT.),.th |
| b6e60 | 65 20 49 4b 45 20 49 44 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 74 68 65 20 70 65 65 72 20 | e.IKE.ID.received.from.the.peer. |
| b6e80 | 64 6f 65 73 20 6e 6f 74 20 6d 61 74 63 68 20 74 68 65 20 49 4b 45 20 67 61 74 65 77 61 79 20 63 | does.not.match.the.IKE.gateway.c |
| b6ea0 | 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 74 68 65 20 64 65 76 69 63 65 2e 20 54 68 69 73 20 63 61 | onfigured.on.the.device..This.ca |
| b6ec0 | 6e 20 6c 65 61 64 20 74 6f 20 61 20 50 68 61 73 65 20 31 20 76 61 6c 69 64 61 74 69 6f 6e 20 66 | n.lead.to.a.Phase.1.validation.f |
| b6ee0 | 61 69 6c 75 72 65 2e 20 53 6f 2c 20 6d 61 6b 65 20 73 75 72 65 20 74 6f 20 63 6f 6e 66 69 67 75 | ailure..So,.make.sure.to.configu |
| b6f00 | 72 65 20 74 68 65 20 6c 6f 63 61 6c 2f 72 65 6d 6f 74 65 20 69 64 20 65 78 70 6c 69 63 69 74 6c | re.the.local/remote.id.explicitl |
| b6f20 | 79 20 61 6e 64 20 65 6e 73 75 72 65 20 74 68 61 74 20 74 68 65 20 49 4b 45 20 49 44 20 69 73 20 | y.and.ensure.that.the.IKE.ID.is. |
| b6f40 | 74 68 65 20 73 61 6d 65 20 61 73 20 74 68 65 20 72 65 6d 6f 74 65 2d 69 64 65 6e 74 69 74 79 20 | the.same.as.the.remote-identity. |
| b6f60 | 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 74 68 65 20 70 65 65 72 20 64 65 76 69 63 65 2e 00 60 | configured.on.the.peer.device..` |
| b6f80 | 60 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 60 60 20 2d 20 63 6f 6e 66 69 67 75 72 65 20 61 75 | `authentication``.-.configure.au |
| b6fa0 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 56 79 4f 53 20 61 6e 64 20 61 20 | thentication.between.VyOS.and.a. |
| b6fc0 | 72 65 6d 6f 74 65 20 70 65 65 72 2e 20 49 66 20 70 72 65 2d 73 68 61 72 65 64 2d 73 65 63 72 65 | remote.peer..If.pre-shared-secre |
| b6fe0 | 74 20 6d 6f 64 65 20 69 73 20 75 73 65 64 2c 20 74 68 65 20 73 65 63 72 65 74 20 6b 65 79 20 6d | t.mode.is.used,.the.secret.key.m |
| b7000 | 75 73 74 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 60 60 73 65 74 20 76 70 6e 20 69 70 73 65 | ust.be.defined.in.``set.vpn.ipse |
| b7020 | 63 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 60 60 20 61 6e 64 20 73 75 62 6f 70 74 69 6f 6e | c.authentication``.and.suboption |
| b7040 | 73 3a 00 60 60 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 60 60 20 2d 20 63 6f 6e 66 69 67 75 72 | s:.``authentication``.-.configur |
| b7060 | 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 56 79 4f 53 20 61 6e | e.authentication.between.VyOS.an |
| b7080 | 64 20 61 20 72 65 6d 6f 74 65 20 70 65 65 72 2e 20 53 75 62 6f 70 74 69 6f 6e 73 3a 00 60 60 61 | d.a.remote.peer..Suboptions:.``a |
| b70a0 | 78 60 60 20 2d 20 38 30 32 2e 31 31 61 78 20 2d 20 65 78 63 65 65 64 73 20 31 47 42 69 74 2f 73 | x``.-.802.11ax.-.exceeds.1GBit/s |
| b70c0 | 65 63 00 60 60 62 60 60 20 2d 20 38 30 32 2e 31 31 62 20 2d 20 31 31 20 4d 62 69 74 73 2f 73 65 | ec.``b``.-.802.11b.-.11.Mbits/se |
| b70e0 | 63 00 60 60 62 61 62 65 6c 60 60 20 2d 20 42 61 62 65 6c 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 | c.``babel``.-.Babel.routing.prot |
| b7100 | 6f 63 6f 6c 20 28 42 61 62 65 6c 29 00 60 60 62 65 67 69 6e 60 60 20 4d 61 74 63 68 65 73 20 74 | ocol.(Babel).``begin``.Matches.t |
| b7120 | 68 65 20 62 65 67 69 6e 6e 69 6e 67 20 6f 66 20 74 68 65 20 55 52 4c 20 70 61 74 68 00 60 60 62 | he.beginning.of.the.URL.path.``b |
| b7140 | 67 70 60 60 20 2d 20 42 6f 72 64 65 72 20 47 61 74 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c 20 28 | gp``.-.Border.Gateway.Protocol.( |
| b7160 | 42 47 50 29 00 60 60 62 69 6e 64 60 60 20 2d 20 73 65 6c 65 63 74 20 61 20 56 54 49 20 69 6e 74 | BGP).``bind``.-.select.a.VTI.int |
| b7180 | 65 72 66 61 63 65 20 74 6f 20 62 69 6e 64 20 74 6f 20 74 68 69 73 20 70 65 65 72 3b 00 60 60 62 | erface.to.bind.to.this.peer;.``b |
| b71a0 | 6c 61 63 6b 68 6f 6c 65 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 | lackhole``.-.................... |
| b71c0 | 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 42 4c 41 | Well-known.communities.value.BLA |
| b71e0 | 43 4b 48 4f 4c 45 20 30 78 46 46 46 46 30 32 39 41 00 60 60 62 72 6f 61 64 63 61 73 74 60 60 20 | CKHOLE.0xFFFF029A.``broadcast``. |
| b7200 | 2d 20 42 72 6f 61 64 63 61 73 74 20 70 6f 6c 69 63 79 3a 20 74 72 61 6e 73 6d 69 74 73 20 65 76 | -.Broadcast.policy:.transmits.ev |
| b7220 | 65 72 79 74 68 69 6e 67 20 6f 6e 20 61 6c 6c 20 73 6c 61 76 65 20 69 6e 74 65 72 66 61 63 65 73 | erything.on.all.slave.interfaces |
| b7240 | 2e 00 60 60 62 75 72 73 74 60 60 3a 20 4e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 61 | ..``burst``:.Number.of.packets.a |
| b7260 | 6c 6c 6f 77 65 64 20 74 6f 20 6f 76 65 72 73 68 6f 6f 74 20 74 68 65 20 6c 69 6d 69 74 20 77 69 | llowed.to.overshoot.the.limit.wi |
| b7280 | 74 68 69 6e 20 60 60 70 65 72 69 6f 64 60 60 2e 20 44 65 66 61 75 6c 74 20 35 2e 00 60 60 63 61 | thin.``period``..Default.5..``ca |
| b72a0 | 2d 63 65 72 74 2d 66 69 6c 65 60 60 20 2d 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 20 66 69 | -cert-file``.-.CA.certificate.fi |
| b72c0 | 6c 65 2e 20 55 73 69 6e 67 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 72 65 6d | le..Using.for.authenticating.rem |
| b72e0 | 6f 74 65 20 70 65 65 72 3b 00 60 60 63 61 2d 63 65 72 74 69 66 69 63 61 74 65 60 60 20 2d 20 43 | ote.peer;.``ca-certificate``.-.C |
| b7300 | 41 20 63 65 72 74 69 66 69 63 61 74 65 20 69 6e 20 50 4b 49 20 63 6f 6e 66 69 67 75 72 61 74 69 | A.certificate.in.PKI.configurati |
| b7320 | 6f 6e 2e 20 55 73 69 6e 67 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 72 65 6d | on..Using.for.authenticating.rem |
| b7340 | 6f 74 65 20 70 65 65 72 3b 00 60 60 63 64 70 60 60 20 2d 20 4c 69 73 74 65 6e 20 66 6f 72 20 43 | ote.peer;.``cdp``.-.Listen.for.C |
| b7360 | 44 50 20 66 6f 72 20 43 69 73 63 6f 20 72 6f 75 74 65 72 73 2f 73 77 69 74 63 68 65 73 00 60 60 | DP.for.Cisco.routers/switches.`` |
| b7380 | 63 65 72 74 2d 66 69 6c 65 60 60 20 2d 20 63 65 72 74 69 66 69 63 61 74 65 20 66 69 6c 65 2c 20 | cert-file``.-.certificate.file,. |
| b73a0 | 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 | which.will.be.used.for.authentic |
| b73c0 | 61 74 69 6e 67 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 6f 6e 20 72 65 6d 6f 74 65 20 70 65 65 | ating.local.router.on.remote.pee |
| b73e0 | 72 3b 00 60 60 63 65 72 74 69 66 69 63 61 74 65 60 60 20 2d 20 63 65 72 74 69 66 69 63 61 74 65 | r;.``certificate``.-.certificate |
| b7400 | 20 66 69 6c 65 20 69 6e 20 50 4b 49 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 77 68 69 63 | .file.in.PKI.configuration,.whic |
| b7420 | 68 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e | h.will.be.used.for.authenticatin |
| b7440 | 67 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 6f 6e 20 72 65 6d 6f 74 65 20 70 65 65 72 3b 00 60 | g.local.router.on.remote.peer;.` |
| b7460 | 60 63 6c 65 61 72 60 60 20 63 6c 6f 73 65 73 20 74 68 65 20 43 48 49 4c 44 5f 53 41 20 61 6e 64 | `clear``.closes.the.CHILD_SA.and |
| b7480 | 20 64 6f 65 73 20 6e 6f 74 20 74 61 6b 65 20 66 75 72 74 68 65 72 20 61 63 74 69 6f 6e 20 28 64 | .does.not.take.further.action.(d |
| b74a0 | 65 66 61 75 6c 74 29 3b 00 60 60 63 6c 65 61 72 60 60 20 73 65 74 20 61 63 74 69 6f 6e 20 74 6f | efault);.``clear``.set.action.to |
| b74c0 | 20 63 6c 65 61 72 3b 00 60 60 63 6c 6f 73 65 2d 61 63 74 69 6f 6e 20 3d 20 6e 6f 6e 65 20 7c 20 | .clear;.``close-action.=.none.|. |
| b74e0 | 63 6c 65 61 72 20 7c 20 68 6f 6c 64 20 7c 20 72 65 73 74 61 72 74 60 60 20 2d 20 64 65 66 69 6e | clear.|.hold.|.restart``.-.defin |
| b7500 | 65 73 20 74 68 65 20 61 63 74 69 6f 6e 20 74 6f 20 74 61 6b 65 20 69 66 20 74 68 65 20 72 65 6d | es.the.action.to.take.if.the.rem |
| b7520 | 6f 74 65 20 70 65 65 72 20 75 6e 65 78 70 65 63 74 65 64 6c 79 20 63 6c 6f 73 65 73 20 61 20 43 | ote.peer.unexpectedly.closes.a.C |
| b7540 | 48 49 4c 44 5f 53 41 20 28 73 65 65 20 61 62 6f 76 65 20 66 6f 72 20 6d 65 61 6e 69 6e 67 20 6f | HILD_SA.(see.above.for.meaning.o |
| b7560 | 66 20 76 61 6c 75 65 73 29 2e 20 41 20 63 6c 6f 73 65 61 63 74 69 6f 6e 20 73 68 6f 75 6c 64 20 | f.values)..A.closeaction.should. |
| b7580 | 6e 6f 74 20 62 65 20 75 73 65 64 20 69 66 20 74 68 65 20 70 65 65 72 20 75 73 65 73 20 72 65 61 | not.be.used.if.the.peer.uses.rea |
| b75a0 | 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f 72 20 75 6e 69 71 75 65 69 64 73 2e 00 60 60 63 6c | uthentication.or.uniqueids..``cl |
| b75c0 | 6f 73 65 2d 61 63 74 69 6f 6e 20 3d 20 6e 6f 6e 65 20 7c 20 63 6c 65 61 72 20 7c 20 74 72 61 70 | ose-action.=.none.|.clear.|.trap |
| b75e0 | 20 7c 20 73 74 61 72 74 60 60 20 2d 20 64 65 66 69 6e 65 73 20 74 68 65 20 61 63 74 69 6f 6e 20 | .|.start``.-.defines.the.action. |
| b7600 | 74 6f 20 74 61 6b 65 20 69 66 20 74 68 65 20 72 65 6d 6f 74 65 20 70 65 65 72 20 75 6e 65 78 70 | to.take.if.the.remote.peer.unexp |
| b7620 | 65 63 74 65 64 6c 79 20 63 6c 6f 73 65 73 20 61 20 43 48 49 4c 44 5f 53 41 20 28 73 65 65 20 61 | ectedly.closes.a.CHILD_SA.(see.a |
| b7640 | 62 6f 76 65 20 66 6f 72 20 6d 65 61 6e 69 6e 67 20 6f 66 20 76 61 6c 75 65 73 29 2e 20 41 20 63 | bove.for.meaning.of.values)..A.c |
| b7660 | 6c 6f 73 65 61 63 74 69 6f 6e 20 73 68 6f 75 6c 64 20 6e 6f 74 20 62 65 20 75 73 65 64 20 69 66 | loseaction.should.not.be.used.if |
| b7680 | 20 74 68 65 20 70 65 65 72 20 75 73 65 73 20 72 65 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 | .the.peer.uses.reauthentication. |
| b76a0 | 6f 72 20 75 6e 69 71 75 65 69 64 73 2e 00 60 60 63 6c 6f 73 65 2d 61 63 74 69 6f 6e 60 60 20 64 | or.uniqueids..``close-action``.d |
| b76c0 | 65 66 69 6e 65 73 20 74 68 65 20 61 63 74 69 6f 6e 20 74 6f 20 74 61 6b 65 20 69 66 20 74 68 65 | efines.the.action.to.take.if.the |
| b76e0 | 20 72 65 6d 6f 74 65 20 70 65 65 72 20 75 6e 65 78 70 65 63 74 65 64 6c 79 20 63 6c 6f 73 65 73 | .remote.peer.unexpectedly.closes |
| b7700 | 20 61 20 43 48 49 4c 44 5f 53 41 3a 00 60 60 63 6f 6d 70 72 65 73 73 69 6f 6e 60 60 20 20 45 6e | .a.CHILD_SA:.``compression``..En |
| b7720 | 61 62 6c 65 73 20 74 68 65 20 20 49 50 43 6f 6d 70 28 49 50 20 50 61 79 6c 6f 61 64 20 43 6f 6d | ables.the..IPComp(IP.Payload.Com |
| b7740 | 70 72 65 73 73 69 6f 6e 29 20 70 72 6f 74 6f 63 6f 6c 20 77 68 69 63 68 20 61 6c 6c 6f 77 73 20 | pression).protocol.which.allows. |
| b7760 | 63 6f 6d 70 72 65 73 73 69 6e 67 20 74 68 65 20 63 6f 6e 74 65 6e 74 20 6f 66 20 49 50 20 70 61 | compressing.the.content.of.IP.pa |
| b7780 | 63 6b 65 74 73 2e 00 60 60 63 6f 6d 70 72 65 73 73 69 6f 6e 60 60 20 77 68 65 74 68 65 72 20 49 | ckets..``compression``.whether.I |
| b77a0 | 50 43 6f 6d 70 20 63 6f 6d 70 72 65 73 73 69 6f 6e 20 6f 66 20 63 6f 6e 74 65 6e 74 20 69 73 20 | PComp.compression.of.content.is. |
| b77c0 | 70 72 6f 70 6f 73 65 64 20 6f 6e 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 3a 00 60 60 63 6f | proposed.on.the.connection:.``co |
| b77e0 | 6e 6e 65 63 74 65 64 60 60 20 2d 20 43 6f 6e 6e 65 63 74 65 64 20 72 6f 75 74 65 73 20 28 64 69 | nnected``.-.Connected.routes.(di |
| b7800 | 72 65 63 74 6c 79 20 61 74 74 61 63 68 65 64 20 73 75 62 6e 65 74 20 6f 72 20 68 6f 73 74 29 00 | rectly.attached.subnet.or.host). |
| b7820 | 60 60 63 6f 6e 6e 65 63 74 69 6f 6e 2d 74 79 70 65 60 60 20 2d 20 68 6f 77 20 74 6f 20 68 61 6e | ``connection-type``.-.how.to.han |
| b7840 | 64 6c 65 20 74 68 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 70 72 6f 63 65 73 73 2e 20 50 6f 73 | dle.this.connection.process..Pos |
| b7860 | 73 69 62 6c 65 20 76 61 72 69 61 6e 74 73 3a 00 60 60 63 6f 6e 74 69 6e 75 65 60 60 3a 20 63 6f | sible.variants:.``continue``:.co |
| b7880 | 6e 74 69 6e 75 65 20 70 61 72 73 69 6e 67 20 6e 65 78 74 20 72 75 6c 65 2e 00 60 60 63 72 6c 2d | ntinue.parsing.next.rule..``crl- |
| b78a0 | 66 69 6c 65 60 60 20 2d 20 66 69 6c 65 20 77 69 74 68 20 74 68 65 20 43 65 72 74 69 66 69 63 61 | file``.-.file.with.the.Certifica |
| b78c0 | 74 65 20 52 65 76 6f 63 61 74 69 6f 6e 20 4c 69 73 74 2e 20 55 73 69 6e 67 20 74 6f 20 63 68 65 | te.Revocation.List..Using.to.che |
| b78e0 | 63 6b 20 69 66 20 61 20 63 65 72 74 69 66 69 63 61 74 65 20 66 6f 72 20 74 68 65 20 72 65 6d 6f | ck.if.a.certificate.for.the.remo |
| b7900 | 74 65 20 70 65 65 72 20 69 73 20 76 61 6c 69 64 20 6f 72 20 72 65 76 6f 6b 65 64 3b 00 60 60 64 | te.peer.is.valid.or.revoked;.``d |
| b7920 | 60 60 20 2d 20 45 78 65 63 75 74 69 6f 6e 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 64 61 79 73 00 | ``.-.Execution.interval.in.days. |
| b7940 | 60 60 64 65 61 64 2d 70 65 65 72 2d 64 65 74 65 63 74 69 6f 6e 20 61 63 74 69 6f 6e 20 3d 20 63 | ``dead-peer-detection.action.=.c |
| b7960 | 6c 65 61 72 20 7c 20 68 6f 6c 64 20 7c 20 72 65 73 74 61 72 74 60 60 20 2d 20 52 5f 55 5f 54 48 | lear.|.hold.|.restart``.-.R_U_TH |
| b7980 | 45 52 45 20 6e 6f 74 69 66 69 63 61 74 69 6f 6e 20 6d 65 73 73 61 67 65 73 28 49 4b 45 76 31 29 | ERE.notification.messages(IKEv1) |
| b79a0 | 20 6f 72 20 65 6d 70 74 79 20 49 4e 46 4f 52 4d 41 54 49 4f 4e 41 4c 20 6d 65 73 73 61 67 65 73 | .or.empty.INFORMATIONAL.messages |
| b79c0 | 20 28 49 4b 45 76 32 29 20 61 72 65 20 70 65 72 69 6f 64 69 63 61 6c 6c 79 20 73 65 6e 74 20 69 | .(IKEv2).are.periodically.sent.i |
| b79e0 | 6e 20 6f 72 64 65 72 20 74 6f 20 63 68 65 63 6b 20 74 68 65 20 6c 69 76 65 6c 69 6e 65 73 73 20 | n.order.to.check.the.liveliness. |
| b7a00 | 6f 66 20 74 68 65 20 49 50 73 65 63 20 70 65 65 72 2e 20 54 68 65 20 76 61 6c 75 65 73 20 63 6c | of.the.IPsec.peer..The.values.cl |
| b7a20 | 65 61 72 2c 20 68 6f 6c 64 2c 20 61 6e 64 20 72 65 73 74 61 72 74 20 61 6c 6c 20 61 63 74 69 76 | ear,.hold,.and.restart.all.activ |
| b7a40 | 61 74 65 20 44 50 44 20 61 6e 64 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 61 63 74 69 6f 6e | ate.DPD.and.determine.the.action |
| b7a60 | 20 74 6f 20 70 65 72 66 6f 72 6d 20 6f 6e 20 61 20 74 69 6d 65 6f 75 74 2e 20 57 69 74 68 20 60 | .to.perform.on.a.timeout..With.` |
| b7a80 | 60 63 6c 65 61 72 60 60 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 63 6c 6f 73 65 | `clear``.the.connection.is.close |
| b7aa0 | 64 20 77 69 74 68 20 6e 6f 20 66 75 72 74 68 65 72 20 61 63 74 69 6f 6e 73 20 74 61 6b 65 6e 2e | d.with.no.further.actions.taken. |
| b7ac0 | 20 60 60 68 6f 6c 64 60 60 20 69 6e 73 74 61 6c 6c 73 20 61 20 74 72 61 70 20 70 6f 6c 69 63 79 | .``hold``.installs.a.trap.policy |
| b7ae0 | 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 63 61 74 63 68 20 6d 61 74 63 68 69 6e 67 20 74 72 61 66 | ,.which.will.catch.matching.traf |
| b7b00 | 66 69 63 20 61 6e 64 20 74 72 69 65 73 20 74 6f 20 72 65 2d 6e 65 67 6f 74 69 61 74 65 20 74 68 | fic.and.tries.to.re-negotiate.th |
| b7b20 | 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 6e 20 64 65 6d 61 6e 64 2e 20 60 60 72 65 73 74 61 72 | e.connection.on.demand..``restar |
| b7b40 | 74 60 60 20 77 69 6c 6c 20 69 6d 6d 65 64 69 61 74 65 6c 79 20 74 72 69 67 67 65 72 20 61 6e 20 | t``.will.immediately.trigger.an. |
| b7b60 | 61 74 74 65 6d 70 74 20 74 6f 20 72 65 2d 6e 65 67 6f 74 69 61 74 65 20 74 68 65 20 63 6f 6e 6e | attempt.to.re-negotiate.the.conn |
| b7b80 | 65 63 74 69 6f 6e 2e 00 60 60 64 65 61 64 2d 70 65 65 72 2d 64 65 74 65 63 74 69 6f 6e 20 61 63 | ection..``dead-peer-detection.ac |
| b7ba0 | 74 69 6f 6e 20 3d 20 63 6c 65 61 72 20 7c 20 74 72 61 70 20 7c 20 72 65 73 74 61 72 74 60 60 20 | tion.=.clear.|.trap.|.restart``. |
| b7bc0 | 2d 20 52 5f 55 5f 54 48 45 52 45 20 6e 6f 74 69 66 69 63 61 74 69 6f 6e 20 6d 65 73 73 61 67 65 | -.R_U_THERE.notification.message |
| b7be0 | 73 28 49 4b 45 76 31 29 20 6f 72 20 65 6d 70 74 79 20 49 4e 46 4f 52 4d 41 54 49 4f 4e 41 4c 20 | s(IKEv1).or.empty.INFORMATIONAL. |
| b7c00 | 6d 65 73 73 61 67 65 73 20 28 49 4b 45 76 32 29 20 61 72 65 20 70 65 72 69 6f 64 69 63 61 6c 6c | messages.(IKEv2).are.periodicall |
| b7c20 | 79 20 73 65 6e 74 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 63 68 65 63 6b 20 74 68 65 20 6c 69 76 | y.sent.in.order.to.check.the.liv |
| b7c40 | 65 6c 69 6e 65 73 73 20 6f 66 20 74 68 65 20 49 50 73 65 63 20 70 65 65 72 2e 20 54 68 65 20 76 | eliness.of.the.IPsec.peer..The.v |
| b7c60 | 61 6c 75 65 73 20 63 6c 65 61 72 2c 20 74 72 61 70 2c 20 61 6e 64 20 72 65 73 74 61 72 74 20 61 | alues.clear,.trap,.and.restart.a |
| b7c80 | 6c 6c 20 61 63 74 69 76 61 74 65 20 44 50 44 20 61 6e 64 20 64 65 74 65 72 6d 69 6e 65 20 74 68 | ll.activate.DPD.and.determine.th |
| b7ca0 | 65 20 61 63 74 69 6f 6e 20 74 6f 20 70 65 72 66 6f 72 6d 20 6f 6e 20 61 20 74 69 6d 65 6f 75 74 | e.action.to.perform.on.a.timeout |
| b7cc0 | 2e 20 57 69 74 68 20 60 60 63 6c 65 61 72 60 60 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 | ..With.``clear``.the.connection. |
| b7ce0 | 69 73 20 63 6c 6f 73 65 64 20 77 69 74 68 20 6e 6f 20 66 75 72 74 68 65 72 20 61 63 74 69 6f 6e | is.closed.with.no.further.action |
| b7d00 | 73 20 74 61 6b 65 6e 2e 20 60 60 74 72 61 70 60 60 20 69 6e 73 74 61 6c 6c 73 20 61 20 74 72 61 | s.taken..``trap``.installs.a.tra |
| b7d20 | 70 20 70 6f 6c 69 63 79 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 63 61 74 63 68 20 6d 61 74 63 68 | p.policy,.which.will.catch.match |
| b7d40 | 69 6e 67 20 74 72 61 66 66 69 63 20 61 6e 64 20 74 72 69 65 73 20 74 6f 20 72 65 2d 6e 65 67 6f | ing.traffic.and.tries.to.re-nego |
| b7d60 | 74 69 61 74 65 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 6e 20 64 65 6d 61 6e 64 2e 20 | tiate.the.connection.on.demand.. |
| b7d80 | 60 60 72 65 73 74 61 72 74 60 60 20 77 69 6c 6c 20 69 6d 6d 65 64 69 61 74 65 6c 79 20 74 72 69 | ``restart``.will.immediately.tri |
| b7da0 | 67 67 65 72 20 61 6e 20 61 74 74 65 6d 70 74 20 74 6f 20 72 65 2d 6e 65 67 6f 74 69 61 74 65 20 | gger.an.attempt.to.re-negotiate. |
| b7dc0 | 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 60 60 64 65 61 64 2d 70 65 65 72 2d 64 65 74 65 | the.connection..``dead-peer-dete |
| b7de0 | 63 74 69 6f 6e 60 60 20 63 6f 6e 74 72 6f 6c 73 20 74 68 65 20 75 73 65 20 6f 66 20 74 68 65 20 | ction``.controls.the.use.of.the. |
| b7e00 | 44 65 61 64 20 50 65 65 72 20 44 65 74 65 63 74 69 6f 6e 20 70 72 6f 74 6f 63 6f 6c 20 28 44 50 | Dead.Peer.Detection.protocol.(DP |
| b7e20 | 44 2c 20 52 46 43 20 33 37 30 36 29 20 77 68 65 72 65 20 52 5f 55 5f 54 48 45 52 45 20 6e 6f 74 | D,.RFC.3706).where.R_U_THERE.not |
| b7e40 | 69 66 69 63 61 74 69 6f 6e 20 6d 65 73 73 61 67 65 73 20 28 49 4b 45 76 31 29 20 6f 72 20 65 6d | ification.messages.(IKEv1).or.em |
| b7e60 | 70 74 79 20 49 4e 46 4f 52 4d 41 54 49 4f 4e 41 4c 20 6d 65 73 73 61 67 65 73 20 28 49 4b 45 76 | pty.INFORMATIONAL.messages.(IKEv |
| b7e80 | 32 29 20 61 72 65 20 70 65 72 69 6f 64 69 63 61 6c 6c 79 20 73 65 6e 74 20 69 6e 20 6f 72 64 65 | 2).are.periodically.sent.in.orde |
| b7ea0 | 72 20 74 6f 20 63 68 65 63 6b 20 74 68 65 20 6c 69 76 65 6c 69 6e 65 73 73 20 6f 66 20 74 68 65 | r.to.check.the.liveliness.of.the |
| b7ec0 | 20 49 50 73 65 63 20 70 65 65 72 3a 00 60 60 64 65 66 61 75 6c 74 2d 65 73 70 2d 67 72 6f 75 70 | .IPsec.peer:.``default-esp-group |
| b7ee0 | 60 60 20 2d 20 45 53 50 20 67 72 6f 75 70 20 74 6f 20 75 73 65 20 62 79 20 64 65 66 61 75 6c 74 | ``.-.ESP.group.to.use.by.default |
| b7f00 | 20 66 6f 72 20 74 72 61 66 66 69 63 20 65 6e 63 72 79 70 74 69 6f 6e 2e 20 4d 69 67 68 74 20 62 | .for.traffic.encryption..Might.b |
| b7f20 | 65 20 6f 76 65 72 77 72 69 74 74 65 6e 20 62 79 20 69 6e 64 69 76 69 64 75 61 6c 20 73 65 74 74 | e.overwritten.by.individual.sett |
| b7f40 | 69 6e 67 73 20 66 6f 72 20 74 75 6e 6e 65 6c 20 6f 72 20 56 54 49 20 69 6e 74 65 72 66 61 63 65 | ings.for.tunnel.or.VTI.interface |
| b7f60 | 20 62 69 6e 64 69 6e 67 3b 00 60 60 64 65 73 63 72 69 70 74 69 6f 6e 60 60 20 2d 20 64 65 73 63 | .binding;.``description``.-.desc |
| b7f80 | 72 69 70 74 69 6f 6e 20 66 6f 72 20 74 68 69 73 20 70 65 65 72 3b 00 60 60 64 68 2d 67 72 6f 75 | ription.for.this.peer;.``dh-grou |
| b7fa0 | 70 60 60 20 64 68 2d 67 72 6f 75 70 3b 00 60 60 64 68 63 70 2d 69 6e 74 65 72 66 61 63 65 60 60 | p``.dh-group;.``dhcp-interface`` |
| b7fc0 | 20 2d 20 49 44 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 67 65 6e 65 72 61 74 | .-.ID.for.authentication.generat |
| b7fe0 | 65 64 20 66 72 6f 6d 20 44 48 43 50 20 61 64 64 72 65 73 73 20 64 79 6e 61 6d 69 63 61 6c 6c 79 | ed.from.DHCP.address.dynamically |
| b8000 | 3b 00 60 60 64 68 63 70 2d 69 6e 74 65 72 66 61 63 65 60 60 20 2d 20 75 73 65 20 61 6e 20 49 50 | ;.``dhcp-interface``.-.use.an.IP |
| b8020 | 20 61 64 64 72 65 73 73 2c 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 44 48 43 50 20 66 6f 72 | .address,.received.from.DHCP.for |
| b8040 | 20 49 50 53 65 63 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 68 20 74 68 69 73 20 70 65 65 72 | .IPSec.connection.with.this.peer |
| b8060 | 2c 20 69 6e 73 74 65 61 64 20 6f 66 20 60 60 6c 6f 63 61 6c 2d 61 64 64 72 65 73 73 60 60 3b 00 | ,.instead.of.``local-address``;. |
| b8080 | 60 60 64 69 73 61 62 6c 65 2d 6d 6f 62 69 6b 65 60 60 20 64 69 73 61 62 6c 65 73 20 4d 4f 42 49 | ``disable-mobike``.disables.MOBI |
| b80a0 | 4b 45 20 53 75 70 70 6f 72 74 2e 20 4d 4f 42 49 4b 45 20 69 73 20 6f 6e 6c 79 20 61 76 61 69 6c | KE.Support..MOBIKE.is.only.avail |
| b80c0 | 61 62 6c 65 20 66 6f 72 20 49 4b 45 76 32 20 61 6e 64 20 65 6e 61 62 6c 65 64 20 62 79 20 64 65 | able.for.IKEv2.and.enabled.by.de |
| b80e0 | 66 61 75 6c 74 2e 00 60 60 64 69 73 61 62 6c 65 2d 72 65 6b 65 79 60 60 20 44 6f 20 6e 6f 74 20 | fault..``disable-rekey``.Do.not. |
| b8100 | 6c 6f 63 61 6c 6c 79 20 69 6e 69 74 69 61 74 65 20 61 20 72 65 2d 6b 65 79 20 6f 66 20 74 68 65 | locally.initiate.a.re-key.of.the |
| b8120 | 20 53 41 2c 20 72 65 6d 6f 74 65 20 70 65 65 72 20 6d 75 73 74 20 72 65 2d 6b 65 79 20 62 65 66 | .SA,.remote.peer.must.re-key.bef |
| b8140 | 6f 72 65 20 65 78 70 69 72 61 74 69 6f 6e 2e 00 60 60 64 69 73 61 62 6c 65 2d 72 6f 75 74 65 2d | ore.expiration..``disable-route- |
| b8160 | 61 75 74 6f 69 6e 73 74 61 6c 6c 60 60 20 2d 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 77 68 65 6e | autoinstall``.-.This.option.when |
| b8180 | 20 63 6f 6e 66 69 67 75 72 65 64 20 64 69 73 61 62 6c 65 73 20 74 68 65 20 72 6f 75 74 65 73 20 | .configured.disables.the.routes. |
| b81a0 | 69 6e 73 74 61 6c 6c 65 64 20 69 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 74 61 62 6c 65 20 32 | installed.in.the.default.table.2 |
| b81c0 | 32 30 20 66 6f 72 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 69 70 73 65 63 2e 20 49 74 20 69 73 | 20.for.site-to-site.ipsec..It.is |
| b81e0 | 20 6d 6f 73 74 6c 79 20 75 73 65 64 20 77 69 74 68 20 56 54 49 20 63 6f 6e 66 69 67 75 72 61 74 | .mostly.used.with.VTI.configurat |
| b8200 | 69 6f 6e 2e 00 60 60 64 69 73 61 62 6c 65 2d 72 6f 75 74 65 2d 61 75 74 6f 69 6e 73 74 61 6c 6c | ion..``disable-route-autoinstall |
| b8220 | 60 60 20 44 6f 20 6e 6f 74 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 69 6e 73 74 61 6c 6c 20 | ``.Do.not.automatically.install. |
| b8240 | 72 6f 75 74 65 73 20 74 6f 20 72 65 6d 6f 74 65 00 60 60 64 69 73 61 62 6c 65 2d 72 6f 75 74 65 | routes.to.remote.``disable-route |
| b8260 | 2d 61 75 74 6f 69 6e 73 74 61 6c 6c 60 60 20 44 6f 20 6e 6f 74 20 61 75 74 6f 6d 61 74 69 63 61 | -autoinstall``.Do.not.automatica |
| b8280 | 6c 6c 79 20 69 6e 73 74 61 6c 6c 20 72 6f 75 74 65 73 20 74 6f 20 72 65 6d 6f 74 65 20 6e 65 74 | lly.install.routes.to.remote.net |
| b82a0 | 77 6f 72 6b 73 3b 00 60 60 64 69 73 61 62 6c 65 60 60 20 2d 20 64 69 73 61 62 6c 65 20 74 68 69 | works;.``disable``.-.disable.thi |
| b82c0 | 73 20 74 75 6e 6e 65 6c 3b 00 60 60 64 69 73 61 62 6c 65 60 60 20 44 69 73 61 62 6c 65 20 50 46 | s.tunnel;.``disable``.Disable.PF |
| b82e0 | 53 3b 00 60 60 64 69 73 61 62 6c 65 60 60 20 64 69 73 61 62 6c 65 20 49 50 43 6f 6d 70 20 63 6f | S;.``disable``.disable.IPComp.co |
| b8300 | 6d 70 72 65 73 73 69 6f 6e 20 28 64 65 66 61 75 6c 74 29 3b 00 60 60 64 69 73 61 62 6c 65 60 60 | mpression.(default);.``disable`` |
| b8320 | 20 64 69 73 61 62 6c 65 20 4d 4f 42 49 4b 45 3b 00 60 60 64 72 6f 70 60 60 3a 20 64 72 6f 70 20 | .disable.MOBIKE;.``drop``:.drop. |
| b8340 | 74 68 65 20 70 61 63 6b 65 74 2e 00 60 60 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 32 35 | the.packet..``ecdsa-sha2-nistp25 |
| b8360 | 36 60 60 00 60 60 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 33 38 34 60 60 00 60 60 65 63 | 6``.``ecdsa-sha2-nistp384``.``ec |
| b8380 | 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 35 32 31 60 60 00 60 60 65 64 70 60 60 20 2d 20 4c 69 | dsa-sha2-nistp521``.``edp``.-.Li |
| b83a0 | 73 74 65 6e 20 66 6f 72 20 45 44 50 20 66 6f 72 20 45 78 74 72 65 6d 65 20 72 6f 75 74 65 72 73 | sten.for.EDP.for.Extreme.routers |
| b83c0 | 2f 73 77 69 74 63 68 65 73 00 60 60 65 6e 61 62 6c 65 60 60 20 49 6e 68 65 72 69 74 20 44 69 66 | /switches.``enable``.Inherit.Dif |
| b83e0 | 66 69 65 2d 48 65 6c 6c 6d 61 6e 20 67 72 6f 75 70 20 66 72 6f 6d 20 49 4b 45 20 67 72 6f 75 70 | fie-Hellman.group.from.IKE.group |
| b8400 | 20 28 64 65 66 61 75 6c 74 29 3b 00 60 60 65 6e 61 62 6c 65 60 60 20 65 6e 61 62 6c 65 20 49 50 | .(default);.``enable``.enable.IP |
| b8420 | 43 6f 6d 70 20 63 6f 6d 70 72 65 73 73 69 6f 6e 3b 00 60 60 65 6e 61 62 6c 65 60 60 20 65 6e 61 | Comp.compression;.``enable``.ena |
| b8440 | 62 6c 65 20 4d 4f 42 49 4b 45 20 28 64 65 66 61 75 6c 74 20 66 6f 72 20 49 4b 45 76 32 29 3b 00 | ble.MOBIKE.(default.for.IKEv2);. |
| b8460 | 60 60 65 6e 63 72 79 70 74 69 6f 6e 60 60 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6c 67 6f 72 69 | ``encryption``.encryption.algori |
| b8480 | 74 68 6d 20 28 64 65 66 61 75 6c 74 20 31 32 38 20 62 69 74 20 41 45 53 2d 43 42 43 29 3b 00 60 | thm.(default.128.bit.AES-CBC);.` |
| b84a0 | 60 65 6e 63 72 79 70 74 69 6f 6e 60 60 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6c 67 6f 72 69 74 | `encryption``.encryption.algorit |
| b84c0 | 68 6d 3b 00 60 60 65 6e 64 60 60 20 4d 61 74 63 68 65 73 20 74 68 65 20 65 6e 64 20 6f 66 20 74 | hm;.``end``.Matches.the.end.of.t |
| b84e0 | 68 65 20 55 52 4c 20 70 61 74 68 2e 00 60 60 65 73 70 2d 67 72 6f 75 70 60 60 20 2d 20 64 65 66 | he.URL.path..``esp-group``.-.def |
| b8500 | 69 6e 65 20 45 53 50 20 67 72 6f 75 70 20 66 6f 72 20 65 6e 63 72 79 70 74 20 74 72 61 66 66 69 | ine.ESP.group.for.encrypt.traffi |
| b8520 | 63 2c 20 64 65 66 69 6e 65 64 20 62 79 20 74 68 69 73 20 74 75 6e 6e 65 6c 3b 00 60 60 65 73 70 | c,.defined.by.this.tunnel;.``esp |
| b8540 | 2d 67 72 6f 75 70 60 60 20 2d 20 64 65 66 69 6e 65 20 45 53 50 20 67 72 6f 75 70 20 66 6f 72 20 | -group``.-.define.ESP.group.for. |
| b8560 | 65 6e 63 72 79 70 74 20 74 72 61 66 66 69 63 2c 20 70 61 73 73 65 64 20 74 68 69 73 20 56 54 49 | encrypt.traffic,.passed.this.VTI |
| b8580 | 20 69 6e 74 65 72 66 61 63 65 2e 00 60 60 65 78 61 63 74 60 60 20 52 65 71 75 69 72 65 73 20 61 | .interface..``exact``.Requires.a |
| b85a0 | 6e 20 65 78 61 63 74 6c 79 20 6d 61 74 63 68 20 6f 66 20 74 68 65 20 55 52 4c 20 70 61 74 68 00 | n.exactly.match.of.the.URL.path. |
| b85c0 | 60 60 66 64 70 60 60 20 2d 20 4c 69 73 74 65 6e 20 66 6f 72 20 46 44 50 20 66 6f 72 20 46 6f 75 | ``fdp``.-.Listen.for.FDP.for.Fou |
| b85e0 | 6e 64 72 79 20 72 6f 75 74 65 72 73 2f 73 77 69 74 63 68 65 73 00 60 60 66 69 6c 65 60 60 20 2d | ndry.routers/switches.``file``.- |
| b8600 | 20 70 61 74 68 20 74 6f 20 74 68 65 20 6b 65 79 20 66 69 6c 65 3b 00 60 60 66 69 6c 65 6e 61 6d | .path.to.the.key.file;.``filenam |
| b8620 | 65 60 60 20 20 4c 6f 67 20 66 69 6c 65 20 28 64 65 66 61 75 6c 74 3a 20 65 76 65 2e 6a 73 6f 6e | e``..Log.file.(default:.eve.json |
| b8640 | 29 2e 00 60 60 66 69 6c 65 74 79 70 65 60 60 20 20 45 56 45 20 6c 6f 67 67 69 6e 67 20 64 65 73 | )..``filetype``..EVE.logging.des |
| b8660 | 74 69 6e 61 74 69 6f 6e 20 28 64 65 66 61 75 6c 74 3a 20 72 65 67 75 6c 61 72 29 2e 00 60 60 66 | tination.(default:.regular)..``f |
| b8680 | 6c 65 78 76 70 6e 60 60 20 41 6c 6c 6f 77 20 46 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 | lexvpn``.Allow.FlexVPN.vendor.ID |
| b86a0 | 20 70 61 79 6c 6f 61 64 20 28 49 4b 45 76 32 20 6f 6e 6c 79 29 2e 20 53 65 6e 64 20 74 68 65 20 | .payload.(IKEv2.only)..Send.the. |
| b86c0 | 43 69 73 63 6f 20 46 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 70 61 79 6c 6f 61 64 20 | Cisco.FlexVPN.vendor.ID.payload. |
| b86e0 | 28 49 4b 45 76 32 20 6f 6e 6c 79 29 2c 20 77 68 69 63 68 20 69 73 20 72 65 71 75 69 72 65 64 20 | (IKEv2.only),.which.is.required. |
| b8700 | 69 6e 20 6f 72 64 65 72 20 74 6f 20 6d 61 6b 65 20 43 69 73 63 6f 20 62 72 61 6e 64 20 64 65 76 | in.order.to.make.Cisco.brand.dev |
| b8720 | 69 63 65 73 20 61 6c 6c 6f 77 20 6e 65 67 6f 74 69 61 74 69 6e 67 20 61 20 6c 6f 63 61 6c 20 74 | ices.allow.negotiating.a.local.t |
| b8740 | 72 61 66 66 69 63 20 73 65 6c 65 63 74 6f 72 20 28 66 72 6f 6d 20 73 74 72 6f 6e 67 53 77 61 6e | raffic.selector.(from.strongSwan |
| b8760 | 27 73 20 70 6f 69 6e 74 20 6f 66 20 76 69 65 77 29 20 74 68 61 74 20 69 73 20 6e 6f 74 20 74 68 | 's.point.of.view).that.is.not.th |
| b8780 | 65 20 61 73 73 69 67 6e 65 64 20 76 69 72 74 75 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 69 66 | e.assigned.virtual.IP.address.if |
| b87a0 | 20 73 75 63 68 20 61 6e 20 61 64 64 72 65 73 73 20 69 73 20 72 65 71 75 65 73 74 65 64 20 62 79 | .such.an.address.is.requested.by |
| b87c0 | 20 73 74 72 6f 6e 67 53 77 61 6e 2e 20 53 65 6e 64 69 6e 67 20 74 68 65 20 43 69 73 63 6f 20 46 | .strongSwan..Sending.the.Cisco.F |
| b87e0 | 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 70 72 65 76 65 6e 74 73 20 74 68 65 20 70 65 | lexVPN.vendor.ID.prevents.the.pe |
| b8800 | 65 72 20 66 72 6f 6d 20 6e 61 72 72 6f 77 69 6e 67 20 74 68 65 20 69 6e 69 74 69 61 74 6f 72 27 | er.from.narrowing.the.initiator' |
| b8820 | 73 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 63 20 73 65 6c 65 63 74 6f 72 20 61 6e 64 20 61 6c 6c | s.local.traffic.selector.and.all |
| b8840 | 6f 77 73 20 69 74 20 74 6f 20 65 2e 67 2e 20 6e 65 67 6f 74 69 61 74 65 20 61 20 54 53 20 6f 66 | ows.it.to.e.g..negotiate.a.TS.of |
| b8860 | 20 30 2e 30 2e 30 2e 30 2f 30 20 3d 3d 20 30 2e 30 2e 30 2e 30 2f 30 20 69 6e 73 74 65 61 64 2e | .0.0.0.0/0.==.0.0.0.0/0.instead. |
| b8880 | 20 54 68 69 73 20 68 61 73 20 62 65 65 6e 20 74 65 73 74 65 64 20 77 69 74 68 20 61 20 22 74 75 | .This.has.been.tested.with.a."tu |
| b88a0 | 6e 6e 65 6c 20 6d 6f 64 65 20 69 70 73 65 63 20 69 70 76 34 22 20 43 69 73 63 6f 20 74 65 6d 70 | nnel.mode.ipsec.ipv4".Cisco.temp |
| b88c0 | 6c 61 74 65 20 62 75 74 20 73 68 6f 75 6c 64 20 61 6c 73 6f 20 77 6f 72 6b 20 66 6f 72 20 47 52 | late.but.should.also.work.for.GR |
| b88e0 | 45 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 3b 00 60 60 66 6c 65 78 76 70 6e 60 60 20 41 6c 6c | E.encapsulation;.``flexvpn``.All |
| b8900 | 6f 77 73 20 46 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 70 61 79 6c 6f 61 64 20 28 49 | ows.FlexVPN.vendor.ID.payload.(I |
| b8920 | 4b 45 76 32 20 6f 6e 6c 79 29 2e 20 53 65 6e 64 20 74 68 65 20 43 69 73 63 6f 00 60 60 66 6c 65 | KEv2.only)..Send.the.Cisco.``fle |
| b8940 | 78 76 70 6e 60 60 20 41 6c 6c 6f 77 73 20 46 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 | xvpn``.Allows.FlexVPN.vendor.ID. |
| b8960 | 70 61 79 6c 6f 61 64 20 28 49 4b 45 76 32 20 6f 6e 6c 79 29 2e 20 53 65 6e 64 20 74 68 65 20 43 | payload.(IKEv2.only)..Send.the.C |
| b8980 | 69 73 63 6f 20 46 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 70 61 79 6c 6f 61 64 20 28 | isco.FlexVPN.vendor.ID.payload.( |
| b89a0 | 49 4b 45 76 32 20 6f 6e 6c 79 29 2c 20 77 68 69 63 68 20 69 73 20 72 65 71 75 69 72 65 64 20 69 | IKEv2.only),.which.is.required.i |
| b89c0 | 6e 20 6f 72 64 65 72 20 74 6f 20 6d 61 6b 65 20 43 69 73 63 6f 20 62 72 61 6e 64 20 64 65 76 69 | n.order.to.make.Cisco.brand.devi |
| b89e0 | 63 65 73 20 61 6c 6c 6f 77 20 6e 65 67 6f 74 69 61 74 69 6e 67 20 61 20 6c 6f 63 61 6c 20 74 72 | ces.allow.negotiating.a.local.tr |
| b8a00 | 61 66 66 69 63 20 73 65 6c 65 63 74 6f 72 20 28 66 72 6f 6d 20 73 74 72 6f 6e 67 53 77 61 6e 27 | affic.selector.(from.strongSwan' |
| b8a20 | 73 20 70 6f 69 6e 74 20 6f 66 20 76 69 65 77 29 20 74 68 61 74 20 69 73 20 6e 6f 74 20 74 68 65 | s.point.of.view).that.is.not.the |
| b8a40 | 20 61 73 73 69 67 6e 65 64 20 76 69 72 74 75 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 69 66 20 | .assigned.virtual.IP.address.if. |
| b8a60 | 73 75 63 68 20 61 6e 20 61 64 64 72 65 73 73 20 69 73 20 72 65 71 75 65 73 74 65 64 20 62 79 20 | such.an.address.is.requested.by. |
| b8a80 | 73 74 72 6f 6e 67 53 77 61 6e 2e 20 53 65 6e 64 69 6e 67 20 74 68 65 20 43 69 73 63 6f 20 46 6c | strongSwan..Sending.the.Cisco.Fl |
| b8aa0 | 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 70 72 65 76 65 6e 74 73 20 74 68 65 20 70 65 65 | exVPN.vendor.ID.prevents.the.pee |
| b8ac0 | 72 20 66 72 6f 6d 20 6e 61 72 72 6f 77 69 6e 67 20 74 68 65 20 69 6e 69 74 69 61 74 6f 72 27 73 | r.from.narrowing.the.initiator's |
| b8ae0 | 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 63 20 73 65 6c 65 63 74 6f 72 20 61 6e 64 20 61 6c 6c 6f | .local.traffic.selector.and.allo |
| b8b00 | 77 73 20 69 74 20 74 6f 20 65 2e 67 2e 20 6e 65 67 6f 74 69 61 74 65 20 61 20 54 53 20 6f 66 20 | ws.it.to.e.g..negotiate.a.TS.of. |
| b8b20 | 30 2e 30 2e 30 2e 30 2f 30 20 3d 3d 20 30 2e 30 2e 30 2e 30 2f 30 20 69 6e 73 74 65 61 64 2e 20 | 0.0.0.0/0.==.0.0.0.0/0.instead.. |
| b8b40 | 54 68 69 73 20 68 61 73 20 62 65 65 6e 20 74 65 73 74 65 64 20 77 69 74 68 20 61 20 22 74 75 6e | This.has.been.tested.with.a."tun |
| b8b60 | 6e 65 6c 20 6d 6f 64 65 20 69 70 73 65 63 20 69 70 76 34 22 20 43 69 73 63 6f 20 74 65 6d 70 6c | nel.mode.ipsec.ipv4".Cisco.templ |
| b8b80 | 61 74 65 20 62 75 74 20 73 68 6f 75 6c 64 20 61 6c 73 6f 20 77 6f 72 6b 20 66 6f 72 20 47 52 45 | ate.but.should.also.work.for.GRE |
| b8ba0 | 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 3b 00 60 60 66 6f 72 63 65 2d 75 64 70 2d 65 6e 63 61 | .encapsulation;.``force-udp-enca |
| b8bc0 | 70 73 75 6c 61 74 69 6f 6e 60 60 20 2d 20 66 6f 72 63 65 20 65 6e 63 61 70 73 75 6c 61 74 69 6f | psulation``.-.force.encapsulatio |
| b8be0 | 6e 20 6f 66 20 45 53 50 20 69 6e 74 6f 20 55 44 50 20 64 61 74 61 67 72 61 6d 73 2e 20 55 73 65 | n.of.ESP.into.UDP.datagrams..Use |
| b8c00 | 66 75 6c 20 69 6e 20 63 61 73 65 20 69 66 20 62 65 74 77 65 65 6e 20 6c 6f 63 61 6c 20 61 6e 64 | ful.in.case.if.between.local.and |
| b8c20 | 20 72 65 6d 6f 74 65 20 73 69 64 65 20 69 73 20 66 69 72 65 77 61 6c 6c 20 6f 72 20 4e 41 54 2c | .remote.side.is.firewall.or.NAT, |
| b8c40 | 20 77 68 69 63 68 20 6e 6f 74 20 61 6c 6c 6f 77 73 20 70 61 73 73 69 6e 67 20 70 6c 61 69 6e 20 | .which.not.allows.passing.plain. |
| b8c60 | 45 53 50 20 70 61 63 6b 65 74 73 20 62 65 74 77 65 65 6e 20 74 68 65 6d 3b 00 60 60 67 60 60 20 | ESP.packets.between.them;.``g``. |
| b8c80 | 2d 20 38 30 32 2e 31 31 67 20 2d 20 35 34 20 4d 62 69 74 73 2f 73 65 63 20 28 64 65 66 61 75 6c | -.802.11g.-.54.Mbits/sec.(defaul |
| b8ca0 | 74 29 00 60 60 67 72 61 63 65 66 75 6c 2d 73 68 75 74 64 6f 77 6e 60 60 20 2d 20 20 20 20 20 20 | t).``graceful-shutdown``.-...... |
| b8cc0 | 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c | ......Well-known.communities.val |
| b8ce0 | 75 65 20 47 52 41 43 45 46 55 4c 5f 53 48 55 54 44 4f 57 4e 20 30 78 46 46 46 46 30 30 30 30 00 | ue.GRACEFUL_SHUTDOWN.0xFFFF0000. |
| b8d00 | 60 60 67 72 6f 75 70 60 60 20 20 41 64 64 72 65 73 73 20 67 72 6f 75 70 2e 00 60 60 67 72 6f 75 | ``group``..Address.group..``grou |
| b8d20 | 70 60 60 20 20 50 6f 72 74 20 67 72 6f 75 70 2e 00 60 60 67 75 69 64 65 64 60 60 20 54 68 65 20 | p``..Port.group..``guided``.The. |
| b8d40 | 64 72 69 76 65 72 20 61 6c 6c 6f 77 73 20 74 6f 20 73 65 74 20 64 65 73 69 72 65 64 20 70 65 72 | driver.allows.to.set.desired.per |
| b8d60 | 66 6f 72 6d 61 6e 63 65 20 6c 65 76 65 6c 73 20 61 6e 64 20 74 68 65 20 66 69 72 6d 77 61 72 65 | formance.levels.and.the.firmware |
| b8d80 | 20 73 65 6c 65 63 74 73 20 61 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 6c 65 76 65 6c 20 69 6e 20 | .selects.a.performance.level.in. |
| b8da0 | 74 68 69 73 20 72 61 6e 67 65 20 61 6e 64 20 66 69 74 74 69 6e 67 20 74 6f 20 74 68 65 20 63 75 | this.range.and.fitting.to.the.cu |
| b8dc0 | 72 72 65 6e 74 20 77 6f 72 6b 6c 6f 61 64 2e 00 60 60 68 60 60 20 2d 20 45 78 65 63 75 74 69 6f | rrent.workload..``h``.-.Executio |
| b8de0 | 6e 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 68 6f 75 72 73 00 60 60 68 61 73 68 60 60 20 68 61 73 | n.interval.in.hours.``hash``.has |
| b8e00 | 68 20 61 6c 67 6f 72 69 74 68 6d 20 28 64 65 66 61 75 6c 74 20 73 68 61 31 29 2e 00 60 60 68 61 | h.algorithm.(default.sha1)..``ha |
| b8e20 | 73 68 60 60 20 68 61 73 68 20 61 6c 67 6f 72 69 74 68 6d 2e 00 60 60 68 6f 6c 64 60 60 20 73 65 | sh``.hash.algorithm..``hold``.se |
| b8e40 | 74 20 61 63 74 69 6f 6e 20 74 6f 20 68 6f 6c 64 20 28 64 65 66 61 75 6c 74 29 00 60 60 68 6f 6c | t.action.to.hold.(default).``hol |
| b8e60 | 64 60 60 20 73 65 74 20 61 63 74 69 6f 6e 20 74 6f 20 68 6f 6c 64 3b 00 60 60 68 74 32 30 60 60 | d``.set.action.to.hold;.``ht20`` |
| b8e80 | 20 2d 20 32 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 00 60 60 68 74 34 30 2b 60 | .-.20.MHz.channel.width.``ht40+` |
| b8ea0 | 60 20 2d 20 42 6f 74 68 20 32 30 20 4d 48 7a 20 61 6e 64 20 34 30 20 4d 48 7a 20 77 69 74 68 20 | `.-.Both.20.MHz.and.40.MHz.with. |
| b8ec0 | 73 65 63 6f 6e 64 61 72 79 20 63 68 61 6e 6e 65 6c 20 61 62 6f 76 65 20 74 68 65 20 70 72 69 6d | secondary.channel.above.the.prim |
| b8ee0 | 61 72 79 20 63 68 61 6e 6e 65 6c 00 60 60 68 74 34 30 2d 60 60 20 2d 20 42 6f 74 68 20 32 30 20 | ary.channel.``ht40-``.-.Both.20. |
| b8f00 | 4d 48 7a 20 61 6e 64 20 34 30 20 4d 48 7a 20 77 69 74 68 20 73 65 63 6f 6e 64 61 72 79 20 63 68 | MHz.and.40.MHz.with.secondary.ch |
| b8f20 | 61 6e 6e 65 6c 20 62 65 6c 6f 77 20 74 68 65 20 70 72 69 6d 61 72 79 20 63 68 61 6e 6e 65 6c 00 | annel.below.the.primary.channel. |
| b8f40 | 60 60 68 76 63 30 60 60 20 2d 20 58 65 6e 20 63 6f 6e 73 6f 6c 65 00 60 60 69 64 60 60 20 2d 20 | ``hvc0``.-.Xen.console.``id``.-. |
| b8f60 | 73 74 61 74 69 63 20 49 44 27 73 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 20 | static.ID's.for.authentication.. |
| b8f80 | 49 6e 20 67 65 6e 65 72 61 6c 20 6c 6f 63 61 6c 20 61 6e 64 20 72 65 6d 6f 74 65 20 61 64 64 72 | In.general.local.and.remote.addr |
| b8fa0 | 65 73 73 20 60 60 3c 78 2e 78 2e 78 2e 78 3e 60 60 2c 20 60 60 3c 68 3a 68 3a 68 3a 68 3a 68 3a | ess.``<x.x.x.x>``,.``<h:h:h:h:h: |
| b8fc0 | 68 3a 68 3a 68 3e 60 60 20 6f 72 20 60 60 25 61 6e 79 60 60 3b 00 60 60 69 6b 65 2d 67 72 6f 75 | h:h:h>``.or.``%any``;.``ike-grou |
| b8fe0 | 70 60 60 20 2d 20 49 4b 45 20 67 72 6f 75 70 20 74 6f 20 75 73 65 20 66 6f 72 20 6b 65 79 20 65 | p``.-.IKE.group.to.use.for.key.e |
| b9000 | 78 63 68 61 6e 67 65 73 3b 00 60 60 69 6b 65 76 31 60 60 20 75 73 65 20 49 4b 45 76 31 20 66 6f | xchanges;.``ikev1``.use.IKEv1.fo |
| b9020 | 72 20 4b 65 79 20 45 78 63 68 61 6e 67 65 3b 00 60 60 69 6b 65 76 32 2d 72 65 61 75 74 68 60 60 | r.Key.Exchange;.``ikev2-reauth`` |
| b9040 | 20 2d 20 72 65 61 75 74 68 65 6e 74 69 63 61 74 65 20 72 65 6d 6f 74 65 20 70 65 65 72 20 64 75 | .-.reauthenticate.remote.peer.du |
| b9060 | 72 69 6e 67 20 74 68 65 20 72 65 6b 65 79 69 6e 67 20 70 72 6f 63 65 73 73 2e 20 43 61 6e 20 62 | ring.the.rekeying.process..Can.b |
| b9080 | 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 69 74 68 20 49 4b 45 76 32 2e 20 43 72 65 61 74 65 20 61 | e.used.only.with.IKEv2..Create.a |
| b90a0 | 20 6e 65 77 20 49 4b 45 5f 53 41 20 66 72 6f 6d 20 74 68 65 20 73 63 72 61 74 63 68 20 61 6e 64 | .new.IKE_SA.from.the.scratch.and |
| b90c0 | 20 74 72 79 20 74 6f 20 72 65 63 72 65 61 74 65 20 61 6c 6c 20 49 50 73 65 63 20 53 41 73 3b 00 | .try.to.recreate.all.IPsec.SAs;. |
| b90e0 | 60 60 69 6b 65 76 32 2d 72 65 61 75 74 68 60 60 20 77 68 65 74 68 65 72 20 72 65 6b 65 79 69 6e | ``ikev2-reauth``.whether.rekeyin |
| b9100 | 67 20 6f 66 20 61 6e 20 49 4b 45 5f 53 41 20 73 68 6f 75 6c 64 20 61 6c 73 6f 20 72 65 61 75 74 | g.of.an.IKE_SA.should.also.reaut |
| b9120 | 68 65 6e 74 69 63 61 74 65 20 74 68 65 20 70 65 65 72 2e 20 49 6e 20 49 4b 45 76 31 2c 20 72 65 | henticate.the.peer..In.IKEv1,.re |
| b9140 | 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 69 73 20 61 6c 77 61 79 73 20 64 6f 6e 65 2e 20 53 | authentication.is.always.done..S |
| b9160 | 65 74 74 69 6e 67 20 74 68 69 73 20 70 61 72 61 6d 65 74 65 72 20 65 6e 61 62 6c 65 73 20 72 65 | etting.this.parameter.enables.re |
| b9180 | 6d 6f 74 65 20 68 6f 73 74 20 72 65 2d 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 64 75 72 69 | mote.host.re-authentication.duri |
| b91a0 | 6e 67 20 61 6e 20 49 4b 45 20 72 65 6b 65 79 2e 00 60 60 69 6b 65 76 32 2d 72 65 61 75 74 68 60 | ng.an.IKE.rekey..``ikev2-reauth` |
| b91c0 | 60 20 77 68 65 74 68 65 72 20 72 65 6b 65 79 69 6e 67 20 6f 66 20 61 6e 20 49 4b 45 5f 53 41 20 | `.whether.rekeying.of.an.IKE_SA. |
| b91e0 | 73 68 6f 75 6c 64 20 61 6c 73 6f 20 72 65 61 75 74 68 65 6e 74 69 63 61 74 65 20 74 68 65 20 70 | should.also.reauthenticate.the.p |
| b9200 | 65 65 72 2e 20 49 6e 20 49 4b 45 76 31 2c 20 72 65 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 | eer..In.IKEv1,.reauthentication. |
| b9220 | 69 73 20 61 6c 77 61 79 73 20 64 6f 6e 65 3a 00 60 60 69 6b 65 76 32 60 60 20 75 73 65 20 49 4b | is.always.done:.``ikev2``.use.IK |
| b9240 | 45 76 32 20 66 6f 72 20 4b 65 79 20 45 78 63 68 61 6e 67 65 3b 00 60 60 69 6e 60 60 3a 20 52 75 | Ev2.for.Key.Exchange;.``in``:.Ru |
| b9260 | 6c 65 73 65 74 20 66 6f 72 20 66 6f 72 77 61 72 64 65 64 20 70 61 63 6b 65 74 73 20 6f 6e 20 61 | leset.for.forwarded.packets.on.a |
| b9280 | 6e 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 00 60 60 69 6e 69 74 63 61 6c 6c 5f 62 | n.inbound.interface.``initcall_b |
| b92a0 | 6c 61 63 6b 6c 69 73 74 3d 61 63 70 69 5f 63 70 75 66 72 65 71 5f 69 6e 69 74 60 60 20 44 69 73 | lacklist=acpi_cpufreq_init``.Dis |
| b92c0 | 61 62 6c 65 20 64 65 66 61 75 6c 74 20 41 43 50 49 20 43 50 55 20 66 72 65 71 75 65 6e 63 79 20 | able.default.ACPI.CPU.frequency. |
| b92e0 | 73 63 61 6c 65 00 60 60 69 6e 69 74 69 61 74 65 60 60 20 2d 20 64 6f 65 73 20 69 6e 69 74 69 61 | scale.``initiate``.-.does.initia |
| b9300 | 6c 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f 20 72 65 6d 6f 74 65 20 70 65 65 72 20 69 6d 6d 65 | l.connection.to.remote.peer.imme |
| b9320 | 64 69 61 74 65 6c 79 20 61 66 74 65 72 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 6e 64 20 61 66 | diately.after.configuring.and.af |
| b9340 | 74 65 72 20 62 6f 6f 74 2e 20 49 6e 20 74 68 69 73 20 6d 6f 64 65 20 74 68 65 20 63 6f 6e 6e 65 | ter.boot..In.this.mode.the.conne |
| b9360 | 63 74 69 6f 6e 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 72 65 73 74 61 72 74 65 64 20 69 6e 20 63 | ction.will.not.be.restarted.in.c |
| b9380 | 61 73 65 20 6f 66 20 64 69 73 63 6f 6e 6e 65 63 74 69 6f 6e 2c 20 74 68 65 72 65 66 6f 72 65 20 | ase.of.disconnection,.therefore. |
| b93a0 | 73 68 6f 75 6c 64 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 74 6f 67 65 74 68 65 72 20 77 69 74 | should.be.used.only.together.wit |
| b93c0 | 68 20 44 50 44 20 6f 72 20 61 6e 6f 74 68 65 72 20 73 65 73 73 69 6f 6e 20 74 72 61 63 6b 69 6e | h.DPD.or.another.session.trackin |
| b93e0 | 67 20 6d 65 74 68 6f 64 73 3b 00 60 60 69 6e 74 65 6c 5f 69 64 6c 65 2e 6d 61 78 5f 63 73 74 61 | g.methods;.``intel_idle.max_csta |
| b9400 | 74 65 3d 30 60 60 20 44 69 73 61 62 6c 65 20 69 6e 74 65 6c 5f 69 64 6c 65 20 61 6e 64 20 66 61 | te=0``.Disable.intel_idle.and.fa |
| b9420 | 6c 6c 20 62 61 63 6b 20 6f 6e 20 61 63 70 69 5f 69 64 6c 65 00 60 60 69 6e 74 65 72 66 61 63 65 | ll.back.on.acpi_idle.``interface |
| b9440 | 60 60 20 49 6e 74 65 72 66 61 63 65 20 4e 61 6d 65 20 74 6f 20 75 73 65 2e 20 54 68 65 20 6e 61 | ``.Interface.Name.to.use..The.na |
| b9460 | 6d 65 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 77 68 69 63 68 00 60 60 69 | me.of.the.interface.on.which.``i |
| b9480 | 6e 74 65 72 66 61 63 65 60 60 20 49 6e 74 65 72 66 61 63 65 20 4e 61 6d 65 20 74 6f 20 75 73 65 | nterface``.Interface.Name.to.use |
| b94a0 | 2e 20 54 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 77 | ..The.name.of.the.interface.on.w |
| b94c0 | 68 69 63 68 20 76 69 72 74 75 61 6c 20 49 50 20 61 64 64 72 65 73 73 65 73 20 73 68 6f 75 6c 64 | hich.virtual.IP.addresses.should |
| b94e0 | 20 62 65 20 69 6e 73 74 61 6c 6c 65 64 2e 20 49 66 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 20 | .be.installed..If.not.specified. |
| b9500 | 74 68 65 20 61 64 64 72 65 73 73 65 73 20 77 69 6c 6c 20 62 65 20 69 6e 73 74 61 6c 6c 65 64 20 | the.addresses.will.be.installed. |
| b9520 | 6f 6e 20 74 68 65 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 3b 00 60 60 69 6e 74 | on.the.outbound.interface;.``int |
| b9540 | 65 72 66 61 63 65 60 60 20 69 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 56 79 4f 53 20 43 4c | erface``.is.used.for.the.VyOS.CL |
| b9560 | 49 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 69 64 65 6e 74 69 66 79 20 74 68 65 20 57 69 72 65 47 75 | I.command.to.identify.the.WireGu |
| b9580 | 61 72 64 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 72 65 20 74 68 69 73 20 70 72 69 76 61 74 65 | ard.interface.where.this.private |
| b95a0 | 20 6b 65 79 20 69 73 20 74 6f 20 62 65 20 75 73 65 64 2e 00 60 60 69 6e 74 65 72 6c 65 61 76 65 | .key.is.to.be.used..``interleave |
| b95c0 | 60 60 20 65 6e 61 62 6c 65 73 20 4e 54 50 20 69 6e 74 65 72 6c 65 61 76 65 64 20 6d 6f 64 65 20 | ``.enables.NTP.interleaved.mode. |
| b95e0 | 28 73 65 65 20 60 64 72 61 66 74 2d 6e 74 70 2d 69 6e 74 65 72 6c 65 61 76 65 64 2d 6d 6f 64 65 | (see.`draft-ntp-interleaved-mode |
| b9600 | 73 60 5f 29 2c 20 77 68 69 63 68 20 63 61 6e 20 69 6d 70 72 6f 76 65 20 73 79 6e 63 68 72 6f 6e | s`_),.which.can.improve.synchron |
| b9620 | 69 7a 61 74 69 6f 6e 20 61 63 63 75 72 61 63 79 20 61 6e 64 20 73 74 61 62 69 6c 69 74 79 20 77 | ization.accuracy.and.stability.w |
| b9640 | 68 65 6e 20 73 75 70 70 6f 72 74 65 64 20 62 79 20 62 6f 74 68 20 70 61 72 74 69 65 73 2e 00 60 | hen.supported.by.both.parties..` |
| b9660 | 60 69 6e 74 65 72 6e 65 74 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 | `internet``.-................... |
| b9680 | 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 30 | ..Well-known.communities.value.0 |
| b96a0 | 00 60 60 69 6e 74 65 72 76 61 6c 60 60 20 6b 65 65 70 2d 61 6c 69 76 65 20 69 6e 74 65 72 76 61 | .``interval``.keep-alive.interva |
| b96c0 | 6c 20 69 6e 20 73 65 63 6f 6e 64 73 20 3c 32 2d 38 36 34 30 30 3e 20 28 64 65 66 61 75 6c 74 20 | l.in.seconds.<2-86400>.(default. |
| b96e0 | 33 30 29 3b 00 60 60 69 73 69 73 60 60 20 2d 20 49 6e 74 65 72 6d 65 64 69 61 74 65 20 53 79 73 | 30);.``isis``.-.Intermediate.Sys |
| b9700 | 74 65 6d 20 74 6f 20 49 6e 74 65 72 6d 65 64 69 61 74 65 20 53 79 73 74 65 6d 20 28 49 53 2d 49 | tem.to.Intermediate.System.(IS-I |
| b9720 | 53 29 00 60 60 6a 75 6d 70 60 60 3a 20 6a 75 6d 70 20 74 6f 20 61 6e 6f 74 68 65 72 20 63 75 73 | S).``jump``:.jump.to.another.cus |
| b9740 | 74 6f 6d 20 63 68 61 69 6e 2e 00 60 60 6b 65 72 6e 65 6c 60 60 20 2d 20 4b 65 72 6e 65 6c 20 72 | tom.chain..``kernel``.-.Kernel.r |
| b9760 | 6f 75 74 65 73 00 60 60 6b 65 79 2d 65 78 63 68 61 6e 67 65 60 60 20 77 68 69 63 68 20 70 72 6f | outes.``key-exchange``.which.pro |
| b9780 | 74 6f 63 6f 6c 20 73 68 6f 75 6c 64 20 62 65 20 75 73 65 64 20 74 6f 20 69 6e 69 74 69 61 6c 69 | tocol.should.be.used.to.initiali |
| b97a0 | 7a 65 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 49 66 20 6e 6f 74 20 73 65 74 20 62 6f 74 | ze.the.connection.If.not.set.bot |
| b97c0 | 68 20 70 72 6f 74 6f 63 6f 6c 73 20 61 72 65 20 68 61 6e 64 6c 65 64 20 61 6e 64 20 63 6f 6e 6e | h.protocols.are.handled.and.conn |
| b97e0 | 65 63 74 69 6f 6e 73 20 77 69 6c 6c 20 75 73 65 20 49 4b 45 76 32 20 77 68 65 6e 20 69 6e 69 74 | ections.will.use.IKEv2.when.init |
| b9800 | 69 61 74 69 6e 67 2c 20 62 75 74 20 61 63 63 65 70 74 20 61 6e 79 20 70 72 6f 74 6f 63 6f 6c 20 | iating,.but.accept.any.protocol. |
| b9820 | 76 65 72 73 69 6f 6e 20 77 68 65 6e 20 72 65 73 70 6f 6e 64 69 6e 67 3a 00 60 60 6b 65 79 60 60 | version.when.responding:.``key`` |
| b9840 | 20 2d 20 61 20 70 72 69 76 61 74 65 20 6b 65 79 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 | .-.a.private.key,.which.will.be. |
| b9860 | 75 73 65 64 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 6c 6f 63 61 6c 20 72 6f | used.for.authenticating.local.ro |
| b9880 | 75 74 65 72 20 6f 6e 20 72 65 6d 6f 74 65 20 70 65 65 72 3a 00 60 60 6b 65 79 60 60 20 75 73 65 | uter.on.remote.peer:.``key``.use |
| b98a0 | 20 41 50 49 20 6b 65 79 73 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 60 60 73 65 72 76 69 63 | .API.keys.configured.in.``servic |
| b98c0 | 65 20 68 74 74 70 73 20 61 70 69 20 6b 65 79 73 60 60 00 60 60 6c 61 74 65 6e 63 79 60 60 3a 20 | e.https.api.keys``.``latency``:. |
| b98e0 | 41 20 73 65 72 76 65 72 20 70 72 6f 66 69 6c 65 20 66 6f 63 75 73 65 64 20 6f 6e 20 6c 6f 77 65 | A.server.profile.focused.on.lowe |
| b9900 | 72 69 6e 67 20 6e 65 74 77 6f 72 6b 20 6c 61 74 65 6e 63 79 2e 20 54 68 69 73 20 70 72 6f 66 69 | ring.network.latency..This.profi |
| b9920 | 6c 65 20 66 61 76 6f 72 73 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 6f 76 65 72 20 70 6f 77 65 72 | le.favors.performance.over.power |
| b9940 | 20 73 61 76 69 6e 67 73 20 62 79 20 73 65 74 74 69 6e 67 20 60 60 69 6e 74 65 6c 5f 70 73 74 61 | .savings.by.setting.``intel_psta |
| b9960 | 74 65 60 60 20 61 6e 64 20 60 60 6d 69 6e 5f 70 65 72 66 5f 70 63 74 3d 31 30 30 60 60 2e 00 60 | te``.and.``min_perf_pct=100``..` |
| b9980 | 60 6c 64 61 70 60 60 20 4c 44 41 50 20 70 72 6f 74 6f 63 6f 6c 20 63 68 65 63 6b 2e 00 60 60 6c | `ldap``.LDAP.protocol.check..``l |
| b99a0 | 65 61 73 74 2d 63 6f 6e 6e 65 63 74 69 6f 6e 60 60 20 44 69 73 74 72 69 62 75 74 65 73 20 72 65 | east-connection``.Distributes.re |
| b99c0 | 71 75 65 73 74 73 20 74 6f 20 74 68 65 20 73 65 72 76 65 72 20 77 69 74 68 20 74 68 65 20 66 65 | quests.to.the.server.with.the.fe |
| b99e0 | 77 65 73 74 20 61 63 74 69 76 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 00 60 60 6c 65 61 73 74 2d | west.active.connections.``least- |
| b9a00 | 63 6f 6e 6e 65 63 74 69 6f 6e 60 60 20 44 69 73 74 72 69 62 75 74 65 73 20 72 65 71 75 65 73 74 | connection``.Distributes.request |
| b9a20 | 73 20 74 70 20 74 6a 65 20 73 65 72 76 65 72 20 77 6f 74 6a 20 74 68 65 20 66 65 77 65 73 74 20 | s.tp.tje.server.wotj.the.fewest. |
| b9a40 | 61 63 74 69 76 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 00 60 60 6c 69 66 65 2d 62 79 74 65 73 60 | active.connections.``life-bytes` |
| b9a60 | 60 20 45 53 50 20 6c 69 66 65 20 69 6e 20 62 79 74 65 73 20 3c 31 30 32 34 2d 32 36 38 34 33 35 | `.ESP.life.in.bytes.<1024-268435 |
| b9a80 | 34 35 36 30 30 30 30 30 3e 2e 20 4e 75 6d 62 65 72 20 6f 66 20 62 79 74 65 73 20 74 72 61 6e 73 | 45600000>..Number.of.bytes.trans |
| b9aa0 | 6d 69 74 74 65 64 20 6f 76 65 72 20 61 6e 20 49 50 73 65 63 20 53 41 20 62 65 66 6f 72 65 20 69 | mitted.over.an.IPsec.SA.before.i |
| b9ac0 | 74 20 65 78 70 69 72 65 73 3b 00 60 60 6c 69 66 65 2d 70 61 63 6b 65 74 73 60 60 20 45 53 50 20 | t.expires;.``life-packets``.ESP. |
| b9ae0 | 6c 69 66 65 20 69 6e 20 70 61 63 6b 65 74 73 20 3c 31 30 30 30 2d 32 36 38 34 33 35 34 35 36 30 | life.in.packets.<1000-2684354560 |
| b9b00 | 30 30 30 30 3e 2e 20 4e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 74 72 61 6e 73 6d 69 | 0000>..Number.of.packets.transmi |
| b9b20 | 74 74 65 64 20 6f 76 65 72 20 61 6e 20 49 50 73 65 63 20 53 41 20 62 65 66 6f 72 65 20 69 74 20 | tted.over.an.IPsec.SA.before.it. |
| b9b40 | 65 78 70 69 72 65 73 3b 00 60 60 6c 69 66 65 74 69 6d 65 60 60 20 45 53 50 20 6c 69 66 65 74 69 | expires;.``lifetime``.ESP.lifeti |
| b9b60 | 6d 65 20 69 6e 20 73 65 63 6f 6e 64 73 20 3c 33 30 2d 38 36 34 30 30 3e 20 28 64 65 66 61 75 6c | me.in.seconds.<30-86400>.(defaul |
| b9b80 | 74 20 33 36 30 30 29 2e 20 48 6f 77 20 6c 6f 6e 67 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 69 | t.3600)..How.long.a.particular.i |
| b9ba0 | 6e 73 74 61 6e 63 65 20 6f 66 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 28 61 20 73 65 74 20 6f | nstance.of.a.connection.(a.set.o |
| b9bc0 | 66 20 65 6e 63 72 79 70 74 69 6f 6e 2f 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6b 65 79 73 | f.encryption/authentication.keys |
| b9be0 | 20 66 6f 72 20 75 73 65 72 20 70 61 63 6b 65 74 73 29 20 73 68 6f 75 6c 64 20 6c 61 73 74 2c 20 | .for.user.packets).should.last,. |
| b9c00 | 66 72 6f 6d 20 73 75 63 63 65 73 73 66 75 6c 20 6e 65 67 6f 74 69 61 74 69 6f 6e 20 74 6f 20 65 | from.successful.negotiation.to.e |
| b9c20 | 78 70 69 72 79 3b 00 60 60 6c 69 66 65 74 69 6d 65 60 60 20 49 4b 45 20 6c 69 66 65 74 69 6d 65 | xpiry;.``lifetime``.IKE.lifetime |
| b9c40 | 20 69 6e 20 73 65 63 6f 6e 64 73 20 3c 30 2d 38 36 34 30 30 3e 20 28 64 65 66 61 75 6c 74 20 32 | .in.seconds.<0-86400>.(default.2 |
| b9c60 | 38 38 30 30 29 3b 00 60 60 6c 69 66 65 74 69 6d 65 60 60 20 49 4b 45 20 6c 69 66 65 74 69 6d 65 | 8800);.``lifetime``.IKE.lifetime |
| b9c80 | 20 69 6e 20 73 65 63 6f 6e 64 73 20 3c 33 30 2d 38 36 34 30 30 3e 20 28 64 65 66 61 75 6c 74 20 | .in.seconds.<30-86400>.(default. |
| b9ca0 | 32 38 38 30 30 29 3b 00 60 60 6c 6c 67 72 2d 73 74 61 6c 65 60 60 20 2d 20 20 20 20 20 20 20 20 | 28800);.``llgr-stale``.-........ |
| b9cc0 | 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 | ...........Well-known.communitie |
| b9ce0 | 73 20 76 61 6c 75 65 20 4c 4c 47 52 5f 53 54 41 4c 45 20 30 78 46 46 46 46 30 30 30 36 00 60 60 | s.value.LLGR_STALE.0xFFFF0006.`` |
| b9d00 | 6c 6f 63 61 6c 2d 61 64 64 72 65 73 73 60 60 20 2d 20 6c 6f 63 61 6c 20 49 50 20 61 64 64 72 65 | local-address``.-.local.IP.addre |
| b9d20 | 73 73 20 66 6f 72 20 49 50 53 65 63 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 68 20 74 68 69 | ss.for.IPSec.connection.with.thi |
| b9d40 | 73 20 70 65 65 72 2e 20 49 66 20 64 65 66 69 6e 65 64 20 60 60 61 6e 79 60 60 2c 20 74 68 65 6e | s.peer..If.defined.``any``,.then |
| b9d60 | 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 77 68 69 63 68 20 63 6f 6e 66 69 67 75 72 65 64 20 | .an.IP.address.which.configured. |
| b9d80 | 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 | on.interface.with.default.route. |
| b9da0 | 77 69 6c 6c 20 62 65 20 75 73 65 64 3b 00 60 60 6c 6f 63 61 6c 2d 61 73 60 60 20 2d 20 20 20 20 | will.be.used;.``local-as``.-.... |
| b9dc0 | 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d | .................Well-known.comm |
| b9de0 | 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 4e 4f 5f 45 58 50 4f 52 54 5f 53 55 42 43 4f 4e 46 45 | unities.value.NO_EXPORT_SUBCONFE |
| b9e00 | 44 20 30 78 46 46 46 46 46 46 30 33 00 60 60 6c 6f 63 61 6c 2d 69 64 60 60 20 2d 20 49 44 20 66 | D.0xFFFFFF03.``local-id``.-.ID.f |
| b9e20 | 6f 72 20 74 68 65 20 6c 6f 63 61 6c 20 56 79 4f 53 20 72 6f 75 74 65 72 2e 20 49 66 20 64 65 66 | or.the.local.VyOS.router..If.def |
| b9e40 | 69 6e 65 64 2c 20 64 75 72 69 6e 67 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 | ined,.during.the.authentication. |
| b9e60 | 69 74 20 77 69 6c 6c 20 62 65 20 73 65 6e 64 20 74 6f 20 72 65 6d 6f 74 65 20 70 65 65 72 3b 00 | it.will.be.send.to.remote.peer;. |
| b9e80 | 60 60 6c 6f 63 61 6c 2d 6b 65 79 60 60 20 2d 20 6e 61 6d 65 20 6f 66 20 50 4b 49 20 6b 65 79 2d | ``local-key``.-.name.of.PKI.key- |
| b9ea0 | 70 61 69 72 20 77 69 74 68 20 6c 6f 63 61 6c 20 70 72 69 76 61 74 65 20 6b 65 79 00 60 60 6c 6f | pair.with.local.private.key.``lo |
| b9ec0 | 63 61 6c 60 60 20 2d 20 64 65 66 69 6e 65 20 61 20 6c 6f 63 61 6c 20 73 6f 75 72 63 65 20 66 6f | cal``.-.define.a.local.source.fo |
| b9ee0 | 72 20 6d 61 74 63 68 20 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 73 68 6f 75 6c 64 20 62 65 | r.match.traffic,.which.should.be |
| b9f00 | 20 65 6e 63 72 79 70 74 65 64 20 61 6e 64 20 73 65 6e 64 20 74 6f 20 74 68 69 73 20 70 65 65 72 | .encrypted.and.send.to.this.peer |
| b9f20 | 3a 00 60 60 6c 6f 63 61 6c 60 60 3a 20 52 75 6c 65 73 65 74 20 66 6f 72 20 70 61 63 6b 65 74 73 | :.``local``:.Ruleset.for.packets |
| b9f40 | 20 64 65 73 74 69 6e 65 64 20 66 6f 72 20 74 68 69 73 20 72 6f 75 74 65 72 00 60 60 6d 60 60 20 | .destined.for.this.router.``m``. |
| b9f60 | 2d 20 45 78 65 63 75 74 69 6f 6e 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 6d 69 6e 75 74 65 73 00 | -.Execution.interval.in.minutes. |
| b9f80 | 60 60 6d 61 69 6e 60 60 20 52 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 75 73 65 64 20 62 79 20 56 | ``main``.Routing.table.used.by.V |
| b9fa0 | 79 4f 53 20 61 6e 64 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 73 20 6e 6f 74 20 70 61 72 | yOS.and.other.interfaces.not.par |
| b9fc0 | 74 69 63 69 70 61 74 69 6e 67 20 69 6e 20 50 42 52 00 60 60 6d 61 69 6e 60 60 20 75 73 65 20 4d | ticipating.in.PBR.``main``.use.M |
| b9fe0 | 61 69 6e 20 6d 6f 64 65 20 66 6f 72 20 4b 65 79 20 45 78 63 68 61 6e 67 65 73 20 69 6e 20 74 68 | ain.mode.for.Key.Exchanges.in.th |
| ba000 | 65 20 49 4b 45 76 31 20 50 72 6f 74 6f 63 6f 6c 20 28 52 65 63 6f 6d 6d 65 6e 64 65 64 20 44 65 | e.IKEv1.Protocol.(Recommended.De |
| ba020 | 66 61 75 6c 74 29 3b 00 60 60 6d 65 73 73 61 67 65 60 60 3a 20 46 75 6c 6c 20 6d 65 73 73 61 67 | fault);.``message``:.Full.messag |
| ba040 | 65 20 74 68 61 74 20 68 61 73 20 74 72 69 67 67 65 72 65 64 20 74 68 65 20 73 63 72 69 70 74 2e | e.that.has.triggered.the.script. |
| ba060 | 00 60 60 6d 69 74 69 67 61 74 69 6f 6e 73 3d 6f 66 66 60 60 00 60 60 6d 6f 62 69 6b 65 60 60 20 | .``mitigations=off``.``mobike``. |
| ba080 | 65 6e 61 62 6c 65 20 4d 4f 42 49 4b 45 20 53 75 70 70 6f 72 74 2e 20 4d 4f 42 49 4b 45 20 69 73 | enable.MOBIKE.Support..MOBIKE.is |
| ba0a0 | 20 6f 6e 6c 79 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 49 4b 45 76 32 3a 00 60 60 6d 6f 64 | .only.available.for.IKEv2:.``mod |
| ba0c0 | 65 60 60 20 2d 20 6d 6f 64 65 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 65 | e``.-.mode.for.authentication.be |
| ba0e0 | 74 77 65 65 6e 20 56 79 4f 53 20 61 6e 64 20 72 65 6d 6f 74 65 20 70 65 65 72 3a 00 60 60 6d 6f | tween.VyOS.and.remote.peer:.``mo |
| ba100 | 64 65 60 60 20 49 4b 45 76 31 20 50 68 61 73 65 20 31 20 4d 6f 64 65 20 53 65 6c 65 63 74 69 6f | de``.IKEv1.Phase.1.Mode.Selectio |
| ba120 | 6e 3a 00 60 60 6d 6f 64 65 60 60 20 74 68 65 20 74 79 70 65 20 6f 66 20 74 68 65 20 63 6f 6e 6e | n:.``mode``.the.type.of.the.conn |
| ba140 | 65 63 74 69 6f 6e 3a 00 60 60 6d 6f 6e 69 74 6f 72 60 60 20 2d 20 50 61 73 73 69 76 65 6c 79 20 | ection:.``monitor``.-.Passively. |
| ba160 | 6d 6f 6e 69 74 6f 72 20 61 6c 6c 20 70 61 63 6b 65 74 73 20 6f 6e 20 74 68 65 20 66 72 65 71 75 | monitor.all.packets.on.the.frequ |
| ba180 | 65 6e 63 79 2f 63 68 61 6e 6e 65 6c 00 60 60 6d 75 6c 74 69 2d 75 73 65 72 2d 62 65 61 6d 66 6f | ency/channel.``multi-user-beamfo |
| ba1a0 | 72 6d 65 65 60 60 20 2d 20 53 75 70 70 6f 72 74 20 66 6f 72 20 6f 70 65 72 61 74 69 6f 6e 20 61 | rmee``.-.Support.for.operation.a |
| ba1c0 | 73 20 6d 75 6c 74 69 20 75 73 65 72 20 62 65 61 6d 66 6f 72 6d 65 65 00 60 60 6d 75 6c 74 69 2d | s.multi.user.beamformee.``multi- |
| ba1e0 | 75 73 65 72 2d 62 65 61 6d 66 6f 72 6d 65 65 60 60 20 2d 20 53 75 70 70 6f 72 74 20 66 6f 72 20 | user-beamformee``.-.Support.for. |
| ba200 | 6f 70 65 72 61 74 69 6f 6e 20 61 73 20 73 69 6e 67 6c 65 20 75 73 65 72 20 62 65 61 6d 66 6f 72 | operation.as.single.user.beamfor |
| ba220 | 6d 65 72 00 60 60 6d 75 6c 74 69 2d 75 73 65 72 2d 62 65 61 6d 66 6f 72 6d 65 72 60 60 20 2d 20 | mer.``multi-user-beamformer``.-. |
| ba240 | 53 75 70 70 6f 72 74 20 66 6f 72 20 6f 70 65 72 61 74 69 6f 6e 20 61 73 20 6d 75 6c 74 69 20 75 | Support.for.operation.as.multi.u |
| ba260 | 73 65 72 20 62 65 61 6d 66 6f 72 6d 65 72 00 60 60 6d 75 6c 74 69 2d 75 73 65 72 2d 62 65 61 6d | ser.beamformer.``multi-user-beam |
| ba280 | 66 6f 72 6d 65 72 60 60 20 2d 20 53 75 70 70 6f 72 74 20 66 6f 72 20 6f 70 65 72 61 74 69 6f 6e | former``.-.Support.for.operation |
| ba2a0 | 20 61 73 20 73 69 6e 67 6c 65 20 75 73 65 72 20 62 65 61 6d 66 6f 72 6d 65 72 00 60 60 6d 79 73 | .as.single.user.beamformer.``mys |
| ba2c0 | 71 6c 60 60 20 4d 79 53 51 4c 20 70 72 6f 74 6f 63 6f 6c 20 63 68 65 63 6b 2e 00 60 60 6e 60 60 | ql``.MySQL.protocol.check..``n`` |
| ba2e0 | 20 2d 20 38 30 32 2e 31 31 6e 20 2d 20 36 30 30 20 4d 62 69 74 73 2f 73 65 63 00 60 60 6e 61 6d | .-.802.11n.-.600.Mbits/sec.``nam |
| ba300 | 65 60 60 20 69 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 56 79 4f 53 20 43 4c 49 20 63 6f 6d | e``.is.used.for.the.VyOS.CLI.com |
| ba320 | 6d 61 6e 64 20 74 6f 20 69 64 65 6e 74 69 66 79 20 74 68 69 73 20 6b 65 79 2e 20 54 68 69 73 20 | mand.to.identify.this.key..This. |
| ba340 | 6b 65 79 20 60 60 6e 61 6d 65 60 60 20 69 73 20 74 68 65 6e 20 75 73 65 64 20 69 6e 20 74 68 65 | key.``name``.is.then.used.in.the |
| ba360 | 20 43 4c 49 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 6f 20 72 65 66 65 72 65 6e 63 65 20 | .CLI.configuration.to.reference. |
| ba380 | 74 68 65 20 6b 65 79 20 69 6e 73 74 61 6e 63 65 2e 00 60 60 6e 65 74 2e 69 70 76 34 2e 63 6f 6e | the.key.instance..``net.ipv4.con |
| ba3a0 | 66 2e 61 6c 6c 2e 61 63 63 65 70 74 5f 72 65 64 69 72 65 63 74 73 60 60 00 60 60 6e 65 74 2e 69 | f.all.accept_redirects``.``net.i |
| ba3c0 | 70 76 34 2e 63 6f 6e 66 2e 61 6c 6c 2e 61 63 63 65 70 74 5f 73 6f 75 72 63 65 5f 72 6f 75 74 65 | pv4.conf.all.accept_source_route |
| ba3e0 | 60 60 00 60 60 6e 65 74 2e 69 70 76 34 2e 63 6f 6e 66 2e 61 6c 6c 2e 6c 6f 67 5f 6d 61 72 74 69 | ``.``net.ipv4.conf.all.log_marti |
| ba400 | 61 6e 73 60 60 00 60 60 6e 65 74 2e 69 70 76 34 2e 63 6f 6e 66 2e 61 6c 6c 2e 72 70 5f 66 69 6c | ans``.``net.ipv4.conf.all.rp_fil |
| ba420 | 74 65 72 60 60 00 60 60 6e 65 74 2e 69 70 76 34 2e 63 6f 6e 66 2e 61 6c 6c 2e 73 65 6e 64 5f 72 | ter``.``net.ipv4.conf.all.send_r |
| ba440 | 65 64 69 72 65 63 74 73 60 60 00 60 60 6e 65 74 2e 69 70 76 34 2e 69 63 6d 70 5f 65 63 68 6f 5f | edirects``.``net.ipv4.icmp_echo_ |
| ba460 | 69 67 6e 6f 72 65 5f 62 72 6f 61 64 63 61 73 74 73 60 60 00 60 60 6e 65 74 2e 69 70 76 34 2e 74 | ignore_broadcasts``.``net.ipv4.t |
| ba480 | 63 70 5f 72 66 63 31 33 33 37 60 60 00 60 60 6e 65 74 2e 69 70 76 34 2e 74 63 70 5f 73 79 6e 63 | cp_rfc1337``.``net.ipv4.tcp_sync |
| ba4a0 | 6f 6f 6b 69 65 73 60 60 00 60 60 6e 65 74 2e 69 70 76 36 2e 63 6f 6e 66 2e 61 6c 6c 2e 61 63 63 | ookies``.``net.ipv6.conf.all.acc |
| ba4c0 | 65 70 74 5f 72 65 64 69 72 65 63 74 73 60 60 00 60 60 6e 65 74 2e 69 70 76 36 2e 63 6f 6e 66 2e | ept_redirects``.``net.ipv6.conf. |
| ba4e0 | 61 6c 6c 2e 61 63 63 65 70 74 5f 73 6f 75 72 63 65 5f 72 6f 75 74 65 60 60 00 60 60 6e 6f 2d 61 | all.accept_source_route``.``no-a |
| ba500 | 64 76 65 72 74 69 73 65 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c | dvertise``.-.................Wel |
| ba520 | 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 4e 4f 5f 41 44 56 | l-known.communities.value.NO_ADV |
| ba540 | 45 52 54 49 53 45 20 30 78 46 46 46 46 46 46 30 32 00 60 60 6e 6f 2d 65 78 70 6f 72 74 60 60 20 | ERTISE.0xFFFFFF02.``no-export``. |
| ba560 | 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 | -....................Well-known. |
| ba580 | 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 4e 4f 5f 45 58 50 4f 52 54 20 30 78 46 46 | communities.value.NO_EXPORT.0xFF |
| ba5a0 | 46 46 46 46 30 31 00 60 60 6e 6f 2d 6c 6c 67 72 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 | FFFF01.``no-llgr``.-............ |
| ba5c0 | 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 | ..........Well-known.communities |
| ba5e0 | 20 76 61 6c 75 65 20 4e 4f 5f 4c 4c 47 52 20 30 78 46 46 46 46 30 30 30 37 00 60 60 6e 6f 2d 70 | .value.NO_LLGR.0xFFFF0007.``no-p |
| ba600 | 65 65 72 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c | eer``.-......................Wel |
| ba620 | 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 4e 4f 50 45 45 52 | l-known.communities.value.NOPEER |
| ba640 | 20 30 78 46 46 46 46 46 46 30 34 00 60 60 6e 6f 60 60 20 64 69 73 61 62 6c 65 20 72 65 6d 6f 74 | .0xFFFFFF04.``no``.disable.remot |
| ba660 | 65 20 68 6f 73 74 20 72 65 2d 61 75 74 68 65 6e 74 69 63 61 74 6f 6e 20 64 75 72 69 6e 67 20 61 | e.host.re-authenticaton.during.a |
| ba680 | 6e 20 49 4b 45 20 72 65 6b 65 79 3b 00 60 60 6e 6f 6e 65 60 60 20 2d 20 45 78 65 63 75 74 69 6f | n.IKE.rekey;.``none``.-.Executio |
| ba6a0 | 6e 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 6d 69 6e 75 74 65 73 00 60 60 6e 6f 6e 65 60 60 20 2d | n.interval.in.minutes.``none``.- |
| ba6c0 | 20 6c 6f 61 64 73 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 6e 6c 79 2c 20 77 68 69 63 | .loads.the.connection.only,.whic |
| ba6e0 | 68 20 74 68 65 6e 20 63 61 6e 20 62 65 20 6d 61 6e 75 61 6c 6c 79 20 69 6e 69 74 69 61 74 65 64 | h.then.can.be.manually.initiated |
| ba700 | 20 6f 72 20 75 73 65 64 20 61 73 20 61 20 72 65 73 70 6f 6e 64 65 72 20 63 6f 6e 66 69 67 75 72 | .or.used.as.a.responder.configur |
| ba720 | 61 74 69 6f 6e 2e 00 60 60 6e 6f 6e 65 60 60 20 73 65 74 20 61 63 74 69 6f 6e 20 74 6f 20 6e 6f | ation..``none``.set.action.to.no |
| ba740 | 6e 65 20 28 64 65 66 61 75 6c 74 29 3b 00 60 60 6e 6f 73 65 6c 65 63 74 60 60 20 6d 61 72 6b 73 | ne.(default);.``noselect``.marks |
| ba760 | 20 74 68 65 20 73 65 72 76 65 72 20 61 73 20 75 6e 75 73 65 64 2c 20 65 78 63 65 70 74 20 66 6f | .the.server.as.unused,.except.fo |
| ba780 | 72 20 64 69 73 70 6c 61 79 20 70 75 72 70 6f 73 65 73 2e 20 54 68 65 20 73 65 72 76 65 72 20 69 | r.display.purposes..The.server.i |
| ba7a0 | 73 20 64 69 73 63 61 72 64 65 64 20 62 79 20 74 68 65 20 73 65 6c 65 63 74 69 6f 6e 20 61 6c 67 | s.discarded.by.the.selection.alg |
| ba7c0 | 6f 72 69 74 68 6d 2e 00 60 60 6e 6f 74 72 61 63 6b 60 60 3a 20 69 67 6e 6f 72 65 20 63 6f 6e 6e | orithm..``notrack``:.ignore.conn |
| ba7e0 | 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 79 73 74 65 6d 2e 20 54 68 69 73 20 61 63 74 | ection.tracking.system..This.act |
| ba800 | 69 6f 6e 20 69 73 20 6f 6e 6c 79 20 61 76 61 69 6c 61 62 6c 65 20 69 6e 20 70 72 65 72 6f 75 74 | ion.is.only.available.in.prerout |
| ba820 | 69 6e 67 20 63 68 61 69 6e 2e 00 60 60 6e 74 73 60 60 20 65 6e 61 62 6c 65 73 20 4e 65 74 77 6f | ing.chain..``nts``.enables.Netwo |
| ba840 | 72 6b 20 54 69 6d 65 20 53 65 63 75 72 69 74 79 20 28 4e 54 53 29 20 66 6f 72 20 74 68 65 20 73 | rk.Time.Security.(NTS).for.the.s |
| ba860 | 65 72 76 65 72 20 61 73 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 3a 72 66 63 3a 60 38 39 31 35 | erver.as.specified.in.:rfc:`8915 |
| ba880 | 60 00 60 60 6f 70 74 69 6f 6e 73 60 60 00 60 60 6f 73 70 66 60 60 20 2d 20 4f 70 65 6e 20 53 68 | `.``options``.``ospf``.-.Open.Sh |
| ba8a0 | 6f 72 74 65 73 74 20 50 61 74 68 20 46 69 72 73 74 20 28 4f 53 50 46 76 32 29 00 60 60 6f 73 70 | ortest.Path.First.(OSPFv2).``osp |
| ba8c0 | 66 76 33 60 60 20 2d 20 4f 70 65 6e 20 53 68 6f 72 74 65 73 74 20 50 61 74 68 20 46 69 72 73 74 | fv3``.-.Open.Shortest.Path.First |
| ba8e0 | 20 28 49 50 76 36 29 20 28 4f 53 50 46 76 33 29 00 60 60 6f 75 74 60 60 3a 20 52 75 6c 65 73 65 | .(IPv6).(OSPFv3).``out``:.Rulese |
| ba900 | 74 20 66 6f 72 20 66 6f 72 77 61 72 64 65 64 20 70 61 63 6b 65 74 73 20 6f 6e 20 61 6e 20 6f 75 | t.for.forwarded.packets.on.an.ou |
| ba920 | 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 00 60 60 70 61 73 73 69 76 65 60 60 20 54 68 65 | tbound.interface.``passive``.The |
| ba940 | 20 64 72 69 76 65 72 20 61 6c 6c 6f 77 73 20 74 68 65 20 73 79 73 74 65 6d 20 67 6f 76 65 72 6e | .driver.allows.the.system.govern |
| ba960 | 6f 72 20 74 6f 20 6d 61 6e 61 67 65 20 43 50 55 20 66 72 65 71 75 65 6e 63 79 20 77 68 69 6c 65 | or.to.manage.CPU.frequency.while |
| ba980 | 20 70 72 6f 76 69 64 69 6e 67 20 61 76 61 69 6c 61 62 6c 65 20 70 65 72 66 6f 72 6d 61 6e 63 65 | .providing.available.performance |
| ba9a0 | 20 73 74 61 74 65 73 2e 00 60 60 70 61 73 73 70 68 72 61 73 65 60 60 20 2d 20 6c 6f 63 61 6c 20 | .states..``passphrase``.-.local. |
| ba9c0 | 70 72 69 76 61 74 65 20 6b 65 79 20 70 61 73 73 70 68 72 61 73 65 00 60 60 70 61 73 73 70 68 72 | private.key.passphrase.``passphr |
| ba9e0 | 61 73 65 60 60 20 2d 20 70 72 69 76 61 74 65 20 6b 65 79 20 70 61 73 73 70 68 72 61 73 65 2c 20 | ase``.-.private.key.passphrase,. |
| baa00 | 69 66 20 6e 65 65 64 65 64 2e 00 60 60 70 61 73 73 77 6f 72 64 60 60 20 2d 20 70 61 73 73 70 68 | if.needed..``password``.-.passph |
| baa20 | 72 61 73 65 20 70 72 69 76 61 74 65 20 6b 65 79 2c 20 69 66 20 6e 65 65 64 65 64 2e 00 60 60 70 | rase.private.key,.if.needed..``p |
| baa40 | 65 65 72 60 60 20 69 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 56 79 4f 53 20 43 4c 49 20 63 | eer``.is.used.for.the.VyOS.CLI.c |
| baa60 | 6f 6d 6d 61 6e 64 20 74 6f 20 69 64 65 6e 74 69 66 79 20 74 68 65 20 57 69 72 65 47 75 61 72 64 | ommand.to.identify.the.WireGuard |
| baa80 | 20 70 65 65 72 20 77 68 65 72 65 20 74 68 69 73 20 73 65 63 72 65 64 20 69 73 20 74 6f 20 62 65 | .peer.where.this.secred.is.to.be |
| baaa0 | 20 75 73 65 64 2e 00 60 60 70 65 65 72 60 60 20 69 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 | .used..``peer``.is.used.for.the. |
| baac0 | 56 79 4f 53 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 69 64 65 6e 74 69 66 79 20 74 68 65 | VyOS.CLI.command.to.identify.the |
| baae0 | 20 57 69 72 65 47 75 61 72 64 20 70 65 65 72 20 77 68 65 72 65 20 74 68 69 73 20 73 65 63 72 65 | .WireGuard.peer.where.this.secre |
| bab00 | 74 20 69 73 20 74 6f 20 62 65 20 75 73 65 64 2e 00 60 60 70 65 72 69 6f 64 60 60 3a 20 54 69 6d | t.is.to.be.used..``period``:.Tim |
| bab20 | 65 20 77 69 6e 64 6f 77 20 66 6f 72 20 72 61 74 65 20 63 61 6c 63 75 6c 61 74 69 6f 6e 2e 20 50 | e.window.for.rate.calculation..P |
| bab40 | 6f 73 73 69 62 6c 65 20 76 61 6c 75 65 73 3a 20 60 60 73 65 63 6f 6e 64 60 60 20 28 6f 6e 65 20 | ossible.values:.``second``.(one. |
| bab60 | 73 65 63 6f 6e 64 29 2c 20 60 60 6d 69 6e 75 74 65 60 60 20 28 6f 6e 65 20 6d 69 6e 75 74 65 29 | second),.``minute``.(one.minute) |
| bab80 | 2c 20 60 60 68 6f 75 72 60 60 20 28 6f 6e 65 20 68 6f 75 72 29 2e 20 44 65 66 61 75 6c 74 20 69 | ,.``hour``.(one.hour)..Default.i |
| baba0 | 73 20 60 60 73 65 63 6f 6e 64 60 60 2e 00 60 60 70 66 73 60 60 20 77 68 65 74 68 65 72 20 50 65 | s.``second``..``pfs``.whether.Pe |
| babc0 | 72 66 65 63 74 20 46 6f 72 77 61 72 64 20 53 65 63 72 65 63 79 20 6f 66 20 6b 65 79 73 20 69 73 | rfect.Forward.Secrecy.of.keys.is |
| babe0 | 20 64 65 73 69 72 65 64 20 6f 6e 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 27 73 20 6b 65 79 | .desired.on.the.connection's.key |
| bac00 | 69 6e 67 20 63 68 61 6e 6e 65 6c 20 61 6e 64 20 64 65 66 69 6e 65 73 20 61 20 44 69 66 66 69 65 | ing.channel.and.defines.a.Diffie |
| bac20 | 2d 48 65 6c 6c 6d 61 6e 20 67 72 6f 75 70 20 66 6f 72 20 50 46 53 3a 00 60 60 70 67 73 71 6c 60 | -Hellman.group.for.PFS:.``pgsql` |
| bac40 | 60 20 50 6f 73 74 67 72 65 53 51 4c 20 70 72 6f 74 6f 63 6f 6c 20 63 68 65 63 6b 2e 00 60 60 70 | `.PostgreSQL.protocol.check..``p |
| bac60 | 6f 6f 6c 60 60 20 6d 6f 62 69 6c 69 7a 65 73 20 70 65 72 73 69 73 74 65 6e 74 20 63 6c 69 65 6e | ool``.mobilizes.persistent.clien |
| bac80 | 74 20 6d 6f 64 65 20 61 73 73 6f 63 69 61 74 69 6f 6e 20 77 69 74 68 20 61 20 6e 75 6d 62 65 72 | t.mode.association.with.a.number |
| baca0 | 20 6f 66 20 72 65 6d 6f 74 65 20 73 65 72 76 65 72 73 2e 00 60 60 70 6f 72 74 60 60 20 20 50 6f | .of.remote.servers..``port``..Po |
| bacc0 | 72 74 20 6e 75 6d 62 65 72 2e 00 60 60 70 6f 72 74 60 60 20 2d 20 64 65 66 69 6e 65 20 70 6f 72 | rt.number..``port``.-.define.por |
| bace0 | 74 2e 20 48 61 76 65 20 65 66 66 65 63 74 20 6f 6e 6c 79 20 77 68 65 6e 20 75 73 65 64 20 74 6f | t..Have.effect.only.when.used.to |
| bad00 | 67 65 74 68 65 72 20 77 69 74 68 20 60 60 70 72 65 66 69 78 60 60 3b 00 60 60 70 72 65 2d 73 68 | gether.with.``prefix``;.``pre-sh |
| bad20 | 61 72 65 64 2d 73 65 63 72 65 74 60 60 20 2d 20 75 73 65 20 70 72 65 64 65 66 69 6e 65 64 20 73 | ared-secret``.-.use.predefined.s |
| bad40 | 68 61 72 65 64 20 73 65 63 72 65 74 20 70 68 72 61 73 65 3b 00 60 60 70 72 65 66 65 72 60 60 20 | hared.secret.phrase;.``prefer``. |
| bad60 | 6d 61 72 6b 73 20 74 68 65 20 73 65 72 76 65 72 20 61 73 20 70 72 65 66 65 72 72 65 64 2e 20 41 | marks.the.server.as.preferred..A |
| bad80 | 6c 6c 20 6f 74 68 65 72 20 74 68 69 6e 67 73 20 62 65 69 6e 67 20 65 71 75 61 6c 2c 20 74 68 69 | ll.other.things.being.equal,.thi |
| bada0 | 73 20 68 6f 73 74 20 77 69 6c 6c 20 62 65 20 63 68 6f 73 65 6e 20 66 6f 72 20 73 79 6e 63 68 72 | s.host.will.be.chosen.for.synchr |
| badc0 | 6f 6e 69 7a 61 74 69 6f 6e 20 61 6d 6f 6e 67 20 61 20 73 65 74 20 6f 66 20 63 6f 72 72 65 63 74 | onization.among.a.set.of.correct |
| bade0 | 6c 79 20 6f 70 65 72 61 74 69 6e 67 20 68 6f 73 74 73 2e 00 60 60 70 72 65 66 69 78 60 60 20 2d | ly.operating.hosts..``prefix``.- |
| bae00 | 20 49 50 20 6e 65 74 77 6f 72 6b 20 61 74 20 6c 6f 63 61 6c 20 73 69 64 65 2e 00 60 60 70 72 65 | .IP.network.at.local.side..``pre |
| bae20 | 66 69 78 60 60 20 2d 20 49 50 20 6e 65 74 77 6f 72 6b 20 61 74 20 72 65 6d 6f 74 65 20 73 69 64 | fix``.-.IP.network.at.remote.sid |
| bae40 | 65 2e 00 60 60 70 72 66 60 60 20 70 73 65 75 64 6f 2d 72 61 6e 64 6f 6d 20 66 75 6e 63 74 69 6f | e..``prf``.pseudo-random.functio |
| bae60 | 6e 2e 00 60 60 70 72 69 6f 72 69 74 79 60 60 20 2d 20 41 64 64 20 70 72 69 6f 72 69 74 79 20 66 | n..``priority``.-.Add.priority.f |
| bae80 | 6f 72 20 70 6f 6c 69 63 79 2d 62 61 73 65 64 20 49 50 53 65 63 20 56 50 4e 20 74 75 6e 6e 65 6c | or.policy-based.IPSec.VPN.tunnel |
| baea0 | 73 28 6c 6f 77 65 73 74 20 76 61 6c 75 65 20 6d 6f 72 65 20 70 72 65 66 65 72 61 62 6c 65 29 00 | s(lowest.value.more.preferable). |
| baec0 | 60 60 70 72 6f 63 65 73 73 6f 72 2e 6d 61 78 5f 63 73 74 61 74 65 3d 31 60 60 20 4c 69 6d 69 74 | ``processor.max_cstate=1``.Limit |
| baee0 | 20 70 72 6f 63 65 73 73 6f 72 20 74 6f 20 6d 61 78 69 6d 75 6d 20 43 2d 73 74 61 74 65 20 31 00 | .processor.to.maximum.C-state.1. |
| baf00 | 60 60 70 72 6f 70 6f 73 61 6c 60 60 20 45 53 50 2d 67 72 6f 75 70 20 70 72 6f 70 6f 73 61 6c 20 | ``proposal``.ESP-group.proposal. |
| baf20 | 77 69 74 68 20 6e 75 6d 62 65 72 20 3c 31 2d 36 35 35 33 35 3e 3a 00 60 60 70 72 6f 70 6f 73 61 | with.number.<1-65535>:.``proposa |
| baf40 | 6c 60 60 20 74 68 65 20 6c 69 73 74 20 6f 66 20 70 72 6f 70 6f 73 61 6c 73 20 61 6e 64 20 74 68 | l``.the.list.of.proposals.and.th |
| baf60 | 65 69 72 20 70 61 72 61 6d 65 74 65 72 73 3a 00 60 60 70 72 6f 74 6f 63 6f 6c 60 60 20 2d 20 64 | eir.parameters:.``protocol``.-.d |
| baf80 | 65 66 69 6e 65 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 20 66 6f 72 20 6d 61 74 63 68 20 74 72 61 | efine.the.protocol.for.match.tra |
| bafa0 | 66 66 69 63 2c 20 77 68 69 63 68 20 73 68 6f 75 6c 64 20 62 65 20 65 6e 63 72 79 70 74 65 64 20 | ffic,.which.should.be.encrypted. |
| bafc0 | 61 6e 64 20 73 65 6e 64 20 74 6f 20 74 68 69 73 20 70 65 65 72 3b 00 60 60 70 73 6b 60 60 20 2d | and.send.to.this.peer;.``psk``.- |
| bafe0 | 20 50 72 65 73 68 61 72 65 64 20 73 65 63 72 65 74 20 6b 65 79 20 6e 61 6d 65 3a 00 60 60 70 74 | .Preshared.secret.key.name:.``pt |
| bb000 | 70 60 60 20 65 6e 61 62 6c 65 73 20 74 68 65 20 50 54 50 20 74 72 61 6e 73 70 6f 72 74 20 66 6f | p``.enables.the.PTP.transport.fo |
| bb020 | 72 20 74 68 69 73 20 73 65 72 76 65 72 20 28 73 65 65 20 3a 72 65 66 3a 60 70 74 70 2d 74 72 61 | r.this.server.(see.:ref:`ptp-tra |
| bb040 | 6e 73 70 6f 72 74 60 29 2e 00 60 60 71 75 65 75 65 60 60 3a 20 45 6e 71 75 65 75 65 20 70 61 63 | nsport`)..``queue``:.Enqueue.pac |
| bb060 | 6b 65 74 20 74 6f 20 75 73 65 72 73 70 61 63 65 2e 00 60 60 72 61 74 65 60 60 3a 20 4e 75 6d 62 | ket.to.userspace..``rate``:.Numb |
| bb080 | 65 72 20 6f 66 20 70 61 63 6b 65 74 73 2e 20 44 65 66 61 75 6c 74 20 35 2e 00 60 60 72 65 63 65 | er.of.packets..Default.5..``rece |
| bb0a0 | 69 76 65 2d 66 69 6c 74 65 72 20 5b 61 6c 6c 7c 6e 74 70 7c 70 74 70 7c 6e 6f 6e 65 5d 60 60 20 | ive-filter.[all|ntp|ptp|none]``. |
| bb0c0 | 73 65 6c 65 63 74 73 20 74 68 65 20 72 65 63 65 69 76 65 20 66 69 6c 74 65 72 20 6d 6f 64 65 2c | selects.the.receive.filter.mode, |
| bb0e0 | 20 77 68 69 63 68 20 63 6f 6e 74 72 6f 6c 73 20 77 68 69 63 68 20 69 6e 62 6f 75 6e 64 20 70 61 | .which.controls.which.inbound.pa |
| bb100 | 63 6b 65 74 73 20 74 68 65 20 4e 49 43 20 61 70 70 6c 69 65 73 20 74 69 6d 65 73 74 61 6d 70 73 | ckets.the.NIC.applies.timestamps |
| bb120 | 20 74 6f 2e 20 54 68 65 20 73 65 6c 65 63 74 65 64 20 6d 6f 64 65 20 6d 75 73 74 20 62 65 20 73 | .to..The.selected.mode.must.be.s |
| bb140 | 75 70 70 6f 72 74 65 64 20 62 79 20 74 68 65 20 4e 49 43 2c 20 6f 72 20 74 69 6d 65 73 74 61 6d | upported.by.the.NIC,.or.timestam |
| bb160 | 70 69 6e 67 20 77 69 6c 6c 20 62 65 20 64 69 73 61 62 6c 65 64 20 66 6f 72 20 74 68 65 20 69 6e | ping.will.be.disabled.for.the.in |
| bb180 | 74 65 72 66 61 63 65 2e 00 60 60 72 65 64 69 73 60 60 20 52 65 64 69 73 20 70 72 6f 74 6f 63 6f | terface..``redis``.Redis.protoco |
| bb1a0 | 6c 20 63 68 65 63 6b 2e 00 60 60 72 65 6a 65 63 74 60 60 3a 20 72 65 6a 65 63 74 20 74 68 65 20 | l.check..``reject``:.reject.the. |
| bb1c0 | 70 61 63 6b 65 74 2e 00 60 60 72 65 6d 6f 74 65 2d 61 64 64 72 65 73 73 60 60 20 2d 20 72 65 6d | packet..``remote-address``.-.rem |
| bb1e0 | 6f 74 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 68 6f 73 74 6e 61 6d 65 20 66 6f 72 20 49 | ote.IP.address.or.hostname.for.I |
| bb200 | 50 53 65 63 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 | PSec.connection..IPv4.or.IPv6.ad |
| bb220 | 64 72 65 73 73 20 69 73 20 75 73 65 64 20 77 68 65 6e 20 61 20 70 65 65 72 20 68 61 73 20 61 20 | dress.is.used.when.a.peer.has.a. |
| bb240 | 70 75 62 6c 69 63 20 73 74 61 74 69 63 20 49 50 20 61 64 64 72 65 73 73 2e 20 48 6f 73 74 6e 61 | public.static.IP.address..Hostna |
| bb260 | 6d 65 20 69 73 20 61 20 44 4e 53 20 6e 61 6d 65 20 77 68 69 63 68 20 63 6f 75 6c 64 20 62 65 20 | me.is.a.DNS.name.which.could.be. |
| bb280 | 75 73 65 64 20 77 68 65 6e 20 61 20 70 65 65 72 20 68 61 73 20 61 20 70 75 62 6c 69 63 20 49 50 | used.when.a.peer.has.a.public.IP |
| bb2a0 | 20 61 64 64 72 65 73 73 20 61 6e 64 20 44 4e 53 20 6e 61 6d 65 2c 20 62 75 74 20 61 6e 20 49 50 | .address.and.DNS.name,.but.an.IP |
| bb2c0 | 20 61 64 64 72 65 73 73 20 63 6f 75 6c 64 20 62 65 20 63 68 61 6e 67 65 64 20 66 72 6f 6d 20 74 | .address.could.be.changed.from.t |
| bb2e0 | 69 6d 65 20 74 6f 20 74 69 6d 65 2e 00 60 60 72 65 6d 6f 74 65 2d 69 64 60 60 20 2d 20 64 65 66 | ime.to.time..``remote-id``.-.def |
| bb300 | 69 6e 65 20 61 6e 20 49 44 20 66 6f 72 20 72 65 6d 6f 74 65 20 70 65 65 72 2c 20 69 6e 73 74 65 | ine.an.ID.for.remote.peer,.inste |
| bb320 | 61 64 20 6f 66 20 75 73 69 6e 67 20 70 65 65 72 20 6e 61 6d 65 20 6f 72 20 61 64 64 72 65 73 73 | ad.of.using.peer.name.or.address |
| bb340 | 2e 20 55 73 65 66 75 6c 20 69 6e 20 63 61 73 65 20 69 66 20 74 68 65 20 72 65 6d 6f 74 65 20 70 | ..Useful.in.case.if.the.remote.p |
| bb360 | 65 65 72 20 69 73 20 62 65 68 69 6e 64 20 4e 41 54 20 6f 72 20 69 66 20 60 60 6d 6f 64 65 20 78 | eer.is.behind.NAT.or.if.``mode.x |
| bb380 | 35 30 39 60 60 20 69 73 20 75 73 65 64 3b 00 60 60 72 65 6d 6f 74 65 2d 6b 65 79 60 60 20 2d 20 | 509``.is.used;.``remote-key``.-. |
| bb3a0 | 6e 61 6d 65 20 6f 66 20 50 4b 49 20 6b 65 79 2d 70 61 69 72 20 77 69 74 68 20 72 65 6d 6f 74 65 | name.of.PKI.key-pair.with.remote |
| bb3c0 | 20 70 75 62 6c 69 63 20 6b 65 79 00 60 60 72 65 6d 6f 74 65 60 60 20 2d 20 64 65 66 69 6e 65 20 | .public.key.``remote``.-.define. |
| bb3e0 | 74 68 65 20 72 65 6d 6f 74 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 66 6f 72 20 6d 61 74 63 68 | the.remote.destination.for.match |
| bb400 | 20 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 73 68 6f 75 6c 64 20 62 65 20 65 6e 63 72 79 70 | .traffic,.which.should.be.encryp |
| bb420 | 74 65 64 20 61 6e 64 20 73 65 6e 64 20 74 6f 20 74 68 69 73 20 70 65 65 72 3a 00 60 60 72 65 70 | ted.and.send.to.this.peer:.``rep |
| bb440 | 6c 61 79 2d 77 69 6e 64 6f 77 60 60 20 2d 20 49 50 73 65 63 20 72 65 70 6c 61 79 20 77 69 6e 64 | lay-window``.-.IPsec.replay.wind |
| bb460 | 6f 77 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 66 6f 72 20 74 68 69 73 20 43 48 49 4c 44 5f 53 | ow.to.configure.for.this.CHILD_S |
| bb480 | 41 20 28 64 65 66 61 75 6c 74 3a 20 33 32 29 2c 20 61 20 76 61 6c 75 65 20 6f 66 20 30 20 64 69 | A.(default:.32),.a.value.of.0.di |
| bb4a0 | 73 61 62 6c 65 73 20 49 50 73 65 63 20 72 65 70 6c 61 79 20 70 72 6f 74 65 63 74 69 6f 6e 00 60 | sables.IPsec.replay.protection.` |
| bb4c0 | 60 72 65 71 2d 73 73 6c 2d 73 6e 69 60 60 20 53 53 4c 20 53 65 72 76 65 72 20 4e 61 6d 65 20 49 | `req-ssl-sni``.SSL.Server.Name.I |
| bb4e0 | 6e 64 69 63 61 74 69 6f 6e 20 28 53 4e 49 29 20 72 65 71 75 65 73 74 20 6d 61 74 63 68 00 60 60 | ndication.(SNI).request.match.`` |
| bb500 | 72 65 73 70 2d 74 69 6d 65 60 60 3a 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 72 65 73 70 6f 6e 73 | resp-time``:.the.maximum.respons |
| bb520 | 65 20 74 69 6d 65 20 66 6f 72 20 70 69 6e 67 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 52 61 6e 67 | e.time.for.ping.in.seconds..Rang |
| bb540 | 65 20 31 2e 2e 2e 33 30 2c 20 64 65 66 61 75 6c 74 20 35 00 60 60 72 65 73 70 6f 6e 64 60 60 20 | e.1...30,.default.5.``respond``. |
| bb560 | 2d 20 64 6f 65 73 20 6e 6f 74 20 74 72 79 20 74 6f 20 69 6e 69 74 69 61 74 65 20 61 20 63 6f 6e | -.does.not.try.to.initiate.a.con |
| bb580 | 6e 65 63 74 69 6f 6e 20 74 6f 20 61 20 72 65 6d 6f 74 65 20 70 65 65 72 2e 20 49 6e 20 74 68 69 | nection.to.a.remote.peer..In.thi |
| bb5a0 | 73 20 6d 6f 64 65 2c 20 74 68 65 20 49 50 53 65 63 20 73 65 73 73 69 6f 6e 20 77 69 6c 6c 20 62 | s.mode,.the.IPSec.session.will.b |
| bb5c0 | 65 20 65 73 74 61 62 6c 69 73 68 65 64 20 6f 6e 6c 79 20 61 66 74 65 72 20 69 6e 69 74 69 61 74 | e.established.only.after.initiat |
| bb5e0 | 69 6f 6e 20 66 72 6f 6d 20 61 20 72 65 6d 6f 74 65 20 70 65 65 72 2e 20 43 6f 75 6c 64 20 62 65 | ion.from.a.remote.peer..Could.be |
| bb600 | 20 75 73 65 66 75 6c 20 77 68 65 6e 20 74 68 65 72 65 20 69 73 20 6e 6f 20 64 69 72 65 63 74 20 | .useful.when.there.is.no.direct. |
| bb620 | 63 6f 6e 6e 65 63 74 69 76 69 74 79 20 74 6f 20 74 68 65 20 70 65 65 72 20 64 75 65 20 74 6f 20 | connectivity.to.the.peer.due.to. |
| bb640 | 66 69 72 65 77 61 6c 6c 20 6f 72 20 4e 41 54 20 69 6e 20 74 68 65 20 6d 69 64 64 6c 65 20 6f 66 | firewall.or.NAT.in.the.middle.of |
| bb660 | 20 74 68 65 20 6c 6f 63 61 6c 20 61 6e 64 20 72 65 6d 6f 74 65 20 73 69 64 65 2e 00 60 60 72 65 | .the.local.and.remote.side..``re |
| bb680 | 73 74 61 72 74 60 60 20 69 6d 6d 65 64 69 61 74 65 6c 79 20 74 72 69 65 73 20 74 6f 20 72 65 2d | start``.immediately.tries.to.re- |
| bb6a0 | 6e 65 67 6f 74 69 61 74 65 20 74 68 65 20 43 48 49 4c 44 5f 53 41 20 75 6e 64 65 72 20 61 20 66 | negotiate.the.CHILD_SA.under.a.f |
| bb6c0 | 72 65 73 68 20 49 4b 45 5f 53 41 3b 00 60 60 72 65 73 74 61 72 74 60 60 20 73 65 74 20 61 63 74 | resh.IKE_SA;.``restart``.set.act |
| bb6e0 | 69 6f 6e 20 74 6f 20 72 65 73 74 61 72 74 3b 00 60 60 72 65 74 75 72 6e 60 60 3a 20 52 65 74 75 | ion.to.restart;.``return``:.Retu |
| bb700 | 72 6e 20 66 72 6f 6d 20 74 68 65 20 63 75 72 72 65 6e 74 20 63 68 61 69 6e 20 61 6e 64 20 63 6f | rn.from.the.current.chain.and.co |
| bb720 | 6e 74 69 6e 75 65 20 61 74 20 74 68 65 20 6e 65 78 74 20 72 75 6c 65 20 6f 66 20 74 68 65 20 6c | ntinue.at.the.next.rule.of.the.l |
| bb740 | 61 73 74 20 63 68 61 69 6e 2e 00 60 60 72 69 70 60 60 20 2d 20 52 6f 75 74 69 6e 67 20 49 6e 66 | ast.chain..``rip``.-.Routing.Inf |
| bb760 | 6f 72 6d 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 20 28 52 49 50 29 00 60 60 72 69 70 6e 67 60 | ormation.Protocol.(RIP).``ripng` |
| bb780 | 60 20 2d 20 52 6f 75 74 69 6e 67 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c | `.-.Routing.Information.Protocol |
| bb7a0 | 20 6e 65 78 74 2d 67 65 6e 65 72 61 74 69 6f 6e 20 28 49 50 76 36 29 20 28 52 49 50 6e 67 29 00 | .next-generation.(IPv6).(RIPng). |
| bb7c0 | 60 60 72 6f 75 6e 64 2d 72 6f 62 69 6e 60 60 20 2d 20 52 6f 75 6e 64 2d 72 6f 62 69 6e 20 70 6f | ``round-robin``.-.Round-robin.po |
| bb7e0 | 6c 69 63 79 3a 20 54 72 61 6e 73 6d 69 74 20 70 61 63 6b 65 74 73 20 69 6e 20 73 65 71 75 65 6e | licy:.Transmit.packets.in.sequen |
| bb800 | 74 69 61 6c 20 6f 72 64 65 72 20 66 72 6f 6d 20 74 68 65 20 66 69 72 73 74 20 61 76 61 69 6c 61 | tial.order.from.the.first.availa |
| bb820 | 62 6c 65 20 73 6c 61 76 65 20 74 68 72 6f 75 67 68 20 74 68 65 20 6c 61 73 74 2e 00 60 60 72 6f | ble.slave.through.the.last..``ro |
| bb840 | 75 6e 64 2d 72 6f 62 69 6e 60 60 20 44 69 73 74 72 69 62 75 74 65 73 20 72 65 71 75 65 73 74 73 | und-robin``.Distributes.requests |
| bb860 | 20 69 6e 20 61 20 63 69 72 63 75 6c 61 72 20 6d 61 6e 6e 65 72 2c 20 73 65 71 75 65 6e 74 69 61 | .in.a.circular.manner,.sequentia |
| bb880 | 6c 6c 79 20 73 65 6e 64 69 6e 67 20 65 61 63 68 20 72 65 71 75 65 73 74 20 74 6f 20 74 68 65 20 | lly.sending.each.request.to.the. |
| bb8a0 | 6e 65 78 74 20 73 65 72 76 65 72 20 69 6e 20 6c 69 6e 65 00 60 60 72 6f 75 74 65 2d 66 69 6c 74 | next.server.in.line.``route-filt |
| bb8c0 | 65 72 2d 74 72 61 6e 73 6c 61 74 65 64 2d 76 34 60 60 20 2d 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 | er-translated-v4``.-...Well-know |
| bb8e0 | 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 52 4f 55 54 45 5f 46 49 4c 54 45 52 | n.communities.value.ROUTE_FILTER |
| bb900 | 5f 54 52 41 4e 53 4c 41 54 45 44 5f 76 34 20 30 78 46 46 46 46 30 30 30 32 00 60 60 72 6f 75 74 | _TRANSLATED_v4.0xFFFF0002.``rout |
| bb920 | 65 2d 66 69 6c 74 65 72 2d 74 72 61 6e 73 6c 61 74 65 64 2d 76 36 60 60 20 2d 20 20 20 57 65 6c | e-filter-translated-v6``.-...Wel |
| bb940 | 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 52 4f 55 54 45 5f | l-known.communities.value.ROUTE_ |
| bb960 | 46 49 4c 54 45 52 5f 54 52 41 4e 53 4c 41 54 45 44 5f 76 36 20 30 78 46 46 46 46 30 30 30 34 00 | FILTER_TRANSLATED_v6.0xFFFF0004. |
| bb980 | 60 60 72 6f 75 74 65 2d 66 69 6c 74 65 72 2d 76 34 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 | ``route-filter-v4``.-........... |
| bb9a0 | 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 | ...Well-known.communities.value. |
| bb9c0 | 52 4f 55 54 45 5f 46 49 4c 54 45 52 5f 76 34 20 30 78 46 46 46 46 30 30 30 33 00 60 60 72 6f 75 | ROUTE_FILTER_v4.0xFFFF0003.``rou |
| bb9e0 | 74 65 2d 66 69 6c 74 65 72 2d 76 36 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 | te-filter-v6``.-..............We |
| bba00 | 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 52 4f 55 54 45 | ll-known.communities.value.ROUTE |
| bba20 | 5f 46 49 4c 54 45 52 5f 76 36 20 30 78 46 46 46 46 30 30 30 35 00 60 60 72 73 61 2d 6b 65 79 2d | _FILTER_v6.0xFFFF0005.``rsa-key- |
| bba40 | 6e 61 6d 65 60 60 20 2d 20 73 68 61 72 65 64 20 52 53 41 20 6b 65 79 20 66 6f 72 20 61 75 74 68 | name``.-.shared.RSA.key.for.auth |
| bba60 | 65 6e 74 69 63 61 74 69 6f 6e 2e 20 54 68 65 20 6b 65 79 20 6d 75 73 74 20 62 65 20 64 65 66 69 | entication..The.key.must.be.defi |
| bba80 | 6e 65 64 20 69 6e 20 74 68 65 20 60 60 73 65 74 20 76 70 6e 20 72 73 61 2d 6b 65 79 73 60 60 20 | ned.in.the.``set.vpn.rsa-keys``. |
| bbaa0 | 73 65 63 74 69 6f 6e 3b 00 60 60 72 73 61 60 60 20 2d 20 6f 70 74 69 6f 6e 73 20 66 6f 72 20 52 | section;.``rsa``.-.options.for.R |
| bbac0 | 53 41 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 6f 64 65 3a 00 60 60 72 73 61 60 60 20 | SA.authentication.mode:.``rsa``. |
| bbae0 | 2d 20 75 73 65 20 73 69 6d 70 6c 65 20 73 68 61 72 65 64 20 52 53 41 20 6b 65 79 2e 00 60 60 72 | -.use.simple.shared.RSA.key..``r |
| bbb00 | 73 61 60 60 20 2d 20 75 73 65 20 73 69 6d 70 6c 65 20 73 68 61 72 65 64 20 52 53 41 20 6b 65 79 | sa``.-.use.simple.shared.RSA.key |
| bbb20 | 2e 20 54 68 65 20 6b 65 79 20 6d 75 73 74 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 65 | ..The.key.must.be.defined.in.the |
| bbb40 | 20 60 60 73 65 74 20 76 70 6e 20 72 73 61 2d 6b 65 79 73 60 60 20 73 65 63 74 69 6f 6e 3b 00 60 | .``set.vpn.rsa-keys``.section;.` |
| bbb60 | 60 73 65 63 72 65 74 60 60 20 2d 20 70 72 65 64 65 66 69 6e 65 64 20 73 68 61 72 65 64 20 73 65 | `secret``.-.predefined.shared.se |
| bbb80 | 63 72 65 74 2e 20 55 73 65 64 20 69 66 20 63 6f 6e 66 69 67 75 72 65 64 20 6d 6f 64 65 20 60 60 | cret..Used.if.configured.mode.`` |
| bbba0 | 70 72 65 2d 73 68 61 72 65 64 2d 73 65 63 72 65 74 60 60 3b 00 60 60 73 65 74 20 66 69 72 65 77 | pre-shared-secret``;.``set.firew |
| bbbc0 | 61 6c 6c 20 62 72 69 64 67 65 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e | all.bridge.forward.filter....``. |
| bbbe0 | 00 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 69 6e 70 75 74 20 66 69 6c | .``set.firewall.bridge.input.fil |
| bbc00 | 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 | ter....``..``set.firewall.bridge |
| bbc20 | 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 65 74 20 66 69 72 65 | .output.filter....``..``set.fire |
| bbc40 | 77 61 6c 6c 20 62 72 69 64 67 65 20 70 72 65 72 6f 75 74 69 6e 67 20 66 69 6c 74 65 72 20 2e 2e | wall.bridge.prerouting.filter... |
| bbc60 | 2e 60 60 2e 00 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 66 6f 72 77 61 72 64 | .``..``set.firewall.ipv4.forward |
| bbc80 | 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 | .filter....``..``set.firewall.ip |
| bbca0 | 76 34 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 65 74 20 66 69 72 | v4.input.filter....``..``set.fir |
| bbcc0 | 65 77 61 6c 6c 20 69 70 76 34 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 | ewall.ipv4.output.filter....``.. |
| bbce0 | 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 20 66 69 6c 74 | ``set.firewall.ipv6.forward.filt |
| bbd00 | 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 69 6e | er....``..``set.firewall.ipv6.in |
| bbd20 | 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c | put.filter....``..``set.firewall |
| bbd40 | 20 69 70 76 36 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 69 6e | .ipv6.output.filter....``..``sin |
| bbd60 | 67 6c 65 2d 75 73 65 72 2d 62 65 61 6d 66 6f 72 6d 65 65 60 60 20 2d 20 53 75 70 70 6f 72 74 20 | gle-user-beamformee``.-.Support. |
| bbd80 | 66 6f 72 20 6f 70 65 72 61 74 69 6f 6e 20 61 73 20 73 69 6e 67 6c 65 20 75 73 65 72 20 62 65 61 | for.operation.as.single.user.bea |
| bbda0 | 6d 66 6f 72 6d 65 65 00 60 60 73 69 6e 67 6c 65 2d 75 73 65 72 2d 62 65 61 6d 66 6f 72 6d 65 72 | mformee.``single-user-beamformer |
| bbdc0 | 60 60 20 2d 20 53 75 70 70 6f 72 74 20 66 6f 72 20 6f 70 65 72 61 74 69 6f 6e 20 61 73 20 73 69 | ``.-.Support.for.operation.as.si |
| bbde0 | 6e 67 6c 65 20 75 73 65 72 20 62 65 61 6d 66 6f 72 6d 65 72 00 60 60 73 6d 74 70 60 60 20 53 4d | ngle.user.beamformer.``smtp``.SM |
| bbe00 | 54 50 20 70 72 6f 74 6f 63 6f 6c 20 63 68 65 63 6b 2e 00 60 60 73 6f 6e 6d 70 60 60 20 2d 20 4c | TP.protocol.check..``sonmp``.-.L |
| bbe20 | 69 73 74 65 6e 20 66 6f 72 20 53 4f 4e 4d 50 20 66 6f 72 20 4e 6f 72 74 65 6c 20 72 6f 75 74 65 | isten.for.SONMP.for.Nortel.route |
| bbe40 | 72 73 2f 73 77 69 74 63 68 65 73 00 60 60 73 6f 75 72 63 65 2d 61 64 64 72 65 73 73 60 60 20 44 | rs/switches.``source-address``.D |
| bbe60 | 69 73 74 72 69 62 75 74 65 73 20 72 65 71 75 65 73 74 73 20 62 61 73 65 64 20 6f 6e 20 74 68 65 | istributes.requests.based.on.the |
| bbe80 | 20 73 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 63 6c 69 65 6e 74 | .source.IP.address.of.the.client |
| bbea0 | 00 60 60 73 73 68 2d 64 73 73 60 60 00 60 60 73 73 68 2d 65 64 32 35 35 31 39 60 60 00 60 60 73 | .``ssh-dss``.``ssh-ed25519``.``s |
| bbec0 | 73 68 2d 72 73 61 20 41 41 41 41 42 33 4e 7a 61 43 31 79 63 32 45 41 41 41 41 42 41 41 2e 2e 2e | sh-rsa.AAAAB3NzaC1yc2EAAAABAA... |
| bbee0 | 56 42 44 35 6c 4b 77 45 57 42 20 75 73 65 72 6e 61 6d 65 40 68 6f 73 74 2e 65 78 61 6d 70 6c 65 | VBD5lKwEWB.username@host.example |
| bbf00 | 2e 63 6f 6d 60 60 00 60 60 73 73 68 2d 72 73 61 60 60 00 60 60 73 73 6c 2d 66 63 2d 73 6e 69 2d | .com``.``ssh-rsa``.``ssl-fc-sni- |
| bbf20 | 65 6e 64 60 60 20 53 53 4c 20 66 72 6f 6e 74 65 6e 64 20 6d 61 74 63 68 20 65 6e 64 20 6f 66 20 | end``.SSL.frontend.match.end.of. |
| bbf40 | 63 6f 6e 6e 65 63 74 69 6f 6e 20 53 65 72 76 65 72 20 4e 61 6d 65 00 60 60 73 73 6c 2d 66 63 2d | connection.Server.Name.``ssl-fc- |
| bbf60 | 73 6e 69 60 60 20 53 53 4c 20 66 72 6f 6e 74 65 6e 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 53 65 | sni``.SSL.frontend.connection.Se |
| bbf80 | 72 76 65 72 20 4e 61 6d 65 20 49 6e 64 69 63 61 74 69 6f 6e 20 6d 61 74 63 68 00 60 60 73 74 61 | rver.Name.Indication.match.``sta |
| bbfa0 | 72 74 60 60 20 74 72 69 65 73 20 74 6f 20 69 6d 6d 65 64 69 61 74 65 6c 79 20 72 65 2d 63 72 65 | rt``.tries.to.immediately.re-cre |
| bbfc0 | 61 74 65 20 74 68 65 20 43 48 49 4c 44 5f 53 41 3b 00 60 60 73 74 61 74 69 63 60 60 20 2d 20 53 | ate.the.CHILD_SA;.``static``.-.S |
| bbfe0 | 74 61 74 69 63 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 72 6f 75 74 65 73 00 60 60 73 74 | tatically.configured.routes.``st |
| bc000 | 61 74 69 6f 6e 60 60 20 2d 20 43 6f 6e 6e 65 63 74 73 20 74 6f 20 61 6e 6f 74 68 65 72 20 61 63 | ation``.-.Connects.to.another.ac |
| bc020 | 63 65 73 73 20 70 6f 69 6e 74 00 60 60 73 74 61 74 75 73 20 32 30 30 2d 33 39 39 60 60 20 45 78 | cess.point.``status.200-399``.Ex |
| bc040 | 70 65 63 74 69 6e 67 20 61 20 6e 6f 6e 2d 66 61 69 6c 75 72 65 20 72 65 73 70 6f 6e 73 65 20 63 | pecting.a.non-failure.response.c |
| bc060 | 6f 64 65 00 60 60 73 74 61 74 75 73 20 32 30 30 60 60 20 45 78 70 65 63 74 69 6e 67 20 61 20 32 | ode.``status.200``.Expecting.a.2 |
| bc080 | 30 30 20 72 65 73 70 6f 6e 73 65 20 63 6f 64 65 00 60 60 73 74 72 69 6e 67 20 73 75 63 63 65 73 | 00.response.code.``string.succes |
| bc0a0 | 73 60 60 20 45 78 70 65 63 74 69 6e 67 20 74 68 65 20 73 74 72 69 6e 67 20 60 73 75 63 63 65 73 | s``.Expecting.the.string.`succes |
| bc0c0 | 73 60 20 69 6e 20 74 68 65 20 72 65 73 70 6f 6e 73 65 20 62 6f 64 79 00 60 60 73 79 6e 70 72 6f | s`.in.the.response.body.``synpro |
| bc0e0 | 78 79 60 60 3a 20 73 79 6e 70 72 6f 78 79 20 74 68 65 20 70 61 63 6b 65 74 2e 00 60 60 73 79 73 | xy``:.synproxy.the.packet..``sys |
| bc100 | 63 74 6c 60 60 20 69 73 20 75 73 65 64 20 74 6f 20 6d 6f 64 69 66 79 20 6b 65 72 6e 65 6c 20 70 | ctl``.is.used.to.modify.kernel.p |
| bc120 | 61 72 61 6d 65 74 65 72 73 20 61 74 20 72 75 6e 74 69 6d 65 2e 20 20 54 68 65 20 70 61 72 61 6d | arameters.at.runtime...The.param |
| bc140 | 65 74 65 72 73 20 61 76 61 69 6c 61 62 6c 65 20 61 72 65 20 74 68 6f 73 65 20 6c 69 73 74 65 64 | eters.available.are.those.listed |
| bc160 | 20 75 6e 64 65 72 20 2f 70 72 6f 63 2f 73 79 73 2f 2e 00 60 60 74 61 62 6c 65 20 31 30 60 60 20 | .under./proc/sys/..``table.10``. |
| bc180 | 52 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 75 73 65 64 20 66 6f 72 20 49 53 50 31 00 60 60 74 61 | Routing.table.used.for.ISP1.``ta |
| bc1a0 | 62 6c 65 20 31 30 60 60 20 52 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 75 73 65 64 20 66 6f 72 20 | ble.10``.Routing.table.used.for. |
| bc1c0 | 56 4c 41 4e 20 31 30 20 28 31 39 32 2e 31 36 38 2e 31 38 38 2e 30 2f 32 34 29 00 60 60 74 61 62 | VLAN.10.(192.168.188.0/24).``tab |
| bc1e0 | 6c 65 20 31 31 60 60 20 52 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 75 73 65 64 20 66 6f 72 20 49 | le.11``.Routing.table.used.for.I |
| bc200 | 53 50 32 00 60 60 74 61 62 6c 65 20 31 31 60 60 20 52 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 75 | SP2.``table.11``.Routing.table.u |
| bc220 | 73 65 64 20 66 6f 72 20 56 4c 41 4e 20 31 31 20 28 31 39 32 2e 31 36 38 2e 31 38 39 2e 30 2f 32 | sed.for.VLAN.11.(192.168.189.0/2 |
| bc240 | 34 29 00 60 60 74 61 62 6c 65 60 60 20 2d 20 4e 6f 6e 2d 6d 61 69 6e 20 4b 65 72 6e 65 6c 20 52 | 4).``table``.-.Non-main.Kernel.R |
| bc260 | 6f 75 74 69 6e 67 20 54 61 62 6c 65 00 60 60 74 61 72 67 65 74 60 60 3a 20 74 68 65 20 74 61 72 | outing.Table.``target``:.the.tar |
| bc280 | 67 65 74 20 74 6f 20 62 65 20 73 65 6e 74 20 49 43 4d 50 20 70 61 63 6b 65 74 73 20 74 6f 2c 20 | get.to.be.sent.ICMP.packets.to,. |
| bc2a0 | 61 64 64 72 65 73 73 20 63 61 6e 20 62 65 20 61 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 20 6f | address.can.be.an.IPv4.address.o |
| bc2c0 | 72 20 68 6f 73 74 6e 61 6d 65 00 60 60 74 65 73 74 2d 73 63 72 69 70 74 60 60 3a 20 41 20 75 73 | r.hostname.``test-script``:.A.us |
| bc2e0 | 65 72 20 64 65 66 69 6e 65 64 20 73 63 72 69 70 74 20 6d 75 73 74 20 72 65 74 75 72 6e 20 30 20 | er.defined.script.must.return.0. |
| bc300 | 74 6f 20 62 65 20 63 6f 6e 73 69 64 65 72 65 64 20 73 75 63 63 65 73 73 66 75 6c 20 61 6e 64 20 | to.be.considered.successful.and. |
| bc320 | 6e 6f 6e 2d 7a 65 72 6f 20 74 6f 20 66 61 69 6c 2e 20 53 63 72 69 70 74 73 20 61 72 65 20 6c 6f | non-zero.to.fail..Scripts.are.lo |
| bc340 | 63 61 74 65 64 20 69 6e 20 2f 63 6f 6e 66 69 67 2f 73 63 72 69 70 74 73 2c 20 66 6f 72 20 64 69 | cated.in./config/scripts,.for.di |
| bc360 | 66 66 65 72 65 6e 74 20 6c 6f 63 61 74 69 6f 6e 73 20 74 68 65 20 66 75 6c 6c 20 70 61 74 68 20 | fferent.locations.the.full.path. |
| bc380 | 6e 65 65 64 73 20 74 6f 20 62 65 20 70 72 6f 76 69 64 65 64 00 60 60 74 68 72 65 73 68 6f 6c 64 | needs.to.be.provided.``threshold |
| bc3a0 | 60 60 3a 20 60 60 62 65 6c 6f 77 60 60 20 6f 72 20 60 60 61 62 6f 76 65 60 60 20 74 68 65 20 73 | ``:.``below``.or.``above``.the.s |
| bc3c0 | 70 65 63 69 66 69 65 64 20 72 61 74 65 20 6c 69 6d 69 74 2e 00 60 60 74 68 72 6f 75 67 68 70 75 | pecified.rate.limit..``throughpu |
| bc3e0 | 74 60 60 3a 20 41 20 73 65 72 76 65 72 20 70 72 6f 66 69 6c 65 20 66 6f 63 75 73 65 64 20 6f 6e | t``:.A.server.profile.focused.on |
| bc400 | 20 69 6d 70 72 6f 76 69 6e 67 20 6e 65 74 77 6f 72 6b 20 74 68 72 6f 75 67 68 70 75 74 2e 20 54 | .improving.network.throughput..T |
| bc420 | 68 69 73 20 70 72 6f 66 69 6c 65 20 66 61 76 6f 72 73 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 6f | his.profile.favors.performance.o |
| bc440 | 76 65 72 20 70 6f 77 65 72 20 73 61 76 69 6e 67 73 20 62 79 20 73 65 74 74 69 6e 67 20 60 60 69 | ver.power.savings.by.setting.``i |
| bc460 | 6e 74 65 6c 5f 70 73 74 61 74 65 60 60 20 61 6e 64 20 60 60 6d 61 78 5f 70 65 72 66 5f 70 63 74 | ntel_pstate``.and.``max_perf_pct |
| bc480 | 3d 31 30 30 60 60 20 61 6e 64 20 69 6e 63 72 65 61 73 69 6e 67 20 6b 65 72 6e 65 6c 20 6e 65 74 | =100``.and.increasing.kernel.net |
| bc4a0 | 77 6f 72 6b 20 62 75 66 66 65 72 20 73 69 7a 65 73 2e 00 60 60 74 69 6d 65 31 2e 76 79 6f 73 2e | work.buffer.sizes..``time1.vyos. |
| bc4c0 | 6e 65 74 60 60 00 60 60 74 69 6d 65 32 2e 76 79 6f 73 2e 6e 65 74 60 60 00 60 60 74 69 6d 65 33 | net``.``time2.vyos.net``.``time3 |
| bc4e0 | 2e 76 79 6f 73 2e 6e 65 74 60 60 00 60 60 74 69 6d 65 6f 75 74 60 60 20 6b 65 65 70 2d 61 6c 69 | .vyos.net``.``timeout``.keep-ali |
| bc500 | 76 65 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e 64 73 20 3c 32 2d 38 36 34 30 30 3e 20 | ve.timeout.in.seconds.<2-86400>. |
| bc520 | 28 64 65 66 61 75 6c 74 20 31 32 30 29 20 49 4b 45 76 31 20 6f 6e 6c 79 00 60 60 74 6f 6b 65 6e | (default.120).IKEv1.only.``token |
| bc540 | 60 60 20 75 73 65 20 4a 57 54 20 74 6f 6b 65 6e 73 2e 00 60 60 74 72 61 6e 73 6d 69 74 2d 6c 6f | ``.use.JWT.tokens..``transmit-lo |
| bc560 | 61 64 2d 62 61 6c 61 6e 63 65 60 60 20 2d 20 41 64 61 70 74 69 76 65 20 74 72 61 6e 73 6d 69 74 | ad-balance``.-.Adaptive.transmit |
| bc580 | 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 3a 20 63 68 61 6e 6e 65 6c 20 62 6f 6e 64 69 6e 67 | .load.balancing:.channel.bonding |
| bc5a0 | 20 74 68 61 74 20 64 6f 65 73 20 6e 6f 74 20 72 65 71 75 69 72 65 20 61 6e 79 20 73 70 65 63 69 | .that.does.not.require.any.speci |
| bc5c0 | 61 6c 20 73 77 69 74 63 68 20 73 75 70 70 6f 72 74 2e 00 60 60 74 72 61 6e 73 70 6f 72 74 60 60 | al.switch.support..``transport`` |
| bc5e0 | 20 74 72 61 6e 73 70 6f 72 74 20 6d 6f 64 65 3b 00 60 60 74 72 61 70 60 60 20 20 69 6e 73 74 61 | .transport.mode;.``trap``..insta |
| bc600 | 6c 6c 73 20 61 20 74 72 61 70 20 70 6f 6c 69 63 79 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 63 61 | lls.a.trap.policy,.which.will.ca |
| bc620 | 74 63 68 20 6d 61 74 63 68 69 6e 67 20 74 72 61 66 66 69 63 20 61 6e 64 20 74 72 69 65 73 20 74 | tch.matching.traffic.and.tries.t |
| bc640 | 6f 20 72 65 2d 6e 65 67 6f 74 69 61 74 65 20 74 68 65 20 74 75 6e 6e 65 6c 20 6f 6e 2d 64 65 6d | o.re-negotiate.the.tunnel.on-dem |
| bc660 | 61 6e 64 3b 00 60 60 74 72 61 70 60 60 20 69 6e 73 74 61 6c 6c 73 20 61 20 74 72 61 70 20 70 6f | and;.``trap``.installs.a.trap.po |
| bc680 | 6c 69 63 79 20 66 6f 72 20 74 68 65 20 43 48 49 4c 44 5f 53 41 3b 00 60 60 74 74 6c 2d 6c 69 6d | licy.for.the.CHILD_SA;.``ttl-lim |
| bc6a0 | 69 74 60 60 3a 20 46 6f 72 20 74 68 65 20 55 44 50 20 54 54 4c 20 6c 69 6d 69 74 20 74 65 73 74 | it``:.For.the.UDP.TTL.limit.test |
| bc6c0 | 20 74 68 65 20 68 6f 70 20 63 6f 75 6e 74 20 6c 69 6d 69 74 20 6d 75 73 74 20 62 65 20 73 70 65 | .the.hop.count.limit.must.be.spe |
| bc6e0 | 63 69 66 69 65 64 2e 20 54 68 65 20 6c 69 6d 69 74 20 6d 75 73 74 20 62 65 20 73 68 6f 72 74 65 | cified..The.limit.must.be.shorte |
| bc700 | 72 20 74 68 61 6e 20 74 68 65 20 70 61 74 68 20 6c 65 6e 67 74 68 2c 20 61 6e 20 49 43 4d 50 20 | r.than.the.path.length,.an.ICMP. |
| bc720 | 74 69 6d 65 20 65 78 70 69 72 65 64 20 6d 65 73 73 61 67 65 20 69 73 20 6e 65 65 64 65 64 20 74 | time.expired.message.is.needed.t |
| bc740 | 6f 20 62 65 20 72 65 74 75 72 6e 65 64 20 66 6f 72 20 61 20 73 75 63 63 65 73 73 66 75 6c 20 74 | o.be.returned.for.a.successful.t |
| bc760 | 65 73 74 2e 20 64 65 66 61 75 6c 74 20 31 00 60 60 74 74 79 53 4e 60 60 20 2d 20 53 65 72 69 61 | est..default.1.``ttySN``.-.Seria |
| bc780 | 6c 20 64 65 76 69 63 65 20 6e 61 6d 65 00 60 60 74 74 79 55 53 42 58 60 60 20 2d 20 55 53 42 20 | l.device.name.``ttyUSBX``.-.USB. |
| bc7a0 | 53 65 72 69 61 6c 20 64 65 76 69 63 65 20 6e 61 6d 65 00 60 60 74 75 6e 6e 65 6c 60 60 20 2d 20 | Serial.device.name.``tunnel``.-. |
| bc7c0 | 64 65 66 69 6e 65 20 63 72 69 74 65 72 69 61 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 20 62 | define.criteria.for.traffic.to.b |
| bc7e0 | 65 20 6d 61 74 63 68 65 64 20 66 6f 72 20 65 6e 63 72 79 70 74 69 6e 67 20 61 6e 64 20 73 65 6e | e.matched.for.encrypting.and.sen |
| bc800 | 64 20 69 74 20 74 6f 20 61 20 70 65 65 72 3a 00 60 60 74 75 6e 6e 65 6c 60 60 20 74 75 6e 6e 65 | d.it.to.a.peer:.``tunnel``.tunne |
| bc820 | 6c 20 6d 6f 64 65 20 28 64 65 66 61 75 6c 74 29 3b 00 60 60 74 79 70 65 60 60 20 20 4c 6f 67 20 | l.mode.(default);.``type``..Log. |
| bc840 | 74 79 70 65 73 2e 00 60 60 74 79 70 65 60 60 3a 20 53 70 65 63 69 66 79 20 74 68 65 20 74 79 70 | types..``type``:.Specify.the.typ |
| bc860 | 65 20 6f 66 20 74 65 73 74 2e 20 74 79 70 65 20 63 61 6e 20 62 65 20 70 69 6e 67 2c 20 74 74 6c | e.of.test..type.can.be.ping,.ttl |
| bc880 | 20 6f 72 20 61 20 75 73 65 72 20 64 65 66 69 6e 65 64 20 73 63 72 69 70 74 00 60 60 75 73 65 2d | .or.a.user.defined.script.``use- |
| bc8a0 | 78 35 30 39 2d 69 64 60 60 20 2d 20 75 73 65 20 6c 6f 63 61 6c 20 49 44 20 66 72 6f 6d 20 78 35 | x509-id``.-.use.local.ID.from.x5 |
| bc8c0 | 30 39 20 63 65 72 74 69 66 69 63 61 74 65 2e 20 43 61 6e 6e 6f 74 20 62 65 20 75 73 65 64 20 77 | 09.certificate..Cannot.be.used.w |
| bc8e0 | 68 65 6e 20 60 60 69 64 60 60 20 69 73 20 64 65 66 69 6e 65 64 3b 00 60 60 76 69 72 74 75 61 6c | hen.``id``.is.defined;.``virtual |
| bc900 | 2d 61 64 64 72 65 73 73 60 60 20 2d 20 44 65 66 69 6e 65 73 20 61 20 76 69 72 74 75 61 6c 20 49 | -address``.-.Defines.a.virtual.I |
| bc920 | 50 20 61 64 64 72 65 73 73 20 77 68 69 63 68 20 69 73 20 72 65 71 75 65 73 74 65 64 20 62 79 20 | P.address.which.is.requested.by. |
| bc940 | 74 68 65 20 69 6e 69 74 69 61 74 6f 72 20 61 6e 64 20 6f 6e 65 20 6f 72 20 73 65 76 65 72 61 6c | the.initiator.and.one.or.several |
| bc960 | 20 49 50 76 34 20 61 6e 64 2f 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 | .IPv4.and/or.IPv6.addresses.are. |
| bc980 | 61 73 73 69 67 6e 65 64 20 66 72 6f 6d 20 6d 75 6c 74 69 70 6c 65 20 70 6f 6f 6c 73 20 62 79 20 | assigned.from.multiple.pools.by. |
| bc9a0 | 74 68 65 20 72 65 73 70 6f 6e 64 65 72 2e 00 60 60 76 69 72 74 75 61 6c 2d 69 70 60 60 20 41 6c | the.responder..``virtual-ip``.Al |
| bc9c0 | 6c 6f 77 20 69 6e 73 74 61 6c 6c 20 76 69 72 74 75 61 6c 2d 69 70 20 61 64 64 72 65 73 73 65 73 | low.install.virtual-ip.addresses |
| bc9e0 | 2e 20 43 6f 6d 6d 61 20 73 65 70 61 72 61 74 65 64 20 6c 69 73 74 20 6f 66 20 76 69 72 74 75 61 | ..Comma.separated.list.of.virtua |
| bca00 | 6c 20 49 50 73 20 74 6f 20 72 65 71 75 65 73 74 20 69 6e 20 49 4b 45 76 32 20 63 6f 6e 66 69 67 | l.IPs.to.request.in.IKEv2.config |
| bca20 | 75 72 61 74 69 6f 6e 20 70 61 79 6c 6f 61 64 73 20 6f 72 20 49 4b 45 76 31 20 4d 6f 64 65 20 43 | uration.payloads.or.IKEv1.Mode.C |
| bca40 | 6f 6e 66 69 67 2e 20 54 68 65 20 77 69 6c 64 63 61 72 64 20 61 64 64 72 65 73 73 65 73 20 30 2e | onfig..The.wildcard.addresses.0. |
| bca60 | 30 2e 30 2e 30 20 61 6e 64 20 3a 3a 20 72 65 71 75 65 73 74 20 61 6e 20 61 72 62 69 74 72 61 72 | 0.0.0.and.::.request.an.arbitrar |
| bca80 | 79 20 61 64 64 72 65 73 73 2c 20 73 70 65 63 69 66 69 63 20 61 64 64 72 65 73 73 65 73 20 6d 61 | y.address,.specific.addresses.ma |
| bcaa0 | 79 20 62 65 20 64 65 66 69 6e 65 64 2e 20 54 68 65 20 72 65 73 70 6f 6e 64 65 72 20 6d 61 79 20 | y.be.defined..The.responder.may. |
| bcac0 | 72 65 74 75 72 6e 20 61 20 64 69 66 66 65 72 65 6e 74 20 61 64 64 72 65 73 73 2c 20 74 68 6f 75 | return.a.different.address,.thou |
| bcae0 | 67 68 2c 20 6f 72 20 6e 6f 6e 65 20 61 74 20 61 6c 6c 2e 00 60 60 76 69 72 74 75 61 6c 2d 69 70 | gh,.or.none.at.all..``virtual-ip |
| bcb00 | 60 60 20 41 6c 6c 6f 77 73 20 74 68 65 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 20 6f 66 20 76 69 | ``.Allows.the.installation.of.vi |
| bcb20 | 72 74 75 61 6c 2d 69 70 20 61 64 64 72 65 73 73 65 73 2e 20 41 20 63 6f 6d 6d 61 00 60 60 76 69 | rtual-ip.addresses..A.comma.``vi |
| bcb40 | 72 74 75 61 6c 2d 69 70 60 60 20 41 6c 6c 6f 77 73 20 74 6f 20 69 6e 73 74 61 6c 6c 20 76 69 72 | rtual-ip``.Allows.to.install.vir |
| bcb60 | 74 75 61 6c 2d 69 70 20 61 64 64 72 65 73 73 65 73 2e 20 43 6f 6d 6d 61 20 73 65 70 61 72 61 74 | tual-ip.addresses..Comma.separat |
| bcb80 | 65 64 20 6c 69 73 74 20 6f 66 20 76 69 72 74 75 61 6c 20 49 50 73 20 74 6f 20 72 65 71 75 65 73 | ed.list.of.virtual.IPs.to.reques |
| bcba0 | 74 20 69 6e 20 49 4b 45 76 32 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 79 6c 6f 61 64 | t.in.IKEv2.configuration.payload |
| bcbc0 | 73 20 6f 72 20 49 4b 45 76 31 20 4d 6f 64 65 20 43 6f 6e 66 69 67 2e 20 54 68 65 20 77 69 6c 64 | s.or.IKEv1.Mode.Config..The.wild |
| bcbe0 | 63 61 72 64 20 61 64 64 72 65 73 73 65 73 20 30 2e 30 2e 30 2e 30 20 61 6e 64 20 3a 3a 20 72 65 | card.addresses.0.0.0.0.and.::.re |
| bcc00 | 71 75 65 73 74 20 61 6e 20 61 72 62 69 74 72 61 72 79 20 61 64 64 72 65 73 73 2c 20 73 70 65 63 | quest.an.arbitrary.address,.spec |
| bcc20 | 69 66 69 63 20 61 64 64 72 65 73 73 65 73 20 6d 61 79 20 62 65 20 64 65 66 69 6e 65 64 2e 20 54 | ific.addresses.may.be.defined..T |
| bcc40 | 68 65 20 72 65 73 70 6f 6e 64 65 72 20 6d 61 79 20 72 65 74 75 72 6e 20 61 20 64 69 66 66 65 72 | he.responder.may.return.a.differ |
| bcc60 | 65 6e 74 20 61 64 64 72 65 73 73 2c 20 74 68 6f 75 67 68 2c 20 6f 72 20 6e 6f 6e 65 20 61 74 20 | ent.address,.though,.or.none.at. |
| bcc80 | 61 6c 6c 2e 20 44 65 66 69 6e 65 20 74 68 65 20 60 60 76 69 72 74 75 61 6c 2d 61 64 64 72 65 73 | all..Define.the.``virtual-addres |
| bcca0 | 73 60 60 20 6f 70 74 69 6f 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 49 50 20 61 | s``.option.to.configure.the.IP.a |
| bccc0 | 64 64 72 65 73 73 20 69 6e 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 68 69 65 72 61 72 63 68 79 | ddress.in.site-to-site.hierarchy |
| bcce0 | 2e 00 60 60 76 6e 63 60 60 20 2d 20 56 69 72 74 75 61 6c 20 4e 65 74 77 6f 72 6b 20 43 6f 6e 74 | ..``vnc``.-.Virtual.Network.Cont |
| bcd00 | 72 6f 6c 20 28 56 4e 43 29 00 60 60 76 74 69 60 60 20 2d 20 75 73 65 20 61 20 56 54 49 20 69 6e | rol.(VNC).``vti``.-.use.a.VTI.in |
| bcd20 | 74 65 72 66 61 63 65 20 66 6f 72 20 74 72 61 66 66 69 63 20 65 6e 63 72 79 70 74 69 6f 6e 2e 20 | terface.for.traffic.encryption.. |
| bcd40 | 41 6e 79 20 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 73 65 6e 64 20 | Any.traffic,.which.will.be.send. |
| bcd60 | 74 6f 20 56 54 49 20 69 6e 74 65 72 66 61 63 65 20 77 69 6c 6c 20 62 65 20 65 6e 63 72 79 70 74 | to.VTI.interface.will.be.encrypt |
| bcd80 | 65 64 20 61 6e 64 20 73 65 6e 64 20 74 6f 20 74 68 69 73 20 70 65 65 72 2e 20 55 73 69 6e 67 20 | ed.and.send.to.this.peer..Using. |
| bcda0 | 56 54 49 20 6d 61 6b 65 73 20 49 50 53 65 63 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 75 | VTI.makes.IPSec.configuration.mu |
| bcdc0 | 63 68 20 66 6c 65 78 69 62 6c 65 20 61 6e 64 20 65 61 73 69 65 72 20 69 6e 20 63 6f 6d 70 6c 65 | ch.flexible.and.easier.in.comple |
| bcde0 | 78 20 73 69 74 75 61 74 69 6f 6e 2c 20 61 6e 64 20 61 6c 6c 6f 77 73 20 74 6f 20 64 79 6e 61 6d | x.situation,.and.allows.to.dynam |
| bce00 | 69 63 61 6c 6c 79 20 61 64 64 2f 64 65 6c 65 74 65 20 72 65 6d 6f 74 65 20 6e 65 74 77 6f 72 6b | ically.add/delete.remote.network |
| bce20 | 73 2c 20 72 65 61 63 68 61 62 6c 65 20 76 69 61 20 61 20 70 65 65 72 2c 20 61 73 20 69 6e 20 74 | s,.reachable.via.a.peer,.as.in.t |
| bce40 | 68 69 73 20 6d 6f 64 65 20 72 6f 75 74 65 72 20 64 6f 6e 27 74 20 6e 65 65 64 20 74 6f 20 63 72 | his.mode.router.don't.need.to.cr |
| bce60 | 65 61 74 65 20 61 64 64 69 74 69 6f 6e 61 6c 20 53 41 2f 70 6f 6c 69 63 79 20 66 6f 72 20 65 61 | eate.additional.SA/policy.for.ea |
| bce80 | 63 68 20 72 65 6d 6f 74 65 20 6e 65 74 77 6f 72 6b 3a 00 60 60 76 79 6f 73 5f 63 65 72 74 60 60 | ch.remote.network:.``vyos_cert`` |
| bcea0 | 20 69 73 20 61 20 6c 65 61 66 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 20 75 73 | .is.a.leaf.server.certificate.us |
| bcec0 | 65 64 20 74 6f 20 69 64 65 6e 74 69 66 79 20 74 68 65 20 56 79 4f 53 20 72 6f 75 74 65 72 2c 20 | ed.to.identify.the.VyOS.router,. |
| bcee0 | 73 69 67 6e 65 64 20 62 79 20 74 68 65 20 73 65 72 76 65 72 20 69 6e 74 65 72 6d 65 64 69 61 72 | signed.by.the.server.intermediar |
| bcf00 | 79 20 43 41 2e 00 60 60 76 79 6f 73 5f 63 6c 69 65 6e 74 5f 63 61 60 60 20 61 6e 64 20 60 60 76 | y.CA..``vyos_client_ca``.and.``v |
| bcf20 | 79 6f 73 5f 73 65 72 76 65 72 5f 63 61 60 60 20 61 72 65 20 69 6e 74 65 72 6d 65 64 69 61 72 79 | yos_server_ca``.are.intermediary |
| bcf40 | 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 69 65 73 2c 20 77 68 69 63 68 20 | .certificate.authorities,.which. |
| bcf60 | 61 72 65 20 73 69 67 6e 65 64 20 62 79 20 74 68 65 20 72 6f 6f 74 20 43 41 2e 00 60 60 76 79 6f | are.signed.by.the.root.CA..``vyo |
| bcf80 | 73 5f 65 78 61 6d 70 6c 65 5f 75 73 65 72 60 60 20 69 73 20 61 20 6c 65 61 66 20 63 6c 69 65 6e | s_example_user``.is.a.leaf.clien |
| bcfa0 | 74 20 63 65 72 74 69 66 69 63 61 74 65 20 75 73 65 64 20 74 6f 20 69 64 65 6e 74 69 66 79 20 61 | t.certificate.used.to.identify.a |
| bcfc0 | 20 75 73 65 72 2c 20 73 69 67 6e 65 64 20 62 79 20 63 6c 69 65 6e 74 20 69 6e 74 65 72 6d 65 64 | .user,.signed.by.client.intermed |
| bcfe0 | 69 61 72 79 20 43 41 2e 00 60 60 76 79 6f 73 5f 72 6f 6f 74 5f 63 61 60 60 20 69 73 20 74 68 65 | iary.CA..``vyos_root_ca``.is.the |
| bd000 | 20 72 6f 6f 74 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 2e 00 60 60 78 | .root.certificate.authority..``x |
| bd020 | 35 30 39 60 60 20 2d 20 6f 70 74 69 6f 6e 73 20 66 6f 72 20 78 35 30 39 20 61 75 74 68 65 6e 74 | 509``.-.options.for.x509.authent |
| bd040 | 69 63 61 74 69 6f 6e 20 6d 6f 64 65 3a 00 60 60 78 35 30 39 60 60 20 2d 20 75 73 65 20 63 65 72 | ication.mode:.``x509``.-.use.cer |
| bd060 | 74 69 66 69 63 61 74 65 73 20 69 6e 66 72 61 73 74 72 75 63 74 75 72 65 20 66 6f 72 20 61 75 74 | tificates.infrastructure.for.aut |
| bd080 | 68 65 6e 74 69 63 61 74 69 6f 6e 2e 00 60 60 78 6f 72 2d 68 61 73 68 60 60 20 2d 20 58 4f 52 20 | hentication..``xor-hash``.-.XOR. |
| bd0a0 | 70 6f 6c 69 63 79 3a 20 54 72 61 6e 73 6d 69 74 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 73 65 | policy:.Transmit.based.on.the.se |
| bd0c0 | 6c 65 63 74 65 64 20 74 72 61 6e 73 6d 69 74 20 68 61 73 68 20 70 6f 6c 69 63 79 2e 20 20 54 68 | lected.transmit.hash.policy...Th |
| bd0e0 | 65 20 64 65 66 61 75 6c 74 20 70 6f 6c 69 63 79 20 69 73 20 61 20 73 69 6d 70 6c 65 20 5b 28 73 | e.default.policy.is.a.simple.[(s |
| bd100 | 6f 75 72 63 65 20 4d 41 43 20 61 64 64 72 65 73 73 20 58 4f 52 27 64 20 77 69 74 68 20 64 65 73 | ource.MAC.address.XOR'd.with.des |
| bd120 | 74 69 6e 61 74 69 6f 6e 20 4d 41 43 20 61 64 64 72 65 73 73 20 58 4f 52 20 70 61 63 6b 65 74 20 | tination.MAC.address.XOR.packet. |
| bd140 | 74 79 70 65 20 49 44 29 20 6d 6f 64 75 6c 6f 20 73 6c 61 76 65 20 63 6f 75 6e 74 5d 2e 20 41 6c | type.ID).modulo.slave.count]..Al |
| bd160 | 74 65 72 6e 61 74 65 20 74 72 61 6e 73 6d 69 74 20 70 6f 6c 69 63 69 65 73 20 6d 61 79 20 62 65 | ternate.transmit.policies.may.be |
| bd180 | 20 73 65 6c 65 63 74 65 64 20 76 69 61 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 68 61 73 68 2d | .selected.via.the.:cfgcmd:`hash- |
| bd1a0 | 70 6f 6c 69 63 79 60 20 6f 70 74 69 6f 6e 2c 20 64 65 73 63 72 69 62 65 64 20 62 65 6c 6f 77 2e | policy`.option,.described.below. |
| bd1c0 | 00 60 60 79 65 73 60 60 20 65 6e 61 62 6c 65 20 72 65 6d 6f 74 65 20 68 6f 73 74 20 72 65 2d 61 | .``yes``.enable.remote.host.re-a |
| bd1e0 | 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 64 75 72 69 6e 67 20 61 6e 20 49 4b 45 20 72 65 6b 65 | uthentication.during.an.IKE.reke |
| bd200 | 79 3b 00 60 61 6c 6c 60 3a 20 41 6c 6c 20 72 65 63 65 69 76 65 64 20 70 61 63 6b 65 74 73 20 77 | y;.`all`:.All.received.packets.w |
| bd220 | 69 6c 6c 20 62 65 20 74 69 6d 65 73 74 61 6d 70 65 64 2e 00 60 69 67 6e 6f 72 65 60 3a 20 4e 6f | ill.be.timestamped..`ignore`:.No |
| bd240 | 20 63 6f 72 72 65 63 74 69 6f 6e 20 69 73 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 63 6c | .correction.is.applied.to.the.cl |
| bd260 | 6f 63 6b 20 66 6f 72 20 74 68 65 20 6c 65 61 70 20 73 65 63 6f 6e 64 2e 20 54 68 65 20 63 6c 6f | ock.for.the.leap.second..The.clo |
| bd280 | 63 6b 20 77 69 6c 6c 20 62 65 20 63 6f 72 72 65 63 74 65 64 20 6c 61 74 65 72 20 69 6e 20 6e 6f | ck.will.be.corrected.later.in.no |
| bd2a0 | 72 6d 61 6c 20 6f 70 65 72 61 74 69 6f 6e 20 77 68 65 6e 20 6e 65 77 20 6d 65 61 73 75 72 65 6d | rmal.operation.when.new.measurem |
| bd2c0 | 65 6e 74 73 20 61 72 65 20 6d 61 64 65 20 61 6e 64 20 74 68 65 20 65 73 74 69 6d 61 74 65 64 20 | ents.are.made.and.the.estimated. |
| bd2e0 | 6f 66 66 73 65 74 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 6f 6e 65 20 73 65 63 6f 6e 64 20 65 | offset.includes.the.one.second.e |
| bd300 | 72 72 6f 72 2e 00 60 6e 6f 6e 65 60 3a 20 4e 6f 20 72 65 63 65 69 76 65 64 20 70 61 63 6b 65 74 | rror..`none`:.No.received.packet |
| bd320 | 73 20 77 69 6c 6c 20 62 65 20 74 69 6d 65 73 74 61 6d 70 65 64 2e 20 48 61 72 64 77 61 72 65 20 | s.will.be.timestamped..Hardware. |
| bd340 | 74 69 6d 65 73 74 61 6d 70 69 6e 67 20 6f 66 20 74 72 61 6e 73 6d 69 74 74 65 64 20 70 61 63 6b | timestamping.of.transmitted.pack |
| bd360 | 65 74 73 20 77 69 6c 6c 20 73 74 69 6c 6c 20 62 65 20 6c 65 76 65 72 61 67 65 64 2c 20 69 66 20 | ets.will.still.be.leveraged,.if. |
| bd380 | 73 75 70 70 6f 72 74 65 64 20 62 79 20 74 68 65 20 4e 49 43 2e 00 60 6e 74 70 60 3a 20 4f 6e 6c | supported.by.the.NIC..`ntp`:.Onl |
| bd3a0 | 79 20 72 65 63 65 69 76 65 64 20 20 4e 54 50 20 70 72 6f 74 6f 63 6f 6c 20 70 61 63 6b 65 74 73 | y.received..NTP.protocol.packets |
| bd3c0 | 20 77 69 6c 6c 20 62 65 20 74 69 6d 65 73 74 61 6d 70 65 64 2e 00 60 70 74 70 60 3a 20 4f 6e 6c | .will.be.timestamped..`ptp`:.Onl |
| bd3e0 | 79 20 72 65 63 65 69 76 65 64 20 50 54 50 20 70 72 6f 74 6f 63 6f 6c 20 70 61 63 6b 65 74 73 20 | y.received.PTP.protocol.packets. |
| bd400 | 77 69 6c 6c 20 62 65 20 74 69 6d 65 73 74 61 6d 70 65 64 2e 20 43 6f 6d 62 69 6e 65 64 20 77 69 | will.be.timestamped..Combined.wi |
| bd420 | 74 68 20 74 68 65 20 50 54 50 20 74 72 61 6e 73 70 6f 72 74 20 66 6f 72 20 4e 54 50 20 70 61 63 | th.the.PTP.transport.for.NTP.pac |
| bd440 | 6b 65 74 73 2c 20 74 68 69 73 20 63 61 6e 20 62 65 20 6c 65 76 65 72 61 67 65 64 20 74 6f 20 74 | kets,.this.can.be.leveraged.to.t |
| bd460 | 61 6b 65 20 61 64 76 61 6e 74 61 67 65 20 6f 66 20 68 61 72 64 77 61 72 65 20 74 69 6d 65 73 74 | ake.advantage.of.hardware.timest |
| bd480 | 61 6d 70 69 6e 67 20 6f 6e 20 4e 49 43 73 20 74 68 61 74 20 6f 6e 6c 79 20 73 75 70 70 6f 72 74 | amping.on.NICs.that.only.support |
| bd4a0 | 20 74 68 65 20 70 74 70 20 66 69 6c 74 65 72 20 6d 6f 64 65 2e 00 60 73 6d 65 61 72 60 3a 20 57 | .the.ptp.filter.mode..`smear`:.W |
| bd4c0 | 68 65 6e 20 73 6d 65 61 72 69 6e 67 20 61 20 6c 65 61 70 20 73 65 63 6f 6e 64 2c 20 74 68 65 20 | hen.smearing.a.leap.second,.the. |
| bd4e0 | 6c 65 61 70 20 73 74 61 74 75 73 20 69 73 20 73 75 70 70 72 65 73 73 65 64 20 6f 6e 20 74 68 65 | leap.status.is.suppressed.on.the |
| bd500 | 20 73 65 72 76 65 72 20 61 6e 64 20 74 68 65 20 73 65 72 76 65 64 20 74 69 6d 65 20 69 73 20 63 | .server.and.the.served.time.is.c |
| bd520 | 6f 72 72 65 63 74 65 64 20 73 6c 6f 77 6c 79 20 62 79 20 73 6c 65 77 69 6e 67 20 69 6e 73 74 65 | orrected.slowly.by.slewing.inste |
| bd540 | 61 64 20 6f 66 20 73 74 65 70 70 69 6e 67 2e 20 54 68 65 20 63 6c 69 65 6e 74 73 20 64 6f 20 6e | ad.of.stepping..The.clients.do.n |
| bd560 | 6f 74 20 6e 65 65 64 20 61 6e 79 20 73 70 65 63 69 61 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | ot.need.any.special.configuratio |
| bd580 | 6e 20 61 73 20 74 68 65 79 20 64 6f 20 6e 6f 74 20 6b 6e 6f 77 20 74 68 65 72 65 20 69 73 20 61 | n.as.they.do.not.know.there.is.a |
| bd5a0 | 6e 79 20 6c 65 61 70 20 73 65 63 6f 6e 64 20 61 6e 64 20 74 68 65 79 20 66 6f 6c 6c 6f 77 20 74 | ny.leap.second.and.they.follow.t |
| bd5c0 | 68 65 20 73 65 72 76 65 72 20 74 69 6d 65 20 77 68 69 63 68 20 65 76 65 6e 74 75 61 6c 6c 79 20 | he.server.time.which.eventually. |
| bd5e0 | 62 72 69 6e 67 73 20 74 68 65 6d 20 62 61 63 6b 20 74 6f 20 55 54 43 2e 20 43 61 72 65 20 6d 75 | brings.them.back.to.UTC..Care.mu |
| bd600 | 73 74 20 62 65 20 74 61 6b 65 6e 20 74 6f 20 65 6e 73 75 72 65 20 74 68 65 79 20 75 73 65 20 6f | st.be.taken.to.ensure.they.use.o |
| bd620 | 6e 6c 79 20 4e 54 50 20 73 65 72 76 65 72 73 20 77 68 69 63 68 20 73 6d 65 61 72 20 74 68 65 20 | nly.NTP.servers.which.smear.the. |
| bd640 | 6c 65 61 70 20 73 65 63 6f 6e 64 20 69 6e 20 65 78 61 63 74 6c 79 20 74 68 65 20 73 61 6d 65 20 | leap.second.in.exactly.the.same. |
| bd660 | 77 61 79 20 66 6f 72 20 73 79 6e 63 68 72 6f 6e 69 73 61 74 69 6f 6e 2e 00 60 73 6f 75 72 63 65 | way.for.synchronisation..`source |
| bd680 | 2d 61 64 64 72 65 73 73 60 20 61 6e 64 20 60 73 6f 75 72 63 65 2d 69 6e 74 65 72 66 61 63 65 60 | -address`.and.`source-interface` |
| bd6a0 | 20 63 61 6e 20 6e 6f 74 20 62 65 20 75 73 65 64 20 61 74 20 74 68 65 20 73 61 6d 65 20 74 69 6d | .can.not.be.used.at.the.same.tim |
| bd6c0 | 65 2e 00 60 73 79 73 74 65 6d 60 3a 20 57 68 65 6e 20 69 6e 73 65 72 74 69 6e 67 20 61 20 6c 65 | e..`system`:.When.inserting.a.le |
| bd6e0 | 61 70 20 73 65 63 6f 6e 64 2c 20 74 68 65 20 6b 65 72 6e 65 6c 20 73 74 65 70 73 20 74 68 65 20 | ap.second,.the.kernel.steps.the. |
| bd700 | 73 79 73 74 65 6d 20 63 6c 6f 63 6b 20 62 61 63 6b 77 61 72 64 73 20 62 79 20 6f 6e 65 20 73 65 | system.clock.backwards.by.one.se |
| bd720 | 63 6f 6e 64 20 77 68 65 6e 20 74 68 65 20 63 6c 6f 63 6b 20 67 65 74 73 20 74 6f 20 30 30 3a 30 | cond.when.the.clock.gets.to.00:0 |
| bd740 | 30 3a 30 30 20 55 54 43 2e 20 57 68 65 6e 20 64 65 6c 65 74 69 6e 67 20 61 20 6c 65 61 70 20 73 | 0:00.UTC..When.deleting.a.leap.s |
| bd760 | 65 63 6f 6e 64 2c 20 69 74 20 73 74 65 70 73 20 66 6f 72 77 61 72 64 20 62 79 20 6f 6e 65 20 73 | econd,.it.steps.forward.by.one.s |
| bd780 | 65 63 6f 6e 64 20 77 68 65 6e 20 74 68 65 20 63 6c 6f 63 6b 20 67 65 74 73 20 74 6f 20 32 33 3a | econd.when.the.clock.gets.to.23: |
| bd7a0 | 35 39 3a 35 39 20 55 54 43 2e 00 60 74 69 6d 65 7a 6f 6e 65 60 3a 20 54 68 69 73 20 64 69 72 65 | 59:59.UTC..`timezone`:.This.dire |
| bd7c0 | 63 74 69 76 65 20 73 70 65 63 69 66 69 65 73 20 61 20 74 69 6d 65 7a 6f 6e 65 20 69 6e 20 74 68 | ctive.specifies.a.timezone.in.th |
| bd7e0 | 65 20 73 79 73 74 65 6d 20 74 69 6d 65 7a 6f 6e 65 20 64 61 74 61 62 61 73 65 20 77 68 69 63 68 | e.system.timezone.database.which |
| bd800 | 20 63 68 72 6f 6e 79 64 20 63 61 6e 20 75 73 65 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 77 68 | .chronyd.can.use.to.determine.wh |
| bd820 | 65 6e 20 77 69 6c 6c 20 74 68 65 20 6e 65 78 74 20 6c 65 61 70 20 73 65 63 6f 6e 64 20 6f 63 63 | en.will.the.next.leap.second.occ |
| bd840 | 75 72 20 61 6e 64 20 77 68 61 74 20 69 73 20 74 68 65 20 63 75 72 72 65 6e 74 20 6f 66 66 73 65 | ur.and.what.is.the.current.offse |
| bd860 | 74 20 62 65 74 77 65 65 6e 20 54 41 49 20 61 6e 64 20 55 54 43 2e 20 49 74 20 77 69 6c 6c 20 70 | t.between.TAI.and.UTC..It.will.p |
| bd880 | 65 72 69 6f 64 69 63 61 6c 6c 79 20 63 68 65 63 6b 20 69 66 20 32 33 3a 35 39 3a 35 39 20 61 6e | eriodically.check.if.23:59:59.an |
| bd8a0 | 64 20 32 33 3a 35 39 3a 36 30 20 61 72 65 20 76 61 6c 69 64 20 74 69 6d 65 73 20 69 6e 20 74 68 | d.23:59:60.are.valid.times.in.th |
| bd8c0 | 65 20 74 69 6d 65 7a 6f 6e 65 2e 20 54 68 69 73 20 6e 6f 72 6d 61 6c 6c 79 20 77 6f 72 6b 73 20 | e.timezone..This.normally.works. |
| bd8e0 | 77 69 74 68 20 74 68 65 20 72 69 67 68 74 2f 55 54 43 20 74 69 6d 65 7a 6f 6e 65 20 77 68 69 63 | with.the.right/UTC.timezone.whic |
| bd900 | 68 20 69 73 20 74 68 65 20 64 65 66 61 75 6c 74 00 60 74 77 65 65 74 20 62 79 20 45 76 69 6c 4d | h.is.the.default.`tweet.by.EvilM |
| bd920 | 6f 67 60 5f 2c 20 32 30 32 30 2d 30 32 2d 32 31 00 61 20 62 61 6e 64 77 69 64 74 68 20 74 65 73 | og`_,.2020-02-21.a.bandwidth.tes |
| bd940 | 74 20 6f 76 65 72 20 74 68 65 20 56 50 4e 20 67 6f 74 20 74 68 65 73 65 20 72 65 73 75 6c 74 73 | t.over.the.VPN.got.these.results |
| bd960 | 3a 00 61 20 62 6c 61 6e 6b 20 69 6e 64 69 63 61 74 65 73 20 74 68 61 74 20 6e 6f 20 74 65 73 74 | :.a.blank.indicates.that.no.test |
| bd980 | 20 68 61 73 20 62 65 65 6e 20 63 61 72 72 69 65 64 20 6f 75 74 00 61 65 73 32 35 36 20 45 6e 63 | .has.been.carried.out.aes256.Enc |
| bd9a0 | 72 79 70 74 69 6f 6e 00 61 6c 65 72 74 00 61 6c 6c 00 61 6e 20 52 44 20 2f 20 52 54 4c 49 53 54 | ryption.alert.all.an.RD./.RTLIST |
| bd9c0 | 00 61 6e 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 61 20 6e 65 78 74 68 6f 70 00 61 6e 79 | .an.interface.with.a.nexthop.any |
| bd9e0 | 3a 20 61 6e 79 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 6d 61 74 63 68 2e 00 61 6e 79 3a 20 | :.any.IP.address.to.match..any:. |
| bda00 | 61 6e 79 20 49 50 76 36 20 61 64 64 72 65 73 73 20 74 6f 20 6d 61 74 63 68 2e 00 61 75 74 68 00 | any.IPv6.address.to.match..auth. |
| bda20 | 61 75 74 68 6f 72 69 7a 61 74 69 6f 6e 00 61 75 74 6f 20 2d 20 69 6e 74 65 72 66 61 63 65 20 64 | authorization.auto.-.interface.d |
| bda40 | 75 70 6c 65 78 20 73 65 74 74 69 6e 67 20 69 73 20 61 75 74 6f 2d 6e 65 67 6f 74 69 61 74 65 64 | uplex.setting.is.auto-negotiated |
| bda60 | 00 61 75 74 6f 20 2d 20 69 6e 74 65 72 66 61 63 65 20 73 70 65 65 64 20 69 73 20 61 75 74 6f 2d | .auto.-.interface.speed.is.auto- |
| bda80 | 6e 65 67 6f 74 69 61 74 65 64 00 62 67 70 64 00 62 6f 6e 64 69 6e 67 00 62 6f 6f 74 2d 73 69 7a | negotiated.bgpd.bonding.boot-siz |
| bdaa0 | 65 00 62 6f 6f 74 66 69 6c 65 2d 6e 61 6d 65 00 62 6f 6f 74 66 69 6c 65 2d 6e 61 6d 65 2c 20 66 | e.bootfile-name.bootfile-name,.f |
| bdac0 | 69 6c 65 6e 61 6d 65 00 62 6f 6f 74 66 69 6c 65 2d 73 65 72 76 65 72 00 62 6f 6f 74 66 69 6c 65 | ilename.bootfile-server.bootfile |
| bdae0 | 2d 73 69 7a 65 00 62 72 69 64 67 65 00 63 6c 69 65 6e 74 20 65 78 61 6d 70 6c 65 20 28 64 65 62 | -size.bridge.client.example.(deb |
| bdb00 | 69 61 6e 20 39 29 00 63 6c 69 65 6e 74 2d 70 72 65 66 69 78 2d 6c 65 6e 67 74 68 00 63 6c 6f 63 | ian.9).client-prefix-length.cloc |
| bdb20 | 6b 00 63 6c 6f 63 6b 20 64 61 65 6d 6f 6e 20 28 6e 6f 74 65 20 32 29 00 63 72 69 74 00 63 72 6f | k.clock.daemon.(note.2).crit.cro |
| bdb40 | 6e 00 64 61 65 6d 6f 6e 00 64 64 63 6c 69 65 6e 74 5f 20 68 61 73 20 61 6e 6f 74 68 65 72 20 77 | n.daemon.ddclient_.has.another.w |
| bdb60 | 61 79 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 57 41 4e 20 49 50 20 61 64 64 72 65 | ay.to.determine.the.WAN.IP.addre |
| bdb80 | 73 73 2e 20 54 68 69 73 20 69 73 20 63 6f 6e 74 72 6f 6c 6c 65 64 20 62 79 3a 00 64 64 63 6c 69 | ss..This.is.controlled.by:.ddcli |
| bdba0 | 65 6e 74 5f 20 75 73 65 73 20 74 77 6f 20 6d 65 74 68 6f 64 73 20 74 6f 20 75 70 64 61 74 65 20 | ent_.uses.two.methods.to.update. |
| bdbc0 | 61 20 44 4e 53 20 72 65 63 6f 72 64 2e 20 54 68 65 20 66 69 72 73 74 20 6f 6e 65 20 77 69 6c 6c | a.DNS.record..The.first.one.will |
| bdbe0 | 20 73 65 6e 64 20 75 70 64 61 74 65 73 20 64 69 72 65 63 74 6c 79 20 74 6f 20 74 68 65 20 44 4e | .send.updates.directly.to.the.DN |
| bdc00 | 53 20 64 61 65 6d 6f 6e 2c 20 69 6e 20 63 6f 6d 70 6c 69 61 6e 63 65 20 77 69 74 68 20 3a 72 66 | S.daemon,.in.compliance.with.:rf |
| bdc20 | 63 3a 60 32 31 33 36 60 2e 20 54 68 65 20 73 65 63 6f 6e 64 20 6f 6e 65 20 69 6e 76 6f 6c 76 65 | c:`2136`..The.second.one.involve |
| bdc40 | 73 20 61 20 74 68 69 72 64 20 70 61 72 74 79 20 73 65 72 76 69 63 65 2c 20 6c 69 6b 65 20 44 79 | s.a.third.party.service,.like.Dy |
| bdc60 | 6e 44 4e 53 2e 63 6f 6d 20 6f 72 20 61 6e 79 20 6f 74 68 65 72 20 73 69 6d 69 6c 61 72 20 77 65 | nDNS.com.or.any.other.similar.we |
| bdc80 | 62 73 69 74 65 2e 20 54 68 69 73 20 6d 65 74 68 6f 64 20 75 73 65 73 20 48 54 54 50 20 72 65 71 | bsite..This.method.uses.HTTP.req |
| bdca0 | 75 65 73 74 73 20 74 6f 20 74 72 61 6e 73 6d 69 74 20 74 68 65 20 6e 65 77 20 49 50 20 61 64 64 | uests.to.transmit.the.new.IP.add |
| bdcc0 | 72 65 73 73 2e 20 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 62 6f 74 68 20 69 6e 20 | ress..You.can.configure.both.in. |
| bdce0 | 56 79 4f 53 2e 00 64 64 63 6c 69 65 6e 74 5f 20 75 73 65 73 20 74 77 6f 20 6d 65 74 68 6f 64 73 | VyOS..ddclient_.uses.two.methods |
| bdd00 | 20 74 6f 20 75 70 64 61 74 65 20 61 20 44 4e 53 20 72 65 63 6f 72 64 2e 20 54 68 65 20 66 69 72 | .to.update.a.DNS.record..The.fir |
| bdd20 | 73 74 20 6f 6e 65 20 77 69 6c 6c 20 73 65 6e 64 20 75 70 64 61 74 65 73 20 64 69 72 65 63 74 6c | st.one.will.send.updates.directl |
| bdd40 | 79 20 74 6f 20 74 68 65 20 44 4e 53 20 64 61 65 6d 6f 6e 2c 20 69 6e 20 63 6f 6d 70 6c 69 61 6e | y.to.the.DNS.daemon,.in.complian |
| bdd60 | 63 65 20 77 69 74 68 20 3a 72 66 63 3a 60 32 31 33 36 60 2e 20 54 68 65 20 73 65 63 6f 6e 64 20 | ce.with.:rfc:`2136`..The.second. |
| bdd80 | 6f 6e 65 20 69 6e 76 6f 6c 76 65 73 20 61 20 74 68 69 72 64 20 70 61 72 74 79 20 73 65 72 76 69 | one.involves.a.third.party.servi |
| bdda0 | 63 65 2c 20 6c 69 6b 65 20 44 79 6e 44 4e 53 2e 63 6f 6d 20 6f 72 20 61 6e 79 20 6f 74 68 65 72 | ce,.like.DynDNS.com.or.any.other |
| bddc0 | 20 73 75 63 68 20 73 65 72 76 69 63 65 20 70 72 6f 76 69 64 65 72 2e 20 54 68 69 73 20 6d 65 74 | .such.service.provider..This.met |
| bdde0 | 68 6f 64 20 75 73 65 73 20 48 54 54 50 20 72 65 71 75 65 73 74 73 20 74 6f 20 74 72 61 6e 73 6d | hod.uses.HTTP.requests.to.transm |
| bde00 | 69 74 20 74 68 65 20 6e 65 77 20 49 50 20 61 64 64 72 65 73 73 2e 20 59 6f 75 20 63 61 6e 20 63 | it.the.new.IP.address..You.can.c |
| bde20 | 6f 6e 66 69 67 75 72 65 20 62 6f 74 68 20 69 6e 20 56 79 4f 53 2e 00 64 64 63 6c 69 65 6e 74 5f | onfigure.both.in.VyOS..ddclient_ |
| bde40 | 20 77 69 6c 6c 20 73 6b 69 70 20 61 6e 79 20 61 64 64 72 65 73 73 20 6c 6f 63 61 74 65 64 20 62 | .will.skip.any.address.located.b |
| bde60 | 65 66 6f 72 65 20 74 68 65 20 73 74 72 69 6e 67 20 73 65 74 20 69 6e 20 60 3c 70 61 74 74 65 72 | efore.the.string.set.in.`<patter |
| bde80 | 6e 3e 60 2e 00 64 65 62 75 67 00 64 65 63 72 65 6d 65 6e 74 2d 6c 69 66 65 74 69 6d 65 00 64 65 | n>`..debug.decrement-lifetime.de |
| bdea0 | 66 61 75 6c 74 20 6d 69 6e 2d 74 68 72 65 73 68 6f 6c 64 00 64 65 66 61 75 6c 74 2d 6c 65 61 73 | fault.min-threshold.default-leas |
| bdec0 | 65 2d 74 69 6d 65 2c 20 6d 61 78 2d 6c 65 61 73 65 2d 74 69 6d 65 00 64 65 66 61 75 6c 74 2d 6c | e-time,.max-lease-time.default-l |
| bdee0 | 69 66 65 74 69 6d 65 00 64 65 66 61 75 6c 74 2d 70 72 65 66 65 72 65 6e 63 65 00 64 65 66 61 75 | ifetime.default-preference.defau |
| bdf00 | 6c 74 2d 72 6f 75 74 65 72 00 64 65 70 72 65 63 61 74 65 2d 70 72 65 66 69 78 00 64 65 73 74 69 | lt-router.deprecate-prefix.desti |
| bdf20 | 6e 61 74 69 6f 6e 2d 68 61 73 68 69 6e 67 00 64 68 63 70 2d 73 65 72 76 65 72 2d 69 64 65 6e 74 | nation-hashing.dhcp-server-ident |
| bdf40 | 69 66 69 65 72 00 64 69 72 65 63 74 00 64 69 72 65 63 74 6f 72 79 00 64 69 73 61 62 6c 65 3a 20 | ifier.direct.directory.disable:. |
| bdf60 | 4e 6f 20 73 6f 75 72 63 65 20 76 61 6c 69 64 61 74 69 6f 6e 00 64 6e 73 73 6c 00 64 6f 6d 61 69 | No.source.validation.dnssl.domai |
| bdf80 | 6e 2d 6e 61 6d 65 00 64 6f 6d 61 69 6e 2d 6e 61 6d 65 2d 73 65 72 76 65 72 73 00 64 6f 6d 61 69 | n-name.domain-name-servers.domai |
| bdfa0 | 6e 2d 73 65 61 72 63 68 00 65 6d 65 72 67 00 65 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 | n-search.emerg.enable.or.disable |
| bdfc0 | 20 20 49 43 4d 50 76 34 20 72 65 64 69 72 65 63 74 20 6d 65 73 73 61 67 65 73 20 73 65 6e 64 20 | ..ICMPv4.redirect.messages.send. |
| bdfe0 | 62 79 20 56 79 4f 53 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 | by.VyOS.The.following.system.par |
| be000 | 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 65 6e 61 62 6c 65 20 6f | ameter.will.be.altered:.enable.o |
| be020 | 72 20 64 69 73 61 62 6c 65 20 49 43 4d 50 76 34 20 72 65 64 69 72 65 63 74 20 6d 65 73 73 61 67 | r.disable.ICMPv4.redirect.messag |
| be040 | 65 73 20 73 65 6e 64 20 62 79 20 56 79 4f 53 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 | es.send.by.VyOS.The.following.sy |
| be060 | 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 | stem.parameter.will.be.altered:. |
| be080 | 65 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 6f 66 20 49 43 4d 50 76 34 20 6f 72 20 49 | enable.or.disable.of.ICMPv4.or.I |
| be0a0 | 43 4d 50 76 36 20 72 65 64 69 72 65 63 74 20 6d 65 73 73 61 67 65 73 20 61 63 63 65 70 74 65 64 | CMPv6.redirect.messages.accepted |
| be0c0 | 20 62 79 20 56 79 4f 53 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 | .by.VyOS..The.following.system.p |
| be0e0 | 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 65 6e 61 62 6c 65 | arameter.will.be.altered:.enable |
| be100 | 20 6f 72 20 64 69 73 61 62 6c 65 20 74 68 65 20 6c 6f 67 67 69 6e 67 20 6f 66 20 6d 61 72 74 69 | .or.disable.the.logging.of.marti |
| be120 | 61 6e 20 49 50 76 34 20 70 61 63 6b 65 74 73 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 | an.IPv4.packets..The.following.s |
| be140 | 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a | ystem.parameter.will.be.altered: |
| be160 | 00 65 72 72 00 65 74 68 65 72 6e 65 74 00 65 78 61 63 74 2d 6d 61 74 63 68 3a 20 65 78 61 63 74 | .err.ethernet.exact-match:.exact |
| be180 | 20 6d 61 74 63 68 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 70 72 65 66 69 78 65 73 2e 00 | .match.of.the.network.prefixes.. |
| be1a0 | 65 78 63 6c 75 64 65 00 66 61 69 6c 6f 76 65 72 00 66 61 73 74 3a 20 52 65 71 75 65 73 74 20 70 | exclude.failover.fast:.Request.p |
| be1c0 | 61 72 74 6e 65 72 20 74 6f 20 74 72 61 6e 73 6d 69 74 20 4c 41 43 50 44 55 73 20 65 76 65 72 79 | artner.to.transmit.LACPDUs.every |
| be1e0 | 20 31 20 73 65 63 6f 6e 64 00 66 69 6c 65 20 3c 66 69 6c 65 20 6e 61 6d 65 3e 00 66 69 6c 74 65 | .1.second.file.<file.name>.filte |
| be200 | 72 2d 6c 69 73 74 00 66 74 70 00 66 75 6c 6c 20 2d 20 61 6c 77 61 79 73 20 75 73 65 20 66 75 6c | r-list.ftp.full.-.always.use.ful |
| be220 | 6c 2d 64 75 70 6c 65 78 00 67 65 6e 65 76 65 00 68 61 6c 66 20 2d 20 61 6c 77 61 79 73 20 75 73 | l-duplex.geneve.half.-.always.us |
| be240 | 65 20 68 61 6c 66 2d 64 75 70 6c 65 78 00 68 6f 70 2d 6c 69 6d 69 74 00 68 6f 73 74 3a 20 73 69 | e.half-duplex.hop-limit.host:.si |
| be260 | 6e 67 6c 65 20 68 6f 73 74 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 6d 61 74 63 68 2e 00 68 | ngle.host.IP.address.to.match..h |
| be280 | 74 74 70 73 3a 2f 2f 61 63 63 65 73 73 2e 72 65 64 68 61 74 2e 63 6f 6d 2f 73 69 74 65 73 2f 64 | ttps://access.redhat.com/sites/d |
| be2a0 | 65 66 61 75 6c 74 2f 66 69 6c 65 73 2f 61 74 74 61 63 68 6d 65 6e 74 73 2f 32 30 31 35 30 31 2d | efault/files/attachments/201501- |
| be2c0 | 70 65 72 66 2d 62 72 69 65 66 2d 6c 6f 77 2d 6c 61 74 65 6e 63 79 2d 74 75 6e 69 6e 67 2d 72 68 | perf-brief-low-latency-tuning-rh |
| be2e0 | 65 6c 37 2d 76 32 2e 31 2e 70 64 66 00 68 74 74 70 73 3a 2f 2f 63 6f 6d 6d 75 6e 69 74 79 2e 6f | el7-v2.1.pdf.https://community.o |
| be300 | 70 65 6e 76 70 6e 2e 6e 65 74 2f 6f 70 65 6e 76 70 6e 2f 77 69 6b 69 2f 44 61 74 61 43 68 61 6e | penvpn.net/openvpn/wiki/DataChan |
| be320 | 6e 65 6c 4f 66 66 6c 6f 61 64 2f 46 65 61 74 75 72 65 73 00 68 74 74 70 73 3a 2f 2f 64 6f 63 73 | nelOffload/Features.https://docs |
| be340 | 2e 6b 65 72 6e 65 6c 2e 6f 72 67 2f 61 64 6d 69 6e 2d 67 75 69 64 65 2f 70 6d 2f 61 6d 64 2d 70 | .kernel.org/admin-guide/pm/amd-p |
| be360 | 73 74 61 74 65 2e 68 74 6d 6c 00 69 66 20 74 68 65 72 65 20 69 73 20 61 20 73 75 70 70 6f 72 74 | state.html.if.there.is.a.support |
| be380 | 65 64 20 64 65 76 69 63 65 2c 20 65 6e 61 62 6c 65 20 49 6e 74 65 6c c2 ae 20 51 41 54 00 69 66 | ed.device,.enable.Intel...QAT.if |
| be3a0 | 20 74 68 65 72 65 20 69 73 20 6e 6f 6e 20 64 65 76 69 63 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 | .there.is.non.device.the.command |
| be3c0 | 20 77 69 6c 6c 20 73 68 6f 77 20 60 60 60 4e 6f 20 51 41 54 20 64 65 76 69 63 65 20 66 6f 75 6e | .will.show.```No.QAT.device.foun |
| be3e0 | 64 60 60 60 00 69 6e 66 6f 00 69 6e 68 65 72 69 74 20 6d 61 74 63 68 65 73 20 66 72 6f 6d 20 61 | d```.info.inherit.matches.from.a |
| be400 | 6e 6f 74 68 65 72 20 67 72 6f 75 70 00 69 6e 74 65 72 76 61 6c 00 69 6e 76 61 6c 69 64 00 69 6e | nother.group.interval.invalid.in |
| be420 | 76 65 72 73 65 2d 6d 61 74 63 68 3a 20 6e 65 74 77 6f 72 6b 2f 6e 65 74 6d 61 73 6b 20 74 6f 20 | verse-match:.network/netmask.to. |
| be440 | 6d 61 74 63 68 20 28 72 65 71 75 69 72 65 73 20 6e 65 74 77 6f 72 6b 20 62 65 20 64 65 66 69 6e | match.(requires.network.be.defin |
| be460 | 65 64 29 2e 00 69 70 2d 66 6f 72 77 61 72 64 69 6e 67 00 69 73 69 73 64 00 69 74 20 63 61 6e 20 | ed)..ip-forwarding.isisd.it.can. |
| be480 | 62 65 20 75 73 65 64 20 77 69 74 68 20 61 6e 79 20 4e 49 43 00 69 74 20 63 61 6e 20 62 65 20 75 | be.used.with.any.NIC.it.can.be.u |
| be4a0 | 73 65 64 20 77 69 74 68 20 61 6e 79 20 4e 49 43 2c 00 69 74 20 64 6f 65 73 20 6e 6f 74 20 69 6e | sed.with.any.NIC,.it.does.not.in |
| be4c0 | 63 72 65 61 73 65 20 68 61 72 64 77 61 72 65 20 64 65 76 69 63 65 20 69 6e 74 65 72 72 75 70 74 | crease.hardware.device.interrupt |
| be4e0 | 20 72 61 74 65 20 28 61 6c 74 68 6f 75 67 68 20 69 74 20 64 6f 65 73 20 69 6e 74 72 6f 64 75 63 | .rate.(although.it.does.introduc |
| be500 | 65 20 69 6e 74 65 72 2d 70 72 6f 63 65 73 73 6f 72 20 69 6e 74 65 72 72 75 70 74 73 20 28 49 50 | e.inter-processor.interrupts.(IP |
| be520 | 49 73 29 29 2e 00 69 74 20 64 6f 65 73 20 6e 6f 74 20 69 6e 63 72 65 61 73 65 20 68 61 72 64 77 | Is))..it.does.not.increase.hardw |
| be540 | 61 72 65 20 64 65 76 69 63 65 20 69 6e 74 65 72 72 75 70 74 20 72 61 74 65 2c 20 61 6c 74 68 6f | are.device.interrupt.rate,.altho |
| be560 | 75 67 68 20 69 74 20 64 6f 65 73 20 69 6e 74 72 6f 64 75 63 65 20 69 6e 74 65 72 2d 70 72 6f 63 | ugh.it.does.introduce.inter-proc |
| be580 | 65 73 73 6f 72 20 69 6e 74 65 72 72 75 70 74 73 20 28 49 50 49 73 29 00 6b 65 72 6e 00 6c 32 74 | essor.interrupts.(IPIs).kern.l2t |
| be5a0 | 70 76 33 00 6c 64 70 64 00 6c 65 61 73 65 00 6c 65 61 73 74 2d 63 6f 6e 6e 65 63 74 69 6f 6e 00 | pv3.ldpd.lease.least-connection. |
| be5c0 | 6c 65 66 74 20 6c 6f 63 61 6c 5f 69 70 3a 20 31 39 32 2e 31 36 38 2e 30 2e 31 30 20 23 20 56 50 | left.local_ip:.192.168.0.10.#.VP |
| be5e0 | 4e 20 47 61 74 65 77 61 79 2c 20 62 65 68 69 6e 64 20 4e 41 54 20 64 65 76 69 63 65 00 6c 65 66 | N.Gateway,.behind.NAT.device.lef |
| be600 | 74 20 6c 6f 63 61 6c 5f 69 70 3a 20 60 31 39 38 2e 35 31 2e 31 30 30 2e 33 60 20 23 20 73 65 72 | t.local_ip:.`198.51.100.3`.#.ser |
| be620 | 76 65 72 20 73 69 64 65 20 57 41 4e 20 49 50 00 6c 65 66 74 20 70 75 62 6c 69 63 5f 69 70 3a 31 | ver.side.WAN.IP.left.public_ip:1 |
| be640 | 37 32 2e 31 38 2e 32 30 31 2e 31 30 00 6c 65 66 74 20 73 75 62 6e 65 74 3a 20 60 31 39 32 2e 31 | 72.18.201.10.left.subnet:.`192.1 |
| be660 | 36 38 2e 30 2e 30 2f 32 34 60 20 73 69 74 65 31 2c 20 73 65 72 76 65 72 20 73 69 64 65 20 28 69 | 68.0.0/24`.site1,.server.side.(i |
| be680 | 2e 65 2e 20 6c 6f 63 61 6c 69 74 79 2c 20 61 63 74 75 61 6c 6c 79 20 74 68 65 72 65 20 69 73 20 | .e..locality,.actually.there.is. |
| be6a0 | 6e 6f 20 63 6c 69 65 6e 74 20 6f 72 20 73 65 72 76 65 72 20 72 6f 6c 65 73 29 00 6c 69 6e 6b 2d | no.client.or.server.roles).link- |
| be6c0 | 6d 74 75 00 6c 6f 63 61 6c 20 75 73 65 20 30 20 28 6c 6f 63 61 6c 30 29 00 6c 6f 63 61 6c 20 75 | mtu.local.use.0.(local0).local.u |
| be6e0 | 73 65 20 31 20 28 6c 6f 63 61 6c 31 29 00 6c 6f 63 61 6c 20 75 73 65 20 32 20 28 6c 6f 63 61 6c | se.1.(local1).local.use.2.(local |
| be700 | 32 29 00 6c 6f 63 61 6c 20 75 73 65 20 33 20 28 6c 6f 63 61 6c 33 29 00 6c 6f 63 61 6c 20 75 73 | 2).local.use.3.(local3).local.us |
| be720 | 65 20 34 20 28 6c 6f 63 61 6c 34 29 00 6c 6f 63 61 6c 20 75 73 65 20 35 20 28 6c 6f 63 61 6c 35 | e.4.(local4).local.use.5.(local5 |
| be740 | 29 00 6c 6f 63 61 6c 20 75 73 65 20 37 20 28 6c 6f 63 61 6c 37 29 00 6c 6f 63 61 6c 30 00 6c 6f | ).local.use.7.(local7).local0.lo |
| be760 | 63 61 6c 31 00 6c 6f 63 61 6c 32 00 6c 6f 63 61 6c 33 00 6c 6f 63 61 6c 34 00 6c 6f 63 61 6c 35 | cal1.local2.local3.local4.local5 |
| be780 | 00 6c 6f 63 61 6c 36 00 6c 6f 63 61 6c 37 00 6c 6f 63 61 6c 69 74 79 2d 62 61 73 65 64 2d 6c 65 | .local6.local7.locality-based-le |
| be7a0 | 61 73 74 2d 63 6f 6e 6e 65 63 74 69 6f 6e 00 6c 6f 67 61 6c 65 72 74 00 6c 6f 67 61 75 64 69 74 | ast-connection.logalert.logaudit |
| be7c0 | 00 6c 6f 6f 73 65 3a 20 45 61 63 68 20 69 6e 63 6f 6d 69 6e 67 20 70 61 63 6b 65 74 27 73 20 73 | .loose:.Each.incoming.packet's.s |
| be7e0 | 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 69 73 20 61 6c 73 6f 20 74 65 73 74 65 64 20 61 67 61 | ource.address.is.also.tested.aga |
| be800 | 69 6e 73 74 20 74 68 65 20 46 49 42 20 61 6e 64 20 69 66 20 74 68 65 20 73 6f 75 72 63 65 20 61 | inst.the.FIB.and.if.the.source.a |
| be820 | 64 64 72 65 73 73 20 69 73 20 6e 6f 74 20 72 65 61 63 68 61 62 6c 65 20 76 69 61 20 61 6e 79 20 | ddress.is.not.reachable.via.any. |
| be840 | 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 70 61 63 6b 65 74 20 63 68 65 63 6b 20 77 69 6c 6c 20 | interface.the.packet.check.will. |
| be860 | 66 61 69 6c 2e 00 6c 70 72 00 6d 44 4e 53 20 52 65 70 65 61 74 65 72 00 6d 44 4e 53 20 72 65 70 | fail..lpr.mDNS.Repeater.mDNS.rep |
| be880 | 65 61 74 65 72 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 72 65 2d 62 72 | eater.can.be.configured.to.re-br |
| be8a0 | 6f 61 64 63 61 73 74 20 6f 6e 6c 79 20 73 70 65 63 69 66 69 63 20 73 65 72 76 69 63 65 73 2e 20 | oadcast.only.specific.services.. |
| be8c0 | 42 79 20 64 65 66 61 75 6c 74 2c 20 61 6c 6c 20 73 65 72 76 69 63 65 73 20 61 72 65 20 72 65 2d | By.default,.all.services.are.re- |
| be8e0 | 62 72 6f 61 64 63 61 73 74 65 64 2e 00 6d 44 4e 53 20 72 65 70 65 61 74 65 72 20 63 61 6e 20 62 | broadcasted..mDNS.repeater.can.b |
| be900 | 65 20 65 6e 61 62 6c 65 64 20 65 69 74 68 65 72 20 6f 6e 20 49 50 76 34 20 73 6f 63 6b 65 74 20 | e.enabled.either.on.IPv4.socket. |
| be920 | 6f 72 20 6f 6e 20 49 50 76 36 20 73 6f 63 6b 65 74 20 6f 72 20 62 6f 74 68 20 74 6f 20 72 65 2d | or.on.IPv6.socket.or.both.to.re- |
| be940 | 62 72 6f 61 64 63 61 73 74 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 6d 44 4e 53 20 72 65 70 65 | broadcast..By.default,.mDNS.repe |
| be960 | 61 74 65 72 20 77 69 6c 6c 20 6c 69 73 74 65 6e 20 6f 6e 20 62 6f 74 68 20 49 50 76 34 20 61 6e | ater.will.listen.on.both.IPv4.an |
| be980 | 64 20 49 50 76 36 2e 00 6d 44 4e 53 20 72 65 70 65 61 74 65 72 20 63 61 6e 20 62 65 20 74 65 6d | d.IPv6..mDNS.repeater.can.be.tem |
| be9a0 | 70 6f 72 61 72 69 6c 79 20 64 69 73 61 62 6c 65 64 20 77 69 74 68 6f 75 74 20 64 65 6c 65 74 69 | porarily.disabled.without.deleti |
| be9c0 | 6e 67 20 74 68 65 20 73 65 72 76 69 63 65 20 75 73 69 6e 67 00 6d 61 69 6c 00 6d 61 6e 61 67 65 | ng.the.service.using.mail.manage |
| be9e0 | 64 2d 66 6c 61 67 00 6d 61 74 63 68 2d 66 72 61 67 3a 20 53 65 63 6f 6e 64 20 61 6e 64 20 66 75 | d-flag.match-frag:.Second.and.fu |
| bea00 | 72 74 68 65 72 20 66 72 61 67 6d 65 6e 74 73 20 6f 66 20 66 72 61 67 6d 65 6e 74 65 64 20 70 61 | rther.fragments.of.fragmented.pa |
| bea20 | 63 6b 65 74 73 2e 00 6d 61 74 63 68 2d 69 70 73 65 63 3a 20 6d 61 74 63 68 20 69 6e 62 6f 75 6e | ckets..match-ipsec:.match.inboun |
| bea40 | 64 20 49 50 73 65 63 20 70 61 63 6b 65 74 73 2e 00 6d 61 74 63 68 2d 6e 6f 6e 2d 66 72 61 67 3a | d.IPsec.packets..match-non-frag: |
| bea60 | 20 48 65 61 64 20 66 72 61 67 6d 65 6e 74 73 20 6f 72 20 75 6e 66 72 61 67 6d 65 6e 74 65 64 20 | .Head.fragments.or.unfragmented. |
| bea80 | 70 61 63 6b 65 74 73 2e 00 6d 61 74 63 68 2d 6e 6f 6e 65 3a 20 6d 61 74 63 68 20 69 6e 62 6f 75 | packets..match-none:.match.inbou |
| beaa0 | 6e 64 20 6e 6f 6e 2d 49 50 73 65 63 20 70 61 63 6b 65 74 73 2e 00 6d 69 6e 69 6d 61 6c 20 63 6f | nd.non-IPsec.packets..minimal.co |
| beac0 | 6e 66 69 67 00 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 72 65 6c 61 74 65 64 20 49 47 | nfig.more.information.related.IG |
| beae0 | 50 20 20 2d 20 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 69 73 69 73 60 00 6d 6f 72 65 20 69 6e | P..-.:ref:`routing-isis`.more.in |
| beb00 | 66 6f 72 6d 61 74 69 6f 6e 20 72 65 6c 61 74 65 64 20 49 47 50 20 20 2d 20 3a 72 65 66 3a 60 72 | formation.related.IGP..-.:ref:`r |
| beb20 | 6f 75 74 69 6e 67 2d 6f 73 70 66 60 00 6e 61 6d 65 2d 73 65 72 76 65 72 00 6e 65 74 62 69 6f 73 | outing-ospf`.name-server.netbios |
| beb40 | 2d 6e 61 6d 65 2d 73 65 72 76 65 72 73 00 6e 65 74 77 6f 72 6b 3a 20 6e 65 74 77 6f 72 6b 2f 6e | -name-servers.network:.network/n |
| beb60 | 65 74 6d 61 73 6b 20 74 6f 20 6d 61 74 63 68 20 28 72 65 71 75 69 72 65 73 20 69 6e 76 65 72 73 | etmask.to.match.(requires.invers |
| beb80 | 65 2d 6d 61 74 63 68 20 62 65 20 64 65 66 69 6e 65 64 29 20 42 55 47 2c 20 4e 4f 20 69 6e 76 65 | e-match.be.defined).BUG,.NO.inve |
| beba0 | 72 74 2d 6d 61 74 63 68 20 6f 70 74 69 6f 6e 20 69 6e 20 61 63 63 65 73 73 2d 6c 69 73 74 36 00 | rt-match.option.in.access-list6. |
| bebc0 | 6e 65 74 77 6f 72 6b 3a 20 6e 65 74 77 6f 72 6b 2f 6e 65 74 6d 61 73 6b 20 74 6f 20 6d 61 74 63 | network:.network/netmask.to.matc |
| bebe0 | 68 20 28 72 65 71 75 69 72 65 73 20 69 6e 76 65 72 73 65 2d 6d 61 74 63 68 20 62 65 20 64 65 66 | h.(requires.inverse-match.be.def |
| bec00 | 69 6e 65 64 29 2e 00 6e 65 74 77 6f 72 6b 73 3b 00 6e 65 77 73 00 6e 65 78 74 2d 73 65 72 76 65 | ined)..networks;.news.next-serve |
| bec20 | 72 00 6e 6f 2d 61 75 74 6f 6e 6f 6d 6f 75 73 2d 66 6c 61 67 00 6e 6f 2d 6f 6e 2d 6c 69 6e 6b 2d | r.no-autonomous-flag.no-on-link- |
| bec40 | 66 6c 61 67 00 6e 6f 74 66 6f 75 6e 64 00 6e 6f 74 69 63 65 00 6e 74 70 00 6e 74 70 2d 73 65 72 | flag.notfound.notice.ntp.ntp-ser |
| bec60 | 76 65 72 00 6e 74 70 2d 73 65 72 76 65 72 73 00 6f 6e 65 20 72 75 6c 65 20 77 69 74 68 20 61 20 | ver.ntp-servers.one.rule.with.a. |
| bec80 | 4c 41 4e 20 28 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 29 20 61 6e 64 20 74 68 65 20 | LAN.(inbound-interface).and.the. |
| beca0 | 57 41 4e 20 28 69 6e 74 65 72 66 61 63 65 29 2e 00 6f 70 65 6e 76 70 6e 00 6f 73 70 66 36 64 00 | WAN.(interface)..openvpn.ospf6d. |
| becc0 | 6f 73 70 66 64 00 6f 73 70 66 64 20 73 75 70 70 6f 72 74 73 20 4f 70 61 71 75 65 20 4c 53 41 20 | ospfd.ospfd.supports.Opaque.LSA. |
| bece0 | 3a 72 66 63 3a 60 32 33 37 30 60 20 61 73 20 70 61 72 74 69 61 6c 20 73 75 70 70 6f 72 74 20 66 | :rfc:`2370`.as.partial.support.f |
| bed00 | 6f 72 20 4d 50 4c 53 20 54 72 61 66 66 69 63 20 45 6e 67 69 6e 65 65 72 69 6e 67 20 4c 53 41 73 | or.MPLS.Traffic.Engineering.LSAs |
| bed20 | 2e 20 54 68 65 20 6f 70 61 71 75 65 2d 6c 73 61 20 63 61 70 61 62 69 6c 69 74 79 20 6d 75 73 74 | ..The.opaque-lsa.capability.must |
| bed40 | 20 62 65 20 65 6e 61 62 6c 65 64 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | .be.enabled.in.the.configuration |
| bed60 | 2e 00 6f 74 68 65 72 2d 63 6f 6e 66 69 67 2d 66 6c 61 67 00 70 61 67 65 73 20 74 6f 20 73 6f 72 | ..other-config-flag.pages.to.sor |
| bed80 | 74 00 70 6f 6c 69 63 79 20 61 73 2d 70 61 74 68 2d 6c 69 73 74 00 70 6f 6c 69 63 79 20 63 6f 6d | t.policy.as-path-list.policy.com |
| beda0 | 6d 75 6e 69 74 79 2d 6c 69 73 74 00 70 6f 6c 69 63 79 20 65 78 74 63 6f 6d 6d 75 6e 69 74 79 2d | munity-list.policy.extcommunity- |
| bedc0 | 6c 69 73 74 00 70 6f 6c 69 63 79 20 6c 61 72 67 65 2d 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 | list.policy.large-community-list |
| bede0 | 00 70 6f 70 2d 73 65 72 76 65 72 00 70 72 65 66 65 72 72 65 64 2d 6c 69 66 65 74 69 6d 65 00 70 | .pop-server.preferred-lifetime.p |
| bee00 | 72 65 66 69 78 2d 6c 69 73 74 2c 20 64 69 73 74 72 69 62 75 74 65 2d 6c 69 73 74 00 70 73 65 75 | refix-list,.distribute-list.pseu |
| bee20 | 64 6f 2d 65 74 68 65 72 6e 65 74 00 72 61 6e 67 65 00 72 65 61 63 68 61 62 6c 65 2d 74 69 6d 65 | do-ethernet.range.reachable-time |
| bee40 | 00 72 65 73 65 74 20 63 6f 6d 6d 61 6e 64 73 00 72 65 74 72 61 6e 73 2d 74 69 6d 65 72 00 72 66 | .reset.commands.retrans-timer.rf |
| bee60 | 63 33 34 34 32 2d 73 74 61 74 69 63 2d 72 6f 75 74 65 2c 20 77 69 6e 64 6f 77 73 2d 73 74 61 74 | c3442-static-route,.windows-stat |
| bee80 | 69 63 2d 72 6f 75 74 65 00 72 66 63 33 37 36 38 2d 63 6f 6d 70 61 74 69 62 69 6c 69 74 79 00 72 | ic-route.rfc3768-compatibility.r |
| beea0 | 69 67 68 74 20 6c 6f 63 61 6c 5f 69 70 3a 20 31 37 32 2e 31 38 2e 32 30 32 2e 31 30 20 23 20 72 | ight.local_ip:.172.18.202.10.#.r |
| beec0 | 69 67 68 74 20 73 69 64 65 20 57 41 4e 20 49 50 00 72 69 67 68 74 20 6c 6f 63 61 6c 5f 69 70 3a | ight.side.WAN.IP.right.local_ip: |
| beee0 | 20 60 32 30 33 2e 30 2e 31 31 33 2e 32 60 20 23 20 72 65 6d 6f 74 65 20 6f 66 66 69 63 65 20 73 | .`203.0.113.2`.#.remote.office.s |
| bef00 | 69 64 65 20 57 41 4e 20 49 50 00 72 69 67 68 74 20 73 75 62 6e 65 74 3a 20 60 31 30 2e 30 2e 30 | ide.WAN.IP.right.subnet:.`10.0.0 |
| bef20 | 2e 30 2f 32 34 60 20 73 69 74 65 32 2c 72 65 6d 6f 74 65 20 6f 66 66 69 63 65 20 73 69 64 65 00 | .0/24`.site2,remote.office.side. |
| bef40 | 72 69 70 64 00 72 6f 75 6e 64 2d 72 6f 62 69 6e 00 72 6f 75 74 65 2d 6d 61 70 00 72 6f 75 74 65 | ripd.round-robin.route-map.route |
| bef60 | 72 73 00 73 46 6c 6f 77 00 73 46 6c 6f 77 20 69 73 20 61 20 74 65 63 68 6e 6f 6c 6f 67 79 20 74 | rs.sFlow.sFlow.is.a.technology.t |
| bef80 | 68 61 74 20 65 6e 61 62 6c 65 73 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 6f 66 20 6e 65 74 77 6f 72 | hat.enables.monitoring.of.networ |
| befa0 | 6b 20 74 72 61 66 66 69 63 20 62 79 20 73 65 6e 64 69 6e 67 20 73 61 6d 70 6c 65 64 20 70 61 63 | k.traffic.by.sending.sampled.pac |
| befc0 | 6b 65 74 73 20 74 6f 20 61 20 63 6f 6c 6c 65 63 74 6f 72 20 64 65 76 69 63 65 2e 00 73 65 63 75 | kets.to.a.collector.device..secu |
| befe0 | 72 69 74 79 00 73 65 70 61 72 61 74 65 64 20 6c 69 73 74 20 6f 66 20 76 69 72 74 75 61 6c 20 49 | rity.separated.list.of.virtual.I |
| bf000 | 50 73 20 74 6f 20 72 65 71 75 65 73 74 20 69 6e 20 49 4b 45 76 32 20 63 6f 6e 66 69 67 75 72 61 | Ps.to.request.in.IKEv2.configura |
| bf020 | 74 69 6f 6e 20 70 61 79 6c 6f 61 64 73 20 6f 72 20 49 4b 45 76 31 20 4d 6f 64 65 20 43 6f 6e 66 | tion.payloads.or.IKEv1.Mode.Conf |
| bf040 | 69 67 2e 20 54 68 65 20 77 69 6c 64 63 61 72 64 20 61 64 64 72 65 73 73 65 73 20 30 2e 30 2e 30 | ig..The.wildcard.addresses.0.0.0 |
| bf060 | 2e 30 20 61 6e 64 20 3a 3a 20 72 65 71 75 65 73 74 20 61 6e 20 61 72 62 69 74 72 61 72 79 20 61 | .0.and.::.request.an.arbitrary.a |
| bf080 | 64 64 72 65 73 73 2c 20 73 70 65 63 69 66 69 63 20 61 64 64 72 65 73 73 65 73 20 6d 61 79 20 62 | ddress,.specific.addresses.may.b |
| bf0a0 | 65 20 64 65 66 69 6e 65 64 2e 20 54 68 65 20 72 65 73 70 6f 6e 64 65 72 20 6d 61 79 20 72 65 74 | e.defined..The.responder.may.ret |
| bf0c0 | 75 72 6e 20 61 20 64 69 66 66 65 72 65 6e 74 20 61 64 64 72 65 73 73 2c 20 6f 72 20 6e 6f 6e 65 | urn.a.different.address,.or.none |
| bf0e0 | 20 61 74 20 61 6c 6c 2e 20 44 65 66 69 6e 65 20 74 68 65 20 60 60 76 69 72 74 75 61 6c 2d 61 64 | .at.all..Define.the.``virtual-ad |
| bf100 | 64 72 65 73 73 60 60 20 6f 70 74 69 6f 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 | dress``.option.to.configure.the. |
| bf120 | 49 50 20 61 64 64 72 65 73 73 20 69 6e 20 61 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 68 69 65 | IP.address.in.a.site-to-site.hie |
| bf140 | 72 61 72 63 68 79 2e 00 73 65 72 76 65 72 20 65 78 61 6d 70 6c 65 00 73 65 72 76 65 72 2d 69 64 | rarchy..server.example.server-id |
| bf160 | 65 6e 74 69 66 69 65 72 00 73 65 74 20 61 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 6e 64 2f 6f | entifier.set.a.destination.and/o |
| bf180 | 72 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 2e 20 41 63 63 65 70 74 65 64 20 69 6e 70 75 74 | r.source.address..Accepted.input |
| bf1a0 | 3a 00 73 68 61 32 35 36 20 48 61 73 68 65 73 00 73 68 6f 77 20 63 6f 6d 6d 61 6e 64 73 00 73 69 | :.sha256.Hashes.show.commands.si |
| bf1c0 | 61 64 64 72 00 73 6c 6f 77 3a 20 52 65 71 75 65 73 74 20 70 61 72 74 6e 65 72 20 74 6f 20 74 72 | addr.slow:.Request.partner.to.tr |
| bf1e0 | 61 6e 73 6d 69 74 20 4c 41 43 50 44 55 73 20 65 76 65 72 79 20 33 30 20 73 65 63 6f 6e 64 73 00 | ansmit.LACPDUs.every.30.seconds. |
| bf200 | 73 6d 74 70 2d 73 65 72 76 65 72 00 73 6f 66 74 77 61 72 65 20 66 69 6c 74 65 72 73 20 63 61 6e | smtp-server.software.filters.can |
| bf220 | 20 65 61 73 69 6c 79 20 62 65 20 61 64 64 65 64 20 74 6f 20 68 61 73 68 20 6f 76 65 72 20 6e 65 | .easily.be.added.to.hash.over.ne |
| bf240 | 77 20 70 72 6f 74 6f 63 6f 6c 73 00 73 6f 66 74 77 61 72 65 20 66 69 6c 74 65 72 73 20 63 61 6e | w.protocols.software.filters.can |
| bf260 | 20 65 61 73 69 6c 79 20 62 65 20 61 64 64 65 64 20 74 6f 20 68 61 73 68 20 6f 76 65 72 20 6e 65 | .easily.be.added.to.hash.over.ne |
| bf280 | 77 20 70 72 6f 74 6f 63 6f 6c 73 2c 00 73 6f 75 72 63 65 2d 68 61 73 68 69 6e 67 00 73 70 6f 6b | w.protocols,.source-hashing.spok |
| bf2a0 | 65 30 31 2d 73 70 6f 6b 65 30 34 00 73 70 6f 6b 65 30 35 00 73 74 61 74 69 63 2d 6d 61 70 70 69 | e01-spoke04.spoke05.static-mappi |
| bf2c0 | 6e 67 00 73 74 61 74 69 63 2d 72 6f 75 74 65 00 73 74 72 69 63 74 3a 20 45 61 63 68 20 69 6e 63 | ng.static-route.strict:.Each.inc |
| bf2e0 | 6f 6d 69 6e 67 20 70 61 63 6b 65 74 20 69 73 20 74 65 73 74 65 64 20 61 67 61 69 6e 73 74 20 74 | oming.packet.is.tested.against.t |
| bf300 | 68 65 20 46 49 42 20 61 6e 64 20 69 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 6e | he.FIB.and.if.the.interface.is.n |
| bf320 | 6f 74 20 74 68 65 20 62 65 73 74 20 72 65 76 65 72 73 65 20 70 61 74 68 20 74 68 65 20 70 61 63 | ot.the.best.reverse.path.the.pac |
| bf340 | 6b 65 74 20 63 68 65 63 6b 20 77 69 6c 6c 20 66 61 69 6c 2e 20 42 79 20 64 65 66 61 75 6c 74 20 | ket.check.will.fail..By.default. |
| bf360 | 66 61 69 6c 65 64 20 70 61 63 6b 65 74 73 20 61 72 65 20 64 69 73 63 61 72 64 65 64 2e 00 73 75 | failed.packets.are.discarded..su |
| bf380 | 62 6e 65 74 2d 6d 61 73 6b 00 73 75 72 69 63 61 74 61 00 73 79 73 6c 6f 67 00 74 61 69 6c 00 74 | bnet-mask.suricata.syslog.tail.t |
| bf3a0 | 63 5f 20 69 73 20 61 20 70 6f 77 65 72 66 75 6c 20 74 6f 6f 6c 20 66 6f 72 20 54 72 61 66 66 69 | c_.is.a.powerful.tool.for.Traffi |
| bf3c0 | 63 20 43 6f 6e 74 72 6f 6c 20 66 6f 75 6e 64 20 61 74 20 74 68 65 20 4c 69 6e 75 78 20 6b 65 72 | c.Control.found.at.the.Linux.ker |
| bf3e0 | 6e 65 6c 2e 20 48 6f 77 65 76 65 72 2c 20 69 74 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | nel..However,.its.configuration. |
| bf400 | 69 73 20 6f 66 74 65 6e 20 63 6f 6e 73 69 64 65 72 65 64 20 61 20 63 75 6d 62 65 72 73 6f 6d 65 | is.often.considered.a.cumbersome |
| bf420 | 20 74 61 73 6b 2e 20 46 6f 72 74 75 6e 61 74 65 6c 79 2c 20 56 79 4f 53 20 65 61 73 65 73 20 74 | .task..Fortunately,.VyOS.eases.t |
| bf440 | 68 65 20 6a 6f 62 20 74 68 72 6f 75 67 68 20 69 74 73 20 43 4c 49 2c 20 77 68 69 6c 65 20 75 73 | he.job.through.its.CLI,.while.us |
| bf460 | 69 6e 67 20 60 60 74 63 60 60 20 61 73 20 62 61 63 6b 65 6e 64 2e 00 74 66 74 70 2d 73 65 72 76 | ing.``tc``.as.backend..tftp-serv |
| bf480 | 65 72 2d 6e 61 6d 65 00 74 68 69 73 20 6f 70 74 69 6f 6e 20 61 6c 6c 6f 77 73 20 74 6f 20 63 6f | er-name.this.option.allows.to.co |
| bf4a0 | 6e 66 69 67 75 72 65 20 70 72 65 66 69 78 2d 73 69 64 20 6f 6e 20 53 52 2e 20 54 68 65 20 e2 80 | nfigure.prefix-sid.on.SR..The... |
| bf4c0 | 98 6e 6f 2d 70 68 70 2d 66 6c 61 67 e2 80 99 20 6d 65 61 6e 73 20 4e 4f 20 50 65 6e 75 6c 74 69 | .no-php-flag....means.NO.Penulti |
| bf4e0 | 6d 61 74 65 20 48 6f 70 20 50 6f 70 70 69 6e 67 20 74 68 61 74 20 61 6c 6c 6f 77 73 20 53 52 20 | mate.Hop.Popping.that.allows.SR. |
| bf500 | 6e 6f 64 65 20 74 6f 20 72 65 71 75 65 73 74 20 74 6f 20 69 74 73 20 6e 65 69 67 68 62 6f 72 20 | node.to.request.to.its.neighbor. |
| bf520 | 74 6f 20 6e 6f 74 20 70 6f 70 20 74 68 65 20 6c 61 62 65 6c 2e 20 54 68 65 20 e2 80 98 65 78 70 | to.not.pop.the.label..The....exp |
| bf540 | 6c 69 63 69 74 2d 6e 75 6c 6c e2 80 99 20 66 6c 61 67 20 61 6c 6c 6f 77 73 20 53 52 20 6e 6f 64 | licit-null....flag.allows.SR.nod |
| bf560 | 65 20 74 6f 20 72 65 71 75 65 73 74 20 74 6f 20 69 74 73 20 6e 65 69 67 68 62 6f 72 20 74 6f 20 | e.to.request.to.its.neighbor.to. |
| bf580 | 73 65 6e 64 20 49 50 20 70 61 63 6b 65 74 20 77 69 74 68 20 74 68 65 20 45 58 50 4c 49 43 49 54 | send.IP.packet.with.the.EXPLICIT |
| bf5a0 | 2d 4e 55 4c 4c 20 6c 61 62 65 6c 2e 20 54 68 65 20 e2 80 98 6e 2d 66 6c 61 67 2d 63 6c 65 61 72 | -NULL.label..The....n-flag-clear |
| bf5c0 | e2 80 99 20 6f 70 74 69 6f 6e 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 65 78 70 6c 69 63 | ....option.can.be.used.to.explic |
| bf5e0 | 69 74 6c 79 20 63 6c 65 61 72 20 74 68 65 20 4e 6f 64 65 20 66 6c 61 67 20 74 68 61 74 20 69 73 | itly.clear.the.Node.flag.that.is |
| bf600 | 20 73 65 74 20 62 79 20 64 65 66 61 75 6c 74 20 66 6f 72 20 50 72 65 66 69 78 2d 53 49 44 73 20 | .set.by.default.for.Prefix-SIDs. |
| bf620 | 61 73 73 6f 63 69 61 74 65 64 20 74 6f 20 6c 6f 6f 70 62 61 63 6b 20 61 64 64 72 65 73 73 65 73 | associated.to.loopback.addresses |
| bf640 | 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 6e 65 63 65 73 73 61 72 79 20 74 6f 20 63 6f | ..This.option.is.necessary.to.co |
| bf660 | 6e 66 69 67 75 72 65 20 41 6e 79 63 61 73 74 2d 53 49 44 73 2e 00 74 69 6d 65 2d 6f 66 66 73 65 | nfigure.Anycast-SIDs..time-offse |
| bf680 | 74 00 74 69 6d 65 2d 73 65 72 76 65 72 00 74 69 6d 65 2d 73 65 72 76 65 72 73 00 74 75 6e 6e 65 | t.time-server.time-servers.tunne |
| bf6a0 | 6c 00 75 73 65 20 36 20 28 6c 6f 63 61 6c 36 29 00 75 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | l.use.6.(local6).use.this.comman |
| bf6c0 | 64 20 74 6f 20 63 68 65 63 6b 20 69 66 20 74 68 65 72 65 20 69 73 20 61 6e 20 49 6e 74 65 6c c2 | d.to.check.if.there.is.an.Intel. |
| bf6e0 | ae 20 51 41 54 20 73 75 70 70 6f 72 74 65 64 20 50 72 6f 63 65 73 73 6f 72 20 69 6e 20 79 6f 75 | ..QAT.supported.Processor.in.you |
| bf700 | 72 20 73 79 73 74 65 6d 2e 00 75 73 65 72 00 75 75 63 70 00 76 61 6c 69 64 00 76 61 6c 69 64 2d | r.system..user.uucp.valid.valid- |
| bf720 | 6c 69 66 65 74 69 6d 65 00 76 65 74 68 20 69 6e 74 65 72 66 61 63 65 73 20 6e 65 65 64 20 74 6f | lifetime.veth.interfaces.need.to |
| bf740 | 20 62 65 20 63 72 65 61 74 65 64 20 69 6e 20 70 61 69 72 73 20 2d 20 69 74 27 73 20 63 61 6c 6c | .be.created.in.pairs.-.it's.call |
| bf760 | 65 64 20 74 68 65 20 70 65 65 72 20 6e 61 6d 65 00 76 69 72 74 75 61 6c 20 49 50 20 61 64 64 72 | ed.the.peer.name.virtual.IP.addr |
| bf780 | 65 73 73 65 73 20 73 68 6f 75 6c 64 20 62 65 20 69 6e 73 74 61 6c 6c 65 64 2e 20 49 66 20 6e 6f | esses.should.be.installed..If.no |
| bf7a0 | 74 20 73 70 65 63 69 66 69 65 64 20 74 68 65 20 61 64 64 72 65 73 73 65 73 20 77 69 6c 6c 20 62 | t.specified.the.addresses.will.b |
| bf7c0 | 65 20 69 6e 73 74 61 6c 6c 65 64 20 6f 6e 20 74 68 65 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 | e.installed.on.the.outbound.inte |
| bf7e0 | 72 66 61 63 65 3b 00 76 78 6c 61 6e 00 77 61 72 6e 69 6e 67 00 77 65 20 64 65 73 63 72 69 62 65 | rface;.vxlan.warning.we.describe |
| bf800 | 64 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 53 52 20 49 53 49 53 20 2f 20 53 52 | d.the.configuration.SR.ISIS./.SR |
| bf820 | 20 4f 53 50 46 20 75 73 69 6e 67 20 32 20 63 6f 6e 6e 65 63 74 65 64 20 77 69 74 68 20 74 68 65 | .OSPF.using.2.connected.with.the |
| bf840 | 6d 20 74 6f 20 73 68 61 72 65 20 6c 61 62 65 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 77 65 | m.to.share.label.information..we |
| bf860 | 69 67 68 74 65 64 2d 6c 65 61 73 74 2d 63 6f 6e 6e 65 63 74 69 6f 6e 00 77 65 69 67 68 74 65 64 | ighted-least-connection.weighted |
| bf880 | 2d 72 6f 75 6e 64 2d 72 6f 62 69 6e 00 77 68 69 6c 65 20 61 20 2a 62 79 74 65 2a 20 69 73 20 77 | -round-robin.while.a.*byte*.is.w |
| bf8a0 | 72 69 74 74 65 6e 20 61 73 20 61 20 73 69 6e 67 6c 65 20 2a 2a 62 2a 2a 2e 00 77 69 6e 73 2d 73 | ritten.as.a.single.**b**..wins-s |
| bf8c0 | 65 72 76 65 72 00 77 69 72 65 67 75 61 72 64 00 77 69 72 65 6c 65 73 73 00 77 69 74 68 20 3a 63 | erver.wireguard.wireless.with.:c |
| bf8e0 | 66 67 63 6d 64 3a 60 73 65 74 20 73 79 73 74 65 6d 20 61 63 63 65 6c 65 72 61 74 69 6f 6e 20 71 | fgcmd:`set.system.acceleration.q |
| bf900 | 61 74 60 20 6f 6e 20 62 6f 74 68 20 73 79 73 74 65 6d 73 20 74 68 65 20 62 61 6e 64 77 69 64 74 | at`.on.both.systems.the.bandwidt |
| bf920 | 68 20 69 6e 63 72 65 61 73 65 73 2e 00 77 70 61 64 2d 75 72 6c 00 77 70 61 64 2d 75 72 6c 2c 20 | h.increases..wpad-url.wpad-url,. |
| bf940 | 77 70 61 64 2d 75 72 6c 20 63 6f 64 65 20 32 35 32 20 3d 20 74 65 78 74 00 77 77 61 6e 00 7a 65 | wpad-url.code.252.=.text.wwan.ze |
| bf960 | 62 72 61 00 4d 49 4d 45 2d 56 65 72 73 69 6f 6e 3a 20 31 2e 30 0a 43 6f 6e 74 65 6e 74 2d 54 79 | bra.MIME-Version:.1.0.Content-Ty |
| bf980 | 70 65 3a 20 74 65 78 74 2f 70 6c 61 69 6e 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0a 43 6f | pe:.text/plain;.charset=UTF-8.Co |
| bf9a0 | 6e 74 65 6e 74 2d 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 38 62 69 74 0a 58 2d | ntent-Transfer-Encoding:.8bit.X- |
| bf9c0 | 47 65 6e 65 72 61 74 6f 72 3a 20 4c 6f 63 61 6c 61 7a 79 20 28 68 74 74 70 73 3a 2f 2f 6c 6f 63 | Generator:.Localazy.(https://loc |
| bf9e0 | 61 6c 61 7a 79 2e 63 6f 6d 29 0a 50 72 6f 6a 65 63 74 2d 49 64 2d 56 65 72 73 69 6f 6e 3a 20 0a | alazy.com).Project-Id-Version:.. |
| bfa00 | 4c 61 6e 67 75 61 67 65 3a 20 6a 61 0a 50 6c 75 72 61 6c 2d 46 6f 72 6d 73 3a 20 6e 70 6c 75 72 | Language:.ja.Plural-Forms:.nplur |
| bfa20 | 61 6c 73 3d 31 3b 20 70 6c 75 72 61 6c 3d 30 3b 0a 00 21 3c 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a | als=1;.plural=0;..!<h:h:h:h:h:h: |
| bfa40 | 68 3a 68 2f 78 3e 3a 20 4d 61 74 63 68 20 65 76 65 72 79 74 68 69 6e 67 20 65 78 63 65 70 74 20 | h:h/x>:.Match.everything.except. |
| bfa60 | 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 72 65 66 69 78 2e 00 21 3c 68 3a 68 3a 68 3a 68 3a | the.specified.prefix..!<h:h:h:h: |
| bfa80 | 68 3a 68 3a 68 3a 68 3e 2d 3c 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3e 3a 20 4d 61 74 63 | h:h:h:h>-<h:h:h:h:h:h:h:h>:.Matc |
| bfaa0 | 68 20 65 76 65 72 79 74 68 69 6e 67 20 65 78 63 65 70 74 20 74 68 65 20 73 70 65 63 69 66 69 65 | h.everything.except.the.specifie |
| bfac0 | 64 20 72 61 6e 67 65 2e 00 21 3c 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3e 3a 20 4d 61 74 | d.range..!<h:h:h:h:h:h:h:h>:.Mat |
| bfae0 | 63 68 20 65 76 65 72 79 74 68 69 6e 67 20 65 78 63 65 70 74 20 74 68 65 20 73 70 65 63 69 66 69 | ch.everything.except.the.specifi |
| bfb00 | 65 64 20 61 64 64 72 65 73 73 2e 00 21 3c 78 2e 78 2e 78 2e 78 2f 78 3e 3a 20 4d 61 74 63 68 20 | ed.address..!<x.x.x.x/x>:.Match. |
| bfb20 | 65 76 65 72 79 74 68 69 6e 67 20 65 78 63 65 70 74 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 | everything.except.the.specified. |
| bfb40 | 73 75 62 6e 65 74 2e 00 21 3c 78 2e 78 2e 78 2e 78 3e 2d 3c 78 2e 78 2e 78 2e 78 3e 3a 20 4d 61 | subnet..!<x.x.x.x>-<x.x.x.x>:.Ma |
| bfb60 | 74 63 68 20 65 76 65 72 79 74 68 69 6e 67 20 65 78 63 65 70 74 20 74 68 65 20 73 70 65 63 69 66 | tch.everything.except.the.specif |
| bfb80 | 69 65 64 20 72 61 6e 67 65 2e 00 21 3c 78 2e 78 2e 78 2e 78 3e 3a 20 4d 61 74 63 68 20 65 76 65 | ied.range..!<x.x.x.x>:.Match.eve |
| bfba0 | 72 79 74 68 69 6e 67 20 65 78 63 65 70 74 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 61 64 64 | rything.except.the.specified.add |
| bfbc0 | 72 65 73 73 2e 00 22 4d 61 6e 61 67 65 64 20 61 64 64 72 65 73 73 20 63 6f 6e 66 69 67 75 72 61 | ress.."Managed.address.configura |
| bfbe0 | 74 69 6f 6e 22 20 66 6c 61 67 00 22 4f 74 68 65 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 22 | tion".flag."Other.configuration" |
| bfc00 | 20 66 6c 61 67 00 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 c3 a4 23 23 23 23 23 | .flag.###################..##### |
| bfc20 | 23 23 23 23 23 23 23 23 20 46 6c 6f 77 74 61 62 6c 65 73 20 46 69 72 65 77 61 6c 6c 20 43 6f 6e | ########.Flowtables.Firewall.Con |
| bfc40 | 66 69 67 75 72 61 74 69 6f 6e 20 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 | figuration.##################### |
| bfc60 | 23 23 23 23 23 23 23 23 23 23 23 23 00 28 54 68 69 73 20 63 61 6e 20 62 65 20 75 73 65 66 75 6c | ############.(This.can.be.useful |
| bfc80 | 20 77 68 65 6e 20 61 20 63 61 6c 6c 65 64 20 73 65 72 76 69 63 65 20 68 61 73 20 6d 61 6e 79 20 | .when.a.called.service.has.many. |
| bfca0 | 61 6e 64 2f 6f 72 20 6f 66 74 65 6e 20 63 68 61 6e 67 69 6e 67 20 64 65 73 74 69 6e 61 74 69 6f | and/or.often.changing.destinatio |
| bfcc0 | 6e 20 61 64 64 72 65 73 73 65 73 20 2d 20 65 2e 67 2e 20 4e 65 74 66 6c 69 78 2e 29 00 2a 2a 28 | n.addresses.-.e.g..Netflix.).**( |
| bfce0 | 44 65 66 61 75 6c 74 29 2a 2a 20 46 6c 6f 77 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 62 79 20 | Default)**.Flows.are.defined.by. |
| bfd00 | 74 68 65 20 35 2d 74 75 70 6c 65 2c 20 66 61 69 72 6e 65 73 73 20 69 73 20 61 70 70 6c 69 65 64 | the.5-tuple,.fairness.is.applied |
| bfd20 | 20 6f 76 65 72 20 73 6f 75 72 63 65 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 | .over.source.and.destination.add |
| bfd40 | 72 65 73 73 65 73 20 61 6e 64 20 61 6c 73 6f 20 6f 76 65 72 20 69 6e 64 69 76 69 64 75 61 6c 20 | resses.and.also.over.individual. |
| bfd60 | 66 6c 6f 77 73 2e 00 2a 2a 31 2d 32 35 34 2a 2a 20 e2 80 93 20 69 6e 74 65 72 66 61 63 65 73 20 | flows..**1-254**.....interfaces. |
| bfd80 | 77 69 74 68 20 61 20 63 68 61 6e 6e 65 6c 20 6e 75 6d 62 65 72 20 69 6e 74 65 72 66 65 72 65 20 | with.a.channel.number.interfere. |
| bfda0 | 77 69 74 68 20 69 6e 74 65 72 66 65 72 69 6e 67 20 69 6e 74 65 72 66 61 63 65 73 20 61 6e 64 20 | with.interfering.interfaces.and. |
| bfdc0 | 69 6e 74 65 72 66 61 63 65 73 20 77 69 74 68 20 74 68 65 20 73 61 6d 65 20 63 68 61 6e 6e 65 6c | interfaces.with.the.same.channel |
| bfde0 | 20 6e 75 6d 62 65 72 2e 20 2a 2a 69 6e 74 65 72 66 65 72 69 6e 67 2a 2a 20 e2 80 93 20 69 6e 74 | .number..**interfering**.....int |
| bfe00 | 65 72 66 65 72 69 6e 67 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 61 73 73 75 6d 65 64 20 | erfering.interfaces.are.assumed. |
| bfe20 | 74 6f 20 69 6e 74 65 72 66 65 72 65 20 77 69 74 68 20 61 6c 6c 20 6f 74 68 65 72 20 63 68 61 6e | to.interfere.with.all.other.chan |
| bfe40 | 6e 65 6c 73 20 65 78 63 65 70 74 20 6e 6f 6e 69 6e 74 65 72 66 65 72 69 6e 67 20 63 68 61 6e 6e | nels.except.noninterfering.chann |
| bfe60 | 65 6c 73 2e 20 2a 2a 6e 6f 6e 69 6e 74 65 72 66 65 72 69 6e 67 2a 2a 20 e2 80 93 20 6e 6f 6e 69 | els..**noninterfering**.....noni |
| bfe80 | 6e 74 65 72 66 65 72 69 6e 67 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 61 73 73 75 6d 65 | nterfering.interfaces.are.assume |
| bfea0 | 64 20 74 6f 20 6f 6e 6c 79 20 69 6e 74 65 72 66 65 72 65 20 77 69 74 68 20 74 68 65 6d 73 65 6c | d.to.only.interfere.with.themsel |
| bfec0 | 76 65 73 2e 00 2a 2a 31 2e 20 43 6f 6e 66 69 72 6d 20 49 50 20 63 6f 6e 6e 65 63 74 69 76 69 74 | ves..**1..Confirm.IP.connectivit |
| bfee0 | 79 20 62 65 74 77 65 65 6e 20 74 75 6e 6e 65 6c 20 73 6f 75 72 63 65 2d 61 64 64 72 65 73 73 20 | y.between.tunnel.source-address. |
| bff00 | 61 6e 64 20 72 65 6d 6f 74 65 3a 2a 2a 00 2a 2a 31 30 2a 2a 20 2d 20 3a 61 62 62 72 3a 60 49 50 | and.remote:**.**10**.-.:abbr:`IP |
| bff20 | 46 49 58 20 28 49 50 20 46 6c 6f 77 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 20 45 78 70 6f 72 74 29 | FIX.(IP.Flow.Information.Export) |
| bff40 | 60 20 61 73 20 70 65 72 20 3a 72 66 63 3a 60 33 39 31 37 60 00 2a 2a 32 2e 20 43 6f 6e 66 69 72 | `.as.per.:rfc:`3917`.**2..Confir |
| bff60 | 6d 20 74 68 65 20 6c 69 6e 6b 20 74 79 70 65 20 68 61 73 20 62 65 65 6e 20 73 65 74 20 74 6f 20 | m.the.link.type.has.been.set.to. |
| bff80 | 47 52 45 3a 2a 2a 00 2a 2a 33 2e 20 43 6f 6e 66 69 72 6d 20 49 50 20 63 6f 6e 6e 65 63 74 69 76 | GRE:**.**3..Confirm.IP.connectiv |
| bffa0 | 69 74 79 20 61 63 72 6f 73 73 20 74 68 65 20 74 75 6e 6e 65 6c 3a 2a 2a 00 2a 2a 35 2a 2a 20 2d | ity.across.the.tunnel:**.**5**.- |
| bffc0 | 20 4d 6f 73 74 20 63 6f 6d 6d 6f 6e 20 76 65 72 73 69 6f 6e 2c 20 62 75 74 20 72 65 73 74 72 69 | .Most.common.version,.but.restri |
| bffe0 | 63 74 65 64 20 74 6f 20 49 50 76 34 20 66 6c 6f 77 73 20 6f 6e 6c 79 00 2a 2a 39 2a 2a 20 2d 20 | cted.to.IPv4.flows.only.**9**.-. |
| c0000 | 4e 65 74 46 6c 6f 77 20 76 65 72 73 69 6f 6e 20 39 20 28 64 65 66 61 75 6c 74 29 00 2a 2a 41 53 | NetFlow.version.9.(default).**AS |
| c0020 | 20 70 61 74 68 20 6c 65 6e 67 74 68 20 63 68 65 63 6b 2a 2a 00 2a 2a 41 63 74 69 76 65 2d 61 63 | .path.length.check**.**Active-ac |
| c0040 | 74 69 76 65 2a 2a 3a 20 62 6f 74 68 20 44 48 43 50 20 73 65 72 76 65 72 73 20 77 69 6c 6c 20 72 | tive**:.both.DHCP.servers.will.r |
| c0060 | 65 73 70 6f 6e 64 20 74 6f 20 44 48 43 50 20 72 65 71 75 65 73 74 73 2e 20 49 66 20 60 60 6d 6f | espond.to.DHCP.requests..If.``mo |
| c0080 | 64 65 60 60 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 69 73 20 69 73 20 74 68 65 | de``.is.not.defined,.this.is.the |
| c00a0 | 20 64 65 66 61 75 6c 74 20 62 65 68 61 76 69 6f 72 2e 00 2a 2a 41 63 74 69 76 65 2d 70 61 73 73 | .default.behavior..**Active-pass |
| c00c0 | 69 76 65 2a 2a 3a 20 6f 6e 6c 79 20 60 60 70 72 69 6d 61 72 79 60 60 20 73 65 72 76 65 72 20 77 | ive**:.only.``primary``.server.w |
| c00e0 | 69 6c 6c 20 72 65 73 70 6f 6e 64 20 74 6f 20 44 48 43 50 20 72 65 71 75 65 73 74 73 2e 20 49 66 | ill.respond.to.DHCP.requests..If |
| c0100 | 20 74 68 69 73 20 73 65 72 76 65 72 20 67 6f 65 73 20 6f 66 66 6c 69 6e 65 2c 20 74 68 65 6e 20 | .this.server.goes.offline,.then. |
| c0120 | 60 60 73 65 63 6f 6e 64 61 72 79 60 60 20 73 65 72 76 65 72 20 77 69 6c 6c 20 74 61 6b 65 20 70 | ``secondary``.server.will.take.p |
| c0140 | 6c 61 63 65 2e 00 2a 2a 41 6c 72 65 61 64 79 2d 73 65 6c 65 63 74 65 64 20 65 78 74 65 72 6e 61 | lace..**Already-selected.externa |
| c0160 | 6c 20 63 68 65 63 6b 2a 2a 00 2a 2a 41 70 70 6c 69 63 61 74 69 6f 6e 20 43 6f 6d 70 61 74 69 62 | l.check**.**Application.Compatib |
| c0180 | 69 6c 69 74 79 2a 2a 3a 20 53 6f 6d 65 20 61 70 70 6c 69 63 61 74 69 6f 6e 73 20 61 6e 64 20 70 | ility**:.Some.applications.and.p |
| c01a0 | 72 6f 74 6f 63 6f 6c 73 20 6d 61 79 20 6e 6f 74 20 77 6f 72 6b 20 77 65 6c 6c 20 77 69 74 68 20 | rotocols.may.not.work.well.with. |
| c01c0 | 43 47 4e 41 54 20 64 75 65 20 74 6f 20 74 68 65 69 72 20 72 65 6c 69 61 6e 63 65 20 6f 6e 20 75 | CGNAT.due.to.their.reliance.on.u |
| c01e0 | 6e 69 71 75 65 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 65 73 2e 00 2a 2a 41 70 70 | nique.public.IP.addresses..**App |
| c0200 | 6c 69 65 73 20 74 6f 3a 2a 2a 20 49 6e 62 6f 75 6e 64 20 74 72 61 66 66 69 63 2e 00 2a 2a 41 70 | lies.to:**.Inbound.traffic..**Ap |
| c0220 | 70 6c 69 65 73 20 74 6f 3a 2a 2a 20 4f 75 74 62 6f 75 6e 64 20 54 72 61 66 66 69 63 2e 00 2a 2a | plies.to:**.Outbound.Traffic..** |
| c0240 | 41 70 70 6c 69 65 73 20 74 6f 3a 2a 2a 20 4f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 2e 00 | Applies.to:**.Outbound.traffic.. |
| c0260 | 2a 2a 41 70 70 6c 79 20 74 68 65 20 74 72 61 66 66 69 63 20 70 6f 6c 69 63 79 20 74 6f 20 61 6e | **Apply.the.traffic.policy.to.an |
| c0280 | 20 69 6e 74 65 72 66 61 63 65 20 69 6e 67 72 65 73 73 20 6f 72 20 65 67 72 65 73 73 2a 2a 2e 00 | .interface.ingress.or.egress**.. |
| c02a0 | 2a 2a 42 72 69 64 67 65 20 50 6f 72 74 3f 2a 2a 3a 20 63 68 6f 6f 73 65 20 61 70 70 72 6f 70 69 | **Bridge.Port?**:.choose.appropi |
| c02c0 | 61 74 65 20 70 61 74 68 20 62 61 73 65 64 20 6f 6e 20 69 66 20 69 6e 74 65 72 66 61 63 65 20 77 | ate.path.based.on.if.interface.w |
| c02e0 | 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 69 76 65 64 20 69 73 20 70 | ere.the.packet.was.received.is.p |
| c0300 | 61 72 74 20 6f 66 20 61 20 62 72 69 64 67 65 2c 20 6f 72 20 6e 6f 74 2e 00 2a 2a 42 72 69 64 67 | art.of.a.bridge,.or.not..**Bridg |
| c0320 | 65 20 50 6f 72 74 3f 2a 2a 3a 20 63 68 6f 6f 73 65 20 61 70 70 72 6f 70 72 69 61 74 65 20 70 61 | e.Port?**:.choose.appropriate.pa |
| c0340 | 74 68 20 62 61 73 65 64 20 6f 6e 20 77 68 65 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 20 77 68 | th.based.on.whether.interface.wh |
| c0360 | 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 69 76 65 64 20 69 73 20 70 | ere.the.packet.was.received.is.p |
| c0380 | 61 72 74 20 6f 66 20 61 20 62 72 69 64 67 65 2c 20 6f 72 20 6e 6f 74 2e 00 2a 2a 43 61 6c 63 75 | art.of.a.bridge,.or.not..**Calcu |
| c03a0 | 6c 61 74 65 20 74 68 65 20 4e 75 6d 62 65 72 20 6f 66 20 53 75 62 73 63 72 69 62 65 72 73 20 70 | late.the.Number.of.Subscribers.p |
| c03c0 | 65 72 20 50 75 62 6c 69 63 20 49 50 2a 2a 3a 00 2a 2a 43 69 73 63 6f 20 49 4f 53 20 52 6f 75 74 | er.Public.IP**:.**Cisco.IOS.Rout |
| c03e0 | 65 72 3a 2a 2a 00 2a 2a 43 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 20 76 69 61 20 49 50 | er:**.**Client.IP.address.via.IP |
| c0400 | 20 72 61 6e 67 65 20 64 65 66 69 6e 69 74 69 6f 6e 2a 2a 00 2a 2a 43 6c 69 65 6e 74 20 49 50 20 | .range.definition**.**Client.IP. |
| c0420 | 73 75 62 6e 65 74 73 20 76 69 61 20 43 49 44 52 20 6e 6f 74 61 74 69 6f 6e 2a 2a 00 2a 2a 43 6c | subnets.via.CIDR.notation**.**Cl |
| c0440 | 75 73 74 65 72 2d 4c 69 73 74 20 6c 65 6e 67 74 68 20 63 68 65 63 6b 2a 2a 00 2a 2a 43 6f 6e 6e | uster-List.length.check**.**Conn |
| c0460 | 74 72 61 63 6b 20 49 67 6e 6f 72 65 2a 2a 3a 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 75 6e | track.Ignore**:.rules.defined.un |
| c0480 | 64 65 72 20 60 60 73 65 74 20 73 79 73 74 65 6d 20 63 6f 6e 6e 74 72 61 63 6b 20 69 67 6e 6f 72 | der.``set.system.conntrack.ignor |
| c04a0 | 65 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 2e 2e 2e 60 60 2e 00 2a 2a 43 6f 6e 6e 74 72 61 | e.[ipv4.|.ipv6]....``..**Conntra |
| c04c0 | 63 6b 20 49 67 6e 6f 72 65 2a 2a 3a 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 75 6e 64 65 72 | ck.Ignore**:.rules.defined.under |
| c04e0 | 20 60 60 73 65 74 20 73 79 73 74 65 6d 20 63 6f 6e 6e 74 72 61 63 6b 20 69 67 6e 6f 72 65 20 5b | .``set.system.conntrack.ignore.[ |
| c0500 | 69 70 76 34 20 7c 20 69 70 76 36 5d 20 2e 2e 2e 60 60 2e 20 53 74 61 72 74 69 6e 67 20 66 72 6f | ipv4.|.ipv6]....``..Starting.fro |
| c0520 | 6d 20 76 79 6f 73 2d 31 2e 35 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 34 30 36 31 32 30 30 32 30 2c | m.vyos-1.5-rolling-202406120020, |
| c0540 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 64 6f 6e 65 20 69 6e 20 74 68 69 73 20 73 65 63 74 | .configuration.done.in.this.sect |
| c0560 | 69 6f 6e 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 69 6e 20 60 60 66 69 72 65 77 61 6c 6c 20 5b 69 | ion.can.be.done.in.``firewall.[i |
| c0580 | 70 76 34 20 7c 20 69 70 76 36 5d 20 70 72 65 72 6f 75 74 69 6e 67 20 2e 2e 2e 60 60 2e 20 46 6f | pv4.|.ipv6].prerouting....``..Fo |
| c05a0 | 72 20 63 6f 6d 70 61 74 69 62 69 6c 69 74 79 20 72 65 61 73 6f 6e 73 2c 20 74 68 69 73 20 66 65 | r.compatibility.reasons,.this.fe |
| c05c0 | 61 74 75 72 65 20 69 73 20 73 74 69 6c 6c 20 70 72 65 73 65 6e 74 2c 20 62 75 74 20 69 74 20 77 | ature.is.still.present,.but.it.w |
| c05e0 | 69 6c 6c 20 62 65 20 72 65 6d 6f 76 65 64 20 69 6e 20 74 68 65 20 66 75 74 75 72 65 2e 00 2a 2a | ill.be.removed.in.the.future..** |
| c0600 | 43 6f 73 74 2d 45 66 66 65 63 74 69 76 65 2a 2a 3a 20 52 65 64 75 63 65 73 20 74 68 65 20 63 6f | Cost-Effective**:.Reduces.the.co |
| c0620 | 73 74 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 61 63 71 75 69 72 69 6e 67 20 61 64 64 | st.associated.with.acquiring.add |
| c0640 | 69 74 69 6f 6e 61 6c 20 70 75 62 6c 69 63 20 49 50 76 34 20 61 64 64 72 65 73 73 65 73 2e 00 2a | itional.public.IPv4.addresses..* |
| c0660 | 2a 43 72 65 61 74 65 20 61 20 74 72 61 66 66 69 63 20 70 6f 6c 69 63 79 2a 2a 2e 00 2a 2a 44 48 | *Create.a.traffic.policy**..**DH |
| c0680 | 43 50 28 76 36 29 2a 2a 00 2a 2a 44 48 43 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 | CP(v6)**.**DHCPv6.Prefix.Delegat |
| c06a0 | 69 6f 6e 20 28 50 44 29 2a 2a 00 2a 2a 44 65 73 74 69 6e 61 74 69 6f 6e 20 4e 41 54 2a 2a 3a 20 | ion.(PD)**.**Destination.NAT**:. |
| c06c0 | 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 5b 6e 61 74 20 7c | rules.defined.under.``set.[nat.| |
| c06e0 | 20 6e 61 74 36 36 5d 20 64 65 73 74 69 6e 61 74 69 6f 6e 2e 2e 2e 60 60 2e 00 2a 2a 44 65 73 74 | .nat66].destination...``..**Dest |
| c0700 | 69 6e 61 74 69 6f 6e 20 69 73 20 74 68 65 20 72 6f 75 74 65 72 3f 2a 2a 3a 20 63 68 6f 6f 73 65 | ination.is.the.router?**:.choose |
| c0720 | 20 61 6e 20 61 70 70 72 6f 70 72 69 61 74 65 20 70 61 74 68 20 62 61 73 65 64 20 6f 6e 20 64 65 | .an.appropriate.path.based.on.de |
| c0740 | 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 2e 20 54 72 61 6e 73 69 74 20 66 6f | stination.IP.address..Transit.fo |
| c0760 | 72 77 61 72 64 20 63 6f 6e 74 69 6e 75 65 73 20 74 6f 20 2a 2a 66 6f 72 77 61 72 64 2a 2a 2c 20 | rward.continues.to.**forward**,. |
| c0780 | 77 68 69 6c 65 20 74 72 61 66 66 69 63 20 77 68 65 72 65 20 74 68 65 20 64 65 73 74 69 6e 61 74 | while.traffic.where.the.destinat |
| c07a0 | 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 | ion.IP.address.is.configured.on. |
| c07c0 | 74 68 65 20 72 6f 75 74 65 72 20 63 6f 6e 74 69 6e 75 65 73 20 74 6f 20 2a 2a 69 6e 70 75 74 2a | the.router.continues.to.**input* |
| c07e0 | 2a 2e 00 2a 2a 44 65 73 74 69 6e 61 74 69 6f 6e 20 69 73 20 74 68 65 20 72 6f 75 74 65 72 3f 2a | *..**Destination.is.the.router?* |
| c0800 | 2a 3a 20 63 68 6f 6f 73 65 20 61 70 70 72 6f 70 69 61 74 65 20 70 61 74 68 20 62 61 73 65 64 20 | *:.choose.appropiate.path.based. |
| c0820 | 6f 6e 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 2e 20 54 72 61 6e 73 | on.destination.IP.address..Trans |
| c0840 | 69 74 20 66 6f 72 77 61 72 64 20 63 6f 6e 74 69 6e 75 6e 65 73 20 74 6f 20 2a 2a 66 6f 72 77 61 | it.forward.continunes.to.**forwa |
| c0860 | 72 64 2a 2a 2c 20 77 68 69 6c 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 64 65 73 74 69 6e 61 | rd**,.while.traffic.that.destina |
| c0880 | 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e | tion.IP.address.is.configured.on |
| c08a0 | 20 74 68 65 20 72 6f 75 74 65 72 20 63 6f 6e 74 69 6e 75 65 73 20 74 6f 20 2a 2a 69 6e 70 75 74 | .the.router.continues.to.**input |
| c08c0 | 2a 2a 2e 00 2a 2a 44 65 73 74 69 6e 61 74 69 6f 6e 20 69 73 20 74 68 65 20 72 6f 75 74 65 72 3f | **..**Destination.is.the.router? |
| c08e0 | 2a 2a 3a 20 63 68 6f 6f 73 65 20 61 70 70 72 6f 70 72 69 61 74 65 20 70 61 74 68 20 62 61 73 65 | **:.choose.appropriate.path.base |
| c0900 | 64 20 6f 6e 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 2e 20 54 72 61 | d.on.destination.IP.address..Tra |
| c0920 | 6e 73 69 74 20 66 6f 72 77 61 72 64 20 63 6f 6e 74 69 6e 75 65 73 20 74 6f 20 2a 2a 66 6f 72 77 | nsit.forward.continues.to.**forw |
| c0940 | 61 72 64 2a 2a 2c 20 77 68 69 6c 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 64 65 73 74 69 6e | ard**,.while.traffic.that.destin |
| c0960 | 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 6f | ation.IP.address.is.configured.o |
| c0980 | 6e 20 74 68 65 20 72 6f 75 74 65 72 20 63 6f 6e 74 69 6e 75 65 73 20 74 6f 20 2a 2a 69 6e 70 75 | n.the.router.continues.to.**inpu |
| c09a0 | 74 2a 2a 2e 00 2a 2a 44 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 75 6e 64 65 72 20 64 65 76 65 6c | t**..**Documentation.under.devel |
| c09c0 | 6f 70 6d 65 6e 74 2a 2a 00 2a 2a 45 73 74 69 6d 61 74 65 20 50 6f 72 74 73 20 4e 65 65 64 65 64 | opment**.**Estimate.Ports.Needed |
| c09e0 | 20 70 65 72 20 53 75 62 73 63 72 69 62 65 72 2a 2a 3a 00 2a 2a 45 74 68 65 72 6e 65 74 20 28 70 | .per.Subscriber**:.**Ethernet.(p |
| c0a00 | 72 6f 74 6f 63 6f 6c 2c 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 6f 72 20 | rotocol,.destination.address.or. |
| c0a20 | 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 29 2a 2a 00 2a 2a 45 78 61 6d 70 6c 65 3a 2a 2a 00 2a | source.address)**.**Example:**.* |
| c0a40 | 2a 45 78 74 65 72 6e 61 6c 20 63 68 65 63 6b 2a 2a 00 2a 2a 46 69 72 65 77 61 6c 6c 20 50 72 65 | *External.check**.**Firewall.Pre |
| c0a60 | 72 6f 75 74 69 6e 67 2a 2a 3a 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 75 6e 64 20 75 6e 64 65 72 20 | routing**:.commands.found.under. |
| c0a80 | 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 70 72 65 72 6f 75 74 69 6e 67 20 72 | ``set.firewall.ipv4.prerouting.r |
| c0aa0 | 61 77 20 2e 2e 2e 60 60 00 2a 2a 46 69 72 65 77 61 6c 6c 20 50 72 65 72 6f 75 74 69 6e 67 2a 2a | aw....``.**Firewall.Prerouting** |
| c0ac0 | 3a 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 75 6e 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 66 69 72 | :.commands.found.under.``set.fir |
| c0ae0 | 65 77 61 6c 6c 20 69 70 76 36 20 70 72 65 72 6f 75 74 69 6e 67 20 72 61 77 20 2e 2e 2e 60 60 00 | ewall.ipv6.prerouting.raw....``. |
| c0b00 | 2a 2a 46 69 72 65 77 61 6c 6c 20 6d 61 72 6b 2a 2a 00 2a 2a 46 69 72 65 77 61 6c 6c 20 70 72 65 | **Firewall.mark**.**Firewall.pre |
| c0b20 | 72 6f 75 74 69 6e 67 2a 2a 3a 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 75 6e 64 65 72 20 60 | routing**:.rules.defined.under.` |
| c0b40 | 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 70 72 65 72 | `set.firewall.[ipv4.|.ipv6].prer |
| c0b60 | 6f 75 74 69 6e 67 20 72 61 77 2e 2e 2e 60 60 2e 20 41 6c 6c 20 72 75 6c 65 73 20 64 65 66 69 6e | outing.raw...``..All.rules.defin |
| c0b80 | 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 | ed.in.this.section.are.processed |
| c0ba0 | 20 62 65 66 6f 72 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 75 62 73 | .before.connection.tracking.subs |
| c0bc0 | 79 73 74 65 6d 2e 00 2a 2a 46 6c 6f 77 74 61 62 6c 65 20 52 65 66 65 72 65 6e 63 65 3a 2a 2a 20 | ystem..**Flowtable.Reference:**. |
| c0be0 | 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 6b 65 72 6e 65 6c 2e 6f 72 67 2f 6e 65 74 77 6f 72 6b 69 | https://docs.kernel.org/networki |
| c0c00 | 6e 67 2f 6e 66 5f 66 6c 6f 77 74 61 62 6c 65 2e 68 74 6d 6c 00 2a 2a 46 6f 72 20 6d 6f 72 65 20 | ng/nf_flowtable.html.**For.more. |
| c0c20 | 69 6e 66 6f 72 6d 61 74 69 6f 6e 2a 2a 20 6f 66 20 4e 65 74 66 69 6c 74 65 72 20 68 6f 6f 6b 73 | information**.of.Netfilter.hooks |
| c0c40 | 20 61 6e 64 20 4c 69 6e 75 78 20 6e 65 74 77 6f 72 6b 69 6e 67 20 70 61 63 6b 65 74 20 66 6c 6f | .and.Linux.networking.packet.flo |
| c0c60 | 77 73 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 60 4e 65 74 66 69 6c 74 65 72 2d 48 6f | ws.can.be.found.in.`Netfilter-Ho |
| c0c80 | 6f 6b 73 20 3c 68 74 74 70 73 3a 2f 2f 77 69 6b 69 2e 6e 66 74 61 62 6c 65 73 2e 6f 72 67 2f 77 | oks.<https://wiki.nftables.org/w |
| c0ca0 | 69 6b 69 2d 6e 66 74 61 62 6c 65 73 2f 69 6e 64 65 78 2e 70 68 70 2f 4e 65 74 66 69 6c 74 65 72 | iki-nftables/index.php/Netfilter |
| c0cc0 | 5f 68 6f 6f 6b 73 3e 60 5f 00 2a 2a 46 6f 72 77 61 72 64 20 28 42 72 69 64 67 65 29 2a 2a 3a 20 | _hooks>`_.**Forward.(Bridge)**:. |
| c0ce0 | 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 69 73 20 74 72 61 73 | stage.where.traffic.that.is.tras |
| c0d00 | 73 70 61 73 69 6e 67 20 74 68 72 6f 75 67 68 20 74 68 65 20 62 72 69 64 67 65 20 69 73 20 66 69 | spasing.through.the.bridge.is.fi |
| c0d20 | 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 3a 00 2a 2a 46 6f 72 77 61 72 64 | ltered.and.controlled:.**Forward |
| c0d40 | 20 28 42 72 69 64 67 65 29 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 | .(Bridge)**:.stage.where.traffic |
| c0d60 | 20 74 68 61 74 20 69 73 20 74 72 65 73 70 61 73 69 6e 67 20 74 68 72 6f 75 67 68 20 74 68 65 20 | .that.is.trespasing.through.the. |
| c0d80 | 62 72 69 64 67 65 20 69 73 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 | bridge.is.filtered.and.controlle |
| c0da0 | 64 3a 00 2a 2a 46 6f 72 77 61 72 64 20 28 42 72 69 64 67 65 29 2a 2a 3a 20 73 74 61 67 65 20 77 | d:.**Forward.(Bridge)**:.stage.w |
| c0dc0 | 68 65 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 69 73 20 74 72 65 73 70 61 73 73 69 6e 67 | here.traffic.that.is.trespassing |
| c0de0 | 20 74 68 72 6f 75 67 68 20 74 68 65 20 62 72 69 64 67 65 20 69 73 20 66 69 6c 74 65 72 65 64 20 | .through.the.bridge.is.filtered. |
| c0e00 | 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 3a 00 2a 2a 46 6f 72 77 61 72 64 2a 2a 3a 20 73 74 61 | and.controlled:.**Forward**:.sta |
| c0e20 | 67 65 20 77 68 65 72 65 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 | ge.where.transit.traffic.can.be. |
| c0e40 | 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 54 68 69 73 20 69 6e | filtered.and.controlled..This.in |
| c0e60 | 63 6c 75 64 65 73 20 69 70 76 34 20 61 6e 64 20 69 70 76 36 20 66 69 6c 74 65 72 69 6e 67 20 72 | cludes.ipv4.and.ipv6.filtering.r |
| c0e80 | 75 6c 65 73 2c 20 64 65 66 69 6e 65 64 20 69 6e 3a 00 2a 2a 48 61 72 64 77 61 72 65 20 6f 66 66 | ules,.defined.in:.**Hardware.off |
| c0ea0 | 6c 6f 61 64 3a 2a 2a 20 73 68 6f 75 6c 64 20 62 65 20 73 75 70 70 6f 72 74 65 64 20 62 79 20 74 | load:**.should.be.supported.by.t |
| c0ec0 | 68 65 20 4e 49 43 73 20 75 73 65 64 2e 00 2a 2a 49 47 50 20 63 6f 73 74 20 63 68 65 63 6b 2a 2a | he.NICs.used..**IGP.cost.check** |
| c0ee0 | 00 2a 2a 49 50 76 34 20 28 44 53 43 50 20 76 61 6c 75 65 2c 20 6d 61 78 69 6d 75 6d 20 70 61 63 | .**IPv4.(DSCP.value,.maximum.pac |
| c0f00 | 6b 65 74 20 6c 65 6e 67 74 68 2c 20 70 72 6f 74 6f 63 6f 6c 2c 20 73 6f 75 72 63 65 20 61 64 64 | ket.length,.protocol,.source.add |
| c0f20 | 72 65 73 73 2c 2a 2a 20 2a 2a 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2c 20 73 | ress,**.**destination.address,.s |
| c0f40 | 6f 75 72 63 65 20 70 6f 72 74 2c 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 6f 72 20 | ource.port,.destination.port.or. |
| c0f60 | 54 43 50 20 66 6c 61 67 73 29 2a 2a 00 2a 2a 49 50 76 34 20 41 64 64 72 65 73 73 20 43 6f 6e 73 | TCP.flags)**.**IPv4.Address.Cons |
| c0f80 | 65 72 76 61 74 69 6f 6e 2a 2a 3a 20 43 47 4e 41 54 20 68 65 6c 70 73 20 6d 69 74 69 67 61 74 65 | ervation**:.CGNAT.helps.mitigate |
| c0fa0 | 20 74 68 65 20 65 78 68 61 75 73 74 69 6f 6e 20 6f 66 20 49 50 76 34 20 61 64 64 72 65 73 73 65 | .the.exhaustion.of.IPv4.addresse |
| c0fc0 | 73 20 62 79 20 61 6c 6c 6f 77 69 6e 67 20 6d 75 6c 74 69 70 6c 65 20 63 75 73 74 6f 6d 65 72 73 | s.by.allowing.multiple.customers |
| c0fe0 | 20 74 6f 20 73 68 61 72 65 20 61 20 73 69 6e 67 6c 65 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 | .to.share.a.single.public.IP.add |
| c1000 | 72 65 73 73 2e 00 2a 2a 49 50 76 36 20 28 44 53 43 50 20 76 61 6c 75 65 2c 20 6d 61 78 69 6d 75 | ress..**IPv6.(DSCP.value,.maximu |
| c1020 | 6d 20 70 61 79 6c 6f 61 64 20 6c 65 6e 67 74 68 2c 20 70 72 6f 74 6f 63 6f 6c 2c 20 73 6f 75 72 | m.payload.length,.protocol,.sour |
| c1040 | 63 65 20 61 64 64 72 65 73 73 2c 2a 2a 20 2a 2a 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 | ce.address,**.**destination.addr |
| c1060 | 65 73 73 2c 20 73 6f 75 72 63 65 20 70 6f 72 74 2c 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f | ess,.source.port,.destination.po |
| c1080 | 72 74 20 6f 72 20 54 43 50 20 66 6c 61 67 73 29 2a 2a 00 2a 2a 49 66 20 79 6f 75 20 61 72 65 20 | rt.or.TCP.flags)**.**If.you.are. |
| c10a0 | 6c 6f 6f 6b 69 6e 67 20 66 6f 72 20 61 20 70 6f 6c 69 63 79 20 66 6f 72 20 79 6f 75 72 20 6f 75 | looking.for.a.policy.for.your.ou |
| c10c0 | 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 2a 2a 20 62 75 74 20 79 6f 75 20 64 6f 6e 27 74 20 6b | tbound.traffic**.but.you.don't.k |
| c10e0 | 6e 6f 77 20 77 68 69 63 68 20 6f 6e 65 20 79 6f 75 20 6e 65 65 64 20 61 6e 64 20 79 6f 75 20 64 | now.which.one.you.need.and.you.d |
| c1100 | 6f 6e 27 74 20 77 61 6e 74 20 74 6f 20 67 6f 20 74 68 72 6f 75 67 68 20 65 76 65 72 79 20 70 6f | on't.want.to.go.through.every.po |
| c1120 | 73 73 69 62 6c 65 20 70 6f 6c 69 63 79 20 73 68 6f 77 6e 20 68 65 72 65 2c 20 2a 2a 6f 75 72 20 | ssible.policy.shown.here,.**our. |
| c1140 | 62 65 74 20 69 73 20 74 68 61 74 20 68 69 67 68 6c 79 20 6c 69 6b 65 6c 79 20 79 6f 75 20 61 72 | bet.is.that.highly.likely.you.ar |
| c1160 | 65 20 6c 6f 6f 6b 69 6e 67 20 66 6f 72 20 61 2a 2a 20 53 68 61 70 65 72 5f 20 2a 2a 70 6f 6c 69 | e.looking.for.a**.Shaper_.**poli |
| c1180 | 63 79 20 61 6e 64 20 79 6f 75 20 77 61 6e 74 20 74 6f 2a 2a 20 3a 72 65 66 3a 60 73 65 74 20 69 | cy.and.you.want.to**.:ref:`set.i |
| c11a0 | 74 73 20 71 75 65 75 65 73 20 3c 65 6d 62 65 64 3e 60 20 2a 2a 61 73 20 46 51 2d 43 6f 44 65 6c | ts.queues.<embed>`.**as.FQ-CoDel |
| c11c0 | 2a 2a 2e 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 61 62 6f 75 74 20 63 6f 6e 6e 74 | **..**Important.note.about.connt |
| c11e0 | 72 61 63 6b 20 69 67 6e 6f 72 65 20 72 75 6c 65 73 3a 2a 2a 20 53 74 61 72 74 69 6e 67 20 66 72 | rack.ignore.rules:**.Starting.fr |
| c1200 | 6f 6d 20 76 79 6f 73 2d 31 2e 35 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 34 30 36 31 32 30 30 32 30 | om.vyos-1.5-rolling-202406120020 |
| c1220 | 2c 20 69 67 6e 6f 72 65 20 72 75 6c 65 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e | ,.ignore.rules.can.be.defined.in |
| c1240 | 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 70 72 | .``set.firewall.[ipv4.|.ipv6].pr |
| c1260 | 65 72 6f 75 74 69 6e 67 20 72 61 77 20 2e 2e 2e 60 60 2e 20 49 74 27 73 20 65 78 70 65 63 74 65 | erouting.raw....``..It's.expecte |
| c1280 | 64 20 74 68 61 74 20 69 6e 20 74 68 65 20 66 75 74 75 72 65 20 74 68 65 20 63 6f 6e 6e 74 72 61 | d.that.in.the.future.the.conntra |
| c12a0 | 63 6b 20 69 67 6e 6f 72 65 20 72 75 6c 65 73 20 77 69 6c 6c 20 62 65 20 72 65 6d 6f 76 65 64 2e | ck.ignore.rules.will.be.removed. |
| c12c0 | 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 61 62 6f 75 74 20 64 65 66 61 75 6c 74 2d | .**Important.note.about.default- |
| c12e0 | 61 63 74 69 6f 6e 73 3a 2a 2a 20 49 66 20 61 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 66 | actions:**.If.a.default.action.f |
| c1300 | 6f 72 20 61 6e 79 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 | or.any.base.chain.is.not.defined |
| c1320 | 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 | ,.then.the.default.action.is.set |
| c1340 | 20 74 6f 20 2a 2a 61 63 63 65 70 74 2a 2a 20 66 6f 72 20 74 68 61 74 20 63 68 61 69 6e 2e 20 46 | .to.**accept**.for.that.chain..F |
| c1360 | 6f 72 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 73 2c 20 69 66 20 74 68 65 20 64 65 66 61 75 6c 74 | or.custom.chains,.if.the.default |
| c1380 | 20 61 63 74 69 6f 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 | .action.is.not.defined,.then.the |
| c13a0 | 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 64 72 6f 70 | .default-action.is.set.to.**drop |
| c13c0 | 2a 2a 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 61 62 6f 75 74 20 64 65 66 61 75 6c | **.**Important.note.about.defaul |
| c13e0 | 74 2d 61 63 74 69 6f 6e 73 3a 2a 2a 20 49 66 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 66 | t-actions:**.If.default.action.f |
| c1400 | 6f 72 20 61 6e 79 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 | or.any.base.chain.is.not.defined |
| c1420 | 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 | ,.then.the.default.action.is.set |
| c1440 | 20 74 6f 20 2a 2a 61 63 63 65 70 74 2a 2a 20 66 6f 72 20 74 68 61 74 20 63 68 61 69 6e 2e 20 46 | .to.**accept**.for.that.chain..F |
| c1460 | 6f 72 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 73 2c 20 69 66 20 64 65 66 61 75 6c 74 20 61 63 74 | or.custom.chains,.if.default.act |
| c1480 | 69 6f 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 | ion.is.not.defined,.then.the.def |
| c14a0 | 61 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 64 72 6f 70 2a 2a 00 2a | ault-action.is.set.to.**drop**.* |
| c14c0 | 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 61 62 6f 75 74 20 64 65 66 61 75 6c 74 2d 61 63 | *Important.note.about.default-ac |
| c14e0 | 74 69 6f 6e 73 3a 2a 2a 20 49 66 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 66 6f 72 20 61 | tions:**.If.default.action.for.a |
| c1500 | 6e 79 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 | ny.base.chain.is.not.defined,.th |
| c1520 | 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 | en.the.default.action.is.set.to. |
| c1540 | 2a 2a 61 63 63 65 70 74 2a 2a 20 66 6f 72 20 74 68 61 74 20 63 68 61 69 6e 2e 20 46 6f 72 20 63 | **accept**.for.that.chain..For.c |
| c1560 | 75 73 74 6f 6d 20 63 68 61 69 6e 73 2c 20 69 66 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 | ustom.chains,.if.default.action. |
| c1580 | 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 | is.not.defined,.then.the.default |
| c15a0 | 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 64 72 6f 70 2a 2a 2e 00 2a 2a 49 6d | -action.is.set.to.**drop**..**Im |
| c15c0 | 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 61 62 6f 75 74 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f | portant.note.about.default-actio |
| c15e0 | 6e 73 3a 2a 2a 20 49 66 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 66 6f 72 20 61 6e 79 20 | ns:**.If.default.action.for.any. |
| c1600 | 63 68 61 69 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 | chain.is.not.defined,.then.the.d |
| c1620 | 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 61 63 63 65 70 74 | efault.action.is.set.to.**accept |
| c1640 | 2a 2a 20 66 6f 72 20 74 68 61 74 20 63 68 61 69 6e 2e 20 4f 6e 6c 79 20 66 6f 72 20 63 75 73 74 | **.for.that.chain..Only.for.cust |
| c1660 | 6f 6d 20 63 68 61 69 6e 73 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 | om.chains,.the.default.action.is |
| c1680 | 20 73 65 74 20 74 6f 20 2a 2a 64 72 6f 70 2a 2a 2e 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f | .set.to.**drop**..**Important.no |
| c16a0 | 74 65 20 61 62 6f 75 74 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 73 3a 2a 2a 20 49 66 20 64 | te.about.default-actions:**.If.d |
| c16c0 | 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 66 6f 72 20 61 6e 79 20 63 68 61 69 6e 20 69 73 20 6e | efault.action.for.any.chain.is.n |
| c16e0 | 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 | ot.defined,.then.the.default.act |
| c1700 | 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 64 72 6f 70 2a 2a 20 66 6f 72 20 74 68 61 74 20 | ion.is.set.to.**drop**.for.that. |
| c1720 | 63 68 61 69 6e 2e 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 61 62 6f 75 74 20 64 65 | chain..**Important.note.about.de |
| c1740 | 66 61 75 6c 74 2d 61 63 74 69 6f 6e 73 3a 2a 2a 20 49 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 | fault-actions:**.If.the.default. |
| c1760 | 61 63 74 69 6f 6e 20 66 6f 72 20 61 6e 79 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 6e 6f 74 | action.for.any.base.chain.is.not |
| c1780 | 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f | .defined,.then.the.default.actio |
| c17a0 | 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 61 63 63 65 70 74 2a 2a 20 66 6f 72 20 74 68 61 74 20 | n.is.set.to.**accept**.for.that. |
| c17c0 | 63 68 61 69 6e 2e 20 46 6f 72 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 73 20 69 66 20 61 20 64 65 | chain..For.custom.chains.if.a.de |
| c17e0 | 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 20 74 68 65 6e | fault.action.is.not.defined.then |
| c1800 | 20 74 68 65 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a | .the.default-action.is.set.to.** |
| c1820 | 64 72 6f 70 2a 2a 2e 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 61 62 6f 75 74 20 64 | drop**..**Important.note.about.d |
| c1840 | 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 73 3a 2a 2a 20 49 66 20 74 68 65 20 64 65 66 61 75 6c 74 | efault-actions:**.If.the.default |
| c1860 | 20 61 63 74 69 6f 6e 20 66 6f 72 20 61 6e 79 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 6e 6f | .action.for.any.base.chain.is.no |
| c1880 | 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 | t.defined,.then.the.default.acti |
| c18a0 | 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 61 63 63 65 70 74 2a 2a 20 66 6f 72 20 74 68 61 74 | on.is.set.to.**accept**.for.that |
| c18c0 | 20 63 68 61 69 6e 2e 20 46 6f 72 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 73 2c 20 69 66 20 74 68 | .chain..For.custom.chains,.if.th |
| c18e0 | 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c | e.default.action.is.not.defined, |
| c1900 | 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 | .then.the.default-action.is.set. |
| c1920 | 74 6f 20 2a 2a 64 72 6f 70 2a 2a 2e 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 6f 6e | to.**drop**..**Important.note.on |
| c1940 | 20 75 73 61 67 65 20 6f 66 20 74 65 72 6d 73 3a 2a 2a 20 54 68 65 20 66 69 72 65 77 61 6c 6c 20 | .usage.of.terms:**.The.firewall. |
| c1960 | 6d 61 6b 65 73 20 75 73 65 20 6f 66 20 74 68 65 20 74 65 72 6d 73 20 60 66 6f 72 77 61 72 64 60 | makes.use.of.the.terms.`forward` |
| c1980 | 2c 20 60 69 6e 70 75 74 60 2c 20 61 6e 64 20 60 6f 75 74 70 75 74 60 20 66 6f 72 20 66 69 72 65 | ,.`input`,.and.`output`.for.fire |
| c19a0 | 77 61 6c 6c 20 70 6f 6c 69 63 79 2e 20 4d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 | wall.policy..More.information.of |
| c19c0 | 20 4e 65 74 66 69 6c 74 65 72 20 68 6f 6f 6b 73 20 61 6e 64 20 4c 69 6e 75 78 20 6e 65 74 77 6f | .Netfilter.hooks.and.Linux.netwo |
| c19e0 | 72 6b 69 6e 67 20 70 61 63 6b 65 74 20 66 6c 6f 77 73 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 | rking.packet.flows.can.be.found. |
| c1a00 | 69 6e 20 60 4e 65 74 66 69 6c 74 65 72 2d 48 6f 6f 6b 73 20 3c 68 74 74 70 73 3a 2f 2f 77 69 6b | in.`Netfilter-Hooks.<https://wik |
| c1a20 | 69 2e 6e 66 74 61 62 6c 65 73 2e 6f 72 67 2f 77 69 6b 69 2d 6e 66 74 61 62 6c 65 73 2f 69 6e 64 | i.nftables.org/wiki-nftables/ind |
| c1a40 | 65 78 2e 70 68 70 2f 4e 65 74 66 69 6c 74 65 72 5f 68 6f 6f 6b 73 3e 60 5f 00 2a 2a 49 6d 70 6f | ex.php/Netfilter_hooks>`_.**Impo |
| c1a60 | 72 74 61 6e 74 20 6e 6f 74 65 20 6f 6e 20 75 73 61 67 65 20 6f 66 20 74 65 72 6d 73 3a 2a 2a 20 | rtant.note.on.usage.of.terms:**. |
| c1a80 | 54 68 65 20 66 69 72 65 77 61 6c 6c 20 6d 61 6b 65 73 20 75 73 65 20 6f 66 20 74 68 65 20 74 65 | The.firewall.makes.use.of.the.te |
| c1aa0 | 72 6d 73 20 60 69 6e 60 2c 20 60 6f 75 74 60 2c 20 61 6e 64 20 60 6c 6f 63 61 6c 60 20 66 6f 72 | rms.`in`,.`out`,.and.`local`.for |
| c1ac0 | 20 66 69 72 65 77 61 6c 6c 20 70 6f 6c 69 63 79 2e 20 55 73 65 72 73 20 65 78 70 65 72 69 65 6e | .firewall.policy..Users.experien |
| c1ae0 | 63 65 64 20 77 69 74 68 20 6e 65 74 66 69 6c 74 65 72 20 6f 66 74 65 6e 20 63 6f 6e 66 75 73 65 | ced.with.netfilter.often.confuse |
| c1b00 | 20 60 69 6e 60 20 74 6f 20 62 65 20 61 20 72 65 66 65 72 65 6e 63 65 20 74 6f 20 74 68 65 20 60 | .`in`.to.be.a.reference.to.the.` |
| c1b20 | 49 4e 50 55 54 60 20 63 68 61 69 6e 2c 20 61 6e 64 20 60 6f 75 74 60 20 74 68 65 20 60 4f 55 54 | INPUT`.chain,.and.`out`.the.`OUT |
| c1b40 | 50 55 54 60 20 63 68 61 69 6e 20 66 72 6f 6d 20 6e 65 74 66 69 6c 74 65 72 2e 20 54 68 69 73 20 | PUT`.chain.from.netfilter..This. |
| c1b60 | 69 73 20 6e 6f 74 20 74 68 65 20 63 61 73 65 2e 20 54 68 65 73 65 20 69 6e 73 74 65 61 64 20 69 | is.not.the.case..These.instead.i |
| c1b80 | 6e 64 69 63 61 74 65 20 74 68 65 20 75 73 65 20 6f 66 20 74 68 65 20 60 46 4f 52 57 41 52 44 60 | ndicate.the.use.of.the.`FORWARD` |
| c1ba0 | 20 63 68 61 69 6e 20 61 6e 64 20 65 69 74 68 65 72 20 74 68 65 20 69 6e 70 75 74 20 6f 72 20 6f | .chain.and.either.the.input.or.o |
| c1bc0 | 75 74 70 75 74 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 60 49 4e 50 55 54 60 20 63 68 61 | utput.interface..The.`INPUT`.cha |
| c1be0 | 69 6e 2c 20 77 68 69 63 68 20 69 73 20 75 73 65 64 20 66 6f 72 20 6c 6f 63 61 6c 20 74 72 61 66 | in,.which.is.used.for.local.traf |
| c1c00 | 66 69 63 20 74 6f 20 74 68 65 20 4f 53 2c 20 69 73 20 61 20 72 65 66 65 72 65 6e 63 65 20 74 6f | fic.to.the.OS,.is.a.reference.to |
| c1c20 | 20 61 73 20 60 6c 6f 63 61 6c 60 20 77 69 74 68 20 72 65 73 70 65 63 74 20 74 6f 20 69 74 73 20 | .as.`local`.with.respect.to.its. |
| c1c40 | 69 6e 70 75 74 20 69 6e 74 65 72 66 61 63 65 2e 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 | input.interface..**Important.not |
| c1c60 | 65 3a 2a 2a 20 54 68 69 73 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 69 73 20 76 61 6c 69 64 | e:**.This.documentation.is.valid |
| c1c80 | 20 6f 6e 6c 79 20 66 6f 72 20 56 79 4f 53 20 53 61 67 69 74 74 61 20 70 72 69 6f 72 20 74 6f 20 | .only.for.VyOS.Sagitta.prior.to. |
| c1ca0 | 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 00 2a 2a 49 6d 70 6f 72 | 1.4-rolling-202308040557.**Impor |
| c1cc0 | 74 61 6e 74 20 6e 6f 74 65 3a 2a 2a 20 54 68 69 73 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 | tant.note:**.This.documentation. |
| c1ce0 | 69 73 20 76 61 6c 69 64 20 6f 6e 6c 79 20 66 6f 72 20 56 79 4f 53 20 53 61 67 69 74 74 61 20 70 | is.valid.only.for.VyOS.Sagitta.p |
| c1d00 | 72 69 6f 72 20 74 6f 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 59 59 59 59 4d 4d 44 44 48 48 6d 6d | rior.to.1.4-rolling-YYYYMMDDHHmm |
| c1d20 | 00 2a 2a 49 6e 70 75 74 20 28 42 72 69 64 67 65 29 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 | .**Input.(Bridge)**:.stage.where |
| c1d40 | 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 65 64 20 66 6f 72 20 74 68 65 20 62 72 69 64 67 65 | .traffic.destined.for.the.bridge |
| c1d60 | 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 | .itself.can.be.filtered.and.cont |
| c1d80 | 72 6f 6c 6c 65 64 3a 00 2a 2a 49 6e 70 75 74 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 | rolled:.**Input**:.stage.where.t |
| c1da0 | 72 61 66 66 69 63 20 64 65 73 74 69 6e 61 74 65 64 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 | raffic.destinated.to.the.router. |
| c1dc0 | 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 | itself.can.be.filtered.and.contr |
| c1de0 | 6f 6c 6c 65 64 2e 20 54 68 69 73 20 69 73 20 77 68 65 72 65 20 61 6c 6c 20 72 75 6c 65 73 20 66 | olled..This.is.where.all.rules.f |
| c1e00 | 6f 72 20 73 65 63 75 72 69 6e 67 20 74 68 65 20 72 6f 75 74 65 72 20 73 68 6f 75 6c 64 20 74 61 | or.securing.the.router.should.ta |
| c1e20 | 6b 65 20 70 6c 61 63 65 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 69 70 76 34 20 61 6e 64 | ke.place..This.includes.ipv4.and |
| c1e40 | 20 69 70 76 36 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 64 65 66 69 6e 65 64 20 69 | .ipv6.filtering.rules,.defined.i |
| c1e60 | 6e 3a 00 2a 2a 49 6e 70 75 74 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 | n:.**Input**:.stage.where.traffi |
| c1e80 | 63 20 64 65 73 74 69 6e 65 64 20 66 6f 72 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 | c.destined.for.the.router.itself |
| c1ea0 | 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e | .can.be.filtered.and.controlled. |
| c1ec0 | 20 54 68 69 73 20 69 73 20 77 68 65 72 65 20 61 6c 6c 20 72 75 6c 65 73 20 66 6f 72 20 73 65 63 | .This.is.where.all.rules.for.sec |
| c1ee0 | 75 72 69 6e 67 20 74 68 65 20 72 6f 75 74 65 72 20 73 68 6f 75 6c 64 20 74 61 6b 65 20 70 6c 61 | uring.the.router.should.take.pla |
| c1f00 | 63 65 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 69 70 76 34 20 61 6e 64 20 69 70 76 36 20 | ce..This.includes.ipv4.and.ipv6. |
| c1f20 | 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 64 65 66 69 6e 65 64 20 69 6e 3a 00 2a 2a 49 | filtering.rules,.defined.in:.**I |
| c1f40 | 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 2a 2a 00 2a 2a 4c 45 46 54 2a 2a 00 2a 2a 4c 45 46 54 3a | nterface.name**.**LEFT**.**LEFT: |
| c1f60 | 2a 2a 20 2a 20 57 41 4e 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 60 65 74 68 30 2e 32 30 31 60 | **.*.WAN.interface.on.`eth0.201` |
| c1f80 | 20 2a 20 60 65 74 68 30 2e 32 30 31 60 20 69 6e 74 65 72 66 61 63 65 20 49 50 3a 20 60 31 37 32 | .*.`eth0.201`.interface.IP:.`172 |
| c1fa0 | 2e 31 38 2e 32 30 31 2e 31 30 2f 32 34 60 20 2a 20 60 76 74 69 31 30 60 20 69 6e 74 65 72 66 61 | .18.201.10/24`.*.`vti10`.interfa |
| c1fc0 | 63 65 20 49 50 3a 20 60 31 30 2e 30 2e 30 2e 32 2f 33 31 60 20 2a 20 60 64 75 6d 30 60 20 69 6e | ce.IP:.`10.0.0.2/31`.*.`dum0`.in |
| c1fe0 | 74 65 72 66 61 63 65 20 49 50 3a 20 60 31 30 2e 30 2e 31 31 2e 31 2f 32 34 60 20 28 66 6f 72 20 | terface.IP:.`10.0.11.1/24`.(for. |
| c2000 | 74 65 73 74 69 6e 67 20 70 75 72 70 6f 73 65 73 29 00 2a 2a 4c 61 79 65 72 20 33 20 62 72 69 64 | testing.purposes).**Layer.3.brid |
| c2020 | 67 65 2a 2a 3a 20 57 68 65 6e 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 61 73 73 69 | ge**:.When.an.IP.address.is.assi |
| c2040 | 67 6e 65 64 20 74 6f 20 74 68 65 20 62 72 69 64 67 65 20 69 6e 74 65 72 66 61 63 65 2c 20 61 6e | gned.to.the.bridge.interface,.an |
| c2060 | 64 20 69 66 20 74 72 61 66 66 69 63 20 69 73 20 73 65 6e 74 20 74 6f 20 74 68 65 20 72 6f 75 74 | d.if.traffic.is.sent.to.the.rout |
| c2080 | 65 72 20 74 6f 20 74 68 69 73 20 49 50 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 20 75 73 69 6e 67 | er.to.this.IP.(for.example.using |
| c20a0 | 20 73 75 63 68 20 49 50 20 61 73 20 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 29 2c 20 74 68 | .such.IP.as.default.gateway),.th |
| c20c0 | 65 6e 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 66 6f 72 20 2a 2a 62 72 69 64 67 65 20 66 69 | en.rules.defined.for.**bridge.fi |
| c20e0 | 72 65 77 61 6c 6c 2a 2a 20 77 6f 6e 27 74 20 6d 61 74 63 68 2c 20 61 6e 64 20 66 69 72 65 77 61 | rewall**.won't.match,.and.firewa |
| c2100 | 6c 6c 20 61 6e 61 6c 79 73 69 73 20 63 6f 6e 74 69 6e 75 65 73 20 61 74 20 2a 2a 49 50 20 6c 61 | ll.analysis.continues.at.**IP.la |
| c2120 | 79 65 72 2a 2a 2e 00 2a 2a 4c 65 61 66 32 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 2a 2a 00 | yer**..**Leaf2.configuration:**. |
| c2140 | 2a 2a 4c 65 61 66 33 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 2a 2a 00 2a 2a 4c 69 6e 75 78 | **Leaf3.configuration:**.**Linux |
| c2160 | 20 73 79 73 74 65 6d 64 2d 6e 65 74 77 6f 72 6b 64 3a 2a 2a 00 2a 2a 4c 6f 63 61 6c 20 70 72 65 | .systemd-networkd:**.**Local.pre |
| c2180 | 66 65 72 65 6e 63 65 20 63 68 65 63 6b 2a 2a 00 2a 2a 4c 6f 63 61 6c 20 72 6f 75 74 65 20 63 68 | ference.check**.**Local.route.ch |
| c21a0 | 65 63 6b 2a 2a 00 2a 2a 4d 45 44 20 63 68 65 63 6b 2a 2a 00 2a 2a 4d 75 6c 74 69 2d 70 61 74 68 | eck**.**MED.check**.**Multi-path |
| c21c0 | 20 63 68 65 63 6b 2a 2a 00 2a 2a 4e 6f 64 65 20 31 2a 2a 00 2a 2a 4e 6f 64 65 20 31 3a 2a 2a 00 | .check**.**Node.1**.**Node.1:**. |
| c21e0 | 2a 2a 4e 6f 64 65 20 32 2a 2a 00 2a 2a 4e 6f 64 65 20 32 3a 2a 2a 00 2a 2a 4e 6f 64 65 31 3a 2a | **Node.2**.**Node.2:**.**Node1:* |
| c2200 | 2a 00 2a 2a 4e 6f 64 65 32 3a 2a 2a 00 2a 2a 4f 50 54 49 4f 4e 41 4c 3a 2a 2a 20 45 78 63 6c 75 | *.**Node2:**.**OPTIONAL:**.Exclu |
| c2220 | 64 65 20 49 6e 74 65 72 2d 56 4c 41 4e 20 74 72 61 66 66 69 63 20 28 62 65 74 77 65 65 6e 20 56 | de.Inter-VLAN.traffic.(between.V |
| c2240 | 4c 41 4e 31 30 20 61 6e 64 20 56 4c 41 4e 31 31 29 20 66 72 6f 6d 20 50 42 52 00 2a 2a 4f 53 50 | LAN10.and.VLAN11).from.PBR.**OSP |
| c2260 | 46 20 6e 65 74 77 6f 72 6b 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2a 2a 20 e2 80 93 20 69 6e | F.network.routing.table**.....in |
| c2280 | 63 6c 75 64 65 73 20 61 20 6c 69 73 74 20 6f 66 20 61 63 71 75 69 72 65 64 20 72 6f 75 74 65 73 | cludes.a.list.of.acquired.routes |
| c22a0 | 20 66 6f 72 20 61 6c 6c 20 61 63 63 65 73 73 69 62 6c 65 20 6e 65 74 77 6f 72 6b 73 20 28 6f 72 | .for.all.accessible.networks.(or |
| c22c0 | 20 61 67 67 72 65 67 61 74 65 64 20 61 72 65 61 20 72 61 6e 67 65 73 29 20 6f 66 20 4f 53 50 46 | .aggregated.area.ranges).of.OSPF |
| c22e0 | 20 73 79 73 74 65 6d 2e 20 22 49 41 22 20 66 6c 61 67 20 6d 65 61 6e 73 20 74 68 61 74 20 72 6f | .system.."IA".flag.means.that.ro |
| c2300 | 75 74 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 69 73 20 69 6e 20 74 68 65 20 61 72 65 61 20 74 | ute.destination.is.in.the.area.t |
| c2320 | 6f 20 77 68 69 63 68 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 6e 6f 74 20 63 6f 6e 6e 65 63 | o.which.the.router.is.not.connec |
| c2340 | 74 65 64 2c 20 69 2e 65 2e 20 69 74 e2 80 99 73 20 61 6e 20 69 6e 74 65 72 2d 61 72 65 61 20 70 | ted,.i.e..it...s.an.inter-area.p |
| c2360 | 61 74 68 2e 20 49 6e 20 73 71 75 61 72 65 20 62 72 61 63 6b 65 74 73 20 61 20 73 75 6d 6d 61 72 | ath..In.square.brackets.a.summar |
| c2380 | 79 20 6d 65 74 72 69 63 20 66 6f 72 20 61 6c 6c 20 6c 69 6e 6b 73 20 74 68 72 6f 75 67 68 20 77 | y.metric.for.all.links.through.w |
| c23a0 | 68 69 63 68 20 61 20 70 61 74 68 20 6c 69 65 73 20 74 6f 20 74 68 69 73 20 6e 65 74 77 6f 72 6b | hich.a.path.lies.to.this.network |
| c23c0 | 20 69 73 20 73 70 65 63 69 66 69 65 64 2e 20 22 76 69 61 22 20 70 72 65 66 69 78 20 64 65 66 69 | .is.specified.."via".prefix.defi |
| c23e0 | 6e 65 73 20 61 20 72 6f 75 74 65 72 2d 67 61 74 65 77 61 79 2c 20 69 2e 65 2e 20 74 68 65 20 66 | nes.a.router-gateway,.i.e..the.f |
| c2400 | 69 72 73 74 20 72 6f 75 74 65 72 20 6f 6e 20 74 68 65 20 77 61 79 20 74 6f 20 74 68 65 20 64 65 | irst.router.on.the.way.to.the.de |
| c2420 | 73 74 69 6e 61 74 69 6f 6e 20 28 6e 65 78 74 20 68 6f 70 29 2e 20 2a 2a 4f 53 50 46 20 72 6f 75 | stination.(next.hop)..**OSPF.rou |
| c2440 | 74 65 72 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2a 2a 20 e2 80 93 20 69 6e 63 6c 75 64 65 73 | ter.routing.table**.....includes |
| c2460 | 20 61 20 6c 69 73 74 20 6f 66 20 61 63 71 75 69 72 65 64 20 72 6f 75 74 65 73 20 74 6f 20 61 6c | .a.list.of.acquired.routes.to.al |
| c2480 | 6c 20 61 63 63 65 73 73 69 62 6c 65 20 41 42 52 73 20 61 6e 64 20 41 53 42 52 73 2e 20 2a 2a 4f | l.accessible.ABRs.and.ASBRs..**O |
| c24a0 | 53 50 46 20 65 78 74 65 72 6e 61 6c 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2a 2a 20 e2 80 93 | SPF.external.routing.table**.... |
| c24c0 | 20 69 6e 63 6c 75 64 65 73 20 61 20 6c 69 73 74 20 6f 66 20 61 63 71 75 69 72 65 64 20 72 6f 75 | .includes.a.list.of.acquired.rou |
| c24e0 | 74 65 73 20 74 68 61 74 20 61 72 65 20 65 78 74 65 72 6e 61 6c 20 74 6f 20 74 68 65 20 4f 53 50 | tes.that.are.external.to.the.OSP |
| c2500 | 46 20 70 72 6f 63 65 73 73 2e 20 22 45 22 20 66 6c 61 67 20 70 6f 69 6e 74 73 20 74 6f 20 74 68 | F.process.."E".flag.points.to.th |
| c2520 | 65 20 65 78 74 65 72 6e 61 6c 20 6c 69 6e 6b 20 6d 65 74 72 69 63 20 74 79 70 65 20 28 45 31 20 | e.external.link.metric.type.(E1. |
| c2540 | e2 80 93 20 6d 65 74 72 69 63 20 74 79 70 65 20 31 2c 20 45 32 20 e2 80 93 20 6d 65 74 72 69 63 | ....metric.type.1,.E2.....metric |
| c2560 | 20 74 79 70 65 20 32 29 2e 20 45 78 74 65 72 6e 61 6c 20 6c 69 6e 6b 20 6d 65 74 72 69 63 20 69 | .type.2)..External.link.metric.i |
| c2580 | 73 20 70 72 69 6e 74 65 64 20 69 6e 20 74 68 65 20 22 3c 6d 65 74 72 69 63 20 6f 66 20 74 68 65 | s.printed.in.the."<metric.of.the |
| c25a0 | 20 72 6f 75 74 65 72 20 77 68 69 63 68 20 61 64 76 65 72 74 69 73 65 64 20 74 68 65 20 6c 69 6e | .router.which.advertised.the.lin |
| c25c0 | 6b 3e 2f 3c 6c 69 6e 6b 20 6d 65 74 72 69 63 3e 22 20 66 6f 72 6d 61 74 2e 00 2a 2a 4f 6e 65 20 | k>/<link.metric>".format..**One. |
| c25e0 | 67 61 74 65 77 61 79 3a 2a 2a 00 2a 2a 4f 72 69 67 69 6e 20 63 68 65 63 6b 2a 2a 00 2a 2a 4f 75 | gateway:**.**Origin.check**.**Ou |
| c2600 | 74 70 75 74 20 28 42 72 69 64 67 65 29 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 | tput.(Bridge)**:.stage.where.tra |
| c2620 | 66 66 69 63 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 65 73 20 66 72 6f 6d 20 74 68 65 20 62 72 | ffic.that.originates.from.the.br |
| c2640 | 69 64 67 65 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 | idge.itself.can.be.filtered.and. |
| c2660 | 63 6f 6e 74 72 6f 6c 6c 65 64 3a 00 2a 2a 4f 75 74 70 75 74 20 46 69 6c 74 65 72 2a 2a 3a 20 60 | controlled:.**Output.Filter**:.` |
| c2680 | 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 6f 75 74 70 | `set.firewall.[ipv4.|.ipv6].outp |
| c26a0 | 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 2a 2a 4f 75 74 70 75 74 20 46 69 6c 74 65 72 | ut.filter....``..**Output.Filter |
| c26c0 | 2a 2a 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 6f 75 74 70 75 74 20 66 | **:.``set.firewall.ipv4.output.f |
| c26e0 | 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 20 52 75 6c 65 73 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 | ilter....``..Rules.defined.in.th |
| c2700 | 69 73 20 73 65 63 74 69 6f 6e 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 61 66 74 65 72 20 63 | is.section.are.processed.after.c |
| c2720 | 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 75 62 73 79 73 74 65 6d 2e 00 2a 2a | onnection.tracking.subsystem..** |
| c2740 | 4f 75 74 70 75 74 20 46 69 6c 74 65 72 2a 2a 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 | Output.Filter**:.``set.firewall. |
| c2760 | 69 70 76 36 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 20 52 75 6c 65 73 20 | ipv6.output.filter....``..Rules. |
| c2780 | 64 65 66 69 6e 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 61 72 65 20 70 72 6f 63 | defined.in.this.section.are.proc |
| c27a0 | 65 73 73 65 64 20 61 66 74 65 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 | essed.after.connection.tracking. |
| c27c0 | 73 75 62 73 79 73 74 65 6d 2e 00 2a 2a 4f 75 74 70 75 74 20 50 72 65 72 6f 75 74 69 6e 67 2a 2a | subsystem..**Output.Prerouting** |
| c27e0 | 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 6f | :.``set.firewall.[ipv4.|.ipv6].o |
| c2800 | 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 20 41 73 20 64 65 73 63 72 69 62 65 64 | utput.filter....``..As.described |
| c2820 | 20 69 6e 20 2a 2a 50 72 65 72 6f 75 74 69 6e 67 2a 2a 2c 20 72 75 6c 65 73 20 64 65 66 69 6e 65 | .in.**Prerouting**,.rules.define |
| c2840 | 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 | d.in.this.section.are.processed. |
| c2860 | 62 65 66 6f 72 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 75 62 73 79 | before.connection.tracking.subsy |
| c2880 | 73 74 65 6d 2e 00 2a 2a 4f 75 74 70 75 74 20 50 72 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 60 60 73 | stem..**Output.Prerouting**:.``s |
| c28a0 | 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 6f 75 74 70 75 74 20 72 61 77 20 2e 2e 2e 60 | et.firewall.ipv4.output.raw....` |
| c28c0 | 60 2e 20 41 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 2a 2a 50 72 65 72 6f 75 74 69 6e 67 2a | `..As.described.in.**Prerouting* |
| c28e0 | 2a 2c 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e | *,.rules.defined.in.this.section |
| c2900 | 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 62 65 66 6f 72 65 20 63 6f 6e 6e 65 63 74 69 6f 6e | .are.processed.before.connection |
| c2920 | 20 74 72 61 63 6b 69 6e 67 20 73 75 62 73 79 73 74 65 6d 2e 00 2a 2a 4f 75 74 70 75 74 20 50 72 | .tracking.subsystem..**Output.Pr |
| c2940 | 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 | erouting**:.``set.firewall.ipv6. |
| c2960 | 6f 75 74 70 75 74 20 72 61 77 20 2e 2e 2e 60 60 2e 20 41 73 20 64 65 73 63 72 69 62 65 64 20 69 | output.raw....``..As.described.i |
| c2980 | 6e 20 2a 2a 50 72 65 72 6f 75 74 69 6e 67 2a 2a 2c 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 | n.**Prerouting**,.rules.defined. |
| c29a0 | 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 62 65 | in.this.section.are.processed.be |
| c29c0 | 66 6f 72 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 75 62 73 79 73 74 | fore.connection.tracking.subsyst |
| c29e0 | 65 6d 2e 00 2a 2a 4f 75 74 70 75 74 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 66 | em..**Output**:.stage.where.traf |
| c2a00 | 66 69 63 20 74 68 61 74 20 69 73 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 74 68 65 20 72 6f | fic.that.is.originated.by.the.ro |
| c2a20 | 75 74 65 72 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 | uter.itself.can.be.filtered.and. |
| c2a40 | 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 42 61 72 65 20 69 6e 20 6d 69 6e 64 20 74 68 61 74 20 74 68 | controlled..Bare.in.mind.that.th |
| c2a60 | 69 73 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 61 20 6e 65 77 20 63 6f 6e 6e 65 63 74 69 | is.traffic.can.be.a.new.connecti |
| c2a80 | 6f 6e 20 6f 72 69 67 69 6e 74 65 64 20 62 79 20 61 20 69 6e 74 65 72 6e 61 6c 20 70 72 6f 63 65 | on.originted.by.a.internal.proce |
| c2aa0 | 73 73 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 56 79 4f 53 20 72 6f 75 74 65 72 2c 20 73 75 63 68 20 | ss.running.on.VyOS.router,.such. |
| c2ac0 | 61 73 20 4e 54 50 2c 20 6f 72 20 63 61 6e 20 62 65 20 61 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 | as.NTP,.or.can.be.a.response.to. |
| c2ae0 | 74 72 61 66 66 69 63 20 72 65 63 65 69 76 65 64 20 65 78 74 65 72 6e 61 6c 79 20 74 68 72 6f 75 | traffic.received.externaly.throu |
| c2b00 | 67 68 20 2a 2a 69 6e 70 75 74 74 2a 2a 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 20 72 65 73 70 6f | gh.**inputt**.(for.example.respo |
| c2b20 | 6e 73 65 20 74 6f 20 61 6e 20 73 73 68 20 6c 6f 67 69 6e 20 61 74 74 65 6d 70 74 20 74 6f 20 74 | nse.to.an.ssh.login.attempt.to.t |
| c2b40 | 68 65 20 72 6f 75 74 65 72 29 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 69 70 76 34 20 61 | he.router)..This.includes.ipv4.a |
| c2b60 | 6e 64 20 69 70 76 36 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 64 65 66 69 6e 65 64 | nd.ipv6.filtering.rules,.defined |
| c2b80 | 20 69 6e 3a 00 2a 2a 4f 75 74 70 75 74 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 | .in:.**Output**:.stage.where.tra |
| c2ba0 | 66 66 69 63 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 65 73 20 66 72 6f 6d 20 74 68 65 20 72 6f | ffic.that.originates.from.the.ro |
| c2bc0 | 75 74 65 72 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 | uter.itself.can.be.filtered.and. |
| c2be0 | 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 42 65 61 72 20 69 6e 20 6d 69 6e 64 20 74 68 61 74 20 74 68 | controlled..Bear.in.mind.that.th |
| c2c00 | 69 73 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 61 20 6e 65 77 20 63 6f 6e 6e 65 63 74 69 | is.traffic.can.be.a.new.connecti |
| c2c20 | 6f 6e 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 61 20 69 6e 74 65 72 6e 61 6c 20 70 72 6f 63 | on.originated.by.a.internal.proc |
| c2c40 | 65 73 73 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 56 79 4f 53 20 72 6f 75 74 65 72 2c 20 73 75 63 68 | ess.running.on.VyOS.router,.such |
| c2c60 | 20 61 73 20 4e 54 50 2c 20 6f 72 20 61 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 74 72 61 66 66 69 | .as.NTP,.or.a.response.to.traffi |
| c2c80 | 63 20 72 65 63 65 69 76 65 64 20 65 78 74 65 72 6e 61 6c 6c 79 20 74 68 72 6f 75 67 68 20 2a 2a | c.received.externally.through.** |
| c2ca0 | 69 6e 70 75 74 2a 2a 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 20 72 65 73 70 6f 6e 73 65 20 74 6f | input**.(for.example.response.to |
| c2cc0 | 20 61 6e 20 73 73 68 20 6c 6f 67 69 6e 20 61 74 74 65 6d 70 74 20 74 6f 20 74 68 65 20 72 6f 75 | .an.ssh.login.attempt.to.the.rou |
| c2ce0 | 74 65 72 29 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 69 70 76 34 20 61 6e 64 20 69 70 76 | ter)..This.includes.ipv4.and.ipv |
| c2d00 | 36 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 64 65 66 69 6e 65 64 20 69 6e 3a 00 2a | 6.filtering.rules,.defined.in:.* |
| c2d20 | 2a 4f 75 74 70 75 74 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 74 | *Output**:.stage.where.traffic.t |
| c2d40 | 68 61 74 20 6f 72 69 67 69 6e 61 74 65 73 20 66 72 6f 6d 20 74 68 65 20 72 6f 75 74 65 72 20 69 | hat.originates.from.the.router.i |
| c2d60 | 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f | tself.can.be.filtered.and.contro |
| c2d80 | 6c 6c 65 64 2e 20 42 65 61 72 20 69 6e 20 6d 69 6e 64 20 74 68 61 74 20 74 68 69 73 20 74 72 61 | lled..Bear.in.mind.that.this.tra |
| c2da0 | 66 66 69 63 20 63 61 6e 20 62 65 20 61 20 6e 65 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 72 69 | ffic.can.be.a.new.connection.ori |
| c2dc0 | 67 69 6e 61 74 65 64 20 62 79 20 61 20 69 6e 74 65 72 6e 61 6c 20 70 72 6f 63 65 73 73 20 72 75 | ginated.by.a.internal.process.ru |
| c2de0 | 6e 6e 69 6e 67 20 6f 6e 20 56 79 4f 53 20 72 6f 75 74 65 72 2c 20 73 75 63 68 20 61 73 20 4e 54 | nning.on.VyOS.router,.such.as.NT |
| c2e00 | 50 2c 20 6f 72 20 61 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 74 72 61 66 66 69 63 20 72 65 63 65 | P,.or.a.response.to.traffic.rece |
| c2e20 | 69 76 65 64 20 65 78 74 65 72 6e 61 6c 6c 79 20 74 68 72 6f 75 67 68 20 2a 2a 69 6e 70 75 74 2a | ived.externally.through.**input* |
| c2e40 | 2a 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 61 6e 20 73 73 | *.(for.example.response.to.an.ss |
| c2e60 | 68 20 6c 6f 67 69 6e 20 61 74 74 65 6d 70 74 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 29 2e 20 | h.login.attempt.to.the.router).. |
| c2e80 | 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 69 70 76 34 20 61 6e 64 20 69 70 76 36 20 72 75 6c 65 | This.includes.ipv4.and.ipv6.rule |
| c2ea0 | 73 2c 20 61 6e 64 20 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 73 65 63 74 69 6f 6e 73 20 61 72 | s,.and.two.different.sections.ar |
| c2ec0 | 65 20 70 72 65 73 65 6e 74 3a 00 2a 2a 4f 75 74 70 75 74 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 | e.present:.**Output**:.stage.whe |
| c2ee0 | 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 65 73 20 66 72 6f 6d 20 | re.traffic.that.originates.from. |
| c2f00 | 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 | the.router.itself.can.be.filtere |
| c2f20 | 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 42 65 61 72 20 69 6e 20 6d 69 6e 64 20 74 | d.and.controlled..Bear.in.mind.t |
| c2f40 | 68 61 74 20 74 68 69 73 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 61 20 6e 65 77 20 63 6f | hat.this.traffic.can.be.a.new.co |
| c2f60 | 6e 6e 65 63 74 69 6f 6e 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 61 20 69 6e 74 65 72 6e 61 | nnection.originated.by.a.interna |
| c2f80 | 6c 20 70 72 6f 63 65 73 73 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 56 79 4f 53 20 72 6f 75 74 65 72 | l.process.running.on.VyOS.router |
| c2fa0 | 2c 20 73 75 63 68 20 61 73 20 4e 54 50 2c 20 6f 72 20 61 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 | ,.such.as.NTP,.or.a.response.to. |
| c2fc0 | 74 72 61 66 66 69 63 20 72 65 63 65 69 76 65 64 20 65 78 74 65 72 6e 61 6c 79 20 74 68 72 6f 75 | traffic.received.externaly.throu |
| c2fe0 | 67 68 20 2a 2a 69 6e 70 75 74 2a 2a 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 20 72 65 73 70 6f 6e | gh.**input**.(for.example.respon |
| c3000 | 73 65 20 74 6f 20 61 6e 20 73 73 68 20 6c 6f 67 69 6e 20 61 74 74 65 6d 70 74 20 74 6f 20 74 68 | se.to.an.ssh.login.attempt.to.th |
| c3020 | 65 20 72 6f 75 74 65 72 29 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 69 70 76 34 20 61 6e | e.router)..This.includes.ipv4.an |
| c3040 | 64 20 69 70 76 36 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 64 65 66 69 6e 65 64 20 | d.ipv6.filtering.rules,.defined. |
| c3060 | 69 6e 3a 00 2a 2a 4f 75 74 70 75 74 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 66 | in:.**Output**:.stage.where.traf |
| c3080 | 66 69 63 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 65 73 20 66 72 6f 6d 20 74 68 65 20 72 6f 75 | fic.that.originates.from.the.rou |
| c30a0 | 74 65 72 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 | ter.itself.can.be.filtered.and.c |
| c30c0 | 6f 6e 74 72 6f 6c 6c 65 64 2e 20 42 65 61 72 20 69 6e 20 6d 69 6e 64 20 74 68 61 74 20 74 68 69 | ontrolled..Bear.in.mind.that.thi |
| c30e0 | 73 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 61 20 6e 65 77 20 63 6f 6e 6e 65 63 74 69 6f | s.traffic.can.be.a.new.connectio |
| c3100 | 6e 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 61 20 69 6e 74 65 72 6e 61 6c 20 70 72 6f 63 65 | n.originated.by.a.internal.proce |
| c3120 | 73 73 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 56 79 4f 53 20 72 6f 75 74 65 72 2c 20 73 75 63 68 20 | ss.running.on.VyOS.router,.such. |
| c3140 | 61 73 20 4e 54 50 2c 20 6f 72 20 61 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 74 72 61 66 66 69 63 | as.NTP,.or.a.response.to.traffic |
| c3160 | 20 72 65 63 65 69 76 65 64 20 65 78 74 65 72 6e 61 6c 79 20 74 68 72 6f 75 67 68 20 2a 2a 69 6e | .received.externaly.through.**in |
| c3180 | 70 75 74 74 2a 2a 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 | putt**.(for.example.response.to. |
| c31a0 | 61 6e 20 73 73 68 20 6c 6f 67 69 6e 20 61 74 74 65 6d 70 74 20 74 6f 20 74 68 65 20 72 6f 75 74 | an.ssh.login.attempt.to.the.rout |
| c31c0 | 65 72 29 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 69 70 76 34 20 61 6e 64 20 69 70 76 36 | er)..This.includes.ipv4.and.ipv6 |
| c31e0 | 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 64 65 66 69 6e 65 64 20 69 6e 3a 00 2a 2a | .filtering.rules,.defined.in:.** |
| c3200 | 4f 75 74 70 75 74 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 74 68 | Output**:.stage.where.traffic.th |
| c3220 | 61 74 20 6f 72 69 67 69 6e 61 74 65 73 20 66 72 6f 6d 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 | at.originates.from.the.router.it |
| c3240 | 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c | self.can.be.filtered.and.control |
| c3260 | 6c 65 64 2e 20 42 65 61 72 20 69 6e 20 6d 69 6e 64 20 74 68 61 74 20 74 68 69 73 20 74 72 61 66 | led..Bear.in.mind.that.this.traf |
| c3280 | 66 69 63 20 63 61 6e 20 62 65 20 61 20 6e 65 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 72 69 67 | fic.can.be.a.new.connection.orig |
| c32a0 | 69 6e 61 74 65 64 20 62 79 20 61 20 69 6e 74 65 72 6e 61 6c 20 70 72 6f 63 65 73 73 20 72 75 6e | inated.by.a.internal.process.run |
| c32c0 | 6e 69 6e 67 20 6f 6e 20 74 68 65 20 56 79 4f 53 20 72 6f 75 74 65 72 20 73 75 63 68 20 61 73 20 | ning.on.the.VyOS.router.such.as. |
| c32e0 | 4e 54 50 2c 20 6f 72 20 61 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 74 72 61 66 66 69 63 20 72 65 | NTP,.or.a.response.to.traffic.re |
| c3300 | 63 65 69 76 65 64 20 65 78 74 65 72 6e 61 6c 6c 79 20 74 68 72 6f 75 67 68 20 2a 2a 69 6e 70 75 | ceived.externally.through.**inpu |
| c3320 | 74 2a 2a 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 61 6e 20 | t**.(for.example.response.to.an. |
| c3340 | 73 73 68 20 6c 6f 67 69 6e 20 61 74 74 65 6d 70 74 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 29 | ssh.login.attempt.to.the.router) |
| c3360 | 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 69 70 76 34 20 61 6e 64 20 69 70 76 36 20 72 75 | ..This.includes.ipv4.and.ipv6.ru |
| c3380 | 6c 65 73 2c 20 61 6e 64 20 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 73 65 63 74 69 6f 6e 73 20 | les,.and.two.different.sections. |
| c33a0 | 61 72 65 20 70 72 65 73 65 6e 74 3a 00 2a 2a 50 65 65 72 20 61 64 64 72 65 73 73 2a 2a 00 2a 2a | are.present:.**Peer.address**.** |
| c33c0 | 50 65 72 66 6f 72 6d 61 6e 63 65 20 4f 76 65 72 68 65 61 64 73 2a 2a 3a 20 54 68 65 20 74 72 61 | Performance.Overheads**:.The.tra |
| c33e0 | 6e 73 6c 61 74 69 6f 6e 20 70 72 6f 63 65 73 73 20 63 61 6e 20 69 6e 74 72 6f 64 75 63 65 20 6c | nslation.process.can.introduce.l |
| c3400 | 61 74 65 6e 63 79 20 61 6e 64 20 70 6f 74 65 6e 74 69 61 6c 20 70 65 72 66 6f 72 6d 61 6e 63 65 | atency.and.potential.performance |
| c3420 | 20 62 6f 74 74 6c 65 6e 65 63 6b 73 2c 20 65 73 70 65 63 69 61 6c 6c 79 20 75 6e 64 65 72 20 68 | .bottlenecks,.especially.under.h |
| c3440 | 69 67 68 20 6c 6f 61 64 2e 00 2a 2a 50 6f 6c 69 63 79 20 52 6f 75 74 65 2a 2a 3a 20 72 75 6c 65 | igh.load..**Policy.Route**:.rule |
| c3460 | 73 20 64 65 66 69 6e 65 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 70 6f 6c 69 63 79 20 5b 72 6f | s.defined.under.``set.policy.[ro |
| c3480 | 75 74 65 20 7c 20 72 6f 75 74 65 36 5d 20 2e 2e 2e 60 60 2e 00 2a 2a 50 6f 6c 69 63 79 20 64 65 | ute.|.route6]....``..**Policy.de |
| c34a0 | 66 69 6e 69 74 69 6f 6e 3a 2a 2a 00 2a 2a 50 6f 72 74 20 41 6c 6c 6f 63 61 74 69 6f 6e 20 4c 69 | finition:**.**Port.Allocation.Li |
| c34c0 | 6d 69 74 73 2a 2a 3a 20 45 61 63 68 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 20 68 | mits**:.Each.public.IP.address.h |
| c34e0 | 61 73 20 61 20 6c 69 6d 69 74 65 64 20 6e 75 6d 62 65 72 20 6f 66 20 70 6f 72 74 73 2c 20 77 68 | as.a.limited.number.of.ports,.wh |
| c3500 | 69 63 68 20 63 61 6e 20 62 65 20 65 78 68 61 75 73 74 65 64 2c 20 61 66 66 65 63 74 69 6e 67 20 | ich.can.be.exhausted,.affecting. |
| c3520 | 74 68 65 20 61 62 69 6c 69 74 79 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 6e 65 77 20 63 6f 6e | the.ability.to.establish.new.con |
| c3540 | 6e 65 63 74 69 6f 6e 73 2e 00 2a 2a 50 6f 72 74 20 43 6f 6e 74 72 6f 6c 20 50 72 6f 74 6f 63 6f | nections..**Port.Control.Protoco |
| c3560 | 6c 2a 2a 3a 20 50 43 50 20 69 73 20 6e 6f 74 20 69 6d 70 6c 65 6d 65 6e 74 65 64 2e 00 2a 2a 50 | l**:.PCP.is.not.implemented..**P |
| c3580 | 6f 73 74 72 6f 75 74 69 6e 67 2a 2a 3a 20 61 73 20 69 6e 20 2a 2a 50 72 65 72 6f 75 74 69 6e 67 | ostrouting**:.as.in.**Prerouting |
| c35a0 | 2a 2a 2c 20 73 65 76 65 72 61 6c 20 61 63 74 69 6f 6e 73 20 64 65 66 69 6e 65 64 20 69 6e 20 64 | **,.several.actions.defined.in.d |
| c35c0 | 69 66 66 65 72 65 6e 74 20 70 61 72 74 73 20 6f 66 20 56 79 4f 53 20 63 6f 6e 66 69 67 75 72 61 | ifferent.parts.of.VyOS.configura |
| c35e0 | 74 69 6f 6e 20 61 72 65 20 70 65 72 66 6f 72 6d 65 64 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 | tion.are.performed.in.this.stage |
| c3600 | 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 3a 00 2a 2a 50 72 65 72 6f 75 74 69 6e 67 20 28 42 | ..This.includes:.**Prerouting.(B |
| c3620 | 72 69 64 67 65 29 2a 2a 3a 20 61 6c 6c 20 70 61 63 6b 65 74 73 20 74 68 61 74 20 61 72 65 20 72 | ridge)**:.all.packets.that.are.r |
| c3640 | 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 62 72 69 64 67 65 20 61 72 65 20 70 72 6f 63 65 73 | eceived.by.the.bridge.are.proces |
| c3660 | 73 65 64 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 2c 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 | sed.in.this.stage,.regardless.of |
| c3680 | 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 2e 20 | .the.destination.of.the.packet.. |
| c36a0 | 46 69 72 73 74 20 66 69 6c 74 65 72 73 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 68 65 72 | First.filters.can.be.applied.her |
| c36c0 | 65 2c 20 61 6e 64 2f 6f 72 20 61 6c 73 6f 20 63 6f 6e 66 69 67 75 72 65 20 72 75 6c 65 73 20 66 | e,.and/or.also.configure.rules.f |
| c36e0 | 6f 72 20 69 67 6e 6f 72 69 6e 67 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 | or.ignoring.connection.tracking. |
| c3700 | 73 79 73 74 65 6d 2c 20 61 6e 64 20 61 6c 73 6f 20 61 70 70 6c 79 20 70 6f 6c 69 63 79 20 72 6f | system,.and.also.apply.policy.ro |
| c3720 | 75 74 69 6e 67 20 75 73 69 6e 67 20 60 60 73 65 74 60 60 20 6f 70 74 69 6f 6e 20 77 68 69 6c 65 | uting.using.``set``.option.while |
| c3740 | 20 64 65 66 69 6e 69 6e 67 20 74 68 65 20 72 75 6c 65 2e 20 54 68 65 20 72 65 6c 65 76 61 6e 74 | .defining.the.rule..The.relevant |
| c3760 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 61 63 74 73 20 69 6e 3a 00 2a 2a 50 | .configuration.that.acts.in:.**P |
| c3780 | 72 65 72 6f 75 74 69 6e 67 20 28 42 72 69 64 67 65 29 2a 2a 3a 20 61 6c 6c 20 70 61 63 6b 65 74 | rerouting.(Bridge)**:.all.packet |
| c37a0 | 73 20 74 68 61 74 20 61 72 65 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 62 72 69 64 67 | s.that.are.received.by.the.bridg |
| c37c0 | 65 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 2c 20 72 | e.are.processed.in.this.stage,.r |
| c37e0 | 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6f 66 20 | egardless.of.the.destination.of. |
| c3800 | 74 68 65 20 70 61 63 6b 65 74 2e 20 46 69 72 73 74 20 66 69 6c 74 65 72 73 20 63 61 6e 20 62 65 | the.packet..First.filters.can.be |
| c3820 | 20 61 70 70 6c 69 65 64 20 68 65 72 65 2c 20 61 6e 64 2f 6f 72 20 61 6c 73 6f 20 63 6f 6e 66 69 | .applied.here,.and/or.also.confi |
| c3840 | 67 75 72 65 20 72 75 6c 65 73 20 66 6f 72 20 69 67 6e 6f 72 69 6e 67 20 63 6f 6e 6e 65 63 74 69 | gure.rules.for.ignoring.connecti |
| c3860 | 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 79 73 74 65 6d 2e 20 54 68 65 20 72 65 6c 65 76 61 6e 74 | on.tracking.system..The.relevant |
| c3880 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 61 63 74 73 20 69 6e 3a 00 2a 2a 50 | .configuration.that.acts.in:.**P |
| c38a0 | 72 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 41 6c 6c 20 70 61 63 6b 65 74 73 20 74 68 61 74 20 61 72 | rerouting**:.All.packets.that.ar |
| c38c0 | 65 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 61 72 65 20 70 72 6f | e.received.by.the.router.are.pro |
| c38e0 | 63 65 73 73 65 64 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 2c 20 72 65 67 61 72 64 6c 65 73 73 | cessed.in.this.stage,.regardless |
| c3900 | 20 6f 66 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 70 61 63 6b 65 | .of.the.destination.of.the.packe |
| c3920 | 74 2e 20 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 76 79 6f 73 2d 31 2e 35 2d 72 6f 6c 6c 69 6e | t..Starting.from.vyos-1.5-rollin |
| c3940 | 67 2d 32 30 32 34 30 36 31 32 30 30 32 30 2c 20 61 20 6e 65 77 20 73 65 63 74 69 6f 6e 20 77 61 | g-202406120020,.a.new.section.wa |
| c3960 | 73 20 61 64 64 65 64 20 74 6f 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | s.added.to.firewall.configuratio |
| c3980 | 6e 2e 20 54 68 65 72 65 20 61 72 65 20 73 65 76 65 72 61 6c 20 61 63 74 69 6f 6e 73 20 74 68 61 | n..There.are.several.actions.tha |
| c39a0 | 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 2c 20 61 6e 64 | t.can.be.done.in.this.stage,.and |
| c39c0 | 20 63 75 72 72 65 6e 74 6c 79 20 74 68 65 73 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 61 6c 73 | .currently.these.actions.are.als |
| c39e0 | 6f 20 64 65 66 69 6e 65 64 20 69 6e 20 64 69 66 66 65 72 65 6e 74 20 70 61 72 74 73 20 69 6e 20 | o.defined.in.different.parts.in. |
| c3a00 | 56 79 4f 53 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 4f 72 64 65 72 20 69 73 20 69 6d 70 | VyOS.configuration..Order.is.imp |
| c3a20 | 6f 72 74 61 6e 74 2c 20 61 6e 64 20 72 65 6c 65 76 61 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 | ortant,.and.relevant.configurati |
| c3a40 | 6f 6e 20 74 68 61 74 20 61 63 74 73 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 20 61 72 65 3a 00 | on.that.acts.in.this.stage.are:. |
| c3a60 | 2a 2a 50 72 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 41 6c 6c 20 70 61 63 6b 65 74 73 20 74 68 61 74 | **Prerouting**:.All.packets.that |
| c3a80 | 20 61 72 65 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 61 72 65 20 | .are.received.by.the.router.are. |
| c3aa0 | 70 72 6f 63 65 73 73 65 64 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 2c 20 72 65 67 61 72 64 6c | processed.in.this.stage,.regardl |
| c3ac0 | 65 73 73 20 6f 66 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 70 61 | ess.of.the.destination.of.the.pa |
| c3ae0 | 63 6b 65 74 2e 20 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 76 79 6f 73 2d 31 2e 35 2d 72 6f 6c | cket..Starting.from.vyos-1.5-rol |
| c3b00 | 6c 69 6e 67 2d 32 30 32 34 30 36 31 32 30 30 32 30 2c 20 61 20 6e 65 77 20 73 65 63 74 69 6f 6e | ling-202406120020,.a.new.section |
| c3b20 | 20 77 61 73 20 61 64 64 65 64 20 74 6f 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 | .was.added.to.the.firewall.confi |
| c3b40 | 67 75 72 61 74 69 6f 6e 2e 20 54 68 65 72 65 20 61 72 65 20 73 65 76 65 72 61 6c 20 61 63 74 69 | guration..There.are.several.acti |
| c3b60 | 6f 6e 73 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 69 6e 20 74 68 69 73 20 73 74 61 | ons.that.can.be.done.in.this.sta |
| c3b80 | 67 65 2c 20 61 6e 64 20 63 75 72 72 65 6e 74 6c 79 20 74 68 65 73 65 20 61 63 74 69 6f 6e 73 20 | ge,.and.currently.these.actions. |
| c3ba0 | 61 72 65 20 61 6c 73 6f 20 64 65 66 69 6e 65 64 20 69 6e 20 64 69 66 66 65 72 65 6e 74 20 70 61 | are.also.defined.in.different.pa |
| c3bc0 | 72 74 73 20 6f 66 20 74 68 65 20 56 79 4f 53 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 4f | rts.of.the.VyOS.configuration..O |
| c3be0 | 72 64 65 72 20 69 73 20 69 6d 70 6f 72 74 61 6e 74 2c 20 61 6e 64 20 74 68 65 20 72 65 6c 65 76 | rder.is.important,.and.the.relev |
| c3c00 | 61 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 61 63 74 73 20 69 6e 20 74 | ant.configuration.that.acts.in.t |
| c3c20 | 68 69 73 20 73 74 61 67 65 20 61 72 65 3a 00 2a 2a 50 72 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 73 | his.stage.are:.**Prerouting**:.s |
| c3c40 | 65 76 65 72 61 6c 20 61 63 74 69 6f 6e 73 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 69 6e 20 74 68 | everal.actions.can.be.done.in.th |
| c3c60 | 69 73 20 73 74 61 67 65 2c 20 61 6e 64 20 63 75 72 72 65 6e 74 6c 79 20 74 68 65 73 65 20 61 63 | is.stage,.and.currently.these.ac |
| c3c80 | 74 69 6f 6e 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 69 6e 20 64 69 66 66 65 72 65 6e 74 20 70 | tions.are.defined.in.different.p |
| c3ca0 | 61 72 74 73 20 69 6e 20 56 79 4f 53 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 4f 72 64 65 | arts.in.VyOS.configuration..Orde |
| c3cc0 | 72 20 69 73 20 69 6d 70 6f 72 74 61 6e 74 2c 20 61 6e 64 20 61 6c 6c 20 74 68 65 73 65 20 61 63 | r.is.important,.and.all.these.ac |
| c3ce0 | 74 69 6f 6e 73 20 61 72 65 20 70 65 72 66 6f 72 6d 65 64 20 62 65 66 6f 72 65 20 61 6e 79 20 61 | tions.are.performed.before.any.a |
| c3d00 | 63 74 69 6f 6e 73 20 64 65 66 69 6e 65 64 20 75 6e 64 65 72 20 60 60 66 69 72 65 77 61 6c 6c 60 | ctions.defined.under.``firewall` |
| c3d20 | 60 20 73 65 63 74 69 6f 6e 2e 20 52 65 6c 65 76 61 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | `.section..Relevant.configuratio |
| c3d40 | 6e 20 74 68 61 74 20 61 63 74 73 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 20 61 72 65 3a 00 2a | n.that.acts.in.this.stage.are:.* |
| c3d60 | 2a 50 72 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 73 65 76 65 72 61 6c 20 61 63 74 69 6f 6e 73 20 63 | *Prerouting**:.several.actions.c |
| c3d80 | 61 6e 20 62 65 20 64 6f 6e 65 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 2c 20 61 6e 64 20 63 75 | an.be.done.in.this.stage,.and.cu |
| c3da0 | 72 72 65 6e 74 6c 79 20 74 68 65 73 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 64 65 66 69 6e 65 | rrently.these.actions.are.define |
| c3dc0 | 64 20 69 6e 20 64 69 66 66 65 72 65 6e 74 20 70 61 72 74 73 20 69 6e 20 76 79 6f 73 20 63 6f 6e | d.in.different.parts.in.vyos.con |
| c3de0 | 66 69 67 75 72 61 74 69 6f 6e 2e 20 4f 72 64 65 72 20 69 73 20 69 6d 70 6f 72 74 61 6e 74 2c 20 | figuration..Order.is.important,. |
| c3e00 | 61 6e 64 20 61 6c 6c 20 74 68 65 73 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 70 65 72 66 6f 72 | and.all.these.actions.are.perfor |
| c3e20 | 6d 65 64 20 62 65 66 6f 72 65 20 61 6e 79 20 61 63 74 69 6f 6e 73 20 64 65 66 69 6e 65 20 75 6e | med.before.any.actions.define.un |
| c3e40 | 64 65 72 20 60 60 66 69 72 65 77 61 6c 6c 60 60 20 73 65 63 74 69 6f 6e 2e 20 52 65 6c 65 76 61 | der.``firewall``.section..Releva |
| c3e60 | 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 61 63 74 73 20 69 6e 20 74 68 | nt.configuration.that.acts.in.th |
| c3e80 | 69 73 20 73 74 61 67 65 20 61 72 65 3a 00 2a 2a 50 72 69 6d 61 72 79 2a 2a 00 2a 2a 51 75 65 75 | is.stage.are:.**Primary**.**Queu |
| c3ea0 | 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 2a 2a 20 46 61 69 72 2f 46 6c 6f 77 20 51 75 65 75 | eing.discipline**.Fair/Flow.Queu |
| c3ec0 | 65 20 43 6f 44 65 6c 2e 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a | e.CoDel..**Queueing.discipline:* |
| c3ee0 | 2a 20 44 65 66 69 63 69 74 20 52 6f 75 6e 64 20 52 6f 62 69 6e 2e 00 2a 2a 51 75 65 75 65 69 6e | *.Deficit.Round.Robin..**Queuein |
| c3f00 | 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 44 65 66 69 63 69 74 20 6d 6f 64 65 2e 00 2a 2a | g.discipline:**.Deficit.mode..** |
| c3f20 | 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 47 65 6e 65 72 61 6c 69 7a | Queueing.discipline:**.Generaliz |
| c3f40 | 65 64 20 52 61 6e 64 6f 6d 20 45 61 72 6c 79 20 44 72 6f 70 2e 00 2a 2a 51 75 65 75 65 69 6e 67 | ed.Random.Early.Drop..**Queueing |
| c3f60 | 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 48 69 65 72 61 72 63 68 69 63 61 6c 20 54 6f 6b 65 | .discipline:**.Hierarchical.Toke |
| c3f80 | 6e 20 42 75 63 6b 65 74 2e 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 3a | n.Bucket..**Queueing.discipline: |
| c3fa0 | 2a 2a 20 49 6e 67 72 65 73 73 20 70 6f 6c 69 63 65 72 2e 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 | **.Ingress.policer..**Queueing.d |
| c3fc0 | 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 50 46 49 46 4f 20 28 50 61 63 6b 65 74 20 46 69 72 73 74 | iscipline:**.PFIFO.(Packet.First |
| c3fe0 | 20 49 6e 20 46 69 72 73 74 20 4f 75 74 29 2e 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 | .In.First.Out)..**Queueing.disci |
| c4000 | 70 6c 69 6e 65 3a 2a 2a 20 50 52 49 4f 2e 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 | pline:**.PRIO..**Queueing.discip |
| c4020 | 6c 69 6e 65 3a 2a 2a 20 53 46 51 20 28 53 74 6f 63 68 61 73 74 69 63 20 46 61 69 72 6e 65 73 73 | line:**.SFQ.(Stochastic.Fairness |
| c4040 | 20 51 75 65 75 69 6e 67 29 2e 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 | .Queuing)..**Queueing.discipline |
| c4060 | 3a 2a 2a 20 54 6f 63 6b 65 6e 20 42 75 63 6b 65 74 20 46 69 6c 74 65 72 2e 00 2a 2a 51 75 65 75 | :**.Tocken.Bucket.Filter..**Queu |
| c4080 | 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 54 6f 6b 65 6e 20 42 75 63 6b 65 74 20 | eing.discipline:**.Token.Bucket. |
| c40a0 | 46 69 6c 74 65 72 2e 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a | Filter..**Queueing.discipline:** |
| c40c0 | 20 6e 65 74 65 6d 20 28 4e 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 29 20 2b 20 54 42 46 20 | .netem.(Network.Emulator).+.TBF. |
| c40e0 | 28 54 6f 6b 65 6e 20 42 75 63 6b 65 74 20 46 69 6c 74 65 72 29 2e 00 2a 2a 52 31 20 4d 41 43 73 | (Token.Bucket.Filter)..**R1.MACs |
| c4100 | 65 63 30 31 2a 2a 00 2a 2a 52 31 20 53 74 61 74 69 63 20 4b 65 79 2a 2a 00 2a 2a 52 31 2a 2a 00 | ec01**.**R1.Static.Key**.**R1**. |
| c4120 | 2a 2a 52 32 20 4d 41 43 73 65 63 30 32 2a 2a 00 2a 2a 52 32 20 53 74 61 74 69 63 20 4b 65 79 2a | **R2.MACsec02**.**R2.Static.Key* |
| c4140 | 2a 00 2a 2a 52 32 2a 2a 00 2a 2a 52 41 44 49 55 53 20 62 61 73 65 64 20 49 50 20 70 6f 6f 6c 73 | *.**R2**.**RADIUS.based.IP.pools |
| c4160 | 20 28 46 72 61 6d 65 64 2d 49 50 2d 41 64 64 72 65 73 73 29 2a 2a 00 2a 2a 52 41 44 49 55 53 20 | .(Framed-IP-Address)**.**RADIUS. |
| c4180 | 73 65 73 73 69 6f 6e 73 20 6d 61 6e 61 67 65 6d 65 6e 74 20 44 4d 2f 43 6f 41 2a 2a 00 2a 2a 52 | sessions.management.DM/CoA**.**R |
| c41a0 | 49 47 48 54 2a 2a 00 2a 2a 52 49 47 48 54 3a 2a 2a 20 2a 20 57 41 4e 20 69 6e 74 65 72 66 61 63 | IGHT**.**RIGHT:**.*.WAN.interfac |
| c41c0 | 65 20 6f 6e 20 60 65 74 68 30 2e 32 30 32 60 20 2a 20 60 65 74 68 30 2e 32 30 31 60 20 69 6e 74 | e.on.`eth0.202`.*.`eth0.201`.int |
| c41e0 | 65 72 66 61 63 65 20 49 50 3a 20 60 31 37 32 2e 31 38 2e 32 30 32 2e 31 30 2f 32 34 60 20 2a 20 | erface.IP:.`172.18.202.10/24`.*. |
| c4200 | 60 76 74 69 31 30 60 20 69 6e 74 65 72 66 61 63 65 20 49 50 3a 20 60 31 30 2e 30 2e 30 2e 33 2f | `vti10`.interface.IP:.`10.0.0.3/ |
| c4220 | 33 31 60 20 2a 20 60 64 75 6d 30 60 20 69 6e 74 65 72 66 61 63 65 20 49 50 3a 20 60 31 30 2e 30 | 31`.*.`dum0`.interface.IP:.`10.0 |
| c4240 | 2e 31 32 2e 31 2f 32 34 60 20 28 66 6f 72 20 74 65 73 74 69 6e 67 20 70 75 72 70 6f 73 65 73 29 | .12.1/24`.(for.testing.purposes) |
| c4260 | 00 2a 2a 52 6f 75 74 65 72 20 31 2a 2a 00 2a 2a 52 6f 75 74 65 72 20 32 2a 2a 00 2a 2a 52 6f 75 | .**Router.1**.**Router.2**.**Rou |
| c4280 | 74 65 72 20 33 2a 2a 00 2a 2a 52 6f 75 74 65 72 2d 49 44 20 63 68 65 63 6b 2a 2a 00 2a 2a 52 6f | ter.3**.**Router-ID.check**.**Ro |
| c42a0 | 75 74 65 73 20 6c 65 61 72 6e 65 64 20 61 66 74 65 72 20 72 6f 75 74 69 6e 67 20 70 6f 6c 69 63 | utes.learned.after.routing.polic |
| c42c0 | 79 20 61 70 70 6c 69 65 64 3a 2a 2a 00 2a 2a 52 6f 75 74 65 73 20 6c 65 61 72 6e 65 64 20 62 65 | y.applied:**.**Routes.learned.be |
| c42e0 | 66 6f 72 65 20 72 6f 75 74 69 6e 67 20 70 6f 6c 69 63 79 20 61 70 70 6c 69 65 64 3a 2a 2a 00 2a | fore.routing.policy.applied:**.* |
| c4300 | 2a 53 57 31 2a 2a 00 2a 2a 53 57 32 2a 2a 00 2a 2a 53 63 61 6c 61 62 69 6c 69 74 79 2a 2a 3a 20 | *SW1**.**SW2**.**Scalability**:. |
| c4320 | 49 53 50 73 20 63 61 6e 20 73 75 70 70 6f 72 74 20 6d 6f 72 65 20 63 75 73 74 6f 6d 65 72 73 20 | ISPs.can.support.more.customers. |
| c4340 | 77 69 74 68 6f 75 74 20 6e 65 65 64 69 6e 67 20 61 20 70 72 6f 70 6f 72 74 69 6f 6e 61 6c 20 69 | without.needing.a.proportional.i |
| c4360 | 6e 63 72 65 61 73 65 20 69 6e 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 65 73 2e 00 | ncrease.in.public.IP.addresses.. |
| c4380 | 2a 2a 53 65 63 6f 6e 64 61 72 79 2a 2a 00 2a 2a 53 65 74 74 69 6e 67 20 75 70 20 49 50 53 65 63 | **Secondary**.**Setting.up.IPSec |
| c43a0 | 2a 2a 00 2a 2a 53 65 74 74 69 6e 67 20 75 70 20 74 68 65 20 47 52 45 20 74 75 6e 6e 65 6c 2a 2a | **.**Setting.up.the.GRE.tunnel** |
| c43c0 | 00 2a 2a 53 6f 75 72 63 65 20 4e 41 54 2a 2a 3a 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 75 | .**Source.NAT**:.rules.defined.u |
| c43e0 | 6e 64 65 72 20 60 60 73 65 74 20 5b 6e 61 74 20 7c 20 6e 61 74 36 36 5d 20 64 65 73 74 69 6e 61 | nder.``set.[nat.|.nat66].destina |
| c4400 | 74 69 6f 6e 2e 2e 2e 60 60 2e 00 2a 2a 53 70 69 6e 65 31 20 43 6f 6e 66 69 67 75 72 61 74 69 6f | tion...``..**Spine1.Configuratio |
| c4420 | 6e 3a 2a 2a 00 2a 2a 53 74 61 74 75 73 2a 2a 00 2a 2a 54 6f 20 73 65 65 20 74 68 65 20 72 65 64 | n:**.**Status**.**To.see.the.red |
| c4440 | 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 3a 2a 2a 00 2a 2a 54 6f 74 61 6c 20 50 6f 72 | istributed.routes:**.**Total.Por |
| c4460 | 74 73 20 41 76 61 69 6c 61 62 6c 65 2a 2a 3a 00 2a 2a 54 72 61 63 65 61 62 69 6c 69 74 79 20 49 | ts.Available**:.**Traceability.I |
| c4480 | 73 73 75 65 73 2a 2a 3a 20 53 69 6e 63 65 20 6d 75 6c 74 69 70 6c 65 20 75 73 65 72 73 20 73 68 | ssues**:.Since.multiple.users.sh |
| c44a0 | 61 72 65 20 74 68 65 20 73 61 6d 65 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 2c 20 | are.the.same.public.IP.address,. |
| c44c0 | 74 72 61 63 6b 69 6e 67 20 69 6e 64 69 76 69 64 75 61 6c 20 75 73 65 72 73 20 66 6f 72 20 73 65 | tracking.individual.users.for.se |
| c44e0 | 63 75 72 69 74 79 20 61 6e 64 20 6c 65 67 61 6c 20 70 75 72 70 6f 73 65 73 20 63 61 6e 20 62 65 | curity.and.legal.purposes.can.be |
| c4500 | 20 63 68 61 6c 6c 65 6e 67 69 6e 67 2e 00 2a 2a 54 77 6f 20 67 61 74 65 77 61 79 73 20 61 6e 64 | .challenging..**Two.gateways.and |
| c4520 | 20 64 69 66 66 65 72 65 6e 74 20 6d 65 74 72 69 63 73 3a 2a 2a 00 2a 2a 56 4c 41 4e 20 49 44 2a | .different.metrics:**.**VLAN.ID* |
| c4540 | 2a 00 2a 2a 56 79 4f 53 20 52 6f 75 74 65 72 3a 2a 2a 00 2a 2a 57 65 69 67 68 74 20 63 68 65 63 | *.**VyOS.Router:**.**Weight.chec |
| c4560 | 6b 2a 2a 00 2a 2a 61 64 64 72 65 73 73 2a 2a 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 | k**.**address**.can.be.specified |
| c4580 | 20 6d 75 6c 74 69 70 6c 65 20 74 69 6d 65 73 20 61 73 20 49 50 76 34 20 61 6e 64 2f 6f 72 20 49 | .multiple.times.as.IPv4.and/or.I |
| c45a0 | 50 76 36 20 61 64 64 72 65 73 73 2c 20 65 2e 67 2e 20 31 39 32 2e 30 2e 32 2e 31 2f 32 34 20 61 | Pv6.address,.e.g..192.0.2.1/24.a |
| c45c0 | 6e 64 2f 6f 72 20 32 30 30 31 3a 64 62 38 3a 3a 31 2f 36 34 00 2a 2a 61 64 64 72 65 73 73 2a 2a | nd/or.2001:db8::1/64.**address** |
| c45e0 | 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 6d 75 6c 74 69 70 6c 65 20 74 69 6d 65 73 | .can.be.specified.multiple.times |
| c4600 | 2c 20 65 2e 67 2e 20 31 39 32 2e 31 36 38 2e 31 30 30 2e 31 20 61 6e 64 2f 6f 72 20 31 39 32 2e | ,.e.g..192.168.100.1.and/or.192. |
| c4620 | 31 36 38 2e 31 30 30 2e 30 2f 32 34 00 2a 2a 61 6c 6c 6f 77 2a 2a 20 2d 20 4e 65 67 6f 74 69 61 | 168.100.0/24.**allow**.-.Negotia |
| c4640 | 74 65 20 49 50 76 34 20 6f 6e 6c 79 20 69 66 20 63 6c 69 65 6e 74 20 72 65 71 75 65 73 74 73 20 | te.IPv4.only.if.client.requests. |
| c4660 | 28 44 65 66 61 75 6c 74 20 76 61 6c 75 65 29 00 2a 2a 61 6c 6c 6f 77 2a 2a 20 2d 20 4e 65 67 6f | (Default.value).**allow**.-.Nego |
| c4680 | 74 69 61 74 65 20 49 50 76 36 20 6f 6e 6c 79 20 69 66 20 63 6c 69 65 6e 74 20 72 65 71 75 65 73 | tiate.IPv6.only.if.client.reques |
| c46a0 | 74 73 00 2a 2a 61 6c 6c 6f 77 2d 68 6f 73 74 2d 6e 65 74 77 6f 72 6b 73 2a 2a 20 63 61 6e 6e 6f | ts.**allow-host-networks**.canno |
| c46c0 | 74 20 62 65 20 75 73 65 64 20 77 69 74 68 20 2a 2a 6e 65 74 77 6f 72 6b 2a 2a 00 2a 2a 61 6c 77 | t.be.used.with.**network**.**alw |
| c46e0 | 61 79 73 2a 2a 3a 20 52 65 73 74 61 72 74 20 63 6f 6e 74 61 69 6e 65 72 73 20 77 68 65 6e 20 74 | ays**:.Restart.containers.when.t |
| c4700 | 68 65 79 20 65 78 69 74 2c 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 73 74 61 74 75 73 2c 20 | hey.exit,.regardless.of.status,. |
| c4720 | 72 65 74 72 79 69 6e 67 20 69 6e 64 65 66 69 6e 69 74 65 6c 79 00 2a 2a 61 70 70 65 6e 64 3a 2a | retrying.indefinitely.**append:* |
| c4740 | 2a 20 54 68 65 20 72 65 6c 61 79 20 61 67 65 6e 74 20 69 73 20 61 6c 6c 6f 77 65 64 20 74 6f 20 | *.The.relay.agent.is.allowed.to. |
| c4760 | 61 70 70 65 6e 64 20 69 74 73 20 6f 77 6e 20 72 65 6c 61 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | append.its.own.relay.information |
| c4780 | 20 74 6f 20 61 20 72 65 63 65 69 76 65 64 20 44 48 43 50 20 70 61 63 6b 65 74 2c 20 64 69 73 72 | .to.a.received.DHCP.packet,.disr |
| c47a0 | 65 67 61 72 64 69 6e 67 20 72 65 6c 61 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 6c 72 65 61 | egarding.relay.information.alrea |
| c47c0 | 64 79 20 70 72 65 73 65 6e 74 20 69 6e 20 74 68 65 20 70 61 63 6b 65 74 2e 00 2a 2a 61 70 70 6c | dy.present.in.the.packet..**appl |
| c47e0 | 69 63 61 74 69 6f 6e 2a 2a 3a 20 61 6e 61 6c 79 7a 65 73 20 72 65 63 65 69 76 65 64 20 66 6c 6f | ication**:.analyzes.received.flo |
| c4800 | 77 20 64 61 74 61 20 69 6e 20 74 68 65 20 63 6f 6e 74 65 78 74 20 6f 66 20 69 6e 74 72 75 73 69 | w.data.in.the.context.of.intrusi |
| c4820 | 6f 6e 20 64 65 74 65 63 74 69 6f 6e 20 6f 72 20 74 72 61 66 66 69 63 20 70 72 6f 66 69 6c 69 6e | on.detection.or.traffic.profilin |
| c4840 | 67 2c 20 66 6f 72 20 65 78 61 6d 70 6c 65 00 2a 2a 61 75 74 6f 2a 2a 20 e2 80 93 20 61 75 74 6f | g,.for.example.**auto**.....auto |
| c4860 | 6d 61 74 69 63 61 6c 6c 79 20 64 65 74 65 72 6d 69 6e 65 73 20 74 68 65 20 69 6e 74 65 72 66 61 | matically.determines.the.interfa |
| c4880 | 63 65 20 74 79 70 65 2e 20 2a 2a 77 69 72 65 64 2a 2a 20 e2 80 93 20 65 6e 61 62 6c 65 73 20 6f | ce.type..**wired**.....enables.o |
| c48a0 | 70 74 69 6d 69 73 61 74 69 6f 6e 73 20 66 6f 72 20 77 69 72 65 64 20 69 6e 74 65 72 66 61 63 65 | ptimisations.for.wired.interface |
| c48c0 | 73 2e 20 2a 2a 77 69 72 65 6c 65 73 73 2a 2a 20 e2 80 93 20 64 69 73 61 62 6c 65 73 20 61 20 6e | s..**wireless**.....disables.a.n |
| c48e0 | 75 6d 62 65 72 20 6f 66 20 6f 70 74 69 6d 69 73 61 74 69 6f 6e 73 20 74 68 61 74 20 61 72 65 20 | umber.of.optimisations.that.are. |
| c4900 | 6f 6e 6c 79 20 63 6f 72 72 65 63 74 20 6f 6e 20 77 69 72 65 64 20 69 6e 74 65 72 66 61 63 65 73 | only.correct.on.wired.interfaces |
| c4920 | 2e 20 53 70 65 63 69 66 79 69 6e 67 20 77 69 72 65 6c 65 73 73 20 69 73 20 61 6c 77 61 79 73 20 | ..Specifying.wireless.is.always. |
| c4940 | 63 6f 72 72 65 63 74 2c 20 62 75 74 20 6d 61 79 20 63 61 75 73 65 20 73 6c 6f 77 65 72 20 63 6f | correct,.but.may.cause.slower.co |
| c4960 | 6e 76 65 72 67 65 6e 63 65 20 61 6e 64 20 65 78 74 72 61 20 72 6f 75 74 69 6e 67 20 74 72 61 66 | nvergence.and.extra.routing.traf |
| c4980 | 66 69 63 2e 00 2a 2a 62 61 6e 2d 74 69 6d 65 2a 2a 20 61 6e 64 20 2a 2a 74 68 72 65 73 68 6f 6c | fic..**ban-time**.and.**threshol |
| c49a0 | 64 2a 2a 3a 20 74 68 65 73 65 20 76 61 6c 75 65 73 20 61 72 65 20 6b 65 70 74 20 76 65 72 79 20 | d**:.these.values.are.kept.very. |
| c49c0 | 6c 6f 77 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 65 61 73 69 6c 79 20 69 64 65 6e 74 69 66 79 20 | low.in.order.to.easily.identify. |
| c49e0 | 61 6e 64 20 67 65 6e 65 72 61 74 65 20 61 6e 64 20 61 74 74 61 63 6b 2e 00 2a 2a 62 72 6f 61 64 | and.generate.and.attack..**broad |
| c4a00 | 63 61 73 74 2a 2a 20 e2 80 93 20 62 72 6f 61 64 63 61 73 74 20 49 50 20 61 64 64 72 65 73 73 65 | cast**.....broadcast.IP.addresse |
| c4a20 | 73 20 64 69 73 74 72 69 62 75 74 69 6f 6e 2e 20 2a 2a 6e 6f 6e 2d 62 72 6f 61 64 63 61 73 74 2a | s.distribution..**non-broadcast* |
| c4a40 | 2a 20 e2 80 93 20 61 64 64 72 65 73 73 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 69 6e 20 4e 42 | *.....address.distribution.in.NB |
| c4a60 | 4d 41 20 6e 65 74 77 6f 72 6b 73 20 74 6f 70 6f 6c 6f 67 79 2e 20 2a 2a 70 6f 69 6e 74 2d 74 6f | MA.networks.topology..**point-to |
| c4a80 | 2d 6d 75 6c 74 69 70 6f 69 6e 74 2a 2a 20 e2 80 93 20 61 64 64 72 65 73 73 20 64 69 73 74 72 69 | -multipoint**.....address.distri |
| c4aa0 | 62 75 74 69 6f 6e 20 69 6e 20 70 6f 69 6e 74 2d 74 6f 2d 6d 75 6c 74 69 70 6f 69 6e 74 20 6e 65 | bution.in.point-to-multipoint.ne |
| c4ac0 | 74 77 6f 72 6b 73 2e 20 2a 2a 70 6f 69 6e 74 2d 74 6f 2d 70 6f 69 6e 74 2a 2a 20 e2 80 93 20 61 | tworks..**point-to-point**.....a |
| c4ae0 | 64 64 72 65 73 73 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 69 6e 20 70 6f 69 6e 74 2d 74 6f 2d | ddress.distribution.in.point-to- |
| c4b00 | 70 6f 69 6e 74 20 6e 65 74 77 6f 72 6b 73 2e 00 2a 2a 62 72 6f 61 64 63 61 73 74 2a 2a 20 e2 80 | point.networks..**broadcast**... |
| c4b20 | 93 20 62 72 6f 61 64 63 61 73 74 20 49 50 20 61 64 64 72 65 73 73 65 73 20 64 69 73 74 72 69 62 | ..broadcast.IP.addresses.distrib |
| c4b40 | 75 74 69 6f 6e 2e 20 2a 2a 70 6f 69 6e 74 2d 74 6f 2d 70 6f 69 6e 74 2a 2a 20 e2 80 93 20 61 64 | ution..**point-to-point**.....ad |
| c4b60 | 64 72 65 73 73 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 69 6e 20 70 6f 69 6e 74 2d 74 6f 2d 70 | dress.distribution.in.point-to-p |
| c4b80 | 6f 69 6e 74 20 6e 65 74 77 6f 72 6b 73 2e 00 2a 2a 63 61 6c 6c 69 6e 67 2d 73 69 64 2a 2a 20 2d | oint.networks..**calling-sid**.- |
| c4ba0 | 20 43 61 6c 63 75 6c 61 74 65 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 | .Calculate.interface.identifier. |
| c4bc0 | 66 72 6f 6d 20 63 61 6c 6c 69 6e 67 2d 73 74 61 74 69 6f 6e 2d 69 64 2e 00 2a 2a 63 69 73 63 6f | from.calling-station-id..**cisco |
| c4be0 | 2a 2a 20 e2 80 93 20 61 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 62 65 20 63 6f 6e 73 69 64 65 72 | **.....a.router.will.be.consider |
| c4c00 | 65 64 20 61 73 20 41 42 52 20 69 66 20 69 74 20 68 61 73 20 73 65 76 65 72 61 6c 20 63 6f 6e 66 | ed.as.ABR.if.it.has.several.conf |
| c4c20 | 69 67 75 72 65 64 20 6c 69 6e 6b 73 20 74 6f 20 74 68 65 20 6e 65 74 77 6f 72 6b 73 20 69 6e 20 | igured.links.to.the.networks.in. |
| c4c40 | 64 69 66 66 65 72 65 6e 74 20 61 72 65 61 73 20 6f 6e 65 20 6f 66 20 77 68 69 63 68 20 69 73 20 | different.areas.one.of.which.is. |
| c4c60 | 61 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 2e 20 4d 6f 72 65 6f 76 65 72 2c 20 74 68 65 20 6c | a.backbone.area..Moreover,.the.l |
| c4c80 | 69 6e 6b 20 74 6f 20 74 68 65 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 73 68 6f 75 6c 64 20 | ink.to.the.backbone.area.should. |
| c4ca0 | 62 65 20 61 63 74 69 76 65 20 28 77 6f 72 6b 69 6e 67 29 2e 20 2a 2a 69 62 6d 2a 2a 20 e2 80 93 | be.active.(working)..**ibm**.... |
| c4cc0 | 20 69 64 65 6e 74 69 63 61 6c 20 74 6f 20 22 63 69 73 63 6f 22 20 6d 6f 64 65 6c 20 62 75 74 20 | .identical.to."cisco".model.but. |
| c4ce0 | 69 6e 20 74 68 69 73 20 63 61 73 65 20 61 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 6c 69 6e | in.this.case.a.backbone.area.lin |
| c4d00 | 6b 20 6d 61 79 20 6e 6f 74 20 62 65 20 61 63 74 69 76 65 2e 20 2a 2a 73 74 61 6e 64 61 72 64 2a | k.may.not.be.active..**standard* |
| c4d20 | 2a 20 e2 80 93 20 72 6f 75 74 65 72 20 68 61 73 20 73 65 76 65 72 61 6c 20 61 63 74 69 76 65 20 | *.....router.has.several.active. |
| c4d40 | 6c 69 6e 6b 73 20 74 6f 20 64 69 66 66 65 72 65 6e 74 20 61 72 65 61 73 2e 20 2a 2a 73 68 6f 72 | links.to.different.areas..**shor |
| c4d60 | 74 63 75 74 2a 2a 20 e2 80 93 20 69 64 65 6e 74 69 63 61 6c 20 74 6f 20 22 73 74 61 6e 64 61 72 | tcut**.....identical.to."standar |
| c4d80 | 64 22 20 62 75 74 20 69 6e 20 74 68 69 73 20 6d 6f 64 65 6c 20 61 20 72 6f 75 74 65 72 20 69 73 | d".but.in.this.model.a.router.is |
| c4da0 | 20 61 6c 6c 6f 77 65 64 20 74 6f 20 75 73 65 20 61 20 63 6f 6e 6e 65 63 74 65 64 20 61 72 65 61 | .allowed.to.use.a.connected.area |
| c4dc0 | 73 20 74 6f 70 6f 6c 6f 67 79 20 77 69 74 68 6f 75 74 20 69 6e 76 6f 6c 76 69 6e 67 20 61 20 62 | s.topology.without.involving.a.b |
| c4de0 | 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 66 6f 72 20 69 6e 74 65 72 2d 61 72 65 61 20 63 6f 6e 6e | ackbone.area.for.inter-area.conn |
| c4e00 | 65 63 74 69 6f 6e 73 2e 00 2a 2a 63 6f 6c 6c 65 63 74 6f 72 2a 2a 3a 20 72 65 73 70 6f 6e 73 69 | ections..**collector**:.responsi |
| c4e20 | 62 6c 65 20 66 6f 72 20 72 65 63 65 70 74 69 6f 6e 2c 20 73 74 6f 72 61 67 65 20 61 6e 64 20 70 | ble.for.reception,.storage.and.p |
| c4e40 | 72 65 2d 70 72 6f 63 65 73 73 69 6e 67 20 6f 66 20 66 6c 6f 77 20 64 61 74 61 20 72 65 63 65 69 | re-processing.of.flow.data.recei |
| c4e60 | 76 65 64 20 66 72 6f 6d 20 61 20 66 6c 6f 77 20 65 78 70 6f 72 74 65 72 00 2a 2a 64 65 66 61 75 | ved.from.a.flow.exporter.**defau |
| c4e80 | 6c 74 2a 2a 20 e2 80 93 20 20 74 68 69 73 20 61 72 65 61 20 77 69 6c 6c 20 62 65 20 75 73 65 64 | lt**......this.area.will.be.used |
| c4ea0 | 20 66 6f 72 20 73 68 6f 72 74 63 75 74 74 69 6e 67 20 6f 6e 6c 79 20 69 66 20 41 42 52 20 64 6f | .for.shortcutting.only.if.ABR.do |
| c4ec0 | 65 73 20 6e 6f 74 20 68 61 76 65 20 61 20 6c 69 6e 6b 20 74 6f 20 74 68 65 20 62 61 63 6b 62 6f | es.not.have.a.link.to.the.backbo |
| c4ee0 | 6e 65 20 61 72 65 61 20 6f 72 20 74 68 69 73 20 6c 69 6e 6b 20 77 61 73 20 6c 6f 73 74 2e 20 2a | ne.area.or.this.link.was.lost..* |
| c4f00 | 2a 65 6e 61 62 6c 65 2a 2a 20 e2 80 93 20 74 68 65 20 61 72 65 61 20 77 69 6c 6c 20 62 65 20 75 | *enable**.....the.area.will.be.u |
| c4f20 | 73 65 64 20 66 6f 72 20 73 68 6f 72 74 63 75 74 74 69 6e 67 20 65 76 65 72 79 20 74 69 6d 65 20 | sed.for.shortcutting.every.time. |
| c4f40 | 74 68 65 20 72 6f 75 74 65 20 74 68 61 74 20 67 6f 65 73 20 74 68 72 6f 75 67 68 20 69 74 20 69 | the.route.that.goes.through.it.i |
| c4f60 | 73 20 63 68 65 61 70 65 72 2e 20 2a 2a 64 69 73 61 62 6c 65 2a 2a 20 e2 80 93 20 74 68 69 73 20 | s.cheaper..**disable**.....this. |
| c4f80 | 61 72 65 61 20 69 73 20 6e 65 76 65 72 20 75 73 65 64 20 62 79 20 41 42 52 20 66 6f 72 20 72 6f | area.is.never.used.by.ABR.for.ro |
| c4fa0 | 75 74 65 73 20 73 68 6f 72 74 63 75 74 74 69 6e 67 2e 00 2a 2a 64 65 66 61 75 6c 74 2a 2a 20 e2 | utes.shortcutting..**default**.. |
| c4fc0 | 80 93 20 65 6e 61 62 6c 65 20 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 6f 6e 20 77 69 72 65 64 | ...enable.split-horizon.on.wired |
| c4fe0 | 20 69 6e 74 65 72 66 61 63 65 73 2c 20 61 6e 64 20 64 69 73 61 62 6c 65 20 73 70 6c 69 74 2d 68 | .interfaces,.and.disable.split-h |
| c5000 | 6f 72 69 7a 6f 6e 20 6f 6e 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 73 2e 20 2a | orizon.on.wireless.interfaces..* |
| c5020 | 2a 65 6e 61 62 6c 65 2a 2a 20 e2 80 93 20 65 6e 61 62 6c 65 20 73 70 6c 69 74 2d 68 6f 72 69 7a | *enable**.....enable.split-horiz |
| c5040 | 6f 6e 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 73 2e 20 2a 2a 64 69 73 61 62 6c 65 | on.on.this.interfaces..**disable |
| c5060 | 2a 2a 20 e2 80 93 20 64 69 73 61 62 6c 65 20 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 6f 6e 20 | **.....disable.split-horizon.on. |
| c5080 | 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 73 2e 00 2a 2a 64 65 6e 79 2a 2a 20 2d 20 44 6f 20 6e | this.interfaces..**deny**.-.Do.n |
| c50a0 | 6f 74 20 6e 65 67 6f 74 69 61 74 65 20 49 50 76 34 00 2a 2a 64 65 6e 79 2a 2a 20 2d 20 44 6f 20 | ot.negotiate.IPv4.**deny**.-.Do. |
| c50c0 | 6e 6f 74 20 6e 65 67 6f 74 69 61 74 65 20 49 50 76 36 20 28 64 65 66 61 75 6c 74 20 76 61 6c 75 | not.negotiate.IPv6.(default.valu |
| c50e0 | 65 29 00 2a 2a 64 65 6e 79 2a 2a 20 2d 20 64 65 6e 79 20 6d 70 70 65 00 2a 2a 64 65 6e 79 2a 2a | e).**deny**.-.deny.mppe.**deny** |
| c5100 | 3a 20 44 65 6e 79 20 73 65 63 6f 6e 64 20 73 65 73 73 69 6f 6e 20 61 75 74 68 6f 72 69 7a 61 74 | :.Deny.second.session.authorizat |
| c5120 | 69 6f 6e 2e 00 2a 2a 64 65 73 74 69 6e 61 74 69 6f 6e 2a 2a 20 2d 20 73 70 65 63 69 66 79 20 77 | ion..**destination**.-.specify.w |
| c5140 | 68 69 63 68 20 70 61 63 6b 65 74 73 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 77 69 6c | hich.packets.the.translation.wil |
| c5160 | 6c 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 2c 20 6f 6e 6c 79 20 62 61 73 65 64 20 6f 6e 20 74 | l.be.applied.to,.only.based.on.t |
| c5180 | 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 61 6e 64 2f 6f 72 20 70 6f | he.destination.address.and/or.po |
| c51a0 | 72 74 20 6e 75 6d 62 65 72 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 2a 2a 64 68 63 70 2a 2a 20 69 | rt.number.configured..**dhcp**.i |
| c51c0 | 6e 74 65 72 66 61 63 65 20 61 64 64 72 65 73 73 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 20 | nterface.address.is.received.by. |
| c51e0 | 44 48 43 50 20 66 72 6f 6d 20 61 20 44 48 43 50 20 73 65 72 76 65 72 20 6f 6e 20 74 68 69 73 20 | DHCP.from.a.DHCP.server.on.this. |
| c5200 | 73 65 67 6d 65 6e 74 2e 00 2a 2a 64 68 63 70 76 36 2a 2a 20 69 6e 74 65 72 66 61 63 65 20 61 64 | segment..**dhcpv6**.interface.ad |
| c5220 | 64 72 65 73 73 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 20 44 48 43 50 76 36 20 66 72 6f 6d | dress.is.received.by.DHCPv6.from |
| c5240 | 20 61 20 44 48 43 50 76 36 20 73 65 72 76 65 72 20 6f 6e 20 74 68 69 73 20 73 65 67 6d 65 6e 74 | .a.DHCPv6.server.on.this.segment |
| c5260 | 2e 00 2a 2a 64 69 73 61 62 6c 65 2a 2a 3a 20 44 69 73 61 62 6c 65 73 20 73 65 73 73 69 6f 6e 20 | ..**disable**:.Disables.session. |
| c5280 | 63 6f 6e 74 72 6f 6c 2e 00 2a 2a 64 69 73 63 61 72 64 3a 2a 2a 20 52 65 63 65 69 76 65 64 20 70 | control..**discard:**.Received.p |
| c52a0 | 61 63 6b 65 74 73 20 77 68 69 63 68 20 61 6c 72 65 61 64 79 20 63 6f 6e 74 61 69 6e 20 72 65 6c | ackets.which.already.contain.rel |
| c52c0 | 61 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 77 69 6c 6c 20 62 65 20 64 69 73 63 61 72 64 65 64 | ay.information.will.be.discarded |
| c52e0 | 2e 00 2a 2a 64 6f 77 6e 73 74 72 65 61 6d 3a 2a 2a 20 44 6f 77 6e 73 74 72 65 61 6d 20 6e 65 74 | ..**downstream:**.Downstream.net |
| c5300 | 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 74 68 65 20 64 69 73 74 72 69 62 75 | work.interfaces.are.the.distribu |
| c5320 | 74 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 73 20 74 6f 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 | tion.interfaces.to.the.destinati |
| c5340 | 6f 6e 20 6e 65 74 77 6f 72 6b 73 2c 20 77 68 65 72 65 20 6d 75 6c 74 69 63 61 73 74 20 63 6c 69 | on.networks,.where.multicast.cli |
| c5360 | 65 6e 74 73 20 63 61 6e 20 6a 6f 69 6e 20 67 72 6f 75 70 73 20 61 6e 64 20 72 65 63 65 69 76 65 | ents.can.join.groups.and.receive |
| c5380 | 20 6d 75 6c 74 69 63 61 73 74 20 64 61 74 61 2e 20 4f 6e 65 20 6f 72 20 6d 6f 72 65 20 64 6f 77 | .multicast.data..One.or.more.dow |
| c53a0 | 6e 73 74 72 65 61 6d 20 69 6e 74 65 72 66 61 63 65 73 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 | nstream.interfaces.must.be.confi |
| c53c0 | 67 75 72 65 64 2e 00 2a 2a 65 78 70 6f 72 74 65 72 2a 2a 3a 20 61 67 67 72 65 67 61 74 65 73 20 | gured..**exporter**:.aggregates. |
| c53e0 | 70 61 63 6b 65 74 73 20 69 6e 74 6f 20 66 6c 6f 77 73 20 61 6e 64 20 65 78 70 6f 72 74 73 20 66 | packets.into.flows.and.exports.f |
| c5400 | 6c 6f 77 20 72 65 63 6f 72 64 73 20 74 6f 77 61 72 64 73 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 | low.records.towards.one.or.more. |
| c5420 | 66 6c 6f 77 20 63 6f 6c 6c 65 63 74 6f 72 73 00 2a 2a 66 69 72 65 77 61 6c 6c 20 61 6c 6c 2d 70 | flow.collectors.**firewall.all-p |
| c5440 | 69 6e 67 2a 2a 20 61 66 66 65 63 74 73 20 6f 6e 6c 79 20 74 6f 20 4c 4f 43 41 4c 20 61 6e 64 20 | ing**.affects.only.to.LOCAL.and. |
| c5460 | 69 74 20 61 6c 77 61 79 73 20 62 65 68 61 76 65 73 20 69 6e 20 74 68 65 20 6d 6f 73 74 20 72 65 | it.always.behaves.in.the.most.re |
| c5480 | 73 74 72 69 63 74 69 76 65 20 77 61 79 00 2a 2a 66 69 72 65 77 61 6c 6c 20 67 6c 6f 62 61 6c 2d | strictive.way.**firewall.global- |
| c54a0 | 6f 70 74 69 6f 6e 73 20 61 6c 6c 2d 70 69 6e 67 2a 2a 20 61 66 66 65 63 74 73 20 6f 6e 6c 79 20 | options.all-ping**.affects.only. |
| c54c0 | 74 6f 20 4c 4f 43 41 4c 20 61 6e 64 20 69 74 20 61 6c 77 61 79 73 20 62 65 68 61 76 65 73 20 69 | to.LOCAL.and.it.always.behaves.i |
| c54e0 | 6e 20 74 68 65 20 6d 6f 73 74 20 72 65 73 74 72 69 63 74 69 76 65 20 77 61 79 00 2a 2a 66 6f 72 | n.the.most.restrictive.way.**for |
| c5500 | 77 61 72 64 3a 2a 2a 20 41 6c 6c 20 70 61 63 6b 65 74 73 20 61 72 65 20 66 6f 72 77 61 72 64 65 | ward:**.All.packets.are.forwarde |
| c5520 | 64 2c 20 72 65 6c 61 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 6c 72 65 61 64 79 20 70 72 65 | d,.relay.information.already.pre |
| c5540 | 73 65 6e 74 20 77 69 6c 6c 20 62 65 20 69 67 6e 6f 72 65 64 2e 00 2a 2a 69 6e 62 6f 75 6e 64 2d | sent.will.be.ignored..**inbound- |
| c5560 | 69 6e 74 65 72 66 61 63 65 2a 2a 20 2d 20 61 70 70 6c 69 63 61 62 6c 65 20 6f 6e 6c 79 20 74 6f | interface**.-.applicable.only.to |
| c5580 | 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 2e 20 49 74 20 63 6f 6e 66 | .:ref:`destination-nat`..It.conf |
| c55a0 | 69 67 75 72 65 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 68 69 63 68 20 69 73 20 75 73 | igures.the.interface.which.is.us |
| c55c0 | 65 64 20 66 6f 72 20 74 68 65 20 69 6e 73 69 64 65 20 74 72 61 66 66 69 63 20 74 68 65 20 74 72 | ed.for.the.inside.traffic.the.tr |
| c55e0 | 61 6e 73 6c 61 74 69 6f 6e 20 72 75 6c 65 20 61 70 70 6c 69 65 73 20 74 6f 2e 00 2a 2a 69 6e 62 | anslation.rule.applies.to..**inb |
| c5600 | 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 20 2d 20 61 70 70 6c 69 63 61 62 6c 65 20 6f 6e | ound-interface**.-.applicable.on |
| c5620 | 6c 79 20 74 6f 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 2e 20 49 74 | ly.to.:ref:`destination-nat`..It |
| c5640 | 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 68 69 63 68 20 | .configures.the.interface.which. |
| c5660 | 69 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 69 6e 73 69 64 65 20 74 72 61 66 66 69 63 20 74 | is.used.for.the.inside.traffic.t |
| c5680 | 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 72 75 6c 65 20 61 70 70 6c 69 65 73 20 74 6f 2e 20 | he.translation.rule.applies.to.. |
| c56a0 | 49 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 73 2c 20 69 6e 76 65 72 74 65 64 20 73 65 6c 65 63 | Interface.groups,.inverted.selec |
| c56c0 | 74 69 6f 6e 20 61 6e 64 20 77 69 6c 64 63 61 72 64 2c 20 61 72 65 20 61 6c 73 6f 20 73 75 70 70 | tion.and.wildcard,.are.also.supp |
| c56e0 | 6f 72 74 65 64 2e 00 2a 2a 69 70 76 34 2d 61 64 64 72 2a 2a 20 2d 20 43 61 6c 63 75 6c 61 74 65 | orted..**ipv4-addr**.-.Calculate |
| c5700 | 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 66 72 6f 6d 20 49 50 76 34 20 | .interface.identifier.from.IPv4. |
| c5720 | 61 64 64 72 65 73 73 2e 00 2a 2a 6c 32 2a 2a 3a 20 49 74 20 6d 65 61 6e 73 20 74 68 61 74 20 63 | address..**l2**:.It.means.that.c |
| c5740 | 6c 69 65 6e 74 73 20 61 72 65 20 6f 6e 20 73 61 6d 65 20 6e 65 74 77 6f 72 6b 20 77 68 65 72 65 | lients.are.on.same.network.where |
| c5760 | 20 69 6e 74 65 72 66 61 63 65 20 69 73 2e 2a 2a 28 64 65 66 61 75 6c 74 29 2a 2a 00 2a 2a 6c 33 | .interface.is.**(default)**.**l3 |
| c5780 | 2a 2a 3a 20 49 74 20 6d 65 61 6e 73 20 74 68 61 74 20 63 6c 69 65 6e 74 20 61 72 65 20 62 65 68 | **:.It.means.that.client.are.beh |
| c57a0 | 69 6e 64 20 73 6f 6d 65 20 72 6f 75 74 65 72 2e 00 2a 2a 6c 61 79 65 72 32 2a 2a 20 2d 20 55 73 | ind.some.router..**layer2**.-.Us |
| c57c0 | 65 73 20 58 4f 52 20 6f 66 20 68 61 72 64 77 61 72 65 20 4d 41 43 20 61 64 64 72 65 73 73 65 73 | es.XOR.of.hardware.MAC.addresses |
| c57e0 | 20 61 6e 64 20 70 61 63 6b 65 74 20 74 79 70 65 20 49 44 20 66 69 65 6c 64 20 74 6f 20 67 65 6e | .and.packet.type.ID.field.to.gen |
| c5800 | 65 72 61 74 65 20 74 68 65 20 68 61 73 68 2e 20 54 68 65 20 66 6f 72 6d 75 6c 61 20 69 73 00 2a | erate.the.hash..The.formula.is.* |
| c5820 | 2a 6c 61 79 65 72 32 2b 33 2a 2a 20 2d 20 54 68 69 73 20 70 6f 6c 69 63 79 20 75 73 65 73 20 61 | *layer2+3**.-.This.policy.uses.a |
| c5840 | 20 63 6f 6d 62 69 6e 61 74 69 6f 6e 20 6f 66 20 6c 61 79 65 72 32 20 61 6e 64 20 6c 61 79 65 72 | .combination.of.layer2.and.layer |
| c5860 | 33 20 70 72 6f 74 6f 63 6f 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 67 65 6e 65 72 61 | 3.protocol.information.to.genera |
| c5880 | 74 65 20 74 68 65 20 68 61 73 68 2e 20 55 73 65 73 20 58 4f 52 20 6f 66 20 68 61 72 64 77 61 72 | te.the.hash..Uses.XOR.of.hardwar |
| c58a0 | 65 20 4d 41 43 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 49 50 20 61 64 64 72 65 73 73 65 73 | e.MAC.addresses.and.IP.addresses |
| c58c0 | 20 74 6f 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 68 61 73 68 2e 20 54 68 65 20 66 6f 72 6d 75 | .to.generate.the.hash..The.formu |
| c58e0 | 6c 61 20 69 73 3a 00 2a 2a 6c 61 79 65 72 33 2b 34 2a 2a 20 2d 20 54 68 69 73 20 70 6f 6c 69 63 | la.is:.**layer3+4**.-.This.polic |
| c5900 | 79 20 75 73 65 73 20 75 70 70 65 72 20 6c 61 79 65 72 20 70 72 6f 74 6f 63 6f 6c 20 69 6e 66 6f | y.uses.upper.layer.protocol.info |
| c5920 | 72 6d 61 74 69 6f 6e 2c 20 77 68 65 6e 20 61 76 61 69 6c 61 62 6c 65 2c 20 74 6f 20 67 65 6e 65 | rmation,.when.available,.to.gene |
| c5940 | 72 61 74 65 20 74 68 65 20 68 61 73 68 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 66 6f 72 20 74 | rate.the.hash..This.allows.for.t |
| c5960 | 72 61 66 66 69 63 20 74 6f 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 6e 65 74 77 6f 72 6b 20 70 | raffic.to.a.particular.network.p |
| c5980 | 65 65 72 20 74 6f 20 73 70 61 6e 20 6d 75 6c 74 69 70 6c 65 20 73 6c 61 76 65 73 2c 20 61 6c 74 | eer.to.span.multiple.slaves,.alt |
| c59a0 | 68 6f 75 67 68 20 61 20 73 69 6e 67 6c 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 6c 6c 20 6e | hough.a.single.connection.will.n |
| c59c0 | 6f 74 20 73 70 61 6e 20 6d 75 6c 74 69 70 6c 65 20 73 6c 61 76 65 73 2e 00 2a 2a 6c 65 66 74 2a | ot.span.multiple.slaves..**left* |
| c59e0 | 2a 00 2a 2a 6c 65 76 65 6c 2d 31 2a 2a 20 2d 20 41 63 74 20 61 73 20 61 20 73 74 61 74 69 6f 6e | *.**level-1**.-.Act.as.a.station |
| c5a00 | 20 28 4c 65 76 65 6c 20 31 29 20 72 6f 75 74 65 72 20 6f 6e 6c 79 2e 00 2a 2a 6c 65 76 65 6c 2d | .(Level.1).router.only..**level- |
| c5a20 | 31 2a 2a 20 2d 20 4c 65 76 65 6c 2d 31 20 6f 6e 6c 79 20 61 64 6a 61 63 65 6e 63 69 65 73 20 61 | 1**.-.Level-1.only.adjacencies.a |
| c5a40 | 72 65 20 66 6f 72 6d 65 64 2e 00 2a 2a 6c 65 76 65 6c 2d 31 2d 32 2a 2a 20 2d 20 41 63 74 20 61 | re.formed..**level-1-2**.-.Act.a |
| c5a60 | 73 20 61 20 73 74 61 74 69 6f 6e 20 28 4c 65 76 65 6c 20 31 29 20 72 6f 75 74 65 72 20 61 6e 64 | s.a.station.(Level.1).router.and |
| c5a80 | 20 61 72 65 61 20 28 4c 65 76 65 6c 20 32 29 20 72 6f 75 74 65 72 2e 00 2a 2a 6c 65 76 65 6c 2d | .area.(Level.2).router..**level- |
| c5aa0 | 31 2d 32 2a 2a 20 2d 20 4c 65 76 65 6c 2d 31 2d 32 20 61 64 6a 61 63 65 6e 63 69 65 73 20 61 72 | 1-2**.-.Level-1-2.adjacencies.ar |
| c5ac0 | 65 20 66 6f 72 6d 65 64 00 2a 2a 6c 65 76 65 6c 2d 32 2d 6f 6e 6c 79 2a 2a 20 2d 20 41 63 74 20 | e.formed.**level-2-only**.-.Act. |
| c5ae0 | 61 73 20 61 6e 20 61 72 65 61 20 28 4c 65 76 65 6c 20 32 29 20 72 6f 75 74 65 72 20 6f 6e 6c 79 | as.an.area.(Level.2).router.only |
| c5b00 | 2e 00 2a 2a 6c 65 76 65 6c 2d 32 2d 6f 6e 6c 79 2a 2a 20 2d 20 4c 65 76 65 6c 2d 32 20 6f 6e 6c | ..**level-2-only**.-.Level-2.onl |
| c5b20 | 79 20 61 64 6a 61 63 65 6e 63 69 65 73 20 61 72 65 20 66 6f 72 6d 65 64 00 2a 2a 6c 6f 63 61 6c | y.adjacencies.are.formed.**local |
| c5b40 | 20 73 69 64 65 20 2d 20 63 6f 6d 6d 61 6e 64 73 2a 2a 00 2a 2a 6c 6f 63 61 6c 2a 2a 3a 20 41 6c | .side.-.commands**.**local**:.Al |
| c5b60 | 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 71 75 65 72 69 65 73 20 61 72 65 20 68 61 6e | l.authentication.queries.are.han |
| c5b80 | 64 6c 65 64 20 6c 6f 63 61 6c 6c 79 2e 00 2a 2a 6c 6f 63 61 6c 2a 2a 3a 20 49 74 20 6d 65 61 6e | dled.locally..**local**:.It.mean |
| c5ba0 | 73 20 74 68 61 74 20 63 6c 69 65 6e 74 20 61 72 65 20 62 65 68 69 6e 64 20 73 6f 6d 65 20 72 6f | s.that.client.are.behind.some.ro |
| c5bc0 | 75 74 65 72 2e 00 2a 2a 6c 6f 67 2d 66 61 69 6c 2a 2a 20 49 6e 20 74 68 69 73 20 6d 6f 64 65 2c | uter..**log-fail**.In.this.mode, |
| c5be0 | 20 74 68 65 20 72 65 63 75 72 73 6f 72 20 77 69 6c 6c 20 61 74 74 65 6d 70 74 20 74 6f 20 76 61 | .the.recursor.will.attempt.to.va |
| c5c00 | 6c 69 64 61 74 65 20 61 6c 6c 20 64 61 74 61 20 69 74 20 72 65 74 72 69 65 76 65 73 20 66 72 6f | lidate.all.data.it.retrieves.fro |
| c5c20 | 6d 20 61 75 74 68 6f 72 69 74 61 74 69 76 65 20 73 65 72 76 65 72 73 2c 20 72 65 67 61 72 64 6c | m.authoritative.servers,.regardl |
| c5c40 | 65 73 73 20 6f 66 20 74 68 65 20 63 6c 69 65 6e 74 27 73 20 44 4e 53 53 45 43 20 64 65 73 69 72 | ess.of.the.client's.DNSSEC.desir |
| c5c60 | 65 73 2c 20 61 6e 64 20 77 69 6c 6c 20 6c 6f 67 20 74 68 65 20 76 61 6c 69 64 61 74 69 6f 6e 20 | es,.and.will.log.the.validation. |
| c5c80 | 72 65 73 75 6c 74 2e 20 54 68 69 73 20 6d 6f 64 65 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f | result..This.mode.can.be.used.to |
| c5ca0 | 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 65 78 74 72 61 20 6c 6f 61 64 20 61 6e 64 20 61 6d | .determine.the.extra.load.and.am |
| c5cc0 | 6f 75 6e 74 20 6f 66 20 70 6f 73 73 69 62 6c 79 20 62 6f 67 75 73 20 61 6e 73 77 65 72 73 20 62 | ount.of.possibly.bogus.answers.b |
| c5ce0 | 65 66 6f 72 65 20 74 75 72 6e 69 6e 67 20 6f 6e 20 66 75 6c 6c 2d 62 6c 6f 77 6e 20 76 61 6c 69 | efore.turning.on.full-blown.vali |
| c5d00 | 64 61 74 69 6f 6e 2e 20 52 65 73 70 6f 6e 73 65 73 20 74 6f 20 63 6c 69 65 6e 74 20 71 75 65 72 | dation..Responses.to.client.quer |
| c5d20 | 69 65 73 20 61 72 65 20 74 68 65 20 73 61 6d 65 20 61 73 20 77 69 74 68 20 70 72 6f 63 65 73 73 | ies.are.the.same.as.with.process |
| c5d40 | 2e 00 2a 2a 6c 6f 6f 6b 75 70 2d 61 2a 2a 20 41 20 46 6c 61 67 2e 00 2a 2a 6c 6f 6f 6b 75 70 2d | ..**lookup-a**.A.Flag..**lookup- |
| c5d60 | 73 72 76 2a 2a 20 53 20 66 6c 61 67 2e 00 2a 2a 6e 61 72 72 6f 77 2a 2a 20 2d 20 55 73 65 20 6f | srv**.S.flag..**narrow**.-.Use.o |
| c5d80 | 6c 64 20 73 74 79 6c 65 20 6f 66 20 54 4c 56 73 20 77 69 74 68 20 6e 61 72 72 6f 77 20 6d 65 74 | ld.style.of.TLVs.with.narrow.met |
| c5da0 | 72 69 63 2e 00 2a 2a 6e 65 74 2d 61 64 6d 69 6e 2a 2a 3a 20 4e 65 74 77 6f 72 6b 20 6f 70 65 72 | ric..**net-admin**:.Network.oper |
| c5dc0 | 61 74 69 6f 6e 73 20 28 69 6e 74 65 72 66 61 63 65 2c 20 66 69 72 65 77 61 6c 6c 2c 20 72 6f 75 | ations.(interface,.firewall,.rou |
| c5de0 | 74 69 6e 67 20 74 61 62 6c 65 73 29 00 2a 2a 6e 65 74 2d 62 69 6e 64 2d 73 65 72 76 69 63 65 2a | ting.tables).**net-bind-service* |
| c5e00 | 2a 3a 20 42 69 6e 64 20 61 20 73 6f 63 6b 65 74 20 74 6f 20 70 72 69 76 69 6c 65 67 65 64 20 70 | *:.Bind.a.socket.to.privileged.p |
| c5e20 | 6f 72 74 73 20 28 70 6f 72 74 20 6e 75 6d 62 65 72 73 20 6c 65 73 73 20 74 68 61 6e 20 31 30 32 | orts.(port.numbers.less.than.102 |
| c5e40 | 34 29 00 2a 2a 6e 65 74 2d 72 61 77 2a 2a 3a 20 50 65 72 6d 69 73 73 69 6f 6e 20 74 6f 20 63 72 | 4).**net-raw**:.Permission.to.cr |
| c5e60 | 65 61 74 65 20 72 61 77 20 6e 65 74 77 6f 72 6b 20 73 6f 63 6b 65 74 73 00 2a 2a 6e 6f 2a 2a 3a | eate.raw.network.sockets.**no**: |
| c5e80 | 20 44 6f 20 6e 6f 74 20 72 65 73 74 61 72 74 20 63 6f 6e 74 61 69 6e 65 72 73 20 6f 6e 20 65 78 | .Do.not.restart.containers.on.ex |
| c5ea0 | 69 74 00 2a 2a 6e 6f 61 75 74 68 2a 2a 3a 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 64 69 | it.**noauth**:.Authentication.di |
| c5ec0 | 73 61 62 6c 65 64 00 2a 2a 6e 6f 61 75 74 68 2a 2a 3a 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f | sabled.**noauth**:.Authenticatio |
| c5ee0 | 6e 20 64 69 73 61 62 6c 65 64 2e 00 2a 2a 6f 66 66 2a 2a 20 49 6e 20 74 68 69 73 20 6d 6f 64 65 | n.disabled..**off**.In.this.mode |
| c5f00 | 2c 20 6e 6f 20 44 4e 53 53 45 43 20 70 72 6f 63 65 73 73 69 6e 67 20 74 61 6b 65 73 20 70 6c 61 | ,.no.DNSSEC.processing.takes.pla |
| c5f20 | 63 65 2e 20 54 68 65 20 72 65 63 75 72 73 6f 72 20 77 69 6c 6c 20 6e 6f 74 20 73 65 74 20 74 68 | ce..The.recursor.will.not.set.th |
| c5f40 | 65 20 44 4e 53 53 45 43 20 4f 4b 20 28 44 4f 29 20 62 69 74 20 69 6e 20 74 68 65 20 6f 75 74 67 | e.DNSSEC.OK.(DO).bit.in.the.outg |
| c5f60 | 6f 69 6e 67 20 71 75 65 72 69 65 73 20 61 6e 64 20 77 69 6c 6c 20 69 67 6e 6f 72 65 20 74 68 65 | oing.queries.and.will.ignore.the |
| c5f80 | 20 44 4f 20 61 6e 64 20 41 44 20 62 69 74 73 20 69 6e 20 71 75 65 72 69 65 73 2e 00 2a 2a 6f 6e | .DO.and.AD.bits.in.queries..**on |
| c5fa0 | 2d 66 61 69 6c 75 72 65 2a 2a 3a 20 52 65 73 74 61 72 74 20 63 6f 6e 74 61 69 6e 65 72 73 20 77 | -failure**:.Restart.containers.w |
| c5fc0 | 68 65 6e 20 74 68 65 79 20 65 78 69 74 20 77 69 74 68 20 61 20 6e 6f 6e 2d 7a 65 72 6f 20 65 78 | hen.they.exit.with.a.non-zero.ex |
| c5fe0 | 69 74 20 63 6f 64 65 2c 20 72 65 74 72 79 69 6e 67 20 69 6e 64 65 66 69 6e 69 74 65 6c 79 20 28 | it.code,.retrying.indefinitely.( |
| c6000 | 64 65 66 61 75 6c 74 29 00 2a 2a 6f 72 64 65 72 2a 2a 20 52 75 6c 65 20 6f 72 64 65 72 2e 20 52 | default).**order**.Rule.order..R |
| c6020 | 65 71 75 69 72 65 73 20 60 3c 76 61 6c 75 65 3e 60 2e 00 2a 2a 6f 75 74 62 6f 75 6e 64 2d 69 6e | equires.`<value>`..**outbound-in |
| c6040 | 74 65 72 66 61 63 65 2a 2a 20 2d 20 61 70 70 6c 69 63 61 62 6c 65 20 6f 6e 6c 79 20 74 6f 20 3a | terface**.-.applicable.only.to.: |
| c6060 | 72 65 66 3a 60 73 6f 75 72 63 65 2d 6e 61 74 60 2e 20 49 74 20 63 6f 6e 66 69 67 75 72 65 73 20 | ref:`source-nat`..It.configures. |
| c6080 | 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 68 69 63 68 20 69 73 20 75 73 65 64 20 66 6f 72 20 | the.interface.which.is.used.for. |
| c60a0 | 74 68 65 20 6f 75 74 73 69 64 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 74 68 69 73 20 74 72 | the.outside.traffic.that.this.tr |
| c60c0 | 61 6e 73 6c 61 74 69 6f 6e 20 72 75 6c 65 20 61 70 70 6c 69 65 73 20 74 6f 2e 00 2a 2a 6f 75 74 | anslation.rule.applies.to..**out |
| c60e0 | 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 20 2d 20 61 70 70 6c 69 63 61 62 6c 65 20 6f | bound-interface**.-.applicable.o |
| c6100 | 6e 6c 79 20 74 6f 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 2d 6e 61 74 60 2e 20 49 74 20 63 6f 6e | nly.to.:ref:`source-nat`..It.con |
| c6120 | 66 69 67 75 72 65 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 68 69 63 68 20 69 73 20 75 | figures.the.interface.which.is.u |
| c6140 | 73 65 64 20 66 6f 72 20 74 68 65 20 6f 75 74 73 69 64 65 20 74 72 61 66 66 69 63 20 74 68 61 74 | sed.for.the.outside.traffic.that |
| c6160 | 20 74 68 69 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 72 75 6c 65 20 61 70 70 6c 69 65 73 20 74 | .this.translation.rule.applies.t |
| c6180 | 6f 2e 20 49 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 73 2c 20 69 6e 76 65 72 74 65 64 20 73 65 | o..Interface.groups,.inverted.se |
| c61a0 | 6c 65 63 74 69 6f 6e 20 61 6e 64 20 77 69 6c 64 63 61 72 64 2c 20 61 72 65 20 61 6c 73 6f 20 73 | lection.and.wildcard,.are.also.s |
| c61c0 | 75 70 70 6f 72 74 65 64 2e 00 2a 2a 70 72 65 66 65 72 2a 2a 20 2d 20 41 73 6b 20 63 6c 69 65 6e | upported..**prefer**.-.Ask.clien |
| c61e0 | 74 20 66 6f 72 20 49 50 76 34 20 6e 65 67 6f 74 69 61 74 69 6f 6e 2c 20 64 6f 20 6e 6f 74 20 66 | t.for.IPv4.negotiation,.do.not.f |
| c6200 | 61 69 6c 20 69 66 20 69 74 20 72 65 6a 65 63 74 73 00 2a 2a 70 72 65 66 65 72 2a 2a 20 2d 20 41 | ail.if.it.rejects.**prefer**.-.A |
| c6220 | 73 6b 20 63 6c 69 65 6e 74 20 66 6f 72 20 49 50 76 36 20 6e 65 67 6f 74 69 61 74 69 6f 6e 2c 20 | sk.client.for.IPv6.negotiation,. |
| c6240 | 64 6f 20 6e 6f 74 20 66 61 69 6c 20 69 66 20 69 74 20 72 65 6a 65 63 74 73 00 2a 2a 70 72 65 66 | do.not.fail.if.it.rejects.**pref |
| c6260 | 65 72 2a 2a 20 2d 20 61 73 6b 20 63 6c 69 65 6e 74 20 66 6f 72 20 6d 70 70 65 2c 20 69 66 20 69 | er**.-.ask.client.for.mppe,.if.i |
| c6280 | 74 20 72 65 6a 65 63 74 73 20 64 6f 6e 27 74 20 66 61 69 6c 00 2a 2a 70 72 65 66 65 72 2a 2a 20 | t.rejects.don't.fail.**prefer**. |
| c62a0 | 2d 20 61 73 6b 20 63 6c 69 65 6e 74 20 66 6f 72 20 6d 70 70 65 2c 20 69 66 20 69 74 20 72 65 6a | -.ask.client.for.mppe,.if.it.rej |
| c62c0 | 65 63 74 73 20 64 6f 6e 27 74 20 66 61 69 6c 2e 20 28 44 65 66 61 75 6c 74 20 76 61 6c 75 65 29 | ects.don't.fail..(Default.value) |
| c62e0 | 00 2a 2a 70 72 65 66 65 72 65 6e 63 65 2a 2a 20 52 75 6c 65 20 70 72 65 66 65 72 65 6e 63 65 2e | .**preference**.Rule.preference. |
| c6300 | 20 52 65 71 75 69 72 65 73 20 60 3c 76 61 6c 75 65 3e 60 2e 20 44 65 66 61 75 6c 74 73 20 74 6f | .Requires.`<value>`..Defaults.to |
| c6320 | 20 30 20 69 66 20 6e 6f 74 20 73 65 74 2e 00 2a 2a 70 72 6f 63 65 73 73 2a 2a 20 57 68 65 6e 20 | .0.if.not.set..**process**.When. |
| c6340 | 64 6e 73 73 65 63 20 69 73 20 73 65 74 20 74 6f 20 70 72 6f 63 65 73 73 20 74 68 65 20 62 65 68 | dnssec.is.set.to.process.the.beh |
| c6360 | 61 76 69 6f 72 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 70 72 6f 63 65 73 73 2d 6e 6f 2d 76 | avior.is.similar.to.process-no-v |
| c6380 | 61 6c 69 64 61 74 65 2e 20 48 6f 77 65 76 65 72 2c 20 74 68 65 20 72 65 63 75 72 73 6f 72 20 77 | alidate..However,.the.recursor.w |
| c63a0 | 69 6c 6c 20 74 72 79 20 74 6f 20 76 61 6c 69 64 61 74 65 20 74 68 65 20 64 61 74 61 20 69 66 20 | ill.try.to.validate.the.data.if. |
| c63c0 | 61 74 20 6c 65 61 73 74 20 6f 6e 65 20 6f 66 20 74 68 65 20 44 4f 20 6f 72 20 41 44 20 62 69 74 | at.least.one.of.the.DO.or.AD.bit |
| c63e0 | 73 20 69 73 20 73 65 74 20 69 6e 20 74 68 65 20 71 75 65 72 79 3b 20 69 6e 20 74 68 61 74 20 63 | s.is.set.in.the.query;.in.that.c |
| c6400 | 61 73 65 2c 20 69 74 20 77 69 6c 6c 20 73 65 74 20 74 68 65 20 41 44 2d 62 69 74 20 69 6e 20 74 | ase,.it.will.set.the.AD-bit.in.t |
| c6420 | 68 65 20 72 65 73 70 6f 6e 73 65 20 77 68 65 6e 20 74 68 65 20 64 61 74 61 20 69 73 20 76 61 6c | he.response.when.the.data.is.val |
| c6440 | 69 64 61 74 65 64 20 73 75 63 63 65 73 73 66 75 6c 6c 79 2c 20 6f 72 20 73 65 6e 64 20 53 45 52 | idated.successfully,.or.send.SER |
| c6460 | 56 46 41 49 4c 20 77 68 65 6e 20 74 68 65 20 76 61 6c 69 64 61 74 69 6f 6e 20 63 6f 6d 65 73 20 | VFAIL.when.the.validation.comes. |
| c6480 | 75 70 20 62 6f 67 75 73 2e 00 2a 2a 70 72 6f 63 65 73 73 2d 6e 6f 2d 76 61 6c 69 64 61 74 65 2a | up.bogus..**process-no-validate* |
| c64a0 | 2a 20 49 6e 20 74 68 69 73 20 6d 6f 64 65 20 74 68 65 20 72 65 63 75 72 73 6f 72 20 61 63 74 73 | *.In.this.mode.the.recursor.acts |
| c64c0 | 20 61 73 20 61 20 22 73 65 63 75 72 69 74 79 20 61 77 61 72 65 2c 20 6e 6f 6e 2d 76 61 6c 69 64 | .as.a."security.aware,.non-valid |
| c64e0 | 61 74 69 6e 67 22 20 6e 61 6d 65 73 65 72 76 65 72 2c 20 6d 65 61 6e 69 6e 67 20 69 74 20 77 69 | ating".nameserver,.meaning.it.wi |
| c6500 | 6c 6c 20 73 65 74 20 74 68 65 20 44 4f 2d 62 69 74 20 6f 6e 20 6f 75 74 67 6f 69 6e 67 20 71 75 | ll.set.the.DO-bit.on.outgoing.qu |
| c6520 | 65 72 69 65 73 20 61 6e 64 20 77 69 6c 6c 20 70 72 6f 76 69 64 65 20 44 4e 53 53 45 43 20 72 65 | eries.and.will.provide.DNSSEC.re |
| c6540 | 6c 61 74 65 64 20 52 52 73 65 74 73 20 28 4e 53 45 43 2c 20 52 52 53 49 47 29 20 74 6f 20 63 6c | lated.RRsets.(NSEC,.RRSIG).to.cl |
| c6560 | 69 65 6e 74 73 20 74 68 61 74 20 61 73 6b 20 66 6f 72 20 74 68 65 6d 20 28 62 79 20 6d 65 61 6e | ients.that.ask.for.them.(by.mean |
| c6580 | 73 20 6f 66 20 61 20 44 4f 2d 62 69 74 20 69 6e 20 74 68 65 20 71 75 65 72 79 29 2c 20 65 78 63 | s.of.a.DO-bit.in.the.query),.exc |
| c65a0 | 65 70 74 20 66 6f 72 20 7a 6f 6e 65 73 20 70 72 6f 76 69 64 65 64 20 74 68 72 6f 75 67 68 20 74 | ept.for.zones.provided.through.t |
| c65c0 | 68 65 20 61 75 74 68 2d 7a 6f 6e 65 73 20 73 65 74 74 69 6e 67 2e 20 49 74 20 77 69 6c 6c 20 6e | he.auth-zones.setting..It.will.n |
| c65e0 | 6f 74 20 64 6f 20 61 6e 79 20 76 61 6c 69 64 61 74 69 6f 6e 20 69 6e 20 74 68 69 73 20 6d 6f 64 | ot.do.any.validation.in.this.mod |
| c6600 | 65 2c 20 6e 6f 74 20 65 76 65 6e 20 77 68 65 6e 20 72 65 71 75 65 73 74 65 64 20 62 79 20 74 68 | e,.not.even.when.requested.by.th |
| c6620 | 65 20 63 6c 69 65 6e 74 2e 00 2a 2a 70 72 6f 74 6f 63 6f 6c 2a 2a 20 2d 20 73 70 65 63 69 66 79 | e.client..**protocol**.-.specify |
| c6640 | 20 77 68 69 63 68 20 74 79 70 65 73 20 6f 66 20 70 72 6f 74 6f 63 6f 6c 73 20 74 68 69 73 20 74 | .which.types.of.protocols.this.t |
| c6660 | 72 61 6e 73 6c 61 74 69 6f 6e 20 72 75 6c 65 20 61 70 70 6c 69 65 73 20 74 6f 2e 20 4f 6e 6c 79 | ranslation.rule.applies.to..Only |
| c6680 | 20 70 61 63 6b 65 74 73 20 6d 61 74 63 68 69 6e 67 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 | .packets.matching.the.specified. |
| c66a0 | 70 72 6f 74 6f 63 6f 6c 20 61 72 65 20 4e 41 54 65 64 2e 20 42 79 20 64 65 66 61 75 6c 74 20 74 | protocol.are.NATed..By.default.t |
| c66c0 | 68 69 73 20 61 70 70 6c 69 65 73 20 74 6f 20 60 61 6c 6c 60 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 | his.applies.to.`all`.protocols.. |
| c66e0 | 2a 2a 70 72 6f 74 6f 63 6f 6c 2d 73 70 65 63 69 66 69 63 2a 2a 20 50 20 66 6c 61 67 2e 00 2a 2a | **protocol-specific**.P.flag..** |
| c6700 | 72 61 64 69 75 73 2a 2a 3a 20 41 6c 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 71 75 65 | radius**:.All.authentication.que |
| c6720 | 72 69 65 73 20 61 72 65 20 68 61 6e 64 6c 65 64 20 62 79 20 61 20 63 6f 6e 66 69 67 75 72 65 64 | ries.are.handled.by.a.configured |
| c6740 | 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 2a 2a 72 61 6e 64 6f 6d 2a 2a 20 2d 20 52 61 6e | .RADIUS.server..**random**.-.Ran |
| c6760 | 64 6f 6d 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 66 6f 72 20 49 50 76 | dom.interface.identifier.for.IPv |
| c6780 | 36 00 2a 2a 72 65 67 65 78 70 2a 2a 20 52 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 2e | 6.**regexp**.Regular.expression. |
| c67a0 | 20 52 65 71 75 69 72 65 73 20 60 3c 76 61 6c 75 65 3e 60 2e 00 2a 2a 72 65 6d 6f 74 65 20 73 69 | .Requires.`<value>`..**remote.si |
| c67c0 | 64 65 20 2d 20 63 6f 6d 6d 61 6e 64 73 2a 2a 00 2a 2a 72 65 70 6c 61 63 65 2a 2a 3a 20 54 65 72 | de.-.commands**.**replace**:.Ter |
| c67e0 | 6d 69 6e 61 74 65 20 66 69 72 73 74 20 73 65 73 73 69 6f 6e 20 77 68 65 6e 20 73 65 63 6f 6e 64 | minate.first.session.when.second |
| c6800 | 20 69 73 20 61 75 74 68 6f 72 69 7a 65 64 20 2a 2a 28 64 65 66 61 75 6c 74 29 2a 2a 00 2a 2a 72 | .is.authorized.**(default)**.**r |
| c6820 | 65 70 6c 61 63 65 3a 2a 2a 20 52 65 6c 61 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 6c 72 65 | eplace:**.Relay.information.alre |
| c6840 | 61 64 79 20 70 72 65 73 65 6e 74 20 69 6e 20 61 20 70 61 63 6b 65 74 20 69 73 20 73 74 72 69 70 | ady.present.in.a.packet.is.strip |
| c6860 | 70 65 64 20 61 6e 64 20 72 65 70 6c 61 63 65 64 20 77 69 74 68 20 74 68 65 20 72 6f 75 74 65 72 | ped.and.replaced.with.the.router |
| c6880 | 27 73 20 6f 77 6e 20 72 65 6c 61 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 73 65 74 2e 00 2a 2a | 's.own.relay.information.set..** |
| c68a0 | 72 65 70 6c 61 63 65 6d 65 6e 74 2a 2a 20 52 65 70 6c 61 63 65 6d 65 6e 74 20 44 4e 53 20 6e 61 | replacement**.Replacement.DNS.na |
| c68c0 | 6d 65 2e 00 2a 2a 72 65 71 75 69 72 65 2a 2a 20 2d 20 52 65 71 75 69 72 65 20 49 50 76 34 20 6e | me..**require**.-.Require.IPv4.n |
| c68e0 | 65 67 6f 74 69 61 74 69 6f 6e 00 2a 2a 72 65 71 75 69 72 65 2a 2a 20 2d 20 52 65 71 75 69 72 65 | egotiation.**require**.-.Require |
| c6900 | 20 49 50 76 36 20 6e 65 67 6f 74 69 61 74 69 6f 6e 00 2a 2a 72 65 71 75 69 72 65 2a 2a 20 2d 20 | .IPv6.negotiation.**require**.-. |
| c6920 | 61 73 6b 20 63 6c 69 65 6e 74 20 66 6f 72 20 6d 70 70 65 2c 20 69 66 20 69 74 20 72 65 6a 65 63 | ask.client.for.mppe,.if.it.rejec |
| c6940 | 74 73 20 64 72 6f 70 20 63 6f 6e 6e 65 63 74 69 6f 6e 00 2a 2a 72 65 73 6f 6c 76 65 2d 75 72 69 | ts.drop.connection.**resolve-uri |
| c6960 | 2a 2a 20 55 20 66 6c 61 67 2e 00 2a 2a 72 69 67 68 74 2a 2a 00 2a 2a 73 65 72 76 69 63 65 2a 2a | **.U.flag..**right**.**service** |
| c6980 | 20 53 65 72 76 69 63 65 20 74 79 70 65 2e 20 52 65 71 75 69 72 65 73 20 60 3c 76 61 6c 75 65 3e | .Service.type..Requires.`<value> |
| c69a0 | 60 2e 00 2a 2a 73 65 74 70 63 61 70 2a 2a 3a 20 43 61 70 61 62 69 6c 69 74 79 20 73 65 74 73 20 | `..**setpcap**:.Capability.sets. |
| c69c0 | 28 66 72 6f 6d 20 62 6f 75 6e 64 65 64 20 6f 72 20 69 6e 68 65 72 69 74 65 64 20 73 65 74 29 00 | (from.bounded.or.inherited.set). |
| c69e0 | 2a 2a 73 68 61 72 65 64 2a 2a 3a 20 4d 75 6c 74 69 70 6c 65 20 63 6c 69 65 6e 74 73 20 73 68 61 | **shared**:.Multiple.clients.sha |
| c6a00 | 72 65 20 74 68 65 20 73 61 6d 65 20 6e 65 74 77 6f 72 6b 2e 20 2a 2a 28 64 65 66 61 75 6c 74 29 | re.the.same.network..**(default) |
| c6a20 | 2a 2a 00 2a 2a 73 6f 75 72 63 65 2a 2a 20 2d 20 73 70 65 63 69 66 69 65 73 20 77 68 69 63 68 20 | **.**source**.-.specifies.which. |
| c6a40 | 70 61 63 6b 65 74 73 20 74 68 65 20 4e 41 54 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 72 75 6c 65 | packets.the.NAT.translation.rule |
| c6a60 | 20 61 70 70 6c 69 65 73 20 74 6f 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 70 61 63 6b 65 74 73 | .applies.to.based.on.the.packets |
| c6a80 | 20 73 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 61 6e 64 2f 6f 72 20 73 6f 75 72 63 65 | .source.IP.address.and/or.source |
| c6aa0 | 20 70 6f 72 74 2e 20 4f 6e 6c 79 20 6d 61 74 63 68 69 6e 67 20 70 61 63 6b 65 74 73 20 61 72 65 | .port..Only.matching.packets.are |
| c6ac0 | 20 63 6f 6e 73 69 64 65 72 65 64 20 66 6f 72 20 4e 41 54 2e 00 2a 2a 73 79 73 2d 61 64 6d 69 6e | .considered.for.NAT..**sys-admin |
| c6ae0 | 2a 2a 3a 20 41 64 6d 69 6e 69 73 74 61 74 69 6f 6e 20 6f 70 65 72 61 74 69 6f 6e 73 20 28 71 75 | **:.Administation.operations.(qu |
| c6b00 | 6f 74 61 63 74 6c 2c 20 6d 6f 75 6e 74 2c 20 73 65 74 68 6f 73 74 6e 61 6d 65 2c 20 73 65 74 64 | otactl,.mount,.sethostname,.setd |
| c6b20 | 6f 6d 61 69 6e 61 6d 65 29 00 2a 2a 73 79 73 2d 61 64 6d 69 6e 2a 2a 3a 20 41 64 6d 69 6e 69 73 | omainame).**sys-admin**:.Adminis |
| c6b40 | 74 72 61 74 69 6f 6e 20 6f 70 65 72 61 74 69 6f 6e 73 20 28 71 75 6f 74 61 63 74 6c 2c 20 6d 6f | tration.operations.(quotactl,.mo |
| c6b60 | 75 6e 74 2c 20 73 65 74 68 6f 73 74 6e 61 6d 65 2c 20 73 65 74 64 6f 6d 61 69 6e 61 6d 65 29 00 | unt,.sethostname,.setdomainame). |
| c6b80 | 2a 2a 73 79 73 2d 74 69 6d 65 2a 2a 3a 20 50 65 72 6d 69 73 73 69 6f 6e 20 74 6f 20 73 65 74 20 | **sys-time**:.Permission.to.set. |
| c6ba0 | 73 79 73 74 65 6d 20 63 6c 6f 63 6b 00 2a 2a 74 72 61 6e 73 69 74 69 6f 6e 2a 2a 20 2d 20 53 65 | system.clock.**transition**.-.Se |
| c6bc0 | 6e 64 20 61 6e 64 20 61 63 63 65 70 74 20 62 6f 74 68 20 73 74 79 6c 65 73 20 6f 66 20 54 4c 56 | nd.and.accept.both.styles.of.TLV |
| c6be0 | 73 20 64 75 72 69 6e 67 20 74 72 61 6e 73 69 74 69 6f 6e 2e 00 2a 2a 75 70 73 74 72 65 61 6d 3a | s.during.transition..**upstream: |
| c6c00 | 2a 2a 20 54 68 65 20 75 70 73 74 72 65 61 6d 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 | **.The.upstream.network.interfac |
| c6c20 | 65 20 69 73 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 77 68 69 63 | e.is.the.outgoing.interface.whic |
| c6c40 | 68 20 69 73 20 72 65 73 70 6f 6e 73 69 62 6c 65 20 66 6f 72 20 63 6f 6d 6d 75 6e 69 63 61 74 69 | h.is.responsible.for.communicati |
| c6c60 | 6e 67 20 74 6f 20 61 76 61 69 6c 61 62 6c 65 20 6d 75 6c 74 69 63 61 73 74 20 64 61 74 61 20 73 | ng.to.available.multicast.data.s |
| c6c80 | 6f 75 72 63 65 73 2e 20 54 68 65 72 65 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 6f 6e 65 20 75 70 | ources..There.can.only.be.one.up |
| c6ca0 | 73 74 72 65 61 6d 20 69 6e 74 65 72 66 61 63 65 2e 00 2a 2a 76 61 6c 69 64 61 74 65 2a 2a 20 54 | stream.interface..**validate**.T |
| c6cc0 | 68 65 20 68 69 67 68 65 73 74 20 6d 6f 64 65 20 6f 66 20 44 4e 53 53 45 43 20 70 72 6f 63 65 73 | he.highest.mode.of.DNSSEC.proces |
| c6ce0 | 73 69 6e 67 2e 20 49 6e 20 74 68 69 73 20 6d 6f 64 65 2c 20 61 6c 6c 20 71 75 65 72 69 65 73 20 | sing..In.this.mode,.all.queries. |
| c6d00 | 77 69 6c 6c 20 62 65 20 76 61 6c 69 64 61 74 65 64 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 61 6e | will.be.validated.and.will.be.an |
| c6d20 | 73 77 65 72 65 64 20 77 69 74 68 20 61 20 53 45 52 56 46 41 49 4c 20 69 6e 20 63 61 73 65 20 6f | swered.with.a.SERVFAIL.in.case.o |
| c6d40 | 66 20 62 6f 67 75 73 20 64 61 74 61 2c 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 | f.bogus.data,.regardless.of.the. |
| c6d60 | 63 6c 69 65 6e 74 27 73 20 72 65 71 75 65 73 74 2e 00 2a 2a 76 6c 61 6e 2a 2a 3a 20 4f 6e 65 20 | client's.request..**vlan**:.One. |
| c6d80 | 56 4c 41 4e 20 70 65 72 20 63 6c 69 65 6e 74 2e 00 2a 2a 77 69 64 65 2a 2a 20 2d 20 55 73 65 20 | VLAN.per.client..**wide**.-.Use. |
| c6da0 | 6e 65 77 20 73 74 79 6c 65 20 6f 66 20 54 4c 56 73 20 74 6f 20 63 61 72 72 79 20 77 69 64 65 72 | new.style.of.TLVs.to.carry.wider |
| c6dc0 | 20 6d 65 74 72 69 63 2e 00 2a 2a 78 3a 78 3a 78 3a 78 2a 2a 20 2d 20 53 70 65 63 69 66 79 20 69 | .metric..**x:x:x:x**.-.Specify.i |
| c6de0 | 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 66 6f 72 20 49 50 76 36 00 2a 62 67 | nterface.identifier.for.IPv6.*bg |
| c6e00 | 70 64 2a 20 73 75 70 70 6f 72 74 73 20 4d 75 6c 74 69 70 72 6f 74 6f 63 6f 6c 20 45 78 74 65 6e | pd*.supports.Multiprotocol.Exten |
| c6e20 | 73 69 6f 6e 20 66 6f 72 20 42 47 50 2e 20 53 6f 20 69 66 20 61 20 72 65 6d 6f 74 65 20 70 65 65 | sion.for.BGP..So.if.a.remote.pee |
| c6e40 | 72 20 73 75 70 70 6f 72 74 73 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 2c 20 2a 62 67 70 64 2a 20 | r.supports.the.protocol,.*bgpd*. |
| c6e60 | 63 61 6e 20 65 78 63 68 61 6e 67 65 20 49 50 76 36 20 61 6e 64 2f 6f 72 20 6d 75 6c 74 69 63 61 | can.exchange.IPv6.and/or.multica |
| c6e80 | 73 74 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 30 00 30 20 69 66 20 6e | st.routing.information..0.0.if.n |
| c6ea0 | 6f 74 20 64 65 66 69 6e 65 64 2c 20 77 68 69 63 68 20 6d 65 61 6e 73 20 6e 6f 20 72 65 66 72 65 | ot.defined,.which.means.no.refre |
| c6ec0 | 73 68 69 6e 67 2e 00 30 20 69 66 20 6e 6f 74 20 64 65 66 69 6e 65 64 2e 00 30 30 30 30 30 30 00 | shing..0.if.not.defined..000000. |
| c6ee0 | 30 30 31 30 31 30 00 30 30 31 31 30 30 00 30 30 31 31 31 30 00 30 31 30 30 31 30 00 30 31 30 31 | 001010.001100.001110.010010.0101 |
| c6f00 | 30 30 00 30 31 30 31 31 30 00 30 31 31 30 31 30 00 30 31 31 31 30 30 00 30 31 31 31 31 30 00 30 | 00.010110.011010.011100.011110.0 |
| c6f20 | 3a 20 44 69 73 61 62 6c 65 20 44 41 44 00 31 00 31 20 69 66 20 6e 6f 74 20 64 65 66 69 6e 65 64 | :.Disable.DAD.1.1.if.not.defined |
| c6f40 | 2e 00 31 2d 74 6f 2d 31 20 4e 41 54 00 31 2e 20 43 72 65 61 74 65 20 61 6e 20 65 76 65 6e 74 20 | ..1-to-1.NAT.1..Create.an.event. |
| c6f60 | 68 61 6e 64 6c 65 72 00 31 2e 20 46 69 72 73 74 20 70 61 63 6b 65 74 20 69 73 20 72 65 63 65 69 | handler.1..First.packet.is.recei |
| c6f80 | 76 65 64 20 6f 6e 20 65 68 74 30 2c 20 77 69 74 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 | ved.on.eht0,.with.destination.ad |
| c6fa0 | 64 72 65 73 73 20 31 39 32 2e 30 2e 32 2e 31 30 30 2c 20 70 72 6f 74 6f 63 6f 6c 20 74 63 70 20 | dress.192.0.2.100,.protocol.tcp. |
| c6fc0 | 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 31 31 32 32 2e 20 41 73 73 75 6d | and.destination.port.1122..Assum |
| c6fe0 | 65 20 73 75 63 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 69 73 20 72 65 | e.such.destination.address.is.re |
| c7000 | 61 63 68 61 62 6c 65 20 74 68 72 6f 75 67 68 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 31 2e 00 | achable.through.interface.eth1.. |
| c7020 | 31 2e 20 46 69 72 73 74 20 70 61 63 6b 65 74 20 69 73 20 72 65 63 65 69 76 65 64 20 6f 6e 20 65 | 1..First.packet.is.received.on.e |
| c7040 | 74 68 30 2c 20 77 69 74 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 31 39 | th0,.with.destination.address.19 |
| c7060 | 32 2e 30 2e 32 2e 31 30 30 2c 20 70 72 6f 74 6f 63 6f 6c 20 74 63 70 20 61 6e 64 20 64 65 73 74 | 2.0.2.100,.protocol.tcp.and.dest |
| c7080 | 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 31 31 32 32 2e 20 41 73 73 75 6d 65 20 73 75 63 68 20 64 | ination.port.1122..Assume.such.d |
| c70a0 | 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 | estination.address.is.reachable. |
| c70c0 | 74 68 72 6f 75 67 68 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 31 2e 00 31 2e 20 46 69 72 73 74 | through.interface.eth1..1..First |
| c70e0 | 6c 79 2c 20 61 20 70 61 63 6b 65 74 20 69 73 20 72 65 63 65 69 76 65 64 20 6f 6e 20 65 74 68 30 | ly,.a.packet.is.received.on.eth0 |
| c7100 | 2c 20 77 69 74 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 31 39 32 2e 30 | ,.with.destination.address.192.0 |
| c7120 | 2e 32 2e 31 30 30 2c 20 70 72 6f 74 6f 63 6f 6c 20 74 63 70 20 61 6e 64 20 64 65 73 74 69 6e 61 | .2.100,.protocol.tcp.and.destina |
| c7140 | 74 69 6f 6e 20 70 6f 72 74 20 31 31 32 32 2e 20 41 73 73 75 6d 65 20 73 75 63 68 20 64 65 73 74 | tion.port.1122..Assume.such.dest |
| c7160 | 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 74 68 72 | ination.address.is.reachable.thr |
| c7180 | 6f 75 67 68 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 31 2e 00 31 2e 20 47 65 6e 65 72 61 74 65 | ough.interface.eth1..1..Generate |
| c71a0 | 20 61 20 6e 65 77 20 54 43 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 68 20 64 65 73 74 69 | .a.new.TCP.connection.with.desti |
| c71c0 | 6e 61 74 69 6f 6e 20 70 6f 72 74 20 39 39 39 30 2e 20 41 73 20 73 68 6f 77 6e 20 6e 65 78 74 2c | nation.port.9990..As.shown.next, |
| c71e0 | 20 61 20 6e 65 77 20 65 6e 74 72 79 20 77 61 73 20 61 64 64 65 64 20 74 6f 20 64 79 6e 61 6d 69 | .a.new.entry.was.added.to.dynami |
| c7200 | 63 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 20 2a 2a 50 4e 5f 30 31 2a 2a 00 31 30 00 31 30 | c.firewall.group.**PN_01**.10.10 |
| c7220 | 20 2d 20 31 30 20 4d 42 69 74 2f 73 00 31 30 2e 30 2e 30 2e 30 20 74 6f 20 31 30 2e 32 35 35 2e | .-.10.MBit/s.10.0.0.0.to.10.255. |
| c7240 | 32 35 35 2e 32 35 35 20 28 43 49 44 52 3a 20 31 30 2e 30 2e 30 2e 30 2f 38 29 00 31 30 30 20 2d | 255.255.(CIDR:.10.0.0.0/8).100.- |
| c7260 | 20 31 30 30 20 4d 42 69 74 2f 73 00 31 30 30 30 20 2d 20 31 20 47 42 69 74 2f 73 00 31 30 30 30 | .100.MBit/s.1000.-.1.GBit/s.1000 |
| c7280 | 30 20 2d 20 31 30 20 47 42 69 74 2f 73 00 31 30 30 30 30 30 20 2d 20 31 30 30 20 47 42 69 74 2f | 0.-.10.GBit/s.100000.-.100.GBit/ |
| c72a0 | 73 00 31 30 30 30 31 30 00 31 30 30 31 30 30 00 31 30 30 31 31 30 00 31 30 31 31 31 30 00 31 31 | s.100010.100100.100110.101110.11 |
| c72c0 | 00 31 31 39 00 31 32 00 31 32 31 2c 20 32 34 39 00 31 33 00 31 34 00 31 35 00 31 36 00 31 37 00 | .119.12.121,.249.13.14.15.16.17. |
| c72e0 | 31 37 32 2e 31 36 2e 30 2e 30 20 74 6f 20 31 37 32 2e 33 31 2e 32 35 35 2e 32 35 35 20 28 43 49 | 172.16.0.0.to.172.31.255.255.(CI |
| c7300 | 44 52 3a 20 31 37 32 2e 31 36 2e 30 2e 30 2f 31 32 29 00 31 38 00 31 39 00 31 39 32 2e 31 36 38 | DR:.172.16.0.0/12).18.19.192.168 |
| c7320 | 2e 30 2e 30 20 74 6f 20 31 39 32 2e 31 36 38 2e 32 35 35 2e 32 35 35 20 28 43 49 44 52 3a 20 31 | .0.0.to.192.168.255.255.(CIDR:.1 |
| c7340 | 39 32 2e 31 36 38 2e 30 2e 30 2f 31 36 29 00 31 3a 20 45 6e 61 62 6c 65 20 44 41 44 20 28 64 65 | 92.168.0.0/16).1:.Enable.DAD.(de |
| c7360 | 66 61 75 6c 74 29 00 32 00 32 2e 20 41 64 64 20 72 65 67 65 78 20 74 6f 20 74 68 65 20 73 63 72 | fault).2.2..Add.regex.to.the.scr |
| c7380 | 69 70 74 00 32 2e 20 47 65 6e 65 72 61 74 65 20 61 20 6e 65 77 20 54 43 50 20 63 6f 6e 6e 65 63 | ipt.2..Generate.a.new.TCP.connec |
| c73a0 | 74 69 6f 6e 20 77 69 74 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 39 39 39 31 2e | tion.with.destination.port.9991. |
| c73c0 | 20 41 73 20 73 68 6f 77 6e 20 6e 65 78 74 2c 20 61 20 6e 65 77 20 65 6e 74 72 79 20 77 61 73 20 | .As.shown.next,.a.new.entry.was. |
| c73e0 | 61 64 64 65 64 20 74 6f 20 64 79 6e 61 6d 69 63 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 20 | added.to.dynamic.firewall.group. |
| c7400 | 2a 2a 50 4e 5f 30 32 2a 2a 00 32 2e 20 53 69 6e 63 65 20 74 68 69 73 20 69 73 20 74 68 65 20 66 | **PN_02**.2..Since.this.is.the.f |
| c7420 | 69 72 73 74 20 70 61 63 6b 65 74 2c 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 75 73 20 6f | irst.packet,.connection.status.o |
| c7440 | 66 20 74 68 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 2c 20 73 6f 20 66 61 72 20 69 73 20 2a 2a 6e | f.this.connection,.so.far.is.**n |
| c7460 | 65 77 2a 2a 2e 20 53 6f 20 6e 65 69 74 68 65 72 20 72 75 6c 65 20 31 30 20 6e 6f 72 20 32 30 20 | ew**..So.neither.rule.10.nor.20. |
| c7480 | 61 72 65 20 76 61 6c 69 64 2e 00 32 30 00 32 31 00 32 32 00 32 33 00 32 35 30 30 20 2d 20 32 2e | are.valid..20.21.22.23.2500.-.2. |
| c74a0 | 35 20 47 42 69 74 2f 73 00 32 35 30 30 30 20 2d 20 32 35 20 47 42 69 74 2f 73 00 32 35 32 00 32 | 5.GBit/s.25000.-.25.GBit/s.252.2 |
| c74c0 | 36 00 32 38 00 32 3a 20 45 6e 61 62 6c 65 20 44 41 44 2c 20 61 6e 64 20 64 69 73 61 62 6c 65 20 | 6.28.2:.Enable.DAD,.and.disable. |
| c74e0 | 49 50 76 36 20 6f 70 65 72 61 74 69 6f 6e 20 69 66 20 4d 41 43 2d 62 61 73 65 64 20 64 75 70 6c | IPv6.operation.if.MAC-based.dupl |
| c7500 | 69 63 61 74 65 20 6c 69 6e 6b 2d 6c 6f 63 61 6c 20 61 64 64 72 65 73 73 20 68 61 73 20 62 65 65 | icate.link-local.address.has.bee |
| c7520 | 6e 20 66 6f 75 6e 64 2e 00 32 46 41 20 4f 54 50 20 73 75 70 70 6f 72 74 00 33 00 33 2e 20 41 64 | n.found..2FA.OTP.support.3.3..Ad |
| c7540 | 64 20 61 20 66 75 6c 6c 20 70 61 74 68 20 74 6f 20 74 68 65 20 73 63 72 69 70 74 00 33 2e 20 47 | d.a.full.path.to.the.script.3..G |
| c7560 | 65 6e 65 72 61 74 65 20 61 20 6e 65 77 20 54 43 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 | enerate.a.new.TCP.connection.wit |
| c7580 | 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 39 39 39 32 2e 20 41 73 20 73 68 6f 77 | h.destination.port.9992..As.show |
| c75a0 | 6e 20 6e 65 78 74 2c 20 61 20 6e 65 77 20 65 6e 74 72 79 20 77 61 73 20 61 64 64 65 64 20 74 6f | n.next,.a.new.entry.was.added.to |
| c75c0 | 20 64 79 6e 61 6d 69 63 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 20 2a 2a 41 4c 4c 4f 57 45 | .dynamic.firewall.group.**ALLOWE |
| c75e0 | 44 2a 2a 00 33 30 00 33 34 00 33 36 00 33 38 00 34 00 34 2e 20 41 64 64 20 6f 70 74 69 6f 6e 61 | D**.30.34.36.38.4.4..Add.optiona |
| c7600 | 6c 20 70 61 72 61 6d 65 74 65 72 73 00 34 2e 20 4f 6e 63 65 20 61 6e 20 61 6e 73 77 65 72 20 66 | l.parameters.4..Once.an.answer.f |
| c7620 | 72 6f 6d 20 73 65 72 76 65 72 20 31 39 32 2e 30 2e 32 2e 31 30 30 20 69 73 20 73 65 65 6e 20 69 | rom.server.192.0.2.100.is.seen.i |
| c7640 | 6e 20 6f 70 70 6f 73 69 74 65 20 64 69 72 65 63 74 69 6f 6e 2c 20 63 6f 6e 6e 65 63 74 69 6f 6e | n.opposite.direction,.connection |
| c7660 | 20 73 74 61 74 65 20 77 69 6c 6c 20 62 65 20 74 72 69 67 67 65 72 65 64 20 74 6f 20 2a 2a 65 73 | .state.will.be.triggered.to.**es |
| c7680 | 74 61 62 6c 69 73 68 65 64 2a 2a 2c 20 73 6f 20 74 68 69 73 20 72 65 70 6c 79 20 69 73 20 61 63 | tablished**,.so.this.reply.is.ac |
| c76a0 | 63 65 70 74 65 64 20 69 6e 20 72 75 6c 65 20 32 30 2e 00 34 2e 20 4f 6e 63 65 20 61 6e 73 77 65 | cepted.in.rule.20..4..Once.answe |
| c76c0 | 72 20 66 72 6f 6d 20 73 65 72 76 65 72 20 31 39 32 2e 30 2e 32 2e 31 30 30 20 69 73 20 73 65 65 | r.from.server.192.0.2.100.is.see |
| c76e0 | 6e 20 69 6e 20 6f 70 70 6f 73 69 74 65 20 64 69 72 65 63 74 69 6f 6e 2c 20 63 6f 6e 6e 65 63 74 | n.in.opposite.direction,.connect |
| c7700 | 69 6f 6e 20 73 74 61 74 65 20 77 69 6c 6c 20 62 65 20 74 72 69 67 67 65 72 65 64 20 74 6f 20 2a | ion.state.will.be.triggered.to.* |
| c7720 | 2a 65 73 74 61 62 6c 69 73 68 65 64 2a 2a 2c 20 73 6f 20 74 68 69 73 20 72 65 70 6c 79 20 69 73 | *established**,.so.this.reply.is |
| c7740 | 20 61 63 63 65 70 74 65 64 20 69 6e 20 72 75 6c 65 20 31 30 2e 00 34 2e 20 4f 6e 63 65 20 61 6e | .accepted.in.rule.10..4..Once.an |
| c7760 | 73 77 65 72 20 66 72 6f 6d 20 73 65 72 76 65 72 20 31 39 32 2e 30 2e 32 2e 31 30 30 20 69 73 20 | swer.from.server.192.0.2.100.is. |
| c7780 | 73 65 65 6e 20 69 6e 20 6f 70 70 6f 73 69 74 65 20 64 69 72 65 63 74 69 6f 6e 2c 20 63 6f 6e 6e | seen.in.opposite.direction,.conn |
| c77a0 | 65 63 74 69 6f 6e 20 73 74 61 74 65 20 77 69 6c 6c 20 62 65 20 74 72 69 67 67 65 72 65 64 20 74 | ection.state.will.be.triggered.t |
| c77c0 | 6f 20 2a 2a 65 73 74 61 62 6c 69 73 68 65 64 2a 2a 2c 20 73 6f 20 74 68 69 73 20 72 65 70 6c 79 | o.**established**,.so.this.reply |
| c77e0 | 20 69 73 20 61 63 63 65 70 74 65 64 20 69 6e 20 72 75 6c 65 20 32 30 2e 00 34 30 20 4d 48 7a 20 | .is.accepted.in.rule.20..40.MHz. |
| c7800 | 63 68 61 6e 6e 65 6c 73 20 6d 61 79 20 73 77 69 74 63 68 20 74 68 65 69 72 20 70 72 69 6d 61 72 | channels.may.switch.their.primar |
| c7820 | 79 20 61 6e 64 20 73 65 63 6f 6e 64 61 72 79 20 63 68 61 6e 6e 65 6c 73 20 69 66 20 6e 65 65 64 | y.and.secondary.channels.if.need |
| c7840 | 65 64 20 6f 72 20 63 72 65 61 74 69 6f 6e 20 6f 66 20 34 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c | ed.or.creation.of.40.MHz.channel |
| c7860 | 20 6d 61 79 62 65 20 72 65 6a 65 63 74 65 64 20 62 61 73 65 64 20 6f 6e 20 6f 76 65 72 6c 61 70 | .maybe.rejected.based.on.overlap |
| c7880 | 70 69 6e 67 20 42 53 53 65 73 2e 20 54 68 65 73 65 20 63 68 61 6e 67 65 73 20 61 72 65 20 64 6f | ping.BSSes..These.changes.are.do |
| c78a0 | 6e 65 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 77 68 65 6e 20 68 6f 73 74 61 70 64 20 69 73 | ne.automatically.when.hostapd.is |
| c78c0 | 20 73 65 74 74 69 6e 67 20 75 70 20 74 68 65 20 34 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 2e 00 | .setting.up.the.40.MHz.channel.. |
| c78e0 | 34 30 30 30 30 20 2d 20 34 30 20 47 42 69 74 2f 73 00 34 32 00 34 34 00 34 36 00 35 00 35 20 69 | 40000.-.40.GBit/s.42.44.46.5.5.i |
| c7900 | 66 20 6e 6f 74 20 64 65 66 69 6e 65 64 2e 00 35 2e 20 53 65 63 6f 6e 64 20 70 61 63 6b 65 74 20 | f.not.defined..5..Second.packet. |
| c7920 | 66 6f 72 20 74 68 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 72 65 63 65 69 76 65 64 20 | for.this.connection.is.received. |
| c7940 | 62 79 20 74 68 65 20 72 6f 75 74 65 72 2e 20 53 69 6e 63 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 | by.the.router..Since.connection. |
| c7960 | 73 74 61 74 65 20 69 73 20 2a 2a 65 73 74 61 62 6c 69 73 68 65 64 2a 2a 2c 20 74 68 65 6e 20 72 | state.is.**established**,.then.r |
| c7980 | 75 6c 65 20 31 30 20 69 73 20 68 69 74 2c 20 61 6e 64 20 61 20 6e 65 77 20 65 6e 74 72 79 20 69 | ule.10.is.hit,.and.a.new.entry.i |
| c79a0 | 6e 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 46 54 30 31 20 69 73 20 61 64 64 65 64 20 66 6f | n.the.flowtable.FT01.is.added.fo |
| c79c0 | 72 20 74 68 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 35 2e 20 54 68 65 20 73 65 63 6f 6e 64 | r.this.connection..5..The.second |
| c79e0 | 20 70 61 63 6b 65 74 20 66 6f 72 20 74 68 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 72 | .packet.for.this.connection.is.r |
| c7a00 | 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 2e 20 53 69 6e 63 65 20 63 6f 6e | eceived.by.the.router..Since.con |
| c7a20 | 6e 65 63 74 69 6f 6e 20 73 74 61 74 65 20 69 73 20 2a 2a 65 73 74 61 62 6c 69 73 68 65 64 2a 2a | nection.state.is.**established** |
| c7a40 | 2c 20 74 68 65 6e 20 72 75 6c 65 20 31 30 20 69 73 20 68 69 74 2c 20 61 6e 64 20 61 20 6e 65 77 | ,.then.rule.10.is.hit,.and.a.new |
| c7a60 | 20 65 6e 74 72 79 20 69 6e 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 46 54 30 31 20 69 73 20 | .entry.in.the.flowtable.FT01.is. |
| c7a80 | 61 64 64 65 64 20 66 6f 72 20 74 68 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 35 30 30 30 20 | added.for.this.connection..5000. |
| c7aa0 | 2d 20 35 20 47 42 69 74 2f 73 00 35 30 30 30 30 20 2d 20 35 30 20 47 42 69 74 2f 73 00 35 34 00 | -.5.GBit/s.50000.-.50.GBit/s.54. |
| c7ac0 | 36 00 36 2e 20 41 6c 6c 20 73 75 62 73 65 63 75 65 6e 74 20 70 61 63 6b 65 74 73 20 77 69 6c 6c | 6.6..All.subsecuent.packets.will |
| c7ae0 | 20 73 6b 69 70 20 74 72 61 64 69 74 69 6f 6e 61 6c 20 70 61 74 68 2c 20 61 6e 64 20 77 69 6c 6c | .skip.traditional.path,.and.will |
| c7b00 | 20 62 65 20 6f 66 66 6c 6f 61 64 65 64 20 61 6e 64 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 2a | .be.offloaded.and.will.use.the.* |
| c7b20 | 2a 46 61 73 74 20 50 61 74 68 2a 2a 2e 00 36 2e 20 41 6c 6c 20 74 68 65 20 66 6f 6c 6c 6f 77 69 | *Fast.Path**..6..All.the.followi |
| c7b40 | 6e 67 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 73 6b 69 70 20 74 68 65 20 74 72 61 64 69 74 69 | ng.packets.will.skip.the.traditi |
| c7b60 | 6f 6e 61 6c 20 70 61 74 68 2c 20 77 69 6c 6c 20 62 65 20 6f 66 66 6c 6f 61 64 65 64 20 61 6e 64 | onal.path,.will.be.offloaded.and |
| c7b80 | 20 75 73 65 20 74 68 65 20 2a 2a 46 61 73 74 20 50 61 74 68 2a 2a 2e 00 36 2e 20 41 6c 6c 20 74 | .use.the.**Fast.Path**..6..All.t |
| c7ba0 | 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 73 6b 69 70 20 74 | he.following.packets.will.skip.t |
| c7bc0 | 72 61 64 69 74 69 6f 6e 61 6c 20 70 61 74 68 2c 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 6f 66 66 | raditional.path,.and.will.be.off |
| c7be0 | 6c 6f 61 64 65 64 20 61 6e 64 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 2a 2a 46 61 73 74 20 50 | loaded.and.will.use.the.**Fast.P |
| c7c00 | 61 74 68 2a 2a 2e 00 36 34 35 31 32 20 2f 20 31 30 30 30 20 e2 89 88 20 36 34 20 73 75 62 73 63 | ath**..64512./.1000.....64.subsc |
| c7c20 | 72 69 62 65 72 73 20 70 65 72 20 70 75 62 6c 69 63 20 49 50 00 36 36 00 36 36 25 20 6f 66 20 74 | ribers.per.public.IP.66.66%.of.t |
| c7c40 | 72 61 66 66 69 63 20 69 73 20 72 6f 75 74 65 64 20 74 6f 20 65 74 68 30 2c 20 65 74 68 31 20 67 | raffic.is.routed.to.eth0,.eth1.g |
| c7c60 | 65 74 73 20 33 33 25 20 6f 66 20 74 72 61 66 66 69 63 2e 00 36 37 00 36 39 00 36 69 6e 34 20 28 | ets.33%.of.traffic..67.69.6in4.( |
| c7c80 | 53 49 54 29 00 36 69 6e 34 20 75 73 65 73 20 74 75 6e 6e 65 6c 69 6e 67 20 74 6f 20 65 6e 63 61 | SIT).6in4.uses.tunneling.to.enca |
| c7ca0 | 70 73 75 6c 61 74 65 20 49 50 76 36 20 74 72 61 66 66 69 63 20 6f 76 65 72 20 49 50 76 34 20 6c | psulate.IPv6.traffic.over.IPv4.l |
| c7cc0 | 69 6e 6b 73 20 61 73 20 64 65 66 69 6e 65 64 20 69 6e 20 3a 72 66 63 3a 60 34 32 31 33 60 2e 20 | inks.as.defined.in.:rfc:`4213`.. |
| c7ce0 | 54 68 65 20 36 69 6e 34 20 74 72 61 66 66 69 63 20 69 73 20 73 65 6e 74 20 6f 76 65 72 20 49 50 | The.6in4.traffic.is.sent.over.IP |
| c7d00 | 76 34 20 69 6e 73 69 64 65 20 49 50 76 34 20 70 61 63 6b 65 74 73 20 77 68 6f 73 65 20 49 50 20 | v4.inside.IPv4.packets.whose.IP. |
| c7d20 | 68 65 61 64 65 72 73 20 68 61 76 65 20 74 68 65 20 49 50 20 70 72 6f 74 6f 63 6f 6c 20 6e 75 6d | headers.have.the.IP.protocol.num |
| c7d40 | 62 65 72 20 73 65 74 20 74 6f 20 34 31 2e 20 54 68 69 73 20 70 72 6f 74 6f 63 6f 6c 20 6e 75 6d | ber.set.to.41..This.protocol.num |
| c7d60 | 62 65 72 20 69 73 20 73 70 65 63 69 66 69 63 61 6c 6c 79 20 64 65 73 69 67 6e 61 74 65 64 20 66 | ber.is.specifically.designated.f |
| c7d80 | 6f 72 20 49 50 76 36 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 2c 20 74 68 65 20 49 50 76 34 20 | or.IPv6.encapsulation,.the.IPv4. |
| c7da0 | 70 61 63 6b 65 74 20 68 65 61 64 65 72 20 69 73 20 69 6d 6d 65 64 69 61 74 65 6c 79 20 66 6f 6c | packet.header.is.immediately.fol |
| c7dc0 | 6c 6f 77 65 64 20 62 79 20 74 68 65 20 49 50 76 36 20 70 61 63 6b 65 74 20 62 65 69 6e 67 20 63 | lowed.by.the.IPv6.packet.being.c |
| c7de0 | 61 72 72 69 65 64 2e 20 54 68 65 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 6f 76 65 72 68 65 | arried..The.encapsulation.overhe |
| c7e00 | 61 64 20 69 73 20 74 68 65 20 73 69 7a 65 20 6f 66 20 74 68 65 20 49 50 76 34 20 68 65 61 64 65 | ad.is.the.size.of.the.IPv4.heade |
| c7e20 | 72 20 6f 66 20 32 30 20 62 79 74 65 73 2c 20 74 68 65 72 65 66 6f 72 65 20 77 69 74 68 20 61 6e | r.of.20.bytes,.therefore.with.an |
| c7e40 | 20 4d 54 55 20 6f 66 20 31 35 30 30 20 62 79 74 65 73 2c 20 49 50 76 36 20 70 61 63 6b 65 74 73 | .MTU.of.1500.bytes,.IPv6.packets |
| c7e60 | 20 6f 66 20 31 34 38 30 20 62 79 74 65 73 20 63 61 6e 20 62 65 20 73 65 6e 74 20 77 69 74 68 6f | .of.1480.bytes.can.be.sent.witho |
| c7e80 | 75 74 20 66 72 61 67 6d 65 6e 74 61 74 69 6f 6e 2e 20 54 68 69 73 20 74 75 6e 6e 65 6c 69 6e 67 | ut.fragmentation..This.tunneling |
| c7ea0 | 20 74 65 63 68 6e 69 71 75 65 20 69 73 20 66 72 65 71 75 65 6e 74 6c 79 20 75 73 65 64 20 62 79 | .technique.is.frequently.used.by |
| c7ec0 | 20 49 50 76 36 20 74 75 6e 6e 65 6c 20 62 72 6f 6b 65 72 73 20 6c 69 6b 65 20 60 48 75 72 72 69 | .IPv6.tunnel.brokers.like.`Hurri |
| c7ee0 | 63 61 6e 65 20 45 6c 65 63 74 72 69 63 60 5f 2e 00 37 00 37 30 00 38 00 38 30 32 2e 31 71 20 56 | cane.Electric`_..7.70.8.802.1q.V |
| c7f00 | 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 72 65 70 72 65 73 65 6e 74 65 64 20 61 | LAN.interfaces.are.represented.a |
| c7f20 | 73 20 76 69 72 74 75 61 6c 20 73 75 62 2d 69 6e 74 65 72 66 61 63 65 73 20 69 6e 20 56 79 4f 53 | s.virtual.sub-interfaces.in.VyOS |
| c7f40 | 2e 20 54 68 65 20 74 65 72 6d 20 75 73 65 64 20 66 6f 72 20 74 68 69 73 20 69 73 20 60 60 76 69 | ..The.term.used.for.this.is.``vi |
| c7f60 | 66 60 60 2e 00 39 00 3a 61 62 62 72 3a 60 41 46 49 20 28 41 64 64 72 65 73 73 20 66 61 6d 69 6c | f``..9.:abbr:`AFI.(Address.famil |
| c7f80 | 79 20 61 75 74 68 6f 72 69 74 79 20 69 64 65 6e 74 69 66 69 65 72 29 60 20 2d 20 60 60 34 39 60 | y.authority.identifier)`.-.``49` |
| c7fa0 | 60 20 54 68 65 20 41 46 49 20 76 61 6c 75 65 20 34 39 20 69 73 20 77 68 61 74 20 49 53 2d 49 53 | `.The.AFI.value.49.is.what.IS-IS |
| c7fc0 | 20 75 73 65 73 20 66 6f 72 20 70 72 69 76 61 74 65 20 61 64 64 72 65 73 73 69 6e 67 2e 00 3a 61 | .uses.for.private.addressing..:a |
| c7fe0 | 62 62 72 3a 60 41 46 49 20 28 41 64 64 72 65 73 73 20 66 61 6d 69 6c 79 20 61 75 74 68 6f 72 69 | bbr:`AFI.(Address.family.authori |
| c8000 | 74 79 20 69 64 65 6e 74 69 66 69 65 72 29 60 20 2d 20 60 60 34 39 60 60 20 54 68 65 20 41 46 49 | ty.identifier)`.-.``49``.The.AFI |
| c8020 | 20 76 61 6c 75 65 20 34 39 20 69 73 20 77 68 61 74 20 4f 70 65 6e 46 61 62 72 69 63 20 75 73 65 | .value.49.is.what.OpenFabric.use |
| c8040 | 73 20 66 6f 72 20 70 72 69 76 61 74 65 20 61 64 64 72 65 73 73 69 6e 67 2e 00 3a 61 62 62 72 3a | s.for.private.addressing..:abbr: |
| c8060 | 60 41 52 50 20 28 41 64 64 72 65 73 73 20 52 65 73 6f 6c 75 74 69 6f 6e 20 50 72 6f 74 6f 63 6f | `ARP.(Address.Resolution.Protoco |
| c8080 | 6c 29 60 20 69 73 20 61 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 20 70 72 6f 74 6f 63 6f 6c 20 | l)`.is.a.communication.protocol. |
| c80a0 | 75 73 65 64 20 66 6f 72 20 64 69 73 63 6f 76 65 72 69 6e 67 20 74 68 65 20 6c 69 6e 6b 20 6c 61 | used.for.discovering.the.link.la |
| c80c0 | 79 65 72 20 61 64 64 72 65 73 73 2c 20 73 75 63 68 20 61 73 20 61 20 4d 41 43 20 61 64 64 72 65 | yer.address,.such.as.a.MAC.addre |
| c80e0 | 73 73 2c 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 61 20 67 69 76 65 6e 20 69 6e 74 65 | ss,.associated.with.a.given.inte |
| c8100 | 72 6e 65 74 20 6c 61 79 65 72 20 61 64 64 72 65 73 73 2c 20 74 79 70 69 63 61 6c 6c 79 20 61 6e | rnet.layer.address,.typically.an |
| c8120 | 20 49 50 76 34 20 61 64 64 72 65 73 73 2e 20 54 68 69 73 20 6d 61 70 70 69 6e 67 20 69 73 20 61 | .IPv4.address..This.mapping.is.a |
| c8140 | 20 63 72 69 74 69 63 61 6c 20 66 75 6e 63 74 69 6f 6e 20 69 6e 20 74 68 65 20 49 6e 74 65 72 6e | .critical.function.in.the.Intern |
| c8160 | 65 74 20 70 72 6f 74 6f 63 6f 6c 20 73 75 69 74 65 2e 20 41 52 50 20 77 61 73 20 64 65 66 69 6e | et.protocol.suite..ARP.was.defin |
| c8180 | 65 64 20 69 6e 20 31 39 38 32 20 62 79 20 3a 72 66 63 3a 60 38 32 36 60 20 77 68 69 63 68 20 69 | ed.in.1982.by.:rfc:`826`.which.i |
| c81a0 | 73 20 49 6e 74 65 72 6e 65 74 20 53 74 61 6e 64 61 72 64 20 53 54 44 20 33 37 2e 00 3a 61 62 62 | s.Internet.Standard.STD.37..:abb |
| c81c0 | 72 3a 60 42 46 44 20 28 42 69 64 69 72 65 63 74 69 6f 6e 61 6c 20 46 6f 72 77 61 72 64 69 6e 67 | r:`BFD.(Bidirectional.Forwarding |
| c81e0 | 20 44 65 74 65 63 74 69 6f 6e 29 60 20 69 73 20 64 65 73 63 72 69 62 65 64 20 61 6e 64 20 65 78 | .Detection)`.is.described.and.ex |
| c8200 | 74 65 6e 64 65 64 20 62 79 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 52 46 43 73 3a 20 3a 72 | tended.by.the.following.RFCs:.:r |
| c8220 | 66 63 3a 60 35 38 38 30 60 2c 20 3a 72 66 63 3a 60 35 38 38 31 60 20 61 6e 64 20 3a 72 66 63 3a | fc:`5880`,.:rfc:`5881`.and.:rfc: |
| c8240 | 60 35 38 38 33 60 2e 00 3a 61 62 62 72 3a 60 42 47 50 20 28 42 6f 72 64 65 72 20 47 61 74 65 77 | `5883`..:abbr:`BGP.(Border.Gatew |
| c8260 | 61 79 20 50 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 6f 6e 65 20 6f 66 20 74 68 65 20 45 78 74 65 | ay.Protocol)`.is.one.of.the.Exte |
| c8280 | 72 69 6f 72 20 47 61 74 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c 73 20 61 6e 64 20 74 68 65 20 64 | rior.Gateway.Protocols.and.the.d |
| c82a0 | 65 20 66 61 63 74 6f 20 73 74 61 6e 64 61 72 64 20 69 6e 74 65 72 64 6f 6d 61 69 6e 20 72 6f 75 | e.facto.standard.interdomain.rou |
| c82c0 | 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 2e 20 54 68 65 20 6c 61 74 65 73 74 20 42 47 50 20 76 65 | ting.protocol..The.latest.BGP.ve |
| c82e0 | 72 73 69 6f 6e 20 69 73 20 34 2e 20 42 47 50 2d 34 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 | rsion.is.4..BGP-4.is.described.i |
| c8300 | 6e 20 3a 72 66 63 3a 60 31 37 37 31 60 20 61 6e 64 20 75 70 64 61 74 65 64 20 62 79 20 3a 72 66 | n.:rfc:`1771`.and.updated.by.:rf |
| c8320 | 63 3a 60 34 32 37 31 60 2e 20 3a 72 66 63 3a 60 32 38 35 38 60 20 61 64 64 73 20 6d 75 6c 74 69 | c:`4271`..:rfc:`2858`.adds.multi |
| c8340 | 70 72 6f 74 6f 63 6f 6c 20 73 75 70 70 6f 72 74 20 74 6f 20 42 47 50 2e 00 3a 61 62 62 72 3a 60 | protocol.support.to.BGP..:abbr:` |
| c8360 | 43 47 4e 41 54 20 28 43 61 72 72 69 65 72 2d 47 72 61 64 65 20 4e 65 74 77 6f 72 6b 20 41 64 64 | CGNAT.(Carrier-Grade.Network.Add |
| c8380 | 72 65 73 73 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 2c 20 61 6c 73 6f 20 6b 6e 6f 77 6e 20 | ress.Translation)`.,.also.known. |
| c83a0 | 61 73 20 4c 61 72 67 65 2d 53 63 61 6c 65 20 4e 41 54 20 28 4c 53 4e 29 2c 20 69 73 20 61 20 74 | as.Large-Scale.NAT.(LSN),.is.a.t |
| c83c0 | 79 70 65 20 6f 66 20 6e 65 74 77 6f 72 6b 20 61 64 64 72 65 73 73 20 74 72 61 6e 73 6c 61 74 69 | ype.of.network.address.translati |
| c83e0 | 6f 6e 20 75 73 65 64 20 62 79 20 49 6e 74 65 72 6e 65 74 20 53 65 72 76 69 63 65 20 50 72 6f 76 | on.used.by.Internet.Service.Prov |
| c8400 | 69 64 65 72 73 20 28 49 53 50 73 29 20 74 6f 20 65 6e 61 62 6c 65 20 6d 75 6c 74 69 70 6c 65 20 | iders.(ISPs).to.enable.multiple. |
| c8420 | 70 72 69 76 61 74 65 20 49 50 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 73 68 61 72 65 20 61 20 | private.IP.addresses.to.share.a. |
| c8440 | 73 69 6e 67 6c 65 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 2e 20 54 68 69 73 20 74 | single.public.IP.address..This.t |
| c8460 | 65 63 68 6e 69 71 75 65 20 68 65 6c 70 73 20 74 6f 20 63 6f 6e 73 65 72 76 65 20 74 68 65 20 6c | echnique.helps.to.conserve.the.l |
| c8480 | 69 6d 69 74 65 64 20 49 50 76 34 20 61 64 64 72 65 73 73 20 73 70 61 63 65 2e 20 54 68 65 20 31 | imited.IPv4.address.space..The.1 |
| c84a0 | 30 30 2e 36 34 2e 30 2e 30 2f 31 30 20 61 64 64 72 65 73 73 20 62 6c 6f 63 6b 20 69 73 20 72 65 | 00.64.0.0/10.address.block.is.re |
| c84c0 | 73 65 72 76 65 64 20 66 6f 72 20 75 73 65 20 69 6e 20 63 61 72 72 69 65 72 2d 67 72 61 64 65 20 | served.for.use.in.carrier-grade. |
| c84e0 | 4e 41 54 00 3a 61 62 62 72 3a 60 43 4b 4e 20 28 4d 41 43 73 65 63 20 63 6f 6e 6e 65 63 74 69 76 | NAT.:abbr:`CKN.(MACsec.connectiv |
| c8500 | 69 74 79 20 61 73 73 6f 63 69 61 74 69 6f 6e 20 6e 61 6d 65 29 60 20 6b 65 79 00 3a 61 62 62 72 | ity.association.name)`.key.:abbr |
| c8520 | 3a 60 44 4d 56 50 4e 20 28 44 79 6e 61 6d 69 63 20 4d 75 6c 74 69 70 6f 69 6e 74 20 56 69 72 74 | :`DMVPN.(Dynamic.Multipoint.Virt |
| c8540 | 75 61 6c 20 50 72 69 76 61 74 65 20 4e 65 74 77 6f 72 6b 29 60 20 69 73 20 61 20 64 79 6e 61 6d | ual.Private.Network)`.is.a.dynam |
| c8560 | 69 63 20 3a 61 62 62 72 3a 60 56 50 4e 20 28 56 69 72 74 75 61 6c 20 50 72 69 76 61 74 65 20 4e | ic.:abbr:`VPN.(Virtual.Private.N |
| c8580 | 65 74 77 6f 72 6b 29 60 20 74 65 63 68 6e 6f 6c 6f 67 79 20 6f 72 69 67 69 6e 61 6c 6c 79 20 64 | etwork)`.technology.originally.d |
| c85a0 | 65 76 65 6c 6f 70 65 64 20 62 79 20 43 69 73 63 6f 2e 20 57 68 69 6c 65 20 74 68 65 69 72 20 69 | eveloped.by.Cisco..While.their.i |
| c85c0 | 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 77 61 73 20 73 6f 6d 65 77 68 61 74 20 70 72 6f 70 72 | mplementation.was.somewhat.propr |
| c85e0 | 69 65 74 61 72 79 2c 20 74 68 65 20 75 6e 64 65 72 6c 79 69 6e 67 20 74 65 63 68 6e 6f 6c 6f 67 | ietary,.the.underlying.technolog |
| c8600 | 69 65 73 20 61 72 65 20 61 63 74 75 61 6c 6c 79 20 73 74 61 6e 64 61 72 64 73 20 62 61 73 65 64 | ies.are.actually.standards.based |
| c8620 | 2e 20 54 68 65 20 74 68 72 65 65 20 74 65 63 68 6e 6f 6c 6f 67 69 65 73 20 61 72 65 3a 00 3a 61 | ..The.three.technologies.are:.:a |
| c8640 | 62 62 72 3a 60 44 4e 41 54 20 28 44 65 73 74 69 6e 61 74 69 6f 6e 20 4e 65 74 77 6f 72 6b 20 41 | bbr:`DNAT.(Destination.Network.A |
| c8660 | 64 64 72 65 73 73 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 63 68 61 6e 67 65 73 20 74 68 65 | ddress.Translation)`.changes.the |
| c8680 | 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 6f 66 20 70 61 63 6b 65 74 73 20 | .destination.address.of.packets. |
| c86a0 | 70 61 73 73 69 6e 67 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 6f 75 74 65 72 2c 20 77 68 69 6c | passing.through.the.router,.whil |
| c86c0 | 65 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 2d 6e 61 74 60 20 63 68 61 6e 67 65 73 20 74 68 65 20 | e.:ref:`source-nat`.changes.the. |
| c86e0 | 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 70 61 63 6b 65 74 73 2e 20 44 4e 41 54 20 | source.address.of.packets..DNAT. |
| c8700 | 69 73 20 74 79 70 69 63 61 6c 6c 79 20 75 73 65 64 20 77 68 65 6e 20 61 6e 20 65 78 74 65 72 6e | is.typically.used.when.an.extern |
| c8720 | 61 6c 20 28 70 75 62 6c 69 63 29 20 68 6f 73 74 20 6e 65 65 64 73 20 74 6f 20 69 6e 69 74 69 61 | al.(public).host.needs.to.initia |
| c8740 | 74 65 20 61 20 73 65 73 73 69 6f 6e 20 77 69 74 68 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 28 70 | te.a.session.with.an.internal.(p |
| c8760 | 72 69 76 61 74 65 29 20 68 6f 73 74 2e 20 41 20 63 75 73 74 6f 6d 65 72 20 6e 65 65 64 73 20 74 | rivate).host..A.customer.needs.t |
| c8780 | 6f 20 61 63 63 65 73 73 20 61 20 70 72 69 76 61 74 65 20 73 65 72 76 69 63 65 20 62 65 68 69 6e | o.access.a.private.service.behin |
| c87a0 | 64 20 74 68 65 20 72 6f 75 74 65 72 73 20 70 75 62 6c 69 63 20 49 50 2e 20 41 20 63 6f 6e 6e 65 | d.the.routers.public.IP..A.conne |
| c87c0 | 63 74 69 6f 6e 20 69 73 20 65 73 74 61 62 6c 69 73 68 65 64 20 77 69 74 68 20 74 68 65 20 72 6f | ction.is.established.with.the.ro |
| c87e0 | 75 74 65 72 73 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 20 6f 6e 20 61 20 77 65 6c | uters.public.IP.address.on.a.wel |
| c8800 | 6c 20 6b 6e 6f 77 6e 20 70 6f 72 74 20 61 6e 64 20 74 68 75 73 20 61 6c 6c 20 74 72 61 66 66 69 | l.known.port.and.thus.all.traffi |
| c8820 | 63 20 66 6f 72 20 74 68 69 73 20 70 6f 72 74 20 69 73 20 72 65 77 72 69 74 74 65 6e 20 74 6f 20 | c.for.this.port.is.rewritten.to. |
| c8840 | 61 64 64 72 65 73 73 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 28 70 72 69 76 61 74 65 29 20 68 | address.the.internal.(private).h |
| c8860 | 6f 73 74 2e 00 3a 61 62 62 72 3a 60 45 41 50 20 28 45 78 74 65 6e 73 69 62 6c 65 20 41 75 74 68 | ost..:abbr:`EAP.(Extensible.Auth |
| c8880 | 65 6e 74 69 63 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 29 60 20 6f 76 65 72 20 4c 41 4e 20 28 | entication.Protocol)`.over.LAN.( |
| c88a0 | 45 41 50 6f 4c 29 20 69 73 20 61 20 6e 65 74 77 6f 72 6b 20 70 6f 72 74 20 61 75 74 68 65 6e 74 | EAPoL).is.a.network.port.authent |
| c88c0 | 69 63 61 74 69 6f 6e 20 70 72 6f 74 6f 63 6f 6c 20 75 73 65 64 20 69 6e 20 49 45 45 45 20 38 30 | ication.protocol.used.in.IEEE.80 |
| c88e0 | 32 2e 31 58 20 28 50 6f 72 74 20 42 61 73 65 64 20 4e 65 74 77 6f 72 6b 20 41 63 63 65 73 73 20 | 2.1X.(Port.Based.Network.Access. |
| c8900 | 43 6f 6e 74 72 6f 6c 29 20 64 65 76 65 6c 6f 70 65 64 20 74 6f 20 67 69 76 65 20 61 20 67 65 6e | Control).developed.to.give.a.gen |
| c8920 | 65 72 69 63 20 6e 65 74 77 6f 72 6b 20 73 69 67 6e 2d 6f 6e 20 74 6f 20 61 63 63 65 73 73 20 6e | eric.network.sign-on.to.access.n |
| c8940 | 65 74 77 6f 72 6b 20 72 65 73 6f 75 72 63 65 73 2e 00 3a 61 62 62 72 3a 60 45 55 49 2d 36 34 20 | etwork.resources..:abbr:`EUI-64. |
| c8960 | 28 36 34 2d 42 69 74 20 45 78 74 65 6e 64 65 64 20 55 6e 69 71 75 65 20 49 64 65 6e 74 69 66 69 | (64-Bit.Extended.Unique.Identifi |
| c8980 | 65 72 29 60 20 61 73 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 3a 72 66 63 3a 60 34 32 39 31 60 | er)`.as.specified.in.:rfc:`4291` |
| c89a0 | 20 61 6c 6c 6f 77 73 20 61 20 68 6f 73 74 20 74 6f 20 61 73 73 69 67 6e 20 69 74 65 73 6c 66 20 | .allows.a.host.to.assign.iteslf. |
| c89c0 | 61 20 75 6e 69 71 75 65 20 36 34 2d 42 69 74 20 49 50 76 36 20 61 64 64 72 65 73 73 2e 00 3a 61 | a.unique.64-Bit.IPv6.address..:a |
| c89e0 | 62 62 72 3a 60 47 45 4e 45 56 45 20 28 47 65 6e 65 72 69 63 20 4e 65 74 77 6f 72 6b 20 56 69 72 | bbr:`GENEVE.(Generic.Network.Vir |
| c8a00 | 74 75 61 6c 69 7a 61 74 69 6f 6e 20 45 6e 63 61 70 73 75 6c 61 74 69 6f 6e 29 60 20 73 75 70 70 | tualization.Encapsulation)`.supp |
| c8a20 | 6f 72 74 73 20 61 6c 6c 20 6f 66 20 74 68 65 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 6f 66 20 | orts.all.of.the.capabilities.of. |
| c8a40 | 3a 61 62 62 72 3a 60 56 58 4c 41 4e 20 28 56 69 72 74 75 61 6c 20 45 78 74 65 6e 73 69 62 6c 65 | :abbr:`VXLAN.(Virtual.Extensible |
| c8a60 | 20 4c 41 4e 29 60 2c 20 3a 61 62 62 72 3a 60 4e 56 47 52 45 20 28 4e 65 74 77 6f 72 6b 20 56 69 | .LAN)`,.:abbr:`NVGRE.(Network.Vi |
| c8a80 | 72 74 75 61 6c 69 7a 61 74 69 6f 6e 20 75 73 69 6e 67 20 47 65 6e 65 72 69 63 20 52 6f 75 74 69 | rtualization.using.Generic.Routi |
| c8aa0 | 6e 67 20 45 6e 63 61 70 73 75 6c 61 74 69 6f 6e 29 60 2c 20 61 6e 64 20 3a 61 62 62 72 3a 60 53 | ng.Encapsulation)`,.and.:abbr:`S |
| c8ac0 | 54 54 20 28 53 74 61 74 65 6c 65 73 73 20 54 72 61 6e 73 70 6f 72 74 20 54 75 6e 6e 65 6c 69 6e | TT.(Stateless.Transport.Tunnelin |
| c8ae0 | 67 29 60 20 61 6e 64 20 77 61 73 20 64 65 73 69 67 6e 65 64 20 74 6f 20 6f 76 65 72 63 6f 6d 65 | g)`.and.was.designed.to.overcome |
| c8b00 | 20 74 68 65 69 72 20 70 65 72 63 65 69 76 65 64 20 6c 69 6d 69 74 61 74 69 6f 6e 73 2e 20 4d 61 | .their.perceived.limitations..Ma |
| c8b20 | 6e 79 20 62 65 6c 69 65 76 65 20 47 45 4e 45 56 45 20 63 6f 75 6c 64 20 65 76 65 6e 74 75 61 6c | ny.believe.GENEVE.could.eventual |
| c8b40 | 6c 79 20 72 65 70 6c 61 63 65 20 74 68 65 73 65 20 65 61 72 6c 69 65 72 20 66 6f 72 6d 61 74 73 | ly.replace.these.earlier.formats |
| c8b60 | 20 65 6e 74 69 72 65 6c 79 2e 00 3a 61 62 62 72 3a 60 47 52 45 20 28 47 65 6e 65 72 69 63 20 52 | .entirely..:abbr:`GRE.(Generic.R |
| c8b80 | 6f 75 74 69 6e 67 20 45 6e 63 61 70 73 75 6c 61 74 69 6f 6e 29 60 2c 20 47 52 45 2f 49 50 73 65 | outing.Encapsulation)`,.GRE/IPse |
| c8ba0 | 63 20 28 6f 72 20 49 50 49 50 2f 49 50 73 65 63 2c 20 53 49 54 2f 49 50 73 65 63 2c 20 6f 72 20 | c.(or.IPIP/IPsec,.SIT/IPsec,.or. |
| c8bc0 | 61 6e 79 20 6f 74 68 65 72 20 73 74 61 74 65 6c 65 73 73 20 74 75 6e 6e 65 6c 20 70 72 6f 74 6f | any.other.stateless.tunnel.proto |
| c8be0 | 63 6f 6c 20 6f 76 65 72 20 49 50 73 65 63 29 20 69 73 20 74 68 65 20 75 73 75 61 6c 20 77 61 79 | col.over.IPsec).is.the.usual.way |
| c8c00 | 20 74 6f 20 70 72 6f 74 65 63 74 20 74 68 65 20 74 72 61 66 66 69 63 20 69 6e 73 69 64 65 20 61 | .to.protect.the.traffic.inside.a |
| c8c20 | 20 74 75 6e 6e 65 6c 2e 00 3a 61 62 62 72 3a 60 47 52 4f 20 28 47 65 6e 65 72 69 63 20 72 65 63 | .tunnel..:abbr:`GRO.(Generic.rec |
| c8c40 | 65 69 76 65 20 6f 66 66 6c 6f 61 64 29 60 20 69 73 20 74 68 65 20 63 6f 6d 70 6c 65 6d 65 6e 74 | eive.offload)`.is.the.complement |
| c8c60 | 20 74 6f 20 47 53 4f 2e 20 49 64 65 61 6c 6c 79 20 61 6e 79 20 66 72 61 6d 65 20 61 73 73 65 6d | .to.GSO..Ideally.any.frame.assem |
| c8c80 | 62 6c 65 64 20 62 79 20 47 52 4f 20 73 68 6f 75 6c 64 20 62 65 20 73 65 67 6d 65 6e 74 65 64 20 | bled.by.GRO.should.be.segmented. |
| c8ca0 | 74 6f 20 63 72 65 61 74 65 20 61 6e 20 69 64 65 6e 74 69 63 61 6c 20 73 65 71 75 65 6e 63 65 20 | to.create.an.identical.sequence. |
| c8cc0 | 6f 66 20 66 72 61 6d 65 73 20 75 73 69 6e 67 20 47 53 4f 2c 20 61 6e 64 20 61 6e 79 20 73 65 71 | of.frames.using.GSO,.and.any.seq |
| c8ce0 | 75 65 6e 63 65 20 6f 66 20 66 72 61 6d 65 73 20 73 65 67 6d 65 6e 74 65 64 20 62 79 20 47 53 4f | uence.of.frames.segmented.by.GSO |
| c8d00 | 20 73 68 6f 75 6c 64 20 62 65 20 61 62 6c 65 20 74 6f 20 62 65 20 72 65 61 73 73 65 6d 62 6c 65 | .should.be.able.to.be.reassemble |
| c8d20 | 64 20 62 61 63 6b 20 74 6f 20 74 68 65 20 6f 72 69 67 69 6e 61 6c 20 62 79 20 47 52 4f 2e 20 54 | d.back.to.the.original.by.GRO..T |
| c8d40 | 68 65 20 6f 6e 6c 79 20 65 78 63 65 70 74 69 6f 6e 20 74 6f 20 74 68 69 73 20 69 73 20 49 50 76 | he.only.exception.to.this.is.IPv |
| c8d60 | 34 20 49 44 20 69 6e 20 74 68 65 20 63 61 73 65 20 74 68 61 74 20 74 68 65 20 44 46 20 62 69 74 | 4.ID.in.the.case.that.the.DF.bit |
| c8d80 | 20 69 73 20 73 65 74 20 66 6f 72 20 61 20 67 69 76 65 6e 20 49 50 20 68 65 61 64 65 72 2e 20 49 | .is.set.for.a.given.IP.header..I |
| c8da0 | 66 20 74 68 65 20 76 61 6c 75 65 20 6f 66 20 74 68 65 20 49 50 76 34 20 49 44 20 69 73 20 6e 6f | f.the.value.of.the.IPv4.ID.is.no |
| c8dc0 | 74 20 73 65 71 75 65 6e 74 69 61 6c 6c 79 20 69 6e 63 72 65 6d 65 6e 74 69 6e 67 20 69 74 20 77 | t.sequentially.incrementing.it.w |
| c8de0 | 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 20 73 6f 20 74 68 61 74 20 69 74 20 69 73 20 77 68 65 | ill.be.altered.so.that.it.is.whe |
| c8e00 | 6e 20 61 20 66 72 61 6d 65 20 61 73 73 65 6d 62 6c 65 64 20 76 69 61 20 47 52 4f 20 69 73 20 73 | n.a.frame.assembled.via.GRO.is.s |
| c8e20 | 65 67 6d 65 6e 74 65 64 20 76 69 61 20 47 53 4f 2e 00 3a 61 62 62 72 3a 60 47 53 4f 20 28 47 65 | egmented.via.GSO..:abbr:`GSO.(Ge |
| c8e40 | 6e 65 72 69 63 20 53 65 67 6d 65 6e 74 61 74 69 6f 6e 20 4f 66 66 6c 6f 61 64 29 60 20 69 73 20 | neric.Segmentation.Offload)`.is. |
| c8e60 | 61 20 70 75 72 65 20 73 6f 66 74 77 61 72 65 20 6f 66 66 6c 6f 61 64 20 74 68 61 74 20 69 73 20 | a.pure.software.offload.that.is. |
| c8e80 | 6d 65 61 6e 74 20 74 6f 20 64 65 61 6c 20 77 69 74 68 20 63 61 73 65 73 20 77 68 65 72 65 20 64 | meant.to.deal.with.cases.where.d |
| c8ea0 | 65 76 69 63 65 20 64 72 69 76 65 72 73 20 63 61 6e 6e 6f 74 20 70 65 72 66 6f 72 6d 20 74 68 65 | evice.drivers.cannot.perform.the |
| c8ec0 | 20 6f 66 66 6c 6f 61 64 73 20 64 65 73 63 72 69 62 65 64 20 61 62 6f 76 65 2e 20 57 68 61 74 20 | .offloads.described.above..What. |
| c8ee0 | 6f 63 63 75 72 73 20 69 6e 20 47 53 4f 20 69 73 20 74 68 61 74 20 61 20 67 69 76 65 6e 20 73 6b | occurs.in.GSO.is.that.a.given.sk |
| c8f00 | 62 75 66 66 20 77 69 6c 6c 20 68 61 76 65 20 69 74 73 20 64 61 74 61 20 62 72 6f 6b 65 6e 20 6f | buff.will.have.its.data.broken.o |
| c8f20 | 75 74 20 6f 76 65 72 20 6d 75 6c 74 69 70 6c 65 20 73 6b 62 75 66 66 73 20 74 68 61 74 20 68 61 | ut.over.multiple.skbuffs.that.ha |
| c8f40 | 76 65 20 62 65 65 6e 20 72 65 73 69 7a 65 64 20 74 6f 20 6d 61 74 63 68 20 74 68 65 20 4d 53 53 | ve.been.resized.to.match.the.MSS |
| c8f60 | 20 70 72 6f 76 69 64 65 64 20 76 69 61 20 73 6b 62 5f 73 68 69 6e 66 6f 28 29 2d 3e 67 73 6f 5f | .provided.via.skb_shinfo()->gso_ |
| c8f80 | 73 69 7a 65 2e 00 3a 61 62 62 72 3a 60 49 47 4d 50 20 28 49 6e 74 65 72 6e 65 74 20 47 72 6f 75 | size..:abbr:`IGMP.(Internet.Grou |
| c8fa0 | 70 20 4d 61 6e 61 67 65 6d 65 6e 74 20 50 72 6f 74 6f 63 6f 6c 29 60 20 70 72 6f 78 79 20 73 65 | p.Management.Protocol)`.proxy.se |
| c8fc0 | 6e 64 73 20 49 47 4d 50 20 68 6f 73 74 20 6d 65 73 73 61 67 65 73 20 6f 6e 20 62 65 68 61 6c 66 | nds.IGMP.host.messages.on.behalf |
| c8fe0 | 20 6f 66 20 61 20 63 6f 6e 6e 65 63 74 65 64 20 63 6c 69 65 6e 74 2e 20 54 68 65 20 63 6f 6e 66 | .of.a.connected.client..The.conf |
| c9000 | 69 67 75 72 61 74 69 6f 6e 20 6d 75 73 74 20 64 65 66 69 6e 65 20 6f 6e 65 2c 20 61 6e 64 20 6f | iguration.must.define.one,.and.o |
| c9020 | 6e 6c 79 20 6f 6e 65 20 75 70 73 74 72 65 61 6d 20 69 6e 74 65 72 66 61 63 65 2c 20 61 6e 64 20 | nly.one.upstream.interface,.and. |
| c9040 | 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 64 6f 77 6e 73 74 72 65 61 6d 20 69 6e 74 65 72 66 61 63 65 | one.or.more.downstream.interface |
| c9060 | 73 2e 00 3a 61 62 62 72 3a 60 49 50 53 65 63 20 28 49 50 20 53 65 63 75 72 69 74 79 29 60 20 2d | s..:abbr:`IPSec.(IP.Security)`.- |
| c9080 | 20 74 6f 6f 20 6d 61 6e 79 20 52 46 43 73 20 74 6f 20 6c 69 73 74 2c 20 62 75 74 20 73 74 61 72 | .too.many.RFCs.to.list,.but.star |
| c90a0 | 74 20 77 69 74 68 20 3a 72 66 63 3a 60 34 33 30 31 60 00 3a 61 62 62 72 3a 60 49 53 2d 49 53 20 | t.with.:rfc:`4301`.:abbr:`IS-IS. |
| c90c0 | 28 49 6e 74 65 72 6d 65 64 69 61 74 65 20 53 79 73 74 65 6d 20 74 6f 20 49 6e 74 65 72 6d 65 64 | (Intermediate.System.to.Intermed |
| c90e0 | 69 61 74 65 20 53 79 73 74 65 6d 29 60 20 69 73 20 61 20 6c 69 6e 6b 2d 73 74 61 74 65 20 69 6e | iate.System)`.is.a.link-state.in |
| c9100 | 74 65 72 69 6f 72 20 67 61 74 65 77 61 79 20 70 72 6f 74 6f 63 6f 6c 20 28 49 47 50 29 20 77 68 | terior.gateway.protocol.(IGP).wh |
| c9120 | 69 63 68 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 49 53 4f 31 30 35 38 39 2c 20 3a 72 | ich.is.described.in.ISO10589,.:r |
| c9140 | 66 63 3a 60 31 31 39 35 60 2c 20 3a 72 66 63 3a 60 35 33 30 38 60 2e 20 49 53 2d 49 53 20 72 75 | fc:`1195`,.:rfc:`5308`..IS-IS.ru |
| c9160 | 6e 73 20 74 68 65 20 44 69 6a 6b 73 74 72 61 20 73 68 6f 72 74 65 73 74 2d 70 61 74 68 20 66 69 | ns.the.Dijkstra.shortest-path.fi |
| c9180 | 72 73 74 20 28 53 50 46 29 20 61 6c 67 6f 72 69 74 68 6d 20 74 6f 20 63 72 65 61 74 65 20 61 20 | rst.(SPF).algorithm.to.create.a. |
| c91a0 | 64 61 74 61 62 61 73 65 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b e2 80 99 73 20 74 6f 70 6f | database.of.the.network...s.topo |
| c91c0 | 6c 6f 67 79 2c 20 61 6e 64 20 66 72 6f 6d 20 74 68 61 74 20 64 61 74 61 62 61 73 65 20 74 6f 20 | logy,.and.from.that.database.to. |
| c91e0 | 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 62 65 73 74 20 28 74 68 61 74 20 69 73 2c 20 6c 6f 77 | determine.the.best.(that.is,.low |
| c9200 | 65 73 74 20 63 6f 73 74 29 20 70 61 74 68 20 74 6f 20 61 20 64 65 73 74 69 6e 61 74 69 6f 6e 2e | est.cost).path.to.a.destination. |
| c9220 | 20 54 68 65 20 69 6e 74 65 72 6d 65 64 69 61 74 65 20 73 79 73 74 65 6d 73 20 28 74 68 65 20 6e | .The.intermediate.systems.(the.n |
| c9240 | 61 6d 65 20 66 6f 72 20 72 6f 75 74 65 72 73 29 20 65 78 63 68 61 6e 67 65 20 74 6f 70 6f 6c 6f | ame.for.routers).exchange.topolo |
| c9260 | 67 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 77 69 74 68 20 74 68 65 69 72 20 64 69 72 65 63 74 | gy.information.with.their.direct |
| c9280 | 6c 79 20 63 6f 6e 65 6e 63 74 65 64 20 6e 65 69 67 68 62 6f 72 73 2e 20 49 53 2d 49 53 20 72 75 | ly.conencted.neighbors..IS-IS.ru |
| c92a0 | 6e 73 20 64 69 72 65 63 74 6c 79 20 6f 6e 20 74 68 65 20 64 61 74 61 20 6c 69 6e 6b 20 6c 61 79 | ns.directly.on.the.data.link.lay |
| c92c0 | 65 72 20 28 4c 61 79 65 72 20 32 29 2e 20 49 53 2d 49 53 20 61 64 64 72 65 73 73 65 73 20 61 72 | er.(Layer.2)..IS-IS.addresses.ar |
| c92e0 | 65 20 63 61 6c 6c 65 64 20 3a 61 62 62 72 3a 60 4e 45 54 73 20 28 4e 65 74 77 6f 72 6b 20 45 6e | e.called.:abbr:`NETs.(Network.En |
| c9300 | 74 69 74 79 20 54 69 74 6c 65 73 29 60 20 61 6e 64 20 63 61 6e 20 62 65 20 38 20 74 6f 20 32 30 | tity.Titles)`.and.can.be.8.to.20 |
| c9320 | 20 62 79 74 65 73 20 6c 6f 6e 67 2c 20 62 75 74 20 61 72 65 20 67 65 6e 65 72 61 6c 6c 79 20 31 | .bytes.long,.but.are.generally.1 |
| c9340 | 30 20 62 79 74 65 73 20 6c 6f 6e 67 2e 20 54 68 65 20 74 72 65 65 20 64 61 74 61 62 61 73 65 20 | 0.bytes.long..The.tree.database. |
| c9360 | 74 68 61 74 20 69 73 20 63 72 65 61 74 65 64 20 77 69 74 68 20 49 53 2d 49 53 20 69 73 20 73 69 | that.is.created.with.IS-IS.is.si |
| c9380 | 6d 69 6c 61 72 20 74 6f 20 74 68 65 20 6f 6e 65 20 74 68 61 74 20 69 73 20 63 72 65 61 74 65 64 | milar.to.the.one.that.is.created |
| c93a0 | 20 77 69 74 68 20 4f 53 50 46 20 69 6e 20 74 68 61 74 20 74 68 65 20 70 61 74 68 73 20 63 68 6f | .with.OSPF.in.that.the.paths.cho |
| c93c0 | 73 65 6e 20 73 68 6f 75 6c 64 20 62 65 20 73 69 6d 69 6c 61 72 2e 20 43 6f 6d 70 61 72 69 73 6f | sen.should.be.similar..Compariso |
| c93e0 | 6e 73 20 74 6f 20 4f 53 50 46 20 61 72 65 20 69 6e 65 76 69 74 61 62 6c 65 20 61 6e 64 20 6f 66 | ns.to.OSPF.are.inevitable.and.of |
| c9400 | 74 65 6e 20 61 72 65 20 72 65 61 73 6f 6e 61 62 6c 65 20 6f 6e 65 73 20 74 6f 20 6d 61 6b 65 20 | ten.are.reasonable.ones.to.make. |
| c9420 | 69 6e 20 72 65 67 61 72 64 73 20 74 6f 20 74 68 65 20 77 61 79 20 61 20 6e 65 74 77 6f 72 6b 20 | in.regards.to.the.way.a.network. |
| c9440 | 77 69 6c 6c 20 72 65 73 70 6f 6e 64 20 77 69 74 68 20 65 69 74 68 65 72 20 49 47 50 2e 00 3a 61 | will.respond.with.either.IGP..:a |
| c9460 | 62 62 72 3a 60 49 53 2d 49 53 20 28 49 6e 74 65 72 6d 65 64 69 61 74 65 20 53 79 73 74 65 6d 20 | bbr:`IS-IS.(Intermediate.System. |
| c9480 | 74 6f 20 49 6e 74 65 72 6d 65 64 69 61 74 65 20 53 79 73 74 65 6d 29 60 20 69 73 20 61 20 6c 69 | to.Intermediate.System)`.is.a.li |
| c94a0 | 6e 6b 2d 73 74 61 74 65 20 69 6e 74 65 72 69 6f 72 20 67 61 74 65 77 61 79 20 70 72 6f 74 6f 63 | nk-state.interior.gateway.protoc |
| c94c0 | 6f 6c 20 28 49 47 50 29 20 77 68 69 63 68 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 49 | ol.(IGP).which.is.described.in.I |
| c94e0 | 53 4f 31 30 35 38 39 2c 20 3a 72 66 63 3a 60 31 31 39 35 60 2c 20 3a 72 66 63 3a 60 35 33 30 38 | SO10589,.:rfc:`1195`,.:rfc:`5308 |
| c9500 | 60 2e 20 49 53 2d 49 53 20 72 75 6e 73 20 74 68 65 20 44 69 6a 6b 73 74 72 61 20 73 68 6f 72 74 | `..IS-IS.runs.the.Dijkstra.short |
| c9520 | 65 73 74 2d 70 61 74 68 20 66 69 72 73 74 20 28 53 50 46 29 20 61 6c 67 6f 72 69 74 68 6d 20 74 | est-path.first.(SPF).algorithm.t |
| c9540 | 6f 20 63 72 65 61 74 65 20 61 20 64 61 74 61 62 61 73 65 20 6f 66 20 74 68 65 20 6e 65 74 77 6f | o.create.a.database.of.the.netwo |
| c9560 | 72 6b e2 80 99 73 20 74 6f 70 6f 6c 6f 67 79 2c 20 61 6e 64 20 66 72 6f 6d 20 74 68 61 74 20 64 | rk...s.topology,.and.from.that.d |
| c9580 | 61 74 61 62 61 73 65 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 62 65 73 74 20 28 74 | atabase.to.determine.the.best.(t |
| c95a0 | 68 61 74 20 69 73 2c 20 6c 6f 77 65 73 74 20 63 6f 73 74 29 20 70 61 74 68 20 74 6f 20 61 20 64 | hat.is,.lowest.cost).path.to.a.d |
| c95c0 | 65 73 74 69 6e 61 74 69 6f 6e 2e 20 54 68 65 20 69 6e 74 65 72 6d 65 64 69 61 74 65 20 73 79 73 | estination..The.intermediate.sys |
| c95e0 | 74 65 6d 73 20 28 74 68 65 20 6e 61 6d 65 20 66 6f 72 20 72 6f 75 74 65 72 73 29 20 65 78 63 68 | tems.(the.name.for.routers).exch |
| c9600 | 61 6e 67 65 20 74 6f 70 6f 6c 6f 67 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 77 69 74 68 20 74 | ange.topology.information.with.t |
| c9620 | 68 65 69 72 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 20 6e 65 69 67 68 62 6f 72 | heir.directly.connected.neighbor |
| c9640 | 73 2e 20 49 53 2d 49 53 20 72 75 6e 73 20 64 69 72 65 63 74 6c 79 20 6f 6e 20 74 68 65 20 64 61 | s..IS-IS.runs.directly.on.the.da |
| c9660 | 74 61 20 6c 69 6e 6b 20 6c 61 79 65 72 20 28 4c 61 79 65 72 20 32 29 2e 20 49 53 2d 49 53 20 61 | ta.link.layer.(Layer.2)..IS-IS.a |
| c9680 | 64 64 72 65 73 73 65 73 20 61 72 65 20 63 61 6c 6c 65 64 20 3a 61 62 62 72 3a 60 4e 45 54 73 20 | ddresses.are.called.:abbr:`NETs. |
| c96a0 | 28 4e 65 74 77 6f 72 6b 20 45 6e 74 69 74 79 20 54 69 74 6c 65 73 29 60 20 61 6e 64 20 63 61 6e | (Network.Entity.Titles)`.and.can |
| c96c0 | 20 62 65 20 38 20 74 6f 20 32 30 20 62 79 74 65 73 20 6c 6f 6e 67 2c 20 62 75 74 20 61 72 65 20 | .be.8.to.20.bytes.long,.but.are. |
| c96e0 | 67 65 6e 65 72 61 6c 6c 79 20 31 30 20 62 79 74 65 73 20 6c 6f 6e 67 2e 20 54 68 65 20 74 72 65 | generally.10.bytes.long..The.tre |
| c9700 | 65 20 64 61 74 61 62 61 73 65 20 74 68 61 74 20 69 73 20 63 72 65 61 74 65 64 20 77 69 74 68 20 | e.database.that.is.created.with. |
| c9720 | 49 53 2d 49 53 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 74 68 65 20 6f 6e 65 20 74 68 61 74 | IS-IS.is.similar.to.the.one.that |
| c9740 | 20 69 73 20 63 72 65 61 74 65 64 20 77 69 74 68 20 4f 53 50 46 20 69 6e 20 74 68 61 74 20 74 68 | .is.created.with.OSPF.in.that.th |
| c9760 | 65 20 70 61 74 68 73 20 63 68 6f 73 65 6e 20 73 68 6f 75 6c 64 20 62 65 20 73 69 6d 69 6c 61 72 | e.paths.chosen.should.be.similar |
| c9780 | 2e 20 43 6f 6d 70 61 72 69 73 6f 6e 73 20 74 6f 20 4f 53 50 46 20 61 72 65 20 69 6e 65 76 69 74 | ..Comparisons.to.OSPF.are.inevit |
| c97a0 | 61 62 6c 65 20 61 6e 64 20 6f 66 74 65 6e 20 61 72 65 20 72 65 61 73 6f 6e 61 62 6c 65 20 6f 6e | able.and.often.are.reasonable.on |
| c97c0 | 65 73 20 74 6f 20 6d 61 6b 65 20 69 6e 20 72 65 67 61 72 64 73 20 74 6f 20 74 68 65 20 77 61 79 | es.to.make.in.regards.to.the.way |
| c97e0 | 20 61 20 6e 65 74 77 6f 72 6b 20 77 69 6c 6c 20 72 65 73 70 6f 6e 64 20 77 69 74 68 20 65 69 74 | .a.network.will.respond.with.eit |
| c9800 | 68 65 72 20 49 47 50 2e 00 3a 61 62 62 72 3a 60 4c 33 56 50 4e 20 56 52 46 73 20 28 20 4c 61 79 | her.IGP..:abbr:`L3VPN.VRFs.(.Lay |
| c9820 | 65 72 20 33 20 56 69 72 74 75 61 6c 20 50 72 69 76 61 74 65 20 4e 65 74 77 6f 72 6b 73 20 29 60 | er.3.Virtual.Private.Networks.)` |
| c9840 | 20 62 67 70 64 20 73 75 70 70 6f 72 74 73 20 66 6f 72 20 49 50 76 34 20 52 46 43 20 34 33 36 34 | .bgpd.supports.for.IPv4.RFC.4364 |
| c9860 | 20 61 6e 64 20 49 50 76 36 20 52 46 43 20 34 36 35 39 2e 20 4c 33 56 50 4e 20 72 6f 75 74 65 73 | .and.IPv6.RFC.4659..L3VPN.routes |
| c9880 | 2c 20 61 6e 64 20 74 68 65 69 72 20 61 73 73 6f 63 69 61 74 65 64 20 56 52 46 20 4d 50 4c 53 20 | ,.and.their.associated.VRF.MPLS. |
| c98a0 | 6c 61 62 65 6c 73 2c 20 63 61 6e 20 62 65 20 64 69 73 74 72 69 62 75 74 65 64 20 74 6f 20 56 50 | labels,.can.be.distributed.to.VP |
| c98c0 | 4e 20 53 41 46 49 20 6e 65 69 67 68 62 6f 72 73 20 69 6e 20 74 68 65 20 64 65 66 61 75 6c 74 2c | N.SAFI.neighbors.in.the.default, |
| c98e0 | 20 69 2e 65 2e 2c 20 6e 6f 6e 20 56 52 46 2c 20 42 47 50 20 69 6e 73 74 61 6e 63 65 2e 20 56 52 | .i.e.,.non.VRF,.BGP.instance..VR |
| c9900 | 46 20 4d 50 4c 53 20 6c 61 62 65 6c 73 20 61 72 65 20 72 65 61 63 68 65 64 20 75 73 69 6e 67 20 | F.MPLS.labels.are.reached.using. |
| c9920 | 63 6f 72 65 20 4d 50 4c 53 20 6c 61 62 65 6c 73 20 77 68 69 63 68 20 61 72 65 20 64 69 73 74 72 | core.MPLS.labels.which.are.distr |
| c9940 | 69 62 75 74 65 64 20 75 73 69 6e 67 20 4c 44 50 20 6f 72 20 42 47 50 20 6c 61 62 65 6c 65 64 20 | ibuted.using.LDP.or.BGP.labeled. |
| c9960 | 75 6e 69 63 61 73 74 2e 20 62 67 70 64 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 73 20 69 6e 74 65 | unicast..bgpd.also.supports.inte |
| c9980 | 72 2d 56 52 46 20 72 6f 75 74 65 20 6c 65 61 6b 69 6e 67 2e 00 3a 61 62 62 72 3a 60 4c 44 50 20 | r-VRF.route.leaking..:abbr:`LDP. |
| c99a0 | 28 4c 61 62 65 6c 20 44 69 73 74 72 69 62 75 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 29 60 20 69 | (Label.Distribution.Protocol)`.i |
| c99c0 | 73 20 61 20 54 43 50 20 62 61 73 65 64 20 4d 50 4c 53 20 73 69 67 6e 61 6c 69 6e 67 20 70 72 6f | s.a.TCP.based.MPLS.signaling.pro |
| c99e0 | 74 6f 63 6f 6c 20 74 68 61 74 20 64 69 73 74 72 69 62 75 74 65 73 20 6c 61 62 65 6c 73 20 63 72 | tocol.that.distributes.labels.cr |
| c9a00 | 65 61 74 69 6e 67 20 4d 50 4c 53 20 6c 61 62 65 6c 20 73 77 69 74 63 68 65 64 20 70 61 74 68 73 | eating.MPLS.label.switched.paths |
| c9a20 | 20 69 6e 20 61 20 64 79 6e 61 6d 69 63 20 6d 61 6e 6e 65 72 2e 20 4c 44 50 20 69 73 20 6e 6f 74 | .in.a.dynamic.manner..LDP.is.not |
| c9a40 | 20 61 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 2c 20 61 73 20 69 74 20 72 65 6c 69 65 | .a.routing.protocol,.as.it.relie |
| c9a60 | 73 20 6f 6e 20 6f 74 68 65 72 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 66 6f 72 | s.on.other.routing.protocols.for |
| c9a80 | 20 66 6f 72 77 61 72 64 69 6e 67 20 64 65 63 69 73 69 6f 6e 73 2e 20 4c 44 50 20 63 61 6e 6e 6f | .forwarding.decisions..LDP.canno |
| c9aa0 | 74 20 62 6f 6f 74 73 74 72 61 70 20 69 74 73 65 6c 66 2c 20 61 6e 64 20 74 68 65 72 65 66 6f 72 | t.bootstrap.itself,.and.therefor |
| c9ac0 | 65 20 72 65 6c 69 65 73 20 6f 6e 20 73 61 69 64 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f | e.relies.on.said.routing.protoco |
| c9ae0 | 6c 73 20 66 6f 72 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 20 77 69 74 68 20 6f 74 68 65 72 20 | ls.for.communication.with.other. |
| c9b00 | 72 6f 75 74 65 72 73 20 74 68 61 74 20 75 73 65 20 4c 44 50 2e 00 3a 61 62 62 72 3a 60 4c 4c 44 | routers.that.use.LDP..:abbr:`LLD |
| c9b20 | 50 20 28 4c 69 6e 6b 20 4c 61 79 65 72 20 44 69 73 63 6f 76 65 72 79 20 50 72 6f 74 6f 63 6f 6c | P.(Link.Layer.Discovery.Protocol |
| c9b40 | 29 60 20 69 73 20 61 20 76 65 6e 64 6f 72 2d 6e 65 75 74 72 61 6c 20 6c 69 6e 6b 20 6c 61 79 65 | )`.is.a.vendor-neutral.link.laye |
| c9b60 | 72 20 70 72 6f 74 6f 63 6f 6c 20 69 6e 20 74 68 65 20 49 6e 74 65 72 6e 65 74 20 50 72 6f 74 6f | r.protocol.in.the.Internet.Proto |
| c9b80 | 63 6f 6c 20 53 75 69 74 65 20 75 73 65 64 20 62 79 20 6e 65 74 77 6f 72 6b 20 64 65 76 69 63 65 | col.Suite.used.by.network.device |
| c9ba0 | 73 20 66 6f 72 20 61 64 76 65 72 74 69 73 69 6e 67 20 74 68 65 69 72 20 69 64 65 6e 74 69 74 79 | s.for.advertising.their.identity |
| c9bc0 | 2c 20 63 61 70 61 62 69 6c 69 74 69 65 73 2c 20 61 6e 64 20 6e 65 69 67 68 62 6f 72 73 20 6f 6e | ,.capabilities,.and.neighbors.on |
| c9be0 | 20 61 6e 20 49 45 45 45 20 38 30 32 20 6c 6f 63 61 6c 20 61 72 65 61 20 6e 65 74 77 6f 72 6b 2c | .an.IEEE.802.local.area.network, |
| c9c00 | 20 70 72 69 6e 63 69 70 61 6c 6c 79 20 77 69 72 65 64 20 45 74 68 65 72 6e 65 74 2e 20 54 68 65 | .principally.wired.Ethernet..The |
| c9c20 | 20 70 72 6f 74 6f 63 6f 6c 20 69 73 20 66 6f 72 6d 61 6c 6c 79 20 72 65 66 65 72 72 65 64 20 74 | .protocol.is.formally.referred.t |
| c9c40 | 6f 20 62 79 20 74 68 65 20 49 45 45 45 20 61 73 20 53 74 61 74 69 6f 6e 20 61 6e 64 20 4d 65 64 | o.by.the.IEEE.as.Station.and.Med |
| c9c60 | 69 61 20 41 63 63 65 73 73 20 43 6f 6e 74 72 6f 6c 20 43 6f 6e 6e 65 63 74 69 76 69 74 79 20 44 | ia.Access.Control.Connectivity.D |
| c9c80 | 69 73 63 6f 76 65 72 79 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 49 45 45 45 20 38 30 32 2e 31 | iscovery.specified.in.IEEE.802.1 |
| c9ca0 | 41 42 20 61 6e 64 20 49 45 45 45 20 38 30 32 2e 33 2d 32 30 31 32 20 73 65 63 74 69 6f 6e 20 36 | AB.and.IEEE.802.3-2012.section.6 |
| c9cc0 | 20 63 6c 61 75 73 65 20 37 39 2e 00 3a 61 62 62 72 3a 60 4c 52 4f 20 28 4c 61 72 67 65 20 52 65 | .clause.79..:abbr:`LRO.(Large.Re |
| c9ce0 | 63 65 69 76 65 20 4f 66 66 6c 6f 61 64 29 60 20 69 73 20 61 20 74 65 63 68 6e 69 71 75 65 20 64 | ceive.Offload)`.is.a.technique.d |
| c9d00 | 65 73 69 67 6e 65 64 20 74 6f 20 62 6f 6f 73 74 20 74 68 65 20 65 66 66 69 63 69 65 6e 63 79 20 | esigned.to.boost.the.efficiency. |
| c9d20 | 6f 66 20 68 6f 77 20 79 6f 75 72 20 63 6f 6d 70 75 74 65 72 27 73 20 6e 65 74 77 6f 72 6b 20 69 | of.how.your.computer's.network.i |
| c9d40 | 6e 74 65 72 66 61 63 65 20 63 61 72 64 20 28 4e 49 43 29 20 70 72 6f 63 65 73 73 65 73 20 69 6e | nterface.card.(NIC).processes.in |
| c9d60 | 63 6f 6d 69 6e 67 20 6e 65 74 77 6f 72 6b 20 74 72 61 66 66 69 63 2e 20 54 79 70 69 63 61 6c 6c | coming.network.traffic..Typicall |
| c9d80 | 79 2c 20 6e 65 74 77 6f 72 6b 20 64 61 74 61 20 61 72 72 69 76 65 73 20 69 6e 20 73 6d 61 6c 6c | y,.network.data.arrives.in.small |
| c9da0 | 65 72 20 63 68 75 6e 6b 73 20 63 61 6c 6c 65 64 20 70 61 63 6b 65 74 73 2e 20 50 72 6f 63 65 73 | er.chunks.called.packets..Proces |
| c9dc0 | 73 69 6e 67 20 65 61 63 68 20 70 61 63 6b 65 74 20 69 6e 64 69 76 69 64 75 61 6c 6c 79 20 63 6f | sing.each.packet.individually.co |
| c9de0 | 6e 73 75 6d 65 73 20 43 50 55 20 28 63 65 6e 74 72 61 6c 20 70 72 6f 63 65 73 73 69 6e 67 20 75 | nsumes.CPU.(central.processing.u |
| c9e00 | 6e 69 74 29 20 72 65 73 6f 75 72 63 65 73 2e 20 4c 6f 74 73 20 6f 66 20 73 6d 61 6c 6c 20 70 61 | nit).resources..Lots.of.small.pa |
| c9e20 | 63 6b 65 74 73 20 63 61 6e 20 6c 65 61 64 20 74 6f 20 61 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 | ckets.can.lead.to.a.performance. |
| c9e40 | 62 6f 74 74 6c 65 6e 65 63 6b 2e 20 49 6e 73 74 65 61 64 20 6f 66 20 68 61 6e 64 69 6e 67 20 74 | bottleneck..Instead.of.handing.t |
| c9e60 | 68 65 20 43 50 55 20 65 61 63 68 20 70 61 63 6b 65 74 20 61 73 20 69 74 20 63 6f 6d 65 73 20 69 | he.CPU.each.packet.as.it.comes.i |
| c9e80 | 6e 2c 20 4c 52 4f 20 69 6e 73 74 72 75 63 74 73 20 74 68 65 20 4e 49 43 20 74 6f 20 63 6f 6d 62 | n,.LRO.instructs.the.NIC.to.comb |
| c9ea0 | 69 6e 65 20 6d 75 6c 74 69 70 6c 65 20 69 6e 63 6f 6d 69 6e 67 20 70 61 63 6b 65 74 73 20 69 6e | ine.multiple.incoming.packets.in |
| c9ec0 | 74 6f 20 61 20 73 69 6e 67 6c 65 2c 20 6c 61 72 67 65 72 20 70 61 63 6b 65 74 2e 20 54 68 69 73 | to.a.single,.larger.packet..This |
| c9ee0 | 20 6c 61 72 67 65 72 20 70 61 63 6b 65 74 20 69 73 20 74 68 65 6e 20 70 61 73 73 65 64 20 74 6f | .larger.packet.is.then.passed.to |
| c9f00 | 20 74 68 65 20 43 50 55 20 66 6f 72 20 70 72 6f 63 65 73 73 69 6e 67 2e 00 3a 61 62 62 72 3a 60 | .the.CPU.for.processing..:abbr:` |
| c9f20 | 4d 46 50 20 28 4d 61 6e 61 67 65 6d 65 6e 74 20 46 72 61 6d 65 20 50 72 6f 74 65 63 74 69 6f 6e | MFP.(Management.Frame.Protection |
| c9f40 | 29 60 20 69 73 20 72 65 71 75 69 72 65 64 20 66 6f 72 20 57 50 41 33 2e 00 3a 61 62 62 72 3a 60 | )`.is.required.for.WPA3..:abbr:` |
| c9f60 | 4d 4b 41 20 28 4d 41 43 73 65 63 20 4b 65 79 20 41 67 72 65 65 6d 65 6e 74 20 70 72 6f 74 6f 63 | MKA.(MACsec.Key.Agreement.protoc |
| c9f80 | 6f 6c 29 60 20 69 73 20 75 73 65 64 20 74 6f 20 73 79 6e 63 68 72 6f 6e 69 7a 65 20 6b 65 79 73 | ol)`.is.used.to.synchronize.keys |
| c9fa0 | 20 62 65 74 77 65 65 6e 20 69 6e 64 69 76 69 64 75 61 6c 20 70 65 65 72 73 2e 00 3a 61 62 62 72 | .between.individual.peers..:abbr |
| c9fc0 | 3a 60 4d 50 4c 53 20 28 4d 75 6c 74 69 2d 50 72 6f 74 6f 63 6f 6c 20 4c 61 62 65 6c 20 53 77 69 | :`MPLS.(Multi-Protocol.Label.Swi |
| c9fe0 | 74 63 68 69 6e 67 29 60 20 69 73 20 61 20 70 61 63 6b 65 74 20 66 6f 72 77 61 72 64 69 6e 67 20 | tching)`.is.a.packet.forwarding. |
| ca000 | 70 61 72 61 64 69 67 6d 20 77 68 69 63 68 20 64 69 66 66 65 72 73 20 66 72 6f 6d 20 72 65 67 75 | paradigm.which.differs.from.regu |
| ca020 | 6c 61 72 20 49 50 20 66 6f 72 77 61 72 64 69 6e 67 2e 20 49 6e 73 74 65 61 64 20 6f 66 20 49 50 | lar.IP.forwarding..Instead.of.IP |
| ca040 | 20 61 64 64 72 65 73 73 65 73 20 62 65 69 6e 67 20 75 73 65 64 20 74 6f 20 6d 61 6b 65 20 74 68 | .addresses.being.used.to.make.th |
| ca060 | 65 20 64 65 63 69 73 69 6f 6e 20 6f 6e 20 66 69 6e 64 69 6e 67 20 74 68 65 20 65 78 69 74 20 69 | e.decision.on.finding.the.exit.i |
| ca080 | 6e 74 65 72 66 61 63 65 2c 20 61 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 69 6e 73 74 65 61 64 20 | nterface,.a.router.will.instead. |
| ca0a0 | 75 73 65 20 61 6e 20 65 78 61 63 74 20 6d 61 74 63 68 20 6f 6e 20 61 20 33 32 20 62 69 74 2f 34 | use.an.exact.match.on.a.32.bit/4 |
| ca0c0 | 20 62 79 74 65 20 68 65 61 64 65 72 20 63 61 6c 6c 65 64 20 74 68 65 20 4d 50 4c 53 20 6c 61 62 | .byte.header.called.the.MPLS.lab |
| ca0e0 | 65 6c 2e 20 54 68 69 73 20 6c 61 62 65 6c 20 69 73 20 69 6e 73 65 72 74 65 64 20 62 65 74 77 65 | el..This.label.is.inserted.betwe |
| ca100 | 65 6e 20 74 68 65 20 65 74 68 65 72 6e 65 74 20 28 6c 61 79 65 72 20 32 29 20 68 65 61 64 65 72 | en.the.ethernet.(layer.2).header |
| ca120 | 20 61 6e 64 20 74 68 65 20 49 50 20 28 6c 61 79 65 72 20 33 29 20 68 65 61 64 65 72 2e 20 4f 6e | .and.the.IP.(layer.3).header..On |
| ca140 | 65 20 63 61 6e 20 73 74 61 74 69 63 61 6c 6c 79 20 6f 72 20 64 79 6e 61 6d 69 63 61 6c 6c 79 20 | e.can.statically.or.dynamically. |
| ca160 | 61 73 73 69 67 6e 20 6c 61 62 65 6c 20 61 6c 6c 6f 63 61 74 69 6f 6e 73 2c 20 62 75 74 20 77 65 | assign.label.allocations,.but.we |
| ca180 | 20 77 69 6c 6c 20 66 6f 63 75 73 20 6f 6e 20 64 79 6e 61 6d 69 63 20 61 6c 6c 6f 63 61 74 69 6f | .will.focus.on.dynamic.allocatio |
| ca1a0 | 6e 20 6f 66 20 6c 61 62 65 6c 73 20 75 73 69 6e 67 20 73 6f 6d 65 20 73 6f 72 74 20 6f 66 20 6c | n.of.labels.using.some.sort.of.l |
| ca1c0 | 61 62 65 6c 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 70 72 6f 74 6f 63 6f 6c 20 28 73 75 63 68 | abel.distribution.protocol.(such |
| ca1e0 | 20 61 73 20 74 68 65 20 61 70 74 6c 79 20 6e 61 6d 65 64 20 4c 61 62 65 6c 20 44 69 73 74 72 69 | .as.the.aptly.named.Label.Distri |
| ca200 | 62 75 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 20 2f 20 4c 44 50 2c 20 52 65 73 6f 75 72 63 65 20 | bution.Protocol./.LDP,.Resource. |
| ca220 | 52 65 73 65 72 76 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 20 2f 20 52 53 56 50 2c 20 6f 72 20 | Reservation.Protocol./.RSVP,.or. |
| ca240 | 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 74 68 72 6f 75 67 68 20 4f 53 50 46 2f 49 53 49 | Segment.Routing.through.OSPF/ISI |
| ca260 | 53 29 2e 20 54 68 65 73 65 20 70 72 6f 74 6f 63 6f 6c 73 20 61 6c 6c 6f 77 20 66 6f 72 20 74 68 | S)..These.protocols.allow.for.th |
| ca280 | 65 20 63 72 65 61 74 69 6f 6e 20 6f 66 20 61 20 75 6e 69 64 69 72 65 63 74 69 6f 6e 61 6c 2f 75 | e.creation.of.a.unidirectional/u |
| ca2a0 | 6e 69 63 61 73 74 20 70 61 74 68 20 63 61 6c 6c 65 64 20 61 20 6c 61 62 65 6c 65 64 20 73 77 69 | nicast.path.called.a.labeled.swi |
| ca2c0 | 74 63 68 65 64 20 70 61 74 68 20 28 69 6e 69 74 69 61 6c 69 7a 65 64 20 61 73 20 4c 53 50 29 20 | tched.path.(initialized.as.LSP). |
| ca2e0 | 74 68 72 6f 75 67 68 6f 75 74 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 74 68 61 74 20 6f 70 65 72 | throughout.the.network.that.oper |
| ca300 | 61 74 65 73 20 76 65 72 79 20 6d 75 63 68 20 6c 69 6b 65 20 61 20 74 75 6e 6e 65 6c 20 74 68 72 | ates.very.much.like.a.tunnel.thr |
| ca320 | 6f 75 67 68 20 74 68 65 20 6e 65 74 77 6f 72 6b 2e 20 41 6e 20 65 61 73 79 20 77 61 79 20 6f 66 | ough.the.network..An.easy.way.of |
| ca340 | 20 74 68 69 6e 6b 69 6e 67 20 61 62 6f 75 74 20 68 6f 77 20 61 6e 20 4d 50 4c 53 20 4c 53 50 20 | .thinking.about.how.an.MPLS.LSP. |
| ca360 | 61 63 74 75 61 6c 6c 79 20 66 6f 72 77 61 72 64 73 20 74 72 61 66 66 69 63 20 74 68 72 6f 75 67 | actually.forwards.traffic.throug |
| ca380 | 68 6f 75 74 20 61 20 6e 65 74 77 6f 72 6b 20 69 73 20 74 6f 20 74 68 69 6e 6b 20 6f 66 20 61 20 | hout.a.network.is.to.think.of.a. |
| ca3a0 | 47 52 45 20 74 75 6e 6e 65 6c 2e 20 54 68 65 79 20 61 72 65 20 6e 6f 74 20 74 68 65 20 73 61 6d | GRE.tunnel..They.are.not.the.sam |
| ca3c0 | 65 20 69 6e 20 68 6f 77 20 74 68 65 79 20 6f 70 65 72 61 74 65 2c 20 62 75 74 20 74 68 65 79 20 | e.in.how.they.operate,.but.they. |
| ca3e0 | 61 72 65 20 74 68 65 20 73 61 6d 65 20 69 6e 20 68 6f 77 20 74 68 65 79 20 68 61 6e 64 6c 65 20 | are.the.same.in.how.they.handle. |
| ca400 | 74 68 65 20 74 75 6e 6e 65 6c 65 64 20 70 61 63 6b 65 74 2e 20 49 74 20 77 6f 75 6c 64 20 62 65 | the.tunneled.packet..It.would.be |
| ca420 | 20 67 6f 6f 64 20 74 6f 20 74 68 69 6e 6b 20 6f 66 20 4d 50 4c 53 20 61 73 20 61 20 74 75 6e 6e | .good.to.think.of.MPLS.as.a.tunn |
| ca440 | 65 6c 69 6e 67 20 74 65 63 68 6e 6f 6c 6f 67 79 20 74 68 61 74 20 63 61 6e 20 62 65 20 75 73 65 | eling.technology.that.can.be.use |
| ca460 | 64 20 74 6f 20 74 72 61 6e 73 70 6f 72 74 20 6d 61 6e 79 20 64 69 66 66 65 72 65 6e 74 20 74 79 | d.to.transport.many.different.ty |
| ca480 | 70 65 73 20 6f 66 20 70 61 63 6b 65 74 73 2c 20 74 6f 20 61 69 64 20 69 6e 20 74 72 61 66 66 69 | pes.of.packets,.to.aid.in.traffi |
| ca4a0 | 63 20 65 6e 67 69 6e 65 65 72 69 6e 67 20 62 79 20 61 6c 6c 6f 77 69 6e 67 20 6f 6e 65 20 74 6f | c.engineering.by.allowing.one.to |
| ca4c0 | 20 73 70 65 63 69 66 79 20 70 61 74 68 73 20 74 68 72 6f 75 67 68 6f 75 74 20 74 68 65 20 6e 65 | .specify.paths.throughout.the.ne |
| ca4e0 | 74 77 6f 72 6b 20 28 75 73 69 6e 67 20 52 53 56 50 20 6f 72 20 53 52 29 2c 20 61 6e 64 20 74 6f | twork.(using.RSVP.or.SR),.and.to |
| ca500 | 20 67 65 6e 65 72 61 6c 6c 79 20 61 6c 6c 6f 77 20 66 6f 72 20 65 61 73 69 65 72 20 69 6e 74 72 | .generally.allow.for.easier.intr |
| ca520 | 61 2f 69 6e 74 65 72 20 6e 65 74 77 6f 72 6b 20 74 72 61 6e 73 70 6f 72 74 20 6f 66 20 64 61 74 | a/inter.network.transport.of.dat |
| ca540 | 61 20 70 61 63 6b 65 74 73 2e 00 3a 61 62 62 72 3a 60 4e 41 54 20 28 4e 65 74 77 6f 72 6b 20 41 | a.packets..:abbr:`NAT.(Network.A |
| ca560 | 64 64 72 65 73 73 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 69 73 20 61 20 63 6f 6d 6d 6f 6e | ddress.Translation)`.is.a.common |
| ca580 | 20 6d 65 74 68 6f 64 20 6f 66 20 72 65 6d 61 70 70 69 6e 67 20 6f 6e 65 20 49 50 20 61 64 64 72 | .method.of.remapping.one.IP.addr |
| ca5a0 | 65 73 73 20 73 70 61 63 65 20 69 6e 74 6f 20 61 6e 6f 74 68 65 72 20 62 79 20 6d 6f 64 69 66 79 | ess.space.into.another.by.modify |
| ca5c0 | 69 6e 67 20 6e 65 74 77 6f 72 6b 20 61 64 64 72 65 73 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 | ing.network.address.information. |
| ca5e0 | 69 6e 20 74 68 65 20 49 50 20 68 65 61 64 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 77 68 69 6c | in.the.IP.header.of.packets.whil |
| ca600 | 65 20 74 68 65 79 20 61 72 65 20 69 6e 20 74 72 61 6e 73 69 74 20 61 63 72 6f 73 73 20 61 20 74 | e.they.are.in.transit.across.a.t |
| ca620 | 72 61 66 66 69 63 20 72 6f 75 74 69 6e 67 20 64 65 76 69 63 65 2e 20 54 68 65 20 74 65 63 68 6e | raffic.routing.device..The.techn |
| ca640 | 69 71 75 65 20 77 61 73 20 6f 72 69 67 69 6e 61 6c 6c 79 20 75 73 65 64 20 61 73 20 61 20 73 68 | ique.was.originally.used.as.a.sh |
| ca660 | 6f 72 74 63 75 74 20 74 6f 20 61 76 6f 69 64 20 74 68 65 20 6e 65 65 64 20 74 6f 20 72 65 61 64 | ortcut.to.avoid.the.need.to.read |
| ca680 | 64 72 65 73 73 20 65 76 65 72 79 20 68 6f 73 74 20 77 68 65 6e 20 61 20 6e 65 74 77 6f 72 6b 20 | dress.every.host.when.a.network. |
| ca6a0 | 77 61 73 20 6d 6f 76 65 64 2e 20 49 74 20 68 61 73 20 62 65 63 6f 6d 65 20 61 20 70 6f 70 75 6c | was.moved..It.has.become.a.popul |
| ca6c0 | 61 72 20 61 6e 64 20 65 73 73 65 6e 74 69 61 6c 20 74 6f 6f 6c 20 69 6e 20 63 6f 6e 73 65 72 76 | ar.and.essential.tool.in.conserv |
| ca6e0 | 69 6e 67 20 67 6c 6f 62 61 6c 20 61 64 64 72 65 73 73 20 73 70 61 63 65 20 69 6e 20 74 68 65 20 | ing.global.address.space.in.the. |
| ca700 | 66 61 63 65 20 6f 66 20 49 50 76 34 20 61 64 64 72 65 73 73 20 65 78 68 61 75 73 74 69 6f 6e 2e | face.of.IPv4.address.exhaustion. |
| ca720 | 20 4f 6e 65 20 49 6e 74 65 72 6e 65 74 2d 72 6f 75 74 61 62 6c 65 20 49 50 20 61 64 64 72 65 73 | .One.Internet-routable.IP.addres |
| ca740 | 73 20 6f 66 20 61 20 4e 41 54 20 67 61 74 65 77 61 79 20 63 61 6e 20 62 65 20 75 73 65 64 20 66 | s.of.a.NAT.gateway.can.be.used.f |
| ca760 | 6f 72 20 61 6e 20 65 6e 74 69 72 65 20 70 72 69 76 61 74 65 20 6e 65 74 77 6f 72 6b 2e 00 3a 61 | or.an.entire.private.network..:a |
| ca780 | 62 62 72 3a 60 4e 41 54 20 28 4e 65 74 77 6f 72 6b 20 41 64 64 72 65 73 73 20 54 72 61 6e 73 6c | bbr:`NAT.(Network.Address.Transl |
| ca7a0 | 61 74 69 6f 6e 29 60 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 65 6e 74 69 72 65 6c 79 20 6f | ation)`.is.configured.entirely.o |
| ca7c0 | 6e 20 61 20 73 65 72 69 65 73 20 6f 66 20 73 6f 20 63 61 6c 6c 65 64 20 60 72 75 6c 65 73 60 2e | n.a.series.of.so.called.`rules`. |
| ca7e0 | 20 52 75 6c 65 73 20 61 72 65 20 6e 75 6d 62 65 72 65 64 20 61 6e 64 20 65 76 61 6c 75 61 74 65 | .Rules.are.numbered.and.evaluate |
| ca800 | 64 20 62 79 20 74 68 65 20 75 6e 64 65 72 6c 79 69 6e 67 20 4f 53 20 69 6e 20 6e 75 6d 65 72 69 | d.by.the.underlying.OS.in.numeri |
| ca820 | 63 61 6c 20 6f 72 64 65 72 21 20 54 68 65 20 72 75 6c 65 20 6e 75 6d 62 65 72 73 20 63 61 6e 20 | cal.order!.The.rule.numbers.can. |
| ca840 | 62 65 20 63 68 61 6e 67 65 73 20 62 79 20 75 74 69 6c 69 7a 69 6e 67 20 74 68 65 20 3a 63 66 67 | be.changes.by.utilizing.the.:cfg |
| ca860 | 63 6d 64 3a 60 72 65 6e 61 6d 65 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 63 6f 70 79 60 20 | cmd:`rename`.and.:cfgcmd:`copy`. |
| ca880 | 63 6f 6d 6d 61 6e 64 73 2e 00 3a 61 62 62 72 3a 60 4e 41 54 36 34 20 28 49 50 76 36 2d 74 6f 2d | commands..:abbr:`NAT64.(IPv6-to- |
| ca8a0 | 49 50 76 34 20 50 72 65 66 69 78 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 69 73 20 61 20 63 | IPv4.Prefix.Translation)`.is.a.c |
| ca8c0 | 72 69 74 69 63 61 6c 20 63 6f 6d 70 6f 6e 65 6e 74 20 69 6e 20 6d 6f 64 65 72 6e 20 6e 65 74 77 | ritical.component.in.modern.netw |
| ca8e0 | 6f 72 6b 69 6e 67 2c 20 66 61 63 69 6c 69 74 61 74 69 6e 67 20 63 6f 6d 6d 75 6e 69 63 61 74 69 | orking,.facilitating.communicati |
| ca900 | 6f 6e 20 62 65 74 77 65 65 6e 20 49 50 76 36 20 61 6e 64 20 49 50 76 34 20 6e 65 74 77 6f 72 6b | on.between.IPv6.and.IPv4.network |
| ca920 | 73 2e 20 54 68 69 73 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 6f 75 74 6c 69 6e 65 73 20 74 | s..This.documentation.outlines.t |
| ca940 | 68 65 20 73 65 74 75 70 2c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 61 6e 64 20 75 73 61 | he.setup,.configuration,.and.usa |
| ca960 | 67 65 20 6f 66 20 74 68 65 20 4e 41 54 36 34 20 66 65 61 74 75 72 65 20 69 6e 20 79 6f 75 72 20 | ge.of.the.NAT64.feature.in.your. |
| ca980 | 70 72 6f 6a 65 63 74 2e 20 57 68 65 74 68 65 72 20 79 6f 75 20 61 72 65 20 74 72 61 6e 73 69 74 | project..Whether.you.are.transit |
| ca9a0 | 69 6f 6e 69 6e 67 20 74 6f 20 49 50 76 36 20 6f 72 20 6e 65 65 64 20 74 6f 20 73 65 61 6d 6c 65 | ioning.to.IPv6.or.need.to.seamle |
| ca9c0 | 73 73 6c 79 20 63 6f 6e 6e 65 63 74 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 64 65 76 69 63 | ssly.connect.IPv4.and.IPv6.devic |
| ca9e0 | 65 73 2e 20 4e 41 54 36 34 20 69 73 20 61 20 73 74 61 74 65 66 75 6c 20 74 72 61 6e 73 6c 61 74 | es..NAT64.is.a.stateful.translat |
| caa00 | 69 6f 6e 20 6d 65 63 68 61 6e 69 73 6d 20 74 68 61 74 20 74 72 61 6e 73 6c 61 74 65 73 20 49 50 | ion.mechanism.that.translates.IP |
| caa20 | 76 36 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 49 50 76 34 20 61 64 64 72 65 73 73 65 73 20 61 | v6.addresses.to.IPv4.addresses.a |
| caa40 | 6e 64 20 49 50 76 34 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 49 50 76 36 20 61 64 64 72 65 73 | nd.IPv4.addresses.to.IPv6.addres |
| caa60 | 73 65 73 2e 20 4e 41 54 36 34 20 69 73 20 75 73 65 64 20 74 6f 20 65 6e 61 62 6c 65 20 49 50 76 | ses..NAT64.is.used.to.enable.IPv |
| caa80 | 36 2d 6f 6e 6c 79 20 63 6c 69 65 6e 74 73 20 74 6f 20 63 6f 6e 74 61 63 74 20 49 50 76 34 20 73 | 6-only.clients.to.contact.IPv4.s |
| caaa0 | 65 72 76 65 72 73 20 75 73 69 6e 67 20 75 6e 69 63 61 73 74 20 55 44 50 2c 20 54 43 50 2c 20 6f | ervers.using.unicast.UDP,.TCP,.o |
| caac0 | 72 20 49 43 4d 50 2e 00 3a 61 62 62 72 3a 60 4e 45 54 20 28 4e 65 74 77 6f 72 6b 20 45 6e 74 69 | r.ICMP..:abbr:`NET.(Network.Enti |
| caae0 | 74 79 20 54 69 74 6c 65 29 60 20 73 65 6c 65 63 74 6f 72 3a 20 60 60 30 30 60 60 20 4d 75 73 74 | ty.Title)`.selector:.``00``.Must |
| cab00 | 20 61 6c 77 61 79 73 20 62 65 20 30 30 2e 20 54 68 69 73 20 73 65 74 74 69 6e 67 20 69 6e 64 69 | .always.be.00..This.setting.indi |
| cab20 | 63 61 74 65 73 20 22 74 68 69 73 20 73 79 73 74 65 6d 22 20 6f 72 20 22 6c 6f 63 61 6c 20 73 79 | cates."this.system".or."local.sy |
| cab40 | 73 74 65 6d 2e 22 00 3a 61 62 62 72 3a 60 4e 48 52 50 20 28 4e 65 78 74 20 48 6f 70 20 52 65 73 | stem.".:abbr:`NHRP.(Next.Hop.Res |
| cab60 | 6f 6c 75 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 29 60 20 3a 72 66 63 3a 60 32 33 33 32 60 00 3a | olution.Protocol)`.:rfc:`2332`.: |
| cab80 | 61 62 62 72 3a 60 4e 50 54 76 36 20 28 49 50 76 36 2d 74 6f 2d 49 50 76 36 20 4e 65 74 77 6f 72 | abbr:`NPTv6.(IPv6-to-IPv6.Networ |
| caba0 | 6b 20 50 72 65 66 69 78 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 69 73 20 61 6e 20 61 64 64 | k.Prefix.Translation)`.is.an.add |
| cabc0 | 72 65 73 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 74 65 63 68 6e 6f 6c 6f 67 79 20 62 61 73 65 | ress.translation.technology.base |
| cabe0 | 64 20 6f 6e 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 73 2c 20 75 73 65 64 20 74 6f 20 63 6f 6e 76 | d.on.IPv6.networks,.used.to.conv |
| cac00 | 65 72 74 20 61 6e 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 72 65 66 69 78 20 69 6e 20 61 6e | ert.an.IPv6.address.prefix.in.an |
| cac20 | 20 49 50 76 36 20 6d 65 73 73 61 67 65 20 69 6e 74 6f 20 61 6e 6f 74 68 65 72 20 49 50 76 36 20 | .IPv6.message.into.another.IPv6. |
| cac40 | 61 64 64 72 65 73 73 20 70 72 65 66 69 78 2e 20 57 65 20 63 61 6c 6c 20 74 68 69 73 20 61 64 64 | address.prefix..We.call.this.add |
| cac60 | 72 65 73 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 6d 65 74 68 6f 64 20 4e 41 54 36 36 2e 20 44 | ress.translation.method.NAT66..D |
| cac80 | 65 76 69 63 65 73 20 74 68 61 74 20 73 75 70 70 6f 72 74 20 74 68 65 20 4e 41 54 36 36 20 66 75 | evices.that.support.the.NAT66.fu |
| caca0 | 6e 63 74 69 6f 6e 20 61 72 65 20 63 61 6c 6c 65 64 20 4e 41 54 36 36 20 64 65 76 69 63 65 73 2c | nction.are.called.NAT66.devices, |
| cacc0 | 20 77 68 69 63 68 20 63 61 6e 20 70 72 6f 76 69 64 65 20 4e 41 54 36 36 20 73 6f 75 72 63 65 20 | .which.can.provide.NAT66.source. |
| cace0 | 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 74 72 61 6e 73 6c 61 74 | and.destination.address.translat |
| cad00 | 69 6f 6e 20 66 75 6e 63 74 69 6f 6e 73 2e 00 3a 61 62 62 72 3a 60 4e 54 50 20 28 4e 65 74 77 6f | ion.functions..:abbr:`NTP.(Netwo |
| cad20 | 72 6b 20 54 69 6d 65 20 50 72 6f 74 6f 63 6f 6c 60 29 20 69 73 20 61 20 6e 65 74 77 6f 72 6b 69 | rk.Time.Protocol`).is.a.networki |
| cad40 | 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 66 6f 72 20 63 6c 6f 63 6b 20 73 79 6e 63 68 72 6f 6e 69 7a | ng.protocol.for.clock.synchroniz |
| cad60 | 61 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 63 6f 6d 70 75 74 65 72 20 73 79 73 74 65 6d 73 20 6f | ation.between.computer.systems.o |
| cad80 | 76 65 72 20 70 61 63 6b 65 74 2d 73 77 69 74 63 68 65 64 2c 20 76 61 72 69 61 62 6c 65 2d 6c 61 | ver.packet-switched,.variable-la |
| cada0 | 74 65 6e 63 79 20 64 61 74 61 20 6e 65 74 77 6f 72 6b 73 2e 20 49 6e 20 6f 70 65 72 61 74 69 6f | tency.data.networks..In.operatio |
| cadc0 | 6e 20 73 69 6e 63 65 20 62 65 66 6f 72 65 20 31 39 38 35 2c 20 4e 54 50 20 69 73 20 6f 6e 65 20 | n.since.before.1985,.NTP.is.one. |
| cade0 | 6f 66 20 74 68 65 20 6f 6c 64 65 73 74 20 49 6e 74 65 72 6e 65 74 20 70 72 6f 74 6f 63 6f 6c 73 | of.the.oldest.Internet.protocols |
| cae00 | 20 69 6e 20 63 75 72 72 65 6e 74 20 75 73 65 2e 00 3a 61 62 62 72 3a 60 4f 53 50 46 20 28 4f 70 | .in.current.use..:abbr:`OSPF.(Op |
| cae20 | 65 6e 20 53 68 6f 72 74 65 73 74 20 50 61 74 68 20 46 69 72 73 74 29 60 20 69 73 20 61 20 72 6f | en.Shortest.Path.First)`.is.a.ro |
| cae40 | 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 66 6f 72 20 49 6e 74 65 72 6e 65 74 20 50 72 6f 74 | uting.protocol.for.Internet.Prot |
| cae60 | 6f 63 6f 6c 20 28 49 50 29 20 6e 65 74 77 6f 72 6b 73 2e 20 49 74 20 75 73 65 73 20 61 20 6c 69 | ocol.(IP).networks..It.uses.a.li |
| cae80 | 6e 6b 20 73 74 61 74 65 20 72 6f 75 74 69 6e 67 20 28 4c 53 52 29 20 61 6c 67 6f 72 69 74 68 6d | nk.state.routing.(LSR).algorithm |
| caea0 | 20 61 6e 64 20 66 61 6c 6c 73 20 69 6e 74 6f 20 74 68 65 20 67 72 6f 75 70 20 6f 66 20 69 6e 74 | .and.falls.into.the.group.of.int |
| caec0 | 65 72 69 6f 72 20 67 61 74 65 77 61 79 20 70 72 6f 74 6f 63 6f 6c 73 20 28 49 47 50 73 29 2c 20 | erior.gateway.protocols.(IGPs),. |
| caee0 | 6f 70 65 72 61 74 69 6e 67 20 77 69 74 68 69 6e 20 61 20 73 69 6e 67 6c 65 20 61 75 74 6f 6e 6f | operating.within.a.single.autono |
| caf00 | 6d 6f 75 73 20 73 79 73 74 65 6d 20 28 41 53 29 2e 20 49 74 20 69 73 20 64 65 66 69 6e 65 64 20 | mous.system.(AS)..It.is.defined. |
| caf20 | 61 73 20 4f 53 50 46 20 56 65 72 73 69 6f 6e 20 32 20 69 6e 20 3a 72 66 63 3a 60 32 33 32 38 60 | as.OSPF.Version.2.in.:rfc:`2328` |
| caf40 | 20 28 31 39 39 38 29 20 66 6f 72 20 49 50 76 34 2e 20 55 70 64 61 74 65 73 20 66 6f 72 20 49 50 | .(1998).for.IPv4..Updates.for.IP |
| caf60 | 76 36 20 61 72 65 20 73 70 65 63 69 66 69 65 64 20 61 73 20 4f 53 50 46 20 56 65 72 73 69 6f 6e | v6.are.specified.as.OSPF.Version |
| caf80 | 20 33 20 69 6e 20 3a 72 66 63 3a 60 35 33 34 30 60 20 28 32 30 30 38 29 2e 20 4f 53 50 46 20 73 | .3.in.:rfc:`5340`.(2008)..OSPF.s |
| cafa0 | 75 70 70 6f 72 74 73 20 74 68 65 20 3a 61 62 62 72 3a 60 43 49 44 52 20 28 43 6c 61 73 73 6c 65 | upports.the.:abbr:`CIDR.(Classle |
| cafc0 | 73 73 20 49 6e 74 65 72 2d 44 6f 6d 61 69 6e 20 52 6f 75 74 69 6e 67 29 60 20 61 64 64 72 65 73 | ss.Inter-Domain.Routing)`.addres |
| cafe0 | 73 69 6e 67 20 6d 6f 64 65 6c 2e 00 3a 61 62 62 72 3a 60 50 49 4d 20 28 50 72 6f 74 6f 63 6f 6c | sing.model..:abbr:`PIM.(Protocol |
| cb000 | 20 49 6e 64 65 70 65 6e 64 65 6e 74 20 4d 75 6c 74 69 63 61 73 74 29 60 20 6d 75 73 74 20 62 65 | .Independent.Multicast)`.must.be |
| cb020 | 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 65 76 65 72 79 20 69 6e 74 65 72 66 61 63 65 20 6f | .configured.in.every.interface.o |
| cb040 | 66 20 65 76 65 72 79 20 70 61 72 74 69 63 69 70 61 74 69 6e 67 20 72 6f 75 74 65 72 2e 20 45 76 | f.every.participating.router..Ev |
| cb060 | 65 72 79 20 72 6f 75 74 65 72 20 6d 75 73 74 20 61 6c 73 6f 20 68 61 76 65 20 74 68 65 20 6c 6f | ery.router.must.also.have.the.lo |
| cb080 | 63 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 52 65 6e 64 65 76 6f 75 7a 20 50 6f 69 6e 74 20 6d 61 | cation.of.the.Rendevouz.Point.ma |
| cb0a0 | 6e 75 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 68 65 6e 2c 20 75 6e 69 64 69 72 65 | nually.configured..Then,.unidire |
| cb0c0 | 63 74 69 6f 6e 61 6c 20 73 68 61 72 65 64 20 74 72 65 65 73 20 72 6f 6f 74 65 64 20 61 74 20 74 | ctional.shared.trees.rooted.at.t |
| cb0e0 | 68 65 20 52 65 6e 64 65 76 6f 75 7a 20 50 6f 69 6e 74 20 77 69 6c 6c 20 61 75 74 6f 6d 61 74 69 | he.Rendevouz.Point.will.automati |
| cb100 | 63 61 6c 6c 79 20 62 65 20 62 75 69 6c 74 20 66 6f 72 20 6d 75 6c 74 69 63 61 73 74 20 64 69 73 | cally.be.built.for.multicast.dis |
| cb120 | 74 72 69 62 75 74 69 6f 6e 2e 00 3a 61 62 62 72 3a 60 50 50 50 6f 45 20 28 50 6f 69 6e 74 2d 74 | tribution..:abbr:`PPPoE.(Point-t |
| cb140 | 6f 2d 50 6f 69 6e 74 20 50 72 6f 74 6f 63 6f 6c 20 6f 76 65 72 20 45 74 68 65 72 6e 65 74 29 60 | o-Point.Protocol.over.Ethernet)` |
| cb160 | 20 69 73 20 61 20 6e 65 74 77 6f 72 6b 20 70 72 6f 74 6f 63 6f 6c 20 66 6f 72 20 65 6e 63 61 70 | .is.a.network.protocol.for.encap |
| cb180 | 73 75 6c 61 74 69 6e 67 20 50 50 50 20 66 72 61 6d 65 73 20 69 6e 73 69 64 65 20 45 74 68 65 72 | sulating.PPP.frames.inside.Ether |
| cb1a0 | 6e 65 74 20 66 72 61 6d 65 73 2e 20 49 74 20 61 70 70 65 61 72 65 64 20 69 6e 20 31 39 39 39 2c | net.frames..It.appeared.in.1999, |
| cb1c0 | 20 69 6e 20 74 68 65 20 63 6f 6e 74 65 78 74 20 6f 66 20 74 68 65 20 62 6f 6f 6d 20 6f 66 20 44 | .in.the.context.of.the.boom.of.D |
| cb1e0 | 53 4c 20 61 73 20 74 68 65 20 73 6f 6c 75 74 69 6f 6e 20 66 6f 72 20 74 75 6e 6e 65 6c 69 6e 67 | SL.as.the.solution.for.tunneling |
| cb200 | 20 70 61 63 6b 65 74 73 20 6f 76 65 72 20 74 68 65 20 44 53 4c 20 63 6f 6e 6e 65 63 74 69 6f 6e | .packets.over.the.DSL.connection |
| cb220 | 20 74 6f 20 74 68 65 20 3a 61 62 62 72 3a 60 49 53 50 73 20 28 49 6e 74 65 72 6e 65 74 20 53 65 | .to.the.:abbr:`ISPs.(Internet.Se |
| cb240 | 72 76 69 63 65 20 50 72 6f 76 69 64 65 72 73 29 60 20 49 50 20 6e 65 74 77 6f 72 6b 2c 20 61 6e | rvice.Providers)`.IP.network,.an |
| cb260 | 64 20 66 72 6f 6d 20 74 68 65 72 65 20 74 6f 20 74 68 65 20 72 65 73 74 20 6f 66 20 74 68 65 20 | d.from.there.to.the.rest.of.the. |
| cb280 | 49 6e 74 65 72 6e 65 74 2e 20 41 20 32 30 30 35 20 6e 65 74 77 6f 72 6b 69 6e 67 20 62 6f 6f 6b | Internet..A.2005.networking.book |
| cb2a0 | 20 6e 6f 74 65 64 20 74 68 61 74 20 22 4d 6f 73 74 20 44 53 4c 20 70 72 6f 76 69 64 65 72 73 20 | .noted.that."Most.DSL.providers. |
| cb2c0 | 75 73 65 20 50 50 50 6f 45 2c 20 77 68 69 63 68 20 70 72 6f 76 69 64 65 73 20 61 75 74 68 65 6e | use.PPPoE,.which.provides.authen |
| cb2e0 | 74 69 63 61 74 69 6f 6e 2c 20 65 6e 63 72 79 70 74 69 6f 6e 2c 20 61 6e 64 20 63 6f 6d 70 72 65 | tication,.encryption,.and.compre |
| cb300 | 73 73 69 6f 6e 2e 22 20 54 79 70 69 63 61 6c 20 75 73 65 20 6f 66 20 50 50 50 6f 45 20 69 6e 76 | ssion.".Typical.use.of.PPPoE.inv |
| cb320 | 6f 6c 76 65 73 20 6c 65 76 65 72 61 67 69 6e 67 20 74 68 65 20 50 50 50 20 66 61 63 69 6c 69 74 | olves.leveraging.the.PPP.facilit |
| cb340 | 69 65 73 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 74 68 65 20 75 73 65 72 20 | ies.for.authenticating.the.user. |
| cb360 | 77 69 74 68 20 61 20 75 73 65 72 6e 61 6d 65 20 61 6e 64 20 70 61 73 73 77 6f 72 64 2c 20 70 72 | with.a.username.and.password,.pr |
| cb380 | 65 64 6f 6d 69 6e 61 74 65 6c 79 20 76 69 61 20 74 68 65 20 50 41 50 20 70 72 6f 74 6f 63 6f 6c | edominately.via.the.PAP.protocol |
| cb3a0 | 20 61 6e 64 20 6c 65 73 73 20 6f 66 74 65 6e 20 76 69 61 20 43 48 41 50 2e 00 3a 61 62 62 72 3a | .and.less.often.via.CHAP..:abbr: |
| cb3c0 | 60 52 41 73 20 28 52 6f 75 74 65 72 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 73 29 60 20 61 72 | `RAs.(Router.advertisements)`.ar |
| cb3e0 | 65 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 34 38 36 31 23 73 65 63 74 69 6f | e.described.in.:rfc:`4861#sectio |
| cb400 | 6e 2d 34 2e 36 2e 32 60 2e 20 54 68 65 79 20 61 72 65 20 70 61 72 74 20 6f 66 20 77 68 61 74 20 | n-4.6.2`..They.are.part.of.what. |
| cb420 | 69 73 20 6b 6e 6f 77 6e 20 61 73 20 3a 61 62 62 72 3a 60 53 4c 41 41 43 20 28 53 74 61 74 65 6c | is.known.as.:abbr:`SLAAC.(Statel |
| cb440 | 65 73 73 20 41 64 64 72 65 73 73 20 41 75 74 6f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 29 60 2e | ess.Address.Autoconfiguration)`. |
| cb460 | 00 3a 61 62 62 72 3a 60 52 49 50 20 28 52 6f 75 74 69 6e 67 20 49 6e 66 6f 72 6d 61 74 69 6f 6e | .:abbr:`RIP.(Routing.Information |
| cb480 | 20 50 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 61 20 77 69 64 65 6c 79 20 64 65 70 6c 6f 79 65 64 | .Protocol)`.is.a.widely.deployed |
| cb4a0 | 20 69 6e 74 65 72 69 6f 72 20 67 61 74 65 77 61 79 20 70 72 6f 74 6f 63 6f 6c 2e 20 52 49 50 20 | .interior.gateway.protocol..RIP. |
| cb4c0 | 77 61 73 20 64 65 76 65 6c 6f 70 65 64 20 69 6e 20 74 68 65 20 31 39 37 30 73 20 61 74 20 58 65 | was.developed.in.the.1970s.at.Xe |
| cb4e0 | 72 6f 78 20 4c 61 62 73 20 61 73 20 70 61 72 74 20 6f 66 20 74 68 65 20 58 4e 53 20 72 6f 75 74 | rox.Labs.as.part.of.the.XNS.rout |
| cb500 | 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 2e 20 52 49 50 20 69 73 20 61 20 64 69 73 74 61 6e 63 65 2d | ing.protocol..RIP.is.a.distance- |
| cb520 | 76 65 63 74 6f 72 20 70 72 6f 74 6f 63 6f 6c 20 61 6e 64 20 69 73 20 62 61 73 65 64 20 6f 6e 20 | vector.protocol.and.is.based.on. |
| cb540 | 74 68 65 20 42 65 6c 6c 6d 61 6e 2d 46 6f 72 64 20 61 6c 67 6f 72 69 74 68 6d 73 2e 20 41 73 20 | the.Bellman-Ford.algorithms..As. |
| cb560 | 61 20 64 69 73 74 61 6e 63 65 2d 76 65 63 74 6f 72 20 70 72 6f 74 6f 63 6f 6c 2c 20 52 49 50 20 | a.distance-vector.protocol,.RIP. |
| cb580 | 72 6f 75 74 65 72 20 73 65 6e 64 20 75 70 64 61 74 65 73 20 74 6f 20 69 74 73 20 6e 65 69 67 68 | router.send.updates.to.its.neigh |
| cb5a0 | 62 6f 72 73 20 70 65 72 69 6f 64 69 63 61 6c 6c 79 2c 20 74 68 75 73 20 61 6c 6c 6f 77 69 6e 67 | bors.periodically,.thus.allowing |
| cb5c0 | 20 74 68 65 20 63 6f 6e 76 65 72 67 65 6e 63 65 20 74 6f 20 61 20 6b 6e 6f 77 6e 20 74 6f 70 6f | .the.convergence.to.a.known.topo |
| cb5e0 | 6c 6f 67 79 2e 20 49 6e 20 65 61 63 68 20 75 70 64 61 74 65 2c 20 74 68 65 20 64 69 73 74 61 6e | logy..In.each.update,.the.distan |
| cb600 | 63 65 20 74 6f 20 61 6e 79 20 67 69 76 65 6e 20 6e 65 74 77 6f 72 6b 20 77 69 6c 6c 20 62 65 20 | ce.to.any.given.network.will.be. |
| cb620 | 62 72 6f 61 64 63 61 73 74 20 74 6f 20 69 74 73 20 6e 65 69 67 68 62 6f 72 69 6e 67 20 72 6f 75 | broadcast.to.its.neighboring.rou |
| cb640 | 74 65 72 2e 00 3a 61 62 62 72 3a 60 52 50 4b 49 20 28 52 65 73 6f 75 72 63 65 20 50 75 62 6c 69 | ter..:abbr:`RPKI.(Resource.Publi |
| cb660 | 63 20 4b 65 79 20 49 6e 66 72 61 73 74 72 75 63 74 75 72 65 29 60 20 69 73 20 61 20 66 72 61 6d | c.Key.Infrastructure)`.is.a.fram |
| cb680 | 65 77 6f 72 6b 20 3a 61 62 62 72 3a 60 50 4b 49 20 28 50 75 62 6c 69 63 20 4b 65 79 20 49 6e 66 | ework.:abbr:`PKI.(Public.Key.Inf |
| cb6a0 | 72 61 73 74 72 75 63 74 75 72 65 29 60 20 64 65 73 69 67 6e 65 64 20 74 6f 20 73 65 63 75 72 65 | rastructure)`.designed.to.secure |
| cb6c0 | 20 74 68 65 20 49 6e 74 65 72 6e 65 74 20 72 6f 75 74 69 6e 67 20 69 6e 66 72 61 73 74 72 75 63 | .the.Internet.routing.infrastruc |
| cb6e0 | 74 75 72 65 2e 20 49 74 20 61 73 73 6f 63 69 61 74 65 73 20 42 47 50 20 72 6f 75 74 65 20 61 6e | ture..It.associates.BGP.route.an |
| cb700 | 6e 6f 75 6e 63 65 6d 65 6e 74 73 20 77 69 74 68 20 74 68 65 20 63 6f 72 72 65 63 74 20 6f 72 69 | nouncements.with.the.correct.ori |
| cb720 | 67 69 6e 61 74 69 6e 67 20 3a 61 62 62 72 3a 60 41 53 4e 20 28 41 75 74 6f 6e 6f 6d 75 73 20 53 | ginating.:abbr:`ASN.(Autonomus.S |
| cb740 | 79 73 74 65 6d 20 4e 75 6d 62 65 72 29 60 20 77 68 69 63 68 20 42 47 50 20 72 6f 75 74 65 72 73 | ystem.Number)`.which.BGP.routers |
| cb760 | 20 63 61 6e 20 74 68 65 6e 20 75 73 65 20 74 6f 20 63 68 65 63 6b 20 65 61 63 68 20 72 6f 75 74 | .can.then.use.to.check.each.rout |
| cb780 | 65 20 61 67 61 69 6e 73 74 20 74 68 65 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e 67 20 3a 61 62 62 | e.against.the.corresponding.:abb |
| cb7a0 | 72 3a 60 52 4f 41 20 28 52 6f 75 74 65 20 4f 72 69 67 69 6e 20 41 75 74 68 6f 72 69 73 61 74 69 | r:`ROA.(Route.Origin.Authorisati |
| cb7c0 | 6f 6e 29 60 20 66 6f 72 20 76 61 6c 69 64 69 74 79 2e 20 52 50 4b 49 20 69 73 20 64 65 73 63 72 | on)`.for.validity..RPKI.is.descr |
| cb7e0 | 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 36 34 38 30 60 2e 00 3a 61 62 62 72 3a 60 52 50 4b 49 | ibed.in.:rfc:`6480`..:abbr:`RPKI |
| cb800 | 20 28 52 65 73 6f 75 72 63 65 20 50 75 62 6c 69 63 20 4b 65 79 20 49 6e 66 72 61 73 74 72 75 63 | .(Resource.Public.Key.Infrastruc |
| cb820 | 74 75 72 65 29 60 20 69 73 20 61 20 66 72 61 6d 65 77 6f 72 6b 20 64 65 73 69 67 6e 65 64 20 74 | ture)`.is.a.framework.designed.t |
| cb840 | 6f 20 73 65 63 75 72 65 20 74 68 65 20 49 6e 74 65 72 6e 65 74 20 72 6f 75 74 69 6e 67 20 69 6e | o.secure.the.Internet.routing.in |
| cb860 | 66 72 61 73 74 72 75 63 74 75 72 65 2e 20 49 74 20 61 73 73 6f 63 69 61 74 65 73 20 42 47 50 20 | frastructure..It.associates.BGP. |
| cb880 | 72 6f 75 74 65 20 61 6e 6e 6f 75 6e 63 65 6d 65 6e 74 73 20 77 69 74 68 20 74 68 65 20 63 6f 72 | route.announcements.with.the.cor |
| cb8a0 | 72 65 63 74 20 6f 72 69 67 69 6e 61 74 69 6e 67 20 3a 61 62 62 72 3a 60 41 53 4e 20 28 41 75 74 | rect.originating.:abbr:`ASN.(Aut |
| cb8c0 | 6f 6e 6f 6d 75 73 20 53 79 73 74 65 6d 20 4e 75 6d 62 65 72 29 60 20 77 68 69 63 68 20 42 47 50 | onomus.System.Number)`.which.BGP |
| cb8e0 | 20 72 6f 75 74 65 72 73 20 63 61 6e 20 74 68 65 6e 20 75 73 65 20 74 6f 20 63 68 65 63 6b 20 65 | .routers.can.then.use.to.check.e |
| cb900 | 61 63 68 20 72 6f 75 74 65 20 61 67 61 69 6e 73 74 20 74 68 65 20 63 6f 72 72 65 73 70 6f 6e 64 | ach.route.against.the.correspond |
| cb920 | 69 6e 67 20 3a 61 62 62 72 3a 60 52 4f 41 20 28 52 6f 75 74 65 20 4f 72 69 67 69 6e 20 41 75 74 | ing.:abbr:`ROA.(Route.Origin.Aut |
| cb940 | 68 6f 72 69 73 61 74 69 6f 6e 29 60 20 66 6f 72 20 76 61 6c 69 64 69 74 79 2e 20 52 50 4b 49 20 | horisation)`.for.validity..RPKI. |
| cb960 | 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 36 34 38 30 60 2e 00 3a 61 62 | is.described.in.:rfc:`6480`..:ab |
| cb980 | 62 72 3a 60 52 50 53 20 28 52 65 63 65 69 76 65 20 50 61 63 6b 65 74 20 53 74 65 65 72 69 6e 67 | br:`RPS.(Receive.Packet.Steering |
| cb9a0 | 29 60 20 69 73 20 6c 6f 67 69 63 61 6c 6c 79 20 61 20 73 6f 66 74 77 61 72 65 20 69 6d 70 6c 65 | )`.is.logically.a.software.imple |
| cb9c0 | 6d 65 6e 74 61 74 69 6f 6e 20 6f 66 20 3a 61 62 62 72 3a 60 52 53 53 20 28 52 65 63 65 69 76 65 | mentation.of.:abbr:`RSS.(Receive |
| cb9e0 | 20 53 69 64 65 20 53 63 61 6c 69 6e 67 29 60 2e 20 42 65 69 6e 67 20 69 6e 20 73 6f 66 74 77 61 | .Side.Scaling)`..Being.in.softwa |
| cba00 | 72 65 2c 20 69 74 20 69 73 20 6e 65 63 65 73 73 61 72 69 6c 79 20 63 61 6c 6c 65 64 20 6c 61 74 | re,.it.is.necessarily.called.lat |
| cba20 | 65 72 20 69 6e 20 74 68 65 20 64 61 74 61 70 61 74 68 2e 20 57 68 65 72 65 61 73 20 52 53 53 20 | er.in.the.datapath..Whereas.RSS. |
| cba40 | 73 65 6c 65 63 74 73 20 74 68 65 20 71 75 65 75 65 20 61 6e 64 20 68 65 6e 63 65 20 43 50 55 20 | selects.the.queue.and.hence.CPU. |
| cba60 | 74 68 61 74 20 77 69 6c 6c 20 72 75 6e 20 74 68 65 20 68 61 72 64 77 61 72 65 20 69 6e 74 65 72 | that.will.run.the.hardware.inter |
| cba80 | 72 75 70 74 20 68 61 6e 64 6c 65 72 2c 20 52 50 53 20 73 65 6c 65 63 74 73 20 74 68 65 20 43 50 | rupt.handler,.RPS.selects.the.CP |
| cbaa0 | 55 20 74 6f 20 70 65 72 66 6f 72 6d 20 70 72 6f 74 6f 63 6f 6c 20 70 72 6f 63 65 73 73 69 6e 67 | U.to.perform.protocol.processing |
| cbac0 | 20 61 62 6f 76 65 20 74 68 65 20 69 6e 74 65 72 72 75 70 74 20 68 61 6e 64 6c 65 72 2e 20 54 68 | .above.the.interrupt.handler..Th |
| cbae0 | 69 73 20 69 73 20 61 63 63 6f 6d 70 6c 69 73 68 65 64 20 62 79 20 70 6c 61 63 69 6e 67 20 74 68 | is.is.accomplished.by.placing.th |
| cbb00 | 65 20 70 61 63 6b 65 74 20 6f 6e 20 74 68 65 20 64 65 73 69 72 65 64 20 43 50 55 27 73 20 62 61 | e.packet.on.the.desired.CPU's.ba |
| cbb20 | 63 6b 6c 6f 67 20 71 75 65 75 65 20 61 6e 64 20 77 61 6b 69 6e 67 20 75 70 20 74 68 65 20 43 50 | cklog.queue.and.waking.up.the.CP |
| cbb40 | 55 20 66 6f 72 20 70 72 6f 63 65 73 73 69 6e 67 2e 20 52 50 53 20 68 61 73 20 73 6f 6d 65 20 61 | U.for.processing..RPS.has.some.a |
| cbb60 | 64 76 61 6e 74 61 67 65 73 20 6f 76 65 72 20 52 53 53 3a 00 3a 61 62 62 72 3a 60 53 4c 41 41 43 | dvantages.over.RSS:.:abbr:`SLAAC |
| cbb80 | 20 28 53 74 61 74 65 6c 65 73 73 20 41 64 64 72 65 73 73 20 41 75 74 6f 63 6f 6e 66 69 67 75 72 | .(Stateless.Address.Autoconfigur |
| cbba0 | 61 74 69 6f 6e 29 60 20 3a 72 66 63 3a 60 34 38 36 32 60 2e 20 49 50 76 36 20 68 6f 73 74 73 20 | ation)`.:rfc:`4862`..IPv6.hosts. |
| cbbc0 | 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 6d 73 65 6c 76 65 73 20 61 75 74 6f 6d 61 74 | can.configure.themselves.automat |
| cbbe0 | 69 63 61 6c 6c 79 20 77 68 65 6e 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 61 6e 20 49 50 76 36 | ically.when.connected.to.an.IPv6 |
| cbc00 | 20 6e 65 74 77 6f 72 6b 20 75 73 69 6e 67 20 74 68 65 20 4e 65 69 67 68 62 6f 72 20 44 69 73 63 | .network.using.the.Neighbor.Disc |
| cbc20 | 6f 76 65 72 79 20 50 72 6f 74 6f 63 6f 6c 20 76 69 61 20 3a 61 62 62 72 3a 60 49 43 4d 50 76 36 | overy.Protocol.via.:abbr:`ICMPv6 |
| cbc40 | 20 28 49 6e 74 65 72 6e 65 74 20 43 6f 6e 74 72 6f 6c 20 4d 65 73 73 61 67 65 20 50 72 6f 74 6f | .(Internet.Control.Message.Proto |
| cbc60 | 63 6f 6c 20 76 65 72 73 69 6f 6e 20 36 29 60 20 72 6f 75 74 65 72 20 64 69 73 63 6f 76 65 72 79 | col.version.6)`.router.discovery |
| cbc80 | 20 6d 65 73 73 61 67 65 73 2e 20 57 68 65 6e 20 66 69 72 73 74 20 63 6f 6e 6e 65 63 74 65 64 20 | .messages..When.first.connected. |
| cbca0 | 74 6f 20 61 20 6e 65 74 77 6f 72 6b 2c 20 61 20 68 6f 73 74 20 73 65 6e 64 73 20 61 20 6c 69 6e | to.a.network,.a.host.sends.a.lin |
| cbcc0 | 6b 2d 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 73 6f 6c 69 63 69 74 61 74 69 6f 6e 20 6d 75 6c 74 | k-local.router.solicitation.mult |
| cbce0 | 69 63 61 73 74 20 72 65 71 75 65 73 74 20 66 6f 72 20 69 74 73 20 63 6f 6e 66 69 67 75 72 61 74 | icast.request.for.its.configurat |
| cbd00 | 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 73 3b 20 72 6f 75 74 65 72 73 20 72 65 73 70 6f 6e 64 20 | ion.parameters;.routers.respond. |
| cbd20 | 74 6f 20 73 75 63 68 20 61 20 72 65 71 75 65 73 74 20 77 69 74 68 20 61 20 72 6f 75 74 65 72 20 | to.such.a.request.with.a.router. |
| cbd40 | 61 64 76 65 72 74 69 73 65 6d 65 6e 74 20 70 61 63 6b 65 74 20 74 68 61 74 20 63 6f 6e 74 61 69 | advertisement.packet.that.contai |
| cbd60 | 6e 73 20 49 6e 74 65 72 6e 65 74 20 4c 61 79 65 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | ns.Internet.Layer.configuration. |
| cbd80 | 70 61 72 61 6d 65 74 65 72 73 2e 00 3a 61 62 62 72 3a 60 53 4e 41 54 20 28 53 6f 75 72 63 65 20 | parameters..:abbr:`SNAT.(Source. |
| cbda0 | 4e 65 74 77 6f 72 6b 20 41 64 64 72 65 73 73 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 69 73 | Network.Address.Translation)`.is |
| cbdc0 | 20 74 68 65 20 6d 6f 73 74 20 63 6f 6d 6d 6f 6e 20 66 6f 72 6d 20 6f 66 20 3a 61 62 62 72 3a 60 | .the.most.common.form.of.:abbr:` |
| cbde0 | 4e 41 54 20 28 4e 65 74 77 6f 72 6b 20 41 64 64 72 65 73 73 20 54 72 61 6e 73 6c 61 74 69 6f 6e | NAT.(Network.Address.Translation |
| cbe00 | 29 60 20 61 6e 64 20 69 73 20 74 79 70 69 63 61 6c 6c 79 20 72 65 66 65 72 72 65 64 20 74 6f 20 | )`.and.is.typically.referred.to. |
| cbe20 | 73 69 6d 70 6c 79 20 61 73 20 4e 41 54 2e 20 54 6f 20 62 65 20 6d 6f 72 65 20 63 6f 72 72 65 63 | simply.as.NAT..To.be.more.correc |
| cbe40 | 74 2c 20 77 68 61 74 20 6d 6f 73 74 20 70 65 6f 70 6c 65 20 72 65 66 65 72 20 74 6f 20 61 73 20 | t,.what.most.people.refer.to.as. |
| cbe60 | 3a 61 62 62 72 3a 60 4e 41 54 20 28 4e 65 74 77 6f 72 6b 20 41 64 64 72 65 73 73 20 54 72 61 6e | :abbr:`NAT.(Network.Address.Tran |
| cbe80 | 73 6c 61 74 69 6f 6e 29 60 20 69 73 20 61 63 74 75 61 6c 6c 79 20 74 68 65 20 70 72 6f 63 65 73 | slation)`.is.actually.the.proces |
| cbea0 | 73 20 6f 66 20 3a 61 62 62 72 3a 60 50 41 54 20 28 50 6f 72 74 20 41 64 64 72 65 73 73 20 54 72 | s.of.:abbr:`PAT.(Port.Address.Tr |
| cbec0 | 61 6e 73 6c 61 74 69 6f 6e 29 60 2c 20 6f 72 20 4e 41 54 20 6f 76 65 72 6c 6f 61 64 2e 20 53 4e | anslation)`,.or.NAT.overload..SN |
| cbee0 | 41 54 20 69 73 20 74 79 70 69 63 61 6c 6c 79 20 75 73 65 64 20 62 79 20 69 6e 74 65 72 6e 61 6c | AT.is.typically.used.by.internal |
| cbf00 | 20 75 73 65 72 73 2f 70 72 69 76 61 74 65 20 68 6f 73 74 73 20 74 6f 20 61 63 63 65 73 73 20 74 | .users/private.hosts.to.access.t |
| cbf20 | 68 65 20 49 6e 74 65 72 6e 65 74 20 2d 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 | he.Internet.-.the.source.address |
| cbf40 | 20 69 73 20 74 72 61 6e 73 6c 61 74 65 64 20 61 6e 64 20 74 68 75 73 20 6b 65 70 74 20 70 72 69 | .is.translated.and.thus.kept.pri |
| cbf60 | 76 61 74 65 2e 00 3a 61 62 62 72 3a 60 53 4e 41 54 36 34 20 28 49 50 76 36 2d 74 6f 2d 49 50 76 | vate..:abbr:`SNAT64.(IPv6-to-IPv |
| cbf80 | 34 20 53 6f 75 72 63 65 20 41 64 64 72 65 73 73 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 69 | 4.Source.Address.Translation)`.i |
| cbfa0 | 73 20 61 20 73 74 61 74 65 66 75 6c 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 6d 65 63 68 61 6e 69 | s.a.stateful.translation.mechani |
| cbfc0 | 73 6d 20 74 68 61 74 20 74 72 61 6e 73 6c 61 74 65 73 20 49 50 76 36 20 61 64 64 72 65 73 73 65 | sm.that.translates.IPv6.addresse |
| cbfe0 | 73 20 74 6f 20 49 50 76 34 20 61 64 64 72 65 73 73 65 73 2e 00 3a 61 62 62 72 3a 60 53 4e 4d 50 | s.to.IPv4.addresses..:abbr:`SNMP |
| cc000 | 20 28 53 69 6d 70 6c 65 20 4e 65 74 77 6f 72 6b 20 4d 61 6e 61 67 65 6d 65 6e 74 20 50 72 6f 74 | .(Simple.Network.Management.Prot |
| cc020 | 6f 63 6f 6c 29 60 20 69 73 20 61 6e 20 49 6e 74 65 72 6e 65 74 20 53 74 61 6e 64 61 72 64 20 70 | ocol)`.is.an.Internet.Standard.p |
| cc040 | 72 6f 74 6f 63 6f 6c 20 66 6f 72 20 63 6f 6c 6c 65 63 74 69 6e 67 20 61 6e 64 20 6f 72 67 61 6e | rotocol.for.collecting.and.organ |
| cc060 | 69 7a 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 6d 61 6e 61 67 65 64 20 | izing.information.about.managed. |
| cc080 | 64 65 76 69 63 65 73 20 6f 6e 20 49 50 20 6e 65 74 77 6f 72 6b 73 20 61 6e 64 20 66 6f 72 20 6d | devices.on.IP.networks.and.for.m |
| cc0a0 | 6f 64 69 66 79 69 6e 67 20 74 68 61 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 63 68 61 | odifying.that.information.to.cha |
| cc0c0 | 6e 67 65 20 64 65 76 69 63 65 20 62 65 68 61 76 69 6f 72 2e 20 44 65 76 69 63 65 73 20 74 68 61 | nge.device.behavior..Devices.tha |
| cc0e0 | 74 20 74 79 70 69 63 61 6c 6c 79 20 73 75 70 70 6f 72 74 20 53 4e 4d 50 20 69 6e 63 6c 75 64 65 | t.typically.support.SNMP.include |
| cc100 | 20 63 61 62 6c 65 20 6d 6f 64 65 6d 73 2c 20 72 6f 75 74 65 72 73 2c 20 73 77 69 74 63 68 65 73 | .cable.modems,.routers,.switches |
| cc120 | 2c 20 73 65 72 76 65 72 73 2c 20 77 6f 72 6b 73 74 61 74 69 6f 6e 73 2c 20 70 72 69 6e 74 65 72 | ,.servers,.workstations,.printer |
| cc140 | 73 2c 20 61 6e 64 20 6d 6f 72 65 2e 00 3a 61 62 62 72 3a 60 53 4e 50 54 76 36 20 28 53 6f 75 72 | s,.and.more..:abbr:`SNPTv6.(Sour |
| cc160 | 63 65 20 49 50 76 36 2d 74 6f 2d 49 50 76 36 20 4e 65 74 77 6f 72 6b 20 50 72 65 66 69 78 20 54 | ce.IPv6-to-IPv6.Network.Prefix.T |
| cc180 | 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 54 68 65 20 63 6f 6e 76 65 72 73 69 6f 6e 20 66 75 6e 63 | ranslation)`.The.conversion.func |
| cc1a0 | 74 69 6f 6e 20 69 73 20 6d 61 69 6e 6c 79 20 75 73 65 64 20 69 6e 20 74 68 65 20 66 6f 6c 6c 6f | tion.is.mainly.used.in.the.follo |
| cc1c0 | 77 69 6e 67 20 73 63 65 6e 61 72 69 6f 73 3a 00 3a 61 62 62 72 3a 60 53 53 48 20 28 53 65 63 75 | wing.scenarios:.:abbr:`SSH.(Secu |
| cc1e0 | 72 65 20 53 68 65 6c 6c 29 60 20 69 73 20 61 20 63 72 79 70 74 6f 67 72 61 70 68 69 63 20 6e 65 | re.Shell)`.is.a.cryptographic.ne |
| cc200 | 74 77 6f 72 6b 20 70 72 6f 74 6f 63 6f 6c 20 66 6f 72 20 6f 70 65 72 61 74 69 6e 67 20 6e 65 74 | twork.protocol.for.operating.net |
| cc220 | 77 6f 72 6b 20 73 65 72 76 69 63 65 73 20 73 65 63 75 72 65 6c 79 20 6f 76 65 72 20 61 6e 20 75 | work.services.securely.over.an.u |
| cc240 | 6e 73 65 63 75 72 65 64 20 6e 65 74 77 6f 72 6b 2e 20 54 68 65 20 73 74 61 6e 64 61 72 64 20 54 | nsecured.network..The.standard.T |
| cc260 | 43 50 20 70 6f 72 74 20 66 6f 72 20 53 53 48 20 69 73 20 32 32 2e 20 54 68 65 20 62 65 73 74 20 | CP.port.for.SSH.is.22..The.best. |
| cc280 | 6b 6e 6f 77 6e 20 65 78 61 6d 70 6c 65 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 69 73 20 66 6f 72 | known.example.application.is.for |
| cc2a0 | 20 72 65 6d 6f 74 65 20 6c 6f 67 69 6e 20 74 6f 20 63 6f 6d 70 75 74 65 72 20 73 79 73 74 65 6d | .remote.login.to.computer.system |
| cc2c0 | 73 20 62 79 20 75 73 65 72 73 2e 00 3a 61 62 62 72 3a 60 53 53 54 50 20 28 53 65 63 75 72 65 20 | s.by.users..:abbr:`SSTP.(Secure. |
| cc2e0 | 53 6f 63 6b 65 74 20 54 75 6e 6e 65 6c 69 6e 67 20 50 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 61 | Socket.Tunneling.Protocol)`.is.a |
| cc300 | 20 66 6f 72 6d 20 6f 66 20 3a 61 62 62 72 3a 60 56 50 4e 20 28 56 69 72 74 75 61 6c 20 50 72 69 | .form.of.:abbr:`VPN.(Virtual.Pri |
| cc320 | 76 61 74 65 20 4e 65 74 77 6f 72 6b 29 60 20 74 75 6e 6e 65 6c 20 74 68 61 74 20 70 72 6f 76 69 | vate.Network)`.tunnel.that.provi |
| cc340 | 64 65 73 20 61 20 6d 65 63 68 61 6e 69 73 6d 20 74 6f 20 74 72 61 6e 73 70 6f 72 74 20 50 50 50 | des.a.mechanism.to.transport.PPP |
| cc360 | 20 74 72 61 66 66 69 63 20 74 68 72 6f 75 67 68 20 61 6e 20 53 53 4c 2f 54 4c 53 20 63 68 61 6e | .traffic.through.an.SSL/TLS.chan |
| cc380 | 6e 65 6c 2e 20 53 53 4c 2f 54 4c 53 20 70 72 6f 76 69 64 65 73 20 74 72 61 6e 73 70 6f 72 74 2d | nel..SSL/TLS.provides.transport- |
| cc3a0 | 6c 65 76 65 6c 20 73 65 63 75 72 69 74 79 20 77 69 74 68 20 6b 65 79 20 6e 65 67 6f 74 69 61 74 | level.security.with.key.negotiat |
| cc3c0 | 69 6f 6e 2c 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6e 64 20 74 72 61 66 66 69 63 20 69 6e 74 65 | ion,.encryption.and.traffic.inte |
| cc3e0 | 67 72 69 74 79 20 63 68 65 63 6b 69 6e 67 2e 20 54 68 65 20 75 73 65 20 6f 66 20 53 53 4c 2f 54 | grity.checking..The.use.of.SSL/T |
| cc400 | 4c 53 20 6f 76 65 72 20 54 43 50 20 70 6f 72 74 20 34 34 33 20 61 6c 6c 6f 77 73 20 53 53 54 50 | LS.over.TCP.port.443.allows.SSTP |
| cc420 | 20 74 6f 20 70 61 73 73 20 74 68 72 6f 75 67 68 20 76 69 72 74 75 61 6c 6c 79 20 61 6c 6c 20 66 | .to.pass.through.virtually.all.f |
| cc440 | 69 72 65 77 61 6c 6c 73 20 61 6e 64 20 70 72 6f 78 79 20 73 65 72 76 65 72 73 20 65 78 63 65 70 | irewalls.and.proxy.servers.excep |
| cc460 | 74 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 20 77 65 62 20 70 72 6f 78 69 65 73 2e | t.for.authenticated.web.proxies. |
| cc480 | 00 3a 61 62 62 72 3a 60 53 53 54 50 20 28 53 65 63 75 72 65 20 53 6f 63 6b 65 74 20 54 75 6e 6e | .:abbr:`SSTP.(Secure.Socket.Tunn |
| cc4a0 | 65 6c 69 6e 67 20 50 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 61 20 66 6f 72 6d 20 6f 66 20 3a 61 | eling.Protocol)`.is.a.form.of.:a |
| cc4c0 | 62 62 72 3a 60 56 54 50 20 28 56 69 72 74 75 61 6c 20 50 72 69 76 61 74 65 20 4e 65 74 77 6f 72 | bbr:`VTP.(Virtual.Private.Networ |
| cc4e0 | 6b 29 60 20 74 75 6e 6e 65 6c 20 74 68 61 74 20 70 72 6f 76 69 64 65 73 20 61 20 6d 65 63 68 61 | k)`.tunnel.that.provides.a.mecha |
| cc500 | 6e 69 73 6d 20 74 6f 20 74 72 61 6e 73 70 6f 72 74 20 50 50 50 20 74 72 61 66 66 69 63 20 74 68 | nism.to.transport.PPP.traffic.th |
| cc520 | 72 6f 75 67 68 20 61 6e 20 53 53 4c 2f 54 4c 53 20 63 68 61 6e 6e 65 6c 2e 20 53 53 4c 2f 54 4c | rough.an.SSL/TLS.channel..SSL/TL |
| cc540 | 53 20 70 72 6f 76 69 64 65 73 20 74 72 61 6e 73 70 6f 72 74 2d 6c 65 76 65 6c 20 73 65 63 75 72 | S.provides.transport-level.secur |
| cc560 | 69 74 79 20 77 69 74 68 20 6b 65 79 20 6e 65 67 6f 74 69 61 74 69 6f 6e 2c 20 65 6e 63 72 79 70 | ity.with.key.negotiation,.encryp |
| cc580 | 74 69 6f 6e 20 61 6e 64 20 74 72 61 66 66 69 63 20 69 6e 74 65 67 72 69 74 79 20 63 68 65 63 6b | tion.and.traffic.integrity.check |
| cc5a0 | 69 6e 67 2e 20 54 68 65 20 75 73 65 20 6f 66 20 53 53 4c 2f 54 4c 53 20 6f 76 65 72 20 54 43 50 | ing..The.use.of.SSL/TLS.over.TCP |
| cc5c0 | 20 70 6f 72 74 20 34 34 33 20 28 62 79 20 64 65 66 61 75 6c 74 2c 20 70 6f 72 74 20 63 61 6e 20 | .port.443.(by.default,.port.can. |
| cc5e0 | 62 65 20 63 68 61 6e 67 65 64 29 20 61 6c 6c 6f 77 73 20 53 53 54 50 20 74 6f 20 70 61 73 73 20 | be.changed).allows.SSTP.to.pass. |
| cc600 | 74 68 72 6f 75 67 68 20 76 69 72 74 75 61 6c 6c 79 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 73 20 | through.virtually.all.firewalls. |
| cc620 | 61 6e 64 20 70 72 6f 78 79 20 73 65 72 76 65 72 73 20 65 78 63 65 70 74 20 66 6f 72 20 61 75 74 | and.proxy.servers.except.for.aut |
| cc640 | 68 65 6e 74 69 63 61 74 65 64 20 77 65 62 20 70 72 6f 78 69 65 73 2e 00 3a 61 62 62 72 3a 60 53 | henticated.web.proxies..:abbr:`S |
| cc660 | 54 50 20 28 53 70 61 6e 6e 69 6e 67 20 54 72 65 65 20 50 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 | TP.(Spanning.Tree.Protocol)`.is. |
| cc680 | 61 20 6e 65 74 77 6f 72 6b 20 70 72 6f 74 6f 63 6f 6c 20 74 68 61 74 20 62 75 69 6c 64 73 20 61 | a.network.protocol.that.builds.a |
| cc6a0 | 20 6c 6f 6f 70 2d 66 72 65 65 20 6c 6f 67 69 63 61 6c 20 74 6f 70 6f 6c 6f 67 79 20 66 6f 72 20 | .loop-free.logical.topology.for. |
| cc6c0 | 45 74 68 65 72 6e 65 74 20 6e 65 74 77 6f 72 6b 73 2e 20 54 68 65 20 62 61 73 69 63 20 66 75 6e | Ethernet.networks..The.basic.fun |
| cc6e0 | 63 74 69 6f 6e 20 6f 66 20 53 54 50 20 69 73 20 74 6f 20 70 72 65 76 65 6e 74 20 62 72 69 64 67 | ction.of.STP.is.to.prevent.bridg |
| cc700 | 65 20 6c 6f 6f 70 73 20 61 6e 64 20 74 68 65 20 62 72 6f 61 64 63 61 73 74 20 72 61 64 69 61 74 | e.loops.and.the.broadcast.radiat |
| cc720 | 69 6f 6e 20 74 68 61 74 20 72 65 73 75 6c 74 73 20 66 72 6f 6d 20 74 68 65 6d 2e 20 53 70 61 6e | ion.that.results.from.them..Span |
| cc740 | 6e 69 6e 67 20 74 72 65 65 20 61 6c 73 6f 20 61 6c 6c 6f 77 73 20 61 20 6e 65 74 77 6f 72 6b 20 | ning.tree.also.allows.a.network. |
| cc760 | 64 65 73 69 67 6e 20 74 6f 20 69 6e 63 6c 75 64 65 20 62 61 63 6b 75 70 20 6c 69 6e 6b 73 20 70 | design.to.include.backup.links.p |
| cc780 | 72 6f 76 69 64 69 6e 67 20 66 61 75 6c 74 20 74 6f 6c 65 72 61 6e 63 65 20 69 66 20 61 6e 20 61 | roviding.fault.tolerance.if.an.a |
| cc7a0 | 63 74 69 76 65 20 6c 69 6e 6b 20 66 61 69 6c 73 2e 00 3a 61 62 62 72 3a 60 54 46 54 50 20 28 54 | ctive.link.fails..:abbr:`TFTP.(T |
| cc7c0 | 72 69 76 69 61 6c 20 46 69 6c 65 20 54 72 61 6e 73 66 65 72 20 50 72 6f 74 6f 63 6f 6c 29 60 20 | rivial.File.Transfer.Protocol)`. |
| cc7e0 | 69 73 20 61 20 73 69 6d 70 6c 65 2c 20 6c 6f 63 6b 73 74 65 70 20 66 69 6c 65 20 74 72 61 6e 73 | is.a.simple,.lockstep.file.trans |
| cc800 | 66 65 72 20 70 72 6f 74 6f 63 6f 6c 20 77 68 69 63 68 20 61 6c 6c 6f 77 73 20 61 20 63 6c 69 65 | fer.protocol.which.allows.a.clie |
| cc820 | 6e 74 20 74 6f 20 67 65 74 20 61 20 66 69 6c 65 20 66 72 6f 6d 20 6f 72 20 70 75 74 20 61 20 66 | nt.to.get.a.file.from.or.put.a.f |
| cc840 | 69 6c 65 20 6f 6e 74 6f 20 61 20 72 65 6d 6f 74 65 20 68 6f 73 74 2e 20 4f 6e 65 20 6f 66 20 69 | ile.onto.a.remote.host..One.of.i |
| cc860 | 74 73 20 70 72 69 6d 61 72 79 20 75 73 65 73 20 69 73 20 69 6e 20 74 68 65 20 65 61 72 6c 79 20 | ts.primary.uses.is.in.the.early. |
| cc880 | 73 74 61 67 65 73 20 6f 66 20 6e 6f 64 65 73 20 62 6f 6f 74 69 6e 67 20 66 72 6f 6d 20 61 20 6c | stages.of.nodes.booting.from.a.l |
| cc8a0 | 6f 63 61 6c 20 61 72 65 61 20 6e 65 74 77 6f 72 6b 2e 20 54 46 54 50 20 68 61 73 20 62 65 65 6e | ocal.area.network..TFTP.has.been |
| cc8c0 | 20 75 73 65 64 20 66 6f 72 20 74 68 69 73 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 62 65 63 61 75 | .used.for.this.application.becau |
| cc8e0 | 73 65 20 69 74 20 69 73 20 76 65 72 79 20 73 69 6d 70 6c 65 20 74 6f 20 69 6d 70 6c 65 6d 65 6e | se.it.is.very.simple.to.implemen |
| cc900 | 74 2e 00 3a 61 62 62 72 3a 60 56 4e 49 20 28 56 69 72 74 75 61 6c 20 4e 65 74 77 6f 72 6b 20 49 | t..:abbr:`VNI.(Virtual.Network.I |
| cc920 | 64 65 6e 74 69 66 69 65 72 29 60 20 69 73 20 61 6e 20 69 64 65 6e 74 69 66 69 65 72 20 66 6f 72 | dentifier)`.is.an.identifier.for |
| cc940 | 20 61 20 75 6e 69 71 75 65 20 65 6c 65 6d 65 6e 74 20 6f 66 20 61 20 76 69 72 74 75 61 6c 20 6e | .a.unique.element.of.a.virtual.n |
| cc960 | 65 74 77 6f 72 6b 2e 20 20 49 6e 20 6d 61 6e 79 20 73 69 74 75 61 74 69 6f 6e 73 20 74 68 69 73 | etwork...In.many.situations.this |
| cc980 | 20 6d 61 79 20 72 65 70 72 65 73 65 6e 74 20 61 6e 20 4c 32 20 73 65 67 6d 65 6e 74 2c 20 68 6f | .may.represent.an.L2.segment,.ho |
| cc9a0 | 77 65 76 65 72 2c 20 74 68 65 20 63 6f 6e 74 72 6f 6c 20 70 6c 61 6e 65 20 64 65 66 69 6e 65 73 | wever,.the.control.plane.defines |
| cc9c0 | 20 74 68 65 20 66 6f 72 77 61 72 64 69 6e 67 20 73 65 6d 61 6e 74 69 63 73 20 6f 66 20 64 65 63 | .the.forwarding.semantics.of.dec |
| cc9e0 | 61 70 73 75 6c 61 74 65 64 20 70 61 63 6b 65 74 73 2e 20 54 68 65 20 56 4e 49 20 4d 41 59 20 62 | apsulated.packets..The.VNI.MAY.b |
| cca00 | 65 20 75 73 65 64 20 61 73 20 70 61 72 74 20 6f 66 20 45 43 4d 50 20 66 6f 72 77 61 72 64 69 6e | e.used.as.part.of.ECMP.forwardin |
| cca20 | 67 20 64 65 63 69 73 69 6f 6e 73 20 6f 72 20 4d 41 59 20 62 65 20 75 73 65 64 20 61 73 20 61 20 | g.decisions.or.MAY.be.used.as.a. |
| cca40 | 6d 65 63 68 61 6e 69 73 6d 20 74 6f 20 64 69 73 74 69 6e 67 75 69 73 68 20 62 65 74 77 65 65 6e | mechanism.to.distinguish.between |
| cca60 | 20 6f 76 65 72 6c 61 70 70 69 6e 67 20 61 64 64 72 65 73 73 20 73 70 61 63 65 73 20 63 6f 6e 74 | .overlapping.address.spaces.cont |
| cca80 | 61 69 6e 65 64 20 69 6e 20 74 68 65 20 65 6e 63 61 70 73 75 6c 61 74 65 64 20 70 61 63 6b 65 74 | ained.in.the.encapsulated.packet |
| ccaa0 | 20 77 68 65 6e 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 61 63 72 6f 73 73 20 43 50 55 73 | .when.load.balancing.across.CPUs |
| ccac0 | 2e 00 3a 61 62 62 72 3a 60 56 52 46 20 28 56 69 72 74 75 61 6c 20 52 6f 75 74 69 6e 67 20 61 6e | ..:abbr:`VRF.(Virtual.Routing.an |
| ccae0 | 64 20 46 6f 72 77 61 72 64 69 6e 67 29 60 20 64 65 76 69 63 65 73 20 63 6f 6d 62 69 6e 65 64 20 | d.Forwarding)`.devices.combined. |
| ccb00 | 77 69 74 68 20 69 70 20 72 75 6c 65 73 20 70 72 6f 76 69 64 65 73 20 74 68 65 20 61 62 69 6c 69 | with.ip.rules.provides.the.abili |
| ccb20 | 74 79 20 74 6f 20 63 72 65 61 74 65 20 76 69 72 74 75 61 6c 20 72 6f 75 74 69 6e 67 20 61 6e 64 | ty.to.create.virtual.routing.and |
| ccb40 | 20 66 6f 72 77 61 72 64 69 6e 67 20 64 6f 6d 61 69 6e 73 20 28 61 6b 61 20 56 52 46 73 2c 20 56 | .forwarding.domains.(aka.VRFs,.V |
| ccb60 | 52 46 2d 6c 69 74 65 20 74 6f 20 62 65 20 73 70 65 63 69 66 69 63 29 20 69 6e 20 74 68 65 20 4c | RF-lite.to.be.specific).in.the.L |
| ccb80 | 69 6e 75 78 20 6e 65 74 77 6f 72 6b 20 73 74 61 63 6b 2e 20 4f 6e 65 20 75 73 65 20 63 61 73 65 | inux.network.stack..One.use.case |
| ccba0 | 20 69 73 20 74 68 65 20 6d 75 6c 74 69 2d 74 65 6e 61 6e 63 79 20 70 72 6f 62 6c 65 6d 20 77 68 | .is.the.multi-tenancy.problem.wh |
| ccbc0 | 65 72 65 20 65 61 63 68 20 74 65 6e 61 6e 74 20 68 61 73 20 74 68 65 69 72 20 6f 77 6e 20 75 6e | ere.each.tenant.has.their.own.un |
| ccbe0 | 69 71 75 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 73 20 61 6e 64 20 69 6e 20 74 68 65 20 76 | ique.routing.tables.and.in.the.v |
| ccc00 | 65 72 79 20 6c 65 61 73 74 20 6e 65 65 64 20 64 69 66 66 65 72 65 6e 74 20 64 65 66 61 75 6c 74 | ery.least.need.different.default |
| ccc20 | 20 67 61 74 65 77 61 79 73 2e 00 3a 61 62 62 72 3a 60 56 58 4c 41 4e 20 28 56 69 72 74 75 61 6c | .gateways..:abbr:`VXLAN.(Virtual |
| ccc40 | 20 45 78 74 65 6e 73 69 62 6c 65 20 4c 41 4e 29 60 20 69 73 20 61 20 6e 65 74 77 6f 72 6b 20 76 | .Extensible.LAN)`.is.a.network.v |
| ccc60 | 69 72 74 75 61 6c 69 7a 61 74 69 6f 6e 20 74 65 63 68 6e 6f 6c 6f 67 79 20 74 68 61 74 20 61 74 | irtualization.technology.that.at |
| ccc80 | 74 65 6d 70 74 73 20 74 6f 20 61 64 64 72 65 73 73 20 74 68 65 20 73 63 61 6c 61 62 69 6c 69 74 | tempts.to.address.the.scalabilit |
| ccca0 | 79 20 70 72 6f 62 6c 65 6d 73 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 6c 61 72 67 65 | y.problems.associated.with.large |
| cccc0 | 20 63 6c 6f 75 64 20 63 6f 6d 70 75 74 69 6e 67 20 64 65 70 6c 6f 79 6d 65 6e 74 73 2e 20 49 74 | .cloud.computing.deployments..It |
| ccce0 | 20 75 73 65 73 20 61 20 56 4c 41 4e 2d 6c 69 6b 65 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 | .uses.a.VLAN-like.encapsulation. |
| ccd00 | 74 65 63 68 6e 69 71 75 65 20 74 6f 20 65 6e 63 61 70 73 75 6c 61 74 65 20 4f 53 49 20 6c 61 79 | technique.to.encapsulate.OSI.lay |
| ccd20 | 65 72 20 32 20 45 74 68 65 72 6e 65 74 20 66 72 61 6d 65 73 20 77 69 74 68 69 6e 20 6c 61 79 65 | er.2.Ethernet.frames.within.laye |
| ccd40 | 72 20 34 20 55 44 50 20 64 61 74 61 67 72 61 6d 73 2c 20 75 73 69 6e 67 20 34 37 38 39 20 61 73 | r.4.UDP.datagrams,.using.4789.as |
| ccd60 | 20 74 68 65 20 64 65 66 61 75 6c 74 20 49 41 4e 41 2d 61 73 73 69 67 6e 65 64 20 64 65 73 74 69 | .the.default.IANA-assigned.desti |
| ccd80 | 6e 61 74 69 6f 6e 20 55 44 50 20 70 6f 72 74 20 6e 75 6d 62 65 72 2e 20 56 58 4c 41 4e 20 65 6e | nation.UDP.port.number..VXLAN.en |
| ccda0 | 64 70 6f 69 6e 74 73 2c 20 77 68 69 63 68 20 74 65 72 6d 69 6e 61 74 65 20 56 58 4c 41 4e 20 74 | dpoints,.which.terminate.VXLAN.t |
| ccdc0 | 75 6e 6e 65 6c 73 20 61 6e 64 20 6d 61 79 20 62 65 20 65 69 74 68 65 72 20 76 69 72 74 75 61 6c | unnels.and.may.be.either.virtual |
| ccde0 | 20 6f 72 20 70 68 79 73 69 63 61 6c 20 73 77 69 74 63 68 20 70 6f 72 74 73 2c 20 61 72 65 20 6b | .or.physical.switch.ports,.are.k |
| cce00 | 6e 6f 77 6e 20 61 73 20 3a 61 62 62 72 3a 60 56 54 45 50 73 20 28 56 58 4c 41 4e 20 74 75 6e 6e | nown.as.:abbr:`VTEPs.(VXLAN.tunn |
| cce20 | 65 6c 20 65 6e 64 70 6f 69 6e 74 73 29 60 2e 00 3a 61 62 62 72 3a 60 57 41 50 20 28 57 69 72 65 | el.endpoints)`..:abbr:`WAP.(Wire |
| cce40 | 6c 65 73 73 20 41 63 63 65 73 73 2d 50 6f 69 6e 74 29 60 20 6d 6f 64 65 20 70 72 6f 76 69 64 65 | less.Access-Point)`.mode.provide |
| cce60 | 73 20 6e 65 74 77 6f 72 6b 20 61 63 63 65 73 73 20 74 6f 20 63 6f 6e 6e 65 63 74 69 6e 67 20 73 | s.network.access.to.connecting.s |
| cce80 | 74 61 74 69 6f 6e 73 20 69 66 20 74 68 65 20 70 68 79 73 69 63 61 6c 20 68 61 72 64 77 61 72 65 | tations.if.the.physical.hardware |
| ccea0 | 20 73 75 70 70 6f 72 74 73 20 61 63 74 69 6e 67 20 61 73 20 61 20 57 41 50 00 3a 61 62 62 72 3a | .supports.acting.as.a.WAP.:abbr: |
| ccec0 | 60 57 41 50 20 28 57 69 72 65 6c 65 73 73 20 41 63 63 65 73 73 2d 50 6f 69 6e 74 29 60 20 70 72 | `WAP.(Wireless.Access-Point)`.pr |
| ccee0 | 6f 76 69 64 65 73 20 6e 65 74 77 6f 72 6b 20 61 63 63 65 73 73 20 74 6f 20 63 6f 6e 6e 65 63 74 | ovides.network.access.to.connect |
| ccf00 | 69 6e 67 20 73 74 61 74 69 6f 6e 73 20 69 66 20 74 68 65 20 70 68 79 73 69 63 61 6c 20 68 61 72 | ing.stations.if.the.physical.har |
| ccf20 | 64 77 61 72 65 20 73 75 70 70 6f 72 74 73 20 61 63 74 69 6e 67 20 61 73 20 61 20 57 41 50 00 3a | dware.supports.acting.as.a.WAP.: |
| ccf40 | 61 62 62 72 3a 60 57 4c 41 4e 20 28 57 69 72 65 6c 65 73 73 20 4c 41 4e 29 60 20 69 6e 74 65 72 | abbr:`WLAN.(Wireless.LAN)`.inter |
| ccf60 | 66 61 63 65 20 70 72 6f 76 69 64 65 20 38 30 32 2e 31 31 20 28 61 2f 62 2f 67 2f 6e 2f 61 63 29 | face.provide.802.11.(a/b/g/n/ac) |
| ccf80 | 20 77 69 72 65 6c 65 73 73 20 73 75 70 70 6f 72 74 20 28 63 6f 6d 6d 6f 6e 6c 79 20 72 65 66 65 | .wireless.support.(commonly.refe |
| ccfa0 | 72 72 65 64 20 74 6f 20 61 73 20 57 69 2d 46 69 29 20 62 79 20 6d 65 61 6e 73 20 6f 66 20 63 6f | rred.to.as.Wi-Fi).by.means.of.co |
| ccfc0 | 6d 70 61 74 69 62 6c 65 20 68 61 72 64 77 61 72 65 2e 20 49 66 20 79 6f 75 72 20 68 61 72 64 77 | mpatible.hardware..If.your.hardw |
| ccfe0 | 61 72 65 20 73 75 70 70 6f 72 74 73 20 69 74 2c 20 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 6d | are.supports.it,.VyOS.supports.m |
| cd000 | 75 6c 74 69 70 6c 65 20 6c 6f 67 69 63 61 6c 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 | ultiple.logical.wireless.interfa |
| cd020 | 63 65 73 20 70 65 72 20 70 68 79 73 69 63 61 6c 20 64 65 76 69 63 65 2e 00 3a 61 62 62 72 3a 60 | ces.per.physical.device..:abbr:` |
| cd040 | 57 50 41 20 28 57 69 2d 46 69 20 50 72 6f 74 65 63 74 65 64 20 41 63 63 65 73 73 29 60 20 61 6e | WPA.(Wi-Fi.Protected.Access)`.an |
| cd060 | 64 20 57 50 41 32 20 45 6e 74 65 72 70 72 69 73 65 20 69 6e 20 63 6f 6d 62 69 6e 61 74 69 6f 6e | d.WPA2.Enterprise.in.combination |
| cd080 | 20 77 69 74 68 20 38 30 32 2e 31 78 20 62 61 73 65 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f | .with.802.1x.based.authenticatio |
| cd0a0 | 6e 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 75 73 | n.can.be.used.to.authenticate.us |
| cd0c0 | 65 72 73 20 6f 72 20 63 6f 6d 70 75 74 65 72 73 20 69 6e 20 61 20 64 6f 6d 61 69 6e 2e 00 3a 61 | ers.or.computers.in.a.domain..:a |
| cd0e0 | 62 62 72 3a 60 57 50 41 20 28 57 69 2d 46 69 20 50 72 6f 74 65 63 74 65 64 20 41 63 63 65 73 73 | bbr:`WPA.(Wi-Fi.Protected.Access |
| cd100 | 29 60 2c 20 57 50 41 32 20 45 6e 74 65 72 70 72 69 73 65 20 61 6e 64 20 57 50 41 33 20 45 6e 74 | )`,.WPA2.Enterprise.and.WPA3.Ent |
| cd120 | 65 72 70 72 69 73 65 20 69 6e 20 63 6f 6d 62 69 6e 61 74 69 6f 6e 20 77 69 74 68 20 38 30 32 2e | erprise.in.combination.with.802. |
| cd140 | 31 78 20 62 61 73 65 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 63 61 6e 20 62 65 20 75 | 1x.based.authentication.can.be.u |
| cd160 | 73 65 64 20 74 6f 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 75 73 65 72 73 20 6f 72 20 63 6f 6d | sed.to.authenticate.users.or.com |
| cd180 | 70 75 74 65 72 73 20 69 6e 20 61 20 64 6f 6d 61 69 6e 2e 00 3a 61 62 62 72 3a 60 6d 47 52 45 20 | puters.in.a.domain..:abbr:`mGRE. |
| cd1a0 | 28 4d 75 6c 74 69 70 6f 69 6e 74 20 47 65 6e 65 72 69 63 20 52 6f 75 74 69 6e 67 20 45 6e 63 61 | (Multipoint.Generic.Routing.Enca |
| cd1c0 | 70 73 75 6c 61 74 69 6f 6e 29 60 20 3a 72 66 63 3a 60 31 37 30 32 60 00 3a 63 66 67 63 6d 64 3a | psulation)`.:rfc:`1702`.:cfgcmd: |
| cd1e0 | 60 61 64 76 2d 72 6f 75 74 65 72 20 3c 41 2e 42 2e 43 2e 44 3e 60 20 e2 80 93 20 72 6f 75 74 65 | `adv-router.<A.B.C.D>`.....route |
| cd200 | 72 20 69 64 2c 20 77 68 69 63 68 20 6c 69 6e 6b 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 73 20 | r.id,.which.link.advertisements. |
| cd220 | 6e 65 65 64 20 74 6f 20 62 65 20 72 65 76 69 65 77 65 64 2e 00 3a 63 66 67 63 6d 64 3a 60 73 65 | need.to.be.reviewed..:cfgcmd:`se |
| cd240 | 6c 66 2d 6f 72 69 67 69 6e 61 74 65 60 20 64 69 73 70 6c 61 79 73 20 6f 6e 6c 79 20 73 65 6c 66 | lf-originate`.displays.only.self |
| cd260 | 2d 6f 72 69 67 69 6e 61 74 65 64 20 4c 53 41 73 20 66 72 6f 6d 20 74 68 65 20 6c 6f 63 61 6c 20 | -originated.LSAs.from.the.local. |
| cd280 | 72 6f 75 74 65 72 2e 00 3a 63 66 67 63 6d 64 3a 60 73 65 74 20 73 65 72 76 69 63 65 20 63 6f 6e | router..:cfgcmd:`set.service.con |
| cd2a0 | 6e 74 72 61 63 6b 2d 73 79 6e 63 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 30 20 70 65 65 72 20 | ntrack-sync.interface.eth0.peer. |
| cd2c0 | 31 39 32 2e 31 36 38 2e 30 2e 32 35 30 60 00 3a 63 6f 64 65 3a 60 73 65 74 20 73 65 72 76 69 63 | 192.168.0.250`.:code:`set.servic |
| cd2e0 | 65 20 77 65 62 70 72 6f 78 79 20 75 72 6c 2d 66 69 6c 74 65 72 69 6e 67 20 73 71 75 69 64 67 75 | e.webproxy.url-filtering.squidgu |
| cd300 | 61 72 64 20 61 75 74 6f 2d 75 70 64 61 74 65 20 75 70 64 61 74 65 2d 68 6f 75 72 20 32 33 60 00 | ard.auto-update.update-hour.23`. |
| cd320 | 3a 63 6f 64 65 3a 60 73 65 74 20 73 65 72 76 69 63 65 20 77 65 62 70 72 6f 78 79 20 75 72 6c 2d | :code:`set.service.webproxy.url- |
| cd340 | 66 69 6c 74 65 72 69 6e 67 20 73 71 75 69 64 67 75 61 72 64 20 62 6c 6f 63 6b 2d 63 61 74 65 67 | filtering.squidguard.block-categ |
| cd360 | 6f 72 79 20 61 64 73 60 00 3a 63 6f 64 65 3a 60 73 65 74 20 73 65 72 76 69 63 65 20 77 65 62 70 | ory.ads`.:code:`set.service.webp |
| cd380 | 72 6f 78 79 20 75 72 6c 2d 66 69 6c 74 65 72 69 6e 67 20 73 71 75 69 64 67 75 61 72 64 20 62 6c | roxy.url-filtering.squidguard.bl |
| cd3a0 | 6f 63 6b 2d 63 61 74 65 67 6f 72 79 20 6d 61 6c 77 61 72 65 60 00 3a 63 6f 64 65 3a 60 73 65 74 | ock-category.malware`.:code:`set |
| cd3c0 | 20 73 65 72 76 69 63 65 20 77 65 62 70 72 6f 78 79 20 77 68 69 74 65 6c 69 73 74 20 64 65 73 74 | .service.webproxy.whitelist.dest |
| cd3e0 | 69 6e 61 74 69 6f 6e 2d 61 64 64 72 65 73 73 20 31 39 32 2e 30 2e 32 2e 30 2f 32 34 60 00 3a 63 | ination-address.192.0.2.0/24`.:c |
| cd400 | 6f 64 65 3a 60 73 65 74 20 73 65 72 76 69 63 65 20 77 65 62 70 72 6f 78 79 20 77 68 69 74 65 6c | ode:`set.service.webproxy.whitel |
| cd420 | 69 73 74 20 64 65 73 74 69 6e 61 74 69 6f 6e 2d 61 64 64 72 65 73 73 20 31 39 38 2e 35 31 2e 31 | ist.destination-address.198.51.1 |
| cd440 | 30 30 2e 33 33 60 00 3a 63 6f 64 65 3a 60 73 65 74 20 73 65 72 76 69 63 65 20 77 65 62 70 72 6f | 00.33`.:code:`set.service.webpro |
| cd460 | 78 79 20 77 68 69 74 65 6c 69 73 74 20 73 6f 75 72 63 65 2d 61 64 64 72 65 73 73 20 31 39 32 2e | xy.whitelist.source-address.192. |
| cd480 | 31 36 38 2e 31 2e 32 60 00 3a 63 6f 64 65 3a 60 73 65 74 20 73 65 72 76 69 63 65 20 77 65 62 70 | 168.1.2`.:code:`set.service.webp |
| cd4a0 | 72 6f 78 79 20 77 68 69 74 65 6c 69 73 74 20 73 6f 75 72 63 65 2d 61 64 64 72 65 73 73 20 31 39 | roxy.whitelist.source-address.19 |
| cd4c0 | 32 2e 31 36 38 2e 32 2e 30 2f 32 34 60 00 3a 64 6f 63 3a 60 43 6f 6e 6e 74 72 61 63 6b 20 49 67 | 2.168.2.0/24`.:doc:`Conntrack.Ig |
| cd4e0 | 6e 6f 72 65 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 73 79 73 74 65 6d 2f 63 6f 6e 6e 74 | nore</configuration/system/connt |
| cd500 | 72 61 63 6b 3e 60 3a 20 60 60 73 65 74 20 73 79 73 74 65 6d 20 63 6f 6e 6e 74 72 61 63 6b 20 69 | rack>`:.``set.system.conntrack.i |
| cd520 | 67 6e 6f 72 65 20 69 70 76 34 2e 2e 2e 60 60 00 3a 64 6f 63 3a 60 43 6f 6e 6e 74 72 61 63 6b 20 | gnore.ipv4...``.:doc:`Conntrack. |
| cd540 | 49 67 6e 6f 72 65 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 73 79 73 74 65 6d 2f 63 6f 6e | Ignore</configuration/system/con |
| cd560 | 6e 74 72 61 63 6b 3e 60 3a 20 60 60 73 65 74 20 73 79 73 74 65 6d 20 63 6f 6e 6e 74 72 61 63 6b | ntrack>`:.``set.system.conntrack |
| cd580 | 20 69 67 6e 6f 72 65 20 69 70 76 36 2e 2e 2e 60 60 00 3a 64 6f 63 3a 60 44 65 73 74 69 6e 61 74 | .ignore.ipv6...``.:doc:`Destinat |
| cd5a0 | 69 6f 6e 20 4e 41 54 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 6e 61 74 2f 6e 61 74 34 34 | ion.NAT</configuration/nat/nat44 |
| cd5c0 | 3e 60 3a 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 75 6e 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 6e | >`:.commands.found.under.``set.n |
| cd5e0 | 61 74 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 2e 2e 2e 60 60 00 3a 64 6f 63 3a 60 44 65 73 74 69 | at.destination....``.:doc:`Desti |
| cd600 | 6e 61 74 69 6f 6e 20 4e 41 54 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 6e 61 74 2f 6e 61 | nation.NAT</configuration/nat/na |
| cd620 | 74 34 34 3e 60 3a 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 75 6e 64 20 75 6e 64 65 72 20 60 60 73 65 | t44>`:.commands.found.under.``se |
| cd640 | 74 20 6e 61 74 36 36 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 2e 2e 2e 60 60 00 3a 64 6f 63 3a 60 | t.nat66.destination....``.:doc:` |
| cd660 | 50 6f 6c 69 63 79 20 52 6f 75 74 65 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 70 6f 6c 69 | Policy.Route</configuration/poli |
| cd680 | 63 79 2f 72 6f 75 74 65 3e 60 3a 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 75 6e 64 20 75 6e 64 65 72 | cy/route>`:.commands.found.under |
| cd6a0 | 20 60 60 73 65 74 20 70 6f 6c 69 63 79 20 72 6f 75 74 65 20 2e 2e 2e 60 60 00 3a 64 6f 63 3a 60 | .``set.policy.route....``.:doc:` |
| cd6c0 | 50 6f 6c 69 63 79 20 52 6f 75 74 65 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 70 6f 6c 69 | Policy.Route</configuration/poli |
| cd6e0 | 63 79 2f 72 6f 75 74 65 3e 60 3a 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 75 6e 64 20 75 6e 64 65 72 | cy/route>`:.commands.found.under |
| cd700 | 20 60 60 73 65 74 20 70 6f 6c 69 63 79 20 72 6f 75 74 65 36 20 2e 2e 2e 60 60 00 3a 6c 61 73 74 | .``set.policy.route6....``.:last |
| cd720 | 70 72 6f 6f 66 72 65 61 64 3a 32 30 32 31 2d 30 37 2d 31 32 00 3a 6f 70 63 6d 64 3a 60 67 65 6e | proofread:2021-07-12.:opcmd:`gen |
| cd740 | 65 72 61 74 65 20 70 6b 69 20 77 69 72 65 67 75 61 72 64 20 6b 65 79 2d 70 61 69 72 60 2e 00 3a | erate.pki.wireguard.key-pair`..: |
| cd760 | 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 62 67 70 60 00 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d | ref:`routing-bgp`.:ref:`routing- |
| cd780 | 62 67 70 60 3a 20 60 60 73 65 74 20 76 72 66 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 70 72 6f 74 | bgp`:.``set.vrf.name.<name>.prot |
| cd7a0 | 6f 63 6f 6c 73 20 62 67 70 20 2e 2e 2e 60 60 00 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 69 73 | ocols.bgp....``.:ref:`routing-is |
| cd7c0 | 69 73 60 00 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 69 73 69 73 60 3a 20 60 60 73 65 74 20 76 | is`.:ref:`routing-isis`:.``set.v |
| cd7e0 | 72 66 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 70 72 6f 74 6f 63 6f 6c 73 20 69 73 69 73 20 2e 2e | rf.name.<name>.protocols.isis... |
| cd800 | 2e 60 60 00 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 6f 73 70 66 60 00 3a 72 65 66 3a 60 72 6f | .``.:ref:`routing-ospf`.:ref:`ro |
| cd820 | 75 74 69 6e 67 2d 6f 73 70 66 60 3a 20 60 60 73 65 74 20 76 72 66 20 6e 61 6d 65 20 3c 6e 61 6d | uting-ospf`:.``set.vrf.name.<nam |
| cd840 | 65 3e 20 70 72 6f 74 6f 63 6f 6c 73 20 6f 73 70 66 20 2e 2e 2e 60 60 00 3a 72 65 66 3a 60 72 6f | e>.protocols.ospf....``.:ref:`ro |
| cd860 | 75 74 69 6e 67 2d 6f 73 70 66 76 33 60 00 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 6f 73 70 66 | uting-ospfv3`.:ref:`routing-ospf |
| cd880 | 76 33 60 3a 20 60 60 73 65 74 20 76 72 66 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 70 72 6f 74 6f | v3`:.``set.vrf.name.<name>.proto |
| cd8a0 | 63 6f 6c 73 20 6f 73 70 66 76 33 20 2e 2e 2e 60 60 00 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d | cols.ospfv3....``.:ref:`routing- |
| cd8c0 | 73 74 61 74 69 63 60 00 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 73 74 61 74 69 63 60 3a 20 60 | static`.:ref:`routing-static`:.` |
| cd8e0 | 60 73 65 74 20 76 72 66 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 70 72 6f 74 6f 63 6f 6c 73 20 73 | `set.vrf.name.<name>.protocols.s |
| cd900 | 74 61 74 69 63 20 2e 2e 2e 60 60 00 3a 72 66 63 3a 60 32 31 33 31 60 20 73 74 61 74 65 73 3a 20 | tatic....``.:rfc:`2131`.states:. |
| cd920 | 54 68 65 20 63 6c 69 65 6e 74 20 4d 41 59 20 63 68 6f 6f 73 65 20 74 6f 20 65 78 70 6c 69 63 69 | The.client.MAY.choose.to.explici |
| cd940 | 74 6c 79 20 70 72 6f 76 69 64 65 20 74 68 65 20 69 64 65 6e 74 69 66 69 65 72 20 74 68 72 6f 75 | tly.provide.the.identifier.throu |
| cd960 | 67 68 20 74 68 65 20 27 63 6c 69 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 27 20 6f 70 74 69 6f | gh.the.'client.identifier'.optio |
| cd980 | 6e 2e 20 49 66 20 74 68 65 20 63 6c 69 65 6e 74 20 73 75 70 70 6c 69 65 73 20 61 20 27 63 6c 69 | n..If.the.client.supplies.a.'cli |
| cd9a0 | 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 27 2c 20 74 68 65 20 63 6c 69 65 6e 74 20 4d 55 53 54 | ent.identifier',.the.client.MUST |
| cd9c0 | 20 75 73 65 20 74 68 65 20 73 61 6d 65 20 27 63 6c 69 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 | .use.the.same.'client.identifier |
| cd9e0 | 27 20 69 6e 20 61 6c 6c 20 73 75 62 73 65 71 75 65 6e 74 20 6d 65 73 73 61 67 65 73 2c 20 61 6e | '.in.all.subsequent.messages,.an |
| cda00 | 64 20 74 68 65 20 73 65 72 76 65 72 20 4d 55 53 54 20 75 73 65 20 74 68 61 74 20 69 64 65 6e 74 | d.the.server.MUST.use.that.ident |
| cda20 | 69 66 69 65 72 20 74 6f 20 69 64 65 6e 74 69 66 79 20 74 68 65 20 63 6c 69 65 6e 74 2e 00 3a 72 | ifier.to.identify.the.client..:r |
| cda40 | 66 63 3a 60 32 31 33 36 60 20 42 61 73 65 64 00 3a 72 66 63 3a 60 32 33 32 38 60 2c 20 74 68 65 | fc:`2136`.Based.:rfc:`2328`,.the |
| cda60 | 20 73 75 63 63 65 73 73 6f 72 20 74 6f 20 3a 72 66 63 3a 60 31 35 38 33 60 2c 20 73 75 67 67 65 | .successor.to.:rfc:`1583`,.sugge |
| cda80 | 73 74 73 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 73 65 63 74 69 6f 6e 20 47 2e 32 20 28 63 68 | sts.according.to.section.G.2.(ch |
| cdaa0 | 61 6e 67 65 73 29 20 69 6e 20 73 65 63 74 69 6f 6e 20 31 36 2e 34 2e 31 20 61 20 63 68 61 6e 67 | anges).in.section.16.4.1.a.chang |
| cdac0 | 65 20 74 6f 20 74 68 65 20 70 61 74 68 20 70 72 65 66 65 72 65 6e 63 65 20 61 6c 67 6f 72 69 74 | e.to.the.path.preference.algorit |
| cdae0 | 68 6d 20 74 68 61 74 20 70 72 65 76 65 6e 74 73 20 70 6f 73 73 69 62 6c 65 20 72 6f 75 74 69 6e | hm.that.prevents.possible.routin |
| cdb00 | 67 20 6c 6f 6f 70 73 20 74 68 61 74 20 77 65 72 65 20 70 6f 73 73 69 62 6c 65 20 69 6e 20 74 68 | g.loops.that.were.possible.in.th |
| cdb20 | 65 20 6f 6c 64 20 76 65 72 73 69 6f 6e 20 6f 66 20 4f 53 50 46 76 32 2e 20 4d 6f 72 65 20 73 70 | e.old.version.of.OSPFv2..More.sp |
| cdb40 | 65 63 69 66 69 63 61 6c 6c 79 20 69 74 20 64 65 6d 61 6e 64 73 20 74 68 61 74 20 69 6e 74 65 72 | ecifically.it.demands.that.inter |
| cdb60 | 2d 61 72 65 61 20 70 61 74 68 73 20 61 6e 64 20 69 6e 74 72 61 2d 61 72 65 61 20 62 61 63 6b 62 | -area.paths.and.intra-area.backb |
| cdb80 | 6f 6e 65 20 70 61 74 68 20 61 72 65 20 6e 6f 77 20 6f 66 20 65 71 75 61 6c 20 70 72 65 66 65 72 | one.path.are.now.of.equal.prefer |
| cdba0 | 65 6e 63 65 20 62 75 74 20 73 74 69 6c 6c 20 62 6f 74 68 20 70 72 65 66 65 72 72 65 64 20 74 6f | ence.but.still.both.preferred.to |
| cdbc0 | 20 65 78 74 65 72 6e 61 6c 20 70 61 74 68 73 2e 00 3a 72 66 63 3a 60 36 35 39 38 60 20 2d 20 49 | .external.paths..:rfc:`6598`.-.I |
| cdbe0 | 41 4e 41 2d 52 65 73 65 72 76 65 64 20 49 50 76 34 20 50 72 65 66 69 78 20 66 6f 72 20 53 68 61 | ANA-Reserved.IPv4.Prefix.for.Sha |
| cdc00 | 72 65 64 20 41 64 64 72 65 73 73 20 53 70 61 63 65 00 3a 72 66 63 3a 60 36 38 38 38 60 20 2d 20 | red.Address.Space.:rfc:`6888`.-. |
| cdc20 | 52 65 71 75 69 72 65 6d 65 6e 74 73 20 66 6f 72 20 43 47 4e 41 54 00 3a 76 79 74 61 73 6b 3a 60 | Requirements.for.CGNAT.:vytask:` |
| cdc40 | 54 33 36 34 32 60 20 64 65 73 63 72 69 62 65 73 20 61 20 6e 65 77 20 43 4c 49 20 73 75 62 73 79 | T3642`.describes.a.new.CLI.subsy |
| cdc60 | 73 74 65 6d 20 74 68 61 74 20 73 65 72 76 65 73 20 61 73 20 61 20 22 63 65 72 74 73 74 6f 72 65 | stem.that.serves.as.a."certstore |
| cdc80 | 22 20 74 6f 20 61 6c 6c 20 73 65 72 76 69 63 65 73 20 72 65 71 75 69 72 69 6e 67 20 61 6e 79 20 | ".to.all.services.requiring.any. |
| cdca0 | 6b 69 6e 64 20 6f 66 20 65 6e 63 72 79 70 74 69 6f 6e 20 6b 65 79 28 73 29 2e 20 49 6e 20 73 68 | kind.of.encryption.key(s)..In.sh |
| cdcc0 | 6f 72 74 2c 20 70 75 62 6c 69 63 20 61 6e 64 20 70 72 69 76 61 74 65 20 63 65 72 74 69 66 69 63 | ort,.public.and.private.certific |
| cdce0 | 61 74 65 73 20 61 72 65 20 6e 6f 77 20 73 74 6f 72 65 64 20 69 6e 20 50 4b 43 53 23 38 20 66 6f | ates.are.now.stored.in.PKCS#8.fo |
| cdd00 | 72 6d 61 74 20 69 6e 20 74 68 65 20 72 65 67 75 6c 61 72 20 56 79 4f 53 20 43 4c 49 2e 20 4b 65 | rmat.in.the.regular.VyOS.CLI..Ke |
| cdd20 | 79 73 20 63 61 6e 20 6e 6f 77 20 62 65 20 61 64 64 65 64 2c 20 65 64 69 74 65 64 2c 20 61 6e 64 | ys.can.now.be.added,.edited,.and |
| cdd40 | 20 64 65 6c 65 74 65 64 20 75 73 69 6e 67 20 74 68 65 20 72 65 67 75 6c 61 72 20 73 65 74 2f 65 | .deleted.using.the.regular.set/e |
| cdd60 | 64 69 74 2f 64 65 6c 65 74 65 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 73 2e 00 3c 31 2d 36 35 35 33 | dit/delete.CLI.commands..<1-6553 |
| cdd80 | 35 3e 3a 20 4e 75 6d 62 65 72 65 64 20 70 6f 72 74 2e 00 3c 61 61 3a 6e 6e 3a 6e 6e 3e 3a 20 45 | 5>:.Numbered.port..<aa:nn:nn>:.E |
| cdda0 | 78 74 65 6e 64 65 64 20 63 6f 6d 6d 75 6e 69 74 79 20 6c 69 73 74 20 72 65 67 75 6c 61 72 20 65 | xtended.community.list.regular.e |
| cddc0 | 78 70 72 65 73 73 69 6f 6e 2e 00 3c 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 2f 78 3e 3a 20 | xpression..<h:h:h:h:h:h:h:h/x>:. |
| cdde0 | 49 50 76 36 20 70 72 65 66 69 78 20 74 6f 20 6d 61 74 63 68 2e 00 3c 68 3a 68 3a 68 3a 68 3a 68 | IPv6.prefix.to.match..<h:h:h:h:h |
| cde00 | 3a 68 3a 68 3a 68 3e 2d 3c 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3e 3a 20 49 50 76 36 20 | :h:h:h>-<h:h:h:h:h:h:h:h>:.IPv6. |
| cde20 | 72 61 6e 67 65 20 74 6f 20 6d 61 74 63 68 2e 00 3c 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 | range.to.match..<h:h:h:h:h:h:h:h |
| cde40 | 3e 3a 20 49 50 76 36 20 61 64 64 72 65 73 73 20 74 6f 20 6d 61 74 63 68 2e 00 3c 6c 69 6e 65 73 | >:.IPv6.address.to.match..<lines |
| cde60 | 3e 00 3c 6e 75 6d 62 65 72 3e 20 6d 75 73 74 20 62 65 20 66 72 6f 6d 20 33 34 20 2d 20 31 37 33 | >.<number>.must.be.from.34.-.173 |
| cde80 | 2e 20 46 6f 72 20 38 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 73 20 69 74 20 73 68 6f 75 6c 64 20 | ..For.80.MHz.channels.it.should. |
| cdea0 | 62 65 20 63 68 61 6e 6e 65 6c 20 2b 20 36 2e 00 3c 6e 75 6d 62 65 72 3e 20 6d 75 73 74 20 62 65 | be.channel.+.6..<number>.must.be |
| cdec0 | 20 6f 6e 65 20 6f 66 3a 00 3c 6e 75 6d 62 65 72 3e 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e | .one.of:.<number>.must.be.within |
| cdee0 | 20 31 2e 2e 32 33 33 2e 20 46 6f 72 20 38 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 73 20 69 74 20 | .1..233..For.80.MHz.channels.it. |
| cdf00 | 73 68 6f 75 6c 64 20 62 65 20 63 68 61 6e 6e 65 6c 20 2b 20 36 20 61 6e 64 20 66 6f 72 20 31 36 | should.be.channel.+.6.and.for.16 |
| cdf20 | 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 73 2c 20 69 74 20 73 68 6f 75 6c 64 20 62 65 20 63 68 61 | 0.MHz.channels,.it.should.be.cha |
| cdf40 | 6e 6e 65 6c 20 2b 20 31 34 2e 00 3c 6e 75 6d 62 65 72 3e 20 e2 80 93 20 61 72 65 61 20 69 64 65 | nnel.+.14..<number>.....area.ide |
| cdf60 | 6e 74 69 66 69 65 72 20 74 68 72 6f 75 67 68 20 77 68 69 63 68 20 61 20 76 69 72 74 75 61 6c 20 | ntifier.through.which.a.virtual. |
| cdf80 | 6c 69 6e 6b 20 67 6f 65 73 2e 20 3c 41 2e 42 2e 43 2e 44 3e 20 e2 80 93 20 41 42 52 20 72 6f 75 | link.goes..<A.B.C.D>.....ABR.rou |
| cdfa0 | 74 65 72 2d 69 64 20 77 69 74 68 20 77 68 69 63 68 20 61 20 76 69 72 74 75 61 6c 20 6c 69 6e 6b | ter-id.with.which.a.virtual.link |
| cdfc0 | 20 69 73 20 65 73 74 61 62 6c 69 73 68 65 64 2e 20 56 69 72 74 75 61 6c 20 6c 69 6e 6b 20 6d 75 | .is.established..Virtual.link.mu |
| cdfe0 | 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 62 6f 74 68 20 72 6f 75 74 65 72 73 | st.be.configured.on.both.routers |
| ce000 | 2e 00 3c 70 6f 72 74 20 6e 61 6d 65 3e 3a 20 4e 61 6d 65 64 20 70 6f 72 74 20 28 61 6e 79 20 6e | ..<port.name>:.Named.port.(any.n |
| ce020 | 61 6d 65 20 69 6e 20 2f 65 74 63 2f 73 65 72 76 69 63 65 73 2c 20 65 2e 67 2e 2c 20 68 74 74 70 | ame.in./etc/services,.e.g.,.http |
| ce040 | 29 2e 00 3c 72 74 20 61 61 3a 6e 6e 3a 6e 6e 3e 3a 20 52 6f 75 74 65 20 54 61 72 67 65 74 20 72 | )..<rt.aa:nn:nn>:.Route.Target.r |
| ce060 | 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 2e 00 3c 73 6f 6f 20 61 61 3a 6e 6e 3a 6e 6e | egular.expression..<soo.aa:nn:nn |
| ce080 | 3e 3a 20 53 69 74 65 20 6f 66 20 4f 72 69 67 69 6e 20 72 65 67 75 6c 61 72 20 65 78 70 72 65 73 | >:.Site.of.Origin.regular.expres |
| ce0a0 | 73 69 6f 6e 2e 00 3c 73 74 61 72 74 3e 2d 3c 65 6e 64 3e 3a 20 4e 75 6d 62 65 72 65 64 20 70 6f | sion..<start>-<end>:.Numbered.po |
| ce0c0 | 72 74 20 72 61 6e 67 65 20 28 65 2e 67 2e 2c 20 31 30 30 31 2d 31 30 30 35 29 2e 00 3c 78 2e 78 | rt.range.(e.g.,.1001-1005)..<x.x |
| ce0e0 | 2e 78 2e 78 2f 78 3e 3a 20 53 75 62 6e 65 74 20 74 6f 20 6d 61 74 63 68 2e 00 3c 78 2e 78 2e 78 | .x.x/x>:.Subnet.to.match..<x.x.x |
| ce100 | 2e 78 3e 2d 3c 78 2e 78 2e 78 2e 78 3e 3a 20 49 50 20 72 61 6e 67 65 20 74 6f 20 6d 61 74 63 68 | .x>-<x.x.x.x>:.IP.range.to.match |
| ce120 | 2e 00 3c 78 2e 78 2e 78 2e 78 3e 3a 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 6d 61 74 63 68 | ..<x.x.x.x>:.IP.address.to.match |
| ce140 | 2e 00 41 20 2a 2a 64 6f 6d 61 69 6e 20 67 72 6f 75 70 2a 2a 20 72 65 70 72 65 73 65 6e 74 73 20 | ..A.**domain.group**.represents. |
| ce160 | 61 20 63 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 64 6f 6d 61 69 6e 73 2e 00 41 20 2a 2a 6d 61 63 | a.collection.of.domains..A.**mac |
| ce180 | 20 67 72 6f 75 70 2a 2a 20 72 65 70 72 65 73 65 6e 74 73 20 61 20 63 6f 6c 6c 65 63 74 69 6f 6e | .group**.represents.a.collection |
| ce1a0 | 20 6f 66 20 6d 61 63 20 61 64 64 72 65 73 73 65 73 2e 00 41 20 2a 2a 70 6f 72 74 20 67 72 6f 75 | .of.mac.addresses..A.**port.grou |
| ce1c0 | 70 2a 2a 20 72 65 70 72 65 73 65 6e 74 73 20 6f 6e 6c 79 20 70 6f 72 74 20 6e 75 6d 62 65 72 73 | p**.represents.only.port.numbers |
| ce1e0 | 2c 20 6e 6f 74 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 2e 20 50 6f 72 74 20 67 72 6f 75 70 73 20 | ,.not.the.protocol..Port.groups. |
| ce200 | 63 61 6e 20 62 65 20 72 65 66 65 72 65 6e 63 65 64 20 66 6f 72 20 65 69 74 68 65 72 20 54 43 50 | can.be.referenced.for.either.TCP |
| ce220 | 20 6f 72 20 55 44 50 2e 20 49 74 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 74 68 61 74 20 | .or.UDP..It.is.recommended.that. |
| ce240 | 54 43 50 20 61 6e 64 20 55 44 50 20 67 72 6f 75 70 73 20 61 72 65 20 63 72 65 61 74 65 64 20 73 | TCP.and.UDP.groups.are.created.s |
| ce260 | 65 70 61 72 61 74 65 6c 79 20 74 6f 20 61 76 6f 69 64 20 61 63 63 69 64 65 6e 74 61 6c 6c 79 20 | eparately.to.avoid.accidentally. |
| ce280 | 66 69 6c 74 65 72 69 6e 67 20 75 6e 6e 65 63 65 73 73 61 72 79 20 70 6f 72 74 73 2e 20 52 61 6e | filtering.unnecessary.ports..Ran |
| ce2a0 | 67 65 73 20 6f 66 20 70 6f 72 74 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 62 79 | ges.of.ports.can.be.specified.by |
| ce2c0 | 20 75 73 69 6e 67 20 60 2d 60 2e 00 41 20 2a 62 69 74 2a 20 69 73 20 77 72 69 74 74 65 6e 20 61 | .using.`-`..A.*bit*.is.written.a |
| ce2e0 | 73 20 2a 2a 62 69 74 2a 2a 2c 00 41 20 34 20 73 74 65 70 20 70 6f 72 74 20 6b 6e 6f 63 6b 69 6e | s.**bit**,.A.4.step.port.knockin |
| ce300 | 67 20 65 78 61 6d 70 6c 65 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 3a 00 41 20 3a 61 62 62 72 | g.example.is.shown.next:.A.:abbr |
| ce320 | 3a 60 4e 49 53 20 28 4e 65 74 77 6f 72 6b 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 20 53 65 72 76 69 | :`NIS.(Network.Information.Servi |
| ce340 | 63 65 29 60 20 64 6f 6d 61 69 6e 20 63 61 6e 20 62 65 20 73 65 74 20 74 6f 20 62 65 20 75 73 65 | ce)`.domain.can.be.set.to.be.use |
| ce360 | 64 20 66 6f 72 20 44 48 43 50 76 36 20 63 6c 69 65 6e 74 73 2e 00 41 20 42 47 50 20 63 6f 6e 66 | d.for.DHCPv6.clients..A.BGP.conf |
| ce380 | 65 64 65 72 61 74 69 6f 6e 20 64 69 76 69 64 65 73 20 6f 75 72 20 41 53 20 69 6e 74 6f 20 73 75 | ederation.divides.our.AS.into.su |
| ce3a0 | 62 2d 41 53 65 73 20 74 6f 20 72 65 64 75 63 65 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 72 | b-ASes.to.reduce.the.number.of.r |
| ce3c0 | 65 71 75 69 72 65 64 20 49 42 47 50 20 70 65 65 72 69 6e 67 73 2e 20 57 69 74 68 69 6e 20 61 20 | equired.IBGP.peerings..Within.a. |
| ce3e0 | 73 75 62 2d 41 53 20 77 65 20 73 74 69 6c 6c 20 72 65 71 75 69 72 65 20 66 75 6c 6c 2d 6d 65 73 | sub-AS.we.still.require.full-mes |
| ce400 | 68 20 49 42 47 50 20 62 75 74 20 62 65 74 77 65 65 6e 20 74 68 65 73 65 20 73 75 62 2d 41 53 65 | h.IBGP.but.between.these.sub-ASe |
| ce420 | 73 20 77 65 20 75 73 65 20 73 6f 6d 65 74 68 69 6e 67 20 74 68 61 74 20 6c 6f 6f 6b 73 20 6c 69 | s.we.use.something.that.looks.li |
| ce440 | 6b 65 20 45 42 47 50 20 62 75 74 20 62 65 68 61 76 65 73 20 6c 69 6b 65 20 49 42 47 50 20 28 63 | ke.EBGP.but.behaves.like.IBGP.(c |
| ce460 | 61 6c 6c 65 64 20 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e 20 42 47 50 29 2e 20 43 6f 6e 66 65 64 | alled.confederation.BGP)..Confed |
| ce480 | 65 72 61 74 69 6f 6e 20 6d 65 63 68 61 6e 69 73 6d 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 | eration.mechanism.is.described.i |
| ce4a0 | 6e 20 3a 72 66 63 3a 60 35 30 36 35 60 00 41 20 42 47 50 2d 73 70 65 61 6b 69 6e 67 20 72 6f 75 | n.:rfc:`5065`.A.BGP-speaking.rou |
| ce4c0 | 74 65 72 20 6c 69 6b 65 20 56 79 4f 53 20 63 61 6e 20 72 65 74 72 69 65 76 65 20 52 4f 41 20 69 | ter.like.VyOS.can.retrieve.ROA.i |
| ce4e0 | 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 52 50 4b 49 20 22 52 65 6c 79 69 6e 67 20 50 61 | nformation.from.RPKI."Relying.Pa |
| ce500 | 72 74 79 20 73 6f 66 74 77 61 72 65 22 20 28 6f 66 74 65 6e 20 6a 75 73 74 20 63 61 6c 6c 65 64 | rty.software".(often.just.called |
| ce520 | 20 61 6e 20 22 52 50 4b 49 20 73 65 72 76 65 72 22 20 6f 72 20 22 52 50 4b 49 20 76 61 6c 69 64 | .an."RPKI.server".or."RPKI.valid |
| ce540 | 61 74 6f 72 22 29 20 62 79 20 75 73 69 6e 67 20 3a 61 62 62 72 3a 60 52 54 52 20 28 52 50 4b 49 | ator").by.using.:abbr:`RTR.(RPKI |
| ce560 | 20 74 6f 20 52 6f 75 74 65 72 29 60 20 70 72 6f 74 6f 63 6f 6c 2e 20 54 68 65 72 65 20 61 72 65 | .to.Router)`.protocol..There.are |
| ce580 | 20 73 65 76 65 72 61 6c 20 6f 70 65 6e 20 73 6f 75 72 63 65 20 69 6d 70 6c 65 6d 65 6e 74 61 74 | .several.open.source.implementat |
| ce5a0 | 69 6f 6e 73 20 74 6f 20 63 68 6f 6f 73 65 20 66 72 6f 6d 2c 20 73 75 63 68 20 61 73 20 4e 4c 4e | ions.to.choose.from,.such.as.NLN |
| ce5c0 | 65 74 4c 61 62 73 27 20 52 6f 75 74 69 6e 61 74 6f 72 5f 20 28 77 72 69 74 74 65 6e 20 69 6e 20 | etLabs'.Routinator_.(written.in. |
| ce5e0 | 52 75 73 74 29 2c 20 43 6c 6f 75 64 66 6c 61 72 65 27 73 20 47 6f 52 54 52 5f 20 61 6e 64 20 4f | Rust),.Cloudflare's.GoRTR_.and.O |
| ce600 | 63 74 6f 52 50 4b 49 5f 20 28 77 72 69 74 74 65 6e 20 69 6e 20 47 6f 29 2c 20 61 6e 64 20 52 49 | ctoRPKI_.(written.in.Go),.and.RI |
| ce620 | 50 45 20 4e 43 43 27 73 20 52 50 4b 49 20 56 61 6c 69 64 61 74 6f 72 5f 20 28 77 72 69 74 74 65 | PE.NCC's.RPKI.Validator_.(writte |
| ce640 | 6e 20 69 6e 20 4a 61 76 61 29 2e 20 54 68 65 20 52 54 52 20 70 72 6f 74 6f 63 6f 6c 20 69 73 20 | n.in.Java)..The.RTR.protocol.is. |
| ce660 | 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 38 32 31 30 60 2e 00 41 20 42 47 50 2d | described.in.:rfc:`8210`..A.BGP- |
| ce680 | 73 70 65 61 6b 69 6e 67 20 72 6f 75 74 65 72 20 6c 69 6b 65 20 56 79 4f 53 20 63 61 6e 20 72 65 | speaking.router.like.VyOS.can.re |
| ce6a0 | 74 72 69 65 76 65 20 52 4f 41 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 52 50 4b 49 | trieve.ROA.information.from.RPKI |
| ce6c0 | 20 22 52 65 6c 79 69 6e 67 20 50 61 72 74 79 20 73 6f 66 74 77 61 72 65 22 20 28 6f 66 74 65 6e | ."Relying.Party.software".(often |
| ce6e0 | 20 6a 75 73 74 20 63 61 6c 6c 65 64 20 61 6e 20 22 52 50 4b 49 20 73 65 72 76 65 72 22 20 6f 72 | .just.called.an."RPKI.server".or |
| ce700 | 20 22 52 50 4b 49 20 76 61 6c 69 64 61 74 6f 72 22 29 20 62 79 20 75 73 69 6e 67 20 3a 61 62 62 | ."RPKI.validator").by.using.:abb |
| ce720 | 72 3a 60 52 54 52 20 28 52 50 4b 49 20 74 6f 20 52 6f 75 74 65 72 29 60 20 70 72 6f 74 6f 63 6f | r:`RTR.(RPKI.to.Router)`.protoco |
| ce740 | 6c 2e 20 54 68 65 72 65 20 61 72 65 20 73 65 76 65 72 61 6c 20 6f 70 65 6e 20 73 6f 75 72 63 65 | l..There.are.several.open.source |
| ce760 | 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 73 20 74 6f 20 63 68 6f 6f 73 65 20 66 72 6f 6d 2c | .implementations.to.choose.from, |
| ce780 | 20 73 75 63 68 20 61 73 20 4e 4c 4e 65 74 4c 61 62 73 27 20 52 6f 75 74 69 6e 61 74 6f 72 5f 20 | .such.as.NLNetLabs'.Routinator_. |
| ce7a0 | 28 77 72 69 74 74 65 6e 20 69 6e 20 52 75 73 74 29 2c 20 4f 70 65 6e 42 53 44 27 73 20 72 70 6b | (written.in.Rust),.OpenBSD's.rpk |
| ce7c0 | 69 2d 63 6c 69 65 6e 74 5f 20 28 77 72 69 74 74 65 6e 20 69 6e 20 43 29 2c 20 61 6e 64 20 53 74 | i-client_.(written.in.C),.and.St |
| ce7e0 | 61 79 52 54 52 5f 20 28 77 72 69 74 74 65 6e 20 69 6e 20 47 6f 29 2e 20 54 68 65 20 52 54 52 20 | ayRTR_.(written.in.Go)..The.RTR. |
| ce800 | 70 72 6f 74 6f 63 6f 6c 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 38 | protocol.is.described.in.:rfc:`8 |
| ce820 | 32 31 30 60 2e 00 41 20 42 72 69 64 67 65 20 69 73 20 61 20 77 61 79 20 74 6f 20 63 6f 6e 6e 65 | 210`..A.Bridge.is.a.way.to.conne |
| ce840 | 63 74 20 74 77 6f 20 45 74 68 65 72 6e 65 74 20 73 65 67 6d 65 6e 74 73 20 74 6f 67 65 74 68 65 | ct.two.Ethernet.segments.togethe |
| ce860 | 72 20 69 6e 20 61 20 70 72 6f 74 6f 63 6f 6c 20 69 6e 64 65 70 65 6e 64 65 6e 74 20 77 61 79 2e | r.in.a.protocol.independent.way. |
| ce880 | 20 50 61 63 6b 65 74 73 20 61 72 65 20 66 6f 72 77 61 72 64 65 64 20 62 61 73 65 64 20 6f 6e 20 | .Packets.are.forwarded.based.on. |
| ce8a0 | 45 74 68 65 72 6e 65 74 20 61 64 64 72 65 73 73 2c 20 72 61 74 68 65 72 20 74 68 61 6e 20 49 50 | Ethernet.address,.rather.than.IP |
| ce8c0 | 20 61 64 64 72 65 73 73 20 28 6c 69 6b 65 20 61 20 72 6f 75 74 65 72 29 2e 20 53 69 6e 63 65 20 | .address.(like.a.router)..Since. |
| ce8e0 | 66 6f 72 77 61 72 64 69 6e 67 20 69 73 20 64 6f 6e 65 20 61 74 20 4c 61 79 65 72 20 32 2c 20 61 | forwarding.is.done.at.Layer.2,.a |
| ce900 | 6c 6c 20 70 72 6f 74 6f 63 6f 6c 73 20 63 61 6e 20 67 6f 20 74 72 61 6e 73 70 61 72 65 6e 74 6c | ll.protocols.can.go.transparentl |
| ce920 | 79 20 74 68 72 6f 75 67 68 20 61 20 62 72 69 64 67 65 2e 20 54 68 65 20 4c 69 6e 75 78 20 62 72 | y.through.a.bridge..The.Linux.br |
| ce940 | 69 64 67 65 20 63 6f 64 65 20 69 6d 70 6c 65 6d 65 6e 74 73 20 61 20 73 75 62 73 65 74 20 6f 66 | idge.code.implements.a.subset.of |
| ce960 | 20 74 68 65 20 41 4e 53 49 2f 49 45 45 45 20 38 30 32 2e 31 64 20 73 74 61 6e 64 61 72 64 2e 00 | .the.ANSI/IEEE.802.1d.standard.. |
| ce980 | 41 20 47 52 45 20 74 75 6e 6e 65 6c 20 6f 70 65 72 61 74 65 73 20 61 74 20 6c 61 79 65 72 20 33 | A.GRE.tunnel.operates.at.layer.3 |
| ce9a0 | 20 6f 66 20 74 68 65 20 4f 53 49 20 6d 6f 64 65 6c 20 61 6e 64 20 69 73 20 72 65 70 72 65 73 65 | .of.the.OSI.model.and.is.represe |
| ce9c0 | 6e 74 65 64 20 62 79 20 49 50 20 70 72 6f 74 6f 63 6f 6c 20 34 37 2e 20 54 68 65 20 6d 61 69 6e | nted.by.IP.protocol.47..The.main |
| ce9e0 | 20 62 65 6e 65 66 69 74 20 6f 66 20 61 20 47 52 45 20 74 75 6e 6e 65 6c 20 69 73 20 74 68 61 74 | .benefit.of.a.GRE.tunnel.is.that |
| cea00 | 20 79 6f 75 20 61 72 65 20 61 62 6c 65 20 74 6f 20 63 61 72 72 79 20 6d 75 6c 74 69 70 6c 65 20 | .you.are.able.to.carry.multiple. |
| cea20 | 70 72 6f 74 6f 63 6f 6c 73 20 69 6e 73 69 64 65 20 74 68 65 20 73 61 6d 65 20 74 75 6e 6e 65 6c | protocols.inside.the.same.tunnel |
| cea40 | 2e 20 47 52 45 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 73 20 6d 75 6c 74 69 63 61 73 74 20 74 72 | ..GRE.also.supports.multicast.tr |
| cea60 | 61 66 66 69 63 20 61 6e 64 20 73 75 70 70 6f 72 74 73 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f | affic.and.supports.routing.proto |
| cea80 | 63 6f 6c 73 20 74 68 61 74 20 6c 65 76 65 72 61 67 65 20 6d 75 6c 74 69 63 61 73 74 20 74 6f 20 | cols.that.leverage.multicast.to. |
| ceaa0 | 66 6f 72 6d 20 6e 65 69 67 68 62 6f 72 20 61 64 6a 61 63 65 6e 63 69 65 73 2e 00 41 20 52 75 6c | form.neighbor.adjacencies..A.Rul |
| ceac0 | 65 2d 53 65 74 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 65 76 65 72 79 20 69 6e | e-Set.can.be.applied.to.every.in |
| ceae0 | 74 65 72 66 61 63 65 3a 00 41 20 53 4e 54 50 20 73 65 72 76 65 72 20 61 64 64 72 65 73 73 20 63 | terface:.A.SNTP.server.address.c |
| ceb00 | 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 66 6f 72 20 44 48 43 50 76 36 20 63 6c 69 65 6e | an.be.specified.for.DHCPv6.clien |
| ceb20 | 74 73 2e 00 41 20 56 52 46 20 64 65 76 69 63 65 20 69 73 20 63 72 65 61 74 65 64 20 77 69 74 68 | ts..A.VRF.device.is.created.with |
| ceb40 | 20 61 6e 20 61 73 73 6f 63 69 61 74 65 64 20 72 6f 75 74 65 20 74 61 62 6c 65 2e 20 4e 65 74 77 | .an.associated.route.table..Netw |
| ceb60 | 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 74 68 65 6e 20 65 6e 73 6c 61 76 65 64 | ork.interfaces.are.then.enslaved |
| ceb80 | 20 74 6f 20 61 20 56 52 46 20 64 65 76 69 63 65 2e 00 41 20 56 79 4f 53 20 47 52 45 20 74 75 6e | .to.a.VRF.device..A.VyOS.GRE.tun |
| ceba0 | 6e 65 6c 20 63 61 6e 20 63 61 72 72 79 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 | nel.can.carry.both.IPv4.and.IPv6 |
| cebc0 | 20 74 72 61 66 66 69 63 20 61 6e 64 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 63 72 65 61 74 65 64 | .traffic.and.can.also.be.created |
| cebe0 | 20 6f 76 65 72 20 65 69 74 68 65 72 20 49 50 76 34 20 28 67 72 65 29 20 6f 72 20 49 50 76 36 20 | .over.either.IPv4.(gre).or.IPv6. |
| cec00 | 28 69 70 36 67 72 65 29 2e 00 41 20 56 79 4f 53 20 72 6f 75 74 65 72 20 77 69 74 68 20 74 77 6f | (ip6gre)..A.VyOS.router.with.two |
| cec20 | 20 69 6e 74 65 72 66 61 63 65 73 20 2d 20 65 74 68 30 20 28 57 41 4e 29 20 61 6e 64 20 65 74 68 | .interfaces.-.eth0.(WAN).and.eth |
| cec40 | 31 20 28 4c 41 4e 29 20 2d 20 69 73 20 72 65 71 75 69 72 65 64 20 74 6f 20 69 6d 70 6c 65 6d 65 | 1.(LAN).-.is.required.to.impleme |
| cec60 | 6e 74 20 61 20 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 44 4e 53 20 63 6f 6e 66 69 67 75 72 61 | nt.a.split-horizon.DNS.configura |
| cec80 | 74 69 6f 6e 20 66 6f 72 20 65 78 61 6d 70 6c 65 2e 63 6f 6d 2e 00 41 20 62 61 73 69 63 20 63 6f | tion.for.example.com..A.basic.co |
| ceca0 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 72 65 71 75 69 72 65 73 20 61 20 74 75 6e 6e 65 6c 20 73 6f | nfiguration.requires.a.tunnel.so |
| cecc0 | 75 72 63 65 20 28 73 6f 75 72 63 65 2d 61 64 64 72 65 73 73 29 2c 20 61 20 74 75 6e 6e 65 6c 20 | urce.(source-address),.a.tunnel. |
| cece0 | 64 65 73 74 69 6e 61 74 69 6f 6e 20 28 72 65 6d 6f 74 65 29 2c 20 61 6e 20 65 6e 63 61 70 73 75 | destination.(remote),.an.encapsu |
| ced00 | 6c 61 74 69 6f 6e 20 74 79 70 65 20 28 67 72 65 29 2c 20 61 6e 64 20 61 6e 20 61 64 64 72 65 73 | lation.type.(gre),.and.an.addres |
| ced20 | 73 20 28 69 70 76 34 2f 69 70 76 36 29 2e 20 42 65 6c 6f 77 20 69 73 20 61 20 62 61 73 69 63 20 | s.(ipv4/ipv6)..Below.is.a.basic. |
| ced40 | 49 50 76 34 20 6f 6e 6c 79 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 78 61 6d 70 6c 65 20 | IPv4.only.configuration.example. |
| ced60 | 74 61 6b 65 6e 20 66 72 6f 6d 20 61 20 56 79 4f 53 20 72 6f 75 74 65 72 20 61 6e 64 20 61 20 43 | taken.from.a.VyOS.router.and.a.C |
| ced80 | 69 73 63 6f 20 49 4f 53 20 72 6f 75 74 65 72 2e 20 54 68 65 20 6d 61 69 6e 20 64 69 66 66 65 72 | isco.IOS.router..The.main.differ |
| ceda0 | 65 6e 63 65 20 62 65 74 77 65 65 6e 20 74 68 65 73 65 20 74 77 6f 20 63 6f 6e 66 69 67 75 72 61 | ence.between.these.two.configura |
| cedc0 | 74 69 6f 6e 73 20 69 73 20 74 68 61 74 20 56 79 4f 53 20 72 65 71 75 69 72 65 73 20 79 6f 75 20 | tions.is.that.VyOS.requires.you. |
| cede0 | 65 78 70 6c 69 63 69 74 6c 79 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 65 6e 63 61 70 73 75 | explicitly.configure.the.encapsu |
| cee00 | 6c 61 74 69 6f 6e 20 74 79 70 65 2e 20 54 68 65 20 43 69 73 63 6f 20 72 6f 75 74 65 72 20 64 65 | lation.type..The.Cisco.router.de |
| cee20 | 66 61 75 6c 74 73 20 74 6f 20 47 52 45 20 49 50 20 6f 74 68 65 72 77 69 73 65 20 69 74 20 77 6f | faults.to.GRE.IP.otherwise.it.wo |
| cee40 | 75 6c 64 20 68 61 76 65 20 74 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 61 73 20 77 65 6c | uld.have.to.be.configured.as.wel |
| cee60 | 6c 2e 00 41 20 62 61 73 69 63 20 69 6e 74 72 6f 64 75 63 74 69 6f 6e 20 74 6f 20 7a 6f 6e 65 2d | l..A.basic.introduction.to.zone- |
| cee80 | 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 73 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 60 68 65 | based.firewalls.can.be.found.`he |
| ceea0 | 72 65 20 3c 68 74 74 70 73 3a 2f 2f 73 75 70 70 6f 72 74 2e 76 79 6f 73 2e 69 6f 2f 65 6e 2f 6b | re.<https://support.vyos.io/en/k |
| ceec0 | 62 2f 61 72 74 69 63 6c 65 73 2f 61 2d 70 72 69 6d 65 72 2d 74 6f 2d 7a 6f 6e 65 2d 62 61 73 65 | b/articles/a-primer-to-zone-base |
| ceee0 | 64 2d 66 69 72 65 77 61 6c 6c 3e 60 5f 2c 20 61 6e 64 20 61 6e 20 65 78 61 6d 70 6c 65 20 61 74 | d-firewall>`_,.and.an.example.at |
| cef00 | 20 3a 72 65 66 3a 60 65 78 61 6d 70 6c 65 73 2d 7a 6f 6e 65 2d 70 6f 6c 69 63 79 60 2e 00 41 20 | .:ref:`examples-zone-policy`..A. |
| cef20 | 62 72 69 64 67 65 20 6e 61 6d 65 64 20 60 62 72 31 30 30 60 00 41 20 62 72 69 65 66 20 64 65 73 | bridge.named.`br100`.A.brief.des |
| cef40 | 63 72 69 70 74 69 6f 6e 20 77 68 61 74 20 74 68 69 73 20 6e 65 74 77 6f 72 6b 20 69 73 20 61 6c | cription.what.this.network.is.al |
| cef60 | 6c 20 61 62 6f 75 74 2e 00 41 20 63 6c 61 73 73 20 63 61 6e 20 68 61 76 65 20 6d 75 6c 74 69 70 | l.about..A.class.can.have.multip |
| cef80 | 6c 65 20 6d 61 74 63 68 20 66 69 6c 74 65 72 73 3a 00 41 20 63 6f 6d 6d 6f 6e 20 65 78 61 6d 70 | le.match.filters:.A.common.examp |
| cefa0 | 6c 65 20 69 73 20 74 68 65 20 63 61 73 65 20 6f 66 20 73 6f 6d 65 20 70 6f 6c 69 63 69 65 73 20 | le.is.the.case.of.some.policies. |
| cefc0 | 77 68 69 63 68 2c 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 62 65 20 65 66 66 65 63 74 69 76 65 2c | which,.in.order.to.be.effective, |
| cefe0 | 20 74 68 65 79 20 6e 65 65 64 20 74 6f 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 61 6e 20 69 | .they.need.to.be.applied.to.an.i |
| cf000 | 6e 74 65 72 66 61 63 65 20 74 68 61 74 20 69 73 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 | nterface.that.is.directly.connec |
| cf020 | 74 65 64 20 77 68 65 72 65 20 74 68 65 20 62 6f 74 74 6c 65 6e 65 63 6b 20 69 73 2e 20 49 66 20 | ted.where.the.bottleneck.is..If. |
| cf040 | 79 6f 75 72 20 72 6f 75 74 65 72 20 69 73 20 6e 6f 74 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e | your.router.is.not.directly.conn |
| cf060 | 65 63 74 65 64 20 74 6f 20 74 68 65 20 62 6f 74 74 6c 65 6e 65 63 6b 2c 20 62 75 74 20 73 6f 6d | ected.to.the.bottleneck,.but.som |
| cf080 | 65 20 68 6f 70 20 62 65 66 6f 72 65 20 69 74 2c 20 79 6f 75 20 63 61 6e 20 65 6d 75 6c 61 74 65 | e.hop.before.it,.you.can.emulate |
| cf0a0 | 20 74 68 65 20 62 6f 74 74 6c 65 6e 65 63 6b 20 62 79 20 65 6d 62 65 64 64 69 6e 67 20 79 6f 75 | .the.bottleneck.by.embedding.you |
| cf0c0 | 72 20 6e 6f 6e 2d 73 68 61 70 69 6e 67 20 70 6f 6c 69 63 79 20 69 6e 74 6f 20 61 20 63 6c 61 73 | r.non-shaping.policy.into.a.clas |
| cf0e0 | 73 66 75 6c 20 73 68 61 70 69 6e 67 20 6f 6e 65 20 73 6f 20 74 68 61 74 20 69 74 20 74 61 6b 65 | sful.shaping.one.so.that.it.take |
| cf100 | 73 20 65 66 66 65 63 74 2e 00 41 20 63 6f 6d 70 6c 65 74 65 20 4c 44 41 50 20 61 75 74 68 20 4f | s.effect..A.complete.LDAP.auth.O |
| cf120 | 70 65 6e 56 50 4e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 75 6c 64 20 6c 6f 6f 6b 20 | penVPN.configuration.could.look. |
| cf140 | 6c 69 6b 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 3a 00 41 20 63 6f | like.the.following.example:.A.co |
| cf160 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 78 61 6d 70 6c 65 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 | nfiguration.example.can.be.found |
| cf180 | 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 2e 20 49 6e 20 74 68 69 73 20 73 69 6d 70 6c 69 | .in.this.section..In.this.simpli |
| cf1a0 | 66 69 65 64 20 73 63 65 6e 61 72 69 6f 2c 20 6d 61 69 6e 20 74 68 69 6e 67 73 20 74 6f 20 62 65 | fied.scenario,.main.things.to.be |
| cf1c0 | 20 63 6f 6e 73 69 64 65 72 65 64 20 61 72 65 3a 00 41 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 61 74 | .considered.are:.A.connection.at |
| cf1e0 | 74 65 6d 70 74 20 77 69 6c 6c 20 62 65 20 73 68 6f 77 6e 20 61 73 3a 00 41 20 64 65 66 61 75 6c | tempt.will.be.shown.as:.A.defaul |
| cf200 | 74 20 72 6f 75 74 65 20 69 73 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 69 6e 73 74 61 6c 6c | t.route.is.automatically.install |
| cf220 | 65 64 20 6f 6e 63 65 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 75 70 2e 20 54 6f 20 | ed.once.the.interface.is.up..To. |
| cf240 | 63 68 61 6e 67 65 20 74 68 69 73 20 62 65 68 61 76 69 6f 72 20 75 73 65 20 74 68 65 20 60 60 6e | change.this.behavior.use.the.``n |
| cf260 | 6f 2d 64 65 66 61 75 6c 74 2d 72 6f 75 74 65 60 60 20 43 4c 49 20 6f 70 74 69 6f 6e 2e 00 41 20 | o-default-route``.CLI.option..A. |
| cf280 | 64 65 73 63 72 69 70 74 69 6f 6e 20 63 61 6e 20 62 65 20 61 64 64 65 64 20 66 6f 72 20 65 61 63 | description.can.be.added.for.eac |
| cf2a0 | 68 20 61 6e 64 20 65 76 65 72 79 20 75 6e 69 71 75 65 20 72 65 6c 61 79 20 49 44 2e 20 54 68 69 | h.and.every.unique.relay.ID..Thi |
| cf2c0 | 73 20 69 73 20 75 73 65 66 75 6c 20 74 6f 20 64 69 73 74 69 6e 67 75 69 73 68 20 62 65 74 77 65 | s.is.useful.to.distinguish.betwe |
| cf2e0 | 65 6e 20 6d 75 6c 74 69 70 6c 65 20 64 69 66 66 65 72 65 6e 74 20 70 6f 72 74 73 2f 61 70 70 6c | en.multiple.different.ports/appl |
| cf300 | 69 61 63 74 69 6f 6e 73 2e 00 41 20 64 65 73 63 72 69 70 74 69 6f 6e 20 63 61 6e 20 62 65 20 61 | iactions..A.description.can.be.a |
| cf320 | 64 64 65 64 20 66 6f 72 20 65 61 63 68 20 61 6e 64 20 65 76 65 72 79 20 75 6e 69 71 75 65 20 72 | dded.for.each.and.every.unique.r |
| cf340 | 65 6c 61 79 20 49 44 2e 20 54 68 69 73 20 69 73 20 75 73 65 66 75 6c 20 74 6f 20 64 69 73 74 69 | elay.ID..This.is.useful.to.disti |
| cf360 | 6e 67 75 69 73 68 20 62 65 74 77 65 65 6e 20 6d 75 6c 74 69 70 6c 65 20 64 69 66 66 65 72 65 6e | nguish.between.multiple.differen |
| cf380 | 74 20 70 6f 72 74 73 2f 61 70 70 6c 69 63 61 74 69 6f 6e 73 2e 00 41 20 64 69 73 61 62 6c 65 64 | t.ports/applications..A.disabled |
| cf3a0 | 20 67 72 6f 75 70 20 77 69 6c 6c 20 62 65 20 72 65 6d 6f 76 65 64 20 66 72 6f 6d 20 74 68 65 20 | .group.will.be.removed.from.the. |
| cf3c0 | 56 52 52 50 20 70 72 6f 63 65 73 73 20 61 6e 64 20 79 6f 75 72 20 72 6f 75 74 65 72 20 77 69 6c | VRRP.process.and.your.router.wil |
| cf3e0 | 6c 20 6e 6f 74 20 70 61 72 74 69 63 69 70 61 74 65 20 69 6e 20 56 52 52 50 20 66 6f 72 20 74 68 | l.not.participate.in.VRRP.for.th |
| cf400 | 61 74 20 56 52 49 44 2e 20 49 74 20 77 69 6c 6c 20 64 69 73 61 70 70 65 61 72 20 66 72 6f 6d 20 | at.VRID..It.will.disappear.from. |
| cf420 | 6f 70 65 72 61 74 69 6f 6e 61 6c 20 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 20 6f 75 74 70 75 74 | operational.mode.commands.output |
| cf440 | 2c 20 72 61 74 68 65 72 20 74 68 61 6e 20 65 6e 74 65 72 20 74 68 65 20 62 61 63 6b 75 70 20 73 | ,.rather.than.enter.the.backup.s |
| cf460 | 74 61 74 65 2e 00 41 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 69 73 20 74 68 65 20 6c 61 62 65 6c | tate..A.domain.name.is.the.label |
| cf480 | 20 28 6e 61 6d 65 29 20 61 73 73 69 67 6e 65 64 20 74 6f 20 61 20 63 6f 6d 70 75 74 65 72 20 6e | .(name).assigned.to.a.computer.n |
| cf4a0 | 65 74 77 6f 72 6b 20 61 6e 64 20 69 73 20 74 68 75 73 20 75 6e 69 71 75 65 2e 20 56 79 4f 53 20 | etwork.and.is.thus.unique..VyOS. |
| cf4c0 | 61 70 70 65 6e 64 73 20 74 68 65 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 61 73 20 61 20 73 75 66 | appends.the.domain.name.as.a.suf |
| cf4e0 | 66 69 78 20 74 6f 20 61 6e 79 20 75 6e 71 75 61 6c 69 66 69 65 64 20 6e 61 6d 65 2e 20 46 6f 72 | fix.to.any.unqualified.name..For |
| cf500 | 20 65 78 61 6d 70 6c 65 2c 20 69 66 20 79 6f 75 20 73 65 74 20 74 68 65 20 64 6f 6d 61 69 6e 20 | .example,.if.you.set.the.domain. |
| cf520 | 6e 61 6d 65 20 60 65 78 61 6d 70 6c 65 2e 63 6f 6d 60 2c 20 61 6e 64 20 79 6f 75 20 77 6f 75 6c | name.`example.com`,.and.you.woul |
| cf540 | 64 20 70 69 6e 67 20 74 68 65 20 75 6e 71 75 61 6c 69 66 69 65 64 20 6e 61 6d 65 20 6f 66 20 60 | d.ping.the.unqualified.name.of.` |
| cf560 | 63 72 75 78 60 2c 20 74 68 65 6e 20 56 79 4f 53 20 71 75 61 6c 69 66 69 65 73 20 74 68 65 20 6e | crux`,.then.VyOS.qualifies.the.n |
| cf580 | 61 6d 65 20 74 6f 20 60 63 72 75 78 2e 65 78 61 6d 70 6c 65 2e 63 6f 6d 60 2e 00 41 20 64 75 6d | ame.to.`crux.example.com`..A.dum |
| cf5a0 | 6d 79 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 74 68 65 20 70 72 6f 76 69 64 65 72 2d 61 73 | my.interface.for.the.provider-as |
| cf5c0 | 73 69 67 6e 65 64 20 49 50 3b 00 41 20 66 69 72 65 77 61 6c 6c 20 6d 61 72 6b 20 60 60 66 77 6d | signed.IP;.A.firewall.mark.``fwm |
| cf5e0 | 61 72 6b 60 60 20 61 6c 6c 6f 77 73 20 75 73 69 6e 67 20 6d 75 6c 74 69 70 6c 65 20 70 6f 72 74 | ark``.allows.using.multiple.port |
| cf600 | 73 20 66 6f 72 20 68 69 67 68 2d 61 76 61 69 6c 61 62 69 6c 69 74 79 20 76 69 72 74 75 61 6c 2d | s.for.high-availability.virtual- |
| cf620 | 73 65 72 76 65 72 2e 20 49 74 20 75 73 65 73 20 66 77 6d 61 72 6b 20 76 61 6c 75 65 2e 00 41 20 | server..It.uses.fwmark.value..A. |
| cf640 | 66 75 6c 6c 20 65 78 61 6d 70 6c 65 20 6f 66 20 61 20 54 75 6e 6e 65 6c 62 72 6f 6b 65 72 2e 6e | full.example.of.a.Tunnelbroker.n |
| cf660 | 65 74 20 63 6f 6e 66 69 67 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 61 74 20 3a 72 65 66 3a 60 | et.config.can.be.found.at.:ref:` |
| cf680 | 68 65 72 65 20 3c 65 78 61 6d 70 6c 65 73 2d 74 75 6e 6e 65 6c 62 72 6f 6b 65 72 2d 69 70 76 36 | here.<examples-tunnelbroker-ipv6 |
| cf6a0 | 3e 60 2e 00 41 20 67 65 6e 65 72 69 63 20 60 3c 6e 61 6d 65 3e 60 20 72 65 66 65 72 65 6e 63 69 | >`..A.generic.`<name>`.referenci |
| cf6c0 | 6e 67 20 74 68 69 73 20 73 79 6e 63 20 73 65 72 76 69 63 65 2e 00 41 20 68 6f 73 74 6e 61 6d 65 | ng.this.sync.service..A.hostname |
| cf6e0 | 20 69 73 20 74 68 65 20 6c 61 62 65 6c 20 28 6e 61 6d 65 29 20 61 73 73 69 67 6e 65 64 20 74 6f | .is.the.label.(name).assigned.to |
| cf700 | 20 61 20 6e 65 74 77 6f 72 6b 20 64 65 76 69 63 65 20 28 61 20 68 6f 73 74 29 20 6f 6e 20 61 20 | .a.network.device.(a.host).on.a. |
| cf720 | 6e 65 74 77 6f 72 6b 20 61 6e 64 20 69 73 20 75 73 65 64 20 74 6f 20 64 69 73 74 69 6e 67 75 69 | network.and.is.used.to.distingui |
| cf740 | 73 68 20 6f 6e 65 20 64 65 76 69 63 65 20 66 72 6f 6d 20 61 6e 6f 74 68 65 72 20 6f 6e 20 73 70 | sh.one.device.from.another.on.sp |
| cf760 | 65 63 69 66 69 63 20 6e 65 74 77 6f 72 6b 73 20 6f 72 20 6f 76 65 72 20 74 68 65 20 69 6e 74 65 | ecific.networks.or.over.the.inte |
| cf780 | 72 6e 65 74 2e 20 4f 6e 20 74 68 65 20 6f 74 68 65 72 20 68 61 6e 64 20 74 68 69 73 20 77 69 6c | rnet..On.the.other.hand.this.wil |
| cf7a0 | 6c 20 62 65 20 74 68 65 20 6e 61 6d 65 20 77 68 69 63 68 20 61 70 70 65 61 72 73 20 6f 6e 20 74 | l.be.the.name.which.appears.on.t |
| cf7c0 | 68 65 20 63 6f 6d 6d 61 6e 64 20 6c 69 6e 65 20 70 72 6f 6d 70 74 2e 00 41 20 68 75 6d 61 6e 20 | he.command.line.prompt..A.human. |
| cf7e0 | 72 65 61 64 61 62 6c 65 20 64 65 73 63 72 69 70 74 69 6f 6e 20 77 68 61 74 20 74 68 69 73 20 43 | readable.description.what.this.C |
| cf800 | 41 20 69 73 20 61 62 6f 75 74 2e 00 41 20 68 75 6d 61 6e 20 72 65 61 64 61 62 6c 65 20 64 65 73 | A.is.about..A.human.readable.des |
| cf820 | 63 72 69 70 74 69 6f 6e 20 77 68 61 74 20 74 68 69 73 20 63 65 72 74 69 66 69 63 61 74 65 20 69 | cription.what.this.certificate.i |
| cf840 | 73 20 61 62 6f 75 74 2e 00 41 20 6c 69 6e 6b 20 63 61 6e 20 62 65 20 73 65 74 75 70 20 66 6f 72 | s.about..A.link.can.be.setup.for |
| cf860 | 20 75 70 6c 69 6e 6b 20 74 72 61 63 6b 69 6e 67 20 76 69 61 20 74 68 65 20 66 6f 6c 6c 6f 77 69 | .uplink.tracking.via.the.followi |
| cf880 | 6e 67 20 65 78 61 6d 70 6c 65 3a 00 41 20 6c 6f 6f 6b 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 | ng.example:.A.lookback.interface |
| cf8a0 | 20 69 73 20 61 6c 77 61 79 73 20 75 70 2c 20 74 68 75 73 20 69 74 20 63 6f 75 6c 64 20 62 65 20 | .is.always.up,.thus.it.could.be. |
| cf8c0 | 75 73 65 64 20 66 6f 72 20 6d 61 6e 61 67 65 6d 65 6e 74 20 74 72 61 66 66 69 63 20 6f 72 20 61 | used.for.management.traffic.or.a |
| cf8e0 | 73 20 73 6f 75 72 63 65 2f 64 65 73 74 69 6e 61 74 69 6f 6e 20 66 6f 72 20 61 6e 64 20 3a 61 62 | s.source/destination.for.and.:ab |
| cf900 | 62 72 3a 60 49 47 50 20 28 49 6e 74 65 72 69 6f 72 20 47 61 74 65 77 61 79 20 50 72 6f 74 6f 63 | br:`IGP.(Interior.Gateway.Protoc |
| cf920 | 6f 6c 29 60 20 6c 69 6b 65 20 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 62 67 70 60 20 73 6f 20 | ol)`.like.:ref:`routing-bgp`.so. |
| cf940 | 79 6f 75 72 20 69 6e 74 65 72 6e 61 6c 20 42 47 50 20 6c 69 6e 6b 20 69 73 20 6e 6f 74 20 64 65 | your.internal.BGP.link.is.not.de |
| cf960 | 70 65 6e 64 65 6e 74 20 6f 6e 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 20 73 74 61 74 65 73 20 | pendent.on.physical.link.states. |
| cf980 | 61 6e 64 20 6d 75 6c 74 69 70 6c 65 20 72 6f 75 74 65 73 20 63 61 6e 20 62 65 20 63 68 6f 73 65 | and.multiple.routes.can.be.chose |
| cf9a0 | 6e 20 74 6f 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 2e 20 41 20 3a 72 65 66 3a 60 64 75 | n.to.the.destination..A.:ref:`du |
| cf9c0 | 6d 6d 79 2d 69 6e 74 65 72 66 61 63 65 60 20 49 6e 74 65 72 66 61 63 65 20 73 68 6f 75 6c 64 20 | mmy-interface`.Interface.should. |
| cf9e0 | 61 6c 77 61 79 73 20 62 65 20 70 72 65 66 65 72 72 65 64 20 6f 76 65 72 20 61 20 3a 72 65 66 3a | always.be.preferred.over.a.:ref: |
| cfa00 | 60 6c 6f 6f 70 62 61 63 6b 2d 69 6e 74 65 72 66 61 63 65 60 20 69 6e 74 65 72 66 61 63 65 2e 00 | `loopback-interface`.interface.. |
| cfa20 | 41 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 6c 77 61 79 73 20 75 | A.loopback.interface.is.always.u |
| cfa40 | 70 2c 20 74 68 75 73 20 69 74 20 63 6f 75 6c 64 20 62 65 20 75 73 65 64 20 66 6f 72 20 6d 61 6e | p,.thus.it.could.be.used.for.man |
| cfa60 | 61 67 65 6d 65 6e 74 20 74 72 61 66 66 69 63 20 6f 72 20 61 73 20 73 6f 75 72 63 65 2f 64 65 73 | agement.traffic.or.as.source/des |
| cfa80 | 74 69 6e 61 74 69 6f 6e 20 66 6f 72 20 61 6e 64 20 3a 61 62 62 72 3a 60 49 47 50 20 28 49 6e 74 | tination.for.and.:abbr:`IGP.(Int |
| cfaa0 | 65 72 69 6f 72 20 47 61 74 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c 29 60 20 6c 69 6b 65 20 3a 72 | erior.Gateway.Protocol)`.like.:r |
| cfac0 | 65 66 3a 60 72 6f 75 74 69 6e 67 2d 62 67 70 60 20 73 6f 20 79 6f 75 72 20 69 6e 74 65 72 6e 61 | ef:`routing-bgp`.so.your.interna |
| cfae0 | 6c 20 42 47 50 20 6c 69 6e 6b 20 69 73 20 6e 6f 74 20 64 65 70 65 6e 64 65 6e 74 20 6f 6e 20 70 | l.BGP.link.is.not.dependent.on.p |
| cfb00 | 68 79 73 69 63 61 6c 20 6c 69 6e 6b 20 73 74 61 74 65 73 20 61 6e 64 20 6d 75 6c 74 69 70 6c 65 | hysical.link.states.and.multiple |
| cfb20 | 20 72 6f 75 74 65 73 20 63 61 6e 20 62 65 20 63 68 6f 73 65 6e 20 74 6f 20 74 68 65 20 64 65 73 | .routes.can.be.chosen.to.the.des |
| cfb40 | 74 69 6e 61 74 69 6f 6e 2e 20 41 20 3a 72 65 66 3a 60 64 75 6d 6d 79 2d 69 6e 74 65 72 66 61 63 | tination..A.:ref:`dummy-interfac |
| cfb60 | 65 60 20 49 6e 74 65 72 66 61 63 65 20 73 68 6f 75 6c 64 20 61 6c 77 61 79 73 20 62 65 20 70 72 | e`.Interface.should.always.be.pr |
| cfb80 | 65 66 65 72 72 65 64 20 6f 76 65 72 20 61 20 3a 72 65 66 3a 60 6c 6f 6f 70 62 61 63 6b 2d 69 6e | eferred.over.a.:ref:`loopback-in |
| cfba0 | 74 65 72 66 61 63 65 60 20 69 6e 74 65 72 66 61 63 65 2e 00 41 20 6d 61 6e 61 67 65 64 20 64 65 | terface`.interface..A.managed.de |
| cfbc0 | 76 69 63 65 20 69 73 20 61 20 6e 65 74 77 6f 72 6b 20 6e 6f 64 65 20 74 68 61 74 20 69 6d 70 6c | vice.is.a.network.node.that.impl |
| cfbe0 | 65 6d 65 6e 74 73 20 61 6e 20 53 4e 4d 50 20 69 6e 74 65 72 66 61 63 65 20 74 68 61 74 20 61 6c | ements.an.SNMP.interface.that.al |
| cfc00 | 6c 6f 77 73 20 75 6e 69 64 69 72 65 63 74 69 6f 6e 61 6c 20 28 72 65 61 64 2d 6f 6e 6c 79 29 20 | lows.unidirectional.(read-only). |
| cfc20 | 6f 72 20 62 69 64 69 72 65 63 74 69 6f 6e 61 6c 20 28 72 65 61 64 20 61 6e 64 20 77 72 69 74 65 | or.bidirectional.(read.and.write |
| cfc40 | 29 20 61 63 63 65 73 73 20 74 6f 20 6e 6f 64 65 2d 73 70 65 63 69 66 69 63 20 69 6e 66 6f 72 6d | ).access.to.node-specific.inform |
| cfc60 | 61 74 69 6f 6e 2e 20 4d 61 6e 61 67 65 64 20 64 65 76 69 63 65 73 20 65 78 63 68 61 6e 67 65 20 | ation..Managed.devices.exchange. |
| cfc80 | 6e 6f 64 65 2d 73 70 65 63 69 66 69 63 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 77 69 74 68 20 74 | node-specific.information.with.t |
| cfca0 | 68 65 20 4e 4d 53 73 2e 20 53 6f 6d 65 74 69 6d 65 73 20 63 61 6c 6c 65 64 20 6e 65 74 77 6f 72 | he.NMSs..Sometimes.called.networ |
| cfcc0 | 6b 20 65 6c 65 6d 65 6e 74 73 2c 20 74 68 65 20 6d 61 6e 61 67 65 64 20 64 65 76 69 63 65 73 20 | k.elements,.the.managed.devices. |
| cfce0 | 63 61 6e 20 62 65 20 61 6e 79 20 74 79 70 65 20 6f 66 20 64 65 76 69 63 65 2c 20 69 6e 63 6c 75 | can.be.any.type.of.device,.inclu |
| cfd00 | 64 69 6e 67 2c 20 62 75 74 20 6e 6f 74 20 6c 69 6d 69 74 65 64 20 74 6f 2c 20 72 6f 75 74 65 72 | ding,.but.not.limited.to,.router |
| cfd20 | 73 2c 20 61 63 63 65 73 73 20 73 65 72 76 65 72 73 2c 20 73 77 69 74 63 68 65 73 2c 20 63 61 62 | s,.access.servers,.switches,.cab |
| cfd40 | 6c 65 20 6d 6f 64 65 6d 73 2c 20 62 72 69 64 67 65 73 2c 20 68 75 62 73 2c 20 49 50 20 74 65 6c | le.modems,.bridges,.hubs,.IP.tel |
| cfd60 | 65 70 68 6f 6e 65 73 2c 20 49 50 20 76 69 64 65 6f 20 63 61 6d 65 72 61 73 2c 20 63 6f 6d 70 75 | ephones,.IP.video.cameras,.compu |
| cfd80 | 74 65 72 20 68 6f 73 74 73 2c 20 61 6e 64 20 70 72 69 6e 74 65 72 73 2e 00 41 20 6d 61 74 63 68 | ter.hosts,.and.printers..A.match |
| cfda0 | 20 66 69 6c 74 65 72 20 63 61 6e 20 63 6f 6e 74 61 69 6e 20 6d 75 6c 74 69 70 6c 65 20 63 72 69 | .filter.can.contain.multiple.cri |
| cfdc0 | 74 65 72 69 61 20 61 6e 64 20 77 69 6c 6c 20 6d 61 74 63 68 20 74 72 61 66 66 69 63 20 69 66 20 | teria.and.will.match.traffic.if. |
| cfde0 | 61 6c 6c 20 74 68 6f 73 65 20 63 72 69 74 65 72 69 61 20 61 72 65 20 74 72 75 65 2e 00 41 20 6d | all.those.criteria.are.true..A.m |
| cfe00 | 61 74 63 68 20 67 72 6f 75 70 20 63 61 6e 20 63 6f 6e 74 61 69 6e 20 6d 75 6c 74 69 70 6c 65 20 | atch.group.can.contain.multiple. |
| cfe20 | 63 72 69 74 65 72 69 61 20 61 6e 64 20 69 6e 68 65 72 69 74 20 74 68 65 6d 20 69 6e 20 74 68 65 | criteria.and.inherit.them.in.the |
| cfe40 | 20 73 61 6d 65 20 70 6f 6c 69 63 79 2e 00 41 20 6d 6f 6e 69 74 6f 72 65 64 20 73 74 61 74 69 63 | .same.policy..A.monitored.static |
| cfe60 | 20 72 6f 75 74 65 20 63 6f 6e 64 69 74 69 6f 6e 73 20 74 68 65 20 69 6e 73 74 61 6c 6c 61 74 69 | .route.conditions.the.installati |
| cfe80 | 6f 6e 20 74 6f 20 74 68 65 20 52 49 42 20 6f 6e 20 74 68 65 20 42 46 44 20 73 65 73 73 69 6f 6e | on.to.the.RIB.on.the.BFD.session |
| cfea0 | 20 72 75 6e 6e 69 6e 67 20 73 74 61 74 65 3a 20 77 68 65 6e 20 42 46 44 20 73 65 73 73 69 6f 6e | .running.state:.when.BFD.session |
| cfec0 | 20 69 73 20 75 70 20 74 68 65 20 72 6f 75 74 65 20 69 73 20 69 6e 73 74 61 6c 6c 65 64 20 74 6f | .is.up.the.route.is.installed.to |
| cfee0 | 20 52 49 42 2c 20 62 75 74 20 77 68 65 6e 20 74 68 65 20 42 46 44 20 73 65 73 73 69 6f 6e 20 69 | .RIB,.but.when.the.BFD.session.i |
| cff00 | 73 20 64 6f 77 6e 20 69 74 20 69 73 20 72 65 6d 6f 76 65 64 20 66 72 6f 6d 20 74 68 65 20 52 49 | s.down.it.is.removed.from.the.RI |
| cff20 | 42 2e 00 41 20 6e 65 74 77 6f 72 6b 20 6d 61 6e 61 67 65 6d 65 6e 74 20 73 74 61 74 69 6f 6e 20 | B..A.network.management.station. |
| cff40 | 65 78 65 63 75 74 65 73 20 61 70 70 6c 69 63 61 74 69 6f 6e 73 20 74 68 61 74 20 6d 6f 6e 69 74 | executes.applications.that.monit |
| cff60 | 6f 72 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 20 6d 61 6e 61 67 65 64 20 64 65 76 69 63 65 73 2e 20 | or.and.control.managed.devices.. |
| cff80 | 4e 4d 53 73 20 70 72 6f 76 69 64 65 20 74 68 65 20 62 75 6c 6b 20 6f 66 20 74 68 65 20 70 72 6f | NMSs.provide.the.bulk.of.the.pro |
| cffa0 | 63 65 73 73 69 6e 67 20 61 6e 64 20 6d 65 6d 6f 72 79 20 72 65 73 6f 75 72 63 65 73 20 72 65 71 | cessing.and.memory.resources.req |
| cffc0 | 75 69 72 65 64 20 66 6f 72 20 6e 65 74 77 6f 72 6b 20 6d 61 6e 61 67 65 6d 65 6e 74 2e 20 4f 6e | uired.for.network.management..On |
| cffe0 | 65 20 6f 72 20 6d 6f 72 65 20 4e 4d 53 73 20 6d 61 79 20 65 78 69 73 74 20 6f 6e 20 61 6e 79 20 | e.or.more.NMSs.may.exist.on.any. |
| d0000 | 6d 61 6e 61 67 65 64 20 6e 65 74 77 6f 72 6b 2e 00 41 20 6e 65 77 20 69 6e 74 65 72 66 61 63 65 | managed.network..A.new.interface |
| d0020 | 20 62 65 63 6f 6d 65 73 20 70 72 65 73 65 6e 74 20 60 60 50 6f 72 74 2d 63 68 61 6e 6e 65 6c 31 | .becomes.present.``Port-channel1 |
| d0040 | 60 60 2c 20 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6c 69 6b 65 20 61 6c 6c 6f 77 | ``,.all.configuration.like.allow |
| d0060 | 65 64 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 73 2c 20 53 54 50 20 77 69 6c 6c 20 68 61 70 | ed.VLAN.interfaces,.STP.will.hap |
| d0080 | 70 65 6e 20 68 65 72 65 2e 00 41 20 70 61 63 6b 65 74 20 72 61 74 65 20 6c 69 6d 69 74 20 63 61 | pen.here..A.packet.rate.limit.ca |
| d00a0 | 6e 20 62 65 20 73 65 74 20 66 6f 72 20 61 20 72 75 6c 65 20 74 6f 20 61 70 70 6c 79 20 74 68 65 | n.be.set.for.a.rule.to.apply.the |
| d00c0 | 20 72 75 6c 65 20 74 6f 20 74 72 61 66 66 69 63 20 61 62 6f 76 65 20 6f 72 20 62 65 6c 6f 77 20 | .rule.to.traffic.above.or.below. |
| d00e0 | 61 20 73 70 65 63 69 66 69 65 64 20 74 68 72 65 73 68 6f 6c 64 2e 20 54 6f 20 63 6f 6e 66 69 67 | a.specified.threshold..To.config |
| d0100 | 75 72 65 20 74 68 65 20 72 61 74 65 20 6c 69 6d 69 74 69 6e 67 20 75 73 65 3a 00 41 20 70 61 63 | ure.the.rate.limiting.use:.A.pac |
| d0120 | 6b 65 74 20 74 68 61 74 20 66 69 6e 64 73 20 61 20 6d 61 74 63 68 69 6e 67 20 65 6e 74 72 79 20 | ket.that.finds.a.matching.entry. |
| d0140 | 69 6e 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 28 66 6c 6f 77 74 61 62 6c 65 20 68 69 74 29 | in.the.flowtable.(flowtable.hit) |
| d0160 | 20 69 73 20 74 72 61 6e 73 6d 69 74 74 65 64 20 74 6f 20 74 68 65 20 6f 75 74 70 75 74 20 6e 65 | .is.transmitted.to.the.output.ne |
| d0180 | 74 64 65 76 69 63 65 2c 20 68 65 6e 63 65 2c 20 70 61 63 6b 65 74 73 20 62 79 70 61 73 73 20 74 | tdevice,.hence,.packets.bypass.t |
| d01a0 | 68 65 20 63 6c 61 73 73 69 63 20 49 50 20 66 6f 72 77 61 72 64 69 6e 67 20 70 61 74 68 20 61 6e | he.classic.IP.forwarding.path.an |
| d01c0 | 64 20 75 73 65 73 20 74 68 65 20 2a 2a 46 61 73 74 20 50 61 74 68 2a 2a 20 28 6f 72 61 6e 67 65 | d.uses.the.**Fast.Path**.(orange |
| d01e0 | 20 63 69 72 63 6c 65 73 20 70 61 74 68 29 2e 20 54 68 65 20 76 69 73 69 62 6c 65 20 65 66 66 65 | .circles.path)..The.visible.effe |
| d0200 | 63 74 20 69 73 20 74 68 61 74 20 79 6f 75 20 64 6f 20 6e 6f 74 20 73 65 65 20 74 68 65 73 65 20 | ct.is.that.you.do.not.see.these. |
| d0220 | 70 61 63 6b 65 74 73 20 66 72 6f 6d 20 61 6e 79 20 6f 66 20 74 68 65 20 4e 65 74 66 69 6c 74 65 | packets.from.any.of.the.Netfilte |
| d0240 | 72 20 68 6f 6f 6b 73 20 63 6f 6d 69 6e 67 20 61 66 74 65 72 20 69 6e 67 72 65 73 73 2e 20 49 6e | r.hooks.coming.after.ingress..In |
| d0260 | 20 63 61 73 65 20 74 68 61 74 20 74 68 65 72 65 20 69 73 20 6e 6f 20 6d 61 74 63 68 69 6e 67 20 | .case.that.there.is.no.matching. |
| d0280 | 65 6e 74 72 79 20 69 6e 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 28 66 6c 6f 77 74 61 62 6c | entry.in.the.flowtable.(flowtabl |
| d02a0 | 65 20 6d 69 73 73 29 2c 20 74 68 65 20 70 61 63 6b 65 74 20 66 6f 6c 6c 6f 77 73 20 74 68 65 20 | e.miss),.the.packet.follows.the. |
| d02c0 | 63 6c 61 73 73 69 63 20 49 50 20 66 6f 72 77 61 72 64 69 6e 67 20 70 61 74 68 2e 00 41 20 70 65 | classic.IP.forwarding.path..A.pe |
| d02e0 | 6e 61 6c 74 79 20 6f 66 20 31 30 30 30 20 69 73 20 61 73 73 65 73 73 65 64 20 65 61 63 68 20 74 | nalty.of.1000.is.assessed.each.t |
| d0300 | 69 6d 65 20 74 68 65 20 72 6f 75 74 65 20 66 61 69 6c 73 2e 20 57 68 65 6e 20 74 68 65 20 70 65 | ime.the.route.fails..When.the.pe |
| d0320 | 6e 61 6c 74 69 65 73 20 72 65 61 63 68 20 61 20 70 72 65 64 65 66 69 6e 65 64 20 74 68 72 65 73 | nalties.reach.a.predefined.thres |
| d0340 | 68 6f 6c 64 20 28 73 75 70 70 72 65 73 73 2d 76 61 6c 75 65 29 2c 20 74 68 65 20 72 6f 75 74 65 | hold.(suppress-value),.the.route |
| d0360 | 72 20 73 74 6f 70 73 20 61 64 76 65 72 74 69 73 69 6e 67 20 74 68 65 20 72 6f 75 74 65 2e 00 41 | r.stops.advertising.the.route..A |
| d0380 | 20 70 68 79 73 69 63 61 6c 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 72 65 71 75 69 72 65 64 20 | .physical.interface.is.required. |
| d03a0 | 74 6f 20 63 6f 6e 6e 65 63 74 20 74 68 69 73 20 4d 41 43 73 65 63 20 69 6e 73 74 61 6e 63 65 20 | to.connect.this.MACsec.instance. |
| d03c0 | 74 6f 2e 20 54 72 61 66 66 69 63 20 6c 65 61 76 69 6e 67 20 74 68 69 73 20 69 6e 74 65 72 66 61 | to..Traffic.leaving.this.interfa |
| d03e0 | 63 65 20 77 69 6c 6c 20 6e 6f 77 20 62 65 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 2f 65 6e 63 | ce.will.now.be.authenticated/enc |
| d0400 | 72 79 70 74 65 64 2e 00 41 20 70 6f 6f 6c 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 63 61 6e 20 | rypted..A.pool.of.addresses.can. |
| d0420 | 62 65 20 64 65 66 69 6e 65 64 20 62 79 20 75 73 69 6e 67 20 61 20 68 79 70 68 65 6e 20 62 65 74 | be.defined.by.using.a.hyphen.bet |
| d0440 | 77 65 65 6e 20 74 77 6f 20 49 50 20 61 64 64 72 65 73 73 65 73 3a 00 41 20 70 6f 72 74 20 63 61 | ween.two.IP.addresses:.A.port.ca |
| d0460 | 6e 20 62 65 20 73 65 74 20 62 79 20 6e 75 6d 62 65 72 20 6f 72 20 6e 61 6d 65 20 61 73 20 64 65 | n.be.set.by.number.or.name.as.de |
| d0480 | 66 69 6e 65 64 20 69 6e 20 60 60 2f 65 74 63 2f 73 65 72 76 69 63 65 73 60 60 2e 00 41 20 70 6f | fined.in.``/etc/services``..A.po |
| d04a0 | 72 74 20 63 61 6e 20 62 65 20 73 65 74 20 77 69 74 68 20 61 20 70 6f 72 74 20 6e 75 6d 62 65 72 | rt.can.be.set.with.a.port.number |
| d04c0 | 20 6f 72 20 61 20 6e 61 6d 65 20 77 68 69 63 68 20 69 73 20 68 65 72 65 20 64 65 66 69 6e 65 64 | .or.a.name.which.is.here.defined |
| d04e0 | 3a 20 60 60 2f 65 74 63 2f 73 65 72 76 69 63 65 73 60 60 2e 00 41 20 71 75 65 72 79 20 66 6f 72 | :.``/etc/services``..A.query.for |
| d0500 | 20 77 68 69 63 68 20 74 68 65 72 65 20 69 73 20 61 75 74 68 6f 72 69 74 61 74 69 76 65 6c 79 20 | .which.there.is.authoritatively. |
| d0520 | 6e 6f 20 61 6e 73 77 65 72 20 69 73 20 63 61 63 68 65 64 20 74 6f 20 71 75 69 63 6b 6c 79 20 64 | no.answer.is.cached.to.quickly.d |
| d0540 | 65 6e 79 20 61 20 72 65 63 6f 72 64 27 73 20 65 78 69 73 74 65 6e 63 65 20 6c 61 74 65 72 20 6f | eny.a.record's.existence.later.o |
| d0560 | 6e 2c 20 77 69 74 68 6f 75 74 20 70 75 74 74 69 6e 67 20 61 20 68 65 61 76 79 20 6c 6f 61 64 20 | n,.without.putting.a.heavy.load. |
| d0580 | 6f 6e 20 74 68 65 20 72 65 6d 6f 74 65 20 73 65 72 76 65 72 2e 20 49 6e 20 70 72 61 63 74 69 63 | on.the.remote.server..In.practic |
| d05a0 | 65 2c 20 63 61 63 68 65 73 20 63 61 6e 20 62 65 63 6f 6d 65 20 73 61 74 75 72 61 74 65 64 20 77 | e,.caches.can.become.saturated.w |
| d05c0 | 69 74 68 20 68 75 6e 64 72 65 64 73 20 6f 66 20 74 68 6f 75 73 61 6e 64 73 20 6f 66 20 68 6f 73 | ith.hundreds.of.thousands.of.hos |
| d05e0 | 74 73 20 77 68 69 63 68 20 61 72 65 20 74 72 69 65 64 20 6f 6e 6c 79 20 6f 6e 63 65 2e 00 41 20 | ts.which.are.tried.only.once..A. |
| d0600 | 72 65 63 65 69 76 65 64 20 4e 48 52 50 20 54 72 61 66 66 69 63 20 49 6e 64 69 63 61 74 69 6f 6e | received.NHRP.Traffic.Indication |
| d0620 | 20 77 69 6c 6c 20 74 72 69 67 67 65 72 20 74 68 65 20 72 65 73 6f 6c 75 74 69 6f 6e 20 61 6e 64 | .will.trigger.the.resolution.and |
| d0640 | 20 65 73 74 61 62 6c 69 73 68 6d 65 6e 74 20 6f 66 20 61 20 73 68 6f 72 74 63 75 74 20 72 6f 75 | .establishment.of.a.shortcut.rou |
| d0660 | 74 65 2e 00 41 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 49 44 20 63 61 6e 20 6e 6f 74 20 62 | te..A.routing.table.ID.can.not.b |
| d0680 | 65 20 6d 6f 64 69 66 69 65 64 20 6f 6e 63 65 20 69 74 20 69 73 20 61 73 73 69 67 6e 65 64 2e 20 | e.modified.once.it.is.assigned.. |
| d06a0 | 49 74 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 63 68 61 6e 67 65 64 20 62 79 20 64 65 6c 65 74 69 | It.can.only.be.changed.by.deleti |
| d06c0 | 6e 67 20 61 6e 64 20 72 65 2d 61 64 64 69 6e 67 20 74 68 65 20 56 52 46 20 69 6e 73 74 61 6e 63 | ng.and.re-adding.the.VRF.instanc |
| d06e0 | 65 2e 00 41 20 72 75 6c 65 2d 73 65 74 20 69 73 20 61 20 6e 61 6d 65 64 20 63 6f 6c 6c 65 63 74 | e..A.rule-set.is.a.named.collect |
| d0700 | 69 6f 6e 20 6f 66 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 74 68 61 74 20 63 61 6e 20 62 | ion.of.firewall.rules.that.can.b |
| d0720 | 65 20 61 70 70 6c 69 65 64 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 6f 72 20 61 20 7a | e.applied.to.an.interface.or.a.z |
| d0740 | 6f 6e 65 2e 20 45 61 63 68 20 72 75 6c 65 20 69 73 20 6e 75 6d 62 65 72 65 64 2c 20 68 61 73 20 | one..Each.rule.is.numbered,.has. |
| d0760 | 61 6e 20 61 63 74 69 6f 6e 20 74 6f 20 61 70 70 6c 79 20 69 66 20 74 68 65 20 72 75 6c 65 20 69 | an.action.to.apply.if.the.rule.i |
| d0780 | 73 20 6d 61 74 63 68 65 64 2c 20 61 6e 64 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 6f 20 73 70 | s.matched,.and.the.ability.to.sp |
| d07a0 | 65 63 69 66 79 20 74 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 2e 20 44 61 74 | ecify.the.criteria.to.match..Dat |
| d07c0 | 61 20 70 61 63 6b 65 74 73 20 67 6f 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 75 6c 65 73 20 66 | a.packets.go.through.the.rules.f |
| d07e0 | 72 6f 6d 20 31 20 2d 20 39 39 39 39 39 39 2c 20 61 74 20 74 68 65 20 66 69 72 73 74 20 6d 61 74 | rom.1.-.999999,.at.the.first.mat |
| d0800 | 63 68 20 74 68 65 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 72 75 6c 65 20 77 69 6c 6c 20 62 | ch.the.action.of.the.rule.will.b |
| d0820 | 65 20 65 78 65 63 75 74 65 64 2e 00 41 20 72 75 6c 65 2d 73 65 74 20 69 73 20 61 20 6e 61 6d 65 | e.executed..A.rule-set.is.a.name |
| d0840 | 64 20 63 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 72 75 6c 65 73 20 74 68 61 74 20 63 61 6e 20 62 | d.collection.of.rules.that.can.b |
| d0860 | 65 20 61 70 70 6c 69 65 64 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e 20 45 61 63 68 20 | e.applied.to.an.interface..Each. |
| d0880 | 72 75 6c 65 20 69 73 20 6e 75 6d 62 65 72 65 64 2c 20 68 61 73 20 61 6e 20 61 63 74 69 6f 6e 20 | rule.is.numbered,.has.an.action. |
| d08a0 | 74 6f 20 61 70 70 6c 79 20 69 66 20 74 68 65 20 72 75 6c 65 20 69 73 20 6d 61 74 63 68 65 64 2c | to.apply.if.the.rule.is.matched, |
| d08c0 | 20 61 6e 64 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 | .and.the.ability.to.specify.the. |
| d08e0 | 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 2e 20 44 61 74 61 20 70 61 63 6b 65 74 73 20 | criteria.to.match..Data.packets. |
| d0900 | 67 6f 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 75 6c 65 73 20 66 72 6f 6d 20 31 20 2d 20 39 39 | go.through.the.rules.from.1.-.99 |
| d0920 | 39 39 39 39 2c 20 61 74 20 74 68 65 20 66 69 72 73 74 20 6d 61 74 63 68 20 74 68 65 20 61 63 74 | 9999,.at.the.first.match.the.act |
| d0940 | 69 6f 6e 20 6f 66 20 74 68 65 20 72 75 6c 65 20 77 69 6c 6c 20 62 65 20 65 78 65 63 75 74 65 64 | ion.of.the.rule.will.be.executed |
| d0960 | 2e 00 41 20 73 63 72 69 70 74 20 63 61 6e 20 62 65 20 72 75 6e 20 77 68 65 6e 20 61 6e 20 69 6e | ..A.script.can.be.run.when.an.in |
| d0980 | 74 65 72 66 61 63 65 20 73 74 61 74 65 20 63 68 61 6e 67 65 20 6f 63 63 75 72 73 2e 20 53 63 72 | terface.state.change.occurs..Scr |
| d09a0 | 69 70 74 73 20 61 72 65 20 72 75 6e 20 66 72 6f 6d 20 2f 63 6f 6e 66 69 67 2f 73 63 72 69 70 74 | ipts.are.run.from./config/script |
| d09c0 | 73 2c 20 66 6f 72 20 61 20 64 69 66 66 65 72 65 6e 74 20 6c 6f 63 61 74 69 6f 6e 20 73 70 65 63 | s,.for.a.different.location.spec |
| d09e0 | 69 66 79 20 74 68 65 20 66 75 6c 6c 20 70 61 74 68 3a 00 41 20 73 65 67 6d 65 6e 74 20 49 44 20 | ify.the.full.path:.A.segment.ID. |
| d0a00 | 74 68 61 74 20 63 6f 6e 74 61 69 6e 73 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 70 72 65 66 | that.contains.an.IP.address.pref |
| d0a20 | 69 78 20 63 61 6c 63 75 6c 61 74 65 64 20 62 79 20 61 6e 20 49 47 50 20 69 6e 20 74 68 65 20 73 | ix.calculated.by.an.IGP.in.the.s |
| d0a40 | 65 72 76 69 63 65 20 70 72 6f 76 69 64 65 72 20 63 6f 72 65 20 6e 65 74 77 6f 72 6b 2e 20 50 72 | ervice.provider.core.network..Pr |
| d0a60 | 65 66 69 78 20 53 49 44 73 20 61 72 65 20 67 6c 6f 62 61 6c 6c 79 20 75 6e 69 71 75 65 2c 20 74 | efix.SIDs.are.globally.unique,.t |
| d0a80 | 68 69 73 20 76 61 6c 75 65 20 69 6e 64 65 6e 74 69 66 79 20 69 74 00 41 20 73 65 6e 64 69 6e 67 | his.value.indentify.it.A.sending |
| d0aa0 | 20 73 74 61 74 69 6f 6e 20 28 63 6f 6d 70 75 74 65 72 20 6f 72 20 6e 65 74 77 6f 72 6b 20 73 77 | .station.(computer.or.network.sw |
| d0ac0 | 69 74 63 68 29 20 6d 61 79 20 62 65 20 74 72 61 6e 73 6d 69 74 74 69 6e 67 20 64 61 74 61 20 66 | itch).may.be.transmitting.data.f |
| d0ae0 | 61 73 74 65 72 20 74 68 61 6e 20 74 68 65 20 6f 74 68 65 72 20 65 6e 64 20 6f 66 20 74 68 65 20 | aster.than.the.other.end.of.the. |
| d0b00 | 6c 69 6e 6b 20 63 61 6e 20 61 63 63 65 70 74 20 69 74 2e 20 55 73 69 6e 67 20 66 6c 6f 77 20 63 | link.can.accept.it..Using.flow.c |
| d0b20 | 6f 6e 74 72 6f 6c 2c 20 74 68 65 20 72 65 63 65 69 76 69 6e 67 20 73 74 61 74 69 6f 6e 20 63 61 | ontrol,.the.receiving.station.ca |
| d0b40 | 6e 20 73 69 67 6e 61 6c 20 74 68 65 20 73 65 6e 64 65 72 20 72 65 71 75 65 73 74 69 6e 67 20 73 | n.signal.the.sender.requesting.s |
| d0b60 | 75 73 70 65 6e 73 69 6f 6e 20 6f 66 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 73 20 75 6e 74 69 6c | uspension.of.transmissions.until |
| d0b80 | 20 74 68 65 20 72 65 63 65 69 76 65 72 20 63 61 74 63 68 65 73 20 75 70 2e 00 41 20 73 68 61 72 | .the.receiver.catches.up..A.shar |
| d0ba0 | 65 64 20 6e 65 74 77 6f 72 6b 20 6e 61 6d 65 64 20 60 60 4e 45 54 31 60 60 20 73 65 72 76 65 73 | ed.network.named.``NET1``.serves |
| d0bc0 | 20 73 75 62 6e 65 74 20 60 60 32 30 30 31 3a 64 62 38 3a 3a 2f 36 34 60 60 00 41 20 73 68 61 72 | .subnet.``2001:db8::/64``.A.shar |
| d0be0 | 65 64 20 6e 65 74 77 6f 72 6b 20 6e 61 6d 65 64 20 60 60 50 44 2d 4e 45 54 60 60 20 73 65 72 76 | ed.network.named.``PD-NET``.serv |
| d0c00 | 65 73 20 73 75 62 6e 65 74 20 60 60 32 30 30 31 3a 64 62 38 3a 3a 2f 36 34 60 60 2e 00 41 20 73 | es.subnet.``2001:db8::/64``..A.s |
| d0c20 | 69 6d 70 6c 65 20 42 47 50 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 76 69 61 20 49 50 76 36 | imple.BGP.configuration.via.IPv6 |
| d0c40 | 2e 00 41 20 73 69 6d 70 6c 65 20 52 61 6e 64 6f 6d 20 45 61 72 6c 79 20 44 65 74 65 63 74 69 6f | ..A.simple.Random.Early.Detectio |
| d0c60 | 6e 20 28 52 45 44 29 20 70 6f 6c 69 63 79 20 77 6f 75 6c 64 20 73 74 61 72 74 20 72 61 6e 64 6f | n.(RED).policy.would.start.rando |
| d0c80 | 6d 6c 79 20 64 72 6f 70 70 69 6e 67 20 70 61 63 6b 65 74 73 20 66 72 6f 6d 20 61 20 71 75 65 75 | mly.dropping.packets.from.a.queu |
| d0ca0 | 65 20 62 65 66 6f 72 65 20 69 74 20 72 65 61 63 68 65 73 20 69 74 73 20 71 75 65 75 65 20 6c 69 | e.before.it.reaches.its.queue.li |
| d0cc0 | 6d 69 74 20 74 68 75 73 20 61 76 6f 69 64 69 6e 67 20 63 6f 6e 67 65 73 74 69 6f 6e 2e 20 54 68 | mit.thus.avoiding.congestion..Th |
| d0ce0 | 61 74 20 69 73 20 67 6f 6f 64 20 66 6f 72 20 54 43 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 61 | at.is.good.for.TCP.connections.a |
| d0d00 | 73 20 74 68 65 20 67 72 61 64 75 61 6c 20 64 72 6f 70 70 69 6e 67 20 6f 66 20 70 61 63 6b 65 74 | s.the.gradual.dropping.of.packet |
| d0d20 | 73 20 61 63 74 73 20 61 73 20 61 20 73 69 67 6e 61 6c 20 66 6f 72 20 74 68 65 20 73 65 6e 64 65 | s.acts.as.a.signal.for.the.sende |
| d0d40 | 72 20 74 6f 20 64 65 63 72 65 61 73 65 20 69 74 73 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 20 72 | r.to.decrease.its.transmission.r |
| d0d60 | 61 74 65 2e 00 41 20 73 69 6d 70 6c 65 20 65 42 47 50 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | ate..A.simple.eBGP.configuration |
| d0d80 | 3a 00 41 20 73 69 6d 70 6c 65 20 65 78 61 6d 70 6c 65 20 6f 66 20 53 68 61 70 65 72 20 75 73 69 | :.A.simple.example.of.Shaper.usi |
| d0da0 | 6e 67 20 70 72 69 6f 72 69 74 69 65 73 2e 00 41 20 73 69 6d 70 6c 65 20 65 78 61 6d 70 6c 65 20 | ng.priorities..A.simple.example. |
| d0dc0 | 6f 66 20 61 6e 20 46 51 2d 43 6f 44 65 6c 20 70 6f 6c 69 63 79 20 77 6f 72 6b 69 6e 67 20 69 6e | of.an.FQ-CoDel.policy.working.in |
| d0de0 | 73 69 64 65 20 61 20 53 68 61 70 65 72 20 6f 6e 65 2e 00 41 20 73 69 6d 70 6c 69 66 69 65 64 20 | side.a.Shaper.one..A.simplified. |
| d0e00 | 74 72 61 66 66 69 63 20 66 6c 6f 77 20 64 69 61 67 72 61 6d 2c 20 62 61 73 65 64 20 6f 6e 20 4e | traffic.flow.diagram,.based.on.N |
| d0e20 | 65 74 66 69 6c 74 65 72 20 70 61 63 6b 65 74 20 66 6c 6f 77 2c 20 69 73 20 73 68 6f 77 6e 20 6e | etfilter.packet.flow,.is.shown.n |
| d0e40 | 65 78 74 2c 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 68 61 76 65 20 61 20 66 75 6c 6c 20 76 69 65 | ext,.in.order.to.have.a.full.vie |
| d0e60 | 77 20 61 6e 64 20 75 6e 64 65 72 73 74 61 6e 64 69 6e 67 20 6f 66 20 68 6f 77 20 70 61 63 6b 65 | w.and.understanding.of.how.packe |
| d0e80 | 74 73 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 2c 20 61 6e 64 20 77 68 61 74 20 70 6f 73 73 69 | ts.are.processed,.and.what.possi |
| d0ea0 | 62 6c 65 20 70 61 74 68 73 20 74 72 61 66 66 69 63 20 63 61 6e 20 74 61 6b 65 2e 00 41 20 73 69 | ble.paths.traffic.can.take..A.si |
| d0ec0 | 6d 70 6c 69 66 69 65 64 20 74 72 61 66 66 69 63 20 66 6c 6f 77 2c 20 62 61 73 65 64 20 6f 6e 20 | mplified.traffic.flow,.based.on. |
| d0ee0 | 4e 65 74 66 69 6c 74 65 72 20 70 61 63 6b 65 74 20 66 6c 6f 77 2c 20 69 73 20 73 68 6f 77 6e 20 | Netfilter.packet.flow,.is.shown. |
| d0f00 | 6e 65 78 74 2c 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 68 61 76 65 20 61 20 66 75 6c 6c 20 76 69 | next,.in.order.to.have.a.full.vi |
| d0f20 | 65 77 20 61 6e 64 20 75 6e 64 65 72 73 74 61 6e 64 69 6e 67 20 6f 66 20 68 6f 77 20 70 61 63 6b | ew.and.understanding.of.how.pack |
| d0f40 | 65 74 73 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 2c 20 61 6e 64 20 77 68 61 74 20 70 6f 73 73 | ets.are.processed,.and.what.poss |
| d0f60 | 69 62 6c 65 20 70 61 74 68 73 20 63 61 6e 20 74 61 6b 65 2e 00 41 20 73 69 6e 67 6c 65 20 69 6e | ible.paths.can.take..A.single.in |
| d0f80 | 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 61 6e 64 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 | ternal.network.and.external.netw |
| d0fa0 | 6f 72 6b 2e 20 55 73 65 20 74 68 65 20 4e 41 54 36 36 20 64 65 76 69 63 65 20 74 6f 20 63 6f 6e | ork..Use.the.NAT66.device.to.con |
| d0fc0 | 6e 65 63 74 20 61 20 73 69 6e 67 6c 65 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 61 | nect.a.single.internal.network.a |
| d0fe0 | 6e 64 20 70 75 62 6c 69 63 20 6e 65 74 77 6f 72 6b 2c 20 61 6e 64 20 74 68 65 20 68 6f 73 74 73 | nd.public.network,.and.the.hosts |
| d1000 | 20 69 6e 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 75 73 65 20 49 50 76 | .in.the.internal.network.use.IPv |
| d1020 | 36 20 61 64 64 72 65 73 73 20 70 72 65 66 69 78 65 73 20 74 68 61 74 20 6f 6e 6c 79 20 73 75 70 | 6.address.prefixes.that.only.sup |
| d1040 | 70 6f 72 74 20 72 6f 75 74 69 6e 67 20 77 69 74 68 69 6e 20 74 68 65 20 6c 6f 63 61 6c 20 72 61 | port.routing.within.the.local.ra |
| d1060 | 6e 67 65 2e 20 57 68 65 6e 20 61 20 68 6f 73 74 20 69 6e 20 74 68 65 20 69 6e 74 65 72 6e 61 6c | nge..When.a.host.in.the.internal |
| d1080 | 20 6e 65 74 77 6f 72 6b 20 61 63 63 65 73 73 65 73 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6e | .network.accesses.the.external.n |
| d10a0 | 65 74 77 6f 72 6b 2c 20 74 68 65 20 73 6f 75 72 63 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 | etwork,.the.source.IPv6.address. |
| d10c0 | 70 72 65 66 69 78 20 69 6e 20 74 68 65 20 6d 65 73 73 61 67 65 20 77 69 6c 6c 20 62 65 20 63 6f | prefix.in.the.message.will.be.co |
| d10e0 | 6e 76 65 72 74 65 64 20 69 6e 74 6f 20 61 20 67 6c 6f 62 61 6c 20 75 6e 69 63 61 73 74 20 49 50 | nverted.into.a.global.unicast.IP |
| d1100 | 76 36 20 61 64 64 72 65 73 73 20 70 72 65 66 69 78 20 62 79 20 74 68 65 20 4e 41 54 36 36 20 64 | v6.address.prefix.by.the.NAT66.d |
| d1120 | 65 76 69 63 65 2e 00 41 20 73 74 61 74 69 6f 6e 20 61 63 74 73 20 61 73 20 61 20 57 69 2d 46 69 | evice..A.station.acts.as.a.Wi-Fi |
| d1140 | 20 63 6c 69 65 6e 74 20 61 63 63 65 73 73 69 6e 67 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 74 68 | .client.accessing.the.network.th |
| d1160 | 72 6f 75 67 68 20 61 6e 20 61 76 61 69 6c 61 62 6c 65 20 57 41 50 00 41 20 73 79 6e 63 20 67 72 | rough.an.available.WAP.A.sync.gr |
| d1180 | 6f 75 70 20 61 6c 6c 6f 77 73 20 56 52 52 50 20 67 72 6f 75 70 73 20 74 6f 20 74 72 61 6e 73 69 | oup.allows.VRRP.groups.to.transi |
| d11a0 | 74 69 6f 6e 20 74 6f 67 65 74 68 65 72 2e 00 41 20 74 79 70 69 63 61 6c 20 63 6f 6e 66 69 67 75 | tion.together..A.typical.configu |
| d11c0 | 72 61 74 69 6f 6e 20 75 73 69 6e 67 20 32 20 6e 6f 64 65 73 2e 00 41 20 74 79 70 69 63 61 6c 20 | ration.using.2.nodes..A.typical. |
| d11e0 | 70 72 6f 62 6c 65 6d 20 77 69 74 68 20 75 73 69 6e 67 20 4e 41 54 20 61 6e 64 20 68 6f 73 74 69 | problem.with.using.NAT.and.hosti |
| d1200 | 6e 67 20 70 75 62 6c 69 63 20 73 65 72 76 65 72 73 20 69 73 20 74 68 65 20 61 62 69 6c 69 74 79 | ng.public.servers.is.the.ability |
| d1220 | 20 66 6f 72 20 69 6e 74 65 72 6e 61 6c 20 73 79 73 74 65 6d 73 20 74 6f 20 72 65 61 63 68 20 61 | .for.internal.systems.to.reach.a |
| d1240 | 6e 20 69 6e 74 65 72 6e 61 6c 20 73 65 72 76 65 72 20 75 73 69 6e 67 20 69 74 27 73 20 65 78 74 | n.internal.server.using.it's.ext |
| d1260 | 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 2e 20 54 68 65 20 73 6f 6c 75 74 69 6f 6e 20 74 | ernal.IP.address..The.solution.t |
| d1280 | 6f 20 74 68 69 73 20 69 73 20 75 73 75 61 6c 6c 79 20 74 68 65 20 75 73 65 20 6f 66 20 73 70 6c | o.this.is.usually.the.use.of.spl |
| d12a0 | 69 74 2d 44 4e 53 20 74 6f 20 63 6f 72 72 65 63 74 6c 79 20 70 6f 69 6e 74 20 68 6f 73 74 20 73 | it-DNS.to.correctly.point.host.s |
| d12c0 | 79 73 74 65 6d 73 20 74 6f 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 20 77 | ystems.to.the.internal.address.w |
| d12e0 | 68 65 6e 20 72 65 71 75 65 73 74 73 20 61 72 65 20 6d 61 64 65 20 69 6e 74 65 72 6e 61 6c 6c 79 | hen.requests.are.made.internally |
| d1300 | 2e 20 42 65 63 61 75 73 65 20 6d 61 6e 79 20 73 6d 61 6c 6c 65 72 20 6e 65 74 77 6f 72 6b 73 20 | ..Because.many.smaller.networks. |
| d1320 | 6c 61 63 6b 20 44 4e 53 20 69 6e 66 72 61 73 74 72 75 63 74 75 72 65 2c 20 61 20 77 6f 72 6b 2d | lack.DNS.infrastructure,.a.work- |
| d1340 | 61 72 6f 75 6e 64 20 69 73 20 63 6f 6d 6d 6f 6e 6c 79 20 64 65 70 6c 6f 79 65 64 20 74 6f 20 66 | around.is.commonly.deployed.to.f |
| d1360 | 61 63 69 6c 69 74 61 74 65 20 74 68 65 20 74 72 61 66 66 69 63 20 62 79 20 4e 41 54 69 6e 67 20 | acilitate.the.traffic.by.NATing. |
| d1380 | 74 68 65 20 72 65 71 75 65 73 74 20 66 72 6f 6d 20 69 6e 74 65 72 6e 61 6c 20 68 6f 73 74 73 20 | the.request.from.internal.hosts. |
| d13a0 | 74 6f 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 69 6e 74 | to.the.source.address.of.the.int |
| d13c0 | 65 72 6e 61 6c 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 74 68 65 20 66 69 72 65 77 61 6c 6c 2e | ernal.interface.on.the.firewall. |
| d13e0 | 00 41 20 75 73 65 72 20 66 72 69 65 6e 64 6c 79 20 61 6c 69 61 73 20 66 6f 72 20 74 68 69 73 20 | .A.user.friendly.alias.for.this. |
| d1400 | 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 43 61 6e 20 62 65 20 75 73 65 64 20 69 6e 73 74 65 61 64 20 | connection..Can.be.used.instead. |
| d1420 | 6f 66 20 74 68 65 20 64 65 76 69 63 65 20 6e 61 6d 65 20 77 68 65 6e 20 63 6f 6e 6e 65 63 74 69 | of.the.device.name.when.connecti |
| d1440 | 6e 67 2e 00 41 20 75 73 65 72 20 66 72 69 65 6e 64 6c 79 20 64 65 73 63 72 69 70 74 69 6f 6e 20 | ng..A.user.friendly.description. |
| d1460 | 69 64 65 6e 74 69 66 79 69 6e 67 20 74 68 65 20 63 6f 6e 6e 65 63 74 65 64 20 70 65 72 69 70 68 | identifying.the.connected.periph |
| d1480 | 65 72 61 6c 2e 00 41 20 76 61 6c 75 65 20 6f 66 20 30 20 64 69 73 61 62 6c 65 73 20 41 52 50 20 | eral..A.value.of.0.disables.ARP. |
| d14a0 | 6d 6f 6e 69 74 6f 72 69 6e 67 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 | monitoring..The.default.value.is |
| d14c0 | 20 30 2e 00 41 20 76 61 6c 75 65 20 6f 66 20 32 39 36 20 77 6f 72 6b 73 20 77 65 6c 6c 20 6f 6e | .0..A.value.of.296.works.well.on |
| d14e0 | 20 76 65 72 79 20 73 6c 6f 77 20 6c 69 6e 6b 73 20 28 34 30 20 62 79 74 65 73 20 66 6f 72 20 54 | .very.slow.links.(40.bytes.for.T |
| d1500 | 43 50 2f 49 50 20 68 65 61 64 65 72 20 2b 20 32 35 36 20 62 79 74 65 73 20 6f 66 20 64 61 74 61 | CP/IP.header.+.256.bytes.of.data |
| d1520 | 29 2e 00 41 20 76 65 72 79 20 73 6d 61 6c 6c 20 62 75 66 66 65 72 20 77 69 6c 6c 20 73 6f 6f 6e | )..A.very.small.buffer.will.soon |
| d1540 | 20 73 74 61 72 74 20 64 72 6f 70 70 69 6e 67 20 70 61 63 6b 65 74 73 2e 00 41 20 7a 6f 6e 65 20 | .start.dropping.packets..A.zone. |
| d1560 | 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 62 65 66 6f 72 65 20 61 6e 20 69 6e 74 | must.be.configured.before.an.int |
| d1580 | 65 72 66 61 63 65 20 69 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 69 74 20 61 6e 64 20 61 6e 20 | erface.is.assigned.to.it.and.an. |
| d15a0 | 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 62 65 20 61 73 73 69 67 6e 65 64 20 74 6f 20 6f 6e 6c | interface.can.be.assigned.to.onl |
| d15c0 | 79 20 61 20 73 69 6e 67 6c 65 20 7a 6f 6e 65 2e 00 41 43 4d 45 00 41 43 4d 45 20 44 69 72 65 63 | y.a.single.zone..ACME.ACME.Direc |
| d15e0 | 74 6f 72 79 20 52 65 73 6f 75 72 63 65 20 55 52 49 2e 00 41 50 49 00 41 52 50 00 41 62 6f 76 65 | tory.Resource.URI..API.ARP.Above |
| d1600 | 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 75 73 65 20 60 31 30 2e 30 2e 30 2e 33 60 20 61 73 20 | .command.will.use.`10.0.0.3`.as. |
| d1620 | 73 6f 75 72 63 65 20 49 50 76 34 20 61 64 64 72 65 73 73 20 66 6f 72 20 61 6c 6c 20 52 41 44 49 | source.IPv4.address.for.all.RADI |
| d1640 | 55 53 20 71 75 65 72 69 65 73 20 6f 6e 20 74 68 69 73 20 4e 41 53 2e 00 41 62 6f 76 65 2c 20 63 | US.queries.on.this.NAS..Above,.c |
| d1660 | 6f 6d 6d 61 6e 64 20 73 79 6e 74 61 78 20 69 73 6e 20 6e 6f 74 65 64 20 74 6f 20 63 6f 6e 66 69 | ommand.syntax.isn.noted.to.confi |
| d1680 | 67 75 72 65 20 64 79 6e 61 6d 69 63 20 64 6e 73 20 6f 6e 20 61 20 73 70 65 63 69 66 69 63 20 69 | gure.dynamic.dns.on.a.specific.i |
| d16a0 | 6e 74 65 72 66 61 63 65 2e 20 49 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 6f 76 65 72 | nterface..It.is.possible.to.over |
| d16c0 | 6c 6f 6f 6b 20 74 68 65 20 61 64 64 69 74 69 6f 6e 61 6c 20 61 64 64 72 65 73 73 20 6f 70 74 69 | look.the.additional.address.opti |
| d16e0 | 6f 6e 2c 20 77 65 62 2c 20 77 68 65 6e 20 63 6f 6d 70 6c 65 74 65 69 6e 67 20 74 68 6f 73 65 20 | on,.web,.when.completeing.those. |
| d1700 | 63 6f 6d 6d 61 6e 64 73 2e 20 64 64 63 6c 69 65 6e 74 5f 20 68 61 73 20 61 6e 6f 74 68 65 72 20 | commands..ddclient_.has.another. |
| d1720 | 77 61 79 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 57 41 4e 20 49 50 20 61 64 64 72 | way.to.determine.the.WAN.IP.addr |
| d1740 | 65 73 73 2c 20 75 73 69 6e 67 20 61 20 77 65 62 2d 62 61 73 65 64 20 75 72 6c 20 74 6f 20 64 65 | ess,.using.a.web-based.url.to.de |
| d1760 | 74 65 72 6d 69 6e 65 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 49 50 2e 20 45 61 63 68 20 6f 66 | termine.the.external.IP..Each.of |
| d1780 | 20 74 68 65 20 63 6f 6d 6d 61 6e 64 73 20 61 62 6f 76 65 20 77 69 6c 6c 20 6e 65 65 64 20 74 6f | .the.commands.above.will.need.to |
| d17a0 | 20 62 65 20 6d 6f 64 69 66 69 65 64 20 74 6f 20 75 73 65 20 27 77 65 62 27 20 61 73 20 74 68 65 | .be.modified.to.use.'web'.as.the |
| d17c0 | 20 27 69 6e 74 65 72 66 61 63 65 27 20 73 70 65 63 69 66 69 65 64 20 69 66 20 74 68 69 73 20 66 | .'interface'.specified.if.this.f |
| d17e0 | 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 69 73 20 74 6f 20 62 65 20 75 74 69 6c 69 7a 65 64 2e 00 | unctionality.is.to.be.utilized.. |
| d1800 | 41 63 63 65 6c 65 72 61 74 69 6f 6e 00 41 63 63 65 70 74 20 53 53 48 20 63 6f 6e 6e 65 63 74 69 | Acceleration.Accept.SSH.connecti |
| d1820 | 6f 6e 73 20 66 6f 72 20 74 68 65 20 67 69 76 65 6e 20 60 3c 64 65 76 69 63 65 3e 60 20 6f 6e 20 | ons.for.the.given.`<device>`.on. |
| d1840 | 54 43 50 20 70 6f 72 74 20 60 3c 70 6f 72 74 3e 60 2e 20 41 66 74 65 72 20 73 75 63 63 65 73 73 | TCP.port.`<port>`..After.success |
| d1860 | 66 75 6c 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 74 68 65 20 75 73 65 72 20 77 69 6c | full.authentication.the.user.wil |
| d1880 | 6c 20 62 65 20 64 69 72 65 63 74 6c 79 20 64 72 6f 70 70 65 64 20 74 6f 20 74 68 65 20 63 6f 6e | l.be.directly.dropped.to.the.con |
| d18a0 | 6e 65 63 74 65 64 20 73 65 72 69 61 6c 20 64 65 76 69 63 65 2e 00 41 63 63 65 70 74 20 6f 6e 6c | nected.serial.device..Accept.onl |
| d18c0 | 79 20 63 65 72 74 61 69 6e 20 70 72 6f 74 6f 63 6f 6c 73 3a 20 59 6f 75 20 6d 61 79 20 77 61 6e | y.certain.protocols:.You.may.wan |
| d18e0 | 74 20 74 6f 20 72 65 70 6c 69 63 61 74 65 20 74 68 65 20 73 74 61 74 65 20 6f 66 20 66 6c 6f 77 | t.to.replicate.the.state.of.flow |
| d1900 | 73 20 64 65 70 65 6e 64 69 6e 67 20 6f 6e 20 74 68 65 69 72 20 6c 61 79 65 72 20 34 20 70 72 6f | s.depending.on.their.layer.4.pro |
| d1920 | 74 6f 63 6f 6c 2e 00 41 63 63 65 70 74 20 70 65 65 72 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 | tocol..Accept.peer.interface.ide |
| d1940 | 6e 74 69 66 69 65 72 2e 20 42 79 20 64 65 66 61 75 6c 74 20 69 73 20 6e 6f 74 20 64 65 66 69 6e | ntifier..By.default.is.not.defin |
| d1960 | 65 64 2e 00 41 63 63 65 70 74 20 70 65 65 72 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 | ed..Accept.peer.interface.identi |
| d1980 | 66 69 65 72 2e 20 42 79 20 64 65 66 61 75 6c 74 20 74 68 69 73 20 69 73 20 6e 6f 74 20 64 65 66 | fier..By.default.this.is.not.def |
| d19a0 | 69 6e 65 64 2e 00 41 63 63 65 70 74 61 62 6c 65 20 72 61 74 65 20 6f 66 20 63 6f 6e 6e 65 63 74 | ined..Acceptable.rate.of.connect |
| d19c0 | 69 6f 6e 73 20 28 65 2e 67 2e 20 31 2f 6d 69 6e 2c 20 36 30 2f 73 65 63 29 00 41 63 63 65 73 73 | ions.(e.g..1/min,.60/sec).Access |
| d19e0 | 20 4c 69 73 74 20 50 6f 6c 69 63 79 00 41 63 63 65 73 73 20 4c 69 73 74 73 00 41 63 74 69 6f 6e | .List.Policy.Access.Lists.Action |
| d1a00 | 20 6d 75 73 74 20 62 65 20 74 61 6b 65 6e 20 69 6d 6d 65 64 69 61 74 65 6c 79 20 2d 20 41 20 63 | .must.be.taken.immediately.-.A.c |
| d1a20 | 6f 6e 64 69 74 69 6f 6e 20 74 68 61 74 20 73 68 6f 75 6c 64 20 62 65 20 63 6f 72 72 65 63 74 65 | ondition.that.should.be.correcte |
| d1a40 | 64 20 69 6d 6d 65 64 69 61 74 65 6c 79 2c 20 73 75 63 68 20 61 73 20 61 20 63 6f 72 72 75 70 74 | d.immediately,.such.as.a.corrupt |
| d1a60 | 65 64 20 73 79 73 74 65 6d 20 64 61 74 61 62 61 73 65 2e 00 41 63 74 69 6f 6e 20 77 68 69 63 68 | ed.system.database..Action.which |
| d1a80 | 20 77 69 6c 6c 20 62 65 20 72 75 6e 20 6f 6e 63 65 20 74 68 65 20 63 74 72 6c 2d 61 6c 74 2d 64 | .will.be.run.once.the.ctrl-alt-d |
| d1aa0 | 65 6c 20 6b 65 79 73 74 72 6f 6b 65 20 69 73 20 72 65 63 65 69 76 65 64 2e 00 41 63 74 69 6f 6e | el.keystroke.is.received..Action |
| d1ac0 | 73 00 41 63 74 69 76 65 20 44 69 72 65 63 74 6f 72 79 00 41 63 74 69 76 65 20 68 65 61 6c 74 68 | s.Active.Directory.Active.health |
| d1ae0 | 20 63 68 65 63 6b 20 62 61 63 6b 65 6e 64 20 73 65 72 76 65 72 00 41 64 64 20 4e 54 41 20 28 6e | .check.backend.server.Add.NTA.(n |
| d1b00 | 65 67 61 74 69 76 65 20 74 72 75 73 74 20 61 6e 63 68 6f 72 29 20 66 6f 72 20 74 68 69 73 20 64 | egative.trust.anchor).for.this.d |
| d1b20 | 6f 6d 61 69 6e 2e 20 54 68 69 73 20 6d 75 73 74 20 62 65 20 73 65 74 20 69 66 20 74 68 65 20 64 | omain..This.must.be.set.if.the.d |
| d1b40 | 6f 6d 61 69 6e 20 64 6f 65 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 20 44 4e 53 53 45 43 2e 00 41 | omain.does.not.support.DNSSEC..A |
| d1b60 | 64 64 20 50 6f 77 65 72 20 43 6f 6e 73 74 72 61 69 6e 74 20 65 6c 65 6d 65 6e 74 20 74 6f 20 42 | dd.Power.Constraint.element.to.B |
| d1b80 | 65 61 63 6f 6e 20 61 6e 64 20 50 72 6f 62 65 20 52 65 73 70 6f 6e 73 65 20 66 72 61 6d 65 73 2e | eacon.and.Probe.Response.frames. |
| d1ba0 | 00 41 64 64 20 61 20 66 6f 72 77 61 72 64 69 6e 67 20 72 75 6c 65 20 6d 61 74 63 68 69 6e 67 20 | .Add.a.forwarding.rule.matching. |
| d1bc0 | 55 44 50 20 70 6f 72 74 20 6f 6e 20 79 6f 75 72 20 69 6e 74 65 72 6e 65 74 20 72 6f 75 74 65 72 | UDP.port.on.your.internet.router |
| d1be0 | 2e 00 41 64 64 20 61 20 68 6f 73 74 20 64 65 76 69 63 65 20 74 6f 20 74 68 65 20 63 6f 6e 74 61 | ..Add.a.host.device.to.the.conta |
| d1c00 | 69 6e 65 72 2e 00 41 64 64 20 61 63 63 65 73 73 2d 63 6f 6e 74 72 6f 6c 20 64 69 72 65 63 74 69 | iner..Add.access-control.directi |
| d1c20 | 76 65 20 74 6f 20 61 6c 6c 6f 77 20 6f 72 20 64 65 6e 79 20 75 73 65 72 73 20 61 6e 64 20 67 72 | ve.to.allow.or.deny.users.and.gr |
| d1c40 | 6f 75 70 73 2e 20 44 69 72 65 63 74 69 76 65 73 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 69 | oups..Directives.are.processed.i |
| d1c60 | 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6f 72 64 65 72 20 6f 66 20 70 72 65 63 65 64 65 | n.the.following.order.of.precede |
| d1c80 | 6e 63 65 3a 20 60 60 64 65 6e 79 2d 75 73 65 72 73 60 60 2c 20 60 60 61 6c 6c 6f 77 2d 75 73 65 | nce:.``deny-users``,.``allow-use |
| d1ca0 | 72 73 60 60 2c 20 60 60 64 65 6e 79 2d 67 72 6f 75 70 73 60 60 20 61 6e 64 20 60 60 61 6c 6c 6f | rs``,.``deny-groups``.and.``allo |
| d1cc0 | 77 2d 67 72 6f 75 70 73 60 60 2e 00 41 64 64 20 63 75 73 74 6f 6d 20 65 6e 76 69 72 6f 6e 6d 65 | w-groups``..Add.custom.environme |
| d1ce0 | 6e 74 20 76 61 72 69 61 62 6c 65 73 2e 20 4d 75 6c 74 69 70 6c 65 20 65 6e 76 69 72 6f 6e 6d 65 | nt.variables..Multiple.environme |
| d1d00 | 6e 74 20 76 61 72 69 61 62 6c 65 73 20 61 72 65 20 61 6c 6c 6f 77 65 64 2e 20 54 68 65 20 66 6f | nt.variables.are.allowed..The.fo |
| d1d20 | 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 20 74 72 61 6e 73 6c 61 74 65 20 74 6f 20 22 2d | llowing.commands.translate.to."- |
| d1d40 | 65 20 6b 65 79 3d 76 61 6c 75 65 22 20 77 68 65 6e 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 | e.key=value".when.the.container. |
| d1d60 | 69 73 20 63 72 65 61 74 65 64 2e 00 41 64 64 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 73 20 66 | is.created..Add.default.routes.f |
| d1d80 | 6f 72 20 72 6f 75 74 69 6e 67 20 60 60 74 61 62 6c 65 20 31 30 60 60 20 61 6e 64 20 60 60 74 61 | or.routing.``table.10``.and.``ta |
| d1da0 | 62 6c 65 20 31 31 60 60 00 41 64 64 20 64 65 73 63 72 69 70 74 69 6f 6e 20 74 6f 20 66 69 72 65 | ble.11``.Add.description.to.fire |
| d1dc0 | 77 61 6c 6c 20 67 72 6f 75 70 73 3a 00 41 64 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 | wall.groups:.Add.destination.IP. |
| d1de0 | 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f 20 61 20 64 | address.of.the.connection.to.a.d |
| d1e00 | 79 6e 61 6d 69 63 20 61 64 64 72 65 73 73 20 67 72 6f 75 70 3a 00 41 64 64 20 6d 65 74 61 64 61 | ynamic.address.group:.Add.metada |
| d1e20 | 74 61 20 6c 61 62 65 6c 20 66 6f 72 20 74 68 69 73 20 63 6f 6e 74 61 69 6e 65 72 2e 00 41 64 64 | ta.label.for.this.container..Add |
| d1e40 | 20 6d 75 6c 74 69 70 6c 65 20 73 6f 75 72 63 65 20 49 50 20 69 6e 20 6f 6e 65 20 72 75 6c 65 20 | .multiple.source.IP.in.one.rule. |
| d1e60 | 77 69 74 68 20 73 61 6d 65 20 70 72 69 6f 72 69 74 79 00 41 64 64 20 6e 65 77 20 70 6f 72 74 20 | with.same.priority.Add.new.port. |
| d1e80 | 74 6f 20 53 53 4c 2d 70 6f 72 74 73 20 61 63 6c 2e 20 50 6f 72 74 73 20 69 6e 63 6c 75 64 65 64 | to.SSL-ports.acl..Ports.included |
| d1ea0 | 20 62 79 20 64 65 66 61 75 6c 74 20 69 6e 20 53 53 4c 2d 70 6f 72 74 73 20 61 63 6c 3a 20 34 34 | .by.default.in.SSL-ports.acl:.44 |
| d1ec0 | 33 00 41 64 64 20 6e 65 77 20 70 6f 72 74 20 74 6f 20 53 61 66 65 2d 70 6f 72 74 73 20 61 63 6c | 3.Add.new.port.to.Safe-ports.acl |
| d1ee0 | 2e 20 50 6f 72 74 73 20 69 6e 63 6c 75 64 65 64 20 62 79 20 64 65 66 61 75 6c 74 20 69 6e 20 53 | ..Ports.included.by.default.in.S |
| d1f00 | 61 66 65 2d 70 6f 72 74 73 20 61 63 6c 3a 20 32 31 2c 20 37 30 2c 20 38 30 2c 20 32 31 30 2c 20 | afe-ports.acl:.21,.70,.80,.210,. |
| d1f20 | 32 38 30 2c 20 34 34 33 2c 20 34 38 38 2c 20 35 39 31 2c 20 37 37 37 2c 20 38 37 33 2c 20 31 30 | 280,.443,.488,.591,.777,.873,.10 |
| d1f40 | 32 35 2d 36 35 35 33 35 00 41 64 64 20 6f 72 20 72 65 70 6c 61 63 65 20 42 47 50 20 63 6f 6d 6d | 25-65535.Add.or.replace.BGP.comm |
| d1f60 | 75 6e 69 74 79 20 61 74 74 72 69 62 75 74 65 20 69 6e 20 66 6f 72 6d 61 74 20 60 60 3c 30 2d 36 | unity.attribute.in.format.``<0-6 |
| d1f80 | 35 35 33 35 3a 30 2d 36 35 35 33 35 3e 60 60 20 6f 72 20 66 72 6f 6d 20 77 65 6c 6c 2d 6b 6e 6f | 5535:0-65535>``.or.from.well-kno |
| d1fa0 | 77 6e 20 63 6f 6d 6d 75 6e 69 74 79 20 6c 69 73 74 00 41 64 64 20 6f 72 20 72 65 70 6c 61 63 65 | wn.community.list.Add.or.replace |
| d1fc0 | 20 42 47 50 20 6c 61 72 67 65 2d 63 6f 6d 6d 75 6e 69 74 79 20 61 74 74 72 69 62 75 74 65 20 69 | .BGP.large-community.attribute.i |
| d1fe0 | 6e 20 66 6f 72 6d 61 74 20 60 60 3c 30 2d 34 32 39 34 39 36 37 32 39 35 3a 30 2d 34 32 39 34 39 | n.format.``<0-4294967295:0-42949 |
| d2000 | 36 37 32 39 35 3a 30 2d 34 32 39 34 39 36 37 32 39 35 3e 60 60 00 41 64 64 20 70 6f 6c 69 63 79 | 67295:0-4294967295>``.Add.policy |
| d2020 | 20 72 6f 75 74 65 20 6d 61 74 63 68 69 6e 67 20 56 4c 41 4e 20 73 6f 75 72 63 65 20 61 64 64 72 | .route.matching.VLAN.source.addr |
| d2040 | 65 73 73 65 73 00 41 64 64 20 70 75 62 6c 69 63 20 6b 65 79 20 70 6f 72 74 69 6f 6e 20 66 6f 72 | esses.Add.public.key.portion.for |
| d2060 | 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 6e 61 6d 65 64 20 60 6e 61 6d 65 60 20 74 6f | .the.certificate.named.`name`.to |
| d2080 | 20 74 68 65 20 56 79 4f 53 20 43 4c 49 2e 00 41 64 64 20 73 6f 75 72 63 65 20 49 50 20 61 64 64 | .the.VyOS.CLI..Add.source.IP.add |
| d20a0 | 72 65 73 73 20 6f 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f 20 61 20 64 79 6e 61 | ress.of.the.connection.to.a.dyna |
| d20c0 | 6d 69 63 20 61 64 64 72 65 73 73 20 67 72 6f 75 70 3a 00 41 64 64 20 74 68 65 20 43 41 73 20 70 | mic.address.group:.Add.the.CAs.p |
| d20e0 | 72 69 76 61 74 65 20 6b 65 79 20 74 6f 20 74 68 65 20 56 79 4f 53 20 43 4c 49 2e 20 54 68 69 73 | rivate.key.to.the.VyOS.CLI..This |
| d2100 | 20 73 68 6f 75 6c 64 20 6e 65 76 65 72 20 6c 65 61 76 65 20 74 68 65 20 73 79 73 74 65 6d 2c 20 | .should.never.leave.the.system,. |
| d2120 | 61 6e 64 20 69 73 20 6f 6e 6c 79 20 72 65 71 75 69 72 65 64 20 69 66 20 79 6f 75 20 75 73 65 20 | and.is.only.required.if.you.use. |
| d2140 | 56 79 4f 53 20 61 73 20 79 6f 75 72 20 63 65 72 74 69 66 69 63 61 74 65 20 67 65 6e 65 72 61 74 | VyOS.as.your.certificate.generat |
| d2160 | 6f 72 20 61 73 20 6d 65 6e 74 69 6f 6e 65 64 20 61 62 6f 76 65 2e 00 41 64 64 20 74 68 65 20 63 | or.as.mentioned.above..Add.the.c |
| d2180 | 6f 6d 6d 61 6e 64 73 20 66 72 6f 6d 20 53 6e 69 70 70 65 74 20 69 6e 20 74 68 65 20 57 69 6e 64 | ommands.from.Snippet.in.the.Wind |
| d21a0 | 6f 77 73 20 73 69 64 65 20 76 69 61 20 50 6f 77 65 72 53 68 65 6c 6c 2e 20 41 6c 73 6f 20 69 6d | ows.side.via.PowerShell..Also.im |
| d21c0 | 70 6f 72 74 20 74 68 65 20 72 6f 6f 74 20 43 41 20 63 65 72 74 20 74 6f 20 74 68 65 20 57 69 6e | port.the.root.CA.cert.to.the.Win |
| d21e0 | 64 6f 77 73 20 e2 80 9c 54 72 75 73 74 65 64 20 52 6f 6f 74 20 43 65 72 74 69 66 69 63 61 74 69 | dows....Trusted.Root.Certificati |
| d2200 | 6f 6e 20 41 75 74 68 6f 72 69 74 69 65 73 e2 80 9d 20 61 6e 64 20 65 73 74 61 62 6c 69 73 68 20 | on.Authorities....and.establish. |
| d2220 | 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 41 64 64 20 74 68 65 20 70 72 69 76 61 74 65 20 | the.connection..Add.the.private. |
| d2240 | 6b 65 79 20 70 6f 72 74 69 6f 6e 20 6f 66 20 74 68 69 73 20 63 65 72 74 69 66 69 63 61 74 65 20 | key.portion.of.this.certificate. |
| d2260 | 74 6f 20 74 68 65 20 43 4c 49 2e 20 54 68 69 73 20 73 68 6f 75 6c 64 20 6e 65 76 65 72 20 6c 65 | to.the.CLI..This.should.never.le |
| d2280 | 61 76 65 20 74 68 65 20 73 79 73 74 65 6d 20 61 73 20 69 74 20 69 73 20 75 73 65 64 20 74 6f 20 | ave.the.system.as.it.is.used.to. |
| d22a0 | 64 65 63 72 79 70 74 20 74 68 65 20 64 61 74 61 2e 00 41 64 64 20 74 68 65 20 70 75 62 6c 69 63 | decrypt.the.data..Add.the.public |
| d22c0 | 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 20 66 6f 72 20 74 68 65 20 43 41 20 6e 61 6d 65 64 | .CA.certificate.for.the.CA.named |
| d22e0 | 20 60 6e 61 6d 65 60 20 74 6f 20 74 68 65 20 56 79 4f 53 20 43 4c 49 2e 00 41 64 64 69 6e 67 20 | .`name`.to.the.VyOS.CLI..Adding. |
| d2300 | 61 20 32 46 41 20 77 69 74 68 20 61 6e 20 4f 54 50 2d 6b 65 79 00 41 64 64 69 6e 67 20 65 6c 65 | a.2FA.with.an.OTP-key.Adding.ele |
| d2320 | 6d 65 6e 74 73 20 74 6f 20 44 79 6e 61 6d 69 63 20 46 69 72 65 77 61 6c 6c 20 47 72 6f 75 70 73 | ments.to.Dynamic.Firewall.Groups |
| d2340 | 00 41 64 64 69 74 69 6f 6e 61 6c 20 67 6c 6f 62 61 6c 20 70 61 72 61 6d 65 74 65 72 73 20 61 72 | .Additional.global.parameters.ar |
| d2360 | 65 20 73 65 74 2c 20 69 6e 63 6c 75 64 69 6e 67 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d | e.set,.including.the.maximum.num |
| d2380 | 62 65 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6c 69 6d 69 74 20 6f 66 20 34 30 30 30 20 61 6e 64 | ber.connection.limit.of.4000.and |
| d23a0 | 20 61 20 6d 69 6e 69 6d 75 6d 20 54 4c 53 20 76 65 72 73 69 6f 6e 20 6f 66 20 31 2e 33 2e 00 41 | .a.minimum.TLS.version.of.1.3..A |
| d23c0 | 64 64 69 74 69 6f 6e 61 6c 20 6f 70 74 69 6f 6e 20 74 6f 20 72 75 6e 20 54 46 54 50 20 73 65 72 | dditional.option.to.run.TFTP.ser |
| d23e0 | 76 65 72 20 69 6e 20 74 68 65 20 3a 61 62 62 72 3a 60 56 52 46 20 28 56 69 72 74 75 61 6c 20 52 | ver.in.the.:abbr:`VRF.(Virtual.R |
| d2400 | 6f 75 74 69 6e 67 20 61 6e 64 20 46 6f 72 77 61 72 64 69 6e 67 29 60 20 63 6f 6e 74 65 78 74 00 | outing.and.Forwarding)`.context. |
| d2420 | 41 64 64 69 74 69 6f 6e 61 6c 6c 79 20 79 6f 75 20 73 68 6f 75 6c 64 20 6b 65 65 70 20 69 6e 20 | Additionally.you.should.keep.in. |
| d2440 | 6d 69 6e 64 20 74 68 61 74 20 74 68 69 73 20 66 65 61 74 75 72 65 20 66 75 6e 64 61 6d 65 6e 74 | mind.that.this.feature.fundament |
| d2460 | 61 6c 6c 79 20 64 69 73 61 62 6c 65 73 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 6f 20 75 73 65 | ally.disables.the.ability.to.use |
| d2480 | 20 77 69 64 65 6c 79 20 64 65 70 6c 6f 79 65 64 20 42 47 50 20 66 65 61 74 75 72 65 73 2e 20 42 | .widely.deployed.BGP.features..B |
| d24a0 | 47 50 20 75 6e 6e 75 6d 62 65 72 65 64 2c 20 68 6f 73 74 6e 61 6d 65 20 73 75 70 70 6f 72 74 2c | GP.unnumbered,.hostname.support, |
| d24c0 | 20 41 53 34 2c 20 41 64 64 70 61 74 68 2c 20 52 6f 75 74 65 20 52 65 66 72 65 73 68 2c 20 4f 52 | .AS4,.Addpath,.Route.Refresh,.OR |
| d24e0 | 46 2c 20 44 79 6e 61 6d 69 63 20 43 61 70 61 62 69 6c 69 74 69 65 73 2c 20 61 6e 64 20 67 72 61 | F,.Dynamic.Capabilities,.and.gra |
| d2500 | 63 65 66 75 6c 20 72 65 73 74 61 72 74 2e 00 41 64 64 69 74 69 6f 6e 61 6c 6c 79 2c 20 65 61 63 | ceful.restart..Additionally,.eac |
| d2520 | 68 20 63 6c 69 65 6e 74 20 6e 65 65 64 73 20 61 20 63 6f 70 79 20 6f 66 20 63 61 20 63 65 72 74 | h.client.needs.a.copy.of.ca.cert |
| d2540 | 20 61 6e 64 20 69 74 73 20 6f 77 6e 20 63 6c 69 65 6e 74 20 6b 65 79 20 61 6e 64 20 63 65 72 74 | .and.its.own.client.key.and.cert |
| d2560 | 20 66 69 6c 65 73 2e 20 54 68 65 20 66 69 6c 65 73 20 61 72 65 20 70 6c 61 69 6e 74 65 78 74 20 | .files..The.files.are.plaintext. |
| d2580 | 73 6f 20 74 68 65 79 20 6d 61 79 20 62 65 20 63 6f 70 69 65 64 20 65 69 74 68 65 72 20 6d 61 6e | so.they.may.be.copied.either.man |
| d25a0 | 75 61 6c 6c 79 20 66 72 6f 6d 20 74 68 65 20 43 4c 49 2e 20 43 6c 69 65 6e 74 20 6b 65 79 20 61 | ually.from.the.CLI..Client.key.a |
| d25c0 | 6e 64 20 63 65 72 74 20 66 69 6c 65 73 20 73 68 6f 75 6c 64 20 62 65 20 73 69 67 6e 65 64 20 77 | nd.cert.files.should.be.signed.w |
| d25e0 | 69 74 68 20 74 68 65 20 70 72 6f 70 65 72 20 63 61 20 63 65 72 74 20 61 6e 64 20 67 65 6e 65 72 | ith.the.proper.ca.cert.and.gener |
| d2600 | 61 74 65 64 20 6f 6e 20 74 68 65 20 73 65 72 76 65 72 20 73 69 64 65 2e 00 41 64 64 69 74 69 6f | ated.on.the.server.side..Additio |
| d2620 | 6e 61 6c 6c 79 2c 20 65 61 63 68 20 63 6c 69 65 6e 74 20 6e 65 65 64 73 20 61 20 63 6f 70 79 20 | nally,.each.client.needs.a.copy. |
| d2640 | 6f 66 20 63 61 20 63 65 72 74 20 61 6e 64 20 69 74 73 20 6f 77 6e 20 63 6c 69 65 6e 74 20 6b 65 | of.ca.cert.and.its.own.client.ke |
| d2660 | 79 20 61 6e 64 20 63 65 72 74 20 66 69 6c 65 73 2e 20 54 68 65 20 66 69 6c 65 73 20 61 72 65 20 | y.and.cert.files..The.files.are. |
| d2680 | 70 6c 61 69 6e 74 65 78 74 20 73 6f 20 74 68 65 79 20 6d 61 79 20 62 65 20 63 6f 70 69 65 64 20 | plaintext.so.they.may.be.copied. |
| d26a0 | 6d 61 6e 75 61 6c 6c 79 20 66 72 6f 6d 20 74 68 65 20 43 4c 49 2e 20 43 6c 69 65 6e 74 20 6b 65 | manually.from.the.CLI..Client.ke |
| d26c0 | 79 20 61 6e 64 20 63 65 72 74 20 66 69 6c 65 73 20 73 68 6f 75 6c 64 20 62 65 20 73 69 67 6e 65 | y.and.cert.files.should.be.signe |
| d26e0 | 64 20 77 69 74 68 20 74 68 65 20 70 72 6f 70 65 72 20 63 61 20 63 65 72 74 20 61 6e 64 20 67 65 | d.with.the.proper.ca.cert.and.ge |
| d2700 | 6e 65 72 61 74 65 64 20 6f 6e 20 74 68 65 20 73 65 72 76 65 72 20 73 69 64 65 2e 00 41 64 64 69 | nerated.on.the.server.side..Addi |
| d2720 | 74 69 6f 6e 61 6c 6c 79 2c 20 77 65 20 77 61 6e 74 20 74 6f 20 75 73 65 20 56 50 4e 73 20 6f 6e | tionally,.we.want.to.use.VPNs.on |
| d2740 | 6c 79 20 6f 6e 20 6f 75 72 20 65 74 68 31 20 69 6e 74 65 72 66 61 63 65 20 28 74 68 65 20 65 78 | ly.on.our.eth1.interface.(the.ex |
| d2760 | 74 65 72 6e 61 6c 20 69 6e 74 65 72 66 61 63 65 20 69 6e 20 74 68 65 20 69 6d 61 67 65 20 61 62 | ternal.interface.in.the.image.ab |
| d2780 | 6f 76 65 29 00 41 64 64 72 65 73 73 00 41 64 64 72 65 73 73 20 43 6f 6e 76 65 72 73 69 6f 6e 00 | ove).Address.Address.Conversion. |
| d27a0 | 41 64 64 72 65 73 73 20 46 61 6d 69 6c 69 65 73 00 41 64 64 72 65 73 73 20 47 72 6f 75 70 73 00 | Address.Families.Address.Groups. |
| d27c0 | 41 64 64 72 65 73 73 20 67 72 6f 75 70 73 20 61 72 65 20 75 73 65 66 75 6c 20 77 68 65 6e 20 79 | Address.groups.are.useful.when.y |
| d27e0 | 6f 75 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 20 72 75 6c 65 73 20 74 68 61 74 20 61 70 70 | ou.need.to.create.rules.that.app |
| d2800 | 6c 79 20 74 6f 20 73 70 65 63 69 66 69 63 20 49 50 20 61 64 64 72 65 73 73 65 73 2e 20 46 6f 72 | ly.to.specific.IP.addresses..For |
| d2820 | 20 65 78 61 6d 70 6c 65 2c 20 69 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 63 72 65 61 74 65 20 | .example,.if.you.want.to.create. |
| d2840 | 61 20 72 75 6c 65 20 74 68 61 74 20 6d 6f 6e 69 74 6f 72 73 20 74 72 61 66 66 69 63 20 67 6f 69 | a.rule.that.monitors.traffic.goi |
| d2860 | 6e 67 20 74 6f 20 6f 72 20 66 72 6f 6d 20 61 20 73 70 65 63 69 66 69 63 20 49 50 20 61 64 64 72 | ng.to.or.from.a.specific.IP.addr |
| d2880 | 65 73 73 2c 20 79 6f 75 20 63 61 6e 20 75 73 65 20 74 68 65 20 67 72 6f 75 70 20 6e 61 6d 65 20 | ess,.you.can.use.the.group.name. |
| d28a0 | 69 6e 73 74 65 61 64 20 6f 66 20 74 68 65 20 61 63 74 75 61 6c 20 49 50 20 61 64 64 72 65 73 73 | instead.of.the.actual.IP.address |
| d28c0 | 2e 20 54 68 69 73 20 73 69 6d 70 6c 69 66 69 65 73 20 72 75 6c 65 20 6d 61 6e 61 67 65 6d 65 6e | ..This.simplifies.rule.managemen |
| d28e0 | 74 20 61 6e 64 20 6d 61 6b 65 73 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f | t.and.makes.the.configuration.mo |
| d2900 | 72 65 20 66 6c 65 78 69 62 6c 65 2e 00 41 64 64 72 65 73 73 20 70 6f 6f 6c 20 73 68 61 6c 6c 20 | re.flexible..Address.pool.shall. |
| d2920 | 62 65 20 60 60 32 30 30 31 3a 64 62 38 3a 3a 31 30 30 60 60 20 74 68 72 6f 75 67 68 20 60 60 32 | be.``2001:db8::100``.through.``2 |
| d2940 | 30 30 31 3a 64 62 38 3a 3a 31 39 39 60 60 2e 00 41 64 64 72 65 73 73 20 70 6f 6f 6c 73 00 41 64 | 001:db8::199``..Address.pools.Ad |
| d2960 | 64 72 65 73 73 20 74 6f 20 6c 69 73 74 65 6e 20 66 6f 72 20 48 54 54 50 53 20 72 65 71 75 65 73 | dress.to.listen.for.HTTPS.reques |
| d2980 | 74 73 00 41 64 64 73 20 72 65 67 69 73 74 72 79 20 74 6f 20 6c 69 73 74 20 6f 66 20 75 6e 71 75 | ts.Adds.registry.to.list.of.unqu |
| d29a0 | 61 6c 69 66 69 65 64 2d 73 65 61 72 63 68 2d 72 65 67 69 73 74 72 69 65 73 2e 20 42 79 20 64 65 | alified-search-registries..By.de |
| d29c0 | 66 61 75 6c 74 2c 20 66 6f 72 20 61 6e 79 20 69 6d 61 67 65 20 74 68 61 74 20 64 6f 65 73 20 6e | fault,.for.any.image.that.does.n |
| d29e0 | 6f 74 20 69 6e 63 6c 75 64 65 20 74 68 65 20 72 65 67 69 73 74 72 79 20 69 6e 20 74 68 65 20 69 | ot.include.the.registry.in.the.i |
| d2a00 | 6d 61 67 65 20 6e 61 6d 65 2c 20 56 79 4f 53 20 77 69 6c 6c 20 75 73 65 20 64 6f 63 6b 65 72 2e | mage.name,.VyOS.will.use.docker. |
| d2a20 | 69 6f 20 61 6e 64 20 71 75 61 79 2e 69 6f 20 61 73 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 | io.and.quay.io.as.the.container. |
| d2a40 | 72 65 67 69 73 74 72 79 2e 00 41 64 64 73 20 72 65 67 69 73 74 72 79 20 74 6f 20 6c 69 73 74 20 | registry..Adds.registry.to.list. |
| d2a60 | 6f 66 20 75 6e 71 75 61 6c 69 66 69 65 64 2d 73 65 61 72 63 68 2d 72 65 67 69 73 74 72 69 65 73 | of.unqualified-search-registries |
| d2a80 | 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 66 6f 72 20 61 6e 79 20 69 6d 61 67 65 20 74 68 61 74 | ..By.default,.for.any.image.that |
| d2aa0 | 20 64 6f 65 73 20 6e 6f 74 20 69 6e 63 6c 75 64 65 20 74 68 65 20 72 65 67 69 73 74 72 79 20 69 | .does.not.include.the.registry.i |
| d2ac0 | 6e 20 74 68 65 20 69 6d 61 67 65 20 6e 61 6d 65 2c 20 56 79 6f 73 20 77 69 6c 6c 20 75 73 65 20 | n.the.image.name,.Vyos.will.use. |
| d2ae0 | 64 6f 63 6b 65 72 2e 69 6f 20 61 73 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 72 65 67 69 73 | docker.io.as.the.container.regis |
| d2b00 | 74 72 79 2e 00 41 64 64 73 20 74 68 65 20 50 6f 77 65 72 20 43 6f 6e 73 74 72 61 69 6e 74 20 69 | try..Adds.the.Power.Constraint.i |
| d2b20 | 6e 66 6f 72 6d 61 74 69 6f 6e 20 65 6c 65 6d 65 6e 74 20 74 6f 20 42 65 61 63 6f 6e 20 61 6e 64 | nformation.element.to.Beacon.and |
| d2b40 | 20 50 72 6f 62 65 20 52 65 73 70 6f 6e 73 65 20 66 72 61 6d 65 73 2e 00 41 64 6d 69 6e 69 73 74 | .Probe.Response.frames..Administ |
| d2b60 | 72 61 74 69 76 65 20 44 69 73 74 61 6e 63 65 00 41 64 76 61 6e 63 65 64 20 49 6e 74 65 72 66 61 | rative.Distance.Advanced.Interfa |
| d2b80 | 63 65 20 4f 70 74 69 6f 6e 73 00 41 64 76 61 6e 63 65 64 20 4f 70 74 69 6f 6e 73 00 41 64 76 61 | ce.Options.Advanced.Options.Adva |
| d2ba0 | 6e 63 65 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 61 6e 20 62 65 20 75 73 65 64 20 69 | nced.configuration.can.be.used.i |
| d2bc0 | 6e 20 6f 72 64 65 72 20 74 6f 20 61 70 70 6c 79 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 | n.order.to.apply.source.or.desti |
| d2be0 | 6e 61 74 69 6f 6e 20 4e 41 54 2c 20 61 6e 64 20 77 69 74 68 69 6e 20 61 20 73 69 6e 67 6c 65 20 | nation.NAT,.and.within.a.single. |
| d2c00 | 72 75 6c 65 2c 20 62 65 20 61 62 6c 65 20 74 6f 20 64 65 66 69 6e 65 20 6d 75 6c 74 69 70 6c 65 | rule,.be.able.to.define.multiple |
| d2c20 | 20 74 72 61 6e 73 6c 61 74 65 64 20 61 64 64 72 65 73 73 65 73 2c 20 73 6f 20 4e 41 54 20 62 61 | .translated.addresses,.so.NAT.ba |
| d2c40 | 6c 61 6e 63 65 73 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 73 20 61 6d 6f 6e 67 20 74 68 | lances.the.translations.among.th |
| d2c60 | 65 6d 2e 00 41 64 76 61 6e 74 61 67 65 73 20 6f 66 20 43 47 4e 41 54 00 41 64 76 61 6e 74 61 67 | em..Advantages.of.CGNAT.Advantag |
| d2c80 | 65 73 20 6f 66 20 4f 70 65 6e 56 50 4e 20 61 72 65 3a 00 41 64 76 65 72 74 69 73 65 20 44 4e 53 | es.of.OpenVPN.are:.Advertise.DNS |
| d2ca0 | 20 73 65 72 76 65 72 20 70 65 72 20 68 74 74 70 73 3a 2f 2f 74 6f 6f 6c 73 2e 69 65 74 66 2e 6f | .server.per.https://tools.ietf.o |
| d2cc0 | 72 67 2f 68 74 6d 6c 2f 72 66 63 36 31 30 36 00 41 64 76 65 72 74 69 73 65 6d 65 6e 74 20 49 6e | rg/html/rfc6106.Advertisement.In |
| d2ce0 | 74 65 72 76 61 6c 20 4f 70 74 69 6f 6e 20 28 73 70 65 63 69 66 69 65 64 20 62 79 20 4d 6f 62 69 | terval.Option.(specified.by.Mobi |
| d2d00 | 6c 65 20 49 50 76 36 29 20 69 73 20 61 6c 77 61 79 73 20 69 6e 63 6c 75 64 65 64 20 69 6e 20 52 | le.IPv6).is.always.included.in.R |
| d2d20 | 6f 75 74 65 72 20 41 64 76 65 72 74 69 73 65 6d 65 6e 74 73 20 75 6e 6c 65 73 73 20 74 68 69 73 | outer.Advertisements.unless.this |
| d2d40 | 20 6f 70 74 69 6f 6e 20 69 73 20 73 65 74 2e 00 41 64 76 65 72 74 69 73 69 6e 67 20 61 20 4e 41 | .option.is.set..Advertising.a.NA |
| d2d60 | 54 36 34 20 50 72 65 66 69 78 00 41 64 76 65 72 74 69 73 69 6e 67 20 61 20 50 72 65 66 69 78 00 | T64.Prefix.Advertising.a.Prefix. |
| d2d80 | 41 66 74 65 72 20 63 6f 6d 6d 69 74 20 74 68 65 20 70 6c 61 69 6e 74 65 78 74 20 70 61 73 73 77 | After.commit.the.plaintext.passw |
| d2da0 | 6f 72 64 73 20 77 69 6c 6c 20 62 65 20 68 61 73 68 65 64 20 61 6e 64 20 73 74 6f 72 65 64 20 69 | ords.will.be.hashed.and.stored.i |
| d2dc0 | 6e 20 79 6f 75 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 54 68 65 20 72 65 73 75 6c 74 | n.your.configuration..The.result |
| d2de0 | 69 6e 67 20 43 4c 49 20 63 6f 6e 66 69 67 20 77 69 6c 6c 20 6c 6f 6f 6b 20 6c 69 6b 65 3a 00 41 | ing.CLI.config.will.look.like:.A |
| d2e00 | 66 74 65 72 20 63 6f 6d 6d 69 74 74 69 6e 67 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | fter.committing.the.configuratio |
| d2e20 | 6e 20 77 65 20 63 61 6e 20 76 65 72 69 66 79 20 61 6c 6c 20 6c 65 61 6b 65 64 20 72 6f 75 74 65 | n.we.can.verify.all.leaked.route |
| d2e40 | 73 20 61 72 65 20 69 6e 73 74 61 6c 6c 65 64 2c 20 61 6e 64 20 74 72 79 20 74 6f 20 49 43 4d 50 | s.are.installed,.and.try.to.ICMP |
| d2e60 | 20 70 69 6e 67 20 50 43 31 20 66 72 6f 6d 20 50 43 33 2e 00 41 66 74 65 72 20 63 6f 6d 70 6c 65 | .ping.PC1.from.PC3..After.comple |
| d2e80 | 74 69 6e 67 20 74 68 65 20 73 65 72 76 69 63 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 | ting.the.service.configuration.i |
| d2ea0 | 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 65 2c 20 74 68 65 20 6d 61 69 6e 20 63 | n.configuration.mode,.the.main.c |
| d2ec0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 69 6c 65 20 73 75 72 69 63 61 74 61 2e 79 61 6d 6c 20 | onfiguration.file.suricata.yaml. |
| d2ee0 | 69 73 20 63 72 65 61 74 65 64 2c 20 69 6e 74 6f 20 77 68 69 63 68 20 61 6c 6c 20 73 70 65 63 69 | is.created,.into.which.all.speci |
| d2f00 | 66 69 65 64 20 70 61 72 61 6d 65 74 65 72 73 20 61 72 65 20 61 64 64 65 64 2e 20 54 68 65 6e 2c | fied.parameters.are.added..Then, |
| d2f20 | 20 74 6f 20 65 6e 73 75 72 65 20 70 72 6f 70 65 72 20 6f 70 65 72 61 74 69 6f 6e 2c 20 74 68 65 | .to.ensure.proper.operation,.the |
| d2f40 | 20 63 6f 6d 6d 61 6e 64 20 3a 6f 70 63 6d 64 3a 60 75 70 64 61 74 65 20 73 75 72 69 63 61 74 61 | .command.:opcmd:`update.suricata |
| d2f60 | 60 20 6d 75 73 74 20 62 65 20 72 75 6e 20 66 72 6f 6d 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 6d | `.must.be.run.from.operational.m |
| d2f80 | 6f 64 65 2c 20 77 61 69 74 69 6e 67 20 66 6f 72 20 53 75 72 69 63 61 74 61 20 74 6f 20 75 70 64 | ode,.waiting.for.Suricata.to.upd |
| d2fa0 | 61 74 65 20 61 6c 6c 20 69 74 73 20 72 75 6c 65 73 2c 20 77 68 69 63 68 20 61 72 65 20 75 73 65 | ate.all.its.rules,.which.are.use |
| d2fc0 | 64 20 66 6f 72 20 61 6e 61 6c 79 7a 69 6e 67 20 74 72 61 66 66 69 63 20 66 6f 72 20 74 68 72 65 | d.for.analyzing.traffic.for.thre |
| d2fe0 | 61 74 73 20 61 6e 64 20 61 74 74 61 63 6b 73 2e 00 41 66 74 65 72 20 74 68 65 20 50 4b 49 20 63 | ats.and.attacks..After.the.PKI.c |
| d3000 | 65 72 74 73 20 61 72 65 20 61 6c 6c 20 73 65 74 20 75 70 20 77 65 20 63 61 6e 20 73 74 61 72 74 | erts.are.all.set.up.we.can.start |
| d3020 | 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 6f 75 72 20 49 50 53 65 63 2f 49 4b 45 20 70 72 6f 70 6f | .configuring.our.IPSec/IKE.propo |
| d3040 | 73 61 6c 73 20 75 73 65 64 20 66 6f 72 20 6b 65 79 2d 65 78 63 68 61 6e 67 65 20 65 6e 64 20 64 | sals.used.for.key-exchange.end.d |
| d3060 | 61 74 61 20 65 6e 63 72 79 70 74 69 6f 6e 2e 20 54 68 65 20 75 73 65 64 20 65 6e 63 72 79 70 74 | ata.encryption..The.used.encrypt |
| d3080 | 69 6f 6e 20 63 69 70 68 65 72 73 20 61 6e 64 20 69 6e 74 65 67 72 69 74 79 20 61 6c 67 6f 72 69 | ion.ciphers.and.integrity.algori |
| d30a0 | 74 68 6d 73 20 76 61 72 79 20 66 72 6f 6d 20 6f 70 65 72 61 74 69 6e 67 20 73 79 73 74 65 6d 20 | thms.vary.from.operating.system. |
| d30c0 | 74 6f 20 6f 70 65 72 61 74 69 6e 67 20 73 79 73 74 65 6d 2e 20 54 68 65 20 6f 6e 65 73 20 75 73 | to.operating.system..The.ones.us |
| d30e0 | 65 64 20 69 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 20 61 72 65 20 76 61 6c 69 64 61 74 65 64 | ed.in.this.example.are.validated |
| d3100 | 20 74 6f 20 77 6f 72 6b 20 6f 6e 20 57 69 6e 64 6f 77 73 20 31 30 2e 00 41 66 74 65 72 20 74 68 | .to.work.on.Windows.10..After.th |
| d3120 | 65 20 50 4b 49 20 63 65 72 74 73 20 61 72 65 20 61 6c 6c 20 73 65 74 20 75 70 20 77 65 20 63 61 | e.PKI.certs.are.all.set.up.we.ca |
| d3140 | 6e 20 73 74 61 72 74 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 6f 75 72 20 49 50 53 65 63 2f 49 4b | n.start.configuring.our.IPSec/IK |
| d3160 | 45 20 70 72 6f 70 6f 73 61 6c 73 20 75 73 65 64 20 66 6f 72 20 6b 65 79 2d 65 78 63 68 61 6e 67 | E.proposals.used.for.key-exchang |
| d3180 | 65 20 65 6e 64 20 64 61 74 61 20 65 6e 63 72 79 70 74 69 6f 6e 2e 20 54 68 65 20 75 73 65 64 20 | e.end.data.encryption..The.used. |
| d31a0 | 65 6e 63 72 79 70 74 69 6f 6e 20 63 69 70 68 65 72 73 20 61 6e 64 20 69 6e 74 65 67 72 69 74 79 | encryption.ciphers.and.integrity |
| d31c0 | 20 61 6c 67 6f 72 69 74 68 6d 73 20 76 61 72 79 20 66 72 6f 6d 20 6f 70 65 72 61 74 69 6e 67 20 | .algorithms.vary.from.operating. |
| d31e0 | 73 79 73 74 65 6d 20 74 6f 20 6f 70 65 72 61 74 69 6e 67 20 73 79 73 74 65 6d 2e 20 54 68 65 20 | system.to.operating.system..The. |
| d3200 | 6f 6e 65 73 20 75 73 65 64 20 69 6e 20 74 68 69 73 20 70 6f 73 74 20 61 72 65 20 76 61 6c 69 64 | ones.used.in.this.post.are.valid |
| d3220 | 61 74 65 64 20 74 6f 20 77 6f 72 6b 20 6f 6e 20 62 6f 74 68 20 57 69 6e 64 6f 77 73 20 31 30 20 | ated.to.work.on.both.Windows.10. |
| d3240 | 61 6e 64 20 69 4f 53 2f 69 50 61 64 4f 53 20 31 34 20 74 6f 20 31 37 2e 00 41 66 74 65 72 20 77 | and.iOS/iPadOS.14.to.17..After.w |
| d3260 | 65 20 68 61 76 65 20 69 6d 70 6f 72 74 65 64 20 74 68 65 20 43 41 20 63 65 72 74 69 66 69 63 61 | e.have.imported.the.CA.certifica |
| d3280 | 74 65 28 73 29 20 77 65 20 63 61 6e 20 6e 6f 77 20 69 6d 70 6f 72 74 20 61 6e 64 20 61 64 64 20 | te(s).we.can.now.import.and.add. |
| d32a0 | 63 65 72 74 69 66 69 63 61 74 65 73 20 75 73 65 64 20 62 79 20 73 65 72 76 69 63 65 73 20 6f 6e | certificates.used.by.services.on |
| d32c0 | 20 74 68 69 73 20 72 6f 75 74 65 72 2e 00 41 66 74 65 72 20 79 6f 75 20 6f 62 74 61 69 6e 20 79 | .this.router..After.you.obtain.y |
| d32e0 | 6f 75 72 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 20 79 6f 75 20 63 61 6e 20 69 | our.server.certificate.you.can.i |
| d3300 | 6d 70 6f 72 74 20 69 74 20 66 72 6f 6d 20 61 20 66 69 6c 65 20 6f 6e 20 74 68 65 20 6c 6f 63 61 | mport.it.from.a.file.on.the.loca |
| d3320 | 6c 20 66 69 6c 65 73 79 73 74 65 6d 2c 20 6f 72 20 70 61 73 74 65 20 69 74 20 69 6e 74 6f 20 74 | l.filesystem,.or.paste.it.into.t |
| d3340 | 68 65 20 43 4c 49 2e 20 50 6c 65 61 73 65 20 6e 6f 74 65 20 74 68 61 74 20 77 68 65 6e 20 65 6e | he.CLI..Please.note.that.when.en |
| d3360 | 74 65 72 69 6e 67 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 6d 61 6e 75 61 6c 6c 79 20 | tering.the.certificate.manually. |
| d3380 | 79 6f 75 20 6e 65 65 64 20 74 6f 20 73 74 72 69 70 20 74 68 65 20 60 60 2d 2d 2d 2d 2d 42 45 47 | you.need.to.strip.the.``-----BEG |
| d33a0 | 49 4e 20 4b 45 59 2d 2d 2d 2d 2d 60 60 20 61 6e 64 20 60 60 2d 2d 2d 2d 2d 45 4e 44 20 4b 45 59 | IN.KEY-----``.and.``-----END.KEY |
| d33c0 | 2d 2d 2d 2d 2d 60 60 20 74 61 67 73 2e 20 41 6c 73 6f 2c 20 74 68 65 20 63 65 72 74 69 66 69 63 | -----``.tags..Also,.the.certific |
| d33e0 | 61 74 65 20 6f 72 20 6b 65 79 20 6e 65 65 64 73 20 74 6f 20 62 65 20 70 72 65 73 65 6e 74 65 64 | ate.or.key.needs.to.be.presented |
| d3400 | 20 69 6e 20 61 20 73 69 6e 67 6c 65 20 6c 69 6e 65 20 77 69 74 68 6f 75 74 20 6c 69 6e 65 20 62 | .in.a.single.line.without.line.b |
| d3420 | 72 65 61 6b 73 20 28 60 60 5c 6e 60 60 29 2e 00 41 66 74 65 72 20 79 6f 75 20 6f 62 74 61 69 6e | reaks.(``\n``)..After.you.obtain |
| d3440 | 65 64 20 79 6f 75 72 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 20 79 6f 75 20 63 | ed.your.server.certificate.you.c |
| d3460 | 61 6e 20 69 6d 70 6f 72 74 20 69 74 20 66 72 6f 6d 20 61 20 66 69 6c 65 20 6f 6e 20 74 68 65 20 | an.import.it.from.a.file.on.the. |
| d3480 | 6c 6f 63 61 6c 20 66 69 6c 65 73 79 73 74 65 6d 2c 20 6f 72 20 70 61 73 74 65 20 69 74 20 69 6e | local.filesystem,.or.paste.it.in |
| d34a0 | 74 6f 20 74 68 65 20 43 4c 49 2e 20 50 6c 65 61 73 65 20 6e 6f 74 65 20 74 68 61 74 20 77 68 65 | to.the.CLI..Please.note.that.whe |
| d34c0 | 6e 20 65 6e 74 65 72 69 6e 67 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 6d 61 6e 75 61 | n.entering.the.certificate.manua |
| d34e0 | 6c 6c 79 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 73 74 72 69 70 20 74 68 65 20 60 60 2d 2d 2d 2d | lly.you.need.to.strip.the.``---- |
| d3500 | 2d 42 45 47 49 4e 20 4b 45 59 2d 2d 2d 2d 2d 60 60 20 61 6e 64 20 60 60 2d 2d 2d 2d 2d 45 4e 44 | -BEGIN.KEY-----``.and.``-----END |
| d3520 | 20 4b 45 59 2d 2d 2d 2d 2d 60 60 20 74 61 67 73 2e 20 41 6c 73 6f 2c 20 74 68 65 20 63 65 72 74 | .KEY-----``.tags..Also,.the.cert |
| d3540 | 69 66 69 63 61 74 65 20 6f 72 20 6b 65 79 20 6e 65 65 64 73 20 74 6f 20 62 65 20 70 72 65 73 65 | ificate.or.key.needs.to.be.prese |
| d3560 | 6e 74 65 64 20 69 6e 20 61 20 73 69 6e 67 6c 65 20 6c 69 6e 65 20 77 69 74 68 6f 75 74 20 6c 69 | nted.in.a.single.line.without.li |
| d3580 | 6e 65 20 62 72 65 61 6b 73 20 28 60 60 5c 6e 60 60 29 2e 00 41 67 65 6e 74 20 2d 20 73 6f 66 74 | ne.breaks.(``\n``)..Agent.-.soft |
| d35a0 | 77 61 72 65 20 77 68 69 63 68 20 72 75 6e 73 20 6f 6e 20 6d 61 6e 61 67 65 64 20 64 65 76 69 63 | ware.which.runs.on.managed.devic |
| d35c0 | 65 73 00 41 6c 65 72 74 00 41 6c 67 6f 72 69 74 68 6d 00 41 6c 69 61 73 65 73 00 41 6c 6c 20 44 | es.Alert.Algorithm.Aliases.All.D |
| d35e0 | 4e 53 20 72 65 71 75 65 73 74 73 20 66 6f 72 20 65 78 61 6d 70 6c 65 2e 63 6f 6d 20 6d 75 73 74 | NS.requests.for.example.com.must |
| d3600 | 20 62 65 20 66 6f 72 77 61 72 64 65 64 20 74 6f 20 61 20 44 4e 53 20 73 65 72 76 65 72 20 61 74 | .be.forwarded.to.a.DNS.server.at |
| d3620 | 20 31 39 32 2e 30 2e 32 2e 32 35 34 20 61 6e 64 20 32 30 30 31 3a 64 62 38 3a 63 61 66 65 3a 3a | .192.0.2.254.and.2001:db8:cafe:: |
| d3640 | 31 00 41 6c 6c 20 53 4e 4d 50 20 4d 49 42 73 20 61 72 65 20 6c 6f 63 61 74 65 64 20 69 6e 20 65 | 1.All.SNMP.MIBs.are.located.in.e |
| d3660 | 61 63 68 20 69 6d 61 67 65 20 6f 66 20 56 79 4f 53 20 68 65 72 65 3a 20 60 60 2f 75 73 72 2f 73 | ach.image.of.VyOS.here:.``/usr/s |
| d3680 | 68 61 72 65 2f 73 6e 6d 70 2f 6d 69 62 73 2f 60 60 00 41 6c 6c 20 61 76 61 69 6c 61 62 6c 65 20 | hare/snmp/mibs/``.All.available. |
| d36a0 | 57 57 41 4e 20 63 61 72 64 73 20 68 61 76 65 20 61 20 62 75 69 6c 64 20 69 6e 2c 20 72 65 70 72 | WWAN.cards.have.a.build.in,.repr |
| d36c0 | 6f 67 72 61 6d 6d 61 62 6c 65 20 66 69 72 6d 77 61 72 65 2e 20 4d 6f 73 74 20 6f 66 20 74 68 65 | ogrammable.firmware..Most.of.the |
| d36e0 | 20 76 65 6e 64 6f 72 73 20 70 72 6f 76 69 64 65 20 61 20 72 65 67 75 6c 61 72 20 75 70 64 61 74 | .vendors.provide.a.regular.updat |
| d3700 | 65 20 74 6f 20 74 68 65 20 66 69 72 6d 77 61 72 65 20 75 73 65 64 20 69 6e 20 74 68 65 20 62 61 | e.to.the.firmware.used.in.the.ba |
| d3720 | 73 65 62 61 6e 64 20 63 68 69 70 2e 00 41 6c 6c 20 61 76 61 69 6c 61 62 6c 65 20 57 57 41 4e 20 | seband.chip..All.available.WWAN. |
| d3740 | 63 61 72 64 73 20 68 61 76 65 20 61 20 62 75 69 6c 74 2d 69 6e 2c 20 72 65 70 72 6f 67 72 61 6d | cards.have.a.built-in,.reprogram |
| d3760 | 6d 61 62 6c 65 20 66 69 72 6d 77 61 72 65 2e 20 4d 6f 73 74 20 76 65 6e 64 6f 72 73 20 70 72 6f | mable.firmware..Most.vendors.pro |
| d3780 | 76 69 64 65 20 72 65 67 75 6c 61 72 20 75 70 64 61 74 65 73 20 74 6f 20 66 69 72 6d 77 61 72 65 | vide.regular.updates.to.firmware |
| d37a0 | 20 75 73 65 64 20 69 6e 20 74 68 65 20 62 61 73 65 62 61 6e 64 20 63 68 69 70 2e 00 41 6c 6c 20 | .used.in.the.baseband.chip..All. |
| d37c0 | 63 65 72 74 69 66 69 63 61 74 65 73 20 73 68 6f 75 6c 64 20 62 65 20 73 74 6f 72 65 64 20 6f 6e | certificates.should.be.stored.on |
| d37e0 | 20 56 79 4f 53 20 75 6e 64 65 72 20 60 60 2f 63 6f 6e 66 69 67 2f 61 75 74 68 60 60 2e 20 49 66 | .VyOS.under.``/config/auth``..If |
| d3800 | 20 63 65 72 74 69 66 69 63 61 74 65 73 20 61 72 65 20 6e 6f 74 20 73 74 6f 72 65 64 20 69 6e 20 | .certificates.are.not.stored.in. |
| d3820 | 74 68 65 20 60 60 2f 63 6f 6e 66 69 67 60 60 20 64 69 72 65 63 74 6f 72 79 20 74 68 65 79 20 77 | the.``/config``.directory.they.w |
| d3840 | 69 6c 6c 20 6e 6f 74 20 62 65 20 6d 69 67 72 61 74 65 64 20 64 75 72 69 6e 67 20 61 20 73 6f 66 | ill.not.be.migrated.during.a.sof |
| d3860 | 74 77 61 72 65 20 75 70 64 61 74 65 2e 00 41 6c 6c 20 66 61 63 69 6c 69 74 69 65 73 00 41 6c 6c | tware.update..All.facilities.All |
| d3880 | 20 69 6e 74 65 72 66 61 63 65 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 44 48 43 50 20 72 65 | .interfaces.used.for.the.DHCP.re |
| d38a0 | 6c 61 79 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 68 69 73 20 69 6e 63 | lay.must.be.configured..This.inc |
| d38c0 | 6c 75 64 65 73 20 74 68 65 20 75 70 6c 69 6e 6b 20 74 6f 20 74 68 65 20 44 48 43 50 20 73 65 72 | ludes.the.uplink.to.the.DHCP.ser |
| d38e0 | 76 65 72 2e 00 41 6c 6c 20 69 74 65 6d 73 20 69 6e 20 61 20 73 79 6e 63 20 67 72 6f 75 70 20 73 | ver..All.items.in.a.sync.group.s |
| d3900 | 68 6f 75 6c 64 20 62 65 20 73 69 6d 69 6c 61 72 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 49 | hould.be.similarly.configured..I |
| d3920 | 66 20 6f 6e 65 20 56 52 52 50 20 67 72 6f 75 70 20 69 73 20 73 65 74 20 74 6f 20 61 20 64 69 66 | f.one.VRRP.group.is.set.to.a.dif |
| d3940 | 66 65 72 65 6e 74 20 70 72 65 65 6d 70 74 69 6f 6e 20 64 65 6c 61 79 20 6f 72 20 70 72 69 6f 72 | ferent.preemption.delay.or.prior |
| d3960 | 69 74 79 2c 20 69 74 20 77 6f 75 6c 64 20 72 65 73 75 6c 74 20 69 6e 20 61 6e 20 65 6e 64 6c 65 | ity,.it.would.result.in.an.endle |
| d3980 | 73 73 20 74 72 61 6e 73 69 74 69 6f 6e 20 6c 6f 6f 70 2e 00 41 6c 6c 20 6f 74 68 65 72 20 44 4e | ss.transition.loop..All.other.DN |
| d39a0 | 53 20 72 65 71 75 65 73 74 73 20 77 69 6c 6c 20 62 65 20 66 6f 72 77 61 72 64 65 64 20 74 6f 20 | S.requests.will.be.forwarded.to. |
| d39c0 | 61 20 64 69 66 66 65 72 65 6e 74 20 73 65 74 20 6f 66 20 44 4e 53 20 73 65 72 76 65 72 73 20 61 | a.different.set.of.DNS.servers.a |
| d39e0 | 74 20 31 39 32 2e 30 2e 32 2e 31 2c 20 31 39 32 2e 30 2e 32 2e 32 2c 20 32 30 30 31 3a 64 62 38 | t.192.0.2.1,.192.0.2.2,.2001:db8 |
| d3a00 | 3a 3a 31 3a 66 66 66 66 20 61 6e 64 20 32 30 30 31 3a 64 62 38 3a 3a 32 3a 66 66 66 66 00 41 6c | ::1:ffff.and.2001:db8::2:ffff.Al |
| d3a20 | 6c 20 72 65 70 6c 79 20 73 69 7a 65 73 20 61 72 65 20 61 63 63 65 70 74 65 64 20 62 79 20 64 65 | l.reply.sizes.are.accepted.by.de |
| d3a40 | 66 61 75 6c 74 2e 00 41 6c 6c 20 72 6f 75 74 65 72 73 20 69 6e 20 74 68 65 20 50 49 4d 20 6e 65 | fault..All.routers.in.the.PIM.ne |
| d3a60 | 74 77 6f 72 6b 20 6d 75 73 74 20 61 67 72 65 65 20 6f 6e 20 74 68 65 73 65 20 76 61 6c 75 65 73 | twork.must.agree.on.these.values |
| d3a80 | 2e 00 41 6c 6c 20 73 63 72 69 70 74 73 20 65 78 63 65 63 75 74 65 64 20 74 68 69 73 20 77 61 79 | ..All.scripts.excecuted.this.way |
| d3aa0 | 20 61 72 65 20 65 78 65 63 75 74 65 64 20 61 73 20 72 6f 6f 74 20 75 73 65 72 20 2d 20 74 68 69 | .are.executed.as.root.user.-.thi |
| d3ac0 | 73 20 6d 61 79 20 62 65 20 64 61 6e 67 65 72 6f 75 73 2e 20 54 6f 67 65 74 68 65 72 20 77 69 74 | s.may.be.dangerous..Together.wit |
| d3ae0 | 68 20 3a 72 65 66 3a 60 63 6f 6d 6d 61 6e 64 2d 73 63 72 69 70 74 69 6e 67 60 20 74 68 69 73 20 | h.:ref:`command-scripting`.this. |
| d3b00 | 63 61 6e 20 62 65 20 75 73 65 64 20 66 6f 72 20 61 75 74 6f 6d 61 74 69 6e 67 20 28 72 65 2d 29 | can.be.used.for.automating.(re-) |
| d3b20 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 41 6c 6c 20 73 63 72 69 70 74 73 20 65 78 65 63 75 | configuration..All.scripts.execu |
| d3b40 | 74 65 64 20 74 68 69 73 20 77 61 79 20 61 72 65 20 65 78 65 63 75 74 65 64 20 61 73 20 72 6f 6f | ted.this.way.are.executed.as.roo |
| d3b60 | 74 20 75 73 65 72 20 2d 20 74 68 69 73 20 6d 61 79 20 62 65 20 64 61 6e 67 65 72 6f 75 73 2e 20 | t.user.-.this.may.be.dangerous.. |
| d3b80 | 54 6f 67 65 74 68 65 72 20 77 69 74 68 20 3a 72 65 66 3a 60 63 6f 6d 6d 61 6e 64 2d 73 63 72 69 | Together.with.:ref:`command-scri |
| d3ba0 | 70 74 69 6e 67 60 20 74 68 69 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 66 6f 72 20 61 75 74 6f | pting`.this.can.be.used.for.auto |
| d3bc0 | 6d 61 74 69 6e 67 20 28 72 65 2d 29 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 41 6c 6c 20 74 | mating.(re-)configuration..All.t |
| d3be0 | 68 65 73 65 20 72 75 6c 65 73 20 77 69 74 68 20 4f 54 43 20 77 69 6c 6c 20 68 65 6c 70 20 74 6f | hese.rules.with.OTC.will.help.to |
| d3c00 | 20 64 65 74 65 63 74 20 61 6e 64 20 6d 69 74 69 67 61 74 65 20 72 6f 75 74 65 20 6c 65 61 6b 73 | .detect.and.mitigate.route.leaks |
| d3c20 | 20 61 6e 64 20 68 61 70 70 65 6e 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 69 66 20 6c 6f 63 | .and.happen.automatically.if.loc |
| d3c40 | 61 6c 2d 72 6f 6c 65 20 69 73 20 73 65 74 2e 00 41 6c 6c 20 74 68 6f 73 65 20 70 72 6f 74 6f 63 | al-role.is.set..All.those.protoc |
| d3c60 | 6f 6c 73 20 61 72 65 20 67 72 6f 75 70 65 64 20 75 6e 64 65 72 20 60 60 69 6e 74 65 72 66 61 63 | ols.are.grouped.under.``interfac |
| d3c80 | 65 73 20 74 75 6e 6e 65 6c 60 60 20 69 6e 20 56 79 4f 53 2e 20 4c 65 74 27 73 20 74 61 6b 65 20 | es.tunnel``.in.VyOS..Let's.take. |
| d3ca0 | 61 20 63 6c 6f 73 65 72 20 6c 6f 6f 6b 20 61 74 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 73 20 61 | a.closer.look.at.the.protocols.a |
| d3cc0 | 6e 64 20 6f 70 74 69 6f 6e 73 20 63 75 72 72 65 6e 74 6c 79 20 73 75 70 70 6f 72 74 65 64 20 62 | nd.options.currently.supported.b |
| d3ce0 | 79 20 56 79 4f 53 2e 00 41 6c 6c 20 74 72 61 66 66 69 63 20 62 65 74 77 65 65 6e 20 7a 6f 6e 65 | y.VyOS..All.traffic.between.zone |
| d3d00 | 73 20 69 73 20 61 66 66 65 63 74 65 64 20 62 79 20 65 78 69 73 74 69 6e 67 20 70 6f 6c 69 63 69 | s.is.affected.by.existing.polici |
| d3d20 | 65 73 00 41 6c 6c 20 74 72 61 66 66 69 63 20 74 6f 20 61 6e 64 20 66 72 6f 6d 20 61 6e 20 69 6e | es.All.traffic.to.and.from.an.in |
| d3d40 | 74 65 72 66 61 63 65 20 77 69 74 68 69 6e 20 61 20 7a 6f 6e 65 20 69 73 20 70 65 72 6d 69 74 74 | terface.within.a.zone.is.permitt |
| d3d60 | 65 64 2e 00 41 6c 6c 20 74 75 6e 6e 65 6c 20 73 65 73 73 69 6f 6e 73 20 63 61 6e 20 62 65 20 63 | ed..All.tunnel.sessions.can.be.c |
| d3d80 | 68 65 63 6b 65 64 20 76 69 61 3a 00 41 6c 6c 2d 41 63 74 69 76 65 20 4d 75 6c 74 69 68 6f 6d 69 | hecked.via:.All-Active.Multihomi |
| d3da0 | 6e 67 20 69 73 20 75 73 65 64 20 66 6f 72 20 72 65 64 75 6e 64 61 6e 63 79 20 61 6e 64 20 6c 6f | ng.is.used.for.redundancy.and.lo |
| d3dc0 | 61 64 20 73 68 61 72 69 6e 67 2e 20 53 65 72 76 65 72 73 20 61 72 65 20 61 74 74 61 63 68 65 64 | ad.sharing..Servers.are.attached |
| d3de0 | 20 74 6f 20 74 77 6f 20 6f 72 20 6d 6f 72 65 20 50 45 73 20 61 6e 64 20 74 68 65 20 6c 69 6e 6b | .to.two.or.more.PEs.and.the.link |
| d3e00 | 73 20 61 72 65 20 62 6f 6e 64 65 64 20 28 6c 69 6e 6b 2d 61 67 67 72 65 67 61 74 69 6f 6e 29 2e | s.are.bonded.(link-aggregation). |
| d3e20 | 20 54 68 69 73 20 67 72 6f 75 70 20 6f 66 20 73 65 72 76 65 72 20 6c 69 6e 6b 73 20 69 73 20 72 | .This.group.of.server.links.is.r |
| d3e40 | 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 61 6e 20 3a 61 62 62 72 3a 60 45 53 20 28 45 74 68 65 | eferred.to.as.an.:abbr:`ES.(Ethe |
| d3e60 | 72 6e 65 74 20 53 65 67 6d 65 6e 74 29 60 2e 00 41 6c 6c 6f 63 61 74 69 6f 6e 20 63 6c 69 65 6e | rnet.Segment)`..Allocation.clien |
| d3e80 | 74 73 20 69 70 20 61 64 64 72 65 73 73 65 73 20 62 79 20 52 41 44 49 55 53 00 41 6c 6c 6f 77 20 | ts.ip.addresses.by.RADIUS.Allow. |
| d3ea0 | 60 60 73 73 68 60 60 20 64 79 6e 61 6d 69 63 2d 70 72 6f 74 65 63 74 69 6f 6e 2e 00 41 6c 6c 6f | ``ssh``.dynamic-protection..Allo |
| d3ec0 | 77 20 61 63 63 65 73 73 20 74 6f 20 73 69 74 65 73 20 69 6e 20 61 20 64 6f 6d 61 69 6e 20 77 69 | w.access.to.sites.in.a.domain.wi |
| d3ee0 | 74 68 6f 75 74 20 72 65 74 72 69 65 76 69 6e 67 20 74 68 65 6d 20 66 72 6f 6d 20 74 68 65 20 50 | thout.retrieving.them.from.the.P |
| d3f00 | 72 6f 78 79 20 63 61 63 68 65 2e 20 53 70 65 63 69 66 79 69 6e 67 20 22 76 79 6f 73 2e 6e 65 74 | roxy.cache..Specifying."vyos.net |
| d3f20 | 22 20 77 69 6c 6c 20 61 6c 6c 6f 77 20 61 63 63 65 73 73 20 74 6f 20 76 79 6f 73 2e 6e 65 74 20 | ".will.allow.access.to.vyos.net. |
| d3f40 | 62 75 74 20 74 68 65 20 70 61 67 65 73 20 61 63 63 65 73 73 65 64 20 77 69 6c 6c 20 6e 6f 74 20 | but.the.pages.accessed.will.not. |
| d3f60 | 62 65 20 63 61 63 68 65 64 2e 20 49 74 20 75 73 65 66 75 6c 20 66 6f 72 20 77 6f 72 6b 69 6e 67 | be.cached..It.useful.for.working |
| d3f80 | 20 61 72 6f 75 6e 64 20 70 72 6f 62 6c 65 6d 73 20 77 69 74 68 20 22 49 66 2d 4d 6f 64 69 66 69 | .around.problems.with."If-Modifi |
| d3fa0 | 65 64 2d 53 69 6e 63 65 22 20 63 68 65 63 6b 69 6e 67 20 61 74 20 63 65 72 74 61 69 6e 20 73 69 | ed-Since".checking.at.certain.si |
| d3fc0 | 74 65 73 2e 00 41 6c 6c 6f 77 20 62 67 70 20 74 6f 20 6e 65 67 6f 74 69 61 74 65 20 74 68 65 20 | tes..Allow.bgp.to.negotiate.the. |
| d3fe0 | 65 78 74 65 6e 64 65 64 2d 6e 65 78 74 68 6f 70 20 63 61 70 61 62 69 6c 69 74 79 20 77 69 74 68 | extended-nexthop.capability.with |
| d4000 | 20 69 74 e2 80 99 73 20 70 65 65 72 2e 20 49 66 20 79 6f 75 20 61 72 65 20 70 65 65 72 69 6e 67 | .it...s.peer..If.you.are.peering |
| d4020 | 20 6f 76 65 72 20 61 20 49 50 76 36 20 4c 69 6e 6b 2d 4c 6f 63 61 6c 20 61 64 64 72 65 73 73 20 | .over.a.IPv6.Link-Local.address. |
| d4040 | 74 68 65 6e 20 74 68 69 73 20 63 61 70 61 62 69 6c 69 74 79 20 69 73 20 74 75 72 6e 65 64 20 6f | then.this.capability.is.turned.o |
| d4060 | 6e 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 2e 20 49 66 20 79 6f 75 20 61 72 65 20 70 65 65 72 | n.automatically..If.you.are.peer |
| d4080 | 69 6e 67 20 6f 76 65 72 20 61 20 49 50 76 36 20 47 6c 6f 62 61 6c 20 41 64 64 72 65 73 73 20 74 | ing.over.a.IPv6.Global.Address.t |
| d40a0 | 68 65 6e 20 74 75 72 6e 69 6e 67 20 6f 6e 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c | hen.turning.on.this.command.will |
| d40c0 | 20 61 6c 6c 6f 77 20 42 47 50 20 74 6f 20 69 6e 73 74 61 6c 6c 20 49 50 76 34 20 72 6f 75 74 65 | .allow.BGP.to.install.IPv4.route |
| d40e0 | 73 20 77 69 74 68 20 49 50 76 36 20 6e 65 78 74 68 6f 70 73 20 69 66 20 79 6f 75 20 64 6f 20 6e | s.with.IPv6.nexthops.if.you.do.n |
| d4100 | 6f 74 20 68 61 76 65 20 49 50 76 34 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 69 6e 74 65 72 | ot.have.IPv4.configured.on.inter |
| d4120 | 66 61 63 65 73 2e 00 41 6c 6c 6f 77 20 63 72 6f 73 73 2d 6f 72 69 67 69 6e 20 72 65 71 75 65 73 | faces..Allow.cross-origin.reques |
| d4140 | 74 73 20 66 72 6f 6d 20 60 3c 6f 72 69 67 69 6e 3e 60 2e 00 41 6c 6c 6f 77 20 65 78 70 6c 69 63 | ts.from.`<origin>`..Allow.explic |
| d4160 | 69 74 20 49 50 76 36 20 61 64 64 72 65 73 73 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 | it.IPv6.address.for.the.interfac |
| d4180 | 65 2e 00 41 6c 6c 6f 77 20 68 6f 73 74 20 6e 65 74 77 6f 72 6b 69 6e 67 20 69 6e 20 61 20 63 6f | e..Allow.host.networking.in.a.co |
| d41a0 | 6e 74 61 69 6e 65 72 2e 20 54 68 65 20 6e 65 74 77 6f 72 6b 20 73 74 61 63 6b 20 6f 66 20 74 68 | ntainer..The.network.stack.of.th |
| d41c0 | 65 20 63 6f 6e 74 61 69 6e 65 72 20 69 73 20 6e 6f 74 20 69 73 6f 6c 61 74 65 64 20 66 72 6f 6d | e.container.is.not.isolated.from |
| d41e0 | 20 74 68 65 20 68 6f 73 74 20 61 6e 64 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 68 6f 73 74 20 | .the.host.and.will.use.the.host. |
| d4200 | 49 50 2e 00 41 6c 6c 6f 77 20 6c 69 73 74 69 6e 67 20 61 64 64 69 74 69 6f 6e 61 6c 20 63 75 73 | IP..Allow.listing.additional.cus |
| d4220 | 74 6f 6d 20 64 6f 6d 61 69 6e 73 20 74 6f 20 62 65 20 62 72 6f 77 73 65 64 20 28 69 6e 20 61 64 | tom.domains.to.be.browsed.(in.ad |
| d4240 | 64 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 64 65 66 61 75 6c 74 20 60 60 6c 6f 63 61 6c 60 60 29 | dition.to.the.default.``local``) |
| d4260 | 20 73 6f 20 74 68 61 74 20 74 68 65 79 20 63 61 6e 20 62 65 20 72 65 66 6c 65 63 74 65 64 2e 00 | .so.that.they.can.be.reflected.. |
| d4280 | 41 6c 6c 6f 77 20 74 68 69 73 20 42 46 44 20 70 65 65 72 20 74 6f 20 6e 6f 74 20 62 65 20 64 69 | Allow.this.BFD.peer.to.not.be.di |
| d42a0 | 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 00 41 6c 6c 6f 77 65 64 20 76 61 6c 75 65 73 20 | rectly.connected.Allowed.values. |
| d42c0 | 66 70 72 20 54 43 50 20 66 6c 61 67 73 3a 20 60 60 53 59 4e 60 60 2c 20 60 60 41 43 4b 60 60 2c | fpr.TCP.flags:.``SYN``,.``ACK``, |
| d42e0 | 20 60 60 46 49 4e 60 60 2c 20 60 60 52 53 54 60 60 2c 20 60 60 55 52 47 60 60 2c 20 60 60 50 53 | .``FIN``,.``RST``,.``URG``,.``PS |
| d4300 | 48 60 60 2c 20 60 60 41 4c 4c 60 60 20 57 68 65 6e 20 73 70 65 63 69 66 79 69 6e 67 20 6d 6f 72 | H``,.``ALL``.When.specifying.mor |
| d4320 | 65 20 74 68 61 6e 20 6f 6e 65 20 66 6c 61 67 2c 20 66 6c 61 67 73 20 73 68 6f 75 6c 64 20 62 65 | e.than.one.flag,.flags.should.be |
| d4340 | 20 63 6f 6d 6d 61 20 73 65 70 61 72 61 74 65 64 2e 20 54 68 65 20 60 60 21 60 60 20 6e 65 67 61 | .comma.separated..The.``!``.nega |
| d4360 | 74 65 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 70 72 6f 74 6f 63 6f 6c 2e 00 41 6c 6c 6f 77 65 | te.the.selected.protocol..Allowe |
| d4380 | 64 20 76 61 6c 75 65 73 20 66 70 72 20 54 43 50 20 66 6c 61 67 73 3a 20 60 60 61 63 6b 60 60 2c | d.values.fpr.TCP.flags:.``ack``, |
| d43a0 | 20 60 60 63 77 72 60 60 2c 20 60 60 65 63 6e 60 60 2c 20 60 60 66 69 6e 60 60 2c 20 60 60 70 73 | .``cwr``,.``ecn``,.``fin``,.``ps |
| d43c0 | 68 60 60 2c 20 60 60 72 73 74 60 60 2c 20 60 60 73 79 6e 60 60 20 61 6e 64 20 60 60 75 72 67 60 | h``,.``rst``,.``syn``.and.``urg` |
| d43e0 | 60 2e 20 4d 75 6c 74 69 70 6c 65 20 76 61 6c 75 65 73 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 | `..Multiple.values.are.supported |
| d4400 | 2c 20 61 6e 64 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 73 65 6c 65 63 74 69 6f 6e 20 75 73 65 | ,.and.for.inverted.selection.use |
| d4420 | 20 60 60 6e 6f 74 60 60 2c 20 61 73 20 73 68 6f 77 6e 20 69 6e 20 74 68 65 20 65 78 61 6d 70 6c | .``not``,.as.shown.in.the.exampl |
| d4440 | 65 2e 00 41 6c 6c 6f 77 73 20 73 70 65 63 69 66 69 63 20 56 4c 41 4e 20 49 44 73 20 74 6f 20 70 | e..Allows.specific.VLAN.IDs.to.p |
| d4460 | 61 73 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 62 72 69 64 67 65 20 6d 65 6d 62 65 72 20 69 6e | ass.through.the.bridge.member.in |
| d4480 | 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 63 61 6e 20 65 69 74 68 65 72 20 62 65 20 61 6e 20 69 | terface..This.can.either.be.an.i |
| d44a0 | 6e 64 69 76 69 64 75 61 6c 20 56 4c 41 4e 20 69 64 20 6f 72 20 61 20 72 61 6e 67 65 20 6f 66 20 | ndividual.VLAN.id.or.a.range.of. |
| d44c0 | 56 4c 41 4e 20 69 64 73 20 64 65 6c 69 6d 69 74 65 64 20 62 79 20 61 20 68 79 70 68 65 6e 2e 00 | VLAN.ids.delimited.by.a.hyphen.. |
| d44e0 | 41 6c 6c 6f 77 73 20 74 6f 20 64 65 66 69 6e 65 20 55 52 4c 20 70 61 74 68 20 6d 61 74 63 68 69 | Allows.to.define.URL.path.matchi |
| d4500 | 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 61 20 73 70 65 63 69 66 69 63 20 73 65 72 76 69 63 65 2e | ng.rules.for.a.specific.service. |
| d4520 | 00 41 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6e 65 78 | .Allows.you.to.configure.the.nex |
| d4540 | 74 2d 68 6f 70 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 61 6e 20 69 6e 74 65 72 66 61 63 65 | t-hop.interface.for.an.interface |
| d4560 | 2d 62 61 73 65 64 20 49 50 76 34 20 73 74 61 74 69 63 20 72 6f 75 74 65 2e 20 60 3c 69 6e 74 65 | -based.IPv4.static.route..`<inte |
| d4580 | 72 66 61 63 65 3e 60 20 77 69 6c 6c 20 62 65 20 74 68 65 20 6e 65 78 74 2d 68 6f 70 20 69 6e 74 | rface>`.will.be.the.next-hop.int |
| d45a0 | 65 72 66 61 63 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 69 73 20 72 6f 75 74 65 64 20 66 | erface.where.traffic.is.routed.f |
| d45c0 | 6f 72 20 74 68 65 20 67 69 76 65 6e 20 60 3c 73 75 62 6e 65 74 3e 60 2e 00 41 6c 6c 6f 77 73 20 | or.the.given.`<subnet>`..Allows. |
| d45e0 | 79 6f 75 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6e 65 78 74 2d 68 6f 70 20 69 6e | you.to.configure.the.next-hop.in |
| d4600 | 74 65 72 66 61 63 65 20 66 6f 72 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2d 62 61 73 65 64 20 49 | terface.for.an.interface-based.I |
| d4620 | 50 76 36 20 73 74 61 74 69 63 20 72 6f 75 74 65 2e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 | Pv6.static.route..`<interface>`. |
| d4640 | 77 69 6c 6c 20 62 65 20 74 68 65 20 6e 65 78 74 2d 68 6f 70 20 69 6e 74 65 72 66 61 63 65 20 77 | will.be.the.next-hop.interface.w |
| d4660 | 68 65 72 65 20 74 72 61 66 66 69 63 20 69 73 20 72 6f 75 74 65 64 20 66 6f 72 20 74 68 65 20 67 | here.traffic.is.routed.for.the.g |
| d4680 | 69 76 65 6e 20 60 3c 73 75 62 6e 65 74 3e 60 2e 00 41 6c 72 65 61 64 79 20 6c 65 61 72 6e 65 64 | iven.`<subnet>`..Already.learned |
| d46a0 | 20 6b 6e 6f 77 6e 5f 68 6f 73 74 73 20 66 69 6c 65 73 20 6f 66 20 63 6c 69 65 6e 74 73 20 6e 65 | .known_hosts.files.of.clients.ne |
| d46c0 | 65 64 20 61 6e 20 75 70 64 61 74 65 20 61 73 20 74 68 65 20 70 75 62 6c 69 63 20 6b 65 79 20 77 | ed.an.update.as.the.public.key.w |
| d46e0 | 69 6c 6c 20 63 68 61 6e 67 65 2e 00 41 6c 73 6f 2c 20 2a 2a 64 65 66 61 75 6c 74 2d 61 63 74 69 | ill.change..Also,.**default-acti |
| d4700 | 6f 6e 2a 2a 20 69 73 20 61 6e 20 61 63 74 69 6f 6e 20 74 68 61 74 20 74 61 6b 65 73 20 70 6c 61 | on**.is.an.action.that.takes.pla |
| d4720 | 63 65 20 77 68 65 6e 65 76 65 72 20 61 20 70 61 63 6b 65 74 20 64 6f 65 73 20 6e 6f 74 20 6d 61 | ce.whenever.a.packet.does.not.ma |
| d4740 | 74 63 68 20 61 6e 79 20 72 75 6c 65 20 69 6e 20 69 74 27 73 20 63 68 61 69 6e 2e 20 46 6f 72 20 | tch.any.rule.in.it's.chain..For. |
| d4760 | 62 61 73 65 20 63 68 61 69 6e 73 2c 20 70 6f 73 73 69 62 6c 65 20 6f 70 74 69 6f 6e 73 20 66 6f | base.chains,.possible.options.fo |
| d4780 | 72 20 2a 2a 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 2a 2a 20 61 72 65 20 2a 2a 61 63 63 65 70 | r.**default-action**.are.**accep |
| d47a0 | 74 2a 2a 20 6f 72 20 2a 2a 64 72 6f 70 2a 2a 2e 00 41 6c 73 6f 2c 20 2a 2a 64 65 66 61 75 6c 74 | t**.or.**drop**..Also,.**default |
| d47c0 | 2d 61 63 74 69 6f 6e 2a 2a 20 69 73 20 61 6e 20 61 63 74 69 6f 6e 20 74 68 61 74 20 74 61 6b 65 | -action**.is.an.action.that.take |
| d47e0 | 73 20 70 6c 61 63 65 20 77 68 65 6e 65 76 65 72 20 61 20 70 61 63 6b 65 74 20 64 6f 65 73 20 6e | s.place.whenever.a.packet.does.n |
| d4800 | 6f 74 20 6d 61 74 63 68 20 61 6e 79 20 72 75 6c 65 20 69 6e 20 69 74 73 27 20 63 68 61 69 6e 2e | ot.match.any.rule.in.its'.chain. |
| d4820 | 20 46 6f 72 20 62 61 73 65 20 63 68 61 69 6e 73 2c 20 70 6f 73 73 69 62 6c 65 20 6f 70 74 69 6f | .For.base.chains,.possible.optio |
| d4840 | 6e 73 20 66 6f 72 20 2a 2a 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 2a 2a 20 61 72 65 20 2a 2a | ns.for.**default-action**.are.** |
| d4860 | 61 63 63 65 70 74 2a 2a 20 6f 72 20 2a 2a 64 72 6f 70 2a 2a 2e 00 41 6c 73 6f 2c 20 66 6f 72 20 | accept**.or.**drop**..Also,.for. |
| d4880 | 62 61 63 6b 77 61 72 64 73 20 63 6f 6d 70 61 74 69 62 69 6c 69 74 79 20 74 68 69 73 20 63 6f 6e | backwards.compatibility.this.con |
| d48a0 | 66 69 67 75 72 61 74 69 6f 6e 2c 20 77 68 69 63 68 20 75 73 65 73 20 67 65 6e 65 72 69 63 20 69 | figuration,.which.uses.generic.i |
| d48c0 | 6e 74 65 72 66 61 63 65 20 64 65 66 69 6e 69 74 69 6f 6e 2c 20 69 73 20 73 74 69 6c 6c 20 76 61 | nterface.definition,.is.still.va |
| d48e0 | 6c 69 64 3a 00 41 6c 73 6f 2c 20 66 6f 72 20 74 68 6f 73 65 20 77 68 6f 20 68 61 76 65 6e 27 74 | lid:.Also,.for.those.who.haven't |
| d4900 | 20 75 70 64 61 74 65 64 20 74 6f 20 6e 65 77 65 72 20 76 65 72 73 69 6f 6e 2c 20 6c 65 67 61 63 | .updated.to.newer.version,.legac |
| d4920 | 79 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 69 73 20 73 74 69 6c 6c 20 70 72 65 73 65 6e 74 | y.documentation.is.still.present |
| d4940 | 20 61 6e 64 20 76 61 6c 69 64 20 66 6f 72 20 61 6c 6c 20 73 61 67 69 74 74 61 20 76 65 72 73 69 | .and.valid.for.all.sagitta.versi |
| d4960 | 6f 6e 20 70 72 69 6f 72 20 74 6f 20 56 79 4f 53 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 | on.prior.to.VyOS.1.4-rolling-202 |
| d4980 | 33 30 38 30 34 30 35 35 37 3a 00 41 6c 73 6f 2c 20 69 66 20 61 63 74 69 6f 6e 20 69 73 20 73 65 | 308040557:.Also,.if.action.is.se |
| d49a0 | 74 20 74 6f 20 60 60 71 75 65 75 65 60 60 2c 20 75 73 65 20 6e 65 78 74 20 63 6f 6d 6d 61 6e 64 | t.to.``queue``,.use.next.command |
| d49c0 | 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 71 75 65 75 65 20 6f 70 74 69 6f 6e 73 2e 20 50 | .to.specify.the.queue.options..P |
| d49e0 | 6f 73 73 69 62 6c 65 20 6f 70 74 69 6f 6e 73 20 61 72 65 20 60 60 62 79 70 61 73 73 60 60 20 61 | ossible.options.are.``bypass``.a |
| d4a00 | 6e 64 20 60 60 66 61 6e 6f 75 74 60 60 3a 00 41 6c 73 6f 2c 20 69 6e 20 3a 72 65 66 3a 60 64 65 | nd.``fanout``:.Also,.in.:ref:`de |
| d4a20 | 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 2c 20 72 65 64 69 72 65 63 74 69 6f 6e 20 74 6f 20 6c | stination-nat`,.redirection.to.l |
| d4a40 | 6f 63 61 6c 68 6f 73 74 20 69 73 20 73 75 70 70 6f 72 74 65 64 2e 20 54 68 65 20 72 65 64 69 72 | ocalhost.is.supported..The.redir |
| d4a60 | 65 63 74 20 73 74 61 74 65 6d 65 6e 74 20 69 73 20 61 20 73 70 65 63 69 61 6c 20 66 6f 72 6d 20 | ect.statement.is.a.special.form. |
| d4a80 | 6f 66 20 64 6e 61 74 20 77 68 69 63 68 20 61 6c 77 61 79 73 20 74 72 61 6e 73 6c 61 74 65 73 20 | of.dnat.which.always.translates. |
| d4aa0 | 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 74 6f 20 74 68 65 20 6c | the.destination.address.to.the.l |
| d4ac0 | 6f 63 61 6c 20 68 6f 73 74 e2 80 99 73 20 6f 6e 65 2e 00 41 6c 73 6f 2c 20 73 70 65 63 69 66 69 | ocal.host...s.one..Also,.specifi |
| d4ae0 | 63 20 74 69 6d 65 6f 75 74 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 70 65 72 20 72 75 6c | c.timeout.can.be.defined.per.rul |
| d4b00 | 65 2e 20 49 6e 20 63 61 73 65 20 72 75 6c 65 20 67 65 74 73 20 61 20 68 69 74 2c 20 73 6f 75 72 | e..In.case.rule.gets.a.hit,.sour |
| d4b20 | 63 65 20 6f 72 20 64 65 73 74 69 6e 61 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 77 69 | ce.or.destinatination.address.wi |
| d4b40 | 6c 6c 20 62 65 20 61 64 64 65 64 20 74 6f 20 74 68 65 20 67 72 6f 75 70 2c 20 61 6e 64 20 74 68 | ll.be.added.to.the.group,.and.th |
| d4b60 | 69 73 20 65 6c 65 6d 65 6e 74 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 69 6e 20 74 68 65 20 67 72 | is.element.will.remain.in.the.gr |
| d4b80 | 6f 75 70 20 75 6e 74 69 6c 20 74 69 6d 65 6f 75 74 20 65 78 70 69 72 65 73 2e 20 49 66 20 6e 6f | oup.until.timeout.expires..If.no |
| d4ba0 | 20 74 69 6d 65 6f 75 74 20 69 73 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 65 6c | .timeout.is.defined,.then.the.el |
| d4bc0 | 65 6d 65 6e 74 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 69 6e 20 74 68 65 20 67 72 6f 75 70 20 75 | ement.will.remain.in.the.group.u |
| d4be0 | 6e 74 69 6c 20 6e 65 78 74 20 72 65 62 6f 6f 74 2c 20 6f 72 20 75 6e 74 69 6c 20 61 20 6e 65 77 | ntil.next.reboot,.or.until.a.new |
| d4c00 | 20 63 6f 6d 6d 69 74 20 74 68 61 74 20 63 68 61 6e 67 65 73 20 66 69 72 65 77 61 6c 6c 20 63 6f | .commit.that.changes.firewall.co |
| d4c20 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 64 6f 6e 65 2e 00 41 6c 73 6f 2c 20 73 70 65 63 69 | nfiguration.is.done..Also,.speci |
| d4c40 | 66 69 63 20 74 69 6d 65 6f 75 74 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 70 65 72 20 | fic.timeouts.can.be.defined.per. |
| d4c60 | 72 75 6c 65 2e 20 49 6e 20 63 61 73 65 20 72 75 6c 65 20 67 65 74 73 20 61 20 68 69 74 2c 20 61 | rule..In.case.rule.gets.a.hit,.a |
| d4c80 | 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 6e 61 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 | .source.or.destinatination.addre |
| d4ca0 | 73 73 20 77 69 6c 6c 20 62 65 20 61 64 64 65 64 20 74 6f 20 74 68 65 20 67 72 6f 75 70 2c 20 61 | ss.will.be.added.to.the.group,.a |
| d4cc0 | 6e 64 20 74 68 69 73 20 65 6c 65 6d 65 6e 74 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 69 6e 20 74 | nd.this.element.will.remain.in.t |
| d4ce0 | 68 65 20 67 72 6f 75 70 20 75 6e 74 69 6c 20 74 68 65 20 74 69 6d 65 6f 75 74 20 65 78 70 69 72 | he.group.until.the.timeout.expir |
| d4d00 | 65 73 2e 20 49 66 20 6e 6f 20 74 69 6d 65 6f 75 74 20 69 73 20 64 65 66 69 6e 65 64 2c 20 74 68 | es..If.no.timeout.is.defined,.th |
| d4d20 | 65 6e 20 74 68 65 20 65 6c 65 6d 65 6e 74 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 69 6e 20 74 68 | en.the.element.will.remain.in.th |
| d4d40 | 65 20 67 72 6f 75 70 20 75 6e 74 69 6c 20 6e 65 78 74 20 72 65 62 6f 6f 74 2c 20 6f 72 20 75 6e | e.group.until.next.reboot,.or.un |
| d4d60 | 74 69 6c 20 61 20 6e 65 77 20 63 6f 6d 6d 69 74 20 74 68 61 74 20 63 68 61 6e 67 65 73 20 66 69 | til.a.new.commit.that.changes.fi |
| d4d80 | 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 64 6f 6e 65 2e 00 41 6c | rewall.configuration.is.done..Al |
| d4da0 | 74 65 72 6e 61 74 65 20 52 6f 75 74 69 6e 67 20 54 61 62 6c 65 73 00 41 6c 74 65 72 6e 61 74 65 | ternate.Routing.Tables.Alternate |
| d4dc0 | 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 73 20 61 72 65 20 75 73 65 64 20 77 69 74 68 20 70 6f | .routing.tables.are.used.with.po |
| d4de0 | 6c 69 63 79 20 62 61 73 65 64 20 72 6f 75 74 69 6e 67 20 62 79 20 75 74 69 6c 69 7a 69 6e 67 20 | licy.based.routing.by.utilizing. |
| d4e00 | 3a 72 65 66 3a 60 76 72 66 60 2e 00 41 6c 74 65 72 6e 61 74 69 76 65 20 74 6f 20 6d 75 6c 74 69 | :ref:`vrf`..Alternative.to.multi |
| d4e20 | 63 61 73 74 2c 20 74 68 65 20 72 65 6d 6f 74 65 20 49 50 76 34 20 61 64 64 72 65 73 73 20 6f 66 | cast,.the.remote.IPv4.address.of |
| d4e40 | 20 74 68 65 20 56 58 4c 41 4e 20 74 75 6e 6e 65 6c 20 63 61 6e 20 62 65 20 73 65 74 20 64 69 72 | .the.VXLAN.tunnel.can.be.set.dir |
| d4e60 | 65 63 74 6c 79 2e 20 4c 65 74 27 73 20 63 68 61 6e 67 65 20 74 68 65 20 4d 75 6c 74 69 63 61 73 | ectly..Let's.change.the.Multicas |
| d4e80 | 74 20 65 78 61 6d 70 6c 65 20 66 72 6f 6d 20 61 62 6f 76 65 3a 00 41 6c 74 65 72 6e 61 74 69 76 | t.example.from.above:.Alternativ |
| d4ea0 | 65 6c 79 20 74 6f 20 6d 75 6c 74 69 63 61 73 74 2c 20 74 68 65 20 72 65 6d 6f 74 65 20 49 50 76 | ely.to.multicast,.the.remote.IPv |
| d4ec0 | 34 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 56 58 4c 41 4e 20 74 75 6e 6e 65 6c 20 63 61 | 4.address.of.the.VXLAN.tunnel.ca |
| d4ee0 | 6e 20 62 65 20 73 65 74 20 64 69 72 65 63 74 6c 79 2e 20 4c 65 74 27 73 20 63 68 61 6e 67 65 20 | n.be.set.directly..Let's.change. |
| d4f00 | 74 68 65 20 4d 75 6c 74 69 63 61 73 74 20 65 78 61 6d 70 6c 65 20 66 72 6f 6d 20 61 62 6f 76 65 | the.Multicast.example.from.above |
| d4f20 | 3a 00 41 6c 77 61 79 73 20 65 78 63 6c 75 64 65 20 74 68 69 73 20 61 64 64 72 65 73 73 20 66 72 | :.Always.exclude.this.address.fr |
| d4f40 | 6f 6d 20 61 6e 79 20 64 65 66 69 6e 65 64 20 72 61 6e 67 65 2e 20 54 68 69 73 20 61 64 64 72 65 | om.any.defined.range..This.addre |
| d4f60 | 73 73 20 77 69 6c 6c 20 6e 65 76 65 72 20 62 65 20 61 73 73 69 67 6e 65 64 20 62 79 20 74 68 65 | ss.will.never.be.assigned.by.the |
| d4f80 | 20 44 48 43 50 20 73 65 72 76 65 72 2e 00 41 6e 20 2a 2a 69 6e 74 65 72 66 61 63 65 20 67 72 6f | .DHCP.server..An.**interface.gro |
| d4fa0 | 75 70 2a 2a 20 72 65 70 72 65 73 65 6e 74 73 20 61 20 63 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 | up**.represents.a.collection.of. |
| d4fc0 | 69 6e 74 65 72 66 61 63 65 73 2e 00 41 6e 20 41 53 20 69 73 20 61 20 63 6f 6e 6e 65 63 74 65 64 | interfaces..An.AS.is.a.connected |
| d4fe0 | 20 67 72 6f 75 70 20 6f 66 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 49 50 20 70 72 65 66 69 78 65 | .group.of.one.or.more.IP.prefixe |
| d5000 | 73 20 72 75 6e 20 62 79 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 6e 65 74 77 6f 72 6b 20 6f 70 65 | s.run.by.one.or.more.network.ope |
| d5020 | 72 61 74 6f 72 73 20 77 68 69 63 68 20 68 61 73 20 61 20 53 49 4e 47 4c 45 20 61 6e 64 20 43 4c | rators.which.has.a.SINGLE.and.CL |
| d5040 | 45 41 52 4c 59 20 44 45 46 49 4e 45 44 20 72 6f 75 74 69 6e 67 20 70 6f 6c 69 63 79 2e 00 41 6e | EARLY.DEFINED.routing.policy..An |
| d5060 | 20 45 74 68 65 72 6e 65 74 20 53 65 67 6d 65 6e 74 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 | .Ethernet.Segment.can.be.configu |
| d5080 | 72 65 64 20 62 79 20 73 70 65 63 69 66 79 69 6e 67 20 61 20 73 79 73 74 65 6d 2d 4d 41 43 20 61 | red.by.specifying.a.system-MAC.a |
| d50a0 | 6e 64 20 61 20 6c 6f 63 61 6c 20 64 69 73 63 72 69 6d 69 6e 61 74 6f 72 20 6f 72 20 61 20 63 6f | nd.a.local.discriminator.or.a.co |
| d50c0 | 6d 70 6c 65 74 65 20 45 53 49 4e 41 4d 45 20 61 67 61 69 6e 73 74 20 74 68 65 20 62 6f 6e 64 20 | mplete.ESINAME.against.the.bond. |
| d50e0 | 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 74 68 65 20 50 45 2e 00 41 6e 20 49 50 76 34 20 54 43 50 | interface.on.the.PE..An.IPv4.TCP |
| d5100 | 20 66 69 6c 74 65 72 20 77 69 6c 6c 20 6f 6e 6c 79 20 6d 61 74 63 68 20 70 61 63 6b 65 74 73 20 | .filter.will.only.match.packets. |
| d5120 | 77 69 74 68 20 61 6e 20 49 50 76 34 20 68 65 61 64 65 72 20 6c 65 6e 67 74 68 20 6f 66 20 32 30 | with.an.IPv4.header.length.of.20 |
| d5140 | 20 62 79 74 65 73 20 28 77 68 69 63 68 20 69 73 20 74 68 65 20 6d 61 6a 6f 72 69 74 79 20 6f 66 | .bytes.(which.is.the.majority.of |
| d5160 | 20 49 50 76 34 20 70 61 63 6b 65 74 73 20 61 6e 79 77 61 79 29 2e 00 41 6e 20 53 4e 4d 50 2d 6d | .IPv4.packets.anyway)..An.SNMP-m |
| d5180 | 61 6e 61 67 65 64 20 6e 65 74 77 6f 72 6b 20 63 6f 6e 73 69 73 74 73 20 6f 66 20 74 68 72 65 65 | anaged.network.consists.of.three |
| d51a0 | 20 6b 65 79 20 63 6f 6d 70 6f 6e 65 6e 74 73 3a 00 41 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e | .key.components:.An.`<interface> |
| d51c0 | 60 20 73 70 65 63 69 66 79 69 6e 67 20 77 68 69 63 68 20 73 6c 61 76 65 20 69 73 20 74 68 65 20 | `.specifying.which.slave.is.the. |
| d51e0 | 70 72 69 6d 61 72 79 20 64 65 76 69 63 65 2e 20 54 68 65 20 73 70 65 63 69 66 69 65 64 20 64 65 | primary.device..The.specified.de |
| d5200 | 76 69 63 65 20 77 69 6c 6c 20 61 6c 77 61 79 73 20 62 65 20 74 68 65 20 61 63 74 69 76 65 20 73 | vice.will.always.be.the.active.s |
| d5220 | 6c 61 76 65 20 77 68 69 6c 65 20 69 74 20 69 73 20 61 76 61 69 6c 61 62 6c 65 2e 20 4f 6e 6c 79 | lave.while.it.is.available..Only |
| d5240 | 20 77 68 65 6e 20 74 68 65 20 70 72 69 6d 61 72 79 20 69 73 20 6f 66 66 2d 6c 69 6e 65 20 77 69 | .when.the.primary.is.off-line.wi |
| d5260 | 6c 6c 20 61 6c 74 65 72 6e 61 74 65 20 64 65 76 69 63 65 73 20 62 65 20 75 73 65 64 2e 20 54 68 | ll.alternate.devices.be.used..Th |
| d5280 | 69 73 20 69 73 20 75 73 65 66 75 6c 20 77 68 65 6e 20 6f 6e 65 20 73 6c 61 76 65 20 69 73 20 70 | is.is.useful.when.one.slave.is.p |
| d52a0 | 72 65 66 65 72 72 65 64 20 6f 76 65 72 20 61 6e 6f 74 68 65 72 2c 20 65 2e 67 2e 2c 20 77 68 65 | referred.over.another,.e.g.,.whe |
| d52c0 | 6e 20 6f 6e 65 20 73 6c 61 76 65 20 68 61 73 20 68 69 67 68 65 72 20 74 68 72 6f 75 67 68 70 75 | n.one.slave.has.higher.throughpu |
| d52e0 | 74 20 74 68 61 6e 20 61 6e 6f 74 68 65 72 2e 00 41 6e 20 61 64 64 69 74 69 6f 6e 61 6c 20 6c 61 | t.than.another..An.additional.la |
| d5300 | 79 65 72 20 6f 66 20 73 79 6d 6d 65 74 72 69 63 2d 6b 65 79 20 63 72 79 70 74 6f 20 63 61 6e 20 | yer.of.symmetric-key.crypto.can. |
| d5320 | 62 65 20 75 73 65 64 20 6f 6e 20 74 6f 70 20 6f 66 20 74 68 65 20 61 73 79 6d 6d 65 74 72 69 63 | be.used.on.top.of.the.asymmetric |
| d5340 | 20 63 72 79 70 74 6f 2e 00 41 6e 20 61 64 64 69 74 69 6f 6e 61 6c 20 6c 61 79 65 72 20 6f 66 20 | .crypto..An.additional.layer.of. |
| d5360 | 73 79 6d 6d 65 74 72 69 63 2d 6b 65 79 20 63 72 79 70 74 6f 20 63 61 6e 20 62 65 20 75 73 65 64 | symmetric-key.crypto.can.be.used |
| d5380 | 20 6f 6e 20 74 6f 70 20 6f 66 20 74 68 65 20 61 73 79 6d 6d 65 74 72 69 63 20 63 72 79 70 74 6f | .on.top.of.the.asymmetric.crypto |
| d53a0 | 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 63 72 65 | ..This.command.automatically.cre |
| d53c0 | 61 74 65 73 20 66 6f 72 20 79 6f 75 20 74 68 65 20 72 65 71 75 69 72 65 64 20 43 4c 49 20 63 6f | ates.for.you.the.required.CLI.co |
| d53e0 | 6d 6d 61 6e 64 20 74 6f 20 69 6e 73 74 61 6c 6c 20 74 68 69 73 20 50 53 4b 20 66 6f 72 20 61 20 | mmand.to.install.this.PSK.for.a. |
| d5400 | 67 69 76 65 6e 20 70 65 65 72 2e 00 41 6e 20 61 64 64 69 74 69 6f 6e 61 6c 20 6c 61 79 65 72 20 | given.peer..An.additional.layer. |
| d5420 | 6f 66 20 73 79 6d 6d 65 74 72 69 63 2d 6b 65 79 20 63 72 79 70 74 6f 20 63 61 6e 20 62 65 20 75 | of.symmetric-key.crypto.can.be.u |
| d5440 | 73 65 64 20 6f 6e 20 74 6f 70 20 6f 66 20 74 68 65 20 61 73 79 6d 6d 65 74 72 69 63 20 63 72 79 | sed.on.top.of.the.asymmetric.cry |
| d5460 | 70 74 6f 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 | pto..This.command.automatically. |
| d5480 | 63 72 65 61 74 65 73 20 74 68 65 20 72 65 71 75 69 72 65 64 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 | creates.the.required.CLI.command |
| d54a0 | 20 74 6f 20 69 6e 73 74 61 6c 6c 20 74 68 69 73 20 50 53 4b 20 66 6f 72 20 61 20 67 69 76 65 6e | .to.install.this.PSK.for.a.given |
| d54c0 | 20 70 65 65 72 2e 00 41 6e 20 61 64 64 69 74 69 6f 6e 61 6c 20 6c 61 79 65 72 20 6f 66 20 73 79 | .peer..An.additional.layer.of.sy |
| d54e0 | 6d 6d 65 74 72 69 63 2d 6b 65 79 20 63 72 79 70 74 6f 20 63 61 6e 20 62 65 20 75 73 65 64 20 6f | mmetric-key.crypto.can.be.used.o |
| d5500 | 6e 20 74 6f 70 20 6f 66 20 74 68 65 20 61 73 79 6d 6d 65 74 72 69 63 20 63 72 79 70 74 6f 2e 20 | n.top.of.the.asymmetric.crypto.. |
| d5520 | 54 68 69 73 20 69 73 20 6f 70 74 69 6f 6e 61 6c 2e 00 41 6e 20 61 64 76 61 6e 74 61 67 65 20 6f | This.is.optional..An.advantage.o |
| d5540 | 66 20 74 68 69 73 20 73 63 68 65 6d 65 20 69 73 20 74 68 61 74 20 79 6f 75 20 67 65 74 20 61 20 | f.this.scheme.is.that.you.get.a. |
| d5560 | 72 65 61 6c 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 69 74 73 20 6f 77 6e 20 61 64 64 72 | real.interface.with.its.own.addr |
| d5580 | 65 73 73 2c 20 77 68 69 63 68 20 6d 61 6b 65 73 20 69 74 20 65 61 73 69 65 72 20 74 6f 20 73 65 | ess,.which.makes.it.easier.to.se |
| d55a0 | 74 75 70 20 73 74 61 74 69 63 20 72 6f 75 74 65 73 20 6f 72 20 75 73 65 20 64 79 6e 61 6d 69 63 | tup.static.routes.or.use.dynamic |
| d55c0 | 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 77 69 74 68 6f 75 74 20 68 61 76 69 6e | .routing.protocols.without.havin |
| d55e0 | 67 20 74 6f 20 6d 6f 64 69 66 79 20 49 50 73 65 63 20 70 6f 6c 69 63 69 65 73 2e 20 54 68 65 20 | g.to.modify.IPsec.policies..The. |
| d5600 | 6f 74 68 65 72 20 61 64 76 61 6e 74 61 67 65 20 69 73 20 74 68 61 74 20 69 74 20 67 72 65 61 74 | other.advantage.is.that.it.great |
| d5620 | 6c 79 20 73 69 6d 70 6c 69 66 69 65 73 20 72 6f 75 74 65 72 20 74 6f 20 72 6f 75 74 65 72 20 63 | ly.simplifies.router.to.router.c |
| d5640 | 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 2c 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 74 72 69 63 6b | ommunication,.which.can.be.trick |
| d5660 | 79 20 77 69 74 68 20 70 6c 61 69 6e 20 49 50 73 65 63 20 62 65 63 61 75 73 65 20 74 68 65 20 65 | y.with.plain.IPsec.because.the.e |
| d5680 | 78 74 65 72 6e 61 6c 20 6f 75 74 67 6f 69 6e 67 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 | xternal.outgoing.address.of.the. |
| d56a0 | 72 6f 75 74 65 72 20 75 73 75 61 6c 6c 79 20 64 6f 65 73 6e 27 74 20 6d 61 74 63 68 20 74 68 65 | router.usually.doesn't.match.the |
| d56c0 | 20 49 50 73 65 63 20 70 6f 6c 69 63 79 20 6f 66 20 61 20 74 79 70 69 63 61 6c 20 73 69 74 65 2d | .IPsec.policy.of.a.typical.site- |
| d56e0 | 74 6f 2d 73 69 74 65 20 73 65 74 75 70 20 61 6e 64 20 79 6f 75 20 77 6f 75 6c 64 20 6e 65 65 64 | to-site.setup.and.you.would.need |
| d5700 | 20 74 6f 20 61 64 64 20 73 70 65 63 69 61 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f | .to.add.special.configuration.fo |
| d5720 | 72 20 69 74 2c 20 6f 72 20 61 64 6a 75 73 74 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 | r.it,.or.adjust.the.source.addre |
| d5740 | 73 73 20 6f 66 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 20 74 72 61 66 66 69 63 20 6f 66 20 79 6f | ss.of.the.outgoing.traffic.of.yo |
| d5760 | 75 72 20 61 70 70 6c 69 63 61 74 69 6f 6e 73 2e 20 47 52 45 2f 49 50 73 65 63 20 68 61 73 20 6e | ur.applications..GRE/IPsec.has.n |
| d5780 | 6f 20 73 75 63 68 20 70 72 6f 62 6c 65 6d 20 61 6e 64 20 69 73 20 63 6f 6d 70 6c 65 74 65 6c 79 | o.such.problem.and.is.completely |
| d57a0 | 20 74 72 61 6e 73 70 61 72 65 6e 74 20 66 6f 72 20 61 70 70 6c 69 63 61 74 69 6f 6e 73 2e 00 41 | .transparent.for.applications..A |
| d57c0 | 6e 20 61 64 76 61 6e 74 61 67 65 20 6f 66 20 74 68 69 73 20 73 63 68 65 6d 65 20 69 73 20 74 68 | n.advantage.of.this.scheme.is.th |
| d57e0 | 61 74 20 79 6f 75 20 67 65 74 20 61 20 72 65 61 6c 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 | at.you.get.a.real.interface.with |
| d5800 | 20 69 74 73 20 6f 77 6e 20 61 64 64 72 65 73 73 2c 20 77 68 69 63 68 20 6d 61 6b 65 73 20 69 74 | .its.own.address,.which.makes.it |
| d5820 | 20 65 61 73 69 65 72 20 74 6f 20 73 65 74 75 70 20 73 74 61 74 69 63 20 72 6f 75 74 65 73 20 6f | .easier.to.setup.static.routes.o |
| d5840 | 72 20 75 73 65 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 | r.use.dynamic.routing.protocols. |
| d5860 | 77 69 74 68 6f 75 74 20 68 61 76 69 6e 67 20 74 6f 20 6d 6f 64 69 66 79 20 49 50 73 65 63 20 70 | without.having.to.modify.IPsec.p |
| d5880 | 6f 6c 69 63 69 65 73 2e 20 54 68 65 20 6f 74 68 65 72 20 61 64 76 61 6e 74 61 67 65 20 69 73 20 | olicies..The.other.advantage.is. |
| d58a0 | 74 68 61 74 20 69 74 20 67 72 65 61 74 6c 79 20 73 69 6d 70 6c 69 66 69 65 73 20 72 6f 75 74 65 | that.it.greatly.simplifies.route |
| d58c0 | 72 20 74 6f 20 72 6f 75 74 65 72 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 2c 20 77 68 69 63 68 | r.to.router.communication,.which |
| d58e0 | 20 63 61 6e 20 62 65 20 74 72 69 63 6b 79 20 77 69 74 68 20 70 6c 61 69 6e 20 49 50 73 65 63 20 | .can.be.tricky.with.plain.IPsec. |
| d5900 | 62 65 63 61 75 73 65 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6f 75 74 67 6f 69 6e 67 20 61 64 | because.the.external.outgoing.ad |
| d5920 | 64 72 65 73 73 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 20 75 73 75 61 6c 6c 79 20 64 6f 65 73 | dress.of.the.router.usually.does |
| d5940 | 6e 27 74 20 6d 61 74 63 68 20 74 68 65 20 49 50 73 65 63 20 70 6f 6c 69 63 79 20 6f 66 20 74 79 | n't.match.the.IPsec.policy.of.ty |
| d5960 | 70 69 63 61 6c 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 73 65 74 75 70 20 61 6e 64 20 79 6f 75 | pical.site-to-site.setup.and.you |
| d5980 | 20 6e 65 65 64 20 74 6f 20 61 64 64 20 73 70 65 63 69 61 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 | .need.to.add.special.configurati |
| d59a0 | 6f 6e 20 66 6f 72 20 69 74 2c 20 6f 72 20 61 64 6a 75 73 74 20 74 68 65 20 73 6f 75 72 63 65 20 | on.for.it,.or.adjust.the.source. |
| d59c0 | 61 64 64 72 65 73 73 20 66 6f 72 20 6f 75 74 67 6f 69 6e 67 20 74 72 61 66 66 69 63 20 6f 66 20 | address.for.outgoing.traffic.of. |
| d59e0 | 79 6f 75 72 20 61 70 70 6c 69 63 61 74 69 6f 6e 73 2e 20 47 52 45 2f 49 50 73 65 63 20 68 61 73 | your.applications..GRE/IPsec.has |
| d5a00 | 20 6e 6f 20 73 75 63 68 20 70 72 6f 62 6c 65 6d 20 61 6e 64 20 69 73 20 63 6f 6d 70 6c 65 74 65 | .no.such.problem.and.is.complete |
| d5a20 | 6c 79 20 74 72 61 6e 73 70 61 72 65 6e 74 20 66 6f 72 20 74 68 65 20 61 70 70 6c 69 63 61 74 69 | ly.transparent.for.the.applicati |
| d5a40 | 6f 6e 73 2e 00 41 6e 20 61 67 65 6e 74 20 69 73 20 61 20 6e 65 74 77 6f 72 6b 2d 6d 61 6e 61 67 | ons..An.agent.is.a.network-manag |
| d5a60 | 65 6d 65 6e 74 20 73 6f 66 74 77 61 72 65 20 6d 6f 64 75 6c 65 20 74 68 61 74 20 72 65 73 69 64 | ement.software.module.that.resid |
| d5a80 | 65 73 20 6f 6e 20 61 20 6d 61 6e 61 67 65 64 20 64 65 76 69 63 65 2e 20 41 6e 20 61 67 65 6e 74 | es.on.a.managed.device..An.agent |
| d5aa0 | 20 68 61 73 20 6c 6f 63 61 6c 20 6b 6e 6f 77 6c 65 64 67 65 20 6f 66 20 6d 61 6e 61 67 65 6d 65 | .has.local.knowledge.of.manageme |
| d5ac0 | 6e 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 6e 64 20 74 72 61 6e 73 6c 61 74 65 73 20 74 68 | nt.information.and.translates.th |
| d5ae0 | 61 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 6f 72 20 66 72 6f 6d 20 61 6e 20 53 4e 4d | at.information.to.or.from.an.SNM |
| d5b00 | 50 2d 73 70 65 63 69 66 69 63 20 66 6f 72 6d 2e 00 41 6e 20 61 6c 74 65 72 6e 61 74 65 20 63 6f | P-specific.form..An.alternate.co |
| d5b20 | 6d 6d 61 6e 64 20 63 6f 75 6c 64 20 62 65 20 22 6d 70 6c 73 2d 74 65 20 6f 6e 22 20 28 54 72 61 | mmand.could.be."mpls-te.on".(Tra |
| d5b40 | 66 66 69 63 20 45 6e 67 69 6e 65 65 72 69 6e 67 29 00 41 6e 20 61 72 62 69 74 72 61 72 79 20 6e | ffic.Engineering).An.arbitrary.n |
| d5b60 | 65 74 6d 61 73 6b 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 6d 61 73 6b 20 61 64 | etmask.can.be.applied.to.mask.ad |
| d5b80 | 64 72 65 73 73 65 73 20 74 6f 20 6f 6e 6c 79 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 20 61 20 | dresses.to.only.match.against.a. |
| d5ba0 | 73 70 65 63 69 66 69 63 20 70 6f 72 74 69 6f 6e 2e 00 41 6e 20 61 72 62 69 74 72 61 72 79 20 6e | specific.portion..An.arbitrary.n |
| d5bc0 | 65 74 6d 61 73 6b 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 6d 61 73 6b 20 61 64 | etmask.can.be.applied.to.mask.ad |
| d5be0 | 64 72 65 73 73 65 73 20 74 6f 20 6f 6e 6c 79 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 20 61 20 | dresses.to.only.match.against.a. |
| d5c00 | 73 70 65 63 69 66 69 63 20 70 6f 72 74 69 6f 6e 2e 20 54 68 69 73 20 69 73 20 70 61 72 74 69 63 | specific.portion..This.is.partic |
| d5c20 | 75 6c 61 72 6c 79 20 75 73 65 66 75 6c 20 77 69 74 68 20 49 50 76 36 20 61 6e 64 20 61 20 7a 6f | ularly.useful.with.IPv6.and.a.zo |
| d5c40 | 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 20 61 73 20 72 75 6c 65 73 20 77 69 6c 6c 20 | ne-based.firewall.as.rules.will. |
| d5c60 | 72 65 6d 61 69 6e 20 76 61 6c 69 64 20 69 66 20 74 68 65 20 49 50 76 36 20 70 72 65 66 69 78 20 | remain.valid.if.the.IPv6.prefix. |
| d5c80 | 63 68 61 6e 67 65 73 20 61 6e 64 20 74 68 65 20 68 6f 73 74 20 70 6f 72 74 69 6f 6e 20 6f 66 20 | changes.and.the.host.portion.of. |
| d5ca0 | 73 79 73 74 65 6d 73 20 49 50 76 36 20 61 64 64 72 65 73 73 20 69 73 20 73 74 61 74 69 63 20 28 | systems.IPv6.address.is.static.( |
| d5cc0 | 66 6f 72 20 65 78 61 6d 70 6c 65 2c 20 77 69 74 68 20 53 4c 41 41 43 20 6f 72 20 60 74 6f 6b 65 | for.example,.with.SLAAC.or.`toke |
| d5ce0 | 6e 69 73 65 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 3c 68 74 74 70 73 3a 2f 2f 64 61 | nised.IPv6.addresses.<https://da |
| d5d00 | 74 61 74 72 61 63 6b 65 72 2e 69 65 74 66 2e 6f 72 67 2f 64 6f 63 2f 69 64 2f 64 72 61 66 74 2d | tatracker.ietf.org/doc/id/draft- |
| d5d20 | 63 68 6f 77 6e 2d 36 6d 61 6e 2d 74 6f 6b 65 6e 69 73 65 64 2d 69 70 76 36 2d 69 64 65 6e 74 69 | chown-6man-tokenised-ipv6-identi |
| d5d40 | 66 69 65 72 73 2d 30 32 2e 74 78 74 3e 60 5f 29 00 41 6e 20 61 72 62 69 74 72 61 72 79 20 6e 65 | fiers-02.txt>`_).An.arbitrary.ne |
| d5d60 | 74 6d 61 73 6b 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 6d 61 73 6b 20 61 64 64 | tmask.can.be.applied.to.mask.add |
| d5d80 | 72 65 73 73 65 73 20 74 6f 20 6f 6e 6c 79 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 20 61 20 73 | resses.to.only.match.against.a.s |
| d5da0 | 70 65 63 69 66 69 63 20 70 6f 72 74 69 6f 6e 2e 20 54 68 69 73 20 69 73 20 70 61 72 74 69 63 75 | pecific.portion..This.is.particu |
| d5dc0 | 6c 61 72 6c 79 20 75 73 65 66 75 6c 20 77 69 74 68 20 49 50 76 36 20 61 6e 64 20 61 20 7a 6f 6e | larly.useful.with.IPv6.and.a.zon |
| d5de0 | 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 20 61 73 20 72 75 6c 65 73 20 77 69 6c 6c 20 72 | e-based.firewall.as.rules.will.r |
| d5e00 | 65 6d 61 69 6e 20 76 61 6c 69 64 20 69 66 20 74 68 65 20 49 50 76 36 20 70 72 65 66 69 78 20 63 | emain.valid.if.the.IPv6.prefix.c |
| d5e20 | 68 61 6e 67 65 73 20 61 6e 64 20 74 68 65 20 68 6f 73 74 20 70 6f 72 74 69 6f 6e 20 6f 66 20 73 | hanges.and.the.host.portion.of.s |
| d5e40 | 79 73 74 65 6d 73 20 49 50 76 36 20 61 64 64 72 65 73 73 20 69 73 20 73 74 61 74 69 63 20 28 66 | ystems.IPv6.address.is.static.(f |
| d5e60 | 6f 72 20 65 78 61 6d 70 6c 65 2c 20 77 69 74 68 20 53 4c 41 41 43 20 6f 72 20 60 74 6f 6b 65 6e | or.example,.with.SLAAC.or.`token |
| d5e80 | 69 73 65 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 3c 68 74 74 70 73 3a 2f 2f 64 61 74 | ised.IPv6.addresses.<https://dat |
| d5ea0 | 61 74 72 61 63 6b 65 72 2e 69 65 74 66 2e 6f 72 67 2f 64 6f 63 2f 69 64 2f 64 72 61 66 74 2d 63 | atracker.ietf.org/doc/id/draft-c |
| d5ec0 | 68 6f 77 6e 2d 36 6d 61 6e 2d 74 6f 6b 65 6e 69 73 65 64 2d 69 70 76 36 2d 69 64 65 6e 74 69 66 | hown-6man-tokenised-ipv6-identif |
| d5ee0 | 69 65 72 73 2d 30 32 2e 74 78 74 3e 60 5f 29 2e 00 41 6e 20 61 72 62 69 74 72 61 72 79 20 6e 65 | iers-02.txt>`_)..An.arbitrary.ne |
| d5f00 | 74 6d 61 73 6b 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 6d 61 73 6b 20 61 64 64 | tmask.can.be.applied.to.mask.add |
| d5f20 | 72 65 73 73 65 73 20 74 6f 20 6f 6e 6c 79 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 20 61 20 73 | resses.to.only.match.against.a.s |
| d5f40 | 70 65 63 69 66 69 63 20 70 6f 72 74 69 6f 6e 2e 20 54 68 69 73 20 69 73 20 70 61 72 74 69 63 75 | pecific.portion..This.is.particu |
| d5f60 | 6c 61 72 6c 79 20 75 73 65 66 75 6c 20 77 69 74 68 20 49 50 76 36 20 61 73 20 72 75 6c 65 73 20 | larly.useful.with.IPv6.as.rules. |
| d5f80 | 77 69 6c 6c 20 72 65 6d 61 69 6e 20 76 61 6c 69 64 20 69 66 20 74 68 65 20 49 50 76 36 20 70 72 | will.remain.valid.if.the.IPv6.pr |
| d5fa0 | 65 66 69 78 20 63 68 61 6e 67 65 73 20 61 6e 64 20 74 68 65 20 68 6f 73 74 20 70 6f 72 74 69 6f | efix.changes.and.the.host.portio |
| d5fc0 | 6e 20 6f 66 20 73 79 73 74 65 6d 73 20 49 50 76 36 20 61 64 64 72 65 73 73 20 69 73 20 73 74 61 | n.of.systems.IPv6.address.is.sta |
| d5fe0 | 74 69 63 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 2c 20 77 69 74 68 20 53 4c 41 41 43 20 6f 72 20 | tic.(for.example,.with.SLAAC.or. |
| d6000 | 60 74 6f 6b 65 6e 69 73 65 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 3c 68 74 74 70 73 | `tokenised.IPv6.addresses.<https |
| d6020 | 3a 2f 2f 64 61 74 61 74 72 61 63 6b 65 72 2e 69 65 74 66 2e 6f 72 67 20 2f 64 6f 63 2f 69 64 2f | ://datatracker.ietf.org./doc/id/ |
| d6040 | 64 72 61 66 74 2d 63 68 6f 77 6e 2d 36 6d 61 6e 2d 74 6f 6b 65 6e 69 73 65 64 2d 69 70 76 36 2d | draft-chown-6man-tokenised-ipv6- |
| d6060 | 69 64 65 6e 74 69 66 69 65 72 73 2d 30 32 2e 74 78 74 3e 60 5f 29 00 41 6e 20 61 72 62 69 74 72 | identifiers-02.txt>`_).An.arbitr |
| d6080 | 61 72 79 20 6e 65 74 6d 61 73 6b 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 6d 61 | ary.netmask.can.be.applied.to.ma |
| d60a0 | 73 6b 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 6f 6e 6c 79 20 6d 61 74 63 68 20 61 67 61 69 6e | sk.addresses.to.only.match.again |
| d60c0 | 73 74 20 61 20 73 70 65 63 69 66 69 63 20 70 6f 72 74 69 6f 6e 2e 20 54 68 69 73 20 69 73 20 70 | st.a.specific.portion..This.is.p |
| d60e0 | 61 72 74 69 63 75 6c 61 72 6c 79 20 75 73 65 66 75 6c 20 77 69 74 68 20 49 50 76 36 20 61 73 20 | articularly.useful.with.IPv6.as. |
| d6100 | 72 75 6c 65 73 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 76 61 6c 69 64 20 69 66 20 74 68 65 20 49 | rules.will.remain.valid.if.the.I |
| d6120 | 50 76 36 20 70 72 65 66 69 78 20 63 68 61 6e 67 65 73 20 61 6e 64 20 74 68 65 20 68 6f 73 74 20 | Pv6.prefix.changes.and.the.host. |
| d6140 | 70 6f 72 74 69 6f 6e 20 6f 66 20 73 79 73 74 65 6d 73 20 49 50 76 36 20 61 64 64 72 65 73 73 20 | portion.of.systems.IPv6.address. |
| d6160 | 69 73 20 73 74 61 74 69 63 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 2c 20 77 69 74 68 20 53 4c 41 | is.static.(for.example,.with.SLA |
| d6180 | 41 43 20 6f 72 20 60 74 6f 6b 65 6e 69 73 65 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 | AC.or.`tokenised.IPv6.addresses. |
| d61a0 | 3c 68 74 74 70 73 3a 2f 2f 64 61 74 61 74 72 61 63 6b 65 72 2e 69 65 74 66 2e 6f 72 67 2f 64 6f | <https://datatracker.ietf.org/do |
| d61c0 | 63 2f 69 64 2f 64 72 61 66 74 2d 63 68 6f 77 6e 2d 36 6d 61 6e 2d 74 6f 6b 65 6e 69 73 65 64 2d | c/id/draft-chown-6man-tokenised- |
| d61e0 | 69 70 76 36 2d 69 64 65 6e 74 69 66 69 65 72 73 2d 30 32 2e 74 78 74 3e 60 5f 29 00 41 6e 20 62 | ipv6-identifiers-02.txt>`_).An.b |
| d6200 | 61 73 69 63 20 69 6e 74 72 6f 64 75 63 74 69 6f 6e 20 74 6f 20 7a 6f 6e 65 2d 62 61 73 65 64 20 | asic.introduction.to.zone-based. |
| d6220 | 66 69 72 65 77 61 6c 6c 73 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 60 68 65 72 65 20 3c 68 74 | firewalls.can.be.found.`here.<ht |
| d6240 | 74 70 73 3a 2f 2f 73 75 70 70 6f 72 74 2e 76 79 6f 73 2e 69 6f 2f 65 6e 2f 6b 62 2f 61 72 74 69 | tps://support.vyos.io/en/kb/arti |
| d6260 | 63 6c 65 73 2f 61 2d 70 72 69 6d 65 72 2d 74 6f 2d 7a 6f 6e 65 2d 62 61 73 65 64 2d 66 69 72 65 | cles/a-primer-to-zone-based-fire |
| d6280 | 77 61 6c 6c 3e 60 5f 2c 20 61 6e 64 20 61 6e 20 65 78 61 6d 70 6c 65 20 61 74 20 3a 72 65 66 3a | wall>`_,.and.an.example.at.:ref: |
| d62a0 | 60 65 78 61 6d 70 6c 65 73 2d 7a 6f 6e 65 2d 70 6f 6c 69 63 79 60 2e 00 41 6e 20 65 78 61 6d 70 | `examples-zone-policy`..An.examp |
| d62c0 | 6c 65 20 6f 66 20 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 73 65 6e 64 73 | le.of.a.configuration.that.sends |
| d62e0 | 20 60 60 74 65 6c 65 67 72 61 66 60 60 20 6d 65 74 72 69 63 73 20 74 6f 20 72 65 6d 6f 74 65 20 | .``telegraf``.metrics.to.remote. |
| d6300 | 60 60 49 6e 66 6c 75 78 44 42 20 32 60 60 00 41 6e 20 65 78 61 6d 70 6c 65 20 6f 66 20 63 72 65 | ``InfluxDB.2``.An.example.of.cre |
| d6320 | 61 74 69 6e 67 20 61 20 56 4c 41 4e 2d 61 77 61 72 65 20 62 72 69 64 67 65 20 69 73 20 61 73 20 | ating.a.VLAN-aware.bridge.is.as. |
| d6340 | 66 6f 6c 6c 6f 77 73 3a 00 41 6e 20 65 78 61 6d 70 6c 65 20 6f 66 20 6b 65 79 20 67 65 6e 65 72 | follows:.An.example.of.key.gener |
| d6360 | 61 74 69 6f 6e 3a 00 41 6e 20 65 78 61 6d 70 6c 65 20 6f 66 20 74 68 65 20 64 61 74 61 20 63 61 | ation:.An.example.of.the.data.ca |
| d6380 | 70 74 75 72 65 64 20 62 79 20 61 20 46 52 45 45 52 41 44 49 55 53 20 73 65 72 76 65 72 20 77 69 | ptured.by.a.FREERADIUS.server.wi |
| d63a0 | 74 68 20 73 71 6c 20 61 63 63 6f 75 6e 74 69 6e 67 3a 00 41 6e 20 65 78 61 6d 70 6c 65 3a 00 41 | th.sql.accounting:.An.example:.A |
| d63c0 | 6e 20 6f 70 74 69 6f 6e 20 74 68 61 74 20 74 61 6b 65 73 20 61 20 71 75 6f 74 65 64 20 73 74 72 | n.option.that.takes.a.quoted.str |
| d63e0 | 69 6e 67 20 69 73 20 73 65 74 20 62 79 20 72 65 70 6c 61 63 69 6e 67 20 61 6c 6c 20 71 75 6f 74 | ing.is.set.by.replacing.all.quot |
| d6400 | 65 20 63 68 61 72 61 63 74 65 72 73 20 77 69 74 68 20 74 68 65 20 73 74 72 69 6e 67 20 60 60 26 | e.characters.with.the.string.``& |
| d6420 | 71 75 6f 74 3b 60 60 20 69 6e 73 69 64 65 20 74 68 65 20 73 74 61 74 69 63 2d 6d 61 70 70 69 6e | quot;``.inside.the.static-mappin |
| d6440 | 67 2d 70 61 72 61 6d 65 74 65 72 73 20 76 61 6c 75 65 2e 20 54 68 65 20 72 65 73 75 6c 74 69 6e | g-parameters.value..The.resultin |
| d6460 | 67 20 6c 69 6e 65 20 69 6e 20 64 68 63 70 64 2e 63 6f 6e 66 20 77 69 6c 6c 20 62 65 20 60 60 6f | g.line.in.dhcpd.conf.will.be.``o |
| d6480 | 70 74 69 6f 6e 20 70 78 65 6c 69 6e 75 78 2e 63 6f 6e 66 69 67 66 69 6c 65 20 22 70 78 65 6c 69 | ption.pxelinux.configfile."pxeli |
| d64a0 | 6e 75 78 2e 63 66 67 2f 30 31 2d 30 30 2d 31 35 2d 31 37 2d 34 34 2d 32 64 2d 61 61 22 3b 60 60 | nux.cfg/01-00-15-17-44-2d-aa";`` |
| d64c0 | 2e 00 41 6e 61 6c 79 73 69 73 20 6f 6e 20 77 68 61 74 20 68 61 70 70 65 6e 73 20 66 6f 72 20 64 | ..Analysis.on.what.happens.for.d |
| d64e0 | 65 73 69 72 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 3a 00 41 6e 64 20 62 61 73 65 20 63 68 61 69 | esired.connection:.And.base.chai |
| d6500 | 6e 20 66 6f 72 20 74 72 61 66 66 69 63 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 68 65 20 72 | n.for.traffic.generated.by.the.r |
| d6520 | 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 6f 75 74 | outer.is.``set.firewall.ipv4.out |
| d6540 | 70 75 74 20 2e 2e 2e 60 60 2c 20 77 68 65 72 65 20 74 77 6f 20 73 75 62 2d 63 68 61 69 6e 73 20 | put....``,.where.two.sub-chains. |
| d6560 | 61 72 65 20 61 76 61 69 6c 61 62 6c 65 3a 20 2a 2a 66 69 6c 74 65 72 2a 2a 20 61 6e 64 20 2a 2a | are.available:.**filter**.and.** |
| d6580 | 72 61 77 2a 2a 3a 00 41 6e 64 20 62 61 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 66 66 69 | raw**:.And.base.chain.for.traffi |
| d65a0 | 63 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 | c.generated.by.the.router.is.``s |
| d65c0 | 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e | et.firewall.ipv4.output.filter.. |
| d65e0 | 2e 2e 60 60 00 41 6e 64 20 62 61 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 66 66 69 63 20 | ..``.And.base.chain.for.traffic. |
| d6600 | 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 | generated.by.the.router.is.``set |
| d6620 | 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e | .firewall.ipv6.output.filter.... |
| d6640 | 60 60 00 41 6e 64 20 62 61 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 66 66 69 63 20 67 65 | ``.And.base.chain.for.traffic.ge |
| d6660 | 6e 65 72 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 | nerated.by.the.router.is.``set.f |
| d6680 | 69 72 65 77 61 6c 6c 20 69 70 76 36 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 | irewall.ipv6.output.filter....`` |
| d66a0 | 2c 20 77 68 65 72 65 20 74 77 6f 20 73 75 62 2d 63 68 61 69 6e 73 20 61 72 65 20 61 76 61 69 6c | ,.where.two.sub-chains.are.avail |
| d66c0 | 61 62 6c 65 3a 20 2a 2a 66 69 6c 74 65 72 2a 2a 20 61 6e 64 20 2a 2a 72 61 77 2a 2a 3a 00 41 6e | able:.**filter**.and.**raw**:.An |
| d66e0 | 64 20 63 6f 6e 74 65 6e 74 20 6f 66 20 74 68 65 20 73 63 72 69 70 74 3a 00 41 6e 64 20 66 6f 72 | d.content.of.the.script:.And.for |
| d6700 | 20 69 70 76 36 3a 00 41 6e 64 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6f 72 69 67 | .ipv6:.And.for.traffic.that.orig |
| d6720 | 69 6e 61 74 65 73 20 66 72 6f 6d 20 74 68 65 20 62 72 69 64 67 65 20 69 74 73 65 6c 66 2c 20 74 | inates.from.the.bridge.itself,.t |
| d6740 | 68 65 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 6f 75 74 70 75 74 2a 2a 2c 20 62 61 73 | he.base.chain.is.**output**,.bas |
| d6760 | 65 20 63 6f 6d 6d 61 6e 64 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 | e.command.is.``set.firewall.brid |
| d6780 | 67 65 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 61 6e 64 20 74 68 65 20 | ge.output.filter....``,.and.the. |
| d67a0 | 70 61 74 68 20 69 73 3a 00 41 6e 64 20 6e 65 78 74 2c 20 73 6f 6d 65 20 63 6f 6e 66 69 67 75 72 | path.is:.And.next,.some.configur |
| d67c0 | 61 74 69 6f 6e 20 65 78 61 6d 70 6c 65 20 77 68 65 72 65 20 67 72 6f 75 70 73 20 61 72 65 20 75 | ation.example.where.groups.are.u |
| d67e0 | 73 65 64 3a 00 41 6e 64 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 3a 00 41 6e 64 20 74 | sed:.And.op-mode.commands:.And.t |
| d6800 | 68 65 20 62 61 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 66 66 69 63 20 67 65 6e 65 72 61 | he.base.chain.for.traffic.genera |
| d6820 | 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 | ted.by.the.router.is.``set.firew |
| d6840 | 61 6c 6c 20 69 70 76 34 20 6f 75 74 70 75 74 20 2e 2e 2e 60 60 2c 20 77 68 65 72 65 20 74 77 6f | all.ipv4.output....``,.where.two |
| d6860 | 20 73 75 62 2d 63 68 61 69 6e 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 3a 20 2a 2a 66 69 6c | .sub-chains.are.available:.**fil |
| d6880 | 74 65 72 2a 2a 20 61 6e 64 20 2a 2a 72 61 77 2a 2a 3a 00 41 6e 64 20 74 68 65 20 62 61 73 65 20 | ter**.and.**raw**:.And.the.base. |
| d68a0 | 63 68 61 69 6e 20 66 6f 72 20 74 72 61 66 66 69 63 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 | chain.for.traffic.generated.by.t |
| d68c0 | 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 | he.router.is.``set.firewall.ipv6 |
| d68e0 | 20 6f 75 74 70 75 74 20 2e 2e 2e 60 60 2c 20 77 68 65 72 65 20 74 77 6f 20 73 75 62 2d 63 68 61 | .output....``,.where.two.sub-cha |
| d6900 | 69 6e 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 3a 20 2a 2a 66 69 6c 74 65 72 2a 2a 20 61 6e | ins.are.available:.**filter**.an |
| d6920 | 64 20 2a 2a 72 61 77 2a 2a 3a 00 41 6e 64 20 74 68 65 20 64 69 66 66 65 72 65 6e 74 20 49 50 76 | d.**raw**:.And.the.different.IPv |
| d6940 | 34 20 2a 2a 72 65 73 65 74 2a 2a 20 63 6f 6d 6d 61 6e 64 73 20 61 76 61 69 6c 61 62 6c 65 3a 00 | 4.**reset**.commands.available:. |
| d6960 | 41 6e 64 20 74 68 65 6e 20 68 61 73 68 20 69 73 20 72 65 64 75 63 65 64 20 6d 6f 64 75 6c 6f 20 | And.then.hash.is.reduced.modulo. |
| d6980 | 73 6c 61 76 65 20 63 6f 75 6e 74 2e 00 41 6e 64 2c 20 74 6f 20 70 72 69 6e 74 20 6f 6e 6c 79 20 | slave.count..And,.to.print.only. |
| d69a0 | 62 72 69 64 67 65 20 66 69 72 65 77 61 6c 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 3a 00 41 6e 6f | bridge.firewall.information:.Ano |
| d69c0 | 74 68 65 72 20 74 65 72 6d 20 6f 66 74 65 6e 20 75 73 65 64 20 66 6f 72 20 44 4e 41 54 20 69 73 | ther.term.often.used.for.DNAT.is |
| d69e0 | 20 2a 2a 31 2d 74 6f 2d 31 20 4e 41 54 2a 2a 2e 20 46 6f 72 20 61 20 31 2d 74 6f 2d 31 20 4e 41 | .**1-to-1.NAT**..For.a.1-to-1.NA |
| d6a00 | 54 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 62 6f 74 68 20 44 4e 41 54 20 61 6e 64 20 53 | T.configuration,.both.DNAT.and.S |
| d6a20 | 4e 41 54 20 61 72 65 20 75 73 65 64 20 74 6f 20 4e 41 54 20 61 6c 6c 20 74 72 61 66 66 69 63 20 | NAT.are.used.to.NAT.all.traffic. |
| d6a40 | 66 72 6f 6d 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 61 | from.an.external.IP.address.to.a |
| d6a60 | 6e 20 69 6e 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 61 6e 64 20 76 69 63 65 2d 76 | n.internal.IP.address.and.vice-v |
| d6a80 | 65 72 73 61 2e 00 41 6e 6f 74 68 65 72 20 74 68 69 6e 67 20 74 6f 20 6b 65 65 70 20 69 6e 20 6d | ersa..Another.thing.to.keep.in.m |
| d6aa0 | 69 6e 64 20 77 69 74 68 20 4c 44 50 20 69 73 20 74 68 61 74 20 6d 75 63 68 20 6c 69 6b 65 20 42 | ind.with.LDP.is.that.much.like.B |
| d6ac0 | 47 50 2c 20 69 74 20 69 73 20 61 20 70 72 6f 74 6f 63 6f 6c 20 74 68 61 74 20 72 75 6e 73 20 6f | GP,.it.is.a.protocol.that.runs.o |
| d6ae0 | 6e 20 74 6f 70 20 6f 66 20 54 43 50 2e 20 49 74 20 68 6f 77 65 76 65 72 20 64 6f 65 73 20 6e 6f | n.top.of.TCP..It.however.does.no |
| d6b00 | 74 20 68 61 76 65 20 61 6e 20 61 62 69 6c 69 74 79 20 74 6f 20 64 6f 20 73 6f 6d 65 74 68 69 6e | t.have.an.ability.to.do.somethin |
| d6b20 | 67 20 6c 69 6b 65 20 61 20 72 65 66 72 65 73 68 20 63 61 70 61 62 69 6c 69 74 79 20 6c 69 6b 65 | g.like.a.refresh.capability.like |
| d6b40 | 20 42 47 50 73 20 72 6f 75 74 65 20 72 65 66 72 65 73 68 20 63 61 70 61 62 69 6c 69 74 79 2e 20 | .BGPs.route.refresh.capability.. |
| d6b60 | 54 68 65 72 65 66 6f 72 65 20 6f 6e 65 20 6d 69 67 68 74 20 68 61 76 65 20 74 6f 20 72 65 73 65 | Therefore.one.might.have.to.rese |
| d6b80 | 74 20 74 68 65 20 6e 65 69 67 68 62 6f 72 20 66 6f 72 20 61 20 63 61 70 61 62 69 6c 69 74 79 20 | t.the.neighbor.for.a.capability. |
| d6ba0 | 63 68 61 6e 67 65 20 6f 72 20 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 68 61 6e 67 65 | change.or.a.configuration.change |
| d6bc0 | 20 74 6f 20 77 6f 72 6b 2e 00 41 70 70 6c 65 20 69 4f 53 2f 69 50 61 64 4f 53 20 28 31 34 2e 32 | .to.work..Apple.iOS/iPadOS.(14.2 |
| d6be0 | 2b 29 00 41 70 70 6c 65 20 69 4f 53 2f 69 50 61 64 4f 53 20 65 78 70 65 63 74 73 20 74 68 65 20 | +).Apple.iOS/iPadOS.expects.the. |
| d6c00 | 73 65 72 76 65 72 20 6e 61 6d 65 20 74 6f 20 62 65 20 61 6c 73 6f 20 75 73 65 64 20 69 6e 20 74 | server.name.to.be.also.used.in.t |
| d6c20 | 68 65 20 73 65 72 76 65 72 27 73 20 63 65 72 74 69 66 69 63 61 74 65 20 63 6f 6d 6d 6f 6e 20 6e | he.server's.certificate.common.n |
| d6c40 | 61 6d 65 2c 20 73 6f 20 69 74 27 73 20 62 65 73 74 20 74 6f 20 75 73 65 20 74 68 69 73 20 44 4e | ame,.so.it's.best.to.use.this.DN |
| d6c60 | 53 20 6e 61 6d 65 20 66 6f 72 20 79 6f 75 72 20 56 50 4e 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 | S.name.for.your.VPN.connection.. |
| d6c80 | 41 70 70 6c 79 20 61 20 72 6f 75 74 65 2d 6d 61 70 20 66 69 6c 74 65 72 20 74 6f 20 72 6f 75 74 | Apply.a.route-map.filter.to.rout |
| d6ca0 | 65 73 20 66 6f 72 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 72 6f 74 6f 63 6f 6c 2e 00 41 | es.for.the.specified.protocol..A |
| d6cc0 | 70 70 6c 79 20 61 20 72 6f 75 74 65 2d 6d 61 70 20 66 69 6c 74 65 72 20 74 6f 20 72 6f 75 74 65 | pply.a.route-map.filter.to.route |
| d6ce0 | 73 20 66 6f 72 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 72 6f 74 6f 63 6f 6c 2e 20 54 68 | s.for.the.specified.protocol..Th |
| d6d00 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 63 61 6e 20 62 65 20 75 73 65 | e.following.protocols.can.be.use |
| d6d20 | 64 3a 20 61 6e 79 2c 20 62 61 62 65 6c 2c 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 65 | d:.any,.babel,.bgp,.connected,.e |
| d6d40 | 69 67 72 70 2c 20 69 73 69 73 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 | igrp,.isis,.kernel,.ospf,.rip,.s |
| d6d60 | 74 61 74 69 63 2c 20 74 61 62 6c 65 00 41 70 70 6c 79 20 61 20 72 6f 75 74 65 2d 6d 61 70 20 66 | tatic,.table.Apply.a.route-map.f |
| d6d80 | 69 6c 74 65 72 20 74 6f 20 72 6f 75 74 65 73 20 66 6f 72 20 74 68 65 20 73 70 65 63 69 66 69 65 | ilter.to.routes.for.the.specifie |
| d6da0 | 64 20 70 72 6f 74 6f 63 6f 6c 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 72 6f 74 6f 63 | d.protocol..The.following.protoc |
| d6dc0 | 6f 6c 73 20 63 61 6e 20 62 65 20 75 73 65 64 3a 20 61 6e 79 2c 20 62 61 62 65 6c 2c 20 62 67 70 | ols.can.be.used:.any,.babel,.bgp |
| d6de0 | 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 69 73 69 73 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 76 | ,.connected,.isis,.kernel,.ospfv |
| d6e00 | 33 2c 20 72 69 70 6e 67 2c 20 73 74 61 74 69 63 2c 20 74 61 62 6c 65 00 41 70 70 6c 79 20 72 6f | 3,.ripng,.static,.table.Apply.ro |
| d6e20 | 75 74 69 6e 67 20 70 6f 6c 69 63 79 20 74 6f 20 2a 2a 69 6e 62 6f 75 6e 64 2a 2a 20 64 69 72 65 | uting.policy.to.**inbound**.dire |
| d6e40 | 63 74 69 6f 6e 20 6f 66 20 6f 75 74 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 73 00 41 70 70 | ction.of.out.VLAN.interfaces.App |
| d6e60 | 6c 79 69 6e 67 20 61 20 52 75 6c 65 2d 53 65 74 20 74 6f 20 61 20 5a 6f 6e 65 00 41 70 70 6c 79 | lying.a.Rule-Set.to.a.Zone.Apply |
| d6e80 | 69 6e 67 20 61 20 52 75 6c 65 2d 53 65 74 20 74 6f 20 61 6e 20 49 6e 74 65 72 66 61 63 65 00 41 | ing.a.Rule-Set.to.an.Interface.A |
| d6ea0 | 70 70 6c 79 69 6e 67 20 61 20 74 72 61 66 66 69 63 20 70 6f 6c 69 63 79 00 41 72 65 61 20 43 6f | pplying.a.traffic.policy.Area.Co |
| d6ec0 | 6e 66 69 67 75 72 61 74 69 6f 6e 00 41 72 65 61 20 69 64 65 6e 74 69 66 69 65 72 3a 20 60 60 30 | nfiguration.Area.identifier:.``0 |
| d6ee0 | 30 30 31 60 60 20 49 53 2d 49 53 20 61 72 65 61 20 6e 75 6d 62 65 72 20 28 6e 75 6d 62 65 72 69 | 001``.IS-IS.area.number.(numberi |
| d6f00 | 63 61 6c 20 61 72 65 61 20 60 60 31 60 60 29 00 41 72 65 61 20 69 64 65 6e 74 69 66 69 65 72 3a | cal.area.``1``).Area.identifier: |
| d6f20 | 20 60 60 30 30 30 31 60 60 20 49 53 2d 49 53 20 61 72 65 61 20 6e 75 6d 62 65 72 20 28 6e 75 6d | .``0001``.IS-IS.area.number.(num |
| d6f40 | 65 72 69 63 61 6c 20 61 72 65 61 20 60 60 31 60 60 29 00 41 72 65 61 20 69 64 65 6e 74 69 66 69 | erical.area.``1``).Area.identifi |
| d6f60 | 65 72 3a 20 60 60 30 30 30 31 60 60 20 4f 70 65 6e 46 61 62 72 69 63 20 61 72 65 61 20 6e 75 6d | er:.``0001``.OpenFabric.area.num |
| d6f80 | 62 65 72 20 28 6e 75 6d 65 72 69 63 61 6c 20 61 72 65 61 20 60 60 31 60 60 29 00 41 72 67 75 6d | ber.(numerical.area.``1``).Argum |
| d6fa0 | 65 6e 74 73 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 70 61 73 73 65 64 20 74 6f 20 74 68 65 | ents.which.will.be.passed.to.the |
| d6fc0 | 20 65 78 65 63 75 74 61 62 6c 65 2e 00 41 72 69 73 74 61 20 45 4f 53 00 41 72 75 62 61 2f 48 50 | .executable..Arista.EOS.Aruba/HP |
| d6fe0 | 00 41 73 20 49 6e 74 65 72 6e 65 74 20 77 69 64 65 20 50 4d 54 55 20 64 69 73 63 6f 76 65 72 79 | .As.Internet.wide.PMTU.discovery |
| d7000 | 20 72 61 72 65 6c 79 20 77 6f 72 6b 73 2c 20 77 65 20 73 6f 6d 65 74 69 6d 65 73 20 6e 65 65 64 | .rarely.works,.we.sometimes.need |
| d7020 | 20 74 6f 20 63 6c 61 6d 70 20 6f 75 72 20 54 43 50 20 4d 53 53 20 76 61 6c 75 65 20 74 6f 20 61 | .to.clamp.our.TCP.MSS.value.to.a |
| d7040 | 20 73 70 65 63 69 66 69 63 20 76 61 6c 75 65 2e 20 54 68 69 73 20 69 73 20 61 20 66 69 65 6c 64 | .specific.value..This.is.a.field |
| d7060 | 20 69 6e 20 74 68 65 20 54 43 50 20 6f 70 74 69 6f 6e 73 20 70 61 72 74 20 6f 66 20 61 20 53 59 | .in.the.TCP.options.part.of.a.SY |
| d7080 | 4e 20 70 61 63 6b 65 74 2e 20 42 79 20 73 65 74 74 69 6e 67 20 74 68 65 20 4d 53 53 20 76 61 6c | N.packet..By.setting.the.MSS.val |
| d70a0 | 75 65 2c 20 79 6f 75 20 61 72 65 20 74 65 6c 6c 69 6e 67 20 74 68 65 20 72 65 6d 6f 74 65 20 73 | ue,.you.are.telling.the.remote.s |
| d70c0 | 69 64 65 20 75 6e 65 71 75 69 76 6f 63 61 6c 6c 79 20 27 64 6f 20 6e 6f 74 20 74 72 79 20 74 6f | ide.unequivocally.'do.not.try.to |
| d70e0 | 20 73 65 6e 64 20 6d 65 20 70 61 63 6b 65 74 73 20 62 69 67 67 65 72 20 74 68 61 6e 20 74 68 69 | .send.me.packets.bigger.than.thi |
| d7100 | 73 20 76 61 6c 75 65 27 2e 00 41 73 20 53 53 54 50 20 70 72 6f 76 69 64 65 73 20 50 50 50 20 76 | s.value'..As.SSTP.provides.PPP.v |
| d7120 | 69 61 20 61 20 53 53 4c 2f 54 4c 53 20 63 68 61 6e 6e 65 6c 20 74 68 65 20 75 73 65 20 6f 66 20 | ia.a.SSL/TLS.channel.the.use.of. |
| d7140 | 65 69 74 68 65 72 20 70 75 62 6c 69 63 61 6c 6c 79 20 73 69 67 6e 65 64 20 63 65 72 74 69 66 69 | either.publically.signed.certifi |
| d7160 | 63 61 74 65 73 20 61 73 20 77 65 6c 6c 20 61 73 20 61 20 70 72 69 76 61 74 65 20 50 4b 49 20 69 | cates.as.well.as.a.private.PKI.i |
| d7180 | 73 20 72 65 71 75 69 72 65 64 2e 00 41 73 20 53 53 54 50 20 70 72 6f 76 69 64 65 73 20 50 50 50 | s.required..As.SSTP.provides.PPP |
| d71a0 | 20 76 69 61 20 61 20 53 53 4c 2f 54 4c 53 20 63 68 61 6e 6e 65 6c 20 74 68 65 20 75 73 65 20 6f | .via.a.SSL/TLS.channel.the.use.o |
| d71c0 | 66 20 65 69 74 68 65 72 20 70 75 62 6c 69 63 6c 79 20 73 69 67 6e 65 64 20 63 65 72 74 69 66 69 | f.either.publicly.signed.certifi |
| d71e0 | 63 61 74 65 73 20 6f 72 20 70 72 69 76 61 74 65 20 50 4b 49 20 69 73 20 72 65 71 75 69 72 65 64 | cates.or.private.PKI.is.required |
| d7200 | 2e 00 41 73 20 56 79 4f 53 20 69 73 20 4c 69 6e 75 78 20 62 61 73 65 64 20 74 68 65 20 64 65 66 | ..As.VyOS.is.Linux.based.the.def |
| d7220 | 61 75 6c 74 20 70 6f 72 74 20 75 73 65 64 20 69 73 20 6e 6f 74 20 75 73 69 6e 67 20 34 37 38 39 | ault.port.used.is.not.using.4789 |
| d7240 | 20 61 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 49 41 4e 41 2d 61 73 73 69 67 6e 65 64 20 64 65 | .as.the.default.IANA-assigned.de |
| d7260 | 73 74 69 6e 61 74 69 6f 6e 20 55 44 50 20 70 6f 72 74 20 6e 75 6d 62 65 72 2e 20 49 6e 73 74 65 | stination.UDP.port.number..Inste |
| d7280 | 61 64 20 56 79 4f 53 20 75 73 65 73 20 74 68 65 20 4c 69 6e 75 78 20 64 65 66 61 75 6c 74 20 70 | ad.VyOS.uses.the.Linux.default.p |
| d72a0 | 6f 72 74 20 6f 66 20 38 34 37 32 2e 00 41 73 20 56 79 4f 53 20 69 73 20 62 61 73 65 64 20 6f 6e | ort.of.8472..As.VyOS.is.based.on |
| d72c0 | 20 4c 69 6e 75 78 20 61 6e 64 20 74 68 65 72 65 20 77 61 73 20 6e 6f 20 6f 66 66 69 63 69 61 6c | .Linux.and.there.was.no.official |
| d72e0 | 20 49 41 4e 41 20 70 6f 72 74 20 61 73 73 69 67 6e 65 64 20 66 6f 72 20 56 58 4c 41 4e 2c 20 56 | .IANA.port.assigned.for.VXLAN,.V |
| d7300 | 79 4f 53 20 75 73 65 73 20 61 20 64 65 66 61 75 6c 74 20 70 6f 72 74 20 6f 66 20 38 34 37 32 2e | yOS.uses.a.default.port.of.8472. |
| d7320 | 20 59 6f 75 20 63 61 6e 20 63 68 61 6e 67 65 20 74 68 65 20 70 6f 72 74 20 6f 6e 20 61 20 70 65 | .You.can.change.the.port.on.a.pe |
| d7340 | 72 20 56 58 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 20 62 61 73 69 73 20 74 6f 20 67 65 74 20 69 | r.VXLAN.interface.basis.to.get.i |
| d7360 | 74 20 77 6f 72 6b 69 6e 67 20 61 63 72 6f 73 73 20 6d 75 6c 74 69 70 6c 65 20 76 65 6e 64 6f 72 | t.working.across.multiple.vendor |
| d7380 | 73 2e 00 41 73 20 56 79 4f 53 20 69 73 20 62 61 73 65 64 20 6f 6e 20 4c 69 6e 75 78 20 69 74 20 | s..As.VyOS.is.based.on.Linux.it. |
| d73a0 | 6c 65 76 65 72 61 67 65 73 20 69 74 73 20 66 69 72 65 77 61 6c 6c 2e 20 54 68 65 20 4e 65 74 66 | leverages.its.firewall..The.Netf |
| d73c0 | 69 6c 74 65 72 20 70 72 6f 6a 65 63 74 20 63 72 65 61 74 65 64 20 69 70 74 61 62 6c 65 73 20 61 | ilter.project.created.iptables.a |
| d73e0 | 6e 64 20 69 74 73 20 73 75 63 63 65 73 73 6f 72 20 6e 66 74 61 62 6c 65 73 20 66 6f 72 20 74 68 | nd.its.successor.nftables.for.th |
| d7400 | 65 20 4c 69 6e 75 78 20 6b 65 72 6e 65 6c 20 74 6f 20 77 6f 72 6b 20 64 69 72 65 63 74 6c 79 20 | e.Linux.kernel.to.work.directly. |
| d7420 | 6f 6e 20 70 61 63 6b 65 74 20 64 61 74 61 20 66 6c 6f 77 73 2e 20 54 68 69 73 20 6e 6f 77 20 65 | on.packet.data.flows..This.now.e |
| d7440 | 78 74 65 6e 64 73 20 74 68 65 20 63 6f 6e 63 65 70 74 20 6f 66 20 7a 6f 6e 65 2d 62 61 73 65 64 | xtends.the.concept.of.zone-based |
| d7460 | 20 73 65 63 75 72 69 74 79 20 74 6f 20 61 6c 6c 6f 77 20 66 6f 72 20 6d 61 6e 69 70 75 6c 61 74 | .security.to.allow.for.manipulat |
| d7480 | 69 6e 67 20 74 68 65 20 64 61 74 61 20 61 74 20 6d 75 6c 74 69 70 6c 65 20 73 74 61 67 65 73 20 | ing.the.data.at.multiple.stages. |
| d74a0 | 6f 6e 63 65 20 61 63 63 65 70 74 65 64 20 62 79 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 69 6e 74 | once.accepted.by.the.network.int |
| d74c0 | 65 72 66 61 63 65 20 61 6e 64 20 74 68 65 20 64 72 69 76 65 72 20 62 65 66 6f 72 65 20 62 65 69 | erface.and.the.driver.before.bei |
| d74e0 | 6e 67 20 68 61 6e 64 65 64 20 6f 66 66 20 74 6f 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e | ng.handed.off.to.the.destination |
| d7500 | 20 28 65 2e 67 2e 2c 20 61 20 77 65 62 20 73 65 72 76 65 72 20 4f 52 20 61 6e 6f 74 68 65 72 20 | .(e.g.,.a.web.server.OR.another. |
| d7520 | 64 65 76 69 63 65 29 2e 00 41 73 20 56 79 4f 53 20 6d 61 6b 65 73 20 75 73 65 20 6f 66 20 74 68 | device)..As.VyOS.makes.use.of.th |
| d7540 | 65 20 51 4d 49 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 | e.QMI.interface.to.connect.to.th |
| d7560 | 65 20 57 57 41 4e 20 6d 6f 64 65 6d 20 63 61 72 64 73 2c 20 61 6c 73 6f 20 74 68 65 20 66 69 72 | e.WWAN.modem.cards,.also.the.fir |
| d7580 | 6d 77 61 72 65 20 63 61 6e 20 62 65 20 72 65 70 72 6f 67 72 61 6d 6d 65 64 2e 00 41 73 20 56 79 | mware.can.be.reprogrammed..As.Vy |
| d75a0 | 4f 53 20 6d 61 6b 65 73 20 75 73 65 20 6f 66 20 74 68 65 20 51 4d 49 20 69 6e 74 65 72 66 61 63 | OS.makes.use.of.the.QMI.interfac |
| d75c0 | 65 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 57 57 41 4e 20 6d 6f 64 65 6d 20 63 | e.to.connect.to.the.WWAN.modem.c |
| d75e0 | 61 72 64 73 2c 20 74 68 65 20 66 69 72 6d 77 61 72 65 20 63 61 6e 20 62 65 20 72 65 70 72 6f 67 | ards,.the.firmware.can.be.reprog |
| d7600 | 72 61 6d 6d 65 64 2e 00 41 73 20 61 20 72 65 66 65 72 65 6e 63 65 3a 20 66 6f 72 20 31 30 6d 62 | rammed..As.a.reference:.for.10mb |
| d7620 | 69 74 2f 73 20 6f 6e 20 49 6e 74 65 6c 2c 20 79 6f 75 20 6d 69 67 68 74 20 6e 65 65 64 20 61 74 | it/s.on.Intel,.you.might.need.at |
| d7640 | 20 6c 65 61 73 74 20 31 30 6b 62 79 74 65 20 62 75 66 66 65 72 20 69 66 20 79 6f 75 20 77 61 6e | .least.10kbyte.buffer.if.you.wan |
| d7660 | 74 20 74 6f 20 72 65 61 63 68 20 79 6f 75 72 20 63 6f 6e 66 69 67 75 72 65 64 20 72 61 74 65 2e | t.to.reach.your.configured.rate. |
| d7680 | 00 41 73 20 61 20 72 65 73 75 6c 74 2c 20 74 68 65 20 70 72 6f 63 65 73 73 69 6e 67 20 6f 66 20 | .As.a.result,.the.processing.of. |
| d76a0 | 65 61 63 68 20 70 61 63 6b 65 74 20 62 65 63 6f 6d 65 73 20 6d 6f 72 65 20 65 66 66 69 63 69 65 | each.packet.becomes.more.efficie |
| d76c0 | 6e 74 2c 20 70 6f 74 65 6e 74 69 61 6c 6c 79 20 6c 65 76 65 72 61 67 69 6e 67 20 68 61 72 64 77 | nt,.potentially.leveraging.hardw |
| d76e0 | 61 72 65 20 65 6e 63 72 79 70 74 69 6f 6e 20 6f 66 66 6c 6f 61 64 69 6e 67 20 73 75 70 70 6f 72 | are.encryption.offloading.suppor |
| d7700 | 74 20 61 76 61 69 6c 61 62 6c 65 20 69 6e 20 74 68 65 20 6b 65 72 6e 65 6c 2e 00 41 73 20 61 6e | t.available.in.the.kernel..As.an |
| d7720 | 20 61 6c 74 65 72 6e 61 74 69 76 65 20 74 6f 20 61 70 70 6c 79 69 6e 67 20 70 6f 6c 69 63 79 20 | .alternative.to.applying.policy. |
| d7740 | 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 64 69 72 65 63 74 6c 79 2c 20 61 20 7a 6f 6e 65 | to.an.interface.directly,.a.zone |
| d7760 | 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 20 74 | -based.firewall.can.be.created.t |
| d7780 | 6f 20 73 69 6d 70 6c 69 66 79 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 68 65 6e 20 6d 75 | o.simplify.configuration.when.mu |
| d77a0 | 6c 74 69 70 6c 65 20 69 6e 74 65 72 66 61 63 65 73 20 62 65 6c 6f 6e 67 20 74 6f 20 74 68 65 20 | ltiple.interfaces.belong.to.the. |
| d77c0 | 73 61 6d 65 20 73 65 63 75 72 69 74 79 20 7a 6f 6e 65 2e 20 49 6e 73 74 65 61 64 20 6f 66 20 61 | same.security.zone..Instead.of.a |
| d77e0 | 70 70 6c 79 69 6e 67 20 72 75 6c 65 2d 73 65 74 73 20 74 6f 20 69 6e 74 65 72 66 61 63 65 73 2c | pplying.rule-sets.to.interfaces, |
| d7800 | 20 74 68 65 79 20 61 72 65 20 61 70 70 6c 69 65 64 20 74 6f 20 73 6f 75 72 63 65 20 7a 6f 6e 65 | .they.are.applied.to.source.zone |
| d7820 | 2d 64 65 73 74 69 6e 61 74 69 6f 6e 20 7a 6f 6e 65 20 70 61 69 72 73 2e 00 41 73 20 61 6e 79 20 | -destination.zone.pairs..As.any. |
| d7840 | 6f 74 68 65 72 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 2c 20 64 79 6e 61 6d 69 63 20 66 69 | other.firewall.group,.dynamic.fi |
| d7860 | 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 69 6e 20 66 69 72 | rewall.groups.can.be.used.in.fir |
| d7880 | 65 77 61 6c 6c 20 72 75 6c 65 73 20 61 73 20 6d 61 74 63 68 69 6e 67 20 6f 70 74 69 6f 6e 73 2e | ewall.rules.as.matching.options. |
| d78a0 | 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 00 41 73 20 62 6f 74 68 20 4d 69 63 72 6f 73 6f 66 74 20 | .For.example:.As.both.Microsoft. |
| d78c0 | 57 69 6e 64 6f 77 73 20 61 6e 64 20 41 70 70 6c 65 20 69 4f 53 2f 69 50 61 64 4f 53 20 6f 6e 6c | Windows.and.Apple.iOS/iPadOS.onl |
| d78e0 | 79 20 73 75 70 70 6f 72 74 20 61 20 63 65 72 74 61 69 6e 20 73 65 74 20 6f 66 20 65 6e 63 72 79 | y.support.a.certain.set.of.encry |
| d7900 | 70 74 69 6f 6e 20 63 69 70 68 65 72 73 20 61 6e 64 20 69 6e 74 65 67 72 69 74 79 20 61 6c 67 6f | ption.ciphers.and.integrity.algo |
| d7920 | 72 69 74 68 6d 73 20 77 65 20 77 69 6c 6c 20 76 61 6c 69 64 61 74 65 20 74 68 65 20 63 6f 6e 66 | rithms.we.will.validate.the.conf |
| d7940 | 69 67 75 72 65 64 20 49 4b 45 2f 45 53 50 20 70 72 6f 70 6f 73 61 6c 73 20 61 6e 64 20 6f 6e 6c | igured.IKE/ESP.proposals.and.onl |
| d7960 | 79 20 6c 69 73 74 20 74 68 65 20 63 6f 6d 70 61 74 69 62 6c 65 20 6f 6e 65 73 20 74 6f 20 74 68 | y.list.the.compatible.ones.to.th |
| d7980 | 65 20 75 73 65 72 20 e2 80 94 20 69 66 20 6d 75 6c 74 69 70 6c 65 20 61 72 65 20 64 65 66 69 6e | e.user.....if.multiple.are.defin |
| d79a0 | 65 64 2e 20 49 66 20 74 68 65 72 65 20 61 72 65 20 6e 6f 20 6d 61 74 63 68 69 6e 67 20 70 72 6f | ed..If.there.are.no.matching.pro |
| d79c0 | 70 6f 73 61 6c 73 20 66 6f 75 6e 64 20 e2 80 94 20 77 65 20 63 61 6e 20 6e 6f 74 20 67 65 6e 65 | posals.found.....we.can.not.gene |
| d79e0 | 72 61 74 65 20 61 20 70 72 6f 66 69 6c 65 20 66 6f 72 20 79 6f 75 2e 00 41 73 20 64 65 73 63 72 | rate.a.profile.for.you..As.descr |
| d7a00 | 69 62 65 64 2c 20 66 69 72 73 74 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 65 76 61 6c 75 | ibed,.first.packet.will.be.evalu |
| d7a20 | 61 74 65 64 20 62 79 20 61 6c 6c 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 70 61 74 68 2c 20 73 | ated.by.all.the.firewall.path,.s |
| d7a40 | 6f 20 64 65 73 69 72 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 68 6f 75 6c 64 20 62 65 20 65 | o.desired.connection.should.be.e |
| d7a60 | 78 70 6c 69 63 69 74 65 6c 79 20 61 63 63 65 70 74 65 64 2e 20 53 61 6d 65 20 74 68 69 6e 67 20 | xplicitely.accepted..Same.thing. |
| d7a80 | 73 68 6f 75 6c 64 20 62 65 20 74 61 6b 65 6e 20 69 6e 74 6f 20 61 63 63 6f 75 6e 74 20 66 6f 72 | should.be.taken.into.account.for |
| d7aa0 | 20 74 72 61 66 66 69 63 20 69 6e 20 72 65 76 65 72 73 65 20 6f 72 64 65 72 2e 20 49 6e 20 6d 6f | .traffic.in.reverse.order..In.mo |
| d7ac0 | 73 74 20 63 61 73 65 73 20 73 74 61 74 65 20 70 6f 6c 69 63 69 65 73 20 61 72 65 20 75 73 65 64 | st.cases.state.policies.are.used |
| d7ae0 | 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 61 63 63 65 70 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 | .in.order.to.accept.connection.i |
| d7b00 | 6e 20 72 65 76 65 72 73 65 20 70 61 74 63 68 2e 00 41 73 20 64 65 73 63 72 69 62 65 64 2c 20 66 | n.reverse.patch..As.described,.f |
| d7b20 | 69 72 73 74 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 65 76 61 6c 75 61 74 65 64 20 62 79 | irst.packet.will.be.evaluated.by |
| d7b40 | 20 61 6c 6c 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 70 61 74 68 2c 20 73 6f 20 64 65 73 69 72 | .all.the.firewall.path,.so.desir |
| d7b60 | 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 68 6f 75 6c 64 20 62 65 20 65 78 70 6c 69 63 69 74 | ed.connection.should.be.explicit |
| d7b80 | 6c 79 20 61 63 63 65 70 74 65 64 2e 20 53 61 6d 65 20 74 68 69 6e 67 20 73 68 6f 75 6c 64 20 62 | ly.accepted..Same.thing.should.b |
| d7ba0 | 65 20 74 61 6b 65 6e 20 69 6e 74 6f 20 61 63 63 6f 75 6e 74 20 66 6f 72 20 74 72 61 66 66 69 63 | e.taken.into.account.for.traffic |
| d7bc0 | 20 69 6e 20 72 65 76 65 72 73 65 20 6f 72 64 65 72 2e 20 49 6e 20 6d 6f 73 74 20 63 61 73 65 73 | .in.reverse.order..In.most.cases |
| d7be0 | 20 73 74 61 74 65 20 70 6f 6c 69 63 69 65 73 20 61 72 65 20 75 73 65 64 20 69 6e 20 6f 72 64 65 | .state.policies.are.used.in.orde |
| d7c00 | 72 20 74 6f 20 61 63 63 65 70 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 6e 20 72 65 76 65 72 73 | r.to.accept.connection.in.revers |
| d7c20 | 65 20 70 61 74 63 68 2e 00 41 73 20 64 65 73 63 72 69 62 65 64 2c 20 74 68 65 20 66 69 72 73 74 | e.patch..As.described,.the.first |
| d7c40 | 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 65 76 61 6c 75 61 74 65 64 20 62 79 20 74 68 65 | .packet.will.be.evaluated.by.the |
| d7c60 | 20 66 69 72 65 77 61 6c 6c 20 70 61 74 68 2c 20 73 6f 20 61 20 64 65 73 69 72 65 64 20 63 6f 6e | .firewall.path,.so.a.desired.con |
| d7c80 | 6e 65 63 74 69 6f 6e 20 73 68 6f 75 6c 64 20 62 65 20 65 78 70 6c 69 63 69 74 6c 79 20 61 63 63 | nection.should.be.explicitly.acc |
| d7ca0 | 65 70 74 65 64 2e 20 53 61 6d 65 20 74 68 69 6e 67 20 73 68 6f 75 6c 64 20 62 65 20 74 61 6b 65 | epted..Same.thing.should.be.take |
| d7cc0 | 6e 20 69 6e 74 6f 20 61 63 63 6f 75 6e 74 20 66 6f 72 20 74 72 61 66 66 69 63 20 69 6e 20 72 65 | n.into.account.for.traffic.in.re |
| d7ce0 | 76 65 72 73 65 20 6f 72 64 65 72 2e 20 49 6e 20 6d 6f 73 74 20 63 61 73 65 73 20 73 74 61 74 65 | verse.order..In.most.cases.state |
| d7d00 | 20 70 6f 6c 69 63 69 65 73 20 61 72 65 20 75 73 65 64 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 61 | .policies.are.used.in.order.to.a |
| d7d20 | 63 63 65 70 74 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 6e 20 74 68 65 20 72 65 76 65 72 73 | ccept.a.connection.in.the.revers |
| d7d40 | 65 20 70 61 74 68 2e 00 41 73 20 6d 6f 72 65 20 61 6e 64 20 6d 6f 72 65 20 72 6f 75 74 65 72 73 | e.path..As.more.and.more.routers |
| d7d60 | 20 72 75 6e 20 6f 6e 20 48 79 70 65 72 76 69 73 6f 72 73 2c 20 65 78 70 65 63 69 61 6c 6c 79 20 | .run.on.Hypervisors,.expecially. |
| d7d80 | 77 69 74 68 20 61 20 3a 61 62 62 72 3a 60 4e 4f 53 20 28 4e 65 74 77 6f 72 6b 20 4f 70 65 72 61 | with.a.:abbr:`NOS.(Network.Opera |
| d7da0 | 74 69 6e 67 20 53 79 73 74 65 6d 29 60 20 61 73 20 56 79 4f 53 2c 20 69 74 20 6d 61 6b 65 73 20 | ting.System)`.as.VyOS,.it.makes. |
| d7dc0 | 66 65 77 65 72 20 61 6e 64 20 66 65 77 65 72 20 73 65 6e 73 65 20 74 6f 20 75 73 65 20 73 74 61 | fewer.and.fewer.sense.to.use.sta |
| d7de0 | 74 69 63 20 72 65 73 6f 75 72 63 65 20 62 69 6e 64 69 6e 67 73 20 6c 69 6b 65 20 60 60 73 6d 70 | tic.resource.bindings.like.``smp |
| d7e00 | 2d 61 66 66 69 6e 69 74 79 60 60 20 61 73 20 70 72 65 73 65 6e 74 20 69 6e 20 56 79 4f 53 20 31 | -affinity``.as.present.in.VyOS.1 |
| d7e20 | 2e 32 20 61 6e 64 20 65 61 72 6c 69 65 72 20 74 6f 20 70 69 6e 20 63 65 72 74 61 69 6e 20 69 6e | .2.and.earlier.to.pin.certain.in |
| d7e40 | 74 65 72 72 75 70 74 20 68 61 6e 64 6c 65 72 73 20 74 6f 20 73 70 65 63 69 66 69 63 20 43 50 55 | terrupt.handlers.to.specific.CPU |
| d7e60 | 73 2e 00 41 73 20 6e 65 74 77 6f 72 6b 20 61 64 64 72 65 73 73 20 74 72 61 6e 73 6c 61 74 69 6f | s..As.network.address.translatio |
| d7e80 | 6e 20 6d 6f 64 69 66 69 65 73 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 69 6e 66 6f 72 6d | n.modifies.the.IP.address.inform |
| d7ea0 | 61 74 69 6f 6e 20 69 6e 20 70 61 63 6b 65 74 73 2c 20 4e 41 54 20 69 6d 70 6c 65 6d 65 6e 74 61 | ation.in.packets,.NAT.implementa |
| d7ec0 | 74 69 6f 6e 73 20 6d 61 79 20 76 61 72 79 20 69 6e 20 74 68 65 69 72 20 73 70 65 63 69 66 69 63 | tions.may.vary.in.their.specific |
| d7ee0 | 20 62 65 68 61 76 69 6f 72 20 69 6e 20 76 61 72 69 6f 75 73 20 61 64 64 72 65 73 73 69 6e 67 20 | .behavior.in.various.addressing. |
| d7f00 | 63 61 73 65 73 20 61 6e 64 20 74 68 65 69 72 20 65 66 66 65 63 74 20 6f 6e 20 6e 65 74 77 6f 72 | cases.and.their.effect.on.networ |
| d7f20 | 6b 20 74 72 61 66 66 69 63 2e 20 54 68 65 20 73 70 65 63 69 66 69 63 73 20 6f 66 20 4e 41 54 20 | k.traffic..The.specifics.of.NAT. |
| d7f40 | 62 65 68 61 76 69 6f 72 20 61 72 65 20 6e 6f 74 20 63 6f 6d 6d 6f 6e 6c 79 20 64 6f 63 75 6d 65 | behavior.are.not.commonly.docume |
| d7f60 | 6e 74 65 64 20 62 79 20 76 65 6e 64 6f 72 73 20 6f 66 20 65 71 75 69 70 6d 65 6e 74 20 63 6f 6e | nted.by.vendors.of.equipment.con |
| d7f80 | 74 61 69 6e 69 6e 67 20 4e 41 54 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 73 2e 00 41 73 20 | taining.NAT.implementations..As. |
| d7fa0 | 6f 66 20 56 79 4f 53 20 31 2e 34 2c 20 4f 70 65 6e 56 50 4e 20 73 69 74 65 2d 74 6f 2d 73 69 74 | of.VyOS.1.4,.OpenVPN.site-to-sit |
| d7fc0 | 65 20 6d 6f 64 65 20 63 61 6e 20 75 73 65 20 65 69 74 68 65 72 20 70 72 65 2d 73 68 61 72 65 64 | e.mode.can.use.either.pre-shared |
| d7fe0 | 20 6b 65 79 73 20 6f 72 20 78 2e 35 30 39 20 63 65 72 74 69 66 69 63 61 74 65 73 2e 00 41 73 20 | .keys.or.x.509.certificates..As. |
| d8000 | 70 65 72 20 64 65 66 61 75 6c 74 20 61 6e 64 20 69 66 20 6e 6f 74 20 6f 74 68 65 72 77 69 73 65 | per.default.and.if.not.otherwise |
| d8020 | 20 64 65 66 69 6e 65 64 2c 20 6d 73 63 68 61 70 2d 76 32 20 69 73 20 62 65 69 6e 67 20 75 73 65 | .defined,.mschap-v2.is.being.use |
| d8040 | 64 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 6e 64 20 6d 70 70 65 20 31 32 | d.for.authentication.and.mppe.12 |
| d8060 | 38 2d 62 69 74 20 28 73 74 61 74 65 6c 65 73 73 29 20 66 6f 72 20 65 6e 63 72 79 70 74 69 6f 6e | 8-bit.(stateless).for.encryption |
| d8080 | 2e 20 49 66 20 6e 6f 20 67 61 74 65 77 61 79 2d 61 64 64 72 65 73 73 20 69 73 20 73 65 74 20 77 | ..If.no.gateway-address.is.set.w |
| d80a0 | 69 74 68 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 74 68 65 20 6c 6f 77 | ithin.the.configuration,.the.low |
| d80c0 | 65 73 74 20 49 50 20 6f 75 74 20 6f 66 20 74 68 65 20 2f 32 34 20 63 6c 69 65 6e 74 2d 69 70 2d | est.IP.out.of.the./24.client-ip- |
| d80e0 | 70 6f 6f 6c 20 69 73 20 62 65 69 6e 67 20 75 73 65 64 2e 20 46 6f 72 20 69 6e 73 74 61 6e 63 65 | pool.is.being.used..For.instance |
| d8100 | 2c 20 69 6e 20 74 68 65 20 65 78 61 6d 70 6c 65 20 62 65 6c 6f 77 20 69 74 20 77 6f 75 6c 64 20 | ,.in.the.example.below.it.would. |
| d8120 | 62 65 20 31 39 32 2e 31 36 38 2e 30 2e 31 2e 00 41 73 20 73 61 69 64 20 62 65 66 6f 72 65 2c 20 | be.192.168.0.1..As.said.before,. |
| d8140 | 6f 6e 63 65 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 20 61 72 65 20 63 72 65 61 74 65 64 | once.firewall.groups.are.created |
| d8160 | 2c 20 74 68 65 79 20 63 61 6e 20 62 65 20 72 65 66 65 72 65 6e 63 65 64 20 65 69 74 68 65 72 20 | ,.they.can.be.referenced.either. |
| d8180 | 69 6e 20 66 69 72 65 77 61 6c 6c 2c 20 6e 61 74 2c 20 6e 61 74 36 36 20 61 6e 64 2f 6f 72 20 70 | in.firewall,.nat,.nat66.and/or.p |
| d81a0 | 6f 6c 69 63 79 2d 72 6f 75 74 65 20 72 75 6c 65 73 2e 00 41 73 20 73 68 6f 77 6e 20 69 6e 20 74 | olicy-route.rules..As.shown.in.t |
| d81c0 | 68 65 20 65 78 61 6d 70 6c 65 20 61 62 6f 76 65 2c 20 6f 6e 65 20 6f 66 20 74 68 65 20 70 6f 73 | he.example.above,.one.of.the.pos |
| d81e0 | 73 69 62 69 6c 69 74 69 65 73 20 74 6f 20 6d 61 74 63 68 20 70 61 63 6b 65 74 73 20 69 73 20 62 | sibilities.to.match.packets.is.b |
| d8200 | 61 73 65 64 20 6f 6e 20 6d 61 72 6b 73 20 64 6f 6e 65 20 62 79 20 74 68 65 20 66 69 72 65 77 61 | ased.on.marks.done.by.the.firewa |
| d8220 | 6c 6c 2c 20 60 74 68 61 74 20 63 61 6e 20 67 69 76 65 20 79 6f 75 20 61 20 67 72 65 61 74 20 64 | ll,.`that.can.give.you.a.great.d |
| d8240 | 65 61 6c 20 6f 66 20 66 6c 65 78 69 62 69 6c 69 74 79 60 5f 2e 00 41 73 20 73 68 6f 77 6e 20 69 | eal.of.flexibility`_..As.shown.i |
| d8260 | 6e 20 74 68 65 20 6c 61 73 74 20 63 6f 6d 6d 61 6e 64 20 6f 66 20 74 68 65 20 65 78 61 6d 70 6c | n.the.last.command.of.the.exampl |
| d8280 | 65 20 61 62 6f 76 65 2c 20 74 68 65 20 60 71 75 65 75 65 2d 74 79 70 65 60 20 73 65 74 74 69 6e | e.above,.the.`queue-type`.settin |
| d82a0 | 67 20 61 6c 6c 6f 77 73 20 74 68 65 73 65 20 63 6f 6d 62 69 6e 61 74 69 6f 6e 73 2e 20 59 6f 75 | g.allows.these.combinations..You |
| d82c0 | 20 77 69 6c 6c 20 62 65 20 61 62 6c 65 20 74 6f 20 75 73 65 20 69 74 20 69 6e 20 6d 61 6e 79 20 | .will.be.able.to.use.it.in.many. |
| d82e0 | 70 6f 6c 69 63 69 65 73 2e 00 41 73 20 74 68 65 20 65 78 61 6d 70 6c 65 20 69 6d 61 67 65 20 62 | policies..As.the.example.image.b |
| d8300 | 65 6c 6f 77 20 73 68 6f 77 73 2c 20 74 68 65 20 64 65 76 69 63 65 20 6e 6f 77 20 6e 65 65 64 73 | elow.shows,.the.device.now.needs |
| d8320 | 20 72 75 6c 65 73 20 74 6f 20 61 6c 6c 6f 77 2f 62 6c 6f 63 6b 20 74 72 61 66 66 69 63 20 74 6f | .rules.to.allow/block.traffic.to |
| d8340 | 20 6f 72 20 66 72 6f 6d 20 74 68 65 20 73 65 72 76 69 63 65 73 20 72 75 6e 6e 69 6e 67 20 6f 6e | .or.from.the.services.running.on |
| d8360 | 20 74 68 65 20 64 65 76 69 63 65 20 74 68 61 74 20 68 61 76 65 20 6f 70 65 6e 20 63 6f 6e 6e 65 | .the.device.that.have.open.conne |
| d8380 | 63 74 69 6f 6e 73 20 6f 6e 20 74 68 61 74 20 69 6e 74 65 72 66 61 63 65 2e 00 41 73 20 74 68 65 | ctions.on.that.interface..As.the |
| d83a0 | 20 65 78 61 6d 70 6c 65 20 69 6d 61 67 65 20 62 65 6c 6f 77 20 73 68 6f 77 73 2c 20 74 68 65 20 | .example.image.below.shows,.the. |
| d83c0 | 64 65 76 69 63 65 20 77 61 73 20 63 6f 6e 66 69 67 75 72 65 64 20 77 69 74 68 20 72 75 6c 65 73 | device.was.configured.with.rules |
| d83e0 | 20 62 6c 6f 63 6b 69 6e 67 20 69 6e 62 6f 75 6e 64 20 6f 72 20 6f 75 74 62 6f 75 6e 64 20 74 72 | .blocking.inbound.or.outbound.tr |
| d8400 | 61 66 66 69 63 20 6f 6e 20 65 61 63 68 20 69 6e 74 65 72 66 61 63 65 2e 00 41 73 20 74 68 65 20 | affic.on.each.interface..As.the. |
| d8420 | 6e 61 6d 65 20 69 6d 70 6c 69 65 73 2c 20 69 74 27 73 20 49 50 76 34 20 65 6e 63 61 70 73 75 6c | name.implies,.it's.IPv4.encapsul |
| d8440 | 61 74 65 64 20 69 6e 20 49 50 76 36 2c 20 61 73 20 73 69 6d 70 6c 65 20 61 73 20 74 68 61 74 2e | ated.in.IPv6,.as.simple.as.that. |
| d8460 | 00 41 73 20 77 65 6c 6c 20 61 73 20 74 68 65 20 62 65 6c 6f 77 20 74 6f 20 61 6c 6c 6f 77 20 4e | .As.well.as.the.below.to.allow.N |
| d8480 | 41 54 2d 74 72 61 76 65 72 73 61 6c 20 28 77 68 65 6e 20 4e 41 54 20 69 73 20 64 65 74 65 63 74 | AT-traversal.(when.NAT.is.detect |
| d84a0 | 65 64 20 62 79 20 74 68 65 20 56 50 4e 20 63 6c 69 65 6e 74 2c 20 45 53 50 20 69 73 20 65 6e 63 | ed.by.the.VPN.client,.ESP.is.enc |
| d84c0 | 61 70 73 75 6c 61 74 65 64 20 69 6e 20 55 44 50 20 66 6f 72 20 4e 41 54 2d 74 72 61 76 65 72 73 | apsulated.in.UDP.for.NAT-travers |
| d84e0 | 61 6c 29 3a 00 41 73 20 77 69 74 68 20 6f 74 68 65 72 20 70 6f 6c 69 63 69 65 73 2c 20 52 6f 75 | al):.As.with.other.policies,.Rou |
| d8500 | 6e 64 2d 52 6f 62 69 6e 20 63 61 6e 20 65 6d 62 65 64 5f 20 61 6e 6f 74 68 65 72 20 70 6f 6c 69 | nd-Robin.can.embed_.another.poli |
| d8520 | 63 79 20 69 6e 74 6f 20 61 20 63 6c 61 73 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 60 60 71 75 | cy.into.a.class.through.the.``qu |
| d8540 | 65 75 65 2d 74 79 70 65 60 60 20 73 65 74 74 69 6e 67 2e 00 41 73 20 77 69 74 68 20 6f 74 68 65 | eue-type``.setting..As.with.othe |
| d8560 | 72 20 70 6f 6c 69 63 69 65 73 2c 20 53 68 61 70 65 72 20 63 61 6e 20 65 6d 62 65 64 5f 20 6f 74 | r.policies,.Shaper.can.embed_.ot |
| d8580 | 68 65 72 20 70 6f 6c 69 63 69 65 73 20 69 6e 74 6f 20 69 74 73 20 63 6c 61 73 73 65 73 20 74 68 | her.policies.into.its.classes.th |
| d85a0 | 72 6f 75 67 68 20 74 68 65 20 60 60 71 75 65 75 65 2d 74 79 70 65 60 60 20 73 65 74 74 69 6e 67 | rough.the.``queue-type``.setting |
| d85c0 | 20 61 6e 64 20 74 68 65 6e 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 69 72 20 70 61 72 61 6d 65 | .and.then.configure.their.parame |
| d85e0 | 74 65 72 73 2e 00 41 73 20 77 69 74 68 20 6f 74 68 65 72 20 70 6f 6c 69 63 69 65 73 2c 20 79 6f | ters..As.with.other.policies,.yo |
| d8600 | 75 20 63 61 6e 20 64 65 66 69 6e 65 20 64 69 66 66 65 72 65 6e 74 20 74 79 70 65 20 6f 66 20 6d | u.can.define.different.type.of.m |
| d8620 | 61 74 63 68 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 79 6f 75 72 20 63 6c 61 73 73 65 73 3a 00 | atching.rules.for.your.classes:. |
| d8640 | 41 73 20 77 69 74 68 20 6f 74 68 65 72 20 70 6f 6c 69 63 69 65 73 2c 20 79 6f 75 20 63 61 6e 20 | As.with.other.policies,.you.can. |
| d8660 | 65 6d 62 65 64 5f 20 6f 74 68 65 72 20 70 6f 6c 69 63 69 65 73 20 69 6e 74 6f 20 74 68 65 20 63 | embed_.other.policies.into.the.c |
| d8680 | 6c 61 73 73 65 73 20 28 61 6e 64 20 64 65 66 61 75 6c 74 29 20 6f 66 20 79 6f 75 72 20 50 72 69 | lasses.(and.default).of.your.Pri |
| d86a0 | 6f 72 69 74 79 20 51 75 65 75 65 20 70 6f 6c 69 63 79 20 74 68 72 6f 75 67 68 20 74 68 65 20 60 | ority.Queue.policy.through.the.` |
| d86c0 | 60 71 75 65 75 65 2d 74 79 70 65 60 60 20 73 65 74 74 69 6e 67 3a 00 41 73 20 79 6f 75 20 63 61 | `queue-type``.setting:.As.you.ca |
| d86e0 | 6e 20 73 65 65 20 69 6e 20 74 68 65 20 65 78 61 6d 70 6c 65 20 68 65 72 65 2c 20 79 6f 75 20 63 | n.see.in.the.example.here,.you.c |
| d8700 | 61 6e 20 61 73 73 69 67 6e 20 74 68 65 20 73 61 6d 65 20 72 75 6c 65 2d 73 65 74 20 74 6f 20 73 | an.assign.the.same.rule-set.to.s |
| d8720 | 65 76 65 72 61 6c 20 69 6e 74 65 72 66 61 63 65 73 2e 20 41 6e 20 69 6e 74 65 72 66 61 63 65 20 | everal.interfaces..An.interface. |
| d8740 | 63 61 6e 20 6f 6e 6c 79 20 68 61 76 65 20 6f 6e 65 20 72 75 6c 65 2d 73 65 74 20 70 65 72 20 63 | can.only.have.one.rule-set.per.c |
| d8760 | 68 61 69 6e 2e 00 41 73 20 79 6f 75 20 63 61 6e 20 73 65 65 2c 20 4c 65 61 66 32 20 61 6e 64 20 | hain..As.you.can.see,.Leaf2.and. |
| d8780 | 4c 65 61 66 33 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 61 6c 6d 6f 73 74 20 69 64 | Leaf3.configuration.is.almost.id |
| d87a0 | 65 6e 74 69 63 61 6c 2e 20 54 68 65 72 65 20 61 72 65 20 6c 6f 74 73 20 6f 66 20 63 6f 6d 6d 61 | entical..There.are.lots.of.comma |
| d87c0 | 6e 64 73 20 61 62 6f 76 65 2c 20 49 27 6c 6c 20 74 72 79 20 74 6f 20 69 6e 74 6f 20 6d 6f 72 65 | nds.above,.I'll.try.to.into.more |
| d87e0 | 20 64 65 74 61 69 6c 20 62 65 6c 6f 77 2c 20 63 6f 6d 6d 61 6e 64 20 64 65 73 63 72 69 70 74 69 | .detail.below,.command.descripti |
| d8800 | 6f 6e 73 20 61 72 65 20 70 6c 61 63 65 64 20 75 6e 64 65 72 20 74 68 65 20 63 6f 6d 6d 61 6e 64 | ons.are.placed.under.the.command |
| d8820 | 20 62 6f 78 65 73 3a 00 41 73 20 79 6f 75 20 63 61 6e 20 73 65 65 2c 20 74 68 65 20 4c 65 61 66 | .boxes:.As.you.can.see,.the.Leaf |
| d8840 | 32 20 61 6e 64 20 4c 65 61 66 33 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 61 72 65 20 61 | 2.and.Leaf3.configurations.are.a |
| d8860 | 6c 6d 6f 73 74 20 69 64 65 6e 74 69 63 61 6c 2e 20 54 68 65 72 65 20 61 72 65 20 6c 6f 74 73 20 | lmost.identical..There.are.lots. |
| d8880 | 6f 66 20 63 6f 6d 6d 61 6e 64 73 20 61 62 6f 76 65 2c 20 49 27 6c 6c 20 74 72 79 20 74 6f 20 67 | of.commands.above,.I'll.try.to.g |
| d88a0 | 6f 20 69 6e 74 6f 20 6d 6f 72 65 20 64 65 74 61 69 6c 20 62 65 6c 6f 77 2e 20 43 6f 6d 6d 61 6e | o.into.more.detail.below..Comman |
| d88c0 | 64 20 64 65 73 63 72 69 70 74 69 6f 6e 73 20 61 72 65 20 70 6c 61 63 65 64 20 75 6e 64 65 72 20 | d.descriptions.are.placed.under. |
| d88e0 | 74 68 65 20 63 6f 6d 6d 61 6e 64 20 62 6f 78 65 73 3a 00 41 73 73 69 67 6e 20 60 3c 6d 65 6d 62 | the.command.boxes:.Assign.`<memb |
| d8900 | 65 72 3e 60 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 62 72 69 64 67 65 20 60 3c 69 6e 74 65 72 | er>`.interface.to.bridge.`<inter |
| d8920 | 66 61 63 65 3e 60 2e 20 41 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 68 65 6c 70 65 72 20 77 69 6c 6c | face>`..A.completion.helper.will |
| d8940 | 20 68 65 6c 70 20 79 6f 75 20 77 69 74 68 20 61 6c 6c 20 61 6c 6c 6f 77 65 64 20 69 6e 74 65 72 | .help.you.with.all.allowed.inter |
| d8960 | 66 61 63 65 73 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 62 72 69 64 67 65 64 2e 20 54 68 69 73 | faces.which.can.be.bridged..This |
| d8980 | 20 69 6e 63 6c 75 64 65 73 20 3a 72 65 66 3a 60 65 74 68 65 72 6e 65 74 2d 69 6e 74 65 72 66 61 | .includes.:ref:`ethernet-interfa |
| d89a0 | 63 65 60 2c 20 3a 72 65 66 3a 60 62 6f 6e 64 2d 69 6e 74 65 72 66 61 63 65 60 2c 20 3a 72 65 66 | ce`,.:ref:`bond-interface`,.:ref |
| d89c0 | 3a 60 6c 32 74 70 76 33 2d 69 6e 74 65 72 66 61 63 65 60 2c 20 3a 72 65 66 3a 60 6f 70 65 6e 76 | :`l2tpv3-interface`,.:ref:`openv |
| d89e0 | 70 6e 60 2c 20 3a 72 65 66 3a 60 76 78 6c 61 6e 2d 69 6e 74 65 72 66 61 63 65 60 2c 20 3a 72 65 | pn`,.:ref:`vxlan-interface`,.:re |
| d8a00 | 66 3a 60 77 69 72 65 6c 65 73 73 2d 69 6e 74 65 72 66 61 63 65 60 2c 20 3a 72 65 66 3a 60 74 75 | f:`wireless-interface`,.:ref:`tu |
| d8a20 | 6e 6e 65 6c 2d 69 6e 74 65 72 66 61 63 65 60 20 61 6e 64 20 3a 72 65 66 3a 60 67 65 6e 65 76 65 | nnel-interface`.and.:ref:`geneve |
| d8a40 | 2d 69 6e 74 65 72 66 61 63 65 60 2e 00 41 73 73 69 67 6e 20 61 20 73 70 65 63 69 66 69 63 20 62 | -interface`..Assign.a.specific.b |
| d8a60 | 61 63 6b 65 6e 64 20 74 6f 20 61 20 72 75 6c 65 00 41 73 73 69 67 6e 20 61 20 73 74 61 74 69 63 | ackend.to.a.rule.Assign.a.static |
| d8a80 | 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 60 3c 75 73 65 72 3e 60 20 61 63 63 6f 75 6e 74 2e | .IP.address.to.`<user>`.account. |
| d8aa0 | 00 41 73 73 69 67 6e 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 | .Assign.interface.identified.by. |
| d8ac0 | 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 74 6f 20 56 52 46 20 6e 61 6d 65 64 20 60 3c 6e 61 6d | `<interface>`.to.VRF.named.`<nam |
| d8ae0 | 65 3e 60 2e 00 41 73 73 69 67 6e 20 6d 65 6d 62 65 72 20 69 6e 74 65 72 66 61 63 65 73 20 74 6f | e>`..Assign.member.interfaces.to |
| d8b00 | 20 50 6f 72 74 43 68 61 6e 6e 65 6c 00 41 73 73 69 67 6e 20 73 74 61 74 69 63 20 49 50 20 61 64 | .PortChannel.Assign.static.IP.ad |
| d8b20 | 64 72 65 73 73 20 74 6f 20 60 3c 75 73 65 72 3e 60 20 61 63 63 6f 75 6e 74 2e 00 41 73 73 69 67 | dress.to.`<user>`.account..Assig |
| d8b40 | 6e 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 74 68 69 73 20 6d 61 63 68 69 6e 65 | n.the.IP.address.to.this.machine |
| d8b60 | 20 66 6f 72 20 60 3c 74 69 6d 65 3e 60 20 73 65 63 6f 6e 64 73 2e 00 41 73 73 69 67 6e 20 74 68 | .for.`<time>`.seconds..Assign.th |
| d8b80 | 65 20 53 53 48 20 70 75 62 6c 69 63 20 6b 65 79 20 70 6f 72 74 69 6f 6e 20 60 3c 6b 65 79 3e 60 | e.SSH.public.key.portion.`<key>` |
| d8ba0 | 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 70 65 72 2d 6b 65 79 20 60 3c 69 64 65 6e 74 69 66 | .identified.by.per-key.`<identif |
| d8bc0 | 69 65 72 3e 60 20 74 6f 20 74 68 65 20 6c 6f 63 61 6c 20 75 73 65 72 20 60 3c 75 73 65 72 6e 61 | ier>`.to.the.local.user.`<userna |
| d8be0 | 6d 65 3e 60 2e 00 41 73 73 6f 63 69 61 74 65 73 20 74 68 65 20 70 72 65 76 69 6f 75 73 6c 79 20 | me>`..Associates.the.previously. |
| d8c00 | 67 65 6e 65 72 61 74 65 64 20 70 72 69 76 61 74 65 20 6b 65 79 20 74 6f 20 61 20 73 70 65 63 69 | generated.private.key.to.a.speci |
| d8c20 | 66 69 63 20 57 69 72 65 47 75 61 72 64 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 70 72 69 | fic.WireGuard.interface..The.pri |
| d8c40 | 76 61 74 65 20 6b 65 79 20 63 61 6e 20 62 65 20 67 65 6e 65 72 61 74 65 20 76 69 61 20 74 68 65 | vate.key.can.be.generate.via.the |
| d8c60 | 20 63 6f 6d 6d 61 6e 64 00 41 73 73 75 72 65 20 74 68 61 74 20 79 6f 75 72 20 66 69 72 65 77 61 | .command.Assure.that.your.firewa |
| d8c80 | 6c 6c 20 72 75 6c 65 73 20 61 6c 6c 6f 77 20 74 68 65 20 74 72 61 66 66 69 63 2c 20 69 6e 20 77 | ll.rules.allow.the.traffic,.in.w |
| d8ca0 | 68 69 63 68 20 63 61 73 65 20 79 6f 75 20 68 61 76 65 20 61 20 77 6f 72 6b 69 6e 67 20 56 50 4e | hich.case.you.have.a.working.VPN |
| d8cc0 | 20 75 73 69 6e 67 20 57 69 72 65 47 75 61 72 64 2e 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 | .using.WireGuard..Assured.Forwar |
| d8ce0 | 64 69 6e 67 28 41 46 29 20 31 31 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 | ding(AF).11.Assured.Forwarding(A |
| d8d00 | 46 29 20 31 32 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 31 33 00 | F).12.Assured.Forwarding(AF).13. |
| d8d20 | 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 32 31 00 41 73 73 75 72 65 | Assured.Forwarding(AF).21.Assure |
| d8d40 | 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 32 32 00 41 73 73 75 72 65 64 20 46 6f 72 77 | d.Forwarding(AF).22.Assured.Forw |
| d8d60 | 61 72 64 69 6e 67 28 41 46 29 20 32 33 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 | arding(AF).23.Assured.Forwarding |
| d8d80 | 28 41 46 29 20 33 31 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 33 | (AF).31.Assured.Forwarding(AF).3 |
| d8da0 | 32 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 33 33 00 41 73 73 75 | 2.Assured.Forwarding(AF).33.Assu |
| d8dc0 | 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 34 31 00 41 73 73 75 72 65 64 20 46 6f | red.Forwarding(AF).41.Assured.Fo |
| d8de0 | 72 77 61 72 64 69 6e 67 28 41 46 29 20 34 32 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 | rwarding(AF).42.Assured.Forwardi |
| d8e00 | 6e 67 28 41 46 29 20 34 33 00 41 74 20 65 76 65 72 79 20 72 6f 75 6e 64 2c 20 74 68 65 20 64 65 | ng(AF).43.At.every.round,.the.de |
| d8e20 | 66 69 63 69 74 20 63 6f 75 6e 74 65 72 20 61 64 64 73 20 74 68 65 20 71 75 61 6e 74 75 6d 20 73 | ficit.counter.adds.the.quantum.s |
| d8e40 | 6f 20 74 68 61 74 20 65 76 65 6e 20 6c 61 72 67 65 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 68 | o.that.even.large.packets.will.h |
| d8e60 | 61 76 65 20 74 68 65 69 72 20 6f 70 70 6f 72 74 75 6e 69 74 79 20 74 6f 20 62 65 20 64 65 71 75 | ave.their.opportunity.to.be.dequ |
| d8e80 | 65 75 65 64 2e 00 41 74 20 74 68 65 20 6d 6f 6d 65 6e 74 20 69 74 20 6e 6f 74 20 70 6f 73 73 69 | eued..At.the.moment.it.not.possi |
| d8ea0 | 62 6c 65 20 74 6f 20 6c 6f 6f 6b 20 61 74 20 74 68 65 20 77 68 6f 6c 65 20 66 69 72 65 77 61 6c | ble.to.look.at.the.whole.firewal |
| d8ec0 | 6c 20 6c 6f 67 20 77 69 74 68 20 56 79 4f 53 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d | l.log.with.VyOS.operational.comm |
| d8ee0 | 61 6e 64 73 2e 20 41 6c 6c 20 6c 6f 67 73 20 77 69 6c 6c 20 73 61 76 65 20 74 6f 20 60 60 2f 76 | ands..All.logs.will.save.to.``/v |
| d8f00 | 61 72 2f 6c 6f 67 73 2f 6d 65 73 73 61 67 65 73 60 60 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a | ar/logs/messages``..For.example: |
| d8f20 | 20 60 60 67 72 65 70 20 27 31 30 2e 31 30 2e 30 2e 31 30 27 20 2f 76 61 72 2f 6c 6f 67 2f 6d 65 | .``grep.'10.10.0.10'./var/log/me |
| d8f40 | 73 73 61 67 65 73 60 60 00 41 74 20 74 68 65 20 74 69 6d 65 20 6f 66 20 74 68 69 73 20 77 72 69 | ssages``.At.the.time.of.this.wri |
| d8f60 | 74 69 6e 67 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 64 69 73 70 6c 61 79 73 20 61 72 65 20 | ting.the.following.displays.are. |
| d8f80 | 73 75 70 70 6f 72 74 65 64 3a 00 41 74 20 76 65 72 79 20 6c 6f 77 20 72 61 74 65 73 20 28 62 65 | supported:.At.very.low.rates.(be |
| d8fa0 | 6c 6f 77 20 33 4d 62 69 74 29 2c 20 62 65 73 69 64 65 73 20 74 75 6e 69 6e 67 20 60 71 75 61 6e | low.3Mbit),.besides.tuning.`quan |
| d8fc0 | 74 75 6d 60 20 28 33 30 30 20 6b 65 65 70 73 20 62 65 69 6e 67 20 6f 6b 29 20 79 6f 75 20 6d 61 | tum`.(300.keeps.being.ok).you.ma |
| d8fe0 | 79 20 61 6c 73 6f 20 77 61 6e 74 20 74 6f 20 69 6e 63 72 65 61 73 65 20 60 74 61 72 67 65 74 60 | y.also.want.to.increase.`target` |
| d9000 | 20 74 6f 20 73 6f 6d 65 74 68 69 6e 67 20 6c 69 6b 65 20 31 35 6d 73 20 61 6e 64 20 69 6e 63 72 | .to.something.like.15ms.and.incr |
| d9020 | 65 61 73 65 20 60 69 6e 74 65 72 76 61 6c 60 20 74 6f 20 73 6f 6d 65 74 68 69 6e 67 20 61 72 6f | ease.`interval`.to.something.aro |
| d9040 | 75 6e 64 20 31 35 30 20 6d 73 2e 00 41 74 74 61 63 68 65 73 20 75 73 65 72 2d 64 65 66 69 6e 65 | und.150.ms..Attaches.user-define |
| d9060 | 64 20 6e 65 74 77 6f 72 6b 20 74 6f 20 61 20 63 6f 6e 74 61 69 6e 65 72 2e 20 4f 6e 6c 79 20 6f | d.network.to.a.container..Only.o |
| d9080 | 6e 65 20 6e 65 74 77 6f 72 6b 20 6d 75 73 74 20 62 65 20 73 70 65 63 69 66 69 65 64 20 61 6e 64 | ne.network.must.be.specified.and |
| d90a0 | 20 6d 75 73 74 20 61 6c 72 65 61 64 79 20 65 78 69 73 74 2e 00 41 75 74 68 65 6e 74 69 63 61 74 | .must.already.exist..Authenticat |
| d90c0 | 69 6f 6e 00 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 28 45 41 50 6f 4c 29 00 41 75 74 68 65 | ion.Authentication.(EAPoL).Authe |
| d90e0 | 6e 74 69 63 61 74 69 6f 6e 20 41 64 76 61 6e 63 65 64 20 4f 70 74 69 6f 6e 73 00 41 75 74 68 65 | ntication.Advanced.Options.Authe |
| d9100 | 6e 74 69 63 61 74 69 6f 6e 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 63 6c 69 65 6e 74 2d 69 64 2e | ntication.application.client-id. |
| d9120 | 00 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 63 6c 69 65 | .Authentication.application.clie |
| d9140 | 6e 74 2d 73 65 63 72 65 74 2e 00 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 70 70 6c 69 63 | nt-secret..Authentication.applic |
| d9160 | 61 74 69 6f 6e 20 74 65 6e 61 6e 74 2d 69 64 00 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 69 | ation.tenant-id.Authentication.i |
| d9180 | 73 20 64 6f 6e 65 20 62 79 20 75 73 69 6e 67 20 74 68 65 20 60 60 6f 70 65 6e 76 70 6e 2d 61 75 | s.done.by.using.the.``openvpn-au |
| d91a0 | 74 68 2d 6c 64 61 70 2e 73 6f 60 60 20 70 6c 75 67 69 6e 20 77 68 69 63 68 20 69 73 20 73 68 69 | th-ldap.so``.plugin.which.is.shi |
| d91c0 | 70 70 65 64 20 77 69 74 68 20 65 76 65 72 79 20 56 79 4f 53 20 69 6e 73 74 61 6c 6c 61 74 69 6f | pped.with.every.VyOS.installatio |
| d91e0 | 6e 2e 20 41 20 64 65 64 69 63 61 74 65 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 69 6c | n..A.dedicated.configuration.fil |
| d9200 | 65 20 69 73 20 72 65 71 75 69 72 65 64 2e 20 49 74 20 69 73 20 62 65 73 74 20 70 72 61 63 74 69 | e.is.required..It.is.best.practi |
| d9220 | 73 65 20 74 6f 20 73 74 6f 72 65 20 69 74 20 69 6e 20 60 60 2f 63 6f 6e 66 69 67 60 60 20 74 6f | se.to.store.it.in.``/config``.to |
| d9240 | 20 73 75 72 76 69 76 65 20 69 6d 61 67 65 20 75 70 64 61 74 65 73 00 41 75 74 68 65 6e 74 69 63 | .survive.image.updates.Authentic |
| d9260 | 61 74 69 6f 6e 20 6f 72 67 61 6e 69 7a 61 74 69 6f 6e 20 6e 61 6d 65 00 41 75 74 68 65 6e 74 69 | ation.organization.name.Authenti |
| d9280 | 63 61 74 69 6f 6e 20 74 6f 6b 65 6e 00 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 e2 80 93 20 | cation.token.Authentication..... |
| d92a0 | 74 6f 20 76 65 72 69 66 79 20 74 68 61 74 20 74 68 65 20 6d 65 73 73 61 67 65 20 69 73 20 66 72 | to.verify.that.the.message.is.fr |
| d92c0 | 6f 6d 20 61 20 76 61 6c 69 64 20 73 6f 75 72 63 65 2e 00 41 75 74 68 6f 72 69 74 61 74 69 76 65 | om.a.valid.source..Authoritative |
| d92e0 | 20 7a 6f 6e 65 73 00 41 75 74 68 6f 72 69 7a 61 74 69 6f 6e 20 74 6f 6b 65 6e 00 41 75 74 6f 6d | .zones.Authorization.token.Autom |
| d9300 | 61 74 69 63 20 56 4c 41 4e 20 43 72 65 61 74 69 6f 6e 00 41 75 74 6f 6d 61 74 69 63 20 56 4c 41 | atic.VLAN.Creation.Automatic.VLA |
| d9320 | 4e 20 63 72 65 61 74 69 6f 6e 00 41 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 63 72 65 61 74 65 20 | N.creation.Automatically.create. |
| d9340 | 42 46 44 20 73 65 73 73 69 6f 6e 20 66 6f 72 20 65 61 63 68 20 52 49 50 20 70 65 65 72 20 64 69 | BFD.session.for.each.RIP.peer.di |
| d9360 | 73 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 20 57 68 65 6e | scovered.in.this.interface..When |
| d9380 | 20 74 68 65 20 42 46 44 20 73 65 73 73 69 6f 6e 20 6d 6f 6e 69 74 6f 72 20 73 69 67 6e 61 6c 69 | .the.BFD.session.monitor.signali |
| d93a0 | 7a 65 20 74 68 61 74 20 74 68 65 20 6c 69 6e 6b 20 69 73 20 64 6f 77 6e 20 74 68 65 20 52 49 50 | ze.that.the.link.is.down.the.RIP |
| d93c0 | 20 70 65 65 72 20 69 73 20 72 65 6d 6f 76 65 64 20 61 6e 64 20 61 6c 6c 20 74 68 65 20 6c 65 61 | .peer.is.removed.and.all.the.lea |
| d93e0 | 72 6e 65 64 20 72 6f 75 74 65 73 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 61 74 | rned.routes.associated.with.that |
| d9400 | 20 70 65 65 72 20 61 72 65 20 72 65 6d 6f 76 65 64 2e 00 41 75 74 6f 6d 61 74 69 63 61 6c 6c 79 | .peer.are.removed..Automatically |
| d9420 | 20 72 65 62 6f 6f 74 20 73 79 73 74 65 6d 20 6f 6e 20 6b 65 72 6e 65 6c 20 70 61 6e 69 63 20 61 | .reboot.system.on.kernel.panic.a |
| d9440 | 66 74 65 72 20 36 30 20 73 65 63 6f 6e 64 73 2e 00 41 75 74 6f 6e 6f 6d 6f 75 73 20 53 79 73 74 | fter.60.seconds..Autonomous.Syst |
| d9460 | 65 6d 73 00 41 76 61 69 6c 61 62 6c 65 20 68 65 61 6c 74 68 20 63 68 65 63 6b 20 70 72 6f 74 6f | ems.Available.health.check.proto |
| d9480 | 63 6f 6c 73 3a 00 41 76 6f 69 64 69 6e 67 20 22 6c 65 61 6b 79 22 20 4e 41 54 00 41 7a 75 72 65 | cols:.Avoiding."leaky".NAT.Azure |
| d94a0 | 2d 64 61 74 61 2d 65 78 70 6c 6f 72 65 72 00 42 46 44 00 42 46 44 20 53 74 61 74 69 63 20 52 6f | -data-explorer.BFD.BFD.Static.Ro |
| d94c0 | 75 74 65 20 4d 6f 6e 69 74 6f 72 69 6e 67 00 42 46 44 20 73 65 6e 64 73 20 6c 6f 74 73 20 6f 66 | ute.Monitoring.BFD.sends.lots.of |
| d94e0 | 20 73 6d 61 6c 6c 20 55 44 50 20 70 61 63 6b 65 74 73 20 76 65 72 79 20 71 75 69 63 6b 6c 79 20 | .small.UDP.packets.very.quickly. |
| d9500 | 74 6f 20 65 6e 73 75 72 65 73 20 74 68 61 74 20 74 68 65 20 70 65 65 72 20 69 73 20 73 74 69 6c | to.ensures.that.the.peer.is.stil |
| d9520 | 6c 20 61 6c 69 76 65 2e 00 42 47 50 00 42 47 50 20 2d 20 41 53 20 50 61 74 68 20 50 6f 6c 69 63 | l.alive..BGP.BGP.-.AS.Path.Polic |
| d9540 | 79 00 42 47 50 20 2d 20 43 6f 6d 6d 75 6e 69 74 79 20 4c 69 73 74 00 42 47 50 20 2d 20 45 78 74 | y.BGP.-.Community.List.BGP.-.Ext |
| d9560 | 65 6e 64 65 64 20 43 6f 6d 6d 75 6e 69 74 79 20 4c 69 73 74 00 42 47 50 20 2d 20 4c 61 72 67 65 | ended.Community.List.BGP.-.Large |
| d9580 | 20 43 6f 6d 6d 75 6e 69 74 79 20 4c 69 73 74 00 42 47 50 20 45 78 61 6d 70 6c 65 00 42 47 50 20 | .Community.List.BGP.Example.BGP. |
| d95a0 | 52 6f 75 74 65 72 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 42 47 50 20 53 63 61 6c 69 6e 67 | Router.Configuration.BGP.Scaling |
| d95c0 | 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 42 47 50 20 61 67 67 72 65 67 61 74 6f 72 20 61 74 | .Configuration.BGP.aggregator.at |
| d95e0 | 74 72 69 62 75 74 65 3a 20 41 53 20 6e 75 6d 62 65 72 20 6f 72 20 49 50 20 61 64 64 72 65 73 73 | tribute:.AS.number.or.IP.address |
| d9600 | 20 6f 66 20 61 6e 20 61 67 67 72 65 67 61 74 69 6f 6e 2e 00 42 47 50 20 61 73 2d 70 61 74 68 20 | .of.an.aggregation..BGP.as-path. |
| d9620 | 6c 69 73 74 20 74 6f 20 6d 61 74 63 68 2e 00 42 47 50 20 61 74 6f 6d 69 63 20 61 67 67 72 65 67 | list.to.match..BGP.atomic.aggreg |
| d9640 | 61 74 65 20 61 74 74 72 69 62 75 74 65 2e 00 42 47 50 20 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 | ate.attribute..BGP.community-lis |
| d9660 | 74 20 74 6f 20 6d 61 74 63 68 2e 00 42 47 50 20 65 78 74 65 6e 64 65 64 20 63 6f 6d 6d 75 6e 69 | t.to.match..BGP.extended.communi |
| d9680 | 74 79 20 74 6f 20 6d 61 74 63 68 2e 00 42 47 50 20 72 6f 6c 65 73 20 61 72 65 20 64 65 66 69 6e | ty.to.match..BGP.roles.are.defin |
| d96a0 | 65 64 20 69 6e 20 52 46 43 20 3a 72 66 63 3a 60 39 32 33 34 60 20 61 6e 64 20 70 72 6f 76 69 64 | ed.in.RFC.:rfc:`9234`.and.provid |
| d96c0 | 65 20 61 6e 20 65 61 73 79 20 77 61 79 20 74 6f 20 61 64 64 20 72 6f 75 74 65 20 6c 65 61 6b 20 | e.an.easy.way.to.add.route.leak. |
| d96e0 | 70 72 65 76 65 6e 74 69 6f 6e 2c 20 64 65 74 65 63 74 69 6f 6e 20 61 6e 64 20 6d 69 74 69 67 61 | prevention,.detection.and.mitiga |
| d9700 | 74 69 6f 6e 2e 20 54 68 65 20 6c 6f 63 61 6c 20 52 6f 6c 65 20 76 61 6c 75 65 20 69 73 20 6e 65 | tion..The.local.Role.value.is.ne |
| d9720 | 67 6f 74 69 61 74 65 64 20 77 69 74 68 20 74 68 65 20 6e 65 77 20 42 47 50 20 52 6f 6c 65 20 63 | gotiated.with.the.new.BGP.Role.c |
| d9740 | 61 70 61 62 69 6c 69 74 79 20 77 68 69 63 68 20 68 61 73 20 61 20 62 75 69 6c 74 2d 69 6e 20 63 | apability.which.has.a.built-in.c |
| d9760 | 68 65 63 6b 20 6f 66 20 74 68 65 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e 67 20 76 61 6c 75 65 2e | heck.of.the.corresponding.value. |
| d9780 | 20 49 6e 20 63 61 73 65 20 6f 66 20 61 20 6d 69 73 6d 61 74 63 68 20 74 68 65 20 6e 65 77 20 4f | .In.case.of.a.mismatch.the.new.O |
| d97a0 | 50 45 4e 20 52 6f 6c 65 73 20 4d 69 73 6d 61 74 63 68 20 4e 6f 74 69 66 69 63 61 74 69 6f 6e 20 | PEN.Roles.Mismatch.Notification. |
| d97c0 | 3c 32 2c 20 31 31 3e 20 77 6f 75 6c 64 20 62 65 20 73 65 6e 74 2e 20 54 68 65 20 63 6f 72 72 65 | <2,.11>.would.be.sent..The.corre |
| d97e0 | 63 74 20 52 6f 6c 65 20 70 61 69 72 73 20 61 72 65 3a 00 42 47 50 20 72 6f 75 74 65 72 73 20 63 | ct.Role.pairs.are:.BGP.routers.c |
| d9800 | 6f 6e 6e 65 63 74 65 64 20 69 6e 73 69 64 65 20 74 68 65 20 73 61 6d 65 20 41 53 20 74 68 72 6f | onnected.inside.the.same.AS.thro |
| d9820 | 75 67 68 20 42 47 50 20 62 65 6c 6f 6e 67 20 74 6f 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 42 47 | ugh.BGP.belong.to.an.internal.BG |
| d9840 | 50 20 73 65 73 73 69 6f 6e 2c 20 6f 72 20 49 42 47 50 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 | P.session,.or.IBGP..In.order.to. |
| d9860 | 70 72 65 76 65 6e 74 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 6c 6f 6f 70 73 2c 20 49 42 47 | prevent.routing.table.loops,.IBG |
| d9880 | 50 20 73 70 65 61 6b 65 72 20 64 6f 65 73 20 6e 6f 74 20 61 64 76 65 72 74 69 73 65 20 49 42 47 | P.speaker.does.not.advertise.IBG |
| d98a0 | 50 2d 6c 65 61 72 6e 65 64 20 72 6f 75 74 65 73 20 74 6f 20 6f 74 68 65 72 20 49 42 47 50 20 73 | P-learned.routes.to.other.IBGP.s |
| d98c0 | 70 65 61 6b 65 72 20 28 53 70 6c 69 74 20 48 6f 72 69 7a 6f 6e 20 6d 65 63 68 61 6e 69 73 6d 29 | peaker.(Split.Horizon.mechanism) |
| d98e0 | 2e 20 41 73 20 73 75 63 68 2c 20 49 42 47 50 20 72 65 71 75 69 72 65 73 20 61 20 66 75 6c 6c 20 | ..As.such,.IBGP.requires.a.full. |
| d9900 | 6d 65 73 68 20 6f 66 20 61 6c 6c 20 70 65 65 72 73 2e 20 46 6f 72 20 6c 61 72 67 65 20 6e 65 74 | mesh.of.all.peers..For.large.net |
| d9920 | 77 6f 72 6b 73 2c 20 74 68 69 73 20 71 75 69 63 6b 6c 79 20 62 65 63 6f 6d 65 73 20 75 6e 73 63 | works,.this.quickly.becomes.unsc |
| d9940 | 61 6c 61 62 6c 65 2e 00 42 47 50 20 72 6f 75 74 65 73 20 6d 61 79 20 62 65 20 6c 65 61 6b 65 64 | alable..BGP.routes.may.be.leaked |
| d9960 | 20 28 69 2e 65 2e 20 63 6f 70 69 65 64 29 20 62 65 74 77 65 65 6e 20 61 20 75 6e 69 63 61 73 74 | .(i.e..copied).between.a.unicast |
| d9980 | 20 56 52 46 20 52 49 42 20 61 6e 64 20 74 68 65 20 56 50 4e 20 53 41 46 49 20 52 49 42 20 6f 66 | .VRF.RIB.and.the.VPN.SAFI.RIB.of |
| d99a0 | 20 74 68 65 20 64 65 66 61 75 6c 74 20 56 52 46 20 66 6f 72 20 75 73 65 20 69 6e 20 4d 50 4c 53 | .the.default.VRF.for.use.in.MPLS |
| d99c0 | 2d 62 61 73 65 64 20 4c 33 56 50 4e 73 2e 20 55 6e 69 63 61 73 74 20 72 6f 75 74 65 73 20 6d 61 | -based.L3VPNs..Unicast.routes.ma |
| d99e0 | 79 20 61 6c 73 6f 20 62 65 20 6c 65 61 6b 65 64 20 62 65 74 77 65 65 6e 20 61 6e 79 20 56 52 46 | y.also.be.leaked.between.any.VRF |
| d9a00 | 73 20 28 69 6e 63 6c 75 64 69 6e 67 20 74 68 65 20 75 6e 69 63 61 73 74 20 52 49 42 20 6f 66 20 | s.(including.the.unicast.RIB.of. |
| d9a20 | 74 68 65 20 64 65 66 61 75 6c 74 20 42 47 50 20 69 6e 73 74 61 6e 63 65 29 2e 20 41 20 73 68 6f | the.default.BGP.instance)..A.sho |
| d9a40 | 72 74 63 75 74 20 73 79 6e 74 61 78 20 69 73 20 61 6c 73 6f 20 61 76 61 69 6c 61 62 6c 65 20 66 | rtcut.syntax.is.also.available.f |
| d9a60 | 6f 72 20 73 70 65 63 69 66 79 69 6e 67 20 6c 65 61 6b 69 6e 67 20 66 72 6f 6d 20 6f 6e 65 20 56 | or.specifying.leaking.from.one.V |
| d9a80 | 52 46 20 74 6f 20 61 6e 6f 74 68 65 72 20 56 52 46 20 75 73 69 6e 67 20 74 68 65 20 64 65 66 61 | RF.to.another.VRF.using.the.defa |
| d9aa0 | 75 6c 74 20 69 6e 73 74 61 6e 63 65 e2 80 99 73 20 56 50 4e 20 52 49 42 20 61 73 20 74 68 65 20 | ult.instance...s.VPN.RIB.as.the. |
| d9ac0 | 69 6e 74 65 6d 65 64 69 61 72 79 20 2e 20 41 20 63 6f 6d 6d 6f 6e 20 61 70 70 6c 69 63 61 74 69 | intemediary...A.common.applicati |
| d9ae0 | 6f 6e 20 6f 66 20 74 68 65 20 56 52 46 2d 56 52 46 20 66 65 61 74 75 72 65 20 69 73 20 74 6f 20 | on.of.the.VRF-VRF.feature.is.to. |
| d9b00 | 63 6f 6e 6e 65 63 74 20 61 20 63 75 73 74 6f 6d 65 72 e2 80 99 73 20 70 72 69 76 61 74 65 20 72 | connect.a.customer...s.private.r |
| d9b20 | 6f 75 74 69 6e 67 20 64 6f 6d 61 69 6e 20 74 6f 20 61 20 70 72 6f 76 69 64 65 72 e2 80 99 73 20 | outing.domain.to.a.provider...s. |
| d9b40 | 56 50 4e 20 73 65 72 76 69 63 65 2e 20 4c 65 61 6b 69 6e 67 20 69 73 20 63 6f 6e 66 69 67 75 72 | VPN.service..Leaking.is.configur |
| d9b60 | 65 64 20 66 72 6f 6d 20 74 68 65 20 70 6f 69 6e 74 20 6f 66 20 76 69 65 77 20 6f 66 20 61 6e 20 | ed.from.the.point.of.view.of.an. |
| d9b80 | 69 6e 64 69 76 69 64 75 61 6c 20 56 52 46 3a 20 69 6d 70 6f 72 74 20 72 65 66 65 72 73 20 74 6f | individual.VRF:.import.refers.to |
| d9ba0 | 20 72 6f 75 74 65 73 20 6c 65 61 6b 65 64 20 66 72 6f 6d 20 56 50 4e 20 74 6f 20 61 20 75 6e 69 | .routes.leaked.from.VPN.to.a.uni |
| d9bc0 | 63 61 73 74 20 56 52 46 2c 20 77 68 65 72 65 61 73 20 65 78 70 6f 72 74 20 72 65 66 65 72 73 20 | cast.VRF,.whereas.export.refers. |
| d9be0 | 74 6f 20 72 6f 75 74 65 73 20 6c 65 61 6b 65 64 20 66 72 6f 6d 20 61 20 75 6e 69 63 61 73 74 20 | to.routes.leaked.from.a.unicast. |
| d9c00 | 56 52 46 20 74 6f 20 56 50 4e 2e 00 42 53 53 20 63 6f 6c 6f 72 69 6e 67 20 68 65 6c 70 73 20 74 | VRF.to.VPN..BSS.coloring.helps.t |
| d9c20 | 6f 20 70 72 65 76 65 6e 74 20 63 68 61 6e 6e 65 6c 20 6a 61 6d 6d 69 6e 67 20 77 68 65 6e 20 6d | o.prevent.channel.jamming.when.m |
| d9c40 | 75 6c 74 69 70 6c 65 20 41 50 73 20 75 73 65 20 74 68 65 20 73 61 6d 65 20 63 68 61 6e 6e 65 6c | ultiple.APs.use.the.same.channel |
| d9c60 | 73 2e 00 42 55 4d 20 74 72 61 66 66 69 63 20 69 73 20 72 78 65 64 20 76 69 61 20 74 68 65 20 6f | s..BUM.traffic.is.rxed.via.the.o |
| d9c80 | 76 65 72 6c 61 79 20 62 79 20 61 6c 6c 20 50 45 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 | verlay.by.all.PEs.attached.to.a. |
| d9ca0 | 73 65 72 76 65 72 20 62 75 74 20 6f 6e 6c 79 20 74 68 65 20 44 46 20 63 61 6e 20 66 6f 72 77 61 | server.but.only.the.DF.can.forwa |
| d9cc0 | 72 64 20 74 68 65 20 64 65 2d 63 61 70 73 75 6c 61 74 65 64 20 74 72 61 66 66 69 63 20 74 6f 20 | rd.the.de-capsulated.traffic.to. |
| d9ce0 | 74 68 65 20 61 63 63 65 73 73 20 70 6f 72 74 2e 20 54 6f 20 61 63 63 6f 6d 6d 6f 64 61 74 65 20 | the.access.port..To.accommodate. |
| d9d00 | 74 68 61 74 20 6e 6f 6e 2d 44 46 20 66 69 6c 74 65 72 73 20 61 72 65 20 69 6e 73 74 61 6c 6c 65 | that.non-DF.filters.are.installe |
| d9d20 | 64 20 69 6e 20 74 68 65 20 64 61 74 61 70 6c 61 6e 65 20 74 6f 20 64 72 6f 70 20 74 68 65 20 74 | d.in.the.dataplane.to.drop.the.t |
| d9d40 | 72 61 66 66 69 63 2e 00 42 61 62 65 6c 00 42 61 62 65 6c 20 61 20 64 75 61 6c 20 73 74 61 63 6b | raffic..Babel.Babel.a.dual.stack |
| d9d60 | 20 70 72 6f 74 6f 63 6f 6c 2e 20 41 20 73 69 6e 67 6c 65 20 42 61 62 65 6c 20 69 6e 73 74 61 6e | .protocol..A.single.Babel.instan |
| d9d80 | 63 65 20 69 73 20 61 62 6c 65 20 74 6f 20 70 65 72 66 6f 72 6d 20 72 6f 75 74 69 6e 67 20 66 6f | ce.is.able.to.perform.routing.fo |
| d9da0 | 72 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 2e 00 42 61 62 65 6c 20 69 73 20 61 | r.both.IPv4.and.IPv6..Babel.is.a |
| d9dc0 | 20 6d 6f 64 65 72 6e 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 64 65 73 69 67 6e 65 | .modern.routing.protocol.designe |
| d9de0 | 64 20 74 6f 20 62 65 20 72 6f 62 75 73 74 20 61 6e 64 20 65 66 66 69 63 69 65 6e 74 20 62 6f 74 | d.to.be.robust.and.efficient.bot |
| d9e00 | 68 20 69 6e 20 6f 72 64 69 6e 61 72 79 20 77 69 72 65 64 20 6e 65 74 77 6f 72 6b 73 20 61 6e 64 | h.in.ordinary.wired.networks.and |
| d9e20 | 20 69 6e 20 77 69 72 65 6c 65 73 73 20 6d 65 73 68 20 6e 65 74 77 6f 72 6b 73 2e 20 42 79 20 64 | .in.wireless.mesh.networks..By.d |
| d9e40 | 65 66 61 75 6c 74 2c 20 69 74 20 75 73 65 73 20 68 6f 70 2d 63 6f 75 6e 74 20 6f 6e 20 77 69 72 | efault,.it.uses.hop-count.on.wir |
| d9e60 | 65 64 20 6e 65 74 77 6f 72 6b 73 20 61 6e 64 20 61 20 76 61 72 69 61 6e 74 20 6f 66 20 45 54 58 | ed.networks.and.a.variant.of.ETX |
| d9e80 | 20 6f 6e 20 77 69 72 65 6c 65 73 73 20 6c 69 6e 6b 73 2c 20 49 74 20 63 61 6e 20 62 65 20 63 6f | .on.wireless.links,.It.can.be.co |
| d9ea0 | 6e 66 69 67 75 72 65 64 20 74 6f 20 74 61 6b 65 20 72 61 64 69 6f 20 64 69 76 65 72 73 69 74 79 | nfigured.to.take.radio.diversity |
| d9ec0 | 20 69 6e 74 6f 20 61 63 63 6f 75 6e 74 20 61 6e 64 20 74 6f 20 61 75 74 6f 6d 61 74 69 63 61 6c | .into.account.and.to.automatical |
| d9ee0 | 6c 79 20 63 6f 6d 70 75 74 65 20 61 20 6c 69 6e 6b 27 73 20 6c 61 74 65 6e 63 79 20 61 6e 64 20 | ly.compute.a.link's.latency.and. |
| d9f00 | 69 6e 63 6c 75 64 65 20 69 74 20 69 6e 20 74 68 65 20 6d 65 74 72 69 63 2e 20 49 74 20 69 73 20 | include.it.in.the.metric..It.is. |
| d9f20 | 64 65 66 69 6e 65 64 20 69 6e 20 3a 72 66 63 3a 60 38 39 36 36 60 2e 00 42 61 63 6b 65 6e 64 00 | defined.in.:rfc:`8966`..Backend. |
| d9f40 | 42 61 63 6b 65 6e 64 20 73 65 72 76 69 63 65 20 63 65 72 74 69 66 69 63 61 74 65 73 20 61 72 65 | Backend.service.certificates.are |
| d9f60 | 20 63 68 65 63 6b 65 64 20 61 67 61 69 6e 73 74 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 | .checked.against.the.certificate |
| d9f80 | 20 61 75 74 68 6f 72 69 74 79 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 74 68 65 20 63 6f 6e 66 | .authority.specified.in.the.conf |
| d9fa0 | 69 67 75 72 61 74 69 6f 6e 2c 20 77 68 69 63 68 20 63 6f 75 6c 64 20 62 65 20 61 6e 20 69 6e 74 | iguration,.which.could.be.an.int |
| d9fc0 | 65 72 6e 61 6c 20 43 41 2e 00 42 61 6c 61 6e 63 65 20 61 6c 67 6f 72 69 74 68 6d 73 3a 00 42 61 | ernal.CA..Balance.algorithms:.Ba |
| d9fe0 | 6c 61 6e 63 69 6e 67 20 52 75 6c 65 73 00 42 61 6c 61 6e 63 69 6e 67 20 62 61 73 65 64 20 6f 6e | lancing.Rules.Balancing.based.on |
| da000 | 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 00 42 61 6c 61 6e 63 69 6e 67 20 77 69 74 68 20 48 54 54 50 | .domain.name.Balancing.with.HTTP |
| da020 | 20 68 65 61 6c 74 68 20 63 68 65 63 6b 73 00 42 61 6e 64 77 69 64 74 68 20 53 68 61 70 69 6e 67 | .health.checks.Bandwidth.Shaping |
| da040 | 00 42 61 6e 64 77 69 64 74 68 20 53 68 61 70 69 6e 67 20 66 6f 72 20 6c 6f 63 61 6c 20 75 73 65 | .Bandwidth.Shaping.for.local.use |
| da060 | 72 73 00 42 61 6e 64 77 69 64 74 68 20 72 61 74 65 20 6c 69 6d 69 74 73 20 63 61 6e 20 62 65 20 | rs.Bandwidth.rate.limits.can.be. |
| da080 | 73 65 74 20 66 6f 72 20 6c 6f 63 61 6c 20 75 73 65 72 73 20 6f 72 20 52 41 44 49 55 53 20 62 61 | set.for.local.users.or.RADIUS.ba |
| da0a0 | 73 65 64 20 61 74 74 72 69 62 75 74 65 73 2e 00 42 61 6e 64 77 69 64 74 68 20 72 61 74 65 20 6c | sed.attributes..Bandwidth.rate.l |
| da0c0 | 69 6d 69 74 73 20 63 61 6e 20 62 65 20 73 65 74 20 66 6f 72 20 6c 6f 63 61 6c 20 75 73 65 72 73 | imits.can.be.set.for.local.users |
| da0e0 | 20 6f 72 20 76 69 61 20 52 41 44 49 55 53 20 62 61 73 65 64 20 61 74 74 72 69 62 75 74 65 73 2e | .or.via.RADIUS.based.attributes. |
| da100 | 00 42 61 6e 64 77 69 64 74 68 20 72 61 74 65 20 6c 69 6d 69 74 73 20 63 61 6e 20 62 65 20 73 65 | .Bandwidth.rate.limits.can.be.se |
| da120 | 74 20 66 6f 72 20 6c 6f 63 61 6c 20 75 73 65 72 73 20 77 69 74 68 69 6e 20 74 68 65 20 63 6f 6e | t.for.local.users.within.the.con |
| da140 | 66 69 67 75 72 61 74 69 6f 6e 20 6f 72 20 76 69 61 20 52 41 44 49 55 53 20 62 61 73 65 64 20 61 | figuration.or.via.RADIUS.based.a |
| da160 | 74 74 72 69 62 75 74 65 73 2e 00 42 61 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 66 66 69 | ttributes..Base.chain.for.traffi |
| da180 | 63 20 74 6f 77 61 72 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 | c.towards.the.router.is.``set.fi |
| da1a0 | 72 65 77 61 6c 6c 20 69 70 76 34 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 42 | rewall.ipv4.input.filter....``.B |
| da1c0 | 61 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 73 20 74 68 | ase.chain.for.traffic.towards.th |
| da1e0 | 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 | e.router.is.``set.firewall.ipv6. |
| da200 | 69 6e 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 42 61 73 65 20 63 68 61 69 6e 20 69 73 | input.filter....``.Base.chain.is |
| da220 | 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 20 74 68 65 20 72 6f 75 74 65 72 20 69 | .for.traffic.toward.the.router.i |
| da240 | 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 69 6e 70 75 74 20 66 69 6c 74 | s.``set.firewall.ipv4.input.filt |
| da260 | 65 72 20 2e 2e 2e 60 60 00 42 61 73 65 20 63 68 61 69 6e 20 69 73 20 66 6f 72 20 74 72 61 66 66 | er....``.Base.chain.is.for.traff |
| da280 | 69 63 20 74 6f 77 61 72 64 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 | ic.toward.the.router.is.``set.fi |
| da2a0 | 72 65 77 61 6c 6c 20 69 70 76 36 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 42 | rewall.ipv6.input.filter....``.B |
| da2c0 | 61 73 65 6c 69 6e 65 20 44 4d 56 50 4e 20 74 6f 70 6f 6c 6f 67 79 00 42 61 73 69 63 20 43 6f 6e | aseline.DMVPN.topology.Basic.Con |
| da2e0 | 63 65 70 74 73 00 42 61 73 69 63 20 63 6f 6d 6d 61 6e 64 73 00 42 61 73 69 63 20 66 69 6c 74 65 | cepts.Basic.commands.Basic.filte |
| da300 | 72 69 6e 67 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 75 73 69 6e 67 20 61 63 63 65 73 73 2d 6c 69 | ring.can.be.done.using.access-li |
| da320 | 73 74 20 61 6e 64 20 61 63 63 65 73 73 2d 6c 69 73 74 36 2e 00 42 61 73 69 63 20 66 69 6c 74 65 | st.and.access-list6..Basic.filte |
| da340 | 72 69 6e 67 20 63 6f 75 6c 64 20 61 6c 73 6f 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 49 50 | ring.could.also.be.applied.to.IP |
| da360 | 76 36 20 74 72 61 66 66 69 63 2e 00 42 61 73 69 63 20 73 65 74 75 70 00 42 65 20 73 75 72 65 20 | v6.traffic..Basic.setup.Be.sure. |
| da380 | 74 6f 20 73 65 74 20 61 20 73 61 6e 65 20 64 65 66 61 75 6c 74 20 63 6f 6e 66 69 67 20 69 6e 20 | to.set.a.sane.default.config.in. |
| da3a0 | 74 68 65 20 64 65 66 61 75 6c 74 20 63 6f 6e 66 69 67 20 66 69 6c 65 2c 20 74 68 69 73 20 77 69 | the.default.config.file,.this.wi |
| da3c0 | 6c 6c 20 62 65 20 6c 6f 61 64 65 64 20 69 6e 20 74 68 65 20 63 61 73 65 20 74 68 61 74 20 61 20 | ll.be.loaded.in.the.case.that.a. |
| da3e0 | 75 73 65 72 20 69 73 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 20 61 6e 64 20 6e 6f 20 66 69 6c | user.is.authenticated.and.no.fil |
| da400 | 65 20 69 73 20 66 6f 75 6e 64 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 64 69 72 | e.is.found.in.the.configured.dir |
| da420 | 65 63 74 6f 72 79 20 6d 61 74 63 68 69 6e 67 20 74 68 65 20 75 73 65 72 73 20 75 73 65 72 6e 61 | ectory.matching.the.users.userna |
| da440 | 6d 65 2f 67 72 6f 75 70 2e 00 42 65 61 63 6f 6e 20 50 72 6f 74 65 63 74 69 6f 6e 3a 20 6d 61 6e | me/group..Beacon.Protection:.man |
| da460 | 61 67 65 6d 65 6e 74 20 66 72 61 6d 65 20 70 72 6f 74 65 63 74 69 6f 6e 20 66 6f 72 20 42 65 61 | agement.frame.protection.for.Bea |
| da480 | 63 6f 6e 20 66 72 61 6d 65 73 2e 00 42 65 61 6d 66 6f 72 6d 69 6e 67 20 63 61 70 61 62 69 6c 69 | con.frames..Beamforming.capabili |
| da4a0 | 74 69 65 73 3a 00 42 65 63 61 75 73 65 20 61 6e 20 61 67 67 72 65 67 61 74 6f 72 20 63 61 6e 6e | ties:.Because.an.aggregator.cann |
| da4c0 | 6f 74 20 62 65 20 61 63 74 69 76 65 20 77 69 74 68 6f 75 74 20 61 74 20 6c 65 61 73 74 20 6f 6e | ot.be.active.without.at.least.on |
| da4e0 | 65 20 61 76 61 69 6c 61 62 6c 65 20 6c 69 6e 6b 2c 20 73 65 74 74 69 6e 67 20 74 68 69 73 20 6f | e.available.link,.setting.this.o |
| da500 | 70 74 69 6f 6e 20 74 6f 20 30 20 6f 72 20 74 6f 20 31 20 68 61 73 20 74 68 65 20 65 78 61 63 74 | ption.to.0.or.to.1.has.the.exact |
| da520 | 20 73 61 6d 65 20 65 66 66 65 63 74 2e 00 42 65 63 61 75 73 65 20 65 78 69 73 74 69 6e 67 20 73 | .same.effect..Because.existing.s |
| da540 | 65 73 73 69 6f 6e 73 20 64 6f 20 6e 6f 74 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 66 61 69 | essions.do.not.automatically.fai |
| da560 | 6c 20 6f 76 65 72 20 74 6f 20 61 20 6e 65 77 20 70 61 74 68 2c 20 74 68 65 20 73 65 73 73 69 6f | l.over.to.a.new.path,.the.sessio |
| da580 | 6e 20 74 61 62 6c 65 20 63 61 6e 20 62 65 20 66 6c 75 73 68 65 64 20 6f 6e 20 65 61 63 68 20 63 | n.table.can.be.flushed.on.each.c |
| da5a0 | 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 65 20 63 68 61 6e 67 65 3a 00 42 65 66 6f 72 65 20 65 | onnection.state.change:.Before.e |
| da5c0 | 6e 61 62 6c 69 6e 67 20 61 6e 79 20 68 61 72 64 77 61 72 65 20 73 65 67 6d 65 6e 74 61 74 69 6f | nabling.any.hardware.segmentatio |
| da5e0 | 6e 20 6f 66 66 6c 6f 61 64 20 61 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e 67 20 73 6f 66 74 77 61 | n.offload.a.corresponding.softwa |
| da600 | 72 65 20 6f 66 66 6c 6f 61 64 20 69 73 20 72 65 71 75 69 72 65 64 20 69 6e 20 47 53 4f 2e 20 4f | re.offload.is.required.in.GSO..O |
| da620 | 74 68 65 72 77 69 73 65 20 69 74 20 62 65 63 6f 6d 65 73 20 70 6f 73 73 69 62 6c 65 20 66 6f 72 | therwise.it.becomes.possible.for |
| da640 | 20 61 20 66 72 61 6d 65 20 74 6f 20 62 65 20 72 65 2d 72 6f 75 74 65 64 20 62 65 74 77 65 65 6e | .a.frame.to.be.re-routed.between |
| da660 | 20 64 65 76 69 63 65 73 20 61 6e 64 20 65 6e 64 20 75 70 20 62 65 69 6e 67 20 75 6e 61 62 6c 65 | .devices.and.end.up.being.unable |
| da680 | 20 74 6f 20 62 65 20 74 72 61 6e 73 6d 69 74 74 65 64 2e 00 42 65 66 6f 72 65 20 74 65 73 74 69 | .to.be.transmitted..Before.testi |
| da6a0 | 6e 67 2c 20 77 65 20 63 61 6e 20 63 68 65 63 6b 20 6d 65 6d 62 65 72 73 20 6f 66 20 66 69 72 65 | ng,.we.can.check.members.of.fire |
| da6c0 | 77 61 6c 6c 20 67 72 6f 75 70 73 3a 00 42 65 66 6f 72 65 20 74 65 73 74 69 6e 67 2c 20 77 65 20 | wall.groups:.Before.testing,.we. |
| da6e0 | 63 61 6e 20 63 68 65 63 6b 20 74 68 65 20 6d 65 6d 62 65 72 73 20 6f 66 20 66 69 72 65 77 61 6c | can.check.the.members.of.firewal |
| da700 | 6c 20 67 72 6f 75 70 73 3a 00 42 65 66 6f 72 65 20 79 6f 75 20 61 72 65 20 61 62 6c 65 20 74 6f | l.groups:.Before.you.are.able.to |
| da720 | 20 61 70 70 6c 79 20 61 20 72 75 6c 65 2d 73 65 74 20 74 6f 20 61 20 7a 6f 6e 65 20 79 6f 75 20 | .apply.a.rule-set.to.a.zone.you. |
| da740 | 68 61 76 65 20 74 6f 20 63 72 65 61 74 65 20 74 68 65 20 7a 6f 6e 65 73 20 66 69 72 73 74 2e 00 | have.to.create.the.zones.first.. |
| da760 | 42 65 6c 6f 77 20 61 72 65 20 61 20 6c 69 73 74 20 6f 66 20 72 65 63 6f 72 64 20 74 79 70 65 73 | Below.are.a.list.of.record.types |
| da780 | 20 61 76 61 69 6c 61 62 6c 65 20 74 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 77 69 74 68 | .available.to.be.configured.with |
| da7a0 | 69 6e 20 56 79 4f 53 2e 20 53 6f 6d 65 20 72 65 63 6f 72 64 73 20 73 75 70 70 6f 72 74 20 73 70 | in.VyOS..Some.records.support.sp |
| da7c0 | 65 63 69 61 6c 20 60 3c 6e 61 6d 65 3e 60 20 6b 65 79 77 6f 72 64 73 3a 00 42 65 6c 6f 77 20 66 | ecial.`<name>`.keywords:.Below.f |
| da7e0 | 6c 6f 77 2d 63 68 61 72 74 20 63 6f 75 6c 64 20 62 65 20 61 20 71 75 69 63 6b 20 72 65 66 65 72 | low-chart.could.be.a.quick.refer |
| da800 | 65 6e 63 65 20 66 6f 72 20 74 68 65 20 63 6c 6f 73 65 2d 61 63 74 69 6f 6e 20 63 6f 6d 62 69 6e | ence.for.the.close-action.combin |
| da820 | 61 74 69 6f 6e 20 64 65 70 65 6e 64 69 6e 67 20 6f 6e 20 68 6f 77 20 74 68 65 20 70 65 65 72 20 | ation.depending.on.how.the.peer. |
| da840 | 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 42 65 6c 6f 77 20 69 73 20 61 6e 20 65 78 61 6d 70 | is.configured..Below.is.an.examp |
| da860 | 6c 65 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 4c 4e 53 3a 00 42 65 73 74 20 65 66 66 6f | le.to.configure.a.LNS:.Best.effo |
| da880 | 72 74 20 74 72 61 66 66 69 63 2c 20 64 65 66 61 75 6c 74 00 42 65 74 77 65 65 6e 20 63 6f 6d 70 | rt.traffic,.default.Between.comp |
| da8a0 | 75 74 65 72 73 2c 20 74 68 65 20 6d 6f 73 74 20 63 6f 6d 6d 6f 6e 20 63 6f 6e 66 69 67 75 72 61 | uters,.the.most.common.configura |
| da8c0 | 74 69 6f 6e 20 75 73 65 64 20 77 61 73 20 22 38 4e 31 22 3a 20 65 69 67 68 74 20 62 69 74 20 63 | tion.used.was."8N1":.eight.bit.c |
| da8e0 | 68 61 72 61 63 74 65 72 73 2c 20 77 69 74 68 20 6f 6e 65 20 73 74 61 72 74 20 62 69 74 2c 20 6f | haracters,.with.one.start.bit,.o |
| da900 | 6e 65 20 73 74 6f 70 20 62 69 74 2c 20 61 6e 64 20 6e 6f 20 70 61 72 69 74 79 20 62 69 74 2e 20 | ne.stop.bit,.and.no.parity.bit.. |
| da920 | 54 68 75 73 20 31 30 20 42 61 75 64 20 74 69 6d 65 73 20 61 72 65 20 75 73 65 64 20 74 6f 20 73 | Thus.10.Baud.times.are.used.to.s |
| da940 | 65 6e 64 20 61 20 73 69 6e 67 6c 65 20 63 68 61 72 61 63 74 65 72 2c 20 61 6e 64 20 73 6f 20 64 | end.a.single.character,.and.so.d |
| da960 | 69 76 69 64 69 6e 67 20 74 68 65 20 73 69 67 6e 61 6c 6c 69 6e 67 20 62 69 74 2d 72 61 74 65 20 | ividing.the.signalling.bit-rate. |
| da980 | 62 79 20 74 65 6e 20 72 65 73 75 6c 74 73 20 69 6e 20 74 68 65 20 6f 76 65 72 61 6c 6c 20 74 72 | by.ten.results.in.the.overall.tr |
| da9a0 | 61 6e 73 6d 69 73 73 69 6f 6e 20 73 70 65 65 64 20 69 6e 20 63 68 61 72 61 63 74 65 72 73 20 70 | ansmission.speed.in.characters.p |
| da9c0 | 65 72 20 73 65 63 6f 6e 64 2e 20 54 68 69 73 20 69 73 20 61 6c 73 6f 20 74 68 65 20 64 65 66 61 | er.second..This.is.also.the.defa |
| da9e0 | 75 6c 74 20 73 65 74 74 69 6e 67 20 69 66 20 6e 6f 6e 65 20 6f 66 20 74 68 6f 73 65 20 6f 70 74 | ult.setting.if.none.of.those.opt |
| daa00 | 69 6f 6e 73 20 61 72 65 20 64 65 66 69 6e 65 64 2e 00 42 69 64 69 72 65 63 74 69 6f 6e 61 6c 20 | ions.are.defined..Bidirectional. |
| daa20 | 4e 41 54 00 42 69 6e 61 72 79 20 76 61 6c 75 65 00 42 69 6e 64 20 63 6f 6e 74 61 69 6e 65 72 20 | NAT.Binary.value.Bind.container. |
| daa40 | 6e 65 74 77 6f 72 6b 20 74 6f 20 61 20 67 69 76 65 6e 20 56 52 46 20 69 6e 73 74 61 6e 63 65 2e | network.to.a.given.VRF.instance. |
| daa60 | 00 42 69 6e 64 20 6c 69 73 74 65 6e 65 72 20 74 6f 20 73 70 65 63 69 66 69 63 20 69 6e 74 65 72 | .Bind.listener.to.specific.inter |
| daa80 | 66 61 63 65 2f 61 64 64 72 65 73 73 2c 20 6d 61 6e 64 61 74 6f 72 79 20 66 6f 72 20 49 50 76 36 | face/address,.mandatory.for.IPv6 |
| daaa0 | 00 42 69 6e 64 73 20 65 74 68 31 2e 32 34 31 20 61 6e 64 20 76 78 6c 61 6e 32 34 31 20 74 6f 20 | .Binds.eth1.241.and.vxlan241.to. |
| daac0 | 65 61 63 68 20 6f 74 68 65 72 20 62 79 20 6d 61 6b 69 6e 67 20 74 68 65 6d 20 62 6f 74 68 20 6d | each.other.by.making.them.both.m |
| daae0 | 65 6d 62 65 72 20 69 6e 74 65 72 66 61 63 65 73 20 6f 66 20 74 68 65 20 73 61 6d 65 20 62 72 69 | ember.interfaces.of.the.same.bri |
| dab00 | 64 67 65 2e 00 42 6c 61 63 6b 68 6f 6c 65 00 42 6c 6f 63 6b 20 73 6f 75 72 63 65 20 49 50 20 69 | dge..Blackhole.Block.source.IP.i |
| dab20 | 6e 20 73 65 63 6f 6e 64 73 2e 20 53 75 62 73 65 71 75 65 6e 74 20 62 6c 6f 63 6b 73 20 69 6e 63 | n.seconds..Subsequent.blocks.inc |
| dab40 | 72 65 61 73 65 20 62 79 20 61 20 66 61 63 74 6f 72 20 6f 66 20 31 2e 35 20 54 68 65 20 64 65 66 | rease.by.a.factor.of.1.5.The.def |
| dab60 | 61 75 6c 74 20 69 73 20 31 32 30 2e 00 42 6c 6f 63 6b 20 73 6f 75 72 63 65 20 49 50 20 77 68 65 | ault.is.120..Block.source.IP.whe |
| dab80 | 6e 20 74 68 65 69 72 20 63 75 6d 75 6c 61 74 69 76 65 20 61 74 74 61 63 6b 20 73 63 6f 72 65 20 | n.their.cumulative.attack.score. |
| daba0 | 65 78 63 65 65 64 73 20 74 68 72 65 73 68 6f 6c 64 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 | exceeds.threshold..The.default.i |
| dabc0 | 73 20 33 30 2e 00 42 6c 6f 63 6b 69 6e 67 20 63 61 6c 6c 20 77 69 74 68 20 6e 6f 20 74 69 6d 65 | s.30..Blocking.call.with.no.time |
| dabe0 | 6f 75 74 2e 20 53 79 73 74 65 6d 20 77 69 6c 6c 20 62 65 63 6f 6d 65 20 75 6e 72 65 73 70 6f 6e | out..System.will.become.unrespon |
| dac00 | 73 69 76 65 20 69 66 20 73 63 72 69 70 74 20 64 6f 65 73 20 6e 6f 74 20 72 65 74 75 72 6e 21 00 | sive.if.script.does.not.return!. |
| dac20 | 42 6f 61 72 64 65 72 20 47 61 74 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c 20 28 42 47 50 29 20 6f | Boarder.Gateway.Protocol.(BGP).o |
| dac40 | 72 69 67 69 6e 20 63 6f 64 65 20 74 6f 20 6d 61 74 63 68 2e 00 42 6f 6e 64 20 2f 20 4c 69 6e 6b | rigin.code.to.match..Bond./.Link |
| dac60 | 20 41 67 67 72 65 67 61 74 69 6f 6e 00 42 6f 6e 64 20 6f 70 74 69 6f 6e 73 00 42 6f 6f 74 20 69 | .Aggregation.Bond.options.Boot.i |
| dac80 | 6d 61 67 65 20 6c 65 6e 67 74 68 20 69 6e 20 35 31 32 2d 6f 63 74 65 74 20 62 6c 6f 63 6b 73 00 | mage.length.in.512-octet.blocks. |
| daca0 | 42 6f 6f 74 73 74 72 61 70 20 66 69 6c 65 20 6e 61 6d 65 00 42 6f 74 68 20 49 50 76 34 20 61 6e | Bootstrap.file.name.Both.IPv4.an |
| dacc0 | 64 20 49 50 76 36 20 6d 75 6c 74 69 63 61 73 74 20 69 73 20 70 6f 73 73 69 62 6c 65 2e 00 42 6f | d.IPv6.multicast.is.possible..Bo |
| dace0 | 74 68 20 6c 6f 63 61 6c 20 61 64 6d 69 6e 69 73 74 65 72 65 64 20 61 6e 64 20 72 65 6d 6f 74 65 | th.local.administered.and.remote |
| dad00 | 20 61 64 6d 69 6e 69 73 74 65 72 65 64 20 3a 61 62 62 72 3a 60 52 41 44 49 55 53 20 28 52 65 6d | .administered.:abbr:`RADIUS.(Rem |
| dad20 | 6f 74 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 44 69 61 6c 2d 49 6e 20 55 73 65 72 20 | ote.Authentication.Dial-In.User. |
| dad40 | 53 65 72 76 69 63 65 29 60 20 61 63 63 6f 75 6e 74 73 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 | Service)`.accounts.are.supported |
| dad60 | 2e 00 42 6f 74 68 20 72 65 70 6c 69 65 73 20 61 6e 64 20 72 65 71 75 65 73 74 73 20 74 79 70 65 | ..Both.replies.and.requests.type |
| dad80 | 20 67 72 61 74 75 69 74 6f 75 73 20 61 72 70 20 77 69 6c 6c 20 74 72 69 67 67 65 72 20 74 68 65 | .gratuitous.arp.will.trigger.the |
| dada0 | 20 41 52 50 20 74 61 62 6c 65 20 74 6f 20 62 65 20 75 70 64 61 74 65 64 2c 20 69 66 20 74 68 69 | .ARP.table.to.be.updated,.if.thi |
| dadc0 | 73 20 73 65 74 74 69 6e 67 20 69 73 20 6f 6e 2e 00 42 72 61 6e 63 68 20 31 27 73 20 72 6f 75 74 | s.setting.is.on..Branch.1's.rout |
| dade0 | 65 72 20 6d 69 67 68 74 20 68 61 76 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6c 69 6e 65 | er.might.have.the.following.line |
| dae00 | 73 3a 00 42 72 69 64 67 65 00 42 72 69 64 67 65 20 46 69 72 65 77 61 6c 6c 20 43 6f 6e 66 69 67 | s:.Bridge.Bridge.Firewall.Config |
| dae20 | 75 72 61 74 69 6f 6e 00 42 72 69 64 67 65 20 4f 70 74 69 6f 6e 73 00 42 72 69 64 67 65 20 52 75 | uration.Bridge.Options.Bridge.Ru |
| dae40 | 6c 65 73 00 42 72 69 64 67 65 20 61 6e 73 77 65 72 73 20 6f 6e 20 49 50 20 61 64 64 72 65 73 73 | les.Bridge.answers.on.IP.address |
| dae60 | 20 31 39 32 2e 30 2e 32 2e 31 2f 32 34 20 61 6e 64 20 32 30 30 31 3a 64 62 38 3a 3a 66 66 66 66 | .192.0.2.1/24.and.2001:db8::ffff |
| dae80 | 2f 36 34 00 42 72 69 64 67 65 20 6d 61 78 69 6d 75 6d 20 61 67 69 6e 67 20 60 3c 74 69 6d 65 3e | /64.Bridge.maximum.aging.`<time> |
| daea0 | 60 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a 20 32 30 29 2e 00 42 72 69 64 | `.in.seconds.(default:.20)..Brid |
| daec0 | 67 65 3a 00 42 75 72 73 74 20 63 6f 75 6e 74 00 42 75 73 69 6e 65 73 73 20 55 73 65 72 73 00 42 | ge:.Burst.count.Business.Users.B |
| daee0 | 75 74 20 62 65 66 6f 72 65 20 6c 65 61 72 6e 69 6e 67 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 | ut.before.learning.to.configure. |
| daf00 | 79 6f 75 72 20 70 6f 6c 69 63 79 2c 20 77 65 20 77 69 6c 6c 20 77 61 72 6e 20 79 6f 75 20 61 62 | your.policy,.we.will.warn.you.ab |
| daf20 | 6f 75 74 20 74 68 65 20 64 69 66 66 65 72 65 6e 74 20 75 6e 69 74 73 20 79 6f 75 20 63 61 6e 20 | out.the.different.units.you.can. |
| daf40 | 75 73 65 20 61 6e 64 20 61 6c 73 6f 20 73 68 6f 77 20 79 6f 75 20 77 68 61 74 20 2a 63 6c 61 73 | use.and.also.show.you.what.*clas |
| daf60 | 73 65 73 2a 20 61 72 65 20 61 6e 64 20 68 6f 77 20 74 68 65 79 20 77 6f 72 6b 2c 20 61 73 20 73 | ses*.are.and.how.they.work,.as.s |
| daf80 | 6f 6d 65 20 70 6f 6c 69 63 69 65 73 20 6d 61 79 20 72 65 71 75 69 72 65 20 79 6f 75 20 74 6f 20 | ome.policies.may.require.you.to. |
| dafa0 | 63 6f 6e 66 69 67 75 72 65 20 74 68 65 6d 2e 00 42 79 20 64 65 66 61 75 6c 74 20 56 52 52 50 20 | configure.them..By.default.VRRP. |
| dafc0 | 75 73 65 73 20 6d 75 6c 74 69 63 61 73 74 20 70 61 63 6b 65 74 73 2e 20 49 66 20 79 6f 75 72 20 | uses.multicast.packets..If.your. |
| dafe0 | 6e 65 74 77 6f 72 6b 20 64 6f 65 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 20 6d 75 6c 74 69 63 61 | network.does.not.support.multica |
| db000 | 73 74 20 66 6f 72 20 77 68 61 74 65 76 65 72 20 72 65 61 73 6f 6e 2c 20 79 6f 75 20 63 61 6e 20 | st.for.whatever.reason,.you.can. |
| db020 | 6d 61 6b 65 20 56 52 52 50 20 75 73 65 20 75 6e 69 63 61 73 74 20 63 6f 6d 6d 75 6e 69 63 61 74 | make.VRRP.use.unicast.communicat |
| db040 | 69 6f 6e 20 69 6e 73 74 65 61 64 2e 00 42 79 20 64 65 66 61 75 6c 74 20 56 52 52 50 20 75 73 65 | ion.instead..By.default.VRRP.use |
| db060 | 73 20 70 72 65 65 6d 70 74 69 6f 6e 2e 20 59 6f 75 20 63 61 6e 20 64 69 73 61 62 6c 65 20 69 74 | s.preemption..You.can.disable.it |
| db080 | 20 77 69 74 68 20 74 68 65 20 22 6e 6f 2d 70 72 65 65 6d 70 74 22 20 6f 70 74 69 6f 6e 3a 00 42 | .with.the."no-preempt".option:.B |
| db0a0 | 79 20 64 65 66 61 75 6c 74 20 60 73 74 72 69 63 74 2d 6c 73 61 2d 63 68 65 63 6b 69 6e 67 60 20 | y.default.`strict-lsa-checking`. |
| db0c0 | 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 74 68 65 6e 20 74 68 65 20 68 65 6c 70 65 72 20 77 69 | is.configured.then.the.helper.wi |
| db0e0 | 6c 6c 20 61 62 6f 72 74 20 74 68 65 20 47 72 61 63 65 66 75 6c 20 52 65 73 74 61 72 74 20 77 68 | ll.abort.the.Graceful.Restart.wh |
| db100 | 65 6e 20 61 20 4c 53 41 20 63 68 61 6e 67 65 20 6f 63 63 75 72 73 20 77 68 69 63 68 20 61 66 66 | en.a.LSA.change.occurs.which.aff |
| db120 | 65 63 74 73 20 74 68 65 20 72 65 73 74 61 72 74 69 6e 67 20 72 6f 75 74 65 72 2e 00 42 79 20 64 | ects.the.restarting.router..By.d |
| db140 | 65 66 61 75 6c 74 20 74 68 65 20 73 63 6f 70 65 20 6f 66 20 74 68 65 20 70 6f 72 74 20 62 69 6e | efault.the.scope.of.the.port.bin |
| db160 | 64 69 6e 67 73 20 66 6f 72 20 75 6e 62 6f 75 6e 64 20 73 6f 63 6b 65 74 73 20 69 73 20 6c 69 6d | dings.for.unbound.sockets.is.lim |
| db180 | 69 74 65 64 20 74 6f 20 74 68 65 20 64 65 66 61 75 6c 74 20 56 52 46 2e 20 54 68 61 74 20 69 73 | ited.to.the.default.VRF..That.is |
| db1a0 | 2c 20 69 74 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 6d 61 74 63 68 65 64 20 62 79 20 70 61 63 6b | ,.it.will.not.be.matched.by.pack |
| db1c0 | 65 74 73 20 61 72 72 69 76 69 6e 67 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 73 20 65 6e 73 6c 61 | ets.arriving.on.interfaces.ensla |
| db1e0 | 76 65 64 20 74 6f 20 61 20 56 52 46 20 61 6e 64 20 70 72 6f 63 65 73 73 65 73 20 6d 61 79 20 62 | ved.to.a.VRF.and.processes.may.b |
| db200 | 69 6e 64 20 74 6f 20 74 68 65 20 73 61 6d 65 20 70 6f 72 74 20 69 66 20 74 68 65 79 20 62 69 6e | ind.to.the.same.port.if.they.bin |
| db220 | 64 20 74 6f 20 61 20 56 52 46 2e 00 42 79 20 64 65 66 61 75 6c 74 2c 20 46 52 52 20 77 69 6c 6c | d.to.a.VRF..By.default,.FRR.will |
| db240 | 20 62 72 69 6e 67 20 75 70 20 70 65 65 72 69 6e 67 20 77 69 74 68 20 6d 69 6e 69 6d 61 6c 20 63 | .bring.up.peering.with.minimal.c |
| db260 | 6f 6d 6d 6f 6e 20 63 61 70 61 62 69 6c 69 74 79 20 66 6f 72 20 74 68 65 20 62 6f 74 68 20 73 69 | ommon.capability.for.the.both.si |
| db280 | 64 65 73 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 69 66 20 74 68 65 20 6c 6f 63 61 6c 20 72 | des..For.example,.if.the.local.r |
| db2a0 | 6f 75 74 65 72 20 68 61 73 20 75 6e 69 63 61 73 74 20 61 6e 64 20 6d 75 6c 74 69 63 61 73 74 20 | outer.has.unicast.and.multicast. |
| db2c0 | 63 61 70 61 62 69 6c 69 74 69 65 73 20 61 6e 64 20 74 68 65 20 72 65 6d 6f 74 65 20 72 6f 75 74 | capabilities.and.the.remote.rout |
| db2e0 | 65 72 20 6f 6e 6c 79 20 68 61 73 20 75 6e 69 63 61 73 74 20 63 61 70 61 62 69 6c 69 74 79 20 74 | er.only.has.unicast.capability.t |
| db300 | 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 65 73 74 61 62 6c 69 73 68 20 74 | he.local.router.will.establish.t |
| db320 | 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 68 20 75 6e 69 63 61 73 74 20 6f 6e 6c 79 20 | he.connection.with.unicast.only. |
| db340 | 63 61 70 61 62 69 6c 69 74 79 2e 20 57 68 65 6e 20 74 68 65 72 65 20 61 72 65 20 6e 6f 20 63 6f | capability..When.there.are.no.co |
| db360 | 6d 6d 6f 6e 20 63 61 70 61 62 69 6c 69 74 69 65 73 2c 20 46 52 52 20 73 65 6e 64 73 20 55 6e 73 | mmon.capabilities,.FRR.sends.Uns |
| db380 | 75 70 70 6f 72 74 65 64 20 43 61 70 61 62 69 6c 69 74 79 20 65 72 72 6f 72 20 61 6e 64 20 74 68 | upported.Capability.error.and.th |
| db3a0 | 65 6e 20 72 65 73 65 74 73 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 42 79 20 64 65 66 | en.resets.the.connection..By.def |
| db3c0 | 61 75 6c 74 2c 20 56 79 4f 53 20 64 6f 65 73 20 6e 6f 74 20 61 64 76 65 72 74 69 73 65 20 61 20 | ault,.VyOS.does.not.advertise.a. |
| db3e0 | 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 28 30 2e 30 2e 30 2e 30 2f 30 29 20 65 76 65 6e 20 69 | default.route.(0.0.0.0/0).even.i |
| db400 | 66 20 69 74 20 69 73 20 69 6e 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 20 57 68 65 6e 20 79 | f.it.is.in.routing.table..When.y |
| db420 | 6f 75 20 77 61 6e 74 20 74 6f 20 61 6e 6e 6f 75 6e 63 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 | ou.want.to.announce.default.rout |
| db440 | 65 73 20 74 6f 20 74 68 65 20 70 65 65 72 2c 20 75 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 | es.to.the.peer,.use.this.command |
| db460 | 2e 20 55 73 69 6e 67 20 6f 70 74 69 6f 6e 61 6c 20 61 72 67 75 6d 65 6e 74 20 3a 63 66 67 63 6d | ..Using.optional.argument.:cfgcm |
| db480 | 64 3a 60 72 6f 75 74 65 2d 6d 61 70 60 20 79 6f 75 20 63 61 6e 20 69 6e 6a 65 63 74 20 74 68 65 | d:`route-map`.you.can.inject.the |
| db4a0 | 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 74 6f 20 67 69 76 65 6e 20 6e 65 69 67 68 62 6f 72 | .default.route.to.given.neighbor |
| db4c0 | 20 6f 6e 6c 79 20 69 66 20 74 68 65 20 63 6f 6e 64 69 74 69 6f 6e 73 20 69 6e 20 74 68 65 20 72 | .only.if.the.conditions.in.the.r |
| db4e0 | 6f 75 74 65 20 6d 61 70 20 61 72 65 20 6d 65 74 2e 00 42 79 20 64 65 66 61 75 6c 74 2c 20 61 20 | oute.map.are.met..By.default,.a. |
| db500 | 6e 65 77 20 74 6f 6b 65 6e 20 69 73 20 67 65 6e 65 72 61 74 65 64 20 65 76 65 72 79 20 33 30 20 | new.token.is.generated.every.30. |
| db520 | 73 65 63 6f 6e 64 73 20 62 79 20 74 68 65 20 6d 6f 62 69 6c 65 20 61 70 70 6c 69 63 61 74 69 6f | seconds.by.the.mobile.applicatio |
| db540 | 6e 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 63 6f 6d 70 65 6e 73 61 74 65 20 66 6f 72 20 70 6f | n..In.order.to.compensate.for.po |
| db560 | 73 73 69 62 6c 65 20 74 69 6d 65 2d 73 6b 65 77 20 62 65 74 77 65 65 6e 20 74 68 65 20 63 6c 69 | ssible.time-skew.between.the.cli |
| db580 | 65 6e 74 20 61 6e 64 20 74 68 65 20 73 65 72 76 65 72 2c 20 61 6e 20 65 78 74 72 61 20 74 6f 6b | ent.and.the.server,.an.extra.tok |
| db5a0 | 65 6e 20 62 65 66 6f 72 65 20 61 6e 64 20 61 66 74 65 72 20 74 68 65 20 63 75 72 72 65 6e 74 20 | en.before.and.after.the.current. |
| db5c0 | 74 69 6d 65 20 69 73 20 61 6c 6c 6f 77 65 64 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 66 6f 72 | time.is.allowed..This.allows.for |
| db5e0 | 20 61 20 74 69 6d 65 20 73 6b 65 77 20 6f 66 20 75 70 20 74 6f 20 33 30 20 73 65 63 6f 6e 64 73 | .a.time.skew.of.up.to.30.seconds |
| db600 | 20 62 65 74 77 65 65 6e 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 65 72 76 65 72 20 61 | .between.authentication.server.a |
| db620 | 6e 64 20 63 6c 69 65 6e 74 2e 00 42 79 20 64 65 66 61 75 6c 74 2c 20 64 64 63 6c 69 65 6e 74 5f | nd.client..By.default,.ddclient_ |
| db640 | 20 77 69 6c 6c 20 75 70 64 61 74 65 20 61 20 64 79 6e 61 6d 69 63 20 64 6e 73 20 72 65 63 6f 72 | .will.update.a.dynamic.dns.recor |
| db660 | 64 20 75 73 69 6e 67 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 64 69 72 65 63 74 6c 79 20 | d.using.the.IP.address.directly. |
| db680 | 61 74 74 61 63 68 65 64 20 74 6f 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 49 66 20 79 6f | attached.to.the.interface..If.yo |
| db6a0 | 75 72 20 56 79 4f 53 20 69 6e 73 74 61 6e 63 65 20 69 73 20 62 65 68 69 6e 64 20 4e 41 54 2c 20 | ur.VyOS.instance.is.behind.NAT,. |
| db6c0 | 79 6f 75 72 20 72 65 63 6f 72 64 20 77 69 6c 6c 20 62 65 20 75 70 64 61 74 65 64 20 74 6f 20 70 | your.record.will.be.updated.to.p |
| db6e0 | 6f 69 6e 74 20 74 6f 20 79 6f 75 72 20 69 6e 74 65 72 6e 61 6c 20 49 50 2e 00 42 79 20 64 65 66 | oint.to.your.internal.IP..By.def |
| db700 | 61 75 6c 74 2c 20 65 6e 61 62 6c 69 6e 67 20 52 50 4b 49 20 64 6f 65 73 20 6e 6f 74 20 63 68 61 | ault,.enabling.RPKI.does.not.cha |
| db720 | 6e 67 65 20 62 65 73 74 20 70 61 74 68 20 73 65 6c 65 63 74 69 6f 6e 2e 20 49 6e 20 70 61 72 74 | nge.best.path.selection..In.part |
| db740 | 69 63 75 6c 61 72 2c 20 69 6e 76 61 6c 69 64 20 70 72 65 66 69 78 65 73 20 77 69 6c 6c 20 73 74 | icular,.invalid.prefixes.will.st |
| db760 | 69 6c 6c 20 62 65 20 63 6f 6e 73 69 64 65 72 65 64 20 64 75 72 69 6e 67 20 62 65 73 74 20 70 61 | ill.be.considered.during.best.pa |
| db780 | 74 68 20 73 65 6c 65 63 74 69 6f 6e 2e 20 48 6f 77 65 76 65 72 2c 20 74 68 65 20 72 6f 75 74 65 | th.selection..However,.the.route |
| db7a0 | 72 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 69 67 6e 6f 72 65 20 61 6c | r.can.be.configured.to.ignore.al |
| db7c0 | 6c 20 69 6e 76 61 6c 69 64 20 70 72 65 66 69 78 65 73 2e 00 42 79 20 64 65 66 61 75 6c 74 2c 20 | l.invalid.prefixes..By.default,. |
| db7e0 | 66 6f 72 20 73 77 69 74 63 68 65 64 20 74 72 61 66 66 69 63 2c 20 6f 6e 6c 79 20 74 68 65 20 72 | for.switched.traffic,.only.the.r |
| db800 | 75 6c 65 73 20 64 65 66 69 6e 65 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 66 69 72 65 77 61 6c | ules.defined.under.``set.firewal |
| db820 | 6c 20 62 72 69 64 67 65 60 60 20 61 72 65 20 61 70 70 6c 69 65 64 2e 20 54 68 65 72 65 20 61 72 | l.bridge``.are.applied..There.ar |
| db840 | 65 20 74 77 6f 20 67 6c 6f 62 61 6c 2d 6f 70 74 69 6f 6e 73 20 74 68 61 74 20 63 61 6e 20 62 65 | e.two.global-options.that.can.be |
| db860 | 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 66 6f 72 63 65 20 64 65 | .configured.in.order.to.force.de |
| db880 | 65 70 65 72 20 61 6e 61 6c 79 73 69 73 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 20 6f 6e 20 74 | eper.analysis.of.the.packet.on.t |
| db8a0 | 68 65 20 49 50 20 6c 61 79 65 72 2e 20 54 68 65 73 65 20 6f 70 74 69 6f 6e 73 20 61 72 65 3a 00 | he.IP.layer..These.options.are:. |
| db8c0 | 42 79 20 64 65 66 61 75 6c 74 2c 20 69 74 20 73 75 70 70 6f 72 74 73 20 62 6f 74 68 20 70 6c 61 | By.default,.it.supports.both.pla |
| db8e0 | 6e 6e 65 64 20 61 6e 64 20 75 6e 70 6c 61 6e 6e 65 64 20 6f 75 74 61 67 65 73 2e 00 42 79 20 64 | nned.and.unplanned.outages..By.d |
| db900 | 65 66 61 75 6c 74 2c 20 6c 6f 63 61 6c 6c 79 20 61 64 76 65 72 74 69 73 65 64 20 70 72 65 66 69 | efault,.locally.advertised.prefi |
| db920 | 78 65 73 20 75 73 65 20 74 68 65 20 69 6d 70 6c 69 63 69 74 2d 6e 75 6c 6c 20 6c 61 62 65 6c 20 | xes.use.the.implicit-null.label. |
| db940 | 74 6f 20 65 6e 63 6f 64 65 20 69 6e 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 20 4e 4c 52 49 2e 00 | to.encode.in.the.outgoing.NLRI.. |
| db960 | 42 79 20 64 65 66 61 75 6c 74 2c 20 6e 67 69 6e 78 20 65 78 70 6f 73 65 73 20 74 68 65 20 6c 6f | By.default,.nginx.exposes.the.lo |
| db980 | 63 61 6c 20 41 50 49 20 6f 6e 20 61 6c 6c 20 76 69 72 74 75 61 6c 20 73 65 72 76 65 72 73 2e 20 | cal.API.on.all.virtual.servers.. |
| db9a0 | 55 73 65 20 74 68 69 73 20 74 6f 20 72 65 73 74 72 69 63 74 20 6e 67 69 6e 78 20 74 6f 20 6f 6e | Use.this.to.restrict.nginx.to.on |
| db9c0 | 65 20 6f 72 20 6d 6f 72 65 20 76 69 72 74 75 61 6c 20 68 6f 73 74 73 2e 00 42 79 20 64 65 66 61 | e.or.more.virtual.hosts..By.defa |
| db9e0 | 75 6c 74 2c 20 72 65 63 6f 72 64 65 64 20 66 6c 6f 77 73 20 77 69 6c 6c 20 62 65 20 73 61 76 65 | ult,.recorded.flows.will.be.save |
| dba00 | 64 20 69 6e 74 65 72 6e 61 6c 6c 79 20 61 6e 64 20 63 61 6e 20 62 65 20 6c 69 73 74 65 64 20 77 | d.internally.and.can.be.listed.w |
| dba20 | 69 74 68 20 74 68 65 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 2e 20 59 6f 75 20 6d 61 79 20 64 69 73 | ith.the.CLI.command..You.may.dis |
| dba40 | 61 62 6c 65 20 75 73 69 6e 67 20 74 68 65 20 6c 6f 63 61 6c 20 69 6e 2d 6d 65 6d 6f 72 79 20 74 | able.using.the.local.in-memory.t |
| dba60 | 61 62 6c 65 20 77 69 74 68 20 74 68 65 20 63 6f 6d 6d 61 6e 64 3a 00 42 79 20 64 65 66 61 75 6c | able.with.the.command:.By.defaul |
| dba80 | 74 2c 20 74 68 65 20 42 47 50 20 70 72 65 66 69 78 20 69 73 20 61 64 76 65 72 74 69 73 65 64 20 | t,.the.BGP.prefix.is.advertised. |
| dbaa0 | 65 76 65 6e 20 69 66 20 69 74 27 73 20 6e 6f 74 20 70 72 65 73 65 6e 74 20 69 6e 20 74 68 65 20 | even.if.it's.not.present.in.the. |
| dbac0 | 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 20 54 68 69 73 20 62 65 68 61 76 69 6f 75 72 20 64 69 | routing.table..This.behaviour.di |
| dbae0 | 66 66 65 72 73 20 66 72 6f 6d 20 74 68 65 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 6f 66 | ffers.from.the.implementation.of |
| dbb00 | 20 73 6f 6d 65 20 76 65 6e 64 6f 72 73 2e 00 42 79 20 64 65 66 61 75 6c 74 2c 20 74 68 69 73 20 | .some.vendors..By.default,.this. |
| dbb20 | 62 72 69 64 67 69 6e 67 20 69 73 20 61 6c 6c 6f 77 65 64 2e 00 42 79 20 64 65 66 61 75 6c 74 2c | bridging.is.allowed..By.default, |
| dbb40 | 20 77 68 65 6e 20 56 79 4f 53 20 72 65 63 65 69 76 65 73 20 61 6e 20 49 43 4d 50 20 65 63 68 6f | .when.VyOS.receives.an.ICMP.echo |
| dbb60 | 20 72 65 71 75 65 73 74 20 70 61 63 6b 65 74 20 64 65 73 74 69 6e 65 64 20 66 6f 72 20 69 74 73 | .request.packet.destined.for.its |
| dbb80 | 65 6c 66 2c 20 69 74 20 77 69 6c 6c 20 61 6e 73 77 65 72 20 77 69 74 68 20 61 6e 20 49 43 4d 50 | elf,.it.will.answer.with.an.ICMP |
| dbba0 | 20 65 63 68 6f 20 72 65 70 6c 79 2c 20 75 6e 6c 65 73 73 20 79 6f 75 20 61 76 6f 69 64 20 69 74 | .echo.reply,.unless.you.avoid.it |
| dbbc0 | 20 74 68 72 6f 75 67 68 20 69 74 73 20 66 69 72 65 77 61 6c 6c 2e 00 42 79 20 64 65 66 61 75 6c | .through.its.firewall..By.defaul |
| dbbe0 | 74 2c 20 77 68 65 6e 20 56 79 4f 53 20 72 65 63 65 69 76 65 73 20 61 6e 20 49 43 4d 50 20 65 63 | t,.when.VyOS.receives.an.ICMP.ec |
| dbc00 | 68 6f 20 72 65 71 75 65 73 74 20 70 61 63 6b 65 74 20 64 65 73 74 69 6e 65 64 20 66 6f 72 20 69 | ho.request.packet.destined.for.i |
| dbc20 | 74 73 65 6c 66 2c 20 69 74 20 77 69 6c 6c 20 61 6e 73 77 65 72 20 77 69 74 68 20 61 6e 20 49 43 | tself,.it.will.answer.with.an.IC |
| dbc40 | 4d 50 20 65 63 68 6f 20 72 65 70 6c 79 2c 20 75 6e 6c 65 73 73 20 79 6f 75 20 70 72 65 76 65 6e | MP.echo.reply,.unless.you.preven |
| dbc60 | 74 20 69 74 20 74 68 72 6f 75 67 68 20 69 74 73 20 66 69 72 65 77 61 6c 6c 2e 00 42 79 20 75 73 | t.it.through.its.firewall..By.us |
| dbc80 | 69 6e 67 20 50 73 65 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 74 | ing.Pseudo-Ethernet.interfaces.t |
| dbca0 | 68 65 72 65 20 77 69 6c 6c 20 62 65 20 6c 65 73 73 20 73 79 73 74 65 6d 20 6f 76 65 72 68 65 61 | here.will.be.less.system.overhea |
| dbcc0 | 64 20 63 6f 6d 70 61 72 65 64 20 74 6f 20 72 75 6e 6e 69 6e 67 20 61 20 74 72 61 64 69 74 69 6f | d.compared.to.running.a.traditio |
| dbce0 | 6e 61 6c 20 62 72 69 64 67 69 6e 67 20 61 70 70 72 6f 61 63 68 2e 20 50 73 65 75 64 6f 2d 45 74 | nal.bridging.approach..Pseudo-Et |
| dbd00 | 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 75 73 | hernet.interfaces.can.also.be.us |
| dbd20 | 65 64 20 74 6f 20 77 6f 72 6b 61 72 6f 75 6e 64 20 74 68 65 20 67 65 6e 65 72 61 6c 20 6c 69 6d | ed.to.workaround.the.general.lim |
| dbd40 | 69 74 20 6f 66 20 34 30 39 36 20 76 69 72 74 75 61 6c 20 4c 41 4e 73 20 28 56 4c 41 4e 73 29 20 | it.of.4096.virtual.LANs.(VLANs). |
| dbd60 | 70 65 72 20 70 68 79 73 69 63 61 6c 20 45 74 68 65 72 6e 65 74 20 70 6f 72 74 2c 20 73 69 6e 63 | per.physical.Ethernet.port,.sinc |
| dbd80 | 65 20 74 68 61 74 20 6c 69 6d 69 74 20 69 73 20 77 69 74 68 20 72 65 73 70 65 63 74 20 74 6f 20 | e.that.limit.is.with.respect.to. |
| dbda0 | 61 20 73 69 6e 67 6c 65 20 4d 41 43 20 61 64 64 72 65 73 73 2e 00 42 79 70 61 73 73 69 6e 67 20 | a.single.MAC.address..Bypassing. |
| dbdc0 | 74 68 65 20 77 65 62 70 72 6f 78 79 00 43 41 20 28 43 65 72 74 69 66 69 63 61 74 65 20 41 75 74 | the.webproxy.CA.(Certificate.Aut |
| dbde0 | 68 6f 72 69 74 79 29 00 43 41 4b 45 00 43 47 4e 41 54 00 43 47 4e 41 54 20 77 6f 72 6b 73 20 62 | hority).CAKE.CGNAT.CGNAT.works.b |
| dbe00 | 79 20 70 6c 61 63 69 6e 67 20 61 20 4e 41 54 20 64 65 76 69 63 65 20 77 69 74 68 69 6e 20 74 68 | y.placing.a.NAT.device.within.th |
| dbe20 | 65 20 49 53 50 27 73 20 6e 65 74 77 6f 72 6b 2e 20 54 68 69 73 20 64 65 76 69 63 65 20 74 72 61 | e.ISP's.network..This.device.tra |
| dbe40 | 6e 73 6c 61 74 65 73 20 70 72 69 76 61 74 65 20 49 50 20 61 64 64 72 65 73 73 65 73 20 66 72 6f | nslates.private.IP.addresses.fro |
| dbe60 | 6d 20 63 75 73 74 6f 6d 65 72 20 6e 65 74 77 6f 72 6b 73 20 74 6f 20 61 20 6c 69 6d 69 74 65 64 | m.customer.networks.to.a.limited |
| dbe80 | 20 70 6f 6f 6c 20 6f 66 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 65 73 20 61 73 73 | .pool.of.public.IP.addresses.ass |
| dbea0 | 69 67 6e 65 64 20 74 6f 20 74 68 65 20 49 53 50 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 6d 61 | igned.to.the.ISP..This.allows.ma |
| dbec0 | 6e 79 20 63 75 73 74 6f 6d 65 72 73 20 74 6f 20 73 68 61 72 65 20 61 20 73 6d 61 6c 6c 65 72 20 | ny.customers.to.share.a.smaller. |
| dbee0 | 6e 75 6d 62 65 72 20 6f 66 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 65 73 2e 00 43 | number.of.public.IP.addresses..C |
| dbf00 | 52 49 54 49 43 2f 45 43 50 00 43 61 6c 6c 20 61 6e 6f 74 68 65 72 20 72 6f 75 74 65 2d 6d 61 70 | RITIC/ECP.Call.another.route-map |
| dbf20 | 20 70 6f 6c 69 63 79 20 6f 6e 20 6d 61 74 63 68 2e 00 43 61 70 61 62 69 6c 69 74 79 20 4e 65 67 | .policy.on.match..Capability.Neg |
| dbf40 | 6f 74 69 61 74 69 6f 6e 00 43 65 72 74 61 69 6e 20 76 65 6e 64 6f 72 73 20 75 73 65 20 62 72 6f | otiation.Certain.vendors.use.bro |
| dbf60 | 61 64 63 61 73 74 73 20 74 6f 20 69 64 65 6e 74 69 66 79 20 74 68 65 69 72 20 65 71 75 69 70 6d | adcasts.to.identify.their.equipm |
| dbf80 | 65 6e 74 20 77 69 74 68 69 6e 20 6f 6e 65 20 65 74 68 65 72 6e 65 74 20 73 65 67 6d 65 6e 74 2e | ent.within.one.ethernet.segment. |
| dbfa0 | 20 55 6e 66 6f 72 74 75 6e 61 74 65 6c 79 20 69 66 20 79 6f 75 20 73 70 6c 69 74 20 79 6f 75 72 | .Unfortunately.if.you.split.your |
| dbfc0 | 20 6e 65 74 77 6f 72 6b 20 77 69 74 68 20 6d 75 6c 74 69 70 6c 65 20 56 4c 41 4e 73 20 79 6f 75 | .network.with.multiple.VLANs.you |
| dbfe0 | 20 6c 6f 6f 73 65 20 74 68 65 20 61 62 69 6c 69 74 79 20 6f 66 20 69 64 65 6e 74 69 66 79 69 6e | .loose.the.ability.of.identifyin |
| dc000 | 67 20 79 6f 75 72 20 65 71 75 69 70 6d 65 6e 74 2e 00 43 65 72 74 69 66 69 63 61 74 65 20 41 75 | g.your.equipment..Certificate.Au |
| dc020 | 74 68 6f 72 69 74 79 20 28 43 41 29 00 43 65 72 74 69 66 69 63 61 74 65 20 72 65 76 6f 63 61 74 | thority.(CA).Certificate.revocat |
| dc040 | 69 6f 6e 20 6c 69 73 74 20 69 6e 20 50 45 4d 20 66 6f 72 6d 61 74 2e 00 43 65 72 74 69 66 69 63 | ion.list.in.PEM.format..Certific |
| dc060 | 61 74 65 73 00 43 68 61 6e 67 65 20 73 79 73 74 65 6d 20 6b 65 79 62 6f 61 72 64 20 6c 61 79 6f | ates.Change.system.keyboard.layo |
| dc080 | 75 74 20 74 6f 20 67 69 76 65 6e 20 6c 61 6e 67 75 61 67 65 2e 00 43 68 61 6e 67 65 20 74 68 65 | ut.to.given.language..Change.the |
| dc0a0 | 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 77 69 74 68 20 74 68 69 73 20 73 65 74 74 69 6e | .default-action.with.this.settin |
| dc0c0 | 67 2e 00 43 68 61 6e 67 65 73 20 69 6e 20 42 47 50 20 70 6f 6c 69 63 69 65 73 20 72 65 71 75 69 | g..Changes.in.BGP.policies.requi |
| dc0e0 | 72 65 20 74 68 65 20 42 47 50 20 73 65 73 73 69 6f 6e 20 74 6f 20 62 65 20 63 6c 65 61 72 65 64 | re.the.BGP.session.to.be.cleared |
| dc100 | 2e 20 43 6c 65 61 72 69 6e 67 20 68 61 73 20 61 20 6c 61 72 67 65 20 6e 65 67 61 74 69 76 65 20 | ..Clearing.has.a.large.negative. |
| dc120 | 69 6d 70 61 63 74 20 6f 6e 20 6e 65 74 77 6f 72 6b 20 6f 70 65 72 61 74 69 6f 6e 73 2e 20 53 6f | impact.on.network.operations..So |
| dc140 | 66 74 20 72 65 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 6e 61 62 6c 65 73 20 79 6f 75 20 74 | ft.reconfiguration.enables.you.t |
| dc160 | 6f 20 67 65 6e 65 72 61 74 65 20 69 6e 62 6f 75 6e 64 20 75 70 64 61 74 65 73 20 66 72 6f 6d 20 | o.generate.inbound.updates.from. |
| dc180 | 61 20 6e 65 69 67 68 62 6f 72 2c 20 63 68 61 6e 67 65 20 61 6e 64 20 61 63 74 69 76 61 74 65 20 | a.neighbor,.change.and.activate. |
| dc1a0 | 42 47 50 20 70 6f 6c 69 63 69 65 73 20 77 69 74 68 6f 75 74 20 63 6c 65 61 72 69 6e 67 20 74 68 | BGP.policies.without.clearing.th |
| dc1c0 | 65 20 42 47 50 20 73 65 73 73 69 6f 6e 2e 00 43 68 61 6e 67 65 73 20 74 6f 20 74 68 65 20 4e 41 | e.BGP.session..Changes.to.the.NA |
| dc1e0 | 54 20 73 79 73 74 65 6d 20 6f 6e 6c 79 20 61 66 66 65 63 74 20 6e 65 77 6c 79 20 65 73 74 61 62 | T.system.only.affect.newly.estab |
| dc200 | 6c 69 73 68 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 20 41 6c 72 65 61 64 79 20 65 73 74 61 | lished.connections..Already.esta |
| dc220 | 62 6c 69 73 68 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 61 72 65 20 6e 6f 74 20 61 66 66 65 | blished.connections.are.not.affe |
| dc240 | 63 74 65 64 2e 00 43 68 61 6e 67 69 6e 67 20 74 68 65 20 6b 65 79 6d 61 70 20 6f 6e 6c 79 20 68 | cted..Changing.the.keymap.only.h |
| dc260 | 61 73 20 61 6e 20 65 66 66 65 63 74 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 20 63 6f 6e 73 6f | as.an.effect.on.the.system.conso |
| dc280 | 6c 65 2c 20 75 73 69 6e 67 20 53 53 48 20 6f 72 20 53 65 72 69 61 6c 20 72 65 6d 6f 74 65 20 61 | le,.using.SSH.or.Serial.remote.a |
| dc2a0 | 63 63 65 73 73 20 74 6f 20 74 68 65 20 64 65 76 69 63 65 20 69 73 20 6e 6f 74 20 61 66 66 65 63 | ccess.to.the.device.is.not.affec |
| dc2c0 | 74 65 64 20 61 73 20 74 68 65 20 6b 65 79 62 6f 61 72 64 20 6c 61 79 6f 75 74 20 68 65 72 65 20 | ted.as.the.keyboard.layout.here. |
| dc2e0 | 63 6f 72 72 65 73 70 6f 6e 64 73 20 74 6f 20 79 6f 75 72 20 61 63 63 65 73 73 20 73 79 73 74 65 | corresponds.to.your.access.syste |
| dc300 | 6d 2e 00 43 68 61 6e 6e 65 6c 20 6e 75 6d 62 65 72 20 28 49 45 45 45 20 38 30 32 2e 31 31 29 2c | m..Channel.number.(IEEE.802.11), |
| dc320 | 20 66 6f 72 20 32 2e 34 47 68 7a 20 28 38 30 32 2e 31 31 20 62 2f 67 2f 6e 29 20 63 68 61 6e 6e | .for.2.4Ghz.(802.11.b/g/n).chann |
| dc340 | 65 6c 73 20 72 61 6e 67 65 20 66 72 6f 6d 20 31 2d 31 34 2e 20 4f 6e 20 35 47 68 7a 20 28 38 30 | els.range.from.1-14..On.5Ghz.(80 |
| dc360 | 32 2e 31 31 20 61 2f 68 2f 6a 2f 6e 2f 61 63 29 20 63 68 61 6e 6e 65 6c 73 20 61 76 61 69 6c 61 | 2.11.a/h/j/n/ac).channels.availa |
| dc380 | 62 6c 65 20 61 72 65 20 30 2c 20 33 34 20 74 6f 20 31 37 33 00 43 68 61 6e 6e 65 6c 20 6e 75 6d | ble.are.0,.34.to.173.Channel.num |
| dc3a0 | 62 65 72 20 28 49 45 45 45 20 38 30 32 2e 31 31 29 2c 20 66 6f 72 20 32 2e 34 47 68 7a 20 28 38 | ber.(IEEE.802.11),.for.2.4Ghz.(8 |
| dc3c0 | 30 32 2e 31 31 20 62 2f 67 2f 6e 29 20 63 68 61 6e 6e 65 6c 73 20 72 61 6e 67 65 20 66 72 6f 6d | 02.11.b/g/n).channels.range.from |
| dc3e0 | 20 31 2d 31 34 2e 20 4f 6e 20 35 47 68 7a 20 28 38 30 32 2e 31 31 20 61 2f 68 2f 6a 2f 6e 2f 61 | .1-14..On.5Ghz.(802.11.a/h/j/n/a |
| dc400 | 63 29 20 63 68 61 6e 6e 65 6c 73 20 61 76 61 69 6c 61 62 6c 65 20 61 72 65 20 30 2c 20 33 34 20 | c).channels.available.are.0,.34. |
| dc420 | 74 6f 20 31 37 33 2e 20 4f 6e 20 36 47 48 7a 20 28 38 30 32 2e 31 31 20 61 78 29 20 63 68 61 6e | to.173..On.6GHz.(802.11.ax).chan |
| dc440 | 6e 65 6c 73 20 72 61 6e 67 65 20 66 72 6f 6d 20 31 20 74 6f 20 32 33 33 2e 00 43 68 61 6e 6e 65 | nels.range.from.1.to.233..Channe |
| dc460 | 6c 20 6e 75 6d 62 65 72 20 28 49 45 45 45 20 38 30 32 2e 31 31 29 2c 20 66 6f 72 20 32 2e 34 47 | l.number.(IEEE.802.11),.for.2.4G |
| dc480 | 68 7a 20 28 38 30 32 2e 31 31 20 62 2f 67 2f 6e 2f 61 78 29 20 63 68 61 6e 6e 65 6c 73 20 72 61 | hz.(802.11.b/g/n/ax).channels.ra |
| dc4a0 | 6e 67 65 20 66 72 6f 6d 20 31 2d 31 34 2e 20 4f 6e 20 35 47 68 7a 20 28 38 30 32 2e 31 31 20 61 | nge.from.1-14..On.5Ghz.(802.11.a |
| dc4c0 | 2f 68 2f 6a 2f 6e 2f 61 63 29 20 63 68 61 6e 6e 65 6c 73 20 61 76 61 69 6c 61 62 6c 65 20 61 72 | /h/j/n/ac).channels.available.ar |
| dc4e0 | 65 20 30 2c 20 33 34 20 74 6f 20 31 37 37 2e 20 4f 6e 20 36 47 48 7a 20 28 38 30 32 2e 31 31 20 | e.0,.34.to.177..On.6GHz.(802.11. |
| dc500 | 61 78 29 20 63 68 61 6e 6e 65 6c 73 20 72 61 6e 67 65 20 66 72 6f 6d 20 31 20 74 6f 20 32 33 33 | ax).channels.range.from.1.to.233 |
| dc520 | 2e 00 43 68 65 63 6b 20 69 66 20 74 68 65 20 49 6e 74 65 6c c2 ae 20 51 41 54 20 64 65 76 69 63 | ..Check.if.the.Intel...QAT.devic |
| dc540 | 65 20 69 73 20 75 70 20 61 6e 64 20 72 65 61 64 79 20 74 6f 20 64 6f 20 74 68 65 20 6a 6f 62 2e | e.is.up.and.ready.to.do.the.job. |
| dc560 | 00 43 68 65 63 6b 20 73 74 61 74 75 73 00 43 68 65 63 6b 20 74 68 65 20 6d 61 6e 79 20 70 61 72 | .Check.status.Check.the.many.par |
| dc580 | 61 6d 65 74 65 72 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 74 68 65 20 60 73 68 6f 77 20 | ameters.available.for.the.`show. |
| dc5a0 | 69 70 76 36 20 72 6f 75 74 65 60 20 63 6f 6d 6d 61 6e 64 3a 00 43 68 65 63 6b 3a 00 43 68 65 63 | ipv6.route`.command:.Check:.Chec |
| dc5c0 | 6b 69 6e 67 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 00 43 68 65 63 6b 73 00 43 68 65 63 6b 73 20 66 | king.connections.Checks.Checks.f |
| dc5e0 | 6f 72 20 74 68 65 20 65 78 69 73 74 65 6e 63 65 20 6f 66 20 74 68 65 20 53 75 72 69 63 61 74 61 | or.the.existence.of.the.Suricata |
| dc600 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 69 6c 65 2c 20 75 70 64 61 74 65 73 20 74 68 65 | .configuration.file,.updates.the |
| dc620 | 20 73 65 72 76 69 63 65 2c 20 61 6e 64 20 74 68 65 6e 20 72 65 73 74 61 72 74 73 20 69 74 2e 20 | .service,.and.then.restarts.it.. |
| dc640 | 49 66 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 69 6c 65 20 69 73 20 6e 6f 74 | If.the.configuration.file.is.not |
| dc660 | 20 66 6f 75 6e 64 2c 20 61 20 6d 65 73 73 61 67 65 20 69 6e 64 69 63 61 74 65 73 20 74 68 61 74 | .found,.a.message.indicates.that |
| dc680 | 20 53 75 72 69 63 61 74 61 20 69 73 20 6e 6f 74 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 43 68 6f | .Suricata.is.not.configured..Cho |
| dc6a0 | 6f 73 65 20 79 6f 75 72 20 60 60 64 69 72 65 63 74 6f 72 79 60 60 20 6c 6f 63 61 74 69 6f 6e 20 | ose.your.``directory``.location. |
| dc6c0 | 63 61 72 65 66 75 6c 6c 79 20 6f 72 20 79 6f 75 20 77 69 6c 6c 20 6c 6f 6f 73 65 20 74 68 65 20 | carefully.or.you.will.loose.the. |
| dc6e0 | 63 6f 6e 74 65 6e 74 20 6f 6e 20 69 6d 61 67 65 20 75 70 67 72 61 64 65 73 2e 20 41 6e 79 20 64 | content.on.image.upgrades..Any.d |
| dc700 | 69 72 65 63 74 6f 72 79 20 75 6e 64 65 72 20 60 60 2f 63 6f 6e 66 69 67 60 60 20 69 73 20 73 61 | irectory.under.``/config``.is.sa |
| dc720 | 76 65 20 61 74 20 74 68 69 73 20 77 69 6c 6c 20 62 65 20 6d 69 67 72 61 74 65 64 2e 00 43 69 73 | ve.at.this.will.be.migrated..Cis |
| dc740 | 63 6f 20 43 61 74 61 6c 79 73 74 00 43 69 73 63 6f 20 61 6e 64 20 41 6c 6c 69 65 64 20 54 65 6c | co.Catalyst.Cisco.and.Allied.Tel |
| dc760 | 65 73 79 6e 20 63 61 6c 6c 20 69 74 20 50 72 69 76 61 74 65 20 56 4c 41 4e 00 43 6c 61 6d 70 20 | esyn.call.it.Private.VLAN.Clamp. |
| dc780 | 4d 53 53 20 66 6f 72 20 61 20 73 70 65 63 69 66 69 63 20 49 50 00 43 6c 61 73 73 20 74 72 65 61 | MSS.for.a.specific.IP.Class.trea |
| dc7a0 | 74 6d 65 6e 74 00 43 6c 61 73 73 65 73 00 43 6c 61 73 73 6c 65 73 73 20 73 74 61 74 69 63 20 72 | tment.Classes.Classless.static.r |
| dc7c0 | 6f 75 74 65 00 43 6c 65 61 72 20 61 6c 6c 20 42 47 50 20 65 78 74 63 6f 6d 6d 75 6e 69 74 69 65 | oute.Clear.all.BGP.extcommunitie |
| dc7e0 | 73 2e 00 43 6c 69 65 6e 74 00 43 6c 69 65 6e 74 20 41 64 64 72 65 73 73 20 50 6f 6f 6c 73 00 43 | s..Client.Client.Address.Pools.C |
| dc800 | 6c 69 65 6e 74 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 00 43 6c 69 65 6e 74 20 43 6f 6e 66 | lient.Authentication.Client.Conf |
| dc820 | 69 67 75 72 61 74 69 6f 6e 00 43 6c 69 65 6e 74 20 49 50 20 50 6f 6f 6c 20 41 64 76 61 6e 63 65 | iguration.Client.IP.Pool.Advance |
| dc840 | 64 20 4f 70 74 69 6f 6e 73 00 43 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 65 73 20 77 69 | d.Options.Client.IP.addresses.wi |
| dc860 | 6c 6c 20 62 65 20 70 72 6f 76 69 64 65 64 20 66 72 6f 6d 20 70 6f 6f 6c 20 60 31 39 32 2e 30 2e | ll.be.provided.from.pool.`192.0. |
| dc880 | 32 2e 30 2f 32 35 60 00 43 6c 69 65 6e 74 20 53 69 64 65 00 43 6c 69 65 6e 74 20 53 69 64 65 20 | 2.0/25`.Client.Side.Client.Side. |
| dc8a0 | 3a 00 43 6c 69 65 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 43 6c 69 65 6e 74 20 64 6f | :.Client.configuration.Client.do |
| dc8c0 | 6d 61 69 6e 20 6e 61 6d 65 00 43 6c 69 65 6e 74 20 64 6f 6d 61 69 6e 20 73 65 61 72 63 68 00 43 | main.name.Client.domain.search.C |
| dc8e0 | 6c 69 65 6e 74 20 69 73 6f 6c 61 74 69 6f 6e 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 70 | lient.isolation.can.be.used.to.p |
| dc900 | 72 65 76 65 6e 74 20 6c 6f 77 2d 6c 65 76 65 6c 20 62 72 69 64 67 69 6e 67 20 6f 66 20 66 72 61 | revent.low-level.bridging.of.fra |
| dc920 | 6d 65 73 20 62 65 74 77 65 65 6e 20 61 73 73 6f 63 69 61 74 65 64 20 73 74 61 74 69 6f 6e 73 20 | mes.between.associated.stations. |
| dc940 | 69 6e 20 74 68 65 20 42 53 53 2e 00 43 6c 69 65 6e 74 3a 00 43 6c 69 65 6e 74 73 20 61 72 65 20 | in.the.BSS..Client:.Clients.are. |
| dc960 | 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 74 68 65 20 43 4e 20 66 69 65 6c 64 20 6f 66 20 74 68 | identified.by.the.CN.field.of.th |
| dc980 | 65 69 72 20 78 2e 35 30 39 20 63 65 72 74 69 66 69 63 61 74 65 73 2c 20 69 6e 20 74 68 69 73 20 | eir.x.509.certificates,.in.this. |
| dc9a0 | 65 78 61 6d 70 6c 65 20 74 68 65 20 43 4e 20 69 73 20 60 60 63 6c 69 65 6e 74 30 60 60 3a 00 43 | example.the.CN.is.``client0``:.C |
| dc9c0 | 6c 69 65 6e 74 73 20 72 65 63 65 69 76 69 6e 67 20 61 64 76 65 72 74 69 73 65 20 6d 65 73 73 61 | lients.receiving.advertise.messa |
| dc9e0 | 67 65 73 20 66 72 6f 6d 20 6d 75 6c 74 69 70 6c 65 20 73 65 72 76 65 72 73 20 63 68 6f 6f 73 65 | ges.from.multiple.servers.choose |
| dca00 | 20 74 68 65 20 73 65 72 76 65 72 20 77 69 74 68 20 74 68 65 20 68 69 67 68 65 73 74 20 70 72 65 | .the.server.with.the.highest.pre |
| dca20 | 66 65 72 65 6e 63 65 20 76 61 6c 75 65 2e 20 54 68 65 20 72 61 6e 67 65 20 66 6f 72 20 74 68 69 | ference.value..The.range.for.thi |
| dca40 | 73 20 76 61 6c 75 65 20 69 73 20 60 60 30 2e 2e 2e 32 35 35 60 60 2e 00 43 6c 6f 63 6b 20 64 61 | s.value.is.``0...255``..Clock.da |
| dca60 | 65 6d 6f 6e 00 43 6f 6d 6d 61 6e 64 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 63 61 6e 20 62 65 20 75 | emon.Command.completion.can.be.u |
| dca80 | 73 65 64 20 74 6f 20 6c 69 73 74 20 61 76 61 69 6c 61 62 6c 65 20 74 69 6d 65 20 7a 6f 6e 65 73 | sed.to.list.available.time.zones |
| dcaa0 | 2e 20 54 68 65 20 61 64 6a 75 73 74 6d 65 6e 74 20 66 6f 72 20 64 61 79 6c 69 67 68 74 20 74 69 | ..The.adjustment.for.daylight.ti |
| dcac0 | 6d 65 20 77 69 6c 6c 20 74 61 6b 65 20 70 6c 61 63 65 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 | me.will.take.place.automatically |
| dcae0 | 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 74 69 6d 65 20 6f 66 20 79 65 61 72 2e 00 43 6f 6d 6d | .based.on.the.time.of.year..Comm |
| dcb00 | 61 6e 64 20 66 6f 72 20 64 69 73 61 62 6c 69 6e 67 20 61 20 72 75 6c 65 20 62 75 74 20 6b 65 65 | and.for.disabling.a.rule.but.kee |
| dcb20 | 70 20 69 74 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 43 6f 6d 6d 61 | p.it.in.the.configuration..Comma |
| dcb40 | 6e 64 20 73 68 6f 75 6c 64 20 70 72 6f 62 61 62 6c 79 20 62 65 20 65 78 74 65 6e 64 65 64 20 74 | nd.should.probably.be.extended.t |
| dcb60 | 6f 20 6c 69 73 74 20 61 6c 73 6f 20 74 68 65 20 72 65 61 6c 20 69 6e 74 65 72 66 61 63 65 73 20 | o.list.also.the.real.interfaces. |
| dcb80 | 61 73 73 69 67 6e 65 64 20 74 6f 20 74 68 69 73 20 6f 6e 65 20 56 52 46 20 74 6f 20 67 65 74 20 | assigned.to.this.one.VRF.to.get. |
| dcba0 | 61 20 62 65 74 74 65 72 20 6f 76 65 72 76 69 65 77 2e 00 43 6f 6d 6d 61 6e 64 20 75 73 65 64 20 | a.better.overview..Command.used. |
| dcbc0 | 74 6f 20 75 70 64 61 74 65 20 47 65 6f 49 50 20 64 61 74 61 62 61 73 65 20 61 6e 64 20 66 69 72 | to.update.GeoIP.database.and.fir |
| dcbe0 | 65 77 61 6c 6c 20 73 65 74 73 2e 00 43 6f 6d 6d 61 6e 64 73 00 43 6f 6d 6d 61 6e 64 73 20 75 73 | ewall.sets..Commands.Commands.us |
| dcc00 | 65 64 20 66 6f 72 20 74 68 69 73 20 74 61 73 6b 20 61 72 65 3a 00 43 6f 6d 6d 6f 6e 20 63 6f 6e | ed.for.this.task.are:.Common.con |
| dcc20 | 66 69 67 75 72 61 74 69 6f 6e 2c 20 76 61 6c 69 64 20 66 6f 72 20 62 6f 74 68 20 70 72 69 6d 61 | figuration,.valid.for.both.prima |
| dcc40 | 72 79 20 61 6e 64 20 73 65 63 6f 6e 64 61 72 79 20 6e 6f 64 65 2e 00 43 6f 6d 6d 6f 6e 20 69 6e | ry.and.secondary.node..Common.in |
| dcc60 | 74 65 72 66 61 63 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 43 6f 6d 6d 6f 6e 20 70 61 72 | terface.configuration.Common.par |
| dcc80 | 61 6d 65 74 65 72 73 00 43 6f 6d 70 72 65 73 73 69 6f 6e 20 69 73 20 67 65 6e 65 72 61 6c 6c 79 | ameters.Compression.is.generally |
| dcca0 | 20 6e 6f 74 20 72 65 63 6f 6d 6d 65 6e 64 65 64 2e 20 56 50 4e 20 74 75 6e 6e 65 6c 73 20 77 68 | .not.recommended..VPN.tunnels.wh |
| dccc0 | 69 63 68 20 75 73 65 20 63 6f 6d 70 72 65 73 73 69 6f 6e 20 61 72 65 20 73 75 73 63 65 70 74 69 | ich.use.compression.are.suscepti |
| dcce0 | 62 6c 65 20 74 6f 20 74 68 65 20 56 4f 52 41 4c 43 45 20 61 74 74 61 63 6b 20 76 65 63 74 6f 72 | ble.to.the.VORALCE.attack.vector |
| dcd00 | 2e 20 45 6e 61 62 6c 65 20 63 6f 6d 70 72 65 73 73 69 6f 6e 20 69 66 20 6e 65 65 64 65 64 2e 00 | ..Enable.compression.if.needed.. |
| dcd20 | 43 6f 6e 63 6c 75 73 69 6f 6e 00 43 6f 6e 66 65 64 65 72 61 74 69 6f 6e 20 43 6f 6e 66 69 67 75 | Conclusion.Confederation.Configu |
| dcd40 | 72 61 74 69 6f 6e 00 43 6f 6e 66 69 64 65 6e 74 69 61 6c 69 74 79 20 e2 80 93 20 45 6e 63 72 79 | ration.Confidentiality.....Encry |
| dcd60 | 70 74 69 6f 6e 20 6f 66 20 70 61 63 6b 65 74 73 20 74 6f 20 70 72 65 76 65 6e 74 20 73 6e 6f 6f | ption.of.packets.to.prevent.snoo |
| dcd80 | 70 69 6e 67 20 62 79 20 61 6e 20 75 6e 61 75 74 68 6f 72 69 7a 65 64 20 73 6f 75 72 63 65 2e 00 | ping.by.an.unauthorized.source.. |
| dcda0 | 43 6f 6e 66 69 67 20 53 79 6e 63 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 43 6f 6e 66 69 67 | Config.Sync.Configuration.Config |
| dcdc0 | 75 72 61 74 69 6f 6e 20 45 78 61 6d 70 6c 65 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 45 78 | uration.Example.Configuration.Ex |
| dcde0 | 61 6d 70 6c 65 73 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 47 75 69 64 65 00 43 6f 6e 66 69 | amples.Configuration.Guide.Confi |
| dce00 | 67 75 72 61 74 69 6f 6e 20 4f 70 74 69 6f 6e 73 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 | guration.Options.Configuration.c |
| dce20 | 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a | ommands.covered.in.this.section: |
| dce40 | 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 72 20 74 68 65 20 | .Configuration.commands.for.the. |
| dce60 | 70 72 69 76 61 74 65 20 61 6e 64 20 70 75 62 6c 69 63 20 6b 65 79 20 77 69 6c 6c 20 62 65 20 64 | private.and.public.key.will.be.d |
| dce80 | 69 73 70 6c 61 79 65 64 20 6f 6e 20 74 68 65 20 73 63 72 65 65 6e 20 77 68 69 63 68 20 6e 65 65 | isplayed.on.the.screen.which.nee |
| dcea0 | 64 73 20 74 6f 20 62 65 20 73 65 74 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 72 20 66 69 72 73 74 | ds.to.be.set.on.the.router.first |
| dcec0 | 2e 20 4e 6f 74 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 77 69 74 68 20 74 68 65 20 70 75 62 6c | ..Note.the.command.with.the.publ |
| dcee0 | 69 63 20 6b 65 79 20 28 73 65 74 20 70 6b 69 20 6b 65 79 2d 70 61 69 72 20 69 70 73 65 63 2d 4c | ic.key.(set.pki.key-pair.ipsec-L |
| dcf00 | 45 46 54 20 70 75 62 6c 69 63 20 6b 65 79 20 27 4d 49 49 42 49 6a 41 4e 42 67 6b 71 68 2e 2e 2e | EFT.public.key.'MIIBIjANBgkqh... |
| dcf20 | 27 29 2e 20 54 68 65 6e 20 64 6f 20 74 68 65 20 73 61 6d 65 20 6f 6e 20 74 68 65 20 6f 70 70 6f | ')..Then.do.the.same.on.the.oppo |
| dcf40 | 73 69 74 65 20 72 6f 75 74 65 72 3a 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 | site.router:.Configuration.comma |
| dcf60 | 6e 64 73 20 77 69 6c 6c 20 64 69 73 70 6c 61 79 2e 20 4e 6f 74 65 20 74 68 65 20 63 6f 6d 6d 61 | nds.will.display..Note.the.comma |
| dcf80 | 6e 64 20 77 69 74 68 20 74 68 65 20 70 75 62 6c 69 63 20 6b 65 79 20 28 73 65 74 20 70 6b 69 20 | nd.with.the.public.key.(set.pki. |
| dcfa0 | 6b 65 79 2d 70 61 69 72 20 69 70 73 65 63 2d 4c 45 46 54 20 70 75 62 6c 69 63 20 6b 65 79 20 27 | key-pair.ipsec-LEFT.public.key.' |
| dcfc0 | 4d 49 49 42 49 6a 41 4e 42 67 6b 71 68 2e 2e 2e 27 29 2e 20 54 68 65 6e 20 64 6f 20 74 68 65 20 | MIIBIjANBgkqh...')..Then.do.the. |
| dcfe0 | 73 61 6d 65 20 6f 6e 20 74 68 65 20 6f 70 70 6f 73 69 74 65 20 72 6f 75 74 65 72 3a 00 43 6f 6e | same.on.the.opposite.router:.Con |
| dd000 | 66 69 67 75 72 61 74 69 6f 6e 20 65 78 61 6d 70 6c 65 3a 00 43 6f 6e 66 69 67 75 72 61 74 69 6f | figuration.example:.Configuratio |
| dd020 | 6e 20 66 6f 72 20 74 68 65 73 65 20 65 78 70 6f 72 74 65 64 20 72 6f 75 74 65 73 20 6d 75 73 74 | n.for.these.exported.routes.must |
| dd040 | 2c 20 61 74 20 61 20 6d 69 6e 69 6d 75 6d 2c 20 73 70 65 63 69 66 79 20 74 68 65 73 65 20 74 77 | ,.at.a.minimum,.specify.these.tw |
| dd060 | 6f 20 70 61 72 61 6d 65 74 65 72 73 2e 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 3a | o.parameters..Configuration.of.: |
| dd080 | 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 73 74 61 74 69 63 60 00 43 6f 6e 66 69 67 75 72 61 74 69 | ref:`routing-static`.Configurati |
| dd0a0 | 6f 6e 20 6f 66 20 61 20 44 48 43 50 20 48 41 20 70 61 69 72 3a 00 43 6f 6e 66 69 67 75 72 61 74 | on.of.a.DHCP.HA.pair:.Configurat |
| dd0c0 | 69 6f 6e 20 6f 66 20 61 20 44 48 43 50 20 66 61 69 6c 6f 76 65 72 20 70 61 69 72 00 43 6f 6e 66 | ion.of.a.DHCP.failover.pair.Conf |
| dd0e0 | 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 72 6f 75 74 65 20 6c 65 61 6b 69 6e 67 20 62 65 74 77 65 | iguration.of.route.leaking.betwe |
| dd100 | 65 6e 20 61 20 75 6e 69 63 61 73 74 20 56 52 46 20 52 49 42 20 61 6e 64 20 74 68 65 20 56 50 4e | en.a.unicast.VRF.RIB.and.the.VPN |
| dd120 | 20 53 41 46 49 20 52 49 42 20 6f 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 56 52 46 20 69 73 20 | .SAFI.RIB.of.the.default.VRF.is. |
| dd140 | 61 63 63 6f 6d 70 6c 69 73 68 65 64 20 76 69 61 20 63 6f 6d 6d 61 6e 64 73 20 69 6e 20 74 68 65 | accomplished.via.commands.in.the |
| dd160 | 20 63 6f 6e 74 65 78 74 20 6f 66 20 61 20 56 52 46 20 61 64 64 72 65 73 73 2d 66 61 6d 69 6c 79 | .context.of.a.VRF.address-family |
| dd180 | 2e 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 6c 6f 67 67 69 6e 67 20 66 | ..Configuration.of.the.logging.f |
| dd1a0 | 69 6c 65 2e 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 72 65 73 79 6e 63 68 72 6f 6e 69 7a 61 | ile..Configuration.resynchroniza |
| dd1c0 | 74 69 6f 6e 2e 20 57 69 74 68 20 74 68 65 20 63 75 72 72 65 6e 74 20 69 6d 70 6c 65 6d 65 6e 74 | tion..With.the.current.implement |
| dd1e0 | 61 74 69 6f 6e 20 6f 66 20 60 73 65 72 76 69 63 65 20 63 6f 6e 66 69 67 2d 73 79 6e 63 60 2c 20 | ation.of.`service.config-sync`,. |
| dd200 | 74 68 65 20 73 65 63 6f 6e 64 61 72 79 20 6e 6f 64 65 20 6d 75 73 74 20 62 65 20 6f 6e 6c 69 6e | the.secondary.node.must.be.onlin |
| dd220 | 65 2e 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e | e..Configuration.synchronization |
| dd240 | 20 28 63 6f 6e 66 69 67 20 73 79 6e 63 29 20 69 73 20 61 20 66 65 61 74 75 72 65 20 6f 66 20 56 | .(config.sync).is.a.feature.of.V |
| dd260 | 79 4f 53 20 74 68 61 74 20 70 65 72 6d 69 74 73 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e | yOS.that.permits.synchronization |
| dd280 | 20 6f 66 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 6f 6e 65 20 56 79 4f | .of.the.configuration.of.one.VyO |
| dd2a0 | 53 20 72 6f 75 74 65 72 20 74 6f 20 61 6e 6f 74 68 65 72 20 69 6e 20 61 20 6e 65 74 77 6f 72 6b | S.router.to.another.in.a.network |
| dd2c0 | 2e 00 43 6f 6e 66 69 67 75 72 65 00 43 6f 6e 66 69 67 75 72 65 20 3a 61 62 62 72 3a 60 4d 54 55 | ..Configure.Configure.:abbr:`MTU |
| dd2e0 | 20 28 4d 61 78 69 6d 75 6d 20 54 72 61 6e 73 6d 69 73 73 69 6f 6e 20 55 6e 69 74 29 60 20 6f 6e | .(Maximum.Transmission.Unit)`.on |
| dd300 | 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 20 49 74 20 69 73 20 74 68 65 20 | .given.`<interface>`..It.is.the. |
| dd320 | 73 69 7a 65 20 28 69 6e 20 62 79 74 65 73 29 20 6f 66 20 74 68 65 20 6c 61 72 67 65 73 74 20 65 | size.(in.bytes).of.the.largest.e |
| dd340 | 74 68 65 72 6e 65 74 20 66 72 61 6d 65 20 73 65 6e 74 20 6f 6e 20 74 68 69 73 20 6c 69 6e 6b 2e | thernet.frame.sent.on.this.link. |
| dd360 | 00 43 6f 6e 66 69 67 75 72 65 20 42 46 44 00 43 6f 6e 66 69 67 75 72 65 20 44 4e 53 20 60 3c 72 | .Configure.BFD.Configure.DNS.`<r |
| dd380 | 65 63 6f 72 64 3e 60 20 77 68 69 63 68 20 73 68 6f 75 6c 64 20 62 65 20 75 70 64 61 74 65 64 2e | ecord>`.which.should.be.updated. |
| dd3a0 | 20 54 68 69 73 20 63 61 6e 20 62 65 20 73 65 74 20 6d 75 6c 74 69 70 6c 65 20 74 69 6d 65 73 2e | .This.can.be.set.multiple.times. |
| dd3c0 | 00 43 6f 6e 66 69 67 75 72 65 20 44 4e 53 20 60 3c 7a 6f 6e 65 3e 60 20 74 6f 20 62 65 20 75 70 | .Configure.DNS.`<zone>`.to.be.up |
| dd3e0 | 64 61 74 65 64 2e 00 43 6f 6e 66 69 67 75 72 65 20 47 45 4e 45 56 45 20 74 75 6e 6e 65 6c 20 66 | dated..Configure.GENEVE.tunnel.f |
| dd400 | 61 72 20 65 6e 64 2f 72 65 6d 6f 74 65 20 74 75 6e 6e 65 6c 20 65 6e 64 70 6f 69 6e 74 2e 00 43 | ar.end/remote.tunnel.endpoint..C |
| dd420 | 6f 6e 66 69 67 75 72 65 20 47 72 61 63 65 66 75 6c 20 52 65 73 74 61 72 74 20 3a 72 66 63 3a 60 | onfigure.Graceful.Restart.:rfc:` |
| dd440 | 33 36 32 33 60 20 68 65 6c 70 65 72 20 73 75 70 70 6f 72 74 2e 20 42 79 20 64 65 66 61 75 6c 74 | 3623`.helper.support..By.default |
| dd460 | 2c 20 68 65 6c 70 65 72 20 73 75 70 70 6f 72 74 20 69 73 20 64 69 73 61 62 6c 65 64 20 66 6f 72 | ,.helper.support.is.disabled.for |
| dd480 | 20 61 6c 6c 20 6e 65 69 67 68 62 6f 75 72 73 2e 20 54 68 69 73 20 63 6f 6e 66 69 67 20 65 6e 61 | .all.neighbours..This.config.ena |
| dd4a0 | 62 6c 65 73 2f 64 69 73 61 62 6c 65 73 20 68 65 6c 70 65 72 20 73 75 70 70 6f 72 74 20 6f 6e 20 | bles/disables.helper.support.on. |
| dd4c0 | 74 68 69 73 20 72 6f 75 74 65 72 20 66 6f 72 20 61 6c 6c 20 6e 65 69 67 68 62 6f 75 72 73 2e 00 | this.router.for.all.neighbours.. |
| dd4e0 | 43 6f 6e 66 69 67 75 72 65 20 47 72 61 63 65 66 75 6c 20 52 65 73 74 61 72 74 20 3a 72 66 63 3a | Configure.Graceful.Restart.:rfc: |
| dd500 | 60 33 36 32 33 60 20 72 65 73 74 61 72 74 69 6e 67 20 73 75 70 70 6f 72 74 2e 20 57 68 65 6e 20 | `3623`.restarting.support..When. |
| dd520 | 65 6e 61 62 6c 65 64 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 67 72 61 63 65 20 70 65 72 69 6f | enabled,.the.default.grace.perio |
| dd540 | 64 20 69 73 20 31 32 30 20 73 65 63 6f 6e 64 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 49 43 4d 50 | d.is.120.seconds..Configure.ICMP |
| dd560 | 20 74 68 72 65 73 68 6f 6c 64 20 70 61 72 61 6d 65 74 65 72 73 2e 00 43 6f 6e 66 69 67 75 72 65 | .threshold.parameters..Configure |
| dd580 | 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 44 48 43 50 20 60 3c 73 65 72 76 65 72 | .IP.address.of.the.DHCP.`<server |
| dd5a0 | 3e 60 20 77 68 69 63 68 20 77 69 6c 6c 20 68 61 6e 64 6c 65 20 74 68 65 20 72 65 6c 61 79 65 64 | >`.which.will.handle.the.relayed |
| dd5c0 | 20 70 61 63 6b 65 74 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 52 41 44 49 55 53 20 60 3c 73 65 72 | .packets..Configure.RADIUS.`<ser |
| dd5e0 | 76 65 72 3e 60 20 61 6e 64 20 69 74 73 20 72 65 71 75 69 72 65 64 20 70 6f 72 74 20 66 6f 72 20 | ver>`.and.its.required.port.for. |
| dd600 | 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 72 65 71 75 65 73 74 73 2e 00 43 6f 6e 66 69 67 75 | authentication.requests..Configu |
| dd620 | 72 65 20 52 41 44 49 55 53 20 60 3c 73 65 72 76 65 72 3e 60 20 61 6e 64 20 69 74 73 20 72 65 71 | re.RADIUS.`<server>`.and.its.req |
| dd640 | 75 69 72 65 64 20 73 68 61 72 65 64 20 60 3c 73 65 63 72 65 74 3e 60 20 66 6f 72 20 63 6f 6d 6d | uired.shared.`<secret>`.for.comm |
| dd660 | 75 6e 69 63 61 74 69 6e 67 20 77 69 74 68 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 | unicating.with.the.RADIUS.server |
| dd680 | 2e 00 43 6f 6e 66 69 67 75 72 65 20 53 4e 41 54 20 72 75 6c 65 20 28 34 30 29 20 74 6f 20 6f 6e | ..Configure.SNAT.rule.(40).to.on |
| dd6a0 | 6c 79 20 4e 41 54 20 70 61 63 6b 65 74 73 20 77 69 74 68 20 61 20 64 65 73 74 69 6e 61 74 69 6f | ly.NAT.packets.with.a.destinatio |
| dd6c0 | 6e 20 61 64 64 72 65 73 73 20 6f 66 20 31 39 32 2e 30 2e 32 2e 31 2e 00 43 6f 6e 66 69 67 75 72 | n.address.of.192.0.2.1..Configur |
| dd6e0 | 65 20 54 43 50 20 74 68 72 65 73 68 6f 6c 64 20 70 61 72 61 6d 65 74 65 72 73 00 43 6f 6e 66 69 | e.TCP.threshold.parameters.Confi |
| dd700 | 67 75 72 65 20 55 44 50 20 74 68 72 65 73 68 6f 6c 64 20 70 61 72 61 6d 65 74 65 72 73 00 43 6f | gure.UDP.threshold.parameters.Co |
| dd720 | 6e 66 69 67 75 72 65 20 60 3c 6d 65 73 73 61 67 65 3e 60 20 77 68 69 63 68 20 69 73 20 73 68 6f | nfigure.`<message>`.which.is.sho |
| dd740 | 77 6e 20 61 66 74 65 72 20 75 73 65 72 20 68 61 73 20 6c 6f 67 67 65 64 20 69 6e 20 74 6f 20 74 | wn.after.user.has.logged.in.to.t |
| dd760 | 68 65 20 73 79 73 74 65 6d 2e 00 43 6f 6e 66 69 67 75 72 65 20 60 3c 6d 65 73 73 61 67 65 3e 60 | he.system..Configure.`<message>` |
| dd780 | 20 77 68 69 63 68 20 69 73 20 73 68 6f 77 6e 20 64 75 72 69 6e 67 20 53 53 48 20 63 6f 6e 6e 65 | .which.is.shown.during.SSH.conne |
| dd7a0 | 63 74 20 61 6e 64 20 62 65 66 6f 72 65 20 61 20 75 73 65 72 20 69 73 20 6c 6f 67 67 65 64 20 69 | ct.and.before.a.user.is.logged.i |
| dd7c0 | 6e 2e 00 43 6f 6e 66 69 67 75 72 65 20 60 3c 70 61 73 73 77 6f 72 64 3e 60 20 75 73 65 64 20 77 | n..Configure.`<password>`.used.w |
| dd7e0 | 68 65 6e 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 74 68 65 20 75 70 64 61 74 65 20 72 65 | hen.authenticating.the.update.re |
| dd800 | 71 75 65 73 74 20 66 6f 72 20 44 79 6e 44 4e 53 20 73 65 72 76 69 63 65 20 69 64 65 6e 74 69 66 | quest.for.DynDNS.service.identif |
| dd820 | 69 65 64 20 62 79 20 60 3c 73 65 72 76 69 63 65 2d 6e 61 6d 65 3e 60 2e 00 43 6f 6e 66 69 67 75 | ied.by.`<service-name>`..Configu |
| dd840 | 72 65 20 60 3c 70 61 73 73 77 6f 72 64 3e 60 20 75 73 65 64 20 77 68 65 6e 20 61 75 74 68 65 6e | re.`<password>`.used.when.authen |
| dd860 | 74 69 63 61 74 69 6e 67 20 74 68 65 20 75 70 64 61 74 65 20 72 65 71 75 65 73 74 20 66 6f 72 20 | ticating.the.update.request.for. |
| dd880 | 44 79 6e 44 4e 53 20 73 65 72 76 69 63 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 73 | DynDNS.service.identified.by.`<s |
| dd8a0 | 65 72 76 69 63 65 3e 60 2e 00 43 6f 6e 66 69 67 75 72 65 20 60 3c 75 73 65 72 6e 61 6d 65 3e 60 | ervice>`..Configure.`<username>` |
| dd8c0 | 20 75 73 65 64 20 77 68 65 6e 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 74 68 65 20 75 70 | .used.when.authenticating.the.up |
| dd8e0 | 64 61 74 65 20 72 65 71 75 65 73 74 20 66 6f 72 20 44 79 6e 44 4e 53 20 73 65 72 76 69 63 65 20 | date.request.for.DynDNS.service. |
| dd900 | 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 73 65 72 76 69 63 65 2d 6e 61 6d 65 3e 60 2e 00 | identified.by.`<service-name>`.. |
| dd920 | 43 6f 6e 66 69 67 75 72 65 20 60 3c 75 73 65 72 6e 61 6d 65 3e 60 20 75 73 65 64 20 77 68 65 6e | Configure.`<username>`.used.when |
| dd940 | 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 74 68 65 20 75 70 64 61 74 65 20 72 65 71 75 65 | .authenticating.the.update.reque |
| dd960 | 73 74 20 66 6f 72 20 44 79 6e 44 4e 53 20 73 65 72 76 69 63 65 20 69 64 65 6e 74 69 66 69 65 64 | st.for.DynDNS.service.identified |
| dd980 | 20 62 79 20 60 3c 73 65 72 76 69 63 65 3e 60 2e 20 46 6f 72 20 4e 61 6d 65 63 68 65 61 70 2c 20 | .by.`<service>`..For.Namecheap,. |
| dd9a0 | 73 65 74 20 74 68 65 20 3c 64 6f 6d 61 69 6e 3e 20 79 6f 75 20 77 69 73 68 20 74 6f 20 75 70 64 | set.the.<domain>.you.wish.to.upd |
| dd9c0 | 61 74 65 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 20 55 52 4c 20 74 68 61 74 20 63 6f 6e 74 61 69 | ate..Configure.a.URL.that.contai |
| dd9e0 | 6e 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 69 6d 61 67 65 73 2e 00 43 6f 6e | ns.information.about.images..Con |
| dda00 | 66 69 67 75 72 65 20 61 20 73 46 6c 6f 77 20 61 67 65 6e 74 20 61 64 64 72 65 73 73 2e 20 49 74 | figure.a.sFlow.agent.address..It |
| dda20 | 20 63 61 6e 20 62 65 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 2c 20 62 75 | .can.be.IPv4.or.IPv6.address,.bu |
| dda40 | 74 20 79 6f 75 20 6d 75 73 74 20 73 65 74 20 74 68 65 20 73 61 6d 65 20 70 72 6f 74 6f 63 6f 6c | t.you.must.set.the.same.protocol |
| dda60 | 2c 20 77 68 69 63 68 20 69 73 20 75 73 65 64 20 66 6f 72 20 73 46 6c 6f 77 20 63 6f 6c 6c 65 63 | ,.which.is.used.for.sFlow.collec |
| dda80 | 74 6f 72 20 61 64 64 72 65 73 73 65 73 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 75 73 69 6e 67 | tor.addresses..By.default,.using |
| ddaa0 | 20 72 6f 75 74 65 72 2d 69 64 20 66 72 6f 6d 20 42 47 50 20 6f 72 20 4f 53 50 46 20 70 72 6f 74 | .router-id.from.BGP.or.OSPF.prot |
| ddac0 | 6f 63 6f 6c 2c 20 6f 72 20 74 68 65 20 70 72 69 6d 61 72 79 20 49 50 20 61 64 64 72 65 73 73 20 | ocol,.or.the.primary.IP.address. |
| ddae0 | 66 72 6f 6d 20 74 68 65 20 66 69 72 73 74 20 69 6e 74 65 72 66 61 63 65 2e 00 43 6f 6e 66 69 67 | from.the.first.interface..Config |
| ddb00 | 75 72 65 20 61 20 73 74 61 74 69 63 20 72 6f 75 74 65 20 66 6f 72 20 3c 73 75 62 6e 65 74 3e 20 | ure.a.static.route.for.<subnet>. |
| ddb20 | 75 73 69 6e 67 20 67 61 74 65 77 61 79 20 3c 61 64 64 72 65 73 73 3e 20 2c 20 75 73 65 20 73 6f | using.gateway.<address>.,.use.so |
| ddb40 | 75 72 63 65 20 61 64 64 72 65 73 73 20 74 6f 20 69 6e 64 65 6e 74 69 66 79 20 74 68 65 20 70 65 | urce.address.to.indentify.the.pe |
| ddb60 | 65 72 20 77 68 65 6e 20 69 73 20 6d 75 6c 74 69 2d 68 6f 70 20 73 65 73 73 69 6f 6e 20 61 6e 64 | er.when.is.multi-hop.session.and |
| ddb80 | 20 74 68 65 20 67 61 74 65 77 61 79 20 61 64 64 72 65 73 73 20 61 73 20 42 46 44 20 70 65 65 72 | .the.gateway.address.as.BFD.peer |
| ddba0 | 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 | .destination.address..Configure. |
| ddbc0 | 61 20 73 74 61 74 69 63 20 72 6f 75 74 65 20 66 6f 72 20 3c 73 75 62 6e 65 74 3e 20 75 73 69 6e | a.static.route.for.<subnet>.usin |
| ddbe0 | 67 20 67 61 74 65 77 61 79 20 3c 61 64 64 72 65 73 73 3e 20 61 6e 64 20 75 73 65 20 74 68 65 20 | g.gateway.<address>.and.use.the. |
| ddc00 | 67 61 74 65 77 61 79 20 61 64 64 72 65 73 73 20 61 73 20 42 46 44 20 70 65 65 72 20 64 65 73 74 | gateway.address.as.BFD.peer.dest |
| ddc20 | 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 64 64 72 65 | ination.address..Configure.addre |
| ddc40 | 73 73 20 6f 66 20 4e 65 74 46 6c 6f 77 20 63 6f 6c 6c 65 63 74 6f 72 2e 20 4e 65 74 46 6c 6f 77 | ss.of.NetFlow.collector..NetFlow |
| ddc60 | 20 73 65 72 76 65 72 20 61 74 20 60 3c 61 64 64 72 65 73 73 3e 60 20 63 61 6e 20 62 65 20 62 6f | .server.at.`<address>`.can.be.bo |
| ddc80 | 74 68 20 6c 69 73 74 65 6e 69 6e 67 20 6f 6e 20 61 6e 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 | th.listening.on.an.IPv4.or.IPv6. |
| ddca0 | 61 64 64 72 65 73 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 64 64 72 65 73 73 20 6f 66 20 73 46 | address..Configure.address.of.sF |
| ddcc0 | 6c 6f 77 20 63 6f 6c 6c 65 63 74 6f 72 2e 20 73 46 6c 6f 77 20 73 65 72 76 65 72 20 61 74 20 3c | low.collector..sFlow.server.at.< |
| ddce0 | 61 64 64 72 65 73 73 3e 20 63 61 6e 20 62 65 20 62 6f 74 68 20 6c 69 73 74 65 6e 69 6e 67 20 6f | address>.can.be.both.listening.o |
| ddd00 | 6e 20 61 6e 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 2e 00 43 6f 6e 66 69 | n.an.IPv4.or.IPv6.address..Confi |
| ddd20 | 67 75 72 65 20 61 64 64 72 65 73 73 20 6f 66 20 73 46 6c 6f 77 20 63 6f 6c 6c 65 63 74 6f 72 2e | gure.address.of.sFlow.collector. |
| ddd40 | 20 73 46 6c 6f 77 20 73 65 72 76 65 72 20 61 74 20 60 3c 61 64 64 72 65 73 73 3e 60 20 63 61 6e | .sFlow.server.at.`<address>`.can |
| ddd60 | 20 62 65 20 61 6e 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 2e 20 42 75 74 | .be.an.IPv4.or.IPv6.address..But |
| ddd80 | 20 79 6f 75 20 63 61 6e 6e 6f 74 20 65 78 70 6f 72 74 20 74 6f 20 62 6f 74 68 20 49 50 76 34 20 | .you.cannot.export.to.both.IPv4. |
| ddda0 | 61 6e 64 20 49 50 76 36 20 63 6f 6c 6c 65 63 74 6f 72 73 20 61 74 20 74 68 65 20 73 61 6d 65 20 | and.IPv6.collectors.at.the.same. |
| dddc0 | 74 69 6d 65 21 00 43 6f 6e 66 69 67 75 72 65 20 61 67 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 | time!.Configure.agent.IP.address |
| ddde0 | 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e | .associated.with.this.interface. |
| dde00 | 00 43 6f 6e 66 69 67 75 72 65 20 61 67 67 72 65 67 61 74 69 6f 6e 20 64 65 6c 61 79 20 74 69 6d | .Configure.aggregation.delay.tim |
| dde20 | 65 72 20 69 6e 74 65 72 76 61 6c 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 6c 65 72 74 20 73 63 72 | er.interval..Configure.alert.scr |
| dde40 | 69 70 74 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 65 78 65 63 75 74 65 64 20 77 68 65 6e 20 61 | ipt.that.will.be.executed.when.a |
| dde60 | 6e 20 61 74 74 61 63 6b 20 69 73 20 64 65 74 65 63 74 65 64 2e 00 43 6f 6e 66 69 67 75 72 65 20 | n.attack.is.detected..Configure. |
| dde80 | 61 6e 20 61 63 63 6f 75 6e 74 69 6e 67 20 73 65 72 76 65 72 20 61 6e 64 20 65 6e 61 62 6c 65 20 | an.accounting.server.and.enable. |
| ddea0 | 61 63 63 6f 75 6e 74 69 6e 67 20 77 69 74 68 3a 00 43 6f 6e 66 69 67 75 72 65 20 61 6e 64 20 65 | accounting.with:.Configure.and.e |
| ddec0 | 6e 61 62 6c 65 20 63 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 66 6c 6f 77 20 69 6e 66 6f 72 6d 61 | nable.collection.of.flow.informa |
| ddee0 | 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 | tion.for.the.interface.identifie |
| ddf00 | 64 20 62 79 20 3c 69 6e 74 65 72 66 61 63 65 3e 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 6e 64 20 | d.by.<interface>..Configure.and. |
| ddf20 | 65 6e 61 62 6c 65 20 63 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 66 6c 6f 77 20 69 6e 66 6f 72 6d | enable.collection.of.flow.inform |
| ddf40 | 61 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 | ation.for.the.interface.identifi |
| ddf60 | 65 64 20 62 79 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 | ed.by.`<interface>`..Configure.a |
| ddf80 | 75 74 6f 2d 63 68 65 63 6b 69 6e 67 20 66 6f 72 20 6e 65 77 20 69 6d 61 67 65 73 00 43 6f 6e 66 | uto-checking.for.new.images.Conf |
| ddfa0 | 69 67 75 72 65 20 62 61 63 6b 65 6e 64 20 60 3c 6e 61 6d 65 3e 60 20 6d 6f 64 65 20 54 43 50 20 | igure.backend.`<name>`.mode.TCP. |
| ddfc0 | 6f 72 20 48 54 54 50 00 43 6f 6e 66 69 67 75 72 65 20 62 6f 74 68 20 72 6f 75 74 65 72 73 20 28 | or.HTTP.Configure.both.routers.( |
| ddfe0 | 61 20 61 6e 64 20 62 29 20 66 6f 72 20 44 48 43 50 76 36 2d 50 44 20 76 69 61 20 64 75 6d 6d 79 | a.and.b).for.DHCPv6-PD.via.dummy |
| de000 | 20 69 6e 74 65 72 66 61 63 65 3a 00 43 6f 6e 66 69 67 75 72 65 20 64 69 72 65 63 74 69 6f 6e 20 | .interface:.Configure.direction. |
| de020 | 66 6f 72 20 70 72 6f 63 65 73 73 69 6e 67 20 74 72 61 66 66 69 63 2e 00 43 6f 6e 66 69 67 75 72 | for.processing.traffic..Configur |
| de040 | 65 20 65 69 74 68 65 72 20 6f 6e 65 20 6f 72 20 74 77 6f 20 73 74 6f 70 20 62 69 74 73 2e 20 54 | e.either.one.or.two.stop.bits..T |
| de060 | 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 6f 6e 65 20 73 74 6f 70 20 62 69 74 73 20 69 66 | his.defaults.to.one.stop.bits.if |
| de080 | 20 6c 65 66 74 20 75 6e 63 6f 6e 66 69 67 75 72 65 64 2e 00 43 6f 6e 66 69 67 75 72 65 20 65 69 | .left.unconfigured..Configure.ei |
| de0a0 | 74 68 65 72 20 73 65 76 65 6e 20 6f 72 20 65 69 67 68 74 20 64 61 74 61 20 62 69 74 73 2e 20 54 | ther.seven.or.eight.data.bits..T |
| de0c0 | 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 65 69 67 68 74 20 64 61 74 61 20 62 69 74 73 20 | his.defaults.to.eight.data.bits. |
| de0e0 | 69 66 20 6c 65 66 74 20 75 6e 63 6f 6e 66 69 67 75 72 65 64 2e 00 43 6f 6e 66 69 67 75 72 65 20 | if.left.unconfigured..Configure. |
| de100 | 67 65 6e 65 72 61 6c 20 74 68 72 65 73 68 6f 6c 64 20 70 61 72 61 6d 65 74 65 72 73 2e 00 43 6f | general.threshold.parameters..Co |
| de120 | 6e 66 69 67 75 72 65 20 68 6f 77 20 6c 6f 6e 67 20 61 6e 20 49 50 20 28 61 74 74 61 63 6b 65 72 | nfigure.how.long.an.IP.(attacker |
| de140 | 29 20 73 68 6f 75 6c 64 20 62 65 20 6b 65 70 74 20 69 6e 20 62 6c 6f 63 6b 65 64 20 73 74 61 74 | ).should.be.kept.in.blocked.stat |
| de160 | 65 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 39 30 30 2e 00 43 6f 6e 66 69 67 | e..Default.value.is.1900..Config |
| de180 | 75 72 65 20 69 6e 64 69 76 69 64 75 61 6c 20 62 72 69 64 67 65 20 70 6f 72 74 20 60 3c 70 72 69 | ure.individual.bridge.port.`<pri |
| de1a0 | 6f 72 69 74 79 3e 60 2e 00 43 6f 6e 66 69 67 75 72 65 20 69 6e 74 65 72 66 61 63 65 20 60 3c 69 | ority>`..Configure.interface.`<i |
| de1c0 | 6e 74 65 72 66 61 63 65 3e 60 20 77 69 74 68 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 69 6e 74 65 | nterface>`.with.one.or.more.inte |
| de1e0 | 72 66 61 63 65 20 61 64 64 72 65 73 73 65 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 69 6e 74 65 72 | rface.addresses..Configure.inter |
| de200 | 66 61 63 65 2d 73 70 65 63 69 66 69 63 20 48 6f 73 74 2f 52 6f 75 74 65 72 20 62 65 68 61 76 69 | face-specific.Host/Router.behavi |
| de220 | 6f 75 72 2e 20 49 66 20 73 65 74 2c 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 69 6c 6c 20 | our..If.set,.the.interface.will. |
| de240 | 73 77 69 74 63 68 20 74 6f 20 68 6f 73 74 20 6d 6f 64 65 20 61 6e 64 20 49 50 76 36 20 66 6f 72 | switch.to.host.mode.and.IPv6.for |
| de260 | 77 61 72 64 69 6e 67 20 77 69 6c 6c 20 62 65 20 64 69 73 61 62 6c 65 64 20 6f 6e 20 74 68 69 73 | warding.will.be.disabled.on.this |
| de280 | 20 69 6e 74 65 72 66 61 63 65 2e 00 43 6f 6e 66 69 67 75 72 65 20 6c 69 73 74 65 6e 20 69 6e 74 | .interface..Configure.listen.int |
| de2a0 | 65 72 66 61 63 65 20 66 6f 72 20 6d 69 72 72 6f 72 69 6e 67 20 74 72 61 66 66 69 63 2e 00 43 6f | erface.for.mirroring.traffic..Co |
| de2c0 | 6e 66 69 67 75 72 65 20 6c 6f 63 61 6c 20 49 50 76 34 20 61 64 64 72 65 73 73 20 74 6f 20 6c 69 | nfigure.local.IPv4.address.to.li |
| de2e0 | 73 74 65 6e 20 66 6f 72 20 73 66 6c 6f 77 2e 00 43 6f 6e 66 69 67 75 72 65 20 6d 61 78 69 6d 75 | sten.for.sflow..Configure.maximu |
| de300 | 6d 20 61 6c 6c 6f 77 65 64 20 63 6c 6f 63 6b 20 73 6c 6f 70 20 69 6e 20 73 65 63 6f 6e 64 73 20 | m.allowed.clock.slop.in.seconds. |
| de320 | 28 64 65 66 61 75 6c 74 3a 20 31 38 30 29 00 43 6f 6e 66 69 67 75 72 65 20 6e 65 77 20 53 4e 4d | (default:.180).Configure.new.SNM |
| de340 | 50 20 75 73 65 72 20 6e 61 6d 65 64 20 22 76 79 6f 73 22 20 77 69 74 68 20 70 61 73 73 77 6f 72 | P.user.named."vyos".with.passwor |
| de360 | 64 20 22 76 79 6f 73 31 32 33 34 35 36 37 38 22 00 43 6f 6e 66 69 67 75 72 65 20 6e 65 78 74 2d | d."vyos12345678".Configure.next- |
| de380 | 68 6f 70 20 60 3c 61 64 64 72 65 73 73 3e 60 20 61 6e 64 20 60 3c 74 61 72 67 65 74 2d 61 64 64 | hop.`<address>`.and.`<target-add |
| de3a0 | 72 65 73 73 3e 60 20 66 6f 72 20 61 6e 20 49 50 76 34 20 73 74 61 74 69 63 20 72 6f 75 74 65 2e | ress>`.for.an.IPv4.static.route. |
| de3c0 | 20 53 70 65 63 69 66 79 20 74 68 65 20 74 61 72 67 65 74 20 49 50 76 34 20 61 64 64 72 65 73 73 | .Specify.the.target.IPv4.address |
| de3e0 | 20 66 6f 72 20 68 65 61 6c 74 68 20 63 68 65 63 6b 69 6e 67 2e 00 43 6f 6e 66 69 67 75 72 65 20 | .for.health.checking..Configure. |
| de400 | 6e 65 78 74 2d 68 6f 70 20 60 3c 61 64 64 72 65 73 73 3e 60 20 66 6f 72 20 61 6e 20 49 50 76 34 | next-hop.`<address>`.for.an.IPv4 |
| de420 | 20 73 74 61 74 69 63 20 72 6f 75 74 65 2e 20 4d 75 6c 74 69 70 6c 65 20 73 74 61 74 69 63 20 72 | .static.route..Multiple.static.r |
| de440 | 6f 75 74 65 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 2e 00 43 6f 6e 66 69 67 75 72 65 20 | outes.can.be.created..Configure. |
| de460 | 6e 65 78 74 2d 68 6f 70 20 60 3c 61 64 64 72 65 73 73 3e 60 20 66 6f 72 20 61 6e 20 49 50 76 36 | next-hop.`<address>`.for.an.IPv6 |
| de480 | 20 73 74 61 74 69 63 20 72 6f 75 74 65 2e 20 4d 75 6c 74 69 70 6c 65 20 73 74 61 74 69 63 20 72 | .static.route..Multiple.static.r |
| de4a0 | 6f 75 74 65 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 2e 00 43 6f 6e 66 69 67 75 72 65 20 | outes.can.be.created..Configure. |
| de4c0 | 6e 75 6d 62 65 72 20 6f 66 20 64 69 67 69 74 73 20 74 6f 20 75 73 65 20 66 6f 72 20 74 6f 74 70 | number.of.digits.to.use.for.totp |
| de4e0 | 20 68 61 73 68 20 28 64 65 66 61 75 6c 74 3a 20 36 29 00 43 6f 6e 66 69 67 75 72 65 20 6f 6e 65 | .hash.(default:.6).Configure.one |
| de500 | 20 6f 66 20 74 68 65 20 70 72 65 64 65 66 69 6e 65 64 20 73 79 73 74 65 6d 20 70 65 72 66 6f 72 | .of.the.predefined.system.perfor |
| de520 | 6d 61 6e 63 65 20 70 72 6f 66 69 6c 65 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 6f 6e 65 20 6f 72 | mance.profiles..Configure.one.or |
| de540 | 20 6d 6f 72 65 20 61 74 74 72 69 62 75 74 65 73 20 74 6f 20 74 68 65 20 67 69 76 65 6e 20 4e 54 | .more.attributes.to.the.given.NT |
| de560 | 50 20 73 65 72 76 65 72 2e 00 43 6f 6e 66 69 67 75 72 65 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 | P.server..Configure.one.or.more. |
| de580 | 73 65 72 76 65 72 73 20 66 6f 72 20 73 79 6e 63 68 72 6f 6e 69 73 61 74 69 6f 6e 2e 20 53 65 72 | servers.for.synchronisation..Ser |
| de5a0 | 76 65 72 20 6e 61 6d 65 20 63 61 6e 20 62 65 20 65 69 74 68 65 72 20 61 6e 20 49 50 20 61 64 64 | ver.name.can.be.either.an.IP.add |
| de5c0 | 72 65 73 73 20 6f 72 20 3a 61 62 62 72 3a 60 46 51 44 4e 20 28 46 75 6c 6c 79 20 51 75 61 6c 69 | ress.or.:abbr:`FQDN.(Fully.Quali |
| de5e0 | 66 69 65 64 20 44 6f 6d 61 69 6e 20 4e 61 6d 65 29 60 2e 00 43 6f 6e 66 69 67 75 72 65 20 6f 70 | fied.Domain.Name)`..Configure.op |
| de600 | 74 69 6f 6e 61 6c 20 54 54 4c 20 76 61 6c 75 65 20 6f 6e 20 74 68 65 20 67 69 76 65 6e 20 72 65 | tional.TTL.value.on.the.given.re |
| de620 | 73 6f 75 72 63 65 20 72 65 63 6f 72 64 2e 20 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 | source.record..This.defaults.to. |
| de640 | 36 30 30 20 73 65 63 6f 6e 64 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 70 68 79 73 69 63 61 6c 20 | 600.seconds..Configure.physical. |
| de660 | 69 6e 74 65 72 66 61 63 65 20 64 75 70 6c 65 78 20 73 65 74 74 69 6e 67 2e 00 43 6f 6e 66 69 67 | interface.duplex.setting..Config |
| de680 | 75 72 65 20 70 68 79 73 69 63 61 6c 20 69 6e 74 65 72 66 61 63 65 20 73 70 65 65 64 20 73 65 74 | ure.physical.interface.speed.set |
| de6a0 | 74 69 6e 67 2e 00 43 6f 6e 66 69 67 75 72 65 20 70 6f 72 74 20 6d 69 72 72 6f 72 69 6e 67 20 66 | ting..Configure.port.mirroring.f |
| de6c0 | 6f 72 20 60 69 6e 74 65 72 66 61 63 65 60 20 69 6e 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 61 | or.`interface`.inbound.traffic.a |
| de6e0 | 6e 64 20 63 6f 70 79 20 74 68 65 20 74 72 61 66 66 69 63 20 74 6f 20 60 6d 6f 6e 69 74 6f 72 2d | nd.copy.the.traffic.to.`monitor- |
| de700 | 69 6e 74 65 72 66 61 63 65 60 00 43 6f 6e 66 69 67 75 72 65 20 70 6f 72 74 20 6d 69 72 72 6f 72 | interface`.Configure.port.mirror |
| de720 | 69 6e 67 20 66 6f 72 20 60 69 6e 74 65 72 66 61 63 65 60 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 | ing.for.`interface`.outbound.tra |
| de740 | 66 66 69 63 20 61 6e 64 20 63 6f 70 79 20 74 68 65 20 74 72 61 66 66 69 63 20 74 6f 20 60 6d 6f | ffic.and.copy.the.traffic.to.`mo |
| de760 | 6e 69 74 6f 72 2d 69 6e 74 65 72 66 61 63 65 60 00 43 6f 6e 66 69 67 75 72 65 20 70 6f 72 74 20 | nitor-interface`.Configure.port. |
| de780 | 6e 75 6d 62 65 72 20 6f 66 20 72 65 6d 6f 74 65 20 56 58 4c 41 4e 20 65 6e 64 70 6f 69 6e 74 2e | number.of.remote.VXLAN.endpoint. |
| de7a0 | 00 43 6f 6e 66 69 67 75 72 65 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 74 6f 20 62 65 20 75 73 65 | .Configure.port.number.to.be.use |
| de7c0 | 64 20 66 6f 72 20 73 66 6c 6f 77 20 63 6f 6e 65 63 74 69 6f 6e 2e 20 44 65 66 61 75 6c 74 20 70 | d.for.sflow.conection..Default.p |
| de7e0 | 6f 72 74 20 69 73 20 36 33 34 33 2e 00 43 6f 6e 66 69 67 75 72 65 20 70 6f 72 74 20 6e 75 6d 62 | ort.is.6343..Configure.port.numb |
| de800 | 65 72 20 74 6f 20 62 65 20 75 73 65 64 20 66 6f 72 20 73 66 6c 6f 77 20 63 6f 6e 6e 65 63 74 69 | er.to.be.used.for.sflow.connecti |
| de820 | 6f 6e 2e 20 44 65 66 61 75 6c 74 20 70 6f 72 74 20 69 73 20 36 33 34 33 2e 00 43 6f 6e 66 69 67 | on..Default.port.is.6343..Config |
| de840 | 75 72 65 20 70 72 6f 74 6f 63 6f 6c 20 75 73 65 64 20 66 6f 72 20 63 6f 6d 6d 75 6e 69 63 61 74 | ure.protocol.used.for.communicat |
| de860 | 69 6f 6e 20 74 6f 20 72 65 6d 6f 74 65 20 73 79 73 6c 6f 67 20 68 6f 73 74 2e 20 54 68 69 73 20 | ion.to.remote.syslog.host..This. |
| de880 | 63 61 6e 20 62 65 20 65 69 74 68 65 72 20 55 44 50 20 6f 72 20 54 43 50 2e 00 43 6f 6e 66 69 67 | can.be.either.UDP.or.TCP..Config |
| de8a0 | 75 72 65 20 70 72 6f 78 79 20 70 6f 72 74 20 69 66 20 69 74 20 64 6f 65 73 20 6e 6f 74 20 6c 69 | ure.proxy.port.if.it.does.not.li |
| de8c0 | 73 74 65 6e 20 74 6f 20 74 68 65 20 64 65 66 61 75 6c 74 20 70 6f 72 74 20 38 30 2e 00 43 6f 6e | sten.to.the.default.port.80..Con |
| de8e0 | 66 69 67 75 72 65 20 72 65 71 75 65 73 74 73 20 74 6f 20 74 68 65 20 62 61 63 6b 65 6e 64 20 73 | figure.requests.to.the.backend.s |
| de900 | 65 72 76 65 72 20 74 6f 20 75 73 65 20 53 53 4c 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6e 64 20 | erver.to.use.SSL.encryption.and. |
| de920 | 61 75 74 68 65 6e 74 69 63 61 74 65 20 62 61 63 6b 65 6e 64 20 61 67 61 69 6e 73 74 20 3c 63 61 | authenticate.backend.against.<ca |
| de940 | 2d 63 65 72 74 69 66 69 63 61 74 65 3e 00 43 6f 6e 66 69 67 75 72 65 20 72 65 71 75 65 73 74 73 | -certificate>.Configure.requests |
| de960 | 20 74 6f 20 74 68 65 20 62 61 63 6b 65 6e 64 20 73 65 72 76 65 72 20 74 6f 20 75 73 65 20 53 53 | .to.the.backend.server.to.use.SS |
| de980 | 4c 20 65 6e 63 72 79 70 74 69 6f 6e 20 77 69 74 68 6f 75 74 20 76 61 6c 69 64 61 74 69 6e 67 20 | L.encryption.without.validating. |
| de9a0 | 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 00 43 6f 6e 66 69 67 75 72 65 20 73 46 6c | server.certificate.Configure.sFl |
| de9c0 | 6f 77 20 61 67 65 6e 74 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 00 43 6f | ow.agent.IPv4.or.IPv6.address.Co |
| de9e0 | 6e 66 69 67 75 72 65 20 73 63 68 65 64 75 6c 65 20 63 6f 75 6e 74 65 72 2d 70 6f 6c 6c 69 6e 67 | nfigure.schedule.counter-polling |
| dea00 | 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a 20 33 30 29 00 43 6f 6e 66 69 67 | .in.seconds.(default:.30).Config |
| dea20 | 75 72 65 20 73 65 72 76 69 63 65 20 60 3c 6e 61 6d 65 3e 60 20 6d 6f 64 65 20 54 43 50 20 6f 72 | ure.service.`<name>`.mode.TCP.or |
| dea40 | 20 48 54 54 50 00 43 6f 6e 66 69 67 75 72 65 20 73 65 72 76 69 63 65 20 60 3c 6e 61 6d 65 3e 60 | .HTTP.Configure.service.`<name>` |
| dea60 | 20 74 6f 20 75 73 65 20 74 68 65 20 62 61 63 6b 65 6e 64 20 3c 6e 61 6d 65 3e 00 43 6f 6e 66 69 | .to.use.the.backend.<name>.Confi |
| dea80 | 67 75 72 65 20 73 65 73 73 69 6f 6e 20 74 69 6d 65 6f 75 74 20 61 66 74 65 72 20 77 68 69 63 68 | gure.session.timeout.after.which |
| deaa0 | 20 74 68 65 20 75 73 65 72 20 77 69 6c 6c 20 62 65 20 6c 6f 67 67 65 64 20 6f 75 74 2e 00 43 6f | .the.user.will.be.logged.out..Co |
| deac0 | 6e 66 69 67 75 72 65 20 73 74 65 70 20 76 61 6c 75 65 20 66 6f 72 20 74 6f 74 70 20 69 6e 20 73 | nfigure.step.value.for.totp.in.s |
| deae0 | 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a 20 33 30 29 00 43 6f 6e 66 69 67 75 72 65 20 73 | econds.(default:.30).Configure.s |
| deb00 | 79 73 74 65 6d 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 2e 20 41 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 | ystem.domain.name..A.domain.name |
| deb20 | 20 6d 75 73 74 20 73 74 61 72 74 20 61 6e 64 20 65 6e 64 20 77 69 74 68 20 61 20 6c 65 74 74 65 | .must.start.and.end.with.a.lette |
| deb40 | 72 20 6f 72 20 64 69 67 69 74 2c 20 61 6e 64 20 68 61 76 65 20 61 73 20 69 6e 74 65 72 69 6f 72 | r.or.digit,.and.have.as.interior |
| deb60 | 20 63 68 61 72 61 63 74 65 72 73 20 6f 6e 6c 79 20 6c 65 74 74 65 72 73 2c 20 64 69 67 69 74 73 | .characters.only.letters,.digits |
| deb80 | 2c 20 6f 72 20 61 20 68 79 70 68 65 6e 2e 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 41 2d 73 | ,.or.a.hyphen..Configure.the.A-s |
| deba0 | 69 64 65 20 72 6f 75 74 65 72 20 66 6f 72 20 4e 50 54 76 36 20 75 73 69 6e 67 20 74 68 65 20 70 | ide.router.for.NPTv6.using.the.p |
| debc0 | 72 65 66 69 78 65 73 20 61 62 6f 76 65 3a 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 42 2d 73 | refixes.above:.Configure.the.B-s |
| debe0 | 69 64 65 20 72 6f 75 74 65 72 20 66 6f 72 20 4e 50 54 76 36 20 75 73 69 6e 67 20 74 68 65 20 70 | ide.router.for.NPTv6.using.the.p |
| dec00 | 72 65 66 69 78 65 73 20 61 62 6f 76 65 3a 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 44 4e 53 | refixes.above:.Configure.the.DNS |
| dec20 | 20 60 3c 73 65 72 76 65 72 3e 60 20 49 50 2f 46 51 44 4e 20 75 73 65 64 20 77 68 65 6e 20 75 70 | .`<server>`.IP/FQDN.used.when.up |
| dec40 | 64 61 74 69 6e 67 20 74 68 69 73 20 64 79 6e 61 6d 69 63 20 61 73 73 69 67 6e 6d 65 6e 74 2e 00 | dating.this.dynamic.assignment.. |
| dec60 | 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 48 54 54 50 20 41 50 49 20 73 65 72 76 69 63 65 20 6f | Configure.the.HTTP.API.service.o |
| dec80 | 6e 20 52 6f 75 74 65 72 20 42 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 49 50 76 34 20 6f 72 | n.Router.B.Configure.the.IPv4.or |
| deca0 | 20 49 50 76 36 20 6c 69 73 74 65 6e 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 54 46 54 50 | .IPv6.listen.address.of.the.TFTP |
| decc0 | 20 73 65 72 76 65 72 2e 20 4d 75 6c 74 69 70 6c 65 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 | .server..Multiple.IPv4.and.IPv6. |
| dece0 | 61 64 64 72 65 73 73 65 73 20 63 61 6e 20 62 65 20 67 69 76 65 6e 2e 20 54 68 65 72 65 20 77 69 | addresses.can.be.given..There.wi |
| ded00 | 6c 6c 20 62 65 20 6f 6e 65 20 54 46 54 50 20 73 65 72 76 65 72 20 69 6e 73 74 61 6e 63 65 73 20 | ll.be.one.TFTP.server.instances. |
| ded20 | 6c 69 73 74 65 6e 69 6e 67 20 6f 6e 20 65 61 63 68 20 49 50 20 61 64 64 72 65 73 73 2e 00 43 6f | listening.on.each.IP.address..Co |
| ded40 | 6e 66 69 67 75 72 65 20 74 68 65 20 63 6f 6e 66 69 67 2d 73 79 6e 63 20 73 65 72 76 69 63 65 20 | nfigure.the.config-sync.service. |
| ded60 | 6f 6e 20 52 6f 75 74 65 72 20 41 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 63 6f 6e 6e 65 63 | on.Router.A.Configure.the.connec |
| ded80 | 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 68 65 6c 70 65 72 20 6d 6f | tion.tracking.protocol.helper.mo |
| deda0 | 64 75 6c 65 73 2e 20 41 6c 6c 20 6d 6f 64 75 6c 65 73 20 61 72 65 20 65 6e 61 62 6c 65 20 62 79 | dules..All.modules.are.enable.by |
| dedc0 | 20 64 65 66 61 75 6c 74 2e 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 64 69 73 63 72 65 74 65 | .default..Configure.the.discrete |
| dede0 | 20 70 6f 72 74 20 75 6e 64 65 72 20 77 68 69 63 68 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 | .port.under.which.the.RADIUS.ser |
| dee00 | 76 65 72 20 63 61 6e 20 62 65 20 72 65 61 63 68 65 64 2e 00 43 6f 6e 66 69 67 75 72 65 20 74 68 | ver.can.be.reached..Configure.th |
| dee20 | 65 20 64 69 73 63 72 65 74 65 20 70 6f 72 74 20 75 6e 64 65 72 20 77 68 69 63 68 20 74 68 65 20 | e.discrete.port.under.which.the. |
| dee40 | 54 41 43 41 43 53 20 73 65 72 76 65 72 20 63 61 6e 20 62 65 20 72 65 61 63 68 65 64 2e 00 43 6f | TACACS.server.can.be.reached..Co |
| dee60 | 6e 66 69 67 75 72 65 20 74 68 65 20 6c 6f 61 64 2d 62 61 6c 61 6e 63 69 6e 67 20 68 61 70 72 6f | nfigure.the.load-balancing.hapro |
| dee80 | 78 79 20 73 65 72 76 69 63 65 20 66 6f 72 20 48 54 54 50 2e 00 43 6f 6e 66 69 67 75 72 65 20 74 | xy.service.for.HTTP..Configure.t |
| deea0 | 68 65 20 6c 6f 61 64 2d 62 61 6c 61 6e 63 69 6e 67 20 72 65 76 65 72 73 65 2d 70 72 6f 78 79 20 | he.load-balancing.reverse-proxy. |
| deec0 | 73 65 72 76 69 63 65 20 66 6f 72 20 48 54 54 50 2e 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 | service.for.HTTP..Configure.the. |
| deee0 | 74 69 6d 65 73 74 61 6d 70 69 6e 67 20 62 65 68 61 76 69 6f 72 20 77 69 74 68 20 74 68 65 20 66 | timestamping.behavior.with.the.f |
| def00 | 6f 6c 6c 6f 77 69 6e 67 20 6f 70 74 69 6f 6e 3a 00 43 6f 6e 66 69 67 75 72 65 20 74 69 6d 65 20 | ollowing.option:.Configure.time. |
| def20 | 64 72 69 66 74 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a 20 30 29 00 43 6f | drift.in.seconds.(default:.0).Co |
| def40 | 6e 66 69 67 75 72 65 20 74 72 61 66 66 69 63 20 63 61 70 74 75 72 65 20 6d 6f 64 65 2e 00 43 6f | nfigure.traffic.capture.mode..Co |
| def60 | 6e 66 69 67 75 72 65 20 75 73 65 72 20 64 65 66 69 6e 65 64 20 3a 61 62 62 72 3a 60 4d 41 43 20 | nfigure.user.defined.:abbr:`MAC. |
| def80 | 28 4d 65 64 69 61 20 41 63 63 65 73 73 20 43 6f 6e 74 72 6f 6c 29 60 20 61 64 64 72 65 73 73 20 | (Media.Access.Control)`.address. |
| defa0 | 6f 6e 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 43 6f 6e 66 69 67 75 72 | on.given.`<interface>`..Configur |
| defc0 | 65 20 77 61 74 65 72 6d 61 72 6b 20 77 61 72 6e 69 6e 67 20 67 65 6e 65 72 61 74 69 6f 6e 20 66 | e.watermark.warning.generation.f |
| defe0 | 6f 72 20 61 6e 20 49 47 4d 50 20 67 72 6f 75 70 20 6c 69 6d 69 74 2e 20 47 65 6e 65 72 61 74 65 | or.an.IGMP.group.limit..Generate |
| df000 | 73 20 77 61 72 6e 69 6e 67 20 6f 6e 63 65 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 67 72 | s.warning.once.the.configured.gr |
| df020 | 6f 75 70 20 6c 69 6d 69 74 20 69 73 20 72 65 61 63 68 65 64 20 77 68 69 6c 65 20 61 64 64 69 6e | oup.limit.is.reached.while.addin |
| df040 | 67 20 6e 65 77 20 67 72 6f 75 70 73 2e 00 43 6f 6e 66 69 67 75 72 65 64 20 72 6f 75 74 69 6e 67 | g.new.groups..Configured.routing |
| df060 | 20 74 61 62 6c 65 20 60 3c 69 64 3e 60 20 69 73 20 75 73 65 64 20 62 79 20 56 52 46 20 60 3c 6e | .table.`<id>`.is.used.by.VRF.`<n |
| df080 | 61 6d 65 3e 60 2e 00 43 6f 6e 66 69 67 75 72 65 64 20 76 61 6c 75 65 00 43 6f 6e 66 69 67 75 72 | ame>`..Configured.value.Configur |
| df0a0 | 65 73 20 68 61 72 64 77 61 72 65 20 74 69 6d 65 73 74 61 6d 70 69 6e 67 20 6f 6e 20 74 68 65 20 | es.hardware.timestamping.on.the. |
| df0c0 | 69 6e 74 65 72 66 61 63 65 20 3c 69 6e 74 65 72 66 61 63 65 3e 2e 20 54 68 65 20 73 70 65 63 69 | interface.<interface>..The.speci |
| df0e0 | 61 6c 20 76 61 6c 75 65 20 60 61 6c 6c 60 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 73 70 65 63 69 | al.value.`all`.can.also.be.speci |
| df100 | 66 69 65 64 20 74 6f 20 65 6e 61 62 6c 65 20 74 69 6d 65 73 74 61 6d 70 69 6e 67 20 6f 6e 20 61 | fied.to.enable.timestamping.on.a |
| df120 | 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 20 74 68 61 74 20 73 75 70 70 6f 72 74 20 69 74 2e 00 43 | ll.interfaces.that.support.it..C |
| df140 | 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 42 47 50 20 73 70 65 61 6b 65 72 20 73 6f 20 74 68 61 | onfigures.the.BGP.speaker.so.tha |
| df160 | 74 20 69 74 20 6f 6e 6c 79 20 61 63 63 65 70 74 73 20 69 6e 62 6f 75 6e 64 20 63 6f 6e 6e 65 63 | t.it.only.accepts.inbound.connec |
| df180 | 74 69 6f 6e 73 20 66 72 6f 6d 2c 20 62 75 74 20 64 6f 65 73 20 6e 6f 74 20 69 6e 69 74 69 61 74 | tions.from,.but.does.not.initiat |
| df1a0 | 65 20 6f 75 74 62 6f 75 6e 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 70 65 | e.outbound.connections.to.the.pe |
| df1c0 | 65 72 20 6f 72 20 70 65 65 72 20 67 72 6f 75 70 2e 00 43 6f 6e 66 69 67 75 72 65 73 20 74 68 65 | er.or.peer.group..Configures.the |
| df1e0 | 20 50 54 50 20 70 6f 72 74 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 74 68 65 20 73 74 61 6e 64 | .PTP.port..By.default,.the.stand |
| df200 | 61 72 64 20 70 6f 72 74 20 33 31 39 20 69 73 20 75 73 65 64 2e 00 43 6f 6e 66 69 67 75 72 65 73 | ard.port.319.is.used..Configures |
| df220 | 20 74 68 65 20 72 69 6e 67 20 62 75 66 66 65 72 20 73 69 7a 65 20 6f 66 20 74 68 65 20 69 6e 74 | .the.ring.buffer.size.of.the.int |
| df240 | 65 72 66 61 63 65 2e 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 48 54 20 6d 6f 64 65 20 6f 70 74 69 | erface..Configuring.HT.mode.opti |
| df260 | 6f 6e 73 20 69 73 20 72 65 71 75 69 72 65 64 20 77 68 65 6e 20 75 73 69 6e 67 20 38 30 32 2e 31 | ons.is.required.when.using.802.1 |
| df280 | 31 6e 20 6f 72 20 38 30 32 2e 31 31 61 78 20 61 74 20 32 2e 34 47 48 7a 2e 00 43 6f 6e 66 69 67 | 1n.or.802.11ax.at.2.4GHz..Config |
| df2a0 | 75 72 69 6e 67 20 49 50 6f 45 20 53 65 72 76 65 72 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 49 50 | uring.IPoE.Server.Configuring.IP |
| df2c0 | 73 65 63 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 4c 32 54 50 20 53 65 72 76 65 72 00 43 6f 6e 66 | sec.Configuring.L2TP.Server.Conf |
| df2e0 | 69 67 75 72 69 6e 67 20 4c 4e 53 20 28 4c 32 54 50 20 4e 65 74 77 6f 72 6b 20 53 65 72 76 65 72 | iguring.LNS.(L2TP.Network.Server |
| df300 | 29 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 50 50 50 6f 45 20 53 65 72 76 65 72 00 43 6f 6e 66 69 | ).Configuring.PPPoE.Server.Confi |
| df320 | 67 75 72 69 6e 67 20 50 50 54 50 20 53 65 72 76 65 72 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 52 | guring.PPTP.Server.Configuring.R |
| df340 | 41 44 49 55 53 20 61 63 63 6f 75 6e 74 69 6e 67 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 52 41 44 | ADIUS.accounting.Configuring.RAD |
| df360 | 49 55 53 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 53 | IUS.authentication.Configuring.S |
| df380 | 53 54 50 20 53 65 72 76 65 72 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 53 53 54 50 20 63 6c 69 65 | STP.Server.Configuring.SSTP.clie |
| df3a0 | 6e 74 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 56 79 4f 53 20 74 6f 20 61 63 74 20 61 73 20 79 6f | nt.Configuring.VyOS.to.act.as.yo |
| df3c0 | 75 72 20 49 50 53 65 63 20 61 63 63 65 73 73 20 63 6f 6e 63 65 6e 74 72 61 74 6f 72 20 69 73 20 | ur.IPSec.access.concentrator.is. |
| df3e0 | 6f 6e 65 20 74 68 69 6e 67 2c 20 62 75 74 20 79 6f 75 20 70 72 6f 62 61 62 6c 79 20 6e 65 65 64 | one.thing,.but.you.probably.need |
| df400 | 20 74 6f 20 73 65 74 75 70 20 79 6f 75 72 20 63 6c 69 65 6e 74 20 63 6f 6e 6e 65 63 74 69 6e 67 | .to.setup.your.client.connecting |
| df420 | 20 74 6f 20 74 68 65 20 73 65 72 76 65 72 20 73 6f 20 74 68 65 79 20 63 61 6e 20 74 61 6c 6b 20 | .to.the.server.so.they.can.talk. |
| df440 | 74 6f 20 74 68 65 20 49 50 53 65 63 20 67 61 74 65 77 61 79 2e 00 43 6f 6e 66 69 67 75 72 69 6e | to.the.IPSec.gateway..Configurin |
| df460 | 67 20 61 20 6c 69 73 74 65 6e 2d 61 64 64 72 65 73 73 20 69 73 20 65 73 73 65 6e 74 69 61 6c 20 | g.a.listen-address.is.essential. |
| df480 | 66 6f 72 20 74 68 65 20 73 65 72 76 69 63 65 20 74 6f 20 77 6f 72 6b 2e 00 43 6f 6e 6e 65 63 74 | for.the.service.to.work..Connect |
| df4a0 | 2f 44 69 73 63 6f 6e 6e 65 63 74 00 43 6f 6e 6e 65 63 74 65 64 20 63 6c 69 65 6e 74 20 73 68 6f | /Disconnect.Connected.client.sho |
| df4c0 | 75 6c 64 20 75 73 65 20 60 3c 61 64 64 72 65 73 73 3e 60 20 61 73 20 74 68 65 69 72 20 44 4e 53 | uld.use.`<address>`.as.their.DNS |
| df4e0 | 20 73 65 72 76 65 72 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 63 63 65 70 74 73 20 62 6f | .server..This.command.accepts.bo |
| df500 | 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 2e 20 55 70 20 74 | th.IPv4.and.IPv6.addresses..Up.t |
| df520 | 6f 20 74 77 6f 20 6e 61 6d 65 73 65 72 76 65 72 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 | o.two.nameservers.can.be.configu |
| df540 | 72 65 64 20 66 6f 72 20 49 50 76 34 2c 20 75 70 20 74 6f 20 74 68 72 65 65 20 66 6f 72 20 49 50 | red.for.IPv4,.up.to.three.for.IP |
| df560 | 76 36 2e 00 43 6f 6e 6e 65 63 74 65 64 20 63 6c 69 65 6e 74 73 20 73 68 6f 75 6c 64 20 75 73 65 | v6..Connected.clients.should.use |
| df580 | 20 60 3c 61 64 64 72 65 73 73 3e 60 20 61 73 20 74 68 65 69 72 20 44 4e 53 20 73 65 72 76 65 72 | .`<address>`.as.their.DNS.server |
| df5a0 | 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 63 63 65 70 74 73 20 62 6f 74 68 20 49 50 76 34 | ..This.command.accepts.both.IPv4 |
| df5c0 | 20 61 6e 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 2e 20 55 70 20 74 6f 20 74 77 6f 20 6e | .and.IPv6.addresses..Up.to.two.n |
| df5e0 | 61 6d 65 73 65 72 76 65 72 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 66 6f 72 | ameservers.can.be.configured.for |
| df600 | 20 49 50 76 34 2c 20 75 70 20 74 6f 20 74 68 72 65 65 20 66 6f 72 20 49 50 76 36 2e 00 43 6f 6e | .IPv4,.up.to.three.for.IPv6..Con |
| df620 | 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 52 50 4b 49 20 63 61 63 68 69 6e 67 20 73 65 72 | nections.to.the.RPKI.caching.ser |
| df640 | 76 65 72 20 63 61 6e 20 6e 6f 74 20 6f 6e 6c 79 20 62 65 20 65 73 74 61 62 6c 69 73 68 65 64 20 | ver.can.not.only.be.established. |
| df660 | 62 79 20 48 54 54 50 2f 54 4c 53 20 62 75 74 20 79 6f 75 20 63 61 6e 20 61 6c 73 6f 20 72 65 6c | by.HTTP/TLS.but.you.can.also.rel |
| df680 | 79 20 6f 6e 20 61 20 73 65 63 75 72 65 20 53 53 48 20 73 65 73 73 69 6f 6e 20 74 6f 20 74 68 65 | y.on.a.secure.SSH.session.to.the |
| df6a0 | 20 73 65 72 76 65 72 2e 20 54 6f 20 65 6e 61 62 6c 65 20 53 53 48 20 79 6f 75 20 66 69 72 73 74 | .server..To.enable.SSH.you.first |
| df6c0 | 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 20 79 6f 75 72 73 65 6c 73 20 61 6e 20 53 53 48 20 | .need.to.create.yoursels.an.SSH. |
| df6e0 | 63 6c 69 65 6e 74 20 6b 65 79 70 61 69 72 20 75 73 69 6e 67 20 60 60 67 65 6e 65 72 61 74 65 20 | client.keypair.using.``generate. |
| df700 | 73 73 68 20 63 6c 69 65 6e 74 2d 6b 65 79 20 2f 63 6f 6e 66 69 67 2f 61 75 74 68 2f 69 64 5f 72 | ssh.client-key./config/auth/id_r |
| df720 | 73 61 5f 72 70 6b 69 60 60 2e 20 4f 6e 63 65 20 79 6f 75 72 20 6b 65 79 20 69 73 20 63 72 65 61 | sa_rpki``..Once.your.key.is.crea |
| df740 | 74 65 64 20 79 6f 75 20 63 61 6e 20 73 65 74 75 70 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e | ted.you.can.setup.the.connection |
| df760 | 2e 00 43 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 52 50 4b 49 20 63 61 63 68 69 6e | ..Connections.to.the.RPKI.cachin |
| df780 | 67 20 73 65 72 76 65 72 20 63 61 6e 20 6e 6f 74 20 6f 6e 6c 79 20 62 65 20 65 73 74 61 62 6c 69 | g.server.can.not.only.be.establi |
| df7a0 | 73 68 65 64 20 62 79 20 48 54 54 50 2f 54 4c 53 20 62 75 74 20 79 6f 75 20 63 61 6e 20 61 6c 73 | shed.by.HTTP/TLS.but.you.can.als |
| df7c0 | 6f 20 72 65 6c 79 20 6f 6e 20 61 20 73 65 63 75 72 65 20 53 53 48 20 73 65 73 73 69 6f 6e 20 74 | o.rely.on.a.secure.SSH.session.t |
| df7e0 | 6f 20 74 68 65 20 73 65 72 76 65 72 2e 20 54 6f 20 65 6e 61 62 6c 65 20 53 53 48 2c 20 66 69 72 | o.the.server..To.enable.SSH,.fir |
| df800 | 73 74 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 20 61 6e 20 53 53 48 20 63 6c 69 | st.you.need.to.create.an.SSH.cli |
| df820 | 65 6e 74 20 6b 65 79 70 61 69 72 20 75 73 69 6e 67 20 60 60 67 65 6e 65 72 61 74 65 20 73 73 68 | ent.keypair.using.``generate.ssh |
| df840 | 20 63 6c 69 65 6e 74 2d 6b 65 79 20 2f 63 6f 6e 66 69 67 2f 61 75 74 68 2f 69 64 5f 72 73 61 5f | .client-key./config/auth/id_rsa_ |
| df860 | 72 70 6b 69 60 60 2e 20 4f 6e 63 65 20 79 6f 75 72 20 6b 65 79 20 69 73 20 63 72 65 61 74 65 64 | rpki``..Once.your.key.is.created |
| df880 | 20 79 6f 75 20 63 61 6e 20 73 65 74 75 70 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 43 | .you.can.setup.the.connection..C |
| df8a0 | 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 52 50 4b 49 20 63 61 63 68 69 6e 67 20 73 | onnections.to.the.RPKI.caching.s |
| df8c0 | 65 72 76 65 72 20 63 61 6e 20 6e 6f 74 20 6f 6e 6c 79 20 62 65 20 65 73 74 61 62 6c 69 73 68 65 | erver.can.not.only.be.establishe |
| df8e0 | 64 20 62 79 20 54 43 50 20 75 73 69 6e 67 20 74 68 65 20 52 54 52 20 70 72 6f 74 6f 63 6f 6c 20 | d.by.TCP.using.the.RTR.protocol. |
| df900 | 62 75 74 20 79 6f 75 20 63 61 6e 20 61 6c 73 6f 20 72 65 6c 79 20 6f 6e 20 61 20 73 65 63 75 72 | but.you.can.also.rely.on.a.secur |
| df920 | 65 20 53 53 48 20 73 65 73 73 69 6f 6e 20 74 6f 20 74 68 65 20 73 65 72 76 65 72 2e 20 54 68 69 | e.SSH.session.to.the.server..Thi |
| df940 | 73 20 70 72 6f 76 69 64 65 73 20 74 72 61 6e 73 70 6f 72 74 20 69 6e 74 65 67 72 69 74 79 20 61 | s.provides.transport.integrity.a |
| df960 | 6e 64 20 63 6f 6e 66 69 64 65 6e 74 69 61 6c 69 74 79 20 61 6e 64 20 69 74 20 69 73 20 61 20 67 | nd.confidentiality.and.it.is.a.g |
| df980 | 6f 6f 64 20 69 64 65 61 20 69 66 20 79 6f 75 72 20 76 61 6c 69 64 61 74 69 6f 6e 20 73 6f 66 74 | ood.idea.if.your.validation.soft |
| df9a0 | 77 61 72 65 20 73 75 70 70 6f 72 74 73 20 69 74 2e 20 20 54 6f 20 65 6e 61 62 6c 65 20 53 53 48 | ware.supports.it...To.enable.SSH |
| df9c0 | 2c 20 66 69 72 73 74 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 20 61 6e 20 53 53 | ,.first.you.need.to.create.an.SS |
| df9e0 | 48 20 63 6c 69 65 6e 74 20 6b 65 79 70 61 69 72 20 75 73 69 6e 67 20 60 60 67 65 6e 65 72 61 74 | H.client.keypair.using.``generat |
| dfa00 | 65 20 73 73 68 20 63 6c 69 65 6e 74 2d 6b 65 79 20 2f 63 6f 6e 66 69 67 2f 61 75 74 68 2f 69 64 | e.ssh.client-key./config/auth/id |
| dfa20 | 5f 72 73 61 5f 72 70 6b 69 60 60 2e 20 4f 6e 63 65 20 79 6f 75 72 20 6b 65 79 20 69 73 20 63 72 | _rsa_rpki``..Once.your.key.is.cr |
| dfa40 | 65 61 74 65 64 20 79 6f 75 20 63 61 6e 20 73 65 74 75 70 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 | eated.you.can.setup.the.connecti |
| dfa60 | 6f 6e 2e 00 43 6f 6e 6e 74 72 61 63 6b 00 43 6f 6e 6e 74 72 61 63 6b 20 53 79 6e 63 00 43 6f 6e | on..Conntrack.Conntrack.Sync.Con |
| dfa80 | 6e 74 72 61 63 6b 20 53 79 6e 63 20 45 78 61 6d 70 6c 65 00 43 6f 6e 6e 74 72 61 63 6b 20 69 67 | ntrack.Sync.Example.Conntrack.ig |
| dfaa0 | 6e 6f 72 65 20 72 75 6c 65 73 00 43 6f 6e 6e 74 72 61 63 6b 20 6c 6f 67 00 43 6f 6e 73 69 64 65 | nore.rules.Conntrack.log.Conside |
| dfac0 | 72 61 74 69 6f 6e 73 00 43 6f 6e 73 6f 6c 65 00 43 6f 6e 73 6f 6c 65 20 53 65 72 76 65 72 00 43 | rations.Console.Console.Server.C |
| dfae0 | 6f 6e 73 74 72 61 69 6e 20 74 68 65 20 6d 65 6d 6f 72 79 20 61 76 61 69 6c 61 62 6c 65 20 74 6f | onstrain.the.memory.available.to |
| dfb00 | 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 2e 00 43 6f 6e 74 61 69 6e 65 72 00 43 6f 6e 74 61 69 | .the.container..Container.Contai |
| dfb20 | 6e 65 72 20 4e 65 74 77 6f 72 6b 73 00 43 6f 6e 74 61 69 6e 65 72 20 52 65 67 69 73 74 72 79 00 | ner.Networks.Container.Registry. |
| dfb40 | 43 6f 6e 74 72 61 63 6b 20 54 69 6d 65 6f 75 74 73 00 43 6f 6e 76 65 72 74 20 74 68 65 20 61 64 | Contrack.Timeouts.Convert.the.ad |
| dfb60 | 64 72 65 73 73 20 70 72 65 66 69 78 20 6f 66 20 61 20 73 69 6e 67 6c 65 20 60 66 63 30 30 3a 3a | dress.prefix.of.a.single.`fc00:: |
| dfb80 | 2f 36 34 60 20 6e 65 74 77 6f 72 6b 20 74 6f 20 60 66 63 30 31 3a 3a 2f 36 34 60 00 43 6f 6e 76 | /64`.network.to.`fc01::/64`.Conv |
| dfba0 | 65 72 74 20 74 68 65 20 61 64 64 72 65 73 73 20 70 72 65 66 69 78 20 6f 66 20 61 20 73 69 6e 67 | ert.the.address.prefix.of.a.sing |
| dfbc0 | 6c 65 20 60 66 63 30 31 3a 3a 2f 36 34 60 20 6e 65 74 77 6f 72 6b 20 74 6f 20 60 66 63 30 30 3a | le.`fc01::/64`.network.to.`fc00: |
| dfbe0 | 3a 2f 36 34 60 00 43 6f 70 79 20 74 68 65 20 6b 65 79 2c 20 61 73 20 69 74 20 69 73 20 6e 6f 74 | :/64`.Copy.the.key,.as.it.is.not |
| dfc00 | 20 73 74 6f 72 65 64 20 6f 6e 20 74 68 65 20 6c 6f 63 61 6c 20 66 69 6c 65 73 79 73 74 65 6d 2e | .stored.on.the.local.filesystem. |
| dfc20 | 20 42 65 63 61 75 73 65 20 69 74 20 69 73 20 61 20 73 79 6d 6d 65 74 72 69 63 20 6b 65 79 2c 20 | .Because.it.is.a.symmetric.key,. |
| dfc40 | 6f 6e 6c 79 20 79 6f 75 20 61 6e 64 20 79 6f 75 72 20 70 65 65 72 20 73 68 6f 75 6c 64 20 68 61 | only.you.and.your.peer.should.ha |
| dfc60 | 76 65 20 6b 6e 6f 77 6c 65 64 67 65 20 6f 66 20 69 74 73 20 63 6f 6e 74 65 6e 74 2e 20 4d 61 6b | ve.knowledge.of.its.content..Mak |
| dfc80 | 65 20 73 75 72 65 20 79 6f 75 20 64 69 73 74 72 69 62 75 74 65 20 74 68 65 20 6b 65 79 20 69 6e | e.sure.you.distribute.the.key.in |
| dfca0 | 20 61 20 73 61 66 65 20 6d 61 6e 6e 65 72 2c 00 43 6f 75 6e 74 72 79 20 63 6f 64 65 20 28 49 53 | .a.safe.manner,.Country.code.(IS |
| dfcc0 | 4f 2f 49 45 43 20 33 31 36 36 2d 31 29 2e 20 55 73 65 64 20 74 6f 20 73 65 74 20 72 65 67 75 6c | O/IEC.3166-1)..Used.to.set.regul |
| dfce0 | 61 74 6f 72 79 20 64 6f 6d 61 69 6e 2e 20 53 65 74 20 61 73 20 6e 65 65 64 65 64 20 74 6f 20 69 | atory.domain..Set.as.needed.to.i |
| dfd00 | 6e 64 69 63 61 74 65 20 63 6f 75 6e 74 72 79 20 69 6e 20 77 68 69 63 68 20 64 65 76 69 63 65 20 | ndicate.country.in.which.device. |
| dfd20 | 69 73 20 6f 70 65 72 61 74 69 6e 67 2e 20 54 68 69 73 20 63 61 6e 20 6c 69 6d 69 74 20 61 76 61 | is.operating..This.can.limit.ava |
| dfd40 | 69 6c 61 62 6c 65 20 63 68 61 6e 6e 65 6c 73 20 61 6e 64 20 74 72 61 6e 73 6d 69 74 20 70 6f 77 | ilable.channels.and.transmit.pow |
| dfd60 | 65 72 2e 00 43 6f 75 6e 74 72 79 20 63 6f 64 65 20 28 49 53 4f 2f 49 45 43 20 33 31 36 36 2d 31 | er..Country.code.(ISO/IEC.3166-1 |
| dfd80 | 29 2e 20 55 73 65 64 20 74 6f 20 73 65 74 20 72 65 67 75 6c 61 74 6f 72 79 20 64 6f 6d 61 69 6e | )..Used.to.set.regulatory.domain |
| dfda0 | 2e 20 53 65 74 20 61 73 20 6e 65 65 64 65 64 20 74 6f 20 69 6e 64 69 63 61 74 65 20 63 6f 75 6e | ..Set.as.needed.to.indicate.coun |
| dfdc0 | 74 72 79 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 62 6f 78 20 69 73 20 6f 70 65 72 61 74 69 6e | try.in.which.the.box.is.operatin |
| dfde0 | 67 2e 20 54 68 69 73 20 63 61 6e 20 6c 69 6d 69 74 20 61 76 61 69 6c 61 62 6c 65 20 63 68 61 6e | g..This.can.limit.available.chan |
| dfe00 | 6e 65 6c 73 20 61 6e 64 20 74 72 61 6e 73 6d 69 74 20 70 6f 77 65 72 2e 00 43 72 65 61 74 20 63 | nels.and.transmit.power..Creat.c |
| dfe20 | 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 20 70 6f 6c 69 63 79 20 69 64 65 6e 74 69 66 69 65 64 20 | ommunity-list.policy.identified. |
| dfe40 | 62 79 20 6e 61 6d 65 20 3c 74 65 78 74 3e 2e 00 43 72 65 61 74 20 65 78 74 63 6f 6d 6d 75 6e 69 | by.name.<text>..Creat.extcommuni |
| dfe60 | 74 79 2d 6c 69 73 74 20 70 6f 6c 69 63 79 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 6e 61 6d | ty-list.policy.identified.by.nam |
| dfe80 | 65 20 3c 74 65 78 74 3e 2e 00 43 72 65 61 74 65 20 44 48 43 50 20 61 64 64 72 65 73 73 20 72 61 | e.<text>..Create.DHCP.address.ra |
| dfea0 | 6e 67 65 20 77 69 74 68 20 61 20 72 61 6e 67 65 20 69 64 20 6f 66 20 60 3c 6e 3e 60 2e 20 44 48 | nge.with.a.range.id.of.`<n>`..DH |
| dfec0 | 43 50 20 6c 65 61 73 65 73 20 61 72 65 20 74 61 6b 65 6e 20 66 72 6f 6d 20 74 68 69 73 20 70 6f | CP.leases.are.taken.from.this.po |
| dfee0 | 6f 6c 2e 20 54 68 65 20 70 6f 6f 6c 20 73 74 61 72 74 73 20 61 74 20 61 64 64 72 65 73 73 20 60 | ol..The.pool.starts.at.address.` |
| dff00 | 3c 61 64 64 72 65 73 73 3e 60 2e 00 43 72 65 61 74 65 20 44 48 43 50 20 61 64 64 72 65 73 73 20 | <address>`..Create.DHCP.address. |
| dff20 | 72 61 6e 67 65 20 77 69 74 68 20 61 20 72 61 6e 67 65 20 69 64 20 6f 66 20 60 3c 6e 3e 60 2e 20 | range.with.a.range.id.of.`<n>`.. |
| dff40 | 44 48 43 50 20 6c 65 61 73 65 73 20 61 72 65 20 74 61 6b 65 6e 20 66 72 6f 6d 20 74 68 69 73 20 | DHCP.leases.are.taken.from.this. |
| dff60 | 70 6f 6f 6c 2e 20 54 68 65 20 70 6f 6f 6c 20 73 74 6f 70 73 20 77 69 74 68 20 61 64 64 72 65 73 | pool..The.pool.stops.with.addres |
| dff80 | 73 20 60 3c 61 64 64 72 65 73 73 3e 60 2e 00 43 72 65 61 74 65 20 44 4e 53 20 72 65 63 6f 72 64 | s.`<address>`..Create.DNS.record |
| dffa0 | 20 70 65 72 20 63 6c 69 65 6e 74 20 6c 65 61 73 65 2c 20 62 79 20 61 64 64 69 6e 67 20 63 6c 69 | .per.client.lease,.by.adding.cli |
| dffc0 | 65 6e 74 73 20 74 6f 20 2f 65 74 63 2f 68 6f 73 74 73 20 66 69 6c 65 2e 20 45 6e 74 72 79 20 77 | ents.to./etc/hosts.file..Entry.w |
| dffe0 | 69 6c 6c 20 68 61 76 65 20 66 6f 72 6d 61 74 3a 20 60 3c 73 68 61 72 65 64 2d 6e 65 74 77 6f 72 | ill.have.format:.`<shared-networ |
| e0000 | 6b 2d 6e 61 6d 65 3e 5f 3c 68 6f 73 74 6e 61 6d 65 3e 2e 3c 64 6f 6d 61 69 6e 2d 6e 61 6d 65 3e | k-name>_<hostname>.<domain-name> |
| e0020 | 60 00 43 72 65 61 74 65 20 60 3c 75 73 65 72 3e 60 20 66 6f 72 20 6c 6f 63 61 6c 20 61 75 74 68 | `.Create.`<user>`.for.local.auth |
| e0040 | 65 6e 74 69 63 61 74 69 6f 6e 20 6f 6e 20 74 68 69 73 20 73 79 73 74 65 6d 2e 20 54 68 65 20 75 | entication.on.this.system..The.u |
| e0060 | 73 65 72 73 20 70 61 73 73 77 6f 72 64 20 77 69 6c 6c 20 62 65 20 73 65 74 20 74 6f 20 60 3c 70 | sers.password.will.be.set.to.`<p |
| e0080 | 61 73 73 3e 60 2e 00 43 72 65 61 74 65 20 60 60 31 37 32 2e 31 38 2e 32 30 31 2e 30 2f 32 34 60 | ass>`..Create.``172.18.201.0/24` |
| e00a0 | 60 20 61 73 20 61 20 73 75 62 6e 65 74 20 77 69 74 68 69 6e 20 60 60 4e 45 54 31 60 60 20 61 6e | `.as.a.subnet.within.``NET1``.an |
| e00c0 | 64 20 70 61 73 73 20 61 64 64 72 65 73 73 20 6f 66 20 55 6e 69 66 69 20 63 6f 6e 74 72 6f 6c 6c | d.pass.address.of.Unifi.controll |
| e00e0 | 65 72 20 61 74 20 60 60 31 37 32 2e 31 36 2e 31 30 30 2e 31 60 60 20 74 6f 20 63 6c 69 65 6e 74 | er.at.``172.16.100.1``.to.client |
| e0100 | 73 20 6f 66 20 74 68 61 74 20 73 75 62 6e 65 74 2e 00 43 72 65 61 74 65 20 61 20 43 41 20 63 68 | s.of.that.subnet..Create.a.CA.ch |
| e0120 | 61 69 6e 20 61 6e 64 20 6c 65 61 66 20 63 65 72 74 69 66 69 63 61 74 65 73 00 43 72 65 61 74 65 | ain.and.leaf.certificates.Create |
| e0140 | 20 61 20 62 61 73 69 63 20 62 72 69 64 67 65 00 43 72 65 61 74 65 20 61 20 66 69 6c 65 20 6e 61 | .a.basic.bridge.Create.a.file.na |
| e0160 | 6d 65 64 20 60 60 56 79 4f 53 2d 31 2e 33 2e 36 2e 31 2e 34 2e 31 2e 34 34 36 34 31 2e 43 6f 6e | med.``VyOS-1.3.6.1.4.1.44641.Con |
| e0180 | 66 69 67 4d 67 6d 74 2d 43 6f 6d 6d 61 6e 64 73 60 60 20 75 73 69 6e 67 20 74 68 65 20 66 6f 6c | figMgmt-Commands``.using.the.fol |
| e01a0 | 6c 6f 77 69 6e 67 20 63 6f 6e 74 65 6e 74 3a 00 43 72 65 61 74 65 20 61 20 6c 6f 61 64 20 62 61 | lowing.content:.Create.a.load.ba |
| e01c0 | 6c 61 6e 63 69 6e 67 20 72 75 6c 65 2c 20 69 74 20 63 61 6e 20 62 65 20 61 20 6e 75 6d 62 65 72 | lancing.rule,.it.can.be.a.number |
| e01e0 | 20 62 65 74 77 65 65 6e 20 31 20 61 6e 64 20 39 39 39 39 3a 00 43 72 65 61 74 65 20 61 20 6e 65 | .between.1.and.9999:.Create.a.ne |
| e0200 | 77 20 3a 61 62 62 72 3a 60 43 41 20 28 43 65 72 74 69 66 69 63 61 74 65 20 41 75 74 68 6f 72 69 | w.:abbr:`CA.(Certificate.Authori |
| e0220 | 74 79 29 60 20 61 6e 64 20 6f 75 74 70 75 74 20 74 68 65 20 43 41 73 20 70 75 62 6c 69 63 20 61 | ty)`.and.output.the.CAs.public.a |
| e0240 | 6e 64 20 70 72 69 76 61 74 65 20 6b 65 79 20 6f 6e 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 00 43 | nd.private.key.on.the.console..C |
| e0260 | 72 65 61 74 65 20 61 20 6e 65 77 20 44 48 43 50 20 73 74 61 74 69 63 20 6d 61 70 70 69 6e 67 20 | reate.a.new.DHCP.static.mapping. |
| e0280 | 6e 61 6d 65 64 20 60 3c 64 65 73 63 72 69 70 74 69 6f 6e 3e 60 20 77 68 69 63 68 20 69 73 20 76 | named.`<description>`.which.is.v |
| e02a0 | 61 6c 69 64 20 66 6f 72 20 74 68 65 20 68 6f 73 74 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 | alid.for.the.host.identified.by. |
| e02c0 | 69 74 73 20 44 48 43 50 20 75 6e 69 71 75 65 20 69 64 65 6e 74 69 66 69 65 72 20 28 44 55 49 44 | its.DHCP.unique.identifier.(DUID |
| e02e0 | 29 20 60 3c 69 64 65 6e 74 69 66 69 65 72 3e 60 2e 00 43 72 65 61 74 65 20 61 20 6e 65 77 20 44 | ).`<identifier>`..Create.a.new.D |
| e0300 | 48 43 50 20 73 74 61 74 69 63 20 6d 61 70 70 69 6e 67 20 6e 61 6d 65 64 20 60 3c 64 65 73 63 72 | HCP.static.mapping.named.`<descr |
| e0320 | 69 70 74 69 6f 6e 3e 60 20 77 68 69 63 68 20 69 73 20 76 61 6c 69 64 20 66 6f 72 20 74 68 65 20 | iption>`.which.is.valid.for.the. |
| e0340 | 68 6f 73 74 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 69 74 73 20 4d 41 43 20 60 3c 61 64 64 | host.identified.by.its.MAC.`<add |
| e0360 | 72 65 73 73 3e 60 2e 00 43 72 65 61 74 65 20 61 20 6e 65 77 20 56 4c 41 4e 20 69 6e 74 65 72 66 | ress>`..Create.a.new.VLAN.interf |
| e0380 | 61 63 65 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 75 | ace.on.interface.`<interface>`.u |
| e03a0 | 73 69 6e 67 20 74 68 65 20 56 4c 41 4e 20 6e 75 6d 62 65 72 20 70 72 6f 76 69 64 65 64 20 76 69 | sing.the.VLAN.number.provided.vi |
| e03c0 | 61 20 60 3c 76 6c 61 6e 2d 69 64 3e 60 2e 00 43 72 65 61 74 65 20 61 20 6e 65 77 20 56 52 46 20 | a.`<vlan-id>`..Create.a.new.VRF. |
| e03e0 | 69 6e 73 74 61 6e 63 65 20 77 69 74 68 20 60 3c 6e 61 6d 65 3e 60 20 61 6e 64 20 60 3c 69 64 3e | instance.with.`<name>`.and.`<id> |
| e0400 | 60 2e 20 54 68 65 20 6e 61 6d 65 20 69 73 20 75 73 65 64 20 77 68 65 6e 20 70 6c 61 63 69 6e 67 | `..The.name.is.used.when.placing |
| e0420 | 20 69 6e 64 69 76 69 64 75 61 6c 20 69 6e 74 65 72 66 61 63 65 73 20 69 6e 74 6f 20 74 68 65 20 | .individual.interfaces.into.the. |
| e0440 | 56 52 46 2e 00 43 72 65 61 74 65 20 61 20 6e 65 77 20 70 75 62 6c 69 63 2f 70 72 69 76 61 74 65 | VRF..Create.a.new.public/private |
| e0460 | 20 6b 65 79 70 61 69 72 20 61 6e 64 20 6f 75 74 70 75 74 20 74 68 65 20 63 65 72 74 69 66 69 63 | .keypair.and.output.the.certific |
| e0480 | 61 74 65 20 6f 6e 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 00 43 72 65 61 74 65 20 61 20 6e 65 77 | ate.on.the.console..Create.a.new |
| e04a0 | 20 70 75 62 6c 69 63 2f 70 72 69 76 61 74 65 20 6b 65 79 70 61 69 72 20 77 68 69 63 68 20 69 73 | .public/private.keypair.which.is |
| e04c0 | 20 73 69 67 6e 65 64 20 62 79 20 74 68 65 20 43 41 20 72 65 66 65 72 65 6e 63 65 64 20 62 79 20 | .signed.by.the.CA.referenced.by. |
| e04e0 | 60 63 61 2d 6e 61 6d 65 60 2e 20 54 68 65 20 73 69 67 6e 65 64 20 63 65 72 74 69 66 69 63 61 74 | `ca-name`..The.signed.certificat |
| e0500 | 65 20 69 73 20 74 68 65 6e 20 6f 75 74 70 75 74 20 74 6f 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e | e.is.then.output.to.the.console. |
| e0520 | 00 43 72 65 61 74 65 20 61 20 6e 65 77 20 73 65 6c 66 2d 73 69 67 6e 65 64 20 63 65 72 74 69 66 | .Create.a.new.self-signed.certif |
| e0540 | 69 63 61 74 65 2e 20 54 68 65 20 70 75 62 6c 69 63 2f 70 72 69 76 61 74 65 20 69 73 20 74 68 65 | icate..The.public/private.is.the |
| e0560 | 6e 20 73 68 6f 77 6e 20 6f 6e 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 00 43 72 65 61 74 65 20 61 | n.shown.on.the.console..Create.a |
| e0580 | 20 6e 65 77 20 73 75 62 6f 72 64 69 6e 61 74 65 20 3a 61 62 62 72 3a 60 43 41 20 28 43 65 72 74 | .new.subordinate.:abbr:`CA.(Cert |
| e05a0 | 69 66 69 63 61 74 65 20 41 75 74 68 6f 72 69 74 79 29 60 20 61 6e 64 20 73 69 67 6e 20 69 74 20 | ificate.Authority)`.and.sign.it. |
| e05c0 | 75 73 69 6e 67 20 74 68 65 20 70 72 69 76 61 74 65 20 6b 65 79 20 72 65 66 65 72 65 6e 63 65 64 | using.the.private.key.referenced |
| e05e0 | 20 62 79 20 60 63 61 2d 6e 61 6d 65 60 2e 00 43 72 65 61 74 65 20 61 20 6e 65 77 20 73 75 62 6f | .by.`ca-name`..Create.a.new.subo |
| e0600 | 72 64 69 6e 61 74 65 20 3a 61 62 62 72 3a 60 43 41 20 28 43 65 72 74 69 66 69 63 61 74 65 20 41 | rdinate.:abbr:`CA.(Certificate.A |
| e0620 | 75 74 68 6f 72 69 74 79 29 60 20 61 6e 64 20 73 69 67 6e 20 69 74 20 75 73 69 6e 67 20 74 68 65 | uthority)`.and.sign.it.using.the |
| e0640 | 20 70 72 69 76 61 74 65 20 6b 65 79 20 72 65 66 65 72 65 6e 63 65 64 20 62 79 20 60 6e 61 6d 65 | .private.key.referenced.by.`name |
| e0660 | 60 2e 00 43 72 65 61 74 65 20 61 20 70 65 65 72 20 61 73 20 79 6f 75 20 77 6f 75 6c 64 20 77 68 | `..Create.a.peer.as.you.would.wh |
| e0680 | 65 6e 20 79 6f 75 20 73 70 65 63 69 66 79 20 61 6e 20 41 53 4e 2c 20 65 78 63 65 70 74 20 74 68 | en.you.specify.an.ASN,.except.th |
| e06a0 | 61 74 20 69 66 20 74 68 65 20 70 65 65 72 73 20 41 53 4e 20 69 73 20 64 69 66 66 65 72 65 6e 74 | at.if.the.peers.ASN.is.different |
| e06c0 | 20 74 68 61 6e 20 6d 69 6e 65 20 61 73 20 73 70 65 63 69 66 69 65 64 20 75 6e 64 65 72 20 74 68 | .than.mine.as.specified.under.th |
| e06e0 | 65 20 3a 63 66 67 63 6d 64 3a 60 70 72 6f 74 6f 63 6f 6c 73 20 62 67 70 20 3c 61 73 6e 3e 60 20 | e.:cfgcmd:`protocols.bgp.<asn>`. |
| e0700 | 63 6f 6d 6d 61 6e 64 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 6c 6c 20 62 65 20 64 | command.the.connection.will.be.d |
| e0720 | 65 6e 69 65 64 2e 00 43 72 65 61 74 65 20 61 20 70 65 65 72 20 61 73 20 79 6f 75 20 77 6f 75 6c | enied..Create.a.peer.as.you.woul |
| e0740 | 64 20 77 68 65 6e 20 79 6f 75 20 73 70 65 63 69 66 79 20 61 6e 20 41 53 4e 2c 20 65 78 63 65 70 | d.when.you.specify.an.ASN,.excep |
| e0760 | 74 20 74 68 61 74 20 69 66 20 74 68 65 20 70 65 65 72 73 20 41 53 4e 20 69 73 20 74 68 65 20 73 | t.that.if.the.peers.ASN.is.the.s |
| e0780 | 61 6d 65 20 61 73 20 6d 69 6e 65 20 61 73 20 73 70 65 63 69 66 69 65 64 20 75 6e 64 65 72 20 74 | ame.as.mine.as.specified.under.t |
| e07a0 | 68 65 20 3a 63 66 67 63 6d 64 3a 60 70 72 6f 74 6f 63 6f 6c 73 20 62 67 70 20 3c 61 73 6e 3e 60 | he.:cfgcmd:`protocols.bgp.<asn>` |
| e07c0 | 20 63 6f 6d 6d 61 6e 64 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 6c 6c 20 62 65 20 | .command.the.connection.will.be. |
| e07e0 | 64 65 6e 69 65 64 2e 00 43 72 65 61 74 65 20 61 20 73 74 61 74 69 63 20 68 6f 73 74 6e 61 6d 65 | denied..Create.a.static.hostname |
| e0800 | 20 6d 61 70 70 69 6e 67 20 77 68 69 63 68 20 77 69 6c 6c 20 61 6c 77 61 79 73 20 72 65 73 6f 6c | .mapping.which.will.always.resol |
| e0820 | 76 65 20 74 68 65 20 6e 61 6d 65 20 60 3c 68 6f 73 74 6e 61 6d 65 3e 60 20 74 6f 20 49 50 20 61 | ve.the.name.`<hostname>`.to.IP.a |
| e0840 | 64 64 72 65 73 73 20 60 3c 61 64 64 72 65 73 73 3e 60 2e 00 43 72 65 61 74 65 20 61 73 2d 70 61 | ddress.`<address>`..Create.as-pa |
| e0860 | 74 68 2d 70 6f 6c 69 63 79 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 6e 61 6d 65 20 3c 74 65 | th-policy.identified.by.name.<te |
| e0880 | 78 74 3e 2e 00 43 72 65 61 74 65 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 20 69 6e 20 66 6f 72 | xt>..Create.firewall.rule.in.for |
| e08a0 | 77 61 72 64 20 63 68 61 69 6e 2c 20 61 6e 64 20 64 65 66 69 6e 65 20 77 68 69 63 68 20 66 6c 6f | ward.chain,.and.define.which.flo |
| e08c0 | 77 74 62 61 6c 65 20 73 68 6f 75 6c 64 20 62 65 20 75 73 65 64 2e 20 4f 6e 6c 79 20 61 70 70 6c | wtbale.should.be.used..Only.appl |
| e08e0 | 69 63 61 62 6c 65 20 69 66 20 61 63 74 69 6f 6e 20 69 73 20 60 60 6f 66 66 6c 6f 61 64 60 60 2e | icable.if.action.is.``offload``. |
| e0900 | 00 43 72 65 61 74 65 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 20 69 6e 20 66 6f 72 77 61 72 64 | .Create.firewall.rule.in.forward |
| e0920 | 20 63 68 61 69 6e 2c 20 61 6e 64 20 73 65 74 20 61 63 74 69 6f 6e 20 74 6f 20 60 60 6f 66 66 6c | .chain,.and.set.action.to.``offl |
| e0940 | 6f 61 64 60 60 2e 00 43 72 65 61 74 65 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 3a 20 63 72 65 | oad``..Create.firewall.rule:.cre |
| e0960 | 61 74 65 20 61 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 2c 20 73 65 74 74 69 6e 67 20 61 63 74 | ate.a.firewall.rule,.setting.act |
| e0980 | 69 6f 6e 20 74 6f 20 60 60 6f 66 66 6c 6f 61 64 60 60 20 61 6e 64 20 75 73 69 6e 67 20 64 65 73 | ion.to.``offload``.and.using.des |
| e09a0 | 69 72 65 64 20 66 6c 6f 77 74 61 62 6c 65 20 66 6f 72 20 60 60 6f 66 66 6c 6f 61 64 2d 74 61 72 | ired.flowtable.for.``offload-tar |
| e09c0 | 67 65 74 60 60 2e 00 43 72 65 61 74 65 20 66 6c 6f 77 74 61 62 6c 65 3a 20 63 72 65 61 74 65 20 | get``..Create.flowtable:.create. |
| e09e0 | 66 6c 6f 77 74 61 62 6c 65 2c 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 69 6e | flowtable,.which.includes.the.in |
| e0a00 | 74 65 72 66 61 63 65 73 20 74 68 61 74 20 61 72 65 20 67 6f 69 6e 67 20 74 6f 20 62 65 20 75 73 | terfaces.that.are.going.to.be.us |
| e0a20 | 65 64 20 62 79 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 2e 00 43 72 65 61 74 65 20 6c 61 72 67 | ed.by.the.flowtable..Create.larg |
| e0a40 | 65 2d 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 20 70 6f 6c 69 63 79 20 69 64 65 6e 74 69 66 69 | e-community-list.policy.identifi |
| e0a60 | 65 64 20 62 79 20 6e 61 6d 65 20 3c 74 65 78 74 3e 2e 00 43 72 65 61 74 65 20 6e 61 6d 65 64 20 | ed.by.name.<text>..Create.named. |
| e0a80 | 60 3c 61 6c 69 61 73 3e 60 20 66 6f 72 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 73 74 61 | `<alias>`.for.the.configured.sta |
| e0aa0 | 74 69 63 20 6d 61 70 70 69 6e 67 20 66 6f 72 20 60 3c 68 6f 73 74 6e 61 6d 65 3e 60 2e 20 54 68 | tic.mapping.for.`<hostname>`..Th |
| e0ac0 | 75 73 20 74 68 65 20 61 64 64 72 65 73 73 20 63 6f 6e 66 69 67 75 72 65 64 20 61 73 20 3a 63 66 | us.the.address.configured.as.:cf |
| e0ae0 | 67 63 6d 64 3a 60 73 65 74 20 73 79 73 74 65 6d 20 73 74 61 74 69 63 2d 68 6f 73 74 2d 6d 61 70 | gcmd:`set.system.static-host-map |
| e0b00 | 70 69 6e 67 20 68 6f 73 74 2d 6e 61 6d 65 20 3c 68 6f 73 74 6e 61 6d 65 3e 20 69 6e 65 74 20 3c | ping.host-name.<hostname>.inet.< |
| e0b20 | 61 64 64 72 65 73 73 3e 60 20 63 61 6e 20 62 65 20 72 65 61 63 68 65 64 20 76 69 61 20 6d 75 6c | address>`.can.be.reached.via.mul |
| e0b40 | 74 69 70 6c 65 20 6e 61 6d 65 73 2e 00 43 72 65 61 74 65 20 6e 65 77 20 3a 72 66 63 3a 60 32 31 | tiple.names..Create.new.:rfc:`21 |
| e0b60 | 33 36 60 20 44 4e 53 20 75 70 64 61 74 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 68 69 | 36`.DNS.update.configuration.whi |
| e0b80 | 63 68 20 77 69 6c 6c 20 75 70 64 61 74 65 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 61 73 | ch.will.update.the.IP.address.as |
| e0ba0 | 73 69 67 6e 65 64 20 74 6f 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 6f 6e 20 74 68 65 20 73 | signed.to.`<interface>`.on.the.s |
| e0bc0 | 65 72 76 69 63 65 20 79 6f 75 20 63 6f 6e 66 69 67 75 72 65 64 20 75 6e 64 65 72 20 60 3c 73 65 | ervice.you.configured.under.`<se |
| e0be0 | 72 76 69 63 65 2d 6e 61 6d 65 3e 60 2e 00 43 72 65 61 74 65 20 6e 65 77 20 56 52 46 20 69 6e 73 | rvice-name>`..Create.new.VRF.ins |
| e0c00 | 74 61 6e 63 65 20 77 69 74 68 20 60 3c 6e 61 6d 65 3e 60 2e 20 54 68 65 20 6e 61 6d 65 20 69 73 | tance.with.`<name>`..The.name.is |
| e0c20 | 20 75 73 65 64 20 77 68 65 6e 20 70 6c 61 63 69 6e 67 20 69 6e 64 69 76 69 64 75 61 6c 20 69 6e | .used.when.placing.individual.in |
| e0c40 | 74 65 72 66 61 63 65 73 20 69 6e 74 6f 20 74 68 65 20 56 52 46 2e 00 43 72 65 61 74 65 20 6e 65 | terfaces.into.the.VRF..Create.ne |
| e0c60 | 77 20 64 79 6e 61 6d 69 63 20 44 4e 53 20 75 70 64 61 74 65 20 63 6f 6e 66 69 67 75 72 61 74 69 | w.dynamic.DNS.update.configurati |
| e0c80 | 6f 6e 20 77 68 69 63 68 20 77 69 6c 6c 20 75 70 64 61 74 65 20 74 68 65 20 49 50 20 61 64 64 72 | on.which.will.update.the.IP.addr |
| e0ca0 | 65 73 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 6f 6e | ess.assigned.to.`<interface>`.on |
| e0cc0 | 20 74 68 65 20 73 65 72 76 69 63 65 20 79 6f 75 20 63 6f 6e 66 69 67 75 72 65 64 20 75 6e 64 65 | .the.service.you.configured.unde |
| e0ce0 | 72 20 60 3c 73 65 72 76 69 63 65 2d 6e 61 6d 65 3e 60 2e 00 43 72 65 61 74 65 20 6e 65 77 20 73 | r.`<service-name>`..Create.new.s |
| e0d00 | 79 73 74 65 6d 20 75 73 65 72 20 77 69 74 68 20 75 73 65 72 6e 61 6d 65 20 60 3c 6e 61 6d 65 3e | ystem.user.with.username.`<name> |
| e0d20 | 60 20 61 6e 64 20 72 65 61 6c 2d 6e 61 6d 65 20 73 70 65 63 69 66 69 65 64 20 62 79 20 60 3c 73 | `.and.real-name.specified.by.`<s |
| e0d40 | 74 72 69 6e 67 3e 60 2e 00 43 72 65 61 74 65 20 73 65 72 76 69 63 65 20 60 3c 6e 61 6d 65 3e 60 | tring>`..Create.service.`<name>` |
| e0d60 | 20 74 6f 20 6c 69 73 74 65 6e 20 6f 6e 20 3c 70 6f 72 74 3e 00 43 72 65 61 74 65 73 20 61 20 6e | .to.listen.on.<port>.Creates.a.n |
| e0d80 | 61 6d 65 64 20 63 6f 6e 74 61 69 6e 65 72 20 6e 65 74 77 6f 72 6b 00 43 72 65 61 74 65 73 20 6c | amed.container.network.Creates.l |
| e0da0 | 6f 63 61 6c 20 49 50 6f 45 20 75 73 65 72 20 77 69 74 68 20 75 73 65 72 6e 61 6d 65 3d 2a 2a 3c | ocal.IPoE.user.with.username=**< |
| e0dc0 | 69 6e 74 65 72 66 61 63 65 3e 2a 2a 20 61 6e 64 20 70 61 73 73 77 6f 72 64 3d 2a 2a 3c 4d 41 43 | interface>**.and.password=**<MAC |
| e0de0 | 3e 2a 2a 20 28 6d 61 63 2d 61 64 64 72 65 73 73 29 00 43 72 65 61 74 65 73 20 73 74 61 74 69 63 | >**.(mac-address).Creates.static |
| e0e00 | 20 70 65 65 72 20 6d 61 70 70 69 6e 67 20 6f 66 20 70 72 6f 74 6f 63 6f 6c 2d 61 64 64 72 65 73 | .peer.mapping.of.protocol-addres |
| e0e20 | 73 20 74 6f 20 3a 61 62 62 72 3a 60 4e 42 4d 41 20 28 4e 6f 6e 2d 62 72 6f 61 64 63 61 73 74 20 | s.to.:abbr:`NBMA.(Non-broadcast. |
| e0e40 | 6d 75 6c 74 69 70 6c 65 2d 61 63 63 65 73 73 20 6e 65 74 77 6f 72 6b 29 60 20 61 64 64 72 65 73 | multiple-access.network)`.addres |
| e0e60 | 73 2e 00 43 72 65 61 74 69 6e 67 20 61 20 62 72 69 64 67 65 20 69 6e 74 65 72 66 61 63 65 20 69 | s..Creating.a.bridge.interface.i |
| e0e80 | 73 20 76 65 72 79 20 73 69 6d 70 6c 65 2e 20 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 2c 20 | s.very.simple..In.this.example,. |
| e0ea0 | 77 65 20 77 69 6c 6c 20 68 61 76 65 3a 00 43 72 65 61 74 69 6e 67 20 61 20 66 6c 6f 77 20 74 61 | we.will.have:.Creating.a.flow.ta |
| e0ec0 | 62 6c 65 3a 00 43 72 65 61 74 69 6e 67 20 61 20 74 72 61 66 66 69 63 20 70 6f 6c 69 63 79 00 43 | ble:.Creating.a.traffic.policy.C |
| e0ee0 | 72 65 61 74 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 75 73 69 6e 67 20 66 6c 6f 77 20 74 61 62 | reating.rules.for.using.flow.tab |
| e0f00 | 6c 65 73 3a 00 43 72 65 64 65 6e 74 69 61 6c 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 | les:.Credentials.can.be.defined. |
| e0f20 | 68 65 72 65 20 61 6e 64 20 77 69 6c 6c 20 6f 6e 6c 79 20 62 65 20 75 73 65 64 20 77 68 65 6e 20 | here.and.will.only.be.used.when. |
| e0f40 | 61 64 64 69 6e 67 20 61 20 63 6f 6e 74 61 69 6e 65 72 20 69 6d 61 67 65 20 74 6f 20 74 68 65 20 | adding.a.container.image.to.the. |
| e0f60 | 73 79 73 74 65 6d 2e 00 43 72 69 74 69 63 61 6c 00 43 72 69 74 69 63 61 6c 20 63 6f 6e 64 69 74 | system..Critical.Critical.condit |
| e0f80 | 69 6f 6e 73 20 2d 20 65 2e 67 2e 20 68 61 72 64 20 64 72 69 76 65 20 65 72 72 6f 72 73 2e 00 43 | ions.-.e.g..hard.drive.errors..C |
| e0fa0 | 72 79 73 74 61 6c 66 6f 6e 74 7a 20 43 46 41 2d 35 33 33 00 43 72 79 73 74 61 6c 66 6f 6e 74 7a | rystalfontz.CFA-533.Crystalfontz |
| e0fc0 | 20 43 46 41 2d 36 33 31 00 43 72 79 73 74 61 6c 66 6f 6e 74 7a 20 43 46 41 2d 36 33 33 00 43 72 | .CFA-631.Crystalfontz.CFA-633.Cr |
| e0fe0 | 79 73 74 61 6c 66 6f 6e 74 7a 20 43 46 41 2d 36 33 35 00 43 75 72 20 48 6f 70 20 4c 69 6d 69 74 | ystalfontz.CFA-635.Cur.Hop.Limit |
| e1000 | 00 43 75 72 72 65 6e 74 6c 79 20 64 6f 65 73 20 6e 6f 74 20 64 6f 20 6d 75 63 68 20 61 73 20 63 | .Currently.does.not.do.much.as.c |
| e1020 | 61 63 68 69 6e 67 20 69 73 20 6e 6f 74 20 69 6d 70 6c 65 6d 65 6e 74 65 64 2e 00 43 75 72 72 65 | aching.is.not.implemented..Curre |
| e1040 | 6e 74 6c 79 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 69 73 20 73 75 70 70 6f 72 74 65 | ntly.dynamic.routing.is.supporte |
| e1060 | 64 20 66 6f 72 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 3a 00 43 | d.for.the.following.protocols:.C |
| e1080 | 75 73 74 6f 6d 20 46 69 6c 65 00 43 75 73 74 6f 6d 20 62 72 69 64 67 65 20 66 69 72 65 77 61 6c | ustom.File.Custom.bridge.firewal |
| e10a0 | 6c 20 63 68 61 69 6e 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 20 77 69 74 68 20 63 6f 6d 6d | l.chains.can.be.create.with.comm |
| e10c0 | 61 6e 64 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 6e 61 6d 65 20 3c | and.``set.firewall.bridge.name.< |
| e10e0 | 6e 61 6d 65 3e 20 2e 2e 2e 60 60 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 65 20 73 75 63 | name>....``..In.order.to.use.suc |
| e1100 | 68 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 61 20 72 75 6c 65 20 77 69 74 68 20 61 63 74 69 | h.custom.chain,.a.rule.with.acti |
| e1120 | 6f 6e 20 6a 75 6d 70 2c 20 61 6e 64 20 74 68 65 20 61 70 70 72 6f 70 69 61 74 65 20 74 61 72 67 | on.jump,.and.the.appropiate.targ |
| e1140 | 65 74 20 73 68 6f 75 6c 64 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 61 20 62 61 73 65 20 63 | et.should.be.defined.in.a.base.c |
| e1160 | 68 61 69 6e 2e 00 43 75 73 74 6f 6d 20 62 72 69 64 67 65 20 66 69 72 65 77 61 6c 6c 20 63 68 61 | hain..Custom.bridge.firewall.cha |
| e1180 | 69 6e 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 20 77 69 74 68 20 63 6f 6d 6d 61 6e 64 20 60 | ins.can.be.create.with.command.` |
| e11a0 | 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e | `set.firewall.bridge.name.<name> |
| e11c0 | 20 2e 2e 2e 60 60 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 65 20 73 75 63 68 20 63 75 73 | ....``..In.order.to.use.such.cus |
| e11e0 | 74 6f 6d 20 63 68 61 69 6e 2c 20 61 20 72 75 6c 65 20 77 69 74 68 20 61 63 74 69 6f 6e 20 6a 75 | tom.chain,.a.rule.with.action.ju |
| e1200 | 6d 70 2c 20 61 6e 64 20 74 68 65 20 61 70 70 72 6f 70 72 69 61 74 65 20 74 61 72 67 65 74 20 73 | mp,.and.the.appropriate.target.s |
| e1220 | 68 6f 75 6c 64 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 61 20 62 61 73 65 20 63 68 61 69 6e | hould.be.defined.in.a.base.chain |
| e1240 | 2e 00 43 75 73 74 6f 6d 20 62 72 69 64 67 65 20 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 73 20 | ..Custom.bridge.firewall.chains. |
| e1260 | 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 20 77 69 74 68 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 | can.be.created.with.the.command. |
| e1280 | 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 6e 61 6d 65 20 3c 6e 61 6d 65 | ``set.firewall.bridge.name.<name |
| e12a0 | 3e 20 2e 2e 2e 60 60 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 65 20 73 75 63 68 20 63 75 | >....``..In.order.to.use.such.cu |
| e12c0 | 73 74 6f 6d 20 63 68 61 69 6e 2c 20 61 20 72 75 6c 65 20 77 69 74 68 20 61 63 74 69 6f 6e 20 6a | stom.chain,.a.rule.with.action.j |
| e12e0 | 75 6d 70 2c 20 61 6e 64 20 74 68 65 20 61 70 70 72 6f 70 72 69 61 74 65 20 74 61 72 67 65 74 20 | ump,.and.the.appropriate.target. |
| e1300 | 73 68 6f 75 6c 64 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 61 20 62 61 73 65 20 63 68 61 69 | should.be.defined.in.a.base.chai |
| e1320 | 6e 2e 00 43 75 73 74 6f 6d 20 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 73 20 63 61 6e 20 62 65 | n..Custom.firewall.chains.can.be |
| e1340 | 20 63 72 65 61 74 65 64 2c 20 77 69 74 68 20 63 6f 6d 6d 61 6e 64 73 20 60 60 73 65 74 20 66 69 | .created,.with.commands.``set.fi |
| e1360 | 72 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 5b 6e 61 6d 65 20 7c 20 69 70 76 | rewall.[ipv4.|.ipv6].[name.|.ipv |
| e1380 | 36 2d 6e 61 6d 65 5d 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 2e 20 49 6e 20 6f 72 64 65 72 20 74 | 6-name].<name>....``..In.order.t |
| e13a0 | 6f 20 75 73 65 20 73 75 63 68 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 61 20 72 75 6c 65 20 | o.use.such.custom.chain,.a.rule. |
| e13c0 | 77 69 74 68 20 2a 2a 61 63 74 69 6f 6e 20 6a 75 6d 70 2a 2a 2c 20 61 6e 64 20 74 68 65 20 61 70 | with.**action.jump**,.and.the.ap |
| e13e0 | 70 72 6f 70 69 61 74 65 20 2a 2a 74 61 72 67 65 74 2a 2a 20 73 68 6f 75 6c 64 20 62 65 20 64 65 | propiate.**target**.should.be.de |
| e1400 | 66 69 6e 65 64 20 69 6e 20 61 20 62 61 73 65 20 63 68 61 69 6e 2e 00 43 75 73 74 6f 6d 20 66 69 | fined.in.a.base.chain..Custom.fi |
| e1420 | 72 65 77 61 6c 6c 20 63 68 61 69 6e 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 2c 20 77 69 | rewall.chains.can.be.created,.wi |
| e1440 | 74 68 20 63 6f 6d 6d 61 6e 64 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 | th.commands.``set.firewall.ipv4. |
| e1460 | 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 | name.<name>....``..In.order.to.u |
| e1480 | 73 65 20 73 75 63 68 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 61 20 72 75 6c 65 20 77 69 74 | se.such.custom.chain,.a.rule.wit |
| e14a0 | 68 20 2a 2a 61 63 74 69 6f 6e 20 6a 75 6d 70 2a 2a 2c 20 61 6e 64 20 74 68 65 20 61 70 70 72 6f | h.**action.jump**,.and.the.appro |
| e14c0 | 70 69 61 74 65 20 2a 2a 74 61 72 67 65 74 2a 2a 20 73 68 6f 75 6c 64 20 62 65 20 64 65 66 69 6e | piate.**target**.should.be.defin |
| e14e0 | 65 64 20 69 6e 20 61 20 62 61 73 65 20 63 68 61 69 6e 2e 00 43 75 73 74 6f 6d 20 66 69 72 65 77 | ed.in.a.base.chain..Custom.firew |
| e1500 | 61 6c 6c 20 63 68 61 69 6e 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 2c 20 77 69 74 68 20 | all.chains.can.be.created,.with. |
| e1520 | 63 6f 6d 6d 61 6e 64 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 6e 61 6d | commands.``set.firewall.ipv4.nam |
| e1540 | 65 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 65 20 | e.<name>....``..In.order.to.use. |
| e1560 | 73 75 63 68 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 61 20 72 75 6c 65 20 77 69 74 68 20 2a | such.custom.chain,.a.rule.with.* |
| e1580 | 2a 61 63 74 69 6f 6e 20 6a 75 6d 70 2a 2a 2c 20 61 6e 64 20 74 68 65 20 61 70 70 72 6f 70 72 69 | *action.jump**,.and.the.appropri |
| e15a0 | 61 74 65 20 2a 2a 74 61 72 67 65 74 2a 2a 20 73 68 6f 75 6c 64 20 62 65 20 64 65 66 69 6e 65 64 | ate.**target**.should.be.defined |
| e15c0 | 20 69 6e 20 61 20 62 61 73 65 20 63 68 61 69 6e 2e 00 43 75 73 74 6f 6d 20 66 69 72 65 77 61 6c | .in.a.base.chain..Custom.firewal |
| e15e0 | 6c 20 63 68 61 69 6e 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 2c 20 77 69 74 68 20 63 6f | l.chains.can.be.created,.with.co |
| e1600 | 6d 6d 61 6e 64 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 6e 61 6d 65 20 | mmands.``set.firewall.ipv6.name. |
| e1620 | 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 65 20 73 75 | <name>....``..In.order.to.use.su |
| e1640 | 63 68 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 61 20 72 75 6c 65 20 77 69 74 68 20 2a 2a 61 | ch.custom.chain,.a.rule.with.**a |
| e1660 | 63 74 69 6f 6e 20 6a 75 6d 70 2a 2a 2c 20 61 6e 64 20 74 68 65 20 61 70 70 72 6f 70 69 61 74 65 | ction.jump**,.and.the.appropiate |
| e1680 | 20 2a 2a 74 61 72 67 65 74 2a 2a 20 73 68 6f 75 6c 64 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e | .**target**.should.be.defined.in |
| e16a0 | 20 61 20 62 61 73 65 20 63 68 61 69 6e 2e 00 43 75 73 74 6f 6d 20 66 69 72 65 77 61 6c 6c 20 63 | .a.base.chain..Custom.firewall.c |
| e16c0 | 68 61 69 6e 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 2c 20 77 69 74 68 20 63 6f 6d 6d 61 | hains.can.be.created,.with.comma |
| e16e0 | 6e 64 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 6e 61 6d 65 20 3c 6e 61 | nds.``set.firewall.ipv6.name.<na |
| e1700 | 6d 65 3e 20 2e 2e 2e 60 60 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 65 20 73 75 63 68 20 | me>....``..In.order.to.use.such. |
| e1720 | 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 61 20 72 75 6c 65 20 77 69 74 68 20 2a 2a 61 63 74 69 | custom.chain,.a.rule.with.**acti |
| e1740 | 6f 6e 20 6a 75 6d 70 2a 2a 2c 20 61 6e 64 20 74 68 65 20 61 70 70 72 6f 70 72 69 61 74 65 20 2a | on.jump**,.and.the.appropriate.* |
| e1760 | 2a 74 61 72 67 65 74 2a 2a 20 73 68 6f 75 6c 64 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 61 | *target**.should.be.defined.in.a |
| e1780 | 20 62 61 73 65 20 63 68 61 69 6e 2e 00 43 75 73 74 6f 6d 20 68 65 61 6c 74 68 2d 63 68 65 63 6b | .base.chain..Custom.health-check |
| e17a0 | 20 73 63 72 69 70 74 20 61 6c 6c 6f 77 73 20 63 68 65 63 6b 69 6e 67 20 72 65 61 6c 2d 73 65 72 | .script.allows.checking.real-ser |
| e17c0 | 76 65 72 20 61 76 61 69 6c 61 62 69 6c 69 74 79 00 43 75 73 74 6f 6d 69 7a 65 64 20 69 67 6e 6f | ver.availability.Customized.igno |
| e17e0 | 72 65 20 72 75 6c 65 73 2c 20 62 61 73 65 64 20 6f 6e 20 61 20 70 61 63 6b 65 74 20 61 6e 64 20 | re.rules,.based.on.a.packet.and. |
| e1800 | 66 6c 6f 77 20 73 65 6c 65 63 74 6f 72 2e 00 44 43 4f 20 63 61 6e 20 62 65 20 65 6e 61 62 6c 65 | flow.selector..DCO.can.be.enable |
| e1820 | 64 20 66 6f 72 20 62 6f 74 68 20 6e 65 77 20 61 6e 64 20 65 78 69 73 74 69 6e 67 20 74 75 6e 6e | d.for.both.new.and.existing.tunn |
| e1840 | 65 6c 73 2c 56 79 4f 53 20 61 64 64 73 20 61 6e 20 6f 70 74 69 6f 6e 20 69 6e 20 65 61 63 68 20 | els,VyOS.adds.an.option.in.each. |
| e1860 | 74 75 6e 6e 65 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 68 65 72 65 20 77 65 20 63 61 | tunnel.configuration.where.we.ca |
| e1880 | 6e 20 65 6e 61 62 6c 65 20 74 68 69 73 20 66 75 6e 63 74 69 6f 6e 20 20 2e 54 68 65 20 63 75 72 | n.enable.this.function...The.cur |
| e18a0 | 72 65 6e 74 20 62 65 73 74 20 70 72 61 63 74 69 63 65 20 69 73 20 74 6f 20 63 72 65 61 74 65 20 | rent.best.practice.is.to.create. |
| e18c0 | 61 20 6e 65 77 20 74 75 6e 6e 65 6c 20 77 69 74 68 20 44 43 4f 20 74 6f 20 6d 69 6e 69 6d 69 7a | a.new.tunnel.with.DCO.to.minimiz |
| e18e0 | 65 20 74 68 65 20 63 68 61 6e 63 65 20 6f 66 20 70 72 6f 62 6c 65 6d 73 20 77 69 74 68 20 65 78 | e.the.chance.of.problems.with.ex |
| e1900 | 69 73 74 69 6e 67 20 63 6c 69 65 6e 74 73 2e 00 44 43 4f 20 63 61 6e 20 62 65 20 65 6e 61 62 6c | isting.clients..DCO.can.be.enabl |
| e1920 | 65 64 20 66 6f 72 20 62 6f 74 68 20 6e 65 77 20 61 6e 64 20 65 78 69 73 74 69 6e 67 20 74 75 6e | ed.for.both.new.and.existing.tun |
| e1940 | 6e 65 6c 73 2e 20 56 79 4f 53 20 61 64 64 73 20 61 6e 20 6f 70 74 69 6f 6e 20 69 6e 20 65 61 63 | nels..VyOS.adds.an.option.in.eac |
| e1960 | 68 20 74 75 6e 6e 65 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 68 65 72 65 20 77 65 20 | h.tunnel.configuration.where.we. |
| e1980 | 63 61 6e 20 65 6e 61 62 6c 65 20 74 68 69 73 20 66 75 6e 63 74 69 6f 6e 2e 20 54 68 65 20 63 75 | can.enable.this.function..The.cu |
| e19a0 | 72 72 65 6e 74 20 62 65 73 74 20 70 72 61 63 74 69 63 65 20 69 73 20 74 6f 20 63 72 65 61 74 65 | rrent.best.practice.is.to.create |
| e19c0 | 20 61 20 6e 65 77 20 74 75 6e 6e 65 6c 20 77 69 74 68 20 44 43 4f 20 74 6f 20 6d 69 6e 69 6d 69 | .a.new.tunnel.with.DCO.to.minimi |
| e19e0 | 7a 65 20 74 68 65 20 63 68 61 6e 63 65 20 6f 66 20 70 72 6f 62 6c 65 6d 73 20 77 69 74 68 20 65 | ze.the.chance.of.problems.with.e |
| e1a00 | 78 69 73 74 69 6e 67 20 63 6c 69 65 6e 74 73 2e 00 44 43 4f 20 73 75 70 70 6f 72 74 20 69 73 20 | xisting.clients..DCO.support.is. |
| e1a20 | 61 20 70 65 72 2d 74 75 6e 6e 65 6c 20 6f 70 74 69 6f 6e 20 61 6e 64 20 69 74 20 69 73 20 6e 6f | a.per-tunnel.option.and.it.is.no |
| e1a40 | 74 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 65 6e 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 | t.automatically.enabled.by.defau |
| e1a60 | 6c 74 20 66 6f 72 20 6e 65 77 20 6f 72 20 75 70 67 72 61 64 65 64 20 74 75 6e 6e 65 6c 73 2e 20 | lt.for.new.or.upgraded.tunnels.. |
| e1a80 | 45 78 69 73 74 69 6e 67 20 74 75 6e 6e 65 6c 73 20 77 69 6c 6c 20 63 6f 6e 74 69 6e 75 65 20 74 | Existing.tunnels.will.continue.t |
| e1aa0 | 6f 20 66 75 6e 63 74 69 6f 6e 20 61 73 20 74 68 65 79 20 68 61 76 65 20 69 6e 20 74 68 65 20 70 | o.function.as.they.have.in.the.p |
| e1ac0 | 61 73 74 2e 00 44 44 6f 53 20 50 72 6f 74 65 63 74 69 6f 6e 00 44 48 20 47 72 6f 75 70 20 31 34 | ast..DDoS.Protection.DH.Group.14 |
| e1ae0 | 00 44 48 43 50 20 48 69 67 68 20 41 76 61 69 6c 61 62 69 6c 69 74 79 20 6d 75 73 74 20 62 65 20 | .DHCP.High.Availability.must.be. |
| e1b00 | 63 6f 6e 66 69 67 75 72 65 64 20 65 78 70 6c 69 63 69 74 6c 79 20 62 79 20 74 68 65 20 66 6f 6c | configured.explicitly.by.the.fol |
| e1b20 | 6c 6f 77 69 6e 67 20 73 74 61 74 65 6d 65 6e 74 73 20 6f 6e 20 62 6f 74 68 20 73 65 72 76 65 72 | lowing.statements.on.both.server |
| e1b40 | 73 3a 00 44 48 43 50 20 52 65 6c 61 79 00 44 48 43 50 20 53 65 72 76 65 72 00 44 48 43 50 20 66 | s:.DHCP.Relay.DHCP.Server.DHCP.f |
| e1b60 | 61 69 6c 6f 76 65 72 20 70 61 72 61 6d 65 74 65 72 73 00 44 48 43 50 20 6c 65 61 73 65 20 72 61 | ailover.parameters.DHCP.lease.ra |
| e1b80 | 6e 67 65 00 44 48 43 50 20 72 61 6e 67 65 20 73 70 61 6e 73 20 66 72 6f 6d 20 60 31 39 32 2e 31 | nge.DHCP.range.spans.from.`192.1 |
| e1ba0 | 36 38 2e 31 38 39 2e 31 30 60 20 2d 20 60 31 39 32 2e 31 36 38 2e 31 38 39 2e 32 35 30 60 00 44 | 68.189.10`.-.`192.168.189.250`.D |
| e1bc0 | 48 43 50 20 72 65 6c 61 79 20 65 78 61 6d 70 6c 65 00 44 48 43 50 20 73 65 72 76 65 72 20 69 73 | HCP.relay.example.DHCP.server.is |
| e1be0 | 20 6c 6f 63 61 74 65 64 20 61 74 20 49 50 76 34 20 61 64 64 72 65 73 73 20 31 30 2e 30 2e 31 2e | .located.at.IPv4.address.10.0.1. |
| e1c00 | 34 20 6f 6e 20 60 60 65 74 68 32 60 60 2e 00 44 48 43 50 76 36 20 61 64 64 72 65 73 73 20 70 6f | 4.on.``eth2``..DHCPv6.address.po |
| e1c20 | 6f 6c 73 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 66 6f 72 20 74 68 65 20 73 | ols.must.be.configured.for.the.s |
| e1c40 | 79 73 74 65 6d 20 74 6f 20 61 63 74 20 61 73 20 61 20 44 48 43 50 76 36 20 73 65 72 76 65 72 2e | ystem.to.act.as.a.DHCPv6.server. |
| e1c60 | 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 20 64 65 73 63 72 69 62 65 73 | .The.following.example.describes |
| e1c80 | 20 61 20 63 6f 6d 6d 6f 6e 20 73 63 65 6e 61 72 69 6f 2e 00 44 48 43 50 76 36 20 72 65 6c 61 79 | .a.common.scenario..DHCPv6.relay |
| e1ca0 | 20 65 78 61 6d 70 6c 65 00 44 48 43 50 76 36 20 72 65 71 75 65 73 74 73 20 61 72 65 20 72 65 63 | .example.DHCPv6.requests.are.rec |
| e1cc0 | 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 6f 6e 20 60 6c 69 73 74 65 6e 69 6e | eived.by.the.router.on.`listenin |
| e1ce0 | 67 20 69 6e 74 65 72 66 61 63 65 60 20 60 60 65 74 68 31 60 60 00 44 4d 56 50 4e 00 44 4d 56 50 | g.interface`.``eth1``.DMVPN.DMVP |
| e1d00 | 4e 20 65 78 61 6d 70 6c 65 20 6e 65 74 77 6f 72 6b 00 44 4d 56 50 4e 20 6e 65 74 77 6f 72 6b 00 | N.example.network.DMVPN.network. |
| e1d20 | 44 4d 56 50 4e 20 6f 6e 6c 79 20 61 75 74 6f 6d 61 74 65 73 20 74 68 65 20 74 75 6e 6e 65 6c 20 | DMVPN.only.automates.the.tunnel. |
| e1d40 | 65 6e 64 70 6f 69 6e 74 20 64 69 73 63 6f 76 65 72 79 20 61 6e 64 20 73 65 74 75 70 2e 20 41 20 | endpoint.discovery.and.setup..A. |
| e1d60 | 63 6f 6d 70 6c 65 74 65 20 73 6f 6c 75 74 69 6f 6e 20 61 6c 73 6f 20 69 6e 63 6f 72 70 6f 72 61 | complete.solution.also.incorpora |
| e1d80 | 74 65 73 20 74 68 65 20 75 73 65 20 6f 66 20 61 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f | tes.the.use.of.a.routing.protoco |
| e1da0 | 6c 2e 20 42 47 50 20 69 73 20 70 61 72 74 69 63 75 6c 61 72 6c 79 20 77 65 6c 6c 20 73 75 69 74 | l..BGP.is.particularly.well.suit |
| e1dc0 | 65 64 20 66 6f 72 20 75 73 65 20 77 69 74 68 20 44 4d 56 50 4e 2e 00 44 4e 41 54 00 44 4e 41 54 | ed.for.use.with.DMVPN..DNAT.DNAT |
| e1de0 | 20 69 73 20 74 79 70 69 63 61 6c 6c 79 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 61 20 2a | .is.typically.referred.to.as.a.* |
| e1e00 | 2a 50 6f 72 74 20 46 6f 72 77 61 72 64 2a 2a 2e 20 57 68 65 6e 20 75 73 69 6e 67 20 56 79 4f 53 | *Port.Forward**..When.using.VyOS |
| e1e20 | 20 61 73 20 61 20 4e 41 54 20 72 6f 75 74 65 72 20 61 6e 64 20 66 69 72 65 77 61 6c 6c 2c 20 61 | .as.a.NAT.router.and.firewall,.a |
| e1e40 | 20 63 6f 6d 6d 6f 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 61 73 6b 20 69 73 20 74 6f | .common.configuration.task.is.to |
| e1e60 | 20 72 65 64 69 72 65 63 74 20 69 6e 63 6f 6d 69 6e 67 20 74 72 61 66 66 69 63 20 74 6f 20 61 20 | .redirect.incoming.traffic.to.a. |
| e1e80 | 73 79 73 74 65 6d 20 62 65 68 69 6e 64 20 74 68 65 20 66 69 72 65 77 61 6c 6c 2e 00 44 4e 41 54 | system.behind.the.firewall..DNAT |
| e1ea0 | 20 72 75 6c 65 20 31 30 20 72 65 70 6c 61 63 65 73 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f | .rule.10.replaces.the.destinatio |
| e1ec0 | 6e 20 61 64 64 72 65 73 73 20 6f 66 20 61 6e 20 69 6e 62 6f 75 6e 64 20 70 61 63 6b 65 74 20 77 | n.address.of.an.inbound.packet.w |
| e1ee0 | 69 74 68 20 31 39 32 2e 30 2e 32 2e 31 30 00 44 4e 41 54 36 36 00 44 4e 53 20 46 6f 72 77 61 72 | ith.192.0.2.10.DNAT66.DNS.Forwar |
| e1f00 | 64 69 6e 67 00 44 4e 53 20 6e 61 6d 65 20 73 65 72 76 65 72 73 00 44 4e 53 20 73 65 61 72 63 68 | ding.DNS.name.servers.DNS.search |
| e1f20 | 20 6c 69 73 74 20 74 6f 20 61 64 76 65 72 74 69 73 65 00 44 4e 53 20 73 65 72 76 65 72 20 49 50 | .list.to.advertise.DNS.server.IP |
| e1f40 | 76 34 20 61 64 64 72 65 73 73 00 44 4e 53 20 73 65 72 76 65 72 20 69 73 20 6c 6f 63 61 74 65 64 | v4.address.DNS.server.is.located |
| e1f60 | 20 61 74 20 60 60 32 30 30 31 3a 64 62 38 3a 3a 66 66 66 66 60 60 00 44 4e 53 53 4c 00 44 53 43 | .at.``2001:db8::ffff``.DNSSL.DSC |
| e1f80 | 50 20 76 61 6c 75 65 73 20 61 73 20 70 65 72 20 3a 72 66 63 3a 60 32 34 37 34 60 20 61 6e 64 20 | P.values.as.per.:rfc:`2474`.and. |
| e1fa0 | 3a 72 66 63 3a 60 34 35 39 35 60 3a 00 44 53 53 53 2f 43 43 4b 20 4d 6f 64 65 20 69 6e 20 34 30 | :rfc:`4595`:.DSSS/CCK.Mode.in.40 |
| e1fc0 | 20 4d 48 7a 2c 20 74 68 69 73 20 73 65 74 73 20 60 60 5b 44 53 53 53 5f 43 43 4b 2d 34 30 5d 60 | .MHz,.this.sets.``[DSSS_CCK-40]` |
| e1fe0 | 60 00 44 61 74 61 20 69 73 20 70 72 6f 76 69 64 65 64 20 62 79 20 44 42 2d 49 50 2e 63 6f 6d 20 | `.Data.is.provided.by.DB-IP.com. |
| e2000 | 75 6e 64 65 72 20 43 43 2d 42 59 2d 34 2e 30 20 6c 69 63 65 6e 73 65 2e 20 41 74 74 72 69 62 75 | under.CC-BY-4.0.license..Attribu |
| e2020 | 74 69 6f 6e 20 72 65 71 75 69 72 65 64 2c 20 70 65 72 6d 69 74 73 20 72 65 64 69 73 74 72 69 62 | tion.required,.permits.redistrib |
| e2040 | 75 74 69 6f 6e 20 73 6f 20 77 65 20 63 61 6e 20 69 6e 63 6c 75 64 65 20 61 20 64 61 74 61 62 61 | ution.so.we.can.include.a.databa |
| e2060 | 73 65 20 69 6e 20 69 6d 61 67 65 73 28 7e 33 4d 42 20 63 6f 6d 70 72 65 73 73 65 64 29 2e 20 49 | se.in.images(~3MB.compressed)..I |
| e2080 | 6e 63 6c 75 64 65 73 20 63 72 6f 6e 20 73 63 72 69 70 74 20 28 6d 61 6e 75 61 6c 6c 79 20 63 61 | ncludes.cron.script.(manually.ca |
| e20a0 | 6c 6c 61 62 6c 65 20 62 79 20 6f 70 2d 6d 6f 64 65 20 75 70 64 61 74 65 20 67 65 6f 69 70 29 20 | llable.by.op-mode.update.geoip). |
| e20c0 | 74 6f 20 6b 65 65 70 20 64 61 74 61 62 61 73 65 20 61 6e 64 20 72 75 6c 65 73 20 75 70 64 61 74 | to.keep.database.and.rules.updat |
| e20e0 | 65 64 2e 00 44 65 62 75 67 00 44 65 62 75 67 2d 6c 65 76 65 6c 20 6d 65 73 73 61 67 65 73 20 2d | ed..Debug.Debug-level.messages.- |
| e2100 | 20 4d 65 73 73 61 67 65 73 20 74 68 61 74 20 63 6f 6e 74 61 69 6e 20 69 6e 66 6f 72 6d 61 74 69 | .Messages.that.contain.informati |
| e2120 | 6f 6e 20 6e 6f 72 6d 61 6c 6c 79 20 6f 66 20 75 73 65 20 6f 6e 6c 79 20 77 68 65 6e 20 64 65 62 | on.normally.of.use.only.when.deb |
| e2140 | 75 67 67 69 6e 67 20 61 20 70 72 6f 67 72 61 6d 2e 00 44 65 66 61 75 6c 74 00 44 65 66 61 75 6c | ugging.a.program..Default.Defaul |
| e2160 | 74 20 31 2e 00 44 65 66 61 75 6c 74 20 47 61 74 65 77 61 79 2f 52 6f 75 74 65 00 44 65 66 61 75 | t.1..Default.Gateway/Route.Defau |
| e2180 | 6c 74 20 52 6f 75 74 65 72 20 50 72 65 66 65 72 65 6e 63 65 00 44 65 66 61 75 6c 74 20 62 65 68 | lt.Router.Preference.Default.beh |
| e21a0 | 61 76 69 6f 72 20 2d 20 64 6f 6e 27 74 20 61 73 6b 20 63 6c 69 65 6e 74 20 66 6f 72 20 6d 70 70 | avior.-.don't.ask.client.for.mpp |
| e21c0 | 65 2c 20 62 75 74 20 61 6c 6c 6f 77 20 69 74 20 69 66 20 63 6c 69 65 6e 74 20 77 61 6e 74 73 2e | e,.but.allow.it.if.client.wants. |
| e21e0 | 20 50 6c 65 61 73 65 20 6e 6f 74 65 20 74 68 61 74 20 52 41 44 49 55 53 20 6d 61 79 20 6f 76 65 | .Please.note.that.RADIUS.may.ove |
| e2200 | 72 72 69 64 65 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 62 79 20 4d 53 2d 4d 50 50 45 2d 45 6e 63 | rride.this.option.by.MS-MPPE-Enc |
| e2220 | 72 79 70 74 69 6f 6e 2d 50 6f 6c 69 63 79 20 61 74 74 72 69 62 75 74 65 2e 00 44 65 66 61 75 6c | ryption-Policy.attribute..Defaul |
| e2240 | 74 20 62 65 68 61 76 69 6f 72 20 2d 20 64 6f 6e 27 74 20 61 73 6b 20 74 68 65 20 63 6c 69 65 6e | t.behavior.-.don't.ask.the.clien |
| e2260 | 74 20 66 6f 72 20 6d 70 70 65 2c 20 62 75 74 20 61 6c 6c 6f 77 20 69 74 20 69 66 20 74 68 65 20 | t.for.mppe,.but.allow.it.if.the. |
| e2280 | 63 6c 69 65 6e 74 20 77 61 6e 74 73 2e 20 50 6c 65 61 73 65 20 6e 6f 74 65 20 74 68 61 74 20 52 | client.wants..Please.note.that.R |
| e22a0 | 41 44 49 55 53 20 6d 61 79 20 6f 76 65 72 72 69 64 65 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 62 | ADIUS.may.override.this.option.b |
| e22c0 | 79 20 4d 53 2d 4d 50 50 45 2d 45 6e 63 72 79 70 74 69 6f 6e 2d 50 6f 6c 69 63 79 20 61 74 74 72 | y.MS-MPPE-Encryption-Policy.attr |
| e22e0 | 69 62 75 74 65 2e 00 44 65 66 61 75 6c 74 20 62 65 68 61 76 69 6f 72 20 2d 20 64 6f 6e 27 74 20 | ibute..Default.behavior.-.don't. |
| e2300 | 61 73 6b 20 74 68 65 20 63 6c 69 65 6e 74 20 66 6f 72 20 6d 70 70 65 2c 20 62 75 74 20 61 6c 6c | ask.the.client.for.mppe,.but.all |
| e2320 | 6f 77 20 69 74 20 69 66 20 74 68 65 20 63 6c 69 65 6e 74 20 77 61 6e 74 73 2e 20 50 6c 65 61 73 | ow.it.if.the.client.wants..Pleas |
| e2340 | 65 20 6e 6f 74 65 20 74 68 61 74 20 52 41 44 49 55 53 20 6d 61 79 20 6f 76 65 72 72 69 64 65 20 | e.note.that.RADIUS.may.override. |
| e2360 | 74 68 69 73 20 6f 70 74 69 6f 6e 20 77 69 74 68 20 74 68 65 20 4d 53 2d 4d 50 50 45 2d 45 6e 63 | this.option.with.the.MS-MPPE-Enc |
| e2380 | 72 79 70 74 69 6f 6e 2d 50 6f 6c 69 63 79 20 61 74 74 72 69 62 75 74 65 2e 00 44 65 66 61 75 6c | ryption-Policy.attribute..Defaul |
| e23a0 | 74 20 67 61 74 65 77 61 79 20 61 6e 64 20 44 4e 53 20 73 65 72 76 65 72 20 69 73 20 61 74 20 60 | t.gateway.and.DNS.server.is.at.` |
| e23c0 | 31 39 32 2e 30 2e 32 2e 32 35 34 60 00 44 65 66 61 75 6c 74 20 69 73 20 30 20 66 6f 72 20 75 6e | 192.0.2.254`.Default.is.0.for.un |
| e23e0 | 6c 69 6d 69 74 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 31 2e 32 35 20 6c 69 6d 69 74 | limited..For.example,.1.25.limit |
| e2400 | 73 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 74 6f 20 75 73 65 20 75 70 20 74 6f 20 31 2e 32 | s.the.container.to.use.up.to.1.2 |
| e2420 | 35 20 63 6f 72 65 73 20 77 6f 72 74 68 20 6f 66 20 43 50 55 20 74 69 6d 65 2e 20 54 68 69 73 20 | 5.cores.worth.of.CPU.time..This. |
| e2440 | 63 61 6e 20 62 65 20 61 20 64 65 63 69 6d 61 6c 20 6e 75 6d 62 65 72 20 77 69 74 68 20 75 70 20 | can.be.a.decimal.number.with.up. |
| e2460 | 74 6f 20 74 68 72 65 65 20 64 65 63 69 6d 61 6c 20 70 6c 61 63 65 73 2e 00 44 65 66 61 75 6c 74 | to.three.decimal.places..Default |
| e2480 | 20 69 73 20 33 31 30 30 00 44 65 66 61 75 6c 74 20 69 73 20 35 31 32 20 4d 42 2e 20 55 73 65 20 | .is.3100.Default.is.512.MB..Use. |
| e24a0 | 30 20 4d 42 20 66 6f 72 20 75 6e 6c 69 6d 69 74 65 64 20 6d 65 6d 6f 72 79 2e 00 44 65 66 61 75 | 0.MB.for.unlimited.memory..Defau |
| e24c0 | 6c 74 20 69 73 20 60 60 61 6e 79 2d 61 76 61 69 6c 61 62 6c 65 60 60 2e 00 44 65 66 61 75 6c 74 | lt.is.``any-available``..Default |
| e24e0 | 20 69 73 20 60 60 69 63 6d 70 60 60 2e 00 44 65 66 61 75 6c 74 20 69 73 20 74 6f 20 64 65 74 65 | .is.``icmp``..Default.is.to.dete |
| e2500 | 63 74 73 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 20 73 74 61 74 65 20 63 68 61 6e 67 65 73 2e | cts.physical.link.state.changes. |
| e2520 | 00 44 65 66 61 75 6c 74 20 70 6f 72 74 20 69 73 20 33 31 32 38 2e 00 44 65 66 61 75 6c 74 3a 20 | .Default.port.is.3128..Default:. |
| e2540 | 31 00 44 65 66 61 75 6c 74 3a 20 34 34 33 00 44 65 66 61 75 6c 74 73 20 74 6f 20 27 75 69 64 27 | 1.Default:.443.Defaults.to.'uid' |
| e2560 | 00 44 65 66 61 75 6c 74 73 20 74 6f 20 32 32 35 2e 30 2e 30 2e 35 30 2e 00 44 65 66 61 75 6c 74 | .Defaults.to.225.0.0.50..Default |
| e2580 | 73 20 74 6f 20 60 60 75 73 60 60 2e 00 44 65 66 69 6e 65 20 43 6f 6e 65 63 74 69 6f 6e 20 54 69 | s.to.``us``..Define.Conection.Ti |
| e25a0 | 6d 65 6f 75 74 73 00 44 65 66 69 6e 65 20 49 50 76 34 20 61 6e 64 2f 6f 72 20 49 50 76 36 20 70 | meouts.Define.IPv4.and/or.IPv6.p |
| e25c0 | 72 65 66 69 78 20 66 6f 72 20 61 20 67 69 76 65 6e 20 6e 65 74 77 6f 72 6b 20 6e 61 6d 65 2e 20 | refix.for.a.given.network.name.. |
| e25e0 | 42 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 63 61 6e 20 62 65 20 75 73 65 64 20 69 | Both.IPv4.and.IPv6.can.be.used.i |
| e2600 | 6e 20 70 61 72 61 6c 6c 65 6c 2e 00 44 65 66 69 6e 65 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 | n.parallel..Define.IPv4.or.IPv6. |
| e2620 | 70 72 65 66 69 78 20 66 6f 72 20 61 20 67 69 76 65 6e 20 6e 65 74 77 6f 72 6b 20 6e 61 6d 65 2e | prefix.for.a.given.network.name. |
| e2640 | 20 4f 6e 6c 79 20 6f 6e 65 20 49 50 76 34 20 61 6e 64 20 6f 6e 65 20 49 50 76 36 20 70 72 65 66 | .Only.one.IPv4.and.one.IPv6.pref |
| e2660 | 69 78 20 63 61 6e 20 62 65 20 75 73 65 64 20 70 65 72 20 6e 65 74 77 6f 72 6b 20 6e 61 6d 65 2e | ix.can.be.used.per.network.name. |
| e2680 | 00 44 65 66 69 6e 65 20 49 50 76 34 2f 49 50 76 36 20 6d 61 6e 61 67 65 6d 65 6e 74 20 61 64 64 | .Define.IPv4/IPv6.management.add |
| e26a0 | 72 65 73 73 20 74 72 61 6e 73 6d 69 74 74 65 64 20 76 69 61 20 4c 4c 44 50 2e 20 4d 75 6c 74 69 | ress.transmitted.via.LLDP..Multi |
| e26c0 | 70 6c 65 20 61 64 64 72 65 73 73 65 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 2e 20 4f 6e | ple.addresses.can.be.defined..On |
| e26e0 | 6c 79 20 61 64 64 72 65 73 73 65 73 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 65 20 73 79 | ly.addresses.connected.to.the.sy |
| e2700 | 73 74 65 6d 20 77 69 6c 6c 20 62 65 20 74 72 61 6e 73 6d 69 74 74 65 64 2e 00 44 65 66 69 6e 65 | stem.will.be.transmitted..Define |
| e2720 | 20 61 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 4e 65 74 77 6f 72 6b 20 67 72 6f 75 70 2e 00 44 | .a.IPv4.or.IPv6.Network.group..D |
| e2740 | 65 66 69 6e 65 20 61 20 49 50 76 34 20 6f 72 20 61 20 49 50 76 36 20 61 64 64 72 65 73 73 20 67 | efine.a.IPv4.or.a.IPv6.address.g |
| e2760 | 72 6f 75 70 00 44 65 66 69 6e 65 20 61 20 5a 6f 6e 65 00 44 65 66 69 6e 65 20 61 20 64 69 73 63 | roup.Define.a.Zone.Define.a.disc |
| e2780 | 72 65 74 65 20 73 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 31 30 30 2e 36 34 | rete.source.IP.address.of.100.64 |
| e27a0 | 2e 30 2e 31 20 66 6f 72 20 53 4e 41 54 20 72 75 6c 65 20 32 30 00 44 65 66 69 6e 65 20 61 20 64 | .0.1.for.SNAT.rule.20.Define.a.d |
| e27c0 | 6f 6d 61 69 6e 20 67 72 6f 75 70 2e 00 44 65 66 69 6e 65 20 61 20 6d 61 63 20 67 72 6f 75 70 2e | omain.group..Define.a.mac.group. |
| e27e0 | 00 44 65 66 69 6e 65 20 61 20 70 6f 72 74 20 67 72 6f 75 70 2e 20 41 20 70 6f 72 74 20 6e 61 6d | .Define.a.port.group..A.port.nam |
| e2800 | 65 20 63 61 6e 20 62 65 20 61 6e 79 20 6e 61 6d 65 20 64 65 66 69 6e 65 64 20 69 6e 20 2f 65 74 | e.can.be.any.name.defined.in./et |
| e2820 | 63 2f 73 65 72 76 69 63 65 73 2e 20 65 2e 67 2e 3a 20 68 74 74 70 00 44 65 66 69 6e 65 20 61 6c | c/services..e.g.:.http.Define.al |
| e2840 | 6c 6f 77 65 64 20 63 69 70 68 65 72 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 53 53 48 20 63 | lowed.ciphers.used.for.the.SSH.c |
| e2860 | 6f 6e 6e 65 63 74 69 6f 6e 2e 20 41 20 6e 75 6d 62 65 72 20 6f 66 20 61 6c 6c 6f 77 65 64 20 63 | onnection..A.number.of.allowed.c |
| e2880 | 69 70 68 65 72 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 2c 20 75 73 65 20 6d 75 6c | iphers.can.be.specified,.use.mul |
| e28a0 | 74 69 70 6c 65 20 6f 63 63 75 72 72 65 6e 63 65 73 20 74 6f 20 61 6c 6c 6f 77 20 6d 75 6c 74 69 | tiple.occurrences.to.allow.multi |
| e28c0 | 70 6c 65 20 63 69 70 68 65 72 73 2e 00 44 65 66 69 6e 65 20 61 6e 20 69 6e 74 65 72 66 61 63 65 | ple.ciphers..Define.an.interface |
| e28e0 | 20 67 72 6f 75 70 2e 20 57 69 6c 64 63 61 72 64 20 61 72 65 20 61 63 63 65 70 74 65 64 20 74 6f | .group..Wildcard.are.accepted.to |
| e2900 | 6f 2e 00 44 65 66 69 6e 65 20 62 65 68 61 76 69 6f 72 20 66 6f 72 20 67 72 61 74 75 69 74 6f 75 | o..Define.behavior.for.gratuitou |
| e2920 | 73 20 41 52 50 20 66 72 61 6d 65 73 20 77 68 6f 27 73 20 49 50 20 69 73 20 6e 6f 74 20 61 6c 72 | s.ARP.frames.who's.IP.is.not.alr |
| e2940 | 65 61 64 79 20 70 72 65 73 65 6e 74 20 69 6e 20 74 68 65 20 41 52 50 20 74 61 62 6c 65 2e 20 49 | eady.present.in.the.ARP.table..I |
| e2960 | 66 20 63 6f 6e 66 69 67 75 72 65 64 20 63 72 65 61 74 65 20 6e 65 77 20 65 6e 74 72 69 65 73 20 | f.configured.create.new.entries. |
| e2980 | 69 6e 20 74 68 65 20 41 52 50 20 74 61 62 6c 65 2e 00 44 65 66 69 6e 65 20 62 65 68 61 76 69 6f | in.the.ARP.table..Define.behavio |
| e29a0 | 72 20 66 6f 72 20 67 72 61 74 75 69 74 6f 75 73 20 41 52 50 20 66 72 61 6d 65 73 20 77 68 6f 73 | r.for.gratuitous.ARP.frames.whos |
| e29c0 | 65 20 49 50 20 69 73 20 6e 6f 74 20 61 6c 72 65 61 64 79 20 70 72 65 73 65 6e 74 20 69 6e 20 74 | e.IP.is.not.already.present.in.t |
| e29e0 | 68 65 20 41 52 50 20 74 61 62 6c 65 2e 20 49 66 20 63 6f 6e 66 69 67 75 72 65 64 20 63 72 65 61 | he.ARP.table..If.configured.crea |
| e2a00 | 74 65 20 6e 65 77 20 65 6e 74 72 69 65 73 20 69 6e 20 74 68 65 20 41 52 50 20 74 61 62 6c 65 2e | te.new.entries.in.the.ARP.table. |
| e2a20 | 00 44 65 66 69 6e 65 20 64 69 66 66 65 72 65 6e 74 20 6d 6f 64 65 73 20 66 6f 72 20 49 50 20 64 | .Define.different.modes.for.IP.d |
| e2a40 | 69 72 65 63 74 65 64 20 62 72 6f 61 64 63 61 73 74 20 66 6f 72 77 61 72 64 69 6e 67 20 61 73 20 | irected.broadcast.forwarding.as. |
| e2a60 | 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 31 38 31 32 60 20 61 6e 64 20 3a 72 66 | described.in.:rfc:`1812`.and.:rf |
| e2a80 | 63 3a 60 32 36 34 34 60 2e 00 44 65 66 69 6e 65 20 64 69 66 66 65 72 65 6e 74 20 6d 6f 64 65 73 | c:`2644`..Define.different.modes |
| e2aa0 | 20 66 6f 72 20 73 65 6e 64 69 6e 67 20 72 65 70 6c 69 65 73 20 69 6e 20 72 65 73 70 6f 6e 73 65 | .for.sending.replies.in.response |
| e2ac0 | 20 74 6f 20 72 65 63 65 69 76 65 64 20 41 52 50 20 72 65 71 75 65 73 74 73 20 74 68 61 74 20 72 | .to.received.ARP.requests.that.r |
| e2ae0 | 65 73 6f 6c 76 65 20 6c 6f 63 61 6c 20 74 61 72 67 65 74 20 49 50 20 61 64 64 72 65 73 73 65 73 | esolve.local.target.IP.addresses |
| e2b00 | 3a 00 44 65 66 69 6e 65 20 64 69 66 66 65 72 65 6e 74 20 72 65 73 74 72 69 63 74 69 6f 6e 20 6c | :.Define.different.restriction.l |
| e2b20 | 65 76 65 6c 73 20 66 6f 72 20 61 6e 6e 6f 75 6e 63 69 6e 67 20 74 68 65 20 6c 6f 63 61 6c 20 73 | evels.for.announcing.the.local.s |
| e2b40 | 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 49 50 20 70 61 63 6b 65 74 73 | ource.IP.address.from.IP.packets |
| e2b60 | 20 69 6e 20 41 52 50 20 72 65 71 75 65 73 74 73 20 73 65 6e 74 20 6f 6e 20 69 6e 74 65 72 66 61 | .in.ARP.requests.sent.on.interfa |
| e2b80 | 63 65 2e 00 44 65 66 69 6e 65 20 68 6f 77 20 74 6f 20 68 61 6e 64 6c 65 20 6c 65 61 66 2d 73 65 | ce..Define.how.to.handle.leaf-se |
| e2ba0 | 6f 6e 64 73 2e 00 44 65 66 69 6e 65 20 68 6f 77 20 74 6f 20 68 61 6e 64 6c 65 20 6c 65 61 70 2d | onds..Define.how.to.handle.leap- |
| e2bc0 | 73 65 63 6f 6e 64 73 2e 00 44 65 66 69 6e 65 20 69 6e 74 65 72 66 61 63 65 73 20 74 6f 20 62 65 | seconds..Define.interfaces.to.be |
| e2be0 | 20 75 73 65 64 20 69 6e 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 2e 00 44 65 66 69 6e 65 20 6c | .used.in.the.flowtable..Define.l |
| e2c00 | 65 6e 67 68 74 20 6f 66 20 65 78 63 6c 75 64 65 20 70 72 65 66 69 78 20 69 6e 20 60 3c 70 64 2d | enght.of.exclude.prefix.in.`<pd- |
| e2c20 | 70 72 65 66 69 78 3e 60 2e 00 44 65 66 69 6e 65 20 6c 65 6e 67 74 68 20 6f 66 20 70 61 63 6b 65 | prefix>`..Define.length.of.packe |
| e2c40 | 74 20 70 61 79 6c 6f 61 64 20 74 6f 20 69 6e 63 6c 75 64 65 20 69 6e 20 6e 65 74 6c 69 6e 6b 20 | t.payload.to.include.in.netlink. |
| e2c60 | 6d 65 73 73 61 67 65 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 6c 65 | message..Only.applicable.if.rule |
| e2c80 | 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 20 61 6e 64 20 6c 6f 67 20 67 72 6f 75 70 20 69 73 20 | .log.is.enable.and.log.group.is. |
| e2ca0 | 64 65 66 69 6e 65 64 2e 00 44 65 66 69 6e 65 20 6c 65 6e 67 74 68 20 6f 66 20 70 61 63 6b 65 74 | defined..Define.length.of.packet |
| e2cc0 | 20 70 61 79 6c 6f 61 64 20 74 6f 20 69 6e 63 6c 75 64 65 20 69 6e 20 6e 65 74 6c 69 6e 6b 20 6d | .payload.to.include.in.netlink.m |
| e2ce0 | 65 73 73 61 67 65 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 6c 65 20 | essage..Only.applicable.if.rule. |
| e2d00 | 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 64 20 61 6e 64 20 74 68 65 20 6c 6f 67 20 67 72 6f 75 70 | log.is.enabled.and.the.log.group |
| e2d20 | 20 69 73 20 64 65 66 69 6e 65 64 2e 00 44 65 66 69 6e 65 20 6c 6f 67 20 67 72 6f 75 70 20 74 6f | .is.defined..Define.log.group.to |
| e2d40 | 20 73 65 6e 64 20 6d 65 73 73 61 67 65 20 74 6f 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c | .send.message.to..Only.applicabl |
| e2d60 | 65 20 69 66 20 72 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 2e 00 44 65 66 69 6e 65 20 | e.if.rule.log.is.enable..Define. |
| e2d80 | 6c 6f 67 2d 6c 65 76 65 6c 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 | log-level..Only.applicable.if.ru |
| e2da0 | 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 2e 00 44 65 66 69 6e 65 20 6c 6f 67 2d 6c 65 76 | le.log.is.enable..Define.log-lev |
| e2dc0 | 65 6c 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 6c 65 20 6c 6f 67 20 | el..Only.applicable.if.rule.log. |
| e2de0 | 69 73 20 65 6e 61 62 6c 65 64 2e 00 44 65 66 69 6e 65 20 6e 75 6d 62 65 72 20 6f 66 20 70 61 63 | is.enabled..Define.number.of.pac |
| e2e00 | 6b 65 74 73 20 74 6f 20 71 75 65 75 65 20 69 6e 73 69 64 65 20 74 68 65 20 6b 65 72 6e 65 6c 20 | kets.to.queue.inside.the.kernel. |
| e2e20 | 62 65 66 6f 72 65 20 73 65 6e 64 69 6e 67 20 74 68 65 6d 20 74 6f 20 75 73 65 72 73 70 61 63 65 | before.sending.them.to.userspace |
| e2e40 | 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 6c 65 20 6c 6f 67 20 69 73 | ..Only.applicable.if.rule.log.is |
| e2e60 | 20 65 6e 61 62 6c 65 20 61 6e 64 20 6c 6f 67 20 67 72 6f 75 70 20 69 73 20 64 65 66 69 6e 65 64 | .enable.and.log.group.is.defined |
| e2e80 | 2e 00 44 65 66 69 6e 65 20 6f 70 65 72 61 74 69 6f 6e 20 6d 6f 64 65 20 6f 66 20 48 69 67 68 20 | ..Define.operation.mode.of.High. |
| e2ea0 | 41 76 61 69 6c 61 62 69 6c 69 74 79 20 66 65 61 74 75 72 65 2e 20 44 65 66 61 75 6c 74 20 76 61 | Availability.feature..Default.va |
| e2ec0 | 6c 75 65 20 69 66 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 20 | lue.if.command.is.not.specified. |
| e2ee0 | 69 73 20 60 61 63 74 69 76 65 2d 61 63 74 69 76 65 60 00 44 65 66 69 6e 65 20 74 68 65 20 6c 65 | is.`active-active`.Define.the.le |
| e2f00 | 6e 67 74 68 20 6f 66 20 70 61 63 6b 65 74 20 70 61 79 6c 6f 61 64 20 74 6f 20 69 6e 63 6c 75 64 | ngth.of.packet.payload.to.includ |
| e2f20 | 65 20 69 6e 20 61 20 6e 65 74 6c 69 6e 6b 20 6d 65 73 73 61 67 65 2e 20 4f 6e 6c 79 20 61 70 70 | e.in.a.netlink.message..Only.app |
| e2f40 | 6c 69 63 61 62 6c 65 20 69 66 20 72 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 64 20 61 | licable.if.rule.log.is.enabled.a |
| e2f60 | 6e 64 20 6c 6f 67 20 67 72 6f 75 70 20 69 73 20 64 65 66 69 6e 65 64 2e 00 44 65 66 69 6e 65 20 | nd.log.group.is.defined..Define. |
| e2f80 | 74 68 65 20 6c 6f 67 20 67 72 6f 75 70 20 74 6f 20 73 65 6e 64 20 6d 65 73 73 61 67 65 73 20 74 | the.log.group.to.send.messages.t |
| e2fa0 | 6f 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 6c 65 20 6c 6f 67 20 69 | o..Only.applicable.if.rule.log.i |
| e2fc0 | 73 20 65 6e 61 62 6c 65 64 2e 00 44 65 66 69 6e 65 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 | s.enabled..Define.the.number.of. |
| e2fe0 | 70 61 63 6b 65 74 73 20 74 6f 20 71 75 65 75 65 20 69 6e 73 69 64 65 20 74 68 65 20 6b 65 72 6e | packets.to.queue.inside.the.kern |
| e3000 | 65 6c 20 62 65 66 6f 72 65 20 73 65 6e 64 69 6e 67 20 74 68 65 6d 20 74 6f 20 75 73 65 72 73 70 | el.before.sending.them.to.usersp |
| e3020 | 61 63 65 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 6c 65 20 6c 6f 67 | ace..Only.applicable.if.rule.log |
| e3040 | 20 69 73 20 65 6e 61 62 6c 65 64 20 61 6e 64 20 6c 6f 67 20 67 72 6f 75 70 20 69 73 20 64 65 66 | .is.enabled.and.log.group.is.def |
| e3060 | 69 6e 65 64 2e 00 44 65 66 69 6e 65 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 | ined..Define.the.number.of.packe |
| e3080 | 74 73 20 74 6f 20 71 75 65 75 65 20 69 6e 73 69 64 65 20 74 68 65 20 6b 65 72 6e 65 6c 20 62 65 | ts.to.queue.inside.the.kernel.be |
| e30a0 | 66 6f 72 65 20 73 65 6e 64 69 6e 67 20 74 68 65 6d 20 74 6f 20 75 73 65 72 73 70 61 63 65 2e 20 | fore.sending.them.to.userspace.. |
| e30c0 | 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 6c 65 20 6c 6f 67 20 69 73 20 65 | Only.applicable.if.rule.log.is.e |
| e30e0 | 6e 61 62 6c 65 64 20 61 6e 64 20 74 68 65 20 6c 6f 67 20 67 72 6f 75 70 20 69 73 20 64 65 66 69 | nabled.and.the.log.group.is.defi |
| e3100 | 6e 65 64 2e 00 44 65 66 69 6e 65 20 74 68 65 20 74 69 6d 65 20 69 6e 74 65 72 76 61 6c 20 74 6f | ned..Define.the.time.interval.to |
| e3120 | 20 75 70 64 61 74 65 20 74 68 65 20 6c 6f 63 61 6c 20 63 61 63 68 65 00 44 65 66 69 6e 65 20 74 | .update.the.local.cache.Define.t |
| e3140 | 68 65 20 7a 6f 6e 65 20 61 73 20 61 20 6c 6f 63 61 6c 20 7a 6f 6e 65 2e 20 41 20 6c 6f 63 61 6c | he.zone.as.a.local.zone..A.local |
| e3160 | 20 7a 6f 6e 65 20 68 61 73 20 6e 6f 20 69 6e 74 65 72 66 61 63 65 73 20 61 6e 64 20 77 69 6c 6c | .zone.has.no.interfaces.and.will |
| e3180 | 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 | .be.applied.to.the.router.itself |
| e31a0 | 2e 00 44 65 66 69 6e 65 20 74 79 70 65 20 6f 66 20 6f 66 66 6c 6f 61 64 20 74 6f 20 62 65 20 75 | ..Define.type.of.offload.to.be.u |
| e31c0 | 73 65 64 20 62 79 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 3a 20 60 60 68 61 72 64 77 61 72 65 | sed.by.the.flowtable:.``hardware |
| e31e0 | 60 60 20 6f 72 20 60 60 73 6f 66 74 77 61 72 65 60 60 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 | ``.or.``software``..By.default,. |
| e3200 | 60 60 73 6f 66 74 77 61 72 65 60 60 20 6f 66 66 6c 6f 61 64 20 69 73 20 75 73 65 64 2e 00 44 65 | ``software``.offload.is.used..De |
| e3220 | 66 69 6e 65 20 75 73 65 64 20 65 74 68 65 72 74 79 70 65 20 6f 66 20 62 72 69 64 67 65 20 69 6e | fine.used.ethertype.of.bridge.in |
| e3240 | 74 65 72 66 61 63 65 2e 00 44 65 66 69 6e 65 64 20 74 68 65 20 49 50 76 34 2c 20 49 50 76 36 20 | terface..Defined.the.IPv4,.IPv6. |
| e3260 | 6f 72 20 46 51 44 4e 20 61 6e 64 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 6f 66 20 74 68 65 20 63 | or.FQDN.and.port.number.of.the.c |
| e3280 | 61 63 68 69 6e 67 20 52 50 4b 49 20 63 61 63 68 69 6e 67 20 69 6e 73 74 61 6e 63 65 20 77 68 69 | aching.RPKI.caching.instance.whi |
| e32a0 | 63 68 20 69 73 20 75 73 65 64 2e 00 44 65 66 69 6e 65 73 20 61 6c 74 65 72 6e 61 74 65 20 73 6f | ch.is.used..Defines.alternate.so |
| e32c0 | 75 72 63 65 73 20 66 6f 72 20 6d 75 6c 74 69 63 61 73 74 69 6e 67 20 61 6e 64 20 49 47 4d 50 20 | urces.for.multicasting.and.IGMP. |
| e32e0 | 64 61 74 61 2e 20 54 68 65 20 6e 65 74 77 6f 72 6b 20 61 64 64 72 65 73 73 20 6d 75 73 74 20 62 | data..The.network.address.must.b |
| e3300 | 65 20 6f 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 66 6f 72 6d 61 74 20 27 61 2e 62 2e 63 | e.on.the.following.format.'a.b.c |
| e3320 | 2e 64 2f 6e 27 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 74 68 65 20 72 6f 75 74 65 72 20 77 69 | .d/n'..By.default,.the.router.wi |
| e3340 | 6c 6c 20 61 63 63 65 70 74 20 64 61 74 61 20 66 72 6f 6d 20 73 6f 75 72 63 65 73 20 6f 6e 20 74 | ll.accept.data.from.sources.on.t |
| e3360 | 68 65 20 73 61 6d 65 20 6e 65 74 77 6f 72 6b 20 61 73 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e | he.same.network.as.configured.on |
| e3380 | 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e 20 49 66 20 74 68 65 20 6d 75 6c 74 69 63 61 73 74 20 | .an.interface..If.the.multicast. |
| e33a0 | 73 6f 75 72 63 65 20 6c 69 65 73 20 6f 6e 20 61 20 72 65 6d 6f 74 65 20 6e 65 74 77 6f 72 6b 2c | source.lies.on.a.remote.network, |
| e33c0 | 20 6f 6e 65 20 6d 75 73 74 20 64 65 66 69 6e 65 20 66 72 6f 6d 20 77 68 65 72 65 20 74 72 61 66 | .one.must.define.from.where.traf |
| e33e0 | 66 69 63 20 73 68 6f 75 6c 64 20 62 65 20 61 63 63 65 70 74 65 64 2e 00 44 65 66 69 6e 65 73 20 | fic.should.be.accepted..Defines. |
| e3400 | 61 6e 20 6f 66 66 2d 4e 42 4d 41 20 6e 65 74 77 6f 72 6b 20 70 72 65 66 69 78 20 66 6f 72 20 77 | an.off-NBMA.network.prefix.for.w |
| e3420 | 68 69 63 68 20 74 68 65 20 47 52 45 20 69 6e 74 65 72 66 61 63 65 20 77 69 6c 6c 20 61 63 74 20 | hich.the.GRE.interface.will.act. |
| e3440 | 61 73 20 61 20 67 61 74 65 77 61 79 2e 20 54 68 69 73 20 61 6e 20 61 6c 74 65 72 6e 61 74 69 76 | as.a.gateway..This.an.alternativ |
| e3460 | 65 20 74 6f 20 64 65 66 69 6e 69 6e 67 20 6c 6f 63 61 6c 20 69 6e 74 65 72 66 61 63 65 73 20 77 | e.to.defining.local.interfaces.w |
| e3480 | 69 74 68 20 73 68 6f 72 74 63 75 74 2d 64 65 73 74 69 6e 61 74 69 6f 6e 20 66 6c 61 67 2e 00 44 | ith.shortcut-destination.flag..D |
| e34a0 | 65 66 69 6e 65 73 20 62 6c 61 63 6b 68 6f 6c 65 20 64 69 73 74 61 6e 63 65 20 66 6f 72 20 74 68 | efines.blackhole.distance.for.th |
| e34c0 | 69 73 20 72 6f 75 74 65 2c 20 72 6f 75 74 65 73 20 77 69 74 68 20 73 6d 61 6c 6c 65 72 20 61 64 | is.route,.routes.with.smaller.ad |
| e34e0 | 6d 69 6e 69 73 74 72 61 74 69 76 65 20 64 69 73 74 61 6e 63 65 20 61 72 65 20 65 6c 65 63 74 65 | ministrative.distance.are.electe |
| e3500 | 64 20 70 72 69 6f 72 20 74 6f 20 74 68 6f 73 65 20 77 69 74 68 20 61 20 68 69 67 68 65 72 20 64 | d.prior.to.those.with.a.higher.d |
| e3520 | 69 73 74 61 6e 63 65 2e 00 44 65 66 69 6e 65 73 20 6d 69 6e 69 6d 75 6d 20 61 63 63 65 70 74 61 | istance..Defines.minimum.accepta |
| e3540 | 62 6c 65 20 4d 54 55 2e 20 49 66 20 63 6c 69 65 6e 74 20 77 69 6c 6c 20 74 72 79 20 74 6f 20 6e | ble.MTU..If.client.will.try.to.n |
| e3560 | 65 67 6f 74 69 61 74 65 20 6c 65 73 73 20 74 68 65 6e 20 73 70 65 63 69 66 69 65 64 20 4d 54 55 | egotiate.less.then.specified.MTU |
| e3580 | 20 74 68 65 6e 20 69 74 20 77 69 6c 6c 20 62 65 20 4e 41 4b 65 64 20 6f 72 20 64 69 73 63 6f 6e | .then.it.will.be.NAKed.or.discon |
| e35a0 | 6e 65 63 74 65 64 20 69 66 20 72 65 6a 65 63 74 73 20 67 72 65 61 74 65 72 20 4d 54 55 2e 20 44 | nected.if.rejects.greater.MTU..D |
| e35c0 | 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 2a 2a 31 30 30 2a 2a 2e 00 44 65 66 69 6e 65 73 | efault.value.is.**100**..Defines |
| e35e0 | 20 6e 65 78 74 2d 68 6f 70 20 64 69 73 74 61 6e 63 65 20 66 6f 72 20 74 68 69 73 20 72 6f 75 74 | .next-hop.distance.for.this.rout |
| e3600 | 65 2c 20 72 6f 75 74 65 73 20 77 69 74 68 20 73 6d 61 6c 6c 65 72 20 61 64 6d 69 6e 69 73 74 72 | e,.routes.with.smaller.administr |
| e3620 | 61 74 69 76 65 20 64 69 73 74 61 6e 63 65 20 61 72 65 20 65 6c 65 63 74 65 64 20 70 72 69 6f 72 | ative.distance.are.elected.prior |
| e3640 | 20 74 6f 20 74 68 6f 73 65 20 77 69 74 68 20 61 20 68 69 67 68 65 72 20 64 69 73 74 61 6e 63 65 | .to.those.with.a.higher.distance |
| e3660 | 2e 00 44 65 66 69 6e 65 73 20 70 72 65 66 65 72 72 65 64 20 4d 52 55 2e 20 42 79 20 64 65 66 61 | ..Defines.preferred.MRU..By.defa |
| e3680 | 75 6c 74 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2e 00 44 65 66 69 6e 65 73 20 70 72 6f 74 | ult.is.not.defined..Defines.prot |
| e36a0 | 6f 63 6f 6c 73 20 66 6f 72 20 63 68 65 63 6b 69 6e 67 20 41 52 50 2c 20 49 43 4d 50 2c 20 54 43 | ocols.for.checking.ARP,.ICMP,.TC |
| e36c0 | 50 00 44 65 66 69 6e 65 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 60 3c 6e 75 6d 62 65 72 3e 60 | P.Defines.the.maximum.`<number>` |
| e36e0 | 20 6f 66 20 75 6e 61 6e 73 77 65 72 65 64 20 65 63 68 6f 20 72 65 71 75 65 73 74 73 2e 20 55 70 | .of.unanswered.echo.requests..Up |
| e3700 | 6f 6e 20 72 65 61 63 68 69 6e 67 20 74 68 65 20 76 61 6c 75 65 20 60 3c 6e 75 6d 62 65 72 3e 60 | on.reaching.the.value.`<number>` |
| e3720 | 2c 20 74 68 65 20 73 65 73 73 69 6f 6e 20 77 69 6c 6c 20 62 65 20 72 65 73 65 74 2e 00 44 65 66 | ,.the.session.will.be.reset..Def |
| e3740 | 69 6e 65 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 60 3c 6e 75 6d 62 65 72 3e 60 20 6f 66 20 75 | ines.the.maximum.`<number>`.of.u |
| e3760 | 6e 61 6e 73 77 65 72 65 64 20 65 63 68 6f 20 72 65 71 75 65 73 74 73 2e 20 55 70 6f 6e 20 72 65 | nanswered.echo.requests..Upon.re |
| e3780 | 61 63 68 69 6e 67 20 74 68 65 20 76 61 6c 75 65 20 60 3c 6e 75 6d 62 65 72 3e 60 2c 20 74 68 65 | aching.the.value.`<number>`,.the |
| e37a0 | 20 73 65 73 73 69 6f 6e 20 77 69 6c 6c 20 62 65 20 72 65 73 65 74 2e 20 44 65 66 61 75 6c 74 20 | .session.will.be.reset..Default. |
| e37c0 | 76 61 6c 75 65 20 69 73 20 2a 2a 33 2a 2a 2e 00 44 65 66 69 6e 65 73 20 74 68 65 20 6d 69 6e 69 | value.is.**3**..Defines.the.mini |
| e37e0 | 6d 75 6d 20 61 63 63 65 70 74 61 62 6c 65 20 4d 54 55 2e 20 49 66 20 61 20 63 6c 69 65 6e 74 20 | mum.acceptable.MTU..If.a.client. |
| e3800 | 74 72 69 65 73 20 74 6f 20 6e 65 67 6f 74 69 61 74 65 20 61 6e 20 4d 54 55 20 6c 6f 77 65 72 20 | tries.to.negotiate.an.MTU.lower. |
| e3820 | 74 68 61 6e 20 74 68 69 73 20 69 74 20 77 69 6c 6c 20 62 65 20 4e 41 4b 65 64 2c 20 61 6e 64 20 | than.this.it.will.be.NAKed,.and. |
| e3840 | 64 69 73 63 6f 6e 6e 65 63 74 65 64 20 69 66 20 69 74 20 72 65 6a 65 63 74 73 20 61 20 67 72 65 | disconnected.if.it.rejects.a.gre |
| e3860 | 61 74 65 72 20 4d 54 55 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 2a 2a 31 30 30 | ater.MTU..Default.value.is.**100 |
| e3880 | 2a 2a 2e 00 44 65 66 69 6e 65 73 20 74 68 65 20 72 6f 75 6e 64 2d 74 72 69 70 20 74 69 6d 65 20 | **..Defines.the.round-trip.time. |
| e38a0 | 75 73 65 64 20 66 6f 72 20 61 63 74 69 76 65 20 71 75 65 75 65 20 6d 61 6e 61 67 65 6d 65 6e 74 | used.for.active.queue.management |
| e38c0 | 20 28 41 51 4d 29 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 64 65 66 61 | .(AQM).in.milliseconds..The.defa |
| e38e0 | 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 30 30 2e 00 44 65 66 69 6e 65 73 20 74 68 65 20 73 70 | ult.value.is.100..Defines.the.sp |
| e3900 | 65 63 69 66 69 65 64 20 64 65 76 69 63 65 20 61 73 20 61 20 73 79 73 74 65 6d 20 63 6f 6e 73 6f | ecified.device.as.a.system.conso |
| e3920 | 6c 65 2e 20 41 76 61 69 6c 61 62 6c 65 20 63 6f 6e 73 6f 6c 65 20 64 65 76 69 63 65 73 20 63 61 | le..Available.console.devices.ca |
| e3940 | 6e 20 62 65 20 28 73 65 65 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 68 65 6c 70 65 72 29 3a 00 44 65 | n.be.(see.completion.helper):.De |
| e3960 | 66 69 6e 69 6e 67 20 44 79 6e 61 6d 69 63 20 41 64 64 72 65 73 73 20 47 72 6f 75 70 73 00 44 65 | fining.Dynamic.Address.Groups.De |
| e3980 | 66 69 6e 69 6e 67 20 50 65 65 72 73 00 44 65 6c 65 67 61 74 65 20 70 72 65 66 69 78 65 73 20 66 | fining.Peers.Delegate.prefixes.f |
| e39a0 | 72 6f 6d 20 60 3c 70 64 2d 70 72 65 66 69 78 3e 60 20 74 6f 20 63 6c 69 65 6e 74 73 20 69 6e 20 | rom.`<pd-prefix>`.to.clients.in. |
| e39c0 | 73 75 62 6e 65 74 20 60 3c 70 72 65 66 69 78 3e 60 2e 20 52 61 6e 67 65 20 69 73 20 64 65 66 69 | subnet.`<prefix>`..Range.is.defi |
| e39e0 | 6e 65 64 20 62 79 20 60 3c 6c 65 6e 67 68 74 3e 60 20 69 6e 20 62 69 74 73 2c 20 33 32 20 74 6f | ned.by.`<lenght>`.in.bits,.32.to |
| e3a00 | 20 36 34 2e 00 44 65 6c 65 67 61 74 65 20 70 72 65 66 69 78 65 73 20 66 72 6f 6d 20 74 68 65 20 | .64..Delegate.prefixes.from.the. |
| e3a20 | 72 61 6e 67 65 20 69 6e 64 69 63 61 74 65 64 20 62 79 20 74 68 65 20 73 74 61 72 74 20 61 6e 64 | range.indicated.by.the.start.and |
| e3a40 | 20 73 74 6f 70 20 71 75 61 6c 69 66 69 65 72 2e 00 44 65 6c 65 74 65 20 42 47 50 20 63 6f 6d 6d | .stop.qualifier..Delete.BGP.comm |
| e3a60 | 75 6e 69 74 69 65 73 20 6d 61 74 63 68 69 6e 67 20 74 68 65 20 63 6f 6d 6d 75 6e 69 74 79 2d 6c | unities.matching.the.community-l |
| e3a80 | 69 73 74 2e 00 44 65 6c 65 74 65 20 42 47 50 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 6d 61 74 63 | ist..Delete.BGP.communities.matc |
| e3aa0 | 68 69 6e 67 20 74 68 65 20 6c 61 72 67 65 2d 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 2e 00 44 | hing.the.large-community-list..D |
| e3ac0 | 65 6c 65 74 65 20 4c 6f 67 73 00 44 65 6c 65 74 65 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 63 | elete.Logs.Delete.a.particular.c |
| e3ae0 | 6f 6e 74 61 69 6e 65 72 20 69 6d 61 67 65 20 62 61 73 65 64 20 6f 6e 20 69 74 27 73 20 69 6d 61 | ontainer.image.based.on.it's.ima |
| e3b00 | 67 65 20 49 44 2e 20 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 64 65 6c 65 74 65 20 61 6c 6c 20 63 | ge.ID..You.can.also.delete.all.c |
| e3b20 | 6f 6e 74 61 69 6e 65 72 20 69 6d 61 67 65 73 20 61 74 20 6f 6e 63 65 2e 00 44 65 6c 65 74 65 20 | ontainer.images.at.once..Delete. |
| e3b40 | 61 6c 6c 20 42 47 50 20 63 6f 6d 6d 75 6e 69 74 69 65 73 00 44 65 6c 65 74 65 20 61 6c 6c 20 42 | all.BGP.communities.Delete.all.B |
| e3b60 | 47 50 20 6c 61 72 67 65 2d 63 6f 6d 6d 75 6e 69 74 69 65 73 00 44 65 6c 65 74 65 20 64 65 66 61 | GP.large-communities.Delete.defa |
| e3b80 | 75 6c 74 20 72 6f 75 74 65 20 66 72 6f 6d 20 74 68 65 20 73 79 73 74 65 6d 2e 00 44 65 6c 65 74 | ult.route.from.the.system..Delet |
| e3ba0 | 65 73 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 75 73 65 72 2d 64 65 66 69 6e 65 64 20 66 69 | es.the.specified.user-defined.fi |
| e3bc0 | 6c 65 20 3c 74 65 78 74 3e 20 69 6e 20 74 68 65 20 2f 76 61 72 2f 6c 6f 67 2f 75 73 65 72 20 64 | le.<text>.in.the./var/log/user.d |
| e3be0 | 69 72 65 63 74 6f 72 79 00 44 65 70 65 6e 64 69 6e 67 20 6f 6e 20 74 68 65 20 6c 6f 63 61 74 69 | irectory.Depending.on.the.locati |
| e3c00 | 6f 6e 2c 20 6e 6f 74 20 61 6c 6c 20 6f 66 20 74 68 65 73 65 20 63 68 61 6e 6e 65 6c 73 20 6d 61 | on,.not.all.of.these.channels.ma |
| e3c20 | 79 20 62 65 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 75 73 65 21 00 44 65 73 63 72 69 70 74 | y.be.available.for.use!.Descript |
| e3c40 | 69 6f 6e 00 44 65 73 70 69 74 65 20 74 68 65 20 44 72 6f 70 2d 54 61 69 6c 20 70 6f 6c 69 63 79 | ion.Despite.the.Drop-Tail.policy |
| e3c60 | 20 64 6f 65 73 20 6e 6f 74 20 73 6c 6f 77 20 64 6f 77 6e 20 70 61 63 6b 65 74 73 2c 20 69 66 20 | .does.not.slow.down.packets,.if. |
| e3c80 | 6d 61 6e 79 20 70 61 63 6b 65 74 73 20 61 72 65 20 74 6f 20 62 65 20 73 65 6e 74 2c 20 74 68 65 | many.packets.are.to.be.sent,.the |
| e3ca0 | 79 20 63 6f 75 6c 64 20 67 65 74 20 64 72 6f 70 70 65 64 20 77 68 65 6e 20 74 72 79 69 6e 67 20 | y.could.get.dropped.when.trying. |
| e3cc0 | 74 6f 20 67 65 74 20 65 6e 71 75 65 75 65 64 20 61 74 20 74 68 65 20 74 61 69 6c 2e 20 54 68 69 | to.get.enqueued.at.the.tail..Thi |
| e3ce0 | 73 20 63 61 6e 20 68 61 70 70 65 6e 20 69 66 20 74 68 65 20 71 75 65 75 65 20 68 61 73 20 73 74 | s.can.happen.if.the.queue.has.st |
| e3d00 | 69 6c 6c 20 6e 6f 74 20 62 65 65 6e 20 61 62 6c 65 20 74 6f 20 72 65 6c 65 61 73 65 20 65 6e 6f | ill.not.been.able.to.release.eno |
| e3d20 | 75 67 68 20 70 61 63 6b 65 74 73 20 66 72 6f 6d 20 69 74 73 20 68 65 61 64 2e 00 44 65 73 70 69 | ugh.packets.from.its.head..Despi |
| e3d40 | 74 65 20 74 68 65 20 66 61 63 74 20 74 68 61 74 20 41 44 20 69 73 20 61 20 73 75 70 65 72 73 65 | te.the.fact.that.AD.is.a.superse |
| e3d60 | 74 20 6f 66 20 4c 44 41 50 00 44 65 73 74 69 6e 61 74 69 6f 6e 20 41 64 64 72 65 73 73 00 44 65 | t.of.LDAP.Destination.Address.De |
| e3d80 | 73 74 69 6e 61 74 69 6f 6e 20 4e 41 54 00 44 65 73 74 69 6e 61 74 69 6f 6e 20 50 72 65 66 69 78 | stination.NAT.Destination.Prefix |
| e3da0 | 00 44 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 22 63 69 73 | .Detailed.information.about."cis |
| e3dc0 | 63 6f 22 20 61 6e 64 20 22 69 62 6d 22 20 6d 6f 64 65 6c 73 20 64 69 66 66 65 72 65 6e 63 65 73 | co".and."ibm".models.differences |
| e3de0 | 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 3a 72 66 63 3a 60 33 35 30 39 60 2e 20 41 20 | .can.be.found.in.:rfc:`3509`..A. |
| e3e00 | 22 73 68 6f 72 74 63 75 74 22 20 6d 6f 64 65 6c 20 61 6c 6c 6f 77 73 20 41 42 52 20 74 6f 20 63 | "shortcut".model.allows.ABR.to.c |
| e3e20 | 72 65 61 74 65 20 72 6f 75 74 65 73 20 62 65 74 77 65 65 6e 20 61 72 65 61 73 20 62 61 73 65 64 | reate.routes.between.areas.based |
| e3e40 | 20 6f 6e 20 74 68 65 20 74 6f 70 6f 6c 6f 67 79 20 6f 66 20 74 68 65 20 61 72 65 61 73 20 63 6f | .on.the.topology.of.the.areas.co |
| e3e60 | 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 69 73 20 72 6f 75 74 65 72 20 62 75 74 20 6e 6f 74 20 75 | nnected.to.this.router.but.not.u |
| e3e80 | 73 69 6e 67 20 61 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 69 6e 20 63 61 73 65 20 69 66 20 | sing.a.backbone.area.in.case.if. |
| e3ea0 | 6e 6f 6e 2d 62 61 63 6b 62 6f 6e 65 20 72 6f 75 74 65 20 77 69 6c 6c 20 62 65 20 63 68 65 61 70 | non-backbone.route.will.be.cheap |
| e3ec0 | 65 72 2e 20 46 6f 72 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 22 | er..For.more.information.about." |
| e3ee0 | 73 68 6f 72 74 63 75 74 22 20 6d 6f 64 65 6c 2c 20 73 65 65 20 3a 74 3a 60 6f 73 70 66 2d 73 68 | shortcut".model,.see.:t:`ospf-sh |
| e3f00 | 6f 72 74 63 75 74 2d 61 62 72 2d 30 32 2e 74 78 74 60 00 44 65 74 65 72 6d 69 6e 65 73 20 68 6f | ortcut-abr-02.txt`.Determines.ho |
| e3f20 | 77 20 6f 70 65 6e 6e 68 72 70 20 64 61 65 6d 6f 6e 20 73 68 6f 75 6c 64 20 73 6f 66 74 20 73 77 | w.opennhrp.daemon.should.soft.sw |
| e3f40 | 69 74 63 68 20 74 68 65 20 6d 75 6c 74 69 63 61 73 74 20 74 72 61 66 66 69 63 2e 20 43 75 72 72 | itch.the.multicast.traffic..Curr |
| e3f60 | 65 6e 74 6c 79 2c 20 6d 75 6c 74 69 63 61 73 74 20 74 72 61 66 66 69 63 20 69 73 20 63 61 70 74 | ently,.multicast.traffic.is.capt |
| e3f80 | 75 72 65 64 20 62 79 20 6f 70 65 6e 6e 68 72 70 20 64 61 65 6d 6f 6e 20 75 73 69 6e 67 20 61 20 | ured.by.opennhrp.daemon.using.a. |
| e3fa0 | 70 61 63 6b 65 74 20 73 6f 63 6b 65 74 2c 20 61 6e 64 20 72 65 73 65 6e 74 20 62 61 63 6b 20 74 | packet.socket,.and.resent.back.t |
| e3fc0 | 6f 20 70 72 6f 70 65 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 73 2e 20 54 68 69 73 20 6d 65 61 6e | o.proper.destinations..This.mean |
| e3fe0 | 73 20 74 68 61 74 20 6d 75 6c 74 69 63 61 73 74 20 70 61 63 6b 65 74 20 73 65 6e 64 69 6e 67 20 | s.that.multicast.packet.sending. |
| e4000 | 69 73 20 43 50 55 20 69 6e 74 65 6e 73 69 76 65 2e 00 44 65 76 69 63 65 20 69 73 20 69 6e 63 61 | is.CPU.intensive..Device.is.inca |
| e4020 | 70 61 62 6c 65 20 6f 66 20 34 30 20 4d 48 7a 2c 20 64 6f 20 6e 6f 74 20 61 64 76 65 72 74 69 73 | pable.of.40.MHz,.do.not.advertis |
| e4040 | 65 2e 20 54 68 69 73 20 73 65 74 73 20 60 60 5b 34 30 2d 49 4e 54 4f 4c 45 52 41 4e 54 5d 60 60 | e..This.sets.``[40-INTOLERANT]`` |
| e4060 | 00 44 65 76 69 63 65 73 20 65 76 61 6c 75 61 74 69 6e 67 20 77 68 65 74 68 65 72 20 61 6e 20 49 | .Devices.evaluating.whether.an.I |
| e4080 | 50 76 34 20 61 64 64 72 65 73 73 20 69 73 20 70 75 62 6c 69 63 20 6d 75 73 74 20 62 65 20 75 70 | Pv4.address.is.public.must.be.up |
| e40a0 | 64 61 74 65 64 20 74 6f 20 72 65 63 6f 67 6e 69 7a 65 20 74 68 65 20 6e 65 77 20 61 64 64 72 65 | dated.to.recognize.the.new.addre |
| e40c0 | 73 73 20 73 70 61 63 65 2e 20 41 6c 6c 6f 63 61 74 69 6e 67 20 6d 6f 72 65 20 70 72 69 76 61 74 | ss.space..Allocating.more.privat |
| e40e0 | 65 20 49 50 76 34 20 61 64 64 72 65 73 73 20 73 70 61 63 65 20 66 6f 72 20 4e 41 54 20 64 65 76 | e.IPv4.address.space.for.NAT.dev |
| e4100 | 69 63 65 73 20 6d 69 67 68 74 20 70 72 6f 6c 6f 6e 67 20 74 68 65 20 74 72 61 6e 73 69 74 69 6f | ices.might.prolong.the.transitio |
| e4120 | 6e 20 74 6f 20 49 50 76 36 2e 00 44 69 66 66 65 72 65 6e 74 20 4e 41 54 20 54 79 70 65 73 00 44 | n.to.IPv6..Different.NAT.Types.D |
| e4140 | 69 66 66 69 65 2d 48 65 6c 6c 6d 61 6e 20 70 61 72 61 6d 65 74 65 72 73 00 44 69 72 65 63 74 69 | iffie-Hellman.parameters.Directi |
| e4160 | 6f 6e 3a 20 2a 2a 69 6e 2a 2a 20 61 6e 64 20 2a 2a 6f 75 74 2a 2a 2e 20 50 72 6f 74 65 63 74 20 | on:.**in**.and.**out**..Protect. |
| e4180 | 70 75 62 6c 69 63 20 6e 65 74 77 6f 72 6b 20 66 72 6f 6d 20 65 78 74 65 72 6e 61 6c 20 61 74 74 | public.network.from.external.att |
| e41a0 | 61 63 6b 73 2c 20 61 6e 64 20 69 64 65 6e 74 69 66 79 20 69 6e 74 65 72 6e 61 6c 20 61 74 74 61 | acks,.and.identify.internal.atta |
| e41c0 | 63 6b 73 20 74 6f 77 61 72 64 73 20 69 6e 74 65 72 6e 65 74 2e 00 44 69 73 61 62 6c 65 20 28 6c | cks.towards.internet..Disable.(l |
| e41e0 | 6f 63 6b 29 20 61 63 63 6f 75 6e 74 2e 20 55 73 65 72 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 61 | ock).account..User.will.not.be.a |
| e4200 | 62 6c 65 20 74 6f 20 6c 6f 67 20 69 6e 2e 00 44 69 73 61 62 6c 65 20 43 50 55 20 70 6f 77 65 72 | ble.to.log.in..Disable.CPU.power |
| e4220 | 20 73 61 76 69 6e 67 20 6d 65 63 68 61 6e 69 73 6d 73 20 61 6c 73 6f 20 6b 6e 6f 77 6e 20 61 73 | .saving.mechanisms.also.known.as |
| e4240 | 20 43 20 73 74 61 74 65 73 2e 00 44 69 73 61 62 6c 65 20 43 6f 6d 70 72 65 73 73 69 6f 6e 20 43 | .C.states..Disable.Compression.C |
| e4260 | 6f 6e 74 72 6f 6c 20 50 72 6f 74 6f 63 6f 6c 20 28 43 43 50 29 2e 20 43 43 50 20 69 73 20 65 6e | ontrol.Protocol.(CCP)..CCP.is.en |
| e4280 | 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 2e 00 44 69 73 61 62 6c 65 20 4d 4c 44 20 72 65 | abled.by.default..Disable.MLD.re |
| e42a0 | 70 6f 72 74 73 20 61 6e 64 20 71 75 65 72 79 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 | ports.and.query.on.the.interface |
| e42c0 | 2e 00 44 69 73 61 62 6c 65 20 60 3c 75 73 65 72 3e 60 20 61 63 63 6f 75 6e 74 2e 00 44 69 73 61 | ..Disable.`<user>`.account..Disa |
| e42e0 | 62 6c 65 20 61 20 42 46 44 20 70 65 65 72 00 44 69 73 61 62 6c 65 20 61 20 63 6f 6e 74 61 69 6e | ble.a.BFD.peer.Disable.a.contain |
| e4300 | 65 72 2e 00 44 69 73 61 62 6c 65 20 61 20 67 69 76 65 6e 20 63 6f 6e 74 61 69 6e 65 72 20 72 65 | er..Disable.a.given.container.re |
| e4320 | 67 69 73 74 72 79 00 44 69 73 61 62 6c 65 20 61 6c 6c 20 6f 70 74 69 6f 6e 61 6c 20 43 50 55 20 | gistry.Disable.all.optional.CPU. |
| e4340 | 6d 69 74 69 67 61 74 69 6f 6e 73 2e 20 54 68 69 73 20 69 6d 70 72 6f 76 65 73 20 73 79 73 74 65 | mitigations..This.improves.syste |
| e4360 | 6d 20 70 65 72 66 6f 72 6d 61 6e 63 65 2c 20 62 75 74 20 69 74 20 6d 61 79 20 61 6c 73 6f 20 65 | m.performance,.but.it.may.also.e |
| e4380 | 78 70 6f 73 65 20 75 73 65 72 73 20 74 6f 20 73 65 76 65 72 61 6c 20 43 50 55 20 76 75 6c 6e 65 | xpose.users.to.several.CPU.vulne |
| e43a0 | 72 61 62 69 6c 69 74 69 65 73 2e 00 44 69 73 61 62 6c 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6c | rabilities..Disable.connection.l |
| e43c0 | 6f 67 67 69 6e 67 20 76 69 61 20 53 79 73 6c 6f 67 2e 00 44 69 73 61 62 6c 65 20 63 6f 6e 6e 74 | ogging.via.Syslog..Disable.connt |
| e43e0 | 72 61 63 6b 20 6c 6f 6f 73 65 20 74 72 61 63 6b 20 6f 70 74 69 6f 6e 00 44 69 73 61 62 6c 65 20 | rack.loose.track.option.Disable. |
| e4400 | 64 68 63 70 2d 72 65 6c 61 79 20 73 65 72 76 69 63 65 2e 00 44 69 73 61 62 6c 65 20 64 68 63 70 | dhcp-relay.service..Disable.dhcp |
| e4420 | 76 36 2d 72 65 6c 61 79 20 73 65 72 76 69 63 65 2e 00 44 69 73 61 62 6c 65 20 67 69 76 65 6e 20 | v6-relay.service..Disable.given. |
| e4440 | 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 20 49 74 20 77 69 6c 6c 20 62 65 20 70 6c 61 63 65 64 | `<interface>`..It.will.be.placed |
| e4460 | 20 69 6e 20 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 6c 79 20 64 6f 77 6e 20 28 60 60 41 2f 44 | .in.administratively.down.(``A/D |
| e4480 | 60 60 29 20 73 74 61 74 65 2e 00 44 69 73 61 62 6c 65 20 68 6f 73 74 69 6e 67 20 61 75 74 68 6f | ``).state..Disable.hosting.autho |
| e44a0 | 72 69 74 61 74 69 76 65 20 7a 6f 6e 65 20 66 6f 72 20 60 3c 64 6f 6d 61 69 6e 2d 6e 61 6d 65 3e | ritative.zone.for.`<domain-name> |
| e44c0 | 60 20 77 69 74 68 6f 75 74 20 64 65 6c 65 74 69 6e 67 20 66 72 6f 6d 20 63 6f 6e 66 69 67 75 72 | `.without.deleting.from.configur |
| e44e0 | 61 74 69 6f 6e 2e 00 44 69 73 61 62 6c 65 20 69 6d 6d 65 64 69 61 74 65 20 73 65 73 73 69 6f 6e | ation..Disable.immediate.session |
| e4500 | 20 72 65 73 65 74 20 69 66 20 70 65 65 72 27 73 20 63 6f 6e 6e 65 63 74 65 64 20 6c 69 6e 6b 20 | .reset.if.peer's.connected.link. |
| e4520 | 67 6f 65 73 20 64 6f 77 6e 2e 00 44 69 73 61 62 6c 65 20 70 61 73 73 77 6f 72 64 20 62 61 73 65 | goes.down..Disable.password.base |
| e4540 | 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 20 4c 6f 67 69 6e 20 76 69 61 20 53 53 48 20 | d.authentication..Login.via.SSH. |
| e4560 | 6b 65 79 73 20 6f 6e 6c 79 2e 20 54 68 69 73 20 68 61 72 64 65 6e 73 20 73 65 63 75 72 69 74 79 | keys.only..This.hardens.security |
| e4580 | 21 00 44 69 73 61 62 6c 65 20 73 65 6e 64 69 6e 67 20 61 6e 64 20 72 65 63 65 69 76 69 6e 67 20 | !.Disable.sending.and.receiving. |
| e45a0 | 50 49 4d 20 63 6f 6e 74 72 6f 6c 20 70 61 63 6b 65 74 73 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 | PIM.control.packets.on.the.inter |
| e45c0 | 66 61 63 65 2e 00 44 69 73 61 62 6c 65 20 73 70 65 63 69 66 69 63 20 72 65 63 6f 72 64 20 77 69 | face..Disable.specific.record.wi |
| e45e0 | 74 68 6f 75 74 20 64 65 6c 65 74 69 6e 67 20 69 74 20 66 72 6f 6d 20 63 6f 6e 66 69 67 75 72 61 | thout.deleting.it.from.configura |
| e4600 | 74 69 6f 6e 2e 00 44 69 73 61 62 6c 65 20 74 68 65 20 68 6f 73 74 20 76 61 6c 69 64 61 74 69 6f | tion..Disable.the.host.validatio |
| e4620 | 6e 20 74 68 72 6f 75 67 68 20 72 65 76 65 72 73 65 20 44 4e 53 20 6c 6f 6f 6b 75 70 73 20 2d 20 | n.through.reverse.DNS.lookups.-. |
| e4640 | 63 61 6e 20 73 70 65 65 64 75 70 20 6c 6f 67 69 6e 20 74 69 6d 65 20 77 68 65 6e 20 72 65 76 65 | can.speedup.login.time.when.reve |
| e4660 | 72 73 65 20 6c 6f 6f 6b 75 70 20 69 73 20 6e 6f 74 20 70 6f 73 73 69 62 6c 65 2e 00 44 69 73 61 | rse.lookup.is.not.possible..Disa |
| e4680 | 62 6c 65 20 74 68 65 20 70 65 65 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 44 69 73 61 62 | ble.the.peer.configuration.Disab |
| e46a0 | 6c 65 20 74 68 69 73 20 49 50 76 34 20 73 74 61 74 69 63 20 72 6f 75 74 65 20 65 6e 74 72 79 2e | le.this.IPv4.static.route.entry. |
| e46c0 | 00 44 69 73 61 62 6c 65 20 74 68 69 73 20 49 50 76 36 20 73 74 61 74 69 63 20 72 6f 75 74 65 20 | .Disable.this.IPv6.static.route. |
| e46e0 | 65 6e 74 72 79 2e 00 44 69 73 61 62 6c 65 20 74 68 69 73 20 73 65 72 76 69 63 65 2e 00 44 69 73 | entry..Disable.this.service..Dis |
| e4700 | 61 62 6c 65 20 74 72 61 6e 73 6d 69 74 20 6f 66 20 4c 4c 44 50 20 66 72 61 6d 65 73 20 6f 6e 20 | able.transmit.of.LLDP.frames.on. |
| e4720 | 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 20 55 73 65 66 75 6c 20 74 6f 20 65 | given.`<interface>`..Useful.to.e |
| e4740 | 78 63 6c 75 64 65 20 63 65 72 74 61 69 6e 20 69 6e 74 65 72 66 61 63 65 73 20 66 72 6f 6d 20 4c | xclude.certain.interfaces.from.L |
| e4760 | 4c 44 50 20 77 68 65 6e 20 60 60 61 6c 6c 60 60 20 68 61 76 65 20 62 65 65 6e 20 65 6e 61 62 6c | LDP.when.``all``.have.been.enabl |
| e4780 | 65 64 2e 00 44 69 73 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 20 2d 20 6e 6f 20 6b 65 72 | ed..Disabled.by.default.-.no.ker |
| e47a0 | 6e 65 6c 20 6d 6f 64 75 6c 65 20 6c 6f 61 64 65 64 2e 00 44 69 73 61 62 6c 65 73 20 63 61 63 68 | nel.module.loaded..Disables.cach |
| e47c0 | 69 6e 67 20 6f 66 20 70 65 65 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 66 6f 72 | ing.of.peer.information.from.for |
| e47e0 | 77 61 72 64 65 64 20 4e 48 52 50 20 52 65 73 6f 6c 75 74 69 6f 6e 20 52 65 70 6c 79 20 70 61 63 | warded.NHRP.Resolution.Reply.pac |
| e4800 | 6b 65 74 73 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 72 65 64 75 63 65 | kets..This.can.be.used.to.reduce |
| e4820 | 20 6d 65 6d 6f 72 79 20 63 6f 6e 73 75 6d 70 74 69 6f 6e 20 6f 6e 20 62 69 67 20 4e 42 4d 41 20 | .memory.consumption.on.big.NBMA. |
| e4840 | 73 75 62 6e 65 74 73 2e 00 44 69 73 61 62 6c 65 73 20 66 6c 6f 77 20 69 73 6f 6c 61 74 69 6f 6e | subnets..Disables.flow.isolation |
| e4860 | 2c 20 61 6c 6c 20 74 72 61 66 66 69 63 20 70 61 73 73 65 73 20 74 68 72 6f 75 67 68 20 61 20 73 | ,.all.traffic.passes.through.a.s |
| e4880 | 69 6e 67 6c 65 20 71 75 65 75 65 2e 00 44 69 73 61 62 6c 65 73 20 69 6e 74 65 72 66 61 63 65 2d | ingle.queue..Disables.interface- |
| e48a0 | 62 61 73 65 64 20 49 50 76 34 20 73 74 61 74 69 63 20 72 6f 75 74 65 2e 00 44 69 73 61 62 6c 65 | based.IPv4.static.route..Disable |
| e48c0 | 73 20 69 6e 74 65 72 66 61 63 65 2d 62 61 73 65 64 20 49 50 76 36 20 73 74 61 74 69 63 20 72 6f | s.interface-based.IPv6.static.ro |
| e48e0 | 75 74 65 2e 00 44 69 73 61 62 6c 65 73 20 71 75 69 63 6b 6c 65 61 76 65 20 6d 6f 64 65 2e 20 49 | ute..Disables.quickleave.mode..I |
| e4900 | 6e 20 74 68 69 73 20 6d 6f 64 65 20 74 68 65 20 64 61 65 6d 6f 6e 20 77 69 6c 6c 20 6e 6f 74 20 | n.this.mode.the.daemon.will.not. |
| e4920 | 73 65 6e 64 20 61 20 4c 65 61 76 65 20 49 47 4d 50 20 6d 65 73 73 61 67 65 20 75 70 73 74 72 65 | send.a.Leave.IGMP.message.upstre |
| e4940 | 61 6d 20 61 73 20 73 6f 6f 6e 20 61 73 20 69 74 20 72 65 63 65 69 76 65 73 20 61 20 4c 65 61 76 | am.as.soon.as.it.receives.a.Leav |
| e4960 | 65 20 6d 65 73 73 61 67 65 20 66 6f 72 20 61 6e 79 20 64 6f 77 6e 73 74 72 65 61 6d 20 69 6e 74 | e.message.for.any.downstream.int |
| e4980 | 65 72 66 61 63 65 2e 20 54 68 65 20 64 61 65 6d 6f 6e 20 77 69 6c 6c 20 6e 6f 74 20 61 73 6b 20 | erface..The.daemon.will.not.ask. |
| e49a0 | 66 6f 72 20 4d 65 6d 62 65 72 73 68 69 70 20 72 65 70 6f 72 74 73 20 6f 6e 20 74 68 65 20 64 6f | for.Membership.reports.on.the.do |
| e49c0 | 77 6e 73 74 72 65 61 6d 20 69 6e 74 65 72 66 61 63 65 73 2c 20 61 6e 64 20 69 66 20 61 20 72 65 | wnstream.interfaces,.and.if.a.re |
| e49e0 | 70 6f 72 74 20 69 73 20 72 65 63 65 69 76 65 64 20 74 68 65 20 67 72 6f 75 70 20 69 73 20 6e 6f | port.is.received.the.group.is.no |
| e4a00 | 74 20 6a 6f 69 6e 65 64 20 61 67 61 69 6e 20 74 68 65 20 75 70 73 74 72 65 61 6d 2e 00 44 69 73 | t.joined.again.the.upstream..Dis |
| e4a20 | 61 62 6c 65 73 20 77 65 62 20 66 69 6c 74 65 72 69 6e 67 20 77 69 74 68 6f 75 74 20 64 69 73 63 | ables.web.filtering.without.disc |
| e4a40 | 61 72 64 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 44 69 73 61 62 6c 65 73 20 77 | arding.configuration..Disables.w |
| e4a60 | 65 62 20 70 72 6f 78 79 20 74 72 61 6e 73 70 61 72 65 6e 74 20 6d 6f 64 65 20 61 74 20 61 20 6c | eb.proxy.transparent.mode.at.a.l |
| e4a80 | 69 73 74 65 6e 69 6e 67 20 61 64 64 72 65 73 73 2e 00 44 69 73 61 62 6c 69 6e 67 20 41 64 76 65 | istening.address..Disabling.Adve |
| e4aa0 | 72 74 69 73 65 6d 65 6e 74 73 00 44 69 73 61 62 6c 69 6e 67 20 61 20 56 52 52 50 20 67 72 6f 75 | rtisements.Disabling.a.VRRP.grou |
| e4ac0 | 70 00 44 69 73 61 62 6c 69 6e 67 20 74 68 65 20 65 6e 63 72 79 70 74 69 6f 6e 20 6f 6e 20 74 68 | p.Disabling.the.encryption.on.th |
| e4ae0 | 65 20 6c 69 6e 6b 20 62 79 20 72 65 6d 6f 76 69 6e 67 20 60 60 73 65 63 75 72 69 74 79 20 65 6e | e.link.by.removing.``security.en |
| e4b00 | 63 72 79 70 74 60 60 20 77 69 6c 6c 20 73 68 6f 77 20 74 68 65 20 75 6e 65 6e 63 72 79 70 74 65 | crypt``.will.show.the.unencrypte |
| e4b20 | 64 20 62 75 74 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 20 63 6f 6e 74 65 6e 74 2e 00 44 69 73 | d.but.authenticated.content..Dis |
| e4b40 | 61 64 76 61 6e 74 61 67 65 73 20 61 72 65 3a 00 44 69 73 61 73 73 6f 63 69 61 74 65 20 73 74 61 | advantages.are:.Disassociate.sta |
| e4b60 | 74 69 6f 6e 73 20 62 61 73 65 64 20 6f 6e 20 65 78 63 65 73 73 69 76 65 20 74 72 61 6e 73 6d 69 | tions.based.on.excessive.transmi |
| e4b80 | 73 73 69 6f 6e 20 66 61 69 6c 75 72 65 73 20 6f 72 20 6f 74 68 65 72 20 69 6e 64 69 63 61 74 69 | ssion.failures.or.other.indicati |
| e4ba0 | 6f 6e 73 20 6f 66 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6c 6f 73 73 2e 00 44 69 73 70 6c 61 79 20 | ons.of.connection.loss..Display. |
| e4bc0 | 49 50 76 34 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 66 6f 72 20 56 52 46 20 69 64 65 6e 74 | IPv4.routing.table.for.VRF.ident |
| e4be0 | 69 66 69 65 64 20 62 79 20 60 3c 6e 61 6d 65 3e 60 2e 00 44 69 73 70 6c 61 79 20 49 50 76 36 20 | ified.by.`<name>`..Display.IPv6. |
| e4c00 | 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 66 6f 72 20 56 52 46 20 69 64 65 6e 74 69 66 69 65 64 | routing.table.for.VRF.identified |
| e4c20 | 20 62 79 20 60 3c 6e 61 6d 65 3e 60 2e 00 44 69 73 70 6c 61 79 20 4c 6f 67 73 00 44 69 73 70 6c | .by.`<name>`..Display.Logs.Displ |
| e4c40 | 61 79 20 4f 54 50 20 6b 65 79 20 66 6f 72 20 75 73 65 72 00 44 69 73 70 6c 61 79 20 61 6c 6c 20 | ay.OTP.key.for.user.Display.all. |
| e4c60 | 61 75 74 68 6f 72 69 7a 61 74 69 6f 6e 20 61 74 74 65 6d 70 74 73 20 6f 66 20 74 68 65 20 73 70 | authorization.attempts.of.the.sp |
| e4c80 | 65 63 69 66 69 65 64 20 69 6d 61 67 65 00 44 69 73 70 6c 61 79 20 61 6c 6c 20 6b 6e 6f 77 6e 20 | ecified.image.Display.all.known. |
| e4ca0 | 41 52 50 20 74 61 62 6c 65 20 65 6e 74 72 69 65 73 20 6f 6e 20 61 20 67 69 76 65 6e 20 69 6e 74 | ARP.table.entries.on.a.given.int |
| e4cc0 | 65 72 66 61 63 65 20 6f 6e 6c 79 20 28 60 65 74 68 31 60 29 3a 00 44 69 73 70 6c 61 79 20 61 6c | erface.only.(`eth1`):.Display.al |
| e4ce0 | 6c 20 6b 6e 6f 77 6e 20 41 52 50 20 74 61 62 6c 65 20 65 6e 74 72 69 65 73 20 73 70 61 6e 6e 69 | l.known.ARP.table.entries.spanni |
| e4d00 | 6e 67 20 61 63 72 6f 73 73 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 00 44 69 73 70 6c 61 79 | ng.across.all.interfaces.Display |
| e4d20 | 20 63 6f 6e 74 65 6e 74 73 20 6f 66 20 61 20 73 70 65 63 69 66 69 65 64 20 75 73 65 72 2d 64 65 | .contents.of.a.specified.user-de |
| e4d40 | 66 69 6e 65 64 20 6c 6f 67 20 66 69 6c 65 20 6f 66 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 | fined.log.file.of.the.specified. |
| e4d60 | 69 6d 61 67 65 00 44 69 73 70 6c 61 79 20 63 6f 6e 74 65 6e 74 73 20 6f 66 20 61 6c 6c 20 6d 61 | image.Display.contents.of.all.ma |
| e4d80 | 73 74 65 72 20 6c 6f 67 20 66 69 6c 65 73 20 6f 66 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 | ster.log.files.of.the.specified. |
| e4da0 | 69 6d 61 67 65 00 44 69 73 70 6c 61 79 20 6c 61 73 74 20 6c 69 6e 65 73 20 6f 66 20 74 68 65 20 | image.Display.last.lines.of.the. |
| e4dc0 | 73 79 73 74 65 6d 20 6c 6f 67 20 6f 66 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6d 61 67 | system.log.of.the.specified.imag |
| e4de0 | 65 00 44 69 73 70 6c 61 79 20 6c 69 73 74 20 6f 66 20 61 6c 6c 20 75 73 65 72 2d 64 65 66 69 6e | e.Display.list.of.all.user-defin |
| e4e00 | 65 64 20 6c 6f 67 20 66 69 6c 65 73 20 6f 66 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6d | ed.log.files.of.the.specified.im |
| e4e20 | 61 67 65 00 44 69 73 70 6c 61 79 20 6c 6f 67 20 66 69 6c 65 73 20 6f 66 20 67 69 76 65 6e 20 63 | age.Display.log.files.of.given.c |
| e4e40 | 61 74 65 67 6f 72 79 20 6f 6e 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 20 55 73 65 20 74 61 62 20 | ategory.on.the.console..Use.tab. |
| e4e60 | 63 6f 6d 70 6c 65 74 69 6f 6e 20 74 6f 20 67 65 74 20 61 20 6c 69 73 74 20 6f 66 20 61 76 61 69 | completion.to.get.a.list.of.avai |
| e4e80 | 6c 61 62 6c 65 20 63 61 74 65 67 6f 72 69 65 73 2e 20 54 68 6f 73 20 63 61 74 65 67 6f 72 69 65 | lable.categories..Thos.categorie |
| e4ea0 | 73 20 63 6f 75 6c 64 20 62 65 3a 20 61 6c 6c 2c 20 61 75 74 68 6f 72 69 7a 61 74 69 6f 6e 2c 20 | s.could.be:.all,.authorization,. |
| e4ec0 | 63 6c 75 73 74 65 72 2c 20 63 6f 6e 6e 74 72 61 63 6b 2d 73 79 6e 63 2c 20 64 68 63 70 2c 20 64 | cluster,.conntrack-sync,.dhcp,.d |
| e4ee0 | 69 72 65 63 74 6f 72 79 2c 20 64 6e 73 2c 20 66 69 6c 65 2c 20 66 69 72 65 77 61 6c 6c 2c 20 68 | irectory,.dns,.file,.firewall,.h |
| e4f00 | 74 74 70 73 2c 20 69 6d 61 67 65 20 6c 6c 64 70 2c 20 6e 61 74 2c 20 6f 70 65 6e 76 70 6e 2c 20 | ttps,.image.lldp,.nat,.openvpn,. |
| e4f20 | 73 6e 6d 70 2c 20 74 61 69 6c 2c 20 76 70 6e 2c 20 76 72 72 70 00 44 69 73 70 6c 61 79 20 6c 6f | snmp,.tail,.vpn,.vrrp.Display.lo |
| e4f40 | 67 20 66 69 6c 65 73 20 6f 66 20 67 69 76 65 6e 20 63 61 74 65 67 6f 72 79 20 6f 6e 20 74 68 65 | g.files.of.given.category.on.the |
| e4f60 | 20 63 6f 6e 73 6f 6c 65 2e 20 55 73 65 20 74 61 62 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 74 6f 20 | .console..Use.tab.completion.to. |
| e4f80 | 67 65 74 20 61 20 6c 69 73 74 20 6f 66 20 61 76 61 69 6c 61 62 6c 65 20 63 61 74 65 67 6f 72 69 | get.a.list.of.available.categori |
| e4fa0 | 65 73 2e 20 54 68 6f 73 65 20 63 61 74 65 67 6f 72 69 65 73 20 63 6f 75 6c 64 20 62 65 3a 20 61 | es..Those.categories.could.be:.a |
| e4fc0 | 6c 6c 2c 20 61 75 74 68 6f 72 69 7a 61 74 69 6f 6e 2c 20 63 6c 75 73 74 65 72 2c 20 63 6f 6e 6e | ll,.authorization,.cluster,.conn |
| e4fe0 | 74 72 61 63 6b 2d 73 79 6e 63 2c 20 64 68 63 70 2c 20 64 69 72 65 63 74 6f 72 79 2c 20 64 6e 73 | track-sync,.dhcp,.directory,.dns |
| e5000 | 2c 20 66 69 6c 65 2c 20 66 69 72 65 77 61 6c 6c 2c 20 68 74 74 70 73 2c 20 69 6d 61 67 65 20 6c | ,.file,.firewall,.https,.image.l |
| e5020 | 6c 64 70 2c 20 6e 61 74 2c 20 6f 70 65 6e 76 70 6e 2c 20 73 6e 6d 70 2c 20 74 61 69 6c 2c 20 76 | ldp,.nat,.openvpn,.snmp,.tail,.v |
| e5040 | 70 6e 2c 20 76 72 72 70 00 44 69 73 70 6c 61 79 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 | pn,.vrrp.Displays.information.ab |
| e5060 | 6f 75 74 20 61 6c 6c 20 6e 65 69 67 68 62 6f 72 73 20 64 69 73 63 6f 76 65 72 65 64 20 76 69 61 | out.all.neighbors.discovered.via |
| e5080 | 20 4c 4c 44 50 2e 00 44 69 73 70 6c 61 79 73 20 71 75 65 75 65 20 69 6e 66 6f 72 6d 61 74 69 6f | .LLDP..Displays.queue.informatio |
| e50a0 | 6e 20 66 6f 72 20 61 20 50 50 50 6f 45 20 69 6e 74 65 72 66 61 63 65 2e 00 44 69 73 70 6c 61 79 | n.for.a.PPPoE.interface..Display |
| e50c0 | 73 20 74 68 65 20 72 6f 75 74 65 20 70 61 63 6b 65 74 73 20 74 61 6b 65 6e 20 74 6f 20 61 20 6e | s.the.route.packets.taken.to.a.n |
| e50e0 | 65 74 77 6f 72 6b 20 68 6f 73 74 20 75 74 69 6c 69 7a 69 6e 67 20 56 52 46 20 69 6e 73 74 61 6e | etwork.host.utilizing.VRF.instan |
| e5100 | 63 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 6e 61 6d 65 3e 60 2e 20 57 68 65 6e 20 | ce.identified.by.`<name>`..When. |
| e5120 | 75 73 69 6e 67 20 74 68 65 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 6f 70 74 69 6f 6e 2c 20 64 | using.the.IPv4.or.IPv6.option,.d |
| e5140 | 69 73 70 6c 61 79 73 20 74 68 65 20 72 6f 75 74 65 20 70 61 63 6b 65 74 73 20 74 61 6b 65 6e 20 | isplays.the.route.packets.taken. |
| e5160 | 74 6f 20 74 68 65 20 67 69 76 65 6e 20 68 6f 73 74 73 20 49 50 20 61 64 64 72 65 73 73 20 66 61 | to.the.given.hosts.IP.address.fa |
| e5180 | 6d 69 6c 79 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 75 73 65 66 75 6c 20 77 68 65 6e | mily..This.option.is.useful.when |
| e51a0 | 20 74 68 65 20 68 6f 73 74 20 69 73 20 73 70 65 63 69 66 69 65 64 20 61 73 20 61 20 68 6f 73 74 | .the.host.is.specified.as.a.host |
| e51c0 | 6e 61 6d 65 20 72 61 74 68 65 72 20 74 68 61 6e 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 2e 00 | name.rather.than.an.IP.address.. |
| e51e0 | 44 6f 20 2a 6e 6f 74 2a 20 6d 61 6e 75 61 6c 6c 79 20 65 64 69 74 20 60 2f 65 74 63 2f 68 6f 73 | Do.*not*.manually.edit.`/etc/hos |
| e5200 | 74 73 60 2e 20 54 68 69 73 20 66 69 6c 65 20 77 69 6c 6c 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c | ts`..This.file.will.automaticall |
| e5220 | 79 20 62 65 20 72 65 67 65 6e 65 72 61 74 65 64 20 6f 6e 20 62 6f 6f 74 20 62 61 73 65 64 20 6f | y.be.regenerated.on.boot.based.o |
| e5240 | 6e 20 74 68 65 20 73 65 74 74 69 6e 67 73 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 2c 20 | n.the.settings.in.this.section,. |
| e5260 | 77 68 69 63 68 20 6d 65 61 6e 73 20 79 6f 75 27 6c 6c 20 6c 6f 73 65 20 61 6c 6c 20 79 6f 75 72 | which.means.you'll.lose.all.your |
| e5280 | 20 6d 61 6e 75 61 6c 20 65 64 69 74 73 2e 20 49 6e 73 74 65 61 64 2c 20 63 6f 6e 66 69 67 75 72 | .manual.edits..Instead,.configur |
| e52a0 | 65 20 73 74 61 74 69 63 20 68 6f 73 74 20 6d 61 70 70 69 6e 67 73 20 61 73 20 66 6f 6c 6c 6f 77 | e.static.host.mappings.as.follow |
| e52c0 | 73 2e 00 44 6f 20 6e 6f 74 20 61 6c 6c 6f 77 20 49 50 76 34 20 6e 65 78 74 68 6f 70 20 74 72 61 | s..Do.not.allow.IPv4.nexthop.tra |
| e52e0 | 63 6b 69 6e 67 20 74 6f 20 72 65 73 6f 6c 76 65 20 76 69 61 20 74 68 65 20 64 65 66 61 75 6c 74 | cking.to.resolve.via.the.default |
| e5300 | 20 72 6f 75 74 65 2e 20 54 68 69 73 20 70 61 72 61 6d 65 74 65 72 20 69 73 20 63 6f 6e 66 69 67 | .route..This.parameter.is.config |
| e5320 | 75 72 65 64 20 70 65 72 2d 56 52 46 2c 20 73 6f 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 69 73 20 | ured.per-VRF,.so.the.command.is. |
| e5340 | 61 6c 73 6f 20 61 76 61 69 6c 61 62 6c 65 20 69 6e 20 74 68 65 20 56 52 46 20 73 75 62 6e 6f 64 | also.available.in.the.VRF.subnod |
| e5360 | 65 2e 00 44 6f 20 6e 6f 74 20 61 6c 6c 6f 77 20 49 50 76 36 20 6e 65 78 74 68 6f 70 20 74 72 61 | e..Do.not.allow.IPv6.nexthop.tra |
| e5380 | 63 6b 69 6e 67 20 74 6f 20 72 65 73 6f 6c 76 65 20 76 69 61 20 74 68 65 20 64 65 66 61 75 6c 74 | cking.to.resolve.via.the.default |
| e53a0 | 20 72 6f 75 74 65 2e 20 54 68 69 73 20 70 61 72 61 6d 65 74 65 72 20 69 73 20 63 6f 6e 66 69 67 | .route..This.parameter.is.config |
| e53c0 | 75 72 65 64 20 70 65 72 2d 56 52 46 2c 20 73 6f 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 69 73 20 | ured.per-VRF,.so.the.command.is. |
| e53e0 | 61 6c 73 6f 20 61 76 61 69 6c 61 62 6c 65 20 69 6e 20 74 68 65 20 56 52 46 20 73 75 62 6e 6f 64 | also.available.in.the.VRF.subnod |
| e5400 | 65 2e 00 44 6f 20 6e 6f 74 20 61 73 73 69 67 6e 20 61 20 6c 69 6e 6b 2d 6c 6f 63 61 6c 20 49 50 | e..Do.not.assign.a.link-local.IP |
| e5420 | 76 36 20 61 64 64 72 65 73 73 20 74 6f 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 00 44 6f | v6.address.to.this.interface..Do |
| e5440 | 20 6e 6f 74 20 63 6f 6e 66 69 67 75 72 65 20 49 46 42 20 61 73 20 74 68 65 20 66 69 72 73 74 20 | .not.configure.IFB.as.the.first. |
| e5460 | 73 74 65 70 2e 20 46 69 72 73 74 20 63 72 65 61 74 65 20 65 76 65 72 79 74 68 69 6e 67 20 65 6c | step..First.create.everything.el |
| e5480 | 73 65 20 6f 66 20 79 6f 75 72 20 74 72 61 66 66 69 63 2d 70 6f 6c 69 63 79 2c 20 61 6e 64 20 74 | se.of.your.traffic-policy,.and.t |
| e54a0 | 68 65 6e 20 79 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 49 46 42 2e 20 4f 74 68 65 72 | hen.you.can.configure.IFB..Other |
| e54c0 | 77 69 73 65 20 79 6f 75 20 6d 69 67 68 74 20 67 65 74 20 74 68 65 20 60 60 52 54 4e 45 54 4c 49 | wise.you.might.get.the.``RTNETLI |
| e54e0 | 4e 4b 20 61 6e 73 77 65 72 3a 20 46 69 6c 65 20 65 78 69 73 74 73 60 60 20 65 72 72 6f 72 2c 20 | NK.answer:.File.exists``.error,. |
| e5500 | 77 68 69 63 68 20 63 61 6e 20 62 65 20 73 6f 6c 76 65 64 20 77 69 74 68 20 60 60 73 75 64 6f 20 | which.can.be.solved.with.``sudo. |
| e5520 | 69 70 20 6c 69 6e 6b 20 64 65 6c 65 74 65 20 69 66 62 30 60 60 2e 00 44 6f 20 6e 6f 74 20 6c 65 | ip.link.delete.ifb0``..Do.not.le |
| e5540 | 61 76 65 20 69 6e 74 72 6f 73 70 65 63 74 69 6f 6e 20 65 6e 61 62 6c 65 64 20 69 6e 20 70 72 6f | ave.introspection.enabled.in.pro |
| e5560 | 64 75 63 74 69 6f 6e 2c 20 69 74 20 69 73 20 61 20 73 65 63 75 72 69 74 79 20 72 69 73 6b 2e 00 | duction,.it.is.a.security.risk.. |
| e5580 | 44 6f 20 6e 6f 74 20 73 65 6e 64 20 48 61 72 64 20 52 65 73 65 74 20 43 45 41 53 45 20 4e 6f 74 | Do.not.send.Hard.Reset.CEASE.Not |
| e55a0 | 69 66 69 63 61 74 69 6f 6e 20 66 6f 72 20 22 41 64 6d 69 6e 69 73 74 72 61 74 69 76 65 20 52 65 | ification.for."Administrative.Re |
| e55c0 | 73 65 74 22 20 65 76 65 6e 74 73 2e 20 57 68 65 6e 20 73 65 74 20 61 6e 64 20 47 72 61 63 65 66 | set".events..When.set.and.Gracef |
| e55e0 | 75 6c 20 52 65 73 74 61 72 74 20 4e 6f 74 69 66 69 63 61 74 69 6f 6e 20 63 61 70 61 62 69 6c 69 | ul.Restart.Notification.capabili |
| e5600 | 74 79 20 69 73 20 65 78 63 68 61 6e 67 65 64 20 62 65 74 77 65 65 6e 20 74 68 65 20 70 65 65 72 | ty.is.exchanged.between.the.peer |
| e5620 | 73 2c 20 47 72 61 63 65 66 75 6c 20 52 65 73 74 61 72 74 20 70 72 6f 63 65 64 75 72 65 73 20 61 | s,.Graceful.Restart.procedures.a |
| e5640 | 70 70 6c 79 2c 20 61 6e 64 20 72 6f 75 74 65 73 20 77 69 6c 6c 20 62 65 20 72 65 74 61 69 6e 65 | pply,.and.routes.will.be.retaine |
| e5660 | 64 2e 00 44 6f 20 6e 6f 74 20 75 73 65 20 74 68 65 20 6c 6f 63 61 6c 20 60 60 2f 65 74 63 2f 68 | d..Do.not.use.the.local.``/etc/h |
| e5680 | 6f 73 74 73 60 60 20 66 69 6c 65 20 69 6e 20 6e 61 6d 65 20 72 65 73 6f 6c 75 74 69 6f 6e 2e 20 | osts``.file.in.name.resolution.. |
| e56a0 | 56 79 4f 53 20 44 48 43 50 20 73 65 72 76 65 72 20 77 69 6c 6c 20 75 73 65 20 74 68 69 73 20 66 | VyOS.DHCP.server.will.use.this.f |
| e56c0 | 69 6c 65 20 74 6f 20 61 64 64 20 72 65 73 6f 6c 76 65 72 73 20 74 6f 20 61 73 73 69 67 6e 65 64 | ile.to.add.resolvers.to.assigned |
| e56e0 | 20 61 64 64 72 65 73 73 65 73 2e 00 44 6f 65 73 20 6e 6f 74 20 6e 65 65 64 20 74 6f 20 62 65 20 | .addresses..Does.not.need.to.be. |
| e5700 | 75 73 65 64 20 74 6f 67 65 74 68 65 72 20 77 69 74 68 20 70 72 6f 78 79 5f 61 72 70 2e 00 44 6f | used.together.with.proxy_arp..Do |
| e5720 | 6d 61 69 6e 00 44 6f 6d 61 69 6e 20 47 72 6f 75 70 73 00 44 6f 6d 61 69 6e 20 4e 61 6d 65 00 44 | main.Domain.Groups.Domain.Name.D |
| e5740 | 6f 6d 61 69 6e 20 6e 61 6d 65 28 73 29 20 66 6f 72 20 77 68 69 63 68 20 74 6f 20 6f 62 74 61 69 | omain.name(s).for.which.to.obtai |
| e5760 | 6e 20 63 65 72 74 69 66 69 63 61 74 65 00 44 6f 6d 61 69 6e 20 6e 61 6d 65 73 20 63 61 6e 20 69 | n.certificate.Domain.names.can.i |
| e5780 | 6e 63 6c 75 64 65 20 6c 65 74 74 65 72 73 2c 20 6e 75 6d 62 65 72 73 2c 20 68 79 70 68 65 6e 73 | nclude.letters,.numbers,.hyphens |
| e57a0 | 20 61 6e 64 20 70 65 72 69 6f 64 73 20 77 69 74 68 20 61 20 6d 61 78 69 6d 75 6d 20 6c 65 6e 67 | .and.periods.with.a.maximum.leng |
| e57c0 | 74 68 20 6f 66 20 32 35 33 20 63 68 61 72 61 63 74 65 72 73 2e 00 44 6f 6d 61 69 6e 20 6e 61 6d | th.of.253.characters..Domain.nam |
| e57e0 | 65 73 20 74 6f 20 61 70 70 6c 79 2c 20 6d 75 6c 74 69 70 6c 65 20 64 6f 6d 61 69 6e 2d 6e 61 6d | es.to.apply,.multiple.domain-nam |
| e5800 | 65 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 2e 00 44 6f 6d 61 69 6e 20 73 65 61 72 | es.can.be.specified..Domain.sear |
| e5820 | 63 68 20 6f 72 64 65 72 00 44 6f 6e 27 74 20 62 65 20 61 66 72 61 69 64 20 74 68 61 74 20 79 6f | ch.order.Don't.be.afraid.that.yo |
| e5840 | 75 20 6e 65 65 64 20 74 6f 20 72 65 2d 64 6f 20 79 6f 75 72 20 63 6f 6e 66 69 67 75 72 61 74 69 | u.need.to.re-do.your.configurati |
| e5860 | 6f 6e 2e 20 4b 65 79 20 74 72 61 6e 73 66 6f 72 6d 61 74 69 6f 6e 20 69 73 20 68 61 6e 64 6c 65 | on..Key.transformation.is.handle |
| e5880 | 64 2c 20 61 73 20 61 6c 77 61 79 73 2c 20 62 79 20 6f 75 72 20 6d 69 67 72 61 74 69 6f 6e 20 73 | d,.as.always,.by.our.migration.s |
| e58a0 | 63 72 69 70 74 73 2c 20 73 6f 20 74 68 69 73 20 77 69 6c 6c 20 62 65 20 61 20 73 6d 6f 6f 74 68 | cripts,.so.this.will.be.a.smooth |
| e58c0 | 20 74 72 61 6e 73 69 74 69 6f 6e 20 66 6f 72 20 79 6f 75 21 00 44 6f 6e 27 74 20 66 6f 72 67 65 | .transition.for.you!.Don't.forge |
| e58e0 | 74 2c 20 74 68 65 20 43 49 44 52 20 64 65 63 6c 61 72 65 64 20 69 6e 20 74 68 65 20 6e 65 74 77 | t,.the.CIDR.declared.in.the.netw |
| e5900 | 6f 72 6b 20 73 74 61 74 65 6d 65 6e 74 20 2a 2a 4d 55 53 54 20 65 78 69 73 74 20 69 6e 20 79 6f | ork.statement.**MUST.exist.in.yo |
| e5920 | 75 72 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 28 64 79 6e 61 6d 69 63 20 6f 72 20 73 74 61 | ur.routing.table.(dynamic.or.sta |
| e5940 | 74 69 63 29 2c 20 74 68 65 20 62 65 73 74 20 77 61 79 20 74 6f 20 6d 61 6b 65 20 73 75 72 65 20 | tic),.the.best.way.to.make.sure. |
| e5960 | 74 68 61 74 20 69 73 20 74 72 75 65 20 69 73 20 63 72 65 61 74 69 6e 67 20 61 20 73 74 61 74 69 | that.is.true.is.creating.a.stati |
| e5980 | 63 20 72 6f 75 74 65 3a 2a 2a 00 44 6f 6e 27 74 20 66 6f 72 67 65 74 2c 20 74 68 65 20 43 49 44 | c.route:**.Don't.forget,.the.CID |
| e59a0 | 52 20 64 65 63 6c 61 72 65 64 20 69 6e 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 73 74 61 74 65 6d | R.declared.in.the.network.statem |
| e59c0 | 65 6e 74 20 4d 55 53 54 20 2a 2a 65 78 69 73 74 20 69 6e 20 79 6f 75 72 20 72 6f 75 74 69 6e 67 | ent.MUST.**exist.in.your.routing |
| e59e0 | 20 74 61 62 6c 65 20 28 64 79 6e 61 6d 69 63 20 6f 72 20 73 74 61 74 69 63 29 2c 20 74 68 65 20 | .table.(dynamic.or.static),.the. |
| e5a00 | 62 65 73 74 20 77 61 79 20 74 6f 20 6d 61 6b 65 20 73 75 72 65 20 74 68 61 74 20 69 73 20 74 72 | best.way.to.make.sure.that.is.tr |
| e5a20 | 75 65 20 69 73 20 63 72 65 61 74 69 6e 67 20 61 20 73 74 61 74 69 63 20 72 6f 75 74 65 3a 2a 2a | ue.is.creating.a.static.route:** |
| e5a40 | 00 44 6f 6e 27 74 20 67 65 74 20 63 6f 6e 66 75 73 65 64 20 61 62 6f 75 74 20 74 68 65 20 75 73 | .Don't.get.confused.about.the.us |
| e5a60 | 65 64 20 2f 33 31 20 74 75 6e 6e 65 6c 20 73 75 62 6e 65 74 2e 20 3a 72 66 63 3a 60 33 30 32 31 | ed./31.tunnel.subnet..:rfc:`3021 |
| e5a80 | 60 20 67 69 76 65 73 20 79 6f 75 20 61 64 64 69 74 69 6f 6e 61 6c 20 69 6e 66 6f 72 6d 61 74 69 | `.gives.you.additional.informati |
| e5aa0 | 6f 6e 20 66 6f 72 20 75 73 69 6e 67 20 2f 33 31 20 73 75 62 6e 65 74 73 20 6f 6e 20 70 6f 69 6e | on.for.using./31.subnets.on.poin |
| e5ac0 | 74 2d 74 6f 2d 70 6f 69 6e 74 20 6c 69 6e 6b 73 2e 00 44 6f 77 6e 6c 6f 61 64 20 62 61 6e 64 77 | t-to-point.links..Download.bandw |
| e5ae0 | 69 64 74 68 20 6c 69 6d 69 74 20 69 6e 20 6b 62 69 74 2f 73 20 66 6f 72 20 60 3c 75 73 65 72 3e | idth.limit.in.kbit/s.for.`<user> |
| e5b00 | 60 2e 00 44 6f 77 6e 6c 6f 61 64 20 62 61 6e 64 77 69 64 74 68 20 6c 69 6d 69 74 20 69 6e 20 6b | `..Download.bandwidth.limit.in.k |
| e5b20 | 62 69 74 2f 73 20 66 6f 72 20 75 73 65 72 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 60 3c 69 6e | bit/s.for.user.on.interface.`<in |
| e5b40 | 74 65 72 66 61 63 65 3e 60 2e 00 44 6f 77 6e 6c 6f 61 64 2f 55 70 64 61 74 65 20 63 6f 6d 70 6c | terface>`..Download/Update.compl |
| e5b60 | 65 74 65 20 62 6c 61 63 6b 6c 69 73 74 00 44 6f 77 6e 6c 6f 61 64 2f 55 70 64 61 74 65 20 70 61 | ete.blacklist.Download/Update.pa |
| e5b80 | 72 74 69 61 6c 20 62 6c 61 63 6b 6c 69 73 74 2e 00 44 72 6f 70 20 41 53 2d 4e 55 4d 42 45 52 20 | rtial.blacklist..Drop.AS-NUMBER. |
| e5ba0 | 66 72 6f 6d 20 74 68 65 20 42 47 50 20 41 53 20 70 61 74 68 2e 00 44 72 6f 70 20 54 61 69 6c 00 | from.the.BGP.AS.path..Drop.Tail. |
| e5bc0 | 44 72 6f 70 20 72 61 74 65 00 44 72 6f 70 70 65 64 20 70 61 63 6b 65 74 73 20 72 65 70 6f 72 74 | Drop.rate.Dropped.packets.report |
| e5be0 | 65 64 20 6f 6e 20 44 52 4f 50 4d 4f 4e 20 4e 65 74 6c 69 6e 6b 20 63 68 61 6e 6e 65 6c 20 62 79 | ed.on.DROPMON.Netlink.channel.by |
| e5c00 | 20 4c 69 6e 75 78 20 6b 65 72 6e 65 6c 20 61 72 65 20 65 78 70 6f 72 74 65 64 20 76 69 61 20 74 | .Linux.kernel.are.exported.via.t |
| e5c20 | 68 65 20 73 74 61 6e 64 61 72 64 20 73 46 6c 6f 77 20 76 35 20 65 78 74 65 6e 73 69 6f 6e 20 66 | he.standard.sFlow.v5.extension.f |
| e5c40 | 6f 72 20 72 65 70 6f 72 74 69 6e 67 20 64 72 6f 70 70 65 64 20 70 61 63 6b 65 74 73 00 44 75 61 | or.reporting.dropped.packets.Dua |
| e5c60 | 6c 2d 53 74 61 63 6b 20 49 50 76 34 2f 49 50 76 36 20 70 72 6f 76 69 73 69 6f 6e 69 6e 67 20 77 | l-Stack.IPv4/IPv6.provisioning.w |
| e5c80 | 69 74 68 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 00 44 75 65 20 74 6f 20 61 20 72 | ith.Prefix.Delegation.Due.to.a.r |
| e5ca0 | 61 63 65 20 63 6f 6e 64 69 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 6c 65 61 64 20 74 6f 20 61 | ace.condition.that.can.lead.to.a |
| e5cc0 | 20 66 61 69 6c 75 72 65 20 64 75 72 69 6e 67 20 62 6f 6f 74 20 70 72 6f 63 65 73 73 2c 20 61 6c | .failure.during.boot.process,.al |
| e5ce0 | 6c 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 69 6e 69 74 69 61 6c 69 7a 65 64 20 62 65 66 | l.interfaces.are.initialized.bef |
| e5d00 | 6f 72 65 20 66 69 72 65 77 61 6c 6c 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 68 69 73 | ore.firewall.is.configured..This |
| e5d20 | 20 6c 65 61 64 73 20 74 6f 20 61 20 73 69 74 75 61 74 69 6f 6e 20 77 68 65 72 65 20 74 68 65 20 | .leads.to.a.situation.where.the. |
| e5d40 | 73 79 73 74 65 6d 20 69 73 20 6f 70 65 6e 20 74 6f 20 61 6c 6c 20 74 72 61 66 66 69 63 2c 20 61 | system.is.open.to.all.traffic,.a |
| e5d60 | 6e 64 20 63 61 6e 20 62 65 20 63 6f 6e 73 69 64 65 72 65 64 20 61 73 20 61 20 73 65 63 75 72 69 | nd.can.be.considered.as.a.securi |
| e5d80 | 74 79 20 72 69 73 6b 2e 00 44 75 6d 6d 79 00 44 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 00 44 | ty.risk..Dummy.Dummy.interface.D |
| e5da0 | 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 61 73 20 69 | ummy.interfaces.can.be.used.as.i |
| e5dc0 | 6e 74 65 72 66 61 63 65 73 20 74 68 61 74 20 61 6c 77 61 79 73 20 73 74 61 79 20 75 70 20 28 69 | nterfaces.that.always.stay.up.(i |
| e5de0 | 6e 20 74 68 65 20 73 61 6d 65 20 66 61 73 68 69 6f 6e 20 74 6f 20 6c 6f 6f 70 62 61 63 6b 73 20 | n.the.same.fashion.to.loopbacks. |
| e5e00 | 69 6e 20 43 69 73 63 6f 20 49 4f 53 29 2c 20 6f 72 20 66 6f 72 20 74 65 73 74 69 6e 67 20 70 75 | in.Cisco.IOS),.or.for.testing.pu |
| e5e20 | 72 70 6f 73 65 73 2e 00 44 75 70 6c 69 63 61 74 65 20 70 61 63 6b 65 74 73 20 61 72 65 20 6e 6f | rposes..Duplicate.packets.are.no |
| e5e40 | 74 20 69 6e 63 6c 75 64 65 64 20 69 6e 20 74 68 65 20 70 61 63 6b 65 74 20 6c 6f 73 73 20 63 61 | t.included.in.the.packet.loss.ca |
| e5e60 | 6c 63 75 6c 61 74 69 6f 6e 2c 20 61 6c 74 68 6f 75 67 68 20 74 68 65 20 72 6f 75 6e 64 2d 74 72 | lculation,.although.the.round-tr |
| e5e80 | 69 70 20 74 69 6d 65 20 6f 66 20 74 68 65 73 65 20 70 61 63 6b 65 74 73 20 69 73 20 75 73 65 64 | ip.time.of.these.packets.is.used |
| e5ea0 | 20 69 6e 20 63 61 6c 63 75 6c 61 74 69 6e 67 20 74 68 65 20 6d 69 6e 69 6d 75 6d 2f 20 61 76 65 | .in.calculating.the.minimum/.ave |
| e5ec0 | 72 61 67 65 2f 6d 61 78 69 6d 75 6d 20 72 6f 75 6e 64 2d 74 72 69 70 20 74 69 6d 65 20 6e 75 6d | rage/maximum.round-trip.time.num |
| e5ee0 | 62 65 72 73 2e 00 44 75 72 69 6e 67 20 69 6e 69 74 69 61 6c 20 64 65 70 6c 6f 79 6d 65 6e 74 20 | bers..During.initial.deployment. |
| e5f00 | 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 75 73 69 6e 67 20 74 68 65 20 73 74 61 67 69 6e 67 20 41 | we.recommend.using.the.staging.A |
| e5f20 | 50 49 20 6f 66 20 4c 65 74 73 45 6e 63 72 79 70 74 20 74 6f 20 70 72 65 76 65 6e 74 20 61 6e 64 | PI.of.LetsEncrypt.to.prevent.and |
| e5f40 | 20 62 6c 61 63 6b 6c 69 73 74 69 6e 67 20 6f 66 20 79 6f 75 72 20 73 79 73 74 65 6d 2e 20 54 68 | .blacklisting.of.your.system..Th |
| e5f60 | 65 20 41 50 49 20 65 6e 64 70 6f 69 6e 74 20 69 73 20 68 74 74 70 73 3a 2f 2f 61 63 6d 65 2d 73 | e.API.endpoint.is.https://acme-s |
| e5f80 | 74 61 67 69 6e 67 2d 76 30 32 2e 61 70 69 2e 6c 65 74 73 65 6e 63 72 79 70 74 2e 6f 72 67 2f 64 | taging-v02.api.letsencrypt.org/d |
| e5fa0 | 69 72 65 63 74 6f 72 79 00 44 75 72 69 6e 67 20 70 72 6f 66 69 6c 65 20 69 6d 70 6f 72 74 2c 20 | irectory.During.profile.import,. |
| e5fc0 | 74 68 65 20 75 73 65 72 20 69 73 20 61 73 6b 65 64 20 74 6f 20 65 6e 74 65 72 20 69 74 73 20 49 | the.user.is.asked.to.enter.its.I |
| e5fe0 | 50 53 65 63 20 63 72 65 64 65 6e 74 69 61 6c 73 20 28 75 73 65 72 6e 61 6d 65 20 61 6e 64 20 70 | PSec.credentials.(username.and.p |
| e6000 | 61 73 73 77 6f 72 64 29 20 77 68 69 63 68 20 69 73 20 73 74 6f 72 65 64 20 6f 6e 20 74 68 65 20 | assword).which.is.stored.on.the. |
| e6020 | 6d 6f 62 69 6c 65 2e 00 44 79 6e 61 6d 69 63 20 44 4e 53 00 44 79 6e 61 6d 69 63 20 47 72 6f 75 | mobile..Dynamic.DNS.Dynamic.Grou |
| e6040 | 70 73 00 44 79 6e 61 6d 69 63 20 61 64 64 72 65 73 73 20 67 72 6f 75 70 20 69 73 20 73 75 70 70 | ps.Dynamic.address.group.is.supp |
| e6060 | 6f 72 74 65 64 20 62 79 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 66 61 6d 69 | orted.by.both.IPv4.and.IPv6.fami |
| e6080 | 6c 69 65 73 2e 20 43 6f 6d 6d 61 6e 64 73 20 75 73 65 64 20 74 6f 20 64 65 66 69 6e 65 20 64 79 | lies..Commands.used.to.define.dy |
| e60a0 | 6e 61 6d 69 63 20 49 50 76 34 7c 49 50 76 36 20 61 64 64 72 65 73 73 20 67 72 6f 75 70 73 20 61 | namic.IPv4|IPv6.address.groups.a |
| e60c0 | 72 65 3a 00 44 79 6e 61 6d 69 63 2d 70 72 6f 74 65 63 74 69 6f 6e 00 45 41 50 6f 4c 20 63 6f 6d | re:.Dynamic-protection.EAPoL.com |
| e60e0 | 65 73 20 77 69 74 68 20 61 6e 20 69 64 65 6e 74 69 66 79 20 6f 70 74 69 6f 6e 2e 20 57 65 20 61 | es.with.an.identify.option..We.a |
| e6100 | 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 75 73 65 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 4d | utomatically.use.the.interface.M |
| e6120 | 41 43 20 61 64 64 72 65 73 73 20 61 73 20 69 64 65 6e 74 69 74 79 20 70 61 72 61 6d 65 74 65 72 | AC.address.as.identity.parameter |
| e6140 | 2e 00 45 53 50 20 28 45 6e 63 61 70 73 75 6c 61 74 69 6e 67 20 53 65 63 75 72 69 74 79 20 50 61 | ..ESP.(Encapsulating.Security.Pa |
| e6160 | 79 6c 6f 61 64 29 20 41 74 74 72 69 62 75 74 65 73 00 45 53 50 20 50 68 61 73 65 3a 00 45 53 50 | yload).Attributes.ESP.Phase:.ESP |
| e6180 | 20 69 73 20 75 73 65 64 20 74 6f 20 70 72 6f 76 69 64 65 20 63 6f 6e 66 69 64 65 6e 74 69 61 6c | .is.used.to.provide.confidential |
| e61a0 | 69 74 79 2c 20 64 61 74 61 20 6f 72 69 67 69 6e 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2c | ity,.data.origin.authentication, |
| e61c0 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 6c 65 73 73 20 69 6e 74 65 67 72 69 74 79 2c 20 61 6e 20 61 6e | .connectionless.integrity,.an.an |
| e61e0 | 74 69 2d 72 65 70 6c 61 79 20 73 65 72 76 69 63 65 20 28 61 20 66 6f 72 6d 20 6f 66 20 70 61 72 | ti-replay.service.(a.form.of.par |
| e6200 | 74 69 61 6c 20 73 65 71 75 65 6e 63 65 20 69 6e 74 65 67 72 69 74 79 29 2c 20 61 6e 64 20 6c 69 | tial.sequence.integrity),.and.li |
| e6220 | 6d 69 74 65 64 20 74 72 61 66 66 69 63 20 66 6c 6f 77 20 63 6f 6e 66 69 64 65 6e 74 69 61 6c 69 | mited.traffic.flow.confidentiali |
| e6240 | 74 79 2e 20 68 74 74 70 73 3a 2f 2f 64 61 74 61 74 72 61 63 6b 65 72 2e 69 65 74 66 2e 6f 72 67 | ty..https://datatracker.ietf.org |
| e6260 | 2f 64 6f 63 2f 68 74 6d 6c 2f 72 66 63 34 33 30 33 00 45 56 50 4e 20 4d 75 6c 74 69 68 6f 6d 69 | /doc/html/rfc4303.EVPN.Multihomi |
| e6280 | 6e 67 00 45 56 50 4e 2d 4d 48 20 69 73 20 69 6e 74 65 6e 64 65 64 20 61 73 20 61 20 72 65 70 6c | ng.EVPN-MH.is.intended.as.a.repl |
| e62a0 | 61 63 65 6d 65 6e 74 20 66 6f 72 20 4d 4c 41 47 20 6f 72 20 41 6e 79 63 61 73 74 20 56 54 45 50 | acement.for.MLAG.or.Anycast.VTEP |
| e62c0 | 73 2e 20 49 6e 20 6d 75 6c 74 69 68 6f 6d 69 6e 67 20 65 61 63 68 20 50 45 20 68 61 73 20 61 6e | s..In.multihoming.each.PE.has.an |
| e62e0 | 20 75 6e 69 71 75 65 20 56 54 45 50 20 61 64 64 72 65 73 73 20 77 68 69 63 68 20 72 65 71 75 69 | .unique.VTEP.address.which.requi |
| e6300 | 72 65 73 20 74 68 65 20 69 6e 74 72 6f 64 75 63 74 69 6f 6e 20 6f 66 20 61 20 6e 65 77 20 64 61 | res.the.introduction.of.a.new.da |
| e6320 | 74 61 70 6c 61 6e 65 20 63 6f 6e 73 74 72 75 63 74 2c 20 4d 41 43 2d 45 43 4d 50 2e 20 48 65 72 | taplane.construct,.MAC-ECMP..Her |
| e6340 | 65 20 61 20 4d 41 43 2f 46 44 42 20 65 6e 74 72 79 20 63 61 6e 20 70 6f 69 6e 74 20 74 6f 20 61 | e.a.MAC/FDB.entry.can.point.to.a |
| e6360 | 20 6c 69 73 74 20 6f 66 20 72 65 6d 6f 74 65 20 50 45 73 2f 56 54 45 50 73 2e 00 45 61 63 68 20 | .list.of.remote.PEs/VTEPs..Each. |
| e6380 | 3a 61 62 62 72 3a 60 41 53 20 28 41 75 74 6f 6e 6f 6d 6f 75 73 20 53 79 73 74 65 6d 29 60 20 68 | :abbr:`AS.(Autonomous.System)`.h |
| e63a0 | 61 73 20 61 6e 20 69 64 65 6e 74 69 66 79 69 6e 67 20 6e 75 6d 62 65 72 20 61 73 73 6f 63 69 61 | as.an.identifying.number.associa |
| e63c0 | 74 65 64 20 77 69 74 68 20 69 74 20 63 61 6c 6c 65 64 20 61 6e 20 3a 61 62 62 72 3a 60 41 53 4e | ted.with.it.called.an.:abbr:`ASN |
| e63e0 | 20 28 41 75 74 6f 6e 6f 6d 6f 75 73 20 53 79 73 74 65 6d 20 4e 75 6d 62 65 72 29 60 2e 20 54 68 | .(Autonomous.System.Number)`..Th |
| e6400 | 69 73 20 69 73 20 61 20 74 77 6f 20 6f 63 74 65 74 20 76 61 6c 75 65 20 72 61 6e 67 69 6e 67 20 | is.is.a.two.octet.value.ranging. |
| e6420 | 69 6e 20 76 61 6c 75 65 20 66 72 6f 6d 20 31 20 74 6f 20 36 35 35 33 35 2e 20 54 68 65 20 41 53 | in.value.from.1.to.65535..The.AS |
| e6440 | 20 6e 75 6d 62 65 72 73 20 36 34 35 31 32 20 74 68 72 6f 75 67 68 20 36 35 35 33 35 20 61 72 65 | .numbers.64512.through.65535.are |
| e6460 | 20 64 65 66 69 6e 65 64 20 61 73 20 70 72 69 76 61 74 65 20 41 53 20 6e 75 6d 62 65 72 73 2e 20 | .defined.as.private.AS.numbers.. |
| e6480 | 50 72 69 76 61 74 65 20 41 53 20 6e 75 6d 62 65 72 73 20 6d 75 73 74 20 6e 6f 74 20 62 65 20 61 | Private.AS.numbers.must.not.be.a |
| e64a0 | 64 76 65 72 74 69 73 65 64 20 6f 6e 20 74 68 65 20 67 6c 6f 62 61 6c 20 49 6e 74 65 72 6e 65 74 | dvertised.on.the.global.Internet |
| e64c0 | 2e 20 54 68 65 20 32 2d 62 79 74 65 20 41 53 20 6e 75 6d 62 65 72 20 72 61 6e 67 65 20 68 61 73 | ..The.2-byte.AS.number.range.has |
| e64e0 | 20 62 65 65 6e 20 65 78 68 61 75 73 74 65 64 2e 20 34 2d 62 79 74 65 20 41 53 20 6e 75 6d 62 65 | .been.exhausted..4-byte.AS.numbe |
| e6500 | 72 73 20 61 72 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 3a 72 66 63 3a 60 36 37 39 33 60 2c | rs.are.specified.in.:rfc:`6793`, |
| e6520 | 20 61 6e 64 20 70 72 6f 76 69 64 65 20 61 20 70 6f 6f 6c 20 6f 66 20 34 32 39 34 39 36 37 32 39 | .and.provide.a.pool.of.429496729 |
| e6540 | 36 20 41 53 20 6e 75 6d 62 65 72 73 2e 00 45 61 63 68 20 4e 65 74 66 69 6c 74 65 72 20 63 6f 6e | 6.AS.numbers..Each.Netfilter.con |
| e6560 | 6e 65 63 74 69 6f 6e 20 69 73 20 75 6e 69 71 75 65 6c 79 20 69 64 65 6e 74 69 66 69 65 64 20 62 | nection.is.uniquely.identified.b |
| e6580 | 79 20 61 20 28 6c 61 79 65 72 2d 33 20 70 72 6f 74 6f 63 6f 6c 2c 20 73 6f 75 72 63 65 20 61 64 | y.a.(layer-3.protocol,.source.ad |
| e65a0 | 64 72 65 73 73 2c 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2c 20 6c 61 79 65 | dress,.destination.address,.laye |
| e65c0 | 72 2d 34 20 70 72 6f 74 6f 63 6f 6c 2c 20 6c 61 79 65 72 2d 34 20 6b 65 79 29 20 74 75 70 6c 65 | r-4.protocol,.layer-4.key).tuple |
| e65e0 | 2e 20 54 68 65 20 6c 61 79 65 72 2d 34 20 6b 65 79 20 64 65 70 65 6e 64 73 20 6f 6e 20 74 68 65 | ..The.layer-4.key.depends.on.the |
| e6600 | 20 74 72 61 6e 73 70 6f 72 74 20 70 72 6f 74 6f 63 6f 6c 3b 20 66 6f 72 20 54 43 50 2f 55 44 50 | .transport.protocol;.for.TCP/UDP |
| e6620 | 20 69 74 20 69 73 20 74 68 65 20 70 6f 72 74 20 6e 75 6d 62 65 72 73 2c 20 66 6f 72 20 74 75 6e | .it.is.the.port.numbers,.for.tun |
| e6640 | 6e 65 6c 73 20 69 74 20 63 61 6e 20 62 65 20 74 68 65 69 72 20 74 75 6e 6e 65 6c 20 49 44 2c 20 | nels.it.can.be.their.tunnel.ID,. |
| e6660 | 62 75 74 20 6f 74 68 65 72 77 69 73 65 20 69 73 20 6a 75 73 74 20 7a 65 72 6f 2c 20 61 73 20 69 | but.otherwise.is.just.zero,.as.i |
| e6680 | 66 20 69 74 20 77 65 72 65 20 6e 6f 74 20 70 61 72 74 20 6f 66 20 74 68 65 20 74 75 70 6c 65 2e | f.it.were.not.part.of.the.tuple. |
| e66a0 | 20 54 6f 20 62 65 20 61 62 6c 65 20 74 6f 20 69 6e 73 70 65 63 74 20 74 68 65 20 54 43 50 20 70 | .To.be.able.to.inspect.the.TCP.p |
| e66c0 | 6f 72 74 20 69 6e 20 61 6c 6c 20 63 61 73 65 73 2c 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 62 | ort.in.all.cases,.packets.will.b |
| e66e0 | 65 20 6d 61 6e 64 61 74 6f 72 69 6c 79 20 64 65 66 72 61 67 6d 65 6e 74 65 64 2e 00 45 61 63 68 | e.mandatorily.defragmented..Each |
| e6700 | 20 56 58 4c 41 4e 20 73 65 67 6d 65 6e 74 20 69 73 20 69 64 65 6e 74 69 66 69 65 64 20 74 68 72 | .VXLAN.segment.is.identified.thr |
| e6720 | 6f 75 67 68 20 61 20 32 34 2d 62 69 74 20 73 65 67 6d 65 6e 74 20 49 44 2c 20 74 65 72 6d 65 64 | ough.a.24-bit.segment.ID,.termed |
| e6740 | 20 74 68 65 20 3a 61 62 62 72 3a 60 56 4e 49 20 28 56 58 4c 41 4e 20 4e 65 74 77 6f 72 6b 20 49 | .the.:abbr:`VNI.(VXLAN.Network.I |
| e6760 | 64 65 6e 74 69 66 69 65 72 20 28 6f 72 20 56 58 4c 41 4e 20 53 65 67 6d 65 6e 74 20 49 44 29 29 | dentifier.(or.VXLAN.Segment.ID)) |
| e6780 | 60 2c 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 75 70 20 74 6f 20 31 36 4d 20 56 58 4c 41 4e 20 73 | `,.This.allows.up.to.16M.VXLAN.s |
| e67a0 | 65 67 6d 65 6e 74 73 20 74 6f 20 63 6f 65 78 69 73 74 20 77 69 74 68 69 6e 20 74 68 65 20 73 61 | egments.to.coexist.within.the.sa |
| e67c0 | 6d 65 20 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 20 64 6f 6d 61 69 6e 2e 00 45 61 63 68 20 62 | me.administrative.domain..Each.b |
| e67e0 | 72 69 64 67 65 20 68 61 73 20 61 20 72 65 6c 61 74 69 76 65 20 70 72 69 6f 72 69 74 79 20 61 6e | ridge.has.a.relative.priority.an |
| e6800 | 64 20 63 6f 73 74 2e 20 45 61 63 68 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 73 73 6f 63 69 | d.cost..Each.interface.is.associ |
| e6820 | 61 74 65 64 20 77 69 74 68 20 61 20 70 6f 72 74 20 28 6e 75 6d 62 65 72 29 20 69 6e 20 74 68 65 | ated.with.a.port.(number).in.the |
| e6840 | 20 53 54 50 20 63 6f 64 65 2e 20 45 61 63 68 20 68 61 73 20 61 20 70 72 69 6f 72 69 74 79 20 61 | .STP.code..Each.has.a.priority.a |
| e6860 | 6e 64 20 61 20 63 6f 73 74 2c 20 74 68 61 74 20 69 73 20 75 73 65 64 20 74 6f 20 64 65 63 69 64 | nd.a.cost,.that.is.used.to.decid |
| e6880 | 65 20 77 68 69 63 68 20 69 73 20 74 68 65 20 73 68 6f 72 74 65 73 74 20 70 61 74 68 20 74 6f 20 | e.which.is.the.shortest.path.to. |
| e68a0 | 66 6f 72 77 61 72 64 20 61 20 70 61 63 6b 65 74 2e 20 54 68 65 20 6c 6f 77 65 73 74 20 63 6f 73 | forward.a.packet..The.lowest.cos |
| e68c0 | 74 20 70 61 74 68 20 69 73 20 61 6c 77 61 79 73 20 75 73 65 64 20 75 6e 6c 65 73 73 20 74 68 65 | t.path.is.always.used.unless.the |
| e68e0 | 20 6f 74 68 65 72 20 70 61 74 68 20 69 73 20 64 6f 77 6e 2e 20 49 66 20 79 6f 75 20 68 61 76 65 | .other.path.is.down..If.you.have |
| e6900 | 20 6d 75 6c 74 69 70 6c 65 20 62 72 69 64 67 65 73 20 61 6e 64 20 69 6e 74 65 72 66 61 63 65 73 | .multiple.bridges.and.interfaces |
| e6920 | 20 74 68 65 6e 20 79 6f 75 20 6d 61 79 20 6e 65 65 64 20 74 6f 20 61 64 6a 75 73 74 20 74 68 65 | .then.you.may.need.to.adjust.the |
| e6940 | 20 70 72 69 6f 72 69 74 69 65 73 20 74 6f 20 61 63 68 69 65 76 65 20 6f 70 74 69 6d 75 6d 20 70 | .priorities.to.achieve.optimum.p |
| e6960 | 65 72 66 6f 72 6d 61 6e 63 65 2e 00 45 61 63 68 20 62 72 6f 61 64 63 61 73 74 20 72 65 6c 61 79 | erformance..Each.broadcast.relay |
| e6980 | 20 69 6e 73 74 61 6e 63 65 20 63 61 6e 20 62 65 20 69 6e 64 69 76 69 64 75 61 6c 6c 79 20 64 69 | .instance.can.be.individually.di |
| e69a0 | 73 61 62 6c 65 64 20 77 69 74 68 6f 75 74 20 64 65 6c 65 74 69 6e 67 20 74 68 65 20 63 6f 6e 66 | sabled.without.deleting.the.conf |
| e69c0 | 69 67 75 72 65 64 20 6e 6f 64 65 20 62 79 20 75 73 69 6e 67 20 74 68 65 20 66 6f 6c 6c 6f 77 69 | igured.node.by.using.the.followi |
| e69e0 | 6e 67 20 63 6f 6d 6d 61 6e 64 3a 00 45 61 63 68 20 63 6c 61 73 73 20 63 61 6e 20 68 61 76 65 20 | ng.command:.Each.class.can.have. |
| e6a00 | 61 20 67 75 61 72 61 6e 74 65 65 64 20 70 61 72 74 20 6f 66 20 74 68 65 20 74 6f 74 61 6c 20 62 | a.guaranteed.part.of.the.total.b |
| e6a20 | 61 6e 64 77 69 64 74 68 20 64 65 66 69 6e 65 64 20 66 6f 72 20 74 68 65 20 77 68 6f 6c 65 20 70 | andwidth.defined.for.the.whole.p |
| e6a40 | 6f 6c 69 63 79 2c 20 73 6f 20 61 6c 6c 20 74 68 6f 73 65 20 73 68 61 72 65 73 20 74 6f 67 65 74 | olicy,.so.all.those.shares.toget |
| e6a60 | 68 65 72 20 73 68 6f 75 6c 64 20 6e 6f 74 20 62 65 20 68 69 67 68 65 72 20 74 68 61 6e 20 74 68 | her.should.not.be.higher.than.th |
| e6a80 | 65 20 70 6f 6c 69 63 79 27 73 20 77 68 6f 6c 65 20 62 61 6e 64 77 69 64 74 68 2e 00 45 61 63 68 | e.policy's.whole.bandwidth..Each |
| e6aa0 | 20 63 6c 61 73 73 20 69 73 20 61 73 73 69 67 6e 65 64 20 61 20 64 65 66 69 63 69 74 20 63 6f 75 | .class.is.assigned.a.deficit.cou |
| e6ac0 | 6e 74 65 72 20 28 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 62 79 74 65 73 20 74 68 61 74 20 61 | nter.(the.number.of.bytes.that.a |
| e6ae0 | 20 66 6c 6f 77 20 69 73 20 61 6c 6c 6f 77 65 64 20 74 6f 20 74 72 61 6e 73 6d 69 74 20 77 68 65 | .flow.is.allowed.to.transmit.whe |
| e6b00 | 6e 20 69 74 20 69 73 20 69 74 73 20 74 75 72 6e 29 20 69 6e 69 74 69 61 6c 69 7a 65 64 20 74 6f | n.it.is.its.turn).initialized.to |
| e6b20 | 20 71 75 61 6e 74 75 6d 2e 20 51 75 61 6e 74 75 6d 20 69 73 20 61 20 70 61 72 61 6d 65 74 65 72 | .quantum..Quantum.is.a.parameter |
| e6b40 | 20 79 6f 75 20 63 6f 6e 66 69 67 75 72 65 20 77 68 69 63 68 20 61 63 74 73 20 6c 69 6b 65 20 61 | .you.configure.which.acts.like.a |
| e6b60 | 20 63 72 65 64 69 74 20 6f 66 20 66 69 78 20 62 79 74 65 73 20 74 68 65 20 63 6f 75 6e 74 65 72 | .credit.of.fix.bytes.the.counter |
| e6b80 | 20 72 65 63 65 69 76 65 73 20 6f 6e 20 65 61 63 68 20 72 6f 75 6e 64 2e 20 54 68 65 6e 20 74 68 | .receives.on.each.round..Then.th |
| e6ba0 | 65 20 52 6f 75 6e 64 2d 52 6f 62 69 6e 20 70 6f 6c 69 63 79 20 73 74 61 72 74 73 20 6d 6f 76 69 | e.Round-Robin.policy.starts.movi |
| e6bc0 | 6e 67 20 69 74 73 20 52 6f 75 6e 64 20 52 6f 62 69 6e 20 70 6f 69 6e 74 65 72 20 74 68 72 6f 75 | ng.its.Round.Robin.pointer.throu |
| e6be0 | 67 68 20 74 68 65 20 71 75 65 75 65 73 2e 20 49 66 20 74 68 65 20 64 65 66 69 63 69 74 20 63 6f | gh.the.queues..If.the.deficit.co |
| e6c00 | 75 6e 74 65 72 20 69 73 20 67 72 65 61 74 65 72 20 74 68 61 6e 20 74 68 65 20 70 61 63 6b 65 74 | unter.is.greater.than.the.packet |
| e6c20 | 27 73 20 73 69 7a 65 20 61 74 20 74 68 65 20 68 65 61 64 20 6f 66 20 74 68 65 20 71 75 65 75 65 | 's.size.at.the.head.of.the.queue |
| e6c40 | 2c 20 74 68 69 73 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 61 6e 64 20 74 | ,.this.packet.will.be.sent.and.t |
| e6c60 | 68 65 20 76 61 6c 75 65 20 6f 66 20 74 68 65 20 63 6f 75 6e 74 65 72 20 77 69 6c 6c 20 62 65 20 | he.value.of.the.counter.will.be. |
| e6c80 | 64 65 63 72 65 6d 65 6e 74 65 64 20 62 79 20 74 68 65 20 70 61 63 6b 65 74 20 73 69 7a 65 2e 20 | decremented.by.the.packet.size.. |
| e6ca0 | 54 68 65 6e 2c 20 74 68 65 20 73 69 7a 65 20 6f 66 20 74 68 65 20 6e 65 78 74 20 70 61 63 6b 65 | Then,.the.size.of.the.next.packe |
| e6cc0 | 74 20 77 69 6c 6c 20 62 65 20 63 6f 6d 70 61 72 65 64 20 74 6f 20 74 68 65 20 63 6f 75 6e 74 65 | t.will.be.compared.to.the.counte |
| e6ce0 | 72 20 76 61 6c 75 65 20 61 67 61 69 6e 2c 20 72 65 70 65 61 74 69 6e 67 20 74 68 65 20 70 72 6f | r.value.again,.repeating.the.pro |
| e6d00 | 63 65 73 73 2e 20 4f 6e 63 65 20 74 68 65 20 71 75 65 75 65 20 69 73 20 65 6d 70 74 79 20 6f 72 | cess..Once.the.queue.is.empty.or |
| e6d20 | 20 74 68 65 20 76 61 6c 75 65 20 6f 66 20 74 68 65 20 63 6f 75 6e 74 65 72 20 69 73 20 69 6e 73 | .the.value.of.the.counter.is.ins |
| e6d40 | 75 66 66 69 63 69 65 6e 74 2c 20 74 68 65 20 52 6f 75 6e 64 2d 52 6f 62 69 6e 20 70 6f 69 6e 74 | ufficient,.the.Round-Robin.point |
| e6d60 | 65 72 20 77 69 6c 6c 20 6d 6f 76 65 20 74 6f 20 74 68 65 20 6e 65 78 74 20 71 75 65 75 65 2e 20 | er.will.move.to.the.next.queue.. |
| e6d80 | 49 66 20 74 68 65 20 71 75 65 75 65 20 69 73 20 65 6d 70 74 79 2c 20 74 68 65 20 76 61 6c 75 65 | If.the.queue.is.empty,.the.value |
| e6da0 | 20 6f 66 20 74 68 65 20 64 65 66 69 63 69 74 20 63 6f 75 6e 74 65 72 20 69 73 20 72 65 73 65 74 | .of.the.deficit.counter.is.reset |
| e6dc0 | 20 74 6f 20 30 2e 00 45 61 63 68 20 64 79 6e 61 6d 69 63 20 4e 48 53 20 77 69 6c 6c 20 67 65 74 | .to.0..Each.dynamic.NHS.will.get |
| e6de0 | 20 61 20 70 65 65 72 20 65 6e 74 72 79 20 77 69 74 68 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 | .a.peer.entry.with.the.configure |
| e6e00 | 64 20 6e 65 74 77 6f 72 6b 20 61 64 64 72 65 73 73 20 61 6e 64 20 74 68 65 20 64 69 73 63 6f 76 | d.network.address.and.the.discov |
| e6e20 | 65 72 65 64 20 4e 42 4d 41 20 61 64 64 72 65 73 73 2e 00 45 61 63 68 20 68 65 61 6c 74 68 20 63 | ered.NBMA.address..Each.health.c |
| e6e40 | 68 65 63 6b 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 69 74 73 20 6f 77 6e 20 74 65 | heck.is.configured.in.its.own.te |
| e6e60 | 73 74 2c 20 74 65 73 74 73 20 61 72 65 20 6e 75 6d 62 65 72 65 64 20 61 6e 64 20 70 72 6f 63 65 | st,.tests.are.numbered.and.proce |
| e6e80 | 73 73 65 64 20 69 6e 20 6e 75 6d 65 72 69 63 20 6f 72 64 65 72 2e 20 46 6f 72 20 6d 75 6c 74 69 | ssed.in.numeric.order..For.multi |
| e6ea0 | 20 74 61 72 67 65 74 20 68 65 61 6c 74 68 20 63 68 65 63 6b 69 6e 67 20 6d 75 6c 74 69 70 6c 65 | .target.health.checking.multiple |
| e6ec0 | 20 74 65 73 74 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 3a 00 45 61 63 68 20 69 6e 64 69 | .tests.can.be.defined:.Each.indi |
| e6ee0 | 76 69 64 75 61 6c 20 63 6f 6e 66 69 67 75 72 65 64 20 63 6f 6e 73 6f 6c 65 2d 73 65 72 76 65 72 | vidual.configured.console-server |
| e6f00 | 20 64 65 76 69 63 65 20 63 61 6e 20 62 65 20 64 69 72 65 63 74 6c 79 20 65 78 70 6f 73 65 64 20 | .device.can.be.directly.exposed. |
| e6f20 | 74 6f 20 74 68 65 20 6f 75 74 73 69 64 65 20 77 6f 72 6c 64 2e 20 41 20 75 73 65 72 20 63 61 6e | to.the.outside.world..A.user.can |
| e6f40 | 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 74 20 76 69 61 20 53 53 48 20 74 6f 20 74 68 65 | .directly.connect.via.SSH.to.the |
| e6f60 | 20 63 6f 6e 66 69 67 75 72 65 64 20 70 6f 72 74 2e 00 45 61 63 68 20 6e 6f 64 65 20 28 48 75 62 | .configured.port..Each.node.(Hub |
| e6f80 | 20 61 6e 64 20 53 70 6f 6b 65 29 20 75 73 65 73 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 66 | .and.Spoke).uses.an.IP.address.f |
| e6fa0 | 72 6f 6d 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 31 37 32 2e 31 36 2e 32 35 33 2e 31 32 38 2f 32 | rom.the.network.172.16.253.128/2 |
| e6fc0 | 39 2e 00 45 61 63 68 20 6f 66 20 74 68 65 20 69 6e 73 74 61 6c 6c 20 63 6f 6d 6d 61 6e 64 20 73 | 9..Each.of.the.install.command.s |
| e6fe0 | 68 6f 75 6c 64 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 | hould.be.applied.to.the.configur |
| e7000 | 61 74 69 6f 6e 20 61 6e 64 20 63 6f 6d 6d 69 74 65 64 20 62 65 66 6f 72 65 20 75 73 69 6e 67 20 | ation.and.commited.before.using. |
| e7020 | 75 6e 64 65 72 20 74 68 65 20 6f 70 65 6e 63 6f 6e 6e 65 63 74 20 63 6f 6e 66 69 67 75 72 61 74 | under.the.openconnect.configurat |
| e7040 | 69 6f 6e 3a 00 45 61 63 68 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 70 65 65 72 20 68 61 73 20 | ion:.Each.site-to-site.peer.has. |
| e7060 | 74 68 65 20 6e 65 78 74 20 6f 70 74 69 6f 6e 73 3a 00 45 61 63 68 20 73 75 62 73 63 72 69 62 65 | the.next.options:.Each.subscribe |
| e7080 | 72 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 61 20 6d 61 78 69 6d 75 6d 20 6f 66 | r.will.be.allocated.a.maximum.of |
| e70a0 | 20 32 30 30 30 20 70 6f 72 74 73 20 66 72 6f 6d 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 70 6f | .2000.ports.from.the.external.po |
| e70c0 | 6f 6c 2e 00 45 65 6e 61 62 6c 65 73 20 74 68 65 20 47 65 6e 65 72 69 63 20 50 72 6f 74 6f 63 6f | ol..Eenables.the.Generic.Protoco |
| e70e0 | 6c 20 65 78 74 65 6e 73 69 6f 6e 20 28 56 58 4c 41 4e 2d 47 50 45 29 2e 20 43 75 72 72 65 6e 74 | l.extension.(VXLAN-GPE)..Current |
| e7100 | 6c 79 2c 20 74 68 69 73 20 69 73 20 6f 6e 6c 79 20 73 75 70 70 6f 72 74 65 64 20 74 6f 67 65 74 | ly,.this.is.only.supported.toget |
| e7120 | 68 65 72 20 77 69 74 68 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6b 65 79 77 6f 72 64 2e 00 45 | her.with.the.external.keyword..E |
| e7140 | 6d 61 69 6c 20 61 64 64 72 65 73 73 20 74 6f 20 61 73 73 6f 63 69 61 74 65 20 77 69 74 68 20 63 | mail.address.to.associate.with.c |
| e7160 | 65 72 74 69 66 69 63 61 74 65 00 45 6d 61 69 6c 20 75 73 65 64 20 66 6f 72 20 72 65 67 69 73 74 | ertificate.Email.used.for.regist |
| e7180 | 72 61 74 69 6f 6e 20 61 6e 64 20 72 65 63 6f 76 65 72 79 20 63 6f 6e 74 61 63 74 2e 00 45 6d 62 | ration.and.recovery.contact..Emb |
| e71a0 | 65 64 64 69 6e 67 20 6f 6e 65 20 70 6f 6c 69 63 79 20 69 6e 74 6f 20 61 6e 6f 74 68 65 72 20 6f | edding.one.policy.into.another.o |
| e71c0 | 6e 65 00 45 6d 65 72 67 65 6e 63 79 00 45 6e 61 62 6c 65 20 3a 61 62 62 72 3a 60 42 4d 50 20 28 | ne.Emergency.Enable.:abbr:`BMP.( |
| e71e0 | 42 47 50 20 4d 6f 6e 69 74 6f 72 69 6e 67 20 50 72 6f 74 6f 63 6f 6c 29 60 20 73 75 70 70 6f 72 | BGP.Monitoring.Protocol)`.suppor |
| e7200 | 74 00 45 6e 61 62 6c 65 20 42 46 44 20 66 6f 72 20 49 53 49 53 20 6f 6e 20 61 6e 20 69 6e 74 65 | t.Enable.BFD.for.ISIS.on.an.inte |
| e7220 | 72 66 61 63 65 00 45 6e 61 62 6c 65 20 42 46 44 20 66 6f 72 20 4f 53 50 46 20 6f 6e 20 61 6e 20 | rface.Enable.BFD.for.OSPF.on.an. |
| e7240 | 69 6e 74 65 72 66 61 63 65 00 45 6e 61 62 6c 65 20 42 46 44 20 66 6f 72 20 4f 53 50 46 76 33 20 | interface.Enable.BFD.for.OSPFv3. |
| e7260 | 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 00 45 6e 61 62 6c 65 20 42 46 44 20 69 6e 20 42 47 | on.an.interface.Enable.BFD.in.BG |
| e7280 | 50 00 45 6e 61 62 6c 65 20 42 46 44 20 69 6e 20 49 53 49 53 00 45 6e 61 62 6c 65 20 42 46 44 20 | P.Enable.BFD.in.ISIS.Enable.BFD. |
| e72a0 | 69 6e 20 4f 53 50 46 00 45 6e 61 62 6c 65 20 42 46 44 20 6f 6e 20 61 20 42 47 50 20 70 65 65 72 | in.OSPF.Enable.BFD.on.a.BGP.peer |
| e72c0 | 20 67 72 6f 75 70 00 45 6e 61 62 6c 65 20 42 46 44 20 6f 6e 20 61 20 73 69 6e 67 6c 65 20 42 47 | .group.Enable.BFD.on.a.single.BG |
| e72e0 | 50 20 6e 65 69 67 68 62 6f 72 00 45 6e 61 62 6c 65 20 44 48 43 50 20 66 61 69 6c 6f 76 65 72 20 | P.neighbor.Enable.DHCP.failover. |
| e7300 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 74 68 69 73 20 61 64 64 72 65 73 73 20 70 | configuration.for.this.address.p |
| e7320 | 6f 6f 6c 2e 00 45 6e 61 62 6c 65 20 47 72 61 70 68 51 4c 20 53 63 68 65 6d 61 20 69 6e 74 72 6f | ool..Enable.GraphQL.Schema.intro |
| e7340 | 73 70 65 63 74 69 6f 6e 2e 00 45 6e 61 62 6c 65 20 48 54 2d 64 65 6c 61 79 65 64 20 42 6c 6f 63 | spection..Enable.HT-delayed.Bloc |
| e7360 | 6b 20 41 63 6b 20 60 60 5b 44 45 4c 41 59 45 44 2d 42 41 5d 60 60 00 45 6e 61 62 6c 65 20 49 43 | k.Ack.``[DELAYED-BA]``.Enable.IC |
| e7380 | 4d 50 20 52 6f 75 74 65 72 20 44 69 73 63 6f 76 65 72 79 20 50 72 6f 74 6f 63 6f 6c 20 73 75 70 | MP.Router.Discovery.Protocol.sup |
| e73a0 | 70 6f 72 74 00 45 6e 61 62 6c 65 20 49 47 4d 50 20 61 6e 64 20 4d 4c 44 20 71 75 65 72 69 65 72 | port.Enable.IGMP.and.MLD.querier |
| e73c0 | 2e 00 45 6e 61 62 6c 65 20 49 47 4d 50 20 61 6e 64 20 4d 4c 44 20 73 6e 6f 6f 70 69 6e 67 2e 00 | ..Enable.IGMP.and.MLD.snooping.. |
| e73e0 | 45 6e 61 62 6c 65 20 49 50 20 66 6f 72 77 61 72 64 69 6e 67 20 6f 6e 20 63 6c 69 65 6e 74 00 45 | Enable.IP.forwarding.on.client.E |
| e7400 | 6e 61 62 6c 65 20 49 53 2d 49 53 00 45 6e 61 62 6c 65 20 49 53 2d 49 53 20 61 6e 64 20 49 47 50 | nable.IS-IS.Enable.IS-IS.and.IGP |
| e7420 | 2d 4c 44 50 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 00 45 6e 61 62 6c 65 20 49 53 2d 49 | -LDP.synchronization.Enable.IS-I |
| e7440 | 53 20 61 6e 64 20 72 65 64 69 73 74 72 69 62 75 74 65 20 72 6f 75 74 65 73 20 6e 6f 74 20 6e 61 | S.and.redistribute.routes.not.na |
| e7460 | 74 69 76 65 6c 79 20 69 6e 20 49 53 2d 49 53 00 45 6e 61 62 6c 65 20 49 53 2d 49 53 20 77 69 74 | tively.in.IS-IS.Enable.IS-IS.wit |
| e7480 | 68 20 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 28 45 78 70 65 72 69 6d 65 6e 74 61 6c 29 | h.Segment.Routing.(Experimental) |
| e74a0 | 00 45 6e 61 62 6c 65 20 4c 2d 53 49 47 20 54 58 4f 50 20 70 72 6f 74 65 63 74 69 6f 6e 20 63 61 | .Enable.L-SIG.TXOP.protection.ca |
| e74c0 | 70 61 62 69 6c 69 74 79 00 45 6e 61 62 6c 65 20 4c 44 50 43 20 28 4c 6f 77 20 44 65 6e 73 69 74 | pability.Enable.LDPC.(Low.Densit |
| e74e0 | 79 20 50 61 72 69 74 79 20 43 68 65 63 6b 29 20 63 6f 64 69 6e 67 20 63 61 70 61 62 69 6c 69 74 | y.Parity.Check).coding.capabilit |
| e7500 | 79 00 45 6e 61 62 6c 65 20 4c 44 50 43 20 63 6f 64 69 6e 67 20 63 61 70 61 62 69 6c 69 74 79 00 | y.Enable.LDPC.coding.capability. |
| e7520 | 45 6e 61 62 6c 65 20 4c 4c 44 50 20 73 65 72 76 69 63 65 00 45 6e 61 62 6c 65 20 4f 53 50 46 00 | Enable.LLDP.service.Enable.OSPF. |
| e7540 | 45 6e 61 62 6c 65 20 4f 53 50 46 20 61 6e 64 20 49 47 50 2d 4c 44 50 20 73 79 6e 63 68 72 6f 6e | Enable.OSPF.and.IGP-LDP.synchron |
| e7560 | 69 7a 61 74 69 6f 6e 3a 00 45 6e 61 62 6c 65 20 4f 53 50 46 20 77 69 74 68 20 53 65 67 6d 65 6e | ization:.Enable.OSPF.with.Segmen |
| e7580 | 74 20 52 6f 75 74 69 6e 67 20 28 45 78 70 65 72 69 6d 65 6e 74 61 6c 29 3a 00 45 6e 61 62 6c 65 | t.Routing.(Experimental):.Enable |
| e75a0 | 20 4f 53 50 46 20 77 69 74 68 20 72 6f 75 74 65 20 72 65 64 69 73 74 72 69 62 75 74 69 6f 6e 20 | .OSPF.with.route.redistribution. |
| e75c0 | 6f 66 20 74 68 65 20 6c 6f 6f 70 62 61 63 6b 20 61 6e 64 20 64 65 66 61 75 6c 74 20 6f 72 69 67 | of.the.loopback.and.default.orig |
| e75e0 | 69 6e 61 74 65 3a 00 45 6e 61 62 6c 65 20 4f 54 50 20 32 46 41 20 66 6f 72 20 75 73 65 72 20 60 | inate:.Enable.OTP.2FA.for.user.` |
| e7600 | 75 73 65 72 6e 61 6d 65 60 20 77 69 74 68 20 64 65 66 61 75 6c 74 20 73 65 74 74 69 6e 67 73 2c | username`.with.default.settings, |
| e7620 | 20 75 73 69 6e 67 20 74 68 65 20 42 41 53 45 33 32 20 65 6e 63 6f 64 65 64 20 32 46 41 2f 4d 46 | .using.the.BASE32.encoded.2FA/MF |
| e7640 | 41 20 6b 65 79 20 73 70 65 63 69 66 69 65 64 20 62 79 20 60 3c 6b 65 79 3e 60 2e 00 45 6e 61 62 | A.key.specified.by.`<key>`..Enab |
| e7660 | 6c 65 20 4f 70 65 6e 46 61 62 72 69 63 00 45 6e 61 62 6c 65 20 4f 70 65 6e 56 50 4e 20 44 61 74 | le.OpenFabric.Enable.OpenVPN.Dat |
| e7680 | 61 20 43 68 61 6e 6e 65 6c 20 4f 66 66 6c 6f 61 64 20 66 65 61 74 75 72 65 20 62 79 20 6c 6f 61 | a.Channel.Offload.feature.by.loa |
| e76a0 | 64 69 6e 67 20 74 68 65 20 61 70 70 72 6f 70 72 69 61 74 65 20 6b 65 72 6e 65 6c 20 6d 6f 64 75 | ding.the.appropriate.kernel.modu |
| e76c0 | 6c 65 2e 00 45 6e 61 62 6c 65 20 50 52 45 46 36 34 20 6f 70 74 69 6f 6e 20 61 73 20 6f 75 74 6c | le..Enable.PREF64.option.as.outl |
| e76e0 | 69 6e 65 64 20 69 6e 20 3a 72 66 63 3a 60 38 37 38 31 60 2e 00 45 6e 61 62 6c 65 20 52 45 53 54 | ined.in.:rfc:`8781`..Enable.REST |
| e7700 | 20 41 50 49 00 45 6e 61 62 6c 65 20 53 4e 4d 50 00 45 6e 61 62 6c 65 20 53 4e 4d 50 20 71 75 65 | .API.Enable.SNMP.Enable.SNMP.que |
| e7720 | 72 69 65 73 20 6f 66 20 74 68 65 20 4c 4c 44 50 20 64 61 74 61 62 61 73 65 00 45 6e 61 62 6c 65 | ries.of.the.LLDP.database.Enable |
| e7740 | 20 53 4e 4d 50 20 73 75 70 70 6f 72 74 20 66 6f 72 20 61 6e 20 69 6e 64 69 76 69 64 75 61 6c 20 | .SNMP.support.for.an.individual. |
| e7760 | 72 6f 75 74 69 6e 67 20 64 61 65 6d 6f 6e 2e 00 45 6e 61 62 6c 65 20 53 54 50 00 45 6e 61 62 6c | routing.daemon..Enable.STP.Enabl |
| e7780 | 65 20 54 46 54 50 20 73 65 72 76 69 63 65 20 62 79 20 73 70 65 63 69 66 79 69 6e 67 20 74 68 65 | e.TFTP.service.by.specifying.the |
| e77a0 | 20 60 3c 64 69 72 65 63 74 6f 72 79 3e 60 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 75 73 65 | .`<directory>`.which.will.be.use |
| e77c0 | 64 20 74 6f 20 73 65 72 76 65 20 66 69 6c 65 73 2e 00 45 6e 61 62 6c 65 20 56 48 54 20 54 58 4f | d.to.serve.files..Enable.VHT.TXO |
| e77e0 | 50 20 50 6f 77 65 72 20 53 61 76 65 20 4d 6f 64 65 00 45 6e 61 62 6c 65 20 56 4c 41 4e 2d 41 77 | P.Power.Save.Mode.Enable.VLAN-Aw |
| e7800 | 61 72 65 20 42 72 69 64 67 65 00 45 6e 61 62 6c 65 20 61 75 74 6f 6d 61 74 69 63 20 72 65 64 69 | are.Bridge.Enable.automatic.redi |
| e7820 | 72 65 63 74 20 66 72 6f 6d 20 68 74 74 70 20 74 6f 20 68 74 74 70 73 2e 00 45 6e 61 62 6c 65 20 | rect.from.http.to.https..Enable. |
| e7840 | 63 72 65 61 74 69 6f 6e 20 6f 66 20 73 68 6f 72 74 63 75 74 20 72 6f 75 74 65 73 2e 00 45 6e 61 | creation.of.shortcut.routes..Ena |
| e7860 | 62 6c 65 20 64 69 66 66 65 72 65 6e 74 20 74 79 70 65 73 20 6f 66 20 68 61 72 64 77 61 72 65 20 | ble.different.types.of.hardware. |
| e7880 | 6f 66 66 6c 6f 61 64 69 6e 67 20 6f 6e 20 74 68 65 20 67 69 76 65 6e 20 4e 49 43 2e 00 45 6e 61 | offloading.on.the.given.NIC..Ena |
| e78a0 | 62 6c 65 20 67 69 76 65 6e 20 6c 65 67 61 63 79 20 70 72 6f 74 6f 63 6f 6c 20 6f 6e 20 74 68 69 | ble.given.legacy.protocol.on.thi |
| e78c0 | 73 20 4c 4c 44 50 20 69 6e 73 74 61 6e 63 65 2e 20 4c 65 67 61 63 79 20 70 72 6f 74 6f 63 6f 6c | s.LLDP.instance..Legacy.protocol |
| e78e0 | 73 20 69 6e 63 6c 75 64 65 3a 00 45 6e 61 62 6c 65 20 6c 61 79 65 72 20 37 20 48 54 54 50 20 68 | s.include:.Enable.layer.7.HTTP.h |
| e7900 | 65 61 6c 74 68 20 63 68 65 63 6b 00 45 6e 61 62 6c 65 20 6c 6f 67 67 69 6e 67 20 66 6f 72 20 74 | ealth.check.Enable.logging.for.t |
| e7920 | 68 65 20 6d 61 74 63 68 65 64 20 70 61 63 6b 65 74 2e 20 49 66 20 74 68 69 73 20 63 6f 6e 66 69 | he.matched.packet..If.this.confi |
| e7940 | 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6e 6f 74 20 70 72 65 73 65 6e 74 2c | guration.command.is.not.present, |
| e7960 | 20 74 68 65 6e 20 6c 6f 67 20 69 73 20 6e 6f 74 20 65 6e 61 62 6c 65 64 2e 00 45 6e 61 62 6c 65 | .then.log.is.not.enabled..Enable |
| e7980 | 20 6c 6f 67 67 69 6e 67 20 66 6f 72 20 74 68 65 20 6d 61 74 63 68 65 64 20 70 61 63 6b 65 74 2e | .logging.for.the.matched.packet. |
| e79a0 | 20 49 66 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 20 69 | .If.this.configuration.command.i |
| e79c0 | 73 20 6e 6f 74 20 70 72 65 73 65 6e 74 2c 20 74 68 65 6e 20 74 68 65 20 6c 6f 67 20 69 73 20 6e | s.not.present,.then.the.log.is.n |
| e79e0 | 6f 74 20 65 6e 61 62 6c 65 64 2e 00 45 6e 61 62 6c 65 20 6c 6f 67 67 69 6e 67 20 6f 66 20 49 50 | ot.enabled..Enable.logging.of.IP |
| e7a00 | 20 61 64 64 72 65 73 73 20 61 6e 64 20 70 6f 72 74 73 20 61 6c 6c 6f 63 61 74 69 6f 6e 73 2e 00 | .address.and.ports.allocations.. |
| e7a20 | 45 6e 61 62 6c 65 20 6f 72 20 44 69 73 61 62 6c 65 20 56 79 4f 53 20 74 6f 20 62 65 20 3a 72 66 | Enable.or.Disable.VyOS.to.be.:rf |
| e7a40 | 63 3a 60 31 33 33 37 60 20 63 6f 6e 66 6f 72 6d 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 | c:`1337`.conform..The.following. |
| e7a60 | 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 | system.parameter.will.be.altered |
| e7a80 | 3a 00 45 6e 61 62 6c 65 20 6f 72 20 44 69 73 61 62 6c 65 20 56 79 4f 53 20 74 6f 20 62 65 20 3a | :.Enable.or.Disable.VyOS.to.be.: |
| e7aa0 | 72 66 63 3a 60 31 33 33 37 60 20 63 6f 6e 66 6f 72 6d 61 6e 74 2e 20 54 68 65 20 66 6f 6c 6c 6f | rfc:`1337`.conformant..The.follo |
| e7ac0 | 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c | wing.system.parameter.will.be.al |
| e7ae0 | 74 65 72 65 64 3a 00 45 6e 61 62 6c 65 20 6f 72 20 44 69 73 61 62 6c 65 20 69 66 20 56 79 4f 53 | tered:.Enable.or.Disable.if.VyOS |
| e7b00 | 20 75 73 65 20 49 50 76 34 20 54 43 50 20 53 59 4e 20 43 6f 6f 6b 69 65 73 2e 20 54 68 65 20 66 | .use.IPv4.TCP.SYN.Cookies..The.f |
| e7b20 | 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 | ollowing.system.parameter.will.b |
| e7b40 | 65 20 61 6c 74 65 72 65 64 3a 00 45 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 49 43 4d | e.altered:.Enable.or.disable.ICM |
| e7b60 | 50 76 34 20 6f 72 20 49 43 4d 50 76 36 20 72 65 64 69 72 65 63 74 20 6d 65 73 73 61 67 65 73 20 | Pv4.or.ICMPv6.redirect.messages. |
| e7b80 | 62 65 69 6e 67 20 61 63 63 65 70 74 65 64 20 62 79 20 56 79 4f 53 2e 20 54 68 65 20 66 6f 6c 6c | being.accepted.by.VyOS..The.foll |
| e7ba0 | 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 73 20 77 69 6c 6c 20 62 65 20 | owing.system.parameters.will.be. |
| e7bc0 | 61 6c 74 65 72 65 64 3a 00 45 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 49 43 4d 50 76 | altered:.Enable.or.disable.ICMPv |
| e7be0 | 34 20 72 65 64 69 72 65 63 74 20 6d 65 73 73 61 67 65 73 20 62 65 69 6e 67 20 73 65 6e 74 20 62 | 4.redirect.messages.being.sent.b |
| e7c00 | 79 20 56 79 4f 53 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 | y.VyOS.The.following.system.para |
| e7c20 | 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 45 6e 61 62 6c 65 20 6f 72 | meter.will.be.altered:.Enable.or |
| e7c40 | 20 64 69 73 61 62 6c 65 20 69 66 20 56 79 4f 53 20 75 73 65 73 20 49 50 76 34 20 54 43 50 20 53 | .disable.if.VyOS.uses.IPv4.TCP.S |
| e7c60 | 59 4e 20 43 6f 6f 6b 69 65 73 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d | YN.Cookies..The.following.system |
| e7c80 | 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 45 6e 61 62 | .parameter.will.be.altered:.Enab |
| e7ca0 | 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 6c 6f 67 67 69 6e 67 20 66 6f 72 20 74 68 65 20 6d 61 | le.or.disable.logging.for.the.ma |
| e7cc0 | 74 63 68 65 64 20 70 61 63 6b 65 74 2e 00 45 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 | tched.packet..Enable.or.disable. |
| e7ce0 | 74 68 65 20 6c 6f 67 67 69 6e 67 20 6f 66 20 6d 61 72 74 69 61 6e 20 49 50 76 34 20 70 61 63 6b | the.logging.of.martian.IPv4.pack |
| e7d00 | 65 74 73 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 | ets..The.following.system.parame |
| e7d20 | 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 45 6e 61 62 6c 65 20 6f 73 70 66 | ter.will.be.altered:.Enable.ospf |
| e7d40 | 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 73 65 74 20 61 73 73 6f 63 69 61 | .on.an.interface.and.set.associa |
| e7d60 | 74 65 64 20 61 72 65 61 2e 00 45 6e 61 62 6c 65 20 70 6f 6c 69 63 79 20 66 6f 72 20 73 6f 75 72 | ted.area..Enable.policy.for.sour |
| e7d80 | 63 65 20 76 61 6c 69 64 61 74 69 6f 6e 20 62 79 20 72 65 76 65 72 73 65 64 20 70 61 74 68 2c 20 | ce.validation.by.reversed.path,. |
| e7da0 | 61 73 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 3a 72 66 63 3a 60 33 37 30 34 60 2e 20 43 75 72 | as.specified.in.:rfc:`3704`..Cur |
| e7dc0 | 72 65 6e 74 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 70 72 61 63 74 69 63 65 20 69 6e 20 3a 72 66 | rent.recommended.practice.in.:rf |
| e7de0 | 63 3a 60 33 37 30 34 60 20 69 73 20 74 6f 20 65 6e 61 62 6c 65 20 73 74 72 69 63 74 20 6d 6f 64 | c:`3704`.is.to.enable.strict.mod |
| e7e00 | 65 20 74 6f 20 70 72 65 76 65 6e 74 20 49 50 20 73 70 6f 6f 66 69 6e 67 20 66 72 6f 6d 20 44 44 | e.to.prevent.IP.spoofing.from.DD |
| e7e20 | 6f 73 20 61 74 74 61 63 6b 73 2e 20 49 66 20 75 73 69 6e 67 20 61 73 79 6d 6d 65 74 72 69 63 20 | os.attacks..If.using.asymmetric. |
| e7e40 | 72 6f 75 74 69 6e 67 20 6f 72 20 6f 74 68 65 72 20 63 6f 6d 70 6c 69 63 61 74 65 64 20 72 6f 75 | routing.or.other.complicated.rou |
| e7e60 | 74 69 6e 67 2c 20 74 68 65 6e 20 6c 6f 6f 73 65 20 6d 6f 64 65 20 69 73 20 72 65 63 6f 6d 6d 65 | ting,.then.loose.mode.is.recomme |
| e7e80 | 6e 64 65 64 2e 00 45 6e 61 62 6c 65 20 72 65 63 65 69 76 69 6e 67 20 50 50 44 55 20 75 73 69 6e | nded..Enable.receiving.PPDU.usin |
| e7ea0 | 67 20 53 54 42 43 20 28 53 70 61 63 65 20 54 69 6d 65 20 42 6c 6f 63 6b 20 43 6f 64 69 6e 67 29 | g.STBC.(Space.Time.Block.Coding) |
| e7ec0 | 00 45 6e 61 62 6c 65 20 73 61 6d 70 6c 69 6e 67 20 6f 66 20 70 61 63 6b 65 74 73 2c 20 77 68 69 | .Enable.sampling.of.packets,.whi |
| e7ee0 | 63 68 20 77 69 6c 6c 20 62 65 20 74 72 61 6e 73 6d 69 74 74 65 64 20 74 6f 20 73 46 6c 6f 77 20 | ch.will.be.transmitted.to.sFlow. |
| e7f00 | 63 6f 6c 6c 65 63 74 6f 72 73 2e 00 45 6e 61 62 6c 65 20 73 65 6e 64 69 6e 67 20 50 50 44 55 20 | collectors..Enable.sending.PPDU. |
| e7f20 | 75 73 69 6e 67 20 53 54 42 43 20 28 53 70 61 63 65 20 54 69 6d 65 20 42 6c 6f 63 6b 20 43 6f 64 | using.STBC.(Space.Time.Block.Cod |
| e7f40 | 69 6e 67 29 00 45 6e 61 62 6c 65 20 73 65 6e 64 69 6e 67 20 6f 66 20 43 69 73 63 6f 20 73 74 79 | ing).Enable.sending.of.Cisco.sty |
| e7f60 | 6c 65 20 4e 48 52 50 20 54 72 61 66 66 69 63 20 49 6e 64 69 63 61 74 69 6f 6e 20 70 61 63 6b 65 | le.NHRP.Traffic.Indication.packe |
| e7f80 | 74 73 2e 20 49 66 20 74 68 69 73 20 69 73 20 65 6e 61 62 6c 65 64 20 61 6e 64 20 6f 70 65 6e 6e | ts..If.this.is.enabled.and.openn |
| e7fa0 | 68 72 70 20 64 65 74 65 63 74 73 20 61 20 66 6f 72 77 61 72 64 65 64 20 20 70 61 63 6b 65 74 2c | hrp.detects.a.forwarded..packet, |
| e7fc0 | 20 69 74 20 77 69 6c 6c 20 73 65 6e 64 20 61 20 6d 65 73 73 61 67 65 20 74 6f 20 74 68 65 20 6f | .it.will.send.a.message.to.the.o |
| e7fe0 | 72 69 67 69 6e 61 6c 20 73 65 6e 64 65 72 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 20 69 6e 73 | riginal.sender.of.the.packet.ins |
| e8000 | 74 72 75 63 74 69 6e 67 20 69 74 20 74 6f 20 63 72 65 61 74 65 20 61 20 64 69 72 65 63 74 20 63 | tructing.it.to.create.a.direct.c |
| e8020 | 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 68 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 2e 20 | onnection.with.the.destination.. |
| e8040 | 54 68 69 73 20 69 73 20 62 61 73 69 63 61 6c 6c 79 20 61 20 70 72 6f 74 6f 63 6f 6c 20 69 6e 64 | This.is.basically.a.protocol.ind |
| e8060 | 65 70 65 6e 64 65 6e 74 20 65 71 75 69 76 61 6c 65 6e 74 20 6f 66 20 49 43 4d 50 20 72 65 64 69 | ependent.equivalent.of.ICMP.redi |
| e8080 | 72 65 63 74 2e 00 45 6e 61 62 6c 65 20 73 70 61 6e 6e 69 6e 67 20 74 72 65 65 20 70 72 6f 74 6f | rect..Enable.spanning.tree.proto |
| e80a0 | 63 6f 6c 2e 20 53 54 50 20 69 73 20 64 69 73 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 2e | col..STP.is.disabled.by.default. |
| e80c0 | 00 45 6e 61 62 6c 65 20 74 68 65 20 4f 70 61 71 75 65 2d 4c 53 41 20 63 61 70 61 62 69 6c 69 74 | .Enable.the.Opaque-LSA.capabilit |
| e80e0 | 79 20 28 72 66 63 32 33 37 30 29 2c 20 6e 65 63 65 73 73 61 72 79 20 74 6f 20 74 72 61 6e 73 70 | y.(rfc2370),.necessary.to.transp |
| e8100 | 6f 72 74 20 6c 61 62 65 6c 20 6f 6e 20 49 47 50 00 45 6e 61 62 6c 65 20 74 68 69 73 20 66 65 61 | ort.label.on.IGP.Enable.this.fea |
| e8120 | 74 75 72 65 20 63 61 75 73 65 73 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 72 65 73 65 74 2e 00 | ture.causes.an.interface.reset.. |
| e8140 | 45 6e 61 62 6c 65 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 20 6f 66 20 4c 4c 44 50 20 69 6e 66 6f | Enable.transmission.of.LLDP.info |
| e8160 | 72 6d 61 74 69 6f 6e 20 6f 6e 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 20 | rmation.on.given.`<interface>`.. |
| e8180 | 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 73 61 79 20 60 60 61 6c 6c 60 60 20 68 65 72 65 20 73 6f | You.can.also.say.``all``.here.so |
| e81a0 | 20 4c 4c 44 50 20 69 73 20 74 75 72 6e 65 64 20 6f 6e 20 6f 6e 20 65 76 65 72 79 20 69 6e 74 65 | .LLDP.is.turned.on.on.every.inte |
| e81c0 | 72 66 61 63 65 2e 00 45 6e 61 62 6c 65 64 20 6f 6e 2d 64 65 6d 61 6e 64 20 50 50 50 6f 45 20 63 | rface..Enabled.on-demand.PPPoE.c |
| e81e0 | 6f 6e 6e 65 63 74 69 6f 6e 73 20 62 72 69 6e 67 20 75 70 20 74 68 65 20 6c 69 6e 6b 20 6f 6e 6c | onnections.bring.up.the.link.onl |
| e8200 | 79 20 77 68 65 6e 20 74 72 61 66 66 69 63 20 6e 65 65 64 73 20 74 6f 20 70 61 73 73 20 74 68 69 | y.when.traffic.needs.to.pass.thi |
| e8220 | 73 20 6c 69 6e 6b 2e 20 20 49 66 20 74 68 65 20 6c 69 6e 6b 20 66 61 69 6c 73 20 66 6f 72 20 61 | s.link...If.the.link.fails.for.a |
| e8240 | 6e 79 20 72 65 61 73 6f 6e 2c 20 74 68 65 20 6c 69 6e 6b 20 69 73 20 62 72 6f 75 67 68 74 20 62 | ny.reason,.the.link.is.brought.b |
| e8260 | 61 63 6b 20 75 70 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 6f 6e 63 65 20 74 72 61 66 66 69 | ack.up.automatically.once.traffi |
| e8280 | 63 20 70 61 73 73 65 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 61 67 61 69 6e 2e 20 49 66 | c.passes.the.interface.again..If |
| e82a0 | 20 79 6f 75 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 6f 6e 2d 64 65 6d 61 6e 64 20 50 50 50 6f | .you.configure.an.on-demand.PPPo |
| e82c0 | 45 20 63 6f 6e 6e 65 63 74 69 6f 6e 2c 20 79 6f 75 20 6d 75 73 74 20 61 6c 73 6f 20 63 6f 6e 66 | E.connection,.you.must.also.conf |
| e82e0 | 69 67 75 72 65 20 74 68 65 20 69 64 6c 65 20 74 69 6d 65 6f 75 74 20 70 65 72 69 6f 64 2c 20 61 | igure.the.idle.timeout.period,.a |
| e8300 | 66 74 65 72 20 77 68 69 63 68 20 61 6e 20 69 64 6c 65 20 50 50 50 6f 45 20 6c 69 6e 6b 20 77 69 | fter.which.an.idle.PPPoE.link.wi |
| e8320 | 6c 6c 20 62 65 20 64 69 73 63 6f 6e 6e 65 63 74 65 64 2e 20 41 20 6e 6f 6e 2d 7a 65 72 6f 20 69 | ll.be.disconnected..A.non-zero.i |
| e8340 | 64 6c 65 20 74 69 6d 65 6f 75 74 20 77 69 6c 6c 20 6e 65 76 65 72 20 64 69 73 63 6f 6e 6e 65 63 | dle.timeout.will.never.disconnec |
| e8360 | 74 20 74 68 65 20 6c 69 6e 6b 20 61 66 74 65 72 20 69 74 20 66 69 72 73 74 20 63 61 6d 65 20 75 | t.the.link.after.it.first.came.u |
| e8380 | 70 2e 00 45 6e 61 62 6c 65 73 20 43 69 73 63 6f 20 73 74 79 6c 65 20 61 75 74 68 65 6e 74 69 63 | p..Enables.Cisco.style.authentic |
| e83a0 | 61 74 69 6f 6e 20 6f 6e 20 4e 48 52 50 20 70 61 63 6b 65 74 73 2e 20 54 68 69 73 20 65 6d 62 65 | ation.on.NHRP.packets..This.embe |
| e83c0 | 64 73 20 74 68 65 20 73 65 63 72 65 74 20 70 6c 61 69 6e 74 65 78 74 20 70 61 73 73 77 6f 72 64 | ds.the.secret.plaintext.password |
| e83e0 | 20 74 6f 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 20 4e 48 52 50 20 70 61 63 6b 65 74 73 2e 20 49 | .to.the.outgoing.NHRP.packets..I |
| e8400 | 6e 63 6f 6d 69 6e 67 20 4e 48 52 50 20 70 61 63 6b 65 74 73 20 6f 6e 20 74 68 69 73 20 69 6e 74 | ncoming.NHRP.packets.on.this.int |
| e8420 | 65 72 66 61 63 65 20 61 72 65 20 64 69 73 63 61 72 64 65 64 20 75 6e 6c 65 73 73 20 74 68 65 20 | erface.are.discarded.unless.the. |
| e8440 | 73 65 63 72 65 74 20 70 61 73 73 77 6f 72 64 20 69 73 20 70 72 65 73 65 6e 74 2e 20 4d 61 78 69 | secret.password.is.present..Maxi |
| e8460 | 6d 75 6d 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 73 65 63 72 65 74 20 69 73 20 38 20 63 68 | mum.length.of.the.secret.is.8.ch |
| e8480 | 61 72 61 63 74 65 72 73 2e 00 45 6e 61 62 6c 65 73 20 48 54 54 50 20 68 65 61 6c 74 68 20 63 68 | aracters..Enables.HTTP.health.ch |
| e84a0 | 65 63 6b 73 20 75 73 69 6e 67 20 4f 50 54 49 4f 4e 20 48 54 54 50 20 72 65 71 75 65 73 74 73 20 | ecks.using.OPTION.HTTP.requests. |
| e84c0 | 61 67 61 69 6e 73 74 20 27 2f 27 20 61 6e 64 20 65 78 70 65 63 74 69 6e 67 20 61 20 73 75 63 63 | against.'/'.and.expecting.a.succ |
| e84e0 | 65 73 73 66 75 6c 20 72 65 73 70 6f 6e 73 65 20 63 6f 64 65 20 69 6e 20 74 68 65 20 32 30 30 2d | essful.response.code.in.the.200- |
| e8500 | 33 39 39 20 72 61 6e 67 65 2e 00 45 6e 61 62 6c 65 73 20 61 6e 20 4d 50 4c 53 20 6c 61 62 65 6c | 399.range..Enables.an.MPLS.label |
| e8520 | 20 74 6f 20 62 65 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 72 6f 75 74 65 20 65 78 70 6f 72 | .to.be.attached.to.a.route.expor |
| e8540 | 74 65 64 20 66 72 6f 6d 20 74 68 65 20 63 75 72 72 65 6e 74 20 75 6e 69 63 61 73 74 20 56 52 46 | ted.from.the.current.unicast.VRF |
| e8560 | 20 74 6f 20 56 50 4e 2e 20 49 66 20 74 68 65 20 76 61 6c 75 65 20 73 70 65 63 69 66 69 65 64 20 | .to.VPN..If.the.value.specified. |
| e8580 | 69 73 20 61 75 74 6f 2c 20 74 68 65 20 6c 61 62 65 6c 20 76 61 6c 75 65 20 69 73 20 61 75 74 6f | is.auto,.the.label.value.is.auto |
| e85a0 | 6d 61 74 69 63 61 6c 6c 79 20 61 73 73 69 67 6e 65 64 20 66 72 6f 6d 20 61 20 70 6f 6f 6c 20 6d | matically.assigned.from.a.pool.m |
| e85c0 | 61 69 6e 74 61 69 6e 65 64 2e 00 45 6e 61 62 6c 65 73 20 61 6e 64 20 63 6f 6e 66 69 67 75 72 65 | aintained..Enables.and.configure |
| e85e0 | 73 20 70 2d 73 74 61 74 65 20 64 72 69 76 65 72 20 66 6f 72 20 6d 6f 64 65 72 6e 20 41 4d 44 20 | s.p-state.driver.for.modern.AMD. |
| e8600 | 52 79 7a 65 6e 20 61 6e 64 20 45 70 79 63 20 43 50 55 73 2e 00 45 6e 61 62 6c 65 73 20 62 61 6e | Ryzen.and.Epyc.CPUs..Enables.ban |
| e8620 | 64 77 69 64 74 68 20 73 68 61 70 69 6e 67 20 76 69 61 20 52 41 44 49 55 53 2e 00 45 6e 61 62 6c | dwidth.shaping.via.RADIUS..Enabl |
| e8640 | 65 73 20 69 6d 70 6f 72 74 20 6f 72 20 65 78 70 6f 72 74 20 6f 66 20 72 6f 75 74 65 73 20 62 65 | es.import.or.export.of.routes.be |
| e8660 | 74 77 65 65 6e 20 74 68 65 20 63 75 72 72 65 6e 74 20 75 6e 69 63 61 73 74 20 56 52 46 20 61 6e | tween.the.current.unicast.VRF.an |
| e8680 | 64 20 56 50 4e 2e 00 45 6e 61 62 6c 65 73 20 74 68 65 20 47 65 6e 65 72 69 63 20 50 72 6f 74 6f | d.VPN..Enables.the.Generic.Proto |
| e86a0 | 63 6f 6c 20 65 78 74 65 6e 73 69 6f 6e 20 28 56 58 4c 41 4e 2d 47 50 45 29 2e 20 43 75 72 72 65 | col.extension.(VXLAN-GPE)..Curre |
| e86c0 | 6e 74 6c 79 2c 20 74 68 69 73 20 69 73 20 6f 6e 6c 79 20 73 75 70 70 6f 72 74 65 64 20 74 6f 67 | ntly,.this.is.only.supported.tog |
| e86e0 | 65 74 68 65 72 20 77 69 74 68 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6b 65 79 77 6f 72 64 2e | ether.with.the.external.keyword. |
| e8700 | 00 45 6e 61 62 6c 65 73 20 74 68 65 20 4e 54 50 20 64 61 65 6d 6f 6e 20 50 54 50 20 74 72 61 6e | .Enables.the.NTP.daemon.PTP.tran |
| e8720 | 73 70 6f 72 74 2e 20 54 68 65 20 4e 54 50 20 64 61 65 6d 6f 6e 20 77 69 6c 6c 20 6c 69 73 74 65 | sport..The.NTP.daemon.will.liste |
| e8740 | 6e 20 6f 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 50 54 50 20 70 6f 72 74 2e 20 4e 6f | n.on.the.configured.PTP.port..No |
| e8760 | 74 65 20 74 68 61 74 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 73 65 72 76 65 72 73 20 6d 75 73 74 | te.that.one.or.more.servers.must |
| e8780 | 20 62 65 20 69 6e 64 69 76 69 64 75 61 6c 6c 79 20 65 6e 61 62 6c 65 64 20 66 6f 72 20 50 54 50 | .be.individually.enabled.for.PTP |
| e87a0 | 20 62 65 66 6f 72 65 20 74 68 65 20 64 61 65 6d 6f 6e 20 77 69 6c 6c 20 73 79 6e 63 68 72 6f 6e | .before.the.daemon.will.synchron |
| e87c0 | 69 7a 65 20 6f 76 65 72 20 74 68 65 20 74 72 61 6e 73 70 6f 72 74 2e 00 45 6e 61 62 6c 65 73 20 | ize.over.the.transport..Enables. |
| e87e0 | 74 68 65 20 65 63 68 6f 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 20 6d 6f 64 65 00 45 6e 61 62 6c | the.echo.transmission.mode.Enabl |
| e8800 | 65 73 20 74 68 65 20 72 6f 6f 74 20 70 61 72 74 69 74 69 6f 6e 20 61 75 74 6f 2d 65 78 74 65 6e | es.the.root.partition.auto-exten |
| e8820 | 73 69 6f 6e 20 61 6e 64 20 72 65 73 69 7a 65 73 20 74 6f 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 | sion.and.resizes.to.the.maximum. |
| e8840 | 61 76 61 69 6c 61 62 6c 65 20 73 70 61 63 65 20 6f 6e 20 73 79 73 74 65 6d 20 62 6f 6f 74 2e 00 | available.space.on.system.boot.. |
| e8860 | 45 6e 61 62 6c 69 6e 67 20 41 64 76 65 72 74 69 73 6d 65 6e 74 73 00 45 6e 61 62 6c 69 6e 67 20 | Enabling.Advertisments.Enabling. |
| e8880 | 4f 70 65 6e 56 50 4e 20 44 43 4f 00 45 6e 61 62 6c 69 6e 67 20 53 53 48 20 6f 6e 6c 79 20 72 65 | OpenVPN.DCO.Enabling.SSH.only.re |
| e88a0 | 71 75 69 72 65 73 20 79 6f 75 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 70 6f 72 74 20 60 | quires.you.to.specify.the.port.` |
| e88c0 | 60 3c 70 6f 72 74 3e 60 60 20 79 6f 75 20 77 61 6e 74 20 53 53 48 20 74 6f 20 6c 69 73 74 65 6e | `<port>``.you.want.SSH.to.listen |
| e88e0 | 20 6f 6e 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 53 53 48 20 72 75 6e 73 20 6f 6e 20 70 6f 72 | .on..By.default,.SSH.runs.on.por |
| e8900 | 74 20 32 32 2e 00 45 6e 61 62 6c 69 6e 67 20 74 68 69 73 20 66 75 6e 63 74 69 6f 6e 20 69 6e 63 | t.22..Enabling.this.function.inc |
| e8920 | 72 65 61 73 65 73 20 74 68 65 20 72 69 73 6b 20 6f 66 20 62 61 6e 64 77 69 64 74 68 20 73 61 74 | reases.the.risk.of.bandwidth.sat |
| e8940 | 75 72 61 74 69 6f 6e 2e 00 45 6e 66 6f 72 63 65 20 73 74 72 69 63 74 20 70 61 74 68 20 63 68 65 | uration..Enforce.strict.path.che |
| e8960 | 63 6b 69 6e 67 00 45 6e 66 6f 72 63 65 20 73 74 72 69 63 74 20 70 61 74 68 20 63 68 65 63 6b 69 | cking.Enforce.strict.path.checki |
| e8980 | 6e 67 2e 00 45 6e 73 6c 61 76 65 20 60 3c 6d 65 6d 62 65 72 3e 60 20 69 6e 74 65 72 66 61 63 65 | ng..Enslave.`<member>`.interface |
| e89a0 | 20 74 6f 20 62 6f 6e 64 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 45 6e 73 75 72 65 20 74 | .to.bond.`<interface>`..Ensure.t |
| e89c0 | 68 61 74 20 77 68 65 6e 20 63 6f 6d 70 61 72 69 6e 67 20 72 6f 75 74 65 73 20 77 68 65 72 65 20 | hat.when.comparing.routes.where. |
| e89e0 | 62 6f 74 68 20 61 72 65 20 65 71 75 61 6c 20 6f 6e 20 6d 6f 73 74 20 6d 65 74 72 69 63 73 2c 20 | both.are.equal.on.most.metrics,. |
| e8a00 | 69 6e 63 6c 75 64 69 6e 67 20 6c 6f 63 61 6c 2d 70 72 65 66 2c 20 41 53 5f 50 41 54 48 20 6c 65 | including.local-pref,.AS_PATH.le |
| e8a20 | 6e 67 74 68 2c 20 49 47 50 20 63 6f 73 74 2c 20 4d 45 44 2c 20 74 68 61 74 20 74 68 65 20 74 69 | ngth,.IGP.cost,.MED,.that.the.ti |
| e8a40 | 65 20 69 73 20 62 72 6f 6b 65 6e 20 62 61 73 65 64 20 6f 6e 20 72 6f 75 74 65 72 2d 49 44 2e 00 | e.is.broken.based.on.router-ID.. |
| e8a60 | 45 6e 74 65 72 70 72 69 73 65 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 20 75 73 75 61 6c 6c 79 | Enterprise.installations.usually |
| e8a80 | 20 73 68 69 70 20 61 20 6b 69 6e 64 20 6f 66 20 64 69 72 65 63 74 6f 72 79 20 73 65 72 76 69 63 | .ship.a.kind.of.directory.servic |
| e8aa0 | 65 20 77 68 69 63 68 20 69 73 20 75 73 65 64 20 74 6f 20 68 61 76 65 20 61 20 73 69 6e 67 6c 65 | e.which.is.used.to.have.a.single |
| e8ac0 | 20 70 61 73 73 77 6f 72 64 20 73 74 6f 72 65 20 66 6f 72 20 61 6c 6c 20 65 6d 70 6c 6f 79 65 65 | .password.store.for.all.employee |
| e8ae0 | 73 2e 20 56 79 4f 53 20 61 6e 64 20 4f 70 65 6e 56 50 4e 20 73 75 70 70 6f 72 74 20 75 73 69 6e | s..VyOS.and.OpenVPN.support.usin |
| e8b00 | 67 20 4c 44 41 50 2f 41 44 20 61 73 20 73 69 6e 67 6c 65 20 75 73 65 72 20 62 61 63 6b 65 6e 64 | g.LDAP/AD.as.single.user.backend |
| e8b20 | 2e 00 45 72 69 63 73 73 6f 6e 20 63 61 6c 6c 20 69 74 20 4d 41 43 2d 46 6f 72 63 65 64 20 46 6f | ..Ericsson.call.it.MAC-Forced.Fo |
| e8b40 | 72 77 61 72 64 69 6e 67 20 28 52 46 43 20 44 72 61 66 74 29 00 45 72 72 6f 72 00 45 72 72 6f 72 | rwarding.(RFC.Draft).Error.Error |
| e8b60 | 20 63 6f 6e 64 69 74 69 6f 6e 73 00 45 73 74 61 62 6c 69 73 68 65 64 20 73 65 73 73 69 6f 6e 73 | .conditions.Established.sessions |
| e8b80 | 20 63 61 6e 20 62 65 20 76 69 65 77 65 64 20 75 73 69 6e 67 20 74 68 65 20 2a 2a 73 68 6f 77 20 | .can.be.viewed.using.the.**show. |
| e8ba0 | 6c 32 74 70 2d 73 65 72 76 65 72 20 73 65 73 73 69 6f 6e 73 2a 2a 20 6f 70 65 72 61 74 69 6f 6e | l2tp-server.sessions**.operation |
| e8bc0 | 61 6c 20 63 6f 6d 6d 61 6e 64 00 45 74 68 65 72 6e 65 74 00 45 74 68 65 72 6e 65 74 20 66 6c 6f | al.command.Ethernet.Ethernet.flo |
| e8be0 | 77 20 63 6f 6e 74 72 6f 6c 20 69 73 20 61 20 6d 65 63 68 61 6e 69 73 6d 20 66 6f 72 20 74 65 6d | w.control.is.a.mechanism.for.tem |
| e8c00 | 70 6f 72 61 72 69 6c 79 20 73 74 6f 70 70 69 6e 67 20 74 68 65 20 74 72 61 6e 73 6d 69 73 73 69 | porarily.stopping.the.transmissi |
| e8c20 | 6f 6e 20 6f 66 20 64 61 74 61 20 6f 6e 20 45 74 68 65 72 6e 65 74 20 66 61 6d 69 6c 79 20 63 6f | on.of.data.on.Ethernet.family.co |
| e8c40 | 6d 70 75 74 65 72 20 6e 65 74 77 6f 72 6b 73 2e 20 54 68 65 20 67 6f 61 6c 20 6f 66 20 74 68 69 | mputer.networks..The.goal.of.thi |
| e8c60 | 73 20 6d 65 63 68 61 6e 69 73 6d 20 69 73 20 74 6f 20 65 6e 73 75 72 65 20 7a 65 72 6f 20 70 61 | s.mechanism.is.to.ensure.zero.pa |
| e8c80 | 63 6b 65 74 20 6c 6f 73 73 20 69 6e 20 74 68 65 20 70 72 65 73 65 6e 63 65 20 6f 66 20 6e 65 74 | cket.loss.in.the.presence.of.net |
| e8ca0 | 77 6f 72 6b 20 63 6f 6e 67 65 73 74 69 6f 6e 2e 00 45 74 68 65 72 6e 65 74 20 6f 70 74 69 6f 6e | work.congestion..Ethernet.option |
| e8cc0 | 73 00 45 74 68 65 72 74 79 70 65 20 60 60 30 78 38 31 30 30 60 60 20 69 73 20 75 73 65 64 20 66 | s.Ethertype.``0x8100``.is.used.f |
| e8ce0 | 6f 72 20 60 60 38 30 32 2e 31 71 60 60 20 61 6e 64 20 65 74 68 65 72 74 79 70 65 20 60 60 30 78 | or.``802.1q``.and.ethertype.``0x |
| e8d00 | 38 38 61 38 60 60 20 69 73 20 75 73 65 64 20 66 6f 72 20 60 60 38 30 32 2e 31 61 64 60 60 2e 00 | 88a8``.is.used.for.``802.1ad``.. |
| e8d20 | 45 76 65 6e 74 20 48 61 6e 64 6c 65 72 00 45 76 65 6e 74 20 48 61 6e 64 6c 65 72 20 43 6f 6e 66 | Event.Handler.Event.Handler.Conf |
| e8d40 | 69 67 75 72 61 74 69 6f 6e 20 53 74 65 70 73 00 45 76 65 6e 74 20 48 61 6e 64 6c 65 72 20 54 65 | iguration.Steps.Event.Handler.Te |
| e8d60 | 63 68 6e 6f 6c 6f 67 79 20 4f 76 65 72 76 69 65 77 00 45 76 65 6e 74 20 68 61 6e 64 6c 65 72 20 | chnology.Overview.Event.handler. |
| e8d80 | 61 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 65 78 65 63 75 74 65 20 73 63 72 69 70 74 73 20 77 68 | allows.you.to.execute.scripts.wh |
| e8da0 | 65 6e 20 61 20 73 74 72 69 6e 67 20 74 68 61 74 20 6d 61 74 63 68 65 73 20 61 20 72 65 67 65 78 | en.a.string.that.matches.a.regex |
| e8dc0 | 20 6f 72 20 61 20 72 65 67 65 78 20 77 69 74 68 20 61 20 73 65 72 76 69 63 65 20 6e 61 6d 65 20 | .or.a.regex.with.a.service.name. |
| e8de0 | 61 70 70 65 61 72 73 20 69 6e 20 6a 6f 75 72 6e 61 6c 64 20 6c 6f 67 73 2e 20 59 6f 75 20 63 61 | appears.in.journald.logs..You.ca |
| e8e00 | 6e 20 70 61 73 73 20 76 61 72 69 61 62 6c 65 73 2c 20 61 72 67 75 6d 65 6e 74 73 2c 20 61 6e 64 | n.pass.variables,.arguments,.and |
| e8e20 | 20 61 20 66 75 6c 6c 20 6d 61 74 63 68 69 6e 67 20 73 74 72 69 6e 67 20 74 6f 20 74 68 65 20 73 | .a.full.matching.string.to.the.s |
| e8e40 | 63 72 69 70 74 2e 00 45 76 65 6e 74 20 68 61 6e 64 6c 65 72 20 73 63 72 69 70 74 00 45 76 65 6e | cript..Event.handler.script.Even |
| e8e60 | 74 20 68 61 6e 64 6c 65 72 20 74 68 61 74 20 6d 6f 6e 69 74 6f 72 73 20 74 68 65 20 73 74 61 74 | t.handler.that.monitors.the.stat |
| e8e80 | 65 20 6f 66 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 30 2e 00 45 76 65 72 79 20 4e 41 54 20 72 | e.of.interface.eth0..Every.NAT.r |
| e8ea0 | 75 6c 65 20 68 61 73 20 61 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 20 64 65 | ule.has.a.translation.command.de |
| e8ec0 | 66 69 6e 65 64 2e 20 54 68 65 20 61 64 64 72 65 73 73 20 64 65 66 69 6e 65 64 20 66 6f 72 20 74 | fined..The.address.defined.for.t |
| e8ee0 | 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 69 73 20 74 68 65 20 61 64 64 72 65 73 73 20 75 73 | he.translation.is.the.address.us |
| e8f00 | 65 64 20 77 68 65 6e 20 74 68 65 20 61 64 64 72 65 73 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 | ed.when.the.address.information. |
| e8f20 | 69 6e 20 61 20 70 61 63 6b 65 74 20 69 73 20 72 65 70 6c 61 63 65 64 2e 00 45 76 65 72 79 20 53 | in.a.packet.is.replaced..Every.S |
| e8f40 | 4e 41 54 36 36 20 72 75 6c 65 20 68 61 73 20 61 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 63 6f 6d | NAT66.rule.has.a.translation.com |
| e8f60 | 6d 61 6e 64 20 64 65 66 69 6e 65 64 2e 20 54 68 65 20 70 72 65 66 69 78 20 64 65 66 69 6e 65 64 | mand.defined..The.prefix.defined |
| e8f80 | 20 66 6f 72 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 69 73 20 74 68 65 20 70 72 65 66 | .for.the.translation.is.the.pref |
| e8fa0 | 69 78 20 75 73 65 64 20 77 68 65 6e 20 74 68 65 20 61 64 64 72 65 73 73 20 69 6e 66 6f 72 6d 61 | ix.used.when.the.address.informa |
| e8fc0 | 74 69 6f 6e 20 69 6e 20 61 20 70 61 63 6b 65 74 20 69 73 20 72 65 70 6c 61 63 65 64 2e e3 80 81 | tion.in.a.packet.is.replaced.... |
| e8fe0 | 00 45 76 65 72 79 20 53 53 48 20 6b 65 79 20 63 6f 6d 65 73 20 69 6e 20 74 68 72 65 65 20 70 61 | .Every.SSH.key.comes.in.three.pa |
| e9000 | 72 74 73 3a 00 45 76 65 72 79 20 53 53 48 20 70 75 62 6c 69 63 20 6b 65 79 20 70 6f 72 74 69 6f | rts:.Every.SSH.public.key.portio |
| e9020 | 6e 20 72 65 66 65 72 65 6e 63 65 64 20 62 79 20 60 3c 69 64 65 6e 74 69 66 69 65 72 3e 60 20 72 | n.referenced.by.`<identifier>`.r |
| e9040 | 65 71 75 69 72 65 73 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 74 68 65 | equires.the.configuration.of.the |
| e9060 | 20 60 3c 74 79 70 65 3e 60 20 6f 66 20 70 75 62 6c 69 63 2d 6b 65 79 20 75 73 65 64 2e 20 54 68 | .`<type>`.of.public-key.used..Th |
| e9080 | 69 73 20 74 79 70 65 20 63 61 6e 20 62 65 20 61 6e 79 20 6f 66 3a 00 45 76 65 72 79 20 55 44 50 | is.type.can.be.any.of:.Every.UDP |
| e90a0 | 20 70 6f 72 74 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 66 6f 72 77 61 72 64 20 72 65 71 75 | .port.which.will.be.forward.requ |
| e90c0 | 69 72 65 73 20 6f 6e 65 20 75 6e 69 71 75 65 20 49 44 2e 20 43 75 72 72 65 6e 74 6c 79 20 77 65 | ires.one.unique.ID..Currently.we |
| e90e0 | 20 73 75 70 70 6f 72 74 20 39 39 20 49 44 73 21 00 45 76 65 72 79 20 56 69 72 74 75 61 6c 20 45 | .support.99.IDs!.Every.Virtual.E |
| e9100 | 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 62 65 68 61 76 65 73 20 6c 69 6b 65 20 | thernet.interfaces.behaves.like. |
| e9120 | 61 20 72 65 61 6c 20 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 79 20 | a.real.Ethernet.interface..They. |
| e9140 | 63 61 6e 20 68 61 76 65 20 49 50 76 34 2f 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 63 6f 6e | can.have.IPv4/IPv6.addresses.con |
| e9160 | 66 69 67 75 72 65 64 2c 20 6f 72 20 63 61 6e 20 72 65 71 75 65 73 74 20 61 64 64 72 65 73 73 65 | figured,.or.can.request.addresse |
| e9180 | 73 20 62 79 20 44 48 43 50 2f 20 44 48 43 50 76 36 20 61 6e 64 20 61 72 65 20 61 73 73 6f 63 69 | s.by.DHCP/.DHCPv6.and.are.associ |
| e91a0 | 61 74 65 64 2f 6d 61 70 70 65 64 20 77 69 74 68 20 61 20 72 65 61 6c 20 65 74 68 65 72 6e 65 74 | ated/mapped.with.a.real.ethernet |
| e91c0 | 20 70 6f 72 74 2e 20 54 68 69 73 20 61 6c 73 6f 20 6d 61 6b 65 73 20 50 73 65 75 64 6f 2d 45 74 | .port..This.also.makes.Pseudo-Et |
| e91e0 | 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 69 6e 74 65 72 65 73 74 69 6e 67 20 66 6f | hernet.interfaces.interesting.fo |
| e9200 | 72 20 74 65 73 74 69 6e 67 20 70 75 72 70 6f 73 65 73 2e 20 41 20 50 73 65 75 64 6f 2d 45 74 68 | r.testing.purposes..A.Pseudo-Eth |
| e9220 | 65 72 6e 65 74 20 64 65 76 69 63 65 20 77 69 6c 6c 20 69 6e 68 65 72 69 74 20 63 68 61 72 61 63 | ernet.device.will.inherit.charac |
| e9240 | 74 65 72 69 73 74 69 63 73 20 28 73 70 65 65 64 2c 20 64 75 70 6c 65 78 2c 20 2e 2e 2e 29 20 66 | teristics.(speed,.duplex,....).f |
| e9260 | 72 6f 6d 20 69 74 73 20 70 68 79 73 69 63 61 6c 20 70 61 72 65 6e 74 20 28 74 68 65 20 73 6f 20 | rom.its.physical.parent.(the.so. |
| e9280 | 63 61 6c 6c 65 64 20 6c 69 6e 6b 29 20 69 6e 74 65 72 66 61 63 65 2e 00 45 76 65 72 79 20 57 57 | called.link).interface..Every.WW |
| e92a0 | 41 4e 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 72 65 71 75 69 72 65 73 20 61 6e 20 3a 61 62 62 72 3a | AN.connection.requires.an.:abbr: |
| e92c0 | 60 41 50 4e 20 28 41 63 63 65 73 73 20 50 6f 69 6e 74 20 4e 61 6d 65 29 60 20 77 68 69 63 68 20 | `APN.(Access.Point.Name)`.which. |
| e92e0 | 69 73 20 75 73 65 64 20 62 79 20 74 68 65 20 63 6c 69 65 6e 74 20 74 6f 20 64 69 61 6c 20 69 6e | is.used.by.the.client.to.dial.in |
| e9300 | 74 6f 20 74 68 65 20 49 53 50 73 20 6e 65 74 77 6f 72 6b 2e 20 54 68 69 73 20 69 73 20 61 20 6d | to.the.ISPs.network..This.is.a.m |
| e9320 | 61 6e 64 61 74 6f 72 79 20 70 61 72 61 6d 65 74 65 72 2e 20 43 6f 6e 74 61 63 74 20 79 6f 75 72 | andatory.parameter..Contact.your |
| e9340 | 20 53 65 72 76 69 63 65 20 50 72 6f 76 69 64 65 72 20 66 6f 72 20 63 6f 72 72 65 63 74 20 41 50 | .Service.Provider.for.correct.AP |
| e9360 | 4e 2e 00 45 76 65 72 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 2f 72 65 6d 6f 74 65 2d 61 63 63 65 73 | N..Every.connection/remote-acces |
| e9380 | 73 20 70 6f 6f 6c 20 77 65 20 63 6f 6e 66 69 67 75 72 65 20 61 6c 73 6f 20 6e 65 65 64 73 20 61 | s.pool.we.configure.also.needs.a |
| e93a0 | 20 70 6f 6f 6c 20 77 68 65 72 65 20 77 65 20 63 61 6e 20 64 72 61 77 20 6f 75 72 20 63 6c 69 65 | .pool.where.we.can.draw.our.clie |
| e93c0 | 6e 74 20 49 50 20 61 64 64 72 65 73 73 65 73 20 66 72 6f 6d 2e 20 57 65 20 70 72 6f 76 69 64 65 | nt.IP.addresses.from..We.provide |
| e93e0 | 20 6f 6e 65 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 70 6f 6f 6c 2e 20 41 75 74 68 6f 72 69 | .one.IPv4.and.IPv6.pool..Authori |
| e9400 | 7a 65 64 20 63 6c 69 65 6e 74 73 20 77 69 6c 6c 20 72 65 63 65 69 76 65 20 61 6e 20 49 50 76 34 | zed.clients.will.receive.an.IPv4 |
| e9420 | 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 31 39 32 2e 30 2e 32 2e 31 32 38 2f 32 35 | .address.from.the.192.0.2.128/25 |
| e9440 | 20 70 72 65 66 69 78 20 61 6e 64 20 61 6e 20 49 50 76 36 20 61 64 64 72 65 73 73 20 66 72 6f 6d | .prefix.and.an.IPv6.address.from |
| e9460 | 20 74 68 65 20 32 30 30 31 3a 64 62 38 3a 32 30 30 30 3a 3a 2f 36 34 20 70 72 65 66 69 78 2e 20 | .the.2001:db8:2000::/64.prefix.. |
| e9480 | 57 65 20 63 61 6e 20 61 6c 73 6f 20 73 65 6e 64 20 73 6f 6d 65 20 44 4e 53 20 6e 61 6d 65 73 65 | We.can.also.send.some.DNS.namese |
| e94a0 | 72 76 65 72 73 20 64 6f 77 6e 20 66 6f 72 20 6f 75 72 20 63 6c 69 65 6e 74 73 20 74 6f 20 75 73 | rvers.down.for.our.clients.to.us |
| e94c0 | 65 20 77 69 74 68 20 74 68 65 69 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 45 76 65 72 79 20 63 | e.with.their.connection..Every.c |
| e94e0 | 6f 6e 6e 65 63 74 69 6f 6e 2f 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 20 70 6f 6f 6c 20 77 65 20 | onnection/remote-access.pool.we. |
| e9500 | 63 6f 6e 66 69 67 75 72 65 20 61 6c 73 6f 20 6e 65 65 64 73 20 61 20 70 6f 6f 6c 20 77 68 65 72 | configure.also.needs.a.pool.wher |
| e9520 | 65 20 77 65 20 63 61 6e 20 64 72 61 77 20 6f 75 72 20 63 6c 69 65 6e 74 20 49 50 20 61 64 64 72 | e.we.can.draw.our.client.IP.addr |
| e9540 | 65 73 73 65 73 20 66 72 6f 6d 2e 20 57 65 20 70 72 6f 76 69 64 65 20 6f 6e 65 20 49 50 76 34 20 | esses.from..We.provide.one.IPv4. |
| e9560 | 61 6e 64 20 49 50 76 36 20 70 6f 6f 6c 2e 20 41 75 74 68 6f 72 69 7a 65 64 20 63 6c 69 65 6e 74 | and.IPv6.pool..Authorized.client |
| e9580 | 73 20 77 69 6c 6c 20 72 65 63 65 69 76 65 20 61 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 20 66 | s.will.receive.an.IPv4.address.f |
| e95a0 | 72 6f 6d 20 74 68 65 20 31 39 32 2e 30 2e 32 2e 31 32 38 2f 32 35 20 70 72 65 66 69 78 20 61 6e | rom.the.192.0.2.128/25.prefix.an |
| e95c0 | 64 20 61 6e 20 49 50 76 36 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 32 30 30 31 3a | d.an.IPv6.address.from.the.2001: |
| e95e0 | 64 62 38 3a 32 30 30 30 3a 3a 2f 36 34 20 70 72 65 66 69 78 2e 20 57 65 20 63 61 6e 20 61 6c 73 | db8:2000::/64.prefix..We.can.als |
| e9600 | 6f 20 73 65 6e 64 20 73 6f 6d 65 20 44 4e 53 20 6e 61 6d 65 73 65 72 76 65 72 73 20 64 6f 77 6e | o.send.some.DNS.nameservers.down |
| e9620 | 20 74 6f 20 6f 75 72 20 63 6c 69 65 6e 74 73 20 75 73 65 64 20 6f 6e 20 74 68 65 69 72 20 63 6f | .to.our.clients.used.on.their.co |
| e9640 | 6e 6e 65 63 74 69 6f 6e 2e 00 45 76 65 72 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 2f 72 65 6d 6f 74 | nnection..Every.connection/remot |
| e9660 | 65 2d 61 63 63 65 73 73 20 70 6f 6f 6c 20 77 65 20 63 6f 6e 66 69 67 75 72 65 20 61 6c 73 6f 20 | e-access.pool.we.configure.also. |
| e9680 | 6e 65 65 64 73 20 61 20 70 6f 6f 6c 20 77 68 65 72 65 20 77 65 20 63 61 6e 20 64 72 61 77 20 6f | needs.a.pool.where.we.can.draw.o |
| e96a0 | 75 72 20 63 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 65 73 20 66 72 6f 6d 2e 20 57 65 20 | ur.client.IP.addresses.from..We. |
| e96c0 | 70 72 6f 76 69 64 65 20 6f 6e 65 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 70 6f 6f 6c 2e 20 | provide.one.IPv4.and.IPv6.pool.. |
| e96e0 | 41 75 74 68 6f 72 69 7a 65 64 20 63 6c 69 65 6e 74 73 20 77 69 6c 6c 20 72 65 63 65 69 76 65 20 | Authorized.clients.will.receive. |
| e9700 | 61 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 63 6f 6e 66 69 67 75 | an.IPv4.address.from.the.configu |
| e9720 | 72 65 64 20 49 50 76 34 20 70 72 65 66 69 78 20 61 6e 64 20 61 6e 20 49 50 76 36 20 61 64 64 72 | red.IPv4.prefix.and.an.IPv6.addr |
| e9740 | 65 73 73 20 66 72 6f 6d 20 74 68 65 20 49 50 76 36 20 70 72 65 66 69 78 2e 20 57 65 20 63 61 6e | ess.from.the.IPv6.prefix..We.can |
| e9760 | 20 61 6c 73 6f 20 73 65 6e 64 20 73 6f 6d 65 20 44 4e 53 20 6e 61 6d 65 73 65 72 76 65 72 73 20 | .also.send.some.DNS.nameservers. |
| e9780 | 64 6f 77 6e 20 74 6f 20 6f 75 72 20 63 6c 69 65 6e 74 73 20 75 73 65 64 20 6f 6e 20 74 68 65 69 | down.to.our.clients.used.on.thei |
| e97a0 | 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 45 78 61 6d 70 6c 65 00 45 78 61 6d 70 6c 65 20 43 6f | r.connection..Example.Example.Co |
| e97c0 | 6e 66 69 67 75 72 61 74 69 6f 6e 00 45 78 61 6d 70 6c 65 20 43 6f 6e 66 69 67 75 72 61 74 69 6f | nfiguration.Example.Configuratio |
| e97e0 | 6e 3a 20 57 69 46 69 2d 36 20 61 74 20 32 2e 34 47 48 7a 00 45 78 61 6d 70 6c 65 20 43 6f 6e 66 | n:.WiFi-6.at.2.4GHz.Example.Conf |
| e9800 | 69 67 75 72 61 74 69 6f 6e 3a 20 57 69 46 69 2d 36 65 20 61 74 20 36 47 48 7a 00 45 78 61 6d 70 | iguration:.WiFi-6e.at.6GHz.Examp |
| e9820 | 6c 65 20 49 50 76 36 20 6f 6e 6c 79 3a 00 45 78 61 6d 70 6c 65 20 4e 65 74 77 6f 72 6b 00 45 78 | le.IPv6.only:.Example.Network.Ex |
| e9840 | 61 6d 70 6c 65 20 50 61 72 74 69 61 6c 20 43 6f 6e 66 69 67 00 45 78 61 6d 70 6c 65 20 63 6f 6e | ample.Partial.Config.Example.con |
| e9860 | 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 57 69 72 65 47 75 61 72 64 20 69 6e 74 65 72 66 61 | figuration.for.WireGuard.interfa |
| e9880 | 63 65 73 3a 00 45 78 61 6d 70 6c 65 20 66 6f 72 20 63 68 61 6e 67 69 6e 67 20 72 61 74 65 2d 6c | ces:.Example.for.changing.rate-l |
| e98a0 | 69 6d 69 74 20 76 69 61 20 52 41 44 49 55 53 20 43 6f 41 2e 00 45 78 61 6d 70 6c 65 20 66 6f 72 | imit.via.RADIUS.CoA..Example.for |
| e98c0 | 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 20 73 69 6d 70 6c 65 20 4c 32 54 50 20 6f 76 65 72 20 | .configuring.a.simple.L2TP.over. |
| e98e0 | 49 50 73 65 63 20 56 50 4e 20 66 6f 72 20 72 65 6d 6f 74 65 20 61 63 63 65 73 73 20 28 77 6f 72 | IPsec.VPN.for.remote.access.(wor |
| e9900 | 6b 73 20 77 69 74 68 20 6e 61 74 69 76 65 20 57 69 6e 64 6f 77 73 20 61 6e 64 20 4d 61 63 20 56 | ks.with.native.Windows.and.Mac.V |
| e9920 | 50 4e 20 63 6c 69 65 6e 74 73 29 3a 00 45 78 61 6d 70 6c 65 20 6f 66 20 72 65 64 69 72 65 63 74 | PN.clients):.Example.of.redirect |
| e9940 | 69 6f 6e 3a 00 45 78 61 6d 70 6c 65 20 6f 66 20 73 65 74 74 69 6e 67 20 75 70 20 61 20 62 61 73 | ion:.Example.of.setting.up.a.bas |
| e9960 | 69 63 20 43 47 4e 41 54 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 20 49 6e 20 74 68 65 20 66 | ic.CGNAT.configuration:.In.the.f |
| e9980 | 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 2c 20 77 65 20 64 65 66 69 6e 65 20 61 6e 20 65 | ollowing.example,.we.define.an.e |
| e99a0 | 78 74 65 72 6e 61 6c 20 70 6f 6f 6c 20 6e 61 6d 65 64 20 60 65 78 74 2d 31 60 20 77 69 74 68 20 | xternal.pool.named.`ext-1`.with. |
| e99c0 | 6f 6e 65 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 00 45 78 61 6d 70 6c 65 20 | one.external.IP.address.Example. |
| e99e0 | 73 79 6e 70 72 6f 78 79 00 45 78 61 6d 70 6c 65 2c 20 66 72 6f 6d 20 72 61 64 69 75 73 2d 73 65 | synproxy.Example,.from.radius-se |
| e9a00 | 72 76 65 72 20 73 65 6e 64 20 63 6f 6d 6d 61 6e 64 20 66 6f 72 20 64 69 73 63 6f 6e 6e 65 63 74 | rver.send.command.for.disconnect |
| e9a20 | 20 63 6c 69 65 6e 74 20 77 69 74 68 20 75 73 65 72 6e 61 6d 65 20 74 65 73 74 00 45 78 61 6d 70 | .client.with.username.test.Examp |
| e9a40 | 6c 65 3a 00 45 78 61 6d 70 6c 65 3a 20 41 20 68 6f 75 73 65 68 6f 6c 64 20 6d 69 67 68 74 20 6e | le:.Example:.A.household.might.n |
| e9a60 | 65 65 64 20 31 30 30 30 20 70 6f 72 74 73 20 74 6f 20 65 6e 73 75 72 65 20 73 6d 6f 6f 74 68 20 | eed.1000.ports.to.ensure.smooth. |
| e9a80 | 6f 70 65 72 61 74 69 6f 6e 20 66 6f 72 20 6d 75 6c 74 69 70 6c 65 20 64 65 76 69 63 65 73 20 61 | operation.for.multiple.devices.a |
| e9aa0 | 6e 64 20 61 70 70 6c 69 63 61 74 69 6f 6e 73 2e 00 45 78 61 6d 70 6c 65 3a 20 44 65 6c 65 67 61 | nd.applications..Example:.Delega |
| e9ac0 | 74 65 20 61 20 2f 36 34 20 70 72 65 66 69 78 20 74 6f 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 | te.a./64.prefix.to.interface.eth |
| e9ae0 | 38 20 77 68 69 63 68 20 77 69 6c 6c 20 75 73 65 20 61 20 6c 6f 63 61 6c 20 61 64 64 72 65 73 73 | 8.which.will.use.a.local.address |
| e9b00 | 20 6f 6e 20 74 68 69 73 20 72 6f 75 74 65 72 20 6f 66 20 60 60 3c 70 72 65 66 69 78 3e 3a 3a 66 | .on.this.router.of.``<prefix>::f |
| e9b20 | 66 66 66 60 60 2c 20 61 73 20 74 68 65 20 61 64 64 72 65 73 73 20 36 35 35 33 34 20 77 69 6c 6c | fff``,.as.the.address.65534.will |
| e9b40 | 20 63 6f 72 72 65 73 70 6f 6e 64 20 74 6f 20 60 60 66 66 66 66 60 60 20 69 6e 20 68 65 78 61 64 | .correspond.to.``ffff``.in.hexad |
| e9b60 | 65 63 69 6d 61 6c 20 6e 6f 74 61 74 69 6f 6e 2e 00 45 78 61 6d 70 6c 65 3a 20 46 6f 72 20 61 6e | ecimal.notation..Example:.For.an |
| e9b80 | 20 7e 38 2c 30 30 30 20 68 6f 73 74 20 6e 65 74 77 6f 72 6b 20 61 20 73 6f 75 72 63 65 20 4e 41 | .~8,000.host.network.a.source.NA |
| e9ba0 | 54 20 70 6f 6f 6c 20 6f 66 20 33 32 20 49 50 20 61 64 64 72 65 73 73 65 73 20 69 73 20 72 65 63 | T.pool.of.32.IP.addresses.is.rec |
| e9bc0 | 6f 6d 6d 65 6e 64 65 64 2e 00 45 78 61 6d 70 6c 65 3a 20 49 66 20 49 44 20 69 73 20 31 20 61 6e | ommended..Example:.If.ID.is.1.an |
| e9be0 | 64 20 74 68 65 20 63 6c 69 65 6e 74 20 69 73 20 64 65 6c 65 67 61 74 65 64 20 61 6e 20 49 50 76 | d.the.client.is.delegated.an.IPv |
| e9c00 | 36 20 70 72 65 66 69 78 20 32 30 30 31 3a 64 62 38 3a 66 66 66 66 3a 3a 2f 34 38 2c 20 64 68 63 | 6.prefix.2001:db8:ffff::/48,.dhc |
| e9c20 | 70 36 63 20 77 69 6c 6c 20 63 6f 6d 62 69 6e 65 20 74 68 65 20 74 77 6f 20 76 61 6c 75 65 73 20 | p6c.will.combine.the.two.values. |
| e9c40 | 69 6e 74 6f 20 61 20 73 69 6e 67 6c 65 20 49 50 76 36 20 70 72 65 66 69 78 2c 20 32 30 30 31 3a | into.a.single.IPv6.prefix,.2001: |
| e9c60 | 64 62 38 3a 66 66 66 66 3a 31 3a 3a 2f 36 34 2c 20 61 6e 64 20 77 69 6c 6c 20 63 6f 6e 66 69 67 | db8:ffff:1::/64,.and.will.config |
| e9c80 | 75 72 65 20 74 68 65 20 70 72 65 66 69 78 20 6f 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 | ure.the.prefix.on.the.specified. |
| e9ca0 | 69 6e 74 65 72 66 61 63 65 2e 00 45 78 61 6d 70 6c 65 3a 20 4d 69 72 72 6f 72 20 74 68 65 20 69 | interface..Example:.Mirror.the.i |
| e9cc0 | 6e 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 66 20 60 62 6f 6e 64 31 60 20 70 6f 72 74 20 74 | nbound.traffic.of.`bond1`.port.t |
| e9ce0 | 6f 20 60 65 74 68 33 60 00 45 78 61 6d 70 6c 65 3a 20 4d 69 72 72 6f 72 20 74 68 65 20 69 6e 62 | o.`eth3`.Example:.Mirror.the.inb |
| e9d00 | 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 66 20 60 62 72 31 60 20 70 6f 72 74 20 74 6f 20 60 65 | ound.traffic.of.`br1`.port.to.`e |
| e9d20 | 74 68 33 60 00 45 78 61 6d 70 6c 65 3a 20 4d 69 72 72 6f 72 20 74 68 65 20 69 6e 62 6f 75 6e 64 | th3`.Example:.Mirror.the.inbound |
| e9d40 | 20 74 72 61 66 66 69 63 20 6f 66 20 60 65 74 68 31 60 20 70 6f 72 74 20 74 6f 20 60 65 74 68 33 | .traffic.of.`eth1`.port.to.`eth3 |
| e9d60 | 60 00 45 78 61 6d 70 6c 65 3a 20 4d 69 72 72 6f 72 20 74 68 65 20 6f 75 74 62 6f 75 6e 64 20 74 | `.Example:.Mirror.the.outbound.t |
| e9d80 | 72 61 66 66 69 63 20 6f 66 20 60 62 6f 6e 64 31 60 20 70 6f 72 74 20 74 6f 20 60 65 74 68 33 60 | raffic.of.`bond1`.port.to.`eth3` |
| e9da0 | 00 45 78 61 6d 70 6c 65 3a 20 4d 69 72 72 6f 72 20 74 68 65 20 6f 75 74 62 6f 75 6e 64 20 74 72 | .Example:.Mirror.the.outbound.tr |
| e9dc0 | 61 66 66 69 63 20 6f 66 20 60 62 72 31 60 20 70 6f 72 74 20 74 6f 20 60 65 74 68 33 60 00 45 78 | affic.of.`br1`.port.to.`eth3`.Ex |
| e9de0 | 61 6d 70 6c 65 3a 20 4d 69 72 72 6f 72 20 74 68 65 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 | ample:.Mirror.the.outbound.traff |
| e9e00 | 69 63 20 6f 66 20 60 65 74 68 31 60 20 70 6f 72 74 20 74 6f 20 60 65 74 68 33 60 00 45 78 61 6d | ic.of.`eth1`.port.to.`eth3`.Exam |
| e9e20 | 70 6c 65 3a 20 50 72 65 66 69 78 20 4c 69 73 74 73 00 45 78 61 6d 70 6c 65 3a 20 53 65 74 20 60 | ple:.Prefix.Lists.Example:.Set.` |
| e9e40 | 65 74 68 30 60 20 6d 65 6d 62 65 72 20 70 6f 72 74 20 74 6f 20 62 65 20 61 6c 6c 6f 77 65 64 20 | eth0`.member.port.to.be.allowed. |
| e9e60 | 56 4c 41 4e 20 34 00 45 78 61 6d 70 6c 65 3a 20 53 65 74 20 60 65 74 68 30 60 20 6d 65 6d 62 65 | VLAN.4.Example:.Set.`eth0`.membe |
| e9e80 | 72 20 70 6f 72 74 20 74 6f 20 62 65 20 61 6c 6c 6f 77 65 64 20 56 4c 41 4e 20 36 2d 38 00 45 78 | r.port.to.be.allowed.VLAN.6-8.Ex |
| e9ea0 | 61 6d 70 6c 65 3a 20 53 65 74 20 60 65 74 68 30 60 20 6d 65 6d 62 65 72 20 70 6f 72 74 20 74 6f | ample:.Set.`eth0`.member.port.to |
| e9ec0 | 20 62 65 20 6e 61 74 69 76 65 20 56 4c 41 4e 20 32 00 45 78 61 6d 70 6c 65 3a 20 74 6f 20 62 65 | .be.native.VLAN.2.Example:.to.be |
| e9ee0 | 20 61 70 70 65 6e 64 65 64 20 69 73 20 73 65 74 20 74 6f 20 60 60 76 79 6f 73 2e 6e 65 74 60 60 | .appended.is.set.to.``vyos.net`` |
| e9f00 | 20 61 6e 64 20 74 68 65 20 55 52 4c 20 72 65 63 65 69 76 65 64 20 69 73 20 60 60 77 77 77 2f 66 | .and.the.URL.received.is.``www/f |
| e9f20 | 6f 6f 2e 68 74 6d 6c 60 60 2c 20 74 68 65 20 73 79 73 74 65 6d 20 77 69 6c 6c 20 75 73 65 20 74 | oo.html``,.the.system.will.use.t |
| e9f40 | 68 65 20 67 65 6e 65 72 61 74 65 64 2c 20 66 69 6e 61 6c 20 55 52 4c 20 6f 66 20 60 60 77 77 77 | he.generated,.final.URL.of.``www |
| e9f60 | 2e 76 79 6f 73 2e 6e 65 74 2f 66 6f 6f 2e 68 74 6d 6c 60 60 2e 00 45 78 61 6d 70 6c 65 73 00 45 | .vyos.net/foo.html``..Examples.E |
| e9f80 | 78 61 6d 70 6c 65 73 20 6f 66 20 70 6f 6c 69 63 69 65 73 20 75 73 61 67 65 3a 00 45 78 61 6d 70 | xamples.of.policies.usage:.Examp |
| e9fa0 | 6c 65 73 3a 00 45 78 63 6c 75 64 65 20 49 50 20 61 64 64 72 65 73 73 65 73 20 66 72 6f 6d 20 60 | les:.Exclude.IP.addresses.from.` |
| e9fc0 | 60 56 52 52 50 20 70 61 63 6b 65 74 73 60 60 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 60 60 65 | `VRRP.packets``..This.option.``e |
| e9fe0 | 78 63 6c 75 64 65 64 2d 61 64 64 72 65 73 73 60 60 20 69 73 20 75 73 65 64 20 77 68 65 6e 20 79 | xcluded-address``.is.used.when.y |
| ea000 | 6f 75 20 77 61 6e 74 20 74 6f 20 73 65 74 20 49 50 76 34 20 2b 20 49 50 76 36 20 61 64 64 72 65 | ou.want.to.set.IPv4.+.IPv6.addre |
| ea020 | 73 73 65 73 20 6f 6e 20 74 68 65 20 73 61 6d 65 20 76 69 72 74 75 61 6c 20 69 6e 74 65 72 66 61 | sses.on.the.same.virtual.interfa |
| ea040 | 63 65 20 6f 72 20 77 68 65 6e 20 75 73 65 64 20 6d 6f 72 65 20 74 68 61 6e 20 32 30 20 49 50 20 | ce.or.when.used.more.than.20.IP. |
| ea060 | 61 64 64 72 65 73 73 65 73 2e 00 45 78 63 6c 75 64 65 20 60 3c 65 78 63 6c 75 64 65 2d 70 72 65 | addresses..Exclude.`<exclude-pre |
| ea080 | 66 69 78 3e 60 20 66 72 6f 6d 20 60 3c 70 64 2d 70 72 65 66 69 78 3e 60 2e 00 45 78 63 6c 75 64 | fix>`.from.`<pd-prefix>`..Exclud |
| ea0a0 | 65 20 61 64 64 72 65 73 73 00 45 78 63 6c 75 64 65 20 74 72 61 66 66 69 63 00 45 78 69 74 20 70 | e.address.Exclude.traffic.Exit.p |
| ea0c0 | 6f 6c 69 63 79 20 6f 6e 20 6d 61 74 63 68 3a 20 67 6f 20 74 6f 20 6e 65 78 74 20 73 65 71 75 65 | olicy.on.match:.go.to.next.seque |
| ea0e0 | 6e 63 65 20 6e 75 6d 62 65 72 2e 00 45 78 69 74 20 70 6f 6c 69 63 79 20 6f 6e 20 6d 61 74 63 68 | nce.number..Exit.policy.on.match |
| ea100 | 3a 20 67 6f 20 74 6f 20 72 75 6c 65 20 3c 31 2d 36 35 35 33 35 3e 00 45 78 70 65 64 69 74 65 64 | :.go.to.rule.<1-65535>.Expedited |
| ea120 | 20 66 6f 72 77 61 72 64 69 6e 67 20 28 45 46 29 00 45 78 70 6c 61 6e 61 74 69 6f 6e 00 45 78 70 | .forwarding.(EF).Explanation.Exp |
| ea140 | 6c 69 63 69 74 6c 79 20 64 65 63 6c 61 72 65 20 49 44 20 66 6f 72 20 74 68 69 73 20 6d 69 6e 69 | licitly.declare.ID.for.this.mini |
| ea160 | 6f 6e 20 74 6f 20 75 73 65 20 28 64 65 66 61 75 6c 74 3a 20 68 6f 73 74 6e 61 6d 65 29 00 45 78 | on.to.use.(default:.hostname).Ex |
| ea180 | 74 65 72 6e 61 6c 20 44 48 43 50 76 36 20 73 65 72 76 65 72 20 69 73 20 61 74 20 32 30 30 31 3a | ternal.DHCPv6.server.is.at.2001: |
| ea1a0 | 64 62 38 3a 3a 34 00 45 78 74 65 72 6e 61 6c 20 52 6f 75 74 65 20 53 75 6d 6d 61 72 69 73 61 74 | db8::4.External.Route.Summarisat |
| ea1c0 | 69 6f 6e 00 45 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 20 73 65 71 75 65 6e 63 65 73 00 45 | ion.External.address.sequences.E |
| ea1e0 | 78 74 65 72 6e 61 6c 20 61 74 74 61 63 6b 3a 20 61 6e 20 61 74 74 61 63 6b 20 66 72 6f 6d 20 74 | xternal.attack:.an.attack.from.t |
| ea200 | 68 65 20 69 6e 74 65 72 6e 65 74 20 74 6f 77 61 72 64 73 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 | he.internet.towards.an.internal. |
| ea220 | 49 50 20 69 73 20 69 64 65 6e 74 69 66 79 2e 20 49 6e 20 74 68 69 73 20 63 61 73 65 2c 20 61 6c | IP.is.identify..In.this.case,.al |
| ea240 | 6c 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 77 61 72 64 73 20 73 75 63 68 20 49 50 20 77 69 | l.connections.towards.such.IP.wi |
| ea260 | 6c 6c 20 62 65 20 62 6c 6f 63 6b 65 64 00 46 51 2d 43 6f 44 65 6c 00 46 51 2d 43 6f 44 65 6c 20 | ll.be.blocked.FQ-CoDel.FQ-CoDel. |
| ea280 | 66 69 67 68 74 73 20 62 75 66 66 65 72 62 6c 6f 61 74 20 61 6e 64 20 72 65 64 75 63 65 73 20 6c | fights.bufferbloat.and.reduces.l |
| ea2a0 | 61 74 65 6e 63 79 20 77 69 74 68 6f 75 74 20 74 68 65 20 6e 65 65 64 20 6f 66 20 63 6f 6d 70 6c | atency.without.the.need.of.compl |
| ea2c0 | 65 78 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 2e 20 49 74 20 68 61 73 20 62 65 63 6f 6d 65 | ex.configurations..It.has.become |
| ea2e0 | 20 74 68 65 20 6e 65 77 20 64 65 66 61 75 6c 74 20 51 75 65 75 65 69 6e 67 20 44 69 73 63 69 70 | .the.new.default.Queueing.Discip |
| ea300 | 6c 69 6e 65 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 73 20 6f 66 20 73 6f 6d 65 20 | line.for.the.interfaces.of.some. |
| ea320 | 47 4e 55 2f 4c 69 6e 75 78 20 64 69 73 74 72 69 62 75 74 69 6f 6e 73 2e 00 46 51 2d 43 6f 44 65 | GNU/Linux.distributions..FQ-CoDe |
| ea340 | 6c 20 69 73 20 62 61 73 65 64 20 6f 6e 20 61 20 6d 6f 64 69 66 69 65 64 20 44 65 66 69 63 69 74 | l.is.based.on.a.modified.Deficit |
| ea360 | 20 52 6f 75 6e 64 20 52 6f 62 69 6e 20 28 44 52 52 5f 29 20 71 75 65 75 65 20 73 63 68 65 64 75 | .Round.Robin.(DRR_).queue.schedu |
| ea380 | 6c 65 72 20 77 69 74 68 20 74 68 65 20 43 6f 44 65 6c 20 41 63 74 69 76 65 20 51 75 65 75 65 20 | ler.with.the.CoDel.Active.Queue. |
| ea3a0 | 4d 61 6e 61 67 65 6d 65 6e 74 20 28 41 51 4d 29 20 61 6c 67 6f 72 69 74 68 6d 20 6f 70 65 72 61 | Management.(AQM).algorithm.opera |
| ea3c0 | 74 69 6e 67 20 6f 6e 20 65 61 63 68 20 71 75 65 75 65 2e 00 46 51 2d 43 6f 44 65 6c 20 69 73 20 | ting.on.each.queue..FQ-CoDel.is. |
| ea3e0 | 74 75 6e 65 64 20 74 6f 20 72 75 6e 20 6f 6b 20 77 69 74 68 20 69 74 73 20 64 65 66 61 75 6c 74 | tuned.to.run.ok.with.its.default |
| ea400 | 20 70 61 72 61 6d 65 74 65 72 73 20 61 74 20 31 30 47 62 69 74 20 73 70 65 65 64 73 2e 20 49 74 | .parameters.at.10Gbit.speeds..It |
| ea420 | 20 6d 69 67 68 74 20 77 6f 72 6b 20 6f 6b 20 74 6f 6f 20 61 74 20 6f 74 68 65 72 20 73 70 65 65 | .might.work.ok.too.at.other.spee |
| ea440 | 64 73 20 77 69 74 68 6f 75 74 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 6e 79 74 68 69 6e 67 2c | ds.without.configuring.anything, |
| ea460 | 20 62 75 74 20 68 65 72 65 20 77 65 20 77 69 6c 6c 20 65 78 70 6c 61 69 6e 20 73 6f 6d 65 20 63 | .but.here.we.will.explain.some.c |
| ea480 | 61 73 65 73 20 77 68 65 6e 20 79 6f 75 20 6d 69 67 68 74 20 77 61 6e 74 20 74 6f 20 74 75 6e 65 | ases.when.you.might.want.to.tune |
| ea4a0 | 20 69 74 73 20 70 61 72 61 6d 65 74 65 72 73 2e 00 46 51 2d 43 6f 64 65 6c 20 69 73 20 61 20 6e | .its.parameters..FQ-Codel.is.a.n |
| ea4c0 | 6f 6e 2d 73 68 61 70 69 6e 67 20 28 77 6f 72 6b 2d 63 6f 6e 73 65 72 76 69 6e 67 29 20 70 6f 6c | on-shaping.(work-conserving).pol |
| ea4e0 | 69 63 79 2c 20 73 6f 20 69 74 20 77 69 6c 6c 20 6f 6e 6c 79 20 62 65 20 75 73 65 66 75 6c 20 69 | icy,.so.it.will.only.be.useful.i |
| ea500 | 66 20 79 6f 75 72 20 6f 75 74 67 6f 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 72 65 61 | f.your.outgoing.interface.is.rea |
| ea520 | 6c 6c 79 20 66 75 6c 6c 2e 20 49 66 20 69 74 20 69 73 20 6e 6f 74 2c 20 56 79 4f 53 20 77 69 6c | lly.full..If.it.is.not,.VyOS.wil |
| ea540 | 6c 20 6e 6f 74 20 6f 77 6e 20 74 68 65 20 71 75 65 75 65 20 61 6e 64 20 46 51 2d 43 6f 64 65 6c | l.not.own.the.queue.and.FQ-Codel |
| ea560 | 20 77 69 6c 6c 20 68 61 76 65 20 6e 6f 20 65 66 66 65 63 74 2e 20 49 66 20 74 68 65 72 65 20 69 | .will.have.no.effect..If.there.i |
| ea580 | 73 20 62 61 6e 64 77 69 64 74 68 20 61 76 61 69 6c 61 62 6c 65 20 6f 6e 20 74 68 65 20 70 68 79 | s.bandwidth.available.on.the.phy |
| ea5a0 | 73 69 63 61 6c 20 6c 69 6e 6b 2c 20 79 6f 75 20 63 61 6e 20 65 6d 62 65 64 5f 20 46 51 2d 43 6f | sical.link,.you.can.embed_.FQ-Co |
| ea5c0 | 64 65 6c 20 69 6e 74 6f 20 61 20 63 6c 61 73 73 66 75 6c 20 73 68 61 70 69 6e 67 20 70 6f 6c 69 | del.into.a.classful.shaping.poli |
| ea5e0 | 63 79 20 74 6f 20 6d 61 6b 65 20 73 75 72 65 20 69 74 20 6f 77 6e 73 20 74 68 65 20 71 75 65 75 | cy.to.make.sure.it.owns.the.queu |
| ea600 | 65 2e 20 49 66 20 79 6f 75 20 61 72 65 20 6e 6f 74 20 73 75 72 65 20 69 66 20 79 6f 75 20 6e 65 | e..If.you.are.not.sure.if.you.ne |
| ea620 | 65 64 20 74 6f 20 65 6d 62 65 64 20 79 6f 75 72 20 46 51 2d 43 6f 44 65 6c 20 70 6f 6c 69 63 79 | ed.to.embed.your.FQ-CoDel.policy |
| ea640 | 20 69 6e 74 6f 20 61 20 53 68 61 70 65 72 2c 20 64 6f 20 69 74 2e 00 46 52 52 00 46 52 52 20 6f | .into.a.Shaper,.do.it..FRR.FRR.o |
| ea660 | 66 66 65 72 73 20 6f 6e 6c 79 20 70 61 72 74 69 61 6c 20 73 75 70 70 6f 72 74 20 66 6f 72 20 73 | ffers.only.partial.support.for.s |
| ea680 | 6f 6d 65 20 6f 66 20 74 68 65 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 65 78 74 65 | ome.of.the.routing.protocol.exte |
| ea6a0 | 6e 73 69 6f 6e 73 20 74 68 61 74 20 61 72 65 20 75 73 65 64 20 77 69 74 68 20 4d 50 4c 53 2d 54 | nsions.that.are.used.with.MPLS-T |
| ea6c0 | 45 3b 20 69 74 20 64 6f 65 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 20 61 20 63 6f 6d 70 6c 65 74 | E;.it.does.not.support.a.complet |
| ea6e0 | 65 20 52 53 56 50 2d 54 45 20 73 6f 6c 75 74 69 6f 6e 2e 00 46 52 52 20 73 75 70 70 6f 72 74 73 | e.RSVP-TE.solution..FRR.supports |
| ea700 | 20 61 20 6e 65 77 20 77 61 79 20 6f 66 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 56 4c 41 4e 2d 74 | .a.new.way.of.configuring.VLAN-t |
| ea720 | 6f 2d 56 4e 49 20 6d 61 70 70 69 6e 67 73 20 66 6f 72 20 45 56 50 4e 2d 56 58 4c 41 4e 2c 20 77 | o-VNI.mappings.for.EVPN-VXLAN,.w |
| ea740 | 68 65 6e 20 77 6f 72 6b 69 6e 67 20 77 69 74 68 20 74 68 65 20 4c 69 6e 75 78 20 6b 65 72 6e 65 | hen.working.with.the.Linux.kerne |
| ea760 | 6c 2e 20 49 6e 20 74 68 69 73 20 6e 65 77 20 77 61 79 2c 20 74 68 65 20 6d 61 70 70 69 6e 67 20 | l..In.this.new.way,.the.mapping. |
| ea780 | 6f 66 20 61 20 56 4c 41 4e 20 74 6f 20 61 20 3a 61 62 62 72 3a 60 56 4e 49 20 28 56 58 4c 41 4e | of.a.VLAN.to.a.:abbr:`VNI.(VXLAN |
| ea7a0 | 20 4e 65 74 77 6f 72 6b 20 49 64 65 6e 74 69 66 69 65 72 20 28 6f 72 20 56 58 4c 41 4e 20 53 65 | .Network.Identifier.(or.VXLAN.Se |
| ea7c0 | 67 6d 65 6e 74 20 49 44 29 29 60 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 61 67 61 69 6e 73 | gment.ID))`.is.configured.agains |
| ea7e0 | 74 20 61 20 63 6f 6e 74 61 69 6e 65 72 20 56 58 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 20 77 68 | t.a.container.VXLAN.interface.wh |
| ea800 | 69 63 68 20 69 73 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 61 20 3a 61 62 62 72 3a 60 53 | ich.is.referred.to.as.a.:abbr:`S |
| ea820 | 56 44 20 28 53 69 6e 67 6c 65 20 56 58 4c 41 4e 20 64 65 76 69 63 65 29 60 2e 00 46 54 50 20 64 | VD.(Single.VXLAN.device)`..FTP.d |
| ea840 | 61 65 6d 6f 6e 00 46 61 63 69 6c 69 74 69 65 73 00 46 61 63 69 6c 69 74 69 65 73 20 63 61 6e 20 | aemon.Facilities.Facilities.can. |
| ea860 | 62 65 20 61 64 6a 75 73 74 65 64 20 74 6f 20 6d 65 65 74 20 74 68 65 20 6e 65 65 64 73 20 6f 66 | be.adjusted.to.meet.the.needs.of |
| ea880 | 20 74 68 65 20 75 73 65 72 3a 00 46 61 63 69 6c 69 74 79 20 43 6f 64 65 00 46 61 69 6c 6f 76 65 | .the.user:.Facility.Code.Failove |
| ea8a0 | 72 00 46 61 69 6c 6f 76 65 72 20 52 6f 75 74 65 73 00 46 61 69 6c 6f 76 65 72 20 6d 65 63 68 61 | r.Failover.Routes.Failover.mecha |
| ea8c0 | 6e 69 73 6d 20 74 6f 20 75 73 65 20 66 6f 72 20 63 6f 6e 6e 74 72 61 63 6b 2d 73 79 6e 63 2e 00 | nism.to.use.for.conntrack-sync.. |
| ea8e0 | 46 61 69 6c 6f 76 65 72 20 72 6f 75 74 65 73 20 61 72 65 20 6d 61 6e 75 61 6c 6c 79 20 63 6f 6e | Failover.routes.are.manually.con |
| ea900 | 66 69 67 75 72 65 64 20 72 6f 75 74 65 73 2c 20 62 75 74 20 74 68 65 79 20 69 6e 73 74 61 6c 6c | figured.routes,.but.they.install |
| ea920 | 20 74 6f 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 69 66 20 74 68 65 20 68 65 61 | .to.the.routing.table.if.the.hea |
| ea940 | 6c 74 68 2d 63 68 65 63 6b 20 74 61 72 67 65 74 20 69 73 20 61 6c 69 76 65 2e 20 49 66 20 74 68 | lth-check.target.is.alive..If.th |
| ea960 | 65 20 74 61 72 67 65 74 20 69 73 20 6e 6f 74 20 61 6c 69 76 65 20 74 68 65 20 72 6f 75 74 65 20 | e.target.is.not.alive.the.route. |
| ea980 | 69 73 20 72 65 6d 6f 76 65 64 20 66 72 6f 6d 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c | is.removed.from.the.routing.tabl |
| ea9a0 | 65 20 75 6e 74 69 6c 20 74 68 65 20 74 61 72 67 65 74 20 77 69 6c 6c 20 62 65 20 61 76 61 69 6c | e.until.the.target.will.be.avail |
| ea9c0 | 61 62 6c 65 2e 00 46 61 69 6c 6f 76 65 72 20 72 6f 75 74 65 73 20 61 72 65 20 6d 61 6e 75 61 6c | able..Failover.routes.are.manual |
| ea9e0 | 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 72 6f 75 74 65 73 2c 20 62 75 74 20 74 68 65 79 20 6f | ly.configured.routes,.but.they.o |
| eaa00 | 6e 6c 79 20 69 6e 73 74 61 6c 6c 20 74 6f 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 | nly.install.to.the.routing.table |
| eaa20 | 20 69 66 20 74 68 65 20 68 65 61 6c 74 68 2d 63 68 65 63 6b 20 74 61 72 67 65 74 20 69 73 20 61 | .if.the.health-check.target.is.a |
| eaa40 | 6c 69 76 65 2e 20 49 66 20 74 68 65 20 74 61 72 67 65 74 20 69 73 20 6e 6f 74 20 61 6c 69 76 65 | live..If.the.target.is.not.alive |
| eaa60 | 20 74 68 65 20 72 6f 75 74 65 20 69 73 20 72 65 6d 6f 76 65 64 20 66 72 6f 6d 20 74 68 65 20 72 | .the.route.is.removed.from.the.r |
| eaa80 | 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 75 6e 74 69 6c 20 74 68 65 20 74 61 72 67 65 74 20 62 65 | outing.table.until.the.target.be |
| eaaa0 | 63 6f 6d 65 73 20 61 76 61 69 6c 61 62 6c 65 2e 00 46 61 69 72 20 51 75 65 75 65 00 46 61 69 72 | comes.available..Fair.Queue.Fair |
| eaac0 | 20 51 75 65 75 65 20 69 73 20 61 20 6e 6f 6e 2d 73 68 61 70 69 6e 67 20 28 77 6f 72 6b 2d 63 6f | .Queue.is.a.non-shaping.(work-co |
| eaae0 | 6e 73 65 72 76 69 6e 67 29 20 70 6f 6c 69 63 79 2c 20 73 6f 20 69 74 20 77 69 6c 6c 20 6f 6e 6c | nserving).policy,.so.it.will.onl |
| eab00 | 79 20 62 65 20 75 73 65 66 75 6c 20 69 66 20 79 6f 75 72 20 6f 75 74 67 6f 69 6e 67 20 69 6e 74 | y.be.useful.if.your.outgoing.int |
| eab20 | 65 72 66 61 63 65 20 69 73 20 72 65 61 6c 6c 79 20 66 75 6c 6c 2e 20 49 66 20 69 74 20 69 73 20 | erface.is.really.full..If.it.is. |
| eab40 | 6e 6f 74 2c 20 56 79 4f 53 20 77 69 6c 6c 20 6e 6f 74 20 6f 77 6e 20 74 68 65 20 71 75 65 75 65 | not,.VyOS.will.not.own.the.queue |
| eab60 | 20 61 6e 64 20 46 61 69 72 20 51 75 65 75 65 20 77 69 6c 6c 20 68 61 76 65 20 6e 6f 20 65 66 66 | .and.Fair.Queue.will.have.no.eff |
| eab80 | 65 63 74 2e 20 49 66 20 74 68 65 72 65 20 69 73 20 62 61 6e 64 77 69 64 74 68 20 61 76 61 69 6c | ect..If.there.is.bandwidth.avail |
| eaba0 | 61 62 6c 65 20 6f 6e 20 74 68 65 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 2c 20 79 6f 75 20 63 | able.on.the.physical.link,.you.c |
| eabc0 | 61 6e 20 65 6d 62 65 64 5f 20 46 61 69 72 2d 51 75 65 75 65 20 69 6e 74 6f 20 61 20 63 6c 61 73 | an.embed_.Fair-Queue.into.a.clas |
| eabe0 | 73 66 75 6c 20 73 68 61 70 69 6e 67 20 70 6f 6c 69 63 79 20 74 6f 20 6d 61 6b 65 20 73 75 72 65 | sful.shaping.policy.to.make.sure |
| eac00 | 20 69 74 20 6f 77 6e 73 20 74 68 65 20 71 75 65 75 65 2e 00 46 61 69 72 20 51 75 65 75 65 20 69 | .it.owns.the.queue..Fair.Queue.i |
| eac20 | 73 20 61 20 77 6f 72 6b 2d 63 6f 6e 73 65 72 76 69 6e 67 20 73 63 68 65 64 75 6c 65 72 20 77 68 | s.a.work-conserving.scheduler.wh |
| eac40 | 69 63 68 20 73 63 68 65 64 75 6c 65 73 20 74 68 65 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 20 6f | ich.schedules.the.transmission.o |
| eac60 | 66 20 70 61 63 6b 65 74 73 20 62 61 73 65 64 20 6f 6e 20 66 6c 6f 77 73 2c 20 74 68 61 74 20 69 | f.packets.based.on.flows,.that.i |
| eac80 | 73 2c 20 69 74 20 62 61 6c 61 6e 63 65 73 20 74 72 61 66 66 69 63 20 64 69 73 74 72 69 62 75 74 | s,.it.balances.traffic.distribut |
| eaca0 | 69 6e 67 20 69 74 20 74 68 72 6f 75 67 68 20 64 69 66 66 65 72 65 6e 74 20 73 75 62 2d 71 75 65 | ing.it.through.different.sub-que |
| eacc0 | 75 65 73 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 65 6e 73 75 72 65 20 66 61 69 72 6e 65 73 73 20 | ues.in.order.to.ensure.fairness. |
| eace0 | 73 6f 20 74 68 61 74 20 65 61 63 68 20 66 6c 6f 77 20 69 73 20 61 62 6c 65 20 74 6f 20 73 65 6e | so.that.each.flow.is.able.to.sen |
| ead00 | 64 20 64 61 74 61 20 69 6e 20 74 75 72 6e 2c 20 70 72 65 76 65 6e 74 69 6e 67 20 61 6e 79 20 73 | d.data.in.turn,.preventing.any.s |
| ead20 | 69 6e 67 6c 65 20 6f 6e 65 20 66 72 6f 6d 20 64 72 6f 77 6e 69 6e 67 20 6f 75 74 20 74 68 65 20 | ingle.one.from.drowning.out.the. |
| ead40 | 72 65 73 74 2e 00 46 61 73 74 4e 65 74 4d 6f 6e 00 46 61 73 74 4e 65 74 4d 6f 6e 20 69 73 20 61 | rest..FastNetMon.FastNetMon.is.a |
| ead60 | 20 68 69 67 68 2d 70 65 72 66 6f 72 6d 61 6e 63 65 20 44 44 6f 53 20 64 65 74 65 63 74 6f 72 2f | .high-performance.DDoS.detector/ |
| ead80 | 73 65 6e 73 6f 72 20 62 75 69 6c 74 20 6f 6e 20 74 6f 70 20 6f 66 20 6d 75 6c 74 69 70 6c 65 20 | sensor.built.on.top.of.multiple. |
| eada0 | 70 61 63 6b 65 74 20 63 61 70 74 75 72 65 20 65 6e 67 69 6e 65 73 3a 20 4e 65 74 46 6c 6f 77 2c | packet.capture.engines:.NetFlow, |
| eadc0 | 20 49 50 46 49 58 2c 20 73 46 6c 6f 77 2c 20 41 46 5f 50 41 43 4b 45 54 20 28 70 6f 72 74 20 6d | .IPFIX,.sFlow,.AF_PACKET.(port.m |
| eade0 | 69 72 72 6f 72 29 2e 20 49 74 20 63 61 6e 20 64 65 74 65 63 74 20 68 6f 73 74 73 20 69 6e 20 74 | irror)..It.can.detect.hosts.in.t |
| eae00 | 68 65 20 64 65 70 6c 6f 79 65 64 20 6e 65 74 77 6f 72 6b 20 73 65 6e 64 69 6e 67 20 6f 72 20 72 | he.deployed.network.sending.or.r |
| eae20 | 65 63 65 69 76 69 6e 67 20 6c 61 72 67 65 20 76 6f 6c 75 6d 65 73 20 6f 66 20 74 72 61 66 66 69 | eceiving.large.volumes.of.traffi |
| eae40 | 63 2c 20 70 61 63 6b 65 74 73 2f 62 79 74 65 73 2f 66 6c 6f 77 73 20 70 65 72 20 73 65 63 6f 6e | c,.packets/bytes/flows.per.secon |
| eae60 | 64 20 61 6e 64 20 70 65 72 66 6f 72 6d 20 61 20 63 6f 6e 66 69 67 75 72 61 62 6c 65 20 61 63 74 | d.and.perform.a.configurable.act |
| eae80 | 69 6f 6e 20 74 6f 20 68 61 6e 64 6c 65 20 74 68 61 74 20 65 76 65 6e 74 2c 20 73 75 63 68 20 61 | ion.to.handle.that.event,.such.a |
| eaea0 | 73 20 63 61 6c 6c 69 6e 67 20 61 20 63 75 73 74 6f 6d 20 73 63 72 69 70 74 2e 00 46 65 61 74 75 | s.calling.a.custom.script..Featu |
| eaec0 | 72 65 73 20 6f 66 20 74 68 65 20 43 75 72 72 65 6e 74 20 49 6d 70 6c 65 6d 65 6e 74 61 74 69 6f | res.of.the.Current.Implementatio |
| eaee0 | 6e 00 46 69 65 6c 64 00 46 69 6c 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 66 69 6c | n.Field.File.identified.by.`<fil |
| eaf00 | 65 6e 61 6d 65 3e 60 20 63 6f 6e 74 61 69 6e 69 6e 67 20 74 68 65 20 54 53 49 47 20 61 75 74 68 | ename>`.containing.the.TSIG.auth |
| eaf20 | 65 6e 74 69 63 61 74 69 6f 6e 20 6b 65 79 20 66 6f 72 20 52 46 43 32 31 33 36 20 6e 73 75 70 64 | entication.key.for.RFC2136.nsupd |
| eaf40 | 61 74 65 20 6f 6e 20 72 65 6d 6f 74 65 20 44 4e 53 20 73 65 72 76 65 72 2e 00 46 69 6c 65 20 69 | ate.on.remote.DNS.server..File.i |
| eaf60 | 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 6b 65 79 66 69 6c 65 3e 60 20 63 6f 6e 74 61 69 6e | dentified.by.`<keyfile>`.contain |
| eaf80 | 69 6e 67 20 74 68 65 20 73 65 63 72 65 74 20 52 4e 44 43 20 6b 65 79 20 73 68 61 72 65 64 20 77 | ing.the.secret.RNDC.key.shared.w |
| eafa0 | 69 74 68 20 72 65 6d 6f 74 65 20 44 4e 53 20 73 65 72 76 65 72 2e 00 46 69 6c 74 65 72 20 54 79 | ith.remote.DNS.server..Filter.Ty |
| eafc0 | 70 65 2d 33 20 73 75 6d 6d 61 72 79 2d 4c 53 41 73 20 61 6e 6e 6f 75 6e 63 65 64 20 74 6f 20 6f | pe-3.summary-LSAs.announced.to.o |
| eafe0 | 74 68 65 72 20 61 72 65 61 73 20 6f 72 69 67 69 6e 61 74 65 64 20 66 72 6f 6d 20 69 6e 74 72 61 | ther.areas.originated.from.intra |
| eb000 | 2d 20 61 72 65 61 20 70 61 74 68 73 20 66 72 6f 6d 20 73 70 65 63 69 66 69 65 64 20 61 72 65 61 | -.area.paths.from.specified.area |
| eb020 | 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 6d 61 6b 65 73 20 73 65 6e 73 65 20 69 6e 20 41 42 | ..This.command.makes.sense.in.AB |
| eb040 | 52 20 6f 6e 6c 79 2e 00 46 69 6c 74 65 72 20 73 79 73 6c 6f 67 20 6d 65 73 73 61 67 65 73 20 62 | R.only..Filter.syslog.messages.b |
| eb060 | 61 73 65 64 20 6f 6e 20 66 61 63 69 6c 69 74 79 20 61 6e 64 20 6c 65 76 65 6c 2e 00 46 69 6c 74 | ased.on.facility.and.level..Filt |
| eb080 | 65 72 20 74 72 61 66 66 69 63 20 62 61 73 65 64 20 6f 6e 20 73 6f 75 72 63 65 2f 64 65 73 74 69 | er.traffic.based.on.source/desti |
| eb0a0 | 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2e 00 46 69 6c 74 65 72 2d 49 64 3d 32 30 30 30 2f 33 | nation.address..Filter-Id=2000/3 |
| eb0c0 | 30 30 30 20 28 6d 65 61 6e 73 20 32 30 30 30 4b 62 69 74 20 64 6f 77 6e 2d 73 74 72 65 61 6d 20 | 000.(means.2000Kbit.down-stream. |
| eb0e0 | 72 61 74 65 20 61 6e 64 20 33 30 30 30 4b 62 69 74 20 75 70 2d 73 74 72 65 61 6d 20 72 61 74 65 | rate.and.3000Kbit.up-stream.rate |
| eb100 | 29 00 46 69 6c 74 65 72 2d 49 64 3d 35 30 30 30 2f 34 30 30 30 20 28 6d 65 61 6e 73 20 35 30 30 | ).Filter-Id=5000/4000.(means.500 |
| eb120 | 30 4b 62 69 74 20 64 6f 77 6e 2d 73 74 72 65 61 6d 20 72 61 74 65 20 61 6e 64 20 34 30 30 30 4b | 0Kbit.down-stream.rate.and.4000K |
| eb140 | 62 69 74 20 75 70 2d 73 74 72 65 61 6d 20 72 61 74 65 29 20 49 66 20 61 74 74 72 69 62 75 74 65 | bit.up-stream.rate).If.attribute |
| eb160 | 20 46 69 6c 74 65 72 2d 49 64 20 72 65 64 65 66 69 6e 65 64 2c 20 72 65 70 6c 61 63 65 20 69 74 | .Filter-Id.redefined,.replace.it |
| eb180 | 20 69 6e 20 52 41 44 49 55 53 20 43 6f 41 20 72 65 71 75 65 73 74 2e 00 46 69 6c 74 65 72 69 6e | .in.RADIUS.CoA.request..Filterin |
| eb1a0 | 67 00 46 69 6c 74 65 72 69 6e 67 20 69 73 20 75 73 65 64 20 66 6f 72 20 62 6f 74 68 20 69 6e 70 | g.Filtering.is.used.for.both.inp |
| eb1c0 | 75 74 20 61 6e 64 20 6f 75 74 70 75 74 20 6f 66 20 74 68 65 20 72 6f 75 74 69 6e 67 20 69 6e 66 | ut.and.output.of.the.routing.inf |
| eb1e0 | 6f 72 6d 61 74 69 6f 6e 2e 20 4f 6e 63 65 20 66 69 6c 74 65 72 69 6e 67 20 69 73 20 64 65 66 69 | ormation..Once.filtering.is.defi |
| eb200 | 6e 65 64 2c 20 69 74 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 69 6e 20 61 6e 79 20 64 69 | ned,.it.can.be.applied.in.any.di |
| eb220 | 72 65 63 74 69 6f 6e 2e 20 56 79 4f 53 20 6d 61 6b 65 73 20 66 69 6c 74 65 72 69 6e 67 20 70 6f | rection..VyOS.makes.filtering.po |
| eb240 | 73 73 69 62 6c 65 20 75 73 69 6e 67 20 61 63 6c 73 20 61 6e 64 20 70 72 65 66 69 78 20 6c 69 73 | ssible.using.acls.and.prefix.lis |
| eb260 | 74 73 2e 00 46 69 6e 61 6c 6c 79 2c 20 74 6f 20 61 70 70 6c 79 20 74 68 65 20 70 6f 6c 69 63 79 | ts..Finally,.to.apply.the.policy |
| eb280 | 20 72 6f 75 74 65 20 74 6f 20 69 6e 67 72 65 73 73 20 74 72 61 66 66 69 63 20 6f 6e 20 6f 75 72 | .route.to.ingress.traffic.on.our |
| eb2a0 | 20 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 2c 20 77 65 20 75 73 65 3a 00 46 69 72 65 77 61 6c 6c | .LAN.interface,.we.use:.Firewall |
| eb2c0 | 00 46 69 72 65 77 61 6c 6c 20 2d 20 49 50 76 34 20 52 75 6c 65 73 00 46 69 72 65 77 61 6c 6c 20 | .Firewall.-.IPv4.Rules.Firewall. |
| eb2e0 | 2d 20 49 50 76 36 20 52 75 6c 65 73 00 46 69 72 65 77 61 6c 6c 20 43 6f 6e 66 69 67 75 72 61 74 | -.IPv6.Rules.Firewall.Configurat |
| eb300 | 69 6f 6e 00 46 69 72 65 77 61 6c 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 28 44 65 70 72 | ion.Firewall.Configuration.(Depr |
| eb320 | 65 63 61 74 65 64 29 00 46 69 72 65 77 61 6c 6c 20 44 65 73 63 72 69 70 74 69 6f 6e 00 46 69 72 | ecated).Firewall.Description.Fir |
| eb340 | 65 77 61 6c 6c 20 45 78 63 65 70 74 69 6f 6e 73 00 46 69 72 65 77 61 6c 6c 20 4c 6f 67 73 00 46 | ewall.Exceptions.Firewall.Logs.F |
| eb360 | 69 72 65 77 61 6c 6c 20 52 75 6c 65 73 00 46 69 72 65 77 61 6c 6c 20 62 61 73 65 20 63 68 61 69 | irewall.Rules.Firewall.base.chai |
| eb380 | 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 65 72 69 6e | n.to.configure.firewall.filterin |
| eb3a0 | 67 20 72 75 6c 65 73 20 66 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 69 73 20 60 | g.rules.for.transit.traffic.is.` |
| eb3c0 | 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 | `set.firewall.ipv4.forward.filte |
| eb3e0 | 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 61 67 65 20 | r....``,.which.happens.in.stage. |
| eb400 | 35 2c 20 68 69 67 68 6c 69 67 68 74 65 64 20 77 69 74 68 20 72 65 64 20 63 6f 6c 6f 72 2e 00 46 | 5,.highlighted.with.red.color..F |
| eb420 | 69 72 65 77 61 6c 6c 20 62 61 73 65 20 63 68 61 69 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 | irewall.base.chain.to.configure. |
| eb440 | 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 74 72 61 | firewall.filtering.rules.for.tra |
| eb460 | 6e 73 69 74 20 74 72 61 66 66 69 63 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 | nsit.traffic.is.``set.firewall.i |
| eb480 | 70 76 36 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 | pv6.forward.filter....``,.which. |
| eb4a0 | 68 61 70 70 65 6e 73 20 69 6e 20 73 74 61 67 65 20 35 2c 20 68 69 67 68 6c 69 67 68 74 65 64 20 | happens.in.stage.5,.highlighted. |
| eb4c0 | 77 69 74 68 20 72 65 64 20 63 6f 6c 6f 72 2e 00 46 69 72 65 77 61 6c 6c 20 64 79 6e 61 6d 69 63 | with.red.color..Firewall.dynamic |
| eb4e0 | 20 67 72 6f 75 70 73 20 61 72 65 20 64 69 66 66 65 72 65 6e 74 20 66 72 6f 6d 20 61 6c 6c 20 74 | .groups.are.different.from.all.t |
| eb500 | 68 65 20 67 72 6f 75 70 73 20 64 65 66 69 6e 65 64 20 70 72 65 76 69 6f 75 73 6c 79 20 62 65 63 | he.groups.defined.previously.bec |
| eb520 | 61 75 73 65 2c 20 6e 6f 74 20 6f 6e 6c 79 20 74 68 65 79 20 63 61 6e 20 62 65 20 75 73 65 64 20 | ause,.not.only.they.can.be.used. |
| eb540 | 61 73 20 73 6f 75 72 63 65 2f 64 65 73 74 69 6e 61 74 69 6f 6e 20 69 6e 20 66 69 72 65 77 61 6c | as.source/destination.in.firewal |
| eb560 | 6c 20 72 75 6c 65 73 2c 20 62 75 74 20 6d 65 6d 62 65 72 73 20 6f 66 20 74 68 65 73 65 20 67 72 | l.rules,.but.members.of.these.gr |
| eb580 | 6f 75 70 73 20 61 72 65 20 6e 6f 74 20 64 65 66 69 6e 65 64 20 73 74 61 74 69 63 61 6c 6c 79 20 | oups.are.not.defined.statically. |
| eb5a0 | 75 73 69 6e 67 20 76 79 6f 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 46 69 72 65 77 61 | using.vyos.configuration..Firewa |
| eb5c0 | 6c 6c 20 67 72 6f 75 70 73 00 46 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 20 72 65 70 72 65 73 | ll.groups.Firewall.groups.repres |
| eb5e0 | 65 6e 74 20 63 6f 6c 6c 65 63 74 69 6f 6e 73 20 6f 66 20 49 50 20 61 64 64 72 65 73 73 65 73 2c | ent.collections.of.IP.addresses, |
| eb600 | 20 6e 65 74 77 6f 72 6b 73 2c 20 70 6f 72 74 73 2c 20 6d 61 63 20 61 64 64 72 65 73 73 65 73 20 | .networks,.ports,.mac.addresses. |
| eb620 | 6f 72 20 64 6f 6d 61 69 6e 73 2e 20 4f 6e 63 65 20 63 72 65 61 74 65 64 2c 20 61 20 67 72 6f 75 | or.domains..Once.created,.a.grou |
| eb640 | 70 20 63 61 6e 20 62 65 20 72 65 66 65 72 65 6e 63 65 64 20 62 79 20 66 69 72 65 77 61 6c 6c 2c | p.can.be.referenced.by.firewall, |
| eb660 | 20 6e 61 74 20 61 6e 64 20 70 6f 6c 69 63 79 20 72 6f 75 74 65 20 72 75 6c 65 73 20 61 73 20 65 | .nat.and.policy.route.rules.as.e |
| eb680 | 69 74 68 65 72 20 61 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6d 61 | ither.a.source.or.destination.ma |
| eb6a0 | 74 63 68 65 72 2e 20 4d 65 6d 62 65 72 73 20 63 61 6e 20 62 65 20 61 64 64 65 64 20 6f 72 20 72 | tcher..Members.can.be.added.or.r |
| eb6c0 | 65 6d 6f 76 65 64 20 66 72 6f 6d 20 61 20 67 72 6f 75 70 20 77 69 74 68 6f 75 74 20 63 68 61 6e | emoved.from.a.group.without.chan |
| eb6e0 | 67 65 73 20 74 6f 2c 20 6f 72 20 74 68 65 20 6e 65 65 64 20 74 6f 20 72 65 6c 6f 61 64 2c 20 69 | ges.to,.or.the.need.to.reload,.i |
| eb700 | 6e 64 69 76 69 64 75 61 6c 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 2e 00 46 69 72 65 77 61 | ndividual.firewall.rules..Firewa |
| eb720 | 6c 6c 20 67 72 6f 75 70 73 20 72 65 70 72 65 73 65 6e 74 20 63 6f 6c 6c 65 63 74 69 6f 6e 73 20 | ll.groups.represent.collections. |
| eb740 | 6f 66 20 49 50 20 61 64 64 72 65 73 73 65 73 2c 20 6e 65 74 77 6f 72 6b 73 2c 20 70 6f 72 74 73 | of.IP.addresses,.networks,.ports |
| eb760 | 2c 20 6d 61 63 20 61 64 64 72 65 73 73 65 73 2c 20 64 6f 6d 61 69 6e 73 20 6f 72 20 69 6e 74 65 | ,.mac.addresses,.domains.or.inte |
| eb780 | 72 66 61 63 65 73 2e 20 4f 6e 63 65 20 63 72 65 61 74 65 64 2c 20 61 20 67 72 6f 75 70 20 63 61 | rfaces..Once.created,.a.group.ca |
| eb7a0 | 6e 20 62 65 20 72 65 66 65 72 65 6e 63 65 64 20 62 79 20 66 69 72 65 77 61 6c 6c 2c 20 6e 61 74 | n.be.referenced.by.firewall,.nat |
| eb7c0 | 20 61 6e 64 20 70 6f 6c 69 63 79 20 72 6f 75 74 65 20 72 75 6c 65 73 20 61 73 20 65 69 74 68 65 | .and.policy.route.rules.as.eithe |
| eb7e0 | 72 20 61 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6d 61 74 63 68 65 | r.a.source.or.destination.matche |
| eb800 | 72 2c 20 61 6e 64 20 61 73 20 69 6e 62 70 75 6e 64 2f 6f 75 74 62 6f 75 6e 64 20 69 6e 20 74 68 | r,.and.as.inbpund/outbound.in.th |
| eb820 | 65 20 63 61 73 65 20 6f 66 20 69 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 2e 00 46 69 72 65 77 | e.case.of.interface.group..Firew |
| eb840 | 61 6c 6c 20 67 72 6f 75 70 73 20 72 65 70 72 65 73 65 6e 74 20 63 6f 6c 6c 65 63 74 69 6f 6e 73 | all.groups.represent.collections |
| eb860 | 20 6f 66 20 49 50 20 61 64 64 72 65 73 73 65 73 2c 20 6e 65 74 77 6f 72 6b 73 2c 20 70 6f 72 74 | .of.IP.addresses,.networks,.port |
| eb880 | 73 2c 20 6d 61 63 20 61 64 64 72 65 73 73 65 73 2c 20 64 6f 6d 61 69 6e 73 20 6f 72 20 69 6e 74 | s,.mac.addresses,.domains.or.int |
| eb8a0 | 65 72 66 61 63 65 73 2e 20 4f 6e 63 65 20 63 72 65 61 74 65 64 2c 20 61 20 67 72 6f 75 70 20 63 | erfaces..Once.created,.a.group.c |
| eb8c0 | 61 6e 20 62 65 20 72 65 66 65 72 65 6e 63 65 64 20 62 79 20 66 69 72 65 77 61 6c 6c 2c 20 6e 61 | an.be.referenced.by.firewall,.na |
| eb8e0 | 74 20 61 6e 64 20 70 6f 6c 69 63 79 20 72 6f 75 74 65 20 72 75 6c 65 73 20 61 73 20 65 69 74 68 | t.and.policy.route.rules.as.eith |
| eb900 | 65 72 20 61 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6d 61 74 63 68 | er.a.source.or.destination.match |
| eb920 | 65 72 2c 20 61 6e 64 2f 6f 72 20 61 73 20 69 6e 62 6f 75 6e 64 2f 6f 75 74 62 6f 75 6e 64 20 69 | er,.and/or.as.inbound/outbound.i |
| eb940 | 6e 20 74 68 65 20 63 61 73 65 20 6f 66 20 69 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 2e 00 46 | n.the.case.of.interface.group..F |
| eb960 | 69 72 65 77 61 6c 6c 20 6d 61 72 6b 2e 20 49 74 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 6c 6f 61 | irewall.mark..It.possible.to.loa |
| eb980 | 64 62 61 6c 61 6e 63 69 6e 67 20 74 72 61 66 66 69 63 20 62 61 73 65 64 20 6f 6e 20 60 60 66 77 | dbalancing.traffic.based.on.``fw |
| eb9a0 | 6d 61 72 6b 60 60 20 76 61 6c 75 65 00 46 69 72 65 77 61 6c 6c 20 70 6f 6c 69 63 79 20 63 61 6e | mark``.value.Firewall.policy.can |
| eb9c0 | 20 61 6c 73 6f 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 74 75 6e 6e 65 6c 20 69 | .also.be.applied.to.the.tunnel.i |
| eb9e0 | 6e 74 65 72 66 61 63 65 20 66 6f 72 20 60 6c 6f 63 61 6c 60 2c 20 60 69 6e 60 2c 20 61 6e 64 20 | nterface.for.`local`,.`in`,.and. |
| eba00 | 60 6f 75 74 60 20 64 69 72 65 63 74 69 6f 6e 73 20 61 6e 64 20 66 75 6e 63 74 69 6f 6e 73 20 69 | `out`.directions.and.functions.i |
| eba20 | 64 65 6e 74 69 63 61 6c 6c 79 20 74 6f 20 65 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 | dentically.to.ethernet.interface |
| eba40 | 73 2e 00 46 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 61 72 65 20 77 72 69 74 74 65 6e 20 61 73 | s..Firewall.rules.are.written.as |
| eba60 | 20 6e 6f 72 6d 61 6c 2c 20 75 73 69 6e 67 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 49 50 20 61 | .normal,.using.the.internal.IP.a |
| eba80 | 64 64 72 65 73 73 20 61 73 20 74 68 65 20 73 6f 75 72 63 65 20 6f 66 20 6f 75 74 62 6f 75 6e 64 | ddress.as.the.source.of.outbound |
| ebaa0 | 20 72 75 6c 65 73 20 61 6e 64 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6f 66 20 69 6e | .rules.and.the.destination.of.in |
| ebac0 | 62 6f 75 6e 64 20 72 75 6c 65 73 2e 00 46 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 66 6f 72 20 | bound.rules..Firewall.rules.for. |
| ebae0 | 44 65 73 74 69 6e 61 74 69 6f 6e 20 4e 41 54 00 46 69 72 65 77 61 6c 6c 2d 4c 65 67 61 63 79 00 | Destination.NAT.Firewall-Legacy. |
| ebb00 | 46 69 72 6d 77 61 72 65 20 55 70 64 61 74 65 00 46 69 72 73 74 20 68 6f 70 20 69 6e 74 65 72 66 | Firmware.Update.First.hop.interf |
| ebb20 | 61 63 65 20 6f 66 20 61 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2e 00 46 69 72 73 74 20 6f | ace.of.a.route.to.match..First.o |
| ebb40 | 66 20 61 6c 6c 20 79 6f 75 20 6d 75 73 74 20 63 6f 6e 66 69 67 75 72 65 20 42 47 50 20 72 6f 75 | f.all.you.must.configure.BGP.rou |
| ebb60 | 74 65 72 20 77 69 74 68 20 74 68 65 20 3a 61 62 62 72 3a 60 41 53 4e 20 28 41 75 74 6f 6e 6f 6d | ter.with.the.:abbr:`ASN.(Autonom |
| ebb80 | 6f 75 73 20 53 79 73 74 65 6d 20 4e 75 6d 62 65 72 29 60 2e 20 54 68 65 20 41 53 20 6e 75 6d 62 | ous.System.Number)`..The.AS.numb |
| ebba0 | 65 72 20 69 73 20 61 6e 20 69 64 65 6e 74 69 66 69 65 72 20 66 6f 72 20 74 68 65 20 61 75 74 6f | er.is.an.identifier.for.the.auto |
| ebbc0 | 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 2e 20 54 68 65 20 42 47 50 20 70 72 6f 74 6f 63 6f 6c 20 | nomous.system..The.BGP.protocol. |
| ebbe0 | 75 73 65 73 20 74 68 65 20 41 53 20 6e 75 6d 62 65 72 20 66 6f 72 20 64 65 74 65 63 74 69 6e 67 | uses.the.AS.number.for.detecting |
| ebc00 | 20 77 68 65 74 68 65 72 20 74 68 65 20 42 47 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 69 | .whether.the.BGP.connection.is.i |
| ebc20 | 6e 74 65 72 6e 61 6c 20 6f 72 20 65 78 74 65 72 6e 61 6c 2e 20 56 79 4f 53 20 64 6f 65 73 20 6e | nternal.or.external..VyOS.does.n |
| ebc40 | 6f 74 20 68 61 76 65 20 61 20 73 70 65 63 69 61 6c 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 74 61 | ot.have.a.special.command.to.sta |
| ebc60 | 72 74 20 74 68 65 20 42 47 50 20 70 72 6f 63 65 73 73 2e 20 54 68 65 20 42 47 50 20 70 72 6f 63 | rt.the.BGP.process..The.BGP.proc |
| ebc80 | 65 73 73 20 73 74 61 72 74 73 20 77 68 65 6e 20 74 68 65 20 66 69 72 73 74 20 6e 65 69 67 68 62 | ess.starts.when.the.first.neighb |
| ebca0 | 6f 72 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 46 69 72 73 74 20 6f 66 20 61 6c 6c 2c 20 | or.is.configured..First.of.all,. |
| ebcc0 | 77 65 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 20 61 20 43 41 20 72 6f 6f 74 20 63 65 72 74 | we.need.to.create.a.CA.root.cert |
| ebce0 | 69 66 69 63 61 74 65 20 61 6e 64 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 20 6f | ificate.and.server.certificate.o |
| ebd00 | 6e 20 74 68 65 20 73 65 72 76 65 72 20 73 69 64 65 2e 00 46 69 72 73 74 20 73 63 65 6e 61 72 69 | n.the.server.side..First.scenari |
| ebd20 | 6f 3a 20 61 70 70 6c 79 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 4e 41 54 20 66 6f 72 20 61 6c 6c | o:.apply.destination.NAT.for.all |
| ebd40 | 20 48 54 54 50 20 74 72 61 66 66 69 63 20 63 6f 6d 6d 69 6e 67 20 74 68 72 6f 75 67 68 20 69 6e | .HTTP.traffic.comming.through.in |
| ebd60 | 74 65 72 66 61 63 65 20 65 74 68 30 2c 20 61 6e 64 20 75 73 65 72 20 34 20 62 61 63 6b 65 6e 64 | terface.eth0,.and.user.4.backend |
| ebd80 | 73 2e 20 46 69 72 73 74 20 62 61 63 6b 65 6e 64 20 73 68 6f 75 6c 64 20 72 65 63 65 69 76 65 64 | s..First.backend.should.received |
| ebda0 | 20 33 30 25 20 6f 66 20 74 68 65 20 72 65 71 75 65 73 74 2c 20 73 65 63 6f 6e 64 20 62 61 63 6b | .30%.of.the.request,.second.back |
| ebdc0 | 65 6e 64 20 73 68 6f 75 6c 64 20 67 65 74 20 32 30 25 2c 20 74 68 69 72 64 20 31 35 25 20 61 6e | end.should.get.20%,.third.15%.an |
| ebde0 | 64 20 74 68 65 20 66 6f 75 72 74 68 20 33 35 25 20 57 65 20 77 69 6c 6c 20 75 73 65 20 73 6f 75 | d.the.fourth.35%.We.will.use.sou |
| ebe00 | 72 63 65 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 66 6f 72 20 | rce.and.destination.address.for. |
| ebe20 | 68 61 73 68 20 67 65 6e 65 72 61 74 69 6f 6e 2e 00 46 69 72 73 74 20 73 74 65 70 73 00 46 69 72 | hash.generation..First.steps.Fir |
| ebe40 | 73 74 20 74 68 65 20 4f 54 50 20 6b 65 79 73 20 6d 75 73 74 20 62 65 20 67 65 6e 65 72 61 74 65 | st.the.OTP.keys.must.be.generate |
| ebe60 | 64 20 61 6e 64 20 73 65 6e 74 20 74 6f 20 74 68 65 20 75 73 65 72 20 61 6e 64 20 74 6f 20 74 68 | d.and.sent.to.the.user.and.to.th |
| ebe80 | 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 46 69 72 73 74 20 77 65 20 6e 65 65 64 20 74 | e.configuration:.First.we.need.t |
| ebea0 | 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 62 61 73 69 63 20 73 65 74 74 69 6e 67 73 2e 20 31 31 | o.specify.the.basic.settings..11 |
| ebec0 | 39 34 2f 55 44 50 20 69 73 20 74 68 65 20 64 65 66 61 75 6c 74 2e 20 54 68 65 20 60 60 70 65 72 | 94/UDP.is.the.default..The.``per |
| ebee0 | 73 69 73 74 65 6e 74 2d 74 75 6e 6e 65 6c 60 60 20 6f 70 74 69 6f 6e 20 69 73 20 72 65 63 6f 6d | sistent-tunnel``.option.is.recom |
| ebf00 | 6d 65 6e 64 65 64 2c 20 61 73 20 69 74 20 70 72 65 76 65 6e 74 73 20 74 68 65 20 54 55 4e 2f 54 | mended,.as.it.prevents.the.TUN/T |
| ebf20 | 41 50 20 64 65 76 69 63 65 20 66 72 6f 6d 20 63 6c 6f 73 69 6e 67 20 6f 6e 20 63 6f 6e 6e 65 63 | AP.device.from.closing.on.connec |
| ebf40 | 74 69 6f 6e 20 72 65 73 65 74 73 20 6f 72 20 64 61 65 6d 6f 6e 20 72 65 6c 6f 61 64 73 2e 00 46 | tion.resets.or.daemon.reloads..F |
| ebf60 | 69 72 73 74 20 77 65 20 6e 65 65 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 62 61 73 69 | irst.we.need.to.specify.the.basi |
| ebf80 | 63 20 73 65 74 74 69 6e 67 73 2e 20 31 31 39 34 2f 55 44 50 20 69 73 20 74 68 65 20 64 65 66 61 | c.settings..1194/UDP.is.the.defa |
| ebfa0 | 75 6c 74 2e 20 54 68 65 20 60 60 70 65 72 73 69 73 74 65 6e 74 2d 74 75 6e 6e 65 6c 60 60 20 6f | ult..The.``persistent-tunnel``.o |
| ebfc0 | 70 74 69 6f 6e 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 2c 20 69 74 20 70 72 65 76 65 6e 74 | ption.is.recommended,.it.prevent |
| ebfe0 | 73 20 74 68 65 20 54 55 4e 2f 54 41 50 20 64 65 76 69 63 65 20 66 72 6f 6d 20 63 6c 6f 73 69 6e | s.the.TUN/TAP.device.from.closin |
| ec000 | 67 20 6f 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 72 65 73 65 74 73 20 6f 72 20 64 61 65 6d 6f 6e | g.on.connection.resets.or.daemon |
| ec020 | 20 72 65 6c 6f 61 64 73 2e 00 46 69 72 73 74 20 79 6f 75 20 77 69 6c 6c 20 6e 65 65 64 20 74 6f | .reloads..First.you.will.need.to |
| ec040 | 20 64 65 70 6c 6f 79 20 61 6e 20 52 50 4b 49 20 76 61 6c 69 64 61 74 6f 72 20 66 6f 72 20 79 6f | .deploy.an.RPKI.validator.for.yo |
| ec060 | 75 72 20 72 6f 75 74 65 72 73 20 74 6f 20 75 73 65 2e 20 4e 4c 6e 65 74 20 4c 61 62 73 20 70 72 | ur.routers.to.use..NLnet.Labs.pr |
| ec080 | 6f 76 69 64 65 73 20 61 20 63 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 73 6f 66 74 77 61 72 65 5f | ovides.a.collection.of.software_ |
| ec0a0 | 20 79 6f 75 20 63 61 6e 20 63 6f 6d 70 61 72 65 20 61 6e 64 20 73 65 74 74 6c 65 20 6f 6e 20 6f | .you.can.compare.and.settle.on.o |
| ec0c0 | 6e 65 2e 20 4f 6e 63 65 20 79 6f 75 72 20 73 65 72 76 65 72 20 69 73 20 72 75 6e 6e 69 6e 67 20 | ne..Once.your.server.is.running. |
| ec0e0 | 79 6f 75 20 63 61 6e 20 73 74 61 72 74 20 76 61 6c 69 64 61 74 69 6e 67 20 61 6e 6e 6f 75 6e 63 | you.can.start.validating.announc |
| ec100 | 65 6d 65 6e 74 73 2e 00 46 69 72 73 74 20 79 6f 75 20 77 69 6c 6c 20 6e 65 65 64 20 74 6f 20 64 | ements..First.you.will.need.to.d |
| ec120 | 65 70 6c 6f 79 20 61 6e 20 52 50 4b 49 20 76 61 6c 69 64 61 74 6f 72 20 66 6f 72 20 79 6f 75 72 | eploy.an.RPKI.validator.for.your |
| ec140 | 20 72 6f 75 74 65 72 73 20 74 6f 20 75 73 65 2e 20 54 68 65 20 52 49 50 45 20 4e 43 43 20 68 65 | .routers.to.use..The.RIPE.NCC.he |
| ec160 | 6c 70 66 75 6c 6c 79 20 70 72 6f 76 69 64 65 20 60 73 6f 6d 65 20 69 6e 73 74 72 75 63 74 69 6f | lpfully.provide.`some.instructio |
| ec180 | 6e 73 60 5f 20 74 6f 20 67 65 74 20 79 6f 75 20 73 74 61 72 74 65 64 20 77 69 74 68 20 73 65 76 | ns`_.to.get.you.started.with.sev |
| ec1a0 | 65 72 61 6c 20 64 69 66 66 65 72 65 6e 74 20 6f 70 74 69 6f 6e 73 2e 20 20 4f 6e 63 65 20 79 6f | eral.different.options...Once.yo |
| ec1c0 | 75 72 20 73 65 72 76 65 72 20 69 73 20 72 75 6e 6e 69 6e 67 20 79 6f 75 20 63 61 6e 20 73 74 61 | ur.server.is.running.you.can.sta |
| ec1e0 | 72 74 20 76 61 6c 69 64 61 74 69 6e 67 20 61 6e 6e 6f 75 6e 63 65 6d 65 6e 74 73 2e 00 46 69 72 | rt.validating.announcements..Fir |
| ec200 | 73 74 2c 20 61 6c 6c 20 74 72 61 66 66 69 63 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 20 74 | st,.all.traffic.is.received.by.t |
| ec220 | 68 65 20 72 6f 75 74 65 72 2c 20 61 6e 64 20 69 74 20 69 73 20 70 72 6f 63 65 73 73 65 64 20 69 | he.router,.and.it.is.processed.i |
| ec240 | 6e 20 74 68 65 20 2a 2a 70 72 65 72 6f 75 74 69 6e 67 2a 2a 20 73 65 63 74 69 6f 6e 2e 00 46 69 | n.the.**prerouting**.section..Fi |
| ec260 | 72 73 74 2c 20 6f 6e 20 62 6f 74 68 20 72 6f 75 74 65 72 73 20 72 75 6e 20 74 68 65 20 6f 70 65 | rst,.on.both.routers.run.the.ope |
| ec280 | 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 20 22 67 65 6e 65 72 61 74 65 20 70 6b 69 20 6b | rational.command."generate.pki.k |
| ec2a0 | 65 79 2d 70 61 69 72 20 69 6e 73 74 61 6c 6c 20 3c 6b 65 79 2d 70 61 69 72 20 6e 61 6d 3e 3e 22 | ey-pair.install.<key-pair.nam>>" |
| ec2c0 | 2e 20 59 6f 75 20 6d 61 79 20 63 68 6f 6f 73 65 20 64 69 66 66 65 72 65 6e 74 20 6c 65 6e 67 74 | ..You.may.choose.different.lengt |
| ec2e0 | 68 20 74 68 61 6e 20 32 30 34 38 20 6f 66 20 63 6f 75 72 73 65 2e 00 46 69 72 73 74 2c 20 6f 6e | h.than.2048.of.course..First,.on |
| ec300 | 20 62 6f 74 68 20 72 6f 75 74 65 72 73 20 72 75 6e 20 74 68 65 20 6f 70 65 72 61 74 69 6f 6e 61 | .both.routers.run.the.operationa |
| ec320 | 6c 20 63 6f 6d 6d 61 6e 64 20 22 67 65 6e 65 72 61 74 65 20 70 6b 69 20 6b 65 79 2d 70 61 69 72 | l.command."generate.pki.key-pair |
| ec340 | 20 69 6e 73 74 61 6c 6c 20 3c 6b 65 79 2d 70 61 69 72 20 6e 61 6d 65 3e 22 2e 20 59 6f 75 20 6d | .install.<key-pair.name>"..You.m |
| ec360 | 61 79 20 63 68 6f 6f 73 65 20 64 69 66 66 65 72 65 6e 74 20 6c 65 6e 67 74 68 20 74 68 61 6e 20 | ay.choose.different.length.than. |
| ec380 | 32 30 34 38 20 6f 66 20 63 6f 75 72 73 65 2e 00 46 69 72 73 74 2c 20 6f 6e 65 20 6f 66 20 74 68 | 2048.of.course..First,.one.of.th |
| ec3a0 | 65 20 73 79 73 74 65 6d 73 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 6b 65 79 20 75 73 69 6e 67 | e.systems.generate.the.key.using |
| ec3c0 | 20 74 68 65 20 3a 72 65 66 3a 60 67 65 6e 65 72 61 74 65 20 70 6b 69 20 6f 70 65 6e 76 70 6e 20 | .the.:ref:`generate.pki.openvpn. |
| ec3e0 | 73 68 61 72 65 64 2d 73 65 63 72 65 74 3c 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 70 6b 69 2f | shared-secret<configuration/pki/ |
| ec400 | 69 6e 64 65 78 3a 70 6b 69 3e 60 20 63 6f 6d 6d 61 6e 64 2e 20 4f 6e 63 65 20 67 65 6e 65 72 61 | index:pki>`.command..Once.genera |
| ec420 | 74 65 64 2c 20 79 6f 75 20 77 69 6c 6c 20 6e 65 65 64 20 74 6f 20 69 6e 73 74 61 6c 6c 20 74 68 | ted,.you.will.need.to.install.th |
| ec440 | 69 73 20 6b 65 79 20 6f 6e 20 74 68 65 20 6c 6f 63 61 6c 20 73 79 73 74 65 6d 2c 20 74 68 65 6e | is.key.on.the.local.system,.then |
| ec460 | 20 63 6f 70 79 20 61 6e 64 20 69 6e 73 74 61 6c 6c 20 74 68 69 73 20 6b 65 79 20 74 6f 20 74 68 | .copy.and.install.this.key.to.th |
| ec480 | 65 20 72 65 6d 6f 74 65 20 72 6f 75 74 65 72 2e 00 46 69 72 73 74 2c 20 77 65 20 63 72 65 61 74 | e.remote.router..First,.we.creat |
| ec4a0 | 65 20 74 68 65 20 72 6f 6f 74 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 | e.the.root.certificate.authority |
| ec4c0 | 2e 00 46 69 72 73 74 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 67 65 6e 65 72 61 74 65 20 61 20 | ..First,.you.need.to.generate.a. |
| ec4e0 | 6b 65 79 20 62 79 20 72 75 6e 6e 69 6e 67 20 60 60 72 75 6e 20 67 65 6e 65 72 61 74 65 20 70 6b | key.by.running.``run.generate.pk |
| ec500 | 69 20 6f 70 65 6e 76 70 6e 20 73 68 61 72 65 64 2d 73 65 63 72 65 74 20 69 6e 73 74 61 6c 6c 20 | i.openvpn.shared-secret.install. |
| ec520 | 3c 6e 61 6d 65 3e 60 60 20 66 72 6f 6d 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 65 | <name>``.from.configuration.mode |
| ec540 | 2e 20 59 6f 75 20 63 61 6e 20 75 73 65 20 61 6e 79 20 6e 61 6d 65 2c 20 77 65 20 77 69 6c 6c 20 | ..You.can.use.any.name,.we.will. |
| ec560 | 75 73 65 20 60 60 73 32 73 60 60 2e 00 46 6c 61 73 68 00 46 6c 61 73 68 20 4f 76 65 72 72 69 64 | use.``s2s``..Flash.Flash.Overrid |
| ec580 | 65 00 46 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 70 61 79 6c 6f 61 64 20 28 49 4b 45 | e.FlexVPN.vendor.ID.payload.(IKE |
| ec5a0 | 76 32 20 6f 6e 6c 79 29 2c 20 77 68 69 63 68 20 69 73 20 72 65 71 75 69 72 65 64 20 69 6e 20 6f | v2.only),.which.is.required.in.o |
| ec5c0 | 72 64 65 72 20 74 6f 20 6d 61 6b 65 20 43 69 73 63 6f 20 62 72 61 6e 64 20 64 65 76 69 63 65 73 | rder.to.make.Cisco.brand.devices |
| ec5e0 | 20 61 6c 6c 6f 77 20 6e 65 67 6f 74 69 61 74 69 6e 67 20 61 20 6c 6f 63 61 6c 20 74 72 61 66 66 | .allow.negotiating.a.local.traff |
| ec600 | 69 63 20 73 65 6c 65 63 74 6f 72 20 28 66 72 6f 6d 20 73 74 72 6f 6e 67 53 77 61 6e 27 73 20 70 | ic.selector.(from.strongSwan's.p |
| ec620 | 6f 69 6e 74 20 6f 66 20 76 69 65 77 29 20 74 68 61 74 20 69 73 20 6e 6f 74 20 74 68 65 20 61 73 | oint.of.view).that.is.not.the.as |
| ec640 | 73 69 67 6e 65 64 20 76 69 72 74 75 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 69 66 20 73 75 63 | signed.virtual.IP.address.if.suc |
| ec660 | 68 20 61 6e 20 61 64 64 72 65 73 73 20 69 73 20 72 65 71 75 65 73 74 65 64 20 62 79 20 73 74 72 | h.an.address.is.requested.by.str |
| ec680 | 6f 6e 67 53 77 61 6e 2e 20 53 65 6e 64 69 6e 67 20 74 68 65 20 43 69 73 63 6f 20 46 6c 65 78 56 | ongSwan..Sending.the.Cisco.FlexV |
| ec6a0 | 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 70 72 65 76 65 6e 74 73 20 74 68 65 20 70 65 65 72 20 66 | PN.vendor.ID.prevents.the.peer.f |
| ec6c0 | 72 6f 6d 20 6e 61 72 72 6f 77 69 6e 67 20 74 68 65 20 69 6e 69 74 69 61 74 6f 72 27 73 20 6c 6f | rom.narrowing.the.initiator's.lo |
| ec6e0 | 63 61 6c 20 74 72 61 66 66 69 63 20 73 65 6c 65 63 74 6f 72 20 61 6e 64 20 61 6c 6c 6f 77 73 20 | cal.traffic.selector.and.allows. |
| ec700 | 69 74 20 74 6f 20 65 2e 67 2e 20 6e 65 67 6f 74 69 61 74 65 20 61 20 54 53 20 6f 66 20 30 2e 30 | it.to.e.g..negotiate.a.TS.of.0.0 |
| ec720 | 2e 30 2e 30 2f 30 20 3d 3d 20 30 2e 30 2e 30 2e 30 2f 30 20 69 6e 73 74 65 61 64 2e 20 54 68 69 | .0.0/0.==.0.0.0.0/0.instead..Thi |
| ec740 | 73 20 68 61 73 20 62 65 65 6e 20 74 65 73 74 65 64 20 77 69 74 68 20 61 20 22 74 75 6e 6e 65 6c | s.has.been.tested.with.a."tunnel |
| ec760 | 20 6d 6f 64 65 20 69 70 73 65 63 20 69 70 76 34 22 20 43 69 73 63 6f 20 74 65 6d 70 6c 61 74 65 | .mode.ipsec.ipv4".Cisco.template |
| ec780 | 20 62 75 74 20 73 68 6f 75 6c 64 20 61 6c 73 6f 20 77 6f 72 6b 20 66 6f 72 20 47 52 45 20 65 6e | .but.should.also.work.for.GRE.en |
| ec7a0 | 63 61 70 73 75 6c 61 74 69 6f 6e 3b 00 46 6c 6f 77 20 41 63 63 6f 75 6e 74 69 6e 67 00 46 6c 6f | capsulation;.Flow.Accounting.Flo |
| ec7c0 | 77 20 45 78 70 6f 72 74 00 46 6c 6f 77 20 61 6e 64 20 70 61 63 6b 65 74 2d 62 61 73 65 64 20 62 | w.Export.Flow.and.packet-based.b |
| ec7e0 | 61 6c 61 6e 63 69 6e 67 00 46 6c 6f 77 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 62 79 20 73 6f | alancing.Flows.are.defined.by.so |
| ec800 | 75 72 63 65 2d 64 65 73 74 69 6e 61 74 69 6f 6e 20 68 6f 73 74 20 70 61 69 72 73 2e 00 46 6c 6f | urce-destination.host.pairs..Flo |
| ec820 | 77 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 62 79 20 74 68 65 20 35 2d 74 75 70 6c 65 2e 20 46 | ws.are.defined.by.the.5-tuple..F |
| ec840 | 61 69 72 6e 65 73 73 20 69 73 20 61 70 70 6c 69 65 64 20 66 69 72 73 74 20 6f 76 65 72 20 64 65 | airness.is.applied.first.over.de |
| ec860 | 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 65 73 2c 20 74 68 65 6e 20 6f 76 65 72 20 69 | stination.addresses,.then.over.i |
| ec880 | 6e 64 69 76 69 64 75 61 6c 20 66 6c 6f 77 73 2e 00 46 6c 6f 77 73 20 61 72 65 20 64 65 66 69 6e | ndividual.flows..Flows.are.defin |
| ec8a0 | 65 64 20 62 79 20 74 68 65 20 35 2d 74 75 70 6c 65 2e 20 46 61 69 72 6e 65 73 73 20 69 73 20 61 | ed.by.the.5-tuple..Fairness.is.a |
| ec8c0 | 70 70 6c 69 65 64 20 66 69 72 73 74 20 6f 76 65 72 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 | pplied.first.over.source.address |
| ec8e0 | 65 73 2c 20 74 68 65 6e 20 6f 76 65 72 20 69 6e 64 69 76 69 64 75 61 6c 20 66 6c 6f 77 73 2e 00 | es,.then.over.individual.flows.. |
| ec900 | 46 6c 6f 77 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 62 79 20 74 68 65 20 65 6e 74 69 72 65 20 | Flows.are.defined.by.the.entire. |
| ec920 | 35 2d 74 75 70 6c 65 20 28 73 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 2c 20 73 6f 75 72 | 5-tuple.(source.IP.address,.sour |
| ec940 | 63 65 20 70 6f 72 74 2c 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 2c | ce.port,.destination.IP.address, |
| ec960 | 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 2c 20 74 72 61 6e 73 70 6f 72 74 20 70 72 6f | .destination.port,.transport.pro |
| ec980 | 74 6f 63 6f 6c 29 2e 00 46 6c 6f 77 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 6f 6e 6c 79 20 62 | tocol)..Flows.are.defined.only.b |
| ec9a0 | 79 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2e 00 46 6c 6f 77 73 20 61 72 65 | y.destination.address..Flows.are |
| ec9c0 | 20 64 65 66 69 6e 65 64 20 6f 6e 6c 79 20 62 79 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 2e | .defined.only.by.source.address. |
| ec9e0 | 00 46 6c 6f 77 73 20 63 61 6e 20 62 65 20 65 78 70 6f 72 74 65 64 20 76 69 61 20 74 77 6f 20 64 | .Flows.can.be.exported.via.two.d |
| eca00 | 69 66 66 65 72 65 6e 74 20 70 72 6f 74 6f 63 6f 6c 73 3a 20 4e 65 74 46 6c 6f 77 20 28 76 65 72 | ifferent.protocols:.NetFlow.(ver |
| eca20 | 73 69 6f 6e 73 20 35 2c 20 39 20 61 6e 64 20 31 30 2f 49 50 46 49 58 29 20 61 6e 64 20 73 46 6c | sions.5,.9.and.10/IPFIX).and.sFl |
| eca40 | 6f 77 2e 20 41 64 64 69 74 69 6f 6e 61 6c 6c 79 2c 20 79 6f 75 20 6d 61 79 20 73 61 76 65 20 66 | ow..Additionally,.you.may.save.f |
| eca60 | 6c 6f 77 73 20 74 6f 20 61 6e 20 69 6e 2d 6d 65 6d 6f 72 79 20 74 61 62 6c 65 20 69 6e 74 65 72 | lows.to.an.in-memory.table.inter |
| eca80 | 6e 61 6c 6c 79 20 69 6e 20 61 20 72 6f 75 74 65 72 2e 00 46 6c 6f 77 74 61 62 6c 65 20 43 6f 6e | nally.in.a.router..Flowtable.Con |
| ecaa0 | 66 69 67 75 72 61 74 69 6f 6e 00 46 6c 6f 77 74 61 62 6c 65 73 20 20 61 6c 6c 6f 77 73 20 79 6f | figuration.Flowtables..allows.yo |
| ecac0 | 75 20 74 6f 20 64 65 66 69 6e 65 20 61 20 66 61 73 74 70 61 74 68 20 74 68 72 6f 75 67 68 20 74 | u.to.define.a.fastpath.through.t |
| ecae0 | 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 64 61 74 61 70 61 74 68 2e 20 54 68 65 20 66 6c 6f 77 74 | he.flowtable.datapath..The.flowt |
| ecb00 | 61 62 6c 65 20 73 75 70 70 6f 72 74 73 20 66 6f 72 20 74 68 65 20 6c 61 79 65 72 20 33 20 49 50 | able.supports.for.the.layer.3.IP |
| ecb20 | 76 34 20 61 6e 64 20 49 50 76 36 20 61 6e 64 20 74 68 65 20 6c 61 79 65 72 20 34 20 54 43 50 20 | v4.and.IPv6.and.the.layer.4.TCP. |
| ecb40 | 61 6e 64 20 55 44 50 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 46 6c 6f 77 74 61 62 6c 65 73 20 46 69 | and.UDP.protocols..Flowtables.Fi |
| ecb60 | 72 65 77 61 6c 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 46 6c 6f 77 74 61 62 6c 65 73 20 | rewall.Configuration.Flowtables. |
| ecb80 | 61 6c 6c 6f 77 20 79 6f 75 20 74 6f 20 64 65 66 69 6e 65 20 61 20 66 61 73 74 70 61 74 68 20 74 | allow.you.to.define.a.fastpath.t |
| ecba0 | 68 72 6f 75 67 68 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 64 61 74 61 70 61 74 68 2e 20 54 | hrough.the.flowtable.datapath..T |
| ecbc0 | 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 73 75 70 70 6f 72 74 73 20 66 6f 72 20 74 68 65 20 6c 61 | he.flowtable.supports.for.the.la |
| ecbe0 | 79 65 72 20 33 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 6e 64 20 74 68 65 20 6c 61 79 65 | yer.3.IPv4.and.IPv6.and.the.laye |
| ecc00 | 72 20 34 20 54 43 50 20 61 6e 64 20 55 44 50 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 46 6c 75 73 68 | r.4.TCP.and.UDP.protocols..Flush |
| ecc20 | 69 6e 67 20 74 68 65 20 73 65 73 73 69 6f 6e 20 74 61 62 6c 65 20 77 69 6c 6c 20 63 61 75 73 65 | ing.the.session.table.will.cause |
| ecc40 | 20 6f 74 68 65 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 66 61 6c 6c 20 62 61 63 6b 20 | .other.connections.to.fall.back. |
| ecc60 | 66 72 6f 6d 20 66 6c 6f 77 2d 62 61 73 65 64 20 74 6f 20 70 61 63 6b 65 74 2d 62 61 73 65 64 20 | from.flow-based.to.packet-based. |
| ecc80 | 62 61 6c 61 6e 63 69 6e 67 20 75 6e 74 69 6c 20 65 61 63 68 20 66 6c 6f 77 20 69 73 20 72 65 65 | balancing.until.each.flow.is.ree |
| ecca0 | 73 74 61 62 6c 69 73 68 65 64 2e 00 46 6f 6c 6c 6f 77 20 74 68 65 20 53 53 48 20 64 79 6e 61 6d | stablished..Follow.the.SSH.dynam |
| eccc0 | 69 63 2d 70 72 6f 74 65 63 74 69 6f 6e 20 6c 6f 67 2e 00 46 6f 6c 6c 6f 77 20 74 68 65 20 53 53 | ic-protection.log..Follow.the.SS |
| ecce0 | 48 20 73 65 72 76 65 72 20 6c 6f 67 2e 00 46 6f 6c 6c 6f 77 20 74 68 65 20 69 6e 73 74 72 75 63 | H.server.log..Follow.the.instruc |
| ecd00 | 74 69 6f 6e 73 20 74 6f 20 67 65 6e 65 72 61 74 65 20 43 41 20 63 65 72 74 20 28 69 6e 20 63 6f | tions.to.generate.CA.cert.(in.co |
| ecd20 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 65 29 3a 00 46 6f 6c 6c 6f 77 20 74 68 65 20 69 6e | nfiguration.mode):.Follow.the.in |
| ecd40 | 73 74 72 75 63 74 69 6f 6e 73 20 74 6f 20 67 65 6e 65 72 61 74 65 20 73 65 72 76 65 72 20 63 65 | structions.to.generate.server.ce |
| ecd60 | 72 74 20 28 69 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 65 29 3a 00 46 6f 6c 6c | rt.(in.configuration.mode):.Foll |
| ecd80 | 6f 77 20 74 68 65 20 6c 6f 67 73 20 66 6f 72 20 6d 44 4e 53 20 72 65 70 65 61 74 65 72 20 73 65 | ow.the.logs.for.mDNS.repeater.se |
| ecda0 | 72 76 69 63 65 2e 00 46 6f 72 20 3a 72 65 66 3a 60 62 69 64 69 72 65 63 74 69 6f 6e 61 6c 2d 6e | rvice..For.:ref:`bidirectional-n |
| ecdc0 | 61 74 60 20 61 20 72 75 6c 65 20 66 6f 72 20 62 6f 74 68 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 | at`.a.rule.for.both.:ref:`source |
| ecde0 | 2d 6e 61 74 60 20 61 6e 64 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 | -nat`.and.:ref:`destination-nat` |
| ece00 | 20 6e 65 65 64 73 20 74 6f 20 62 65 20 63 72 65 61 74 65 64 2e 00 46 6f 72 20 3a 72 65 66 3a 60 | .needs.to.be.created..For.:ref:` |
| ece20 | 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 20 72 75 6c 65 73 20 74 68 65 20 70 61 63 6b 65 | destination-nat`.rules.the.packe |
| ece40 | 74 73 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 72 | ts.destination.address.will.be.r |
| ece60 | 65 70 6c 61 63 65 64 20 62 79 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 61 64 64 72 65 73 73 | eplaced.by.the.specified.address |
| ece80 | 20 69 6e 20 74 68 65 20 60 74 72 61 6e 73 6c 61 74 69 6f 6e 20 61 64 64 72 65 73 73 60 20 63 6f | .in.the.`translation.address`.co |
| ecea0 | 6d 6d 61 6e 64 2e 00 46 6f 72 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 2d 6e 61 74 60 20 72 75 6c | mmand..For.:ref:`source-nat`.rul |
| ecec0 | 65 73 20 74 68 65 20 70 61 63 6b 65 74 73 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 77 69 | es.the.packets.source.address.wi |
| ecee0 | 6c 6c 20 62 65 20 72 65 70 6c 61 63 65 64 20 77 69 74 68 20 74 68 65 20 61 64 64 72 65 73 73 20 | ll.be.replaced.with.the.address. |
| ecf00 | 73 70 65 63 69 66 69 65 64 20 69 6e 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 63 6f 6d | specified.in.the.translation.com |
| ecf20 | 6d 61 6e 64 2e 20 41 20 70 6f 72 74 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 63 61 6e 20 61 6c 73 | mand..A.port.translation.can.als |
| ecf40 | 6f 20 62 65 20 73 70 65 63 69 66 69 65 64 20 61 6e 64 20 69 73 20 70 61 72 74 20 6f 66 20 74 68 | o.be.specified.and.is.part.of.th |
| ecf60 | 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2e 00 46 6f 72 20 45 6e 63 72 79 | e.translation.address..For.Encry |
| ecf80 | 70 74 69 6f 6e 3a 00 46 6f 72 20 48 61 73 68 69 6e 67 3a 00 46 6f 72 20 49 53 2d 49 53 20 74 6f | ption:.For.Hashing:.For.IS-IS.to |
| ecfa0 | 70 20 6f 70 65 72 61 74 65 20 63 6f 72 72 65 63 74 6c 79 2c 20 6f 6e 65 20 6d 75 73 74 20 64 6f | p.operate.correctly,.one.must.do |
| ecfc0 | 20 74 68 65 20 65 71 75 69 76 61 6c 65 6e 74 20 6f 66 20 61 20 52 6f 75 74 65 72 20 49 44 20 69 | .the.equivalent.of.a.Router.ID.i |
| ecfe0 | 6e 20 43 4c 4e 53 2e 20 54 68 69 73 20 52 6f 75 74 65 72 20 49 44 20 69 73 20 63 61 6c 6c 65 64 | n.CLNS..This.Router.ID.is.called |
| ed000 | 20 74 68 65 20 3a 61 62 62 72 3a 60 4e 45 54 20 28 4e 65 74 77 6f 72 6b 20 45 6e 74 69 74 79 20 | .the.:abbr:`NET.(Network.Entity. |
| ed020 | 54 69 74 6c 65 29 60 2e 20 54 68 69 73 20 6d 75 73 74 20 62 65 20 75 6e 69 71 75 65 20 66 6f 72 | Title)`..This.must.be.unique.for |
| ed040 | 20 65 61 63 68 20 61 6e 64 20 65 76 65 72 79 20 72 6f 75 74 65 72 20 74 68 61 74 20 69 73 20 6f | .each.and.every.router.that.is.o |
| ed060 | 70 65 72 61 74 69 6e 67 20 69 6e 20 49 53 2d 49 53 2e 20 49 74 20 61 6c 73 6f 20 6d 75 73 74 20 | perating.in.IS-IS..It.also.must. |
| ed080 | 6e 6f 74 20 62 65 20 64 75 70 6c 69 63 61 74 65 64 20 6f 74 68 65 72 77 69 73 65 20 74 68 65 20 | not.be.duplicated.otherwise.the. |
| ed0a0 | 73 61 6d 65 20 69 73 73 75 65 73 20 74 68 61 74 20 6f 63 63 75 72 20 77 69 74 68 69 6e 20 4f 53 | same.issues.that.occur.within.OS |
| ed0c0 | 50 46 20 77 69 6c 6c 20 6f 63 63 75 72 20 77 69 74 68 69 6e 20 49 53 2d 49 53 20 77 68 65 6e 20 | PF.will.occur.within.IS-IS.when. |
| ed0e0 | 69 74 20 63 6f 6d 65 73 20 74 6f 20 73 61 69 64 20 64 75 70 6c 69 63 61 74 69 6f 6e 2e 00 46 6f | it.comes.to.said.duplication..Fo |
| ed100 | 72 20 49 6e 63 6f 6d 69 6e 67 20 61 6e 64 20 49 6d 70 6f 72 74 20 52 6f 75 74 65 2d 6d 61 70 73 | r.Incoming.and.Import.Route-maps |
| ed120 | 20 69 66 20 77 65 20 72 65 63 65 69 76 65 20 61 20 76 36 20 67 6c 6f 62 61 6c 20 61 6e 64 20 76 | .if.we.receive.a.v6.global.and.v |
| ed140 | 36 20 4c 4c 20 61 64 64 72 65 73 73 20 66 6f 72 20 74 68 65 20 72 6f 75 74 65 2c 20 74 68 65 6e | 6.LL.address.for.the.route,.then |
| ed160 | 20 70 72 65 66 65 72 20 74 6f 20 75 73 65 20 74 68 65 20 67 6c 6f 62 61 6c 20 61 64 64 72 65 73 | .prefer.to.use.the.global.addres |
| ed180 | 73 20 61 73 20 74 68 65 20 6e 65 78 74 68 6f 70 2e 00 46 6f 72 20 4c 6f 63 61 6c 20 55 73 65 72 | s.as.the.nexthop..For.Local.User |
| ed1a0 | 73 00 46 6f 72 20 4f 70 65 6e 46 61 62 72 69 63 20 74 6f 20 6f 70 65 72 61 74 65 20 63 6f 72 72 | s.For.OpenFabric.to.operate.corr |
| ed1c0 | 65 63 74 6c 79 2c 20 6f 6e 65 20 6d 75 73 74 20 64 6f 20 74 68 65 20 65 71 75 69 76 61 6c 65 6e | ectly,.one.must.do.the.equivalen |
| ed1e0 | 74 20 6f 66 20 61 20 52 6f 75 74 65 72 20 49 44 20 69 6e 20 43 6f 6e 6e 65 63 74 69 6f 6e 6c 65 | t.of.a.Router.ID.in.Connectionle |
| ed200 | 73 73 20 4e 65 74 77 6f 72 6b 20 53 65 72 76 69 63 65 20 28 43 4c 4e 53 29 2e 20 54 68 69 73 20 | ss.Network.Service.(CLNS)..This. |
| ed220 | 52 6f 75 74 65 72 20 49 44 20 69 73 20 63 61 6c 6c 65 64 20 74 68 65 20 3a 61 62 62 72 3a 60 4e | Router.ID.is.called.the.:abbr:`N |
| ed240 | 45 54 20 28 4e 65 74 77 6f 72 6b 20 45 6e 74 69 74 79 20 54 69 74 6c 65 29 60 2e 20 54 68 65 20 | ET.(Network.Entity.Title)`..The. |
| ed260 | 73 79 73 74 65 6d 20 69 64 65 6e 74 69 66 69 65 72 20 6d 75 73 74 20 62 65 20 75 6e 69 71 75 65 | system.identifier.must.be.unique |
| ed280 | 20 77 69 74 68 69 6e 20 74 68 65 20 6e 65 74 77 6f 72 6b 00 46 6f 72 20 52 41 44 49 55 53 20 75 | .within.the.network.For.RADIUS.u |
| ed2a0 | 73 65 72 73 00 46 6f 72 20 55 53 42 20 70 6f 72 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 70 6c | sers.For.USB.port.information.pl |
| ed2c0 | 65 61 73 65 20 72 65 66 6f 72 20 74 6f 3a 20 3a 72 65 66 3a 60 68 61 72 64 77 61 72 65 5f 75 73 | ease.refor.to:.:ref:`hardware_us |
| ed2e0 | 62 60 2e 00 46 6f 72 20 61 20 68 65 61 64 73 74 61 72 74 20 79 6f 75 20 63 61 6e 20 75 73 65 20 | b`..For.a.headstart.you.can.use. |
| ed300 | 74 68 65 20 62 65 6c 6f 77 20 65 78 61 6d 70 6c 65 20 6f 6e 20 68 6f 77 20 74 6f 20 62 75 69 6c | the.below.example.on.how.to.buil |
| ed320 | 64 20 61 20 62 6f 6e 64 20 77 69 74 68 20 74 77 6f 20 69 6e 74 65 72 66 61 63 65 73 20 66 72 6f | d.a.bond.with.two.interfaces.fro |
| ed340 | 6d 20 56 79 4f 53 20 74 6f 20 61 20 4a 75 6e 69 70 65 72 20 45 58 20 53 77 69 74 63 68 20 73 79 | m.VyOS.to.a.Juniper.EX.Switch.sy |
| ed360 | 73 74 65 6d 2e 00 46 6f 72 20 61 20 68 65 61 64 73 74 61 72 74 20 79 6f 75 20 63 61 6e 20 75 73 | stem..For.a.headstart.you.can.us |
| ed380 | 65 20 74 68 65 20 62 65 6c 6f 77 20 65 78 61 6d 70 6c 65 20 6f 6e 20 68 6f 77 20 74 6f 20 62 75 | e.the.below.example.on.how.to.bu |
| ed3a0 | 69 6c 64 20 61 20 62 6f 6e 64 2c 70 6f 72 74 2d 63 68 61 6e 6e 65 6c 20 77 69 74 68 20 74 77 6f | ild.a.bond,port-channel.with.two |
| ed3c0 | 20 69 6e 74 65 72 66 61 63 65 73 20 66 72 6f 6d 20 56 79 4f 53 20 74 6f 20 61 20 41 72 75 62 61 | .interfaces.from.VyOS.to.a.Aruba |
| ed3e0 | 2f 48 50 20 32 35 31 30 47 20 73 77 69 74 63 68 2e 00 46 6f 72 20 61 20 6c 61 72 67 65 20 61 6d | /HP.2510G.switch..For.a.large.am |
| ed400 | 6f 75 6e 74 20 6f 66 20 70 72 69 76 61 74 65 20 6d 61 63 68 69 6e 65 73 20 62 65 68 69 6e 64 20 | ount.of.private.machines.behind. |
| ed420 | 74 68 65 20 4e 41 54 20 79 6f 75 72 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 6d 69 67 68 74 20 | the.NAT.your.address.pool.might. |
| ed440 | 74 6f 20 62 65 20 62 69 67 67 65 72 2e 20 55 73 65 20 61 6e 79 20 61 64 64 72 65 73 73 20 69 6e | to.be.bigger..Use.any.address.in |
| ed460 | 20 74 68 65 20 72 61 6e 67 65 20 31 30 30 2e 36 34 2e 30 2e 31 30 20 2d 20 31 30 30 2e 36 34 2e | .the.range.100.64.0.10.-.100.64. |
| ed480 | 30 2e 32 30 20 6f 6e 20 53 4e 41 54 20 72 75 6c 65 20 34 30 20 77 68 65 6e 20 64 6f 69 6e 67 20 | 0.20.on.SNAT.rule.40.when.doing. |
| ed4a0 | 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 00 46 6f 72 20 61 20 73 69 6d 70 6c 65 20 68 6f 6d | the.translation.For.a.simple.hom |
| ed4c0 | 65 20 6e 65 74 77 6f 72 6b 20 75 73 69 6e 67 20 6a 75 73 74 20 74 68 65 20 49 53 50 27 73 20 65 | e.network.using.just.the.ISP's.e |
| ed4e0 | 71 75 69 70 6d 65 6e 74 2c 20 74 68 69 73 20 69 73 20 75 73 75 61 6c 6c 79 20 64 65 73 69 72 61 | quipment,.this.is.usually.desira |
| ed500 | 62 6c 65 2e 20 42 75 74 20 69 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 72 75 6e 20 56 79 4f 53 | ble..But.if.you.want.to.run.VyOS |
| ed520 | 20 61 73 20 79 6f 75 72 20 66 69 72 65 77 61 6c 6c 20 61 6e 64 20 72 6f 75 74 65 72 2c 20 74 68 | .as.your.firewall.and.router,.th |
| ed540 | 69 73 20 77 69 6c 6c 20 72 65 73 75 6c 74 20 69 6e 20 68 61 76 69 6e 67 20 61 20 64 6f 75 62 6c | is.will.result.in.having.a.doubl |
| ed560 | 65 20 4e 41 54 20 61 6e 64 20 66 69 72 65 77 61 6c 6c 20 73 65 74 75 70 2e 20 54 68 69 73 20 72 | e.NAT.and.firewall.setup..This.r |
| ed580 | 65 73 75 6c 74 73 20 69 6e 20 61 20 66 65 77 20 65 78 74 72 61 20 6c 61 79 65 72 73 20 6f 66 20 | esults.in.a.few.extra.layers.of. |
| ed5a0 | 63 6f 6d 70 6c 65 78 69 74 79 2c 20 70 61 72 74 69 63 75 6c 61 72 6c 79 20 69 66 20 79 6f 75 20 | complexity,.particularly.if.you. |
| ed5c0 | 75 73 65 20 73 6f 6d 65 20 4e 41 54 20 6f 72 20 74 75 6e 6e 65 6c 20 66 65 61 74 75 72 65 73 2e | use.some.NAT.or.tunnel.features. |
| ed5e0 | 00 46 6f 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 6c 65 73 73 20 70 72 6f 74 6f 63 6f 6c 73 20 61 73 | .For.connectionless.protocols.as |
| ed600 | 20 6c 69 6b 65 20 49 43 4d 50 20 61 6e 64 20 55 44 50 2c 20 61 20 66 6c 6f 77 20 69 73 20 63 6f | .like.ICMP.and.UDP,.a.flow.is.co |
| ed620 | 6e 73 69 64 65 72 65 64 20 63 6f 6d 70 6c 65 74 65 20 6f 6e 63 65 20 6e 6f 20 6d 6f 72 65 20 70 | nsidered.complete.once.no.more.p |
| ed640 | 61 63 6b 65 74 73 20 66 6f 72 20 74 68 69 73 20 66 6c 6f 77 20 61 70 70 65 61 72 20 61 66 74 65 | ackets.for.this.flow.appear.afte |
| ed660 | 72 20 63 6f 6e 66 69 67 75 72 61 62 6c 65 20 74 69 6d 65 6f 75 74 2e 00 46 6f 72 20 65 76 65 72 | r.configurable.timeout..For.ever |
| ed680 | 79 20 63 6c 69 65 6e 74 20 69 6e 20 74 68 65 20 6f 70 65 6e 76 70 6e 20 73 65 72 76 65 72 20 63 | y.client.in.the.openvpn.server.c |
| ed6a0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 20 74 6f 74 70 20 73 65 63 72 65 74 20 69 73 20 63 72 | onfiguration.a.totp.secret.is.cr |
| ed6c0 | 65 61 74 65 64 2e 20 54 6f 20 64 69 73 70 6c 61 79 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 | eated..To.display.the.authentica |
| ed6e0 | 74 69 6f 6e 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2c 20 75 73 65 20 74 68 65 20 63 6f 6d 6d 61 6e | tion.information,.use.the.comman |
| ed700 | 64 3a 00 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 69 66 20 70 72 6f 62 6c 65 6d 73 20 77 69 74 68 | d:.For.example,.if.problems.with |
| ed720 | 20 70 6f 6f 72 20 74 69 6d 65 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 61 72 65 20 65 | .poor.time.synchronization.are.e |
| ed740 | 78 70 65 72 69 65 6e 63 65 64 2c 20 74 68 65 20 77 69 6e 64 6f 77 20 63 61 6e 20 62 65 20 69 6e | xperienced,.the.window.can.be.in |
| ed760 | 63 72 65 61 73 65 64 20 66 72 6f 6d 20 69 74 73 20 64 65 66 61 75 6c 74 20 73 69 7a 65 20 6f 66 | creased.from.its.default.size.of |
| ed780 | 20 33 20 70 65 72 6d 69 74 74 65 64 20 63 6f 64 65 73 20 28 6f 6e 65 20 70 72 65 76 69 6f 75 73 | .3.permitted.codes.(one.previous |
| ed7a0 | 20 63 6f 64 65 2c 20 74 68 65 20 63 75 72 72 65 6e 74 20 63 6f 64 65 2c 20 74 68 65 20 6e 65 78 | .code,.the.current.code,.the.nex |
| ed7c0 | 74 20 63 6f 64 65 29 20 74 6f 20 31 37 20 70 65 72 6d 69 74 74 65 64 20 63 6f 64 65 73 20 28 74 | t.code).to.17.permitted.codes.(t |
| ed7e0 | 68 65 20 38 20 70 72 65 76 69 6f 75 73 20 63 6f 64 65 73 2c 20 74 68 65 20 63 75 72 72 65 6e 74 | he.8.previous.codes,.the.current |
| ed800 | 20 63 6f 64 65 2c 20 61 6e 64 20 74 68 65 20 38 20 6e 65 78 74 20 63 6f 64 65 73 29 2e 20 54 68 | .code,.and.the.8.next.codes)..Th |
| ed820 | 69 73 20 77 69 6c 6c 20 70 65 72 6d 69 74 20 66 6f 72 20 61 20 74 69 6d 65 20 73 6b 65 77 20 6f | is.will.permit.for.a.time.skew.o |
| ed840 | 66 20 75 70 20 74 6f 20 34 20 6d 69 6e 75 74 65 73 20 62 65 74 77 65 65 6e 20 63 6c 69 65 6e 74 | f.up.to.4.minutes.between.client |
| ed860 | 20 61 6e 64 20 73 65 72 76 65 72 2e 00 46 6f 72 20 65 78 61 6d 70 6c 65 3a 00 46 6f 72 20 66 69 | .and.server..For.example:.For.fi |
| ed880 | 72 65 77 61 6c 6c 20 66 69 6c 74 65 72 69 6e 67 2c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | rewall.filtering,.configuration. |
| ed8a0 | 73 68 6f 75 6c 64 20 62 65 20 64 6f 6e 65 20 69 6e 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c | should.be.done.in.``set.firewall |
| ed8c0 | 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 2e 2e 2e 60 60 00 46 6f 72 20 66 69 72 65 77 61 6c | .[ipv4.|.ipv6]....``.For.firewal |
| ed8e0 | 6c 20 66 69 6c 74 65 72 69 6e 67 2c 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 6e 65 65 64 | l.filtering,.firewall.rules.need |
| ed900 | 20 74 6f 20 62 65 20 63 72 65 61 74 65 64 2e 20 45 61 63 68 20 72 75 6c 65 20 69 73 20 6e 75 6d | .to.be.created..Each.rule.is.num |
| ed920 | 62 65 72 65 64 2c 20 68 61 73 20 61 6e 20 61 63 74 69 6f 6e 20 74 6f 20 61 70 70 6c 79 20 69 66 | bered,.has.an.action.to.apply.if |
| ed940 | 20 74 68 65 20 72 75 6c 65 20 69 73 20 6d 61 74 63 68 65 64 2c 20 61 6e 64 20 74 68 65 20 61 62 | .the.rule.is.matched,.and.the.ab |
| ed960 | 69 6c 69 74 79 20 74 6f 20 73 70 65 63 69 66 79 20 6d 75 6c 74 69 70 6c 65 20 6d 61 74 63 68 69 | ility.to.specify.multiple.matchi |
| ed980 | 6e 67 20 63 72 69 74 65 72 69 61 2e 20 44 61 74 61 20 70 61 63 6b 65 74 73 20 67 6f 20 74 68 72 | ng.criteria..Data.packets.go.thr |
| ed9a0 | 6f 75 67 68 20 74 68 65 20 72 75 6c 65 73 20 66 72 6f 6d 20 31 20 2d 20 39 39 39 39 39 39 2c 20 | ough.the.rules.from.1.-.999999,. |
| ed9c0 | 73 6f 20 6f 72 64 65 72 20 69 73 20 63 72 75 63 69 61 6c 2e 20 41 74 20 74 68 65 20 66 69 72 73 | so.order.is.crucial..At.the.firs |
| ed9e0 | 74 20 6d 61 74 63 68 20 74 68 65 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 72 75 6c 65 20 77 | t.match.the.action.of.the.rule.w |
| eda00 | 69 6c 6c 20 62 65 20 65 78 65 63 75 74 65 64 2e 00 46 6f 72 20 66 69 72 65 77 61 6c 6c 20 66 69 | ill.be.executed..For.firewall.fi |
| eda20 | 6c 74 65 72 69 6e 67 2c 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 6e 65 65 64 73 20 74 6f | ltering,.firewall.rules.needs.to |
| eda40 | 20 62 65 20 63 72 65 61 74 65 64 2e 20 45 61 63 68 20 72 75 6c 65 20 69 73 20 6e 75 6d 62 65 72 | .be.created..Each.rule.is.number |
| eda60 | 65 64 2c 20 68 61 73 20 61 6e 20 61 63 74 69 6f 6e 20 74 6f 20 61 70 70 6c 79 20 69 66 20 74 68 | ed,.has.an.action.to.apply.if.th |
| eda80 | 65 20 72 75 6c 65 20 69 73 20 6d 61 74 63 68 65 64 2c 20 61 6e 64 20 74 68 65 20 61 62 69 6c 69 | e.rule.is.matched,.and.the.abili |
| edaa0 | 74 79 20 74 6f 20 73 70 65 63 69 66 79 20 6d 75 6c 74 69 70 6c 65 20 63 72 69 74 65 72 69 61 20 | ty.to.specify.multiple.criteria. |
| edac0 | 6d 61 74 63 68 65 72 73 2e 20 44 61 74 61 20 70 61 63 6b 65 74 73 20 67 6f 20 74 68 72 6f 75 67 | matchers..Data.packets.go.throug |
| edae0 | 68 20 74 68 65 20 72 75 6c 65 73 20 66 72 6f 6d 20 31 20 2d 20 39 39 39 39 39 39 2c 20 73 6f 20 | h.the.rules.from.1.-.999999,.so. |
| edb00 | 6f 72 64 65 72 20 69 73 20 63 72 75 63 69 61 6c 2e 20 41 74 20 74 68 65 20 66 69 72 73 74 20 6d | order.is.crucial..At.the.first.m |
| edb20 | 61 74 63 68 20 74 68 65 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 72 75 6c 65 20 77 69 6c 6c | atch.the.action.of.the.rule.will |
| edb40 | 20 62 65 20 65 78 65 63 75 74 65 64 2e 00 46 6f 72 20 66 72 61 67 6d 65 6e 74 65 64 20 54 43 50 | .be.executed..For.fragmented.TCP |
| edb60 | 20 6f 72 20 55 44 50 20 70 61 63 6b 65 74 73 20 61 6e 64 20 61 6c 6c 20 6f 74 68 65 72 20 49 50 | .or.UDP.packets.and.all.other.IP |
| edb80 | 76 34 20 61 6e 64 20 49 50 76 36 20 70 72 6f 74 6f 63 6f 6c 20 74 72 61 66 66 69 63 2c 20 74 68 | v4.and.IPv6.protocol.traffic,.th |
| edba0 | 65 20 73 6f 75 72 63 65 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 69 6e | e.source.and.destination.port.in |
| edbc0 | 66 6f 72 6d 61 74 69 6f 6e 20 69 73 20 6f 6d 69 74 74 65 64 2e 20 46 6f 72 20 6e 6f 6e 2d 49 50 | formation.is.omitted..For.non-IP |
| edbe0 | 20 74 72 61 66 66 69 63 2c 20 74 68 65 20 66 6f 72 6d 75 6c 61 20 69 73 20 74 68 65 20 73 61 6d | .traffic,.the.formula.is.the.sam |
| edc00 | 65 20 61 73 20 66 6f 72 20 74 68 65 20 6c 61 79 65 72 32 20 74 72 61 6e 73 6d 69 74 20 68 61 73 | e.as.for.the.layer2.transmit.has |
| edc20 | 68 20 70 6f 6c 69 63 79 2e 00 46 6f 72 20 67 65 6e 65 72 61 74 69 6e 67 20 61 6e 20 4f 54 50 20 | h.policy..For.generating.an.OTP. |
| edc40 | 6b 65 79 20 69 6e 20 56 79 4f 53 2c 20 79 6f 75 20 63 61 6e 20 75 73 65 20 74 68 65 20 43 4c 49 | key.in.VyOS,.you.can.use.the.CLI |
| edc60 | 20 63 6f 6d 6d 61 6e 64 20 28 6f 70 65 72 61 74 69 6f 6e 61 6c 20 6d 6f 64 65 29 3a 00 46 6f 72 | .command.(operational.mode):.For |
| edc80 | 20 69 6e 62 6f 75 6e 64 20 75 70 64 61 74 65 73 20 74 68 65 20 6f 72 64 65 72 20 6f 66 20 70 72 | .inbound.updates.the.order.of.pr |
| edca0 | 65 66 65 72 65 6e 63 65 20 69 73 3a 00 46 6f 72 20 69 6e 73 74 61 6e 63 65 2c 20 77 69 74 68 20 | eference.is:.For.instance,.with. |
| edcc0 | 3a 63 6f 64 65 3a 60 73 65 74 20 71 6f 73 20 70 6f 6c 69 63 79 20 73 68 61 70 65 72 20 4d 59 2d | :code:`set.qos.policy.shaper.MY- |
| edce0 | 53 48 41 50 45 52 20 63 6c 61 73 73 20 33 30 20 73 65 74 2d 64 73 63 70 20 45 46 60 20 79 6f 75 | SHAPER.class.30.set-dscp.EF`.you |
| edd00 | 20 77 6f 75 6c 64 20 62 65 20 6d 6f 64 69 66 79 69 6e 67 20 74 68 65 20 44 53 43 50 20 66 69 65 | .would.be.modifying.the.DSCP.fie |
| edd20 | 6c 64 20 76 61 6c 75 65 20 6f 66 20 70 61 63 6b 65 74 73 20 69 6e 20 74 68 61 74 20 63 6c 61 73 | ld.value.of.packets.in.that.clas |
| edd40 | 73 20 74 6f 20 45 78 70 65 64 69 74 65 20 46 6f 72 77 61 72 64 69 6e 67 2e 00 46 6f 72 20 69 70 | s.to.Expedite.Forwarding..For.ip |
| edd60 | 76 34 3a 00 46 6f 72 20 6c 61 74 65 73 74 20 72 65 6c 65 61 73 65 73 2c 20 72 65 66 65 72 20 74 | v4:.For.latest.releases,.refer.t |
| edd80 | 68 65 20 60 66 69 72 65 77 61 6c 6c 20 28 69 6e 74 65 72 66 61 63 65 2d 67 72 6f 75 70 73 29 20 | he.`firewall.(interface-groups). |
| edda0 | 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 76 79 6f 73 2e 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f | <https://docs.vyos.io/en/latest/ |
| eddc0 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2e 68 | configuration/firewall/general.h |
| edde0 | 74 6d 6c 23 69 6e 74 65 72 66 61 63 65 2d 67 72 6f 75 70 73 3e 60 5f 20 6d 61 69 6e 20 70 61 67 | tml#interface-groups>`_.main.pag |
| ede00 | 65 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 7a 6f 6e 65 20 62 61 73 65 64 20 72 75 6c 65 73 2e | e.to.configure.zone.based.rules. |
| ede20 | 20 4e 65 77 20 73 79 6e 74 61 78 20 77 61 73 20 69 6e 74 72 6f 64 75 63 65 64 20 68 65 72 65 20 | .New.syntax.was.introduced.here. |
| ede40 | 3a 76 79 74 61 73 6b 3a 60 54 35 31 36 30 60 00 46 6f 72 20 6c 61 74 65 73 74 20 72 65 6c 65 61 | :vytask:`T5160`.For.latest.relea |
| ede60 | 73 65 73 2c 20 72 65 66 65 72 20 74 68 65 20 60 66 69 72 65 77 61 6c 6c 20 3c 68 74 74 70 73 3a | ses,.refer.the.`firewall.<https: |
| ede80 | 2f 2f 64 6f 63 73 2e 76 79 6f 73 2e 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f 63 6f 6e 66 69 67 75 | //docs.vyos.io/en/latest/configu |
| edea0 | 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2e 68 74 6d 6c 23 69 6e 74 | ration/firewall/general.html#int |
| edec0 | 65 72 66 61 63 65 2d 67 72 6f 75 70 73 3e 60 5f 20 6d 61 69 6e 20 70 61 67 65 20 74 6f 20 63 6f | erface-groups>`_.main.page.to.co |
| edee0 | 6e 66 69 67 75 72 65 20 7a 6f 6e 65 20 62 61 73 65 64 20 72 75 6c 65 73 2e 20 4e 65 77 20 73 79 | nfigure.zone.based.rules..New.sy |
| edf00 | 6e 74 61 78 20 77 61 73 20 69 6e 74 72 6f 64 75 63 65 64 20 68 65 72 65 20 3a 76 79 74 61 73 6b | ntax.was.introduced.here.:vytask |
| edf20 | 3a 60 54 35 31 36 30 60 00 46 6f 72 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e | :`T5160`.For.more.information.on |
| edf40 | 20 68 6f 77 20 4d 50 4c 53 20 6c 61 62 65 6c 20 73 77 69 74 63 68 69 6e 67 20 77 6f 72 6b 73 2c | .how.MPLS.label.switching.works, |
| edf60 | 20 70 6c 65 61 73 65 20 67 6f 20 76 69 73 69 74 20 60 57 69 6b 69 70 65 64 69 61 20 28 4d 50 4c | .please.go.visit.`Wikipedia.(MPL |
| edf80 | 53 29 60 5f 2e 00 46 6f 72 20 6d 75 6c 74 69 20 68 6f 70 20 73 65 73 73 69 6f 6e 73 20 6f 6e 6c | S)`_..For.multi.hop.sessions.onl |
| edfa0 | 79 2e 20 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6d 69 6e 69 6d 75 6d 20 65 78 70 65 63 74 65 | y..Configure.the.minimum.expecte |
| edfc0 | 64 20 54 54 4c 20 66 6f 72 20 61 6e 20 69 6e 63 6f 6d 69 6e 67 20 42 46 44 20 63 6f 6e 74 72 6f | d.TTL.for.an.incoming.BFD.contro |
| edfe0 | 6c 20 70 61 63 6b 65 74 2e 00 46 6f 72 20 6e 65 74 77 6f 72 6b 20 6d 61 69 6e 74 65 6e 61 6e 63 | l.packet..For.network.maintenanc |
| ee000 | 65 2c 20 69 74 27 73 20 61 20 67 6f 6f 64 20 69 64 65 61 20 74 6f 20 64 69 72 65 63 74 20 75 73 | e,.it's.a.good.idea.to.direct.us |
| ee020 | 65 72 73 20 74 6f 20 61 20 62 61 63 6b 75 70 20 73 65 72 76 65 72 20 73 6f 20 74 68 61 74 20 74 | ers.to.a.backup.server.so.that.t |
| ee040 | 68 65 20 70 72 69 6d 61 72 79 20 73 65 72 76 65 72 20 63 61 6e 20 62 65 20 73 61 66 65 6c 79 20 | he.primary.server.can.be.safely. |
| ee060 | 74 61 6b 65 6e 20 6f 75 74 20 6f 66 20 73 65 72 76 69 63 65 2e 20 49 74 27 73 20 70 6f 73 73 69 | taken.out.of.service..It's.possi |
| ee080 | 62 6c 65 20 74 6f 20 73 77 69 74 63 68 20 79 6f 75 72 20 50 50 50 6f 45 20 73 65 72 76 65 72 20 | ble.to.switch.your.PPPoE.server. |
| ee0a0 | 74 6f 20 6d 61 69 6e 74 65 6e 61 6e 63 65 20 6d 6f 64 65 20 77 68 65 72 65 20 69 74 20 6d 61 69 | to.maintenance.mode.where.it.mai |
| ee0c0 | 6e 74 61 69 6e 73 20 61 6c 72 65 61 64 79 20 65 73 74 61 62 6c 69 73 68 65 64 20 63 6f 6e 6e 65 | ntains.already.established.conne |
| ee0e0 | 63 74 69 6f 6e 73 2c 20 62 75 74 20 72 65 66 75 73 65 73 20 6e 65 77 20 63 6f 6e 6e 65 63 74 69 | ctions,.but.refuses.new.connecti |
| ee100 | 6f 6e 20 61 74 74 65 6d 70 74 73 2e 00 46 6f 72 20 6e 65 74 77 6f 72 6b 73 20 63 6f 6e 73 69 73 | on.attempts..For.networks.consis |
| ee120 | 74 69 6e 67 20 6f 66 20 56 79 4f 53 20 61 6e 64 20 6f 74 68 65 72 20 4c 69 6e 75 78 20 73 79 73 | ting.of.VyOS.and.other.Linux.sys |
| ee140 | 74 65 6d 73 20 72 75 6e 6e 69 6e 67 20 72 65 6c 61 74 69 76 65 6c 79 20 72 65 63 65 6e 74 20 76 | tems.running.relatively.recent.v |
| ee160 | 65 72 73 69 6f 6e 73 20 6f 66 20 74 68 65 20 63 68 72 6f 6e 79 20 64 61 65 6d 6f 6e 2c 20 4e 54 | ersions.of.the.chrony.daemon,.NT |
| ee180 | 50 20 70 61 63 6b 65 74 73 20 63 61 6e 20 62 65 20 22 74 75 6e 6e 65 6c 65 64 22 20 6f 76 65 72 | P.packets.can.be."tunneled".over |
| ee1a0 | 20 50 54 50 2e 20 4e 54 50 20 6f 76 65 72 20 50 54 50 20 70 72 6f 76 69 64 65 73 20 74 68 65 20 | .PTP..NTP.over.PTP.provides.the. |
| ee1c0 | 62 65 73 74 20 6f 66 20 62 6f 74 68 20 77 6f 72 6c 64 73 2c 20 6c 65 76 65 72 61 67 69 6e 67 20 | best.of.both.worlds,.leveraging. |
| ee1e0 | 68 61 72 64 77 61 72 65 20 73 75 70 70 6f 72 74 20 66 6f 72 20 74 69 6d 65 73 74 61 6d 70 69 6e | hardware.support.for.timestampin |
| ee200 | 67 20 50 54 50 20 70 61 63 6b 65 74 73 20 77 68 69 6c 65 20 72 65 74 61 69 6e 69 6e 67 20 74 68 | g.PTP.packets.while.retaining.th |
| ee220 | 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6c 65 78 69 62 69 6c 69 74 79 20 61 6e 64 20 | e.configuration.flexibility.and. |
| ee240 | 66 61 75 6c 74 20 74 6f 6c 65 72 61 6e 63 65 20 6f 66 20 4e 54 50 2e 00 46 6f 72 20 6f 70 74 69 | fault.tolerance.of.NTP..For.opti |
| ee260 | 6d 61 6c 20 73 63 61 6c 61 62 69 6c 69 74 79 2c 20 4d 75 6c 74 69 63 61 73 74 20 73 68 6f 75 6c | mal.scalability,.Multicast.shoul |
| ee280 | 64 6e 27 74 20 62 65 20 75 73 65 64 20 61 74 20 61 6c 6c 2c 20 62 75 74 20 69 6e 73 74 65 61 64 | dn't.be.used.at.all,.but.instead |
| ee2a0 | 20 75 73 65 20 42 47 50 20 74 6f 20 73 69 67 6e 61 6c 20 61 6c 6c 20 63 6f 6e 6e 65 63 74 65 64 | .use.BGP.to.signal.all.connected |
| ee2c0 | 20 64 65 76 69 63 65 73 20 62 65 74 77 65 65 6e 20 6c 65 61 76 65 73 2e 20 55 6e 66 6f 72 74 75 | .devices.between.leaves..Unfortu |
| ee2e0 | 6e 61 74 65 6c 79 2c 20 56 79 4f 53 20 64 6f 65 73 20 6e 6f 74 20 79 65 74 20 73 75 70 70 6f 72 | nately,.VyOS.does.not.yet.suppor |
| ee300 | 74 20 74 68 69 73 2e 00 46 6f 72 20 6f 75 74 62 6f 75 6e 64 20 75 70 64 61 74 65 73 20 74 68 65 | t.this..For.outbound.updates.the |
| ee320 | 20 6f 72 64 65 72 20 6f 66 20 70 72 65 66 65 72 65 6e 63 65 20 69 73 3a 00 46 6f 72 20 72 65 66 | .order.of.preference.is:.For.ref |
| ee340 | 65 72 65 6e 63 65 2c 20 61 20 64 65 73 63 72 69 70 74 69 6f 6e 20 63 61 6e 20 62 65 20 64 65 66 | erence,.a.description.can.be.def |
| ee360 | 69 6e 65 64 20 66 6f 72 20 65 76 65 72 79 20 64 65 66 69 6e 65 64 20 63 75 73 74 6f 6d 20 63 68 | ined.for.every.defined.custom.ch |
| ee380 | 61 69 6e 2e 00 46 6f 72 20 72 65 66 65 72 65 6e 63 65 2c 20 61 20 64 65 73 63 72 69 70 74 69 6f | ain..For.reference,.a.descriptio |
| ee3a0 | 6e 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 66 6f 72 20 65 76 65 72 79 20 73 69 6e 67 6c | n.can.be.defined.for.every.singl |
| ee3c0 | 65 20 72 75 6c 65 2c 20 61 6e 64 20 66 6f 72 20 65 76 65 72 79 20 64 65 66 69 6e 65 64 20 63 75 | e.rule,.and.for.every.defined.cu |
| ee3e0 | 73 74 6f 6d 20 63 68 61 69 6e 2e 00 46 6f 72 20 73 65 63 75 72 69 74 79 2c 20 74 68 65 20 6c 69 | stom.chain..For.security,.the.li |
| ee400 | 73 74 65 6e 20 61 64 64 72 65 73 73 20 73 68 6f 75 6c 64 20 6f 6e 6c 79 20 62 65 20 75 73 65 64 | sten.address.should.only.be.used |
| ee420 | 20 6f 6e 20 69 6e 74 65 72 6e 61 6c 2f 74 72 75 73 74 65 64 20 6e 65 74 77 6f 72 6b 73 21 00 46 | .on.internal/trusted.networks!.F |
| ee440 | 6f 72 20 73 65 72 69 61 6c 20 76 69 61 20 55 53 42 20 70 6f 72 74 20 69 6e 66 6f 72 6d 61 74 69 | or.serial.via.USB.port.informati |
| ee460 | 6f 6e 20 70 6c 65 61 73 65 20 72 65 66 6f 72 20 74 6f 3a 20 3a 72 65 66 3a 60 68 61 72 64 77 61 | on.please.refor.to:.:ref:`hardwa |
| ee480 | 72 65 5f 75 73 62 60 2e 00 46 6f 72 20 73 69 6d 70 6c 69 63 69 74 79 20 77 65 27 6c 6c 20 61 73 | re_usb`..For.simplicity.we'll.as |
| ee4a0 | 73 75 6d 65 20 74 68 61 74 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 20 69 73 20 47 52 45 2c 20 69 | sume.that.the.protocol.is.GRE,.i |
| ee4c0 | 74 27 73 20 6e 6f 74 20 68 61 72 64 20 74 6f 20 67 75 65 73 73 20 77 68 61 74 20 6e 65 65 64 73 | t's.not.hard.to.guess.what.needs |
| ee4e0 | 20 74 6f 20 62 65 20 63 68 61 6e 67 65 64 20 74 6f 20 6d 61 6b 65 20 69 74 20 77 6f 72 6b 20 77 | .to.be.changed.to.make.it.work.w |
| ee500 | 69 74 68 20 61 20 64 69 66 66 65 72 65 6e 74 20 70 72 6f 74 6f 63 6f 6c 2e 20 57 65 20 61 73 73 | ith.a.different.protocol..We.ass |
| ee520 | 75 6d 65 20 74 68 61 74 20 49 50 73 65 63 20 77 69 6c 6c 20 75 73 65 20 70 72 65 2d 73 68 61 72 | ume.that.IPsec.will.use.pre-shar |
| ee540 | 65 64 20 73 65 63 72 65 74 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 6e 64 20 77 69 6c | ed.secret.authentication.and.wil |
| ee560 | 6c 20 75 73 65 20 41 45 53 31 32 38 2f 53 48 41 31 20 66 6f 72 20 74 68 65 20 63 69 70 68 65 72 | l.use.AES128/SHA1.for.the.cipher |
| ee580 | 20 61 6e 64 20 68 61 73 68 2e 20 41 64 6a 75 73 74 20 74 68 69 73 20 61 73 20 6e 65 63 65 73 73 | .and.hash..Adjust.this.as.necess |
| ee5a0 | 61 72 79 2e 00 46 6f 72 20 74 68 65 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e | ary..For.the.:ref:`destination-n |
| ee5c0 | 61 74 36 36 60 20 72 75 6c 65 2c 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 | at66`.rule,.the.destination.addr |
| ee5e0 | 65 73 73 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 20 69 73 72 65 70 6c 61 63 65 64 20 62 79 20 | ess.of.the.packet.isreplaced.by. |
| ee600 | 74 68 65 20 61 64 64 72 65 73 73 20 63 61 6c 63 75 6c 61 74 65 64 20 66 72 6f 6d 20 74 68 65 20 | the.address.calculated.from.the. |
| ee620 | 73 70 65 63 69 66 69 65 64 20 61 64 64 72 65 73 73 20 6f 72 20 70 72 65 66 69 78 20 69 6e 20 74 | specified.address.or.prefix.in.t |
| ee640 | 68 65 20 60 74 72 61 6e 73 6c 61 74 69 6f 6e 20 61 64 64 72 65 73 73 60 20 63 6f 6d 6d 61 6e 64 | he.`translation.address`.command |
| ee660 | 00 46 6f 72 20 74 68 65 20 4f 70 65 6e 56 50 4e 20 74 72 61 66 66 69 63 20 74 6f 20 70 61 73 73 | .For.the.OpenVPN.traffic.to.pass |
| ee680 | 20 74 68 72 6f 75 67 68 20 74 68 65 20 57 41 4e 20 69 6e 74 65 72 66 61 63 65 2c 20 79 6f 75 20 | .through.the.WAN.interface,.you. |
| ee6a0 | 6d 75 73 74 20 63 72 65 61 74 65 20 61 20 66 69 72 65 77 61 6c 6c 20 65 78 63 65 70 74 69 6f 6e | must.create.a.firewall.exception |
| ee6c0 | 2e 00 46 6f 72 20 74 68 65 20 57 69 72 65 47 75 61 72 64 20 74 72 61 66 66 69 63 20 74 6f 20 70 | ..For.the.WireGuard.traffic.to.p |
| ee6e0 | 61 73 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 57 41 4e 20 69 6e 74 65 72 66 61 63 65 2c 20 79 | ass.through.the.WAN.interface,.y |
| ee700 | 6f 75 20 6d 75 73 74 20 63 72 65 61 74 65 20 61 20 66 69 72 65 77 61 6c 6c 20 65 78 63 65 70 74 | ou.must.create.a.firewall.except |
| ee720 | 69 6f 6e 2e 00 46 6f 72 20 74 68 65 20 61 76 65 72 61 67 65 20 75 73 65 72 20 61 20 73 65 72 69 | ion..For.the.average.user.a.seri |
| ee740 | 61 6c 20 63 6f 6e 73 6f 6c 65 20 68 61 73 20 6e 6f 20 61 64 76 61 6e 74 61 67 65 20 6f 76 65 72 | al.console.has.no.advantage.over |
| ee760 | 20 61 20 63 6f 6e 73 6f 6c 65 20 6f 66 66 65 72 65 64 20 62 79 20 61 20 64 69 72 65 63 74 6c 79 | .a.console.offered.by.a.directly |
| ee780 | 20 61 74 74 61 63 68 65 64 20 6b 65 79 62 6f 61 72 64 20 61 6e 64 20 73 63 72 65 65 6e 2e 20 53 | .attached.keyboard.and.screen..S |
| ee7a0 | 65 72 69 61 6c 20 63 6f 6e 73 6f 6c 65 73 20 61 72 65 20 6d 75 63 68 20 73 6c 6f 77 65 72 2c 20 | erial.consoles.are.much.slower,. |
| ee7c0 | 74 61 6b 69 6e 67 20 75 70 20 74 6f 20 61 20 73 65 63 6f 6e 64 20 74 6f 20 66 69 6c 6c 20 61 20 | taking.up.to.a.second.to.fill.a. |
| ee7e0 | 38 30 20 63 6f 6c 75 6d 6e 20 62 79 20 32 34 20 6c 69 6e 65 20 73 63 72 65 65 6e 2e 20 53 65 72 | 80.column.by.24.line.screen..Ser |
| ee800 | 69 61 6c 20 63 6f 6e 73 6f 6c 65 73 20 67 65 6e 65 72 61 6c 6c 79 20 6f 6e 6c 79 20 73 75 70 70 | ial.consoles.generally.only.supp |
| ee820 | 6f 72 74 20 6e 6f 6e 2d 70 72 6f 70 6f 72 74 69 6f 6e 61 6c 20 41 53 43 49 49 20 74 65 78 74 2c | ort.non-proportional.ASCII.text, |
| ee840 | 20 77 69 74 68 20 6c 69 6d 69 74 65 64 20 73 75 70 70 6f 72 74 20 66 6f 72 20 6c 61 6e 67 75 61 | .with.limited.support.for.langua |
| ee860 | 67 65 73 20 6f 74 68 65 72 20 74 68 61 6e 20 45 6e 67 6c 69 73 68 2e 00 46 6f 72 20 74 68 65 20 | ges.other.than.English..For.the. |
| ee880 | 64 65 73 74 69 6e 61 74 69 6f 6e 2c 20 67 72 6f 75 70 73 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 | destination,.groups.can.also.be. |
| ee8a0 | 75 73 65 64 20 69 6e 73 74 65 61 64 20 6f 66 20 61 6e 20 61 64 64 72 65 73 73 2e 00 46 6f 72 20 | used.instead.of.an.address..For. |
| ee8c0 | 74 68 65 20 69 6e 67 72 65 73 73 20 74 72 61 66 66 69 63 20 6f 66 20 61 6e 20 69 6e 74 65 72 66 | the.ingress.traffic.of.an.interf |
| ee8e0 | 61 63 65 2c 20 74 68 65 72 65 20 69 73 20 6f 6e 6c 79 20 6f 6e 65 20 70 6f 6c 69 63 79 20 79 6f | ace,.there.is.only.one.policy.yo |
| ee900 | 75 20 63 61 6e 20 64 69 72 65 63 74 6c 79 20 61 70 70 6c 79 2c 20 61 20 2a 2a 4c 69 6d 69 74 65 | u.can.directly.apply,.a.**Limite |
| ee920 | 72 2a 2a 20 70 6f 6c 69 63 79 2e 20 59 6f 75 20 63 61 6e 6e 6f 74 20 61 70 70 6c 79 20 61 20 73 | r**.policy..You.cannot.apply.a.s |
| ee940 | 68 61 70 69 6e 67 20 70 6f 6c 69 63 79 20 64 69 72 65 63 74 6c 79 20 74 6f 20 74 68 65 20 69 6e | haping.policy.directly.to.the.in |
| ee960 | 67 72 65 73 73 20 74 72 61 66 66 69 63 20 6f 66 20 61 6e 79 20 69 6e 74 65 72 66 61 63 65 20 62 | gress.traffic.of.any.interface.b |
| ee980 | 65 63 61 75 73 65 20 73 68 61 70 69 6e 67 20 6f 6e 6c 79 20 77 6f 72 6b 73 20 66 6f 72 20 6f 75 | ecause.shaping.only.works.for.ou |
| ee9a0 | 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 2e 00 46 6f 72 20 74 68 65 20 73 61 6b 65 20 6f 66 20 | tbound.traffic..For.the.sake.of. |
| ee9c0 | 64 65 6d 6f 6e 73 74 72 61 74 69 6f 6e 2c 20 60 65 78 61 6d 70 6c 65 20 23 31 20 69 6e 20 74 68 | demonstration,.`example.#1.in.th |
| ee9e0 | 65 20 6f 66 66 69 63 69 61 6c 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 3c 68 74 74 70 73 3a | e.official.documentation.<https: |
| eea00 | 2f 2f 77 77 77 2e 7a 61 62 62 69 78 2e 63 6f 6d 2f 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 2f 63 | //www.zabbix.com/documentation/c |
| eea20 | 75 72 72 65 6e 74 2f 6d 61 6e 75 61 6c 2f 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 2f 63 6f 6e 74 | urrent/manual/.installation/cont |
| eea40 | 61 69 6e 65 72 73 3e 60 5f 20 74 6f 20 74 68 65 20 64 65 63 6c 61 72 61 74 69 76 65 20 56 79 4f | ainers>`_.to.the.declarative.VyO |
| eea60 | 53 20 43 4c 49 20 73 79 6e 74 61 78 2e 00 46 6f 72 20 74 68 65 20 73 61 6b 65 20 6f 66 20 64 65 | S.CLI.syntax..For.the.sake.of.de |
| eea80 | 6d 6f 6e 73 74 72 61 74 69 6f 6e 2c 20 60 65 78 61 6d 70 6c 65 20 23 31 20 69 6e 20 74 68 65 20 | monstration,.`example.#1.in.the. |
| eeaa0 | 6f 66 66 69 63 69 61 6c 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 3c 68 74 74 70 73 3a 2f 2f | official.documentation.<https:// |
| eeac0 | 77 77 77 2e 7a 61 62 62 69 78 2e 63 6f 6d 2f 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 2f 63 75 72 | www.zabbix.com/documentation/cur |
| eeae0 | 72 65 6e 74 2f 6d 61 6e 75 61 6c 2f 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 2f 63 6f 6e 74 61 69 6e | rent/manual/installation/contain |
| eeb00 | 65 72 73 3e 60 5f 20 74 6f 20 74 68 65 20 64 65 63 6c 61 72 61 74 69 76 65 20 56 79 4f 53 20 43 | ers>`_.to.the.declarative.VyOS.C |
| eeb20 | 4c 49 20 73 79 6e 74 61 78 2e 00 46 6f 72 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 65 64 20 | LI.syntax..For.traffic.destined. |
| eeb40 | 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2c 20 6f 72 20 74 68 61 74 20 6e 65 | to.the.router.itself,.or.that.ne |
| eeb60 | 65 64 73 20 74 6f 20 62 65 20 72 6f 75 74 65 64 20 28 61 73 73 75 6d 69 6e 67 20 61 20 6c 61 79 | eds.to.be.routed.(assuming.a.lay |
| eeb80 | 65 72 33 20 62 72 69 64 67 65 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 29 2c 20 74 68 65 20 62 | er3.bridge.is.configured),.the.b |
| eeba0 | 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 69 6e 70 75 74 2a 2a 2c 20 74 68 65 20 62 61 73 65 | ase.chain.is.**input**,.the.base |
| eebc0 | 20 63 6f 6d 6d 61 6e 64 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 | .command.is.``set.firewall.bridg |
| eebe0 | 65 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 20 61 6e 64 20 74 68 65 20 70 61 74 | e.input.filter....``.and.the.pat |
| eec00 | 68 20 69 73 3a 00 46 6f 72 20 74 72 61 66 66 69 63 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 | h.is:.For.traffic.originated.by. |
| eec20 | 74 68 65 20 72 6f 75 74 65 72 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 6f 75 74 70 | the.router,.base.chain.is.**outp |
| eec40 | 75 74 20 66 69 6c 74 65 72 2a 2a 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 5b 69 70 76 | ut.filter**:.``set.firewall.[ipv |
| eec60 | 34 20 7c 20 69 70 76 36 5d 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 46 6f | 4.|.ipv6].output.filter....``.Fo |
| eec80 | 72 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6e 65 65 64 73 20 74 6f 20 62 65 20 66 6f 72 77 61 | r.traffic.that.needs.to.be.forwa |
| eeca0 | 72 64 65 64 20 69 6e 74 65 72 6e 61 6c 6c 79 20 62 79 20 74 68 65 20 62 72 69 64 67 65 2c 20 62 | rded.internally.by.the.bridge,.b |
| eecc0 | 61 73 65 20 63 68 61 69 6e 20 69 73 20 69 73 20 2a 2a 66 6f 72 77 61 72 64 2a 2a 2c 20 61 6e 64 | ase.chain.is.is.**forward**,.and |
| eece0 | 20 69 74 27 73 20 62 61 73 65 20 63 6f 6d 6d 61 6e 64 20 66 6f 72 20 66 69 6c 74 65 72 69 6e 67 | .it's.base.command.for.filtering |
| eed00 | 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 66 6f 72 77 61 72 | .is.``set.firewall.bridge.forwar |
| eed20 | 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e | d.filter....``,.which.happens.in |
| eed40 | 20 73 74 61 67 65 20 34 2c 20 68 69 67 68 6c 69 67 68 74 65 64 20 77 69 74 68 20 72 65 64 20 63 | .stage.4,.highlighted.with.red.c |
| eed60 | 6f 6c 6f 72 2e 00 46 6f 72 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6e 65 65 64 73 20 74 6f 20 | olor..For.traffic.that.needs.to. |
| eed80 | 62 65 20 66 6f 72 77 61 72 65 64 20 69 6e 74 65 72 6e 61 6c 6c 79 20 62 79 20 74 68 65 20 62 72 | be.forwared.internally.by.the.br |
| eeda0 | 69 64 67 65 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 69 73 20 2a 2a 66 6f 72 77 61 72 64 | idge,.base.chain.is.is.**forward |
| eedc0 | 2a 2a 2c 20 61 6e 64 20 69 74 27 73 20 62 61 73 65 20 63 6f 6d 6d 61 6e 64 20 66 6f 72 20 66 69 | **,.and.it's.base.command.for.fi |
| eede0 | 6c 74 65 72 69 6e 67 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 | ltering.is.``set.firewall.bridge |
| eee00 | 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 46 6f 72 20 74 72 61 66 66 69 | .forward.filter....``.For.traffi |
| eee20 | 63 20 74 68 61 74 20 6e 65 65 64 73 20 74 6f 20 62 65 20 66 6f 72 77 61 72 65 64 20 69 6e 74 65 | c.that.needs.to.be.forwared.inte |
| eee40 | 72 6e 61 6c 6c 79 20 62 79 20 74 68 65 20 62 72 69 64 67 65 2c 20 62 61 73 65 20 63 68 61 69 6e | rnally.by.the.bridge,.base.chain |
| eee60 | 20 69 73 20 69 73 20 2a 2a 66 6f 72 77 61 72 64 2a 2a 2c 20 61 6e 64 20 69 74 27 73 20 62 61 73 | .is.is.**forward**,.and.it's.bas |
| eee80 | 65 20 63 6f 6d 6d 61 6e 64 20 66 6f 72 20 66 69 6c 74 65 72 69 6e 67 20 69 73 20 60 60 73 65 74 | e.command.for.filtering.is.``set |
| eeea0 | 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 | .firewall.bridge.forward.filter. |
| eeec0 | 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 61 67 65 20 34 2c | ...``,.which.happens.in.stage.4, |
| eeee0 | 20 68 69 67 68 6c 69 67 68 74 65 6e 65 64 20 77 69 74 68 20 72 65 64 20 63 6f 6c 6f 72 2e 00 46 | .highlightened.with.red.color..F |
| eef00 | 6f 72 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6e 65 65 64 73 20 74 6f 20 62 65 20 73 77 69 74 | or.traffic.that.needs.to.be.swit |
| eef20 | 63 68 65 64 20 69 6e 74 65 72 6e 61 6c 6c 79 20 62 79 20 74 68 65 20 62 72 69 64 67 65 2c 20 62 | ched.internally.by.the.bridge,.b |
| eef40 | 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 66 6f 72 77 61 72 64 2a 2a 2c 20 61 6e 64 20 69 74 | ase.chain.is.**forward**,.and.it |
| eef60 | 27 73 20 62 61 73 65 20 63 6f 6d 6d 61 6e 64 20 66 6f 72 20 66 69 6c 74 65 72 69 6e 67 20 69 73 | 's.base.command.for.filtering.is |
| eef80 | 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 66 6f 72 77 61 72 64 20 66 | .``set.firewall.bridge.forward.f |
| eefa0 | 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 | ilter....``,.which.happens.in.st |
| eefc0 | 61 67 65 20 34 2c 20 68 69 67 68 6c 69 67 68 74 65 64 20 77 69 74 68 20 72 65 64 20 63 6f 6c 6f | age.4,.highlighted.with.red.colo |
| eefe0 | 72 2e 00 46 6f 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 73 20 74 68 65 20 72 6f 75 74 65 | r..For.traffic.towards.the.route |
| ef000 | 72 20 69 74 73 65 6c 66 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 69 6e 70 75 74 20 | r.itself,.base.chain.is.**input. |
| ef020 | 66 69 6c 74 65 72 2a 2a 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c | filter**:.``set.firewall.[ipv4.| |
| ef040 | 20 69 70 76 36 5d 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 46 6f 72 20 74 72 | .ipv6].input.filter....``.For.tr |
| ef060 | 61 66 66 69 63 20 74 6f 77 61 72 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2c | affic.towards.the.router.itself, |
| ef080 | 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 69 6e 70 75 74 2a 2a 2c 20 77 68 69 6c 65 20 | .base.chain.is.**input**,.while. |
| ef0a0 | 74 72 61 66 66 69 63 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 | traffic.originated.by.the.router |
| ef0c0 | 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 6f 75 74 70 75 74 2a 2a 2e 20 41 20 6e 65 | ,.base.chain.is.**output**..A.ne |
| ef0e0 | 77 20 73 69 6d 70 6c 69 66 69 65 64 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 64 69 61 67 72 61 6d | w.simplified.packet.flow.diagram |
| ef100 | 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 2c 20 77 68 69 63 68 20 73 68 6f 77 73 20 74 68 65 20 | .is.shown.next,.which.shows.the. |
| ef120 | 70 61 74 68 20 66 6f 72 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 61 74 65 64 20 74 6f 20 74 | path.for.traffic.destinated.to.t |
| ef140 | 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2c 20 61 6e 64 20 74 72 61 66 66 69 63 20 67 65 | he.router.itself,.and.traffic.ge |
| ef160 | 6e 65 72 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 28 73 74 61 72 74 69 6e 67 20 | nerated.by.the.router.(starting. |
| ef180 | 66 72 6f 6d 20 63 69 72 63 6c 65 20 6e 75 6d 62 65 72 20 36 29 3a 00 46 6f 72 20 74 72 61 66 66 | from.circle.number.6):.For.traff |
| ef1a0 | 69 63 20 74 6f 77 61 72 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2c 20 62 61 | ic.towards.the.router.itself,.ba |
| ef1c0 | 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 69 6e 70 75 74 2a 2a 2c 20 77 68 69 6c 65 20 74 72 61 | se.chain.is.**input**,.while.tra |
| ef1e0 | 66 66 69 63 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 2c 20 62 | ffic.originated.by.the.router,.b |
| ef200 | 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 6f 75 74 70 75 74 2a 2a 2e 20 41 20 6e 65 77 20 73 | ase.chain.is.**output**..A.new.s |
| ef220 | 69 6d 70 6c 69 66 69 65 64 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 64 69 61 67 72 61 6d 20 69 73 | implified.packet.flow.diagram.is |
| ef240 | 20 73 68 6f 77 6e 20 6e 65 78 74 2c 20 77 68 69 63 68 20 73 68 6f 77 73 20 74 68 65 20 70 61 74 | .shown.next,.which.shows.the.pat |
| ef260 | 68 20 66 6f 72 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 65 64 20 74 6f 20 74 68 65 20 72 6f | h.for.traffic.destined.to.the.ro |
| ef280 | 75 74 65 72 20 69 74 73 65 6c 66 2c 20 61 6e 64 20 74 72 61 66 66 69 63 20 67 65 6e 65 72 61 74 | uter.itself,.and.traffic.generat |
| ef2a0 | 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 28 73 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 | ed.by.the.router.(starting.from. |
| ef2c0 | 63 69 72 63 6c 65 20 6e 75 6d 62 65 72 20 36 29 3a 00 46 6f 72 20 74 72 61 66 66 69 63 20 74 6f | circle.number.6):.For.traffic.to |
| ef2e0 | 77 61 72 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2c 20 74 68 65 20 62 61 73 | wards.the.router.itself,.the.bas |
| ef300 | 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 69 6e 70 75 74 2a 2a 2c 20 77 68 69 6c 65 20 74 72 61 66 | e.chain.is.**input**,.while.traf |
| ef320 | 66 69 63 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 68 61 73 | fic.originated.by.the.router.has |
| ef340 | 20 74 68 65 20 62 61 73 65 20 63 68 61 69 6e 20 2a 2a 6f 75 74 70 75 74 2a 2a 2e 20 41 20 6e 65 | .the.base.chain.**output**..A.ne |
| ef360 | 77 20 73 69 6d 70 6c 69 66 69 65 64 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 64 69 61 67 72 61 6d | w.simplified.packet.flow.diagram |
| ef380 | 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 2c 20 77 68 69 63 68 20 73 68 6f 77 73 20 74 68 65 20 | .is.shown.next,.which.shows.the. |
| ef3a0 | 70 61 74 68 20 66 6f 72 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 65 64 20 74 6f 20 74 68 65 | path.for.traffic.destined.to.the |
| ef3c0 | 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2c 20 61 6e 64 20 74 72 61 66 66 69 63 20 67 65 6e 65 | .router.itself,.and.traffic.gene |
| ef3e0 | 72 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 28 73 74 61 72 74 69 6e 67 20 66 72 | rated.by.the.router.(starting.fr |
| ef400 | 6f 6d 20 63 69 72 63 6c 65 20 6e 75 6d 62 65 72 20 36 29 3a 00 46 6f 72 20 74 72 61 6e 73 69 74 | om.circle.number.6):.For.transit |
| ef420 | 20 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 20 74 | .traffic,.which.is.received.by.t |
| ef440 | 68 65 20 72 6f 75 74 65 72 20 61 6e 64 20 66 6f 72 77 61 72 64 65 64 2c 20 62 61 73 65 20 63 68 | he.router.and.forwarded,.base.ch |
| ef460 | 61 69 6e 20 69 73 20 2a 2a 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 2a 2a 3a 20 60 60 73 65 74 | ain.is.**forward.filter**:.``set |
| ef480 | 20 66 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 66 6f 72 77 61 72 64 20 | .firewall.[ipv4.|.ipv6].forward. |
| ef4a0 | 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 46 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 | filter....``.For.transit.traffic |
| ef4c0 | 2c 20 77 68 69 63 68 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 | ,.which.is.received.by.the.route |
| ef4e0 | 72 20 61 6e 64 20 66 6f 72 77 61 72 64 65 64 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a | r.and.forwarded,.base.chain.is.* |
| ef500 | 2a 66 6f 72 77 61 72 64 2a 2a 2e 20 41 20 73 69 6d 70 6c 69 66 69 65 64 20 70 61 63 6b 65 74 20 | *forward**..A.simplified.packet. |
| ef520 | 66 6c 6f 77 20 64 69 61 67 72 61 6d 20 66 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 | flow.diagram.for.transit.traffic |
| ef540 | 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 3a 00 46 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 | .is.shown.next:.For.transit.traf |
| ef560 | 66 69 63 2c 20 77 68 69 63 68 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f | fic,.which.is.received.by.the.ro |
| ef580 | 75 74 65 72 20 61 6e 64 20 66 6f 72 77 61 72 64 65 64 2c 20 74 68 65 20 62 61 73 65 20 63 68 61 | uter.and.forwarded,.the.base.cha |
| ef5a0 | 69 6e 20 69 73 20 2a 2a 66 6f 72 77 61 72 64 2a 2a 2e 20 41 20 73 69 6d 70 6c 69 66 69 65 64 20 | in.is.**forward**..A.simplified. |
| ef5c0 | 70 61 63 6b 65 74 20 66 6c 6f 77 20 64 69 61 67 72 61 6d 20 66 6f 72 20 74 72 61 6e 73 69 74 20 | packet.flow.diagram.for.transit. |
| ef5e0 | 74 72 61 66 66 69 63 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 3a 00 46 6f 72 20 77 65 62 20 61 | traffic.is.shown.next:.For.web.a |
| ef600 | 70 70 6c 69 63 61 74 69 6f 6e 20 70 72 6f 76 69 64 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | pplication.providing.information |
| ef620 | 20 61 62 6f 75 74 20 74 68 65 69 72 20 73 74 61 74 65 20 48 54 54 50 20 68 65 61 6c 74 68 20 63 | .about.their.state.HTTP.health.c |
| ef640 | 68 65 63 6b 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 | hecks.can.be.used.to.determine.t |
| ef660 | 68 65 69 72 20 61 76 61 69 6c 61 62 69 6c 69 74 79 2e 00 46 6f 72 6d 61 6c 6c 79 2c 20 61 20 76 | heir.availability..Formally,.a.v |
| ef680 | 69 72 74 75 61 6c 20 6c 69 6e 6b 20 6c 6f 6f 6b 73 20 6c 69 6b 65 20 61 20 70 6f 69 6e 74 2d 74 | irtual.link.looks.like.a.point-t |
| ef6a0 | 6f 2d 70 6f 69 6e 74 20 6e 65 74 77 6f 72 6b 20 63 6f 6e 6e 65 63 74 69 6e 67 20 74 77 6f 20 41 | o-point.network.connecting.two.A |
| ef6c0 | 42 52 20 66 72 6f 6d 20 6f 6e 65 20 61 72 65 61 20 6f 6e 65 20 6f 66 20 77 68 69 63 68 20 70 68 | BR.from.one.area.one.of.which.ph |
| ef6e0 | 79 73 69 63 61 6c 6c 79 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 61 20 62 61 63 6b 62 6f 6e 65 | ysically.connected.to.a.backbone |
| ef700 | 20 61 72 65 61 2e 20 54 68 69 73 20 70 73 65 75 64 6f 2d 6e 65 74 77 6f 72 6b 20 69 73 20 63 6f | .area..This.pseudo-network.is.co |
| ef720 | 6e 73 69 64 65 72 65 64 20 74 6f 20 62 65 6c 6f 6e 67 20 74 6f 20 61 20 62 61 63 6b 62 6f 6e 65 | nsidered.to.belong.to.a.backbone |
| ef740 | 20 61 72 65 61 2e 00 46 6f 72 77 61 72 64 20 69 6e 63 6f 6d 69 6e 67 20 44 4e 53 20 71 75 65 72 | .area..Forward.incoming.DNS.quer |
| ef760 | 69 65 73 20 74 6f 20 74 68 65 20 44 4e 53 20 73 65 72 76 65 72 73 20 63 6f 6e 66 69 67 75 72 65 | ies.to.the.DNS.servers.configure |
| ef780 | 64 20 75 6e 64 65 72 20 74 68 65 20 60 60 73 79 73 74 65 6d 20 6e 61 6d 65 2d 73 65 72 76 65 72 | d.under.the.``system.name-server |
| ef7a0 | 60 60 20 6e 6f 64 65 73 2e 00 46 6f 72 77 61 72 64 20 6d 65 74 68 6f 64 00 46 6f 72 77 61 72 64 | ``.nodes..Forward.method.Forward |
| ef7c0 | 20 72 65 63 65 69 76 65 64 20 71 75 65 72 69 65 73 20 66 6f 72 20 61 20 70 61 72 74 69 63 75 6c | .received.queries.for.a.particul |
| ef7e0 | 61 72 20 64 6f 6d 61 69 6e 20 28 73 70 65 63 69 66 69 65 64 20 76 69 61 20 60 64 6f 6d 61 69 6e | ar.domain.(specified.via.`domain |
| ef800 | 2d 6e 61 6d 65 60 29 20 74 6f 20 61 20 67 69 76 65 6e 20 6e 61 6d 65 73 65 72 76 65 72 2e 20 4d | -name`).to.a.given.nameserver..M |
| ef820 | 75 6c 74 69 70 6c 65 20 6e 61 6d 65 73 65 72 76 65 72 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 | ultiple.nameservers.can.be.speci |
| ef840 | 66 69 65 64 2e 20 59 6f 75 20 63 61 6e 20 75 73 65 20 74 68 69 73 20 66 65 61 74 75 72 65 20 66 | fied..You.can.use.this.feature.f |
| ef860 | 6f 72 20 61 20 44 4e 53 20 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 63 6f 6e 66 69 67 75 72 61 | or.a.DNS.split-horizon.configura |
| ef880 | 74 69 6f 6e 2e 00 46 6f 75 72 20 70 6f 6c 69 63 69 65 73 20 66 6f 72 20 72 65 66 6f 72 77 61 72 | tion..Four.policies.for.reforwar |
| ef8a0 | 64 69 6e 67 20 44 48 43 50 20 70 61 63 6b 65 74 73 20 65 78 69 73 74 3a 00 46 72 6f 6d 20 3a 72 | ding.DHCP.packets.exist:.From.:r |
| ef8c0 | 66 63 3a 60 31 39 33 30 60 3a 00 46 72 6f 6d 20 61 20 73 65 63 75 72 69 74 79 20 70 65 72 73 70 | fc:`1930`:.From.a.security.persp |
| ef8e0 | 65 63 74 69 76 65 2c 20 69 74 20 69 73 20 6e 6f 74 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 74 6f | ective,.it.is.not.recommended.to |
| ef900 | 20 6c 65 74 20 61 20 74 68 69 72 64 20 70 61 72 74 79 20 63 72 65 61 74 65 20 61 6e 64 20 73 68 | .let.a.third.party.create.and.sh |
| ef920 | 61 72 65 20 74 68 65 20 70 72 69 76 61 74 65 20 6b 65 79 20 66 6f 72 20 61 20 73 65 63 75 72 65 | are.the.private.key.for.a.secure |
| ef940 | 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 59 6f 75 20 73 68 6f 75 6c 64 20 63 72 65 61 74 65 20 | d.connection..You.should.create. |
| ef960 | 74 68 65 20 70 72 69 76 61 74 65 20 70 6f 72 74 69 6f 6e 20 6f 6e 20 79 6f 75 72 20 6f 77 6e 20 | the.private.portion.on.your.own. |
| ef980 | 61 6e 64 20 6f 6e 6c 79 20 68 61 6e 64 20 6f 75 74 20 74 68 65 20 70 75 62 6c 69 63 20 6b 65 79 | and.only.hand.out.the.public.key |
| ef9a0 | 2e 20 50 6c 65 61 73 65 20 6b 65 65 70 20 74 68 69 73 20 69 6e 20 6d 69 6e 64 20 77 68 65 6e 20 | ..Please.keep.this.in.mind.when. |
| ef9c0 | 75 73 69 6e 67 20 74 68 69 73 20 63 6f 6e 76 65 6e 69 65 6e 63 65 20 66 65 61 74 75 72 65 2e 00 | using.this.convenience.feature.. |
| ef9e0 | 46 72 6f 6d 20 6d 61 69 6e 20 73 74 72 75 63 74 75 72 65 20 64 65 66 69 6e 65 64 20 69 6e 20 3a | From.main.structure.defined.in.: |
| efa00 | 64 6f 63 3a 60 46 69 72 65 77 61 6c 6c 20 4f 76 65 72 76 69 65 77 3c 2f 63 6f 6e 66 69 67 75 72 | doc:`Firewall.Overview</configur |
| efa20 | 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 69 6e 64 65 78 3e 60 20 69 6e 20 74 68 69 73 20 73 | ation/firewall/index>`.in.this.s |
| efa40 | 65 63 74 69 6f 6e 20 79 6f 75 20 63 61 6e 20 66 69 6e 64 20 64 65 74 61 69 6c 65 64 20 69 6e 66 | ection.you.can.find.detailed.inf |
| efa60 | 6f 72 6d 61 74 69 6f 6e 20 6f 6e 6c 79 20 66 6f 72 20 74 68 65 20 6e 65 78 74 20 70 61 72 74 20 | ormation.only.for.the.next.part. |
| efa80 | 6f 66 20 74 68 65 20 67 65 6e 65 72 61 6c 20 73 74 72 75 63 74 75 72 65 3a 00 46 72 6f 6d 20 74 | of.the.general.structure:.From.t |
| efaa0 | 68 65 20 6d 61 69 6e 20 73 74 72 75 63 74 75 72 65 20 64 65 66 69 6e 65 64 20 69 6e 20 3a 64 6f | he.main.structure.defined.in.:do |
| efac0 | 63 3a 60 46 69 72 65 77 61 6c 6c 20 4f 76 65 72 76 69 65 77 3c 2f 63 6f 6e 66 69 67 75 72 61 74 | c:`Firewall.Overview</configurat |
| efae0 | 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 69 6e 64 65 78 3e 60 20 69 6e 20 74 68 69 73 20 73 65 63 | ion/firewall/index>`.in.this.sec |
| efb00 | 74 69 6f 6e 20 79 6f 75 20 63 61 6e 20 66 69 6e 64 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 | tion.you.can.find.detailed.infor |
| efb20 | 6d 61 74 69 6f 6e 20 6f 6e 6c 79 20 66 6f 72 20 74 68 65 20 6e 65 78 74 20 70 61 72 74 20 6f 66 | mation.only.for.the.next.part.of |
| efb40 | 20 74 68 65 20 67 65 6e 65 72 61 6c 20 73 74 72 75 63 74 75 72 65 3a 00 46 75 72 74 68 65 72 20 | .the.general.structure:.Further. |
| efb60 | 52 65 61 64 69 6e 67 00 46 77 6d 61 72 6b 00 47 45 4e 45 56 45 00 47 45 4e 45 56 45 20 69 73 20 | Reading.Fwmark.GENEVE.GENEVE.is. |
| efb80 | 64 65 73 69 67 6e 65 64 20 74 6f 20 73 75 70 70 6f 72 74 20 6e 65 74 77 6f 72 6b 20 76 69 72 74 | designed.to.support.network.virt |
| efba0 | 75 61 6c 69 7a 61 74 69 6f 6e 20 75 73 65 20 63 61 73 65 73 2c 20 77 68 65 72 65 20 74 75 6e 6e | ualization.use.cases,.where.tunn |
| efbc0 | 65 6c 73 20 61 72 65 20 74 79 70 69 63 61 6c 6c 79 20 65 73 74 61 62 6c 69 73 68 65 64 20 74 6f | els.are.typically.established.to |
| efbe0 | 20 61 63 74 20 61 73 20 61 20 62 61 63 6b 70 6c 61 6e 65 20 62 65 74 77 65 65 6e 20 74 68 65 20 | .act.as.a.backplane.between.the. |
| efc00 | 76 69 72 74 75 61 6c 20 73 77 69 74 63 68 65 73 20 72 65 73 69 64 69 6e 67 20 69 6e 20 68 79 70 | virtual.switches.residing.in.hyp |
| efc20 | 65 72 76 69 73 6f 72 73 2c 20 70 68 79 73 69 63 61 6c 20 73 77 69 74 63 68 65 73 2c 20 6f 72 20 | ervisors,.physical.switches,.or. |
| efc40 | 6d 69 64 64 6c 65 62 6f 78 65 73 20 6f 72 20 6f 74 68 65 72 20 61 70 70 6c 69 61 6e 63 65 73 2e | middleboxes.or.other.appliances. |
| efc60 | 20 41 6e 20 61 72 62 69 74 72 61 72 79 20 49 50 20 6e 65 74 77 6f 72 6b 20 63 61 6e 20 62 65 20 | .An.arbitrary.IP.network.can.be. |
| efc80 | 75 73 65 64 20 61 73 20 61 6e 20 75 6e 64 65 72 6c 61 79 20 61 6c 74 68 6f 75 67 68 20 43 6c 6f | used.as.an.underlay.although.Clo |
| efca0 | 73 20 6e 65 74 77 6f 72 6b 73 20 2d 20 41 20 74 65 63 68 6e 69 71 75 65 20 66 6f 72 20 63 6f 6d | s.networks.-.A.technique.for.com |
| efcc0 | 70 6f 73 69 6e 67 20 6e 65 74 77 6f 72 6b 20 66 61 62 72 69 63 73 20 6c 61 72 67 65 72 20 74 68 | posing.network.fabrics.larger.th |
| efce0 | 61 6e 20 61 20 73 69 6e 67 6c 65 20 73 77 69 74 63 68 20 77 68 69 6c 65 20 6d 61 69 6e 74 61 69 | an.a.single.switch.while.maintai |
| efd00 | 6e 69 6e 67 20 6e 6f 6e 2d 62 6c 6f 63 6b 69 6e 67 20 62 61 6e 64 77 69 64 74 68 20 61 63 72 6f | ning.non-blocking.bandwidth.acro |
| efd20 | 73 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 70 6f 69 6e 74 73 2e 20 45 43 4d 50 20 69 73 20 75 73 | ss.connection.points..ECMP.is.us |
| efd40 | 65 64 20 74 6f 20 64 69 76 69 64 65 20 74 72 61 66 66 69 63 20 61 63 72 6f 73 73 20 74 68 65 20 | ed.to.divide.traffic.across.the. |
| efd60 | 6d 75 6c 74 69 70 6c 65 20 6c 69 6e 6b 73 20 61 6e 64 20 73 77 69 74 63 68 65 73 20 74 68 61 74 | multiple.links.and.switches.that |
| efd80 | 20 63 6f 6e 73 74 69 74 75 74 65 20 74 68 65 20 66 61 62 72 69 63 2e 20 53 6f 6d 65 74 69 6d 65 | .constitute.the.fabric..Sometime |
| efda0 | 73 20 74 65 72 6d 65 64 20 22 6c 65 61 66 20 61 6e 64 20 73 70 69 6e 65 22 20 6f 72 20 22 66 61 | s.termed."leaf.and.spine".or."fa |
| efdc0 | 74 20 74 72 65 65 22 20 74 6f 70 6f 6c 6f 67 69 65 73 2e 00 47 45 4e 45 56 45 20 69 73 20 64 65 | t.tree".topologies..GENEVE.is.de |
| efde0 | 73 69 67 6e 65 64 20 74 6f 20 73 75 70 70 6f 72 74 20 6e 65 74 77 6f 72 6b 20 76 69 72 74 75 61 | signed.to.support.network.virtua |
| efe00 | 6c 69 7a 61 74 69 6f 6e 20 75 73 65 20 63 61 73 65 73 2c 20 77 68 65 72 65 20 74 75 6e 6e 65 6c | lization.use.cases,.where.tunnel |
| efe20 | 73 20 61 72 65 20 74 79 70 69 63 61 6c 6c 79 20 65 73 74 61 62 6c 69 73 68 65 64 20 74 6f 20 61 | s.are.typically.established.to.a |
| efe40 | 63 74 20 61 73 20 61 20 62 61 63 6b 70 6c 61 6e 65 20 62 65 74 77 65 65 6e 20 74 68 65 20 76 69 | ct.as.a.backplane.between.the.vi |
| efe60 | 72 74 75 61 6c 20 73 77 69 74 63 68 65 73 20 72 65 73 69 64 69 6e 67 20 69 6e 20 68 79 70 65 72 | rtual.switches.residing.in.hyper |
| efe80 | 76 69 73 6f 72 73 2c 20 70 68 79 73 69 63 61 6c 20 73 77 69 74 63 68 65 73 2c 20 6f 72 20 6d 69 | visors,.physical.switches,.or.mi |
| efea0 | 64 64 6c 65 62 6f 78 65 73 20 6f 72 20 6f 74 68 65 72 20 61 70 70 6c 69 61 6e 63 65 73 2e 20 41 | ddleboxes.or.other.appliances..A |
| efec0 | 6e 20 61 72 62 69 74 72 61 72 79 20 49 50 20 6e 65 74 77 6f 72 6b 20 63 61 6e 20 62 65 20 75 73 | n.arbitrary.IP.network.can.be.us |
| efee0 | 65 64 20 61 73 20 61 6e 20 75 6e 64 65 72 6c 61 79 20 74 68 72 6f 75 67 68 20 43 6c 6f 73 20 6e | ed.as.an.underlay.through.Clos.n |
| eff00 | 65 74 77 6f 72 6b 73 20 2d 20 41 20 74 65 63 68 6e 69 71 75 65 20 66 6f 72 20 63 6f 6d 70 6f 73 | etworks.-.A.technique.for.compos |
| eff20 | 69 6e 67 20 6e 65 74 77 6f 72 6b 20 66 61 62 72 69 63 73 20 6c 61 72 67 65 72 20 74 68 61 6e 20 | ing.network.fabrics.larger.than. |
| eff40 | 61 20 73 69 6e 67 6c 65 20 73 77 69 74 63 68 20 77 68 69 6c 65 20 6d 61 69 6e 74 61 69 6e 69 6e | a.single.switch.while.maintainin |
| eff60 | 67 20 6e 6f 6e 2d 62 6c 6f 63 6b 69 6e 67 20 62 61 6e 64 77 69 64 74 68 20 61 63 72 6f 73 73 20 | g.non-blocking.bandwidth.across. |
| eff80 | 63 6f 6e 6e 65 63 74 69 6f 6e 20 70 6f 69 6e 74 73 2e 20 45 43 4d 50 20 69 73 20 75 73 65 64 20 | connection.points..ECMP.is.used. |
| effa0 | 74 6f 20 64 69 76 69 64 65 20 74 72 61 66 66 69 63 20 61 63 72 6f 73 73 20 74 68 65 20 6d 75 6c | to.divide.traffic.across.the.mul |
| effc0 | 74 69 70 6c 65 20 6c 69 6e 6b 73 20 61 6e 64 20 73 77 69 74 63 68 65 73 20 74 68 61 74 20 63 6f | tiple.links.and.switches.that.co |
| effe0 | 6e 73 74 69 74 75 74 65 20 74 68 65 20 66 61 62 72 69 63 2e 20 53 6f 6d 65 74 69 6d 65 73 20 74 | nstitute.the.fabric..Sometimes.t |
| f0000 | 65 72 6d 65 64 20 22 6c 65 61 66 20 61 6e 64 20 73 70 69 6e 65 22 20 6f 72 20 22 66 61 74 20 74 | ermed."leaf.and.spine".or."fat.t |
| f0020 | 72 65 65 22 20 74 6f 70 6f 6c 6f 67 69 65 73 2e 00 47 45 4e 45 56 45 20 6f 70 74 69 6f 6e 73 00 | ree".topologies..GENEVE.options. |
| f0040 | 47 52 45 20 69 73 20 61 20 77 65 6c 6c 20 64 65 66 69 6e 65 64 20 73 74 61 6e 64 61 72 64 20 74 | GRE.is.a.well.defined.standard.t |
| f0060 | 68 61 74 20 69 73 20 63 6f 6d 6d 6f 6e 20 69 6e 20 6d 6f 73 74 20 6e 65 74 77 6f 72 6b 73 2e 20 | hat.is.common.in.most.networks.. |
| f0080 | 57 68 69 6c 65 20 6e 6f 74 20 69 6e 68 65 72 65 6e 74 6c 79 20 64 69 66 66 69 63 75 6c 74 20 74 | While.not.inherently.difficult.t |
| f00a0 | 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 72 65 20 61 72 65 20 61 20 63 6f 75 70 6c 65 20 6f | o.configure.there.are.a.couple.o |
| f00c0 | 66 20 74 68 69 6e 67 73 20 74 6f 20 6b 65 65 70 20 69 6e 20 6d 69 6e 64 20 74 6f 20 6d 61 6b 65 | f.things.to.keep.in.mind.to.make |
| f00e0 | 20 73 75 72 65 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 65 72 66 6f 72 6d 73 | .sure.the.configuration.performs |
| f0100 | 20 61 73 20 65 78 70 65 63 74 65 64 2e 20 41 20 63 6f 6d 6d 6f 6e 20 63 61 75 73 65 20 66 6f 72 | .as.expected..A.common.cause.for |
| f0120 | 20 47 52 45 20 74 75 6e 6e 65 6c 73 20 74 6f 20 66 61 69 6c 20 74 6f 20 63 6f 6d 65 20 75 70 20 | .GRE.tunnels.to.fail.to.come.up. |
| f0140 | 63 6f 72 72 65 63 74 6c 79 20 69 6e 63 6c 75 64 65 20 41 43 4c 20 6f 72 20 46 69 72 65 77 61 6c | correctly.include.ACL.or.Firewal |
| f0160 | 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 74 68 61 74 20 61 72 65 20 64 69 73 63 61 72 | l.configurations.that.are.discar |
| f0180 | 64 69 6e 67 20 49 50 20 70 72 6f 74 6f 63 6f 6c 20 34 37 20 6f 72 20 62 6c 6f 63 6b 69 6e 67 20 | ding.IP.protocol.47.or.blocking. |
| f01a0 | 79 6f 75 72 20 73 6f 75 72 63 65 2f 64 65 73 74 69 6e 61 74 69 6f 6e 20 74 72 61 66 66 69 63 2e | your.source/destination.traffic. |
| f01c0 | 00 47 52 45 20 69 73 20 61 6c 73 6f 20 74 68 65 20 6f 6e 6c 79 20 63 6c 61 73 73 69 63 20 70 72 | .GRE.is.also.the.only.classic.pr |
| f01e0 | 6f 74 6f 63 6f 6c 20 74 68 61 74 20 61 6c 6c 6f 77 73 20 63 72 65 61 74 69 6e 67 20 6d 75 6c 74 | otocol.that.allows.creating.mult |
| f0200 | 69 70 6c 65 20 74 75 6e 6e 65 6c 73 20 77 69 74 68 20 74 68 65 20 73 61 6d 65 20 73 6f 75 72 63 | iple.tunnels.with.the.same.sourc |
| f0220 | 65 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 64 75 65 20 74 6f 20 69 74 73 20 73 75 70 | e.and.destination.due.to.its.sup |
| f0240 | 70 6f 72 74 20 66 6f 72 20 74 75 6e 6e 65 6c 20 6b 65 79 73 2e 20 44 65 73 70 69 74 65 20 69 74 | port.for.tunnel.keys..Despite.it |
| f0260 | 73 20 6e 61 6d 65 2c 20 74 68 69 73 20 66 65 61 74 75 72 65 20 68 61 73 20 6e 6f 74 68 69 6e 67 | s.name,.this.feature.has.nothing |
| f0280 | 20 74 6f 20 64 6f 20 77 69 74 68 20 73 65 63 75 72 69 74 79 3a 20 69 74 27 73 20 73 69 6d 70 6c | .to.do.with.security:.it's.simpl |
| f02a0 | 79 20 61 6e 20 69 64 65 6e 74 69 66 69 65 72 20 74 68 61 74 20 61 6c 6c 6f 77 73 20 72 6f 75 74 | y.an.identifier.that.allows.rout |
| f02c0 | 65 72 73 20 74 6f 20 74 65 6c 6c 20 6f 6e 65 20 74 75 6e 6e 65 6c 20 66 72 6f 6d 20 61 6e 6f 74 | ers.to.tell.one.tunnel.from.anot |
| f02e0 | 68 65 72 2e 00 47 52 45 20 69 73 20 6f 66 74 65 6e 20 73 65 65 6e 20 61 73 20 61 20 6f 6e 65 20 | her..GRE.is.often.seen.as.a.one. |
| f0300 | 73 69 7a 65 20 66 69 74 73 20 61 6c 6c 20 73 6f 6c 75 74 69 6f 6e 20 77 68 65 6e 20 69 74 20 63 | size.fits.all.solution.when.it.c |
| f0320 | 6f 6d 65 73 20 74 6f 20 63 6c 61 73 73 69 63 20 49 50 20 74 75 6e 6e 65 6c 69 6e 67 20 70 72 6f | omes.to.classic.IP.tunneling.pro |
| f0340 | 74 6f 63 6f 6c 73 2c 20 61 6e 64 20 66 6f 72 20 61 20 67 6f 6f 64 20 72 65 61 73 6f 6e 2e 20 48 | tocols,.and.for.a.good.reason..H |
| f0360 | 6f 77 65 76 65 72 2c 20 74 68 65 72 65 20 61 72 65 20 6d 6f 72 65 20 73 70 65 63 69 61 6c 69 7a | owever,.there.are.more.specializ |
| f0380 | 65 64 20 6f 70 74 69 6f 6e 73 2c 20 61 6e 64 20 6d 61 6e 79 20 6f 66 20 74 68 65 6d 20 61 72 65 | ed.options,.and.many.of.them.are |
| f03a0 | 20 73 75 70 70 6f 72 74 65 64 20 62 79 20 56 79 4f 53 2e 20 54 68 65 72 65 20 61 72 65 20 61 6c | .supported.by.VyOS..There.are.al |
| f03c0 | 73 6f 20 72 61 74 68 65 72 20 6f 62 73 63 75 72 65 20 47 52 45 20 6f 70 74 69 6f 6e 73 20 74 68 | so.rather.obscure.GRE.options.th |
| f03e0 | 61 74 20 63 61 6e 20 62 65 20 75 73 65 66 75 6c 2e 00 47 52 45 2f 49 50 49 50 2f 53 49 54 20 61 | at.can.be.useful..GRE/IPIP/SIT.a |
| f0400 | 6e 64 20 49 50 73 65 63 20 61 72 65 20 77 69 64 65 6c 79 20 61 63 63 65 70 74 65 64 20 73 74 61 | nd.IPsec.are.widely.accepted.sta |
| f0420 | 6e 64 61 72 64 73 2c 20 77 68 69 63 68 20 6d 61 6b 65 20 74 68 69 73 20 73 63 68 65 6d 65 20 65 | ndards,.which.make.this.scheme.e |
| f0440 | 61 73 79 20 74 6f 20 69 6d 70 6c 65 6d 65 6e 74 20 62 65 74 77 65 65 6e 20 56 79 4f 53 20 61 6e | asy.to.implement.between.VyOS.an |
| f0460 | 64 20 76 69 72 74 75 61 6c 6c 79 20 61 6e 79 20 6f 74 68 65 72 20 72 6f 75 74 65 72 2e 00 47 52 | d.virtually.any.other.router..GR |
| f0480 | 45 54 41 50 00 47 65 6e 65 61 72 61 74 65 20 61 20 6e 65 77 20 4f 70 65 6e 56 50 4e 20 73 68 61 | ETAP.Genearate.a.new.OpenVPN.sha |
| f04a0 | 72 65 64 20 73 65 63 72 65 74 2e 20 54 68 65 20 67 65 6e 65 72 61 74 65 64 20 73 65 63 72 65 64 | red.secret..The.generated.secred |
| f04c0 | 20 69 73 20 74 68 65 20 6f 75 74 70 75 74 20 74 6f 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 00 47 | .is.the.output.to.the.console..G |
| f04e0 | 65 6e 65 61 72 61 74 65 20 61 20 6e 65 77 20 4f 70 65 6e 56 50 4e 20 73 68 61 72 65 64 20 73 65 | enearate.a.new.OpenVPN.shared.se |
| f0500 | 63 72 65 74 2e 20 54 68 65 20 67 65 6e 65 72 61 74 65 64 20 73 65 63 72 65 74 20 69 73 20 74 68 | cret..The.generated.secret.is.th |
| f0520 | 65 20 6f 75 74 70 75 74 20 74 6f 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 00 47 65 6e 65 72 61 6c | e.output.to.the.console..General |
| f0540 | 00 47 65 6e 65 72 61 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 47 65 6e 65 72 61 6c 20 63 | .General.Configuration.General.c |
| f0560 | 6f 6d 6d 61 6e 64 73 20 66 6f 72 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 | ommands.for.firewall.configurati |
| f0580 | 6f 6e 2c 20 63 6f 75 6e 74 65 72 20 61 6e 64 20 73 74 61 74 69 73 63 69 74 73 3a 00 47 65 6e 65 | on,.counter.and.statiscits:.Gene |
| f05a0 | 72 61 6c 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 72 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 | ral.commands.for.firewall.config |
| f05c0 | 75 72 61 74 69 6f 6e 2c 20 63 6f 75 6e 74 65 72 20 61 6e 64 20 73 74 61 74 69 73 74 69 63 73 3a | uration,.counter.and.statistics: |
| f05e0 | 00 47 65 6e 65 72 61 6c 20 65 78 61 6d 70 6c 65 00 47 65 6e 65 72 61 74 65 20 3a 61 62 62 72 3a | .General.example.Generate.:abbr: |
| f0600 | 60 4d 4b 41 20 28 4d 41 43 73 65 63 20 4b 65 79 20 41 67 72 65 65 6d 65 6e 74 20 70 72 6f 74 6f | `MKA.(MACsec.Key.Agreement.proto |
| f0620 | 63 6f 6c 29 60 20 43 41 4b 20 6b 65 79 20 31 32 38 20 6f 72 20 32 35 36 20 62 69 74 73 2e 00 47 | col)`.CAK.key.128.or.256.bits..G |
| f0640 | 65 6e 65 72 61 74 65 20 3a 61 62 62 72 3a 60 4d 4b 41 20 28 4d 41 43 73 65 63 20 4b 65 79 20 41 | enerate.:abbr:`MKA.(MACsec.Key.A |
| f0660 | 67 72 65 65 6d 65 6e 74 20 70 72 6f 74 6f 63 6f 6c 29 60 20 43 41 4b 20 6b 65 79 2e 00 47 65 6e | greement.protocol)`.CAK.key..Gen |
| f0680 | 65 72 61 74 65 20 4b 65 79 70 61 69 72 00 47 65 6e 65 72 61 74 65 20 61 20 57 69 72 65 47 75 61 | erate.Keypair.Generate.a.WireGua |
| f06a0 | 72 64 20 70 72 65 2d 73 68 61 72 65 64 20 73 65 63 72 65 74 20 75 73 65 64 20 66 6f 72 20 70 65 | rd.pre-shared.secret.used.for.pe |
| f06c0 | 65 72 73 20 74 6f 20 63 6f 6d 6d 75 6e 69 63 61 74 65 2e 00 47 65 6e 65 72 61 74 65 20 61 20 6e | ers.to.communicate..Generate.a.n |
| f06e0 | 65 77 20 4f 70 65 6e 56 50 4e 20 73 68 61 72 65 64 20 73 65 63 72 65 74 2e 20 54 68 65 20 67 65 | ew.OpenVPN.shared.secret..The.ge |
| f0700 | 6e 65 72 61 74 65 64 20 73 65 63 72 65 74 20 69 73 20 74 68 65 20 6f 75 74 70 75 74 20 74 6f 20 | nerated.secret.is.the.output.to. |
| f0720 | 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 00 47 65 6e 65 72 61 74 65 20 61 20 6e 65 77 20 57 69 72 65 | the.console..Generate.a.new.Wire |
| f0740 | 47 75 61 72 64 20 70 75 62 6c 69 63 2f 70 72 69 76 61 74 65 20 6b 65 79 20 70 6f 72 74 69 6f 6e | Guard.public/private.key.portion |
| f0760 | 20 61 6e 64 20 6f 75 74 70 75 74 20 74 68 65 20 72 65 73 75 6c 74 20 74 6f 20 74 68 65 20 63 6f | .and.output.the.result.to.the.co |
| f0780 | 6e 73 6f 6c 65 2e 00 47 65 6e 65 72 61 74 65 20 61 20 6e 65 77 20 73 65 74 20 6f 66 20 3a 61 62 | nsole..Generate.a.new.set.of.:ab |
| f07a0 | 62 72 3a 60 44 48 20 28 44 69 66 66 69 65 2d 48 65 6c 6c 6d 61 6e 29 60 20 70 61 72 61 6d 65 74 | br:`DH.(Diffie-Hellman)`.paramet |
| f07c0 | 65 72 73 2e 20 54 68 65 20 6b 65 79 20 73 69 7a 65 20 69 73 20 72 65 71 75 65 73 74 65 64 20 62 | ers..The.key.size.is.requested.b |
| f07e0 | 79 20 74 68 65 20 43 4c 49 20 61 6e 64 20 64 65 66 61 75 6c 74 73 20 74 6f 20 32 30 34 38 20 62 | y.the.CLI.and.defaults.to.2048.b |
| f0800 | 69 74 2e 00 47 65 6e 65 72 61 74 65 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d | it..Generate.the.configuration.m |
| f0820 | 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 20 74 6f 20 61 64 64 20 61 20 70 75 62 6c 69 63 20 6b 65 79 | ode.commands.to.add.a.public.key |
| f0840 | 20 66 6f 72 20 3a 72 65 66 3a 60 73 73 68 5f 6b 65 79 5f 62 61 73 65 64 5f 61 75 74 68 65 6e 74 | .for.:ref:`ssh_key_based_authent |
| f0860 | 69 63 61 74 69 6f 6e 60 2e 20 60 60 3c 6c 6f 63 61 74 69 6f 6e 3e 60 60 20 63 61 6e 20 62 65 20 | ication`..``<location>``.can.be. |
| f0880 | 61 20 6c 6f 63 61 6c 20 70 61 74 68 20 6f 72 20 61 20 55 52 4c 20 70 6f 69 6e 74 69 6e 67 20 61 | a.local.path.or.a.URL.pointing.a |
| f08a0 | 74 20 61 20 72 65 6d 6f 74 65 20 66 69 6c 65 2e 00 47 65 6e 65 72 61 74 65 73 20 61 20 6b 65 79 | t.a.remote.file..Generates.a.key |
| f08c0 | 70 61 69 72 2c 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 70 75 62 6c 69 63 20 | pair,.which.includes.the.public. |
| f08e0 | 61 6e 64 20 70 72 69 76 61 74 65 20 70 61 72 74 73 2c 20 61 6e 64 20 62 75 69 6c 64 20 61 20 63 | and.private.parts,.and.build.a.c |
| f0900 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 69 6e 73 74 61 6c 6c 20 | onfiguration.command.to.install. |
| f0920 | 74 68 69 73 20 6b 65 79 20 74 6f 20 60 60 69 6e 74 65 72 66 61 63 65 60 60 2e 00 47 65 6e 65 72 | this.key.to.``interface``..Gener |
| f0940 | 61 74 65 73 20 61 20 6b 65 79 70 61 69 72 2c 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 73 20 74 | ates.a.keypair,.which.includes.t |
| f0960 | 68 65 20 70 75 62 6c 69 63 20 61 6e 64 20 70 72 69 76 61 74 65 20 70 61 72 74 73 2c 20 61 6e 64 | he.public.and.private.parts,.and |
| f0980 | 20 62 75 69 6c 64 73 20 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 20 | .builds.a.configuration.command. |
| f09a0 | 74 6f 20 69 6e 73 74 61 6c 6c 20 74 68 69 73 20 6b 65 79 20 74 6f 20 60 60 69 6e 74 65 72 66 61 | to.install.this.key.to.``interfa |
| f09c0 | 63 65 60 60 2e 00 47 65 6e 65 72 61 74 65 73 20 74 68 65 20 6b 65 79 70 61 69 72 2c 20 77 68 69 | ce``..Generates.the.keypair,.whi |
| f09e0 | 63 68 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 70 75 62 6c 69 63 20 61 6e 64 20 70 72 69 76 61 | ch.includes.the.public.and.priva |
| f0a00 | 74 65 20 70 61 72 74 73 2e 20 54 68 65 20 6b 65 79 20 69 73 20 6e 6f 74 20 73 74 6f 72 65 64 20 | te.parts..The.key.is.not.stored. |
| f0a20 | 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 20 2d 20 6f 6e 6c 79 20 61 20 6b 65 79 70 61 69 72 20 69 | on.the.system.-.only.a.keypair.i |
| f0a40 | 73 20 67 65 6e 65 72 61 74 65 64 2e 00 47 65 6e 65 72 69 63 20 52 6f 75 74 69 6e 67 20 45 6e 63 | s.generated..Generic.Routing.Enc |
| f0a60 | 61 70 73 75 6c 61 74 69 6f 6e 20 28 47 52 45 29 00 47 65 6e 65 76 65 20 48 65 61 64 65 72 3a 00 | apsulation.(GRE).Geneve.Header:. |
| f0a80 | 47 65 74 20 61 20 6c 69 73 74 20 6f 66 20 61 6c 6c 20 77 69 72 65 67 75 61 72 64 20 69 6e 74 65 | Get.a.list.of.all.wireguard.inte |
| f0aa0 | 72 66 61 63 65 73 00 47 65 74 20 61 6e 20 6f 76 65 72 76 69 65 77 20 6f 76 65 72 20 74 68 65 20 | rfaces.Get.an.overview.over.the. |
| f0ac0 | 65 6e 63 72 79 70 74 69 6f 6e 20 63 6f 75 6e 74 65 72 73 2e 00 47 65 74 20 64 65 74 61 69 6c 65 | encryption.counters..Get.detaile |
| f0ae0 | 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 4c 4c 44 50 20 6e 65 69 67 68 62 6f | d.information.about.LLDP.neighbo |
| f0b00 | 72 73 2e 00 47 65 74 20 74 68 65 20 44 48 43 50 76 36 2d 50 44 20 70 72 65 66 69 78 65 73 20 66 | rs..Get.the.DHCPv6-PD.prefixes.f |
| f0b20 | 72 6f 6d 20 62 6f 74 68 20 72 6f 75 74 65 72 73 3a 00 47 65 74 74 69 6e 67 20 73 74 61 72 74 65 | rom.both.routers:.Getting.starte |
| f0b40 | 64 00 47 69 76 65 6e 20 74 68 65 20 66 61 63 74 20 74 68 61 74 20 6f 70 65 6e 20 44 4e 53 20 72 | d.Given.the.fact.that.open.DNS.r |
| f0b60 | 65 63 75 72 73 6f 72 73 20 63 6f 75 6c 64 20 62 65 20 75 73 65 64 20 6f 6e 20 44 44 6f 53 20 61 | ecursors.could.be.used.on.DDoS.a |
| f0b80 | 6d 70 6c 69 66 69 63 61 74 69 6f 6e 20 61 74 74 61 63 6b 73 2c 20 79 6f 75 20 6d 75 73 74 20 63 | mplification.attacks,.you.must.c |
| f0ba0 | 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6e 65 74 77 6f 72 6b 73 20 77 68 69 63 68 20 61 72 65 20 | onfigure.the.networks.which.are. |
| f0bc0 | 61 6c 6c 6f 77 65 64 20 74 6f 20 75 73 65 20 74 68 69 73 20 72 65 63 75 72 73 6f 72 2e 20 41 20 | allowed.to.use.this.recursor..A. |
| f0be0 | 6e 65 74 77 6f 72 6b 20 6f 66 20 60 60 30 2e 30 2e 30 2e 30 2f 30 60 60 20 6f 72 20 60 60 3a 3a | network.of.``0.0.0.0/0``.or.``:: |
| f0c00 | 2f 30 60 60 20 77 6f 75 6c 64 20 61 6c 6c 6f 77 20 61 6c 6c 20 49 50 76 34 20 61 6e 64 20 49 50 | /0``.would.allow.all.IPv4.and.IP |
| f0c20 | 76 36 20 6e 65 74 77 6f 72 6b 73 20 74 6f 20 71 75 65 72 79 20 74 68 69 73 20 73 65 72 76 65 72 | v6.networks.to.query.this.server |
| f0c40 | 2e 20 54 68 69 73 20 69 73 20 67 65 6e 65 72 61 6c 6c 79 20 61 20 62 61 64 20 69 64 65 61 2e 00 | ..This.is.generally.a.bad.idea.. |
| f0c60 | 47 69 76 65 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 20 77 65 20 68 | Given.the.following.example.we.h |
| f0c80 | 61 76 65 20 6f 6e 65 20 56 79 4f 53 20 72 6f 75 74 65 72 20 61 63 74 69 6e 67 20 61 73 20 4f 70 | ave.one.VyOS.router.acting.as.Op |
| f0ca0 | 65 6e 56 50 4e 20 73 65 72 76 65 72 20 61 6e 64 20 61 6e 6f 74 68 65 72 20 56 79 4f 53 20 72 6f | enVPN.server.and.another.VyOS.ro |
| f0cc0 | 75 74 65 72 20 61 63 74 69 6e 67 20 61 73 20 4f 70 65 6e 56 50 4e 20 63 6c 69 65 6e 74 2e 20 54 | uter.acting.as.OpenVPN.client..T |
| f0ce0 | 68 65 20 73 65 72 76 65 72 20 61 6c 73 6f 20 70 75 73 68 65 73 20 61 20 73 74 61 74 69 63 20 63 | he.server.also.pushes.a.static.c |
| f0d00 | 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 74 68 65 20 4f 70 65 6e 56 50 4e 20 | lient.IP.address.to.the.OpenVPN. |
| f0d20 | 63 6c 69 65 6e 74 2e 20 52 65 6d 65 6d 62 65 72 2c 20 63 6c 69 65 6e 74 73 20 61 72 65 20 69 64 | client..Remember,.clients.are.id |
| f0d40 | 65 6e 74 69 66 69 65 64 20 75 73 69 6e 67 20 74 68 65 69 72 20 43 4e 20 61 74 74 72 69 62 75 74 | entified.using.their.CN.attribut |
| f0d60 | 65 20 69 6e 20 74 68 65 20 53 53 4c 20 63 65 72 74 69 66 69 63 61 74 65 2e 00 47 69 76 65 6e 20 | e.in.the.SSL.certificate..Given. |
| f0d80 | 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 20 77 65 20 68 61 76 65 20 6f 6e | the.following.example.we.have.on |
| f0da0 | 65 20 56 79 4f 53 20 72 6f 75 74 65 72 20 61 63 74 69 6e 67 20 61 73 20 61 6e 20 4f 70 65 6e 56 | e.VyOS.router.acting.as.an.OpenV |
| f0dc0 | 50 4e 20 73 65 72 76 65 72 20 61 6e 64 20 61 6e 6f 74 68 65 72 20 56 79 4f 53 20 72 6f 75 74 65 | PN.server.and.another.VyOS.route |
| f0de0 | 72 20 61 63 74 69 6e 67 20 61 73 20 61 6e 20 4f 70 65 6e 56 50 4e 20 63 6c 69 65 6e 74 2e 20 54 | r.acting.as.an.OpenVPN.client..T |
| f0e00 | 68 65 20 73 65 72 76 65 72 20 61 6c 73 6f 20 70 75 73 68 65 73 20 61 20 73 74 61 74 69 63 20 63 | he.server.also.pushes.a.static.c |
| f0e20 | 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 74 68 65 20 4f 70 65 6e 56 50 4e 20 | lient.IP.address.to.the.OpenVPN. |
| f0e40 | 63 6c 69 65 6e 74 2e 20 52 65 6d 65 6d 62 65 72 2c 20 63 6c 69 65 6e 74 73 20 61 72 65 20 69 64 | client..Remember,.clients.are.id |
| f0e60 | 65 6e 74 69 66 69 65 64 20 75 73 69 6e 67 20 74 68 65 69 72 20 43 4e 20 61 74 74 72 69 62 75 74 | entified.using.their.CN.attribut |
| f0e80 | 65 20 69 6e 20 74 68 65 20 53 53 4c 20 63 65 72 74 69 66 69 63 61 74 65 2e 00 47 6c 6f 61 62 61 | e.in.the.SSL.certificate..Gloaba |
| f0ea0 | 6c 00 47 6c 6f 62 61 6c 00 47 6c 6f 62 61 6c 20 41 64 76 61 6e 63 65 64 20 6f 70 74 69 6f 6e 73 | l.Global.Global.Advanced.options |
| f0ec0 | 00 47 6c 6f 62 61 6c 20 4f 70 74 69 6f 6e 73 00 47 6c 6f 62 61 6c 20 4f 70 74 69 6f 6e 73 20 46 | .Global.Options.Global.Options.F |
| f0ee0 | 69 72 65 77 61 6c 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 47 6c 6f 62 61 6c 20 6f 70 74 | irewall.Configuration.Global.opt |
| f0f00 | 69 6f 6e 73 00 47 6c 6f 62 61 6c 20 70 61 72 61 6d 65 74 65 72 73 00 47 6c 6f 62 61 6c 20 73 65 | ions.Global.parameters.Global.se |
| f0f20 | 74 74 69 6e 67 73 00 47 72 61 63 65 66 75 6c 20 52 65 73 74 61 72 74 00 47 72 61 70 68 51 4c 00 | ttings.Graceful.Restart.GraphQL. |
| f0f40 | 47 72 61 74 75 69 74 6f 75 73 20 41 52 50 00 47 72 6f 75 70 73 00 47 72 6f 75 70 73 20 6e 65 65 | Gratuitous.ARP.Groups.Groups.nee |
| f0f60 | 64 20 74 6f 20 68 61 76 65 20 75 6e 69 71 75 65 20 6e 61 6d 65 73 2e 20 45 76 65 6e 20 74 68 6f | d.to.have.unique.names..Even.tho |
| f0f80 | 75 67 68 20 73 6f 6d 65 20 63 6f 6e 74 61 69 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 65 73 20 | ugh.some.contain.IPv4.addresses. |
| f0fa0 | 61 6e 64 20 6f 74 68 65 72 73 20 63 6f 6e 74 61 69 6e 20 49 50 76 36 20 61 64 64 72 65 73 73 65 | and.others.contain.IPv6.addresse |
| f0fc0 | 73 2c 20 74 68 65 79 20 73 74 69 6c 6c 20 6e 65 65 64 20 74 6f 20 68 61 76 65 20 75 6e 69 71 75 | s,.they.still.need.to.have.uniqu |
| f0fe0 | 65 20 6e 61 6d 65 73 2c 20 73 6f 20 79 6f 75 20 6d 61 79 20 77 61 6e 74 20 74 6f 20 61 70 70 65 | e.names,.so.you.may.want.to.appe |
| f1000 | 6e 64 20 22 2d 76 34 22 20 6f 72 20 22 2d 76 36 22 20 74 6f 20 79 6f 75 72 20 67 72 6f 75 70 20 | nd."-v4".or."-v6".to.your.group. |
| f1020 | 6e 61 6d 65 73 2e 00 48 45 20 28 48 69 67 68 20 45 66 66 69 63 69 65 6e 63 79 29 20 63 61 70 61 | names..HE.(High.Efficiency).capa |
| f1040 | 62 69 6c 69 74 69 65 73 20 28 38 30 32 2e 31 31 61 78 29 00 48 45 20 6f 70 65 72 61 74 69 6e 67 | bilities.(802.11ax).HE.operating |
| f1060 | 20 63 68 61 6e 6e 65 6c 20 63 65 6e 74 65 72 20 66 72 65 71 75 65 6e 63 79 20 2d 20 63 65 6e 74 | .channel.center.frequency.-.cent |
| f1080 | 65 72 20 66 72 65 71 20 31 20 28 66 6f 72 20 75 73 65 20 77 69 74 68 20 38 30 2c 20 38 30 2b 38 | er.freq.1.(for.use.with.80,.80+8 |
| f10a0 | 30 20 61 6e 64 20 31 36 30 20 6d 6f 64 65 73 29 00 48 45 20 6f 70 65 72 61 74 69 6e 67 20 63 68 | 0.and.160.modes).HE.operating.ch |
| f10c0 | 61 6e 6e 65 6c 20 63 65 6e 74 65 72 20 66 72 65 71 75 65 6e 63 79 20 2d 20 63 65 6e 74 65 72 20 | annel.center.frequency.-.center. |
| f10e0 | 66 72 65 71 20 32 20 28 66 6f 72 20 75 73 65 20 77 69 74 68 20 74 68 65 20 38 30 2b 38 30 20 6d | freq.2.(for.use.with.the.80+80.m |
| f1100 | 6f 64 65 29 00 48 50 20 4c 54 34 31 32 30 20 53 6e 61 70 64 72 61 67 6f 6e 20 58 35 20 4c 54 45 | ode).HP.LT4120.Snapdragon.X5.LTE |
| f1120 | 00 48 51 27 73 20 72 6f 75 74 65 72 20 72 65 71 75 69 72 65 73 20 74 68 65 20 66 6f 6c 6c 6f 77 | .HQ's.router.requires.the.follow |
| f1140 | 69 6e 67 20 73 74 65 70 73 20 74 6f 20 67 65 6e 65 72 61 74 65 20 63 72 79 70 74 6f 20 6d 61 74 | ing.steps.to.generate.crypto.mat |
| f1160 | 65 72 69 61 6c 73 20 66 6f 72 20 74 68 65 20 42 72 61 6e 63 68 20 31 3a 00 48 54 20 28 48 69 67 | erials.for.the.Branch.1:.HT.(Hig |
| f1180 | 68 20 54 68 72 6f 75 67 68 70 75 74 29 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 28 38 30 32 2e | h.Throughput).capabilities.(802. |
| f11a0 | 31 31 6e 29 00 48 54 54 50 20 41 50 49 00 48 54 54 50 20 62 61 73 65 64 20 73 65 72 76 69 63 65 | 11n).HTTP.API.HTTP.based.service |
| f11c0 | 73 00 48 54 54 50 20 62 61 73 69 63 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 75 73 65 72 | s.HTTP.basic.authentication.user |
| f11e0 | 6e 61 6d 65 00 48 54 54 50 20 62 61 73 69 63 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 00 | name.HTTP.basic.authentication.. |
| f1200 | 48 54 54 50 20 63 68 65 63 6b 73 00 48 54 54 50 20 63 6c 69 65 6e 74 00 48 54 54 50 20 68 65 61 | HTTP.checks.HTTP.client.HTTP.hea |
| f1220 | 6c 74 68 20 63 68 65 63 6b 00 48 54 54 50 2d 41 50 49 00 48 61 69 72 70 69 6e 20 4e 41 54 2f 4e | lth.check.HTTP-API.Hairpin.NAT/N |
| f1240 | 41 54 20 52 65 66 6c 65 63 74 69 6f 6e 00 48 61 6e 64 20 6f 75 74 20 70 72 65 66 69 78 65 73 20 | AT.Reflection.Hand.out.prefixes. |
| f1260 | 6f 66 20 73 69 7a 65 20 60 3c 6c 65 6e 67 74 68 3e 60 20 69 6e 20 62 69 74 73 20 66 72 6f 6d 20 | of.size.`<length>`.in.bits.from. |
| f1280 | 60 3c 70 64 2d 70 72 65 66 69 78 3e 60 20 74 6f 20 63 6c 69 65 6e 74 73 20 69 6e 20 73 75 62 6e | `<pd-prefix>`.to.clients.in.subn |
| f12a0 | 65 74 20 60 3c 70 72 65 66 69 78 3e 60 20 77 68 65 6e 20 74 68 65 20 72 65 71 75 65 73 74 20 66 | et.`<prefix>`.when.the.request.f |
| f12c0 | 6f 72 20 70 72 65 66 69 78 20 64 65 6c 65 67 61 74 69 6f 6e 2e 00 48 61 6e 64 20 6f 75 74 20 70 | or.prefix.delegation..Hand.out.p |
| f12e0 | 72 65 66 69 78 65 73 20 6f 66 20 73 69 7a 65 20 60 3c 6c 65 6e 67 74 68 3e 60 20 74 6f 20 63 6c | refixes.of.size.`<length>`.to.cl |
| f1300 | 69 65 6e 74 73 20 69 6e 20 73 75 62 6e 65 74 20 60 3c 70 72 65 66 69 78 3e 60 20 77 68 65 6e 20 | ients.in.subnet.`<prefix>`.when. |
| f1320 | 74 68 65 79 20 72 65 71 75 65 73 74 20 66 6f 72 20 70 72 65 66 69 78 20 64 65 6c 65 67 61 74 69 | they.request.for.prefix.delegati |
| f1340 | 6f 6e 2e 00 48 61 6e 64 6c 69 6e 67 20 61 6e 64 20 6d 6f 6e 69 74 6f 72 69 6e 67 00 48 61 70 72 | on..Handling.and.monitoring.Hapr |
| f1360 | 6f 78 79 00 48 61 70 72 6f 78 79 20 69 73 20 61 20 62 61 6c 61 6e 63 65 72 20 61 6e 64 20 70 72 | oxy.Haproxy.is.a.balancer.and.pr |
| f1380 | 6f 78 79 20 73 65 72 76 65 72 20 74 68 61 74 20 70 72 6f 76 69 64 65 73 20 68 69 67 68 2d 61 76 | oxy.server.that.provides.high-av |
| f13a0 | 61 69 6c 61 62 69 6c 69 74 79 2c 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 61 6e 64 20 70 | ailability,.load.balancing.and.p |
| f13c0 | 72 6f 78 79 69 6e 67 20 66 6f 72 20 54 43 50 20 28 6c 65 76 65 6c 20 34 29 20 61 6e 64 20 48 54 | roxying.for.TCP.(level.4).and.HT |
| f13e0 | 54 50 2d 62 61 73 65 64 20 28 6c 65 76 65 6c 20 37 29 20 61 70 70 6c 69 63 61 74 69 6f 6e 73 2e | TP-based.(level.7).applications. |
| f1400 | 00 48 61 72 64 77 61 72 65 20 54 69 6d 65 73 74 61 6d 70 69 6e 67 20 6f 66 20 4e 54 50 20 50 61 | .Hardware.Timestamping.of.NTP.Pa |
| f1420 | 63 6b 65 74 73 00 48 61 72 64 77 61 72 65 20 74 69 6d 65 73 74 61 6d 70 69 6e 67 20 64 65 70 65 | ckets.Hardware.timestamping.depe |
| f1440 | 6e 64 73 20 6f 6e 20 4e 49 43 20 73 75 70 70 6f 72 74 2e 20 53 6f 6d 65 20 4e 49 43 73 20 63 61 | nds.on.NIC.support..Some.NICs.ca |
| f1460 | 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 61 70 70 6c 79 20 74 69 6d 65 73 74 61 | n.be.configured.to.apply.timesta |
| f1480 | 6d 70 73 20 74 6f 20 61 6e 79 20 69 6e 63 6f 6d 69 6e 67 20 70 61 63 6b 65 74 2c 20 77 68 69 6c | mps.to.any.incoming.packet,.whil |
| f14a0 | 65 20 6f 74 68 65 72 73 20 6f 6e 6c 79 20 73 75 70 70 6f 72 74 20 61 70 70 6c 79 69 6e 67 20 74 | e.others.only.support.applying.t |
| f14c0 | 69 6d 65 73 74 61 6d 70 73 20 74 6f 20 73 70 65 63 69 66 69 63 20 70 72 6f 74 6f 63 6f 6c 73 20 | imestamps.to.specific.protocols. |
| f14e0 | 28 65 2e 67 2e 20 50 54 50 29 2e 00 48 61 76 69 6e 67 20 63 6f 6e 74 72 6f 6c 20 6f 76 65 72 20 | (e.g..PTP)..Having.control.over. |
| f1500 | 74 68 65 20 6d 61 74 63 68 69 6e 67 20 6f 66 20 49 4e 56 41 4c 49 44 20 73 74 61 74 65 20 74 72 | the.matching.of.INVALID.state.tr |
| f1520 | 61 66 66 69 63 2c 20 65 2e 67 2e 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 6f 20 73 65 6c 65 63 | affic,.e.g..the.ability.to.selec |
| f1540 | 74 69 76 65 6c 79 20 6c 6f 67 2c 20 69 73 20 61 6e 20 69 6d 70 6f 72 74 61 6e 74 20 74 72 6f 75 | tively.log,.is.an.important.trou |
| f1560 | 62 6c 65 73 68 6f 6f 74 69 6e 67 20 74 6f 6f 6c 20 66 6f 72 20 6f 62 73 65 72 76 69 6e 67 20 62 | bleshooting.tool.for.observing.b |
| f1580 | 72 6f 6b 65 6e 20 70 72 6f 74 6f 63 6f 6c 20 62 65 68 61 76 69 6f 72 2e 20 46 6f 72 20 74 68 69 | roken.protocol.behavior..For.thi |
| f15a0 | 73 20 72 65 61 73 6f 6e 2c 20 56 79 4f 53 20 64 6f 65 73 20 6e 6f 74 20 67 6c 6f 62 61 6c 6c 79 | s.reason,.VyOS.does.not.globally |
| f15c0 | 20 64 72 6f 70 20 69 6e 76 61 6c 69 64 20 73 74 61 74 65 20 74 72 61 66 66 69 63 2c 20 69 6e 73 | .drop.invalid.state.traffic,.ins |
| f15e0 | 74 65 61 64 20 61 6c 6c 6f 77 69 6e 67 20 74 68 65 20 6f 70 65 72 61 74 6f 72 20 74 6f 20 6d 61 | tead.allowing.the.operator.to.ma |
| f1600 | 6b 65 20 74 68 65 20 64 65 74 65 72 6d 69 6e 61 74 69 6f 6e 20 6f 6e 20 68 6f 77 20 74 68 65 20 | ke.the.determination.on.how.the. |
| f1620 | 74 72 61 66 66 69 63 20 69 73 20 68 61 6e 64 6c 65 64 2e 00 48 65 61 6c 74 68 20 63 68 65 63 6b | traffic.is.handled..Health.check |
| f1640 | 20 73 63 72 69 70 74 73 00 48 65 61 6c 74 68 20 63 68 65 63 6b 73 00 48 65 61 6c 74 68 20 63 68 | .scripts.Health.checks.Health.ch |
| f1660 | 65 63 6b 73 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 66 6f 72 20 | ecks.can.also.be.configured.for. |
| f1680 | 54 43 50 20 6d 6f 64 65 20 62 61 63 6b 65 6e 64 73 2e 20 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 | TCP.mode.backends..You.can.confi |
| f16a0 | 67 75 72 65 20 70 72 6f 74 6f 63 6f 6c 20 61 77 61 72 65 20 63 68 65 63 6b 73 20 66 6f 72 20 61 | gure.protocol.aware.checks.for.a |
| f16c0 | 20 72 61 6e 67 65 20 6f 66 20 4c 61 79 65 72 20 37 20 70 72 6f 74 6f 63 6f 6c 73 3a 00 48 65 61 | .range.of.Layer.7.protocols:.Hea |
| f16e0 | 6c 74 68 2d 63 68 65 63 6b 00 48 65 72 65 20 61 72 65 20 73 6f 6d 65 20 65 78 61 6d 70 6c 65 73 | lth-check.Here.are.some.examples |
| f1700 | 20 66 6f 72 20 61 70 70 6c 79 69 6e 67 20 61 20 72 75 6c 65 2d 73 65 74 20 74 6f 20 61 6e 20 69 | .for.applying.a.rule-set.to.an.i |
| f1720 | 6e 74 65 72 66 61 63 65 00 48 65 72 65 20 69 73 20 61 20 73 65 63 6f 6e 64 20 65 78 61 6d 70 6c | nterface.Here.is.a.second.exampl |
| f1740 | 65 20 6f 66 20 61 20 64 75 61 6c 2d 73 74 61 63 6b 20 74 75 6e 6e 65 6c 20 6f 76 65 72 20 49 50 | e.of.a.dual-stack.tunnel.over.IP |
| f1760 | 76 36 20 62 65 74 77 65 65 6e 20 61 20 56 79 4f 53 20 72 6f 75 74 65 72 20 61 6e 64 20 61 20 4c | v6.between.a.VyOS.router.and.a.L |
| f1780 | 69 6e 75 78 20 68 6f 73 74 20 75 73 69 6e 67 20 73 79 73 74 65 6d 64 2d 6e 65 74 77 6f 72 6b 64 | inux.host.using.systemd-networkd |
| f17a0 | 2e 00 48 65 72 65 20 69 73 20 61 6e 20 65 78 61 6d 70 6c 65 20 3a 61 62 62 72 3a 60 4e 45 54 20 | ..Here.is.an.example.:abbr:`NET. |
| f17c0 | 28 4e 65 74 77 6f 72 6b 20 45 6e 74 69 74 79 20 54 69 74 6c 65 29 60 20 76 61 6c 75 65 3a 00 48 | (Network.Entity.Title)`.value:.H |
| f17e0 | 65 72 65 20 69 73 20 61 6e 20 65 78 61 6d 70 6c 65 20 6f 66 20 73 75 63 68 20 63 6f 6d 6d 61 6e | ere.is.an.example.of.such.comman |
| f1800 | 64 3a 00 48 65 72 65 20 69 73 20 61 6e 20 65 78 61 6d 70 6c 65 20 72 6f 75 74 65 2d 6d 61 70 20 | d:.Here.is.an.example.route-map. |
| f1820 | 74 6f 20 61 70 70 6c 79 20 74 6f 20 72 6f 75 74 65 73 20 6c 65 61 72 6e 65 64 20 61 74 20 69 6d | to.apply.to.routes.learned.at.im |
| f1840 | 70 6f 72 74 2e 20 49 6e 20 74 68 69 73 20 66 69 6c 74 65 72 20 77 65 20 72 65 6a 65 63 74 20 70 | port..In.this.filter.we.reject.p |
| f1860 | 72 65 66 69 78 65 73 20 77 69 74 68 20 74 68 65 20 73 74 61 74 65 20 60 69 6e 76 61 6c 69 64 60 | refixes.with.the.state.`invalid` |
| f1880 | 2c 20 61 6e 64 20 73 65 74 20 61 20 68 69 67 68 65 72 20 60 6c 6f 63 61 6c 2d 70 72 65 66 65 72 | ,.and.set.a.higher.`local-prefer |
| f18a0 | 65 6e 63 65 60 20 69 66 20 74 68 65 20 70 72 65 66 69 78 20 69 73 20 52 50 4b 49 20 60 76 61 6c | ence`.if.the.prefix.is.RPKI.`val |
| f18c0 | 69 64 60 20 72 61 74 68 65 72 20 74 68 61 6e 20 6d 65 72 65 6c 79 20 60 6e 6f 74 66 6f 75 6e 64 | id`.rather.than.merely.`notfound |
| f18e0 | 60 2e 00 48 65 72 65 20 69 73 20 61 6e 20 65 78 61 6d 70 6c 65 20 77 65 72 65 20 6d 75 6c 74 69 | `..Here.is.an.example.were.multi |
| f1900 | 70 6c 65 20 67 72 6f 75 70 73 20 61 72 65 20 63 72 65 61 74 65 64 3a 00 48 65 72 65 20 69 73 20 | ple.groups.are.created:.Here.is. |
| f1920 | 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 73 20 73 68 6f 77 69 6e 67 20 74 68 65 20 4d | the.routing.tables.showing.the.M |
| f1940 | 50 4c 53 20 73 65 67 6d 65 6e 74 20 72 6f 75 74 69 6e 67 20 6c 61 62 65 6c 20 6f 70 65 72 61 74 | PLS.segment.routing.label.operat |
| f1960 | 69 6f 6e 73 3a 00 48 65 72 65 20 77 65 20 70 72 6f 76 69 64 65 20 74 77 6f 20 65 78 61 6d 70 6c | ions:.Here.we.provide.two.exampl |
| f1980 | 65 73 20 6f 6e 20 68 6f 77 20 74 6f 20 61 70 70 6c 79 20 4e 41 54 20 4c 6f 61 64 20 42 61 6c 61 | es.on.how.to.apply.NAT.Load.Bala |
| f19a0 | 6e 63 65 2e 00 48 65 72 65 27 73 20 61 6e 20 65 78 74 72 61 63 74 20 6f 66 20 61 20 73 69 6d 70 | nce..Here's.an.extract.of.a.simp |
| f19c0 | 6c 65 20 31 2d 74 6f 2d 31 20 4e 41 54 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 69 74 68 | le.1-to-1.NAT.configuration.with |
| f19e0 | 20 6f 6e 65 20 69 6e 74 65 72 6e 61 6c 20 61 6e 64 20 6f 6e 65 20 65 78 74 65 72 6e 61 6c 20 69 | .one.internal.and.one.external.i |
| f1a00 | 6e 74 65 72 66 61 63 65 3a 00 48 65 72 65 27 73 20 6f 6e 65 20 65 78 61 6d 70 6c 65 20 6f 66 20 | nterface:.Here's.one.example.of. |
| f1a20 | 61 20 6e 65 74 77 6f 72 6b 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 66 6f 72 20 61 6e 20 41 53 50 | a.network.environment.for.an.ASP |
| f1a40 | 2e 20 54 68 65 20 41 53 50 20 72 65 71 75 65 73 74 73 20 74 68 61 74 20 61 6c 6c 20 63 6f 6e 6e | ..The.ASP.requests.that.all.conn |
| f1a60 | 65 63 74 69 6f 6e 73 20 66 72 6f 6d 20 74 68 69 73 20 63 6f 6d 70 61 6e 79 20 73 68 6f 75 6c 64 | ections.from.this.company.should |
| f1a80 | 20 63 6f 6d 65 20 66 72 6f 6d 20 31 37 32 2e 32 39 2e 34 31 2e 38 39 20 2d 20 61 6e 20 61 64 64 | .come.from.172.29.41.89.-.an.add |
| f1aa0 | 72 65 73 73 20 74 68 61 74 20 69 73 20 61 73 73 69 67 6e 65 64 20 62 79 20 74 68 65 20 41 53 50 | ress.that.is.assigned.by.the.ASP |
| f1ac0 | 20 61 6e 64 20 6e 6f 74 20 69 6e 20 75 73 65 20 61 74 20 74 68 65 20 63 75 73 74 6f 6d 65 72 20 | .and.not.in.use.at.the.customer. |
| f1ae0 | 73 69 74 65 2e 00 48 65 72 65 27 73 20 74 68 65 20 49 50 20 72 6f 75 74 65 73 20 74 68 61 74 20 | site..Here's.the.IP.routes.that. |
| f1b00 | 61 72 65 20 70 6f 70 75 6c 61 74 65 64 2e 20 4a 75 73 74 20 74 68 65 20 6c 6f 6f 70 62 61 63 6b | are.populated..Just.the.loopback |
| f1b20 | 3a 00 48 65 72 65 27 73 20 74 68 65 20 49 50 20 72 6f 75 74 65 73 20 74 68 61 74 20 61 72 65 20 | :.Here's.the.IP.routes.that.are. |
| f1b40 | 70 6f 70 75 6c 61 74 65 64 3a 00 48 65 72 65 27 73 20 74 68 65 20 6e 65 69 67 68 62 6f 72 73 20 | populated:.Here's.the.neighbors. |
| f1b60 | 75 70 3a 00 48 65 72 65 27 73 20 74 68 65 20 72 6f 75 74 65 73 3a 00 48 65 77 6c 65 74 74 2d 50 | up:.Here's.the.routes:.Hewlett-P |
| f1b80 | 61 63 6b 61 72 64 20 63 61 6c 6c 20 69 74 20 53 6f 75 72 63 65 2d 50 6f 72 74 20 66 69 6c 74 65 | ackard.call.it.Source-Port.filte |
| f1ba0 | 72 69 6e 67 20 6f 72 20 70 6f 72 74 2d 69 73 6f 6c 61 74 69 6f 6e 00 48 69 67 68 00 48 69 67 68 | ring.or.port-isolation.High.High |
| f1bc0 | 20 41 76 61 69 6c 61 62 69 6c 69 74 79 00 48 69 67 68 20 61 76 61 69 6c 61 62 69 6c 69 74 79 00 | .Availability.High.availability. |
| f1be0 | 48 6f 6d 65 20 55 73 65 72 73 00 48 6f 70 20 63 6f 75 6e 74 20 66 69 65 6c 64 20 6f 66 20 74 68 | Home.Users.Hop.count.field.of.th |
| f1c00 | 65 20 6f 75 74 67 6f 69 6e 67 20 52 41 20 70 61 63 6b 65 74 73 00 48 6f 73 74 20 49 6e 66 6f 72 | e.outgoing.RA.packets.Host.Infor |
| f1c20 | 6d 61 74 69 6f 6e 00 48 6f 73 74 20 6e 61 6d 65 00 48 6f 73 74 20 73 70 65 63 69 66 69 63 20 6d | mation.Host.name.Host.specific.m |
| f1c40 | 61 70 70 69 6e 67 20 73 68 61 6c 6c 20 62 65 20 6e 61 6d 65 64 20 60 60 63 6c 69 65 6e 74 31 60 | apping.shall.be.named.``client1` |
| f1c60 | 60 00 48 6f 73 74 6e 61 6d 65 00 48 6f 77 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 | `.Hostname.How.an.IP.address.is. |
| f1c80 | 61 73 73 69 67 6e 65 64 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 6e 20 3a 72 65 66 | assigned.to.an.interface.in.:ref |
| f1ca0 | 3a 60 65 74 68 65 72 6e 65 74 2d 69 6e 74 65 72 66 61 63 65 60 2e 20 54 68 69 73 20 73 65 63 74 | :`ethernet-interface`..This.sect |
| f1cc0 | 69 6f 6e 20 73 68 6f 77 73 20 68 6f 77 20 74 6f 20 73 74 61 74 69 63 61 6c 6c 79 20 6d 61 70 20 | ion.shows.how.to.statically.map. |
| f1ce0 | 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 61 20 68 6f 73 74 6e 61 6d 65 20 66 6f 72 20 | an.IP.address.to.a.hostname.for. |
| f1d00 | 6c 6f 63 61 6c 20 28 6d 65 61 6e 69 6e 67 20 6f 6e 20 74 68 69 73 20 56 79 4f 53 20 69 6e 73 74 | local.(meaning.on.this.VyOS.inst |
| f1d20 | 61 6e 63 65 29 20 6e 61 6d 65 20 72 65 73 6f 6c 75 74 69 6f 6e 2e 20 54 68 69 73 20 69 73 20 74 | ance).name.resolution..This.is.t |
| f1d40 | 68 65 20 56 79 4f 53 20 65 71 75 69 76 61 6c 65 6e 74 20 74 6f 20 60 2f 65 74 63 2f 68 6f 73 74 | he.VyOS.equivalent.to.`/etc/host |
| f1d60 | 73 60 20 66 69 6c 65 20 65 6e 74 72 69 65 73 2e 00 48 6f 77 20 74 6f 20 63 6f 6e 66 69 67 75 72 | s`.file.entries..How.to.configur |
| f1d80 | 65 20 45 76 65 6e 74 20 48 61 6e 64 6c 65 72 00 48 6f 77 20 74 6f 20 6d 61 6b 65 20 69 74 20 77 | e.Event.Handler.How.to.make.it.w |
| f1da0 | 6f 72 6b 00 48 6f 77 65 76 65 72 2c 20 6e 6f 77 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 6d 61 6b | ork.However,.now.you.need.to.mak |
| f1dc0 | 65 20 49 50 73 65 63 20 77 6f 72 6b 20 77 69 74 68 20 64 79 6e 61 6d 69 63 20 61 64 64 72 65 73 | e.IPsec.work.with.dynamic.addres |
| f1de0 | 73 20 6f 6e 20 6f 6e 65 20 73 69 64 65 2e 20 54 68 65 20 74 72 69 63 6b 79 20 70 61 72 74 20 69 | s.on.one.side..The.tricky.part.i |
| f1e00 | 73 20 74 68 61 74 20 70 72 65 2d 73 68 61 72 65 64 20 73 65 63 72 65 74 20 61 75 74 68 65 6e 74 | s.that.pre-shared.secret.authent |
| f1e20 | 69 63 61 74 69 6f 6e 20 64 6f 65 73 6e 27 74 20 77 6f 72 6b 20 77 69 74 68 20 64 79 6e 61 6d 69 | ication.doesn't.work.with.dynami |
| f1e40 | 63 20 61 64 64 72 65 73 73 2c 20 73 6f 20 77 65 27 6c 6c 20 68 61 76 65 20 74 6f 20 75 73 65 20 | c.address,.so.we'll.have.to.use. |
| f1e60 | 52 53 41 20 6b 65 79 73 2e 00 48 6f 77 65 76 65 72 2c 20 73 69 6e 63 65 20 56 79 4f 53 20 31 2e | RSA.keys..However,.since.VyOS.1. |
| f1e80 | 34 2c 20 69 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 76 65 72 69 66 79 20 73 65 6c 66 | 4,.it.is.possible.to.verify.self |
| f1ea0 | 2d 73 69 67 6e 65 64 20 63 65 72 74 69 66 69 63 61 74 65 73 20 75 73 69 6e 67 20 63 65 72 74 69 | -signed.certificates.using.certi |
| f1ec0 | 66 69 63 61 74 65 20 66 69 6e 67 65 72 70 72 69 6e 74 73 2e 00 48 6f 77 65 76 65 72 2c 20 73 70 | ficate.fingerprints..However,.sp |
| f1ee0 | 6c 69 74 2d 74 75 6e 6e 65 6c 69 6e 67 20 63 61 6e 20 62 65 20 61 63 68 69 65 76 65 64 20 62 79 | lit-tunneling.can.be.achieved.by |
| f1f00 | 20 73 70 65 63 69 66 79 69 6e 67 20 74 68 65 20 72 65 6d 6f 74 65 20 73 75 62 6e 65 74 73 2e 20 | .specifying.the.remote.subnets.. |
| f1f20 | 54 68 69 73 20 65 6e 73 75 72 65 73 20 74 68 61 74 20 6f 6e 6c 79 20 74 72 61 66 66 69 63 20 64 | This.ensures.that.only.traffic.d |
| f1f40 | 65 73 74 69 6e 65 64 20 66 6f 72 20 74 68 65 20 72 65 6d 6f 74 65 20 73 69 74 65 20 69 73 20 73 | estined.for.the.remote.site.is.s |
| f1f60 | 65 6e 74 20 6f 76 65 72 20 74 68 65 20 74 75 6e 6e 65 6c 2e 20 41 6c 6c 20 6f 74 68 65 72 20 74 | ent.over.the.tunnel..All.other.t |
| f1f80 | 72 61 66 66 69 63 20 69 73 20 75 6e 61 66 66 65 63 74 65 64 2e 00 48 75 61 77 65 69 20 4d 45 39 | raffic.is.unaffected..Huawei.ME9 |
| f1fa0 | 30 39 73 2d 31 32 30 20 6d 69 6e 69 50 43 49 65 20 63 61 72 64 20 28 4c 54 45 29 00 48 75 61 77 | 09s-120.miniPCIe.card.(LTE).Huaw |
| f1fc0 | 65 69 20 4d 45 39 30 39 75 2d 35 32 31 20 6d 69 6e 69 50 43 49 65 20 63 61 72 64 20 28 4c 54 45 | ei.ME909u-521.miniPCIe.card.(LTE |
| f1fe0 | 29 00 48 75 62 00 49 45 45 45 20 38 30 32 2e 31 58 2f 4d 41 43 73 65 63 20 70 72 65 2d 73 68 61 | ).Hub.IEEE.802.1X/MACsec.pre-sha |
| f2000 | 72 65 64 20 6b 65 79 20 6d 6f 64 65 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 63 6f 6e 66 69 67 | red.key.mode..This.allows.config |
| f2020 | 75 72 69 6e 67 20 4d 41 43 73 65 63 20 77 69 74 68 20 61 20 70 72 65 2d 73 68 61 72 65 64 20 6b | uring.MACsec.with.a.pre-shared.k |
| f2040 | 65 79 20 75 73 69 6e 67 20 61 20 3a 61 62 62 72 3a 60 43 41 4b 20 28 4d 41 43 73 65 63 20 63 6f | ey.using.a.:abbr:`CAK.(MACsec.co |
| f2060 | 6e 6e 65 63 74 69 76 69 74 79 20 61 73 73 6f 63 69 61 74 69 6f 6e 20 6b 65 79 29 60 20 61 6e 64 | nnectivity.association.key)`.and |
| f2080 | 20 3a 61 62 62 72 3a 60 43 4b 4e 20 28 4d 41 43 73 65 63 20 63 6f 6e 6e 65 63 74 69 76 69 74 79 | .:abbr:`CKN.(MACsec.connectivity |
| f20a0 | 20 61 73 73 6f 63 69 61 74 69 6f 6e 20 6e 61 6d 65 29 60 20 70 61 69 72 2e 00 49 45 45 45 20 38 | .association.name)`.pair..IEEE.8 |
| f20c0 | 30 32 2e 31 58 2f 4d 41 43 73 65 63 20 72 65 70 6c 61 79 20 70 72 6f 74 65 63 74 69 6f 6e 20 77 | 02.1X/MACsec.replay.protection.w |
| f20e0 | 69 6e 64 6f 77 2e 20 54 68 69 73 20 64 65 74 65 72 6d 69 6e 65 73 20 61 20 77 69 6e 64 6f 77 20 | indow..This.determines.a.window. |
| f2100 | 69 6e 20 77 68 69 63 68 20 72 65 70 6c 61 79 20 69 73 20 74 6f 6c 65 72 61 74 65 64 2c 20 74 6f | in.which.replay.is.tolerated,.to |
| f2120 | 20 61 6c 6c 6f 77 20 72 65 63 65 69 70 74 20 6f 66 20 66 72 61 6d 65 73 20 74 68 61 74 20 68 61 | .allow.receipt.of.frames.that.ha |
| f2140 | 76 65 20 62 65 65 6e 20 6d 69 73 6f 72 64 65 72 65 64 20 62 79 20 74 68 65 20 6e 65 74 77 6f 72 | ve.been.misordered.by.the.networ |
| f2160 | 6b 2e 00 49 45 45 45 20 38 30 32 2e 31 61 64 5f 20 77 61 73 20 61 6e 20 45 74 68 65 72 6e 65 74 | k..IEEE.802.1ad_.was.an.Ethernet |
| f2180 | 20 6e 65 74 77 6f 72 6b 69 6e 67 20 73 74 61 6e 64 61 72 64 20 69 6e 66 6f 72 6d 61 6c 6c 79 20 | .networking.standard.informally. |
| f21a0 | 6b 6e 6f 77 6e 20 61 73 20 51 69 6e 51 20 61 73 20 61 6e 20 61 6d 65 6e 64 6d 65 6e 74 20 74 6f | known.as.QinQ.as.an.amendment.to |
| f21c0 | 20 49 45 45 45 20 73 74 61 6e 64 61 72 64 20 38 30 32 2e 31 71 20 56 4c 41 4e 20 69 6e 74 65 72 | .IEEE.standard.802.1q.VLAN.inter |
| f21e0 | 66 61 63 65 73 20 61 73 20 64 65 73 63 72 69 62 65 64 20 61 62 6f 76 65 2e 20 38 30 32 2e 31 61 | faces.as.described.above..802.1a |
| f2200 | 64 20 77 61 73 20 69 6e 63 6f 72 70 6f 72 61 74 65 64 20 69 6e 74 6f 20 74 68 65 20 62 61 73 65 | d.was.incorporated.into.the.base |
| f2220 | 20 38 30 32 2e 31 71 5f 20 73 74 61 6e 64 61 72 64 20 69 6e 20 32 30 31 31 2e 20 54 68 65 20 74 | .802.1q_.standard.in.2011..The.t |
| f2240 | 65 63 68 6e 69 71 75 65 20 69 73 20 61 6c 73 6f 20 6b 6e 6f 77 6e 20 61 73 20 70 72 6f 76 69 64 | echnique.is.also.known.as.provid |
| f2260 | 65 72 20 62 72 69 64 67 69 6e 67 2c 20 53 74 61 63 6b 65 64 20 56 4c 41 4e 73 2c 20 6f 72 20 73 | er.bridging,.Stacked.VLANs,.or.s |
| f2280 | 69 6d 70 6c 79 20 51 69 6e 51 20 6f 72 20 51 2d 69 6e 2d 51 2e 20 22 51 2d 69 6e 2d 51 22 20 63 | imply.QinQ.or.Q-in-Q.."Q-in-Q".c |
| f22a0 | 61 6e 20 66 6f 72 20 73 75 70 70 6f 72 74 65 64 20 64 65 76 69 63 65 73 20 61 70 70 6c 79 20 74 | an.for.supported.devices.apply.t |
| f22c0 | 6f 20 43 2d 74 61 67 20 73 74 61 63 6b 69 6e 67 20 6f 6e 20 43 2d 74 61 67 20 28 45 74 68 65 72 | o.C-tag.stacking.on.C-tag.(Ether |
| f22e0 | 6e 65 74 20 54 79 70 65 20 3d 20 30 78 38 31 30 30 29 2e 00 49 45 45 45 20 38 30 32 2e 31 71 5f | net.Type.=.0x8100)..IEEE.802.1q_ |
| f2300 | 2c 20 6f 66 74 65 6e 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 44 6f 74 31 71 2c 20 69 73 | ,.often.referred.to.as.Dot1q,.is |
| f2320 | 20 74 68 65 20 6e 65 74 77 6f 72 6b 69 6e 67 20 73 74 61 6e 64 61 72 64 20 74 68 61 74 20 73 75 | .the.networking.standard.that.su |
| f2340 | 70 70 6f 72 74 73 20 76 69 72 74 75 61 6c 20 4c 41 4e 73 20 28 56 4c 41 4e 73 29 20 6f 6e 20 61 | pports.virtual.LANs.(VLANs).on.a |
| f2360 | 6e 20 49 45 45 45 20 38 30 32 2e 33 20 45 74 68 65 72 6e 65 74 20 6e 65 74 77 6f 72 6b 2e 20 54 | n.IEEE.802.3.Ethernet.network..T |
| f2380 | 68 65 20 73 74 61 6e 64 61 72 64 20 64 65 66 69 6e 65 73 20 61 20 73 79 73 74 65 6d 20 6f 66 20 | he.standard.defines.a.system.of. |
| f23a0 | 56 4c 41 4e 20 74 61 67 67 69 6e 67 20 66 6f 72 20 45 74 68 65 72 6e 65 74 20 66 72 61 6d 65 73 | VLAN.tagging.for.Ethernet.frames |
| f23c0 | 20 61 6e 64 20 74 68 65 20 61 63 63 6f 6d 70 61 6e 79 69 6e 67 20 70 72 6f 63 65 64 75 72 65 73 | .and.the.accompanying.procedures |
| f23e0 | 20 74 6f 20 62 65 20 75 73 65 64 20 62 79 20 62 72 69 64 67 65 73 20 61 6e 64 20 73 77 69 74 63 | .to.be.used.by.bridges.and.switc |
| f2400 | 68 65 73 20 69 6e 20 68 61 6e 64 6c 69 6e 67 20 73 75 63 68 20 66 72 61 6d 65 73 2e 20 54 68 65 | hes.in.handling.such.frames..The |
| f2420 | 20 73 74 61 6e 64 61 72 64 20 61 6c 73 6f 20 63 6f 6e 74 61 69 6e 73 20 70 72 6f 76 69 73 69 6f | .standard.also.contains.provisio |
| f2440 | 6e 73 20 66 6f 72 20 61 20 71 75 61 6c 69 74 79 2d 6f 66 2d 73 65 72 76 69 63 65 20 70 72 69 6f | ns.for.a.quality-of-service.prio |
| f2460 | 72 69 74 69 7a 61 74 69 6f 6e 20 73 63 68 65 6d 65 20 63 6f 6d 6d 6f 6e 6c 79 20 6b 6e 6f 77 6e | ritization.scheme.commonly.known |
| f2480 | 20 61 73 20 49 45 45 45 20 38 30 32 2e 31 70 20 61 6e 64 20 64 65 66 69 6e 65 73 20 74 68 65 20 | .as.IEEE.802.1p.and.defines.the. |
| f24a0 | 47 65 6e 65 72 69 63 20 41 74 74 72 69 62 75 74 65 20 52 65 67 69 73 74 72 61 74 69 6f 6e 20 50 | Generic.Attribute.Registration.P |
| f24c0 | 72 6f 74 6f 63 6f 6c 2e 00 49 45 54 46 20 70 75 62 6c 69 73 68 65 64 20 3a 72 66 63 3a 60 36 35 | rotocol..IETF.published.:rfc:`65 |
| f24e0 | 39 38 60 2c 20 64 65 74 61 69 6c 69 6e 67 20 61 20 73 68 61 72 65 64 20 61 64 64 72 65 73 73 20 | 98`,.detailing.a.shared.address. |
| f2500 | 73 70 61 63 65 20 66 6f 72 20 75 73 65 20 69 6e 20 49 53 50 20 43 47 4e 20 64 65 70 6c 6f 79 6d | space.for.use.in.ISP.CGN.deploym |
| f2520 | 65 6e 74 73 20 74 68 61 74 20 63 61 6e 20 68 61 6e 64 6c 65 20 74 68 65 20 73 61 6d 65 20 6e 65 | ents.that.can.handle.the.same.ne |
| f2540 | 74 77 6f 72 6b 20 70 72 65 66 69 78 65 73 20 6f 63 63 75 72 72 69 6e 67 20 62 6f 74 68 20 6f 6e | twork.prefixes.occurring.both.on |
| f2560 | 20 69 6e 62 6f 75 6e 64 20 61 6e 64 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 73 | .inbound.and.outbound.interfaces |
| f2580 | 2e 20 41 52 49 4e 20 72 65 74 75 72 6e 65 64 20 61 64 64 72 65 73 73 20 73 70 61 63 65 20 74 6f | ..ARIN.returned.address.space.to |
| f25a0 | 20 74 68 65 20 3a 61 62 62 72 3a 60 49 41 4e 41 20 28 49 6e 74 65 72 6e 65 74 20 41 73 73 69 67 | .the.:abbr:`IANA.(Internet.Assig |
| f25c0 | 6e 65 64 20 4e 75 6d 62 65 72 73 20 41 75 74 68 6f 72 69 74 79 29 60 20 66 6f 72 20 74 68 69 73 | ned.Numbers.Authority)`.for.this |
| f25e0 | 20 61 6c 6c 6f 63 61 74 69 6f 6e 2e 00 49 47 4d 50 20 2d 20 49 6e 74 65 72 6e 65 74 20 47 72 6f | .allocation..IGMP.-.Internet.Gro |
| f2600 | 75 70 20 4d 61 6e 61 67 65 6d 65 6e 74 20 50 72 6f 74 6f 63 6f 6c 29 00 49 47 4d 50 20 50 72 6f | up.Management.Protocol).IGMP.Pro |
| f2620 | 78 79 00 49 4b 45 20 28 49 6e 74 65 72 6e 65 74 20 4b 65 79 20 45 78 63 68 61 6e 67 65 29 20 41 | xy.IKE.(Internet.Key.Exchange).A |
| f2640 | 74 74 72 69 62 75 74 65 73 00 49 4b 45 20 50 68 61 73 65 3a 00 49 4b 45 20 70 65 72 66 6f 72 6d | ttributes.IKE.Phase:.IKE.perform |
| f2660 | 73 20 6d 75 74 75 61 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 | s.mutual.authentication.between. |
| f2680 | 74 77 6f 20 70 61 72 74 69 65 73 20 61 6e 64 20 65 73 74 61 62 6c 69 73 68 65 73 20 61 6e 20 49 | two.parties.and.establishes.an.I |
| f26a0 | 4b 45 20 73 65 63 75 72 69 74 79 20 61 73 73 6f 63 69 61 74 69 6f 6e 20 28 53 41 29 20 74 68 61 | KE.security.association.(SA).tha |
| f26c0 | 74 20 69 6e 63 6c 75 64 65 73 20 73 68 61 72 65 64 20 73 65 63 72 65 74 20 69 6e 66 6f 72 6d 61 | t.includes.shared.secret.informa |
| f26e0 | 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 65 66 66 69 63 69 65 | tion.that.can.be.used.to.efficie |
| f2700 | 6e 74 6c 79 20 65 73 74 61 62 6c 69 73 68 20 53 41 73 20 66 6f 72 20 45 6e 63 61 70 73 75 6c 61 | ntly.establish.SAs.for.Encapsula |
| f2720 | 74 69 6e 67 20 53 65 63 75 72 69 74 79 20 50 61 79 6c 6f 61 64 20 28 45 53 50 29 20 6f 72 20 41 | ting.Security.Payload.(ESP).or.A |
| f2740 | 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 48 65 61 64 65 72 20 28 41 48 29 20 61 6e 64 20 61 20 | uthentication.Header.(AH).and.a. |
| f2760 | 73 65 74 20 6f 66 20 63 72 79 70 74 6f 67 72 61 70 68 69 63 20 61 6c 67 6f 72 69 74 68 6d 73 20 | set.of.cryptographic.algorithms. |
| f2780 | 74 6f 20 62 65 20 75 73 65 64 20 62 79 20 74 68 65 20 53 41 73 20 74 6f 20 70 72 6f 74 65 63 74 | to.be.used.by.the.SAs.to.protect |
| f27a0 | 20 74 68 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 74 68 65 79 20 63 61 72 72 79 2e 20 68 74 | .the.traffic.that.they.carry..ht |
| f27c0 | 74 70 73 3a 2f 2f 64 61 74 61 74 72 61 63 6b 65 72 2e 69 65 74 66 2e 6f 72 67 2f 64 6f 63 2f 68 | tps://datatracker.ietf.org/doc/h |
| f27e0 | 74 6d 6c 2f 72 66 63 35 39 39 36 00 49 4b 45 76 31 00 49 4b 45 76 32 00 49 4b 45 76 32 20 49 50 | tml/rfc5996.IKEv1.IKEv2.IKEv2.IP |
| f2800 | 53 65 63 20 72 6f 61 64 2d 77 61 72 72 69 6f 72 73 20 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 20 | Sec.road-warriors.remote-access. |
| f2820 | 56 50 4e 00 49 50 00 49 50 20 61 64 64 72 65 73 73 00 49 50 20 61 64 64 72 65 73 73 20 60 60 31 | VPN.IP.IP.address.IP.address.``1 |
| f2840 | 39 32 2e 31 36 38 2e 31 2e 31 30 30 60 60 20 73 68 61 6c 6c 20 62 65 20 73 74 61 74 69 63 61 6c | 92.168.1.100``.shall.be.statical |
| f2860 | 6c 79 20 6d 61 70 70 65 64 20 74 6f 20 63 6c 69 65 6e 74 20 6e 61 6d 65 64 20 60 60 63 6c 69 65 | ly.mapped.to.client.named.``clie |
| f2880 | 6e 74 31 60 60 00 49 50 20 61 64 64 72 65 73 73 20 60 60 31 39 32 2e 31 36 38 2e 32 2e 31 2f 32 | nt1``.IP.address.``192.168.2.1/2 |
| f28a0 | 34 60 60 00 49 50 20 61 64 64 72 65 73 73 20 66 6f 72 20 44 48 43 50 20 73 65 72 76 65 72 20 69 | 4``.IP.address.for.DHCP.server.i |
| f28c0 | 64 65 6e 74 69 66 69 65 72 00 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 4e 54 50 20 73 65 72 76 | dentifier.IP.address.of.NTP.serv |
| f28e0 | 65 72 00 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 50 4f 50 33 20 73 65 72 76 65 72 00 49 50 20 | er.IP.address.of.POP3.server.IP. |
| f2900 | 61 64 64 72 65 73 73 20 6f 66 20 53 4d 54 50 20 73 65 72 76 65 72 00 49 50 20 61 64 64 72 65 73 | address.of.SMTP.server.IP.addres |
| f2920 | 73 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 61 63 | s.of.route.to.match,.based.on.ac |
| f2940 | 63 65 73 73 2d 6c 69 73 74 2e 00 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 72 6f 75 74 65 20 74 | cess-list..IP.address.of.route.t |
| f2960 | 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 70 72 65 66 69 78 2d 6c 69 73 74 2e 00 49 | o.match,.based.on.prefix-list..I |
| f2980 | 50 20 61 64 64 72 65 73 73 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 | P.address.of.route.to.match,.bas |
| f29a0 | 65 64 20 6f 6e 20 73 70 65 63 69 66 69 65 64 20 70 72 65 66 69 78 2d 6c 65 6e 67 74 68 2e 20 4e | ed.on.specified.prefix-length..N |
| f29c0 | 6f 74 65 20 74 68 61 74 20 74 68 69 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 66 6f 72 20 6b 65 | ote.that.this.can.be.used.for.ke |
| f29e0 | 72 6e 65 6c 20 72 6f 75 74 65 73 20 6f 6e 6c 79 2e 20 44 6f 20 6e 6f 74 20 61 70 70 6c 79 20 74 | rnel.routes.only..Do.not.apply.t |
| f2a00 | 6f 20 74 68 65 20 72 6f 75 74 65 73 20 6f 66 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 | o.the.routes.of.dynamic.routing. |
| f2a20 | 70 72 6f 74 6f 63 6f 6c 73 20 28 65 2e 67 2e 20 42 47 50 2c 20 52 49 50 2c 20 4f 53 46 50 29 2c | protocols.(e.g..BGP,.RIP,.OSFP), |
| f2a40 | 20 61 73 20 74 68 69 73 20 63 61 6e 20 6c 65 61 64 20 74 6f 20 75 6e 65 78 70 65 63 74 65 64 20 | .as.this.can.lead.to.unexpected. |
| f2a60 | 72 65 73 75 6c 74 73 2e 2e 00 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 65 78 63 6c 75 64 65 20 | results...IP.address.to.exclude. |
| f2a80 | 66 72 6f 6d 20 44 48 43 50 20 6c 65 61 73 65 20 72 61 6e 67 65 00 49 50 20 61 64 64 72 65 73 73 | from.DHCP.lease.range.IP.address |
| f2aa0 | 65 73 20 6f 72 20 6e 65 74 77 6f 72 6b 73 20 66 6f 72 20 77 68 69 63 68 20 6c 6f 63 61 6c 20 63 | es.or.networks.for.which.local.c |
| f2ac0 | 6f 6e 6e 74 72 61 63 6b 20 65 6e 74 72 69 65 73 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 73 79 6e | onntrack.entries.will.not.be.syn |
| f2ae0 | 63 65 64 00 49 50 20 6d 61 6e 61 67 65 6d 65 6e 74 20 61 64 64 72 65 73 73 00 49 50 20 6d 61 73 | ced.IP.management.address.IP.mas |
| f2b00 | 71 75 65 72 61 64 69 6e 67 20 69 73 20 61 20 74 65 63 68 6e 69 71 75 65 20 74 68 61 74 20 68 69 | querading.is.a.technique.that.hi |
| f2b20 | 64 65 73 20 61 6e 20 65 6e 74 69 72 65 20 49 50 20 61 64 64 72 65 73 73 20 73 70 61 63 65 2c 20 | des.an.entire.IP.address.space,. |
| f2b40 | 75 73 75 61 6c 6c 79 20 63 6f 6e 73 69 73 74 69 6e 67 20 6f 66 20 70 72 69 76 61 74 65 20 49 50 | usually.consisting.of.private.IP |
| f2b60 | 20 61 64 64 72 65 73 73 65 73 2c 20 62 65 68 69 6e 64 20 61 20 73 69 6e 67 6c 65 20 49 50 20 61 | .addresses,.behind.a.single.IP.a |
| f2b80 | 64 64 72 65 73 73 20 69 6e 20 61 6e 6f 74 68 65 72 2c 20 75 73 75 61 6c 6c 79 20 70 75 62 6c 69 | ddress.in.another,.usually.publi |
| f2ba0 | 63 20 61 64 64 72 65 73 73 20 73 70 61 63 65 2e 20 54 68 65 20 68 69 64 64 65 6e 20 61 64 64 72 | c.address.space..The.hidden.addr |
| f2bc0 | 65 73 73 65 73 20 61 72 65 20 63 68 61 6e 67 65 64 20 69 6e 74 6f 20 61 20 73 69 6e 67 6c 65 20 | esses.are.changed.into.a.single. |
| f2be0 | 28 70 75 62 6c 69 63 29 20 49 50 20 61 64 64 72 65 73 73 20 61 73 20 74 68 65 20 73 6f 75 72 63 | (public).IP.address.as.the.sourc |
| f2c00 | 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 20 49 50 20 70 61 63 | e.address.of.the.outgoing.IP.pac |
| f2c20 | 6b 65 74 73 20 73 6f 20 74 68 65 79 20 61 70 70 65 61 72 20 61 73 20 6f 72 69 67 69 6e 61 74 69 | kets.so.they.appear.as.originati |
| f2c40 | 6e 67 20 6e 6f 74 20 66 72 6f 6d 20 74 68 65 20 68 69 64 64 65 6e 20 68 6f 73 74 20 62 75 74 20 | ng.not.from.the.hidden.host.but. |
| f2c60 | 66 72 6f 6d 20 74 68 65 20 72 6f 75 74 69 6e 67 20 64 65 76 69 63 65 20 69 74 73 65 6c 66 2e 20 | from.the.routing.device.itself.. |
| f2c80 | 42 65 63 61 75 73 65 20 6f 66 20 74 68 65 20 70 6f 70 75 6c 61 72 69 74 79 20 6f 66 20 74 68 69 | Because.of.the.popularity.of.thi |
| f2ca0 | 73 20 74 65 63 68 6e 69 71 75 65 20 74 6f 20 63 6f 6e 73 65 72 76 65 20 49 50 76 34 20 61 64 64 | s.technique.to.conserve.IPv4.add |
| f2cc0 | 72 65 73 73 20 73 70 61 63 65 2c 20 74 68 65 20 74 65 72 6d 20 4e 41 54 20 68 61 73 20 62 65 63 | ress.space,.the.term.NAT.has.bec |
| f2ce0 | 6f 6d 65 20 76 69 72 74 75 61 6c 6c 79 20 73 79 6e 6f 6e 79 6d 6f 75 73 20 77 69 74 68 20 49 50 | ome.virtually.synonymous.with.IP |
| f2d00 | 20 6d 61 73 71 75 65 72 61 64 69 6e 67 2e 00 49 50 20 6e 65 78 74 2d 68 6f 70 20 6f 66 20 72 6f | .masquerading..IP.next-hop.of.ro |
| f2d20 | 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 61 63 63 65 73 73 2d 6c 69 | ute.to.match,.based.on.access-li |
| f2d40 | 73 74 2e 00 49 50 20 6e 65 78 74 2d 68 6f 70 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 | st..IP.next-hop.of.route.to.matc |
| f2d60 | 68 2c 20 62 61 73 65 64 20 6f 6e 20 69 70 20 61 64 64 72 65 73 73 2e 00 49 50 20 6e 65 78 74 2d | h,.based.on.ip.address..IP.next- |
| f2d80 | 68 6f 70 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 | hop.of.route.to.match,.based.on. |
| f2da0 | 70 72 65 66 69 78 20 6c 65 6e 67 74 68 2e 00 49 50 20 6e 65 78 74 2d 68 6f 70 20 6f 66 20 72 6f | prefix.length..IP.next-hop.of.ro |
| f2dc0 | 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 70 72 65 66 69 78 2d 6c 69 | ute.to.match,.based.on.prefix-li |
| f2de0 | 73 74 2e 00 49 50 20 6e 65 78 74 2d 68 6f 70 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 | st..IP.next-hop.of.route.to.matc |
| f2e00 | 68 2c 20 62 61 73 65 64 20 6f 6e 20 74 79 70 65 2e 00 49 50 20 70 72 65 63 65 64 65 6e 63 65 20 | h,.based.on.type..IP.precedence. |
| f2e20 | 61 73 20 64 65 66 69 6e 65 64 20 69 6e 20 3a 72 66 63 3a 60 37 39 31 60 3a 00 49 50 20 70 72 6f | as.defined.in.:rfc:`791`:.IP.pro |
| f2e40 | 74 6f 63 6f 6c 20 6e 75 6d 62 65 72 20 35 30 20 28 45 53 50 29 00 49 50 20 72 6f 75 74 65 20 73 | tocol.number.50.(ESP).IP.route.s |
| f2e60 | 6f 75 72 63 65 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f | ource.of.route.to.match,.based.o |
| f2e80 | 6e 20 61 63 63 65 73 73 2d 6c 69 73 74 2e 00 49 50 20 72 6f 75 74 65 20 73 6f 75 72 63 65 20 6f | n.access-list..IP.route.source.o |
| f2ea0 | 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 70 72 65 66 69 | f.route.to.match,.based.on.prefi |
| f2ec0 | 78 2d 6c 69 73 74 2e 00 49 50 36 49 50 36 00 49 50 49 50 00 49 50 49 50 36 00 49 50 53 65 63 20 | x-list..IP6IP6.IPIP.IPIP6.IPSec. |
| f2ee0 | 49 4b 45 20 61 6e 64 20 45 53 50 00 49 50 53 65 63 20 49 4b 45 20 61 6e 64 20 45 53 50 20 47 72 | IKE.and.ESP.IPSec.IKE.and.ESP.Gr |
| f2f00 | 6f 75 70 73 3b 00 49 50 53 65 63 20 49 4b 45 76 32 20 52 65 6d 6f 74 65 20 41 63 63 65 73 73 20 | oups;.IPSec.IKEv2.Remote.Access. |
| f2f20 | 56 50 4e 00 49 50 53 65 63 20 49 4b 45 76 32 20 73 69 74 65 32 73 69 74 65 20 56 50 4e 00 49 50 | VPN.IPSec.IKEv2.site2site.VPN.IP |
| f2f40 | 53 65 63 20 49 4b 45 76 32 20 73 69 74 65 32 73 69 74 65 20 56 50 4e 20 28 73 6f 75 72 63 65 20 | Sec.IKEv2.site2site.VPN.(source. |
| f2f60 | 2e 2f 64 72 61 77 2e 69 6f 2f 76 70 6e 5f 73 32 73 5f 69 6b 65 76 32 2e 64 72 61 77 69 6f 29 00 | ./draw.io/vpn_s2s_ikev2.drawio). |
| f2f80 | 49 50 53 65 63 20 56 50 4e 20 54 75 6e 6e 65 6c 73 00 49 50 53 65 63 20 56 50 4e 20 74 75 6e 6e | IPSec.VPN.Tunnels.IPSec.VPN.tunn |
| f2fa0 | 65 6c 73 2e 00 49 50 53 65 63 3a 00 49 50 6f 45 20 53 65 72 76 65 72 00 49 50 6f 45 20 63 61 6e | els..IPSec:.IPoE.Server.IPoE.can |
| f2fc0 | 20 62 65 20 63 6f 6e 66 69 67 75 72 65 20 6f 6e 20 64 69 66 66 65 72 65 6e 74 20 69 6e 74 65 72 | .be.configure.on.different.inter |
| f2fe0 | 66 61 63 65 73 2c 20 69 74 20 77 69 6c 6c 20 64 65 70 65 6e 64 20 6f 6e 20 65 61 63 68 20 73 70 | faces,.it.will.depend.on.each.sp |
| f3000 | 65 63 69 66 69 63 20 73 69 74 75 61 74 69 6f 6e 20 77 68 69 63 68 20 69 6e 74 65 72 66 61 63 65 | ecific.situation.which.interface |
| f3020 | 20 77 69 6c 6c 20 70 72 6f 76 69 64 65 20 49 50 6f 45 20 74 6f 20 63 6c 69 65 6e 74 73 2e 20 54 | .will.provide.IPoE.to.clients..T |
| f3040 | 68 65 20 63 6c 69 65 6e 74 73 20 6d 61 63 20 61 64 64 72 65 73 73 20 61 6e 64 20 74 68 65 20 69 | he.clients.mac.address.and.the.i |
| f3060 | 6e 63 6f 6d 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 62 65 69 6e 67 20 75 73 65 64 20 | ncoming.interface.is.being.used. |
| f3080 | 61 73 20 63 6f 6e 74 72 6f 6c 20 70 61 72 61 6d 65 74 65 72 2c 20 74 6f 20 61 75 74 68 65 6e 74 | as.control.parameter,.to.authent |
| f30a0 | 69 63 61 74 65 20 61 20 63 6c 69 65 6e 74 2e 00 49 50 6f 45 20 63 61 6e 20 62 65 20 63 6f 6e 66 | icate.a.client..IPoE.can.be.conf |
| f30c0 | 69 67 75 72 65 64 20 6f 6e 20 64 69 66 66 65 72 65 6e 74 20 69 6e 74 65 72 66 61 63 65 73 2c 20 | igured.on.different.interfaces,. |
| f30e0 | 69 74 20 77 69 6c 6c 20 64 65 70 65 6e 64 20 6f 6e 20 65 61 63 68 20 73 70 65 63 69 66 69 63 20 | it.will.depend.on.each.specific. |
| f3100 | 73 69 74 75 61 74 69 6f 6e 20 77 68 69 63 68 20 69 6e 74 65 72 66 61 63 65 20 77 69 6c 6c 20 70 | situation.which.interface.will.p |
| f3120 | 72 6f 76 69 64 65 20 49 50 6f 45 20 74 6f 20 63 6c 69 65 6e 74 73 2e 20 54 68 65 20 63 6c 69 65 | rovide.IPoE.to.clients..The.clie |
| f3140 | 6e 74 27 73 20 6d 61 63 20 61 64 64 72 65 73 73 20 61 6e 64 20 74 68 65 20 69 6e 63 6f 6d 69 6e | nt's.mac.address.and.the.incomin |
| f3160 | 67 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 62 65 69 6e 67 20 75 73 65 64 20 61 73 20 63 6f 6e | g.interface.is.being.used.as.con |
| f3180 | 74 72 6f 6c 20 70 61 72 61 6d 65 74 65 72 2c 20 74 6f 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 | trol.parameter,.to.authenticate. |
| f31a0 | 61 20 63 6c 69 65 6e 74 2e 00 49 50 6f 45 20 69 73 20 61 20 6d 65 74 68 6f 64 20 6f 66 20 64 65 | a.client..IPoE.is.a.method.of.de |
| f31c0 | 6c 69 76 65 72 69 6e 67 20 61 6e 20 49 50 20 70 61 79 6c 6f 61 64 20 6f 76 65 72 20 61 6e 20 45 | livering.an.IP.payload.over.an.E |
| f31e0 | 74 68 65 72 6e 65 74 2d 62 61 73 65 64 20 61 63 63 65 73 73 20 6e 65 74 77 6f 72 6b 20 6f 72 20 | thernet-based.access.network.or. |
| f3200 | 61 6e 20 61 63 63 65 73 73 20 6e 65 74 77 6f 72 6b 20 75 73 69 6e 67 20 62 72 69 64 67 65 64 20 | an.access.network.using.bridged. |
| f3220 | 45 74 68 65 72 6e 65 74 20 6f 76 65 72 20 41 73 79 6e 63 68 72 6f 6e 6f 75 73 20 54 72 61 6e 73 | Ethernet.over.Asynchronous.Trans |
| f3240 | 66 65 72 20 4d 6f 64 65 20 28 41 54 4d 29 20 77 69 74 68 6f 75 74 20 75 73 69 6e 67 20 50 50 50 | fer.Mode.(ATM).without.using.PPP |
| f3260 | 6f 45 2e 20 49 74 20 64 69 72 65 63 74 6c 79 20 65 6e 63 61 70 73 75 6c 61 74 65 73 20 74 68 65 | oE..It.directly.encapsulates.the |
| f3280 | 20 49 50 20 64 61 74 61 67 72 61 6d 73 20 69 6e 20 45 74 68 65 72 6e 65 74 20 66 72 61 6d 65 73 | .IP.datagrams.in.Ethernet.frames |
| f32a0 | 2c 20 75 73 69 6e 67 20 74 68 65 20 73 74 61 6e 64 61 72 64 20 3a 72 66 63 3a 60 38 39 34 60 20 | ,.using.the.standard.:rfc:`894`. |
| f32c0 | 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 2e 00 49 50 6f 45 20 73 65 72 76 65 72 20 77 69 6c 6c 20 | encapsulation..IPoE.server.will. |
| f32e0 | 6c 69 73 74 65 6e 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 73 20 65 74 68 31 2e 35 30 20 61 6e 64 | listen.on.interfaces.eth1.50.and |
| f3300 | 20 65 74 68 31 2e 35 31 00 49 50 73 65 63 00 49 50 73 65 63 20 70 6f 6c 69 63 79 20 6d 61 74 63 | .eth1.51.IPsec.IPsec.policy.matc |
| f3320 | 68 69 6e 67 20 47 52 45 00 49 50 76 34 00 49 50 76 34 20 46 69 72 65 77 61 6c 6c 20 43 6f 6e 66 | hing.GRE.IPv4.IPv4.Firewall.Conf |
| f3340 | 69 67 75 72 61 74 69 6f 6e 00 49 50 76 34 20 61 64 64 72 65 73 73 20 6f 66 20 6e 65 78 74 20 62 | iguration.IPv4.address.of.next.b |
| f3360 | 6f 6f 74 73 74 72 61 70 20 73 65 72 76 65 72 00 49 50 76 34 20 61 64 64 72 65 73 73 20 6f 66 20 | ootstrap.server.IPv4.address.of. |
| f3380 | 72 6f 75 74 65 72 20 6f 6e 20 74 68 65 20 63 6c 69 65 6e 74 27 73 20 73 75 62 6e 65 74 00 49 50 | router.on.the.client's.subnet.IP |
| f33a0 | 76 34 20 6f 72 20 49 50 76 36 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 4e 65 74 | v4.or.IPv6.source.address.of.Net |
| f33c0 | 46 6c 6f 77 20 70 61 63 6b 65 74 73 00 49 50 76 34 20 70 65 65 72 69 6e 67 00 49 50 76 34 20 72 | Flow.packets.IPv4.peering.IPv4.r |
| f33e0 | 65 6c 61 79 00 49 50 76 34 20 72 6f 75 74 65 20 61 6e 64 20 49 50 76 36 20 72 6f 75 74 65 20 70 | elay.IPv4.route.and.IPv6.route.p |
| f3400 | 6f 6c 69 63 69 65 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 | olicies.are.defined.in.this.sect |
| f3420 | 69 6f 6e 2e 20 54 68 65 73 65 20 72 6f 75 74 65 20 70 6f 6c 69 63 69 65 73 20 63 61 6e 20 74 68 | ion..These.route.policies.can.th |
| f3440 | 65 6e 20 62 65 20 61 73 73 6f 63 69 61 74 65 64 20 74 6f 20 69 6e 74 65 72 66 61 63 65 73 2e 00 | en.be.associated.to.interfaces.. |
| f3460 | 49 50 76 34 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 | IPv4.route.source:.bgp,.connecte |
| f3480 | 64 2c 20 65 69 67 72 70 2c 20 69 73 69 73 2c 20 6b 65 72 6e 65 6c 2c 20 6e 68 72 70 2c 20 6f 73 | d,.eigrp,.isis,.kernel,.nhrp,.os |
| f34a0 | 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2e 00 49 50 76 34 20 73 65 72 76 65 72 00 49 50 76 | pf,.rip,.static..IPv4.server.IPv |
| f34c0 | 34 2f 49 50 76 36 20 72 65 6d 6f 74 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 56 58 4c | 4/IPv6.remote.address.of.the.VXL |
| f34e0 | 41 4e 20 74 75 6e 6e 65 6c 2e 20 41 6c 74 65 72 6e 61 74 69 76 65 20 74 6f 20 6d 75 6c 74 69 63 | AN.tunnel..Alternative.to.multic |
| f3500 | 61 73 74 2c 20 74 68 65 20 72 65 6d 6f 74 65 20 49 50 76 34 2f 49 50 76 36 20 61 64 64 72 65 73 | ast,.the.remote.IPv4/IPv6.addres |
| f3520 | 73 20 63 61 6e 20 73 65 74 20 64 69 72 65 63 74 6c 79 2e 00 49 50 76 34 2f 49 50 76 36 20 72 65 | s.can.set.directly..IPv4/IPv6.re |
| f3540 | 6d 6f 74 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 56 58 4c 41 4e 20 74 75 6e 6e 65 6c | mote.address.of.the.VXLAN.tunnel |
| f3560 | 2e 20 41 6e 20 61 6c 74 65 72 6e 61 74 69 76 65 20 74 6f 20 6d 75 6c 74 69 63 61 73 74 2c 20 74 | ..An.alternative.to.multicast,.t |
| f3580 | 68 65 20 72 65 6d 6f 74 65 20 49 50 76 34 2f 49 50 76 36 20 61 64 64 72 65 73 73 20 63 61 6e 20 | he.remote.IPv4/IPv6.address.can. |
| f35a0 | 62 65 20 73 65 74 20 64 69 72 65 63 74 6c 79 2e 00 49 50 76 36 00 49 50 76 36 20 41 63 63 65 73 | be.set.directly..IPv6.IPv6.Acces |
| f35c0 | 73 20 4c 69 73 74 00 49 50 76 36 20 41 64 76 61 6e 63 65 64 20 4f 70 74 69 6f 6e 73 00 49 50 76 | s.List.IPv6.Advanced.Options.IPv |
| f35e0 | 36 20 44 48 43 50 76 36 2d 50 44 20 45 78 61 6d 70 6c 65 00 49 50 76 36 20 44 4e 53 20 61 64 64 | 6.DHCPv6-PD.Example.IPv6.DNS.add |
| f3600 | 72 65 73 73 65 73 20 61 72 65 20 6f 70 74 69 6f 6e 61 6c 2e 00 49 50 76 36 20 46 69 72 65 77 61 | resses.are.optional..IPv6.Firewa |
| f3620 | 6c 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 49 50 76 36 20 4d 75 6c 74 69 63 61 73 74 00 | ll.Configuration.IPv6.Multicast. |
| f3640 | 49 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 00 49 50 76 36 20 50 72 65 66 | IPv6.Prefix.Delegation.IPv6.Pref |
| f3660 | 69 78 20 4c 69 73 74 73 00 49 50 76 36 20 53 4c 41 41 43 20 61 6e 64 20 49 41 2d 50 44 00 49 50 | ix.Lists.IPv6.SLAAC.and.IA-PD.IP |
| f3680 | 76 36 20 54 43 50 20 66 69 6c 74 65 72 73 20 77 69 6c 6c 20 6f 6e 6c 79 20 6d 61 74 63 68 20 49 | v6.TCP.filters.will.only.match.I |
| f36a0 | 50 76 36 20 70 61 63 6b 65 74 73 20 77 69 74 68 20 6e 6f 20 68 65 61 64 65 72 20 65 78 74 65 6e | Pv6.packets.with.no.header.exten |
| f36c0 | 73 69 6f 6e 2c 20 73 65 65 20 68 74 74 70 73 3a 2f 2f 65 6e 2e 77 69 6b 69 70 65 64 69 61 2e 6f | sion,.see.https://en.wikipedia.o |
| f36e0 | 72 67 2f 77 69 6b 69 2f 49 50 76 36 5f 70 61 63 6b 65 74 23 45 78 74 65 6e 73 69 6f 6e 5f 68 65 | rg/wiki/IPv6_packet#Extension_he |
| f3700 | 61 64 65 72 73 00 49 50 76 36 20 61 64 64 72 65 73 73 20 60 60 32 30 30 31 3a 64 62 38 3a 3a 31 | aders.IPv6.address.``2001:db8::1 |
| f3720 | 30 31 60 60 20 73 68 61 6c 6c 20 62 65 20 73 74 61 74 69 63 61 6c 6c 79 20 6d 61 70 70 65 64 00 | 01``.shall.be.statically.mapped. |
| f3740 | 49 50 76 36 20 61 64 64 72 65 73 73 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 | IPv6.address.of.route.to.match,. |
| f3760 | 62 61 73 65 64 20 6f 6e 20 49 50 76 36 20 61 63 63 65 73 73 2d 6c 69 73 74 2e 00 49 50 76 36 20 | based.on.IPv6.access-list..IPv6. |
| f3780 | 61 64 64 72 65 73 73 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 | address.of.route.to.match,.based |
| f37a0 | 20 6f 6e 20 49 50 76 36 20 70 72 65 66 69 78 2d 6c 69 73 74 2e 00 49 50 76 36 20 61 64 64 72 65 | .on.IPv6.prefix-list..IPv6.addre |
| f37c0 | 73 73 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 73 | ss.of.route.to.match,.based.on.s |
| f37e0 | 70 65 63 69 66 69 65 64 20 70 72 65 66 69 78 2d 6c 65 6e 67 74 68 2e 20 4e 6f 74 65 20 74 68 61 | pecified.prefix-length..Note.tha |
| f3800 | 74 20 74 68 69 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 66 6f 72 20 6b 65 72 6e 65 6c 20 72 6f | t.this.can.be.used.for.kernel.ro |
| f3820 | 75 74 65 73 20 6f 6e 6c 79 2e 20 44 6f 20 6e 6f 74 20 61 70 70 6c 79 20 74 6f 20 74 68 65 20 72 | utes.only..Do.not.apply.to.the.r |
| f3840 | 6f 75 74 65 73 20 6f 66 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f | outes.of.dynamic.routing.protoco |
| f3860 | 6c 73 20 28 65 2e 67 2e 20 42 47 50 2c 20 52 49 50 2c 20 4f 53 46 50 29 2c 20 61 73 20 74 68 69 | ls.(e.g..BGP,.RIP,.OSFP),.as.thi |
| f3880 | 73 20 63 61 6e 20 6c 65 61 64 20 74 6f 20 75 6e 65 78 70 65 63 74 65 64 20 72 65 73 75 6c 74 73 | s.can.lead.to.unexpected.results |
| f38a0 | 2e 2e 00 49 50 76 36 20 63 6c 69 65 6e 74 27 73 20 70 72 65 66 69 78 00 49 50 76 36 20 63 6c 69 | ...IPv6.client's.prefix.IPv6.cli |
| f38c0 | 65 6e 74 27 73 20 70 72 65 66 69 78 20 61 73 73 69 67 6e 6d 65 6e 74 00 49 50 76 36 20 64 65 66 | ent's.prefix.assignment.IPv6.def |
| f38e0 | 61 75 6c 74 20 63 6c 69 65 6e 74 27 73 20 70 6f 6f 6c 20 61 73 73 69 67 6e 6d 65 6e 74 00 49 50 | ault.client's.pool.assignment.IP |
| f3900 | 76 36 20 70 65 65 72 69 6e 67 00 49 50 76 36 20 70 72 65 66 69 78 20 60 60 32 30 30 31 3a 64 62 | v6.peering.IPv6.prefix.``2001:db |
| f3920 | 38 3a 30 3a 31 30 31 3a 3a 2f 36 34 60 60 20 73 68 61 6c 6c 20 62 65 20 73 74 61 74 69 63 61 6c | 8:0:101::/64``.shall.be.statical |
| f3940 | 6c 79 20 6d 61 70 70 65 64 00 49 50 76 36 20 70 72 65 66 69 78 2e 00 49 50 76 36 20 72 65 6c 61 | ly.mapped.IPv6.prefix..IPv6.rela |
| f3960 | 79 00 49 50 76 36 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 | y.IPv6.route.source:.bgp,.connec |
| f3980 | 74 65 64 2c 20 65 69 67 72 70 2c 20 69 73 69 73 2c 20 6b 65 72 6e 65 6c 2c 20 6e 68 72 70 2c 20 | ted,.eigrp,.isis,.kernel,.nhrp,. |
| f39a0 | 6f 73 70 66 76 33 2c 20 72 69 70 6e 67 2c 20 73 74 61 74 69 63 2e 00 49 50 76 36 20 73 65 72 76 | ospfv3,.ripng,.static..IPv6.serv |
| f39c0 | 65 72 00 49 50 76 36 20 73 75 70 70 6f 72 74 00 49 53 2d 49 53 00 49 53 2d 49 53 20 47 6c 6f 62 | er.IPv6.support.IS-IS.IS-IS.Glob |
| f39e0 | 61 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 49 53 2d 49 53 20 53 52 20 43 6f 6e 66 69 67 | al.Configuration.IS-IS.SR.Config |
| f3a00 | 75 72 61 74 69 6f 6e 00 49 53 43 2d 44 48 43 50 20 4f 70 74 69 6f 6e 20 6e 61 6d 65 00 49 64 65 | uration.ISC-DHCP.Option.name.Ide |
| f3a20 | 6e 74 69 74 79 20 42 61 73 65 64 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 49 66 20 2a 2a 6d | ntity.Based.Configuration.If.**m |
| f3a40 | 61 78 2d 74 68 72 65 73 68 6f 6c 64 2a 2a 20 69 73 20 73 65 74 20 62 75 74 20 2a 2a 6d 69 6e 2d | ax-threshold**.is.set.but.**min- |
| f3a60 | 74 68 72 65 73 68 6f 6c 64 20 69 73 20 6e 6f 74 2c 20 74 68 65 6e 20 2a 2a 6d 69 6e 2d 74 68 72 | threshold.is.not,.then.**min-thr |
| f3a80 | 65 73 68 6f 6c 64 2a 2a 20 69 73 20 73 63 61 6c 65 64 20 74 6f 20 35 30 25 20 6f 66 20 2a 2a 6d | eshold**.is.scaled.to.50%.of.**m |
| f3aa0 | 61 78 2d 74 68 72 65 73 68 6f 6c 64 2a 2a 2e 00 49 66 20 3a 63 66 67 63 6d 64 3a 60 73 74 72 69 | ax-threshold**..If.:cfgcmd:`stri |
| f3ac0 | 63 74 60 20 69 73 20 73 65 74 20 74 68 65 20 42 47 50 20 73 65 73 73 69 6f 6e 20 77 6f 6e e2 80 | ct`.is.set.the.BGP.session.won.. |
| f3ae0 | 99 74 20 62 65 63 6f 6d 65 20 65 73 74 61 62 6c 69 73 68 65 64 20 75 6e 74 69 6c 20 74 68 65 20 | .t.become.established.until.the. |
| f3b00 | 42 47 50 20 6e 65 69 67 68 62 6f 72 20 73 65 74 73 20 6c 6f 63 61 6c 20 52 6f 6c 65 20 6f 6e 20 | BGP.neighbor.sets.local.Role.on. |
| f3b20 | 69 74 73 20 73 69 64 65 2e 20 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 | its.side..This.configuration.par |
| f3b40 | 61 6d 65 74 65 72 20 69 73 20 64 65 66 69 6e 65 64 20 69 6e 20 52 46 43 20 3a 72 66 63 3a 60 39 | ameter.is.defined.in.RFC.:rfc:`9 |
| f3b60 | 32 33 34 60 20 61 6e 64 20 69 73 20 75 73 65 64 20 74 6f 20 65 6e 66 6f 72 63 65 20 74 68 65 20 | 234`.and.is.used.to.enforce.the. |
| f3b80 | 63 6f 72 72 65 73 70 6f 6e 64 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 74 20 79 | corresponding.configuration.at.y |
| f3ba0 | 6f 75 72 20 63 6f 75 6e 74 65 72 2d 70 61 72 74 73 20 73 69 64 65 2e 00 49 66 20 41 52 50 20 6d | our.counter-parts.side..If.ARP.m |
| f3bc0 | 6f 6e 69 74 6f 72 69 6e 67 20 69 73 20 75 73 65 64 20 69 6e 20 61 6e 20 65 74 68 65 72 63 68 61 | onitoring.is.used.in.an.ethercha |
| f3be0 | 6e 6e 65 6c 20 63 6f 6d 70 61 74 69 62 6c 65 20 6d 6f 64 65 20 28 6d 6f 64 65 73 20 72 6f 75 6e | nnel.compatible.mode.(modes.roun |
| f3c00 | 64 2d 72 6f 62 69 6e 20 61 6e 64 20 78 6f 72 2d 68 61 73 68 29 2c 20 74 68 65 20 73 77 69 74 63 | d-robin.and.xor-hash),.the.switc |
| f3c20 | 68 20 73 68 6f 75 6c 64 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 61 20 6d 6f 64 65 | h.should.be.configured.in.a.mode |
| f3c40 | 20 74 68 61 74 20 65 76 65 6e 6c 79 20 64 69 73 74 72 69 62 75 74 65 73 20 70 61 63 6b 65 74 73 | .that.evenly.distributes.packets |
| f3c60 | 20 61 63 72 6f 73 73 20 61 6c 6c 20 6c 69 6e 6b 73 2e 20 49 66 20 74 68 65 20 73 77 69 74 63 68 | .across.all.links..If.the.switch |
| f3c80 | 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 64 69 73 74 72 69 62 75 74 65 20 74 68 65 | .is.configured.to.distribute.the |
| f3ca0 | 20 70 61 63 6b 65 74 73 20 69 6e 20 61 6e 20 58 4f 52 20 66 61 73 68 69 6f 6e 2c 20 61 6c 6c 20 | .packets.in.an.XOR.fashion,.all. |
| f3cc0 | 72 65 70 6c 69 65 73 20 66 72 6f 6d 20 74 68 65 20 41 52 50 20 74 61 72 67 65 74 73 20 77 69 6c | replies.from.the.ARP.targets.wil |
| f3ce0 | 6c 20 62 65 20 72 65 63 65 69 76 65 64 20 6f 6e 20 74 68 65 20 73 61 6d 65 20 6c 69 6e 6b 20 77 | l.be.received.on.the.same.link.w |
| f3d00 | 68 69 63 68 20 63 6f 75 6c 64 20 63 61 75 73 65 20 74 68 65 20 6f 74 68 65 72 20 74 65 61 6d 20 | hich.could.cause.the.other.team. |
| f3d20 | 6d 65 6d 62 65 72 73 20 74 6f 20 66 61 69 6c 2e 00 49 66 20 43 41 20 69 73 20 70 72 65 73 65 6e | members.to.fail..If.CA.is.presen |
| f3d40 | 74 2c 20 74 68 69 73 20 63 65 72 74 69 66 69 63 61 74 65 20 77 69 6c 6c 20 62 65 20 69 6e 63 6c | t,.this.certificate.will.be.incl |
| f3d60 | 75 64 65 64 20 69 6e 20 67 65 6e 65 72 61 74 65 64 20 43 52 4c 73 00 49 66 20 43 4c 49 20 6f 70 | uded.in.generated.CRLs.If.CLI.op |
| f3d80 | 74 69 6f 6e 20 69 73 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 2c 20 74 68 69 73 20 66 65 61 74 | tion.is.not.specified,.this.feat |
| f3da0 | 75 72 65 20 69 73 20 64 69 73 61 62 6c 65 64 2e 00 49 66 20 50 49 4d 20 68 61 73 20 74 68 65 20 | ure.is.disabled..If.PIM.has.the. |
| f3dc0 | 61 20 63 68 6f 69 63 65 20 6f 66 20 45 43 4d 50 20 6e 65 78 74 68 6f 70 73 20 66 6f 72 20 61 20 | a.choice.of.ECMP.nexthops.for.a. |
| f3de0 | 70 61 72 74 69 63 75 6c 61 72 20 3a 61 62 62 72 3a 60 52 50 46 20 28 52 65 76 65 72 73 65 20 50 | particular.:abbr:`RPF.(Reverse.P |
| f3e00 | 61 74 68 20 46 6f 72 77 61 72 64 69 6e 67 29 60 2c 20 50 49 4d 20 77 69 6c 6c 20 63 61 75 73 65 | ath.Forwarding)`,.PIM.will.cause |
| f3e20 | 20 53 2c 47 20 66 6c 6f 77 73 20 74 6f 20 62 65 20 73 70 72 65 61 64 20 6f 75 74 20 61 6d 6f 6e | .S,G.flows.to.be.spread.out.amon |
| f3e40 | 67 73 74 20 74 68 65 20 6e 65 78 74 68 6f 70 73 2e 20 49 66 20 74 68 69 73 20 63 6f 6d 6d 61 6e | gst.the.nexthops..If.this.comman |
| f3e60 | 64 20 69 73 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 20 74 68 65 6e 20 74 68 65 20 66 69 72 73 | d.is.not.specified.then.the.firs |
| f3e80 | 74 20 6e 65 78 74 68 6f 70 20 66 6f 75 6e 64 20 77 69 6c 6c 20 62 65 20 75 73 65 64 2e 00 49 66 | t.nexthop.found.will.be.used..If |
| f3ea0 | 20 50 49 4d 20 69 73 20 75 73 69 6e 67 20 45 43 4d 50 20 61 6e 64 20 61 6e 20 69 6e 74 65 72 66 | .PIM.is.using.ECMP.and.an.interf |
| f3ec0 | 61 63 65 20 67 6f 65 73 20 64 6f 77 6e 2c 20 63 61 75 73 65 20 50 49 4d 20 74 6f 20 72 65 62 61 | ace.goes.down,.cause.PIM.to.reba |
| f3ee0 | 6c 61 6e 63 65 20 61 6c 6c 20 53 2c 47 20 66 6c 6f 77 73 20 61 63 72 6f 73 73 20 74 68 65 20 72 | lance.all.S,G.flows.across.the.r |
| f3f00 | 65 6d 61 69 6e 69 6e 67 20 6e 65 78 74 68 6f 70 73 2e 20 49 66 20 74 68 69 73 20 63 6f 6d 6d 61 | emaining.nexthops..If.this.comma |
| f3f20 | 6e 64 20 69 73 20 6e 6f 74 20 63 6f 6e 66 69 67 75 72 65 64 20 50 49 4d 20 6f 6e 6c 79 20 6d 6f | nd.is.not.configured.PIM.only.mo |
| f3f40 | 64 69 66 69 65 73 20 74 68 6f 73 65 20 53 2c 47 20 66 6c 6f 77 73 20 74 68 61 74 20 77 65 72 65 | difies.those.S,G.flows.that.were |
| f3f60 | 20 75 73 69 6e 67 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 68 61 74 20 77 65 6e 74 20 64 | .using.the.interface.that.went.d |
| f3f80 | 6f 77 6e 2e 00 49 66 20 60 60 61 6c 69 61 73 60 60 20 69 73 20 73 65 74 2c 20 69 74 20 63 61 6e | own..If.``alias``.is.set,.it.can |
| f3fa0 | 20 62 65 20 75 73 65 64 20 69 6e 73 74 65 61 64 20 6f 66 20 74 68 65 20 64 65 76 69 63 65 20 77 | .be.used.instead.of.the.device.w |
| f3fc0 | 68 65 6e 20 63 6f 6e 6e 65 63 74 69 6e 67 2e 00 49 66 20 60 60 61 6c 6c 60 60 20 69 73 20 73 70 | hen.connecting..If.``all``.is.sp |
| f3fe0 | 65 63 69 66 69 65 64 2c 20 72 65 6d 6f 76 65 20 61 6c 6c 20 41 53 20 6e 75 6d 62 65 72 73 20 66 | ecified,.remove.all.AS.numbers.f |
| f4000 | 72 6f 6d 20 74 68 65 20 41 53 5f 50 41 54 48 20 6f 66 20 74 68 65 20 42 47 50 20 70 61 74 68 27 | rom.the.AS_PATH.of.the.BGP.path' |
| f4020 | 73 20 4e 4c 52 49 2e 00 49 66 20 61 20 6c 6f 63 61 6c 20 66 69 72 65 77 61 6c 6c 20 70 6f 6c 69 | s.NLRI..If.a.local.firewall.poli |
| f4040 | 63 79 20 69 73 20 69 6e 20 70 6c 61 63 65 20 6f 6e 20 79 6f 75 72 20 65 78 74 65 72 6e 61 6c 20 | cy.is.in.place.on.your.external. |
| f4060 | 69 6e 74 65 72 66 61 63 65 20 79 6f 75 20 77 69 6c 6c 20 6e 65 65 64 20 74 6f 20 61 6c 6c 6f 77 | interface.you.will.need.to.allow |
| f4080 | 20 74 68 65 20 70 6f 72 74 73 20 62 65 6c 6f 77 3a 00 49 66 20 61 20 72 65 67 69 73 74 72 79 20 | .the.ports.below:.If.a.registry. |
| f40a0 | 69 73 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 2c 20 44 6f 63 6b 65 72 2e 69 6f 20 77 69 6c 6c | is.not.specified,.Docker.io.will |
| f40c0 | 20 62 65 20 75 73 65 64 20 61 73 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 72 65 67 69 73 74 | .be.used.as.the.container.regist |
| f40e0 | 72 79 20 75 6e 6c 65 73 73 20 61 6e 20 61 6c 74 65 72 6e 61 74 69 76 65 20 72 65 67 69 73 74 72 | ry.unless.an.alternative.registr |
| f4100 | 79 20 69 73 20 73 70 65 63 69 66 69 65 64 20 75 73 69 6e 67 20 2a 2a 73 65 74 20 63 6f 6e 74 61 | y.is.specified.using.**set.conta |
| f4120 | 69 6e 65 72 20 72 65 67 69 73 74 72 79 20 3c 6e 61 6d 65 3e 2a 2a 20 6f 72 20 74 68 65 20 72 65 | iner.registry.<name>**.or.the.re |
| f4140 | 67 69 73 74 72 79 20 69 73 20 69 6e 63 6c 75 64 65 64 20 69 6e 20 74 68 65 20 69 6d 61 67 65 20 | gistry.is.included.in.the.image. |
| f4160 | 6e 61 6d 65 00 49 66 20 61 20 72 65 73 70 6f 6e 73 65 20 69 73 20 68 65 61 72 64 2c 20 74 68 65 | name.If.a.response.is.heard,.the |
| f4180 | 20 6c 65 61 73 65 20 69 73 20 61 62 61 6e 64 6f 6e 65 64 2c 20 61 6e 64 20 74 68 65 20 73 65 72 | .lease.is.abandoned,.and.the.ser |
| f41a0 | 76 65 72 20 64 6f 65 73 20 6e 6f 74 20 72 65 73 70 6f 6e 64 20 74 6f 20 74 68 65 20 63 6c 69 65 | ver.does.not.respond.to.the.clie |
| f41c0 | 6e 74 2e 20 54 68 65 20 6c 65 61 73 65 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 61 62 61 6e 64 6f | nt..The.lease.will.remain.abando |
| f41e0 | 6e 65 64 20 66 6f 72 20 61 20 6d 69 6e 69 6d 75 6d 20 6f 66 20 61 62 61 6e 64 6f 6e 2d 6c 65 61 | ned.for.a.minimum.of.abandon-lea |
| f4200 | 73 65 2d 74 69 6d 65 20 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 73 20 74 6f 20 32 34 20 | se-time.seconds.(defaults.to.24. |
| f4220 | 68 6f 75 72 73 29 2e 00 49 66 20 61 20 72 6f 75 74 65 20 68 61 73 20 61 6e 20 4f 52 49 47 49 4e | hours)..If.a.route.has.an.ORIGIN |
| f4240 | 41 54 4f 52 5f 49 44 20 61 74 74 72 69 62 75 74 65 20 62 65 63 61 75 73 65 20 69 74 20 68 61 73 | ATOR_ID.attribute.because.it.has |
| f4260 | 20 62 65 65 6e 20 72 65 66 6c 65 63 74 65 64 2c 20 74 68 61 74 20 4f 52 49 47 49 4e 41 54 4f 52 | .been.reflected,.that.ORIGINATOR |
| f4280 | 5f 49 44 20 77 69 6c 6c 20 62 65 20 75 73 65 64 2e 20 4f 74 68 65 72 77 69 73 65 2c 20 74 68 65 | _ID.will.be.used..Otherwise,.the |
| f42a0 | 20 72 6f 75 74 65 72 2d 49 44 20 6f 66 20 74 68 65 20 70 65 65 72 20 74 68 65 20 72 6f 75 74 65 | .router-ID.of.the.peer.the.route |
| f42c0 | 20 77 61 73 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 77 69 6c 6c 20 62 65 20 75 73 65 64 2e | .was.received.from.will.be.used. |
| f42e0 | 00 49 66 20 61 20 72 75 6c 65 20 69 73 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 61 6e 20 61 | .If.a.rule.is.defined,.then.an.a |
| f4300 | 63 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 64 65 66 69 6e 65 64 20 66 6f 72 20 69 74 2e 20 54 68 | ction.must.be.defined.for.it..Th |
| f4320 | 69 73 20 74 65 6c 6c 73 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 77 68 61 74 20 74 6f 20 64 6f | is.tells.the.firewall.what.to.do |
| f4340 | 20 69 66 20 61 6c 6c 20 63 72 69 74 65 72 69 61 20 6d 61 74 63 68 65 72 73 20 64 65 66 69 6e 65 | .if.all.criteria.matchers.define |
| f4360 | 64 20 66 6f 72 20 73 75 63 68 20 72 75 6c 65 20 64 6f 20 6d 61 74 63 68 2e 00 49 66 20 61 20 72 | d.for.such.rule.do.match..If.a.r |
| f4380 | 75 6c 65 20 69 73 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 61 6e 20 61 63 74 69 6f 6e 20 6d | ule.is.defined,.then.an.action.m |
| f43a0 | 75 73 74 20 62 65 20 64 65 66 69 6e 65 64 20 66 6f 72 20 69 74 2e 20 54 68 69 73 20 74 65 6c 6c | ust.be.defined.for.it..This.tell |
| f43c0 | 73 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 77 68 61 74 20 74 6f 20 64 6f 20 69 66 20 61 6c 6c | s.the.firewall.what.to.do.if.all |
| f43e0 | 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 65 61 20 69 6e 20 74 68 65 20 72 75 6c 65 20 61 | .matching.criterea.in.the.rule.a |
| f4400 | 72 65 20 6d 65 74 2e 00 49 66 20 61 20 72 75 6c 65 20 69 73 20 64 65 66 69 6e 65 64 2c 20 74 68 | re.met..If.a.rule.is.defined,.th |
| f4420 | 65 6e 20 61 6e 20 61 63 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 64 65 66 69 6e 65 64 20 66 6f 72 | en.an.action.must.be.defined.for |
| f4440 | 20 69 74 2e 20 54 68 69 73 20 74 65 6c 6c 73 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 77 68 61 | .it..This.tells.the.firewall.wha |
| f4460 | 74 20 74 6f 20 64 6f 20 69 66 20 61 6c 6c 20 6f 66 20 74 68 65 20 63 72 69 74 65 72 69 61 20 64 | t.to.do.if.all.of.the.criteria.d |
| f4480 | 65 66 69 6e 65 64 20 66 6f 72 20 74 68 61 74 20 72 75 6c 65 20 6d 61 74 63 68 2e 00 49 66 20 61 | efined.for.that.rule.match..If.a |
| f44a0 | 20 74 68 65 72 65 20 61 72 65 20 6e 6f 20 66 72 65 65 20 61 64 64 72 65 73 73 65 73 20 62 75 74 | .there.are.no.free.addresses.but |
| f44c0 | 20 74 68 65 72 65 20 61 72 65 20 61 62 61 6e 64 6f 6e 65 64 20 49 50 20 61 64 64 72 65 73 73 65 | .there.are.abandoned.IP.addresse |
| f44e0 | 73 2c 20 74 68 65 20 44 48 43 50 20 73 65 72 76 65 72 20 77 69 6c 6c 20 61 74 74 65 6d 70 74 20 | s,.the.DHCP.server.will.attempt. |
| f4500 | 74 6f 20 72 65 63 6c 61 69 6d 20 61 6e 20 61 62 61 6e 64 6f 6e 65 64 20 49 50 20 61 64 64 72 65 | to.reclaim.an.abandoned.IP.addre |
| f4520 | 73 73 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 76 61 6c 75 65 20 6f 66 20 61 62 | ss.regardless.of.the.value.of.ab |
| f4540 | 61 6e 64 6f 6e 2d 6c 65 61 73 65 2d 74 69 6d 65 2e 00 49 66 20 61 63 74 69 6f 6e 20 69 73 20 73 | andon-lease-time..If.action.is.s |
| f4560 | 65 74 20 74 6f 20 60 60 71 75 65 75 65 60 60 2c 20 75 73 65 20 6e 65 78 74 20 63 6f 6d 6d 61 6e | et.to.``queue``,.use.next.comman |
| f4580 | 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 71 75 65 75 65 20 74 61 72 67 65 74 2e 20 52 | d.to.specify.the.queue.target..R |
| f45a0 | 61 6e 67 65 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 3a 00 49 66 20 61 6e 20 49 53 | ange.is.also.supported:.If.an.IS |
| f45c0 | 50 20 64 65 70 6c 6f 79 73 20 61 20 3a 61 62 62 72 3a 60 43 47 4e 20 28 43 61 72 72 69 65 72 2d | P.deploys.a.:abbr:`CGN.(Carrier- |
| f45e0 | 67 72 61 64 65 20 4e 41 54 29 60 2c 20 61 6e 64 20 75 73 65 73 20 3a 72 66 63 3a 60 31 39 31 38 | grade.NAT)`,.and.uses.:rfc:`1918 |
| f4600 | 60 20 61 64 64 72 65 73 73 20 73 70 61 63 65 20 74 6f 20 6e 75 6d 62 65 72 20 63 75 73 74 6f 6d | `.address.space.to.number.custom |
| f4620 | 65 72 20 67 61 74 65 77 61 79 73 2c 20 74 68 65 20 72 69 73 6b 20 6f 66 20 61 64 64 72 65 73 73 | er.gateways,.the.risk.of.address |
| f4640 | 20 63 6f 6c 6c 69 73 69 6f 6e 2c 20 61 6e 64 20 74 68 65 72 65 66 6f 72 65 20 72 6f 75 74 69 6e | .collision,.and.therefore.routin |
| f4660 | 67 20 66 61 69 6c 75 72 65 73 2c 20 61 72 69 73 65 73 20 77 68 65 6e 20 74 68 65 20 63 75 73 74 | g.failures,.arises.when.the.cust |
| f4680 | 6f 6d 65 72 20 6e 65 74 77 6f 72 6b 20 61 6c 72 65 61 64 79 20 75 73 65 73 20 61 6e 20 3a 72 66 | omer.network.already.uses.an.:rf |
| f46a0 | 63 3a 60 31 39 31 38 60 20 61 64 64 72 65 73 73 20 73 70 61 63 65 2e 00 49 66 20 61 6e 20 61 6e | c:`1918`.address.space..If.an.an |
| f46c0 | 6f 74 68 65 72 20 62 72 69 64 67 65 20 69 6e 20 74 68 65 20 73 70 61 6e 6e 69 6e 67 20 74 72 65 | other.bridge.in.the.spanning.tre |
| f46e0 | 65 20 64 6f 65 73 20 6e 6f 74 20 73 65 6e 64 20 6f 75 74 20 61 20 68 65 6c 6c 6f 20 70 61 63 6b | e.does.not.send.out.a.hello.pack |
| f4700 | 65 74 20 66 6f 72 20 61 20 6c 6f 6e 67 20 70 65 72 69 6f 64 20 6f 66 20 74 69 6d 65 2c 20 69 74 | et.for.a.long.period.of.time,.it |
| f4720 | 20 69 73 20 61 73 73 75 6d 65 64 20 74 6f 20 62 65 20 64 65 61 64 2e 00 49 66 20 61 6e 20 69 6e | .is.assumed.to.be.dead..If.an.in |
| f4740 | 74 65 72 66 61 63 65 20 69 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 6e 6f 6e 2d 64 65 66 | terface.is.attached.to.a.non-def |
| f4760 | 61 75 6c 74 20 76 72 66 2c 20 77 68 65 6e 20 75 73 69 6e 67 20 2a 2a 69 6e 62 6f 75 6e 64 2d 69 | ault.vrf,.when.using.**inbound-i |
| f4780 | 6e 74 65 72 66 61 63 65 2a 2a 2c 20 74 68 65 20 76 72 66 20 6e 61 6d 65 20 6d 75 73 74 20 62 65 | nterface**,.the.vrf.name.must.be |
| f47a0 | 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 73 65 74 20 66 69 72 65 77 61 6c | .used..For.example.``set.firewal |
| f47c0 | 6c 20 69 70 76 34 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 72 75 6c 65 20 31 30 20 69 6e | l.ipv4.forward.filter.rule.10.in |
| f47e0 | 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 4d 47 4d 54 60 60 00 49 66 20 61 | bound-interface.name.MGMT``.If.a |
| f4800 | 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 6e 6f 6e | n.interface.is.attached.to.a.non |
| f4820 | 2d 64 65 66 61 75 6c 74 20 76 72 66 2c 20 77 68 65 6e 20 75 73 69 6e 67 20 2a 2a 69 6e 62 6f 75 | -default.vrf,.when.using.**inbou |
| f4840 | 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 2c 20 74 68 65 20 76 72 66 20 6e 61 6d 65 20 6d 75 73 | nd-interface**,.the.vrf.name.mus |
| f4860 | 74 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 73 65 74 20 66 69 72 | t.be.used..For.example.``set.fir |
| f4880 | 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 72 75 6c 65 20 31 | ewall.ipv6.forward.filter.rule.1 |
| f48a0 | 30 20 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 4d 47 4d 54 60 60 00 | 0.inbound-interface.name.MGMT``. |
| f48c0 | 49 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 | If.an.interface.is.attached.to.a |
| f48e0 | 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 20 76 72 66 2c 20 77 68 65 6e 20 75 73 69 6e 67 20 2a 2a 69 | .non-default.vrf,.when.using.**i |
| f4900 | 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 2c 20 76 72 66 20 6e 61 6d 65 20 6d 75 73 | nbound-interface**,.vrf.name.mus |
| f4920 | 74 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 73 65 74 20 66 69 72 | t.be.used..For.example.``set.fir |
| f4940 | 65 77 61 6c 6c 20 69 70 76 34 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 72 75 6c 65 20 31 | ewall.ipv4.forward.filter.rule.1 |
| f4960 | 30 20 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 4d 47 4d 54 60 60 00 | 0.inbound-interface.name.MGMT``. |
| f4980 | 49 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 | If.an.interface.is.attached.to.a |
| f49a0 | 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 20 76 72 66 2c 20 77 68 65 6e 20 75 73 69 6e 67 20 2a 2a 69 | .non-default.vrf,.when.using.**i |
| f49c0 | 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 2c 20 76 72 66 20 6e 61 6d 65 20 6d 75 73 | nbound-interface**,.vrf.name.mus |
| f49e0 | 74 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 73 65 74 20 66 69 72 | t.be.used..For.example.``set.fir |
| f4a00 | 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 72 75 6c 65 20 31 | ewall.ipv6.forward.filter.rule.1 |
| f4a20 | 30 20 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 4d 47 4d 54 60 60 00 | 0.inbound-interface.name.MGMT``. |
| f4a40 | 49 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 | If.an.interface.is.attached.to.a |
| f4a60 | 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 20 76 72 66 2c 20 77 68 65 6e 20 75 73 69 6e 67 20 2a 2a 6f | .non-default.vrf,.when.using.**o |
| f4a80 | 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 2c 20 72 65 61 6c 20 69 6e 74 65 72 66 | utbound-interface**,.real.interf |
| f4aa0 | 61 63 65 20 6e 61 6d 65 20 6d 75 73 74 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 | ace.name.must.be.used..For.examp |
| f4ac0 | 6c 65 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 66 6f 72 77 61 72 64 20 66 | le.``set.firewall.ipv4.forward.f |
| f4ae0 | 69 6c 74 65 72 20 72 75 6c 65 20 31 30 20 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 | ilter.rule.10.outbound-interface |
| f4b00 | 20 6e 61 6d 65 20 65 74 68 30 60 60 00 49 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 | .name.eth0``.If.an.interface.is. |
| f4b20 | 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 20 76 72 66 2c 20 77 | attached.to.a.non-default.vrf,.w |
| f4b40 | 68 65 6e 20 75 73 69 6e 67 20 2a 2a 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a | hen.using.**outbound-interface** |
| f4b60 | 2c 20 72 65 61 6c 20 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 6d 75 73 74 20 62 65 20 75 73 | ,.real.interface.name.must.be.us |
| f4b80 | 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 | ed..For.example.``set.firewall.i |
| f4ba0 | 70 76 36 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 72 75 6c 65 20 31 30 20 6f 75 74 62 6f | pv6.forward.filter.rule.10.outbo |
| f4bc0 | 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 65 74 68 30 60 60 00 49 66 20 61 6e 20 | und-interface.name.eth0``.If.an. |
| f4be0 | 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 6e 6f 6e 2d 64 | interface.is.attached.to.a.non-d |
| f4c00 | 65 66 61 75 6c 74 20 76 72 66 2c 20 77 68 65 6e 20 75 73 69 6e 67 20 2a 2a 6f 75 74 62 6f 75 6e | efault.vrf,.when.using.**outboun |
| f4c20 | 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 2c 20 74 68 65 20 72 65 61 6c 20 69 6e 74 65 72 66 61 63 | d-interface**,.the.real.interfac |
| f4c40 | 65 20 6e 61 6d 65 20 6d 75 73 74 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 | e.name.must.be.used..For.example |
| f4c60 | 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 66 6f 72 77 61 72 64 20 66 69 6c | .``set.firewall.ipv4.forward.fil |
| f4c80 | 74 65 72 20 72 75 6c 65 20 31 30 20 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 20 6e | ter.rule.10.outbound-interface.n |
| f4ca0 | 61 6d 65 20 65 74 68 30 60 60 00 49 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 74 | ame.eth0``.If.an.interface.is.at |
| f4cc0 | 74 61 63 68 65 64 20 74 6f 20 61 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 20 76 72 66 2c 20 77 68 65 | tached.to.a.non-default.vrf,.whe |
| f4ce0 | 6e 20 75 73 69 6e 67 20 2a 2a 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 2c 20 | n.using.**outbound-interface**,. |
| f4d00 | 74 68 65 20 72 65 61 6c 20 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 6d 75 73 74 20 62 65 20 | the.real.interface.name.must.be. |
| f4d20 | 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c | used..For.example.``set.firewall |
| f4d40 | 20 69 70 76 36 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 72 75 6c 65 20 31 30 20 6f 75 74 | .ipv6.forward.filter.rule.10.out |
| f4d60 | 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 65 74 68 30 60 60 00 49 66 20 63 | bound-interface.name.eth0``.If.c |
| f4d80 | 68 6f 6f 73 69 6e 67 20 61 20 76 61 6c 75 65 20 62 65 6c 6f 77 20 33 31 20 73 65 63 6f 6e 64 73 | hoosing.a.value.below.31.seconds |
| f4da0 | 20 62 65 20 61 77 61 72 65 20 74 68 61 74 20 73 6f 6d 65 20 68 61 72 64 77 61 72 65 20 70 6c 61 | .be.aware.that.some.hardware.pla |
| f4dc0 | 74 66 6f 72 6d 73 20 63 61 6e 6e 6f 74 20 73 65 65 20 64 61 74 61 20 66 6c 6f 77 69 6e 67 20 69 | tforms.cannot.see.data.flowing.i |
| f4de0 | 6e 20 62 65 74 74 65 72 20 74 68 61 6e 20 33 30 20 73 65 63 6f 6e 64 20 63 68 75 6e 6b 73 2e 00 | n.better.than.30.second.chunks.. |
| f4e00 | 49 66 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 69 6e 63 6f 6d 69 6e 67 20 49 50 20 64 69 72 65 63 | If.configured,.incoming.IP.direc |
| f4e20 | 74 65 64 20 62 72 6f 61 64 63 61 73 74 20 70 61 63 6b 65 74 73 20 6f 6e 20 74 68 69 73 20 69 6e | ted.broadcast.packets.on.this.in |
| f4e40 | 74 65 72 66 61 63 65 20 77 69 6c 6c 20 62 65 20 66 6f 72 77 61 72 64 65 64 2e 00 49 66 20 63 6f | terface.will.be.forwarded..If.co |
| f4e60 | 6e 66 69 67 75 72 65 64 2c 20 72 65 70 6c 79 20 6f 6e 6c 79 20 69 66 20 74 68 65 20 74 61 72 67 | nfigured,.reply.only.if.the.targ |
| f4e80 | 65 74 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 6c 6f 63 61 6c 20 61 64 64 72 65 73 73 20 63 | et.IP.address.is.local.address.c |
| f4ea0 | 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 74 68 65 20 69 6e 63 6f 6d 69 6e 67 20 69 6e 74 65 72 66 | onfigured.on.the.incoming.interf |
| f4ec0 | 61 63 65 2e 00 49 66 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 74 72 79 20 74 6f 20 61 76 6f 69 64 | ace..If.configured,.try.to.avoid |
| f4ee0 | 20 6c 6f 63 61 6c 20 61 64 64 72 65 73 73 65 73 20 74 68 61 74 20 61 72 65 20 6e 6f 74 20 69 6e | .local.addresses.that.are.not.in |
| f4f00 | 20 74 68 65 20 74 61 72 67 65 74 27 73 20 73 75 62 6e 65 74 20 66 6f 72 20 74 68 69 73 20 69 6e | .the.target's.subnet.for.this.in |
| f4f20 | 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 6d 6f 64 65 20 69 73 20 75 73 65 66 75 6c 20 77 68 65 | terface..This.mode.is.useful.whe |
| f4f40 | 6e 20 74 61 72 67 65 74 20 68 6f 73 74 73 20 72 65 61 63 68 61 62 6c 65 20 76 69 61 20 74 68 69 | n.target.hosts.reachable.via.thi |
| f4f60 | 73 20 69 6e 74 65 72 66 61 63 65 20 72 65 71 75 69 72 65 20 74 68 65 20 73 6f 75 72 63 65 20 49 | s.interface.require.the.source.I |
| f4f80 | 50 20 61 64 64 72 65 73 73 20 69 6e 20 41 52 50 20 72 65 71 75 65 73 74 73 20 74 6f 20 62 65 20 | P.address.in.ARP.requests.to.be. |
| f4fa0 | 70 61 72 74 20 6f 66 20 74 68 65 69 72 20 6c 6f 67 69 63 61 6c 20 6e 65 74 77 6f 72 6b 20 63 6f | part.of.their.logical.network.co |
| f4fc0 | 6e 66 69 67 75 72 65 64 20 6f 6e 20 74 68 65 20 72 65 63 65 69 76 69 6e 67 20 69 6e 74 65 72 66 | nfigured.on.the.receiving.interf |
| f4fe0 | 61 63 65 2e 20 57 68 65 6e 20 77 65 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 72 65 71 75 65 73 | ace..When.we.generate.the.reques |
| f5000 | 74 20 77 65 20 77 69 6c 6c 20 63 68 65 63 6b 20 61 6c 6c 20 6f 75 72 20 73 75 62 6e 65 74 73 20 | t.we.will.check.all.our.subnets. |
| f5020 | 74 68 61 74 20 69 6e 63 6c 75 64 65 20 74 68 65 20 74 61 72 67 65 74 20 49 50 20 61 6e 64 20 77 | that.include.the.target.IP.and.w |
| f5040 | 69 6c 6c 20 70 72 65 73 65 72 76 65 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 | ill.preserve.the.source.address. |
| f5060 | 69 66 20 69 74 20 69 73 20 66 72 6f 6d 20 73 75 63 68 20 73 75 62 6e 65 74 2e 20 49 66 20 74 68 | if.it.is.from.such.subnet..If.th |
| f5080 | 65 72 65 20 69 73 20 6e 6f 20 73 75 63 68 20 73 75 62 6e 65 74 20 77 65 20 73 65 6c 65 63 74 20 | ere.is.no.such.subnet.we.select. |
| f50a0 | 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 74 68 65 20 | source.address.according.to.the. |
| f50c0 | 72 75 6c 65 73 20 66 6f 72 20 6c 65 76 65 6c 20 32 2e 00 49 66 20 63 6f 6e 66 69 67 75 72 69 6e | rules.for.level.2..If.configurin |
| f50e0 | 67 20 56 58 4c 41 4e 20 69 6e 20 61 20 56 79 4f 53 20 76 69 72 74 75 61 6c 20 6d 61 63 68 69 6e | g.VXLAN.in.a.VyOS.virtual.machin |
| f5100 | 65 2c 20 65 6e 73 75 72 65 20 74 68 61 74 20 4d 41 43 20 73 70 6f 6f 66 69 6e 67 20 28 48 79 70 | e,.ensure.that.MAC.spoofing.(Hyp |
| f5120 | 65 72 2d 56 29 20 6f 72 20 46 6f 72 67 65 64 20 54 72 61 6e 73 6d 69 74 73 20 28 45 53 58 29 20 | er-V).or.Forged.Transmits.(ESX). |
| f5140 | 61 72 65 20 70 65 72 6d 69 74 74 65 64 2c 20 6f 74 68 65 72 77 69 73 65 20 66 6f 72 77 61 72 64 | are.permitted,.otherwise.forward |
| f5160 | 65 64 20 66 72 61 6d 65 73 20 6d 61 79 20 62 65 20 62 6c 6f 63 6b 65 64 20 62 79 20 74 68 65 20 | ed.frames.may.be.blocked.by.the. |
| f5180 | 68 79 70 65 72 76 69 73 6f 72 2e 00 49 66 20 65 69 74 68 65 72 20 69 73 20 73 65 74 20 62 6f 74 | hypervisor..If.either.is.set.bot |
| f51a0 | 68 20 6d 75 73 74 20 62 65 20 73 65 74 2e 00 49 66 20 66 6f 72 77 61 72 64 69 6e 67 20 74 72 61 | h.must.be.set..If.forwarding.tra |
| f51c0 | 66 66 69 63 20 74 6f 20 61 20 64 69 66 66 65 72 65 6e 74 20 70 6f 72 74 20 74 68 61 6e 20 69 74 | ffic.to.a.different.port.than.it |
| f51e0 | 20 69 73 20 61 72 72 69 76 69 6e 67 20 6f 6e 2c 20 79 6f 75 20 6d 61 79 20 61 6c 73 6f 20 63 6f | .is.arriving.on,.you.may.also.co |
| f5200 | 6e 66 69 67 75 72 65 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 70 6f 72 74 20 75 73 69 | nfigure.the.translation.port.usi |
| f5220 | 6e 67 20 60 73 65 74 20 6e 61 74 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 72 75 6c 65 20 5b 6e 5d | ng.`set.nat.destination.rule.[n] |
| f5240 | 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 70 6f 72 74 60 2e 00 49 66 20 67 75 61 72 61 6e 74 65 65 | .translation.port`..If.guarantee |
| f5260 | 64 20 74 72 61 66 66 69 63 20 66 6f 72 20 61 20 63 6c 61 73 73 20 69 73 20 6d 65 74 20 61 6e 64 | d.traffic.for.a.class.is.met.and |
| f5280 | 20 74 68 65 72 65 20 69 73 20 72 6f 6f 6d 20 66 6f 72 20 6d 6f 72 65 20 74 72 61 66 66 69 63 2c | .there.is.room.for.more.traffic, |
| f52a0 | 20 74 68 65 20 63 65 69 6c 69 6e 67 20 70 61 72 61 6d 65 74 65 72 20 63 61 6e 20 62 65 20 75 73 | .the.ceiling.parameter.can.be.us |
| f52c0 | 65 64 20 74 6f 20 73 65 74 20 68 6f 77 20 6d 75 63 68 20 6d 6f 72 65 20 62 61 6e 64 77 69 64 74 | ed.to.set.how.much.more.bandwidt |
| f52e0 | 68 20 63 6f 75 6c 64 20 62 65 20 75 73 65 64 2e 20 49 66 20 67 75 61 72 61 6e 74 65 65 64 20 74 | h.could.be.used..If.guaranteed.t |
| f5300 | 72 61 66 66 69 63 20 69 73 20 6d 65 74 20 61 6e 64 20 74 68 65 72 65 20 61 72 65 20 73 65 76 65 | raffic.is.met.and.there.are.seve |
| f5320 | 72 61 6c 20 63 6c 61 73 73 65 73 20 77 69 6c 6c 69 6e 67 20 74 6f 20 75 73 65 20 74 68 65 69 72 | ral.classes.willing.to.use.their |
| f5340 | 20 63 65 69 6c 69 6e 67 73 2c 20 74 68 65 20 70 72 69 6f 72 69 74 79 20 70 61 72 61 6d 65 74 65 | .ceilings,.the.priority.paramete |
| f5360 | 72 20 77 69 6c 6c 20 65 73 74 61 62 6c 69 73 68 20 74 68 65 20 6f 72 64 65 72 20 69 6e 20 77 68 | r.will.establish.the.order.in.wh |
| f5380 | 69 63 68 20 74 68 61 74 20 61 64 64 69 74 69 6f 6e 61 6c 20 74 72 61 66 66 69 63 20 77 69 6c 6c | ich.that.additional.traffic.will |
| f53a0 | 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 2e 20 50 72 69 6f 72 69 74 79 20 63 61 6e 20 62 65 20 61 | .be.allocated..Priority.can.be.a |
| f53c0 | 6e 79 20 6e 75 6d 62 65 72 20 66 72 6f 6d 20 30 20 74 6f 20 37 2e 20 54 68 65 20 6c 6f 77 65 72 | ny.number.from.0.to.7..The.lower |
| f53e0 | 20 74 68 65 20 6e 75 6d 62 65 72 2c 20 74 68 65 20 68 69 67 68 65 72 20 74 68 65 20 70 72 69 6f | .the.number,.the.higher.the.prio |
| f5400 | 72 69 74 79 2e 00 49 66 20 69 6e 74 65 72 66 61 63 65 20 77 65 72 65 20 74 68 65 20 70 61 63 6b | rity..If.interface.were.the.pack |
| f5420 | 65 74 20 77 61 73 20 72 65 63 65 69 76 65 64 20 69 73 20 70 61 72 74 20 6f 66 20 61 20 62 72 69 | et.was.received.is.part.of.a.bri |
| f5440 | 64 67 65 2c 20 74 68 65 6e 20 70 61 63 6b 65 74 20 69 73 20 70 72 6f 63 65 73 73 65 64 20 61 74 | dge,.then.packet.is.processed.at |
| f5460 | 20 74 68 65 20 2a 2a 42 72 69 64 67 65 20 4c 61 79 65 72 2a 2a 2c 20 77 68 69 63 68 20 63 6f 6e | .the.**Bridge.Layer**,.which.con |
| f5480 | 74 61 69 6e 73 20 61 20 76 65 72 20 62 61 73 69 63 20 73 65 74 75 70 20 77 68 65 72 65 20 66 6f | tains.a.ver.basic.setup.where.fo |
| f54a0 | 72 20 62 72 69 64 67 65 20 66 69 6c 74 65 72 69 6e 67 3a 00 49 66 20 69 6e 74 65 72 66 61 63 65 | r.bridge.filtering:.If.interface |
| f54c0 | 20 77 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 69 76 65 64 20 69 73 | .were.the.packet.was.received.is |
| f54e0 | 6e 27 74 20 70 61 72 74 20 6f 66 20 61 20 62 72 69 64 67 65 2c 20 74 68 65 6e 20 70 61 63 6b 65 | n't.part.of.a.bridge,.then.packe |
| f5500 | 74 20 69 73 20 70 72 6f 63 65 73 73 65 64 20 61 74 20 74 68 65 20 2a 2a 49 50 20 4c 61 79 65 72 | t.is.processed.at.the.**IP.Layer |
| f5520 | 2a 2a 3a 00 49 66 20 69 74 27 73 20 6e 6f 74 20 64 72 6f 70 70 65 64 2c 20 74 68 65 6e 20 74 68 | **:.If.it's.not.dropped,.then.th |
| f5540 | 65 20 70 61 63 6b 65 74 20 69 73 20 73 65 6e 74 20 74 6f 20 2a 2a 49 50 20 4c 61 79 65 72 2a 2a | e.packet.is.sent.to.**IP.Layer** |
| f5560 | 2c 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 70 72 6f 63 65 73 73 65 64 20 62 79 20 74 68 65 20 2a | ,.and.will.be.processed.by.the.* |
| f5580 | 2a 49 50 20 4c 61 79 65 72 2a 2a 20 66 69 72 65 77 61 6c 6c 3a 20 49 50 76 34 20 6f 72 20 49 50 | *IP.Layer**.firewall:.IPv4.or.IP |
| f55a0 | 76 36 20 72 75 6c 65 73 65 74 2e 20 43 68 65 63 6b 20 6f 6e 63 65 20 61 67 61 69 6e 20 74 68 65 | v6.ruleset..Check.once.again.the |
| f55c0 | 20 3a 64 6f 63 3a 60 67 65 6e 65 72 61 6c 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 64 69 61 67 72 | .:doc:`general.packet.flow.diagr |
| f55e0 | 61 6d 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 69 6e 64 65 78 | am</configuration/firewall/index |
| f5600 | 3e 60 20 69 66 20 6e 65 65 64 65 64 2e 00 49 66 20 69 74 27 73 20 76 69 74 61 6c 20 74 68 61 74 | >`.if.needed..If.it's.vital.that |
| f5620 | 20 74 68 65 20 64 61 65 6d 6f 6e 20 73 68 6f 75 6c 64 20 61 63 74 20 65 78 61 63 74 6c 79 20 6c | .the.daemon.should.act.exactly.l |
| f5640 | 69 6b 65 20 61 20 72 65 61 6c 20 6d 75 6c 74 69 63 61 73 74 20 63 6c 69 65 6e 74 20 6f 6e 20 74 | ike.a.real.multicast.client.on.t |
| f5660 | 68 65 20 75 70 73 74 72 65 61 6d 20 69 6e 74 65 72 66 61 63 65 2c 20 74 68 69 73 20 66 75 6e 63 | he.upstream.interface,.this.func |
| f5680 | 74 69 6f 6e 20 73 68 6f 75 6c 64 20 62 65 20 65 6e 61 62 6c 65 64 2e 00 49 66 20 6b 6e 6f 77 6e | tion.should.be.enabled..If.known |
| f56a0 | 2c 20 74 68 65 20 49 50 20 6f 66 20 74 68 65 20 72 65 6d 6f 74 65 20 72 6f 75 74 65 72 20 63 61 | ,.the.IP.of.the.remote.router.ca |
| f56c0 | 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 75 73 69 6e 67 20 74 68 65 20 60 60 72 65 6d 6f | n.be.configured.using.the.``remo |
| f56e0 | 74 65 2d 68 6f 73 74 60 60 20 64 69 72 65 63 74 69 76 65 3b 20 69 66 20 75 6e 6b 6e 6f 77 6e 2c | te-host``.directive;.if.unknown, |
| f5700 | 20 69 74 20 63 61 6e 20 62 65 20 6f 6d 69 74 74 65 64 2e 20 57 65 20 77 69 6c 6c 20 61 73 73 75 | .it.can.be.omitted..We.will.assu |
| f5720 | 6d 65 20 61 20 64 79 6e 61 6d 69 63 20 49 50 20 66 6f 72 20 6f 75 72 20 72 65 6d 6f 74 65 20 72 | me.a.dynamic.IP.for.our.remote.r |
| f5740 | 6f 75 74 65 72 2e 00 49 66 20 6c 6f 67 67 69 6e 67 20 74 6f 20 61 20 6c 6f 63 61 6c 20 75 73 65 | outer..If.logging.to.a.local.use |
| f5760 | 72 20 61 63 63 6f 75 6e 74 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 61 6c 6c 20 64 65 66 | r.account.is.configured,.all.def |
| f5780 | 69 6e 65 64 20 6c 6f 67 20 6d 65 73 73 61 67 65 73 20 61 72 65 20 64 69 73 70 6c 61 79 20 6f 6e | ined.log.messages.are.display.on |
| f57a0 | 20 74 68 65 20 63 6f 6e 73 6f 6c 65 20 69 66 20 74 68 65 20 6c 6f 63 61 6c 20 75 73 65 72 20 69 | .the.console.if.the.local.user.i |
| f57c0 | 73 20 6c 6f 67 67 65 64 20 69 6e 2c 20 69 66 20 74 68 65 20 75 73 65 72 20 69 73 20 6e 6f 74 20 | s.logged.in,.if.the.user.is.not. |
| f57e0 | 6c 6f 67 67 65 64 20 69 6e 2c 20 6e 6f 20 6d 65 73 73 61 67 65 73 20 61 72 65 20 62 65 69 6e 67 | logged.in,.no.messages.are.being |
| f5800 | 20 64 69 73 70 6c 61 79 65 64 2e 20 46 6f 72 20 61 6e 20 65 78 70 6c 61 6e 61 74 69 6f 6e 20 6f | .displayed..For.an.explanation.o |
| f5820 | 6e 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f 66 61 63 69 6c 69 74 69 65 73 60 20 6b 65 79 77 6f | n.:ref:`syslog_facilities`.keywo |
| f5840 | 72 64 73 20 61 6e 64 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f 73 65 76 65 72 69 74 79 5f 6c 65 | rds.and.:ref:`syslog_severity_le |
| f5860 | 76 65 6c 60 20 6b 65 79 77 6f 72 64 73 20 73 65 65 20 74 61 62 6c 65 73 20 62 65 6c 6f 77 2e 00 | vel`.keywords.see.tables.below.. |
| f5880 | 49 66 20 6d 61 6b 69 6e 67 20 75 73 65 20 6f 66 20 6d 75 6c 74 69 70 6c 65 20 74 75 6e 6e 65 6c | If.making.use.of.multiple.tunnel |
| f58a0 | 73 2c 20 4f 70 65 6e 56 50 4e 20 6d 75 73 74 20 68 61 76 65 20 61 20 77 61 79 20 74 6f 20 64 69 | s,.OpenVPN.must.have.a.way.to.di |
| f58c0 | 73 74 69 6e 67 75 69 73 68 20 62 65 74 77 65 65 6e 20 64 69 66 66 65 72 65 6e 74 20 74 75 6e 6e | stinguish.between.different.tunn |
| f58e0 | 65 6c 73 20 61 73 69 64 65 20 66 72 6f 6d 20 74 68 65 20 70 72 65 2d 73 68 61 72 65 64 2d 6b 65 | els.aside.from.the.pre-shared-ke |
| f5900 | 79 2e 20 54 68 69 73 20 69 73 20 65 69 74 68 65 72 20 62 79 20 72 65 66 65 72 65 6e 63 69 6e 67 | y..This.is.either.by.referencing |
| f5920 | 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 70 6f 72 74 20 6e 75 6d 62 65 72 2e 20 4f 6e 65 20 | .IP.address.or.port.number..One. |
| f5940 | 6f 70 74 69 6f 6e 20 69 73 20 74 6f 20 64 65 64 69 63 61 74 65 20 61 20 70 75 62 6c 69 63 20 49 | option.is.to.dedicate.a.public.I |
| f5960 | 50 20 74 6f 20 65 61 63 68 20 74 75 6e 6e 65 6c 2e 20 41 6e 6f 74 68 65 72 20 6f 70 74 69 6f 6e | P.to.each.tunnel..Another.option |
| f5980 | 20 69 73 20 74 6f 20 64 65 64 69 63 61 74 65 20 61 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 74 6f | .is.to.dedicate.a.port.number.to |
| f59a0 | 20 65 61 63 68 20 74 75 6e 6e 65 6c 20 28 65 2e 67 2e 20 31 31 39 35 2c 31 31 39 36 2c 31 31 39 | .each.tunnel.(e.g..1195,1196,119 |
| f59c0 | 37 2e 2e 2e 29 2e 00 49 66 20 6d 75 6c 74 69 2d 70 61 74 68 69 6e 67 20 69 73 20 65 6e 61 62 6c | 7...)..If.multi-pathing.is.enabl |
| f59e0 | 65 64 2c 20 74 68 65 6e 20 63 68 65 63 6b 20 77 68 65 74 68 65 72 20 74 68 65 20 72 6f 75 74 65 | ed,.then.check.whether.the.route |
| f5a00 | 73 20 6e 6f 74 20 79 65 74 20 64 69 73 74 69 6e 67 75 69 73 68 65 64 20 69 6e 20 70 72 65 66 65 | s.not.yet.distinguished.in.prefe |
| f5a20 | 72 65 6e 63 65 20 6d 61 79 20 62 65 20 63 6f 6e 73 69 64 65 72 65 64 20 65 71 75 61 6c 2e 20 49 | rence.may.be.considered.equal..I |
| f5a40 | 66 20 3a 63 66 67 63 6d 64 3a 60 62 67 70 20 62 65 73 74 70 61 74 68 20 61 73 2d 70 61 74 68 20 | f.:cfgcmd:`bgp.bestpath.as-path. |
| f5a60 | 6d 75 6c 74 69 70 61 74 68 2d 72 65 6c 61 78 60 20 69 73 20 73 65 74 2c 20 61 6c 6c 20 73 75 63 | multipath-relax`.is.set,.all.suc |
| f5a80 | 68 20 72 6f 75 74 65 73 20 61 72 65 20 63 6f 6e 73 69 64 65 72 65 64 20 65 71 75 61 6c 2c 20 6f | h.routes.are.considered.equal,.o |
| f5aa0 | 74 68 65 72 77 69 73 65 20 72 6f 75 74 65 73 20 72 65 63 65 69 76 65 64 20 76 69 61 20 69 42 47 | therwise.routes.received.via.iBG |
| f5ac0 | 50 20 77 69 74 68 20 69 64 65 6e 74 69 63 61 6c 20 41 53 5f 50 41 54 48 73 20 6f 72 20 72 6f 75 | P.with.identical.AS_PATHs.or.rou |
| f5ae0 | 74 65 73 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 65 42 47 50 20 6e 65 69 67 68 62 6f 75 72 | tes.received.from.eBGP.neighbour |
| f5b00 | 73 20 69 6e 20 74 68 65 20 73 61 6d 65 20 41 53 20 61 72 65 20 63 6f 6e 73 69 64 65 72 65 64 20 | s.in.the.same.AS.are.considered. |
| f5b20 | 65 71 75 61 6c 2e 00 49 66 20 6e 6f 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f 20 61 6e 20 52 50 | equal..If.no.connection.to.an.RP |
| f5b40 | 4b 49 20 63 61 63 68 65 20 73 65 72 76 65 72 20 63 61 6e 20 62 65 20 65 73 74 61 62 6c 69 73 68 | KI.cache.server.can.be.establish |
| f5b60 | 65 64 20 61 66 74 65 72 20 61 20 70 72 65 2d 64 65 66 69 6e 65 64 20 74 69 6d 65 6f 75 74 2c 20 | ed.after.a.pre-defined.timeout,. |
| f5b80 | 74 68 65 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 70 72 6f 63 65 73 73 20 72 6f 75 74 65 73 20 77 | the.router.will.process.routes.w |
| f5ba0 | 69 74 68 6f 75 74 20 70 72 65 66 69 78 20 6f 72 69 67 69 6e 20 76 61 6c 69 64 61 74 69 6f 6e 2e | ithout.prefix.origin.validation. |
| f5bc0 | 20 49 74 20 73 74 69 6c 6c 20 77 69 6c 6c 20 74 72 79 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 | .It.still.will.try.to.establish. |
| f5be0 | 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f 20 61 6e 20 52 50 4b 49 20 63 61 63 68 65 20 73 65 | a.connection.to.an.RPKI.cache.se |
| f5c00 | 72 76 65 72 20 69 6e 20 74 68 65 20 62 61 63 6b 67 72 6f 75 6e 64 2e 00 49 66 20 6e 6f 20 64 65 | rver.in.the.background..If.no.de |
| f5c20 | 73 74 69 6e 61 74 69 6f 6e 20 69 73 20 73 70 65 63 69 66 69 65 64 20 74 68 65 20 72 75 6c 65 20 | stination.is.specified.the.rule. |
| f5c40 | 77 69 6c 6c 20 6d 61 74 63 68 20 6f 6e 20 61 6e 79 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 | will.match.on.any.destination.ad |
| f5c60 | 64 72 65 73 73 20 61 6e 64 20 70 6f 72 74 2e 00 49 66 20 6e 6f 20 69 70 20 70 72 65 66 69 78 20 | dress.and.port..If.no.ip.prefix. |
| f5c80 | 6c 69 73 74 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 69 74 20 61 63 74 73 20 61 73 20 70 65 | list.is.specified,.it.acts.as.pe |
| f5ca0 | 72 6d 69 74 2e 20 49 66 20 69 70 20 70 72 65 66 69 78 20 6c 69 73 74 20 69 73 20 64 65 66 69 6e | rmit..If.ip.prefix.list.is.defin |
| f5cc0 | 65 64 2c 20 61 6e 64 20 6e 6f 20 6d 61 74 63 68 20 69 73 20 66 6f 75 6e 64 2c 20 64 65 66 61 75 | ed,.and.no.match.is.found,.defau |
| f5ce0 | 6c 74 20 64 65 6e 79 20 69 73 20 61 70 70 6c 69 65 64 2e 00 49 66 20 6e 6f 20 6f 70 74 69 6f 6e | lt.deny.is.applied..If.no.option |
| f5d00 | 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 74 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 | .is.specified,.this.defaults.to. |
| f5d20 | 60 61 6c 6c 60 2e 00 49 66 20 6e 6f 74 20 73 65 74 20 28 64 65 66 61 75 6c 74 29 20 61 6c 6c 6f | `all`..If.not.set.(default).allo |
| f5d40 | 77 73 20 79 6f 75 20 74 6f 20 68 61 76 65 20 6d 75 6c 74 69 70 6c 65 20 6e 65 74 77 6f 72 6b 20 | ws.you.to.have.multiple.network. |
| f5d60 | 69 6e 74 65 72 66 61 63 65 73 20 6f 6e 20 74 68 65 20 73 61 6d 65 20 73 75 62 6e 65 74 2c 20 61 | interfaces.on.the.same.subnet,.a |
| f5d80 | 6e 64 20 68 61 76 65 20 74 68 65 20 41 52 50 73 20 66 6f 72 20 65 61 63 68 20 69 6e 74 65 72 66 | nd.have.the.ARPs.for.each.interf |
| f5da0 | 61 63 65 20 62 65 20 61 6e 73 77 65 72 65 64 20 62 61 73 65 64 20 6f 6e 20 77 68 65 74 68 65 72 | ace.be.answered.based.on.whether |
| f5dc0 | 20 6f 72 20 6e 6f 74 20 74 68 65 20 6b 65 72 6e 65 6c 20 77 6f 75 6c 64 20 72 6f 75 74 65 20 61 | .or.not.the.kernel.would.route.a |
| f5de0 | 20 70 61 63 6b 65 74 20 66 72 6f 6d 20 74 68 65 20 41 52 50 27 64 20 49 50 20 6f 75 74 20 74 68 | .packet.from.the.ARP'd.IP.out.th |
| f5e00 | 61 74 20 69 6e 74 65 72 66 61 63 65 20 28 74 68 65 72 65 66 6f 72 65 20 79 6f 75 20 6d 75 73 74 | at.interface.(therefore.you.must |
| f5e20 | 20 75 73 65 20 73 6f 75 72 63 65 20 62 61 73 65 64 20 72 6f 75 74 69 6e 67 20 66 6f 72 20 74 68 | .use.source.based.routing.for.th |
| f5e40 | 69 73 20 74 6f 20 77 6f 72 6b 29 2e 00 49 66 20 6f 70 74 69 6f 6e 61 6c 20 70 72 6f 66 69 6c 65 | is.to.work)..If.optional.profile |
| f5e60 | 20 70 61 72 61 6d 65 74 65 72 20 69 73 20 75 73 65 64 2c 20 73 65 6c 65 63 74 20 61 20 42 46 44 | .parameter.is.used,.select.a.BFD |
| f5e80 | 20 70 72 6f 66 69 6c 65 20 66 6f 72 20 74 68 65 20 42 46 44 20 73 65 73 73 69 6f 6e 73 20 63 72 | .profile.for.the.BFD.sessions.cr |
| f5ea0 | 65 61 74 65 64 20 76 69 61 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 00 49 66 20 73 65 74 | eated.via.this.interface..If.set |
| f5ec0 | 20 74 68 65 20 6b 65 72 6e 65 6c 20 63 61 6e 20 72 65 73 70 6f 6e 64 20 74 6f 20 61 72 70 20 72 | .the.kernel.can.respond.to.arp.r |
| f5ee0 | 65 71 75 65 73 74 73 20 77 69 74 68 20 61 64 64 72 65 73 73 65 73 20 66 72 6f 6d 20 6f 74 68 65 | equests.with.addresses.from.othe |
| f5f00 | 72 20 69 6e 74 65 72 66 61 63 65 73 2e 20 54 68 69 73 20 6d 61 79 20 73 65 65 6d 20 77 72 6f 6e | r.interfaces..This.may.seem.wron |
| f5f20 | 67 20 62 75 74 20 69 74 20 75 73 75 61 6c 6c 79 20 6d 61 6b 65 73 20 73 65 6e 73 65 2c 20 62 65 | g.but.it.usually.makes.sense,.be |
| f5f40 | 63 61 75 73 65 20 69 74 20 69 6e 63 72 65 61 73 65 73 20 74 68 65 20 63 68 61 6e 63 65 20 6f 66 | cause.it.increases.the.chance.of |
| f5f60 | 20 73 75 63 63 65 73 73 66 75 6c 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 2e 20 49 50 20 61 64 | .successful.communication..IP.ad |
| f5f80 | 64 72 65 73 73 65 73 20 61 72 65 20 6f 77 6e 65 64 20 62 79 20 74 68 65 20 63 6f 6d 70 6c 65 74 | dresses.are.owned.by.the.complet |
| f5fa0 | 65 20 68 6f 73 74 20 6f 6e 20 4c 69 6e 75 78 2c 20 6e 6f 74 20 62 79 20 70 61 72 74 69 63 75 6c | e.host.on.Linux,.not.by.particul |
| f5fc0 | 61 72 20 69 6e 74 65 72 66 61 63 65 73 2e 20 4f 6e 6c 79 20 66 6f 72 20 6d 6f 72 65 20 63 6f 6d | ar.interfaces..Only.for.more.com |
| f5fe0 | 70 6c 65 78 20 73 65 74 75 70 73 20 6c 69 6b 65 20 6c 6f 61 64 2d 62 61 6c 61 6e 63 69 6e 67 2c | plex.setups.like.load-balancing, |
| f6000 | 20 64 6f 65 73 20 74 68 69 73 20 62 65 68 61 76 69 6f 75 72 20 63 61 75 73 65 20 70 72 6f 62 6c | .does.this.behaviour.cause.probl |
| f6020 | 65 6d 73 2e 00 49 66 20 73 65 74 20 74 6f 20 61 6e 20 65 6d 70 74 79 20 73 74 72 69 6e 67 2c 20 | ems..If.set.to.an.empty.string,. |
| f6040 | 74 68 65 20 6c 61 62 65 6c 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 61 64 64 65 64 2e 20 54 68 69 | the.label.will.not.be.added..Thi |
| f6060 | 73 20 69 73 20 4e 4f 54 20 72 65 63 6f 6d 6d 65 6e 64 65 64 2c 20 61 73 20 69 74 20 6d 61 6b 65 | s.is.NOT.recommended,.as.it.make |
| f6080 | 73 20 69 74 20 69 6d 70 6f 73 73 69 62 6c 65 20 74 6f 20 64 69 66 66 65 72 65 6e 74 69 61 74 65 | s.it.impossible.to.differentiate |
| f60a0 | 20 62 65 74 77 65 65 6e 20 6d 75 6c 74 69 70 6c 65 20 6d 65 74 72 69 63 73 2e 00 49 66 20 73 65 | .between.multiple.metrics..If.se |
| f60c0 | 74 20 74 6f 20 65 6e 61 62 6c 65 2c 20 6f 70 65 6e 76 70 6e 2d 6f 74 70 20 77 69 6c 6c 20 65 78 | t.to.enable,.openvpn-otp.will.ex |
| f60e0 | 70 65 63 74 20 70 61 73 73 77 6f 72 64 20 61 73 20 72 65 73 75 6c 74 20 6f 66 20 63 68 61 6c 6c | pect.password.as.result.of.chall |
| f6100 | 65 6e 67 65 2f 20 72 65 73 70 6f 6e 73 65 20 70 72 6f 74 6f 63 6f 6c 2e 00 49 66 20 73 65 74 2c | enge/.response.protocol..If.set, |
| f6120 | 20 49 50 76 34 20 64 69 72 65 63 74 65 64 20 62 72 6f 61 64 63 61 73 74 20 66 6f 72 77 61 72 64 | .IPv4.directed.broadcast.forward |
| f6140 | 69 6e 67 20 77 69 6c 6c 20 62 65 20 63 6f 6d 70 6c 65 74 65 6c 79 20 64 69 73 61 62 6c 65 64 20 | ing.will.be.completely.disabled. |
| f6160 | 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 77 68 65 74 68 65 72 20 70 65 72 2d 69 6e 74 65 72 66 | regardless.of.whether.per-interf |
| f6180 | 61 63 65 20 64 69 72 65 63 74 65 64 20 62 72 6f 61 64 63 61 73 74 20 66 6f 72 77 61 72 64 69 6e | ace.directed.broadcast.forwardin |
| f61a0 | 67 20 69 73 20 65 6e 61 62 6c 65 64 20 6f 72 20 6e 6f 74 2e 00 49 66 20 73 65 74 2c 20 74 68 65 | g.is.enabled.or.not..If.set,.the |
| f61c0 | 20 64 6f 6d 61 69 6e 20 70 61 72 74 20 6f 66 20 74 68 65 20 68 6f 73 74 6e 61 6d 65 20 69 73 20 | .domain.part.of.the.hostname.is. |
| f61e0 | 61 6c 77 61 79 73 20 73 65 6e 74 2c 20 65 76 65 6e 20 77 69 74 68 69 6e 20 74 68 65 20 73 61 6d | always.sent,.even.within.the.sam |
| f6200 | 65 20 64 6f 6d 61 69 6e 20 61 73 20 74 68 65 20 72 65 63 65 69 76 69 6e 67 20 73 79 73 74 65 6d | e.domain.as.the.receiving.system |
| f6220 | 2e 00 49 66 20 73 65 74 2c 20 74 68 65 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 6e 6f 20 6c 6f 6e | ..If.set,.the.router.will.no.lon |
| f6240 | 67 65 72 20 73 65 6e 64 20 70 65 72 69 6f 64 69 63 20 72 6f 75 74 65 72 20 61 64 76 65 72 74 69 | ger.send.periodic.router.adverti |
| f6260 | 73 65 6d 65 6e 74 73 20 61 6e 64 20 77 69 6c 6c 20 6e 6f 74 20 72 65 73 70 6f 6e 64 20 74 6f 20 | sements.and.will.not.respond.to. |
| f6280 | 72 6f 75 74 65 72 20 73 6f 6c 69 63 69 74 61 74 69 6f 6e 73 2e 00 49 66 20 73 75 66 66 69 78 20 | router.solicitations..If.suffix. |
| f62a0 | 69 73 20 6f 6d 69 74 74 65 64 2c 20 6d 69 6e 75 74 65 73 20 61 72 65 20 69 6d 70 6c 69 65 64 2e | is.omitted,.minutes.are.implied. |
| f62c0 | 00 49 66 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 6e 6f 2d 70 72 65 70 65 6e 64 60 20 61 74 74 | .If.the.:cfgcmd:`no-prepend`.att |
| f62e0 | 72 69 62 75 74 65 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 74 68 65 6e 20 74 68 65 20 73 75 | ribute.is.specified,.then.the.su |
| f6300 | 70 70 6c 69 65 64 20 6c 6f 63 61 6c 2d 61 73 20 69 73 20 6e 6f 74 20 70 72 65 70 65 6e 64 65 64 | pplied.local-as.is.not.prepended |
| f6320 | 20 74 6f 20 74 68 65 20 72 65 63 65 69 76 65 64 20 41 53 5f 50 41 54 48 2e 00 49 66 20 74 68 65 | .to.the.received.AS_PATH..If.the |
| f6340 | 20 3a 63 66 67 63 6d 64 3a 60 72 65 70 6c 61 63 65 2d 61 73 60 20 61 74 74 72 69 62 75 74 65 20 | .:cfgcmd:`replace-as`.attribute. |
| f6360 | 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 74 68 65 6e 20 6f 6e 6c 79 20 74 68 65 20 73 75 70 70 | is.specified,.then.only.the.supp |
| f6380 | 6c 69 65 64 20 6c 6f 63 61 6c 2d 61 73 20 69 73 20 70 72 65 70 65 6e 64 65 64 20 74 6f 20 74 68 | lied.local-as.is.prepended.to.th |
| f63a0 | 65 20 41 53 5f 50 41 54 48 20 77 68 65 6e 20 74 72 61 6e 73 6d 69 74 74 69 6e 67 20 6c 6f 63 61 | e.AS_PATH.when.transmitting.loca |
| f63c0 | 6c 2d 72 6f 75 74 65 20 75 70 64 61 74 65 73 20 74 6f 20 74 68 69 73 20 70 65 65 72 2e 00 49 66 | l-route.updates.to.this.peer..If |
| f63e0 | 20 74 68 65 20 41 52 50 20 74 61 62 6c 65 20 61 6c 72 65 61 64 79 20 63 6f 6e 74 61 69 6e 73 20 | .the.ARP.table.already.contains. |
| f6400 | 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 67 72 61 74 75 69 74 6f 75 73 | the.IP.address.of.the.gratuitous |
| f6420 | 20 61 72 70 20 66 72 61 6d 65 2c 20 74 68 65 20 61 72 70 20 74 61 62 6c 65 20 77 69 6c 6c 20 62 | .arp.frame,.the.arp.table.will.b |
| f6440 | 65 20 75 70 64 61 74 65 64 20 72 65 67 61 72 64 6c 65 73 73 20 69 66 20 74 68 69 73 20 73 65 74 | e.updated.regardless.if.this.set |
| f6460 | 74 69 6e 67 20 69 73 20 6f 6e 20 6f 72 20 6f 66 66 2e 00 49 66 20 74 68 65 20 41 53 2d 50 61 74 | ting.is.on.or.off..If.the.AS-Pat |
| f6480 | 68 20 66 6f 72 20 74 68 65 20 72 6f 75 74 65 20 68 61 73 20 61 20 70 72 69 76 61 74 65 20 41 53 | h.for.the.route.has.a.private.AS |
| f64a0 | 4e 20 62 65 74 77 65 65 6e 20 70 75 62 6c 69 63 20 41 53 4e 73 2c 20 69 74 20 69 73 20 61 73 73 | N.between.public.ASNs,.it.is.ass |
| f64c0 | 75 6d 65 64 20 74 68 61 74 20 74 68 69 73 20 69 73 20 61 20 64 65 73 69 67 6e 20 63 68 6f 69 63 | umed.that.this.is.a.design.choic |
| f64e0 | 65 2c 20 61 6e 64 20 74 68 65 20 70 72 69 76 61 74 65 20 41 53 4e 20 69 73 20 6e 6f 74 20 72 65 | e,.and.the.private.ASN.is.not.re |
| f6500 | 6d 6f 76 65 64 2e 00 49 66 20 74 68 65 20 41 53 2d 50 61 74 68 20 66 6f 72 20 74 68 65 20 72 6f | moved..If.the.AS-Path.for.the.ro |
| f6520 | 75 74 65 20 68 61 73 20 6f 6e 6c 79 20 70 72 69 76 61 74 65 20 41 53 4e 73 2c 20 74 68 65 20 70 | ute.has.only.private.ASNs,.the.p |
| f6540 | 72 69 76 61 74 65 20 41 53 4e 73 20 61 72 65 20 72 65 6d 6f 76 65 64 2e 00 49 66 20 74 68 65 20 | rivate.ASNs.are.removed..If.the. |
| f6560 | 49 50 20 70 72 65 66 69 78 20 6d 61 73 6b 20 69 73 20 70 72 65 73 65 6e 74 2c 20 69 74 20 64 69 | IP.prefix.mask.is.present,.it.di |
| f6580 | 72 65 63 74 73 20 6f 70 65 6e 6e 68 72 70 20 74 6f 20 75 73 65 20 74 68 69 73 20 70 65 65 72 20 | rects.opennhrp.to.use.this.peer. |
| f65a0 | 61 73 20 61 20 6e 65 78 74 20 68 6f 70 20 73 65 72 76 65 72 20 77 68 65 6e 20 73 65 6e 64 69 6e | as.a.next.hop.server.when.sendin |
| f65c0 | 67 20 52 65 73 6f 6c 75 74 69 6f 6e 20 52 65 71 75 65 73 74 73 20 6d 61 74 63 68 69 6e 67 20 74 | g.Resolution.Requests.matching.t |
| f65e0 | 68 69 73 20 73 75 62 6e 65 74 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 | his.subnet..If.the.RADIUS.server |
| f6600 | 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 44 65 6c 65 67 61 74 65 64 | .sends.the.attribute.``Delegated |
| f6620 | 2d 49 50 76 36 2d 50 72 65 66 69 78 2d 50 6f 6f 6c 60 60 2c 20 49 50 76 36 20 64 65 6c 65 67 61 | -IPv6-Prefix-Pool``,.IPv6.delega |
| f6640 | 74 69 6f 6e 20 70 65 66 69 78 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 66 72 6f | tion.pefix.will.be.allocated.fro |
| f6660 | 6d 20 61 20 70 72 65 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 60 60 64 65 6c 65 67 | m.a.predefined.IPv6.pool.``deleg |
| f6680 | 61 74 65 60 60 20 77 68 6f 73 65 20 6e 61 6d 65 20 65 71 75 61 6c 73 20 74 68 65 20 61 74 74 72 | ate``.whose.name.equals.the.attr |
| f66a0 | 69 62 75 74 65 20 76 61 6c 75 65 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 | ibute.value..If.the.RADIUS.serve |
| f66c0 | 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 44 65 6c 65 67 61 74 65 | r.sends.the.attribute.``Delegate |
| f66e0 | 64 2d 49 50 76 36 2d 50 72 65 66 69 78 2d 50 6f 6f 6c 60 60 2c 20 61 6e 20 49 50 76 36 20 64 65 | d-IPv6-Prefix-Pool``,.an.IPv6.de |
| f6700 | 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 | legation.prefix.will.be.allocate |
| f6720 | 64 20 66 72 6f 6d 20 61 20 70 72 65 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 60 60 | d.from.a.predefined.IPv6.pool.`` |
| f6740 | 64 65 6c 65 67 61 74 65 60 60 20 77 68 6f 73 65 20 6e 61 6d 65 20 65 71 75 61 6c 73 20 74 68 65 | delegate``.whose.name.equals.the |
| f6760 | 20 61 74 74 72 69 62 75 74 65 20 76 61 6c 75 65 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 | .attribute.value..If.the.RADIUS. |
| f6780 | 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 46 72 61 | server.sends.the.attribute.``Fra |
| f67a0 | 6d 65 64 2d 49 50 2d 41 64 64 72 65 73 73 60 60 20 74 68 65 6e 20 74 68 69 73 20 49 50 20 61 64 | med-IP-Address``.then.this.IP.ad |
| f67c0 | 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 74 6f 20 74 68 65 20 63 | dress.will.be.allocated.to.the.c |
| f67e0 | 6c 69 65 6e 74 20 61 6e 64 20 74 68 65 20 6f 70 74 69 6f 6e 20 60 60 64 65 66 61 75 6c 74 2d 70 | lient.and.the.option.``default-p |
| f6800 | 6f 6f 6c 60 60 20 77 69 74 68 69 6e 20 74 68 65 20 43 4c 49 20 63 6f 6e 66 69 67 20 69 73 20 62 | ool``.within.the.CLI.config.is.b |
| f6820 | 65 69 6e 67 20 69 67 6e 6f 72 65 64 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 | eing.ignored..If.the.RADIUS.serv |
| f6840 | 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 46 72 61 6d 65 64 2d | er.sends.the.attribute.``Framed- |
| f6860 | 49 50 2d 41 64 64 72 65 73 73 60 60 20 74 68 65 6e 20 74 68 69 73 20 49 50 20 61 64 64 72 65 73 | IP-Address``.then.this.IP.addres |
| f6880 | 73 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 74 6f 20 74 68 65 20 63 6c 69 65 6e | s.will.be.allocated.to.the.clien |
| f68a0 | 74 20 61 6e 64 20 74 68 65 20 6f 70 74 69 6f 6e 20 60 60 64 65 66 61 75 6c 74 2d 70 6f 6f 6c 60 | t.and.the.option.``default-pool` |
| f68c0 | 60 20 77 69 74 68 69 6e 20 74 68 65 20 43 4c 49 20 63 6f 6e 66 69 67 20 77 69 6c 6c 20 62 65 20 | `.within.the.CLI.config.will.be. |
| f68e0 | 69 67 6e 6f 72 65 64 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 73 65 | ignored..If.the.RADIUS.server.se |
| f6900 | 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 46 72 61 6d 65 64 2d 49 50 2d 41 64 | nds.the.attribute.``Framed-IP-Ad |
| f6920 | 64 72 65 73 73 60 60 20 74 68 65 6e 20 74 68 69 73 20 49 50 20 61 64 64 72 65 73 73 20 77 69 6c | dress``.then.this.IP.address.wil |
| f6940 | 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 20 61 6e 64 | l.be.allocated.to.the.client.and |
| f6960 | 20 74 68 65 20 6f 70 74 69 6f 6e 20 60 60 64 65 66 61 75 6c 74 2d 70 6f 6f 6c 60 60 20 77 69 74 | .the.option.``default-pool``.wit |
| f6980 | 68 69 6e 20 74 68 65 20 43 4c 49 20 63 6f 6e 66 69 67 20 77 69 6c 6c 20 62 65 69 6e 67 20 69 67 | hin.the.CLI.config.will.being.ig |
| f69a0 | 6e 6f 72 65 64 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 73 65 6e 64 | nored..If.the.RADIUS.server.send |
| f69c0 | 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 46 72 61 6d 65 64 2d 49 50 2d 41 64 64 72 | s.the.attribute.``Framed-IP-Addr |
| f69e0 | 65 73 73 60 60 20 74 68 65 6e 20 74 68 69 73 20 49 50 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 | ess``.then.this.IP.address.will. |
| f6a00 | 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 20 61 6e 64 20 74 | be.allocated.to.the.client.and.t |
| f6a20 | 68 65 20 6f 70 74 69 6f 6e 20 69 70 2d 70 6f 6f 6c 20 77 69 74 68 69 6e 20 74 68 65 20 43 4c 49 | he.option.ip-pool.within.the.CLI |
| f6a40 | 20 63 6f 6e 66 69 67 20 69 73 20 62 65 69 6e 67 20 69 67 6e 6f 72 65 64 2e 00 49 66 20 74 68 65 | .config.is.being.ignored..If.the |
| f6a60 | 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 | .RADIUS.server.sends.the.attribu |
| f6a80 | 74 65 20 60 60 46 72 61 6d 65 64 2d 50 6f 6f 6c 60 60 2c 20 49 50 20 61 64 64 72 65 73 73 20 77 | te.``Framed-Pool``,.IP.address.w |
| f6aa0 | 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 66 72 6f 6d 20 61 20 70 72 65 64 65 66 69 6e | ill.be.allocated.from.a.predefin |
| f6ac0 | 65 64 20 49 50 20 70 6f 6f 6c 20 77 68 6f 73 65 20 6e 61 6d 65 20 65 71 75 61 6c 73 20 74 68 65 | ed.IP.pool.whose.name.equals.the |
| f6ae0 | 20 61 74 74 72 69 62 75 74 65 20 76 61 6c 75 65 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 | .attribute.value..If.the.RADIUS. |
| f6b00 | 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 46 72 61 | server.sends.the.attribute.``Fra |
| f6b20 | 6d 65 64 2d 50 6f 6f 6c 60 60 2c 20 74 68 65 6e 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 | med-Pool``,.then.the.IP.address. |
| f6b40 | 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 66 72 6f 6d 20 61 20 70 72 65 64 65 66 69 | will.be.allocated.from.a.predefi |
| f6b60 | 6e 65 64 20 49 50 20 70 6f 6f 6c 20 77 68 6f 73 65 20 6e 61 6d 65 20 65 71 75 61 6c 73 20 74 68 | ned.IP.pool.whose.name.equals.th |
| f6b80 | 65 20 61 74 74 72 69 62 75 74 65 20 76 61 6c 75 65 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 53 | e.attribute.value..If.the.RADIUS |
| f6ba0 | 20 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 53 74 | .server.sends.the.attribute.``St |
| f6bc0 | 61 74 65 66 75 6c 2d 49 50 76 36 2d 41 64 64 72 65 73 73 2d 50 6f 6f 6c 60 60 2c 20 49 50 76 36 | ateful-IPv6-Address-Pool``,.IPv6 |
| f6be0 | 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 66 72 6f 6d 20 | .address.will.be.allocated.from. |
| f6c00 | 61 20 70 72 65 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 60 60 70 72 65 66 69 78 60 | a.predefined.IPv6.pool.``prefix` |
| f6c20 | 60 20 77 68 6f 73 65 20 6e 61 6d 65 20 65 71 75 61 6c 73 20 74 68 65 20 61 74 74 72 69 62 75 74 | `.whose.name.equals.the.attribut |
| f6c40 | 65 20 76 61 6c 75 65 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 73 65 | e.value..If.the.RADIUS.server.se |
| f6c60 | 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 53 74 61 74 65 66 75 6c 2d 49 50 76 | nds.the.attribute.``Stateful-IPv |
| f6c80 | 36 2d 41 64 64 72 65 73 73 2d 50 6f 6f 6c 60 60 2c 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 | 6-Address-Pool``,.the.IPv6.addre |
| f6ca0 | 73 73 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 66 72 6f 6d 20 61 20 70 72 65 64 | ss.will.be.allocated.from.a.pred |
| f6cc0 | 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 60 60 70 72 65 66 69 78 60 60 20 77 68 6f 73 | efined.IPv6.pool.``prefix``.whos |
| f6ce0 | 65 20 6e 61 6d 65 20 65 71 75 61 6c 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 76 61 6c 75 | e.name.equals.the.attribute.valu |
| f6d00 | 65 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 75 73 65 73 20 74 68 65 | e..If.the.RADIUS.server.uses.the |
| f6d20 | 20 61 74 74 72 69 62 75 74 65 20 60 60 4e 41 53 2d 50 6f 72 74 2d 49 64 60 60 2c 20 70 70 70 20 | .attribute.``NAS-Port-Id``,.ppp. |
| f6d40 | 74 75 6e 6e 65 6c 73 20 77 69 6c 6c 20 62 65 20 72 65 6e 61 6d 65 64 2e 00 49 66 20 74 68 65 20 | tunnels.will.be.renamed..If.the. |
| f6d60 | 61 76 65 72 61 67 65 20 71 75 65 75 65 20 73 69 7a 65 20 69 73 20 6c 6f 77 65 72 20 74 68 61 6e | average.queue.size.is.lower.than |
| f6d80 | 20 74 68 65 20 2a 2a 6d 69 6e 2d 74 68 72 65 73 68 6f 6c 64 2a 2a 2c 20 61 6e 20 61 72 72 69 76 | .the.**min-threshold**,.an.arriv |
| f6da0 | 69 6e 67 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 70 6c 61 63 65 64 20 69 6e 20 74 68 65 | ing.packet.will.be.placed.in.the |
| f6dc0 | 20 71 75 65 75 65 2e 00 49 66 20 74 68 65 20 63 75 72 72 65 6e 74 20 71 75 65 75 65 20 73 69 7a | .queue..If.the.current.queue.siz |
| f6de0 | 65 20 69 73 20 6c 61 72 67 65 72 20 74 68 61 6e 20 2a 2a 71 75 65 75 65 2d 6c 69 6d 69 74 2a 2a | e.is.larger.than.**queue-limit** |
| f6e00 | 2c 20 74 68 65 6e 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 62 65 20 64 72 6f 70 70 65 64 2e 20 | ,.then.packets.will.be.dropped.. |
| f6e20 | 54 68 65 20 61 76 65 72 61 67 65 20 71 75 65 75 65 20 73 69 7a 65 20 64 65 70 65 6e 64 73 20 6f | The.average.queue.size.depends.o |
| f6e40 | 6e 20 69 74 73 20 66 6f 72 6d 65 72 20 61 76 65 72 61 67 65 20 73 69 7a 65 20 61 6e 64 20 69 74 | n.its.former.average.size.and.it |
| f6e60 | 73 20 63 75 72 72 65 6e 74 20 6f 6e 65 2e 00 49 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 | s.current.one..If.the.interface. |
| f6e80 | 77 68 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 69 76 65 64 20 69 73 | where.the.packet.was.received.is |
| f6ea0 | 20 70 61 72 74 20 6f 66 20 61 20 62 72 69 64 67 65 2c 20 74 68 65 6e 20 70 61 63 6b 65 74 69 73 | .part.of.a.bridge,.then.packetis |
| f6ec0 | 20 70 72 6f 63 65 73 73 65 64 20 61 74 20 74 68 65 20 2a 2a 42 72 69 64 67 65 20 4c 61 79 65 72 | .processed.at.the.**Bridge.Layer |
| f6ee0 | 2a 2a 2c 20 77 68 69 63 68 20 63 6f 6e 74 61 69 6e 73 20 61 20 62 61 73 69 63 20 73 65 74 75 70 | **,.which.contains.a.basic.setup |
| f6f00 | 20 66 6f 72 20 62 72 69 64 67 65 20 66 69 6c 74 65 72 69 6e 67 3a 00 49 66 20 74 68 65 20 69 6e | .for.bridge.filtering:.If.the.in |
| f6f20 | 74 65 72 66 61 63 65 20 77 68 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 | terface.where.the.packet.was.rec |
| f6f40 | 65 69 76 65 64 20 69 73 20 70 61 72 74 20 6f 66 20 61 20 62 72 69 64 67 65 2c 20 74 68 65 6e 20 | eived.is.part.of.a.bridge,.then. |
| f6f60 | 74 68 65 20 70 61 63 6b 65 74 20 69 73 20 70 72 6f 63 65 73 73 65 64 20 61 74 20 74 68 65 20 2a | the.packet.is.processed.at.the.* |
| f6f80 | 2a 42 72 69 64 67 65 20 4c 61 79 65 72 2a 2a 2c 20 77 68 69 63 68 20 63 6f 6e 74 61 69 6e 73 20 | *Bridge.Layer**,.which.contains. |
| f6fa0 | 61 20 62 61 73 69 63 20 73 65 74 75 70 20 66 6f 72 20 62 72 69 64 67 65 20 66 69 6c 74 65 72 69 | a.basic.setup.for.bridge.filteri |
| f6fc0 | 6e 67 3a 00 49 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 72 65 20 74 68 65 20 70 | ng:.If.the.interface.where.the.p |
| f6fe0 | 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 69 76 65 64 20 69 73 20 70 61 72 74 20 6f 66 20 61 20 | acket.was.received.is.part.of.a. |
| f7000 | 62 72 69 64 67 65 2c 20 74 68 65 6e 20 74 68 65 20 70 61 63 6b 65 74 20 69 73 20 70 72 6f 63 65 | bridge,.then.the.packet.is.proce |
| f7020 | 73 73 65 64 20 61 74 20 74 68 65 20 2a 2a 42 72 69 64 67 65 20 4c 61 79 65 72 2a 2a 3a 00 49 66 | ssed.at.the.**Bridge.Layer**:.If |
| f7040 | 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 | .the.interface.where.the.packet. |
| f7060 | 77 61 73 20 72 65 63 65 69 76 65 64 20 69 73 6e 27 74 20 70 61 72 74 20 6f 66 20 61 20 62 72 69 | was.received.isn't.part.of.a.bri |
| f7080 | 64 67 65 2c 20 74 68 65 6e 20 70 61 63 6b 65 74 20 69 73 20 70 72 6f 63 65 73 73 65 64 20 61 74 | dge,.then.packet.is.processed.at |
| f70a0 | 20 74 68 65 20 2a 2a 49 50 20 4c 61 79 65 72 2a 2a 3a 00 49 66 20 74 68 65 20 69 6e 74 65 72 66 | .the.**IP.Layer**:.If.the.interf |
| f70c0 | 61 63 65 20 77 68 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 69 76 65 | ace.where.the.packet.was.receive |
| f70e0 | 64 20 69 73 6e 27 74 20 70 61 72 74 20 6f 66 20 61 20 62 72 69 64 67 65 2c 20 74 68 65 6e 20 70 | d.isn't.part.of.a.bridge,.then.p |
| f7100 | 61 63 6b 65 74 69 73 20 70 72 6f 63 65 73 73 65 64 20 61 74 20 74 68 65 20 2a 2a 49 50 20 4c 61 | acketis.processed.at.the.**IP.La |
| f7120 | 79 65 72 2a 2a 3a 00 49 66 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 20 69 73 20 49 50 76 36 20 74 | yer**:.If.the.protocol.is.IPv6.t |
| f7140 | 68 65 6e 20 74 68 65 20 73 6f 75 72 63 65 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 | hen.the.source.and.destination.a |
| f7160 | 64 64 72 65 73 73 65 73 20 61 72 65 20 66 69 72 73 74 20 68 61 73 68 65 64 20 75 73 69 6e 67 20 | ddresses.are.first.hashed.using. |
| f7180 | 69 70 76 36 5f 61 64 64 72 5f 68 61 73 68 2e 00 49 66 20 74 68 65 20 73 74 61 74 69 63 61 6c 6c | ipv6_addr_hash..If.the.staticall |
| f71a0 | 79 20 6d 61 70 70 65 64 20 70 65 65 72 20 69 73 20 72 75 6e 6e 69 6e 67 20 43 69 73 63 6f 20 49 | y.mapped.peer.is.running.Cisco.I |
| f71c0 | 4f 53 2c 20 73 70 65 63 69 66 79 20 74 68 65 20 63 69 73 63 6f 20 6b 65 79 77 6f 72 64 2e 20 49 | OS,.specify.the.cisco.keyword..I |
| f71e0 | 74 20 69 73 20 75 73 65 64 20 74 6f 20 66 69 78 20 73 74 61 74 69 63 61 6c 6c 79 20 74 68 65 20 | t.is.used.to.fix.statically.the. |
| f7200 | 52 65 67 69 73 74 72 61 74 69 6f 6e 20 52 65 71 75 65 73 74 20 49 44 20 73 6f 20 74 68 61 74 20 | Registration.Request.ID.so.that. |
| f7220 | 61 20 6d 61 74 63 68 69 6e 67 20 50 75 72 67 65 20 52 65 71 75 65 73 74 20 63 61 6e 20 62 65 20 | a.matching.Purge.Request.can.be. |
| f7240 | 73 65 6e 74 20 69 66 20 4e 42 4d 41 20 61 64 64 72 65 73 73 20 68 61 73 20 63 68 61 6e 67 65 64 | sent.if.NBMA.address.has.changed |
| f7260 | 2e 20 54 68 69 73 20 69 73 20 74 6f 20 77 6f 72 6b 20 61 72 6f 75 6e 64 20 62 72 6f 6b 65 6e 20 | ..This.is.to.work.around.broken. |
| f7280 | 49 4f 53 20 77 68 69 63 68 20 72 65 71 75 69 72 65 73 20 50 75 72 67 65 20 52 65 71 75 65 73 74 | IOS.which.requires.Purge.Request |
| f72a0 | 20 49 44 20 74 6f 20 6d 61 74 63 68 20 74 68 65 20 6f 72 69 67 69 6e 61 6c 20 52 65 67 69 73 74 | .ID.to.match.the.original.Regist |
| f72c0 | 72 61 74 69 6f 6e 20 52 65 71 75 65 73 74 20 49 44 2e 00 49 66 20 74 68 65 20 73 79 73 74 65 6d | ration.Request.ID..If.the.system |
| f72e0 | 20 64 65 74 65 63 74 73 20 61 6e 20 75 6e 63 6f 6e 66 69 67 75 72 65 64 20 77 69 72 65 6c 65 73 | .detects.an.unconfigured.wireles |
| f7300 | 73 20 64 65 76 69 63 65 2c 20 69 74 20 77 69 6c 6c 20 62 65 20 61 75 74 6f 6d 61 74 69 63 61 6c | s.device,.it.will.be.automatical |
| f7320 | 6c 79 20 61 64 64 65 64 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 72 65 65 2c | ly.added.the.configuration.tree, |
| f7340 | 20 73 70 65 63 69 66 79 69 6e 67 20 61 6e 79 20 64 65 74 65 63 74 65 64 20 73 65 74 74 69 6e 67 | .specifying.any.detected.setting |
| f7360 | 73 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 2c 20 69 74 73 20 4d 41 43 20 61 64 64 72 65 73 73 29 | s.(for.example,.its.MAC.address) |
| f7380 | 20 61 6e 64 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 72 75 6e 20 69 6e 20 6d 6f 6e 69 74 6f | .and.configured.to.run.in.monito |
| f73a0 | 72 20 6d 6f 64 65 2e 00 49 66 20 74 68 65 20 74 61 62 6c 65 20 69 73 20 65 6d 70 74 79 20 61 6e | r.mode..If.the.table.is.empty.an |
| f73c0 | 64 20 79 6f 75 20 68 61 76 65 20 61 20 77 61 72 6e 69 6e 67 20 6d 65 73 73 61 67 65 2c 20 69 74 | d.you.have.a.warning.message,.it |
| f73e0 | 20 6d 65 61 6e 73 20 63 6f 6e 6e 74 72 61 63 6b 20 69 73 20 6e 6f 74 20 65 6e 61 62 6c 65 64 2e | .means.conntrack.is.not.enabled. |
| f7400 | 20 54 6f 20 65 6e 61 62 6c 65 20 63 6f 6e 6e 74 72 61 63 6b 2c 20 6a 75 73 74 20 63 72 65 61 74 | .To.enable.conntrack,.just.creat |
| f7420 | 65 20 61 20 4e 41 54 20 6f 72 20 61 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 2e 20 3a 63 66 67 | e.a.NAT.or.a.firewall.rule..:cfg |
| f7440 | 63 6d 64 3a 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 73 74 61 74 65 2d 70 6f 6c 69 63 79 20 65 | cmd:`set.firewall.state-policy.e |
| f7460 | 73 74 61 62 6c 69 73 68 65 64 20 61 63 74 69 6f 6e 20 61 63 63 65 70 74 60 00 49 66 20 74 68 65 | stablished.action.accept`.If.the |
| f7480 | 72 65 20 61 72 65 20 6e 6f 20 66 72 65 65 20 61 64 64 72 65 73 73 65 73 20 62 75 74 20 74 68 65 | re.are.no.free.addresses.but.the |
| f74a0 | 72 65 20 61 72 65 20 61 62 61 6e 64 6f 6e 65 64 20 49 50 20 61 64 64 72 65 73 73 65 73 2c 20 74 | re.are.abandoned.IP.addresses,.t |
| f74c0 | 68 65 20 44 48 43 50 20 73 65 72 76 65 72 20 77 69 6c 6c 20 61 74 74 65 6d 70 74 20 74 6f 20 72 | he.DHCP.server.will.attempt.to.r |
| f74e0 | 65 63 6c 61 69 6d 20 61 6e 20 61 62 61 6e 64 6f 6e 65 64 20 49 50 20 61 64 64 72 65 73 73 20 72 | eclaim.an.abandoned.IP.address.r |
| f7500 | 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 76 61 6c 75 65 20 6f 66 20 61 62 61 6e 64 6f | egardless.of.the.value.of.abando |
| f7520 | 6e 2d 6c 65 61 73 65 2d 74 69 6d 65 2e 00 49 66 20 74 68 65 72 65 20 69 73 20 53 4e 41 54 20 72 | n-lease-time..If.there.is.SNAT.r |
| f7540 | 75 6c 65 73 20 6f 6e 20 65 74 68 31 2c 20 6e 65 65 64 20 74 6f 20 61 64 64 20 65 78 63 6c 75 64 | ules.on.eth1,.need.to.add.exclud |
| f7560 | 65 20 72 75 6c 65 00 49 66 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 69 6e 76 6f 6b 65 | e.rule.If.this.command.is.invoke |
| f7580 | 64 20 66 72 6f 6d 20 63 6f 6e 66 69 67 75 72 65 20 6d 6f 64 65 20 77 69 74 68 20 74 68 65 20 60 | d.from.configure.mode.with.the.` |
| f75a0 | 60 72 75 6e 60 60 20 70 72 65 66 69 78 20 74 68 65 20 6b 65 79 20 69 73 20 61 75 74 6f 6d 61 74 | `run``.prefix.the.key.is.automat |
| f75c0 | 69 63 61 6c 6c 79 20 69 6e 73 74 61 6c 6c 65 64 20 74 6f 20 74 68 65 20 61 70 70 72 6f 70 72 69 | ically.installed.to.the.appropri |
| f75e0 | 61 74 65 20 69 6e 74 65 72 66 61 63 65 3a 00 49 66 20 74 68 69 73 20 69 73 20 73 65 74 20 74 68 | ate.interface:.If.this.is.set.th |
| f7600 | 65 20 72 65 6c 61 79 20 61 67 65 6e 74 20 77 69 6c 6c 20 69 6e 73 65 72 74 20 74 68 65 20 69 6e | e.relay.agent.will.insert.the.in |
| f7620 | 74 65 72 66 61 63 65 20 49 44 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 73 65 74 20 61 | terface.ID..This.option.is.set.a |
| f7640 | 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 69 66 20 6d 6f 72 65 20 74 68 61 6e 20 6f 6e 65 20 6c 69 | utomatically.if.more.than.one.li |
| f7660 | 73 74 65 6e 69 6e 67 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 69 6e 20 75 73 65 2e 00 49 | stening.interfaces.are.in.use..I |
| f7680 | 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 65 6e 61 62 6c 65 64 2c 20 74 68 65 6e 20 74 | f.this.option.is.enabled,.then.t |
| f76a0 | 68 65 20 61 6c 72 65 61 64 79 2d 73 65 6c 65 63 74 65 64 20 63 68 65 63 6b 2c 20 77 68 65 72 65 | he.already-selected.check,.where |
| f76c0 | 20 61 6c 72 65 61 64 79 20 73 65 6c 65 63 74 65 64 20 65 42 47 50 20 72 6f 75 74 65 73 20 61 72 | .already.selected.eBGP.routes.ar |
| f76e0 | 65 20 70 72 65 66 65 72 72 65 64 2c 20 69 73 20 73 6b 69 70 70 65 64 2e 00 49 66 20 74 68 69 73 | e.preferred,.is.skipped..If.this |
| f7700 | 20 6f 70 74 69 6f 6e 20 69 73 20 67 69 76 65 6e 2c 20 6f 6e 6c 79 20 53 53 54 50 20 63 6f 6e 6e | .option.is.given,.only.SSTP.conn |
| f7720 | 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 68 6f 73 74 20 61 6e | ections.to.the.specified.host.an |
| f7740 | 64 20 77 69 74 68 20 74 68 65 20 73 61 6d 65 20 54 4c 53 20 53 4e 49 20 77 69 6c 6c 20 62 65 20 | d.with.the.same.TLS.SNI.will.be. |
| f7760 | 61 6c 6c 6f 77 65 64 2e 00 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 73 70 65 63 69 | allowed..If.this.option.is.speci |
| f7780 | 66 69 65 64 20 61 6e 64 20 69 73 20 67 72 65 61 74 65 72 20 74 68 61 6e 20 30 2c 20 74 68 65 6e | fied.and.is.greater.than.0,.then |
| f77a0 | 20 74 68 65 20 50 50 50 20 6d 6f 64 75 6c 65 20 77 69 6c 6c 20 73 65 6e 64 20 4c 43 50 20 65 63 | .the.PPP.module.will.send.LCP.ec |
| f77c0 | 68 6f 20 72 65 71 75 65 73 74 73 20 65 76 65 72 79 20 60 3c 69 6e 74 65 72 76 61 6c 3e 60 20 73 | ho.requests.every.`<interval>`.s |
| f77e0 | 65 63 6f 6e 64 73 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 2a 2a 33 30 2a 2a 2e | econds..Default.value.is.**30**. |
| f7800 | 00 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 73 70 65 63 69 66 69 65 64 20 61 6e 64 | .If.this.option.is.specified.and |
| f7820 | 20 69 73 20 67 72 65 61 74 65 72 20 74 68 61 6e 20 30 2c 20 74 68 65 6e 20 74 68 65 20 50 50 50 | .is.greater.than.0,.then.the.PPP |
| f7840 | 20 6d 6f 64 75 6c 65 20 77 69 6c 6c 20 73 65 6e 64 20 4c 43 50 20 70 69 6e 67 73 20 6f 66 20 74 | .module.will.send.LCP.pings.of.t |
| f7860 | 68 65 20 65 63 68 6f 20 72 65 71 75 65 73 74 20 65 76 65 72 79 20 60 3c 69 6e 74 65 72 76 61 6c | he.echo.request.every.`<interval |
| f7880 | 3e 60 20 73 65 63 6f 6e 64 73 2e 00 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 73 70 | >`.seconds..If.this.option.is.sp |
| f78a0 | 65 63 69 66 69 65 64 20 61 6e 64 20 69 73 20 67 72 65 61 74 65 72 20 74 68 61 6e 20 30 2c 20 74 | ecified.and.is.greater.than.0,.t |
| f78c0 | 68 65 6e 20 74 68 65 20 50 50 50 20 6d 6f 64 75 6c 65 20 77 69 6c 6c 20 73 65 6e 64 20 4c 43 50 | hen.the.PPP.module.will.send.LCP |
| f78e0 | 20 70 69 6e 67 73 20 6f 66 20 74 68 65 20 65 63 68 6f 20 72 65 71 75 65 73 74 20 65 76 65 72 79 | .pings.of.the.echo.request.every |
| f7900 | 20 60 3c 69 6e 74 65 72 76 61 6c 3e 60 20 73 65 63 6f 6e 64 73 2e 20 44 65 66 61 75 6c 74 20 76 | .`<interval>`.seconds..Default.v |
| f7920 | 61 6c 75 65 20 69 73 20 2a 2a 33 30 2a 2a 2e 00 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 | alue.is.**30**..If.this.option.i |
| f7940 | 73 20 75 6e 73 65 74 20 28 64 65 66 61 75 6c 74 29 2c 20 69 6e 63 6f 6d 69 6e 67 20 49 50 20 64 | s.unset.(default),.incoming.IP.d |
| f7960 | 69 72 65 63 74 65 64 20 62 72 6f 61 64 63 61 73 74 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 6e | irected.broadcast.packets.will.n |
| f7980 | 6f 74 20 62 65 20 66 6f 72 77 61 72 64 65 64 2e 00 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 | ot.be.forwarded..If.this.option. |
| f79a0 | 69 73 20 75 6e 73 65 74 20 28 64 65 66 61 75 6c 74 29 2c 20 72 65 70 6c 79 20 66 6f 72 20 61 6e | is.unset.(default),.reply.for.an |
| f79c0 | 79 20 6c 6f 63 61 6c 20 74 61 72 67 65 74 20 49 50 20 61 64 64 72 65 73 73 2c 20 63 6f 6e 66 69 | y.local.target.IP.address,.confi |
| f79e0 | 67 75 72 65 64 20 6f 6e 20 61 6e 79 20 69 6e 74 65 72 66 61 63 65 2e 00 49 66 20 74 68 69 73 20 | gured.on.any.interface..If.this. |
| f7a00 | 70 61 72 61 6d 65 74 65 72 20 69 73 20 6e 6f 74 20 73 65 74 20 6f 72 20 30 2c 20 61 6e 20 6f 6e | parameter.is.not.set.or.0,.an.on |
| f7a20 | 2d 64 65 6d 61 6e 64 20 6c 69 6e 6b 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 74 61 6b 65 6e 20 64 | -demand.link.will.not.be.taken.d |
| f7a40 | 6f 77 6e 20 77 68 65 6e 20 69 74 20 69 73 20 69 64 6c 65 20 61 6e 64 20 61 66 74 65 72 20 74 68 | own.when.it.is.idle.and.after.th |
| f7a60 | 65 20 69 6e 69 74 69 61 6c 20 65 73 74 61 62 6c 69 73 68 6d 65 6e 74 20 6f 66 20 74 68 65 20 63 | e.initial.establishment.of.the.c |
| f7a80 | 6f 6e 6e 65 63 74 69 6f 6e 2e 20 49 74 20 77 69 6c 6c 20 73 74 61 79 20 75 70 20 66 6f 72 65 76 | onnection..It.will.stay.up.forev |
| f7aa0 | 65 72 2e 00 49 66 20 74 68 69 73 20 70 61 72 61 6d 65 74 65 72 20 69 73 20 6e 6f 74 20 73 65 74 | er..If.this.parameter.is.not.set |
| f7ac0 | 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 68 6f 6c 64 6f 66 66 20 74 69 6d 65 20 69 73 20 33 30 | ,.the.default.holdoff.time.is.30 |
| f7ae0 | 20 73 65 63 6f 6e 64 73 2e 00 49 66 20 75 6e 73 65 74 2c 20 69 6e 63 6f 6d 69 6e 67 20 63 6f 6e | .seconds..If.unset,.incoming.con |
| f7b00 | 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 77 69 | nections.to.the.RADIUS.server.wi |
| f7b20 | 6c 6c 20 75 73 65 20 74 68 65 20 6e 65 61 72 65 73 74 20 69 6e 74 65 72 66 61 63 65 20 61 64 64 | ll.use.the.nearest.interface.add |
| f7b40 | 72 65 73 73 20 70 6f 69 6e 74 69 6e 67 20 74 6f 77 61 72 64 73 20 74 68 65 20 73 65 72 76 65 72 | ress.pointing.towards.the.server |
| f7b60 | 20 2d 20 6d 61 6b 69 6e 67 20 69 74 20 65 72 72 6f 72 20 70 72 6f 6e 65 20 6f 6e 20 65 2e 67 2e | .-.making.it.error.prone.on.e.g. |
| f7b80 | 20 4f 53 50 46 20 6e 65 74 77 6f 72 6b 73 20 77 68 65 6e 20 61 20 6c 69 6e 6b 20 66 61 69 6c 73 | .OSPF.networks.when.a.link.fails |
| f7ba0 | 20 61 6e 64 20 61 20 62 61 63 6b 75 70 20 72 6f 75 74 65 20 69 73 20 74 61 6b 65 6e 2e 00 49 66 | .and.a.backup.route.is.taken..If |
| f7bc0 | 20 75 6e 73 65 74 2c 20 69 6e 63 6f 6d 69 6e 67 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 | .unset,.incoming.connections.to. |
| f7be0 | 74 68 65 20 54 41 43 41 43 53 20 73 65 72 76 65 72 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 6e | the.TACACS.server.will.use.the.n |
| f7c00 | 65 61 72 65 73 74 20 69 6e 74 65 72 66 61 63 65 20 61 64 64 72 65 73 73 20 70 6f 69 6e 74 69 6e | earest.interface.address.pointin |
| f7c20 | 67 20 74 6f 77 61 72 64 73 20 74 68 65 20 73 65 72 76 65 72 20 2d 20 6d 61 6b 69 6e 67 20 69 74 | g.towards.the.server.-.making.it |
| f7c40 | 20 65 72 72 6f 72 20 70 72 6f 6e 65 20 6f 6e 20 65 2e 67 2e 20 4f 53 50 46 20 6e 65 74 77 6f 72 | .error.prone.on.e.g..OSPF.networ |
| f7c60 | 6b 73 20 77 68 65 6e 20 61 20 6c 69 6e 6b 20 66 61 69 6c 73 20 61 6e 64 20 61 20 62 61 63 6b 75 | ks.when.a.link.fails.and.a.backu |
| f7c80 | 70 20 72 6f 75 74 65 20 69 73 20 74 61 6b 65 6e 2e 00 49 66 20 79 6f 75 20 61 70 70 6c 79 20 61 | p.route.is.taken..If.you.apply.a |
| f7ca0 | 20 70 61 72 61 6d 65 74 65 72 20 74 6f 20 61 6e 20 69 6e 64 69 76 69 64 75 61 6c 20 6e 65 69 67 | .parameter.to.an.individual.neig |
| f7cc0 | 68 62 6f 72 20 49 50 20 61 64 64 72 65 73 73 2c 20 79 6f 75 20 6f 76 65 72 72 69 64 65 20 74 68 | hbor.IP.address,.you.override.th |
| f7ce0 | 65 20 61 63 74 69 6f 6e 20 64 65 66 69 6e 65 64 20 66 6f 72 20 61 20 70 65 65 72 20 67 72 6f 75 | e.action.defined.for.a.peer.grou |
| f7d00 | 70 20 74 68 61 74 20 69 6e 63 6c 75 64 65 73 20 74 68 61 74 20 49 50 20 61 64 64 72 65 73 73 2e | p.that.includes.that.IP.address. |
| f7d20 | 00 49 66 20 79 6f 75 20 61 72 65 20 61 20 68 61 63 6b 65 72 20 6f 72 20 77 61 6e 74 20 74 6f 20 | .If.you.are.a.hacker.or.want.to. |
| f7d40 | 74 72 79 20 6f 6e 20 79 6f 75 72 20 6f 77 6e 20 77 65 20 73 75 70 70 6f 72 74 20 70 61 73 73 69 | try.on.your.own.we.support.passi |
| f7d60 | 6e 67 20 72 61 77 20 4f 70 65 6e 56 50 4e 20 6f 70 74 69 6f 6e 73 20 74 6f 20 4f 70 65 6e 56 50 | ng.raw.OpenVPN.options.to.OpenVP |
| f7d80 | 4e 2e 00 49 66 20 79 6f 75 20 61 72 65 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 20 56 52 46 20 | N..If.you.are.configuring.a.VRF. |
| f7da0 | 66 6f 72 20 6d 61 6e 61 67 65 6d 65 6e 74 20 70 75 72 70 6f 73 65 73 2c 20 74 68 65 72 65 20 69 | for.management.purposes,.there.i |
| f7dc0 | 73 20 63 75 72 72 65 6e 74 6c 79 20 6e 6f 20 77 61 79 20 74 6f 20 66 6f 72 63 65 20 73 79 73 74 | s.currently.no.way.to.force.syst |
| f7de0 | 65 6d 20 44 4e 53 20 74 72 61 66 66 69 63 20 76 69 61 20 61 20 73 70 65 63 69 66 69 63 20 56 52 | em.DNS.traffic.via.a.specific.VR |
| f7e00 | 46 2e 00 49 66 20 79 6f 75 20 61 72 65 20 6e 65 77 20 74 6f 20 74 68 65 73 65 20 72 6f 75 74 69 | F..If.you.are.new.to.these.routi |
| f7e20 | 6e 67 20 73 65 63 75 72 69 74 79 20 74 65 63 68 6e 6f 6c 6f 67 69 65 73 20 74 68 65 6e 20 74 68 | ng.security.technologies.then.th |
| f7e40 | 65 72 65 20 69 73 20 61 6e 20 60 65 78 63 65 6c 6c 65 6e 74 20 67 75 69 64 65 20 74 6f 20 52 50 | ere.is.an.`excellent.guide.to.RP |
| f7e60 | 4b 49 60 5f 20 62 79 20 4e 4c 6e 65 74 20 4c 61 62 73 20 77 68 69 63 68 20 77 69 6c 6c 20 67 65 | KI`_.by.NLnet.Labs.which.will.ge |
| f7e80 | 74 20 79 6f 75 20 75 70 20 74 6f 20 73 70 65 65 64 20 76 65 72 79 20 71 75 69 63 6b 6c 79 2e 20 | t.you.up.to.speed.very.quickly.. |
| f7ea0 | 54 68 65 69 72 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 65 78 70 6c 61 69 6e 73 20 65 76 65 | Their.documentation.explains.eve |
| f7ec0 | 72 79 74 68 69 6e 67 20 66 72 6f 6d 20 77 68 61 74 20 52 50 4b 49 20 69 73 20 74 6f 20 64 65 70 | rything.from.what.RPKI.is.to.dep |
| f7ee0 | 6c 6f 79 69 6e 67 20 69 74 20 69 6e 20 70 72 6f 64 75 63 74 69 6f 6e 2e 20 49 74 20 61 6c 73 6f | loying.it.in.production..It.also |
| f7f00 | 20 68 61 73 20 73 6f 6d 65 20 60 68 65 6c 70 20 61 6e 64 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 | .has.some.`help.and.operational. |
| f7f20 | 67 75 69 64 61 6e 63 65 60 5f 20 69 6e 63 6c 75 64 69 6e 67 20 22 57 68 61 74 20 63 61 6e 20 49 | guidance`_.including."What.can.I |
| f7f40 | 20 64 6f 20 61 62 6f 75 74 20 6d 79 20 72 6f 75 74 65 20 68 61 76 69 6e 67 20 61 6e 20 49 6e 76 | .do.about.my.route.having.an.Inv |
| f7f60 | 61 6c 69 64 20 73 74 61 74 65 3f 22 00 49 66 20 79 6f 75 20 61 72 65 20 72 65 73 70 6f 6e 73 69 | alid.state?".If.you.are.responsi |
| f7f80 | 62 6c 65 20 66 6f 72 20 74 68 65 20 67 6c 6f 62 61 6c 20 61 64 64 72 65 73 73 65 73 20 61 73 73 | ble.for.the.global.addresses.ass |
| f7fa0 | 69 67 6e 65 64 20 74 6f 20 79 6f 75 72 20 6e 65 74 77 6f 72 6b 2c 20 70 6c 65 61 73 65 20 6d 61 | igned.to.your.network,.please.ma |
| f7fc0 | 6b 65 20 73 75 72 65 20 74 68 61 74 20 79 6f 75 72 20 70 72 65 66 69 78 65 73 20 68 61 76 65 20 | ke.sure.that.your.prefixes.have. |
| f7fe0 | 52 4f 41 73 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 6d 20 74 6f 20 61 76 6f | ROAs.associated.with.them.to.avo |
| f8000 | 69 64 20 62 65 69 6e 67 20 60 6e 6f 74 66 6f 75 6e 64 60 20 62 79 20 52 50 4b 49 2e 20 46 6f 72 | id.being.`notfound`.by.RPKI..For |
| f8020 | 20 6d 6f 73 74 20 41 53 4e 73 20 74 68 69 73 20 77 69 6c 6c 20 69 6e 76 6f 6c 76 65 20 70 75 62 | .most.ASNs.this.will.involve.pub |
| f8040 | 6c 69 73 68 69 6e 67 20 52 4f 41 73 20 76 69 61 20 79 6f 75 72 20 3a 61 62 62 72 3a 60 52 49 52 | lishing.ROAs.via.your.:abbr:`RIR |
| f8060 | 20 28 52 65 67 69 6f 6e 61 6c 20 49 6e 74 65 72 6e 65 74 20 52 65 67 69 73 74 72 79 29 60 20 28 | .(Regional.Internet.Registry)`.( |
| f8080 | 52 49 50 45 20 4e 43 43 2c 20 41 50 4e 49 43 2c 20 41 52 49 4e 2c 20 4c 41 43 4e 49 43 20 6f 72 | RIPE.NCC,.APNIC,.ARIN,.LACNIC.or |
| f80a0 | 20 41 46 52 49 4e 49 43 29 2c 20 61 6e 64 20 69 73 20 73 6f 6d 65 74 68 69 6e 67 20 79 6f 75 20 | .AFRINIC),.and.is.something.you. |
| f80c0 | 61 72 65 20 65 6e 63 6f 75 72 61 67 65 64 20 74 6f 20 64 6f 20 77 68 65 6e 65 76 65 72 20 79 6f | are.encouraged.to.do.whenever.yo |
| f80e0 | 75 20 70 6c 61 6e 20 74 6f 20 61 6e 6e 6f 75 6e 63 65 20 61 64 64 72 65 73 73 65 73 20 69 6e 74 | u.plan.to.announce.addresses.int |
| f8100 | 6f 20 74 68 65 20 44 46 5a 2e 00 49 66 20 79 6f 75 20 61 72 65 20 72 65 73 70 6f 6e 73 69 62 6c | o.the.DFZ..If.you.are.responsibl |
| f8120 | 65 20 66 6f 72 20 74 68 65 20 67 6c 6f 62 61 6c 20 61 64 64 72 65 73 73 65 73 20 61 73 73 69 67 | e.for.the.global.addresses.assig |
| f8140 | 6e 65 64 20 74 6f 20 79 6f 75 72 20 6e 65 74 77 6f 72 6b 2c 20 70 6c 65 61 73 65 20 6d 61 6b 65 | ned.to.your.network,.please.make |
| f8160 | 20 73 75 72 65 20 74 68 61 74 20 79 6f 75 72 20 70 72 65 66 69 78 65 73 20 68 61 76 65 20 52 4f | .sure.that.your.prefixes.have.RO |
| f8180 | 41 73 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 6d 20 74 6f 20 61 76 6f 69 64 | As.associated.with.them.to.avoid |
| f81a0 | 20 62 65 69 6e 67 20 60 6e 6f 74 66 6f 75 6e 64 60 20 62 79 20 52 50 4b 49 2e 20 46 6f 72 20 6d | .being.`notfound`.by.RPKI..For.m |
| f81c0 | 6f 73 74 20 41 53 4e 73 20 74 68 69 73 20 77 69 6c 6c 20 69 6e 76 6f 6c 76 65 20 70 75 62 6c 69 | ost.ASNs.this.will.involve.publi |
| f81e0 | 73 68 69 6e 67 20 52 4f 41 73 20 76 69 61 20 79 6f 75 72 20 3a 61 62 62 72 3a 60 52 49 52 20 28 | shing.ROAs.via.your.:abbr:`RIR.( |
| f8200 | 52 65 67 69 6f 6e 61 6c 20 49 6e 74 65 72 6e 65 74 20 52 65 67 69 73 74 72 79 29 60 20 28 52 49 | Regional.Internet.Registry)`.(RI |
| f8220 | 50 45 20 4e 43 43 2c 20 41 50 4e 49 43 2c 20 41 52 49 4e 2c 20 4c 41 43 4e 49 43 2c 20 6f 72 20 | PE.NCC,.APNIC,.ARIN,.LACNIC,.or. |
| f8240 | 41 46 52 49 4e 49 43 29 2c 20 61 6e 64 20 69 73 20 73 6f 6d 65 74 68 69 6e 67 20 79 6f 75 20 61 | AFRINIC),.and.is.something.you.a |
| f8260 | 72 65 20 65 6e 63 6f 75 72 61 67 65 64 20 74 6f 20 64 6f 20 77 68 65 6e 65 76 65 72 20 79 6f 75 | re.encouraged.to.do.whenever.you |
| f8280 | 20 70 6c 61 6e 20 74 6f 20 61 6e 6e 6f 75 6e 63 65 20 61 64 64 72 65 73 73 65 73 20 69 6e 74 6f | .plan.to.announce.addresses.into |
| f82a0 | 20 74 68 65 20 44 46 5a 2e 00 49 66 20 79 6f 75 20 61 72 65 20 75 73 69 6e 67 20 46 51 2d 43 6f | .the.DFZ..If.you.are.using.FQ-Co |
| f82c0 | 44 65 6c 20 65 6d 62 65 64 64 65 64 20 69 6e 74 6f 20 53 68 61 70 65 72 5f 20 61 6e 64 20 79 6f | Del.embedded.into.Shaper_.and.yo |
| f82e0 | 75 20 68 61 76 65 20 6c 61 72 67 65 20 72 61 74 65 73 20 28 31 30 30 4d 62 69 74 20 61 6e 64 20 | u.have.large.rates.(100Mbit.and. |
| f8300 | 61 62 6f 76 65 29 2c 20 79 6f 75 20 6d 61 79 20 63 6f 6e 73 69 64 65 72 20 69 6e 63 72 65 61 73 | above),.you.may.consider.increas |
| f8320 | 69 6e 67 20 60 71 75 61 6e 74 75 6d 60 20 74 6f 20 38 30 30 30 20 6f 72 20 68 69 67 68 65 72 20 | ing.`quantum`.to.8000.or.higher. |
| f8340 | 73 6f 20 74 68 61 74 20 74 68 65 20 73 63 68 65 64 75 6c 65 72 20 73 61 76 65 73 20 43 50 55 2e | so.that.the.scheduler.saves.CPU. |
| f8360 | 00 49 66 20 79 6f 75 20 61 72 65 20 75 73 69 6e 67 20 4f 53 50 46 20 61 73 20 49 47 50 2c 20 61 | .If.you.are.using.OSPF.as.IGP,.a |
| f8380 | 6c 77 61 79 73 20 74 68 65 20 63 6c 6f 73 65 73 74 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e 6e | lways.the.closest.interface.conn |
| f83a0 | 65 63 74 65 64 20 74 6f 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 69 73 20 75 73 | ected.to.the.RADIUS.server.is.us |
| f83c0 | 65 64 2e 20 57 69 74 68 20 56 79 4f 53 20 31 2e 32 20 79 6f 75 20 63 61 6e 20 62 69 6e 64 20 61 | ed..With.VyOS.1.2.you.can.bind.a |
| f83e0 | 6c 6c 20 6f 75 74 67 6f 69 6e 67 20 52 41 44 49 55 53 20 72 65 71 75 65 73 74 73 20 74 6f 20 61 | ll.outgoing.RADIUS.requests.to.a |
| f8400 | 20 73 69 6e 67 6c 65 20 73 6f 75 72 63 65 20 49 50 20 65 2e 67 2e 20 74 68 65 20 6c 6f 6f 70 62 | .single.source.IP.e.g..the.loopb |
| f8420 | 61 63 6b 20 69 6e 74 65 72 66 61 63 65 2e 00 49 66 20 79 6f 75 20 61 72 65 20 75 73 69 6e 67 20 | ack.interface..If.you.are.using. |
| f8440 | 4f 53 50 46 20 61 73 20 49 47 50 2c 20 61 6c 77 61 79 73 20 74 68 65 20 63 6c 6f 73 65 73 74 20 | OSPF.as.IGP,.always.the.closest. |
| f8460 | 69 6e 74 65 72 66 61 63 65 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 65 20 52 41 44 49 55 | interface.connected.to.the.RADIU |
| f8480 | 53 20 73 65 72 76 65 72 20 69 73 20 75 73 65 64 2e 20 59 6f 75 20 63 61 6e 20 62 69 6e 64 20 61 | S.server.is.used..You.can.bind.a |
| f84a0 | 6c 6c 20 6f 75 74 67 6f 69 6e 67 20 52 41 44 49 55 53 20 72 65 71 75 65 73 74 73 20 74 6f 20 61 | ll.outgoing.RADIUS.requests.to.a |
| f84c0 | 20 73 69 6e 67 6c 65 20 73 6f 75 72 63 65 20 49 50 20 65 2e 67 2e 20 74 68 65 20 6c 6f 6f 70 62 | .single.source.IP.e.g..the.loopb |
| f84e0 | 61 63 6b 20 69 6e 74 65 72 66 61 63 65 2e 00 49 66 20 79 6f 75 20 61 72 65 20 75 73 69 6e 67 20 | ack.interface..If.you.are.using. |
| f8500 | 4f 53 50 46 20 61 73 20 79 6f 75 72 20 49 47 50 2c 20 75 73 65 20 74 68 65 20 69 6e 74 65 72 66 | OSPF.as.your.IGP,.use.the.interf |
| f8520 | 61 63 65 20 63 6f 6e 6e 65 63 74 65 64 20 63 6c 6f 73 65 73 74 20 74 6f 20 74 68 65 20 52 41 44 | ace.connected.closest.to.the.RAD |
| f8540 | 49 55 53 20 73 65 72 76 65 72 2e 20 59 6f 75 20 63 61 6e 20 62 69 6e 64 20 61 6c 6c 20 6f 75 74 | IUS.server..You.can.bind.all.out |
| f8560 | 67 6f 69 6e 67 20 52 41 44 49 55 53 20 72 65 71 75 65 73 74 73 20 74 6f 20 61 20 73 69 6e 67 6c | going.RADIUS.requests.to.a.singl |
| f8580 | 65 20 73 6f 75 72 63 65 20 49 50 20 65 2e 67 2e 20 74 68 65 20 6c 6f 6f 70 62 61 63 6b 20 69 6e | e.source.IP.e.g..the.loopback.in |
| f85a0 | 74 65 72 66 61 63 65 2e 00 49 66 20 79 6f 75 20 63 68 61 6e 67 65 20 74 68 65 20 64 65 66 61 75 | terface..If.you.change.the.defau |
| f85c0 | 6c 74 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6e 64 20 68 61 73 68 69 6e 67 20 61 6c 67 6f 72 69 | lt.encryption.and.hashing.algori |
| f85e0 | 74 68 6d 73 2c 20 62 65 20 73 75 72 65 20 74 68 61 74 20 74 68 65 20 6c 6f 63 61 6c 20 61 6e 64 | thms,.be.sure.that.the.local.and |
| f8600 | 20 72 65 6d 6f 74 65 20 65 6e 64 73 20 68 61 76 65 20 6d 61 74 63 68 69 6e 67 20 63 6f 6e 66 69 | .remote.ends.have.matching.confi |
| f8620 | 67 75 72 61 74 69 6f 6e 73 2c 20 6f 74 68 65 72 77 69 73 65 20 74 68 65 20 74 75 6e 6e 65 6c 20 | gurations,.otherwise.the.tunnel. |
| f8640 | 77 69 6c 6c 20 6e 6f 74 20 63 6f 6d 65 20 75 70 2e 00 49 66 20 79 6f 75 20 63 68 6f 6f 73 65 20 | will.not.come.up..If.you.choose. |
| f8660 | 61 6e 79 20 61 73 20 74 68 65 20 6f 70 74 69 6f 6e 20 74 68 61 74 20 77 69 6c 6c 20 63 61 75 73 | any.as.the.option.that.will.caus |
| f8680 | 65 20 61 6c 6c 20 70 72 6f 74 6f 63 6f 6c 73 20 74 68 61 74 20 61 72 65 20 73 65 6e 64 69 6e 67 | e.all.protocols.that.are.sending |
| f86a0 | 20 72 6f 75 74 65 73 20 74 6f 20 7a 65 62 72 61 2e 00 49 66 20 79 6f 75 20 63 6f 6e 66 69 67 75 | .routes.to.zebra..If.you.configu |
| f86c0 | 72 65 20 61 20 63 6c 61 73 73 20 66 6f 72 20 2a 2a 56 6f 49 50 20 74 72 61 66 66 69 63 2a 2a 2c | re.a.class.for.**VoIP.traffic**, |
| f86e0 | 20 64 6f 6e 27 74 20 67 69 76 65 20 69 74 20 61 6e 79 20 2a 63 65 69 6c 69 6e 67 2a 2c 20 6f 74 | .don't.give.it.any.*ceiling*,.ot |
| f8700 | 68 65 72 77 69 73 65 20 6e 65 77 20 56 6f 49 50 20 63 61 6c 6c 73 20 63 6f 75 6c 64 20 73 74 61 | herwise.new.VoIP.calls.could.sta |
| f8720 | 72 74 20 77 68 65 6e 20 74 68 65 20 6c 69 6e 6b 20 69 73 20 61 76 61 69 6c 61 62 6c 65 20 61 6e | rt.when.the.link.is.available.an |
| f8740 | 64 20 67 65 74 20 73 75 64 64 65 6e 6c 79 20 64 72 6f 70 70 65 64 20 77 68 65 6e 20 6f 74 68 65 | d.get.suddenly.dropped.when.othe |
| f8760 | 72 20 63 6c 61 73 73 65 73 20 73 74 61 72 74 20 75 73 69 6e 67 20 74 68 65 69 72 20 61 73 73 69 | r.classes.start.using.their.assi |
| f8780 | 67 6e 65 64 20 2a 62 61 6e 64 77 69 64 74 68 2a 20 73 68 61 72 65 2e 00 49 66 20 79 6f 75 20 65 | gned.*bandwidth*.share..If.you.e |
| f87a0 | 6e 61 62 6c 65 20 74 68 69 73 2c 20 79 6f 75 20 77 69 6c 6c 20 70 72 6f 62 61 62 6c 79 20 77 61 | nable.this,.you.will.probably.wa |
| f87c0 | 6e 74 20 74 6f 20 73 65 74 20 64 69 76 65 72 73 69 74 79 2d 66 61 63 74 6f 72 20 61 6e 64 20 63 | nt.to.set.diversity-factor.and.c |
| f87e0 | 68 61 6e 6e 65 6c 20 62 65 6c 6f 77 2e 00 49 66 20 79 6f 75 20 65 6e 74 65 72 20 61 20 76 61 6c | hannel.below..If.you.enter.a.val |
| f8800 | 75 65 20 73 6d 61 6c 6c 65 72 20 74 68 61 6e 20 36 30 20 73 65 63 6f 6e 64 73 20 62 65 20 61 77 | ue.smaller.than.60.seconds.be.aw |
| f8820 | 61 72 65 20 74 68 61 74 20 74 68 69 73 20 63 61 6e 20 61 6e 64 20 77 69 6c 6c 20 61 66 66 65 63 | are.that.this.can.and.will.affec |
| f8840 | 74 20 63 6f 6e 76 65 72 67 65 6e 63 65 20 61 74 20 73 63 61 6c 65 2e 00 49 66 20 79 6f 75 20 66 | t.convergence.at.scale..If.you.f |
| f8860 | 65 65 6c 20 62 65 74 74 65 72 20 66 6f 72 77 61 72 64 69 6e 67 20 61 6c 6c 20 61 75 74 68 65 6e | eel.better.forwarding.all.authen |
| f8880 | 74 69 63 61 74 69 6f 6e 20 72 65 71 75 65 73 74 73 20 74 6f 20 79 6f 75 72 20 65 6e 74 65 72 70 | tication.requests.to.your.enterp |
| f88a0 | 72 69 73 65 73 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2c 20 75 73 65 20 74 68 65 20 63 6f 6d | rises.RADIUS.server,.use.the.com |
| f88c0 | 6d 61 6e 64 73 20 62 65 6c 6f 77 2e 00 49 66 20 79 6f 75 20 68 61 70 70 65 6e 20 74 6f 20 72 75 | mands.below..If.you.happen.to.ru |
| f88e0 | 6e 20 74 68 69 73 20 69 6e 20 61 20 76 69 72 74 75 61 6c 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 | n.this.in.a.virtual.environment. |
| f8900 | 6c 69 6b 65 20 62 79 20 45 56 45 2d 4e 47 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 65 6e 73 75 72 | like.by.EVE-NG.you.need.to.ensur |
| f8920 | 65 20 79 6f 75 72 20 56 79 4f 53 20 4e 49 43 20 69 73 20 73 65 74 20 74 6f 20 75 73 65 20 74 68 | e.your.VyOS.NIC.is.set.to.use.th |
| f8940 | 65 20 65 31 30 30 30 20 64 72 69 76 65 72 2e 20 55 73 69 6e 67 20 74 68 65 20 64 65 66 61 75 6c | e.e1000.driver..Using.the.defaul |
| f8960 | 74 20 60 60 76 69 72 74 69 6f 2d 6e 65 74 2d 70 63 69 60 60 20 6f 72 20 74 68 65 20 60 60 76 6d | t.``virtio-net-pci``.or.the.``vm |
| f8980 | 78 6e 65 74 33 60 60 20 64 72 69 76 65 72 20 77 69 6c 6c 20 6e 6f 74 20 77 6f 72 6b 2e 20 49 43 | xnet3``.driver.will.not.work..IC |
| f89a0 | 4d 50 20 6d 65 73 73 61 67 65 73 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 70 72 6f 70 65 72 6c 79 | MP.messages.will.not.be.properly |
| f89c0 | 20 70 72 6f 63 65 73 73 65 64 2e 20 54 68 65 79 20 61 72 65 20 76 69 73 69 62 6c 65 20 6f 6e 20 | .processed..They.are.visible.on. |
| f89e0 | 74 68 65 20 76 69 72 74 75 61 6c 20 77 69 72 65 20 62 75 74 20 77 69 6c 6c 20 6e 6f 74 20 6d 61 | the.virtual.wire.but.will.not.ma |
| f8a00 | 6b 65 20 69 74 20 66 75 6c 6c 79 20 75 70 20 74 68 65 20 6e 65 74 77 6f 72 6b 69 6e 67 20 73 74 | ke.it.fully.up.the.networking.st |
| f8a20 | 61 63 6b 2e 00 49 66 20 79 6f 75 20 68 61 70 70 65 6e 20 74 6f 20 75 73 65 20 53 6f 6c 61 72 57 | ack..If.you.happen.to.use.SolarW |
| f8a40 | 69 6e 64 73 20 4f 72 69 6f 6e 20 61 73 20 4e 4d 53 20 79 6f 75 20 63 61 6e 20 61 6c 73 6f 20 75 | inds.Orion.as.NMS.you.can.also.u |
| f8a60 | 73 65 20 74 68 65 20 44 65 76 69 63 65 20 54 65 6d 70 6c 61 74 65 73 20 4d 61 6e 61 67 65 6d 65 | se.the.Device.Templates.Manageme |
| f8a80 | 6e 74 2e 20 41 20 74 65 6d 70 6c 61 74 65 20 66 6f 72 20 56 79 4f 53 20 63 61 6e 20 62 65 20 65 | nt..A.template.for.VyOS.can.be.e |
| f8aa0 | 61 73 69 6c 79 20 69 6d 70 6f 72 74 65 64 2e 00 49 66 20 79 6f 75 20 68 61 70 70 65 6e 65 64 20 | asily.imported..If.you.happened. |
| f8ac0 | 74 6f 20 75 73 65 20 61 20 43 69 73 63 6f 20 4e 4d 2d 31 36 41 20 2d 20 53 69 78 74 65 65 6e 20 | to.use.a.Cisco.NM-16A.-.Sixteen. |
| f8ae0 | 50 6f 72 74 20 41 73 79 6e 63 20 4e 65 74 77 6f 72 6b 20 4d 6f 64 75 6c 65 20 6f 72 20 4e 4d 2d | Port.Async.Network.Module.or.NM- |
| f8b00 | 33 32 41 20 2d 20 54 68 69 72 74 79 2d 74 77 6f 20 50 6f 72 74 20 41 73 79 6e 63 20 4e 65 74 77 | 32A.-.Thirty-two.Port.Async.Netw |
| f8b20 | 6f 72 6b 20 4d 6f 64 75 6c 65 20 2d 20 74 68 69 73 20 69 73 20 79 6f 75 72 20 56 79 4f 53 20 72 | ork.Module.-.this.is.your.VyOS.r |
| f8b40 | 65 70 6c 61 63 65 6d 65 6e 74 2e 00 49 66 20 79 6f 75 20 68 61 76 65 20 61 20 6c 6f 74 20 6f 66 | eplacement..If.you.have.a.lot.of |
| f8b60 | 20 69 6e 74 65 72 66 61 63 65 73 2c 20 61 6e 64 2f 6f 72 20 61 20 6c 6f 74 20 6f 66 20 73 75 62 | .interfaces,.and/or.a.lot.of.sub |
| f8b80 | 6e 65 74 73 2c 20 74 68 65 6e 20 65 6e 61 62 6c 69 6e 67 20 4f 53 50 46 20 76 69 61 20 74 68 69 | nets,.then.enabling.OSPF.via.thi |
| f8ba0 | 73 20 63 6f 6d 6d 61 6e 64 20 6d 61 79 20 72 65 73 75 6c 74 20 69 6e 20 61 20 73 6c 69 67 68 74 | s.command.may.result.in.a.slight |
| f8bc0 | 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 69 6d 70 72 6f 76 65 6d 65 6e 74 2e 00 49 66 20 79 6f 75 | .performance.improvement..If.you |
| f8be0 | 20 68 61 76 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 68 65 20 60 49 4e 53 49 44 45 2d 4f 55 54 | .have.configured.the.`INSIDE-OUT |
| f8c00 | 60 20 70 6f 6c 69 63 79 2c 20 79 6f 75 20 77 69 6c 6c 20 6e 65 65 64 20 74 6f 20 61 64 64 20 61 | `.policy,.you.will.need.to.add.a |
| f8c20 | 64 64 69 74 69 6f 6e 61 6c 20 72 75 6c 65 73 20 74 6f 20 70 65 72 6d 69 74 20 69 6e 62 6f 75 6e | dditional.rules.to.permit.inboun |
| f8c40 | 64 20 4e 41 54 20 74 72 61 66 66 69 63 2e 00 49 66 20 79 6f 75 20 68 61 76 65 20 6d 75 6c 74 69 | d.NAT.traffic..If.you.have.multi |
| f8c60 | 70 6c 65 20 61 64 64 72 65 73 73 65 73 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 61 20 70 61 | ple.addresses.configured.on.a.pa |
| f8c80 | 72 74 69 63 75 6c 61 72 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 77 6f 75 6c 64 20 6c 69 6b | rticular.interface.and.would.lik |
| f8ca0 | 65 20 50 49 4d 20 74 6f 20 75 73 65 20 61 20 73 70 65 63 69 66 69 63 20 73 6f 75 72 63 65 20 61 | e.PIM.to.use.a.specific.source.a |
| f8cc0 | 64 64 72 65 73 73 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 61 74 20 69 6e 74 65 | ddress.associated.with.that.inte |
| f8ce0 | 72 66 61 63 65 2e 00 49 66 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 73 61 6d 70 6c 65 20 61 6c 73 | rface..If.you.need.to.sample.als |
| f8d00 | 6f 20 65 67 72 65 73 73 20 74 72 61 66 66 69 63 2c 20 79 6f 75 20 6d 61 79 20 77 61 6e 74 20 74 | o.egress.traffic,.you.may.want.t |
| f8d20 | 6f 20 63 6f 6e 66 69 67 75 72 65 20 65 67 72 65 73 73 20 66 6c 6f 77 2d 61 63 63 6f 75 6e 74 69 | o.configure.egress.flow-accounti |
| f8d40 | 6e 67 3a 00 49 66 20 79 6f 75 20 6f 6e 6c 79 20 77 61 6e 74 20 74 6f 20 63 68 65 63 6b 20 69 66 | ng:.If.you.only.want.to.check.if |
| f8d60 | 20 74 68 65 20 75 73 65 72 20 61 63 63 6f 75 6e 74 20 69 73 20 65 6e 61 62 6c 65 64 20 61 6e 64 | .the.user.account.is.enabled.and |
| f8d80 | 20 63 61 6e 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 28 61 67 61 69 6e 73 74 20 74 68 65 20 70 | .can.authenticate.(against.the.p |
| f8da0 | 72 69 6d 61 72 79 20 67 72 6f 75 70 29 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 6e 69 70 | rimary.group).the.following.snip |
| f8dc0 | 70 65 64 20 69 73 20 73 75 66 66 69 63 69 65 6e 74 3a 00 49 66 20 79 6f 75 20 73 65 74 20 61 20 | ped.is.sufficient:.If.you.set.a. |
| f8de0 | 63 75 73 74 6f 6d 20 52 41 44 49 55 53 20 61 74 74 72 69 62 75 74 65 20 79 6f 75 20 6d 75 73 74 | custom.RADIUS.attribute.you.must |
| f8e00 | 20 64 65 66 69 6e 65 20 69 74 20 6f 6e 20 62 6f 74 68 20 64 69 63 74 69 6f 6e 61 72 69 65 73 20 | .define.it.on.both.dictionaries. |
| f8e20 | 61 74 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 61 6e 64 20 63 6c 69 65 6e 74 2c 20 77 68 69 | at.RADIUS.server.and.client,.whi |
| f8e40 | 63 68 20 69 73 20 74 68 65 20 76 79 6f 73 20 72 6f 75 74 65 72 20 69 6e 20 6f 75 72 20 65 78 61 | ch.is.the.vyos.router.in.our.exa |
| f8e60 | 6d 70 6c 65 2e 00 49 66 20 79 6f 75 20 73 65 74 20 61 20 63 75 73 74 6f 6d 20 52 41 44 49 55 53 | mple..If.you.set.a.custom.RADIUS |
| f8e80 | 20 61 74 74 72 69 62 75 74 65 20 79 6f 75 20 6d 75 73 74 20 64 65 66 69 6e 65 20 69 74 20 6f 6e | .attribute.you.must.define.it.on |
| f8ea0 | 20 62 6f 74 68 20 64 69 63 74 69 6f 6e 61 72 69 65 73 20 61 74 20 52 41 44 49 55 53 20 73 65 72 | .both.dictionaries.at.RADIUS.ser |
| f8ec0 | 76 65 72 20 61 6e 64 20 63 6c 69 65 6e 74 2e 00 49 66 20 79 6f 75 20 73 65 74 20 61 20 63 75 73 | ver.and.client..If.you.set.a.cus |
| f8ee0 | 74 6f 6d 20 52 41 44 49 55 53 20 61 74 74 72 69 62 75 74 65 20 79 6f 75 20 6d 75 73 74 20 64 65 | tom.RADIUS.attribute.you.must.de |
| f8f00 | 66 69 6e 65 20 69 74 20 6f 6e 20 62 6f 74 68 20 64 69 63 74 69 6f 6e 61 72 69 65 73 20 6f 6e 20 | fine.it.on.both.dictionaries.on. |
| f8f20 | 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 61 6e 64 20 63 6c 69 65 6e 74 2e 00 49 66 | the.RADIUS.server.and.client..If |
| f8f40 | 20 79 6f 75 20 73 70 65 63 69 66 79 20 61 20 73 65 72 76 65 72 20 74 6f 20 62 65 20 63 68 65 63 | .you.specify.a.server.to.be.chec |
| f8f60 | 6b 65 64 20 62 75 74 20 64 6f 20 6e 6f 74 20 63 6f 6e 66 69 67 75 72 65 20 61 20 70 72 6f 74 6f | ked.but.do.not.configure.a.proto |
| f8f80 | 63 6f 6c 2c 20 61 20 62 61 73 69 63 20 54 43 50 20 68 65 61 6c 74 68 20 63 68 65 63 6b 20 77 69 | col,.a.basic.TCP.health.check.wi |
| f8fa0 | 6c 6c 20 62 65 20 61 74 74 65 6d 70 74 65 64 2e 20 41 20 73 65 72 76 65 72 20 73 68 61 6c 6c 20 | ll.be.attempted..A.server.shall. |
| f8fc0 | 62 65 20 64 65 65 6d 65 64 20 6f 6e 6c 69 6e 65 20 69 66 20 69 74 20 72 65 73 70 6f 6e 73 65 73 | be.deemed.online.if.it.responses |
| f8fe0 | 20 74 6f 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 61 74 74 65 6d 70 74 20 77 69 74 68 20 61 20 | .to.a.connection.attempt.with.a. |
| f9000 | 76 61 6c 69 64 20 60 60 53 59 4e 2f 41 43 4b 60 60 20 70 61 63 6b 65 74 2e 00 49 66 20 79 6f 75 | valid.``SYN/ACK``.packet..If.you |
| f9020 | 20 75 73 65 20 55 53 42 20 74 6f 20 73 65 72 69 61 6c 20 63 6f 6e 76 65 72 74 65 72 73 20 66 6f | .use.USB.to.serial.converters.fo |
| f9040 | 72 20 63 6f 6e 6e 65 63 74 69 6e 67 20 74 6f 20 79 6f 75 72 20 56 79 4f 53 20 61 70 70 6c 69 61 | r.connecting.to.your.VyOS.applia |
| f9060 | 6e 63 65 20 70 6c 65 61 73 65 20 6e 6f 74 65 20 74 68 61 74 20 6d 6f 73 74 20 6f 66 20 74 68 65 | nce.please.note.that.most.of.the |
| f9080 | 6d 20 75 73 65 20 73 6f 66 74 77 61 72 65 20 65 6d 75 6c 61 74 69 6f 6e 20 77 69 74 68 6f 75 74 | m.use.software.emulation.without |
| f90a0 | 20 66 6c 6f 77 20 63 6f 6e 74 72 6f 6c 2e 20 54 68 69 73 20 6d 65 61 6e 73 20 79 6f 75 20 73 68 | .flow.control..This.means.you.sh |
| f90c0 | 6f 75 6c 64 20 73 74 61 72 74 20 77 69 74 68 20 61 20 63 6f 6d 6d 6f 6e 20 62 61 75 64 20 72 61 | ould.start.with.a.common.baud.ra |
| f90e0 | 74 65 20 28 6d 6f 73 74 20 6c 69 6b 65 6c 79 20 39 36 30 30 20 62 61 75 64 29 20 61 73 20 6f 74 | te.(most.likely.9600.baud).as.ot |
| f9100 | 68 65 72 77 69 73 65 20 79 6f 75 20 70 72 6f 62 61 62 6c 79 20 63 61 6e 20 6e 6f 74 20 63 6f 6e | herwise.you.probably.can.not.con |
| f9120 | 6e 65 63 74 20 74 6f 20 74 68 65 20 64 65 76 69 63 65 20 75 73 69 6e 67 20 68 69 67 68 20 73 70 | nect.to.the.device.using.high.sp |
| f9140 | 65 65 64 20 62 61 75 64 20 72 61 74 65 73 20 61 73 20 79 6f 75 72 20 73 65 72 69 61 6c 20 63 6f | eed.baud.rates.as.your.serial.co |
| f9160 | 6e 76 65 72 74 65 72 20 73 69 6d 70 6c 79 20 63 61 6e 20 6e 6f 74 20 70 72 6f 63 65 73 73 20 74 | nverter.simply.can.not.process.t |
| f9180 | 68 69 73 20 64 61 74 61 20 72 61 74 65 2e 00 49 66 20 79 6f 75 20 75 73 65 20 61 20 73 65 6c 66 | his.data.rate..If.you.use.a.self |
| f91a0 | 2d 73 69 67 6e 65 64 20 63 65 72 74 69 66 69 63 61 74 65 2c 20 64 6f 20 6e 6f 74 20 66 6f 72 67 | -signed.certificate,.do.not.forg |
| f91c0 | 65 74 20 74 6f 20 69 6e 73 74 61 6c 6c 20 43 41 20 6f 6e 20 74 68 65 20 63 6c 69 65 6e 74 20 73 | et.to.install.CA.on.the.client.s |
| f91e0 | 69 64 65 2e 00 49 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 63 68 61 6e 67 65 20 74 68 65 20 6d | ide..If.you.want.to.change.the.m |
| f9200 | 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 66 6c 6f 77 73 2c 20 77 68 69 63 68 20 61 72 | aximum.number.of.flows,.which.ar |
| f9220 | 65 20 74 72 61 63 6b 69 6e 67 20 73 69 6d 75 6c 74 61 6e 65 6f 75 73 6c 79 2c 20 79 6f 75 20 6d | e.tracking.simultaneously,.you.m |
| f9240 | 61 79 20 64 6f 20 74 68 69 73 20 77 69 74 68 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 28 64 65 | ay.do.this.with.this.command.(de |
| f9260 | 66 61 75 6c 74 20 38 31 39 32 29 2e 00 49 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 64 69 73 61 | fault.8192)..If.you.want.to.disa |
| f9280 | 62 6c 65 20 61 20 72 75 6c 65 20 62 75 74 20 6c 65 74 20 69 74 20 69 6e 20 74 68 65 20 63 6f 6e | ble.a.rule.but.let.it.in.the.con |
| f92a0 | 66 69 67 75 72 61 74 69 6f 6e 2e 00 49 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 68 61 76 65 20 | figuration..If.you.want.to.have. |
| f92c0 | 61 64 6d 69 6e 20 75 73 65 72 73 20 74 6f 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 76 69 61 20 | admin.users.to.authenticate.via. |
| f92e0 | 52 41 44 49 55 53 20 69 74 20 69 73 20 65 73 73 65 6e 74 69 61 6c 20 74 6f 20 73 65 6e 74 20 74 | RADIUS.it.is.essential.to.sent.t |
| f9300 | 68 65 20 60 60 43 69 73 63 6f 2d 41 56 2d 50 61 69 72 20 73 68 65 6c 6c 3a 70 72 69 76 2d 6c 76 | he.``Cisco-AV-Pair.shell:priv-lv |
| f9320 | 6c 3d 31 35 60 60 20 61 74 74 72 69 62 75 74 65 2e 20 57 69 74 68 6f 75 74 20 74 68 65 20 61 74 | l=15``.attribute..Without.the.at |
| f9340 | 74 72 69 62 75 74 65 20 79 6f 75 20 77 69 6c 6c 20 6f 6e 6c 79 20 67 65 74 20 72 65 67 75 6c 61 | tribute.you.will.only.get.regula |
| f9360 | 72 2c 20 6e 6f 6e 20 70 72 69 76 69 6c 65 67 75 65 64 2c 20 73 79 73 74 65 6d 20 75 73 65 72 73 | r,.non.privilegued,.system.users |
| f9380 | 2e 00 49 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 75 73 65 20 65 78 69 73 74 69 6e 67 20 62 6c | ..If.you.want.to.use.existing.bl |
| f93a0 | 61 63 6b 6c 69 73 74 73 20 79 6f 75 20 68 61 76 65 20 74 6f 20 63 72 65 61 74 65 2f 64 6f 77 6e | acklists.you.have.to.create/down |
| f93c0 | 6c 6f 61 64 20 61 20 64 61 74 61 62 61 73 65 20 66 69 72 73 74 2e 20 4f 74 68 65 72 77 69 73 65 | load.a.database.first..Otherwise |
| f93e0 | 20 79 6f 75 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 61 62 6c 65 20 74 6f 20 63 6f 6d 6d 69 74 20 | .you.will.not.be.able.to.commit. |
| f9400 | 74 68 65 20 63 6f 6e 66 69 67 20 63 68 61 6e 67 65 73 2e 00 49 66 20 79 6f 75 20 77 61 6e 74 20 | the.config.changes..If.you.want. |
| f9420 | 79 6f 75 72 20 72 6f 75 74 65 72 20 74 6f 20 66 6f 72 77 61 72 64 20 44 48 43 50 20 72 65 71 75 | your.router.to.forward.DHCP.requ |
| f9440 | 65 73 74 73 20 74 6f 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 44 48 43 50 20 73 65 72 76 65 72 20 | ests.to.an.external.DHCP.server. |
| f9460 | 79 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 73 79 73 74 65 6d 20 74 6f 20 | you.can.configure.the.system.to. |
| f9480 | 61 63 74 20 61 73 20 61 20 44 48 43 50 20 72 65 6c 61 79 20 61 67 65 6e 74 2e 20 54 68 65 20 44 | act.as.a.DHCP.relay.agent..The.D |
| f94a0 | 48 43 50 20 72 65 6c 61 79 20 61 67 65 6e 74 20 77 6f 72 6b 73 20 77 69 74 68 20 49 50 76 34 20 | HCP.relay.agent.works.with.IPv4. |
| f94c0 | 61 6e 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 2e 00 49 66 20 79 6f 75 20 77 61 6e 74 2c | and.IPv6.addresses..If.you.want, |
| f94e0 | 20 6e 65 65 64 2c 20 61 6e 64 20 73 68 6f 75 6c 64 20 75 73 65 20 6d 6f 72 65 20 61 64 76 61 6e | .need,.and.should.use.more.advan |
| f9500 | 63 65 64 20 65 6e 63 72 79 70 74 69 6f 6e 20 63 69 70 68 65 72 73 20 28 64 65 66 61 75 6c 74 20 | ced.encryption.ciphers.(default. |
| f9520 | 69 73 20 73 74 69 6c 6c 20 33 44 45 53 29 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 70 72 6f 76 69 | is.still.3DES).you.need.to.provi |
| f9540 | 73 69 6f 6e 20 79 6f 75 72 20 64 65 76 69 63 65 20 75 73 69 6e 67 20 61 20 73 6f 2d 63 61 6c 6c | sion.your.device.using.a.so-call |
| f9560 | 65 64 20 22 44 65 76 69 63 65 20 50 72 6f 66 69 6c 65 22 2e 20 41 20 70 72 6f 66 69 6c 65 20 69 | ed."Device.Profile"..A.profile.i |
| f9580 | 73 20 61 20 73 69 6d 70 6c 65 20 74 65 78 74 20 66 69 6c 65 20 63 6f 6e 74 61 69 6e 69 6e 67 20 | s.a.simple.text.file.containing. |
| f95a0 | 58 4d 4c 20 6e 6f 64 65 73 20 77 69 74 68 20 61 20 60 60 2e 6d 6f 62 69 6c 65 63 6f 6e 66 69 67 | XML.nodes.with.a.``.mobileconfig |
| f95c0 | 60 60 20 66 69 6c 65 20 65 78 74 65 6e 73 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 73 65 | ``.file.extension.that.can.be.se |
| f95e0 | 6e 74 20 61 6e 64 20 6f 70 65 6e 65 64 20 6f 6e 20 61 6e 79 20 64 65 76 69 63 65 20 66 72 6f 6d | nt.and.opened.on.any.device.from |
| f9600 | 20 61 6e 20 45 2d 4d 61 69 6c 2e 00 49 66 20 79 6f 75 27 72 65 20 6d 61 6b 69 6e 67 20 75 73 65 | .an.E-Mail..If.you're.making.use |
| f9620 | 20 6f 66 20 6d 75 6c 74 69 70 6c 65 20 74 75 6e 6e 65 6c 73 2c 20 4f 70 65 6e 56 50 4e 20 6d 75 | .of.multiple.tunnels,.OpenVPN.mu |
| f9640 | 73 74 20 68 61 76 65 20 61 20 77 61 79 20 74 6f 20 64 69 73 74 69 6e 67 75 69 73 68 20 62 65 74 | st.have.a.way.to.distinguish.bet |
| f9660 | 77 65 65 6e 20 64 69 66 66 65 72 65 6e 74 20 74 75 6e 6e 65 6c 73 20 61 73 69 64 65 20 66 72 6f | ween.different.tunnels.aside.fro |
| f9680 | 6d 20 74 68 65 20 70 72 65 2d 73 68 61 72 65 64 2d 6b 65 79 2e 20 54 68 69 73 20 69 73 20 64 6f | m.the.pre-shared-key..This.is.do |
| f96a0 | 6e 65 20 65 69 74 68 65 72 20 62 79 20 72 65 66 65 72 65 6e 63 69 6e 67 20 49 50 20 61 64 64 72 | ne.either.by.referencing.IP.addr |
| f96c0 | 65 73 73 65 73 20 6f 72 20 70 6f 72 74 20 6e 75 6d 62 65 72 73 2e 20 4f 6e 65 20 6f 70 74 69 6f | esses.or.port.numbers..One.optio |
| f96e0 | 6e 20 69 73 20 74 6f 20 64 65 64 69 63 61 74 65 20 61 20 70 75 62 6c 69 63 20 49 50 20 74 6f 20 | n.is.to.dedicate.a.public.IP.to. |
| f9700 | 65 61 63 68 20 74 75 6e 6e 65 6c 2e 20 41 6e 6f 74 68 65 72 20 6f 70 74 69 6f 6e 20 69 73 20 74 | each.tunnel..Another.option.is.t |
| f9720 | 6f 20 64 65 64 69 63 61 74 65 20 61 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 74 6f 20 65 61 63 68 | o.dedicate.a.port.number.to.each |
| f9740 | 20 74 75 6e 6e 65 6c 20 28 65 2e 67 2e 20 31 31 39 35 2c 31 31 39 36 2c 31 31 39 37 2e 2e 2e 29 | .tunnel.(e.g..1195,1196,1197...) |
| f9760 | 2e 00 49 66 20 79 6f 75 27 76 65 20 63 6f 6d 70 6c 65 74 65 64 20 61 6c 6c 20 74 68 65 20 61 62 | ..If.you've.completed.all.the.ab |
| f9780 | 6f 76 65 20 73 74 65 70 73 20 79 6f 75 20 6e 6f 20 64 6f 75 62 74 20 77 61 6e 74 20 74 6f 20 73 | ove.steps.you.no.doubt.want.to.s |
| f97a0 | 65 65 20 69 66 20 69 74 27 73 20 61 6c 6c 20 77 6f 72 6b 69 6e 67 2e 00 49 67 6e 6f 72 65 20 41 | ee.if.it's.all.working..Ignore.A |
| f97c0 | 53 5f 50 41 54 48 20 6c 65 6e 67 74 68 20 77 68 65 6e 20 73 65 6c 65 63 74 69 6e 67 20 61 20 72 | S_PATH.length.when.selecting.a.r |
| f97e0 | 6f 75 74 65 00 49 67 6e 6f 72 65 20 56 52 52 50 20 6d 61 69 6e 20 69 6e 74 65 72 66 61 63 65 20 | oute.Ignore.VRRP.main.interface. |
| f9800 | 66 61 75 6c 74 73 00 49 6d 61 67 65 20 74 68 61 6e 6b 66 75 6c 6c 79 20 62 6f 72 72 6f 77 65 64 | faults.Image.thankfully.borrowed |
| f9820 | 20 66 72 6f 6d 20 68 74 74 70 73 3a 2f 2f 65 6e 2e 77 69 6b 69 70 65 64 69 61 2e 6f 72 67 2f 77 | .from.https://en.wikipedia.org/w |
| f9840 | 69 6b 69 2f 46 69 6c 65 3a 53 4e 4d 50 5f 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 5f 70 72 69 6e | iki/File:SNMP_communication_prin |
| f9860 | 63 69 70 6c 65 73 5f 64 69 61 67 72 61 6d 2e 50 4e 47 20 77 68 69 63 68 20 69 73 20 75 6e 64 65 | ciples_diagram.PNG.which.is.unde |
| f9880 | 72 20 74 68 65 20 47 4e 55 20 46 72 65 65 20 44 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 4c 69 63 | r.the.GNU.Free.Documentation.Lic |
| f98a0 | 65 6e 73 65 00 49 6d 61 67 69 6e 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 74 6f 70 6f 6c | ense.Imagine.the.following.topol |
| f98c0 | 6f 67 79 00 49 6d 6d 65 64 69 61 74 65 00 49 6d 70 6c 65 6d 65 6e 74 65 64 20 74 68 65 20 66 6f | ogy.Immediate.Implemented.the.fo |
| f98e0 | 6c 6c 6f 77 69 6e 67 20 3a 72 66 63 3a 60 36 38 38 38 60 20 20 72 65 71 75 69 72 65 6d 65 6e 74 | llowing.:rfc:`6888`..requirement |
| f9900 | 73 3a 00 49 6d 70 6f 72 74 20 66 69 6c 65 73 20 74 6f 20 50 4b 49 20 66 6f 72 6d 61 74 00 49 6d | s:.Import.files.to.PKI.format.Im |
| f9920 | 70 6f 72 74 20 74 68 65 20 43 41 73 20 70 72 69 76 61 74 65 20 6b 65 79 20 70 6f 72 74 69 6f 6e | port.the.CAs.private.key.portion |
| f9940 | 20 74 6f 20 74 68 65 20 43 4c 49 2e 20 54 68 69 73 20 73 68 6f 75 6c 64 20 6e 65 76 65 72 20 6c | .to.the.CLI..This.should.never.l |
| f9960 | 65 61 76 65 20 74 68 65 20 73 79 73 74 65 6d 20 61 73 20 69 74 20 69 73 20 75 73 65 64 20 74 6f | eave.the.system.as.it.is.used.to |
| f9980 | 20 64 65 63 72 79 70 74 20 74 68 65 20 64 61 74 61 2e 20 54 68 65 20 6b 65 79 20 69 73 20 72 65 | .decrypt.the.data..The.key.is.re |
| f99a0 | 71 75 69 72 65 64 20 69 66 20 79 6f 75 20 75 73 65 20 56 79 4f 53 20 61 73 20 79 6f 75 72 20 63 | quired.if.you.use.VyOS.as.your.c |
| f99c0 | 65 72 74 69 66 69 63 61 74 65 20 67 65 6e 65 72 61 74 6f 72 2e 00 49 6d 70 6f 72 74 20 74 68 65 | ertificate.generator..Import.the |
| f99e0 | 20 4f 70 65 6e 56 50 4e 20 73 68 61 72 65 64 20 73 65 63 72 65 74 20 73 74 6f 72 65 64 20 69 6e | .OpenVPN.shared.secret.stored.in |
| f9a00 | 20 66 69 6c 65 20 74 6f 20 74 68 65 20 56 79 4f 53 20 43 4c 49 2e 00 49 6d 70 6f 72 74 20 74 68 | .file.to.the.VyOS.CLI..Import.th |
| f9a20 | 65 20 63 65 72 74 69 66 69 63 61 74 65 20 66 72 6f 6d 20 74 68 65 20 66 69 6c 65 20 74 6f 20 56 | e.certificate.from.the.file.to.V |
| f9a40 | 79 4f 53 20 43 4c 49 2e 00 49 6d 70 6f 72 74 20 74 68 65 20 70 72 69 76 61 74 65 20 6b 65 79 20 | yOS.CLI..Import.the.private.key. |
| f9a60 | 6f 66 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 74 6f 20 74 68 65 20 56 79 4f 53 20 43 | of.the.certificate.to.the.VyOS.C |
| f9a80 | 4c 49 2e 20 54 68 69 73 20 73 68 6f 75 6c 64 20 6e 65 76 65 72 20 6c 65 61 76 65 20 74 68 65 20 | LI..This.should.never.leave.the. |
| f9aa0 | 73 79 73 74 65 6d 20 61 73 20 69 74 20 69 73 20 75 73 65 64 20 74 6f 20 64 65 63 72 79 70 74 20 | system.as.it.is.used.to.decrypt. |
| f9ac0 | 74 68 65 20 64 61 74 61 2e 00 49 6d 70 6f 72 74 20 74 68 65 20 70 75 62 6c 69 63 20 43 41 20 63 | the.data..Import.the.public.CA.c |
| f9ae0 | 65 72 74 69 66 69 63 61 74 65 20 66 72 6f 6d 20 74 68 65 20 64 65 66 69 6e 65 64 20 66 69 6c 65 | ertificate.from.the.defined.file |
| f9b00 | 20 74 6f 20 56 79 4f 53 20 43 4c 49 2e 00 49 6d 70 6f 72 74 65 64 20 70 72 65 66 69 78 65 73 20 | .to.VyOS.CLI..Imported.prefixes. |
| f9b20 | 64 75 72 69 6e 67 20 74 68 65 20 76 61 6c 69 64 61 74 69 6f 6e 20 6d 61 79 20 68 61 76 65 20 76 | during.the.validation.may.have.v |
| f9b40 | 61 6c 75 65 73 3a 00 49 6e 20 3a 72 66 63 3a 60 33 30 36 39 60 20 69 74 20 69 73 20 63 61 6c 6c | alues:.In.:rfc:`3069`.it.is.call |
| f9b60 | 65 64 20 56 4c 41 4e 20 41 67 67 72 65 67 61 74 69 6f 6e 00 49 6e 20 3a 76 79 74 61 73 6b 3a 60 | ed.VLAN.Aggregation.In.:vytask:` |
| f9b80 | 54 32 31 39 39 60 20 74 68 65 20 73 79 6e 74 61 78 20 6f 66 20 74 68 65 20 7a 6f 6e 65 20 63 6f | T2199`.the.syntax.of.the.zone.co |
| f9ba0 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 61 73 20 63 68 61 6e 67 65 64 2e 20 54 68 65 20 7a 6f 6e | nfiguration.was.changed..The.zon |
| f9bc0 | 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 76 65 64 20 66 72 6f 6d 20 60 60 7a 6f 6e | e.configuration.moved.from.``zon |
| f9be0 | 65 2d 70 6f 6c 69 63 79 20 7a 6f 6e 65 20 3c 6e 61 6d 65 3e 60 60 20 74 6f 20 60 60 66 69 72 65 | e-policy.zone.<name>``.to.``fire |
| f9c00 | 77 61 6c 6c 20 7a 6f 6e 65 20 3c 6e 61 6d 65 3e 60 60 2e 00 49 6e 20 45 74 68 65 72 6e 65 74 20 | wall.zone.<name>``..In.Ethernet. |
| f9c20 | 62 72 69 64 67 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 2c 20 4f 70 65 6e 56 50 4e | bridging.configurations,.OpenVPN |
| f9c40 | 27 73 20 73 65 72 76 65 72 20 6d 6f 64 65 20 63 61 6e 20 62 65 20 73 65 74 20 61 73 20 61 20 27 | 's.server.mode.can.be.set.as.a.' |
| f9c60 | 62 72 69 64 67 65 27 20 77 68 65 72 65 20 74 68 65 20 56 50 4e 20 74 75 6e 6e 65 6c 20 65 6e 63 | bridge'.where.the.VPN.tunnel.enc |
| f9c80 | 61 70 73 75 6c 61 74 65 73 20 65 6e 74 69 72 65 20 45 74 68 65 72 6e 65 74 20 66 72 61 6d 65 73 | apsulates.entire.Ethernet.frames |
| f9ca0 | 20 28 75 70 20 74 6f 20 31 35 31 34 20 62 79 74 65 73 29 20 69 6e 73 74 65 61 64 20 6f 66 20 6a | .(up.to.1514.bytes).instead.of.j |
| f9cc0 | 75 73 74 20 49 50 20 70 61 63 6b 65 74 73 20 28 75 70 20 74 6f 20 31 35 30 30 20 62 79 74 65 73 | ust.IP.packets.(up.to.1500.bytes |
| f9ce0 | 29 2e 20 54 68 69 73 20 73 65 74 75 70 20 61 6c 6c 6f 77 73 20 63 6c 69 65 6e 74 73 20 74 6f 20 | )..This.setup.allows.clients.to. |
| f9d00 | 74 72 61 6e 73 6d 69 74 20 4c 61 79 65 72 20 32 20 66 72 61 6d 65 73 20 74 68 72 6f 75 67 68 20 | transmit.Layer.2.frames.through. |
| f9d20 | 74 68 65 20 4f 70 65 6e 56 50 4e 20 74 75 6e 6e 65 6c 2e 20 42 65 6c 6f 77 2c 20 77 65 20 6f 75 | the.OpenVPN.tunnel..Below,.we.ou |
| f9d40 | 74 6c 69 6e 65 20 61 20 62 61 73 69 63 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 6f 20 61 | tline.a.basic.configuration.to.a |
| f9d60 | 63 68 69 65 76 65 20 74 68 69 73 3a 00 49 6e 20 49 6e 74 65 72 6e 65 74 20 50 72 6f 74 6f 63 6f | chieve.this:.In.Internet.Protoco |
| f9d80 | 6c 20 56 65 72 73 69 6f 6e 20 36 20 28 49 50 76 36 29 20 6e 65 74 77 6f 72 6b 73 2c 20 74 68 65 | l.Version.6.(IPv6).networks,.the |
| f9da0 | 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 6f 66 20 41 52 50 20 69 73 20 70 72 6f 76 69 64 65 | .functionality.of.ARP.is.provide |
| f9dc0 | 64 20 62 79 20 74 68 65 20 4e 65 69 67 68 62 6f 72 20 44 69 73 63 6f 76 65 72 79 20 50 72 6f 74 | d.by.the.Neighbor.Discovery.Prot |
| f9de0 | 6f 63 6f 6c 20 28 4e 44 50 29 2e 00 49 6e 20 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 20 77 65 | ocol.(NDP)..In.Priority.Queue.we |
| f9e00 | 20 64 6f 20 6e 6f 74 20 64 65 66 69 6e 65 20 63 6c 61 73 65 73 20 77 69 74 68 20 61 20 6d 65 61 | .do.not.define.clases.with.a.mea |
| f9e20 | 6e 69 6e 67 6c 65 73 73 20 63 6c 61 73 73 20 49 44 20 6e 75 6d 62 65 72 20 62 75 74 20 77 69 74 | ningless.class.ID.number.but.wit |
| f9e40 | 68 20 61 20 63 6c 61 73 73 20 70 72 69 6f 72 69 74 79 20 6e 75 6d 62 65 72 20 28 31 2d 37 29 2e | h.a.class.priority.number.(1-7). |
| f9e60 | 20 54 68 65 20 6c 6f 77 65 72 20 74 68 65 20 6e 75 6d 62 65 72 2c 20 74 68 65 20 68 69 67 68 65 | .The.lower.the.number,.the.highe |
| f9e80 | 72 20 74 68 65 20 70 72 69 6f 72 69 74 79 2e 00 49 6e 20 50 72 69 6f 72 69 74 79 20 51 75 65 75 | r.the.priority..In.Priority.Queu |
| f9ea0 | 65 20 77 65 20 64 6f 20 6e 6f 74 20 64 65 66 69 6e 65 20 63 6c 61 73 73 65 73 20 77 69 74 68 20 | e.we.do.not.define.classes.with. |
| f9ec0 | 61 20 6d 65 61 6e 69 6e 67 6c 65 73 73 20 63 6c 61 73 73 20 49 44 20 6e 75 6d 62 65 72 20 62 75 | a.meaningless.class.ID.number.bu |
| f9ee0 | 74 20 77 69 74 68 20 61 20 63 6c 61 73 73 20 70 72 69 6f 72 69 74 79 20 6e 75 6d 62 65 72 20 28 | t.with.a.class.priority.number.( |
| f9f00 | 31 2d 37 29 2e 20 54 68 65 20 6c 6f 77 65 72 20 74 68 65 20 6e 75 6d 62 65 72 2c 20 74 68 65 20 | 1-7)..The.lower.the.number,.the. |
| f9f20 | 68 69 67 68 65 72 20 74 68 65 20 70 72 69 6f 72 69 74 79 2e 00 49 6e 20 56 79 4f 53 20 74 68 65 | higher.the.priority..In.VyOS.the |
| f9f40 | 20 74 65 72 6d 73 20 60 60 76 69 66 2d 73 60 60 20 61 6e 64 20 60 60 76 69 66 2d 63 60 60 20 73 | .terms.``vif-s``.and.``vif-c``.s |
| f9f60 | 74 61 6e 64 20 66 6f 72 20 74 68 65 20 65 74 68 65 72 74 79 70 65 20 74 61 67 73 20 74 68 61 74 | tand.for.the.ethertype.tags.that |
| f9f80 | 20 61 72 65 20 75 73 65 64 2e 00 49 6e 20 56 79 4f 53 2c 20 38 30 32 2e 31 31 61 78 20 69 73 20 | .are.used..In.VyOS,.802.11ax.is. |
| f9fa0 | 6f 6e 6c 79 20 69 6d 70 6c 65 6d 65 6e 74 65 64 20 66 6f 72 20 32 2e 34 47 48 7a 20 61 6e 64 20 | only.implemented.for.2.4GHz.and. |
| f9fc0 | 36 47 48 7a 2e 00 49 6e 20 56 79 4f 53 2c 20 38 30 32 2e 31 31 61 78 20 69 73 20 6f 6e 6c 79 20 | 6GHz..In.VyOS,.802.11ax.is.only. |
| f9fe0 | 69 6d 70 6c 65 6d 65 6e 74 65 64 20 66 6f 72 20 36 47 48 7a 20 61 73 20 6f 66 20 79 65 74 2e 00 | implemented.for.6GHz.as.of.yet.. |
| fa000 | 49 6e 20 56 79 4f 53 2c 20 45 53 50 20 61 74 74 72 69 62 75 74 65 73 20 61 72 65 20 73 70 65 63 | In.VyOS,.ESP.attributes.are.spec |
| fa020 | 69 66 69 65 64 20 74 68 72 6f 75 67 68 20 45 53 50 20 67 72 6f 75 70 73 2e 20 4d 75 6c 74 69 70 | ified.through.ESP.groups..Multip |
| fa040 | 6c 65 20 70 72 6f 70 6f 73 61 6c 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 69 6e | le.proposals.can.be.specified.in |
| fa060 | 20 61 20 73 69 6e 67 6c 65 20 67 72 6f 75 70 2e 00 49 6e 20 56 79 4f 53 2c 20 49 4b 45 20 61 74 | .a.single.group..In.VyOS,.IKE.at |
| fa080 | 74 72 69 62 75 74 65 73 20 61 72 65 20 73 70 65 63 69 66 69 65 64 20 74 68 72 6f 75 67 68 20 49 | tributes.are.specified.through.I |
| fa0a0 | 4b 45 20 67 72 6f 75 70 73 2e 20 4d 75 6c 74 69 70 6c 65 20 70 72 6f 70 6f 73 61 6c 73 20 63 61 | KE.groups..Multiple.proposals.ca |
| fa0c0 | 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 61 20 73 69 6e 67 6c 65 20 67 72 6f 75 70 | n.be.specified.in.a.single.group |
| fa0e0 | 2e 00 49 6e 20 56 79 4f 53 2c 20 61 20 63 6c 61 73 73 20 69 73 20 69 64 65 6e 74 69 66 69 65 64 | ..In.VyOS,.a.class.is.identified |
| fa100 | 20 62 79 20 61 20 6e 75 6d 62 65 72 20 79 6f 75 20 63 61 6e 20 63 68 6f 6f 73 65 20 77 68 65 6e | .by.a.number.you.can.choose.when |
| fa120 | 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 69 74 2e 00 49 6e 20 61 20 6d 69 6e 69 6d 61 6c 20 63 6f | .configuring.it..In.a.minimal.co |
| fa140 | 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6d 75 73 74 20 | nfiguration,.the.following.must. |
| fa160 | 62 65 20 70 72 6f 76 69 64 65 64 3a 00 49 6e 20 61 20 6d 75 6c 74 69 70 6c 65 20 56 4c 41 4e 20 | be.provided:.In.a.multiple.VLAN. |
| fa180 | 68 65 61 64 65 72 20 63 6f 6e 74 65 78 74 2c 20 6f 75 74 20 6f 66 20 63 6f 6e 76 65 6e 69 65 6e | header.context,.out.of.convenien |
| fa1a0 | 63 65 20 74 68 65 20 74 65 72 6d 20 22 56 4c 41 4e 20 74 61 67 22 20 6f 72 20 6a 75 73 74 20 22 | ce.the.term."VLAN.tag".or.just." |
| fa1c0 | 74 61 67 22 20 66 6f 72 20 73 68 6f 72 74 20 69 73 20 6f 66 74 65 6e 20 75 73 65 64 20 69 6e 20 | tag".for.short.is.often.used.in. |
| fa1e0 | 70 6c 61 63 65 20 6f 66 20 22 38 30 32 2e 31 71 5f 20 56 4c 41 4e 20 68 65 61 64 65 72 22 2e 20 | place.of."802.1q_.VLAN.header".. |
| fa200 | 51 69 6e 51 20 61 6c 6c 6f 77 73 20 6d 75 6c 74 69 70 6c 65 20 56 4c 41 4e 20 74 61 67 73 20 69 | QinQ.allows.multiple.VLAN.tags.i |
| fa220 | 6e 20 61 6e 20 45 74 68 65 72 6e 65 74 20 66 72 61 6d 65 3b 20 74 6f 67 65 74 68 65 72 20 74 68 | n.an.Ethernet.frame;.together.th |
| fa240 | 65 73 65 20 74 61 67 73 20 63 6f 6e 73 74 69 74 75 74 65 20 61 20 74 61 67 20 73 74 61 63 6b 2e | ese.tags.constitute.a.tag.stack. |
| fa260 | 20 57 68 65 6e 20 75 73 65 64 20 69 6e 20 74 68 65 20 63 6f 6e 74 65 78 74 20 6f 66 20 61 6e 20 | .When.used.in.the.context.of.an. |
| fa280 | 45 74 68 65 72 6e 65 74 20 66 72 61 6d 65 2c 20 61 20 51 69 6e 51 20 66 72 61 6d 65 20 69 73 20 | Ethernet.frame,.a.QinQ.frame.is. |
| fa2a0 | 61 20 66 72 61 6d 65 20 74 68 61 74 20 68 61 73 20 32 20 56 4c 41 4e 20 38 30 32 2e 31 71 5f 20 | a.frame.that.has.2.VLAN.802.1q_. |
| fa2c0 | 68 65 61 64 65 72 73 20 28 64 6f 75 62 6c 65 2d 74 61 67 67 65 64 29 2e 00 49 6e 20 61 20 6e 75 | headers.(double-tagged)..In.a.nu |
| fa2e0 | 74 73 68 65 6c 6c 2c 20 74 68 65 20 63 75 72 72 65 6e 74 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 | tshell,.the.current.implementati |
| fa300 | 6f 6e 20 70 72 6f 76 69 64 65 73 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 66 65 61 74 75 72 | on.provides.the.following.featur |
| fa320 | 65 73 3a 00 49 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 3a 61 62 62 72 3a 60 52 41 44 49 55 53 | es:.In.addition.to.:abbr:`RADIUS |
| fa340 | 20 28 52 65 6d 6f 74 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 44 69 61 6c 2d 49 6e 20 | .(Remote.Authentication.Dial-In. |
| fa360 | 55 73 65 72 20 53 65 72 76 69 63 65 29 60 2c 20 3a 61 62 62 72 3a 60 54 41 43 41 43 53 20 28 54 | User.Service)`,.:abbr:`TACACS.(T |
| fa380 | 65 72 6d 69 6e 61 6c 20 41 63 63 65 73 73 20 43 6f 6e 74 72 6f 6c 6c 65 72 20 41 63 63 65 73 73 | erminal.Access.Controller.Access |
| fa3a0 | 20 43 6f 6e 74 72 6f 6c 20 53 79 73 74 65 6d 29 60 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 66 6f | .Control.System)`.can.also.be.fo |
| fa3c0 | 75 6e 64 20 69 6e 20 6c 61 72 67 65 20 64 65 70 6c 6f 79 6d 65 6e 74 73 2e 00 49 6e 20 61 64 64 | und.in.large.deployments..In.add |
| fa3e0 | 69 74 69 6f 6e 20 74 6f 20 64 69 73 70 6c 61 79 69 6e 67 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 | ition.to.displaying.flow.account |
| fa400 | 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6c 6f 63 61 6c 6c 79 2c 20 6f 6e 65 20 63 61 6e | ing.information.locally,.one.can |
| fa420 | 20 61 6c 73 6f 20 65 78 70 6f 72 74 65 64 20 74 68 65 6d 20 74 6f 20 61 20 63 6f 6c 6c 65 63 74 | .also.exported.them.to.a.collect |
| fa440 | 69 6f 6e 20 73 65 72 76 65 72 2e 00 49 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 63 | ion.server..In.addition.to.the.c |
| fa460 | 6f 6d 6d 61 6e 64 20 61 62 6f 76 65 2c 20 74 68 65 20 6f 75 74 70 75 74 20 69 73 20 69 6e 20 61 | ommand.above,.the.output.is.in.a |
| fa480 | 20 66 6f 72 6d 61 74 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 64 69 72 | .format.which.can.be.used.to.dir |
| fa4a0 | 65 63 74 6c 79 20 69 6d 70 6f 72 74 20 74 68 65 20 6b 65 79 20 69 6e 74 6f 20 74 68 65 20 56 79 | ectly.import.the.key.into.the.Vy |
| fa4c0 | 4f 53 20 43 4c 49 20 62 79 20 73 69 6d 70 6c 79 20 63 6f 70 79 2d 70 61 73 74 69 6e 67 20 74 68 | OS.CLI.by.simply.copy-pasting.th |
| fa4e0 | 65 20 6f 75 74 70 75 74 20 66 72 6f 6d 20 6f 70 2d 6d 6f 64 65 20 69 6e 74 6f 20 63 6f 6e 66 69 | e.output.from.op-mode.into.confi |
| fa500 | 67 75 72 61 74 69 6f 6e 20 6d 6f 64 65 2e 00 49 6e 20 61 64 64 69 74 69 6f 6e 20 77 65 20 73 65 | guration.mode..In.addition.we.se |
| fa520 | 74 75 70 20 49 50 76 36 20 3a 61 62 62 72 3a 60 52 41 20 28 52 6f 75 74 65 72 20 41 64 76 65 72 | tup.IPv6.:abbr:`RA.(Router.Adver |
| fa540 | 74 69 73 65 6d 65 6e 74 73 29 60 20 74 6f 20 6d 61 6b 65 20 74 68 65 20 70 72 65 66 69 78 20 6b | tisements)`.to.make.the.prefix.k |
| fa560 | 6e 6f 77 6e 20 6f 6e 20 74 68 65 20 65 74 68 30 20 6c 69 6e 6b 2e 00 49 6e 20 61 64 64 69 74 69 | nown.on.the.eth0.link..In.additi |
| fa580 | 6f 6e 20 79 6f 75 20 63 61 6e 20 61 6c 73 6f 20 64 69 73 61 62 6c 65 20 74 68 65 20 77 68 6f 6c | on.you.can.also.disable.the.whol |
| fa5a0 | 65 20 73 65 72 76 69 63 65 20 77 69 74 68 6f 75 74 20 74 68 65 20 6e 65 65 64 20 74 6f 20 72 65 | e.service.without.the.need.to.re |
| fa5c0 | 6d 6f 76 65 20 69 74 20 66 72 6f 6d 20 74 68 65 20 63 75 72 72 65 6e 74 20 63 6f 6e 66 69 67 75 | move.it.from.the.current.configu |
| fa5e0 | 72 61 74 69 6f 6e 2e 00 49 6e 20 61 64 64 69 74 69 6f 6e 20 79 6f 75 20 77 69 6c 6c 20 73 70 65 | ration..In.addition.you.will.spe |
| fa600 | 63 69 66 69 79 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 46 51 44 4e 20 66 6f 72 | cifiy.the.IP.address.or.FQDN.for |
| fa620 | 20 74 68 65 20 63 6c 69 65 6e 74 20 77 68 65 72 65 20 69 74 20 77 69 6c 6c 20 63 6f 6e 6e 65 63 | .the.client.where.it.will.connec |
| fa640 | 74 20 74 6f 2e 20 54 68 65 20 61 64 64 72 65 73 73 20 70 61 72 61 6d 65 74 65 72 20 63 61 6e 20 | t.to..The.address.parameter.can. |
| fa660 | 62 65 20 75 73 65 64 20 75 70 20 74 6f 20 74 77 6f 20 74 69 6d 65 73 20 61 6e 64 20 69 73 20 75 | be.used.up.to.two.times.and.is.u |
| fa680 | 73 65 64 20 74 6f 20 61 73 73 69 67 6e 20 74 68 65 20 63 6c 69 65 6e 74 73 20 73 70 65 63 69 66 | sed.to.assign.the.clients.specif |
| fa6a0 | 69 63 20 49 50 76 34 20 28 2f 33 32 29 20 6f 72 20 49 50 76 36 20 28 2f 31 32 38 29 20 61 64 64 | ic.IPv4.(/32).or.IPv6.(/128).add |
| fa6c0 | 72 65 73 73 2e 00 49 6e 20 61 64 64 69 74 69 6f 6e 20 79 6f 75 20 77 69 6c 6c 20 73 70 65 63 69 | ress..In.addition.you.will.speci |
| fa6e0 | 66 79 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 46 51 44 4e 20 66 6f 72 20 74 68 | fy.the.IP.address.or.FQDN.for.th |
| fa700 | 65 20 63 6c 69 65 6e 74 20 77 68 65 72 65 20 69 74 20 77 69 6c 6c 20 63 6f 6e 6e 65 63 74 20 74 | e.client.where.it.will.connect.t |
| fa720 | 6f 2e 20 54 68 65 20 61 64 64 72 65 73 73 20 70 61 72 61 6d 65 74 65 72 20 63 61 6e 20 62 65 20 | o..The.address.parameter.can.be. |
| fa740 | 75 73 65 64 20 75 70 20 74 6f 20 74 77 6f 20 74 69 6d 65 73 20 61 6e 64 20 69 73 20 75 73 65 64 | used.up.to.two.times.and.is.used |
| fa760 | 20 74 6f 20 61 73 73 69 67 6e 20 74 68 65 20 63 6c 69 65 6e 74 73 20 73 70 65 63 69 66 69 63 20 | .to.assign.the.clients.specific. |
| fa780 | 49 50 76 34 20 28 2f 33 32 29 20 6f 72 20 49 50 76 36 20 28 2f 31 32 38 29 20 61 64 64 72 65 73 | IPv4.(/32).or.IPv6.(/128).addres |
| fa7a0 | 73 2e 00 49 6e 20 61 64 64 69 74 69 6f 6e 2c 20 79 6f 75 20 63 61 6e 20 73 70 65 63 69 66 79 20 | s..In.addition,.you.can.specify. |
| fa7c0 | 6d 61 6e 79 20 6f 74 68 65 72 20 70 61 72 61 6d 65 74 65 72 73 20 74 6f 20 67 65 74 20 42 47 50 | many.other.parameters.to.get.BGP |
| fa7e0 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 3a 00 49 6e 20 61 6e 20 2a 2a 61 64 64 72 65 73 73 20 67 72 | .information:.In.an.**address.gr |
| fa800 | 6f 75 70 2a 2a 20 61 20 73 69 6e 67 6c 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 49 50 20 | oup**.a.single.IP.address.or.IP. |
| fa820 | 61 64 64 72 65 73 73 20 72 61 6e 67 65 20 69 73 20 64 65 66 69 6e 65 64 2e 00 49 6e 20 61 6e 20 | address.range.is.defined..In.an. |
| fa840 | 2a 2a 61 64 64 72 65 73 73 20 67 72 6f 75 70 2a 2a 20 61 20 73 69 6e 67 6c 65 20 49 50 20 61 64 | **address.group**.a.single.IP.ad |
| fa860 | 64 72 65 73 73 20 6f 72 20 49 50 20 61 64 64 72 65 73 73 20 72 61 6e 67 65 73 20 61 72 65 20 64 | dress.or.IP.address.ranges.are.d |
| fa880 | 65 66 69 6e 65 64 2e 00 49 6e 20 62 6f 74 68 20 63 61 73 65 73 2c 20 77 65 20 77 69 6c 6c 20 75 | efined..In.both.cases,.we.will.u |
| fa8a0 | 73 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 65 74 74 69 6e 67 73 3a 00 49 6e 20 63 61 | se.the.following.settings:.In.ca |
| fa8c0 | 73 65 20 6f 66 20 70 65 65 72 2d 70 65 65 72 20 72 65 6c 61 74 69 6f 6e 73 68 69 70 20 72 6f 75 | se.of.peer-peer.relationship.rou |
| fa8e0 | 74 65 73 20 63 61 6e 20 62 65 20 72 65 63 65 69 76 65 64 20 6f 6e 6c 79 20 69 66 20 4f 54 43 20 | tes.can.be.received.only.if.OTC. |
| fa900 | 76 61 6c 75 65 20 69 73 20 65 71 75 61 6c 20 74 6f 20 79 6f 75 72 20 6e 65 69 67 68 62 6f 72 20 | value.is.equal.to.your.neighbor. |
| fa920 | 41 53 20 6e 75 6d 62 65 72 2e 00 49 6e 20 63 61 73 65 2c 20 69 66 20 79 6f 75 20 6e 65 65 64 20 | AS.number..In.case,.if.you.need. |
| fa940 | 74 6f 20 63 61 74 63 68 20 73 6f 6d 65 20 6c 6f 67 73 20 66 72 6f 6d 20 66 6c 6f 77 2d 61 63 63 | to.catch.some.logs.from.flow-acc |
| fa960 | 6f 75 6e 74 69 6e 67 20 64 61 65 6d 6f 6e 2c 20 79 6f 75 20 6d 61 79 20 63 6f 6e 66 69 67 75 72 | ounting.daemon,.you.may.configur |
| fa980 | 65 20 6c 6f 67 67 69 6e 67 20 66 61 63 69 6c 69 74 79 3a 00 49 6e 20 63 6f 6e 74 72 61 73 74 20 | e.logging.facility:.In.contrast. |
| fa9a0 | 74 6f 20 73 69 6d 70 6c 65 20 52 45 44 2c 20 56 79 4f 53 27 20 52 61 6e 64 6f 6d 2d 44 65 74 65 | to.simple.RED,.VyOS'.Random-Dete |
| fa9c0 | 63 74 20 75 73 65 73 20 61 20 47 65 6e 65 72 61 6c 69 7a 65 64 20 52 61 6e 64 6f 6d 20 45 61 72 | ct.uses.a.Generalized.Random.Ear |
| fa9e0 | 6c 79 20 44 65 74 65 63 74 20 70 6f 6c 69 63 79 20 74 68 61 74 20 70 72 6f 76 69 64 65 73 20 64 | ly.Detect.policy.that.provides.d |
| faa00 | 69 66 66 65 72 65 6e 74 20 76 69 72 74 75 61 6c 20 71 75 65 75 65 73 20 62 61 73 65 64 20 6f 6e | ifferent.virtual.queues.based.on |
| faa20 | 20 74 68 65 20 49 50 20 50 72 65 63 65 64 65 6e 63 65 20 76 61 6c 75 65 20 73 6f 20 74 68 61 74 | .the.IP.Precedence.value.so.that |
| faa40 | 20 73 6f 6d 65 20 76 69 72 74 75 61 6c 20 71 75 65 75 65 73 20 63 61 6e 20 64 72 6f 70 20 6d 6f | .some.virtual.queues.can.drop.mo |
| faa60 | 72 65 20 70 61 63 6b 65 74 73 20 74 68 61 6e 20 6f 74 68 65 72 73 2e 00 49 6e 20 66 61 69 6c 6f | re.packets.than.others..In.failo |
| faa80 | 76 65 72 20 6d 6f 64 65 2c 20 6f 6e 65 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 73 65 74 20 74 | ver.mode,.one.interface.is.set.t |
| faaa0 | 6f 20 62 65 20 74 68 65 20 70 72 69 6d 61 72 79 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 6f | o.be.the.primary.interface.and.o |
| faac0 | 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 73 65 63 6f 6e 64 61 72 79 20 6f 72 | ther.interfaces.are.secondary.or |
| faae0 | 20 73 70 61 72 65 2e 20 49 6e 73 74 65 61 64 20 6f 66 20 62 61 6c 61 6e 63 69 6e 67 20 74 72 61 | .spare..Instead.of.balancing.tra |
| fab00 | 66 66 69 63 20 61 63 72 6f 73 73 20 61 6c 6c 20 68 65 61 6c 74 68 79 20 69 6e 74 65 72 66 61 63 | ffic.across.all.healthy.interfac |
| fab20 | 65 73 2c 20 6f 6e 6c 79 20 74 68 65 20 70 72 69 6d 61 72 79 20 69 6e 74 65 72 66 61 63 65 20 69 | es,.only.the.primary.interface.i |
| fab40 | 73 20 75 73 65 64 20 61 6e 64 20 69 6e 20 63 61 73 65 20 6f 66 20 66 61 69 6c 75 72 65 2c 20 61 | s.used.and.in.case.of.failure,.a |
| fab60 | 20 73 65 63 6f 6e 64 61 72 79 20 69 6e 74 65 72 66 61 63 65 20 73 65 6c 65 63 74 65 64 20 66 72 | .secondary.interface.selected.fr |
| fab80 | 6f 6d 20 74 68 65 20 70 6f 6f 6c 20 6f 66 20 61 76 61 69 6c 61 62 6c 65 20 69 6e 74 65 72 66 61 | om.the.pool.of.available.interfa |
| faba0 | 63 65 73 20 74 61 6b 65 73 20 6f 76 65 72 2e 20 54 68 65 20 70 72 69 6d 61 72 79 20 69 6e 74 65 | ces.takes.over..The.primary.inte |
| fabc0 | 72 66 61 63 65 20 69 73 20 73 65 6c 65 63 74 65 64 20 62 61 73 65 64 20 6f 6e 20 69 74 73 20 77 | rface.is.selected.based.on.its.w |
| fabe0 | 65 69 67 68 74 20 61 6e 64 20 68 65 61 6c 74 68 2c 20 6f 74 68 65 72 73 20 62 65 63 6f 6d 65 20 | eight.and.health,.others.become. |
| fac00 | 73 65 63 6f 6e 64 61 72 79 20 69 6e 74 65 72 66 61 63 65 73 2e 20 53 65 63 6f 6e 64 61 72 79 20 | secondary.interfaces..Secondary. |
| fac20 | 69 6e 74 65 72 66 61 63 65 73 20 74 6f 20 74 61 6b 65 20 6f 76 65 72 20 61 20 66 61 69 6c 65 64 | interfaces.to.take.over.a.failed |
| fac40 | 20 70 72 69 6d 61 72 79 20 69 6e 74 65 72 66 61 63 65 20 61 72 65 20 63 68 6f 73 65 6e 20 66 72 | .primary.interface.are.chosen.fr |
| fac60 | 6f 6d 20 74 68 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 72 27 73 20 69 6e 74 65 72 66 61 63 65 | om.the.load.balancer's.interface |
| fac80 | 20 70 6f 6f 6c 2c 20 64 65 70 65 6e 64 69 6e 67 20 6f 6e 20 74 68 65 69 72 20 77 65 69 67 68 74 | .pool,.depending.on.their.weight |
| faca0 | 20 61 6e 64 20 68 65 61 6c 74 68 2e 20 49 6e 74 65 72 66 61 63 65 20 72 6f 6c 65 73 20 63 61 6e | .and.health..Interface.roles.can |
| facc0 | 20 61 6c 73 6f 20 62 65 20 73 65 6c 65 63 74 65 64 20 62 61 73 65 64 20 6f 6e 20 72 75 6c 65 20 | .also.be.selected.based.on.rule. |
| face0 | 6f 72 64 65 72 20 62 79 20 69 6e 63 6c 75 64 69 6e 67 20 69 6e 74 65 72 66 61 63 65 73 20 69 6e | order.by.including.interfaces.in |
| fad00 | 20 62 61 6c 61 6e 63 69 6e 67 20 72 75 6c 65 73 20 61 6e 64 20 6f 72 64 65 72 69 6e 67 20 74 68 | .balancing.rules.and.ordering.th |
| fad20 | 6f 73 65 20 72 75 6c 65 73 20 61 63 63 6f 72 64 69 6e 67 6c 79 2e 20 54 6f 20 70 75 74 20 74 68 | ose.rules.accordingly..To.put.th |
| fad40 | 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 72 20 69 6e 20 66 61 69 6c 6f 76 65 72 20 6d 6f 64 65 | e.load.balancer.in.failover.mode |
| fad60 | 2c 20 63 72 65 61 74 65 20 61 20 66 61 69 6c 6f 76 65 72 20 72 75 6c 65 3a 00 49 6e 20 66 69 72 | ,.create.a.failover.rule:.In.fir |
| fad80 | 65 77 61 6c 6c 20 62 72 69 64 67 65 20 72 75 6c 65 73 2c 20 74 68 65 20 61 63 74 69 6f 6e 20 63 | ewall.bridge.rules,.the.action.c |
| fada0 | 61 6e 20 62 65 3a 00 49 6e 20 67 65 6e 65 72 61 6c 2c 20 4f 53 50 46 20 70 72 6f 74 6f 63 6f 6c | an.be:.In.general,.OSPF.protocol |
| fadc0 | 20 72 65 71 75 69 72 65 73 20 61 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 28 61 72 65 61 20 | .requires.a.backbone.area.(area. |
| fade0 | 30 29 20 74 6f 20 62 65 20 63 6f 68 65 72 65 6e 74 20 61 6e 64 20 66 75 6c 6c 79 20 63 6f 6e 6e | 0).to.be.coherent.and.fully.conn |
| fae00 | 65 63 74 65 64 2e 20 49 2e 65 2e 20 61 6e 79 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 72 6f | ected..I.e..any.backbone.area.ro |
| fae20 | 75 74 65 72 20 6d 75 73 74 20 68 61 76 65 20 61 20 72 6f 75 74 65 20 74 6f 20 61 6e 79 20 6f 74 | uter.must.have.a.route.to.any.ot |
| fae40 | 68 65 72 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 72 6f 75 74 65 72 2e 20 4d 6f 72 65 6f 76 | her.backbone.area.router..Moreov |
| fae60 | 65 72 2c 20 65 76 65 72 79 20 41 42 52 20 6d 75 73 74 20 68 61 76 65 20 61 20 6c 69 6e 6b 20 74 | er,.every.ABR.must.have.a.link.t |
| fae80 | 6f 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 2e 20 48 6f 77 65 76 65 72 2c 20 69 74 20 69 73 20 | o.backbone.area..However,.it.is. |
| faea0 | 6e 6f 74 20 61 6c 77 61 79 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 68 61 76 65 20 61 20 70 68 | not.always.possible.to.have.a.ph |
| faec0 | 79 73 69 63 61 6c 20 6c 69 6e 6b 20 74 6f 20 61 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 2e 20 | ysical.link.to.a.backbone.area.. |
| faee0 | 49 6e 20 74 68 69 73 20 63 61 73 65 20 62 65 74 77 65 65 6e 20 74 77 6f 20 41 42 52 20 28 6f 6e | In.this.case.between.two.ABR.(on |
| faf00 | 65 20 6f 66 20 74 68 65 6d 20 68 61 73 20 61 20 6c 69 6e 6b 20 74 6f 20 74 68 65 20 62 61 63 6b | e.of.them.has.a.link.to.the.back |
| faf20 | 62 6f 6e 65 20 61 72 65 61 29 20 69 6e 20 74 68 65 20 61 72 65 61 20 28 6e 6f 74 20 73 74 75 62 | bone.area).in.the.area.(not.stub |
| faf40 | 20 61 72 65 61 29 20 61 20 76 69 72 74 75 61 6c 20 6c 69 6e 6b 20 69 73 20 6f 72 67 61 6e 69 7a | .area).a.virtual.link.is.organiz |
| faf60 | 65 64 2e 00 49 6e 20 6c 61 72 67 65 20 64 65 70 6c 6f 79 6d 65 6e 74 73 20 69 74 20 69 73 20 6e | ed..In.large.deployments.it.is.n |
| faf80 | 6f 74 20 72 65 61 73 6f 6e 61 62 6c 65 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 65 61 63 68 20 | ot.reasonable.to.configure.each. |
| fafa0 | 75 73 65 72 20 69 6e 64 69 76 69 64 75 61 6c 6c 79 20 6f 6e 20 65 76 65 72 79 20 73 79 73 74 65 | user.individually.on.every.syste |
| fafc0 | 6d 2e 20 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 75 73 69 6e 67 20 3a 61 62 62 72 3a 60 52 41 | m..VyOS.supports.using.:abbr:`RA |
| fafe0 | 44 49 55 53 20 28 52 65 6d 6f 74 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 44 69 61 6c | DIUS.(Remote.Authentication.Dial |
| fb000 | 2d 49 6e 20 55 73 65 72 20 53 65 72 76 69 63 65 29 60 20 73 65 72 76 65 72 73 20 61 73 20 62 61 | -In.User.Service)`.servers.as.ba |
| fb020 | 63 6b 65 6e 64 20 66 6f 72 20 75 73 65 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 00 49 | ckend.for.user.authentication..I |
| fb040 | 6e 20 6f 72 64 65 72 20 66 6f 72 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 20 69 6e 66 6f | n.order.for.flow.accounting.info |
| fb060 | 72 6d 61 74 69 6f 6e 20 74 6f 20 62 65 20 63 6f 6c 6c 65 63 74 65 64 20 61 6e 64 20 64 69 73 70 | rmation.to.be.collected.and.disp |
| fb080 | 6c 61 79 65 64 20 66 6f 72 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2c 20 74 68 65 20 69 6e 74 65 | layed.for.an.interface,.the.inte |
| fb0a0 | 72 66 61 63 65 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 66 6f 72 20 66 6c 6f | rface.must.be.configured.for.flo |
| fb0c0 | 77 20 61 63 63 6f 75 6e 74 69 6e 67 2e 00 49 6e 20 6f 72 64 65 72 20 66 6f 72 20 74 68 65 20 70 | w.accounting..In.order.for.the.p |
| fb0e0 | 72 69 6d 61 72 79 20 61 6e 64 20 74 68 65 20 73 65 63 6f 6e 64 61 72 79 20 44 48 43 50 20 73 65 | rimary.and.the.secondary.DHCP.se |
| fb100 | 72 76 65 72 20 74 6f 20 6b 65 65 70 20 74 68 65 69 72 20 6c 65 61 73 65 20 74 61 62 6c 65 73 20 | rver.to.keep.their.lease.tables. |
| fb120 | 69 6e 20 73 79 6e 63 2c 20 74 68 65 79 20 6d 75 73 74 20 62 65 20 61 62 6c 65 20 74 6f 20 72 65 | in.sync,.they.must.be.able.to.re |
| fb140 | 61 63 68 20 65 61 63 68 20 6f 74 68 65 72 20 6f 6e 20 54 43 50 20 70 6f 72 74 20 36 34 37 2e 20 | ach.each.other.on.TCP.port.647.. |
| fb160 | 49 66 20 79 6f 75 20 68 61 76 65 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 69 6e 20 65 66 | If.you.have.firewall.rules.in.ef |
| fb180 | 66 65 63 74 2c 20 61 64 6a 75 73 74 20 74 68 65 6d 20 61 63 63 6f 72 64 69 6e 67 6c 79 2e 00 49 | fect,.adjust.them.accordingly..I |
| fb1a0 | 6e 20 6f 72 64 65 72 20 66 6f 72 20 74 68 65 20 73 79 73 74 65 6d 20 74 6f 20 75 73 65 20 61 6e | n.order.for.the.system.to.use.an |
| fb1c0 | 64 20 63 6f 6d 70 6c 65 74 65 20 75 6e 71 75 61 6c 69 66 69 65 64 20 68 6f 73 74 20 6e 61 6d 65 | d.complete.unqualified.host.name |
| fb1e0 | 73 2c 20 61 20 6c 69 73 74 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 77 68 69 63 68 20 77 | s,.a.list.can.be.defined.which.w |
| fb200 | 69 6c 6c 20 62 65 20 75 73 65 64 20 66 6f 72 20 64 6f 6d 61 69 6e 20 73 65 61 72 63 68 65 73 2e | ill.be.used.for.domain.searches. |
| fb220 | 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 61 6c 6c 6f 77 20 66 6f 72 20 4c 44 50 20 6f 6e 20 74 68 | .In.order.to.allow.for.LDP.on.th |
| fb240 | 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 74 6f 20 65 78 63 68 61 6e 67 65 20 6c 61 62 65 6c | e.local.router.to.exchange.label |
| fb260 | 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 73 20 77 69 74 68 20 6f 74 68 65 72 20 72 6f 75 74 65 | .advertisements.with.other.route |
| fb280 | 72 73 2c 20 61 20 54 43 50 20 73 65 73 73 69 6f 6e 20 77 69 6c 6c 20 62 65 20 65 73 74 61 62 6c | rs,.a.TCP.session.will.be.establ |
| fb2a0 | 69 73 68 65 64 20 62 65 74 77 65 65 6e 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 64 69 73 63 | ished.between.automatically.disc |
| fb2c0 | 6f 76 65 72 65 64 20 61 6e 64 20 73 74 61 74 69 63 61 6c 6c 79 20 61 73 73 69 67 6e 65 64 20 72 | overed.and.statically.assigned.r |
| fb2e0 | 6f 75 74 65 72 73 2e 20 4c 44 50 20 77 69 6c 6c 20 74 72 79 20 74 6f 20 65 73 74 61 62 6c 69 73 | outers..LDP.will.try.to.establis |
| fb300 | 68 20 61 20 54 43 50 20 73 65 73 73 69 6f 6e 20 74 6f 20 74 68 65 20 2a 2a 74 72 61 6e 73 70 6f | h.a.TCP.session.to.the.**transpo |
| fb320 | 72 74 20 61 64 64 72 65 73 73 2a 2a 20 6f 66 20 6f 74 68 65 72 20 72 6f 75 74 65 72 73 2e 20 54 | rt.address**.of.other.routers..T |
| fb340 | 68 65 72 65 66 6f 72 65 20 66 6f 72 20 4c 44 50 20 74 6f 20 66 75 6e 63 74 69 6f 6e 20 70 72 6f | herefore.for.LDP.to.function.pro |
| fb360 | 70 65 72 6c 79 20 70 6c 65 61 73 65 20 6d 61 6b 65 20 73 75 72 65 20 74 68 65 20 74 72 61 6e 73 | perly.please.make.sure.the.trans |
| fb380 | 70 6f 72 74 20 61 64 64 72 65 73 73 20 69 73 20 73 68 6f 77 6e 20 69 6e 20 74 68 65 20 72 6f 75 | port.address.is.shown.in.the.rou |
| fb3a0 | 74 69 6e 67 20 74 61 62 6c 65 20 61 6e 64 20 72 65 61 63 68 61 62 6c 65 20 74 6f 20 74 72 61 66 | ting.table.and.reachable.to.traf |
| fb3c0 | 66 69 63 20 61 74 20 61 6c 6c 20 74 69 6d 65 73 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 63 6f | fic.at.all.times..In.order.to.co |
| fb3e0 | 6e 74 72 6f 6c 20 61 6e 64 20 6d 6f 64 69 66 79 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 | ntrol.and.modify.routing.informa |
| fb400 | 74 69 6f 6e 20 74 68 61 74 20 69 73 20 65 78 63 68 61 6e 67 65 64 20 62 65 74 77 65 65 6e 20 70 | tion.that.is.exchanged.between.p |
| fb420 | 65 65 72 73 20 79 6f 75 20 63 61 6e 20 75 73 65 20 72 6f 75 74 65 2d 6d 61 70 2c 20 66 69 6c 74 | eers.you.can.use.route-map,.filt |
| fb440 | 65 72 2d 6c 69 73 74 2c 20 70 72 65 66 69 78 2d 6c 69 73 74 2c 20 64 69 73 74 72 69 62 75 74 65 | er-list,.prefix-list,.distribute |
| fb460 | 2d 6c 69 73 74 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 64 65 66 69 6e 65 20 77 68 69 63 68 20 | -list..In.order.to.define.which. |
| fb480 | 74 72 61 66 66 69 63 20 67 6f 65 73 20 69 6e 74 6f 20 77 68 69 63 68 20 63 6c 61 73 73 2c 20 79 | traffic.goes.into.which.class,.y |
| fb4a0 | 6f 75 20 64 65 66 69 6e 65 20 66 69 6c 74 65 72 73 20 28 74 68 61 74 20 69 73 2c 20 74 68 65 20 | ou.define.filters.(that.is,.the. |
| fb4c0 | 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 29 2e 20 50 61 63 6b 65 74 73 20 67 6f 20 74 | matching.criteria)..Packets.go.t |
| fb4e0 | 68 72 6f 75 67 68 20 74 68 65 73 65 20 6d 61 74 63 68 69 6e 67 20 72 75 6c 65 73 20 28 61 73 20 | hrough.these.matching.rules.(as. |
| fb500 | 69 6e 20 74 68 65 20 72 75 6c 65 73 20 6f 66 20 61 20 66 69 72 65 77 61 6c 6c 29 20 61 6e 64 2c | in.the.rules.of.a.firewall).and, |
| fb520 | 20 69 66 20 61 20 70 61 63 6b 65 74 20 6d 61 74 63 68 65 73 20 74 68 65 20 66 69 6c 74 65 72 2c | .if.a.packet.matches.the.filter, |
| fb540 | 20 69 74 20 69 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 74 68 61 74 20 63 6c 61 73 73 2e 00 49 | .it.is.assigned.to.that.class..I |
| fb560 | 6e 20 6f 72 64 65 72 20 74 6f 20 68 61 76 65 20 56 79 4f 53 20 54 72 61 66 66 69 63 20 43 6f 6e | n.order.to.have.VyOS.Traffic.Con |
| fb580 | 74 72 6f 6c 20 77 6f 72 6b 69 6e 67 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 66 6f 6c 6c 6f 77 20 | trol.working.you.need.to.follow. |
| fb5a0 | 32 20 73 74 65 70 73 3a 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 68 61 76 65 20 66 75 6c 6c 20 63 | 2.steps:.In.order.to.have.full.c |
| fb5c0 | 6f 6e 74 72 6f 6c 20 61 6e 64 20 6d 61 6b 65 20 75 73 65 20 6f 66 20 6d 75 6c 74 69 70 6c 65 20 | ontrol.and.make.use.of.multiple. |
| fb5e0 | 73 74 61 74 69 63 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 65 73 2c 20 79 6f 75 72 | static.public.IP.addresses,.your |
| fb600 | 20 56 79 4f 53 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 69 6e 69 74 69 61 74 65 20 74 68 65 20 | .VyOS.will.have.to.initiate.the. |
| fb620 | 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 20 69 74 2e | PPPoE.connection.and.control.it. |
| fb640 | 20 49 6e 20 6f 72 64 65 72 20 66 6f 72 20 74 68 69 73 20 6d 65 74 68 6f 64 20 74 6f 20 77 6f 72 | .In.order.for.this.method.to.wor |
| fb660 | 6b 2c 20 79 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 66 69 67 75 72 65 20 6f 75 74 20 68 | k,.you.will.have.to.figure.out.h |
| fb680 | 6f 77 20 74 6f 20 6d 61 6b 65 20 79 6f 75 72 20 44 53 4c 20 4d 6f 64 65 6d 2f 52 6f 75 74 65 72 | ow.to.make.your.DSL.Modem/Router |
| fb6a0 | 20 73 77 69 74 63 68 20 69 6e 74 6f 20 61 20 42 72 69 64 67 65 64 20 4d 6f 64 65 20 73 6f 20 69 | .switch.into.a.Bridged.Mode.so.i |
| fb6c0 | 74 20 6f 6e 6c 79 20 61 63 74 73 20 61 73 20 61 20 44 53 4c 20 54 72 61 6e 73 63 65 69 76 65 72 | t.only.acts.as.a.DSL.Transceiver |
| fb6e0 | 20 64 65 76 69 63 65 20 74 6f 20 63 6f 6e 6e 65 63 74 20 62 65 74 77 65 65 6e 20 74 68 65 20 45 | .device.to.connect.between.the.E |
| fb700 | 74 68 65 72 6e 65 74 20 6c 69 6e 6b 20 6f 66 20 79 6f 75 72 20 56 79 4f 53 20 61 6e 64 20 74 68 | thernet.link.of.your.VyOS.and.th |
| fb720 | 65 20 70 68 6f 6e 65 20 63 61 62 6c 65 2e 20 4f 6e 63 65 20 79 6f 75 72 20 44 53 4c 20 54 72 61 | e.phone.cable..Once.your.DSL.Tra |
| fb740 | 6e 73 63 65 69 76 65 72 20 69 73 20 69 6e 20 42 72 69 64 67 65 20 4d 6f 64 65 2c 20 79 6f 75 20 | nsceiver.is.in.Bridge.Mode,.you. |
| fb760 | 73 68 6f 75 6c 64 20 67 65 74 20 6e 6f 20 49 50 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 69 74 | should.get.no.IP.address.from.it |
| fb780 | 2e 20 50 6c 65 61 73 65 20 6d 61 6b 65 20 73 75 72 65 20 79 6f 75 20 63 6f 6e 6e 65 63 74 20 74 | ..Please.make.sure.you.connect.t |
| fb7a0 | 6f 20 74 68 65 20 45 74 68 65 72 6e 65 74 20 50 6f 72 74 20 31 20 69 66 20 79 6f 75 72 20 44 53 | o.the.Ethernet.Port.1.if.your.DS |
| fb7c0 | 4c 20 54 72 61 6e 73 63 65 69 76 65 72 20 68 61 73 20 61 20 73 77 69 74 63 68 2c 20 61 73 20 73 | L.Transceiver.has.a.switch,.as.s |
| fb7e0 | 6f 6d 65 20 6f 66 20 74 68 65 6d 20 6f 6e 6c 79 20 77 6f 72 6b 20 74 68 69 73 20 77 61 79 2e 00 | ome.of.them.only.work.this.way.. |
| fb800 | 49 6e 20 6f 72 64 65 72 20 74 6f 20 6d 61 70 20 73 70 65 63 69 66 69 63 20 49 50 76 36 20 61 64 | In.order.to.map.specific.IPv6.ad |
| fb820 | 64 72 65 73 73 65 73 20 74 6f 20 73 70 65 63 69 66 69 63 20 68 6f 73 74 73 20 73 74 61 74 69 63 | dresses.to.specific.hosts.static |
| fb840 | 20 6d 61 70 70 69 6e 67 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 2e 20 54 68 65 20 66 6f | .mappings.can.be.created..The.fo |
| fb860 | 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 20 65 78 70 6c 61 69 6e 73 20 74 68 65 20 70 72 6f | llowing.example.explains.the.pro |
| fb880 | 63 65 73 73 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 6d 69 6e 69 6d 69 7a 65 20 74 68 65 20 66 | cess..In.order.to.minimize.the.f |
| fb8a0 | 6c 6f 6f 64 69 6e 67 20 6f 66 20 41 52 50 20 61 6e 64 20 4e 44 20 6d 65 73 73 61 67 65 73 20 69 | looding.of.ARP.and.ND.messages.i |
| fb8c0 | 6e 20 74 68 65 20 56 58 4c 41 4e 20 6e 65 74 77 6f 72 6b 2c 20 45 56 50 4e 20 69 6e 63 6c 75 64 | n.the.VXLAN.network,.EVPN.includ |
| fb8e0 | 65 73 20 70 72 6f 76 69 73 69 6f 6e 73 20 3a 72 66 63 3a 60 37 34 33 32 23 73 65 63 74 69 6f 6e | es.provisions.:rfc:`7432#section |
| fb900 | 2d 31 30 60 20 74 68 61 74 20 61 6c 6c 6f 77 20 70 61 72 74 69 63 69 70 61 74 69 6e 67 20 56 54 | -10`.that.allow.participating.VT |
| fb920 | 45 50 73 20 74 6f 20 73 75 70 70 72 65 73 73 20 73 75 63 68 20 6d 65 73 73 61 67 65 73 20 69 6e | EPs.to.suppress.such.messages.in |
| fb940 | 20 63 61 73 65 20 74 68 65 79 20 6b 6e 6f 77 20 74 68 65 20 4d 41 43 2d 49 50 20 62 69 6e 64 69 | .case.they.know.the.MAC-IP.bindi |
| fb960 | 6e 67 20 61 6e 64 20 63 61 6e 20 72 65 70 6c 79 20 6f 6e 20 62 65 68 61 6c 66 20 6f 66 20 74 68 | ng.and.can.reply.on.behalf.of.th |
| fb980 | 65 20 72 65 6d 6f 74 65 20 68 6f 73 74 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 73 65 70 61 72 | e.remote.host..In.order.to.separ |
| fb9a0 | 61 74 65 20 74 72 61 66 66 69 63 2c 20 46 61 69 72 20 51 75 65 75 65 20 75 73 65 73 20 61 20 63 | ate.traffic,.Fair.Queue.uses.a.c |
| fb9c0 | 6c 61 73 73 69 66 69 65 72 20 62 61 73 65 64 20 6f 6e 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 | lassifier.based.on.source.addres |
| fb9e0 | 73 2c 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 61 6e 64 20 73 6f 75 72 63 | s,.destination.address.and.sourc |
| fba00 | 65 20 70 6f 72 74 2e 20 54 68 65 20 61 6c 67 6f 72 69 74 68 6d 20 65 6e 71 75 65 75 65 73 20 70 | e.port..The.algorithm.enqueues.p |
| fba20 | 61 63 6b 65 74 73 20 74 6f 20 68 61 73 68 20 62 75 63 6b 65 74 73 20 62 61 73 65 64 20 6f 6e 20 | ackets.to.hash.buckets.based.on. |
| fba40 | 74 68 6f 73 65 20 74 72 65 65 20 70 61 72 61 6d 65 74 65 72 73 2e 20 45 61 63 68 20 6f 66 20 74 | those.tree.parameters..Each.of.t |
| fba60 | 68 65 73 65 20 62 75 63 6b 65 74 73 20 73 68 6f 75 6c 64 20 72 65 70 72 65 73 65 6e 74 20 61 20 | hese.buckets.should.represent.a. |
| fba80 | 75 6e 69 71 75 65 20 66 6c 6f 77 2e 20 42 65 63 61 75 73 65 20 6d 75 6c 74 69 70 6c 65 20 66 6c | unique.flow..Because.multiple.fl |
| fbaa0 | 6f 77 73 20 6d 61 79 20 67 65 74 20 68 61 73 68 65 64 20 74 6f 20 74 68 65 20 73 61 6d 65 20 62 | ows.may.get.hashed.to.the.same.b |
| fbac0 | 75 63 6b 65 74 2c 20 74 68 65 20 68 61 73 68 69 6e 67 20 61 6c 67 6f 72 69 74 68 6d 20 69 73 20 | ucket,.the.hashing.algorithm.is. |
| fbae0 | 70 65 72 74 75 72 62 65 64 20 61 74 20 63 6f 6e 66 69 67 75 72 61 62 6c 65 20 69 6e 74 65 72 76 | perturbed.at.configurable.interv |
| fbb00 | 61 6c 73 20 73 6f 20 74 68 61 74 20 74 68 65 20 75 6e 66 61 69 72 6e 65 73 73 20 6c 61 73 74 73 | als.so.that.the.unfairness.lasts |
| fbb20 | 20 6f 6e 6c 79 20 66 6f 72 20 61 20 73 68 6f 72 74 20 77 68 69 6c 65 2e 20 50 65 72 74 75 72 62 | .only.for.a.short.while..Perturb |
| fbb40 | 61 74 69 6f 6e 20 6d 61 79 20 68 6f 77 65 76 65 72 20 63 61 75 73 65 20 73 6f 6d 65 20 69 6e 61 | ation.may.however.cause.some.ina |
| fbb60 | 64 76 65 72 74 65 6e 74 20 70 61 63 6b 65 74 20 72 65 6f 72 64 65 72 69 6e 67 20 74 6f 20 6f 63 | dvertent.packet.reordering.to.oc |
| fbb80 | 63 75 72 2e 20 41 6e 20 61 64 76 69 73 61 62 6c 65 20 76 61 6c 75 65 20 63 6f 75 6c 64 20 62 65 | cur..An.advisable.value.could.be |
| fbba0 | 20 31 30 20 73 65 63 6f 6e 64 73 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 65 20 50 49 4d | .10.seconds..In.order.to.use.PIM |
| fbbc0 | 2c 20 69 74 20 69 73 20 6e 65 63 65 73 73 61 72 79 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 | ,.it.is.necessary.to.configure.a |
| fbbe0 | 20 3a 61 62 62 72 3a 60 52 50 20 28 52 65 6e 64 65 7a 76 6f 75 73 20 50 6f 69 6e 74 29 60 20 66 | .:abbr:`RP.(Rendezvous.Point)`.f |
| fbc00 | 6f 72 20 6a 6f 69 6e 20 6d 65 73 73 61 67 65 73 20 74 6f 20 62 65 20 73 65 6e 74 20 74 6f 2e 20 | or.join.messages.to.be.sent.to.. |
| fbc20 | 43 75 72 72 65 6e 74 6c 79 20 74 68 65 20 6f 6e 6c 79 20 6d 65 74 68 6f 64 6f 6c 6f 67 79 20 74 | Currently.the.only.methodology.t |
| fbc40 | 6f 20 64 6f 20 74 68 69 73 20 69 73 20 76 69 61 20 73 74 61 74 69 63 20 72 65 6e 64 65 7a 76 6f | o.do.this.is.via.static.rendezvo |
| fbc60 | 75 73 20 70 6f 69 6e 74 20 63 6f 6d 6d 61 6e 64 73 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 | us.point.commands..In.order.to.u |
| fbc80 | 73 65 20 54 53 4f 2f 4c 52 4f 20 77 69 74 68 20 56 4d 58 4e 45 54 33 20 61 64 61 70 74 65 72 73 | se.TSO/LRO.with.VMXNET3.adapters |
| fbca0 | 2c 20 74 68 65 20 53 47 20 6f 66 66 6c 6f 61 64 69 6e 67 20 6f 70 74 69 6f 6e 20 6d 75 73 74 20 | ,.the.SG.offloading.option.must. |
| fbcc0 | 61 6c 73 6f 20 62 65 20 65 6e 61 62 6c 65 64 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 65 | also.be.enabled..In.order.to.use |
| fbce0 | 20 54 53 4f 2f 4c 52 4f 20 77 69 74 68 20 56 4d 58 4e 45 54 33 20 61 64 61 74 65 72 73 20 6f 6e | .TSO/LRO.with.VMXNET3.adaters.on |
| fbd00 | 65 20 6d 75 73 74 20 61 6c 73 6f 20 65 6e 61 62 6c 65 20 74 68 65 20 53 47 20 6f 66 66 6c 6f 61 | e.must.also.enable.the.SG.offloa |
| fbd20 | 64 69 6e 67 20 6f 70 74 69 6f 6e 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 65 20 66 6c 6f | ding.option..In.order.to.use.flo |
| fbd40 | 77 74 61 62 6c 65 73 2c 20 74 68 65 20 6d 69 6e 69 6d 61 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 | wtables,.the.minimal.configurati |
| fbd60 | 6f 6e 20 6e 65 65 64 65 64 20 69 6e 63 6c 75 64 65 73 3a 00 49 6e 20 6f 74 68 65 72 20 77 6f 72 | on.needed.includes:.In.other.wor |
| fbd80 | 64 73 20 69 74 20 61 6c 6c 6f 77 73 20 63 6f 6e 74 72 6f 6c 20 6f 66 20 77 68 69 63 68 20 63 61 | ds.it.allows.control.of.which.ca |
| fbda0 | 72 64 73 20 28 75 73 75 61 6c 6c 79 20 31 29 20 77 69 6c 6c 20 72 65 73 70 6f 6e 64 20 74 6f 20 | rds.(usually.1).will.respond.to. |
| fbdc0 | 61 6e 20 61 72 70 20 72 65 71 75 65 73 74 2e 00 49 6e 20 6f 74 68 65 72 20 77 6f 72 64 73 2c 20 | an.arp.request..In.other.words,. |
| fbde0 | 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 68 61 73 20 61 6c 72 65 61 64 79 20 | connection.tracking.has.already. |
| fbe00 | 6f 62 73 65 72 76 65 64 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 62 65 20 63 6c 6f 73 65 | observed.the.connection.be.close |
| fbe20 | 64 20 61 6e 64 20 68 61 73 20 74 72 61 6e 73 69 74 69 6f 6e 20 74 68 65 20 66 6c 6f 77 20 74 6f | d.and.has.transition.the.flow.to |
| fbe40 | 20 49 4e 56 41 4c 49 44 20 74 6f 20 70 72 65 76 65 6e 74 20 61 74 74 61 63 6b 73 20 66 72 6f 6d | .INVALID.to.prevent.attacks.from |
| fbe60 | 20 61 74 74 65 6d 70 74 69 6e 67 20 74 6f 20 72 65 75 73 65 20 74 68 65 20 63 6f 6e 6e 65 63 74 | .attempting.to.reuse.the.connect |
| fbe80 | 69 6f 6e 2e 00 49 6e 20 6f 75 72 20 65 78 61 6d 70 6c 65 20 74 68 65 20 63 65 72 74 69 66 69 63 | ion..In.our.example.the.certific |
| fbea0 | 61 74 65 20 6e 61 6d 65 20 69 73 20 63 61 6c 6c 65 64 20 76 79 6f 73 3a 00 49 6e 20 6f 75 72 20 | ate.name.is.called.vyos:.In.our. |
| fbec0 | 65 78 61 6d 70 6c 65 2c 20 77 65 20 75 73 65 64 20 74 68 65 20 6b 65 79 20 6e 61 6d 65 20 60 60 | example,.we.used.the.key.name.`` |
| fbee0 | 6f 70 65 6e 76 70 6e 2d 31 60 60 20 77 68 69 63 68 20 77 65 20 77 69 6c 6c 20 72 65 66 65 72 65 | openvpn-1``.which.we.will.refere |
| fbf00 | 6e 63 65 20 69 6e 20 6f 75 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 49 6e 20 6f 75 72 | nce.in.our.configuration..In.our |
| fbf20 | 20 65 78 61 6d 70 6c 65 2c 20 77 65 20 77 69 6c 6c 20 62 65 20 66 6f 72 77 61 72 64 69 6e 67 20 | .example,.we.will.be.forwarding. |
| fbf40 | 77 65 62 20 73 65 72 76 65 72 20 74 72 61 66 66 69 63 20 74 6f 20 61 6e 20 69 6e 74 65 72 6e 61 | web.server.traffic.to.an.interna |
| fbf60 | 6c 20 77 65 62 20 73 65 72 76 65 72 20 6f 6e 20 31 39 32 2e 31 36 38 2e 30 2e 31 30 30 2e 20 48 | l.web.server.on.192.168.0.100..H |
| fbf80 | 54 54 50 20 74 72 61 66 66 69 63 20 6d 61 6b 65 73 20 75 73 65 20 6f 66 20 74 68 65 20 54 43 50 | TTP.traffic.makes.use.of.the.TCP |
| fbfa0 | 20 70 72 6f 74 6f 63 6f 6c 20 6f 6e 20 70 6f 72 74 20 38 30 2e 20 46 6f 72 20 6f 74 68 65 72 20 | .protocol.on.port.80..For.other. |
| fbfc0 | 63 6f 6d 6d 6f 6e 20 70 6f 72 74 20 6e 75 6d 62 65 72 73 2c 20 73 65 65 3a 20 68 74 74 70 73 3a | common.port.numbers,.see:.https: |
| fbfe0 | 2f 2f 65 6e 2e 77 69 6b 69 70 65 64 69 61 2e 6f 72 67 2f 77 69 6b 69 2f 4c 69 73 74 5f 6f 66 5f | //en.wikipedia.org/wiki/List_of_ |
| fc000 | 54 43 50 5f 61 6e 64 5f 55 44 50 5f 70 6f 72 74 5f 6e 75 6d 62 65 72 73 00 49 6e 20 70 72 69 6e | TCP_and_UDP_port_numbers.In.prin |
| fc020 | 63 69 70 6c 65 2c 20 76 61 6c 75 65 73 20 6d 75 73 74 20 62 65 20 3a 63 6f 64 65 3a 60 6d 69 6e | ciple,.values.must.be.:code:`min |
| fc040 | 2d 74 68 72 65 73 68 6f 6c 64 60 20 3c 20 3a 63 6f 64 65 3a 60 6d 61 78 2d 74 68 72 65 73 68 6f | -threshold`.<.:code:`max-thresho |
| fc060 | 6c 64 60 20 3c 20 3a 63 6f 64 65 3a 60 71 75 65 75 65 2d 6c 69 6d 69 74 60 2e 00 49 6e 20 73 68 | ld`.<.:code:`queue-limit`..In.sh |
| fc080 | 6f 72 74 2c 20 44 4d 56 50 4e 20 70 72 6f 76 69 64 65 73 20 74 68 65 20 63 61 70 61 62 69 6c 69 | ort,.DMVPN.provides.the.capabili |
| fc0a0 | 74 79 20 66 6f 72 20 63 72 65 61 74 69 6e 67 20 61 20 64 79 6e 61 6d 69 63 2d 6d 65 73 68 20 56 | ty.for.creating.a.dynamic-mesh.V |
| fc0c0 | 50 4e 20 6e 65 74 77 6f 72 6b 20 77 69 74 68 6f 75 74 20 68 61 76 69 6e 67 20 74 6f 20 70 72 65 | PN.network.without.having.to.pre |
| fc0e0 | 2d 63 6f 6e 66 69 67 75 72 65 20 28 73 74 61 74 69 63 29 20 61 6c 6c 20 70 6f 73 73 69 62 6c 65 | -configure.(static).all.possible |
| fc100 | 20 74 75 6e 6e 65 6c 20 65 6e 64 2d 70 6f 69 6e 74 20 70 65 65 72 73 2e 00 49 6e 20 73 6f 6d 65 | .tunnel.end-point.peers..In.some |
| fc120 | 20 63 61 73 65 20 77 68 65 72 65 20 77 65 20 6e 65 65 64 20 74 6f 20 68 61 76 65 20 61 6e 20 6f | .case.where.we.need.to.have.an.o |
| fc140 | 72 67 61 6e 69 7a 61 74 69 6f 6e 20 6f 66 20 6f 75 72 20 6d 61 74 63 68 69 6e 67 20 73 65 6c 65 | rganization.of.our.matching.sele |
| fc160 | 63 74 69 6f 6e 2c 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 62 65 20 6d 6f 72 65 20 66 6c 65 78 69 | ction,.in.order.to.be.more.flexi |
| fc180 | 62 6c 65 20 61 6e 64 20 6f 72 67 61 6e 69 7a 65 20 77 69 74 68 20 6f 75 72 20 66 69 6c 74 65 72 | ble.and.organize.with.our.filter |
| fc1a0 | 20 64 65 66 69 6e 69 74 69 6f 6e 2e 20 57 65 20 63 61 6e 20 61 70 70 6c 79 20 74 72 61 66 66 69 | .definition..We.can.apply.traffi |
| fc1c0 | 63 20 6d 61 74 63 68 20 67 72 6f 75 70 73 2c 20 61 6c 6c 6f 77 69 6e 67 20 75 73 20 74 6f 20 63 | c.match.groups,.allowing.us.to.c |
| fc1e0 | 72 65 61 74 65 20 64 69 73 74 69 6e 63 74 20 66 69 6c 74 65 72 20 67 72 6f 75 70 73 20 77 69 74 | reate.distinct.filter.groups.wit |
| fc200 | 68 69 6e 20 6f 75 72 20 70 6f 6c 69 63 79 20 61 6e 64 20 64 65 66 69 6e 65 20 76 61 72 69 6f 75 | hin.our.policy.and.define.variou |
| fc220 | 73 20 70 61 72 61 6d 65 74 65 72 73 20 66 6f 72 20 65 61 63 68 20 67 72 6f 75 70 3a 00 49 6e 20 | s.parameters.for.each.group:.In. |
| fc240 | 73 6f 6d 65 20 63 61 73 65 73 20 69 74 20 6d 61 79 20 62 65 20 6d 6f 72 65 20 63 6f 6e 76 65 6e | some.cases.it.may.be.more.conven |
| fc260 | 69 65 6e 74 20 74 6f 20 65 6e 61 62 6c 65 20 4f 53 50 46 20 6f 6e 20 61 20 70 65 72 20 69 6e 74 | ient.to.enable.OSPF.on.a.per.int |
| fc280 | 65 72 66 61 63 65 2f 73 75 62 6e 65 74 20 62 61 73 69 73 20 3a 63 66 67 63 6d 64 3a 60 73 65 74 | erface/subnet.basis.:cfgcmd:`set |
| fc2a0 | 20 70 72 6f 74 6f 63 6f 6c 73 20 6f 73 70 66 20 69 6e 74 65 72 66 61 63 65 20 3c 69 6e 74 65 72 | .protocols.ospf.interface.<inter |
| fc2c0 | 66 61 63 65 3e 20 61 72 65 61 20 3c 78 2e 78 2e 78 2e 78 20 7c 20 78 3e 60 00 49 6e 20 74 68 65 | face>.area.<x.x.x.x.|.x>`.In.the |
| fc2e0 | 20 3a 72 65 66 3a 60 63 72 65 61 74 69 6e 67 5f 61 5f 74 72 61 66 66 69 63 5f 70 6f 6c 69 63 79 | .:ref:`creating_a_traffic_policy |
| fc300 | 60 20 73 65 63 74 69 6f 6e 20 79 6f 75 20 77 69 6c 6c 20 73 65 65 20 74 68 61 74 20 73 6f 6d 65 | `.section.you.will.see.that.some |
| fc320 | 20 6f 66 20 74 68 65 20 70 6f 6c 69 63 69 65 73 20 75 73 65 20 2a 63 6c 61 73 73 65 73 2a 2e 20 | .of.the.policies.use.*classes*.. |
| fc340 | 54 68 6f 73 65 20 70 6f 6c 69 63 69 65 73 20 6c 65 74 20 79 6f 75 20 64 69 73 74 72 69 62 75 74 | Those.policies.let.you.distribut |
| fc360 | 65 20 74 72 61 66 66 69 63 20 69 6e 74 6f 20 64 69 66 66 65 72 65 6e 74 20 63 6c 61 73 73 65 73 | e.traffic.into.different.classes |
| fc380 | 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 64 69 66 66 65 72 65 6e 74 20 70 61 72 61 6d 65 74 65 | .according.to.different.paramete |
| fc3a0 | 72 73 20 79 6f 75 20 63 61 6e 20 63 68 6f 6f 73 65 2e 20 53 6f 2c 20 61 20 63 6c 61 73 73 20 69 | rs.you.can.choose..So,.a.class.i |
| fc3c0 | 73 20 6a 75 73 74 20 61 20 73 70 65 63 69 66 69 63 20 74 79 70 65 20 6f 66 20 74 72 61 66 66 69 | s.just.a.specific.type.of.traffi |
| fc3e0 | 63 20 79 6f 75 20 73 65 6c 65 63 74 2e 00 49 6e 20 74 68 65 20 56 79 4f 53 20 43 4c 49 2c 20 61 | c.you.select..In.the.VyOS.CLI,.a |
| fc400 | 20 6b 65 79 20 70 6f 69 6e 74 20 6f 66 74 65 6e 20 6f 76 65 72 6c 6f 6f 6b 65 64 20 69 73 20 74 | .key.point.often.overlooked.is.t |
| fc420 | 68 61 74 20 72 61 74 68 65 72 20 74 68 61 6e 20 62 65 69 6e 67 20 63 6f 6e 66 69 67 75 72 65 64 | hat.rather.than.being.configured |
| fc440 | 20 75 73 69 6e 67 20 74 68 65 20 60 73 65 74 20 76 70 6e 60 20 73 74 61 6e 7a 61 2c 20 4f 70 65 | .using.the.`set.vpn`.stanza,.Ope |
| fc460 | 6e 56 50 4e 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 61 73 20 61 20 6e 65 74 77 6f 72 6b 20 | nVPN.is.configured.as.a.network. |
| fc480 | 69 6e 74 65 72 66 61 63 65 20 75 73 69 6e 67 20 60 73 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 | interface.using.`set.interfaces. |
| fc4a0 | 6f 70 65 6e 76 70 6e 60 2e 00 49 6e 20 74 68 65 20 61 62 6f 76 65 20 65 78 61 6d 70 6c 65 2c 20 | openvpn`..In.the.above.example,. |
| fc4c0 | 61 6e 20 65 78 74 65 72 6e 61 6c 20 49 50 20 6f 66 20 31 39 32 2e 30 2e 32 2e 32 20 69 73 20 61 | an.external.IP.of.192.0.2.2.is.a |
| fc4e0 | 73 73 75 6d 65 64 2e 00 49 6e 20 74 68 65 20 61 67 65 20 6f 66 20 76 65 72 79 20 66 61 73 74 20 | ssumed..In.the.age.of.very.fast. |
| fc500 | 6e 65 74 77 6f 72 6b 73 2c 20 61 20 73 65 63 6f 6e 64 20 6f 66 20 75 6e 72 65 61 63 68 61 62 69 | networks,.a.second.of.unreachabi |
| fc520 | 6c 69 74 79 20 6d 61 79 20 65 71 75 61 6c 20 6d 69 6c 6c 69 6f 6e 73 20 6f 66 20 6c 6f 73 74 20 | lity.may.equal.millions.of.lost. |
| fc540 | 70 61 63 6b 65 74 73 2e 20 54 68 65 20 69 64 65 61 20 62 65 68 69 6e 64 20 42 46 44 20 69 73 20 | packets..The.idea.behind.BFD.is. |
| fc560 | 74 6f 20 64 65 74 65 63 74 20 76 65 72 79 20 71 75 69 63 6b 6c 79 20 77 68 65 6e 20 61 20 70 65 | to.detect.very.quickly.when.a.pe |
| fc580 | 65 72 20 69 73 20 64 6f 77 6e 20 61 6e 64 20 74 61 6b 65 20 61 63 74 69 6f 6e 20 65 78 74 72 65 | er.is.down.and.take.action.extre |
| fc5a0 | 6d 65 6c 79 20 66 61 73 74 2e 00 49 6e 20 74 68 65 20 63 61 73 65 20 6f 66 20 4c 32 54 50 76 33 | mely.fast..In.the.case.of.L2TPv3 |
| fc5c0 | 2c 20 74 68 65 20 66 65 61 74 75 72 65 73 20 6c 6f 73 74 20 61 72 65 20 74 65 6c 65 74 72 61 66 | ,.the.features.lost.are.teletraf |
| fc5e0 | 66 69 63 20 65 6e 67 69 6e 65 65 72 69 6e 67 20 66 65 61 74 75 72 65 73 20 63 6f 6e 73 69 64 65 | fic.engineering.features.conside |
| fc600 | 72 65 64 20 69 6d 70 6f 72 74 61 6e 74 20 69 6e 20 4d 50 4c 53 2e 20 48 6f 77 65 76 65 72 2c 20 | red.important.in.MPLS..However,. |
| fc620 | 74 68 65 72 65 20 69 73 20 6e 6f 20 72 65 61 73 6f 6e 20 74 68 65 73 65 20 66 65 61 74 75 72 65 | there.is.no.reason.these.feature |
| fc640 | 73 20 63 6f 75 6c 64 20 6e 6f 74 20 62 65 20 72 65 2d 65 6e 67 69 6e 65 65 72 65 64 20 69 6e 20 | s.could.not.be.re-engineered.in. |
| fc660 | 6f 72 20 6f 6e 20 74 6f 70 20 6f 66 20 4c 32 54 50 76 33 20 69 6e 20 6c 61 74 65 72 20 70 72 6f | or.on.top.of.L2TPv3.in.later.pro |
| fc680 | 64 75 63 74 73 2e 00 49 6e 20 74 68 65 20 63 61 73 65 20 74 68 65 20 61 76 65 72 61 67 65 20 71 | ducts..In.the.case.the.average.q |
| fc6a0 | 75 65 75 65 20 73 69 7a 65 20 69 73 20 62 65 74 77 65 65 6e 20 2a 2a 6d 69 6e 2d 74 68 72 65 73 | ueue.size.is.between.**min-thres |
| fc6c0 | 68 6f 6c 64 2a 2a 20 61 6e 64 20 2a 2a 6d 61 78 2d 74 68 72 65 73 68 6f 6c 64 2a 2a 2c 20 74 68 | hold**.and.**max-threshold**,.th |
| fc6e0 | 65 6e 20 61 6e 20 61 72 72 69 76 69 6e 67 20 70 61 63 6b 65 74 20 77 6f 75 6c 64 20 62 65 20 65 | en.an.arriving.packet.would.be.e |
| fc700 | 69 74 68 65 72 20 64 72 6f 70 70 65 64 20 6f 72 20 70 6c 61 63 65 64 20 69 6e 20 74 68 65 20 71 | ither.dropped.or.placed.in.the.q |
| fc720 | 75 65 75 65 2c 20 69 74 20 77 69 6c 6c 20 64 65 70 65 6e 64 20 6f 6e 20 74 68 65 20 64 65 66 69 | ueue,.it.will.depend.on.the.defi |
| fc740 | 6e 65 64 20 2a 2a 6d 61 72 6b 2d 70 72 6f 62 61 62 69 6c 69 74 79 2a 2a 2e 00 49 6e 20 74 68 65 | ned.**mark-probability**..In.the |
| fc760 | 20 63 61 73 65 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 61 70 70 6c 79 20 73 6f 6d 65 20 6b 69 6e | .case.you.want.to.apply.some.kin |
| fc780 | 64 20 6f 66 20 2a 2a 73 68 61 70 69 6e 67 2a 2a 20 74 6f 20 79 6f 75 72 20 2a 2a 69 6e 62 6f 75 | d.of.**shaping**.to.your.**inbou |
| fc7a0 | 6e 64 2a 2a 20 74 72 61 66 66 69 63 2c 20 63 68 65 63 6b 20 74 68 65 20 69 6e 67 72 65 73 73 2d | nd**.traffic,.check.the.ingress- |
| fc7c0 | 73 68 61 70 69 6e 67 5f 20 73 65 63 74 69 6f 6e 2e 00 49 6e 20 74 68 65 20 63 6f 6d 6d 61 6e 64 | shaping_.section..In.the.command |
| fc7e0 | 20 61 62 6f 76 65 2c 20 77 65 20 73 65 74 20 74 68 65 20 74 79 70 65 20 6f 66 20 70 6f 6c 69 63 | .above,.we.set.the.type.of.polic |
| fc800 | 79 20 77 65 20 61 72 65 20 67 6f 69 6e 67 20 74 6f 20 77 6f 72 6b 20 77 69 74 68 20 61 6e 64 20 | y.we.are.going.to.work.with.and. |
| fc820 | 74 68 65 20 6e 61 6d 65 20 77 65 20 63 68 6f 6f 73 65 20 66 6f 72 20 69 74 3b 20 61 20 63 6c 61 | the.name.we.choose.for.it;.a.cla |
| fc840 | 73 73 20 28 73 6f 20 74 68 61 74 20 77 65 20 63 61 6e 20 64 69 66 66 65 72 65 6e 74 69 61 74 65 | ss.(so.that.we.can.differentiate |
| fc860 | 20 73 6f 6d 65 20 74 72 61 66 66 69 63 29 20 61 6e 64 20 61 6e 20 69 64 65 6e 74 69 66 69 61 62 | .some.traffic).and.an.identifiab |
| fc880 | 6c 65 20 6e 75 6d 62 65 72 20 66 6f 72 20 74 68 61 74 20 63 6c 61 73 73 3b 20 74 68 65 6e 20 77 | le.number.for.that.class;.then.w |
| fc8a0 | 65 20 63 6f 6e 66 69 67 75 72 65 20 61 20 6d 61 74 63 68 69 6e 67 20 72 75 6c 65 20 28 6f 72 20 | e.configure.a.matching.rule.(or. |
| fc8c0 | 66 69 6c 74 65 72 29 20 61 6e 64 20 61 20 6e 61 6d 65 20 66 6f 72 20 69 74 2e 00 49 6e 20 74 68 | filter).and.a.name.for.it..In.th |
| fc8e0 | 65 20 65 6e 64 2c 20 61 6e 20 58 4d 4c 20 73 74 72 75 63 74 75 72 65 20 69 73 20 67 65 6e 65 72 | e.end,.an.XML.structure.is.gener |
| fc900 | 61 74 65 64 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 73 61 76 65 64 20 61 73 20 60 60 76 79 6f | ated.which.can.be.saved.as.``vyo |
| fc920 | 73 2e 6d 6f 62 69 6c 65 63 6f 6e 66 69 67 60 60 20 61 6e 64 20 73 65 6e 74 20 74 6f 20 74 68 65 | s.mobileconfig``.and.sent.to.the |
| fc940 | 20 64 65 76 69 63 65 20 62 79 20 45 2d 4d 61 69 6c 20 77 68 65 72 65 20 69 74 20 6c 61 74 65 72 | .device.by.E-Mail.where.it.later |
| fc960 | 20 63 61 6e 20 62 65 20 69 6d 70 6f 72 74 65 64 2e 00 49 6e 20 74 68 65 20 65 78 61 6d 70 6c 65 | .can.be.imported..In.the.example |
| fc980 | 20 61 62 6f 76 65 2c 20 74 68 65 20 66 69 72 73 74 20 34 39 39 20 73 65 73 73 69 6f 6e 73 20 63 | .above,.the.first.499.sessions.c |
| fc9a0 | 6f 6e 6e 65 63 74 20 77 69 74 68 6f 75 74 20 64 65 6c 61 79 2e 20 50 41 44 4f 20 70 61 63 6b 65 | onnect.without.delay..PADO.packe |
| fc9c0 | 74 73 20 77 69 6c 6c 20 62 65 20 64 65 6c 61 79 65 64 20 35 30 20 6d 73 20 66 6f 72 20 63 6f 6e | ts.will.be.delayed.50.ms.for.con |
| fc9e0 | 6e 65 63 74 69 6f 6e 20 66 72 6f 6d 20 35 30 30 20 74 6f 20 39 39 39 2c 20 74 68 69 73 20 74 72 | nection.from.500.to.999,.this.tr |
| fca00 | 69 63 6b 20 61 6c 6c 6f 77 73 20 6f 74 68 65 72 20 50 50 50 6f 45 20 73 65 72 76 65 72 73 20 73 | ick.allows.other.PPPoE.servers.s |
| fca20 | 65 6e 64 20 50 41 44 4f 20 66 61 73 74 65 72 20 61 6e 64 20 63 6c 69 65 6e 74 73 20 77 69 6c 6c | end.PADO.faster.and.clients.will |
| fca40 | 20 63 6f 6e 6e 65 63 74 20 74 6f 20 6f 74 68 65 72 20 73 65 72 76 65 72 73 2e 20 4c 61 73 74 20 | .connect.to.other.servers..Last. |
| fca60 | 63 6f 6d 6d 61 6e 64 20 73 61 79 73 20 74 68 61 74 20 74 68 69 73 20 50 50 50 6f 45 20 73 65 72 | command.says.that.this.PPPoE.ser |
| fca80 | 76 65 72 20 63 61 6e 20 73 65 72 76 65 20 6f 6e 6c 79 20 33 30 30 30 20 63 6c 69 65 6e 74 73 2e | ver.can.serve.only.3000.clients. |
| fcaa0 | 00 49 6e 20 74 68 65 20 65 78 61 6d 70 6c 65 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 51 75 69 | .In.the.example.used.for.the.Qui |
| fcac0 | 63 6b 20 53 74 61 72 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 62 6f 76 65 2c 20 77 65 | ck.Start.configuration.above,.we |
| fcae0 | 20 64 65 6d 6f 6e 73 74 72 61 74 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 | .demonstrate.the.following.confi |
| fcb00 | 67 75 72 61 74 69 6f 6e 3a 00 49 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 | guration:.In.the.following.examp |
| fcb20 | 6c 65 20 77 65 20 63 61 6e 20 73 65 65 20 61 20 62 61 73 69 63 20 6d 75 6c 74 69 63 61 73 74 20 | le.we.can.see.a.basic.multicast. |
| fcb40 | 73 65 74 75 70 3a 00 49 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 2c | setup:.In.the.following.example, |
| fcb60 | 20 62 6f 74 68 20 60 55 73 65 72 31 60 20 61 6e 64 20 60 55 73 65 72 32 60 20 77 69 6c 6c 20 62 | .both.`User1`.and.`User2`.will.b |
| fcb80 | 65 20 61 62 6c 65 20 74 6f 20 53 53 48 20 69 6e 74 6f 20 56 79 4f 53 20 61 73 20 75 73 65 72 20 | e.able.to.SSH.into.VyOS.as.user. |
| fcba0 | 60 60 76 79 6f 73 60 60 20 75 73 69 6e 67 20 74 68 65 69 72 20 76 65 72 79 20 6f 77 6e 20 6b 65 | ``vyos``.using.their.very.own.ke |
| fcbc0 | 79 73 2e 20 60 55 73 65 72 31 60 20 69 73 20 72 65 73 74 72 69 63 74 65 64 20 74 6f 20 6f 6e 6c | ys..`User1`.is.restricted.to.onl |
| fcbe0 | 79 20 62 65 20 61 62 6c 65 20 74 6f 20 63 6f 6e 6e 65 63 74 20 66 72 6f 6d 20 61 20 73 69 6e 67 | y.be.able.to.connect.from.a.sing |
| fcc00 | 6c 65 20 49 50 20 61 64 64 72 65 73 73 2e 20 49 6e 20 61 64 64 69 74 69 6f 6e 20 69 66 20 70 61 | le.IP.address..In.addition.if.pa |
| fcc20 | 73 73 77 6f 72 64 20 62 61 73 65 20 6c 6f 67 69 6e 20 69 73 20 77 61 6e 74 65 64 20 66 6f 72 20 | ssword.base.login.is.wanted.for. |
| fcc40 | 74 68 65 20 60 60 76 79 6f 73 60 60 20 75 73 65 72 20 61 20 32 46 41 2f 4d 46 41 20 6b 65 79 63 | the.``vyos``.user.a.2FA/MFA.keyc |
| fcc60 | 6f 64 65 20 69 73 20 72 65 71 75 69 72 65 64 20 69 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 74 | ode.is.required.in.addition.to.t |
| fcc80 | 68 65 20 70 61 73 73 77 6f 72 64 2e 00 49 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 | he.password..In.the.following.ex |
| fcca0 | 61 6d 70 6c 65 2c 20 74 68 65 20 49 50 73 20 66 6f 72 20 74 68 65 20 72 65 6d 6f 74 65 20 63 6c | ample,.the.IPs.for.the.remote.cl |
| fccc0 | 69 65 6e 74 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 65 20 70 65 65 72 73 2e 20 | ients.are.defined.in.the.peers.. |
| fcce0 | 54 68 69 73 20 61 6c 6c 6f 77 73 20 74 68 65 20 70 65 65 72 73 20 74 6f 20 69 6e 74 65 72 61 63 | This.allows.the.peers.to.interac |
| fcd00 | 74 20 77 69 74 68 20 6f 6e 65 20 61 6e 6f 74 68 65 72 2e 20 49 6e 20 63 6f 6d 70 61 72 69 73 6f | t.with.one.another..In.compariso |
| fcd20 | 6e 20 74 6f 20 74 68 65 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 65 78 61 6d 70 6c 65 20 74 68 | n.to.the.site-to-site.example.th |
| fcd40 | 65 20 60 60 70 65 72 73 69 73 74 65 6e 74 2d 6b 65 65 70 61 6c 69 76 65 60 60 20 66 6c 61 67 20 | e.``persistent-keepalive``.flag. |
| fcd60 | 69 73 20 73 65 74 20 74 6f 20 31 35 20 73 65 63 6f 6e 64 73 20 74 6f 20 61 73 73 75 72 65 20 74 | is.set.to.15.seconds.to.assure.t |
| fcd80 | 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 6b 65 70 74 20 61 6c 69 76 65 2e 20 54 68 69 | he.connection.is.kept.alive..Thi |
| fcda0 | 73 20 69 73 20 6d 61 69 6e 6c 79 20 72 65 6c 65 76 61 6e 74 20 69 66 20 6f 6e 65 20 6f 66 20 74 | s.is.mainly.relevant.if.one.of.t |
| fcdc0 | 68 65 20 70 65 65 72 73 20 69 73 20 62 65 68 69 6e 64 20 4e 41 54 20 61 6e 64 20 63 61 6e 27 74 | he.peers.is.behind.NAT.and.can't |
| fcde0 | 20 62 65 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 69 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 | .be.connected.to.if.the.connecti |
| fce00 | 6f 6e 20 69 73 20 6c 6f 73 74 2e 20 54 6f 20 62 65 20 65 66 66 65 63 74 69 76 65 20 74 68 69 73 | on.is.lost..To.be.effective.this |
| fce20 | 20 76 61 6c 75 65 20 6e 65 65 64 73 20 74 6f 20 62 65 20 6c 6f 77 65 72 20 74 68 61 6e 20 74 68 | .value.needs.to.be.lower.than.th |
| fce40 | 65 20 55 44 50 20 74 69 6d 65 6f 75 74 2e 00 49 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 | e.UDP.timeout..In.the.following. |
| fce60 | 65 78 61 6d 70 6c 65 2c 20 77 68 65 6e 20 56 4c 41 4e 39 20 74 72 61 6e 73 69 74 69 6f 6e 73 2c | example,.when.VLAN9.transitions, |
| fce80 | 20 56 4c 41 4e 32 30 20 77 69 6c 6c 20 61 6c 73 6f 20 74 72 61 6e 73 69 74 69 6f 6e 3a 00 49 6e | .VLAN20.will.also.transition:.In |
| fcea0 | 20 74 68 65 20 66 75 74 75 72 65 20 74 68 69 73 20 69 73 20 65 78 70 65 63 74 65 64 20 74 6f 20 | .the.future.this.is.expected.to. |
| fcec0 | 62 65 20 61 20 76 65 72 79 20 75 73 65 66 75 6c 20 70 72 6f 74 6f 63 6f 6c 20 28 74 68 6f 75 67 | be.a.very.useful.protocol.(thoug |
| fcee0 | 68 20 74 68 65 72 65 20 61 72 65 20 60 6f 74 68 65 72 20 70 72 6f 70 6f 73 61 6c 73 60 5f 29 2e | h.there.are.`other.proposals`_). |
| fcf00 | 00 49 6e 20 74 68 65 20 6e 65 78 74 20 65 78 61 6d 70 6c 65 20 61 6c 6c 20 74 72 61 66 66 69 63 | .In.the.next.example.all.traffic |
| fcf20 | 20 64 65 73 74 69 6e 65 64 20 74 6f 20 60 60 32 30 33 2e 30 2e 31 31 33 2e 31 60 60 20 61 6e 64 | .destined.to.``203.0.113.1``.and |
| fcf40 | 20 70 6f 72 74 20 60 60 38 32 38 30 60 60 20 70 72 6f 74 6f 63 6f 6c 20 54 43 50 20 69 73 20 62 | .port.``8280``.protocol.TCP.is.b |
| fcf60 | 61 6c 61 6e 63 65 64 20 62 65 74 77 65 65 6e 20 32 20 72 65 61 6c 20 73 65 72 76 65 72 73 20 60 | alanced.between.2.real.servers.` |
| fcf80 | 60 31 39 32 2e 30 2e 32 2e 31 31 60 60 20 61 6e 64 20 60 60 31 39 32 2e 30 2e 32 2e 31 32 60 60 | `192.0.2.11``.and.``192.0.2.12`` |
| fcfa0 | 20 74 6f 20 70 6f 72 74 20 60 60 38 30 60 60 00 49 6e 20 74 68 65 20 70 61 73 74 20 28 56 79 4f | .to.port.``80``.In.the.past.(VyO |
| fcfc0 | 53 20 31 2e 31 29 20 75 73 65 64 20 61 20 67 61 74 65 77 61 79 2d 61 64 64 72 65 73 73 20 63 6f | S.1.1).used.a.gateway-address.co |
| fcfe0 | 6e 66 69 67 75 72 65 64 20 75 6e 64 65 72 20 74 68 65 20 73 79 73 74 65 6d 20 74 72 65 65 20 28 | nfigured.under.the.system.tree.( |
| fd000 | 3a 63 66 67 63 6d 64 3a 60 73 65 74 20 73 79 73 74 65 6d 20 67 61 74 65 77 61 79 2d 61 64 64 72 | :cfgcmd:`set.system.gateway-addr |
| fd020 | 65 73 73 20 3c 61 64 64 72 65 73 73 3e 60 29 2c 20 74 68 69 73 20 69 73 20 6e 6f 20 6c 6f 6e 67 | ess.<address>`),.this.is.no.long |
| fd040 | 65 72 20 73 75 70 70 6f 72 74 65 64 20 61 6e 64 20 65 78 69 73 74 69 6e 67 20 63 6f 6e 66 69 67 | er.supported.and.existing.config |
| fd060 | 75 72 61 74 69 6f 6e 73 20 61 72 65 20 6d 69 67 72 61 74 65 64 20 74 6f 20 74 68 65 20 6e 65 77 | urations.are.migrated.to.the.new |
| fd080 | 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 2e 00 49 6e 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 72 | .CLI.command..In.this.command.tr |
| fd0a0 | 65 65 2c 20 61 6c 6c 20 68 61 72 64 77 61 72 65 20 61 63 63 65 6c 65 72 61 74 69 6f 6e 20 6f 70 | ee,.all.hardware.acceleration.op |
| fd0c0 | 74 69 6f 6e 73 20 77 69 6c 6c 20 62 65 20 68 61 6e 64 6c 65 64 2e 20 41 74 20 74 68 65 20 6d 6f | tions.will.be.handled..At.the.mo |
| fd0e0 | 6d 65 6e 74 20 6f 6e 6c 79 20 60 49 6e 74 65 6c c2 ae 20 51 41 54 60 5f 20 69 73 20 73 75 70 70 | ment.only.`Intel...QAT`_.is.supp |
| fd100 | 6f 72 74 65 64 00 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 20 61 6c 6c 20 74 72 61 66 66 69 | orted.In.this.example.all.traffi |
| fd120 | 63 20 64 65 73 74 69 6e 65 64 20 74 6f 20 70 6f 72 74 73 20 22 38 30 2c 20 32 32 32 32 2c 20 38 | c.destined.to.ports."80,.2222,.8 |
| fd140 | 38 38 38 22 20 70 72 6f 74 6f 63 6f 6c 20 54 43 50 20 6d 61 72 6b 73 20 74 6f 20 66 77 6d 61 72 | 888".protocol.TCP.marks.to.fwmar |
| fd160 | 6b 20 22 31 31 31 22 20 61 6e 64 20 62 61 6c 61 6e 63 65 64 20 62 65 74 77 65 65 6e 20 32 20 72 | k."111".and.balanced.between.2.r |
| fd180 | 65 61 6c 20 73 65 72 76 65 72 73 2e 20 50 6f 72 74 20 22 30 22 20 69 73 20 72 65 71 75 69 72 65 | eal.servers..Port."0".is.require |
| fd1a0 | 64 20 69 66 20 6d 75 6c 74 69 70 6c 65 20 70 6f 72 74 73 20 61 72 65 20 75 73 65 64 2e 00 49 6e | d.if.multiple.ports.are.used..In |
| fd1c0 | 20 74 68 69 73 20 65 78 61 6d 70 6c 65 20 69 6d 61 67 65 2c 20 61 20 73 69 6d 70 6c 69 66 65 64 | .this.example.image,.a.simplifed |
| fd1e0 | 20 74 72 61 66 66 69 63 20 66 6c 6f 77 20 69 73 20 73 68 6f 77 6e 20 74 6f 20 68 65 6c 70 20 70 | .traffic.flow.is.shown.to.help.p |
| fd200 | 72 6f 76 69 64 65 20 63 6f 6e 74 65 78 74 20 74 6f 20 74 68 65 20 74 65 72 6d 73 20 6f 66 20 60 | rovide.context.to.the.terms.of.` |
| fd220 | 66 6f 72 77 61 72 64 60 2c 20 60 69 6e 70 75 74 60 2c 20 61 6e 64 20 60 6f 75 74 70 75 74 60 20 | forward`,.`input`,.and.`output`. |
| fd240 | 66 6f 72 20 74 68 65 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 43 4c 49 20 66 6f 72 6d 61 74 2e | for.the.new.firewall.CLI.format. |
| fd260 | 00 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 20 77 65 20 77 69 6c 6c 20 75 73 65 20 74 68 65 | .In.this.example.we.will.use.the |
| fd280 | 20 6d 6f 73 74 20 63 6f 6d 70 6c 69 63 61 74 65 64 20 63 61 73 65 3a 20 61 20 73 65 74 75 70 20 | .most.complicated.case:.a.setup. |
| fd2a0 | 77 68 65 72 65 20 65 61 63 68 20 63 6c 69 65 6e 74 20 69 73 20 61 20 72 6f 75 74 65 72 20 74 68 | where.each.client.is.a.router.th |
| fd2c0 | 61 74 20 68 61 73 20 69 74 73 20 6f 77 6e 20 73 75 62 6e 65 74 20 28 74 68 69 6e 6b 20 48 51 20 | at.has.its.own.subnet.(think.HQ. |
| fd2e0 | 61 6e 64 20 62 72 61 6e 63 68 20 6f 66 66 69 63 65 73 29 2c 20 73 69 6e 63 65 20 73 69 6d 70 6c | and.branch.offices),.since.simpl |
| fd300 | 65 72 20 73 65 74 75 70 73 20 61 72 65 20 73 75 62 73 65 74 73 20 6f 66 20 69 74 2e 00 49 6e 20 | er.setups.are.subsets.of.it..In. |
| fd320 | 74 68 69 73 20 65 78 61 6d 70 6c 65 2c 20 73 6f 6d 65 20 2a 4f 70 65 6e 4e 49 43 2a 20 73 65 72 | this.example,.some.*OpenNIC*.ser |
| fd340 | 76 65 72 73 20 61 72 65 20 75 73 65 64 2c 20 74 77 6f 20 49 50 76 34 20 61 64 64 72 65 73 73 65 | vers.are.used,.two.IPv4.addresse |
| fd360 | 73 20 61 6e 64 20 74 77 6f 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 3a 00 49 6e 20 74 68 69 | s.and.two.IPv6.addresses:.In.thi |
| fd380 | 73 20 65 78 61 6d 70 6c 65 2c 20 77 65 20 63 61 6e 20 6f 62 73 65 72 76 65 20 74 68 61 74 20 64 | s.example,.we.can.observe.that.d |
| fd3a0 | 69 66 66 65 72 65 6e 74 20 44 53 43 50 20 63 72 69 74 65 72 69 61 20 61 72 65 20 64 65 66 69 6e | ifferent.DSCP.criteria.are.defin |
| fd3c0 | 65 64 20 62 61 73 65 64 20 6f 6e 20 6f 75 72 20 51 6f 53 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | ed.based.on.our.QoS.configuratio |
| fd3e0 | 6e 20 77 69 74 68 69 6e 20 74 68 65 20 73 61 6d 65 20 70 6f 6c 69 63 79 20 67 72 6f 75 70 2e 00 | n.within.the.same.policy.group.. |
| fd400 | 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 2c 20 77 65 20 75 73 65 20 2a 2a 6d 61 73 71 75 65 | In.this.example,.we.use.**masque |
| fd420 | 72 61 64 65 2a 2a 20 61 73 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 61 64 64 72 65 73 | rade**.as.the.translation.addres |
| fd440 | 73 20 69 6e 73 74 65 61 64 20 6f 66 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 2e 20 54 68 65 20 | s.instead.of.an.IP.address..The. |
| fd460 | 2a 2a 6d 61 73 71 75 65 72 61 64 65 2a 2a 20 74 61 72 67 65 74 20 69 73 20 65 66 66 65 63 74 69 | **masquerade**.target.is.effecti |
| fd480 | 76 65 6c 79 20 61 6e 20 61 6c 69 61 73 20 74 6f 20 73 61 79 20 22 75 73 65 20 77 68 61 74 65 76 | vely.an.alias.to.say."use.whatev |
| fd4a0 | 65 72 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 6f 6e 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 | er.IP.address.is.on.the.outgoing |
| fd4c0 | 20 69 6e 74 65 72 66 61 63 65 22 2c 20 72 61 74 68 65 72 20 74 68 61 6e 20 61 20 73 74 61 74 69 | .interface",.rather.than.a.stati |
| fd4e0 | 63 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 49 50 20 61 64 64 72 65 73 73 2e 20 54 68 69 | cally.configured.IP.address..Thi |
| fd500 | 73 20 69 73 20 75 73 65 66 75 6c 20 69 66 20 79 6f 75 20 75 73 65 20 44 48 43 50 20 66 6f 72 20 | s.is.useful.if.you.use.DHCP.for. |
| fd520 | 79 6f 75 72 20 6f 75 74 67 6f 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 64 6f 20 6e | your.outgoing.interface.and.do.n |
| fd540 | 6f 74 20 6b 6e 6f 77 20 77 68 61 74 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 | ot.know.what.the.external.addres |
| fd560 | 73 20 77 69 6c 6c 20 62 65 2e 00 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 2c 20 77 65 20 77 | s.will.be..In.this.example,.we.w |
| fd580 | 69 6c 6c 20 62 65 20 75 73 69 6e 67 20 74 68 65 20 65 78 61 6d 70 6c 65 20 51 75 69 63 6b 20 53 | ill.be.using.the.example.Quick.S |
| fd5a0 | 74 61 72 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 62 6f 76 65 20 61 73 20 61 20 73 74 | tart.configuration.above.as.a.st |
| fd5c0 | 61 72 74 69 6e 67 20 70 6f 69 6e 74 2e 00 49 6e 20 74 68 69 73 20 6d 65 74 68 6f 64 2c 20 74 68 | arting.point..In.this.method,.th |
| fd5e0 | 65 20 44 53 4c 20 4d 6f 64 65 6d 2f 52 6f 75 74 65 72 20 63 6f 6e 6e 65 63 74 73 20 74 6f 20 74 | e.DSL.Modem/Router.connects.to.t |
| fd600 | 68 65 20 49 53 50 20 66 6f 72 20 79 6f 75 20 77 69 74 68 20 79 6f 75 72 20 63 72 65 64 65 6e 74 | he.ISP.for.you.with.your.credent |
| fd620 | 69 61 6c 73 20 70 72 65 70 72 6f 67 72 61 6d 6d 65 64 20 69 6e 74 6f 20 74 68 65 20 64 65 76 69 | ials.preprogrammed.into.the.devi |
| fd640 | 63 65 2e 20 54 68 69 73 20 67 69 76 65 73 20 79 6f 75 20 61 6e 20 3a 72 66 63 3a 60 31 39 31 38 | ce..This.gives.you.an.:rfc:`1918 |
| fd660 | 60 20 61 64 64 72 65 73 73 2c 20 73 75 63 68 20 61 73 20 60 60 31 39 32 2e 31 36 38 2e 31 2e 30 | `.address,.such.as.``192.168.1.0 |
| fd680 | 2f 32 34 60 60 20 62 79 20 64 65 66 61 75 6c 74 2e 00 49 6e 20 74 68 69 73 20 73 63 65 6e 61 72 | /24``.by.default..In.this.scenar |
| fd6a0 | 69 6f 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 | io:.In.this.section.there's.usef |
| fd6c0 | 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 | ul.information.of.all.firewall.c |
| fd6e0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 | onfiguration.that.can.be.done.re |
| fd700 | 67 61 72 64 69 6e 67 20 49 50 76 34 2c 20 61 6e 64 20 61 70 70 72 6f 70 69 61 74 65 20 6f 70 2d | garding.IPv4,.and.appropiate.op- |
| fd720 | 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d | mode.commands..Configuration.com |
| fd740 | 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 | mands.covered.in.this.section:.I |
| fd760 | 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e | n.this.section.there's.useful.in |
| fd780 | 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 | formation.of.all.firewall.config |
| fd7a0 | 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 | uration.that.can.be.done.regardi |
| fd7c0 | 6e 67 20 49 50 76 34 2c 20 61 6e 64 20 61 70 70 72 6f 70 72 69 61 74 65 20 6f 70 2d 6d 6f 64 65 | ng.IPv4,.and.appropriate.op-mode |
| fd7e0 | 20 63 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 | .commands..Configuration.command |
| fd800 | 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 | s.covered.in.this.section:.In.th |
| fd820 | 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d | is.section.there's.useful.inform |
| fd840 | 61 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 | ation.of.all.firewall.configurat |
| fd860 | 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 49 | ion.that.can.be.done.regarding.I |
| fd880 | 50 76 36 2c 20 61 6e 64 20 61 70 70 72 6f 70 69 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d | Pv6,.and.appropiate.op-mode.comm |
| fd8a0 | 61 6e 64 73 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 | ands..Configuration.commands.cov |
| fd8c0 | 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 | ered.in.this.section:.In.this.se |
| fd8e0 | 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | ction.there's.useful.information |
| fd900 | 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 | .of.all.firewall.configuration.t |
| fd920 | 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 49 50 76 36 2c 20 | hat.can.be.done.regarding.IPv6,. |
| fd940 | 61 6e 64 20 61 70 70 72 6f 70 72 69 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 | and.appropriate.op-mode.commands |
| fd960 | 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 | ..Configuration.commands.covered |
| fd980 | 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f | .in.this.section:.In.this.sectio |
| fd9a0 | 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 | n.there's.useful.information.of. |
| fd9c0 | 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 | all.firewall.configuration.that. |
| fd9e0 | 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 62 72 69 64 67 65 2c 20 61 6e | can.be.done.regarding.bridge,.an |
| fda00 | 64 20 61 70 70 72 6f 70 69 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 43 | d.appropiate.op-mode.commands..C |
| fda20 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e | onfiguration.commands.covered.in |
| fda40 | 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 | .this.section:.In.this.section.t |
| fda60 | 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c 6c | here's.useful.information.of.all |
| fda80 | 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e | .firewall.configuration.that.can |
| fdaa0 | 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 62 72 69 64 67 65 2c 20 61 6e 64 20 61 | .be.done.regarding.bridge,.and.a |
| fdac0 | 70 70 72 6f 70 72 69 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e | ppropriate.op-mode.commands..Con |
| fdae0 | 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 | figuration.commands.covered.in.t |
| fdb00 | 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 | his.section:.In.this.section.the |
| fdb20 | 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 66 | re's.useful.information.of.all.f |
| fdb40 | 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 | irewall.configuration.that.can.b |
| fdb60 | 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 66 6c 6f 77 74 61 62 6c 65 73 00 49 6e 20 74 | e.done.regarding.flowtables.In.t |
| fdb80 | 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 | his.section.there's.useful.infor |
| fdba0 | 6d 61 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 | mation.of.all.firewall.configura |
| fdbc0 | 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 | tion.that.can.be.done.regarding. |
| fdbe0 | 66 6c 6f 77 74 61 62 6c 65 73 2e 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 | flowtables..In.this.section.ther |
| fdc00 | 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 66 69 | e's.useful.information.of.all.fi |
| fdc20 | 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 69 73 20 6e 65 65 | rewall.configuration.that.is.nee |
| fdc40 | 64 65 64 20 66 6f 72 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 2e 20 43 6f 6e | ded.for.zone-based.firewall..Con |
| fdc60 | 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 | figuration.commands.covered.in.t |
| fdc80 | 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 | his.section:.In.this.section.the |
| fdca0 | 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 20 61 6c 6c 20 66 | re's.useful.information.on.all.f |
| fdcc0 | 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 | irewall.configuration.that.can.b |
| fdce0 | 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 49 50 76 34 2c 20 61 6e 64 20 61 70 70 72 6f | e.done.regarding.IPv4,.and.appro |
| fdd00 | 70 72 69 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 69 67 75 | priate.op-mode.commands..Configu |
| fdd20 | 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 | ration.commands.covered.in.this. |
| fdd40 | 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 | section:.In.this.section.there's |
| fdd60 | 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 20 61 6c 6c 20 66 69 72 65 77 | .useful.information.on.all.firew |
| fdd80 | 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f | all.configuration.that.can.be.do |
| fdda0 | 6e 65 20 72 65 67 61 72 64 69 6e 67 20 49 50 76 36 2c 20 61 6e 64 20 61 70 70 72 6f 70 72 69 61 | ne.regarding.IPv6,.and.appropria |
| fddc0 | 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 | te.op-mode.commands..Configurati |
| fdde0 | 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 | on.commands.covered.in.this.sect |
| fde00 | 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 | ion:.In.this.section.there's.use |
| fde20 | 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 | ful.information.on.all.firewall. |
| fde40 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 | configuration.that.can.be.done.r |
| fde60 | 65 67 61 72 64 69 6e 67 20 62 72 69 64 67 65 73 2c 20 61 6e 64 20 61 70 70 72 6f 70 72 69 61 74 | egarding.bridges,.and.appropriat |
| fde80 | 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f | e.op-mode.commands..Configuratio |
| fdea0 | 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 | n.commands.covered.in.this.secti |
| fdec0 | 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 | on:.In.this.section.there's.usef |
| fdee0 | 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 | ul.information.on.all.firewall.c |
| fdf00 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 | onfiguration.that.can.be.done.re |
| fdf20 | 67 61 72 64 69 6e 67 20 66 6c 6f 77 74 61 62 6c 65 73 2e 00 49 6e 20 74 68 69 73 20 73 65 63 74 | garding.flowtables..In.this.sect |
| fdf40 | 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f | ion.there's.useful.information.o |
| fdf60 | 6e 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 | n.all.firewall.configuration.tha |
| fdf80 | 74 20 69 73 20 6e 65 65 64 65 64 20 66 6f 72 20 74 68 65 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 | t.is.needed.for.the.zone-based.f |
| fdfa0 | 69 72 65 77 61 6c 6c 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 | irewall..Configuration.commands. |
| fdfc0 | 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 | covered.in.this.section:.In.this |
| fdfe0 | 20 73 65 63 74 69 6f 6e 20 79 6f 75 20 63 61 6e 20 66 69 6e 64 20 61 6c 6c 20 75 73 65 66 75 6c | .section.you.can.find.all.useful |
| fe000 | 20 66 69 72 65 77 61 6c 6c 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 00 49 6e 20 74 | .firewall.op-mode.commands..In.t |
| fe020 | 72 61 6e 73 70 61 72 65 6e 74 20 70 72 6f 78 79 20 6d 6f 64 65 2c 20 61 6c 6c 20 74 72 61 66 66 | ransparent.proxy.mode,.all.traff |
| fe040 | 69 63 20 61 72 72 69 76 69 6e 67 20 6f 6e 20 70 6f 72 74 20 38 30 20 61 6e 64 20 64 65 73 74 69 | ic.arriving.on.port.80.and.desti |
| fe060 | 6e 65 64 20 66 6f 72 20 74 68 65 20 49 6e 74 65 72 6e 65 74 20 69 73 20 61 75 74 6f 6d 61 74 69 | ned.for.the.Internet.is.automati |
| fe080 | 63 61 6c 6c 79 20 66 6f 72 77 61 72 64 65 64 20 74 68 72 6f 75 67 68 20 74 68 65 20 70 72 6f 78 | cally.forwarded.through.the.prox |
| fe0a0 | 79 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 69 6d 6d 65 64 69 61 74 65 20 70 72 6f 78 79 20 66 | y..This.allows.immediate.proxy.f |
| fe0c0 | 6f 72 77 61 72 64 69 6e 67 20 77 69 74 68 6f 75 74 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 63 6c | orwarding.without.configuring.cl |
| fe0e0 | 69 65 6e 74 20 62 72 6f 77 73 65 72 73 2e 00 49 6e 20 74 79 70 69 63 61 6c 20 75 73 65 73 20 6f | ient.browsers..In.typical.uses.o |
| fe100 | 66 20 53 4e 4d 50 2c 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 61 64 6d 69 6e 69 73 74 72 61 74 69 | f.SNMP,.one.or.more.administrati |
| fe120 | 76 65 20 63 6f 6d 70 75 74 65 72 73 20 63 61 6c 6c 65 64 20 6d 61 6e 61 67 65 72 73 20 68 61 76 | ve.computers.called.managers.hav |
| fe140 | 65 20 74 68 65 20 74 61 73 6b 20 6f 66 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 6f 72 20 6d 61 6e 61 | e.the.task.of.monitoring.or.mana |
| fe160 | 67 69 6e 67 20 61 20 67 72 6f 75 70 20 6f 66 20 68 6f 73 74 73 20 6f 72 20 64 65 76 69 63 65 73 | ging.a.group.of.hosts.or.devices |
| fe180 | 20 6f 6e 20 61 20 63 6f 6d 70 75 74 65 72 20 6e 65 74 77 6f 72 6b 2e 20 45 61 63 68 20 6d 61 6e | .on.a.computer.network..Each.man |
| fe1a0 | 61 67 65 64 20 73 79 73 74 65 6d 20 65 78 65 63 75 74 65 73 20 61 20 73 6f 66 74 77 61 72 65 20 | aged.system.executes.a.software. |
| fe1c0 | 63 6f 6d 70 6f 6e 65 6e 74 20 63 61 6c 6c 65 64 20 61 6e 20 61 67 65 6e 74 20 77 68 69 63 68 20 | component.called.an.agent.which. |
| fe1e0 | 72 65 70 6f 72 74 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 76 69 61 20 53 4e 4d 50 20 74 6f 20 | reports.information.via.SNMP.to. |
| fe200 | 74 68 65 20 6d 61 6e 61 67 65 72 2e 00 49 6e 20 7a 6f 6e 65 2d 62 61 73 65 64 20 70 6f 6c 69 63 | the.manager..In.zone-based.polic |
| fe220 | 79 2c 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 61 73 73 69 67 6e 65 64 20 74 6f 20 7a 6f | y,.interfaces.are.assigned.to.zo |
| fe240 | 6e 65 73 2c 20 61 6e 64 20 69 6e 73 70 65 63 74 69 6f 6e 20 70 6f 6c 69 63 79 20 69 73 20 61 70 | nes,.and.inspection.policy.is.ap |
| fe260 | 70 6c 69 65 64 20 74 6f 20 74 72 61 66 66 69 63 20 6d 6f 76 69 6e 67 20 62 65 74 77 65 65 6e 20 | plied.to.traffic.moving.between. |
| fe280 | 74 68 65 20 7a 6f 6e 65 73 20 61 6e 64 20 61 63 74 65 64 20 6f 6e 20 61 63 63 6f 72 64 69 6e 67 | the.zones.and.acted.on.according |
| fe2a0 | 20 74 6f 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 2e 20 41 20 5a 6f 6e 65 20 69 73 20 61 20 | .to.firewall.rules..A.Zone.is.a. |
| fe2c0 | 67 72 6f 75 70 20 6f 66 20 69 6e 74 65 72 66 61 63 65 73 20 74 68 61 74 20 68 61 76 65 20 73 69 | group.of.interfaces.that.have.si |
| fe2e0 | 6d 69 6c 61 72 20 66 75 6e 63 74 69 6f 6e 73 20 6f 72 20 66 65 61 74 75 72 65 73 2e 20 49 74 20 | milar.functions.or.features..It. |
| fe300 | 65 73 74 61 62 6c 69 73 68 65 73 20 74 68 65 20 73 65 63 75 72 69 74 79 20 62 6f 72 64 65 72 73 | establishes.the.security.borders |
| fe320 | 20 6f 66 20 61 20 6e 65 74 77 6f 72 6b 2e 20 41 20 7a 6f 6e 65 20 64 65 66 69 6e 65 73 20 61 20 | .of.a.network..A.zone.defines.a. |
| fe340 | 62 6f 75 6e 64 61 72 79 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 69 73 20 73 75 62 6a 65 63 | boundary.where.traffic.is.subjec |
| fe360 | 74 65 64 20 74 6f 20 70 6f 6c 69 63 79 20 72 65 73 74 72 69 63 74 69 6f 6e 73 20 61 73 20 69 74 | ted.to.policy.restrictions.as.it |
| fe380 | 20 63 72 6f 73 73 65 73 20 74 6f 20 61 6e 6f 74 68 65 72 20 72 65 67 69 6f 6e 20 6f 66 20 61 20 | .crosses.to.another.region.of.a. |
| fe3a0 | 6e 65 74 77 6f 72 6b 2e 00 49 6e 20 7a 6f 6e 65 2d 62 61 73 65 64 20 70 6f 6c 69 63 79 2c 20 69 | network..In.zone-based.policy,.i |
| fe3c0 | 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 61 73 73 69 67 6e 65 64 20 74 6f 20 7a 6f 6e 65 73 2c | nterfaces.are.assigned.to.zones, |
| fe3e0 | 20 61 6e 64 20 69 6e 73 70 65 63 74 69 6f 6e 20 70 6f 6c 69 63 79 20 69 73 20 61 70 70 6c 69 65 | .and.inspection.policy.is.applie |
| fe400 | 64 20 74 6f 20 74 72 61 66 66 69 63 20 6d 6f 76 69 6e 67 20 62 65 74 77 65 65 6e 20 74 68 65 20 | d.to.traffic.moving.between.the. |
| fe420 | 7a 6f 6e 65 73 20 61 6e 64 20 61 63 74 65 64 20 6f 6e 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 | zones.and.acted.on.according.to. |
| fe440 | 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 2e 20 41 20 7a 6f 6e 65 20 69 73 20 61 20 67 72 6f 75 | firewall.rules..A.zone.is.a.grou |
| fe460 | 70 20 6f 66 20 69 6e 74 65 72 66 61 63 65 73 20 74 68 61 74 20 68 61 76 65 20 73 69 6d 69 6c 61 | p.of.interfaces.that.have.simila |
| fe480 | 72 20 66 75 6e 63 74 69 6f 6e 73 20 6f 72 20 66 65 61 74 75 72 65 73 2e 20 49 74 20 65 73 74 61 | r.functions.or.features..It.esta |
| fe4a0 | 62 6c 69 73 68 65 73 20 74 68 65 20 73 65 63 75 72 69 74 79 20 62 6f 72 64 65 72 73 20 6f 66 20 | blishes.the.security.borders.of. |
| fe4c0 | 61 20 6e 65 74 77 6f 72 6b 2e 20 41 20 7a 6f 6e 65 20 64 65 66 69 6e 65 73 20 61 20 62 6f 75 6e | a.network..A.zone.defines.a.boun |
| fe4e0 | 64 61 72 79 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 69 73 20 73 75 62 6a 65 63 74 65 64 20 | dary.where.traffic.is.subjected. |
| fe500 | 74 6f 20 70 6f 6c 69 63 79 20 72 65 73 74 72 69 63 74 69 6f 6e 73 20 61 73 20 69 74 20 63 72 6f | to.policy.restrictions.as.it.cro |
| fe520 | 73 73 65 73 20 74 6f 20 61 6e 6f 74 68 65 72 20 72 65 67 69 6f 6e 20 6f 66 20 61 20 6e 65 74 77 | sses.to.another.region.of.a.netw |
| fe540 | 6f 72 6b 2e 00 49 6e 62 6f 75 6e 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 61 20 57 41 | ork..Inbound.connections.to.a.WA |
| fe560 | 4e 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 62 65 20 69 6d 70 72 6f 70 65 72 6c 79 20 68 61 | N.interface.can.be.improperly.ha |
| fe580 | 6e 64 6c 65 64 20 77 68 65 6e 20 74 68 65 20 72 65 70 6c 79 20 69 73 20 73 65 6e 74 20 62 61 63 | ndled.when.the.reply.is.sent.bac |
| fe5a0 | 6b 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 2e 00 49 6e 63 6f 6d 69 6e 67 20 74 72 61 66 66 69 | k.to.the.client..Incoming.traffi |
| fe5c0 | 63 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 63 75 72 72 65 6e 74 20 73 6c 61 | c.is.received.by.the.current.sla |
| fe5e0 | 76 65 2e 20 49 66 20 74 68 65 20 72 65 63 65 69 76 69 6e 67 20 73 6c 61 76 65 20 66 61 69 6c 73 | ve..If.the.receiving.slave.fails |
| fe600 | 2c 20 61 6e 6f 74 68 65 72 20 73 6c 61 76 65 20 74 61 6b 65 73 20 6f 76 65 72 20 74 68 65 20 4d | ,.another.slave.takes.over.the.M |
| fe620 | 41 43 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 66 61 69 6c 65 64 20 72 65 63 65 69 76 69 | AC.address.of.the.failed.receivi |
| fe640 | 6e 67 20 73 6c 61 76 65 2e 00 49 6e 63 72 65 61 73 65 20 4d 61 78 69 6d 75 6d 20 4d 50 44 55 20 | ng.slave..Increase.Maximum.MPDU. |
| fe660 | 6c 65 6e 67 74 68 20 74 6f 20 37 39 39 31 20 6f 72 20 31 31 34 35 34 20 6f 63 74 65 74 73 20 28 | length.to.7991.or.11454.octets.( |
| fe680 | 64 65 66 61 75 6c 74 20 33 38 39 35 20 6f 63 74 65 74 73 29 00 49 6e 64 69 63 61 74 69 6f 6e 00 | default.3895.octets).Indication. |
| fe6a0 | 49 6e 64 69 76 69 64 75 61 6c 20 43 6c 69 65 6e 74 20 53 75 62 6e 65 74 00 49 6e 66 6f 72 6d 20 | Individual.Client.Subnet.Inform. |
| fe6c0 | 63 6c 69 65 6e 74 20 74 68 61 74 20 74 68 65 20 44 4e 53 20 73 65 72 76 65 72 20 63 61 6e 20 62 | client.that.the.DNS.server.can.b |
| fe6e0 | 65 20 66 6f 75 6e 64 20 61 74 20 60 3c 61 64 64 72 65 73 73 3e 60 2e 00 49 6e 66 6f 72 6d 61 74 | e.found.at.`<address>`..Informat |
| fe700 | 69 6f 6e 20 67 61 74 68 65 72 65 64 20 77 69 74 68 20 4c 4c 44 50 20 69 73 20 73 74 6f 72 65 64 | ion.gathered.with.LLDP.is.stored |
| fe720 | 20 69 6e 20 74 68 65 20 64 65 76 69 63 65 20 61 73 20 61 20 3a 61 62 62 72 3a 60 4d 49 42 20 28 | .in.the.device.as.a.:abbr:`MIB.( |
| fe740 | 4d 61 6e 61 67 65 6d 65 6e 74 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 20 44 61 74 61 62 61 73 65 29 | Management.Information.Database) |
| fe760 | 60 20 61 6e 64 20 63 61 6e 20 62 65 20 71 75 65 72 69 65 64 20 77 69 74 68 20 3a 61 62 62 72 3a | `.and.can.be.queried.with.:abbr: |
| fe780 | 60 53 4e 4d 50 20 28 53 69 6d 70 6c 65 20 4e 65 74 77 6f 72 6b 20 4d 61 6e 61 67 65 6d 65 6e 74 | `SNMP.(Simple.Network.Management |
| fe7a0 | 20 50 72 6f 74 6f 63 6f 6c 29 60 20 61 73 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 3a 72 66 63 | .Protocol)`.as.specified.in.:rfc |
| fe7c0 | 3a 60 32 39 32 32 60 2e 20 54 68 65 20 74 6f 70 6f 6c 6f 67 79 20 6f 66 20 61 6e 20 4c 4c 44 50 | :`2922`..The.topology.of.an.LLDP |
| fe7e0 | 2d 65 6e 61 62 6c 65 64 20 6e 65 74 77 6f 72 6b 20 63 61 6e 20 62 65 20 64 69 73 63 6f 76 65 72 | -enabled.network.can.be.discover |
| fe800 | 65 64 20 62 79 20 63 72 61 77 6c 69 6e 67 20 74 68 65 20 68 6f 73 74 73 20 61 6e 64 20 71 75 65 | ed.by.crawling.the.hosts.and.que |
| fe820 | 72 79 69 6e 67 20 74 68 69 73 20 64 61 74 61 62 61 73 65 2e 20 49 6e 66 6f 72 6d 61 74 69 6f 6e | rying.this.database..Information |
| fe840 | 20 74 68 61 74 20 6d 61 79 20 62 65 20 72 65 74 72 69 65 76 65 64 20 69 6e 63 6c 75 64 65 3a 00 | .that.may.be.retrieved.include:. |
| fe860 | 49 6e 66 6f 72 6d 61 74 69 6f 6e 61 6c 00 49 6e 66 6f 72 6d 61 74 69 6f 6e 61 6c 20 6d 65 73 73 | Informational.Informational.mess |
| fe880 | 61 67 65 73 00 49 6e 70 75 74 20 66 72 6f 6d 20 60 65 74 68 30 60 20 6e 65 74 77 6f 72 6b 20 69 | ages.Input.from.`eth0`.network.i |
| fe8a0 | 6e 74 65 72 66 61 63 65 00 49 6e 73 70 65 63 74 20 6c 6f 67 73 3a 00 49 6e 73 74 61 6c 6c 20 74 | nterface.Inspect.logs:.Install.t |
| fe8c0 | 68 65 20 63 6c 69 65 6e 74 20 73 6f 66 74 77 61 72 65 20 76 69 61 20 61 70 74 20 61 6e 64 20 65 | he.client.software.via.apt.and.e |
| fe8e0 | 78 65 63 75 74 65 20 70 70 74 70 73 65 74 75 70 20 74 6f 20 67 65 6e 65 72 61 74 65 20 74 68 65 | xecute.pptpsetup.to.generate.the |
| fe900 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 49 6e 73 74 65 61 64 20 6f 66 20 61 20 6e 75 6d | .configuration..Instead.of.a.num |
| fe920 | 65 72 69 63 61 6c 20 4d 53 53 20 76 61 6c 75 65 20 60 63 6c 61 6d 70 2d 6d 73 73 2d 74 6f 2d 70 | erical.MSS.value.`clamp-mss-to-p |
| fe940 | 6d 74 75 60 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c | mtu`.can.be.used.to.automaticall |
| fe960 | 79 20 73 65 74 20 74 68 65 20 70 72 6f 70 65 72 20 76 61 6c 75 65 2e 00 49 6e 73 74 65 61 64 20 | y.set.the.proper.value..Instead. |
| fe980 | 6f 66 20 70 61 73 73 77 6f 72 64 20 6f 6e 6c 79 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2c | of.password.only.authentication, |
| fe9a0 | 20 32 46 41 20 70 61 73 73 77 6f 72 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 2b 20 4f | .2FA.password.authentication.+.O |
| fe9c0 | 54 50 20 6b 65 79 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 41 6c 74 65 72 6e 61 74 69 76 65 6c | TP.key.can.be.used..Alternativel |
| fe9e0 | 79 2c 20 4f 54 50 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f 6e 6c 79 2c 20 77 69 74 68 | y,.OTP.authentication.only,.with |
| fea00 | 6f 75 74 20 61 20 70 61 73 73 77 6f 72 64 2c 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 54 6f 20 | out.a.password,.can.be.used..To. |
| fea20 | 64 6f 20 74 68 69 73 2c 20 61 6e 20 4f 54 50 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 75 | do.this,.an.OTP.configuration.mu |
| fea40 | 73 74 20 62 65 20 61 64 64 65 64 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | st.be.added.to.the.configuration |
| fea60 | 20 61 62 6f 76 65 3a 00 49 6e 73 74 65 61 64 20 6f 66 20 73 65 6e 64 69 6e 67 20 74 68 65 20 72 | .above:.Instead.of.sending.the.r |
| fea80 | 65 61 6c 20 73 79 73 74 65 6d 20 68 6f 73 74 6e 61 6d 65 20 74 6f 20 74 68 65 20 44 48 43 50 20 | eal.system.hostname.to.the.DHCP. |
| feaa0 | 73 65 72 76 65 72 2c 20 6f 76 65 72 77 72 69 74 65 20 74 68 65 20 68 6f 73 74 2d 6e 61 6d 65 20 | server,.overwrite.the.host-name. |
| feac0 | 77 69 74 68 20 74 68 69 73 20 67 69 76 65 6e 2d 76 61 6c 75 65 2e 00 49 6e 73 74 65 61 64 2c 20 | with.this.given-value..Instead,. |
| feae0 | 6d 65 6d 62 65 72 73 20 6f 66 20 74 68 65 73 65 20 67 72 6f 75 70 73 20 61 72 65 20 61 64 64 65 | members.of.these.groups.are.adde |
| feb00 | 64 20 64 79 6e 61 6d 69 63 61 6c 6c 79 20 75 73 69 6e 67 20 66 69 72 65 77 61 6c 6c 20 72 75 6c | d.dynamically.using.firewall.rul |
| feb20 | 65 73 2e 00 49 6e 74 65 67 72 69 74 79 20 e2 80 93 20 4d 65 73 73 61 67 65 20 69 6e 74 65 67 72 | es..Integrity.....Message.integr |
| feb40 | 69 74 79 20 74 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 61 20 70 61 63 6b 65 74 20 68 61 73 20 | ity.to.ensure.that.a.packet.has. |
| feb60 | 6e 6f 74 20 62 65 65 6e 20 74 61 6d 70 65 72 65 64 20 77 68 69 6c 65 20 69 6e 20 74 72 61 6e 73 | not.been.tampered.while.in.trans |
| feb80 | 69 74 20 69 6e 63 6c 75 64 69 6e 67 20 61 6e 20 6f 70 74 69 6f 6e 61 6c 20 70 61 63 6b 65 74 20 | it.including.an.optional.packet. |
| feba0 | 72 65 70 6c 61 79 20 70 72 6f 74 65 63 74 69 6f 6e 20 6d 65 63 68 61 6e 69 73 6d 2e 00 49 6e 74 | replay.protection.mechanism..Int |
| febc0 | 65 6c 20 41 58 32 30 30 00 49 6e 74 65 6c c2 ae 20 51 41 54 00 49 6e 74 65 72 63 6f 6e 6e 65 63 | el.AX200.Intel...QAT.Interconnec |
| febe0 | 74 20 74 68 65 20 67 6c 6f 62 61 6c 20 56 52 46 20 77 69 74 68 20 76 72 66 20 22 72 65 64 22 20 | t.the.global.VRF.with.vrf."red". |
| fec00 | 75 73 69 6e 67 20 74 68 65 20 76 65 74 68 31 30 20 3c 2d 3e 20 76 65 74 68 20 31 31 20 70 61 69 | using.the.veth10.<->.veth.11.pai |
| fec20 | 72 00 49 6e 74 65 72 66 61 63 65 20 2a 2a 65 74 68 30 2a 2a 20 75 73 65 64 20 74 6f 20 63 6f 6e | r.Interface.**eth0**.used.to.con |
| fec40 | 6e 65 63 74 20 74 6f 20 75 70 73 74 72 65 61 6d 2e 00 49 6e 74 65 72 66 61 63 65 20 43 6f 6e 66 | nect.to.upstream..Interface.Conf |
| fec60 | 69 67 75 72 61 74 69 6f 6e 00 49 6e 74 65 72 66 61 63 65 20 47 72 6f 75 70 73 00 49 6e 74 65 72 | iguration.Interface.Groups.Inter |
| fec80 | 66 61 63 65 20 52 6f 75 74 65 73 00 49 6e 74 65 72 66 61 63 65 20 60 65 74 68 31 60 20 4c 41 4e | face.Routes.Interface.`eth1`.LAN |
| feca0 | 20 69 73 20 62 65 68 69 6e 64 20 4e 41 54 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 73 75 62 73 | .is.behind.NAT..In.order.to.subs |
| fecc0 | 63 72 69 62 65 20 60 31 30 2e 30 2e 30 2e 30 2f 32 33 60 20 73 75 62 6e 65 74 20 6d 75 6c 74 69 | cribe.`10.0.0.0/23`.subnet.multi |
| fece0 | 63 61 73 74 20 77 68 69 63 68 20 69 73 20 69 6e 20 60 65 74 68 30 60 20 57 41 4e 20 77 65 20 6e | cast.which.is.in.`eth0`.WAN.we.n |
| fed00 | 65 65 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 69 67 6d 70 2d 70 72 6f 78 79 2e 00 49 6e 74 | eed.to.configure.igmp-proxy..Int |
| fed20 | 65 72 66 61 63 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 49 6e 74 65 72 66 61 63 65 20 66 | erface.configuration.Interface.f |
| fed40 | 6f 72 20 44 48 43 50 20 52 65 6c 61 79 20 41 67 65 6e 74 20 74 6f 20 66 6f 72 77 61 72 64 20 72 | or.DHCP.Relay.Agent.to.forward.r |
| fed60 | 65 71 75 65 73 74 73 20 6f 75 74 2e 00 49 6e 74 65 72 66 61 63 65 20 66 6f 72 20 44 48 43 50 20 | equests.out..Interface.for.DHCP. |
| fed80 | 52 65 6c 61 79 20 41 67 65 6e 74 20 74 6f 20 6c 69 73 74 65 6e 20 66 6f 72 20 72 65 71 75 65 73 | Relay.Agent.to.listen.for.reques |
| feda0 | 74 73 2e 00 49 6e 74 65 72 66 61 63 65 20 73 70 65 63 69 66 69 63 20 63 6f 6d 6d 61 6e 64 73 00 | ts..Interface.specific.commands. |
| fedc0 | 49 6e 74 65 72 66 61 63 65 20 74 6f 20 75 73 65 20 66 6f 72 20 73 79 6e 63 69 6e 67 20 63 6f 6e | Interface.to.use.for.syncing.con |
| fede0 | 6e 74 72 61 63 6b 20 65 6e 74 72 69 65 73 2e 00 49 6e 74 65 72 66 61 63 65 20 75 73 65 64 20 66 | ntrack.entries..Interface.used.f |
| fee00 | 6f 72 20 56 58 4c 41 4e 20 75 6e 64 65 72 6c 61 79 2e 20 54 68 69 73 20 69 73 20 6d 61 6e 64 61 | or.VXLAN.underlay..This.is.manda |
| fee20 | 74 6f 72 79 20 77 68 65 6e 20 75 73 69 6e 67 20 56 58 4c 41 4e 20 76 69 61 20 61 20 6d 75 6c 74 | tory.when.using.VXLAN.via.a.mult |
| fee40 | 69 63 61 73 74 20 6e 65 74 77 6f 72 6b 2e 20 56 58 4c 41 4e 20 74 72 61 66 66 69 63 20 77 69 6c | icast.network..VXLAN.traffic.wil |
| fee60 | 6c 20 61 6c 77 61 79 73 20 65 6e 74 65 72 20 61 6e 64 20 65 78 69 74 20 74 68 69 73 20 69 6e 74 | l.always.enter.and.exit.this.int |
| fee80 | 65 72 66 61 63 65 2e 00 49 6e 74 65 72 66 61 63 65 20 77 65 69 67 68 74 00 49 6e 74 65 72 66 61 | erface..Interface.weight.Interfa |
| feea0 | 63 65 73 00 49 6e 74 65 72 66 61 63 65 73 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 49 6e 74 | ces.Interfaces.Configuration.Int |
| feec0 | 65 72 66 61 63 65 73 20 74 68 61 74 20 70 61 72 74 69 63 69 70 61 74 65 20 69 6e 20 74 68 65 20 | erfaces.that.participate.in.the. |
| feee0 | 44 48 43 50 20 72 65 6c 61 79 20 70 72 6f 63 65 73 73 2e 20 49 66 20 74 68 69 73 20 63 6f 6d 6d | DHCP.relay.process..If.this.comm |
| fef00 | 61 6e 64 20 69 73 20 75 73 65 64 2c 20 61 74 20 6c 65 61 73 74 20 74 77 6f 20 65 6e 74 72 69 65 | and.is.used,.at.least.two.entrie |
| fef20 | 73 20 6f 66 20 69 74 20 61 72 65 20 72 65 71 75 69 72 65 64 3a 20 6f 6e 65 20 66 6f 72 20 74 68 | s.of.it.are.required:.one.for.th |
| fef40 | 65 20 69 6e 74 65 72 66 61 63 65 20 74 68 61 74 20 63 61 70 74 75 72 65 73 20 74 68 65 20 64 68 | e.interface.that.captures.the.dh |
| fef60 | 63 70 2d 72 65 71 75 65 73 74 73 2c 20 61 6e 64 20 6f 6e 65 20 66 6f 72 20 74 68 65 20 69 6e 74 | cp-requests,.and.one.for.the.int |
| fef80 | 65 72 66 61 63 65 20 74 6f 20 66 6f 72 77 61 72 64 20 73 75 63 68 20 72 65 71 75 65 73 74 73 2e | erface.to.forward.such.requests. |
| fefa0 | 20 41 20 77 61 72 6e 69 6e 67 20 6d 65 73 73 61 67 65 20 77 69 6c 6c 20 62 65 20 73 68 6f 77 6e | .A.warning.message.will.be.shown |
| fefc0 | 20 69 66 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 2c 20 73 69 6e 63 65 20 | .if.this.command.is.used,.since. |
| fefe0 | 6e 65 77 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 73 20 73 68 6f 75 6c 64 20 75 73 65 20 60 | new.implementations.should.use.` |
| ff000 | 60 6c 69 73 74 65 6e 2d 69 6e 74 65 72 66 61 63 65 60 60 20 61 6e 64 20 60 60 75 70 73 74 72 65 | `listen-interface``.and.``upstre |
| ff020 | 61 6d 2d 69 6e 74 65 72 66 61 63 65 60 60 2e 00 49 6e 74 65 72 66 61 63 65 73 20 77 68 6f 73 65 | am-interface``..Interfaces.whose |
| ff040 | 20 44 48 43 50 20 63 6c 69 65 6e 74 20 6e 61 6d 65 73 65 72 76 65 72 73 20 74 6f 20 66 6f 72 77 | .DHCP.client.nameservers.to.forw |
| ff060 | 61 72 64 20 72 65 71 75 65 73 74 73 20 74 6f 2e 00 49 6e 74 65 72 66 61 63 65 73 2c 20 74 68 65 | ard.requests.to..Interfaces,.the |
| ff080 | 69 72 20 77 65 69 67 68 74 20 61 6e 64 20 74 68 65 20 74 79 70 65 20 6f 66 20 74 72 61 66 66 69 | ir.weight.and.the.type.of.traffi |
| ff0a0 | 63 20 74 6f 20 62 65 20 62 61 6c 61 6e 63 65 64 20 61 72 65 20 64 65 66 69 6e 65 64 20 69 6e 20 | c.to.be.balanced.are.defined.in. |
| ff0c0 | 6e 75 6d 62 65 72 65 64 20 62 61 6c 61 6e 63 69 6e 67 20 72 75 6c 65 20 73 65 74 73 2e 20 54 68 | numbered.balancing.rule.sets..Th |
| ff0e0 | 65 20 72 75 6c 65 20 73 65 74 73 20 61 72 65 20 65 78 65 63 75 74 65 64 20 69 6e 20 6e 75 6d 65 | e.rule.sets.are.executed.in.nume |
| ff100 | 72 69 63 61 6c 20 6f 72 64 65 72 20 61 67 61 69 6e 73 74 20 6f 75 74 67 6f 69 6e 67 20 70 61 63 | rical.order.against.outgoing.pac |
| ff120 | 6b 65 74 73 2e 20 49 6e 20 63 61 73 65 20 6f 66 20 61 20 6d 61 74 63 68 20 74 68 65 20 70 61 63 | kets..In.case.of.a.match.the.pac |
| ff140 | 6b 65 74 20 69 73 20 73 65 6e 74 20 74 68 72 6f 75 67 68 20 61 6e 20 69 6e 74 65 72 66 61 63 65 | ket.is.sent.through.an.interface |
| ff160 | 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 74 68 65 20 6d 61 74 63 68 69 6e 67 20 72 75 6c 65 2e | .specified.in.the.matching.rule. |
| ff180 | 20 49 66 20 61 20 70 61 63 6b 65 74 20 64 6f 65 73 6e 27 74 20 6d 61 74 63 68 20 61 6e 79 20 72 | .If.a.packet.doesn't.match.any.r |
| ff1a0 | 75 6c 65 20 69 74 20 69 73 20 73 65 6e 74 20 62 79 20 75 73 69 6e 67 20 74 68 65 20 73 79 73 74 | ule.it.is.sent.by.using.the.syst |
| ff1c0 | 65 6d 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 20 52 75 6c 65 20 6e 75 6d 62 65 72 73 20 63 | em.routing.table..Rule.numbers.c |
| ff1e0 | 61 6e 27 74 20 62 65 20 63 68 61 6e 67 65 64 2e 00 49 6e 74 65 72 6e 61 6c 20 61 74 74 61 63 6b | an't.be.changed..Internal.attack |
| ff200 | 3a 20 61 6e 20 61 74 74 61 63 6b 20 66 72 6f 6d 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 6e 65 | :.an.attack.from.the.internal.ne |
| ff220 | 74 77 6f 72 6b 20 28 67 65 6e 65 72 61 74 65 64 20 62 79 20 61 20 63 75 73 74 6f 6d 65 72 29 20 | twork.(generated.by.a.customer). |
| ff240 | 74 6f 77 61 72 64 73 20 74 68 65 20 69 6e 74 65 72 6e 65 74 20 69 73 20 69 64 65 6e 74 69 66 79 | towards.the.internet.is.identify |
| ff260 | 2e 20 49 6e 20 74 68 69 73 20 63 61 73 65 2c 20 61 6c 6c 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 | ..In.this.case,.all.connections. |
| ff280 | 66 72 6f 6d 20 74 68 69 73 20 70 61 72 74 69 63 75 6c 61 72 20 49 50 2f 43 75 73 74 6f 6d 65 72 | from.this.particular.IP/Customer |
| ff2a0 | 20 77 69 6c 6c 20 62 65 20 62 6c 6f 63 6b 65 64 2e 00 49 6e 74 65 72 6e 61 6c 6c 79 2c 20 69 6e | .will.be.blocked..Internally,.in |
| ff2c0 | 20 66 6c 6f 77 2d 61 63 63 6f 75 6e 74 69 6e 67 20 70 72 6f 63 65 73 73 65 73 20 65 78 69 73 74 | .flow-accounting.processes.exist |
| ff2e0 | 20 61 20 62 75 66 66 65 72 20 66 6f 72 20 64 61 74 61 20 65 78 63 68 61 6e 67 69 6e 67 20 62 65 | .a.buffer.for.data.exchanging.be |
| ff300 | 74 77 65 65 6e 20 63 6f 72 65 20 70 72 6f 63 65 73 73 20 61 6e 64 20 70 6c 75 67 69 6e 73 20 28 | tween.core.process.and.plugins.( |
| ff320 | 65 61 63 68 20 65 78 70 6f 72 74 20 74 61 72 67 65 74 20 69 73 20 61 20 73 65 70 61 72 61 74 65 | each.export.target.is.a.separate |
| ff340 | 64 20 70 6c 75 67 69 6e 29 2e 20 49 66 20 79 6f 75 20 68 61 76 65 20 68 69 67 68 20 74 72 61 66 | d.plugin)..If.you.have.high.traf |
| ff360 | 66 69 63 20 6c 65 76 65 6c 73 20 6f 72 20 6e 6f 74 65 64 20 73 6f 6d 65 20 70 72 6f 62 6c 65 6d | fic.levels.or.noted.some.problem |
| ff380 | 73 20 77 69 74 68 20 6d 69 73 73 65 64 20 72 65 63 6f 72 64 73 20 6f 72 20 73 74 6f 70 70 69 6e | s.with.missed.records.or.stoppin |
| ff3a0 | 67 20 65 78 70 6f 72 74 69 6e 67 2c 20 79 6f 75 20 6d 61 79 20 74 72 79 20 74 6f 20 69 6e 63 72 | g.exporting,.you.may.try.to.incr |
| ff3c0 | 65 61 73 65 20 61 20 64 65 66 61 75 6c 74 20 62 75 66 66 65 72 20 73 69 7a 65 20 28 31 30 20 4d | ease.a.default.buffer.size.(10.M |
| ff3e0 | 69 42 29 20 77 69 74 68 20 74 68 65 20 6e 65 78 74 20 63 6f 6d 6d 61 6e 64 3a 00 49 6e 74 65 72 | iB).with.the.next.command:.Inter |
| ff400 | 6e 65 74 20 4b 65 79 20 45 78 63 68 61 6e 67 65 20 76 65 72 73 69 6f 6e 20 32 20 28 49 4b 45 76 | net.Key.Exchange.version.2.(IKEv |
| ff420 | 32 29 20 69 73 20 61 20 74 75 6e 6e 65 6c 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 2c 20 62 61 73 65 | 2).is.a.tunneling.protocol,.base |
| ff440 | 64 20 6f 6e 20 49 50 73 65 63 2c 20 74 68 61 74 20 65 73 74 61 62 6c 69 73 68 65 73 20 61 20 73 | d.on.IPsec,.that.establishes.a.s |
| ff460 | 65 63 75 72 65 20 56 50 4e 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 | ecure.VPN.communication.between. |
| ff480 | 56 50 4e 20 64 65 76 69 63 65 73 2c 20 20 61 6e 64 20 64 65 66 69 6e 65 73 20 6e 65 67 6f 74 69 | VPN.devices,..and.defines.negoti |
| ff4a0 | 61 74 69 6f 6e 20 61 6e 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 70 72 6f 63 65 73 73 | ation.and.authentication.process |
| ff4c0 | 65 73 20 66 6f 72 20 49 50 73 65 63 20 73 65 63 75 72 69 74 79 20 61 73 73 6f 63 69 61 74 69 6f | es.for.IPsec.security.associatio |
| ff4e0 | 6e 73 20 28 53 41 73 29 2e 20 49 74 20 69 73 20 6f 66 74 65 6e 20 6b 6e 6f 77 6e 20 61 73 20 49 | ns.(SAs)..It.is.often.known.as.I |
| ff500 | 4b 45 76 32 2f 49 50 53 65 63 20 6f 72 20 49 50 53 65 63 20 49 4b 45 76 32 20 72 65 6d 6f 74 65 | KEv2/IPSec.or.IPSec.IKEv2.remote |
| ff520 | 2d 61 63 63 65 73 73 20 e2 80 94 20 6f 72 20 72 6f 61 64 2d 77 61 72 72 69 6f 72 73 20 61 73 20 | -access.....or.road-warriors.as. |
| ff540 | 6f 74 68 65 72 73 20 63 61 6c 6c 20 69 74 2e 00 49 6e 74 65 72 6e 65 74 20 4b 65 79 20 45 78 63 | others.call.it..Internet.Key.Exc |
| ff560 | 68 61 6e 67 65 20 76 65 72 73 69 6f 6e 20 32 2c 20 49 4b 45 76 32 20 66 6f 72 20 73 68 6f 72 74 | hange.version.2,.IKEv2.for.short |
| ff580 | 2c 20 69 73 20 61 20 72 65 71 75 65 73 74 2f 72 65 73 70 6f 6e 73 65 20 70 72 6f 74 6f 63 6f 6c | ,.is.a.request/response.protocol |
| ff5a0 | 20 64 65 76 65 6c 6f 70 65 64 20 62 79 20 62 6f 74 68 20 43 69 73 63 6f 20 61 6e 64 20 4d 69 63 | .developed.by.both.Cisco.and.Mic |
| ff5c0 | 72 6f 73 6f 66 74 2e 20 49 74 20 69 73 20 75 73 65 64 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 | rosoft..It.is.used.to.establish. |
| ff5e0 | 61 6e 64 20 73 65 63 75 72 65 20 49 50 76 34 2f 49 50 76 36 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 | and.secure.IPv4/IPv6.connections |
| ff600 | 2c 20 62 65 20 69 74 20 61 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 56 50 4e 20 6f 72 20 66 72 | ,.be.it.a.site-to-site.VPN.or.fr |
| ff620 | 6f 6d 20 61 20 72 6f 61 64 2d 77 61 72 72 69 6f 72 20 63 6f 6e 6e 65 63 74 69 6e 67 20 74 6f 20 | om.a.road-warrior.connecting.to. |
| ff640 | 61 20 68 75 62 20 73 69 74 65 2e 20 49 4b 45 76 32 2c 20 77 68 65 6e 20 72 75 6e 20 69 6e 20 70 | a.hub.site..IKEv2,.when.run.in.p |
| ff660 | 6f 69 6e 74 2d 74 6f 2d 6d 75 6c 74 69 70 6f 69 6e 74 2c 20 6f 72 20 72 65 6d 6f 74 65 2d 61 63 | oint-to-multipoint,.or.remote-ac |
| ff680 | 63 65 73 73 2f 72 6f 61 64 2d 77 61 72 72 69 6f 72 20 6d 6f 64 65 2c 20 73 65 63 75 72 65 73 20 | cess/road-warrior.mode,.secures. |
| ff6a0 | 74 68 65 20 73 65 72 76 65 72 2d 73 69 64 65 20 77 69 74 68 20 61 6e 6f 74 68 65 72 20 6c 61 79 | the.server-side.with.another.lay |
| ff6c0 | 65 72 20 62 79 20 75 73 69 6e 67 20 61 6e 20 78 35 30 39 20 73 69 67 6e 65 64 20 73 65 72 76 65 | er.by.using.an.x509.signed.serve |
| ff6e0 | 72 20 63 65 72 74 69 66 69 63 61 74 65 2e 00 49 6e 74 65 72 6e 65 74 77 6f 72 6b 20 43 6f 6e 74 | r.certificate..Internetwork.Cont |
| ff700 | 72 6f 6c 00 49 6e 74 65 72 76 61 6c 00 49 6e 74 65 72 76 61 6c 20 28 69 6e 20 73 65 63 6f 6e 64 | rol.Interval.Interval.(in.second |
| ff720 | 73 29 20 66 6f 72 20 73 65 6e 64 69 6e 67 20 6d 61 72 6b 20 6d 65 73 73 61 67 65 73 20 74 6f 20 | s).for.sending.mark.messages.to. |
| ff740 | 74 68 65 20 73 79 73 6c 6f 67 20 69 6e 70 75 74 20 74 6f 20 69 6e 64 69 63 61 74 65 20 74 68 61 | the.syslog.input.to.indicate.tha |
| ff760 | 74 20 74 68 65 20 6c 6f 67 67 69 6e 67 20 73 79 73 74 65 6d 20 69 73 20 66 75 6e 63 74 69 6f 6e | t.the.logging.system.is.function |
| ff780 | 69 6e 67 2e 00 49 6e 74 65 72 76 61 6c 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 00 49 6e | ing..Interval.in.milliseconds.In |
| ff7a0 | 74 65 72 76 61 6c 20 69 6e 20 6d 69 6e 75 74 65 73 20 62 65 74 77 65 65 6e 20 75 70 64 61 74 65 | terval.in.minutes.between.update |
| ff7c0 | 73 20 28 64 65 66 61 75 6c 74 3a 20 36 30 29 00 49 6e 74 72 6f 64 75 63 69 6e 67 20 72 6f 75 74 | s.(default:.60).Introducing.rout |
| ff7e0 | 65 20 72 65 66 6c 65 63 74 6f 72 73 20 72 65 6d 6f 76 65 73 20 74 68 65 20 6e 65 65 64 20 66 6f | e.reflectors.removes.the.need.fo |
| ff800 | 72 20 74 68 65 20 66 75 6c 6c 2d 6d 65 73 68 2e 20 57 68 65 6e 20 79 6f 75 20 63 6f 6e 66 69 67 | r.the.full-mesh..When.you.config |
| ff820 | 75 72 65 20 61 20 72 6f 75 74 65 20 72 65 66 6c 65 63 74 6f 72 20 79 6f 75 20 68 61 76 65 20 74 | ure.a.route.reflector.you.have.t |
| ff840 | 6f 20 74 65 6c 6c 20 74 68 65 20 72 6f 75 74 65 72 20 77 68 65 74 68 65 72 20 74 68 65 20 6f 74 | o.tell.the.router.whether.the.ot |
| ff860 | 68 65 72 20 49 42 47 50 20 72 6f 75 74 65 72 20 69 73 20 61 20 63 6c 69 65 6e 74 20 6f 72 20 6e | her.IBGP.router.is.a.client.or.n |
| ff880 | 6f 6e 2d 63 6c 69 65 6e 74 2e 20 41 20 63 6c 69 65 6e 74 20 69 73 20 61 6e 20 49 42 47 50 20 72 | on-client..A.client.is.an.IBGP.r |
| ff8a0 | 6f 75 74 65 72 20 74 68 61 74 20 74 68 65 20 72 6f 75 74 65 20 72 65 66 6c 65 63 74 6f 72 20 77 | outer.that.the.route.reflector.w |
| ff8c0 | 69 6c 6c 20 e2 80 9c 72 65 66 6c 65 63 74 e2 80 9d 20 72 6f 75 74 65 73 20 74 6f 2c 20 74 68 65 | ill....reflect....routes.to,.the |
| ff8e0 | 20 6e 6f 6e 2d 63 6c 69 65 6e 74 20 69 73 20 6a 75 73 74 20 61 20 72 65 67 75 6c 61 72 20 49 42 | .non-client.is.just.a.regular.IB |
| ff900 | 47 50 20 6e 65 69 67 68 62 6f 72 2e 20 52 6f 75 74 65 20 72 65 66 6c 65 63 74 6f 72 73 20 6d 65 | GP.neighbor..Route.reflectors.me |
| ff920 | 63 68 61 6e 69 73 6d 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 34 34 | chanism.is.described.in.:rfc:`44 |
| ff940 | 35 36 60 20 61 6e 64 20 75 70 64 61 74 65 64 20 62 79 20 3a 72 66 63 3a 60 37 36 30 36 60 2e 00 | 56`.and.updated.by.:rfc:`7606`.. |
| ff960 | 49 6e 74 72 75 73 69 6f 6e 20 44 65 74 65 63 74 69 6f 6e 20 28 49 44 53 29 3a 20 41 6e 61 6c 79 | Intrusion.Detection.(IDS):.Analy |
| ff980 | 7a 65 73 20 6e 65 74 77 6f 72 6b 20 74 72 61 66 66 69 63 20 61 6e 64 20 64 65 74 65 63 74 73 20 | zes.network.traffic.and.detects. |
| ff9a0 | 73 75 73 70 69 63 69 6f 75 73 20 61 63 74 69 76 69 74 69 65 73 2c 20 61 74 74 61 63 6b 73 2c 20 | suspicious.activities,.attacks,. |
| ff9c0 | 61 6e 64 20 6d 61 6c 69 63 69 6f 75 73 20 74 72 61 66 66 69 63 2e 20 49 6e 74 72 75 73 69 6f 6e | and.malicious.traffic..Intrusion |
| ff9e0 | 20 50 72 65 76 65 6e 74 69 6f 6e 20 28 49 50 53 29 3a 20 42 6c 6f 63 6b 73 20 6f 72 20 6d 6f 64 | .Prevention.(IPS):.Blocks.or.mod |
| ffa00 | 69 66 69 65 73 20 73 75 73 70 69 63 69 6f 75 73 20 74 72 61 66 66 69 63 20 69 6e 20 72 65 61 6c | ifies.suspicious.traffic.in.real |
| ffa20 | 2d 74 69 6d 65 2c 20 70 72 65 76 65 6e 74 69 6e 67 20 61 74 74 61 63 6b 73 20 62 65 66 6f 72 65 | -time,.preventing.attacks.before |
| ffa40 | 20 74 68 65 79 20 70 65 6e 65 74 72 61 74 65 20 74 68 65 20 6e 65 74 77 6f 72 6b 2e 20 4e 65 74 | .they.penetrate.the.network..Net |
| ffa60 | 77 6f 72 6b 20 53 65 63 75 72 69 74 79 20 4d 6f 6e 69 74 6f 72 69 6e 67 20 28 4e 53 4d 29 3a 20 | work.Security.Monitoring.(NSM):. |
| ffa80 | 43 6f 6c 6c 65 63 74 73 20 61 6e 64 20 61 6e 61 6c 79 7a 65 73 20 6e 65 74 77 6f 72 6b 20 64 61 | Collects.and.analyzes.network.da |
| ffaa0 | 74 61 20 74 6f 20 64 65 74 65 63 74 20 61 6e 6f 6d 61 6c 69 65 73 20 61 6e 64 20 69 64 65 6e 74 | ta.to.detect.anomalies.and.ident |
| ffac0 | 69 66 79 20 74 68 72 65 61 74 73 2e 20 4d 75 6c 74 69 2d 50 72 6f 74 6f 63 6f 6c 20 53 75 70 70 | ify.threats..Multi-Protocol.Supp |
| ffae0 | 6f 72 74 3a 20 53 75 72 69 63 61 74 61 20 73 75 70 70 6f 72 74 73 20 61 6e 61 6c 79 73 69 73 20 | ort:.Suricata.supports.analysis. |
| ffb00 | 6f 66 20 76 61 72 69 6f 75 73 20 6e 65 74 77 6f 72 6b 20 70 72 6f 74 6f 63 6f 6c 73 20 73 75 63 | of.various.network.protocols.suc |
| ffb20 | 68 20 61 73 20 48 54 54 50 2c 20 46 54 50 2c 20 53 4d 42 2c 20 61 6e 64 20 6d 61 6e 79 20 6f 74 | h.as.HTTP,.FTP,.SMB,.and.many.ot |
| ffb40 | 68 65 72 73 2e 20 49 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 65 2c 20 74 68 65 | hers..In.configuration.mode,.the |
| ffb60 | 20 63 6f 6d 6d 61 6e 64 73 20 61 72 65 20 61 73 20 66 6f 6c 6c 6f 77 73 3a 00 49 74 20 64 69 73 | .commands.are.as.follows:.It.dis |
| ffb80 | 61 62 6c 65 73 20 74 72 61 6e 73 70 61 72 65 6e 74 20 68 75 67 65 20 70 61 67 65 73 2c 20 61 6e | ables.transparent.huge.pages,.an |
| ffba0 | 64 20 61 75 74 6f 6d 61 74 69 63 20 4e 55 4d 41 20 62 61 6c 61 6e 63 69 6e 67 2e 20 49 74 20 61 | d.automatic.NUMA.balancing..It.a |
| ffbc0 | 6c 73 6f 20 75 73 65 73 20 63 70 75 70 6f 77 65 72 20 74 6f 20 73 65 74 20 74 68 65 20 70 65 72 | lso.uses.cpupower.to.set.the.per |
| ffbe0 | 66 6f 72 6d 61 6e 63 65 20 63 70 75 66 72 65 71 20 67 6f 76 65 72 6e 6f 72 2c 20 61 6e 64 20 72 | formance.cpufreq.governor,.and.r |
| ffc00 | 65 71 75 65 73 74 73 20 61 20 63 70 75 5f 64 6d 61 5f 6c 61 74 65 6e 63 79 20 76 61 6c 75 65 20 | equests.a.cpu_dma_latency.value. |
| ffc20 | 6f 66 20 31 2e 20 49 74 20 61 6c 73 6f 20 73 65 74 73 20 62 75 73 79 5f 72 65 61 64 20 61 6e 64 | of.1..It.also.sets.busy_read.and |
| ffc40 | 20 62 75 73 79 5f 70 6f 6c 6c 20 74 69 6d 65 73 20 74 6f 20 35 30 20 75 73 2c 20 61 6e 64 20 74 | .busy_poll.times.to.50.us,.and.t |
| ffc60 | 63 70 5f 66 61 73 74 6f 70 65 6e 20 74 6f 20 33 2e 00 49 74 20 65 6e 61 62 6c 65 73 20 74 72 61 | cp_fastopen.to.3..It.enables.tra |
| ffc80 | 6e 73 70 61 72 65 6e 74 20 68 75 67 65 20 70 61 67 65 73 2c 20 61 6e 64 20 75 73 65 73 20 63 70 | nsparent.huge.pages,.and.uses.cp |
| ffca0 | 75 70 6f 77 65 72 20 74 6f 20 73 65 74 20 74 68 65 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 63 70 | upower.to.set.the.performance.cp |
| ffcc0 | 75 66 72 65 71 20 67 6f 76 65 72 6e 6f 72 2e 20 49 74 20 61 6c 73 6f 20 73 65 74 73 20 60 60 6b | ufreq.governor..It.also.sets.``k |
| ffce0 | 65 72 6e 65 6c 2e 73 63 68 65 64 5f 6d 69 6e 5f 67 72 61 6e 75 6c 61 72 69 74 79 5f 6e 73 60 60 | ernel.sched_min_granularity_ns`` |
| ffd00 | 20 74 6f 20 31 30 20 75 73 2c 20 60 60 6b 65 72 6e 65 6c 2e 73 63 68 65 64 5f 77 61 6b 65 75 70 | .to.10.us,.``kernel.sched_wakeup |
| ffd20 | 5f 67 72 61 6e 75 6c 61 72 69 74 79 5f 6e 73 60 60 20 74 6f 20 31 35 20 75 73 73 2c 20 61 6e 64 | _granularity_ns``.to.15.uss,.and |
| ffd40 | 20 60 60 76 6d 2e 64 69 72 74 79 5f 72 61 74 69 6f 60 60 20 74 6f 20 34 30 25 2e 00 49 74 20 67 | .``vm.dirty_ratio``.to.40%..It.g |
| ffd60 | 65 6e 65 72 61 74 65 73 20 74 68 65 20 6b 65 79 70 61 69 72 2c 20 77 68 69 63 68 20 69 6e 63 6c | enerates.the.keypair,.which.incl |
| ffd80 | 75 64 65 73 20 74 68 65 20 70 75 62 6c 69 63 20 61 6e 64 20 70 72 69 76 61 74 65 20 70 61 72 74 | udes.the.public.and.private.part |
| ffda0 | 73 2e 20 54 68 65 20 6b 65 79 20 69 73 20 6e 6f 74 20 73 74 6f 72 65 64 20 6f 6e 20 74 68 65 20 | s..The.key.is.not.stored.on.the. |
| ffdc0 | 73 79 73 74 65 6d 20 2d 20 6f 6e 6c 79 20 61 20 6b 65 79 70 61 69 72 20 69 73 20 67 65 6e 65 72 | system.-.only.a.keypair.is.gener |
| ffde0 | 61 74 65 64 2e 00 49 74 20 68 61 6e 64 73 20 6f 75 74 20 70 72 65 66 69 78 65 73 20 60 60 32 30 | ated..It.hands.out.prefixes.``20 |
| ffe00 | 30 31 3a 64 62 38 3a 30 3a 31 30 3a 3a 2f 36 34 60 60 20 74 68 72 6f 75 67 68 20 60 60 32 30 30 | 01:db8:0:10::/64``.through.``200 |
| ffe20 | 31 3a 64 62 38 3a 30 3a 31 66 3a 3a 2f 36 34 60 60 2e 00 49 74 20 68 65 6c 70 73 20 74 6f 20 73 | 1:db8:0:1f::/64``..It.helps.to.s |
| ffe40 | 75 70 70 6f 72 74 20 61 73 20 48 45 4c 50 45 52 20 6f 6e 6c 79 20 66 6f 72 20 70 6c 61 6e 6e 65 | upport.as.HELPER.only.for.planne |
| ffe60 | 64 20 72 65 73 74 61 72 74 73 2e 00 49 74 20 68 65 6c 70 73 20 74 6f 20 74 68 69 6e 6b 20 6f 66 | d.restarts..It.helps.to.think.of |
| ffe80 | 20 74 68 65 20 73 79 6e 74 61 78 20 61 73 3a 20 28 73 65 65 20 62 65 6c 6f 77 29 2e 20 54 68 65 | .the.syntax.as:.(see.below)..The |
| ffea0 | 20 27 72 75 6c 65 2d 73 65 74 27 20 73 68 6f 75 6c 64 20 62 65 20 77 72 69 74 74 65 6e 20 66 72 | .'rule-set'.should.be.written.fr |
| ffec0 | 6f 6d 20 74 68 65 20 70 65 72 73 70 65 63 74 69 76 65 20 6f 66 3a 20 2a 53 6f 75 72 63 65 20 5a | om.the.perspective.of:.*Source.Z |
| ffee0 | 6f 6e 65 2a 2d 74 6f 2d 3e 2a 44 65 73 74 69 6e 61 74 69 6f 6e 20 5a 6f 6e 65 2a 00 49 74 20 69 | one*-to->*Destination.Zone*.It.i |
| fff00 | 73 20 63 6f 6d 70 61 74 69 62 6c 65 20 77 69 74 68 20 43 69 73 63 6f 20 28 52 29 20 41 6e 79 43 | s.compatible.with.Cisco.(R).AnyC |
| fff20 | 6f 6e 6e 65 63 74 20 28 52 29 20 63 6c 69 65 6e 74 73 2e 00 49 74 20 69 73 20 63 6f 6e 6e 65 63 | onnect.(R).clients..It.is.connec |
| fff40 | 74 65 64 20 74 6f 20 60 60 65 74 68 31 60 60 00 49 74 20 69 73 20 63 6f 6e 6e 65 63 74 65 64 20 | ted.to.``eth1``.It.is.connected. |
| fff60 | 74 6f 20 60 60 65 74 68 31 60 60 2e 00 49 74 20 69 73 20 68 69 67 68 6c 79 20 72 65 63 6f 6d 6d | to.``eth1``..It.is.highly.recomm |
| fff80 | 65 6e 64 65 64 20 74 6f 20 75 73 65 20 53 53 48 20 6b 65 79 20 61 75 74 68 65 6e 74 69 63 61 74 | ended.to.use.SSH.key.authenticat |
| fffa0 | 69 6f 6e 2e 20 42 79 20 64 65 66 61 75 6c 74 20 74 68 65 72 65 20 69 73 20 6f 6e 6c 79 20 6f 6e | ion..By.default.there.is.only.on |
| fffc0 | 65 20 75 73 65 72 20 28 60 60 76 79 6f 73 60 60 29 2c 20 61 6e 64 20 79 6f 75 20 63 61 6e 20 61 | e.user.(``vyos``),.and.you.can.a |
| fffe0 | 73 73 69 67 6e 20 61 6e 79 20 6e 75 6d 62 65 72 20 6f 66 20 6b 65 79 73 20 74 6f 20 74 68 61 74 | ssign.any.number.of.keys.to.that |
| 100000 | 20 75 73 65 72 2e 20 59 6f 75 20 63 61 6e 20 67 65 6e 65 72 61 74 65 20 61 20 73 73 68 20 6b 65 | .user..You.can.generate.a.ssh.ke |
| 100020 | 79 20 77 69 74 68 20 74 68 65 20 60 60 73 73 68 2d 6b 65 79 67 65 6e 60 60 20 63 6f 6d 6d 61 6e | y.with.the.``ssh-keygen``.comman |
| 100040 | 64 20 6f 6e 20 79 6f 75 72 20 6c 6f 63 61 6c 20 6d 61 63 68 69 6e 65 2c 20 77 68 69 63 68 20 77 | d.on.your.local.machine,.which.w |
| 100060 | 69 6c 6c 20 28 62 79 20 64 65 66 61 75 6c 74 29 20 73 61 76 65 20 69 74 20 61 73 20 60 60 7e 2f | ill.(by.default).save.it.as.``~/ |
| 100080 | 2e 73 73 68 2f 69 64 5f 72 73 61 2e 70 75 62 60 60 2e 00 49 74 20 69 73 20 68 69 67 68 6c 79 20 | .ssh/id_rsa.pub``..It.is.highly. |
| 1000a0 | 72 65 63 6f 6d 6d 65 6e 64 65 64 20 74 6f 20 75 73 65 20 74 68 65 20 73 61 6d 65 20 61 64 64 72 | recommended.to.use.the.same.addr |
| 1000c0 | 65 73 73 20 66 6f 72 20 62 6f 74 68 20 74 68 65 20 4c 44 50 20 72 6f 75 74 65 72 2d 69 64 20 61 | ess.for.both.the.LDP.router-id.a |
| 1000e0 | 6e 64 20 74 68 65 20 64 69 73 63 6f 76 65 72 79 20 74 72 61 6e 73 70 6f 72 74 20 61 64 64 72 65 | nd.the.discovery.transport.addre |
| 100100 | 73 73 2c 20 62 75 74 20 66 6f 72 20 56 79 4f 53 20 4d 50 4c 53 20 4c 44 50 20 74 6f 20 77 6f 72 | ss,.but.for.VyOS.MPLS.LDP.to.wor |
| 100120 | 6b 20 62 6f 74 68 20 70 61 72 61 6d 65 74 65 72 73 20 6d 75 73 74 20 62 65 20 65 78 70 6c 69 63 | k.both.parameters.must.be.explic |
| 100140 | 69 74 6c 79 20 73 65 74 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 49 | itly.set.in.the.configuration..I |
| 100160 | 74 20 69 73 20 69 6d 70 6f 72 74 61 6e 74 20 74 6f 20 6e 6f 74 65 20 74 68 61 74 20 77 68 65 6e | t.is.important.to.note.that.when |
| 100180 | 20 63 72 65 61 74 69 6e 67 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 74 68 61 74 20 74 68 | .creating.firewall.rules.that.th |
| 1001a0 | 65 20 44 4e 41 54 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 6f 63 63 75 72 73 20 2a 2a 62 65 66 6f | e.DNAT.translation.occurs.**befo |
| 1001c0 | 72 65 2a 2a 20 74 72 61 66 66 69 63 20 74 72 61 76 65 72 73 65 73 20 74 68 65 20 66 69 72 65 77 | re**.traffic.traverses.the.firew |
| 1001e0 | 61 6c 6c 2e 20 49 6e 20 6f 74 68 65 72 20 77 6f 72 64 73 2c 20 74 68 65 20 64 65 73 74 69 6e 61 | all..In.other.words,.the.destina |
| 100200 | 74 69 6f 6e 20 61 64 64 72 65 73 73 20 68 61 73 20 61 6c 72 65 61 64 79 20 62 65 65 6e 20 74 72 | tion.address.has.already.been.tr |
| 100220 | 61 6e 73 6c 61 74 65 64 20 74 6f 20 31 39 32 2e 31 36 38 2e 30 2e 31 30 30 2e 00 49 74 20 69 73 | anslated.to.192.168.0.100..It.is |
| 100240 | 20 69 6d 70 6f 72 74 61 6e 74 20 74 6f 20 6e 6f 74 65 20 74 68 61 74 20 77 68 65 6e 20 63 72 65 | .important.to.note.that.when.cre |
| 100260 | 61 74 69 6e 67 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 2c 20 74 68 65 20 44 4e 41 54 20 74 | ating.firewall.rules,.the.DNAT.t |
| 100280 | 72 61 6e 73 6c 61 74 69 6f 6e 20 6f 63 63 75 72 73 20 2a 2a 62 65 66 6f 72 65 2a 2a 20 74 72 61 | ranslation.occurs.**before**.tra |
| 1002a0 | 66 66 69 63 20 74 72 61 76 65 72 73 65 73 20 74 68 65 20 66 69 72 65 77 61 6c 6c 2e 20 49 6e 20 | ffic.traverses.the.firewall..In. |
| 1002c0 | 6f 74 68 65 72 20 77 6f 72 64 73 2c 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 | other.words,.the.destination.add |
| 1002e0 | 72 65 73 73 20 68 61 73 20 61 6c 72 65 61 64 79 20 62 65 65 6e 20 74 72 61 6e 73 6c 61 74 65 64 | ress.has.already.been.translated |
| 100300 | 20 74 6f 20 31 39 32 2e 31 36 38 2e 30 2e 31 30 30 2e 00 49 74 20 69 73 20 6e 6f 74 20 73 75 66 | .to.192.168.0.100..It.is.not.suf |
| 100320 | 66 69 63 69 65 6e 74 20 74 6f 20 6f 6e 6c 79 20 63 6f 6e 66 69 67 75 72 65 20 61 20 4c 33 56 50 | ficient.to.only.configure.a.L3VP |
| 100340 | 4e 20 56 52 46 73 20 62 75 74 20 4c 33 56 50 4e 20 56 52 46 73 20 6d 75 73 74 20 62 65 20 6d 61 | N.VRFs.but.L3VPN.VRFs.must.be.ma |
| 100360 | 69 6e 74 61 69 6e 65 64 2c 20 74 6f 6f 2e 46 6f 72 20 4c 33 56 50 4e 20 56 52 46 20 6d 61 69 6e | intained,.too.For.L3VPN.VRF.main |
| 100380 | 74 65 6e 61 6e 63 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6f 70 65 72 61 74 69 6f 6e 61 | tenance.the.following.operationa |
| 1003a0 | 6c 20 63 6f 6d 6d 61 6e 64 73 20 61 72 65 20 69 6e 20 70 6c 61 63 65 2e 00 49 74 20 69 73 20 6e | l.commands.are.in.place..It.is.n |
| 1003c0 | 6f 74 20 73 75 66 66 69 63 69 65 6e 74 20 74 6f 20 6f 6e 6c 79 20 63 6f 6e 66 69 67 75 72 65 20 | ot.sufficient.to.only.configure. |
| 1003e0 | 61 20 56 52 46 20 62 75 74 20 56 52 46 73 20 6d 75 73 74 20 62 65 20 6d 61 69 6e 74 61 69 6e 65 | a.VRF.but.VRFs.must.be.maintaine |
| 100400 | 64 2c 20 74 6f 6f 2e 20 46 6f 72 20 56 52 46 20 6d 61 69 6e 74 65 6e 61 6e 63 65 20 74 68 65 20 | d,.too..For.VRF.maintenance.the. |
| 100420 | 66 6f 6c 6c 6f 77 69 6e 67 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 73 20 61 | following.operational.commands.a |
| 100440 | 72 65 20 69 6e 20 70 6c 61 63 65 2e 00 49 74 20 69 73 20 6e 6f 74 20 76 61 6c 69 64 20 74 6f 20 | re.in.place..It.is.not.valid.to. |
| 100460 | 75 73 65 20 74 68 65 20 60 76 69 66 20 31 60 20 6f 70 74 69 6f 6e 20 66 6f 72 20 56 4c 41 4e 20 | use.the.`vif.1`.option.for.VLAN. |
| 100480 | 61 77 61 72 65 20 62 72 69 64 67 65 73 20 62 65 63 61 75 73 65 20 56 4c 41 4e 20 61 77 61 72 65 | aware.bridges.because.VLAN.aware |
| 1004a0 | 20 62 72 69 64 67 65 73 20 61 73 73 75 6d 65 20 74 68 61 74 20 61 6c 6c 20 75 6e 6c 61 62 65 6c | .bridges.assume.that.all.unlabel |
| 1004c0 | 65 64 20 70 61 63 6b 65 74 73 20 62 65 6c 6f 6e 67 20 74 6f 20 74 68 65 20 64 65 66 61 75 6c 74 | ed.packets.belong.to.the.default |
| 1004e0 | 20 56 4c 41 4e 20 31 20 6d 65 6d 62 65 72 20 61 6e 64 20 74 68 61 74 20 74 68 65 20 56 4c 41 4e | .VLAN.1.member.and.that.the.VLAN |
| 100500 | 20 49 44 20 6f 66 20 74 68 65 20 62 72 69 64 67 65 27 73 20 70 61 72 65 6e 74 20 69 6e 74 65 72 | .ID.of.the.bridge's.parent.inter |
| 100520 | 66 61 63 65 20 69 73 20 61 6c 77 61 79 73 20 31 00 49 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 | face.is.always.1.It.is.possible. |
| 100540 | 74 6f 20 65 6e 68 61 6e 63 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 65 63 75 72 69 | to.enhance.authentication.securi |
| 100560 | 74 79 20 62 79 20 75 73 69 6e 67 20 74 68 65 20 3a 61 62 62 72 3a 60 32 46 41 20 28 54 77 6f 2d | ty.by.using.the.:abbr:`2FA.(Two- |
| 100580 | 66 61 63 74 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 29 60 2f 3a 61 62 62 72 3a 60 4d | factor.authentication)`/:abbr:`M |
| 1005a0 | 46 41 20 28 4d 75 6c 74 69 2d 66 61 63 74 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 29 | FA.(Multi-factor.authentication) |
| 1005c0 | 60 20 66 65 61 74 75 72 65 20 74 6f 67 65 74 68 65 72 20 77 69 74 68 20 3a 61 62 62 72 3a 60 4f | `.feature.together.with.:abbr:`O |
| 1005e0 | 54 50 20 28 4f 6e 65 2d 54 69 6d 65 2d 50 61 64 29 60 20 6f 6e 20 56 79 4f 53 2e 20 3a 61 62 62 | TP.(One-Time-Pad)`.on.VyOS..:abb |
| 100600 | 72 3a 60 32 46 41 20 28 54 77 6f 2d 66 61 63 74 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f | r:`2FA.(Two-factor.authenticatio |
| 100620 | 6e 29 60 2f 3a 61 62 62 72 3a 60 4d 46 41 20 28 4d 75 6c 74 69 2d 66 61 63 74 6f 72 20 61 75 74 | n)`/:abbr:`MFA.(Multi-factor.aut |
| 100640 | 68 65 6e 74 69 63 61 74 69 6f 6e 29 60 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 64 65 | hentication)`.is.configured.inde |
| 100660 | 70 65 6e 64 65 6e 74 6c 79 20 70 65 72 20 65 61 63 68 20 75 73 65 72 2e 20 49 66 20 61 6e 20 4f | pendently.per.each.user..If.an.O |
| 100680 | 54 50 20 6b 65 79 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 66 6f 72 20 61 20 75 73 65 72 2c | TP.key.is.configured.for.a.user, |
| 1006a0 | 20 32 46 41 2f 4d 46 41 20 69 73 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 65 6e 61 62 6c 65 | .2FA/MFA.is.automatically.enable |
| 1006c0 | 64 20 66 6f 72 20 74 68 61 74 20 70 61 72 74 69 63 75 6c 61 72 20 75 73 65 72 2e 20 49 66 20 61 | d.for.that.particular.user..If.a |
| 1006e0 | 20 75 73 65 72 20 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 20 61 6e 20 4f 54 50 20 6b 65 79 20 63 | .user.does.not.have.an.OTP.key.c |
| 100700 | 6f 6e 66 69 67 75 72 65 64 2c 20 74 68 65 72 65 20 69 73 20 6e 6f 20 32 46 41 2f 4d 46 41 20 63 | onfigured,.there.is.no.2FA/MFA.c |
| 100720 | 68 65 63 6b 20 66 6f 72 20 74 68 61 74 20 75 73 65 72 2e 00 49 74 20 69 73 20 70 6f 73 73 69 62 | heck.for.that.user..It.is.possib |
| 100740 | 6c 65 20 74 6f 20 70 65 72 6d 69 74 20 42 47 50 20 69 6e 73 74 61 6c 6c 20 56 50 4e 20 70 72 65 | le.to.permit.BGP.install.VPN.pre |
| 100760 | 66 69 78 65 73 20 77 69 74 68 6f 75 74 20 74 72 61 6e 73 70 6f 72 74 20 6c 61 62 65 6c 73 2e 20 | fixes.without.transport.labels.. |
| 100780 | 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 69 6c 6c 20 69 6e 73 74 61 6c 6c 20 | This.configuration.will.install. |
| 1007a0 | 56 50 4e 20 70 72 65 66 69 78 65 73 20 6f 72 69 67 69 6e 61 74 65 64 20 66 72 6f 6d 20 61 6e 20 | VPN.prefixes.originated.from.an. |
| 1007c0 | 65 2d 62 67 70 20 73 65 73 73 69 6f 6e 2c 20 61 6e 64 20 77 69 74 68 20 74 68 65 20 6e 65 78 74 | e-bgp.session,.and.with.the.next |
| 1007e0 | 2d 68 6f 70 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 2e 00 49 74 20 69 73 20 70 | -hop.directly.connected..It.is.p |
| 100800 | 6f 73 73 69 62 6c 65 20 74 6f 20 73 70 65 63 69 66 79 20 61 20 73 74 61 74 69 63 20 72 6f 75 74 | ossible.to.specify.a.static.rout |
| 100820 | 65 20 66 6f 72 20 69 70 76 36 20 70 72 65 66 69 78 65 73 20 75 73 69 6e 67 20 61 6e 20 53 52 76 | e.for.ipv6.prefixes.using.an.SRv |
| 100840 | 36 20 73 65 67 6d 65 6e 74 73 20 69 6e 73 74 72 75 63 74 69 6f 6e 2e 20 54 68 65 20 60 2f 60 20 | 6.segments.instruction..The.`/`. |
| 100860 | 73 65 70 61 72 61 74 6f 72 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 73 70 65 63 69 66 79 | separator.can.be.used.to.specify |
| 100880 | 20 6d 75 6c 74 69 70 6c 65 20 73 65 67 6d 65 6e 74 20 69 6e 73 74 72 75 63 74 69 6f 6e 73 2e 00 | .multiple.segment.instructions.. |
| 1008a0 | 49 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 75 73 65 20 65 69 74 68 65 72 20 4d 75 6c | It.is.possible.to.use.either.Mul |
| 1008c0 | 74 69 63 61 73 74 20 6f 72 20 55 6e 69 63 61 73 74 20 74 6f 20 73 79 6e 63 20 63 6f 6e 6e 74 72 | ticast.or.Unicast.to.sync.conntr |
| 1008e0 | 61 63 6b 20 74 72 61 66 66 69 63 2e 20 4d 6f 73 74 20 65 78 61 6d 70 6c 65 73 20 62 65 6c 6f 77 | ack.traffic..Most.examples.below |
| 100900 | 20 73 68 6f 77 20 4d 75 6c 74 69 63 61 73 74 2c 20 62 75 74 20 75 6e 69 63 61 73 74 20 63 61 6e | .show.Multicast,.but.unicast.can |
| 100920 | 20 62 65 20 73 70 65 63 69 66 69 65 64 20 62 79 20 75 73 69 6e 67 20 74 68 65 20 22 70 65 65 72 | .be.specified.by.using.the."peer |
| 100940 | 22 20 6b 65 79 77 6f 72 6b 20 61 66 74 65 72 20 74 68 65 20 73 70 65 63 69 66 69 63 65 64 20 69 | ".keywork.after.the.specificed.i |
| 100960 | 6e 74 65 72 66 61 63 65 2c 20 61 73 20 69 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 | nterface,.as.in.the.following.ex |
| 100980 | 61 6d 70 6c 65 3a 00 49 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 75 73 65 20 65 69 74 | ample:.It.is.possible.to.use.eit |
| 1009a0 | 68 65 72 20 4d 75 6c 74 69 63 61 73 74 20 6f 72 20 55 6e 69 63 61 73 74 20 74 6f 20 73 79 6e 63 | her.Multicast.or.Unicast.to.sync |
| 1009c0 | 20 63 6f 6e 6e 74 72 61 63 6b 20 74 72 61 66 66 69 63 2e 20 4d 6f 73 74 20 65 78 61 6d 70 6c 65 | .conntrack.traffic..Most.example |
| 1009e0 | 73 20 62 65 6c 6f 77 20 73 68 6f 77 20 4d 75 6c 74 69 63 61 73 74 2c 20 62 75 74 20 75 6e 69 63 | s.below.show.Multicast,.but.unic |
| 100a00 | 61 73 74 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 62 79 20 75 73 69 6e 67 20 74 68 | ast.can.be.specified.by.using.th |
| 100a20 | 65 20 22 70 65 65 72 22 20 6b 65 79 77 6f 72 6b 20 61 66 74 65 72 20 74 68 65 20 73 70 65 63 69 | e."peer".keywork.after.the.speci |
| 100a40 | 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 2c 20 61 73 20 69 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 | fied.interface,.as.in.the.follow |
| 100a60 | 69 6e 67 20 65 78 61 6d 70 6c 65 3a 00 49 74 20 69 73 20 76 65 72 79 20 65 61 73 79 20 74 6f 20 | ing.example:.It.is.very.easy.to. |
| 100a80 | 6d 69 73 63 6f 6e 66 69 67 75 72 65 20 6d 75 6c 74 69 63 61 73 74 20 72 65 70 65 61 74 69 6e 67 | misconfigure.multicast.repeating |
| 100aa0 | 20 69 66 20 79 6f 75 20 68 61 76 65 20 6d 75 6c 74 69 70 6c 65 20 4e 48 53 65 73 2e 00 49 74 20 | .if.you.have.multiple.NHSes..It. |
| 100ac0 | 75 73 65 73 20 61 20 73 69 6e 67 6c 65 20 54 43 50 20 6f 72 20 55 44 50 20 63 6f 6e 6e 65 63 74 | uses.a.single.TCP.or.UDP.connect |
| 100ae0 | 69 6f 6e 20 61 6e 64 20 64 6f 65 73 20 6e 6f 74 20 72 65 6c 79 20 6f 6e 20 70 61 63 6b 65 74 20 | ion.and.does.not.rely.on.packet. |
| 100b00 | 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 65 73 2c 20 73 6f 20 69 74 20 77 69 6c 6c 20 77 6f 72 | source.addresses,.so.it.will.wor |
| 100b20 | 6b 20 65 76 65 6e 20 74 68 72 6f 75 67 68 20 61 20 64 6f 75 62 6c 65 20 4e 41 54 3a 20 70 65 72 | k.even.through.a.double.NAT:.per |
| 100b40 | 66 65 63 74 20 66 6f 72 20 70 75 62 6c 69 63 20 68 6f 74 73 70 6f 74 73 20 61 6e 64 20 73 75 63 | fect.for.public.hotspots.and.suc |
| 100b60 | 68 00 49 74 20 75 73 65 73 20 61 20 73 74 6f 63 68 61 73 74 69 63 20 6d 6f 64 65 6c 20 74 6f 20 | h.It.uses.a.stochastic.model.to. |
| 100b80 | 63 6c 61 73 73 69 66 79 20 69 6e 63 6f 6d 69 6e 67 20 70 61 63 6b 65 74 73 20 69 6e 74 6f 20 64 | classify.incoming.packets.into.d |
| 100ba0 | 69 66 66 65 72 65 6e 74 20 66 6c 6f 77 73 20 61 6e 64 20 69 73 20 75 73 65 64 20 74 6f 20 70 72 | ifferent.flows.and.is.used.to.pr |
| 100bc0 | 6f 76 69 64 65 20 61 20 66 61 69 72 20 73 68 61 72 65 20 6f 66 20 74 68 65 20 62 61 6e 64 77 69 | ovide.a.fair.share.of.the.bandwi |
| 100be0 | 64 74 68 20 74 6f 20 61 6c 6c 20 74 68 65 20 66 6c 6f 77 73 20 75 73 69 6e 67 20 74 68 65 20 71 | dth.to.all.the.flows.using.the.q |
| 100c00 | 75 65 75 65 2e 20 45 61 63 68 20 66 6c 6f 77 20 69 73 20 6d 61 6e 61 67 65 64 20 62 79 20 74 68 | ueue..Each.flow.is.managed.by.th |
| 100c20 | 65 20 43 6f 44 65 6c 20 71 75 65 75 69 6e 67 20 20 64 69 73 63 69 70 6c 69 6e 65 2e 20 52 65 6f | e.CoDel.queuing..discipline..Reo |
| 100c40 | 72 64 65 72 69 6e 67 20 77 69 74 68 69 6e 20 61 20 66 6c 6f 77 20 69 73 20 61 76 6f 69 64 65 64 | rdering.within.a.flow.is.avoided |
| 100c60 | 20 73 69 6e 63 65 20 43 6f 64 65 6c 20 69 6e 74 65 72 6e 61 6c 6c 79 20 75 73 65 73 20 61 20 46 | .since.Codel.internally.uses.a.F |
| 100c80 | 49 46 4f 20 71 75 65 75 65 2e 00 49 74 20 77 69 6c 6c 20 62 65 20 63 6f 6d 62 69 6e 65 64 20 77 | IFO.queue..It.will.be.combined.w |
| 100ca0 | 69 74 68 20 74 68 65 20 64 65 6c 65 67 61 74 65 64 20 70 72 65 66 69 78 20 61 6e 64 20 74 68 65 | ith.the.delegated.prefix.and.the |
| 100cc0 | 20 73 6c 61 2d 69 64 20 74 6f 20 66 6f 72 6d 20 61 20 63 6f 6d 70 6c 65 74 65 20 69 6e 74 65 72 | .sla-id.to.form.a.complete.inter |
| 100ce0 | 66 61 63 65 20 61 64 64 72 65 73 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 74 6f 20 | face.address..The.default.is.to. |
| 100d00 | 75 73 65 20 74 68 65 20 45 55 49 2d 36 34 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 69 6e | use.the.EUI-64.address.of.the.in |
| 100d20 | 74 65 72 66 61 63 65 2e 00 49 74 27 73 20 65 61 73 79 20 74 6f 20 73 65 74 75 70 20 61 6e 64 20 | terface..It's.easy.to.setup.and. |
| 100d40 | 6f 66 66 65 72 73 20 76 65 72 79 20 66 6c 65 78 69 62 6c 65 20 73 70 6c 69 74 20 74 75 6e 6e 65 | offers.very.flexible.split.tunne |
| 100d60 | 6c 69 6e 67 00 49 74 27 73 20 6e 6f 74 20 6c 69 6b 65 6c 79 20 74 68 61 74 20 61 6e 79 6f 6e 65 | ling.It's.not.likely.that.anyone |
| 100d80 | 20 77 69 6c 6c 20 6e 65 65 64 20 69 74 20 61 6e 79 20 74 69 6d 65 20 73 6f 6f 6e 2c 20 62 75 74 | .will.need.it.any.time.soon,.but |
| 100da0 | 20 69 74 20 64 6f 65 73 20 65 78 69 73 74 2e 00 49 74 27 73 20 73 6c 6f 77 65 72 20 74 68 61 6e | .it.does.exist..It's.slower.than |
| 100dc0 | 20 49 50 73 65 63 20 64 75 65 20 74 6f 20 68 69 67 68 65 72 20 70 72 6f 74 6f 63 6f 6c 20 6f 76 | .IPsec.due.to.higher.protocol.ov |
| 100de0 | 65 72 68 65 61 64 20 61 6e 64 20 74 68 65 20 66 61 63 74 20 69 74 20 72 75 6e 73 20 69 6e 20 75 | erhead.and.the.fact.it.runs.in.u |
| 100e00 | 73 65 72 20 6d 6f 64 65 20 77 68 69 6c 65 20 49 50 73 65 63 2c 20 6f 6e 20 4c 69 6e 75 78 2c 20 | ser.mode.while.IPsec,.on.Linux,. |
| 100e20 | 69 73 20 69 6e 20 6b 65 72 6e 65 6c 20 6d 6f 64 65 00 49 74 27 73 20 74 69 6d 65 20 74 6f 20 63 | is.in.kernel.mode.It's.time.to.c |
| 100e40 | 68 65 63 6b 20 63 6f 6e 6e 74 72 61 63 6b 20 74 61 62 6c 65 2c 20 74 6f 20 73 65 65 20 69 66 20 | heck.conntrack.table,.to.see.if. |
| 100e60 | 61 6e 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 61 73 20 61 63 63 65 70 74 65 64 2c 20 61 6e 64 | any.connection.was.accepted,.and |
| 100e80 | 20 69 66 20 77 61 73 20 70 72 6f 70 65 72 6c 79 20 6f 66 66 6c 6f 61 64 65 64 00 49 74 27 73 20 | .if.was.properly.offloaded.It's. |
| 100ea0 | 74 69 6d 65 20 74 6f 20 63 68 65 63 6b 20 74 68 65 20 63 6f 6e 6e 74 72 61 63 6b 20 74 61 62 6c | time.to.check.the.conntrack.tabl |
| 100ec0 | 65 2c 20 74 6f 20 73 65 65 20 69 66 20 61 6e 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 77 65 72 | e,.to.see.if.any.connections.wer |
| 100ee0 | 65 20 61 63 63 65 70 74 65 64 2c 20 61 6e 64 20 69 66 20 69 74 20 77 61 73 20 70 72 6f 70 65 72 | e.accepted,.and.if.it.was.proper |
| 100f00 | 6c 79 20 6f 66 66 6c 6f 61 64 65 64 00 4a 6f 69 6e 20 61 20 67 69 76 65 6e 20 56 52 46 2e 20 54 | ly.offloaded.Join.a.given.VRF..T |
| 100f20 | 68 69 73 20 77 69 6c 6c 20 6f 70 65 6e 20 61 20 6e 65 77 20 73 75 62 73 68 65 6c 6c 20 77 69 74 | his.will.open.a.new.subshell.wit |
| 100f40 | 68 69 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 56 52 46 2e 00 4a 75 6d 70 20 74 6f 20 61 | hin.the.specified.VRF..Jump.to.a |
| 100f60 | 20 64 69 66 66 65 72 65 6e 74 20 72 75 6c 65 20 69 6e 20 74 68 69 73 20 72 6f 75 74 65 2d 6d 61 | .different.rule.in.this.route-ma |
| 100f80 | 70 20 6f 6e 20 61 20 6d 61 74 63 68 2e 00 4a 75 6e 69 70 65 72 20 45 58 20 53 77 69 74 63 68 00 | p.on.a.match..Juniper.EX.Switch. |
| 100fa0 | 4b 65 72 6e 65 6c 00 4b 65 72 6e 65 6c 20 50 61 72 61 6d 65 74 65 72 73 3a 20 6b 65 72 6e 65 6c | Kernel.Kernel.Parameters:.kernel |
| 100fc0 | 2e 6d 73 67 6d 61 78 2c 20 6b 65 72 6e 65 6c 2e 6d 73 67 6d 6e 62 2c 20 6b 65 72 6e 65 6c 2e 6d | .msgmax,.kernel.msgmnb,.kernel.m |
| 100fe0 | 73 67 6d 6e 69 2c 20 6b 65 72 6e 65 6c 2e 73 65 6d 2c 20 6b 65 72 6e 65 6c 2e 73 68 6d 61 6c 6c | sgmni,.kernel.sem,.kernel.shmall |
| 101000 | 2c 20 6b 65 72 6e 65 6c 2e 73 68 6d 6d 61 78 2c 20 6b 65 72 6e 65 6c 2e 73 68 6d 6d 6e 69 2c 20 | ,.kernel.shmmax,.kernel.shmmni,. |
| 101020 | 6b 65 72 6e 65 6c 2e 73 68 6d 5f 72 6d 69 64 5f 66 6f 72 63 65 64 00 4b 65 72 6e 65 6c 20 6d 65 | kernel.shm_rmid_forced.Kernel.me |
| 101040 | 73 73 61 67 65 73 00 4b 65 79 20 42 61 73 65 64 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 00 | ssages.Key.Based.Authentication. |
| 101060 | 4b 65 79 20 47 65 6e 65 72 61 74 69 6f 6e 00 4b 65 79 20 4d 61 6e 61 67 65 6d 65 6e 74 00 4b 65 | Key.Generation.Key.Management.Ke |
| 101080 | 79 20 50 61 72 61 6d 65 74 65 72 73 3a 00 4b 65 79 20 50 6f 69 6e 74 73 3a 00 4b 65 79 20 65 78 | y.Parameters:.Key.Points:.Key.ex |
| 1010a0 | 63 68 61 6e 67 65 20 61 6e 64 20 70 61 79 6c 6f 61 64 20 65 6e 63 72 79 70 74 69 6f 6e 20 69 73 | change.and.payload.encryption.is |
| 1010c0 | 20 64 6f 6e 65 20 75 73 69 6e 67 20 49 4b 45 20 61 6e 64 20 45 53 50 20 70 72 6f 70 6f 73 61 6c | .done.using.IKE.and.ESP.proposal |
| 1010e0 | 73 20 61 73 20 6b 6e 6f 77 6e 20 66 72 6f 6d 20 49 4b 45 76 31 20 62 75 74 20 74 68 65 20 63 6f | s.as.known.from.IKEv1.but.the.co |
| 101100 | 6e 6e 65 63 74 69 6f 6e 73 20 61 72 65 20 66 61 73 74 65 72 20 74 6f 20 65 73 74 61 62 6c 69 73 | nnections.are.faster.to.establis |
| 101120 | 68 2c 20 6d 6f 72 65 20 72 65 6c 69 61 62 6c 65 2c 20 61 6e 64 20 61 6c 73 6f 20 73 75 70 70 6f | h,.more.reliable,.and.also.suppo |
| 101140 | 72 74 20 72 6f 61 6d 69 6e 67 20 66 72 6f 6d 20 49 50 20 74 6f 20 49 50 20 28 63 61 6c 6c 65 64 | rt.roaming.from.IP.to.IP.(called |
| 101160 | 20 4d 4f 42 49 4b 45 20 77 68 69 63 68 20 6d 61 6b 65 73 20 73 75 72 65 20 79 6f 75 72 20 63 6f | .MOBIKE.which.makes.sure.your.co |
| 101180 | 6e 6e 65 63 74 69 6f 6e 20 64 6f 65 73 20 6e 6f 74 20 64 72 6f 70 20 77 68 65 6e 20 63 68 61 6e | nnection.does.not.drop.when.chan |
| 1011a0 | 67 69 6e 67 20 6e 65 74 77 6f 72 6b 73 20 66 72 6f 6d 20 65 2e 67 2e 20 57 49 46 49 20 74 6f 20 | ging.networks.from.e.g..WIFI.to. |
| 1011c0 | 4c 54 45 20 61 6e 64 20 62 61 63 6b 29 2e 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 63 61 | LTE.and.back)..Authentication.ca |
| 1011e0 | 6e 20 62 65 20 61 63 68 69 65 76 65 64 20 77 69 74 68 20 58 2e 35 30 39 20 63 65 72 74 69 66 69 | n.be.achieved.with.X.509.certifi |
| 101200 | 63 61 74 65 73 2e 00 4b 65 79 20 65 78 63 68 61 6e 67 65 20 61 6e 64 20 70 61 79 6c 6f 61 64 20 | cates..Key.exchange.and.payload. |
| 101220 | 65 6e 63 72 79 70 74 69 6f 6e 20 69 73 20 73 74 69 6c 6c 20 64 6f 6e 65 20 75 73 69 6e 67 20 49 | encryption.is.still.done.using.I |
| 101240 | 4b 45 20 61 6e 64 20 45 53 50 20 70 72 6f 70 6f 73 61 6c 73 20 61 73 20 6b 6e 6f 77 6e 20 66 72 | KE.and.ESP.proposals.as.known.fr |
| 101260 | 6f 6d 20 49 4b 45 76 31 20 62 75 74 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 61 72 65 | om.IKEv1.but.the.connections.are |
| 101280 | 20 66 61 73 74 65 72 20 74 6f 20 65 73 74 61 62 6c 69 73 68 2c 20 6d 6f 72 65 20 72 65 6c 69 61 | .faster.to.establish,.more.relia |
| 1012a0 | 62 6c 65 2c 20 61 6e 64 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 20 72 6f 61 6d 69 6e 67 20 66 72 | ble,.and.also.support.roaming.fr |
| 1012c0 | 6f 6d 20 49 50 20 74 6f 20 49 50 20 28 63 61 6c 6c 65 64 20 4d 4f 42 49 4b 45 20 77 68 69 63 68 | om.IP.to.IP.(called.MOBIKE.which |
| 1012e0 | 20 6d 61 6b 65 73 20 73 75 72 65 20 79 6f 75 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 64 6f 65 73 | .makes.sure.your.connection.does |
| 101300 | 20 6e 6f 74 20 64 72 6f 70 20 77 68 65 6e 20 63 68 61 6e 67 69 6e 67 20 6e 65 74 77 6f 72 6b 73 | .not.drop.when.changing.networks |
| 101320 | 20 66 72 6f 6d 20 65 2e 67 2e 20 57 49 46 49 20 74 6f 20 4c 54 45 20 61 6e 64 20 62 61 63 6b 29 | .from.e.g..WIFI.to.LTE.and.back) |
| 101340 | 2e 00 4b 65 79 20 75 73 61 67 65 20 28 43 4c 49 29 00 4b 65 79 62 6f 61 72 64 20 4c 61 79 6f 75 | ..Key.usage.(CLI).Keyboard.Layou |
| 101360 | 74 00 4b 65 79 70 61 69 72 73 00 4b 65 79 77 6f 72 64 00 4b 6e 6f 77 6e 20 69 73 73 75 65 73 00 | t.Keypairs.Keyword.Known.issues. |
| 101380 | 4c 32 54 50 00 4c 32 54 50 20 6f 76 65 72 20 49 50 73 65 63 00 4c 32 54 50 76 33 00 4c 32 54 50 | L2TP.L2TP.over.IPsec.L2TPv3.L2TP |
| 1013a0 | 76 33 20 63 61 6e 20 62 65 20 72 65 67 61 72 64 65 64 20 61 73 20 62 65 69 6e 67 20 74 6f 20 4d | v3.can.be.regarded.as.being.to.M |
| 1013c0 | 50 4c 53 20 77 68 61 74 20 49 50 20 69 73 20 74 6f 20 41 54 4d 3a 20 61 20 73 69 6d 70 6c 69 66 | PLS.what.IP.is.to.ATM:.a.simplif |
| 1013e0 | 69 65 64 20 76 65 72 73 69 6f 6e 20 6f 66 20 74 68 65 20 73 61 6d 65 20 63 6f 6e 63 65 70 74 2c | ied.version.of.the.same.concept, |
| 101400 | 20 77 69 74 68 20 6d 75 63 68 20 6f 66 20 74 68 65 20 73 61 6d 65 20 62 65 6e 65 66 69 74 20 61 | .with.much.of.the.same.benefit.a |
| 101420 | 63 68 69 65 76 65 64 20 61 74 20 61 20 66 72 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 65 66 66 | chieved.at.a.fraction.of.the.eff |
| 101440 | 6f 72 74 2c 20 61 74 20 74 68 65 20 63 6f 73 74 20 6f 66 20 6c 6f 73 69 6e 67 20 73 6f 6d 65 20 | ort,.at.the.cost.of.losing.some. |
| 101460 | 74 65 63 68 6e 69 63 61 6c 20 66 65 61 74 75 72 65 73 20 63 6f 6e 73 69 64 65 72 65 64 20 6c 65 | technical.features.considered.le |
| 101480 | 73 73 20 69 6d 70 6f 72 74 61 6e 74 20 69 6e 20 74 68 65 20 6d 61 72 6b 65 74 2e 00 4c 32 54 50 | ss.important.in.the.market..L2TP |
| 1014a0 | 76 33 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 33 39 32 31 60 2e 00 | v3.is.described.in.:rfc:`3921`.. |
| 1014c0 | 4c 32 54 50 76 33 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 33 39 33 | L2TPv3.is.described.in.:rfc:`393 |
| 1014e0 | 31 60 2e 00 4c 32 54 50 76 33 20 6f 70 74 69 6f 6e 73 00 4c 32 54 50 76 33 3a 00 4c 33 56 50 4e | 1`..L2TPv3.options.L2TPv3:.L3VPN |
| 101500 | 20 56 52 46 73 00 4c 44 41 50 00 4c 44 41 50 20 70 72 6f 74 6f 63 6f 6c 20 76 65 72 73 69 6f 6e | .VRFs.LDAP.LDAP.protocol.version |
| 101520 | 2e 20 44 65 66 61 75 6c 74 73 20 74 6f 20 33 20 69 66 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 | ..Defaults.to.3.if.not.specified |
| 101540 | 2e 00 4c 44 41 50 20 73 65 61 72 63 68 20 66 69 6c 74 65 72 20 74 6f 20 6c 6f 63 61 74 65 20 74 | ..LDAP.search.filter.to.locate.t |
| 101560 | 68 65 20 75 73 65 72 20 44 4e 2e 20 52 65 71 75 69 72 65 64 20 69 66 20 74 68 65 20 75 73 65 72 | he.user.DN..Required.if.the.user |
| 101580 | 73 20 61 72 65 20 69 6e 20 61 20 68 69 65 72 61 72 63 68 79 20 62 65 6c 6f 77 20 74 68 65 20 62 | s.are.in.a.hierarchy.below.the.b |
| 1015a0 | 61 73 65 20 44 4e 2c 20 6f 72 20 69 66 20 74 68 65 20 6c 6f 67 69 6e 20 6e 61 6d 65 20 69 73 20 | ase.DN,.or.if.the.login.name.is. |
| 1015c0 | 6e 6f 74 20 77 68 61 74 20 62 75 69 6c 64 73 20 74 68 65 20 75 73 65 72 20 73 70 65 63 69 66 69 | not.what.builds.the.user.specifi |
| 1015e0 | 63 20 70 61 72 74 20 6f 66 20 74 68 65 20 75 73 65 72 73 20 44 4e 2e 00 4c 4c 44 50 00 4c 4c 44 | c.part.of.the.users.DN..LLDP.LLD |
| 101600 | 50 20 70 65 72 66 6f 72 6d 73 20 66 75 6e 63 74 69 6f 6e 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 | P.performs.functions.similar.to. |
| 101620 | 73 65 76 65 72 61 6c 20 70 72 6f 70 72 69 65 74 61 72 79 20 70 72 6f 74 6f 63 6f 6c 73 2c 20 73 | several.proprietary.protocols,.s |
| 101640 | 75 63 68 20 61 73 20 3a 61 62 62 72 3a 60 43 44 50 20 28 43 69 73 63 6f 20 44 69 73 63 6f 76 65 | uch.as.:abbr:`CDP.(Cisco.Discove |
| 101660 | 72 79 20 50 72 6f 74 6f 63 6f 6c 29 60 2c 20 3a 61 62 62 72 3a 60 46 44 50 20 28 46 6f 75 6e 64 | ry.Protocol)`,.:abbr:`FDP.(Found |
| 101680 | 72 79 20 44 69 73 63 6f 76 65 72 79 20 50 72 6f 74 6f 63 6f 6c 29 60 2c 20 3a 61 62 62 72 3a 60 | ry.Discovery.Protocol)`,.:abbr:` |
| 1016a0 | 4e 44 50 20 28 4e 6f 72 74 65 6c 20 44 69 73 63 6f 76 65 72 79 20 50 72 6f 74 6f 63 6f 6c 29 60 | NDP.(Nortel.Discovery.Protocol)` |
| 1016c0 | 20 61 6e 64 20 3a 61 62 62 72 3a 60 4c 4c 54 44 20 28 4c 69 6e 6b 20 4c 61 79 65 72 20 54 6f 70 | .and.:abbr:`LLTD.(Link.Layer.Top |
| 1016e0 | 6f 6c 6f 67 79 20 44 69 73 63 6f 76 65 72 79 29 60 2e 00 4c 4e 53 20 28 4c 32 54 50 20 4e 65 74 | ology.Discovery)`..LNS.(L2TP.Net |
| 101700 | 77 6f 72 6b 20 53 65 72 76 65 72 29 00 4c 4e 53 20 61 72 65 20 6f 66 74 65 6e 20 75 73 65 64 20 | work.Server).LNS.are.often.used. |
| 101720 | 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 61 20 4c 41 43 20 28 4c 32 54 50 20 41 63 63 65 73 73 | to.connect.to.a.LAC.(L2TP.Access |
| 101740 | 20 43 6f 6e 63 65 6e 74 72 61 74 6f 72 29 2e 00 4c 61 62 65 6c 20 44 69 73 74 72 69 62 75 74 69 | .Concentrator)..Label.Distributi |
| 101760 | 6f 6e 20 50 72 6f 74 6f 63 6f 6c 00 4c 61 62 65 6c 20 74 6f 20 75 73 65 20 66 6f 72 20 74 68 65 | on.Protocol.Label.to.use.for.the |
| 101780 | 20 6d 65 74 72 69 63 20 6e 61 6d 65 20 77 68 65 6e 20 73 65 6e 64 69 6e 67 20 6d 65 74 72 69 63 | .metric.name.when.sending.metric |
| 1017a0 | 73 2e 00 4c 61 73 74 6c 79 2c 20 77 65 20 63 61 6e 20 63 72 65 61 74 65 20 74 68 65 20 6c 65 61 | s..Lastly,.we.can.create.the.lea |
| 1017c0 | 66 20 63 65 72 74 69 66 69 63 61 74 65 73 20 74 68 61 74 20 64 65 76 69 63 65 73 20 61 6e 64 20 | f.certificates.that.devices.and. |
| 1017e0 | 75 73 65 72 73 20 77 69 6c 6c 20 75 74 69 6c 69 73 65 2e 00 4c 61 79 65 72 20 32 20 54 75 6e 6e | users.will.utilise..Layer.2.Tunn |
| 101800 | 65 6c 6c 69 6e 67 20 50 72 6f 74 6f 63 6f 6c 20 56 65 72 73 69 6f 6e 20 33 20 69 73 20 61 6e 20 | elling.Protocol.Version.3.is.an. |
| 101820 | 49 45 54 46 20 73 74 61 6e 64 61 72 64 20 72 65 6c 61 74 65 64 20 74 6f 20 4c 32 54 50 20 74 68 | IETF.standard.related.to.L2TP.th |
| 101840 | 61 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 61 73 20 61 6e 20 61 6c 74 65 72 6e 61 74 69 76 65 | at.can.be.used.as.an.alternative |
| 101860 | 20 70 72 6f 74 6f 63 6f 6c 20 74 6f 20 3a 72 65 66 3a 60 6d 70 6c 73 60 20 66 6f 72 20 65 6e 63 | .protocol.to.:ref:`mpls`.for.enc |
| 101880 | 61 70 73 75 6c 61 74 69 6f 6e 20 6f 66 20 6d 75 6c 74 69 70 72 6f 74 6f 63 6f 6c 20 4c 61 79 65 | apsulation.of.multiprotocol.Laye |
| 1018a0 | 72 20 32 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 73 20 74 72 61 66 66 69 63 20 6f 76 65 72 20 | r.2.communications.traffic.over. |
| 1018c0 | 49 50 20 6e 65 74 77 6f 72 6b 73 2e 20 4c 69 6b 65 20 4c 32 54 50 2c 20 4c 32 54 50 76 33 20 70 | IP.networks..Like.L2TP,.L2TPv3.p |
| 1018e0 | 72 6f 76 69 64 65 73 20 61 20 70 73 65 75 64 6f 2d 77 69 72 65 20 73 65 72 76 69 63 65 20 62 75 | rovides.a.pseudo-wire.service.bu |
| 101900 | 74 20 69 73 20 73 63 61 6c 65 64 20 74 6f 20 66 69 74 20 63 61 72 72 69 65 72 20 72 65 71 75 69 | t.is.scaled.to.fit.carrier.requi |
| 101920 | 72 65 6d 65 6e 74 73 2e 00 4c 65 61 73 65 20 74 69 6d 65 20 77 69 6c 6c 20 62 65 20 6c 65 66 74 | rements..Lease.time.will.be.left |
| 101940 | 20 61 74 20 74 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 77 68 69 63 68 20 69 73 20 32 | .at.the.default.value.which.is.2 |
| 101960 | 34 20 68 6f 75 72 73 00 4c 65 61 73 65 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e 64 73 | 4.hours.Lease.timeout.in.seconds |
| 101980 | 20 28 64 65 66 61 75 6c 74 3a 20 38 36 34 30 30 29 00 4c 65 67 61 63 79 20 46 69 72 65 77 61 6c | .(default:.86400).Legacy.Firewal |
| 1019a0 | 6c 00 4c 65 74 20 53 4e 4d 50 20 64 61 65 6d 6f 6e 20 6c 69 73 74 65 6e 20 6f 6e 6c 79 20 6f 6e | l.Let.SNMP.daemon.listen.only.on |
| 1019c0 | 20 49 50 20 61 64 64 72 65 73 73 20 31 39 32 2e 30 2e 32 2e 31 00 4c 65 74 27 73 20 61 73 73 75 | .IP.address.192.0.2.1.Let's.assu |
| 1019e0 | 6d 65 20 50 43 34 20 6f 6e 20 4c 65 61 66 32 20 77 61 6e 74 73 20 74 6f 20 70 69 6e 67 20 50 43 | me.PC4.on.Leaf2.wants.to.ping.PC |
| 101a00 | 35 20 6f 6e 20 4c 65 61 66 33 2e 20 49 6e 73 74 65 61 64 20 6f 66 20 73 65 74 74 69 6e 67 20 4c | 5.on.Leaf3..Instead.of.setting.L |
| 101a20 | 65 61 66 33 20 61 73 20 6f 75 72 20 72 65 6d 6f 74 65 20 65 6e 64 20 6d 61 6e 75 61 6c 6c 79 2c | eaf3.as.our.remote.end.manually, |
| 101a40 | 20 4c 65 61 66 32 20 65 6e 63 61 70 73 75 6c 61 74 65 73 20 74 68 65 20 70 61 63 6b 65 74 20 69 | .Leaf2.encapsulates.the.packet.i |
| 101a60 | 6e 74 6f 20 61 20 55 44 50 2d 70 61 63 6b 65 74 20 61 6e 64 20 73 65 6e 64 73 20 69 74 20 74 6f | nto.a.UDP-packet.and.sends.it.to |
| 101a80 | 20 69 74 73 20 64 65 73 69 67 6e 61 74 65 64 20 6d 75 6c 74 69 63 61 73 74 2d 61 64 64 72 65 73 | .its.designated.multicast-addres |
| 101aa0 | 73 20 76 69 61 20 53 70 69 6e 65 31 2e 20 57 68 65 6e 20 53 70 69 6e 65 31 20 72 65 63 65 69 76 | s.via.Spine1..When.Spine1.receiv |
| 101ac0 | 65 73 20 74 68 69 73 20 70 61 63 6b 65 74 20 69 74 20 66 6f 72 77 61 72 64 73 20 69 74 20 74 6f | es.this.packet.it.forwards.it.to |
| 101ae0 | 20 61 6c 6c 20 6f 74 68 65 72 20 6c 65 61 76 65 73 20 77 68 6f 20 68 61 73 20 6a 6f 69 6e 65 64 | .all.other.leaves.who.has.joined |
| 101b00 | 20 74 68 65 20 73 61 6d 65 20 6d 75 6c 74 69 63 61 73 74 2d 67 72 6f 75 70 2c 20 69 6e 20 74 68 | .the.same.multicast-group,.in.th |
| 101b20 | 69 73 20 63 61 73 65 20 4c 65 61 66 33 2e 20 57 68 65 6e 20 4c 65 61 66 33 20 72 65 63 65 69 76 | is.case.Leaf3..When.Leaf3.receiv |
| 101b40 | 65 73 20 74 68 65 20 70 61 63 6b 65 74 20 69 74 20 66 6f 72 77 61 72 64 73 20 69 74 2c 20 77 68 | es.the.packet.it.forwards.it,.wh |
| 101b60 | 69 6c 65 20 61 74 20 74 68 65 20 73 61 6d 65 20 74 69 6d 65 20 6c 65 61 72 6e 69 6e 67 20 74 68 | ile.at.the.same.time.learning.th |
| 101b80 | 61 74 20 50 43 34 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 62 65 68 69 6e 64 20 4c 65 61 66 32 | at.PC4.is.reachable.behind.Leaf2 |
| 101ba0 | 2c 20 62 65 63 61 75 73 65 20 74 68 65 20 65 6e 63 61 70 73 75 6c 61 74 65 64 20 70 61 63 6b 65 | ,.because.the.encapsulated.packe |
| 101bc0 | 74 20 68 61 64 20 4c 65 61 66 32 27 73 20 49 50 20 61 64 64 72 65 73 73 20 73 65 74 20 61 73 20 | t.had.Leaf2's.IP.address.set.as. |
| 101be0 | 73 6f 75 72 63 65 20 49 50 2e 00 4c 65 74 27 73 20 61 73 73 75 6d 65 20 50 43 34 20 6f 6e 20 4c | source.IP..Let's.assume.PC4.on.L |
| 101c00 | 65 61 66 32 20 77 61 6e 74 73 20 74 6f 20 70 69 6e 67 20 50 43 35 20 6f 6e 20 4c 65 61 66 33 2e | eaf2.wants.to.ping.PC5.on.Leaf3. |
| 101c20 | 20 49 6e 73 74 65 61 64 20 6f 66 20 73 65 74 74 69 6e 67 20 4c 65 61 66 33 20 61 73 20 6f 75 72 | .Instead.of.setting.Leaf3.as.our |
| 101c40 | 20 72 65 6d 6f 74 65 20 65 6e 64 20 6d 61 6e 75 61 6c 6c 79 2c 20 4c 65 61 66 32 20 65 6e 63 61 | .remote.end.manually,.Leaf2.enca |
| 101c60 | 70 73 75 6c 61 74 65 73 20 74 68 65 20 70 61 63 6b 65 74 20 69 6e 74 6f 20 61 20 55 44 50 2d 70 | psulates.the.packet.into.a.UDP-p |
| 101c80 | 61 63 6b 65 74 20 61 6e 64 20 73 65 6e 64 73 20 69 74 20 74 6f 20 69 74 73 27 20 64 65 73 69 67 | acket.and.sends.it.to.its'.desig |
| 101ca0 | 6e 61 74 65 64 20 6d 75 6c 74 69 63 61 73 74 2d 61 64 64 72 65 73 73 20 76 69 61 20 53 70 69 6e | nated.multicast-address.via.Spin |
| 101cc0 | 65 31 2e 20 57 68 65 6e 20 53 70 69 6e 65 31 20 72 65 63 65 69 76 65 73 20 74 68 69 73 20 70 61 | e1..When.Spine1.receives.this.pa |
| 101ce0 | 63 6b 65 74 20 69 74 20 66 6f 72 77 61 72 64 73 20 69 74 20 74 6f 20 61 6c 6c 20 6f 74 68 65 72 | cket.it.forwards.it.to.all.other |
| 101d00 | 20 6c 65 61 76 65 73 20 77 68 6f 20 68 61 73 20 6a 6f 69 6e 65 64 20 74 68 65 20 73 61 6d 65 20 | .leaves.who.has.joined.the.same. |
| 101d20 | 6d 75 6c 74 69 63 61 73 74 2d 67 72 6f 75 70 2c 20 69 6e 20 74 68 69 73 20 63 61 73 65 20 4c 65 | multicast-group,.in.this.case.Le |
| 101d40 | 61 66 33 2e 20 57 68 65 6e 20 4c 65 61 66 33 20 72 65 63 65 69 76 65 73 20 74 68 65 20 70 61 63 | af3..When.Leaf3.receives.the.pac |
| 101d60 | 6b 65 74 20 69 74 20 66 6f 72 77 61 72 64 73 20 69 74 2c 20 77 68 69 6c 65 20 61 74 20 74 68 65 | ket.it.forwards.it,.while.at.the |
| 101d80 | 20 73 61 6d 65 20 74 69 6d 65 20 6c 65 61 72 6e 69 6e 67 20 74 68 61 74 20 50 43 34 20 69 73 20 | .same.time.learning.that.PC4.is. |
| 101da0 | 72 65 61 63 68 61 62 6c 65 20 62 65 68 69 6e 64 20 4c 65 61 66 32 2c 20 62 65 63 61 75 73 65 20 | reachable.behind.Leaf2,.because. |
| 101dc0 | 74 68 65 20 65 6e 63 61 70 73 75 6c 61 74 65 64 20 70 61 63 6b 65 74 20 68 61 64 20 4c 65 61 66 | the.encapsulated.packet.had.Leaf |
| 101de0 | 32 27 73 20 49 50 20 61 64 64 72 65 73 73 20 73 65 74 20 61 73 20 73 6f 75 72 63 65 20 49 50 2e | 2's.IP.address.set.as.source.IP. |
| 101e00 | 00 4c 65 74 27 73 20 61 73 73 75 6d 65 20 77 65 20 68 61 76 65 20 74 77 6f 20 44 48 43 50 20 57 | .Let's.assume.we.have.two.DHCP.W |
| 101e20 | 41 4e 20 69 6e 74 65 72 66 61 63 65 73 20 61 6e 64 20 6f 6e 65 20 4c 41 4e 20 28 65 74 68 32 29 | AN.interfaces.and.one.LAN.(eth2) |
| 101e40 | 3a 00 4c 65 74 27 73 20 62 75 69 6c 64 20 61 20 73 69 6d 70 6c 65 20 56 50 4e 20 62 65 74 77 65 | :.Let's.build.a.simple.VPN.betwe |
| 101e60 | 65 6e 20 32 20 49 6e 74 65 6c c2 ae 20 51 41 54 20 72 65 61 64 79 20 64 65 76 69 63 65 73 2e 00 | en.2.Intel...QAT.ready.devices.. |
| 101e80 | 4c 65 74 27 73 20 65 78 70 61 6e 64 20 74 68 65 20 65 78 61 6d 70 6c 65 20 66 72 6f 6d 20 61 62 | Let's.expand.the.example.from.ab |
| 101ea0 | 6f 76 65 20 61 6e 64 20 61 64 64 20 77 65 69 67 68 74 20 74 6f 20 74 68 65 20 69 6e 74 65 72 66 | ove.and.add.weight.to.the.interf |
| 101ec0 | 61 63 65 73 2e 20 54 68 65 20 62 61 6e 64 77 69 64 74 68 20 66 72 6f 6d 20 65 74 68 30 20 69 73 | aces..The.bandwidth.from.eth0.is |
| 101ee0 | 20 6c 61 72 67 65 72 20 74 68 61 6e 20 65 74 68 31 2e 20 50 65 72 20 64 65 66 61 75 6c 74 2c 20 | .larger.than.eth1..Per.default,. |
| 101f00 | 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 69 73 20 64 69 73 74 72 69 62 75 74 65 64 20 | outbound.traffic.is.distributed. |
| 101f20 | 72 61 6e 64 6f 6d 6c 79 20 61 63 72 6f 73 73 20 61 76 61 69 6c 61 62 6c 65 20 69 6e 74 65 72 66 | randomly.across.available.interf |
| 101f40 | 61 63 65 73 2e 20 57 65 69 67 68 74 73 20 63 61 6e 20 62 65 20 61 73 73 69 67 6e 65 64 20 74 6f | aces..Weights.can.be.assigned.to |
| 101f60 | 20 69 6e 74 65 72 66 61 63 65 73 20 74 6f 20 69 6e 66 6c 75 65 6e 63 65 20 74 68 65 20 62 61 6c | .interfaces.to.influence.the.bal |
| 101f80 | 61 6e 63 69 6e 67 2e 00 4c 65 74 73 20 61 73 73 75 6d 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e | ancing..Lets.assume.the.followin |
| 101fa0 | 67 20 74 6f 70 6f 6c 6f 67 79 3a 00 4c 65 76 65 6c 20 34 20 62 61 6c 61 6e 63 69 6e 67 00 4c 69 | g.topology:.Level.4.balancing.Li |
| 101fc0 | 66 65 74 69 6d 65 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 20 64 65 66 61 75 | fetime.associated.with.the.defau |
| 101fe0 | 6c 74 20 72 6f 75 74 65 72 20 69 6e 20 75 6e 69 74 73 20 6f 66 20 73 65 63 6f 6e 64 73 00 4c 69 | lt.router.in.units.of.seconds.Li |
| 102000 | 66 65 74 69 6d 65 20 69 6e 20 64 61 79 73 3b 20 64 65 66 61 75 6c 74 20 69 73 20 33 36 35 00 4c | fetime.in.days;.default.is.365.L |
| 102020 | 69 66 65 74 69 6d 65 20 69 73 20 64 65 63 72 65 6d 65 6e 74 65 64 20 62 79 20 74 68 65 20 6e 75 | ifetime.is.decremented.by.the.nu |
| 102040 | 6d 62 65 72 20 6f 66 20 73 65 63 6f 6e 64 73 20 73 69 6e 63 65 20 74 68 65 20 6c 61 73 74 20 52 | mber.of.seconds.since.the.last.R |
| 102060 | 41 20 2d 20 75 73 65 20 69 6e 20 63 6f 6e 6a 75 6e 63 74 69 6f 6e 20 77 69 74 68 20 61 20 44 48 | A.-.use.in.conjunction.with.a.DH |
| 102080 | 43 50 76 36 2d 50 44 20 70 72 65 66 69 78 00 4c 69 6b 65 20 6f 6e 20 4d 69 63 72 6f 73 6f 66 74 | CPv6-PD.prefix.Like.on.Microsoft |
| 1020a0 | 20 57 69 6e 64 6f 77 73 2c 20 41 70 70 6c 65 20 69 4f 53 2f 69 50 61 64 4f 53 20 6f 75 74 20 6f | .Windows,.Apple.iOS/iPadOS.out.o |
| 1020c0 | 66 20 74 68 65 20 62 6f 78 20 64 6f 65 73 20 6e 6f 74 20 65 78 70 6f 73 65 20 61 6c 6c 20 61 76 | f.the.box.does.not.expose.all.av |
| 1020e0 | 61 69 6c 61 62 6c 65 20 56 50 4e 20 6f 70 74 69 6f 6e 73 20 76 69 61 20 74 68 65 20 64 65 76 69 | ailable.VPN.options.via.the.devi |
| 102100 | 63 65 20 47 55 49 2e 00 4c 69 6d 69 74 20 61 6c 6c 6f 77 65 64 20 63 69 70 68 65 72 20 61 6c 67 | ce.GUI..Limit.allowed.cipher.alg |
| 102120 | 6f 72 69 74 68 6d 73 20 75 73 65 64 20 64 75 72 69 6e 67 20 53 53 4c 2f 54 4c 53 20 68 61 6e 64 | orithms.used.during.SSL/TLS.hand |
| 102140 | 73 68 61 6b 65 00 4c 69 6d 69 74 20 6c 6f 67 69 6e 73 20 74 6f 20 60 3c 6c 69 6d 69 74 3e 60 20 | shake.Limit.logins.to.`<limit>`. |
| 102160 | 70 65 72 20 65 76 65 72 79 20 60 60 72 61 74 65 2d 74 69 6d 65 60 60 20 73 65 63 6f 6e 64 73 2e | per.every.``rate-time``.seconds. |
| 102180 | 20 52 61 74 65 20 6c 69 6d 69 74 20 6d 75 73 74 20 62 65 20 62 65 74 77 65 65 6e 20 31 20 61 6e | .Rate.limit.must.be.between.1.an |
| 1021a0 | 64 20 31 30 20 61 74 74 65 6d 70 74 73 2e 00 4c 69 6d 69 74 20 6c 6f 67 69 6e 73 20 74 6f 20 60 | d.10.attempts..Limit.logins.to.` |
| 1021c0 | 60 72 61 74 65 2d 6c 69 6d 69 74 60 60 20 61 74 74 65 6d 70 73 20 70 65 72 20 65 76 65 72 79 20 | `rate-limit``.attemps.per.every. |
| 1021e0 | 60 3c 73 65 63 6f 6e 64 73 3e 60 2e 20 52 61 74 65 20 74 69 6d 65 20 6d 75 73 74 20 62 65 20 62 | `<seconds>`..Rate.time.must.be.b |
| 102200 | 65 74 77 65 65 6e 20 31 35 20 61 6e 64 20 36 30 30 20 73 65 63 6f 6e 64 73 2e 00 4c 69 6d 69 74 | etween.15.and.600.seconds..Limit |
| 102220 | 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 00 4c | .maximum.number.of.connections.L |
| 102240 | 69 6d 69 74 65 72 00 4c 69 6d 69 74 65 72 20 69 73 20 6f 6e 65 20 6f 66 20 74 68 6f 73 65 20 70 | imiter.Limiter.is.one.of.those.p |
| 102260 | 6f 6c 69 63 69 65 73 20 74 68 61 74 20 75 73 65 73 20 63 6c 61 73 73 65 73 5f 20 28 49 6e 67 72 | olicies.that.uses.classes_.(Ingr |
| 102280 | 65 73 73 20 71 64 69 73 63 20 69 73 20 61 63 74 75 61 6c 6c 79 20 61 20 63 6c 61 73 73 6c 65 73 | ess.qdisc.is.actually.a.classles |
| 1022a0 | 73 20 70 6f 6c 69 63 79 20 62 75 74 20 66 69 6c 74 65 72 73 20 64 6f 20 77 6f 72 6b 20 69 6e 20 | s.policy.but.filters.do.work.in. |
| 1022c0 | 69 74 29 2e 00 4c 69 6d 69 74 73 00 4c 69 6e 65 20 70 72 69 6e 74 65 72 20 73 75 62 73 79 73 74 | it)..Limits.Line.printer.subsyst |
| 1022e0 | 65 6d 00 4c 69 6e 6b 20 4d 54 55 20 76 61 6c 75 65 20 70 6c 61 63 65 64 20 69 6e 20 52 41 73 2c | em.Link.MTU.value.placed.in.RAs, |
| 102300 | 20 65 78 63 6c 75 64 65 64 20 69 6e 20 52 41 73 20 69 66 20 75 6e 73 65 74 00 4c 69 6e 6b 20 4d | .excluded.in.RAs.if.unset.Link.M |
| 102320 | 54 55 20 76 61 6c 75 65 20 70 6c 61 63 65 64 20 69 6e 20 52 41 73 2c 20 65 78 6c 75 64 65 64 20 | TU.value.placed.in.RAs,.exluded. |
| 102340 | 69 6e 20 52 41 73 20 69 66 20 75 6e 73 65 74 00 4c 69 6e 6b 20 61 67 67 72 65 67 61 74 69 6f 6e | in.RAs.if.unset.Link.aggregation |
| 102360 | 00 4c 69 6e 75 78 20 6e 65 74 66 69 6c 74 65 72 20 77 69 6c 6c 20 6e 6f 74 20 4e 41 54 20 74 72 | .Linux.netfilter.will.not.NAT.tr |
| 102380 | 61 66 66 69 63 20 6d 61 72 6b 65 64 20 61 73 20 49 4e 56 41 4c 49 44 2e 20 54 68 69 73 20 6f 66 | affic.marked.as.INVALID..This.of |
| 1023a0 | 74 65 6e 20 63 6f 6e 66 75 73 65 73 20 70 65 6f 70 6c 65 20 69 6e 74 6f 20 74 68 69 6e 6b 69 6e | ten.confuses.people.into.thinkin |
| 1023c0 | 67 20 74 68 61 74 20 4c 69 6e 75 78 20 28 6f 72 20 73 70 65 63 69 66 69 63 61 6c 6c 79 20 56 79 | g.that.Linux.(or.specifically.Vy |
| 1023e0 | 4f 53 29 20 68 61 73 20 61 20 62 72 6f 6b 65 6e 20 4e 41 54 20 69 6d 70 6c 65 6d 65 6e 74 61 74 | OS).has.a.broken.NAT.implementat |
| 102400 | 69 6f 6e 20 62 65 63 61 75 73 65 20 6e 6f 6e 2d 4e 41 54 65 64 20 74 72 61 66 66 69 63 20 69 73 | ion.because.non-NATed.traffic.is |
| 102420 | 20 73 65 65 6e 20 6c 65 61 76 69 6e 67 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 69 6e 74 65 72 66 | .seen.leaving.an.external.interf |
| 102440 | 61 63 65 2e 20 54 68 69 73 20 69 73 20 61 63 74 75 61 6c 6c 79 20 77 6f 72 6b 69 6e 67 20 61 73 | ace..This.is.actually.working.as |
| 102460 | 20 69 6e 74 65 6e 64 65 64 2c 20 61 6e 64 20 61 20 70 61 63 6b 65 74 20 63 61 70 74 75 72 65 20 | .intended,.and.a.packet.capture. |
| 102480 | 6f 66 20 74 68 65 20 22 6c 65 61 6b 79 22 20 74 72 61 66 66 69 63 20 73 68 6f 75 6c 64 20 72 65 | of.the."leaky".traffic.should.re |
| 1024a0 | 76 65 61 6c 20 74 68 61 74 20 74 68 65 20 74 72 61 66 66 69 63 20 69 73 20 65 69 74 68 65 72 20 | veal.that.the.traffic.is.either. |
| 1024c0 | 61 6e 20 61 64 64 69 74 69 6f 6e 61 6c 20 54 43 50 20 22 52 53 54 22 2c 20 22 46 49 4e 2c 41 43 | an.additional.TCP."RST",."FIN,AC |
| 1024e0 | 4b 22 2c 20 6f 72 20 22 52 53 54 2c 41 43 4b 22 20 73 65 6e 74 20 62 79 20 63 6c 69 65 6e 74 20 | K",.or."RST,ACK".sent.by.client. |
| 102500 | 73 79 73 74 65 6d 73 20 61 66 74 65 72 20 4c 69 6e 75 78 20 6e 65 74 66 69 6c 74 65 72 20 63 6f | systems.after.Linux.netfilter.co |
| 102520 | 6e 73 69 64 65 72 73 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 63 6c 6f 73 65 64 2e 20 54 | nsiders.the.connection.closed..T |
| 102540 | 68 65 20 6d 6f 73 74 20 63 6f 6d 6d 6f 6e 20 69 73 20 74 68 65 20 61 64 64 69 74 69 6f 6e 61 6c | he.most.common.is.the.additional |
| 102560 | 20 54 43 50 20 52 53 54 20 73 6f 6d 65 20 68 6f 73 74 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f | .TCP.RST.some.host.implementatio |
| 102580 | 6e 73 20 73 65 6e 64 20 61 66 74 65 72 20 74 65 72 6d 69 6e 61 74 69 6e 67 20 61 20 63 6f 6e 6e | ns.send.after.terminating.a.conn |
| 1025a0 | 65 63 74 69 6f 6e 20 28 77 68 69 63 68 20 69 73 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 2d | ection.(which.is.implementation- |
| 1025c0 | 73 70 65 63 69 66 69 63 29 2e 00 4c 69 73 74 20 61 6c 6c 20 4d 41 43 73 65 63 20 69 6e 74 65 72 | specific)..List.all.MACsec.inter |
| 1025e0 | 66 61 63 65 73 2e 00 4c 69 73 74 20 6f 66 20 66 61 63 69 6c 69 74 69 65 73 20 75 73 65 64 20 62 | faces..List.of.facilities.used.b |
| 102600 | 79 20 73 79 73 6c 6f 67 2e 20 4d 6f 73 74 20 66 61 63 69 6c 69 74 69 65 73 20 6e 61 6d 65 73 20 | y.syslog..Most.facilities.names. |
| 102620 | 61 72 65 20 73 65 6c 66 20 65 78 70 6c 61 6e 61 74 6f 72 79 2e 20 46 61 63 69 6c 69 74 69 65 73 | are.self.explanatory..Facilities |
| 102640 | 20 6c 6f 63 61 6c 30 20 2d 20 6c 6f 63 61 6c 37 20 63 6f 6d 6d 6f 6e 20 75 73 61 67 65 20 69 73 | .local0.-.local7.common.usage.is |
| 102660 | 20 66 2e 65 2e 20 61 73 20 6e 65 74 77 6f 72 6b 20 6c 6f 67 73 20 66 61 63 69 6c 69 74 69 65 73 | .f.e..as.network.logs.facilities |
| 102680 | 20 66 6f 72 20 6e 6f 64 65 73 20 61 6e 64 20 6e 65 74 77 6f 72 6b 20 65 71 75 69 70 6d 65 6e 74 | .for.nodes.and.network.equipment |
| 1026a0 | 2e 20 47 65 6e 65 72 61 6c 6c 79 20 69 74 20 64 65 70 65 6e 64 73 20 6f 6e 20 74 68 65 20 73 69 | ..Generally.it.depends.on.the.si |
| 1026c0 | 74 75 61 74 69 6f 6e 20 68 6f 77 20 74 6f 20 63 6c 61 73 73 69 66 79 20 6c 6f 67 73 20 61 6e 64 | tuation.how.to.classify.logs.and |
| 1026e0 | 20 70 75 74 20 74 68 65 6d 20 74 6f 20 66 61 63 69 6c 69 74 69 65 73 2e 20 53 65 65 20 66 61 63 | .put.them.to.facilities..See.fac |
| 102700 | 69 6c 69 74 69 65 73 20 6d 6f 72 65 20 61 73 20 61 20 74 6f 6f 6c 20 72 61 74 68 65 72 20 74 68 | ilities.more.as.a.tool.rather.th |
| 102720 | 61 6e 20 61 20 64 69 72 65 63 74 69 76 65 20 74 6f 20 66 6f 6c 6c 6f 77 2e 00 4c 69 73 74 20 6f | an.a.directive.to.follow..List.o |
| 102740 | 66 20 6e 65 74 77 6f 72 6b 73 20 6f 72 20 63 6c 69 65 6e 74 20 61 64 64 72 65 73 73 65 73 20 70 | f.networks.or.client.addresses.p |
| 102760 | 65 72 6d 69 74 74 65 64 20 74 6f 20 63 6f 6e 74 61 63 74 20 74 68 69 73 20 4e 54 50 20 73 65 72 | ermitted.to.contact.this.NTP.ser |
| 102780 | 76 65 72 2e 00 4c 69 73 74 20 6f 66 20 73 75 70 70 6f 72 74 65 64 20 4d 41 43 73 3a 20 60 60 68 | ver..List.of.supported.MACs:.``h |
| 1027a0 | 6d 61 63 2d 6d 64 35 60 60 2c 20 60 60 68 6d 61 63 2d 6d 64 35 2d 39 36 60 60 2c 20 60 60 68 6d | mac-md5``,.``hmac-md5-96``,.``hm |
| 1027c0 | 61 63 2d 72 69 70 65 6d 64 31 36 30 60 60 2c 20 60 60 68 6d 61 63 2d 73 68 61 31 60 60 2c 20 60 | ac-ripemd160``,.``hmac-sha1``,.` |
| 1027e0 | 60 68 6d 61 63 2d 73 68 61 31 2d 39 36 60 60 2c 20 60 60 68 6d 61 63 2d 73 68 61 32 2d 32 35 36 | `hmac-sha1-96``,.``hmac-sha2-256 |
| 102800 | 60 60 2c 20 60 60 68 6d 61 63 2d 73 68 61 32 2d 35 31 32 60 60 2c 20 60 60 75 6d 61 63 2d 36 34 | ``,.``hmac-sha2-512``,.``umac-64 |
| 102820 | 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 75 6d 61 63 2d 31 32 38 40 6f 70 65 6e 73 | @openssh.com``,.``umac-128@opens |
| 102840 | 73 68 2e 63 6f 6d 60 60 2c 20 60 60 68 6d 61 63 2d 6d 64 35 2d 65 74 6d 40 6f 70 65 6e 73 73 68 | sh.com``,.``hmac-md5-etm@openssh |
| 102860 | 2e 63 6f 6d 60 60 2c 20 60 60 68 6d 61 63 2d 6d 64 35 2d 39 36 2d 65 74 6d 40 6f 70 65 6e 73 73 | .com``,.``hmac-md5-96-etm@openss |
| 102880 | 68 2e 63 6f 6d 60 60 2c 20 60 60 68 6d 61 63 2d 72 69 70 65 6d 64 31 36 30 2d 65 74 6d 40 6f 70 | h.com``,.``hmac-ripemd160-etm@op |
| 1028a0 | 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 68 6d 61 63 2d 73 68 61 31 2d 65 74 6d 40 6f 70 65 | enssh.com``,.``hmac-sha1-etm@ope |
| 1028c0 | 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 68 6d 61 63 2d 73 68 61 31 2d 39 36 2d 65 74 6d 40 6f | nssh.com``,.``hmac-sha1-96-etm@o |
| 1028e0 | 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 68 6d 61 63 2d 73 68 61 32 2d 32 35 36 2d 65 74 | penssh.com``,.``hmac-sha2-256-et |
| 102900 | 6d 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 68 6d 61 63 2d 73 68 61 32 2d 35 31 32 | m@openssh.com``,.``hmac-sha2-512 |
| 102920 | 2d 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 75 6d 61 63 2d 36 34 2d 65 74 | -etm@openssh.com``,.``umac-64-et |
| 102940 | 6d 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 75 6d 61 63 2d 31 32 38 2d 65 74 6d 40 | m@openssh.com``,.``umac-128-etm@ |
| 102960 | 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 00 4c 69 73 74 20 6f 66 20 73 75 70 70 6f 72 74 65 64 20 | openssh.com``.List.of.supported. |
| 102980 | 61 6c 67 6f 72 69 74 68 6d 73 3a 20 60 60 64 69 66 66 69 65 2d 68 65 6c 6c 6d 61 6e 2d 67 72 6f | algorithms:.``diffie-hellman-gro |
| 1029a0 | 75 70 31 2d 73 68 61 31 60 60 2c 20 60 60 64 69 66 66 69 65 2d 68 65 6c 6c 6d 61 6e 2d 67 72 6f | up1-sha1``,.``diffie-hellman-gro |
| 1029c0 | 75 70 31 34 2d 73 68 61 31 60 60 2c 20 60 60 64 69 66 66 69 65 2d 68 65 6c 6c 6d 61 6e 2d 67 72 | up14-sha1``,.``diffie-hellman-gr |
| 1029e0 | 6f 75 70 31 34 2d 73 68 61 32 35 36 60 60 2c 20 60 60 64 69 66 66 69 65 2d 68 65 6c 6c 6d 61 6e | oup14-sha256``,.``diffie-hellman |
| 102a00 | 2d 67 72 6f 75 70 31 36 2d 73 68 61 35 31 32 60 60 2c 20 60 60 64 69 66 66 69 65 2d 68 65 6c 6c | -group16-sha512``,.``diffie-hell |
| 102a20 | 6d 61 6e 2d 67 72 6f 75 70 31 38 2d 73 68 61 35 31 32 60 60 2c 20 60 60 64 69 66 66 69 65 2d 68 | man-group18-sha512``,.``diffie-h |
| 102a40 | 65 6c 6c 6d 61 6e 2d 67 72 6f 75 70 2d 65 78 63 68 61 6e 67 65 2d 73 68 61 31 60 60 2c 20 60 60 | ellman-group-exchange-sha1``,.`` |
| 102a60 | 64 69 66 66 69 65 2d 68 65 6c 6c 6d 61 6e 2d 67 72 6f 75 70 2d 65 78 63 68 61 6e 67 65 2d 73 68 | diffie-hellman-group-exchange-sh |
| 102a80 | 61 32 35 36 60 60 2c 20 60 60 65 63 64 68 2d 73 68 61 32 2d 6e 69 73 74 70 32 35 36 60 60 2c 20 | a256``,.``ecdh-sha2-nistp256``,. |
| 102aa0 | 60 60 65 63 64 68 2d 73 68 61 32 2d 6e 69 73 74 70 33 38 34 60 60 2c 20 60 60 65 63 64 68 2d 73 | ``ecdh-sha2-nistp384``,.``ecdh-s |
| 102ac0 | 68 61 32 2d 6e 69 73 74 70 35 32 31 60 60 2c 20 60 60 63 75 72 76 65 32 35 35 31 39 2d 73 68 61 | ha2-nistp521``,.``curve25519-sha |
| 102ae0 | 32 35 36 60 60 20 61 6e 64 20 60 60 63 75 72 76 65 32 35 35 31 39 2d 73 68 61 32 35 36 40 6c 69 | 256``.and.``curve25519-sha256@li |
| 102b00 | 62 73 73 68 2e 6f 72 67 60 60 2e 00 4c 69 73 74 20 6f 66 20 73 75 70 70 6f 72 74 65 64 20 61 6c | bssh.org``..List.of.supported.al |
| 102b20 | 67 6f 72 69 74 68 6d 73 3a 20 60 60 73 73 68 2d 65 64 32 35 35 31 39 60 60 2c 20 60 60 73 73 68 | gorithms:.``ssh-ed25519``,.``ssh |
| 102b40 | 2d 65 64 32 35 35 31 39 2d 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c | -ed25519-cert-v01@openssh.com``, |
| 102b60 | 20 60 60 73 6b 2d 73 73 68 2d 65 64 32 35 35 31 39 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c | .``sk-ssh-ed25519@openssh.com``, |
| 102b80 | 20 60 60 73 6b 2d 73 73 68 2d 65 64 32 35 35 31 39 2d 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 | .``sk-ssh-ed25519-cert-v01@opens |
| 102ba0 | 73 68 2e 63 6f 6d 60 60 2c 20 60 60 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 32 35 36 60 | sh.com``,.``ecdsa-sha2-nistp256` |
| 102bc0 | 60 2c 20 60 60 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 32 35 36 2d 63 65 72 74 2d 76 30 | `,.``ecdsa-sha2-nistp256-cert-v0 |
| 102be0 | 31 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 | 1@openssh.com``,.``ecdsa-sha2-ni |
| 102c00 | 73 74 70 33 38 34 60 60 2c 20 60 60 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 33 38 34 2d | stp384``,.``ecdsa-sha2-nistp384- |
| 102c20 | 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 65 63 64 73 61 2d | cert-v01@openssh.com``,.``ecdsa- |
| 102c40 | 73 68 61 32 2d 6e 69 73 74 70 35 32 31 60 60 2c 20 60 60 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 | sha2-nistp521``,.``ecdsa-sha2-ni |
| 102c60 | 73 74 70 35 32 31 2d 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 | stp521-cert-v01@openssh.com``,.` |
| 102c80 | 60 73 6b 2d 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 32 35 36 40 6f 70 65 6e 73 73 68 2e | `sk-ecdsa-sha2-nistp256@openssh. |
| 102ca0 | 63 6f 6d 60 60 2c 20 60 60 73 6b 2d 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 32 35 36 2d | com``,.``sk-ecdsa-sha2-nistp256- |
| 102cc0 | 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 77 65 62 61 75 74 | cert-v01@openssh.com``,.``webaut |
| 102ce0 | 68 6e 2d 73 6b 2d 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 32 35 36 40 6f 70 65 6e 73 73 | hn-sk-ecdsa-sha2-nistp256@openss |
| 102d00 | 68 2e 63 6f 6d 60 60 2c 20 60 60 73 73 68 2d 64 73 73 60 60 2c 20 60 60 73 73 68 2d 64 73 73 2d | h.com``,.``ssh-dss``,.``ssh-dss- |
| 102d20 | 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 73 73 68 2d 72 73 | cert-v01@openssh.com``,.``ssh-rs |
| 102d40 | 61 60 60 2c 20 60 60 73 73 68 2d 72 73 61 2d 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e | a``,.``ssh-rsa-cert-v01@openssh. |
| 102d60 | 63 6f 6d 60 60 2c 20 60 60 72 73 61 2d 73 68 61 32 2d 32 35 36 60 60 2c 20 60 60 72 73 61 2d 73 | com``,.``rsa-sha2-256``,.``rsa-s |
| 102d80 | 68 61 32 2d 32 35 36 2d 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 | ha2-256-cert-v01@openssh.com``,. |
| 102da0 | 60 60 72 73 61 2d 73 68 61 32 2d 35 31 32 60 60 2c 20 60 60 72 73 61 2d 73 68 61 32 2d 35 31 32 | ``rsa-sha2-512``,.``rsa-sha2-512 |
| 102dc0 | 2d 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 00 4c 69 73 74 20 6f 66 20 | -cert-v01@openssh.com``.List.of. |
| 102de0 | 73 75 70 70 6f 72 74 65 64 20 63 69 70 68 65 72 73 3a 20 60 60 33 64 65 73 2d 63 62 63 60 60 2c | supported.ciphers:.``3des-cbc``, |
| 102e00 | 20 60 60 61 65 73 31 32 38 2d 63 62 63 60 60 2c 20 60 60 61 65 73 31 39 32 2d 63 62 63 60 60 2c | .``aes128-cbc``,.``aes192-cbc``, |
| 102e20 | 20 60 60 61 65 73 32 35 36 2d 63 62 63 60 60 2c 20 60 60 61 65 73 31 32 38 2d 63 74 72 60 60 2c | .``aes256-cbc``,.``aes128-ctr``, |
| 102e40 | 20 60 60 61 65 73 31 39 32 2d 63 74 72 60 60 2c 20 60 60 61 65 73 32 35 36 2d 63 74 72 60 60 2c | .``aes192-ctr``,.``aes256-ctr``, |
| 102e60 | 20 60 60 61 72 63 66 6f 75 72 31 32 38 60 60 2c 20 60 60 61 72 63 66 6f 75 72 32 35 36 60 60 2c | .``arcfour128``,.``arcfour256``, |
| 102e80 | 20 60 60 61 72 63 66 6f 75 72 60 60 2c 20 60 60 62 6c 6f 77 66 69 73 68 2d 63 62 63 60 60 2c 20 | .``arcfour``,.``blowfish-cbc``,. |
| 102ea0 | 60 60 63 61 73 74 31 32 38 2d 63 62 63 60 60 00 4c 69 73 74 20 6f 66 20 77 65 6c 6c 2d 6b 6e 6f | ``cast128-cbc``.List.of.well-kno |
| 102ec0 | 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 00 4c 69 73 74 65 6e 20 66 6f 72 20 44 48 43 50 20 72 | wn.communities.Listen.for.DHCP.r |
| 102ee0 | 65 71 75 65 73 74 73 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 60 60 65 74 68 31 60 60 2e 00 4c | equests.on.interface.``eth1``..L |
| 102f00 | 69 73 74 73 20 56 52 46 73 20 74 68 61 74 20 68 61 76 65 20 62 65 65 6e 20 63 72 65 61 74 65 64 | ists.VRFs.that.have.been.created |
| 102f20 | 00 4c 6f 61 64 20 42 61 6c 61 6e 63 65 00 4c 6f 61 64 20 42 61 6c 61 6e 63 69 6e 67 00 4c 6f 61 | .Load.Balance.Load.Balancing.Loa |
| 102f40 | 64 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 69 6d 61 67 65 20 69 6e 20 6f 70 2d 6d 6f 64 65 | d.the.container.image.in.op-mode |
| 102f60 | 2e 00 4c 6f 61 64 2d 62 61 6c 61 6e 63 69 6e 67 00 4c 6f 61 64 2d 62 61 6c 61 6e 63 69 6e 67 20 | ..Load-balancing.Load-balancing. |
| 102f80 | 61 6c 67 6f 72 69 74 68 6d 73 20 74 6f 20 62 65 20 75 73 65 64 20 66 6f 72 20 64 69 73 74 72 69 | algorithms.to.be.used.for.distri |
| 102fa0 | 62 75 74 65 64 20 72 65 71 75 65 73 74 73 20 61 6d 6f 6e 67 20 74 68 65 20 61 76 61 69 6c 61 62 | buted.requests.among.the.availab |
| 102fc0 | 6c 65 20 73 65 72 76 65 72 73 00 4c 6f 61 64 2d 62 61 6c 61 6e 63 69 6e 67 20 61 6c 67 6f 72 69 | le.servers.Load-balancing.algori |
| 102fe0 | 74 68 6d 73 20 74 6f 20 62 65 20 75 73 65 64 20 66 6f 72 20 64 69 73 74 72 69 62 75 74 69 6e 64 | thms.to.be.used.for.distributind |
| 103000 | 20 72 65 71 75 65 73 74 73 20 61 6d 6f 6e 67 20 74 68 65 20 76 61 69 6c 61 62 6c 65 20 73 65 72 | .requests.among.the.vailable.ser |
| 103020 | 76 65 72 73 00 4c 6f 61 64 2d 62 61 6c 61 6e 63 69 6e 67 20 73 63 68 65 64 75 6c 65 20 61 6c 67 | vers.Load-balancing.schedule.alg |
| 103040 | 6f 72 69 74 68 6d 3a 00 4c 6f 63 61 6c 00 4c 6f 63 61 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f | orithm:.Local.Local.Configuratio |
| 103060 | 6e 20 2d 20 41 6e 6e 6f 74 61 74 65 64 3a 00 4c 6f 63 61 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 | n.-.Annotated:.Local.Configurati |
| 103080 | 6f 6e 3a 00 4c 6f 63 61 6c 20 49 50 20 60 3c 61 64 64 72 65 73 73 3e 60 20 75 73 65 64 20 77 68 | on:.Local.IP.`<address>`.used.wh |
| 1030a0 | 65 6e 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6e 67 20 74 6f 20 74 68 65 20 48 41 20 70 65 65 72 2e | en.communicating.to.the.HA.peer. |
| 1030c0 | 00 4c 6f 63 61 6c 20 49 50 20 60 3c 61 64 64 72 65 73 73 3e 60 20 75 73 65 64 20 77 68 65 6e 20 | .Local.IP.`<address>`.used.when. |
| 1030e0 | 63 6f 6d 6d 75 6e 69 63 61 74 69 6e 67 20 74 6f 20 74 68 65 20 66 61 69 6c 6f 76 65 72 20 70 65 | communicating.to.the.failover.pe |
| 103100 | 65 72 2e 00 4c 6f 63 61 6c 20 49 50 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 6c 69 73 74 65 6e | er..Local.IP.addresses.to.listen |
| 103120 | 20 6f 6e 00 4c 6f 63 61 6c 20 49 50 76 34 20 61 64 64 72 65 73 73 65 73 20 66 6f 72 20 73 65 72 | .on.Local.IPv4.addresses.for.ser |
| 103140 | 76 69 63 65 20 74 6f 20 6c 69 73 74 65 6e 20 6f 6e 2e 00 4c 6f 63 61 6c 20 52 6f 75 74 65 20 49 | vice.to.listen.on..Local.Route.I |
| 103160 | 50 76 34 00 4c 6f 63 61 6c 20 52 6f 75 74 65 20 49 50 76 36 00 4c 6f 63 61 6c 20 52 6f 75 74 65 | Pv4.Local.Route.IPv6.Local.Route |
| 103180 | 20 50 6f 6c 69 63 79 00 4c 6f 63 61 6c 20 55 73 65 72 20 41 63 63 6f 75 6e 74 00 4c 6f 63 61 6c | .Policy.Local.User.Account.Local |
| 1031a0 | 20 70 61 74 68 20 74 68 61 74 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 6b 6e 6f 77 6e 20 68 6f | .path.that.includes.the.known.ho |
| 1031c0 | 73 74 73 20 66 69 6c 65 2e 00 4c 6f 63 61 6c 20 70 61 74 68 20 74 68 61 74 20 69 6e 63 6c 75 64 | sts.file..Local.path.that.includ |
| 1031e0 | 65 73 20 74 68 65 20 70 72 69 76 61 74 65 20 6b 65 79 20 66 69 6c 65 20 6f 66 20 74 68 65 20 72 | es.the.private.key.file.of.the.r |
| 103200 | 6f 75 74 65 72 2e 00 4c 6f 63 61 6c 20 70 61 74 68 20 74 68 61 74 20 69 6e 63 6c 75 64 65 73 20 | outer..Local.path.that.includes. |
| 103220 | 74 68 65 20 70 75 62 6c 69 63 20 6b 65 79 20 66 69 6c 65 20 6f 66 20 74 68 65 20 72 6f 75 74 65 | the.public.key.file.of.the.route |
| 103240 | 72 2e 00 4c 6f 63 61 6c 20 72 6f 75 74 65 00 4c 6f 63 61 6c 6c 79 20 63 6f 6e 6e 65 63 74 20 74 | r..Local.route.Locally.connect.t |
| 103260 | 6f 20 73 65 72 69 61 6c 20 70 6f 72 74 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 64 65 | o.serial.port.identified.by.`<de |
| 103280 | 76 69 63 65 3e 60 2e 00 4c 6f 63 61 6c 6c 79 20 73 69 67 6e 69 66 69 63 61 6e 74 20 61 64 6d 69 | vice>`..Locally.significant.admi |
| 1032a0 | 6e 69 73 74 72 61 74 69 76 65 20 64 69 73 74 61 6e 63 65 2e 00 4c 6f 67 20 61 6c 65 72 74 00 4c | nistrative.distance..Log.alert.L |
| 1032c0 | 6f 67 20 61 75 64 69 74 00 4c 6f 67 20 63 68 61 6e 67 65 73 20 69 6e 20 61 64 6a 61 63 65 6e 63 | og.audit.Log.changes.in.adjacenc |
| 1032e0 | 79 20 73 74 61 74 65 2e 00 4c 6f 67 20 65 76 65 72 79 74 68 69 6e 67 00 4c 6f 67 20 6d 65 73 73 | y.state..Log.everything.Log.mess |
| 103300 | 61 67 65 73 20 66 72 6f 6d 20 61 20 73 70 65 63 69 66 69 65 64 20 69 6d 61 67 65 20 63 61 6e 20 | ages.from.a.specified.image.can. |
| 103320 | 62 65 20 64 69 73 70 6c 61 79 65 64 20 6f 6e 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 20 44 65 74 | be.displayed.on.the.console..Det |
| 103340 | 61 69 6c 73 20 6f 66 20 61 6c 6c 6f 77 65 64 20 70 61 72 61 6d 65 74 65 72 73 3a 00 4c 6f 67 20 | ails.of.allowed.parameters:.Log. |
| 103360 | 73 79 73 6c 6f 67 20 6d 65 73 73 61 67 65 73 20 74 6f 20 60 60 2f 64 65 76 2f 63 6f 6e 73 6f 6c | syslog.messages.to.``/dev/consol |
| 103380 | 65 60 60 2c 20 66 6f 72 20 61 6e 20 65 78 70 6c 61 6e 61 74 69 6f 6e 20 6f 6e 20 3a 72 65 66 3a | e``,.for.an.explanation.on.:ref: |
| 1033a0 | 60 73 79 73 6c 6f 67 5f 66 61 63 69 6c 69 74 69 65 73 60 20 6b 65 79 77 6f 72 64 73 20 61 6e 64 | `syslog_facilities`.keywords.and |
| 1033c0 | 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f 73 65 76 65 72 69 74 79 5f 6c 65 76 65 6c 60 20 6b 65 | .:ref:`syslog_severity_level`.ke |
| 1033e0 | 79 77 6f 72 64 73 20 73 65 65 20 74 61 62 6c 65 73 20 62 65 6c 6f 77 2e 00 4c 6f 67 20 73 79 73 | ywords.see.tables.below..Log.sys |
| 103400 | 6c 6f 67 20 6d 65 73 73 61 67 65 73 20 74 6f 20 66 69 6c 65 20 73 70 65 63 69 66 69 65 64 20 76 | log.messages.to.file.specified.v |
| 103420 | 69 61 20 60 3c 66 69 6c 65 6e 61 6d 65 3e 60 2c 20 66 6f 72 20 61 6e 20 65 78 70 6c 61 6e 61 74 | ia.`<filename>`,.for.an.explanat |
| 103440 | 69 6f 6e 20 6f 6e 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f 66 61 63 69 6c 69 74 69 65 73 60 20 | ion.on.:ref:`syslog_facilities`. |
| 103460 | 6b 65 79 77 6f 72 64 73 20 61 6e 64 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f 73 65 76 65 72 69 | keywords.and.:ref:`syslog_severi |
| 103480 | 74 79 5f 6c 65 76 65 6c 60 20 6b 65 79 77 6f 72 64 73 20 73 65 65 20 74 61 62 6c 65 73 20 62 65 | ty_level`.keywords.see.tables.be |
| 1034a0 | 6c 6f 77 2e 00 4c 6f 67 20 73 79 73 6c 6f 67 20 6d 65 73 73 61 67 65 73 20 74 6f 20 72 65 6d 6f | low..Log.syslog.messages.to.remo |
| 1034c0 | 74 65 20 68 6f 73 74 20 73 70 65 63 69 66 69 65 64 20 62 79 20 60 3c 61 64 64 72 65 73 73 3e 60 | te.host.specified.by.`<address>` |
| 1034e0 | 2e 20 54 68 65 20 61 64 64 72 65 73 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 62 | ..The.address.can.be.specified.b |
| 103500 | 79 20 65 69 74 68 65 72 20 46 51 44 4e 20 6f 72 20 49 50 20 61 64 64 72 65 73 73 2e 20 46 6f 72 | y.either.FQDN.or.IP.address..For |
| 103520 | 20 61 6e 20 65 78 70 6c 61 6e 61 74 69 6f 6e 20 6f 6e 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f | .an.explanation.on.:ref:`syslog_ |
| 103540 | 66 61 63 69 6c 69 74 69 65 73 60 20 6b 65 79 77 6f 72 64 73 20 61 6e 64 20 3a 72 65 66 3a 60 73 | facilities`.keywords.and.:ref:`s |
| 103560 | 79 73 6c 6f 67 5f 73 65 76 65 72 69 74 79 5f 6c 65 76 65 6c 60 20 6b 65 79 77 6f 72 64 73 20 73 | yslog_severity_level`.keywords.s |
| 103580 | 65 65 20 74 61 62 6c 65 73 20 62 65 6c 6f 77 2e 00 4c 6f 67 20 74 68 65 20 63 6f 6e 6e 65 63 74 | ee.tables.below..Log.the.connect |
| 1035a0 | 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 65 76 65 6e 74 73 20 70 65 72 20 70 72 6f 74 6f 63 6f 6c | ion.tracking.events.per.protocol |
| 1035c0 | 2e 00 4c 6f 67 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 65 76 | ..Log.the.connection.tracking.ev |
| 1035e0 | 65 6e 74 73 20 70 65 72 20 74 79 70 65 2e 00 4c 6f 67 67 69 6e 67 00 4c 6f 67 67 69 6e 67 20 63 | ents.per.type..Logging.Logging.c |
| 103600 | 61 6e 20 62 65 20 65 6e 61 62 6c 65 20 66 6f 72 20 65 76 65 72 79 20 73 69 6e 67 6c 65 20 66 69 | an.be.enable.for.every.single.fi |
| 103620 | 72 65 77 61 6c 6c 20 72 75 6c 65 2e 20 49 66 20 65 6e 61 62 6c 65 64 2c 20 6f 74 68 65 72 20 6c | rewall.rule..If.enabled,.other.l |
| 103640 | 6f 67 20 6f 70 74 69 6f 6e 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 2e 00 4c 6f 67 67 69 | og.options.can.be.defined..Loggi |
| 103660 | 6e 67 20 74 6f 20 61 20 72 65 6d 6f 74 65 20 68 6f 73 74 20 6c 65 61 76 65 73 20 74 68 65 20 6c | ng.to.a.remote.host.leaves.the.l |
| 103680 | 6f 63 61 6c 20 6c 6f 67 67 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 6e 74 61 63 | ocal.logging.configuration.intac |
| 1036a0 | 74 2c 20 69 74 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 70 61 72 61 6c | t,.it.can.be.configured.in.paral |
| 1036c0 | 6c 65 6c 20 74 6f 20 61 20 63 75 73 74 6f 6d 20 66 69 6c 65 20 6f 72 20 63 6f 6e 73 6f 6c 65 20 | lel.to.a.custom.file.or.console. |
| 1036e0 | 6c 6f 67 67 69 6e 67 2e 20 59 6f 75 20 63 61 6e 20 6c 6f 67 20 74 6f 20 6d 75 6c 74 69 70 6c 65 | logging..You.can.log.to.multiple |
| 103700 | 20 68 6f 73 74 73 20 61 74 20 74 68 65 20 73 61 6d 65 20 74 69 6d 65 2c 20 75 73 69 6e 67 20 65 | .hosts.at.the.same.time,.using.e |
| 103720 | 69 74 68 65 72 20 54 43 50 20 6f 72 20 55 44 50 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 | ither.TCP.or.UDP..The.default.is |
| 103740 | 20 73 65 6e 64 69 6e 67 20 74 68 65 20 6d 65 73 73 61 67 65 73 20 76 69 61 20 70 6f 72 74 20 35 | .sending.the.messages.via.port.5 |
| 103760 | 31 34 2f 55 44 50 2e 00 4c 6f 67 69 6e 20 42 61 6e 6e 65 72 00 4c 6f 67 69 6e 20 6c 69 6d 69 74 | 14/UDP..Login.Banner.Login.limit |
| 103780 | 73 00 4c 6f 67 69 6e 2f 55 73 65 72 20 4d 61 6e 61 67 65 6d 65 6e 74 00 4c 6f 6b 69 00 4c 6f 6f | s.Login/User.Management.Loki.Loo |
| 1037a0 | 70 20 46 72 65 65 20 41 6c 74 65 72 6e 61 74 65 20 28 4c 46 41 29 00 4c 6f 6f 70 62 61 63 6b 00 | p.Free.Alternate.(LFA).Loopback. |
| 1037c0 | 4c 6f 6f 70 62 61 63 6b 73 20 6f 63 63 75 72 73 20 61 74 20 74 68 65 20 49 50 20 6c 65 76 65 6c | Loopbacks.occurs.at.the.IP.level |
| 1037e0 | 20 74 68 65 20 73 61 6d 65 20 77 61 79 20 61 73 20 66 6f 72 20 6f 74 68 65 72 20 69 6e 74 65 72 | .the.same.way.as.for.other.inter |
| 103800 | 66 61 63 65 73 2c 20 65 74 68 65 72 6e 65 74 20 66 72 61 6d 65 73 20 61 72 65 20 6e 6f 74 20 66 | faces,.ethernet.frames.are.not.f |
| 103820 | 6f 72 77 61 72 64 65 64 20 62 65 74 77 65 65 6e 20 50 73 65 75 64 6f 2d 45 74 68 65 72 6e 65 74 | orwarded.between.Pseudo-Ethernet |
| 103840 | 20 69 6e 74 65 72 66 61 63 65 73 2e 00 4c 6f 77 00 4d 41 43 20 47 72 6f 75 70 73 00 4d 41 43 20 | .interfaces..Low.MAC.Groups.MAC. |
| 103860 | 61 64 64 72 65 73 73 20 61 67 69 6e 67 20 60 3c 74 69 6d 65 60 3e 20 69 6e 20 73 65 63 6f 6e 64 | address.aging.`<time`>.in.second |
| 103880 | 73 20 28 64 65 66 61 75 6c 74 3a 20 33 30 30 29 2e 00 4d 41 43 2f 50 48 59 20 69 6e 66 6f 72 6d | s.(default:.300)..MAC/PHY.inform |
| 1038a0 | 61 74 69 6f 6e 00 4d 41 43 56 4c 41 4e 20 2d 20 50 73 65 75 64 6f 20 45 74 68 65 72 6e 65 74 00 | ation.MACVLAN.-.Pseudo.Ethernet. |
| 1038c0 | 4d 41 43 73 65 63 00 4d 41 43 73 65 63 20 69 73 20 61 6e 20 49 45 45 45 20 73 74 61 6e 64 61 72 | MACsec.MACsec.is.an.IEEE.standar |
| 1038e0 | 64 20 28 49 45 45 45 20 38 30 32 2e 31 41 45 29 20 66 6f 72 20 4d 41 43 20 73 65 63 75 72 69 74 | d.(IEEE.802.1AE).for.MAC.securit |
| 103900 | 79 2c 20 69 6e 74 72 6f 64 75 63 65 64 20 69 6e 20 32 30 30 36 2e 20 49 74 20 64 65 66 69 6e 65 | y,.introduced.in.2006..It.define |
| 103920 | 73 20 61 20 77 61 79 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 61 20 70 72 6f 74 6f 63 6f 6c 20 | s.a.way.to.establish.a.protocol. |
| 103940 | 69 6e 64 65 70 65 6e 64 65 6e 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 74 | independent.connection.between.t |
| 103960 | 77 6f 20 68 6f 73 74 73 20 77 69 74 68 20 64 61 74 61 20 63 6f 6e 66 69 64 65 6e 74 69 61 6c 69 | wo.hosts.with.data.confidentiali |
| 103980 | 74 79 2c 20 61 75 74 68 65 6e 74 69 63 69 74 79 20 61 6e 64 2f 6f 72 20 69 6e 74 65 67 72 69 74 | ty,.authenticity.and/or.integrit |
| 1039a0 | 79 2c 20 75 73 69 6e 67 20 47 43 4d 2d 41 45 53 2d 31 32 38 2e 20 4d 41 43 73 65 63 20 6f 70 65 | y,.using.GCM-AES-128..MACsec.ope |
| 1039c0 | 72 61 74 65 73 20 6f 6e 20 74 68 65 20 45 74 68 65 72 6e 65 74 20 6c 61 79 65 72 20 61 6e 64 20 | rates.on.the.Ethernet.layer.and. |
| 1039e0 | 61 73 20 73 75 63 68 20 69 73 20 61 20 6c 61 79 65 72 20 32 20 70 72 6f 74 6f 63 6f 6c 2c 20 77 | as.such.is.a.layer.2.protocol,.w |
| 103a00 | 68 69 63 68 20 6d 65 61 6e 73 20 69 74 27 73 20 64 65 73 69 67 6e 65 64 20 74 6f 20 73 65 63 75 | hich.means.it's.designed.to.secu |
| 103a20 | 72 65 20 74 72 61 66 66 69 63 20 77 69 74 68 69 6e 20 61 20 6c 61 79 65 72 20 32 20 6e 65 74 77 | re.traffic.within.a.layer.2.netw |
| 103a40 | 6f 72 6b 2c 20 69 6e 63 6c 75 64 69 6e 67 20 44 48 43 50 20 6f 72 20 41 52 50 20 72 65 71 75 65 | ork,.including.DHCP.or.ARP.reque |
| 103a60 | 73 74 73 2e 20 49 74 20 64 6f 65 73 20 6e 6f 74 20 63 6f 6d 70 65 74 65 20 77 69 74 68 20 6f 74 | sts..It.does.not.compete.with.ot |
| 103a80 | 68 65 72 20 73 65 63 75 72 69 74 79 20 73 6f 6c 75 74 69 6f 6e 73 20 73 75 63 68 20 61 73 20 49 | her.security.solutions.such.as.I |
| 103aa0 | 50 73 65 63 20 28 6c 61 79 65 72 20 33 29 20 6f 72 20 54 4c 53 20 28 6c 61 79 65 72 20 34 29 2c | Psec.(layer.3).or.TLS.(layer.4), |
| 103ac0 | 20 61 73 20 61 6c 6c 20 74 68 6f 73 65 20 73 6f 6c 75 74 69 6f 6e 73 20 61 72 65 20 75 73 65 64 | .as.all.those.solutions.are.used |
| 103ae0 | 20 66 6f 72 20 74 68 65 69 72 20 6f 77 6e 20 73 70 65 63 69 66 69 63 20 75 73 65 20 63 61 73 65 | .for.their.own.specific.use.case |
| 103b00 | 73 2e 00 4d 41 43 73 65 63 20 69 73 20 61 6e 20 69 6e 74 65 72 65 73 74 69 6e 67 20 61 6c 74 65 | s..MACsec.is.an.interesting.alte |
| 103b20 | 72 6e 61 74 69 76 65 20 74 6f 20 65 78 69 73 74 69 6e 67 20 74 75 6e 6e 65 6c 69 6e 67 20 73 6f | rnative.to.existing.tunneling.so |
| 103b40 | 6c 75 74 69 6f 6e 73 20 74 68 61 74 20 70 72 6f 74 65 63 74 73 20 6c 61 79 65 72 20 32 20 62 79 | lutions.that.protects.layer.2.by |
| 103b60 | 20 70 65 72 66 6f 72 6d 69 6e 67 20 69 6e 74 65 67 72 69 74 79 2c 20 6f 72 69 67 69 6e 20 61 75 | .performing.integrity,.origin.au |
| 103b80 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 2c 20 61 6e 64 20 6f 70 74 69 6f 6e 61 6c 6c 79 20 65 6e 63 | thentication,.and.optionally.enc |
| 103ba0 | 72 79 70 74 69 6f 6e 2e 20 54 68 65 20 74 79 70 69 63 61 6c 20 75 73 65 20 63 61 73 65 20 69 73 | ryption..The.typical.use.case.is |
| 103bc0 | 20 74 6f 20 75 73 65 20 4d 41 43 73 65 63 20 62 65 74 77 65 65 6e 20 68 6f 73 74 73 20 61 6e 64 | .to.use.MACsec.between.hosts.and |
| 103be0 | 20 61 63 63 65 73 73 20 73 77 69 74 63 68 65 73 2c 20 62 65 74 77 65 65 6e 20 74 77 6f 20 68 6f | .access.switches,.between.two.ho |
| 103c00 | 73 74 73 2c 20 6f 72 20 62 65 74 77 65 65 6e 20 74 77 6f 20 73 77 69 74 63 68 65 73 2e 20 69 6e | sts,.or.between.two.switches..in |
| 103c20 | 20 74 68 69 73 20 65 78 61 6d 70 6c 65 20 62 65 6c 6f 77 2c 20 77 65 20 75 73 65 20 56 58 4c 41 | .this.example.below,.we.use.VXLA |
| 103c40 | 4e 20 61 6e 64 20 4d 41 43 73 65 63 20 74 6f 20 73 65 63 75 72 65 20 74 68 65 20 74 75 6e 6e 65 | N.and.MACsec.to.secure.the.tunne |
| 103c60 | 6c 2e 00 4d 41 43 73 65 63 20 6f 6e 6c 79 20 70 72 6f 76 69 64 65 73 20 61 75 74 68 65 6e 74 69 | l..MACsec.only.provides.authenti |
| 103c80 | 63 61 74 69 6f 6e 20 62 79 20 64 65 66 61 75 6c 74 2c 20 65 6e 63 72 79 70 74 69 6f 6e 20 69 73 | cation.by.default,.encryption.is |
| 103ca0 | 20 6f 70 74 69 6f 6e 61 6c 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 65 6e 61 | .optional..This.command.will.ena |
| 103cc0 | 62 6c 65 20 65 6e 63 72 79 70 74 69 6f 6e 20 66 6f 72 20 61 6c 6c 20 6f 75 74 67 6f 69 6e 67 20 | ble.encryption.for.all.outgoing. |
| 103ce0 | 70 61 63 6b 65 74 73 2e 00 4d 41 43 73 65 63 20 6f 70 74 69 6f 6e 73 00 4d 41 43 73 65 63 20 6f | packets..MACsec.options.MACsec.o |
| 103d00 | 76 65 72 20 77 61 6e 00 4d 44 49 20 70 6f 77 65 72 00 4d 46 41 20 54 4f 54 50 20 6f 70 74 69 6f | ver.wan.MDI.power.MFA.TOTP.optio |
| 103d20 | 6e 73 00 4d 46 41 2f 32 46 41 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 75 73 69 6e 67 20 | ns.MFA/2FA.authentication.using. |
| 103d40 | 4f 54 50 20 28 6f 6e 65 20 74 69 6d 65 20 70 61 73 73 77 6f 72 64 73 29 00 4d 50 4c 53 00 4d 50 | OTP.(one.time.passwords).MPLS.MP |
| 103d60 | 4c 53 20 73 75 70 70 6f 72 74 20 69 6e 20 56 79 4f 53 20 69 73 20 6e 6f 74 20 66 69 6e 69 73 68 | LS.support.in.VyOS.is.not.finish |
| 103d80 | 65 64 20 79 65 74 2c 20 61 6e 64 20 74 68 65 72 65 66 6f 72 65 20 69 74 73 20 66 75 6e 63 74 69 | ed.yet,.and.therefore.its.functi |
| 103da0 | 6f 6e 61 6c 69 74 79 20 69 73 20 6c 69 6d 69 74 65 64 2e 20 43 75 72 72 65 6e 74 6c 79 20 74 68 | onality.is.limited..Currently.th |
| 103dc0 | 65 72 65 20 69 73 20 6e 6f 20 73 75 70 70 6f 72 74 20 66 6f 72 20 4d 50 4c 53 20 65 6e 61 62 6c | ere.is.no.support.for.MPLS.enabl |
| 103de0 | 65 64 20 56 50 4e 20 73 65 72 76 69 63 65 73 20 73 75 63 68 20 61 73 20 4c 32 56 50 4e 73 20 61 | ed.VPN.services.such.as.L2VPNs.a |
| 103e00 | 6e 64 20 6d 56 50 4e 73 2e 20 52 53 56 50 20 73 75 70 70 6f 72 74 20 69 73 20 61 6c 73 6f 20 6e | nd.mVPNs..RSVP.support.is.also.n |
| 103e20 | 6f 74 20 70 72 65 73 65 6e 74 20 61 73 20 74 68 65 20 75 6e 64 65 72 6c 79 69 6e 67 20 72 6f 75 | ot.present.as.the.underlying.rou |
| 103e40 | 74 69 6e 67 20 73 74 61 63 6b 20 28 46 52 52 29 20 64 6f 65 73 20 6e 6f 74 20 69 6d 70 6c 65 6d | ting.stack.(FRR).does.not.implem |
| 103e60 | 65 6e 74 20 69 74 2e 20 43 75 72 72 65 6e 74 6c 79 20 56 79 4f 53 20 69 6d 70 6c 65 6d 65 6e 74 | ent.it..Currently.VyOS.implement |
| 103e80 | 73 20 4c 44 50 20 61 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 52 46 43 20 35 30 33 36 3b 20 | s.LDP.as.described.in.RFC.5036;. |
| 103ea0 | 6f 74 68 65 72 20 4c 44 50 20 73 74 61 6e 64 61 72 64 20 61 72 65 20 74 68 65 20 66 6f 6c 6c 6f | other.LDP.standard.are.the.follo |
| 103ec0 | 77 69 6e 67 20 6f 6e 65 73 3a 20 52 46 43 20 36 37 32 30 2c 20 52 46 43 20 36 36 36 37 2c 20 52 | wing.ones:.RFC.6720,.RFC.6667,.R |
| 103ee0 | 46 43 20 35 39 31 39 2c 20 52 46 43 20 35 35 36 31 2c 20 52 46 43 20 37 35 35 32 2c 20 52 46 43 | FC.5919,.RFC.5561,.RFC.7552,.RFC |
| 103f00 | 20 34 34 34 37 2e 20 42 65 63 61 75 73 65 20 4d 50 4c 53 20 69 73 20 61 6c 72 65 61 64 79 20 61 | .4447..Because.MPLS.is.already.a |
| 103f20 | 76 61 69 6c 61 62 6c 65 20 28 46 52 52 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 73 20 52 46 43 20 | vailable.(FRR.also.supports.RFC. |
| 103f40 | 33 30 33 31 29 2e 00 4d 53 53 20 76 61 6c 75 65 20 3d 20 4d 54 55 20 2d 20 32 30 20 28 49 50 20 | 3031)..MSS.value.=.MTU.-.20.(IP. |
| 103f60 | 68 65 61 64 65 72 29 20 2d 20 32 30 20 28 54 43 50 20 68 65 61 64 65 72 29 2c 20 72 65 73 75 6c | header).-.20.(TCP.header),.resul |
| 103f80 | 74 69 6e 67 20 69 6e 20 31 34 35 32 20 62 79 74 65 73 20 6f 6e 20 61 20 31 34 39 32 20 62 79 74 | ting.in.1452.bytes.on.a.1492.byt |
| 103fa0 | 65 20 4d 54 55 2e 00 4d 53 53 20 76 61 6c 75 65 20 3d 20 4d 54 55 20 2d 20 34 30 20 28 49 50 76 | e.MTU..MSS.value.=.MTU.-.40.(IPv |
| 103fc0 | 36 20 68 65 61 64 65 72 29 20 2d 20 32 30 20 28 54 43 50 20 68 65 61 64 65 72 29 2c 20 72 65 73 | 6.header).-.20.(TCP.header),.res |
| 103fe0 | 75 6c 74 69 6e 67 20 69 6e 20 31 34 33 32 20 62 79 74 65 73 20 6f 6e 20 61 20 31 34 39 32 20 62 | ulting.in.1432.bytes.on.a.1492.b |
| 104000 | 79 74 65 20 4d 54 55 2e 00 4d 54 55 00 4d 61 69 6c 20 73 79 73 74 65 6d 00 4d 61 69 6e 20 6e 6f | yte.MTU..MTU.Mail.system.Main.no |
| 104020 | 74 65 73 20 72 65 67 61 72 64 69 6e 67 20 74 68 69 73 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 61 | tes.regarding.this.packet.flow.a |
| 104040 | 6e 64 20 74 65 72 6d 69 6e 6f 6c 6f 67 79 20 75 73 65 64 20 69 6e 20 56 79 4f 53 20 66 69 72 65 | nd.terminology.used.in.VyOS.fire |
| 104060 | 77 61 6c 6c 3a 00 4d 61 69 6e 20 73 74 72 75 63 74 75 72 65 20 56 79 4f 53 20 66 69 72 65 77 61 | wall:.Main.structure.VyOS.firewa |
| 104080 | 6c 6c 20 63 6c 69 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 3a 00 4d 61 69 6e 20 73 74 72 75 63 | ll.cli.is.shown.next:.Main.struc |
| 1040a0 | 74 75 72 65 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 3a 00 4d 61 69 6e 74 65 6e 61 6e 63 65 20 | ture.is.shown.next:.Maintenance. |
| 1040c0 | 6d 6f 64 65 00 4d 61 6b 65 20 63 6f 6e 66 69 67 2d 73 79 6e 63 20 72 65 6c 65 76 61 6e 74 20 63 | mode.Make.config-sync.relevant.c |
| 1040e0 | 68 61 6e 67 65 73 20 74 6f 20 52 6f 75 74 65 72 20 41 27 73 20 63 6f 6e 66 69 67 75 72 61 74 69 | hanges.to.Router.A's.configurati |
| 104100 | 6f 6e 00 4d 61 6b 65 20 73 75 72 65 20 63 6f 6e 6e 74 72 61 63 6b 20 69 73 20 65 6e 61 62 6c 65 | on.Make.sure.conntrack.is.enable |
| 104120 | 64 20 62 79 20 72 75 6e 6e 69 6e 67 20 61 6e 64 20 73 68 6f 77 20 63 6f 6e 6e 65 63 74 69 6f 6e | d.by.running.and.show.connection |
| 104140 | 20 74 72 61 63 6b 69 6e 67 20 74 61 62 6c 65 2e 00 4d 61 6e 61 67 65 20 69 6e 74 65 72 6e 61 6c | .tracking.table..Manage.internal |
| 104160 | 20 71 75 65 75 65 20 73 69 7a 65 2c 20 64 65 66 61 75 6c 74 20 73 69 7a 65 20 69 73 20 34 30 39 | .queue.size,.default.size.is.409 |
| 104180 | 36 20 65 76 65 6e 74 73 2e 00 4d 61 6e 61 67 65 20 6c 6f 67 20 6c 65 76 65 6c 00 4d 61 6e 61 67 | 6.events..Manage.log.level.Manag |
| 1041a0 | 65 64 20 64 65 76 69 63 65 73 00 4d 61 6e 61 67 65 6d 65 6e 74 20 46 72 61 6d 65 20 50 72 6f 74 | ed.devices.Management.Frame.Prot |
| 1041c0 | 65 63 74 69 6f 6e 20 28 4d 46 50 29 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 49 45 45 45 20 38 | ection.(MFP).according.to.IEEE.8 |
| 1041e0 | 30 32 2e 31 31 77 00 4d 61 6e 64 61 74 6f 72 79 20 53 65 74 74 69 6e 67 73 00 4d 61 6e 75 61 6c | 02.11w.Mandatory.Settings.Manual |
| 104200 | 20 4e 65 69 67 68 62 6f 72 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 4d 61 6e 75 61 6c 6c 79 | .Neighbor.Configuration.Manually |
| 104220 | 20 74 72 69 67 67 65 72 20 63 65 72 74 69 66 69 63 61 74 65 20 72 65 6e 65 77 61 6c 2e 20 54 68 | .trigger.certificate.renewal..Th |
| 104240 | 69 73 20 77 69 6c 6c 20 62 65 20 64 6f 6e 65 20 74 77 69 63 65 20 61 20 64 61 79 2e 00 4d 61 70 | is.will.be.done.twice.a.day..Map |
| 104260 | 73 20 74 68 65 20 56 4e 49 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 56 4c 41 4e 20 | s.the.VNI.to.the.specified.VLAN. |
| 104280 | 69 64 2e 20 54 68 65 20 56 4c 41 4e 20 63 61 6e 20 74 68 65 6e 20 62 65 20 63 6f 6e 73 75 6d 65 | id..The.VLAN.can.then.be.consume |
| 1042a0 | 64 20 62 79 20 61 20 62 72 69 64 67 65 2e 00 4d 61 72 6b 20 52 41 44 49 55 53 20 73 65 72 76 65 | d.by.a.bridge..Mark.RADIUS.serve |
| 1042c0 | 72 20 61 73 20 6f 66 66 6c 69 6e 65 20 66 6f 72 20 74 68 69 73 20 67 69 76 65 6e 20 60 3c 74 69 | r.as.offline.for.this.given.`<ti |
| 1042e0 | 6d 65 3e 60 20 69 6e 20 73 65 63 6f 6e 64 73 2e 00 4d 61 72 6b 20 74 68 65 20 43 41 73 20 70 72 | me>`.in.seconds..Mark.the.CAs.pr |
| 104300 | 69 76 61 74 65 20 6b 65 79 20 61 73 20 70 61 73 73 77 6f 72 64 20 70 72 6f 74 65 63 74 65 64 2e | ivate.key.as.password.protected. |
| 104320 | 20 55 73 65 72 20 69 73 20 61 73 6b 65 64 20 66 6f 72 20 74 68 65 20 70 61 73 73 77 6f 72 64 20 | .User.is.asked.for.the.password. |
| 104340 | 77 68 65 6e 20 74 68 65 20 6b 65 79 20 69 73 20 72 65 66 65 72 65 6e 63 65 64 2e 00 4d 61 72 6b | when.the.key.is.referenced..Mark |
| 104360 | 20 74 68 65 20 70 72 69 76 61 74 65 20 6b 65 79 20 61 73 20 70 61 73 73 77 6f 72 64 20 70 72 6f | .the.private.key.as.password.pro |
| 104380 | 74 65 63 74 65 64 2e 20 55 73 65 72 20 69 73 20 61 73 6b 65 64 20 66 6f 72 20 74 68 65 20 70 61 | tected..User.is.asked.for.the.pa |
| 1043a0 | 73 73 77 6f 72 64 20 77 68 65 6e 20 74 68 65 20 6b 65 79 20 69 73 20 72 65 66 65 72 65 6e 63 65 | ssword.when.the.key.is.reference |
| 1043c0 | 64 2e 00 4d 61 74 63 68 20 42 47 50 20 6c 61 72 67 65 20 63 6f 6d 6d 75 6e 69 74 69 65 73 2e 00 | d..Match.BGP.large.communities.. |
| 1043e0 | 4d 61 74 63 68 20 49 50 20 61 64 64 72 65 73 73 65 73 20 62 61 73 65 64 20 6f 6e 20 69 74 73 20 | Match.IP.addresses.based.on.its. |
| 104400 | 67 65 6f 6c 6f 63 61 74 69 6f 6e 2e 20 4d 6f 72 65 20 69 6e 66 6f 3a 20 60 67 65 6f 69 70 20 6d | geolocation..More.info:.`geoip.m |
| 104420 | 61 74 63 68 69 6e 67 20 3c 68 74 74 70 73 3a 2f 2f 77 69 6b 69 2e 6e 66 74 61 62 6c 65 73 2e 6f | atching.<https://wiki.nftables.o |
| 104440 | 72 67 2f 77 69 6b 69 2d 6e 66 74 61 62 6c 65 73 2f 69 6e 64 65 78 2e 70 68 70 2f 47 65 6f 49 50 | rg/wiki-nftables/index.php/GeoIP |
| 104460 | 5f 6d 61 74 63 68 69 6e 67 3e 60 5f 2e 00 4d 61 74 63 68 20 49 50 20 61 64 64 72 65 73 73 65 73 | _matching>`_..Match.IP.addresses |
| 104480 | 20 62 61 73 65 64 20 6f 6e 20 69 74 73 20 67 65 6f 6c 6f 63 61 74 69 6f 6e 2e 20 4d 6f 72 65 20 | .based.on.its.geolocation..More. |
| 1044a0 | 69 6e 66 6f 3a 20 60 67 65 6f 69 70 20 6d 61 74 63 68 69 6e 67 20 3c 68 74 74 70 73 3a 2f 2f 77 | info:.`geoip.matching.<https://w |
| 1044c0 | 69 6b 69 2e 6e 66 74 61 62 6c 65 73 2e 6f 72 67 2f 77 69 6b 69 2d 6e 66 74 61 62 6c 65 73 2f 69 | iki.nftables.org/wiki-nftables/i |
| 1044e0 | 6e 64 65 78 2e 70 68 70 2f 47 65 6f 49 50 5f 6d 61 74 63 68 69 6e 67 3e 60 5f 2e 20 55 73 65 20 | ndex.php/GeoIP_matching>`_..Use. |
| 104500 | 69 6e 76 65 72 73 65 2d 6d 61 74 63 68 20 74 6f 20 6d 61 74 63 68 20 61 6e 79 74 68 69 6e 67 20 | inverse-match.to.match.anything. |
| 104520 | 65 78 63 65 70 74 20 74 68 65 20 67 69 76 65 6e 20 63 6f 75 6e 74 72 79 2d 63 6f 64 65 73 2e 00 | except.the.given.country-codes.. |
| 104540 | 4d 61 74 63 68 20 52 50 4b 49 20 76 61 6c 69 64 61 74 69 6f 6e 20 72 65 73 75 6c 74 2e 00 4d 61 | Match.RPKI.validation.result..Ma |
| 104560 | 74 63 68 20 61 20 70 72 6f 74 6f 63 6f 6c 20 63 72 69 74 65 72 69 61 2e 20 41 20 70 72 6f 74 6f | tch.a.protocol.criteria..A.proto |
| 104580 | 63 6f 6c 20 6e 75 6d 62 65 72 20 6f 72 20 61 20 6e 61 6d 65 20 77 68 69 63 68 20 69 73 20 64 65 | col.number.or.a.name.which.is.de |
| 1045a0 | 66 69 6e 65 64 20 69 6e 3a 20 60 60 2f 65 74 63 2f 70 72 6f 74 6f 63 6f 6c 73 60 60 2e 20 53 70 | fined.in:.``/etc/protocols``..Sp |
| 1045c0 | 65 63 69 61 6c 20 6e 61 6d 65 73 20 61 72 65 20 60 60 61 6c 6c 60 60 20 66 6f 72 20 61 6c 6c 20 | ecial.names.are.``all``.for.all. |
| 1045e0 | 70 72 6f 74 6f 63 6f 6c 73 20 61 6e 64 20 60 60 74 63 70 5f 75 64 70 60 60 20 66 6f 72 20 74 63 | protocols.and.``tcp_udp``.for.tc |
| 104600 | 70 20 61 6e 64 20 75 64 70 20 62 61 73 65 64 20 70 61 63 6b 65 74 73 2e 20 54 68 65 20 60 60 21 | p.and.udp.based.packets..The.``! |
| 104620 | 60 60 20 6e 65 67 61 74 65 73 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 70 72 6f 74 6f 63 6f 6c | ``.negates.the.selected.protocol |
| 104640 | 2e 00 4d 61 74 63 68 20 61 20 70 72 6f 74 6f 63 6f 6c 20 63 72 69 74 65 72 69 61 2e 20 41 20 70 | ..Match.a.protocol.criteria..A.p |
| 104660 | 72 6f 74 6f 63 6f 6c 20 6e 75 6d 62 65 72 20 6f 72 20 61 20 6e 61 6d 65 20 77 68 69 63 68 20 69 | rotocol.number.or.a.name.which.i |
| 104680 | 73 20 68 65 72 65 20 64 65 66 69 6e 65 64 3a 20 60 60 2f 65 74 63 2f 70 72 6f 74 6f 63 6f 6c 73 | s.here.defined:.``/etc/protocols |
| 1046a0 | 60 60 2e 20 53 70 65 63 69 61 6c 20 6e 61 6d 65 73 20 61 72 65 20 60 60 61 6c 6c 60 60 20 66 6f | ``..Special.names.are.``all``.fo |
| 1046c0 | 72 20 61 6c 6c 20 70 72 6f 74 6f 63 6f 6c 73 20 61 6e 64 20 60 60 74 63 70 5f 75 64 70 60 60 20 | r.all.protocols.and.``tcp_udp``. |
| 1046e0 | 66 6f 72 20 74 63 70 20 61 6e 64 20 75 64 70 20 62 61 73 65 64 20 70 61 63 6b 65 74 73 2e 20 54 | for.tcp.and.udp.based.packets..T |
| 104700 | 68 65 20 60 60 21 60 60 20 6e 65 67 61 74 65 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 70 72 6f | he.``!``.negate.the.selected.pro |
| 104720 | 74 6f 63 6f 6c 2e 00 4d 61 74 63 68 20 61 67 61 69 6e 73 74 20 74 68 65 20 73 74 61 74 65 20 6f | tocol..Match.against.the.state.o |
| 104740 | 66 20 61 20 70 61 63 6b 65 74 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 56 4c 41 4e 20 | f.a.packet..Match.based.on.VLAN. |
| 104760 | 69 64 65 6e 74 69 66 69 65 72 2e 20 52 61 6e 67 65 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 | identifier..Range.is.also.suppor |
| 104780 | 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 56 4c 41 4e 20 70 72 69 6f 72 69 74 | ted..Match.based.on.VLAN.priorit |
| 1047a0 | 79 20 28 50 72 69 6f 72 69 74 79 20 43 6f 64 65 20 50 6f 69 6e 74 20 2d 20 50 43 50 29 2e 20 52 | y.(Priority.Code.Point.-.PCP)..R |
| 1047c0 | 61 6e 67 65 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 | ange.is.also.supported..Match.ba |
| 1047e0 | 73 65 64 20 6f 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6d 61 72 6b 2e 00 4d 61 74 63 68 20 62 61 | sed.on.connection.mark..Match.ba |
| 104800 | 73 65 64 20 6f 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 70 72 6f 74 6f | sed.on.connection.tracking.proto |
| 104820 | 63 6f 6c 20 68 65 6c 70 65 72 20 6d 6f 64 75 6c 65 20 74 6f 20 73 65 63 75 72 65 20 75 73 65 20 | col.helper.module.to.secure.use. |
| 104840 | 6f 66 20 74 68 61 74 20 68 65 6c 70 65 72 20 6d 6f 64 75 6c 65 2e 20 53 65 65 20 62 65 6c 6f 77 | of.that.helper.module..See.below |
| 104860 | 20 66 6f 72 20 70 6f 73 73 69 62 6c 65 20 63 6f 6d 70 6c 65 74 69 6f 6e 73 20 60 3c 6d 6f 64 75 | .for.possible.completions.`<modu |
| 104880 | 6c 65 3e 60 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 64 73 63 70 20 76 61 6c 75 65 20 | le>`..Match.based.on.dscp.value. |
| 1048a0 | 63 72 69 74 65 72 69 61 2e 20 4d 75 6c 74 69 70 6c 65 20 76 61 6c 75 65 73 20 66 72 6f 6d 20 30 | criteria..Multiple.values.from.0 |
| 1048c0 | 20 74 6f 20 36 33 20 61 6e 64 20 72 61 6e 67 65 73 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e | .to.63.and.ranges.are.supported. |
| 1048e0 | 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 64 73 63 70 20 76 61 6c 75 65 2e 00 4d 61 74 63 | .Match.based.on.dscp.value..Matc |
| 104900 | 68 20 62 61 73 65 64 20 6f 6e 20 66 72 61 67 6d 65 6e 74 20 63 72 69 74 65 72 69 61 2e 00 4d 61 | h.based.on.fragment.criteria..Ma |
| 104920 | 74 63 68 20 62 61 73 65 64 20 6f 6e 20 66 72 61 67 6d 65 6e 74 61 74 69 6f 6e 2e 00 4d 61 74 63 | tch.based.on.fragmentation..Matc |
| 104940 | 68 20 62 61 73 65 64 20 6f 6e 20 69 63 6d 70 20 63 6f 64 65 20 61 6e 64 20 74 79 70 65 2e 00 4d | h.based.on.icmp.code.and.type..M |
| 104960 | 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 63 6d 70 20 74 79 70 65 2d 6e 61 6d 65 20 63 72 69 | atch.based.on.icmp.type-name.cri |
| 104980 | 74 65 72 69 61 2e 20 55 73 65 20 74 61 62 20 66 6f 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 | teria..Use.tab.for.information.a |
| 1049a0 | 62 6f 75 74 20 77 68 61 74 20 2a 2a 74 79 70 65 2d 6e 61 6d 65 2a 2a 20 63 72 69 74 65 72 69 61 | bout.what.**type-name**.criteria |
| 1049c0 | 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 | .are.supported..Match.based.on.i |
| 1049e0 | 63 6d 70 20 74 79 70 65 2d 6e 61 6d 65 2e 20 55 73 65 20 74 61 62 20 66 6f 72 20 69 6e 66 6f 72 | cmp.type-name..Use.tab.for.infor |
| 104a00 | 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 77 68 61 74 20 2a 2a 74 79 70 65 2d 6e 61 6d 65 2a 2a 20 | mation.about.what.**type-name**. |
| 104a20 | 63 72 69 74 65 72 69 61 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 | criteria.are.supported..Match.ba |
| 104a40 | 73 65 64 20 6f 6e 20 69 63 6d 70 76 36 20 74 79 70 65 2d 6e 61 6d 65 20 63 72 69 74 65 72 69 61 | sed.on.icmpv6.type-name.criteria |
| 104a60 | 2e 20 55 73 65 20 74 61 62 20 66 6f 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 | ..Use.tab.for.information.about. |
| 104a80 | 77 68 61 74 20 2a 2a 74 79 70 65 2d 6e 61 6d 65 2a 2a 20 63 72 69 74 65 72 69 61 20 61 72 65 20 | what.**type-name**.criteria.are. |
| 104aa0 | 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 63 6d 70 76 36 | supported..Match.based.on.icmpv6 |
| 104ac0 | 20 74 79 70 65 2d 6e 61 6d 65 2e 20 55 73 65 20 74 61 62 20 66 6f 72 20 69 6e 66 6f 72 6d 61 74 | .type-name..Use.tab.for.informat |
| 104ae0 | 69 6f 6e 20 61 62 6f 75 74 20 77 68 61 74 20 2a 2a 74 79 70 65 2d 6e 61 6d 65 2a 2a 20 63 72 69 | ion.about.what.**type-name**.cri |
| 104b00 | 74 65 72 69 61 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 | teria.are.supported..Match.based |
| 104b20 | 20 6f 6e 20 69 63 6d 70 7c 69 63 6d 70 76 36 20 63 6f 64 65 20 61 6e 64 20 74 79 70 65 2e 00 4d | .on.icmp|icmpv6.code.and.type..M |
| 104b40 | 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 63 6d 70 7c 69 63 6d 70 76 36 20 74 79 70 65 2d 6e | atch.based.on.icmp|icmpv6.type-n |
| 104b60 | 61 6d 65 20 63 72 69 74 65 72 69 61 2e 20 55 73 65 20 74 61 62 20 66 6f 72 20 69 6e 66 6f 72 6d | ame.criteria..Use.tab.for.inform |
| 104b80 | 61 74 69 6f 6e 20 61 62 6f 75 74 20 77 68 61 74 20 2a 2a 74 79 70 65 2d 6e 61 6d 65 2a 2a 20 63 | ation.about.what.**type-name**.c |
| 104ba0 | 72 69 74 65 72 69 61 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 | riteria.are.supported..Match.bas |
| 104bc0 | 65 64 20 6f 6e 20 69 63 6d 70 7c 69 63 6d 70 76 36 20 74 79 70 65 2d 6e 61 6d 65 20 63 72 69 74 | ed.on.icmp|icmpv6.type-name.crit |
| 104be0 | 65 72 69 61 2e 20 55 73 65 20 74 61 62 20 66 6f 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 | eria..Use.tab.for.information.ab |
| 104c00 | 6f 75 74 20 77 68 61 74 20 74 79 70 65 2d 6e 61 6d 65 20 63 72 69 74 65 72 69 61 20 61 72 65 20 | out.what.type-name.criteria.are. |
| 104c20 | 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 6e 62 6f 75 6e | supported..Match.based.on.inboun |
| 104c40 | 64 20 69 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 63 68 | d.interface.group..Prepending.ch |
| 104c60 | 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 | aracter.``!``.for.inverted.match |
| 104c80 | 69 6e 67 20 63 72 69 74 65 72 69 61 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 64 2e 20 46 | ing.criteria.is.also.supportd..F |
| 104ca0 | 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 49 46 41 43 45 5f 47 52 4f 55 50 60 60 00 4d 61 74 63 | or.example.``!IFACE_GROUP``.Matc |
| 104cc0 | 68 20 62 61 73 65 64 20 6f 6e 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 20 67 72 6f | h.based.on.inbound.interface.gro |
| 104ce0 | 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 | up..Prepending.character.``!``.f |
| 104d00 | 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 69 73 | or.inverted.matching.criteria.is |
| 104d20 | 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 | .also.supported..For.example.``! |
| 104d40 | 49 46 41 43 45 5f 47 52 4f 55 50 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 6e 62 | IFACE_GROUP``.Match.based.on.inb |
| 104d60 | 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 2e 20 57 69 6c 63 61 72 64 20 60 60 2a 60 60 20 63 61 | ound.interface..Wilcard.``*``.ca |
| 104d80 | 6e 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 60 65 74 68 32 2a 60 | n.be.used..For.example:.``eth2*` |
| 104da0 | 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 | `.Match.based.on.inbound.interfa |
| 104dc0 | 63 65 2e 20 57 69 6c 63 61 72 64 20 60 60 2a 60 60 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 46 | ce..Wilcard.``*``.can.be.used..F |
| 104de0 | 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 60 65 74 68 32 2a 60 60 2e 20 50 72 65 70 65 6e 64 69 6e | or.example:.``eth2*``..Prependin |
| 104e00 | 67 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d | g.character.``!``.for.inverted.m |
| 104e20 | 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 | atching.criteria.is.also.support |
| 104e40 | 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 65 74 68 32 60 60 00 4d 61 74 63 68 20 62 | d..For.example.``!eth2``.Match.b |
| 104e60 | 61 73 65 64 20 6f 6e 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 2e 20 57 69 6c 64 63 | ased.on.inbound.interface..Wildc |
| 104e80 | 61 72 64 20 60 60 2a 60 60 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 | ard.``*``.can.be.used..For.examp |
| 104ea0 | 6c 65 3a 20 60 60 65 74 68 32 2a 60 60 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 63 68 61 72 61 63 | le:.``eth2*``..Prepending.charac |
| 104ec0 | 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 | ter.``!``.for.inverted.matching. |
| 104ee0 | 63 72 69 74 65 72 69 61 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 20 46 6f 72 20 | criteria.is.also.supported..For. |
| 104f00 | 65 78 61 6d 70 6c 65 20 60 60 21 65 74 68 32 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e | example.``!eth2``.Match.based.on |
| 104f20 | 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 2e 20 57 69 6c 64 63 61 72 64 20 60 60 2a | .inbound.interface..Wildcard.``* |
| 104f40 | 60 60 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 60 65 | ``.can.be.used..For.example:.``e |
| 104f60 | 74 68 32 2a 60 60 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 61 72 61 63 74 65 72 | th2*``..Prepending.the.character |
| 104f80 | 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 65 72 69 61 20 74 6f | .``!``.to.invert.the.criteria.to |
| 104fa0 | 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 20 46 6f 72 20 65 78 | .match.is.also.supported..For.ex |
| 104fc0 | 61 6d 70 6c 65 20 60 60 21 65 74 68 32 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 | ample.``!eth2``.Match.based.on.i |
| 104fe0 | 6e 62 6f 75 6e 64 2f 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 2e 20 57 69 6c 63 61 | nbound/outbound.interface..Wilca |
| 105000 | 72 64 20 60 60 2a 60 60 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c | rd.``*``.can.be.used..For.exampl |
| 105020 | 65 3a 20 60 60 65 74 68 32 2a 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 70 73 65 | e:.``eth2*``.Match.based.on.ipse |
| 105040 | 63 20 63 72 69 74 65 72 69 61 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 70 73 65 63 | c.criteria..Match.based.on.ipsec |
| 105060 | 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 6e 61 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 | ..Match.based.on.nat.connection. |
| 105080 | 73 74 61 74 75 73 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 6f 75 74 62 6f 75 6e 64 20 | status..Match.based.on.outbound. |
| 1050a0 | 69 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 63 68 61 72 | interface.group..Prepending.char |
| 1050c0 | 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e | acter.``!``.for.inverted.matchin |
| 1050e0 | 67 20 63 72 69 74 65 72 69 61 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 64 2e 20 46 6f 72 | g.criteria.is.also.supportd..For |
| 105100 | 20 65 78 61 6d 70 6c 65 20 60 60 21 49 46 41 43 45 5f 47 52 4f 55 50 60 60 00 4d 61 74 63 68 20 | .example.``!IFACE_GROUP``.Match. |
| 105120 | 62 61 73 65 64 20 6f 6e 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 20 67 72 6f 75 | based.on.outbound.interface.grou |
| 105140 | 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f | p..Prepending.character.``!``.fo |
| 105160 | 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 69 73 20 | r.inverted.matching.criteria.is. |
| 105180 | 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 49 | also.supported..For.example.``!I |
| 1051a0 | 46 41 43 45 5f 47 52 4f 55 50 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 6f 75 74 62 | FACE_GROUP``.Match.based.on.outb |
| 1051c0 | 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 | ound.interface.group..Prepending |
| 1051e0 | 20 74 68 65 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 | .the.character.``!``.to.invert.t |
| 105200 | 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 | he.criteria.to.match.is.also.sup |
| 105220 | 70 6f 72 74 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 49 46 41 43 45 5f 47 52 4f | ported..For.example.``!IFACE_GRO |
| 105240 | 55 50 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 | UP``.Match.based.on.outbound.int |
| 105260 | 65 72 66 61 63 65 2e 20 57 69 6c 63 61 72 64 20 60 60 2a 60 60 20 63 61 6e 20 62 65 20 75 73 65 | erface..Wilcard.``*``.can.be.use |
| 105280 | 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 60 65 74 68 32 2a 60 60 00 4d 61 74 63 68 20 | d..For.example:.``eth2*``.Match. |
| 1052a0 | 62 61 73 65 64 20 6f 6e 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 2e 20 57 69 6c | based.on.outbound.interface..Wil |
| 1052c0 | 63 61 72 64 20 60 60 2a 60 60 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d | card.``*``.can.be.used..For.exam |
| 1052e0 | 70 6c 65 3a 20 60 60 65 74 68 32 2a 60 60 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 63 68 61 72 61 | ple:.``eth2*``..Prepending.chara |
| 105300 | 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 | cter.``!``.for.inverted.matching |
| 105320 | 20 63 72 69 74 65 72 69 61 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 64 2e 20 46 6f 72 20 | .criteria.is.also.supportd..For. |
| 105340 | 65 78 61 6d 70 6c 65 20 60 60 21 65 74 68 32 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e | example.``!eth2``.Match.based.on |
| 105360 | 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 2e 20 57 69 6c 64 63 61 72 64 20 60 60 | .outbound.interface..Wildcard.`` |
| 105380 | 2a 60 60 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 60 | *``.can.be.used..For.example:.`` |
| 1053a0 | 65 74 68 32 2a 60 60 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 63 68 61 72 61 63 74 65 72 20 60 60 | eth2*``..Prepending.character.`` |
| 1053c0 | 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 | !``.for.inverted.matching.criter |
| 1053e0 | 69 61 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c | ia.is.also.supported..For.exampl |
| 105400 | 65 20 60 60 21 65 74 68 32 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 6f 75 74 62 6f | e.``!eth2``.Match.based.on.outbo |
| 105420 | 75 6e 64 20 69 6e 74 65 72 66 61 63 65 2e 20 57 69 6c 64 63 61 72 64 20 60 60 2a 60 60 20 63 61 | und.interface..Wildcard.``*``.ca |
| 105440 | 6e 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 60 65 74 68 32 2a 60 | n.be.used..For.example:.``eth2*` |
| 105460 | 60 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 | `..Prepending.the.character.``!` |
| 105480 | 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 | `.to.invert.the.criteria.to.matc |
| 1054a0 | 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 | h.is.also.supported..For.example |
| 1054c0 | 20 60 60 21 65 74 68 32 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 70 61 63 6b 65 74 | .``!eth2``.Match.based.on.packet |
| 1054e0 | 20 6c 65 6e 67 74 68 20 63 72 69 74 65 72 69 61 2e 20 4d 75 6c 74 69 70 6c 65 20 76 61 6c 75 65 | .length.criteria..Multiple.value |
| 105500 | 73 20 66 72 6f 6d 20 31 20 74 6f 20 36 35 35 33 35 20 61 6e 64 20 72 61 6e 67 65 73 20 61 72 65 | s.from.1.to.65535.and.ranges.are |
| 105520 | 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 70 61 63 6b 65 | .supported..Match.based.on.packe |
| 105540 | 74 20 74 79 70 65 20 63 72 69 74 65 72 69 61 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 | t.type.criteria..Match.based.on. |
| 105560 | 70 72 6f 74 6f 63 6f 6c 20 6e 75 6d 62 65 72 20 6f 72 20 6e 61 6d 65 20 61 73 20 64 65 66 69 6e | protocol.number.or.name.as.defin |
| 105580 | 65 64 20 69 6e 20 60 60 2f 65 74 63 2f 70 72 6f 74 6f 63 6f 6c 73 60 60 2e 20 53 70 65 63 69 61 | ed.in.``/etc/protocols``..Specia |
| 1055a0 | 6c 20 6e 61 6d 65 73 20 61 72 65 20 60 60 61 6c 6c 60 60 20 66 6f 72 20 61 6c 6c 20 70 72 6f 74 | l.names.are.``all``.for.all.prot |
| 1055c0 | 6f 63 6f 6c 73 20 61 6e 64 20 60 60 74 63 70 5f 75 64 70 60 60 20 66 6f 72 20 74 63 70 20 61 6e | ocols.and.``tcp_udp``.for.tcp.an |
| 1055e0 | 64 20 75 64 70 20 62 61 73 65 64 20 70 61 63 6b 65 74 73 2e 20 54 68 65 20 60 60 21 60 60 20 6e | d.udp.based.packets..The.``!``.n |
| 105600 | 65 67 61 74 65 73 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 70 72 6f 74 6f 63 6f 6c 2e 00 4d 61 | egates.the.selected.protocol..Ma |
| 105620 | 74 63 68 20 62 61 73 65 64 20 6f 6e 20 72 65 63 65 6e 74 6c 79 20 73 65 65 6e 20 73 6f 75 72 63 | tch.based.on.recently.seen.sourc |
| 105640 | 65 73 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 73 6f 75 72 63 65 20 61 6e 64 2f 6f 72 | es..Match.based.on.source.and/or |
| 105660 | 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2e 20 54 68 69 73 20 69 73 20 73 69 | .destination.address..This.is.si |
| 105680 | 6d 69 6c 61 72 20 74 6f 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 67 72 6f 75 70 73 20 70 61 72 74 | milar.to.the.network.groups.part |
| 1056a0 | 2c 20 62 75 74 20 68 65 72 65 20 79 6f 75 20 61 72 65 20 61 62 6c 65 20 74 6f 20 6e 65 67 61 74 | ,.but.here.you.are.able.to.negat |
| 1056c0 | 65 20 74 68 65 20 6d 61 74 63 68 69 6e 67 20 61 64 64 72 65 73 73 65 73 2e 00 4d 61 74 63 68 20 | e.the.matching.addresses..Match. |
| 1056e0 | 62 61 73 65 64 20 6f 6e 20 74 68 65 20 45 74 68 65 72 6e 65 74 20 74 79 70 65 20 6f 66 20 74 68 | based.on.the.Ethernet.type.of.th |
| 105700 | 65 20 70 61 63 6b 65 74 20 77 68 65 6e 20 69 74 20 69 73 20 56 4c 41 4e 20 74 61 67 67 65 64 2e | e.packet.when.it.is.VLAN.tagged. |
| 105720 | 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 45 74 68 65 72 6e 65 74 20 74 79 70 | .Match.based.on.the.Ethernet.typ |
| 105740 | 65 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 | e.of.the.packet..Match.based.on. |
| 105760 | 74 68 65 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 2e 20 50 72 65 | the.inbound.interface.group..Pre |
| 105780 | 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 | pending.the.character.``!``.to.i |
| 1057a0 | 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 | nvert.the.criteria.to.match.is.a |
| 1057c0 | 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 49 46 | lso.supported..For.example.``!IF |
| 1057e0 | 41 43 45 5f 47 52 4f 55 50 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 6d | ACE_GROUP``.Match.based.on.the.m |
| 105800 | 61 78 69 6d 75 6d 20 61 76 65 72 61 67 65 20 72 61 74 65 2c 20 73 70 65 63 69 66 69 65 64 20 61 | aximum.average.rate,.specified.a |
| 105820 | 73 20 2a 2a 69 6e 74 65 67 65 72 2f 75 6e 69 74 2a 2a 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 | s.**integer/unit**..For.example. |
| 105840 | 2a 2a 35 2f 6d 69 6e 75 74 65 73 2a 2a 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 74 68 65 | **5/minutes**.Match.based.on.the |
| 105860 | 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 74 6f 20 61 6c | .maximum.number.of.packets.to.al |
| 105880 | 6c 6f 77 20 69 6e 20 65 78 63 65 73 73 20 6f 66 20 72 61 74 65 2e 00 4d 61 74 63 68 20 62 61 73 | low.in.excess.of.rate..Match.bas |
| 1058a0 | 65 64 20 6f 6e 20 74 68 65 20 70 61 63 6b 65 74 20 6c 65 6e 67 74 68 2e 20 4d 75 6c 74 69 70 6c | ed.on.the.packet.length..Multipl |
| 1058c0 | 65 20 76 61 6c 75 65 73 20 66 72 6f 6d 20 31 20 74 6f 20 36 35 35 33 35 20 61 6e 64 20 72 61 6e | e.values.from.1.to.65535.and.ran |
| 1058e0 | 67 65 73 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f | ges.are.supported..Match.based.o |
| 105900 | 6e 20 74 68 65 20 70 61 63 6b 65 74 20 74 79 70 65 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f | n.the.packet.type..Match.based.o |
| 105920 | 6e 20 76 6c 61 6e 20 49 44 2e 20 52 61 6e 67 65 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 | n.vlan.ID..Range.is.also.support |
| 105940 | 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 76 6c 61 6e 20 70 72 69 6f 72 69 74 79 | ed..Match.based.on.vlan.priority |
| 105960 | 28 70 63 70 29 2e 20 52 61 6e 67 65 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 | (pcp)..Range.is.also.supported.. |
| 105980 | 4d 61 74 63 68 20 62 61 73 65 73 20 6f 6e 20 72 65 63 65 6e 74 6c 79 20 73 65 65 6e 20 73 6f 75 | Match.bases.on.recently.seen.sou |
| 1059a0 | 72 63 65 73 2e 00 4d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 65 64 20 6f 6e 20 63 6f | rces..Match.criteria.based.on.co |
| 1059c0 | 6e 6e 65 63 74 69 6f 6e 20 6d 61 72 6b 2e 00 4d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 62 61 | nnection.mark..Match.criteria.ba |
| 1059e0 | 73 65 64 20 6f 6e 20 6e 61 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 75 73 2e 00 4d 61 | sed.on.nat.connection.status..Ma |
| 105a00 | 74 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 65 64 20 6f 6e 20 73 6f 75 72 63 65 20 61 6e 64 | tch.criteria.based.on.source.and |
| 105a20 | 2f 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2e 20 54 68 69 73 20 69 73 | /or.destination.address..This.is |
| 105a40 | 20 73 69 6d 69 6c 61 72 20 74 6f 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 67 72 6f 75 70 73 20 70 | .similar.to.the.network.groups.p |
| 105a60 | 61 72 74 2c 20 62 75 74 20 68 65 72 65 20 79 6f 75 20 61 72 65 20 61 62 6c 65 20 74 6f 20 6e 65 | art,.but.here.you.are.able.to.ne |
| 105a80 | 67 61 74 65 20 74 68 65 20 6d 61 74 63 68 69 6e 67 20 61 64 64 72 65 73 73 65 73 2e 00 4d 61 74 | gate.the.matching.addresses..Mat |
| 105aa0 | 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 65 64 20 6f 6e 20 73 6f 75 72 63 65 20 61 6e 64 2f | ch.criteria.based.on.source.and/ |
| 105ac0 | 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6d 61 63 2d 61 64 64 72 65 73 73 2e 00 4d 61 74 63 | or.destination.mac-address..Matc |
| 105ae0 | 68 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 00 4d 61 74 63 68 20 66 69 72 65 77 61 6c 6c 20 6d 61 72 | h.domain.name.Match.firewall.mar |
| 105b00 | 6b 20 76 61 6c 75 65 00 4d 61 74 63 68 20 68 6f 70 2d 6c 69 6d 69 74 20 70 61 72 61 6d 65 74 65 | k.value.Match.hop-limit.paramete |
| 105b20 | 72 2c 20 77 68 65 72 65 20 27 65 71 27 20 73 74 61 6e 64 73 20 66 6f 72 20 27 65 71 75 61 6c 27 | r,.where.'eq'.stands.for.'equal' |
| 105b40 | 3b 20 27 67 74 27 20 73 74 61 6e 64 73 20 66 6f 72 20 27 67 72 65 61 74 65 72 20 74 68 61 6e 27 | ;.'gt'.stands.for.'greater.than' |
| 105b60 | 2c 20 61 6e 64 20 27 6c 74 27 20 73 74 61 6e 64 73 20 66 6f 72 20 27 6c 65 73 73 20 74 68 61 6e | ,.and.'lt'.stands.for.'less.than |
| 105b80 | 27 2e 00 4d 61 74 63 68 20 6c 6f 63 61 6c 20 70 72 65 66 65 72 65 6e 63 65 2e 00 4d 61 74 63 68 | '..Match.local.preference..Match |
| 105ba0 | 20 72 6f 75 74 65 20 6d 65 74 72 69 63 2e 00 4d 61 74 63 68 20 74 68 65 20 68 6f 70 2d 6c 69 6d | .route.metric..Match.the.hop-lim |
| 105bc0 | 69 74 20 70 61 72 61 6d 65 74 65 72 2c 20 77 68 65 72 65 20 27 65 71 27 20 73 74 61 6e 64 73 20 | it.parameter,.where.'eq'.stands. |
| 105be0 | 66 6f 72 20 27 65 71 75 61 6c 27 3b 20 27 67 74 27 20 73 74 61 6e 64 73 20 66 6f 72 20 27 67 72 | for.'equal';.'gt'.stands.for.'gr |
| 105c00 | 65 61 74 65 72 20 74 68 61 6e 27 2c 20 61 6e 64 20 27 6c 74 27 20 73 74 61 6e 64 73 20 66 6f 72 | eater.than',.and.'lt'.stands.for |
| 105c20 | 20 27 6c 65 73 73 20 74 68 61 6e 27 2e 00 4d 61 74 63 68 20 74 68 65 20 74 69 6d 65 20 74 6f 20 | .'less.than'..Match.the.time.to. |
| 105c40 | 6c 69 76 65 20 70 61 72 61 6d 65 74 65 72 2c 20 77 68 65 72 65 20 27 65 71 27 20 73 74 61 6e 64 | live.parameter,.where.'eq'.stand |
| 105c60 | 73 20 66 6f 72 20 27 65 71 75 61 6c 27 3b 20 27 67 74 27 20 73 74 61 6e 64 73 20 66 6f 72 20 27 | s.for.'equal';.'gt'.stands.for.' |
| 105c80 | 67 72 65 61 74 65 72 20 74 68 61 6e 27 2c 20 61 6e 64 20 27 6c 74 27 20 73 74 61 6e 64 73 20 66 | greater.than',.and.'lt'.stands.f |
| 105ca0 | 6f 72 20 27 6c 65 73 73 20 74 68 61 6e 27 2e 00 4d 61 74 63 68 20 74 69 6d 65 20 74 6f 20 6c 69 | or.'less.than'..Match.time.to.li |
| 105cc0 | 76 65 20 70 61 72 61 6d 65 74 65 72 2c 20 77 68 65 72 65 20 27 65 71 27 20 73 74 61 6e 64 73 20 | ve.parameter,.where.'eq'.stands. |
| 105ce0 | 66 6f 72 20 27 65 71 75 61 6c 27 3b 20 27 67 74 27 20 73 74 61 6e 64 73 20 66 6f 72 20 27 67 72 | for.'equal';.'gt'.stands.for.'gr |
| 105d00 | 65 61 74 65 72 20 74 68 61 6e 27 2c 20 61 6e 64 20 27 6c 74 27 20 73 74 61 6e 64 73 20 66 6f 72 | eater.than',.and.'lt'.stands.for |
| 105d20 | 20 27 6c 65 73 73 20 74 68 61 6e 27 2e 00 4d 61 74 63 68 20 77 68 65 6e 20 27 63 6f 75 6e 74 27 | .'less.than'..Match.when.'count' |
| 105d40 | 20 61 6d 6f 75 6e 74 20 6f 66 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 61 72 65 20 73 65 65 6e 20 | .amount.of.connections.are.seen. |
| 105d60 | 77 69 74 68 69 6e 20 27 74 69 6d 65 27 2e 20 54 68 65 73 65 20 6d 61 74 63 68 69 6e 67 20 63 72 | within.'time'..These.matching.cr |
| 105d80 | 69 74 65 72 69 61 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 62 6c 6f 63 6b 20 62 72 75 74 | iteria.can.be.used.to.block.brut |
| 105da0 | 65 2d 66 6f 72 63 65 20 61 74 74 65 6d 70 74 73 2e 00 4d 61 74 63 68 69 6e 67 20 63 72 69 74 65 | e-force.attempts..Matching.crite |
| 105dc0 | 72 69 61 00 4d 61 74 63 68 69 6e 67 20 74 72 61 66 66 69 63 00 4d 61 78 69 6d 75 6d 20 41 2d 4d | ria.Matching.traffic.Maximum.A-M |
| 105de0 | 53 44 55 20 6c 65 6e 67 74 68 20 33 38 33 39 20 28 64 65 66 61 75 6c 74 29 20 6f 72 20 37 39 33 | SDU.length.3839.(default).or.793 |
| 105e00 | 35 20 6f 63 74 65 74 73 00 4d 61 78 69 6d 75 6d 20 54 72 61 6e 73 6d 69 73 73 69 6f 6e 20 55 6e | 5.octets.Maximum.Transmission.Un |
| 105e20 | 69 74 20 28 4d 54 55 29 20 28 64 65 66 61 75 6c 74 3a 20 2a 2a 31 34 33 36 2a 2a 29 00 4d 61 78 | it.(MTU).(default:.**1436**).Max |
| 105e40 | 69 6d 75 6d 20 54 72 61 6e 73 6d 69 73 73 69 6f 6e 20 55 6e 69 74 20 28 4d 54 55 29 20 28 64 65 | imum.Transmission.Unit.(MTU).(de |
| 105e60 | 66 61 75 6c 74 3a 20 2a 2a 31 34 39 32 2a 2a 29 00 4d 61 78 69 6d 75 6d 20 54 72 61 6e 73 6d 69 | fault:.**1492**).Maximum.Transmi |
| 105e80 | 73 73 69 6f 6e 20 55 6e 69 74 20 28 4d 54 55 29 20 28 64 65 66 61 75 6c 74 3a 20 2a 2a 31 35 30 | ssion.Unit.(MTU).(default:.**150 |
| 105ea0 | 30 2a 2a 29 00 4d 61 78 69 6d 75 6d 20 61 63 63 65 70 74 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e | 0**).Maximum.accepted.connection |
| 105ec0 | 20 72 61 74 65 20 28 65 2e 67 2e 20 31 2f 6d 69 6e 2c 20 36 30 2f 73 65 63 29 00 4d 61 78 69 6d | .rate.(e.g..1/min,.60/sec).Maxim |
| 105ee0 | 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 44 4e 53 20 63 61 63 68 65 20 65 6e 74 72 69 65 73 2e 20 | um.number.of.DNS.cache.entries.. |
| 105f00 | 31 20 6d 69 6c 6c 69 6f 6e 20 70 65 72 20 43 50 55 20 63 6f 72 65 20 77 69 6c 6c 20 67 65 6e 65 | 1.million.per.CPU.core.will.gene |
| 105f20 | 72 61 6c 6c 79 20 73 75 66 66 69 63 65 20 66 6f 72 20 6d 6f 73 74 20 69 6e 73 74 61 6c 6c 61 74 | rally.suffice.for.most.installat |
| 105f40 | 69 6f 6e 73 2e 00 4d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 49 50 76 34 20 6e 61 6d | ions..Maximum.number.of.IPv4.nam |
| 105f60 | 65 73 65 72 76 65 72 73 00 4d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 61 75 74 68 65 | eservers.Maximum.number.of.authe |
| 105f80 | 6e 74 69 63 61 74 6f 72 20 70 72 6f 63 65 73 73 65 73 20 74 6f 20 73 70 61 77 6e 2e 20 49 66 20 | nticator.processes.to.spawn..If. |
| 105fa0 | 79 6f 75 20 73 74 61 72 74 20 74 6f 6f 20 66 65 77 20 53 71 75 69 64 20 77 69 6c 6c 20 68 61 76 | you.start.too.few.Squid.will.hav |
| 105fc0 | 65 20 74 6f 20 77 61 69 74 20 66 6f 72 20 74 68 65 6d 20 74 6f 20 70 72 6f 63 65 73 73 20 61 20 | e.to.wait.for.them.to.process.a. |
| 105fe0 | 62 61 63 6b 6c 6f 67 20 6f 66 20 63 72 65 64 65 6e 74 69 61 6c 20 76 65 72 69 66 69 63 61 74 69 | backlog.of.credential.verificati |
| 106000 | 6f 6e 73 2c 20 73 6c 6f 77 69 6e 67 20 69 74 20 64 6f 77 6e 2e 20 57 68 65 6e 20 70 61 73 73 77 | ons,.slowing.it.down..When.passw |
| 106020 | 6f 72 64 20 76 65 72 69 66 69 63 61 74 69 6f 6e 73 20 61 72 65 20 64 6f 6e 65 20 76 69 61 20 61 | ord.verifications.are.done.via.a |
| 106040 | 20 28 73 6c 6f 77 29 20 6e 65 74 77 6f 72 6b 20 79 6f 75 20 61 72 65 20 6c 69 6b 65 6c 79 20 74 | .(slow).network.you.are.likely.t |
| 106060 | 6f 20 6e 65 65 64 20 6c 6f 74 73 20 6f 66 20 61 75 74 68 65 6e 74 69 63 61 74 6f 72 20 70 72 6f | o.need.lots.of.authenticator.pro |
| 106080 | 63 65 73 73 65 73 2e 00 4d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 63 6f 6e 63 75 72 | cesses..Maximum.number.of.concur |
| 1060a0 | 72 65 6e 74 20 73 65 73 73 69 6f 6e 20 73 74 61 72 74 20 61 74 74 65 6d 70 74 73 00 4d 61 78 69 | rent.session.start.attempts.Maxi |
| 1060c0 | 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 73 74 61 74 69 6f 6e 73 20 61 6c 6c 6f 77 65 64 20 69 | mum.number.of.stations.allowed.i |
| 1060e0 | 6e 20 73 74 61 74 69 6f 6e 20 74 61 62 6c 65 2e 20 4e 65 77 20 73 74 61 74 69 6f 6e 73 20 77 69 | n.station.table..New.stations.wi |
| 106100 | 6c 6c 20 62 65 20 72 65 6a 65 63 74 65 64 20 61 66 74 65 72 20 74 68 65 20 73 74 61 74 69 6f 6e | ll.be.rejected.after.the.station |
| 106120 | 20 74 61 62 6c 65 20 69 73 20 66 75 6c 6c 2e 20 49 45 45 45 20 38 30 32 2e 31 31 20 68 61 73 20 | .table.is.full..IEEE.802.11.has. |
| 106140 | 61 20 6c 69 6d 69 74 20 6f 66 20 32 30 30 37 20 64 69 66 66 65 72 65 6e 74 20 61 73 73 6f 63 69 | a.limit.of.2007.different.associ |
| 106160 | 61 74 69 6f 6e 20 49 44 73 2c 20 73 6f 20 74 68 69 73 20 6e 75 6d 62 65 72 20 73 68 6f 75 6c 64 | ation.IDs,.so.this.number.should |
| 106180 | 20 6e 6f 74 20 62 65 20 6c 61 72 67 65 72 20 74 68 61 6e 20 74 68 61 74 2e 00 4d 61 78 69 6d 75 | .not.be.larger.than.that..Maximu |
| 1061a0 | 6d 20 6e 75 6d 62 65 72 20 6f 66 20 74 69 6d 65 73 20 61 6e 20 65 78 70 69 72 65 64 20 72 65 63 | m.number.of.times.an.expired.rec |
| 1061c0 | 6f 72 64 e2 80 99 73 20 54 54 4c 20 69 73 20 65 78 74 65 6e 64 65 64 20 62 79 20 33 30 73 20 77 | ord...s.TTL.is.extended.by.30s.w |
| 1061e0 | 68 65 6e 20 73 65 72 76 69 6e 67 20 73 74 61 6c 65 2e 20 45 78 74 65 6e 73 69 6f 6e 20 6f 6e 6c | hen.serving.stale..Extension.onl |
| 106200 | 79 20 6f 63 63 75 72 73 20 69 66 20 61 20 72 65 63 6f 72 64 20 63 61 6e 6e 6f 74 20 62 65 20 72 | y.occurs.if.a.record.cannot.be.r |
| 106220 | 65 66 72 65 73 68 65 64 2e 20 41 20 76 61 6c 75 65 20 6f 66 20 30 20 6d 65 61 6e 73 20 74 68 65 | efreshed..A.value.of.0.means.the |
| 106240 | 20 53 65 72 76 65 20 53 74 61 6c 65 20 6d 65 63 68 61 6e 69 73 6d 20 69 73 20 6e 6f 74 20 75 73 | .Serve.Stale.mechanism.is.not.us |
| 106260 | 65 64 2e 20 54 6f 20 61 6c 6c 6f 77 20 72 65 63 6f 72 64 73 20 62 65 63 6f 6d 69 6e 67 20 73 74 | ed..To.allow.records.becoming.st |
| 106280 | 61 6c 65 20 74 6f 20 62 65 20 73 65 72 76 65 64 20 66 6f 72 20 61 6e 20 68 6f 75 72 2c 20 75 73 | ale.to.be.served.for.an.hour,.us |
| 1062a0 | 65 20 61 20 76 61 6c 75 65 20 6f 66 20 31 32 30 2e 00 4d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 | e.a.value.of.120..Maximum.number |
| 1062c0 | 20 6f 66 20 74 72 69 65 73 20 74 6f 20 73 65 6e 64 20 41 63 63 65 73 73 2d 52 65 71 75 65 73 74 | .of.tries.to.send.Access-Request |
| 1062e0 | 2f 41 63 63 6f 75 6e 74 69 6e 67 2d 52 65 71 75 65 73 74 20 71 75 65 72 69 65 73 00 4d 65 64 69 | /Accounting-Request.queries.Medi |
| 106300 | 75 6d 00 4d 65 6d 62 65 72 20 49 6e 74 65 72 66 61 63 65 73 00 4d 65 6d 62 65 72 20 69 6e 74 65 | um.Member.Interfaces.Member.inte |
| 106320 | 72 66 61 63 65 73 20 60 65 74 68 31 60 20 61 6e 64 20 56 4c 41 4e 20 31 30 20 6f 6e 20 69 6e 74 | rfaces.`eth1`.and.VLAN.10.on.int |
| 106340 | 65 72 66 61 63 65 20 60 65 74 68 32 60 00 4d 65 73 73 61 67 65 73 20 67 65 6e 65 72 61 74 65 64 | erface.`eth2`.Messages.generated |
| 106360 | 20 69 6e 74 65 72 6e 61 6c 6c 79 20 62 79 20 73 79 73 6c 6f 67 64 00 4d 65 74 72 69 73 20 76 65 | .internally.by.syslogd.Metris.ve |
| 106380 | 72 73 69 6f 6e 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 60 60 32 60 60 00 4d 69 63 72 | rsion,.the.default.is.``2``.Micr |
| 1063a0 | 6f 73 6f 66 74 20 57 69 6e 64 6f 77 73 20 28 31 30 2b 29 00 4d 69 63 72 6f 73 6f 66 74 20 57 69 | osoft.Windows.(10+).Microsoft.Wi |
| 1063c0 | 6e 64 6f 77 73 20 65 78 70 65 63 74 73 20 74 68 65 20 73 65 72 76 65 72 20 6e 61 6d 65 20 74 6f | ndows.expects.the.server.name.to |
| 1063e0 | 20 62 65 20 61 6c 73 6f 20 75 73 65 64 20 69 6e 20 74 68 65 20 73 65 72 76 65 72 27 73 20 63 65 | .be.also.used.in.the.server's.ce |
| 106400 | 72 74 69 66 69 63 61 74 65 20 63 6f 6d 6d 6f 6e 20 6e 61 6d 65 2c 20 73 6f 20 69 74 27 73 20 62 | rtificate.common.name,.so.it's.b |
| 106420 | 65 73 74 20 74 6f 20 75 73 65 20 74 68 69 73 20 44 4e 53 20 6e 61 6d 65 20 66 6f 72 20 79 6f 75 | est.to.use.this.DNS.name.for.you |
| 106440 | 72 20 56 50 4e 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 4d 69 6e 20 61 6e 64 20 6d 61 78 20 69 6e | r.VPN.connection..Min.and.max.in |
| 106460 | 74 65 72 76 61 6c 73 20 62 65 74 77 65 65 6e 20 75 6e 73 6f 6c 69 63 69 74 65 64 20 6d 75 6c 74 | tervals.between.unsolicited.mult |
| 106480 | 69 63 61 73 74 20 52 41 73 00 4d 69 6e 69 6d 75 6d 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 | icast.RAs.Minimum.firewall.rules |
| 1064a0 | 65 74 20 69 73 20 70 72 6f 76 69 64 65 64 2c 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 73 20 73 | et.is.provided,.which.includes.s |
| 1064c0 | 6f 6d 65 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 61 6e 64 20 61 70 70 72 6f 70 72 | ome.filtering.rules,.and.appropr |
| 1064e0 | 69 61 74 65 20 72 75 6c 65 73 20 66 6f 72 20 75 73 69 6e 67 20 66 6c 6f 77 74 61 62 6c 65 20 6f | iate.rules.for.using.flowtable.o |
| 106500 | 66 66 6c 6f 61 64 20 63 61 70 61 62 69 6c 69 74 69 65 73 2e 00 4d 69 6e 75 6d 75 6d 20 66 69 72 | ffload.capabilities..Minumum.fir |
| 106520 | 65 77 61 6c 6c 20 72 75 6c 65 73 65 74 20 69 73 20 70 72 6f 76 69 64 65 64 2c 20 77 68 69 63 68 | ewall.ruleset.is.provided,.which |
| 106540 | 20 69 6e 63 6c 75 64 65 73 20 73 6f 6d 65 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 | .includes.some.filtering.rules,. |
| 106560 | 61 6e 64 20 61 70 70 72 6f 70 69 61 74 65 20 72 75 6c 65 73 20 66 6f 72 20 75 73 69 6e 67 20 66 | and.appropiate.rules.for.using.f |
| 106580 | 6c 6f 77 74 61 62 6c 65 20 6f 66 66 6c 6f 61 64 20 63 61 70 61 62 69 6c 69 74 69 65 73 2e 00 4d | lowtable.offload.capabilities..M |
| 1065a0 | 6f 64 69 66 79 20 74 68 65 20 6a 6f 69 6e 2f 70 72 75 6e 65 20 69 6e 74 65 72 76 61 6c 20 74 68 | odify.the.join/prune.interval.th |
| 1065c0 | 61 74 20 50 49 4d 20 75 73 65 73 20 74 6f 20 74 68 65 20 6e 65 77 20 76 61 6c 75 65 2e 20 54 69 | at.PIM.uses.to.the.new.value..Ti |
| 1065e0 | 6d 65 20 69 73 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 73 65 63 6f 6e 64 73 2e 00 4d 6f 64 69 | me.is.specified.in.seconds..Modi |
| 106600 | 66 79 20 74 68 65 20 74 69 6d 65 20 6f 75 74 20 76 61 6c 75 65 20 66 6f 72 20 61 20 53 2c 47 20 | fy.the.time.out.value.for.a.S,G. |
| 106620 | 66 6c 6f 77 20 66 72 6f 6d 20 31 2d 36 35 35 33 35 20 73 65 63 6f 6e 64 73 20 61 74 20 3a 61 62 | flow.from.1-65535.seconds.at.:ab |
| 106640 | 62 72 3a 60 52 50 20 28 52 65 6e 64 65 7a 76 6f 75 73 20 50 6f 69 6e 74 29 60 2e 20 54 68 65 20 | br:`RP.(Rendezvous.Point)`..The. |
| 106660 | 6e 6f 72 6d 61 6c 20 6b 65 65 70 61 6c 69 76 65 20 70 65 72 69 6f 64 20 66 6f 72 20 74 68 65 20 | normal.keepalive.period.for.the. |
| 106680 | 4b 41 54 28 53 2c 47 29 20 64 65 66 61 75 6c 74 73 20 74 6f 20 32 31 30 20 73 65 63 6f 6e 64 73 | KAT(S,G).defaults.to.210.seconds |
| 1066a0 | 2e 20 48 6f 77 65 76 65 72 2c 20 61 74 20 74 68 65 20 3a 61 62 62 72 3a 60 52 50 20 28 52 65 6e | ..However,.at.the.:abbr:`RP.(Ren |
| 1066c0 | 64 65 7a 76 6f 75 73 20 50 6f 69 6e 74 29 60 2c 20 74 68 65 20 6b 65 65 70 61 6c 69 76 65 20 70 | dezvous.Point)`,.the.keepalive.p |
| 1066e0 | 65 72 69 6f 64 20 6d 75 73 74 20 62 65 20 61 74 20 6c 65 61 73 74 20 74 68 65 20 52 65 67 69 73 | eriod.must.be.at.least.the.Regis |
| 106700 | 74 65 72 5f 53 75 70 70 72 65 73 73 69 6f 6e 5f 54 69 6d 65 2c 20 6f 72 20 74 68 65 20 52 50 20 | ter_Suppression_Time,.or.the.RP. |
| 106720 | 6d 61 79 20 74 69 6d 65 20 6f 75 74 20 74 68 65 20 28 53 2c 47 29 20 73 74 61 74 65 20 62 65 66 | may.time.out.the.(S,G).state.bef |
| 106740 | 6f 72 65 20 74 68 65 20 6e 65 78 74 20 4e 75 6c 6c 2d 52 65 67 69 73 74 65 72 20 61 72 72 69 76 | ore.the.next.Null-Register.arriv |
| 106760 | 65 73 2e 20 54 68 75 73 2c 20 74 68 65 20 4b 41 54 28 53 2c 47 29 20 69 73 20 73 65 74 20 74 6f | es..Thus,.the.KAT(S,G).is.set.to |
| 106780 | 20 6d 61 78 28 4b 65 65 70 61 6c 69 76 65 5f 50 65 72 69 6f 64 2c 20 52 50 5f 4b 65 65 70 61 6c | .max(Keepalive_Period,.RP_Keepal |
| 1067a0 | 69 76 65 5f 50 65 72 69 6f 64 29 20 77 68 65 6e 20 61 20 52 65 67 69 73 74 65 72 2d 53 74 6f 70 | ive_Period).when.a.Register-Stop |
| 1067c0 | 20 69 73 20 73 65 6e 74 2e 00 4d 6f 64 69 66 79 20 74 68 65 20 74 69 6d 65 20 6f 75 74 20 76 61 | .is.sent..Modify.the.time.out.va |
| 1067e0 | 6c 75 65 20 66 6f 72 20 61 20 53 2c 47 20 66 6c 6f 77 20 66 72 6f 6d 20 31 2d 36 35 35 33 35 20 | lue.for.a.S,G.flow.from.1-65535. |
| 106800 | 73 65 63 6f 6e 64 73 2e 20 49 66 20 63 68 6f 6f 73 69 6e 67 20 61 20 76 61 6c 75 65 20 62 65 6c | seconds..If.choosing.a.value.bel |
| 106820 | 6f 77 20 33 31 20 73 65 63 6f 6e 64 73 20 62 65 20 61 77 61 72 65 20 74 68 61 74 20 73 6f 6d 65 | ow.31.seconds.be.aware.that.some |
| 106840 | 20 68 61 72 64 77 61 72 65 20 70 6c 61 74 66 6f 72 6d 73 20 63 61 6e 6e 6f 74 20 73 65 65 20 64 | .hardware.platforms.cannot.see.d |
| 106860 | 61 74 61 20 66 6c 6f 77 69 6e 67 20 69 6e 20 62 65 74 74 65 72 20 74 68 61 6e 20 33 30 20 73 65 | ata.flowing.in.better.than.30.se |
| 106880 | 63 6f 6e 64 20 63 68 75 6e 6b 73 2e 00 4d 6f 64 69 66 79 20 74 68 65 20 74 69 6d 65 20 74 68 61 | cond.chunks..Modify.the.time.tha |
| 1068a0 | 74 20 70 69 6d 20 77 69 6c 6c 20 72 65 67 69 73 74 65 72 20 73 75 70 70 72 65 73 73 20 61 20 46 | t.pim.will.register.suppress.a.F |
| 1068c0 | 48 52 20 77 69 6c 6c 20 73 65 6e 64 20 72 65 67 69 73 74 65 72 20 6e 6f 74 69 66 69 63 61 74 69 | HR.will.send.register.notificati |
| 1068e0 | 6f 6e 73 20 74 6f 20 74 68 65 20 6b 65 72 6e 65 6c 2e 00 4d 6f 6e 69 74 6f 72 20 6d 6f 64 65 20 | ons.to.the.kernel..Monitor.mode. |
| 106900 | 6c 65 74 73 20 74 68 65 20 73 79 73 74 65 6d 20 70 61 73 73 69 76 65 6c 79 20 6d 6f 6e 69 74 6f | lets.the.system.passively.monito |
| 106920 | 72 20 77 69 72 65 6c 65 73 73 20 74 72 61 66 66 69 63 00 4d 6f 6e 69 74 6f 72 2c 20 74 68 65 20 | r.wireless.traffic.Monitor,.the. |
| 106940 | 73 79 73 74 65 6d 20 70 61 73 73 69 76 65 6c 79 20 6d 6f 6e 69 74 6f 72 73 20 61 6e 79 20 6b 69 | system.passively.monitors.any.ki |
| 106960 | 6e 64 20 6f 66 20 77 69 72 65 6c 65 73 73 20 74 72 61 66 66 69 63 00 4d 6f 6e 69 74 6f 72 69 6e | nd.of.wireless.traffic.Monitorin |
| 106980 | 67 00 4d 6f 6e 69 74 6f 72 69 6e 67 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 77 69 74 68 20 | g.Monitoring.functionality.with. |
| 1069a0 | 60 60 74 65 6c 65 67 72 61 66 60 60 20 61 6e 64 20 60 60 49 6e 66 6c 75 78 44 42 20 32 60 60 20 | ``telegraf``.and.``InfluxDB.2``. |
| 1069c0 | 69 73 20 70 72 6f 76 69 64 65 64 2e 20 54 65 6c 65 67 72 61 66 20 69 73 20 74 68 65 20 6f 70 65 | is.provided..Telegraf.is.the.ope |
| 1069e0 | 6e 20 73 6f 75 72 63 65 20 73 65 72 76 65 72 20 61 67 65 6e 74 20 74 6f 20 68 65 6c 70 20 79 6f | n.source.server.agent.to.help.yo |
| 106a00 | 75 20 63 6f 6c 6c 65 63 74 20 6d 65 74 72 69 63 73 2c 20 65 76 65 6e 74 73 20 61 6e 64 20 6c 6f | u.collect.metrics,.events.and.lo |
| 106a20 | 67 73 20 66 72 6f 6d 20 79 6f 75 72 20 72 6f 75 74 65 72 73 2e 00 4d 6f 72 65 20 64 65 74 61 69 | gs.from.your.routers..More.detai |
| 106a40 | 6c 73 20 61 62 6f 75 74 20 74 68 65 20 49 50 73 65 63 20 61 6e 64 20 56 54 49 20 69 73 73 75 65 | ls.about.the.IPsec.and.VTI.issue |
| 106a60 | 20 61 6e 64 20 6f 70 74 69 6f 6e 20 64 69 73 61 62 6c 65 2d 72 6f 75 74 65 2d 61 75 74 6f 69 6e | .and.option.disable-route-autoin |
| 106a80 | 73 74 61 6c 6c 20 68 74 74 70 73 3a 2f 2f 62 6c 6f 67 2e 76 79 6f 73 2e 69 6f 2f 76 79 6f 73 2d | stall.https://blog.vyos.io/vyos- |
| 106aa0 | 31 2d 64 6f 74 2d 32 2d 30 2d 64 65 76 65 6c 6f 70 6d 65 6e 74 2d 6e 65 77 73 2d 69 6e 2d 6a 75 | 1-dot-2-0-development-news-in-ju |
| 106ac0 | 6c 79 00 4d 6f 73 74 20 6f 70 65 72 61 74 69 6e 67 20 73 79 73 74 65 6d 73 20 69 6e 63 6c 75 64 | ly.Most.operating.systems.includ |
| 106ae0 | 65 20 6e 61 74 69 76 65 20 63 6c 69 65 6e 74 20 73 75 70 70 6f 72 74 20 66 6f 72 20 49 50 73 65 | e.native.client.support.for.IPse |
| 106b00 | 63 20 49 4b 45 76 32 20 56 50 4e 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2c 20 61 6e 64 20 6f 74 68 | c.IKEv2.VPN.connections,.and.oth |
| 106b20 | 65 72 73 20 74 79 70 69 63 61 6c 6c 79 20 68 61 76 65 20 61 6e 20 61 70 70 20 6f 72 20 61 64 64 | ers.typically.have.an.app.or.add |
| 106b40 | 2d 6f 6e 20 70 61 63 6b 61 67 65 20 77 68 69 63 68 20 61 64 64 73 20 74 68 65 20 63 61 70 61 62 | -on.package.which.adds.the.capab |
| 106b60 | 69 6c 69 74 79 2e 20 54 68 69 73 20 73 65 63 74 69 6f 6e 20 63 6f 76 65 72 73 20 49 50 73 65 63 | ility..This.section.covers.IPsec |
| 106b80 | 20 49 4b 45 76 32 20 63 6c 69 65 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 | .IKEv2.client.configuration.for. |
| 106ba0 | 57 69 6e 64 6f 77 73 20 31 30 2e 00 4d 6f 75 6e 74 20 61 20 76 6f 6c 75 6d 65 20 69 6e 74 6f 20 | Windows.10..Mount.a.volume.into. |
| 106bc0 | 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 00 4d 75 6c 74 69 00 4d 75 6c 74 69 2d 63 6c 69 65 6e 74 | the.container.Multi.Multi-client |
| 106be0 | 20 73 65 72 76 65 72 20 69 73 20 74 68 65 20 6d 6f 73 74 20 70 6f 70 75 6c 61 72 20 4f 70 65 6e | .server.is.the.most.popular.Open |
| 106c00 | 56 50 4e 20 6d 6f 64 65 20 6f 6e 20 72 6f 75 74 65 72 73 2e 20 49 74 20 61 6c 77 61 79 73 20 75 | VPN.mode.on.routers..It.always.u |
| 106c20 | 73 65 73 20 78 2e 35 30 39 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 6e 64 20 74 68 65 | ses.x.509.authentication.and.the |
| 106c40 | 72 65 66 6f 72 65 20 72 65 71 75 69 72 65 73 20 61 20 50 4b 49 20 73 65 74 75 70 2e 20 52 65 66 | refore.requires.a.PKI.setup..Ref |
| 106c60 | 65 72 20 74 68 69 73 20 74 6f 70 69 63 20 3a 72 65 66 3a 60 63 6f 6e 66 69 67 75 72 61 74 69 6f | er.this.topic.:ref:`configuratio |
| 106c80 | 6e 2f 70 6b 69 2f 69 6e 64 65 78 3a 70 6b 69 60 20 74 6f 20 67 65 6e 65 72 61 74 65 20 61 20 43 | n/pki/index:pki`.to.generate.a.C |
| 106ca0 | 41 20 63 65 72 74 69 66 69 63 61 74 65 2c 20 61 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 | A.certificate,.a.server.certific |
| 106cc0 | 61 74 65 20 61 6e 64 20 6b 65 79 2c 20 61 20 63 65 72 74 69 66 69 63 61 74 65 20 72 65 76 6f 63 | ate.and.key,.a.certificate.revoc |
| 106ce0 | 61 74 69 6f 6e 20 6c 69 73 74 2c 20 61 20 44 69 66 66 69 65 2d 48 65 6c 6c 6d 61 6e 20 6b 65 79 | ation.list,.a.Diffie-Hellman.key |
| 106d00 | 20 65 78 63 68 61 6e 67 65 20 70 61 72 61 6d 65 74 65 72 73 20 66 69 6c 65 2e 20 59 6f 75 20 64 | .exchange.parameters.file..You.d |
| 106d20 | 6f 20 6e 6f 74 20 6e 65 65 64 20 63 6c 69 65 6e 74 20 63 65 72 74 69 66 69 63 61 74 65 73 20 61 | o.not.need.client.certificates.a |
| 106d40 | 6e 64 20 6b 65 79 73 20 66 6f 72 20 74 68 65 20 73 65 72 76 65 72 20 73 65 74 75 70 2e 00 4d 75 | nd.keys.for.the.server.setup..Mu |
| 106d60 | 6c 74 69 2d 63 6c 69 65 6e 74 20 73 65 72 76 65 72 20 69 73 20 74 68 65 20 6d 6f 73 74 20 70 6f | lti-client.server.is.the.most.po |
| 106d80 | 70 75 6c 61 72 20 4f 70 65 6e 56 50 4e 20 6d 6f 64 65 20 6f 6e 20 72 6f 75 74 65 72 73 2e 20 49 | pular.OpenVPN.mode.on.routers..I |
| 106da0 | 74 20 61 6c 77 61 79 73 20 75 73 65 73 20 78 2e 35 30 39 20 61 75 74 68 65 6e 74 69 63 61 74 69 | t.always.uses.x.509.authenticati |
| 106dc0 | 6f 6e 20 61 6e 64 20 74 68 65 72 65 66 6f 72 65 20 72 65 71 75 69 72 65 73 20 61 20 50 4b 49 20 | on.and.therefore.requires.a.PKI. |
| 106de0 | 73 65 74 75 70 2e 20 52 65 66 65 72 20 74 68 69 73 20 74 6f 70 69 63 20 3a 72 65 66 3a 60 63 6f | setup..Refer.this.topic.:ref:`co |
| 106e00 | 6e 66 69 67 75 72 61 74 69 6f 6e 2f 70 6b 69 2f 69 6e 64 65 78 3a 70 6b 69 60 20 74 6f 20 67 65 | nfiguration/pki/index:pki`.to.ge |
| 106e20 | 6e 65 72 61 74 65 20 61 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 2c 20 61 20 73 65 72 76 65 | nerate.a.CA.certificate,.a.serve |
| 106e40 | 72 20 63 65 72 74 69 66 69 63 61 74 65 20 61 6e 64 20 6b 65 79 2c 20 61 20 63 65 72 74 69 66 69 | r.certificate.and.key,.a.certifi |
| 106e60 | 63 61 74 65 20 72 65 76 6f 63 61 74 69 6f 6e 20 6c 69 73 74 2c 20 61 6e 64 20 61 20 44 69 66 66 | cate.revocation.list,.and.a.Diff |
| 106e80 | 69 65 2d 48 65 6c 6c 6d 61 6e 20 6b 65 79 20 65 78 63 68 61 6e 67 65 20 70 61 72 61 6d 65 74 65 | ie-Hellman.key.exchange.paramete |
| 106ea0 | 72 73 20 66 69 6c 65 2e 20 59 6f 75 20 64 6f 20 6e 6f 74 20 6e 65 65 64 20 63 6c 69 65 6e 74 20 | rs.file..You.do.not.need.client. |
| 106ec0 | 63 65 72 74 69 66 69 63 61 74 65 73 20 61 6e 64 20 6b 65 79 73 20 66 6f 72 20 74 68 65 20 73 65 | certificates.and.keys.for.the.se |
| 106ee0 | 72 76 65 72 20 73 65 74 75 70 2e 00 4d 75 6c 74 69 2d 66 61 63 74 6f 72 20 41 75 74 68 65 6e 74 | rver.setup..Multi-factor.Authent |
| 106f00 | 69 63 61 74 69 6f 6e 00 4d 75 6c 74 69 2d 68 6f 6d 65 64 2e 20 49 6e 20 61 20 6d 75 6c 74 69 2d | ication.Multi-homed..In.a.multi- |
| 106f20 | 68 6f 6d 65 64 20 6e 65 74 77 6f 72 6b 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 2c 20 74 68 65 20 4e | homed.network.environment,.the.N |
| 106f40 | 41 54 36 36 20 64 65 76 69 63 65 20 63 6f 6e 6e 65 63 74 73 20 74 6f 20 61 6e 20 69 6e 74 65 72 | AT66.device.connects.to.an.inter |
| 106f60 | 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 61 6e 64 20 73 69 6d 75 6c 74 61 6e 65 6f 75 73 6c 79 20 63 | nal.network.and.simultaneously.c |
| 106f80 | 6f 6e 6e 65 63 74 73 20 74 6f 20 64 69 66 66 65 72 65 6e 74 20 65 78 74 65 72 6e 61 6c 20 6e 65 | onnects.to.different.external.ne |
| 106fa0 | 74 77 6f 72 6b 73 2e 20 41 64 64 72 65 73 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 63 61 6e 20 | tworks..Address.translation.can. |
| 106fc0 | 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 65 61 63 68 20 65 78 74 65 72 6e 61 6c 20 6e | be.configured.on.each.external.n |
| 106fe0 | 65 74 77 6f 72 6b 20 73 69 64 65 20 69 6e 74 65 72 66 61 63 65 20 6f 66 20 74 68 65 20 4e 41 54 | etwork.side.interface.of.the.NAT |
| 107000 | 36 36 20 64 65 76 69 63 65 20 74 6f 20 63 6f 6e 76 65 72 74 20 74 68 65 20 73 61 6d 65 20 69 6e | 66.device.to.convert.the.same.in |
| 107020 | 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 61 64 64 72 65 73 73 20 69 6e 74 6f 20 64 69 66 66 | ternal.network.address.into.diff |
| 107040 | 65 72 65 6e 74 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 61 64 64 72 65 73 73 65 73 | erent.external.network.addresses |
| 107060 | 2c 20 61 6e 64 20 72 65 61 6c 69 7a 65 20 74 68 65 20 6d 61 70 70 69 6e 67 20 6f 66 20 74 68 65 | ,.and.realize.the.mapping.of.the |
| 107080 | 20 73 61 6d 65 20 69 6e 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 20 74 6f 20 6d 75 6c 74 69 70 | .same.internal.address.to.multip |
| 1070a0 | 6c 65 20 65 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 65 73 2e 00 4d 75 6c 74 69 3a 20 63 61 | le.external.addresses..Multi:.ca |
| 1070c0 | 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 6d 75 6c 74 69 70 6c 65 20 74 69 6d 65 73 2e 00 4d | n.be.specified.multiple.times..M |
| 1070e0 | 75 6c 74 69 63 61 73 74 00 4d 75 6c 74 69 63 61 73 74 20 44 4e 53 20 75 73 65 73 20 74 68 65 20 | ulticast.Multicast.DNS.uses.the. |
| 107100 | 32 32 34 2e 30 2e 30 2e 32 35 31 20 61 64 64 72 65 73 73 2c 20 77 68 69 63 68 20 69 73 20 22 61 | 224.0.0.251.address,.which.is."a |
| 107120 | 64 6d 69 6e 69 73 74 72 61 74 69 76 65 6c 79 20 73 63 6f 70 65 64 22 20 61 6e 64 20 64 6f 65 73 | dministratively.scoped".and.does |
| 107140 | 20 6e 6f 74 20 6c 65 61 76 65 20 74 68 65 20 73 75 62 6e 65 74 2e 20 49 74 20 72 65 74 72 61 6e | .not.leave.the.subnet..It.retran |
| 107160 | 73 6d 69 74 73 20 6d 44 4e 53 20 70 61 63 6b 65 74 73 20 66 72 6f 6d 20 6f 6e 65 20 69 6e 74 65 | smits.mDNS.packets.from.one.inte |
| 107180 | 72 66 61 63 65 20 74 6f 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 73 2e 20 54 68 69 73 20 | rface.to.other.interfaces..This. |
| 1071a0 | 65 6e 61 62 6c 65 73 20 73 75 70 70 6f 72 74 20 66 6f 72 20 65 2e 67 2e 20 41 70 70 6c 65 20 41 | enables.support.for.e.g..Apple.A |
| 1071c0 | 69 72 70 6c 61 79 20 64 65 76 69 63 65 73 20 61 63 72 6f 73 73 20 6d 75 6c 74 69 70 6c 65 20 56 | irplay.devices.across.multiple.V |
| 1071e0 | 4c 41 4e 73 2e 00 4d 75 6c 74 69 63 61 73 74 20 44 4e 53 20 75 73 65 73 20 74 68 65 20 72 65 73 | LANs..Multicast.DNS.uses.the.res |
| 107200 | 65 72 76 65 64 20 61 64 64 72 65 73 73 20 60 60 32 32 34 2e 30 2e 30 2e 32 35 31 60 60 2c 20 77 | erved.address.``224.0.0.251``,.w |
| 107220 | 68 69 63 68 20 69 73 20 60 22 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 6c 79 20 73 63 6f 70 65 | hich.is.`"administratively.scope |
| 107240 | 64 22 60 20 61 6e 64 20 64 6f 65 73 20 6e 6f 74 20 6c 65 61 76 65 20 74 68 65 20 73 75 62 6e 65 | d"`.and.does.not.leave.the.subne |
| 107260 | 74 2e 20 6d 44 4e 53 20 72 65 70 65 61 74 65 72 20 72 65 74 72 61 6e 73 6d 69 74 73 20 6d 44 4e | t..mDNS.repeater.retransmits.mDN |
| 107280 | 53 20 70 61 63 6b 65 74 73 20 66 72 6f 6d 20 6f 6e 65 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 | S.packets.from.one.interface.to. |
| 1072a0 | 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 73 2e 20 54 68 69 73 20 65 6e 61 62 6c 65 73 20 73 | other.interfaces..This.enables.s |
| 1072c0 | 75 70 70 6f 72 74 20 66 6f 72 20 64 65 76 69 63 65 73 20 75 73 69 6e 67 20 6d 44 4e 53 20 64 69 | upport.for.devices.using.mDNS.di |
| 1072e0 | 73 63 6f 76 65 72 79 20 28 6c 69 6b 65 20 6e 65 74 77 6f 72 6b 20 70 72 69 6e 74 65 72 73 2c 20 | scovery.(like.network.printers,. |
| 107300 | 41 70 70 6c 65 20 41 69 72 70 6c 61 79 2c 20 43 68 72 6f 6d 65 63 61 73 74 2c 20 76 61 72 69 6f | Apple.Airplay,.Chromecast,.vario |
| 107320 | 75 73 20 49 50 20 62 61 73 65 64 20 68 6f 6d 65 2d 61 75 74 6f 6d 61 74 69 6f 6e 20 64 65 76 69 | us.IP.based.home-automation.devi |
| 107340 | 63 65 73 20 65 74 63 29 20 61 63 72 6f 73 73 20 6d 75 6c 74 69 70 6c 65 20 56 4c 41 4e 73 2e 00 | ces.etc).across.multiple.VLANs.. |
| 107360 | 4d 75 6c 74 69 63 61 73 74 20 56 58 4c 41 4e 00 4d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 70 20 | Multicast.VXLAN.Multicast.group. |
| 107380 | 61 64 64 72 65 73 73 20 66 6f 72 20 56 58 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 2e 20 56 58 4c | address.for.VXLAN.interface..VXL |
| 1073a0 | 41 4e 20 74 75 6e 6e 65 6c 73 20 63 61 6e 20 62 65 20 62 75 69 6c 74 20 65 69 74 68 65 72 20 76 | AN.tunnels.can.be.built.either.v |
| 1073c0 | 69 61 20 4d 75 6c 74 69 63 61 73 74 20 6f 72 20 76 69 61 20 55 6e 69 63 61 73 74 2e 00 4d 75 6c | ia.Multicast.or.via.Unicast..Mul |
| 1073e0 | 74 69 63 61 73 74 20 67 72 6f 75 70 20 61 64 64 72 65 73 73 20 66 6f 72 20 74 68 65 20 56 58 4c | ticast.group.address.for.the.VXL |
| 107400 | 41 4e 20 69 6e 74 65 72 66 61 63 65 2e 20 56 58 4c 41 4e 20 74 75 6e 6e 65 6c 73 20 63 61 6e 20 | AN.interface..VXLAN.tunnels.can. |
| 107420 | 62 65 20 62 75 69 6c 74 20 65 69 74 68 65 72 20 76 69 61 20 4d 75 6c 74 69 63 61 73 74 20 6f 72 | be.built.either.via.Multicast.or |
| 107440 | 20 76 69 61 20 55 6e 69 63 61 73 74 2e 00 4d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 70 20 74 6f | .via.Unicast..Multicast.group.to |
| 107460 | 20 75 73 65 20 66 6f 72 20 73 79 6e 63 69 6e 67 20 63 6f 6e 6e 74 72 61 63 6b 20 65 6e 74 72 69 | .use.for.syncing.conntrack.entri |
| 107480 | 65 73 2e 00 4d 75 6c 74 69 63 61 73 74 20 72 65 63 65 69 76 65 72 73 20 77 69 6c 6c 20 74 61 6c | es..Multicast.receivers.will.tal |
| 1074a0 | 6b 20 49 47 4d 50 20 74 6f 20 74 68 65 69 72 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 2c 20 73 6f | k.IGMP.to.their.local.router,.so |
| 1074c0 | 2c 20 62 65 73 69 64 65 73 20 68 61 76 69 6e 67 20 50 49 4d 20 63 6f 6e 66 69 67 75 72 65 64 20 | ,.besides.having.PIM.configured. |
| 1074e0 | 69 6e 20 65 76 65 72 79 20 72 6f 75 74 65 72 2c 20 49 47 4d 50 20 6d 75 73 74 20 61 6c 73 6f 20 | in.every.router,.IGMP.must.also. |
| 107500 | 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 61 6e 79 20 72 6f 75 74 65 72 20 77 68 65 72 | be.configured.in.any.router.wher |
| 107520 | 65 20 74 68 65 72 65 20 63 6f 75 6c 64 20 62 65 20 61 20 6d 75 6c 74 69 63 61 73 74 20 72 65 63 | e.there.could.be.a.multicast.rec |
| 107540 | 65 69 76 65 72 20 6c 6f 63 61 6c 6c 79 20 63 6f 6e 6e 65 63 74 65 64 2e 00 4d 75 6c 74 69 63 61 | eiver.locally.connected..Multica |
| 107560 | 73 74 20 72 65 63 65 69 76 65 72 73 20 77 69 6c 6c 20 74 61 6c 6b 20 4d 4c 44 20 74 6f 20 74 68 | st.receivers.will.talk.MLD.to.th |
| 107580 | 65 69 72 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 2c 20 73 6f 2c 20 62 65 73 69 64 65 73 20 68 61 | eir.local.router,.so,.besides.ha |
| 1075a0 | 76 69 6e 67 20 50 49 4d 76 36 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 65 76 65 72 79 20 72 | ving.PIMv6.configured.in.every.r |
| 1075c0 | 6f 75 74 65 72 2c 20 4d 4c 44 20 6d 75 73 74 20 61 6c 73 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 | outer,.MLD.must.also.be.configur |
| 1075e0 | 65 64 20 69 6e 20 61 6e 79 20 72 6f 75 74 65 72 20 77 68 65 72 65 20 74 68 65 72 65 20 63 6f 75 | ed.in.any.router.where.there.cou |
| 107600 | 6c 64 20 62 65 20 61 20 6d 75 6c 74 69 63 61 73 74 20 72 65 63 65 69 76 65 72 20 6c 6f 63 61 6c | ld.be.a.multicast.receiver.local |
| 107620 | 6c 79 20 63 6f 6e 6e 65 63 74 65 64 2e 00 4d 75 6c 74 69 63 61 73 74 2d 72 6f 75 74 69 6e 67 20 | ly.connected..Multicast-routing. |
| 107640 | 69 73 20 72 65 71 75 69 72 65 64 20 66 6f 72 20 74 68 65 20 6c 65 61 76 65 73 20 74 6f 20 66 6f | is.required.for.the.leaves.to.fo |
| 107660 | 72 77 61 72 64 20 74 72 61 66 66 69 63 20 62 65 74 77 65 65 6e 20 65 61 63 68 20 6f 74 68 65 72 | rward.traffic.between.each.other |
| 107680 | 20 69 6e 20 61 20 6d 6f 72 65 20 73 63 61 6c 61 62 6c 65 20 77 61 79 2e 20 54 68 69 73 20 61 6c | .in.a.more.scalable.way..This.al |
| 1076a0 | 73 6f 20 72 65 71 75 69 72 65 73 20 50 49 4d 20 74 6f 20 62 65 20 65 6e 61 62 6c 65 64 20 74 6f | so.requires.PIM.to.be.enabled.to |
| 1076c0 | 77 61 72 64 73 20 74 68 65 20 6c 65 61 76 65 73 20 73 6f 20 74 68 61 74 20 74 68 65 20 53 70 69 | wards.the.leaves.so.that.the.Spi |
| 1076e0 | 6e 65 20 63 61 6e 20 6c 65 61 72 6e 20 77 68 61 74 20 6d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 | ne.can.learn.what.multicast.grou |
| 107700 | 70 73 20 65 61 63 68 20 4c 65 61 66 20 65 78 70 65 63 74 73 20 74 72 61 66 66 69 63 20 66 72 6f | ps.each.Leaf.expects.traffic.fro |
| 107720 | 6d 2e 00 4d 75 6c 74 69 70 6c 65 20 44 4e 53 20 73 65 72 76 65 72 73 20 63 61 6e 20 62 65 20 64 | m..Multiple.DNS.servers.can.be.d |
| 107740 | 65 66 69 6e 65 64 2e 00 4d 75 6c 74 69 70 6c 65 20 52 50 4b 49 20 63 61 63 68 69 6e 67 20 69 6e | efined..Multiple.RPKI.caching.in |
| 107760 | 73 74 61 6e 63 65 73 20 63 61 6e 20 62 65 20 73 75 70 70 6c 69 65 64 20 61 6e 64 20 74 68 65 79 | stances.can.be.supplied.and.they |
| 107780 | 20 6e 65 65 64 20 61 20 70 72 65 66 65 72 65 6e 63 65 20 69 6e 20 77 68 69 63 68 20 74 68 65 69 | .need.a.preference.in.which.thei |
| 1077a0 | 72 20 72 65 73 75 6c 74 20 73 65 74 73 20 61 72 65 20 75 73 65 64 2e 00 4d 75 6c 74 69 70 6c 65 | r.result.sets.are.used..Multiple |
| 1077c0 | 20 55 70 6c 69 6e 6b 73 00 4d 75 6c 74 69 70 6c 65 20 56 4c 41 4e 20 74 6f 20 56 4e 49 20 6d 61 | .Uplinks.Multiple.VLAN.to.VNI.ma |
| 1077e0 | 70 70 69 6e 67 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 61 67 61 69 6e 73 74 | ppings.can.be.configured.against |
| 107800 | 20 74 68 65 20 73 61 6d 65 20 53 56 44 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 66 6f 72 20 61 | .the.same.SVD..This.allows.for.a |
| 107820 | 20 73 69 67 6e 69 66 69 63 61 6e 74 20 73 63 61 6c 69 6e 67 20 6f 66 20 74 68 65 20 6e 75 6d 62 | .significant.scaling.of.the.numb |
| 107840 | 65 72 20 6f 66 20 56 4e 49 73 20 73 69 6e 63 65 20 61 20 73 65 70 61 72 61 74 65 20 56 58 4c 41 | er.of.VNIs.since.a.separate.VXLA |
| 107860 | 4e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 6e 6f 20 6c 6f 6e 67 65 72 20 72 65 71 75 69 72 65 | N.interface.is.no.longer.require |
| 107880 | 64 20 66 6f 72 20 65 61 63 68 20 56 4e 49 2e 00 4d 75 6c 74 69 70 6c 65 20 61 6c 69 61 73 65 73 | d.for.each.VNI..Multiple.aliases |
| 1078a0 | 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 70 65 72 20 68 6f 73 74 2d 6e 61 6d 65 2e | .can.be.specified.per.host-name. |
| 1078c0 | 00 4d 75 6c 74 69 70 6c 65 20 61 6c 69 61 73 65 73 20 63 61 6e 20 70 65 20 73 70 65 63 69 66 69 | .Multiple.aliases.can.pe.specifi |
| 1078e0 | 65 64 20 70 65 72 20 68 6f 73 74 2d 6e 61 6d 65 2e 00 4d 75 6c 74 69 70 6c 65 20 64 65 73 74 69 | ed.per.host-name..Multiple.desti |
| 107900 | 6e 61 74 69 6f 6e 20 70 6f 72 74 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 61 73 | nation.ports.can.be.specified.as |
| 107920 | 20 61 20 63 6f 6d 6d 61 2d 73 65 70 61 72 61 74 65 64 20 6c 69 73 74 2e 20 54 68 65 20 77 68 6f | .a.comma-separated.list..The.who |
| 107940 | 6c 65 20 6c 69 73 74 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 22 6e 65 67 61 74 65 64 22 20 75 73 | le.list.can.also.be."negated".us |
| 107960 | 69 6e 67 20 27 21 27 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 27 21 32 32 2c 74 65 6c 6e 65 | ing.'!'..For.example:.'!22,telne |
| 107980 | 74 2c 68 74 74 70 2c 31 32 33 2c 31 30 30 31 2d 31 30 30 35 27 00 4d 75 6c 74 69 70 6c 65 20 64 | t,http,123,1001-1005'.Multiple.d |
| 1079a0 | 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 | estination.ports.can.be.specifie |
| 1079c0 | 64 20 61 73 20 61 20 63 6f 6d 6d 61 2d 73 65 70 61 72 61 74 65 64 20 6c 69 73 74 2e 20 54 68 65 | d.as.a.comma-separated.list..The |
| 1079e0 | 20 77 68 6f 6c 65 20 6c 69 73 74 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 22 6e 65 67 61 74 65 64 | .whole.list.can.also.be."negated |
| 107a00 | 22 20 75 73 69 6e 67 20 27 21 27 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 21 32 32 2c 74 | ".using.'!'..For.example:.`!22,t |
| 107a20 | 65 6c 6e 65 74 2c 68 74 74 70 2c 31 32 33 2c 31 30 30 31 2d 31 30 30 35 60 60 00 4d 75 6c 74 69 | elnet,http,123,1001-1005``.Multi |
| 107a40 | 70 6c 65 20 65 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 65 73 00 4d 75 6c 74 69 70 6c 65 20 | ple.external.addresses.Multiple. |
| 107a60 | 69 6e 74 65 72 66 61 63 65 73 20 6d 61 79 20 62 65 20 73 70 65 63 69 66 69 65 64 2e 00 4d 75 6c | interfaces.may.be.specified..Mul |
| 107a80 | 74 69 70 6c 65 20 6e 65 74 77 6f 72 6b 73 2f 63 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 | tiple.networks/client.IP.address |
| 107aa0 | 65 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 4d 75 6c 74 69 70 6c 65 20 73 | es.can.be.configured..Multiple.s |
| 107ac0 | 65 72 76 65 72 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 2e 00 4d 75 6c 74 69 70 6c | ervers.can.be.specified..Multipl |
| 107ae0 | 65 20 73 65 72 76 69 63 65 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 70 65 72 20 69 6e 74 65 72 | e.services.can.be.used.per.inter |
| 107b00 | 66 61 63 65 2e 20 4a 75 73 74 20 73 70 65 63 69 66 79 20 61 73 20 6d 61 6e 79 20 73 65 72 76 69 | face..Just.specify.as.many.servi |
| 107b20 | 63 65 73 20 70 65 72 20 69 6e 74 65 72 66 61 63 65 20 61 73 20 79 6f 75 20 6c 69 6b 65 21 00 4d | ces.per.interface.as.you.like!.M |
| 107b40 | 75 6c 74 69 70 6c 65 20 73 6f 75 72 63 65 20 70 6f 72 74 73 20 63 61 6e 20 62 65 20 73 70 65 63 | ultiple.source.ports.can.be.spec |
| 107b60 | 69 66 69 65 64 20 61 73 20 61 20 63 6f 6d 6d 61 2d 73 65 70 61 72 61 74 65 64 20 6c 69 73 74 2e | ified.as.a.comma-separated.list. |
| 107b80 | 20 54 68 65 20 77 68 6f 6c 65 20 6c 69 73 74 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 22 6e 65 67 | .The.whole.list.can.also.be."neg |
| 107ba0 | 61 74 65 64 22 20 75 73 69 6e 67 20 60 60 21 60 60 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 00 | ated".using.``!``..For.example:. |
| 107bc0 | 4d 75 6c 74 69 70 6c 65 20 74 61 72 67 65 74 20 49 50 20 61 64 64 72 65 73 73 65 73 20 63 61 6e | Multiple.target.IP.addresses.can |
| 107be0 | 20 62 65 20 73 70 65 63 69 66 69 65 64 2e 20 41 74 20 6c 65 61 73 74 20 6f 6e 65 20 49 50 20 61 | .be.specified..At.least.one.IP.a |
| 107c00 | 64 64 72 65 73 73 20 6d 75 73 74 20 62 65 20 67 69 76 65 6e 20 66 6f 72 20 41 52 50 20 6d 6f 6e | ddress.must.be.given.for.ARP.mon |
| 107c20 | 69 74 6f 72 69 6e 67 20 74 6f 20 66 75 6e 63 74 69 6f 6e 2e 00 4d 75 6c 74 69 70 6c 65 20 75 73 | itoring.to.function..Multiple.us |
| 107c40 | 65 72 73 20 63 61 6e 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 73 61 6d 65 20 73 65 72 69 | ers.can.connect.to.the.same.seri |
| 107c60 | 61 6c 20 64 65 76 69 63 65 20 62 75 74 20 6f 6e 6c 79 20 6f 6e 65 20 69 73 20 61 6c 6c 6f 77 65 | al.device.but.only.one.is.allowe |
| 107c80 | 64 20 74 6f 20 77 72 69 74 65 20 74 6f 20 74 68 65 20 63 6f 6e 73 6f 6c 65 20 70 6f 72 74 2e 00 | d.to.write.to.the.console.port.. |
| 107ca0 | 4d 75 6c 74 69 70 72 6f 74 6f 63 6f 6c 20 65 78 74 65 6e 73 69 6f 6e 73 20 65 6e 61 62 6c 65 20 | Multiprotocol.extensions.enable. |
| 107cc0 | 42 47 50 20 74 6f 20 63 61 72 72 79 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | BGP.to.carry.routing.information |
| 107ce0 | 20 66 6f 72 20 6d 75 6c 74 69 70 6c 65 20 6e 65 74 77 6f 72 6b 20 6c 61 79 65 72 20 70 72 6f 74 | .for.multiple.network.layer.prot |
| 107d00 | 6f 63 6f 6c 73 2e 20 42 47 50 20 73 75 70 70 6f 72 74 73 20 61 6e 20 41 64 64 72 65 73 73 20 46 | ocols..BGP.supports.an.Address.F |
| 107d20 | 61 6d 69 6c 79 20 49 64 65 6e 74 69 66 69 65 72 20 28 41 46 49 29 20 66 6f 72 20 49 50 76 34 20 | amily.Identifier.(AFI).for.IPv4. |
| 107d40 | 61 6e 64 20 49 50 76 36 2e 00 4e 00 4e 41 54 00 4e 41 54 20 28 73 70 65 63 69 66 69 63 61 6c 6c | and.IPv6..N.NAT.NAT.(specificall |
| 107d60 | 79 2c 20 53 6f 75 72 63 65 20 4e 41 54 29 3b 00 4e 41 54 20 43 6f 6e 66 69 67 75 72 61 74 69 6f | y,.Source.NAT);.NAT.Configuratio |
| 107d80 | 6e 00 4e 41 54 20 4c 6f 61 64 20 42 61 6c 61 6e 63 65 00 4e 41 54 20 4c 6f 61 64 20 42 61 6c 61 | n.NAT.Load.Balance.NAT.Load.Bala |
| 107da0 | 6e 63 65 20 75 73 65 73 20 61 6e 20 61 6c 67 6f 72 69 74 68 6d 20 74 68 61 74 20 67 65 6e 65 72 | nce.uses.an.algorithm.that.gener |
| 107dc0 | 61 74 65 73 20 61 20 68 61 73 68 20 61 6e 64 20 62 61 73 65 64 20 6f 6e 20 69 74 2c 20 74 68 65 | ates.a.hash.and.based.on.it,.the |
| 107de0 | 6e 20 69 74 20 61 70 70 6c 69 65 73 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e 67 20 74 72 61 6e 73 | n.it.applies.corresponding.trans |
| 107e00 | 6c 61 74 69 6f 6e 2e 20 54 68 69 73 20 68 61 73 68 20 63 61 6e 20 62 65 20 67 65 6e 65 72 61 74 | lation..This.hash.can.be.generat |
| 107e20 | 65 64 20 72 61 6e 64 6f 6d 6c 79 2c 20 6f 72 20 63 61 6e 20 75 73 65 20 64 61 74 61 20 66 72 6f | ed.randomly,.or.can.use.data.fro |
| 107e40 | 6d 20 74 68 65 20 69 70 20 68 65 61 64 65 72 3a 20 73 6f 75 72 63 65 2d 61 64 64 72 65 73 73 2c | m.the.ip.header:.source-address, |
| 107e60 | 20 64 65 73 74 69 6e 61 74 69 6f 6e 2d 61 64 64 72 65 73 73 2c 20 73 6f 75 72 63 65 2d 70 6f 72 | .destination-address,.source-por |
| 107e80 | 74 20 61 6e 64 2f 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 2d 70 6f 72 74 2e 20 42 79 20 64 65 | t.and/or.destination-port..By.de |
| 107ea0 | 66 61 75 6c 74 2c 20 69 74 20 77 69 6c 6c 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 68 61 73 68 | fault,.it.will.generate.the.hash |
| 107ec0 | 20 72 61 6e 64 6f 6d 6c 79 2e 00 4e 41 54 20 52 75 6c 65 73 65 74 00 4e 41 54 20 62 65 66 6f 72 | .randomly..NAT.Ruleset.NAT.befor |
| 107ee0 | 65 20 56 50 4e 00 4e 41 54 20 62 65 66 6f 72 65 20 56 50 4e 20 54 6f 70 6f 6c 6f 67 79 00 4e 41 | e.VPN.NAT.before.VPN.Topology.NA |
| 107f00 | 54 2c 20 52 6f 75 74 69 6e 67 2c 20 46 69 72 65 77 61 6c 6c 20 49 6e 74 65 72 61 63 74 69 6f 6e | T,.Routing,.Firewall.Interaction |
| 107f20 | 00 4e 41 54 34 34 00 4e 41 54 36 34 00 4e 41 54 36 34 20 63 6c 69 65 6e 74 20 63 6f 6e 66 69 67 | .NAT44.NAT64.NAT64.client.config |
| 107f40 | 75 72 61 74 69 6f 6e 3a 00 4e 41 54 36 34 20 70 72 65 66 69 78 20 6d 61 73 6b 20 6d 75 73 74 20 | uration:.NAT64.prefix.mask.must. |
| 107f60 | 62 65 20 6f 6e 65 20 6f 66 3a 20 2f 33 32 2c 20 2f 34 30 2c 20 2f 34 38 2c 20 2f 35 36 2c 20 2f | be.one.of:./32,./40,./48,./56,./ |
| 107f80 | 36 34 20 6f 72 20 39 36 2e 00 4e 41 54 36 34 20 73 65 72 76 65 72 20 63 6f 6e 66 69 67 75 72 61 | 64.or.96..NAT64.server.configura |
| 107fa0 | 74 69 6f 6e 3a 00 4e 41 54 36 36 28 4e 50 54 76 36 29 00 4e 48 52 50 20 70 72 6f 76 69 64 65 73 | tion:.NAT66(NPTv6).NHRP.provides |
| 107fc0 | 20 74 68 65 20 64 79 6e 61 6d 69 63 20 74 75 6e 6e 65 6c 20 65 6e 64 70 6f 69 6e 74 20 64 69 73 | .the.dynamic.tunnel.endpoint.dis |
| 107fe0 | 63 6f 76 65 72 79 20 6d 65 63 68 61 6e 69 73 6d 20 28 65 6e 64 70 6f 69 6e 74 20 72 65 67 69 73 | covery.mechanism.(endpoint.regis |
| 108000 | 74 72 61 74 69 6f 6e 2c 20 61 6e 64 20 65 6e 64 70 6f 69 6e 74 20 64 69 73 63 6f 76 65 72 79 2f | tration,.and.endpoint.discovery/ |
| 108020 | 6c 6f 6f 6b 75 70 29 2c 20 6d 47 52 45 20 70 72 6f 76 69 64 65 73 20 74 68 65 20 74 75 6e 6e 65 | lookup),.mGRE.provides.the.tunne |
| 108040 | 6c 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 69 74 73 65 6c 66 2c 20 61 6e 64 20 74 68 65 20 | l.encapsulation.itself,.and.the. |
| 108060 | 49 50 53 65 63 20 70 72 6f 74 6f 63 6f 6c 73 20 68 61 6e 64 6c 65 20 74 68 65 20 6b 65 79 20 65 | IPSec.protocols.handle.the.key.e |
| 108080 | 78 63 68 61 6e 67 65 2c 20 61 6e 64 20 63 72 79 70 74 6f 20 6d 65 63 68 61 6e 69 73 6d 2e 00 4e | xchange,.and.crypto.mechanism..N |
| 1080a0 | 54 50 00 4e 54 50 20 69 73 20 69 6e 74 65 6e 64 65 64 20 74 6f 20 73 79 6e 63 68 72 6f 6e 69 7a | TP.NTP.is.intended.to.synchroniz |
| 1080c0 | 65 20 61 6c 6c 20 70 61 72 74 69 63 69 70 61 74 69 6e 67 20 63 6f 6d 70 75 74 65 72 73 20 74 6f | e.all.participating.computers.to |
| 1080e0 | 20 77 69 74 68 69 6e 20 61 20 66 65 77 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 20 6f 66 20 3a 61 | .within.a.few.milliseconds.of.:a |
| 108100 | 62 62 72 3a 60 55 54 43 20 28 43 6f 6f 72 64 69 6e 61 74 65 64 20 55 6e 69 76 65 72 73 61 6c 20 | bbr:`UTC.(Coordinated.Universal. |
| 108120 | 54 69 6d 65 29 60 2e 20 49 74 20 75 73 65 73 20 74 68 65 20 69 6e 74 65 72 73 65 63 74 69 6f 6e | Time)`..It.uses.the.intersection |
| 108140 | 20 61 6c 67 6f 72 69 74 68 6d 2c 20 61 20 6d 6f 64 69 66 69 65 64 20 76 65 72 73 69 6f 6e 20 6f | .algorithm,.a.modified.version.o |
| 108160 | 66 20 4d 61 72 7a 75 6c 6c 6f 27 73 20 61 6c 67 6f 72 69 74 68 6d 2c 20 74 6f 20 73 65 6c 65 63 | f.Marzullo's.algorithm,.to.selec |
| 108180 | 74 20 61 63 63 75 72 61 74 65 20 74 69 6d 65 20 73 65 72 76 65 72 73 20 61 6e 64 20 69 73 20 64 | t.accurate.time.servers.and.is.d |
| 1081a0 | 65 73 69 67 6e 65 64 20 74 6f 20 6d 69 74 69 67 61 74 65 20 74 68 65 20 65 66 66 65 63 74 73 20 | esigned.to.mitigate.the.effects. |
| 1081c0 | 6f 66 20 76 61 72 69 61 62 6c 65 20 6e 65 74 77 6f 72 6b 20 6c 61 74 65 6e 63 79 2e 20 4e 54 50 | of.variable.network.latency..NTP |
| 1081e0 | 20 63 61 6e 20 75 73 75 61 6c 6c 79 20 6d 61 69 6e 74 61 69 6e 20 74 69 6d 65 20 74 6f 20 77 69 | .can.usually.maintain.time.to.wi |
| 108200 | 74 68 69 6e 20 74 65 6e 73 20 6f 66 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 20 6f 76 65 72 20 74 | thin.tens.of.milliseconds.over.t |
| 108220 | 68 65 20 70 75 62 6c 69 63 20 49 6e 74 65 72 6e 65 74 2c 20 61 6e 64 20 63 61 6e 20 61 63 68 69 | he.public.Internet,.and.can.achi |
| 108240 | 65 76 65 20 62 65 74 74 65 72 20 74 68 61 6e 20 6f 6e 65 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 20 | eve.better.than.one.millisecond. |
| 108260 | 61 63 63 75 72 61 63 79 20 69 6e 20 6c 6f 63 61 6c 20 61 72 65 61 20 6e 65 74 77 6f 72 6b 73 20 | accuracy.in.local.area.networks. |
| 108280 | 75 6e 64 65 72 20 69 64 65 61 6c 20 63 6f 6e 64 69 74 69 6f 6e 73 2e 20 41 73 79 6d 6d 65 74 72 | under.ideal.conditions..Asymmetr |
| 1082a0 | 69 63 20 72 6f 75 74 65 73 20 61 6e 64 20 6e 65 74 77 6f 72 6b 20 63 6f 6e 67 65 73 74 69 6f 6e | ic.routes.and.network.congestion |
| 1082c0 | 20 63 61 6e 20 63 61 75 73 65 20 65 72 72 6f 72 73 20 6f 66 20 31 30 30 20 6d 73 20 6f 72 20 6d | .can.cause.errors.of.100.ms.or.m |
| 1082e0 | 6f 72 65 2e 00 4e 54 50 20 70 72 6f 63 65 73 73 20 77 69 6c 6c 20 6f 6e 6c 79 20 6c 69 73 74 65 | ore..NTP.process.will.only.liste |
| 108300 | 6e 20 6f 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 49 50 20 61 64 64 72 65 73 73 2e 20 59 | n.on.the.specified.IP.address..Y |
| 108320 | 6f 75 20 6d 75 73 74 20 73 70 65 63 69 66 79 20 74 68 65 20 60 3c 61 64 64 72 65 73 73 3e 60 20 | ou.must.specify.the.`<address>`. |
| 108340 | 61 6e 64 20 6f 70 74 69 6f 6e 61 6c 6c 79 20 74 68 65 20 70 65 72 6d 69 74 74 65 64 20 63 6c 69 | and.optionally.the.permitted.cli |
| 108360 | 65 6e 74 73 2e 20 4d 75 6c 74 69 70 6c 65 20 6c 69 73 74 65 6e 20 61 64 64 72 65 73 73 65 73 20 | ents..Multiple.listen.addresses. |
| 108380 | 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 4e 54 50 20 70 72 6f 63 65 73 73 20 77 | can.be.configured..NTP.process.w |
| 1083a0 | 69 6c 6c 20 6f 6e 6c 79 20 6c 69 73 74 65 6e 20 6f 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 | ill.only.listen.on.the.specified |
| 1083c0 | 20 49 50 20 61 64 64 72 65 73 73 2e 20 59 6f 75 20 6d 75 73 74 20 73 70 65 63 69 66 79 20 74 68 | .IP.address..You.must.specify.th |
| 1083e0 | 65 20 60 3c 61 64 64 72 65 73 73 3e 60 20 61 6e 64 20 6f 70 74 69 6f 6e 61 6c 6c 79 20 74 68 65 | e.`<address>`.and.optionally.the |
| 108400 | 20 70 65 72 6d 69 74 74 65 64 20 63 6c 69 65 6e 74 73 2e 20 4d 75 6c 74 69 70 6c 65 20 6c 69 73 | .permitted.clients..Multiple.lis |
| 108420 | 74 65 6e 20 61 64 64 72 65 73 73 65 73 20 66 6f 72 20 73 61 6d 65 20 49 50 20 66 61 6d 69 6c 79 | ten.addresses.for.same.IP.family |
| 108440 | 20 69 73 20 6e 6f 20 6c 6f 6e 67 65 72 20 73 75 70 70 6f 72 74 65 64 2e 20 4f 6e 6c 79 20 6f 6e | .is.no.longer.supported..Only.on |
| 108460 | 65 20 49 50 76 34 20 61 6e 64 20 6f 6e 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 63 61 6e 20 | e.IPv4.and.one.IPv6.address.can. |
| 108480 | 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 75 73 69 6e 67 20 73 65 70 61 72 61 74 65 20 63 6f | be.configured,.using.separate.co |
| 1084a0 | 6d 6d 61 6e 64 73 20 66 6f 72 20 65 61 63 68 2e 00 4e 54 50 20 73 75 62 73 79 73 74 65 6d 00 4e | mmands.for.each..NTP.subsystem.N |
| 1084c0 | 54 50 20 73 75 70 70 6c 69 65 73 20 61 20 77 61 72 6e 69 6e 67 20 6f 66 20 61 6e 79 20 69 6d 70 | TP.supplies.a.warning.of.any.imp |
| 1084e0 | 65 6e 64 69 6e 67 20 6c 65 61 70 20 73 65 63 6f 6e 64 20 61 64 6a 75 73 74 6d 65 6e 74 2c 20 62 | ending.leap.second.adjustment,.b |
| 108500 | 75 74 20 6e 6f 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 6c 6f 63 61 6c 20 74 69 | ut.no.information.about.local.ti |
| 108520 | 6d 65 20 7a 6f 6e 65 73 20 6f 72 20 64 61 79 6c 69 67 68 74 20 73 61 76 69 6e 67 20 74 69 6d 65 | me.zones.or.daylight.saving.time |
| 108540 | 20 69 73 20 74 72 61 6e 73 6d 69 74 74 65 64 2e 00 4e 61 6d 65 20 53 65 72 76 65 72 00 4e 61 6d | .is.transmitted..Name.Server.Nam |
| 108560 | 65 20 6f 66 20 69 6e 73 74 61 6c 6c 65 64 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f | e.of.installed.certificate.autho |
| 108580 | 72 69 74 79 20 63 65 72 74 69 66 69 63 61 74 65 2e 00 4e 61 6d 65 20 6f 66 20 69 6e 73 74 61 6c | rity.certificate..Name.of.instal |
| 1085a0 | 6c 65 64 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 2e 00 4e 61 6d 65 20 6f 66 20 | led.server.certificate..Name.of. |
| 1085c0 | 73 74 61 74 69 63 20 6d 61 70 70 69 6e 67 00 4e 61 6d 65 20 6f 66 20 74 68 65 20 73 69 6e 67 6c | static.mapping.Name.of.the.singl |
| 1085e0 | 65 20 74 61 62 6c 65 20 4f 6e 6c 79 20 69 66 20 73 65 74 20 67 72 6f 75 70 2d 6d 65 74 72 69 63 | e.table.Only.if.set.group-metric |
| 108600 | 73 20 73 69 6e 67 6c 65 2d 74 61 62 6c 65 2e 00 4e 61 6d 65 20 6f 72 20 49 50 76 34 20 61 64 64 | s.single-table..Name.or.IPv4.add |
| 108620 | 72 65 73 73 20 6f 66 20 54 46 54 50 20 73 65 72 76 65 72 00 4e 65 74 42 49 4f 53 20 6f 76 65 72 | ress.of.TFTP.server.NetBIOS.over |
| 108640 | 20 54 43 50 2f 49 50 20 6e 61 6d 65 20 73 65 72 76 65 72 00 4e 65 74 46 6c 6f 77 00 4e 65 74 46 | .TCP/IP.name.server.NetFlow.NetF |
| 108660 | 6c 6f 77 20 2f 20 49 50 46 49 58 00 4e 65 74 46 6c 6f 77 20 65 6e 67 69 6e 65 2d 69 64 20 77 68 | low./.IPFIX.NetFlow.engine-id.wh |
| 108680 | 69 63 68 20 77 69 6c 6c 20 61 70 70 65 61 72 20 69 6e 20 4e 65 74 46 6c 6f 77 20 64 61 74 61 2e | ich.will.appear.in.NetFlow.data. |
| 1086a0 | 20 54 68 65 20 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 32 35 35 2e 00 4e 65 74 46 6c 6f 77 20 | .The.range.is.0.to.255..NetFlow. |
| 1086c0 | 69 73 20 61 20 66 65 61 74 75 72 65 20 74 68 61 74 20 77 61 73 20 69 6e 74 72 6f 64 75 63 65 64 | is.a.feature.that.was.introduced |
| 1086e0 | 20 6f 6e 20 43 69 73 63 6f 20 72 6f 75 74 65 72 73 20 61 72 6f 75 6e 64 20 31 39 39 36 20 74 68 | .on.Cisco.routers.around.1996.th |
| 108700 | 61 74 20 70 72 6f 76 69 64 65 73 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 6f 20 63 6f 6c 6c 65 | at.provides.the.ability.to.colle |
| 108720 | 63 74 20 49 50 20 6e 65 74 77 6f 72 6b 20 74 72 61 66 66 69 63 20 61 73 20 69 74 20 65 6e 74 65 | ct.IP.network.traffic.as.it.ente |
| 108740 | 72 73 20 6f 72 20 65 78 69 74 73 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e 20 42 79 20 61 6e 61 | rs.or.exits.an.interface..By.ana |
| 108760 | 6c 79 7a 69 6e 67 20 74 68 65 20 64 61 74 61 20 70 72 6f 76 69 64 65 64 20 62 79 20 4e 65 74 46 | lyzing.the.data.provided.by.NetF |
| 108780 | 6c 6f 77 2c 20 61 20 6e 65 74 77 6f 72 6b 20 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 20 63 61 6e | low,.a.network.administrator.can |
| 1087a0 | 20 64 65 74 65 72 6d 69 6e 65 20 74 68 69 6e 67 73 20 73 75 63 68 20 61 73 20 74 68 65 20 73 6f | .determine.things.such.as.the.so |
| 1087c0 | 75 72 63 65 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6f 66 20 74 72 61 66 66 69 63 2c | urce.and.destination.of.traffic, |
| 1087e0 | 20 63 6c 61 73 73 20 6f 66 20 73 65 72 76 69 63 65 2c 20 61 6e 64 20 74 68 65 20 63 61 75 73 65 | .class.of.service,.and.the.cause |
| 108800 | 73 20 6f 66 20 63 6f 6e 67 65 73 74 69 6f 6e 2e 20 41 20 74 79 70 69 63 61 6c 20 66 6c 6f 77 20 | s.of.congestion..A.typical.flow. |
| 108820 | 6d 6f 6e 69 74 6f 72 69 6e 67 20 73 65 74 75 70 20 28 75 73 69 6e 67 20 4e 65 74 46 6c 6f 77 29 | monitoring.setup.(using.NetFlow) |
| 108840 | 20 63 6f 6e 73 69 73 74 73 20 6f 66 20 74 68 72 65 65 20 6d 61 69 6e 20 63 6f 6d 70 6f 6e 65 6e | .consists.of.three.main.componen |
| 108860 | 74 73 3a 00 4e 65 74 46 6c 6f 77 20 69 73 20 75 73 75 61 6c 6c 79 20 65 6e 61 62 6c 65 64 20 6f | ts:.NetFlow.is.usually.enabled.o |
| 108880 | 6e 20 61 20 70 65 72 2d 69 6e 74 65 72 66 61 63 65 20 62 61 73 69 73 20 74 6f 20 6c 69 6d 69 74 | n.a.per-interface.basis.to.limit |
| 1088a0 | 20 6c 6f 61 64 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 72 20 63 6f 6d 70 6f 6e 65 6e 74 73 20 69 | .load.on.the.router.components.i |
| 1088c0 | 6e 76 6f 6c 76 65 64 20 69 6e 20 4e 65 74 46 6c 6f 77 2c 20 6f 72 20 74 6f 20 6c 69 6d 69 74 20 | nvolved.in.NetFlow,.or.to.limit. |
| 1088e0 | 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 20 4e 65 74 46 6c 6f 77 20 72 65 63 6f 72 64 73 20 65 78 | the.amount.of.NetFlow.records.ex |
| 108900 | 70 6f 72 74 65 64 2e 00 4e 65 74 46 6c 6f 77 20 76 35 20 65 78 61 6d 70 6c 65 3a 00 4e 65 74 66 | ported..NetFlow.v5.example:.Netf |
| 108920 | 69 6c 74 65 72 20 62 61 73 65 64 00 4e 65 74 6d 61 73 6b 20 67 72 65 61 74 65 72 20 74 68 61 6e | ilter.based.Netmask.greater.than |
| 108940 | 20 6c 65 6e 67 74 68 2e 00 4e 65 74 6d 61 73 6b 20 6c 65 73 73 20 74 68 61 6e 20 6c 65 6e 67 74 | .length..Netmask.less.than.lengt |
| 108960 | 68 00 4e 65 74 77 6f 72 6b 20 41 64 76 65 72 74 69 73 65 6d 65 6e 74 20 43 6f 6e 66 69 67 75 72 | h.Network.Advertisement.Configur |
| 108980 | 61 74 69 6f 6e 00 4e 65 74 77 6f 72 6b 20 43 6f 6e 74 72 6f 6c 00 4e 65 74 77 6f 72 6b 20 45 6d | ation.Network.Control.Network.Em |
| 1089a0 | 75 6c 61 74 6f 72 00 4e 65 74 77 6f 72 6b 20 47 72 6f 75 70 73 00 4e 65 74 77 6f 72 6b 20 49 44 | ulator.Network.Groups.Network.ID |
| 1089c0 | 20 28 53 53 49 44 29 20 60 60 45 6e 74 65 72 70 72 69 73 65 2d 54 45 53 54 60 60 00 4e 65 74 77 | .(SSID).``Enterprise-TEST``.Netw |
| 1089e0 | 6f 72 6b 20 49 44 20 28 53 53 49 44 29 20 60 60 54 45 53 54 60 60 00 4e 65 74 77 6f 72 6b 20 49 | ork.ID.(SSID).``TEST``.Network.I |
| 108a00 | 44 20 28 53 53 49 44 29 20 60 60 74 65 73 74 2e 61 78 60 60 00 4e 65 74 77 6f 72 6b 20 54 6f 70 | D.(SSID).``test.ax``.Network.Top |
| 108a20 | 6f 6c 6f 67 79 20 44 69 61 67 72 61 6d 00 4e 65 74 77 6f 72 6b 20 6d 61 6e 61 67 65 6d 65 6e 74 | ology.Diagram.Network.management |
| 108a40 | 20 73 74 61 74 69 6f 6e 20 28 4e 4d 53 29 20 2d 20 73 6f 66 74 77 61 72 65 20 77 68 69 63 68 20 | .station.(NMS).-.software.which. |
| 108a60 | 72 75 6e 73 20 6f 6e 20 74 68 65 20 6d 61 6e 61 67 65 72 00 4e 65 74 77 6f 72 6b 20 6e 65 77 73 | runs.on.the.manager.Network.news |
| 108a80 | 20 73 75 62 73 79 73 74 65 6d 00 4e 65 74 77 6f 72 6b 20 74 6f 20 62 65 20 70 72 6f 74 65 63 74 | .subsystem.Network.to.be.protect |
| 108aa0 | 65 64 3a 20 31 39 32 2e 30 2e 32 2e 30 2f 32 34 20 28 70 75 62 6c 69 63 20 49 50 73 20 75 73 65 | ed:.192.0.2.0/24.(public.IPs.use |
| 108ac0 | 20 62 79 20 63 75 73 74 6f 6d 65 72 73 29 00 4e 65 74 77 6f 72 6b 73 20 61 6c 6c 6f 77 65 64 20 | .by.customers).Networks.allowed. |
| 108ae0 | 74 6f 20 71 75 65 72 79 20 74 68 69 73 20 73 65 72 76 65 72 00 4e 65 77 20 75 73 65 72 20 77 69 | to.query.this.server.New.user.wi |
| 108b00 | 6c 6c 20 75 73 65 20 53 48 41 2f 41 45 53 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f | ll.use.SHA/AES.for.authenticatio |
| 108b20 | 6e 20 61 6e 64 20 70 72 69 76 61 63 79 00 4e 65 78 74 20 69 74 20 69 73 20 6e 65 63 65 73 73 61 | n.and.privacy.Next.it.is.necessa |
| 108b40 | 72 79 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 32 46 41 20 66 6f 72 20 4f 70 65 6e 43 6f 6e 6e | ry.to.configure.2FA.for.OpenConn |
| 108b60 | 65 63 74 3a 00 4e 65 78 74 2d 68 6f 70 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 74 68 65 20 | ect:.Next-hop.interface.for.the. |
| 108b80 | 72 6f 75 74 65 00 4e 65 78 74 68 6f 70 20 49 50 20 61 64 64 72 65 73 73 2e 00 4e 65 78 74 68 6f | route.Nexthop.IP.address..Nextho |
| 108ba0 | 70 20 49 50 76 36 20 61 64 64 72 65 73 73 20 74 6f 20 6d 61 74 63 68 2e 00 4e 65 78 74 68 6f 70 | p.IPv6.address.to.match..Nexthop |
| 108bc0 | 20 49 50 76 36 20 61 64 64 72 65 73 73 2e 00 4e 65 78 74 68 6f 70 20 54 72 61 63 6b 69 6e 67 00 | .IPv6.address..Nexthop.Tracking. |
| 108be0 | 4e 65 78 74 68 6f 70 20 74 72 61 63 6b 69 6e 67 20 72 65 73 6f 6c 76 65 20 6e 65 78 74 68 6f 70 | Nexthop.tracking.resolve.nexthop |
| 108c00 | 73 20 76 69 61 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 62 79 20 64 65 66 61 75 | s.via.the.default.route.by.defau |
| 108c20 | 6c 74 2e 20 54 68 69 73 20 69 73 20 65 6e 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 20 66 | lt..This.is.enabled.by.default.f |
| 108c40 | 6f 72 20 61 20 74 72 61 64 69 74 69 6f 6e 61 6c 20 70 72 6f 66 69 6c 65 20 6f 66 20 46 52 52 20 | or.a.traditional.profile.of.FRR. |
| 108c60 | 77 68 69 63 68 20 77 65 20 75 73 65 2e 20 49 74 20 61 6e 64 20 63 61 6e 20 62 65 20 64 69 73 61 | which.we.use..It.and.can.be.disa |
| 108c80 | 62 6c 65 64 20 69 66 20 79 6f 75 20 64 6f 20 6e 6f 74 20 77 61 6e 27 74 20 74 6f 20 65 2e 67 2e | bled.if.you.do.not.wan't.to.e.g. |
| 108ca0 | 20 61 6c 6c 6f 77 20 42 47 50 20 74 6f 20 70 65 65 72 20 61 63 72 6f 73 73 20 74 68 65 20 64 65 | .allow.BGP.to.peer.across.the.de |
| 108cc0 | 66 61 75 6c 74 20 72 6f 75 74 65 2e 00 4e 65 78 74 68 6f 70 20 74 72 61 63 6b 69 6e 67 20 72 65 | fault.route..Nexthop.tracking.re |
| 108ce0 | 73 6f 6c 76 65 20 6e 65 78 74 68 6f 70 73 20 76 69 61 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 | solve.nexthops.via.the.default.r |
| 108d00 | 6f 75 74 65 20 62 79 20 64 65 66 61 75 6c 74 2e 20 54 68 69 73 20 69 73 20 65 6e 61 62 6c 65 64 | oute.by.default..This.is.enabled |
| 108d20 | 20 62 79 20 64 65 66 61 75 6c 74 20 66 6f 72 20 61 20 74 72 61 64 69 74 69 6f 6e 61 6c 20 70 72 | .by.default.for.a.traditional.pr |
| 108d40 | 6f 66 69 6c 65 20 6f 66 20 46 52 52 20 77 68 69 63 68 20 77 65 20 75 73 65 2e 20 49 74 20 61 6e | ofile.of.FRR.which.we.use..It.an |
| 108d60 | 64 20 63 61 6e 20 62 65 20 64 69 73 61 62 6c 65 64 20 69 66 20 79 6f 75 20 64 6f 20 6e 6f 74 20 | d.can.be.disabled.if.you.do.not. |
| 108d80 | 77 61 6e 74 20 74 6f 20 65 2e 67 2e 20 61 6c 6c 6f 77 20 42 47 50 20 74 6f 20 70 65 65 72 20 61 | want.to.e.g..allow.BGP.to.peer.a |
| 108da0 | 63 72 6f 73 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 2e 00 4e 6f 20 52 4f 41 20 | cross.the.default.route..No.ROA. |
| 108dc0 | 65 78 69 73 74 73 20 77 68 69 63 68 20 63 6f 76 65 72 73 20 74 68 61 74 20 70 72 65 66 69 78 2e | exists.which.covers.that.prefix. |
| 108de0 | 20 55 6e 66 6f 72 74 75 6e 61 74 65 6c 79 20 74 68 69 73 20 69 73 20 74 68 65 20 63 61 73 65 20 | .Unfortunately.this.is.the.case. |
| 108e00 | 66 6f 72 20 61 62 6f 75 74 20 34 30 25 2d 35 30 25 20 6f 66 20 74 68 65 20 70 72 65 66 69 78 65 | for.about.40%-50%.of.the.prefixe |
| 108e20 | 73 20 77 68 69 63 68 20 77 65 72 65 20 61 6e 6e 6f 75 6e 63 65 64 20 74 6f 20 74 68 65 20 3a 61 | s.which.were.announced.to.the.:a |
| 108e40 | 62 62 72 3a 60 44 46 5a 20 28 64 65 66 61 75 6c 74 2d 66 72 65 65 20 7a 6f 6e 65 29 60 20 61 74 | bbr:`DFZ.(default-free.zone)`.at |
| 108e60 | 20 74 68 65 20 73 74 61 72 74 20 6f 66 20 32 30 32 34 2e 00 4e 6f 20 52 4f 41 20 65 78 69 73 74 | .the.start.of.2024..No.ROA.exist |
| 108e80 | 73 20 77 68 69 63 68 20 63 6f 76 65 72 73 20 74 68 61 74 20 70 72 65 66 69 78 2e 20 55 6e 66 6f | s.which.covers.that.prefix..Unfo |
| 108ea0 | 72 74 75 6e 61 74 65 6c 79 20 74 68 69 73 20 69 73 20 74 68 65 20 63 61 73 65 20 66 6f 72 20 61 | rtunately.this.is.the.case.for.a |
| 108ec0 | 62 6f 75 74 20 38 30 25 20 6f 66 20 74 68 65 20 49 50 76 34 20 70 72 65 66 69 78 65 73 20 77 68 | bout.80%.of.the.IPv4.prefixes.wh |
| 108ee0 | 69 63 68 20 77 65 72 65 20 61 6e 6e 6f 75 6e 63 65 64 20 74 6f 20 74 68 65 20 3a 61 62 62 72 3a | ich.were.announced.to.the.:abbr: |
| 108f00 | 60 44 46 5a 20 28 64 65 66 61 75 6c 74 2d 66 72 65 65 20 7a 6f 6e 65 29 60 20 61 74 20 74 68 65 | `DFZ.(default-free.zone)`.at.the |
| 108f20 | 20 73 74 61 72 74 20 6f 66 20 32 30 32 30 00 4e 6f 20 56 4c 41 4e 20 74 61 67 67 69 6e 67 20 72 | .start.of.2020.No.VLAN.tagging.r |
| 108f40 | 65 71 75 69 72 65 64 20 62 79 20 79 6f 75 72 20 49 53 50 2e 00 4e 6f 20 72 6f 75 74 65 20 69 73 | equired.by.your.ISP..No.route.is |
| 108f60 | 20 73 75 70 70 72 65 73 73 65 64 20 69 6e 64 65 66 69 6e 69 74 65 6c 79 2e 20 4d 61 78 69 6d 75 | .suppressed.indefinitely..Maximu |
| 108f80 | 6d 2d 73 75 70 70 72 65 73 73 2d 74 69 6d 65 20 64 65 66 69 6e 65 73 20 74 68 65 20 6d 61 78 69 | m-suppress-time.defines.the.maxi |
| 108fa0 | 6d 75 6d 20 74 69 6d 65 20 61 20 72 6f 75 74 65 20 63 61 6e 20 62 65 20 73 75 70 70 72 65 73 73 | mum.time.a.route.can.be.suppress |
| 108fc0 | 65 64 20 62 65 66 6f 72 65 20 69 74 20 69 73 20 72 65 2d 61 64 76 65 72 74 69 73 65 64 2e 00 4e | ed.before.it.is.re-advertised..N |
| 108fe0 | 6f 20 73 75 70 70 6f 72 74 20 66 6f 72 20 53 52 4c 42 00 4e 6f 20 73 75 70 70 6f 72 74 20 66 6f | o.support.for.SRLB.No.support.fo |
| 109000 | 72 20 62 69 6e 64 69 6e 67 20 53 49 44 00 4e 6f 20 73 75 70 70 6f 72 74 20 66 6f 72 20 6c 65 76 | r.binding.SID.No.support.for.lev |
| 109020 | 65 6c 20 72 65 64 69 73 74 72 69 62 75 74 69 6f 6e 20 28 4c 31 20 74 6f 20 4c 32 20 6f 72 20 4c | el.redistribution.(L1.to.L2.or.L |
| 109040 | 32 20 74 6f 20 4c 31 29 00 4e 6f 6e 2d 74 72 61 6e 73 70 61 72 65 6e 74 20 70 72 6f 78 79 69 6e | 2.to.L1).Non-transparent.proxyin |
| 109060 | 67 20 72 65 71 75 69 72 65 73 20 74 68 61 74 20 74 68 65 20 63 6c 69 65 6e 74 20 62 72 6f 77 73 | g.requires.that.the.client.brows |
| 109080 | 65 72 73 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 77 69 74 68 20 74 68 65 20 70 72 6f 78 79 | ers.be.configured.with.the.proxy |
| 1090a0 | 20 73 65 74 74 69 6e 67 73 20 62 65 66 6f 72 65 20 72 65 71 75 65 73 74 73 20 61 72 65 20 72 65 | .settings.before.requests.are.re |
| 1090c0 | 64 69 72 65 63 74 65 64 2e 20 54 68 65 20 61 64 76 61 6e 74 61 67 65 20 6f 66 20 74 68 69 73 20 | directed..The.advantage.of.this. |
| 1090e0 | 69 73 20 74 68 61 74 20 74 68 65 20 63 6c 69 65 6e 74 20 77 65 62 20 62 72 6f 77 73 65 72 20 63 | is.that.the.client.web.browser.c |
| 109100 | 61 6e 20 64 65 74 65 63 74 20 74 68 61 74 20 61 20 70 72 6f 78 79 20 69 73 20 69 6e 20 75 73 65 | an.detect.that.a.proxy.is.in.use |
| 109120 | 20 61 6e 64 20 63 61 6e 20 62 65 68 61 76 65 20 61 63 63 6f 72 64 69 6e 67 6c 79 2e 20 49 6e 20 | .and.can.behave.accordingly..In. |
| 109140 | 61 64 64 69 74 69 6f 6e 2c 20 77 65 62 2d 74 72 61 6e 73 6d 69 74 74 65 64 20 6d 61 6c 77 61 72 | addition,.web-transmitted.malwar |
| 109160 | 65 20 63 61 6e 20 73 6f 6d 65 74 69 6d 65 73 20 62 65 20 62 6c 6f 63 6b 65 64 20 62 79 20 61 20 | e.can.sometimes.be.blocked.by.a. |
| 109180 | 6e 6f 6e 2d 74 72 61 6e 73 70 61 72 65 6e 74 20 77 65 62 20 70 72 6f 78 79 2c 20 73 69 6e 63 65 | non-transparent.web.proxy,.since |
| 1091a0 | 20 74 68 65 79 20 61 72 65 20 6e 6f 74 20 61 77 61 72 65 20 6f 66 20 74 68 65 20 70 72 6f 78 79 | .they.are.not.aware.of.the.proxy |
| 1091c0 | 20 73 65 74 74 69 6e 67 73 2e 00 4e 6f 6e 65 20 6f 66 20 74 68 65 20 6f 70 65 72 61 74 69 6e 67 | .settings..None.of.the.operating |
| 1091e0 | 20 73 79 73 74 65 6d 73 20 68 61 76 65 20 63 6c 69 65 6e 74 20 73 6f 66 74 77 61 72 65 20 69 6e | .systems.have.client.software.in |
| 109200 | 73 74 61 6c 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 00 4e 6f 72 6d 61 6c 20 62 75 74 20 73 69 | stalled.by.default.Normal.but.si |
| 109220 | 67 6e 69 66 69 63 61 6e 74 20 63 6f 6e 64 69 74 69 6f 6e 73 20 2d 20 63 6f 6e 64 69 74 69 6f 6e | gnificant.conditions.-.condition |
| 109240 | 73 20 74 68 61 74 20 61 72 65 20 6e 6f 74 20 65 72 72 6f 72 20 63 6f 6e 64 69 74 69 6f 6e 73 2c | s.that.are.not.error.conditions, |
| 109260 | 20 62 75 74 20 74 68 61 74 20 6d 61 79 20 72 65 71 75 69 72 65 20 73 70 65 63 69 61 6c 20 68 61 | .but.that.may.require.special.ha |
| 109280 | 6e 64 6c 69 6e 67 2e 00 4e 6f 74 20 61 6c 6c 20 3a 72 66 63 3a 60 36 38 38 38 60 20 72 65 71 75 | ndling..Not.all.:rfc:`6888`.requ |
| 1092a0 | 69 72 65 6d 65 6e 74 73 20 61 72 65 20 69 6d 70 6c 65 6d 65 6e 74 65 64 20 69 6e 20 43 47 4e 41 | irements.are.implemented.in.CGNA |
| 1092c0 | 54 2e 00 4e 6f 74 20 61 6c 6c 20 74 72 61 6e 73 6d 69 74 20 70 6f 6c 69 63 69 65 73 20 6d 61 79 | T..Not.all.transmit.policies.may |
| 1092e0 | 20 62 65 20 38 30 32 2e 33 61 64 20 63 6f 6d 70 6c 69 61 6e 74 2c 20 70 61 72 74 69 63 75 6c 61 | .be.802.3ad.compliant,.particula |
| 109300 | 72 6c 79 20 69 6e 20 72 65 67 61 72 64 73 20 74 6f 20 74 68 65 20 70 61 63 6b 65 74 20 6d 69 73 | rly.in.regards.to.the.packet.mis |
| 109320 | 6f 72 64 65 72 69 6e 67 20 72 65 71 75 69 72 65 6d 65 6e 74 73 20 6f 66 20 73 65 63 74 69 6f 6e | ordering.requirements.of.section |
| 109340 | 20 34 33 2e 32 2e 34 20 6f 66 20 74 68 65 20 38 30 32 2e 33 61 64 20 73 74 61 6e 64 61 72 64 2e | .43.2.4.of.the.802.3ad.standard. |
| 109360 | 00 4e 6f 74 65 20 74 68 61 74 20 64 65 6c 65 74 69 6e 67 20 74 68 65 20 6c 6f 67 20 66 69 6c 65 | .Note.that.deleting.the.log.file |
| 109380 | 20 64 6f 65 73 20 6e 6f 74 20 73 74 6f 70 20 74 68 65 20 73 79 73 74 65 6d 20 66 72 6f 6d 20 6c | .does.not.stop.the.system.from.l |
| 1093a0 | 6f 67 67 69 6e 67 20 65 76 65 6e 74 73 2e 20 49 66 20 79 6f 75 20 75 73 65 20 74 68 69 73 20 63 | ogging.events..If.you.use.this.c |
| 1093c0 | 6f 6d 6d 61 6e 64 20 77 68 69 6c 65 20 74 68 65 20 73 79 73 74 65 6d 20 69 73 20 6c 6f 67 67 69 | ommand.while.the.system.is.loggi |
| 1093e0 | 6e 67 20 65 76 65 6e 74 73 2c 20 6f 6c 64 20 6c 6f 67 20 65 76 65 6e 74 73 20 77 69 6c 6c 20 62 | ng.events,.old.log.events.will.b |
| 109400 | 65 20 64 65 6c 65 74 65 64 2c 20 62 75 74 20 65 76 65 6e 74 73 20 61 66 74 65 72 20 74 68 65 20 | e.deleted,.but.events.after.the. |
| 109420 | 64 65 6c 65 74 65 20 6f 70 65 72 61 74 69 6f 6e 20 77 69 6c 6c 20 62 65 20 72 65 63 6f 72 64 65 | delete.operation.will.be.recorde |
| 109440 | 64 20 69 6e 20 74 68 65 20 6e 65 77 20 66 69 6c 65 2e 20 54 6f 20 64 65 6c 65 74 65 20 74 68 65 | d.in.the.new.file..To.delete.the |
| 109460 | 20 66 69 6c 65 20 61 6c 74 6f 67 65 74 68 65 72 2c 20 66 69 72 73 74 20 64 65 6c 65 74 65 20 6c | .file.altogether,.first.delete.l |
| 109480 | 6f 67 67 69 6e 67 20 74 6f 20 74 68 65 20 66 69 6c 65 20 75 73 69 6e 67 20 73 79 73 74 65 6d 20 | ogging.to.the.file.using.system. |
| 1094a0 | 73 79 73 6c 6f 67 20 3a 72 65 66 3a 60 63 75 73 74 6f 6d 2d 66 69 6c 65 60 20 63 6f 6d 6d 61 6e | syslog.:ref:`custom-file`.comman |
| 1094c0 | 64 2c 20 61 6e 64 20 74 68 65 6e 20 64 65 6c 65 74 65 20 74 68 65 20 66 69 6c 65 2e 00 4e 6f 74 | d,.and.then.delete.the.file..Not |
| 1094e0 | 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 77 69 74 68 20 74 68 65 20 70 75 62 6c 69 63 20 6b 65 | e.the.command.with.the.public.ke |
| 109500 | 79 20 28 73 65 74 20 70 6b 69 20 6b 65 79 2d 70 61 69 72 20 69 70 73 65 63 2d 52 49 47 48 54 20 | y.(set.pki.key-pair.ipsec-RIGHT. |
| 109520 | 70 75 62 6c 69 63 20 6b 65 79 20 27 46 41 41 4f 43 41 51 38 41 4d 49 49 2e 2e 2e 27 29 2e 00 4e | public.key.'FAAOCAQ8AMII...')..N |
| 109540 | 6f 74 65 3a 20 63 65 72 74 69 66 69 63 61 74 65 20 6e 61 6d 65 73 20 64 6f 6e 27 74 20 6d 61 74 | ote:.certificate.names.don't.mat |
| 109560 | 74 65 72 2c 20 77 65 20 75 73 65 20 27 6f 70 65 6e 76 70 6e 2d 6c 6f 63 61 6c 27 20 61 6e 64 20 | ter,.we.use.'openvpn-local'.and. |
| 109580 | 27 6f 70 65 6e 76 70 6e 2d 72 65 6d 6f 74 65 27 20 62 75 74 20 74 68 65 79 20 63 61 6e 20 62 65 | 'openvpn-remote'.but.they.can.be |
| 1095a0 | 20 61 72 62 69 74 72 61 72 79 2e 00 4e 6f 74 69 63 65 00 4e 6f 77 20 63 6f 6e 66 69 67 75 72 65 | .arbitrary..Notice.Now.configure |
| 1095c0 | 20 63 6f 6e 6e 74 72 61 63 6b 2d 73 79 6e 63 20 73 65 72 76 69 63 65 20 6f 6e 20 60 60 72 6f 75 | .conntrack-sync.service.on.``rou |
| 1095e0 | 74 65 72 31 60 60 20 2a 2a 61 6e 64 2a 2a 20 60 60 72 6f 75 74 65 72 32 60 60 00 4e 6f 77 20 74 | ter1``.**and**.``router2``.Now.t |
| 109600 | 68 65 20 6e 6f 74 65 64 20 70 75 62 6c 69 63 20 6b 65 79 73 20 73 68 6f 75 6c 64 20 62 65 20 65 | he.noted.public.keys.should.be.e |
| 109620 | 6e 74 65 72 65 64 20 6f 6e 20 74 68 65 20 6f 70 70 6f 73 69 74 65 20 72 6f 75 74 65 72 73 2e 00 | ntered.on.the.opposite.routers.. |
| 109640 | 4e 6f 77 20 74 68 65 20 75 73 65 72 20 63 61 6e 20 63 6f 6e 6e 65 63 74 20 74 68 72 6f 75 67 68 | Now.the.user.can.connect.through |
| 109660 | 20 73 73 68 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 28 61 73 73 75 6d 69 6e 67 20 73 73 68 | .ssh.to.the.router.(assuming.ssh |
| 109680 | 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 29 2e 00 4e 6f 77 20 75 73 65 72 20 63 61 6e 20 63 6f | .is.configured)..Now.user.can.co |
| 1096a0 | 6e 6e 65 63 74 20 74 68 72 6f 75 67 68 20 73 73 68 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 | nnect.through.ssh.to.the.router. |
| 1096c0 | 28 61 73 73 75 6d 69 6e 67 20 73 73 68 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 29 2e 00 4e 6f | (assuming.ssh.is.configured)..No |
| 1096e0 | 77 20 77 65 20 61 64 64 20 74 68 65 20 6f 70 74 69 6f 6e 20 74 6f 20 74 68 65 20 73 63 6f 70 65 | w.we.add.the.option.to.the.scope |
| 109700 | 2c 20 61 64 61 70 74 20 74 6f 20 79 6f 75 72 20 73 65 74 75 70 00 4e 6f 77 20 77 65 20 6e 65 65 | ,.adapt.to.your.setup.Now.we.nee |
| 109720 | 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 73 65 72 76 65 72 20 6e 65 74 77 6f 72 6b 20 | d.to.specify.the.server.network. |
| 109740 | 73 65 74 74 69 6e 67 73 2e 20 49 6e 20 61 6c 6c 20 63 61 73 65 73 20 77 65 20 6e 65 65 64 20 74 | settings..In.all.cases.we.need.t |
| 109760 | 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 73 75 62 6e 65 74 20 66 6f 72 20 63 6c 69 65 6e 74 20 | o.specify.the.subnet.for.client. |
| 109780 | 74 75 6e 6e 65 6c 20 65 6e 64 70 6f 69 6e 74 73 2e 20 53 69 6e 63 65 20 77 65 20 77 61 6e 74 20 | tunnel.endpoints..Since.we.want. |
| 1097a0 | 63 6c 69 65 6e 74 73 20 74 6f 20 61 63 63 65 73 73 20 61 20 73 70 65 63 69 66 69 63 20 6e 65 74 | clients.to.access.a.specific.net |
| 1097c0 | 77 6f 72 6b 20 62 65 68 69 6e 64 20 6f 75 72 20 72 6f 75 74 65 72 2c 20 77 65 20 77 69 6c 6c 20 | work.behind.our.router,.we.will. |
| 1097e0 | 75 73 65 20 61 20 70 75 73 68 2d 72 6f 75 74 65 20 6f 70 74 69 6f 6e 20 66 6f 72 20 69 6e 73 74 | use.a.push-route.option.for.inst |
| 109800 | 61 6c 6c 69 6e 67 20 74 68 61 74 20 72 6f 75 74 65 20 6f 6e 20 63 6c 69 65 6e 74 73 2e 00 4e 6f | alling.that.route.on.clients..No |
| 109820 | 77 20 77 68 65 6e 20 63 6f 6e 6e 65 63 74 69 6e 67 20 74 68 65 20 75 73 65 72 20 77 69 6c 6c 20 | w.when.connecting.the.user.will. |
| 109840 | 66 69 72 73 74 20 62 65 20 61 73 6b 65 64 20 66 6f 72 20 74 68 65 20 70 61 73 73 77 6f 72 64 20 | first.be.asked.for.the.password. |
| 109860 | 61 6e 64 20 74 68 65 6e 20 74 68 65 20 4f 54 50 20 6b 65 79 2e 00 4e 6f 77 20 79 6f 75 20 61 72 | and.then.the.OTP.key..Now.you.ar |
| 109880 | 65 20 72 65 61 64 79 20 74 6f 20 73 65 74 75 70 20 49 50 73 65 63 2e 20 54 68 65 20 6b 65 79 20 | e.ready.to.setup.IPsec..The.key. |
| 1098a0 | 70 6f 69 6e 74 73 3a 00 4e 6f 77 20 79 6f 75 20 61 72 65 20 72 65 61 64 79 20 74 6f 20 73 65 74 | points:.Now.you.are.ready.to.set |
| 1098c0 | 75 70 20 49 50 73 65 63 2e 20 59 6f 75 27 6c 6c 20 6e 65 65 64 20 74 6f 20 75 73 65 20 61 6e 20 | up.IPsec..You'll.need.to.use.an. |
| 1098e0 | 49 44 20 69 6e 73 74 65 61 64 20 6f 66 20 61 64 64 72 65 73 73 20 66 6f 72 20 74 68 65 20 70 65 | ID.instead.of.address.for.the.pe |
| 109900 | 65 72 2e 00 4e 75 6d 62 65 72 20 6f 66 20 61 6e 74 65 6e 6e 61 73 20 6f 6e 20 74 68 69 73 20 63 | er..Number.of.antennas.on.this.c |
| 109920 | 61 72 64 00 4e 75 6d 62 65 72 20 6f 66 20 62 69 74 73 20 6f 66 20 63 6c 69 65 6e 74 20 49 50 76 | ard.Number.of.bits.of.client.IPv |
| 109940 | 34 20 61 64 64 72 65 73 73 20 74 6f 20 70 61 73 73 20 77 68 65 6e 20 73 65 6e 64 69 6e 67 20 45 | 4.address.to.pass.when.sending.E |
| 109960 | 44 4e 53 20 43 6c 69 65 6e 74 20 53 75 62 6e 65 74 20 61 64 64 72 65 73 73 20 69 6e 66 6f 72 6d | DNS.Client.Subnet.address.inform |
| 109980 | 61 74 69 6f 6e 2e 00 4e 75 6d 62 65 72 20 6f 66 20 6c 69 6e 65 73 20 74 6f 20 62 65 20 64 69 73 | ation..Number.of.lines.to.be.dis |
| 1099a0 | 70 6c 61 79 65 64 2c 20 64 65 66 61 75 6c 74 20 31 30 00 4f 53 50 46 00 4f 53 50 46 20 53 52 20 | played,.default.10.OSPF.OSPF.SR. |
| 1099c0 | 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 4f 53 50 46 20 69 73 20 61 20 77 69 64 65 6c 79 20 | .Configuration.OSPF.is.a.widely. |
| 1099e0 | 75 73 65 64 20 49 47 50 20 69 6e 20 6c 61 72 67 65 20 65 6e 74 65 72 70 72 69 73 65 20 6e 65 74 | used.IGP.in.large.enterprise.net |
| 109a00 | 77 6f 72 6b 73 2e 00 4f 53 50 46 20 72 6f 75 74 69 6e 67 20 64 65 76 69 63 65 73 20 6e 6f 72 6d | works..OSPF.routing.devices.norm |
| 109a20 | 61 6c 6c 79 20 64 69 73 63 6f 76 65 72 20 74 68 65 69 72 20 6e 65 69 67 68 62 6f 72 73 20 64 79 | ally.discover.their.neighbors.dy |
| 109a40 | 6e 61 6d 69 63 61 6c 6c 79 20 62 79 20 6c 69 73 74 65 6e 69 6e 67 20 74 6f 20 74 68 65 20 62 72 | namically.by.listening.to.the.br |
| 109a60 | 6f 61 64 63 61 73 74 20 6f 72 20 6d 75 6c 74 69 63 61 73 74 20 68 65 6c 6c 6f 20 70 61 63 6b 65 | oadcast.or.multicast.hello.packe |
| 109a80 | 74 73 20 6f 6e 20 74 68 65 20 6e 65 74 77 6f 72 6b 2e 20 42 65 63 61 75 73 65 20 61 6e 20 4e 42 | ts.on.the.network..Because.an.NB |
| 109aa0 | 4d 41 20 6e 65 74 77 6f 72 6b 20 64 6f 65 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 20 62 72 6f 61 | MA.network.does.not.support.broa |
| 109ac0 | 64 63 61 73 74 20 28 6f 72 20 6d 75 6c 74 69 63 61 73 74 29 2c 20 74 68 65 20 64 65 76 69 63 65 | dcast.(or.multicast),.the.device |
| 109ae0 | 20 63 61 6e 6e 6f 74 20 64 69 73 63 6f 76 65 72 20 69 74 73 20 6e 65 69 67 68 62 6f 72 73 20 64 | .cannot.discover.its.neighbors.d |
| 109b00 | 79 6e 61 6d 69 63 61 6c 6c 79 2c 20 73 6f 20 79 6f 75 20 6d 75 73 74 20 63 6f 6e 66 69 67 75 72 | ynamically,.so.you.must.configur |
| 109b20 | 65 20 61 6c 6c 20 74 68 65 20 6e 65 69 67 68 62 6f 72 73 20 73 74 61 74 69 63 61 6c 6c 79 2e 00 | e.all.the.neighbors.statically.. |
| 109b40 | 4f 53 50 46 76 32 20 28 49 50 76 34 29 00 4f 53 50 46 76 33 20 28 49 50 76 36 29 00 4f 54 50 2d | OSPFv2.(IPv4).OSPFv3.(IPv6).OTP- |
| 109b60 | 6b 65 79 20 67 65 6e 65 72 61 74 69 6f 6e 00 4f 66 66 6c 6f 61 64 69 6e 67 00 4f 66 66 73 65 74 | key.generation.Offloading.Offset |
| 109b80 | 20 6f 66 20 74 68 65 20 63 6c 69 65 6e 74 27 73 20 73 75 62 6e 65 74 20 69 6e 20 73 65 63 6f 6e | .of.the.client's.subnet.in.secon |
| 109ba0 | 64 73 20 66 72 6f 6d 20 43 6f 6f 72 64 69 6e 61 74 65 64 20 55 6e 69 76 65 72 73 61 6c 20 54 69 | ds.from.Coordinated.Universal.Ti |
| 109bc0 | 6d 65 20 28 55 54 43 29 00 4f 66 74 65 6e 20 77 65 20 6e 65 65 64 20 74 6f 20 65 6d 62 65 64 20 | me.(UTC).Often.we.need.to.embed. |
| 109be0 | 6f 6e 65 20 70 6f 6c 69 63 79 20 69 6e 74 6f 20 61 6e 6f 74 68 65 72 20 6f 6e 65 2e 20 49 74 20 | one.policy.into.another.one..It. |
| 109c00 | 69 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 64 6f 20 73 6f 20 6f 6e 20 63 6c 61 73 73 66 75 6c | is.possible.to.do.so.on.classful |
| 109c20 | 20 70 6f 6c 69 63 69 65 73 2c 20 62 79 20 61 74 74 61 63 68 69 6e 67 20 61 20 6e 65 77 20 70 6f | .policies,.by.attaching.a.new.po |
| 109c40 | 6c 69 63 79 20 69 6e 74 6f 20 61 20 63 6c 61 73 73 2e 20 46 6f 72 20 69 6e 73 74 61 6e 63 65 2c | licy.into.a.class..For.instance, |
| 109c60 | 20 79 6f 75 20 6d 69 67 68 74 20 77 61 6e 74 20 74 6f 20 61 70 70 6c 79 20 64 69 66 66 65 72 65 | .you.might.want.to.apply.differe |
| 109c80 | 6e 74 20 70 6f 6c 69 63 69 65 73 20 74 6f 20 74 68 65 20 64 69 66 66 65 72 65 6e 74 20 63 6c 61 | nt.policies.to.the.different.cla |
| 109ca0 | 73 73 65 73 20 6f 66 20 61 20 52 6f 75 6e 64 2d 52 6f 62 69 6e 20 70 6f 6c 69 63 79 20 79 6f 75 | sses.of.a.Round-Robin.policy.you |
| 109cc0 | 20 68 61 76 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 4f 66 74 65 6e 20 79 6f 75 20 77 69 6c 6c | .have.configured..Often.you.will |
| 109ce0 | 20 61 6c 73 6f 20 68 61 76 65 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 79 6f 75 72 20 2a 64 65 | .also.have.to.configure.your.*de |
| 109d00 | 66 61 75 6c 74 2a 20 74 72 61 66 66 69 63 20 69 6e 20 74 68 65 20 73 61 6d 65 20 77 61 79 20 79 | fault*.traffic.in.the.same.way.y |
| 109d20 | 6f 75 20 64 6f 20 77 69 74 68 20 61 20 63 6c 61 73 73 2e 20 2a 44 65 66 61 75 6c 74 2a 20 63 61 | ou.do.with.a.class..*Default*.ca |
| 109d40 | 6e 20 62 65 20 63 6f 6e 73 69 64 65 72 65 64 20 61 20 63 6c 61 73 73 20 61 73 20 69 74 20 62 65 | n.be.considered.a.class.as.it.be |
| 109d60 | 68 61 76 65 73 20 6c 69 6b 65 20 74 68 61 74 2e 20 49 74 20 63 6f 6e 74 61 69 6e 73 20 61 6e 79 | haves.like.that..It.contains.any |
| 109d80 | 20 74 72 61 66 66 69 63 20 74 68 61 74 20 64 69 64 20 6e 6f 74 20 6d 61 74 63 68 20 61 6e 79 20 | .traffic.that.did.not.match.any. |
| 109da0 | 6f 66 20 74 68 65 20 64 65 66 69 6e 65 64 20 63 6c 61 73 73 65 73 2c 20 73 6f 20 69 74 20 69 73 | of.the.defined.classes,.so.it.is |
| 109dc0 | 20 6c 69 6b 65 20 61 6e 20 6f 70 65 6e 20 63 6c 61 73 73 2c 20 61 20 63 6c 61 73 73 20 77 69 74 | .like.an.open.class,.a.class.wit |
| 109de0 | 68 6f 75 74 20 6d 61 74 63 68 69 6e 67 20 66 69 6c 74 65 72 73 2e 00 4f 6e 20 61 63 74 69 76 65 | hout.matching.filters..On.active |
| 109e00 | 20 72 6f 75 74 65 72 20 72 75 6e 3a 00 4f 6e 20 62 6f 74 68 20 73 69 64 65 73 2c 20 79 6f 75 20 | .router.run:.On.both.sides,.you. |
| 109e20 | 6e 65 65 64 20 74 6f 20 67 65 6e 65 72 61 74 65 20 61 20 73 65 6c 66 2d 73 69 67 6e 65 64 20 63 | need.to.generate.a.self-signed.c |
| 109e40 | 65 72 74 69 66 69 63 61 74 65 2c 20 70 72 65 66 65 72 72 61 62 6c 79 20 75 73 69 6e 67 20 74 68 | ertificate,.preferrably.using.th |
| 109e60 | 65 20 22 65 63 22 20 28 65 6c 6c 69 70 74 69 63 20 63 75 72 76 65 29 20 74 79 70 65 2e 20 59 6f | e."ec".(elliptic.curve).type..Yo |
| 109e80 | 75 20 63 61 6e 20 67 65 6e 65 72 61 74 65 20 74 68 65 6d 20 62 79 20 65 78 65 63 75 74 69 6e 67 | u.can.generate.them.by.executing |
| 109ea0 | 20 63 6f 6d 6d 61 6e 64 20 60 60 72 75 6e 20 67 65 6e 65 72 61 74 65 20 70 6b 69 20 63 65 72 74 | .command.``run.generate.pki.cert |
| 109ec0 | 69 66 69 63 61 74 65 20 73 65 6c 66 2d 73 69 67 6e 65 64 20 69 6e 73 74 61 6c 6c 20 3c 6e 61 6d | ificate.self-signed.install.<nam |
| 109ee0 | 65 3e 60 60 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 65 2e 20 | e>``.in.the.configuration.mode.. |
| 109f00 | 4f 6e 63 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 69 73 20 63 6f 6d 70 6c 65 74 65 2c 20 69 74 | Once.the.command.is.complete,.it |
| 109f20 | 20 77 69 6c 6c 20 61 64 64 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 74 6f 20 74 68 65 | .will.add.the.certificate.to.the |
| 109f40 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 65 73 73 69 6f 6e 2c 20 74 6f 20 74 68 65 20 60 | .configuration.session,.to.the.` |
| 109f60 | 60 70 6b 69 60 60 20 73 75 62 74 72 65 65 2e 20 59 6f 75 20 63 61 6e 20 74 68 65 6e 20 72 65 76 | `pki``.subtree..You.can.then.rev |
| 109f80 | 69 65 77 20 74 68 65 20 70 72 6f 70 6f 73 65 64 20 63 68 61 6e 67 65 73 20 61 6e 64 20 63 6f 6d | iew.the.proposed.changes.and.com |
| 109fa0 | 6d 69 74 20 74 68 65 6d 2e 00 4f 6e 20 6c 6f 77 20 72 61 74 65 73 20 28 62 65 6c 6f 77 20 34 30 | mit.them..On.low.rates.(below.40 |
| 109fc0 | 4d 62 69 74 29 20 79 6f 75 20 6d 61 79 20 77 61 6e 74 20 74 6f 20 74 75 6e 65 20 60 71 75 61 6e | Mbit).you.may.want.to.tune.`quan |
| 109fe0 | 74 75 6d 60 20 64 6f 77 6e 20 74 6f 20 73 6f 6d 65 74 68 69 6e 67 20 6c 69 6b 65 20 33 30 30 20 | tum`.down.to.something.like.300. |
| 10a000 | 62 79 74 65 73 2e 00 4f 6e 20 6d 6f 73 74 20 73 63 65 6e 61 72 69 6f 73 2c 20 74 68 65 72 65 27 | bytes..On.most.scenarios,.there' |
| 10a020 | 73 20 6e 6f 20 6e 65 65 64 20 74 6f 20 63 68 61 6e 67 65 20 73 70 65 63 69 66 69 63 20 70 61 72 | s.no.need.to.change.specific.par |
| 10a040 | 61 6d 65 74 65 72 73 2c 20 61 6e 64 20 75 73 69 6e 67 20 64 65 66 61 75 6c 74 20 63 6f 6e 66 69 | ameters,.and.using.default.confi |
| 10a060 | 67 75 72 61 74 69 6f 6e 20 69 73 20 65 6e 6f 75 67 68 2e 20 42 75 74 20 74 68 65 72 65 20 61 72 | guration.is.enough..But.there.ar |
| 10a080 | 65 20 63 61 73 65 73 20 77 65 72 65 20 65 78 74 72 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | e.cases.were.extra.configuration |
| 10a0a0 | 20 69 73 20 6e 65 65 64 65 64 2e 00 4f 6e 20 73 74 61 6e 64 62 79 20 72 6f 75 74 65 72 20 72 75 | .is.needed..On.standby.router.ru |
| 10a0c0 | 6e 3a 00 4f 6e 20 73 79 73 74 65 6d 73 20 77 69 74 68 20 6d 75 6c 74 69 70 6c 65 20 72 65 64 75 | n:.On.systems.with.multiple.redu |
| 10a0e0 | 6e 64 61 6e 74 20 75 70 6c 69 6e 6b 73 20 61 6e 64 20 72 6f 75 74 65 73 2c 20 69 74 27 73 20 61 | ndant.uplinks.and.routes,.it's.a |
| 10a100 | 20 67 6f 6f 64 20 69 64 65 61 20 74 6f 20 75 73 65 20 61 20 64 65 64 69 63 61 74 65 64 20 61 64 | .good.idea.to.use.a.dedicated.ad |
| 10a120 | 64 72 65 73 73 20 66 6f 72 20 6d 61 6e 61 67 65 6d 65 6e 74 20 61 6e 64 20 64 79 6e 61 6d 69 63 | dress.for.management.and.dynamic |
| 10a140 | 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 2e 20 48 6f 77 65 76 65 72 2c 20 61 73 73 | .routing.protocols..However,.ass |
| 10a160 | 69 67 6e 69 6e 67 20 74 68 61 74 20 61 64 64 72 65 73 73 20 74 6f 20 61 20 70 68 79 73 69 63 61 | igning.that.address.to.a.physica |
| 10a180 | 6c 20 6c 69 6e 6b 20 69 73 20 72 69 73 6b 79 3a 20 69 66 20 74 68 61 74 20 6c 69 6e 6b 20 67 6f | l.link.is.risky:.if.that.link.go |
| 10a1a0 | 65 73 20 64 6f 77 6e 2c 20 74 68 61 74 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 63 6f 6d | es.down,.that.address.will.becom |
| 10a1c0 | 65 20 69 6e 61 63 63 65 73 73 69 62 6c 65 2e 20 41 20 63 6f 6d 6d 6f 6e 20 73 6f 6c 75 74 69 6f | e.inaccessible..A.common.solutio |
| 10a1e0 | 6e 20 69 73 20 74 6f 20 61 73 73 69 67 6e 20 74 68 65 20 6d 61 6e 61 67 65 6d 65 6e 74 20 61 64 | n.is.to.assign.the.management.ad |
| 10a200 | 64 72 65 73 73 20 74 6f 20 61 20 6c 6f 6f 70 62 61 63 6b 20 6f 72 20 61 20 64 75 6d 6d 79 20 69 | dress.to.a.loopback.or.a.dummy.i |
| 10a220 | 6e 74 65 72 66 61 63 65 20 61 6e 64 20 61 64 76 65 72 74 69 73 65 20 74 68 61 74 20 61 64 64 72 | nterface.and.advertise.that.addr |
| 10a240 | 65 73 73 20 76 69 61 20 61 6c 6c 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 73 2c 20 73 6f 20 74 | ess.via.all.physical.links,.so.t |
| 10a260 | 68 61 74 20 69 74 27 73 20 72 65 61 63 68 61 62 6c 65 20 74 68 72 6f 75 67 68 20 61 6e 79 20 6f | hat.it's.reachable.through.any.o |
| 10a280 | 66 20 74 68 65 6d 2e 20 53 69 6e 63 65 20 69 6e 20 4c 69 6e 75 78 2d 62 61 73 65 64 20 73 79 73 | f.them..Since.in.Linux-based.sys |
| 10a2a0 | 74 65 6d 73 2c 20 74 68 65 72 65 20 63 61 6e 20 62 65 20 6f 6e 6c 79 20 6f 6e 65 20 6c 6f 6f 70 | tems,.there.can.be.only.one.loop |
| 10a2c0 | 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 2c 20 69 74 27 73 20 62 65 74 74 65 72 20 74 6f 20 75 | back.interface,.it's.better.to.u |
| 10a2e0 | 73 65 20 61 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 74 68 61 74 20 70 75 | se.a.dummy.interface.for.that.pu |
| 10a300 | 72 70 6f 73 65 2c 20 73 69 6e 63 65 20 74 68 65 79 20 63 61 6e 20 62 65 20 61 64 64 65 64 2c 20 | rpose,.since.they.can.be.added,. |
| 10a320 | 72 65 6d 6f 76 65 64 2c 20 61 6e 64 20 74 61 6b 65 6e 20 75 70 20 61 6e 64 20 64 6f 77 6e 20 69 | removed,.and.taken.up.and.down.i |
| 10a340 | 6e 64 65 70 65 6e 64 65 6e 74 6c 79 2e 00 4f 6e 20 74 68 65 20 4c 45 46 54 20 28 73 74 61 74 69 | ndependently..On.the.LEFT.(stati |
| 10a360 | 63 20 61 64 64 72 65 73 73 29 3a 00 4f 6e 20 74 68 65 20 4c 45 46 54 3a 00 4f 6e 20 74 68 65 20 | c.address):.On.the.LEFT:.On.the. |
| 10a380 | 52 49 47 48 54 20 28 64 79 6e 61 6d 69 63 20 61 64 64 72 65 73 73 29 3a 00 4f 6e 20 74 68 65 20 | RIGHT.(dynamic.address):.On.the. |
| 10a3a0 | 52 49 47 48 54 2c 20 73 65 74 75 70 20 62 79 20 61 6e 61 6c 6f 67 79 20 61 6e 64 20 73 77 61 70 | RIGHT,.setup.by.analogy.and.swap |
| 10a3c0 | 20 6c 6f 63 61 6c 20 61 6e 64 20 72 65 6d 6f 74 65 20 61 64 64 72 65 73 73 65 73 2e 00 4f 6e 20 | .local.and.remote.addresses..On. |
| 10a3e0 | 74 68 65 20 52 49 47 48 54 3a 00 4f 6e 20 74 68 65 20 61 63 74 69 76 65 20 72 6f 75 74 65 72 2c | the.RIGHT:.On.the.active.router, |
| 10a400 | 20 79 6f 75 20 73 68 6f 75 6c 64 20 68 61 76 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 6e 20 | .you.should.have.information.in. |
| 10a420 | 74 68 65 20 69 6e 74 65 72 6e 61 6c 2d 63 61 63 68 65 20 6f 66 20 63 6f 6e 6e 74 72 61 63 6b 2d | the.internal-cache.of.conntrack- |
| 10a440 | 73 79 6e 63 2e 20 54 68 65 20 73 61 6d 65 20 63 75 72 72 65 6e 74 20 61 63 74 69 76 65 20 63 6f | sync..The.same.current.active.co |
| 10a460 | 6e 6e 65 63 74 69 6f 6e 73 20 6e 75 6d 62 65 72 20 73 68 6f 75 6c 64 20 62 65 20 73 68 6f 77 6e | nnections.number.should.be.shown |
| 10a480 | 20 69 6e 20 74 68 65 20 65 78 74 65 72 6e 61 6c 2d 63 61 63 68 65 20 6f 66 20 74 68 65 20 73 74 | .in.the.external-cache.of.the.st |
| 10a4a0 | 61 6e 64 62 79 20 72 6f 75 74 65 72 00 4f 6e 20 74 68 65 20 69 6e 69 74 69 61 74 6f 72 2c 20 77 | andby.router.On.the.initiator,.w |
| 10a4c0 | 65 20 6e 65 65 64 20 74 6f 20 73 65 74 20 74 68 65 20 72 65 6d 6f 74 65 2d 69 64 20 6f 70 74 69 | e.need.to.set.the.remote-id.opti |
| 10a4e0 | 6f 6e 20 73 6f 20 74 68 61 74 20 69 74 20 63 61 6e 20 69 64 65 6e 74 69 66 79 20 49 4b 45 20 74 | on.so.that.it.can.identify.IKE.t |
| 10a500 | 72 61 66 66 69 63 20 66 72 6f 6d 20 74 68 65 20 72 65 73 70 6f 6e 64 65 72 20 63 6f 72 72 65 63 | raffic.from.the.responder.correc |
| 10a520 | 74 6c 79 2e 00 4f 6e 20 74 68 65 20 69 6e 69 74 69 61 74 6f 72 2c 20 77 65 20 73 65 74 20 74 68 | tly..On.the.initiator,.we.set.th |
| 10a540 | 65 20 70 65 65 72 20 61 64 64 72 65 73 73 20 74 6f 20 69 74 73 20 70 75 62 6c 69 63 20 61 64 64 | e.peer.address.to.its.public.add |
| 10a560 | 72 65 73 73 2c 20 62 75 74 20 6f 6e 20 74 68 65 20 72 65 73 70 6f 6e 64 65 72 20 77 65 20 6f 6e | ress,.but.on.the.responder.we.on |
| 10a580 | 6c 79 20 73 65 74 20 74 68 65 20 69 64 2e 00 4f 6e 20 74 68 65 20 6c 61 73 74 20 68 6f 70 20 72 | ly.set.the.id..On.the.last.hop.r |
| 10a5a0 | 6f 75 74 65 72 20 69 66 20 69 74 20 69 73 20 64 65 73 69 72 65 64 20 74 6f 20 6e 6f 74 20 73 77 | outer.if.it.is.desired.to.not.sw |
| 10a5c0 | 69 74 63 68 20 6f 76 65 72 20 74 6f 20 74 68 65 20 53 50 54 20 74 72 65 65 20 63 6f 6e 66 69 67 | itch.over.to.the.SPT.tree.config |
| 10a5e0 | 75 72 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 2e 00 4f 6e 20 74 68 65 20 72 65 73 70 6f 6e 64 | ure.this.command..On.the.respond |
| 10a600 | 65 72 2c 20 77 65 20 6e 65 65 64 20 74 6f 20 73 65 74 20 74 68 65 20 6c 6f 63 61 6c 20 69 64 20 | er,.we.need.to.set.the.local.id. |
| 10a620 | 73 6f 20 74 68 61 74 20 69 6e 69 74 69 61 74 6f 72 20 63 61 6e 20 6b 6e 6f 77 20 77 68 6f 27 73 | so.that.initiator.can.know.who's |
| 10a640 | 20 74 61 6c 6b 69 6e 67 20 74 6f 20 69 74 20 66 6f 72 20 74 68 65 20 70 6f 69 6e 74 20 23 33 20 | .talking.to.it.for.the.point.#3. |
| 10a660 | 74 6f 20 77 6f 72 6b 2e 00 4f 6e 63 65 20 61 20 63 6c 61 73 73 20 68 61 73 20 61 20 66 69 6c 74 | to.work..Once.a.class.has.a.filt |
| 10a680 | 65 72 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 79 6f 75 20 77 69 6c 6c 20 61 6c 73 6f 20 68 61 76 | er.configured,.you.will.also.hav |
| 10a6a0 | 65 20 74 6f 20 64 65 66 69 6e 65 20 77 68 61 74 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 64 6f 20 | e.to.define.what.you.want.to.do. |
| 10a6c0 | 77 69 74 68 20 74 68 65 20 74 72 61 66 66 69 63 20 6f 66 20 74 68 61 74 20 63 6c 61 73 73 2c 20 | with.the.traffic.of.that.class,. |
| 10a6e0 | 77 68 61 74 20 73 70 65 63 69 66 69 63 20 54 72 61 66 66 69 63 2d 43 6f 6e 74 72 6f 6c 20 74 72 | what.specific.Traffic-Control.tr |
| 10a700 | 65 61 74 6d 65 6e 74 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 67 69 76 65 20 69 74 2e 20 59 6f 75 | eatment.you.want.to.give.it..You |
| 10a720 | 20 77 69 6c 6c 20 68 61 76 65 20 64 69 66 66 65 72 65 6e 74 20 70 6f 73 73 69 62 69 6c 69 74 69 | .will.have.different.possibiliti |
| 10a740 | 65 73 20 64 65 70 65 6e 64 69 6e 67 20 6f 6e 20 74 68 65 20 54 72 61 66 66 69 63 20 50 6f 6c 69 | es.depending.on.the.Traffic.Poli |
| 10a760 | 63 79 20 79 6f 75 20 61 72 65 20 63 6f 6e 66 69 67 75 72 69 6e 67 2e 00 4f 6e 63 65 20 61 20 6e | cy.you.are.configuring..Once.a.n |
| 10a780 | 65 69 67 68 62 6f 72 20 68 61 73 20 62 65 65 6e 20 66 6f 75 6e 64 2c 20 74 68 65 20 65 6e 74 72 | eighbor.has.been.found,.the.entr |
| 10a7a0 | 79 20 69 73 20 63 6f 6e 73 69 64 65 72 65 64 20 74 6f 20 62 65 20 76 61 6c 69 64 20 66 6f 72 20 | y.is.considered.to.be.valid.for. |
| 10a7c0 | 61 74 20 6c 65 61 73 74 20 66 6f 72 20 74 68 69 73 20 73 70 65 63 69 66 69 63 20 74 69 6d 65 2e | at.least.for.this.specific.time. |
| 10a7e0 | 20 41 6e 20 65 6e 74 72 79 27 73 20 76 61 6c 69 64 69 74 79 20 77 69 6c 6c 20 62 65 20 65 78 74 | .An.entry's.validity.will.be.ext |
| 10a800 | 65 6e 64 65 64 20 69 66 20 69 74 20 72 65 63 65 69 76 65 73 20 70 6f 73 69 74 69 76 65 20 66 65 | ended.if.it.receives.positive.fe |
| 10a820 | 65 64 62 61 63 6b 20 66 72 6f 6d 20 68 69 67 68 65 72 20 6c 65 76 65 6c 20 70 72 6f 74 6f 63 6f | edback.from.higher.level.protoco |
| 10a840 | 6c 73 2e 00 4f 6e 63 65 20 61 20 72 6f 75 74 65 20 69 73 20 61 73 73 65 73 73 65 64 20 61 20 70 | ls..Once.a.route.is.assessed.a.p |
| 10a860 | 65 6e 61 6c 74 79 2c 20 74 68 65 20 70 65 6e 61 6c 74 79 20 69 73 20 64 65 63 72 65 61 73 65 64 | enalty,.the.penalty.is.decreased |
| 10a880 | 20 62 79 20 68 61 6c 66 20 65 61 63 68 20 74 69 6d 65 20 61 20 70 72 65 64 65 66 69 6e 65 64 20 | .by.half.each.time.a.predefined. |
| 10a8a0 | 61 6d 6f 75 6e 74 20 6f 66 20 74 69 6d 65 20 65 6c 61 70 73 65 73 20 28 68 61 6c 66 2d 6c 69 66 | amount.of.time.elapses.(half-lif |
| 10a8c0 | 65 2d 74 69 6d 65 29 2e 20 57 68 65 6e 20 74 68 65 20 61 63 63 75 6d 75 6c 61 74 65 64 20 70 65 | e-time)..When.the.accumulated.pe |
| 10a8e0 | 6e 61 6c 74 69 65 73 20 66 61 6c 6c 20 62 65 6c 6f 77 20 61 20 70 72 65 64 65 66 69 6e 65 64 20 | nalties.fall.below.a.predefined. |
| 10a900 | 74 68 72 65 73 68 6f 6c 64 20 28 72 65 75 73 65 2d 76 61 6c 75 65 29 2c 20 74 68 65 20 72 6f 75 | threshold.(reuse-value),.the.rou |
| 10a920 | 74 65 20 69 73 20 75 6e 73 75 70 70 72 65 73 73 65 64 20 61 6e 64 20 61 64 64 65 64 20 62 61 63 | te.is.unsuppressed.and.added.bac |
| 10a940 | 6b 20 69 6e 74 6f 20 74 68 65 20 42 47 50 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 00 4f 6e | k.into.the.BGP.routing.table..On |
| 10a960 | 63 65 20 61 20 74 72 61 66 66 69 63 2d 70 6f 6c 69 63 79 20 69 73 20 63 72 65 61 74 65 64 2c 20 | ce.a.traffic-policy.is.created,. |
| 10a980 | 79 6f 75 20 63 61 6e 20 61 70 70 6c 79 20 69 74 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 | you.can.apply.it.to.an.interface |
| 10a9a0 | 3a 00 4f 6e 63 65 20 61 20 75 73 65 72 20 68 61 73 20 32 46 41 2f 4f 54 50 20 63 6f 6e 66 69 67 | :.Once.a.user.has.2FA/OTP.config |
| 10a9c0 | 75 72 65 64 20 61 67 61 69 6e 73 74 20 74 68 65 69 72 20 61 63 63 6f 75 6e 74 2c 20 74 68 65 79 | ured.against.their.account,.they |
| 10a9e0 | 20 6d 75 73 74 20 6c 6f 67 69 6e 20 75 73 69 6e 67 20 74 68 65 69 72 20 70 61 73 73 77 6f 72 64 | .must.login.using.their.password |
| 10aa00 | 20 77 69 74 68 20 74 68 65 20 4f 54 50 20 63 6f 64 65 20 61 70 70 65 6e 64 65 64 20 74 6f 20 69 | .with.the.OTP.code.appended.to.i |
| 10aa20 | 74 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 49 66 20 74 68 65 20 75 73 65 72 73 20 70 61 73 | t..For.example:.If.the.users.pas |
| 10aa40 | 73 77 6f 72 64 20 69 73 20 76 79 6f 73 72 6f 63 6b 73 20 61 6e 64 20 74 68 65 20 4f 54 50 20 63 | sword.is.vyosrocks.and.the.OTP.c |
| 10aa60 | 6f 64 65 20 69 73 20 38 31 37 34 35 34 20 74 68 65 6e 20 74 68 65 79 20 77 6f 75 6c 64 20 65 6e | ode.is.817454.then.they.would.en |
| 10aa80 | 74 65 72 20 74 68 65 69 72 20 70 61 73 73 77 6f 72 64 20 61 73 20 76 79 6f 73 72 6f 63 6b 73 38 | ter.their.password.as.vyosrocks8 |
| 10aaa0 | 31 37 34 35 34 00 4f 6e 63 65 20 63 72 65 61 74 65 64 20 69 6e 20 74 68 65 20 73 79 73 74 65 6d | 17454.Once.created.in.the.system |
| 10aac0 | 2c 20 50 73 65 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 63 61 6e | ,.Pseudo-Ethernet.interfaces.can |
| 10aae0 | 20 62 65 20 72 65 66 65 72 65 6e 63 65 64 20 69 6e 20 74 68 65 20 65 78 61 63 74 20 73 61 6d 65 | .be.referenced.in.the.exact.same |
| 10ab00 | 20 77 61 79 20 61 73 20 6f 74 68 65 72 20 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 | .way.as.other.Ethernet.interface |
| 10ab20 | 73 2e 20 4e 6f 74 65 73 20 61 62 6f 75 74 20 75 73 69 6e 67 20 50 73 65 75 64 6f 2d 20 45 74 68 | s..Notes.about.using.Pseudo-.Eth |
| 10ab40 | 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 3a 00 4f 6e 63 65 20 64 79 6e 61 6d 69 63 20 66 | ernet.interfaces:.Once.dynamic.f |
| 10ab60 | 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 20 61 72 65 20 64 65 66 69 6e 65 64 2c 20 74 68 65 79 | irewall.groups.are.defined,.they |
| 10ab80 | 20 73 68 6f 75 6c 64 20 62 65 20 75 73 65 64 20 69 6e 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 | .should.be.used.in.firewall.rule |
| 10aba0 | 73 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 64 79 6e 61 6d 69 63 61 6c 6c 79 20 61 64 64 20 65 6c | s.in.order.to.dynamically.add.el |
| 10abc0 | 65 6d 65 6e 74 73 20 74 6f 20 69 74 2e 00 4f 6e 63 65 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 | ements.to.it..Once.flow.accounti |
| 10abe0 | 6e 67 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 | ng.is.configured.on.an.interface |
| 10ac00 | 73 20 69 74 20 70 72 6f 76 69 64 65 73 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 6f 20 64 69 73 | s.it.provides.the.ability.to.dis |
| 10ac20 | 70 6c 61 79 20 63 61 70 74 75 72 65 64 20 6e 65 74 77 6f 72 6b 20 74 72 61 66 66 69 63 20 69 6e | play.captured.network.traffic.in |
| 10ac40 | 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 61 6c 6c 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 74 | formation.for.all.configured.int |
| 10ac60 | 65 72 66 61 63 65 73 2e 00 4f 6e 63 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 69 73 20 63 6f 6d | erfaces..Once.the.command.is.com |
| 10ac80 | 70 6c 65 74 65 64 2c 20 69 74 20 77 69 6c 6c 20 61 64 64 20 74 68 65 20 63 65 72 74 69 66 69 63 | pleted,.it.will.add.the.certific |
| 10aca0 | 61 74 65 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 65 73 73 69 6f 6e | ate.to.the.configuration.session |
| 10acc0 | 2c 20 74 6f 20 74 68 65 20 70 6b 69 20 73 75 62 74 72 65 65 2e 20 59 6f 75 20 63 61 6e 20 74 68 | ,.to.the.pki.subtree..You.can.th |
| 10ace0 | 65 6e 20 72 65 76 69 65 77 20 74 68 65 20 70 72 6f 70 6f 73 65 64 20 63 68 61 6e 67 65 73 20 61 | en.review.the.proposed.changes.a |
| 10ad00 | 6e 64 20 63 6f 6d 6d 69 74 20 74 68 65 6d 2e 00 4f 6e 63 65 20 74 68 65 20 66 69 72 73 74 20 70 | nd.commit.them..Once.the.first.p |
| 10ad20 | 61 63 6b 65 74 20 6f 66 20 74 68 65 20 66 6c 6f 77 20 73 75 63 63 65 73 73 66 75 6c 6c 79 20 67 | acket.of.the.flow.successfully.g |
| 10ad40 | 6f 65 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 49 50 20 66 6f 72 77 61 72 64 69 6e 67 20 70 61 | oes.through.the.IP.forwarding.pa |
| 10ad60 | 74 68 20 28 62 6c 61 63 6b 20 63 69 72 63 6c 65 73 20 70 61 74 68 29 2c 20 66 72 6f 6d 20 74 68 | th.(black.circles.path),.from.th |
| 10ad80 | 65 20 73 65 63 6f 6e 64 20 70 61 63 6b 65 74 20 6f 6e 2c 20 79 6f 75 20 6d 69 67 68 74 20 64 65 | e.second.packet.on,.you.might.de |
| 10ada0 | 63 69 64 65 20 74 6f 20 6f 66 66 6c 6f 61 64 20 74 68 65 20 66 6c 6f 77 20 74 6f 20 74 68 65 20 | cide.to.offload.the.flow.to.the. |
| 10adc0 | 66 6c 6f 77 74 61 62 6c 65 20 74 68 72 6f 75 67 68 20 79 6f 75 72 20 72 75 6c 65 73 65 74 2e 20 | flowtable.through.your.ruleset.. |
| 10ade0 | 54 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 69 6e 66 72 61 73 74 72 75 63 74 75 72 65 20 70 72 6f | The.flowtable.infrastructure.pro |
| 10ae00 | 76 69 64 65 73 20 61 20 72 75 6c 65 20 61 63 74 69 6f 6e 20 74 68 61 74 20 61 6c 6c 6f 77 73 20 | vides.a.rule.action.that.allows. |
| 10ae20 | 79 6f 75 20 74 6f 20 73 70 65 63 69 66 79 20 77 68 65 6e 20 74 6f 20 61 64 64 20 61 20 66 6c 6f | you.to.specify.when.to.add.a.flo |
| 10ae40 | 77 20 74 6f 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 28 4f 6e 20 66 6f 72 77 61 72 64 20 66 | w.to.the.flowtable.(On.forward.f |
| 10ae60 | 69 6c 74 65 72 69 6e 67 2c 20 72 65 64 20 63 69 72 63 6c 65 20 6e 75 6d 62 65 72 20 36 29 00 4f | iltering,.red.circle.number.6).O |
| 10ae80 | 6e 63 65 20 74 68 65 20 6c 6f 63 61 6c 20 74 75 6e 6e 65 6c 20 65 6e 64 70 6f 69 6e 74 20 60 60 | nce.the.local.tunnel.endpoint.`` |
| 10aea0 | 73 65 74 20 73 65 72 76 69 63 65 20 70 70 70 6f 65 2d 73 65 72 76 65 72 20 67 61 74 65 77 61 79 | set.service.pppoe-server.gateway |
| 10aec0 | 2d 61 64 64 72 65 73 73 20 27 31 30 2e 31 2e 31 2e 32 27 60 60 20 68 61 73 20 62 65 65 6e 20 64 | -address.'10.1.1.2'``.has.been.d |
| 10aee0 | 65 66 69 6e 65 64 2c 20 74 68 65 20 63 6c 69 65 6e 74 20 49 50 20 70 6f 6f 6c 20 63 61 6e 20 62 | efined,.the.client.IP.pool.can.b |
| 10af00 | 65 20 65 69 74 68 65 72 20 64 65 66 69 6e 65 64 20 61 73 20 61 20 72 61 6e 67 65 20 6f 72 20 61 | e.either.defined.as.a.range.or.a |
| 10af20 | 73 20 73 75 62 6e 65 74 20 75 73 69 6e 67 20 43 49 44 52 20 6e 6f 74 61 74 69 6f 6e 2e 20 49 66 | s.subnet.using.CIDR.notation..If |
| 10af40 | 20 74 68 65 20 43 49 44 52 20 6e 6f 74 61 74 69 6f 6e 20 69 73 20 75 73 65 64 2c 20 6d 75 6c 74 | .the.CIDR.notation.is.used,.mult |
| 10af60 | 69 70 6c 65 20 73 75 62 6e 65 74 73 20 63 61 6e 20 62 65 20 73 65 74 75 70 20 77 68 69 63 68 20 | iple.subnets.can.be.setup.which. |
| 10af80 | 61 72 65 20 75 73 65 64 20 73 65 71 75 65 6e 74 69 61 6c 6c 79 2e 00 4f 6e 63 65 20 74 68 65 20 | are.used.sequentially..Once.the. |
| 10afa0 | 6d 61 74 63 68 69 6e 67 20 72 75 6c 65 73 20 61 72 65 20 73 65 74 20 66 6f 72 20 61 20 63 6c 61 | matching.rules.are.set.for.a.cla |
| 10afc0 | 73 73 2c 20 79 6f 75 20 63 61 6e 20 73 74 61 72 74 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 68 6f | ss,.you.can.start.configuring.ho |
| 10afe0 | 77 20 79 6f 75 20 77 61 6e 74 20 6d 61 74 63 68 69 6e 67 20 74 72 61 66 66 69 63 20 74 6f 20 62 | w.you.want.matching.traffic.to.b |
| 10b000 | 65 68 61 76 65 2e 00 4f 6e 63 65 20 74 68 65 20 75 73 65 72 20 69 73 20 63 6f 6e 6e 65 63 74 65 | ehave..Once.the.user.is.connecte |
| 10b020 | 64 2c 20 74 68 65 20 75 73 65 72 20 73 65 73 73 69 6f 6e 20 69 73 20 75 73 69 6e 67 20 74 68 65 | d,.the.user.session.is.using.the |
| 10b040 | 20 73 65 74 20 6c 69 6d 69 74 73 20 61 6e 64 20 63 61 6e 20 62 65 20 64 69 73 70 6c 61 79 65 64 | .set.limits.and.can.be.displayed |
| 10b060 | 20 76 69 61 20 27 73 68 6f 77 20 70 70 70 6f 65 2d 73 65 72 76 65 72 20 73 65 73 73 69 6f 6e 73 | .via.'show.pppoe-server.sessions |
| 10b080 | 27 2e 00 4f 6e 63 65 20 74 68 65 20 75 73 65 72 20 69 73 20 63 6f 6e 6e 65 63 74 65 64 2c 20 74 | '..Once.the.user.is.connected,.t |
| 10b0a0 | 68 65 20 75 73 65 72 20 73 65 73 73 69 6f 6e 20 69 73 20 75 73 69 6e 67 20 74 68 65 20 73 65 74 | he.user.session.is.using.the.set |
| 10b0c0 | 20 6c 69 6d 69 74 73 20 61 6e 64 20 63 61 6e 20 62 65 20 64 69 73 70 6c 61 79 65 64 20 76 69 61 | .limits.and.can.be.displayed.via |
| 10b0e0 | 20 60 60 73 68 6f 77 20 70 70 70 6f 65 2d 73 65 72 76 65 72 20 73 65 73 73 69 6f 6e 73 60 60 2e | .``show.pppoe-server.sessions``. |
| 10b100 | 00 4f 6e 63 65 20 79 6f 75 20 63 6f 6d 6d 69 74 20 74 68 65 20 61 62 6f 76 65 20 63 68 61 6e 67 | .Once.you.commit.the.above.chang |
| 10b120 | 65 73 20 79 6f 75 20 63 61 6e 20 63 72 65 61 74 65 20 61 20 63 6f 6e 66 69 67 20 66 69 6c 65 20 | es.you.can.create.a.config.file. |
| 10b140 | 69 6e 20 74 68 65 20 2f 63 6f 6e 66 69 67 2f 61 75 74 68 2f 6f 63 73 65 72 76 2f 63 6f 6e 66 69 | in.the./config/auth/ocserv/confi |
| 10b160 | 67 2d 70 65 72 2d 75 73 65 72 20 64 69 72 65 63 74 6f 72 79 20 74 68 61 74 20 6d 61 74 63 68 65 | g-per-user.directory.that.matche |
| 10b180 | 73 20 61 20 75 73 65 72 6e 61 6d 65 20 6f 66 20 61 20 75 73 65 72 20 79 6f 75 20 68 61 76 65 20 | s.a.username.of.a.user.you.have. |
| 10b1a0 | 63 72 65 61 74 65 64 20 65 2e 67 2e 20 22 74 73 74 22 2e 20 4e 6f 77 20 77 68 65 6e 20 6c 6f 67 | created.e.g.."tst"..Now.when.log |
| 10b1c0 | 67 69 6e 67 20 69 6e 20 77 69 74 68 20 74 68 65 20 22 74 73 74 22 20 75 73 65 72 20 74 68 65 20 | ging.in.with.the."tst".user.the. |
| 10b1e0 | 63 6f 6e 66 69 67 20 6f 70 74 69 6f 6e 73 20 79 6f 75 20 73 65 74 20 69 6e 20 74 68 69 73 20 66 | config.options.you.set.in.this.f |
| 10b200 | 69 6c 65 20 77 69 6c 6c 20 62 65 20 6c 6f 61 64 65 64 2e 00 4f 6e 63 65 20 79 6f 75 20 68 61 76 | ile.will.be.loaded..Once.you.hav |
| 10b220 | 65 20 61 6e 20 45 74 68 65 72 6e 65 74 20 64 65 76 69 63 65 20 63 6f 6e 6e 65 63 74 65 64 2c 20 | e.an.Ethernet.device.connected,. |
| 10b240 | 69 2e 65 2e 20 60 65 74 68 30 60 2c 20 74 68 65 6e 20 79 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 | i.e..`eth0`,.then.you.can.config |
| 10b260 | 75 72 65 20 69 74 20 74 6f 20 6f 70 65 6e 20 74 68 65 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e | ure.it.to.open.the.PPPoE.session |
| 10b280 | 20 66 6f 72 20 79 6f 75 20 61 6e 64 20 79 6f 75 72 20 44 53 4c 20 54 72 61 6e 73 63 65 69 76 65 | .for.you.and.your.DSL.Transceive |
| 10b2a0 | 72 20 28 4d 6f 64 65 6d 2f 52 6f 75 74 65 72 29 20 6a 75 73 74 20 61 63 74 73 20 74 6f 20 74 72 | r.(Modem/Router).just.acts.to.tr |
| 10b2c0 | 61 6e 73 6c 61 74 65 20 79 6f 75 72 20 6d 65 73 73 61 67 65 73 20 69 6e 20 61 20 77 61 79 20 74 | anslate.your.messages.in.a.way.t |
| 10b2e0 | 68 61 74 20 76 44 53 4c 2f 61 44 53 4c 20 75 6e 64 65 72 73 74 61 6e 64 73 2e 00 4f 6e 63 65 20 | hat.vDSL/aDSL.understands..Once. |
| 10b300 | 79 6f 75 20 68 61 76 65 20 73 65 74 75 70 20 79 6f 75 72 20 53 53 54 50 20 73 65 72 76 65 72 20 | you.have.setup.your.SSTP.server. |
| 10b320 | 74 68 65 72 65 20 63 6f 6d 65 73 20 74 68 65 20 74 69 6d 65 20 74 6f 20 64 6f 20 73 6f 6d 65 20 | there.comes.the.time.to.do.some. |
| 10b340 | 62 61 73 69 63 20 74 65 73 74 69 6e 67 2e 20 54 68 65 20 4c 69 6e 75 78 20 63 6c 69 65 6e 74 20 | basic.testing..The.Linux.client. |
| 10b360 | 75 73 65 64 20 66 6f 72 20 74 65 73 74 69 6e 67 20 69 73 20 63 61 6c 6c 65 64 20 73 73 74 70 63 | used.for.testing.is.called.sstpc |
| 10b380 | 5f 2e 20 73 73 74 70 63 5f 20 72 65 71 75 69 72 65 73 20 61 20 50 50 50 20 63 6f 6e 66 69 67 75 | _..sstpc_.requires.a.PPP.configu |
| 10b3a0 | 72 61 74 69 6f 6e 2f 70 65 65 72 20 66 69 6c 65 2e 00 4f 6e 63 65 20 79 6f 75 72 20 72 6f 75 74 | ration/peer.file..Once.your.rout |
| 10b3c0 | 65 72 73 20 61 72 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 72 65 6a 65 63 74 20 52 50 4b | ers.are.configured.to.reject.RPK |
| 10b3e0 | 49 2d 69 6e 76 61 6c 69 64 20 70 72 65 66 69 78 65 73 2c 20 79 6f 75 20 63 61 6e 20 74 65 73 74 | I-invalid.prefixes,.you.can.test |
| 10b400 | 20 77 68 65 74 68 65 72 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 77 6f | .whether.the.configuration.is.wo |
| 10b420 | 72 6b 69 6e 67 20 63 6f 72 72 65 63 74 6c 79 20 75 73 69 6e 67 20 43 6c 6f 75 64 66 6c 61 72 65 | rking.correctly.using.Cloudflare |
| 10b440 | 27 73 20 74 65 73 74 5f 20 77 65 62 73 69 74 65 2e 20 4b 65 65 70 20 69 6e 20 6d 69 6e 64 20 74 | 's.test_.website..Keep.in.mind.t |
| 10b460 | 68 61 74 20 69 6e 20 6f 72 64 65 72 20 66 6f 72 20 74 68 69 73 20 74 6f 20 77 6f 72 6b 2c 20 79 | hat.in.order.for.this.to.work,.y |
| 10b480 | 6f 75 20 6e 65 65 64 20 74 6f 20 68 61 76 65 20 6e 6f 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 | ou.need.to.have.no.default.route |
| 10b4a0 | 73 20 6f 72 20 61 6e 79 74 68 69 6e 67 20 65 6c 73 65 20 74 68 61 74 20 77 6f 75 6c 64 20 73 74 | s.or.anything.else.that.would.st |
| 10b4c0 | 69 6c 6c 20 73 65 6e 64 20 74 72 61 66 66 69 63 20 74 6f 20 52 50 4b 49 2d 69 6e 76 61 6c 69 64 | ill.send.traffic.to.RPKI-invalid |
| 10b4e0 | 20 64 65 73 74 69 6e 61 74 69 6f 6e 73 2e 00 4f 6e 63 65 20 79 6f 75 72 20 72 6f 75 74 65 72 73 | .destinations..Once.your.routers |
| 10b500 | 20 61 72 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 72 65 6a 65 63 74 20 52 50 4b 49 2d 69 | .are.configured.to.reject.RPKI-i |
| 10b520 | 6e 76 61 6c 69 64 20 70 72 65 66 69 78 65 73 2c 20 79 6f 75 20 63 61 6e 20 74 65 73 74 20 77 68 | nvalid.prefixes,.you.can.test.wh |
| 10b540 | 65 74 68 65 72 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 77 6f 72 6b 69 | ether.the.configuration.is.worki |
| 10b560 | 6e 67 20 63 6f 72 72 65 63 74 6c 79 20 75 73 69 6e 67 20 74 68 65 20 60 52 49 50 45 20 4c 61 62 | ng.correctly.using.the.`RIPE.Lab |
| 10b580 | 73 20 52 50 4b 49 20 54 65 73 74 60 5f 20 65 78 70 65 72 69 6d 65 6e 74 61 6c 20 74 6f 6f 6c 2e | s.RPKI.Test`_.experimental.tool. |
| 10b5a0 | 00 4f 6e 65 20 54 79 70 65 2d 33 20 73 75 6d 6d 61 72 79 2d 4c 53 41 20 77 69 74 68 20 72 6f 75 | .One.Type-3.summary-LSA.with.rou |
| 10b5c0 | 74 69 6e 67 20 69 6e 66 6f 20 3c 45 2e 46 2e 47 2e 48 2f 4d 3e 20 69 73 20 61 6e 6e 6f 75 6e 63 | ting.info.<E.F.G.H/M>.is.announc |
| 10b5e0 | 65 64 20 69 6e 74 6f 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 69 66 20 64 65 66 69 6e 65 64 | ed.into.backbone.area.if.defined |
| 10b600 | 20 61 72 65 61 20 63 6f 6e 74 61 69 6e 73 20 61 74 20 6c 65 61 73 74 20 6f 6e 65 20 69 6e 74 72 | .area.contains.at.least.one.intr |
| 10b620 | 61 2d 61 72 65 61 20 6e 65 74 77 6f 72 6b 20 28 69 2e 65 2e 20 64 65 73 63 72 69 62 65 64 20 77 | a-area.network.(i.e..described.w |
| 10b640 | 69 74 68 20 72 6f 75 74 65 72 2d 4c 53 41 20 6f 72 20 6e 65 74 77 6f 72 6b 2d 4c 53 41 29 20 66 | ith.router-LSA.or.network-LSA).f |
| 10b660 | 72 6f 6d 20 72 61 6e 67 65 20 3c 41 2e 42 2e 43 2e 44 2f 4d 3e 2e 20 54 68 69 73 20 63 6f 6d 6d | rom.range.<A.B.C.D/M>..This.comm |
| 10b680 | 61 6e 64 20 6d 61 6b 65 73 20 73 65 6e 73 65 20 69 6e 20 41 42 52 20 6f 6e 6c 79 2e 00 4f 6e 65 | and.makes.sense.in.ABR.only..One |
| 10b6a0 | 20 69 6d 70 6c 69 63 69 74 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 65 78 69 73 74 73 2e 00 4f 6e | .implicit.environment.exists..On |
| 10b6c0 | 65 20 6f 66 20 74 68 65 20 69 6d 70 6f 72 74 61 6e 74 20 66 65 61 74 75 72 65 73 20 62 75 69 6c | e.of.the.important.features.buil |
| 10b6e0 | 74 20 6f 6e 20 74 6f 70 20 6f 66 20 74 68 65 20 4e 65 74 66 69 6c 74 65 72 20 66 72 61 6d 65 77 | t.on.top.of.the.Netfilter.framew |
| 10b700 | 6f 72 6b 20 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 2e 20 43 6f 6e 6e | ork.is.connection.tracking..Conn |
| 10b720 | 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 61 6c 6c 6f 77 73 20 74 68 65 20 6b 65 72 6e 65 | ection.tracking.allows.the.kerne |
| 10b740 | 6c 20 74 6f 20 6b 65 65 70 20 74 72 61 63 6b 20 6f 66 20 61 6c 6c 20 6c 6f 67 69 63 61 6c 20 6e | l.to.keep.track.of.all.logical.n |
| 10b760 | 65 74 77 6f 72 6b 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 6f 72 20 73 65 73 73 69 6f 6e 73 2c 20 | etwork.connections.or.sessions,. |
| 10b780 | 61 6e 64 20 74 68 65 72 65 62 79 20 72 65 6c 61 74 65 20 61 6c 6c 20 6f 66 20 74 68 65 20 70 61 | and.thereby.relate.all.of.the.pa |
| 10b7a0 | 63 6b 65 74 73 20 77 68 69 63 68 20 6d 61 79 20 6d 61 6b 65 20 75 70 20 74 68 61 74 20 63 6f 6e | ckets.which.may.make.up.that.con |
| 10b7c0 | 6e 65 63 74 69 6f 6e 2e 20 4e 41 54 20 72 65 6c 69 65 73 20 6f 6e 20 74 68 69 73 20 69 6e 66 6f | nection..NAT.relies.on.this.info |
| 10b7e0 | 72 6d 61 74 69 6f 6e 20 74 6f 20 74 72 61 6e 73 6c 61 74 65 20 61 6c 6c 20 72 65 6c 61 74 65 64 | rmation.to.translate.all.related |
| 10b800 | 20 70 61 63 6b 65 74 73 20 69 6e 20 74 68 65 20 73 61 6d 65 20 77 61 79 2c 20 61 6e 64 20 69 70 | .packets.in.the.same.way,.and.ip |
| 10b820 | 74 61 62 6c 65 73 20 63 61 6e 20 75 73 65 20 74 68 69 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 | tables.can.use.this.information. |
| 10b840 | 74 6f 20 61 63 74 20 61 73 20 61 20 73 74 61 74 65 66 75 6c 20 66 69 72 65 77 61 6c 6c 2e 00 4f | to.act.as.a.stateful.firewall..O |
| 10b860 | 6e 65 20 6f 66 20 74 68 65 20 75 73 65 73 20 6f 66 20 46 61 69 72 20 51 75 65 75 65 20 6d 69 67 | ne.of.the.uses.of.Fair.Queue.mig |
| 10b880 | 68 74 20 62 65 20 74 68 65 20 6d 69 74 69 67 61 74 69 6f 6e 20 6f 66 20 44 65 6e 69 61 6c 20 6f | ht.be.the.mitigation.of.Denial.o |
| 10b8a0 | 66 20 53 65 72 76 69 63 65 20 61 74 74 61 63 6b 73 2e 00 4f 6e 6c 79 20 38 30 32 2e 31 51 2d 74 | f.Service.attacks..Only.802.1Q-t |
| 10b8c0 | 61 67 67 65 64 20 70 61 63 6b 65 74 73 20 61 72 65 20 61 63 63 65 70 74 65 64 20 6f 6e 20 45 74 | agged.packets.are.accepted.on.Et |
| 10b8e0 | 68 65 72 6e 65 74 20 76 69 66 73 2e 00 4f 6e 6c 79 20 56 52 52 50 20 69 73 20 73 75 70 70 6f 72 | hernet.vifs..Only.VRRP.is.suppor |
| 10b900 | 74 65 64 2e 20 52 65 71 75 69 72 65 64 20 6f 70 74 69 6f 6e 2e 00 4f 6e 6c 79 20 61 6c 6c 6f 77 | ted..Required.option..Only.allow |
| 10b920 | 20 63 65 72 74 61 69 6e 20 49 50 20 61 64 64 72 65 73 73 65 73 20 6f 72 20 70 72 65 66 69 78 65 | .certain.IP.addresses.or.prefixe |
| 10b940 | 73 20 74 6f 20 61 63 63 65 73 73 20 74 68 65 20 68 74 74 70 73 20 77 65 62 73 65 72 76 65 72 2e | s.to.access.the.https.webserver. |
| 10b960 | 00 4f 6e 6c 79 20 69 6e 20 74 68 65 20 73 6f 75 72 63 65 20 63 72 69 74 65 72 69 61 2c 20 79 6f | .Only.in.the.source.criteria,.yo |
| 10b980 | 75 20 63 61 6e 20 73 70 65 63 69 66 79 20 61 20 6d 61 63 2d 61 64 64 72 65 73 73 2e 00 4f 6e 6c | u.can.specify.a.mac-address..Onl |
| 10b9a0 | 79 20 6f 6e 65 20 53 52 47 42 20 61 6e 64 20 64 65 66 61 75 6c 74 20 53 50 46 20 41 6c 67 6f 72 | y.one.SRGB.and.default.SPF.Algor |
| 10b9c0 | 69 74 68 6d 20 69 73 20 73 75 70 70 6f 72 74 65 64 00 4f 6e 6c 79 20 72 65 71 75 65 73 74 20 61 | ithm.is.supported.Only.request.a |
| 10b9e0 | 6e 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 44 48 43 50 20 73 65 72 76 65 72 20 62 | n.address.from.the.DHCP.server.b |
| 10ba00 | 75 74 20 64 6f 20 6e 6f 74 20 72 65 71 75 65 73 74 20 61 20 64 65 66 61 75 6c 74 20 67 61 74 65 | ut.do.not.request.a.default.gate |
| 10ba20 | 77 61 79 2e 00 4f 6e 6c 79 20 72 65 71 75 65 73 74 20 61 6e 20 61 64 64 72 65 73 73 20 66 72 6f | way..Only.request.an.address.fro |
| 10ba40 | 6d 20 74 68 65 20 50 50 50 6f 45 20 73 65 72 76 65 72 20 62 75 74 20 64 6f 20 6e 6f 74 20 69 6e | m.the.PPPoE.server.but.do.not.in |
| 10ba60 | 73 74 61 6c 6c 20 61 6e 79 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 2e 00 4f 6e 6c 79 20 72 65 | stall.any.default.route..Only.re |
| 10ba80 | 71 75 65 73 74 20 61 6e 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 53 53 54 50 20 73 | quest.an.address.from.the.SSTP.s |
| 10baa0 | 65 72 76 65 72 20 62 75 74 20 64 6f 20 6e 6f 74 20 69 6e 73 74 61 6c 6c 20 61 6e 79 20 64 65 66 | erver.but.do.not.install.any.def |
| 10bac0 | 61 75 6c 74 20 72 6f 75 74 65 2e 00 4f 6e 6c 79 20 74 68 65 20 74 79 70 65 20 28 60 60 73 73 68 | ault.route..Only.the.type.(``ssh |
| 10bae0 | 2d 72 73 61 60 60 29 20 61 6e 64 20 74 68 65 20 6b 65 79 20 28 60 60 41 41 41 42 33 4e 2e 2e 2e | -rsa``).and.the.key.(``AAAB3N... |
| 10bb00 | 60 60 29 20 61 72 65 20 75 73 65 64 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 65 20 6b 65 79 20 | ``).are.used..Note.that.the.key. |
| 10bb20 | 77 69 6c 6c 20 75 73 75 61 6c 6c 79 20 62 65 20 73 65 76 65 72 61 6c 20 68 75 6e 64 72 65 64 20 | will.usually.be.several.hundred. |
| 10bb40 | 63 68 61 72 61 63 74 65 72 73 20 6c 6f 6e 67 2c 20 61 6e 64 20 79 6f 75 20 77 69 6c 6c 20 6e 65 | characters.long,.and.you.will.ne |
| 10bb60 | 65 64 20 74 6f 20 63 6f 70 79 20 61 6e 64 20 70 61 73 74 65 20 69 74 2e 20 53 6f 6d 65 20 74 65 | ed.to.copy.and.paste.it..Some.te |
| 10bb80 | 72 6d 69 6e 61 6c 20 65 6d 75 6c 61 74 6f 72 73 20 6d 61 79 20 61 63 63 69 64 65 6e 74 61 6c 6c | rminal.emulators.may.accidentall |
| 10bba0 | 79 20 73 70 6c 69 74 20 74 68 69 73 20 6f 76 65 72 20 73 65 76 65 72 61 6c 20 6c 69 6e 65 73 2e | y.split.this.over.several.lines. |
| 10bbc0 | 20 42 65 20 61 74 74 65 6e 74 69 76 65 20 77 68 65 6e 20 79 6f 75 20 70 61 73 74 65 20 69 74 20 | .Be.attentive.when.you.paste.it. |
| 10bbe0 | 74 68 61 74 20 69 74 20 6f 6e 6c 79 20 70 61 73 74 65 73 20 61 73 20 61 20 73 69 6e 67 6c 65 20 | that.it.only.pastes.as.a.single. |
| 10bc00 | 6c 69 6e 65 2e 20 54 68 65 20 74 68 69 72 64 20 70 61 72 74 20 69 73 20 73 69 6d 70 6c 79 20 61 | line..The.third.part.is.simply.a |
| 10bc20 | 6e 20 69 64 65 6e 74 69 66 69 65 72 2c 20 61 6e 64 20 69 73 20 66 6f 72 20 79 6f 75 72 20 6f 77 | n.identifier,.and.is.for.your.ow |
| 10bc40 | 6e 20 72 65 66 65 72 65 6e 63 65 2e 00 4f 6e 6c 79 20 77 6f 72 6b 73 20 77 69 74 68 20 61 20 56 | n.reference..Only.works.with.a.V |
| 10bc60 | 58 4c 41 4e 20 64 65 76 69 63 65 20 77 69 74 68 20 65 78 74 65 72 6e 61 6c 20 66 6c 61 67 20 73 | XLAN.device.with.external.flag.s |
| 10bc80 | 65 74 2e 00 4f 70 2d 6d 6f 64 65 20 63 68 65 63 6b 20 76 69 72 74 75 61 6c 2d 73 65 72 76 65 72 | et..Op-mode.check.virtual-server |
| 10bca0 | 20 73 74 61 74 75 73 00 4f 70 65 6e 43 6f 6e 6e 65 63 74 00 4f 70 65 6e 43 6f 6e 6e 65 63 74 20 | .status.OpenConnect.OpenConnect. |
| 10bcc0 | 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 73 65 6e 64 20 61 63 63 6f 75 6e | can.be.configured.to.send.accoun |
| 10bce0 | 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 61 20 52 41 44 49 55 53 20 73 65 72 | ting.information.to.a.RADIUS.ser |
| 10bd00 | 76 65 72 20 74 6f 20 63 61 70 74 75 72 65 20 75 73 65 72 20 73 65 73 73 69 6f 6e 20 64 61 74 61 | ver.to.capture.user.session.data |
| 10bd20 | 20 73 75 63 68 20 61 73 20 74 69 6d 65 20 6f 66 20 63 6f 6e 6e 65 63 74 2f 64 69 73 63 6f 6e 6e | .such.as.time.of.connect/disconn |
| 10bd40 | 65 63 74 2c 20 64 61 74 61 20 74 72 61 6e 73 66 65 72 72 65 64 2c 20 61 6e 64 20 73 6f 20 6f 6e | ect,.data.transferred,.and.so.on |
| 10bd60 | 2e 00 4f 70 65 6e 43 6f 6e 6e 65 63 74 20 73 65 72 76 65 72 20 6d 61 74 63 68 65 73 20 74 68 65 | ..OpenConnect.server.matches.the |
| 10bd80 | 20 66 69 6c 65 6e 61 6d 65 20 69 6e 20 61 20 63 61 73 65 20 73 65 6e 73 69 74 69 76 65 20 6d 61 | .filename.in.a.case.sensitive.ma |
| 10bda0 | 6e 6e 65 72 2c 20 6d 61 6b 65 20 73 75 72 65 20 74 68 65 20 75 73 65 72 6e 61 6d 65 2f 67 72 6f | nner,.make.sure.the.username/gro |
| 10bdc0 | 75 70 20 6e 61 6d 65 20 79 6f 75 20 63 6f 6e 66 69 67 75 72 65 20 6d 61 74 63 68 65 73 20 74 68 | up.name.you.configure.matches.th |
| 10bde0 | 65 20 66 69 6c 65 6e 61 6d 65 20 65 78 61 63 74 6c 79 2e 00 4f 70 65 6e 43 6f 6e 6e 65 63 74 20 | e.filename.exactly..OpenConnect. |
| 10be00 | 73 75 70 70 6f 72 74 73 20 61 20 73 75 62 73 65 74 20 6f 66 20 69 74 27 73 20 63 6f 6e 66 69 67 | supports.a.subset.of.it's.config |
| 10be20 | 75 72 61 74 69 6f 6e 20 6f 70 74 69 6f 6e 73 20 74 6f 20 62 65 20 61 70 70 6c 69 65 64 20 6f 6e | uration.options.to.be.applied.on |
| 10be40 | 20 61 20 70 65 72 20 75 73 65 72 2f 67 72 6f 75 70 20 62 61 73 69 73 2c 20 66 6f 72 20 63 6f 6e | .a.per.user/group.basis,.for.con |
| 10be60 | 66 69 67 75 72 61 74 69 6f 6e 20 70 75 72 70 6f 73 65 73 20 77 65 20 72 65 66 65 72 20 74 6f 20 | figuration.purposes.we.refer.to. |
| 10be80 | 74 68 69 73 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 61 73 20 22 49 64 65 6e 74 69 74 79 20 | this.functionality.as."Identity. |
| 10bea0 | 62 61 73 65 64 20 63 6f 6e 66 69 67 22 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 60 4f 70 | based.config"..The.following.`Op |
| 10bec0 | 65 6e 43 6f 6e 6e 65 63 74 20 53 65 72 76 65 72 20 4d 61 6e 75 61 6c 20 3c 68 74 74 70 73 3a 2f | enConnect.Server.Manual.<https:/ |
| 10bee0 | 2f 6f 63 73 65 72 76 2e 67 69 74 6c 61 62 2e 69 6f 2f 77 77 77 2f 6d 61 6e 75 61 6c 2e 68 74 6d | /ocserv.gitlab.io/www/manual.htm |
| 10bf00 | 6c 23 3a 7e 3a 74 65 78 74 3d 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 25 32 30 66 69 6c 65 73 25 | l#:~:text=Configuration%20files% |
| 10bf20 | 32 30 74 68 61 74 25 20 32 30 77 69 6c 6c 25 32 30 62 65 25 32 30 61 70 70 6c 69 65 64 25 32 30 | 20that%.20will%20be%20applied%20 |
| 10bf40 | 70 65 72 25 32 30 75 73 65 72 25 32 30 63 6f 6e 6e 65 63 74 69 6f 6e 25 32 30 6f 72 25 30 41 25 | per%20user%20connection%20or%0A% |
| 10bf60 | 32 33 25 32 30 70 65 72 25 32 30 67 72 6f 75 70 3e 60 5f 20 6f 75 74 6c 69 6e 65 73 20 74 68 65 | 23%20per%20group>`_.outlines.the |
| 10bf80 | 20 73 65 74 20 6f 66 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 70 74 69 6f 6e 73 20 74 68 | .set.of.configuration.options.th |
| 10bfa0 | 61 74 20 61 72 65 20 61 6c 6c 6f 77 65 64 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 6c 65 76 65 | at.are.allowed..This.can.be.leve |
| 10bfc0 | 72 61 67 65 64 20 74 6f 20 61 70 70 6c 79 20 64 69 66 66 65 72 65 6e 74 20 73 65 74 73 20 6f 66 | raged.to.apply.different.sets.of |
| 10bfe0 | 20 63 6f 6e 66 69 67 73 20 74 6f 20 64 69 66 66 65 72 65 6e 74 20 75 73 65 72 73 20 6f 72 20 67 | .configs.to.different.users.or.g |
| 10c000 | 72 6f 75 70 73 20 6f 66 20 75 73 65 72 73 2e 00 4f 70 65 6e 43 6f 6e 6e 65 63 74 2d 63 6f 6d 70 | roups.of.users..OpenConnect-comp |
| 10c020 | 61 74 69 62 6c 65 20 73 65 72 76 65 72 20 66 65 61 74 75 72 65 20 68 61 73 20 62 65 65 6e 20 61 | atible.server.feature.has.been.a |
| 10c040 | 76 61 69 6c 61 62 6c 65 20 73 69 6e 63 65 20 45 71 75 75 6c 65 75 73 20 28 31 2e 33 29 2e 20 4f | vailable.since.Equuleus.(1.3)..O |
| 10c060 | 70 65 6e 63 6f 6e 6e 65 63 74 20 56 50 4e 20 73 75 70 70 6f 72 74 73 20 53 53 4c 20 63 6f 6e 6e | penconnect.VPN.supports.SSL.conn |
| 10c080 | 65 63 74 69 6f 6e 20 61 6e 64 20 6f 66 66 65 72 73 20 66 75 6c 6c 20 6e 65 74 77 6f 72 6b 20 61 | ection.and.offers.full.network.a |
| 10c0a0 | 63 63 65 73 73 2e 20 53 53 4c 20 56 50 4e 20 6e 65 74 77 6f 72 6b 20 65 78 74 65 6e 73 69 6f 6e | ccess..SSL.VPN.network.extension |
| 10c0c0 | 20 63 6f 6e 6e 65 63 74 73 20 74 68 65 20 65 6e 64 2d 75 73 65 72 20 73 79 73 74 65 6d 20 74 6f | .connects.the.end-user.system.to |
| 10c0e0 | 20 74 68 65 20 63 6f 72 70 6f 72 61 74 65 20 6e 65 74 77 6f 72 6b 20 77 69 74 68 20 61 63 63 65 | .the.corporate.network.with.acce |
| 10c100 | 73 73 20 63 6f 6e 74 72 6f 6c 73 20 62 61 73 65 64 20 6f 6e 6c 79 20 6f 6e 20 6e 65 74 77 6f 72 | ss.controls.based.only.on.networ |
| 10c120 | 6b 20 6c 61 79 65 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2c 20 73 75 63 68 20 61 73 20 64 65 73 | k.layer.information,.such.as.des |
| 10c140 | 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 20 61 6e 64 20 70 6f 72 74 20 6e 75 6d | tination.IP.address.and.port.num |
| 10c160 | 62 65 72 2e 20 53 6f 2c 20 69 74 20 70 72 6f 76 69 64 65 73 20 73 61 66 65 20 63 6f 6d 6d 75 6e | ber..So,.it.provides.safe.commun |
| 10c180 | 69 63 61 74 69 6f 6e 20 66 6f 72 20 61 6c 6c 20 74 79 70 65 73 20 6f 66 20 64 65 76 69 63 65 20 | ication.for.all.types.of.device. |
| 10c1a0 | 74 72 61 66 66 69 63 20 61 63 72 6f 73 73 20 70 75 62 6c 69 63 20 6e 65 74 77 6f 72 6b 73 20 61 | traffic.across.public.networks.a |
| 10c1c0 | 6e 64 20 70 72 69 76 61 74 65 20 6e 65 74 77 6f 72 6b 73 2c 20 61 6c 73 6f 20 65 6e 63 72 79 70 | nd.private.networks,.also.encryp |
| 10c1e0 | 74 73 20 74 68 65 20 74 72 61 66 66 69 63 20 77 69 74 68 20 53 53 4c 20 70 72 6f 74 6f 63 6f 6c | ts.the.traffic.with.SSL.protocol |
| 10c200 | 2e 00 4f 70 65 6e 43 6f 6e 6e 65 63 74 2d 63 6f 6d 70 61 74 69 62 6c 65 20 73 65 72 76 65 72 20 | ..OpenConnect-compatible.server. |
| 10c220 | 66 65 61 74 75 72 65 20 69 73 20 61 76 61 69 6c 61 62 6c 65 20 66 72 6f 6d 20 74 68 69 73 20 72 | feature.is.available.from.this.r |
| 10c240 | 65 6c 65 61 73 65 2e 20 4f 70 65 6e 63 6f 6e 6e 65 63 74 20 56 50 4e 20 73 75 70 70 6f 72 74 73 | elease..Openconnect.VPN.supports |
| 10c260 | 20 53 53 4c 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 61 6e 64 20 6f 66 66 65 72 73 20 66 75 6c 6c 20 | .SSL.connection.and.offers.full. |
| 10c280 | 6e 65 74 77 6f 72 6b 20 61 63 63 65 73 73 2e 20 53 53 4c 20 56 50 4e 20 6e 65 74 77 6f 72 6b 20 | network.access..SSL.VPN.network. |
| 10c2a0 | 65 78 74 65 6e 73 69 6f 6e 20 63 6f 6e 6e 65 63 74 73 20 74 68 65 20 65 6e 64 2d 75 73 65 72 20 | extension.connects.the.end-user. |
| 10c2c0 | 73 79 73 74 65 6d 20 74 6f 20 74 68 65 20 63 6f 72 70 6f 72 61 74 65 20 6e 65 74 77 6f 72 6b 20 | system.to.the.corporate.network. |
| 10c2e0 | 77 69 74 68 20 61 63 63 65 73 73 20 63 6f 6e 74 72 6f 6c 73 20 62 61 73 65 64 20 6f 6e 6c 79 20 | with.access.controls.based.only. |
| 10c300 | 6f 6e 20 6e 65 74 77 6f 72 6b 20 6c 61 79 65 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2c 20 73 75 | on.network.layer.information,.su |
| 10c320 | 63 68 20 61 73 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 20 61 6e 64 | ch.as.destination.IP.address.and |
| 10c340 | 20 70 6f 72 74 20 6e 75 6d 62 65 72 2e 20 53 6f 2c 20 69 74 20 70 72 6f 76 69 64 65 73 20 73 61 | .port.number..So,.it.provides.sa |
| 10c360 | 66 65 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 20 66 6f 72 20 61 6c 6c 20 74 79 70 65 73 20 6f | fe.communication.for.all.types.o |
| 10c380 | 66 20 64 65 76 69 63 65 20 74 72 61 66 66 69 63 20 61 63 72 6f 73 73 20 70 75 62 6c 69 63 20 6e | f.device.traffic.across.public.n |
| 10c3a0 | 65 74 77 6f 72 6b 73 20 61 6e 64 20 70 72 69 76 61 74 65 20 6e 65 74 77 6f 72 6b 73 2c 20 61 6c | etworks.and.private.networks,.al |
| 10c3c0 | 73 6f 20 65 6e 63 72 79 70 74 73 20 74 68 65 20 74 72 61 66 66 69 63 20 77 69 74 68 20 53 53 4c | so.encrypts.the.traffic.with.SSL |
| 10c3e0 | 20 70 72 6f 74 6f 63 6f 6c 2e 00 4f 70 65 6e 46 61 62 72 69 63 00 4f 70 65 6e 46 61 62 72 69 63 | .protocol..OpenFabric.OpenFabric |
| 10c400 | 20 47 6c 6f 62 61 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 4f 70 65 6e 46 61 62 72 69 63 | .Global.Configuration.OpenFabric |
| 10c420 | 20 61 20 64 75 61 6c 20 73 74 61 63 6b 20 70 72 6f 74 6f 63 6f 6c 2e 20 41 20 73 69 6e 67 6c 65 | .a.dual.stack.protocol..A.single |
| 10c440 | 20 4f 70 65 6e 46 61 62 72 69 63 20 69 6e 73 74 61 6e 63 65 20 69 73 20 61 62 6c 65 20 74 6f 20 | .OpenFabric.instance.is.able.to. |
| 10c460 | 70 65 72 66 6f 72 6d 20 72 6f 75 74 69 6e 67 20 66 6f 72 20 62 6f 74 68 20 49 50 76 34 20 61 6e | perform.routing.for.both.IPv4.an |
| 10c480 | 64 20 49 50 76 36 2e 00 4f 70 65 6e 46 61 62 72 69 63 2c 20 73 70 65 63 69 66 69 65 64 20 69 6e | d.IPv6..OpenFabric,.specified.in |
| 10c4a0 | 20 60 64 72 61 66 74 2d 77 68 69 74 65 2d 6f 70 65 6e 66 61 62 72 69 63 2d 30 36 2e 74 78 74 20 | .`draft-white-openfabric-06.txt. |
| 10c4c0 | 3c 68 74 74 70 73 3a 2f 2f 64 61 74 61 74 72 61 63 6b 65 72 2e 69 65 74 66 2e 6f 72 67 2f 64 6f | <https://datatracker.ietf.org/do |
| 10c4e0 | 63 2f 68 74 6d 6c 2f 64 72 61 66 74 2d 77 68 69 74 65 2d 6f 70 65 6e 66 61 62 72 69 63 2d 30 36 | c/html/draft-white-openfabric-06 |
| 10c500 | 3e 60 5f 2c 20 69 73 20 61 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 64 65 72 69 76 | >`_,.is.a.routing.protocol.deriv |
| 10c520 | 65 64 20 66 72 6f 6d 20 49 53 2d 49 53 2c 20 70 72 6f 76 69 64 69 6e 67 20 6c 69 6e 6b 2d 73 74 | ed.from.IS-IS,.providing.link-st |
| 10c540 | 61 74 65 20 72 6f 75 74 69 6e 67 20 77 69 74 68 20 65 66 66 69 63 69 65 6e 74 20 66 6c 6f 6f 64 | ate.routing.with.efficient.flood |
| 10c560 | 69 6e 67 20 66 6f 72 20 74 6f 70 6f 6c 6f 67 69 65 73 20 6c 69 6b 65 20 73 70 69 6e 65 2d 6c 65 | ing.for.topologies.like.spine-le |
| 10c580 | 61 66 20 6e 65 74 77 6f 72 6b 73 2e 00 4f 70 65 6e 56 50 4e 00 4f 70 65 6e 56 50 4e 20 2a 2a 77 | af.networks..OpenVPN.OpenVPN.**w |
| 10c5a0 | 69 6c 6c 20 6e 6f 74 2a 2a 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 63 72 65 61 74 65 20 72 | ill.not**.automatically.create.r |
| 10c5c0 | 6f 75 74 65 73 20 69 6e 20 74 68 65 20 6b 65 72 6e 65 6c 20 66 6f 72 20 63 6c 69 65 6e 74 20 73 | outes.in.the.kernel.for.client.s |
| 10c5e0 | 75 62 6e 65 74 73 20 77 68 65 6e 20 74 68 65 79 20 63 6f 6e 6e 65 63 74 20 61 6e 64 20 77 69 6c | ubnets.when.they.connect.and.wil |
| 10c600 | 6c 20 6f 6e 6c 79 20 75 73 65 20 63 6c 69 65 6e 74 2d 73 75 62 6e 65 74 20 61 73 73 6f 63 69 61 | l.only.use.client-subnet.associa |
| 10c620 | 74 69 6f 6e 20 69 6e 74 65 72 6e 61 6c 6c 79 2c 20 73 6f 20 77 65 20 6e 65 65 64 20 74 6f 20 63 | tion.internally,.so.we.need.to.c |
| 10c640 | 72 65 61 74 65 20 61 20 72 6f 75 74 65 20 74 6f 20 74 68 65 20 31 30 2e 32 33 2e 30 2e 30 2f 32 | reate.a.route.to.the.10.23.0.0/2 |
| 10c660 | 30 20 6e 65 74 77 6f 72 6b 20 6f 75 72 73 65 6c 76 65 73 3a 00 4f 70 65 6e 56 50 4e 20 44 43 4f | 0.network.ourselves:.OpenVPN.DCO |
| 10c680 | 20 69 73 20 6e 6f 74 20 61 20 66 75 6c 6c 79 20 73 75 70 70 6f 72 74 65 64 20 4f 70 65 6e 56 50 | .is.not.a.fully.supported.OpenVP |
| 10c6a0 | 4e 20 66 65 61 74 75 72 65 2c 20 61 6e 64 20 69 73 20 63 75 72 72 65 6e 74 6c 79 20 63 6f 6e 73 | N.feature,.and.is.currently.cons |
| 10c6c0 | 69 64 65 72 65 64 20 65 78 70 65 72 69 6d 65 6e 74 61 6c 2e 20 46 75 72 74 68 65 72 6d 6f 72 65 | idered.experimental..Furthermore |
| 10c6e0 | 2c 20 74 68 65 72 65 20 61 72 65 20 63 65 72 74 61 69 6e 20 4f 70 65 6e 56 50 4e 20 66 65 61 74 | ,.there.are.certain.OpenVPN.feat |
| 10c700 | 75 72 65 73 20 61 6e 64 20 75 73 65 20 63 61 73 65 73 20 74 68 61 74 20 72 65 6d 61 69 6e 20 69 | ures.and.use.cases.that.remain.i |
| 10c720 | 6e 63 6f 6d 70 61 74 69 62 6c 65 20 77 69 74 68 20 44 43 4f 2e 20 54 6f 20 67 65 74 20 61 20 63 | ncompatible.with.DCO..To.get.a.c |
| 10c740 | 6f 6d 70 72 65 68 65 6e 73 69 76 65 20 75 6e 64 65 72 73 74 61 6e 64 69 6e 67 20 6f 66 20 74 68 | omprehensive.understanding.of.th |
| 10c760 | 65 20 6c 69 6d 69 74 61 74 69 6f 6e 73 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 44 43 | e.limitations.associated.with.DC |
| 10c780 | 4f 2c 20 72 65 66 65 72 20 74 6f 20 74 68 65 20 6c 69 73 74 20 6f 66 20 6b 6e 6f 77 6e 20 6c 69 | O,.refer.to.the.list.of.known.li |
| 10c7a0 | 6d 69 74 61 74 69 6f 6e 73 20 69 6e 20 74 68 65 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 2e 00 | mitations.in.the.documentation.. |
| 10c7c0 | 4f 70 65 6e 56 50 4e 20 44 43 4f 20 69 73 20 6e 6f 74 20 66 75 6c 6c 20 4f 70 65 6e 56 50 4e 20 | OpenVPN.DCO.is.not.full.OpenVPN. |
| 10c7e0 | 66 65 61 74 75 72 65 73 20 73 75 70 70 6f 72 74 65 64 20 2c 20 69 73 20 63 75 72 72 65 6e 74 6c | features.supported.,.is.currentl |
| 10c800 | 79 20 63 6f 6e 73 69 64 65 72 65 64 20 65 78 70 65 72 69 6d 65 6e 74 61 6c 2e 20 46 75 72 74 68 | y.considered.experimental..Furth |
| 10c820 | 65 72 6d 6f 72 65 2c 20 74 68 65 72 65 20 61 72 65 20 63 65 72 74 61 69 6e 20 4f 70 65 6e 56 50 | ermore,.there.are.certain.OpenVP |
| 10c840 | 4e 20 66 65 61 74 75 72 65 73 20 61 6e 64 20 75 73 65 20 63 61 73 65 73 20 74 68 61 74 20 72 65 | N.features.and.use.cases.that.re |
| 10c860 | 6d 61 69 6e 20 69 6e 63 6f 6d 70 61 74 69 62 6c 65 20 77 69 74 68 20 44 43 4f 2e 20 54 6f 20 67 | main.incompatible.with.DCO..To.g |
| 10c880 | 65 74 20 61 20 63 6f 6d 70 72 65 68 65 6e 73 69 76 65 20 75 6e 64 65 72 73 74 61 6e 64 69 6e 67 | et.a.comprehensive.understanding |
| 10c8a0 | 20 6f 66 20 74 68 65 20 6c 69 6d 69 74 61 74 69 6f 6e 73 20 61 73 73 6f 63 69 61 74 65 64 20 77 | .of.the.limitations.associated.w |
| 10c8c0 | 69 74 68 20 44 43 4f 2c 20 72 65 66 65 72 20 74 6f 20 74 68 65 20 6c 69 73 74 20 6f 66 20 6b 6e | ith.DCO,.refer.to.the.list.of.kn |
| 10c8e0 | 6f 77 6e 20 6c 69 6d 69 74 61 74 69 6f 6e 73 20 69 6e 20 74 68 65 20 64 6f 63 75 6d 65 6e 74 61 | own.limitations.in.the.documenta |
| 10c900 | 74 69 6f 6e 2e 00 4f 70 65 6e 56 50 4e 20 44 61 74 61 20 43 68 61 6e 6e 65 6c 20 4f 66 66 6c 6f | tion..OpenVPN.Data.Channel.Offlo |
| 10c920 | 61 64 20 28 44 43 4f 29 00 4f 70 65 6e 56 50 4e 20 44 61 74 61 20 43 68 61 6e 6e 65 6c 20 4f 66 | ad.(DCO).OpenVPN.Data.Channel.Of |
| 10c940 | 66 6c 6f 61 64 20 28 44 43 4f 29 20 65 6e 61 62 6c 65 73 20 73 69 67 6e 69 66 69 63 61 6e 74 20 | fload.(DCO).enables.significant. |
| 10c960 | 70 65 72 66 6f 72 6d 61 6e 63 65 20 65 6e 68 61 6e 63 65 6d 65 6e 74 20 69 6e 20 65 6e 63 72 79 | performance.enhancement.in.encry |
| 10c980 | 70 74 65 64 20 4f 70 65 6e 56 50 4e 20 64 61 74 61 20 70 72 6f 63 65 73 73 69 6e 67 2e 20 42 79 | pted.OpenVPN.data.processing..By |
| 10c9a0 | 20 6d 69 6e 69 6d 69 7a 69 6e 67 20 63 6f 6e 74 65 78 74 20 73 77 69 74 63 68 69 6e 67 20 66 6f | .minimizing.context.switching.fo |
| 10c9c0 | 72 20 65 61 63 68 20 70 61 63 6b 65 74 2c 20 44 43 4f 20 65 66 66 65 63 74 69 76 65 6c 79 20 72 | r.each.packet,.DCO.effectively.r |
| 10c9e0 | 65 64 75 63 65 73 20 6f 76 65 72 68 65 61 64 2e 20 54 68 69 73 20 6f 70 74 69 6d 69 7a 61 74 69 | educes.overhead..This.optimizati |
| 10ca00 | 6f 6e 20 69 73 20 61 63 68 69 65 76 65 64 20 62 79 20 6b 65 65 70 69 6e 67 20 6d 6f 73 74 20 64 | on.is.achieved.by.keeping.most.d |
| 10ca20 | 61 74 61 20 68 61 6e 64 6c 69 6e 67 20 74 61 73 6b 73 20 77 69 74 68 69 6e 20 74 68 65 20 6b 65 | ata.handling.tasks.within.the.ke |
| 10ca40 | 72 6e 65 6c 2c 20 61 76 6f 69 64 69 6e 67 20 66 72 65 71 75 65 6e 74 20 73 77 69 74 63 68 65 73 | rnel,.avoiding.frequent.switches |
| 10ca60 | 20 62 65 74 77 65 65 6e 20 6b 65 72 6e 65 6c 20 61 6e 64 20 75 73 65 72 20 73 70 61 63 65 20 66 | .between.kernel.and.user.space.f |
| 10ca80 | 6f 72 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6e 64 20 70 61 63 6b 65 74 20 68 61 6e 64 6c 69 6e | or.encryption.and.packet.handlin |
| 10caa0 | 67 2e 00 4f 70 65 6e 56 50 4e 20 4c 6f 67 73 00 4f 70 65 6e 56 50 4e 20 61 6c 6c 6f 77 73 20 66 | g..OpenVPN.Logs.OpenVPN.allows.f |
| 10cac0 | 6f 72 20 65 69 74 68 65 72 20 54 43 50 20 6f 72 20 55 44 50 2e 20 55 44 50 20 77 69 6c 6c 20 70 | or.either.TCP.or.UDP..UDP.will.p |
| 10cae0 | 72 6f 76 69 64 65 20 74 68 65 20 6c 6f 77 65 73 74 20 6c 61 74 65 6e 63 79 2c 20 77 68 69 6c 65 | rovide.the.lowest.latency,.while |
| 10cb00 | 20 54 43 50 20 77 69 6c 6c 20 77 6f 72 6b 20 62 65 74 74 65 72 20 66 6f 72 20 6c 6f 73 73 79 20 | .TCP.will.work.better.for.lossy. |
| 10cb20 | 63 6f 6e 6e 65 63 74 69 6f 6e 73 3b 20 67 65 6e 65 72 61 6c 6c 79 20 55 44 50 20 69 73 20 70 72 | connections;.generally.UDP.is.pr |
| 10cb40 | 65 66 65 72 72 65 64 20 77 68 65 6e 20 70 6f 73 73 69 62 6c 65 2e 00 4f 70 65 6e 56 50 4e 20 69 | eferred.when.possible..OpenVPN.i |
| 10cb60 | 73 20 70 6f 70 75 6c 61 72 20 66 6f 72 20 63 6c 69 65 6e 74 2d 73 65 72 76 65 72 20 73 65 74 75 | s.popular.for.client-server.setu |
| 10cb80 | 70 73 2c 20 62 75 74 20 69 74 73 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 6d 6f 64 65 20 72 65 | ps,.but.its.site-to-site.mode.re |
| 10cba0 | 6d 61 69 6e 73 20 61 20 72 65 6c 61 74 69 76 65 6c 79 20 6f 62 73 63 75 72 65 20 66 65 61 74 75 | mains.a.relatively.obscure.featu |
| 10cbc0 | 72 65 2c 20 61 6e 64 20 6d 61 6e 79 20 72 6f 75 74 65 72 20 61 70 70 6c 69 61 6e 63 65 73 20 73 | re,.and.many.router.appliances.s |
| 10cbe0 | 74 69 6c 6c 20 64 6f 6e 27 74 20 73 75 70 70 6f 72 74 20 69 74 2e 20 48 6f 77 65 76 65 72 2c 20 | till.don't.support.it..However,. |
| 10cc00 | 69 74 27 73 20 76 65 72 79 20 75 73 65 66 75 6c 20 66 6f 72 20 71 75 69 63 6b 6c 79 20 73 65 74 | it's.very.useful.for.quickly.set |
| 10cc20 | 74 69 6e 67 20 75 70 20 74 75 6e 6e 65 6c 73 20 62 65 74 77 65 65 6e 20 72 6f 75 74 65 72 73 2e | ting.up.tunnels.between.routers. |
| 10cc40 | 00 4f 70 65 6e 56 50 4e 20 73 74 61 74 75 73 20 63 61 6e 20 62 65 20 76 65 72 69 66 69 65 64 20 | .OpenVPN.status.can.be.verified. |
| 10cc60 | 75 73 69 6e 67 20 74 68 65 20 60 73 68 6f 77 20 6f 70 65 6e 76 70 6e 60 20 6f 70 65 72 61 74 69 | using.the.`show.openvpn`.operati |
| 10cc80 | 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 73 2e 20 53 65 65 20 74 68 65 20 62 75 69 6c 74 2d 69 6e 20 | onal.commands..See.the.built-in. |
| 10cca0 | 68 65 6c 70 20 66 6f 72 20 61 20 63 6f 6d 70 6c 65 74 65 20 6c 69 73 74 20 6f 66 20 6f 70 74 69 | help.for.a.complete.list.of.opti |
| 10ccc0 | 6f 6e 73 2e 00 4f 70 65 6e 63 6f 6e 6e 65 63 74 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 4f | ons..Openconnect.Configuration.O |
| 10cce0 | 70 65 72 61 74 69 6e 67 20 4d 6f 64 65 73 00 4f 70 65 72 61 74 69 6f 6e 00 4f 70 65 72 61 74 69 | perating.Modes.Operation.Operati |
| 10cd00 | 6f 6e 20 43 6f 6d 6d 61 6e 64 73 00 4f 70 65 72 61 74 69 6f 6e 20 4d 6f 64 65 00 4f 70 65 72 61 | on.Commands.Operation.Mode.Opera |
| 10cd20 | 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 00 4f 70 65 72 61 74 69 6f 6e 20 6d 6f 64 65 20 6f 66 20 | tion.commands.Operation.mode.of. |
| 10cd40 | 77 69 72 65 6c 65 73 73 20 72 61 64 69 6f 2e 00 4f 70 65 72 61 74 69 6f 6e 2d 6d 6f 64 65 00 4f | wireless.radio..Operation-mode.O |
| 10cd60 | 70 65 72 61 74 69 6f 6e 2d 6d 6f 64 65 20 46 69 72 65 77 61 6c 6c 00 4f 70 65 72 61 74 69 6f 6e | peration-mode.Firewall.Operation |
| 10cd80 | 61 6c 20 43 6f 6d 6d 61 6e 64 73 00 4f 70 65 72 61 74 69 6f 6e 61 6c 20 4d 6f 64 65 20 43 6f 6d | al.Commands.Operational.Mode.Com |
| 10cda0 | 6d 61 6e 64 73 00 4f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 73 00 4f 70 74 69 6f | mands.Operational.commands.Optio |
| 10cdc0 | 6e 00 4f 70 74 69 6f 6e 20 34 33 20 66 6f 72 20 55 6e 69 46 49 00 4f 70 74 69 6f 6e 20 64 65 73 | n.Option.43.for.UniFI.Option.des |
| 10cde0 | 63 72 69 70 74 69 6f 6e 00 4f 70 74 69 6f 6e 20 6e 75 6d 62 65 72 00 4f 70 74 69 6f 6e 20 73 70 | cription.Option.number.Option.sp |
| 10ce00 | 65 63 69 66 79 69 6e 67 20 74 68 65 20 72 61 74 65 20 69 6e 20 77 68 69 63 68 20 77 65 27 6c 6c | ecifying.the.rate.in.which.we'll |
| 10ce20 | 20 61 73 6b 20 6f 75 72 20 6c 69 6e 6b 20 70 61 72 74 6e 65 72 20 74 6f 20 74 72 61 6e 73 6d 69 | .ask.our.link.partner.to.transmi |
| 10ce40 | 74 20 4c 41 43 50 44 55 20 70 61 63 6b 65 74 73 20 69 6e 20 38 30 32 2e 33 61 64 20 6d 6f 64 65 | t.LACPDU.packets.in.802.3ad.mode |
| 10ce60 | 2e 00 4f 70 74 69 6f 6e 20 74 6f 20 64 69 73 61 62 6c 65 20 72 75 6c 65 2e 00 4f 70 74 69 6f 6e | ..Option.to.disable.rule..Option |
| 10ce80 | 20 74 6f 20 65 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 6c 6f 67 20 6d 61 74 63 68 69 | .to.enable.or.disable.log.matchi |
| 10cea0 | 6e 67 20 72 75 6c 65 2e 00 4f 70 74 69 6f 6e 20 74 6f 20 6c 6f 67 20 70 61 63 6b 65 74 73 20 68 | ng.rule..Option.to.log.packets.h |
| 10cec0 | 69 74 74 69 6e 67 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 2e 00 4f 70 74 69 6f 6e 61 6c 00 | itting.default-action..Optional. |
| 10cee0 | 4f 70 74 69 6f 6e 61 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 4f 70 74 69 6f 6e 61 6c 20 | Optional.Configuration.Optional. |
| 10cf00 | 70 61 72 61 6d 65 74 65 72 20 70 72 65 66 69 78 2d 6c 69 73 74 20 63 61 6e 20 62 65 20 75 73 65 | parameter.prefix-list.can.be.use |
| 10cf20 | 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 77 68 69 63 68 20 67 72 6f 75 70 73 20 74 6f 20 73 77 69 74 | .to.control.which.groups.to.swit |
| 10cf40 | 63 68 20 6f 72 20 6e 6f 74 20 73 77 69 74 63 68 2e 20 49 66 20 61 20 67 72 6f 75 70 20 69 73 20 | ch.or.not.switch..If.a.group.is. |
| 10cf60 | 50 45 52 4d 49 54 20 61 73 20 70 65 72 20 74 68 65 20 70 72 65 66 69 78 2d 6c 69 73 74 2c 20 74 | PERMIT.as.per.the.prefix-list,.t |
| 10cf80 | 68 65 6e 20 74 68 65 20 53 50 54 20 73 77 69 74 63 68 6f 76 65 72 20 64 6f 65 73 20 6e 6f 74 20 | hen.the.SPT.switchover.does.not. |
| 10cfa0 | 68 61 70 70 65 6e 20 66 6f 72 20 69 74 20 61 6e 64 20 69 66 20 69 74 20 69 73 20 44 45 4e 59 2c | happen.for.it.and.if.it.is.DENY, |
| 10cfc0 | 20 74 68 65 6e 20 74 68 65 20 53 50 54 20 73 77 69 74 63 68 6f 76 65 72 20 68 61 70 70 65 6e 73 | .then.the.SPT.switchover.happens |
| 10cfe0 | 2e 00 4f 70 74 69 6f 6e 61 6c 2c 20 69 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 65 6e 61 62 6c | ..Optional,.if.you.want.to.enabl |
| 10d000 | 65 20 75 70 6c 6f 61 64 73 2c 20 65 6c 73 65 20 54 46 54 50 20 73 65 72 76 65 72 20 77 69 6c 6c | e.uploads,.else.TFTP.server.will |
| 10d020 | 20 61 63 74 20 61 73 20 61 20 72 65 61 64 2d 6f 6e 6c 79 20 73 65 72 76 65 72 2e 00 4f 70 74 69 | .act.as.a.read-only.server..Opti |
| 10d040 | 6f 6e 61 6c 2f 64 65 66 61 75 6c 74 20 73 65 74 74 69 6e 67 73 00 4f 70 74 69 6f 6e 61 6c 6c 79 | onal/default.settings.Optionally |
| 10d060 | 20 73 65 74 20 61 20 73 70 65 63 69 66 69 63 20 73 74 61 74 69 63 20 49 50 76 34 20 6f 72 20 49 | .set.a.specific.static.IPv4.or.I |
| 10d080 | 50 76 36 20 61 64 64 72 65 73 73 20 66 6f 72 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 2e 20 54 | Pv6.address.for.the.container..T |
| 10d0a0 | 68 69 73 20 61 64 64 72 65 73 73 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 74 68 65 20 6e | his.address.must.be.within.the.n |
| 10d0c0 | 61 6d 65 64 20 6e 65 74 77 6f 72 6b 20 70 72 65 66 69 78 2e 00 4f 70 74 69 6f 6e 73 00 4f 70 74 | amed.network.prefix..Options.Opt |
| 10d0e0 | 69 6f 6e 73 20 28 47 6c 6f 62 61 6c 20 49 50 73 65 63 20 73 65 74 74 69 6e 67 73 29 20 41 74 74 | ions.(Global.IPsec.settings).Att |
| 10d100 | 72 69 62 75 74 65 73 00 4f 70 74 69 6f 6e 73 20 75 73 65 64 20 66 6f 72 20 71 75 65 75 65 20 74 | ributes.Options.used.for.queue.t |
| 10d120 | 61 72 67 65 74 2e 20 41 63 74 69 6f 6e 20 71 75 65 75 65 20 6d 75 73 74 20 62 65 20 64 65 66 69 | arget..Action.queue.must.be.defi |
| 10d140 | 6e 65 64 20 74 6f 20 75 73 65 20 74 68 69 73 20 73 65 74 74 69 6e 67 00 4f 72 20 2a 2a 62 69 6e | ned.to.use.this.setting.Or.**bin |
| 10d160 | 61 72 79 2a 2a 20 70 72 65 66 69 78 65 73 2e 00 4f 72 2c 20 66 6f 72 20 65 78 61 6d 70 6c 65 20 | ary**.prefixes..Or,.for.example. |
| 10d180 | 66 74 70 2c 20 60 64 65 6c 65 74 65 20 73 79 73 74 65 6d 20 63 6f 6e 6e 74 72 61 63 6b 20 6d 6f | ftp,.`delete.system.conntrack.mo |
| 10d1a0 | 64 75 6c 65 73 20 66 74 70 60 2e 00 4f 72 64 65 72 20 63 6f 6e 6e 74 72 61 63 6b 64 20 74 6f 20 | dules.ftp`..Order.conntrackd.to. |
| 10d1c0 | 72 65 71 75 65 73 74 20 61 20 63 6f 6d 70 6c 65 74 65 20 63 6f 6e 6e 74 72 61 63 6b 20 74 61 62 | request.a.complete.conntrack.tab |
| 10d1e0 | 6c 65 20 72 65 73 79 6e 63 20 61 67 61 69 6e 73 74 20 74 68 65 20 6f 74 68 65 72 20 6e 6f 64 65 | le.resync.against.the.other.node |
| 10d200 | 20 61 74 20 73 74 61 72 74 75 70 2e 00 4f 72 69 67 69 6e 61 74 65 20 61 6e 20 41 53 2d 45 78 74 | .at.startup..Originate.an.AS-Ext |
| 10d220 | 65 72 6e 61 6c 20 28 74 79 70 65 2d 35 29 20 4c 53 41 20 64 65 73 63 72 69 62 69 6e 67 20 61 20 | ernal.(type-5).LSA.describing.a. |
| 10d240 | 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 69 6e 74 6f 20 61 6c 6c 20 65 78 74 65 72 6e 61 6c 2d | default.route.into.all.external- |
| 10d260 | 72 6f 75 74 69 6e 67 20 63 61 70 61 62 6c 65 20 61 72 65 61 73 2c 20 6f 66 20 74 68 65 20 73 70 | routing.capable.areas,.of.the.sp |
| 10d280 | 65 63 69 66 69 65 64 20 6d 65 74 72 69 63 20 61 6e 64 20 6d 65 74 72 69 63 20 74 79 70 65 2e 20 | ecified.metric.and.metric.type.. |
| 10d2a0 | 49 66 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 61 6c 77 61 79 73 60 20 6b 65 79 77 6f 72 64 20 | If.the.:cfgcmd:`always`.keyword. |
| 10d2c0 | 69 73 20 67 69 76 65 6e 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 61 6c 77 | is.given.then.the.default.is.alw |
| 10d2e0 | 61 79 73 20 61 64 76 65 72 74 69 73 65 64 2c 20 65 76 65 6e 20 77 68 65 6e 20 74 68 65 72 65 20 | ays.advertised,.even.when.there. |
| 10d300 | 69 73 20 6e 6f 20 64 65 66 61 75 6c 74 20 70 72 65 73 65 6e 74 20 69 6e 20 74 68 65 20 72 6f 75 | is.no.default.present.in.the.rou |
| 10d320 | 74 69 6e 67 20 74 61 62 6c 65 2e 20 54 68 65 20 61 72 67 75 6d 65 6e 74 20 3a 63 66 67 63 6d 64 | ting.table..The.argument.:cfgcmd |
| 10d340 | 3a 60 72 6f 75 74 65 2d 6d 61 70 60 20 73 70 65 63 69 66 69 65 73 20 74 6f 20 61 64 76 65 72 74 | :`route-map`.specifies.to.advert |
| 10d360 | 69 73 65 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 69 66 20 74 68 65 20 72 6f 75 | ise.the.default.route.if.the.rou |
| 10d380 | 74 65 20 6d 61 70 20 69 73 20 73 61 74 69 73 66 69 65 64 2e 00 4f 74 68 65 72 20 61 74 74 72 69 | te.map.is.satisfied..Other.attri |
| 10d3a0 | 62 75 74 65 73 20 63 61 6e 20 62 65 20 75 73 65 64 2c 20 62 75 74 20 74 68 65 79 20 68 61 76 65 | butes.can.be.used,.but.they.have |
| 10d3c0 | 20 74 6f 20 62 65 20 69 6e 20 6f 6e 65 20 6f 66 20 74 68 65 20 64 69 63 74 69 6f 6e 61 72 69 65 | .to.be.in.one.of.the.dictionarie |
| 10d3e0 | 73 20 69 6e 20 2a 2f 75 73 72 2f 73 68 61 72 65 2f 61 63 63 65 6c 2d 70 70 70 2f 72 61 64 69 75 | s.in.*/usr/share/accel-ppp/radiu |
| 10d400 | 73 2a 2e 00 4f 75 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 77 | s*..Our.configuration.commands.w |
| 10d420 | 6f 75 6c 64 20 62 65 3a 00 4f 75 72 20 72 65 6d 6f 74 65 20 65 6e 64 20 6f 66 20 74 68 65 20 74 | ould.be:.Our.remote.end.of.the.t |
| 10d440 | 75 6e 6e 65 6c 20 66 6f 72 20 70 65 65 72 20 60 74 6f 2d 77 67 30 32 60 20 69 73 20 72 65 61 63 | unnel.for.peer.`to-wg02`.is.reac |
| 10d460 | 68 61 62 6c 65 20 61 74 20 31 39 32 2e 30 2e 32 2e 31 20 70 6f 72 74 20 35 31 38 32 30 00 4f 75 | hable.at.192.0.2.1.port.51820.Ou |
| 10d480 | 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 62 61 6c 61 6e 63 65 64 20 62 | tbound.traffic.can.be.balanced.b |
| 10d4a0 | 65 74 77 65 65 6e 20 74 77 6f 20 6f 72 20 6d 6f 72 65 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 | etween.two.or.more.outbound.inte |
| 10d4c0 | 72 66 61 63 65 73 2e 20 49 66 20 61 20 70 61 74 68 20 66 61 69 6c 73 2c 20 74 72 61 66 66 69 63 | rfaces..If.a.path.fails,.traffic |
| 10d4e0 | 20 69 73 20 62 61 6c 61 6e 63 65 64 20 61 63 72 6f 73 73 20 74 68 65 20 72 65 6d 61 69 6e 69 6e | .is.balanced.across.the.remainin |
| 10d500 | 67 20 68 65 61 6c 74 68 79 20 70 61 74 68 73 2c 20 61 20 72 65 63 6f 76 65 72 65 64 20 70 61 74 | g.healthy.paths,.a.recovered.pat |
| 10d520 | 68 20 69 73 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 61 64 64 65 64 20 62 61 63 6b 20 74 6f | h.is.automatically.added.back.to |
| 10d540 | 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 61 6e 64 20 75 73 65 64 20 62 79 20 74 | .the.routing.table.and.used.by.t |
| 10d560 | 68 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 72 2e 20 54 68 65 20 6c 6f 61 64 20 62 61 6c 61 6e | he.load.balancer..The.load.balan |
| 10d580 | 63 65 72 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 61 64 64 73 20 72 6f 75 74 65 73 20 66 6f | cer.automatically.adds.routes.fo |
| 10d5a0 | 72 20 65 61 63 68 20 70 61 74 68 20 74 6f 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 | r.each.path.to.the.routing.table |
| 10d5c0 | 20 61 6e 64 20 62 61 6c 61 6e 63 65 73 20 74 72 61 66 66 69 63 20 61 63 72 6f 73 73 20 74 68 65 | .and.balances.traffic.across.the |
| 10d5e0 | 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 74 65 72 66 61 63 65 73 2c 20 64 65 74 65 72 6d 69 6e | .configured.interfaces,.determin |
| 10d600 | 65 64 20 62 79 20 69 6e 74 65 72 66 61 63 65 20 68 65 61 6c 74 68 20 61 6e 64 20 77 65 69 67 68 | ed.by.interface.health.and.weigh |
| 10d620 | 74 2e 00 4f 75 74 67 6f 69 6e 67 20 74 72 61 66 66 69 63 20 69 73 20 62 61 6c 61 6e 63 65 64 20 | t..Outgoing.traffic.is.balanced. |
| 10d640 | 69 6e 20 61 20 66 6c 6f 77 2d 62 61 73 65 64 20 6d 61 6e 6e 65 72 2e 20 41 20 63 6f 6e 6e 65 63 | in.a.flow-based.manner..A.connec |
| 10d660 | 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 74 61 62 6c 65 20 69 73 20 75 73 65 64 20 74 6f 20 74 | tion.tracking.table.is.used.to.t |
| 10d680 | 72 61 63 6b 20 66 6c 6f 77 73 20 62 79 20 74 68 65 69 72 20 73 6f 75 72 63 65 20 61 64 64 72 65 | rack.flows.by.their.source.addre |
| 10d6a0 | 73 73 2c 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 61 6e 64 20 70 6f 72 74 | ss,.destination.address.and.port |
| 10d6c0 | 2e 20 45 61 63 68 20 66 6c 6f 77 20 69 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 61 6e 20 69 6e | ..Each.flow.is.assigned.to.an.in |
| 10d6e0 | 74 65 72 66 61 63 65 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 74 68 65 20 64 65 66 69 6e 65 64 | terface.according.to.the.defined |
| 10d700 | 20 62 61 6c 61 6e 63 69 6e 67 20 72 75 6c 65 73 20 61 6e 64 20 73 75 62 73 65 71 75 65 6e 74 20 | .balancing.rules.and.subsequent. |
| 10d720 | 70 61 63 6b 65 74 73 20 61 72 65 20 73 65 6e 74 20 74 68 72 6f 75 67 68 20 74 68 65 20 73 61 6d | packets.are.sent.through.the.sam |
| 10d740 | 65 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 68 61 73 20 74 68 65 20 61 64 76 61 6e 74 | e.interface..This.has.the.advant |
| 10d760 | 61 67 65 20 74 68 61 74 20 70 61 63 6b 65 74 73 20 61 6c 77 61 79 73 20 61 72 72 69 76 65 20 69 | age.that.packets.always.arrive.i |
| 10d780 | 6e 20 6f 72 64 65 72 20 69 66 20 6c 69 6e 6b 73 20 77 69 74 68 20 64 69 66 66 65 72 65 6e 74 20 | n.order.if.links.with.different. |
| 10d7a0 | 73 70 65 65 64 73 20 61 72 65 20 69 6e 20 75 73 65 2e 00 4f 75 74 70 75 74 20 66 72 6f 6d 20 60 | speeds.are.in.use..Output.from.` |
| 10d7c0 | 65 74 68 30 60 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 00 4f 75 74 70 75 74 20 70 | eth0`.network.interface.Output.p |
| 10d7e0 | 6c 75 67 69 6e 20 50 72 6f 6d 65 74 68 65 75 73 20 63 6c 69 65 6e 74 00 4f 76 65 72 20 49 50 00 | lugin.Prometheus.client.Over.IP. |
| 10d800 | 4f 76 65 72 20 49 50 53 65 63 2c 20 4c 32 20 56 50 4e 20 28 62 72 69 64 67 65 29 00 4f 76 65 72 | Over.IPSec,.L2.VPN.(bridge).Over |
| 10d820 | 20 55 44 50 00 4f 76 65 72 72 69 64 65 20 73 74 61 74 69 63 2d 6d 61 70 70 69 6e 67 27 73 20 6e | .UDP.Override.static-mapping's.n |
| 10d840 | 61 6d 65 2d 73 65 72 76 65 72 20 77 69 74 68 20 61 20 63 75 73 74 6f 6d 20 6f 6e 65 20 74 68 61 | ame-server.with.a.custom.one.tha |
| 10d860 | 74 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 6f 6e 6c 79 20 74 6f 20 74 68 69 73 20 68 6f 73 74 | t.will.be.sent.only.to.this.host |
| 10d880 | 2e 00 4f 76 65 72 72 69 64 65 20 74 68 65 20 64 65 66 61 75 6c 74 20 63 6f 6d 6d 61 6e 64 20 66 | ..Override.the.default.command.f |
| 10d8a0 | 72 6f 6d 20 74 68 65 20 69 6d 61 67 65 20 66 6f 72 20 61 20 63 6f 6e 74 61 69 6e 65 72 2e 00 4f | rom.the.image.for.a.container..O |
| 10d8c0 | 76 65 72 72 69 64 65 20 74 68 65 20 64 65 66 61 75 6c 74 20 65 6e 74 72 79 70 6f 69 6e 74 20 66 | verride.the.default.entrypoint.f |
| 10d8e0 | 72 6f 6d 20 74 68 65 20 69 6d 61 67 65 20 66 6f 72 20 61 20 63 6f 6e 74 61 69 6e 65 72 2e 00 4f | rom.the.image.for.a.container..O |
| 10d900 | 76 65 72 76 69 65 77 00 4f 76 65 72 76 69 65 77 20 61 6e 64 20 62 61 73 69 63 20 63 6f 6e 63 65 | verview.Overview.and.basic.conce |
| 10d920 | 70 74 73 00 4f 76 65 72 76 69 65 77 20 6f 66 20 64 65 66 69 6e 65 64 20 67 72 6f 75 70 73 2e 20 | pts.Overview.of.defined.groups.. |
| 10d940 | 59 6f 75 20 73 65 65 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 20 6e 61 6d 65 2c | You.see.the.firewall.group.name, |
| 10d960 | 20 74 79 70 65 2c 20 72 65 66 65 72 65 6e 63 65 73 20 28 77 68 65 72 65 20 74 68 65 20 67 72 6f | .type,.references.(where.the.gro |
| 10d980 | 75 70 20 69 73 20 75 73 65 64 29 2c 20 6d 65 6d 62 65 72 73 2c 20 74 69 6d 65 6f 75 74 20 61 6e | up.is.used),.members,.timeout.an |
| 10d9a0 | 64 20 65 78 70 69 72 61 74 69 6f 6e 20 28 6c 61 73 74 20 74 77 6f 20 6f 6e 6c 79 20 70 72 65 73 | d.expiration.(last.two.only.pres |
| 10d9c0 | 65 6e 74 20 69 6e 20 64 79 6e 61 6d 69 63 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 29 2e | ent.in.dynamic.firewall.groups). |
| 10d9e0 | 00 4f 76 65 72 76 69 65 77 20 6f 66 20 64 65 66 69 6e 65 64 20 67 72 6f 75 70 73 2e 20 59 6f 75 | .Overview.of.defined.groups..You |
| 10da00 | 20 73 65 65 20 74 68 65 20 74 79 70 65 2c 20 74 68 65 20 6d 65 6d 62 65 72 73 2c 20 61 6e 64 20 | .see.the.type,.the.members,.and. |
| 10da20 | 77 68 65 72 65 20 74 68 65 20 67 72 6f 75 70 20 69 73 20 75 73 65 64 2e 00 4f 76 65 72 77 72 69 | where.the.group.is.used..Overwri |
| 10da40 | 74 65 73 20 74 68 65 20 6c 6f 63 61 6c 20 73 79 73 74 65 6d 20 68 6f 73 74 20 6e 61 6d 65 20 75 | tes.the.local.system.host.name.u |
| 10da60 | 73 65 64 20 69 6e 20 73 79 73 6c 6f 67 73 2e 00 50 42 52 20 6d 75 6c 74 69 70 6c 65 20 75 70 6c | sed.in.syslogs..PBR.multiple.upl |
| 10da80 | 69 6e 6b 73 00 50 43 31 20 69 73 20 69 6e 20 74 68 65 20 60 60 64 65 66 61 75 6c 74 60 60 20 56 | inks.PC1.is.in.the.``default``.V |
| 10daa0 | 52 46 20 61 6e 64 20 61 63 74 69 6e 67 20 61 73 20 65 2e 67 2e 20 61 20 22 66 69 6c 65 73 65 72 | RF.and.acting.as.e.g..a."fileser |
| 10dac0 | 76 65 72 22 00 50 43 32 20 69 73 20 69 6e 20 56 52 46 20 60 60 62 6c 75 65 60 60 20 77 68 69 63 | ver".PC2.is.in.VRF.``blue``.whic |
| 10dae0 | 68 20 69 73 20 74 68 65 20 64 65 76 65 6c 6f 70 6d 65 6e 74 20 64 65 70 61 72 74 6d 65 6e 74 00 | h.is.the.development.department. |
| 10db00 | 50 43 33 20 61 6e 64 20 50 43 34 20 61 72 65 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 61 20 62 | PC3.and.PC4.are.connected.to.a.b |
| 10db20 | 72 69 64 67 65 20 64 65 76 69 63 65 20 6f 6e 20 72 6f 75 74 65 72 20 60 60 52 31 60 60 20 77 68 | ridge.device.on.router.``R1``.wh |
| 10db40 | 69 63 68 20 69 73 20 69 6e 20 56 52 46 20 60 60 72 65 64 60 60 2e 20 53 61 79 20 74 68 69 73 20 | ich.is.in.VRF.``red``..Say.this. |
| 10db60 | 69 73 20 74 68 65 20 48 52 20 64 65 70 61 72 74 6d 65 6e 74 2e 00 50 43 34 20 68 61 73 20 49 50 | is.the.HR.department..PC4.has.IP |
| 10db80 | 20 31 30 2e 30 2e 30 2e 34 2f 32 34 20 61 6e 64 20 50 43 35 20 68 61 73 20 49 50 20 31 30 2e 30 | .10.0.0.4/24.and.PC5.has.IP.10.0 |
| 10dba0 | 2e 30 2e 35 2f 32 34 2c 20 73 6f 20 74 68 65 79 20 62 65 6c 69 65 76 65 20 74 68 65 79 20 61 72 | .0.5/24,.so.they.believe.they.ar |
| 10dbc0 | 65 20 69 6e 20 74 68 65 20 73 61 6d 65 20 62 72 6f 61 64 63 61 73 74 20 64 6f 6d 61 69 6e 2e 00 | e.in.the.same.broadcast.domain.. |
| 10dbe0 | 50 43 35 20 72 65 63 65 69 76 65 73 20 74 68 65 20 70 69 6e 67 20 65 63 68 6f 2c 20 72 65 73 70 | PC5.receives.the.ping.echo,.resp |
| 10dc00 | 6f 6e 64 73 20 77 69 74 68 20 61 6e 20 65 63 68 6f 20 72 65 70 6c 79 20 74 68 61 74 20 4c 65 61 | onds.with.an.echo.reply.that.Lea |
| 10dc20 | 66 33 20 72 65 63 65 69 76 65 73 20 61 6e 64 20 74 68 69 73 20 74 69 6d 65 20 66 6f 72 77 61 72 | f3.receives.and.this.time.forwar |
| 10dc40 | 64 73 20 74 6f 20 4c 65 61 66 32 27 73 20 75 6e 69 63 61 73 74 20 61 64 64 72 65 73 73 20 64 69 | ds.to.Leaf2's.unicast.address.di |
| 10dc60 | 72 65 63 74 6c 79 20 62 65 63 61 75 73 65 20 69 74 20 6c 65 61 72 6e 65 64 20 74 68 65 20 6c 6f | rectly.because.it.learned.the.lo |
| 10dc80 | 63 61 74 69 6f 6e 20 6f 66 20 50 43 34 20 61 62 6f 76 65 2e 20 57 68 65 6e 20 4c 65 61 66 32 20 | cation.of.PC4.above..When.Leaf2. |
| 10dca0 | 72 65 63 65 69 76 65 73 20 74 68 65 20 65 63 68 6f 20 72 65 70 6c 79 20 66 72 6f 6d 20 50 43 35 | receives.the.echo.reply.from.PC5 |
| 10dcc0 | 20 69 74 20 73 65 65 73 20 74 68 61 74 20 69 74 20 63 61 6d 65 20 66 72 6f 6d 20 4c 65 61 66 33 | .it.sees.that.it.came.from.Leaf3 |
| 10dce0 | 20 61 6e 64 20 73 6f 20 72 65 6d 65 6d 62 65 72 73 20 74 68 61 74 20 50 43 35 20 69 73 20 72 65 | .and.so.remembers.that.PC5.is.re |
| 10dd00 | 61 63 68 61 62 6c 65 20 76 69 61 20 4c 65 61 66 33 2e 00 50 49 4d 20 28 50 72 6f 74 6f 63 6f 6c | achable.via.Leaf3..PIM.(Protocol |
| 10dd20 | 20 49 6e 64 65 70 65 6e 64 65 6e 74 20 4d 75 6c 74 69 63 61 73 74 29 20 6d 75 73 74 20 62 65 20 | .Independent.Multicast).must.be. |
| 10dd40 | 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 65 76 65 72 79 20 69 6e 74 65 72 66 61 63 65 20 6f 66 | configured.in.every.interface.of |
| 10dd60 | 20 65 76 65 72 79 20 70 61 72 74 69 63 69 70 61 74 69 6e 67 20 72 6f 75 74 65 72 2e 20 45 76 65 | .every.participating.router..Eve |
| 10dd80 | 72 79 20 72 6f 75 74 65 72 20 6d 75 73 74 20 61 6c 73 6f 20 68 61 76 65 20 74 68 65 20 6c 6f 63 | ry.router.must.also.have.the.loc |
| 10dda0 | 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 52 65 6e 64 65 76 6f 75 7a 20 50 6f 69 6e 74 20 6d 61 6e | ation.of.the.Rendevouz.Point.man |
| 10ddc0 | 75 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 68 65 6e 2c 20 75 6e 69 64 69 72 65 63 | ually.configured..Then,.unidirec |
| 10dde0 | 74 69 6f 6e 61 6c 20 73 68 61 72 65 64 20 74 72 65 65 73 20 72 6f 6f 74 65 64 20 61 74 20 74 68 | tional.shared.trees.rooted.at.th |
| 10de00 | 65 20 52 65 6e 64 65 76 6f 75 7a 20 50 6f 69 6e 74 20 77 69 6c 6c 20 61 75 74 6f 6d 61 74 69 63 | e.Rendevouz.Point.will.automatic |
| 10de20 | 61 6c 6c 79 20 62 65 20 62 75 69 6c 74 20 66 6f 72 20 6d 75 6c 74 69 63 61 73 74 20 64 69 73 74 | ally.be.built.for.multicast.dist |
| 10de40 | 72 69 62 75 74 69 6f 6e 2e 00 50 49 4d 20 61 6e 64 20 49 47 4d 50 00 50 49 4d 20 e2 80 93 20 50 | ribution..PIM.and.IGMP.PIM.....P |
| 10de60 | 72 6f 74 6f 63 6f 6c 20 49 6e 64 65 70 65 6e 64 65 6e 74 20 4d 75 6c 74 69 63 61 73 74 00 50 49 | rotocol.Independent.Multicast.PI |
| 10de80 | 4d 2d 53 4d 20 2d 20 50 49 4d 20 53 70 61 72 73 65 20 4d 6f 64 65 00 50 49 4d 36 20 2d 20 50 72 | M-SM.-.PIM.Sparse.Mode.PIM6.-.Pr |
| 10dea0 | 6f 74 6f 63 6f 6c 20 49 6e 64 65 70 65 6e 64 65 6e 74 20 4d 75 6c 74 69 63 61 73 74 20 66 6f 72 | otocol.Independent.Multicast.for |
| 10dec0 | 20 49 50 76 36 00 50 49 4d 76 36 20 28 50 72 6f 74 6f 63 6f 6c 20 49 6e 64 65 70 65 6e 64 65 6e | .IPv6.PIMv6.(Protocol.Independen |
| 10dee0 | 74 20 4d 75 6c 74 69 63 61 73 74 20 66 6f 72 20 49 50 76 36 29 20 6d 75 73 74 20 62 65 20 63 6f | t.Multicast.for.IPv6).must.be.co |
| 10df00 | 6e 66 69 67 75 72 65 64 20 69 6e 20 65 76 65 72 79 20 69 6e 74 65 72 66 61 63 65 20 6f 66 20 65 | nfigured.in.every.interface.of.e |
| 10df20 | 76 65 72 79 20 70 61 72 74 69 63 69 70 61 74 69 6e 67 20 72 6f 75 74 65 72 2e 20 45 76 65 72 79 | very.participating.router..Every |
| 10df40 | 20 72 6f 75 74 65 72 20 6d 75 73 74 20 61 6c 73 6f 20 68 61 76 65 20 74 68 65 20 6c 6f 63 61 74 | .router.must.also.have.the.locat |
| 10df60 | 69 6f 6e 20 6f 66 20 74 68 65 20 52 65 6e 64 65 76 6f 75 7a 20 50 6f 69 6e 74 20 6d 61 6e 75 61 | ion.of.the.Rendevouz.Point.manua |
| 10df80 | 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 68 65 6e 2c 20 75 6e 69 64 69 72 65 63 74 69 | lly.configured..Then,.unidirecti |
| 10dfa0 | 6f 6e 61 6c 20 73 68 61 72 65 64 20 74 72 65 65 73 20 72 6f 6f 74 65 64 20 61 74 20 74 68 65 20 | onal.shared.trees.rooted.at.the. |
| 10dfc0 | 52 65 6e 64 65 76 6f 75 7a 20 50 6f 69 6e 74 20 77 69 6c 6c 20 61 75 74 6f 6d 61 74 69 63 61 6c | Rendevouz.Point.will.automatical |
| 10dfe0 | 6c 79 20 62 65 20 62 75 69 6c 74 20 66 6f 72 20 6d 75 6c 74 69 63 61 73 74 20 64 69 73 74 72 69 | ly.be.built.for.multicast.distri |
| 10e000 | 62 75 74 69 6f 6e 2e 00 50 4b 49 00 50 50 44 55 00 50 50 50 20 41 64 76 61 6e 63 65 64 20 4f 70 | bution..PKI.PPDU.PPP.Advanced.Op |
| 10e020 | 74 69 6f 6e 73 00 50 50 50 20 53 65 74 74 69 6e 67 73 00 50 50 50 6f 45 00 50 50 50 6f 45 20 53 | tions.PPP.Settings.PPPoE.PPPoE.S |
| 10e040 | 65 72 76 65 72 00 50 50 50 6f 45 20 6f 70 74 69 6f 6e 73 00 50 50 54 50 2d 53 65 72 76 65 72 00 | erver.PPPoE.options.PPTP-Server. |
| 10e060 | 50 54 50 20 54 72 61 6e 73 70 6f 72 74 20 6f 66 20 4e 54 50 20 50 61 63 6b 65 74 73 00 50 61 63 | PTP.Transport.of.NTP.Packets.Pac |
| 10e080 | 6b 65 74 20 4d 6f 64 69 66 69 63 61 74 69 6f 6e 73 00 50 61 63 6b 65 74 2d 62 61 73 65 64 20 62 | ket.Modifications.Packet-based.b |
| 10e0a0 | 61 6c 61 6e 63 69 6e 67 20 63 61 6e 20 6c 65 61 64 20 74 6f 20 61 20 62 65 74 74 65 72 20 62 61 | alancing.can.lead.to.a.better.ba |
| 10e0c0 | 6c 61 6e 63 65 20 61 63 72 6f 73 73 20 69 6e 74 65 72 66 61 63 65 73 20 77 68 65 6e 20 6f 75 74 | lance.across.interfaces.when.out |
| 10e0e0 | 20 6f 66 20 6f 72 64 65 72 20 70 61 63 6b 65 74 73 20 61 72 65 20 6e 6f 20 69 73 73 75 65 2e 20 | .of.order.packets.are.no.issue.. |
| 10e100 | 50 65 72 2d 70 61 63 6b 65 74 2d 62 61 73 65 64 20 62 61 6c 61 6e 63 69 6e 67 20 63 61 6e 20 62 | Per-packet-based.balancing.can.b |
| 10e120 | 65 20 73 65 74 20 66 6f 72 20 61 20 62 61 6c 61 6e 63 69 6e 67 20 72 75 6c 65 20 77 69 74 68 3a | e.set.for.a.balancing.rule.with: |
| 10e140 | 00 50 61 72 61 6d 65 74 65 72 73 20 62 65 67 69 6e 6e 69 6e 67 20 77 69 74 68 20 66 73 2e 6d 71 | .Parameters.beginning.with.fs.mq |
| 10e160 | 75 65 75 65 2e 2a 00 50 61 72 61 6d 65 74 65 72 73 20 62 65 67 69 6e 6e 69 6e 67 20 77 69 74 68 | ueue.*.Parameters.beginning.with |
| 10e180 | 20 6e 65 74 2e 2a 20 28 6f 6e 6c 79 20 69 66 20 75 73 65 72 2d 64 65 66 69 6e 65 64 20 6e 65 74 | .net.*.(only.if.user-defined.net |
| 10e1a0 | 77 6f 72 6b 20 69 73 20 75 73 65 64 29 00 50 61 72 74 69 63 75 6c 61 72 6c 79 20 6c 61 72 67 65 | work.is.used).Particularly.large |
| 10e1c0 | 20 6e 65 74 77 6f 72 6b 73 20 6d 61 79 20 77 69 73 68 20 74 6f 20 72 75 6e 20 74 68 65 69 72 20 | .networks.may.wish.to.run.their. |
| 10e1e0 | 6f 77 6e 20 52 50 4b 49 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 20 61 | own.RPKI.certificate.authority.a |
| 10e200 | 6e 64 20 70 75 62 6c 69 63 61 74 69 6f 6e 20 73 65 72 76 65 72 20 69 6e 73 74 65 61 64 20 6f 66 | nd.publication.server.instead.of |
| 10e220 | 20 70 75 62 6c 69 73 68 69 6e 67 20 52 4f 41 73 20 76 69 61 20 74 68 65 69 72 20 52 49 52 2e 20 | .publishing.ROAs.via.their.RIR.. |
| 10e240 | 54 68 69 73 20 69 73 20 61 20 73 75 62 6a 65 63 74 20 66 61 72 20 62 65 79 6f 6e 64 20 74 68 65 | This.is.a.subject.far.beyond.the |
| 10e260 | 20 73 63 6f 70 65 20 6f 66 20 56 79 4f 53 27 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 2e 20 43 | .scope.of.VyOS'.documentation..C |
| 10e280 | 6f 6e 73 69 64 65 72 20 72 65 61 64 69 6e 67 20 61 62 6f 75 74 20 4b 72 69 6c 6c 5f 20 69 66 20 | onsider.reading.about.Krill_.if. |
| 10e2a0 | 74 68 69 73 20 69 73 20 61 20 72 61 62 62 69 74 20 68 6f 6c 65 20 79 6f 75 20 6e 65 65 64 20 6f | this.is.a.rabbit.hole.you.need.o |
| 10e2c0 | 72 20 65 73 70 65 63 69 61 6c 6c 79 20 77 61 6e 74 20 74 6f 20 64 69 76 65 20 64 6f 77 6e 2e 00 | r.especially.want.to.dive.down.. |
| 10e2e0 | 50 61 73 73 20 61 64 64 72 65 73 73 20 6f 66 20 55 6e 69 66 69 20 63 6f 6e 74 72 6f 6c 6c 65 72 | Pass.address.of.Unifi.controller |
| 10e300 | 20 61 74 20 60 60 31 37 32 2e 31 36 2e 31 30 30 2e 31 60 60 20 74 6f 20 61 6c 6c 20 63 6c 69 65 | .at.``172.16.100.1``.to.all.clie |
| 10e320 | 6e 74 73 20 6f 66 20 60 60 4e 45 54 31 60 60 00 50 61 74 68 20 60 3c 63 6f 73 74 3e 60 20 76 61 | nts.of.``NET1``.Path.`<cost>`.va |
| 10e340 | 6c 75 65 20 66 6f 72 20 53 70 61 6e 6e 69 6e 67 20 54 72 65 65 20 50 72 6f 74 6f 63 6f 6c 2e 20 | lue.for.Spanning.Tree.Protocol.. |
| 10e360 | 45 61 63 68 20 69 6e 74 65 72 66 61 63 65 20 69 6e 20 61 20 62 72 69 64 67 65 20 63 6f 75 6c 64 | Each.interface.in.a.bridge.could |
| 10e380 | 20 68 61 76 65 20 61 20 64 69 66 66 65 72 65 6e 74 20 73 70 65 65 64 20 61 6e 64 20 74 68 69 73 | .have.a.different.speed.and.this |
| 10e3a0 | 20 76 61 6c 75 65 20 69 73 20 75 73 65 64 20 77 68 65 6e 20 64 65 63 69 64 69 6e 67 20 77 68 69 | .value.is.used.when.deciding.whi |
| 10e3c0 | 63 68 20 6c 69 6e 6b 20 74 6f 20 75 73 65 2e 20 46 61 73 74 65 72 20 69 6e 74 65 72 66 61 63 65 | ch.link.to.use..Faster.interface |
| 10e3e0 | 73 20 73 68 6f 75 6c 64 20 68 61 76 65 20 6c 6f 77 65 72 20 63 6f 73 74 73 2e 00 50 61 74 68 20 | s.should.have.lower.costs..Path. |
| 10e400 | 74 6f 20 60 3c 66 69 6c 65 3e 60 20 70 6f 69 6e 74 69 6e 67 20 74 6f 20 74 68 65 20 63 65 72 74 | to.`<file>`.pointing.to.the.cert |
| 10e420 | 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 20 63 65 72 74 69 66 69 63 61 74 65 2e 00 50 | ificate.authority.certificate..P |
| 10e440 | 61 74 68 20 74 6f 20 60 3c 66 69 6c 65 3e 60 20 70 6f 69 6e 74 69 6e 67 20 74 6f 20 74 68 65 20 | ath.to.`<file>`.pointing.to.the. |
| 10e460 | 73 65 72 76 65 72 73 20 63 65 72 74 69 66 69 63 61 74 65 20 28 70 75 62 6c 69 63 20 70 6f 72 74 | servers.certificate.(public.port |
| 10e480 | 69 6f 6e 29 2e 00 50 65 65 72 20 2d 20 50 65 65 72 00 50 65 65 72 20 47 72 6f 75 70 73 00 50 65 | ion)..Peer.-.Peer.Peer.Groups.Pe |
| 10e4a0 | 65 72 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 6d 61 74 63 68 2e 00 50 65 65 72 20 50 61 72 | er.IP.address.to.match..Peer.Par |
| 10e4c0 | 61 6d 65 74 65 72 73 00 50 65 65 72 20 67 72 6f 75 70 73 20 61 72 65 20 75 73 65 64 20 74 6f 20 | ameters.Peer.groups.are.used.to. |
| 10e4e0 | 68 65 6c 70 20 69 6d 70 72 6f 76 65 20 73 63 61 6c 69 6e 67 20 62 79 20 67 65 6e 65 72 61 74 69 | help.improve.scaling.by.generati |
| 10e500 | 6e 67 20 74 68 65 20 73 61 6d 65 20 75 70 64 61 74 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 | ng.the.same.update.information.t |
| 10e520 | 6f 20 61 6c 6c 20 6d 65 6d 62 65 72 73 20 6f 66 20 61 20 70 65 65 72 20 67 72 6f 75 70 2e 20 4e | o.all.members.of.a.peer.group..N |
| 10e540 | 6f 74 65 20 74 68 61 74 20 74 68 69 73 20 6d 65 61 6e 73 20 74 68 61 74 20 74 68 65 20 72 6f 75 | ote.that.this.means.that.the.rou |
| 10e560 | 74 65 73 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 61 20 6d 65 6d 62 65 72 20 6f 66 20 61 20 70 | tes.generated.by.a.member.of.a.p |
| 10e580 | 65 65 72 20 67 72 6f 75 70 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 62 61 63 6b 20 74 6f 20 74 | eer.group.will.be.sent.back.to.t |
| 10e5a0 | 68 61 74 20 6f 72 69 67 69 6e 61 74 69 6e 67 20 70 65 65 72 20 77 69 74 68 20 74 68 65 20 6f 72 | hat.originating.peer.with.the.or |
| 10e5c0 | 69 67 69 6e 61 74 6f 72 20 69 64 65 6e 74 69 66 69 65 72 20 61 74 74 72 69 62 75 74 65 20 73 65 | iginator.identifier.attribute.se |
| 10e5e0 | 74 20 74 6f 20 69 6e 64 69 63 61 74 65 64 20 74 68 65 20 6f 72 69 67 69 6e 61 74 69 6e 67 20 70 | t.to.indicated.the.originating.p |
| 10e600 | 65 65 72 2e 20 41 6c 6c 20 70 65 65 72 73 20 6e 6f 74 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 | eer..All.peers.not.associated.wi |
| 10e620 | 74 68 20 61 20 73 70 65 63 69 66 69 63 20 70 65 65 72 20 67 72 6f 75 70 20 61 72 65 20 74 72 65 | th.a.specific.peer.group.are.tre |
| 10e640 | 61 74 65 64 20 61 73 20 62 65 6c 6f 6e 67 69 6e 67 20 74 6f 20 61 20 64 65 66 61 75 6c 74 20 70 | ated.as.belonging.to.a.default.p |
| 10e660 | 65 65 72 20 67 72 6f 75 70 2c 20 61 6e 64 20 77 69 6c 6c 20 73 68 61 72 65 20 75 70 64 61 74 65 | eer.group,.and.will.share.update |
| 10e680 | 73 2e 00 50 65 65 72 20 74 6f 20 73 65 6e 64 20 75 6e 69 63 61 73 74 20 55 44 50 20 63 6f 6e 6e | s..Peer.to.send.unicast.UDP.conn |
| 10e6a0 | 74 72 61 63 6b 20 73 79 6e 63 20 65 6e 74 69 72 65 73 20 74 6f 2c 20 69 66 20 6e 6f 74 20 75 73 | track.sync.entires.to,.if.not.us |
| 10e6c0 | 69 6e 67 20 4d 75 6c 74 69 63 61 73 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 72 6f 6d | ing.Multicast.configuration.from |
| 10e6e0 | 20 61 62 6f 76 65 20 61 62 6f 76 65 2e 00 50 65 65 72 73 20 43 6f 6e 66 69 67 75 72 61 74 69 6f | .above.above..Peers.Configuratio |
| 10e700 | 6e 00 50 65 72 20 64 65 66 61 75 6c 74 20 56 79 4f 53 73 20 68 61 73 20 6d 69 6e 69 6d 61 6c 20 | n.Per.default.VyOSs.has.minimal. |
| 10e720 | 73 79 73 6c 6f 67 20 6c 6f 67 67 69 6e 67 20 65 6e 61 62 6c 65 64 20 77 68 69 63 68 20 69 73 20 | syslog.logging.enabled.which.is. |
| 10e740 | 73 74 6f 72 65 64 20 61 6e 64 20 72 6f 74 61 74 65 64 20 6c 6f 63 61 6c 6c 79 2e 20 45 72 72 6f | stored.and.rotated.locally..Erro |
| 10e760 | 72 73 20 77 69 6c 6c 20 62 65 20 61 6c 77 61 79 73 20 6c 6f 67 67 65 64 20 74 6f 20 61 20 6c 6f | rs.will.be.always.logged.to.a.lo |
| 10e780 | 63 61 6c 20 66 69 6c 65 2c 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 73 20 60 6c 6f 63 61 6c 37 | cal.file,.which.includes.`local7 |
| 10e7a0 | 60 20 65 72 72 6f 72 20 6d 65 73 73 61 67 65 73 2c 20 65 6d 65 72 67 65 6e 63 79 20 6d 65 73 73 | `.error.messages,.emergency.mess |
| 10e7c0 | 61 67 65 73 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 74 6f 20 74 68 65 20 63 6f 6e 73 6f 6c 65 | ages.will.be.sent.to.the.console |
| 10e7e0 | 2c 20 74 6f 6f 2e 00 50 65 72 20 64 65 66 61 75 6c 74 20 65 76 65 72 79 20 70 61 63 6b 65 74 20 | ,.too..Per.default.every.packet. |
| 10e800 | 69 73 20 73 61 6d 70 6c 65 64 20 28 74 68 61 74 20 69 73 2c 20 74 68 65 20 73 61 6d 70 6c 69 6e | is.sampled.(that.is,.the.samplin |
| 10e820 | 67 20 72 61 74 65 20 69 73 20 31 29 2e 00 50 65 72 20 64 65 66 61 75 6c 74 20 74 68 65 20 75 73 | g.rate.is.1)..Per.default.the.us |
| 10e840 | 65 72 20 73 65 73 73 69 6f 6e 20 69 73 20 62 65 69 6e 67 20 72 65 70 6c 61 63 65 64 20 69 66 20 | er.session.is.being.replaced.if. |
| 10e860 | 61 20 73 65 63 6f 6e 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 72 65 71 75 65 73 74 20 | a.second.authentication.request. |
| 10e880 | 73 75 63 63 65 65 64 73 2e 20 53 75 63 68 20 73 65 73 73 69 6f 6e 20 72 65 71 75 65 73 74 73 20 | succeeds..Such.session.requests. |
| 10e8a0 | 63 61 6e 20 62 65 20 65 69 74 68 65 72 20 64 65 6e 69 65 64 20 6f 72 20 61 6c 6c 6f 77 65 64 20 | can.be.either.denied.or.allowed. |
| 10e8c0 | 65 6e 74 69 72 65 6c 79 2c 20 77 68 69 63 68 20 77 6f 75 6c 64 20 61 6c 6c 6f 77 20 6d 75 6c 74 | entirely,.which.would.allow.mult |
| 10e8e0 | 69 70 6c 65 20 73 65 73 73 69 6f 6e 73 20 66 6f 72 20 61 20 75 73 65 72 20 69 6e 20 74 68 65 20 | iple.sessions.for.a.user.in.the. |
| 10e900 | 6c 61 74 74 65 72 20 63 61 73 65 2e 20 49 66 20 69 74 20 69 73 20 64 65 6e 69 65 64 2c 20 74 68 | latter.case..If.it.is.denied,.th |
| 10e920 | 65 20 73 65 63 6f 6e 64 20 73 65 73 73 69 6f 6e 20 69 73 20 62 65 69 6e 67 20 72 65 6a 65 63 74 | e.second.session.is.being.reject |
| 10e940 | 65 64 20 65 76 65 6e 20 69 66 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 75 | ed.even.if.the.authentication.su |
| 10e960 | 63 63 65 65 64 73 2c 20 74 68 65 20 75 73 65 72 20 68 61 73 20 74 6f 20 74 65 72 6d 69 6e 61 74 | cceeds,.the.user.has.to.terminat |
| 10e980 | 65 20 69 74 73 20 66 69 72 73 74 20 73 65 73 73 69 6f 6e 20 61 6e 64 20 63 61 6e 20 74 68 65 6e | e.its.first.session.and.can.then |
| 10e9a0 | 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 67 61 69 6e 2e 00 50 65 72 20 64 65 66 61 75 | .authentication.again..Per.defau |
| 10e9c0 | 6c 74 2c 20 69 6e 74 65 72 66 61 63 65 73 20 75 73 65 64 20 69 6e 20 61 20 6c 6f 61 64 20 62 61 | lt,.interfaces.used.in.a.load.ba |
| 10e9e0 | 6c 61 6e 63 69 6e 67 20 70 6f 6f 6c 20 72 65 70 6c 61 63 65 20 74 68 65 20 73 6f 75 72 63 65 20 | lancing.pool.replace.the.source. |
| 10ea00 | 49 50 20 6f 66 20 65 61 63 68 20 6f 75 74 67 6f 69 6e 67 20 70 61 63 6b 65 74 20 77 69 74 68 20 | IP.of.each.outgoing.packet.with. |
| 10ea20 | 69 74 73 20 6f 77 6e 20 61 64 64 72 65 73 73 20 74 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 72 | its.own.address.to.ensure.that.r |
| 10ea40 | 65 70 6c 69 65 73 20 61 72 72 69 76 65 20 6f 6e 20 74 68 65 20 73 61 6d 65 20 69 6e 74 65 72 66 | eplies.arrive.on.the.same.interf |
| 10ea60 | 61 63 65 2e 20 54 68 69 73 20 77 6f 72 6b 73 20 74 68 72 6f 75 67 68 20 61 75 74 6f 6d 61 74 69 | ace..This.works.through.automati |
| 10ea80 | 63 61 6c 6c 79 20 67 65 6e 65 72 61 74 65 64 20 73 6f 75 72 63 65 20 4e 41 54 20 28 53 4e 41 54 | cally.generated.source.NAT.(SNAT |
| 10eaa0 | 29 20 72 75 6c 65 73 2c 20 74 68 65 73 65 20 72 75 6c 65 73 20 61 72 65 20 6f 6e 6c 79 20 61 70 | ).rules,.these.rules.are.only.ap |
| 10eac0 | 70 6c 69 65 64 20 74 6f 20 62 61 6c 61 6e 63 65 64 20 74 72 61 66 66 69 63 2e 20 49 6e 20 63 61 | plied.to.balanced.traffic..In.ca |
| 10eae0 | 73 65 73 20 77 68 65 72 65 20 74 68 69 73 20 62 65 68 61 76 69 6f 75 72 20 69 73 20 6e 6f 74 20 | ses.where.this.behaviour.is.not. |
| 10eb00 | 64 65 73 69 72 65 64 2c 20 74 68 65 20 61 75 74 6f 6d 61 74 69 63 20 67 65 6e 65 72 61 74 69 6f | desired,.the.automatic.generatio |
| 10eb20 | 6e 20 6f 66 20 53 4e 41 54 20 72 75 6c 65 73 20 63 61 6e 20 62 65 20 64 69 73 61 62 6c 65 64 3a | n.of.SNAT.rules.can.be.disabled: |
| 10eb40 | 00 50 65 72 66 6f 72 6d 20 4e 41 54 20 6c 6f 6f 6b 75 70 20 62 65 66 6f 72 65 20 61 70 70 6c 79 | .Perform.NAT.lookup.before.apply |
| 10eb60 | 69 6e 67 20 66 6c 6f 77 2d 69 73 6f 6c 61 74 69 6f 6e 20 72 75 6c 65 73 2e 00 50 65 72 66 6f 72 | ing.flow-isolation.rules..Perfor |
| 10eb80 | 6d 61 6e 63 65 00 50 65 72 69 6f 64 69 63 61 6c 6c 79 2c 20 61 20 68 65 6c 6c 6f 20 70 61 63 6b | mance.Periodically,.a.hello.pack |
| 10eba0 | 65 74 20 69 73 20 73 65 6e 74 20 6f 75 74 20 62 79 20 74 68 65 20 52 6f 6f 74 20 42 72 69 64 67 | et.is.sent.out.by.the.Root.Bridg |
| 10ebc0 | 65 20 61 6e 64 20 74 68 65 20 44 65 73 69 67 6e 61 74 65 64 20 42 72 69 64 67 65 73 2e 20 48 65 | e.and.the.Designated.Bridges..He |
| 10ebe0 | 6c 6c 6f 20 70 61 63 6b 65 74 73 20 61 72 65 20 75 73 65 64 20 74 6f 20 63 6f 6d 6d 75 6e 69 63 | llo.packets.are.used.to.communic |
| 10ec00 | 61 74 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 74 68 65 20 74 6f 70 6f 6c 6f | ate.information.about.the.topolo |
| 10ec20 | 67 79 20 74 68 72 6f 75 67 68 6f 75 74 20 74 68 65 20 65 6e 74 69 72 65 20 42 72 69 64 67 65 64 | gy.throughout.the.entire.Bridged |
| 10ec40 | 20 4c 6f 63 61 6c 20 41 72 65 61 20 4e 65 74 77 6f 72 6b 2e 00 50 69 6e 67 20 63 6f 6d 6d 61 6e | .Local.Area.Network..Ping.comman |
| 10ec60 | 64 20 63 61 6e 20 62 65 20 69 6e 74 65 72 72 75 70 74 65 64 20 61 74 20 61 6e 79 20 67 69 76 65 | d.can.be.interrupted.at.any.give |
| 10ec80 | 6e 20 74 69 6d 65 20 75 73 69 6e 67 20 60 60 3c 43 74 72 6c 3e 2b 63 60 60 2e 20 41 20 62 72 69 | n.time.using.``<Ctrl>+c``..A.bri |
| 10eca0 | 65 66 20 73 74 61 74 69 73 74 69 63 20 69 73 20 73 68 6f 77 6e 20 61 66 74 65 72 77 61 72 64 73 | ef.statistic.is.shown.afterwards |
| 10ecc0 | 2e 00 50 69 6e 67 20 75 73 65 73 20 49 43 4d 50 20 70 72 6f 74 6f 63 6f 6c 27 73 20 6d 61 6e 64 | ..Ping.uses.ICMP.protocol's.mand |
| 10ece0 | 61 74 6f 72 79 20 45 43 48 4f 5f 52 45 51 55 45 53 54 20 64 61 74 61 67 72 61 6d 20 74 6f 20 65 | atory.ECHO_REQUEST.datagram.to.e |
| 10ed00 | 6c 69 63 69 74 20 61 6e 20 49 43 4d 50 20 45 43 48 4f 5f 52 45 53 50 4f 4e 53 45 20 66 72 6f 6d | licit.an.ICMP.ECHO_RESPONSE.from |
| 10ed20 | 20 61 20 68 6f 73 74 20 6f 72 20 67 61 74 65 77 61 79 2e 20 45 43 48 4f 5f 52 45 51 55 45 53 54 | .a.host.or.gateway..ECHO_REQUEST |
| 10ed40 | 20 64 61 74 61 67 72 61 6d 73 20 28 70 69 6e 67 73 29 20 77 69 6c 6c 20 68 61 76 65 20 61 6e 20 | .datagrams.(pings).will.have.an. |
| 10ed60 | 49 50 20 61 6e 64 20 49 43 4d 50 20 68 65 61 64 65 72 2c 20 66 6f 6c 6c 6f 77 65 64 20 62 79 20 | IP.and.ICMP.header,.followed.by. |
| 10ed80 | 22 73 74 72 75 63 74 20 74 69 6d 65 76 61 6c 22 20 61 6e 64 20 61 6e 20 61 72 62 69 74 72 61 72 | "struct.timeval".and.an.arbitrar |
| 10eda0 | 79 20 6e 75 6d 62 65 72 20 6f 66 20 70 61 64 20 62 79 74 65 73 20 75 73 65 64 20 74 6f 20 66 69 | y.number.of.pad.bytes.used.to.fi |
| 10edc0 | 6c 6c 20 6f 75 74 20 74 68 65 20 70 61 63 6b 65 74 2e 00 50 69 6e 67 69 6e 67 20 28 49 50 76 36 | ll.out.the.packet..Pinging.(IPv6 |
| 10ede0 | 29 20 74 68 65 20 6f 74 68 65 72 20 68 6f 73 74 20 61 6e 64 20 69 6e 74 65 72 63 65 70 74 69 6e | ).the.other.host.and.interceptin |
| 10ee00 | 67 20 74 68 65 20 74 72 61 66 66 69 63 20 69 6e 20 60 60 65 74 68 31 60 60 20 77 69 6c 6c 20 73 | g.the.traffic.in.``eth1``.will.s |
| 10ee20 | 68 6f 77 20 79 6f 75 20 74 68 65 20 63 6f 6e 74 65 6e 74 20 69 73 20 65 6e 63 72 79 70 74 65 64 | how.you.the.content.is.encrypted |
| 10ee40 | 2e 00 50 6c 61 63 65 20 69 6e 74 65 72 66 61 63 65 20 69 6e 20 67 69 76 65 6e 20 56 52 46 20 69 | ..Place.interface.in.given.VRF.i |
| 10ee60 | 6e 73 74 61 6e 63 65 2e 00 50 6c 61 79 20 61 6e 20 61 75 64 69 62 6c 65 20 62 65 65 70 20 74 6f | nstance..Play.an.audible.beep.to |
| 10ee80 | 20 74 68 65 20 73 79 73 74 65 6d 20 73 70 65 61 6b 65 72 20 77 68 65 6e 20 73 79 73 74 65 6d 20 | .the.system.speaker.when.system. |
| 10eea0 | 69 73 20 72 65 61 64 79 2e 00 50 6c 65 61 73 65 20 62 65 20 61 77 61 72 65 2c 20 64 75 65 20 74 | is.ready..Please.be.aware,.due.t |
| 10eec0 | 6f 20 61 6e 20 75 70 73 74 72 65 61 6d 20 62 75 67 2c 20 63 6f 6e 66 69 67 20 63 68 61 6e 67 65 | o.an.upstream.bug,.config.change |
| 10eee0 | 73 2f 63 6f 6d 6d 69 74 73 20 77 69 6c 6c 20 72 65 73 74 61 72 74 20 74 68 65 20 70 70 70 20 64 | s/commits.will.restart.the.ppp.d |
| 10ef00 | 61 65 6d 6f 6e 20 61 6e 64 20 77 69 6c 6c 20 72 65 73 65 74 20 65 78 69 73 74 69 6e 67 20 49 50 | aemon.and.will.reset.existing.IP |
| 10ef20 | 6f 45 20 73 65 73 73 69 6f 6e 73 2c 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 62 65 63 6f 6d 65 20 | oE.sessions,.in.order.to.become. |
| 10ef40 | 65 66 66 65 63 74 69 76 65 2e 00 50 6c 65 61 73 65 20 62 65 20 61 77 61 72 65 2c 20 64 75 65 20 | effective..Please.be.aware,.due. |
| 10ef60 | 74 6f 20 61 6e 20 75 70 73 74 72 65 61 6d 20 62 75 67 2c 20 63 6f 6e 66 69 67 20 63 68 61 6e 67 | to.an.upstream.bug,.config.chang |
| 10ef80 | 65 73 2f 63 6f 6d 6d 69 74 73 20 77 69 6c 6c 20 72 65 73 74 61 72 74 20 74 68 65 20 70 70 70 20 | es/commits.will.restart.the.ppp. |
| 10efa0 | 64 61 65 6d 6f 6e 20 61 6e 64 20 77 69 6c 6c 20 72 65 73 65 74 20 65 78 69 73 74 69 6e 67 20 50 | daemon.and.will.reset.existing.P |
| 10efc0 | 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 66 72 6f 6d 20 63 6f 6e 6e 65 63 74 65 64 20 | PPoE.connections.from.connected. |
| 10efe0 | 75 73 65 72 73 2c 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 62 65 63 6f 6d 65 20 65 66 66 65 63 74 | users,.in.order.to.become.effect |
| 10f000 | 69 76 65 2e 00 50 6c 65 61 73 65 20 72 65 66 65 72 20 74 6f 20 74 68 65 20 3a 72 65 66 3a 60 69 | ive..Please.refer.to.the.:ref:`i |
| 10f020 | 70 73 65 63 60 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 69 6e 64 69 | psec`.documentation.for.the.indi |
| 10f040 | 76 69 64 75 61 6c 20 49 50 53 65 63 20 72 65 6c 61 74 65 64 20 6f 70 74 69 6f 6e 73 2e 00 50 6c | vidual.IPSec.related.options..Pl |
| 10f060 | 65 61 73 65 20 72 65 66 65 72 20 74 6f 20 74 68 65 20 3a 72 65 66 3a 60 74 75 6e 6e 65 6c 2d 69 | ease.refer.to.the.:ref:`tunnel-i |
| 10f080 | 6e 74 65 72 66 61 63 65 60 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 | nterface`.documentation.for.the. |
| 10f0a0 | 69 6e 64 69 76 69 64 75 61 6c 20 74 75 6e 6e 65 6c 20 72 65 6c 61 74 65 64 20 6f 70 74 69 6f 6e | individual.tunnel.related.option |
| 10f0c0 | 73 2e 00 50 6c 65 61 73 65 20 73 65 65 20 74 68 65 20 3a 72 65 66 3a 60 64 68 63 70 2d 64 6e 73 | s..Please.see.the.:ref:`dhcp-dns |
| 10f0e0 | 2d 71 75 69 63 6b 2d 73 74 61 72 74 60 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 50 6c 65 | -quick-start`.configuration..Ple |
| 10f100 | 61 73 65 20 74 61 6b 65 20 61 20 6c 6f 6f 6b 20 61 74 20 74 68 65 20 3a 72 65 66 3a 60 76 79 6f | ase.take.a.look.at.the.:ref:`vyo |
| 10f120 | 73 61 70 69 60 20 70 61 67 65 20 66 6f 72 20 61 6e 20 64 65 74 61 69 6c 65 64 20 68 6f 77 2d 74 | sapi`.page.for.an.detailed.how-t |
| 10f140 | 6f 2e 00 50 6c 65 61 73 65 20 74 61 6b 65 20 61 20 6c 6f 6f 6b 20 61 74 20 74 68 65 20 43 6f 6e | o..Please.take.a.look.at.the.Con |
| 10f160 | 74 72 69 62 75 74 69 6e 67 20 47 75 69 64 65 20 66 6f 72 20 6f 75 72 20 3a 72 65 66 3a 60 64 6f | tributing.Guide.for.our.:ref:`do |
| 10f180 | 63 75 6d 65 6e 74 61 74 69 6f 6e 60 2e 00 50 6c 65 61 73 65 20 74 61 6b 65 20 61 20 6c 6f 6f 6b | cumentation`..Please.take.a.look |
| 10f1a0 | 20 69 6e 20 74 68 65 20 41 75 74 6f 6d 61 74 69 6f 6e 20 73 65 63 74 69 6f 6e 20 74 6f 20 66 69 | .in.the.Automation.section.to.fi |
| 10f1c0 | 6e 64 20 73 6f 6d 65 20 75 73 65 66 75 6c 6c 20 45 78 61 6d 70 6c 65 73 2e 00 50 6c 65 61 73 65 | nd.some.usefull.Examples..Please |
| 10f1e0 | 2c 20 72 65 66 65 72 20 74 6f 20 61 70 70 72 6f 70 69 61 74 65 20 73 65 63 74 69 6f 6e 20 66 6f | ,.refer.to.appropiate.section.fo |
| 10f200 | 72 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 66 69 72 65 77 61 6c | r.more.information.about.firewal |
| 10f220 | 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 50 6c 65 61 73 65 2c 20 72 65 66 65 72 20 74 | l.configuration:.Please,.refer.t |
| 10f240 | 6f 20 61 70 70 72 6f 70 72 69 61 74 65 20 73 65 63 74 69 6f 6e 20 66 6f 72 20 6d 6f 72 65 20 69 | o.appropriate.section.for.more.i |
| 10f260 | 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 | nformation.about.firewall.config |
| 10f280 | 75 72 61 74 69 6f 6e 3a 00 50 6f 6c 69 63 69 65 73 20 61 72 65 20 75 73 65 64 20 66 6f 72 20 66 | uration:.Policies.are.used.for.f |
| 10f2a0 | 69 6c 74 65 72 69 6e 67 20 61 6e 64 20 74 72 61 66 66 69 63 20 6d 61 6e 61 67 65 6d 65 6e 74 2e | iltering.and.traffic.management. |
| 10f2c0 | 20 57 69 74 68 20 70 6f 6c 69 63 69 65 73 2c 20 6e 65 74 77 6f 72 6b 20 61 64 6d 69 6e 69 73 74 | .With.policies,.network.administ |
| 10f2e0 | 72 61 74 6f 72 73 20 63 6f 75 6c 64 20 66 69 6c 74 65 72 20 61 6e 64 20 74 72 65 61 74 20 74 72 | rators.could.filter.and.treat.tr |
| 10f300 | 61 66 66 69 63 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 74 68 65 69 72 20 6e 65 65 64 73 2e 00 | affic.according.to.their.needs.. |
| 10f320 | 50 6f 6c 69 63 69 65 73 20 66 6f 72 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 63 20 61 72 65 20 64 | Policies.for.local.traffic.are.d |
| 10f340 | 65 66 69 6e 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 2e 00 50 6f 6c 69 63 69 65 73 | efined.in.this.section..Policies |
| 10f360 | 2c 20 69 6e 20 56 79 4f 53 2c 20 61 72 65 20 69 6d 70 6c 65 6d 65 6e 74 65 64 20 75 73 69 6e 67 | ,.in.VyOS,.are.implemented.using |
| 10f380 | 20 46 52 52 20 66 69 6c 74 65 72 69 6e 67 20 61 6e 64 20 72 6f 75 74 65 20 6d 61 70 73 2e 20 44 | .FRR.filtering.and.route.maps..D |
| 10f3a0 | 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 46 52 52 20 63 6f 75 6c 64 | etailed.information.of.FRR.could |
| 10f3c0 | 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 68 74 74 70 3a 2f 2f 64 6f 63 73 2e 66 72 72 6f 75 74 69 | .be.found.in.http://docs.frrouti |
| 10f3e0 | 6e 67 2e 6f 72 67 2f 00 50 6f 6c 69 63 79 00 50 6f 6c 69 63 79 20 53 65 63 74 69 6f 6e 73 00 50 | ng.org/.Policy.Policy.Sections.P |
| 10f400 | 6f 6c 69 63 79 20 66 6f 72 20 63 68 65 63 6b 69 6e 67 20 74 61 72 67 65 74 73 00 50 6f 6c 69 63 | olicy.for.checking.targets.Polic |
| 10f420 | 79 20 74 6f 20 74 72 61 63 6b 20 70 72 65 76 69 6f 75 73 6c 79 20 65 73 74 61 62 6c 69 73 68 65 | y.to.track.previously.establishe |
| 10f440 | 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 50 6f 6c 69 63 79 2d 42 61 73 65 64 20 52 6f 75 74 | d.connections..Policy-Based.Rout |
| 10f460 | 69 6e 67 20 77 69 74 68 20 6d 75 6c 74 69 70 6c 65 20 49 53 50 20 75 70 6c 69 6e 6b 73 20 28 73 | ing.with.multiple.ISP.uplinks.(s |
| 10f480 | 6f 75 72 63 65 20 2e 2f 64 72 61 77 2e 69 6f 2f 70 62 72 5f 65 78 61 6d 70 6c 65 5f 31 2e 64 72 | ource../draw.io/pbr_example_1.dr |
| 10f4a0 | 61 77 69 6f 29 00 50 6f 72 74 20 47 72 6f 75 70 73 00 50 6f 72 74 20 4d 69 72 72 6f 72 20 28 53 | awio).Port.Groups.Port.Mirror.(S |
| 10f4c0 | 50 41 4e 29 00 50 6f 72 74 20 63 61 6c 63 75 6c 61 74 69 6f 6e 00 50 6f 72 74 20 66 6f 72 20 44 | PAN).Port.calculation.Port.for.D |
| 10f4e0 | 79 6e 61 6d 69 63 20 41 75 74 68 6f 72 69 7a 61 74 69 6f 6e 20 45 78 74 65 6e 73 69 6f 6e 20 73 | ynamic.Authorization.Extension.s |
| 10f500 | 65 72 76 65 72 20 28 44 4d 2f 43 6f 41 29 00 50 6f 72 74 20 67 72 6f 75 70 73 20 61 72 65 20 75 | erver.(DM/CoA).Port.groups.are.u |
| 10f520 | 73 65 66 75 6c 20 77 68 65 6e 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 20 72 75 | seful.when.you.need.to.create.ru |
| 10f540 | 6c 65 73 20 74 68 61 74 20 61 70 70 6c 79 20 74 6f 20 73 70 65 63 69 66 69 63 20 70 6f 72 74 73 | les.that.apply.to.specific.ports |
| 10f560 | 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 69 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 63 72 | ..For.example,.if.you.want.to.cr |
| 10f580 | 65 61 74 65 20 61 20 72 75 6c 65 20 74 68 61 74 20 6d 6f 6e 69 74 6f 72 73 20 74 72 61 66 66 69 | eate.a.rule.that.monitors.traffi |
| 10f5a0 | 63 20 64 69 72 65 63 74 65 64 20 74 6f 20 61 20 73 70 65 63 69 66 69 63 20 70 6f 72 74 20 6f 72 | c.directed.to.a.specific.port.or |
| 10f5c0 | 20 67 72 6f 75 70 20 6f 66 20 70 6f 72 74 73 2c 20 79 6f 75 20 63 61 6e 20 75 73 65 20 74 68 65 | .group.of.ports,.you.can.use.the |
| 10f5e0 | 20 67 72 6f 75 70 20 6e 61 6d 65 20 69 6e 73 74 65 61 64 20 6f 66 20 74 68 65 20 61 63 74 75 61 | .group.name.instead.of.the.actua |
| 10f600 | 6c 20 70 6f 72 74 2e 20 54 68 69 73 20 61 6c 73 6f 20 73 69 6d 70 6c 69 66 69 65 73 20 72 75 6c | l.port..This.also.simplifies.rul |
| 10f620 | 65 20 6d 61 6e 61 67 65 6d 65 6e 74 20 61 6e 64 20 6d 61 6b 65 73 20 74 68 65 20 63 6f 6e 66 69 | e.management.and.makes.the.confi |
| 10f640 | 67 75 72 61 74 69 6f 6e 20 6d 6f 72 65 20 66 6c 65 78 69 62 6c 65 2e 00 50 6f 72 74 20 6b 6e 6f | guration.more.flexible..Port.kno |
| 10f660 | 63 6b 69 6e 67 20 65 78 61 6d 70 6c 65 00 50 6f 72 74 20 6e 61 6d 65 20 61 6e 64 20 64 65 73 63 | cking.example.Port.name.and.desc |
| 10f680 | 72 69 70 74 69 6f 6e 00 50 6f 72 74 20 6e 75 6d 62 65 72 20 75 73 65 64 20 62 79 20 63 6f 6e 6e | ription.Port.number.used.by.conn |
| 10f6a0 | 65 63 74 69 6f 6e 2c 20 64 65 66 61 75 6c 74 20 69 73 20 60 60 39 32 37 33 60 60 00 50 6f 72 74 | ection,.default.is.``9273``.Port |
| 10f6c0 | 20 6e 75 6d 62 65 72 20 75 73 65 64 20 62 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 50 6f 72 74 | .number.used.by.connection..Port |
| 10f6e0 | 20 74 6f 20 6c 69 73 74 65 6e 20 66 6f 72 20 48 54 54 50 53 20 72 65 71 75 65 73 74 73 3b 20 64 | .to.listen.for.HTTPS.requests;.d |
| 10f700 | 65 66 61 75 6c 74 20 34 34 33 00 50 6f 72 74 69 6f 6e 73 20 6f 66 20 74 68 65 20 6e 65 74 77 6f | efault.443.Portions.of.the.netwo |
| 10f720 | 72 6b 20 77 68 69 63 68 20 61 72 65 20 56 4c 41 4e 2d 61 77 61 72 65 20 28 69 2e 65 2e 2c 20 49 | rk.which.are.VLAN-aware.(i.e.,.I |
| 10f740 | 45 45 45 20 38 30 32 2e 31 71 5f 20 63 6f 6e 66 6f 72 6d 61 6e 74 29 20 63 61 6e 20 69 6e 63 6c | EEE.802.1q_.conformant).can.incl |
| 10f760 | 75 64 65 20 56 4c 41 4e 20 74 61 67 73 2e 20 57 68 65 6e 20 61 20 66 72 61 6d 65 20 65 6e 74 65 | ude.VLAN.tags..When.a.frame.ente |
| 10f780 | 72 73 20 74 68 65 20 56 4c 41 4e 2d 61 77 61 72 65 20 70 6f 72 74 69 6f 6e 20 6f 66 20 74 68 65 | rs.the.VLAN-aware.portion.of.the |
| 10f7a0 | 20 6e 65 74 77 6f 72 6b 2c 20 61 20 74 61 67 20 69 73 20 61 64 64 65 64 20 74 6f 20 72 65 70 72 | .network,.a.tag.is.added.to.repr |
| 10f7c0 | 65 73 65 6e 74 20 74 68 65 20 56 4c 41 4e 20 6d 65 6d 62 65 72 73 68 69 70 2e 20 45 61 63 68 20 | esent.the.VLAN.membership..Each. |
| 10f7e0 | 66 72 61 6d 65 20 6d 75 73 74 20 62 65 20 64 69 73 74 69 6e 67 75 69 73 68 61 62 6c 65 20 61 73 | frame.must.be.distinguishable.as |
| 10f800 | 20 62 65 69 6e 67 20 77 69 74 68 69 6e 20 65 78 61 63 74 6c 79 20 6f 6e 65 20 56 4c 41 4e 2e 20 | .being.within.exactly.one.VLAN.. |
| 10f820 | 41 20 66 72 61 6d 65 20 69 6e 20 74 68 65 20 56 4c 41 4e 2d 61 77 61 72 65 20 70 6f 72 74 69 6f | A.frame.in.the.VLAN-aware.portio |
| 10f840 | 6e 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 74 68 61 74 20 64 6f 65 73 20 6e 6f 74 20 63 | n.of.the.network.that.does.not.c |
| 10f860 | 6f 6e 74 61 69 6e 20 61 20 56 4c 41 4e 20 74 61 67 20 69 73 20 61 73 73 75 6d 65 64 20 74 6f 20 | ontain.a.VLAN.tag.is.assumed.to. |
| 10f880 | 62 65 20 66 6c 6f 77 69 6e 67 20 6f 6e 20 74 68 65 20 6e 61 74 69 76 65 20 56 4c 41 4e 2e 00 50 | be.flowing.on.the.native.VLAN..P |
| 10f8a0 | 72 65 2d 73 68 61 72 65 64 20 6b 65 79 73 00 50 72 65 63 65 64 65 6e 63 65 00 50 72 65 65 6d 70 | re-shared.keys.Precedence.Preemp |
| 10f8c0 | 74 69 6f 6e 00 50 72 65 66 65 72 20 61 20 73 70 65 63 69 66 69 63 20 72 6f 75 74 69 6e 67 20 70 | tion.Prefer.a.specific.routing.p |
| 10f8e0 | 72 6f 74 6f 63 6f 6c 20 72 6f 75 74 65 73 20 6f 76 65 72 20 61 6e 6f 74 68 65 72 20 72 6f 75 74 | rotocol.routes.over.another.rout |
| 10f900 | 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 74 68 65 20 73 61 6d 65 | ing.protocol.running.on.the.same |
| 10f920 | 20 72 6f 75 74 65 72 2e 00 50 72 65 66 65 72 20 68 69 67 68 65 72 20 6c 6f 63 61 6c 20 70 72 65 | .router..Prefer.higher.local.pre |
| 10f940 | 66 65 72 65 6e 63 65 20 72 6f 75 74 65 73 20 74 6f 20 6c 6f 77 65 72 2e 00 50 72 65 66 65 72 20 | ference.routes.to.lower..Prefer. |
| 10f960 | 68 69 67 68 65 72 20 6c 6f 63 61 6c 20 77 65 69 67 68 74 20 72 6f 75 74 65 73 20 74 6f 20 6c 6f | higher.local.weight.routes.to.lo |
| 10f980 | 77 65 72 20 72 6f 75 74 65 73 2e 00 50 72 65 66 65 72 20 6c 6f 63 61 6c 20 72 6f 75 74 65 73 20 | wer.routes..Prefer.local.routes. |
| 10f9a0 | 28 73 74 61 74 69 63 73 2c 20 61 67 67 72 65 67 61 74 65 73 2c 20 72 65 64 69 73 74 72 69 62 75 | (statics,.aggregates,.redistribu |
| 10f9c0 | 74 65 64 29 20 74 6f 20 72 65 63 65 69 76 65 64 20 72 6f 75 74 65 73 2e 00 50 72 65 66 65 72 20 | ted).to.received.routes..Prefer. |
| 10f9e0 | 73 68 6f 72 74 65 73 74 20 68 6f 70 2d 63 6f 75 6e 74 20 41 53 5f 50 41 54 48 73 2e 00 50 72 65 | shortest.hop-count.AS_PATHs..Pre |
| 10fa00 | 66 65 72 20 74 68 65 20 6c 6f 77 65 73 74 20 6f 72 69 67 69 6e 20 74 79 70 65 20 72 6f 75 74 65 | fer.the.lowest.origin.type.route |
| 10fa20 | 2e 20 54 68 61 74 20 69 73 2c 20 70 72 65 66 65 72 20 49 47 50 20 6f 72 69 67 69 6e 20 72 6f 75 | ..That.is,.prefer.IGP.origin.rou |
| 10fa40 | 74 65 73 20 74 6f 20 45 47 50 2c 20 74 6f 20 49 6e 63 6f 6d 70 6c 65 74 65 20 72 6f 75 74 65 73 | tes.to.EGP,.to.Incomplete.routes |
| 10fa60 | 2e 00 50 72 65 66 65 72 20 74 68 65 20 72 6f 75 74 65 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d | ..Prefer.the.route.received.from |
| 10fa80 | 20 61 6e 20 65 78 74 65 72 6e 61 6c 2c 20 65 42 47 50 20 70 65 65 72 20 6f 76 65 72 20 72 6f 75 | .an.external,.eBGP.peer.over.rou |
| 10faa0 | 74 65 73 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 6f 74 68 65 72 20 74 79 70 65 73 20 6f 66 | tes.received.from.other.types.of |
| 10fac0 | 20 70 65 65 72 73 2e 00 50 72 65 66 65 72 20 74 68 65 20 72 6f 75 74 65 20 72 65 63 65 69 76 65 | .peers..Prefer.the.route.receive |
| 10fae0 | 64 20 66 72 6f 6d 20 74 68 65 20 70 65 65 72 20 77 69 74 68 20 74 68 65 20 68 69 67 68 65 72 20 | d.from.the.peer.with.the.higher. |
| 10fb00 | 74 72 61 6e 73 70 6f 72 74 20 6c 61 79 65 72 20 61 64 64 72 65 73 73 2c 20 61 73 20 61 20 6c 61 | transport.layer.address,.as.a.la |
| 10fb20 | 73 74 2d 72 65 73 6f 72 74 20 74 69 65 2d 62 72 65 61 6b 65 72 2e 00 50 72 65 66 65 72 20 74 68 | st-resort.tie-breaker..Prefer.th |
| 10fb40 | 65 20 72 6f 75 74 65 20 77 69 74 68 20 74 68 65 20 6c 6f 77 65 72 20 49 47 50 20 63 6f 73 74 2e | e.route.with.the.lower.IGP.cost. |
| 10fb60 | 00 50 72 65 66 65 72 20 74 68 65 20 72 6f 75 74 65 20 77 69 74 68 20 74 68 65 20 6c 6f 77 65 73 | .Prefer.the.route.with.the.lowes |
| 10fb80 | 74 20 60 72 6f 75 74 65 72 2d 49 44 60 2e 20 49 66 20 74 68 65 20 72 6f 75 74 65 20 68 61 73 20 | t.`router-ID`..If.the.route.has. |
| 10fba0 | 61 6e 20 60 4f 52 49 47 49 4e 41 54 4f 52 5f 49 44 60 20 61 74 74 72 69 62 75 74 65 2c 20 74 68 | an.`ORIGINATOR_ID`.attribute,.th |
| 10fbc0 | 72 6f 75 67 68 20 69 42 47 50 20 72 65 66 6c 65 63 74 69 6f 6e 2c 20 74 68 65 6e 20 74 68 61 74 | rough.iBGP.reflection,.then.that |
| 10fbe0 | 20 72 6f 75 74 65 72 20 49 44 20 69 73 20 75 73 65 64 2c 20 6f 74 68 65 72 77 69 73 65 20 74 68 | .router.ID.is.used,.otherwise.th |
| 10fc00 | 65 20 60 72 6f 75 74 65 72 2d 49 44 60 20 6f 66 20 74 68 65 20 70 65 65 72 20 74 68 65 20 72 6f | e.`router-ID`.of.the.peer.the.ro |
| 10fc20 | 75 74 65 20 77 61 73 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 69 73 20 75 73 65 64 2e 00 50 | ute.was.received.from.is.used..P |
| 10fc40 | 72 65 66 65 72 65 6e 63 65 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 20 64 65 | reference.associated.with.the.de |
| 10fc60 | 66 61 75 6c 74 20 72 6f 75 74 65 72 00 50 72 65 66 69 78 20 43 6f 6e 76 65 72 73 69 6f 6e 00 50 | fault.router.Prefix.Conversion.P |
| 10fc80 | 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 00 50 72 65 66 69 78 20 4c 69 73 74 20 50 6f 6c | refix.Delegation.Prefix.List.Pol |
| 10fca0 | 69 63 79 00 50 72 65 66 69 78 20 4c 69 73 74 73 00 50 72 65 66 69 78 20 63 61 6e 20 6e 6f 74 20 | icy.Prefix.Lists.Prefix.can.not. |
| 10fcc0 | 62 65 20 75 73 65 64 20 66 6f 72 20 6f 6e 2d 6c 69 6e 6b 20 64 65 74 65 72 6d 69 6e 61 74 69 6f | be.used.for.on-link.determinatio |
| 10fce0 | 6e 00 50 72 65 66 69 78 20 63 61 6e 20 6e 6f 74 20 62 65 20 75 73 65 64 20 66 6f 72 20 73 74 61 | n.Prefix.can.not.be.used.for.sta |
| 10fd00 | 74 65 6c 65 73 73 20 61 64 64 72 65 73 73 20 61 75 74 6f 2d 63 6f 6e 66 69 67 75 72 61 74 69 6f | teless.address.auto-configuratio |
| 10fd20 | 6e 00 50 72 65 66 69 78 20 66 69 6c 74 65 72 69 6e 67 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 75 | n.Prefix.filtering.can.be.done.u |
| 10fd40 | 73 69 6e 67 20 70 72 65 66 69 78 2d 6c 69 73 74 20 61 6e 64 20 70 72 65 66 69 78 2d 6c 69 73 74 | sing.prefix-list.and.prefix-list |
| 10fd60 | 36 2e 00 50 72 65 66 69 78 20 6c 65 6e 67 74 68 20 69 6e 20 69 6e 74 65 72 66 61 63 65 20 6d 75 | 6..Prefix.length.in.interface.mu |
| 10fd80 | 73 74 20 62 65 20 65 71 75 61 6c 20 6f 72 20 62 69 67 67 65 72 20 28 69 2e 65 2e 20 73 6d 61 6c | st.be.equal.or.bigger.(i.e..smal |
| 10fda0 | 6c 65 72 20 6e 65 74 77 6f 72 6b 29 20 74 68 61 6e 20 70 72 65 66 69 78 20 6c 65 6e 67 74 68 20 | ler.network).than.prefix.length. |
| 10fdc0 | 69 6e 20 6e 65 74 77 6f 72 6b 20 73 74 61 74 65 6d 65 6e 74 2e 20 46 6f 72 20 65 78 61 6d 70 6c | in.network.statement..For.exampl |
| 10fde0 | 65 20 73 74 61 74 65 6d 65 6e 74 20 61 62 6f 76 65 20 64 6f 65 73 6e 27 74 20 65 6e 61 62 6c 65 | e.statement.above.doesn't.enable |
| 10fe00 | 20 6f 73 70 66 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 61 64 64 72 65 73 73 20 | .ospf.on.interface.with.address. |
| 10fe20 | 31 39 32 2e 31 36 38 2e 31 2e 31 2f 32 33 2c 20 62 75 74 20 69 74 20 64 6f 65 73 20 6f 6e 20 69 | 192.168.1.1/23,.but.it.does.on.i |
| 10fe40 | 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 61 64 64 72 65 73 73 20 31 39 32 2e 31 36 38 2e 31 2e | nterface.with.address.192.168.1. |
| 10fe60 | 31 32 39 2f 32 35 2e 00 50 72 65 66 69 78 20 6c 69 73 74 73 20 70 72 6f 76 69 64 65 73 20 74 68 | 129/25..Prefix.lists.provides.th |
| 10fe80 | 65 20 6d 6f 73 74 20 70 6f 77 65 72 66 75 6c 20 70 72 65 66 69 78 20 62 61 73 65 64 20 66 69 6c | e.most.powerful.prefix.based.fil |
| 10fea0 | 74 65 72 69 6e 67 20 6d 65 63 68 61 6e 69 73 6d 2e 20 49 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f | tering.mechanism..In.addition.to |
| 10fec0 | 20 61 63 63 65 73 73 2d 6c 69 73 74 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 2c 20 69 70 20 70 | .access-list.functionality,.ip.p |
| 10fee0 | 72 65 66 69 78 2d 6c 69 73 74 20 68 61 73 20 70 72 65 66 69 78 20 6c 65 6e 67 74 68 20 72 61 6e | refix-list.has.prefix.length.ran |
| 10ff00 | 67 65 20 73 70 65 63 69 66 69 63 61 74 69 6f 6e 2e 00 50 72 65 66 69 78 20 74 6f 20 6d 61 74 63 | ge.specification..Prefix.to.matc |
| 10ff20 | 68 20 61 67 61 69 6e 73 74 2e 00 50 72 65 66 69 78 65 73 00 50 72 65 70 65 6e 64 20 74 68 65 20 | h.against..Prefixes.Prepend.the. |
| 10ff40 | 65 78 69 73 74 69 6e 67 20 6c 61 73 74 20 41 53 20 6e 75 6d 62 65 72 20 28 74 68 65 20 6c 65 66 | existing.last.AS.number.(the.lef |
| 10ff60 | 74 6d 6f 73 74 20 41 53 4e 29 20 74 6f 20 74 68 65 20 41 53 5f 50 41 54 48 2e 00 50 72 65 70 65 | tmost.ASN).to.the.AS_PATH..Prepe |
| 10ff80 | 6e 64 20 74 68 65 20 67 69 76 65 6e 20 73 74 72 69 6e 67 20 6f 66 20 41 53 20 6e 75 6d 62 65 72 | nd.the.given.string.of.AS.number |
| 10ffa0 | 73 20 74 6f 20 74 68 65 20 41 53 5f 50 41 54 48 20 6f 66 20 74 68 65 20 42 47 50 20 70 61 74 68 | s.to.the.AS_PATH.of.the.BGP.path |
| 10ffc0 | 27 73 20 4e 4c 52 49 2e 00 50 72 69 6e 63 69 70 6c 65 20 6f 66 20 53 4e 4d 50 20 43 6f 6d 6d 75 | 's.NLRI..Principle.of.SNMP.Commu |
| 10ffe0 | 6e 69 63 61 74 69 6f 6e 00 50 72 69 6e 74 20 61 20 73 75 6d 6d 61 72 79 20 6f 66 20 6e 65 69 67 | nication.Print.a.summary.of.neig |
| 110000 | 68 62 6f 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 66 6f 72 20 74 68 65 20 73 70 65 63 69 66 69 | hbor.connections.for.the.specifi |
| 110020 | 65 64 20 41 46 49 2f 53 41 46 49 20 63 6f 6d 62 69 6e 61 74 69 6f 6e 2e 00 50 72 69 6e 74 20 61 | ed.AFI/SAFI.combination..Print.a |
| 110040 | 63 74 69 76 65 20 49 50 56 34 20 6f 72 20 49 50 56 36 20 72 6f 75 74 65 73 20 61 64 76 65 72 74 | ctive.IPV4.or.IPV6.routes.advert |
| 110060 | 69 73 65 64 20 76 69 61 20 74 68 65 20 56 50 4e 20 53 41 46 49 2e 00 50 72 69 6e 74 20 6f 75 74 | ised.via.the.VPN.SAFI..Print.out |
| 110080 | 20 74 68 65 20 6c 69 73 74 20 6f 66 20 65 78 69 73 74 69 6e 67 20 63 72 79 70 74 6f 20 70 6f 6c | .the.list.of.existing.crypto.pol |
| 1100a0 | 69 63 69 65 73 00 50 72 69 6e 74 20 6f 75 74 20 74 68 65 20 6c 69 73 74 20 6f 66 20 65 78 69 73 | icies.Print.out.the.list.of.exis |
| 1100c0 | 74 69 6e 67 20 69 6e 2d 6b 65 72 6e 65 6c 20 63 72 79 70 74 6f 20 73 74 61 74 65 00 50 72 69 6f | ting.in-kernel.crypto.state.Prio |
| 1100e0 | 72 69 74 79 00 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 00 50 72 69 6f 72 69 74 79 20 51 75 65 | rity.Priority.Queue.Priority.Que |
| 110100 | 75 65 2c 20 61 73 20 6f 74 68 65 72 20 6e 6f 6e 2d 73 68 61 70 69 6e 67 20 70 6f 6c 69 63 69 65 | ue,.as.other.non-shaping.policie |
| 110120 | 73 2c 20 69 73 20 6f 6e 6c 79 20 75 73 65 66 75 6c 20 69 66 20 79 6f 75 72 20 6f 75 74 67 6f 69 | s,.is.only.useful.if.your.outgoi |
| 110140 | 6e 67 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 72 65 61 6c 6c 79 20 66 75 6c 6c 2e 20 49 66 20 | ng.interface.is.really.full..If. |
| 110160 | 69 74 20 69 73 20 6e 6f 74 2c 20 56 79 4f 53 20 77 69 6c 6c 20 6e 6f 74 20 6f 77 6e 20 74 68 65 | it.is.not,.VyOS.will.not.own.the |
| 110180 | 20 71 75 65 75 65 20 61 6e 64 20 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 20 77 69 6c 6c 20 68 | .queue.and.Priority.Queue.will.h |
| 1101a0 | 61 76 65 20 6e 6f 20 65 66 66 65 63 74 2e 20 49 66 20 74 68 65 72 65 20 69 73 20 62 61 6e 64 77 | ave.no.effect..If.there.is.bandw |
| 1101c0 | 69 64 74 68 20 61 76 61 69 6c 61 62 6c 65 20 6f 6e 20 74 68 65 20 70 68 79 73 69 63 61 6c 20 6c | idth.available.on.the.physical.l |
| 1101e0 | 69 6e 6b 2c 20 79 6f 75 20 63 61 6e 20 65 6d 62 65 64 5f 20 50 72 69 6f 72 69 74 79 20 51 75 65 | ink,.you.can.embed_.Priority.Que |
| 110200 | 75 65 20 69 6e 74 6f 20 61 20 63 6c 61 73 73 66 75 6c 20 73 68 61 70 69 6e 67 20 70 6f 6c 69 63 | ue.into.a.classful.shaping.polic |
| 110220 | 79 20 74 6f 20 6d 61 6b 65 20 73 75 72 65 20 69 74 20 6f 77 6e 73 20 74 68 65 20 71 75 65 75 65 | y.to.make.sure.it.owns.the.queue |
| 110240 | 2e 20 49 6e 20 74 68 61 74 20 63 61 73 65 20 70 61 63 6b 65 74 73 20 63 61 6e 20 62 65 20 70 72 | ..In.that.case.packets.can.be.pr |
| 110260 | 69 6f 72 69 74 69 7a 65 64 20 62 61 73 65 64 20 6f 6e 20 44 53 43 50 2e 00 50 72 69 76 61 74 65 | ioritized.based.on.DSCP..Private |
| 110280 | 20 56 4c 41 4e 20 70 72 6f 78 79 20 61 72 70 2e 20 42 61 73 69 63 61 6c 6c 79 20 61 6c 6c 6f 77 | .VLAN.proxy.arp..Basically.allow |
| 1102a0 | 20 70 72 6f 78 79 20 61 72 70 20 72 65 70 6c 69 65 73 20 62 61 63 6b 20 74 6f 20 74 68 65 20 73 | .proxy.arp.replies.back.to.the.s |
| 1102c0 | 61 6d 65 20 69 6e 74 65 72 66 61 63 65 20 28 66 72 6f 6d 20 77 68 69 63 68 20 74 68 65 20 41 52 | ame.interface.(from.which.the.AR |
| 1102e0 | 50 20 72 65 71 75 65 73 74 2f 73 6f 6c 69 63 69 74 61 74 69 6f 6e 20 77 61 73 20 72 65 63 65 69 | P.request/solicitation.was.recei |
| 110300 | 76 65 64 29 2e 00 50 72 6f 66 69 6c 65 20 67 65 6e 65 72 61 74 69 6f 6e 20 68 61 70 70 65 6e 73 | ved)..Profile.generation.happens |
| 110320 | 20 66 72 6f 6d 20 74 68 65 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 6c 65 76 65 6c 20 61 6e 64 20 | .from.the.operational.level.and. |
| 110340 | 69 73 20 61 73 20 73 69 6d 70 6c 65 20 61 73 20 69 73 73 75 69 6e 67 20 74 68 65 20 66 6f 6c 6c | is.as.simple.as.issuing.the.foll |
| 110360 | 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 72 65 61 74 65 20 61 20 70 72 6f 66 69 6c | owing.command.to.create.a.profil |
| 110380 | 65 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 49 4b 45 76 32 20 61 63 63 65 73 73 | e.to.connect.to.the.IKEv2.access |
| 1103a0 | 20 73 65 72 76 65 72 20 61 74 20 60 60 76 70 6e 2e 76 79 6f 73 2e 6e 65 74 60 60 20 77 69 74 68 | .server.at.``vpn.vyos.net``.with |
| 1103c0 | 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 60 60 72 77 60 | .the.configuration.for.the.``rw` |
| 1103e0 | 60 20 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 67 72 6f 75 70 | `.remote-access.connection.group |
| 110400 | 2e 00 50 72 6f 6d 65 74 68 65 75 73 2d 63 6c 69 65 6e 74 00 50 72 6f 74 65 63 74 73 20 68 6f 73 | ..Prometheus-client.Protects.hos |
| 110420 | 74 20 66 72 6f 6d 20 62 72 75 74 65 2d 66 6f 72 63 65 20 61 74 74 61 63 6b 73 20 61 67 61 69 6e | t.from.brute-force.attacks.again |
| 110440 | 73 74 20 53 53 48 2e 20 4c 6f 67 20 6d 65 73 73 61 67 65 73 20 61 72 65 20 70 61 72 73 65 64 2c | st.SSH..Log.messages.are.parsed, |
| 110460 | 20 6c 69 6e 65 2d 62 79 2d 6c 69 6e 65 2c 20 66 6f 72 20 72 65 63 6f 67 6e 69 7a 65 64 20 70 61 | .line-by-line,.for.recognized.pa |
| 110480 | 74 74 65 72 6e 73 2e 20 49 66 20 61 6e 20 61 74 74 61 63 6b 2c 20 73 75 63 68 20 61 73 20 73 65 | tterns..If.an.attack,.such.as.se |
| 1104a0 | 76 65 72 61 6c 20 6c 6f 67 69 6e 20 66 61 69 6c 75 72 65 73 20 77 69 74 68 69 6e 20 61 20 66 65 | veral.login.failures.within.a.fe |
| 1104c0 | 77 20 73 65 63 6f 6e 64 73 2c 20 69 73 20 64 65 74 65 63 74 65 64 2c 20 74 68 65 20 6f 66 66 65 | w.seconds,.is.detected,.the.offe |
| 1104e0 | 6e 64 69 6e 67 20 49 50 20 69 73 20 62 6c 6f 63 6b 65 64 2e 20 4f 66 66 65 6e 64 65 72 73 20 61 | nding.IP.is.blocked..Offenders.a |
| 110500 | 72 65 20 75 6e 62 6c 6f 63 6b 65 64 20 61 66 74 65 72 20 61 20 73 65 74 20 69 6e 74 65 72 76 61 | re.unblocked.after.a.set.interva |
| 110520 | 6c 2e 00 50 72 6f 74 6f 63 6f 6c 20 66 6f 72 20 77 68 69 63 68 20 65 78 70 65 63 74 20 65 6e 74 | l..Protocol.for.which.expect.ent |
| 110540 | 72 69 65 73 20 6e 65 65 64 20 74 6f 20 62 65 20 73 79 6e 63 68 72 6f 6e 69 7a 65 64 2e 00 50 72 | ries.need.to.be.synchronized..Pr |
| 110560 | 6f 74 6f 63 6f 6c 73 00 50 72 6f 74 6f 63 6f 6c 73 20 61 72 65 3a 20 74 63 70 2c 20 73 63 74 70 | otocols.Protocols.are:.tcp,.sctp |
| 110580 | 2c 20 64 63 63 70 2c 20 75 64 70 2c 20 69 63 6d 70 20 61 6e 64 20 69 70 76 36 2d 69 63 6d 70 2e | ,.dccp,.udp,.icmp.and.ipv6-icmp. |
| 1105a0 | 00 50 72 6f 76 69 64 65 20 54 46 54 50 20 73 65 72 76 65 72 20 6c 69 73 74 65 6e 69 6e 67 20 6f | .Provide.TFTP.server.listening.o |
| 1105c0 | 6e 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 60 | n.both.IPv4.and.IPv6.addresses.` |
| 1105e0 | 60 31 39 32 2e 30 2e 32 2e 31 60 60 20 61 6e 64 20 60 60 32 30 30 31 3a 64 62 38 3a 3a 31 60 60 | `192.0.2.1``.and.``2001:db8::1`` |
| 110600 | 20 73 65 72 76 69 6e 67 20 74 68 65 20 63 6f 6e 74 65 6e 74 20 66 72 6f 6d 20 60 60 2f 63 6f 6e | .serving.the.content.from.``/con |
| 110620 | 66 69 67 2f 74 66 74 70 62 6f 6f 74 60 60 2e 20 55 70 6c 6f 61 64 69 6e 67 20 76 69 61 20 54 46 | fig/tftpboot``..Uploading.via.TF |
| 110640 | 54 50 20 74 6f 20 74 68 69 73 20 73 65 72 76 65 72 20 69 73 20 64 69 73 61 62 6c 65 64 2e 00 50 | TP.to.this.server.is.disabled..P |
| 110660 | 72 6f 76 69 64 65 20 61 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 20 67 72 | rovide.a.IPv4.or.IPv6.address.gr |
| 110680 | 6f 75 70 20 64 65 73 63 72 69 70 74 69 6f 6e 00 50 72 6f 76 69 64 65 20 61 20 49 50 76 34 20 6f | oup.description.Provide.a.IPv4.o |
| 1106a0 | 72 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 20 67 72 6f 75 70 20 64 65 73 63 72 69 70 74 69 6f 6e | r.IPv6.network.group.description |
| 1106c0 | 2e 00 50 72 6f 76 69 64 65 20 61 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 65 61 63 68 | ..Provide.a.description.for.each |
| 1106e0 | 20 72 75 6c 65 2e 00 50 72 6f 76 69 64 65 20 61 20 64 65 73 63 72 69 70 74 69 6f 6e 20 74 6f 20 | .rule..Provide.a.description.to. |
| 110700 | 74 68 65 20 66 6c 6f 77 20 74 61 62 6c 65 2e 00 50 72 6f 76 69 64 65 20 61 20 64 6f 6d 61 69 6e | the.flow.table..Provide.a.domain |
| 110720 | 20 67 72 6f 75 70 20 64 65 73 63 72 69 70 74 69 6f 6e 2e 00 50 72 6f 76 69 64 65 20 61 20 6d 61 | .group.description..Provide.a.ma |
| 110740 | 63 20 67 72 6f 75 70 20 64 65 73 63 72 69 70 74 69 6f 6e 2e 00 50 72 6f 76 69 64 65 20 61 20 70 | c.group.description..Provide.a.p |
| 110760 | 6f 72 74 20 67 72 6f 75 70 20 64 65 73 63 72 69 70 74 69 6f 6e 2e 00 50 72 6f 76 69 64 65 20 61 | ort.group.description..Provide.a |
| 110780 | 20 72 75 6c 65 2d 73 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 74 6f 20 61 20 63 75 73 74 6f | .rule-set.description.to.a.custo |
| 1107a0 | 6d 20 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 2e 00 50 72 6f 76 69 64 65 20 61 20 72 75 6c 65 | m.firewall.chain..Provide.a.rule |
| 1107c0 | 2d 73 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 2e 00 50 72 6f 76 69 64 65 20 61 6e 20 49 50 76 | -set.description..Provide.an.IPv |
| 1107e0 | 34 20 6f 72 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 20 67 72 6f 75 70 20 64 65 73 63 72 69 70 74 | 4.or.IPv6.network.group.descript |
| 110800 | 69 6f 6e 2e 00 50 72 6f 76 69 64 65 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 20 | ion..Provide.an.interface.group. |
| 110820 | 64 65 73 63 72 69 70 74 69 6f 6e 00 50 72 6f 76 69 64 65 72 20 2d 20 43 75 73 74 6f 6d 65 72 00 | description.Provider.-.Customer. |
| 110840 | 50 72 6f 76 69 64 65 73 20 61 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 63 6f 68 65 72 65 6e | Provides.a.backbone.area.coheren |
| 110860 | 63 65 20 62 79 20 76 69 72 74 75 61 6c 20 6c 69 6e 6b 20 65 73 74 61 62 6c 69 73 68 6d 65 6e 74 | ce.by.virtual.link.establishment |
| 110880 | 2e 00 50 72 6f 76 69 64 65 73 20 61 20 70 65 72 2d 64 65 76 69 63 65 20 63 6f 6e 74 72 6f 6c 20 | ..Provides.a.per-device.control. |
| 1108a0 | 74 6f 20 65 6e 61 62 6c 65 2f 64 69 73 61 62 6c 65 20 74 68 65 20 74 68 72 65 61 64 65 64 20 6d | to.enable/disable.the.threaded.m |
| 1108c0 | 6f 64 65 20 66 6f 72 20 61 6c 6c 20 74 68 65 20 4e 41 50 49 20 69 6e 73 74 61 6e 63 65 73 20 6f | ode.for.all.the.NAPI.instances.o |
| 1108e0 | 66 20 74 68 65 20 67 69 76 65 6e 20 6e 65 74 77 6f 72 6b 20 64 65 76 69 63 65 2c 20 77 69 74 68 | f.the.given.network.device,.with |
| 110900 | 6f 75 74 20 74 68 65 20 6e 65 65 64 20 66 6f 72 20 61 20 64 65 76 69 63 65 20 75 70 2f 64 6f 77 | out.the.need.for.a.device.up/dow |
| 110920 | 6e 2e 00 50 72 6f 78 79 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 65 74 68 6f 64 2c 20 | n..Proxy.authentication.method,. |
| 110940 | 63 75 72 72 65 6e 74 6c 79 20 6f 6e 6c 79 20 4c 44 41 50 20 69 73 20 73 75 70 70 6f 72 74 65 64 | currently.only.LDAP.is.supported |
| 110960 | 2e 00 50 73 65 75 64 6f 20 45 74 68 65 72 6e 65 74 2f 4d 41 43 56 4c 41 4e 20 6f 70 74 69 6f 6e | ..Pseudo.Ethernet/MACVLAN.option |
| 110980 | 73 00 50 73 65 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 63 61 6e | s.Pseudo-Ethernet.interfaces.can |
| 1109a0 | 20 6e 6f 74 20 62 65 20 72 65 61 63 68 65 64 20 66 72 6f 6d 20 79 6f 75 72 20 69 6e 74 65 72 6e | .not.be.reached.from.your.intern |
| 1109c0 | 61 6c 20 68 6f 73 74 2e 20 54 68 69 73 20 6d 65 61 6e 73 20 74 68 61 74 20 79 6f 75 20 63 61 6e | al.host..This.means.that.you.can |
| 1109e0 | 20 6e 6f 74 20 74 72 79 20 74 6f 20 70 69 6e 67 20 61 20 50 73 65 75 64 6f 2d 45 74 68 65 72 6e | .not.try.to.ping.a.Pseudo-Ethern |
| 110a00 | 65 74 20 69 6e 74 65 72 66 61 63 65 20 66 72 6f 6d 20 74 68 65 20 68 6f 73 74 20 73 79 73 74 65 | et.interface.from.the.host.syste |
| 110a20 | 6d 20 6f 6e 20 77 68 69 63 68 20 69 74 20 69 73 20 64 65 66 69 6e 65 64 2e 20 54 68 65 20 70 69 | m.on.which.it.is.defined..The.pi |
| 110a40 | 6e 67 20 77 69 6c 6c 20 62 65 20 6c 6f 73 74 2e 00 50 73 65 75 64 6f 2d 45 74 68 65 72 6e 65 74 | ng.will.be.lost..Pseudo-Ethernet |
| 110a60 | 20 69 6e 74 65 72 66 61 63 65 73 20 6d 61 79 20 6e 6f 74 20 77 6f 72 6b 20 69 6e 20 65 6e 76 69 | .interfaces.may.not.work.in.envi |
| 110a80 | 72 6f 6e 6d 65 6e 74 73 20 77 68 69 63 68 20 65 78 70 65 63 74 20 61 20 3a 61 62 62 72 3a 60 4e | ronments.which.expect.a.:abbr:`N |
| 110aa0 | 49 43 20 28 4e 65 74 77 6f 72 6b 20 49 6e 74 65 72 66 61 63 65 20 43 61 72 64 29 60 20 74 6f 20 | IC.(Network.Interface.Card)`.to. |
| 110ac0 | 6f 6e 6c 79 20 68 61 76 65 20 61 20 73 69 6e 67 6c 65 20 61 64 64 72 65 73 73 2e 20 54 68 69 73 | only.have.a.single.address..This |
| 110ae0 | 20 61 70 70 6c 69 65 73 20 74 6f 3a 20 2d 20 56 4d 77 61 72 65 20 6d 61 63 68 69 6e 65 73 20 75 | .applies.to:.-.VMware.machines.u |
| 110b00 | 73 69 6e 67 20 64 65 66 61 75 6c 74 20 73 65 74 74 69 6e 67 73 20 2d 20 4e 65 74 77 6f 72 6b 20 | sing.default.settings.-.Network. |
| 110b20 | 73 77 69 74 63 68 65 73 20 77 69 74 68 20 73 65 63 75 72 69 74 79 20 73 65 74 74 69 6e 67 73 20 | switches.with.security.settings. |
| 110b40 | 61 6c 6c 6f 77 69 6e 67 20 6f 6e 6c 79 20 61 20 73 69 6e 67 6c 65 20 4d 41 43 20 61 64 64 72 65 | allowing.only.a.single.MAC.addre |
| 110b60 | 73 73 20 2d 20 78 44 53 4c 20 6d 6f 64 65 6d 73 20 74 68 61 74 20 74 72 79 20 74 6f 20 6c 65 61 | ss.-.xDSL.modems.that.try.to.lea |
| 110b80 | 72 6e 20 74 68 65 20 4d 41 43 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 4e 49 43 00 50 73 | rn.the.MAC.address.of.the.NIC.Ps |
| 110ba0 | 65 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 6f 72 20 4d 41 43 56 4c 41 4e 20 69 6e 74 65 72 66 61 | eudo-Ethernet.or.MACVLAN.interfa |
| 110bc0 | 63 65 73 20 63 61 6e 20 62 65 20 73 65 65 6e 20 61 73 20 73 75 62 69 6e 74 65 72 66 61 63 65 73 | ces.can.be.seen.as.subinterfaces |
| 110be0 | 20 74 6f 20 72 65 67 75 6c 61 72 20 65 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 2e | .to.regular.ethernet.interfaces. |
| 110c00 | 20 45 61 63 68 20 61 6e 64 20 65 76 65 72 79 20 73 75 62 69 6e 74 65 72 66 61 63 65 20 69 73 20 | .Each.and.every.subinterface.is. |
| 110c20 | 63 72 65 61 74 65 64 20 61 20 64 69 66 66 65 72 65 6e 74 20 6d 65 64 69 61 20 61 63 63 65 73 73 | created.a.different.media.access |
| 110c40 | 20 63 6f 6e 74 72 6f 6c 20 28 4d 41 43 29 20 61 64 64 72 65 73 73 2c 20 66 6f 72 20 61 20 73 69 | .control.(MAC).address,.for.a.si |
| 110c60 | 6e 67 6c 65 20 70 68 79 73 69 63 61 6c 20 45 74 68 65 72 6e 65 74 20 70 6f 72 74 2e 20 50 73 65 | ngle.physical.Ethernet.port..Pse |
| 110c80 | 75 64 6f 2d 20 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 68 61 76 65 20 6d 6f | udo-.Ethernet.interfaces.have.mo |
| 110ca0 | 73 74 20 6f 66 20 74 68 65 69 72 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 69 6e 20 76 69 72 74 75 | st.of.their.application.in.virtu |
| 110cc0 | 61 6c 69 7a 65 64 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 73 2c 00 50 75 62 6c 69 73 68 20 61 20 70 | alized.environments,.Publish.a.p |
| 110ce0 | 6f 72 74 20 66 6f 72 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 2e 00 50 75 6c 6c 20 61 20 6e 65 | ort.for.the.container..Pull.a.ne |
| 110d00 | 77 20 69 6d 61 67 65 20 66 6f 72 20 63 6f 6e 74 61 69 6e 65 72 00 51 69 6e 51 20 28 38 30 32 2e | w.image.for.container.QinQ.(802. |
| 110d20 | 31 61 64 29 00 51 6f 53 00 51 75 65 75 65 20 73 69 7a 65 20 66 6f 72 20 6c 69 73 74 65 6e 69 6e | 1ad).QoS.Queue.size.for.listenin |
| 110d40 | 67 20 74 6f 20 6c 6f 63 61 6c 20 63 6f 6e 6e 74 72 61 63 6b 20 65 76 65 6e 74 73 20 69 6e 20 4d | g.to.local.conntrack.events.in.M |
| 110d60 | 42 2e 00 51 75 65 75 65 20 73 69 7a 65 20 66 6f 72 20 73 79 6e 63 69 6e 67 20 63 6f 6e 6e 74 72 | B..Queue.size.for.syncing.conntr |
| 110d80 | 61 63 6b 20 65 6e 74 72 69 65 73 20 69 6e 20 4d 42 2e 00 51 75 6f 74 65 73 20 63 61 6e 20 62 65 | ack.entries.in.MB..Quotes.can.be |
| 110da0 | 20 75 73 65 64 20 69 6e 73 69 64 65 20 70 61 72 61 6d 65 74 65 72 20 76 61 6c 75 65 73 20 62 79 | .used.inside.parameter.values.by |
| 110dc0 | 20 72 65 70 6c 61 63 69 6e 67 20 61 6c 6c 20 71 75 6f 74 65 20 63 68 61 72 61 63 74 65 72 73 20 | .replacing.all.quote.characters. |
| 110de0 | 77 69 74 68 20 74 68 65 20 73 74 72 69 6e 67 20 60 60 26 71 75 6f 74 3b 60 60 2e 20 54 68 65 79 | with.the.string.``"``..They |
| 110e00 | 20 77 69 6c 6c 20 62 65 20 72 65 70 6c 61 63 65 64 20 77 69 74 68 20 6c 69 74 65 72 61 6c 20 71 | .will.be.replaced.with.literal.q |
| 110e20 | 75 6f 74 65 20 63 68 61 72 61 63 74 65 72 73 20 77 68 65 6e 20 67 65 6e 65 72 61 74 69 6e 67 20 | uote.characters.when.generating. |
| 110e40 | 64 68 63 70 64 2e 63 6f 6e 66 2e 00 52 31 20 68 61 73 20 31 39 32 2e 30 2e 32 2e 31 2f 32 34 20 | dhcpd.conf..R1.has.192.0.2.1/24. |
| 110e60 | 26 20 32 30 30 31 3a 64 62 38 3a 3a 31 2f 36 34 00 52 31 20 69 73 20 6d 61 6e 61 67 65 64 20 74 | &.2001:db8::1/64.R1.is.managed.t |
| 110e80 | 68 72 6f 75 67 68 20 61 6e 20 6f 75 74 2d 6f 66 2d 62 61 6e 64 20 6e 65 74 77 6f 72 6b 20 74 68 | hrough.an.out-of-band.network.th |
| 110ea0 | 61 74 20 72 65 73 69 64 65 73 20 69 6e 20 56 52 46 20 60 60 6d 67 6d 74 60 60 00 52 31 3a 00 52 | at.resides.in.VRF.``mgmt``.R1:.R |
| 110ec0 | 32 20 68 61 73 20 31 39 32 2e 30 2e 32 2e 32 2f 32 34 20 26 20 32 30 30 31 3a 64 62 38 3a 3a 32 | 2.has.192.0.2.2/24.&.2001:db8::2 |
| 110ee0 | 2f 36 34 00 52 32 3a 00 52 41 44 49 55 53 00 52 41 44 49 55 53 20 53 65 74 75 70 00 52 41 44 49 | /64.R2:.RADIUS.RADIUS.Setup.RADI |
| 110f00 | 55 53 20 61 64 76 61 6e 63 65 64 20 66 65 61 74 75 72 65 73 00 52 41 44 49 55 53 20 61 64 76 61 | US.advanced.features.RADIUS.adva |
| 110f20 | 6e 63 65 64 20 6f 70 74 69 6f 6e 73 00 52 41 44 49 55 53 20 61 75 74 68 65 6e 74 69 63 61 74 69 | nced.options.RADIUS.authenticati |
| 110f40 | 6f 6e 00 52 41 44 49 55 53 20 62 61 6e 64 77 69 64 74 68 20 73 68 61 70 69 6e 67 20 61 74 74 72 | on.RADIUS.bandwidth.shaping.attr |
| 110f60 | 69 62 75 74 65 00 52 41 44 49 55 53 20 70 72 6f 76 69 64 65 73 20 74 68 65 20 49 50 20 61 64 64 | ibute.RADIUS.provides.the.IP.add |
| 110f80 | 72 65 73 73 65 73 20 69 6e 20 74 68 65 20 65 78 61 6d 70 6c 65 20 61 62 6f 76 65 20 76 69 61 20 | resses.in.the.example.above.via. |
| 110fa0 | 46 72 61 6d 65 64 2d 49 50 2d 41 64 64 72 65 73 73 2e 00 52 41 44 49 55 53 20 73 65 72 76 65 72 | Framed-IP-Address..RADIUS.server |
| 110fc0 | 20 61 74 20 60 60 31 39 32 2e 31 36 38 2e 33 2e 31 30 60 60 20 77 69 74 68 20 73 68 61 72 65 64 | .at.``192.168.3.10``.with.shared |
| 110fe0 | 2d 73 65 63 72 65 74 20 60 60 56 79 4f 53 50 61 73 73 77 6f 72 64 60 60 00 52 41 44 49 55 53 20 | -secret.``VyOSPassword``.RADIUS. |
| 111000 | 73 65 72 76 65 72 73 20 63 6f 75 6c 64 20 62 65 20 68 61 72 64 65 6e 65 64 20 62 79 20 6f 6e 6c | servers.could.be.hardened.by.onl |
| 111020 | 79 20 61 6c 6c 6f 77 69 6e 67 20 63 65 72 74 61 69 6e 20 49 50 20 61 64 64 72 65 73 73 65 73 20 | y.allowing.certain.IP.addresses. |
| 111040 | 74 6f 20 63 6f 6e 6e 65 63 74 2e 20 41 73 20 6f 66 20 74 68 69 73 20 74 68 65 20 73 6f 75 72 63 | to.connect..As.of.this.the.sourc |
| 111060 | 65 20 61 64 64 72 65 73 73 20 6f 66 20 65 61 63 68 20 52 41 44 49 55 53 20 71 75 65 72 79 20 63 | e.address.of.each.RADIUS.query.c |
| 111080 | 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 52 41 44 49 55 53 20 73 6f 75 72 63 65 20 | an.be.configured..RADIUS.source. |
| 1110a0 | 61 64 64 72 65 73 73 00 52 45 51 20 32 3a 20 41 20 43 47 4e 20 6d 75 73 74 20 68 61 76 65 20 61 | address.REQ.2:.A.CGN.must.have.a |
| 1110c0 | 20 64 65 66 61 75 6c 74 20 22 49 50 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 69 6e 67 22 20 62 65 | .default."IP.address.pooling".be |
| 1110e0 | 68 61 76 69 6f 72 20 6f 66 20 22 50 61 69 72 65 64 22 2e 20 43 47 4e 20 6d 75 73 74 20 75 73 65 | havior.of."Paired"..CGN.must.use |
| 111100 | 20 74 68 65 20 73 61 6d 65 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 6d 61 | .the.same.external.IP.address.ma |
| 111120 | 70 70 69 6e 67 20 66 6f 72 20 61 6c 6c 20 73 65 73 73 69 6f 6e 73 20 61 73 73 6f 63 69 61 74 65 | pping.for.all.sessions.associate |
| 111140 | 64 20 77 69 74 68 20 74 68 65 20 73 61 6d 65 20 69 6e 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 | d.with.the.same.internal.IP.addr |
| 111160 | 65 73 73 2c 20 62 65 20 74 68 65 79 20 54 43 50 2c 20 55 44 50 2c 20 49 43 4d 50 2c 20 73 6f 6d | ess,.be.they.TCP,.UDP,.ICMP,.som |
| 111180 | 65 74 68 69 6e 67 20 65 6c 73 65 2c 20 6f 72 20 61 20 6d 69 78 20 6f 66 20 64 69 66 66 65 72 65 | ething.else,.or.a.mix.of.differe |
| 1111a0 | 6e 74 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 52 45 51 20 33 3a 20 54 68 65 20 43 47 4e 20 66 75 6e | nt.protocols..REQ.3:.The.CGN.fun |
| 1111c0 | 63 74 69 6f 6e 20 73 68 6f 75 6c 64 20 6e 6f 74 20 68 61 76 65 20 61 6e 79 20 6c 69 6d 69 74 61 | ction.should.not.have.any.limita |
| 1111e0 | 74 69 6f 6e 73 20 6f 6e 20 74 68 65 20 73 69 7a 65 20 6f 72 20 74 68 65 20 63 6f 6e 74 69 67 75 | tions.on.the.size.or.the.contigu |
| 111200 | 69 74 79 20 6f 66 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 20 70 6f 6f 6c | ity.of.the.external.address.pool |
| 111220 | 2e 00 52 45 51 20 34 3a 20 41 20 43 47 4e 20 6d 75 73 74 20 73 75 70 70 6f 72 74 20 6c 69 6d 69 | ..REQ.4:.A.CGN.must.support.limi |
| 111240 | 74 69 6e 67 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 65 78 74 65 72 6e 61 6c 20 70 6f 72 74 | ting.the.number.of.external.port |
| 111260 | 73 20 28 6f 72 2c 20 65 71 75 69 76 61 6c 65 6e 74 6c 79 2c 20 22 69 64 65 6e 74 69 66 69 65 72 | s.(or,.equivalently,."identifier |
| 111280 | 73 22 20 66 6f 72 20 49 43 4d 50 29 20 74 68 61 74 20 61 72 65 20 61 73 73 69 67 6e 65 64 20 70 | s".for.ICMP).that.are.assigned.p |
| 1112a0 | 65 72 20 73 75 62 73 63 72 69 62 65 72 00 52 45 53 54 00 52 46 43 20 33 37 36 38 20 63 72 65 61 | er.subscriber.REST.RFC.3768.crea |
| 1112c0 | 74 65 73 20 61 20 76 69 72 74 75 61 6c 20 69 6e 74 65 72 66 61 63 65 2e 20 49 66 20 79 6f 75 20 | tes.a.virtual.interface..If.you. |
| 1112e0 | 77 61 6e 74 20 74 6f 20 61 70 70 6c 79 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 4e 41 | want.to.apply.the.destination.NA |
| 111300 | 54 20 72 75 6c 65 20 74 6f 20 74 68 65 20 74 72 61 66 66 69 63 20 73 65 6e 74 20 74 6f 20 74 68 | T.rule.to.the.traffic.sent.to.th |
| 111320 | 65 20 76 69 72 74 75 61 6c 20 4d 41 43 2c 20 73 65 74 20 74 68 65 20 63 72 65 61 74 65 64 20 76 | e.virtual.MAC,.set.the.created.v |
| 111340 | 69 72 74 75 61 6c 20 69 6e 74 65 72 66 61 63 65 20 61 73 20 60 69 6e 62 6f 75 6e 64 2d 69 6e 74 | irtual.interface.as.`inbound-int |
| 111360 | 65 72 66 61 63 65 60 2e 00 52 46 43 20 33 37 36 38 20 64 65 66 69 6e 65 73 20 61 20 76 69 72 74 | erface`..RFC.3768.defines.a.virt |
| 111380 | 75 61 6c 20 4d 41 43 20 61 64 64 72 65 73 73 20 74 6f 20 65 61 63 68 20 56 52 52 50 20 76 69 72 | ual.MAC.address.to.each.VRRP.vir |
| 1113a0 | 74 75 61 6c 20 72 6f 75 74 65 72 2e 20 54 68 69 73 20 76 69 72 74 75 61 6c 20 72 6f 75 74 65 72 | tual.router..This.virtual.router |
| 1113c0 | 20 4d 41 43 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 61 73 20 74 68 65 | .MAC.address.will.be.used.as.the |
| 1113e0 | 20 73 6f 75 72 63 65 20 69 6e 20 61 6c 6c 20 70 65 72 69 6f 64 69 63 20 56 52 52 50 20 6d 65 73 | .source.in.all.periodic.VRRP.mes |
| 111400 | 73 61 67 65 73 20 73 65 6e 74 20 62 79 20 74 68 65 20 61 63 74 69 76 65 20 6e 6f 64 65 2e 20 57 | sages.sent.by.the.active.node..W |
| 111420 | 68 65 6e 20 74 68 65 20 72 66 63 33 37 36 38 2d 63 6f 6d 70 61 74 69 62 69 6c 69 74 79 20 6f 70 | hen.the.rfc3768-compatibility.op |
| 111440 | 74 69 6f 6e 20 69 73 20 73 65 74 2c 20 61 20 6e 65 77 20 56 52 52 50 20 69 6e 74 65 72 66 61 63 | tion.is.set,.a.new.VRRP.interfac |
| 111460 | 65 20 69 73 20 63 72 65 61 74 65 64 2c 20 74 6f 20 77 68 69 63 68 20 74 68 65 20 4d 41 43 20 61 | e.is.created,.to.which.the.MAC.a |
| 111480 | 64 64 72 65 73 73 20 61 6e 64 20 74 68 65 20 76 69 72 74 75 61 6c 20 49 50 20 61 64 64 72 65 73 | ddress.and.the.virtual.IP.addres |
| 1114a0 | 73 20 69 73 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 61 73 73 69 67 6e 65 64 2e 00 52 46 43 | s.is.automatically.assigned..RFC |
| 1114c0 | 20 38 36 38 20 74 69 6d 65 20 73 65 72 76 65 72 20 49 50 76 34 20 61 64 64 72 65 73 73 00 52 49 | .868.time.server.IPv4.address.RI |
| 1114e0 | 50 00 52 49 50 76 31 20 61 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 31 30 | P.RIPv1.as.described.in.:rfc:`10 |
| 111500 | 35 38 60 00 52 49 50 76 32 20 61 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 | 58`.RIPv2.as.described.in.:rfc:` |
| 111520 | 32 34 35 33 60 00 52 50 4b 49 00 52 53 2d 53 65 72 76 65 72 20 2d 20 52 53 2d 43 6c 69 65 6e 74 | 2453`.RPKI.RS-Server.-.RS-Client |
| 111540 | 00 52 53 41 20 63 61 6e 20 62 65 20 75 73 65 64 20 66 6f 72 20 73 65 72 76 69 63 65 73 20 73 75 | .RSA.can.be.used.for.services.su |
| 111560 | 63 68 20 61 73 20 6b 65 79 20 65 78 63 68 61 6e 67 65 73 20 61 6e 64 20 66 6f 72 20 65 6e 63 72 | ch.as.key.exchanges.and.for.encr |
| 111580 | 79 70 74 69 6f 6e 20 70 75 72 70 6f 73 65 73 2e 20 54 6f 20 6d 61 6b 65 20 49 50 53 65 63 20 77 | yption.purposes..To.make.IPSec.w |
| 1115a0 | 6f 72 6b 20 77 69 74 68 20 64 79 6e 61 6d 69 63 20 61 64 64 72 65 73 73 20 6f 6e 20 6f 6e 65 2f | ork.with.dynamic.address.on.one/ |
| 1115c0 | 62 6f 74 68 20 73 69 64 65 73 2c 20 77 65 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 75 73 65 20 | both.sides,.we.will.have.to.use. |
| 1115e0 | 52 53 41 20 6b 65 79 73 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 20 54 68 65 | RSA.keys.for.authentication..The |
| 111600 | 79 20 61 72 65 20 76 65 72 79 20 66 61 73 74 20 61 6e 64 20 65 61 73 79 20 74 6f 20 73 65 74 75 | y.are.very.fast.and.easy.to.setu |
| 111620 | 70 2e 00 52 53 41 2d 4b 65 79 73 00 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 00 52 61 6e 64 6f 6d | p..RSA-Keys.Random-Detect.Random |
| 111640 | 2d 44 65 74 65 63 74 20 63 6f 75 6c 64 20 62 65 20 75 73 65 66 75 6c 20 66 6f 72 20 68 65 61 76 | -Detect.could.be.useful.for.heav |
| 111660 | 79 20 74 72 61 66 66 69 63 2e 20 4f 6e 65 20 75 73 65 20 6f 66 20 74 68 69 73 20 61 6c 67 6f 72 | y.traffic..One.use.of.this.algor |
| 111680 | 69 74 68 6d 20 6d 69 67 68 74 20 62 65 20 74 6f 20 70 72 65 76 65 6e 74 20 61 20 62 61 63 6b 62 | ithm.might.be.to.prevent.a.backb |
| 1116a0 | 6f 6e 65 20 6f 76 65 72 6c 6f 61 64 2e 20 42 75 74 20 6f 6e 6c 79 20 66 6f 72 20 54 43 50 20 28 | one.overload..But.only.for.TCP.( |
| 1116c0 | 62 65 63 61 75 73 65 20 64 72 6f 70 70 65 64 20 70 61 63 6b 65 74 73 20 63 6f 75 6c 64 20 62 65 | because.dropped.packets.could.be |
| 1116e0 | 20 72 65 74 72 61 6e 73 6d 69 74 74 65 64 29 2c 20 6e 6f 74 20 66 6f 72 20 55 44 50 2e 00 52 61 | .retransmitted),.not.for.UDP..Ra |
| 111700 | 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 2c 20 64 65 66 61 75 6c 74 20 69 73 20 31 2e 00 52 | nge.is.1.to.255,.default.is.1..R |
| 111720 | 61 6e 67 65 20 69 73 20 31 20 74 6f 20 33 30 30 2c 20 64 65 66 61 75 6c 74 20 69 73 20 31 30 2e | ange.is.1.to.300,.default.is.10. |
| 111740 | 00 52 61 74 65 20 43 6f 6e 74 72 6f 6c 00 52 61 74 65 20 6c 69 6d 69 74 00 52 61 74 65 20 6c 69 | .Rate.Control.Rate.limit.Rate.li |
| 111760 | 6d 69 74 20 74 68 65 20 64 6f 77 6e 6c 6f 61 64 20 62 61 6e 64 77 69 64 74 68 20 66 6f 72 20 60 | mit.the.download.bandwidth.for.` |
| 111780 | 3c 75 73 65 72 3e 60 20 74 6f 20 60 3c 62 61 6e 64 77 69 64 74 68 3e 60 20 6b 62 69 74 2f 73 2e | <user>`.to.`<bandwidth>`.kbit/s. |
| 1117a0 | 00 52 61 74 65 20 6c 69 6d 69 74 20 74 68 65 20 75 70 6c 6f 61 64 20 62 61 6e 64 77 69 64 74 68 | .Rate.limit.the.upload.bandwidth |
| 1117c0 | 20 66 6f 72 20 60 3c 75 73 65 72 3e 60 20 74 6f 20 60 3c 62 61 6e 64 77 69 64 74 68 3e 60 20 6b | .for.`<user>`.to.`<bandwidth>`.k |
| 1117e0 | 62 69 74 2f 73 00 52 61 74 65 20 6c 69 6d 69 74 20 74 68 65 20 75 70 6c 6f 61 64 20 62 61 6e 64 | bit/s.Rate.limit.the.upload.band |
| 111800 | 77 69 64 74 68 20 66 6f 72 20 60 3c 75 73 65 72 3e 60 20 74 6f 20 60 3c 62 61 6e 64 77 69 64 74 | width.for.`<user>`.to.`<bandwidt |
| 111820 | 68 3e 60 20 6b 62 69 74 2f 73 2e 00 52 61 74 65 2d 43 6f 6e 74 72 6f 6c 20 69 73 20 61 20 43 50 | h>`.kbit/s..Rate-Control.is.a.CP |
| 111840 | 55 2d 66 72 69 65 6e 64 6c 79 20 70 6f 6c 69 63 79 2e 20 59 6f 75 20 6d 69 67 68 74 20 63 6f 6e | U-friendly.policy..You.might.con |
| 111860 | 73 69 64 65 72 20 75 73 69 6e 67 20 69 74 20 77 68 65 6e 20 79 6f 75 20 6a 75 73 74 20 73 69 6d | sider.using.it.when.you.just.sim |
| 111880 | 70 6c 79 20 77 61 6e 74 20 74 6f 20 73 6c 6f 77 20 74 72 61 66 66 69 63 20 64 6f 77 6e 2e 00 52 | ply.want.to.slow.traffic.down..R |
| 1118a0 | 61 74 65 2d 43 6f 6e 74 72 6f 6c 20 69 73 20 61 20 63 6c 61 73 73 6c 65 73 73 20 70 6f 6c 69 63 | ate-Control.is.a.classless.polic |
| 1118c0 | 79 20 74 68 61 74 20 6c 69 6d 69 74 73 20 74 68 65 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 74 6f | y.that.limits.the.packet.flow.to |
| 1118e0 | 20 61 20 73 65 74 20 72 61 74 65 2e 20 49 74 20 69 73 20 61 20 70 75 72 65 20 73 68 61 70 65 72 | .a.set.rate..It.is.a.pure.shaper |
| 111900 | 2c 20 69 74 20 64 6f 65 73 20 6e 6f 74 20 73 63 68 65 64 75 6c 65 20 74 72 61 66 66 69 63 2e 20 | ,.it.does.not.schedule.traffic.. |
| 111920 | 54 72 61 66 66 69 63 20 69 73 20 66 69 6c 74 65 72 65 64 20 62 61 73 65 64 20 6f 6e 20 74 68 65 | Traffic.is.filtered.based.on.the |
| 111940 | 20 65 78 70 65 6e 64 69 74 75 72 65 20 6f 66 20 74 6f 6b 65 6e 73 2e 20 54 6f 6b 65 6e 73 20 72 | .expenditure.of.tokens..Tokens.r |
| 111960 | 6f 75 67 68 6c 79 20 63 6f 72 72 65 73 70 6f 6e 64 20 74 6f 20 62 79 74 65 73 2e 00 52 61 77 20 | oughly.correspond.to.bytes..Raw. |
| 111980 | 50 61 72 61 6d 65 74 65 72 73 00 52 61 77 20 70 61 72 61 6d 65 74 65 72 73 20 63 61 6e 20 62 65 | Parameters.Raw.parameters.can.be |
| 1119a0 | 20 70 61 73 73 65 64 20 74 6f 20 73 68 61 72 65 64 2d 6e 65 74 77 6f 72 6b 2d 6e 61 6d 65 2c 20 | .passed.to.shared-network-name,. |
| 1119c0 | 73 75 62 6e 65 74 20 61 6e 64 20 73 74 61 74 69 63 2d 6d 61 70 70 69 6e 67 3a 00 52 65 2d 67 65 | subnet.and.static-mapping:.Re-ge |
| 1119e0 | 6e 65 72 61 74 65 64 20 61 20 6b 6e 6f 77 6e 20 70 75 62 2f 70 72 69 76 61 74 65 20 6b 65 79 66 | nerated.a.known.pub/private.keyf |
| 111a00 | 69 6c 65 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 63 6f 6e 6e 65 63 74 | ile.which.can.be.used.to.connect |
| 111a20 | 20 74 6f 20 6f 74 68 65 72 20 73 65 72 76 69 63 65 73 20 28 65 2e 67 2e 20 52 50 4b 49 20 63 61 | .to.other.services.(e.g..RPKI.ca |
| 111a40 | 63 68 65 29 2e 00 52 65 2d 67 65 6e 65 72 61 74 65 64 20 74 68 65 20 70 75 62 6c 69 63 2f 70 72 | che)..Re-generated.the.public/pr |
| 111a60 | 69 76 61 74 65 20 6b 65 79 70 6f 72 74 69 6f 6e 20 77 68 69 63 68 20 53 53 48 20 75 73 65 73 20 | ivate.keyportion.which.SSH.uses. |
| 111a80 | 74 6f 20 73 65 63 75 72 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 52 65 61 63 68 61 62 6c 65 | to.secure.connections..Reachable |
| 111aa0 | 20 54 69 6d 65 00 52 65 61 6c 20 73 65 72 76 65 72 00 52 65 61 6c 20 73 65 72 76 65 72 20 49 50 | .Time.Real.server.Real.server.IP |
| 111ac0 | 20 61 64 64 72 65 73 73 20 61 6e 64 20 70 6f 72 74 00 52 65 61 6c 20 73 65 72 76 65 72 20 69 73 | .address.and.port.Real.server.is |
| 111ae0 | 20 61 75 74 6f 2d 65 78 63 6c 75 64 65 64 20 69 66 20 70 6f 72 74 20 63 68 65 63 6b 20 77 69 74 | .auto-excluded.if.port.check.wit |
| 111b00 | 68 20 74 68 69 73 20 73 65 72 76 65 72 20 66 61 69 6c 2e 00 52 65 63 65 69 76 65 20 74 72 61 66 | h.this.server.fail..Receive.traf |
| 111b20 | 66 69 63 20 66 72 6f 6d 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 63 72 65 61 74 65 64 20 62 79 20 | fic.from.connections.created.by. |
| 111b40 | 74 68 65 20 73 65 72 76 65 72 20 69 73 20 61 6c 73 6f 20 62 61 6c 61 6e 63 65 64 2e 20 57 68 65 | the.server.is.also.balanced..Whe |
| 111b60 | 6e 20 74 68 65 20 6c 6f 63 61 6c 20 73 79 73 74 65 6d 20 73 65 6e 64 73 20 61 6e 20 41 52 50 20 | n.the.local.system.sends.an.ARP. |
| 111b80 | 52 65 71 75 65 73 74 20 74 68 65 20 62 6f 6e 64 69 6e 67 20 64 72 69 76 65 72 20 63 6f 70 69 65 | Request.the.bonding.driver.copie |
| 111ba0 | 73 20 61 6e 64 20 73 61 76 65 73 20 74 68 65 20 70 65 65 72 27 73 20 49 50 20 69 6e 66 6f 72 6d | s.and.saves.the.peer's.IP.inform |
| 111bc0 | 61 74 69 6f 6e 20 66 72 6f 6d 20 74 68 65 20 41 52 50 20 70 61 63 6b 65 74 2e 20 57 68 65 6e 20 | ation.from.the.ARP.packet..When. |
| 111be0 | 74 68 65 20 41 52 50 20 52 65 70 6c 79 20 61 72 72 69 76 65 73 20 66 72 6f 6d 20 74 68 65 20 70 | the.ARP.Reply.arrives.from.the.p |
| 111c00 | 65 65 72 2c 20 69 74 73 20 68 61 72 64 77 61 72 65 20 61 64 64 72 65 73 73 20 69 73 20 72 65 74 | eer,.its.hardware.address.is.ret |
| 111c20 | 72 69 65 76 65 64 20 61 6e 64 20 74 68 65 20 62 6f 6e 64 69 6e 67 20 64 72 69 76 65 72 20 69 6e | rieved.and.the.bonding.driver.in |
| 111c40 | 69 74 69 61 74 65 73 20 61 6e 20 41 52 50 20 72 65 70 6c 79 20 74 6f 20 74 68 69 73 20 70 65 65 | itiates.an.ARP.reply.to.this.pee |
| 111c60 | 72 20 61 73 73 69 67 6e 69 6e 67 20 69 74 20 74 6f 20 6f 6e 65 20 6f 66 20 74 68 65 20 73 6c 61 | r.assigning.it.to.one.of.the.sla |
| 111c80 | 76 65 73 20 69 6e 20 74 68 65 20 62 6f 6e 64 2e 20 41 20 70 72 6f 62 6c 65 6d 61 74 69 63 20 6f | ves.in.the.bond..A.problematic.o |
| 111ca0 | 75 74 63 6f 6d 65 20 6f 66 20 75 73 69 6e 67 20 41 52 50 20 6e 65 67 6f 74 69 61 74 69 6f 6e 20 | utcome.of.using.ARP.negotiation. |
| 111cc0 | 66 6f 72 20 62 61 6c 61 6e 63 69 6e 67 20 69 73 20 74 68 61 74 20 65 61 63 68 20 74 69 6d 65 20 | for.balancing.is.that.each.time. |
| 111ce0 | 74 68 61 74 20 61 6e 20 41 52 50 20 72 65 71 75 65 73 74 20 69 73 20 62 72 6f 61 64 63 61 73 74 | that.an.ARP.request.is.broadcast |
| 111d00 | 20 69 74 20 75 73 65 73 20 74 68 65 20 68 61 72 64 77 61 72 65 20 61 64 64 72 65 73 73 20 6f 66 | .it.uses.the.hardware.address.of |
| 111d20 | 20 74 68 65 20 62 6f 6e 64 2e 20 48 65 6e 63 65 2c 20 70 65 65 72 73 20 6c 65 61 72 6e 20 74 68 | .the.bond..Hence,.peers.learn.th |
| 111d40 | 65 20 68 61 72 64 77 61 72 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 62 6f 6e 64 20 61 | e.hardware.address.of.the.bond.a |
| 111d60 | 6e 64 20 74 68 65 20 62 61 6c 61 6e 63 69 6e 67 20 6f 66 20 72 65 63 65 69 76 65 20 74 72 61 66 | nd.the.balancing.of.receive.traf |
| 111d80 | 66 69 63 20 63 6f 6c 6c 61 70 73 65 73 20 74 6f 20 74 68 65 20 63 75 72 72 65 6e 74 20 73 6c 61 | fic.collapses.to.the.current.sla |
| 111da0 | 76 65 2e 20 54 68 69 73 20 69 73 20 68 61 6e 64 6c 65 64 20 62 79 20 73 65 6e 64 69 6e 67 20 75 | ve..This.is.handled.by.sending.u |
| 111dc0 | 70 64 61 74 65 73 20 28 41 52 50 20 52 65 70 6c 69 65 73 29 20 74 6f 20 61 6c 6c 20 74 68 65 20 | pdates.(ARP.Replies).to.all.the. |
| 111de0 | 70 65 65 72 73 20 77 69 74 68 20 74 68 65 69 72 20 69 6e 64 69 76 69 64 75 61 6c 6c 79 20 61 73 | peers.with.their.individually.as |
| 111e00 | 73 69 67 6e 65 64 20 68 61 72 64 77 61 72 65 20 61 64 64 72 65 73 73 20 73 75 63 68 20 74 68 61 | signed.hardware.address.such.tha |
| 111e20 | 74 20 74 68 65 20 74 72 61 66 66 69 63 20 69 73 20 72 65 64 69 73 74 72 69 62 75 74 65 64 2e 20 | t.the.traffic.is.redistributed.. |
| 111e40 | 52 65 63 65 69 76 65 20 74 72 61 66 66 69 63 20 69 73 20 61 6c 73 6f 20 72 65 64 69 73 74 72 69 | Receive.traffic.is.also.redistri |
| 111e60 | 62 75 74 65 64 20 77 68 65 6e 20 61 20 6e 65 77 20 73 6c 61 76 65 20 69 73 20 61 64 64 65 64 20 | buted.when.a.new.slave.is.added. |
| 111e80 | 74 6f 20 74 68 65 20 62 6f 6e 64 20 61 6e 64 20 77 68 65 6e 20 61 6e 20 69 6e 61 63 74 69 76 65 | to.the.bond.and.when.an.inactive |
| 111ea0 | 20 73 6c 61 76 65 20 69 73 20 72 65 2d 61 63 74 69 76 61 74 65 64 2e 20 54 68 65 20 72 65 63 65 | .slave.is.re-activated..The.rece |
| 111ec0 | 69 76 65 20 6c 6f 61 64 20 69 73 20 64 69 73 74 72 69 62 75 74 65 64 20 73 65 71 75 65 6e 74 69 | ive.load.is.distributed.sequenti |
| 111ee0 | 61 6c 6c 79 20 28 72 6f 75 6e 64 20 72 6f 62 69 6e 29 20 61 6d 6f 6e 67 20 74 68 65 20 67 72 6f | ally.(round.robin).among.the.gro |
| 111f00 | 75 70 20 6f 66 20 68 69 67 68 65 73 74 20 73 70 65 65 64 20 73 6c 61 76 65 73 20 69 6e 20 74 68 | up.of.highest.speed.slaves.in.th |
| 111f20 | 65 20 62 6f 6e 64 2e 00 52 65 63 65 69 76 65 64 20 52 41 44 49 55 53 20 61 74 74 72 69 62 75 74 | e.bond..Received.RADIUS.attribut |
| 111f40 | 65 73 20 68 61 76 65 20 61 20 68 69 67 68 65 72 20 70 72 69 6f 72 69 74 79 20 74 68 61 6e 20 70 | es.have.a.higher.priority.than.p |
| 111f60 | 61 72 61 6d 65 74 65 72 73 20 64 65 66 69 6e 65 64 20 77 69 74 68 69 6e 20 74 68 65 20 43 4c 49 | arameters.defined.within.the.CLI |
| 111f80 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 72 65 66 65 72 20 74 6f 20 74 68 65 20 65 78 70 | .configuration,.refer.to.the.exp |
| 111fa0 | 6c 61 6e 61 74 69 6f 6e 20 62 65 6c 6f 77 2e 00 52 65 63 6f 6d 6d 65 6e 64 65 64 20 66 6f 72 20 | lanation.below..Recommended.for. |
| 111fc0 | 6c 61 72 67 65 72 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 2e 00 52 65 63 6f 72 64 20 74 79 70 | larger.installations..Record.typ |
| 111fe0 | 65 73 00 52 65 64 69 72 65 63 74 20 48 54 54 50 20 74 6f 20 48 54 54 50 53 00 52 65 64 69 72 65 | es.Redirect.HTTP.to.HTTPS.Redire |
| 112000 | 63 74 20 4d 69 63 72 6f 73 6f 66 74 20 52 44 50 20 74 72 61 66 66 69 63 20 66 72 6f 6d 20 74 68 | ct.Microsoft.RDP.traffic.from.th |
| 112020 | 65 20 69 6e 74 65 72 6e 61 6c 20 28 4c 41 4e 2c 20 70 72 69 76 61 74 65 29 20 6e 65 74 77 6f 72 | e.internal.(LAN,.private).networ |
| 112040 | 6b 20 76 69 61 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 20 69 6e 20 | k.via.:ref:`destination-nat`.in. |
| 112060 | 72 75 6c 65 20 31 31 30 20 74 6f 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 2c 20 70 72 69 76 61 74 | rule.110.to.the.internal,.privat |
| 112080 | 65 20 68 6f 73 74 20 31 39 32 2e 30 2e 32 2e 34 30 2e 20 57 65 20 61 6c 73 6f 20 6e 65 65 64 20 | e.host.192.0.2.40..We.also.need. |
| 1120a0 | 61 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 2d 6e 61 74 60 20 72 75 6c 65 20 31 31 30 20 66 6f 72 | a.:ref:`source-nat`.rule.110.for |
| 1120c0 | 20 74 68 65 20 72 65 76 65 72 73 65 20 70 61 74 68 20 6f 66 20 74 68 65 20 74 72 61 66 66 69 63 | .the.reverse.path.of.the.traffic |
| 1120e0 | 2e 20 54 68 65 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 31 39 32 2e 30 2e 32 2e 30 | ..The.internal.network.192.0.2.0 |
| 112100 | 2f 32 34 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 76 69 61 20 69 6e 74 65 72 66 61 63 65 20 60 | /24.is.reachable.via.interface.` |
| 112120 | 65 74 68 30 2e 31 30 60 2e 00 52 65 64 69 72 65 63 74 20 4d 69 63 72 6f 73 6f 66 74 20 52 44 50 | eth0.10`..Redirect.Microsoft.RDP |
| 112140 | 20 74 72 61 66 66 69 63 20 66 72 6f 6d 20 74 68 65 20 6f 75 74 73 69 64 65 20 28 57 41 4e 2c 20 | .traffic.from.the.outside.(WAN,. |
| 112160 | 65 78 74 65 72 6e 61 6c 29 20 77 6f 72 6c 64 20 76 69 61 20 3a 72 65 66 3a 60 64 65 73 74 69 6e | external).world.via.:ref:`destin |
| 112180 | 61 74 69 6f 6e 2d 6e 61 74 60 20 69 6e 20 72 75 6c 65 20 31 30 30 20 74 6f 20 74 68 65 20 69 6e | ation-nat`.in.rule.100.to.the.in |
| 1121a0 | 74 65 72 6e 61 6c 2c 20 70 72 69 76 61 74 65 20 68 6f 73 74 20 31 39 32 2e 30 2e 32 2e 34 30 2e | ternal,.private.host.192.0.2.40. |
| 1121c0 | 00 52 65 64 69 72 65 63 74 20 55 52 4c 20 74 6f 20 61 20 6e 65 77 20 6c 6f 63 61 74 69 6f 6e 00 | .Redirect.URL.to.a.new.location. |
| 1121e0 | 52 65 64 69 73 74 72 69 62 75 74 69 6f 6e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 52 65 64 | Redistribution.Configuration.Red |
| 112200 | 75 6e 64 61 6e 63 79 20 61 6e 64 20 6c 6f 61 64 20 73 68 61 72 69 6e 67 2e 20 54 68 65 72 65 20 | undancy.and.load.sharing..There. |
| 112220 | 61 72 65 20 6d 75 6c 74 69 70 6c 65 20 4e 41 54 36 36 20 64 65 76 69 63 65 73 20 61 74 20 74 68 | are.multiple.NAT66.devices.at.th |
| 112240 | 65 20 65 64 67 65 20 6f 66 20 61 6e 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 20 74 6f 20 61 6e 6f | e.edge.of.an.IPv6.network.to.ano |
| 112260 | 74 68 65 72 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 2e 20 54 68 65 20 70 61 74 68 20 74 68 72 6f | ther.IPv6.network..The.path.thro |
| 112280 | 75 67 68 20 74 68 65 20 4e 41 54 36 36 20 64 65 76 69 63 65 20 74 6f 20 61 6e 6f 74 68 65 72 20 | ugh.the.NAT66.device.to.another. |
| 1122a0 | 49 50 76 36 20 6e 65 74 77 6f 72 6b 20 66 6f 72 6d 73 20 61 6e 20 65 71 75 69 76 61 6c 65 6e 74 | IPv6.network.forms.an.equivalent |
| 1122c0 | 20 72 6f 75 74 65 2c 20 61 6e 64 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 6c 6f 61 64 2d | .route,.and.traffic.can.be.load- |
| 1122e0 | 73 68 61 72 65 64 20 6f 6e 20 74 68 65 73 65 20 4e 41 54 36 36 20 64 65 76 69 63 65 73 2e 20 49 | shared.on.these.NAT66.devices..I |
| 112300 | 6e 20 74 68 69 73 20 63 61 73 65 2c 20 79 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 74 | n.this.case,.you.can.configure.t |
| 112320 | 68 65 20 73 61 6d 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 74 72 61 6e 73 6c 61 74 69 | he.same.source.address.translati |
| 112340 | 6f 6e 20 72 75 6c 65 73 20 6f 6e 20 74 68 65 73 65 20 4e 41 54 36 36 20 64 65 76 69 63 65 73 2c | on.rules.on.these.NAT66.devices, |
| 112360 | 20 73 6f 20 74 68 61 74 20 61 6e 79 20 4e 41 54 36 36 20 64 65 76 69 63 65 20 63 61 6e 20 68 61 | .so.that.any.NAT66.device.can.ha |
| 112380 | 6e 64 6c 65 20 49 50 76 36 20 74 72 61 66 66 69 63 20 62 65 74 77 65 65 6e 20 64 69 66 66 65 72 | ndle.IPv6.traffic.between.differ |
| 1123a0 | 65 6e 74 20 73 69 74 65 73 2e 00 52 65 67 69 73 74 65 72 20 44 4e 53 20 72 65 63 6f 72 64 20 60 | ent.sites..Register.DNS.record.` |
| 1123c0 | 60 65 78 61 6d 70 6c 65 2e 76 79 6f 73 2e 69 6f 60 60 20 6f 6e 20 44 4e 53 20 73 65 72 76 65 72 | `example.vyos.io``.on.DNS.server |
| 1123e0 | 20 60 60 6e 73 31 2e 76 79 6f 73 2e 69 6f 60 60 00 52 65 67 75 6c 61 72 20 56 4c 41 4e 73 20 28 | .``ns1.vyos.io``.Regular.VLANs.( |
| 112400 | 38 30 32 2e 31 71 29 00 52 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 20 74 6f 20 6d 61 | 802.1q).Regular.expression.to.ma |
| 112420 | 74 63 68 20 61 67 61 69 6e 73 74 20 61 20 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 2e 00 52 65 | tch.against.a.community-list..Re |
| 112440 | 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 20 74 6f 20 6d 61 74 63 68 20 61 67 61 69 6e 73 | gular.expression.to.match.agains |
| 112460 | 74 20 61 20 6c 61 72 67 65 20 63 6f 6d 6d 75 6e 69 74 79 20 6c 69 73 74 2e 00 52 65 67 75 6c 61 | t.a.large.community.list..Regula |
| 112480 | 72 20 65 78 70 72 65 73 73 69 6f 6e 20 74 6f 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 20 61 6e | r.expression.to.match.against.an |
| 1124a0 | 20 41 53 20 70 61 74 68 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 22 36 34 35 30 31 20 36 34 35 | .AS.path..For.example."64501.645 |
| 1124c0 | 30 32 22 2e 00 52 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 20 74 6f 20 6d 61 74 63 68 | 02"..Regular.expression.to.match |
| 1124e0 | 20 61 67 61 69 6e 73 74 20 61 6e 20 65 78 74 65 6e 64 65 64 20 63 6f 6d 6d 75 6e 69 74 79 20 6c | .against.an.extended.community.l |
| 112500 | 69 73 74 2c 20 77 68 65 72 65 20 74 65 78 74 20 63 6f 75 6c 64 20 62 65 3a 00 52 65 6a 65 63 74 | ist,.where.text.could.be:.Reject |
| 112520 | 20 44 48 43 50 20 6c 65 61 73 65 73 20 66 72 6f 6d 20 61 20 67 69 76 65 6e 20 61 64 64 72 65 73 | .DHCP.leases.from.a.given.addres |
| 112540 | 73 20 6f 72 20 72 61 6e 67 65 2e 20 54 68 69 73 20 69 73 20 75 73 65 66 75 6c 20 77 68 65 6e 20 | s.or.range..This.is.useful.when. |
| 112560 | 61 20 6d 6f 64 65 6d 20 67 69 76 65 73 20 61 20 6c 6f 63 61 6c 20 49 50 20 77 68 65 6e 20 66 69 | a.modem.gives.a.local.IP.when.fi |
| 112580 | 72 73 74 20 73 74 61 72 74 69 6e 67 2e 00 52 65 6d 65 6d 62 65 72 20 73 6f 75 72 63 65 20 49 50 | rst.starting..Remember.source.IP |
| 1125a0 | 20 69 6e 20 73 65 63 6f 6e 64 73 20 62 65 66 6f 72 65 20 72 65 73 65 74 20 74 68 65 69 72 20 73 | .in.seconds.before.reset.their.s |
| 1125c0 | 63 6f 72 65 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 31 38 30 30 2e 00 52 65 6d 6f 74 | core..The.default.is.1800..Remot |
| 1125e0 | 65 20 41 63 63 65 73 73 00 52 65 6d 6f 74 65 20 41 63 63 65 73 73 20 22 52 6f 61 64 57 61 72 72 | e.Access.Remote.Access."RoadWarr |
| 112600 | 69 6f 72 22 20 45 78 61 6d 70 6c 65 00 52 65 6d 6f 74 65 20 41 63 63 65 73 73 20 22 52 6f 61 64 | ior".Example.Remote.Access."Road |
| 112620 | 57 61 72 72 69 6f 72 22 20 63 6c 69 65 6e 74 73 00 52 65 6d 6f 74 65 20 43 6f 6e 66 69 67 75 72 | Warrior".clients.Remote.Configur |
| 112640 | 61 74 69 6f 6e 20 2d 20 41 6e 6e 6f 74 61 74 65 64 3a 00 52 65 6d 6f 74 65 20 43 6f 6e 66 69 67 | ation.-.Annotated:.Remote.Config |
| 112660 | 75 72 61 74 69 6f 6e 3a 00 52 65 6d 6f 74 65 20 48 6f 73 74 00 52 65 6d 6f 74 65 20 4c 6f 6b 69 | uration:.Remote.Host.Remote.Loki |
| 112680 | 20 70 6f 72 74 00 52 65 6d 6f 74 65 20 4c 6f 6b 69 20 75 72 6c 00 52 65 6d 6f 74 65 20 55 52 4c | .port.Remote.Loki.url.Remote.URL |
| 1126a0 | 00 52 65 6d 6f 74 65 20 55 52 4c 20 74 6f 20 53 70 6c 75 6e 6b 20 63 6f 6c 6c 65 63 74 6f 72 00 | .Remote.URL.to.Splunk.collector. |
| 1126c0 | 52 65 6d 6f 74 65 20 55 52 4c 2e 00 52 65 6d 6f 74 65 20 60 60 49 6e 66 6c 75 78 44 42 60 60 20 | Remote.URL..Remote.``InfluxDB``. |
| 1126e0 | 62 75 63 6b 65 74 20 6e 61 6d 65 00 52 65 6d 6f 74 65 20 64 61 74 61 62 61 73 65 20 6e 61 6d 65 | bucket.name.Remote.database.name |
| 112700 | 2e 00 52 65 6d 6f 74 65 20 70 65 65 72 20 49 50 20 60 3c 61 64 64 72 65 73 73 3e 60 20 6f 66 20 | ..Remote.peer.IP.`<address>`.of. |
| 112720 | 74 68 65 20 73 65 63 6f 6e 64 20 44 48 43 50 20 73 65 72 76 65 72 20 69 6e 20 74 68 69 73 20 48 | the.second.DHCP.server.in.this.H |
| 112740 | 41 20 63 6c 75 73 74 65 72 2e 00 52 65 6d 6f 74 65 20 70 65 65 72 20 49 50 20 60 3c 61 64 64 72 | A.cluster..Remote.peer.IP.`<addr |
| 112760 | 65 73 73 3e 60 20 6f 66 20 74 68 65 20 73 65 63 6f 6e 64 20 44 48 43 50 20 73 65 72 76 65 72 20 | ess>`.of.the.second.DHCP.server. |
| 112780 | 69 6e 20 74 68 69 73 20 66 61 69 6c 6f 76 65 72 20 63 6c 75 73 74 65 72 2e 00 52 65 6d 6f 74 65 | in.this.failover.cluster..Remote |
| 1127a0 | 20 70 6f 72 74 00 52 65 6d 6f 74 65 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 20 69 6e 74 65 72 76 | .port.Remote.transmission.interv |
| 1127c0 | 61 6c 20 77 69 6c 6c 20 62 65 20 6d 75 6c 74 69 70 6c 69 65 64 20 62 79 20 74 68 69 73 20 76 61 | al.will.be.multiplied.by.this.va |
| 1127e0 | 6c 75 65 00 52 65 6e 61 6d 69 6e 67 20 63 6c 69 65 6e 74 73 20 69 6e 74 65 72 66 61 63 65 73 20 | lue.Renaming.clients.interfaces. |
| 112800 | 62 79 20 52 41 44 49 55 53 00 52 65 70 65 61 74 20 74 68 65 20 70 72 6f 63 65 64 75 72 65 20 6f | by.RADIUS.Repeat.the.procedure.o |
| 112820 | 6e 20 74 68 65 20 6f 74 68 65 72 20 72 6f 75 74 65 72 2e 00 52 65 70 6c 61 79 20 70 72 6f 74 65 | n.the.other.router..Replay.prote |
| 112840 | 63 74 69 6f 6e 00 52 65 71 75 65 73 74 20 6f 6e 6c 79 20 61 20 74 65 6d 70 6f 72 61 72 79 20 61 | ction.Request.only.a.temporary.a |
| 112860 | 64 64 72 65 73 73 20 61 6e 64 20 6e 6f 74 20 66 6f 72 6d 20 61 6e 20 49 41 5f 4e 41 20 28 49 64 | ddress.and.not.form.an.IA_NA.(Id |
| 112880 | 65 6e 74 69 74 79 20 41 73 73 6f 63 69 61 74 69 6f 6e 20 66 6f 72 20 4e 6f 6e 2d 74 65 6d 70 6f | entity.Association.for.Non-tempo |
| 1128a0 | 72 61 72 79 20 41 64 64 72 65 73 73 65 73 29 20 70 61 72 74 6e 65 72 73 68 69 70 2e 00 52 65 71 | rary.Addresses).partnership..Req |
| 1128c0 | 75 65 73 74 73 20 61 72 65 20 66 6f 72 77 61 72 64 65 64 20 74 68 72 6f 75 67 68 20 60 60 65 74 | uests.are.forwarded.through.``et |
| 1128e0 | 68 32 60 60 20 61 73 20 74 68 65 20 60 75 70 73 74 72 65 61 6d 20 69 6e 74 65 72 66 61 63 65 60 | h2``.as.the.`upstream.interface` |
| 112900 | 00 52 65 71 75 69 72 65 20 74 68 65 20 70 65 65 72 20 74 6f 20 61 75 74 68 65 6e 74 69 63 61 74 | .Require.the.peer.to.authenticat |
| 112920 | 65 20 69 74 73 65 6c 66 20 75 73 69 6e 67 20 6f 6e 65 20 6f 66 20 74 68 65 20 66 6f 6c 6c 6f 77 | e.itself.using.one.of.the.follow |
| 112940 | 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 3a 20 70 61 70 2c 20 63 68 61 70 2c 20 6d 73 63 68 61 70 | ing.protocols:.pap,.chap,.mschap |
| 112960 | 2c 20 6d 73 63 68 61 70 2d 76 32 2e 00 52 65 71 75 69 72 65 6d 65 6e 74 73 00 52 65 71 75 69 72 | ,.mschap-v2..Requirements.Requir |
| 112980 | 65 6d 65 6e 74 73 20 74 6f 20 65 6e 61 62 6c 65 20 73 79 6e 70 72 6f 78 79 3a 00 52 65 71 75 69 | ements.to.enable.synproxy:.Requi |
| 1129a0 | 72 65 6d 65 6e 74 73 3a 00 52 65 73 65 72 76 65 64 20 50 6f 72 74 73 3a 20 41 73 73 75 6d 65 20 | rements:.Reserved.Ports:.Assume. |
| 1129c0 | 31 30 32 34 20 70 6f 72 74 73 20 61 72 65 20 72 65 73 65 72 76 65 64 20 66 6f 72 20 77 65 6c 6c | 1024.ports.are.reserved.for.well |
| 1129e0 | 2d 6b 6e 6f 77 6e 20 73 65 72 76 69 63 65 73 20 61 6e 64 20 61 64 6d 69 6e 69 73 74 72 61 74 69 | -known.services.and.administrati |
| 112a00 | 76 65 20 70 75 72 70 6f 73 65 73 2e 00 52 65 73 65 74 00 52 65 73 65 74 20 4f 70 65 6e 56 50 4e | ve.purposes..Reset.Reset.OpenVPN |
| 112a20 | 00 52 65 73 65 74 20 61 6c 6c 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 49 50 53 65 63 20 56 50 | .Reset.all.site-to-site.IPSec.VP |
| 112a40 | 4e 20 73 65 73 73 69 6f 6e 73 2e 20 49 74 20 74 65 72 6d 69 6e 61 74 65 73 20 61 6c 6c 20 61 63 | N.sessions..It.terminates.all.ac |
| 112a60 | 74 69 76 65 20 63 68 69 6c 64 5f 73 61 20 61 6e 64 20 72 65 69 6e 69 74 69 61 74 65 73 20 74 68 | tive.child_sa.and.reinitiates.th |
| 112a80 | 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 52 65 73 65 74 20 61 6c 6c 20 74 75 6e 6e 65 6c 73 20 | e.connection..Reset.all.tunnels. |
| 112aa0 | 66 6f 72 20 61 20 67 69 76 65 6e 20 70 65 65 72 2c 20 63 61 6e 20 73 70 65 63 69 66 79 20 74 75 | for.a.given.peer,.can.specify.tu |
| 112ac0 | 6e 6e 65 6c 20 6f 72 20 76 74 69 20 69 6e 74 65 72 66 61 63 65 2e 20 49 74 20 74 65 72 6d 69 6e | nnel.or.vti.interface..It.termin |
| 112ae0 | 61 74 65 73 20 61 20 73 70 65 63 69 66 69 63 20 63 68 69 6c 64 5f 73 61 20 61 6e 64 20 72 65 69 | ates.a.specific.child_sa.and.rei |
| 112b00 | 6e 69 74 69 61 74 65 73 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 52 65 73 65 74 20 63 | nitiates.the.connection..Reset.c |
| 112b20 | 6f 6d 6d 61 6e 64 73 00 52 65 73 65 74 73 20 74 68 65 20 6c 6f 63 61 6c 20 44 4e 53 20 66 6f 72 | ommands.Resets.the.local.DNS.for |
| 112b40 | 77 61 72 64 69 6e 67 20 63 61 63 68 65 20 64 61 74 61 62 61 73 65 2e 20 59 6f 75 20 63 61 6e 20 | warding.cache.database..You.can. |
| 112b60 | 72 65 73 65 74 20 74 68 65 20 63 61 63 68 65 20 66 6f 72 20 61 6c 6c 20 65 6e 74 72 69 65 73 20 | reset.the.cache.for.all.entries. |
| 112b80 | 6f 72 20 6f 6e 6c 79 20 66 6f 72 20 65 6e 74 72 69 65 73 20 74 6f 20 61 20 73 70 65 63 69 66 69 | or.only.for.entries.to.a.specifi |
| 112ba0 | 63 20 64 6f 6d 61 69 6e 2e 00 52 65 73 74 61 72 74 00 52 65 73 74 61 72 74 20 44 48 43 50 20 72 | c.domain..Restart.Restart.DHCP.r |
| 112bc0 | 65 6c 61 79 20 73 65 72 76 69 63 65 00 52 65 73 74 61 72 74 20 44 48 43 50 76 36 20 72 65 6c 61 | elay.service.Restart.DHCPv6.rela |
| 112be0 | 79 20 61 67 65 6e 74 20 69 6d 6d 65 64 69 61 74 65 6c 79 2e 00 52 65 73 74 61 72 74 20 61 20 67 | y.agent.immediately..Restart.a.g |
| 112c00 | 69 76 65 6e 20 63 6f 6e 74 61 69 6e 65 72 00 52 65 73 74 61 72 74 20 6d 44 4e 53 20 72 65 70 65 | iven.container.Restart.mDNS.repe |
| 112c20 | 61 74 65 72 20 73 65 72 76 69 63 65 2e 00 52 65 73 74 61 72 74 20 74 68 65 20 44 48 43 50 20 73 | ater.service..Restart.the.DHCP.s |
| 112c40 | 65 72 76 65 72 00 52 65 73 74 61 72 74 20 74 68 65 20 49 47 4d 50 20 70 72 6f 78 79 20 70 72 6f | erver.Restart.the.IGMP.proxy.pro |
| 112c60 | 63 65 73 73 2e 00 52 65 73 74 61 72 74 20 74 68 65 20 49 50 73 65 63 20 56 50 4e 20 70 72 6f 63 | cess..Restart.the.IPsec.VPN.proc |
| 112c80 | 65 73 73 20 61 6e 64 20 72 65 2d 65 73 74 61 62 6c 69 73 68 65 73 20 74 68 65 20 63 6f 6e 6e 65 | ess.and.re-establishes.the.conne |
| 112ca0 | 63 74 69 6f 6e 2e 00 52 65 73 74 61 72 74 20 74 68 65 20 53 53 48 20 64 61 65 6d 6f 6e 20 70 72 | ction..Restart.the.SSH.daemon.pr |
| 112cc0 | 6f 63 65 73 73 2c 20 74 68 65 20 63 75 72 72 65 6e 74 20 73 65 73 73 69 6f 6e 20 69 73 20 6e 6f | ocess,.the.current.session.is.no |
| 112ce0 | 74 20 61 66 66 65 63 74 65 64 2c 20 6f 6e 6c 79 20 74 68 65 20 62 61 63 6b 67 72 6f 75 6e 64 20 | t.affected,.only.the.background. |
| 112d00 | 64 61 65 6d 6f 6e 20 69 73 20 72 65 73 74 61 72 74 65 64 2e 00 52 65 73 74 61 72 74 73 20 74 68 | daemon.is.restarted..Restarts.th |
| 112d20 | 65 20 44 4e 53 20 72 65 63 75 72 73 6f 72 20 70 72 6f 63 65 73 73 2e 20 54 68 69 73 20 61 6c 73 | e.DNS.recursor.process..This.als |
| 112d40 | 6f 20 69 6e 76 61 6c 69 64 61 74 65 73 20 74 68 65 20 6c 6f 63 61 6c 20 44 4e 53 20 66 6f 72 77 | o.invalidates.the.local.DNS.forw |
| 112d60 | 61 72 64 69 6e 67 20 63 61 63 68 65 2e 00 52 65 73 74 61 72 74 73 20 74 68 65 20 73 65 72 76 69 | arding.cache..Restarts.the.servi |
| 112d80 | 63 65 2e 20 49 74 20 63 68 65 63 6b 73 20 69 66 20 74 68 65 20 53 75 72 69 63 61 74 61 20 73 65 | ce..It.checks.if.the.Suricata.se |
| 112da0 | 72 76 69 63 65 20 69 73 20 61 63 74 69 76 65 20 62 65 66 6f 72 65 20 61 74 74 65 6d 70 74 69 6e | rvice.is.active.before.attemptin |
| 112dc0 | 67 20 74 6f 20 72 65 73 74 61 72 74 20 69 74 2e 20 49 66 20 69 74 20 69 73 20 6e 6f 74 20 61 63 | g.to.restart.it..If.it.is.not.ac |
| 112de0 | 74 69 76 65 2c 20 61 20 6d 65 73 73 61 67 65 20 69 6e 64 69 63 61 74 65 73 20 74 68 61 74 20 74 | tive,.a.message.indicates.that.t |
| 112e00 | 68 65 20 73 65 72 76 69 63 65 20 69 73 20 6e 6f 74 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 68 | he.service.is.not.configured..Th |
| 112e20 | 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 20 77 68 65 6e 20 61 64 64 69 6e 67 20 6e | is.command.is.used.when.adding.n |
| 112e40 | 65 77 20 72 75 6c 65 73 20 6d 61 6e 75 61 6c 6c 79 2e 00 52 65 73 75 6c 74 69 6e 67 20 69 6e 00 | ew.rules.manually..Resulting.in. |
| 112e60 | 52 65 73 75 6c 74 73 20 69 6e 3a 00 52 65 74 72 61 6e 73 6d 69 74 20 54 69 6d 65 72 00 52 65 74 | Results.in:.Retransmit.Timer.Ret |
| 112e80 | 72 69 65 76 65 20 63 75 72 72 65 6e 74 20 73 74 61 74 69 73 74 69 63 73 20 6f 66 20 63 6f 6e 6e | rieve.current.statistics.of.conn |
| 112ea0 | 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 75 62 73 79 73 74 65 6d 2e 00 52 65 74 72 69 | ection.tracking.subsystem..Retri |
| 112ec0 | 65 76 65 20 63 75 72 72 65 6e 74 20 73 74 61 74 75 73 20 6f 66 20 63 6f 6e 6e 65 63 74 69 6f 6e | eve.current.status.of.connection |
| 112ee0 | 20 74 72 61 63 6b 69 6e 67 20 73 75 62 73 79 73 74 65 6d 2e 00 52 65 74 72 69 65 76 65 20 70 75 | .tracking.subsystem..Retrieve.pu |
| 112f00 | 62 6c 69 63 20 6b 65 79 20 70 6f 72 74 69 6f 6e 20 66 72 6f 6d 20 63 6f 6e 66 69 67 75 72 65 64 | blic.key.portion.from.configured |
| 112f20 | 20 57 49 72 65 47 75 61 72 64 20 69 6e 74 65 72 66 61 63 65 2e 00 52 65 76 65 72 73 65 2d 70 72 | .WIreGuard.interface..Reverse-pr |
| 112f40 | 6f 78 79 00 52 6f 75 6e 64 20 52 6f 62 69 6e 00 52 6f 75 74 65 20 41 67 67 72 65 67 61 74 69 6f | oxy.Round.Robin.Route.Aggregatio |
| 112f60 | 6e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 52 6f 75 74 65 20 44 61 6d 70 65 6e 69 6e 67 00 | n.Configuration.Route.Dampening. |
| 112f80 | 52 6f 75 74 65 20 46 69 6c 74 65 72 69 6e 67 00 52 6f 75 74 65 20 46 69 6c 74 65 72 69 6e 67 20 | Route.Filtering.Route.Filtering. |
| 112fa0 | 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 52 6f 75 74 65 20 4d 61 70 00 52 6f 75 74 65 20 4d 61 | Configuration.Route.Map.Route.Ma |
| 112fc0 | 70 20 50 6f 6c 69 63 79 00 52 6f 75 74 65 20 52 65 64 69 73 74 72 69 62 75 74 69 6f 6e 00 52 6f | p.Policy.Route.Redistribution.Ro |
| 112fe0 | 75 74 65 20 52 65 66 6c 65 63 74 6f 72 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 52 6f 75 74 | ute.Reflector.Configuration.Rout |
| 113000 | 65 20 53 65 6c 65 63 74 69 6f 6e 00 52 6f 75 74 65 20 53 65 6c 65 63 74 69 6f 6e 20 43 6f 6e 66 | e.Selection.Route.Selection.Conf |
| 113020 | 69 67 75 72 61 74 69 6f 6e 00 52 6f 75 74 65 20 61 6e 64 20 52 6f 75 74 65 36 20 50 6f 6c 69 63 | iguration.Route.and.Route6.Polic |
| 113040 | 79 00 52 6f 75 74 65 20 64 61 6d 70 65 6e 69 6e 67 20 77 69 63 68 20 64 65 73 63 72 69 62 65 64 | y.Route.dampening.wich.described |
| 113060 | 20 69 6e 20 3a 72 66 63 3a 60 32 34 33 39 60 20 65 6e 61 62 6c 65 73 20 79 6f 75 20 74 6f 20 69 | .in.:rfc:`2439`.enables.you.to.i |
| 113080 | 64 65 6e 74 69 66 79 20 72 6f 75 74 65 73 20 74 68 61 74 20 72 65 70 65 61 74 65 64 6c 79 20 66 | dentify.routes.that.repeatedly.f |
| 1130a0 | 61 69 6c 20 61 6e 64 20 72 65 74 75 72 6e 2e 20 49 66 20 72 6f 75 74 65 20 64 61 6d 70 65 6e 69 | ail.and.return..If.route.dampeni |
| 1130c0 | 6e 67 20 69 73 20 65 6e 61 62 6c 65 64 2c 20 61 6e 20 75 6e 73 74 61 62 6c 65 20 72 6f 75 74 65 | ng.is.enabled,.an.unstable.route |
| 1130e0 | 20 61 63 63 75 6d 75 6c 61 74 65 73 20 70 65 6e 61 6c 74 69 65 73 20 65 61 63 68 20 74 69 6d 65 | .accumulates.penalties.each.time |
| 113100 | 20 74 68 65 20 72 6f 75 74 65 20 66 61 69 6c 73 20 61 6e 64 20 72 65 74 75 72 6e 73 2e 20 49 66 | .the.route.fails.and.returns..If |
| 113120 | 20 74 68 65 20 61 63 63 75 6d 75 6c 61 74 65 64 20 70 65 6e 61 6c 74 69 65 73 20 65 78 63 65 65 | .the.accumulated.penalties.excee |
| 113140 | 64 20 61 20 74 68 72 65 73 68 6f 6c 64 2c 20 74 68 65 20 72 6f 75 74 65 20 69 73 20 6e 6f 20 6c | d.a.threshold,.the.route.is.no.l |
| 113160 | 6f 6e 67 65 72 20 61 64 76 65 72 74 69 73 65 64 2e 20 54 68 69 73 20 69 73 20 72 6f 75 74 65 20 | onger.advertised..This.is.route. |
| 113180 | 73 75 70 70 72 65 73 73 69 6f 6e 2e 20 52 6f 75 74 65 73 20 74 68 61 74 20 68 61 76 65 20 62 65 | suppression..Routes.that.have.be |
| 1131a0 | 65 6e 20 73 75 70 70 72 65 73 73 65 64 20 61 72 65 20 72 65 2d 65 6e 74 65 72 65 64 20 69 6e 74 | en.suppressed.are.re-entered.int |
| 1131c0 | 6f 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 6f 6e 6c 79 20 77 68 65 6e 20 74 68 | o.the.routing.table.only.when.th |
| 1131e0 | 65 20 61 6d 6f 75 6e 74 20 6f 66 20 74 68 65 69 72 20 70 65 6e 61 6c 74 79 20 66 61 6c 6c 73 20 | e.amount.of.their.penalty.falls. |
| 113200 | 62 65 6c 6f 77 20 61 20 74 68 72 65 73 68 6f 6c 64 2e 00 52 6f 75 74 65 20 66 69 6c 74 65 72 20 | below.a.threshold..Route.filter. |
| 113220 | 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 75 73 69 6e 67 20 61 20 72 6f 75 74 65 2d 6d 61 70 | can.be.applied.using.a.route-map |
| 113240 | 3a 00 52 6f 75 74 65 20 6d 61 70 20 69 73 20 61 20 70 6f 77 65 72 66 75 6c 6c 20 63 6f 6d 6d 61 | :.Route.map.is.a.powerfull.comma |
| 113260 | 6e 64 2c 20 74 68 61 74 20 67 69 76 65 73 20 6e 65 74 77 6f 72 6b 20 61 64 6d 69 6e 69 73 74 72 | nd,.that.gives.network.administr |
| 113280 | 61 74 6f 72 73 20 61 20 76 65 72 79 20 75 73 65 66 75 6c 20 61 6e 64 20 66 6c 65 78 69 62 6c 65 | ators.a.very.useful.and.flexible |
| 1132a0 | 20 74 6f 6f 6c 20 66 6f 72 20 74 72 61 66 66 69 63 20 6d 61 6e 69 70 75 6c 61 74 69 6f 6e 2e 00 | .tool.for.traffic.manipulation.. |
| 1132c0 | 52 6f 75 74 65 20 6d 61 70 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 | Route.maps.can.be.configured.to. |
| 1132e0 | 6d 61 74 63 68 20 61 20 73 70 65 63 69 66 69 63 20 52 50 4b 49 20 76 61 6c 69 64 61 74 69 6f 6e | match.a.specific.RPKI.validation |
| 113300 | 20 73 74 61 74 65 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 74 68 65 20 63 72 65 61 74 69 6f 6e | .state..This.allows.the.creation |
| 113320 | 20 6f 66 20 6c 6f 63 61 6c 20 70 6f 6c 69 63 69 65 73 2c 20 77 68 69 63 68 20 68 61 6e 64 6c 65 | .of.local.policies,.which.handle |
| 113340 | 20 42 47 50 20 72 6f 75 74 65 73 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 6f 75 74 63 6f 6d 65 | .BGP.routes.based.on.the.outcome |
| 113360 | 20 6f 66 20 74 68 65 20 50 72 65 66 69 78 20 4f 72 69 67 69 6e 20 56 61 6c 69 64 61 74 69 6f 6e | .of.the.Prefix.Origin.Validation |
| 113380 | 2e 00 52 6f 75 74 65 20 6d 65 74 72 69 63 00 52 6f 75 74 65 20 74 61 67 20 74 6f 20 6d 61 74 63 | ..Route.metric.Route.tag.to.matc |
| 1133a0 | 68 2e 00 52 6f 75 74 65 72 20 41 64 76 65 72 74 69 73 65 6d 65 6e 74 73 00 52 6f 75 74 65 72 20 | h..Router.Advertisements.Router. |
| 1133c0 | 4c 69 66 65 74 69 6d 65 00 52 6f 75 74 65 72 20 72 65 63 65 69 76 65 73 20 44 48 43 50 20 63 6c | Lifetime.Router.receives.DHCP.cl |
| 1133e0 | 69 65 6e 74 20 72 65 71 75 65 73 74 73 20 6f 6e 20 60 60 65 74 68 31 60 60 20 61 6e 64 20 72 65 | ient.requests.on.``eth1``.and.re |
| 113400 | 6c 61 79 73 20 74 68 65 6d 20 74 6f 20 74 68 65 20 73 65 72 76 65 72 20 61 74 20 31 30 2e 30 2e | lays.them.to.the.server.at.10.0. |
| 113420 | 31 2e 34 20 6f 6e 20 60 60 65 74 68 32 60 60 2e 00 52 6f 75 74 65 73 20 65 78 70 6f 72 74 65 64 | 1.4.on.``eth2``..Routes.exported |
| 113440 | 20 66 72 6f 6d 20 61 20 75 6e 69 63 61 73 74 20 56 52 46 20 74 6f 20 74 68 65 20 56 50 4e 20 52 | .from.a.unicast.VRF.to.the.VPN.R |
| 113460 | 49 42 20 6d 75 73 74 20 62 65 20 61 75 67 6d 65 6e 74 65 64 20 62 79 20 74 77 6f 20 70 61 72 61 | IB.must.be.augmented.by.two.para |
| 113480 | 6d 65 74 65 72 73 3a 00 52 6f 75 74 65 73 20 6f 6e 20 4e 6f 64 65 20 32 3a 00 52 6f 75 74 65 73 | meters:.Routes.on.Node.2:.Routes |
| 1134a0 | 20 74 68 61 74 20 61 72 65 20 73 65 6e 74 20 66 72 6f 6d 20 70 72 6f 76 69 64 65 72 2c 20 72 73 | .that.are.sent.from.provider,.rs |
| 1134c0 | 2d 73 65 72 76 65 72 2c 20 6f 72 20 74 68 65 20 70 65 65 72 20 6c 6f 63 61 6c 2d 72 6f 6c 65 20 | -server,.or.the.peer.local-role. |
| 1134e0 | 28 6f 72 20 69 66 20 72 65 63 65 69 76 65 64 20 62 79 20 63 75 73 74 6f 6d 65 72 2c 20 72 73 2d | (or.if.received.by.customer,.rs- |
| 113500 | 63 6c 69 65 6e 74 2c 20 6f 72 20 74 68 65 20 70 65 65 72 20 6c 6f 63 61 6c 2d 72 6f 6c 65 29 20 | client,.or.the.peer.local-role). |
| 113520 | 77 69 6c 6c 20 62 65 20 6d 61 72 6b 65 64 20 77 69 74 68 20 61 20 6e 65 77 20 4f 6e 6c 79 20 74 | will.be.marked.with.a.new.Only.t |
| 113540 | 6f 20 43 75 73 74 6f 6d 65 72 20 28 4f 54 43 29 20 61 74 74 72 69 62 75 74 65 2e 00 52 6f 75 74 | o.Customer.(OTC).attribute..Rout |
| 113560 | 65 73 20 77 69 74 68 20 61 20 64 69 73 74 61 6e 63 65 20 6f 66 20 32 35 35 20 61 72 65 20 65 66 | es.with.a.distance.of.255.are.ef |
| 113580 | 66 65 63 74 69 76 65 6c 79 20 64 69 73 61 62 6c 65 64 20 61 6e 64 20 6e 6f 74 20 69 6e 73 74 61 | fectively.disabled.and.not.insta |
| 1135a0 | 6c 6c 65 64 20 69 6e 74 6f 20 74 68 65 20 6b 65 72 6e 65 6c 2e 00 52 6f 75 74 65 73 20 77 69 74 | lled.into.the.kernel..Routes.wit |
| 1135c0 | 68 20 74 68 69 73 20 61 74 74 72 69 62 75 74 65 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 73 65 6e | h.this.attribute.can.only.be.sen |
| 1135e0 | 74 20 74 6f 20 79 6f 75 72 20 6e 65 69 67 68 62 6f 72 20 69 66 20 79 6f 75 72 20 6c 6f 63 61 6c | t.to.your.neighbor.if.your.local |
| 113600 | 2d 72 6f 6c 65 20 69 73 20 70 72 6f 76 69 64 65 72 20 6f 72 20 72 73 2d 73 65 72 76 65 72 2e 20 | -role.is.provider.or.rs-server.. |
| 113620 | 52 6f 75 74 65 73 20 77 69 74 68 20 74 68 69 73 20 61 74 74 72 69 62 75 74 65 20 63 61 6e 20 62 | Routes.with.this.attribute.can.b |
| 113640 | 65 20 72 65 63 65 69 76 65 64 20 6f 6e 6c 79 20 69 66 20 79 6f 75 72 20 6c 6f 63 61 6c 2d 72 6f | e.received.only.if.your.local-ro |
| 113660 | 6c 65 20 69 73 20 63 75 73 74 6f 6d 65 72 20 6f 72 20 72 73 2d 63 6c 69 65 6e 74 2e 00 52 6f 75 | le.is.customer.or.rs-client..Rou |
| 113680 | 74 69 6e 65 00 52 6f 75 74 69 6e 67 00 52 6f 75 74 69 6e 67 20 74 61 62 6c 65 73 20 74 68 61 74 | tine.Routing.Routing.tables.that |
| 1136a0 | 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 69 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 20 61 72 | .will.be.used.in.this.example.ar |
| 1136c0 | 65 3a 00 52 75 6c 65 20 31 30 20 6d 61 74 63 68 65 73 20 72 65 71 75 65 73 74 73 20 77 69 74 68 | e:.Rule.10.matches.requests.with |
| 1136e0 | 20 74 68 65 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 60 60 6e 6f 64 65 31 2e 65 78 61 6d 70 6c 65 | .the.domain.name.``node1.example |
| 113700 | 2e 63 6f 6d 60 60 20 66 6f 72 77 61 72 64 73 20 74 6f 20 74 68 65 20 62 61 63 6b 65 6e 64 20 60 | .com``.forwards.to.the.backend.` |
| 113720 | 60 62 6b 2d 61 70 69 2d 30 31 60 60 00 52 75 6c 65 20 31 30 20 6d 61 74 63 68 65 73 20 72 65 71 | `bk-api-01``.Rule.10.matches.req |
| 113740 | 75 65 73 74 73 20 77 69 74 68 20 74 68 65 20 65 78 61 63 74 20 55 52 4c 20 70 61 74 68 20 60 60 | uests.with.the.exact.URL.path.`` |
| 113760 | 2f 2e 77 65 6c 6c 2d 6b 6e 6f 77 6e 2f 78 78 78 60 60 20 61 6e 64 20 72 65 64 69 72 65 63 74 73 | /.well-known/xxx``.and.redirects |
| 113780 | 20 74 6f 20 6c 6f 63 61 74 69 6f 6e 20 60 60 2f 63 65 72 74 73 2f 60 60 2e 00 52 75 6c 65 20 31 | .to.location.``/certs/``..Rule.1 |
| 1137a0 | 31 30 20 69 73 20 68 69 74 2c 20 73 6f 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 61 63 63 65 | 10.is.hit,.so.connection.is.acce |
| 1137c0 | 70 74 65 64 2e 00 52 75 6c 65 20 32 30 20 6d 61 74 63 68 65 73 20 72 65 71 75 65 73 74 73 20 77 | pted..Rule.20.matches.requests.w |
| 1137e0 | 69 74 68 20 55 52 4c 20 70 61 74 68 73 20 65 6e 64 69 6e 67 20 69 6e 20 60 60 2f 6d 61 69 6c 60 | ith.URL.paths.ending.in.``/mail` |
| 113800 | 60 20 6f 72 20 65 78 61 63 74 20 70 61 74 68 20 60 60 2f 65 6d 61 69 6c 2f 62 61 72 60 60 20 72 | `.or.exact.path.``/email/bar``.r |
| 113820 | 65 64 69 72 65 63 74 20 74 6f 20 6c 6f 63 61 74 69 6f 6e 20 60 60 2f 70 6f 73 74 66 69 78 2f 60 | edirect.to.location.``/postfix/` |
| 113840 | 60 2e 00 52 75 6c 65 20 32 30 20 6d 61 74 63 68 65 73 20 72 65 71 75 65 73 74 73 20 77 69 74 68 | `..Rule.20.matches.requests.with |
| 113860 | 20 74 68 65 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 60 60 6e 6f 64 65 32 2e 65 78 61 6d 70 6c 65 | .the.domain.name.``node2.example |
| 113880 | 2e 63 6f 6d 60 60 20 66 6f 72 77 61 72 64 73 20 74 6f 20 74 68 65 20 62 61 63 6b 65 6e 64 20 60 | .com``.forwards.to.the.backend.` |
| 1138a0 | 60 62 6b 2d 61 70 69 2d 30 32 60 60 00 52 75 6c 65 20 53 74 61 74 75 73 00 52 75 6c 65 2d 53 65 | `bk-api-02``.Rule.Status.Rule-Se |
| 1138c0 | 74 73 00 52 75 6c 65 2d 73 65 74 20 6f 76 65 72 76 69 65 77 00 52 75 6c 65 73 00 52 75 6c 65 73 | ts.Rule-set.overview.Rules.Rules |
| 1138e0 | 20 61 6c 6c 6f 77 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 61 6e 64 20 72 6f 75 74 65 20 69 6e 63 6f | .allow.to.control.and.route.inco |
| 113900 | 6d 69 6e 67 20 74 72 61 66 66 69 63 20 74 6f 20 73 70 65 63 69 66 69 63 20 62 61 63 6b 65 6e 64 | ming.traffic.to.specific.backend |
| 113920 | 20 62 61 73 65 64 20 6f 6e 20 70 72 65 64 65 66 69 6e 65 64 20 63 6f 6e 64 69 74 69 6f 6e 73 2e | .based.on.predefined.conditions. |
| 113940 | 20 52 75 6c 65 73 20 61 6c 6c 6f 77 20 74 6f 20 64 65 66 69 6e 65 20 6d 61 74 63 68 69 6e 67 20 | .Rules.allow.to.define.matching. |
| 113960 | 63 72 69 74 65 72 69 61 20 61 6e 64 20 70 65 72 66 6f 72 6d 20 61 63 74 69 6f 6e 20 61 63 63 6f | criteria.and.perform.action.acco |
| 113980 | 72 64 69 6e 67 6c 79 2e 00 52 75 6c 65 73 20 77 69 6c 6c 20 62 65 20 63 72 65 61 74 65 64 20 66 | rdingly..Rules.will.be.created.f |
| 1139a0 | 6f 72 20 62 6f 74 68 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 2d 6e 61 74 60 20 61 6e 64 20 3a 72 | or.both.:ref:`source-nat`.and.:r |
| 1139c0 | 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 2e 00 52 75 6e 6e 69 6e 67 20 42 65 | ef:`destination-nat`..Running.Be |
| 1139e0 | 68 69 6e 64 20 4e 41 54 00 53 4e 41 54 00 53 4e 41 54 36 34 00 53 4e 41 54 36 36 00 53 4e 4d 50 | hind.NAT.SNAT.SNAT64.SNAT66.SNMP |
| 113a00 | 00 53 4e 4d 50 20 45 78 74 65 6e 73 69 6f 6e 73 00 53 4e 4d 50 20 50 72 6f 74 6f 63 6f 6c 20 56 | .SNMP.Extensions.SNMP.Protocol.V |
| 113a20 | 65 72 73 69 6f 6e 73 00 53 4e 4d 50 20 63 61 6e 20 77 6f 72 6b 20 73 79 6e 63 68 72 6f 6e 6f 75 | ersions.SNMP.can.work.synchronou |
| 113a40 | 73 6c 79 20 6f 72 20 61 73 79 6e 63 68 72 6f 6e 6f 75 73 6c 79 2e 20 49 6e 20 73 79 6e 63 68 72 | sly.or.asynchronously..In.synchr |
| 113a60 | 6f 6e 6f 75 73 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 2c 20 74 68 65 20 6d 6f 6e 69 74 6f 72 | onous.communication,.the.monitor |
| 113a80 | 69 6e 67 20 73 79 73 74 65 6d 20 71 75 65 72 69 65 73 20 74 68 65 20 72 6f 75 74 65 72 20 70 65 | ing.system.queries.the.router.pe |
| 113aa0 | 72 69 6f 64 69 63 61 6c 6c 79 2e 20 49 6e 20 61 73 79 6e 63 68 72 6f 6e 6f 75 73 2c 20 74 68 65 | riodically..In.asynchronous,.the |
| 113ac0 | 20 72 6f 75 74 65 72 20 73 65 6e 64 73 20 6e 6f 74 69 66 69 63 61 74 69 6f 6e 20 74 6f 20 74 68 | .router.sends.notification.to.th |
| 113ae0 | 65 20 22 74 72 61 70 22 20 28 74 68 65 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 68 6f 73 74 29 2e 00 | e."trap".(the.monitoring.host).. |
| 113b00 | 53 4e 4d 50 20 69 73 20 61 20 63 6f 6d 70 6f 6e 65 6e 74 20 6f 66 20 74 68 65 20 49 6e 74 65 72 | SNMP.is.a.component.of.the.Inter |
| 113b20 | 6e 65 74 20 50 72 6f 74 6f 63 6f 6c 20 53 75 69 74 65 20 61 73 20 64 65 66 69 6e 65 64 20 62 79 | net.Protocol.Suite.as.defined.by |
| 113b40 | 20 74 68 65 20 49 6e 74 65 72 6e 65 74 20 45 6e 67 69 6e 65 65 72 69 6e 67 20 54 61 73 6b 20 46 | .the.Internet.Engineering.Task.F |
| 113b60 | 6f 72 63 65 20 28 49 45 54 46 29 2e 20 49 74 20 63 6f 6e 73 69 73 74 73 20 6f 66 20 61 20 73 65 | orce.(IETF)..It.consists.of.a.se |
| 113b80 | 74 20 6f 66 20 73 74 61 6e 64 61 72 64 73 20 66 6f 72 20 6e 65 74 77 6f 72 6b 20 6d 61 6e 61 67 | t.of.standards.for.network.manag |
| 113ba0 | 65 6d 65 6e 74 2c 20 69 6e 63 6c 75 64 69 6e 67 20 61 6e 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 | ement,.including.an.application. |
| 113bc0 | 6c 61 79 65 72 20 70 72 6f 74 6f 63 6f 6c 2c 20 61 20 64 61 74 61 62 61 73 65 20 73 63 68 65 6d | layer.protocol,.a.database.schem |
| 113be0 | 61 2c 20 61 6e 64 20 61 20 73 65 74 20 6f 66 20 64 61 74 61 20 6f 62 6a 65 63 74 73 2e 00 53 4e | a,.and.a.set.of.data.objects..SN |
| 113c00 | 4d 50 20 69 73 20 77 69 64 65 6c 79 20 75 73 65 64 20 69 6e 20 6e 65 74 77 6f 72 6b 20 6d 61 6e | MP.is.widely.used.in.network.man |
| 113c20 | 61 67 65 6d 65 6e 74 20 66 6f 72 20 6e 65 74 77 6f 72 6b 20 6d 6f 6e 69 74 6f 72 69 6e 67 2e 20 | agement.for.network.monitoring.. |
| 113c40 | 53 4e 4d 50 20 65 78 70 6f 73 65 73 20 6d 61 6e 61 67 65 6d 65 6e 74 20 64 61 74 61 20 69 6e 20 | SNMP.exposes.management.data.in. |
| 113c60 | 74 68 65 20 66 6f 72 6d 20 6f 66 20 76 61 72 69 61 62 6c 65 73 20 6f 6e 20 74 68 65 20 6d 61 6e | the.form.of.variables.on.the.man |
| 113c80 | 61 67 65 64 20 73 79 73 74 65 6d 73 20 6f 72 67 61 6e 69 7a 65 64 20 69 6e 20 61 20 6d 61 6e 61 | aged.systems.organized.in.a.mana |
| 113ca0 | 67 65 6d 65 6e 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 62 61 73 65 20 28 4d 49 42 5f 29 20 77 | gement.information.base.(MIB_).w |
| 113cc0 | 68 69 63 68 20 64 65 73 63 72 69 62 65 20 74 68 65 20 73 79 73 74 65 6d 20 73 74 61 74 75 73 20 | hich.describe.the.system.status. |
| 113ce0 | 61 6e 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 54 68 65 73 65 20 76 61 72 69 61 62 6c | and.configuration..These.variabl |
| 113d00 | 65 73 20 63 61 6e 20 74 68 65 6e 20 62 65 20 72 65 6d 6f 74 65 6c 79 20 71 75 65 72 69 65 64 20 | es.can.then.be.remotely.queried. |
| 113d20 | 28 61 6e 64 2c 20 69 6e 20 73 6f 6d 65 20 63 69 72 63 75 6d 73 74 61 6e 63 65 73 2c 20 6d 61 6e | (and,.in.some.circumstances,.man |
| 113d40 | 69 70 75 6c 61 74 65 64 29 20 62 79 20 6d 61 6e 61 67 69 6e 67 20 61 70 70 6c 69 63 61 74 69 6f | ipulated).by.managing.applicatio |
| 113d60 | 6e 73 2e 00 53 4e 4d 50 76 32 00 53 4e 4d 50 76 32 20 64 6f 65 73 20 6e 6f 74 20 73 75 70 70 6f | ns..SNMPv2.SNMPv2.does.not.suppo |
| 113d80 | 72 74 20 61 6e 79 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 65 63 68 61 6e 69 73 6d 73 | rt.any.authentication.mechanisms |
| 113da0 | 2c 20 6f 74 68 65 72 20 74 68 61 6e 20 63 6c 69 65 6e 74 20 73 6f 75 72 63 65 20 61 64 64 72 65 | ,.other.than.client.source.addre |
| 113dc0 | 73 73 2c 20 73 6f 20 79 6f 75 20 73 68 6f 75 6c 64 20 73 70 65 63 69 66 79 20 61 64 64 72 65 73 | ss,.so.you.should.specify.addres |
| 113de0 | 73 65 73 20 6f 66 20 63 6c 69 65 6e 74 73 20 61 6c 6c 6f 77 65 64 20 74 6f 20 6d 6f 6e 69 74 6f | ses.of.clients.allowed.to.monito |
| 113e00 | 72 20 74 68 65 20 72 6f 75 74 65 72 2e 20 4e 6f 74 65 20 74 68 61 74 20 53 4e 4d 50 76 32 20 61 | r.the.router..Note.that.SNMPv2.a |
| 113e20 | 6c 73 6f 20 73 75 70 70 6f 72 74 73 20 6e 6f 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6e 64 20 61 | lso.supports.no.encryption.and.a |
| 113e40 | 6c 77 61 79 73 20 73 65 6e 64 73 20 64 61 74 61 20 69 6e 20 70 6c 61 69 6e 20 74 65 78 74 2e 00 | lways.sends.data.in.plain.text.. |
| 113e60 | 53 4e 4d 50 76 32 20 69 73 20 74 68 65 20 6f 72 69 67 69 6e 61 6c 20 61 6e 64 20 6d 6f 73 74 20 | SNMPv2.is.the.original.and.most. |
| 113e80 | 63 6f 6d 6d 6f 6e 6c 79 20 75 73 65 64 20 76 65 72 73 69 6f 6e 2e 20 46 6f 72 20 61 75 74 68 6f | commonly.used.version..For.autho |
| 113ea0 | 72 69 7a 69 6e 67 20 63 6c 69 65 6e 74 73 2c 20 53 4e 4d 50 20 75 73 65 73 20 74 68 65 20 63 6f | rizing.clients,.SNMP.uses.the.co |
| 113ec0 | 6e 63 65 70 74 20 6f 66 20 63 6f 6d 6d 75 6e 69 74 69 65 73 2e 20 43 6f 6d 6d 75 6e 69 74 69 65 | ncept.of.communities..Communitie |
| 113ee0 | 73 20 6d 61 79 20 68 61 76 65 20 61 75 74 68 6f 72 69 7a 61 74 69 6f 6e 20 73 65 74 20 74 6f 20 | s.may.have.authorization.set.to. |
| 113f00 | 72 65 61 64 20 6f 6e 6c 79 20 28 74 68 69 73 20 69 73 20 6d 6f 73 74 20 63 6f 6d 6d 6f 6e 29 20 | read.only.(this.is.most.common). |
| 113f20 | 6f 72 20 74 6f 20 72 65 61 64 20 61 6e 64 20 77 72 69 74 65 20 28 74 68 69 73 20 6f 70 74 69 6f | or.to.read.and.write.(this.optio |
| 113f40 | 6e 20 69 73 20 6e 6f 74 20 61 63 74 69 76 65 6c 79 20 75 73 65 64 20 69 6e 20 56 79 4f 53 29 2e | n.is.not.actively.used.in.VyOS). |
| 113f60 | 00 53 4e 4d 50 76 33 00 53 4e 4d 50 76 33 20 28 76 65 72 73 69 6f 6e 20 33 20 6f 66 20 74 68 65 | .SNMPv3.SNMPv3.(version.3.of.the |
| 113f80 | 20 53 4e 4d 50 20 70 72 6f 74 6f 63 6f 6c 29 20 69 6e 74 72 6f 64 75 63 65 64 20 61 20 77 68 6f | .SNMP.protocol).introduced.a.who |
| 113fa0 | 6c 65 20 73 6c 65 77 20 6f 66 20 6e 65 77 20 73 65 63 75 72 69 74 79 20 72 65 6c 61 74 65 64 20 | le.slew.of.new.security.related. |
| 113fc0 | 66 65 61 74 75 72 65 73 20 74 68 61 74 20 68 61 76 65 20 62 65 65 6e 20 6d 69 73 73 69 6e 67 20 | features.that.have.been.missing. |
| 113fe0 | 66 72 6f 6d 20 74 68 65 20 70 72 65 76 69 6f 75 73 20 76 65 72 73 69 6f 6e 73 2e 20 53 65 63 75 | from.the.previous.versions..Secu |
| 114000 | 72 69 74 79 20 77 61 73 20 6f 6e 65 20 6f 66 20 74 68 65 20 62 69 67 67 65 73 74 20 77 65 61 6b | rity.was.one.of.the.biggest.weak |
| 114020 | 6e 65 73 73 20 6f 66 20 53 4e 4d 50 20 75 6e 74 69 6c 20 76 33 2e 20 41 75 74 68 65 6e 74 69 63 | ness.of.SNMP.until.v3..Authentic |
| 114040 | 61 74 69 6f 6e 20 69 6e 20 53 4e 4d 50 20 56 65 72 73 69 6f 6e 73 20 31 20 61 6e 64 20 32 20 61 | ation.in.SNMP.Versions.1.and.2.a |
| 114060 | 6d 6f 75 6e 74 73 20 74 6f 20 6e 6f 74 68 69 6e 67 20 6d 6f 72 65 20 74 68 61 6e 20 61 20 70 61 | mounts.to.nothing.more.than.a.pa |
| 114080 | 73 73 77 6f 72 64 20 28 63 6f 6d 6d 75 6e 69 74 79 20 73 74 72 69 6e 67 29 20 73 65 6e 74 20 69 | ssword.(community.string).sent.i |
| 1140a0 | 6e 20 63 6c 65 61 72 20 74 65 78 74 20 62 65 74 77 65 65 6e 20 61 20 6d 61 6e 61 67 65 72 20 61 | n.clear.text.between.a.manager.a |
| 1140c0 | 6e 64 20 61 67 65 6e 74 2e 20 45 61 63 68 20 53 4e 4d 50 76 33 20 6d 65 73 73 61 67 65 20 63 6f | nd.agent..Each.SNMPv3.message.co |
| 1140e0 | 6e 74 61 69 6e 73 20 73 65 63 75 72 69 74 79 20 70 61 72 61 6d 65 74 65 72 73 20 77 68 69 63 68 | ntains.security.parameters.which |
| 114100 | 20 61 72 65 20 65 6e 63 6f 64 65 64 20 61 73 20 61 6e 20 6f 63 74 65 74 20 73 74 72 69 6e 67 2e | .are.encoded.as.an.octet.string. |
| 114120 | 20 54 68 65 20 6d 65 61 6e 69 6e 67 20 6f 66 20 74 68 65 73 65 20 73 65 63 75 72 69 74 79 20 70 | .The.meaning.of.these.security.p |
| 114140 | 61 72 61 6d 65 74 65 72 73 20 64 65 70 65 6e 64 73 20 6f 6e 20 74 68 65 20 73 65 63 75 72 69 74 | arameters.depends.on.the.securit |
| 114160 | 79 20 6d 6f 64 65 6c 20 62 65 69 6e 67 20 75 73 65 64 2e 00 53 50 41 4e 20 70 6f 72 74 20 6d 69 | y.model.being.used..SPAN.port.mi |
| 114180 | 72 72 6f 72 69 6e 67 20 63 61 6e 20 63 6f 70 79 20 74 68 65 20 69 6e 62 6f 75 6e 64 2f 6f 75 74 | rroring.can.copy.the.inbound/out |
| 1141a0 | 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 | bound.traffic.of.the.interface.t |
| 1141c0 | 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 2c 20 75 73 75 61 6c | o.the.specified.interface,.usual |
| 1141e0 | 6c 79 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 62 65 20 63 6f 6e 6e 65 63 74 65 | ly.the.interface.can.be.connecte |
| 114200 | 64 20 74 6f 20 73 6f 6d 65 20 73 70 65 63 69 61 6c 20 65 71 75 69 70 6d 65 6e 74 2c 20 73 75 63 | d.to.some.special.equipment,.suc |
| 114220 | 68 20 61 73 20 61 20 62 65 68 61 76 69 6f 72 20 63 6f 6e 74 72 6f 6c 20 73 79 73 74 65 6d 2c 20 | h.as.a.behavior.control.system,. |
| 114240 | 69 6e 74 72 75 73 69 6f 6e 20 64 65 74 65 63 74 69 6f 6e 20 73 79 73 74 65 6d 20 6f 72 20 74 72 | intrusion.detection.system.or.tr |
| 114260 | 61 66 66 69 63 20 63 6f 6c 6c 65 63 74 6f 72 2c 20 61 6e 64 20 63 61 6e 20 63 6f 70 79 20 61 6c | affic.collector,.and.can.copy.al |
| 114280 | 6c 20 72 65 6c 61 74 65 64 20 74 72 61 66 66 69 63 20 66 72 6f 6d 20 74 68 69 73 20 70 6f 72 74 | l.related.traffic.from.this.port |
| 1142a0 | 2e 20 54 68 65 20 62 65 6e 65 66 69 74 20 6f 66 20 6d 69 72 72 6f 72 69 6e 67 20 74 68 65 20 74 | ..The.benefit.of.mirroring.the.t |
| 1142c0 | 72 61 66 66 69 63 20 69 73 20 74 68 61 74 20 74 68 65 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 69 | raffic.is.that.the.application.i |
| 1142e0 | 73 20 69 73 6f 6c 61 74 65 64 20 66 72 6f 6d 20 74 68 65 20 73 6f 75 72 63 65 20 74 72 61 66 66 | s.isolated.from.the.source.traff |
| 114300 | 69 63 20 61 6e 64 20 73 6f 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 70 72 6f 63 65 73 73 69 6e 67 | ic.and.so.application.processing |
| 114320 | 20 64 6f 65 73 20 6e 6f 74 20 61 66 66 65 63 74 20 74 68 65 20 74 72 61 66 66 69 63 20 6f 72 20 | .does.not.affect.the.traffic.or. |
| 114340 | 74 68 65 20 73 79 73 74 65 6d 20 70 65 72 66 6f 72 6d 61 6e 63 65 2e 00 53 50 41 4e 20 70 6f 72 | the.system.performance..SPAN.por |
| 114360 | 74 20 6d 69 72 72 6f 72 69 6e 67 20 63 61 6e 20 63 6f 70 79 20 74 68 65 20 69 6e 62 6f 75 6e 64 | t.mirroring.can.copy.the.inbound |
| 114380 | 2f 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 | /outbound.traffic.of.the.interfa |
| 1143a0 | 63 65 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 2c 20 75 | ce.to.the.specified.interface,.u |
| 1143c0 | 73 75 61 6c 6c 79 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 62 65 20 63 6f 6e 6e | sually.the.interface.can.be.conn |
| 1143e0 | 65 63 74 65 64 20 74 6f 20 73 6f 6d 65 20 73 70 65 63 69 61 6c 20 65 71 75 69 70 6d 65 6e 74 2c | ected.to.some.special.equipment, |
| 114400 | 20 73 75 63 68 20 61 73 20 62 65 68 61 76 69 6f 72 20 63 6f 6e 74 72 6f 6c 20 73 79 73 74 65 6d | .such.as.behavior.control.system |
| 114420 | 2c 20 69 6e 74 72 75 73 69 6f 6e 20 64 65 74 65 63 74 69 6f 6e 20 73 79 73 74 65 6d 20 61 6e 64 | ,.intrusion.detection.system.and |
| 114440 | 20 74 72 61 66 66 69 63 20 63 6f 6c 6c 65 63 74 6f 72 2c 20 61 6e 64 20 63 61 6e 20 63 6f 70 79 | .traffic.collector,.and.can.copy |
| 114460 | 20 61 6c 6c 20 72 65 6c 61 74 65 64 20 74 72 61 66 66 69 63 20 66 72 6f 6d 20 74 68 69 73 20 70 | .all.related.traffic.from.this.p |
| 114480 | 6f 72 74 2e 20 54 68 65 20 62 65 6e 65 66 69 74 20 6f 66 20 6d 69 72 72 6f 72 69 6e 67 20 74 68 | ort..The.benefit.of.mirroring.th |
| 1144a0 | 65 20 74 72 61 66 66 69 63 20 69 73 20 74 68 61 74 20 74 68 65 20 61 70 70 6c 69 63 61 74 69 6f | e.traffic.is.that.the.applicatio |
| 1144c0 | 6e 20 69 73 20 69 73 6f 6c 61 74 65 64 20 66 72 6f 6d 20 74 68 65 20 73 6f 75 72 63 65 20 74 72 | n.is.isolated.from.the.source.tr |
| 1144e0 | 61 66 66 69 63 20 61 6e 64 20 73 6f 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 70 72 6f 63 65 73 73 | affic.and.so.application.process |
| 114500 | 69 6e 67 20 64 6f 65 73 20 6e 6f 74 20 61 66 66 65 63 74 20 74 68 65 20 74 72 61 66 66 69 63 20 | ing.does.not.affect.the.traffic. |
| 114520 | 6f 72 20 74 68 65 20 73 79 73 74 65 6d 20 70 65 72 66 6f 72 6d 61 6e 63 65 2e 00 53 53 48 00 53 | or.the.system.performance..SSH.S |
| 114540 | 53 48 20 3a 72 65 66 3a 60 73 73 68 5f 6b 65 79 5f 62 61 73 65 64 5f 61 75 74 68 65 6e 74 69 63 | SH.:ref:`ssh_key_based_authentic |
| 114560 | 61 74 69 6f 6e 60 00 53 53 48 20 3a 72 65 66 3a 60 73 73 68 5f 6f 70 65 72 61 74 69 6f 6e 60 00 | ation`.SSH.:ref:`ssh_operation`. |
| 114580 | 53 53 48 20 63 6c 69 65 6e 74 00 53 53 48 20 70 72 6f 76 69 64 65 73 20 61 20 73 65 63 75 72 65 | SSH.client.SSH.provides.a.secure |
| 1145a0 | 20 63 68 61 6e 6e 65 6c 20 6f 76 65 72 20 61 6e 20 75 6e 73 65 63 75 72 65 64 20 6e 65 74 77 6f | .channel.over.an.unsecured.netwo |
| 1145c0 | 72 6b 20 69 6e 20 61 20 63 6c 69 65 6e 74 2d 73 65 72 76 65 72 20 61 72 63 68 69 74 65 63 74 75 | rk.in.a.client-server.architectu |
| 1145e0 | 72 65 2c 20 63 6f 6e 6e 65 63 74 69 6e 67 20 61 6e 20 53 53 48 20 63 6c 69 65 6e 74 20 61 70 70 | re,.connecting.an.SSH.client.app |
| 114600 | 6c 69 63 61 74 69 6f 6e 20 77 69 74 68 20 61 6e 20 53 53 48 20 73 65 72 76 65 72 2e 20 43 6f 6d | lication.with.an.SSH.server..Com |
| 114620 | 6d 6f 6e 20 61 70 70 6c 69 63 61 74 69 6f 6e 73 20 69 6e 63 6c 75 64 65 20 72 65 6d 6f 74 65 20 | mon.applications.include.remote. |
| 114640 | 63 6f 6d 6d 61 6e 64 2d 6c 69 6e 65 20 6c 6f 67 69 6e 20 61 6e 64 20 72 65 6d 6f 74 65 20 63 6f | command-line.login.and.remote.co |
| 114660 | 6d 6d 61 6e 64 20 65 78 65 63 75 74 69 6f 6e 2c 20 62 75 74 20 61 6e 79 20 6e 65 74 77 6f 72 6b | mmand.execution,.but.any.network |
| 114680 | 20 73 65 72 76 69 63 65 20 63 61 6e 20 62 65 20 73 65 63 75 72 65 64 20 77 69 74 68 20 53 53 48 | .service.can.be.secured.with.SSH |
| 1146a0 | 2e 20 54 68 65 20 70 72 6f 74 6f 63 6f 6c 20 73 70 65 63 69 66 69 63 61 74 69 6f 6e 20 64 69 73 | ..The.protocol.specification.dis |
| 1146c0 | 74 69 6e 67 75 69 73 68 65 73 20 62 65 74 77 65 65 6e 20 74 77 6f 20 6d 61 6a 6f 72 20 76 65 72 | tinguishes.between.two.major.ver |
| 1146e0 | 73 69 6f 6e 73 2c 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 53 53 48 2d 31 20 61 6e 64 20 | sions,.referred.to.as.SSH-1.and. |
| 114700 | 53 53 48 2d 32 2e 00 53 53 48 20 75 73 65 72 6e 61 6d 65 20 74 6f 20 65 73 74 61 62 6c 69 73 68 | SSH-2..SSH.username.to.establish |
| 114720 | 20 61 6e 20 53 53 48 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f 20 74 68 65 20 63 61 63 68 65 20 | .an.SSH.connection.to.the.cache. |
| 114740 | 73 65 72 76 65 72 2e 00 53 53 48 20 77 61 73 20 64 65 73 69 67 6e 65 64 20 61 73 20 61 20 72 65 | server..SSH.was.designed.as.a.re |
| 114760 | 70 6c 61 63 65 6d 65 6e 74 20 66 6f 72 20 54 65 6c 6e 65 74 20 61 6e 64 20 66 6f 72 20 75 6e 73 | placement.for.Telnet.and.for.uns |
| 114780 | 65 63 75 72 65 64 20 72 65 6d 6f 74 65 20 73 68 65 6c 6c 20 70 72 6f 74 6f 63 6f 6c 73 20 73 75 | ecured.remote.shell.protocols.su |
| 1147a0 | 63 68 20 61 73 20 74 68 65 20 42 65 72 6b 65 6c 65 79 20 72 6c 6f 67 69 6e 2c 20 72 73 68 2c 20 | ch.as.the.Berkeley.rlogin,.rsh,. |
| 1147c0 | 61 6e 64 20 72 65 78 65 63 20 70 72 6f 74 6f 63 6f 6c 73 2e 20 54 68 6f 73 65 20 70 72 6f 74 6f | and.rexec.protocols..Those.proto |
| 1147e0 | 63 6f 6c 73 20 73 65 6e 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2c 20 6e 6f 74 61 62 6c 79 20 70 | cols.send.information,.notably.p |
| 114800 | 61 73 73 77 6f 72 64 73 2c 20 69 6e 20 70 6c 61 69 6e 74 65 78 74 2c 20 72 65 6e 64 65 72 69 6e | asswords,.in.plaintext,.renderin |
| 114820 | 67 20 74 68 65 6d 20 73 75 73 63 65 70 74 69 62 6c 65 20 74 6f 20 69 6e 74 65 72 63 65 70 74 69 | g.them.susceptible.to.intercepti |
| 114840 | 6f 6e 20 61 6e 64 20 64 69 73 63 6c 6f 73 75 72 65 20 75 73 69 6e 67 20 70 61 63 6b 65 74 20 61 | on.and.disclosure.using.packet.a |
| 114860 | 6e 61 6c 79 73 69 73 2e 20 54 68 65 20 65 6e 63 72 79 70 74 69 6f 6e 20 75 73 65 64 20 62 79 20 | nalysis..The.encryption.used.by. |
| 114880 | 53 53 48 20 69 73 20 69 6e 74 65 6e 64 65 64 20 74 6f 20 70 72 6f 76 69 64 65 20 63 6f 6e 66 69 | SSH.is.intended.to.provide.confi |
| 1148a0 | 64 65 6e 74 69 61 6c 69 74 79 20 61 6e 64 20 69 6e 74 65 67 72 69 74 79 20 6f 66 20 64 61 74 61 | dentiality.and.integrity.of.data |
| 1148c0 | 20 6f 76 65 72 20 61 6e 20 75 6e 73 65 63 75 72 65 64 20 6e 65 74 77 6f 72 6b 2c 20 73 75 63 68 | .over.an.unsecured.network,.such |
| 1148e0 | 20 61 73 20 74 68 65 20 49 6e 74 65 72 6e 65 74 2e 00 53 53 49 44 20 74 6f 20 62 65 20 75 73 65 | .as.the.Internet..SSID.to.be.use |
| 114900 | 64 20 69 6e 20 49 45 45 45 20 38 30 32 2e 31 31 20 6d 61 6e 61 67 65 6d 65 6e 74 20 66 72 61 6d | d.in.IEEE.802.11.management.fram |
| 114920 | 65 73 00 53 53 4c 20 42 72 69 64 67 69 6e 67 00 53 53 4c 20 43 65 72 74 69 66 69 63 61 74 65 73 | es.SSL.Bridging.SSL.Certificates |
| 114940 | 00 53 53 4c 20 43 65 72 74 69 66 69 63 61 74 65 73 20 67 65 6e 65 72 61 74 69 6f 6e 00 53 53 4c | .SSL.Certificates.generation.SSL |
| 114960 | 20 6d 61 74 63 68 20 53 65 72 76 65 72 20 4e 61 6d 65 20 49 6e 64 69 63 61 74 69 6f 6e 20 28 53 | .match.Server.Name.Indication.(S |
| 114980 | 4e 49 29 20 6f 70 74 69 6f 6e 3a 00 53 53 54 50 20 43 6c 69 65 6e 74 00 53 53 54 50 20 43 6c 69 | NI).option:.SSTP.Client.SSTP.Cli |
| 1149a0 | 65 6e 74 20 4f 70 74 69 6f 6e 73 00 53 53 54 50 20 53 65 72 76 65 72 00 53 53 54 50 20 69 73 20 | ent.Options.SSTP.Server.SSTP.is. |
| 1149c0 | 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 4c 69 6e 75 78 2c 20 42 53 44 2c 20 61 6e 64 20 57 69 | available.for.Linux,.BSD,.and.Wi |
| 1149e0 | 6e 64 6f 77 73 2e 00 53 53 54 50 20 72 65 6d 6f 74 65 20 73 65 72 76 65 72 20 74 6f 20 63 6f 6e | ndows..SSTP.remote.server.to.con |
| 114a00 | 6e 65 63 74 20 74 6f 2e 20 43 61 6e 20 62 65 20 65 69 74 68 65 72 20 61 6e 20 49 50 20 61 64 64 | nect.to..Can.be.either.an.IP.add |
| 114a20 | 72 65 73 73 20 6f 72 20 46 51 44 4e 2e 00 53 54 50 20 50 61 72 61 6d 65 74 65 72 00 53 61 6c 74 | ress.or.FQDN..STP.Parameter.Salt |
| 114a40 | 2d 4d 69 6e 69 6f 6e 00 53 61 6c 74 53 74 61 63 6b 5f 20 69 73 20 50 79 74 68 6f 6e 2d 62 61 73 | -Minion.SaltStack_.is.Python-bas |
| 114a60 | 65 64 2c 20 6f 70 65 6e 2d 73 6f 75 72 63 65 20 73 6f 66 74 77 61 72 65 20 66 6f 72 20 65 76 65 | ed,.open-source.software.for.eve |
| 114a80 | 6e 74 2d 64 72 69 76 65 6e 20 49 54 20 61 75 74 6f 6d 61 74 69 6f 6e 2c 20 72 65 6d 6f 74 65 20 | nt-driven.IT.automation,.remote. |
| 114aa0 | 74 61 73 6b 20 65 78 65 63 75 74 69 6f 6e 2c 20 61 6e 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | task.execution,.and.configuratio |
| 114ac0 | 6e 20 6d 61 6e 61 67 65 6d 65 6e 74 2e 20 53 75 70 70 6f 72 74 69 6e 67 20 74 68 65 20 22 69 6e | n.management..Supporting.the."in |
| 114ae0 | 66 72 61 73 74 72 75 63 74 75 72 65 20 61 73 20 63 6f 64 65 22 20 61 70 70 72 6f 61 63 68 20 74 | frastructure.as.code".approach.t |
| 114b00 | 6f 20 64 61 74 61 20 63 65 6e 74 65 72 20 73 79 73 74 65 6d 20 61 6e 64 20 6e 65 74 77 6f 72 6b | o.data.center.system.and.network |
| 114b20 | 20 64 65 70 6c 6f 79 6d 65 6e 74 20 61 6e 64 20 6d 61 6e 61 67 65 6d 65 6e 74 2c 20 63 6f 6e 66 | .deployment.and.management,.conf |
| 114b40 | 69 67 75 72 61 74 69 6f 6e 20 61 75 74 6f 6d 61 74 69 6f 6e 2c 20 53 65 63 4f 70 73 20 6f 72 63 | iguration.automation,.SecOps.orc |
| 114b60 | 68 65 73 74 72 61 74 69 6f 6e 2c 20 76 75 6c 6e 65 72 61 62 69 6c 69 74 79 20 72 65 6d 65 64 69 | hestration,.vulnerability.remedi |
| 114b80 | 61 74 69 6f 6e 2c 20 61 6e 64 20 68 79 62 72 69 64 20 63 6c 6f 75 64 20 63 6f 6e 74 72 6f 6c 2e | ation,.and.hybrid.cloud.control. |
| 114ba0 | 00 53 61 6d 65 20 61 73 20 65 78 70 6f 72 74 2d 6c 69 73 74 2c 20 62 75 74 20 69 74 20 61 70 70 | .Same.as.export-list,.but.it.app |
| 114bc0 | 6c 69 65 73 20 74 6f 20 70 61 74 68 73 20 61 6e 6e 6f 75 6e 63 65 64 20 69 6e 74 6f 20 73 70 65 | lies.to.paths.announced.into.spe |
| 114be0 | 63 69 66 69 65 64 20 61 72 65 61 20 61 73 20 54 79 70 65 2d 33 20 73 75 6d 6d 61 72 79 2d 4c 53 | cified.area.as.Type-3.summary-LS |
| 114c00 | 41 73 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 6d 61 6b 65 73 20 73 65 6e 73 65 20 69 6e 20 | As..This.command.makes.sense.in. |
| 114c20 | 41 42 52 20 6f 6e 6c 79 2e 00 53 61 6d 65 20 73 70 65 63 69 66 69 63 20 6d 61 74 63 68 69 6e 67 | ABR.only..Same.specific.matching |
| 114c40 | 20 63 72 69 74 65 72 69 61 20 74 68 61 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 69 6e 20 62 72 | .criteria.that.can.be.used.in.br |
| 114c60 | 69 64 67 65 20 66 69 72 65 77 61 6c 6c 20 61 72 65 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 74 | idge.firewall.are.described.in.t |
| 114c80 | 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 53 61 6d 70 6c 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | his.section:.Sample.configuratio |
| 114ca0 | 6e 20 6f 66 20 53 56 44 20 77 69 74 68 20 56 4c 41 4e 20 74 6f 20 56 4e 49 20 6d 61 70 70 69 6e | n.of.SVD.with.VLAN.to.VNI.mappin |
| 114cc0 | 67 73 20 69 73 20 73 68 6f 77 6e 20 62 65 6c 6f 77 2e 00 53 61 6d 70 6c 65 20 63 6f 6e 66 69 67 | gs.is.shown.below..Sample.config |
| 114ce0 | 75 72 61 74 69 6f 6e 20 74 6f 20 73 65 74 75 70 20 4c 44 50 20 6f 6e 20 56 79 4f 53 00 53 63 61 | uration.to.setup.LDP.on.VyOS.Sca |
| 114d00 | 6e 6e 69 6e 67 20 69 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 65 64 20 6f 6e 20 61 6c 6c 20 77 69 | nning.is.not.supported.on.all.wi |
| 114d20 | 72 65 6c 65 73 73 20 64 72 69 76 65 72 73 20 61 6e 64 20 77 69 72 65 6c 65 73 73 20 68 61 72 64 | reless.drivers.and.wireless.hard |
| 114d40 | 77 61 72 65 2e 20 52 65 66 65 72 20 74 6f 20 79 6f 75 72 20 64 72 69 76 65 72 20 61 6e 64 20 77 | ware..Refer.to.your.driver.and.w |
| 114d60 | 69 72 65 6c 65 73 73 20 68 61 72 64 77 61 72 65 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 66 | ireless.hardware.documentation.f |
| 114d80 | 6f 72 20 66 75 72 74 68 65 72 20 64 65 74 61 69 6c 73 2e 00 53 63 72 69 70 74 20 65 78 65 63 75 | or.further.details..Script.execu |
| 114da0 | 74 69 6f 6e 00 53 63 72 69 70 74 20 74 6f 20 72 75 6e 20 62 65 66 6f 72 65 20 73 65 73 73 69 6f | tion.Script.to.run.before.sessio |
| 114dc0 | 6e 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6d 65 73 20 75 70 00 53 63 72 69 70 74 20 74 6f 20 72 | n.interface.comes.up.Script.to.r |
| 114de0 | 75 6e 20 62 65 66 6f 72 65 20 74 68 65 20 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 | un.before.the.session.interface. |
| 114e00 | 63 6f 6d 65 73 20 75 70 00 53 63 72 69 70 74 20 74 6f 20 72 75 6e 20 77 68 65 6e 20 73 65 73 73 | comes.up.Script.to.run.when.sess |
| 114e20 | 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 63 68 61 6e 67 65 64 20 62 79 20 52 41 44 49 55 53 20 | ion.interface.changed.by.RADIUS. |
| 114e40 | 43 6f 41 20 68 61 6e 64 6c 69 6e 67 00 53 63 72 69 70 74 20 74 6f 20 72 75 6e 20 77 68 65 6e 20 | CoA.handling.Script.to.run.when. |
| 114e60 | 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 67 6f 69 6e 67 20 74 6f 20 74 65 72 6d 69 | session.interface.going.to.termi |
| 114e80 | 6e 61 74 65 00 53 63 72 69 70 74 20 74 6f 20 72 75 6e 20 77 68 65 6e 20 73 65 73 73 69 6f 6e 20 | nate.Script.to.run.when.session. |
| 114ea0 | 69 6e 74 65 72 66 61 63 65 20 69 73 20 63 6f 6d 70 6c 65 74 65 6c 79 20 63 6f 6e 66 69 67 75 72 | interface.is.completely.configur |
| 114ec0 | 65 64 20 61 6e 64 20 73 74 61 72 74 65 64 00 53 63 72 69 70 74 20 74 6f 20 72 75 6e 20 77 68 65 | ed.and.started.Script.to.run.whe |
| 114ee0 | 6e 20 74 68 65 20 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 61 62 6f 75 74 20 74 6f | n.the.session.interface.about.to |
| 114f00 | 20 74 65 72 6d 69 6e 61 74 65 00 53 63 72 69 70 74 20 74 6f 20 72 75 6e 20 77 68 65 6e 20 74 68 | .terminate.Script.to.run.when.th |
| 114f20 | 65 20 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 62 6f 75 74 20 74 6f 20 | e.session.interface.is.about.to. |
| 114f40 | 74 65 72 6d 69 6e 61 74 65 00 53 63 72 69 70 74 20 74 6f 20 72 75 6e 20 77 68 65 6e 20 74 68 65 | terminate.Script.to.run.when.the |
| 114f60 | 20 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 63 68 61 6e 67 65 64 20 62 79 | .session.interface.is.changed.by |
| 114f80 | 20 52 41 44 49 55 53 20 43 6f 41 20 68 61 6e 64 6c 69 6e 67 00 53 63 72 69 70 74 20 74 6f 20 72 | .RADIUS.CoA.handling.Script.to.r |
| 114fa0 | 75 6e 20 77 68 65 6e 20 74 68 65 20 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 | un.when.the.session.interface.is |
| 114fc0 | 20 63 6f 6d 70 6c 65 74 65 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 61 6e 64 20 73 74 61 72 74 | .completely.configured.and.start |
| 114fe0 | 65 64 00 53 63 72 69 70 74 69 6e 67 00 53 65 63 6f 6e 64 20 73 63 65 6e 61 72 69 6f 3a 20 61 70 | ed.Scripting.Second.scenario:.ap |
| 115000 | 70 6c 79 20 73 6f 75 72 63 65 20 4e 41 54 20 66 6f 72 20 61 6c 6c 20 6f 75 74 67 6f 69 6e 67 20 | ply.source.NAT.for.all.outgoing. |
| 115020 | 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 66 72 6f 6d 20 4c 41 4e 20 31 30 2e 30 2e 30 2e 30 2f 38 2c | connections.from.LAN.10.0.0.0/8, |
| 115040 | 20 75 73 69 6e 67 20 33 20 70 75 62 6c 69 63 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 65 71 | .using.3.public.addresses.and.eq |
| 115060 | 75 61 6c 20 64 69 73 74 72 69 62 75 74 69 6f 6e 2e 20 57 65 20 77 69 6c 6c 20 67 65 6e 65 72 61 | ual.distribution..We.will.genera |
| 115080 | 74 65 20 74 68 65 20 68 61 73 68 20 72 61 6e 64 6f 6d 6c 79 2e 00 53 65 63 6f 6e 64 6c 79 2c 20 | te.the.hash.randomly..Secondly,. |
| 1150a0 | 77 65 20 63 72 65 61 74 65 20 74 68 65 20 69 6e 74 65 72 6d 65 64 69 61 72 79 20 63 65 72 74 69 | we.create.the.intermediary.certi |
| 1150c0 | 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 69 65 73 2c 20 77 68 69 63 68 20 61 72 65 20 75 73 | ficate.authorities,.which.are.us |
| 1150e0 | 65 64 20 74 6f 20 73 69 67 6e 20 74 68 65 20 6c 65 61 66 20 63 65 72 74 69 66 69 63 61 74 65 73 | ed.to.sign.the.leaf.certificates |
| 115100 | 2e 00 53 65 63 72 65 74 20 66 6f 72 20 44 79 6e 61 6d 69 63 20 41 75 74 68 6f 72 69 7a 61 74 69 | ..Secret.for.Dynamic.Authorizati |
| 115120 | 6f 6e 20 45 78 74 65 6e 73 69 6f 6e 20 73 65 72 76 65 72 20 28 44 4d 2f 43 6f 41 29 00 53 65 63 | on.Extension.server.(DM/CoA).Sec |
| 115140 | 75 72 69 74 79 00 53 65 63 75 72 69 74 79 2f 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 65 | urity.Security/authentication.me |
| 115160 | 73 73 61 67 65 73 00 53 65 65 20 3a 72 66 63 3a 60 37 37 36 31 23 73 65 63 74 69 6f 6e 2d 34 2e | ssages.See.:rfc:`7761#section-4. |
| 115180 | 31 60 20 66 6f 72 20 64 65 74 61 69 6c 73 2e 00 53 65 65 20 62 65 6c 6f 77 20 74 68 65 20 64 69 | 1`.for.details..See.below.the.di |
| 1151a0 | 66 66 65 72 65 6e 74 20 70 61 72 61 6d 65 74 65 72 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 | fferent.parameters.available.for |
| 1151c0 | 20 74 68 65 20 49 50 76 34 20 2a 2a 73 68 6f 77 2a 2a 20 63 6f 6d 6d 61 6e 64 3a 00 53 65 67 6d | .the.IPv4.**show**.command:.Segm |
| 1151e0 | 65 6e 74 20 52 6f 75 74 69 6e 67 00 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 28 53 52 29 | ent.Routing.Segment.Routing.(SR) |
| 115200 | 20 69 73 20 61 20 6e 65 74 77 6f 72 6b 20 61 72 63 68 69 74 65 63 74 75 72 65 20 74 68 61 74 20 | .is.a.network.architecture.that. |
| 115220 | 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 73 6f 75 72 63 65 2d 72 6f 75 74 69 6e 67 20 2e 20 49 | is.similar.to.source-routing...I |
| 115240 | 6e 20 74 68 69 73 20 61 72 63 68 69 74 65 63 74 75 72 65 2c 20 74 68 65 20 69 6e 67 72 65 73 73 | n.this.architecture,.the.ingress |
| 115260 | 20 72 6f 75 74 65 72 20 61 64 64 73 20 61 20 6c 69 73 74 20 6f 66 20 73 65 67 6d 65 6e 74 73 2c | .router.adds.a.list.of.segments, |
| 115280 | 20 6b 6e 6f 77 6e 20 61 73 20 53 49 44 73 2c 20 74 6f 20 74 68 65 20 70 61 63 6b 65 74 20 61 73 | .known.as.SIDs,.to.the.packet.as |
| 1152a0 | 20 69 74 20 65 6e 74 65 72 73 20 74 68 65 20 6e 65 74 77 6f 72 6b 2e 20 54 68 65 73 65 20 73 65 | .it.enters.the.network..These.se |
| 1152c0 | 67 6d 65 6e 74 73 20 72 65 70 72 65 73 65 6e 74 20 64 69 66 66 65 72 65 6e 74 20 70 6f 72 74 69 | gments.represent.different.porti |
| 1152e0 | 6f 6e 73 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 70 61 74 68 20 74 68 61 74 20 74 68 65 | ons.of.the.network.path.that.the |
| 115300 | 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 74 61 6b 65 2e 00 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 | .packet.will.take..Segment.Routi |
| 115320 | 6e 67 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 61 6e 20 65 78 69 73 74 69 6e 67 | ng.can.be.applied.to.an.existing |
| 115340 | 20 4d 50 4c 53 2d 62 61 73 65 64 20 64 61 74 61 20 70 6c 61 6e 65 20 61 6e 64 20 64 65 66 69 6e | .MPLS-based.data.plane.and.defin |
| 115360 | 65 73 20 61 20 63 6f 6e 74 72 6f 6c 20 70 6c 61 6e 65 20 6e 65 74 77 6f 72 6b 20 61 72 63 68 69 | es.a.control.plane.network.archi |
| 115380 | 74 65 63 74 75 72 65 2e 20 49 6e 20 4d 50 4c 53 20 6e 65 74 77 6f 72 6b 73 2c 20 73 65 67 6d 65 | tecture..In.MPLS.networks,.segme |
| 1153a0 | 6e 74 73 20 61 72 65 20 65 6e 63 6f 64 65 64 20 61 73 20 4d 50 4c 53 20 6c 61 62 65 6c 73 20 61 | nts.are.encoded.as.MPLS.labels.a |
| 1153c0 | 6e 64 20 61 72 65 20 61 64 64 65 64 20 61 74 20 74 68 65 20 69 6e 67 72 65 73 73 20 72 6f 75 74 | nd.are.added.at.the.ingress.rout |
| 1153e0 | 65 72 2e 20 54 68 65 73 65 20 4d 50 4c 53 20 6c 61 62 65 6c 73 20 61 72 65 20 74 68 65 6e 20 65 | er..These.MPLS.labels.are.then.e |
| 115400 | 78 63 68 61 6e 67 65 64 20 61 6e 64 20 70 6f 70 75 6c 61 74 65 64 20 62 79 20 49 6e 74 65 72 69 | xchanged.and.populated.by.Interi |
| 115420 | 6f 72 20 47 61 74 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c 73 20 28 49 47 50 73 29 20 6c 69 6b 65 | or.Gateway.Protocols.(IGPs).like |
| 115440 | 20 49 53 2d 49 53 20 6f 72 20 4f 53 50 46 20 77 68 69 63 68 20 61 72 65 20 72 75 6e 6e 69 6e 67 | .IS-IS.or.OSPF.which.are.running |
| 115460 | 20 6f 6e 20 6d 6f 73 74 20 49 53 50 73 2e 00 53 65 67 6d 65 6e 74 20 72 6f 75 74 69 6e 67 20 28 | .on.most.ISPs..Segment.routing.( |
| 115480 | 53 52 29 20 69 73 20 75 73 65 64 20 62 79 20 74 68 65 20 49 47 50 20 70 72 6f 74 6f 63 6f 6c 73 | SR).is.used.by.the.IGP.protocols |
| 1154a0 | 20 74 6f 20 69 6e 74 65 72 63 6f 6e 6e 65 63 74 20 6e 65 74 77 6f 72 6b 20 64 65 76 69 63 65 73 | .to.interconnect.network.devices |
| 1154c0 | 2c 20 62 65 6c 6f 77 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 68 6f 77 73 20 68 6f 77 20 | ,.below.configuration.shows.how. |
| 1154e0 | 74 6f 20 65 6e 61 62 6c 65 20 53 52 20 6f 6e 20 49 53 2d 49 53 3a 00 53 65 67 6d 65 6e 74 20 72 | to.enable.SR.on.IS-IS:.Segment.r |
| 115500 | 6f 75 74 69 6e 67 20 28 53 52 29 20 69 73 20 75 73 65 64 20 62 79 20 74 68 65 20 49 47 50 20 70 | outing.(SR).is.used.by.the.IGP.p |
| 115520 | 72 6f 74 6f 63 6f 6c 73 20 74 6f 20 69 6e 74 65 72 63 6f 6e 6e 65 63 74 20 6e 65 74 77 6f 72 6b | rotocols.to.interconnect.network |
| 115540 | 20 64 65 76 69 63 65 73 2c 20 62 65 6c 6f 77 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 68 | .devices,.below.configuration.sh |
| 115560 | 6f 77 73 20 68 6f 77 20 74 6f 20 65 6e 61 62 6c 65 20 53 52 20 6f 6e 20 4f 53 50 46 3a 00 53 65 | ows.how.to.enable.SR.on.OSPF:.Se |
| 115580 | 67 6d 65 6e 74 20 72 6f 75 74 69 6e 67 20 64 65 66 69 6e 65 73 20 61 20 63 6f 6e 74 72 6f 6c 20 | gment.routing.defines.a.control. |
| 1155a0 | 70 6c 61 6e 65 20 6e 65 74 77 6f 72 6b 20 61 72 63 68 69 74 65 63 74 75 72 65 20 61 6e 64 20 63 | plane.network.architecture.and.c |
| 1155c0 | 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 61 6e 20 65 78 69 73 74 69 6e 67 20 4d 50 4c | an.be.applied.to.an.existing.MPL |
| 1155e0 | 53 20 62 61 73 65 64 20 64 61 74 61 70 6c 61 6e 65 2e 20 49 6e 20 74 68 65 20 4d 50 4c 53 20 6e | S.based.dataplane..In.the.MPLS.n |
| 115600 | 65 74 77 6f 72 6b 73 2c 20 73 65 67 6d 65 6e 74 73 20 61 72 65 20 65 6e 63 6f 64 65 64 20 61 73 | etworks,.segments.are.encoded.as |
| 115620 | 20 4d 50 4c 53 20 6c 61 62 65 6c 73 20 61 6e 64 20 61 72 65 20 69 6d 70 6f 73 65 64 20 61 74 20 | .MPLS.labels.and.are.imposed.at. |
| 115640 | 74 68 65 20 69 6e 67 72 65 73 73 20 72 6f 75 74 65 72 2e 20 4d 50 4c 53 20 6c 61 62 65 6c 73 20 | the.ingress.router..MPLS.labels. |
| 115660 | 61 72 65 20 65 78 63 68 61 6e 67 65 64 20 61 6e 64 20 70 6f 70 75 6c 61 74 65 64 20 62 79 20 49 | are.exchanged.and.populated.by.I |
| 115680 | 47 50 73 20 6c 69 6b 65 20 49 53 2d 49 53 2e 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 61 | GPs.like.IS-IS.Segment.Routing.a |
| 1156a0 | 73 20 70 65 72 20 52 46 43 38 36 36 37 20 66 6f 72 20 4d 50 4c 53 20 64 61 74 61 70 6c 61 6e 65 | s.per.RFC8667.for.MPLS.dataplane |
| 1156c0 | 2e 20 49 74 20 73 75 70 70 6f 72 74 73 20 49 50 76 34 2c 20 49 50 76 36 20 61 6e 64 20 45 43 4d | ..It.supports.IPv4,.IPv6.and.ECM |
| 1156e0 | 50 20 61 6e 64 20 68 61 73 20 62 65 65 6e 20 74 65 73 74 65 64 20 61 67 61 69 6e 73 74 20 43 69 | P.and.has.been.tested.against.Ci |
| 115700 | 73 63 6f 20 26 20 4a 75 6e 69 70 65 72 20 72 6f 75 74 65 72 73 2e 68 6f 77 65 76 65 72 2c 74 68 | sco.&.Juniper.routers.however,th |
| 115720 | 69 73 20 64 65 70 6c 6f 79 6d 65 6e 74 20 69 73 20 73 74 69 6c 6c 20 45 58 50 45 52 49 4d 45 4e | is.deployment.is.still.EXPERIMEN |
| 115740 | 54 41 4c 20 66 6f 72 20 46 52 52 2e 00 53 65 6c 65 63 74 20 54 4c 53 20 76 65 72 73 69 6f 6e 20 | TAL.for.FRR..Select.TLS.version. |
| 115760 | 75 73 65 64 2e 00 53 65 6c 65 63 74 20 63 69 70 68 65 72 20 73 75 69 74 65 20 75 73 65 64 20 66 | used..Select.cipher.suite.used.f |
| 115780 | 6f 72 20 63 72 79 70 74 6f 67 72 61 70 68 69 63 20 6f 70 65 72 61 74 69 6f 6e 73 2e 20 54 68 69 | or.cryptographic.operations..Thi |
| 1157a0 | 73 20 73 65 74 74 69 6e 67 20 69 73 20 6d 61 6e 64 61 74 6f 72 79 2e 00 53 65 6c 65 63 74 20 68 | s.setting.is.mandatory..Select.h |
| 1157c0 | 6f 77 20 6c 61 62 65 6c 73 20 61 72 65 20 61 6c 6c 6f 63 61 74 65 64 20 69 6e 20 74 68 65 20 67 | ow.labels.are.allocated.in.the.g |
| 1157e0 | 69 76 65 6e 20 56 52 46 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 74 68 65 20 70 65 72 2d 76 72 | iven.VRF..By.default,.the.per-vr |
| 115800 | 66 20 6d 6f 64 65 20 69 73 20 73 65 6c 65 63 74 65 64 2c 20 61 6e 64 20 6f 6e 65 20 6c 61 62 65 | f.mode.is.selected,.and.one.labe |
| 115820 | 6c 20 69 73 20 75 73 65 64 20 66 6f 72 20 61 6c 6c 20 70 72 65 66 69 78 65 73 20 66 72 6f 6d 20 | l.is.used.for.all.prefixes.from. |
| 115840 | 74 68 65 20 56 52 46 2e 20 54 68 65 20 70 65 72 2d 6e 65 78 74 68 6f 70 20 77 69 6c 6c 20 75 73 | the.VRF..The.per-nexthop.will.us |
| 115860 | 65 20 61 20 75 6e 69 71 75 65 20 6c 61 62 65 6c 20 66 6f 72 20 61 6c 6c 20 70 72 65 66 69 78 65 | e.a.unique.label.for.all.prefixe |
| 115880 | 73 20 74 68 61 74 20 61 72 65 20 72 65 61 63 68 61 62 6c 65 20 76 69 61 20 74 68 65 20 73 61 6d | s.that.are.reachable.via.the.sam |
| 1158a0 | 65 20 6e 65 78 74 68 6f 70 2e 00 53 65 6c 66 20 53 69 67 6e 65 64 20 43 41 00 53 65 6e 64 20 61 | e.nexthop..Self.Signed.CA.Send.a |
| 1158c0 | 20 50 72 6f 78 79 20 50 72 6f 74 6f 63 6f 6c 20 76 65 72 73 69 6f 6e 20 31 20 68 65 61 64 65 72 | .Proxy.Protocol.version.1.header |
| 1158e0 | 20 28 74 65 78 74 20 66 6f 72 6d 61 74 29 00 53 65 6e 64 20 61 20 50 72 6f 78 79 20 50 72 6f 74 | .(text.format).Send.a.Proxy.Prot |
| 115900 | 6f 63 6f 6c 20 76 65 72 73 69 6f 6e 20 32 20 68 65 61 64 65 72 20 28 62 69 6e 61 72 79 20 66 6f | ocol.version.2.header.(binary.fo |
| 115920 | 72 6d 61 74 29 00 53 65 6e 64 20 61 6c 6c 20 44 4e 53 20 71 75 65 72 69 65 73 20 74 6f 20 74 68 | rmat).Send.all.DNS.queries.to.th |
| 115940 | 65 20 49 50 76 34 2f 49 50 76 36 20 44 4e 53 20 73 65 72 76 65 72 20 73 70 65 63 69 66 69 65 64 | e.IPv4/IPv6.DNS.server.specified |
| 115960 | 20 75 6e 64 65 72 20 60 3c 61 64 64 72 65 73 73 3e 60 20 6f 6e 20 6f 70 74 69 6f 6e 61 6c 20 70 | .under.`<address>`.on.optional.p |
| 115980 | 6f 72 74 20 73 70 65 63 69 66 69 65 64 20 75 6e 64 65 72 20 60 3c 70 6f 72 74 3e 60 2e 20 54 68 | ort.specified.under.`<port>`..Th |
| 1159a0 | 65 20 70 6f 72 74 20 64 65 66 61 75 6c 74 73 20 74 6f 20 35 33 2e 20 59 6f 75 20 63 61 6e 20 63 | e.port.defaults.to.53..You.can.c |
| 1159c0 | 6f 6e 66 69 67 75 72 65 20 6d 75 6c 74 69 70 6c 65 20 6e 61 6d 65 73 65 72 76 65 72 73 20 68 65 | onfigure.multiple.nameservers.he |
| 1159e0 | 72 65 2e 00 53 65 6e 64 20 65 6d 70 74 79 20 53 53 49 44 20 69 6e 20 62 65 61 63 6f 6e 73 20 61 | re..Send.empty.SSID.in.beacons.a |
| 115a00 | 6e 64 20 69 67 6e 6f 72 65 20 70 72 6f 62 65 20 72 65 71 75 65 73 74 20 66 72 61 6d 65 73 20 74 | nd.ignore.probe.request.frames.t |
| 115a20 | 68 61 74 20 64 6f 20 6e 6f 74 20 73 70 65 63 69 66 79 20 66 75 6c 6c 20 53 53 49 44 2c 20 69 2e | hat.do.not.specify.full.SSID,.i. |
| 115a40 | 65 2e 2c 20 72 65 71 75 69 72 65 20 73 74 61 74 69 6f 6e 73 20 74 6f 20 6b 6e 6f 77 20 53 53 49 | e.,.require.stations.to.know.SSI |
| 115a60 | 44 2e 00 53 65 6e 64 20 65 6d 70 74 79 20 53 53 49 44 20 69 6e 20 62 65 61 63 6f 6e 73 20 61 6e | D..Send.empty.SSID.in.beacons.an |
| 115a80 | 64 20 69 67 6e 6f 72 65 20 70 72 6f 62 65 20 72 65 71 75 65 73 74 20 66 72 61 6d 65 73 20 74 68 | d.ignore.probe.request.frames.th |
| 115aa0 | 61 74 20 64 6f 20 6e 6f 74 20 73 70 65 63 69 66 79 20 66 75 6c 6c 20 53 53 49 44 2c 20 69 2e 65 | at.do.not.specify.full.SSID,.i.e |
| 115ac0 | 2e 2c 20 72 65 71 75 69 72 65 20 73 74 61 74 69 6f 6e 73 20 74 6f 20 6b 6e 6f 77 20 74 68 65 20 | .,.require.stations.to.know.the. |
| 115ae0 | 53 53 49 44 2e 00 53 65 6e 74 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 20 28 4c 41 43 29 20 69 | SSID..Sent.to.the.client.(LAC).i |
| 115b00 | 6e 20 74 68 65 20 48 6f 73 74 2d 4e 61 6d 65 20 61 74 74 72 69 62 75 74 65 00 53 65 72 69 61 6c | n.the.Host-Name.attribute.Serial |
| 115b20 | 20 43 6f 6e 73 6f 6c 65 00 53 65 72 69 61 6c 20 69 6e 74 65 72 66 61 63 65 73 20 63 61 6e 20 62 | .Console.Serial.interfaces.can.b |
| 115b40 | 65 20 61 6e 79 20 69 6e 74 65 72 66 61 63 65 20 77 68 69 63 68 20 69 73 20 64 69 72 65 63 74 6c | e.any.interface.which.is.directl |
| 115b60 | 79 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 65 20 43 50 55 20 6f 72 20 63 68 69 70 73 65 | y.connected.to.the.CPU.or.chipse |
| 115b80 | 74 20 28 6d 6f 73 74 6c 79 20 6b 6e 6f 77 6e 20 61 73 20 61 20 74 74 79 53 20 69 6e 74 65 72 66 | t.(mostly.known.as.a.ttyS.interf |
| 115ba0 | 61 63 65 20 69 6e 20 4c 69 6e 75 78 29 20 6f 72 20 61 6e 79 20 6f 74 68 65 72 20 55 53 42 20 74 | ace.in.Linux).or.any.other.USB.t |
| 115bc0 | 6f 20 73 65 72 69 61 6c 20 63 6f 6e 76 65 72 74 65 72 20 28 50 72 6f 6c 69 66 69 63 20 50 4c 32 | o.serial.converter.(Prolific.PL2 |
| 115be0 | 33 30 33 20 6f 72 20 46 54 44 49 20 46 54 32 33 32 2f 46 54 34 32 33 32 20 62 61 73 65 64 20 63 | 303.or.FTDI.FT232/FT4232.based.c |
| 115c00 | 68 69 70 73 29 2e 00 53 65 72 76 65 72 00 53 65 72 76 65 72 20 43 65 72 74 69 66 69 63 61 74 65 | hips)..Server.Server.Certificate |
| 115c20 | 00 53 65 72 76 65 72 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 53 65 72 76 65 72 20 53 69 64 | .Server.Configuration.Server.Sid |
| 115c40 | 65 00 53 65 72 76 65 72 20 53 69 64 65 3a 00 53 65 72 76 65 72 20 62 72 69 64 67 65 00 53 65 72 | e.Server.Side:.Server.bridge.Ser |
| 115c60 | 76 65 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 53 65 72 76 65 72 20 6e 61 6d 65 73 20 66 | ver.configuration.Server.names.f |
| 115c80 | 6f 72 20 76 69 72 74 75 61 6c 20 68 6f 73 74 73 20 69 74 20 63 61 6e 20 62 65 20 65 78 61 63 74 | or.virtual.hosts.it.can.be.exact |
| 115ca0 | 2c 20 77 69 6c 64 63 61 72 64 20 6f 72 20 72 65 67 65 78 2e 00 53 65 72 76 65 72 3a 00 53 65 72 | ,.wildcard.or.regex..Server:.Ser |
| 115cc0 | 76 69 63 65 00 53 65 72 76 69 63 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 72 65 | vice.Service.configuration.is.re |
| 115ce0 | 73 70 6f 6e 73 69 62 6c 65 20 66 6f 72 20 62 69 6e 64 69 6e 67 20 74 6f 20 61 20 73 70 65 63 69 | sponsible.for.binding.to.a.speci |
| 115d00 | 66 69 63 20 70 6f 72 74 2c 20 77 68 69 6c 65 20 74 68 65 20 62 61 63 6b 65 6e 64 20 63 6f 6e 66 | fic.port,.while.the.backend.conf |
| 115d20 | 69 67 75 72 61 74 69 6f 6e 20 64 65 74 65 72 6d 69 6e 65 73 20 74 68 65 20 74 79 70 65 20 6f 66 | iguration.determines.the.type.of |
| 115d40 | 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 74 6f 20 62 65 20 61 70 70 6c 69 65 64 20 61 6e | .load.balancing.to.be.applied.an |
| 115d60 | 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 72 65 61 6c 20 73 65 72 76 65 72 73 20 74 6f 20 | d.specifies.the.real.servers.to. |
| 115d80 | 62 65 20 75 74 69 6c 69 7a 65 64 2e 00 53 65 74 20 42 46 44 20 70 65 65 72 20 49 50 76 34 20 61 | be.utilized..Set.BFD.peer.IPv4.a |
| 115da0 | 64 64 72 65 73 73 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 00 53 65 74 20 42 47 50 20 63 | ddress.or.IPv6.address.Set.BGP.c |
| 115dc0 | 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 20 74 6f 20 65 78 61 63 74 6c 79 20 6d 61 74 63 68 2e 00 | ommunity-list.to.exactly.match.. |
| 115de0 | 53 65 74 20 42 47 50 20 6c 6f 63 61 6c 20 70 72 65 66 65 72 65 6e 63 65 20 61 74 74 72 69 62 75 | Set.BGP.local.preference.attribu |
| 115e00 | 74 65 2e 00 53 65 74 20 42 47 50 20 6f 72 69 67 69 6e 20 63 6f 64 65 2e 00 53 65 74 20 42 47 50 | te..Set.BGP.origin.code..Set.BGP |
| 115e20 | 20 6f 72 69 67 69 6e 61 74 6f 72 20 49 44 20 61 74 74 72 69 62 75 74 65 2e 00 53 65 74 20 42 47 | .originator.ID.attribute..Set.BG |
| 115e40 | 50 20 77 65 69 67 68 74 20 61 74 74 72 69 62 75 74 65 00 53 65 74 20 44 4e 41 54 20 72 75 6c 65 | P.weight.attribute.Set.DNAT.rule |
| 115e60 | 20 32 30 20 74 6f 20 6f 6e 6c 79 20 4e 41 54 20 55 44 50 20 70 61 63 6b 65 74 73 00 53 65 74 20 | .20.to.only.NAT.UDP.packets.Set. |
| 115e80 | 49 50 20 66 72 61 67 6d 65 6e 74 20 6d 61 74 63 68 2c 20 77 68 65 72 65 3a 00 53 65 74 20 49 50 | IP.fragment.match,.where:.Set.IP |
| 115ea0 | 53 65 63 20 69 6e 62 6f 75 6e 64 20 6d 61 74 63 68 20 63 72 69 74 65 72 69 61 73 2c 20 77 68 65 | Sec.inbound.match.criterias,.whe |
| 115ec0 | 72 65 3a 00 53 65 74 20 4f 53 50 46 20 65 78 74 65 72 6e 61 6c 20 6d 65 74 72 69 63 2d 74 79 70 | re:.Set.OSPF.external.metric-typ |
| 115ee0 | 65 2e 00 53 65 74 20 53 4e 41 54 20 72 75 6c 65 20 32 30 20 74 6f 20 6f 6e 6c 79 20 4e 41 54 20 | e..Set.SNAT.rule.20.to.only.NAT. |
| 115f00 | 54 43 50 20 61 6e 64 20 55 44 50 20 70 61 63 6b 65 74 73 00 53 65 74 20 53 4e 41 54 20 72 75 6c | TCP.and.UDP.packets.Set.SNAT.rul |
| 115f20 | 65 20 32 30 20 74 6f 20 6f 6e 6c 79 20 4e 41 54 20 70 61 63 6b 65 74 73 20 61 72 72 69 76 69 6e | e.20.to.only.NAT.packets.arrivin |
| 115f40 | 67 20 66 72 6f 6d 20 74 68 65 20 31 39 32 2e 30 2e 32 2e 30 2f 32 34 20 6e 65 74 77 6f 72 6b 00 | g.from.the.192.0.2.0/24.network. |
| 115f60 | 53 65 74 20 53 4e 41 54 20 72 75 6c 65 20 33 30 20 74 6f 20 6f 6e 6c 79 20 4e 41 54 20 70 61 63 | Set.SNAT.rule.30.to.only.NAT.pac |
| 115f80 | 6b 65 74 73 20 61 72 72 69 76 69 6e 67 20 66 72 6f 6d 20 74 68 65 20 32 30 33 2e 30 2e 31 31 33 | kets.arriving.from.the.203.0.113 |
| 115fa0 | 2e 30 2f 32 34 20 6e 65 74 77 6f 72 6b 20 77 69 74 68 20 61 20 73 6f 75 72 63 65 20 70 6f 72 74 | .0/24.network.with.a.source.port |
| 115fc0 | 20 6f 66 20 38 30 20 61 6e 64 20 34 34 33 00 53 65 74 20 53 53 4c 20 63 65 72 74 65 66 69 63 61 | .of.80.and.443.Set.SSL.certefica |
| 115fe0 | 74 65 20 3c 6e 61 6d 65 3e 20 66 6f 72 20 73 65 72 76 69 63 65 20 3c 6e 61 6d 65 3e 00 53 65 74 | te.<name>.for.service.<name>.Set |
| 116000 | 20 53 53 4c 20 63 65 72 74 69 66 69 63 61 74 65 20 3c 6e 61 6d 65 3e 20 66 6f 72 20 73 65 72 76 | .SSL.certificate.<name>.for.serv |
| 116020 | 69 63 65 20 3c 6e 61 6d 65 3e 00 53 65 74 20 54 43 50 2d 4d 53 53 20 28 6d 61 78 69 6d 75 6d 20 | ice.<name>.Set.TCP-MSS.(maximum. |
| 116040 | 73 65 67 6d 65 6e 74 20 73 69 7a 65 29 20 66 6f 72 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e | segment.size).for.the.connection |
| 116060 | 00 53 65 74 20 54 54 4c 20 74 6f 20 33 30 30 20 73 65 63 6f 6e 64 73 00 53 65 74 20 56 69 72 74 | .Set.TTL.to.300.seconds.Set.Virt |
| 116080 | 75 61 6c 20 54 75 6e 6e 65 6c 20 49 6e 74 65 72 66 61 63 65 00 53 65 74 20 61 20 63 6f 6e 74 61 | ual.Tunnel.Interface.Set.a.conta |
| 1160a0 | 69 6e 65 72 20 64 65 73 63 72 69 70 74 69 6f 6e 00 53 65 74 20 61 20 64 65 73 63 72 69 70 74 69 | iner.description.Set.a.descripti |
| 1160c0 | 6f 6e 20 66 6f 72 20 74 68 65 20 73 68 61 70 65 72 2e 00 53 65 74 20 61 20 64 65 73 74 69 6e 61 | on.for.the.shaper..Set.a.destina |
| 1160e0 | 74 69 6f 6e 20 61 6e 64 2f 6f 72 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 2e 20 41 63 63 65 | tion.and/or.source.address..Acce |
| 116100 | 70 74 65 64 20 69 6e 70 75 74 20 66 6f 72 20 69 70 76 34 3a 00 53 65 74 20 61 20 64 65 73 74 69 | pted.input.for.ipv4:.Set.a.desti |
| 116120 | 6e 61 74 69 6f 6e 20 61 6e 64 2f 6f 72 20 73 6f 75 72 63 65 20 70 6f 72 74 2e 20 41 63 63 65 70 | nation.and/or.source.port..Accep |
| 116140 | 74 65 64 20 69 6e 70 75 74 3a 00 53 65 74 20 61 20 68 75 6d 61 6e 20 72 65 61 64 61 62 6c 65 2c | ted.input:.Set.a.human.readable, |
| 116160 | 20 64 65 73 63 72 69 70 74 69 76 65 20 61 6c 69 61 73 20 66 6f 72 20 74 68 69 73 20 63 6f 6e 6e | .descriptive.alias.for.this.conn |
| 116180 | 65 63 74 69 6f 6e 2e 20 41 6c 69 61 73 20 69 73 20 75 73 65 64 20 62 79 20 65 2e 67 2e 20 74 68 | ection..Alias.is.used.by.e.g..th |
| 1161a0 | 65 20 3a 6f 70 63 6d 64 3a 60 73 68 6f 77 20 69 6e 74 65 72 66 61 63 65 73 60 20 63 6f 6d 6d 61 | e.:opcmd:`show.interfaces`.comma |
| 1161c0 | 6e 64 20 6f 72 20 53 4e 4d 50 20 62 61 73 65 64 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 74 6f 6f 6c | nd.or.SNMP.based.monitoring.tool |
| 1161e0 | 73 2e 00 53 65 74 20 61 20 6c 69 6d 69 74 20 6f 6e 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 | s..Set.a.limit.on.the.maximum.nu |
| 116200 | 6d 62 65 72 20 6f 66 20 63 6f 6e 63 75 72 72 65 6e 74 20 6c 6f 67 67 65 64 2d 69 6e 20 75 73 65 | mber.of.concurrent.logged-in.use |
| 116220 | 72 73 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 00 53 65 74 20 61 20 6d 65 61 6e 69 6e 67 66 | rs.on.the.system..Set.a.meaningf |
| 116240 | 75 6c 20 64 65 73 63 72 69 70 74 69 6f 6e 2e 00 53 65 74 20 61 20 6e 61 6d 65 64 20 61 70 69 20 | ul.description..Set.a.named.api. |
| 116260 | 6b 65 79 2e 20 45 76 65 72 79 20 6b 65 79 20 68 61 73 20 74 68 65 20 73 61 6d 65 2c 20 66 75 6c | key..Every.key.has.the.same,.ful |
| 116280 | 6c 20 70 65 72 6d 69 73 73 69 6f 6e 73 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 00 53 65 74 | l.permissions.on.the.system..Set |
| 1162a0 | 20 61 20 72 75 6c 65 20 64 65 73 63 72 69 70 74 69 6f 6e 2e 00 53 65 74 20 61 20 73 70 65 63 69 | .a.rule.description..Set.a.speci |
| 1162c0 | 66 69 63 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6d 61 72 6b 2e 00 53 65 74 20 61 20 73 70 65 63 69 | fic.connection.mark..Set.a.speci |
| 1162e0 | 66 69 63 20 70 61 63 6b 65 74 20 6d 61 72 6b 20 76 61 6c 75 65 2e 00 53 65 74 20 61 20 73 70 65 | fic.packet.mark.value..Set.a.spe |
| 116300 | 63 69 66 69 63 20 70 61 63 6b 65 74 20 6d 61 72 6b 2e 00 53 65 74 20 61 20 73 70 65 63 69 66 69 | cific.packet.mark..Set.a.specifi |
| 116320 | 63 20 76 61 6c 75 65 20 6f 66 20 44 69 66 66 65 72 65 6e 74 69 61 74 65 64 20 53 65 72 76 69 63 | c.value.of.Differentiated.Servic |
| 116340 | 65 73 20 43 6f 64 65 70 6f 69 6e 74 20 28 44 53 43 50 29 2e 00 53 65 74 20 61 63 74 69 6f 6e 20 | es.Codepoint.(DSCP)..Set.action. |
| 116360 | 66 6f 72 20 74 68 65 20 72 6f 75 74 65 2d 6d 61 70 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 61 63 | for.the.route-map.policy..Set.ac |
| 116380 | 74 69 6f 6e 20 74 6f 20 74 61 6b 65 20 6f 6e 20 65 6e 74 72 69 65 73 20 6d 61 74 63 68 69 6e 67 | tion.to.take.on.entries.matching |
| 1163a0 | 20 74 68 69 73 20 72 75 6c 65 2e 00 53 65 74 20 61 6e 20 3a 61 62 62 72 3a 60 41 20 28 41 64 64 | .this.rule..Set.an.:abbr:`A.(Add |
| 1163c0 | 72 65 73 73 29 60 20 72 65 63 6f 72 64 2e 20 53 75 70 70 6f 72 74 73 20 60 60 40 60 60 20 61 6e | ress)`.record..Supports.``@``.an |
| 1163e0 | 64 20 60 60 61 6e 79 60 60 20 6b 65 79 77 6f 72 64 73 2e 00 53 65 74 20 61 6e 20 3a 61 62 62 72 | d.``any``.keywords..Set.an.:abbr |
| 116400 | 3a 60 41 41 41 41 20 28 49 50 76 36 20 41 64 64 72 65 73 73 29 60 20 72 65 63 6f 72 64 2e 20 53 | :`AAAA.(IPv6.Address)`.record..S |
| 116420 | 75 70 70 6f 72 74 73 20 60 60 40 60 60 20 61 6e 64 20 60 60 61 6e 79 60 60 20 6b 65 79 77 6f 72 | upports.``@``.and.``any``.keywor |
| 116440 | 64 73 2e 00 53 65 74 20 61 6e 20 3a 61 62 62 72 3a 60 43 4e 41 4d 45 20 28 43 61 6e 6f 6e 69 63 | ds..Set.an.:abbr:`CNAME.(Canonic |
| 116460 | 61 6c 20 6e 61 6d 65 29 60 20 72 65 63 6f 72 64 2e 20 53 75 70 70 6f 72 74 73 20 60 60 40 60 60 | al.name)`.record..Supports.``@`` |
| 116480 | 20 6b 65 79 77 6f 72 64 2e 00 53 65 74 20 61 6e 20 3a 61 62 62 72 3a 60 4e 41 50 54 52 20 28 4e | .keyword..Set.an.:abbr:`NAPTR.(N |
| 1164a0 | 61 6d 69 6e 67 20 61 75 74 68 6f 72 69 74 79 20 70 6f 69 6e 74 65 72 29 60 20 72 65 63 6f 72 64 | aming.authority.pointer)`.record |
| 1164c0 | 2e 20 53 75 70 70 6f 72 74 73 20 60 60 40 60 60 20 6b 65 79 77 6f 72 64 2e 20 4e 41 50 54 52 20 | ..Supports.``@``.keyword..NAPTR. |
| 1164e0 | 72 65 63 6f 72 64 73 20 73 75 70 70 6f 72 74 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6f 70 | records.support.the.following.op |
| 116500 | 74 69 6f 6e 73 3a 00 53 65 74 20 61 6e 20 3a 61 62 62 72 3a 60 4e 53 20 28 4e 61 6d 65 73 65 72 | tions:.Set.an.:abbr:`NS.(Nameser |
| 116520 | 76 65 72 29 60 20 72 65 63 6f 72 64 2e 00 53 65 74 20 61 6e 20 3a 61 62 62 72 3a 60 50 54 52 20 | ver)`.record..Set.an.:abbr:`PTR. |
| 116540 | 28 50 6f 69 6e 74 65 72 20 72 65 63 6f 72 64 29 60 20 72 65 63 6f 72 64 2e 20 53 75 70 70 6f 72 | (Pointer.record)`.record..Suppor |
| 116560 | 74 73 20 60 60 40 60 60 20 6b 65 79 77 6f 72 64 2e 00 53 65 74 20 61 6e 20 3a 61 62 62 72 3a 60 | ts.``@``.keyword..Set.an.:abbr:` |
| 116580 | 53 50 46 20 28 53 65 6e 64 65 72 20 70 6f 6c 69 63 79 20 66 72 61 6d 65 77 6f 72 6b 29 60 20 72 | SPF.(Sender.policy.framework)`.r |
| 1165a0 | 65 63 6f 72 64 2e 20 53 75 70 70 6f 72 74 73 20 60 60 40 60 60 20 6b 65 79 77 6f 72 64 2e 00 53 | ecord..Supports.``@``.keyword..S |
| 1165c0 | 65 74 20 61 6e 20 3a 61 62 62 72 3a 60 53 52 56 20 28 53 65 72 76 69 63 65 29 60 20 72 65 63 6f | et.an.:abbr:`SRV.(Service)`.reco |
| 1165e0 | 72 64 2e 20 53 75 70 70 6f 72 74 73 20 60 60 40 60 60 20 6b 65 79 77 6f 72 64 2e 00 53 65 74 20 | rd..Supports.``@``.keyword..Set. |
| 116600 | 61 6e 20 3a 61 62 62 72 3a 60 54 58 54 20 28 54 65 78 74 29 60 20 72 65 63 6f 72 64 2e 20 53 75 | an.:abbr:`TXT.(Text)`.record..Su |
| 116620 | 70 70 6f 72 74 73 20 60 60 40 60 60 20 6b 65 79 77 6f 72 64 2e 00 53 65 74 20 61 6e 20 41 50 49 | pports.``@``.keyword..Set.an.API |
| 116640 | 2d 4b 45 59 20 69 73 20 74 68 65 20 6d 69 6e 69 6d 61 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | -KEY.is.the.minimal.configuratio |
| 116660 | 6e 20 74 6f 20 67 65 74 20 61 20 77 6f 72 6b 69 6e 67 20 41 50 49 20 45 6e 64 70 6f 69 6e 74 2e | n.to.get.a.working.API.Endpoint. |
| 116680 | 00 53 65 74 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 70 6f 72 74 2d 72 61 6e 67 65 20 66 6f 72 20 | .Set.an.external.port-range.for. |
| 1166a0 | 74 68 65 20 65 78 74 65 72 6e 61 6c 20 70 6f 6f 6c 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 | the.external.pool,.the.default.r |
| 1166c0 | 61 6e 67 65 20 69 73 20 31 30 32 34 2d 36 35 35 33 35 2e 20 4d 75 6c 74 69 70 6c 65 20 65 6e 74 | ange.is.1024-65535..Multiple.ent |
| 1166e0 | 72 69 65 73 20 63 61 6e 20 62 65 20 61 64 64 65 64 20 74 6f 20 74 68 65 20 73 61 6d 65 20 70 6f | ries.can.be.added.to.the.same.po |
| 116700 | 6f 6c 2e 00 53 65 74 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 61 63 6b 65 6e 64 2e 20 | ol..Set.authentication.backend.. |
| 116720 | 54 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 61 | The.configured.authentication.ba |
| 116740 | 63 6b 65 6e 64 20 69 73 20 75 73 65 64 20 66 6f 72 20 61 6c 6c 20 71 75 65 72 69 65 73 2e 00 53 | ckend.is.used.for.all.queries..S |
| 116760 | 65 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6d 61 72 6b 20 76 61 6c 75 65 2e 00 53 65 74 20 63 6f | et.connection.mark.value..Set.co |
| 116780 | 6e 74 61 69 6e 65 72 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 6f 72 20 70 65 72 6d 69 73 73 69 | ntainer.capabilities.or.permissi |
| 1167a0 | 6f 6e 73 2e 00 53 65 74 20 63 6f 6e 74 61 69 6e 65 72 20 73 79 73 63 74 6c 20 76 61 6c 75 65 73 | ons..Set.container.sysctl.values |
| 1167c0 | 2e 00 53 65 74 20 63 75 73 74 6f 6d 20 48 54 54 50 20 68 65 61 64 65 72 73 20 74 6f 20 62 65 20 | ..Set.custom.HTTP.headers.to.be. |
| 1167e0 | 69 6e 63 6c 75 64 65 64 20 69 6e 20 61 6c 6c 20 72 65 73 70 6f 6e 73 65 73 00 53 65 74 20 63 75 | included.in.all.responses.Set.cu |
| 116800 | 73 74 6f 6d 20 48 54 54 50 20 68 65 61 64 65 72 73 20 74 6f 20 62 65 20 69 6e 63 6c 75 64 65 64 | stom.HTTP.headers.to.be.included |
| 116820 | 20 69 6e 20 61 6c 6c 20 72 65 73 70 6f 6e 73 65 73 20 75 73 69 6e 67 20 74 68 65 20 62 61 63 6b | .in.all.responses.using.the.back |
| 116840 | 65 6e 64 00 53 65 74 20 64 65 6c 61 79 20 62 65 74 77 65 65 6e 20 67 72 61 74 75 69 74 6f 75 73 | end.Set.delay.between.gratuitous |
| 116860 | 20 41 52 50 20 6d 65 73 73 61 67 65 73 20 73 65 6e 74 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 | .ARP.messages.sent.on.an.interfa |
| 116880 | 63 65 2e 00 53 65 74 20 64 65 6c 61 79 20 66 6f 72 20 73 65 63 6f 6e 64 20 73 65 74 20 6f 66 20 | ce..Set.delay.for.second.set.of. |
| 1168a0 | 67 72 61 74 75 69 74 6f 75 73 20 41 52 50 73 20 61 66 74 65 72 20 74 72 61 6e 73 69 74 69 6f 6e | gratuitous.ARPs.after.transition |
| 1168c0 | 20 74 6f 20 4d 41 53 54 45 52 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 60 3c 74 65 | .to.MASTER..Set.description.`<te |
| 1168e0 | 78 74 3e 60 20 66 6f 72 20 64 79 6e 61 6d 69 63 20 44 4e 53 20 73 65 72 76 69 63 65 20 62 65 69 | xt>`.for.dynamic.DNS.service.bei |
| 116900 | 6e 67 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 | ng.configured..Set.description.f |
| 116920 | 6f 72 20 61 73 2d 70 61 74 68 2d 6c 69 73 74 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 64 65 73 63 | or.as-path-list.policy..Set.desc |
| 116940 | 72 69 70 74 69 6f 6e 20 66 6f 72 20 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 20 70 6f 6c 69 63 | ription.for.community-list.polic |
| 116960 | 79 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 65 78 74 63 6f 6d 6d 75 6e | y..Set.description.for.extcommun |
| 116980 | 69 74 79 2d 6c 69 73 74 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e | ity-list.policy..Set.description |
| 1169a0 | 20 66 6f 72 20 6c 61 72 67 65 2d 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 20 70 6f 6c 69 63 79 | .for.large-community-list.policy |
| 1169c0 | 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 72 75 6c 65 20 69 6e 20 49 50 | ..Set.description.for.rule.in.IP |
| 1169e0 | 76 36 20 70 72 65 66 69 78 2d 6c 69 73 74 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 | v6.prefix-list..Set.description. |
| 116a00 | 66 6f 72 20 72 75 6c 65 20 69 6e 20 74 68 65 20 70 72 65 66 69 78 2d 6c 69 73 74 2e 00 53 65 74 | for.rule.in.the.prefix-list..Set |
| 116a20 | 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 72 75 6c 65 2e 00 53 65 74 20 64 65 73 63 72 | .description.for.rule..Set.descr |
| 116a40 | 69 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 49 50 76 36 20 61 63 63 65 73 73 20 6c 69 73 74 2e | iption.for.the.IPv6.access.list. |
| 116a60 | 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 49 50 76 36 20 70 72 | .Set.description.for.the.IPv6.pr |
| 116a80 | 65 66 69 78 2d 6c 69 73 74 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f | efix-list.policy..Set.descriptio |
| 116aa0 | 6e 20 66 6f 72 20 74 68 65 20 61 63 63 65 73 73 20 6c 69 73 74 2e 00 53 65 74 20 64 65 73 63 72 | n.for.the.access.list..Set.descr |
| 116ac0 | 69 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 70 72 65 66 69 78 2d 6c 69 73 74 20 70 6f 6c 69 63 | iption.for.the.prefix-list.polic |
| 116ae0 | 79 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 72 6f 75 74 65 | y..Set.description.for.the.route |
| 116b00 | 2d 6d 61 70 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 | -map.policy..Set.description.for |
| 116b20 | 20 74 68 65 20 72 75 6c 65 20 69 6e 20 74 68 65 20 72 6f 75 74 65 2d 6d 61 70 20 70 6f 6c 69 63 | .the.rule.in.the.route-map.polic |
| 116b40 | 79 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 6f 66 20 74 68 65 20 70 65 65 72 20 6f | y..Set.description.of.the.peer.o |
| 116b60 | 72 20 70 65 65 72 20 67 72 6f 75 70 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 2e 00 53 | r.peer.group..Set.description..S |
| 116b80 | 65 74 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 6f 72 20 70 72 65 66 69 78 | et.destination.address.or.prefix |
| 116ba0 | 20 74 6f 20 6d 61 74 63 68 2e 00 53 65 74 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 72 6f 75 74 69 | .to.match..Set.destination.routi |
| 116bc0 | 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 6d 65 74 72 69 63 2e 20 41 64 64 20 6f 72 20 73 75 62 74 72 | ng.protocol.metric..Add.or.subtr |
| 116be0 | 61 63 74 20 6d 65 74 72 69 63 2c 20 6f 72 20 73 65 74 20 6d 65 74 72 69 63 20 76 61 6c 75 65 2e | act.metric,.or.set.metric.value. |
| 116c00 | 00 53 65 74 20 65 74 68 31 20 74 6f 20 62 65 20 74 68 65 20 6c 69 73 74 65 6e 69 6e 67 20 69 6e | .Set.eth1.to.be.the.listening.in |
| 116c20 | 74 65 72 66 61 63 65 20 66 6f 72 20 74 68 65 20 44 48 43 50 76 36 20 72 65 6c 61 79 2e 00 53 65 | terface.for.the.DHCPv6.relay..Se |
| 116c40 | 74 20 65 78 65 63 75 74 69 6f 6e 20 74 69 6d 65 20 69 6e 20 63 6f 6d 6d 6f 6e 20 63 72 6f 6e 5f | t.execution.time.in.common.cron_ |
| 116c60 | 20 74 69 6d 65 20 66 6f 72 6d 61 74 2e 20 41 20 63 72 6f 6e 20 60 3c 73 70 65 63 3e 60 20 6f 66 | .time.format..A.cron.`<spec>`.of |
| 116c80 | 20 60 60 33 30 20 2a 2f 36 20 2a 20 2a 20 2a 60 60 20 77 6f 75 6c 64 20 65 78 65 63 75 74 65 20 | .``30.*/6.*.*.*``.would.execute. |
| 116ca0 | 74 68 65 20 60 3c 74 61 73 6b 3e 60 20 61 74 20 6d 69 6e 75 74 65 20 33 30 20 70 61 73 74 20 65 | the.`<task>`.at.minute.30.past.e |
| 116cc0 | 76 65 72 79 20 36 74 68 20 68 6f 75 72 2e 00 53 65 74 20 65 78 74 63 6f 6d 6d 75 6e 69 74 79 20 | very.6th.hour..Set.extcommunity. |
| 116ce0 | 62 61 6e 64 77 69 64 74 68 00 53 65 74 20 65 78 74 65 72 6e 61 6c 20 73 6f 75 72 63 65 20 70 6f | bandwidth.Set.external.source.po |
| 116d00 | 72 74 20 6c 69 6d 69 74 73 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 | rt.limits.that.will.be.allocated |
| 116d20 | 20 74 6f 20 65 61 63 68 20 73 75 62 73 63 72 69 62 65 72 20 69 6e 64 69 76 69 64 75 61 6c 6c 79 | .to.each.subscriber.individually |
| 116d40 | 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 32 30 30 30 2e 00 53 65 74 | ..The.default.value.is.2000..Set |
| 116d60 | 20 68 6f 70 20 6c 69 6d 69 74 20 76 61 6c 75 65 2e 00 53 65 74 20 69 66 20 61 6e 74 65 6e 6e 61 | .hop.limit.value..Set.if.antenna |
| 116d80 | 20 70 61 74 74 65 72 6e 20 64 6f 65 73 20 6e 6f 74 20 63 68 61 6e 67 65 20 64 75 72 69 6e 67 20 | .pattern.does.not.change.during. |
| 116da0 | 74 68 65 20 6c 69 66 65 74 69 6d 65 20 6f 66 20 61 6e 20 61 73 73 6f 63 69 61 74 69 6f 6e 00 53 | the.lifetime.of.an.association.S |
| 116dc0 | 65 74 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 6d 61 74 63 68 2e 00 53 | et.inbound.interface.to.match..S |
| 116de0 | 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 74 6f 20 61 20 7a 6f 6e 65 2e 20 41 20 7a 6f 6e 65 20 | et.interfaces.to.a.zone..A.zone. |
| 116e00 | 63 61 6e 20 68 61 76 65 20 6d 75 6c 74 69 70 6c 65 20 69 6e 74 65 72 66 61 63 65 73 2e 20 42 75 | can.have.multiple.interfaces..Bu |
| 116e20 | 74 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 61 20 6d 65 6d | t.an.interface.can.only.be.a.mem |
| 116e40 | 62 65 72 20 69 6e 20 6f 6e 65 20 7a 6f 6e 65 2e 00 53 65 74 20 6c 6f 63 61 6c 20 3a 61 62 62 72 | ber.in.one.zone..Set.local.:abbr |
| 116e60 | 3a 60 41 53 4e 20 28 41 75 74 6f 6e 6f 6d 6f 75 73 20 53 79 73 74 65 6d 20 4e 75 6d 62 65 72 29 | :`ASN.(Autonomous.System.Number) |
| 116e80 | 60 20 74 68 61 74 20 74 68 69 73 20 72 6f 75 74 65 72 20 72 65 70 72 65 73 65 6e 74 73 2e 20 54 | `.that.this.router.represents..T |
| 116ea0 | 68 69 73 20 69 73 20 61 20 61 20 6d 61 6e 64 61 74 6f 72 79 20 6f 70 74 69 6f 6e 21 00 53 65 74 | his.is.a.a.mandatory.option!.Set |
| 116ec0 | 20 6c 6f 63 61 6c 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 20 6e 75 6d 62 65 72 20 | .local.autonomous.system.number. |
| 116ee0 | 74 68 61 74 20 74 68 69 73 20 72 6f 75 74 65 72 20 72 65 70 72 65 73 65 6e 74 73 2e 20 54 68 69 | that.this.router.represents..Thi |
| 116f00 | 73 20 69 73 20 61 20 6d 61 6e 64 61 74 6f 72 79 20 6f 70 74 69 6f 6e 21 00 53 65 74 20 6d 61 74 | s.is.a.mandatory.option!.Set.mat |
| 116f20 | 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 65 64 20 6f 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 | ch.criteria.based.on.connection. |
| 116f40 | 6d 61 72 6b 2e 00 53 65 74 20 6d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 65 64 20 6f | mark..Set.match.criteria.based.o |
| 116f60 | 6e 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 2c 20 77 68 65 72 65 20 3c 6d 61 74 63 68 | n.destination.port,.where.<match |
| 116f80 | 5f 63 72 69 74 65 72 69 61 3e 20 63 6f 75 6c 64 20 62 65 3a 00 53 65 74 20 6d 61 74 63 68 20 63 | _criteria>.could.be:.Set.match.c |
| 116fa0 | 72 69 74 65 72 69 61 20 62 61 73 65 64 20 6f 6e 20 73 65 73 73 69 6f 6e 20 73 74 61 74 65 2e 00 | riteria.based.on.session.state.. |
| 116fc0 | 53 65 74 20 6d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 65 64 20 6f 6e 20 73 6f 75 72 | Set.match.criteria.based.on.sour |
| 116fe0 | 63 65 20 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 67 72 6f 75 70 73 2c 20 77 68 65 72 65 20 | ce.or.destination.groups,.where. |
| 117000 | 3c 74 65 78 74 3e 20 77 6f 75 6c 64 20 62 65 20 74 68 65 20 67 72 6f 75 70 20 6e 61 6d 65 2f 69 | <text>.would.be.the.group.name/i |
| 117020 | 64 65 6e 74 69 66 69 65 72 2e 20 50 72 65 70 65 6e 64 20 63 68 61 72 61 63 74 65 72 20 27 21 27 | dentifier..Prepend.character.'!' |
| 117040 | 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 2e | .for.inverted.matching.criteria. |
| 117060 | 00 53 65 74 20 6d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 65 64 20 6f 6e 20 73 6f 75 | .Set.match.criteria.based.on.sou |
| 117080 | 72 63 65 20 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 69 70 76 34 7c 69 70 76 36 20 61 64 64 | rce.or.destination.ipv4|ipv6.add |
| 1170a0 | 72 65 73 73 2c 20 77 68 65 72 65 20 3c 6d 61 74 63 68 5f 63 72 69 74 65 72 69 61 3e 20 63 6f 75 | ress,.where.<match_criteria>.cou |
| 1170c0 | 6c 64 20 62 65 3a 00 53 65 74 20 6d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 65 64 20 | ld.be:.Set.match.criteria.based. |
| 1170e0 | 6f 6e 20 74 63 70 20 66 6c 61 67 73 2e 20 41 6c 6c 6f 77 65 64 20 76 61 6c 75 65 73 20 66 6f 72 | on.tcp.flags..Allowed.values.for |
| 117100 | 20 54 43 50 20 66 6c 61 67 73 3a 20 53 59 4e 20 41 43 4b 20 46 49 4e 20 52 53 54 20 55 52 47 20 | .TCP.flags:.SYN.ACK.FIN.RST.URG. |
| 117120 | 50 53 48 20 41 4c 4c 2e 20 57 68 65 6e 20 73 70 65 63 69 66 79 69 6e 67 20 6d 6f 72 65 20 74 68 | PSH.ALL..When.specifying.more.th |
| 117140 | 61 6e 20 6f 6e 65 20 66 6c 61 67 2c 20 66 6c 61 67 73 20 73 68 6f 75 6c 64 20 62 65 20 63 6f 6d | an.one.flag,.flags.should.be.com |
| 117160 | 6d 61 2d 73 65 70 61 72 61 74 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 3a 20 76 61 6c 75 | ma-separated..For.example.:.valu |
| 117180 | 65 20 6f 66 20 27 53 59 4e 2c 21 41 43 4b 2c 21 46 49 4e 2c 21 52 53 54 27 20 77 69 6c 6c 20 6f | e.of.'SYN,!ACK,!FIN,!RST'.will.o |
| 1171a0 | 6e 6c 79 20 6d 61 74 63 68 20 70 61 63 6b 65 74 73 20 77 69 74 68 20 74 68 65 20 53 59 4e 20 66 | nly.match.packets.with.the.SYN.f |
| 1171c0 | 6c 61 67 20 73 65 74 2c 20 61 6e 64 20 74 68 65 20 41 43 4b 2c 20 46 49 4e 20 61 6e 64 20 52 53 | lag.set,.and.the.ACK,.FIN.and.RS |
| 1171e0 | 54 20 66 6c 61 67 73 20 75 6e 73 65 74 2e 00 53 65 74 20 6d 61 78 69 6d 75 6d 20 60 3c 73 69 7a | T.flags.unset..Set.maximum.`<siz |
| 117200 | 65 3e 60 20 6f 66 20 44 48 43 50 20 70 61 63 6b 65 74 73 20 69 6e 63 6c 75 64 69 6e 67 20 72 65 | e>`.of.DHCP.packets.including.re |
| 117220 | 6c 61 79 20 61 67 65 6e 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 20 49 66 20 61 20 44 48 43 50 | lay.agent.information..If.a.DHCP |
| 117240 | 20 70 61 63 6b 65 74 20 73 69 7a 65 20 73 75 72 70 61 73 73 65 73 20 74 68 69 73 20 76 61 6c 75 | .packet.size.surpasses.this.valu |
| 117260 | 65 20 69 74 20 77 69 6c 6c 20 62 65 20 66 6f 72 77 61 72 64 65 64 20 77 69 74 68 6f 75 74 20 61 | e.it.will.be.forwarded.without.a |
| 117280 | 70 70 65 6e 64 69 6e 67 20 72 65 6c 61 79 20 61 67 65 6e 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | ppending.relay.agent.information |
| 1172a0 | 2e 20 52 61 6e 67 65 20 36 34 2e 2e 2e 31 34 30 30 2c 20 64 65 66 61 75 6c 74 20 35 37 36 2e 00 | ..Range.64...1400,.default.576.. |
| 1172c0 | 53 65 74 20 6d 61 78 69 6d 75 6d 20 61 76 65 72 61 67 65 20 6d 61 74 63 68 69 6e 67 20 72 61 74 | Set.maximum.average.matching.rat |
| 1172e0 | 65 2e 20 46 6f 72 6d 61 74 20 66 6f 72 20 72 61 74 65 3a 20 69 6e 74 65 67 65 72 2f 74 69 6d 65 | e..Format.for.rate:.integer/time |
| 117300 | 5f 75 6e 69 74 2c 20 77 68 65 72 65 20 74 69 6d 65 5f 75 6e 69 74 20 63 6f 75 6c 64 20 62 65 20 | _unit,.where.time_unit.could.be. |
| 117320 | 61 6e 79 20 6f 6e 65 20 6f 66 20 73 65 63 6f 6e 64 2c 20 6d 69 6e 75 74 65 2c 20 68 6f 75 72 20 | any.one.of.second,.minute,.hour. |
| 117340 | 6f 72 20 64 61 79 2e 46 6f 72 20 65 78 61 6d 70 6c 65 20 31 2f 73 65 63 6f 6e 64 20 69 6d 70 6c | or.day.For.example.1/second.impl |
| 117360 | 69 65 73 20 72 75 6c 65 20 74 6f 20 62 65 20 6d 61 74 63 68 65 64 20 61 74 20 61 6e 20 61 76 65 | ies.rule.to.be.matched.at.an.ave |
| 117380 | 72 61 67 65 20 6f 66 20 6f 6e 63 65 20 70 65 72 20 73 65 63 6f 6e 64 2e 00 53 65 74 20 6d 61 78 | rage.of.once.per.second..Set.max |
| 1173a0 | 69 6d 75 6d 20 68 6f 70 20 63 6f 75 6e 74 20 62 65 66 6f 72 65 20 70 61 63 6b 65 74 73 20 61 72 | imum.hop.count.before.packets.ar |
| 1173c0 | 65 20 64 69 73 63 61 72 64 65 64 2c 20 64 65 66 61 75 6c 74 3a 20 31 30 00 53 65 74 20 6d 61 78 | e.discarded,.default:.10.Set.max |
| 1173e0 | 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 74 6f 20 61 6c 6f 77 20 69 | imum.number.of.packets.to.alow.i |
| 117400 | 6e 20 65 78 63 65 73 73 20 6f 66 20 72 61 74 65 2e 00 53 65 74 20 6d 69 6e 69 6d 75 6d 20 74 69 | n.excess.of.rate..Set.minimum.ti |
| 117420 | 6d 65 20 69 6e 74 65 72 76 61 6c 20 66 6f 72 20 72 65 66 72 65 73 68 69 6e 67 20 67 72 61 74 75 | me.interval.for.refreshing.gratu |
| 117440 | 69 74 6f 75 73 20 41 52 50 73 20 77 68 69 6c 65 20 4d 41 53 54 45 52 2e 00 53 65 74 20 6d 6f 64 | itous.ARPs.while.MASTER..Set.mod |
| 117460 | 65 20 66 6f 72 20 49 50 73 65 63 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 65 74 77 65 | e.for.IPsec.authentication.betwe |
| 117480 | 65 6e 20 56 79 4f 53 20 61 6e 64 20 4c 32 54 50 20 63 6c 69 65 6e 74 73 2e 00 53 65 74 20 6e 75 | en.VyOS.and.L2TP.clients..Set.nu |
| 1174a0 | 6d 62 65 72 20 6f 66 20 67 72 61 74 75 69 74 6f 75 73 20 41 52 50 20 6d 65 73 73 61 67 65 73 20 | mber.of.gratuitous.ARP.messages. |
| 1174c0 | 74 6f 20 73 65 6e 64 20 61 74 20 61 20 74 69 6d 65 20 61 66 74 65 72 20 74 72 61 6e 73 69 74 69 | to.send.at.a.time.after.transiti |
| 1174e0 | 6f 6e 20 74 6f 20 4d 41 53 54 45 52 2e 00 53 65 74 20 6e 75 6d 62 65 72 20 6f 66 20 67 72 61 74 | on.to.MASTER..Set.number.of.grat |
| 117500 | 75 69 74 6f 75 73 20 41 52 50 20 6d 65 73 73 61 67 65 73 20 74 6f 20 73 65 6e 64 20 61 74 20 61 | uitous.ARP.messages.to.send.at.a |
| 117520 | 20 74 69 6d 65 20 77 68 69 6c 65 20 4d 41 53 54 45 52 2e 00 53 65 74 20 6e 75 6d 62 65 72 20 6f | .time.while.MASTER..Set.number.o |
| 117540 | 66 20 73 65 63 6f 6e 64 73 20 66 6f 72 20 48 65 6c 6c 6f 20 49 6e 74 65 72 76 61 6c 20 74 69 6d | f.seconds.for.Hello.Interval.tim |
| 117560 | 65 72 20 76 61 6c 75 65 2e 20 53 65 74 74 69 6e 67 20 74 68 69 73 20 76 61 6c 75 65 2c 20 48 65 | er.value..Setting.this.value,.He |
| 117580 | 6c 6c 6f 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 65 76 65 72 79 20 74 69 | llo.packet.will.be.sent.every.ti |
| 1175a0 | 6d 65 72 20 76 61 6c 75 65 20 73 65 63 6f 6e 64 73 20 6f 6e 20 74 68 65 20 73 70 65 63 69 66 69 | mer.value.seconds.on.the.specifi |
| 1175c0 | 65 64 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 76 61 6c 75 65 20 6d 75 73 74 20 62 65 | ed.interface..This.value.must.be |
| 1175e0 | 20 74 68 65 20 73 61 6d 65 20 66 6f 72 20 61 6c 6c 20 72 6f 75 74 65 72 73 20 61 74 74 61 63 68 | .the.same.for.all.routers.attach |
| 117600 | 65 64 20 74 6f 20 61 20 63 6f 6d 6d 6f 6e 20 6e 65 74 77 6f 72 6b 2e 20 54 68 65 20 64 65 66 61 | ed.to.a.common.network..The.defa |
| 117620 | 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 30 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 | ult.value.is.10.seconds..The.int |
| 117640 | 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 35 35 33 35 2e 00 53 65 74 20 6e | erval.range.is.1.to.65535..Set.n |
| 117660 | 75 6d 62 65 72 20 6f 66 20 73 65 63 6f 6e 64 73 20 66 6f 72 20 72 6f 75 74 65 72 20 44 65 61 64 | umber.of.seconds.for.router.Dead |
| 117680 | 20 49 6e 74 65 72 76 61 6c 20 74 69 6d 65 72 20 76 61 6c 75 65 20 75 73 65 64 20 66 6f 72 20 57 | .Interval.timer.value.used.for.W |
| 1176a0 | 61 69 74 20 54 69 6d 65 72 20 61 6e 64 20 49 6e 61 63 74 69 76 69 74 79 20 54 69 6d 65 72 2e 20 | ait.Timer.and.Inactivity.Timer.. |
| 1176c0 | 54 68 69 73 20 76 61 6c 75 65 20 6d 75 73 74 20 62 65 20 74 68 65 20 73 61 6d 65 20 66 6f 72 20 | This.value.must.be.the.same.for. |
| 1176e0 | 61 6c 6c 20 72 6f 75 74 65 72 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 63 6f 6d 6d 6f 6e | all.routers.attached.to.a.common |
| 117700 | 20 6e 65 74 77 6f 72 6b 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 34 | .network..The.default.value.is.4 |
| 117720 | 30 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 | 0.seconds..The.interval.range.is |
| 117740 | 20 31 20 74 6f 20 36 35 35 33 35 2e 00 53 65 74 20 70 61 63 6b 65 74 20 6d 6f 64 69 66 69 63 61 | .1.to.65535..Set.packet.modifica |
| 117760 | 74 69 6f 6e 73 3a 20 45 78 70 6c 69 63 69 74 6c 79 20 73 65 74 20 54 43 50 20 4d 61 78 69 6d 75 | tions:.Explicitly.set.TCP.Maximu |
| 117780 | 6d 20 73 65 67 6d 65 6e 74 20 73 69 7a 65 20 76 61 6c 75 65 2e 00 53 65 74 20 70 61 63 6b 65 74 | m.segment.size.value..Set.packet |
| 1177a0 | 20 6d 6f 64 69 66 69 63 61 74 69 6f 6e 73 3a 20 50 61 63 6b 65 74 20 44 69 66 66 65 72 65 6e 74 | .modifications:.Packet.Different |
| 1177c0 | 69 61 74 65 64 20 53 65 72 76 69 63 65 73 20 43 6f 64 65 70 6f 69 6e 74 20 28 44 53 43 50 29 00 | iated.Services.Codepoint.(DSCP). |
| 1177e0 | 53 65 74 20 70 61 72 61 6d 65 74 65 72 73 20 66 6f 72 20 6d 61 74 63 68 69 6e 67 20 72 65 63 65 | Set.parameters.for.matching.rece |
| 117800 | 6e 74 6c 79 20 73 65 65 6e 20 73 6f 75 72 63 65 73 2e 20 54 68 69 73 20 6d 61 74 63 68 20 63 6f | ntly.seen.sources..This.match.co |
| 117820 | 75 6c 64 20 62 65 20 75 73 65 64 20 62 79 20 73 65 65 74 69 6e 67 20 63 6f 75 6e 74 20 28 73 6f | uld.be.used.by.seeting.count.(so |
| 117840 | 75 72 63 65 20 61 64 64 72 65 73 73 20 73 65 65 6e 20 6d 6f 72 65 20 74 68 61 6e 20 3c 31 2d 32 | urce.address.seen.more.than.<1-2 |
| 117860 | 35 35 3e 20 74 69 6d 65 73 29 20 61 6e 64 2f 6f 72 20 74 69 6d 65 20 28 73 6f 75 72 63 65 20 61 | 55>.times).and/or.time.(source.a |
| 117880 | 64 64 72 65 73 73 20 73 65 65 6e 20 69 6e 20 74 68 65 20 6c 61 73 74 20 3c 30 2d 34 32 39 34 39 | ddress.seen.in.the.last.<0-42949 |
| 1178a0 | 36 37 32 39 35 3e 20 73 65 63 6f 6e 64 73 29 2e 00 53 65 74 20 70 72 65 64 65 66 69 6e 65 64 20 | 67295>.seconds)..Set.predefined. |
| 1178c0 | 73 68 61 72 65 64 20 73 65 63 72 65 74 20 70 68 72 61 73 65 2e 00 53 65 74 20 70 72 65 66 69 78 | shared.secret.phrase..Set.prefix |
| 1178e0 | 65 73 20 74 6f 20 74 61 62 6c 65 2e 00 53 65 74 20 70 72 6f 78 79 20 66 6f 72 20 61 6c 6c 20 63 | es.to.table..Set.proxy.for.all.c |
| 117900 | 6f 6e 6e 65 63 74 69 6f 6e 73 20 69 6e 69 74 69 61 74 65 64 20 62 79 20 56 79 4f 53 2c 20 69 6e | onnections.initiated.by.VyOS,.in |
| 117920 | 63 6c 75 64 69 6e 67 20 48 54 54 50 2c 20 48 54 54 50 53 2c 20 61 6e 64 20 46 54 50 20 28 61 6e | cluding.HTTP,.HTTPS,.and.FTP.(an |
| 117940 | 6f 6e 79 6d 6f 75 73 20 66 74 70 29 2e 00 53 65 74 20 72 6f 75 74 65 20 74 61 72 67 65 74 20 76 | onymous.ftp)..Set.route.target.v |
| 117960 | 61 6c 75 65 20 69 6e 20 66 6f 72 6d 61 74 20 60 60 3c 30 2d 36 35 35 33 35 3a 30 2d 34 32 39 34 | alue.in.format.``<0-65535:0-4294 |
| 117980 | 39 36 37 32 39 35 3e 60 60 20 6f 72 20 60 60 3c 49 50 3a 30 2d 36 35 35 33 35 3e 60 60 2e 00 53 | 967295>``.or.``<IP:0-65535>``..S |
| 1179a0 | 65 74 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 74 6f 20 66 6f 72 77 61 72 64 20 70 61 63 6b | et.routing.table.to.forward.pack |
| 1179c0 | 65 74 20 74 6f 2e 00 53 65 74 20 72 75 6c 65 20 61 63 74 69 6f 6e 20 74 6f 20 64 72 6f 70 2e 00 | et.to..Set.rule.action.to.drop.. |
| 1179e0 | 53 65 74 20 73 65 72 76 69 63 65 20 74 6f 20 62 69 6e 64 20 6f 6e 20 49 50 20 61 64 64 72 65 73 | Set.service.to.bind.on.IP.addres |
| 117a00 | 73 2c 20 62 79 20 64 65 66 61 75 6c 74 20 6c 69 73 74 65 6e 20 6f 6e 20 61 6e 79 20 49 50 76 34 | s,.by.default.listen.on.any.IPv4 |
| 117a20 | 20 61 6e 64 20 49 50 76 36 00 53 65 74 20 73 69 74 65 20 6f 66 20 6f 72 69 67 69 6e 20 76 61 6c | .and.IPv6.Set.site.of.origin.val |
| 117a40 | 75 65 20 69 6e 20 66 6f 72 6d 61 74 20 60 60 3c 30 2d 36 35 35 33 35 3a 30 2d 34 32 39 34 39 36 | ue.in.format.``<0-65535:0-429496 |
| 117a60 | 37 32 39 35 3e 60 60 20 6f 72 20 60 60 3c 49 50 3a 30 2d 36 35 35 33 35 3e 60 60 2e 00 53 65 74 | 7295>``.or.``<IP:0-65535>``..Set |
| 117a80 | 20 73 6f 6d 65 20 61 74 74 72 69 62 75 74 65 73 20 28 6c 69 6b 65 20 41 53 20 50 41 54 48 20 6f | .some.attributes.(like.AS.PATH.o |
| 117aa0 | 72 20 43 6f 6d 6d 75 6e 69 74 79 20 76 61 6c 75 65 29 20 74 6f 20 61 64 76 65 72 74 69 73 65 64 | r.Community.value).to.advertised |
| 117ac0 | 20 72 6f 75 74 65 73 20 74 6f 20 6e 65 69 67 68 62 6f 72 73 2e 00 53 65 74 20 73 6f 6d 65 20 6d | .routes.to.neighbors..Set.some.m |
| 117ae0 | 65 74 72 69 63 20 74 6f 20 72 6f 75 74 65 73 20 6c 65 61 72 6e 65 64 20 66 72 6f 6d 20 61 20 70 | etric.to.routes.learned.from.a.p |
| 117b00 | 61 72 74 69 63 75 6c 61 72 20 6e 65 69 67 68 62 6f 72 2e 00 53 65 74 20 73 6f 75 72 63 65 20 49 | articular.neighbor..Set.source.I |
| 117b20 | 50 2f 49 50 76 36 20 61 64 64 72 65 73 73 20 66 6f 72 20 72 6f 75 74 65 2e 00 53 65 74 20 73 6f | P/IPv6.address.for.route..Set.so |
| 117b40 | 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 72 20 70 72 65 66 69 78 20 74 6f 20 6d 61 74 63 68 2e | urce.address.or.prefix.to.match. |
| 117b60 | 00 53 65 74 20 73 6f 75 72 63 65 2d 61 64 64 72 65 73 73 20 74 6f 20 79 6f 75 72 20 6c 6f 63 61 | .Set.source-address.to.your.loca |
| 117b80 | 6c 20 49 50 20 28 4c 41 4e 29 2e 00 53 65 74 20 74 61 67 20 76 61 6c 75 65 20 66 6f 72 20 72 6f | l.IP.(LAN)..Set.tag.value.for.ro |
| 117ba0 | 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 2e 00 53 65 74 20 74 68 65 20 22 72 65 63 75 72 73 69 | uting.protocol..Set.the."recursi |
| 117bc0 | 6f 6e 20 64 65 73 69 72 65 64 22 20 62 69 74 20 69 6e 20 72 65 71 75 65 73 74 73 20 74 6f 20 74 | on.desired".bit.in.requests.to.t |
| 117be0 | 68 65 20 75 70 73 74 72 65 61 6d 20 6e 61 6d 65 73 65 72 76 65 72 2e 00 53 65 74 20 74 68 65 20 | he.upstream.nameserver..Set.the. |
| 117c00 | 3a 61 62 62 72 3a 60 44 52 20 28 44 65 73 69 67 6e 61 74 65 64 20 52 6f 75 74 65 72 29 60 20 50 | :abbr:`DR.(Designated.Router)`.P |
| 117c20 | 72 69 6f 72 69 74 79 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 | riority.for.the.interface..This. |
| 117c40 | 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 66 75 6c 20 74 6f 20 61 6c 6c 6f 77 20 74 68 65 20 75 | command.is.useful.to.allow.the.u |
| 117c60 | 73 65 72 20 74 6f 20 69 6e 66 6c 75 65 6e 63 65 20 77 68 61 74 20 6e 6f 64 65 20 62 65 63 6f 6d | ser.to.influence.what.node.becom |
| 117c80 | 65 73 20 74 68 65 20 44 52 20 66 6f 72 20 61 20 4c 41 4e 20 73 65 67 6d 65 6e 74 2e 00 53 65 74 | es.the.DR.for.a.LAN.segment..Set |
| 117ca0 | 20 74 68 65 20 3a 61 62 62 72 3a 60 4d 52 55 20 28 4d 61 78 69 6d 75 6d 20 52 65 63 65 69 76 65 | .the.:abbr:`MRU.(Maximum.Receive |
| 117cc0 | 20 55 6e 69 74 29 60 20 74 6f 20 60 6d 72 75 60 2e 20 50 50 50 64 20 77 69 6c 6c 20 61 73 6b 20 | .Unit)`.to.`mru`..PPPd.will.ask. |
| 117ce0 | 74 68 65 20 70 65 65 72 20 74 6f 20 73 65 6e 64 20 70 61 63 6b 65 74 73 20 6f 66 20 6e 6f 20 6d | the.peer.to.send.packets.of.no.m |
| 117d00 | 6f 72 65 20 74 68 61 6e 20 60 6d 72 75 60 20 62 79 74 65 73 2e 20 54 68 65 20 76 61 6c 75 65 20 | ore.than.`mru`.bytes..The.value. |
| 117d20 | 6f 66 20 60 6d 72 75 60 20 6d 75 73 74 20 62 65 20 62 65 74 77 65 65 6e 20 31 32 38 20 61 6e 64 | of.`mru`.must.be.between.128.and |
| 117d40 | 20 31 36 33 38 34 2e 00 53 65 74 20 74 68 65 20 3a 61 62 62 72 3a 60 54 54 4c 20 28 54 69 6d 65 | .16384..Set.the.:abbr:`TTL.(Time |
| 117d60 | 2d 74 6f 2d 6c 69 76 65 29 60 20 66 6f 72 20 74 68 65 20 72 65 63 6f 72 64 20 69 6e 20 73 65 63 | -to-live)`.for.the.record.in.sec |
| 117d80 | 6f 6e 64 73 2e 20 44 65 66 61 75 6c 74 20 69 73 20 33 30 30 20 73 65 63 6f 6e 64 73 2e 00 53 65 | onds..Default.is.300.seconds..Se |
| 117da0 | 74 20 74 68 65 20 42 47 50 20 6e 65 78 74 68 6f 70 20 61 64 64 72 65 73 73 20 74 6f 20 74 68 65 | t.the.BGP.nexthop.address.to.the |
| 117dc0 | 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 70 65 65 72 2e 20 46 6f 72 20 61 6e 20 69 6e 63 | .address.of.the.peer..For.an.inc |
| 117de0 | 6f 6d 69 6e 67 20 72 6f 75 74 65 2d 6d 61 70 20 74 68 69 73 20 6d 65 61 6e 73 20 74 68 65 20 69 | oming.route-map.this.means.the.i |
| 117e00 | 70 20 61 64 64 72 65 73 73 20 6f 66 20 6f 75 72 20 70 65 65 72 20 69 73 20 75 73 65 64 2e 20 46 | p.address.of.our.peer.is.used..F |
| 117e20 | 6f 72 20 61 6e 20 6f 75 74 67 6f 69 6e 67 20 72 6f 75 74 65 2d 6d 61 70 20 74 68 69 73 20 6d 65 | or.an.outgoing.route-map.this.me |
| 117e40 | 61 6e 73 20 74 68 65 20 69 70 20 61 64 64 72 65 73 73 20 6f 66 20 6f 75 72 20 73 65 6c 66 20 69 | ans.the.ip.address.of.our.self.i |
| 117e60 | 73 20 75 73 65 64 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 74 68 65 20 70 65 65 72 69 6e 67 20 | s.used.to.establish.the.peering. |
| 117e80 | 77 69 74 68 20 6f 75 72 20 6e 65 69 67 68 62 6f 72 2e 00 53 65 74 20 74 68 65 20 49 50 20 61 64 | with.our.neighbor..Set.the.IP.ad |
| 117ea0 | 64 72 65 73 73 20 6f 66 20 74 68 65 20 6c 6f 63 61 6c 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 | dress.of.the.local.interface.to. |
| 117ec0 | 62 65 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 74 75 6e 6e 65 6c 2e 00 53 65 74 20 74 68 65 20 | be.used.for.the.tunnel..Set.the. |
| 117ee0 | 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 72 65 6d 6f 74 65 20 70 65 65 72 2e 20 49 | IP.address.of.the.remote.peer..I |
| 117f00 | 74 20 6d 61 79 20 62 65 20 73 70 65 63 69 66 69 65 64 20 61 73 20 61 6e 20 49 50 76 34 20 61 64 | t.may.be.specified.as.an.IPv4.ad |
| 117f20 | 64 72 65 73 73 20 6f 72 20 61 6e 20 49 50 76 36 20 61 64 64 72 65 73 73 2e 00 53 65 74 20 74 68 | dress.or.an.IPv6.address..Set.th |
| 117f40 | 65 20 49 50 76 34 20 73 6f 75 72 63 65 20 76 61 6c 69 64 61 74 69 6f 6e 20 6d 6f 64 65 2e 20 54 | e.IPv4.source.validation.mode..T |
| 117f60 | 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 | he.following.system.parameter.wi |
| 117f80 | 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 53 65 74 20 74 68 65 20 4d 4c 44 20 6c 61 73 74 20 | ll.be.altered:.Set.the.MLD.last. |
| 117fa0 | 6d 65 6d 62 65 72 20 71 75 65 72 79 20 63 6f 75 6e 74 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 | member.query.count..The.default. |
| 117fc0 | 76 61 6c 75 65 20 69 73 20 32 2e 00 53 65 74 20 74 68 65 20 4d 4c 44 20 6c 61 73 74 20 6d 65 6d | value.is.2..Set.the.MLD.last.mem |
| 117fe0 | 62 65 72 20 71 75 65 72 79 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e | ber.query.interval.in.millisecon |
| 118000 | 64 73 20 28 31 30 30 2d 36 35 35 33 35 30 30 29 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 | ds.(100-6553500)..The.default.va |
| 118020 | 6c 75 65 20 69 73 20 31 30 30 30 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 2e 00 53 65 74 20 74 68 | lue.is.1000.milliseconds..Set.th |
| 118040 | 65 20 4d 4c 44 20 71 75 65 72 79 20 72 65 73 70 6f 6e 73 65 20 74 69 6d 65 6f 75 74 20 69 6e 20 | e.MLD.query.response.timeout.in. |
| 118060 | 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 20 28 31 30 30 2d 36 35 35 33 35 30 30 29 2e 20 54 68 65 20 | milliseconds.(100-6553500)..The. |
| 118080 | 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 30 30 30 30 20 6d 69 6c 6c 69 73 65 63 6f | default.value.is.10000.milliseco |
| 1180a0 | 6e 64 73 2e 00 53 65 74 20 74 68 65 20 4d 4c 44 20 76 65 72 73 69 6f 6e 20 75 73 65 64 20 6f 6e | nds..Set.the.MLD.version.used.on |
| 1180c0 | 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c | .this.interface..The.default.val |
| 1180e0 | 75 65 20 69 73 20 32 2e 00 53 65 74 20 74 68 65 20 4d 61 78 69 6d 75 6d 20 53 74 61 63 6b 20 44 | ue.is.2..Set.the.Maximum.Stack.D |
| 118100 | 65 70 74 68 20 73 75 70 70 6f 72 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 2e 20 54 68 | epth.supported.by.the.router..Th |
| 118120 | 65 20 76 61 6c 75 65 20 64 65 70 65 6e 64 20 6f 66 20 74 68 65 20 4d 50 4c 53 20 64 61 74 61 70 | e.value.depend.of.the.MPLS.datap |
| 118140 | 6c 61 6e 65 2e 00 53 65 74 20 74 68 65 20 50 49 4d 20 68 65 6c 6c 6f 20 61 6e 64 20 68 6f 6c 64 | lane..Set.the.PIM.hello.and.hold |
| 118160 | 20 69 6e 74 65 72 76 61 6c 20 66 6f 72 20 61 20 69 6e 74 65 72 66 61 63 65 2e 00 53 65 74 20 74 | .interval.for.a.interface..Set.t |
| 118180 | 68 65 20 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 47 6c 6f 62 61 6c 20 42 6c 6f 63 6b 20 | he.Segment.Routing.Global.Block. |
| 1181a0 | 69 2e 65 2e 20 74 68 65 20 6c 61 62 65 6c 20 72 61 6e 67 65 20 75 73 65 64 20 62 79 20 4d 50 4c | i.e..the.label.range.used.by.MPL |
| 1181c0 | 53 20 74 6f 20 73 74 6f 72 65 20 6c 61 62 65 6c 20 69 6e 20 74 68 65 20 4d 50 4c 53 20 46 49 42 | S.to.store.label.in.the.MPLS.FIB |
| 1181e0 | 20 66 6f 72 20 50 72 65 66 69 78 20 53 49 44 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 65 20 62 | .for.Prefix.SID..Note.that.the.b |
| 118200 | 6c 6f 63 6b 20 73 69 7a 65 20 6d 61 79 20 6e 6f 74 20 65 78 63 65 65 64 20 36 35 35 33 35 2e 00 | lock.size.may.not.exceed.65535.. |
| 118220 | 53 65 74 20 74 68 65 20 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 47 6c 6f 62 61 6c 20 42 | Set.the.Segment.Routing.Global.B |
| 118240 | 6c 6f 63 6b 20 69 2e 65 2e 20 74 68 65 20 6c 6f 77 20 6c 61 62 65 6c 20 72 61 6e 67 65 20 75 73 | lock.i.e..the.low.label.range.us |
| 118260 | 65 64 20 62 79 20 4d 50 4c 53 20 74 6f 20 73 74 6f 72 65 20 6c 61 62 65 6c 20 69 6e 20 74 68 65 | ed.by.MPLS.to.store.label.in.the |
| 118280 | 20 4d 50 4c 53 20 46 49 42 20 66 6f 72 20 50 72 65 66 69 78 20 53 49 44 2e 20 4e 6f 74 65 20 74 | .MPLS.FIB.for.Prefix.SID..Note.t |
| 1182a0 | 68 61 74 20 74 68 65 20 62 6c 6f 63 6b 20 73 69 7a 65 20 6d 61 79 20 6e 6f 74 20 65 78 63 65 65 | hat.the.block.size.may.not.excee |
| 1182c0 | 64 20 36 35 35 33 35 2e 00 53 65 74 20 74 68 65 20 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 | d.65535..Set.the.Segment.Routing |
| 1182e0 | 20 4c 6f 63 61 6c 20 42 6c 6f 63 6b 20 69 2e 65 2e 20 74 68 65 20 6c 61 62 65 6c 20 72 61 6e 67 | .Local.Block.i.e..the.label.rang |
| 118300 | 65 20 75 73 65 64 20 62 79 20 4d 50 4c 53 20 74 6f 20 73 74 6f 72 65 20 6c 61 62 65 6c 20 69 6e | e.used.by.MPLS.to.store.label.in |
| 118320 | 20 74 68 65 20 4d 50 4c 53 20 46 49 42 20 66 6f 72 20 50 72 65 66 69 78 20 53 49 44 2e 20 4e 6f | .the.MPLS.FIB.for.Prefix.SID..No |
| 118340 | 74 65 20 74 68 61 74 20 74 68 65 20 62 6c 6f 63 6b 20 73 69 7a 65 20 6d 61 79 20 6e 6f 74 20 65 | te.that.the.block.size.may.not.e |
| 118360 | 78 63 65 65 64 20 36 35 35 33 35 2e 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 4c 6f 63 61 | xceed.65535.Segment.Routing.Loca |
| 118380 | 6c 20 42 6c 6f 63 6b 2c 20 54 68 65 20 6e 65 67 61 74 69 76 65 20 63 6f 6d 6d 61 6e 64 20 61 6c | l.Block,.The.negative.command.al |
| 1183a0 | 77 61 79 73 20 75 6e 73 65 74 73 20 62 6f 74 68 2e 00 53 65 74 20 74 68 65 20 53 65 67 6d 65 6e | ways.unsets.both..Set.the.Segmen |
| 1183c0 | 74 20 52 6f 75 74 69 6e 67 20 4c 6f 63 61 6c 20 42 6c 6f 63 6b 20 69 2e 65 2e 20 74 68 65 20 6c | t.Routing.Local.Block.i.e..the.l |
| 1183e0 | 6f 77 20 6c 61 62 65 6c 20 72 61 6e 67 65 20 75 73 65 64 20 62 79 20 4d 50 4c 53 20 74 6f 20 73 | ow.label.range.used.by.MPLS.to.s |
| 118400 | 74 6f 72 65 20 6c 61 62 65 6c 20 69 6e 20 74 68 65 20 4d 50 4c 53 20 46 49 42 20 66 6f 72 20 50 | tore.label.in.the.MPLS.FIB.for.P |
| 118420 | 72 65 66 69 78 20 53 49 44 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 65 20 62 6c 6f 63 6b 20 73 | refix.SID..Note.that.the.block.s |
| 118440 | 69 7a 65 20 6d 61 79 20 6e 6f 74 20 65 78 63 65 65 64 20 36 35 35 33 35 2e 53 65 67 6d 65 6e 74 | ize.may.not.exceed.65535.Segment |
| 118460 | 20 52 6f 75 74 69 6e 67 20 4c 6f 63 61 6c 20 42 6c 6f 63 6b 2c 20 54 68 65 20 6e 65 67 61 74 69 | .Routing.Local.Block,.The.negati |
| 118480 | 76 65 20 63 6f 6d 6d 61 6e 64 20 61 6c 77 61 79 73 20 75 6e 73 65 74 73 20 62 6f 74 68 2e 00 53 | ve.command.always.unsets.both..S |
| 1184a0 | 65 74 20 74 68 65 20 54 43 50 2d 4d 53 53 20 28 54 43 50 20 6d 61 78 69 6d 75 6d 20 73 65 67 6d | et.the.TCP-MSS.(TCP.maximum.segm |
| 1184c0 | 65 6e 74 20 73 69 7a 65 29 20 66 6f 72 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 53 65 | ent.size).for.the.connection..Se |
| 1184e0 | 74 20 74 68 65 20 54 43 50 2d 4d 53 53 20 28 6d 61 78 69 6d 75 6d 20 73 65 67 6d 65 6e 74 20 73 | t.the.TCP-MSS.(maximum.segment.s |
| 118500 | 69 7a 65 29 20 66 6f 72 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 00 53 65 74 20 74 68 65 20 | ize).for.the.connection.Set.the. |
| 118520 | 54 54 4c 20 28 54 69 6d 65 20 74 6f 20 4c 69 76 65 29 20 76 61 6c 75 65 2e 00 53 65 74 20 74 68 | TTL.(Time.to.Live).value..Set.th |
| 118540 | 65 20 55 73 65 72 20 49 44 20 6f 72 20 47 72 6f 75 70 20 49 44 20 6f 66 20 74 68 65 20 63 6f 6e | e.User.ID.or.Group.ID.of.the.con |
| 118560 | 74 61 69 6e 65 72 00 53 65 74 20 74 68 65 20 60 60 73 73 68 64 60 60 20 6c 6f 67 20 6c 65 76 65 | tainer.Set.the.``sshd``.log.leve |
| 118580 | 6c 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 60 60 69 6e 66 6f 60 60 2e 00 53 65 74 20 | l..The.default.is.``info``..Set. |
| 1185a0 | 74 68 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 62 61 63 6b 65 6e 64 20 70 6f 72 74 00 | the.address.of.the.backend.port. |
| 1185c0 | 53 65 74 20 74 68 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 62 61 63 6b 65 6e 64 20 73 | Set.the.address.of.the.backend.s |
| 1185e0 | 65 72 76 65 72 20 74 6f 20 77 68 69 63 68 20 74 68 65 20 69 6e 63 6f 6d 69 6e 67 20 74 72 61 66 | erver.to.which.the.incoming.traf |
| 118600 | 66 69 63 20 77 69 6c 6c 20 62 65 20 66 6f 72 77 61 72 64 65 64 00 53 65 74 20 74 68 65 20 61 75 | fic.will.be.forwarded.Set.the.au |
| 118620 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 74 79 70 65 20 66 6f 72 20 47 72 61 70 68 51 4c 2c 20 64 | thentication.type.for.GraphQL,.d |
| 118640 | 65 66 61 75 6c 74 20 6f 70 74 69 6f 6e 20 69 73 20 6b 65 79 2e 20 41 76 61 69 6c 61 62 6c 65 20 | efault.option.is.key..Available. |
| 118660 | 6f 70 74 69 6f 6e 73 20 61 72 65 3a 00 53 65 74 20 74 68 65 20 62 79 74 65 20 6c 65 6e 67 74 68 | options.are:.Set.the.byte.length |
| 118680 | 20 6f 66 20 74 68 65 20 4a 57 54 20 73 65 63 72 65 74 2e 20 44 65 66 61 75 6c 74 20 69 73 20 33 | .of.the.JWT.secret..Default.is.3 |
| 1186a0 | 32 2e 00 53 65 74 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 61 72 67 75 6d 65 6e 74 73 20 66 6f 72 | 2..Set.the.command.arguments.for |
| 1186c0 | 20 61 20 63 6f 6e 74 61 69 6e 65 72 2e 00 53 65 74 20 74 68 65 20 64 65 66 61 75 6c 74 20 56 52 | .a.container..Set.the.default.VR |
| 1186e0 | 52 50 20 76 65 72 73 69 6f 6e 20 74 6f 20 75 73 65 2e 20 54 68 69 73 20 64 65 66 61 75 6c 74 73 | RP.version.to.use..This.defaults |
| 118700 | 20 74 6f 20 32 2c 20 62 75 74 20 49 50 76 36 20 69 6e 73 74 61 6e 63 65 73 20 77 69 6c 6c 20 61 | .to.2,.but.IPv6.instances.will.a |
| 118720 | 6c 77 61 79 73 20 75 73 65 20 76 65 72 73 69 6f 6e 20 33 2e 00 53 65 74 20 74 68 65 20 64 65 76 | lways.use.version.3..Set.the.dev |
| 118740 | 69 63 65 27 73 20 74 72 61 6e 73 6d 69 74 20 28 54 58 29 20 6b 65 79 2e 20 54 68 69 73 20 6b 65 | ice's.transmit.(TX).key..This.ke |
| 118760 | 79 20 6d 75 73 74 20 62 65 20 61 20 68 65 78 20 73 74 72 69 6e 67 20 74 68 61 74 20 69 73 20 31 | y.must.be.a.hex.string.that.is.1 |
| 118780 | 36 2d 62 79 74 65 73 20 28 47 43 4d 2d 41 45 53 2d 31 32 38 29 20 6f 72 20 33 32 2d 62 79 74 65 | 6-bytes.(GCM-AES-128).or.32-byte |
| 1187a0 | 73 20 28 47 43 4d 2d 41 45 53 2d 32 35 36 29 2e 00 53 65 74 20 74 68 65 20 64 69 73 74 61 6e 63 | s.(GCM-AES-256)..Set.the.distanc |
| 1187c0 | 65 20 66 6f 72 20 74 68 65 20 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 20 73 65 6e 74 20 62 | e.for.the.default.gateway.sent.b |
| 1187e0 | 79 20 74 68 65 20 44 48 43 50 20 73 65 72 76 65 72 2e 00 53 65 74 20 74 68 65 20 64 69 73 74 61 | y.the.DHCP.server..Set.the.dista |
| 118800 | 6e 63 65 20 66 6f 72 20 74 68 65 20 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 20 73 65 6e 74 | nce.for.the.default.gateway.sent |
| 118820 | 20 62 79 20 74 68 65 20 50 50 50 6f 45 20 73 65 72 76 65 72 2e 00 53 65 74 20 74 68 65 20 64 69 | .by.the.PPPoE.server..Set.the.di |
| 118840 | 73 74 61 6e 63 65 20 66 6f 72 20 74 68 65 20 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 20 73 | stance.for.the.default.gateway.s |
| 118860 | 65 6e 74 20 62 79 20 74 68 65 20 53 53 54 50 20 73 65 72 76 65 72 2e 00 53 65 74 20 74 68 65 20 | ent.by.the.SSTP.server..Set.the. |
| 118880 | 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 74 79 70 65 20 6f 66 20 74 68 65 20 74 75 6e 6e 65 6c | encapsulation.type.of.the.tunnel |
| 1188a0 | 2e 20 56 61 6c 69 64 20 76 61 6c 75 65 73 20 66 6f 72 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e | ..Valid.values.for.encapsulation |
| 1188c0 | 20 61 72 65 3a 20 75 64 70 2c 20 69 70 2e 00 53 65 74 20 74 68 65 20 67 6c 6f 62 61 6c 20 73 65 | .are:.udp,.ip..Set.the.global.se |
| 1188e0 | 74 74 69 6e 67 20 66 6f 72 20 61 6e 20 65 73 74 61 62 6c 69 73 68 65 64 20 63 6f 6e 6e 65 63 74 | tting.for.an.established.connect |
| 118900 | 69 6f 6e 2e 00 53 65 74 20 74 68 65 20 67 6c 6f 62 61 6c 20 73 65 74 74 69 6e 67 20 66 6f 72 20 | ion..Set.the.global.setting.for. |
| 118920 | 69 6e 76 61 6c 69 64 20 70 61 63 6b 65 74 73 2e 00 53 65 74 20 74 68 65 20 67 6c 6f 62 61 6c 20 | invalid.packets..Set.the.global. |
| 118940 | 73 65 74 74 69 6e 67 20 66 6f 72 20 72 65 6c 61 74 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e | setting.for.related.connections. |
| 118960 | 00 53 65 74 20 74 68 65 20 68 6f 73 74 20 6e 61 6d 65 20 66 6f 72 20 61 20 63 6f 6e 74 61 69 6e | .Set.the.host.name.for.a.contain |
| 118980 | 65 72 2e 00 53 65 74 20 74 68 65 20 6c 69 66 65 74 69 6d 65 20 66 6f 72 20 4a 57 54 20 74 6f 6b | er..Set.the.lifetime.for.JWT.tok |
| 1189a0 | 65 6e 73 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 44 65 66 61 75 6c 74 20 69 73 20 33 36 30 30 20 | ens.in.seconds..Default.is.3600. |
| 1189c0 | 73 65 63 6f 6e 64 73 2e 00 53 65 74 20 74 68 65 20 6c 69 73 74 65 6e 20 70 6f 72 74 20 6f 66 20 | seconds..Set.the.listen.port.of. |
| 1189e0 | 74 68 65 20 6c 6f 63 61 6c 20 41 50 49 2c 20 74 68 69 73 20 68 61 73 20 6e 6f 20 65 66 66 65 63 | the.local.API,.this.has.no.effec |
| 118a00 | 74 20 6f 6e 20 74 68 65 20 77 65 62 73 65 72 76 65 72 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 | t.on.the.webserver..The.default. |
| 118a20 | 69 73 20 70 6f 72 74 20 38 30 38 30 00 53 65 74 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 68 6f 70 | is.port.8080.Set.the.maximum.hop |
| 118a40 | 20 60 3c 63 6f 75 6e 74 3e 60 20 62 65 66 6f 72 65 20 70 61 63 6b 65 74 73 20 61 72 65 20 64 69 | .`<count>`.before.packets.are.di |
| 118a60 | 73 63 61 72 64 65 64 2e 20 52 61 6e 67 65 20 30 2e 2e 2e 32 35 35 2c 20 64 65 66 61 75 6c 74 20 | scarded..Range.0...255,.default. |
| 118a80 | 31 30 2e 00 53 65 74 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6c 65 6e 67 74 68 20 6f 66 20 41 2d | 10..Set.the.maximum.length.of.A- |
| 118aa0 | 4d 50 44 55 20 70 72 65 2d 45 4f 46 20 70 61 64 64 69 6e 67 20 74 68 61 74 20 74 68 65 20 73 74 | MPDU.pre-EOF.padding.that.the.st |
| 118ac0 | 61 74 69 6f 6e 20 63 61 6e 20 72 65 63 65 69 76 65 00 53 65 74 20 74 68 65 20 6d 61 78 69 6d 75 | ation.can.receive.Set.the.maximu |
| 118ae0 | 6d 20 6e 75 6d 62 65 72 20 6f 66 20 54 43 50 20 68 61 6c 66 2d 6f 70 65 6e 20 63 6f 6e 6e 65 63 | m.number.of.TCP.half-open.connec |
| 118b00 | 74 69 6f 6e 73 2e 00 53 65 74 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 72 65 71 75 65 73 74 20 62 | tions..Set.the.maximum.request.b |
| 118b20 | 6f 64 79 20 73 69 7a 65 20 69 6e 20 6d 65 67 61 62 79 74 65 73 2e 20 44 65 66 61 75 6c 74 20 69 | ody.size.in.megabytes..Default.i |
| 118b40 | 73 20 31 4d 42 2e 00 53 65 74 20 74 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 65 20 53 53 4c 20 3a | s.1MB..Set.the.name.of.the.SSL.: |
| 118b60 | 61 62 62 72 3a 60 43 41 20 28 43 65 72 74 69 66 69 63 61 74 65 20 41 75 74 68 6f 72 69 74 79 29 | abbr:`CA.(Certificate.Authority) |
| 118b80 | 60 20 50 4b 49 20 65 6e 74 72 79 20 75 73 65 64 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 | `.PKI.entry.used.for.authenticat |
| 118ba0 | 69 6f 6e 20 6f 66 20 74 68 65 20 72 65 6d 6f 74 65 20 73 69 64 65 2e 20 49 66 20 61 6e 20 69 6e | ion.of.the.remote.side..If.an.in |
| 118bc0 | 74 65 72 6d 65 64 69 61 74 65 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 20 69 73 20 73 70 65 | termediate.CA.certificate.is.spe |
| 118be0 | 63 69 66 69 65 64 2c 20 74 68 65 6e 20 61 6c 6c 20 70 61 72 65 6e 74 20 43 41 20 63 65 72 74 69 | cified,.then.all.parent.CA.certi |
| 118c00 | 66 69 63 61 74 65 73 20 74 68 61 74 20 65 78 69 73 74 20 69 6e 20 74 68 65 20 50 4b 49 2c 20 73 | ficates.that.exist.in.the.PKI,.s |
| 118c20 | 75 63 68 20 61 73 20 74 68 65 20 72 6f 6f 74 20 43 41 20 6f 72 20 61 64 64 69 74 69 6f 6e 61 6c | uch.as.the.root.CA.or.additional |
| 118c40 | 20 69 6e 74 65 72 6d 65 64 69 61 74 65 20 43 41 73 2c 20 77 69 6c 6c 20 61 75 74 6f 6d 61 74 69 | .intermediate.CAs,.will.automati |
| 118c60 | 63 61 6c 6c 79 20 62 65 20 75 73 65 64 20 64 75 72 69 6e 67 20 63 65 72 74 69 66 69 63 61 74 65 | cally.be.used.during.certificate |
| 118c80 | 20 76 61 6c 69 64 61 74 69 6f 6e 20 74 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 74 68 65 20 66 | .validation.to.ensure.that.the.f |
| 118ca0 | 75 6c 6c 20 63 68 61 69 6e 20 6f 66 20 74 72 75 73 74 20 69 73 20 61 76 61 69 6c 61 62 6c 65 2e | ull.chain.of.trust.is.available. |
| 118cc0 | 00 53 65 74 20 74 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 65 20 78 35 30 39 20 63 6c 69 65 6e 74 | .Set.the.name.of.the.x509.client |
| 118ce0 | 20 6b 65 79 70 61 69 72 20 75 73 65 64 20 74 6f 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 61 67 | .keypair.used.to.authenticate.ag |
| 118d00 | 61 69 6e 73 74 20 74 68 65 20 38 30 32 2e 31 78 20 73 79 73 74 65 6d 2e 20 41 6c 6c 20 70 61 72 | ainst.the.802.1x.system..All.par |
| 118d20 | 65 6e 74 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 73 20 6f 66 20 74 68 65 20 63 6c 69 65 6e | ent.CA.certificates.of.the.clien |
| 118d40 | 74 20 63 65 72 74 69 66 69 63 61 74 65 2c 20 73 75 63 68 20 61 73 20 69 6e 74 65 72 6d 65 64 69 | t.certificate,.such.as.intermedi |
| 118d60 | 61 74 65 20 61 6e 64 20 72 6f 6f 74 20 43 41 73 2c 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 61 | ate.and.root.CAs,.will.be.sent.a |
| 118d80 | 73 20 70 61 72 74 20 6f 66 20 74 68 65 20 45 41 50 2d 54 4c 53 20 68 61 6e 64 73 68 61 6b 65 2e | s.part.of.the.EAP-TLS.handshake. |
| 118da0 | 00 53 65 74 20 74 68 65 20 6e 61 74 69 76 65 20 56 4c 41 4e 20 49 44 20 66 6c 61 67 20 6f 66 20 | .Set.the.native.VLAN.ID.flag.of. |
| 118dc0 | 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 57 68 65 6e 20 61 20 64 61 74 61 20 70 61 63 6b 65 | the.interface..When.a.data.packe |
| 118de0 | 74 20 77 69 74 68 6f 75 74 20 61 20 56 4c 41 4e 20 74 61 67 20 65 6e 74 65 72 73 20 74 68 65 20 | t.without.a.VLAN.tag.enters.the. |
| 118e00 | 70 6f 72 74 2c 20 74 68 65 20 64 61 74 61 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 66 6f | port,.the.data.packet.will.be.fo |
| 118e20 | 72 63 65 64 20 74 6f 20 61 64 64 20 61 20 74 61 67 20 6f 66 20 61 20 73 70 65 63 69 66 69 63 20 | rced.to.add.a.tag.of.a.specific. |
| 118e40 | 76 6c 61 6e 20 69 64 2e 20 57 68 65 6e 20 74 68 65 20 76 6c 61 6e 20 69 64 20 66 6c 61 67 20 66 | vlan.id..When.the.vlan.id.flag.f |
| 118e60 | 6c 6f 77 73 20 6f 75 74 2c 20 74 68 65 20 74 61 67 20 6f 66 20 74 68 65 20 76 6c 61 6e 20 69 64 | lows.out,.the.tag.of.the.vlan.id |
| 118e80 | 20 77 69 6c 6c 20 62 65 20 73 74 72 69 70 70 65 64 00 53 65 74 20 74 68 65 20 6e 61 74 69 76 65 | .will.be.stripped.Set.the.native |
| 118ea0 | 20 56 4c 41 4e 20 49 44 20 66 6c 61 67 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 | .VLAN.ID.flag.of.the.interface.. |
| 118ec0 | 57 68 65 6e 20 61 20 64 61 74 61 20 70 61 63 6b 65 74 20 77 69 74 68 6f 75 74 20 61 20 56 4c 41 | When.a.data.packet.without.a.VLA |
| 118ee0 | 4e 20 74 61 67 20 65 6e 74 65 72 73 20 74 68 65 20 70 6f 72 74 2c 20 74 68 65 20 64 61 74 61 20 | N.tag.enters.the.port,.the.data. |
| 118f00 | 70 61 63 6b 65 74 20 77 69 6c 6c 20 68 61 76 65 20 61 20 73 70 65 63 69 66 69 63 20 76 6c 61 6e | packet.will.have.a.specific.vlan |
| 118f20 | 20 69 64 20 61 64 64 65 64 20 74 6f 20 69 74 2e 20 57 68 65 6e 20 74 68 65 20 70 61 63 6b 65 74 | .id.added.to.it..When.the.packet |
| 118f40 | 20 66 6c 6f 77 73 20 6f 75 74 2c 20 74 68 65 20 6e 61 74 69 76 65 20 76 6c 61 6e 20 74 61 67 20 | .flows.out,.the.native.vlan.tag. |
| 118f60 | 77 69 6c 6c 20 62 65 20 73 74 72 69 70 70 65 64 2e 00 53 65 74 20 74 68 65 20 6e 65 78 74 2d 68 | will.be.stripped..Set.the.next-h |
| 118f80 | 6f 70 20 61 73 20 75 6e 63 68 61 6e 67 65 64 2e 20 50 61 73 73 20 74 68 72 6f 75 67 68 20 74 68 | op.as.unchanged..Pass.through.th |
| 118fa0 | 65 20 72 6f 75 74 65 2d 6d 61 70 20 77 69 74 68 6f 75 74 20 63 68 61 6e 67 69 6e 67 20 69 74 73 | e.route-map.without.changing.its |
| 118fc0 | 20 76 61 6c 75 65 00 53 65 74 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 54 43 50 20 6d 61 78 | .value.Set.the.number.of.TCP.max |
| 118fe0 | 69 6d 75 6d 20 72 65 74 72 61 6e 73 6d 69 74 20 61 74 74 65 6d 70 74 73 2e 00 53 65 74 20 74 68 | imum.retransmit.attempts..Set.th |
| 119000 | 65 20 6e 75 6d 62 65 72 20 6f 66 20 68 65 61 6c 74 68 20 63 68 65 63 6b 20 66 61 69 6c 75 72 65 | e.number.of.health.check.failure |
| 119020 | 73 20 62 65 66 6f 72 65 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 6d 61 72 6b 65 64 20 | s.before.an.interface.is.marked. |
| 119040 | 61 73 20 75 6e 61 76 61 69 6c 61 62 6c 65 2c 20 72 61 6e 67 65 20 66 6f 72 20 6e 75 6d 62 65 72 | as.unavailable,.range.for.number |
| 119060 | 20 69 73 20 31 20 74 6f 20 31 30 2c 20 64 65 66 61 75 6c 74 20 31 2e 20 4f 72 20 73 65 74 20 74 | .is.1.to.10,.default.1..Or.set.t |
| 119080 | 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 73 75 63 63 65 73 73 66 75 6c 20 68 65 61 6c 74 68 20 63 | he.number.of.successful.health.c |
| 1190a0 | 68 65 63 6b 73 20 62 65 66 6f 72 65 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 64 64 | hecks.before.an.interface.is.add |
| 1190c0 | 65 64 20 62 61 63 6b 20 74 6f 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 70 6f 6f 6c 2c 20 72 | ed.back.to.the.interface.pool,.r |
| 1190e0 | 61 6e 67 65 20 66 6f 72 20 6e 75 6d 62 65 72 20 69 73 20 31 20 74 6f 20 31 30 2c 20 64 65 66 61 | ange.for.number.is.1.to.10,.defa |
| 119100 | 75 6c 74 20 31 2e 00 53 65 74 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 73 65 63 6f 6e 64 73 | ult.1..Set.the.number.of.seconds |
| 119120 | 20 74 68 65 20 72 6f 75 74 65 72 20 77 61 69 74 73 20 75 6e 74 69 6c 20 72 65 74 72 79 69 6e 67 | .the.router.waits.until.retrying |
| 119140 | 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 63 61 63 68 65 20 73 65 72 76 65 72 2e | .to.connect.to.the.cache.server. |
| 119160 | 00 53 65 74 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 73 65 63 6f 6e 64 73 20 74 68 65 20 72 | .Set.the.number.of.seconds.the.r |
| 119180 | 6f 75 74 65 72 20 77 61 69 74 73 20 75 6e 74 69 6c 20 74 68 65 20 72 6f 75 74 65 72 20 65 78 70 | outer.waits.until.the.router.exp |
| 1191a0 | 69 72 65 73 20 74 68 65 20 63 61 63 68 65 2e 00 53 65 74 20 74 68 65 20 6f 70 74 69 6f 6e 73 20 | ires.the.cache..Set.the.options. |
| 1191c0 | 66 6f 72 20 74 68 69 73 20 70 75 62 6c 69 63 20 6b 65 79 2e 20 53 65 65 20 74 68 65 20 73 73 68 | for.this.public.key..See.the.ssh |
| 1191e0 | 20 60 60 61 75 74 68 6f 72 69 7a 65 64 5f 6b 65 79 73 60 60 20 6d 61 6e 20 70 61 67 65 20 66 6f | .``authorized_keys``.man.page.fo |
| 119200 | 72 20 64 65 74 61 69 6c 73 20 6f 66 20 77 68 61 74 20 79 6f 75 20 63 61 6e 20 73 70 65 63 69 66 | r.details.of.what.you.can.specif |
| 119220 | 79 20 68 65 72 65 2e 20 54 6f 20 70 6c 61 63 65 20 61 20 60 60 22 60 60 20 63 68 61 72 61 63 74 | y.here..To.place.a.``"``.charact |
| 119240 | 65 72 20 69 6e 20 74 68 65 20 6f 70 74 69 6f 6e 73 20 66 69 65 6c 64 2c 20 75 73 65 20 60 60 26 | er.in.the.options.field,.use.``& |
| 119260 | 71 75 6f 74 3b 60 60 2c 20 66 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 66 72 6f 6d 3d 26 71 75 6f | quot;``,.for.example.``from=&quo |
| 119280 | 74 3b 31 30 2e 30 2e 30 2e 30 2f 32 34 26 71 75 6f 74 3b 60 60 20 74 6f 20 72 65 73 74 72 69 63 | t;10.0.0.0/24"``.to.restric |
| 1192a0 | 74 20 77 68 65 72 65 20 74 68 65 20 75 73 65 72 20 6d 61 79 20 63 6f 6e 6e 65 63 74 20 66 72 6f | t.where.the.user.may.connect.fro |
| 1192c0 | 6d 20 77 68 65 6e 20 75 73 69 6e 67 20 74 68 69 73 20 6b 65 79 2e 00 53 65 74 20 74 68 65 20 70 | m.when.using.this.key..Set.the.p |
| 1192e0 | 61 72 69 74 79 20 6f 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 20 49 66 | arity.option.for.the.console..If |
| 119300 | 20 75 6e 73 65 74 20 74 68 69 73 20 77 69 6c 6c 20 64 65 66 61 75 6c 74 20 74 6f 20 6e 6f 6e 65 | .unset.this.will.default.to.none |
| 119320 | 2e 00 53 65 74 20 74 68 65 20 70 65 65 72 27 73 20 4d 41 43 20 61 64 64 72 65 73 73 00 53 65 74 | ..Set.the.peer's.MAC.address.Set |
| 119340 | 20 74 68 65 20 70 65 65 72 27 73 20 6b 65 79 20 75 73 65 64 20 74 6f 20 72 65 63 65 69 76 65 20 | .the.peer's.key.used.to.receive. |
| 119360 | 28 52 58 29 20 74 72 61 66 66 69 63 00 53 65 74 20 74 68 65 20 70 65 65 72 2d 73 65 73 73 69 6f | (RX).traffic.Set.the.peer-sessio |
| 119380 | 6e 2d 69 64 2c 20 77 68 69 63 68 20 69 73 20 61 20 33 32 2d 62 69 74 20 69 6e 74 65 67 65 72 20 | n-id,.which.is.a.32-bit.integer. |
| 1193a0 | 76 61 6c 75 65 20 61 73 73 69 67 6e 65 64 20 74 6f 20 74 68 65 20 73 65 73 73 69 6f 6e 20 62 79 | value.assigned.to.the.session.by |
| 1193c0 | 20 74 68 65 20 70 65 65 72 2e 20 54 68 65 20 76 61 6c 75 65 20 75 73 65 64 20 6d 75 73 74 20 6d | .the.peer..The.value.used.must.m |
| 1193e0 | 61 74 63 68 20 74 68 65 20 73 65 73 73 69 6f 6e 5f 69 64 20 76 61 6c 75 65 20 62 65 69 6e 67 20 | atch.the.session_id.value.being. |
| 119400 | 75 73 65 64 20 61 74 20 74 68 65 20 70 65 65 72 2e 00 53 65 74 20 74 68 65 20 72 61 6e 67 65 20 | used.at.the.peer..Set.the.range. |
| 119420 | 6f 66 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 65 73 20 66 6f 72 20 74 68 65 | of.external.IP.addresses.for.the |
| 119440 | 20 43 47 4e 41 54 20 70 6f 6f 6c 2e 00 53 65 74 20 74 68 65 20 72 61 6e 67 65 20 6f 66 20 65 78 | .CGNAT.pool..Set.the.range.of.ex |
| 119460 | 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 65 73 20 66 6f 72 20 74 68 65 20 43 47 4e 41 | ternal.IP.addresses.for.the.CGNA |
| 119480 | 54 20 70 6f 6f 6c 2e 20 54 68 65 20 73 65 71 75 65 6e 63 65 20 69 73 20 6f 70 74 69 6f 6e 61 6c | T.pool..The.sequence.is.optional |
| 1194a0 | 3b 20 69 66 20 73 65 74 2c 20 61 20 6c 6f 77 65 72 20 76 61 6c 75 65 20 6d 65 61 6e 73 20 68 69 | ;.if.set,.a.lower.value.means.hi |
| 1194c0 | 67 68 65 72 20 70 72 69 6f 72 69 74 79 2e 00 53 65 74 20 74 68 65 20 72 61 6e 67 65 20 6f 66 20 | gher.priority..Set.the.range.of. |
| 1194e0 | 69 6e 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 65 73 20 66 6f 72 20 74 68 65 20 43 47 | internal.IP.addresses.for.the.CG |
| 119500 | 4e 41 54 20 70 6f 6f 6c 2e 00 53 65 74 20 74 68 65 20 72 65 73 74 61 72 74 20 62 65 68 61 76 69 | NAT.pool..Set.the.restart.behavi |
| 119520 | 6f 72 20 6f 66 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 2e 00 53 65 74 20 74 68 65 20 72 6f 75 | or.of.the.container..Set.the.rou |
| 119540 | 74 65 20 6d 65 74 72 69 63 2e 20 57 68 65 6e 20 75 73 65 64 20 77 69 74 68 20 42 47 50 2c 20 73 | te.metric..When.used.with.BGP,.s |
| 119560 | 65 74 20 74 68 65 20 42 47 50 20 61 74 74 72 69 62 75 74 65 20 4d 45 44 20 74 6f 20 61 20 73 70 | et.the.BGP.attribute.MED.to.a.sp |
| 119580 | 65 63 69 66 69 63 20 76 61 6c 75 65 2e 20 55 73 65 20 60 60 2b 2f 2d 60 60 20 74 6f 20 61 64 64 | ecific.value..Use.``+/-``.to.add |
| 1195a0 | 20 6f 72 20 73 75 62 74 72 61 63 74 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 76 61 6c 75 65 | .or.subtract.the.specified.value |
| 1195c0 | 20 74 6f 2f 66 72 6f 6d 20 74 68 65 20 65 78 69 73 74 69 6e 67 2f 4d 45 44 2e 20 55 73 65 20 60 | .to/from.the.existing/MED..Use.` |
| 1195e0 | 60 72 74 74 60 60 20 74 6f 20 73 65 74 20 74 68 65 20 4d 45 44 20 74 6f 20 74 68 65 20 72 6f 75 | `rtt``.to.set.the.MED.to.the.rou |
| 119600 | 6e 64 20 74 72 69 70 20 74 69 6d 65 20 6f 72 20 60 60 2b 72 74 74 2f 2d 72 74 74 60 60 20 74 6f | nd.trip.time.or.``+rtt/-rtt``.to |
| 119620 | 20 61 64 64 2f 73 75 62 74 72 61 63 74 20 74 68 65 20 72 6f 75 6e 64 20 74 72 69 70 20 74 69 6d | .add/subtract.the.round.trip.tim |
| 119640 | 65 20 74 6f 2f 66 72 6f 6d 20 74 68 65 20 4d 45 44 2e 00 53 65 74 20 74 68 65 20 72 6f 75 74 69 | e.to/from.the.MED..Set.the.routi |
| 119660 | 6e 67 20 74 61 62 6c 65 20 74 6f 20 66 6f 72 77 61 72 64 20 70 61 63 6b 65 74 20 77 69 74 68 2e | ng.table.to.forward.packet.with. |
| 119680 | 00 53 65 74 20 74 68 65 20 72 75 6c 65 20 66 6f 72 20 74 68 65 20 73 6f 75 72 63 65 20 70 6f 6f | .Set.the.rule.for.the.source.poo |
| 1196a0 | 6c 2e 00 53 65 74 20 74 68 65 20 72 75 6c 65 20 66 6f 72 20 74 68 65 20 74 72 61 6e 73 6c 61 74 | l..Set.the.rule.for.the.translat |
| 1196c0 | 69 6f 6e 20 70 6f 6f 6c 2e 00 53 65 74 20 74 68 65 20 73 65 73 73 69 6f 6e 20 69 64 2c 20 77 68 | ion.pool..Set.the.session.id,.wh |
| 1196e0 | 69 63 68 20 69 73 20 61 20 33 32 2d 62 69 74 20 69 6e 74 65 67 65 72 20 76 61 6c 75 65 2e 20 55 | ich.is.a.32-bit.integer.value..U |
| 119700 | 6e 69 71 75 65 6c 79 20 69 64 65 6e 74 69 66 69 65 73 20 74 68 65 20 73 65 73 73 69 6f 6e 20 62 | niquely.identifies.the.session.b |
| 119720 | 65 69 6e 67 20 63 72 65 61 74 65 64 2e 20 54 68 65 20 76 61 6c 75 65 20 75 73 65 64 20 6d 75 73 | eing.created..The.value.used.mus |
| 119740 | 74 20 6d 61 74 63 68 20 74 68 65 20 70 65 65 72 5f 73 65 73 73 69 6f 6e 5f 69 64 20 76 61 6c 75 | t.match.the.peer_session_id.valu |
| 119760 | 65 20 62 65 69 6e 67 20 75 73 65 64 20 61 74 20 74 68 65 20 70 65 65 72 2e 00 53 65 74 20 74 68 | e.being.used.at.the.peer..Set.th |
| 119780 | 65 20 73 68 61 70 65 72 20 62 61 6e 64 77 69 64 74 68 2c 20 65 69 74 68 65 72 20 61 73 20 61 6e | e.shaper.bandwidth,.either.as.an |
| 1197a0 | 20 65 78 70 6c 69 63 69 74 20 62 69 74 72 61 74 65 20 6f 72 20 61 20 70 65 72 63 65 6e 74 61 67 | .explicit.bitrate.or.a.percentag |
| 1197c0 | 65 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 62 61 6e 64 77 69 64 74 68 2e 00 53 65 | e.of.the.interface.bandwidth..Se |
| 1197e0 | 74 20 74 68 65 20 73 69 7a 65 20 6f 66 20 74 68 65 20 68 61 73 68 20 74 61 62 6c 65 2e 20 54 68 | t.the.size.of.the.hash.table..Th |
| 119800 | 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 68 61 73 68 20 74 61 62 6c 65 | e.connection.tracking.hash.table |
| 119820 | 20 6d 61 6b 65 73 20 73 65 61 72 63 68 69 6e 67 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 | .makes.searching.the.connection. |
| 119840 | 74 72 61 63 6b 69 6e 67 20 74 61 62 6c 65 20 66 61 73 74 65 72 2e 20 54 68 65 20 68 61 73 68 20 | tracking.table.faster..The.hash. |
| 119860 | 74 61 62 6c 65 20 75 73 65 73 20 e2 80 9c 62 75 63 6b 65 74 73 e2 80 9d 20 74 6f 20 72 65 63 6f | table.uses....buckets....to.reco |
| 119880 | 72 64 20 65 6e 74 72 69 65 73 20 69 6e 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 | rd.entries.in.the.connection.tra |
| 1198a0 | 63 6b 69 6e 67 20 74 61 62 6c 65 2e 00 53 65 74 20 74 68 65 20 73 6f 75 72 63 65 20 49 50 20 6f | cking.table..Set.the.source.IP.o |
| 1198c0 | 66 20 66 6f 72 77 61 72 64 65 64 20 70 61 63 6b 65 74 73 2c 20 6f 74 68 65 72 77 69 73 65 20 6f | f.forwarded.packets,.otherwise.o |
| 1198e0 | 72 69 67 69 6e 61 6c 20 73 65 6e 64 65 72 73 20 61 64 64 72 65 73 73 20 69 73 20 75 73 65 64 2e | riginal.senders.address.is.used. |
| 119900 | 00 53 65 74 20 74 68 65 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e 64 73 20 66 6f 72 20 | .Set.the.timeout.in.seconds.for. |
| 119920 | 61 20 70 72 6f 74 6f 63 6f 6c 20 6f 72 20 73 74 61 74 65 20 69 6e 20 61 20 63 75 73 74 6f 6d 20 | a.protocol.or.state.in.a.custom. |
| 119940 | 72 75 6c 65 2e 00 53 65 74 20 74 68 65 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e 64 73 | rule..Set.the.timeout.in.seconds |
| 119960 | 20 66 6f 72 20 61 20 70 72 6f 74 6f 63 6f 6c 20 6f 72 20 73 74 61 74 65 2e 00 53 65 74 20 74 68 | .for.a.protocol.or.state..Set.th |
| 119980 | 65 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 75 6e 64 73 20 66 6f 72 20 61 20 70 72 6f 74 | e.timeout.in.secounds.for.a.prot |
| 1199a0 | 6f 63 6f 6c 20 6f 72 20 73 74 61 74 65 20 69 6e 20 61 20 63 75 73 74 6f 6d 20 72 75 6c 65 2e 00 | ocol.or.state.in.a.custom.rule.. |
| 1199c0 | 53 65 74 20 74 68 65 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 75 6e 64 73 20 66 6f 72 20 | Set.the.timeout.in.secounds.for. |
| 1199e0 | 61 20 70 72 6f 74 6f 63 6f 6c 20 6f 72 20 73 74 61 74 65 2e 00 53 65 74 20 74 68 65 20 74 75 6e | a.protocol.or.state..Set.the.tun |
| 119a00 | 6e 65 6c 20 69 64 2c 20 77 68 69 63 68 20 69 73 20 61 20 33 32 2d 62 69 74 20 69 6e 74 65 67 65 | nel.id,.which.is.a.32-bit.intege |
| 119a20 | 72 20 76 61 6c 75 65 2e 20 55 6e 69 71 75 65 6c 79 20 69 64 65 6e 74 69 66 69 65 73 20 74 68 65 | r.value..Uniquely.identifies.the |
| 119a40 | 20 74 75 6e 6e 65 6c 20 69 6e 74 6f 20 77 68 69 63 68 20 74 68 65 20 73 65 73 73 69 6f 6e 20 77 | .tunnel.into.which.the.session.w |
| 119a60 | 69 6c 6c 20 62 65 20 63 72 65 61 74 65 64 2e 00 53 65 74 20 74 68 65 20 77 69 6e 64 6f 77 20 73 | ill.be.created..Set.the.window.s |
| 119a80 | 63 61 6c 65 20 66 61 63 74 6f 72 20 66 6f 72 20 54 43 50 20 77 69 6e 64 6f 77 20 73 63 61 6c 69 | cale.factor.for.TCP.window.scali |
| 119aa0 | 6e 67 00 53 65 74 20 77 69 6e 64 6f 77 20 6f 66 20 63 6f 6e 63 75 72 72 65 6e 74 6c 79 20 76 61 | ng.Set.window.of.concurrently.va |
| 119ac0 | 6c 69 64 20 63 6f 64 65 73 2e 00 53 65 74 73 20 74 68 65 20 48 54 54 50 20 6d 65 74 68 6f 64 20 | lid.codes..Sets.the.HTTP.method. |
| 119ae0 | 74 6f 20 62 65 20 75 73 65 64 2c 20 63 61 6e 20 62 65 20 65 69 74 68 65 72 3a 20 6f 70 74 69 6f | to.be.used,.can.be.either:.optio |
| 119b00 | 6e 2c 20 67 65 74 2c 20 70 6f 73 74 2c 20 70 75 74 00 53 65 74 73 20 74 68 65 20 65 6e 64 70 6f | n,.get,.post,.put.Sets.the.endpo |
| 119b20 | 69 6e 74 20 74 6f 20 62 65 20 75 73 65 64 20 66 6f 72 20 68 65 61 6c 74 68 20 63 68 65 63 6b 73 | int.to.be.used.for.health.checks |
| 119b40 | 00 53 65 74 73 20 74 68 65 20 65 78 70 65 63 74 65 64 20 72 65 73 75 6c 74 20 63 6f 6e 64 69 74 | .Sets.the.expected.result.condit |
| 119b60 | 69 6f 6e 20 66 6f 72 20 63 6f 6e 73 69 64 65 72 69 6e 67 20 61 20 73 65 72 76 65 72 20 68 65 61 | ion.for.considering.a.server.hea |
| 119b80 | 6c 74 68 79 2e 00 53 65 74 73 20 74 68 65 20 65 78 70 65 63 74 65 64 20 72 65 73 75 6c 74 20 63 | lthy..Sets.the.expected.result.c |
| 119ba0 | 6f 6e 64 69 74 69 6f 6e 20 66 6f 72 20 63 6f 6e 73 69 64 65 72 69 6e 67 20 61 20 73 65 72 76 65 | ondition.for.considering.a.serve |
| 119bc0 | 72 20 68 65 61 6c 74 68 79 2e 20 53 6f 6d 65 20 70 6f 73 73 69 62 6c 65 20 65 78 61 6d 70 6c 65 | r.healthy..Some.possible.example |
| 119be0 | 73 20 61 72 65 3a 00 53 65 74 73 20 74 68 65 20 69 6d 61 67 65 20 6e 61 6d 65 20 69 6e 20 74 68 | s.are:.Sets.the.image.name.in.th |
| 119c00 | 65 20 68 75 62 20 72 65 67 69 73 74 72 79 00 53 65 74 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 | e.hub.registry.Sets.the.interfac |
| 119c20 | 65 20 74 6f 20 6c 69 73 74 65 6e 20 66 6f 72 20 6d 75 6c 74 69 63 61 73 74 20 70 61 63 6b 65 74 | e.to.listen.for.multicast.packet |
| 119c40 | 73 20 6f 6e 2e 20 43 6f 75 6c 64 20 62 65 20 61 20 6c 6f 6f 70 62 61 63 6b 2c 20 6e 6f 74 20 79 | s.on..Could.be.a.loopback,.not.y |
| 119c60 | 65 74 20 74 65 73 74 65 64 2e 00 53 65 74 73 20 74 68 65 20 6c 69 73 74 65 6e 69 6e 67 20 70 6f | et.tested..Sets.the.listening.po |
| 119c80 | 72 74 20 66 6f 72 20 61 20 6c 69 73 74 65 6e 69 6e 67 20 61 64 64 72 65 73 73 2e 20 54 68 69 73 | rt.for.a.listening.address..This |
| 119ca0 | 20 6f 76 65 72 72 69 64 65 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 70 6f 72 74 20 6f 66 20 33 | .overrides.the.default.port.of.3 |
| 119cc0 | 31 32 38 20 6f 6e 20 74 68 65 20 73 70 65 63 69 66 69 63 20 6c 69 73 74 65 6e 20 61 64 64 72 65 | 128.on.the.specific.listen.addre |
| 119ce0 | 73 73 2e 00 53 65 74 73 20 74 68 65 20 75 6e 69 71 75 65 20 69 64 20 66 6f 72 20 74 68 69 73 20 | ss..Sets.the.unique.id.for.this. |
| 119d00 | 76 78 6c 61 6e 2d 69 6e 74 65 72 66 61 63 65 2e 20 4e 6f 74 20 73 75 72 65 20 68 6f 77 20 69 74 | vxlan-interface..Not.sure.how.it |
| 119d20 | 20 63 6f 72 72 65 6c 61 74 65 73 20 77 69 74 68 20 6d 75 6c 74 69 63 61 73 74 2d 61 64 64 72 65 | .correlates.with.multicast-addre |
| 119d40 | 73 73 2e 00 53 65 74 74 69 6e 67 20 52 45 53 54 20 41 50 49 20 61 6e 64 20 61 6e 20 41 50 49 2d | ss..Setting.REST.API.and.an.API- |
| 119d60 | 4b 45 59 20 69 73 20 74 68 65 20 6d 69 6e 69 6d 61 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | KEY.is.the.minimal.configuration |
| 119d80 | 20 74 6f 20 67 65 74 20 61 20 77 6f 72 6b 69 6e 67 20 41 50 49 20 45 6e 64 70 6f 69 6e 74 2e 00 | .to.get.a.working.API.Endpoint.. |
| 119da0 | 53 65 74 74 69 6e 67 20 56 52 52 50 20 67 72 6f 75 70 20 70 72 69 6f 72 69 74 79 00 53 65 74 74 | Setting.VRRP.group.priority.Sett |
| 119dc0 | 69 6e 67 20 6e 61 6d 65 00 53 65 74 74 69 6e 67 20 74 68 69 73 20 75 70 20 6f 6e 20 41 57 53 20 | ing.name.Setting.this.up.on.AWS. |
| 119de0 | 77 69 6c 6c 20 72 65 71 75 69 72 65 20 61 20 22 43 75 73 74 6f 6d 20 50 72 6f 74 6f 63 6f 6c 20 | will.require.a."Custom.Protocol. |
| 119e00 | 52 75 6c 65 22 20 66 6f 72 20 70 72 6f 74 6f 63 6f 6c 20 6e 75 6d 62 65 72 20 22 34 37 22 20 28 | Rule".for.protocol.number."47".( |
| 119e20 | 47 52 45 29 20 41 6c 6c 6f 77 20 52 75 6c 65 20 69 6e 20 54 57 4f 20 70 6c 61 63 65 73 2e 20 46 | GRE).Allow.Rule.in.TWO.places..F |
| 119e40 | 69 72 73 74 6c 79 20 6f 6e 20 74 68 65 20 56 50 43 20 4e 65 74 77 6f 72 6b 20 41 43 4c 2c 20 61 | irstly.on.the.VPC.Network.ACL,.a |
| 119e60 | 6e 64 20 73 65 63 6f 6e 64 6c 79 20 6f 6e 20 74 68 65 20 73 65 63 75 72 69 74 79 20 67 72 6f 75 | nd.secondly.on.the.security.grou |
| 119e80 | 70 20 6e 65 74 77 6f 72 6b 20 41 43 4c 20 61 74 74 61 63 68 65 64 20 74 6f 20 74 68 65 20 45 43 | p.network.ACL.attached.to.the.EC |
| 119ea0 | 32 20 69 6e 73 74 61 6e 63 65 2e 20 54 68 69 73 20 68 61 73 20 62 65 65 6e 20 74 65 73 74 65 64 | 2.instance..This.has.been.tested |
| 119ec0 | 20 61 73 20 77 6f 72 6b 69 6e 67 20 66 6f 72 20 74 68 65 20 6f 66 66 69 63 69 61 6c 20 41 4d 49 | .as.working.for.the.official.AMI |
| 119ee0 | 20 69 6d 61 67 65 20 6f 6e 20 74 68 65 20 41 57 53 20 4d 61 72 6b 65 74 70 6c 61 63 65 2e 20 28 | .image.on.the.AWS.Marketplace..( |
| 119f00 | 4c 6f 63 61 74 65 20 74 68 65 20 63 6f 72 72 65 63 74 20 56 50 43 20 61 6e 64 20 73 65 63 75 72 | Locate.the.correct.VPC.and.secur |
| 119f20 | 69 74 79 20 67 72 6f 75 70 20 62 79 20 6e 61 76 69 67 61 74 69 6e 67 20 74 68 72 6f 75 67 68 20 | ity.group.by.navigating.through. |
| 119f40 | 74 68 65 20 64 65 74 61 69 6c 73 20 70 61 6e 65 20 62 65 6c 6f 77 20 79 6f 75 72 20 45 43 32 20 | the.details.pane.below.your.EC2. |
| 119f60 | 69 6e 73 74 61 6e 63 65 20 69 6e 20 74 68 65 20 41 57 53 20 63 6f 6e 73 6f 6c 65 29 2e 00 53 65 | instance.in.the.AWS.console)..Se |
| 119f80 | 74 74 69 6e 67 20 75 70 20 49 50 53 65 63 3a 00 53 65 74 74 69 6e 67 20 75 70 20 4f 70 65 6e 56 | tting.up.IPSec:.Setting.up.OpenV |
| 119fa0 | 50 4e 00 53 65 74 74 69 6e 67 20 75 70 20 61 20 66 75 6c 6c 2d 62 6c 6f 77 6e 20 50 4b 49 20 77 | PN.Setting.up.a.full-blown.PKI.w |
| 119fc0 | 69 74 68 20 61 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 20 77 6f 75 6c 64 20 61 72 67 75 61 | ith.a.CA.certificate.would.argua |
| 119fe0 | 62 6c 79 20 64 65 66 65 61 74 20 74 68 65 20 70 75 72 70 6f 73 65 20 6f 66 20 73 69 74 65 2d 74 | bly.defeat.the.purpose.of.site-t |
| 11a000 | 6f 2d 73 69 74 65 20 4f 70 65 6e 56 50 4e 2c 20 73 69 6e 63 65 20 69 74 73 20 6d 61 69 6e 20 67 | o-site.OpenVPN,.since.its.main.g |
| 11a020 | 6f 61 6c 20 69 73 20 73 75 70 70 6f 73 65 64 20 74 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 61 74 | oal.is.supposed.to.be.configurat |
| 11a040 | 69 6f 6e 20 73 69 6d 70 6c 69 63 69 74 79 2c 20 63 6f 6d 70 61 72 65 64 20 74 6f 20 73 65 72 76 | ion.simplicity,.compared.to.serv |
| 11a060 | 65 72 20 73 65 74 75 70 73 20 74 68 61 74 20 6e 65 65 64 20 74 6f 20 73 75 70 70 6f 72 74 20 6d | er.setups.that.need.to.support.m |
| 11a080 | 75 6c 74 69 70 6c 65 20 63 6c 69 65 6e 74 73 2e 00 53 65 74 74 69 6e 67 20 75 70 20 63 65 72 74 | ultiple.clients..Setting.up.cert |
| 11a0a0 | 69 66 69 63 61 74 65 73 00 53 65 74 74 69 6e 67 20 75 70 20 63 65 72 74 69 66 69 63 61 74 65 73 | ificates.Setting.up.certificates |
| 11a0c0 | 3a 00 53 65 74 74 69 6e 67 20 75 70 20 74 75 6e 6e 65 6c 3a 00 53 65 74 74 69 6e 67 20 77 69 6c | :.Setting.up.tunnel:.Setting.wil |
| 11a0e0 | 6c 20 6f 6e 6c 79 20 62 65 63 6f 6d 65 20 61 63 74 69 76 65 20 77 69 74 68 20 74 68 65 20 6e 65 | l.only.become.active.with.the.ne |
| 11a100 | 78 74 20 72 65 62 6f 6f 74 21 00 53 65 74 75 70 20 44 48 43 50 20 48 41 20 66 6f 72 20 6e 65 74 | xt.reboot!.Setup.DHCP.HA.for.net |
| 11a120 | 77 6f 72 6b 20 31 39 32 2e 30 2e 32 2e 30 2f 32 34 00 53 65 74 75 70 20 44 48 43 50 20 66 61 69 | work.192.0.2.0/24.Setup.DHCP.fai |
| 11a140 | 6c 6f 76 65 72 20 66 6f 72 20 6e 65 74 77 6f 72 6b 20 31 39 32 2e 30 2e 32 2e 30 2f 32 34 00 53 | lover.for.network.192.0.2.0/24.S |
| 11a160 | 65 74 75 70 20 65 6e 63 72 79 70 74 65 64 20 70 61 73 73 77 6f 72 64 20 66 6f 72 20 67 69 76 65 | etup.encrypted.password.for.give |
| 11a180 | 6e 20 75 73 65 72 6e 61 6d 65 2e 20 54 68 69 73 20 69 73 20 75 73 65 66 75 6c 20 66 6f 72 20 74 | n.username..This.is.useful.for.t |
| 11a1a0 | 72 61 6e 73 66 65 72 72 69 6e 67 20 61 20 68 61 73 68 65 64 20 70 61 73 73 77 6f 72 64 20 66 72 | ransferring.a.hashed.password.fr |
| 11a1c0 | 6f 6d 20 73 79 73 74 65 6d 20 74 6f 20 73 79 73 74 65 6d 2e 00 53 65 74 75 70 20 74 68 65 20 60 | om.system.to.system..Setup.the.` |
| 11a1e0 | 3c 74 69 6d 65 6f 75 74 3e 60 20 69 6e 20 73 65 63 6f 6e 64 73 20 77 68 65 6e 20 71 75 65 72 79 | <timeout>`.in.seconds.when.query |
| 11a200 | 69 6e 67 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 53 65 74 75 70 20 74 68 65 | ing.the.RADIUS.server..Setup.the |
| 11a220 | 20 60 3c 74 69 6d 65 6f 75 74 3e 60 20 69 6e 20 73 65 63 6f 6e 64 73 20 77 68 65 6e 20 71 75 65 | .`<timeout>`.in.seconds.when.que |
| 11a240 | 72 79 69 6e 67 20 74 68 65 20 54 41 43 41 43 53 20 73 65 72 76 65 72 2e 00 53 65 74 75 70 20 74 | rying.the.TACACS.server..Setup.t |
| 11a260 | 68 65 20 64 79 6e 61 6d 69 63 20 44 4e 53 20 68 6f 73 74 6e 61 6d 65 20 60 3c 68 6f 73 74 6e 61 | he.dynamic.DNS.hostname.`<hostna |
| 11a280 | 6d 65 3e 60 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 20 44 79 6e 44 4e 53 20 | me>`.associated.with.the.DynDNS. |
| 11a2a0 | 70 72 6f 76 69 64 65 72 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 73 65 72 76 69 63 65 | provider.identified.by.`<service |
| 11a2c0 | 2d 6e 61 6d 65 3e 60 2e 00 53 65 74 75 70 20 74 68 65 20 64 79 6e 61 6d 69 63 20 44 4e 53 20 68 | -name>`..Setup.the.dynamic.DNS.h |
| 11a2e0 | 6f 73 74 6e 61 6d 65 20 60 3c 68 6f 73 74 6e 61 6d 65 3e 60 20 61 73 73 6f 63 69 61 74 65 64 20 | ostname.`<hostname>`.associated. |
| 11a300 | 77 69 74 68 20 74 68 65 20 44 79 6e 44 4e 53 20 70 72 6f 76 69 64 65 72 20 69 64 65 6e 74 69 66 | with.the.DynDNS.provider.identif |
| 11a320 | 69 65 64 20 62 79 20 60 3c 73 65 72 76 69 63 65 3e 60 20 77 68 65 6e 20 74 68 65 20 49 50 20 61 | ied.by.`<service>`.when.the.IP.a |
| 11a340 | 64 64 72 65 73 73 20 6f 6e 20 61 64 64 72 65 73 73 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 | ddress.on.address.`<interface>`. |
| 11a360 | 63 68 61 6e 67 65 73 2e 00 53 65 74 75 70 20 74 68 65 20 64 79 6e 61 6d 69 63 20 44 4e 53 20 68 | changes..Setup.the.dynamic.DNS.h |
| 11a380 | 6f 73 74 6e 61 6d 65 20 60 3c 68 6f 73 74 6e 61 6d 65 3e 60 20 61 73 73 6f 63 69 61 74 65 64 20 | ostname.`<hostname>`.associated. |
| 11a3a0 | 77 69 74 68 20 74 68 65 20 44 79 6e 44 4e 53 20 70 72 6f 76 69 64 65 72 20 69 64 65 6e 74 69 66 | with.the.DynDNS.provider.identif |
| 11a3c0 | 69 65 64 20 62 79 20 60 3c 73 65 72 76 69 63 65 3e 60 20 77 68 65 6e 20 74 68 65 20 49 50 20 61 | ied.by.`<service>`.when.the.IP.a |
| 11a3e0 | 64 64 72 65 73 73 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 60 3c 69 6e 74 65 72 66 61 63 65 3e | ddress.on.interface.`<interface> |
| 11a400 | 60 20 63 68 61 6e 67 65 73 2e 00 53 65 76 65 72 61 6c 20 63 6f 6d 6d 61 6e 64 73 20 75 74 69 6c | `.changes..Several.commands.util |
| 11a420 | 69 7a 65 20 63 55 52 4c 20 74 6f 20 69 6e 69 74 69 61 74 65 20 74 72 61 6e 73 66 65 72 73 2e 20 | ize.cURL.to.initiate.transfers.. |
| 11a440 | 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6c 6f 63 61 6c 20 73 6f 75 72 63 65 20 49 50 76 34 2f | Configure.the.local.source.IPv4/ |
| 11a460 | 49 50 76 36 20 61 64 64 72 65 73 73 20 75 73 65 64 20 66 6f 72 20 61 6c 6c 20 63 55 52 4c 20 6f | IPv6.address.used.for.all.cURL.o |
| 11a480 | 70 65 72 61 74 69 6f 6e 73 2e 00 53 65 76 65 72 61 6c 20 63 6f 6d 6d 61 6e 64 73 20 75 74 69 6c | perations..Several.commands.util |
| 11a4a0 | 69 7a 65 20 63 75 72 6c 20 74 6f 20 69 6e 69 74 69 61 74 65 20 74 72 61 6e 73 66 65 72 73 2e 20 | ize.curl.to.initiate.transfers.. |
| 11a4c0 | 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6c 6f 63 61 6c 20 73 6f 75 72 63 65 20 69 6e 74 65 72 | Configure.the.local.source.inter |
| 11a4e0 | 66 61 63 65 20 75 73 65 64 20 66 6f 72 20 61 6c 6c 20 43 55 52 4c 20 6f 70 65 72 61 74 69 6f 6e | face.used.for.all.CURL.operation |
| 11a500 | 73 2e 00 53 65 76 65 72 69 74 79 00 53 65 76 65 72 69 74 79 20 4c 65 76 65 6c 00 53 68 61 70 65 | s..Severity.Severity.Level.Shape |
| 11a520 | 72 00 53 68 6f 72 74 20 47 49 20 63 61 70 61 62 69 6c 69 74 69 65 73 00 53 68 6f 72 74 20 47 49 | r.Short.GI.capabilities.Short.GI |
| 11a540 | 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 66 6f 72 20 32 30 20 61 6e 64 20 34 30 20 4d 48 7a 00 | .capabilities.for.20.and.40.MHz. |
| 11a560 | 53 68 6f 72 74 20 62 75 72 73 74 73 20 63 61 6e 20 62 65 20 61 6c 6c 6f 77 65 64 20 74 6f 20 65 | Short.bursts.can.be.allowed.to.e |
| 11a580 | 78 63 65 65 64 20 74 68 65 20 6c 69 6d 69 74 2e 20 4f 6e 20 63 72 65 61 74 69 6f 6e 2c 20 74 68 | xceed.the.limit..On.creation,.th |
| 11a5a0 | 65 20 52 61 74 65 2d 43 6f 6e 74 72 6f 6c 20 74 72 61 66 66 69 63 20 69 73 20 73 74 6f 63 6b 65 | e.Rate-Control.traffic.is.stocke |
| 11a5c0 | 64 20 77 69 74 68 20 74 6f 6b 65 6e 73 20 77 68 69 63 68 20 63 6f 72 72 65 73 70 6f 6e 64 20 74 | d.with.tokens.which.correspond.t |
| 11a5e0 | 6f 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 20 74 72 61 66 66 69 63 20 74 68 61 74 20 63 61 6e | o.the.amount.of.traffic.that.can |
| 11a600 | 20 62 65 20 62 75 72 73 74 20 69 6e 20 6f 6e 65 20 67 6f 2e 20 54 6f 6b 65 6e 73 20 61 72 72 69 | .be.burst.in.one.go..Tokens.arri |
| 11a620 | 76 65 20 61 74 20 61 20 73 74 65 61 64 79 20 72 61 74 65 2c 20 75 6e 74 69 6c 20 74 68 65 20 62 | ve.at.a.steady.rate,.until.the.b |
| 11a640 | 75 63 6b 65 74 20 69 73 20 66 75 6c 6c 2e 00 53 68 6f 72 74 63 75 74 20 73 79 6e 74 61 78 20 66 | ucket.is.full..Shortcut.syntax.f |
| 11a660 | 6f 72 20 73 70 65 63 69 66 79 69 6e 67 20 61 75 74 6f 6d 61 74 69 63 20 6c 65 61 6b 69 6e 67 20 | or.specifying.automatic.leaking. |
| 11a680 | 66 72 6f 6d 20 76 72 66 20 56 52 46 4e 41 4d 45 20 74 6f 20 74 68 65 20 63 75 72 72 65 6e 74 20 | from.vrf.VRFNAME.to.the.current. |
| 11a6a0 | 56 52 46 20 75 73 69 6e 67 20 74 68 65 20 56 50 4e 20 52 49 42 20 61 73 20 69 6e 74 65 72 6d 65 | VRF.using.the.VPN.RIB.as.interme |
| 11a6c0 | 64 69 61 72 79 2e 20 54 68 65 20 52 44 20 61 6e 64 20 52 54 20 61 72 65 20 61 75 74 6f 20 64 65 | diary..The.RD.and.RT.are.auto.de |
| 11a6e0 | 72 69 76 65 64 20 61 6e 64 20 73 68 6f 75 6c 64 20 6e 6f 74 20 62 65 20 73 70 65 63 69 66 69 65 | rived.and.should.not.be.specifie |
| 11a700 | 64 20 65 78 70 6c 69 63 69 74 6c 79 20 66 6f 72 20 65 69 74 68 65 72 20 74 68 65 20 73 6f 75 72 | d.explicitly.for.either.the.sour |
| 11a720 | 63 65 20 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 56 52 46 e2 80 99 73 2e 00 53 68 6f 77 00 | ce.or.destination.VRF...s..Show. |
| 11a740 | 53 68 6f 77 20 43 47 4e 41 54 20 61 6c 6c 6f 63 61 74 69 6f 6e 73 00 53 68 6f 77 20 44 48 43 50 | Show.CGNAT.allocations.Show.DHCP |
| 11a760 | 20 73 65 72 76 65 72 20 64 61 65 6d 6f 6e 20 6c 6f 67 20 66 69 6c 65 00 53 68 6f 77 20 44 48 43 | .server.daemon.log.file.Show.DHC |
| 11a780 | 50 76 36 20 73 65 72 76 65 72 20 64 61 65 6d 6f 6e 20 6c 6f 67 20 66 69 6c 65 00 53 68 6f 77 20 | Pv6.server.daemon.log.file.Show. |
| 11a7a0 | 46 69 72 65 77 61 6c 6c 20 6c 6f 67 00 53 68 6f 77 20 4c 4c 44 50 20 6e 65 69 67 68 62 6f 72 73 | Firewall.log.Show.LLDP.neighbors |
| 11a7c0 | 20 63 6f 6e 6e 65 63 74 65 64 20 76 69 61 20 69 6e 74 65 72 66 61 63 65 20 60 3c 69 6e 74 65 72 | .connected.via.interface.`<inter |
| 11a7e0 | 66 61 63 65 3e 60 2e 00 53 68 6f 77 20 53 53 48 20 64 79 6e 61 6d 69 63 2d 70 72 6f 74 65 63 74 | face>`..Show.SSH.dynamic-protect |
| 11a800 | 69 6f 6e 20 6c 6f 67 2e 00 53 68 6f 77 20 53 53 48 20 73 65 72 76 65 72 20 6c 6f 67 2e 00 53 68 | ion.log..Show.SSH.server.log..Sh |
| 11a820 | 6f 77 20 53 53 48 20 73 65 72 76 65 72 20 70 75 62 6c 69 63 20 6b 65 79 20 66 69 6e 67 65 72 70 | ow.SSH.server.public.key.fingerp |
| 11a840 | 72 69 6e 74 73 2c 20 69 6e 63 6c 75 64 69 6e 67 20 61 20 76 69 73 75 61 6c 20 41 53 43 49 49 20 | rints,.including.a.visual.ASCII. |
| 11a860 | 61 72 74 20 72 65 70 72 65 73 65 6e 74 61 74 69 6f 6e 2e 00 53 68 6f 77 20 53 53 48 20 73 65 72 | art.representation..Show.SSH.ser |
| 11a880 | 76 65 72 20 70 75 62 6c 69 63 20 6b 65 79 20 66 69 6e 67 65 72 70 72 69 6e 74 73 2e 00 53 68 6f | ver.public.key.fingerprints..Sho |
| 11a8a0 | 77 20 57 41 4e 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 | w.WAN.load.balancer.information. |
| 11a8c0 | 69 6e 63 6c 75 64 69 6e 67 20 74 65 73 74 20 74 79 70 65 73 20 61 6e 64 20 74 61 72 67 65 74 73 | including.test.types.and.targets |
| 11a8e0 | 2e 20 41 20 63 68 61 72 61 63 74 65 72 20 61 74 20 74 68 65 20 73 74 61 72 74 20 6f 66 20 65 61 | ..A.character.at.the.start.of.ea |
| 11a900 | 63 68 20 6c 69 6e 65 20 64 65 70 69 63 74 73 20 74 68 65 20 73 74 61 74 65 20 6f 66 20 74 68 65 | ch.line.depicts.the.state.of.the |
| 11a920 | 20 74 65 73 74 00 53 68 6f 77 20 57 57 41 4e 20 6d 6f 64 75 6c 65 20 49 4d 45 49 2e 00 53 68 6f | .test.Show.WWAN.module.IMEI..Sho |
| 11a940 | 77 20 57 57 41 4e 20 6d 6f 64 75 6c 65 20 49 4d 53 49 2e 00 53 68 6f 77 20 57 57 41 4e 20 6d 6f | w.WWAN.module.IMSI..Show.WWAN.mo |
| 11a960 | 64 75 6c 65 20 4d 53 49 53 44 4e 2e 00 53 68 6f 77 20 57 57 41 4e 20 6d 6f 64 75 6c 65 20 53 49 | dule.MSISDN..Show.WWAN.module.SI |
| 11a980 | 4d 20 63 61 72 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 53 68 6f 77 20 57 57 41 4e 20 6d 6f | M.card.information..Show.WWAN.mo |
| 11a9a0 | 64 75 6c 65 20 66 69 72 6d 77 61 72 65 2e 00 53 68 6f 77 20 57 57 41 4e 20 6d 6f 64 75 6c 65 20 | dule.firmware..Show.WWAN.module. |
| 11a9c0 | 68 61 72 64 77 61 72 65 20 63 61 70 61 62 69 6c 69 74 69 65 73 2e 00 53 68 6f 77 20 57 57 41 4e | hardware.capabilities..Show.WWAN |
| 11a9e0 | 20 6d 6f 64 75 6c 65 20 68 61 72 64 77 61 72 65 20 72 65 76 69 73 69 6f 6e 2e 00 53 68 6f 77 20 | .module.hardware.revision..Show. |
| 11aa00 | 57 57 41 4e 20 6d 6f 64 75 6c 65 20 6d 6f 64 65 6c 2e 00 53 68 6f 77 20 57 57 41 4e 20 6d 6f 64 | WWAN.module.model..Show.WWAN.mod |
| 11aa20 | 75 6c 65 20 73 69 67 6e 61 6c 20 73 74 72 65 6e 67 74 68 2e 00 53 68 6f 77 20 61 20 64 65 74 61 | ule.signal.strength..Show.a.deta |
| 11aa40 | 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 61 63 74 69 76 65 20 49 | iled.information.of.all.active.I |
| 11aa60 | 50 73 65 63 20 53 65 63 75 72 69 74 79 20 41 73 73 6f 63 69 61 74 69 6f 6e 73 20 28 53 41 29 20 | Psec.Security.Associations.(SA). |
| 11aa80 | 69 6e 20 76 65 72 62 6f 73 65 20 66 6f 72 6d 61 74 2e 00 53 68 6f 77 20 61 20 6c 69 73 74 20 61 | in.verbose.format..Show.a.list.a |
| 11aaa0 | 76 61 69 6c 61 62 6c 65 20 63 6f 6e 74 61 69 6e 65 72 20 6e 65 74 77 6f 72 6b 73 00 53 68 6f 77 | vailable.container.networks.Show |
| 11aac0 | 20 61 20 6c 69 73 74 20 6f 66 20 69 6e 73 74 61 6c 6c 65 64 20 3a 61 62 62 72 3a 60 43 41 20 28 | .a.list.of.installed.:abbr:`CA.( |
| 11aae0 | 43 65 72 74 69 66 69 63 61 74 65 20 41 75 74 68 6f 72 69 74 79 29 60 20 63 65 72 74 69 66 69 63 | Certificate.Authority)`.certific |
| 11ab00 | 61 74 65 73 2e 00 53 68 6f 77 20 61 20 6c 69 73 74 20 6f 66 20 69 6e 73 74 61 6c 6c 65 64 20 3a | ates..Show.a.list.of.installed.: |
| 11ab20 | 61 62 62 72 3a 60 43 52 4c 73 20 28 43 65 72 74 69 66 69 63 61 74 65 20 52 65 76 6f 63 61 74 69 | abbr:`CRLs.(Certificate.Revocati |
| 11ab40 | 6f 6e 20 4c 69 73 74 29 60 2e 00 53 68 6f 77 20 61 20 6c 69 73 74 20 6f 66 20 69 6e 73 74 61 6c | on.List)`..Show.a.list.of.instal |
| 11ab60 | 6c 65 64 20 63 65 72 74 69 66 69 63 61 74 65 73 00 53 68 6f 77 20 61 64 64 72 65 73 73 20 61 6e | led.certificates.Show.address.an |
| 11ab80 | 64 20 70 6f 72 74 20 61 6c 6c 6f 63 61 74 69 6f 6e 73 00 53 68 6f 77 20 61 6c 6c 20 42 46 44 20 | d.port.allocations.Show.all.BFD. |
| 11aba0 | 70 65 65 72 73 00 53 68 6f 77 20 61 6c 6c 20 61 63 74 69 76 65 20 49 50 73 65 63 20 53 65 63 75 | peers.Show.all.active.IPsec.Secu |
| 11abc0 | 72 69 74 79 20 41 73 73 6f 63 69 61 74 69 6f 6e 73 20 28 53 41 29 00 53 68 6f 77 20 61 6c 6c 20 | rity.Associations.(SA).Show.all. |
| 11abe0 | 61 6c 6c 6f 63 61 74 69 6f 6e 73 20 66 6f 72 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 | allocations.for.an.external.IP.a |
| 11ac00 | 64 64 72 65 73 73 00 53 68 6f 77 20 61 6c 6c 20 61 6c 6c 6f 63 61 74 69 6f 6e 73 20 66 6f 72 20 | ddress.Show.all.allocations.for. |
| 11ac20 | 61 6e 20 69 6e 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 00 53 68 6f 77 20 61 6c 6c 20 | an.internal.IP.address.Show.all. |
| 11ac40 | 63 75 72 72 65 6e 74 6c 79 20 61 63 74 69 76 65 20 49 4b 45 20 53 65 63 75 72 69 74 79 20 41 73 | currently.active.IKE.Security.As |
| 11ac60 | 73 6f 63 69 61 74 69 6f 6e 73 20 28 53 41 29 20 66 6f 72 20 61 20 73 70 65 63 69 66 69 63 20 70 | sociations.(SA).for.a.specific.p |
| 11ac80 | 65 65 72 2e 00 53 68 6f 77 20 61 6c 6c 20 63 75 72 72 65 6e 74 6c 79 20 61 63 74 69 76 65 20 49 | eer..Show.all.currently.active.I |
| 11aca0 | 4b 45 20 53 65 63 75 72 69 74 79 20 41 73 73 6f 63 69 61 74 69 6f 6e 73 20 28 53 41 29 20 74 68 | KE.Security.Associations.(SA).th |
| 11acc0 | 61 74 20 61 72 65 20 75 73 69 6e 67 20 4e 41 54 20 54 72 61 76 65 72 73 61 6c 2e 00 53 68 6f 77 | at.are.using.NAT.Traversal..Show |
| 11ace0 | 20 61 6c 6c 20 63 75 72 72 65 6e 74 6c 79 20 61 63 74 69 76 65 20 49 4b 45 20 53 65 63 75 72 69 | .all.currently.active.IKE.Securi |
| 11ad00 | 74 79 20 41 73 73 6f 63 69 61 74 69 6f 6e 73 2e 00 53 68 6f 77 20 61 6c 6c 20 74 68 65 20 63 6f | ty.Associations..Show.all.the.co |
| 11ad20 | 6e 66 69 67 75 72 65 64 20 70 72 65 2d 73 68 61 72 65 64 20 73 65 63 72 65 74 20 6b 65 79 73 2e | nfigured.pre-shared.secret.keys. |
| 11ad40 | 00 53 68 6f 77 20 61 76 61 69 6c 61 62 6c 65 20 6f 66 66 6c 6f 61 64 69 6e 67 20 66 75 6e 63 74 | .Show.available.offloading.funct |
| 11ad60 | 69 6f 6e 73 20 6f 6e 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 00 53 68 6f 77 | ions.on.given.`<interface>`.Show |
| 11ad80 | 20 62 69 6e 64 65 64 20 71 61 74 20 64 65 76 69 63 65 20 69 6e 74 65 72 72 75 70 74 73 20 74 6f | .binded.qat.device.interrupts.to |
| 11ada0 | 20 63 65 72 74 61 69 6e 20 63 6f 72 65 2e 00 53 68 6f 77 20 62 72 69 64 67 65 20 60 3c 6e 61 6d | .certain.core..Show.bridge.`<nam |
| 11adc0 | 65 3e 60 20 66 64 62 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 63 75 72 72 65 6e 74 20 66 6f 72 | e>`.fdb.displays.the.current.for |
| 11ade0 | 77 61 72 64 69 6e 67 20 74 61 62 6c 65 3a 00 53 68 6f 77 20 62 72 69 64 67 65 20 60 3c 6e 61 6d | warding.table:.Show.bridge.`<nam |
| 11ae00 | 65 3e 60 20 6d 64 62 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 63 75 72 72 65 6e 74 20 6d 75 6c | e>`.mdb.displays.the.current.mul |
| 11ae20 | 74 69 63 61 73 74 20 67 72 6f 75 70 20 6d 65 6d 62 65 72 73 68 69 70 20 74 61 62 6c 65 2e 54 68 | ticast.group.membership.table.Th |
| 11ae40 | 65 20 74 61 62 6c 65 20 69 73 20 70 6f 70 75 6c 61 74 65 64 20 62 79 20 49 47 4d 50 20 61 6e 64 | e.table.is.populated.by.IGMP.and |
| 11ae60 | 20 4d 4c 44 20 73 6e 6f 6f 70 69 6e 67 20 69 6e 20 74 68 65 20 62 72 69 64 67 65 20 64 72 69 76 | .MLD.snooping.in.the.bridge.driv |
| 11ae80 | 65 72 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 2e 00 53 68 6f 77 20 62 72 69 65 66 20 69 6e 74 | er.automatically..Show.brief.int |
| 11aea0 | 65 72 66 61 63 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 53 68 6f 77 20 63 6f 6d 6d 61 6e 64 | erface.information..Show.command |
| 11aec0 | 73 00 53 68 6f 77 20 63 6f 6e 66 69 67 75 72 65 64 20 73 65 72 69 61 6c 20 70 6f 72 74 73 20 61 | s.Show.configured.serial.ports.a |
| 11aee0 | 6e 64 20 74 68 65 69 72 20 72 65 73 70 65 63 74 69 76 65 20 69 6e 74 65 72 66 61 63 65 20 63 6f | nd.their.respective.interface.co |
| 11af00 | 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 53 68 6f 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 64 61 74 | nfiguration..Show.connection.dat |
| 11af20 | 61 20 6f 66 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 64 20 74 72 61 66 66 69 63 3a 00 53 68 6f 77 | a.of.load.balanced.traffic:.Show |
| 11af40 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 79 6e 63 69 6e 67 20 65 78 74 65 72 6e 61 6c 20 63 61 63 | .connection.syncing.external.cac |
| 11af60 | 68 65 20 65 6e 74 72 69 65 73 00 53 68 6f 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 79 6e 63 69 | he.entries.Show.connection.synci |
| 11af80 | 6e 67 20 69 6e 74 65 72 6e 61 6c 20 63 61 63 68 65 20 65 6e 74 72 69 65 73 00 53 68 6f 77 20 63 | ng.internal.cache.entries.Show.c |
| 11afa0 | 75 72 72 65 6e 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 20 75 73 65 72 73 2e 00 53 68 6f 77 20 64 | urrently.connected.users..Show.d |
| 11afc0 | 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 61 6c 6c 20 6c 65 | etailed.information.about.all.le |
| 11afe0 | 61 72 6e 65 64 20 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 4e 6f 64 65 73 00 53 68 6f 77 | arned.Segment.Routing.Nodes.Show |
| 11b000 | 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 70 72 65 66 | .detailed.information.about.pref |
| 11b020 | 69 78 2d 73 69 64 20 61 6e 64 20 6c 61 62 65 6c 20 6c 65 61 72 6e 65 64 00 53 68 6f 77 20 64 65 | ix-sid.and.label.learned.Show.de |
| 11b040 | 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 74 68 65 20 75 6e 64 | tailed.information.about.the.und |
| 11b060 | 65 72 6c 61 79 69 6e 67 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 73 20 6f 6e 20 67 69 76 65 6e | erlaying.physical.links.on.given |
| 11b080 | 20 62 6f 6e 64 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 53 68 6f 77 20 64 65 74 61 69 6c | .bond.`<interface>`..Show.detail |
| 11b0a0 | 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 | ed.information.on.given.`<interf |
| 11b0c0 | 61 63 65 3e 60 00 53 68 6f 77 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 | ace>`.Show.detailed.information. |
| 11b0e0 | 6f 6e 20 74 68 65 20 67 69 76 65 6e 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 20 | on.the.given.loopback.interface. |
| 11b100 | 60 6c 6f 60 2e 00 53 68 6f 77 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 | `lo`..Show.detailed.information. |
| 11b120 | 73 75 6d 6d 61 72 79 20 6f 6e 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 00 53 | summary.on.given.`<interface>`.S |
| 11b140 | 68 6f 77 20 64 65 74 61 69 6c 73 20 6f 66 20 61 6c 6c 20 61 76 61 69 6c 61 62 6c 65 20 56 50 4e | how.details.of.all.available.VPN |
| 11b160 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 00 53 68 6f 77 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e | .connections.Show.flow.accountin |
| 11b180 | 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 | g.information.for.given.`<interf |
| 11b1a0 | 61 63 65 3e 60 20 66 6f 72 20 61 20 73 70 65 63 69 66 69 63 20 68 6f 73 74 20 6f 6e 6c 79 2e 00 | ace>`.for.a.specific.host.only.. |
| 11b1c0 | 53 68 6f 77 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | Show.flow.accounting.information |
| 11b1e0 | 20 66 6f 72 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 53 68 6f 77 20 67 | .for.given.`<interface>`..Show.g |
| 11b200 | 65 6e 65 72 61 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 73 70 65 63 69 66 69 | eneral.information.about.specifi |
| 11b220 | 63 20 57 69 72 65 47 75 61 72 64 20 69 6e 74 65 72 66 61 63 65 00 53 68 6f 77 20 69 6e 66 6f 20 | c.WireGuard.interface.Show.info. |
| 11b240 | 61 62 6f 75 74 20 74 68 65 20 57 69 72 65 67 75 61 72 64 20 73 65 72 76 69 63 65 2e 20 49 74 20 | about.the.Wireguard.service..It. |
| 11b260 | 61 6c 73 6f 20 73 68 6f 77 73 20 74 68 65 20 6c 61 74 65 73 74 20 68 61 6e 64 73 68 61 6b 65 2e | also.shows.the.latest.handshake. |
| 11b280 | 00 53 68 6f 77 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 70 68 79 73 69 63 61 6c | .Show.information.about.physical |
| 11b2a0 | 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 00 53 68 6f 77 20 6c 69 73 74 20 6f 66 20 49 50 73 20 | .`<interface>`.Show.list.of.IPs. |
| 11b2c0 | 63 75 72 72 65 6e 74 6c 79 20 62 6c 6f 63 6b 65 64 20 62 79 20 53 53 48 20 64 79 6e 61 6d 69 63 | currently.blocked.by.SSH.dynamic |
| 11b2e0 | 2d 70 72 6f 74 65 63 74 69 6f 6e 2e 00 53 68 6f 77 20 6c 6f 67 73 20 66 6f 72 20 49 50 73 65 63 | -protection..Show.logs.for.IPsec |
| 11b300 | 00 53 68 6f 77 20 6c 6f 67 73 20 66 6f 72 20 6d 44 4e 53 20 72 65 70 65 61 74 65 72 20 73 65 72 | .Show.logs.for.mDNS.repeater.ser |
| 11b320 | 76 69 63 65 2e 00 53 68 6f 77 20 6c 6f 67 73 20 66 72 6f 6d 20 61 20 67 69 76 65 6e 20 63 6f 6e | vice..Show.logs.from.a.given.con |
| 11b340 | 74 61 69 6e 65 72 00 53 68 6f 77 20 6c 6f 67 73 20 66 72 6f 6d 20 61 6c 6c 20 44 48 43 50 20 63 | tainer.Show.logs.from.all.DHCP.c |
| 11b360 | 6c 69 65 6e 74 20 70 72 6f 63 65 73 73 65 73 2e 00 53 68 6f 77 20 6c 6f 67 73 20 66 72 6f 6d 20 | lient.processes..Show.logs.from. |
| 11b380 | 61 6c 6c 20 44 48 43 50 76 36 20 63 6c 69 65 6e 74 20 70 72 6f 63 65 73 73 65 73 2e 00 53 68 6f | all.DHCPv6.client.processes..Sho |
| 11b3a0 | 77 20 6c 6f 67 73 20 66 72 6f 6d 20 73 70 65 63 69 66 69 63 20 60 69 6e 74 65 72 66 61 63 65 60 | w.logs.from.specific.`interface` |
| 11b3c0 | 20 44 48 43 50 20 63 6c 69 65 6e 74 20 70 72 6f 63 65 73 73 2e 00 53 68 6f 77 20 6c 6f 67 73 20 | .DHCP.client.process..Show.logs. |
| 11b3e0 | 66 72 6f 6d 20 73 70 65 63 69 66 69 63 20 60 69 6e 74 65 72 66 61 63 65 60 20 44 48 43 50 76 36 | from.specific.`interface`.DHCPv6 |
| 11b400 | 20 63 6c 69 65 6e 74 20 70 72 6f 63 65 73 73 2e 00 53 68 6f 77 20 6f 6e 6c 79 20 69 6e 66 6f 72 | .client.process..Show.only.infor |
| 11b420 | 6d 61 74 69 6f 6e 20 66 6f 72 20 73 70 65 63 69 66 69 65 64 20 43 65 72 74 69 66 69 63 61 74 65 | mation.for.specified.Certificate |
| 11b440 | 20 41 75 74 68 6f 72 69 74 79 2e 00 53 68 6f 77 20 6f 6e 6c 79 20 69 6e 66 6f 72 6d 61 74 69 6f | .Authority..Show.only.informatio |
| 11b460 | 6e 20 66 6f 72 20 73 70 65 63 69 66 69 65 64 20 63 65 72 74 69 66 69 63 61 74 65 2e 00 53 68 6f | n.for.specified.certificate..Sho |
| 11b480 | 77 20 6f 6e 6c 79 20 6c 65 61 73 65 73 20 69 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 | w.only.leases.in.the.specified.p |
| 11b4a0 | 6f 6f 6c 2e 00 53 68 6f 77 20 6f 6e 6c 79 20 6c 65 61 73 65 73 20 77 69 74 68 20 74 68 65 20 73 | ool..Show.only.leases.with.the.s |
| 11b4c0 | 70 65 63 69 66 69 65 64 20 73 74 61 74 65 2e 20 50 6f 73 73 69 62 6c 65 20 73 74 61 74 65 73 3a | pecified.state..Possible.states: |
| 11b4e0 | 20 61 62 61 6e 64 6f 6e 65 64 2c 20 61 63 74 69 76 65 2c 20 61 6c 6c 2c 20 62 61 63 6b 75 70 2c | .abandoned,.active,.all,.backup, |
| 11b500 | 20 65 78 70 69 72 65 64 2c 20 66 72 65 65 2c 20 72 65 6c 65 61 73 65 64 2c 20 72 65 73 65 74 20 | .expired,.free,.released,.reset. |
| 11b520 | 28 64 65 66 61 75 6c 74 20 3d 20 61 63 74 69 76 65 29 00 53 68 6f 77 20 6f 6e 6c 79 20 6c 65 61 | (default.=.active).Show.only.lea |
| 11b540 | 73 65 73 20 77 69 74 68 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 73 74 61 74 65 2e 20 50 6f | ses.with.the.specified.state..Po |
| 11b560 | 73 73 69 62 6c 65 20 73 74 61 74 65 73 3a 20 61 6c 6c 2c 20 61 63 74 69 76 65 2c 20 66 72 65 65 | ssible.states:.all,.active,.free |
| 11b580 | 2c 20 65 78 70 69 72 65 64 2c 20 72 65 6c 65 61 73 65 64 2c 20 61 62 61 6e 64 6f 6e 65 64 2c 20 | ,.expired,.released,.abandoned,. |
| 11b5a0 | 72 65 73 65 74 2c 20 62 61 63 6b 75 70 20 28 64 65 66 61 75 6c 74 20 3d 20 61 63 74 69 76 65 29 | reset,.backup.(default.=.active) |
| 11b5c0 | 00 53 68 6f 77 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 65 6e 74 72 79 20 66 6f 72 20 74 68 | .Show.routing.table.entry.for.th |
| 11b5e0 | 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 2e 00 53 68 6f 77 20 73 70 65 63 69 66 69 63 20 4d | e.default.route..Show.specific.M |
| 11b600 | 41 43 73 65 63 20 69 6e 74 65 72 66 61 63 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 00 53 68 6f 77 | ACsec.interface.information.Show |
| 11b620 | 20 73 74 61 74 75 73 20 6f 66 20 6e 65 77 20 73 65 74 75 70 3a 00 53 68 6f 77 20 73 74 61 74 75 | .status.of.new.setup:.Show.statu |
| 11b640 | 73 65 73 20 6f 66 20 61 6c 6c 20 61 63 74 69 76 65 20 6c 65 61 73 65 73 20 67 72 61 6e 74 65 64 | ses.of.all.active.leases.granted |
| 11b660 | 20 62 79 20 6c 6f 63 61 6c 20 28 74 68 69 73 20 73 65 72 76 65 72 29 20 6f 72 20 72 65 6d 6f 74 | .by.local.(this.server).or.remot |
| 11b680 | 65 20 28 66 61 69 6c 6f 76 65 72 20 73 65 72 76 65 72 29 3a 00 53 68 6f 77 20 73 74 61 74 75 73 | e.(failover.server):.Show.status |
| 11b6a0 | 65 73 20 6f 66 20 61 6c 6c 20 61 63 74 69 76 65 20 6c 65 61 73 65 73 3a 00 53 68 6f 77 20 74 68 | es.of.all.active.leases:.Show.th |
| 11b6c0 | 65 20 44 48 43 50 20 73 65 72 76 65 72 20 73 74 61 74 69 73 74 69 63 73 20 66 6f 72 20 74 68 65 | e.DHCP.server.statistics.for.the |
| 11b6e0 | 20 73 70 65 63 69 66 69 65 64 20 70 6f 6f 6c 2e 00 53 68 6f 77 20 74 68 65 20 44 48 43 50 20 73 | .specified.pool..Show.the.DHCP.s |
| 11b700 | 65 72 76 65 72 20 73 74 61 74 69 73 74 69 63 73 3a 00 53 68 6f 77 20 74 68 65 20 63 6f 6e 73 6f | erver.statistics:.Show.the.conso |
| 11b720 | 6c 65 20 73 65 72 76 65 72 20 6c 6f 67 2e 00 53 68 6f 77 20 74 68 65 20 64 65 74 61 69 6c 65 64 | le.server.log..Show.the.detailed |
| 11b740 | 20 73 74 61 74 75 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 49 4b 45 20 63 68 61 72 6f | .status.information.of.IKE.charo |
| 11b760 | 6e 20 70 72 6f 63 65 73 73 2e 00 53 68 6f 77 20 74 68 65 20 66 75 6c 6c 20 63 6f 6e 66 69 67 20 | n.process..Show.the.full.config. |
| 11b780 | 75 70 6c 6f 61 64 65 64 20 74 6f 20 74 68 65 20 51 41 54 20 64 65 76 69 63 65 2e 00 53 68 6f 77 | uploaded.to.the.QAT.device..Show |
| 11b7a0 | 20 74 68 65 20 6c 69 73 74 20 6f 66 20 61 6c 6c 20 61 63 74 69 76 65 20 63 6f 6e 74 61 69 6e 65 | .the.list.of.all.active.containe |
| 11b7c0 | 72 73 2e 00 53 68 6f 77 20 74 68 65 20 6c 6f 63 61 6c 20 63 6f 6e 74 61 69 6e 65 72 20 69 6d 61 | rs..Show.the.local.container.ima |
| 11b7e0 | 67 65 73 2e 00 53 68 6f 77 20 74 68 65 20 6c 6f 67 73 20 6f 66 20 61 20 73 70 65 63 69 66 69 63 | ges..Show.the.logs.of.a.specific |
| 11b800 | 20 52 75 6c 65 2d 53 65 74 2e 00 53 68 6f 77 20 74 68 65 20 6c 6f 67 73 20 6f 66 20 61 6c 6c 20 | .Rule-Set..Show.the.logs.of.all. |
| 11b820 | 66 69 72 65 77 61 6c 6c 3b 20 73 68 6f 77 20 61 6c 6c 20 62 72 69 64 67 65 20 66 69 72 65 77 61 | firewall;.show.all.bridge.firewa |
| 11b840 | 6c 6c 20 6c 6f 67 73 3b 20 73 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f 72 20 66 6f 72 77 61 | ll.logs;.show.all.logs.for.forwa |
| 11b860 | 72 64 20 68 6f 6f 6b 3b 20 73 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f 72 20 66 6f 72 77 61 | rd.hook;.show.all.logs.for.forwa |
| 11b880 | 72 64 20 68 6f 6f 6b 20 61 6e 64 20 70 72 69 6f 72 69 74 79 20 66 69 6c 74 65 72 3b 20 73 68 6f | rd.hook.and.priority.filter;.sho |
| 11b8a0 | 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f 72 20 70 61 72 74 69 63 75 6c 61 72 20 63 75 73 74 6f 6d | w.all.logs.for.particular.custom |
| 11b8c0 | 20 63 68 61 69 6e 3b 20 73 68 6f 77 20 6c 6f 67 73 20 66 6f 72 20 73 70 65 63 69 66 69 63 20 52 | .chain;.show.logs.for.specific.R |
| 11b8e0 | 75 6c 65 2d 53 65 74 2e 00 53 68 6f 77 20 74 68 65 20 6c 6f 67 73 20 6f 66 20 61 6c 6c 20 66 69 | ule-Set..Show.the.logs.of.all.fi |
| 11b900 | 72 65 77 61 6c 6c 3b 20 73 68 6f 77 20 61 6c 6c 20 69 70 76 34 20 66 69 72 65 77 61 6c 6c 20 6c | rewall;.show.all.ipv4.firewall.l |
| 11b920 | 6f 67 73 3b 20 73 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f 72 20 70 61 72 74 69 63 75 6c 61 | ogs;.show.all.logs.for.particula |
| 11b940 | 72 20 68 6f 6f 6b 3b 20 73 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f 72 20 70 61 72 74 69 63 | r.hook;.show.all.logs.for.partic |
| 11b960 | 75 6c 61 72 20 68 6f 6f 6b 20 61 6e 64 20 70 72 69 6f 72 69 74 79 3b 20 73 68 6f 77 20 61 6c 6c | ular.hook.and.priority;.show.all |
| 11b980 | 20 6c 6f 67 73 20 66 6f 72 20 70 61 72 74 69 63 75 6c 61 72 20 63 75 73 74 6f 6d 20 63 68 61 69 | .logs.for.particular.custom.chai |
| 11b9a0 | 6e 3b 20 73 68 6f 77 20 6c 6f 67 73 20 66 6f 72 20 73 70 65 63 69 66 69 63 20 52 75 6c 65 2d 53 | n;.show.logs.for.specific.Rule-S |
| 11b9c0 | 65 74 2e 00 53 68 6f 77 20 74 68 65 20 6c 6f 67 73 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c | et..Show.the.logs.of.all.firewal |
| 11b9e0 | 6c 3b 20 73 68 6f 77 20 61 6c 6c 20 69 70 76 36 20 66 69 72 65 77 61 6c 6c 20 6c 6f 67 73 3b 20 | l;.show.all.ipv6.firewall.logs;. |
| 11ba00 | 73 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f 72 20 70 61 72 74 69 63 75 6c 61 72 20 68 6f 6f | show.all.logs.for.particular.hoo |
| 11ba20 | 6b 3b 20 73 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f 72 20 70 61 72 74 69 63 75 6c 61 72 20 | k;.show.all.logs.for.particular. |
| 11ba40 | 68 6f 6f 6b 20 61 6e 64 20 70 72 69 6f 72 69 74 79 3b 20 73 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 | hook.and.priority;.show.all.logs |
| 11ba60 | 20 66 6f 72 20 70 61 72 74 69 63 75 6c 61 72 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 3b 20 73 68 | .for.particular.custom.chain;.sh |
| 11ba80 | 6f 77 20 6c 6f 67 73 20 66 6f 72 20 73 70 65 63 69 66 69 63 20 52 75 6c 65 2d 53 65 74 2e 00 53 | ow.logs.for.specific.Rule-Set..S |
| 11baa0 | 68 6f 77 20 74 68 65 20 72 6f 75 74 65 00 53 68 6f 77 20 74 68 65 20 73 74 61 74 75 73 20 6f 66 | how.the.route.Show.the.status.of |
| 11bac0 | 20 72 75 6e 6e 69 6e 67 20 49 50 73 65 63 20 70 72 6f 63 65 73 73 20 61 6e 64 20 70 72 6f 63 65 | .running.IPsec.process.and.proce |
| 11bae0 | 73 73 20 49 44 2e 00 53 68 6f 77 20 74 72 61 6e 73 63 65 69 76 65 72 20 69 6e 66 6f 72 6d 61 74 | ss.ID..Show.transceiver.informat |
| 11bb00 | 69 6f 6e 20 66 72 6f 6d 20 70 6c 75 67 69 6e 20 6d 6f 64 75 6c 65 73 2c 20 65 2e 67 20 53 46 50 | ion.from.plugin.modules,.e.g.SFP |
| 11bb20 | 2b 2c 20 51 53 46 50 00 53 68 6f 77 69 6e 67 20 42 46 44 20 6d 6f 6e 69 74 6f 72 65 64 20 73 74 | +,.QSFP.Showing.BFD.monitored.st |
| 11bb40 | 61 74 69 63 20 72 6f 75 74 65 73 00 53 68 6f 77 73 20 73 74 61 74 75 73 20 6f 66 20 61 6c 6c 20 | atic.routes.Shows.status.of.all. |
| 11bb60 | 61 73 73 69 67 6e 65 64 20 6c 65 61 73 65 73 3a 00 53 69 64 65 20 41 3a 00 53 69 64 65 20 42 3a | assigned.leases:.Side.A:.Side.B: |
| 11bb80 | 00 53 69 65 72 72 61 20 57 69 72 65 6c 65 73 73 20 41 69 72 50 72 69 6d 65 20 4d 43 37 33 30 34 | .Sierra.Wireless.AirPrime.MC7304 |
| 11bba0 | 20 6d 69 6e 69 50 43 49 65 20 63 61 72 64 20 28 4c 54 45 29 00 53 69 65 72 72 61 20 57 69 72 65 | .miniPCIe.card.(LTE).Sierra.Wire |
| 11bbc0 | 6c 65 73 73 20 41 69 72 50 72 69 6d 65 20 4d 43 37 34 33 30 20 6d 69 6e 69 50 43 49 65 20 63 61 | less.AirPrime.MC7430.miniPCIe.ca |
| 11bbe0 | 72 64 20 28 4c 54 45 29 00 53 69 65 72 72 61 20 57 69 72 65 6c 65 73 73 20 41 69 72 50 72 69 6d | rd.(LTE).Sierra.Wireless.AirPrim |
| 11bc00 | 65 20 4d 43 37 34 35 35 20 6d 69 6e 69 50 43 49 65 20 63 61 72 64 20 28 4c 54 45 29 00 53 69 65 | e.MC7455.miniPCIe.card.(LTE).Sie |
| 11bc20 | 72 72 61 20 57 69 72 65 6c 65 73 73 20 41 69 72 50 72 69 6d 65 20 4d 43 37 37 31 30 20 6d 69 6e | rra.Wireless.AirPrime.MC7710.min |
| 11bc40 | 69 50 43 49 65 20 63 61 72 64 20 28 4c 54 45 29 00 53 69 6d 69 6c 61 72 20 63 6f 6d 62 69 6e 61 | iPCIe.card.(LTE).Similar.combina |
| 11bc60 | 74 69 6f 6e 73 20 61 72 65 20 61 70 70 6c 69 63 61 62 6c 65 20 66 6f 72 20 74 68 65 20 64 65 61 | tions.are.applicable.for.the.dea |
| 11bc80 | 64 2d 70 65 65 72 2d 64 65 74 65 63 74 69 6f 6e 2e 00 53 69 6d 69 6c 61 72 6c 79 20 74 72 61 66 | d-peer-detection..Similarly.traf |
| 11bca0 | 66 69 63 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 45 53 20 70 65 65 72 73 20 76 69 61 20 74 | fic.received.from.ES.peers.via.t |
| 11bcc0 | 68 65 20 6f 76 65 72 6c 61 79 20 63 61 6e 6e 6f 74 20 62 65 20 66 6f 72 77 61 72 64 65 64 20 74 | he.overlay.cannot.be.forwarded.t |
| 11bce0 | 6f 20 74 68 65 20 73 65 72 76 65 72 2e 20 54 68 69 73 20 69 73 20 73 70 6c 69 74 2d 68 6f 72 69 | o.the.server..This.is.split-hori |
| 11bd00 | 7a 6f 6e 2d 66 69 6c 74 65 72 69 6e 67 20 77 69 74 68 20 6c 6f 63 61 6c 20 62 69 61 73 2e 00 53 | zon-filtering.with.local.bias..S |
| 11bd20 | 69 6d 70 6c 65 20 42 61 62 65 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 75 73 69 6e 67 20 | imple.Babel.configuration.using. |
| 11bd40 | 32 20 6e 6f 64 65 73 20 61 6e 64 20 72 65 64 69 73 74 72 69 62 75 74 69 6e 67 20 63 6f 6e 6e 65 | 2.nodes.and.redistributing.conne |
| 11bd60 | 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 73 2e 00 53 69 6d 70 6c 65 20 52 49 50 20 63 6f 6e 66 | cted.interfaces..Simple.RIP.conf |
| 11bd80 | 69 67 75 72 61 74 69 6f 6e 20 75 73 69 6e 67 20 32 20 6e 6f 64 65 73 20 61 6e 64 20 72 65 64 69 | iguration.using.2.nodes.and.redi |
| 11bda0 | 73 74 72 69 62 75 74 69 6e 67 20 63 6f 6e 6e 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 73 2e | stributing.connected.interfaces. |
| 11bdc0 | 00 53 69 6d 70 6c 65 20 73 65 74 75 70 20 77 69 74 68 20 6f 6e 65 20 75 73 65 72 20 61 64 64 65 | .Simple.setup.with.one.user.adde |
| 11bde0 | 64 20 61 6e 64 20 70 61 73 73 77 6f 72 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 3a 00 53 | d.and.password.authentication:.S |
| 11be00 | 69 6d 70 6c 65 20 74 65 78 74 20 70 61 73 73 77 6f 72 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 | imple.text.password.authenticati |
| 11be20 | 6f 6e 20 69 73 20 69 6e 73 65 63 75 72 65 20 61 6e 64 20 64 65 70 72 65 63 61 74 65 64 20 69 6e | on.is.insecure.and.deprecated.in |
| 11be40 | 20 66 61 76 6f 75 72 20 6f 66 20 4d 44 35 20 48 4d 41 43 20 61 75 74 68 65 6e 74 69 63 61 74 69 | .favour.of.MD5.HMAC.authenticati |
| 11be60 | 6f 6e 2e 00 53 69 6e 63 65 20 62 6f 74 68 20 72 6f 75 74 65 72 73 20 64 6f 20 6e 6f 74 20 6b 6e | on..Since.both.routers.do.not.kn |
| 11be80 | 6f 77 20 74 68 65 69 72 20 65 66 66 65 63 74 69 76 65 20 70 75 62 6c 69 63 20 61 64 64 72 65 73 | ow.their.effective.public.addres |
| 11bea0 | 73 65 73 2c 20 77 65 20 73 65 74 20 74 68 65 20 6c 6f 63 61 6c 2d 61 64 64 72 65 73 73 20 6f 66 | ses,.we.set.the.local-address.of |
| 11bec0 | 20 74 68 65 20 70 65 65 72 20 74 6f 20 22 61 6e 79 22 2e 00 53 69 6e 63 65 20 62 72 69 64 67 65 | .the.peer.to."any"..Since.bridge |
| 11bee0 | 73 20 6f 70 65 72 61 74 65 73 20 61 74 20 6c 61 79 65 72 20 32 2c 20 62 6f 74 68 20 6d 61 74 63 | s.operates.at.layer.2,.both.matc |
| 11bf00 | 68 65 72 73 20 66 6f 72 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 72 65 20 73 75 70 70 6f | hers.for.IPv4.and.IPv6.are.suppo |
| 11bf20 | 72 74 65 64 20 69 6e 20 62 72 69 64 67 65 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 | rted.in.bridge.firewall.configur |
| 11bf40 | 61 74 69 6f 6e 2e 20 53 61 6d 65 20 61 70 70 6c 69 65 73 20 66 6f 72 20 66 69 72 65 77 61 6c 6c | ation..Same.applies.for.firewall |
| 11bf60 | 20 67 72 6f 75 70 73 2e 00 53 69 6e 63 65 20 62 72 69 64 67 65 73 20 6f 70 65 72 61 74 73 20 61 | .groups..Since.bridges.operats.a |
| 11bf80 | 74 20 6c 61 79 65 72 20 32 2c 20 62 6f 74 68 20 6d 61 74 63 68 65 72 73 20 66 6f 72 20 49 50 76 | t.layer.2,.both.matchers.for.IPv |
| 11bfa0 | 34 20 61 6e 64 20 49 50 76 36 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 20 69 6e 20 62 72 69 64 | 4.and.IPv6.are.supported.in.brid |
| 11bfc0 | 67 65 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 53 61 6d 65 20 | ge.firewall.configuration..Same. |
| 11bfe0 | 61 70 70 6c 69 65 73 20 74 6f 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 2e 00 53 69 6e 63 | applies.to.firewall.groups..Sinc |
| 11c000 | 65 20 69 74 27 73 20 61 20 48 51 20 61 6e 64 20 62 72 61 6e 63 68 20 6f 66 66 69 63 65 73 20 73 | e.it's.a.HQ.and.branch.offices.s |
| 11c020 | 65 74 75 70 2c 20 77 65 20 77 69 6c 6c 20 77 61 6e 74 20 61 6c 6c 20 63 6c 69 65 6e 74 73 20 74 | etup,.we.will.want.all.clients.t |
| 11c040 | 6f 20 68 61 76 65 20 66 69 78 65 64 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 77 65 20 77 69 | o.have.fixed.addresses.and.we.wi |
| 11c060 | 6c 6c 20 72 6f 75 74 65 20 74 72 61 66 66 69 63 20 74 6f 20 73 70 65 63 69 66 69 63 20 73 75 62 | ll.route.traffic.to.specific.sub |
| 11c080 | 6e 65 74 73 20 74 68 72 6f 75 67 68 20 74 68 65 6d 2e 20 57 65 20 6e 65 65 64 20 63 6f 6e 66 69 | nets.through.them..We.need.confi |
| 11c0a0 | 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 65 61 63 68 20 63 6c 69 65 6e 74 20 74 6f 20 61 63 68 69 | guration.for.each.client.to.achi |
| 11c0c0 | 65 76 65 20 74 68 69 73 2e 00 53 69 6e 63 65 20 69 74 27 73 20 61 20 48 51 20 77 69 74 68 20 62 | eve.this..Since.it's.a.HQ.with.b |
| 11c0e0 | 72 61 6e 63 68 20 6f 66 66 69 63 65 73 20 73 65 74 75 70 2c 20 77 65 20 77 69 6c 6c 20 77 61 6e | ranch.offices.setup,.we.will.wan |
| 11c100 | 74 20 61 6c 6c 20 63 6c 69 65 6e 74 73 20 74 6f 20 68 61 76 65 20 66 69 78 65 64 20 61 64 64 72 | t.all.clients.to.have.fixed.addr |
| 11c120 | 65 73 73 65 73 20 61 6e 64 20 77 65 20 77 69 6c 6c 20 72 6f 75 74 65 20 74 72 61 66 66 69 63 20 | esses.and.we.will.route.traffic. |
| 11c140 | 74 6f 20 73 70 65 63 69 66 69 63 20 73 75 62 6e 65 74 73 20 74 68 72 6f 75 67 68 20 74 68 65 6d | to.specific.subnets.through.them |
| 11c160 | 2e 20 57 65 20 6e 65 65 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 65 61 63 68 | ..We.need.configuration.for.each |
| 11c180 | 20 63 6c 69 65 6e 74 20 74 6f 20 61 63 68 69 65 76 65 20 74 68 69 73 2e 00 53 69 6e 63 65 20 74 | .client.to.achieve.this..Since.t |
| 11c1a0 | 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 77 6f 75 6c 64 20 62 65 20 61 20 73 69 6e 67 | he.RADIUS.server.would.be.a.sing |
| 11c1c0 | 6c 65 20 70 6f 69 6e 74 20 6f 66 20 66 61 69 6c 75 72 65 2c 20 6d 75 6c 74 69 70 6c 65 20 52 41 | le.point.of.failure,.multiple.RA |
| 11c1e0 | 44 49 55 53 20 73 65 72 76 65 72 73 20 63 61 6e 20 62 65 20 73 65 74 75 70 20 61 6e 64 20 77 69 | DIUS.servers.can.be.setup.and.wi |
| 11c200 | 6c 6c 20 62 65 20 75 73 65 64 20 73 75 62 73 65 71 75 65 6e 74 69 61 6c 6c 79 2e 00 53 69 6e 63 | ll.be.used.subsequentially..Sinc |
| 11c220 | 65 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 77 6f 75 6c 64 20 62 65 20 61 20 73 | e.the.RADIUS.server.would.be.a.s |
| 11c240 | 69 6e 67 6c 65 20 70 6f 69 6e 74 20 6f 66 20 66 61 69 6c 75 72 65 2c 20 6d 75 6c 74 69 70 6c 65 | ingle.point.of.failure,.multiple |
| 11c260 | 20 52 41 44 49 55 53 20 73 65 72 76 65 72 73 20 63 61 6e 20 62 65 20 73 65 74 75 70 20 61 6e 64 | .RADIUS.servers.can.be.setup.and |
| 11c280 | 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 73 75 62 73 65 71 75 65 6e 74 69 61 6c 6c 79 2e 20 46 | .will.be.used.subsequentially..F |
| 11c2a0 | 6f 72 20 65 78 61 6d 70 6c 65 3a 00 53 69 6e 63 65 20 74 68 65 20 6d 44 4e 53 20 70 72 6f 74 6f | or.example:.Since.the.mDNS.proto |
| 11c2c0 | 63 6f 6c 20 73 65 6e 64 73 20 74 68 65 20 3a 61 62 62 72 3a 60 41 41 28 41 75 74 68 6f 72 69 74 | col.sends.the.:abbr:`AA(Authorit |
| 11c2e0 | 61 74 69 76 65 20 41 6e 73 77 65 72 29 60 20 72 65 63 6f 72 64 73 20 69 6e 20 74 68 65 20 70 61 | ative.Answer)`.records.in.the.pa |
| 11c300 | 63 6b 65 74 20 69 74 73 65 6c 66 2c 20 74 68 65 20 72 65 70 65 61 74 65 72 20 64 6f 65 73 20 6e | cket.itself,.the.repeater.does.n |
| 11c320 | 6f 74 20 6e 65 65 64 20 74 6f 20 66 6f 72 67 65 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 | ot.need.to.forge.the.source.addr |
| 11c340 | 65 73 73 2e 20 49 6e 73 74 65 61 64 2c 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 | ess..Instead,.the.source.address |
| 11c360 | 20 69 73 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 68 61 74 20 72 65 70 65 61 74 | .is.of.the.interface.that.repeat |
| 11c380 | 73 20 74 68 65 20 70 61 63 6b 65 74 2e 00 53 69 6e 63 65 20 74 68 65 20 6d 44 4e 53 20 70 72 6f | s.the.packet..Since.the.mDNS.pro |
| 11c3a0 | 74 6f 63 6f 6c 20 73 65 6e 64 73 20 74 68 65 20 41 41 20 72 65 63 6f 72 64 73 20 69 6e 20 74 68 | tocol.sends.the.AA.records.in.th |
| 11c3c0 | 65 20 70 61 63 6b 65 74 20 69 74 73 65 6c 66 2c 20 74 68 65 20 72 65 70 65 61 74 65 72 20 64 6f | e.packet.itself,.the.repeater.do |
| 11c3e0 | 65 73 20 6e 6f 74 20 6e 65 65 64 20 74 6f 20 66 6f 72 67 65 20 74 68 65 20 73 6f 75 72 63 65 20 | es.not.need.to.forge.the.source. |
| 11c400 | 61 64 64 72 65 73 73 2e 20 49 6e 73 74 65 61 64 2c 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 | address..Instead,.the.source.add |
| 11c420 | 72 65 73 73 20 69 73 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 68 61 74 20 72 65 | ress.is.of.the.interface.that.re |
| 11c440 | 70 65 61 74 73 20 74 68 65 20 70 61 63 6b 65 74 2e 00 53 69 6e 63 65 20 77 65 20 61 72 65 20 61 | peats.the.packet..Since.we.are.a |
| 11c460 | 6e 61 6c 79 7a 69 6e 67 20 61 74 74 61 63 6b 73 20 74 6f 20 61 6e 64 20 66 72 6f 6d 20 6f 75 72 | nalyzing.attacks.to.and.from.our |
| 11c480 | 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 2c 20 74 77 6f 20 74 79 70 65 73 20 6f 66 20 | .internal.network,.two.types.of. |
| 11c4a0 | 61 74 74 61 63 6b 73 20 63 61 6e 20 62 65 20 69 64 65 6e 74 69 66 69 65 64 2c 20 61 6e 64 20 64 | attacks.can.be.identified,.and.d |
| 11c4c0 | 69 66 66 65 72 65 6e 74 20 61 63 74 69 6f 6e 73 20 61 72 65 20 6e 65 65 64 65 64 3a 00 53 69 6e | ifferent.actions.are.needed:.Sin |
| 11c4e0 | 63 65 20 77 65 20 61 72 65 20 61 6e 61 6c 79 7a 69 6e 67 20 61 74 74 61 63 6b 73 20 74 6f 20 61 | ce.we.are.analyzing.attacks.to.a |
| 11c500 | 6e 64 20 66 72 6f 6d 20 6f 75 72 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 2c 20 74 77 | nd.from.our.internal.network,.tw |
| 11c520 | 6f 20 74 79 70 65 73 20 6f 66 20 61 74 74 61 63 6b 73 20 63 61 6e 20 62 65 20 69 64 65 6e 74 69 | o.types.of.attacks.can.be.identi |
| 11c540 | 66 69 65 64 2c 20 61 6e 64 20 64 69 66 66 65 72 65 6e 74 73 20 61 63 74 69 6f 6e 73 20 61 72 65 | fied,.and.differents.actions.are |
| 11c560 | 20 6e 65 65 64 65 64 3a 00 53 69 6e 67 6c 65 20 56 58 4c 41 4e 20 64 65 76 69 63 65 20 28 53 56 | .needed:.Single.VXLAN.device.(SV |
| 11c580 | 44 29 00 53 69 6e 67 6c 65 20 65 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 00 53 69 74 65 20 | D).Single.external.address.Site. |
| 11c5a0 | 74 6f 20 53 69 74 65 20 56 50 4e 00 53 69 74 65 2d 74 6f 2d 53 69 74 65 00 53 69 74 65 2d 74 6f | to.Site.VPN.Site-to-Site.Site-to |
| 11c5c0 | 2d 73 69 74 65 20 6d 6f 64 65 20 70 72 6f 76 69 64 65 73 20 61 20 77 61 79 20 74 6f 20 61 64 64 | -site.mode.provides.a.way.to.add |
| 11c5e0 | 20 72 65 6d 6f 74 65 20 70 65 65 72 73 2c 20 77 68 69 63 68 20 63 6f 75 6c 64 20 62 65 20 63 6f | .remote.peers,.which.could.be.co |
| 11c600 | 6e 66 69 67 75 72 65 64 20 74 6f 20 65 78 63 68 61 6e 67 65 20 65 6e 63 72 79 70 74 65 64 20 69 | nfigured.to.exchange.encrypted.i |
| 11c620 | 6e 66 6f 72 6d 61 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 74 68 65 6d 20 61 6e 64 20 56 79 4f 53 | nformation.between.them.and.VyOS |
| 11c640 | 20 69 74 73 65 6c 66 20 6f 72 20 63 6f 6e 6e 65 63 74 65 64 2f 72 6f 75 74 65 64 20 6e 65 74 77 | .itself.or.connected/routed.netw |
| 11c660 | 6f 72 6b 73 2e 00 53 69 74 65 2d 74 6f 2d 73 69 74 65 20 6d 6f 64 65 20 73 75 70 70 6f 72 74 73 | orks..Site-to-site.mode.supports |
| 11c680 | 20 78 2e 35 30 39 20 62 75 74 20 64 6f 65 73 6e 27 74 20 72 65 71 75 69 72 65 20 69 74 20 61 6e | .x.509.but.doesn't.require.it.an |
| 11c6a0 | 64 20 63 61 6e 20 61 6c 73 6f 20 77 6f 72 6b 20 77 69 74 68 20 73 74 61 74 69 63 20 6b 65 79 73 | d.can.also.work.with.static.keys |
| 11c6c0 | 2c 20 77 68 69 63 68 20 69 73 20 73 69 6d 70 6c 65 72 20 69 6e 20 6d 61 6e 79 20 63 61 73 65 73 | ,.which.is.simpler.in.many.cases |
| 11c6e0 | 2e 20 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 2c 20 77 65 27 6c 6c 20 63 6f 6e 66 69 67 75 | ..In.this.example,.we'll.configu |
| 11c700 | 72 65 20 61 20 73 69 6d 70 6c 65 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 4f 70 65 6e 56 50 4e | re.a.simple.site-to-site.OpenVPN |
| 11c720 | 20 74 75 6e 6e 65 6c 20 75 73 69 6e 67 20 61 20 32 30 34 38 2d 62 69 74 20 70 72 65 2d 73 68 61 | .tunnel.using.a.2048-bit.pre-sha |
| 11c740 | 72 65 64 20 6b 65 79 2e 00 53 69 7a 65 20 6f 66 20 74 68 65 20 52 53 41 20 6b 65 79 2e 00 53 6c | red.key..Size.of.the.RSA.key..Sl |
| 11c760 | 61 76 65 20 73 65 6c 65 63 74 69 6f 6e 20 66 6f 72 20 6f 75 74 67 6f 69 6e 67 20 74 72 61 66 66 | ave.selection.for.outgoing.traff |
| 11c780 | 69 63 20 69 73 20 64 6f 6e 65 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 74 68 65 20 74 72 61 6e | ic.is.done.according.to.the.tran |
| 11c7a0 | 73 6d 69 74 20 68 61 73 68 20 70 6f 6c 69 63 79 2c 20 77 68 69 63 68 20 6d 61 79 20 62 65 20 63 | smit.hash.policy,.which.may.be.c |
| 11c7c0 | 68 61 6e 67 65 64 20 66 72 6f 6d 20 74 68 65 20 64 65 66 61 75 6c 74 20 73 69 6d 70 6c 65 20 58 | hanged.from.the.default.simple.X |
| 11c7e0 | 4f 52 20 70 6f 6c 69 63 79 20 76 69 61 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 68 61 73 68 2d | OR.policy.via.the.:cfgcmd:`hash- |
| 11c800 | 70 6f 6c 69 63 79 60 20 6f 70 74 69 6f 6e 2c 20 64 6f 63 75 6d 65 6e 74 65 64 20 62 65 6c 6f 77 | policy`.option,.documented.below |
| 11c820 | 2e 00 53 6f 20 69 6e 20 6f 75 72 20 66 69 72 65 77 61 6c 6c 20 70 6f 6c 69 63 79 2c 20 77 65 20 | ..So.in.our.firewall.policy,.we. |
| 11c840 | 77 61 6e 74 20 74 6f 20 61 6c 6c 6f 77 20 74 72 61 66 66 69 63 20 63 6f 6d 69 6e 67 20 69 6e 20 | want.to.allow.traffic.coming.in. |
| 11c860 | 6f 6e 20 74 68 65 20 6f 75 74 73 69 64 65 20 69 6e 74 65 72 66 61 63 65 2c 20 64 65 73 74 69 6e | on.the.outside.interface,.destin |
| 11c880 | 65 64 20 66 6f 72 20 54 43 50 20 70 6f 72 74 20 38 30 20 61 6e 64 20 74 68 65 20 49 50 20 61 64 | ed.for.TCP.port.80.and.the.IP.ad |
| 11c8a0 | 64 72 65 73 73 20 6f 66 20 31 39 32 2e 31 36 38 2e 30 2e 31 30 30 2e 00 53 6f 20 69 6e 20 6f 75 | dress.of.192.168.0.100..So.in.ou |
| 11c8c0 | 72 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 65 74 2c 20 77 65 20 77 61 6e 74 20 74 6f 20 61 | r.firewall.ruleset,.we.want.to.a |
| 11c8e0 | 6c 6c 6f 77 20 74 72 61 66 66 69 63 20 77 68 69 63 68 20 70 72 65 76 69 6f 75 73 6c 79 20 6d 61 | llow.traffic.which.previously.ma |
| 11c900 | 74 63 68 65 64 20 61 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6e 61 74 20 72 75 6c 65 2e 20 49 6e | tched.a.destination.nat.rule..In |
| 11c920 | 20 6f 72 64 65 72 20 74 6f 20 61 76 6f 69 64 20 63 72 65 61 74 69 6e 67 20 6d 61 6e 79 20 72 75 | .order.to.avoid.creating.many.ru |
| 11c940 | 6c 65 73 2c 20 6f 6e 65 20 66 6f 72 20 65 61 63 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6e 61 | les,.one.for.each.destination.na |
| 11c960 | 74 20 72 75 6c 65 2c 20 77 65 20 63 61 6e 20 61 63 63 65 70 74 20 61 6c 6c 20 2a 2a 27 64 6e 61 | t.rule,.we.can.accept.all.**'dna |
| 11c980 | 74 27 2a 2a 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 77 69 74 68 20 6f 6e 65 20 73 69 6d 70 6c 65 | t'**.connections.with.one.simple |
| 11c9a0 | 20 72 75 6c 65 2c 20 75 73 69 6e 67 20 60 60 63 6f 6e 6e 65 63 74 69 6f 6e 2d 73 74 61 74 75 73 | .rule,.using.``connection-status |
| 11c9c0 | 60 60 20 6d 61 74 63 68 65 72 3a 00 53 6f 2c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 | ``.matcher:.So,.firewall.configu |
| 11c9e0 | 72 61 74 69 6f 6e 20 6e 65 65 64 65 64 20 66 6f 72 20 74 68 69 73 20 73 65 74 75 70 3a 00 53 6f | ration.needed.for.this.setup:.So |
| 11ca00 | 6c 61 72 57 69 6e 64 73 00 53 6f 6d 65 20 49 53 50 73 20 62 79 20 64 65 66 61 75 6c 74 20 6f 6e | larWinds.Some.ISPs.by.default.on |
| 11ca20 | 6c 79 20 64 65 6c 65 67 61 74 65 20 61 20 2f 36 34 20 70 72 65 66 69 78 2e 20 54 6f 20 72 65 71 | ly.delegate.a./64.prefix..To.req |
| 11ca40 | 75 65 73 74 20 66 6f 72 20 61 20 73 70 65 63 69 66 69 63 20 70 72 65 66 69 78 20 73 69 7a 65 20 | uest.for.a.specific.prefix.size. |
| 11ca60 | 75 73 65 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 74 6f 20 72 65 71 75 65 73 74 20 66 6f 72 20 61 | use.this.option.to.request.for.a |
| 11ca80 | 20 62 69 67 67 65 72 20 64 65 6c 65 67 61 74 69 6f 6e 20 66 6f 72 20 74 68 69 73 20 70 64 20 60 | .bigger.delegation.for.this.pd.` |
| 11caa0 | 3c 69 64 3e 60 2e 20 54 68 69 73 20 76 61 6c 75 65 20 69 73 20 69 6e 20 74 68 65 20 72 61 6e 67 | <id>`..This.value.is.in.the.rang |
| 11cac0 | 65 20 66 72 6f 6d 20 33 32 20 2d 20 36 34 20 73 6f 20 79 6f 75 20 63 6f 75 6c 64 20 72 65 71 75 | e.from.32.-.64.so.you.could.requ |
| 11cae0 | 65 73 74 20 75 70 20 74 6f 20 61 20 2f 33 32 20 70 72 65 66 69 78 20 28 69 66 20 79 6f 75 72 20 | est.up.to.a./32.prefix.(if.your. |
| 11cb00 | 49 53 50 20 61 6c 6c 6f 77 73 20 74 68 69 73 29 20 64 6f 77 6e 20 74 6f 20 61 20 2f 36 34 20 64 | ISP.allows.this).down.to.a./64.d |
| 11cb20 | 65 6c 65 67 61 74 69 6f 6e 2e 00 53 6f 6d 65 20 49 54 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 73 20 | elegation..Some.IT.environments. |
| 11cb40 | 72 65 71 75 69 72 65 20 74 68 65 20 75 73 65 20 6f 66 20 61 20 70 72 6f 78 79 20 74 6f 20 63 6f | require.the.use.of.a.proxy.to.co |
| 11cb60 | 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 49 6e 74 65 72 6e 65 74 2e 20 57 69 74 68 6f 75 74 20 74 | nnect.to.the.Internet..Without.t |
| 11cb80 | 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 56 79 4f 53 20 75 70 64 61 74 65 73 20 63 | his.configuration.VyOS.updates.c |
| 11cba0 | 6f 75 6c 64 20 6e 6f 74 20 62 65 20 69 6e 73 74 61 6c 6c 65 64 20 64 69 72 65 63 74 6c 79 20 62 | ould.not.be.installed.directly.b |
| 11cbc0 | 79 20 75 73 69 6e 67 20 74 68 65 20 3a 6f 70 63 6d 64 3a 60 61 64 64 20 73 79 73 74 65 6d 20 69 | y.using.the.:opcmd:`add.system.i |
| 11cbe0 | 6d 61 67 65 60 20 63 6f 6d 6d 61 6e 64 20 28 3a 72 65 66 3a 60 75 70 64 61 74 65 5f 76 79 6f 73 | mage`.command.(:ref:`update_vyos |
| 11cc00 | 60 29 2e 00 53 6f 6d 65 20 52 41 44 49 55 53 20 73 65 76 65 72 73 20 75 73 65 20 61 6e 20 61 63 | `)..Some.RADIUS.severs.use.an.ac |
| 11cc20 | 63 65 73 73 20 63 6f 6e 74 72 6f 6c 20 6c 69 73 74 20 77 68 69 63 68 20 61 6c 6c 6f 77 73 20 6f | cess.control.list.which.allows.o |
| 11cc40 | 72 20 64 65 6e 69 65 73 20 71 75 65 72 69 65 73 2c 20 6d 61 6b 65 20 73 75 72 65 20 74 6f 20 61 | r.denies.queries,.make.sure.to.a |
| 11cc60 | 64 64 20 79 6f 75 72 20 56 79 4f 53 20 72 6f 75 74 65 72 20 74 6f 20 74 68 65 20 61 6c 6c 6f 77 | dd.your.VyOS.router.to.the.allow |
| 11cc80 | 65 64 20 63 6c 69 65 6e 74 20 6c 69 73 74 2e 00 53 6f 6d 65 20 52 41 44 49 55 53 5f 20 73 65 76 | ed.client.list..Some.RADIUS_.sev |
| 11cca0 | 65 72 73 20 75 73 65 20 61 6e 20 61 63 63 65 73 73 20 63 6f 6e 74 72 6f 6c 20 6c 69 73 74 20 77 | ers.use.an.access.control.list.w |
| 11ccc0 | 68 69 63 68 20 61 6c 6c 6f 77 73 20 6f 72 20 64 65 6e 69 65 73 20 71 75 65 72 69 65 73 2c 20 6d | hich.allows.or.denies.queries,.m |
| 11cce0 | 61 6b 65 20 73 75 72 65 20 74 6f 20 61 64 64 20 79 6f 75 72 20 56 79 4f 53 20 72 6f 75 74 65 72 | ake.sure.to.add.your.VyOS.router |
| 11cd00 | 20 74 6f 20 74 68 65 20 61 6c 6c 6f 77 65 64 20 63 6c 69 65 6e 74 20 6c 69 73 74 2e 00 53 6f 6d | .to.the.allowed.client.list..Som |
| 11cd20 | 65 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 73 65 72 76 69 63 65 20 70 72 6f 76 69 64 65 72 73 20 | e.application.service.providers. |
| 11cd40 | 28 41 53 50 73 29 20 6f 70 65 72 61 74 65 20 61 20 56 50 4e 20 67 61 74 65 77 61 79 20 74 6f 20 | (ASPs).operate.a.VPN.gateway.to. |
| 11cd60 | 70 72 6f 76 69 64 65 20 61 63 63 65 73 73 20 74 6f 20 74 68 65 69 72 20 69 6e 74 65 72 6e 61 6c | provide.access.to.their.internal |
| 11cd80 | 20 72 65 73 6f 75 72 63 65 73 2c 20 61 6e 64 20 72 65 71 75 69 72 65 20 74 68 61 74 20 61 20 63 | .resources,.and.require.that.a.c |
| 11cda0 | 6f 6e 6e 65 63 74 69 6e 67 20 6f 72 67 61 6e 69 73 61 74 69 6f 6e 20 74 72 61 6e 73 6c 61 74 65 | onnecting.organisation.translate |
| 11cdc0 | 20 61 6c 6c 20 74 72 61 66 66 69 63 20 74 6f 20 74 68 65 20 73 65 72 76 69 63 65 20 70 72 6f 76 | .all.traffic.to.the.service.prov |
| 11cde0 | 69 64 65 72 20 6e 65 74 77 6f 72 6b 20 74 6f 20 61 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 | ider.network.to.a.source.address |
| 11ce00 | 20 70 72 6f 76 69 64 65 64 20 62 79 20 74 68 65 20 41 53 50 2e 00 53 6f 6d 65 20 63 6f 6e 74 61 | .provided.by.the.ASP..Some.conta |
| 11ce20 | 69 6e 65 72 20 72 65 67 69 73 74 72 69 65 73 20 72 65 71 75 69 72 65 20 63 72 65 64 65 6e 74 69 | iner.registries.require.credenti |
| 11ce40 | 61 6c 73 20 74 6f 20 62 65 20 75 73 65 64 2e 00 53 6f 6d 65 20 66 69 72 65 77 61 6c 6c 20 73 65 | als.to.be.used..Some.firewall.se |
| 11ce60 | 74 74 69 6e 67 73 20 61 72 65 20 67 6c 6f 62 61 6c 20 61 6e 64 20 68 61 76 65 20 61 6e 20 61 66 | ttings.are.global.and.have.an.af |
| 11ce80 | 66 65 63 74 20 6f 6e 20 74 68 65 20 77 68 6f 6c 65 20 73 79 73 74 65 6d 2e 00 53 6f 6d 65 20 66 | fect.on.the.whole.system..Some.f |
| 11cea0 | 69 72 65 77 61 6c 6c 20 73 65 74 74 69 6e 67 73 20 61 72 65 20 67 6c 6f 62 61 6c 20 61 6e 64 20 | irewall.settings.are.global.and. |
| 11cec0 | 68 61 76 65 20 61 6e 20 61 66 66 65 63 74 20 6f 6e 20 74 68 65 20 77 68 6f 6c 65 20 73 79 73 74 | have.an.affect.on.the.whole.syst |
| 11cee0 | 65 6d 2e 20 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 | em..In.this.section.there's.usef |
| 11cf00 | 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 74 68 65 73 65 20 67 6c 6f 62 61 | ul.information.about.these.globa |
| 11cf20 | 6c 2d 6f 70 74 69 6f 6e 73 20 74 68 61 74 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 | l-options.that.can.be.configured |
| 11cf40 | 20 75 73 69 6e 67 20 76 79 6f 73 20 63 6c 69 2e 00 53 6f 6d 65 20 70 6f 6c 69 63 69 65 73 20 61 | .using.vyos.cli..Some.policies.a |
| 11cf60 | 6c 72 65 61 64 79 20 69 6e 63 6c 75 64 65 20 6f 74 68 65 72 20 65 6d 62 65 64 64 65 64 20 70 6f | lready.include.other.embedded.po |
| 11cf80 | 6c 69 63 69 65 73 20 69 6e 73 69 64 65 2e 20 54 68 61 74 20 69 73 20 74 68 65 20 63 61 73 65 20 | licies.inside..That.is.the.case. |
| 11cfa0 | 6f 66 20 53 68 61 70 65 72 5f 3a 20 65 61 63 68 20 6f 66 20 69 74 73 20 63 6c 61 73 73 65 73 20 | of.Shaper_:.each.of.its.classes. |
| 11cfc0 | 75 73 65 20 66 61 69 72 2d 71 75 65 75 65 20 75 6e 6c 65 73 73 20 79 6f 75 20 63 68 61 6e 67 65 | use.fair-queue.unless.you.change |
| 11cfe0 | 20 69 74 2e 00 53 6f 6d 65 20 70 6f 6c 69 63 69 65 73 20 63 61 6e 20 62 65 20 63 6f 6d 62 69 6e | .it..Some.policies.can.be.combin |
| 11d000 | 65 64 2c 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 61 62 6c 65 20 74 6f 20 65 6d 62 65 64 5f 20 61 | ed,.you.will.be.able.to.embed_.a |
| 11d020 | 20 64 69 66 66 65 72 65 6e 74 20 70 6f 6c 69 63 79 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 61 | .different.policy.that.will.be.a |
| 11d040 | 70 70 6c 69 65 64 20 74 6f 20 61 20 63 6c 61 73 73 20 6f 66 20 74 68 65 20 6d 61 69 6e 20 70 6f | pplied.to.a.class.of.the.main.po |
| 11d060 | 6c 69 63 79 2e 00 53 6f 6d 65 20 70 6f 73 73 69 62 6c 65 20 65 78 61 6d 70 6c 65 73 20 61 72 65 | licy..Some.possible.examples.are |
| 11d080 | 3a 00 53 6f 6d 65 20 70 72 6f 78 79 73 20 72 65 71 75 69 72 65 2f 73 75 70 70 6f 72 74 20 74 68 | :.Some.proxys.require/support.th |
| 11d0a0 | 65 20 22 62 61 73 69 63 22 20 48 54 54 50 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 63 | e."basic".HTTP.authentication.sc |
| 11d0c0 | 68 65 6d 65 20 61 73 20 70 65 72 20 3a 72 66 63 3a 60 37 36 31 37 60 2c 20 74 68 75 73 20 61 20 | heme.as.per.:rfc:`7617`,.thus.a. |
| 11d0e0 | 70 61 73 73 77 6f 72 64 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 53 6f 6d 65 | password.can.be.configured..Some |
| 11d100 | 20 70 72 6f 78 79 73 20 72 65 71 75 69 72 65 2f 73 75 70 70 6f 72 74 20 74 68 65 20 22 62 61 73 | .proxys.require/support.the."bas |
| 11d120 | 69 63 22 20 48 54 54 50 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 63 68 65 6d 65 20 61 | ic".HTTP.authentication.scheme.a |
| 11d140 | 73 20 70 65 72 20 3a 72 66 63 3a 60 37 36 31 37 60 2c 20 74 68 75 73 20 61 20 75 73 65 72 6e 61 | s.per.:rfc:`7617`,.thus.a.userna |
| 11d160 | 6d 65 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 53 6f 6d 65 20 72 65 63 65 6e | me.can.be.configured..Some.recen |
| 11d180 | 74 20 49 53 50 73 20 72 65 71 75 69 72 65 20 79 6f 75 20 74 6f 20 62 75 69 6c 64 20 74 68 65 20 | t.ISPs.require.you.to.build.the. |
| 11d1a0 | 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 68 72 6f 75 67 68 20 61 20 56 4c 41 4e 20 | PPPoE.connection.through.a.VLAN. |
| 11d1c0 | 69 6e 74 65 72 66 61 63 65 2e 20 4f 6e 65 20 6f 66 20 74 68 6f 73 65 20 49 53 50 73 20 69 73 20 | interface..One.of.those.ISPs.is. |
| 11d1e0 | 65 2e 67 2e 20 44 65 75 74 73 63 68 65 20 54 65 6c 65 6b 6f 6d 20 69 6e 20 47 65 72 6d 61 6e 79 | e.g..Deutsche.Telekom.in.Germany |
| 11d200 | 2e 20 56 79 4f 53 20 63 61 6e 20 65 61 73 69 6c 79 20 63 72 65 61 74 65 20 61 20 50 50 50 6f 45 | ..VyOS.can.easily.create.a.PPPoE |
| 11d220 | 20 73 65 73 73 69 6f 6e 20 74 68 72 6f 75 67 68 20 61 6e 20 65 6e 63 61 70 73 75 6c 61 74 65 64 | .session.through.an.encapsulated |
| 11d240 | 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 | .VLAN.interface..The.following.c |
| 11d260 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 69 6c 6c 20 72 75 6e 20 79 6f 75 72 20 50 50 50 6f 45 | onfiguration.will.run.your.PPPoE |
| 11d280 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 68 72 6f 75 67 68 20 56 4c 41 4e 37 20 77 68 69 63 68 20 | .connection.through.VLAN7.which. |
| 11d2a0 | 69 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 56 4c 41 4e 20 66 6f 72 20 44 65 75 74 73 63 68 65 | is.the.default.VLAN.for.Deutsche |
| 11d2c0 | 20 54 65 6c 65 6b 6f 6d 3a 00 53 6f 6d 65 20 73 65 72 76 69 63 65 73 20 64 6f 6e 27 74 20 77 6f | .Telekom:.Some.services.don't.wo |
| 11d2e0 | 72 6b 20 63 6f 72 72 65 63 74 6c 79 20 77 68 65 6e 20 62 65 69 6e 67 20 68 61 6e 64 6c 65 64 20 | rk.correctly.when.being.handled. |
| 11d300 | 76 69 61 20 61 20 77 65 62 20 70 72 6f 78 79 2e 20 53 6f 20 73 6f 6d 65 74 69 6d 65 73 20 69 74 | via.a.web.proxy..So.sometimes.it |
| 11d320 | 20 69 73 20 75 73 65 66 75 6c 20 74 6f 20 62 79 70 61 73 73 20 61 20 74 72 61 6e 73 70 61 72 65 | .is.useful.to.bypass.a.transpare |
| 11d340 | 6e 74 20 70 72 6f 78 79 3a 00 53 6f 6d 65 20 75 73 65 72 73 20 74 65 6e 64 20 74 6f 20 63 6f 6e | nt.proxy:.Some.users.tend.to.con |
| 11d360 | 6e 65 63 74 20 74 68 65 69 72 20 6d 6f 62 69 6c 65 20 64 65 76 69 63 65 73 20 75 73 69 6e 67 20 | nect.their.mobile.devices.using. |
| 11d380 | 57 69 72 65 47 75 61 72 64 20 74 6f 20 74 68 65 69 72 20 56 79 4f 53 20 72 6f 75 74 65 72 2e 20 | WireGuard.to.their.VyOS.router.. |
| 11d3a0 | 54 6f 20 65 61 73 65 20 64 65 70 6c 6f 79 6d 65 6e 74 20 6f 6e 65 20 63 61 6e 20 67 65 6e 65 72 | To.ease.deployment.one.can.gener |
| 11d3c0 | 61 74 65 20 61 20 22 70 65 72 20 6d 6f 62 69 6c 65 22 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | ate.a."per.mobile".configuration |
| 11d3e0 | 20 66 72 6f 6d 20 74 68 65 20 56 79 4f 53 20 43 4c 49 2e 00 53 6f 6d 65 74 69 6d 65 73 20 6f 70 | .from.the.VyOS.CLI..Sometimes.op |
| 11d400 | 74 69 6f 6e 20 6c 69 6e 65 73 20 69 6e 20 74 68 65 20 67 65 6e 65 72 61 74 65 64 20 4f 70 65 6e | tion.lines.in.the.generated.Open |
| 11d420 | 56 50 4e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 72 65 71 75 69 72 65 20 71 75 6f 74 65 73 | VPN.configuration.require.quotes |
| 11d440 | 2e 20 54 68 69 73 20 69 73 20 64 6f 6e 65 20 74 68 72 6f 75 67 68 20 61 20 68 61 63 6b 20 6f 6e | ..This.is.done.through.a.hack.on |
| 11d460 | 20 6f 75 72 20 63 6f 6e 66 69 67 20 67 65 6e 65 72 61 74 6f 72 2e 20 59 6f 75 20 63 61 6e 20 70 | .our.config.generator..You.can.p |
| 11d480 | 61 73 73 20 71 75 6f 74 65 73 20 75 73 69 6e 67 20 74 68 65 20 60 60 26 71 75 6f 74 3b 60 60 20 | ass.quotes.using.the.``"``. |
| 11d4a0 | 73 74 61 74 65 6d 65 6e 74 2e 00 53 6f 72 74 20 74 68 65 20 6f 75 74 70 75 74 20 62 79 20 74 68 | statement..Sort.the.output.by.th |
| 11d4c0 | 65 20 73 70 65 63 69 66 69 65 64 20 6b 65 79 2e 20 50 6f 73 73 69 62 6c 65 20 6b 65 79 73 3a 20 | e.specified.key..Possible.keys:. |
| 11d4e0 | 65 78 70 69 72 65 73 2c 20 69 61 69 64 5f 64 75 69 64 2c 20 69 70 2c 20 6c 61 73 74 5f 63 6f 6d | expires,.iaid_duid,.ip,.last_com |
| 11d500 | 6d 2c 20 70 6f 6f 6c 2c 20 72 65 6d 61 69 6e 69 6e 67 2c 20 73 74 61 74 65 2c 20 74 79 70 65 20 | m,.pool,.remaining,.state,.type. |
| 11d520 | 28 64 65 66 61 75 6c 74 20 3d 20 69 70 29 00 53 6f 72 74 20 74 68 65 20 6f 75 74 70 75 74 20 62 | (default.=.ip).Sort.the.output.b |
| 11d540 | 79 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 6b 65 79 2e 20 50 6f 73 73 69 62 6c 65 20 6b 65 | y.the.specified.key..Possible.ke |
| 11d560 | 79 73 3a 20 69 70 2c 20 68 61 72 64 77 61 72 65 5f 61 64 64 72 65 73 73 2c 20 73 74 61 74 65 2c | ys:.ip,.hardware_address,.state, |
| 11d580 | 20 73 74 61 72 74 2c 20 65 6e 64 2c 20 72 65 6d 61 69 6e 69 6e 67 2c 20 70 6f 6f 6c 2c 20 68 6f | .start,.end,.remaining,.pool,.ho |
| 11d5a0 | 73 74 6e 61 6d 65 20 28 64 65 66 61 75 6c 74 20 3d 20 69 70 29 00 53 6f 75 72 63 65 20 41 64 64 | stname.(default.=.ip).Source.Add |
| 11d5c0 | 72 65 73 73 00 53 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 75 73 65 64 20 66 6f 72 20 | ress.Source.IP.address.used.for. |
| 11d5e0 | 56 58 4c 41 4e 20 75 6e 64 65 72 6c 61 79 2e 20 54 68 69 73 20 69 73 20 6d 61 6e 64 61 74 6f 72 | VXLAN.underlay..This.is.mandator |
| 11d600 | 79 20 77 68 65 6e 20 75 73 69 6e 67 20 56 58 4c 41 4e 20 76 69 61 20 4c 32 56 50 4e 2f 45 56 50 | y.when.using.VXLAN.via.L2VPN/EVP |
| 11d620 | 4e 2e 00 53 6f 75 72 63 65 20 49 50 76 34 20 61 64 64 72 65 73 73 20 75 73 65 64 20 69 6e 20 61 | N..Source.IPv4.address.used.in.a |
| 11d640 | 6c 6c 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 71 75 65 69 72 65 73 2e 00 53 6f 75 72 63 65 | ll.RADIUS.server.queires..Source |
| 11d660 | 20 4e 41 54 20 72 75 6c 65 73 00 53 6f 75 72 63 65 20 50 72 65 66 69 78 00 53 6f 75 72 63 65 20 | .NAT.rules.Source.Prefix.Source. |
| 11d680 | 61 6c 6c 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 52 41 44 49 55 53 20 73 65 | all.connections.to.the.RADIUS.se |
| 11d6a0 | 72 76 65 72 73 20 66 72 6f 6d 20 67 69 76 65 6e 20 56 52 46 20 60 3c 6e 61 6d 65 3e 60 2e 00 53 | rvers.from.given.VRF.`<name>`..S |
| 11d6c0 | 6f 75 72 63 65 20 61 6c 6c 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 54 41 43 | ource.all.connections.to.the.TAC |
| 11d6e0 | 41 43 53 20 73 65 72 76 65 72 73 20 66 72 6f 6d 20 67 69 76 65 6e 20 56 52 46 20 60 3c 6e 61 6d | ACS.servers.from.given.VRF.`<nam |
| 11d700 | 65 3e 60 2e 00 53 6f 75 72 63 65 20 70 72 6f 74 6f 63 6f 6c 20 74 6f 20 6d 61 74 63 68 2e 00 53 | e>`..Source.protocol.to.match..S |
| 11d720 | 6f 75 72 63 65 20 74 75 6e 6e 65 6c 20 66 72 6f 6d 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 | ource.tunnel.from.dummy.interfac |
| 11d740 | 65 00 53 6f 75 72 63 65 20 74 75 6e 6e 65 6c 20 66 72 6f 6d 20 6c 6f 6f 70 62 61 63 6b 73 00 53 | e.Source.tunnel.from.loopbacks.S |
| 11d760 | 70 61 6e 6e 69 6e 67 20 54 72 65 65 20 50 72 6f 74 6f 63 6f 6c 20 66 6f 72 77 61 72 64 69 6e 67 | panning.Tree.Protocol.forwarding |
| 11d780 | 20 60 3c 64 65 6c 61 79 3e 60 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a 20 | .`<delay>`.in.seconds.(default:. |
| 11d7a0 | 31 35 29 2e 00 53 70 61 6e 6e 69 6e 67 20 54 72 65 65 20 50 72 6f 74 6f 63 6f 6c 20 68 65 6c 6c | 15)..Spanning.Tree.Protocol.hell |
| 11d7c0 | 6f 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 20 60 3c 69 6e 74 65 72 76 61 6c 3e 60 20 69 6e 20 | o.advertisement.`<interval>`.in. |
| 11d7e0 | 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a 20 32 29 2e 00 53 70 61 6e 6e 69 6e 67 20 54 | seconds.(default:.2)..Spanning.T |
| 11d800 | 72 65 65 20 50 72 6f 74 6f 63 6f 6c 20 69 73 20 6e 6f 74 20 65 6e 61 62 6c 65 64 20 62 79 20 64 | ree.Protocol.is.not.enabled.by.d |
| 11d820 | 65 66 61 75 6c 74 20 69 6e 20 56 79 4f 53 2e 20 3a 72 65 66 3a 60 73 74 70 60 20 63 61 6e 20 62 | efault.in.VyOS..:ref:`stp`.can.b |
| 11d840 | 65 20 65 61 73 69 6c 79 20 65 6e 61 62 6c 65 64 20 69 66 20 6e 65 65 64 65 64 2e 00 53 70 61 74 | e.easily.enabled.if.needed..Spat |
| 11d860 | 69 61 6c 20 4d 75 6c 74 69 70 6c 65 78 69 6e 67 20 50 6f 77 65 72 20 53 61 76 65 20 28 53 4d 50 | ial.Multiplexing.Power.Save.(SMP |
| 11d880 | 53 29 20 73 65 74 74 69 6e 67 73 00 53 70 65 63 66 79 69 6e 67 20 6e 68 73 20 6d 61 6b 65 73 20 | S).settings.Specfying.nhs.makes. |
| 11d8a0 | 61 6c 6c 20 6d 75 6c 74 69 63 61 73 74 20 70 61 63 6b 65 74 73 20 74 6f 20 62 65 20 72 65 70 65 | all.multicast.packets.to.be.repe |
| 11d8c0 | 61 74 65 64 20 74 6f 20 65 61 63 68 20 73 74 61 74 69 63 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 | ated.to.each.statically.configur |
| 11d8e0 | 65 64 20 6e 65 78 74 20 68 6f 70 2e 00 53 70 65 63 69 66 69 65 73 20 3a 61 62 62 72 3a 60 4d 50 | ed.next.hop..Specifies.:abbr:`MP |
| 11d900 | 50 45 20 28 4d 69 63 72 6f 73 6f 66 74 20 50 6f 69 6e 74 2d 74 6f 2d 50 6f 69 6e 74 20 45 6e 63 | PE.(Microsoft.Point-to-Point.Enc |
| 11d920 | 72 79 70 74 69 6f 6e 29 60 20 6e 65 67 6f 74 69 61 74 69 6f 6e 20 70 72 65 66 65 72 65 6e 63 65 | ryption)`.negotiation.preference |
| 11d940 | 2e 00 53 70 65 63 69 66 69 65 73 20 3a 61 62 62 72 3a 60 4d 50 50 45 20 28 4d 69 63 72 6f 73 6f | ..Specifies.:abbr:`MPPE.(Microso |
| 11d960 | 66 74 20 50 6f 69 6e 74 2d 74 6f 2d 50 6f 69 6e 74 20 45 6e 63 72 79 70 74 69 6f 6e 29 60 20 6e | ft.Point-to-Point.Encryption)`.n |
| 11d980 | 65 67 6f 74 69 6f 61 74 69 6f 6e 20 70 72 65 66 65 72 65 6e 63 65 2e 00 53 70 65 63 69 66 69 65 | egotioation.preference..Specifie |
| 11d9a0 | 73 20 49 50 20 61 64 64 72 65 73 73 20 66 6f 72 20 44 79 6e 61 6d 69 63 20 41 75 74 68 6f 72 69 | s.IP.address.for.Dynamic.Authori |
| 11d9c0 | 7a 61 74 69 6f 6e 20 45 78 74 65 6e 73 69 6f 6e 20 73 65 72 76 65 72 20 28 44 4d 2f 43 6f 41 29 | zation.Extension.server.(DM/CoA) |
| 11d9e0 | 00 53 70 65 63 69 66 69 65 73 20 49 50 76 34 20 6e 65 67 6f 74 69 61 74 69 6f 6e 20 70 72 65 66 | .Specifies.IPv4.negotiation.pref |
| 11da00 | 65 72 65 6e 63 65 2e 00 53 70 65 63 69 66 69 65 73 20 49 50 76 36 20 6e 65 67 6f 74 69 61 74 69 | erence..Specifies.IPv6.negotiati |
| 11da20 | 6f 6e 20 70 72 65 66 65 72 65 6e 63 65 2e 00 53 70 65 63 69 66 69 65 73 20 53 65 72 76 69 63 65 | on.preference..Specifies.Service |
| 11da40 | 2d 4e 61 6d 65 20 74 6f 20 72 65 73 70 6f 6e 64 2e 20 49 66 20 61 62 73 65 6e 74 20 61 6e 79 20 | -Name.to.respond..If.absent.any. |
| 11da60 | 53 65 72 76 69 63 65 2d 4e 61 6d 65 20 69 73 20 61 63 63 65 70 74 61 62 6c 65 20 61 6e 64 20 63 | Service-Name.is.acceptable.and.c |
| 11da80 | 6c 69 65 6e 74 e2 80 99 73 20 53 65 72 76 69 63 65 2d 4e 61 6d 65 20 77 69 6c 6c 20 62 65 20 73 | lient...s.Service-Name.will.be.s |
| 11daa0 | 65 6e 74 20 62 61 63 6b 2e 20 41 6c 73 6f 20 70 6f 73 73 69 62 6c 65 20 73 65 74 20 6d 75 6c 74 | ent.back..Also.possible.set.mult |
| 11dac0 | 69 70 6c 65 20 73 65 72 76 69 63 65 2d 6e 61 6d 65 73 3a 20 60 73 6e 31 2c 73 6e 32 2c 73 6e 33 | iple.service-names:.`sn1,sn2,sn3 |
| 11dae0 | 60 00 53 70 65 63 69 66 69 65 73 20 61 64 64 72 65 73 73 20 74 6f 20 62 65 20 75 73 65 64 20 61 | `.Specifies.address.to.be.used.a |
| 11db00 | 73 20 73 65 72 76 65 72 20 69 70 20 61 64 64 72 65 73 73 20 69 66 20 72 61 64 69 75 73 20 63 61 | s.server.ip.address.if.radius.ca |
| 11db20 | 6e 20 61 73 73 69 67 6e 20 6f 6e 6c 79 20 63 6c 69 65 6e 74 20 61 64 64 72 65 73 73 2e 20 49 6e | n.assign.only.client.address..In |
| 11db40 | 20 73 75 63 68 20 63 61 73 65 20 69 66 20 63 6c 69 65 6e 74 20 61 64 64 72 65 73 73 20 69 73 20 | .such.case.if.client.address.is. |
| 11db60 | 6d 61 74 63 68 65 64 20 6e 65 74 77 6f 72 6b 20 61 6e 64 20 6d 61 73 6b 20 74 68 65 6e 20 73 70 | matched.network.and.mask.then.sp |
| 11db80 | 65 63 69 66 69 65 64 20 61 64 64 72 65 73 73 20 61 6e 64 20 6d 61 73 6b 20 77 69 6c 6c 20 62 65 | ecified.address.and.mask.will.be |
| 11dba0 | 20 75 73 65 64 2e 20 59 6f 75 20 63 61 6e 20 73 70 65 63 69 66 79 20 6d 75 6c 74 69 70 6c 65 20 | .used..You.can.specify.multiple. |
| 11dbc0 | 73 75 63 68 20 6f 70 74 69 6f 6e 73 2e 00 53 70 65 63 69 66 69 65 73 20 61 6e 20 6f 70 74 69 6f | such.options..Specifies.an.optio |
| 11dbe0 | 6e 61 6c 20 72 6f 75 74 65 2d 6d 61 70 20 74 6f 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 72 | nal.route-map.to.be.applied.to.r |
| 11dc00 | 6f 75 74 65 73 20 69 6d 70 6f 72 74 65 64 20 6f 72 20 65 78 70 6f 72 74 65 64 20 62 65 74 77 65 | outes.imported.or.exported.betwe |
| 11dc20 | 65 6e 20 74 68 65 20 63 75 72 72 65 6e 74 20 75 6e 69 63 61 73 74 20 56 52 46 20 61 6e 64 20 56 | en.the.current.unicast.VRF.and.V |
| 11dc40 | 50 4e 2e 00 53 70 65 63 69 66 69 65 73 20 61 6e 20 75 70 73 74 72 65 61 6d 20 6e 65 74 77 6f 72 | PN..Specifies.an.upstream.networ |
| 11dc60 | 6b 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 66 72 6f 6d 20 77 68 69 63 68 20 72 65 70 6c 69 | k.`<interface>`.from.which.repli |
| 11dc80 | 65 73 20 66 72 6f 6d 20 60 3c 73 65 72 76 65 72 3e 60 20 61 6e 64 20 6f 74 68 65 72 20 72 65 6c | es.from.`<server>`.and.other.rel |
| 11dca0 | 61 79 20 61 67 65 6e 74 73 20 77 69 6c 6c 20 62 65 20 61 63 63 65 70 74 65 64 2e 00 53 70 65 63 | ay.agents.will.be.accepted..Spec |
| 11dcc0 | 69 66 69 65 73 20 66 69 78 65 64 20 6f 72 20 72 61 6e 64 6f 6d 20 69 6e 74 65 72 66 61 63 65 20 | ifies.fixed.or.random.interface. |
| 11dce0 | 69 64 65 6e 74 69 66 69 65 72 20 66 6f 72 20 49 50 76 36 2e 20 42 79 20 64 65 66 61 75 6c 74 20 | identifier.for.IPv6..By.default. |
| 11dd00 | 69 73 20 66 69 78 65 64 2e 00 53 70 65 63 69 66 69 65 73 20 68 6f 77 20 6c 6f 6e 67 20 73 71 75 | is.fixed..Specifies.how.long.squ |
| 11dd20 | 69 64 20 61 73 73 75 6d 65 73 20 61 6e 20 65 78 74 65 72 6e 61 6c 6c 79 20 76 61 6c 69 64 61 74 | id.assumes.an.externally.validat |
| 11dd40 | 65 64 20 75 73 65 72 6e 61 6d 65 3a 70 61 73 73 77 6f 72 64 20 70 61 69 72 20 69 73 20 76 61 6c | ed.username:password.pair.is.val |
| 11dd60 | 69 64 20 66 6f 72 20 2d 20 69 6e 20 6f 74 68 65 72 20 77 6f 72 64 73 20 68 6f 77 20 6f 66 74 65 | id.for.-.in.other.words.how.ofte |
| 11dd80 | 6e 20 74 68 65 20 68 65 6c 70 65 72 20 70 72 6f 67 72 61 6d 20 69 73 20 63 61 6c 6c 65 64 20 66 | n.the.helper.program.is.called.f |
| 11dda0 | 6f 72 20 74 68 61 74 20 75 73 65 72 2e 20 53 65 74 20 74 68 69 73 20 6c 6f 77 20 74 6f 20 66 6f | or.that.user..Set.this.low.to.fo |
| 11ddc0 | 72 63 65 20 72 65 76 61 6c 69 64 61 74 69 6f 6e 20 77 69 74 68 20 73 68 6f 72 74 20 6c 69 76 65 | rce.revalidation.with.short.live |
| 11dde0 | 64 20 70 61 73 73 77 6f 72 64 73 2e 00 53 70 65 63 69 66 69 65 73 20 69 66 20 61 20 66 69 78 65 | d.passwords..Specifies.if.a.fixe |
| 11de00 | 64 20 6f 72 20 72 61 6e 64 6f 6d 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 | d.or.random.interface.identifier |
| 11de20 | 20 69 73 20 75 73 65 64 20 66 6f 72 20 49 50 76 36 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 | .is.used.for.IPv6..The.default.i |
| 11de40 | 73 20 66 69 78 65 64 2e 00 53 70 65 63 69 66 69 65 73 20 69 66 20 75 6e 6b 6e 6f 77 6e 20 73 6f | s.fixed..Specifies.if.unknown.so |
| 11de60 | 75 72 63 65 20 6c 69 6e 6b 20 6c 61 79 65 72 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 49 50 | urce.link.layer.addresses.and.IP |
| 11de80 | 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 65 6e 74 65 72 65 64 20 69 6e 74 6f 20 74 68 65 20 | .addresses.are.entered.into.the. |
| 11dea0 | 56 58 4c 41 4e 20 64 65 76 69 63 65 20 66 6f 72 77 61 72 64 69 6e 67 20 64 61 74 61 62 61 73 65 | VXLAN.device.forwarding.database |
| 11dec0 | 2e 00 53 70 65 63 69 66 69 65 73 20 6e 75 6d 62 65 72 20 6f 66 20 69 6e 74 65 72 66 61 63 65 73 | ..Specifies.number.of.interfaces |
| 11dee0 | 20 74 6f 20 63 61 63 68 65 2e 20 54 68 69 73 20 70 72 65 76 65 6e 74 73 20 69 6e 74 65 72 66 61 | .to.cache..This.prevents.interfa |
| 11df00 | 63 65 73 20 66 72 6f 6d 20 62 65 69 6e 67 20 72 65 6d 6f 76 65 64 20 6f 6e 63 65 20 74 68 65 20 | ces.from.being.removed.once.the. |
| 11df20 | 63 6f 72 72 65 73 70 6f 6e 64 69 6e 67 20 73 65 73 73 69 6f 6e 20 69 73 20 64 65 73 74 72 6f 79 | corresponding.session.is.destroy |
| 11df40 | 65 64 2e 20 49 6e 73 74 65 61 64 2c 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 63 61 63 68 | ed..Instead,.interfaces.are.cach |
| 11df60 | 65 64 20 66 6f 72 20 6c 61 74 65 72 20 75 73 65 20 69 6e 20 6e 65 77 20 73 65 73 73 69 6f 6e 73 | ed.for.later.use.in.new.sessions |
| 11df80 | 2e 20 54 68 69 73 20 73 68 6f 75 6c 64 20 72 65 64 75 63 65 20 74 68 65 20 6b 65 72 6e 65 6c 2d | ..This.should.reduce.the.kernel- |
| 11dfa0 | 6c 65 76 65 6c 20 69 6e 74 65 72 66 61 63 65 20 63 72 65 61 74 69 6f 6e 2f 64 65 6c 65 74 69 6f | level.interface.creation/deletio |
| 11dfc0 | 6e 20 72 61 74 65 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 2a 2a 30 2a 2a 2e 00 | n.rate..Default.value.is.**0**.. |
| 11dfe0 | 53 70 65 63 69 66 69 65 73 20 6e 75 6d 62 65 72 20 6f 66 20 69 6e 74 65 72 66 61 63 65 73 20 74 | Specifies.number.of.interfaces.t |
| 11e000 | 6f 20 6b 65 65 70 20 69 6e 20 63 61 63 68 65 2e 20 49 74 20 6d 65 61 6e 73 20 74 68 61 74 20 64 | o.keep.in.cache..It.means.that.d |
| 11e020 | 6f 6e e2 80 99 74 20 64 65 73 74 72 6f 79 20 69 6e 74 65 72 66 61 63 65 20 61 66 74 65 72 20 63 | on...t.destroy.interface.after.c |
| 11e040 | 6f 72 72 65 73 70 6f 6e 64 69 6e 67 20 73 65 73 73 69 6f 6e 20 69 73 20 64 65 73 74 72 6f 79 65 | orresponding.session.is.destroye |
| 11e060 | 64 2c 20 69 6e 73 74 65 61 64 20 70 6c 61 63 65 20 69 74 20 74 6f 20 63 61 63 68 65 20 61 6e 64 | d,.instead.place.it.to.cache.and |
| 11e080 | 20 75 73 65 20 69 74 20 6c 61 74 65 72 20 66 6f 72 20 6e 65 77 20 73 65 73 73 69 6f 6e 73 20 72 | .use.it.later.for.new.sessions.r |
| 11e0a0 | 65 70 65 61 74 65 64 6c 79 2e 20 54 68 69 73 20 73 68 6f 75 6c 64 20 72 65 64 75 63 65 20 6b 65 | epeatedly..This.should.reduce.ke |
| 11e0c0 | 72 6e 65 6c 2d 6c 65 76 65 6c 20 69 6e 74 65 72 66 61 63 65 20 63 72 65 61 74 69 6f 6e 2f 64 65 | rnel-level.interface.creation/de |
| 11e0e0 | 6c 65 74 69 6f 6e 20 72 61 74 65 20 6c 61 63 6b 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 | letion.rate.lack..Default.value. |
| 11e100 | 69 73 20 2a 2a 30 2a 2a 2e 00 53 70 65 63 69 66 69 65 73 20 6f 6e 65 20 6f 66 20 74 68 65 20 62 | is.**0**..Specifies.one.of.the.b |
| 11e120 | 6f 6e 64 69 6e 67 20 70 6f 6c 69 63 69 65 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 | onding.policies..The.default.is. |
| 11e140 | 38 30 32 2e 33 61 64 2e 20 50 6f 73 73 69 62 6c 65 20 76 61 6c 75 65 73 20 61 72 65 3a 00 53 70 | 802.3ad..Possible.values.are:.Sp |
| 11e160 | 65 63 69 66 69 65 73 20 70 65 65 72 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 | ecifies.peer.interface.identifie |
| 11e180 | 72 20 66 6f 72 20 49 50 76 36 2e 20 42 79 20 64 65 66 61 75 6c 74 20 69 73 20 66 69 78 65 64 2e | r.for.IPv6..By.default.is.fixed. |
| 11e1a0 | 00 53 70 65 63 69 66 69 65 73 20 70 72 6f 78 79 20 73 65 72 76 69 63 65 20 6c 69 73 74 65 6e 69 | .Specifies.proxy.service.listeni |
| 11e1c0 | 6e 67 20 61 64 64 72 65 73 73 2e 20 54 68 65 20 6c 69 73 74 65 6e 20 61 64 64 72 65 73 73 20 69 | ng.address..The.listen.address.i |
| 11e1e0 | 73 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 6e 20 77 68 69 63 68 20 74 68 65 20 77 65 | s.the.IP.address.on.which.the.we |
| 11e200 | 62 20 70 72 6f 78 79 20 73 65 72 76 69 63 65 20 6c 69 73 74 65 6e 73 20 66 6f 72 20 63 6c 69 65 | b.proxy.service.listens.for.clie |
| 11e220 | 6e 74 20 72 65 71 75 65 73 74 73 2e 00 53 70 65 63 69 66 69 65 73 20 72 65 6c 61 79 20 61 67 65 | nt.requests..Specifies.relay.age |
| 11e240 | 6e 74 20 49 50 20 61 64 64 72 65 00 53 70 65 63 69 66 69 65 73 20 73 69 6e 67 6c 65 20 60 3c 67 | nt.IP.addre.Specifies.single.`<g |
| 11e260 | 61 74 65 77 61 79 3e 60 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 62 65 20 75 73 65 64 20 61 | ateway>`.IP.address.to.be.used.a |
| 11e280 | 73 20 6c 6f 63 61 6c 20 61 64 64 72 65 73 73 20 6f 66 20 50 50 50 20 69 6e 74 65 72 66 61 63 65 | s.local.address.of.PPP.interface |
| 11e2a0 | 73 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 61 74 20 74 68 65 20 3a 61 62 62 72 3a 60 4e 42 4d | s..Specifies.that.the.:abbr:`NBM |
| 11e2c0 | 41 20 28 4e 6f 6e 2d 62 72 6f 61 64 63 61 73 74 20 6d 75 6c 74 69 70 6c 65 2d 61 63 63 65 73 73 | A.(Non-broadcast.multiple-access |
| 11e2e0 | 20 6e 65 74 77 6f 72 6b 29 60 20 61 64 64 72 65 73 73 65 73 20 6f 66 20 74 68 65 20 6e 65 78 74 | .network)`.addresses.of.the.next |
| 11e300 | 20 68 6f 70 20 73 65 72 76 65 72 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 65 20 | .hop.servers.are.defined.in.the. |
| 11e320 | 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 6e 62 6d 61 2d 64 6f 6d 61 69 6e 2d 6e 61 6d 65 2e 20 46 6f | domain.name.nbma-domain-name..Fo |
| 11e340 | 72 20 65 61 63 68 20 41 20 72 65 63 6f 72 64 20 6f 70 65 6e 6e 68 72 70 20 63 72 65 61 74 65 73 | r.each.A.record.opennhrp.creates |
| 11e360 | 20 61 20 64 79 6e 61 6d 69 63 20 4e 48 53 20 65 6e 74 72 79 2e 00 53 70 65 63 69 66 69 65 73 20 | .a.dynamic.NHS.entry..Specifies. |
| 11e380 | 74 68 65 20 41 52 50 20 6c 69 6e 6b 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 60 3c 74 69 6d 65 3e 60 | the.ARP.link.monitoring.`<time>` |
| 11e3a0 | 20 69 6e 20 73 65 63 6f 6e 64 73 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 49 50 20 61 64 | .in.seconds..Specifies.the.IP.ad |
| 11e3c0 | 64 72 65 73 73 65 73 20 74 6f 20 75 73 65 20 61 73 20 41 52 50 20 6d 6f 6e 69 74 6f 72 69 6e 67 | dresses.to.use.as.ARP.monitoring |
| 11e3e0 | 20 70 65 65 72 73 20 77 68 65 6e 20 3a 63 66 67 63 6d 64 3a 60 61 72 70 2d 6d 6f 6e 69 74 6f 72 | .peers.when.:cfgcmd:`arp-monitor |
| 11e400 | 20 69 6e 74 65 72 76 61 6c 60 20 6f 70 74 69 6f 6e 20 69 73 20 3e 20 30 2e 20 54 68 65 73 65 20 | .interval`.option.is.>.0..These. |
| 11e420 | 61 72 65 20 74 68 65 20 74 61 72 67 65 74 73 20 6f 66 20 74 68 65 20 41 52 50 20 72 65 71 75 65 | are.the.targets.of.the.ARP.reque |
| 11e440 | 73 74 20 73 65 6e 74 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 68 65 61 6c 74 68 20 | st.sent.to.determine.the.health. |
| 11e460 | 6f 66 20 74 68 65 20 6c 69 6e 6b 20 74 6f 20 74 68 65 20 74 61 72 67 65 74 73 2e 00 53 70 65 63 | of.the.link.to.the.targets..Spec |
| 11e480 | 69 66 69 65 73 20 74 68 65 20 61 76 61 69 6c 61 62 6c 65 20 3a 61 62 62 72 3a 60 4d 41 43 20 28 | ifies.the.available.:abbr:`MAC.( |
| 11e4a0 | 4d 65 73 73 61 67 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 43 6f 64 65 29 60 20 61 6c | Message.Authentication.Code)`.al |
| 11e4c0 | 67 6f 72 69 74 68 6d 73 2e 20 54 68 65 20 4d 41 43 20 61 6c 67 6f 72 69 74 68 6d 20 69 73 20 75 | gorithms..The.MAC.algorithm.is.u |
| 11e4e0 | 73 65 64 20 69 6e 20 70 72 6f 74 6f 63 6f 6c 20 76 65 72 73 69 6f 6e 20 32 20 66 6f 72 20 64 61 | sed.in.protocol.version.2.for.da |
| 11e500 | 74 61 20 69 6e 74 65 67 72 69 74 79 20 70 72 6f 74 65 63 74 69 6f 6e 2e 20 4d 75 6c 74 69 70 6c | ta.integrity.protection..Multipl |
| 11e520 | 65 20 61 6c 67 6f 72 69 74 68 6d 73 20 63 61 6e 20 62 65 20 70 72 6f 76 69 64 65 64 20 62 79 20 | e.algorithms.can.be.provided.by. |
| 11e540 | 75 73 69 6e 67 20 6d 75 6c 74 69 70 6c 65 20 63 6f 6d 6d 61 6e 64 73 2c 20 64 65 66 69 6e 69 6e | using.multiple.commands,.definin |
| 11e560 | 67 20 6f 6e 65 20 61 6c 67 6f 72 69 74 68 6d 20 70 65 72 20 63 6f 6d 6d 61 6e 64 2e 00 53 70 65 | g.one.algorithm.per.command..Spe |
| 11e580 | 63 69 66 69 65 73 20 74 68 65 20 61 76 61 69 6c 61 62 6c 65 20 3a 61 62 62 72 3a 60 4d 41 43 20 | cifies.the.available.:abbr:`MAC. |
| 11e5a0 | 28 4d 65 73 73 61 67 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 43 6f 64 65 29 60 20 61 | (Message.Authentication.Code)`.a |
| 11e5c0 | 6c 67 6f 72 69 74 68 6d 73 2e 20 54 68 65 20 4d 41 43 20 61 6c 67 6f 72 69 74 68 6d 20 69 73 20 | lgorithms..The.MAC.algorithm.is. |
| 11e5e0 | 75 73 65 64 20 69 6e 20 70 72 6f 74 6f 63 6f 6c 20 76 65 72 73 69 6f 6e 20 32 20 66 6f 72 20 64 | used.in.protocol.version.2.for.d |
| 11e600 | 61 74 61 20 69 6e 74 65 67 72 69 74 79 20 70 72 6f 74 65 63 74 69 6f 6e 2e 20 4d 75 6c 74 69 70 | ata.integrity.protection..Multip |
| 11e620 | 6c 65 20 61 6c 67 6f 72 69 74 68 6d 73 20 63 61 6e 20 62 65 20 70 72 6f 76 69 64 65 64 2e 00 53 | le.algorithms.can.be.provided..S |
| 11e640 | 70 65 63 69 66 69 65 73 20 74 68 65 20 62 61 73 65 20 44 4e 20 75 6e 64 65 72 20 77 68 69 63 68 | pecifies.the.base.DN.under.which |
| 11e660 | 20 74 68 65 20 75 73 65 72 73 20 61 72 65 20 6c 6f 63 61 74 65 64 2e 00 53 70 65 63 69 66 69 65 | .the.users.are.located..Specifie |
| 11e680 | 73 20 74 68 65 20 63 6c 69 65 6e 74 20 63 6f 6e 6e 65 63 74 69 76 69 74 79 20 6d 6f 64 65 2e 00 | s.the.client.connectivity.mode.. |
| 11e6a0 | 53 70 65 63 69 66 69 65 73 20 74 68 65 20 63 6c 69 65 6e 74 73 20 73 75 62 6e 65 74 20 6d 61 73 | Specifies.the.clients.subnet.mas |
| 11e6c0 | 6b 20 61 73 20 70 65 72 20 52 46 43 20 39 35 30 2e 20 49 66 20 75 6e 73 65 74 2c 20 73 75 62 6e | k.as.per.RFC.950..If.unset,.subn |
| 11e6e0 | 65 74 20 64 65 63 6c 61 72 61 74 69 6f 6e 20 69 73 20 75 73 65 64 2e 00 53 70 65 63 69 66 69 65 | et.declaration.is.used..Specifie |
| 11e700 | 73 20 74 68 65 20 68 6f 6c 64 69 6e 67 20 74 69 6d 65 20 66 6f 72 20 4e 48 52 50 20 52 65 67 69 | s.the.holding.time.for.NHRP.Regi |
| 11e720 | 73 74 72 61 74 69 6f 6e 20 52 65 71 75 65 73 74 73 20 61 6e 64 20 52 65 73 6f 6c 75 74 69 6f 6e | stration.Requests.and.Resolution |
| 11e740 | 20 52 65 70 6c 69 65 73 20 73 65 6e 74 20 66 72 6f 6d 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 | .Replies.sent.from.this.interfac |
| 11e760 | 65 20 6f 72 20 73 68 6f 72 74 63 75 74 2d 74 61 72 67 65 74 2e 20 54 68 65 20 68 6f 6c 64 74 69 | e.or.shortcut-target..The.holdti |
| 11e780 | 6d 65 20 69 73 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 73 65 63 6f 6e 64 73 20 61 6e 64 20 64 | me.is.specified.in.seconds.and.d |
| 11e7a0 | 65 66 61 75 6c 74 73 20 74 6f 20 74 77 6f 20 68 6f 75 72 73 2e 00 53 70 65 63 69 66 69 65 73 20 | efaults.to.two.hours..Specifies. |
| 11e7c0 | 74 68 65 20 69 6e 74 65 72 76 61 6c 20 61 74 20 77 68 69 63 68 20 4e 65 74 66 6c 6f 77 20 64 61 | the.interval.at.which.Netflow.da |
| 11e7e0 | 74 61 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 74 6f 20 61 20 63 6f 6c 6c 65 63 74 6f 72 2e 20 | ta.will.be.sent.to.a.collector.. |
| 11e800 | 41 73 20 70 65 72 20 64 65 66 61 75 6c 74 2c 20 4e 65 74 66 6c 6f 77 20 64 61 74 61 20 77 69 6c | As.per.default,.Netflow.data.wil |
| 11e820 | 6c 20 62 65 20 73 65 6e 74 20 65 76 65 72 79 20 36 30 20 73 65 63 6f 6e 64 73 2e 00 53 70 65 63 | l.be.sent.every.60.seconds..Spec |
| 11e840 | 69 66 69 65 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 73 69 7a 65 20 6f 66 20 61 20 72 65 70 6c | ifies.the.maximum.size.of.a.repl |
| 11e860 | 79 20 62 6f 64 79 20 69 6e 20 4b 42 2c 20 75 73 65 64 20 74 6f 20 6c 69 6d 69 74 20 74 68 65 20 | y.body.in.KB,.used.to.limit.the. |
| 11e880 | 72 65 70 6c 79 20 73 69 7a 65 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 6d 69 6e 69 6d 75 | reply.size..Specifies.the.minimu |
| 11e8a0 | 6d 20 6e 75 6d 62 65 72 20 6f 66 20 6c 69 6e 6b 73 20 74 68 61 74 20 6d 75 73 74 20 62 65 20 61 | m.number.of.links.that.must.be.a |
| 11e8c0 | 63 74 69 76 65 20 62 65 66 6f 72 65 20 61 73 73 65 72 74 69 6e 67 20 63 61 72 72 69 65 72 2e 20 | ctive.before.asserting.carrier.. |
| 11e8e0 | 49 74 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 74 68 65 20 43 69 73 63 6f 20 45 74 68 65 72 | It.is.similar.to.the.Cisco.Ether |
| 11e900 | 43 68 61 6e 6e 65 6c 20 6d 69 6e 2d 6c 69 6e 6b 73 20 66 65 61 74 75 72 65 2e 20 54 68 69 73 20 | Channel.min-links.feature..This. |
| 11e920 | 61 6c 6c 6f 77 73 20 73 65 74 74 69 6e 67 20 74 68 65 20 6d 69 6e 69 6d 75 6d 20 6e 75 6d 62 65 | allows.setting.the.minimum.numbe |
| 11e940 | 72 20 6f 66 20 6d 65 6d 62 65 72 20 70 6f 72 74 73 20 74 68 61 74 20 6d 75 73 74 20 62 65 20 75 | r.of.member.ports.that.must.be.u |
| 11e960 | 70 20 28 6c 69 6e 6b 2d 75 70 20 73 74 61 74 65 29 20 62 65 66 6f 72 65 20 6d 61 72 6b 69 6e 67 | p.(link-up.state).before.marking |
| 11e980 | 20 74 68 65 20 62 6f 6e 64 20 64 65 76 69 63 65 20 61 73 20 75 70 20 28 63 61 72 72 69 65 72 20 | .the.bond.device.as.up.(carrier. |
| 11e9a0 | 6f 6e 29 2e 20 54 68 69 73 20 69 73 20 75 73 65 66 75 6c 20 66 6f 72 20 73 69 74 75 61 74 69 6f | on)..This.is.useful.for.situatio |
| 11e9c0 | 6e 73 20 77 68 65 72 65 20 68 69 67 68 65 72 20 6c 65 76 65 6c 20 73 65 72 76 69 63 65 73 20 73 | ns.where.higher.level.services.s |
| 11e9e0 | 75 63 68 20 61 73 20 63 6c 75 73 74 65 72 69 6e 67 20 77 61 6e 74 20 74 6f 20 65 6e 73 75 72 65 | uch.as.clustering.want.to.ensure |
| 11ea00 | 20 61 20 6d 69 6e 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 6c 6f 77 20 62 61 6e 64 77 69 64 | .a.minimum.number.of.low.bandwid |
| 11ea20 | 74 68 20 6c 69 6e 6b 73 20 61 72 65 20 61 63 74 69 76 65 20 62 65 66 6f 72 65 20 73 77 69 74 63 | th.links.are.active.before.switc |
| 11ea40 | 68 6f 76 65 72 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 65 | hover..Specifies.the.name.of.the |
| 11ea60 | 20 44 4e 20 61 74 74 72 69 62 75 74 65 20 74 68 61 74 20 63 6f 6e 74 61 69 6e 73 20 74 68 65 20 | .DN.attribute.that.contains.the. |
| 11ea80 | 75 73 65 72 6e 61 6d 65 2f 6c 6f 67 69 6e 2e 20 43 6f 6d 62 69 6e 65 64 20 77 69 74 68 20 74 68 | username/login..Combined.with.th |
| 11eaa0 | 65 20 62 61 73 65 20 44 4e 20 74 6f 20 63 6f 6e 73 74 72 75 63 74 20 74 68 65 20 75 73 65 72 73 | e.base.DN.to.construct.the.users |
| 11eac0 | 20 44 4e 20 77 68 65 6e 20 6e 6f 20 73 65 61 72 63 68 20 66 69 6c 74 65 72 20 69 73 20 73 70 65 | .DN.when.no.search.filter.is.spe |
| 11eae0 | 63 69 66 69 65 64 20 28 60 66 69 6c 74 65 72 2d 65 78 70 72 65 73 73 69 6f 6e 60 29 2e 00 53 70 | cified.(`filter-expression`)..Sp |
| 11eb00 | 65 63 69 66 69 65 73 20 74 68 65 20 70 65 65 72 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 | ecifies.the.peer.interface.ident |
| 11eb20 | 69 66 69 65 72 20 66 6f 72 20 49 50 76 36 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 66 | ifier.for.IPv6..The.default.is.f |
| 11eb40 | 69 78 65 64 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 70 68 79 73 69 63 61 6c 20 60 3c 65 | ixed..Specifies.the.physical.`<e |
| 11eb60 | 74 68 58 3e 60 20 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 20 61 73 73 6f 63 69 61 | thX>`.Ethernet.interface.associa |
| 11eb80 | 74 65 64 20 77 69 74 68 20 61 20 50 73 65 75 64 6f 20 45 74 68 65 72 6e 65 74 20 60 3c 69 6e 74 | ted.with.a.Pseudo.Ethernet.`<int |
| 11eba0 | 65 72 66 61 63 65 3e 60 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 70 6f 72 74 20 60 3c 70 | erface>`..Specifies.the.port.`<p |
| 11ebc0 | 6f 72 74 3e 60 20 74 68 61 74 20 74 68 65 20 53 53 54 50 20 70 6f 72 74 20 77 69 6c 6c 20 6c 69 | ort>`.that.the.SSTP.port.will.li |
| 11ebe0 | 73 74 65 6e 20 6f 6e 20 28 64 65 66 61 75 6c 74 20 34 34 33 29 2e 00 53 70 65 63 69 66 69 65 73 | sten.on.(default.443)..Specifies |
| 11ec00 | 20 74 68 65 20 70 72 6f 74 65 63 74 69 6f 6e 20 73 63 6f 70 65 20 28 61 6b 61 20 72 65 61 6c 6d | .the.protection.scope.(aka.realm |
| 11ec20 | 20 6e 61 6d 65 29 20 77 68 69 63 68 20 69 73 20 74 6f 20 62 65 20 72 65 70 6f 72 74 65 64 20 74 | .name).which.is.to.be.reported.t |
| 11ec40 | 6f 20 74 68 65 20 63 6c 69 65 6e 74 20 66 6f 72 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 74 | o.the.client.for.the.authenticat |
| 11ec60 | 69 6f 6e 20 73 63 68 65 6d 65 2e 20 49 74 20 69 73 20 63 6f 6d 6d 6f 6e 6c 79 20 70 61 72 74 20 | ion.scheme..It.is.commonly.part. |
| 11ec80 | 6f 66 20 74 68 65 20 74 65 78 74 20 74 68 65 20 75 73 65 72 20 77 69 6c 6c 20 73 65 65 20 77 68 | of.the.text.the.user.will.see.wh |
| 11eca0 | 65 6e 20 70 72 6f 6d 70 74 65 64 20 66 6f 72 20 74 68 65 69 72 20 75 73 65 72 6e 61 6d 65 20 61 | en.prompted.for.their.username.a |
| 11ecc0 | 6e 64 20 70 61 73 73 77 6f 72 64 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 72 6f 75 74 65 | nd.password..Specifies.the.route |
| 11ece0 | 20 64 69 73 74 69 6e 67 75 69 73 68 65 72 20 74 6f 20 62 65 20 61 64 64 65 64 20 74 6f 20 61 20 | .distinguisher.to.be.added.to.a. |
| 11ed00 | 72 6f 75 74 65 20 65 78 70 6f 72 74 65 64 20 66 72 6f 6d 20 74 68 65 20 63 75 72 72 65 6e 74 20 | route.exported.from.the.current. |
| 11ed20 | 75 6e 69 63 61 73 74 20 56 52 46 20 74 6f 20 56 50 4e 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 | unicast.VRF.to.VPN..Specifies.th |
| 11ed40 | 65 20 72 6f 75 74 65 2d 74 61 72 67 65 74 20 6c 69 73 74 20 74 6f 20 62 65 20 61 74 74 61 63 68 | e.route-target.list.to.be.attach |
| 11ed60 | 65 64 20 74 6f 20 61 20 72 6f 75 74 65 20 28 65 78 70 6f 72 74 29 20 6f 72 20 74 68 65 20 72 6f | ed.to.a.route.(export).or.the.ro |
| 11ed80 | 75 74 65 2d 74 61 72 67 65 74 20 6c 69 73 74 20 74 6f 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 | ute-target.list.to.match.against |
| 11eda0 | 20 28 69 6d 70 6f 72 74 29 20 77 68 65 6e 20 65 78 70 6f 72 74 69 6e 67 2f 69 6d 70 6f 72 74 69 | .(import).when.exporting/importi |
| 11edc0 | 6e 67 20 62 65 74 77 65 65 6e 20 74 68 65 20 63 75 72 72 65 6e 74 20 75 6e 69 63 61 73 74 20 56 | ng.between.the.current.unicast.V |
| 11ede0 | 52 46 20 61 6e 64 20 56 50 4e 2e 54 68 65 20 52 54 4c 49 53 54 20 69 73 20 61 20 73 70 61 63 65 | RF.and.VPN.The.RTLIST.is.a.space |
| 11ee00 | 2d 73 65 70 61 72 61 74 65 64 20 6c 69 73 74 20 6f 66 20 72 6f 75 74 65 2d 74 61 72 67 65 74 73 | -separated.list.of.route-targets |
| 11ee20 | 2c 20 77 68 69 63 68 20 61 72 65 20 42 47 50 20 65 78 74 65 6e 64 65 64 20 63 6f 6d 6d 75 6e 69 | ,.which.are.BGP.extended.communi |
| 11ee40 | 74 79 20 76 61 6c 75 65 73 20 61 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 45 78 74 65 6e 64 | ty.values.as.described.in.Extend |
| 11ee60 | 65 64 20 43 6f 6d 6d 75 6e 69 74 69 65 73 20 41 74 74 72 69 62 75 74 65 2e 00 53 70 65 63 69 66 | ed.Communities.Attribute..Specif |
| 11ee80 | 69 65 73 20 74 68 65 20 73 69 67 6e 61 74 75 72 65 20 61 6c 67 6f 72 69 74 68 6d 73 20 74 68 61 | ies.the.signature.algorithms.tha |
| 11eea0 | 74 20 77 69 6c 6c 20 62 65 20 61 63 63 65 70 74 65 64 20 66 6f 72 20 70 75 62 6c 69 63 20 6b 65 | t.will.be.accepted.for.public.ke |
| 11eec0 | 79 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 76 | y.authentication.Specifies.the.v |
| 11eee0 | 65 6e 64 6f 72 20 64 69 63 74 69 6f 6e 61 72 79 2c 20 54 68 69 73 20 64 69 63 74 69 6f 6e 61 72 | endor.dictionary,.This.dictionar |
| 11ef00 | 79 20 6e 65 65 64 73 20 74 6f 20 62 65 20 70 72 65 73 65 6e 74 20 69 6e 20 2f 75 73 72 2f 73 68 | y.needs.to.be.present.in./usr/sh |
| 11ef20 | 61 72 65 2f 61 63 63 65 6c 2d 70 70 70 2f 72 61 64 69 75 73 2e 00 53 70 65 63 69 66 69 65 73 20 | are/accel-ppp/radius..Specifies. |
| 11ef40 | 74 68 65 20 76 65 6e 64 6f 72 20 64 69 63 74 69 6f 6e 61 72 79 2c 20 64 69 63 74 69 6f 6e 61 72 | the.vendor.dictionary,.dictionar |
| 11ef60 | 79 20 6e 65 65 64 73 20 74 6f 20 62 65 20 69 6e 20 2f 75 73 72 2f 73 68 61 72 65 2f 61 63 63 65 | y.needs.to.be.in./usr/share/acce |
| 11ef80 | 6c 2d 70 70 70 2f 72 61 64 69 75 73 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 76 65 6e 64 | l-ppp/radius..Specifies.the.vend |
| 11efa0 | 6f 72 20 64 69 63 74 69 6f 6e 61 72 79 2e 20 54 68 69 73 20 64 69 63 74 69 6f 6e 61 72 79 20 6e | or.dictionary..This.dictionary.n |
| 11efc0 | 65 65 64 73 20 74 6f 20 62 65 20 70 72 65 73 65 6e 74 20 69 6e 20 2f 75 73 72 2f 73 68 61 72 65 | eeds.to.be.present.in./usr/share |
| 11efe0 | 2f 61 63 63 65 6c 2d 70 70 70 2f 72 61 64 69 75 73 2e 00 53 70 65 63 69 66 69 65 73 20 74 69 6d | /accel-ppp/radius..Specifies.tim |
| 11f000 | 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 6f 20 77 61 69 74 20 66 6f 72 20 61 6e 79 20 | eout.in.seconds.to.wait.for.any. |
| 11f020 | 70 65 65 72 20 61 63 74 69 76 69 74 79 2e 20 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 | peer.activity..If.this.option.is |
| 11f040 | 20 73 70 65 63 69 66 69 65 64 20 69 74 20 74 75 72 6e 73 20 6f 6e 20 61 64 61 70 74 69 76 65 20 | .specified.it.turns.on.adaptive. |
| 11f060 | 6c 63 70 20 65 63 68 6f 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 61 6e 64 20 22 6c 63 70 2d | lcp.echo.functionality.and."lcp- |
| 11f080 | 65 63 68 6f 2d 66 61 69 6c 75 72 65 22 20 69 73 20 6e 6f 74 20 75 73 65 64 2e 20 44 65 66 61 75 | echo-failure".is.not.used..Defau |
| 11f0a0 | 6c 74 20 76 61 6c 75 65 20 69 73 20 2a 2a 30 2a 2a 2e 00 53 70 65 63 69 66 69 65 73 20 74 69 6d | lt.value.is.**0**..Specifies.tim |
| 11f0c0 | 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 6f 20 77 61 69 74 20 66 6f 72 20 61 6e 79 20 | eout.in.seconds.to.wait.for.any. |
| 11f0e0 | 70 65 65 72 20 61 63 74 69 76 69 74 79 2e 20 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 73 70 | peer.activity..If.this.option.sp |
| 11f100 | 65 63 69 66 69 65 64 20 69 74 20 74 75 72 6e 73 20 6f 6e 20 61 64 61 70 74 69 76 65 20 6c 63 70 | ecified.it.turns.on.adaptive.lcp |
| 11f120 | 20 65 63 68 6f 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 61 6e 64 20 22 6c 63 70 2d 65 63 68 | .echo.functionality.and."lcp-ech |
| 11f140 | 6f 2d 66 61 69 6c 75 72 65 22 20 69 73 20 6e 6f 74 20 75 73 65 64 2e 00 53 70 65 63 69 66 69 65 | o-failure".is.not.used..Specifie |
| 11f160 | 73 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 6f 20 77 61 69 74 20 66 6f 72 | s.timeout.in.seconds.to.wait.for |
| 11f180 | 20 61 6e 79 20 70 65 65 72 20 61 63 74 69 76 69 74 79 2e 20 49 66 20 74 68 69 73 20 6f 70 74 69 | .any.peer.activity..If.this.opti |
| 11f1a0 | 6f 6e 20 73 70 65 63 69 66 69 65 64 20 69 74 20 74 75 72 6e 73 20 6f 6e 20 61 64 61 70 74 69 76 | on.specified.it.turns.on.adaptiv |
| 11f1c0 | 65 20 6c 63 70 20 65 63 68 6f 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 61 6e 64 20 22 6c 63 | e.lcp.echo.functionality.and."lc |
| 11f1e0 | 70 2d 65 63 68 6f 2d 66 61 69 6c 75 72 65 22 20 69 73 20 6e 6f 74 20 75 73 65 64 2e 20 44 65 66 | p-echo-failure".is.not.used..Def |
| 11f200 | 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 2a 2a 30 2a 2a 2e 00 53 70 65 63 69 66 69 65 73 20 77 | ault.value.is.**0**..Specifies.w |
| 11f220 | 68 65 74 68 65 72 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 63 6f 6e 74 72 6f 6c 20 70 6c 61 6e 65 | hether.an.external.control.plane |
| 11f240 | 20 28 65 2e 67 2e 20 42 47 50 20 4c 32 56 50 4e 2f 45 56 50 4e 29 20 6f 72 20 74 68 65 20 69 6e | .(e.g..BGP.L2VPN/EVPN).or.the.in |
| 11f260 | 74 65 72 6e 61 6c 20 46 44 42 20 73 68 6f 75 6c 64 20 62 65 20 75 73 65 64 2e 00 53 70 65 63 69 | ternal.FDB.should.be.used..Speci |
| 11f280 | 66 69 65 73 20 77 68 65 74 68 65 72 20 74 68 65 20 56 58 4c 41 4e 20 64 65 76 69 63 65 20 69 73 | fies.whether.the.VXLAN.device.is |
| 11f2a0 | 20 63 61 70 61 62 6c 65 20 6f 66 20 76 6e 69 20 66 69 6c 74 65 72 69 6e 67 2e 00 53 70 65 63 69 | .capable.of.vni.filtering..Speci |
| 11f2c0 | 66 69 65 73 20 77 68 65 74 68 65 72 20 74 68 69 73 20 4e 53 53 41 20 62 6f 72 64 65 72 20 72 6f | fies.whether.this.NSSA.border.ro |
| 11f2e0 | 75 74 65 72 20 77 69 6c 6c 20 75 6e 63 6f 6e 64 69 74 69 6f 6e 61 6c 6c 79 20 74 72 61 6e 73 6c | uter.will.unconditionally.transl |
| 11f300 | 61 74 65 20 54 79 70 65 2d 37 20 4c 53 41 73 20 69 6e 74 6f 20 54 79 70 65 2d 35 20 4c 53 41 73 | ate.Type-7.LSAs.into.Type-5.LSAs |
| 11f320 | 2e 20 57 68 65 6e 20 72 6f 6c 65 20 69 73 20 41 6c 77 61 79 73 2c 20 54 79 70 65 2d 37 20 4c 53 | ..When.role.is.Always,.Type-7.LS |
| 11f340 | 41 73 20 61 72 65 20 74 72 61 6e 73 6c 61 74 65 64 20 69 6e 74 6f 20 54 79 70 65 2d 35 20 4c 53 | As.are.translated.into.Type-5.LS |
| 11f360 | 41 73 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 74 72 61 6e 73 6c 61 74 6f 72 20 | As.regardless.of.the.translator. |
| 11f380 | 73 74 61 74 65 20 6f 66 20 6f 74 68 65 72 20 4e 53 53 41 20 62 6f 72 64 65 72 20 72 6f 75 74 65 | state.of.other.NSSA.border.route |
| 11f3a0 | 72 73 2e 20 57 68 65 6e 20 72 6f 6c 65 20 69 73 20 43 61 6e 64 69 64 61 74 65 2c 20 74 68 69 73 | rs..When.role.is.Candidate,.this |
| 11f3c0 | 20 72 6f 75 74 65 72 20 70 61 72 74 69 63 69 70 61 74 65 73 20 69 6e 20 74 68 65 20 74 72 61 6e | .router.participates.in.the.tran |
| 11f3e0 | 73 6c 61 74 6f 72 20 65 6c 65 63 74 69 6f 6e 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 69 66 20 | slator.election.to.determine.if. |
| 11f400 | 69 74 20 77 69 6c 6c 20 70 65 72 66 6f 72 6d 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 73 | it.will.perform.the.translations |
| 11f420 | 20 64 75 74 69 65 73 2e 20 57 68 65 6e 20 72 6f 6c 65 20 69 73 20 4e 65 76 65 72 2c 20 74 68 69 | .duties..When.role.is.Never,.thi |
| 11f440 | 73 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 6e 65 76 65 72 20 74 72 61 6e 73 6c 61 74 65 20 54 79 | s.router.will.never.translate.Ty |
| 11f460 | 70 65 2d 37 20 4c 53 41 73 20 69 6e 74 6f 20 54 79 70 65 2d 35 20 4c 53 41 73 2e 00 53 70 65 63 | pe-7.LSAs.into.Type-5.LSAs..Spec |
| 11f480 | 69 66 69 65 73 20 77 68 69 63 68 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 61 74 74 72 69 62 | ifies.which.RADIUS.server.attrib |
| 11f4a0 | 75 74 65 20 63 6f 6e 74 61 69 6e 73 20 74 68 65 20 72 61 74 65 20 6c 69 6d 69 74 20 69 6e 66 6f | ute.contains.the.rate.limit.info |
| 11f4c0 | 72 6d 61 74 69 6f 6e 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 61 74 74 72 69 62 75 74 65 20 69 | rmation..The.default.attribute.i |
| 11f4e0 | 73 20 60 46 69 6c 74 65 72 2d 49 64 60 2e 00 53 70 65 63 69 66 69 65 73 20 77 68 69 63 68 20 52 | s.`Filter-Id`..Specifies.which.R |
| 11f500 | 41 44 49 55 53 20 73 65 72 76 65 72 20 61 74 74 72 69 62 75 74 65 20 63 6f 6e 74 61 69 6e 73 20 | ADIUS.server.attribute.contains. |
| 11f520 | 74 68 65 20 72 61 74 65 20 6c 69 6d 69 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 20 54 68 65 20 | the.rate.limit.information..The. |
| 11f540 | 64 65 66 61 75 6c 74 20 61 74 74 72 69 62 75 74 65 20 69 73 20 60 60 46 69 6c 74 65 72 2d 49 64 | default.attribute.is.``Filter-Id |
| 11f560 | 60 60 2e 00 53 70 65 63 69 66 79 20 44 48 43 50 76 34 20 72 65 6c 61 79 20 49 50 20 61 64 64 72 | ``..Specify.DHCPv4.relay.IP.addr |
| 11f580 | 65 73 73 20 74 6f 20 70 61 73 73 20 72 65 71 75 65 73 74 73 20 74 6f 2e 20 49 66 20 73 70 65 63 | ess.to.pass.requests.to..If.spec |
| 11f5a0 | 69 66 69 65 64 20 67 69 61 64 64 72 20 69 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 00 53 70 65 | ified.giaddr.is.also.needed..Spe |
| 11f5c0 | 63 69 66 79 20 49 50 76 34 20 61 6e 64 2f 6f 72 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 73 20 74 | cify.IPv4.and/or.IPv6.networks.t |
| 11f5e0 | 68 61 74 20 73 68 6f 75 6c 64 20 62 65 20 70 72 6f 74 65 63 74 65 64 2f 6d 6f 6e 69 74 6f 72 65 | hat.should.be.protected/monitore |
| 11f600 | 64 2e 00 53 70 65 63 69 66 79 20 49 50 76 34 20 61 6e 64 2f 6f 72 20 49 50 76 36 20 6e 65 74 77 | d..Specify.IPv4.and/or.IPv6.netw |
| 11f620 | 6f 72 6b 73 20 77 68 69 63 68 20 61 72 65 20 67 6f 69 6e 67 20 74 6f 20 62 65 20 65 78 63 6c 75 | orks.which.are.going.to.be.exclu |
| 11f640 | 64 65 64 2e 00 53 70 65 63 69 66 79 20 49 50 76 34 2f 49 50 76 36 20 6c 69 73 74 65 6e 20 61 64 | ded..Specify.IPv4/IPv6.listen.ad |
| 11f660 | 64 72 65 73 73 20 6f 66 20 53 53 48 20 73 65 72 76 65 72 2e 20 4d 75 6c 74 69 70 6c 65 20 61 64 | dress.of.SSH.server..Multiple.ad |
| 11f680 | 64 72 65 73 73 65 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 2e 00 53 70 65 63 69 66 79 20 | dresses.can.be.defined..Specify. |
| 11f6a0 | 61 20 3a 61 62 62 72 3a 60 53 49 50 20 28 53 65 73 73 69 6f 6e 20 49 6e 69 74 69 61 74 69 6f 6e | a.:abbr:`SIP.(Session.Initiation |
| 11f6c0 | 20 50 72 6f 74 6f 63 6f 6c 29 60 20 73 65 72 76 65 72 20 62 79 20 49 50 76 36 20 61 64 64 72 65 | .Protocol)`.server.by.IPv6.addre |
| 11f6e0 | 73 73 20 6f 66 20 46 75 6c 6c 79 20 51 75 61 6c 69 66 69 65 64 20 44 6f 6d 61 69 6e 20 4e 61 6d | ss.of.Fully.Qualified.Domain.Nam |
| 11f700 | 65 20 66 6f 72 20 61 6c 6c 20 44 48 43 50 76 36 20 63 6c 69 65 6e 74 73 2e 00 53 70 65 63 69 66 | e.for.all.DHCPv6.clients..Specif |
| 11f720 | 79 20 61 20 46 75 6c 6c 79 20 51 75 61 6c 69 66 69 65 64 20 44 6f 6d 61 69 6e 20 4e 61 6d 65 20 | y.a.Fully.Qualified.Domain.Name. |
| 11f740 | 61 73 20 73 6f 75 72 63 65 2f 64 65 73 74 69 6e 61 74 69 6f 6e 20 6d 61 74 63 68 65 72 2e 20 45 | as.source/destination.matcher..E |
| 11f760 | 6e 73 75 72 65 20 72 6f 75 74 65 72 20 69 73 20 61 62 6c 65 20 74 6f 20 72 65 73 6f 6c 76 65 20 | nsure.router.is.able.to.resolve. |
| 11f780 | 73 75 63 68 20 64 6e 73 20 71 75 65 72 79 2e 00 53 70 65 63 69 66 79 20 61 20 46 75 6c 6c 79 20 | such.dns.query..Specify.a.Fully. |
| 11f7a0 | 51 75 61 6c 69 66 69 65 64 20 44 6f 6d 61 69 6e 20 4e 61 6d 65 20 61 73 20 73 6f 75 72 63 65 2f | Qualified.Domain.Name.as.source/ |
| 11f7c0 | 64 65 73 74 69 6e 61 74 69 6f 6e 20 74 6f 20 6d 61 74 63 68 2e 20 45 6e 73 75 72 65 20 74 68 61 | destination.to.match..Ensure.tha |
| 11f7e0 | 74 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 61 62 6c 65 20 74 6f 20 72 65 73 6f 6c 76 65 20 | t.the.router.is.able.to.resolve. |
| 11f800 | 74 68 69 73 20 64 6e 73 20 71 75 65 72 79 2e 00 53 70 65 63 69 66 79 20 61 20 4e 49 53 20 73 65 | this.dns.query..Specify.a.NIS.se |
| 11f820 | 72 76 65 72 20 61 64 64 72 65 73 73 20 66 6f 72 20 44 48 43 50 76 36 20 63 6c 69 65 6e 74 73 2e | rver.address.for.DHCPv6.clients. |
| 11f840 | 00 53 70 65 63 69 66 79 20 61 20 4e 49 53 2b 20 73 65 72 76 65 72 20 61 64 64 72 65 73 73 20 66 | .Specify.a.NIS+.server.address.f |
| 11f860 | 6f 72 20 44 48 43 50 76 36 20 63 6c 69 65 6e 74 73 2e 00 53 70 65 63 69 66 79 20 61 20 72 61 6e | or.DHCPv6.clients..Specify.a.ran |
| 11f880 | 67 65 20 6f 66 20 67 72 6f 75 70 20 61 64 64 72 65 73 73 65 73 20 76 69 61 20 61 20 70 72 65 66 | ge.of.group.addresses.via.a.pref |
| 11f8a0 | 69 78 2d 6c 69 73 74 20 74 68 61 74 20 66 6f 72 63 65 73 20 50 49 4d 20 74 6f 20 6e 65 76 65 72 | ix-list.that.forces.PIM.to.never |
| 11f8c0 | 20 64 6f 20 3a 61 62 62 72 3a 60 53 53 4d 20 28 53 6f 75 72 63 65 2d 53 70 65 63 69 66 69 63 20 | .do.:abbr:`SSM.(Source-Specific. |
| 11f8e0 | 4d 75 6c 74 69 63 61 73 74 29 60 20 6f 76 65 72 2e 00 53 70 65 63 69 66 79 20 61 62 73 6f 6c 75 | Multicast)`.over..Specify.absolu |
| 11f900 | 74 65 20 60 3c 70 61 74 68 3e 60 20 74 6f 20 73 63 72 69 70 74 20 77 68 69 63 68 20 77 69 6c 6c | te.`<path>`.to.script.which.will |
| 11f920 | 20 62 65 20 72 75 6e 20 77 68 65 6e 20 60 3c 74 61 73 6b 3e 60 20 69 73 20 65 78 65 63 75 74 65 | .be.run.when.`<task>`.is.execute |
| 11f940 | 64 2e 00 53 70 65 63 69 66 79 20 61 6c 6c 6f 77 65 64 20 3a 61 62 62 72 3a 60 4b 45 58 20 28 4b | d..Specify.allowed.:abbr:`KEX.(K |
| 11f960 | 65 79 20 45 78 63 68 61 6e 67 65 29 60 20 61 6c 67 6f 72 69 74 68 6d 73 2e 00 53 70 65 63 69 66 | ey.Exchange)`.algorithms..Specif |
| 11f980 | 79 20 61 6e 20 61 6c 74 65 72 6e 61 74 65 20 41 53 20 66 6f 72 20 74 68 69 73 20 42 47 50 20 70 | y.an.alternate.AS.for.this.BGP.p |
| 11f9a0 | 72 6f 63 65 73 73 20 77 68 65 6e 20 69 6e 74 65 72 61 63 74 69 6e 67 20 77 69 74 68 20 74 68 65 | rocess.when.interacting.with.the |
| 11f9c0 | 20 73 70 65 63 69 66 69 65 64 20 70 65 65 72 20 6f 72 20 70 65 65 72 20 67 72 6f 75 70 2e 20 57 | .specified.peer.or.peer.group..W |
| 11f9e0 | 69 74 68 20 6e 6f 20 6d 6f 64 69 66 69 65 72 73 2c 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 | ith.no.modifiers,.the.specified. |
| 11fa00 | 6c 6f 63 61 6c 2d 61 73 20 69 73 20 70 72 65 70 65 6e 64 65 64 20 74 6f 20 74 68 65 20 72 65 63 | local-as.is.prepended.to.the.rec |
| 11fa20 | 65 69 76 65 64 20 41 53 5f 50 41 54 48 20 77 68 65 6e 20 72 65 63 65 69 76 69 6e 67 20 72 6f 75 | eived.AS_PATH.when.receiving.rou |
| 11fa40 | 74 69 6e 67 20 75 70 64 61 74 65 73 20 66 72 6f 6d 20 74 68 65 20 70 65 65 72 2c 20 61 6e 64 20 | ting.updates.from.the.peer,.and. |
| 11fa60 | 70 72 65 70 65 6e 64 65 64 20 74 6f 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 20 41 53 5f 50 41 54 | prepended.to.the.outgoing.AS_PAT |
| 11fa80 | 48 20 28 61 66 74 65 72 20 74 68 65 20 70 72 6f 63 65 73 73 20 6c 6f 63 61 6c 20 41 53 29 20 77 | H.(after.the.process.local.AS).w |
| 11faa0 | 68 65 6e 20 74 72 61 6e 73 6d 69 74 74 69 6e 67 20 6c 6f 63 61 6c 20 72 6f 75 74 65 73 20 74 6f | hen.transmitting.local.routes.to |
| 11fac0 | 20 74 68 65 20 70 65 65 72 2e 00 53 70 65 63 69 66 79 20 61 6e 20 61 6c 74 65 72 6e 61 74 65 20 | .the.peer..Specify.an.alternate. |
| 11fae0 | 54 43 50 20 70 6f 72 74 20 77 68 65 72 65 20 74 68 65 20 6c 64 61 70 20 73 65 72 76 65 72 20 69 | TCP.port.where.the.ldap.server.i |
| 11fb00 | 73 20 6c 69 73 74 65 6e 69 6e 67 20 69 66 20 6f 74 68 65 72 20 74 68 61 6e 20 74 68 65 20 64 65 | s.listening.if.other.than.the.de |
| 11fb20 | 66 61 75 6c 74 20 4c 44 41 50 20 70 6f 72 74 20 33 38 39 2e 00 53 70 65 63 69 66 79 20 66 61 63 | fault.LDAP.port.389..Specify.fac |
| 11fb40 | 69 6c 69 74 79 20 61 6e 64 20 6c 65 76 65 6c 20 66 6f 72 20 6c 6f 67 67 69 6e 67 2e 20 46 6f 72 | ility.and.level.for.logging..For |
| 11fb60 | 20 61 6e 20 65 78 70 6c 61 6e 61 74 69 6f 6e 20 6f 6e 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f | .an.explanation.on.:ref:`syslog_ |
| 11fb80 | 66 61 63 69 6c 69 74 69 65 73 60 20 61 6e 64 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f 73 65 76 | facilities`.and.:ref:`syslog_sev |
| 11fba0 | 65 72 69 74 79 5f 6c 65 76 65 6c 60 20 73 65 65 20 74 61 62 6c 65 73 20 69 6e 20 73 79 73 6c 6f | erity_level`.see.tables.in.syslo |
| 11fbc0 | 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 65 63 74 69 6f 6e 2e 00 53 70 65 63 69 66 79 | g.configuration.section..Specify |
| 11fbe0 | 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 6f 20 77 61 69 74 20 62 65 74 | .interval.in.seconds.to.wait.bet |
| 11fc00 | 77 65 65 6e 20 44 79 6e 61 6d 69 63 20 44 4e 53 20 75 70 64 61 74 65 73 2e 20 54 68 65 20 64 65 | ween.Dynamic.DNS.updates..The.de |
| 11fc20 | 66 61 75 6c 74 20 69 73 20 20 33 30 30 20 73 65 63 6f 6e 64 73 2e 00 53 70 65 63 69 66 79 20 6c | fault.is..300.seconds..Specify.l |
| 11fc40 | 6f 63 61 6c 20 72 61 6e 67 65 20 6f 66 20 69 70 20 61 64 64 72 65 73 73 20 74 6f 20 67 69 76 65 | ocal.range.of.ip.address.to.give |
| 11fc60 | 20 74 6f 20 64 68 63 70 20 63 6c 69 65 6e 74 73 2e 20 46 69 72 73 74 20 49 50 20 69 6e 20 72 61 | .to.dhcp.clients..First.IP.in.ra |
| 11fc80 | 6e 67 65 20 69 73 20 72 6f 75 74 65 72 20 49 50 2e 20 49 66 20 79 6f 75 20 6e 65 65 64 20 6d 6f | nge.is.router.IP..If.you.need.mo |
| 11fca0 | 72 65 20 63 75 73 74 6f 6d 69 7a 61 74 69 6f 6e 20 75 73 65 20 60 63 6c 69 65 6e 74 2d 69 70 2d | re.customization.use.`client-ip- |
| 11fcc0 | 70 6f 6f 6c 60 00 53 70 65 63 69 66 79 20 6e 61 6d 65 20 6f 66 20 74 68 65 20 3a 61 62 62 72 3a | pool`.Specify.name.of.the.:abbr: |
| 11fce0 | 60 56 52 46 20 28 56 69 72 74 75 61 6c 20 52 6f 75 74 69 6e 67 20 61 6e 64 20 46 6f 72 77 61 72 | `VRF.(Virtual.Routing.and.Forwar |
| 11fd00 | 64 69 6e 67 29 60 20 69 6e 73 74 61 6e 63 65 2e 00 53 70 65 63 69 66 79 20 6e 65 78 74 68 6f 70 | ding)`.instance..Specify.nexthop |
| 11fd20 | 20 6f 6e 20 74 68 65 20 70 61 74 68 20 74 6f 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 2c | .on.the.path.to.the.destination, |
| 11fd40 | 20 60 60 69 70 76 34 2d 61 64 64 72 65 73 73 60 60 20 63 61 6e 20 62 65 20 73 65 74 20 74 6f 20 | .``ipv4-address``.can.be.set.to. |
| 11fd60 | 60 60 64 68 63 70 60 60 00 53 70 65 63 69 66 79 20 73 74 61 74 69 63 20 72 6f 75 74 65 20 69 6e | ``dhcp``.Specify.static.route.in |
| 11fd80 | 74 6f 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 73 65 6e 64 69 6e 67 20 61 6c 6c | to.the.routing.table.sending.all |
| 11fda0 | 20 6e 6f 6e 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 63 20 74 6f 20 74 68 65 20 6e 65 78 74 68 6f | .non.local.traffic.to.the.nextho |
| 11fdc0 | 70 20 61 64 64 72 65 73 73 20 60 3c 61 64 64 72 65 73 73 3e 60 2e 00 53 70 65 63 69 66 79 20 74 | p.address.`<address>`..Specify.t |
| 11fde0 | 68 65 20 49 50 20 60 3c 61 64 64 72 65 73 73 3e 60 20 6f 66 20 74 68 65 20 52 41 44 49 55 53 20 | he.IP.`<address>`.of.the.RADIUS. |
| 11fe00 | 73 65 72 76 65 72 20 75 73 65 72 20 77 69 74 68 20 74 68 65 20 70 72 65 2d 73 68 61 72 65 64 2d | server.user.with.the.pre-shared- |
| 11fe20 | 73 65 63 72 65 74 20 67 69 76 65 6e 20 69 6e 20 60 3c 73 65 63 72 65 74 3e 60 2e 00 53 70 65 63 | secret.given.in.`<secret>`..Spec |
| 11fe40 | 69 66 79 20 74 68 65 20 49 50 20 60 3c 61 64 64 72 65 73 73 3e 60 20 6f 66 20 74 68 65 20 54 41 | ify.the.IP.`<address>`.of.the.TA |
| 11fe60 | 43 41 43 53 20 73 65 72 76 65 72 20 75 73 65 72 20 77 69 74 68 20 74 68 65 20 70 72 65 2d 73 68 | CACS.server.user.with.the.pre-sh |
| 11fe80 | 61 72 65 64 2d 73 65 63 72 65 74 20 67 69 76 65 6e 20 69 6e 20 60 3c 73 65 63 72 65 74 3e 60 2e | ared-secret.given.in.`<secret>`. |
| 11fea0 | 00 53 70 65 63 69 66 79 20 74 68 65 20 49 50 76 34 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 | .Specify.the.IPv4.source.address |
| 11fec0 | 20 74 6f 20 75 73 65 20 66 6f 72 20 74 68 65 20 42 47 50 20 73 65 73 73 69 6f 6e 20 74 6f 20 74 | .to.use.for.the.BGP.session.to.t |
| 11fee0 | 68 69 73 20 6e 65 69 67 68 62 6f 72 2c 20 6d 61 79 20 62 65 20 73 70 65 63 69 66 69 65 64 20 61 | his.neighbor,.may.be.specified.a |
| 11ff00 | 73 20 65 69 74 68 65 72 20 61 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 20 64 69 72 65 63 74 6c | s.either.an.IPv4.address.directl |
| 11ff20 | 79 20 6f 72 20 61 73 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 2e 00 53 70 65 63 69 | y.or.as.an.interface.name..Speci |
| 11ff40 | 66 79 20 74 68 65 20 4c 44 41 50 20 73 65 72 76 65 72 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f | fy.the.LDAP.server.to.connect.to |
| 11ff60 | 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 61 64 64 72 65 73 73 2c 20 41 50 49 20 6b 65 79 2c 20 | ..Specify.the.address,.API.key,. |
| 11ff80 | 74 69 6d 65 6f 75 74 20 61 6e 64 20 70 6f 72 74 20 6f 66 20 74 68 65 20 73 65 63 6f 6e 64 61 72 | timeout.and.port.of.the.secondar |
| 11ffa0 | 79 20 72 6f 75 74 65 72 2e 20 59 6f 75 20 6e 65 65 64 20 74 6f 20 65 6e 61 62 6c 65 20 61 6e 64 | y.router..You.need.to.enable.and |
| 11ffc0 | 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 48 54 54 50 20 41 50 49 20 73 65 72 76 69 63 65 20 | .configure.the.HTTP.API.service. |
| 11ffe0 | 6f 6e 20 74 68 65 20 73 65 63 6f 6e 64 61 72 79 20 72 6f 75 74 65 72 20 66 6f 72 20 63 6f 6e 66 | on.the.secondary.router.for.conf |
| 120000 | 69 67 20 73 79 6e 63 20 74 6f 20 6f 70 65 72 61 74 65 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 | ig.sync.to.operate..Specify.the. |
| 120020 | 69 64 65 6e 74 69 66 69 65 72 20 76 61 6c 75 65 20 6f 66 20 74 68 65 20 73 69 74 65 2d 6c 65 76 | identifier.value.of.the.site-lev |
| 120040 | 65 6c 20 61 67 67 72 65 67 61 74 6f 72 20 28 53 4c 41 29 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 | el.aggregator.(SLA).on.the.inter |
| 120060 | 66 61 63 65 2e 20 49 44 20 6d 75 73 74 20 62 65 20 61 20 64 65 63 69 6d 61 6c 20 6e 75 6d 62 65 | face..ID.must.be.a.decimal.numbe |
| 120080 | 72 20 67 72 65 61 74 65 72 20 74 68 65 6e 20 30 20 77 68 69 63 68 20 66 69 74 73 20 69 6e 20 74 | r.greater.then.0.which.fits.in.t |
| 1200a0 | 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 53 4c 41 20 49 44 73 20 28 73 65 65 20 62 65 6c 6f 77 29 | he.length.of.SLA.IDs.(see.below) |
| 1200c0 | 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 61 64 64 72 65 73 73 20 | ..Specify.the.interface.address. |
| 1200e0 | 75 73 65 64 20 6c 6f 63 61 6c 6c 79 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 68 | used.locally.on.the.interface.wh |
| 120100 | 65 72 65 20 74 68 65 20 70 72 65 66 69 78 20 68 61 73 20 62 65 65 6e 20 64 65 6c 65 67 61 74 65 | ere.the.prefix.has.been.delegate |
| 120120 | 64 20 74 6f 2e 20 49 44 20 6d 75 73 74 20 62 65 20 61 20 64 65 63 69 6d 61 6c 20 69 6e 74 65 67 | d.to..ID.must.be.a.decimal.integ |
| 120140 | 65 72 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 6d 69 6e 69 6d 75 6d 20 72 65 71 75 69 72 65 64 | er..Specify.the.minimum.required |
| 120160 | 20 54 4c 53 20 76 65 72 73 69 6f 6e 20 31 2e 32 20 6f 72 20 31 2e 33 00 53 70 65 63 69 66 79 20 | .TLS.version.1.2.or.1.3.Specify. |
| 120180 | 74 68 65 20 70 6c 61 69 6e 74 65 78 74 20 70 61 73 73 77 6f 72 64 20 75 73 65 72 20 62 79 20 75 | the.plaintext.password.user.by.u |
| 1201a0 | 73 65 72 20 60 3c 6e 61 6d 65 3e 60 20 6f 6e 20 74 68 69 73 20 73 79 73 74 65 6d 2e 20 54 68 65 | ser.`<name>`.on.this.system..The |
| 1201c0 | 20 70 6c 61 69 6e 74 65 78 74 20 70 61 73 73 77 6f 72 64 20 77 69 6c 6c 20 62 65 20 61 75 74 6f | .plaintext.password.will.be.auto |
| 1201e0 | 6d 61 74 69 63 61 6c 6c 79 20 74 72 61 6e 73 66 65 72 72 65 64 20 69 6e 74 6f 20 61 20 73 65 63 | matically.transferred.into.a.sec |
| 120200 | 75 72 65 20 68 61 73 68 65 64 20 70 61 73 73 77 6f 72 64 20 61 6e 64 20 6e 6f 74 20 73 61 76 65 | ure.hashed.password.and.not.save |
| 120220 | 64 20 61 6e 79 77 68 65 72 65 20 69 6e 20 70 6c 61 69 6e 74 65 78 74 2e 00 53 70 65 63 69 66 79 | d.anywhere.in.plaintext..Specify |
| 120240 | 20 74 68 65 20 70 6f 72 74 20 75 73 65 64 20 6f 6e 20 77 68 69 63 68 20 74 68 65 20 70 72 6f 78 | .the.port.used.on.which.the.prox |
| 120260 | 79 20 73 65 72 76 69 63 65 20 69 73 20 6c 69 73 74 65 6e 69 6e 67 20 66 6f 72 20 72 65 71 75 65 | y.service.is.listening.for.reque |
| 120280 | 73 74 73 2e 20 54 68 69 73 20 70 6f 72 74 20 69 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 70 6f | sts..This.port.is.the.default.po |
| 1202a0 | 72 74 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 6c 69 73 74 65 6e | rt.used.for.the.specified.listen |
| 1202c0 | 2d 61 64 64 72 65 73 73 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 73 65 63 74 69 6f 6e 20 6f 66 | -address..Specify.the.section.of |
| 1202e0 | 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 6f 20 73 79 6e 63 68 72 6f 6e 69 7a | .the.configuration.to.synchroniz |
| 120300 | 65 2e 20 49 66 20 6d 6f 72 65 20 74 68 61 6e 20 6f 6e 65 20 73 65 63 74 69 6f 6e 20 69 73 20 74 | e..If.more.than.one.section.is.t |
| 120320 | 6f 20 62 65 20 73 79 6e 63 68 72 6f 6e 69 7a 65 64 2c 20 72 65 70 65 61 74 20 74 68 65 20 63 6f | o.be.synchronized,.repeat.the.co |
| 120340 | 6d 6d 61 6e 64 20 74 6f 20 61 64 64 20 61 64 64 69 74 69 6f 6e 61 6c 20 73 65 63 74 69 6f 6e 73 | mmand.to.add.additional.sections |
| 120360 | 20 61 73 20 72 65 71 75 69 72 65 64 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 73 79 73 74 65 6d | .as.required..Specify.the.system |
| 120380 | 73 20 60 3c 74 69 6d 65 7a 6f 6e 65 3e 60 20 61 73 20 74 68 65 20 52 65 67 69 6f 6e 2f 4c 6f 63 | s.`<timezone>`.as.the.Region/Loc |
| 1203a0 | 61 74 69 6f 6e 20 74 68 61 74 20 62 65 73 74 20 64 65 66 69 6e 65 73 20 79 6f 75 72 20 6c 6f 63 | ation.that.best.defines.your.loc |
| 1203c0 | 61 74 69 6f 6e 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 73 70 65 63 69 66 79 69 6e 67 20 55 | ation..For.example,.specifying.U |
| 1203e0 | 53 2f 50 61 63 69 66 69 63 20 73 65 74 73 20 74 68 65 20 74 69 6d 65 20 7a 6f 6e 65 20 74 6f 20 | S/Pacific.sets.the.time.zone.to. |
| 120400 | 55 53 20 50 61 63 69 66 69 63 20 74 69 6d 65 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 74 69 6d | US.Pacific.time..Specify.the.tim |
| 120420 | 65 20 69 6e 74 65 72 76 61 6c 20 77 68 65 6e 20 60 3c 74 61 73 6b 3e 60 20 73 68 6f 75 6c 64 20 | e.interval.when.`<task>`.should. |
| 120440 | 62 65 20 65 78 65 63 75 74 65 64 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 69 73 20 73 70 65 | be.executed..The.interval.is.spe |
| 120460 | 63 69 66 69 65 64 20 61 73 20 6e 75 6d 62 65 72 20 77 69 74 68 20 6f 6e 65 20 6f 66 20 74 68 65 | cified.as.number.with.one.of.the |
| 120480 | 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 75 66 66 69 78 65 73 3a 00 53 70 65 63 69 66 79 20 74 69 6d | .following.suffixes:.Specify.tim |
| 1204a0 | 65 6f 75 74 20 2f 20 75 70 64 61 74 65 20 69 6e 74 65 72 76 61 6c 20 74 6f 20 63 68 65 63 6b 20 | eout./.update.interval.to.check. |
| 1204c0 | 69 66 20 49 50 20 61 64 64 72 65 73 73 20 63 68 61 6e 67 65 64 2e 00 53 70 65 63 69 66 79 20 74 | if.IP.address.changed..Specify.t |
| 1204e0 | 69 6d 65 6f 75 74 20 69 6e 74 65 72 76 61 6c 20 66 6f 72 20 6b 65 65 70 61 6c 69 76 65 20 6d 65 | imeout.interval.for.keepalive.me |
| 120500 | 73 73 61 67 65 20 69 6e 20 73 65 63 6f 6e 64 73 2e 00 53 70 65 63 69 66 79 20 77 68 65 72 65 20 | ssage.in.seconds..Specify.where. |
| 120520 | 69 6e 74 65 72 66 61 63 65 20 69 73 20 73 68 61 72 65 64 20 62 79 20 6d 75 6c 74 69 70 6c 65 20 | interface.is.shared.by.multiple. |
| 120540 | 75 73 65 72 73 20 6f 72 20 69 74 20 69 73 20 76 6c 61 6e 2d 70 65 72 2d 75 73 65 72 2e 00 53 70 | users.or.it.is.vlan-per-user..Sp |
| 120560 | 69 6e 65 31 20 69 73 20 61 20 43 69 73 63 6f 20 49 4f 53 20 72 6f 75 74 65 72 20 72 75 6e 6e 69 | ine1.is.a.Cisco.IOS.router.runni |
| 120580 | 6e 67 20 76 65 72 73 69 6f 6e 20 31 35 2e 34 2c 20 4c 65 61 66 32 20 61 6e 64 20 4c 65 61 66 33 | ng.version.15.4,.Leaf2.and.Leaf3 |
| 1205a0 | 20 61 72 65 20 65 61 63 68 20 56 79 4f 53 20 72 6f 75 74 65 72 73 20 72 75 6e 6e 69 6e 67 20 31 | .are.each.VyOS.routers.running.1 |
| 1205c0 | 2e 32 2e 00 53 70 69 6e 65 31 20 69 73 20 61 20 43 69 73 63 6f 20 49 4f 53 20 72 6f 75 74 65 72 | .2..Spine1.is.a.Cisco.IOS.router |
| 1205e0 | 20 72 75 6e 6e 69 6e 67 20 76 65 72 73 69 6f 6e 20 31 35 2e 34 2c 20 4c 65 61 66 32 20 61 6e 64 | .running.version.15.4,.Leaf2.and |
| 120600 | 20 4c 65 61 66 33 20 69 73 20 65 61 63 68 20 61 20 56 79 4f 53 20 72 6f 75 74 65 72 20 72 75 6e | .Leaf3.is.each.a.VyOS.router.run |
| 120620 | 6e 69 6e 67 20 31 2e 32 2e 00 53 70 6c 75 6e 6b 00 53 70 6f 6b 65 00 53 71 75 69 64 5f 20 69 73 | ning.1.2..Splunk.Spoke.Squid_.is |
| 120640 | 20 61 20 63 61 63 68 69 6e 67 20 61 6e 64 20 66 6f 72 77 61 72 64 69 6e 67 20 48 54 54 50 20 77 | .a.caching.and.forwarding.HTTP.w |
| 120660 | 65 62 20 70 72 6f 78 79 2e 20 49 74 20 68 61 73 20 61 20 77 69 64 65 20 76 61 72 69 65 74 79 20 | eb.proxy..It.has.a.wide.variety. |
| 120680 | 6f 66 20 75 73 65 73 2c 20 69 6e 63 6c 75 64 69 6e 67 20 73 70 65 65 64 69 6e 67 20 75 70 20 61 | of.uses,.including.speeding.up.a |
| 1206a0 | 20 77 65 62 20 73 65 72 76 65 72 20 62 79 20 63 61 63 68 69 6e 67 20 72 65 70 65 61 74 65 64 20 | .web.server.by.caching.repeated. |
| 1206c0 | 72 65 71 75 65 73 74 73 2c 20 63 61 63 68 69 6e 67 20 77 65 62 2c 20 44 4e 53 20 61 6e 64 20 6f | requests,.caching.web,.DNS.and.o |
| 1206e0 | 74 68 65 72 20 63 6f 6d 70 75 74 65 72 20 6e 65 74 77 6f 72 6b 20 6c 6f 6f 6b 75 70 73 20 66 6f | ther.computer.network.lookups.fo |
| 120700 | 72 20 61 20 67 72 6f 75 70 20 6f 66 20 70 65 6f 70 6c 65 20 73 68 61 72 69 6e 67 20 6e 65 74 77 | r.a.group.of.people.sharing.netw |
| 120720 | 6f 72 6b 20 72 65 73 6f 75 72 63 65 73 2c 20 61 6e 64 20 61 69 64 69 6e 67 20 73 65 63 75 72 69 | ork.resources,.and.aiding.securi |
| 120740 | 74 79 20 62 79 20 66 69 6c 74 65 72 69 6e 67 20 74 72 61 66 66 69 63 2e 20 41 6c 74 68 6f 75 67 | ty.by.filtering.traffic..Althoug |
| 120760 | 68 20 70 72 69 6d 61 72 69 6c 79 20 75 73 65 64 20 66 6f 72 20 48 54 54 50 20 61 6e 64 20 46 54 | h.primarily.used.for.HTTP.and.FT |
| 120780 | 50 2c 20 53 71 75 69 64 20 69 6e 63 6c 75 64 65 73 20 6c 69 6d 69 74 65 64 20 73 75 70 70 6f 72 | P,.Squid.includes.limited.suppor |
| 1207a0 | 74 20 66 6f 72 20 73 65 76 65 72 61 6c 20 6f 74 68 65 72 20 70 72 6f 74 6f 63 6f 6c 73 20 69 6e | t.for.several.other.protocols.in |
| 1207c0 | 63 6c 75 64 69 6e 67 20 49 6e 74 65 72 6e 65 74 20 47 6f 70 68 65 72 2c 20 53 53 4c 2c 5b 36 5d | cluding.Internet.Gopher,.SSL,[6] |
| 1207e0 | 20 54 4c 53 20 61 6e 64 20 48 54 54 50 53 2e 20 53 71 75 69 64 20 64 6f 65 73 20 6e 6f 74 20 73 | .TLS.and.HTTPS..Squid.does.not.s |
| 120800 | 75 70 70 6f 72 74 20 74 68 65 20 53 4f 43 4b 53 20 70 72 6f 74 6f 63 6f 6c 2e 00 53 74 61 72 74 | upport.the.SOCKS.protocol..Start |
| 120820 | 20 57 65 62 73 65 72 76 65 72 20 69 6e 20 67 69 76 65 6e 20 20 56 52 46 2e 00 53 74 61 72 74 20 | .Webserver.in.given..VRF..Start. |
| 120840 | 57 65 62 73 65 72 76 65 72 20 69 6e 20 67 69 76 65 6e 20 56 52 46 2e 00 53 74 61 72 74 20 62 79 | Webserver.in.given.VRF..Start.by |
| 120860 | 20 63 68 65 63 6b 69 6e 67 20 66 6f 72 20 49 50 53 65 63 20 53 41 73 20 28 53 65 63 75 72 69 74 | .checking.for.IPSec.SAs.(Securit |
| 120880 | 79 20 41 73 73 6f 63 69 61 74 69 6f 6e 73 29 20 77 69 74 68 3a 00 53 74 61 72 74 69 6e 67 20 66 | y.Associations).with:.Starting.f |
| 1208a0 | 72 6f 6d 20 2a 2a 56 79 4f 53 2d 31 2e 35 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 34 31 30 30 36 30 | rom.**VyOS-1.5-rolling-202410060 |
| 1208c0 | 30 30 37 2a 2a 2c 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 63 61 6e 20 6d 6f 64 69 66 79 20 70 | 007**,.the.firewall.can.modify.p |
| 1208e0 | 61 63 6b 65 74 73 20 62 65 66 6f 72 65 20 74 68 65 79 20 61 72 65 20 73 65 6e 74 20 6f 75 74 2e | ackets.before.they.are.sent.out. |
| 120900 | 20 54 68 69 73 20 66 65 61 75 72 65 20 70 72 6f 76 69 64 65 73 20 6d 6f 72 65 20 66 6c 65 78 69 | .This.feaure.provides.more.flexi |
| 120920 | 62 69 6c 69 74 79 20 69 6e 20 70 61 63 6b 65 74 20 68 61 6e 64 6c 69 6e 67 2e 00 53 74 61 72 74 | bility.in.packet.handling..Start |
| 120940 | 69 6e 67 20 66 72 6f 6d 20 56 79 4f 53 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 | ing.from.VyOS.1.4-rolling-202308 |
| 120960 | 30 34 30 35 35 37 2c 20 61 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 73 74 72 75 63 74 75 72 65 | 040557,.a.new.firewall.structure |
| 120980 | 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 6f 6e 20 61 6c 6c 20 56 79 4f 53 20 69 6e 73 74 61 6c | .can.be.found.on.all.VyOS.instal |
| 1209a0 | 6c 61 74 69 6f 6e 73 2e 20 54 68 65 20 5a 6f 6e 65 20 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c | lations..The.Zone.based.firewall |
| 1209c0 | 20 77 61 73 20 72 65 6d 6f 76 65 64 20 69 6e 20 74 68 61 74 20 76 65 72 73 69 6f 6e 2c 20 62 75 | .was.removed.in.that.version,.bu |
| 1209e0 | 74 20 72 65 20 69 6e 74 72 6f 64 75 63 65 64 20 69 6e 20 56 79 4f 53 20 31 2e 34 20 61 6e 64 20 | t.re.introduced.in.VyOS.1.4.and. |
| 120a00 | 31 2e 35 2e 20 41 6c 6c 20 76 65 72 73 69 6f 6e 73 20 62 75 69 6c 74 20 61 66 74 65 72 20 32 30 | 1.5..All.versions.built.after.20 |
| 120a20 | 32 33 2d 31 30 2d 32 32 20 68 61 76 65 20 74 68 69 73 20 66 65 61 74 75 72 65 2e 20 44 6f 63 75 | 23-10-22.have.this.feature..Docu |
| 120a40 | 6d 65 6e 74 61 74 69 6f 6e 20 66 6f 72 20 6d 6f 73 74 20 6f 66 20 74 68 65 20 6e 65 77 20 66 69 | mentation.for.most.of.the.new.fi |
| 120a60 | 72 65 77 61 6c 6c 20 43 4c 49 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 74 68 65 20 60 | rewall.CLI.can.be.found.in.the.` |
| 120a80 | 66 69 72 65 77 61 6c 6c 20 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 76 79 6f 73 2e 69 6f 2f 65 | firewall.<https://docs.vyos.io/e |
| 120aa0 | 6e 2f 6c 61 74 65 73 74 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f | n/latest/configuration/firewall/ |
| 120ac0 | 67 65 6e 65 72 61 6c 2e 68 74 6d 6c 3e 60 5f 20 63 68 61 70 74 65 72 2e 00 53 74 61 72 74 69 6e | general.html>`_.chapter..Startin |
| 120ae0 | 67 20 66 72 6f 6d 20 56 79 4f 53 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 | g.from.VyOS.1.4-rolling-20230804 |
| 120b00 | 30 35 35 37 2c 20 61 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 73 74 72 75 63 74 75 72 65 20 63 | 0557,.a.new.firewall.structure.c |
| 120b20 | 61 6e 20 62 65 20 66 6f 75 6e 64 20 6f 6e 20 61 6c 6c 20 56 79 4f 53 20 69 6e 73 74 61 6c 6c 61 | an.be.found.on.all.VyOS.installa |
| 120b40 | 74 69 6f 6e 73 2e 20 54 68 65 20 5a 6f 6e 65 20 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 20 77 | tions..The.Zone.based.firewall.w |
| 120b60 | 61 73 20 72 65 6d 6f 76 65 64 20 69 6e 20 74 68 61 74 20 76 65 72 73 69 6f 6e 2c 20 62 75 74 20 | as.removed.in.that.version,.but. |
| 120b80 | 72 65 20 69 6e 74 72 6f 64 75 63 65 64 20 69 6e 20 56 79 4f 53 20 31 2e 34 20 61 6e 64 20 31 2e | re.introduced.in.VyOS.1.4.and.1. |
| 120ba0 | 35 2e 20 41 6c 6c 20 76 65 72 73 69 6f 6e 73 20 62 75 69 6c 74 20 61 66 74 65 72 20 32 30 32 33 | 5..All.versions.built.after.2023 |
| 120bc0 | 2d 31 30 2d 32 32 20 68 61 76 65 20 74 68 69 73 20 66 65 61 74 75 72 65 2e 20 44 6f 63 75 6d 65 | -10-22.have.this.feature..Docume |
| 120be0 | 6e 74 61 74 69 6f 6e 20 66 6f 72 20 6d 6f 73 74 20 6f 66 20 74 68 65 20 6e 65 77 20 66 69 72 65 | ntation.for.most.of.the.new.fire |
| 120c00 | 77 61 6c 6c 20 43 4c 49 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 74 68 65 20 60 66 69 | wall.CLI.can.be.found.in.the.`fi |
| 120c20 | 72 65 77 61 6c 6c 20 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 76 79 6f 73 2e 69 6f 2f 65 6e 2f | rewall.<https://docs.vyos.io/en/ |
| 120c40 | 6c 61 74 65 73 74 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 | latest/configuration/firewall/ge |
| 120c60 | 6e 65 72 61 6c 2e 68 74 6d 6c 3e 60 5f 20 63 68 61 70 74 65 72 2e 20 54 68 65 20 6c 65 67 61 63 | neral.html>`_.chapter..The.legac |
| 120c80 | 79 20 66 69 72 65 77 61 6c 6c 20 69 73 20 73 74 69 6c 6c 20 61 76 61 69 6c 61 62 6c 65 20 66 6f | y.firewall.is.still.available.fo |
| 120ca0 | 72 20 76 65 72 73 69 6f 6e 73 20 62 65 66 6f 72 65 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 | r.versions.before.1.4-rolling-20 |
| 120cc0 | 32 33 30 38 30 34 30 35 35 37 20 61 6e 64 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 74 | 2308040557.and.can.be.found.in.t |
| 120ce0 | 68 65 20 3a 64 6f 63 3a 60 6c 65 67 61 63 79 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 | he.:doc:`legacy.firewall.configu |
| 120d00 | 72 61 74 69 6f 6e 20 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f | ration.</configuration/firewall/ |
| 120d20 | 67 65 6e 65 72 61 6c 2d 6c 65 67 61 63 79 3e 60 20 63 68 61 70 74 65 72 2e 00 53 74 61 72 74 69 | general-legacy>`.chapter..Starti |
| 120d40 | 6e 67 20 66 72 6f 6d 20 56 79 4f 53 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 | ng.from.VyOS.1.4-rolling-2023080 |
| 120d60 | 34 30 35 35 37 2c 20 61 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 73 74 72 75 63 74 75 72 65 20 | 40557,.a.new.firewall.structure. |
| 120d80 | 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 6f 6e 20 61 6c 6c 20 56 79 4f 53 20 69 6e 73 74 61 6c 6c | can.be.found.on.all.VyOS.install |
| 120da0 | 61 74 69 6f 6e 73 2e 20 5a 6f 6e 65 20 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 20 77 61 73 20 | ations..Zone.based.firewall.was. |
| 120dc0 | 72 65 6d 6f 76 65 64 20 69 6e 20 74 68 61 74 20 76 65 72 73 69 6f 6e 2c 20 62 75 74 20 72 65 20 | removed.in.that.version,.but.re. |
| 120de0 | 69 6e 74 72 6f 64 75 63 65 64 20 69 6e 20 56 79 4f 53 20 31 2e 34 20 61 6e 64 20 31 2e 35 2e 20 | introduced.in.VyOS.1.4.and.1.5.. |
| 120e00 | 41 6c 6c 20 76 65 72 73 69 6f 6e 73 20 62 75 69 6c 74 20 61 66 74 65 72 20 32 30 32 33 2d 31 30 | All.versions.built.after.2023-10 |
| 120e20 | 2d 32 32 20 68 61 73 20 74 68 69 73 20 66 65 61 74 75 72 65 2e 20 44 6f 63 75 6d 65 6e 74 61 74 | -22.has.this.feature..Documentat |
| 120e40 | 69 6f 6e 20 66 6f 72 20 6d 6f 73 74 20 6f 66 20 74 68 65 20 6e 65 77 20 66 69 72 65 77 61 6c 6c | ion.for.most.of.the.new.firewall |
| 120e60 | 20 43 4c 49 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 74 68 65 20 60 66 69 72 65 77 61 | .CLI.can.be.found.in.the.`firewa |
| 120e80 | 6c 6c 20 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 76 79 6f 73 2e 69 6f 2f 65 6e 2f 6c 61 74 65 | ll.<https://docs.vyos.io/en/late |
| 120ea0 | 73 74 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 | st/configuration/firewall/genera |
| 120ec0 | 6c 2e 68 74 6d 6c 3e 60 5f 20 63 68 61 70 74 65 72 2e 20 54 68 65 20 6c 65 67 61 63 79 20 66 69 | l.html>`_.chapter..The.legacy.fi |
| 120ee0 | 72 65 77 61 6c 6c 20 69 73 20 73 74 69 6c 6c 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 76 65 | rewall.is.still.available.for.ve |
| 120f00 | 72 73 69 6f 6e 73 20 62 65 66 6f 72 65 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 | rsions.before.1.4-rolling-202308 |
| 120f20 | 30 34 30 35 35 37 20 61 6e 64 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 74 68 65 20 3a | 040557.and.can.be.found.in.the.: |
| 120f40 | 64 6f 63 3a 60 6c 65 67 61 63 79 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 | doc:`legacy.firewall.configurati |
| 120f60 | 6f 6e 20 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 | on.</configuration/firewall/gene |
| 120f80 | 72 61 6c 2d 6c 65 67 61 63 79 3e 60 20 63 68 61 70 74 65 72 2e 00 53 74 61 72 74 69 6e 67 20 66 | ral-legacy>`.chapter..Starting.f |
| 120fa0 | 72 6f 6d 20 56 79 4f 53 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 | rom.VyOS.1.4-rolling-20230804055 |
| 120fc0 | 37 2c 20 61 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 73 74 72 75 63 74 75 72 65 20 63 61 6e 20 | 7,.a.new.firewall.structure.can. |
| 120fe0 | 62 65 20 66 6f 75 6e 64 20 6f 6e 20 61 6c 6c 20 76 79 6f 73 20 69 6e 73 74 61 6c 61 74 69 6f 6e | be.found.on.all.vyos.instalation |
| 121000 | 73 2c 20 61 6e 64 20 7a 6f 6e 65 20 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 20 69 73 20 6e 6f | s,.and.zone.based.firewall.is.no |
| 121020 | 20 6c 6f 6e 67 65 72 20 73 75 70 70 6f 72 74 65 64 2e 20 44 6f 63 75 6d 65 6e 74 61 74 69 6f 6e | .longer.supported..Documentation |
| 121040 | 20 66 6f 72 20 6d 6f 73 74 20 6f 66 20 74 68 65 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 43 4c | .for.most.of.the.new.firewall.CL |
| 121060 | 49 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 74 68 65 20 60 66 69 72 65 77 61 6c 6c 20 | I.can.be.found.in.the.`firewall. |
| 121080 | 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 76 79 6f 73 2e 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f | <https://docs.vyos.io/en/latest/ |
| 1210a0 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2e 68 | configuration/firewall/general.h |
| 1210c0 | 74 6d 6c 3e 60 5f 20 63 68 61 70 74 65 72 2e 20 54 68 65 20 6c 65 67 61 63 79 20 66 69 72 65 77 | tml>`_.chapter..The.legacy.firew |
| 1210e0 | 61 6c 6c 20 69 73 20 73 74 69 6c 6c 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 76 65 72 73 69 | all.is.still.available.for.versi |
| 121100 | 6f 6e 73 20 62 65 66 6f 72 65 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 | ons.before.1.4-rolling-202308040 |
| 121120 | 35 35 37 20 61 6e 64 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 74 68 65 20 3a 72 65 66 | 557.and.can.be.found.in.the.:ref |
| 121140 | 3a 60 66 69 72 65 77 61 6c 6c 2d 6c 65 67 61 63 79 60 20 63 68 61 70 74 65 72 2e 20 54 68 65 20 | :`firewall-legacy`.chapter..The. |
| 121160 | 65 78 61 6d 70 6c 65 73 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 75 73 65 20 74 68 65 | examples.in.this.section.use.the |
| 121180 | 20 6c 65 67 61 63 79 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 | .legacy.firewall.configuration.c |
| 1211a0 | 6f 6d 6d 61 6e 64 73 2c 20 73 69 6e 63 65 20 74 68 69 73 20 66 65 61 74 75 72 65 20 68 61 73 20 | ommands,.since.this.feature.has. |
| 1211c0 | 62 65 65 6e 20 72 65 6d 6f 76 65 64 20 69 6e 20 65 61 72 6c 69 65 72 20 72 65 6c 65 61 73 65 73 | been.removed.in.earlier.releases |
| 1211e0 | 2e 00 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 56 79 4f 53 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 | ..Starting.from.VyOS.1.4-rolling |
| 121200 | 2d 32 30 32 33 30 38 30 34 30 35 35 37 2c 20 61 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 73 74 | -202308040557,.a.new.firewall.st |
| 121220 | 72 75 63 74 75 72 65 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 6f 6e 20 61 6c 6c 20 76 79 6f 73 | ructure.can.be.found.on.all.vyos |
| 121240 | 20 69 6e 73 74 61 6c 61 74 69 6f 6e 73 2e 20 5a 6f 6e 65 20 62 61 73 65 64 20 66 69 72 65 77 61 | .instalations..Zone.based.firewa |
| 121260 | 6c 6c 20 77 61 73 20 72 65 6d 6f 76 65 64 20 69 6e 20 74 68 61 74 20 76 65 72 73 69 6f 6e 2c 20 | ll.was.removed.in.that.version,. |
| 121280 | 62 75 74 20 72 65 20 69 6e 74 72 6f 64 75 63 65 64 20 69 6e 20 56 79 4f 53 20 31 2e 34 20 61 6e | but.re.introduced.in.VyOS.1.4.an |
| 1212a0 | 64 20 31 2e 35 2e 20 41 6c 6c 20 76 65 72 73 69 6f 6e 73 20 62 75 69 6c 74 20 61 66 74 65 72 20 | d.1.5..All.versions.built.after. |
| 1212c0 | 32 30 32 33 2d 31 30 2d 32 32 20 68 61 73 20 74 68 69 73 20 66 65 61 74 75 72 65 2e 20 44 6f 63 | 2023-10-22.has.this.feature..Doc |
| 1212e0 | 75 6d 65 6e 74 61 74 69 6f 6e 20 66 6f 72 20 6d 6f 73 74 20 6f 66 20 74 68 65 20 6e 65 77 20 66 | umentation.for.most.of.the.new.f |
| 121300 | 69 72 65 77 61 6c 6c 20 43 4c 49 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 74 68 65 20 | irewall.CLI.can.be.found.in.the. |
| 121320 | 60 66 69 72 65 77 61 6c 6c 20 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 76 79 6f 73 2e 69 6f 2f | `firewall.<https://docs.vyos.io/ |
| 121340 | 65 6e 2f 6c 61 74 65 73 74 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c | en/latest/configuration/firewall |
| 121360 | 2f 67 65 6e 65 72 61 6c 2e 68 74 6d 6c 3e 60 5f 20 63 68 61 70 74 65 72 2e 20 54 68 65 20 6c 65 | /general.html>`_.chapter..The.le |
| 121380 | 67 61 63 79 20 66 69 72 65 77 61 6c 6c 20 69 73 20 73 74 69 6c 6c 20 61 76 61 69 6c 61 62 6c 65 | gacy.firewall.is.still.available |
| 1213a0 | 20 66 6f 72 20 76 65 72 73 69 6f 6e 73 20 62 65 66 6f 72 65 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 | .for.versions.before.1.4-rolling |
| 1213c0 | 2d 32 30 32 33 30 38 30 34 30 35 35 37 20 61 6e 64 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 | -202308040557.and.can.be.found.i |
| 1213e0 | 6e 20 74 68 65 20 3a 64 6f 63 3a 60 6c 65 67 61 63 79 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 | n.the.:doc:`legacy.firewall.conf |
| 121400 | 69 67 75 72 61 74 69 6f 6e 20 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 | iguration.</configuration/firewa |
| 121420 | 6c 6c 2f 67 65 6e 65 72 61 6c 2d 6c 65 67 61 63 79 3e 60 20 63 68 61 70 74 65 72 2e 00 53 74 61 | ll/general-legacy>`.chapter..Sta |
| 121440 | 72 74 69 6e 67 20 66 72 6f 6d 20 56 79 4f 53 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 | rting.from.VyOS.1.4-rolling-2023 |
| 121460 | 30 38 30 34 30 35 35 37 2c 20 61 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 73 74 72 75 63 74 75 | 08040557,.a.new.firewall.structu |
| 121480 | 72 65 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 6f 6e 20 61 6c 6c 20 76 79 6f 73 20 69 6e 73 74 | re.can.be.found.on.all.vyos.inst |
| 1214a0 | 61 6c 6c 61 74 69 6f 6e 73 2e 00 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 56 79 4f 53 20 31 2e | allations..Starting.from.VyOS.1. |
| 1214c0 | 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 2c 20 61 20 6e 65 77 20 66 69 | 4-rolling-202308040557,.a.new.fi |
| 1214e0 | 72 65 77 61 6c 6c 20 73 74 72 75 63 74 75 72 65 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 6f 6e | rewall.structure.can.be.found.on |
| 121500 | 20 61 6c 6c 20 76 79 6f 73 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 2e 20 44 6f 63 75 6d 65 6e | .all.vyos.installations..Documen |
| 121520 | 74 61 74 69 6f 6e 20 66 6f 72 20 6d 6f 73 74 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 63 6c 69 | tation.for.most.new.firewall.cli |
| 121540 | 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 68 65 72 65 3a 00 53 74 61 72 74 69 6e 67 20 6f 66 20 | .can.be.found.here:.Starting.of. |
| 121560 | 77 69 74 68 20 56 79 4f 53 20 31 2e 33 20 28 65 71 75 75 6c 65 75 73 29 20 77 65 20 61 64 64 65 | with.VyOS.1.3.(equuleus).we.adde |
| 121580 | 64 20 73 75 70 70 6f 72 74 20 66 6f 72 20 72 75 6e 6e 69 6e 67 20 56 79 4f 53 20 61 73 20 61 6e | d.support.for.running.VyOS.as.an |
| 1215a0 | 20 4f 75 74 2d 6f 66 2d 42 61 6e 64 20 4d 61 6e 61 67 65 6d 65 6e 74 20 64 65 76 69 63 65 20 77 | .Out-of-Band.Management.device.w |
| 1215c0 | 68 69 63 68 20 70 72 6f 76 69 64 65 73 20 72 65 6d 6f 74 65 20 61 63 63 65 73 73 20 62 79 20 6d | hich.provides.remote.access.by.m |
| 1215e0 | 65 61 6e 73 20 6f 66 20 53 53 48 20 74 6f 20 64 69 72 65 63 74 6c 79 20 61 74 74 61 63 68 65 64 | eans.of.SSH.to.directly.attached |
| 121600 | 20 73 65 72 69 61 6c 20 69 6e 74 65 72 66 61 63 65 73 2e 00 53 74 61 72 74 69 6e 67 20 77 69 74 | .serial.interfaces..Starting.wit |
| 121620 | 68 20 56 79 4f 53 20 31 2e 32 20 61 20 3a 61 62 62 72 3a 60 6d 44 4e 53 20 28 4d 75 6c 74 69 63 | h.VyOS.1.2.a.:abbr:`mDNS.(Multic |
| 121640 | 61 73 74 20 44 4e 53 29 60 20 72 65 70 65 61 74 65 72 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 | ast.DNS)`.repeater.functionality |
| 121660 | 20 69 73 20 70 72 6f 76 69 64 65 64 2e 20 41 64 64 69 74 69 6f 6e 61 6c 20 69 6e 66 6f 72 6d 61 | .is.provided..Additional.informa |
| 121680 | 74 69 6f 6e 20 63 61 6e 20 62 65 20 6f 62 74 61 69 6e 65 64 20 66 72 6f 6d 20 68 74 74 70 73 3a | tion.can.be.obtained.from.https: |
| 1216a0 | 2f 2f 65 6e 2e 77 69 6b 69 70 65 64 69 61 2e 6f 72 67 2f 77 69 6b 69 2f 4d 75 6c 74 69 63 61 73 | //en.wikipedia.org/wiki/Multicas |
| 1216c0 | 74 5f 44 4e 53 2e 00 53 74 61 74 69 63 00 53 74 61 74 69 63 20 3a 61 62 62 72 3a 60 53 41 4b 20 | t_DNS..Static.Static.:abbr:`SAK. |
| 1216e0 | 28 53 65 63 75 72 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 4b 65 79 29 60 20 6d 6f 64 | (Secure.Authentication.Key)`.mod |
| 121700 | 65 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6d 61 6e 75 61 6c 6c 79 20 6f 6e 20 | e.can.be.configured.manually.on. |
| 121720 | 65 61 63 68 20 64 65 76 69 63 65 20 77 69 73 68 69 6e 67 20 74 6f 20 75 73 65 20 4d 41 43 73 65 | each.device.wishing.to.use.MACse |
| 121740 | 63 2e 20 4b 65 79 73 20 6d 75 73 74 20 62 65 20 73 65 74 20 73 74 61 74 69 63 61 6c 6c 79 20 6f | c..Keys.must.be.set.statically.o |
| 121760 | 6e 20 61 6c 6c 20 64 65 76 69 63 65 73 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 20 66 6c 6f | n.all.devices.for.traffic.to.flo |
| 121780 | 77 20 70 72 6f 70 65 72 6c 79 2e 20 4b 65 79 20 72 6f 74 61 74 69 6f 6e 20 69 73 20 64 65 70 65 | w.properly..Key.rotation.is.depe |
| 1217a0 | 6e 64 65 6e 74 20 6f 6e 20 74 68 65 20 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 20 75 70 64 61 74 | ndent.on.the.administrator.updat |
| 1217c0 | 69 6e 67 20 61 6c 6c 20 6b 65 79 73 20 6d 61 6e 75 61 6c 6c 79 20 61 63 72 6f 73 73 20 63 6f 6e | ing.all.keys.manually.across.con |
| 1217e0 | 6e 65 63 74 65 64 20 64 65 76 69 63 65 73 2e 20 53 74 61 74 69 63 20 53 41 4b 20 6d 6f 64 65 20 | nected.devices..Static.SAK.mode. |
| 121800 | 63 61 6e 20 6e 6f 74 20 62 65 20 75 73 65 64 20 77 69 74 68 20 4d 4b 41 2e 00 53 74 61 74 69 63 | can.not.be.used.with.MKA..Static |
| 121820 | 20 44 48 43 50 20 49 50 20 61 64 64 72 65 73 73 20 61 73 73 69 67 6e 20 74 6f 20 68 6f 73 74 20 | .DHCP.IP.address.assign.to.host. |
| 121840 | 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 64 65 73 63 72 69 70 74 69 6f 6e 3e 60 2e 20 49 | identified.by.`<description>`..I |
| 121860 | 50 20 61 64 64 72 65 73 73 20 6d 75 73 74 20 62 65 20 69 6e 73 69 64 65 20 74 68 65 20 60 3c 73 | P.address.must.be.inside.the.`<s |
| 121880 | 75 62 6e 65 74 3e 60 20 77 68 69 63 68 20 69 73 20 64 65 66 69 6e 65 64 20 62 75 74 20 63 61 6e | ubnet>`.which.is.defined.but.can |
| 1218a0 | 20 62 65 20 6f 75 74 73 69 64 65 20 74 68 65 20 64 79 6e 61 6d 69 63 20 72 61 6e 67 65 20 63 72 | .be.outside.the.dynamic.range.cr |
| 1218c0 | 65 61 74 65 64 20 77 69 74 68 20 3a 63 66 67 63 6d 64 3a 60 73 65 74 20 73 65 72 76 69 63 65 20 | eated.with.:cfgcmd:`set.service. |
| 1218e0 | 64 68 63 70 2d 73 65 72 76 65 72 20 73 68 61 72 65 64 2d 6e 65 74 77 6f 72 6b 2d 6e 61 6d 65 20 | dhcp-server.shared-network-name. |
| 121900 | 3c 6e 61 6d 65 3e 20 73 75 62 6e 65 74 20 3c 73 75 62 6e 65 74 3e 20 72 61 6e 67 65 20 3c 6e 3e | <name>.subnet.<subnet>.range.<n> |
| 121920 | 60 2e 20 49 66 20 6e 6f 20 69 70 2d 61 64 64 72 65 73 73 20 69 73 20 73 70 65 63 69 66 69 65 64 | `..If.no.ip-address.is.specified |
| 121940 | 2c 20 61 6e 20 49 50 20 66 72 6f 6d 20 74 68 65 20 64 79 6e 61 6d 69 63 20 70 6f 6f 6c 20 69 73 | ,.an.IP.from.the.dynamic.pool.is |
| 121960 | 20 75 73 65 64 2e 00 53 74 61 74 69 63 20 48 6f 73 74 6e 61 6d 65 20 4d 61 70 70 69 6e 67 00 53 | .used..Static.Hostname.Mapping.S |
| 121980 | 74 61 74 69 63 20 4b 65 79 73 00 53 74 61 74 69 63 20 52 6f 75 74 65 73 00 53 74 61 74 69 63 20 | tatic.Keys.Static.Routes.Static. |
| 1219a0 | 52 6f 75 74 69 6e 67 20 6f 72 20 6f 74 68 65 72 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 | Routing.or.other.dynamic.routing |
| 1219c0 | 20 70 72 6f 74 6f 63 6f 6c 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 6f 76 65 72 20 74 68 65 20 | .protocols.can.be.used.over.the. |
| 1219e0 | 76 74 75 6e 20 69 6e 74 65 72 66 61 63 65 00 53 74 61 74 69 63 20 52 6f 75 74 69 6e 67 3a 00 53 | vtun.interface.Static.Routing:.S |
| 121a00 | 74 61 74 69 63 20 6d 61 70 70 69 6e 67 73 00 53 74 61 74 69 63 20 6d 61 70 70 69 6e 67 73 20 61 | tatic.mappings.Static.mappings.a |
| 121a20 | 72 65 6e 27 74 20 73 68 6f 77 6e 2e 20 54 6f 20 73 68 6f 77 20 61 6c 6c 20 73 74 61 74 65 73 2c | ren't.shown..To.show.all.states, |
| 121a40 | 20 75 73 65 20 60 60 73 68 6f 77 20 64 68 63 70 20 73 65 72 76 65 72 20 6c 65 61 73 65 73 20 73 | .use.``show.dhcp.server.leases.s |
| 121a60 | 74 61 74 65 20 61 6c 6c 60 60 2e 00 53 74 61 74 69 63 20 72 6f 75 74 65 73 20 61 72 65 20 6d 61 | tate.all``..Static.routes.are.ma |
| 121a80 | 6e 75 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 72 6f 75 74 65 73 2c 20 77 68 69 63 68 2c | nually.configured.routes,.which, |
| 121aa0 | 20 69 6e 20 67 65 6e 65 72 61 6c 2c 20 63 61 6e 6e 6f 74 20 62 65 20 75 70 64 61 74 65 64 20 64 | .in.general,.cannot.be.updated.d |
| 121ac0 | 79 6e 61 6d 69 63 61 6c 6c 79 20 66 72 6f 6d 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 56 79 4f 53 | ynamically.from.information.VyOS |
| 121ae0 | 20 6c 65 61 72 6e 73 20 61 62 6f 75 74 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 74 6f 70 6f 6c 6f | .learns.about.the.network.topolo |
| 121b00 | 67 79 20 66 72 6f 6d 20 6f 74 68 65 72 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 2e | gy.from.other.routing.protocols. |
| 121b20 | 20 48 6f 77 65 76 65 72 2c 20 69 66 20 61 20 6c 69 6e 6b 20 66 61 69 6c 73 2c 20 74 68 65 20 72 | .However,.if.a.link.fails,.the.r |
| 121b40 | 6f 75 74 65 72 20 77 69 6c 6c 20 72 65 6d 6f 76 65 20 72 6f 75 74 65 73 2c 20 69 6e 63 6c 75 64 | outer.will.remove.routes,.includ |
| 121b60 | 69 6e 67 20 73 74 61 74 69 63 20 72 6f 75 74 65 73 2c 20 66 72 6f 6d 20 74 68 65 20 3a 61 62 62 | ing.static.routes,.from.the.:abb |
| 121b80 | 72 3a 60 52 49 50 42 20 28 52 6f 75 74 69 6e 67 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 20 42 61 73 | r:`RIPB.(Routing.Information.Bas |
| 121ba0 | 65 29 60 20 74 68 61 74 20 75 73 65 64 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 | e)`.that.used.this.interface.to. |
| 121bc0 | 72 65 61 63 68 20 74 68 65 20 6e 65 78 74 20 68 6f 70 2e 20 49 6e 20 67 65 6e 65 72 61 6c 2c 20 | reach.the.next.hop..In.general,. |
| 121be0 | 73 74 61 74 69 63 20 72 6f 75 74 65 73 20 73 68 6f 75 6c 64 20 6f 6e 6c 79 20 62 65 20 75 73 65 | static.routes.should.only.be.use |
| 121c00 | 64 20 66 6f 72 20 76 65 72 79 20 73 69 6d 70 6c 65 20 6e 65 74 77 6f 72 6b 20 74 6f 70 6f 6c 6f | d.for.very.simple.network.topolo |
| 121c20 | 67 69 65 73 2c 20 6f 72 20 74 6f 20 6f 76 65 72 72 69 64 65 20 74 68 65 20 62 65 68 61 76 69 6f | gies,.or.to.override.the.behavio |
| 121c40 | 72 20 6f 66 20 61 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 | r.of.a.dynamic.routing.protocol. |
| 121c60 | 66 6f 72 20 61 20 73 6d 61 6c 6c 20 6e 75 6d 62 65 72 20 6f 66 20 72 6f 75 74 65 73 2e 20 54 68 | for.a.small.number.of.routes..Th |
| 121c80 | 65 20 63 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 72 6f 75 74 65 73 20 74 68 65 20 72 | e.collection.of.all.routes.the.r |
| 121ca0 | 6f 75 74 65 72 20 68 61 73 20 6c 65 61 72 6e 65 64 20 66 72 6f 6d 20 69 74 73 20 63 6f 6e 66 69 | outer.has.learned.from.its.confi |
| 121cc0 | 67 75 72 61 74 69 6f 6e 20 6f 72 20 66 72 6f 6d 20 69 74 73 20 64 79 6e 61 6d 69 63 20 72 6f 75 | guration.or.from.its.dynamic.rou |
| 121ce0 | 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 69 73 20 73 74 6f 72 65 64 20 69 6e 20 74 68 65 20 | ting.protocols.is.stored.in.the. |
| 121d00 | 52 49 42 2e 20 55 6e 69 63 61 73 74 20 72 6f 75 74 65 73 20 61 72 65 20 64 69 72 65 63 74 6c 79 | RIB..Unicast.routes.are.directly |
| 121d20 | 20 75 73 65 64 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 66 6f 72 77 61 72 64 69 6e | .used.to.determine.the.forwardin |
| 121d40 | 67 20 74 61 62 6c 65 20 75 73 65 64 20 66 6f 72 20 75 6e 69 63 61 73 74 20 70 61 63 6b 65 74 20 | g.table.used.for.unicast.packet. |
| 121d60 | 66 6f 72 77 61 72 64 69 6e 67 2e 00 53 74 61 74 69 63 20 72 6f 75 74 65 73 20 63 61 6e 20 62 65 | forwarding..Static.routes.can.be |
| 121d80 | 20 63 6f 6e 66 69 67 75 72 65 64 20 72 65 66 65 72 65 6e 63 69 6e 67 20 74 68 65 20 74 75 6e 6e | .configured.referencing.the.tunn |
| 121da0 | 65 6c 20 69 6e 74 65 72 66 61 63 65 3b 20 66 6f 72 20 65 78 61 6d 70 6c 65 2c 20 74 68 65 20 6c | el.interface;.for.example,.the.l |
| 121dc0 | 6f 63 61 6c 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 75 73 65 20 61 20 6e 65 74 77 6f 72 6b 20 6f | ocal.router.will.use.a.network.o |
| 121de0 | 66 20 31 30 2e 30 2e 30 2e 30 2f 31 36 2c 20 77 68 69 6c 65 20 74 68 65 20 72 65 6d 6f 74 65 20 | f.10.0.0.0/16,.while.the.remote. |
| 121e00 | 68 61 73 20 61 20 6e 65 74 77 6f 72 6b 20 6f 66 20 31 30 2e 31 2e 30 2e 30 2f 31 36 3a 00 53 74 | has.a.network.of.10.1.0.0/16:.St |
| 121e20 | 61 74 69 6f 6e 20 6d 6f 64 65 20 61 63 74 73 20 61 73 20 61 20 57 69 2d 46 69 20 63 6c 69 65 6e | ation.mode.acts.as.a.Wi-Fi.clien |
| 121e40 | 74 20 61 63 63 65 73 73 69 6e 67 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 74 68 72 6f 75 67 68 20 | t.accessing.the.network.through. |
| 121e60 | 61 6e 20 61 76 61 69 6c 61 62 6c 65 20 57 41 50 00 53 74 61 74 69 6f 6e 20 73 75 70 70 6f 72 74 | an.available.WAP.Station.support |
| 121e80 | 73 20 72 65 63 65 69 76 69 6e 67 20 56 48 54 20 76 61 72 69 61 6e 74 20 48 54 20 43 6f 6e 74 72 | s.receiving.VHT.variant.HT.Contr |
| 121ea0 | 6f 6c 20 66 69 65 6c 64 00 53 74 61 74 75 73 00 53 74 69 63 6b 79 20 43 6f 6e 6e 65 63 74 69 6f | ol.field.Status.Sticky.Connectio |
| 121ec0 | 6e 73 00 53 74 6f 72 61 67 65 20 6f 66 20 72 6f 75 74 65 20 75 70 64 61 74 65 73 20 75 73 65 73 | ns.Storage.of.route.updates.uses |
| 121ee0 | 20 6d 65 6d 6f 72 79 2e 20 49 66 20 79 6f 75 20 65 6e 61 62 6c 65 20 73 6f 66 74 20 72 65 63 6f | .memory..If.you.enable.soft.reco |
| 121f00 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 6e 62 6f 75 6e 64 20 66 6f 72 20 6d 75 6c 74 69 70 6c 65 | nfiguration.inbound.for.multiple |
| 121f20 | 20 6e 65 69 67 68 62 6f 72 73 2c 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 20 6d 65 6d 6f 72 79 | .neighbors,.the.amount.of.memory |
| 121f40 | 20 75 73 65 64 20 63 61 6e 20 62 65 63 6f 6d 65 20 73 69 67 6e 69 66 69 63 61 6e 74 2e 00 53 75 | .used.can.become.significant..Su |
| 121f60 | 66 66 69 78 65 73 00 53 75 6d 6d 61 72 69 73 61 74 69 6f 6e 20 73 74 61 72 74 73 20 6f 6e 6c 79 | ffixes.Summarisation.starts.only |
| 121f80 | 20 61 66 74 65 72 20 74 68 69 73 20 64 65 6c 61 79 20 74 69 6d 65 72 20 65 78 70 69 72 79 2e 00 | .after.this.delay.timer.expiry.. |
| 121fa0 | 53 75 70 70 6f 72 74 65 64 20 4d 6f 64 75 6c 65 73 00 53 75 70 70 6f 72 74 65 64 20 63 68 61 6e | Supported.Modules.Supported.chan |
| 121fc0 | 6e 65 6c 20 77 69 64 74 68 20 73 65 74 2e 00 53 75 70 70 6f 72 74 65 64 20 64 61 65 6d 6f 6e 73 | nel.width.set..Supported.daemons |
| 121fe0 | 3a 00 53 75 70 70 6f 72 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 79 70 65 73 3a 00 53 75 70 | :.Supported.interface.types:.Sup |
| 122000 | 70 6f 72 74 65 64 20 72 65 6d 6f 74 65 20 70 72 6f 74 6f 63 6f 6c 73 20 61 72 65 20 46 54 50 2c | ported.remote.protocols.are.FTP, |
| 122020 | 20 46 54 50 53 2c 20 48 54 54 50 2c 20 48 54 54 50 53 2c 20 53 43 50 2f 53 46 54 50 20 61 6e 64 | .FTPS,.HTTP,.HTTPS,.SCP/SFTP.and |
| 122040 | 20 54 46 54 50 2e 00 53 75 70 70 6f 72 74 65 64 20 76 65 72 73 69 6f 6e 73 20 6f 66 20 52 49 50 | .TFTP..Supported.versions.of.RIP |
| 122060 | 20 61 72 65 3a 00 53 75 70 70 6f 72 74 73 20 61 73 20 48 45 4c 50 45 52 20 66 6f 72 20 63 6f 6e | .are:.Supports.as.HELPER.for.con |
| 122080 | 66 69 67 75 72 65 64 20 67 72 61 63 65 20 70 65 72 69 6f 64 2e 00 53 75 70 70 6f 73 65 20 74 68 | figured.grace.period..Suppose.th |
| 1220a0 | 65 20 4c 45 46 54 20 72 6f 75 74 65 72 20 68 61 73 20 65 78 74 65 72 6e 61 6c 20 61 64 64 72 65 | e.LEFT.router.has.external.addre |
| 1220c0 | 73 73 20 31 39 32 2e 30 2e 32 2e 31 30 20 6f 6e 20 69 74 73 20 65 74 68 30 20 69 6e 74 65 72 66 | ss.192.0.2.10.on.its.eth0.interf |
| 1220e0 | 61 63 65 2c 20 61 6e 64 20 74 68 65 20 52 49 47 48 54 20 72 6f 75 74 65 72 20 69 73 20 32 30 33 | ace,.and.the.RIGHT.router.is.203 |
| 122100 | 2e 30 2e 31 31 33 2e 34 35 00 53 75 70 70 6f 73 65 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 75 73 | .0.113.45.Suppose.you.want.to.us |
| 122120 | 65 20 31 30 2e 32 33 2e 31 2e 30 2f 32 34 20 6e 65 74 77 6f 72 6b 20 66 6f 72 20 63 6c 69 65 6e | e.10.23.1.0/24.network.for.clien |
| 122140 | 74 20 74 75 6e 6e 65 6c 20 65 6e 64 70 6f 69 6e 74 73 20 61 6e 64 20 61 6c 6c 20 63 6c 69 65 6e | t.tunnel.endpoints.and.all.clien |
| 122160 | 74 20 73 75 62 6e 65 74 73 20 62 65 6c 6f 6e 67 20 74 6f 20 31 30 2e 32 33 2e 30 2e 30 2f 32 30 | t.subnets.belong.to.10.23.0.0/20 |
| 122180 | 2e 20 41 6c 6c 20 63 6c 69 65 6e 74 73 20 6e 65 65 64 20 61 63 63 65 73 73 20 74 6f 20 74 68 65 | ..All.clients.need.access.to.the |
| 1221a0 | 20 31 39 32 2e 31 36 38 2e 30 2e 30 2f 31 36 20 6e 65 74 77 6f 72 6b 2e 00 53 75 70 70 72 65 73 | .192.168.0.0/16.network..Suppres |
| 1221c0 | 73 20 73 65 6e 64 69 6e 67 20 43 61 70 61 62 69 6c 69 74 79 20 4e 65 67 6f 74 69 61 74 69 6f 6e | s.sending.Capability.Negotiation |
| 1221e0 | 20 61 73 20 4f 50 45 4e 20 6d 65 73 73 61 67 65 20 6f 70 74 69 6f 6e 61 6c 20 70 61 72 61 6d 65 | .as.OPEN.message.optional.parame |
| 122200 | 74 65 72 20 74 6f 20 74 68 65 20 70 65 65 72 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 6f 6e | ter.to.the.peer..This.command.on |
| 122220 | 6c 79 20 61 66 66 65 63 74 73 20 74 68 65 20 70 65 65 72 20 69 73 20 63 6f 6e 66 69 67 75 72 65 | ly.affects.the.peer.is.configure |
| 122240 | 64 20 6f 74 68 65 72 20 74 68 61 6e 20 49 50 76 34 20 75 6e 69 63 61 73 74 20 63 6f 6e 66 69 67 | d.other.than.IPv4.unicast.config |
| 122260 | 75 72 61 74 69 6f 6e 2e 00 53 75 72 69 63 61 74 61 20 46 65 61 74 75 72 65 73 00 53 75 72 69 63 | uration..Suricata.Features.Suric |
| 122280 | 61 74 61 20 61 6e 64 20 56 79 4f 53 20 61 72 65 20 70 6f 77 65 72 66 75 6c 20 74 6f 6f 6c 73 20 | ata.and.VyOS.are.powerful.tools. |
| 1222a0 | 66 6f 72 20 65 6e 73 75 72 69 6e 67 20 6e 65 74 77 6f 72 6b 20 73 65 63 75 72 69 74 79 20 61 6e | for.ensuring.network.security.an |
| 1222c0 | 64 20 74 72 61 66 66 69 63 20 6d 61 6e 61 67 65 6d 65 6e 74 2e 20 53 75 72 69 63 61 74 61 20 69 | d.traffic.management..Suricata.i |
| 1222e0 | 73 20 61 6e 20 6f 70 65 6e 2d 73 6f 75 72 63 65 20 69 6e 74 72 75 73 69 6f 6e 20 64 65 74 65 63 | s.an.open-source.intrusion.detec |
| 122300 | 74 69 6f 6e 20 61 6e 64 20 70 72 65 76 65 6e 74 69 6f 6e 20 73 79 73 74 65 6d 20 28 49 44 53 2f | tion.and.prevention.system.(IDS/ |
| 122320 | 49 50 53 29 20 74 68 61 74 20 61 6e 61 6c 79 7a 65 73 20 6e 65 74 77 6f 72 6b 20 70 61 63 6b 65 | IPS).that.analyzes.network.packe |
| 122340 | 74 73 20 69 6e 20 72 65 61 6c 2d 74 69 6d 65 2e 00 53 79 6e 61 6d 69 63 20 69 6e 73 74 72 75 63 | ts.in.real-time..Synamic.instruc |
| 122360 | 74 73 20 74 6f 20 66 6f 72 77 61 72 64 20 74 6f 20 61 6c 6c 20 70 65 65 72 73 20 77 68 69 63 68 | ts.to.forward.to.all.peers.which |
| 122380 | 20 77 65 20 68 61 76 65 20 61 20 64 69 72 65 63 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 | .we.have.a.direct.connection.wit |
| 1223a0 | 68 2e 20 41 6c 74 65 72 6e 61 74 69 76 65 6c 79 2c 20 79 6f 75 20 63 61 6e 20 73 70 65 63 69 66 | h..Alternatively,.you.can.specif |
| 1223c0 | 79 20 74 68 65 20 64 69 72 65 63 74 69 76 65 20 6d 75 6c 74 69 70 6c 65 20 74 69 6d 65 73 20 66 | y.the.directive.multiple.times.f |
| 1223e0 | 6f 72 20 65 61 63 68 20 70 72 6f 74 6f 63 6f 6c 2d 61 64 64 72 65 73 73 20 74 68 65 20 6d 75 6c | or.each.protocol-address.the.mul |
| 122400 | 74 69 63 61 73 74 20 74 72 61 66 66 69 63 20 73 68 6f 75 6c 64 20 62 65 20 73 65 6e 74 20 74 6f | ticast.traffic.should.be.sent.to |
| 122420 | 2e 00 53 79 6e 63 20 67 72 6f 75 70 73 00 53 79 6e 63 68 72 6f 6e 69 7a 65 20 74 68 65 20 74 69 | ..Sync.groups.Synchronize.the.ti |
| 122440 | 6d 65 2d 7a 6f 6e 65 20 61 6e 64 20 4f 53 50 46 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 | me-zone.and.OSPF.configuration.f |
| 122460 | 72 6f 6d 20 52 6f 75 74 65 72 20 41 20 74 6f 20 52 6f 75 74 65 72 20 42 00 53 79 6e 70 72 6f 78 | rom.Router.A.to.Router.B.Synprox |
| 122480 | 79 00 53 79 6e 70 72 6f 78 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 00 53 79 6e 70 72 6f 78 79 20 | y.Synproxy.connections.Synproxy. |
| 1224a0 | 72 65 6c 69 65 73 20 6f 6e 20 73 79 6e 63 6f 6f 6b 69 65 73 20 61 6e 64 20 54 43 50 20 74 69 6d | relies.on.syncookies.and.TCP.tim |
| 1224c0 | 65 73 74 61 6d 70 73 2c 20 65 6e 73 75 72 65 20 74 68 65 73 65 20 61 72 65 20 65 6e 61 62 6c 65 | estamps,.ensure.these.are.enable |
| 1224e0 | 64 00 53 79 6e 74 61 78 20 68 61 73 20 63 68 61 6e 67 65 64 20 66 72 6f 6d 20 56 79 4f 53 20 31 | d.Syntax.has.changed.from.VyOS.1 |
| 122500 | 2e 32 20 28 63 72 75 78 29 20 61 6e 64 20 69 74 20 77 69 6c 6c 20 62 65 20 61 75 74 6f 6d 61 74 | .2.(crux).and.it.will.be.automat |
| 122520 | 69 63 61 6c 6c 79 20 6d 69 67 72 61 74 65 64 20 64 75 72 69 6e 67 20 61 6e 20 75 70 67 72 61 64 | ically.migrated.during.an.upgrad |
| 122540 | 65 2e 00 53 79 73 63 74 6c 00 53 79 73 6c 6f 67 00 53 79 73 6c 6f 67 20 73 75 70 70 6f 72 74 73 | e..Sysctl.Syslog.Syslog.supports |
| 122560 | 20 6c 6f 67 67 69 6e 67 20 74 6f 20 6d 75 6c 74 69 70 6c 65 20 74 61 72 67 65 74 73 2c 20 74 68 | .logging.to.multiple.targets,.th |
| 122580 | 6f 73 65 20 74 61 72 67 65 74 73 20 63 6f 75 6c 64 20 62 65 20 61 20 70 6c 61 69 6e 20 66 69 6c | ose.targets.could.be.a.plain.fil |
| 1225a0 | 65 20 6f 6e 20 79 6f 75 72 20 56 79 4f 53 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 20 69 74 73 65 | e.on.your.VyOS.installation.itse |
| 1225c0 | 6c 66 2c 20 61 20 73 65 72 69 61 6c 20 63 6f 6e 73 6f 6c 65 20 6f 72 20 61 20 72 65 6d 6f 74 65 | lf,.a.serial.console.or.a.remote |
| 1225e0 | 20 73 79 73 6c 6f 67 20 73 65 72 76 65 72 20 77 68 69 63 68 20 69 73 20 72 65 61 63 68 65 64 20 | .syslog.server.which.is.reached. |
| 122600 | 76 69 61 20 3a 61 62 62 72 3a 60 49 50 20 28 49 6e 74 65 72 6e 65 74 20 50 72 6f 74 6f 63 6f 6c | via.:abbr:`IP.(Internet.Protocol |
| 122620 | 29 60 20 55 44 50 2f 54 43 50 2e 00 53 79 73 6c 6f 67 20 75 73 65 73 20 6c 6f 67 72 6f 74 61 74 | )`.UDP/TCP..Syslog.uses.logrotat |
| 122640 | 65 20 74 6f 20 72 6f 74 61 74 65 20 6c 6f 67 66 69 6c 65 73 20 61 66 74 65 72 20 61 20 6e 75 6d | e.to.rotate.logfiles.after.a.num |
| 122660 | 62 65 72 20 6f 66 20 67 69 76 65 73 20 62 79 74 65 73 2e 20 57 65 20 6b 65 65 70 20 61 73 20 6d | ber.of.gives.bytes..We.keep.as.m |
| 122680 | 61 6e 79 20 61 73 20 60 3c 6e 75 6d 62 65 72 3e 60 20 72 6f 74 61 74 65 64 20 66 69 6c 65 20 62 | any.as.`<number>`.rotated.file.b |
| 1226a0 | 65 66 6f 72 65 20 74 68 65 79 20 61 72 65 20 64 65 6c 65 74 65 64 20 6f 6e 20 74 68 65 20 73 79 | efore.they.are.deleted.on.the.sy |
| 1226c0 | 73 74 65 6d 2e 00 53 79 73 6c 6f 67 20 75 73 65 73 20 6c 6f 67 72 6f 74 61 74 65 20 74 6f 20 72 | stem..Syslog.uses.logrotate.to.r |
| 1226e0 | 6f 74 61 74 65 20 6c 6f 67 69 6c 65 73 20 61 66 74 65 72 20 61 20 6e 75 6d 62 65 72 20 6f 66 20 | otate.logiles.after.a.number.of. |
| 122700 | 67 69 76 65 73 20 62 79 74 65 73 2e 20 57 65 20 6b 65 65 70 20 61 73 20 6d 61 6e 79 20 61 73 20 | gives.bytes..We.keep.as.many.as. |
| 122720 | 60 3c 6e 75 6d 62 65 72 3e 60 20 72 6f 74 61 74 65 64 20 66 69 6c 65 20 62 65 66 6f 72 65 20 74 | `<number>`.rotated.file.before.t |
| 122740 | 68 65 79 20 61 72 65 20 64 65 6c 65 74 65 64 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 00 53 | hey.are.deleted.on.the.system..S |
| 122760 | 79 73 6c 6f 67 20 77 69 6c 6c 20 77 72 69 74 65 20 60 3c 73 69 7a 65 3e 60 20 6b 69 6c 6f 62 79 | yslog.will.write.`<size>`.kiloby |
| 122780 | 74 65 73 20 69 6e 74 6f 20 74 68 65 20 66 69 6c 65 20 73 70 65 63 69 66 69 65 64 20 62 79 20 60 | tes.into.the.file.specified.by.` |
| 1227a0 | 3c 66 69 6c 65 6e 61 6d 65 3e 60 2e 20 41 66 74 65 72 20 74 68 69 73 20 6c 69 6d 69 74 20 68 61 | <filename>`..After.this.limit.ha |
| 1227c0 | 73 20 62 65 65 6e 20 72 65 61 63 68 65 64 2c 20 74 68 65 20 63 75 73 74 6f 6d 20 66 69 6c 65 20 | s.been.reached,.the.custom.file. |
| 1227e0 | 69 73 20 22 72 6f 74 61 74 65 64 22 20 62 79 20 6c 6f 67 72 6f 74 61 74 65 20 61 6e 64 20 61 20 | is."rotated".by.logrotate.and.a. |
| 122800 | 6e 65 77 20 63 75 73 74 6f 6d 20 66 69 6c 65 20 69 73 20 63 72 65 61 74 65 64 2e 00 53 79 73 74 | new.custom.file.is.created..Syst |
| 122820 | 65 6d 00 53 79 73 74 65 6d 20 44 4e 53 00 53 79 73 74 65 6d 20 44 69 73 70 6c 61 79 20 28 4c 43 | em.System.DNS.System.Display.(LC |
| 122840 | 44 29 00 53 79 73 74 65 6d 20 4e 61 6d 65 20 61 6e 64 20 44 65 73 63 72 69 70 74 69 6f 6e 00 53 | D).System.Name.and.Description.S |
| 122860 | 79 73 74 65 6d 20 50 72 6f 78 79 00 53 79 73 74 65 6d 20 57 69 64 65 20 63 6f 6e 66 69 67 75 72 | ystem.Proxy.System.Wide.configur |
| 122880 | 61 74 69 6f 6e 00 53 79 73 74 65 6d 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 28 73 77 69 74 63 | ation.System.capabilities.(switc |
| 1228a0 | 68 69 6e 67 2c 20 72 6f 75 74 69 6e 67 2c 20 65 74 63 2e 29 00 53 79 73 74 65 6d 20 63 6f 6e 66 | hing,.routing,.etc.).System.conf |
| 1228c0 | 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 00 53 79 73 74 65 6d 20 64 61 65 6d 6f 6e | iguration.commands.System.daemon |
| 1228e0 | 73 00 53 79 73 74 65 6d 20 69 64 65 6e 74 69 66 69 65 72 3a 20 60 60 31 39 32 31 2e 36 38 30 30 | s.System.identifier:.``1921.6800 |
| 122900 | 2e 31 30 30 32 60 60 20 2d 20 66 6f 72 20 73 79 73 74 65 6d 20 69 64 65 6e 74 69 66 69 65 72 73 | .1002``.-.for.system.identifiers |
| 122920 | 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 74 6f 20 75 73 65 20 49 50 20 61 64 64 72 65 73 73 20 | .we.recommend.to.use.IP.address. |
| 122940 | 6f 72 20 4d 41 43 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 | or.MAC.address.of.the.router.its |
| 122960 | 65 6c 66 2e 20 54 68 65 20 77 61 79 20 74 6f 20 63 6f 6e 73 74 72 75 63 74 20 74 68 69 73 20 69 | elf..The.way.to.construct.this.i |
| 122980 | 73 20 74 6f 20 6b 65 65 70 20 61 6c 6c 20 6f 66 20 74 68 65 20 7a 65 72 6f 65 73 20 6f 66 20 74 | s.to.keep.all.of.the.zeroes.of.t |
| 1229a0 | 68 65 20 72 6f 75 74 65 72 20 49 50 20 61 64 64 72 65 73 73 2c 20 61 6e 64 20 74 68 65 6e 20 63 | he.router.IP.address,.and.then.c |
| 1229c0 | 68 61 6e 67 65 20 74 68 65 20 70 65 72 69 6f 64 73 20 66 72 6f 6d 20 62 65 69 6e 67 20 65 76 65 | hange.the.periods.from.being.eve |
| 1229e0 | 72 79 20 74 68 72 65 65 20 6e 75 6d 62 65 72 73 20 74 6f 20 65 76 65 72 79 20 66 6f 75 72 20 6e | ry.three.numbers.to.every.four.n |
| 122a00 | 75 6d 62 65 72 73 2e 20 54 68 65 20 61 64 64 72 65 73 73 20 74 68 61 74 20 69 73 20 6c 69 73 74 | umbers..The.address.that.is.list |
| 122a20 | 65 64 20 68 65 72 65 20 69 73 20 60 60 31 39 32 2e 31 36 38 2e 31 2e 32 60 60 2c 20 77 68 69 63 | ed.here.is.``192.168.1.2``,.whic |
| 122a40 | 68 20 69 66 20 65 78 70 61 6e 64 65 64 20 77 69 6c 6c 20 74 75 72 6e 20 69 6e 74 6f 20 60 60 31 | h.if.expanded.will.turn.into.``1 |
| 122a60 | 39 32 2e 31 36 38 2e 30 30 31 2e 30 30 32 60 60 2e 20 54 68 65 6e 20 61 6c 6c 20 6f 6e 65 20 68 | 92.168.001.002``..Then.all.one.h |
| 122a80 | 61 73 20 74 6f 20 64 6f 20 69 73 20 6d 6f 76 65 20 74 68 65 20 64 6f 74 73 20 74 6f 20 68 61 76 | as.to.do.is.move.the.dots.to.hav |
| 122aa0 | 65 20 66 6f 75 72 20 6e 75 6d 62 65 72 73 20 69 6e 73 74 65 61 64 20 6f 66 20 74 68 72 65 65 2e | e.four.numbers.instead.of.three. |
| 122ac0 | 20 54 68 69 73 20 67 69 76 65 73 20 75 73 20 60 60 31 39 32 31 2e 36 38 30 30 2e 31 30 30 32 60 | .This.gives.us.``1921.6800.1002` |
| 122ae0 | 60 2e 00 53 79 73 74 65 6d 20 69 64 65 6e 74 69 66 69 65 72 3a 20 60 60 31 39 32 31 2e 36 38 30 | `..System.identifier:.``1921.680 |
| 122b00 | 30 2e 31 30 30 32 60 60 20 2d 20 66 6f 72 20 73 79 73 74 65 6d 20 69 64 65 74 69 66 69 65 72 73 | 0.1002``.-.for.system.idetifiers |
| 122b20 | 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 74 6f 20 75 73 65 20 49 50 20 61 64 64 72 65 73 73 20 | .we.recommend.to.use.IP.address. |
| 122b40 | 6f 72 20 4d 41 43 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 | or.MAC.address.of.the.router.its |
| 122b60 | 65 6c 66 2e 20 54 68 65 20 77 61 79 20 74 6f 20 63 6f 6e 73 74 72 75 63 74 20 74 68 69 73 20 69 | elf..The.way.to.construct.this.i |
| 122b80 | 73 20 74 6f 20 6b 65 65 70 20 61 6c 6c 20 6f 66 20 74 68 65 20 7a 65 72 6f 65 73 20 6f 66 20 74 | s.to.keep.all.of.the.zeroes.of.t |
| 122ba0 | 68 65 20 72 6f 75 74 65 72 20 49 50 20 61 64 64 72 65 73 73 2c 20 61 6e 64 20 74 68 65 6e 20 63 | he.router.IP.address,.and.then.c |
| 122bc0 | 68 61 6e 67 65 20 74 68 65 20 70 65 72 69 6f 64 73 20 66 72 6f 6d 20 62 65 69 6e 67 20 65 76 65 | hange.the.periods.from.being.eve |
| 122be0 | 72 79 20 74 68 72 65 65 20 6e 75 6d 62 65 72 73 20 74 6f 20 65 76 65 72 79 20 66 6f 75 72 20 6e | ry.three.numbers.to.every.four.n |
| 122c00 | 75 6d 62 65 72 73 2e 20 54 68 65 20 61 64 64 72 65 73 73 20 74 68 61 74 20 69 73 20 6c 69 73 74 | umbers..The.address.that.is.list |
| 122c20 | 65 64 20 68 65 72 65 20 69 73 20 60 60 31 39 32 2e 31 36 38 2e 31 2e 32 60 60 2c 20 77 68 69 63 | ed.here.is.``192.168.1.2``,.whic |
| 122c40 | 68 20 69 66 20 65 78 70 61 6e 64 65 64 20 77 69 6c 6c 20 74 75 72 6e 20 69 6e 74 6f 20 60 60 31 | h.if.expanded.will.turn.into.``1 |
| 122c60 | 39 32 2e 31 36 38 2e 30 30 31 2e 30 30 32 60 60 2e 20 54 68 65 6e 20 61 6c 6c 20 6f 6e 65 20 68 | 92.168.001.002``..Then.all.one.h |
| 122c80 | 61 73 20 74 6f 20 64 6f 20 69 73 20 6d 6f 76 65 20 74 68 65 20 64 6f 74 73 20 74 6f 20 68 61 76 | as.to.do.is.move.the.dots.to.hav |
| 122ca0 | 65 20 66 6f 75 72 20 6e 75 6d 62 65 72 73 20 69 6e 73 74 65 61 64 20 6f 66 20 74 68 72 65 65 2e | e.four.numbers.instead.of.three. |
| 122cc0 | 20 54 68 69 73 20 67 69 76 65 73 20 75 73 20 60 60 31 39 32 31 2e 36 38 30 30 2e 31 30 30 32 60 | .This.gives.us.``1921.6800.1002` |
| 122ce0 | 60 2e 00 53 79 73 74 65 6d 20 69 73 20 75 6e 75 73 61 62 6c 65 20 2d 20 61 20 70 61 6e 69 63 20 | `..System.is.unusable.-.a.panic. |
| 122d00 | 63 6f 6e 64 69 74 69 6f 6e 00 54 41 43 41 43 53 20 45 78 61 6d 70 6c 65 00 54 41 43 41 43 53 20 | condition.TACACS.Example.TACACS. |
| 122d20 | 69 73 20 64 65 66 69 6e 65 64 20 69 6e 20 3a 72 66 63 3a 60 38 39 30 37 60 2e 00 54 41 43 41 43 | is.defined.in.:rfc:`8907`..TACAC |
| 122d40 | 53 20 73 65 72 76 65 72 73 20 63 6f 75 6c 64 20 62 65 20 68 61 72 64 65 6e 65 64 20 62 79 20 6f | S.servers.could.be.hardened.by.o |
| 122d60 | 6e 6c 79 20 61 6c 6c 6f 77 69 6e 67 20 63 65 72 74 61 69 6e 20 49 50 20 61 64 64 72 65 73 73 65 | nly.allowing.certain.IP.addresse |
| 122d80 | 73 20 74 6f 20 63 6f 6e 6e 65 63 74 2e 20 41 73 20 6f 66 20 74 68 69 73 20 74 68 65 20 73 6f 75 | s.to.connect..As.of.this.the.sou |
| 122da0 | 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 65 61 63 68 20 54 41 43 41 43 53 20 71 75 65 72 79 | rce.address.of.each.TACACS.query |
| 122dc0 | 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 54 41 43 41 43 53 2b 00 54 42 44 00 | .can.be.configured..TACACS+.TBD. |
| 122de0 | 54 43 50 20 26 20 55 44 50 20 73 65 72 76 69 63 65 73 20 72 75 6e 6e 69 6e 67 20 69 6e 20 74 68 | TCP.&.UDP.services.running.in.th |
| 122e00 | 65 20 64 65 66 61 75 6c 74 20 56 52 46 20 63 6f 6e 74 65 78 74 20 28 69 65 2e 2c 20 6e 6f 74 20 | e.default.VRF.context.(ie.,.not. |
| 122e20 | 62 6f 75 6e 64 20 74 6f 20 61 6e 79 20 56 52 46 20 64 65 76 69 63 65 29 20 63 61 6e 20 77 6f 72 | bound.to.any.VRF.device).can.wor |
| 122e40 | 6b 20 61 63 72 6f 73 73 20 61 6c 6c 20 56 52 46 20 64 6f 6d 61 69 6e 73 20 62 79 20 65 6e 61 62 | k.across.all.VRF.domains.by.enab |
| 122e60 | 6c 69 6e 67 20 74 68 69 73 20 6f 70 74 69 6f 6e 2e 00 54 43 50 20 63 68 65 63 6b 73 00 54 46 54 | ling.this.option..TCP.checks.TFT |
| 122e80 | 50 20 53 65 72 76 65 72 00 54 61 67 20 69 73 20 74 68 65 20 6f 70 74 69 6f 6e 61 6c 20 70 61 72 | P.Server.Tag.is.the.optional.par |
| 122ea0 | 61 6d 65 74 65 72 2e 20 49 66 20 74 61 67 20 63 6f 6e 66 69 67 75 72 65 64 20 53 75 6d 6d 61 72 | ameter..If.tag.configured.Summar |
| 122ec0 | 79 20 72 6f 75 74 65 20 77 69 6c 6c 20 62 65 20 6f 72 69 67 69 6e 61 74 65 64 20 77 69 74 68 20 | y.route.will.be.originated.with. |
| 122ee0 | 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 61 67 2e 00 54 61 73 6b 20 53 63 68 65 64 75 6c | the.configured.tag..Task.Schedul |
| 122f00 | 65 72 00 54 65 6c 65 67 72 61 66 00 54 65 6c 65 67 72 61 66 20 63 61 6e 20 62 65 20 75 73 65 64 | er.Telegraf.Telegraf.can.be.used |
| 122f20 | 20 74 6f 20 73 65 6e 64 20 6c 6f 67 73 20 74 6f 20 4c 6f 6b 69 20 75 73 69 6e 67 20 74 61 67 73 | .to.send.logs.to.Loki.using.tags |
| 122f40 | 20 61 73 20 6c 61 62 65 6c 73 2e 00 54 65 6c 65 67 72 61 66 20 6f 75 74 70 75 74 20 70 6c 75 67 | .as.labels..Telegraf.output.plug |
| 122f60 | 69 6e 20 61 7a 75 72 65 2d 64 61 74 61 2d 65 78 70 6c 6f 72 65 72 5f 00 54 65 6c 65 67 72 61 66 | in.azure-data-explorer_.Telegraf |
| 122f80 | 20 6f 75 74 70 75 74 20 70 6c 75 67 69 6e 20 70 72 6f 6d 65 74 68 65 75 73 2d 63 6c 69 65 6e 74 | .output.plugin.prometheus-client |
| 122fa0 | 5f 00 54 65 6c 65 67 72 61 66 20 6f 75 74 70 75 74 20 70 6c 75 67 69 6e 20 73 70 6c 75 6e 6b 5f | _.Telegraf.output.plugin.splunk_ |
| 122fc0 | 2e 20 48 54 54 50 20 45 76 65 6e 74 20 43 6f 6c 6c 65 63 74 6f 72 2e 00 54 65 6c 6c 20 50 49 4d | ..HTTP.Event.Collector..Tell.PIM |
| 122fe0 | 20 74 68 61 74 20 77 65 20 77 6f 75 6c 64 20 6e 6f 74 20 6c 69 6b 65 20 74 6f 20 75 73 65 20 74 | .that.we.would.not.like.to.use.t |
| 123000 | 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 70 72 6f 63 65 73 73 20 62 6f 6f 74 73 74 72 | his.interface.to.process.bootstr |
| 123020 | 61 70 20 6d 65 73 73 61 67 65 73 2e 00 54 65 6c 6c 20 50 49 4d 20 74 68 61 74 20 77 65 20 77 6f | ap.messages..Tell.PIM.that.we.wo |
| 123040 | 75 6c 64 20 6e 6f 74 20 6c 69 6b 65 20 74 6f 20 75 73 65 20 74 68 69 73 20 69 6e 74 65 72 66 61 | uld.not.like.to.use.this.interfa |
| 123060 | 63 65 20 74 6f 20 70 72 6f 63 65 73 73 20 75 6e 69 63 61 73 74 20 62 6f 6f 74 73 74 72 61 70 20 | ce.to.process.unicast.bootstrap. |
| 123080 | 6d 65 73 73 61 67 65 73 2e 00 54 65 6c 6c 20 68 6f 73 74 73 20 74 6f 20 75 73 65 20 74 68 65 20 | messages..Tell.hosts.to.use.the. |
| 1230a0 | 61 64 6d 69 6e 69 73 74 65 72 65 64 20 28 73 74 61 74 65 66 75 6c 29 20 70 72 6f 74 6f 63 6f 6c | administered.(stateful).protocol |
| 1230c0 | 20 28 69 2e 65 2e 20 44 48 43 50 29 20 66 6f 72 20 61 75 74 6f 63 6f 6e 66 69 67 75 72 61 74 69 | .(i.e..DHCP).for.autoconfigurati |
| 1230e0 | 6f 6e 20 6f 66 20 6f 74 68 65 72 20 28 6e 6f 6e 2d 61 64 64 72 65 73 73 29 20 69 6e 66 6f 72 6d | on.of.other.(non-address).inform |
| 123100 | 61 74 69 6f 6e 00 54 65 6c 6c 20 68 6f 73 74 73 20 74 6f 20 75 73 65 20 74 68 65 20 61 64 6d 69 | ation.Tell.hosts.to.use.the.admi |
| 123120 | 6e 69 73 74 65 72 65 64 20 73 74 61 74 65 66 75 6c 20 70 72 6f 74 6f 63 6f 6c 20 28 69 2e 65 2e | nistered.stateful.protocol.(i.e. |
| 123140 | 20 44 48 43 50 29 20 66 6f 72 20 61 75 74 6f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 54 65 6c | .DHCP).for.autoconfiguration.Tel |
| 123160 | 6c 20 74 68 65 20 41 50 20 74 68 61 74 20 61 6e 74 65 6e 6e 61 20 70 6f 73 69 74 69 6f 6e 73 20 | l.the.AP.that.antenna.positions. |
| 123180 | 61 72 65 20 66 69 78 65 64 20 61 6e 64 20 77 69 6c 6c 20 6e 6f 74 20 63 68 61 6e 67 65 20 64 75 | are.fixed.and.will.not.change.du |
| 1231a0 | 72 69 6e 67 20 74 68 65 20 6c 69 66 65 74 69 6d 65 20 6f 66 20 61 6e 20 61 73 73 6f 63 69 61 74 | ring.the.lifetime.of.an.associat |
| 1231c0 | 69 6f 6e 2e 00 54 65 6d 70 6f 72 61 72 79 20 64 69 73 61 62 6c 65 20 74 68 69 73 20 52 41 44 49 | ion..Temporary.disable.this.RADI |
| 1231e0 | 55 53 20 73 65 72 76 65 72 2e 00 54 65 6d 70 6f 72 61 72 79 20 64 69 73 61 62 6c 65 20 74 68 69 | US.server..Temporary.disable.thi |
| 123200 | 73 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 20 49 74 20 77 6f 6e 27 74 20 62 65 20 71 75 65 | s.RADIUS.server..It.won't.be.que |
| 123220 | 72 69 65 64 2e 00 54 65 6d 70 6f 72 61 72 79 20 64 69 73 61 62 6c 65 20 74 68 69 73 20 54 41 43 | ried..Temporary.disable.this.TAC |
| 123240 | 41 43 53 20 73 65 72 76 65 72 2e 20 49 74 20 77 6f 6e 27 74 20 62 65 20 71 75 65 72 69 65 64 2e | ACS.server..It.won't.be.queried. |
| 123260 | 00 54 65 72 6d 69 6e 61 74 65 20 53 53 4c 00 54 65 73 74 20 63 6f 6e 6e 65 63 74 69 6e 67 20 67 | .Terminate.SSL.Test.connecting.g |
| 123280 | 69 76 65 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 2d 6f 72 69 65 6e 74 65 64 20 69 6e 74 65 72 66 61 | iven.connection-oriented.interfa |
| 1232a0 | 63 65 2e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 63 61 6e 20 62 65 20 60 60 70 70 70 6f 65 | ce..`<interface>`.can.be.``pppoe |
| 1232c0 | 30 60 60 20 61 73 20 74 68 65 20 65 78 61 6d 70 6c 65 2e 00 54 65 73 74 20 63 6f 6e 6e 65 63 74 | 0``.as.the.example..Test.connect |
| 1232e0 | 69 6e 67 20 67 69 76 65 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 2d 6f 72 69 65 6e 74 65 64 20 69 6e | ing.given.connection-oriented.in |
| 123300 | 74 65 72 66 61 63 65 2e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 63 61 6e 20 62 65 20 60 60 | terface..`<interface>`.can.be.`` |
| 123320 | 73 73 74 70 63 30 60 60 20 61 73 20 74 68 65 20 65 78 61 6d 70 6c 65 2e 00 54 65 73 74 20 64 69 | sstpc0``.as.the.example..Test.di |
| 123340 | 73 63 6f 6e 6e 65 63 74 69 6e 67 20 67 69 76 65 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 2d 6f 72 69 | sconnecting.given.connection-ori |
| 123360 | 65 6e 74 65 64 20 69 6e 74 65 72 66 61 63 65 2e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 63 | ented.interface..`<interface>`.c |
| 123380 | 61 6e 20 62 65 20 60 60 70 70 70 6f 65 30 60 60 20 61 73 20 74 68 65 20 65 78 61 6d 70 6c 65 2e | an.be.``pppoe0``.as.the.example. |
| 1233a0 | 00 54 65 73 74 20 64 69 73 63 6f 6e 6e 65 63 74 69 6e 67 20 67 69 76 65 6e 20 63 6f 6e 6e 65 63 | .Test.disconnecting.given.connec |
| 1233c0 | 74 69 6f 6e 2d 6f 72 69 65 6e 74 65 64 20 69 6e 74 65 72 66 61 63 65 2e 20 60 3c 69 6e 74 65 72 | tion-oriented.interface..`<inter |
| 1233e0 | 66 61 63 65 3e 60 20 63 61 6e 20 62 65 20 60 60 73 73 74 70 63 30 60 60 20 61 73 20 74 68 65 20 | face>`.can.be.``sstpc0``.as.the. |
| 123400 | 65 78 61 6d 70 6c 65 2e 00 54 65 73 74 20 66 72 6f 6d 20 74 68 65 20 49 50 76 36 20 6f 6e 6c 79 | example..Test.from.the.IPv6.only |
| 123420 | 20 63 6c 69 65 6e 74 3a 00 54 65 73 74 69 6e 67 20 53 53 54 50 00 54 65 73 74 69 6e 67 20 61 6e | .client:.Testing.SSTP.Testing.an |
| 123440 | 64 20 56 61 6c 69 64 61 74 69 6f 6e 00 54 68 61 6e 6b 73 20 74 6f 20 74 68 69 73 20 64 69 73 63 | d.Validation.Thanks.to.this.disc |
| 123460 | 6f 76 65 72 79 2c 20 61 6e 79 20 73 75 62 73 65 71 75 65 6e 74 20 74 72 61 66 66 69 63 20 62 65 | overy,.any.subsequent.traffic.be |
| 123480 | 74 77 65 65 6e 20 50 43 34 20 61 6e 64 20 50 43 35 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 75 73 | tween.PC4.and.PC5.will.not.be.us |
| 1234a0 | 69 6e 67 20 74 68 65 20 6d 75 6c 74 69 63 61 73 74 2d 61 64 64 72 65 73 73 20 62 65 74 77 65 65 | ing.the.multicast-address.betwee |
| 1234c0 | 6e 20 74 68 65 20 6c 65 61 76 65 73 20 61 73 20 74 68 65 79 20 62 6f 74 68 20 6b 6e 6f 77 20 62 | n.the.leaves.as.they.both.know.b |
| 1234e0 | 65 68 69 6e 64 20 77 68 69 63 68 20 4c 65 61 66 20 74 68 65 20 50 43 73 20 61 72 65 20 63 6f 6e | ehind.which.Leaf.the.PCs.are.con |
| 123500 | 6e 65 63 74 65 64 2e 20 54 68 69 73 20 73 61 76 65 73 20 74 72 61 66 66 69 63 20 61 73 20 6c 65 | nected..This.saves.traffic.as.le |
| 123520 | 73 73 20 6d 75 6c 74 69 63 61 73 74 20 70 61 63 6b 65 74 73 20 73 65 6e 74 20 72 65 64 75 63 65 | ss.multicast.packets.sent.reduce |
| 123540 | 73 20 74 68 65 20 6c 6f 61 64 20 6f 6e 20 74 68 65 20 6e 65 74 77 6f 72 6b 2c 20 77 68 69 63 68 | s.the.load.on.the.network,.which |
| 123560 | 20 69 6d 70 72 6f 76 65 73 20 73 63 61 6c 61 62 69 6c 69 74 79 20 77 68 65 6e 20 6d 6f 72 65 20 | .improves.scalability.when.more. |
| 123580 | 6c 65 61 76 65 73 20 61 72 65 20 61 64 64 65 64 2e 00 54 68 61 74 20 69 73 20 68 6f 77 20 69 74 | leaves.are.added..That.is.how.it |
| 1235a0 | 20 69 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 64 6f 20 74 68 65 20 73 6f 2d 63 61 6c 6c 65 64 | .is.possible.to.do.the.so-called |
| 1235c0 | 20 22 69 6e 67 72 65 73 73 20 73 68 61 70 69 6e 67 22 2e 00 54 68 61 74 20 6c 6f 6f 6b 73 20 67 | ."ingress.shaping"..That.looks.g |
| 1235e0 | 6f 6f 64 20 2d 20 77 65 20 64 65 66 69 6e 65 64 20 32 20 74 75 6e 6e 65 6c 73 20 61 6e 64 20 74 | ood.-.we.defined.2.tunnels.and.t |
| 123600 | 68 65 79 27 72 65 20 62 6f 74 68 20 75 70 20 61 6e 64 20 72 75 6e 6e 69 6e 67 2e 00 54 68 65 20 | hey're.both.up.and.running..The. |
| 123620 | 3a 61 62 62 72 3a 60 41 53 4e 20 28 41 75 74 6f 6e 6f 6d 6f 75 73 20 53 79 73 74 65 6d 20 4e 75 | :abbr:`ASN.(Autonomous.System.Nu |
| 123640 | 6d 62 65 72 29 60 20 69 73 20 6f 6e 65 20 6f 66 20 74 68 65 20 65 73 73 65 6e 74 69 61 6c 20 65 | mber)`.is.one.of.the.essential.e |
| 123660 | 6c 65 6d 65 6e 74 73 20 6f 66 20 42 47 50 2e 20 42 47 50 20 69 73 20 61 20 64 69 73 74 61 6e 63 | lements.of.BGP..BGP.is.a.distanc |
| 123680 | 65 20 76 65 63 74 6f 72 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 2c 20 61 6e 64 20 74 | e.vector.routing.protocol,.and.t |
| 1236a0 | 68 65 20 41 53 2d 50 61 74 68 20 66 72 61 6d 65 77 6f 72 6b 20 70 72 6f 76 69 64 65 73 20 64 69 | he.AS-Path.framework.provides.di |
| 1236c0 | 73 74 61 6e 63 65 20 76 65 63 74 6f 72 20 6d 65 74 72 69 63 20 61 6e 64 20 6c 6f 6f 70 20 64 65 | stance.vector.metric.and.loop.de |
| 1236e0 | 74 65 63 74 69 6f 6e 20 74 6f 20 42 47 50 2e 00 54 68 65 20 3a 61 62 62 72 3a 60 44 4e 50 54 76 | tection.to.BGP..The.:abbr:`DNPTv |
| 123700 | 36 20 28 44 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 76 36 2d 74 6f 2d 49 50 76 36 20 4e 65 74 77 | 6.(Destination.IPv6-to-IPv6.Netw |
| 123720 | 6f 72 6b 20 50 72 65 66 69 78 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 64 65 73 74 69 6e 61 | ork.Prefix.Translation)`.destina |
| 123740 | 74 69 6f 6e 20 61 64 64 72 65 73 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 66 75 6e 63 74 69 6f | tion.address.translation.functio |
| 123760 | 6e 20 69 73 20 75 73 65 64 20 69 6e 20 73 63 65 6e 61 72 69 6f 73 20 77 68 65 72 65 20 74 68 65 | n.is.used.in.scenarios.where.the |
| 123780 | 20 73 65 72 76 65 72 20 69 6e 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 | .server.in.the.internal.network. |
| 1237a0 | 70 72 6f 76 69 64 65 73 20 73 65 72 76 69 63 65 73 20 74 6f 20 74 68 65 20 65 78 74 65 72 6e 61 | provides.services.to.the.externa |
| 1237c0 | 6c 20 6e 65 74 77 6f 72 6b 2c 20 73 75 63 68 20 61 73 20 70 72 6f 76 69 64 69 6e 67 20 57 65 62 | l.network,.such.as.providing.Web |
| 1237e0 | 20 73 65 72 76 69 63 65 73 20 6f 72 20 46 54 50 20 73 65 72 76 69 63 65 73 20 74 6f 20 74 68 65 | .services.or.FTP.services.to.the |
| 123800 | 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 2e 20 42 79 20 63 6f 6e 66 69 67 75 72 69 6e | .external.network..By.configurin |
| 123820 | 67 20 74 68 65 20 6d 61 70 70 69 6e 67 20 72 65 6c 61 74 69 6f 6e 73 68 69 70 20 62 65 74 77 65 | g.the.mapping.relationship.betwe |
| 123840 | 65 6e 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 73 65 72 76 65 72 20 61 64 64 72 65 73 73 20 61 | en.the.internal.server.address.a |
| 123860 | 6e 64 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 61 64 64 72 65 73 73 20 | nd.the.external.network.address. |
| 123880 | 6f 6e 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 73 69 64 65 20 69 6e 74 | on.the.external.network.side.int |
| 1238a0 | 65 72 66 61 63 65 20 6f 66 20 74 68 65 20 4e 41 54 36 36 20 64 65 76 69 63 65 2c 20 65 78 74 65 | erface.of.the.NAT66.device,.exte |
| 1238c0 | 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 75 73 65 72 73 20 63 61 6e 20 61 63 63 65 73 73 20 74 68 | rnal.network.users.can.access.th |
| 1238e0 | 65 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 73 65 72 76 65 72 20 74 68 72 6f 75 67 | e.internal.network.server.throug |
| 123900 | 68 20 74 68 65 20 64 65 73 69 67 6e 61 74 65 64 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 | h.the.designated.external.networ |
| 123920 | 6b 20 61 64 64 72 65 73 73 2e 00 54 68 65 20 3a 61 62 62 72 3a 60 4d 50 4c 53 20 28 4d 75 6c 74 | k.address..The.:abbr:`MPLS.(Mult |
| 123940 | 69 2d 50 72 6f 74 6f 63 6f 6c 20 4c 61 62 65 6c 20 53 77 69 74 63 68 69 6e 67 29 60 20 61 72 63 | i-Protocol.Label.Switching)`.arc |
| 123960 | 68 69 74 65 63 74 75 72 65 20 64 6f 65 73 20 6e 6f 74 20 61 73 73 75 6d 65 20 61 20 73 69 6e 67 | hitecture.does.not.assume.a.sing |
| 123980 | 6c 65 20 70 72 6f 74 6f 63 6f 6c 20 74 6f 20 63 72 65 61 74 65 20 4d 50 4c 53 20 70 61 74 68 73 | le.protocol.to.create.MPLS.paths |
| 1239a0 | 2e 20 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 74 68 65 20 4c 61 62 65 6c 20 44 69 73 74 72 69 | ..VyOS.supports.the.Label.Distri |
| 1239c0 | 62 75 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 20 28 4c 44 50 29 20 61 73 20 69 6d 70 6c 65 6d 65 | bution.Protocol.(LDP).as.impleme |
| 1239e0 | 6e 74 65 64 20 62 79 20 46 52 52 2c 20 62 61 73 65 64 20 6f 6e 20 3a 72 66 63 3a 60 35 30 33 36 | nted.by.FRR,.based.on.:rfc:`5036 |
| 123a00 | 60 2e 00 54 68 65 20 3a 61 62 62 72 3a 60 57 4c 41 4e 20 28 57 69 72 65 6c 65 73 73 20 4c 41 4e | `..The.:abbr:`WLAN.(Wireless.LAN |
| 123a20 | 29 60 20 69 6e 74 65 72 66 61 63 65 20 70 72 6f 76 69 64 65 73 20 38 30 32 2e 31 31 20 28 61 2f | )`.interface.provides.802.11.(a/ |
| 123a40 | 62 2f 67 2f 6e 2f 61 63 29 20 77 69 72 65 6c 65 73 73 20 73 75 70 70 6f 72 74 20 28 63 6f 6d 6d | b/g/n/ac).wireless.support.(comm |
| 123a60 | 6f 6e 6c 79 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 57 69 2d 46 69 29 20 62 79 20 6d 65 | only.referred.to.as.Wi-Fi).by.me |
| 123a80 | 61 6e 73 20 6f 66 20 63 6f 6d 70 61 74 69 62 6c 65 20 68 61 72 64 77 61 72 65 2e 20 49 66 20 79 | ans.of.compatible.hardware..If.y |
| 123aa0 | 6f 75 72 20 68 61 72 64 77 61 72 65 20 73 75 70 70 6f 72 74 73 20 69 74 2c 20 56 79 4f 53 20 73 | our.hardware.supports.it,.VyOS.s |
| 123ac0 | 75 70 70 6f 72 74 73 20 6d 75 6c 74 69 70 6c 65 20 6c 6f 67 69 63 61 6c 20 77 69 72 65 6c 65 73 | upports.multiple.logical.wireles |
| 123ae0 | 73 20 69 6e 74 65 72 66 61 63 65 73 20 70 65 72 20 70 68 79 73 69 63 61 6c 20 64 65 76 69 63 65 | s.interfaces.per.physical.device |
| 123b00 | 2e 00 54 68 65 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 2d 6e 61 74 36 36 60 20 72 75 6c 65 20 72 | ..The.:ref:`source-nat66`.rule.r |
| 123b20 | 65 70 6c 61 63 65 73 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 | eplaces.the.source.address.of.th |
| 123b40 | 65 20 70 61 63 6b 65 74 20 61 6e 64 20 63 61 6c 63 75 6c 61 74 65 73 20 74 68 65 20 63 6f 6e 76 | e.packet.and.calculates.the.conv |
| 123b60 | 65 72 74 65 64 20 61 64 64 72 65 73 73 20 75 73 69 6e 67 20 74 68 65 20 70 72 65 66 69 78 20 73 | erted.address.using.the.prefix.s |
| 123b80 | 70 65 63 69 66 69 65 64 20 69 6e 20 74 68 65 20 72 75 6c 65 2e 00 54 68 65 20 41 52 50 20 6d 6f | pecified.in.the.rule..The.ARP.mo |
| 123ba0 | 6e 69 74 6f 72 20 77 6f 72 6b 73 20 62 79 20 70 65 72 69 6f 64 69 63 61 6c 6c 79 20 63 68 65 63 | nitor.works.by.periodically.chec |
| 123bc0 | 6b 69 6e 67 20 74 68 65 20 73 6c 61 76 65 20 64 65 76 69 63 65 73 20 74 6f 20 64 65 74 65 72 6d | king.the.slave.devices.to.determ |
| 123be0 | 69 6e 65 20 77 68 65 74 68 65 72 20 74 68 65 79 20 68 61 76 65 20 73 65 6e 74 20 6f 72 20 72 65 | ine.whether.they.have.sent.or.re |
| 123c00 | 63 65 69 76 65 64 20 74 72 61 66 66 69 63 20 72 65 63 65 6e 74 6c 79 20 28 74 68 65 20 70 72 65 | ceived.traffic.recently.(the.pre |
| 123c20 | 63 69 73 65 20 63 72 69 74 65 72 69 61 20 64 65 70 65 6e 64 73 20 75 70 6f 6e 20 74 68 65 20 62 | cise.criteria.depends.upon.the.b |
| 123c40 | 6f 6e 64 69 6e 67 20 6d 6f 64 65 2c 20 61 6e 64 20 74 68 65 20 73 74 61 74 65 20 6f 66 20 74 68 | onding.mode,.and.the.state.of.th |
| 123c60 | 65 20 73 6c 61 76 65 29 2e 20 52 65 67 75 6c 61 72 20 74 72 61 66 66 69 63 20 69 73 20 67 65 6e | e.slave)..Regular.traffic.is.gen |
| 123c80 | 65 72 61 74 65 64 20 76 69 61 20 41 52 50 20 70 72 6f 62 65 73 20 69 73 73 75 65 64 20 66 6f 72 | erated.via.ARP.probes.issued.for |
| 123ca0 | 20 74 68 65 20 61 64 64 72 65 73 73 65 73 20 73 70 65 63 69 66 69 65 64 20 62 79 20 74 68 65 20 | .the.addresses.specified.by.the. |
| 123cc0 | 3a 63 66 67 63 6d 64 3a 60 61 72 70 2d 6d 6f 6e 69 74 6f 72 20 74 61 72 67 65 74 60 20 6f 70 74 | :cfgcmd:`arp-monitor.target`.opt |
| 123ce0 | 69 6f 6e 2e 00 54 68 65 20 41 53 50 20 68 61 73 20 64 6f 63 75 6d 65 6e 74 65 64 20 74 68 65 69 | ion..The.ASP.has.documented.thei |
| 123d00 | 72 20 49 50 53 65 63 20 72 65 71 75 69 72 65 6d 65 6e 74 73 3a 00 54 68 65 20 42 47 50 20 72 6f | r.IPSec.requirements:.The.BGP.ro |
| 123d20 | 75 74 65 72 20 63 61 6e 20 63 6f 6e 6e 65 63 74 20 74 6f 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 | uter.can.connect.to.one.or.more. |
| 123d40 | 52 50 4b 49 20 63 61 63 68 65 20 73 65 72 76 65 72 73 20 74 6f 20 72 65 63 65 69 76 65 20 76 61 | RPKI.cache.servers.to.receive.va |
| 123d60 | 6c 69 64 61 74 65 64 20 70 72 65 66 69 78 20 74 6f 20 6f 72 69 67 69 6e 20 41 53 20 6d 61 70 70 | lidated.prefix.to.origin.AS.mapp |
| 123d80 | 69 6e 67 73 2e 20 41 64 76 61 6e 63 65 64 20 66 61 69 6c 6f 76 65 72 20 63 61 6e 20 62 65 20 69 | ings..Advanced.failover.can.be.i |
| 123da0 | 6d 70 6c 65 6d 65 6e 74 65 64 20 62 79 20 73 65 72 76 65 72 20 73 6f 63 6b 65 74 73 20 77 69 74 | mplemented.by.server.sockets.wit |
| 123dc0 | 68 20 64 69 66 66 65 72 65 6e 74 20 70 72 65 66 65 72 65 6e 63 65 20 76 61 6c 75 65 73 2e 00 54 | h.different.preference.values..T |
| 123de0 | 68 65 20 43 4c 49 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 73 61 6d 65 20 61 73 20 | he.CLI.configuration.is.same.as. |
| 123e00 | 6d 65 6e 74 69 6f 6e 65 64 20 69 6e 20 61 62 6f 76 65 20 61 72 74 69 63 6c 65 73 2e 20 54 68 65 | mentioned.in.above.articles..The |
| 123e20 | 20 6f 6e 6c 79 20 64 69 66 66 65 72 65 6e 63 65 20 69 73 2c 20 74 68 61 74 20 65 61 63 68 20 72 | .only.difference.is,.that.each.r |
| 123e40 | 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 75 73 65 64 2c 20 6d 75 73 74 20 62 65 20 70 72 | outing.protocol.used,.must.be.pr |
| 123e60 | 65 66 69 78 65 64 20 77 69 74 68 20 74 68 65 20 60 76 72 66 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e | efixed.with.the.`vrf.name.<name> |
| 123e80 | 60 20 63 6f 6d 6d 61 6e 64 2e 00 54 68 65 20 43 4c 4e 53 20 61 64 64 72 65 73 73 20 63 6f 6e 73 | `.command..The.CLNS.address.cons |
| 123ea0 | 69 73 74 73 20 6f 66 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 61 72 74 73 3a 00 54 68 65 | ists.of.the.following.parts:.The |
| 123ec0 | 20 44 46 20 70 72 65 66 65 72 65 6e 63 65 20 69 73 20 63 6f 6e 66 69 67 75 72 61 62 6c 65 20 70 | .DF.preference.is.configurable.p |
| 123ee0 | 65 72 2d 45 53 2e 00 54 68 65 20 44 48 43 50 20 75 6e 69 71 75 65 20 69 64 65 6e 74 69 66 69 65 | er-ES..The.DHCP.unique.identifie |
| 123f00 | 72 20 28 44 55 49 44 29 20 69 73 20 75 73 65 64 20 62 79 20 61 20 63 6c 69 65 6e 74 20 74 6f 20 | r.(DUID).is.used.by.a.client.to. |
| 123f20 | 67 65 74 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 61 20 44 48 43 50 76 36 20 | get.an.IP.address.from.a.DHCPv6. |
| 123f40 | 73 65 72 76 65 72 2e 20 49 74 20 68 61 73 20 61 20 32 2d 62 79 74 65 20 44 55 49 44 20 74 79 70 | server..It.has.a.2-byte.DUID.typ |
| 123f60 | 65 20 66 69 65 6c 64 2c 20 61 6e 64 20 61 20 76 61 72 69 61 62 6c 65 2d 6c 65 6e 67 74 68 20 69 | e.field,.and.a.variable-length.i |
| 123f80 | 64 65 6e 74 69 66 69 65 72 20 66 69 65 6c 64 20 75 70 20 74 6f 20 31 32 38 20 62 79 74 65 73 2e | dentifier.field.up.to.128.bytes. |
| 123fa0 | 20 49 74 73 20 61 63 74 75 61 6c 20 6c 65 6e 67 74 68 20 64 65 70 65 6e 64 73 20 6f 6e 20 69 74 | .Its.actual.length.depends.on.it |
| 123fc0 | 73 20 74 79 70 65 2e 20 54 68 65 20 73 65 72 76 65 72 20 63 6f 6d 70 61 72 65 73 20 74 68 65 20 | s.type..The.server.compares.the. |
| 123fe0 | 44 55 49 44 20 77 69 74 68 20 69 74 73 20 64 61 74 61 62 61 73 65 20 61 6e 64 20 64 65 6c 69 76 | DUID.with.its.database.and.deliv |
| 124000 | 65 72 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 64 61 74 61 20 28 61 64 64 72 65 73 73 2c | ers.configuration.data.(address, |
| 124020 | 20 6c 65 61 73 65 20 74 69 6d 65 73 2c 20 44 4e 53 20 73 65 72 76 65 72 73 2c 20 65 74 63 2e 29 | .lease.times,.DNS.servers,.etc.) |
| 124040 | 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 2e 00 54 68 65 20 44 4e 20 61 6e 64 20 70 61 73 73 77 | .to.the.client..The.DN.and.passw |
| 124060 | 6f 72 64 20 74 6f 20 62 69 6e 64 20 61 73 20 77 68 69 6c 65 20 70 65 72 66 6f 72 6d 69 6e 67 20 | ord.to.bind.as.while.performing. |
| 124080 | 73 65 61 72 63 68 65 73 2e 00 54 68 65 20 44 4e 20 61 6e 64 20 70 61 73 73 77 6f 72 64 20 74 6f | searches..The.DN.and.password.to |
| 1240a0 | 20 62 69 6e 64 20 61 73 20 77 68 69 6c 65 20 70 65 72 66 6f 72 6d 69 6e 67 20 73 65 61 72 63 68 | .bind.as.while.performing.search |
| 1240c0 | 65 73 2e 20 41 73 20 74 68 65 20 70 61 73 73 77 6f 72 64 20 6e 65 65 64 73 20 74 6f 20 62 65 20 | es..As.the.password.needs.to.be. |
| 1240e0 | 70 72 69 6e 74 65 64 20 69 6e 20 70 6c 61 69 6e 20 74 65 78 74 20 69 6e 20 79 6f 75 72 20 53 71 | printed.in.plain.text.in.your.Sq |
| 124100 | 75 69 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 74 20 69 73 20 73 74 72 6f 6e 67 6c 79 | uid.configuration.it.is.strongly |
| 124120 | 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 74 6f 20 75 73 65 20 61 20 61 63 63 6f 75 6e 74 20 77 69 | .recommended.to.use.a.account.wi |
| 124140 | 74 68 20 6d 69 6e 69 6d 61 6c 20 61 73 73 6f 63 69 61 74 65 64 20 70 72 69 76 69 6c 65 67 65 73 | th.minimal.associated.privileges |
| 124160 | 2e 20 54 68 69 73 20 74 6f 20 6c 69 6d 69 74 20 74 68 65 20 64 61 6d 61 67 65 20 69 6e 20 63 61 | ..This.to.limit.the.damage.in.ca |
| 124180 | 73 65 20 73 6f 6d 65 6f 6e 65 20 63 6f 75 6c 64 20 67 65 74 20 68 6f 6c 64 20 6f 66 20 61 20 63 | se.someone.could.get.hold.of.a.c |
| 1241a0 | 6f 70 79 20 6f 66 20 79 6f 75 72 20 53 71 75 69 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | opy.of.your.Squid.configuration. |
| 1241c0 | 66 69 6c 65 2e 00 54 68 65 20 46 51 2d 43 6f 44 65 6c 20 70 6f 6c 69 63 79 20 64 69 73 74 72 69 | file..The.FQ-CoDel.policy.distri |
| 1241e0 | 62 75 74 65 73 20 74 68 65 20 74 72 61 66 66 69 63 20 69 6e 74 6f 20 31 30 32 34 20 46 49 46 4f | butes.the.traffic.into.1024.FIFO |
| 124200 | 20 71 75 65 75 65 73 20 61 6e 64 20 74 72 69 65 73 20 74 6f 20 70 72 6f 76 69 64 65 20 67 6f 6f | .queues.and.tries.to.provide.goo |
| 124220 | 64 20 73 65 72 76 69 63 65 20 62 65 74 77 65 65 6e 20 61 6c 6c 20 6f 66 20 74 68 65 6d 2e 20 49 | d.service.between.all.of.them..I |
| 124240 | 74 20 61 6c 73 6f 20 74 72 69 65 73 20 74 6f 20 6b 65 65 70 20 74 68 65 20 6c 65 6e 67 74 68 20 | t.also.tries.to.keep.the.length. |
| 124260 | 6f 66 20 61 6c 6c 20 74 68 65 20 71 75 65 75 65 73 20 73 68 6f 72 74 2e 00 54 68 65 20 48 54 54 | of.all.the.queues.short..The.HTT |
| 124280 | 50 20 73 65 72 76 69 63 65 20 6c 69 73 74 65 6e 20 6f 6e 20 54 43 50 20 70 6f 72 74 20 38 30 2e | P.service.listen.on.TCP.port.80. |
| 1242a0 | 00 54 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 | .The.IP.address.of.the.internal. |
| 1242c0 | 73 79 73 74 65 6d 20 77 65 20 77 69 73 68 20 74 6f 20 66 6f 72 77 61 72 64 20 74 72 61 66 66 69 | system.we.wish.to.forward.traffi |
| 1242e0 | 63 20 74 6f 2e 00 54 68 65 20 49 6e 74 65 6c 20 41 58 32 30 30 20 63 61 72 64 20 64 6f 65 73 20 | c.to..The.Intel.AX200.card.does. |
| 124300 | 6e 6f 74 20 77 6f 72 6b 20 6f 75 74 20 6f 66 20 74 68 65 20 62 6f 78 20 69 6e 20 41 50 20 6d 6f | not.work.out.of.the.box.in.AP.mo |
| 124320 | 64 65 2c 20 73 65 65 20 68 74 74 70 73 3a 2f 2f 75 6e 69 78 2e 73 74 61 63 6b 65 78 63 68 61 6e | de,.see.https://unix.stackexchan |
| 124340 | 67 65 2e 63 6f 6d 2f 71 75 65 73 74 69 6f 6e 73 2f 35 39 38 32 37 35 2f 69 6e 74 65 6c 2d 61 78 | ge.com/questions/598275/intel-ax |
| 124360 | 32 30 30 2d 61 70 2d 6d 6f 64 65 2e 20 59 6f 75 20 63 61 6e 20 73 74 69 6c 6c 20 70 75 74 20 74 | 200-ap-mode..You.can.still.put.t |
| 124380 | 68 69 73 20 63 61 72 64 20 69 6e 74 6f 20 41 50 20 6d 6f 64 65 20 75 73 69 6e 67 20 74 68 65 20 | his.card.into.AP.mode.using.the. |
| 1243a0 | 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 54 68 65 20 4f 49 44 | following.configuration:.The.OID |
| 1243c0 | 20 60 60 2e 31 2e 33 2e 36 2e 31 2e 34 2e 31 2e 38 30 37 32 2e 31 2e 33 2e 32 2e 33 2e 31 2e 31 | .``.1.3.6.1.4.1.8072.1.3.2.3.1.1 |
| 1243e0 | 2e 34 2e 31 31 36 2e 31 30 31 2e 31 31 35 2e 31 31 36 60 60 2c 20 6f 6e 63 65 20 63 61 6c 6c 65 | .4.116.101.115.116``,.once.calle |
| 124400 | 64 2c 20 77 69 6c 6c 20 63 6f 6e 74 61 69 6e 20 74 68 65 20 6f 75 74 70 75 74 20 6f 66 20 74 68 | d,.will.contain.the.output.of.th |
| 124420 | 65 20 65 78 74 65 6e 73 69 6f 6e 2e 00 54 68 65 20 50 6f 69 6e 74 2d 74 6f 2d 50 6f 69 6e 74 20 | e.extension..The.Point-to-Point. |
| 124440 | 54 75 6e 6e 65 6c 69 6e 67 20 50 72 6f 74 6f 63 6f 6c 20 28 50 50 54 50 5f 29 20 68 61 73 20 62 | Tunneling.Protocol.(PPTP_).has.b |
| 124460 | 65 65 6e 20 69 6d 70 6c 65 6d 65 6e 74 65 64 20 69 6e 20 56 79 4f 53 20 6f 6e 6c 79 20 66 6f 72 | een.implemented.in.VyOS.only.for |
| 124480 | 20 62 61 63 6b 77 61 72 64 73 20 63 6f 6d 70 61 74 69 62 69 6c 69 74 79 2e 20 50 50 54 50 20 68 | .backwards.compatibility..PPTP.h |
| 1244a0 | 61 73 20 6d 61 6e 79 20 77 65 6c 6c 20 6b 6e 6f 77 6e 20 73 65 63 75 72 69 74 79 20 69 73 73 75 | as.many.well.known.security.issu |
| 1244c0 | 65 73 20 61 6e 64 20 79 6f 75 20 73 68 6f 75 6c 64 20 75 73 65 20 6f 6e 65 20 6f 66 20 74 68 65 | es.and.you.should.use.one.of.the |
| 1244e0 | 20 6d 61 6e 79 20 6f 74 68 65 72 20 6e 65 77 20 56 50 4e 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 | .many.other.new.VPN.implementati |
| 124500 | 6f 6e 73 2e 00 54 68 65 20 50 6f 77 65 72 44 4e 53 20 72 65 63 75 72 73 6f 72 20 68 61 73 20 35 | ons..The.PowerDNS.recursor.has.5 |
| 124520 | 20 64 69 66 66 65 72 65 6e 74 20 6c 65 76 65 6c 73 20 6f 66 20 44 4e 53 53 45 43 20 70 72 6f 63 | .different.levels.of.DNSSEC.proc |
| 124540 | 65 73 73 69 6e 67 2c 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 73 65 74 20 77 69 74 68 20 74 68 | essing,.which.can.be.set.with.th |
| 124560 | 65 20 64 6e 73 73 65 63 20 73 65 74 74 69 6e 67 2e 20 49 6e 20 6f 72 64 65 72 20 66 72 6f 6d 20 | e.dnssec.setting..In.order.from. |
| 124580 | 6c 65 61 73 74 20 74 6f 20 6d 6f 73 74 20 70 72 6f 63 65 73 73 69 6e 67 2c 20 74 68 65 73 65 20 | least.to.most.processing,.these. |
| 1245a0 | 61 72 65 3a 00 54 68 65 20 50 72 65 63 69 73 69 6f 6e 20 54 69 6d 65 20 50 72 6f 74 6f 63 6f 6c | are:.The.Precision.Time.Protocol |
| 1245c0 | 20 28 49 45 45 45 20 31 35 38 38 29 20 69 73 20 61 20 6c 6f 63 61 6c 20 6e 65 74 77 6f 72 6b 20 | .(IEEE.1588).is.a.local.network. |
| 1245e0 | 74 69 6d 65 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 70 72 6f 74 6f 63 6f 6c 20 74 68 | time.synchronization.protocol.th |
| 124600 | 61 74 20 70 72 6f 76 69 64 65 73 20 68 69 67 68 20 70 72 65 63 69 73 69 6f 6e 20 74 69 6d 65 20 | at.provides.high.precision.time. |
| 124620 | 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 62 79 20 6c 65 76 65 72 61 67 69 6e 67 20 68 61 | synchronization.by.leveraging.ha |
| 124640 | 72 64 77 61 72 65 20 63 6c 6f 63 6b 73 20 69 6e 20 4e 49 43 73 20 61 6e 64 20 6f 74 68 65 72 20 | rdware.clocks.in.NICs.and.other. |
| 124660 | 6e 65 74 77 6f 72 6b 20 65 6c 65 6d 65 6e 74 73 2e 20 56 79 4f 53 20 64 6f 65 73 20 6e 6f 74 20 | network.elements..VyOS.does.not. |
| 124680 | 63 75 72 72 65 6e 74 6c 79 20 73 75 70 70 6f 72 74 20 73 74 61 6e 64 61 72 64 73 2d 62 61 73 65 | currently.support.standards-base |
| 1246a0 | 64 20 50 54 50 2c 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 64 65 70 6c 6f 79 65 64 20 69 6e 64 | d.PTP,.which.can.be.deployed.ind |
| 1246c0 | 65 70 65 6e 64 65 6e 74 6c 79 20 6f 66 20 4e 54 50 2e 00 54 68 65 20 50 72 69 6f 72 69 74 79 20 | ependently.of.NTP..The.Priority. |
| 1246e0 | 51 75 65 75 65 20 69 73 20 61 20 63 6c 61 73 73 66 75 6c 20 73 63 68 65 64 75 6c 69 6e 67 20 70 | Queue.is.a.classful.scheduling.p |
| 124700 | 6f 6c 69 63 79 2e 20 49 74 20 64 6f 65 73 20 6e 6f 74 20 64 65 6c 61 79 20 70 61 63 6b 65 74 73 | olicy..It.does.not.delay.packets |
| 124720 | 20 28 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 20 69 73 20 6e 6f 74 20 61 20 73 68 61 70 69 6e | .(Priority.Queue.is.not.a.shapin |
| 124740 | 67 20 70 6f 6c 69 63 79 29 2c 20 69 74 20 73 69 6d 70 6c 79 20 64 65 71 75 65 75 65 73 20 70 61 | g.policy),.it.simply.dequeues.pa |
| 124760 | 63 6b 65 74 73 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 74 68 65 69 72 20 70 72 69 6f 72 69 74 | ckets.according.to.their.priorit |
| 124780 | 79 2e 00 54 68 65 20 52 41 44 49 55 53 20 61 63 63 6f 75 6e 74 69 6e 67 20 66 65 61 74 75 72 65 | y..The.RADIUS.accounting.feature |
| 1247a0 | 20 6d 75 73 74 20 62 65 20 75 73 65 64 20 77 69 74 68 20 74 68 65 20 4f 70 65 6e 43 6f 6e 6e 65 | .must.be.used.with.the.OpenConne |
| 1247c0 | 63 74 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 6f 64 65 20 52 41 44 49 55 53 2e 20 49 | ct.authentication.mode.RADIUS..I |
| 1247e0 | 74 20 63 61 6e 6e 6f 74 20 62 65 20 75 73 65 64 20 77 69 74 68 20 6c 6f 63 61 6c 20 61 75 74 68 | t.cannot.be.used.with.local.auth |
| 124800 | 65 6e 74 69 63 61 74 69 6f 6e 2e 20 59 6f 75 20 6d 75 73 74 20 63 6f 6e 66 69 67 75 72 65 20 74 | entication..You.must.configure.t |
| 124820 | 68 65 20 4f 70 65 6e 43 6f 6e 6e 65 63 74 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 6f | he.OpenConnect.authentication.mo |
| 124840 | 64 65 20 74 6f 20 22 72 61 64 69 75 73 22 2e 00 54 68 65 20 52 41 44 49 55 53 20 64 69 63 74 69 | de.to."radius"..The.RADIUS.dicti |
| 124860 | 6f 6e 61 72 69 65 73 20 69 6e 20 56 79 4f 53 20 61 72 65 20 6c 6f 63 61 74 65 64 20 61 74 20 60 | onaries.in.VyOS.are.located.at.` |
| 124880 | 60 2f 75 73 72 2f 73 68 61 72 65 2f 61 63 63 65 6c 2d 70 70 70 2f 72 61 64 69 75 73 2f 60 60 00 | `/usr/share/accel-ppp/radius/``. |
| 1248a0 | 54 68 65 20 53 52 20 73 65 67 6d 65 6e 74 73 20 61 72 65 20 70 6f 72 74 69 6f 6e 73 20 6f 66 20 | The.SR.segments.are.portions.of. |
| 1248c0 | 74 68 65 20 6e 65 74 77 6f 72 6b 20 70 61 74 68 20 74 61 6b 65 6e 20 62 79 20 74 68 65 20 70 61 | the.network.path.taken.by.the.pa |
| 1248e0 | 63 6b 65 74 2c 20 61 6e 64 20 61 72 65 20 63 61 6c 6c 65 64 20 53 49 44 73 2e 20 41 74 20 65 61 | cket,.and.are.called.SIDs..At.ea |
| 124900 | 63 68 20 6e 6f 64 65 2c 20 74 68 65 20 66 69 72 73 74 20 53 49 44 20 6f 66 20 74 68 65 20 6c 69 | ch.node,.the.first.SID.of.the.li |
| 124920 | 73 74 20 69 73 20 72 65 61 64 2c 20 65 78 65 63 75 74 65 64 20 61 73 20 61 20 66 6f 72 77 61 72 | st.is.read,.executed.as.a.forwar |
| 124940 | 64 69 6e 67 20 66 75 6e 63 74 69 6f 6e 2c 20 61 6e 64 20 6d 61 79 20 62 65 20 70 6f 70 70 65 64 | ding.function,.and.may.be.popped |
| 124960 | 20 74 6f 20 6c 65 74 20 74 68 65 20 6e 65 78 74 20 6e 6f 64 65 20 72 65 61 64 20 74 68 65 20 6e | .to.let.the.next.node.read.the.n |
| 124980 | 65 78 74 20 53 49 44 20 6f 66 20 74 68 65 20 6c 69 73 74 2e 20 54 68 65 20 53 49 44 20 6c 69 73 | ext.SID.of.the.list..The.SID.lis |
| 1249a0 | 74 20 63 6f 6d 70 6c 65 74 65 6c 79 20 64 65 74 65 72 6d 69 6e 65 73 20 74 68 65 20 70 61 74 68 | t.completely.determines.the.path |
| 1249c0 | 20 77 68 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 69 73 20 66 6f 72 77 61 72 64 65 64 2e 00 | .where.the.packet.is.forwarded.. |
| 1249e0 | 54 68 65 20 53 68 61 70 65 72 20 70 6f 6c 69 63 79 20 64 6f 65 73 20 6e 6f 74 20 67 75 61 72 61 | The.Shaper.policy.does.not.guara |
| 124a00 | 6e 74 65 65 20 61 20 6c 6f 77 20 64 65 6c 61 79 2c 20 62 75 74 20 69 74 20 64 6f 65 73 20 67 75 | ntee.a.low.delay,.but.it.does.gu |
| 124a20 | 61 72 61 6e 74 65 65 20 62 61 6e 64 77 69 64 74 68 20 74 6f 20 64 69 66 66 65 72 65 6e 74 20 74 | arantee.bandwidth.to.different.t |
| 124a40 | 72 61 66 66 69 63 20 63 6c 61 73 73 65 73 20 61 6e 64 20 61 6c 73 6f 20 6c 65 74 73 20 79 6f 75 | raffic.classes.and.also.lets.you |
| 124a60 | 20 64 65 63 69 64 65 20 68 6f 77 20 74 6f 20 61 6c 6c 6f 63 61 74 65 20 6d 6f 72 65 20 74 72 61 | .decide.how.to.allocate.more.tra |
| 124a80 | 66 66 69 63 20 6f 6e 63 65 20 74 68 65 20 67 75 61 72 61 6e 74 65 65 73 20 61 72 65 20 6d 65 74 | ffic.once.the.guarantees.are.met |
| 124aa0 | 2e 00 54 68 65 20 55 44 50 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 75 73 65 64 20 62 79 20 79 6f | ..The.UDP.port.number.used.by.yo |
| 124ac0 | 75 72 20 61 70 6c 6c 69 63 61 74 69 6f 6e 2e 20 49 74 20 69 73 20 6d 61 6e 64 61 74 6f 72 79 20 | ur.apllication..It.is.mandatory. |
| 124ae0 | 66 6f 72 20 74 68 69 73 20 6b 69 6e 64 20 6f 66 20 6f 70 65 72 61 74 69 6f 6e 2e 00 54 68 65 20 | for.this.kind.of.operation..The. |
| 124b00 | 55 44 50 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 75 73 65 64 20 62 79 20 79 6f 75 72 20 61 70 70 | UDP.port.number.used.by.your.app |
| 124b20 | 6c 69 63 61 74 69 6f 6e 2e 20 49 74 20 69 73 20 6d 61 6e 64 61 74 6f 72 79 20 66 6f 72 20 74 68 | lication..It.is.mandatory.for.th |
| 124b40 | 69 73 20 6b 69 6e 64 20 6f 66 20 6f 70 65 72 61 74 69 6f 6e 2e 00 54 68 65 20 56 58 4c 41 4e 20 | is.kind.of.operation..The.VXLAN. |
| 124b60 | 73 70 65 63 69 66 69 63 61 74 69 6f 6e 20 77 61 73 20 6f 72 69 67 69 6e 61 6c 6c 79 20 63 72 65 | specification.was.originally.cre |
| 124b80 | 61 74 65 64 20 62 79 20 56 4d 77 61 72 65 2c 20 41 72 69 73 74 61 20 4e 65 74 77 6f 72 6b 73 20 | ated.by.VMware,.Arista.Networks. |
| 124ba0 | 61 6e 64 20 43 69 73 63 6f 2e 20 4f 74 68 65 72 20 62 61 63 6b 65 72 73 20 6f 66 20 74 68 65 20 | and.Cisco..Other.backers.of.the. |
| 124bc0 | 56 58 4c 41 4e 20 74 65 63 68 6e 6f 6c 6f 67 79 20 69 6e 63 6c 75 64 65 20 48 75 61 77 65 69 2c | VXLAN.technology.include.Huawei, |
| 124be0 | 20 42 72 6f 61 64 63 6f 6d 2c 20 43 69 74 72 69 78 2c 20 50 69 63 61 38 2c 20 42 69 67 20 53 77 | .Broadcom,.Citrix,.Pica8,.Big.Sw |
| 124c00 | 69 74 63 68 20 4e 65 74 77 6f 72 6b 73 2c 20 43 75 6d 75 6c 75 73 20 4e 65 74 77 6f 72 6b 73 2c | itch.Networks,.Cumulus.Networks, |
| 124c20 | 20 44 65 6c 6c 20 45 4d 43 2c 20 45 72 69 63 73 73 6f 6e 2c 20 4d 65 6c 6c 61 6e 6f 78 2c 20 46 | .Dell.EMC,.Ericsson,.Mellanox,.F |
| 124c40 | 72 65 65 42 53 44 2c 20 4f 70 65 6e 42 53 44 2c 20 52 65 64 20 48 61 74 2c 20 4a 6f 79 65 6e 74 | reeBSD,.OpenBSD,.Red.Hat,.Joyent |
| 124c60 | 2c 20 61 6e 64 20 4a 75 6e 69 70 65 72 20 4e 65 74 77 6f 72 6b 73 2e 00 54 68 65 20 56 79 4f 53 | ,.and.Juniper.Networks..The.VyOS |
| 124c80 | 20 44 4e 53 20 66 6f 72 77 61 72 64 65 72 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 63 6f 6e 66 69 | .DNS.forwarder.can.also.be.confi |
| 124ca0 | 67 75 72 65 64 20 74 6f 20 68 6f 73 74 20 61 75 74 68 6f 72 69 74 61 74 69 76 65 20 72 65 63 6f | gured.to.host.authoritative.reco |
| 124cc0 | 72 64 73 20 66 6f 72 20 61 20 64 6f 6d 61 69 6e 2e 00 54 68 65 20 56 79 4f 53 20 44 4e 53 20 66 | rds.for.a.domain..The.VyOS.DNS.f |
| 124ce0 | 6f 72 77 61 72 64 65 72 20 64 6f 65 73 20 6e 6f 74 20 72 65 71 75 69 72 65 20 61 6e 20 75 70 73 | orwarder.does.not.require.an.ups |
| 124d00 | 74 72 65 61 6d 20 44 4e 53 20 73 65 72 76 65 72 2e 20 49 74 20 63 61 6e 20 73 65 72 76 65 20 61 | tream.DNS.server..It.can.serve.a |
| 124d20 | 73 20 61 20 66 75 6c 6c 20 72 65 63 75 72 73 69 76 65 20 44 4e 53 20 73 65 72 76 65 72 20 2d 20 | s.a.full.recursive.DNS.server.-. |
| 124d40 | 62 75 74 20 69 74 20 63 61 6e 20 61 6c 73 6f 20 66 6f 72 77 61 72 64 20 71 75 65 72 69 65 73 20 | but.it.can.also.forward.queries. |
| 124d60 | 74 6f 20 63 6f 6e 66 69 67 75 72 61 62 6c 65 20 75 70 73 74 72 65 61 6d 20 44 4e 53 20 73 65 72 | to.configurable.upstream.DNS.ser |
| 124d80 | 76 65 72 73 2e 20 42 79 20 6e 6f 74 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 6e 79 20 75 70 73 | vers..By.not.configuring.any.ups |
| 124da0 | 74 72 65 61 6d 20 44 4e 53 20 73 65 72 76 65 72 73 20 79 6f 75 20 61 6c 73 6f 20 61 76 6f 69 64 | tream.DNS.servers.you.also.avoid |
| 124dc0 | 20 62 65 69 6e 67 20 74 72 61 63 6b 65 64 20 62 79 20 74 68 65 20 70 72 6f 76 69 64 65 72 20 6f | .being.tracked.by.the.provider.o |
| 124de0 | 66 20 79 6f 75 72 20 75 70 73 74 72 65 61 6d 20 44 4e 53 20 73 65 72 76 65 72 2e 00 54 68 65 20 | f.your.upstream.DNS.server..The. |
| 124e00 | 56 79 4f 53 20 44 4e 53 20 66 6f 72 77 61 72 64 65 72 20 77 69 6c 6c 20 6f 6e 6c 79 20 61 63 63 | VyOS.DNS.forwarder.will.only.acc |
| 124e20 | 65 70 74 20 6c 6f 6f 6b 75 70 20 72 65 71 75 65 73 74 73 20 66 72 6f 6d 20 74 68 65 20 4c 41 4e | ept.lookup.requests.from.the.LAN |
| 124e40 | 20 73 75 62 6e 65 74 73 20 2d 20 31 39 32 2e 31 36 38 2e 31 2e 30 2f 32 34 20 61 6e 64 20 32 30 | .subnets.-.192.168.1.0/24.and.20 |
| 124e60 | 30 31 3a 64 62 38 3a 3a 2f 36 34 00 54 68 65 20 56 79 4f 53 20 44 4e 53 20 66 6f 72 77 61 72 64 | 01:db8::/64.The.VyOS.DNS.forward |
| 124e80 | 65 72 20 77 69 6c 6c 20 6f 6e 6c 79 20 6c 69 73 74 65 6e 20 66 6f 72 20 72 65 71 75 65 73 74 73 | er.will.only.listen.for.requests |
| 124ea0 | 20 6f 6e 20 74 68 65 20 65 74 68 31 20 28 4c 41 4e 29 20 69 6e 74 65 72 66 61 63 65 20 61 64 64 | .on.the.eth1.(LAN).interface.add |
| 124ec0 | 72 65 73 73 65 73 20 2d 20 31 39 32 2e 31 36 38 2e 31 2e 32 35 34 20 66 6f 72 20 49 50 76 34 20 | resses.-.192.168.1.254.for.IPv4. |
| 124ee0 | 61 6e 64 20 32 30 30 31 3a 64 62 38 3a 3a 66 66 66 66 20 66 6f 72 20 49 50 76 36 00 54 68 65 20 | and.2001:db8::ffff.for.IPv6.The. |
| 124f00 | 56 79 4f 53 20 44 4e 53 20 66 6f 72 77 61 72 64 65 72 20 77 69 6c 6c 20 70 61 73 73 20 72 65 76 | VyOS.DNS.forwarder.will.pass.rev |
| 124f20 | 65 72 73 65 20 6c 6f 6f 6b 75 70 73 20 66 6f 72 20 20 31 30 2e 69 6e 2d 61 64 64 72 2e 61 72 70 | erse.lookups.for..10.in-addr.arp |
| 124f40 | 61 2c 20 31 36 38 2e 31 39 32 2e 69 6e 2d 61 64 64 72 2e 61 72 70 61 2c 20 31 36 2d 33 31 2e 31 | a,.168.192.in-addr.arpa,.16-31.1 |
| 124f60 | 37 32 2e 69 6e 2d 61 64 64 72 2e 61 72 70 61 20 7a 6f 6e 65 73 20 74 6f 20 75 70 73 74 72 65 61 | 72.in-addr.arpa.zones.to.upstrea |
| 124f80 | 6d 20 73 65 72 76 65 72 2e 00 54 68 65 20 56 79 4f 53 20 50 4b 49 20 73 75 62 73 79 73 74 65 6d | m.server..The.VyOS.PKI.subsystem |
| 124fa0 | 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 75 73 65 64 20 74 6f 20 61 75 74 6f 6d 61 74 69 63 61 6c | .can.also.be.used.to.automatical |
| 124fc0 | 6c 79 20 72 65 74 72 69 65 76 65 20 43 65 72 74 69 66 69 63 61 74 65 73 20 75 73 69 6e 67 20 74 | ly.retrieve.Certificates.using.t |
| 124fe0 | 68 65 20 3a 61 62 62 72 3a 60 41 43 4d 45 20 28 41 75 74 6f 6d 61 74 69 63 20 43 65 72 74 69 66 | he.:abbr:`ACME.(Automatic.Certif |
| 125000 | 69 63 61 74 65 20 4d 61 6e 61 67 65 6d 65 6e 74 20 45 6e 76 69 72 6f 6e 6d 65 6e 74 29 60 20 70 | icate.Management.Environment)`.p |
| 125020 | 72 6f 74 6f 63 6f 6c 2e 00 54 68 65 20 56 79 4f 53 20 63 6f 6e 74 61 69 6e 65 72 20 69 6d 70 6c | rotocol..The.VyOS.container.impl |
| 125040 | 65 6d 65 6e 74 61 74 69 6f 6e 20 69 73 20 62 61 73 65 64 20 6f 6e 20 60 50 6f 64 6d 61 6e 20 3c | ementation.is.based.on.`Podman.< |
| 125060 | 68 74 74 70 73 3a 2f 2f 70 6f 64 6d 61 6e 2e 69 6f 2f 3e 60 5f 20 61 73 20 61 20 64 65 61 6d 6f | https://podman.io/>`_.as.a.deamo |
| 125080 | 6e 6c 65 73 73 20 63 6f 6e 74 61 69 6e 65 72 20 65 6e 67 69 6e 65 2e 00 54 68 65 20 56 79 4f 53 | nless.container.engine..The.VyOS |
| 1250a0 | 20 63 6f 6e 74 61 69 6e 65 72 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 69 73 20 62 61 73 | .container.implementation.is.bas |
| 1250c0 | 65 64 20 6f 6e 20 60 50 6f 64 6d 61 6e 3c 68 74 74 70 73 3a 2f 2f 70 6f 64 6d 61 6e 2e 69 6f 2f | ed.on.`Podman<https://podman.io/ |
| 1250e0 | 3e 60 20 61 73 20 61 20 64 65 61 6d 6f 6e 6c 65 73 73 20 63 6f 6e 74 61 69 6e 65 72 20 65 6e 67 | >`.as.a.deamonless.container.eng |
| 125100 | 69 6e 65 2e 00 54 68 65 20 57 41 50 20 69 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 20 68 61 73 | ine..The.WAP.in.this.example.has |
| 125120 | 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 68 61 72 61 63 74 65 72 69 73 74 69 63 73 3a 00 | .the.following.characteristics:. |
| 125140 | 54 68 65 20 57 69 72 65 6c 65 73 73 20 57 69 64 65 2d 41 72 65 61 2d 4e 65 74 77 6f 72 6b 20 69 | The.Wireless.Wide-Area-Network.i |
| 125160 | 6e 74 65 72 66 61 63 65 20 70 72 6f 76 69 64 65 73 20 61 63 63 65 73 73 20 28 74 68 72 6f 75 67 | nterface.provides.access.(throug |
| 125180 | 68 20 61 20 77 69 72 65 6c 65 73 73 20 6d 6f 64 65 6d 2f 77 77 61 6e 29 20 74 6f 20 77 69 72 65 | h.a.wireless.modem/wwan).to.wire |
| 1251a0 | 6c 65 73 73 20 6e 65 74 77 6f 72 6b 73 20 70 72 6f 76 69 64 65 64 20 62 79 20 76 61 72 69 6f 75 | less.networks.provided.by.variou |
| 1251c0 | 73 20 63 65 6c 6c 75 6c 61 72 20 70 72 6f 76 69 64 65 72 73 2e 00 54 68 65 20 60 60 43 44 60 60 | s.cellular.providers..The.``CD`` |
| 1251e0 | 2d 62 69 74 20 69 73 20 68 6f 6e 6f 72 65 64 20 63 6f 72 72 65 63 74 6c 79 20 66 6f 72 20 70 72 | -bit.is.honored.correctly.for.pr |
| 125200 | 6f 63 65 73 73 20 61 6e 64 20 76 61 6c 69 64 61 74 65 2e 20 46 6f 72 20 6c 6f 67 2d 66 61 69 6c | ocess.and.validate..For.log-fail |
| 125220 | 2c 20 66 61 69 6c 75 72 65 73 20 77 69 6c 6c 20 62 65 20 6c 6f 67 67 65 64 20 74 6f 6f 2e 00 54 | ,.failures.will.be.logged.too..T |
| 125240 | 68 65 20 60 60 61 64 64 72 65 73 73 60 60 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 | he.``address``.can.be.configured |
| 125260 | 20 65 69 74 68 65 72 20 6f 6e 20 74 68 65 20 56 52 52 50 20 69 6e 74 65 72 66 61 63 65 20 6f 72 | .either.on.the.VRRP.interface.or |
| 125280 | 20 6f 6e 20 6e 6f 74 20 56 52 52 50 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 65 20 60 60 61 64 | .on.not.VRRP.interface..The.``ad |
| 1252a0 | 64 72 65 73 73 60 60 20 70 61 72 61 6d 65 74 65 72 20 63 61 6e 20 62 65 20 65 69 74 68 65 72 20 | dress``.parameter.can.be.either. |
| 1252c0 | 61 6e 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 2c 20 62 75 74 20 79 6f 75 | an.IPv4.or.IPv6.address,.but.you |
| 1252e0 | 20 63 61 6e 20 6e 6f 74 20 6d 69 78 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 69 6e 20 74 68 | .can.not.mix.IPv4.and.IPv6.in.th |
| 125300 | 65 20 73 61 6d 65 20 67 72 6f 75 70 2c 20 61 6e 64 20 77 69 6c 6c 20 6e 65 65 64 20 74 6f 20 63 | e.same.group,.and.will.need.to.c |
| 125320 | 72 65 61 74 65 20 67 72 6f 75 70 73 20 77 69 74 68 20 64 69 66 66 65 72 65 6e 74 20 56 52 49 44 | reate.groups.with.different.VRID |
| 125340 | 73 20 73 70 65 63 69 61 6c 6c 79 20 66 6f 72 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 2e 20 49 | s.specially.for.IPv4.and.IPv6..I |
| 125360 | 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 75 73 65 20 49 50 76 34 20 2b 20 49 50 76 36 20 61 64 | f.you.want.to.use.IPv4.+.IPv6.ad |
| 125380 | 64 72 65 73 73 20 79 6f 75 20 63 61 6e 20 75 73 65 20 6f 70 74 69 6f 6e 20 60 60 65 78 63 6c 75 | dress.you.can.use.option.``exclu |
| 1253a0 | 64 65 64 2d 61 64 64 72 65 73 73 60 60 00 54 68 65 20 60 60 62 6b 2d 62 72 69 64 67 65 2d 73 73 | ded-address``.The.``bk-bridge-ss |
| 1253c0 | 6c 60 60 20 62 61 63 6b 65 6e 64 20 63 6f 6e 6e 65 63 74 73 20 74 6f 20 73 72 30 31 20 73 65 72 | l``.backend.connects.to.sr01.ser |
| 1253e0 | 76 65 72 20 6f 6e 20 70 6f 72 74 20 34 34 33 20 76 69 61 20 48 54 54 50 53 20 61 6e 64 20 63 68 | ver.on.port.443.via.HTTPS.and.ch |
| 125400 | 65 63 6b 73 20 62 61 63 6b 65 6e 64 20 73 65 72 76 65 72 20 68 61 73 20 61 20 76 61 6c 69 64 20 | ecks.backend.server.has.a.valid. |
| 125420 | 63 65 72 74 69 66 69 63 61 74 65 20 74 72 75 73 74 65 64 20 62 79 20 43 41 20 60 60 63 61 63 65 | certificate.trusted.by.CA.``cace |
| 125440 | 72 74 60 60 00 54 68 65 20 60 60 68 74 74 70 60 60 20 73 65 72 76 69 63 65 20 69 73 20 6c 65 73 | rt``.The.``http``.service.is.les |
| 125460 | 74 65 6e 73 20 6f 6e 20 70 6f 72 74 20 38 30 20 61 6e 64 20 66 6f 72 63 65 20 72 65 64 69 72 65 | tens.on.port.80.and.force.redire |
| 125480 | 63 74 73 20 66 72 6f 6d 20 48 54 54 50 20 74 6f 20 48 54 54 50 53 2e 00 54 68 65 20 60 60 68 74 | cts.from.HTTP.to.HTTPS..The.``ht |
| 1254a0 | 74 70 60 60 20 73 65 72 76 69 63 65 20 69 73 20 6c 69 73 74 65 6e 73 20 6f 6e 20 70 6f 72 74 20 | tp``.service.is.listens.on.port. |
| 1254c0 | 38 30 20 61 6e 64 20 66 6f 72 63 65 20 72 65 64 69 72 65 63 74 73 20 66 72 6f 6d 20 48 54 54 50 | 80.and.force.redirects.from.HTTP |
| 1254e0 | 20 74 6f 20 48 54 54 50 53 2e 00 54 68 65 20 60 60 68 74 74 70 73 60 60 20 73 65 72 76 69 63 65 | .to.HTTPS..The.``https``.service |
| 125500 | 20 6c 69 73 74 65 6e 73 20 6f 6e 20 70 6f 72 74 20 34 34 33 20 77 69 74 68 20 62 61 63 6b 65 6e | .listens.on.port.443.with.backen |
| 125520 | 64 20 60 60 62 6b 2d 62 72 69 64 67 65 2d 73 73 6c 60 60 20 74 6f 20 68 61 6e 64 6c 65 20 48 54 | d.``bk-bridge-ssl``.to.handle.HT |
| 125540 | 54 50 53 20 74 72 61 66 66 69 63 2e 20 49 74 20 75 73 65 73 20 63 65 72 74 69 66 69 63 61 74 65 | TPS.traffic..It.uses.certificate |
| 125560 | 20 6e 61 6d 65 64 20 60 60 63 65 72 74 60 60 20 66 6f 72 20 53 53 4c 20 74 65 72 6d 69 6e 61 74 | .named.``cert``.for.SSL.terminat |
| 125580 | 69 6f 6e 2e 00 54 68 65 20 60 60 68 74 74 70 73 60 60 20 73 65 72 76 69 63 65 20 6c 69 73 74 65 | ion..The.``https``.service.liste |
| 1255a0 | 6e 73 20 6f 6e 20 70 6f 72 74 20 34 34 33 20 77 69 74 68 20 62 61 63 6b 65 6e 64 20 60 60 62 6b | ns.on.port.443.with.backend.``bk |
| 1255c0 | 2d 64 65 66 61 75 6c 74 60 60 20 74 6f 20 68 61 6e 64 6c 65 20 48 54 54 50 53 20 74 72 61 66 66 | -default``.to.handle.HTTPS.traff |
| 1255e0 | 69 63 2e 20 49 74 20 75 73 65 73 20 63 65 72 74 69 66 69 63 61 74 65 20 6e 61 6d 65 64 20 60 60 | ic..It.uses.certificate.named.`` |
| 125600 | 63 65 72 74 60 60 20 66 6f 72 20 53 53 4c 20 74 65 72 6d 69 6e 61 74 69 6f 6e 2e 00 54 68 65 20 | cert``.for.SSL.termination..The. |
| 125620 | 60 60 68 74 74 70 73 60 60 20 73 65 72 76 69 63 65 20 6c 69 73 74 65 6e 73 20 6f 6e 20 70 6f 72 | ``https``.service.listens.on.por |
| 125640 | 74 20 34 34 33 20 77 69 74 68 20 62 61 63 6b 65 6e 64 20 60 60 62 6b 2d 64 65 66 61 75 6c 74 60 | t.443.with.backend.``bk-default` |
| 125660 | 60 20 74 6f 20 68 61 6e 64 6c 65 20 48 54 54 50 53 20 74 72 61 66 66 69 63 2e 20 49 74 20 75 73 | `.to.handle.HTTPS.traffic..It.us |
| 125680 | 65 73 20 63 65 72 74 69 66 69 63 61 74 65 20 6e 61 6d 65 64 20 60 60 63 65 72 74 60 60 20 66 6f | es.certificate.named.``cert``.fo |
| 1256a0 | 72 20 53 53 4c 20 74 65 72 6d 69 6e 61 74 69 6f 6e 2e 20 48 53 54 53 20 68 65 61 64 65 72 20 69 | r.SSL.termination..HSTS.header.i |
| 1256c0 | 73 20 73 65 74 20 77 69 74 68 20 61 20 31 2d 79 65 61 72 20 65 78 70 69 72 79 2c 20 74 6f 20 74 | s.set.with.a.1-year.expiry,.to.t |
| 1256e0 | 65 6c 6c 20 62 72 6f 77 73 65 72 73 20 74 6f 20 61 6c 77 61 79 73 20 75 73 65 20 53 53 4c 20 66 | ell.browsers.to.always.use.SSL.f |
| 125700 | 6f 72 20 73 69 74 65 2e 00 54 68 65 20 60 60 68 74 74 70 73 60 60 20 73 65 72 76 69 63 65 20 6c | or.site..The.``https``.service.l |
| 125720 | 69 73 74 65 6e 73 20 6f 6e 20 70 6f 72 74 20 34 34 33 20 77 69 74 68 20 62 61 63 6b 65 6e 64 20 | istens.on.port.443.with.backend. |
| 125740 | 60 62 6b 2d 64 65 66 61 75 6c 74 60 20 74 6f 20 68 61 6e 64 6c 65 20 48 54 54 50 53 20 74 72 61 | `bk-default`.to.handle.HTTPS.tra |
| 125760 | 66 66 69 63 2e 20 49 74 20 75 73 65 73 20 63 65 72 74 69 66 69 63 61 74 65 20 6e 61 6d 65 64 20 | ffic..It.uses.certificate.named. |
| 125780 | 60 60 63 65 72 74 60 60 20 66 6f 72 20 53 53 4c 20 74 65 72 6d 69 6e 61 74 69 6f 6e 2e 00 54 68 | ``cert``.for.SSL.termination..Th |
| 1257a0 | 65 20 60 60 70 65 72 73 69 73 74 65 6e 74 2d 74 75 6e 6e 65 6c 60 60 20 64 69 72 65 63 74 69 76 | e.``persistent-tunnel``.directiv |
| 1257c0 | 65 20 77 69 6c 6c 20 61 6c 6c 6f 77 20 75 73 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 75 6e | e.will.allow.us.to.configure.tun |
| 1257e0 | 6e 65 6c 2d 72 65 6c 61 74 65 64 20 61 74 74 72 69 62 75 74 65 73 2c 20 73 75 63 68 20 61 73 20 | nel-related.attributes,.such.as. |
| 125800 | 66 69 72 65 77 61 6c 6c 20 70 6f 6c 69 63 79 20 61 73 20 77 65 20 77 6f 75 6c 64 20 6f 6e 20 61 | firewall.policy.as.we.would.on.a |
| 125820 | 6e 79 20 6e 6f 72 6d 61 6c 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 65 | ny.normal.network.interface..The |
| 125840 | 20 60 60 73 6f 75 72 63 65 2d 61 64 64 72 65 73 73 60 60 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 | .``source-address``.must.be.conf |
| 125860 | 69 67 75 72 65 64 20 6f 6e 20 6f 6e 65 20 6f 66 20 56 79 4f 53 20 69 6e 74 65 72 66 61 63 65 2e | igured.on.one.of.VyOS.interface. |
| 125880 | 20 42 65 73 74 20 70 72 61 63 74 69 63 65 20 77 6f 75 6c 64 20 62 65 20 61 20 6c 6f 6f 70 62 61 | .Best.practice.would.be.a.loopba |
| 1258a0 | 63 6b 20 6f 72 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 65 20 60 60 73 6f 75 | ck.or.dummy.interface..The.``sou |
| 1258c0 | 72 63 65 2d 61 64 64 72 65 73 73 60 60 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 | rce-address``.must.be.configured |
| 1258e0 | 20 74 6f 20 74 68 61 74 20 6f 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e 20 42 65 73 74 20 70 | .to.that.of.an.interface..Best.p |
| 125900 | 72 61 63 74 69 63 65 20 77 6f 75 6c 64 20 62 65 20 61 20 6c 6f 6f 70 62 61 63 6b 20 6f 72 20 64 | ractice.would.be.a.loopback.or.d |
| 125920 | 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 65 20 60 73 68 6f 77 20 62 72 69 64 67 65 | ummy.interface..The.`show.bridge |
| 125940 | 60 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 | `.operational.command.can.be.use |
| 125960 | 64 20 74 6f 20 64 69 73 70 6c 61 79 20 63 6f 6e 66 69 67 75 72 65 64 20 62 72 69 64 67 65 73 3a | d.to.display.configured.bridges: |
| 125980 | 00 54 68 65 20 61 62 6f 76 65 20 64 69 72 65 63 74 6f 72 79 20 61 6e 64 20 64 65 66 61 75 6c 74 | .The.above.directory.and.default |
| 1259a0 | 2d 63 6f 6e 66 69 67 20 6d 75 73 74 20 62 65 20 61 20 63 68 69 6c 64 20 64 69 72 65 63 74 6f 72 | -config.must.be.a.child.director |
| 1259c0 | 79 20 6f 66 20 2f 63 6f 6e 66 69 67 2f 61 75 74 68 2c 20 73 69 6e 63 65 20 66 69 6c 65 73 20 6f | y.of./config/auth,.since.files.o |
| 1259e0 | 75 74 73 69 64 65 20 74 68 69 73 20 64 69 72 65 63 74 6f 72 79 20 61 72 65 20 6e 6f 74 20 70 65 | utside.this.directory.are.not.pe |
| 125a00 | 72 73 69 73 74 65 64 20 61 66 74 65 72 20 61 6e 20 69 6d 61 67 65 20 75 70 67 72 61 64 65 2e 00 | rsisted.after.an.image.upgrade.. |
| 125a20 | 54 68 65 20 61 63 74 69 6f 6e 20 63 61 6e 20 62 65 20 3a 00 54 68 65 20 61 64 64 72 65 73 73 20 | The.action.can.be.:.The.address. |
| 125a40 | 6f 66 20 52 6f 75 74 65 72 20 42 20 69 73 20 31 30 2e 30 2e 32 30 2e 31 31 32 20 61 6e 64 20 74 | of.Router.B.is.10.0.20.112.and.t |
| 125a60 | 68 65 20 70 6f 72 74 20 75 73 65 64 20 69 73 20 38 34 34 33 00 54 68 65 20 61 64 64 72 65 73 73 | he.port.used.is.8443.The.address |
| 125a80 | 20 74 68 65 20 73 65 72 76 65 72 20 6c 69 73 74 65 6e 73 20 74 6f 20 64 75 72 69 6e 67 20 68 74 | .the.server.listens.to.during.ht |
| 125aa0 | 74 70 2d 30 31 20 63 68 61 6c 6c 65 6e 67 65 00 54 68 65 20 61 64 76 61 6e 74 61 67 65 20 6f 66 | tp-01.challenge.The.advantage.of |
| 125ac0 | 20 74 68 69 73 20 69 73 20 74 68 61 74 20 74 68 65 20 72 6f 75 74 65 2d 73 65 6c 65 63 74 69 6f | .this.is.that.the.route-selectio |
| 125ae0 | 6e 20 28 61 74 20 74 68 69 73 20 70 6f 69 6e 74 29 20 77 69 6c 6c 20 62 65 20 6d 6f 72 65 20 64 | n.(at.this.point).will.be.more.d |
| 125b00 | 65 74 65 72 6d 69 6e 69 73 74 69 63 2e 20 54 68 65 20 64 69 73 61 64 76 61 6e 74 61 67 65 20 69 | eterministic..The.disadvantage.i |
| 125b20 | 73 20 74 68 61 74 20 61 20 66 65 77 20 6f 72 20 65 76 65 6e 20 6f 6e 65 20 6c 6f 77 65 73 74 2d | s.that.a.few.or.even.one.lowest- |
| 125b40 | 49 44 20 72 6f 75 74 65 72 20 6d 61 79 20 61 74 74 72 61 63 74 20 61 6c 6c 20 74 72 61 66 66 69 | ID.router.may.attract.all.traffi |
| 125b60 | 63 20 74 6f 20 6f 74 68 65 72 77 69 73 65 2d 65 71 75 61 6c 20 70 61 74 68 73 20 62 65 63 61 75 | c.to.otherwise-equal.paths.becau |
| 125b80 | 73 65 20 6f 66 20 74 68 69 73 20 63 68 65 63 6b 2e 20 49 74 20 6d 61 79 20 69 6e 63 72 65 61 73 | se.of.this.check..It.may.increas |
| 125ba0 | 65 20 74 68 65 20 70 6f 73 73 69 62 69 6c 69 74 79 20 6f 66 20 4d 45 44 20 6f 72 20 49 47 50 20 | e.the.possibility.of.MED.or.IGP. |
| 125bc0 | 6f 73 63 69 6c 6c 61 74 69 6f 6e 2c 20 75 6e 6c 65 73 73 20 6f 74 68 65 72 20 6d 65 61 73 75 72 | oscillation,.unless.other.measur |
| 125be0 | 65 73 20 77 65 72 65 20 74 61 6b 65 6e 20 74 6f 20 61 76 6f 69 64 20 74 68 65 73 65 2e 20 54 68 | es.were.taken.to.avoid.these..Th |
| 125c00 | 65 20 65 78 61 63 74 20 62 65 68 61 76 69 6f 75 72 20 77 69 6c 6c 20 62 65 20 73 65 6e 73 69 74 | e.exact.behaviour.will.be.sensit |
| 125c20 | 69 76 65 20 74 6f 20 74 68 65 20 69 42 47 50 20 61 6e 64 20 72 65 66 6c 65 63 74 69 6f 6e 20 74 | ive.to.the.iBGP.and.reflection.t |
| 125c40 | 6f 70 6f 6c 6f 67 79 2e 00 54 68 65 20 61 6c 6c 6f 63 61 74 65 64 20 61 64 64 72 65 73 73 20 62 | opology..The.allocated.address.b |
| 125c60 | 6c 6f 63 6b 20 69 73 20 31 30 30 2e 36 34 2e 30 2e 30 2f 31 30 2e 00 54 68 65 20 61 6d 6f 75 6e | lock.is.100.64.0.0/10..The.amoun |
| 125c80 | 74 20 6f 66 20 44 75 70 6c 69 63 61 74 65 20 41 64 64 72 65 73 73 20 44 65 74 65 63 74 69 6f 6e | t.of.Duplicate.Address.Detection |
| 125ca0 | 20 70 72 6f 62 65 73 20 74 6f 20 73 65 6e 64 2e 00 54 68 65 20 61 74 74 72 69 62 75 74 65 73 20 | .probes.to.send..The.attributes. |
| 125cc0 | 3a 63 66 67 63 6d 64 3a 60 70 72 65 66 69 78 2d 6c 69 73 74 60 20 61 6e 64 20 3a 63 66 67 63 6d | :cfgcmd:`prefix-list`.and.:cfgcm |
| 125ce0 | 64 3a 60 64 69 73 74 72 69 62 75 74 65 2d 6c 69 73 74 60 20 61 72 65 20 6d 75 74 75 61 6c 6c 79 | d:`distribute-list`.are.mutually |
| 125d00 | 20 65 78 63 6c 75 73 69 76 65 2c 20 61 6e 64 20 6f 6e 6c 79 20 6f 6e 65 20 63 6f 6d 6d 61 6e 64 | .exclusive,.and.only.one.command |
| 125d20 | 20 28 64 69 73 74 72 69 62 75 74 65 2d 6c 69 73 74 20 6f 72 20 70 72 65 66 69 78 2d 6c 69 73 74 | .(distribute-list.or.prefix-list |
| 125d40 | 29 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 65 61 63 68 20 69 6e 62 6f 75 6e 64 | ).can.be.applied.to.each.inbound |
| 125d60 | 20 6f 72 20 6f 75 74 62 6f 75 6e 64 20 64 69 72 65 63 74 69 6f 6e 20 66 6f 72 20 61 20 70 61 72 | .or.outbound.direction.for.a.par |
| 125d80 | 74 69 63 75 6c 61 72 20 6e 65 69 67 68 62 6f 72 2e 00 54 68 65 20 61 76 61 69 6c 61 62 6c 65 20 | ticular.neighbor..The.available. |
| 125da0 | 6d 6f 64 65 73 20 61 72 65 3a 00 54 68 65 20 61 76 61 69 6c 61 62 6c 65 20 6f 70 74 69 6f 6e 73 | modes.are:.The.available.options |
| 125dc0 | 20 66 6f 72 20 3c 6d 61 74 63 68 3e 20 61 72 65 3a 00 54 68 65 20 62 61 73 65 20 63 68 61 69 6e | .for.<match>.are:.The.base.chain |
| 125de0 | 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 | .for.traffic.towards.the.router. |
| 125e00 | 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 69 6e 70 75 74 20 66 69 6c | is.``set.firewall.ipv4.input.fil |
| 125e20 | 74 65 72 20 2e 2e 2e 60 60 00 54 68 65 20 62 61 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 | ter....``.The.base.chain.for.tra |
| 125e40 | 66 66 69 63 20 74 6f 77 61 72 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 | ffic.towards.the.router.is.``set |
| 125e60 | 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 | .firewall.ipv6.input.filter....` |
| 125e80 | 60 00 54 68 65 20 62 61 73 65 20 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 20 74 6f 20 63 6f 6e | `.The.base.firewall.chain.to.con |
| 125ea0 | 66 69 67 75 72 65 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 74 72 61 6e 73 | figure.filtering.rules.for.trans |
| 125ec0 | 69 74 20 74 72 61 66 66 69 63 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 | it.traffic.is.``set.firewall.ipv |
| 125ee0 | 34 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 | 4.forward.filter....``,.which.ha |
| 125f00 | 70 70 65 6e 73 20 69 6e 20 73 74 61 67 65 20 35 2c 20 68 69 67 68 6c 69 67 68 74 65 64 20 69 6e | ppens.in.stage.5,.highlighted.in |
| 125f20 | 20 74 68 65 20 63 6f 6c 6f 72 20 72 65 64 2e 00 54 68 65 20 62 61 73 65 20 66 69 72 65 77 61 6c | .the.color.red..The.base.firewal |
| 125f40 | 6c 20 63 68 61 69 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 66 69 6c 74 65 72 69 6e 67 20 72 | l.chain.to.configure.filtering.r |
| 125f60 | 75 6c 65 73 20 66 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 69 73 20 60 60 73 65 | ules.for.transit.traffic.is.``se |
| 125f80 | 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e | t.firewall.ipv6.forward.filter.. |
| 125fa0 | 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 61 67 65 20 35 2c 20 | ..``,.which.happens.in.stage.5,. |
| 125fc0 | 68 69 67 68 6c 69 67 68 74 65 64 20 69 6e 20 74 68 65 20 63 6f 6c 6f 72 20 72 65 64 2e 00 54 68 | highlighted.in.the.color.red..Th |
| 125fe0 | 65 20 62 65 6c 6f 77 20 72 65 66 65 72 65 6e 63 65 64 20 49 50 20 61 64 64 72 65 73 73 20 60 31 | e.below.referenced.IP.address.`1 |
| 126000 | 39 32 2e 30 2e 32 2e 31 60 20 69 73 20 75 73 65 64 20 61 73 20 65 78 61 6d 70 6c 65 20 61 64 64 | 92.0.2.1`.is.used.as.example.add |
| 126020 | 72 65 73 73 20 72 65 70 72 65 73 65 6e 74 69 6e 67 20 61 20 67 6c 6f 62 61 6c 20 75 6e 69 63 61 | ress.representing.a.global.unica |
| 126040 | 73 74 20 61 64 64 72 65 73 73 20 75 6e 64 65 72 20 77 68 69 63 68 20 74 68 65 20 48 55 42 20 63 | st.address.under.which.the.HUB.c |
| 126060 | 61 6e 20 62 65 20 63 6f 6e 74 61 63 74 65 64 20 62 79 20 65 61 63 68 20 61 6e 64 20 65 76 65 72 | an.be.contacted.by.each.and.ever |
| 126080 | 79 20 69 6e 64 69 76 69 64 75 61 6c 20 73 70 6f 6b 65 2e 00 54 68 65 20 62 6f 6e 64 69 6e 67 20 | y.individual.spoke..The.bonding. |
| 1260a0 | 69 6e 74 65 72 66 61 63 65 20 70 72 6f 76 69 64 65 73 20 61 20 6d 65 74 68 6f 64 20 66 6f 72 20 | interface.provides.a.method.for. |
| 1260c0 | 61 67 67 72 65 67 61 74 69 6e 67 20 6d 75 6c 74 69 70 6c 65 20 6e 65 74 77 6f 72 6b 20 69 6e 74 | aggregating.multiple.network.int |
| 1260e0 | 65 72 66 61 63 65 73 20 69 6e 74 6f 20 61 20 73 69 6e 67 6c 65 20 6c 6f 67 69 63 61 6c 20 22 62 | erfaces.into.a.single.logical."b |
| 126100 | 6f 6e 64 65 64 22 20 69 6e 74 65 72 66 61 63 65 2c 20 6f 72 20 4c 41 47 2c 20 6f 72 20 65 74 68 | onded".interface,.or.LAG,.or.eth |
| 126120 | 65 72 2d 63 68 61 6e 6e 65 6c 2c 20 6f 72 20 70 6f 72 74 2d 63 68 61 6e 6e 65 6c 2e 20 54 68 65 | er-channel,.or.port-channel..The |
| 126140 | 20 62 65 68 61 76 69 6f 72 20 6f 66 20 74 68 65 20 62 6f 6e 64 65 64 20 69 6e 74 65 72 66 61 63 | .behavior.of.the.bonded.interfac |
| 126160 | 65 73 20 64 65 70 65 6e 64 73 20 75 70 6f 6e 20 74 68 65 20 6d 6f 64 65 3b 20 67 65 6e 65 72 61 | es.depends.upon.the.mode;.genera |
| 126180 | 6c 6c 79 20 73 70 65 61 6b 69 6e 67 2c 20 6d 6f 64 65 73 20 70 72 6f 76 69 64 65 20 65 69 74 68 | lly.speaking,.modes.provide.eith |
| 1261a0 | 65 72 20 68 6f 74 20 73 74 61 6e 64 62 79 20 6f 72 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 | er.hot.standby.or.load.balancing |
| 1261c0 | 20 73 65 72 76 69 63 65 73 2e 20 41 64 64 69 74 69 6f 6e 61 6c 6c 79 2c 20 6c 69 6e 6b 20 69 6e | .services..Additionally,.link.in |
| 1261e0 | 74 65 67 72 69 74 79 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 6d 61 79 20 62 65 20 70 65 72 66 6f 72 | tegrity.monitoring.may.be.perfor |
| 126200 | 6d 65 64 2e 00 54 68 65 20 63 61 73 65 20 6f 66 20 69 6e 67 72 65 73 73 20 73 68 61 70 69 6e 67 | med..The.case.of.ingress.shaping |
| 126220 | 00 54 68 65 20 63 68 72 6f 6e 79 20 64 61 65 6d 6f 6e 20 6f 6e 20 56 79 4f 53 20 63 61 6e 20 6c | .The.chrony.daemon.on.VyOS.can.l |
| 126240 | 65 76 65 72 61 67 65 20 4e 49 43 20 68 61 72 64 77 61 72 65 20 63 61 70 61 62 69 6c 69 74 69 65 | everage.NIC.hardware.capabilitie |
| 126260 | 73 20 74 6f 20 72 65 63 6f 72 64 20 74 68 65 20 65 78 61 63 74 20 74 69 6d 65 20 70 61 63 6b 65 | s.to.record.the.exact.time.packe |
| 126280 | 74 73 20 61 72 65 20 72 65 63 65 69 76 65 64 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 | ts.are.received.on.the.interface |
| 1262a0 | 2c 20 61 73 20 77 65 6c 6c 20 61 73 20 77 68 65 6e 20 70 61 63 6b 65 74 73 20 77 65 72 65 20 61 | ,.as.well.as.when.packets.were.a |
| 1262c0 | 63 74 75 61 6c 6c 79 20 74 72 61 6e 73 6d 69 74 74 65 64 2e 20 54 68 69 73 20 70 72 6f 76 69 64 | ctually.transmitted..This.provid |
| 1262e0 | 65 73 20 69 6d 70 72 6f 76 65 64 20 61 63 63 75 72 61 63 79 20 61 6e 64 20 73 74 61 62 69 6c 69 | es.improved.accuracy.and.stabili |
| 126300 | 74 79 20 77 68 65 6e 20 74 68 65 20 73 79 73 74 65 6d 20 69 73 20 75 6e 64 65 72 20 6c 6f 61 64 | ty.when.the.system.is.under.load |
| 126320 | 2c 20 61 73 20 71 75 65 75 69 6e 67 20 61 6e 64 20 4f 53 20 63 6f 6e 74 65 78 74 20 73 77 69 74 | ,.as.queuing.and.OS.context.swit |
| 126340 | 63 68 69 6e 67 20 63 61 6e 20 69 6e 74 72 6f 64 75 63 65 20 61 20 76 61 72 69 61 62 6c 65 20 64 | ching.can.introduce.a.variable.d |
| 126360 | 65 6c 61 79 20 62 65 74 77 65 65 6e 20 77 68 65 6e 20 74 68 65 20 70 61 63 6b 65 74 20 69 73 20 | elay.between.when.the.packet.is. |
| 126380 | 72 65 63 65 69 76 65 64 20 6f 6e 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 61 6e 64 20 77 68 65 6e | received.on.the.network.and.when |
| 1263a0 | 20 69 74 20 69 73 20 61 63 74 75 61 6c 6c 79 20 70 72 6f 63 65 73 73 65 64 20 62 79 20 74 68 65 | .it.is.actually.processed.by.the |
| 1263c0 | 20 4e 54 50 20 64 61 65 6d 6f 6e 2e 00 54 68 65 20 63 6c 69 65 6e 74 27 73 20 69 6e 74 65 72 66 | .NTP.daemon..The.client's.interf |
| 1263e0 | 61 63 65 20 63 61 6e 20 62 65 20 70 75 74 20 69 6e 74 6f 20 61 20 56 52 46 20 63 6f 6e 74 65 78 | ace.can.be.put.into.a.VRF.contex |
| 126400 | 74 20 76 69 61 20 61 20 52 41 44 49 55 53 20 41 63 63 65 73 73 2d 41 63 63 65 70 74 20 70 61 63 | t.via.a.RADIUS.Access-Accept.pac |
| 126420 | 6b 65 74 2c 20 6f 72 20 63 68 61 6e 67 65 64 20 76 69 61 20 52 41 44 49 55 53 20 43 6f 41 2e 20 | ket,.or.changed.via.RADIUS.CoA.. |
| 126440 | 60 60 41 63 63 65 6c 2d 56 52 46 2d 4e 61 6d 65 60 60 20 69 73 20 75 73 65 64 20 66 6f 72 20 74 | ``Accel-VRF-Name``.is.used.for.t |
| 126460 | 68 65 73 65 20 70 75 72 70 6f 73 65 73 2e 20 54 68 69 73 20 69 73 20 61 20 63 75 73 74 6f 6d 20 | hese.purposes..This.is.a.custom. |
| 126480 | 60 41 43 43 45 4c 2d 50 50 50 20 61 74 74 72 69 62 75 74 65 60 5f 2e 20 44 65 66 69 6e 65 20 69 | `ACCEL-PPP.attribute`_..Define.i |
| 1264a0 | 74 20 69 6e 20 79 6f 75 72 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 54 68 65 20 63 6c 69 | t.in.your.RADIUS.server..The.cli |
| 1264c0 | 65 6e 74 2c 20 6f 6e 63 65 20 73 75 63 63 65 73 73 66 75 6c 6c 79 20 61 75 74 68 65 6e 74 69 63 | ent,.once.successfully.authentic |
| 1264e0 | 61 74 65 64 2c 20 77 69 6c 6c 20 72 65 63 65 69 76 65 20 61 6e 20 49 50 76 34 20 61 6e 64 20 61 | ated,.will.receive.an.IPv4.and.a |
| 126500 | 6e 20 49 50 76 36 20 2f 36 34 20 61 64 64 72 65 73 73 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 | n.IPv6./64.address.to.terminate. |
| 126520 | 74 68 65 20 50 50 50 6f 45 20 65 6e 64 70 6f 69 6e 74 20 6f 6e 20 74 68 65 20 63 6c 69 65 6e 74 | the.PPPoE.endpoint.on.the.client |
| 126540 | 20 73 69 64 65 20 61 6e 64 20 61 20 2f 35 36 20 73 75 62 6e 65 74 20 66 6f 72 20 74 68 65 20 63 | .side.and.a./56.subnet.for.the.c |
| 126560 | 6c 69 65 6e 74 73 20 69 6e 74 65 72 6e 61 6c 20 75 73 65 2e 00 54 68 65 20 63 6c 69 65 6e 74 2c | lients.internal.use..The.client, |
| 126580 | 20 6f 6e 63 65 20 73 75 63 63 65 73 73 66 75 6c 6c 79 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 | .once.successfully.authenticated |
| 1265a0 | 2c 20 77 69 6c 6c 20 72 65 63 65 69 76 65 20 61 6e 20 49 50 76 34 20 61 6e 64 20 61 6e 20 49 50 | ,.will.receive.an.IPv4.and.an.IP |
| 1265c0 | 76 36 20 2f 36 34 20 61 64 64 72 65 73 73 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 68 65 20 | v6./64.address.to.terminate.the. |
| 1265e0 | 70 70 70 6f 65 20 65 6e 64 70 6f 69 6e 74 20 6f 6e 20 74 68 65 20 63 6c 69 65 6e 74 20 73 69 64 | pppoe.endpoint.on.the.client.sid |
| 126600 | 65 20 61 6e 64 20 61 20 2f 35 36 20 73 75 62 6e 65 74 20 66 6f 72 20 74 68 65 20 63 6c 69 65 6e | e.and.a./56.subnet.for.the.clien |
| 126620 | 74 73 20 69 6e 74 65 72 6e 61 6c 20 75 73 65 2e 00 54 68 65 20 63 6c 69 65 6e 74 73 20 3a 61 62 | ts.internal.use..The.clients.:ab |
| 126640 | 62 72 3a 60 43 50 45 20 28 43 75 73 74 6f 6d 65 72 20 50 72 65 6d 69 73 65 73 20 45 71 75 69 70 | br:`CPE.(Customer.Premises.Equip |
| 126660 | 6d 65 6e 74 29 60 20 63 61 6e 20 6e 6f 77 20 63 6f 6d 6d 75 6e 69 63 61 74 65 20 76 69 61 20 49 | ment)`.can.now.communicate.via.I |
| 126680 | 50 76 34 20 6f 72 20 49 50 76 36 2e 20 41 6c 6c 20 64 65 76 69 63 65 73 20 62 65 68 69 6e 64 20 | Pv4.or.IPv6..All.devices.behind. |
| 1266a0 | 60 60 32 30 30 31 3a 64 62 38 3a 3a 61 30 30 3a 32 37 66 66 3a 66 65 32 66 3a 64 38 30 36 2f 36 | ``2001:db8::a00:27ff:fe2f:d806/6 |
| 1266c0 | 34 60 60 20 63 61 6e 20 75 73 65 20 61 64 64 72 65 73 73 65 73 20 66 72 6f 6d 20 60 60 32 30 30 | 4``.can.use.addresses.from.``200 |
| 1266e0 | 31 3a 64 62 38 3a 31 3a 3a 2f 35 36 60 60 20 61 6e 64 20 63 61 6e 20 67 6c 6f 62 61 6c 6c 79 20 | 1:db8:1::/56``.and.can.globally. |
| 126700 | 63 6f 6d 6d 75 6e 69 63 61 74 65 20 77 69 74 68 6f 75 74 20 74 68 65 20 6e 65 65 64 20 6f 66 20 | communicate.without.the.need.of. |
| 126720 | 61 6e 79 20 4e 41 54 20 72 75 6c 65 73 2e 00 54 68 65 20 63 6f 6d 6d 61 6e 64 20 3a 6f 70 63 6d | any.NAT.rules..The.command.:opcm |
| 126740 | 64 3a 60 73 68 6f 77 20 69 6e 74 65 72 66 61 63 65 73 20 77 69 72 65 67 75 61 72 64 20 77 67 30 | d:`show.interfaces.wireguard.wg0 |
| 126760 | 31 20 70 75 62 6c 69 63 2d 6b 65 79 60 20 77 69 6c 6c 20 74 68 65 6e 20 73 68 6f 77 20 74 68 65 | 1.public-key`.will.then.show.the |
| 126780 | 20 70 75 62 6c 69 63 20 6b 65 79 2c 20 77 68 69 63 68 20 6e 65 65 64 73 20 74 6f 20 62 65 20 73 | .public.key,.which.needs.to.be.s |
| 1267a0 | 68 61 72 65 64 20 77 69 74 68 20 74 68 65 20 70 65 65 72 2e 00 54 68 65 20 63 6f 6d 6d 61 6e 64 | hared.with.the.peer..The.command |
| 1267c0 | 20 61 6c 73 6f 20 67 65 6e 65 72 61 74 65 73 20 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | .also.generates.a.configuration. |
| 1267e0 | 73 6e 69 70 70 65 64 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 63 6f 70 79 2f 70 61 73 74 65 64 | snipped.which.can.be.copy/pasted |
| 126800 | 20 69 6e 74 6f 20 74 68 65 20 56 79 4f 53 20 43 4c 49 20 69 66 20 6e 65 65 64 65 64 2e 20 54 68 | .into.the.VyOS.CLI.if.needed..Th |
| 126820 | 65 20 73 75 70 70 6c 69 65 64 20 60 60 3c 6e 61 6d 65 3e 60 60 20 6f 6e 20 74 68 65 20 43 4c 49 | e.supplied.``<name>``.on.the.CLI |
| 126840 | 20 77 69 6c 6c 20 62 65 63 6f 6d 65 20 74 68 65 20 70 65 65 72 20 6e 61 6d 65 20 69 6e 20 74 68 | .will.become.the.peer.name.in.th |
| 126860 | 65 20 73 6e 69 70 70 65 74 2e 00 54 68 65 20 63 6f 6d 6d 61 6e 64 20 61 6c 73 6f 20 67 65 6e 65 | e.snippet..The.command.also.gene |
| 126880 | 72 61 74 65 73 20 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 6e 69 70 70 65 74 20 77 68 | rates.a.configuration.snippet.wh |
| 1268a0 | 69 63 68 20 63 61 6e 20 62 65 20 63 6f 70 79 2f 70 61 73 74 65 64 20 69 6e 74 6f 20 74 68 65 20 | ich.can.be.copy/pasted.into.the. |
| 1268c0 | 56 79 4f 53 20 43 4c 49 20 69 66 20 6e 65 65 64 65 64 2e 20 54 68 65 20 73 75 70 70 6c 69 65 64 | VyOS.CLI.if.needed..The.supplied |
| 1268e0 | 20 60 60 3c 6e 61 6d 65 3e 60 60 20 6f 6e 20 74 68 65 20 43 4c 49 20 77 69 6c 6c 20 62 65 63 6f | .``<name>``.on.the.CLI.will.beco |
| 126900 | 6d 65 20 74 68 65 20 70 65 65 72 20 6e 61 6d 65 20 69 6e 20 74 68 65 20 73 6e 69 70 70 65 74 2e | me.the.peer.name.in.the.snippet. |
| 126920 | 00 54 68 65 20 63 6f 6d 6d 61 6e 64 20 62 65 6c 6f 77 20 65 6e 61 62 6c 65 73 20 69 74 2c 20 61 | .The.command.below.enables.it,.a |
| 126940 | 73 73 75 6d 69 6e 67 20 74 68 65 20 52 41 44 49 55 53 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 68 61 | ssuming.the.RADIUS.connection.ha |
| 126960 | 73 20 62 65 65 6e 20 73 65 74 75 70 20 61 6e 64 20 69 73 20 77 6f 72 6b 69 6e 67 2e 00 54 68 65 | s.been.setup.and.is.working..The |
| 126980 | 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 63 75 72 72 65 6e 74 20 52 49 50 20 73 74 | .command.displays.current.RIP.st |
| 1269a0 | 61 74 75 73 2e 20 49 74 20 69 6e 63 6c 75 64 65 73 20 52 49 50 20 74 69 6d 65 72 2c 20 66 69 6c | atus..It.includes.RIP.timer,.fil |
| 1269c0 | 74 65 72 69 6e 67 2c 20 76 65 72 73 69 6f 6e 2c 20 52 49 50 20 65 6e 61 62 6c 65 64 20 69 6e 74 | tering,.version,.RIP.enabled.int |
| 1269e0 | 65 72 66 61 63 65 20 61 6e 64 20 52 49 50 20 70 65 65 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e | erface.and.RIP.peer.information. |
| 126a00 | 00 54 68 65 20 63 6f 6d 6d 61 6e 64 20 70 6f 6e 20 54 45 53 54 55 4e 4e 45 4c 20 65 73 74 61 62 | .The.command.pon.TESTUNNEL.estab |
| 126a20 | 6c 69 73 68 65 73 20 74 68 65 20 50 50 54 50 20 74 75 6e 6e 65 6c 20 74 6f 20 74 68 65 20 72 65 | lishes.the.PPTP.tunnel.to.the.re |
| 126a40 | 6d 6f 74 65 20 73 79 73 74 65 6d 2e 00 54 68 65 20 63 6f 6d 6d 61 6e 64 20 74 72 61 6e 73 6c 61 | mote.system..The.command.transla |
| 126a60 | 74 65 73 20 74 6f 20 22 2d 2d 63 70 75 73 3d 3c 6e 75 6d 3e 22 20 77 68 65 6e 20 74 68 65 20 63 | tes.to."--cpus=<num>".when.the.c |
| 126a80 | 6f 6e 74 61 69 6e 65 72 20 69 73 20 63 72 65 61 74 65 64 2e 00 54 68 65 20 63 6f 6d 6d 61 6e 64 | ontainer.is.created..The.command |
| 126aa0 | 20 74 72 61 6e 73 6c 61 74 65 73 20 74 6f 20 22 2d 2d 6e 65 74 20 68 6f 73 74 22 20 77 68 65 6e | .translates.to."--net.host".when |
| 126ac0 | 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 69 73 20 63 72 65 61 74 65 64 2e 00 54 68 65 20 63 | .the.container.is.created..The.c |
| 126ae0 | 6f 6d 6d 61 6e 64 20 74 72 61 6e 73 6c 61 74 65 73 20 74 6f 20 22 2d 2d 70 69 64 20 68 6f 73 74 | ommand.translates.to."--pid.host |
| 126b00 | 22 20 77 68 65 6e 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 69 73 20 63 72 65 61 74 65 64 2e | ".when.the.container.is.created. |
| 126b20 | 00 54 68 65 20 63 6f 6d 70 75 74 65 72 73 20 6f 6e 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 6e 65 | .The.computers.on.an.internal.ne |
| 126b40 | 74 77 6f 72 6b 20 63 61 6e 20 75 73 65 20 61 6e 79 20 6f 66 20 74 68 65 20 61 64 64 72 65 73 73 | twork.can.use.any.of.the.address |
| 126b60 | 65 73 20 73 65 74 20 61 73 69 64 65 20 62 79 20 74 68 65 20 3a 61 62 62 72 3a 60 49 41 4e 41 20 | es.set.aside.by.the.:abbr:`IANA. |
| 126b80 | 28 49 6e 74 65 72 6e 65 74 20 41 73 73 69 67 6e 65 64 20 4e 75 6d 62 65 72 73 20 41 75 74 68 6f | (Internet.Assigned.Numbers.Autho |
| 126ba0 | 72 69 74 79 29 60 20 66 6f 72 20 70 72 69 76 61 74 65 20 61 64 64 72 65 73 73 69 6e 67 20 28 73 | rity)`.for.private.addressing.(s |
| 126bc0 | 65 65 20 3a 72 66 63 3a 60 31 39 31 38 60 29 2e 20 54 68 65 73 65 20 72 65 73 65 72 76 65 64 20 | ee.:rfc:`1918`)..These.reserved. |
| 126be0 | 49 50 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 6e 6f 74 20 69 6e 20 75 73 65 20 6f 6e 20 74 | IP.addresses.are.not.in.use.on.t |
| 126c00 | 68 65 20 49 6e 74 65 72 6e 65 74 2c 20 73 6f 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 6d 61 63 68 | he.Internet,.so.an.external.mach |
| 126c20 | 69 6e 65 20 77 69 6c 6c 20 6e 6f 74 20 64 69 72 65 63 74 6c 79 20 72 6f 75 74 65 20 74 6f 20 74 | ine.will.not.directly.route.to.t |
| 126c40 | 68 65 6d 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 61 64 64 72 65 73 73 65 73 20 61 72 65 | hem..The.following.addresses.are |
| 126c60 | 20 72 65 73 65 72 76 65 64 20 66 6f 72 20 70 72 69 76 61 74 65 20 75 73 65 3a 00 54 68 65 20 63 | .reserved.for.private.use:.The.c |
| 126c80 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 69 6c 6c 20 6c 6f 6f 6b 20 61 73 20 66 6f 6c 6c 6f 77 | onfiguration.will.look.as.follow |
| 126ca0 | 73 3a 00 54 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 61 62 6f 76 65 20 77 69 6c 6c | s:.The.configurations.above.will |
| 126cc0 | 20 64 65 66 61 75 6c 74 20 74 6f 20 75 73 69 6e 67 20 32 35 36 2d 62 69 74 20 41 45 53 20 69 6e | .default.to.using.256-bit.AES.in |
| 126ce0 | 20 47 43 4d 20 6d 6f 64 65 20 66 6f 72 20 65 6e 63 72 79 70 74 69 6f 6e 20 28 69 66 20 62 6f 74 | .GCM.mode.for.encryption.(if.bot |
| 126d00 | 68 20 73 69 64 65 73 20 73 75 70 70 6f 72 74 20 4e 43 50 29 20 61 6e 64 20 53 48 41 2d 31 20 66 | h.sides.support.NCP).and.SHA-1.f |
| 126d20 | 6f 72 20 48 4d 41 43 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 20 53 48 41 2d 31 20 69 73 | or.HMAC.authentication..SHA-1.is |
| 126d40 | 20 63 6f 6e 73 69 64 65 72 65 64 20 77 65 61 6b 2c 20 62 75 74 20 6f 74 68 65 72 20 68 61 73 68 | .considered.weak,.but.other.hash |
| 126d60 | 69 6e 67 20 61 6c 67 6f 72 69 74 68 6d 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 2c 20 61 73 | ing.algorithms.are.available,.as |
| 126d80 | 20 61 72 65 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6c 67 6f 72 69 74 68 6d 73 3a 00 54 68 65 20 | .are.encryption.algorithms:.The. |
| 126da0 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 61 62 6f 76 65 20 77 69 6c 6c 20 64 65 66 61 75 6c | configurations.above.will.defaul |
| 126dc0 | 74 20 74 6f 20 75 73 69 6e 67 20 32 35 36 2d 62 69 74 20 41 45 53 20 69 6e 20 47 43 4d 20 6d 6f | t.to.using.256-bit.AES.in.GCM.mo |
| 126de0 | 64 65 20 66 6f 72 20 65 6e 63 72 79 70 74 69 6f 6e 20 28 69 66 20 62 6f 74 68 20 73 69 64 65 73 | de.for.encryption.(if.both.sides |
| 126e00 | 20 73 75 70 70 6f 72 74 20 64 61 74 61 20 63 69 70 68 65 72 20 6e 65 67 6f 74 69 61 74 69 6f 6e | .support.data.cipher.negotiation |
| 126e20 | 29 20 61 6e 64 20 53 48 41 2d 31 20 66 6f 72 20 48 4d 41 43 20 61 75 74 68 65 6e 74 69 63 61 74 | ).and.SHA-1.for.HMAC.authenticat |
| 126e40 | 69 6f 6e 2e 20 53 48 41 2d 31 20 69 73 20 63 6f 6e 73 69 64 65 72 65 64 20 77 65 61 6b 2c 20 62 | ion..SHA-1.is.considered.weak,.b |
| 126e60 | 75 74 20 6f 74 68 65 72 20 68 61 73 68 69 6e 67 20 61 6c 67 6f 72 69 74 68 6d 73 20 61 72 65 20 | ut.other.hashing.algorithms.are. |
| 126e80 | 61 76 61 69 6c 61 62 6c 65 2c 20 61 73 20 61 72 65 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6c 67 | available,.as.are.encryption.alg |
| 126ea0 | 6f 72 69 74 68 6d 73 3a 00 54 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 65 20 68 6f | orithms:.The.connection.state.ho |
| 126ec0 | 77 65 76 65 72 20 69 73 20 63 6f 6d 70 6c 65 74 65 6c 79 20 69 6e 64 65 70 65 6e 64 65 6e 74 20 | wever.is.completely.independent. |
| 126ee0 | 6f 66 20 61 6e 79 20 75 70 70 65 72 2d 6c 65 76 65 6c 20 73 74 61 74 65 2c 20 73 75 63 68 20 61 | of.any.upper-level.state,.such.a |
| 126f00 | 73 20 54 43 50 27 73 20 6f 72 20 53 43 54 50 27 73 20 73 74 61 74 65 2e 20 50 61 72 74 20 6f 66 | s.TCP's.or.SCTP's.state..Part.of |
| 126f20 | 20 74 68 65 20 72 65 61 73 6f 6e 20 66 6f 72 20 74 68 69 73 20 69 73 20 74 68 61 74 20 77 68 65 | .the.reason.for.this.is.that.whe |
| 126f40 | 6e 20 6d 65 72 65 6c 79 20 66 6f 72 77 61 72 64 69 6e 67 20 70 61 63 6b 65 74 73 2c 20 69 2e 65 | n.merely.forwarding.packets,.i.e |
| 126f60 | 2e 20 6e 6f 20 6c 6f 63 61 6c 20 64 65 6c 69 76 65 72 79 2c 20 74 68 65 20 54 43 50 20 65 6e 67 | ..no.local.delivery,.the.TCP.eng |
| 126f80 | 69 6e 65 20 6d 61 79 20 6e 6f 74 20 6e 65 63 65 73 73 61 72 69 6c 79 20 62 65 20 69 6e 76 6f 6b | ine.may.not.necessarily.be.invok |
| 126fa0 | 65 64 20 61 74 20 61 6c 6c 2e 20 45 76 65 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 6c 65 73 73 2d 6d | ed.at.all..Even.connectionless-m |
| 126fc0 | 6f 64 65 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 73 20 73 75 63 68 20 61 73 20 55 44 50 2c 20 49 | ode.transmissions.such.as.UDP,.I |
| 126fe0 | 50 73 65 63 20 28 41 48 2f 45 53 50 29 2c 20 47 52 45 20 61 6e 64 20 6f 74 68 65 72 20 74 75 6e | Psec.(AH/ESP),.GRE.and.other.tun |
| 127000 | 6e 65 6c 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 68 61 76 65 2c 20 61 74 20 6c 65 61 73 74 2c | neling.protocols.have,.at.least, |
| 127020 | 20 61 20 70 73 65 75 64 6f 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 65 2e 20 54 68 65 20 | .a.pseudo.connection.state..The. |
| 127040 | 68 65 75 72 69 73 74 69 63 20 66 6f 72 20 73 75 63 68 20 70 72 6f 74 6f 63 6f 6c 73 20 69 73 20 | heuristic.for.such.protocols.is. |
| 127060 | 6f 66 74 65 6e 20 62 61 73 65 64 20 75 70 6f 6e 20 61 20 70 72 65 73 65 74 20 74 69 6d 65 6f 75 | often.based.upon.a.preset.timeou |
| 127080 | 74 20 76 61 6c 75 65 20 66 6f 72 20 69 6e 61 63 74 69 76 69 74 79 2c 20 61 66 74 65 72 20 77 68 | t.value.for.inactivity,.after.wh |
| 1270a0 | 6f 73 65 20 65 78 70 69 72 61 74 69 6f 6e 20 61 20 4e 65 74 66 69 6c 74 65 72 20 63 6f 6e 6e 65 | ose.expiration.a.Netfilter.conne |
| 1270c0 | 63 74 69 6f 6e 20 69 73 20 64 72 6f 70 70 65 64 2e 00 54 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e | ction.is.dropped..The.connection |
| 1270e0 | 20 74 72 61 63 6b 69 6e 67 20 65 78 70 65 63 74 20 74 61 62 6c 65 20 63 6f 6e 74 61 69 6e 73 20 | .tracking.expect.table.contains. |
| 127100 | 6f 6e 65 20 65 6e 74 72 79 20 66 6f 72 20 65 61 63 68 20 65 78 70 65 63 74 65 64 20 63 6f 6e 6e | one.entry.for.each.expected.conn |
| 127120 | 65 63 74 69 6f 6e 20 72 65 6c 61 74 65 64 20 74 6f 20 61 6e 20 65 78 69 73 74 69 6e 67 20 63 6f | ection.related.to.an.existing.co |
| 127140 | 6e 6e 65 63 74 69 6f 6e 2e 20 54 68 65 73 65 20 61 72 65 20 67 65 6e 65 72 61 6c 6c 79 20 75 73 | nnection..These.are.generally.us |
| 127160 | 65 64 20 62 79 20 e2 80 9c 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 68 65 6c | ed.by....connection.tracking.hel |
| 127180 | 70 65 72 e2 80 9d 20 6d 6f 64 75 6c 65 73 20 73 75 63 68 20 61 73 20 46 54 50 2e 20 54 68 65 20 | per....modules.such.as.FTP..The. |
| 1271a0 | 64 65 66 61 75 6c 74 20 73 69 7a 65 20 6f 66 20 74 68 65 20 65 78 70 65 63 74 20 74 61 62 6c 65 | default.size.of.the.expect.table |
| 1271c0 | 20 69 73 20 32 30 34 38 20 65 6e 74 72 69 65 73 2e 00 54 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e | .is.2048.entries..The.connection |
| 1271e0 | 20 74 72 61 63 6b 69 6e 67 20 74 61 62 6c 65 20 63 6f 6e 74 61 69 6e 73 20 6f 6e 65 20 65 6e 74 | .tracking.table.contains.one.ent |
| 127200 | 72 79 20 66 6f 72 20 65 61 63 68 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 62 65 69 6e 67 20 74 72 61 | ry.for.each.connection.being.tra |
| 127220 | 63 6b 65 64 20 62 79 20 74 68 65 20 73 79 73 74 65 6d 2e 00 54 68 65 20 63 6f 6e 74 61 69 6e 65 | cked.by.the.system..The.containe |
| 127240 | 72 20 61 6e 64 20 74 68 65 20 68 6f 73 74 20 73 68 61 72 65 20 74 68 65 20 73 61 6d 65 20 70 72 | r.and.the.host.share.the.same.pr |
| 127260 | 6f 63 65 73 73 20 6e 61 6d 65 73 70 61 63 65 2e 20 54 68 69 73 20 6d 65 61 6e 73 20 74 68 61 74 | ocess.namespace..This.means.that |
| 127280 | 20 70 72 6f 63 65 73 73 65 73 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 74 68 65 20 68 6f 73 74 20 61 | .processes.running.on.the.host.a |
| 1272a0 | 72 65 20 76 69 73 69 62 6c 65 20 69 6e 73 69 64 65 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 2c | re.visible.inside.the.container, |
| 1272c0 | 20 61 6e 64 20 70 72 6f 63 65 73 73 65 73 20 69 6e 73 69 64 65 20 74 68 65 20 63 6f 6e 74 61 69 | .and.processes.inside.the.contai |
| 1272e0 | 6e 65 72 20 61 72 65 20 76 69 73 69 62 6c 65 20 6f 6e 20 74 68 65 20 68 6f 73 74 2e 00 54 68 65 | ner.are.visible.on.the.host..The |
| 127300 | 20 63 75 72 72 65 6e 74 20 61 74 74 72 69 62 75 74 65 20 27 46 69 6c 74 65 72 2d 49 64 27 20 69 | .current.attribute.'Filter-Id'.i |
| 127320 | 73 20 62 65 69 6e 67 20 75 73 65 64 20 61 73 20 64 65 66 61 75 6c 74 20 61 6e 64 20 63 61 6e 20 | s.being.used.as.default.and.can. |
| 127340 | 62 65 20 73 65 74 75 70 20 77 69 74 68 69 6e 20 52 41 44 49 55 53 3a 00 54 68 65 20 63 75 72 72 | be.setup.within.RADIUS:.The.curr |
| 127360 | 65 6e 74 20 61 74 74 72 69 62 75 74 65 20 60 60 46 69 6c 74 65 72 2d 49 64 60 60 20 69 73 20 62 | ent.attribute.``Filter-Id``.is.b |
| 127380 | 65 69 6e 67 20 75 73 65 64 20 61 73 20 64 65 66 61 75 6c 74 20 61 6e 64 20 63 61 6e 20 62 65 20 | eing.used.as.default.and.can.be. |
| 1273a0 | 73 65 74 75 70 20 77 69 74 68 69 6e 20 52 41 44 49 55 53 3a 00 54 68 65 20 63 75 72 72 65 6e 74 | setup.within.RADIUS:.The.current |
| 1273c0 | 20 70 72 6f 74 6f 63 6f 6c 20 69 73 20 76 65 72 73 69 6f 6e 20 34 20 28 4e 54 50 76 34 29 2c 20 | .protocol.is.version.4.(NTPv4),. |
| 1273e0 | 77 68 69 63 68 20 69 73 20 61 20 70 72 6f 70 6f 73 65 64 20 73 74 61 6e 64 61 72 64 20 61 73 20 | which.is.a.proposed.standard.as. |
| 127400 | 64 6f 63 75 6d 65 6e 74 65 64 20 69 6e 20 3a 72 66 63 3a 60 35 39 30 35 60 2e 20 49 74 20 69 73 | documented.in.:rfc:`5905`..It.is |
| 127420 | 20 62 61 63 6b 77 61 72 64 20 63 6f 6d 70 61 74 69 62 6c 65 20 77 69 74 68 20 76 65 72 73 69 6f | .backward.compatible.with.versio |
| 127440 | 6e 20 33 2c 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 3a 72 66 63 3a 60 31 33 30 35 60 2e 00 54 | n.3,.specified.in.:rfc:`1305`..T |
| 127460 | 68 65 20 64 61 65 6d 6f 6e 20 64 6f 75 62 6c 65 73 20 74 68 65 20 73 69 7a 65 20 6f 66 20 74 68 | he.daemon.doubles.the.size.of.th |
| 127480 | 65 20 6e 65 74 6c 69 6e 6b 20 65 76 65 6e 74 20 73 6f 63 6b 65 74 20 62 75 66 66 65 72 20 73 69 | e.netlink.event.socket.buffer.si |
| 1274a0 | 7a 65 20 69 66 20 69 74 20 64 65 74 65 63 74 73 20 6e 65 74 6c 69 6e 6b 20 65 76 65 6e 74 20 6d | ze.if.it.detects.netlink.event.m |
| 1274c0 | 65 73 73 61 67 65 20 64 72 6f 70 70 69 6e 67 2e 20 54 68 69 73 20 63 6c 61 75 73 65 20 73 65 74 | essage.dropping..This.clause.set |
| 1274e0 | 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 62 75 66 66 65 72 20 73 69 7a 65 20 67 72 6f 77 74 68 | s.the.maximum.buffer.size.growth |
| 127500 | 20 74 68 61 74 20 63 61 6e 20 62 65 20 72 65 61 63 68 65 64 2e 00 54 68 65 20 64 65 66 61 75 6c | .that.can.be.reached..The.defaul |
| 127520 | 74 20 52 41 44 49 55 53 20 61 74 74 72 69 62 75 74 65 20 66 6f 72 20 72 61 74 65 20 6c 69 6d 69 | t.RADIUS.attribute.for.rate.limi |
| 127540 | 74 69 6e 67 20 69 73 20 60 60 46 69 6c 74 65 72 2d 49 64 60 60 2c 20 62 75 74 20 79 6f 75 20 6d | ting.is.``Filter-Id``,.but.you.m |
| 127560 | 61 79 20 61 6c 73 6f 20 72 65 64 65 66 69 6e 65 20 69 74 2e 00 54 68 65 20 64 65 66 61 75 6c 74 | ay.also.redefine.it..The.default |
| 127580 | 20 56 79 4f 53 20 75 73 65 72 20 61 63 63 6f 75 6e 74 20 28 60 76 79 6f 73 60 29 2c 20 61 73 20 | .VyOS.user.account.(`vyos`),.as. |
| 1275a0 | 77 65 6c 6c 20 61 73 20 6e 65 77 6c 79 20 63 72 65 61 74 65 64 20 75 73 65 72 20 61 63 63 6f 75 | well.as.newly.created.user.accou |
| 1275c0 | 6e 74 73 2c 20 68 61 76 65 20 61 6c 6c 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 74 6f 20 63 6f | nts,.have.all.capabilities.to.co |
| 1275e0 | 6e 66 69 67 75 72 65 20 74 68 65 20 73 79 73 74 65 6d 2e 20 41 6c 6c 20 61 63 63 6f 75 6e 74 73 | nfigure.the.system..All.accounts |
| 127600 | 20 68 61 76 65 20 73 75 64 6f 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 61 6e 64 20 74 68 65 72 | .have.sudo.capabilities.and.ther |
| 127620 | 65 66 6f 72 65 20 63 61 6e 20 6f 70 65 72 61 74 65 20 61 73 20 72 6f 6f 74 20 6f 6e 20 74 68 65 | efore.can.operate.as.root.on.the |
| 127640 | 20 73 79 73 74 65 6d 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 68 6f 73 74 6e 61 6d 65 20 75 73 | .system..The.default.hostname.us |
| 127660 | 65 64 20 69 73 20 60 76 79 6f 73 60 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 31 34 39 | ed.is.`vyos`..The.default.is.149 |
| 127680 | 32 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 60 60 38 30 32 2e 31 71 60 60 2e 00 54 68 | 2..The.default.is.``802.1q``..Th |
| 1276a0 | 65 20 64 65 66 61 75 6c 74 20 6c 65 61 73 65 20 74 69 6d 65 20 66 6f 72 20 44 48 43 50 76 36 20 | e.default.lease.time.for.DHCPv6. |
| 1276c0 | 6c 65 61 73 65 73 20 69 73 20 32 34 20 68 6f 75 72 73 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 | leases.is.24.hours..This.can.be. |
| 1276e0 | 63 68 61 6e 67 65 64 20 62 79 20 73 75 70 70 6c 79 69 6e 67 20 61 20 60 60 64 65 66 61 75 6c 74 | changed.by.supplying.a.``default |
| 127700 | 2d 74 69 6d 65 60 60 2c 20 60 60 6d 61 78 69 6d 75 6d 2d 74 69 6d 65 60 60 20 61 6e 64 20 60 60 | -time``,.``maximum-time``.and.`` |
| 127720 | 6d 69 6e 69 6d 75 6d 2d 74 69 6d 65 60 60 2e 20 41 6c 6c 20 76 61 6c 75 65 73 20 6e 65 65 64 20 | minimum-time``..All.values.need. |
| 127740 | 74 6f 20 62 65 20 73 75 70 70 6c 69 65 64 20 69 6e 20 73 65 63 6f 6e 64 73 2e 00 54 68 65 20 64 | to.be.supplied.in.seconds..The.d |
| 127760 | 65 66 61 75 6c 74 20 70 6f 72 74 20 75 64 70 20 69 73 20 73 65 74 20 74 6f 20 38 34 37 32 2e 20 | efault.port.udp.is.set.to.8472.. |
| 127780 | 49 74 20 63 61 6e 20 62 65 20 63 68 61 6e 67 65 64 20 77 69 74 68 20 60 60 73 65 74 20 69 6e 74 | It.can.be.changed.with.``set.int |
| 1277a0 | 65 72 66 61 63 65 20 76 78 6c 61 6e 20 3c 76 78 6c 61 6e 4e 3e 20 70 6f 72 74 20 3c 70 6f 72 74 | erface.vxlan.<vxlanN>.port.<port |
| 1277c0 | 3e 60 60 00 54 68 65 20 64 65 66 61 75 6c 74 20 74 69 6d 65 20 69 73 20 36 30 20 73 65 63 6f 6e | >``.The.default.time.is.60.secon |
| 1277e0 | 64 73 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 63 6f 72 72 65 73 70 6f 6e 64 | ds..The.default.value.correspond |
| 127800 | 73 20 74 6f 20 36 34 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 30 2e | s.to.64..The.default.value.is.0. |
| 127820 | 20 54 68 69 73 20 77 69 6c 6c 20 63 61 75 73 65 20 74 68 65 20 63 61 72 72 69 65 72 20 74 6f 20 | .This.will.cause.the.carrier.to. |
| 127840 | 62 65 20 61 73 73 65 72 74 65 64 20 28 66 6f 72 20 38 30 32 2e 33 61 64 20 6d 6f 64 65 29 20 77 | be.asserted.(for.802.3ad.mode).w |
| 127860 | 68 65 6e 65 76 65 72 20 74 68 65 72 65 20 69 73 20 61 6e 20 61 63 74 69 76 65 20 61 67 67 72 65 | henever.there.is.an.active.aggre |
| 127880 | 67 61 74 6f 72 2c 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 6e 75 6d 62 65 72 20 | gator,.regardless.of.the.number. |
| 1278a0 | 6f 66 20 61 76 61 69 6c 61 62 6c 65 20 6c 69 6e 6b 73 20 69 6e 20 74 68 61 74 20 61 67 67 72 65 | of.available.links.in.that.aggre |
| 1278c0 | 67 61 74 6f 72 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 33 20 70 61 | gator..The.default.value.is.3.pa |
| 1278e0 | 63 6b 65 74 73 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 33 2e 00 54 | ckets..The.default.value.is.3..T |
| 127900 | 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 33 30 30 20 73 65 63 6f 6e 64 73 2e | he.default.value.is.300.seconds. |
| 127920 | 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 30 30 20 73 65 63 6f 6e 64 | .The.default.value.is.600.second |
| 127940 | 73 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 37 32 30 30 20 73 65 63 | s..The.default.value.is.7200.sec |
| 127960 | 6f 6e 64 73 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 38 36 34 30 30 | onds..The.default.value.is.86400 |
| 127980 | 20 73 65 63 6f 6e 64 73 20 77 68 69 63 68 20 63 6f 72 72 65 73 70 6f 6e 64 73 20 74 6f 20 6f 6e | .seconds.which.corresponds.to.on |
| 1279a0 | 65 20 64 61 79 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 73 6c 6f 77 | e.day..The.default.value.is.slow |
| 1279c0 | 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 73 20 66 6f 72 20 74 68 65 20 6d 69 6e | ..The.default.values.for.the.min |
| 1279e0 | 69 6d 75 6d 2d 74 68 72 65 73 68 6f 6c 64 20 64 65 70 65 6e 64 20 6f 6e 20 49 50 20 70 72 65 63 | imum-threshold.depend.on.IP.prec |
| 127a00 | 65 64 65 6e 63 65 3a 00 54 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 75 73 65 | edence:.The.destination.port.use |
| 127a20 | 64 20 66 6f 72 20 63 72 65 61 74 69 6e 67 20 61 20 56 58 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 | d.for.creating.a.VXLAN.interface |
| 127a40 | 20 69 6e 20 4c 69 6e 75 78 20 64 65 66 61 75 6c 74 73 20 74 6f 20 69 74 73 20 70 72 65 2d 73 74 | .in.Linux.defaults.to.its.pre-st |
| 127a60 | 61 6e 64 61 72 64 20 76 61 6c 75 65 20 6f 66 20 38 34 37 32 20 74 6f 20 70 72 65 73 65 72 76 65 | andard.value.of.8472.to.preserve |
| 127a80 | 20 62 61 63 6b 77 61 72 64 20 63 6f 6d 70 61 74 69 62 69 6c 69 74 79 2e 20 41 20 63 6f 6e 66 69 | .backward.compatibility..A.confi |
| 127aa0 | 67 75 72 61 74 69 6f 6e 20 64 69 72 65 63 74 69 76 65 20 74 6f 20 73 75 70 70 6f 72 74 20 61 20 | guration.directive.to.support.a. |
| 127ac0 | 75 73 65 72 2d 73 70 65 63 69 66 69 65 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 | user-specified.destination.port. |
| 127ae0 | 74 6f 20 6f 76 65 72 72 69 64 65 20 74 68 61 74 20 62 65 68 61 76 69 6f 72 20 69 73 20 61 76 61 | to.override.that.behavior.is.ava |
| 127b00 | 69 6c 61 62 6c 65 20 75 73 69 6e 67 20 74 68 65 20 61 62 6f 76 65 20 63 6f 6d 6d 61 6e 64 2e 00 | ilable.using.the.above.command.. |
| 127b20 | 54 68 65 20 64 65 76 69 63 65 20 63 61 6e 20 6f 6e 6c 79 20 72 65 63 65 69 76 65 20 70 61 63 6b | The.device.can.only.receive.pack |
| 127b40 | 65 74 73 20 77 69 74 68 20 56 4e 49 73 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 74 68 65 20 | ets.with.VNIs.configured.in.the. |
| 127b60 | 56 4e 49 20 66 69 6c 74 65 72 69 6e 67 20 74 61 62 6c 65 2e 00 54 68 65 20 64 69 61 6c 6f 67 75 | VNI.filtering.table..The.dialogu |
| 127b80 | 65 20 62 65 74 77 65 65 6e 20 48 41 20 70 61 72 74 6e 65 72 73 20 69 73 20 6e 65 69 74 68 65 72 | e.between.HA.partners.is.neither |
| 127ba0 | 20 65 6e 63 72 79 70 74 65 64 20 6e 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 2e 20 53 69 | .encrypted.nor.authenticated..Si |
| 127bc0 | 6e 63 65 20 6d 6f 73 74 20 44 48 43 50 20 73 65 72 76 65 72 73 20 65 78 69 73 74 20 77 69 74 68 | nce.most.DHCP.servers.exist.with |
| 127be0 | 69 6e 20 61 6e 20 6f 72 67 61 6e 69 73 61 74 69 6f 6e 27 73 20 6f 77 6e 20 73 65 63 75 72 65 20 | in.an.organisation's.own.secure. |
| 127c00 | 49 6e 74 72 61 6e 65 74 2c 20 74 68 69 73 20 77 6f 75 6c 64 20 62 65 20 61 6e 20 75 6e 6e 65 63 | Intranet,.this.would.be.an.unnec |
| 127c20 | 65 73 73 61 72 79 20 6f 76 65 72 68 65 61 64 2e 20 48 6f 77 65 76 65 72 2c 20 69 66 20 79 6f 75 | essary.overhead..However,.if.you |
| 127c40 | 20 68 61 76 65 20 44 48 43 50 20 48 41 20 70 65 65 72 73 20 77 68 6f 73 65 20 63 6f 6d 6d 75 6e | .have.DHCP.HA.peers.whose.commun |
| 127c60 | 69 63 61 74 69 6f 6e 73 20 74 72 61 76 65 72 73 65 20 69 6e 73 65 63 75 72 65 20 6e 65 74 77 6f | ications.traverse.insecure.netwo |
| 127c80 | 72 6b 73 2c 20 74 68 65 6e 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 74 68 61 74 20 79 6f 75 20 | rks,.then.we.recommend.that.you. |
| 127ca0 | 63 6f 6e 73 69 64 65 72 20 74 68 65 20 75 73 65 20 6f 66 20 56 50 4e 20 74 75 6e 6e 65 6c 69 6e | consider.the.use.of.VPN.tunnelin |
| 127cc0 | 67 20 62 65 74 77 65 65 6e 20 74 68 65 6d 20 74 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 74 68 | g.between.them.to.ensure.that.th |
| 127ce0 | 65 20 48 41 20 70 61 72 74 6e 65 72 73 68 69 70 20 69 73 20 69 6d 6d 75 6e 65 20 74 6f 20 64 69 | e.HA.partnership.is.immune.to.di |
| 127d00 | 73 72 75 70 74 69 6f 6e 20 28 61 63 63 69 64 65 6e 74 61 6c 20 6f 72 20 6f 74 68 65 72 77 69 73 | sruption.(accidental.or.otherwis |
| 127d20 | 65 29 20 76 69 61 20 74 68 69 72 64 20 70 61 72 74 69 65 73 2e 00 54 68 65 20 64 69 61 6c 6f 67 | e).via.third.parties..The.dialog |
| 127d40 | 75 65 20 62 65 74 77 65 65 6e 20 66 61 69 6c 6f 76 65 72 20 70 61 72 74 6e 65 72 73 20 69 73 20 | ue.between.failover.partners.is. |
| 127d60 | 6e 65 69 74 68 65 72 20 65 6e 63 72 79 70 74 65 64 20 6e 6f 72 20 61 75 74 68 65 6e 74 69 63 61 | neither.encrypted.nor.authentica |
| 127d80 | 74 65 64 2e 20 53 69 6e 63 65 20 6d 6f 73 74 20 44 48 43 50 20 73 65 72 76 65 72 73 20 65 78 69 | ted..Since.most.DHCP.servers.exi |
| 127da0 | 73 74 20 77 69 74 68 69 6e 20 61 6e 20 6f 72 67 61 6e 69 73 61 74 69 6f 6e 27 73 20 6f 77 6e 20 | st.within.an.organisation's.own. |
| 127dc0 | 73 65 63 75 72 65 20 49 6e 74 72 61 6e 65 74 2c 20 74 68 69 73 20 77 6f 75 6c 64 20 62 65 20 61 | secure.Intranet,.this.would.be.a |
| 127de0 | 6e 20 75 6e 6e 65 63 65 73 73 61 72 79 20 6f 76 65 72 68 65 61 64 2e 20 48 6f 77 65 76 65 72 2c | n.unnecessary.overhead..However, |
| 127e00 | 20 69 66 20 79 6f 75 20 68 61 76 65 20 44 48 43 50 20 66 61 69 6c 6f 76 65 72 20 70 65 65 72 73 | .if.you.have.DHCP.failover.peers |
| 127e20 | 20 77 68 6f 73 65 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 73 20 74 72 61 76 65 72 73 65 20 69 | .whose.communications.traverse.i |
| 127e40 | 6e 73 65 63 75 72 65 20 6e 65 74 77 6f 72 6b 73 2c 20 74 68 65 6e 20 77 65 20 72 65 63 6f 6d 6d | nsecure.networks,.then.we.recomm |
| 127e60 | 65 6e 64 20 74 68 61 74 20 79 6f 75 20 63 6f 6e 73 69 64 65 72 20 74 68 65 20 75 73 65 20 6f 66 | end.that.you.consider.the.use.of |
| 127e80 | 20 56 50 4e 20 74 75 6e 6e 65 6c 69 6e 67 20 62 65 74 77 65 65 6e 20 74 68 65 6d 20 74 6f 20 65 | .VPN.tunneling.between.them.to.e |
| 127ea0 | 6e 73 75 72 65 20 74 68 61 74 20 74 68 65 20 66 61 69 6c 6f 76 65 72 20 70 61 72 74 6e 65 72 73 | nsure.that.the.failover.partners |
| 127ec0 | 68 69 70 20 69 73 20 69 6d 6d 75 6e 65 20 74 6f 20 64 69 73 72 75 70 74 69 6f 6e 20 28 61 63 63 | hip.is.immune.to.disruption.(acc |
| 127ee0 | 69 64 65 6e 74 61 6c 20 6f 72 20 6f 74 68 65 72 77 69 73 65 29 20 76 69 61 20 74 68 69 72 64 20 | idental.or.otherwise).via.third. |
| 127f00 | 70 61 72 74 69 65 73 2e 00 54 68 65 20 64 6f 6d 61 69 6e 2d 6e 61 6d 65 20 70 61 72 61 6d 65 74 | parties..The.domain-name.paramet |
| 127f20 | 65 72 20 73 68 6f 75 6c 64 20 62 65 20 74 68 65 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 74 68 61 | er.should.be.the.domain.name.tha |
| 127f40 | 74 20 77 69 6c 6c 20 62 65 20 61 70 70 65 6e 64 65 64 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 | t.will.be.appended.to.the.client |
| 127f60 | 27 73 20 68 6f 73 74 6e 61 6d 65 20 74 6f 20 66 6f 72 6d 20 61 20 66 75 6c 6c 79 2d 71 75 61 6c | 's.hostname.to.form.a.fully-qual |
| 127f80 | 69 66 69 65 64 20 64 6f 6d 61 69 6e 2d 6e 61 6d 65 20 28 46 51 44 4e 29 20 28 44 48 43 50 20 4f | ified.domain-name.(FQDN).(DHCP.O |
| 127fa0 | 70 74 69 6f 6e 20 30 31 35 29 2e 00 54 68 65 20 64 6f 6d 61 69 6e 2d 6e 61 6d 65 20 70 61 72 61 | ption.015)..The.domain-name.para |
| 127fc0 | 6d 65 74 65 72 20 73 68 6f 75 6c 64 20 62 65 20 74 68 65 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 | meter.should.be.the.domain.name. |
| 127fe0 | 75 73 65 64 20 77 68 65 6e 20 63 6f 6d 70 6c 65 74 69 6e 67 20 44 4e 53 20 72 65 71 75 65 73 74 | used.when.completing.DNS.request |
| 128000 | 20 77 68 65 72 65 20 6e 6f 20 66 75 6c 6c 20 46 51 44 4e 20 69 73 20 70 61 73 73 65 64 2e 20 54 | .where.no.full.FQDN.is.passed..T |
| 128020 | 68 69 73 20 6f 70 74 69 6f 6e 20 63 61 6e 20 62 65 20 67 69 76 65 6e 20 6d 75 6c 74 69 70 6c 65 | his.option.can.be.given.multiple |
| 128040 | 20 74 69 6d 65 73 20 69 66 20 79 6f 75 20 6e 65 65 64 20 6d 75 6c 74 69 70 6c 65 20 73 65 61 72 | .times.if.you.need.multiple.sear |
| 128060 | 63 68 20 64 6f 6d 61 69 6e 73 20 28 44 48 43 50 20 4f 70 74 69 6f 6e 20 31 31 39 29 2e 00 54 68 | ch.domains.(DHCP.Option.119)..Th |
| 128080 | 65 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 20 61 6c 6c 6f 77 73 20 75 73 20 74 6f 20 68 | e.dummy.interface.allows.us.to.h |
| 1280a0 | 61 76 65 20 61 6e 20 65 71 75 69 76 61 6c 65 6e 74 20 6f 66 20 74 68 65 20 43 69 73 63 6f 20 49 | ave.an.equivalent.of.the.Cisco.I |
| 1280c0 | 4f 53 20 4c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 20 2d 20 61 20 72 6f 75 74 65 72 | OS.Loopback.interface.-.a.router |
| 1280e0 | 2d 69 6e 74 65 72 6e 61 6c 20 69 6e 74 65 72 66 61 63 65 20 77 65 20 63 61 6e 20 75 73 65 20 66 | -internal.interface.we.can.use.f |
| 128100 | 6f 72 20 49 50 20 61 64 64 72 65 73 73 65 73 20 74 68 65 20 72 6f 75 74 65 72 20 6d 75 73 74 20 | or.IP.addresses.the.router.must. |
| 128120 | 6b 6e 6f 77 20 61 62 6f 75 74 2c 20 62 75 74 20 77 68 69 63 68 20 61 72 65 20 6e 6f 74 20 61 63 | know.about,.but.which.are.not.ac |
| 128140 | 74 75 61 6c 6c 79 20 61 73 73 69 67 6e 65 64 20 74 6f 20 61 20 72 65 61 6c 20 6e 65 74 77 6f 72 | tually.assigned.to.a.real.networ |
| 128160 | 6b 2e 00 54 68 65 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 72 65 61 6c 6c 79 | k..The.dummy.interface.is.really |
| 128180 | 20 61 20 6c 69 74 74 6c 65 20 65 78 6f 74 69 63 2c 20 62 75 74 20 72 61 74 68 65 72 20 75 73 65 | .a.little.exotic,.but.rather.use |
| 1281a0 | 66 75 6c 20 6e 65 76 65 72 74 68 65 6c 65 73 73 2e 20 44 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 | ful.nevertheless..Dummy.interfac |
| 1281c0 | 65 73 20 61 72 65 20 6d 75 63 68 20 6c 69 6b 65 20 74 68 65 20 3a 72 65 66 3a 60 6c 6f 6f 70 62 | es.are.much.like.the.:ref:`loopb |
| 1281e0 | 61 63 6b 2d 69 6e 74 65 72 66 61 63 65 60 20 69 6e 74 65 72 66 61 63 65 2c 20 65 78 63 65 70 74 | ack-interface`.interface,.except |
| 128200 | 20 79 6f 75 20 63 61 6e 20 68 61 76 65 20 61 73 20 6d 61 6e 79 20 61 73 20 79 6f 75 20 77 61 6e | .you.can.have.as.many.as.you.wan |
| 128220 | 74 2e 00 54 68 65 20 65 6d 62 65 64 64 65 64 20 53 71 75 69 64 20 70 72 6f 78 79 20 63 61 6e 20 | t..The.embedded.Squid.proxy.can. |
| 128240 | 75 73 65 20 4c 44 41 50 20 74 6f 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 75 73 65 72 73 20 61 | use.LDAP.to.authenticate.users.a |
| 128260 | 67 61 69 6e 73 74 20 61 20 63 6f 6d 70 61 6e 79 20 77 69 64 65 20 64 69 72 65 63 74 6f 72 79 2e | gainst.a.company.wide.directory. |
| 128280 | 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 | .The.following.configuration.is. |
| 1282a0 | 61 6e 20 65 78 61 6d 70 6c 65 20 6f 66 20 68 6f 77 20 74 6f 20 75 73 65 20 41 63 74 69 76 65 20 | an.example.of.how.to.use.Active. |
| 1282c0 | 44 69 72 65 63 74 6f 72 79 20 61 73 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 61 63 6b | Directory.as.authentication.back |
| 1282e0 | 65 6e 64 2e 20 51 75 65 72 69 65 73 20 61 72 65 20 64 6f 6e 65 20 76 69 61 20 4c 44 41 50 2e 00 | end..Queries.are.done.via.LDAP.. |
| 128300 | 54 68 65 20 65 78 61 6d 70 6c 65 20 61 62 6f 76 65 20 75 73 65 73 20 31 39 32 2e 30 2e 32 2e 32 | The.example.above.uses.192.0.2.2 |
| 128320 | 20 61 73 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 2e 20 41 20 4c 41 43 20 6e | .as.external.IP.address..A.LAC.n |
| 128340 | 6f 72 6d 61 6c 6c 79 20 72 65 71 75 69 72 65 73 20 61 6e 20 61 75 74 68 65 6e 74 69 63 61 74 69 | ormally.requires.an.authenticati |
| 128360 | 6f 6e 20 70 61 73 73 77 6f 72 64 2c 20 77 68 69 63 68 20 69 73 20 73 65 74 20 69 6e 20 74 68 65 | on.password,.which.is.set.in.the |
| 128380 | 20 65 78 61 6d 70 6c 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 6f 20 60 60 6c 6e 73 20 | .example.configuration.to.``lns. |
| 1283a0 | 73 68 61 72 65 64 2d 73 65 63 72 65 74 20 27 73 65 63 72 65 74 27 60 60 2e 20 54 68 69 73 20 73 | shared-secret.'secret'``..This.s |
| 1283c0 | 65 74 75 70 20 72 65 71 75 69 72 65 73 20 74 68 65 20 43 6f 6d 70 72 65 73 73 69 6f 6e 20 43 6f | etup.requires.the.Compression.Co |
| 1283e0 | 6e 74 72 6f 6c 20 50 72 6f 74 6f 63 6f 6c 20 28 43 43 50 29 20 62 65 69 6e 67 20 64 69 73 61 62 | ntrol.Protocol.(CCP).being.disab |
| 128400 | 6c 65 64 2c 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 60 60 73 65 74 20 76 70 6e 20 6c 32 74 70 20 | led,.the.command.``set.vpn.l2tp. |
| 128420 | 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 20 63 63 70 2d 64 69 73 61 62 6c 65 60 60 20 61 63 63 6f | remote-access.ccp-disable``.acco |
| 128440 | 6d 70 6c 69 73 68 65 73 20 74 68 61 74 2e 00 54 68 65 20 65 78 61 6d 70 6c 65 20 62 65 6c 6f 77 | mplishes.that..The.example.below |
| 128460 | 20 63 6f 76 65 72 73 20 61 20 64 75 61 6c 2d 73 74 61 63 6b 20 63 6f 6e 66 69 67 75 72 61 74 69 | .covers.a.dual-stack.configurati |
| 128480 | 6f 6e 20 76 69 61 20 70 70 70 6f 65 2d 73 65 72 76 65 72 2e 00 54 68 65 20 65 78 61 6d 70 6c 65 | on.via.pppoe-server..The.example |
| 1284a0 | 20 62 65 6c 6f 77 20 63 6f 76 65 72 73 20 61 20 64 75 61 6c 2d 73 74 61 63 6b 20 63 6f 6e 66 69 | .below.covers.a.dual-stack.confi |
| 1284c0 | 67 75 72 61 74 69 6f 6e 2e 00 54 68 65 20 65 78 61 6d 70 6c 65 20 62 65 6c 6f 77 20 75 73 65 73 | guration..The.example.below.uses |
| 1284e0 | 20 41 43 4e 20 61 73 20 61 63 63 65 73 73 2d 63 6f 6e 63 65 6e 74 72 61 74 6f 72 20 6e 61 6d 65 | .ACN.as.access-concentrator.name |
| 128500 | 2c 20 61 73 73 69 67 6e 73 20 61 6e 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 70 6f | ,.assigns.an.address.from.the.po |
| 128520 | 6f 6c 20 31 30 2e 31 2e 31 2e 31 30 30 2d 31 31 31 2c 20 74 65 72 6d 69 6e 61 74 65 73 20 61 74 | ol.10.1.1.100-111,.terminates.at |
| 128540 | 20 74 68 65 20 6c 6f 63 61 6c 20 65 6e 64 70 6f 69 6e 74 20 31 30 2e 31 2e 31 2e 31 20 61 6e 64 | .the.local.endpoint.10.1.1.1.and |
| 128560 | 20 73 65 72 76 65 73 20 72 65 71 75 65 73 74 73 20 6f 6e 6c 79 20 6f 6e 20 65 74 68 31 2e 00 54 | .serves.requests.only.on.eth1..T |
| 128580 | 68 65 20 65 78 61 6d 70 6c 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 62 65 6c 6f 77 20 77 | he.example.configuration.below.w |
| 1285a0 | 69 6c 6c 20 61 73 73 69 67 6e 20 61 6e 20 49 50 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 20 6f | ill.assign.an.IP.to.the.client.o |
| 1285c0 | 6e 20 74 68 65 20 69 6e 63 6f 6d 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 31 20 77 69 | n.the.incoming.interface.eth1.wi |
| 1285e0 | 74 68 20 74 68 65 20 63 6c 69 65 6e 74 20 6d 61 63 20 61 64 64 72 65 73 73 20 30 30 3a 35 30 3a | th.the.client.mac.address.00:50: |
| 128600 | 37 39 3a 36 36 3a 36 38 3a 30 30 2e 20 4f 74 68 65 72 20 44 48 43 50 20 64 69 73 63 6f 76 65 72 | 79:66:68:00..Other.DHCP.discover |
| 128620 | 79 20 72 65 71 75 65 73 74 73 20 77 69 6c 6c 20 62 65 20 69 67 6e 6f 72 65 64 2c 20 75 6e 6c 65 | y.requests.will.be.ignored,.unle |
| 128640 | 73 73 20 74 68 65 20 63 6c 69 65 6e 74 20 6d 61 63 20 68 61 73 20 62 65 65 6e 20 65 6e 61 62 6c | ss.the.client.mac.has.been.enabl |
| 128660 | 65 64 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 68 65 20 65 78 61 | ed.in.the.configuration..The.exa |
| 128680 | 6d 70 6c 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 62 65 6c 6f 77 20 77 69 6c 6c 20 61 73 | mple.configuration.below.will.as |
| 1286a0 | 73 69 67 6e 20 61 6e 20 49 50 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 20 6f 6e 20 74 68 65 20 | sign.an.IP.to.the.client.on.the. |
| 1286c0 | 69 6e 63 6f 6d 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 32 20 77 69 74 68 20 74 68 65 | incoming.interface.eth2.with.the |
| 1286e0 | 20 63 6c 69 65 6e 74 20 6d 61 63 20 61 64 64 72 65 73 73 20 30 38 3a 30 30 3a 32 37 3a 32 66 3a | .client.mac.address.08:00:27:2f: |
| 128700 | 64 38 3a 30 36 2e 20 4f 74 68 65 72 20 44 48 43 50 20 64 69 73 63 6f 76 65 72 79 20 72 65 71 75 | d8:06..Other.DHCP.discovery.requ |
| 128720 | 65 73 74 73 20 77 69 6c 6c 20 62 65 20 69 67 6e 6f 72 65 64 2c 20 75 6e 6c 65 73 73 20 74 68 65 | ests.will.be.ignored,.unless.the |
| 128740 | 20 63 6c 69 65 6e 74 20 6d 61 63 20 68 61 73 20 62 65 65 6e 20 65 6e 61 62 6c 65 64 20 69 6e 20 | .client.mac.has.been.enabled.in. |
| 128760 | 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 68 65 20 65 78 61 6d 70 6c 65 20 63 | the.configuration..The.example.c |
| 128780 | 72 65 61 74 65 73 20 61 20 77 69 72 65 6c 65 73 73 20 73 74 61 74 69 6f 6e 20 28 63 6f 6d 6d 6f | reates.a.wireless.station.(commo |
| 1287a0 | 6e 6c 79 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 57 69 2d 46 69 20 63 6c 69 65 6e 74 29 | nly.referred.to.as.Wi-Fi.client) |
| 1287c0 | 20 74 68 61 74 20 61 63 63 65 73 73 65 73 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 74 68 72 6f 75 | .that.accesses.the.network.throu |
| 1287e0 | 67 68 20 74 68 65 20 57 41 50 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 65 20 61 62 6f 76 65 20 | gh.the.WAP.defined.in.the.above. |
| 128800 | 65 78 61 6d 70 6c 65 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 70 68 79 73 69 63 61 6c 20 64 65 | example..The.default.physical.de |
| 128820 | 76 69 63 65 20 28 60 60 70 68 79 30 60 60 29 20 69 73 20 75 73 65 64 2e 00 54 68 65 20 65 78 74 | vice.(``phy0``).is.used..The.ext |
| 128840 | 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 74 72 61 6e 73 6c 61 74 65 20 74 6f | ernal.IP.address.to.translate.to |
| 128860 | 00 54 68 65 20 66 69 72 65 77 61 6c 6c 20 73 75 70 70 6f 72 74 73 20 74 68 65 20 63 72 65 61 74 | .The.firewall.supports.the.creat |
| 128880 | 69 6f 6e 20 6f 66 20 67 72 6f 75 70 73 20 66 6f 72 20 61 64 64 72 65 73 73 65 73 2c 20 64 6f 6d | ion.of.groups.for.addresses,.dom |
| 1288a0 | 61 69 6e 73 2c 20 69 6e 74 65 72 66 61 63 65 73 2c 20 6d 61 63 2d 61 64 64 72 65 73 73 65 73 2c | ains,.interfaces,.mac-addresses, |
| 1288c0 | 20 6e 65 74 77 6f 72 6b 73 20 61 6e 64 20 70 6f 72 74 20 67 72 6f 75 70 73 2e 20 54 68 69 73 20 | .networks.and.port.groups..This. |
| 1288e0 | 67 72 6f 75 70 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 6c 61 74 65 72 20 69 6e 20 66 69 72 65 | groups.can.be.used.later.in.fire |
| 128900 | 77 61 6c 6c 20 72 75 6c 65 73 65 74 20 61 73 20 64 65 73 69 72 65 64 2e 00 54 68 65 20 66 69 72 | wall.ruleset.as.desired..The.fir |
| 128920 | 65 77 61 6c 6c 20 73 75 70 70 6f 72 74 73 20 74 68 65 20 63 72 65 61 74 69 6f 6e 20 6f 66 20 67 | ewall.supports.the.creation.of.g |
| 128940 | 72 6f 75 70 73 20 66 6f 72 20 70 6f 72 74 73 2c 20 61 64 64 72 65 73 73 65 73 2c 20 61 6e 64 20 | roups.for.ports,.addresses,.and. |
| 128960 | 6e 65 74 77 6f 72 6b 73 20 28 69 6d 70 6c 65 6d 65 6e 74 65 64 20 75 73 69 6e 67 20 6e 65 74 66 | networks.(implemented.using.netf |
| 128980 | 69 6c 74 65 72 20 69 70 73 65 74 29 20 61 6e 64 20 74 68 65 20 6f 70 74 69 6f 6e 20 6f 66 20 69 | ilter.ipset).and.the.option.of.i |
| 1289a0 | 6e 74 65 72 66 61 63 65 20 6f 72 20 7a 6f 6e 65 20 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 20 | nterface.or.zone.based.firewall. |
| 1289c0 | 70 6f 6c 69 63 79 2e 00 54 68 65 20 66 69 72 73 74 20 49 50 20 69 6e 20 74 68 65 20 63 6f 6e 74 | policy..The.first.IP.in.the.cont |
| 1289e0 | 61 69 6e 65 72 20 6e 65 74 77 6f 72 6b 20 69 73 20 72 65 73 65 72 76 65 64 20 62 79 20 74 68 65 | ainer.network.is.reserved.by.the |
| 128a00 | 20 65 6e 67 69 6e 65 20 61 6e 64 20 63 61 6e 6e 6f 74 20 62 65 20 75 73 65 64 00 54 68 65 20 66 | .engine.and.cannot.be.used.The.f |
| 128a20 | 69 72 73 74 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 70 61 72 61 6d 65 74 65 72 20 60 60 | irst.address.of.the.parameter.`` |
| 128a40 | 63 6c 69 65 6e 74 2d 73 75 62 6e 65 74 60 60 2c 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 61 73 | client-subnet``,.will.be.used.as |
| 128a60 | 20 74 68 65 20 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 2e 20 43 6f 6e 6e 65 63 74 65 64 20 | .the.default.gateway..Connected. |
| 128a80 | 73 65 73 73 69 6f 6e 73 20 63 61 6e 20 62 65 20 63 68 65 63 6b 65 64 20 76 69 61 20 74 68 65 20 | sessions.can.be.checked.via.the. |
| 128aa0 | 60 60 73 68 6f 77 20 69 70 6f 65 2d 73 65 72 76 65 72 20 73 65 73 73 69 6f 6e 73 60 60 20 63 6f | ``show.ipoe-server.sessions``.co |
| 128ac0 | 6d 6d 61 6e 64 2e 00 54 68 65 20 66 69 72 73 74 20 61 6e 64 20 61 72 67 75 61 62 6c 79 20 63 6c | mmand..The.first.and.arguably.cl |
| 128ae0 | 65 61 6e 65 72 20 6f 70 74 69 6f 6e 20 69 73 20 74 6f 20 6d 61 6b 65 20 79 6f 75 72 20 49 50 73 | eaner.option.is.to.make.your.IPs |
| 128b00 | 65 63 20 70 6f 6c 69 63 79 20 6d 61 74 63 68 20 47 52 45 20 70 61 63 6b 65 74 73 20 62 65 74 77 | ec.policy.match.GRE.packets.betw |
| 128b20 | 65 65 6e 20 65 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 65 73 20 6f 66 20 79 6f 75 72 20 72 | een.external.addresses.of.your.r |
| 128b40 | 6f 75 74 65 72 73 2e 20 54 68 69 73 20 69 73 20 74 68 65 20 62 65 73 74 20 6f 70 74 69 6f 6e 20 | outers..This.is.the.best.option. |
| 128b60 | 69 66 20 62 6f 74 68 20 72 6f 75 74 65 72 73 20 68 61 76 65 20 73 74 61 74 69 63 20 65 78 74 65 | if.both.routers.have.static.exte |
| 128b80 | 72 6e 61 6c 20 61 64 64 72 65 73 73 65 73 2e 00 54 68 65 20 66 69 72 73 74 20 66 6c 6f 77 20 63 | rnal.addresses..The.first.flow.c |
| 128ba0 | 6f 6e 74 72 6f 6c 20 6d 65 63 68 61 6e 69 73 6d 2c 20 74 68 65 20 70 61 75 73 65 20 66 72 61 6d | ontrol.mechanism,.the.pause.fram |
| 128bc0 | 65 2c 20 77 61 73 20 64 65 66 69 6e 65 64 20 62 79 20 74 68 65 20 49 45 45 45 20 38 30 32 2e 33 | e,.was.defined.by.the.IEEE.802.3 |
| 128be0 | 78 20 73 74 61 6e 64 61 72 64 2e 00 54 68 65 20 66 69 72 73 74 20 69 70 20 61 64 64 72 65 73 73 | x.standard..The.first.ip.address |
| 128c00 | 20 69 73 20 74 68 65 20 52 50 27 73 20 61 64 64 72 65 73 73 20 61 6e 64 20 74 68 65 20 73 65 63 | .is.the.RP's.address.and.the.sec |
| 128c20 | 6f 6e 64 20 76 61 6c 75 65 20 69 73 20 74 68 65 20 6d 61 74 63 68 69 6e 67 20 70 72 65 66 69 78 | ond.value.is.the.matching.prefix |
| 128c40 | 20 6f 66 20 67 72 6f 75 70 20 72 61 6e 67 65 73 20 63 6f 76 65 72 65 64 2e 00 54 68 65 20 66 69 | .of.group.ranges.covered..The.fi |
| 128c60 | 72 73 74 20 72 65 67 69 73 74 72 61 74 69 6f 6e 20 72 65 71 75 65 73 74 20 69 73 20 73 65 6e 74 | rst.registration.request.is.sent |
| 128c80 | 20 74 6f 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 20 62 72 6f 61 64 63 61 73 74 20 61 64 64 72 65 | .to.the.protocol.broadcast.addre |
| 128ca0 | 73 73 2c 20 61 6e 64 20 74 68 65 20 73 65 72 76 65 72 27 73 20 72 65 61 6c 20 70 72 6f 74 6f 63 | ss,.and.the.server's.real.protoc |
| 128cc0 | 6f 6c 20 61 64 64 72 65 73 73 20 69 73 20 64 79 6e 61 6d 69 63 61 6c 6c 79 20 64 65 74 65 63 74 | ol.address.is.dynamically.detect |
| 128ce0 | 65 64 20 66 72 6f 6d 20 74 68 65 20 66 69 72 73 74 20 72 65 67 69 73 74 72 61 74 69 6f 6e 20 72 | ed.from.the.first.registration.r |
| 128d00 | 65 70 6c 79 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 50 50 50 20 63 6f 6e 66 69 67 75 72 | eply..The.following.PPP.configur |
| 128d20 | 61 74 69 6f 6e 20 74 65 73 74 73 20 4d 53 43 48 41 50 2d 76 32 3a 00 54 68 65 20 66 6f 6c 6c 6f | ation.tests.MSCHAP-v2:.The.follo |
| 128d40 | 77 69 6e 67 20 60 72 65 63 65 69 76 65 2d 66 69 6c 74 65 72 60 20 6d 6f 64 65 73 20 63 61 6e 20 | wing.`receive-filter`.modes.can. |
| 128d60 | 62 65 20 73 65 6c 65 63 74 65 64 3a 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 | be.selected:.The.following.comma |
| 128d80 | 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 4f | nd.can.be.used.to.generate.the.O |
| 128da0 | 54 50 20 6b 65 79 20 61 73 20 77 65 6c 6c 20 61 73 20 74 68 65 20 43 4c 49 20 63 6f 6d 6d 61 6e | TP.key.as.well.as.the.CLI.comman |
| 128dc0 | 64 73 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 6d 3a 00 54 68 65 20 66 6f 6c 6c 6f 77 | ds.to.configure.them:.The.follow |
| 128de0 | 69 6e 67 20 63 6f 6d 6d 61 6e 64 20 75 73 65 73 20 74 68 65 20 65 78 70 6c 69 63 69 74 2d 6e 75 | ing.command.uses.the.explicit-nu |
| 128e00 | 6c 6c 20 6c 61 62 65 6c 20 76 61 6c 75 65 20 66 6f 72 20 61 6c 6c 20 74 68 65 20 42 47 50 20 69 | ll.label.value.for.all.the.BGP.i |
| 128e20 | 6e 73 74 61 6e 63 65 73 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 | nstances..The.following.commands |
| 128e40 | 20 6c 65 74 20 79 6f 75 20 63 68 65 63 6b 20 74 75 6e 6e 65 6c 20 73 74 61 74 75 73 2e 00 54 68 | .let.you.check.tunnel.status..Th |
| 128e60 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 20 6c 65 74 20 79 6f 75 20 72 65 73 | e.following.commands.let.you.res |
| 128e80 | 65 74 20 4f 70 65 6e 56 50 4e 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e | et.OpenVPN..The.following.comman |
| 128ea0 | 64 73 20 74 72 61 6e 73 6c 61 74 65 20 74 6f 20 22 2d 2d 6e 65 74 20 68 6f 73 74 22 20 77 68 65 | ds.translate.to."--net.host".whe |
| 128ec0 | 6e 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 69 73 20 63 72 65 61 74 65 64 00 54 68 65 20 66 | n.the.container.is.created.The.f |
| 128ee0 | 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 20 77 6f 75 6c 64 20 62 65 20 72 65 71 75 69 | ollowing.commands.would.be.requi |
| 128f00 | 72 65 64 20 74 6f 20 73 65 74 20 6f 70 74 69 6f 6e 73 20 66 6f 72 20 61 20 67 69 76 65 6e 20 64 | red.to.set.options.for.a.given.d |
| 128f20 | 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 69 6e 73 69 64 65 20 61 | ynamic.routing.protocol.inside.a |
| 128f40 | 20 67 69 76 65 6e 20 76 72 66 3a 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 | .given.vrf:.The.following.config |
| 128f60 | 75 72 61 74 69 6f 6e 20 64 65 6d 6f 6e 73 74 72 61 74 65 73 20 68 6f 77 20 74 6f 20 75 73 65 20 | uration.demonstrates.how.to.use. |
| 128f80 | 56 79 4f 53 20 74 6f 20 61 63 68 69 65 76 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 62 | VyOS.to.achieve.load.balancing.b |
| 128fa0 | 61 73 65 64 20 6f 6e 20 74 68 65 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 2e 00 54 68 65 20 66 6f 6c | ased.on.the.domain.name..The.fol |
| 128fc0 | 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 78 70 6c 69 63 69 74 6c 79 20 | lowing.configuration.explicitly. |
| 128fe0 | 6a 6f 69 6e 73 20 6d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 70 20 60 66 66 31 35 3a 3a 31 32 33 | joins.multicast.group.`ff15::123 |
| 129000 | 34 60 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 60 65 74 68 31 60 20 61 6e 64 20 73 6f 75 72 63 | 4`.on.interface.`eth1`.and.sourc |
| 129020 | 65 2d 73 70 65 63 69 66 69 63 20 6d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 70 20 60 66 66 31 35 | e-specific.multicast.group.`ff15 |
| 129040 | 3a 3a 35 36 37 38 60 20 77 69 74 68 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 60 32 30 30 | ::5678`.with.source.address.`200 |
| 129060 | 31 3a 64 62 38 3a 3a 31 60 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 60 65 74 68 31 60 3a 00 54 | 1:db8::1`.on.interface.`eth1`:.T |
| 129080 | 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 6e 20 56 79 | he.following.configuration.on.Vy |
| 1290a0 | 4f 53 20 61 70 70 6c 69 65 73 20 74 6f 20 61 6c 6c 20 66 6f 6c 6c 6f 77 69 6e 67 20 33 72 64 20 | OS.applies.to.all.following.3rd. |
| 1290c0 | 70 61 72 74 79 20 76 65 6e 64 6f 72 73 2e 20 49 74 20 63 72 65 61 74 65 73 20 61 20 62 6f 6e 64 | party.vendors..It.creates.a.bond |
| 1290e0 | 20 77 69 74 68 20 74 77 6f 20 6c 69 6e 6b 73 20 61 6e 64 20 56 4c 41 4e 20 31 30 2c 20 31 30 30 | .with.two.links.and.VLAN.10,.100 |
| 129100 | 20 6f 6e 20 74 68 65 20 62 6f 6e 64 65 64 20 69 6e 74 65 72 66 61 63 65 73 20 77 69 74 68 20 61 | .on.the.bonded.interfaces.with.a |
| 129120 | 20 70 65 72 20 56 49 46 20 49 50 76 34 20 61 64 64 72 65 73 73 2e 00 54 68 65 20 66 6f 6c 6c 6f | .per.VIF.IPv4.address..The.follo |
| 129140 | 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 72 65 76 65 72 73 65 2d 70 72 6f 78 79 | wing.configuration.reverse-proxy |
| 129160 | 20 74 65 72 6d 69 6e 61 74 65 20 53 53 4c 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f | .terminate.SSL..The.following.co |
| 129180 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 65 72 6d 69 6e 61 74 65 73 20 53 53 4c 20 6f 6e 20 74 68 | nfiguration.terminates.SSL.on.th |
| 1291a0 | 65 20 72 6f 75 74 65 72 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 | e.router..The.following.configur |
| 1291c0 | 61 74 69 6f 6e 20 74 65 72 6d 69 6e 61 74 65 73 20 69 6e 63 6f 6d 69 6e 67 20 48 54 54 50 53 20 | ation.terminates.incoming.HTTPS. |
| 1291e0 | 74 72 61 66 66 69 63 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 72 2c 20 74 68 65 6e 20 72 65 2d 65 | traffic.on.the.router,.then.re-e |
| 129200 | 6e 63 72 79 70 74 73 20 74 68 65 20 74 72 61 66 66 69 63 20 61 6e 64 20 73 65 6e 64 73 20 74 6f | ncrypts.the.traffic.and.sends.to |
| 129220 | 20 74 68 65 20 62 61 63 6b 65 6e 64 20 73 65 72 76 65 72 20 76 69 61 20 48 54 54 50 53 2e 20 54 | .the.backend.server.via.HTTPS..T |
| 129240 | 68 69 73 20 69 73 20 75 73 65 66 75 6c 20 69 66 20 65 6e 63 72 79 70 74 69 6f 6e 20 69 73 20 72 | his.is.useful.if.encryption.is.r |
| 129260 | 65 71 75 69 72 65 64 20 66 6f 72 20 62 6f 74 68 20 6c 65 67 73 2c 20 62 75 74 20 79 6f 75 20 64 | equired.for.both.legs,.but.you.d |
| 129280 | 6f 20 6e 6f 74 20 77 61 6e 74 20 74 6f 20 69 6e 73 74 61 6c 6c 20 70 75 62 6c 69 63 6c 79 20 74 | o.not.want.to.install.publicly.t |
| 1292a0 | 72 75 73 74 65 64 20 63 65 72 74 69 66 69 63 61 74 65 73 20 6f 6e 20 65 61 63 68 20 62 61 63 6b | rusted.certificates.on.each.back |
| 1292c0 | 65 6e 64 20 73 65 72 76 65 72 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 | end.server..The.following.config |
| 1292e0 | 75 72 61 74 69 6f 6e 20 77 69 6c 6c 20 61 73 73 69 67 6e 20 61 20 2f 36 34 20 70 72 65 66 69 78 | uration.will.assign.a./64.prefix |
| 129300 | 20 6f 75 74 20 6f 66 20 61 20 2f 35 36 20 64 65 6c 65 67 61 74 69 6f 6e 20 74 6f 20 65 74 68 30 | .out.of.a./56.delegation.to.eth0 |
| 129320 | 2e 20 54 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 65 | ..The.IPv6.address.assigned.to.e |
| 129340 | 74 68 30 20 77 69 6c 6c 20 62 65 20 3c 70 72 65 66 69 78 3e 3a 3a 66 66 66 66 2f 36 34 2e 20 49 | th0.will.be.<prefix>::ffff/64..I |
| 129360 | 66 20 79 6f 75 20 64 6f 20 6e 6f 74 20 6b 6e 6f 77 20 74 68 65 20 70 72 65 66 69 78 20 73 69 7a | f.you.do.not.know.the.prefix.siz |
| 129380 | 65 20 64 65 6c 65 67 61 74 65 64 20 74 6f 20 79 6f 75 2c 20 73 74 61 72 74 20 77 69 74 68 20 73 | e.delegated.to.you,.start.with.s |
| 1293a0 | 6c 61 2d 6c 65 6e 20 30 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 | la-len.0..The.following.configur |
| 1293c0 | 61 74 69 6f 6e 20 77 69 6c 6c 20 73 65 74 75 70 20 61 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e | ation.will.setup.a.PPPoE.session |
| 1293e0 | 20 73 6f 75 72 63 65 20 66 72 6f 6d 20 65 74 68 31 20 61 6e 64 20 61 73 73 69 67 6e 20 61 20 2f | .source.from.eth1.and.assign.a./ |
| 129400 | 36 34 20 70 72 65 66 69 78 20 6f 75 74 20 6f 66 20 61 20 2f 35 36 20 64 65 6c 65 67 61 74 69 6f | 64.prefix.out.of.a./56.delegatio |
| 129420 | 6e 20 28 72 65 71 75 65 73 74 65 64 20 66 72 6f 6d 20 74 68 65 20 49 53 50 29 20 74 6f 20 65 74 | n.(requested.from.the.ISP).to.et |
| 129440 | 68 30 2e 20 54 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 61 73 73 69 67 6e 65 64 20 74 6f | h0..The.IPv6.address.assigned.to |
| 129460 | 20 65 74 68 30 20 77 69 6c 6c 20 62 65 20 3c 70 72 65 66 69 78 3e 3a 3a 31 2f 36 34 2e 20 49 66 | .eth0.will.be.<prefix>::1/64..If |
| 129480 | 20 79 6f 75 20 64 6f 20 6e 6f 74 20 6b 6e 6f 77 20 74 68 65 20 70 72 65 66 69 78 20 73 69 7a 65 | .you.do.not.know.the.prefix.size |
| 1294a0 | 20 64 65 6c 65 67 61 74 65 64 20 74 6f 20 79 6f 75 2c 20 73 74 61 72 74 20 77 69 74 68 20 73 6c | .delegated.to.you,.start.with.sl |
| 1294c0 | 61 2d 6c 65 6e 20 30 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 20 61 | a-len.0..The.following.example.a |
| 1294e0 | 6c 6c 6f 77 73 20 56 79 4f 53 20 74 6f 20 75 73 65 20 3a 61 62 62 72 3a 60 50 42 52 20 28 50 6f | llows.VyOS.to.use.:abbr:`PBR.(Po |
| 129500 | 6c 69 63 79 2d 42 61 73 65 64 20 52 6f 75 74 69 6e 67 29 60 20 66 6f 72 20 74 72 61 66 66 69 63 | licy-Based.Routing)`.for.traffic |
| 129520 | 2c 20 77 68 69 63 68 20 6f 72 69 67 69 6e 61 74 65 64 20 66 72 6f 6d 20 74 68 65 20 72 6f 75 74 | ,.which.originated.from.the.rout |
| 129540 | 65 72 20 69 74 73 65 6c 66 2e 20 54 68 61 74 20 73 6f 6c 75 74 69 6f 6e 20 66 6f 72 20 6d 75 6c | er.itself..That.solution.for.mul |
| 129560 | 74 69 70 6c 65 20 49 53 50 27 73 20 61 6e 64 20 56 79 4f 53 20 72 6f 75 74 65 72 20 77 69 6c 6c | tiple.ISP's.and.VyOS.router.will |
| 129580 | 20 72 65 73 70 6f 6e 64 20 66 72 6f 6d 20 74 68 65 20 73 61 6d 65 20 69 6e 74 65 72 66 61 63 65 | .respond.from.the.same.interface |
| 1295a0 | 20 74 68 61 74 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 69 76 65 64 2e 20 41 | .that.the.packet.was.received..A |
| 1295c0 | 6c 73 6f 2c 20 69 74 20 75 73 65 64 2c 20 69 66 20 77 65 20 77 61 6e 74 20 74 68 61 74 20 6f 6e | lso,.it.used,.if.we.want.that.on |
| 1295e0 | 65 20 56 50 4e 20 74 75 6e 6e 65 6c 20 74 6f 20 62 65 20 74 68 72 6f 75 67 68 20 6f 6e 65 20 70 | e.VPN.tunnel.to.be.through.one.p |
| 129600 | 72 6f 76 69 64 65 72 2c 20 61 6e 64 20 74 68 65 20 73 65 63 6f 6e 64 20 74 68 72 6f 75 67 68 20 | rovider,.and.the.second.through. |
| 129620 | 61 6e 6f 74 68 65 72 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 20 63 | another..The.following.example.c |
| 129640 | 72 65 61 74 65 73 20 61 20 57 41 50 2e 20 57 68 65 6e 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 6d | reates.a.WAP..When.configuring.m |
| 129660 | 75 6c 74 69 70 6c 65 20 57 41 50 20 69 6e 74 65 72 66 61 63 65 73 2c 20 79 6f 75 20 6d 75 73 74 | ultiple.WAP.interfaces,.you.must |
| 129680 | 20 73 70 65 63 69 66 79 20 75 6e 69 71 75 65 20 49 50 20 61 64 64 72 65 73 73 65 73 2c 20 63 68 | .specify.unique.IP.addresses,.ch |
| 1296a0 | 61 6e 6e 65 6c 73 2c 20 4e 65 74 77 6f 72 6b 20 49 44 73 20 63 6f 6d 6d 6f 6e 6c 79 20 72 65 66 | annels,.Network.IDs.commonly.ref |
| 1296c0 | 65 72 72 65 64 20 74 6f 20 61 73 20 3a 61 62 62 72 3a 60 53 53 49 44 20 28 53 65 72 76 69 63 65 | erred.to.as.:abbr:`SSID.(Service |
| 1296e0 | 20 53 65 74 20 49 64 65 6e 74 69 66 69 65 72 29 60 2c 20 61 6e 64 20 4d 41 43 20 61 64 64 72 65 | .Set.Identifier)`,.and.MAC.addre |
| 129700 | 73 73 65 73 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 20 69 73 20 62 | sses..The.following.example.is.b |
| 129720 | 61 73 65 64 20 6f 6e 20 61 20 53 69 65 72 72 61 20 57 69 72 65 6c 65 73 73 20 4d 43 37 37 31 30 | ased.on.a.Sierra.Wireless.MC7710 |
| 129740 | 20 6d 69 6e 69 50 43 49 65 20 63 61 72 64 20 28 6f 6e 6c 79 20 74 68 65 20 66 6f 72 6d 20 66 61 | .miniPCIe.card.(only.the.form.fa |
| 129760 | 63 74 6f 72 20 69 6e 20 72 65 61 6c 69 74 79 20 69 74 20 72 75 6e 73 20 55 42 53 29 20 61 6e 64 | ctor.in.reality.it.runs.UBS).and |
| 129780 | 20 44 65 75 74 73 63 68 65 20 54 65 6c 65 6b 6f 6d 20 61 73 20 49 53 50 2e 20 54 68 65 20 63 61 | .Deutsche.Telekom.as.ISP..The.ca |
| 1297a0 | 72 64 20 69 73 20 61 73 73 65 6d 62 6c 65 64 20 69 6e 74 6f 20 61 20 3a 72 65 66 3a 60 70 63 2d | rd.is.assembled.into.a.:ref:`pc- |
| 1297c0 | 65 6e 67 69 6e 65 73 2d 61 70 75 34 60 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 | engines-apu4`..The.following.exa |
| 1297e0 | 6d 70 6c 65 20 74 6f 70 6f 6c 6f 67 79 20 77 61 73 20 62 75 69 6c 74 20 75 73 69 6e 67 20 45 56 | mple.topology.was.built.using.EV |
| 129800 | 45 2d 4e 47 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 20 77 69 6c 6c | E-NG..The.following.example.will |
| 129820 | 20 73 68 6f 77 20 68 6f 77 20 56 79 4f 53 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 72 65 | .show.how.VyOS.can.be.used.to.re |
| 129840 | 64 69 72 65 63 74 20 77 65 62 20 74 72 61 66 66 69 63 20 74 6f 20 61 6e 20 65 78 74 65 72 6e 61 | direct.web.traffic.to.an.externa |
| 129860 | 6c 20 74 72 61 6e 73 70 61 72 65 6e 74 20 70 72 6f 78 79 3a 00 54 68 65 20 66 6f 6c 6c 6f 77 69 | l.transparent.proxy:.The.followi |
| 129880 | 6e 67 20 65 78 61 6d 70 6c 65 73 20 73 68 6f 77 20 68 6f 77 20 74 6f 20 63 6f 6e 66 69 67 75 72 | ng.examples.show.how.to.configur |
| 1298a0 | 65 20 4e 41 54 36 34 20 6f 6e 20 61 20 56 79 4f 53 20 72 6f 75 74 65 72 2e 20 54 68 65 20 31 39 | e.NAT64.on.a.VyOS.router..The.19 |
| 1298c0 | 32 2e 30 2e 32 2e 31 30 20 61 64 64 72 65 73 73 20 69 73 20 75 73 65 64 20 61 73 20 74 68 65 20 | 2.0.2.10.address.is.used.as.the. |
| 1298e0 | 49 50 76 34 20 61 64 64 72 65 73 73 20 66 6f 72 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e | IPv4.address.for.the.translation |
| 129900 | 20 70 6f 6f 6c 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 73 20 77 69 | .pool..The.following.examples.wi |
| 129920 | 6c 6c 20 73 68 6f 77 20 76 61 6c 69 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 66 6f 72 | ll.show.valid.configurations.for |
| 129940 | 20 57 69 46 69 2d 36 20 28 32 2e 34 47 48 7a 29 20 61 6e 64 20 57 69 46 69 2d 36 65 20 28 36 47 | .WiFi-6.(2.4GHz).and.WiFi-6e.(6G |
| 129960 | 48 7a 29 20 41 63 63 65 73 73 2d 50 6f 69 6e 74 73 20 77 69 74 68 20 74 68 65 20 66 6f 6c 6c 6f | Hz).Access-Points.with.the.follo |
| 129980 | 77 69 6e 67 20 63 68 61 72 61 63 74 65 72 69 73 74 69 63 73 3a 00 54 68 65 20 66 6f 6c 6c 6f 77 | wing.characteristics:.The.follow |
| 1299a0 | 69 6e 67 20 68 61 72 64 77 61 72 65 20 6d 6f 64 75 6c 65 73 20 68 61 76 65 20 62 65 65 6e 20 74 | ing.hardware.modules.have.been.t |
| 1299c0 | 65 73 74 65 64 20 73 75 63 63 65 73 73 66 75 6c 6c 79 20 69 6e 20 61 6e 20 3a 72 65 66 3a 60 70 | ested.successfully.in.an.:ref:`p |
| 1299e0 | 63 2d 65 6e 67 69 6e 65 73 2d 61 70 75 34 60 20 62 6f 61 72 64 3a 00 54 68 65 20 66 6f 6c 6c 6f | c-engines-apu4`.board:.The.follo |
| 129a00 | 77 69 6e 67 20 69 73 20 74 68 65 20 63 6f 6e 66 69 67 20 66 6f 72 20 74 68 65 20 69 50 68 6f 6e | wing.is.the.config.for.the.iPhon |
| 129a20 | 65 20 70 65 65 72 20 61 62 6f 76 65 2e 20 49 74 27 73 20 69 6d 70 6f 72 74 61 6e 74 20 74 6f 20 | e.peer.above..It's.important.to. |
| 129a40 | 6e 6f 74 65 20 74 68 61 74 20 74 68 65 20 60 60 41 6c 6c 6f 77 65 64 49 50 73 60 60 20 77 69 6c | note.that.the.``AllowedIPs``.wil |
| 129a60 | 64 63 61 72 64 20 73 65 74 74 69 6e 67 20 64 69 72 65 63 74 73 20 61 6c 6c 20 49 50 76 34 20 61 | dcard.setting.directs.all.IPv4.a |
| 129a80 | 6e 64 20 49 50 76 36 20 74 72 61 66 66 69 63 20 74 68 72 6f 75 67 68 20 74 68 65 20 63 6f 6e 6e | nd.IPv6.traffic.through.the.conn |
| 129aa0 | 65 63 74 69 6f 6e 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 | ection..The.following.protocols. |
| 129ac0 | 63 61 6e 20 62 65 20 75 73 65 64 3a 20 61 6e 79 2c 20 62 61 62 65 6c 2c 20 62 67 70 2c 20 63 6f | can.be.used:.any,.babel,.bgp,.co |
| 129ae0 | 6e 6e 65 63 74 65 64 2c 20 65 69 67 72 70 2c 20 69 73 69 73 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 | nnected,.eigrp,.isis,.kernel,.os |
| 129b00 | 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2c 20 74 61 62 6c 65 00 54 68 65 20 66 6f 6c 6c 6f | pf,.rip,.static,.table.The.follo |
| 129b20 | 77 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 63 61 6e 20 62 65 20 75 73 65 64 3a 20 61 6e 79 2c | wing.protocols.can.be.used:.any, |
| 129b40 | 20 62 61 62 65 6c 2c 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 69 73 69 73 2c 20 6b 65 | .babel,.bgp,.connected,.isis,.ke |
| 129b60 | 72 6e 65 6c 2c 20 6f 73 70 66 76 33 2c 20 72 69 70 6e 67 2c 20 73 74 61 74 69 63 2c 20 74 61 62 | rnel,.ospfv3,.ripng,.static,.tab |
| 129b80 | 6c 65 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 74 72 75 63 74 75 72 65 20 72 65 73 70 72 | le.The.following.structure.respr |
| 129ba0 | 65 73 65 6e 74 20 74 68 65 20 63 6c 69 20 73 74 72 75 63 74 75 72 65 2e 00 54 68 65 20 66 6f 72 | esent.the.cli.structure..The.for |
| 129bc0 | 6d 75 6c 61 20 66 6f 72 20 75 6e 66 72 61 67 6d 65 6e 74 65 64 20 54 43 50 20 61 6e 64 20 55 44 | mula.for.unfragmented.TCP.and.UD |
| 129be0 | 50 20 70 61 63 6b 65 74 73 20 69 73 00 54 68 65 20 66 6f 72 77 61 72 64 69 6e 67 20 64 65 6c 61 | P.packets.is.The.forwarding.dela |
| 129c00 | 79 20 74 69 6d 65 20 69 73 20 74 68 65 20 74 69 6d 65 20 73 70 65 6e 74 20 69 6e 20 65 61 63 68 | y.time.is.the.time.spent.in.each |
| 129c20 | 20 6f 66 20 74 68 65 20 6c 69 73 74 65 6e 69 6e 67 20 61 6e 64 20 6c 65 61 72 6e 69 6e 67 20 73 | .of.the.listening.and.learning.s |
| 129c40 | 74 61 74 65 73 20 62 65 66 6f 72 65 20 74 68 65 20 46 6f 72 77 61 72 64 69 6e 67 20 73 74 61 74 | tates.before.the.Forwarding.stat |
| 129c60 | 65 20 69 73 20 65 6e 74 65 72 65 64 2e 20 54 68 69 73 20 64 65 6c 61 79 20 69 73 20 73 6f 20 74 | e.is.entered..This.delay.is.so.t |
| 129c80 | 68 61 74 20 77 68 65 6e 20 61 20 6e 65 77 20 62 72 69 64 67 65 20 63 6f 6d 65 73 20 6f 6e 74 6f | hat.when.a.new.bridge.comes.onto |
| 129ca0 | 20 61 20 62 75 73 79 20 6e 65 74 77 6f 72 6b 20 69 74 20 6c 6f 6f 6b 73 20 61 74 20 73 6f 6d 65 | .a.busy.network.it.looks.at.some |
| 129cc0 | 20 74 72 61 66 66 69 63 20 62 65 66 6f 72 65 20 70 61 72 74 69 63 69 70 61 74 69 6e 67 2e 00 54 | .traffic.before.participating..T |
| 129ce0 | 68 65 20 67 65 6e 65 72 61 74 65 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 69 6c 6c 20 | he.generated.configuration.will. |
| 129d00 | 6c 6f 6f 6b 20 6c 69 6b 65 3a 00 54 68 65 20 67 65 6e 65 72 61 74 65 64 20 70 61 72 61 6d 65 74 | look.like:.The.generated.paramet |
| 129d20 | 65 72 73 20 61 72 65 20 74 68 65 6e 20 6f 75 74 70 75 74 20 74 6f 20 74 68 65 20 63 6f 6e 73 6f | ers.are.then.output.to.the.conso |
| 129d40 | 6c 65 2e 00 54 68 65 20 67 65 6e 65 72 69 63 20 6e 61 6d 65 20 6f 66 20 51 75 61 6c 69 74 79 20 | le..The.generic.name.of.Quality. |
| 129d60 | 6f 66 20 53 65 72 76 69 63 65 20 6f 72 20 54 72 61 66 66 69 63 20 43 6f 6e 74 72 6f 6c 20 69 6e | of.Service.or.Traffic.Control.in |
| 129d80 | 76 6f 6c 76 65 73 20 74 68 69 6e 67 73 20 6c 69 6b 65 20 73 68 61 70 69 6e 67 20 74 72 61 66 66 | volves.things.like.shaping.traff |
| 129da0 | 69 63 2c 20 73 63 68 65 64 75 6c 69 6e 67 20 6f 72 20 64 72 6f 70 70 69 6e 67 20 70 61 63 6b 65 | ic,.scheduling.or.dropping.packe |
| 129dc0 | 74 73 2c 20 77 68 69 63 68 20 61 72 65 20 74 68 65 20 6b 69 6e 64 20 6f 66 20 74 68 69 6e 67 73 | ts,.which.are.the.kind.of.things |
| 129de0 | 20 79 6f 75 20 6d 61 79 20 77 61 6e 74 20 74 6f 20 70 6c 61 79 20 77 69 74 68 20 77 68 65 6e 20 | .you.may.want.to.play.with.when. |
| 129e00 | 79 6f 75 20 68 61 76 65 2c 20 66 6f 72 20 69 6e 73 74 61 6e 63 65 2c 20 61 20 62 61 6e 64 77 69 | you.have,.for.instance,.a.bandwi |
| 129e20 | 64 74 68 20 62 6f 74 74 6c 65 6e 65 63 6b 20 69 6e 20 61 20 6c 69 6e 6b 20 61 6e 64 20 79 6f 75 | dth.bottleneck.in.a.link.and.you |
| 129e40 | 20 77 61 6e 74 20 74 6f 20 73 6f 6d 65 68 6f 77 20 70 72 69 6f 72 69 74 69 7a 65 20 73 6f 6d 65 | .want.to.somehow.prioritize.some |
| 129e60 | 20 74 79 70 65 20 6f 66 20 74 72 61 66 66 69 63 20 6f 76 65 72 20 61 6e 6f 74 68 65 72 2e 00 54 | .type.of.traffic.over.another..T |
| 129e80 | 68 65 20 68 61 73 68 20 74 79 70 65 20 75 73 65 64 20 77 68 65 6e 20 64 69 73 63 6f 76 65 72 69 | he.hash.type.used.when.discoveri |
| 129ea0 | 6e 67 20 66 69 6c 65 20 6f 6e 20 6d 61 73 74 65 72 20 73 65 72 76 65 72 20 28 64 65 66 61 75 6c | ng.file.on.master.server.(defaul |
| 129ec0 | 74 3a 20 73 68 61 32 35 36 29 00 54 68 65 20 68 65 61 6c 74 68 20 6f 66 20 69 6e 74 65 72 66 61 | t:.sha256).The.health.of.interfa |
| 129ee0 | 63 65 73 20 61 6e 64 20 70 61 74 68 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 74 68 65 20 6c 6f | ces.and.paths.assigned.to.the.lo |
| 129f00 | 61 64 20 62 61 6c 61 6e 63 65 72 20 69 73 20 70 65 72 69 6f 64 69 63 61 6c 6c 79 20 63 68 65 63 | ad.balancer.is.periodically.chec |
| 129f20 | 6b 65 64 20 62 79 20 73 65 6e 64 69 6e 67 20 49 43 4d 50 20 70 61 63 6b 65 74 73 20 28 70 69 6e | ked.by.sending.ICMP.packets.(pin |
| 129f40 | 67 29 20 74 6f 20 72 65 6d 6f 74 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 73 2c 20 61 20 54 54 4c | g).to.remote.destinations,.a.TTL |
| 129f60 | 20 74 65 73 74 20 6f 72 20 74 68 65 20 65 78 65 63 75 74 69 6f 6e 20 6f 66 20 61 20 75 73 65 72 | .test.or.the.execution.of.a.user |
| 129f80 | 20 64 65 66 69 6e 65 64 20 73 63 72 69 70 74 2e 20 49 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 | .defined.script..If.an.interface |
| 129fa0 | 20 66 61 69 6c 73 20 74 68 65 20 68 65 61 6c 74 68 20 63 68 65 63 6b 20 69 74 20 69 73 20 72 65 | .fails.the.health.check.it.is.re |
| 129fc0 | 6d 6f 76 65 64 20 66 72 6f 6d 20 74 68 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 72 27 73 20 70 | moved.from.the.load.balancer's.p |
| 129fe0 | 6f 6f 6c 20 6f 66 20 69 6e 74 65 72 66 61 63 65 73 2e 20 54 6f 20 65 6e 61 62 6c 65 20 68 65 61 | ool.of.interfaces..To.enable.hea |
| 12a000 | 6c 74 68 20 63 68 65 63 6b 69 6e 67 20 66 6f 72 20 61 6e 20 69 6e 74 65 72 66 61 63 65 3a 00 54 | lth.checking.for.an.interface:.T |
| 12a020 | 68 65 20 68 65 6c 6c 6f 2d 6d 75 6c 74 69 70 6c 69 65 72 20 73 70 65 63 69 66 69 65 73 20 68 6f | he.hello-multiplier.specifies.ho |
| 12a040 | 77 20 6d 61 6e 79 20 48 65 6c 6c 6f 73 20 74 6f 20 73 65 6e 64 20 70 65 72 20 73 65 63 6f 6e 64 | w.many.Hellos.to.send.per.second |
| 12a060 | 2c 20 66 72 6f 6d 20 31 20 28 65 76 65 72 79 20 73 65 63 6f 6e 64 29 20 74 6f 20 31 30 20 28 65 | ,.from.1.(every.second).to.10.(e |
| 12a080 | 76 65 72 79 20 31 30 30 6d 73 29 2e 20 54 68 75 73 20 6f 6e 65 20 63 61 6e 20 68 61 76 65 20 31 | very.100ms)..Thus.one.can.have.1 |
| 12a0a0 | 73 20 63 6f 6e 76 65 72 67 65 6e 63 65 20 74 69 6d 65 20 66 6f 72 20 4f 53 50 46 2e 20 49 66 20 | s.convergence.time.for.OSPF..If. |
| 12a0c0 | 74 68 69 73 20 66 6f 72 6d 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 74 68 65 6e 20 74 68 65 | this.form.is.specified,.then.the |
| 12a0e0 | 20 68 65 6c 6c 6f 2d 69 6e 74 65 72 76 61 6c 20 61 64 76 65 72 74 69 73 65 64 20 69 6e 20 48 65 | .hello-interval.advertised.in.He |
| 12a100 | 6c 6c 6f 20 70 61 63 6b 65 74 73 20 69 73 20 73 65 74 20 74 6f 20 30 20 61 6e 64 20 74 68 65 20 | llo.packets.is.set.to.0.and.the. |
| 12a120 | 68 65 6c 6c 6f 2d 69 6e 74 65 72 76 61 6c 20 6f 6e 20 72 65 63 65 69 76 65 64 20 48 65 6c 6c 6f | hello-interval.on.received.Hello |
| 12a140 | 20 70 61 63 6b 65 74 73 20 69 73 20 6e 6f 74 20 63 68 65 63 6b 65 64 2c 20 74 68 75 73 20 74 68 | .packets.is.not.checked,.thus.th |
| 12a160 | 65 20 68 65 6c 6c 6f 2d 6d 75 6c 74 69 70 6c 69 65 72 20 6e 65 65 64 20 4e 4f 54 20 62 65 20 74 | e.hello-multiplier.need.NOT.be.t |
| 12a180 | 68 65 20 73 61 6d 65 20 61 63 72 6f 73 73 20 6d 75 6c 74 69 70 6c 65 20 72 6f 75 74 65 72 73 20 | he.same.across.multiple.routers. |
| 12a1a0 | 6f 6e 20 61 20 63 6f 6d 6d 6f 6e 20 6c 69 6e 6b 2e 00 54 68 65 20 68 6f 73 74 6e 61 6d 65 20 63 | on.a.common.link..The.hostname.c |
| 12a1c0 | 61 6e 20 62 65 20 75 70 20 74 6f 20 36 33 20 63 68 61 72 61 63 74 65 72 73 2e 20 41 20 68 6f 73 | an.be.up.to.63.characters..A.hos |
| 12a1e0 | 74 6e 61 6d 65 20 6d 75 73 74 20 73 74 61 72 74 20 61 6e 64 20 65 6e 64 20 77 69 74 68 20 61 20 | tname.must.start.and.end.with.a. |
| 12a200 | 6c 65 74 74 65 72 20 6f 72 20 64 69 67 69 74 2c 20 61 6e 64 20 68 61 76 65 20 61 73 20 69 6e 74 | letter.or.digit,.and.have.as.int |
| 12a220 | 65 72 69 6f 72 20 63 68 61 72 61 63 74 65 72 73 20 6f 6e 6c 79 20 6c 65 74 74 65 72 73 2c 20 64 | erior.characters.only.letters,.d |
| 12a240 | 69 67 69 74 73 2c 20 6f 72 20 61 20 68 79 70 68 65 6e 2e 00 54 68 65 20 68 6f 73 74 6e 61 6d 65 | igits,.or.a.hyphen..The.hostname |
| 12a260 | 20 6f 72 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 6d 61 73 74 65 72 00 54 68 65 | .or.IP.address.of.the.master.The |
| 12a280 | 20 69 64 65 6e 74 69 66 69 65 72 20 69 73 20 74 68 65 20 64 65 76 69 63 65 27 73 20 44 55 49 44 | .identifier.is.the.device's.DUID |
| 12a2a0 | 3a 20 63 6f 6c 6f 6e 2d 73 65 70 61 72 61 74 65 64 20 68 65 78 20 6c 69 73 74 20 28 61 73 20 75 | :.colon-separated.hex.list.(as.u |
| 12a2c0 | 73 65 64 20 62 79 20 69 73 63 2d 64 68 63 70 20 6f 70 74 69 6f 6e 20 64 68 63 70 76 36 2e 63 6c | sed.by.isc-dhcp.option.dhcpv6.cl |
| 12a2e0 | 69 65 6e 74 2d 69 64 29 2e 20 49 66 20 74 68 65 20 64 65 76 69 63 65 20 61 6c 72 65 61 64 79 20 | ient-id)..If.the.device.already. |
| 12a300 | 68 61 73 20 61 20 64 79 6e 61 6d 69 63 20 6c 65 61 73 65 20 66 72 6f 6d 20 74 68 65 20 44 48 43 | has.a.dynamic.lease.from.the.DHC |
| 12a320 | 50 76 36 20 73 65 72 76 65 72 2c 20 69 74 73 20 44 55 49 44 20 63 61 6e 20 62 65 20 66 6f 75 6e | Pv6.server,.its.DUID.can.be.foun |
| 12a340 | 64 20 77 69 74 68 20 60 60 73 68 6f 77 20 73 65 72 76 69 63 65 20 64 68 63 70 76 36 20 73 65 72 | d.with.``show.service.dhcpv6.ser |
| 12a360 | 76 65 72 20 6c 65 61 73 65 73 60 60 2e 20 54 68 65 20 44 55 49 44 20 62 65 67 69 6e 73 20 61 74 | ver.leases``..The.DUID.begins.at |
| 12a380 | 20 74 68 65 20 35 74 68 20 6f 63 74 65 74 20 28 61 66 74 65 72 20 74 68 65 20 34 74 68 20 63 6f | .the.5th.octet.(after.the.4th.co |
| 12a3a0 | 6c 6f 6e 29 20 6f 66 20 49 41 49 44 5f 44 55 49 44 2e 00 54 68 65 20 69 6e 64 69 76 69 64 75 61 | lon).of.IAID_DUID..The.individua |
| 12a3c0 | 6c 20 73 70 6f 6b 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 6f 6e 6c 79 20 64 69 66 66 | l.spoke.configurations.only.diff |
| 12a3e0 | 65 72 20 69 6e 20 74 68 65 20 6c 6f 63 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 6f 6e 20 74 68 | er.in.the.local.IP.address.on.th |
| 12a400 | 65 20 60 60 74 75 6e 31 30 60 60 20 69 6e 74 65 72 66 61 63 65 2e 20 53 65 65 20 74 68 65 20 61 | e.``tun10``.interface..See.the.a |
| 12a420 | 62 6f 76 65 20 64 69 61 67 72 61 6d 20 66 6f 72 20 74 68 65 20 69 6e 64 69 76 69 64 75 61 6c 20 | bove.diagram.for.the.individual. |
| 12a440 | 49 50 20 61 64 64 72 65 73 73 65 73 2e 00 54 68 65 20 69 6e 6e 65 72 20 74 61 67 20 69 73 20 74 | IP.addresses..The.inner.tag.is.t |
| 12a460 | 68 65 20 74 61 67 20 77 68 69 63 68 20 69 73 20 63 6c 6f 73 65 73 74 20 74 6f 20 74 68 65 20 70 | he.tag.which.is.closest.to.the.p |
| 12a480 | 61 79 6c 6f 61 64 20 70 6f 72 74 69 6f 6e 20 6f 66 20 74 68 65 20 66 72 61 6d 65 2e 20 49 74 20 | ayload.portion.of.the.frame..It. |
| 12a4a0 | 69 73 20 6f 66 66 69 63 69 61 6c 6c 79 20 63 61 6c 6c 65 64 20 43 2d 54 41 47 20 28 63 75 73 74 | is.officially.called.C-TAG.(cust |
| 12a4c0 | 6f 6d 65 72 20 74 61 67 2c 20 77 69 74 68 20 65 74 68 65 72 74 79 70 65 20 30 78 38 31 30 30 29 | omer.tag,.with.ethertype.0x8100) |
| 12a4e0 | 2e 20 54 68 65 20 6f 75 74 65 72 20 74 61 67 20 69 73 20 74 68 65 20 6f 6e 65 20 63 6c 6f 73 65 | ..The.outer.tag.is.the.one.close |
| 12a500 | 72 2f 63 6c 6f 73 65 73 74 20 74 6f 20 74 68 65 20 45 74 68 65 72 6e 65 74 20 68 65 61 64 65 72 | r/closest.to.the.Ethernet.header |
| 12a520 | 2c 20 69 74 73 20 6e 61 6d 65 20 69 73 20 53 2d 54 41 47 20 28 73 65 72 76 69 63 65 20 74 61 67 | ,.its.name.is.S-TAG.(service.tag |
| 12a540 | 20 77 69 74 68 20 45 74 68 65 72 6e 65 74 20 54 79 70 65 20 3d 20 30 78 38 38 61 38 29 2e 00 54 | .with.Ethernet.Type.=.0x88a8)..T |
| 12a560 | 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 6d 6f 6e 69 74 6f | he.interface.that.will.be.monito |
| 12a580 | 72 65 64 20 62 79 20 74 68 65 20 53 75 72 69 63 61 74 61 20 73 65 72 76 69 63 65 2e 00 54 68 65 | red.by.the.Suricata.service..The |
| 12a5a0 | 20 69 6e 74 65 72 66 61 63 65 20 74 72 61 66 66 69 63 20 77 69 6c 6c 20 62 65 20 63 6f 6d 69 6e | .interface.traffic.will.be.comin |
| 12a5c0 | 67 20 69 6e 20 6f 6e 3b 00 54 68 65 20 69 6e 74 65 72 66 61 63 65 20 75 73 65 64 20 74 6f 20 72 | g.in.on;.The.interface.used.to.r |
| 12a5e0 | 65 63 65 69 76 65 20 61 6e 64 20 72 65 6c 61 79 20 69 6e 64 69 76 69 64 75 61 6c 20 62 72 6f 61 | eceive.and.relay.individual.broa |
| 12a600 | 64 63 61 73 74 20 70 61 63 6b 65 74 73 2e 20 49 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 72 65 | dcast.packets..If.you.want.to.re |
| 12a620 | 63 65 69 76 65 2f 72 65 6c 61 79 20 70 61 63 6b 65 74 73 20 6f 6e 20 62 6f 74 68 20 60 65 74 68 | ceive/relay.packets.on.both.`eth |
| 12a640 | 31 60 20 61 6e 64 20 60 65 74 68 32 60 20 62 6f 74 68 20 69 6e 74 65 72 66 61 63 65 73 20 6e 65 | 1`.and.`eth2`.both.interfaces.ne |
| 12a660 | 65 64 20 74 6f 20 62 65 20 61 64 64 65 64 2e 00 54 68 65 20 69 6e 74 65 72 6e 61 6c 20 49 50 20 | ed.to.be.added..The.internal.IP. |
| 12a680 | 61 64 64 72 65 73 73 65 73 20 77 65 20 77 61 6e 74 20 74 6f 20 74 72 61 6e 73 6c 61 74 65 00 54 | addresses.we.want.to.translate.T |
| 12a6a0 | 68 65 20 69 6e 76 65 72 73 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 68 61 73 20 74 6f 20 | he.inverse.configuration.has.to. |
| 12a6c0 | 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 72 65 6d 6f 74 65 20 73 69 64 65 2e 00 54 | be.applied.to.the.remote.side..T |
| 12a6e0 | 68 65 20 6c 61 72 67 65 73 74 20 4d 54 55 20 73 69 7a 65 20 79 6f 75 20 63 61 6e 20 75 73 65 20 | he.largest.MTU.size.you.can.use. |
| 12a700 | 77 69 74 68 20 44 53 4c 20 69 73 20 31 34 39 32 20 64 75 65 20 74 6f 20 50 50 50 6f 45 20 6f 76 | with.DSL.is.1492.due.to.PPPoE.ov |
| 12a720 | 65 72 68 65 61 64 2e 20 49 66 20 79 6f 75 20 61 72 65 20 73 77 69 74 63 68 69 6e 67 20 66 72 6f | erhead..If.you.are.switching.fro |
| 12a740 | 6d 20 61 20 44 48 43 50 20 62 61 73 65 64 20 49 53 50 20 6c 69 6b 65 20 63 61 62 6c 65 20 74 68 | m.a.DHCP.based.ISP.like.cable.th |
| 12a760 | 65 6e 20 62 65 20 61 77 61 72 65 20 74 68 61 74 20 74 68 69 6e 67 73 20 6c 69 6b 65 20 56 50 4e | en.be.aware.that.things.like.VPN |
| 12a780 | 20 6c 69 6e 6b 73 20 6d 61 79 20 6e 65 65 64 20 74 6f 20 68 61 76 65 20 74 68 65 69 72 20 4d 54 | .links.may.need.to.have.their.MT |
| 12a7a0 | 55 20 73 69 7a 65 73 20 61 64 6a 75 73 74 65 64 20 74 6f 20 77 6f 72 6b 20 77 69 74 68 69 6e 20 | U.sizes.adjusted.to.work.within. |
| 12a7c0 | 74 68 69 73 20 6c 69 6d 69 74 2e 00 54 68 65 20 6c 61 73 74 20 73 74 65 70 20 69 73 20 74 6f 20 | this.limit..The.last.step.is.to. |
| 12a7e0 | 64 65 66 69 6e 65 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 72 6f 75 74 65 20 66 6f 72 20 31 39 | define.an.interface.route.for.19 |
| 12a800 | 32 2e 31 36 38 2e 32 2e 30 2f 32 34 20 74 6f 20 67 65 74 20 74 68 72 6f 75 67 68 20 74 68 65 20 | 2.168.2.0/24.to.get.through.the. |
| 12a820 | 57 69 72 65 47 75 61 72 64 20 69 6e 74 65 72 66 61 63 65 20 60 77 67 30 31 60 2e 20 4d 75 6c 74 | WireGuard.interface.`wg01`..Mult |
| 12a840 | 69 70 6c 65 20 49 50 73 20 6f 72 20 6e 65 74 77 6f 72 6b 73 20 63 61 6e 20 62 65 20 64 65 66 69 | iple.IPs.or.networks.can.be.defi |
| 12a860 | 6e 65 64 20 61 6e 64 20 72 6f 75 74 65 64 2e 20 54 68 65 20 6c 61 73 74 20 63 68 65 63 6b 20 69 | ned.and.routed..The.last.check.i |
| 12a880 | 73 20 61 6c 6c 6f 77 65 64 2d 69 70 73 20 77 68 69 63 68 20 65 69 74 68 65 72 20 70 72 65 76 65 | s.allowed-ips.which.either.preve |
| 12a8a0 | 6e 74 73 20 6f 72 20 61 6c 6c 6f 77 73 20 74 68 65 20 74 72 61 66 66 69 63 2e 00 54 68 65 20 6c | nts.or.allows.the.traffic..The.l |
| 12a8c0 | 65 67 61 63 79 20 61 6e 64 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 20 63 6f | egacy.and.zone-based.firewall.co |
| 12a8e0 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 70 74 69 6f 6e 73 20 69 73 20 6e 6f 74 20 6c 6f 6e 67 65 | nfiguration.options.is.not.longe |
| 12a900 | 72 20 73 75 70 70 6f 72 74 65 64 2e 20 54 68 65 79 20 61 72 65 20 68 65 72 65 20 66 6f 72 20 72 | r.supported..They.are.here.for.r |
| 12a920 | 65 66 65 72 65 6e 63 65 20 70 75 72 70 6f 73 65 73 20 6f 6e 6c 79 2e 00 54 68 65 20 6c 69 6d 69 | eference.purposes.only..The.limi |
| 12a940 | 74 65 72 20 70 65 72 66 6f 72 6d 73 20 62 61 73 69 63 20 69 6e 67 72 65 73 73 20 70 6f 6c 69 63 | ter.performs.basic.ingress.polic |
| 12a960 | 69 6e 67 20 6f 66 20 74 72 61 66 66 69 63 20 66 6c 6f 77 73 2e 20 4d 75 6c 74 69 70 6c 65 20 63 | ing.of.traffic.flows..Multiple.c |
| 12a980 | 6c 61 73 73 65 73 20 6f 66 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 | lasses.of.traffic.can.be.defined |
| 12a9a0 | 20 61 6e 64 20 74 72 61 66 66 69 63 20 6c 69 6d 69 74 73 20 63 61 6e 20 62 65 20 61 70 70 6c 69 | .and.traffic.limits.can.be.appli |
| 12a9c0 | 65 64 20 74 6f 20 65 61 63 68 20 63 6c 61 73 73 2e 20 41 6c 74 68 6f 75 67 68 20 74 68 65 20 70 | ed.to.each.class..Although.the.p |
| 12a9e0 | 6f 6c 69 63 65 72 20 75 73 65 73 20 61 20 74 6f 6b 65 6e 20 62 75 63 6b 65 74 20 6d 65 63 68 61 | olicer.uses.a.token.bucket.mecha |
| 12aa00 | 6e 69 73 6d 20 69 6e 74 65 72 6e 61 6c 6c 79 2c 20 69 74 20 64 6f 65 73 20 6e 6f 74 20 68 61 76 | nism.internally,.it.does.not.hav |
| 12aa20 | 65 20 74 68 65 20 63 61 70 61 62 69 6c 69 74 79 20 74 6f 20 64 65 6c 61 79 20 61 20 70 61 63 6b | e.the.capability.to.delay.a.pack |
| 12aa40 | 65 74 20 61 73 20 61 20 73 68 61 70 69 6e 67 20 6d 65 63 68 61 6e 69 73 6d 20 64 6f 65 73 2e 20 | et.as.a.shaping.mechanism.does.. |
| 12aa60 | 54 72 61 66 66 69 63 20 65 78 63 65 65 64 69 6e 67 20 74 68 65 20 64 65 66 69 6e 65 64 20 62 61 | Traffic.exceeding.the.defined.ba |
| 12aa80 | 6e 64 77 69 64 74 68 20 6c 69 6d 69 74 73 20 69 73 20 64 69 72 65 63 74 6c 79 20 64 72 6f 70 70 | ndwidth.limits.is.directly.dropp |
| 12aaa0 | 65 64 2e 20 41 20 6d 61 78 69 6d 75 6d 20 61 6c 6c 6f 77 65 64 20 62 75 72 73 74 20 63 61 6e 20 | ed..A.maximum.allowed.burst.can. |
| 12aac0 | 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 6f 2e 00 54 68 65 20 6c 69 6e 6b 20 62 61 6e 64 | be.configured.too..The.link.band |
| 12aae0 | 77 69 64 74 68 20 65 78 74 65 6e 64 65 64 20 63 6f 6d 6d 75 6e 69 74 79 20 69 73 20 65 6e 63 6f | width.extended.community.is.enco |
| 12ab00 | 64 65 64 20 61 73 20 6e 6f 6e 2d 74 72 61 6e 73 69 74 69 76 65 00 54 68 65 20 6c 6f 63 61 6c 20 | ded.as.non-transitive.The.local. |
| 12ab20 | 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 62 69 6e 64 20 74 | IPv4.or.IPv6.addresses.to.bind.t |
| 12ab40 | 68 65 20 44 4e 53 20 66 6f 72 77 61 72 64 65 72 20 74 6f 2e 20 54 68 65 20 66 6f 72 77 61 72 64 | he.DNS.forwarder.to..The.forward |
| 12ab60 | 65 72 20 77 69 6c 6c 20 6c 69 73 74 65 6e 20 6f 6e 20 74 68 69 73 20 61 64 64 72 65 73 73 20 66 | er.will.listen.on.this.address.f |
| 12ab80 | 6f 72 20 69 6e 63 6f 6d 69 6e 67 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 54 68 65 20 6c 6f 63 | or.incoming.connections..The.loc |
| 12aba0 | 61 6c 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 75 73 65 | al.IPv4.or.IPv6.addresses.to.use |
| 12abc0 | 20 61 73 20 61 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 66 6f 72 20 73 65 6e 64 69 6e 67 | .as.a.source.address.for.sending |
| 12abe0 | 20 71 75 65 72 69 65 73 2e 20 54 68 65 20 66 6f 72 77 61 72 64 65 72 20 77 69 6c 6c 20 73 65 6e | .queries..The.forwarder.will.sen |
| 12ac00 | 64 20 66 6f 72 77 61 72 64 65 64 20 6f 75 74 62 6f 75 6e 64 20 44 4e 53 20 72 65 71 75 65 73 74 | d.forwarded.outbound.DNS.request |
| 12ac20 | 73 20 66 72 6f 6d 20 74 68 69 73 20 61 64 64 72 65 73 73 2e 00 54 68 65 20 6c 6f 63 61 6c 20 73 | s.from.this.address..The.local.s |
| 12ac40 | 69 74 65 20 77 69 6c 6c 20 68 61 76 65 20 61 20 73 75 62 6e 65 74 20 6f 66 20 31 30 2e 30 2e 30 | ite.will.have.a.subnet.of.10.0.0 |
| 12ac60 | 2e 30 2f 31 36 2e 00 54 68 65 20 6c 6f 6f 70 62 61 63 6b 20 6e 65 74 77 6f 72 6b 69 6e 67 20 69 | .0/16..The.loopback.networking.i |
| 12ac80 | 6e 74 65 72 66 61 63 65 20 69 73 20 61 20 76 69 72 74 75 61 6c 20 6e 65 74 77 6f 72 6b 20 64 65 | nterface.is.a.virtual.network.de |
| 12aca0 | 76 69 63 65 20 69 6d 70 6c 65 6d 65 6e 74 65 64 20 65 6e 74 69 72 65 6c 79 20 69 6e 20 73 6f 66 | vice.implemented.entirely.in.sof |
| 12acc0 | 74 77 61 72 65 2e 20 41 6c 6c 20 74 72 61 66 66 69 63 20 73 65 6e 74 20 74 6f 20 69 74 20 22 6c | tware..All.traffic.sent.to.it."l |
| 12ace0 | 6f 6f 70 73 20 62 61 63 6b 22 20 61 6e 64 20 6a 75 73 74 20 74 61 72 67 65 74 73 20 73 65 72 76 | oops.back".and.just.targets.serv |
| 12ad00 | 69 63 65 73 20 6f 6e 20 79 6f 75 72 20 6c 6f 63 61 6c 20 6d 61 63 68 69 6e 65 2e 00 54 68 65 20 | ices.on.your.local.machine..The. |
| 12ad20 | 6d 61 69 6e 20 62 65 6e 65 66 69 74 20 74 6f 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 79 | main.benefit.to.configuration.sy |
| 12ad40 | 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 69 73 20 74 68 61 74 20 69 74 20 65 6c 69 6d 69 6e 61 | nchronization.is.that.it.elimina |
| 12ad60 | 74 65 73 20 68 61 76 69 6e 67 20 74 6f 20 6d 61 6e 75 61 6c 6c 79 20 72 65 70 6c 69 63 61 74 65 | tes.having.to.manually.replicate |
| 12ad80 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 68 61 6e 67 65 73 20 6d 61 64 65 20 6f 6e 20 74 | .configuration.changes.made.on.t |
| 12ada0 | 68 65 20 70 72 69 6d 61 72 79 20 72 6f 75 74 65 72 20 74 6f 20 74 68 65 20 73 65 63 6f 6e 64 61 | he.primary.router.to.the.seconda |
| 12adc0 | 72 79 20 28 72 65 70 6c 69 63 61 29 20 72 6f 75 74 65 72 2e 00 54 68 65 20 6d 61 69 6e 20 70 6f | ry.(replica).router..The.main.po |
| 12ade0 | 69 6e 74 73 20 72 65 67 61 72 64 69 6e 67 20 74 68 69 73 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 | ints.regarding.this.packet.flow. |
| 12ae00 | 61 6e 64 20 74 65 72 6d 69 6e 6f 6c 6f 67 79 20 75 73 65 64 20 69 6e 20 56 79 4f 53 20 66 69 72 | and.terminology.used.in.VyOS.fir |
| 12ae20 | 65 77 61 6c 6c 20 61 72 65 20 63 6f 76 65 72 65 64 20 62 65 6c 6f 77 3a 00 54 68 65 20 6d 61 69 | ewall.are.covered.below:.The.mai |
| 12ae40 | 6e 20 73 74 72 75 63 74 75 72 65 20 56 79 4f 53 20 66 69 72 65 77 61 6c 6c 20 63 6c 69 20 69 73 | n.structure.VyOS.firewall.cli.is |
| 12ae60 | 20 73 68 6f 77 6e 20 6e 65 78 74 3a 00 54 68 65 20 6d 61 69 6e 20 73 74 72 75 63 74 75 72 65 20 | .shown.next:.The.main.structure. |
| 12ae80 | 6f 66 20 74 68 65 20 56 79 4f 53 20 66 69 72 65 77 61 6c 6c 20 43 4c 49 20 69 73 20 73 68 6f 77 | of.the.VyOS.firewall.CLI.is.show |
| 12aea0 | 6e 20 6e 65 78 74 3a 00 54 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 74 61 | n.next:.The.maximum.number.of.ta |
| 12aec0 | 72 67 65 74 73 20 74 68 61 74 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 69 73 20 31 | rgets.that.can.be.specified.is.1 |
| 12aee0 | 36 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 6e 6f 20 49 50 20 61 64 | 6..The.default.value.is.no.IP.ad |
| 12af00 | 64 72 65 73 73 2e 00 54 68 65 20 6d 65 61 6e 69 6e 67 20 6f 66 20 74 68 65 20 43 6c 61 73 73 20 | dress..The.meaning.of.the.Class. |
| 12af20 | 49 44 20 69 73 20 6e 6f 74 20 74 68 65 20 73 61 6d 65 20 66 6f 72 20 65 76 65 72 79 20 74 79 70 | ID.is.not.the.same.for.every.typ |
| 12af40 | 65 20 6f 66 20 70 6f 6c 69 63 79 2e 20 4e 6f 72 6d 61 6c 6c 79 20 70 6f 6c 69 63 69 65 73 20 6a | e.of.policy..Normally.policies.j |
| 12af60 | 75 73 74 20 6e 65 65 64 20 61 20 6d 65 61 6e 69 6e 67 6c 65 73 73 20 6e 75 6d 62 65 72 20 74 6f | ust.need.a.meaningless.number.to |
| 12af80 | 20 69 64 65 6e 74 69 66 79 20 61 20 63 6c 61 73 73 20 28 43 6c 61 73 73 20 49 44 29 2c 20 62 75 | .identify.a.class.(Class.ID),.bu |
| 12afa0 | 74 20 74 68 61 74 20 64 6f 65 73 20 6e 6f 74 20 61 70 70 6c 79 20 74 6f 20 65 76 65 72 79 20 70 | t.that.does.not.apply.to.every.p |
| 12afc0 | 6f 6c 69 63 79 2e 20 54 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 61 20 63 6c 61 73 73 20 69 6e 20 | olicy..The.number.of.a.class.in. |
| 12afe0 | 61 20 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 20 69 74 20 64 6f 65 73 20 6e 6f 74 20 6f 6e 6c | a.Priority.Queue.it.does.not.onl |
| 12b000 | 79 20 69 64 65 6e 74 69 66 79 20 69 74 2c 20 69 74 20 61 6c 73 6f 20 64 65 66 69 6e 65 73 20 69 | y.identify.it,.it.also.defines.i |
| 12b020 | 74 73 20 70 72 69 6f 72 69 74 79 2e 00 54 68 65 20 6d 65 6d 62 65 72 20 69 6e 74 65 72 66 61 63 | ts.priority..The.member.interfac |
| 12b040 | 65 20 60 65 74 68 31 60 20 69 73 20 61 20 74 72 75 6e 6b 20 74 68 61 74 20 61 6c 6c 6f 77 73 20 | e.`eth1`.is.a.trunk.that.allows. |
| 12b060 | 56 4c 41 4e 20 31 30 20 74 6f 20 70 61 73 73 00 54 68 65 20 6d 65 74 72 69 63 20 72 61 6e 67 65 | VLAN.10.to.pass.The.metric.range |
| 12b080 | 20 69 73 20 31 20 74 6f 20 31 36 37 37 37 32 31 35 20 28 4d 61 78 20 76 61 6c 75 65 20 64 65 70 | .is.1.to.16777215.(Max.value.dep |
| 12b0a0 | 65 6e 64 20 69 66 20 6d 65 74 72 69 63 20 73 75 70 70 6f 72 74 20 6e 61 72 72 6f 77 20 6f 72 20 | end.if.metric.support.narrow.or. |
| 12b0c0 | 77 69 64 65 20 76 61 6c 75 65 29 2e 00 54 68 65 20 6d 69 6e 69 6d 61 6c 20 65 63 68 6f 20 72 65 | wide.value)..The.minimal.echo.re |
| 12b0e0 | 63 65 69 76 65 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 20 69 6e 74 65 72 76 61 6c 20 74 68 61 74 | ceive.transmission.interval.that |
| 12b100 | 20 74 68 69 73 20 73 79 73 74 65 6d 20 69 73 20 63 61 70 61 62 6c 65 20 6f 66 20 68 61 6e 64 6c | .this.system.is.capable.of.handl |
| 12b120 | 69 6e 67 00 54 68 65 20 6d 6f 73 74 20 76 69 73 69 62 6c 65 20 61 70 70 6c 69 63 61 74 69 6f 6e | ing.The.most.visible.application |
| 12b140 | 20 6f 66 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 20 69 73 20 66 6f 72 20 61 63 63 65 73 73 20 74 | .of.the.protocol.is.for.access.t |
| 12b160 | 6f 20 73 68 65 6c 6c 20 61 63 63 6f 75 6e 74 73 20 6f 6e 20 55 6e 69 78 2d 6c 69 6b 65 20 6f 70 | o.shell.accounts.on.Unix-like.op |
| 12b180 | 65 72 61 74 69 6e 67 20 73 79 73 74 65 6d 73 2c 20 62 75 74 20 69 74 20 73 65 65 73 20 73 6f 6d | erating.systems,.but.it.sees.som |
| 12b1a0 | 65 20 6c 69 6d 69 74 65 64 20 75 73 65 20 6f 6e 20 57 69 6e 64 6f 77 73 20 61 73 20 77 65 6c 6c | e.limited.use.on.Windows.as.well |
| 12b1c0 | 2e 20 49 6e 20 32 30 31 35 2c 20 4d 69 63 72 6f 73 6f 66 74 20 61 6e 6e 6f 75 6e 63 65 64 20 74 | ..In.2015,.Microsoft.announced.t |
| 12b1e0 | 68 61 74 20 74 68 65 79 20 77 6f 75 6c 64 20 69 6e 63 6c 75 64 65 20 6e 61 74 69 76 65 20 73 75 | hat.they.would.include.native.su |
| 12b200 | 70 70 6f 72 74 20 66 6f 72 20 53 53 48 20 69 6e 20 61 20 66 75 74 75 72 65 20 72 65 6c 65 61 73 | pport.for.SSH.in.a.future.releas |
| 12b220 | 65 2e 00 54 68 65 20 6d 75 6c 74 69 63 61 73 74 2d 67 72 6f 75 70 20 75 73 65 64 20 62 79 20 61 | e..The.multicast-group.used.by.a |
| 12b240 | 6c 6c 20 6c 65 61 76 65 73 20 66 6f 72 20 74 68 69 73 20 76 6c 61 6e 20 65 78 74 65 6e 73 69 6f | ll.leaves.for.this.vlan.extensio |
| 12b260 | 6e 2e 20 48 61 73 20 74 6f 20 62 65 20 74 68 65 20 73 61 6d 65 20 6f 6e 20 61 6c 6c 20 6c 65 61 | n..Has.to.be.the.same.on.all.lea |
| 12b280 | 76 65 73 20 74 68 61 74 20 68 61 73 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 65 | ves.that.has.this.interface..The |
| 12b2a0 | 20 6e 61 6d 65 20 6f 66 20 74 68 65 20 73 65 72 76 69 63 65 20 63 61 6e 20 62 65 20 64 69 66 66 | .name.of.the.service.can.be.diff |
| 12b2c0 | 65 72 65 6e 74 2c 20 69 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 20 69 74 20 69 73 20 6f 6e 6c | erent,.in.this.example.it.is.onl |
| 12b2e0 | 79 20 66 6f 72 20 63 6f 6e 76 65 6e 69 65 6e 63 65 2e 00 54 68 65 20 6e 65 74 6d 61 73 6b 20 6f | y.for.convenience..The.netmask.o |
| 12b300 | 72 20 64 6f 6d 61 69 6e 20 74 68 61 74 20 45 44 4e 53 20 43 6c 69 65 6e 74 20 53 75 62 6e 65 74 | r.domain.that.EDNS.Client.Subnet |
| 12b320 | 20 73 68 6f 75 6c 64 20 62 65 20 65 6e 61 62 6c 65 64 20 66 6f 72 20 69 6e 20 6f 75 74 67 6f 69 | .should.be.enabled.for.in.outgoi |
| 12b340 | 6e 67 20 71 75 65 72 69 65 73 2e 00 54 68 65 20 6e 65 74 77 6f 72 6b 20 74 6f 70 6f 6c 6f 67 79 | ng.queries..The.network.topology |
| 12b360 | 20 69 73 20 64 65 63 6c 61 72 65 64 20 62 79 20 73 68 61 72 65 64 2d 6e 65 74 77 6f 72 6b 2d 6e | .is.declared.by.shared-network-n |
| 12b380 | 61 6d 65 20 61 6e 64 20 74 68 65 20 73 75 62 6e 65 74 20 64 65 63 6c 61 72 61 74 69 6f 6e 73 2e | ame.and.the.subnet.declarations. |
| 12b3a0 | 20 54 68 65 20 44 48 43 50 20 73 65 72 76 69 63 65 20 63 61 6e 20 73 65 72 76 65 20 6d 75 6c 74 | .The.DHCP.service.can.serve.mult |
| 12b3c0 | 69 70 6c 65 20 73 68 61 72 65 64 20 6e 65 74 77 6f 72 6b 73 2c 20 77 69 74 68 20 65 61 63 68 20 | iple.shared.networks,.with.each. |
| 12b3e0 | 73 68 61 72 65 64 20 6e 65 74 77 6f 72 6b 20 68 61 76 69 6e 67 20 31 20 6f 72 20 6d 6f 72 65 20 | shared.network.having.1.or.more. |
| 12b400 | 73 75 62 6e 65 74 73 2e 20 45 61 63 68 20 73 75 62 6e 65 74 20 6d 75 73 74 20 62 65 20 70 72 65 | subnets..Each.subnet.must.be.pre |
| 12b420 | 73 65 6e 74 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e 20 41 20 72 61 6e 67 65 20 63 61 | sent.on.an.interface..A.range.ca |
| 12b440 | 6e 20 62 65 20 64 65 63 6c 61 72 65 64 20 69 6e 73 69 64 65 20 61 20 73 75 62 6e 65 74 20 74 6f | n.be.declared.inside.a.subnet.to |
| 12b460 | 20 64 65 66 69 6e 65 20 61 20 70 6f 6f 6c 20 6f 66 20 64 79 6e 61 6d 69 63 20 61 64 64 72 65 73 | .define.a.pool.of.dynamic.addres |
| 12b480 | 73 65 73 2e 20 4d 75 6c 74 69 70 6c 65 20 72 61 6e 67 65 73 20 63 61 6e 20 62 65 20 64 65 66 69 | ses..Multiple.ranges.can.be.defi |
| 12b4a0 | 6e 65 64 20 61 6e 64 20 63 61 6e 20 63 6f 6e 74 61 69 6e 20 68 6f 6c 65 73 2e 20 53 74 61 74 69 | ned.and.can.contain.holes..Stati |
| 12b4c0 | 63 20 6d 61 70 70 69 6e 67 73 20 63 61 6e 20 62 65 20 73 65 74 20 74 6f 20 61 73 73 69 67 6e 20 | c.mappings.can.be.set.to.assign. |
| 12b4e0 | 22 73 74 61 74 69 63 22 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 63 6c 69 65 6e 74 73 20 62 61 | "static".addresses.to.clients.ba |
| 12b500 | 73 65 64 20 6f 6e 20 74 68 65 69 72 20 4d 41 43 20 61 64 64 72 65 73 73 2e 00 54 68 65 20 6e 65 | sed.on.their.MAC.address..The.ne |
| 12b520 | 78 74 20 65 78 61 6d 70 6c 65 20 69 73 20 61 20 73 69 6d 70 6c 65 20 63 6f 6e 66 69 67 75 72 61 | xt.example.is.a.simple.configura |
| 12b540 | 74 69 6f 6e 20 6f 66 20 63 6f 6e 6e 74 72 61 63 6b 2d 73 79 6e 63 2e 00 54 68 65 20 6e 65 78 74 | tion.of.conntrack-sync..The.next |
| 12b560 | 20 73 74 65 70 20 69 73 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 79 6f 75 72 20 6c 6f 63 61 6c | .step.is.to.configure.your.local |
| 12b580 | 20 73 69 64 65 20 61 73 20 77 65 6c 6c 20 61 73 20 74 68 65 20 70 6f 6c 69 63 79 20 62 61 73 65 | .side.as.well.as.the.policy.base |
| 12b5a0 | 64 20 74 72 75 73 74 65 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 65 73 2e | d.trusted.destination.addresses. |
| 12b5c0 | 20 49 66 20 79 6f 75 20 6f 6e 6c 79 20 69 6e 69 74 69 61 74 65 20 61 20 63 6f 6e 6e 65 63 74 69 | .If.you.only.initiate.a.connecti |
| 12b5e0 | 6f 6e 2c 20 74 68 65 20 6c 69 73 74 65 6e 20 70 6f 72 74 20 61 6e 64 20 61 64 64 72 65 73 73 2f | on,.the.listen.port.and.address/ |
| 12b600 | 70 6f 72 74 20 69 73 20 6f 70 74 69 6f 6e 61 6c 3b 20 68 6f 77 65 76 65 72 2c 20 69 66 20 79 6f | port.is.optional;.however,.if.yo |
| 12b620 | 75 20 61 63 74 20 6c 69 6b 65 20 61 20 73 65 72 76 65 72 20 61 6e 64 20 65 6e 64 70 6f 69 6e 74 | u.act.like.a.server.and.endpoint |
| 12b640 | 73 20 69 6e 69 74 69 61 74 65 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 79 6f | s.initiate.the.connections.to.yo |
| 12b660 | 75 72 20 73 79 73 74 65 6d 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 64 65 66 69 6e 65 20 61 20 | ur.system,.you.need.to.define.a. |
| 12b680 | 70 6f 72 74 20 79 6f 75 72 20 63 6c 69 65 6e 74 73 20 63 61 6e 20 63 6f 6e 6e 65 63 74 20 74 6f | port.your.clients.can.connect.to |
| 12b6a0 | 2c 20 6f 74 68 65 72 77 69 73 65 20 74 68 65 20 70 6f 72 74 20 69 73 20 72 61 6e 64 6f 6d 6c 79 | ,.otherwise.the.port.is.randomly |
| 12b6c0 | 20 63 68 6f 73 65 6e 20 61 6e 64 20 6d 61 79 20 6d 61 6b 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 | .chosen.and.may.make.connection. |
| 12b6e0 | 64 69 66 66 69 63 75 6c 74 20 77 69 74 68 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 2c 20 73 | difficult.with.firewall.rules,.s |
| 12b700 | 69 6e 63 65 20 74 68 65 20 70 6f 72 74 20 6d 61 79 20 62 65 20 64 69 66 66 65 72 65 6e 74 20 65 | ince.the.port.may.be.different.e |
| 12b720 | 61 63 68 20 74 69 6d 65 20 74 68 65 20 73 79 73 74 65 6d 20 69 73 20 72 65 62 6f 6f 74 65 64 2e | ach.time.the.system.is.rebooted. |
| 12b740 | 00 54 68 65 20 6e 6f 74 65 64 20 70 75 62 6c 69 63 20 6b 65 79 73 20 73 68 6f 75 6c 64 20 62 65 | .The.noted.public.keys.should.be |
| 12b760 | 20 65 6e 74 65 72 65 64 20 6f 6e 20 74 68 65 20 6f 70 70 6f 73 69 74 65 20 72 6f 75 74 65 72 73 | .entered.on.the.opposite.routers |
| 12b780 | 2e 00 54 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 20 74 6f 20 | ..The.number.of.milliseconds.to. |
| 12b7a0 | 77 61 69 74 20 66 6f 72 20 61 20 72 65 6d 6f 74 65 20 61 75 74 68 6f 72 69 74 61 74 69 76 65 20 | wait.for.a.remote.authoritative. |
| 12b7c0 | 73 65 72 76 65 72 20 74 6f 20 72 65 73 70 6f 6e 64 20 62 65 66 6f 72 65 20 74 69 6d 69 6e 67 20 | server.to.respond.before.timing. |
| 12b7e0 | 6f 75 74 20 61 6e 64 20 72 65 73 70 6f 6e 64 69 6e 67 20 77 69 74 68 20 53 45 52 56 46 41 49 4c | out.and.responding.with.SERVFAIL |
| 12b800 | 2e 00 54 68 65 20 6e 75 6d 62 65 72 20 70 61 72 61 6d 65 74 65 72 20 28 31 2d 31 30 29 20 63 6f | ..The.number.parameter.(1-10).co |
| 12b820 | 6e 66 69 67 75 72 65 73 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 20 61 63 63 65 70 74 65 64 20 | nfigures.the.amount.of.accepted. |
| 12b840 | 6f 63 63 75 72 65 6e 63 65 73 20 6f 66 20 74 68 65 20 73 79 73 74 65 6d 20 41 53 20 6e 75 6d 62 | occurences.of.the.system.AS.numb |
| 12b860 | 65 72 20 69 6e 20 41 53 20 70 61 74 68 2e 00 54 68 65 20 6f 66 66 69 63 69 61 6c 20 70 6f 72 74 | er.in.AS.path..The.official.port |
| 12b880 | 20 66 6f 72 20 4f 70 65 6e 56 50 4e 20 69 73 20 31 31 39 34 2c 20 77 68 69 63 68 20 77 65 20 72 | .for.OpenVPN.is.1194,.which.we.r |
| 12b8a0 | 65 73 65 72 76 65 20 66 6f 72 20 63 6c 69 65 6e 74 20 56 50 4e 3b 20 77 65 20 77 69 6c 6c 20 75 | eserve.for.client.VPN;.we.will.u |
| 12b8c0 | 73 65 20 31 31 39 35 20 66 6f 72 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 56 50 4e 2e 00 54 68 | se.1195.for.site-to-site.VPN..Th |
| 12b8e0 | 65 20 6f 6e 6c 79 20 73 74 61 67 65 73 20 56 79 4f 53 20 77 69 6c 6c 20 70 72 6f 63 65 73 73 20 | e.only.stages.VyOS.will.process. |
| 12b900 | 61 73 20 70 61 72 74 20 6f 66 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 | as.part.of.the.firewall.configur |
| 12b920 | 61 74 69 6f 6e 20 69 73 20 74 68 65 20 60 66 6f 72 77 61 72 64 60 20 28 46 34 20 73 74 61 67 65 | ation.is.the.`forward`.(F4.stage |
| 12b940 | 29 2c 20 60 69 6e 70 75 74 60 20 28 4c 34 20 73 74 61 67 65 29 2c 20 61 6e 64 20 60 6f 75 74 70 | ),.`input`.(L4.stage),.and.`outp |
| 12b960 | 75 74 60 20 28 4c 35 20 73 74 61 67 65 29 2e 20 41 6c 6c 20 74 68 65 20 6f 74 68 65 72 20 73 74 | ut`.(L5.stage)..All.the.other.st |
| 12b980 | 61 67 65 73 20 61 6e 64 20 73 74 65 70 73 20 61 72 65 20 66 6f 72 20 72 65 66 65 72 65 6e 63 65 | ages.and.steps.are.for.reference |
| 12b9a0 | 20 61 6e 64 20 63 61 6e 74 20 62 65 20 6d 61 6e 69 70 75 6c 61 74 65 64 20 74 68 72 6f 75 67 68 | .and.cant.be.manipulated.through |
| 12b9c0 | 20 56 79 4f 53 2e 00 54 68 65 20 6f 70 74 69 6f 6e 61 6c 20 60 64 69 73 61 62 6c 65 60 20 6f 70 | .VyOS..The.optional.`disable`.op |
| 12b9e0 | 74 69 6f 6e 20 61 6c 6c 6f 77 73 20 74 6f 20 65 78 63 6c 75 64 65 20 69 6e 74 65 72 66 61 63 65 | tion.allows.to.exclude.interface |
| 12ba00 | 20 66 72 6f 6d 20 70 61 73 73 69 76 65 20 73 74 61 74 65 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e | .from.passive.state..This.comman |
| 12ba20 | 64 20 69 73 20 75 73 65 64 20 69 66 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 3a 63 66 67 63 6d 64 | d.is.used.if.the.command.:cfgcmd |
| 12ba40 | 3a 60 70 61 73 73 69 76 65 2d 69 6e 74 65 72 66 61 63 65 20 64 65 66 61 75 6c 74 60 20 77 61 73 | :`passive-interface.default`.was |
| 12ba60 | 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 54 68 65 20 6f 70 74 69 6f 6e 61 6c 20 70 61 72 61 6d 65 | .configured..The.optional.parame |
| 12ba80 | 74 65 72 20 72 65 67 69 73 74 65 72 20 73 70 65 63 69 66 69 65 73 20 74 68 61 74 20 52 65 67 69 | ter.register.specifies.that.Regi |
| 12baa0 | 73 74 72 61 74 69 6f 6e 20 52 65 71 75 65 73 74 20 73 68 6f 75 6c 64 20 62 65 20 73 65 6e 74 20 | stration.Request.should.be.sent. |
| 12bac0 | 74 6f 20 74 68 69 73 20 70 65 65 72 20 6f 6e 20 73 74 61 72 74 75 70 2e 00 54 68 65 20 6f 72 69 | to.this.peer.on.startup..The.ori |
| 12bae0 | 67 69 6e 61 6c 20 38 30 32 2e 31 71 5f 20 73 70 65 63 69 66 69 63 61 74 69 6f 6e 20 61 6c 6c 6f | ginal.802.1q_.specification.allo |
| 12bb00 | 77 73 20 61 20 73 69 6e 67 6c 65 20 56 69 72 74 75 61 6c 20 4c 6f 63 61 6c 20 41 72 65 61 20 4e | ws.a.single.Virtual.Local.Area.N |
| 12bb20 | 65 74 77 6f 72 6b 20 28 56 4c 41 4e 29 20 68 65 61 64 65 72 20 74 6f 20 62 65 20 69 6e 73 65 72 | etwork.(VLAN).header.to.be.inser |
| 12bb40 | 74 65 64 20 69 6e 74 6f 20 61 6e 20 45 74 68 65 72 6e 65 74 20 66 72 61 6d 65 2e 20 51 69 6e 51 | ted.into.an.Ethernet.frame..QinQ |
| 12bb60 | 20 61 6c 6c 6f 77 73 20 6d 75 6c 74 69 70 6c 65 20 56 4c 41 4e 20 74 61 67 73 20 74 6f 20 62 65 | .allows.multiple.VLAN.tags.to.be |
| 12bb80 | 20 69 6e 73 65 72 74 65 64 20 69 6e 74 6f 20 61 20 73 69 6e 67 6c 65 20 66 72 61 6d 65 2c 20 61 | .inserted.into.a.single.frame,.a |
| 12bba0 | 6e 20 65 73 73 65 6e 74 69 61 6c 20 63 61 70 61 62 69 6c 69 74 79 20 66 6f 72 20 69 6d 70 6c 65 | n.essential.capability.for.imple |
| 12bbc0 | 6d 65 6e 74 69 6e 67 20 4d 65 74 72 6f 20 45 74 68 65 72 6e 65 74 20 6e 65 74 77 6f 72 6b 20 74 | menting.Metro.Ethernet.network.t |
| 12bbe0 | 6f 70 6f 6c 6f 67 69 65 73 2e 20 4a 75 73 74 20 61 73 20 51 69 6e 51 20 65 78 74 65 6e 64 73 20 | opologies..Just.as.QinQ.extends. |
| 12bc00 | 38 30 32 2e 31 51 2c 20 51 69 6e 51 20 69 74 73 65 6c 66 20 69 73 20 65 78 74 65 6e 64 65 64 20 | 802.1Q,.QinQ.itself.is.extended. |
| 12bc20 | 62 79 20 6f 74 68 65 72 20 4d 65 74 72 6f 20 45 74 68 65 72 6e 65 74 20 70 72 6f 74 6f 63 6f 6c | by.other.Metro.Ethernet.protocol |
| 12bc40 | 73 2e 00 54 68 65 20 6f 75 74 67 6f 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 70 65 72 | s..The.outgoing.interface.to.per |
| 12bc60 | 66 6f 72 6d 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 6f 6e 00 54 68 65 20 70 65 65 72 | form.the.translation.on.The.peer |
| 12bc80 | 20 6e 61 6d 65 20 6d 75 73 74 20 62 65 20 61 6e 20 61 6c 70 68 61 6e 75 6d 65 72 69 63 20 61 6e | .name.must.be.an.alphanumeric.an |
| 12bca0 | 64 20 63 61 6e 20 68 61 76 65 20 68 79 70 65 6e 20 6f 72 20 75 6e 64 65 72 73 63 6f 72 65 20 61 | d.can.have.hypen.or.underscore.a |
| 12bcc0 | 73 20 73 70 65 63 69 61 6c 20 63 68 61 72 61 63 74 65 72 73 2e 20 49 74 20 69 73 20 70 75 72 65 | s.special.characters..It.is.pure |
| 12bce0 | 6c 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 61 6c 2e 00 54 68 65 20 70 65 65 72 20 6e 61 6d 65 73 | ly.informational..The.peer.names |
| 12bd00 | 20 52 49 47 48 54 20 61 6e 64 20 4c 45 46 54 20 61 72 65 20 75 73 65 64 20 61 73 20 69 6e 66 6f | .RIGHT.and.LEFT.are.used.as.info |
| 12bd20 | 72 6d 61 74 69 6f 6e 61 6c 20 74 65 78 74 2e 00 54 68 65 20 70 65 65 72 20 77 69 74 68 20 6c 6f | rmational.text..The.peer.with.lo |
| 12bd40 | 77 65 72 20 70 72 69 6f 72 69 74 79 20 77 69 6c 6c 20 62 65 63 6f 6d 65 20 74 68 65 20 6b 65 79 | wer.priority.will.become.the.key |
| 12bd60 | 20 73 65 72 76 65 72 20 61 6e 64 20 73 74 61 72 74 20 64 69 73 74 72 69 62 75 74 69 6e 67 20 53 | .server.and.start.distributing.S |
| 12bd80 | 41 4b 73 2e 00 54 68 65 20 70 69 6e 67 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 20 74 6f | AKs..The.ping.command.is.used.to |
| 12bda0 | 20 74 65 73 74 20 77 68 65 74 68 65 72 20 61 20 6e 65 74 77 6f 72 6b 20 68 6f 73 74 20 69 73 20 | .test.whether.a.network.host.is. |
| 12bdc0 | 72 65 61 63 68 61 62 6c 65 20 6f 72 20 6e 6f 74 2e 00 54 68 65 20 70 6f 70 75 6c 61 72 20 55 6e | reachable.or.not..The.popular.Un |
| 12bde0 | 69 78 2f 4c 69 6e 75 78 20 60 60 64 69 67 60 60 20 74 6f 6f 6c 20 73 65 74 73 20 74 68 65 20 41 | ix/Linux.``dig``.tool.sets.the.A |
| 12be00 | 44 2d 62 69 74 20 69 6e 20 74 68 65 20 71 75 65 72 79 2e 20 54 68 69 73 20 6d 69 67 68 74 20 6c | D-bit.in.the.query..This.might.l |
| 12be20 | 65 61 64 20 74 6f 20 75 6e 65 78 70 65 63 74 65 64 20 71 75 65 72 79 20 72 65 73 75 6c 74 73 20 | ead.to.unexpected.query.results. |
| 12be40 | 77 68 65 6e 20 74 65 73 74 69 6e 67 2e 20 53 65 74 20 60 60 2b 6e 6f 61 64 60 60 20 6f 6e 20 74 | when.testing..Set.``+noad``.on.t |
| 12be60 | 68 65 20 60 60 64 69 67 60 60 20 63 6f 6d 6d 61 6e 64 20 6c 69 6e 65 20 77 68 65 6e 20 74 68 69 | he.``dig``.command.line.when.thi |
| 12be80 | 73 20 69 73 20 74 68 65 20 63 61 73 65 2e 00 54 68 65 20 70 72 65 2d 73 68 61 72 65 64 20 6b 65 | s.is.the.case..The.pre-shared.ke |
| 12bea0 | 79 20 6d 6f 64 65 20 69 73 20 64 65 70 72 65 63 61 74 65 64 20 61 6e 64 20 77 69 6c 6c 20 62 65 | y.mode.is.deprecated.and.will.be |
| 12bec0 | 20 72 65 6d 6f 76 65 64 20 66 72 6f 6d 20 66 75 74 75 72 65 20 4f 70 65 6e 56 50 4e 20 76 65 72 | .removed.from.future.OpenVPN.ver |
| 12bee0 | 73 69 6f 6e 73 2c 20 73 6f 20 56 79 4f 53 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 72 65 6d 6f | sions,.so.VyOS.will.have.to.remo |
| 12bf00 | 76 65 20 73 75 70 70 6f 72 74 20 66 6f 72 20 74 68 61 74 20 6f 70 74 69 6f 6e 20 61 73 20 77 65 | ve.support.for.that.option.as.we |
| 12bf20 | 6c 6c 2e 20 54 68 65 20 72 65 61 73 6f 6e 20 69 73 20 74 68 61 74 20 75 73 69 6e 67 20 70 72 65 | ll..The.reason.is.that.using.pre |
| 12bf40 | 2d 73 68 61 72 65 64 20 6b 65 79 73 20 69 73 20 73 69 67 6e 69 66 69 63 61 6e 74 6c 79 20 6c 65 | -shared.keys.is.significantly.le |
| 12bf60 | 73 73 20 73 65 63 75 72 65 20 74 68 61 6e 20 75 73 69 6e 67 20 54 4c 53 2e 00 54 68 65 20 70 72 | ss.secure.than.using.TLS..The.pr |
| 12bf80 | 65 66 69 78 20 61 6e 64 20 41 53 4e 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 65 64 20 69 74 20 | efix.and.ASN.that.originated.it. |
| 12bfa0 | 6d 61 74 63 68 20 61 20 73 69 67 6e 65 64 20 52 4f 41 2e 20 54 68 65 73 65 20 61 72 65 20 70 72 | match.a.signed.ROA..These.are.pr |
| 12bfc0 | 6f 62 61 62 6c 79 20 74 72 75 73 74 77 6f 72 74 68 79 20 72 6f 75 74 65 20 61 6e 6e 6f 75 6e 63 | obably.trustworthy.route.announc |
| 12bfe0 | 65 6d 65 6e 74 73 2e 00 54 68 65 20 70 72 65 66 69 78 20 6f 72 20 70 72 65 66 69 78 20 6c 65 6e | ements..The.prefix.or.prefix.len |
| 12c000 | 67 74 68 20 61 6e 64 20 41 53 4e 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 65 64 20 69 74 20 64 | gth.and.ASN.that.originated.it.d |
| 12c020 | 6f 65 73 6e 27 74 20 6d 61 74 63 68 20 61 6e 79 20 65 78 69 73 74 69 6e 67 20 52 4f 41 2e 20 54 | oesn't.match.any.existing.ROA..T |
| 12c040 | 68 69 73 20 63 6f 75 6c 64 20 62 65 20 74 68 65 20 72 65 73 75 6c 74 20 6f 66 20 61 20 70 72 65 | his.could.be.the.result.of.a.pre |
| 12c060 | 66 69 78 20 68 69 6a 61 63 6b 2c 20 6f 72 20 6d 65 72 65 6c 79 20 61 20 6d 69 73 63 6f 6e 66 69 | fix.hijack,.or.merely.a.misconfi |
| 12c080 | 67 75 72 61 74 69 6f 6e 2c 20 62 75 74 20 73 68 6f 75 6c 64 20 70 72 6f 62 61 62 6c 79 20 62 65 | guration,.but.should.probably.be |
| 12c0a0 | 20 74 72 65 61 74 65 64 20 61 73 20 75 6e 74 72 75 73 74 77 6f 72 74 68 79 20 72 6f 75 74 65 20 | .treated.as.untrustworthy.route. |
| 12c0c0 | 61 6e 6e 6f 75 6e 63 65 6d 65 6e 74 73 2e 00 54 68 65 20 70 72 69 6d 61 72 79 20 44 48 43 50 20 | announcements..The.primary.DHCP. |
| 12c0e0 | 73 65 72 76 65 72 20 75 73 65 73 20 61 64 64 72 65 73 73 20 60 31 39 32 2e 31 36 38 2e 31 38 39 | server.uses.address.`192.168.189 |
| 12c100 | 2e 32 35 32 60 00 54 68 65 20 70 72 69 6d 61 72 79 20 61 6e 64 20 73 65 63 6f 6e 64 61 72 79 20 | .252`.The.primary.and.secondary. |
| 12c120 | 73 74 61 74 65 6d 65 6e 74 73 20 64 65 74 65 72 6d 69 6e 65 73 20 77 68 65 74 68 65 72 20 74 68 | statements.determines.whether.th |
| 12c140 | 65 20 73 65 72 76 65 72 20 69 73 20 70 72 69 6d 61 72 79 20 6f 72 20 73 65 63 6f 6e 64 61 72 79 | e.server.is.primary.or.secondary |
| 12c160 | 2e 00 54 68 65 20 70 72 69 6d 61 72 79 20 6f 70 74 69 6f 6e 20 69 73 20 6f 6e 6c 79 20 76 61 6c | ..The.primary.option.is.only.val |
| 12c180 | 69 64 20 66 6f 72 20 61 63 74 69 76 65 2d 62 61 63 6b 75 70 2c 20 74 72 61 6e 73 6d 69 74 2d 6c | id.for.active-backup,.transmit-l |
| 12c1a0 | 6f 61 64 2d 62 61 6c 61 6e 63 65 2c 20 61 6e 64 20 61 64 61 70 74 69 76 65 2d 6c 6f 61 64 2d 62 | oad-balance,.and.adaptive-load-b |
| 12c1c0 | 61 6c 61 6e 63 65 20 6d 6f 64 65 2e 00 54 68 65 20 70 72 69 6f 72 69 74 79 20 6d 75 73 74 20 62 | alance.mode..The.priority.must.b |
| 12c1e0 | 65 20 61 6e 20 69 6e 74 65 67 65 72 20 6e 75 6d 62 65 72 20 66 72 6f 6d 20 31 20 74 6f 20 32 35 | e.an.integer.number.from.1.to.25 |
| 12c200 | 35 2e 20 48 69 67 68 65 72 20 70 72 69 6f 72 69 74 79 20 76 61 6c 75 65 20 69 6e 63 72 65 61 73 | 5..Higher.priority.value.increas |
| 12c220 | 65 73 20 72 6f 75 74 65 72 27 73 20 70 72 65 63 65 64 65 6e 63 65 20 69 6e 20 74 68 65 20 6d 61 | es.router's.precedence.in.the.ma |
| 12c240 | 73 74 65 72 20 65 6c 65 63 74 69 6f 6e 73 2e 00 54 68 65 20 70 72 6f 63 65 64 75 72 65 20 74 6f | ster.elections..The.procedure.to |
| 12c260 | 20 73 70 65 63 69 66 79 20 61 20 3a 61 62 62 72 3a 60 4e 49 53 2b 20 28 4e 65 74 77 6f 72 6b 20 | .specify.a.:abbr:`NIS+.(Network. |
| 12c280 | 49 6e 66 6f 72 6d 61 74 69 6f 6e 20 53 65 72 76 69 63 65 20 50 6c 75 73 29 60 20 64 6f 6d 61 69 | Information.Service.Plus)`.domai |
| 12c2a0 | 6e 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 74 68 65 20 4e 49 53 20 64 6f 6d 61 69 6e 20 6f | n.is.similar.to.the.NIS.domain.o |
| 12c2c0 | 6e 65 3a 00 54 68 65 20 70 72 6f 6d 70 74 20 69 73 20 61 64 6a 75 73 74 65 64 20 74 6f 20 72 65 | ne:.The.prompt.is.adjusted.to.re |
| 12c2e0 | 66 6c 65 63 74 20 74 68 69 73 20 63 68 61 6e 67 65 20 69 6e 20 62 6f 74 68 20 63 6f 6e 66 69 67 | flect.this.change.in.both.config |
| 12c300 | 20 61 6e 64 20 6f 70 2d 6d 6f 64 65 2e 00 54 68 65 20 70 72 6f 74 6f 63 6f 6c 20 61 6e 64 20 70 | .and.op-mode..The.protocol.and.p |
| 12c320 | 6f 72 74 20 77 65 20 77 69 73 68 20 74 6f 20 66 6f 72 77 61 72 64 3b 00 54 68 65 20 70 72 6f 74 | ort.we.wish.to.forward;.The.prot |
| 12c340 | 6f 63 6f 6c 20 69 73 20 75 73 75 61 6c 6c 79 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 74 65 72 | ocol.is.usually.described.in.ter |
| 12c360 | 6d 73 20 6f 66 20 61 20 63 6c 69 65 6e 74 2d 73 65 72 76 65 72 20 6d 6f 64 65 6c 2c 20 62 75 74 | ms.of.a.client-server.model,.but |
| 12c380 | 20 63 61 6e 20 61 73 20 65 61 73 69 6c 79 20 62 65 20 75 73 65 64 20 69 6e 20 70 65 65 72 2d 74 | .can.as.easily.be.used.in.peer-t |
| 12c3a0 | 6f 2d 70 65 65 72 20 72 65 6c 61 74 69 6f 6e 73 68 69 70 73 20 77 68 65 72 65 20 62 6f 74 68 20 | o-peer.relationships.where.both. |
| 12c3c0 | 70 65 65 72 73 20 63 6f 6e 73 69 64 65 72 20 74 68 65 20 6f 74 68 65 72 20 74 6f 20 62 65 20 61 | peers.consider.the.other.to.be.a |
| 12c3e0 | 20 70 6f 74 65 6e 74 69 61 6c 20 74 69 6d 65 20 73 6f 75 72 63 65 2e 20 49 6d 70 6c 65 6d 65 6e | .potential.time.source..Implemen |
| 12c400 | 74 61 74 69 6f 6e 73 20 73 65 6e 64 20 61 6e 64 20 72 65 63 65 69 76 65 20 74 69 6d 65 73 74 61 | tations.send.and.receive.timesta |
| 12c420 | 6d 70 73 20 75 73 69 6e 67 20 3a 61 62 62 72 3a 60 55 44 50 20 28 55 73 65 72 20 44 61 74 61 67 | mps.using.:abbr:`UDP.(User.Datag |
| 12c440 | 72 61 6d 20 50 72 6f 74 6f 63 6f 6c 29 60 20 6f 6e 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 31 32 | ram.Protocol)`.on.port.number.12 |
| 12c460 | 33 2e 00 54 68 65 20 70 72 6f 74 6f 63 6f 6c 20 6f 76 65 72 68 65 61 64 20 6f 66 20 4c 32 54 50 | 3..The.protocol.overhead.of.L2TP |
| 12c480 | 76 33 20 69 73 20 61 6c 73 6f 20 73 69 67 6e 69 66 69 63 61 6e 74 6c 79 20 62 69 67 67 65 72 20 | v3.is.also.significantly.bigger. |
| 12c4a0 | 74 68 61 6e 20 4d 50 4c 53 2e 00 54 68 65 20 70 72 6f 78 79 20 73 65 72 76 69 63 65 20 69 6e 20 | than.MPLS..The.proxy.service.in. |
| 12c4c0 | 56 79 4f 53 20 69 73 20 62 61 73 65 64 20 6f 6e 20 53 71 75 69 64 5f 20 61 6e 64 20 73 6f 6d 65 | VyOS.is.based.on.Squid_.and.some |
| 12c4e0 | 20 72 65 6c 61 74 65 64 20 6d 6f 64 75 6c 65 73 2e 00 54 68 65 20 70 75 62 6c 69 63 20 49 50 20 | .related.modules..The.public.IP. |
| 12c500 | 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 6c 6f 63 61 6c 20 73 69 64 65 20 6f 66 20 74 68 65 | address.of.the.local.side.of.the |
| 12c520 | 20 56 50 4e 20 77 69 6c 6c 20 62 65 20 31 39 38 2e 35 31 2e 31 30 30 2e 31 30 2e 00 54 68 65 20 | .VPN.will.be.198.51.100.10..The. |
| 12c540 | 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 72 65 6d 6f 74 65 20 | public.IP.address.of.the.remote. |
| 12c560 | 73 69 64 65 20 6f 66 20 74 68 65 20 56 50 4e 20 77 69 6c 6c 20 62 65 20 32 30 33 2e 30 2e 31 31 | side.of.the.VPN.will.be.203.0.11 |
| 12c580 | 33 2e 31 31 2e 00 54 68 65 20 72 61 74 65 2d 6c 69 6d 69 74 20 69 73 20 73 65 74 20 69 6e 20 6b | 3.11..The.rate-limit.is.set.in.k |
| 12c5a0 | 62 69 74 2f 73 65 63 2e 00 54 68 65 20 72 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 20 | bit/sec..The.regular.expression. |
| 12c5c0 | 6d 61 74 63 68 65 73 20 69 66 20 61 6e 64 20 6f 6e 6c 79 20 69 66 20 74 68 65 20 65 6e 74 69 72 | matches.if.and.only.if.the.entir |
| 12c5e0 | 65 20 73 74 72 69 6e 67 20 6d 61 74 63 68 65 73 20 74 68 65 20 70 61 74 74 65 72 6e 2e 00 54 68 | e.string.matches.the.pattern..Th |
| 12c600 | 65 20 72 65 6d 6f 74 65 20 70 65 65 72 20 60 74 6f 2d 77 67 30 32 60 20 75 73 65 73 20 58 4d 72 | e.remote.peer.`to-wg02`.uses.XMr |
| 12c620 | 6c 50 79 6b 61 78 68 64 41 41 69 53 6a 68 74 50 6c 76 69 33 30 4e 56 6b 76 4c 51 6c 69 51 75 4b | lPykaxhdAAiSjhtPlvi30NVkvLQliQuK |
| 12c640 | 50 37 41 49 37 43 79 49 3d 20 61 73 20 69 74 73 20 70 75 62 6c 69 63 20 6b 65 79 20 70 6f 72 74 | P7AI7CyI=.as.its.public.key.port |
| 12c660 | 69 6f 6e 00 54 68 65 20 72 65 6d 6f 74 65 20 73 69 74 65 20 77 69 6c 6c 20 68 61 76 65 20 61 20 | ion.The.remote.site.will.have.a. |
| 12c680 | 73 75 62 6e 65 74 20 6f 66 20 31 30 2e 31 2e 30 2e 30 2f 31 36 2e 00 54 68 65 20 72 65 6d 6f 74 | subnet.of.10.1.0.0/16..The.remot |
| 12c6a0 | 65 20 75 73 65 72 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 6f 70 65 6e 63 6f 6e 6e 65 63 74 20 | e.user.will.use.the.openconnect. |
| 12c6c0 | 63 6c 69 65 6e 74 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 | client.to.connect.to.the.router. |
| 12c6e0 | 61 6e 64 20 77 69 6c 6c 20 72 65 63 65 69 76 65 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 66 | and.will.receive.an.IP.address.f |
| 12c700 | 72 6f 6d 20 61 20 56 50 4e 20 70 6f 6f 6c 2c 20 61 6c 6c 6f 77 69 6e 67 20 66 75 6c 6c 20 61 63 | rom.a.VPN.pool,.allowing.full.ac |
| 12c720 | 63 65 73 73 20 74 6f 20 74 68 65 20 6e 65 74 77 6f 72 6b 2e 00 54 68 65 20 72 65 71 75 65 73 74 | cess.to.the.network..The.request |
| 12c740 | 6f 72 20 6e 65 74 6d 61 73 6b 20 66 6f 72 20 77 68 69 63 68 20 74 68 65 20 72 65 71 75 65 73 74 | or.netmask.for.which.the.request |
| 12c760 | 6f 72 20 49 50 20 41 64 64 72 65 73 73 20 73 68 6f 75 6c 64 20 62 65 20 75 73 65 64 20 61 73 20 | or.IP.Address.should.be.used.as. |
| 12c780 | 74 68 65 20 45 44 4e 53 20 43 6c 69 65 6e 74 20 53 75 62 6e 65 74 20 66 6f 72 20 6f 75 74 67 6f | the.EDNS.Client.Subnet.for.outgo |
| 12c7a0 | 69 6e 67 20 71 75 65 72 69 65 73 2e 00 54 68 65 20 72 65 71 75 69 72 65 64 20 63 6f 6e 66 69 67 | ing.queries..The.required.config |
| 12c7c0 | 20 66 69 6c 65 20 6d 61 79 20 6c 6f 6f 6b 20 6c 69 6b 65 20 74 68 69 73 3a 00 54 68 65 20 72 65 | .file.may.look.like.this:.The.re |
| 12c7e0 | 71 75 69 72 65 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 61 6e 20 62 65 20 62 72 6f 6b | quired.configuration.can.be.brok |
| 12c800 | 65 6e 20 64 6f 77 6e 20 69 6e 74 6f 20 34 20 6d 61 6a 6f 72 20 70 69 65 63 65 73 3a 00 54 68 65 | en.down.into.4.major.pieces:.The |
| 12c820 | 20 72 65 73 75 6c 74 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 69 6c 6c 20 6c 6f | .resulting.configuration.will.lo |
| 12c840 | 6f 6b 20 6c 69 6b 65 3a 00 54 68 65 20 72 6f 6f 74 20 63 61 75 73 65 20 6f 66 20 74 68 65 20 70 | ok.like:.The.root.cause.of.the.p |
| 12c860 | 72 6f 62 6c 65 6d 20 69 73 20 74 68 61 74 20 66 6f 72 20 56 54 49 20 74 75 6e 6e 65 6c 73 20 74 | roblem.is.that.for.VTI.tunnels.t |
| 12c880 | 6f 20 77 6f 72 6b 2c 20 74 68 65 69 72 20 74 72 61 66 66 69 63 20 73 65 6c 65 63 74 6f 72 73 20 | o.work,.their.traffic.selectors. |
| 12c8a0 | 68 61 76 65 20 74 6f 20 62 65 20 73 65 74 20 74 6f 20 30 2e 30 2e 30 2e 30 2f 30 20 66 6f 72 20 | have.to.be.set.to.0.0.0.0/0.for. |
| 12c8c0 | 74 72 61 66 66 69 63 20 74 6f 20 6d 61 74 63 68 20 74 68 65 20 74 75 6e 6e 65 6c 2c 20 65 76 65 | traffic.to.match.the.tunnel,.eve |
| 12c8e0 | 6e 20 74 68 6f 75 67 68 20 61 63 74 75 61 6c 20 72 6f 75 74 69 6e 67 20 64 65 63 69 73 69 6f 6e | n.though.actual.routing.decision |
| 12c900 | 20 69 73 20 6d 61 64 65 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 6e 65 74 66 69 6c 74 65 72 20 | .is.made.according.to.netfilter. |
| 12c920 | 6d 61 72 6b 73 2e 20 55 6e 6c 65 73 73 20 72 6f 75 74 65 20 69 6e 73 65 72 74 69 6f 6e 20 69 73 | marks..Unless.route.insertion.is |
| 12c940 | 20 64 69 73 61 62 6c 65 64 20 65 6e 74 69 72 65 6c 79 2c 20 53 74 72 6f 6e 67 53 57 41 4e 20 74 | .disabled.entirely,.StrongSWAN.t |
| 12c960 | 68 75 73 20 6d 69 73 74 61 6b 65 6e 6c 79 20 69 6e 73 65 72 74 73 20 61 20 64 65 66 61 75 6c 74 | hus.mistakenly.inserts.a.default |
| 12c980 | 20 72 6f 75 74 65 20 74 68 72 6f 75 67 68 20 74 68 65 20 56 54 49 20 70 65 65 72 20 61 64 64 72 | .route.through.the.VTI.peer.addr |
| 12c9a0 | 65 73 73 2c 20 77 68 69 63 68 20 6d 61 6b 65 73 20 61 6c 6c 20 74 72 61 66 66 69 63 20 72 6f 75 | ess,.which.makes.all.traffic.rou |
| 12c9c0 | 74 65 64 20 74 6f 20 6e 6f 77 68 65 72 65 2e 00 54 68 65 20 72 6f 75 6e 64 2d 72 6f 62 69 6e 20 | ted.to.nowhere..The.round-robin. |
| 12c9e0 | 70 6f 6c 69 63 79 20 69 73 20 61 20 63 6c 61 73 73 66 75 6c 20 73 63 68 65 64 75 6c 65 72 20 74 | policy.is.a.classful.scheduler.t |
| 12ca00 | 68 61 74 20 64 69 76 69 64 65 73 20 74 72 61 66 66 69 63 20 69 6e 20 64 69 66 66 65 72 65 6e 74 | hat.divides.traffic.in.different |
| 12ca20 | 20 63 6c 61 73 73 65 73 5f 20 79 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 28 75 70 20 | .classes_.you.can.configure.(up. |
| 12ca40 | 74 6f 20 34 30 39 36 29 2e 20 59 6f 75 20 63 61 6e 20 65 6d 62 65 64 5f 20 61 20 6e 65 77 20 70 | to.4096)..You.can.embed_.a.new.p |
| 12ca60 | 6f 6c 69 63 79 20 69 6e 74 6f 20 65 61 63 68 20 6f 66 20 74 68 6f 73 65 20 63 6c 61 73 73 65 73 | olicy.into.each.of.those.classes |
| 12ca80 | 20 28 64 65 66 61 75 6c 74 20 69 6e 63 6c 75 64 65 64 29 2e 00 54 68 65 20 72 6f 75 74 65 20 73 | .(default.included)..The.route.s |
| 12caa0 | 65 6c 65 63 74 69 6f 6e 20 70 72 6f 63 65 73 73 20 75 73 65 64 20 62 79 20 46 52 52 27 73 20 42 | election.process.used.by.FRR's.B |
| 12cac0 | 47 50 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 75 73 65 73 20 74 68 65 20 66 6f 6c 6c 6f | GP.implementation.uses.the.follo |
| 12cae0 | 77 69 6e 67 20 64 65 63 69 73 69 6f 6e 20 63 72 69 74 65 72 69 6f 6e 2c 20 73 74 61 72 74 69 6e | wing.decision.criterion,.startin |
| 12cb00 | 67 20 61 74 20 74 68 65 20 74 6f 70 20 6f 66 20 74 68 65 20 6c 69 73 74 20 61 6e 64 20 67 6f 69 | g.at.the.top.of.the.list.and.goi |
| 12cb20 | 6e 67 20 74 6f 77 61 72 64 73 20 74 68 65 20 62 6f 74 74 6f 6d 20 75 6e 74 69 6c 20 6f 6e 65 20 | ng.towards.the.bottom.until.one. |
| 12cb40 | 6f 66 20 74 68 65 20 66 61 63 74 6f 72 73 20 63 61 6e 20 62 65 20 75 73 65 64 2e 00 54 68 65 20 | of.the.factors.can.be.used..The. |
| 12cb60 | 72 6f 75 74 65 20 77 69 74 68 20 74 68 65 20 73 68 6f 72 74 65 73 74 20 63 6c 75 73 74 65 72 2d | route.with.the.shortest.cluster- |
| 12cb80 | 6c 69 73 74 20 6c 65 6e 67 74 68 20 69 73 20 75 73 65 64 2e 20 54 68 65 20 63 6c 75 73 74 65 72 | list.length.is.used..The.cluster |
| 12cba0 | 2d 6c 69 73 74 20 72 65 66 6c 65 63 74 73 20 74 68 65 20 69 42 47 50 20 72 65 66 6c 65 63 74 69 | -list.reflects.the.iBGP.reflecti |
| 12cbc0 | 6f 6e 20 70 61 74 68 20 74 68 65 20 72 6f 75 74 65 20 68 61 73 20 74 61 6b 65 6e 2e 00 54 68 65 | on.path.the.route.has.taken..The |
| 12cbe0 | 20 72 6f 75 74 65 72 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 75 70 64 61 74 65 73 20 6c 69 | .router.automatically.updates.li |
| 12cc00 | 6e 6b 2d 73 74 61 74 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 77 69 74 68 20 69 74 73 20 6e 65 | nk-state.information.with.its.ne |
| 12cc20 | 69 67 68 62 6f 72 73 2e 20 4f 6e 6c 79 20 61 6e 20 6f 62 73 6f 6c 65 74 65 20 69 6e 66 6f 72 6d | ighbors..Only.an.obsolete.inform |
| 12cc40 | 61 74 69 6f 6e 20 69 73 20 75 70 64 61 74 65 64 20 77 68 69 63 68 20 61 67 65 20 68 61 73 20 65 | ation.is.updated.which.age.has.e |
| 12cc60 | 78 63 65 65 64 65 64 20 61 20 73 70 65 63 69 66 69 63 20 74 68 72 65 73 68 6f 6c 64 2e 20 54 68 | xceeded.a.specific.threshold..Th |
| 12cc80 | 69 73 20 70 61 72 61 6d 65 74 65 72 20 63 68 61 6e 67 65 73 20 61 20 74 68 72 65 73 68 6f 6c 64 | is.parameter.changes.a.threshold |
| 12cca0 | 20 76 61 6c 75 65 2c 20 77 68 69 63 68 20 62 79 20 64 65 66 61 75 6c 74 20 69 73 20 31 38 30 30 | .value,.which.by.default.is.1800 |
| 12ccc0 | 20 73 65 63 6f 6e 64 73 20 28 68 61 6c 66 20 61 6e 20 68 6f 75 72 29 2e 20 54 68 65 20 76 61 6c | .seconds.(half.an.hour)..The.val |
| 12cce0 | 75 65 20 69 73 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 77 68 6f 6c 65 20 4f 53 50 46 20 | ue.is.applied.to.the.whole.OSPF. |
| 12cd00 | 72 6f 75 74 65 72 2e 20 54 68 65 20 74 69 6d 65 72 20 72 61 6e 67 65 20 69 73 20 31 30 20 74 6f | router..The.timer.range.is.10.to |
| 12cd20 | 20 31 38 30 30 2e 00 54 68 65 20 72 6f 75 74 65 72 20 73 68 6f 75 6c 64 20 64 69 73 63 61 72 64 | .1800..The.router.should.discard |
| 12cd40 | 20 44 48 43 50 20 70 61 63 6b 61 67 65 73 20 61 6c 72 65 61 64 79 20 63 6f 6e 74 61 69 6e 69 6e | .DHCP.packages.already.containin |
| 12cd60 | 67 20 72 65 6c 61 79 20 61 67 65 6e 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 65 6e 73 | g.relay.agent.information.to.ens |
| 12cd80 | 75 72 65 20 74 68 61 74 20 6f 6e 6c 79 20 72 65 71 75 65 73 74 73 20 66 72 6f 6d 20 44 48 43 50 | ure.that.only.requests.from.DHCP |
| 12cda0 | 20 63 6c 69 65 6e 74 73 20 61 72 65 20 66 6f 72 77 61 72 64 65 64 2e 00 54 68 65 20 73 46 6c 6f | .clients.are.forwarded..The.sFlo |
| 12cdc0 | 77 20 61 63 63 6f 75 6e 74 69 6e 67 20 62 61 73 65 64 20 6f 6e 20 68 73 66 6c 6f 77 64 20 68 74 | w.accounting.based.on.hsflowd.ht |
| 12cde0 | 74 70 73 3a 2f 2f 73 66 6c 6f 77 2e 6e 65 74 2f 00 54 68 65 20 73 61 6d 65 20 63 6f 6e 66 69 67 | tps://sflow.net/.The.same.config |
| 12ce00 | 75 72 61 74 69 6f 6e 20 6f 70 74 69 6f 6e 73 20 61 70 70 6c 79 20 77 68 65 6e 20 49 64 65 6e 74 | uration.options.apply.when.Ident |
| 12ce20 | 69 74 79 20 62 61 73 65 64 20 63 6f 6e 66 69 67 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 69 | ity.based.config.is.configured.i |
| 12ce40 | 6e 20 67 72 6f 75 70 20 6d 6f 64 65 20 65 78 63 65 70 74 20 74 68 61 74 20 67 72 6f 75 70 20 6d | n.group.mode.except.that.group.m |
| 12ce60 | 6f 64 65 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 75 73 65 64 20 77 69 74 68 20 52 41 44 49 55 53 | ode.can.only.be.used.with.RADIUS |
| 12ce80 | 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 00 54 68 65 20 73 63 68 65 6d 65 20 61 62 6f 76 | .authentication..The.scheme.abov |
| 12cea0 | 65 20 64 6f 65 73 6e 27 74 20 77 6f 72 6b 20 77 68 65 6e 20 6f 6e 65 20 6f 66 20 74 68 65 20 72 | e.doesn't.work.when.one.of.the.r |
| 12cec0 | 6f 75 74 65 72 73 20 68 61 73 20 61 20 64 79 6e 61 6d 69 63 20 65 78 74 65 72 6e 61 6c 20 61 64 | outers.has.a.dynamic.external.ad |
| 12cee0 | 64 72 65 73 73 20 74 68 6f 75 67 68 2e 20 54 68 65 20 63 6c 61 73 73 69 63 20 77 6f 72 6b 61 72 | dress.though..The.classic.workar |
| 12cf00 | 6f 75 6e 64 20 66 6f 72 20 74 68 69 73 20 69 73 20 74 6f 20 73 65 74 75 70 20 61 6e 20 61 64 64 | ound.for.this.is.to.setup.an.add |
| 12cf20 | 72 65 73 73 20 6f 6e 20 61 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 | ress.on.a.loopback.interface.and |
| 12cf40 | 20 75 73 65 20 69 74 20 61 73 20 61 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 66 6f 72 20 | .use.it.as.a.source.address.for. |
| 12cf60 | 74 68 65 20 47 52 45 20 74 75 6e 6e 65 6c 2c 20 74 68 65 6e 20 73 65 74 75 70 20 61 6e 20 49 50 | the.GRE.tunnel,.then.setup.an.IP |
| 12cf80 | 73 65 63 20 70 6f 6c 69 63 79 20 74 6f 20 6d 61 74 63 68 20 74 68 6f 73 65 20 6c 6f 6f 70 62 61 | sec.policy.to.match.those.loopba |
| 12cfa0 | 63 6b 20 61 64 64 72 65 73 73 65 73 2e 00 54 68 65 20 73 65 61 72 63 68 20 66 69 6c 74 65 72 20 | ck.addresses..The.search.filter. |
| 12cfc0 | 63 61 6e 20 63 6f 6e 74 61 69 6e 20 75 70 20 74 6f 20 31 35 20 6f 63 63 75 72 72 65 6e 63 65 73 | can.contain.up.to.15.occurrences |
| 12cfe0 | 20 6f 66 20 25 73 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 72 65 70 6c 61 63 65 64 20 62 79 | .of.%s.which.will.be.replaced.by |
| 12d000 | 20 74 68 65 20 75 73 65 72 6e 61 6d 65 2c 20 61 73 20 69 6e 20 22 75 69 64 3d 25 73 22 20 66 6f | .the.username,.as.in."uid=%s".fo |
| 12d020 | 72 20 3a 72 66 63 3a 60 32 30 33 37 60 20 64 69 72 65 63 74 6f 72 69 65 73 2e 20 46 6f 72 20 61 | r.:rfc:`2037`.directories..For.a |
| 12d040 | 20 64 65 74 61 69 6c 65 64 20 64 65 73 63 72 69 70 74 69 6f 6e 20 6f 66 20 4c 44 41 50 20 73 65 | .detailed.description.of.LDAP.se |
| 12d060 | 61 72 63 68 20 66 69 6c 74 65 72 20 73 79 6e 74 61 78 20 73 65 65 20 3a 72 66 63 3a 60 32 32 35 | arch.filter.syntax.see.:rfc:`225 |
| 12d080 | 34 60 2e 00 54 68 65 20 73 65 63 6f 6e 64 61 72 79 20 44 48 43 50 20 73 65 72 76 65 72 20 75 73 | 4`..The.secondary.DHCP.server.us |
| 12d0a0 | 65 73 20 61 64 64 72 65 73 73 20 60 31 39 32 2e 31 36 38 2e 31 38 39 2e 32 35 33 60 00 54 68 65 | es.address.`192.168.189.253`.The |
| 12d0c0 | 20 73 65 63 75 72 69 74 79 20 61 70 70 72 6f 61 63 68 20 69 6e 20 53 4e 4d 50 76 33 20 74 61 72 | .security.approach.in.SNMPv3.tar |
| 12d0e0 | 67 65 74 73 3a 00 54 68 65 20 73 65 71 75 65 6e 63 65 20 60 60 5e 45 63 3f 60 60 20 74 72 61 6e | gets:.The.sequence.``^Ec?``.tran |
| 12d100 | 73 6c 61 74 65 73 20 74 6f 3a 20 60 60 43 74 72 6c 2b 45 20 63 20 3f 60 60 2e 20 54 6f 20 71 75 | slates.to:.``Ctrl+E.c.?``..To.qu |
| 12d120 | 69 74 20 74 68 65 20 73 65 73 73 69 6f 6e 20 75 73 65 3a 20 60 60 43 74 72 6c 2b 45 20 63 20 2e | it.the.session.use:.``Ctrl+E.c.. |
| 12d140 | 60 60 00 54 68 65 20 73 65 74 75 70 20 69 73 20 74 68 69 73 3a 20 4c 65 61 66 32 20 2d 20 53 70 | ``.The.setup.is.this:.Leaf2.-.Sp |
| 12d160 | 69 6e 65 31 20 2d 20 4c 65 61 66 33 00 54 68 65 20 73 69 7a 65 20 6f 66 20 74 68 65 20 6f 6e 2d | ine1.-.Leaf3.The.size.of.the.on- |
| 12d180 | 64 69 73 6b 20 50 72 6f 78 79 20 63 61 63 68 65 20 69 73 20 75 73 65 72 20 63 6f 6e 66 69 67 75 | disk.Proxy.cache.is.user.configu |
| 12d1a0 | 72 61 62 6c 65 2e 20 54 68 65 20 50 72 6f 78 69 65 73 20 64 65 66 61 75 6c 74 20 63 61 63 68 65 | rable..The.Proxies.default.cache |
| 12d1c0 | 2d 73 69 7a 65 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 31 30 30 20 4d 42 2e 00 54 | -size.is.configured.to.100.MB..T |
| 12d1e0 | 68 65 20 73 70 65 65 64 20 28 62 61 75 64 72 61 74 65 29 20 6f 66 20 74 68 65 20 63 6f 6e 73 6f | he.speed.(baudrate).of.the.conso |
| 12d200 | 6c 65 20 64 65 76 69 63 65 2e 20 53 75 70 70 6f 72 74 65 64 20 76 61 6c 75 65 73 20 61 72 65 3a | le.device..Supported.values.are: |
| 12d220 | 00 54 68 65 20 73 74 61 6e 64 61 72 64 20 77 61 73 20 64 65 76 65 6c 6f 70 65 64 20 62 79 20 49 | .The.standard.was.developed.by.I |
| 12d240 | 45 45 45 20 38 30 32 2e 31 2c 20 61 20 77 6f 72 6b 69 6e 67 20 67 72 6f 75 70 20 6f 66 20 74 68 | EEE.802.1,.a.working.group.of.th |
| 12d260 | 65 20 49 45 45 45 20 38 30 32 20 73 74 61 6e 64 61 72 64 73 20 63 6f 6d 6d 69 74 74 65 65 2c 20 | e.IEEE.802.standards.committee,. |
| 12d280 | 61 6e 64 20 63 6f 6e 74 69 6e 75 65 73 20 74 6f 20 62 65 20 61 63 74 69 76 65 6c 79 20 72 65 76 | and.continues.to.be.actively.rev |
| 12d2a0 | 69 73 65 64 2e 20 4f 6e 65 20 6f 66 20 74 68 65 20 6e 6f 74 61 62 6c 65 20 72 65 76 69 73 69 6f | ised..One.of.the.notable.revisio |
| 12d2c0 | 6e 73 20 69 73 20 38 30 32 2e 31 51 2d 32 30 31 34 20 77 68 69 63 68 20 69 6e 63 6f 72 70 6f 72 | ns.is.802.1Q-2014.which.incorpor |
| 12d2e0 | 61 74 65 64 20 49 45 45 45 20 38 30 32 2e 31 61 71 20 28 53 68 6f 72 74 65 73 74 20 50 61 74 68 | ated.IEEE.802.1aq.(Shortest.Path |
| 12d300 | 20 42 72 69 64 67 69 6e 67 29 20 61 6e 64 20 6d 75 63 68 20 6f 66 20 74 68 65 20 49 45 45 45 20 | .Bridging).and.much.of.the.IEEE. |
| 12d320 | 38 30 32 2e 31 64 20 73 74 61 6e 64 61 72 64 2e 00 54 68 65 20 73 75 62 73 65 74 20 6f 66 20 70 | 802.1d.standard..The.subset.of.p |
| 12d340 | 6f 73 73 69 62 6c 65 20 70 61 72 61 6d 65 74 65 72 73 20 61 72 65 3a 00 54 68 65 20 73 75 70 70 | ossible.parameters.are:.The.supp |
| 12d360 | 6f 72 74 65 64 20 76 61 6c 75 65 73 20 66 6f 72 20 61 20 73 70 65 63 69 66 69 63 20 69 6e 74 65 | orted.values.for.a.specific.inte |
| 12d380 | 72 66 61 63 65 20 63 61 6e 20 62 65 20 6f 62 74 61 69 6e 65 64 20 77 69 74 68 3a 20 60 65 74 68 | rface.can.be.obtained.with:.`eth |
| 12d3a0 | 74 6f 6f 6c 20 2d 67 20 3c 69 6e 74 65 72 66 61 63 65 3e 60 00 54 68 65 20 73 79 73 2d 6d 61 63 | tool.-g.<interface>`.The.sys-mac |
| 12d3c0 | 20 61 6e 64 20 6c 6f 63 61 6c 20 64 69 73 63 72 69 6d 69 6e 61 74 6f 72 20 61 72 65 20 75 73 65 | .and.local.discriminator.are.use |
| 12d3e0 | 64 20 66 6f 72 20 67 65 6e 65 72 61 74 69 6e 67 20 61 20 31 30 2d 62 79 74 65 2c 20 54 79 70 65 | d.for.generating.a.10-byte,.Type |
| 12d400 | 2d 33 20 45 74 68 65 72 6e 65 74 20 53 65 67 6d 65 6e 74 20 49 44 2e 20 45 53 49 4e 41 4d 45 20 | -3.Ethernet.Segment.ID..ESINAME. |
| 12d420 | 69 73 20 61 20 31 30 2d 62 79 74 65 2c 20 54 79 70 65 2d 30 20 45 74 68 65 72 6e 65 74 20 53 65 | is.a.10-byte,.Type-0.Ethernet.Se |
| 12d440 | 67 6d 65 6e 74 20 49 44 20 2d 20 22 30 30 3a 41 41 3a 42 42 3a 43 43 3a 44 44 3a 45 45 3a 46 46 | gment.ID.-."00:AA:BB:CC:DD:EE:FF |
| 12d460 | 3a 47 47 3a 48 48 3a 49 49 22 2e 00 54 68 65 20 73 79 73 74 65 6d 20 4c 43 44 20 3a 61 62 62 72 | :GG:HH:II"..The.system.LCD.:abbr |
| 12d480 | 3a 60 4c 43 44 20 28 4c 69 71 75 69 64 2d 63 72 79 73 74 61 6c 20 64 69 73 70 6c 61 79 29 60 20 | :`LCD.(Liquid-crystal.display)`. |
| 12d4a0 | 6f 70 74 69 6f 6e 20 69 73 20 66 6f 72 20 75 73 65 72 73 20 72 75 6e 6e 69 6e 67 20 56 79 4f 53 | option.is.for.users.running.VyOS |
| 12d4c0 | 20 6f 6e 20 68 61 72 64 77 61 72 65 20 74 68 61 74 20 66 65 61 74 75 72 65 73 20 61 6e 20 4c 43 | .on.hardware.that.features.an.LC |
| 12d4e0 | 44 20 64 69 73 70 6c 61 79 2e 20 54 68 69 73 20 69 73 20 74 79 70 69 63 61 6c 6c 79 20 61 20 73 | D.display..This.is.typically.a.s |
| 12d500 | 6d 61 6c 6c 20 64 69 73 70 6c 61 79 20 62 75 69 6c 74 20 69 6e 20 61 6e 20 31 39 20 69 6e 63 68 | mall.display.built.in.an.19.inch |
| 12d520 | 20 72 61 63 6b 2d 6d 6f 75 6e 74 61 62 6c 65 20 61 70 70 6c 69 61 6e 63 65 2e 20 54 68 6f 73 65 | .rack-mountable.appliance..Those |
| 12d540 | 20 64 69 73 70 6c 61 79 73 20 61 72 65 20 75 73 65 64 20 74 6f 20 73 68 6f 77 20 72 75 6e 74 69 | .displays.are.used.to.show.runti |
| 12d560 | 6d 65 20 64 61 74 61 2e 00 54 68 65 20 73 79 73 74 65 6d 20 69 73 20 63 6f 6e 66 69 67 75 72 65 | me.data..The.system.is.configure |
| 12d580 | 64 20 74 6f 20 61 74 74 65 6d 70 74 20 64 6f 6d 61 69 6e 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 69 | d.to.attempt.domain.completion.i |
| 12d5a0 | 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6f 72 64 65 72 3a 20 76 79 6f 73 2e 69 6f 20 28 | n.the.following.order:.vyos.io.( |
| 12d5c0 | 66 69 72 73 74 29 2c 20 76 79 6f 73 2e 6e 65 74 20 28 73 65 63 6f 6e 64 29 20 61 6e 64 20 76 79 | first),.vyos.net.(second).and.vy |
| 12d5e0 | 6f 73 2e 6e 65 74 77 6f 72 6b 20 28 6c 61 73 74 29 3a 00 54 68 65 20 74 61 62 6c 65 20 63 6f 6e | os.network.(last):.The.table.con |
| 12d600 | 73 69 73 74 73 20 6f 66 20 66 6f 6c 6c 6f 77 69 6e 67 20 64 61 74 61 3a 00 54 68 65 20 74 61 73 | sists.of.following.data:.The.tas |
| 12d620 | 6b 20 73 63 68 65 64 75 6c 65 72 20 61 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 65 78 65 63 75 74 | k.scheduler.allows.you.to.execut |
| 12d640 | 65 20 74 61 73 6b 73 20 6f 6e 20 61 20 67 69 76 65 6e 20 73 63 68 65 64 75 6c 65 2e 20 49 74 20 | e.tasks.on.a.given.schedule..It. |
| 12d660 | 6d 61 6b 65 73 20 75 73 65 20 6f 66 20 55 4e 49 58 20 63 72 6f 6e 5f 2e 00 54 68 65 20 74 72 61 | makes.use.of.UNIX.cron_..The.tra |
| 12d680 | 6e 73 6c 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 6d 75 73 74 20 62 65 20 73 65 74 20 74 6f 20 | nslation.address.must.be.set.to. |
| 12d6a0 | 6f 6e 65 20 6f 66 20 74 68 65 20 61 76 61 69 6c 61 62 6c 65 20 61 64 64 72 65 73 73 65 73 20 6f | one.of.the.available.addresses.o |
| 12d6c0 | 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 60 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 | n.the.configured.`outbound-inter |
| 12d6e0 | 66 61 63 65 60 20 6f 72 20 69 74 20 6d 75 73 74 20 62 65 20 73 65 74 20 74 6f 20 60 6d 61 73 71 | face`.or.it.must.be.set.to.`masq |
| 12d700 | 75 65 72 61 64 65 60 20 77 68 69 63 68 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 70 72 69 6d 61 | uerade`.which.will.use.the.prima |
| 12d720 | 72 79 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 60 6f 75 74 62 6f 75 6e 64 2d 69 | ry.IP.address.of.the.`outbound-i |
| 12d740 | 6e 74 65 72 66 61 63 65 60 20 61 73 20 69 74 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 61 64 64 | nterface`.as.its.translation.add |
| 12d760 | 72 65 73 73 2e 00 54 68 65 20 74 75 6e 6e 65 6c 20 77 69 6c 6c 20 75 73 65 20 31 30 2e 32 35 35 | ress..The.tunnel.will.use.10.255 |
| 12d780 | 2e 31 2e 31 20 66 6f 72 20 74 68 65 20 6c 6f 63 61 6c 20 49 50 20 61 6e 64 20 31 30 2e 32 35 35 | .1.1.for.the.local.IP.and.10.255 |
| 12d7a0 | 2e 31 2e 32 20 66 6f 72 20 74 68 65 20 72 65 6d 6f 74 65 2e 00 54 68 65 20 74 79 70 65 20 63 61 | .1.2.for.the.remote..The.type.ca |
| 12d7c0 | 6e 20 62 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 3a 20 61 73 62 72 2d 73 75 6d 6d 61 72 79 | n.be.the.following:.asbr-summary |
| 12d7e0 | 2c 20 65 78 74 65 72 6e 61 6c 2c 20 6e 65 74 77 6f 72 6b 2c 20 6e 73 73 61 2d 65 78 74 65 72 6e | ,.external,.network,.nssa-extern |
| 12d800 | 61 6c 2c 20 6f 70 61 71 75 65 2d 61 72 65 61 2c 20 6f 70 61 71 75 65 2d 61 73 2c 20 6f 70 61 71 | al,.opaque-area,.opaque-as,.opaq |
| 12d820 | 75 65 2d 6c 69 6e 6b 2c 20 72 6f 75 74 65 72 2c 20 73 75 6d 6d 61 72 79 2e 00 54 68 65 20 75 6c | ue-link,.router,.summary..The.ul |
| 12d840 | 74 69 6d 61 74 65 20 67 6f 61 6c 20 6f 66 20 63 6c 61 73 73 69 66 79 69 6e 67 20 74 72 61 66 66 | timate.goal.of.classifying.traff |
| 12d860 | 69 63 20 69 73 20 74 6f 20 67 69 76 65 20 65 61 63 68 20 63 6c 61 73 73 20 61 20 64 69 66 66 65 | ic.is.to.give.each.class.a.diffe |
| 12d880 | 72 65 6e 74 20 74 72 65 61 74 6d 65 6e 74 2e 00 54 68 65 20 75 73 65 20 6f 66 20 49 50 6f 45 20 | rent.treatment..The.use.of.IPoE. |
| 12d8a0 | 61 64 64 72 65 73 73 65 73 20 74 68 65 20 64 69 73 61 64 76 61 6e 74 61 67 65 20 74 68 61 74 20 | addresses.the.disadvantage.that. |
| 12d8c0 | 50 50 50 20 69 73 20 75 6e 73 75 69 74 65 64 20 66 6f 72 20 6d 75 6c 74 69 63 61 73 74 20 64 65 | PPP.is.unsuited.for.multicast.de |
| 12d8e0 | 6c 69 76 65 72 79 20 74 6f 20 6d 75 6c 74 69 70 6c 65 20 75 73 65 72 73 2e 20 54 79 70 69 63 61 | livery.to.multiple.users..Typica |
| 12d900 | 6c 6c 79 2c 20 49 50 6f 45 20 75 73 65 73 20 44 79 6e 61 6d 69 63 20 48 6f 73 74 20 43 6f 6e 66 | lly,.IPoE.uses.Dynamic.Host.Conf |
| 12d920 | 69 67 75 72 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 20 61 6e 64 20 45 78 74 65 6e 73 69 62 6c | iguration.Protocol.and.Extensibl |
| 12d940 | 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 20 74 6f 20 70 72 6f | e.Authentication.Protocol.to.pro |
| 12d960 | 76 69 64 65 20 74 68 65 20 73 61 6d 65 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 61 73 20 50 | vide.the.same.functionality.as.P |
| 12d980 | 50 50 6f 45 2c 20 62 75 74 20 69 6e 20 61 20 6c 65 73 73 20 72 6f 62 75 73 74 20 6d 61 6e 6e 65 | PPoE,.but.in.a.less.robust.manne |
| 12d9a0 | 72 2e 00 54 68 65 20 76 61 6c 75 65 20 6f 66 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 | r..The.value.of.the.attribute.`` |
| 12d9c0 | 4e 41 53 2d 50 6f 72 74 2d 49 64 60 60 20 6d 75 73 74 20 62 65 20 6c 65 73 73 20 74 68 61 6e 20 | NAS-Port-Id``.must.be.less.than. |
| 12d9e0 | 31 36 20 63 68 61 72 61 63 74 65 72 73 2c 20 6f 74 68 65 72 77 69 73 65 20 74 68 65 20 69 6e 74 | 16.characters,.otherwise.the.int |
| 12da00 | 65 72 66 61 63 65 20 77 6f 6e 27 74 20 62 65 20 72 65 6e 61 6d 65 64 2e 00 54 68 65 20 76 65 6e | erface.won't.be.renamed..The.ven |
| 12da20 | 64 6f 72 2d 63 6c 61 73 73 2d 69 64 20 6f 70 74 69 6f 6e 20 63 61 6e 20 62 65 20 75 73 65 64 20 | dor-class-id.option.can.be.used. |
| 12da40 | 74 6f 20 72 65 71 75 65 73 74 20 61 20 73 70 65 63 69 66 69 63 20 63 6c 61 73 73 20 6f 66 20 76 | to.request.a.specific.class.of.v |
| 12da60 | 65 6e 64 6f 72 20 6f 70 74 69 6f 6e 73 20 66 72 6f 6d 20 74 68 65 20 73 65 72 76 65 72 2e 00 54 | endor.options.from.the.server..T |
| 12da80 | 68 65 20 76 65 74 68 20 64 65 76 69 63 65 73 20 61 72 65 20 76 69 72 74 75 61 6c 20 45 74 68 65 | he.veth.devices.are.virtual.Ethe |
| 12daa0 | 72 6e 65 74 20 64 65 76 69 63 65 73 2e 20 54 68 65 79 20 63 61 6e 20 61 63 74 20 61 73 20 74 75 | rnet.devices..They.can.act.as.tu |
| 12dac0 | 6e 6e 65 6c 73 20 62 65 74 77 65 65 6e 20 6e 65 74 77 6f 72 6b 20 6e 61 6d 65 73 70 61 63 65 73 | nnels.between.network.namespaces |
| 12dae0 | 20 74 6f 20 63 72 65 61 74 65 20 61 20 62 72 69 64 67 65 20 74 6f 20 61 20 70 68 79 73 69 63 61 | .to.create.a.bridge.to.a.physica |
| 12db00 | 6c 20 6e 65 74 77 6f 72 6b 20 64 65 76 69 63 65 20 69 6e 20 61 6e 6f 74 68 65 72 20 6e 61 6d 65 | l.network.device.in.another.name |
| 12db20 | 73 70 61 63 65 20 6f 72 20 56 52 46 2c 20 62 75 74 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 75 73 | space.or.VRF,.but.can.also.be.us |
| 12db40 | 65 64 20 61 73 20 73 74 61 6e 64 61 6c 6f 6e 65 20 6e 65 74 77 6f 72 6b 20 64 65 76 69 63 65 73 | ed.as.standalone.network.devices |
| 12db60 | 2e 00 54 68 65 20 77 65 6c 6c 20 6b 6e 6f 77 6e 20 4e 41 54 36 34 20 70 72 65 66 69 78 20 69 73 | ..The.well.known.NAT64.prefix.is |
| 12db80 | 20 60 60 36 34 3a 66 66 39 62 3a 3a 2f 39 36 60 60 00 54 68 65 20 77 69 6e 64 6f 77 20 73 69 7a | .``64:ff9b::/96``.The.window.siz |
| 12dba0 | 65 20 6d 75 73 74 20 62 65 20 62 65 74 77 65 65 6e 20 31 20 61 6e 64 20 32 31 2e 00 54 68 65 20 | e.must.be.between.1.and.21..The. |
| 12dbc0 | 77 69 72 65 6c 65 73 73 20 63 6c 69 65 6e 74 20 28 73 75 70 70 6c 69 63 61 6e 74 29 20 61 75 74 | wireless.client.(supplicant).aut |
| 12dbe0 | 68 65 6e 74 69 63 61 74 65 73 20 61 67 61 69 6e 73 74 20 74 68 65 20 52 41 44 49 55 53 20 73 65 | henticates.against.the.RADIUS.se |
| 12dc00 | 72 76 65 72 20 28 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 65 72 76 65 72 29 20 75 73 69 | rver.(authentication.server).usi |
| 12dc20 | 6e 67 20 61 6e 20 3a 61 62 62 72 3a 60 45 41 50 20 28 45 78 74 65 6e 73 69 62 6c 65 20 41 75 74 | ng.an.:abbr:`EAP.(Extensible.Aut |
| 12dc40 | 68 65 6e 74 69 63 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 29 60 20 20 6d 65 74 68 6f 64 20 63 | hentication.Protocol)`..method.c |
| 12dc60 | 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 20 | onfigured.on.the.RADIUS.server.. |
| 12dc80 | 54 68 65 20 57 41 50 20 28 61 6c 73 6f 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 61 75 74 | The.WAP.(also.referred.to.as.aut |
| 12dca0 | 68 65 6e 74 69 63 61 74 6f 72 29 20 72 6f 6c 65 20 69 73 20 74 6f 20 73 65 6e 64 20 61 6c 6c 20 | henticator).role.is.to.send.all. |
| 12dcc0 | 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 65 73 73 61 67 65 73 20 62 65 74 77 65 65 6e 20 | authentication.messages.between. |
| 12dce0 | 74 68 65 20 73 75 70 70 6c 69 63 61 6e 74 20 61 6e 64 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 | the.supplicant.and.the.configure |
| 12dd00 | 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 65 72 76 65 72 2c 20 74 68 75 73 20 74 68 | d.authentication.server,.thus.th |
| 12dd20 | 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 69 73 20 72 65 73 70 6f 6e 73 69 62 6c 65 20 66 | e.RADIUS.server.is.responsible.f |
| 12dd40 | 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 74 68 65 20 75 73 65 72 73 2e 00 54 68 65 | or.authenticating.the.users..The |
| 12dd60 | 20 77 69 72 65 6c 65 73 73 20 63 6c 69 65 6e 74 20 28 73 75 70 70 6c 69 63 61 6e 74 29 20 61 75 | .wireless.client.(supplicant).au |
| 12dd80 | 74 68 65 6e 74 69 63 61 74 65 73 20 61 67 61 69 6e 73 74 20 74 68 65 20 52 41 44 49 55 53 20 73 | thenticates.against.the.RADIUS.s |
| 12dda0 | 65 72 76 65 72 20 28 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 65 72 76 65 72 29 20 75 73 | erver.(authentication.server).us |
| 12ddc0 | 69 6e 67 20 61 6e 20 3a 61 62 62 72 3a 60 45 41 50 20 28 45 78 74 65 6e 73 69 62 6c 65 20 41 75 | ing.an.:abbr:`EAP.(Extensible.Au |
| 12dde0 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 29 60 20 6d 65 74 68 6f 64 20 63 | thentication.Protocol)`.method.c |
| 12de00 | 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 20 | onfigured.on.the.RADIUS.server.. |
| 12de20 | 54 68 65 20 57 41 50 20 28 61 6c 73 6f 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 61 75 74 | The.WAP.(also.referred.to.as.aut |
| 12de40 | 68 65 6e 74 69 63 61 74 6f 72 29 20 72 6f 6c 65 20 69 73 20 74 6f 20 73 65 6e 64 20 61 6c 6c 20 | henticator).role.is.to.send.all. |
| 12de60 | 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 65 73 73 61 67 65 73 20 62 65 74 77 65 65 6e 20 | authentication.messages.between. |
| 12de80 | 74 68 65 20 73 75 70 70 6c 69 63 61 6e 74 20 61 6e 64 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 | the.supplicant.and.the.configure |
| 12dea0 | 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 65 72 76 65 72 2c 20 74 68 75 73 20 74 68 | d.authentication.server,.thus.th |
| 12dec0 | 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 69 73 20 72 65 73 70 6f 6e 73 69 62 6c 65 20 66 | e.RADIUS.server.is.responsible.f |
| 12dee0 | 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 74 68 65 20 75 73 65 72 73 2e 00 54 68 65 | or.authenticating.the.users..The |
| 12df00 | 20 77 72 69 74 69 6e 67 20 6f 66 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 6f | .writing.of.the.configuration.to |
| 12df20 | 20 74 68 65 20 73 65 63 6f 6e 64 61 72 79 20 72 6f 75 74 65 72 20 69 73 20 70 65 72 66 6f 72 6d | .the.secondary.router.is.perform |
| 12df40 | 65 64 20 74 68 72 6f 75 67 68 20 74 68 65 20 56 79 4f 53 20 48 54 54 50 20 41 50 49 2e 20 54 68 | ed.through.the.VyOS.HTTP.API..Th |
| 12df60 | 65 20 75 73 65 72 20 63 61 6e 20 73 70 65 63 69 66 79 20 77 68 69 63 68 20 70 6f 72 74 69 6f 6e | e.user.can.specify.which.portion |
| 12df80 | 28 73 29 20 6f 66 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 69 6c 6c 20 62 65 | (s).of.the.configuration.will.be |
| 12dfa0 | 20 73 79 6e 63 68 72 6f 6e 69 7a 65 64 20 61 6e 64 20 74 68 65 20 6d 6f 64 65 20 74 6f 20 75 73 | .synchronized.and.the.mode.to.us |
| 12dfc0 | 65 20 2d 20 77 68 65 74 68 65 72 20 74 6f 20 72 65 70 6c 61 63 65 20 6f 72 20 61 64 64 2e 00 54 | e.-.whether.to.replace.or.add..T |
| 12dfe0 | 68 65 6e 20 61 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e 67 20 53 4e 41 54 20 72 75 6c 65 20 69 73 | hen.a.corresponding.SNAT.rule.is |
| 12e000 | 20 63 72 65 61 74 65 64 20 74 6f 20 4e 41 54 20 6f 75 74 67 6f 69 6e 67 20 74 72 61 66 66 69 63 | .created.to.NAT.outgoing.traffic |
| 12e020 | 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 49 50 20 74 6f 20 61 20 72 65 73 65 72 76 | .for.the.internal.IP.to.a.reserv |
| 12e040 | 65 64 20 65 78 74 65 72 6e 61 6c 20 49 50 2e 20 54 68 69 73 20 64 65 64 69 63 61 74 65 73 20 61 | ed.external.IP..This.dedicates.a |
| 12e060 | 6e 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 61 6e 20 69 6e 74 65 | n.external.IP.address.to.an.inte |
| 12e080 | 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 61 6e 64 20 69 73 20 75 73 65 66 75 6c 20 66 6f | rnal.IP.address.and.is.useful.fo |
| 12e0a0 | 72 20 70 72 6f 74 6f 63 6f 6c 73 20 77 68 69 63 68 20 64 6f 6e 27 74 20 68 61 76 65 20 74 68 65 | r.protocols.which.don't.have.the |
| 12e0c0 | 20 6e 6f 74 69 6f 6e 20 6f 66 20 70 6f 72 74 73 2c 20 73 75 63 68 20 61 73 20 47 52 45 2e 00 54 | .notion.of.ports,.such.as.GRE..T |
| 12e0e0 | 68 65 6e 20 77 65 20 6e 65 65 64 20 74 6f 20 67 65 6e 65 72 61 74 65 2c 20 61 64 64 20 61 6e 64 | hen.we.need.to.generate,.add.and |
| 12e100 | 20 73 70 65 63 69 66 79 20 74 68 65 20 6e 61 6d 65 73 20 6f 66 20 74 68 65 20 63 72 79 70 74 6f | .specify.the.names.of.the.crypto |
| 12e120 | 67 72 61 70 68 69 63 20 6d 61 74 65 72 69 61 6c 73 2e 20 45 61 63 68 20 6f 66 20 74 68 65 20 69 | graphic.materials..Each.of.the.i |
| 12e140 | 6e 73 74 61 6c 6c 20 63 6f 6d 6d 61 6e 64 20 73 68 6f 75 6c 64 20 62 65 20 61 70 70 6c 69 65 64 | nstall.command.should.be.applied |
| 12e160 | 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 6e 64 20 63 6f 6d 6d 69 74 | .to.the.configuration.and.commit |
| 12e180 | 65 64 20 62 65 66 6f 72 65 20 75 73 69 6e 67 20 75 6e 64 65 72 20 74 68 65 20 6f 70 65 6e 76 70 | ed.before.using.under.the.openvp |
| 12e1a0 | 6e 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 68 65 6e 20 | n.interface.configuration..Then. |
| 12e1c0 | 77 65 20 6e 65 65 64 20 74 6f 20 67 65 6e 65 72 61 74 65 2c 20 61 64 64 20 61 6e 64 20 73 70 65 | we.need.to.generate,.add.and.spe |
| 12e1e0 | 63 69 66 79 20 74 68 65 20 6e 61 6d 65 73 20 6f 66 20 74 68 65 20 63 72 79 70 74 6f 67 72 61 70 | cify.the.names.of.the.cryptograp |
| 12e200 | 68 69 63 20 6d 61 74 65 72 69 61 6c 73 2e 20 45 61 63 68 20 6f 66 20 74 68 65 20 69 6e 73 74 61 | hic.materials..Each.of.the.insta |
| 12e220 | 6c 6c 20 63 6f 6d 6d 61 6e 64 73 20 73 68 6f 75 6c 64 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f | ll.commands.should.be.applied.to |
| 12e240 | 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 6e 64 20 63 6f 6d 6d 69 74 65 64 20 | .the.configuration.and.commited. |
| 12e260 | 62 65 66 6f 72 65 20 75 73 69 6e 67 20 75 6e 64 65 72 20 74 68 65 20 6f 70 65 6e 76 70 6e 20 69 | before.using.under.the.openvpn.i |
| 12e280 | 6e 74 65 72 66 61 63 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 68 65 6e 20 79 6f 75 | nterface.configuration..Then.you |
| 12e2a0 | 20 6e 65 65 64 20 74 6f 20 69 6e 73 74 61 6c 6c 20 74 68 65 20 6b 65 79 20 6f 6e 20 74 68 65 20 | .need.to.install.the.key.on.the. |
| 12e2c0 | 72 65 6d 6f 74 65 20 72 6f 75 74 65 72 3a 00 54 68 65 6e 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 | remote.router:.Then.you.need.to. |
| 12e2e0 | 73 65 74 20 74 68 65 20 6b 65 79 20 69 6e 20 79 6f 75 72 20 4f 70 65 6e 56 50 4e 20 69 6e 74 65 | set.the.key.in.your.OpenVPN.inte |
| 12e300 | 72 66 61 63 65 20 73 65 74 74 69 6e 67 73 3a 00 54 68 65 6e 2c 20 46 61 73 74 4e 65 74 4d 6f 6e | rface.settings:.Then,.FastNetMon |
| 12e320 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 54 68 65 72 65 20 61 72 65 20 33 20 64 65 66 61 | .configuration:.There.are.3.defa |
| 12e340 | 75 6c 74 20 4e 54 50 20 73 65 72 76 65 72 20 73 65 74 2e 20 59 6f 75 20 61 72 65 20 61 62 6c 65 | ult.NTP.server.set..You.are.able |
| 12e360 | 20 74 6f 20 63 68 61 6e 67 65 20 74 68 65 6d 2e 00 54 68 65 72 65 20 61 72 65 20 61 20 6c 6f 74 | .to.change.them..There.are.a.lot |
| 12e380 | 20 6f 66 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 61 67 61 69 6e 73 74 20 77 68 | .of.matching.criteria.against.wh |
| 12e3a0 | 69 63 68 20 74 68 65 20 70 61 63 6b 61 67 65 20 63 61 6e 20 62 65 20 74 65 73 74 65 64 2e 00 54 | ich.the.package.can.be.tested..T |
| 12e3c0 | 68 65 72 65 20 61 72 65 20 61 20 6c 6f 74 20 6f 66 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 | here.are.a.lot.of.matching.crite |
| 12e3e0 | 72 69 61 20 61 67 61 69 6e 73 74 20 77 68 69 63 68 20 74 68 65 20 70 61 63 6b 65 74 20 63 61 6e | ria.against.which.the.packet.can |
| 12e400 | 20 62 65 20 74 65 73 74 65 64 2e 00 54 68 65 72 65 20 61 72 65 20 61 20 6c 6f 74 20 6f 66 20 6d | .be.tested..There.are.a.lot.of.m |
| 12e420 | 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 61 67 61 69 6e 73 74 20 77 68 69 63 68 20 74 | atching.criteria.against.which.t |
| 12e440 | 68 65 20 70 61 63 6b 65 74 20 63 61 6e 20 62 65 20 74 65 73 74 65 64 2e 20 50 6c 65 61 73 65 20 | he.packet.can.be.tested..Please. |
| 12e460 | 72 65 66 65 72 20 74 6f 20 3a 64 6f 63 3a 60 49 50 76 34 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 | refer.to.:doc:`IPv4</configurati |
| 12e480 | 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 69 70 76 34 3e 60 20 61 6e 64 20 3a 64 6f 63 3a 60 49 50 76 | on/firewall/ipv4>`.and.:doc:`IPv |
| 12e4a0 | 36 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 69 70 76 36 3e 60 | 6</configuration/firewall/ipv6>` |
| 12e4c0 | 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 66 6f 72 20 6d 6f 72 65 20 64 65 74 61 | .matching.criteria.for.more.deta |
| 12e4e0 | 69 6c 73 2e 00 54 68 65 72 65 20 61 72 65 20 61 20 6c 6f 74 20 6f 66 20 6d 61 74 63 68 69 6e 67 | ils..There.are.a.lot.of.matching |
| 12e500 | 20 63 72 69 74 65 72 69 61 20 6f 70 74 69 6f 6e 73 20 61 76 61 69 6c 61 62 6c 65 2c 20 62 6f 74 | .criteria.options.available,.bot |
| 12e520 | 68 20 66 6f 72 20 60 60 70 6f 6c 69 63 79 20 72 6f 75 74 65 60 60 20 61 6e 64 20 60 60 70 6f 6c | h.for.``policy.route``.and.``pol |
| 12e540 | 69 63 79 20 72 6f 75 74 65 36 60 60 2e 20 54 68 65 73 65 20 6f 70 74 69 6f 6e 73 20 61 72 65 20 | icy.route6``..These.options.are. |
| 12e560 | 6c 69 73 74 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 2e 00 54 68 65 72 65 20 61 72 | listed.in.this.section..There.ar |
| 12e580 | 65 20 64 69 66 66 65 72 65 6e 74 20 70 61 72 61 6d 65 74 65 72 73 20 66 6f 72 20 67 65 74 74 69 | e.different.parameters.for.getti |
| 12e5a0 | 6e 67 20 70 72 65 66 69 78 2d 6c 69 73 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 3a 00 54 68 65 72 | ng.prefix-list.information:.Ther |
| 12e5c0 | 65 20 61 72 65 20 6c 69 6d 69 74 73 20 6f 6e 20 77 68 69 63 68 20 63 68 61 6e 6e 65 6c 73 20 63 | e.are.limits.on.which.channels.c |
| 12e5e0 | 61 6e 20 62 65 20 75 73 65 64 20 77 69 74 68 20 48 54 34 30 2d 20 61 6e 64 20 48 54 34 30 2b 2e | an.be.used.with.HT40-.and.HT40+. |
| 12e600 | 20 46 6f 6c 6c 6f 77 69 6e 67 20 74 61 62 6c 65 20 73 68 6f 77 73 20 74 68 65 20 63 68 61 6e 6e | .Following.table.shows.the.chann |
| 12e620 | 65 6c 73 20 74 68 61 74 20 6d 61 79 20 62 65 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 48 54 | els.that.may.be.available.for.HT |
| 12e640 | 34 30 2d 20 61 6e 64 20 48 54 34 30 2b 20 75 73 65 20 70 65 72 20 49 45 45 45 20 38 30 32 2e 31 | 40-.and.HT40+.use.per.IEEE.802.1 |
| 12e660 | 31 6e 20 41 6e 6e 65 78 20 4a 3a 00 54 68 65 72 65 20 61 72 65 20 6d 61 6e 79 20 70 61 72 61 6d | 1n.Annex.J:.There.are.many.param |
| 12e680 | 65 74 65 72 73 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 61 62 6c 65 20 74 6f 20 75 73 65 20 69 6e | eters.you.will.be.able.to.use.in |
| 12e6a0 | 20 6f 72 64 65 72 20 74 6f 20 6d 61 74 63 68 20 74 68 65 20 74 72 61 66 66 69 63 20 79 6f 75 20 | .order.to.match.the.traffic.you. |
| 12e6c0 | 77 61 6e 74 20 66 6f 72 20 61 20 63 6c 61 73 73 3a 00 54 68 65 72 65 20 61 72 65 20 6d 75 6c 74 | want.for.a.class:.There.are.mult |
| 12e6e0 | 69 70 6c 65 20 76 65 72 73 69 6f 6e 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 74 68 65 20 | iple.versions.available.for.the. |
| 12e700 | 4e 65 74 46 6c 6f 77 20 64 61 74 61 2e 20 54 68 65 20 60 3c 76 65 72 73 69 6f 6e 3e 60 20 75 73 | NetFlow.data..The.`<version>`.us |
| 12e720 | 65 64 20 69 6e 20 74 68 65 20 65 78 70 6f 72 74 65 64 20 66 6c 6f 77 20 64 61 74 61 20 63 61 6e | ed.in.the.exported.flow.data.can |
| 12e740 | 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 68 65 72 65 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 | .be.configured.here..The.followi |
| 12e760 | 6e 67 20 76 65 72 73 69 6f 6e 73 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 3a 00 54 68 65 72 65 | ng.versions.are.supported:.There |
| 12e780 | 20 61 72 65 20 72 61 74 65 2d 6c 69 6d 69 74 65 64 20 61 6e 64 20 6e 6f 6e 20 72 61 74 65 2d 6c | .are.rate-limited.and.non.rate-l |
| 12e7a0 | 69 6d 69 74 65 64 20 75 73 65 72 73 20 28 4d 41 43 73 29 00 54 68 65 72 65 20 61 72 65 20 73 6f | imited.users.(MACs).There.are.so |
| 12e7c0 | 6d 65 20 73 63 65 6e 61 72 69 6f 73 20 77 68 65 72 65 20 73 65 72 69 61 6c 20 63 6f 6e 73 6f 6c | me.scenarios.where.serial.consol |
| 12e7e0 | 65 73 20 61 72 65 20 75 73 65 66 75 6c 2e 20 53 79 73 74 65 6d 20 61 64 6d 69 6e 69 73 74 72 61 | es.are.useful..System.administra |
| 12e800 | 74 69 6f 6e 20 6f 66 20 72 65 6d 6f 74 65 20 63 6f 6d 70 75 74 65 72 73 20 69 73 20 75 73 75 61 | tion.of.remote.computers.is.usua |
| 12e820 | 6c 6c 79 20 64 6f 6e 65 20 75 73 69 6e 67 20 3a 72 65 66 3a 60 73 73 68 60 2c 20 62 75 74 20 74 | lly.done.using.:ref:`ssh`,.but.t |
| 12e840 | 68 65 72 65 20 61 72 65 20 74 69 6d 65 73 20 77 68 65 6e 20 61 63 63 65 73 73 20 74 6f 20 74 68 | here.are.times.when.access.to.th |
| 12e860 | 65 20 63 6f 6e 73 6f 6c 65 20 69 73 20 74 68 65 20 6f 6e 6c 79 20 77 61 79 20 74 6f 20 64 69 61 | e.console.is.the.only.way.to.dia |
| 12e880 | 67 6e 6f 73 65 20 61 6e 64 20 63 6f 72 72 65 63 74 20 73 6f 66 74 77 61 72 65 20 66 61 69 6c 75 | gnose.and.correct.software.failu |
| 12e8a0 | 72 65 73 2e 20 4d 61 6a 6f 72 20 75 70 67 72 61 64 65 73 20 74 6f 20 74 68 65 20 69 6e 73 74 61 | res..Major.upgrades.to.the.insta |
| 12e8c0 | 6c 6c 65 64 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 6d 61 79 20 61 6c 73 6f 20 72 65 71 75 69 | lled.distribution.may.also.requi |
| 12e8e0 | 72 65 20 63 6f 6e 73 6f 6c 65 20 61 63 63 65 73 73 2e 00 54 68 65 72 65 20 61 72 65 20 74 68 72 | re.console.access..There.are.thr |
| 12e900 | 65 65 20 6d 6f 64 65 73 20 6f 66 20 6f 70 65 72 61 74 69 6f 6e 20 66 6f 72 20 61 20 77 69 72 65 | ee.modes.of.operation.for.a.wire |
| 12e920 | 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 3a 00 54 68 65 72 65 20 61 72 65 20 74 77 6f 20 74 79 | less.interface:.There.are.two.ty |
| 12e940 | 70 65 73 20 6f 66 20 4e 65 74 77 6f 72 6b 20 41 64 6d 69 6e 73 20 77 68 6f 20 64 65 61 6c 20 77 | pes.of.Network.Admins.who.deal.w |
| 12e960 | 69 74 68 20 42 47 50 2c 20 74 68 6f 73 65 20 77 68 6f 20 68 61 76 65 20 63 72 65 61 74 65 64 20 | ith.BGP,.those.who.have.created. |
| 12e980 | 61 6e 20 69 6e 74 65 72 6e 61 74 69 6f 6e 61 6c 20 69 6e 63 69 64 65 6e 74 20 61 6e 64 2f 6f 72 | an.international.incident.and/or |
| 12e9a0 | 20 6f 75 74 61 67 65 2c 20 61 6e 64 20 74 68 6f 73 65 20 77 68 6f 20 61 72 65 20 6c 79 69 6e 67 | .outage,.and.those.who.are.lying |
| 12e9c0 | 00 54 68 65 72 65 20 61 72 65 20 74 77 6f 20 77 61 79 73 20 74 68 61 74 20 68 65 6c 70 20 75 73 | .There.are.two.ways.that.help.us |
| 12e9e0 | 20 74 6f 20 6d 69 74 69 67 61 74 65 20 74 68 65 20 42 47 50 73 20 66 75 6c 6c 2d 6d 65 73 68 20 | .to.mitigate.the.BGPs.full-mesh. |
| 12ea00 | 72 65 71 75 69 72 65 6d 65 6e 74 20 69 6e 20 61 20 6e 65 74 77 6f 72 6b 3a 00 54 68 65 72 65 20 | requirement.in.a.network:.There. |
| 12ea20 | 63 61 6e 20 6f 6e 6c 79 20 62 65 20 6f 6e 65 20 6c 6f 6f 70 62 61 63 6b 20 60 60 6c 6f 60 60 20 | can.only.be.one.loopback.``lo``. |
| 12ea40 | 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 20 49 66 20 79 6f 75 20 | interface.on.the.system..If.you. |
| 12ea60 | 6e 65 65 64 20 6d 75 6c 74 69 70 6c 65 20 69 6e 74 65 72 66 61 63 65 73 2c 20 70 6c 65 61 73 65 | need.multiple.interfaces,.please |
| 12ea80 | 20 75 73 65 20 74 68 65 20 3a 72 65 66 3a 60 64 75 6d 6d 79 2d 69 6e 74 65 72 66 61 63 65 60 20 | .use.the.:ref:`dummy-interface`. |
| 12eaa0 | 69 6e 74 65 72 66 61 63 65 20 74 79 70 65 2e 00 54 68 65 72 65 20 63 6f 75 6c 64 20 62 65 20 61 | interface.type..There.could.be.a |
| 12eac0 | 20 77 69 64 65 20 72 61 6e 67 65 20 6f 66 20 72 6f 75 74 69 6e 67 20 70 6f 6c 69 63 69 65 73 2e | .wide.range.of.routing.policies. |
| 12eae0 | 20 53 6f 6d 65 20 65 78 61 6d 70 6c 65 73 20 61 72 65 20 6c 69 73 74 65 64 20 62 65 6c 6f 77 3a | .Some.examples.are.listed.below: |
| 12eb00 | 00 54 68 65 72 65 20 69 73 20 61 20 76 65 72 79 20 6e 69 63 65 20 70 69 63 74 75 72 65 2f 65 78 | .There.is.a.very.nice.picture/ex |
| 12eb20 | 70 6c 61 6e 61 74 69 6f 6e 20 69 6e 20 74 68 65 20 56 79 61 74 74 61 20 64 6f 63 75 6d 65 6e 74 | planation.in.the.Vyatta.document |
| 12eb40 | 61 74 69 6f 6e 20 77 68 69 63 68 20 73 68 6f 75 6c 64 20 62 65 20 72 65 77 72 69 74 74 65 6e 20 | ation.which.should.be.rewritten. |
| 12eb60 | 68 65 72 65 2e 00 54 68 65 72 65 20 69 73 20 61 6c 73 6f 20 61 20 47 52 45 20 6f 76 65 72 20 49 | here..There.is.also.a.GRE.over.I |
| 12eb80 | 50 76 36 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 61 76 61 69 6c 61 62 6c 65 2c 20 69 74 20 | Pv6.encapsulation.available,.it. |
| 12eba0 | 69 73 20 63 61 6c 6c 65 64 3a 20 60 60 69 70 36 67 72 65 60 60 2e 00 54 68 65 72 65 20 69 73 20 | is.called:.``ip6gre``..There.is. |
| 12ebc0 | 61 6e 20 65 6e 74 69 72 65 20 63 68 61 70 74 65 72 20 61 62 6f 75 74 20 68 6f 77 20 74 6f 20 63 | an.entire.chapter.about.how.to.c |
| 12ebe0 | 6f 6e 66 69 67 75 72 65 20 61 20 3a 72 65 66 3a 60 76 72 66 60 2c 20 70 6c 65 61 73 65 20 63 68 | onfigure.a.:ref:`vrf`,.please.ch |
| 12ec00 | 65 63 6b 20 74 68 69 73 20 66 6f 72 20 61 64 64 69 74 69 6f 6e 61 6c 20 69 6e 66 6f 72 6d 61 74 | eck.this.for.additional.informat |
| 12ec20 | 69 6f 6e 2e 00 54 68 65 72 65 27 73 20 61 20 76 61 72 69 65 74 79 20 6f 66 20 63 6c 69 65 6e 74 | ion..There's.a.variety.of.client |
| 12ec40 | 20 47 55 49 20 66 72 6f 6e 74 65 6e 64 73 20 66 6f 72 20 61 6e 79 20 70 6c 61 74 66 6f 72 6d 00 | .GUI.frontends.for.any.platform. |
| 12ec60 | 54 68 65 73 65 20 61 72 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 72 20 61 20 62 61 73 | These.are.the.commands.for.a.bas |
| 12ec80 | 69 63 20 73 65 74 75 70 2e 00 54 68 65 73 65 20 63 6f 6d 6d 61 6e 64 73 20 61 6c 6c 6f 77 20 74 | ic.setup..These.commands.allow.t |
| 12eca0 | 68 65 20 56 4c 41 4e 31 30 20 61 6e 64 20 56 4c 41 4e 31 31 20 68 6f 73 74 73 20 74 6f 20 63 6f | he.VLAN10.and.VLAN11.hosts.to.co |
| 12ecc0 | 6d 6d 75 6e 69 63 61 74 65 20 77 69 74 68 20 65 61 63 68 20 6f 74 68 65 72 20 75 73 69 6e 67 20 | mmunicate.with.each.other.using. |
| 12ece0 | 74 68 65 20 6d 61 69 6e 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 00 54 68 65 73 65 20 63 6f | the.main.routing.table..These.co |
| 12ed00 | 6d 6d 61 6e 64 73 20 63 72 65 61 74 65 20 61 20 66 6c 65 78 69 62 6c 65 20 69 6e 74 65 72 66 61 | mmands.create.a.flexible.interfa |
| 12ed20 | 63 65 20 66 6f 72 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 74 68 65 20 53 75 72 69 63 61 74 61 20 | ce.for.configuring.the.Suricata. |
| 12ed40 | 73 65 72 76 69 63 65 2c 20 61 6c 6c 6f 77 69 6e 67 20 75 73 65 72 73 20 74 6f 20 73 70 65 63 69 | service,.allowing.users.to.speci |
| 12ed60 | 66 79 20 61 64 64 72 65 73 73 65 73 2c 20 70 6f 72 74 73 2c 20 61 6e 64 20 6c 6f 67 67 69 6e 67 | fy.addresses,.ports,.and.logging |
| 12ed80 | 20 70 61 72 61 6d 65 74 65 72 73 2e 00 54 68 65 73 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | .parameters..These.configuration |
| 12eda0 | 20 69 73 20 6e 6f 74 20 6d 61 6e 64 61 74 6f 72 79 20 61 6e 64 20 69 6e 20 6d 6f 73 74 20 63 61 | .is.not.mandatory.and.in.most.ca |
| 12edc0 | 73 65 73 20 74 68 65 72 65 27 73 20 6e 6f 20 6e 65 65 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 | ses.there's.no.need.to.configure |
| 12ede0 | 20 69 74 2e 20 42 75 74 20 69 66 20 6e 65 63 65 73 73 61 72 79 2c 20 47 72 61 74 75 69 74 6f 75 | .it..But.if.necessary,.Gratuitou |
| 12ee00 | 73 20 41 52 50 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 60 60 67 6c 6f | s.ARP.can.be.configured.in.``glo |
| 12ee20 | 62 61 6c 2d 70 61 72 61 6d 65 74 65 72 73 60 60 20 61 6e 64 2f 6f 72 20 69 6e 20 60 60 67 72 6f | bal-parameters``.and/or.in.``gro |
| 12ee40 | 75 70 60 60 20 73 65 63 74 69 6f 6e 2e 00 54 68 65 73 65 20 70 61 72 61 6d 65 74 65 72 73 20 61 | up``.section..These.parameters.a |
| 12ee60 | 72 65 20 70 61 73 73 65 64 20 61 73 2d 69 73 20 74 6f 20 69 73 63 2d 64 68 63 70 27 73 20 64 68 | re.passed.as-is.to.isc-dhcp's.dh |
| 12ee80 | 63 70 64 2e 63 6f 6e 66 20 75 6e 64 65 72 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | cpd.conf.under.the.configuration |
| 12eea0 | 20 6e 6f 64 65 20 74 68 65 79 20 61 72 65 20 64 65 66 69 6e 65 64 20 69 6e 2e 20 54 68 65 79 20 | .node.they.are.defined.in..They. |
| 12eec0 | 61 72 65 20 6e 6f 74 20 76 61 6c 69 64 61 74 65 64 20 73 6f 20 61 6e 20 65 72 72 6f 72 20 69 6e | are.not.validated.so.an.error.in |
| 12eee0 | 20 74 68 65 20 72 61 77 20 70 61 72 61 6d 65 74 65 72 73 20 77 6f 6e 27 74 20 62 65 20 63 61 75 | .the.raw.parameters.won't.be.cau |
| 12ef00 | 67 68 74 20 62 79 20 76 79 6f 73 27 73 20 73 63 72 69 70 74 73 20 61 6e 64 20 77 69 6c 6c 20 63 | ght.by.vyos's.scripts.and.will.c |
| 12ef20 | 61 75 73 65 20 64 68 63 70 64 20 74 6f 20 66 61 69 6c 20 74 6f 20 73 74 61 72 74 2e 20 41 6c 77 | ause.dhcpd.to.fail.to.start..Alw |
| 12ef40 | 61 79 73 20 76 65 72 69 66 79 20 74 68 61 74 20 74 68 65 20 70 61 72 61 6d 65 74 65 72 73 20 61 | ays.verify.that.the.parameters.a |
| 12ef60 | 72 65 20 63 6f 72 72 65 63 74 20 62 65 66 6f 72 65 20 63 6f 6d 6d 69 74 74 69 6e 67 20 74 68 65 | re.correct.before.committing.the |
| 12ef80 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 52 65 66 65 72 20 74 6f 20 69 73 63 2d 64 68 63 | .configuration..Refer.to.isc-dhc |
| 12efa0 | 70 27 73 20 64 68 63 70 64 2e 63 6f 6e 66 20 6d 61 6e 75 61 6c 20 66 6f 72 20 6d 6f 72 65 20 69 | p's.dhcpd.conf.manual.for.more.i |
| 12efc0 | 6e 66 6f 72 6d 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 6b 62 2e 69 73 63 2e 6f 72 67 2f 64 | nformation:.https://kb.isc.org/d |
| 12efe0 | 6f 63 73 2f 69 73 63 2d 64 68 63 70 2d 34 34 2d 6d 61 6e 75 61 6c 2d 70 61 67 65 73 2d 64 68 63 | ocs/isc-dhcp-44-manual-pages-dhc |
| 12f000 | 70 64 63 6f 6e 66 00 54 68 65 73 65 20 70 61 72 61 6d 65 74 65 72 73 20 6e 65 65 64 20 74 6f 20 | pdconf.These.parameters.need.to. |
| 12f020 | 62 65 20 70 61 72 74 20 6f 66 20 74 68 65 20 44 48 43 50 20 67 6c 6f 62 61 6c 20 6f 70 74 69 6f | be.part.of.the.DHCP.global.optio |
| 12f040 | 6e 73 2e 20 54 68 65 79 20 73 74 61 79 20 75 6e 63 68 61 6e 67 65 64 2e 00 54 68 65 79 20 63 61 | ns..They.stay.unchanged..They.ca |
| 12f060 | 6e 20 62 65 20 2a 2a 64 65 63 69 6d 61 6c 2a 2a 20 70 72 65 66 69 78 65 73 2e 00 54 68 69 6e 67 | n.be.**decimal**.prefixes..Thing |
| 12f080 | 73 20 74 6f 20 62 65 20 63 6f 6e 73 69 64 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 74 75 70 | s.to.be.considered.in.this.setup |
| 12f0a0 | 3a 00 54 68 69 6e 67 73 20 74 6f 20 62 65 20 63 6f 6e 73 69 64 72 65 64 20 69 6e 20 74 68 69 73 | :.Things.to.be.considred.in.this |
| 12f0c0 | 20 73 65 74 75 70 3a 00 54 68 69 73 20 61 64 64 72 65 73 73 20 6d 75 73 74 20 62 65 20 74 68 65 | .setup:.This.address.must.be.the |
| 12f0e0 | 20 61 64 64 72 65 73 73 20 6f 66 20 61 20 6c 6f 63 61 6c 20 69 6e 74 65 72 66 61 63 65 2e 20 49 | .address.of.a.local.interface..I |
| 12f100 | 74 20 6d 61 79 20 62 65 20 73 70 65 63 69 66 69 65 64 20 61 73 20 61 6e 20 49 50 76 34 20 61 64 | t.may.be.specified.as.an.IPv4.ad |
| 12f120 | 64 72 65 73 73 20 6f 72 20 61 6e 20 49 50 76 36 20 61 64 64 72 65 73 73 2e 00 54 68 69 73 20 61 | dress.or.an.IPv6.address..This.a |
| 12f140 | 6c 67 6f 72 69 74 68 6d 20 69 73 20 38 30 32 2e 33 61 64 20 63 6f 6d 70 6c 69 61 6e 74 2e 00 54 | lgorithm.is.802.3ad.compliant..T |
| 12f160 | 68 69 73 20 61 6c 67 6f 72 69 74 68 6d 20 69 73 20 6e 6f 74 20 66 75 6c 6c 79 20 38 30 32 2e 33 | his.algorithm.is.not.fully.802.3 |
| 12f180 | 61 64 20 63 6f 6d 70 6c 69 61 6e 74 2e 20 41 20 73 69 6e 67 6c 65 20 54 43 50 20 6f 72 20 55 44 | ad.compliant..A.single.TCP.or.UD |
| 12f1a0 | 50 20 63 6f 6e 76 65 72 73 61 74 69 6f 6e 20 63 6f 6e 74 61 69 6e 69 6e 67 20 62 6f 74 68 20 66 | P.conversation.containing.both.f |
| 12f1c0 | 72 61 67 6d 65 6e 74 65 64 20 61 6e 64 20 75 6e 66 72 61 67 6d 65 6e 74 65 64 20 70 61 63 6b 65 | ragmented.and.unfragmented.packe |
| 12f1e0 | 74 73 20 77 69 6c 6c 20 73 65 65 20 70 61 63 6b 65 74 73 20 73 74 72 69 70 65 64 20 61 63 72 6f | ts.will.see.packets.striped.acro |
| 12f200 | 73 73 20 74 77 6f 20 69 6e 74 65 72 66 61 63 65 73 2e 20 54 68 69 73 20 6d 61 79 20 72 65 73 75 | ss.two.interfaces..This.may.resu |
| 12f220 | 6c 74 20 69 6e 20 6f 75 74 20 6f 66 20 6f 72 64 65 72 20 64 65 6c 69 76 65 72 79 2e 20 4d 6f 73 | lt.in.out.of.order.delivery..Mos |
| 12f240 | 74 20 74 72 61 66 66 69 63 20 74 79 70 65 73 20 77 69 6c 6c 20 6e 6f 74 20 6d 65 65 74 20 74 68 | t.traffic.types.will.not.meet.th |
| 12f260 | 65 73 65 20 63 72 69 74 65 72 69 61 2c 20 61 73 20 54 43 50 20 72 61 72 65 6c 79 20 66 72 61 67 | ese.criteria,.as.TCP.rarely.frag |
| 12f280 | 6d 65 6e 74 73 20 74 72 61 66 66 69 63 2c 20 61 6e 64 20 6d 6f 73 74 20 55 44 50 20 74 72 61 66 | ments.traffic,.and.most.UDP.traf |
| 12f2a0 | 66 69 63 20 69 73 20 6e 6f 74 20 69 6e 76 6f 6c 76 65 64 20 69 6e 20 65 78 74 65 6e 64 65 64 20 | fic.is.not.involved.in.extended. |
| 12f2c0 | 63 6f 6e 76 65 72 73 61 74 69 6f 6e 73 2e 20 4f 74 68 65 72 20 69 6d 70 6c 65 6d 65 6e 74 61 74 | conversations..Other.implementat |
| 12f2e0 | 69 6f 6e 73 20 6f 66 20 38 30 32 2e 33 61 64 20 6d 61 79 20 6f 72 20 6d 61 79 20 6e 6f 74 20 74 | ions.of.802.3ad.may.or.may.not.t |
| 12f300 | 6f 6c 65 72 61 74 65 20 74 68 69 73 20 6e 6f 6e 63 6f 6d 70 6c 69 61 6e 63 65 2e 00 54 68 69 73 | olerate.this.noncompliance..This |
| 12f320 | 20 61 6c 67 6f 72 69 74 68 6d 20 77 69 6c 6c 20 70 6c 61 63 65 20 61 6c 6c 20 74 72 61 66 66 69 | .algorithm.will.place.all.traffi |
| 12f340 | 63 20 74 6f 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 6e 65 74 77 6f 72 6b 20 70 65 65 72 20 6f | c.to.a.particular.network.peer.o |
| 12f360 | 6e 20 74 68 65 20 73 61 6d 65 20 73 6c 61 76 65 2e 00 54 68 69 73 20 61 6c 67 6f 72 69 74 68 6d | n.the.same.slave..This.algorithm |
| 12f380 | 20 77 69 6c 6c 20 70 6c 61 63 65 20 61 6c 6c 20 74 72 61 66 66 69 63 20 74 6f 20 61 20 70 61 72 | .will.place.all.traffic.to.a.par |
| 12f3a0 | 74 69 63 75 6c 61 72 20 6e 65 74 77 6f 72 6b 20 70 65 65 72 20 6f 6e 20 74 68 65 20 73 61 6d 65 | ticular.network.peer.on.the.same |
| 12f3c0 | 20 73 6c 61 76 65 2e 20 46 6f 72 20 6e 6f 6e 2d 49 50 20 74 72 61 66 66 69 63 2c 20 74 68 65 20 | .slave..For.non-IP.traffic,.the. |
| 12f3e0 | 66 6f 72 6d 75 6c 61 20 69 73 20 74 68 65 20 73 61 6d 65 20 61 73 20 66 6f 72 20 74 68 65 20 6c | formula.is.the.same.as.for.the.l |
| 12f400 | 61 79 65 72 32 20 74 72 61 6e 73 6d 69 74 20 68 61 73 68 20 70 6f 6c 69 63 79 2e 00 54 68 69 73 | ayer2.transmit.hash.policy..This |
| 12f420 | 20 61 6c 6c 6f 77 73 20 61 76 6f 69 64 69 6e 67 20 74 68 65 20 74 69 6d 65 72 73 20 64 65 66 69 | .allows.avoiding.the.timers.defi |
| 12f440 | 6e 65 64 20 69 6e 20 42 47 50 20 61 6e 64 20 4f 53 50 46 20 70 72 6f 74 6f 63 6f 6c 20 74 6f 20 | ned.in.BGP.and.OSPF.protocol.to. |
| 12f460 | 65 78 70 69 72 65 73 2e 00 54 68 69 73 20 61 6c 6c 6f 77 73 20 74 68 65 20 6f 70 65 72 61 74 6f | expires..This.allows.the.operato |
| 12f480 | 72 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 6f 70 65 6e 20 | r.to.control.the.number.of.open. |
| 12f4a0 | 66 69 6c 65 20 64 65 73 63 72 69 70 74 6f 72 73 20 65 61 63 68 20 64 61 65 6d 6f 6e 20 69 73 20 | file.descriptors.each.daemon.is. |
| 12f4c0 | 61 6c 6c 6f 77 65 64 20 74 6f 20 73 74 61 72 74 20 77 69 74 68 2e 20 49 66 20 74 68 65 20 6f 70 | allowed.to.start.with..If.the.op |
| 12f4e0 | 65 72 61 74 6f 72 20 70 6c 61 6e 73 20 74 6f 20 72 75 6e 20 62 67 70 20 77 69 74 68 20 73 65 76 | erator.plans.to.run.bgp.with.sev |
| 12f500 | 65 72 61 6c 20 74 68 6f 75 73 61 6e 64 73 20 6f 66 20 70 65 65 72 73 20 74 68 65 6e 20 74 68 69 | eral.thousands.of.peers.then.thi |
| 12f520 | 73 20 69 73 20 77 68 65 72 65 20 77 65 20 77 6f 75 6c 64 20 6d 6f 64 69 66 79 20 46 52 52 20 74 | s.is.where.we.would.modify.FRR.t |
| 12f540 | 6f 20 61 6c 6c 6f 77 20 74 68 69 73 20 74 6f 20 68 61 70 70 65 6e 2e 00 54 68 69 73 20 61 6c 73 | o.allow.this.to.happen..This.als |
| 12f560 | 6f 20 77 6f 72 6b 73 20 66 6f 72 20 72 65 76 65 72 73 65 2d 6c 6f 6f 6b 75 70 20 7a 6f 6e 65 73 | o.works.for.reverse-lookup.zones |
| 12f580 | 20 28 60 60 31 38 2e 31 37 32 2e 69 6e 2d 61 64 64 72 2e 61 72 70 61 60 60 29 2e 00 54 68 69 73 | .(``18.172.in-addr.arpa``)..This |
| 12f5a0 | 20 61 72 74 69 63 6c 65 20 74 6f 75 63 68 65 73 20 6f 6e 20 27 63 6c 61 73 73 69 63 27 20 49 50 | .article.touches.on.'classic'.IP |
| 12f5c0 | 20 74 75 6e 6e 65 6c 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 54 68 69 73 20 62 6c 75 65 70 | .tunneling.protocols..This.bluep |
| 12f5e0 | 72 69 6e 74 20 75 73 65 73 20 56 79 4f 53 20 61 73 20 74 68 65 20 44 4d 56 50 4e 20 48 75 62 20 | rint.uses.VyOS.as.the.DMVPN.Hub. |
| 12f600 | 61 6e 64 20 43 69 73 63 6f 20 28 37 32 30 36 56 58 52 29 20 61 6e 64 20 56 79 4f 53 20 61 73 20 | and.Cisco.(7206VXR).and.VyOS.as. |
| 12f620 | 6d 75 6c 74 69 70 6c 65 20 73 70 6f 6b 65 20 73 69 74 65 73 2e 20 54 68 65 20 6c 61 62 20 77 61 | multiple.spoke.sites..The.lab.wa |
| 12f640 | 73 20 62 75 69 6c 64 20 75 73 69 6e 67 20 3a 61 62 62 72 3a 60 45 56 45 2d 4e 47 20 28 45 6d 75 | s.build.using.:abbr:`EVE-NG.(Emu |
| 12f660 | 6c 61 74 65 64 20 56 69 72 74 75 61 6c 20 45 6e 76 69 72 6f 6e 6d 65 6e 74 20 4e 47 29 60 2e 00 | lated.Virtual.Environment.NG)`.. |
| 12f680 | 54 68 69 73 20 62 6c 75 65 70 72 69 6e 74 20 75 73 65 73 20 56 79 4f 53 20 61 73 20 74 68 65 20 | This.blueprint.uses.VyOS.as.the. |
| 12f6a0 | 44 4d 56 50 4e 20 48 75 62 20 61 6e 64 20 43 69 73 63 6f 20 28 37 32 30 36 56 58 52 29 20 61 6e | DMVPN.Hub.and.Cisco.(7206VXR).an |
| 12f6c0 | 64 20 56 79 4f 53 20 61 73 20 6d 75 6c 74 69 70 6c 65 20 73 70 6f 6b 65 20 73 69 74 65 73 2e 20 | d.VyOS.as.multiple.spoke.sites.. |
| 12f6e0 | 54 68 65 20 6c 61 62 20 77 61 73 20 62 75 69 6c 74 20 75 73 69 6e 67 20 3a 61 62 62 72 3a 60 45 | The.lab.was.built.using.:abbr:`E |
| 12f700 | 56 45 2d 4e 47 20 28 45 6d 75 6c 61 74 65 64 20 56 69 72 74 75 61 6c 20 45 6e 76 69 72 6f 6e 6d | VE-NG.(Emulated.Virtual.Environm |
| 12f720 | 65 6e 74 20 4e 47 29 60 2e 00 54 68 69 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 72 6d 65 64 20 | ent.NG)`..This.can.be.confirmed. |
| 12f740 | 75 73 69 6e 67 20 74 68 65 20 60 60 73 68 6f 77 20 69 70 20 72 6f 75 74 65 20 74 61 62 6c 65 20 | using.the.``show.ip.route.table. |
| 12f760 | 31 30 30 60 60 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 2e 00 54 68 69 73 20 | 100``.operational.command..This. |
| 12f780 | 63 61 6e 20 6f 6e 6c 79 20 62 65 20 64 6f 6e 65 20 69 66 20 61 6c 6c 20 79 6f 75 72 20 75 73 65 | can.only.be.done.if.all.your.use |
| 12f7a0 | 72 73 20 61 72 65 20 6c 6f 63 61 74 65 64 20 64 69 72 65 63 74 6c 79 20 75 6e 64 65 72 20 74 68 | rs.are.located.directly.under.th |
| 12f7c0 | 65 20 73 61 6d 65 20 70 6f 73 69 74 69 6f 6e 20 69 6e 20 74 68 65 20 4c 44 41 50 20 74 72 65 65 | e.same.position.in.the.LDAP.tree |
| 12f7e0 | 20 61 6e 64 20 74 68 65 20 6c 6f 67 69 6e 20 6e 61 6d 65 20 69 73 20 75 73 65 64 20 66 6f 72 20 | .and.the.login.name.is.used.for. |
| 12f800 | 6e 61 6d 69 6e 67 20 65 61 63 68 20 75 73 65 72 20 6f 62 6a 65 63 74 2e 20 49 66 20 79 6f 75 72 | naming.each.user.object..If.your |
| 12f820 | 20 4c 44 41 50 20 74 72 65 65 20 64 6f 65 73 20 6e 6f 74 20 6d 61 74 63 68 20 74 68 65 73 65 20 | .LDAP.tree.does.not.match.these. |
| 12f840 | 63 72 69 74 65 72 69 61 73 20 6f 72 20 69 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 66 69 6c 74 | criterias.or.if.you.want.to.filt |
| 12f860 | 65 72 20 77 68 6f 20 61 72 65 20 76 61 6c 69 64 20 75 73 65 72 73 20 74 68 65 6e 20 79 6f 75 20 | er.who.are.valid.users.then.you. |
| 12f880 | 6e 65 65 64 20 74 6f 20 75 73 65 20 61 20 73 65 61 72 63 68 20 66 69 6c 74 65 72 20 74 6f 20 73 | need.to.use.a.search.filter.to.s |
| 12f8a0 | 65 61 72 63 68 20 66 6f 72 20 79 6f 75 72 20 75 73 65 72 73 20 44 4e 20 28 60 66 69 6c 74 65 72 | earch.for.your.users.DN.(`filter |
| 12f8c0 | 2d 65 78 70 72 65 73 73 69 6f 6e 60 29 2e 00 54 68 69 73 20 63 68 61 70 65 74 65 72 20 64 65 73 | -expression`)..This.chapeter.des |
| 12f8e0 | 63 72 69 62 65 73 20 68 6f 77 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 6b 65 72 6e 65 6c 20 70 | cribes.how.to.configure.kernel.p |
| 12f900 | 61 72 61 6d 65 74 65 72 73 20 61 74 20 72 75 6e 74 69 6d 65 2e 00 54 68 69 73 20 63 68 61 70 74 | arameters.at.runtime..This.chapt |
| 12f920 | 65 72 20 64 65 73 63 72 69 62 65 20 74 68 65 20 70 6f 73 73 69 62 69 6c 69 74 69 65 73 20 6f 66 | er.describe.the.possibilities.of |
| 12f940 | 20 61 64 76 61 6e 63 65 64 20 73 79 73 74 65 6d 20 62 65 68 61 76 69 6f 72 2e 00 54 68 69 73 20 | .advanced.system.behavior..This. |
| 12f960 | 63 6f 6d 6d 61 64 20 73 65 74 73 20 6e 65 74 77 6f 72 6b 20 65 6e 74 69 74 79 20 74 69 74 6c 65 | commad.sets.network.entity.title |
| 12f980 | 20 28 4e 45 54 29 20 70 72 6f 76 69 64 65 64 20 69 6e 20 49 53 4f 20 66 6f 72 6d 61 74 2e 00 54 | .(NET).provided.in.ISO.format..T |
| 12f9a0 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 63 63 65 70 74 20 69 6e 63 6f 6d 69 6e 67 20 72 6f 75 74 | his.command.accept.incoming.rout |
| 12f9c0 | 65 73 20 77 69 74 68 20 41 53 20 70 61 74 68 20 63 6f 6e 74 61 69 6e 69 6e 67 20 41 53 20 6e 75 | es.with.AS.path.containing.AS.nu |
| 12f9e0 | 6d 62 65 72 20 77 69 74 68 20 74 68 65 20 73 61 6d 65 20 76 61 6c 75 65 20 61 73 20 74 68 65 20 | mber.with.the.same.value.as.the. |
| 12fa00 | 63 75 72 72 65 6e 74 20 73 79 73 74 65 6d 20 41 53 2e 20 54 68 69 73 20 69 73 20 75 73 65 64 20 | current.system.AS..This.is.used. |
| 12fa20 | 77 68 65 6e 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 75 73 65 20 74 68 65 20 73 61 6d 65 20 41 53 | when.you.want.to.use.the.same.AS |
| 12fa40 | 20 6e 75 6d 62 65 72 20 69 6e 20 79 6f 75 72 20 73 69 74 65 73 2c 20 62 75 74 20 79 6f 75 20 63 | .number.in.your.sites,.but.you.c |
| 12fa60 | 61 6e e2 80 99 74 20 63 6f 6e 6e 65 63 74 20 74 68 65 6d 20 64 69 72 65 63 74 6c 79 2e 00 54 68 | an...t.connect.them.directly..Th |
| 12fa80 | 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 20 6f 76 65 72 72 69 64 65 20 74 68 65 20 72 65 | is.command.allow.override.the.re |
| 12faa0 | 73 75 6c 74 20 6f 66 20 43 61 70 61 62 69 6c 69 74 79 20 4e 65 67 6f 74 69 61 74 69 6f 6e 20 77 | sult.of.Capability.Negotiation.w |
| 12fac0 | 69 74 68 20 6c 6f 63 61 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 49 67 6e 6f 72 65 20 | ith.local.configuration..Ignore. |
| 12fae0 | 72 65 6d 6f 74 65 20 70 65 65 72 e2 80 99 73 20 63 61 70 61 62 69 6c 69 74 79 20 76 61 6c 75 65 | remote.peer...s.capability.value |
| 12fb00 | 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 70 65 65 72 69 6e 67 73 20 62 | ..This.command.allows.peerings.b |
| 12fb20 | 65 74 77 65 65 6e 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 20 65 42 47 50 20 70 | etween.directly.connected.eBGP.p |
| 12fb40 | 65 65 72 73 20 75 73 69 6e 67 20 6c 6f 6f 70 62 61 63 6b 20 61 64 64 72 65 73 73 65 73 20 77 69 | eers.using.loopback.addresses.wi |
| 12fb60 | 74 68 6f 75 74 20 61 64 6a 75 73 74 69 6e 67 20 74 68 65 20 64 65 66 61 75 6c 74 20 54 54 4c 20 | thout.adjusting.the.default.TTL. |
| 12fb80 | 6f 66 20 31 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 73 65 73 73 69 6f | of.1..This.command.allows.sessio |
| 12fba0 | 6e 73 20 74 6f 20 62 65 20 65 73 74 61 62 6c 69 73 68 65 64 20 77 69 74 68 20 65 42 47 50 20 6e | ns.to.be.established.with.eBGP.n |
| 12fbc0 | 65 69 67 68 62 6f 72 73 20 77 68 65 6e 20 74 68 65 79 20 61 72 65 20 6d 75 6c 74 69 70 6c 65 20 | eighbors.when.they.are.multiple. |
| 12fbe0 | 68 6f 70 73 20 61 77 61 79 2e 20 57 68 65 6e 20 74 68 65 20 6e 65 69 67 68 62 6f 72 20 69 73 20 | hops.away..When.the.neighbor.is. |
| 12fc00 | 6e 6f 74 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 20 61 6e 64 20 74 68 69 73 20 | not.directly.connected.and.this. |
| 12fc20 | 6b 6e 6f 62 20 69 73 20 6e 6f 74 20 65 6e 61 62 6c 65 64 2c 20 74 68 65 20 73 65 73 73 69 6f 6e | knob.is.not.enabled,.the.session |
| 12fc40 | 20 77 69 6c 6c 20 6e 6f 74 20 65 73 74 61 62 6c 69 73 68 2e 20 54 68 65 20 6e 75 6d 62 65 72 20 | .will.not.establish..The.number. |
| 12fc60 | 6f 66 20 68 6f 70 73 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 2e 20 54 68 69 73 20 | of.hops.range.is.1.to.255..This. |
| 12fc80 | 63 6f 6d 6d 61 6e 64 20 69 73 20 6d 75 74 75 61 6c 6c 79 20 65 78 63 6c 75 73 69 76 65 20 77 69 | command.is.mutually.exclusive.wi |
| 12fca0 | 74 68 20 3a 63 66 67 63 6d 64 3a 60 74 74 6c 2d 73 65 63 75 72 69 74 79 20 68 6f 70 73 60 2e 00 | th.:cfgcmd:`ttl-security.hops`.. |
| 12fcc0 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 74 68 65 20 72 6f 75 74 65 72 20 74 | This.command.allows.the.router.t |
| 12fce0 | 6f 20 70 72 65 66 65 72 20 72 6f 75 74 65 20 74 6f 20 73 70 65 63 69 66 69 65 64 20 70 72 65 66 | o.prefer.route.to.specified.pref |
| 12fd00 | 69 78 20 6c 65 61 72 6e 65 64 20 76 69 61 20 49 47 50 20 74 68 72 6f 75 67 68 20 62 61 63 6b 64 | ix.learned.via.IGP.through.backd |
| 12fd20 | 6f 6f 72 20 6c 69 6e 6b 20 69 6e 73 74 65 61 64 20 6f 66 20 61 20 72 6f 75 74 65 20 74 6f 20 74 | oor.link.instead.of.a.route.to.t |
| 12fd40 | 68 65 20 73 61 6d 65 20 70 72 65 66 69 78 20 6c 65 61 72 6e 65 64 20 76 69 61 20 45 42 47 50 2e | he.same.prefix.learned.via.EBGP. |
| 12fd60 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 74 6f 20 6c 6f 67 20 63 68 61 6e | .This.command.allows.to.log.chan |
| 12fd80 | 67 65 73 20 69 6e 20 61 64 6a 61 63 65 6e 63 79 2e 20 57 69 74 68 20 74 68 65 20 6f 70 74 69 6f | ges.in.adjacency..With.the.optio |
| 12fda0 | 6e 61 6c 20 3a 63 66 67 63 6d 64 3a 60 64 65 74 61 69 6c 60 20 61 72 67 75 6d 65 6e 74 2c 20 61 | nal.:cfgcmd:`detail`.argument,.a |
| 12fdc0 | 6c 6c 20 63 68 61 6e 67 65 73 20 69 6e 20 61 64 6a 61 63 65 6e 63 79 20 73 74 61 74 75 73 20 61 | ll.changes.in.adjacency.status.a |
| 12fde0 | 72 65 20 73 68 6f 77 6e 2e 20 57 69 74 68 6f 75 74 20 3a 63 66 67 63 6d 64 3a 60 64 65 74 61 69 | re.shown..Without.:cfgcmd:`detai |
| 12fe00 | 6c 60 2c 20 6f 6e 6c 79 20 63 68 61 6e 67 65 73 20 74 6f 20 66 75 6c 6c 20 6f 72 20 72 65 67 72 | l`,.only.changes.to.full.or.regr |
| 12fe20 | 65 73 73 69 6f 6e 73 20 61 72 65 20 73 68 6f 77 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | essions.are.shown..This.command. |
| 12fe40 | 61 6c 6c 6f 77 73 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 64 69 73 74 72 69 62 75 74 69 | allows.to.specify.the.distributi |
| 12fe60 | 6f 6e 20 74 79 70 65 20 66 6f 72 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 63 6f 6e 6e 65 63 74 65 | on.type.for.the.network.connecte |
| 12fe80 | 64 20 74 6f 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 3a 00 54 68 69 73 20 63 6f 6d 6d 61 6e | d.to.this.interface:.This.comman |
| 12fea0 | 64 20 61 6c 6c 6f 77 73 20 74 6f 20 75 73 65 20 72 6f 75 74 65 20 6d 61 70 20 74 6f 20 66 69 6c | d.allows.to.use.route.map.to.fil |
| 12fec0 | 74 65 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 20 66 72 6f 6d 20 67 69 | ter.redistributed.routes.from.gi |
| 12fee0 | 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 2e 20 54 68 65 72 65 20 61 72 65 20 66 69 76 65 | ven.route.source..There.are.five |
| 12ff00 | 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 | .modes.available.for.route.sourc |
| 12ff20 | 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 72 69 70 6e 67 | e:.bgp,.connected,.kernel,.ripng |
| 12ff40 | 2c 20 73 74 61 74 69 63 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 74 6f | ,.static..This.command.allows.to |
| 12ff60 | 20 75 73 65 20 72 6f 75 74 65 20 6d 61 70 20 74 6f 20 66 69 6c 74 65 72 20 72 65 64 69 73 74 72 | .use.route.map.to.filter.redistr |
| 12ff80 | 69 62 75 74 65 64 20 72 6f 75 74 65 73 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 | ibuted.routes.from.the.given.rou |
| 12ffa0 | 74 65 20 73 6f 75 72 63 65 2e 20 54 68 65 72 65 20 61 72 65 20 66 69 76 65 20 6d 6f 64 65 73 20 | te.source..There.are.five.modes. |
| 12ffc0 | 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c | available.for.route.source:.bgp, |
| 12ffe0 | 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 73 74 61 74 69 63 | .connected,.kernel,.ospf,.static |
| 130000 | 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 74 6f 20 75 73 65 20 72 6f 75 | ..This.command.allows.to.use.rou |
| 130020 | 74 65 20 6d 61 70 20 74 6f 20 66 69 6c 74 65 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 | te.map.to.filter.redistributed.r |
| 130040 | 6f 75 74 65 73 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 | outes.from.the.given.route.sourc |
| 130060 | 65 2e 20 54 68 65 72 65 20 61 72 65 20 66 69 76 65 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c | e..There.are.five.modes.availabl |
| 130080 | 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 | e.for.route.source:.bgp,.connect |
| 1300a0 | 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2e 00 54 68 69 73 20 63 6f | ed,.kernel,.rip,.static..This.co |
| 1300c0 | 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 74 6f 20 75 73 65 20 72 6f 75 74 65 20 6d 61 70 20 74 6f | mmand.allows.to.use.route.map.to |
| 1300e0 | 20 66 69 6c 74 65 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 20 66 72 6f | .filter.redistributed.routes.fro |
| 130100 | 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 2e 20 54 68 65 72 65 20 | m.the.given.route.source..There. |
| 130120 | 61 72 65 20 73 69 78 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 | are.six.modes.available.for.rout |
| 130140 | 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c | e.source:.bgp,.connected,.kernel |
| 130160 | 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e | ,.ospf,.rip,.static..This.comman |
| 130180 | 64 20 61 6c 6c 6f 77 73 20 74 6f 20 75 73 65 20 72 6f 75 74 65 20 6d 61 70 20 74 6f 20 66 69 6c | d.allows.to.use.route.map.to.fil |
| 1301a0 | 74 65 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 2e 20 54 68 65 72 65 20 | ter.redistributed.routes..There. |
| 1301c0 | 61 72 65 20 73 69 78 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 | are.six.modes.available.for.rout |
| 1301e0 | 65 20 73 6f 75 72 63 65 3a 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 | e.source:.connected,.kernel,.osp |
| 130200 | 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2c 20 74 61 62 6c 65 2e 00 54 68 69 73 20 63 6f 6d 6d | f,.rip,.static,.table..This.comm |
| 130220 | 61 6e 64 20 61 6c 6c 6f 77 73 20 79 6f 75 20 61 70 70 6c 79 20 61 63 63 65 73 73 20 6c 69 73 74 | and.allows.you.apply.access.list |
| 130240 | 73 20 74 6f 20 61 20 63 68 6f 73 65 6e 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 66 69 6c 74 65 | s.to.a.chosen.interface.to.filte |
| 130260 | 72 20 74 68 65 20 42 61 62 65 6c 20 72 6f 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | r.the.Babel.routes..This.command |
| 130280 | 20 61 6c 6c 6f 77 73 20 79 6f 75 20 61 70 70 6c 79 20 61 63 63 65 73 73 20 6c 69 73 74 73 20 74 | .allows.you.apply.access.lists.t |
| 1302a0 | 6f 20 61 20 63 68 6f 73 65 6e 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 66 69 6c 74 65 72 20 74 | o.a.chosen.interface.to.filter.t |
| 1302c0 | 68 65 20 52 49 50 20 70 61 74 68 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 | he.RIP.path..This.command.allows |
| 1302e0 | 20 79 6f 75 20 61 70 70 6c 79 20 70 72 65 66 69 78 20 6c 69 73 74 73 20 74 6f 20 61 20 63 68 6f | .you.apply.prefix.lists.to.a.cho |
| 130300 | 73 65 6e 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 66 69 6c 74 65 72 20 74 68 65 20 42 61 62 65 | sen.interface.to.filter.the.Babe |
| 130320 | 6c 20 72 6f 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 79 6f | l.routes..This.command.allows.yo |
| 130340 | 75 20 61 70 70 6c 79 20 70 72 65 66 69 78 20 6c 69 73 74 73 20 74 6f 20 61 20 63 68 6f 73 65 6e | u.apply.prefix.lists.to.a.chosen |
| 130360 | 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 66 69 6c 74 65 72 20 74 68 65 20 52 49 50 20 70 61 74 | .interface.to.filter.the.RIP.pat |
| 130380 | 68 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 73 65 | h..This.command.allows.you.to.se |
| 1303a0 | 6c 65 63 74 20 61 20 73 70 65 63 69 66 69 63 20 61 63 63 65 73 73 20 63 6f 6e 63 65 6e 74 72 61 | lect.a.specific.access.concentra |
| 1303c0 | 74 6f 72 20 77 68 65 6e 20 79 6f 75 20 6b 6e 6f 77 20 74 68 65 20 61 63 63 65 73 73 20 63 6f 6e | tor.when.you.know.the.access.con |
| 1303e0 | 63 65 6e 74 72 61 74 6f 72 73 20 60 3c 6e 61 6d 65 3e 60 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e | centrators.`<name>`..This.comman |
| 130400 | 64 20 61 70 70 6c 69 65 73 20 72 6f 75 74 65 2d 6d 61 70 20 74 6f 20 73 65 6c 65 63 74 69 76 65 | d.applies.route-map.to.selective |
| 130420 | 6c 79 20 75 6e 73 75 70 70 72 65 73 73 20 70 72 65 66 69 78 65 73 20 73 75 70 70 72 65 73 73 65 | ly.unsuppress.prefixes.suppresse |
| 130440 | 64 20 62 79 20 73 75 6d 6d 61 72 69 73 61 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | d.by.summarisation..This.command |
| 130460 | 20 61 70 70 6c 69 65 73 20 74 68 65 20 41 53 20 70 61 74 68 20 61 63 63 65 73 73 20 6c 69 73 74 | .applies.the.AS.path.access.list |
| 130480 | 20 66 69 6c 74 65 72 73 20 6e 61 6d 65 64 20 69 6e 20 3c 6e 61 6d 65 3e 20 74 6f 20 74 68 65 20 | .filters.named.in.<name>.to.the. |
| 1304a0 | 73 70 65 63 69 66 69 65 64 20 42 47 50 20 6e 65 69 67 68 62 6f 72 20 74 6f 20 72 65 73 74 72 69 | specified.BGP.neighbor.to.restri |
| 1304c0 | 63 74 20 74 68 65 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 68 61 74 20 | ct.the.routing.information.that. |
| 1304e0 | 42 47 50 20 6c 65 61 72 6e 73 20 61 6e 64 2f 6f 72 20 61 64 76 65 72 74 69 73 65 73 2e 20 54 68 | BGP.learns.and/or.advertises..Th |
| 130500 | 65 20 61 72 67 75 6d 65 6e 74 73 20 3a 63 66 67 63 6d 64 3a 60 65 78 70 6f 72 74 60 20 61 6e 64 | e.arguments.:cfgcmd:`export`.and |
| 130520 | 20 3a 63 66 67 63 6d 64 3a 60 69 6d 70 6f 72 74 60 20 73 70 65 63 69 66 79 20 74 68 65 20 64 69 | .:cfgcmd:`import`.specify.the.di |
| 130540 | 72 65 63 74 69 6f 6e 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 41 53 20 70 61 74 68 20 61 63 63 | rection.in.which.the.AS.path.acc |
| 130560 | 65 73 73 20 6c 69 73 74 20 61 72 65 20 61 70 70 6c 69 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | ess.list.are.applied..This.comma |
| 130580 | 6e 64 20 61 70 70 6c 69 65 73 20 74 68 65 20 61 63 63 65 73 73 20 6c 69 73 74 20 66 69 6c 74 65 | nd.applies.the.access.list.filte |
| 1305a0 | 72 73 20 6e 61 6d 65 64 20 69 6e 20 3c 6e 75 6d 62 65 72 3e 20 74 6f 20 74 68 65 20 73 70 65 63 | rs.named.in.<number>.to.the.spec |
| 1305c0 | 69 66 69 65 64 20 42 47 50 20 6e 65 69 67 68 62 6f 72 20 74 6f 20 72 65 73 74 72 69 63 74 20 74 | ified.BGP.neighbor.to.restrict.t |
| 1305e0 | 68 65 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 68 61 74 20 42 47 50 20 | he.routing.information.that.BGP. |
| 130600 | 6c 65 61 72 6e 73 20 61 6e 64 2f 6f 72 20 61 64 76 65 72 74 69 73 65 73 2e 20 54 68 65 20 61 72 | learns.and/or.advertises..The.ar |
| 130620 | 67 75 6d 65 6e 74 73 20 3a 63 66 67 63 6d 64 3a 60 65 78 70 6f 72 74 60 20 61 6e 64 20 3a 63 66 | guments.:cfgcmd:`export`.and.:cf |
| 130640 | 67 63 6d 64 3a 60 69 6d 70 6f 72 74 60 20 73 70 65 63 69 66 79 20 74 68 65 20 64 69 72 65 63 74 | gcmd:`import`.specify.the.direct |
| 130660 | 69 6f 6e 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 61 63 63 65 73 73 20 6c 69 73 74 20 61 72 65 | ion.in.which.the.access.list.are |
| 130680 | 20 61 70 70 6c 69 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 70 70 6c 69 65 73 20 74 | .applied..This.command.applies.t |
| 1306a0 | 68 65 20 70 72 66 65 66 69 78 20 6c 69 73 74 20 66 69 6c 74 65 72 73 20 6e 61 6d 65 64 20 69 6e | he.prfefix.list.filters.named.in |
| 1306c0 | 20 3c 6e 61 6d 65 3e 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 42 47 50 20 6e 65 69 | .<name>.to.the.specified.BGP.nei |
| 1306e0 | 67 68 62 6f 72 20 74 6f 20 72 65 73 74 72 69 63 74 20 74 68 65 20 72 6f 75 74 69 6e 67 20 69 6e | ghbor.to.restrict.the.routing.in |
| 130700 | 66 6f 72 6d 61 74 69 6f 6e 20 74 68 61 74 20 42 47 50 20 6c 65 61 72 6e 73 20 61 6e 64 2f 6f 72 | formation.that.BGP.learns.and/or |
| 130720 | 20 61 64 76 65 72 74 69 73 65 73 2e 20 54 68 65 20 61 72 67 75 6d 65 6e 74 73 20 3a 63 66 67 63 | .advertises..The.arguments.:cfgc |
| 130740 | 6d 64 3a 60 65 78 70 6f 72 74 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 69 6d 70 6f 72 74 60 | md:`export`.and.:cfgcmd:`import` |
| 130760 | 20 73 70 65 63 69 66 79 20 74 68 65 20 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 77 68 69 63 68 20 | .specify.the.direction.in.which. |
| 130780 | 74 68 65 20 70 72 65 66 69 78 20 6c 69 73 74 20 61 72 65 20 61 70 70 6c 69 65 64 2e 00 54 68 69 | the.prefix.list.are.applied..Thi |
| 1307a0 | 73 20 63 6f 6d 6d 61 6e 64 20 61 70 70 6c 69 65 73 20 74 68 65 20 72 6f 75 74 65 20 6d 61 70 20 | s.command.applies.the.route.map. |
| 1307c0 | 6e 61 6d 65 64 20 69 6e 20 3c 6e 61 6d 65 3e 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 | named.in.<name>.to.the.specified |
| 1307e0 | 20 42 47 50 20 6e 65 69 67 68 62 6f 72 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 61 6e 64 20 6d 6f 64 | .BGP.neighbor.to.control.and.mod |
| 130800 | 69 66 79 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 68 61 74 20 69 73 20 | ify.routing.information.that.is. |
| 130820 | 65 78 63 68 61 6e 67 65 64 20 62 65 74 77 65 65 6e 20 70 65 65 72 73 2e 20 54 68 65 20 61 72 67 | exchanged.between.peers..The.arg |
| 130840 | 75 6d 65 6e 74 73 20 3a 63 66 67 63 6d 64 3a 60 65 78 70 6f 72 74 60 20 61 6e 64 20 3a 63 66 67 | uments.:cfgcmd:`export`.and.:cfg |
| 130860 | 63 6d 64 3a 60 69 6d 70 6f 72 74 60 20 73 70 65 63 69 66 79 20 74 68 65 20 64 69 72 65 63 74 69 | cmd:`import`.specify.the.directi |
| 130880 | 6f 6e 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 72 6f 75 74 65 20 6d 61 70 20 61 72 65 20 61 70 | on.in.which.the.route.map.are.ap |
| 1308a0 | 70 6c 69 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 62 69 6e 64 20 73 70 65 63 69 66 69 | plied..This.command.bind.specifi |
| 1308c0 | 63 20 70 65 65 72 20 74 6f 20 70 65 65 72 20 67 72 6f 75 70 20 77 69 74 68 20 61 20 67 69 76 65 | c.peer.to.peer.group.with.a.give |
| 1308e0 | 6e 20 6e 61 6d 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 | n.name..This.command.can.be.used |
| 130900 | 20 74 6f 20 66 69 6c 74 65 72 20 74 68 65 20 42 61 62 65 6c 20 72 6f 75 74 65 73 20 75 73 69 6e | .to.filter.the.Babel.routes.usin |
| 130920 | 67 20 61 63 63 65 73 73 20 6c 69 73 74 73 2e 20 3a 63 66 67 63 6d 64 3a 60 69 6e 60 20 61 6e 64 | g.access.lists..:cfgcmd:`in`.and |
| 130940 | 20 3a 63 66 67 63 6d 64 3a 60 6f 75 74 60 20 74 68 69 73 20 69 73 20 74 68 65 20 64 69 72 65 63 | .:cfgcmd:`out`.this.is.the.direc |
| 130960 | 74 69 6f 6e 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 61 63 63 65 73 73 20 6c 69 73 74 73 20 61 | tion.in.which.the.access.lists.a |
| 130980 | 72 65 20 61 70 70 6c 69 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 61 6e 20 62 65 20 | re.applied..This.command.can.be. |
| 1309a0 | 75 73 65 64 20 74 6f 20 66 69 6c 74 65 72 20 74 68 65 20 42 61 62 65 6c 20 72 6f 75 74 65 73 20 | used.to.filter.the.Babel.routes. |
| 1309c0 | 75 73 69 6e 67 20 70 72 65 66 69 78 20 6c 69 73 74 73 2e 20 3a 63 66 67 63 6d 64 3a 60 69 6e 60 | using.prefix.lists..:cfgcmd:`in` |
| 1309e0 | 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 6f 75 74 60 20 74 68 69 73 20 69 73 20 74 68 65 20 64 | .and.:cfgcmd:`out`.this.is.the.d |
| 130a00 | 69 72 65 63 74 69 6f 6e 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 70 72 65 66 69 78 20 6c 69 73 | irection.in.which.the.prefix.lis |
| 130a20 | 74 73 20 61 72 65 20 61 70 70 6c 69 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 61 6e | ts.are.applied..This.command.can |
| 130a40 | 20 62 65 20 75 73 65 64 20 74 6f 20 66 69 6c 74 65 72 20 74 68 65 20 52 49 50 20 70 61 74 68 20 | .be.used.to.filter.the.RIP.path. |
| 130a60 | 75 73 69 6e 67 20 61 63 63 65 73 73 20 6c 69 73 74 73 2e 20 3a 63 66 67 63 6d 64 3a 60 69 6e 60 | using.access.lists..:cfgcmd:`in` |
| 130a80 | 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 6f 75 74 60 20 74 68 69 73 20 69 73 20 74 68 65 20 64 | .and.:cfgcmd:`out`.this.is.the.d |
| 130aa0 | 69 72 65 63 74 69 6f 6e 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 61 63 63 65 73 73 20 6c 69 73 | irection.in.which.the.access.lis |
| 130ac0 | 74 73 20 61 72 65 20 61 70 70 6c 69 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 61 6e | ts.are.applied..This.command.can |
| 130ae0 | 20 62 65 20 75 73 65 64 20 74 6f 20 66 69 6c 74 65 72 20 74 68 65 20 52 49 50 20 70 61 74 68 20 | .be.used.to.filter.the.RIP.path. |
| 130b00 | 75 73 69 6e 67 20 70 72 65 66 69 78 20 6c 69 73 74 73 2e 20 3a 63 66 67 63 6d 64 3a 60 69 6e 60 | using.prefix.lists..:cfgcmd:`in` |
| 130b20 | 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 6f 75 74 60 20 74 68 69 73 20 69 73 20 74 68 65 20 64 | .and.:cfgcmd:`out`.this.is.the.d |
| 130b40 | 69 72 65 63 74 69 6f 6e 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 70 72 65 66 69 78 20 6c 69 73 | irection.in.which.the.prefix.lis |
| 130b60 | 74 73 20 61 72 65 20 61 70 70 6c 69 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 61 6e | ts.are.applied..This.command.can |
| 130b80 | 20 62 65 20 75 73 65 64 20 77 69 74 68 20 70 72 65 76 69 6f 75 73 20 63 6f 6d 6d 61 6e 64 20 74 | .be.used.with.previous.command.t |
| 130ba0 | 6f 20 73 65 74 73 20 64 65 66 61 75 6c 74 20 52 49 50 20 64 69 73 74 61 6e 63 65 20 74 6f 20 73 | o.sets.default.RIP.distance.to.s |
| 130bc0 | 70 65 63 69 66 69 65 64 20 76 61 6c 75 65 20 77 68 65 6e 20 74 68 65 20 72 6f 75 74 65 20 73 6f | pecified.value.when.the.route.so |
| 130be0 | 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 6d 61 74 63 68 65 73 20 74 68 65 20 73 70 65 63 | urce.IP.address.matches.the.spec |
| 130c00 | 69 66 69 65 64 20 70 72 65 66 69 78 20 61 6e 64 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 61 | ified.prefix.and.the.specified.a |
| 130c20 | 63 63 65 73 73 2d 6c 69 73 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 68 61 6e 67 65 20 | ccess-list..This.command.change. |
| 130c40 | 64 69 73 74 61 6e 63 65 20 76 61 6c 75 65 20 6f 66 20 42 47 50 2e 20 54 68 65 20 61 72 67 75 6d | distance.value.of.BGP..The.argum |
| 130c60 | 65 6e 74 73 20 61 72 65 20 74 68 65 20 64 69 73 74 61 6e 63 65 20 76 61 6c 75 65 73 20 66 6f 72 | ents.are.the.distance.values.for |
| 130c80 | 20 65 78 74 65 72 6e 61 6c 20 72 6f 75 74 65 73 2c 20 69 6e 74 65 72 6e 61 6c 20 72 6f 75 74 65 | .external.routes,.internal.route |
| 130ca0 | 73 20 61 6e 64 20 6c 6f 63 61 6c 20 72 6f 75 74 65 73 20 72 65 73 70 65 63 74 69 76 65 6c 79 2e | s.and.local.routes.respectively. |
| 130cc0 | 20 54 68 65 20 64 69 73 74 61 6e 63 65 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 2e | .The.distance.range.is.1.to.255. |
| 130ce0 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 68 61 6e 67 65 20 64 69 73 74 61 6e 63 65 20 76 61 | .This.command.change.distance.va |
| 130d00 | 6c 75 65 20 6f 66 20 4f 53 50 46 20 67 6c 6f 62 61 6c 6c 79 2e 20 54 68 65 20 64 69 73 74 61 6e | lue.of.OSPF.globally..The.distan |
| 130d20 | 63 65 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | ce.range.is.1.to.255..This.comma |
| 130d40 | 6e 64 20 63 68 61 6e 67 65 20 64 69 73 74 61 6e 63 65 20 76 61 6c 75 65 20 6f 66 20 4f 53 50 46 | nd.change.distance.value.of.OSPF |
| 130d60 | 2e 20 54 68 65 20 61 72 67 75 6d 65 6e 74 73 20 61 72 65 20 74 68 65 20 64 69 73 74 61 6e 63 65 | ..The.arguments.are.the.distance |
| 130d80 | 20 76 61 6c 75 65 73 20 66 6f 72 20 65 78 74 65 72 6e 61 6c 20 72 6f 75 74 65 73 2c 20 69 6e 74 | .values.for.external.routes,.int |
| 130da0 | 65 72 2d 61 72 65 61 20 72 6f 75 74 65 73 20 61 6e 64 20 69 6e 74 72 61 2d 61 72 65 61 20 72 6f | er-area.routes.and.intra-area.ro |
| 130dc0 | 75 74 65 73 20 72 65 73 70 65 63 74 69 76 65 6c 79 2e 20 54 68 65 20 64 69 73 74 61 6e 63 65 20 | utes.respectively..The.distance. |
| 130de0 | 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | range.is.1.to.255..This.command. |
| 130e00 | 63 68 61 6e 67 65 20 64 69 73 74 61 6e 63 65 20 76 61 6c 75 65 20 6f 66 20 4f 53 50 46 76 33 20 | change.distance.value.of.OSPFv3. |
| 130e20 | 67 6c 6f 62 61 6c 6c 79 2e 20 54 68 65 20 64 69 73 74 61 6e 63 65 20 72 61 6e 67 65 20 69 73 20 | globally..The.distance.range.is. |
| 130e40 | 31 20 74 6f 20 32 35 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 68 61 6e 67 65 20 64 69 | 1.to.255..This.command.change.di |
| 130e60 | 73 74 61 6e 63 65 20 76 61 6c 75 65 20 6f 66 20 4f 53 50 46 76 33 2e 20 54 68 65 20 61 72 67 75 | stance.value.of.OSPFv3..The.argu |
| 130e80 | 6d 65 6e 74 73 20 61 72 65 20 74 68 65 20 64 69 73 74 61 6e 63 65 20 76 61 6c 75 65 73 20 66 6f | ments.are.the.distance.values.fo |
| 130ea0 | 72 20 65 78 74 65 72 6e 61 6c 20 72 6f 75 74 65 73 2c 20 69 6e 74 65 72 2d 61 72 65 61 20 72 6f | r.external.routes,.inter-area.ro |
| 130ec0 | 75 74 65 73 20 61 6e 64 20 69 6e 74 72 61 2d 61 72 65 61 20 72 6f 75 74 65 73 20 72 65 73 70 65 | utes.and.intra-area.routes.respe |
| 130ee0 | 63 74 69 76 65 6c 79 2e 20 54 68 65 20 64 69 73 74 61 6e 63 65 20 72 61 6e 67 65 20 69 73 20 31 | ctively..The.distance.range.is.1 |
| 130f00 | 20 74 6f 20 32 35 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 68 61 6e 67 65 20 74 68 65 | .to.255..This.command.change.the |
| 130f20 | 20 64 69 73 74 61 6e 63 65 20 76 61 6c 75 65 20 6f 66 20 52 49 50 2e 20 54 68 65 20 64 69 73 74 | .distance.value.of.RIP..The.dist |
| 130f40 | 61 6e 63 65 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 2e 00 54 68 69 73 20 63 6f 6d | ance.range.is.1.to.255..This.com |
| 130f60 | 6d 61 6e 64 20 63 68 61 6e 67 65 73 20 74 68 65 20 65 42 47 50 20 62 65 68 61 76 69 6f 72 20 6f | mand.changes.the.eBGP.behavior.o |
| 130f80 | 66 20 46 52 52 2e 20 42 79 20 64 65 66 61 75 6c 74 20 46 52 52 20 65 6e 61 62 6c 65 73 20 3a 72 | f.FRR..By.default.FRR.enables.:r |
| 130fa0 | 66 63 3a 60 38 32 31 32 60 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 77 68 69 63 68 20 61 66 | fc:`8212`.functionality.which.af |
| 130fc0 | 66 65 63 74 73 20 68 6f 77 20 65 42 47 50 20 72 6f 75 74 65 73 20 61 72 65 20 61 64 76 65 72 74 | fects.how.eBGP.routes.are.advert |
| 130fe0 | 69 73 65 64 2c 20 6e 61 6d 65 6c 79 20 6e 6f 20 72 6f 75 74 65 73 20 61 72 65 20 61 64 76 65 72 | ised,.namely.no.routes.are.adver |
| 131000 | 74 69 73 65 64 20 61 63 72 6f 73 73 20 65 42 47 50 20 73 65 73 73 69 6f 6e 73 20 77 69 74 68 6f | tised.across.eBGP.sessions.witho |
| 131020 | 75 74 20 73 6f 6d 65 20 73 6f 72 74 20 6f 66 20 65 67 72 65 73 73 20 72 6f 75 74 65 2d 6d 61 70 | ut.some.sort.of.egress.route-map |
| 131040 | 2f 70 6f 6c 69 63 79 20 69 6e 20 70 6c 61 63 65 2e 20 49 6e 20 56 79 4f 53 20 68 6f 77 65 76 65 | /policy.in.place..In.VyOS.howeve |
| 131060 | 72 20 77 65 20 68 61 76 65 20 74 68 69 73 20 52 46 43 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 | r.we.have.this.RFC.functionality |
| 131080 | 20 64 69 73 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 20 73 6f 20 74 68 61 74 20 77 65 20 | .disabled.by.default.so.that.we. |
| 1310a0 | 63 61 6e 20 70 72 65 73 65 72 76 65 20 62 61 63 6b 77 61 72 64 73 20 63 6f 6d 70 61 74 69 62 69 | can.preserve.backwards.compatibi |
| 1310c0 | 6c 69 74 79 20 77 69 74 68 20 6f 6c 64 65 72 20 76 65 72 73 69 6f 6e 73 20 6f 66 20 56 79 4f 53 | lity.with.older.versions.of.VyOS |
| 1310e0 | 2e 20 57 69 74 68 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 6f 6e 65 20 63 61 6e 20 65 6e 61 62 6c | ..With.this.option.one.can.enabl |
| 131100 | 65 20 3a 72 66 63 3a 60 38 32 31 32 60 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 74 6f 20 6f | e.:rfc:`8212`.functionality.to.o |
| 131120 | 70 65 72 61 74 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 6f 6e 66 69 67 75 72 65 73 20 | perate..This.command.configures. |
| 131140 | 70 61 64 64 69 6e 67 20 6f 6e 20 68 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 74 6f 20 61 63 63 6f | padding.on.hello.packets.to.acco |
| 131160 | 6d 6d 6f 64 61 74 65 20 61 73 79 6d 6d 65 74 72 69 63 61 6c 20 6d 61 78 69 6d 75 6d 20 74 72 61 | mmodate.asymmetrical.maximum.tra |
| 131180 | 6e 73 66 65 72 20 75 6e 69 74 73 20 28 4d 54 55 73 29 20 66 72 6f 6d 20 64 69 66 66 65 72 65 6e | nsfer.units.(MTUs).from.differen |
| 1311a0 | 74 20 68 6f 73 74 73 20 61 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 33 37 | t.hosts.as.described.in.:rfc:`37 |
| 1311c0 | 31 39 60 2e 20 54 68 69 73 20 68 65 6c 70 73 20 74 6f 20 70 72 65 76 65 6e 74 20 61 20 70 72 65 | 19`..This.helps.to.prevent.a.pre |
| 1311e0 | 6d 61 74 75 72 65 20 61 64 6a 61 63 65 6e 63 79 20 55 70 20 73 74 61 74 65 20 77 68 65 6e 20 6f | mature.adjacency.Up.state.when.o |
| 131200 | 6e 65 20 72 6f 75 74 69 6e 67 20 64 65 76 69 63 65 73 20 4d 54 55 20 64 6f 65 73 20 6e 6f 74 20 | ne.routing.devices.MTU.does.not. |
| 131220 | 6d 65 65 74 20 74 68 65 20 72 65 71 75 69 72 65 6d 65 6e 74 73 20 74 6f 20 65 73 74 61 62 6c 69 | meet.the.requirements.to.establi |
| 131240 | 73 68 20 74 68 65 20 61 64 6a 61 63 65 6e 63 79 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 | sh.the.adjacency..This.command.c |
| 131260 | 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 70 61 73 | onfigures.the.authentication.pas |
| 131280 | 73 77 6f 72 64 20 66 6f 72 20 61 20 72 6f 75 74 69 6e 67 20 64 6f 6d 61 69 6e 2c 20 61 73 20 63 | sword.for.a.routing.domain,.as.c |
| 1312a0 | 6c 65 61 72 20 74 65 78 74 20 6f 72 20 6d 64 35 20 6f 6e 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | lear.text.or.md5.one..This.comma |
| 1312c0 | 6e 64 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e | nd.configures.the.authentication |
| 1312e0 | 20 70 61 73 73 77 6f 72 64 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 69 | .password.for.the.interface..Thi |
| 131300 | 73 20 63 6f 6d 6d 61 6e 64 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 6d 61 78 69 6d 75 6d | s.command.configures.the.maximum |
| 131320 | 20 73 69 7a 65 20 6f 66 20 67 65 6e 65 72 61 74 65 64 20 3a 61 62 62 72 3a 60 4c 53 50 73 20 28 | .size.of.generated.:abbr:`LSPs.( |
| 131340 | 4c 69 6e 6b 20 53 74 61 74 65 20 50 44 55 73 29 60 2c 20 69 6e 20 62 79 74 65 73 2e 20 54 68 65 | Link.State.PDUs)`,.in.bytes..The |
| 131360 | 20 73 69 7a 65 20 72 61 6e 67 65 20 69 73 20 31 32 38 20 74 6f 20 34 33 35 32 2e 00 54 68 69 73 | .size.range.is.128.to.4352..This |
| 131380 | 20 63 6f 6d 6d 61 6e 64 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 70 61 73 73 69 76 65 20 | .command.configures.the.passive. |
| 1313a0 | 6d 6f 64 65 20 66 6f 72 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 69 73 20 63 6f | mode.for.this.interface..This.co |
| 1313c0 | 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 61 20 6e 65 77 20 6e 65 69 67 68 62 6f 72 20 77 68 6f | mmand.creates.a.new.neighbor.who |
| 1313e0 | 73 65 20 72 65 6d 6f 74 65 2d 61 73 20 69 73 20 3c 6e 61 73 6e 3e 2e 20 54 68 65 20 6e 65 69 67 | se.remote-as.is.<nasn>..The.neig |
| 131400 | 68 62 6f 72 20 61 64 64 72 65 73 73 20 63 61 6e 20 62 65 20 61 6e 20 49 50 76 34 20 61 64 64 72 | hbor.address.can.be.an.IPv4.addr |
| 131420 | 65 73 73 20 6f 72 20 61 6e 20 49 50 76 36 20 61 64 64 72 65 73 73 20 6f 72 20 61 6e 20 69 6e 74 | ess.or.an.IPv6.address.or.an.int |
| 131440 | 65 72 66 61 63 65 20 74 6f 20 75 73 65 20 66 6f 72 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e | erface.to.use.for.the.connection |
| 131460 | 2e 20 54 68 65 20 63 6f 6d 6d 61 6e 64 20 69 73 20 61 70 70 6c 69 63 61 62 6c 65 20 66 6f 72 20 | ..The.command.is.applicable.for. |
| 131480 | 70 65 65 72 20 61 6e 64 20 70 65 65 72 20 67 72 6f 75 70 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e | peer.and.peer.group..This.comman |
| 1314a0 | 64 20 63 72 65 61 74 65 73 20 61 20 6e 65 77 20 72 6f 75 74 65 2d 6d 61 70 20 70 6f 6c 69 63 79 | d.creates.a.new.route-map.policy |
| 1314c0 | 2c 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 3c 74 65 78 74 3e 2e 00 54 68 69 73 20 63 6f 6d | ,.identified.by.<text>..This.com |
| 1314e0 | 6d 61 6e 64 20 63 72 65 61 74 65 73 20 61 20 6e 65 77 20 72 75 6c 65 20 69 6e 20 74 68 65 20 49 | mand.creates.a.new.rule.in.the.I |
| 131500 | 50 76 36 20 61 63 63 65 73 73 20 6c 69 73 74 20 61 6e 64 20 64 65 66 69 6e 65 73 20 61 6e 20 61 | Pv6.access.list.and.defines.an.a |
| 131520 | 63 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 61 20 6e 65 | ction..This.command.creates.a.ne |
| 131540 | 77 20 72 75 6c 65 20 69 6e 20 74 68 65 20 49 50 76 36 20 70 72 65 66 69 78 2d 6c 69 73 74 20 61 | w.rule.in.the.IPv6.prefix-list.a |
| 131560 | 6e 64 20 64 65 66 69 6e 65 73 20 61 6e 20 61 63 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | nd.defines.an.action..This.comma |
| 131580 | 6e 64 20 63 72 65 61 74 65 73 20 61 20 6e 65 77 20 72 75 6c 65 20 69 6e 20 74 68 65 20 61 63 63 | nd.creates.a.new.rule.in.the.acc |
| 1315a0 | 65 73 73 20 6c 69 73 74 20 61 6e 64 20 64 65 66 69 6e 65 73 20 61 6e 20 61 63 74 69 6f 6e 2e 00 | ess.list.and.defines.an.action.. |
| 1315c0 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 61 20 6e 65 77 20 72 75 6c 65 20 | This.command.creates.a.new.rule. |
| 1315e0 | 69 6e 20 74 68 65 20 70 72 65 66 69 78 2d 6c 69 73 74 20 61 6e 64 20 64 65 66 69 6e 65 73 20 61 | in.the.prefix-list.and.defines.a |
| 131600 | 6e 20 61 63 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 74 | n.action..This.command.creates.t |
| 131620 | 68 65 20 6e 65 77 20 49 50 76 36 20 61 63 63 65 73 73 20 6c 69 73 74 2c 20 69 64 65 6e 74 69 66 | he.new.IPv6.access.list,.identif |
| 131640 | 69 65 64 20 62 79 20 3c 74 65 78 74 3e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 | ied.by.<text>.This.command.creat |
| 131660 | 65 73 20 74 68 65 20 6e 65 77 20 49 50 76 36 20 70 72 65 66 69 78 2d 6c 69 73 74 20 70 6f 6c 69 | es.the.new.IPv6.prefix-list.poli |
| 131680 | 63 79 2c 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 3c 74 65 78 74 3e 2e 00 54 68 69 73 20 63 | cy,.identified.by.<text>..This.c |
| 1316a0 | 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 74 68 65 20 6e 65 77 20 61 63 63 65 73 73 20 6c 69 | ommand.creates.the.new.access.li |
| 1316c0 | 73 74 20 70 6f 6c 69 63 79 2c 20 77 68 65 72 65 20 3c 61 63 6c 5f 6e 75 6d 62 65 72 3e 20 6d 75 | st.policy,.where.<acl_number>.mu |
| 1316e0 | 73 74 20 62 65 20 61 20 6e 75 6d 62 65 72 20 66 72 6f 6d 20 31 20 74 6f 20 32 36 39 39 2e 00 54 | st.be.a.number.from.1.to.2699..T |
| 131700 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 74 68 65 20 6e 65 77 20 70 72 65 66 | his.command.creates.the.new.pref |
| 131720 | 69 78 2d 6c 69 73 74 20 70 6f 6c 69 63 79 2c 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 3c 74 | ix-list.policy,.identified.by.<t |
| 131740 | 65 78 74 3e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 73 20 61 20 6e 65 77 | ext>..This.command.defines.a.new |
| 131760 | 20 70 65 65 72 20 67 72 6f 75 70 2e 20 59 6f 75 20 63 61 6e 20 73 70 65 63 69 66 79 20 74 6f 20 | .peer.group..You.can.specify.to. |
| 131780 | 74 68 65 20 67 72 6f 75 70 20 74 68 65 20 73 61 6d 65 20 70 61 72 61 6d 65 74 65 72 73 20 74 68 | the.group.the.same.parameters.th |
| 1317a0 | 61 74 20 79 6f 75 20 63 61 6e 20 73 70 65 63 69 66 79 20 66 6f 72 20 73 70 65 63 69 66 69 63 20 | at.you.can.specify.for.specific. |
| 1317c0 | 6e 65 69 67 68 62 6f 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 73 20 | neighbors..This.command.defines. |
| 1317e0 | 6d 61 74 63 68 69 6e 67 20 70 61 72 61 6d 65 74 65 72 73 20 66 6f 72 20 49 50 76 36 20 61 63 63 | matching.parameters.for.IPv6.acc |
| 131800 | 65 73 73 20 6c 69 73 74 20 72 75 6c 65 2e 20 4d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 | ess.list.rule..Matching.criteria |
| 131820 | 20 63 6f 75 6c 64 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 73 6f 75 72 63 65 20 70 61 72 61 | .could.be.applied.to.source.para |
| 131840 | 6d 65 74 65 72 73 3a 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 73 20 6d 61 74 | meters:.This.command.defines.mat |
| 131860 | 63 68 69 6e 67 20 70 61 72 61 6d 65 74 65 72 73 20 66 6f 72 20 61 63 63 65 73 73 20 6c 69 73 74 | ching.parameters.for.access.list |
| 131880 | 20 72 75 6c 65 2e 20 4d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 63 6f 75 6c 64 20 62 | .rule..Matching.criteria.could.b |
| 1318a0 | 65 20 61 70 70 6c 69 65 64 20 74 6f 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6f 72 20 73 6f 75 72 | e.applied.to.destination.or.sour |
| 1318c0 | 63 65 20 70 61 72 61 6d 65 74 65 72 73 3a 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 | ce.parameters:.This.command.defi |
| 1318e0 | 6e 65 73 20 74 68 65 20 49 53 2d 49 53 20 72 6f 75 74 65 72 20 62 65 68 61 76 69 6f 72 3a 00 54 | nes.the.IS-IS.router.behavior:.T |
| 131900 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 73 20 74 68 65 20 61 63 63 75 6d 75 6c 61 | his.command.defines.the.accumula |
| 131920 | 74 65 64 20 70 65 6e 61 6c 74 79 20 61 6d 6f 75 6e 74 20 61 74 20 77 68 69 63 68 20 74 68 65 20 | ted.penalty.amount.at.which.the. |
| 131940 | 72 6f 75 74 65 20 69 73 20 72 65 2d 61 64 76 65 72 74 69 73 65 64 2e 20 54 68 65 20 70 65 6e 61 | route.is.re-advertised..The.pena |
| 131960 | 6c 74 79 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 30 30 30 30 2e 00 54 68 69 73 20 63 6f | lty.range.is.1.to.20000..This.co |
| 131980 | 6d 6d 61 6e 64 20 64 65 66 69 6e 65 73 20 74 68 65 20 61 63 63 75 6d 75 6c 61 74 65 64 20 70 65 | mmand.defines.the.accumulated.pe |
| 1319a0 | 6e 61 6c 74 79 20 61 6d 6f 75 6e 74 20 61 74 20 77 68 69 63 68 20 74 68 65 20 72 6f 75 74 65 20 | nalty.amount.at.which.the.route. |
| 1319c0 | 69 73 20 73 75 70 70 72 65 73 73 65 64 2e 20 54 68 65 20 70 65 6e 61 6c 74 79 20 72 61 6e 67 65 | is.suppressed..The.penalty.range |
| 1319e0 | 20 69 73 20 31 20 74 6f 20 32 30 30 30 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 65 66 | .is.1.to.20000..This.command.def |
| 131a00 | 69 6e 65 73 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 20 74 69 6d 65 20 69 6e 20 6d 69 6e 75 74 | ines.the.amount.of.time.in.minut |
| 131a20 | 65 73 20 61 66 74 65 72 20 77 68 69 63 68 20 61 20 70 65 6e 61 6c 74 79 20 69 73 20 72 65 64 75 | es.after.which.a.penalty.is.redu |
| 131a40 | 63 65 64 20 62 79 20 68 61 6c 66 2e 20 54 68 65 20 74 69 6d 65 72 20 72 61 6e 67 65 20 69 73 20 | ced.by.half..The.timer.range.is. |
| 131a60 | 31 30 20 74 6f 20 34 35 20 6d 69 6e 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 | 10.to.45.minutes..This.command.d |
| 131a80 | 65 66 69 6e 65 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 70 61 72 | efines.the.maximum.number.of.par |
| 131aa0 | 61 6c 6c 65 6c 20 72 6f 75 74 65 73 20 74 68 61 74 20 74 68 65 20 42 47 50 20 63 61 6e 20 73 75 | allel.routes.that.the.BGP.can.su |
| 131ac0 | 70 70 6f 72 74 2e 20 49 6e 20 6f 72 64 65 72 20 66 6f 72 20 42 47 50 20 74 6f 20 75 73 65 20 74 | pport..In.order.for.BGP.to.use.t |
| 131ae0 | 68 65 20 73 65 63 6f 6e 64 20 70 61 74 68 2c 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 61 74 | he.second.path,.the.following.at |
| 131b00 | 74 72 69 62 75 74 65 73 20 68 61 76 65 20 74 6f 20 6d 61 74 63 68 3a 20 57 65 69 67 68 74 2c 20 | tributes.have.to.match:.Weight,. |
| 131b20 | 4c 6f 63 61 6c 20 50 72 65 66 65 72 65 6e 63 65 2c 20 41 53 20 50 61 74 68 20 28 62 6f 74 68 20 | Local.Preference,.AS.Path.(both. |
| 131b40 | 41 53 20 6e 75 6d 62 65 72 20 61 6e 64 20 41 53 20 70 61 74 68 20 6c 65 6e 67 74 68 29 2c 20 4f | AS.number.and.AS.path.length),.O |
| 131b60 | 72 69 67 69 6e 20 63 6f 64 65 2c 20 4d 45 44 2c 20 49 47 50 20 6d 65 74 72 69 63 2e 20 41 6c 73 | rigin.code,.MED,.IGP.metric..Als |
| 131b80 | 6f 2c 20 74 68 65 20 6e 65 78 74 20 68 6f 70 20 61 64 64 72 65 73 73 20 66 6f 72 20 65 61 63 68 | o,.the.next.hop.address.for.each |
| 131ba0 | 20 70 61 74 68 20 6d 75 73 74 20 62 65 20 64 69 66 66 65 72 65 6e 74 2e 00 54 68 69 73 20 63 6f | .path.must.be.different..This.co |
| 131bc0 | 6d 6d 61 6e 64 20 64 65 66 69 6e 65 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 74 69 6d 65 20 69 | mmand.defines.the.maximum.time.i |
| 131be0 | 6e 20 6d 69 6e 75 74 65 73 20 74 68 61 74 20 61 20 72 6f 75 74 65 20 69 73 20 73 75 70 70 72 65 | n.minutes.that.a.route.is.suppre |
| 131c00 | 73 73 65 64 2e 20 54 68 65 20 74 69 6d 65 72 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 | ssed..The.timer.range.is.1.to.25 |
| 131c20 | 35 20 6d 69 6e 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 61 62 6c 65 20 | 5.minutes..This.command.disable. |
| 131c40 | 74 68 65 20 70 65 65 72 20 6f 72 20 70 65 65 72 20 67 72 6f 75 70 2e 20 54 6f 20 72 65 65 6e 61 | the.peer.or.peer.group..To.reena |
| 131c60 | 62 6c 65 20 74 68 65 20 70 65 65 72 20 75 73 65 20 74 68 65 20 64 65 6c 65 74 65 20 66 6f 72 6d | ble.the.peer.use.the.delete.form |
| 131c80 | 20 6f 66 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 | .of.this.command..This.command.d |
| 131ca0 | 69 73 61 62 6c 65 73 20 49 47 50 2d 4c 44 50 20 73 79 6e 63 20 66 6f 72 20 74 68 69 73 20 73 70 | isables.IGP-LDP.sync.for.this.sp |
| 131cc0 | 65 63 69 66 69 63 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 | ecific.interface..This.command.d |
| 131ce0 | 69 73 61 62 6c 65 73 20 54 68 72 65 65 2d 57 61 79 20 48 61 6e 64 73 68 61 6b 65 20 66 6f 72 20 | isables.Three-Way.Handshake.for. |
| 131d00 | 50 32 50 20 61 64 6a 61 63 65 6e 63 69 65 73 20 77 68 69 63 68 20 64 65 73 63 72 69 62 65 64 20 | P2P.adjacencies.which.described. |
| 131d20 | 69 6e 20 3a 72 66 63 3a 60 35 33 30 33 60 2e 20 54 68 72 65 65 2d 57 61 79 20 48 61 6e 64 73 68 | in.:rfc:`5303`..Three-Way.Handsh |
| 131d40 | 61 6b 65 20 69 73 20 65 6e 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 2e 00 54 68 69 73 20 | ake.is.enabled.by.default..This. |
| 131d60 | 63 6f 6d 6d 61 6e 64 20 64 69 73 61 62 6c 65 73 20 63 68 65 63 6b 20 6f 66 20 74 68 65 20 4d 54 | command.disables.check.of.the.MT |
| 131d80 | 55 20 76 61 6c 75 65 20 69 6e 20 74 68 65 20 4f 53 50 46 20 44 42 44 20 70 61 63 6b 65 74 73 2e | U.value.in.the.OSPF.DBD.packets. |
| 131da0 | 20 54 68 75 73 2c 20 75 73 65 20 6f 66 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 | .Thus,.use.of.this.command.allow |
| 131dc0 | 73 20 74 68 65 20 4f 53 50 46 20 61 64 6a 61 63 65 6e 63 79 20 74 6f 20 72 65 61 63 68 20 74 68 | s.the.OSPF.adjacency.to.reach.th |
| 131de0 | 65 20 46 55 4c 4c 20 73 74 61 74 65 20 65 76 65 6e 20 74 68 6f 75 67 68 20 74 68 65 72 65 20 69 | e.FULL.state.even.though.there.i |
| 131e00 | 73 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 4d 54 55 20 6d 69 73 6d 61 74 63 68 20 62 65 74 77 | s.an.interface.MTU.mismatch.betw |
| 131e20 | 65 65 6e 20 74 77 6f 20 4f 53 50 46 20 72 6f 75 74 65 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | een.two.OSPF.routers..This.comma |
| 131e40 | 6e 64 20 64 69 73 61 62 6c 65 73 20 69 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 | nd.disables.it..This.command.dis |
| 131e60 | 61 62 6c 65 73 20 72 6f 75 74 65 20 72 65 66 6c 65 63 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 72 | ables.route.reflection.between.r |
| 131e80 | 6f 75 74 65 20 72 65 66 6c 65 63 74 6f 72 20 63 6c 69 65 6e 74 73 2e 20 42 79 20 64 65 66 61 75 | oute.reflector.clients..By.defau |
| 131ea0 | 6c 74 2c 20 74 68 65 20 63 6c 69 65 6e 74 73 20 6f 66 20 61 20 72 6f 75 74 65 20 72 65 66 6c 65 | lt,.the.clients.of.a.route.refle |
| 131ec0 | 63 74 6f 72 20 61 72 65 20 6e 6f 74 20 72 65 71 75 69 72 65 64 20 74 6f 20 62 65 20 66 75 6c 6c | ctor.are.not.required.to.be.full |
| 131ee0 | 79 20 6d 65 73 68 65 64 20 61 6e 64 20 74 68 65 20 72 6f 75 74 65 73 20 66 72 6f 6d 20 61 20 63 | y.meshed.and.the.routes.from.a.c |
| 131f00 | 6c 69 65 6e 74 20 61 72 65 20 72 65 66 6c 65 63 74 65 64 20 74 6f 20 6f 74 68 65 72 20 63 6c 69 | lient.are.reflected.to.other.cli |
| 131f20 | 65 6e 74 73 2e 20 48 6f 77 65 76 65 72 2c 20 69 66 20 74 68 65 20 63 6c 69 65 6e 74 73 20 61 72 | ents..However,.if.the.clients.ar |
| 131f40 | 65 20 66 75 6c 6c 79 20 6d 65 73 68 65 64 2c 20 72 6f 75 74 65 20 72 65 66 6c 65 63 74 69 6f 6e | e.fully.meshed,.route.reflection |
| 131f60 | 20 69 73 20 6e 6f 74 20 72 65 71 75 69 72 65 64 2e 20 49 6e 20 74 68 69 73 20 63 61 73 65 2c 20 | .is.not.required..In.this.case,. |
| 131f80 | 75 73 65 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 6e 6f 2d 63 6c 69 65 6e 74 2d 74 6f 2d 63 6c | use.the.:cfgcmd:`no-client-to-cl |
| 131fa0 | 69 65 6e 74 2d 72 65 66 6c 65 63 74 69 6f 6e 60 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 69 73 61 | ient-reflection`.command.to.disa |
| 131fc0 | 62 6c 65 20 63 6c 69 65 6e 74 2d 74 6f 2d 63 6c 69 65 6e 74 20 72 65 66 6c 65 63 74 69 6f 6e 2e | ble.client-to-client.reflection. |
| 131fe0 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 61 62 6c 65 73 20 73 70 6c 69 74 2d 68 6f 72 | .This.command.disables.split-hor |
| 132000 | 69 7a 6f 6e 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 42 79 20 64 65 66 61 75 6c | izon.on.the.interface..By.defaul |
| 132020 | 74 2c 20 56 79 4f 53 20 64 6f 65 73 20 6e 6f 74 20 61 64 76 65 72 74 69 73 65 20 52 49 50 20 72 | t,.VyOS.does.not.advertise.RIP.r |
| 132040 | 6f 75 74 65 73 20 6f 75 74 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 6f 76 65 72 20 77 68 69 | outes.out.the.interface.over.whi |
| 132060 | 63 68 20 74 68 65 79 20 77 65 72 65 20 6c 65 61 72 6e 65 64 20 28 73 70 6c 69 74 20 68 6f 72 69 | ch.they.were.learned.(split.hori |
| 132080 | 7a 6f 6e 29 2e 33 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 61 62 6c 65 73 20 74 68 65 | zon).3.This.command.disables.the |
| 1320a0 | 20 6c 6f 61 64 20 73 68 61 72 69 6e 67 20 61 63 72 6f 73 73 20 6d 75 6c 74 69 70 6c 65 20 4c 46 | .load.sharing.across.multiple.LF |
| 1320c0 | 41 20 62 61 63 6b 75 70 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 | A.backups..This.command.displays |
| 1320e0 | 20 42 47 50 20 64 61 6d 70 65 6e 65 64 20 72 6f 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | .BGP.dampened.routes..This.comma |
| 132100 | 6e 64 20 64 69 73 70 6c 61 79 73 20 42 47 50 20 72 65 63 65 69 76 65 64 2d 72 6f 75 74 65 73 20 | nd.displays.BGP.received-routes. |
| 132120 | 74 68 61 74 20 61 72 65 20 61 63 63 65 70 74 65 64 20 61 66 74 65 72 20 66 69 6c 74 65 72 69 6e | that.are.accepted.after.filterin |
| 132140 | 67 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 42 47 50 20 72 6f 75 | g..This.command.displays.BGP.rou |
| 132160 | 74 65 73 20 61 64 76 65 72 74 69 73 65 64 20 74 6f 20 61 20 6e 65 69 67 68 62 6f 72 2e 00 54 68 | tes.advertised.to.a.neighbor..Th |
| 132180 | 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 42 47 50 20 72 6f 75 74 65 73 20 61 | is.command.displays.BGP.routes.a |
| 1321a0 | 6c 6c 6f 77 65 64 20 62 79 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 41 53 20 50 61 74 68 20 | llowed.by.the.specified.AS.Path. |
| 1321c0 | 61 63 63 65 73 73 20 6c 69 73 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 | access.list..This.command.displa |
| 1321e0 | 79 73 20 42 47 50 20 72 6f 75 74 65 73 20 6f 72 69 67 69 6e 61 74 69 6e 67 20 66 72 6f 6d 20 74 | ys.BGP.routes.originating.from.t |
| 132200 | 68 65 20 73 70 65 63 69 66 69 65 64 20 42 47 50 20 6e 65 69 67 68 62 6f 72 20 62 65 66 6f 72 65 | he.specified.BGP.neighbor.before |
| 132220 | 20 69 6e 62 6f 75 6e 64 20 70 6f 6c 69 63 79 20 69 73 20 61 70 70 6c 69 65 64 2e 20 54 6f 20 75 | .inbound.policy.is.applied..To.u |
| 132240 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 6e 62 6f 75 6e 64 20 73 6f 66 74 20 72 65 63 | se.this.command.inbound.soft.rec |
| 132260 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 65 6e 61 62 6c 65 64 2e 00 54 68 | onfiguration.must.be.enabled..Th |
| 132280 | 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 4c 53 41 73 20 69 6e 20 4d 61 78 41 | is.command.displays.LSAs.in.MaxA |
| 1322a0 | 67 65 20 6c 69 73 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 52 | ge.list..This.command.displays.R |
| 1322c0 | 49 50 20 72 6f 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 | IP.routes..This.command.displays |
| 1322e0 | 20 61 20 64 61 74 61 62 61 73 65 20 63 6f 6e 74 65 6e 74 73 20 66 6f 72 20 61 20 73 70 65 63 69 | .a.database.contents.for.a.speci |
| 132300 | 66 69 63 20 6c 69 6e 6b 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 20 74 79 70 65 2e 00 54 68 69 | fic.link.advertisement.type..Thi |
| 132320 | 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 61 20 73 75 6d 6d 61 72 79 20 74 61 62 | s.command.displays.a.summary.tab |
| 132340 | 6c 65 20 77 69 74 68 20 61 20 64 61 74 61 62 61 73 65 20 63 6f 6e 74 65 6e 74 73 20 28 4c 53 41 | le.with.a.database.contents.(LSA |
| 132360 | 29 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 61 20 74 61 62 6c 65 | )..This.command.displays.a.table |
| 132380 | 20 6f 66 20 70 61 74 68 73 20 74 6f 20 61 72 65 61 20 62 6f 75 6e 64 61 72 79 20 61 6e 64 20 61 | .of.paths.to.area.boundary.and.a |
| 1323a0 | 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 20 62 6f 75 6e 64 61 72 79 20 72 6f 75 74 65 72 | utonomous.system.boundary.router |
| 1323c0 | 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 61 6c 6c 20 65 6e 74 | s..This.command.displays.all.ent |
| 1323e0 | 72 69 65 73 20 69 6e 20 42 47 50 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 00 54 68 69 73 20 | ries.in.BGP.routing.table..This. |
| 132400 | 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 64 61 6d 70 65 6e 65 64 20 72 6f 75 74 65 73 | command.displays.dampened.routes |
| 132420 | 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 42 47 50 20 6e 65 69 67 68 62 6f 72 2e 00 54 68 69 | .received.from.BGP.neighbor..Thi |
| 132440 | 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 65 78 74 65 72 6e 61 6c 20 69 6e 66 6f | s.command.displays.external.info |
| 132460 | 72 6d 61 74 69 6f 6e 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 69 6e 74 6f 20 4f 53 50 46 76 | rmation.redistributed.into.OSPFv |
| 132480 | 33 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 69 6e 66 6f 72 6d 61 74 | 3.This.command.displays.informat |
| 1324a0 | 69 6f 6e 20 61 62 6f 75 74 20 42 47 50 20 72 6f 75 74 65 73 20 77 68 6f 73 65 20 41 53 20 70 61 | ion.about.BGP.routes.whose.AS.pa |
| 1324c0 | 74 68 20 6d 61 74 63 68 65 73 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 72 65 67 75 6c 61 72 | th.matches.the.specified.regular |
| 1324e0 | 20 65 78 70 72 65 73 73 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 | .expression..This.command.displa |
| 132500 | 79 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 66 6c 61 70 70 69 6e 67 20 42 47 | ys.information.about.flapping.BG |
| 132520 | 50 20 72 6f 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 | P.routes..This.command.displays. |
| 132540 | 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 74 68 65 20 70 61 72 74 69 63 75 6c 61 72 | information.about.the.particular |
| 132560 | 20 65 6e 74 72 79 20 69 6e 20 74 68 65 20 42 47 50 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e | .entry.in.the.BGP.routing.table. |
| 132580 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 72 6f 75 74 65 73 20 74 68 | .This.command.displays.routes.th |
| 1325a0 | 61 74 20 61 72 65 20 70 65 72 6d 69 74 74 65 64 20 62 79 20 74 68 65 20 42 47 50 20 63 6f 6d 6d | at.are.permitted.by.the.BGP.comm |
| 1325c0 | 75 6e 69 74 79 20 6c 69 73 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 | unity.list..This.command.display |
| 1325e0 | 73 20 72 6f 75 74 65 73 20 74 68 61 74 20 62 65 6c 6f 6e 67 20 74 6f 20 73 70 65 63 69 66 69 65 | s.routes.that.belong.to.specifie |
| 132600 | 64 20 42 47 50 20 63 6f 6d 6d 75 6e 69 74 69 65 73 2e 20 56 61 6c 69 64 20 76 61 6c 75 65 20 69 | d.BGP.communities..Valid.value.i |
| 132620 | 73 20 61 20 63 6f 6d 6d 75 6e 69 74 79 20 6e 75 6d 62 65 72 20 69 6e 20 74 68 65 20 72 61 6e 67 | s.a.community.number.in.the.rang |
| 132640 | 65 20 66 72 6f 6d 20 31 20 74 6f 20 34 32 39 34 39 36 37 32 30 30 2c 20 6f 72 20 41 41 3a 4e 4e | e.from.1.to.4294967200,.or.AA:NN |
| 132660 | 20 28 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 2d 63 6f 6d 6d 75 6e 69 74 79 20 6e 75 | .(autonomous.system-community.nu |
| 132680 | 6d 62 65 72 2f 32 2d 62 79 74 65 20 6e 75 6d 62 65 72 29 2c 20 6e 6f 2d 65 78 70 6f 72 74 2c 20 | mber/2-byte.number),.no-export,. |
| 1326a0 | 6c 6f 63 61 6c 2d 61 73 2c 20 6f 72 20 6e 6f 2d 61 64 76 65 72 74 69 73 65 2e 00 54 68 69 73 20 | local-as,.or.no-advertise..This. |
| 1326c0 | 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 72 6f 75 74 65 73 20 77 69 74 68 20 63 6c 61 | command.displays.routes.with.cla |
| 1326e0 | 73 73 6c 65 73 73 20 69 6e 74 65 72 64 6f 6d 61 69 6e 20 72 6f 75 74 69 6e 67 20 28 43 49 44 52 | ssless.interdomain.routing.(CIDR |
| 132700 | 29 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 73 74 61 74 65 20 61 | )..This.command.displays.state.a |
| 132720 | 6e 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 4f 53 50 46 20 74 68 65 20 73 70 65 | nd.configuration.of.OSPF.the.spe |
| 132740 | 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 2c 20 6f 72 20 61 6c 6c 20 69 6e 74 65 72 66 61 | cified.interface,.or.all.interfa |
| 132760 | 63 65 73 20 69 66 20 6e 6f 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 67 69 76 65 6e 2e 00 54 68 | ces.if.no.interface.is.given..Th |
| 132780 | 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 73 74 61 74 65 20 61 6e 64 20 63 6f | is.command.displays.state.and.co |
| 1327a0 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 4f 53 50 46 20 74 68 65 20 73 70 65 63 69 66 69 65 | nfiguration.of.OSPF.the.specifie |
| 1327c0 | 64 20 69 6e 74 65 72 66 61 63 65 2c 20 6f 72 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 20 69 | d.interface,.or.all.interfaces.i |
| 1327e0 | 66 20 6e 6f 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 67 69 76 65 6e 2e 20 57 68 69 74 68 20 74 | f.no.interface.is.given..Whith.t |
| 132800 | 68 65 20 61 72 67 75 6d 65 6e 74 20 3a 63 66 67 63 6d 64 3a 60 70 72 65 66 69 78 60 20 74 68 69 | he.argument.:cfgcmd:`prefix`.thi |
| 132820 | 73 20 63 6f 6d 6d 61 6e 64 20 73 68 6f 77 73 20 63 6f 6e 6e 65 63 74 65 64 20 70 72 65 66 69 78 | s.command.shows.connected.prefix |
| 132840 | 65 73 20 74 6f 20 61 64 76 65 72 74 69 73 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 | es.to.advertise..This.command.di |
| 132860 | 73 70 6c 61 79 73 20 74 68 65 20 4f 53 50 46 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2c 20 61 | splays.the.OSPF.routing.table,.a |
| 132880 | 73 20 64 65 74 65 72 6d 69 6e 65 64 20 62 79 20 74 68 65 20 6d 6f 73 74 20 72 65 63 65 6e 74 20 | s.determined.by.the.most.recent. |
| 1328a0 | 53 50 46 20 63 61 6c 63 75 6c 61 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 | SPF.calculation..This.command.di |
| 1328c0 | 73 70 6c 61 79 73 20 74 68 65 20 4f 53 50 46 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2c 20 61 | splays.the.OSPF.routing.table,.a |
| 1328e0 | 73 20 64 65 74 65 72 6d 69 6e 65 64 20 62 79 20 74 68 65 20 6d 6f 73 74 20 72 65 63 65 6e 74 20 | s.determined.by.the.most.recent. |
| 132900 | 53 50 46 20 63 61 6c 63 75 6c 61 74 69 6f 6e 2e 20 57 69 74 68 20 74 68 65 20 6f 70 74 69 6f 6e | SPF.calculation..With.the.option |
| 132920 | 61 6c 20 3a 63 66 67 63 6d 64 3a 60 64 65 74 61 69 6c 60 20 61 72 67 75 6d 65 6e 74 2c 20 65 61 | al.:cfgcmd:`detail`.argument,.ea |
| 132940 | 63 68 20 72 6f 75 74 65 20 69 74 65 6d 27 73 20 61 64 76 65 72 74 69 73 65 72 20 72 6f 75 74 65 | ch.route.item's.advertiser.route |
| 132960 | 72 20 61 6e 64 20 6e 65 74 77 6f 72 6b 20 61 74 74 72 69 62 75 74 65 20 77 69 6c 6c 20 62 65 20 | r.and.network.attribute.will.be. |
| 132980 | 73 68 6f 77 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 74 68 65 | shown..This.command.displays.the |
| 1329a0 | 20 6e 65 69 67 68 62 6f 72 20 44 52 20 63 68 6f 69 63 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e | .neighbor.DR.choice.information. |
| 1329c0 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 6e 65 69 67 68 | .This.command.displays.the.neigh |
| 1329e0 | 62 6f 72 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 6e 20 61 20 64 65 74 61 69 6c 65 64 20 66 | bors.information.in.a.detailed.f |
| 132a00 | 6f 72 6d 20 66 6f 72 20 61 20 6e 65 69 67 68 62 6f 72 20 77 68 6f 73 65 20 49 50 20 61 64 64 72 | orm.for.a.neighbor.whose.IP.addr |
| 132a20 | 65 73 73 20 69 73 20 73 70 65 63 69 66 69 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 | ess.is.specified..This.command.d |
| 132a40 | 69 73 70 6c 61 79 73 20 74 68 65 20 6e 65 69 67 68 62 6f 72 73 20 69 6e 66 6f 72 6d 61 74 69 6f | isplays.the.neighbors.informatio |
| 132a60 | 6e 20 69 6e 20 61 20 64 65 74 61 69 6c 65 64 20 66 6f 72 6d 2c 20 6e 6f 74 20 6a 75 73 74 20 61 | n.in.a.detailed.form,.not.just.a |
| 132a80 | 20 73 75 6d 6d 61 72 79 20 74 61 62 6c 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 | .summary.table..This.command.dis |
| 132aa0 | 70 6c 61 79 73 20 74 68 65 20 6e 65 69 67 68 62 6f 72 73 20 73 74 61 74 75 73 20 66 6f 72 20 61 | plays.the.neighbors.status.for.a |
| 132ac0 | 20 6e 65 69 67 68 62 6f 72 20 6f 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 | .neighbor.on.the.specified.inter |
| 132ae0 | 66 61 63 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 | face..This.command.displays.the. |
| 132b00 | 6e 65 69 67 68 62 6f 72 73 20 73 74 61 74 75 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 | neighbors.status..This.command.d |
| 132b20 | 69 73 70 6c 61 79 73 20 74 68 65 20 73 74 61 74 75 73 20 6f 66 20 61 6c 6c 20 42 47 50 20 63 6f | isplays.the.status.of.all.BGP.co |
| 132b40 | 6e 6e 65 63 74 69 6f 6e 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 20 6c | nnections..This.command.enable.l |
| 132b60 | 6f 67 67 69 6e 67 20 6e 65 69 67 68 62 6f 72 20 75 70 2f 64 6f 77 6e 20 63 68 61 6e 67 65 73 20 | ogging.neighbor.up/down.changes. |
| 132b80 | 61 6e 64 20 72 65 73 65 74 20 72 65 61 73 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 | and.reset.reason..This.command.e |
| 132ba0 | 6e 61 62 6c 65 2f 64 69 73 61 62 6c 65 73 20 73 75 6d 6d 61 72 69 73 61 74 69 6f 6e 20 66 6f 72 | nable/disables.summarisation.for |
| 132bc0 | 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 61 64 64 72 65 73 73 20 72 61 6e 67 65 2e 00 54 | .the.configured.address.range..T |
| 132be0 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 3a 61 62 62 72 3a 60 42 46 44 20 28 | his.command.enables.:abbr:`BFD.( |
| 132c00 | 42 69 64 69 72 65 63 74 69 6f 6e 61 6c 20 46 6f 72 77 61 72 64 69 6e 67 20 44 65 74 65 63 74 69 | Bidirectional.Forwarding.Detecti |
| 132c20 | 6f 6e 29 60 20 6f 6e 20 74 68 69 73 20 4f 53 50 46 20 6c 69 6e 6b 20 69 6e 74 65 72 66 61 63 65 | on)`.on.this.OSPF.link.interface |
| 132c40 | 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 3a 72 66 63 3a 60 36 32 33 | ..This.command.enables.:rfc:`623 |
| 132c60 | 32 60 20 70 75 72 67 65 20 6f 72 69 67 69 6e 61 74 6f 72 20 69 64 65 6e 74 69 66 69 63 61 74 69 | 2`.purge.originator.identificati |
| 132c80 | 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 3a 72 66 63 3a 60 36 | on..This.command.enables.:rfc:`6 |
| 132ca0 | 32 33 32 60 20 70 75 72 67 65 20 6f 72 69 67 69 6e 61 74 6f 72 20 69 64 65 6e 74 69 66 69 63 61 | 232`.purge.originator.identifica |
| 132cc0 | 74 69 6f 6e 2e 20 45 6e 61 62 6c 65 20 70 75 72 67 65 20 6f 72 69 67 69 6e 61 74 6f 72 20 69 64 | tion..Enable.purge.originator.id |
| 132ce0 | 65 6e 74 69 66 69 63 61 74 69 6f 6e 20 28 50 4f 49 29 20 62 79 20 61 64 64 69 6e 67 20 74 68 65 | entification.(POI).by.adding.the |
| 132d00 | 20 74 79 70 65 2c 20 6c 65 6e 67 74 68 20 61 6e 64 20 76 61 6c 75 65 20 28 54 4c 56 29 20 77 69 | .type,.length.and.value.(TLV).wi |
| 132d20 | 74 68 20 74 68 65 20 49 6e 74 65 72 6d 65 64 69 61 74 65 20 53 79 73 74 65 6d 20 28 49 53 29 20 | th.the.Intermediate.System.(IS). |
| 132d40 | 69 64 65 6e 74 69 66 69 63 61 74 69 6f 6e 20 74 6f 20 74 68 65 20 4c 53 50 73 20 74 68 61 74 20 | identification.to.the.LSPs.that. |
| 132d60 | 64 6f 20 6e 6f 74 20 63 6f 6e 74 61 69 6e 20 50 4f 49 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 20 | do.not.contain.POI.information.. |
| 132d80 | 49 66 20 61 6e 20 49 53 20 67 65 6e 65 72 61 74 65 73 20 61 20 70 75 72 67 65 2c 20 56 79 4f 53 | If.an.IS.generates.a.purge,.VyOS |
| 132da0 | 20 61 64 64 73 20 74 68 69 73 20 54 4c 56 20 77 69 74 68 20 74 68 65 20 73 79 73 74 65 6d 20 49 | .adds.this.TLV.with.the.system.I |
| 132dc0 | 44 20 6f 66 20 74 68 65 20 49 53 20 74 6f 20 74 68 65 20 70 75 72 67 65 2e 00 54 68 69 73 20 63 | D.of.the.IS.to.the.purge..This.c |
| 132de0 | 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 49 50 20 66 61 73 74 20 72 65 2d 72 6f 75 74 69 6e | ommand.enables.IP.fast.re-routin |
| 132e00 | 67 20 74 68 61 74 20 69 73 20 70 61 72 74 20 6f 66 20 3a 72 66 63 3a 60 35 32 38 36 60 2e 20 53 | g.that.is.part.of.:rfc:`5286`..S |
| 132e20 | 70 65 63 69 66 69 63 61 6c 6c 79 20 74 68 69 73 20 69 73 20 61 20 70 72 65 66 69 78 20 6c 69 73 | pecifically.this.is.a.prefix.lis |
| 132e40 | 74 20 77 68 69 63 68 20 72 65 66 65 72 65 6e 63 65 73 20 61 20 70 72 65 66 69 78 20 69 6e 20 77 | t.which.references.a.prefix.in.w |
| 132e60 | 68 69 63 68 20 77 69 6c 6c 20 73 65 6c 65 63 74 20 65 6c 69 67 69 62 6c 65 20 50 51 20 6e 6f 64 | hich.will.select.eligible.PQ.nod |
| 132e80 | 65 73 20 66 6f 72 20 72 65 6d 6f 74 65 20 4c 46 41 20 62 61 63 6b 75 70 73 2e 00 54 68 69 73 20 | es.for.remote.LFA.backups..This. |
| 132ea0 | 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 49 53 2d 49 53 20 6f 6e 20 74 68 69 73 20 69 6e | command.enables.IS-IS.on.this.in |
| 132ec0 | 74 65 72 66 61 63 65 2c 20 61 6e 64 20 61 6c 6c 6f 77 73 20 66 6f 72 20 61 64 6a 61 63 65 6e 63 | terface,.and.allows.for.adjacenc |
| 132ee0 | 79 20 74 6f 20 6f 63 63 75 72 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 65 20 6e 61 6d 65 20 6f | y.to.occur..Note.that.the.name.o |
| 132f00 | 66 20 49 53 2d 49 53 20 69 6e 73 74 61 6e 63 65 20 6d 75 73 74 20 62 65 20 74 68 65 20 73 61 6d | f.IS-IS.instance.must.be.the.sam |
| 132f20 | 65 20 61 73 20 74 68 65 20 6f 6e 65 20 75 73 65 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 | e.as.the.one.used.to.configure.t |
| 132f40 | 68 65 20 49 53 2d 49 53 20 70 72 6f 63 65 73 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 | he.IS-IS.process..This.command.e |
| 132f60 | 6e 61 62 6c 65 73 20 4f 70 65 6e 46 61 62 72 69 63 20 69 6e 73 74 61 6e 63 65 20 77 69 74 68 20 | nables.OpenFabric.instance.with. |
| 132f80 | 3c 4e 41 4d 45 3e 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2c 20 61 6e 64 20 61 6c | <NAME>.on.this.interface,.and.al |
| 132fa0 | 6c 6f 77 73 20 66 6f 72 20 61 64 6a 61 63 65 6e 63 79 20 74 6f 20 6f 63 63 75 72 20 66 6f 72 20 | lows.for.adjacency.to.occur.for. |
| 132fc0 | 61 64 64 72 65 73 73 20 66 61 6d 69 6c 79 20 28 49 50 76 34 20 6f 72 20 49 50 76 36 20 6f 72 20 | address.family.(IPv4.or.IPv6.or. |
| 132fe0 | 62 6f 74 68 29 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 52 49 50 20 | both)..This.command.enables.RIP. |
| 133000 | 61 6e 64 20 73 65 74 73 20 74 68 65 20 52 49 50 20 65 6e 61 62 6c 65 20 69 6e 74 65 72 66 61 63 | and.sets.the.RIP.enable.interfac |
| 133020 | 65 20 62 79 20 4e 45 54 57 4f 52 4b 2e 20 54 68 65 20 69 6e 74 65 72 66 61 63 65 73 20 77 68 69 | e.by.NETWORK..The.interfaces.whi |
| 133040 | 63 68 20 68 61 76 65 20 61 64 64 72 65 73 73 65 73 20 6d 61 74 63 68 69 6e 67 20 77 69 74 68 20 | ch.have.addresses.matching.with. |
| 133060 | 4e 45 54 57 4f 52 4b 20 61 72 65 20 65 6e 61 62 6c 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e | NETWORK.are.enabled..This.comman |
| 133080 | 64 20 65 6e 61 62 6c 65 73 20 70 6f 69 73 6f 6e 2d 72 65 76 65 72 73 65 20 6f 6e 20 74 68 65 20 | d.enables.poison-reverse.on.the. |
| 1330a0 | 69 6e 74 65 72 66 61 63 65 2e 20 49 66 20 62 6f 74 68 20 70 6f 69 73 6f 6e 20 72 65 76 65 72 73 | interface..If.both.poison.revers |
| 1330c0 | 65 20 61 6e 64 20 73 70 6c 69 74 20 68 6f 72 69 7a 6f 6e 20 61 72 65 20 65 6e 61 62 6c 65 64 2c | e.and.split.horizon.are.enabled, |
| 1330e0 | 20 74 68 65 6e 20 56 79 4f 53 20 61 64 76 65 72 74 69 73 65 73 20 74 68 65 20 6c 65 61 72 6e 65 | .then.VyOS.advertises.the.learne |
| 133100 | 64 20 72 6f 75 74 65 73 20 61 73 20 75 6e 72 65 61 63 68 61 62 6c 65 20 6f 76 65 72 20 74 68 65 | d.routes.as.unreachable.over.the |
| 133120 | 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 77 68 69 63 68 20 74 68 65 20 72 6f 75 74 65 20 77 61 | .interface.on.which.the.route.wa |
| 133140 | 73 20 6c 65 61 72 6e 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 | s.learned..This.command.enables. |
| 133160 | 72 6f 75 74 69 6e 67 20 75 73 69 6e 67 20 72 61 64 69 6f 20 66 72 65 71 75 65 6e 63 79 20 64 69 | routing.using.radio.frequency.di |
| 133180 | 76 65 72 73 69 74 79 2e 20 54 68 69 73 20 69 73 20 68 69 67 68 6c 79 20 72 65 63 6f 6d 6d 65 6e | versity..This.is.highly.recommen |
| 1331a0 | 64 65 64 20 69 6e 20 6e 65 74 77 6f 72 6b 73 20 77 69 74 68 20 6d 61 6e 79 20 77 69 72 65 6c 65 | ded.in.networks.with.many.wirele |
| 1331c0 | 73 73 20 6e 6f 64 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 73 | ss.nodes..This.command.enables.s |
| 1331e0 | 65 6e 64 69 6e 67 20 74 69 6d 65 73 74 61 6d 70 73 20 77 69 74 68 20 65 61 63 68 20 48 65 6c 6c | ending.timestamps.with.each.Hell |
| 133200 | 6f 20 61 6e 64 20 49 48 55 20 6d 65 73 73 61 67 65 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 63 6f | o.and.IHU.message.in.order.to.co |
| 133220 | 6d 70 75 74 65 20 52 54 54 20 76 61 6c 75 65 73 2e 20 49 74 20 69 73 20 72 65 63 6f 6d 6d 65 6e | mpute.RTT.values..It.is.recommen |
| 133240 | 64 65 64 20 74 6f 20 65 6e 61 62 6c 65 20 74 69 6d 65 73 74 61 6d 70 73 20 6f 6e 20 74 75 6e 6e | ded.to.enable.timestamps.on.tunn |
| 133260 | 65 6c 20 69 6e 74 65 72 66 61 63 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 | el.interfaces..This.command.enab |
| 133280 | 6c 65 73 20 73 75 70 70 6f 72 74 20 66 6f 72 20 64 79 6e 61 6d 69 63 20 68 6f 73 74 6e 61 6d 65 | les.support.for.dynamic.hostname |
| 1332a0 | 20 54 4c 56 2e 20 44 79 6e 61 6d 69 63 20 68 6f 73 74 6e 61 6d 65 20 6d 61 70 70 69 6e 67 20 64 | .TLV..Dynamic.hostname.mapping.d |
| 1332c0 | 65 74 65 72 6d 69 6e 65 64 20 61 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 | etermined.as.described.in.:rfc:` |
| 1332e0 | 32 37 36 33 60 2c 20 44 79 6e 61 6d 69 63 20 48 6f 73 74 6e 61 6d 65 20 45 78 63 68 61 6e 67 65 | 2763`,.Dynamic.Hostname.Exchange |
| 133300 | 20 4d 65 63 68 61 6e 69 73 6d 20 66 6f 72 20 49 53 2d 49 53 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | .Mechanism.for.IS-IS..This.comma |
| 133320 | 6e 64 20 65 6e 61 62 6c 65 73 20 74 68 65 20 49 50 76 34 20 66 69 72 65 77 61 6c 6c 20 66 6f 72 | nd.enables.the.IPv4.firewall.for |
| 133340 | 20 62 72 69 64 67 65 64 20 74 72 61 66 66 69 63 2e 20 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e | .bridged.traffic..If.this.option |
| 133360 | 73 20 69 73 20 75 73 65 64 2c 20 74 68 65 6e 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 61 6c 73 6f | s.is.used,.then.packet.will.also |
| 133380 | 20 62 65 20 70 61 72 73 65 64 20 62 79 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 69 6e 20 60 | .be.parsed.by.rules.defined.in.` |
| 1333a0 | 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 2e 2e 2e 60 60 00 54 68 69 73 20 63 6f | `set.firewall.ipv4....``.This.co |
| 1333c0 | 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 74 68 65 20 49 50 76 36 20 66 69 72 65 77 61 6c 6c 20 | mmand.enables.the.IPv6.firewall. |
| 1333e0 | 66 6f 72 20 62 72 69 64 67 65 64 20 74 72 61 66 66 69 63 2e 20 49 66 20 74 68 69 73 20 6f 70 74 | for.bridged.traffic..If.this.opt |
| 133400 | 69 6f 6e 73 20 69 73 20 75 73 65 64 2c 20 74 68 65 6e 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 61 | ions.is.used,.then.packet.will.a |
| 133420 | 6c 73 6f 20 62 65 20 70 61 72 73 65 64 20 62 79 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 69 | lso.be.parsed.by.rules.defined.i |
| 133440 | 6e 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 2e 2e 2e 60 60 00 54 68 69 73 | n.``set.firewall.ipv6....``.This |
| 133460 | 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 74 68 65 20 4f 52 46 20 63 61 70 61 62 69 6c | .command.enables.the.ORF.capabil |
| 133480 | 69 74 79 20 28 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 35 32 39 31 60 29 20 6f | ity.(described.in.:rfc:`5291`).o |
| 1334a0 | 6e 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 2c 20 61 6e 64 20 65 6e 61 62 6c 65 73 20 | n.the.local.router,.and.enables. |
| 1334c0 | 4f 52 46 20 63 61 70 61 62 69 6c 69 74 79 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 20 74 6f 20 | ORF.capability.advertisement.to. |
| 1334e0 | 74 68 65 20 73 70 65 63 69 66 69 65 64 20 42 47 50 20 70 65 65 72 2e 20 54 68 65 20 3a 63 66 67 | the.specified.BGP.peer..The.:cfg |
| 133500 | 63 6d 64 3a 60 72 65 63 65 69 76 65 60 20 6b 65 79 77 6f 72 64 20 63 6f 6e 66 69 67 75 72 65 73 | cmd:`receive`.keyword.configures |
| 133520 | 20 61 20 72 6f 75 74 65 72 20 74 6f 20 61 64 76 65 72 74 69 73 65 20 4f 52 46 20 72 65 63 65 69 | .a.router.to.advertise.ORF.recei |
| 133540 | 76 65 20 63 61 70 61 62 69 6c 69 74 69 65 73 2e 20 54 68 65 20 3a 63 66 67 63 6d 64 3a 60 73 65 | ve.capabilities..The.:cfgcmd:`se |
| 133560 | 6e 64 60 20 6b 65 79 77 6f 72 64 20 63 6f 6e 66 69 67 75 72 65 73 20 61 20 72 6f 75 74 65 72 20 | nd`.keyword.configures.a.router. |
| 133580 | 74 6f 20 61 64 76 65 72 74 69 73 65 20 4f 52 46 20 73 65 6e 64 20 63 61 70 61 62 69 6c 69 74 69 | to.advertise.ORF.send.capabiliti |
| 1335a0 | 65 73 2e 20 54 6f 20 61 64 76 65 72 74 69 73 65 20 61 20 66 69 6c 74 65 72 20 66 72 6f 6d 20 61 | es..To.advertise.a.filter.from.a |
| 1335c0 | 20 73 65 6e 64 65 72 2c 20 79 6f 75 20 6d 75 73 74 20 63 72 65 61 74 65 20 61 6e 20 49 50 20 70 | .sender,.you.must.create.an.IP.p |
| 1335e0 | 72 65 66 69 78 20 6c 69 73 74 20 66 6f 72 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 42 47 50 | refix.list.for.the.specified.BGP |
| 133600 | 20 70 65 65 72 20 61 70 70 6c 69 65 64 20 69 6e 20 69 6e 62 6f 75 6e 64 20 64 65 72 65 63 74 69 | .peer.applied.in.inbound.derecti |
| 133620 | 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 74 68 65 20 70 61 73 | on..This.command.enables.the.pas |
| 133640 | 73 69 76 65 20 6d 6f 64 65 20 66 6f 72 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 | sive.mode.for.this.interface..Th |
| 133660 | 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 66 6f 72 63 65 73 20 47 65 6e 65 72 61 6c 69 7a 65 64 20 | is.command.enforces.Generalized. |
| 133680 | 54 54 4c 20 53 65 63 75 72 69 74 79 20 4d 65 63 68 61 6e 69 73 6d 20 28 47 54 53 4d 29 2c 20 61 | TTL.Security.Mechanism.(GTSM),.a |
| 1336a0 | 73 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 3a 72 66 63 3a 60 35 30 38 32 60 2e 20 57 69 74 68 | s.specified.in.:rfc:`5082`..With |
| 1336c0 | 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 2c 20 6f 6e 6c 79 20 6e 65 69 67 68 62 6f 72 73 20 74 68 | .this.command,.only.neighbors.th |
| 1336e0 | 61 74 20 61 72 65 20 73 70 65 63 69 66 69 65 64 20 6e 75 6d 62 65 72 20 6f 66 20 68 6f 70 73 20 | at.are.specified.number.of.hops. |
| 133700 | 61 77 61 79 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 77 65 64 20 74 6f 20 62 65 63 6f 6d 65 20 6e | away.will.be.allowed.to.become.n |
| 133720 | 65 69 67 68 62 6f 72 73 2e 20 54 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 68 6f 70 73 20 72 61 6e | eighbors..The.number.of.hops.ran |
| 133740 | 67 65 20 69 73 20 31 20 74 6f 20 32 35 34 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 | ge.is.1.to.254..This.command.is. |
| 133760 | 6d 75 74 75 61 6c 6c 79 20 65 78 63 6c 75 73 69 76 65 20 77 69 74 68 20 3a 63 66 67 63 6d 64 3a | mutually.exclusive.with.:cfgcmd: |
| 133780 | 60 65 62 67 70 2d 6d 75 6c 74 69 68 6f 70 60 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 66 6f | `ebgp-multihop`..This.command.fo |
| 1337a0 | 72 63 65 73 20 73 74 72 69 63 74 6c 79 20 63 6f 6d 70 61 72 65 20 72 65 6d 6f 74 65 20 63 61 70 | rces.strictly.compare.remote.cap |
| 1337c0 | 61 62 69 6c 69 74 69 65 73 20 61 6e 64 20 6c 6f 63 61 6c 20 63 61 70 61 62 69 6c 69 74 69 65 73 | abilities.and.local.capabilities |
| 1337e0 | 2e 20 49 66 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 61 72 65 20 64 69 66 66 65 72 65 6e 74 2c | ..If.capabilities.are.different, |
| 133800 | 20 73 65 6e 64 20 55 6e 73 75 70 70 6f 72 74 65 64 20 43 61 70 61 62 69 6c 69 74 79 20 65 72 72 | .send.Unsupported.Capability.err |
| 133820 | 6f 72 20 74 68 65 6e 20 72 65 73 65 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 54 68 69 73 20 63 | or.then.reset.connection..This.c |
| 133840 | 6f 6d 6d 61 6e 64 20 66 6f 72 63 65 73 20 74 68 65 20 42 47 50 20 73 70 65 61 6b 65 72 20 74 6f | ommand.forces.the.BGP.speaker.to |
| 133860 | 20 72 65 70 6f 72 74 20 69 74 73 65 6c 66 20 61 73 20 74 68 65 20 6e 65 78 74 20 68 6f 70 20 66 | .report.itself.as.the.next.hop.f |
| 133880 | 6f 72 20 61 6e 20 61 64 76 65 72 74 69 73 65 64 20 72 6f 75 74 65 20 69 74 20 61 64 76 65 72 74 | or.an.advertised.route.it.advert |
| 1338a0 | 69 73 65 64 20 74 6f 20 61 20 6e 65 69 67 68 62 6f 72 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | ised.to.a.neighbor..This.command |
| 1338c0 | 20 67 65 6e 65 72 61 74 65 20 61 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 69 6e 74 6f 20 74 | .generate.a.default.route.into.t |
| 1338e0 | 68 65 20 52 49 50 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 67 69 76 65 73 20 61 20 62 72 69 | he.RIP..This.command.gives.a.bri |
| 133900 | 65 66 20 73 74 61 74 75 73 20 6f 76 65 72 76 69 65 77 20 6f 66 20 61 20 73 70 65 63 69 66 69 65 | ef.status.overview.of.a.specifie |
| 133920 | 64 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 77 69 72 65 6c 65 | d.wireless.interface..The.wirele |
| 133940 | 73 73 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 63 61 6e 20 72 61 6e 67 | ss.interface.identifier.can.rang |
| 133960 | 65 20 66 72 6f 6d 20 77 6c 61 6e 30 20 74 6f 20 77 6c 61 6e 39 39 39 2e 00 54 68 69 73 20 63 6f | e.from.wlan0.to.wlan999..This.co |
| 133980 | 6d 6d 61 6e 64 20 67 6f 65 73 20 68 61 6e 64 20 69 6e 20 68 61 6e 64 20 77 69 74 68 20 74 68 65 | mmand.goes.hand.in.hand.with.the |
| 1339a0 | 20 6c 69 73 74 65 6e 20 72 61 6e 67 65 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6c 69 6d 69 74 20 74 | .listen.range.command.to.limit.t |
| 1339c0 | 68 65 20 61 6d 6f 75 6e 74 20 6f 66 20 42 47 50 20 6e 65 69 67 68 62 6f 72 73 20 74 68 61 74 20 | he.amount.of.BGP.neighbors.that. |
| 1339e0 | 61 72 65 20 61 6c 6c 6f 77 65 64 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 6c 6f | are.allowed.to.connect.to.the.lo |
| 133a00 | 63 61 6c 20 72 6f 75 74 65 72 2e 20 54 68 65 20 6c 69 6d 69 74 20 72 61 6e 67 65 20 69 73 20 31 | cal.router..The.limit.range.is.1 |
| 133a20 | 20 74 6f 20 35 30 30 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 67 6f 74 20 61 64 64 65 64 | .to.5000..This.command.got.added |
| 133a40 | 20 69 6e 20 56 79 4f 53 20 31 2e 34 20 61 6e 64 20 69 6e 76 65 72 74 73 20 74 68 65 20 6c 6f 67 | .in.VyOS.1.4.and.inverts.the.log |
| 133a60 | 69 63 20 66 72 6f 6d 20 74 68 65 20 6f 6c 64 20 60 60 64 65 66 61 75 6c 74 2d 72 6f 75 74 65 60 | ic.from.the.old.``default-route` |
| 133a80 | 60 20 43 4c 49 20 6f 70 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 6e 73 74 65 | `.CLI.option..This.command.inste |
| 133aa0 | 61 64 20 6f 66 20 73 75 6d 6d 61 72 69 7a 69 6e 67 20 69 6e 74 72 61 20 61 72 65 61 20 70 61 74 | ad.of.summarizing.intra.area.pat |
| 133ac0 | 68 73 20 66 69 6c 74 65 72 20 74 68 65 6d 20 2d 20 69 2e 65 2e 20 69 6e 74 72 61 20 61 72 65 61 | hs.filter.them.-.i.e..intra.area |
| 133ae0 | 20 70 61 74 68 73 20 66 72 6f 6d 20 74 68 69 73 20 72 61 6e 67 65 20 61 72 65 20 6e 6f 74 20 61 | .paths.from.this.range.are.not.a |
| 133b00 | 64 76 65 72 74 69 73 65 64 20 69 6e 74 6f 20 6f 74 68 65 72 20 61 72 65 61 73 2e 20 54 68 69 73 | dvertised.into.other.areas..This |
| 133b20 | 20 63 6f 6d 6d 61 6e 64 20 6d 61 6b 65 73 20 73 65 6e 73 65 20 69 6e 20 41 42 52 20 6f 6e 6c 79 | .command.makes.sense.in.ABR.only |
| 133b40 | 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 61 6c 73 6f 20 75 73 65 64 20 74 6f 20 65 | ..This.command.is.also.used.to.e |
| 133b60 | 6e 61 62 6c 65 20 74 68 65 20 4f 53 50 46 20 70 72 6f 63 65 73 73 2e 20 54 68 65 20 61 72 65 61 | nable.the.OSPF.process..The.area |
| 133b80 | 20 6e 75 6d 62 65 72 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 64 65 63 69 | .number.can.be.specified.in.deci |
| 133ba0 | 6d 61 6c 20 6e 6f 74 61 74 69 6f 6e 20 69 6e 20 74 68 65 20 72 61 6e 67 65 20 66 72 6f 6d 20 30 | mal.notation.in.the.range.from.0 |
| 133bc0 | 20 74 6f 20 34 32 39 34 39 36 37 32 39 35 2e 20 4f 72 20 69 74 20 63 61 6e 20 62 65 20 73 70 65 | .to.4294967295..Or.it.can.be.spe |
| 133be0 | 63 69 66 69 65 64 20 69 6e 20 64 6f 74 74 65 64 20 64 65 63 69 6d 61 6c 20 6e 6f 74 61 74 69 6f | cified.in.dotted.decimal.notatio |
| 133c00 | 6e 20 73 69 6d 69 6c 61 72 20 74 6f 20 69 70 20 61 64 64 72 65 73 73 2e 00 54 68 69 73 20 63 6f | n.similar.to.ip.address..This.co |
| 133c20 | 6d 6d 61 6e 64 20 69 73 20 6f 6e 6c 79 20 61 6c 6c 6f 77 65 64 20 66 6f 72 20 65 42 47 50 20 70 | mmand.is.only.allowed.for.eBGP.p |
| 133c40 | 65 65 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6f 6e 6c 79 20 61 6c 6c 6f 77 | eers..This.command.is.only.allow |
| 133c60 | 65 64 20 66 6f 72 20 65 42 47 50 20 70 65 65 72 73 2e 20 49 74 20 69 73 20 6e 6f 74 20 61 70 70 | ed.for.eBGP.peers..It.is.not.app |
| 133c80 | 6c 69 63 61 62 6c 65 20 66 6f 72 20 70 65 65 72 20 67 72 6f 75 70 73 2e 00 54 68 69 73 20 63 6f | licable.for.peer.groups..This.co |
| 133ca0 | 6d 6d 61 6e 64 20 69 73 20 6f 6e 6c 79 20 75 73 65 66 75 6c 20 61 74 20 73 63 61 6c 65 20 77 68 | mmand.is.only.useful.at.scale.wh |
| 133cc0 | 65 6e 20 79 6f 75 20 63 61 6e 20 70 6f 73 73 69 62 6c 79 20 68 61 76 65 20 61 20 6c 61 72 67 65 | en.you.can.possibly.have.a.large |
| 133ce0 | 20 6e 75 6d 62 65 72 20 6f 66 20 50 49 4d 20 63 6f 6e 74 72 6f 6c 20 70 61 63 6b 65 74 73 20 66 | .number.of.PIM.control.packets.f |
| 133d00 | 6c 6f 77 69 6e 67 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 73 70 65 63 69 66 69 63 | lowing..This.command.is.specific |
| 133d20 | 20 74 6f 20 46 52 52 20 61 6e 64 20 56 79 4f 53 2e 20 54 68 65 20 72 6f 75 74 65 20 63 6f 6d 6d | .to.FRR.and.VyOS..The.route.comm |
| 133d40 | 61 6e 64 20 6d 61 6b 65 73 20 61 20 73 74 61 74 69 63 20 72 6f 75 74 65 20 6f 6e 6c 79 20 69 6e | and.makes.a.static.route.only.in |
| 133d60 | 73 69 64 65 20 52 49 50 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 68 6f 75 6c 64 20 62 65 | side.RIP..This.command.should.be |
| 133d80 | 20 75 73 65 64 20 6f 6e 6c 79 20 62 79 20 61 64 76 61 6e 63 65 64 20 75 73 65 72 73 20 77 68 6f | .used.only.by.advanced.users.who |
| 133da0 | 20 61 72 65 20 70 61 72 74 69 63 75 6c 61 72 6c 79 20 6b 6e 6f 77 6c 65 64 67 65 61 62 6c 65 20 | .are.particularly.knowledgeable. |
| 133dc0 | 61 62 6f 75 74 20 74 68 65 20 52 49 50 20 70 72 6f 74 6f 63 6f 6c 2e 20 49 6e 20 6d 6f 73 74 20 | about.the.RIP.protocol..In.most. |
| 133de0 | 63 61 73 65 73 2c 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 63 72 65 61 74 69 6e 67 20 61 20 73 | cases,.we.recommend.creating.a.s |
| 133e00 | 74 61 74 69 63 20 72 6f 75 74 65 20 69 6e 20 56 79 4f 53 20 61 6e 64 20 72 65 64 69 73 74 72 69 | tatic.route.in.VyOS.and.redistri |
| 133e20 | 62 75 74 69 6e 67 20 69 74 20 69 6e 20 52 49 50 20 75 73 69 6e 67 20 3a 63 66 67 63 6d 64 3a 60 | buting.it.in.RIP.using.:cfgcmd:` |
| 133e40 | 72 65 64 69 73 74 72 69 62 75 74 65 20 73 74 61 74 69 63 60 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | redistribute.static`..This.comma |
| 133e60 | 6e 64 20 69 73 20 75 73 65 64 20 66 6f 72 20 61 64 76 65 72 74 69 73 69 6e 67 20 49 50 76 34 20 | nd.is.used.for.advertising.IPv4. |
| 133e80 | 6f 72 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 | or.IPv6.networks..This.command.i |
| 133ea0 | 73 20 75 73 65 64 20 74 6f 20 72 65 74 72 69 65 76 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 | s.used.to.retrieve.information.a |
| 133ec0 | 62 6f 75 74 20 57 41 50 20 77 69 74 68 69 6e 20 74 68 65 20 72 61 6e 67 65 20 6f 66 20 79 6f 75 | bout.WAP.within.the.range.of.you |
| 133ee0 | 72 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 63 6f 6d 6d 61 | r.wireless.interface..This.comma |
| 133f00 | 6e 64 20 69 73 20 75 73 65 66 75 6c 20 6f 6e 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 | nd.is.useful.on.wireless.interfa |
| 133f20 | 63 65 73 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 73 74 61 74 69 6f 6e 20 6d 6f 64 65 2e 00 | ces.configured.in.station.mode.. |
| 133f40 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 66 75 6c 20 69 66 20 6f 6e 65 20 64 65 | This.command.is.useful.if.one.de |
| 133f60 | 73 69 72 65 73 20 74 6f 20 6c 6f 6f 73 65 6e 20 74 68 65 20 72 65 71 75 69 72 65 6d 65 6e 74 20 | sires.to.loosen.the.requirement. |
| 133f80 | 66 6f 72 20 42 47 50 20 74 6f 20 68 61 76 65 20 73 74 72 69 63 74 6c 79 20 64 65 66 69 6e 65 64 | for.BGP.to.have.strictly.defined |
| 133fa0 | 20 6e 65 69 67 68 62 6f 72 73 2e 20 53 70 65 63 69 66 69 63 61 6c 6c 79 20 77 68 61 74 20 69 73 | .neighbors..Specifically.what.is |
| 133fc0 | 20 61 6c 6c 6f 77 65 64 20 69 73 20 66 6f 72 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 | .allowed.is.for.the.local.router |
| 133fe0 | 20 74 6f 20 6c 69 73 74 65 6e 20 74 6f 20 61 20 72 61 6e 67 65 20 6f 66 20 49 50 76 34 20 6f 72 | .to.listen.to.a.range.of.IPv4.or |
| 134000 | 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 64 65 66 69 6e 65 64 20 62 79 20 61 20 70 72 65 | .IPv6.addresses.defined.by.a.pre |
| 134020 | 66 69 78 20 61 6e 64 20 74 6f 20 61 63 63 65 70 74 20 42 47 50 20 6f 70 65 6e 20 6d 65 73 73 61 | fix.and.to.accept.BGP.open.messa |
| 134040 | 67 65 73 2e 20 57 68 65 6e 20 61 20 54 43 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 28 61 6e 64 20 | ges..When.a.TCP.connection.(and. |
| 134060 | 73 75 62 73 65 71 75 65 6e 74 6c 79 20 61 20 42 47 50 20 6f 70 65 6e 20 6d 65 73 73 61 67 65 29 | subsequently.a.BGP.open.message) |
| 134080 | 20 66 72 6f 6d 20 77 69 74 68 69 6e 20 74 68 69 73 20 72 61 6e 67 65 20 74 72 69 65 73 20 74 6f | .from.within.this.range.tries.to |
| 1340a0 | 20 63 6f 6e 6e 65 63 74 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 74 68 65 6e 20 74 | .connect.the.local.router.then.t |
| 1340c0 | 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 72 65 73 70 6f 6e 64 20 61 6e 64 | he.local.router.will.respond.and |
| 1340e0 | 20 63 6f 6e 6e 65 63 74 20 77 69 74 68 20 74 68 65 20 70 61 72 61 6d 65 74 65 72 73 20 74 68 61 | .connect.with.the.parameters.tha |
| 134100 | 74 20 61 72 65 20 64 65 66 69 6e 65 64 20 77 69 74 68 69 6e 20 74 68 65 20 70 65 65 72 20 67 72 | t.are.defined.within.the.peer.gr |
| 134120 | 6f 75 70 2e 20 4f 6e 65 20 6d 75 73 74 20 64 65 66 69 6e 65 20 61 20 70 65 65 72 2d 67 72 6f 75 | oup..One.must.define.a.peer-grou |
| 134140 | 70 20 66 6f 72 20 65 61 63 68 20 72 61 6e 67 65 20 74 68 61 74 20 69 73 20 6c 69 73 74 65 64 2e | p.for.each.range.that.is.listed. |
| 134160 | 20 49 66 20 6e 6f 20 70 65 65 72 2d 67 72 6f 75 70 20 69 73 20 64 65 66 69 6e 65 64 20 74 68 65 | .If.no.peer-group.is.defined.the |
| 134180 | 6e 20 61 6e 20 65 72 72 6f 72 20 77 69 6c 6c 20 6b 65 65 70 20 79 6f 75 20 66 72 6f 6d 20 63 6f | n.an.error.will.keep.you.from.co |
| 1341a0 | 6d 6d 69 74 74 69 6e 67 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 68 69 73 | mmitting.the.configuration..This |
| 1341c0 | 20 63 6f 6d 6d 61 6e 64 20 6d 6f 64 69 66 69 65 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 6d 65 | .command.modifies.the.default.me |
| 1341e0 | 74 72 69 63 20 28 68 6f 70 20 63 6f 75 6e 74 29 20 76 61 6c 75 65 20 66 6f 72 20 72 65 64 69 73 | tric.(hop.count).value.for.redis |
| 134200 | 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 2e 20 54 68 65 20 6d 65 74 72 69 63 20 72 61 6e 67 | tributed.routes..The.metric.rang |
| 134220 | 65 20 69 73 20 31 20 74 6f 20 31 36 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 | e.is.1.to.16..The.default.value. |
| 134240 | 69 73 20 31 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 6f 65 73 20 6e 6f 74 20 61 66 66 65 | is.1..This.command.does.not.affe |
| 134260 | 63 74 20 63 6f 6e 6e 65 63 74 65 64 20 72 6f 75 74 65 20 65 76 65 6e 20 69 66 20 69 74 20 69 73 | ct.connected.route.even.if.it.is |
| 134280 | 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 62 79 20 3a 63 66 67 63 6d 64 3a 60 72 65 64 69 73 | .redistributed.by.:cfgcmd:`redis |
| 1342a0 | 74 72 69 62 75 74 65 20 63 6f 6e 6e 65 63 74 65 64 60 2e 20 54 6f 20 6d 6f 64 69 66 79 20 63 6f | tribute.connected`..To.modify.co |
| 1342c0 | 6e 6e 65 63 74 65 64 20 72 6f 75 74 65 73 20 6d 65 74 72 69 63 20 76 61 6c 75 65 2c 20 70 6c 65 | nnected.routes.metric.value,.ple |
| 1342e0 | 61 73 65 20 75 73 65 20 3a 63 66 67 63 6d 64 3a 60 72 65 64 69 73 74 72 69 62 75 74 65 20 63 6f | ase.use.:cfgcmd:`redistribute.co |
| 134300 | 6e 6e 65 63 74 65 64 20 6d 65 74 72 69 63 60 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 6f 76 | nnected.metric`..This.command.ov |
| 134320 | 65 72 72 69 64 65 20 41 53 20 6e 75 6d 62 65 72 20 6f 66 20 74 68 65 20 6f 72 69 67 69 6e 61 74 | erride.AS.number.of.the.originat |
| 134340 | 69 6e 67 20 72 6f 75 74 65 72 20 77 69 74 68 20 74 68 65 20 6c 6f 63 61 6c 20 41 53 20 6e 75 6d | ing.router.with.the.local.AS.num |
| 134360 | 62 65 72 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 70 72 65 76 65 6e 74 73 20 66 72 6f 6d 20 | ber..This.command.prevents.from. |
| 134380 | 73 65 6e 64 69 6e 67 20 62 61 63 6b 20 70 72 65 66 69 78 65 73 20 6c 65 61 72 6e 65 64 20 66 72 | sending.back.prefixes.learned.fr |
| 1343a0 | 6f 6d 20 74 68 65 20 6e 65 69 67 68 62 6f 72 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 70 72 | om.the.neighbor..This.command.pr |
| 1343c0 | 6f 76 69 64 65 73 20 74 6f 20 63 6f 6d 70 61 72 65 20 64 69 66 66 65 72 65 6e 74 20 4d 45 44 20 | ovides.to.compare.different.MED. |
| 1343e0 | 76 61 6c 75 65 73 20 74 68 61 74 20 61 64 76 65 72 74 69 73 65 64 20 62 79 20 6e 65 69 67 68 62 | values.that.advertised.by.neighb |
| 134400 | 6f 75 72 73 20 69 6e 20 74 68 65 20 73 61 6d 65 20 41 53 20 66 6f 72 20 72 6f 75 74 65 73 20 73 | ours.in.the.same.AS.for.routes.s |
| 134420 | 65 6c 65 63 74 69 6f 6e 2e 20 57 68 65 6e 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 65 | election..When.this.command.is.e |
| 134440 | 6e 61 62 6c 65 64 2c 20 72 6f 75 74 65 73 20 66 72 6f 6d 20 74 68 65 20 73 61 6d 65 20 61 75 74 | nabled,.routes.from.the.same.aut |
| 134460 | 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 20 61 72 65 20 67 72 6f 75 70 65 64 20 74 6f 67 65 74 | onomous.system.are.grouped.toget |
| 134480 | 68 65 72 2c 20 61 6e 64 20 74 68 65 20 62 65 73 74 20 65 6e 74 72 69 65 73 20 6f 66 20 65 61 63 | her,.and.the.best.entries.of.eac |
| 1344a0 | 68 20 67 72 6f 75 70 20 61 72 65 20 63 6f 6d 70 61 72 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | h.group.are.compared..This.comma |
| 1344c0 | 6e 64 20 70 72 6f 76 69 64 65 73 20 74 6f 20 63 6f 6d 70 61 72 65 20 74 68 65 20 4d 45 44 20 6f | nd.provides.to.compare.the.MED.o |
| 1344e0 | 6e 20 72 6f 75 74 65 73 2c 20 65 76 65 6e 20 77 68 65 6e 20 74 68 65 79 20 77 65 72 65 20 72 65 | n.routes,.even.when.they.were.re |
| 134500 | 63 65 69 76 65 64 20 66 72 6f 6d 20 64 69 66 66 65 72 65 6e 74 20 6e 65 69 67 68 62 6f 75 72 69 | ceived.from.different.neighbouri |
| 134520 | 6e 67 20 41 53 65 73 2e 20 53 65 74 74 69 6e 67 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 6d 61 6b | ng.ASes..Setting.this.option.mak |
| 134540 | 65 73 20 74 68 65 20 6f 72 64 65 72 20 6f 66 20 70 72 65 66 65 72 65 6e 63 65 20 6f 66 20 72 6f | es.the.order.of.preference.of.ro |
| 134560 | 75 74 65 73 20 6d 6f 72 65 20 64 65 66 69 6e 65 64 2c 20 61 6e 64 20 73 68 6f 75 6c 64 20 65 6c | utes.more.defined,.and.should.el |
| 134580 | 69 6d 69 6e 61 74 65 20 4d 45 44 20 69 6e 64 75 63 65 64 20 6f 73 63 69 6c 6c 61 74 69 6f 6e 73 | iminate.MED.induced.oscillations |
| 1345a0 | 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 64 69 73 74 72 69 62 75 74 65 73 20 72 6f 75 | ..This.command.redistributes.rou |
| 1345c0 | 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 | ting.information.from.the.given. |
| 1345e0 | 72 6f 75 74 65 20 73 6f 75 72 63 65 20 69 6e 74 6f 20 74 68 65 20 49 53 49 53 20 64 61 74 61 62 | route.source.into.the.ISIS.datab |
| 134600 | 61 73 65 20 61 73 20 4c 65 76 65 6c 2d 31 2e 20 54 68 65 72 65 20 61 72 65 20 73 69 78 20 6d 6f | ase.as.Level-1..There.are.six.mo |
| 134620 | 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 | des.available.for.route.source:. |
| 134640 | 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 72 69 | bgp,.connected,.kernel,.ospf,.ri |
| 134660 | 70 2c 20 73 74 61 74 69 63 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 64 69 73 74 72 69 | p,.static..This.command.redistri |
| 134680 | 62 75 74 65 73 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 74 | butes.routing.information.from.t |
| 1346a0 | 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 20 69 6e 74 6f 20 74 68 65 20 49 | he.given.route.source.into.the.I |
| 1346c0 | 53 49 53 20 64 61 74 61 62 61 73 65 20 61 73 20 4c 65 76 65 6c 2d 32 2e 20 54 68 65 72 65 20 61 | SIS.database.as.Level-2..There.a |
| 1346e0 | 72 65 20 73 69 78 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 | re.six.modes.available.for.route |
| 134700 | 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c | .source:.bgp,.connected,.kernel, |
| 134720 | 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | .ospf,.rip,.static..This.command |
| 134740 | 20 72 65 64 69 73 74 72 69 62 75 74 65 73 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 | .redistributes.routing.informati |
| 134760 | 6f 6e 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 20 69 | on.from.the.given.route.source.i |
| 134780 | 6e 74 6f 20 74 68 65 20 52 49 50 20 74 61 62 6c 65 73 2e 20 54 68 65 72 65 20 61 72 65 20 66 69 | nto.the.RIP.tables..There.are.fi |
| 1347a0 | 76 65 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 | ve.modes.available.for.route.sou |
| 1347c0 | 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 | rce:.bgp,.connected,.kernel,.osp |
| 1347e0 | 66 2c 20 73 74 61 74 69 63 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 64 69 73 74 72 69 | f,.static..This.command.redistri |
| 134800 | 62 75 74 65 73 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 74 | butes.routing.information.from.t |
| 134820 | 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 20 74 6f 20 74 68 65 20 42 47 50 | he.given.route.source.to.the.BGP |
| 134840 | 20 70 72 6f 63 65 73 73 2e 20 54 68 65 72 65 20 61 72 65 20 73 69 78 20 6d 6f 64 65 73 20 61 76 | .process..There.are.six.modes.av |
| 134860 | 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 63 6f 6e 6e 65 63 | ailable.for.route.source:.connec |
| 134880 | 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2c 20 | ted,.kernel,.ospf,.rip,.static,. |
| 1348a0 | 74 61 62 6c 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 64 69 73 74 72 69 62 75 74 65 | table..This.command.redistribute |
| 1348c0 | 73 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 74 68 65 20 67 | s.routing.information.from.the.g |
| 1348e0 | 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 20 74 6f 20 74 68 65 20 42 61 62 65 6c 20 70 | iven.route.source.to.the.Babel.p |
| 134900 | 72 6f 63 65 73 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 64 69 73 74 72 69 62 75 74 | rocess..This.command.redistribut |
| 134920 | 65 73 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 74 68 65 20 | es.routing.information.from.the. |
| 134940 | 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 20 74 6f 20 74 68 65 20 4f 53 50 46 20 70 | given.route.source.to.the.OSPF.p |
| 134960 | 72 6f 63 65 73 73 2e 20 54 68 65 72 65 20 61 72 65 20 66 69 76 65 20 6d 6f 64 65 73 20 61 76 61 | rocess..There.are.five.modes.ava |
| 134980 | 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f | ilable.for.route.source:.bgp,.co |
| 1349a0 | 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2e 00 54 68 | nnected,.kernel,.rip,.static..Th |
| 1349c0 | 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 64 69 73 74 72 69 62 75 74 65 73 20 72 6f 75 74 69 6e 67 | is.command.redistributes.routing |
| 1349e0 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 | .information.from.the.given.rout |
| 134a00 | 65 20 73 6f 75 72 63 65 20 74 6f 20 74 68 65 20 4f 53 50 46 76 33 20 70 72 6f 63 65 73 73 2e 20 | e.source.to.the.OSPFv3.process.. |
| 134a20 | 54 68 65 72 65 20 61 72 65 20 66 69 76 65 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 | There.are.five.modes.available.f |
| 134a40 | 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c | or.route.source:.bgp,.connected, |
| 134a60 | 20 6b 65 72 6e 65 6c 2c 20 72 69 70 6e 67 2c 20 73 74 61 74 69 63 2e 00 54 68 69 73 20 63 6f 6d | .kernel,.ripng,.static..This.com |
| 134a80 | 6d 61 6e 64 20 72 65 6d 6f 76 65 73 20 74 68 65 20 70 72 69 76 61 74 65 20 41 53 4e 20 6f 66 20 | mand.removes.the.private.ASN.of. |
| 134aa0 | 72 6f 75 74 65 73 20 74 68 61 74 20 61 72 65 20 61 64 76 65 72 74 69 73 65 64 20 74 6f 20 74 68 | routes.that.are.advertised.to.th |
| 134ac0 | 65 20 63 6f 6e 66 69 67 75 72 65 64 20 70 65 65 72 2e 20 49 74 20 72 65 6d 6f 76 65 73 20 6f 6e | e.configured.peer..It.removes.on |
| 134ae0 | 6c 79 20 70 72 69 76 61 74 65 20 41 53 4e 73 20 6f 6e 20 72 6f 75 74 65 73 20 61 64 76 65 72 74 | ly.private.ASNs.on.routes.advert |
| 134b00 | 69 73 65 64 20 74 6f 20 45 42 47 50 20 70 65 65 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | ised.to.EBGP.peers..This.command |
| 134b20 | 20 72 65 73 65 74 73 20 42 47 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 73 | .resets.BGP.connections.to.the.s |
| 134b40 | 70 65 63 69 66 69 65 64 20 6e 65 69 67 68 62 6f 72 20 49 50 20 61 64 64 72 65 73 73 2e 20 57 69 | pecified.neighbor.IP.address..Wi |
| 134b60 | 74 68 20 61 72 67 75 6d 65 6e 74 20 3a 63 66 67 63 6d 64 3a 60 73 6f 66 74 60 20 74 68 69 73 20 | th.argument.:cfgcmd:`soft`.this. |
| 134b80 | 63 6f 6d 6d 61 6e 64 20 69 6e 69 74 69 61 74 65 73 20 61 20 73 6f 66 74 20 72 65 73 65 74 2e 20 | command.initiates.a.soft.reset.. |
| 134ba0 | 49 66 20 79 6f 75 20 64 6f 20 6e 6f 74 20 73 70 65 63 69 66 79 20 74 68 65 20 3a 63 66 67 63 6d | If.you.do.not.specify.the.:cfgcm |
| 134bc0 | 64 3a 60 69 6e 60 20 6f 72 20 3a 63 66 67 63 6d 64 3a 60 6f 75 74 60 20 6f 70 74 69 6f 6e 73 2c | d:`in`.or.:cfgcmd:`out`.options, |
| 134be0 | 20 62 6f 74 68 20 69 6e 62 6f 75 6e 64 20 61 6e 64 20 6f 75 74 62 6f 75 6e 64 20 73 6f 66 74 20 | .both.inbound.and.outbound.soft. |
| 134c00 | 72 65 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 72 65 20 74 72 69 67 67 65 72 65 64 2e 00 54 | reconfiguration.are.triggered..T |
| 134c20 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 73 65 74 73 20 42 47 50 20 63 6f 6e 6e 65 63 74 69 6f | his.command.resets.BGP.connectio |
| 134c40 | 6e 73 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 65 65 72 20 67 72 6f 75 70 2e 20 | ns.to.the.specified.peer.group.. |
| 134c60 | 57 69 74 68 20 61 72 67 75 6d 65 6e 74 20 3a 63 66 67 63 6d 64 3a 60 73 6f 66 74 60 20 74 68 69 | With.argument.:cfgcmd:`soft`.thi |
| 134c80 | 73 20 63 6f 6d 6d 61 6e 64 20 69 6e 69 74 69 61 74 65 73 20 61 20 73 6f 66 74 20 72 65 73 65 74 | s.command.initiates.a.soft.reset |
| 134ca0 | 2e 20 49 66 20 79 6f 75 20 64 6f 20 6e 6f 74 20 73 70 65 63 69 66 79 20 74 68 65 20 3a 63 66 67 | ..If.you.do.not.specify.the.:cfg |
| 134cc0 | 63 6d 64 3a 60 69 6e 60 20 6f 72 20 3a 63 66 67 63 6d 64 3a 60 6f 75 74 60 20 6f 70 74 69 6f 6e | cmd:`in`.or.:cfgcmd:`out`.option |
| 134ce0 | 73 2c 20 62 6f 74 68 20 69 6e 62 6f 75 6e 64 20 61 6e 64 20 6f 75 74 62 6f 75 6e 64 20 73 6f 66 | s,.both.inbound.and.outbound.sof |
| 134d00 | 74 20 72 65 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 72 65 20 74 72 69 67 67 65 72 65 64 2e | t.reconfiguration.are.triggered. |
| 134d20 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 73 65 74 73 20 61 6c 6c 20 42 47 50 20 63 6f 6e | .This.command.resets.all.BGP.con |
| 134d40 | 6e 65 63 74 69 6f 6e 73 20 6f 66 20 67 69 76 65 6e 20 72 6f 75 74 65 72 2e 00 54 68 69 73 20 63 | nections.of.given.router..This.c |
| 134d60 | 6f 6d 6d 61 6e 64 20 72 65 73 65 74 73 20 61 6c 6c 20 65 78 74 65 72 6e 61 6c 20 42 47 50 20 70 | ommand.resets.all.external.BGP.p |
| 134d80 | 65 65 72 73 20 6f 66 20 67 69 76 65 6e 20 72 6f 75 74 65 72 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | eers.of.given.router..This.comma |
| 134da0 | 6e 64 20 73 65 6c 65 63 74 73 20 41 42 52 20 6d 6f 64 65 6c 2e 20 4f 53 50 46 20 72 6f 75 74 65 | nd.selects.ABR.model..OSPF.route |
| 134dc0 | 72 20 73 75 70 70 6f 72 74 73 20 66 6f 75 72 20 41 42 52 20 6d 6f 64 65 6c 73 3a 00 54 68 69 73 | r.supports.four.ABR.models:.This |
| 134de0 | 20 63 6f 6d 6d 61 6e 64 20 73 65 74 20 64 65 66 61 75 6c 74 20 6d 65 74 72 69 63 20 66 6f 72 20 | .command.set.default.metric.for. |
| 134e00 | 63 69 72 63 75 69 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 20 74 68 65 20 63 68 | circuit..This.command.set.the.ch |
| 134e20 | 61 6e 6e 65 6c 20 6e 75 6d 62 65 72 20 74 68 61 74 20 64 69 76 65 72 73 69 74 79 20 72 6f 75 74 | annel.number.that.diversity.rout |
| 134e40 | 69 6e 67 20 75 73 65 73 20 66 6f 72 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 28 73 65 65 | ing.uses.for.this.interface.(see |
| 134e60 | 20 64 69 76 65 72 73 69 74 79 20 6f 70 74 69 6f 6e 20 61 62 6f 76 65 29 2e 00 54 68 69 73 20 63 | .diversity.option.above)..This.c |
| 134e80 | 6f 6d 6d 61 6e 64 20 73 65 74 73 20 41 54 54 20 62 69 74 20 74 6f 20 31 20 69 6e 20 4c 65 76 65 | ommand.sets.ATT.bit.to.1.in.Leve |
| 134ea0 | 6c 31 20 4c 53 50 73 2e 20 49 74 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 | l1.LSPs..It.is.described.in.:rfc |
| 134ec0 | 3a 60 33 37 38 37 60 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 43 6f 6d 70 6c | :`3787`..This.command.sets.Compl |
| 134ee0 | 65 74 65 20 53 65 71 75 65 6e 63 65 20 4e 75 6d 62 65 72 20 50 61 63 6b 65 74 73 20 28 43 53 4e | ete.Sequence.Number.Packets.(CSN |
| 134f00 | 50 29 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 | P).interval.in.seconds..The.inte |
| 134f20 | 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 30 30 2e 00 54 68 69 73 20 63 6f 6d | rval.range.is.1.to.600..This.com |
| 134f40 | 6d 61 6e 64 20 73 65 74 73 20 4c 53 50 20 6d 61 78 69 6d 75 6d 20 4c 53 50 20 6c 69 66 65 74 69 | mand.sets.LSP.maximum.LSP.lifeti |
| 134f60 | 6d 65 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 | me.in.seconds..The.interval.rang |
| 134f80 | 65 20 69 73 20 33 35 30 20 74 6f 20 36 35 35 33 35 2e 20 4c 53 50 73 20 72 65 6d 61 69 6e 20 69 | e.is.350.to.65535..LSPs.remain.i |
| 134fa0 | 6e 20 61 20 64 61 74 61 62 61 73 65 20 66 6f 72 20 31 32 30 30 20 73 65 63 6f 6e 64 73 20 62 79 | n.a.database.for.1200.seconds.by |
| 134fc0 | 20 64 65 66 61 75 6c 74 2e 20 49 66 20 74 68 65 79 20 61 72 65 20 6e 6f 74 20 72 65 66 72 65 73 | .default..If.they.are.not.refres |
| 134fe0 | 68 65 64 20 62 79 20 74 68 61 74 20 74 69 6d 65 2c 20 74 68 65 79 20 61 72 65 20 64 65 6c 65 74 | hed.by.that.time,.they.are.delet |
| 135000 | 65 64 2e 20 59 6f 75 20 63 61 6e 20 63 68 61 6e 67 65 20 74 68 65 20 4c 53 50 20 72 65 66 72 65 | ed..You.can.change.the.LSP.refre |
| 135020 | 73 68 20 69 6e 74 65 72 76 61 6c 20 6f 72 20 74 68 65 20 4c 53 50 20 6c 69 66 65 74 69 6d 65 2e | sh.interval.or.the.LSP.lifetime. |
| 135040 | 20 54 68 65 20 4c 53 50 20 72 65 66 72 65 73 68 20 69 6e 74 65 72 76 61 6c 20 73 68 6f 75 6c 64 | .The.LSP.refresh.interval.should |
| 135060 | 20 62 65 20 6c 65 73 73 20 74 68 61 6e 20 74 68 65 20 4c 53 50 20 6c 69 66 65 74 69 6d 65 20 6f | .be.less.than.the.LSP.lifetime.o |
| 135080 | 72 20 65 6c 73 65 20 4c 53 50 73 20 77 69 6c 6c 20 74 69 6d 65 20 6f 75 74 20 62 65 66 6f 72 65 | r.else.LSPs.will.time.out.before |
| 1350a0 | 20 74 68 65 79 20 61 72 65 20 72 65 66 72 65 73 68 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e | .they.are.refreshed..This.comman |
| 1350c0 | 64 20 73 65 74 73 20 4c 53 50 20 6d 61 78 69 6d 75 6d 20 4c 53 50 20 6c 69 66 65 74 69 6d 65 20 | d.sets.LSP.maximum.LSP.lifetime. |
| 1350e0 | 69 6e 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 | in.seconds..The.interval.range.i |
| 135100 | 73 20 33 36 30 20 74 6f 20 36 35 35 33 35 2e 20 4c 53 50 73 20 72 65 6d 61 69 6e 20 69 6e 20 61 | s.360.to.65535..LSPs.remain.in.a |
| 135120 | 20 64 61 74 61 62 61 73 65 20 66 6f 72 20 31 32 30 30 20 73 65 63 6f 6e 64 73 20 62 79 20 64 65 | .database.for.1200.seconds.by.de |
| 135140 | 66 61 75 6c 74 2e 20 49 66 20 74 68 65 79 20 61 72 65 20 6e 6f 74 20 72 65 66 72 65 73 68 65 64 | fault..If.they.are.not.refreshed |
| 135160 | 20 62 79 20 74 68 61 74 20 74 69 6d 65 2c 20 74 68 65 79 20 61 72 65 20 64 65 6c 65 74 65 64 2e | .by.that.time,.they.are.deleted. |
| 135180 | 20 59 6f 75 20 63 61 6e 20 63 68 61 6e 67 65 20 74 68 65 20 4c 53 50 20 72 65 66 72 65 73 68 20 | .You.can.change.the.LSP.refresh. |
| 1351a0 | 69 6e 74 65 72 76 61 6c 20 6f 72 20 74 68 65 20 4c 53 50 20 6c 69 66 65 74 69 6d 65 2e 20 54 68 | interval.or.the.LSP.lifetime..Th |
| 1351c0 | 65 20 4c 53 50 20 72 65 66 72 65 73 68 20 69 6e 74 65 72 76 61 6c 20 73 68 6f 75 6c 64 20 62 65 | e.LSP.refresh.interval.should.be |
| 1351e0 | 20 6c 65 73 73 20 74 68 61 6e 20 74 68 65 20 4c 53 50 20 6c 69 66 65 74 69 6d 65 20 6f 72 20 65 | .less.than.the.LSP.lifetime.or.e |
| 135200 | 6c 73 65 20 4c 53 50 73 20 77 69 6c 6c 20 74 69 6d 65 20 6f 75 74 20 62 65 66 6f 72 65 20 74 68 | lse.LSPs.will.time.out.before.th |
| 135220 | 65 79 20 61 72 65 20 72 65 66 72 65 73 68 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 | ey.are.refreshed..This.command.s |
| 135240 | 65 74 73 20 4c 53 50 20 72 65 66 72 65 73 68 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f | ets.LSP.refresh.interval.in.seco |
| 135260 | 6e 64 73 2e 20 49 53 2d 49 53 20 67 65 6e 65 72 61 74 65 73 20 4c 53 50 73 20 77 68 65 6e 20 74 | nds..IS-IS.generates.LSPs.when.t |
| 135280 | 68 65 20 73 74 61 74 65 20 6f 66 20 61 20 6c 69 6e 6b 20 63 68 61 6e 67 65 73 2e 20 48 6f 77 65 | he.state.of.a.link.changes..Howe |
| 1352a0 | 76 65 72 2c 20 74 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 72 6f 75 74 69 6e 67 20 64 61 74 61 | ver,.to.ensure.that.routing.data |
| 1352c0 | 62 61 73 65 73 20 6f 6e 20 61 6c 6c 20 72 6f 75 74 65 72 73 20 72 65 6d 61 69 6e 20 63 6f 6e 76 | bases.on.all.routers.remain.conv |
| 1352e0 | 65 72 67 65 64 2c 20 4c 53 50 73 20 69 6e 20 73 74 61 62 6c 65 20 6e 65 74 77 6f 72 6b 73 20 61 | erged,.LSPs.in.stable.networks.a |
| 135300 | 72 65 20 67 65 6e 65 72 61 74 65 64 20 6f 6e 20 61 20 72 65 67 75 6c 61 72 20 62 61 73 69 73 20 | re.generated.on.a.regular.basis. |
| 135320 | 65 76 65 6e 20 74 68 6f 75 67 68 20 74 68 65 72 65 20 68 61 73 20 62 65 65 6e 20 6e 6f 20 63 68 | even.though.there.has.been.no.ch |
| 135340 | 61 6e 67 65 20 74 6f 20 74 68 65 20 73 74 61 74 65 20 6f 66 20 74 68 65 20 6c 69 6e 6b 73 2e 20 | ange.to.the.state.of.the.links.. |
| 135360 | 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 35 32 33 35 | The.interval.range.is.1.to.65235 |
| 135380 | 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 39 30 30 20 73 65 63 6f 6e | ..The.default.value.is.900.secon |
| 1353a0 | 64 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 4c 53 50 20 72 65 66 72 65 73 | ds..This.command.sets.LSP.refres |
| 1353c0 | 68 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 72 | h.interval.in.seconds..The.inter |
| 1353e0 | 76 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 35 32 33 35 2e 00 54 68 69 73 20 63 6f | val.range.is.1.to.65235..This.co |
| 135400 | 6d 6d 61 6e 64 20 73 65 74 73 20 4f 53 50 46 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6b | mmand.sets.OSPF.authentication.k |
| 135420 | 65 79 20 74 6f 20 61 20 73 69 6d 70 6c 65 20 70 61 73 73 77 6f 72 64 2e 20 41 66 74 65 72 20 73 | ey.to.a.simple.password..After.s |
| 135440 | 65 74 74 69 6e 67 2c 20 61 6c 6c 20 4f 53 50 46 20 70 61 63 6b 65 74 73 20 61 72 65 20 61 75 74 | etting,.all.OSPF.packets.are.aut |
| 135460 | 68 65 6e 74 69 63 61 74 65 64 2e 20 4b 65 79 20 68 61 73 20 6c 65 6e 67 74 68 20 75 70 20 74 6f | henticated..Key.has.length.up.to |
| 135480 | 20 38 20 63 68 61 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 50 53 4e 50 | .8.chars..This.command.sets.PSNP |
| 1354a0 | 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 72 76 | .interval.in.seconds..The.interv |
| 1354c0 | 61 6c 20 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 31 32 37 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | al.range.is.0.to.127..This.comma |
| 1354e0 | 6e 64 20 73 65 74 73 20 50 61 72 74 69 61 6c 20 53 65 71 75 65 6e 63 65 20 4e 75 6d 62 65 72 20 | nd.sets.Partial.Sequence.Number. |
| 135500 | 50 61 63 6b 65 74 73 20 28 50 53 4e 50 29 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f 6e | Packets.(PSNP).interval.in.secon |
| 135520 | 64 73 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 | ds..The.interval.range.is.1.to.1 |
| 135540 | 32 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 52 6f 75 74 65 72 20 50 72 69 | 20..This.command.sets.Router.Pri |
| 135560 | 6f 72 69 74 79 20 69 6e 74 65 67 65 72 20 76 61 6c 75 65 2e 20 54 68 65 20 72 6f 75 74 65 72 20 | ority.integer.value..The.router. |
| 135580 | 77 69 74 68 20 74 68 65 20 68 69 67 68 65 73 74 20 70 72 69 6f 72 69 74 79 20 77 69 6c 6c 20 62 | with.the.highest.priority.will.b |
| 1355a0 | 65 20 6d 6f 72 65 20 65 6c 69 67 69 62 6c 65 20 74 6f 20 62 65 63 6f 6d 65 20 44 65 73 69 67 6e | e.more.eligible.to.become.Design |
| 1355c0 | 61 74 65 64 20 52 6f 75 74 65 72 2e 20 53 65 74 74 69 6e 67 20 74 68 65 20 76 61 6c 75 65 20 74 | ated.Router..Setting.the.value.t |
| 1355e0 | 6f 20 30 2c 20 6d 61 6b 65 73 20 74 68 65 20 72 6f 75 74 65 72 20 69 6e 65 6c 69 67 69 62 6c 65 | o.0,.makes.the.router.ineligible |
| 135600 | 20 74 6f 20 62 65 63 6f 6d 65 20 44 65 73 69 67 6e 61 74 65 64 20 52 6f 75 74 65 72 2e 20 54 68 | .to.become.Designated.Router..Th |
| 135620 | 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 2e 20 54 68 65 20 69 6e 74 65 72 76 | e.default.value.is.1..The.interv |
| 135640 | 61 6c 20 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 32 35 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | al.range.is.0.to.255..This.comma |
| 135660 | 6e 64 20 73 65 74 73 20 61 20 73 74 61 74 69 63 20 74 69 65 72 20 6e 75 6d 62 65 72 20 74 6f 20 | nd.sets.a.static.tier.number.to. |
| 135680 | 61 64 76 65 72 74 69 73 65 20 61 73 20 6c 6f 63 61 74 69 6f 6e 20 69 6e 20 74 68 65 20 66 61 62 | advertise.as.location.in.the.fab |
| 1356a0 | 72 69 63 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 64 65 66 61 75 6c 74 20 52 | ric..This.command.sets.default.R |
| 1356c0 | 49 50 20 64 69 73 74 61 6e 63 65 20 74 6f 20 61 20 73 70 65 63 69 66 69 65 64 20 76 61 6c 75 65 | IP.distance.to.a.specified.value |
| 1356e0 | 20 77 68 65 6e 20 74 68 65 20 72 6f 75 74 65 73 20 73 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 | .when.the.routes.source.IP.addre |
| 135700 | 73 73 20 6d 61 74 63 68 65 73 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 72 65 66 69 78 2e | ss.matches.the.specified.prefix. |
| 135720 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 64 65 66 61 75 6c 74 20 6d 65 74 72 69 | .This.command.sets.default.metri |
| 135740 | 63 20 66 6f 72 20 63 69 72 63 75 69 74 2e 20 54 68 65 20 6d 65 74 72 69 63 20 72 61 6e 67 65 20 | c.for.circuit..The.metric.range. |
| 135760 | 69 73 20 31 20 74 6f 20 31 36 37 37 37 32 31 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 | is.1.to.16777215..This.command.s |
| 135780 | 65 74 73 20 68 65 6c 6c 6f 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f 6e 64 73 20 6f 6e | ets.hello.interval.in.seconds.on |
| 1357a0 | 20 61 20 67 69 76 65 6e 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 72 61 6e 67 65 20 69 73 | .a.given.interface..The.range.is |
| 1357c0 | 20 31 20 74 6f 20 36 30 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 68 65 6c | .1.to.600..This.command.sets.hel |
| 1357e0 | 6c 6f 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f 6e 64 73 20 6f 6e 20 61 20 67 69 76 65 | lo.interval.in.seconds.on.a.give |
| 135800 | 6e 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 | n.interface..The.range.is.1.to.6 |
| 135820 | 30 30 2e 20 48 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 61 72 65 20 75 73 65 64 20 74 6f 20 65 73 | 00..Hello.packets.are.used.to.es |
| 135840 | 74 61 62 6c 69 73 68 20 61 6e 64 20 6d 61 69 6e 74 61 69 6e 20 61 64 6a 61 63 65 6e 63 79 20 62 | tablish.and.maintain.adjacency.b |
| 135860 | 65 74 77 65 65 6e 20 4f 70 65 6e 46 61 62 72 69 63 20 6e 65 69 67 68 62 6f 72 73 2e 00 54 68 69 | etween.OpenFabric.neighbors..Thi |
| 135880 | 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6c 69 6e 6b 20 63 6f 73 74 20 66 6f 72 20 74 68 65 | s.command.sets.link.cost.for.the |
| 1358a0 | 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 63 6f 73 74 20 76 | .specified.interface..The.cost.v |
| 1358c0 | 61 6c 75 65 20 69 73 20 73 65 74 20 74 6f 20 72 6f 75 74 65 72 2d 4c 53 41 e2 80 99 73 20 6d 65 | alue.is.set.to.router-LSA...s.me |
| 1358e0 | 74 72 69 63 20 66 69 65 6c 64 20 61 6e 64 20 75 73 65 64 20 66 6f 72 20 53 50 46 20 63 61 6c 63 | tric.field.and.used.for.SPF.calc |
| 135900 | 75 6c 61 74 69 6f 6e 2e 20 54 68 65 20 63 6f 73 74 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 | ulation..The.cost.range.is.1.to. |
| 135920 | 36 35 35 33 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6d 69 6e 69 6d 75 6d | 65535..This.command.sets.minimum |
| 135940 | 20 69 6e 74 65 72 76 61 6c 20 61 74 20 77 68 69 63 68 20 6c 69 6e 6b 2d 73 74 61 74 65 20 70 61 | .interval.at.which.link-state.pa |
| 135960 | 63 6b 65 74 73 20 28 4c 53 50 73 29 20 61 72 65 20 67 65 6e 65 72 61 74 65 64 2e 20 54 68 65 20 | ckets.(LSPs).are.generated..The. |
| 135980 | 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 32 30 2e 00 54 68 69 73 | interval.range.is.1.to.120..This |
| 1359a0 | 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6d 69 6e 69 6d 75 6d 20 69 6e 74 65 72 76 61 6c 20 62 | .command.sets.minimum.interval.b |
| 1359c0 | 65 74 77 65 65 6e 20 63 6f 6e 73 65 63 75 74 69 76 65 20 53 50 46 20 63 61 6c 63 75 6c 61 74 69 | etween.consecutive.SPF.calculati |
| 1359e0 | 6f 6e 73 20 69 6e 20 73 65 63 6f 6e 64 73 2e 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 | ons.in.seconds.The.interval.rang |
| 135a00 | 65 20 69 73 20 31 20 74 6f 20 31 32 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 | e.is.1.to.120..This.command.sets |
| 135a20 | 20 6d 69 6e 69 6d 75 6d 20 69 6e 74 65 72 76 61 6c 20 62 65 74 77 65 65 6e 20 63 6f 6e 73 65 63 | .minimum.interval.between.consec |
| 135a40 | 75 74 69 76 65 20 73 68 6f 72 74 65 73 74 20 70 61 74 68 20 66 69 72 73 74 20 28 53 50 46 29 20 | utive.shortest.path.first.(SPF). |
| 135a60 | 63 61 6c 63 75 6c 61 74 69 6f 6e 73 20 69 6e 20 73 65 63 6f 6e 64 73 2e 54 68 65 20 69 6e 74 65 | calculations.in.seconds.The.inte |
| 135a80 | 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 32 30 2e 00 54 68 69 73 20 63 6f 6d | rval.range.is.1.to.120..This.com |
| 135aa0 | 6d 61 6e 64 20 73 65 74 73 20 6d 69 6e 69 6d 75 6d 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 | mand.sets.minimum.interval.in.se |
| 135ac0 | 63 6f 6e 64 73 20 62 65 74 77 65 65 6e 20 72 65 67 65 6e 65 72 61 74 69 6e 67 20 73 61 6d 65 20 | conds.between.regenerating.same. |
| 135ae0 | 4c 53 50 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 | LSP..The.interval.range.is.1.to. |
| 135b00 | 31 32 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6d 75 6c 74 69 70 6c 69 65 | 120..This.command.sets.multiplie |
| 135b20 | 72 20 66 6f 72 20 68 65 6c 6c 6f 20 68 6f 6c 64 69 6e 67 20 74 69 6d 65 20 6f 6e 20 61 20 67 69 | r.for.hello.holding.time.on.a.gi |
| 135b40 | 76 65 6e 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 72 61 6e 67 65 20 69 73 20 32 20 74 6f | ven.interface..The.range.is.2.to |
| 135b60 | 20 31 30 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6e 65 74 77 6f 72 6b 20 | .100..This.command.sets.network. |
| 135b80 | 65 6e 74 69 74 79 20 74 69 74 6c 65 20 28 4e 45 54 29 20 70 72 6f 76 69 64 65 64 20 69 6e 20 49 | entity.title.(NET).provided.in.I |
| 135ba0 | 53 4f 20 66 6f 72 6d 61 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6e 75 6d | SO.format..This.command.sets.num |
| 135bc0 | 62 65 72 20 6f 66 20 73 65 63 6f 6e 64 73 20 66 6f 72 20 49 6e 66 54 72 61 6e 73 44 65 6c 61 79 | ber.of.seconds.for.InfTransDelay |
| 135be0 | 20 76 61 6c 75 65 2e 20 49 74 20 61 6c 6c 6f 77 73 20 74 6f 20 73 65 74 20 61 6e 64 20 61 64 6a | .value..It.allows.to.set.and.adj |
| 135c00 | 75 73 74 20 66 6f 72 20 65 61 63 68 20 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 64 65 6c 61 79 | ust.for.each.interface.the.delay |
| 135c20 | 20 69 6e 74 65 72 76 61 6c 20 62 65 66 6f 72 65 20 73 74 61 72 74 69 6e 67 20 74 68 65 20 73 79 | .interval.before.starting.the.sy |
| 135c40 | 6e 63 68 72 6f 6e 69 7a 69 6e 67 20 70 72 6f 63 65 73 73 20 6f 66 20 74 68 65 20 72 6f 75 74 65 | nchronizing.process.of.the.route |
| 135c60 | 72 27 73 20 64 61 74 61 62 61 73 65 20 77 69 74 68 20 61 6c 6c 20 6e 65 69 67 68 62 6f 72 73 2e | r's.database.with.all.neighbors. |
| 135c80 | 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 20 73 65 63 6f 6e 64 73 2e | .The.default.value.is.1.seconds. |
| 135ca0 | 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 33 20 74 6f 20 36 35 35 33 | .The.interval.range.is.3.to.6553 |
| 135cc0 | 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6e 75 6d 62 65 72 20 6f 66 20 73 | 5..This.command.sets.number.of.s |
| 135ce0 | 65 63 6f 6e 64 73 20 66 6f 72 20 52 78 6d 74 49 6e 74 65 72 76 61 6c 20 74 69 6d 65 72 20 76 61 | econds.for.RxmtInterval.timer.va |
| 135d00 | 6c 75 65 2e 20 54 68 69 73 20 76 61 6c 75 65 20 69 73 20 75 73 65 64 20 77 68 65 6e 20 72 65 74 | lue..This.value.is.used.when.ret |
| 135d20 | 72 61 6e 73 6d 69 74 74 69 6e 67 20 44 61 74 61 62 61 73 65 20 44 65 73 63 72 69 70 74 69 6f 6e | ransmitting.Database.Description |
| 135d40 | 20 61 6e 64 20 4c 69 6e 6b 20 53 74 61 74 65 20 52 65 71 75 65 73 74 20 70 61 63 6b 65 74 73 20 | .and.Link.State.Request.packets. |
| 135d60 | 69 66 20 61 63 6b 6e 6f 77 6c 65 64 67 65 20 77 61 73 20 6e 6f 74 20 72 65 63 65 69 76 65 64 2e | if.acknowledge.was.not.received. |
| 135d80 | 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 35 20 73 65 63 6f 6e 64 73 2e | .The.default.value.is.5.seconds. |
| 135da0 | 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 33 20 74 6f 20 36 35 35 33 | .The.interval.range.is.3.to.6553 |
| 135dc0 | 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6f 6c 64 2d 73 74 79 6c 65 20 28 | 5..This.command.sets.old-style.( |
| 135de0 | 49 53 4f 20 31 30 35 38 39 29 20 6f 72 20 6e 65 77 20 73 74 79 6c 65 20 70 61 63 6b 65 74 20 66 | ISO.10589).or.new.style.packet.f |
| 135e00 | 6f 72 6d 61 74 73 3a 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6f 74 68 65 72 20 | ormats:.This.command.sets.other. |
| 135e20 | 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e 73 20 3c 6e 73 75 62 61 73 6e 3e 20 61 73 20 6d 65 6d 62 | confederations.<nsubasn>.as.memb |
| 135e40 | 65 72 73 20 6f 66 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 20 73 70 65 63 69 66 69 | ers.of.autonomous.system.specifi |
| 135e60 | 65 64 20 62 79 20 3a 63 66 67 63 6d 64 3a 60 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e 20 69 64 65 | ed.by.:cfgcmd:`confederation.ide |
| 135e80 | 6e 74 69 66 69 65 72 20 3c 61 73 6e 3e 60 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 | ntifier.<asn>`..This.command.set |
| 135ea0 | 73 20 6f 76 65 72 6c 6f 61 64 20 62 69 74 20 74 6f 20 61 76 6f 69 64 20 61 6e 79 20 74 72 61 6e | s.overload.bit.to.avoid.any.tran |
| 135ec0 | 73 69 74 20 74 72 61 66 66 69 63 20 74 68 72 6f 75 67 68 20 74 68 69 73 20 72 6f 75 74 65 72 2e | sit.traffic.through.this.router. |
| 135ee0 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6f 76 65 72 6c 6f 61 64 20 62 69 74 20 | .This.command.sets.overload.bit. |
| 135f00 | 74 6f 20 61 76 6f 69 64 20 61 6e 79 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 74 68 72 | to.avoid.any.transit.traffic.thr |
| 135f20 | 6f 75 67 68 20 74 68 69 73 20 72 6f 75 74 65 72 2e 20 49 74 20 69 73 20 64 65 73 63 72 69 62 65 | ough.this.router..It.is.describe |
| 135f40 | 64 20 69 6e 20 3a 72 66 63 3a 60 33 37 38 37 60 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 | d.in.:rfc:`3787`..This.command.s |
| 135f60 | 65 74 73 20 70 72 69 6f 72 69 74 79 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 66 | ets.priority.for.the.interface.f |
| 135f80 | 6f 72 20 3a 61 62 62 72 3a 60 44 49 53 20 28 44 65 73 69 67 6e 61 74 65 64 20 49 6e 74 65 72 6d | or.:abbr:`DIS.(Designated.Interm |
| 135fa0 | 65 64 69 61 74 65 20 53 79 73 74 65 6d 29 60 20 65 6c 65 63 74 69 6f 6e 2e 20 54 68 65 20 70 72 | ediate.System)`.election..The.pr |
| 135fc0 | 69 6f 72 69 74 79 20 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 31 32 37 2e 00 54 68 69 73 20 63 | iority.range.is.0.to.127..This.c |
| 135fe0 | 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 20 64 | ommand.sets.the.administrative.d |
| 136000 | 69 73 74 61 6e 63 65 20 66 6f 72 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 72 6f 75 74 65 2e 20 | istance.for.a.particular.route.. |
| 136020 | 54 68 65 20 64 69 73 74 61 6e 63 65 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 2e 00 | The.distance.range.is.1.to.255.. |
| 136040 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 | This.command.sets.the.authentica |
| 136060 | 74 69 6f 6e 20 70 61 73 73 77 6f 72 64 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e | tion.password.for.the.interface. |
| 136080 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 63 6f 73 74 20 6f 66 20 64 | .This.command.sets.the.cost.of.d |
| 1360a0 | 65 66 61 75 6c 74 2d 73 75 6d 6d 61 72 79 20 4c 53 41 73 20 61 6e 6e 6f 75 6e 63 65 64 20 74 6f | efault-summary.LSAs.announced.to |
| 1360c0 | 20 73 74 75 62 62 79 20 61 72 65 61 73 2e 20 54 68 65 20 63 6f 73 74 20 72 61 6e 67 65 20 69 73 | .stubby.areas..The.cost.range.is |
| 1360e0 | 20 30 20 74 6f 20 31 36 37 37 37 32 31 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 | .0.to.16777215..This.command.set |
| 136100 | 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 63 6f 73 74 20 6f 66 20 4c 53 41 73 20 61 6e 6e 6f 75 | s.the.default.cost.of.LSAs.annou |
| 136120 | 6e 63 65 64 20 74 6f 20 4e 53 53 41 20 61 72 65 61 73 2e 20 54 68 65 20 63 6f 73 74 20 72 61 6e | nced.to.NSSA.areas..The.cost.ran |
| 136140 | 67 65 20 69 73 20 30 20 74 6f 20 31 36 37 37 37 32 31 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e | ge.is.0.to.16777215..This.comman |
| 136160 | 64 20 73 65 74 73 20 74 68 65 20 69 6e 69 74 69 61 6c 20 64 65 6c 61 79 2c 20 74 68 65 20 69 6e | d.sets.the.initial.delay,.the.in |
| 136180 | 69 74 69 61 6c 2d 68 6f 6c 64 74 69 6d 65 20 61 6e 64 20 74 68 65 20 6d 61 78 69 6d 75 6d 2d 68 | itial-holdtime.and.the.maximum-h |
| 1361a0 | 6f 6c 64 74 69 6d 65 20 62 65 74 77 65 65 6e 20 77 68 65 6e 20 53 50 46 20 69 73 20 63 61 6c 63 | oldtime.between.when.SPF.is.calc |
| 1361c0 | 75 6c 61 74 65 64 20 61 6e 64 20 74 68 65 20 65 76 65 6e 74 20 77 68 69 63 68 20 74 72 69 67 67 | ulated.and.the.event.which.trigg |
| 1361e0 | 65 72 65 64 20 74 68 65 20 63 61 6c 63 75 6c 61 74 69 6f 6e 2e 20 54 68 65 20 74 69 6d 65 73 20 | ered.the.calculation..The.times. |
| 136200 | 61 72 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 20 61 6e | are.specified.in.milliseconds.an |
| 136220 | 64 20 6d 75 73 74 20 62 65 20 69 6e 20 74 68 65 20 72 61 6e 67 65 20 6f 66 20 30 20 74 6f 20 36 | d.must.be.in.the.range.of.0.to.6 |
| 136240 | 30 30 30 30 30 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 2e 20 3a 63 66 67 63 6d 64 3a 60 64 65 6c | 00000.milliseconds..:cfgcmd:`del |
| 136260 | 61 79 60 20 73 65 74 73 20 74 68 65 20 69 6e 69 74 69 61 6c 20 53 50 46 20 73 63 68 65 64 75 6c | ay`.sets.the.initial.SPF.schedul |
| 136280 | 65 20 64 65 6c 61 79 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 64 65 66 | e.delay.in.milliseconds..The.def |
| 1362a0 | 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 32 30 30 20 6d 73 2e 20 3a 63 66 67 63 6d 64 3a 60 69 | ault.value.is.200.ms..:cfgcmd:`i |
| 1362c0 | 6e 69 74 69 61 6c 2d 68 6f 6c 64 74 69 6d 65 60 20 73 65 74 73 20 74 68 65 20 6d 69 6e 69 6d 75 | nitial-holdtime`.sets.the.minimu |
| 1362e0 | 6d 20 68 6f 6c 64 20 74 69 6d 65 20 62 65 74 77 65 65 6e 20 74 77 6f 20 63 6f 6e 73 65 63 75 74 | m.hold.time.between.two.consecut |
| 136300 | 69 76 65 20 53 50 46 20 63 61 6c 63 75 6c 61 74 69 6f 6e 73 2e 20 54 68 65 20 64 65 66 61 75 6c | ive.SPF.calculations..The.defaul |
| 136320 | 74 20 76 61 6c 75 65 20 69 73 20 31 30 30 30 20 6d 73 2e 20 3a 63 66 67 63 6d 64 3a 60 6d 61 78 | t.value.is.1000.ms..:cfgcmd:`max |
| 136340 | 2d 68 6f 6c 64 74 69 6d 65 60 20 73 65 74 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 77 61 69 74 | -holdtime`.sets.the.maximum.wait |
| 136360 | 20 74 69 6d 65 20 62 65 74 77 65 65 6e 20 74 77 6f 20 63 6f 6e 73 65 63 75 74 69 76 65 20 53 50 | .time.between.two.consecutive.SP |
| 136380 | 46 20 63 61 6c 63 75 6c 61 74 69 6f 6e 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 | F.calculations..The.default.valu |
| 1363a0 | 65 20 69 73 20 31 30 30 30 30 20 6d 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 | e.is.10000.ms..This.command.sets |
| 1363c0 | 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 62 61 6e 64 77 69 64 74 68 20 66 6f 72 20 63 6f 73 | .the.interface.bandwidth.for.cos |
| 1363e0 | 74 20 63 61 6c 63 75 6c 61 74 69 6f 6e 73 2c 20 77 68 65 72 65 20 62 61 6e 64 77 69 64 74 68 20 | t.calculations,.where.bandwidth. |
| 136400 | 63 61 6e 20 62 65 20 69 6e 20 72 61 6e 67 65 20 66 72 6f 6d 20 31 20 74 6f 20 31 30 30 30 30 30 | can.be.in.range.from.1.to.100000 |
| 136420 | 2c 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 4d 62 69 74 73 2f 73 2e 00 54 68 69 73 20 63 6f 6d | ,.specified.in.Mbits/s..This.com |
| 136440 | 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 79 70 65 3a 00 54 68 | mand.sets.the.interface.type:.Th |
| 136460 | 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 69 | is.command.sets.the.interface.wi |
| 136480 | 74 68 20 52 49 50 20 4d 44 35 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 20 54 68 69 73 20 | th.RIP.MD5.authentication..This. |
| 1364a0 | 63 6f 6d 6d 61 6e 64 20 61 6c 73 6f 20 73 65 74 73 20 4d 44 35 20 4b 65 79 2e 20 54 68 65 20 6b | command.also.sets.MD5.Key..The.k |
| 1364c0 | 65 79 20 6d 75 73 74 20 62 65 20 73 68 6f 72 74 65 72 20 74 68 61 6e 20 31 36 20 63 68 61 72 61 | ey.must.be.shorter.than.16.chara |
| 1364e0 | 63 74 65 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 69 6e 74 | cters..This.command.sets.the.int |
| 136500 | 65 72 66 61 63 65 20 77 69 74 68 20 52 49 50 20 73 69 6d 70 6c 65 20 70 61 73 73 77 6f 72 64 20 | erface.with.RIP.simple.password. |
| 136520 | 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 73 | authentication..This.command.als |
| 136540 | 6f 20 73 65 74 73 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 74 72 69 6e 67 2e 20 54 68 | o.sets.authentication.string..Th |
| 136560 | 65 20 73 74 72 69 6e 67 20 6d 75 73 74 20 62 65 20 73 68 6f 72 74 65 72 20 74 68 61 6e 20 31 36 | e.string.must.be.shorter.than.16 |
| 136580 | 20 63 68 61 72 61 63 74 65 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 | .characters..This.command.sets.t |
| 1365a0 | 68 65 20 6d 75 6c 74 69 70 6c 69 63 61 74 69 76 65 20 66 61 63 74 6f 72 20 75 73 65 64 20 66 6f | he.multiplicative.factor.used.fo |
| 1365c0 | 72 20 64 69 76 65 72 73 69 74 79 20 72 6f 75 74 69 6e 67 2c 20 69 6e 20 75 6e 69 74 73 20 6f 66 | r.diversity.routing,.in.units.of |
| 1365e0 | 20 31 2f 32 35 36 3b 20 6c 6f 77 65 72 20 76 61 6c 75 65 73 20 63 61 75 73 65 20 64 69 76 65 72 | .1/256;.lower.values.cause.diver |
| 136600 | 73 69 74 79 20 74 6f 20 70 6c 61 79 20 61 20 6d 6f 72 65 20 69 6d 70 6f 72 74 61 6e 74 20 72 6f | sity.to.play.a.more.important.ro |
| 136620 | 6c 65 20 69 6e 20 72 6f 75 74 65 20 73 65 6c 65 63 74 69 6f 6e 2e 20 54 68 65 20 64 65 66 61 75 | le.in.route.selection..The.defau |
| 136640 | 6c 74 20 69 74 20 32 35 36 2c 20 77 68 69 63 68 20 6d 65 61 6e 73 20 74 68 61 74 20 64 69 76 65 | lt.it.256,.which.means.that.dive |
| 136660 | 72 73 69 74 79 20 70 6c 61 79 73 20 6e 6f 20 72 6f 6c 65 20 69 6e 20 72 6f 75 74 65 20 73 65 6c | rsity.plays.no.role.in.route.sel |
| 136680 | 65 63 74 69 6f 6e 3b 20 79 6f 75 20 77 69 6c 6c 20 70 72 6f 62 61 62 6c 79 20 77 61 6e 74 20 74 | ection;.you.will.probably.want.t |
| 1366a0 | 6f 20 73 65 74 20 74 68 61 74 20 74 6f 20 31 32 38 20 6f 72 20 6c 65 73 73 20 6f 6e 20 6e 6f 64 | o.set.that.to.128.or.less.on.nod |
| 1366c0 | 65 73 20 77 69 74 68 20 6d 75 6c 74 69 70 6c 65 20 69 6e 64 65 70 65 6e 64 65 6e 74 20 72 61 64 | es.with.multiple.independent.rad |
| 1366e0 | 69 6f 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 72 65 66 65 72 | ios..This.command.sets.the.refer |
| 136700 | 65 6e 63 65 20 62 61 6e 64 77 69 64 74 68 20 66 6f 72 20 63 6f 73 74 20 63 61 6c 63 75 6c 61 74 | ence.bandwidth.for.cost.calculat |
| 136720 | 69 6f 6e 73 2c 20 77 68 65 72 65 20 62 61 6e 64 77 69 64 74 68 20 63 61 6e 20 62 65 20 69 6e 20 | ions,.where.bandwidth.can.be.in. |
| 136740 | 72 61 6e 67 65 20 66 72 6f 6d 20 31 20 74 6f 20 34 32 39 34 39 36 37 2c 20 73 70 65 63 69 66 69 | range.from.1.to.4294967,.specifi |
| 136760 | 65 64 20 69 6e 20 4d 62 69 74 73 2f 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 31 30 | ed.in.Mbits/s..The.default.is.10 |
| 136780 | 30 4d 62 69 74 2f 73 20 28 69 2e 65 2e 20 61 20 6c 69 6e 6b 20 6f 66 20 62 61 6e 64 77 69 64 74 | 0Mbit/s.(i.e..a.link.of.bandwidt |
| 1367a0 | 68 20 31 30 30 4d 62 69 74 2f 73 20 6f 72 20 68 69 67 68 65 72 20 77 69 6c 6c 20 68 61 76 65 20 | h.100Mbit/s.or.higher.will.have. |
| 1367c0 | 61 20 63 6f 73 74 20 6f 66 20 31 2e 20 43 6f 73 74 20 6f 66 20 6c 6f 77 65 72 20 62 61 6e 64 77 | a.cost.of.1..Cost.of.lower.bandw |
| 1367e0 | 69 64 74 68 20 6c 69 6e 6b 73 20 77 69 6c 6c 20 62 65 20 73 63 61 6c 65 64 20 77 69 74 68 20 72 | idth.links.will.be.scaled.with.r |
| 136800 | 65 66 65 72 65 6e 63 65 20 74 6f 20 74 68 69 73 20 63 6f 73 74 29 2e 00 54 68 69 73 20 63 6f 6d | eference.to.this.cost)..This.com |
| 136820 | 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 72 6f 75 74 65 72 2d 49 44 20 6f 66 20 74 68 65 20 4f | mand.sets.the.router-ID.of.the.O |
| 136840 | 53 50 46 20 70 72 6f 63 65 73 73 2e 20 54 68 65 20 72 6f 75 74 65 72 2d 49 44 20 6d 61 79 20 62 | SPF.process..The.router-ID.may.b |
| 136860 | 65 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 2c 20 62 | e.an.IP.address.of.the.router,.b |
| 136880 | 75 74 20 6e 65 65 64 20 6e 6f 74 20 62 65 20 e2 80 93 20 69 74 20 63 61 6e 20 62 65 20 61 6e 79 | ut.need.not.be.....it.can.be.any |
| 1368a0 | 20 61 72 62 69 74 72 61 72 79 20 33 32 62 69 74 20 6e 75 6d 62 65 72 2e 20 48 6f 77 65 76 65 72 | .arbitrary.32bit.number..However |
| 1368c0 | 20 69 74 20 4d 55 53 54 20 62 65 20 75 6e 69 71 75 65 20 77 69 74 68 69 6e 20 74 68 65 20 65 6e | .it.MUST.be.unique.within.the.en |
| 1368e0 | 74 69 72 65 20 4f 53 50 46 20 64 6f 6d 61 69 6e 20 74 6f 20 74 68 65 20 4f 53 50 46 20 73 70 65 | tire.OSPF.domain.to.the.OSPF.spe |
| 136900 | 61 6b 65 72 20 e2 80 93 20 62 61 64 20 74 68 69 6e 67 73 20 77 69 6c 6c 20 68 61 70 70 65 6e 20 | aker.....bad.things.will.happen. |
| 136920 | 69 66 20 6d 75 6c 74 69 70 6c 65 20 4f 53 50 46 20 73 70 65 61 6b 65 72 73 20 61 72 65 20 63 6f | if.multiple.OSPF.speakers.are.co |
| 136940 | 6e 66 69 67 75 72 65 64 20 77 69 74 68 20 74 68 65 20 73 61 6d 65 20 72 6f 75 74 65 72 2d 49 44 | nfigured.with.the.same.router-ID |
| 136960 | 21 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 72 6f 75 74 65 72 2d 49 | !.This.command.sets.the.router-I |
| 136980 | 44 20 6f 66 20 74 68 65 20 4f 53 50 46 76 33 20 70 72 6f 63 65 73 73 2e 20 54 68 65 20 72 6f 75 | D.of.the.OSPFv3.process..The.rou |
| 1369a0 | 74 65 72 2d 49 44 20 6d 61 79 20 62 65 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 | ter-ID.may.be.an.IP.address.of.t |
| 1369c0 | 68 65 20 72 6f 75 74 65 72 2c 20 62 75 74 20 6e 65 65 64 20 6e 6f 74 20 62 65 20 e2 80 93 20 69 | he.router,.but.need.not.be.....i |
| 1369e0 | 74 20 63 61 6e 20 62 65 20 61 6e 79 20 61 72 62 69 74 72 61 72 79 20 33 32 62 69 74 20 6e 75 6d | t.can.be.any.arbitrary.32bit.num |
| 136a00 | 62 65 72 2e 20 48 6f 77 65 76 65 72 20 69 74 20 4d 55 53 54 20 62 65 20 75 6e 69 71 75 65 20 77 | ber..However.it.MUST.be.unique.w |
| 136a20 | 69 74 68 69 6e 20 74 68 65 20 65 6e 74 69 72 65 20 4f 53 50 46 76 33 20 64 6f 6d 61 69 6e 20 74 | ithin.the.entire.OSPFv3.domain.t |
| 136a40 | 6f 20 74 68 65 20 4f 53 50 46 76 33 20 73 70 65 61 6b 65 72 20 e2 80 93 20 62 61 64 20 74 68 69 | o.the.OSPFv3.speaker.....bad.thi |
| 136a60 | 6e 67 73 20 77 69 6c 6c 20 68 61 70 70 65 6e 20 69 66 20 6d 75 6c 74 69 70 6c 65 20 4f 53 50 46 | ngs.will.happen.if.multiple.OSPF |
| 136a80 | 76 33 20 73 70 65 61 6b 65 72 73 20 61 72 65 20 63 6f 6e 66 69 67 75 72 65 64 20 77 69 74 68 20 | v3.speakers.are.configured.with. |
| 136aa0 | 74 68 65 20 73 61 6d 65 20 72 6f 75 74 65 72 2d 49 44 21 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | the.same.router-ID!.This.command |
| 136ac0 | 20 73 65 74 73 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 6f | .sets.the.specified.interface.to |
| 136ae0 | 20 70 61 73 73 69 76 65 20 6d 6f 64 65 2e 20 4f 6e 20 70 61 73 73 69 76 65 20 6d 6f 64 65 20 69 | .passive.mode..On.passive.mode.i |
| 136b00 | 6e 74 65 72 66 61 63 65 2c 20 61 6c 6c 20 72 65 63 65 69 76 69 6e 67 20 70 61 63 6b 65 74 73 20 | nterface,.all.receiving.packets. |
| 136b20 | 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 61 73 20 6e 6f 72 6d 61 6c 20 61 6e 64 20 56 79 4f 53 | are.processed.as.normal.and.VyOS |
| 136b40 | 20 64 6f 65 73 20 6e 6f 74 20 73 65 6e 64 20 65 69 74 68 65 72 20 6d 75 6c 74 69 63 61 73 74 20 | .does.not.send.either.multicast. |
| 136b60 | 6f 72 20 75 6e 69 63 61 73 74 20 52 49 50 20 70 61 63 6b 65 74 73 20 65 78 63 65 70 74 20 74 6f | or.unicast.RIP.packets.except.to |
| 136b80 | 20 52 49 50 20 6e 65 69 67 68 62 6f 72 73 20 73 70 65 63 69 66 69 65 64 20 77 69 74 68 20 6e 65 | .RIP.neighbors.specified.with.ne |
| 136ba0 | 69 67 68 62 6f 72 20 63 6f 6d 6d 61 6e 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 68 6f | ighbor.command..This.command.sho |
| 136bc0 | 75 6c 64 20 4e 4f 54 20 62 65 20 73 65 74 20 6e 6f 72 6d 61 6c 6c 79 2e 00 54 68 69 73 20 63 6f | uld.NOT.be.set.normally..This.co |
| 136be0 | 6d 6d 61 6e 64 20 73 68 6f 77 73 20 62 6f 74 68 20 73 74 61 74 75 73 20 61 6e 64 20 73 74 61 74 | mmand.shows.both.status.and.stat |
| 136c00 | 69 73 74 69 63 73 20 6f 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 77 69 72 65 6c 65 73 73 | istics.on.the.specified.wireless |
| 136c20 | 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 | .interface..The.wireless.interfa |
| 136c40 | 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 63 61 6e 20 72 61 6e 67 65 20 66 72 6f 6d 20 77 6c 61 | ce.identifier.can.range.from.wla |
| 136c60 | 6e 30 20 74 6f 20 77 6c 61 6e 39 39 39 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 | n0.to.wlan999..This.command.spec |
| 136c80 | 69 66 69 65 73 20 61 20 42 47 50 20 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e 20 69 64 65 6e 74 69 | ifies.a.BGP.confederation.identi |
| 136ca0 | 66 69 65 72 2e 20 3c 61 73 6e 3e 20 69 73 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 74 68 65 | fier..<asn>.is.the.number.of.the |
| 136cc0 | 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 20 74 68 61 74 20 69 6e 74 65 72 6e 61 6c | .autonomous.system.that.internal |
| 136ce0 | 6c 79 20 69 6e 63 6c 75 64 65 73 20 6d 75 6c 74 69 70 6c 65 20 73 75 62 2d 61 75 74 6f 6e 6f 6d | ly.includes.multiple.sub-autonom |
| 136d00 | 6f 75 73 20 73 79 73 74 65 6d 73 20 28 61 20 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e 29 2e 00 54 | ous.systems.(a.confederation)..T |
| 136d20 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 20 42 61 62 65 6c 20 65 6e | his.command.specifies.a.Babel.en |
| 136d40 | 61 62 6c 65 64 20 69 6e 74 65 72 66 61 63 65 20 62 79 20 69 6e 74 65 72 66 61 63 65 20 6e 61 6d | abled.interface.by.interface.nam |
| 136d60 | 65 2e 20 42 6f 74 68 20 74 68 65 20 73 65 6e 64 69 6e 67 20 61 6e 64 20 72 65 63 65 69 76 69 6e | e..Both.the.sending.and.receivin |
| 136d80 | 67 20 6f 66 20 42 61 62 65 6c 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 62 65 20 65 6e 61 62 6c | g.of.Babel.packets.will.be.enabl |
| 136da0 | 65 64 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 73 70 65 63 69 66 69 65 64 20 69 6e | ed.on.the.interface.specified.in |
| 136dc0 | 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 | .this.command..This.command.spec |
| 136de0 | 69 66 69 65 73 20 61 20 4d 44 35 20 70 61 73 73 77 6f 72 64 20 74 6f 20 62 65 20 75 73 65 64 20 | ifies.a.MD5.password.to.be.used. |
| 136e00 | 77 69 74 68 20 74 68 65 20 74 63 70 20 73 6f 63 6b 65 74 20 74 68 61 74 20 69 73 20 62 65 69 6e | with.the.tcp.socket.that.is.bein |
| 136e20 | 67 20 75 73 65 64 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 72 65 6d 6f 74 65 20 | g.used.to.connect.to.the.remote. |
| 136e40 | 70 65 65 72 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 20 52 | peer..This.command.specifies.a.R |
| 136e60 | 49 50 20 65 6e 61 62 6c 65 64 20 69 6e 74 65 72 66 61 63 65 20 62 79 20 69 6e 74 65 72 66 61 63 | IP.enabled.interface.by.interfac |
| 136e80 | 65 20 6e 61 6d 65 2e 20 42 6f 74 68 20 74 68 65 20 73 65 6e 64 69 6e 67 20 61 6e 64 20 72 65 63 | e.name..Both.the.sending.and.rec |
| 136ea0 | 65 69 76 69 6e 67 20 6f 66 20 52 49 50 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 62 65 20 65 6e | eiving.of.RIP.packets.will.be.en |
| 136ec0 | 61 62 6c 65 64 20 6f 6e 20 74 68 65 20 70 6f 72 74 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 74 | abled.on.the.port.specified.in.t |
| 136ee0 | 68 69 73 20 63 6f 6d 6d 61 6e 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 | his.command..This.command.specif |
| 136f00 | 69 65 73 20 61 20 52 49 50 20 6e 65 69 67 68 62 6f 72 2e 20 57 68 65 6e 20 61 20 6e 65 69 67 68 | ies.a.RIP.neighbor..When.a.neigh |
| 136f20 | 62 6f 72 20 64 6f 65 73 6e e2 80 99 74 20 75 6e 64 65 72 73 74 61 6e 64 20 6d 75 6c 74 69 63 61 | bor.doesn...t.understand.multica |
| 136f40 | 73 74 2c 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 20 74 6f 20 73 70 65 63 | st,.this.command.is.used.to.spec |
| 136f60 | 69 66 79 20 6e 65 69 67 68 62 6f 72 73 2e 20 49 6e 20 73 6f 6d 65 20 63 61 73 65 73 2c 20 6e 6f | ify.neighbors..In.some.cases,.no |
| 136f80 | 74 20 61 6c 6c 20 72 6f 75 74 65 72 73 20 77 69 6c 6c 20 62 65 20 61 62 6c 65 20 74 6f 20 75 6e | t.all.routers.will.be.able.to.un |
| 136fa0 | 64 65 72 73 74 61 6e 64 20 6d 75 6c 74 69 63 61 73 74 69 6e 67 2c 20 77 68 65 72 65 20 70 61 63 | derstand.multicasting,.where.pac |
| 136fc0 | 6b 65 74 73 20 61 72 65 20 73 65 6e 74 20 74 6f 20 61 20 6e 65 74 77 6f 72 6b 20 6f 72 20 61 20 | kets.are.sent.to.a.network.or.a. |
| 136fe0 | 67 72 6f 75 70 20 6f 66 20 61 64 64 72 65 73 73 65 73 2e 20 49 6e 20 61 20 73 69 74 75 61 74 69 | group.of.addresses..In.a.situati |
| 137000 | 6f 6e 20 77 68 65 72 65 20 61 20 6e 65 69 67 68 62 6f 72 20 63 61 6e 6e 6f 74 20 70 72 6f 63 65 | on.where.a.neighbor.cannot.proce |
| 137020 | 73 73 20 6d 75 6c 74 69 63 61 73 74 20 70 61 63 6b 65 74 73 2c 20 69 74 20 69 73 20 6e 65 63 65 | ss.multicast.packets,.it.is.nece |
| 137040 | 73 73 61 72 79 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 61 20 64 69 72 65 63 74 20 6c 69 6e 6b | ssary.to.establish.a.direct.link |
| 137060 | 20 62 65 74 77 65 65 6e 20 72 6f 75 74 65 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 | .between.routers..This.command.s |
| 137080 | 70 65 63 69 66 69 65 73 20 61 20 64 65 66 61 75 6c 74 20 77 65 69 67 68 74 20 76 61 6c 75 65 20 | pecifies.a.default.weight.value. |
| 1370a0 | 66 6f 72 20 74 68 65 20 6e 65 69 67 68 62 6f 72 e2 80 99 73 20 72 6f 75 74 65 73 2e 20 54 68 65 | for.the.neighbor...s.routes..The |
| 1370c0 | 20 6e 75 6d 62 65 72 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 35 35 33 35 2e 00 54 68 69 | .number.range.is.1.to.65535..Thi |
| 1370e0 | 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 20 6d 61 78 69 6d 75 6d 20 6e 75 | s.command.specifies.a.maximum.nu |
| 137100 | 6d 62 65 72 20 6f 66 20 70 72 65 66 69 78 65 73 20 77 65 20 63 61 6e 20 72 65 63 65 69 76 65 20 | mber.of.prefixes.we.can.receive. |
| 137120 | 66 72 6f 6d 20 61 20 67 69 76 65 6e 20 70 65 65 72 2e 20 49 66 20 74 68 69 73 20 6e 75 6d 62 65 | from.a.given.peer..If.this.numbe |
| 137140 | 72 20 69 73 20 65 78 63 65 65 64 65 64 2c 20 74 68 65 20 42 47 50 20 73 65 73 73 69 6f 6e 20 77 | r.is.exceeded,.the.BGP.session.w |
| 137160 | 69 6c 6c 20 62 65 20 64 65 73 74 72 6f 79 65 64 2e 20 54 68 65 20 6e 75 6d 62 65 72 20 72 61 6e | ill.be.destroyed..The.number.ran |
| 137180 | 67 65 20 69 73 20 31 20 74 6f 20 34 32 39 34 39 36 37 32 39 35 2e 00 54 68 69 73 20 63 6f 6d 6d | ge.is.1.to.4294967295..This.comm |
| 1371a0 | 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 20 61 73 20 | and.specifies.all.interfaces.as. |
| 1371c0 | 70 61 73 73 69 76 65 20 62 79 20 64 65 66 61 75 6c 74 2e 20 42 65 63 61 75 73 65 20 74 68 69 73 | passive.by.default..Because.this |
| 1371e0 | 20 63 6f 6d 6d 61 6e 64 20 63 68 61 6e 67 65 73 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 | .command.changes.the.configurati |
| 137200 | 6f 6e 20 6c 6f 67 69 63 20 74 6f 20 61 20 64 65 66 61 75 6c 74 20 70 61 73 73 69 76 65 3b 20 74 | on.logic.to.a.default.passive;.t |
| 137220 | 68 65 72 65 66 6f 72 65 2c 20 69 6e 74 65 72 66 61 63 65 73 20 77 68 65 72 65 20 72 6f 75 74 65 | herefore,.interfaces.where.route |
| 137240 | 72 20 61 64 6a 61 63 65 6e 63 69 65 73 20 61 72 65 20 65 78 70 65 63 74 65 64 20 6e 65 65 64 20 | r.adjacencies.are.expected.need. |
| 137260 | 74 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 77 69 74 68 20 74 68 65 20 3a 63 66 67 63 6d | to.be.configured.with.the.:cfgcm |
| 137280 | 64 3a 60 70 61 73 73 69 76 65 2d 69 6e 74 65 72 66 61 63 65 2d 65 78 63 6c 75 64 65 60 20 63 6f | d:`passive-interface-exclude`.co |
| 1372a0 | 6d 6d 61 6e 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 6c | mmand..This.command.specifies.al |
| 1372c0 | 6c 20 69 6e 74 65 72 66 61 63 65 73 20 74 6f 20 70 61 73 73 69 76 65 20 6d 6f 64 65 2e 00 54 68 | l.interfaces.to.passive.mode..Th |
| 1372e0 | 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 6e 20 61 67 67 72 65 67 61 74 | is.command.specifies.an.aggregat |
| 137300 | 65 20 61 64 64 72 65 73 73 20 61 6e 64 20 70 72 6f 76 69 64 65 73 20 74 68 61 74 20 6c 6f 6e 67 | e.address.and.provides.that.long |
| 137320 | 65 72 2d 70 72 65 66 69 78 65 73 20 69 6e 73 69 64 65 20 6f 66 20 74 68 65 20 61 67 67 72 65 67 | er-prefixes.inside.of.the.aggreg |
| 137340 | 61 74 65 20 61 64 64 72 65 73 73 20 61 72 65 20 73 75 70 70 72 65 73 73 65 64 20 62 65 66 6f 72 | ate.address.are.suppressed.befor |
| 137360 | 65 20 73 65 6e 64 69 6e 67 20 42 47 50 20 75 70 64 61 74 65 73 20 6f 75 74 20 74 6f 20 70 65 65 | e.sending.BGP.updates.out.to.pee |
| 137380 | 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 6e 20 61 67 | rs..This.command.specifies.an.ag |
| 1373a0 | 67 72 65 67 61 74 65 20 61 64 64 72 65 73 73 20 77 69 74 68 20 61 20 6d 61 74 68 65 6d 61 74 69 | gregate.address.with.a.mathemati |
| 1373c0 | 63 61 6c 20 73 65 74 20 6f 66 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 73 2e 20 54 | cal.set.of.autonomous.systems..T |
| 1373e0 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 75 6d 6d 61 72 69 7a 65 73 20 74 68 65 20 41 53 5f 50 41 | his.command.summarizes.the.AS_PA |
| 137400 | 54 48 20 61 74 74 72 69 62 75 74 65 73 20 6f 66 20 61 6c 6c 20 74 68 65 20 69 6e 64 69 76 69 64 | TH.attributes.of.all.the.individ |
| 137420 | 75 61 6c 20 72 6f 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 | ual.routes..This.command.specifi |
| 137440 | 65 73 20 61 6e 20 61 67 67 72 65 67 61 74 65 20 61 64 64 72 65 73 73 2e 20 54 68 65 20 72 6f 75 | es.an.aggregate.address..The.rou |
| 137460 | 74 65 72 20 77 69 6c 6c 20 61 6c 73 6f 20 61 6e 6e 6f 75 6e 63 65 20 6c 6f 6e 67 65 72 2d 70 72 | ter.will.also.announce.longer-pr |
| 137480 | 65 66 69 78 65 73 20 69 6e 73 69 64 65 20 6f 66 20 74 68 65 20 61 67 67 72 65 67 61 74 65 20 61 | efixes.inside.of.the.aggregate.a |
| 1374a0 | 64 64 72 65 73 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 | ddress..This.command.specifies.a |
| 1374c0 | 74 74 72 69 62 75 74 65 73 20 74 6f 20 62 65 20 6c 65 66 74 20 75 6e 63 68 61 6e 67 65 64 20 66 | ttributes.to.be.left.unchanged.f |
| 1374e0 | 6f 72 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 73 20 73 65 6e 74 20 74 6f 20 61 20 70 65 65 72 | or.advertisements.sent.to.a.peer |
| 137500 | 20 6f 72 20 70 65 65 72 20 67 72 6f 75 70 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 | .or.peer.group..This.command.spe |
| 137520 | 63 69 66 69 65 73 20 63 69 72 63 75 69 74 20 74 79 70 65 20 66 6f 72 20 69 6e 74 65 72 66 61 63 | cifies.circuit.type.for.interfac |
| 137540 | 65 3a 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 63 6c 75 73 74 65 | e:.This.command.specifies.cluste |
| 137560 | 72 20 49 44 20 77 68 69 63 68 20 69 64 65 6e 74 69 66 69 65 73 20 61 20 63 6f 6c 6c 65 63 74 69 | r.ID.which.identifies.a.collecti |
| 137580 | 6f 6e 20 6f 66 20 72 6f 75 74 65 20 72 65 66 6c 65 63 74 6f 72 73 20 61 6e 64 20 74 68 65 69 72 | on.of.route.reflectors.and.their |
| 1375a0 | 20 63 6c 69 65 6e 74 73 2c 20 61 6e 64 20 69 73 20 75 73 65 64 20 62 79 20 72 6f 75 74 65 20 72 | .clients,.and.is.used.by.route.r |
| 1375c0 | 65 66 6c 65 63 74 6f 72 73 20 74 6f 20 61 76 6f 69 64 20 6c 6f 6f 70 69 6e 67 2e 20 42 79 20 64 | eflectors.to.avoid.looping..By.d |
| 1375e0 | 65 66 61 75 6c 74 20 63 6c 75 73 74 65 72 20 49 44 20 69 73 20 73 65 74 20 74 6f 20 74 68 65 20 | efault.cluster.ID.is.set.to.the. |
| 137600 | 42 47 50 20 72 6f 75 74 65 72 20 69 64 20 76 61 6c 75 65 2c 20 62 75 74 20 63 61 6e 20 62 65 20 | BGP.router.id.value,.but.can.be. |
| 137620 | 73 65 74 20 74 6f 20 61 6e 20 61 72 62 69 74 72 61 72 79 20 33 32 2d 62 69 74 20 76 61 6c 75 65 | set.to.an.arbitrary.32-bit.value |
| 137640 | 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 68 6f 6c 64 2d 74 69 | ..This.command.specifies.hold-ti |
| 137660 | 6d 65 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 74 69 6d 65 72 20 72 61 6e 67 65 20 69 | me.in.seconds..The.timer.range.i |
| 137680 | 73 20 34 20 74 6f 20 36 35 35 33 35 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 | s.4.to.65535..The.default.value. |
| 1376a0 | 69 73 20 31 38 30 20 73 65 63 6f 6e 64 2e 20 49 66 20 79 6f 75 20 73 65 74 20 76 61 6c 75 65 20 | is.180.second..If.you.set.value. |
| 1376c0 | 74 6f 20 30 20 56 79 4f 53 20 77 69 6c 6c 20 6e 6f 74 20 68 6f 6c 64 20 72 6f 75 74 65 73 2e 00 | to.0.VyOS.will.not.hold.routes.. |
| 1376e0 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 69 6e 74 65 72 66 61 63 65 | This.command.specifies.interface |
| 137700 | 20 61 73 20 70 61 73 73 69 76 65 2e 20 50 61 73 73 69 76 65 20 69 6e 74 65 72 66 61 63 65 20 61 | .as.passive..Passive.interface.a |
| 137720 | 64 76 65 72 74 69 73 65 73 20 69 74 73 20 61 64 64 72 65 73 73 2c 20 62 75 74 20 64 6f 65 73 20 | dvertises.its.address,.but.does. |
| 137740 | 6e 6f 74 20 72 75 6e 20 74 68 65 20 4f 53 50 46 20 70 72 6f 74 6f 63 6f 6c 20 28 61 64 6a 61 63 | not.run.the.OSPF.protocol.(adjac |
| 137760 | 65 6e 63 69 65 73 20 61 72 65 20 6e 6f 74 20 66 6f 72 6d 65 64 20 61 6e 64 20 68 65 6c 6c 6f 20 | encies.are.not.formed.and.hello. |
| 137780 | 70 61 63 6b 65 74 73 20 61 72 65 20 6e 6f 74 20 67 65 6e 65 72 61 74 65 64 29 2e 00 54 68 69 73 | packets.are.not.generated)..This |
| 1377a0 | 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 6b 65 65 70 2d 61 6c 69 76 65 20 74 69 | .command.specifies.keep-alive.ti |
| 1377c0 | 6d 65 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 74 69 6d 65 72 20 63 61 6e 20 72 61 6e | me.in.seconds..The.timer.can.ran |
| 1377e0 | 67 65 20 66 72 6f 6d 20 34 20 74 6f 20 36 35 35 33 35 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 | ge.from.4.to.65535..The.default. |
| 137800 | 76 61 6c 75 65 20 69 73 20 36 30 20 73 65 63 6f 6e 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | value.is.60.second..This.command |
| 137820 | 20 73 70 65 63 69 66 69 65 73 20 6d 65 74 72 69 63 20 28 4d 45 44 29 20 66 6f 72 20 72 65 64 69 | .specifies.metric.(MED).for.redi |
| 137840 | 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 2e 20 54 68 65 20 6d 65 74 72 69 63 20 72 61 6e | stributed.routes..The.metric.ran |
| 137860 | 67 65 20 69 73 20 30 20 74 6f 20 34 32 39 34 39 36 37 32 39 35 2e 20 54 68 65 72 65 20 61 72 65 | ge.is.0.to.4294967295..There.are |
| 137880 | 20 73 69 78 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 | .six.modes.available.for.route.s |
| 1378a0 | 6f 75 72 63 65 3a 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 | ource:.connected,.kernel,.ospf,. |
| 1378c0 | 72 69 70 2c 20 73 74 61 74 69 63 2c 20 74 61 62 6c 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | rip,.static,.table..This.command |
| 1378e0 | 20 73 70 65 63 69 66 69 65 73 20 6d 65 74 72 69 63 20 66 6f 72 20 72 65 64 69 73 74 72 69 62 75 | .specifies.metric.for.redistribu |
| 137900 | 74 65 64 20 72 6f 75 74 65 73 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 | ted.routes.from.the.given.route. |
| 137920 | 73 6f 75 72 63 65 2e 20 54 68 65 72 65 20 61 72 65 20 66 69 76 65 20 6d 6f 64 65 73 20 61 76 61 | source..There.are.five.modes.ava |
| 137940 | 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f | ilable.for.route.source:.bgp,.co |
| 137960 | 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 73 74 61 74 69 63 2e 20 54 | nnected,.kernel,.ospf,.static..T |
| 137980 | 68 65 20 6d 65 74 72 69 63 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 36 2e 00 54 68 69 73 | he.metric.range.is.1.to.16..This |
| 1379a0 | 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 6d 65 74 72 69 63 20 66 6f 72 20 72 65 | .command.specifies.metric.for.re |
| 1379c0 | 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 | distributed.routes.from.the.give |
| 1379e0 | 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 2e 20 54 68 65 72 65 20 61 72 65 20 66 69 76 65 20 6d | n.route.source..There.are.five.m |
| 137a00 | 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a | odes.available.for.route.source: |
| 137a20 | 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 72 69 70 2c 20 73 74 | .bgp,.connected,.kernel,.rip,.st |
| 137a40 | 61 74 69 63 2e 20 54 68 65 20 6d 65 74 72 69 63 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 | atic..The.metric.range.is.1.to.1 |
| 137a60 | 36 37 37 37 32 31 34 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 | 6777214..This.command.specifies. |
| 137a80 | 6d 65 74 72 69 63 20 66 6f 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 20 | metric.for.redistributed.routes. |
| 137aa0 | 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 2e 20 54 68 65 | from.the.given.route.source..The |
| 137ac0 | 72 65 20 61 72 65 20 73 69 78 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 | re.are.six.modes.available.for.r |
| 137ae0 | 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 | oute.source:.bgp,.connected,.ker |
| 137b00 | 6e 65 6c 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2e 20 54 68 65 20 6d 65 74 72 | nel,.ospf,.rip,.static..The.metr |
| 137b20 | 69 63 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 36 37 37 37 32 31 35 2e 00 54 68 69 73 20 | ic.range.is.1.to.16777215..This. |
| 137b40 | 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 6d 65 74 72 69 63 20 74 79 70 65 20 66 6f | command.specifies.metric.type.fo |
| 137b60 | 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 2e 20 44 69 66 66 65 72 65 6e | r.redistributed.routes..Differen |
| 137b80 | 63 65 20 62 65 74 77 65 65 6e 20 74 77 6f 20 6d 65 74 72 69 63 20 74 79 70 65 73 20 74 68 61 74 | ce.between.two.metric.types.that |
| 137ba0 | 20 6d 65 74 72 69 63 20 74 79 70 65 20 31 20 69 73 20 61 20 6d 65 74 72 69 63 20 77 68 69 63 68 | .metric.type.1.is.a.metric.which |
| 137bc0 | 20 69 73 20 22 63 6f 6d 6d 65 6e 73 75 72 61 62 6c 65 22 20 77 69 74 68 20 69 6e 6e 65 72 20 4f | .is."commensurable".with.inner.O |
| 137be0 | 53 50 46 20 6c 69 6e 6b 73 2e 20 57 68 65 6e 20 63 61 6c 63 75 6c 61 74 69 6e 67 20 61 20 6d 65 | SPF.links..When.calculating.a.me |
| 137c00 | 74 72 69 63 20 74 6f 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 64 65 73 74 69 6e 61 74 69 6f 6e | tric.to.the.external.destination |
| 137c20 | 2c 20 74 68 65 20 66 75 6c 6c 20 70 61 74 68 20 6d 65 74 72 69 63 20 69 73 20 63 61 6c 63 75 6c | ,.the.full.path.metric.is.calcul |
| 137c40 | 61 74 65 64 20 61 73 20 61 20 6d 65 74 72 69 63 20 73 75 6d 20 70 61 74 68 20 6f 66 20 61 20 72 | ated.as.a.metric.sum.path.of.a.r |
| 137c60 | 6f 75 74 65 72 20 77 68 69 63 68 20 68 61 64 20 61 64 76 65 72 74 69 73 65 64 20 74 68 69 73 20 | outer.which.had.advertised.this. |
| 137c80 | 6c 69 6e 6b 20 70 6c 75 73 20 74 68 65 20 6c 69 6e 6b 20 6d 65 74 72 69 63 2e 20 54 68 75 73 2c | link.plus.the.link.metric..Thus, |
| 137ca0 | 20 61 20 72 6f 75 74 65 20 77 69 74 68 20 74 68 65 20 6c 65 61 73 74 20 73 75 6d 6d 61 72 79 20 | .a.route.with.the.least.summary. |
| 137cc0 | 6d 65 74 72 69 63 20 77 69 6c 6c 20 62 65 20 73 65 6c 65 63 74 65 64 2e 20 49 66 20 65 78 74 65 | metric.will.be.selected..If.exte |
| 137ce0 | 72 6e 61 6c 20 6c 69 6e 6b 20 69 73 20 61 64 76 65 72 74 69 73 65 64 20 77 69 74 68 20 6d 65 74 | rnal.link.is.advertised.with.met |
| 137d00 | 72 69 63 20 74 79 70 65 20 32 20 74 68 65 20 70 61 74 68 20 69 73 20 73 65 6c 65 63 74 65 64 20 | ric.type.2.the.path.is.selected. |
| 137d20 | 77 68 69 63 68 20 6c 69 65 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 6f 75 74 65 72 20 77 68 | which.lies.through.the.router.wh |
| 137d40 | 69 63 68 20 61 64 76 65 72 74 69 73 65 64 20 74 68 69 73 20 6c 69 6e 6b 20 77 69 74 68 20 74 68 | ich.advertised.this.link.with.th |
| 137d60 | 65 20 6c 65 61 73 74 20 6d 65 74 72 69 63 20 64 65 73 70 69 74 65 20 6f 66 20 74 68 65 20 66 61 | e.least.metric.despite.of.the.fa |
| 137d80 | 63 74 20 74 68 61 74 20 69 6e 74 65 72 6e 61 6c 20 70 61 74 68 20 74 6f 20 74 68 69 73 20 72 6f | ct.that.internal.path.to.this.ro |
| 137da0 | 75 74 65 72 20 69 73 20 6c 6f 6e 67 65 72 20 28 77 69 74 68 20 6d 6f 72 65 20 63 6f 73 74 29 2e | uter.is.longer.(with.more.cost). |
| 137dc0 | 20 48 6f 77 65 76 65 72 2c 20 69 66 20 74 77 6f 20 72 6f 75 74 65 72 73 20 61 64 76 65 72 74 69 | .However,.if.two.routers.adverti |
| 137de0 | 73 65 64 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 6c 69 6e 6b 20 61 6e 64 20 77 69 74 68 20 6d 65 | sed.an.external.link.and.with.me |
| 137e00 | 74 72 69 63 20 74 79 70 65 20 32 20 74 68 65 20 70 72 65 66 65 72 65 6e 63 65 20 69 73 20 67 69 | tric.type.2.the.preference.is.gi |
| 137e20 | 76 65 6e 20 74 6f 20 74 68 65 20 70 61 74 68 20 77 68 69 63 68 20 6c 69 65 73 20 74 68 72 6f 75 | ven.to.the.path.which.lies.throu |
| 137e40 | 67 68 20 74 68 65 20 72 6f 75 74 65 72 20 77 69 74 68 20 61 20 73 68 6f 72 74 65 72 20 69 6e 74 | gh.the.router.with.a.shorter.int |
| 137e60 | 65 72 6e 61 6c 20 70 61 74 68 2e 20 49 66 20 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 72 6f 75 | ernal.path..If.two.different.rou |
| 137e80 | 74 65 72 73 20 61 64 76 65 72 74 69 73 65 64 20 74 77 6f 20 6c 69 6e 6b 73 20 74 6f 20 74 68 65 | ters.advertised.two.links.to.the |
| 137ea0 | 20 73 61 6d 65 20 65 78 74 65 72 6e 61 6c 20 64 65 73 74 69 6d 61 74 69 6f 6e 20 62 75 74 20 77 | .same.external.destimation.but.w |
| 137ec0 | 69 74 68 20 64 69 66 66 65 72 65 6e 74 20 6d 65 74 72 69 63 20 74 79 70 65 2c 20 6d 65 74 72 69 | ith.different.metric.type,.metri |
| 137ee0 | 63 20 74 79 70 65 20 31 20 69 73 20 70 72 65 66 65 72 72 65 64 2e 20 49 66 20 74 79 70 65 20 6f | c.type.1.is.preferred..If.type.o |
| 137f00 | 66 20 61 20 6d 65 74 72 69 63 20 6c 65 66 74 20 75 6e 64 65 66 69 6e 65 64 20 74 68 65 20 72 6f | f.a.metric.left.undefined.the.ro |
| 137f20 | 75 74 65 72 20 77 69 6c 6c 20 63 6f 6e 73 69 64 65 72 20 74 68 65 73 65 20 65 78 74 65 72 6e 61 | uter.will.consider.these.externa |
| 137f40 | 6c 20 6c 69 6e 6b 73 20 74 6f 20 68 61 76 65 20 61 20 64 65 66 61 75 6c 74 20 6d 65 74 72 69 63 | l.links.to.have.a.default.metric |
| 137f60 | 20 74 79 70 65 20 32 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 | .type.2..This.command.specifies. |
| 137f80 | 6e 65 74 77 6f 72 6b 20 74 79 70 65 20 74 6f 20 50 6f 69 6e 74 2d 74 6f 2d 50 6f 69 6e 74 2e 20 | network.type.to.Point-to-Point.. |
| 137fa0 | 54 68 65 20 64 65 66 61 75 6c 74 20 6e 65 74 77 6f 72 6b 20 74 79 70 65 20 69 73 20 62 72 6f 61 | The.default.network.type.is.broa |
| 137fc0 | 64 63 61 73 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 | dcast..This.command.specifies.th |
| 137fe0 | 61 74 20 42 47 50 20 63 6f 6e 73 69 64 65 72 73 20 74 68 65 20 4d 45 44 20 77 68 65 6e 20 63 6f | at.BGP.considers.the.MED.when.co |
| 138000 | 6d 70 61 72 69 6e 67 20 72 6f 75 74 65 73 20 6f 72 69 67 69 6e 61 74 65 64 20 66 72 6f 6d 20 64 | mparing.routes.originated.from.d |
| 138020 | 69 66 66 65 72 65 6e 74 20 73 75 62 2d 41 53 73 20 77 69 74 68 69 6e 20 74 68 65 20 63 6f 6e 66 | ifferent.sub-ASs.within.the.conf |
| 138040 | 65 64 65 72 61 74 69 6f 6e 20 74 6f 20 77 68 69 63 68 20 74 68 69 73 20 42 47 50 20 73 70 65 61 | ederation.to.which.this.BGP.spea |
| 138060 | 6b 65 72 20 62 65 6c 6f 6e 67 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 73 74 61 74 65 2c 20 | ker.belongs..The.default.state,. |
| 138080 | 77 68 65 72 65 20 74 68 65 20 4d 45 44 20 61 74 74 72 69 62 75 74 65 20 69 73 20 6e 6f 74 20 63 | where.the.MED.attribute.is.not.c |
| 1380a0 | 6f 6e 73 69 64 65 72 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 | onsidered..This.command.specifie |
| 1380c0 | 73 20 74 68 61 74 20 42 47 50 20 64 65 63 69 73 69 6f 6e 20 70 72 6f 63 65 73 73 20 73 68 6f 75 | s.that.BGP.decision.process.shou |
| 1380e0 | 6c 64 20 63 6f 6e 73 69 64 65 72 20 70 61 74 68 73 20 6f 66 20 65 71 75 61 6c 20 41 53 5f 50 41 | ld.consider.paths.of.equal.AS_PA |
| 138100 | 54 48 20 6c 65 6e 67 74 68 20 63 61 6e 64 69 64 61 74 65 73 20 66 6f 72 20 6d 75 6c 74 69 70 61 | TH.length.candidates.for.multipa |
| 138120 | 74 68 20 63 6f 6d 70 75 74 61 74 69 6f 6e 2e 20 57 69 74 68 6f 75 74 20 74 68 65 20 6b 6e 6f 62 | th.computation..Without.the.knob |
| 138140 | 2c 20 74 68 65 20 65 6e 74 69 72 65 20 41 53 5f 50 41 54 48 20 6d 75 73 74 20 6d 61 74 63 68 20 | ,.the.entire.AS_PATH.must.match. |
| 138160 | 66 6f 72 20 6d 75 6c 74 69 70 61 74 68 20 63 6f 6d 70 75 74 61 74 69 6f 6e 2e 00 54 68 69 73 20 | for.multipath.computation..This. |
| 138180 | 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 61 74 20 61 20 72 6f 75 74 65 20 77 | command.specifies.that.a.route.w |
| 1381a0 | 69 74 68 20 61 20 4d 45 44 20 69 73 20 61 6c 77 61 79 73 20 63 6f 6e 73 69 64 65 72 65 64 20 74 | ith.a.MED.is.always.considered.t |
| 1381c0 | 6f 20 62 65 20 62 65 74 74 65 72 20 74 68 61 6e 20 61 20 72 6f 75 74 65 20 77 69 74 68 6f 75 74 | o.be.better.than.a.route.without |
| 1381e0 | 20 61 20 4d 45 44 20 62 79 20 63 61 75 73 69 6e 67 20 74 68 65 20 6d 69 73 73 69 6e 67 20 4d 45 | .a.MED.by.causing.the.missing.ME |
| 138200 | 44 20 61 74 74 72 69 62 75 74 65 20 74 6f 20 68 61 76 65 20 61 20 76 61 6c 75 65 20 6f 66 20 69 | D.attribute.to.have.a.value.of.i |
| 138220 | 6e 66 69 6e 69 74 79 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 73 74 61 74 65 2c 20 77 68 65 72 | nfinity..The.default.state,.wher |
| 138240 | 65 20 74 68 65 20 6d 69 73 73 69 6e 67 20 4d 45 44 20 61 74 74 72 69 62 75 74 65 20 69 73 20 63 | e.the.missing.MED.attribute.is.c |
| 138260 | 6f 6e 73 69 64 65 72 65 64 20 74 6f 20 68 61 76 65 20 61 20 76 61 6c 75 65 20 6f 66 20 7a 65 72 | onsidered.to.have.a.value.of.zer |
| 138280 | 6f 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 61 74 20 72 | o..This.command.specifies.that.r |
| 1382a0 | 6f 75 74 65 20 75 70 64 61 74 65 73 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 74 68 69 73 20 | oute.updates.received.from.this. |
| 1382c0 | 6e 65 69 67 68 62 6f 72 20 77 69 6c 6c 20 62 65 20 73 74 6f 72 65 64 20 75 6e 6d 6f 64 69 66 69 | neighbor.will.be.stored.unmodifi |
| 1382e0 | 65 64 2c 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 69 6e 62 6f 75 6e 64 20 70 6f | ed,.regardless.of.the.inbound.po |
| 138300 | 6c 69 63 79 2e 20 57 68 65 6e 20 69 6e 62 6f 75 6e 64 20 73 6f 66 74 20 72 65 63 6f 6e 66 69 67 | licy..When.inbound.soft.reconfig |
| 138320 | 75 72 61 74 69 6f 6e 20 69 73 20 65 6e 61 62 6c 65 64 2c 20 74 68 65 20 73 74 6f 72 65 64 20 75 | uration.is.enabled,.the.stored.u |
| 138340 | 70 64 61 74 65 73 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 62 79 20 74 68 65 20 6e 65 77 20 | pdates.are.processed.by.the.new. |
| 138360 | 70 6f 6c 69 63 79 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 6f 20 63 72 65 61 74 65 20 6e | policy.configuration.to.create.n |
| 138380 | 65 77 20 69 6e 62 6f 75 6e 64 20 75 70 64 61 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | ew.inbound.updates..This.command |
| 1383a0 | 20 73 70 65 63 69 66 69 65 73 20 74 68 61 74 20 73 69 6d 70 6c 65 20 70 61 73 73 77 6f 72 64 20 | .specifies.that.simple.password. |
| 1383c0 | 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 68 6f 75 6c 64 20 62 65 20 75 73 65 64 20 66 6f | authentication.should.be.used.fo |
| 1383e0 | 72 20 74 68 65 20 67 69 76 65 6e 20 61 72 65 61 2e 20 54 68 65 20 70 61 73 73 77 6f 72 64 20 6d | r.the.given.area..The.password.m |
| 138400 | 75 73 74 20 61 6c 73 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 61 20 70 65 72 2d | ust.also.be.configured.on.a.per- |
| 138420 | 69 6e 74 65 72 66 61 63 65 20 62 61 73 69 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 | interface.basis..This.command.sp |
| 138440 | 65 63 69 66 69 65 73 20 74 68 61 74 20 74 68 65 20 63 6f 6d 6d 75 6e 69 74 79 20 61 74 74 72 69 | ecifies.that.the.community.attri |
| 138460 | 62 75 74 65 20 73 68 6f 75 6c 64 20 6e 6f 74 20 62 65 20 73 65 6e 74 20 69 6e 20 72 6f 75 74 65 | bute.should.not.be.sent.in.route |
| 138480 | 20 75 70 64 61 74 65 73 20 74 6f 20 61 20 70 65 65 72 2e 20 42 79 20 64 65 66 61 75 6c 74 20 63 | .updates.to.a.peer..By.default.c |
| 1384a0 | 6f 6d 6d 75 6e 69 74 79 20 61 74 74 72 69 62 75 74 65 20 69 73 20 73 65 6e 74 2e 00 54 68 69 73 | ommunity.attribute.is.sent..This |
| 1384c0 | 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 61 74 20 74 68 65 20 6c 65 6e 67 | .command.specifies.that.the.leng |
| 1384e0 | 74 68 20 6f 66 20 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e 20 70 61 74 68 20 73 65 74 73 20 61 6e | th.of.confederation.path.sets.an |
| 138500 | 64 20 73 65 71 75 65 6e 63 65 73 20 73 68 6f 75 6c 64 20 62 65 20 74 61 6b 65 6e 20 69 6e 74 6f | d.sequences.should.be.taken.into |
| 138520 | 20 61 63 63 6f 75 6e 74 20 64 75 72 69 6e 67 20 74 68 65 20 42 47 50 20 62 65 73 74 20 70 61 74 | .account.during.the.BGP.best.pat |
| 138540 | 68 20 64 65 63 69 73 69 6f 6e 20 70 72 6f 63 65 73 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | h.decision.process..This.command |
| 138560 | 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 | .specifies.the.IP.address.of.the |
| 138580 | 20 6e 65 69 67 68 62 6f 72 69 6e 67 20 64 65 76 69 63 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e | .neighboring.device..This.comman |
| 1385a0 | 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 4f 53 50 46 20 65 6e 61 62 6c 65 64 20 69 6e 74 | d.specifies.the.OSPF.enabled.int |
| 1385c0 | 65 72 66 61 63 65 28 73 29 2e 20 49 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 68 61 73 20 | erface(s)..If.the.interface.has. |
| 1385e0 | 61 6e 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 64 65 66 69 6e 65 64 20 72 61 6e 67 65 20 74 68 | an.address.from.defined.range.th |
| 138600 | 65 6e 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 4f 53 50 46 20 6f 6e 20 74 | en.the.command.enables.OSPF.on.t |
| 138620 | 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 73 6f 20 72 6f 75 74 65 72 20 63 61 6e 20 70 72 6f 76 | his.interface.so.router.can.prov |
| 138640 | 69 64 65 20 6e 65 74 77 6f 72 6b 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 74 68 65 20 6f | ide.network.information.to.the.o |
| 138660 | 74 68 65 72 20 6f 73 70 66 20 72 6f 75 74 65 72 73 20 76 69 61 20 74 68 69 73 20 69 6e 74 65 72 | ther.ospf.routers.via.this.inter |
| 138680 | 66 61 63 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 | face..This.command.specifies.the |
| 1386a0 | 20 4f 53 50 46 76 33 20 65 6e 61 62 6c 65 64 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 | .OSPFv3.enabled.interface..This. |
| 1386c0 | 63 6f 6d 6d 61 6e 64 20 69 73 20 61 6c 73 6f 20 75 73 65 64 20 74 6f 20 65 6e 61 62 6c 65 20 74 | command.is.also.used.to.enable.t |
| 1386e0 | 68 65 20 4f 53 50 46 20 70 72 6f 63 65 73 73 2e 20 54 68 65 20 61 72 65 61 20 6e 75 6d 62 65 72 | he.OSPF.process..The.area.number |
| 138700 | 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 64 65 63 69 6d 61 6c 20 6e 6f 74 | .can.be.specified.in.decimal.not |
| 138720 | 61 74 69 6f 6e 20 69 6e 20 74 68 65 20 72 61 6e 67 65 20 66 72 6f 6d 20 30 20 74 6f 20 34 32 39 | ation.in.the.range.from.0.to.429 |
| 138740 | 34 39 36 37 32 39 35 2e 20 4f 72 20 69 74 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 | 4967295..Or.it.can.be.specified. |
| 138760 | 69 6e 20 64 6f 74 74 65 64 20 64 65 63 69 6d 61 6c 20 6e 6f 74 61 74 69 6f 6e 20 73 69 6d 69 6c | in.dotted.decimal.notation.simil |
| 138780 | 61 72 20 74 6f 20 69 70 20 61 64 64 72 65 73 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 | ar.to.ip.address..This.command.s |
| 1387a0 | 70 65 63 69 66 69 65 73 20 74 68 65 20 61 72 65 61 20 74 6f 20 62 65 20 61 20 4e 53 53 41 20 54 | pecifies.the.area.to.be.a.NSSA.T |
| 1387c0 | 6f 74 61 6c 6c 79 20 53 74 75 62 20 41 72 65 61 2e 20 41 42 52 73 20 66 6f 72 20 73 75 63 68 20 | otally.Stub.Area..ABRs.for.such. |
| 1387e0 | 61 6e 20 61 72 65 61 20 64 6f 20 6e 6f 74 20 6e 65 65 64 20 74 6f 20 70 61 73 73 20 4e 65 74 77 | an.area.do.not.need.to.pass.Netw |
| 138800 | 6f 72 6b 2d 53 75 6d 6d 61 72 79 20 28 74 79 70 65 2d 33 29 20 4c 53 41 73 20 28 65 78 63 65 70 | ork-Summary.(type-3).LSAs.(excep |
| 138820 | 74 20 74 68 65 20 64 65 66 61 75 6c 74 20 73 75 6d 6d 61 72 79 20 72 6f 75 74 65 29 2c 20 41 53 | t.the.default.summary.route),.AS |
| 138840 | 42 52 2d 53 75 6d 6d 61 72 79 20 4c 53 41 73 20 28 74 79 70 65 2d 34 29 20 61 6e 64 20 41 53 2d | BR-Summary.LSAs.(type-4).and.AS- |
| 138860 | 45 78 74 65 72 6e 61 6c 20 4c 53 41 73 20 28 74 79 70 65 2d 35 29 20 69 6e 74 6f 20 74 68 65 20 | External.LSAs.(type-5).into.the. |
| 138880 | 61 72 65 61 2e 20 42 75 74 20 54 79 70 65 2d 37 20 4c 53 41 73 20 74 68 61 74 20 63 6f 6e 76 65 | area..But.Type-7.LSAs.that.conve |
| 1388a0 | 72 74 20 74 6f 20 54 79 70 65 2d 35 20 61 74 20 74 68 65 20 4e 53 53 41 20 41 42 52 20 61 72 65 | rt.to.Type-5.at.the.NSSA.ABR.are |
| 1388c0 | 20 61 6c 6c 6f 77 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 | .allowed..This.command.specifies |
| 1388e0 | 20 74 68 65 20 61 72 65 61 20 74 6f 20 62 65 20 61 20 4e 6f 74 20 53 6f 20 53 74 75 62 62 79 20 | .the.area.to.be.a.Not.So.Stubby. |
| 138900 | 41 72 65 61 2e 20 45 78 74 65 72 6e 61 6c 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 | Area..External.routing.informati |
| 138920 | 6f 6e 20 69 73 20 69 6d 70 6f 72 74 65 64 20 69 6e 74 6f 20 61 6e 20 4e 53 53 41 20 69 6e 20 54 | on.is.imported.into.an.NSSA.in.T |
| 138940 | 79 70 65 2d 37 20 4c 53 41 73 2e 20 54 79 70 65 2d 37 20 4c 53 41 73 20 61 72 65 20 73 69 6d 69 | ype-7.LSAs..Type-7.LSAs.are.simi |
| 138960 | 6c 61 72 20 74 6f 20 54 79 70 65 2d 35 20 41 53 2d 65 78 74 65 72 6e 61 6c 20 4c 53 41 73 2c 20 | lar.to.Type-5.AS-external.LSAs,. |
| 138980 | 65 78 63 65 70 74 20 74 68 61 74 20 74 68 65 79 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 66 6c 6f | except.that.they.can.only.be.flo |
| 1389a0 | 6f 64 65 64 20 69 6e 74 6f 20 74 68 65 20 4e 53 53 41 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 | oded.into.the.NSSA..In.order.to. |
| 1389c0 | 66 75 72 74 68 65 72 20 70 72 6f 70 61 67 61 74 65 20 74 68 65 20 4e 53 53 41 20 65 78 74 65 72 | further.propagate.the.NSSA.exter |
| 1389e0 | 6e 61 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2c 20 74 68 65 20 54 79 70 65 2d 37 20 4c 53 41 20 | nal.information,.the.Type-7.LSA. |
| 138a00 | 6d 75 73 74 20 62 65 20 74 72 61 6e 73 6c 61 74 65 64 20 74 6f 20 61 20 54 79 70 65 2d 35 20 41 | must.be.translated.to.a.Type-5.A |
| 138a20 | 53 2d 65 78 74 65 72 6e 61 6c 2d 4c 53 41 20 62 79 20 74 68 65 20 4e 53 53 41 20 41 42 52 2e 00 | S-external-LSA.by.the.NSSA.ABR.. |
| 138a40 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 61 72 65 61 20 | This.command.specifies.the.area. |
| 138a60 | 74 6f 20 62 65 20 61 20 53 74 75 62 20 41 72 65 61 2e 20 54 68 61 74 20 69 73 2c 20 61 6e 20 61 | to.be.a.Stub.Area..That.is,.an.a |
| 138a80 | 72 65 61 20 77 68 65 72 65 20 6e 6f 20 72 6f 75 74 65 72 20 6f 72 69 67 69 6e 61 74 65 73 20 72 | rea.where.no.router.originates.r |
| 138aa0 | 6f 75 74 65 73 20 65 78 74 65 72 6e 61 6c 20 74 6f 20 4f 53 50 46 20 61 6e 64 20 68 65 6e 63 65 | outes.external.to.OSPF.and.hence |
| 138ac0 | 20 61 6e 20 61 72 65 61 20 77 68 65 72 65 20 61 6c 6c 20 65 78 74 65 72 6e 61 6c 20 72 6f 75 74 | .an.area.where.all.external.rout |
| 138ae0 | 65 73 20 61 72 65 20 76 69 61 20 74 68 65 20 41 42 52 28 73 29 2e 20 48 65 6e 63 65 2c 20 41 42 | es.are.via.the.ABR(s)..Hence,.AB |
| 138b00 | 52 73 20 66 6f 72 20 73 75 63 68 20 61 6e 20 61 72 65 61 20 64 6f 20 6e 6f 74 20 6e 65 65 64 20 | Rs.for.such.an.area.do.not.need. |
| 138b20 | 74 6f 20 70 61 73 73 20 41 53 2d 45 78 74 65 72 6e 61 6c 20 4c 53 41 73 20 28 74 79 70 65 2d 35 | to.pass.AS-External.LSAs.(type-5 |
| 138b40 | 29 20 6f 72 20 41 53 42 52 2d 53 75 6d 6d 61 72 79 20 4c 53 41 73 20 28 74 79 70 65 2d 34 29 20 | ).or.ASBR-Summary.LSAs.(type-4). |
| 138b60 | 69 6e 74 6f 20 74 68 65 20 61 72 65 61 2e 20 54 68 65 79 20 6e 65 65 64 20 6f 6e 6c 79 20 70 61 | into.the.area..They.need.only.pa |
| 138b80 | 73 73 20 4e 65 74 77 6f 72 6b 2d 53 75 6d 6d 61 72 79 20 28 74 79 70 65 2d 33 29 20 4c 53 41 73 | ss.Network-Summary.(type-3).LSAs |
| 138ba0 | 20 69 6e 74 6f 20 73 75 63 68 20 61 6e 20 61 72 65 61 2c 20 61 6c 6f 6e 67 20 77 69 74 68 20 61 | .into.such.an.area,.along.with.a |
| 138bc0 | 20 64 65 66 61 75 6c 74 2d 72 6f 75 74 65 20 73 75 6d 6d 61 72 79 2e 00 54 68 69 73 20 63 6f 6d | .default-route.summary..This.com |
| 138be0 | 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 61 72 65 61 20 74 6f 20 62 65 20 61 20 | mand.specifies.the.area.to.be.a. |
| 138c00 | 54 6f 74 61 6c 6c 79 20 53 74 75 62 20 41 72 65 61 2e 20 49 6e 20 61 64 64 69 74 69 6f 6e 20 74 | Totally.Stub.Area..In.addition.t |
| 138c20 | 6f 20 73 74 75 62 20 61 72 65 61 20 6c 69 6d 69 74 61 74 69 6f 6e 73 20 74 68 69 73 20 61 72 65 | o.stub.area.limitations.this.are |
| 138c40 | 61 20 74 79 70 65 20 70 72 65 76 65 6e 74 73 20 61 6e 20 41 42 52 20 66 72 6f 6d 20 69 6e 6a 65 | a.type.prevents.an.ABR.from.inje |
| 138c60 | 63 74 69 6e 67 20 4e 65 74 77 6f 72 6b 2d 53 75 6d 6d 61 72 79 20 28 74 79 70 65 2d 33 29 20 4c | cting.Network-Summary.(type-3).L |
| 138c80 | 53 41 73 20 69 6e 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 73 74 75 62 20 61 72 65 61 | SAs.into.the.specified.stub.area |
| 138ca0 | 2e 20 4f 6e 6c 79 20 64 65 66 61 75 6c 74 20 73 75 6d 6d 61 72 79 20 72 6f 75 74 65 20 69 73 20 | ..Only.default.summary.route.is. |
| 138cc0 | 61 6c 6c 6f 77 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 | allowed..This.command.specifies. |
| 138ce0 | 74 68 65 20 62 61 73 65 20 72 65 63 65 69 76 65 20 63 6f 73 74 20 66 6f 72 20 74 68 69 73 20 69 | the.base.receive.cost.for.this.i |
| 138d00 | 6e 74 65 72 66 61 63 65 2e 20 46 6f 72 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 | nterface..For.wireless.interface |
| 138d20 | 73 2c 20 69 74 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 6d 75 6c 74 69 70 6c 69 65 72 20 75 | s,.it.specifies.the.multiplier.u |
| 138d40 | 73 65 64 20 66 6f 72 20 63 6f 6d 70 75 74 69 6e 67 20 74 68 65 20 45 54 58 20 72 65 63 65 70 74 | sed.for.computing.the.ETX.recept |
| 138d60 | 69 6f 6e 20 63 6f 73 74 20 28 64 65 66 61 75 6c 74 20 32 35 36 29 3b 20 66 6f 72 20 77 69 72 65 | ion.cost.(default.256);.for.wire |
| 138d80 | 64 20 69 6e 74 65 72 66 61 63 65 73 2c 20 69 74 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 63 | d.interfaces,.it.specifies.the.c |
| 138da0 | 6f 73 74 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 61 64 76 65 72 74 69 73 65 64 20 74 6f 20 6e | ost.that.will.be.advertised.to.n |
| 138dc0 | 65 69 67 68 62 6f 75 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 | eighbours..This.command.specifie |
| 138de0 | 73 20 74 68 65 20 64 65 63 61 79 20 66 61 63 74 6f 72 20 66 6f 72 20 74 68 65 20 65 78 70 6f 6e | s.the.decay.factor.for.the.expon |
| 138e00 | 65 6e 74 69 61 6c 20 6d 6f 76 69 6e 67 20 61 76 65 72 61 67 65 20 6f 66 20 52 54 54 20 73 61 6d | ential.moving.average.of.RTT.sam |
| 138e20 | 70 6c 65 73 2c 20 69 6e 20 75 6e 69 74 73 20 6f 66 20 31 2f 32 35 36 2e 20 48 69 67 68 65 72 20 | ples,.in.units.of.1/256..Higher. |
| 138e40 | 76 61 6c 75 65 73 20 64 69 73 63 61 72 64 20 6f 6c 64 20 73 61 6d 70 6c 65 73 20 66 61 73 74 65 | values.discard.old.samples.faste |
| 138e60 | 72 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 34 32 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | r..The.default.is.42..This.comma |
| 138e80 | 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 6c 6f 63 61 6c 20 70 | nd.specifies.the.default.local.p |
| 138ea0 | 72 65 66 65 72 65 6e 63 65 20 76 61 6c 75 65 2e 20 54 68 65 20 6c 6f 63 61 6c 20 70 72 65 66 65 | reference.value..The.local.prefe |
| 138ec0 | 72 65 6e 63 65 20 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 34 32 39 34 39 36 37 32 39 35 2e 00 | rence.range.is.0.to.4294967295.. |
| 138ee0 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 64 65 66 61 75 | This.command.specifies.the.defau |
| 138f00 | 6c 74 20 6d 65 74 72 69 63 20 76 61 6c 75 65 20 6f 66 20 72 65 64 69 73 74 72 69 62 75 74 65 64 | lt.metric.value.of.redistributed |
| 138f20 | 20 72 6f 75 74 65 73 2e 20 54 68 65 20 6d 65 74 72 69 63 20 72 61 6e 67 65 20 69 73 20 30 20 74 | .routes..The.metric.range.is.0.t |
| 138f40 | 6f 20 31 36 37 37 37 32 31 34 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 | o.16777214..This.command.specifi |
| 138f60 | 65 73 20 74 68 65 20 67 61 72 62 61 67 65 2d 63 6f 6c 6c 65 63 74 69 6f 6e 20 74 69 6d 65 72 2e | es.the.garbage-collection.timer. |
| 138f80 | 20 55 70 6f 6e 20 65 78 70 69 72 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 67 61 72 62 61 67 65 2d | .Upon.expiration.of.the.garbage- |
| 138fa0 | 63 6f 6c 6c 65 63 74 69 6f 6e 20 74 69 6d 65 72 2c 20 74 68 65 20 72 6f 75 74 65 20 69 73 20 66 | collection.timer,.the.route.is.f |
| 138fc0 | 69 6e 61 6c 6c 79 20 72 65 6d 6f 76 65 64 20 66 72 6f 6d 20 74 68 65 20 72 6f 75 74 69 6e 67 20 | inally.removed.from.the.routing. |
| 138fe0 | 74 61 62 6c 65 2e 20 54 68 65 20 74 69 6d 65 20 72 61 6e 67 65 20 69 73 20 35 20 74 6f 20 32 31 | table..The.time.range.is.5.to.21 |
| 139000 | 34 37 34 38 33 36 34 37 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 | 47483647..The.default.value.is.1 |
| 139020 | 32 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 | 20.seconds..This.command.specifi |
| 139040 | 65 73 20 74 68 65 20 67 69 76 65 6e 20 6e 65 69 67 68 62 6f 72 20 61 73 20 72 6f 75 74 65 20 72 | es.the.given.neighbor.as.route.r |
| 139060 | 65 66 6c 65 63 74 6f 72 20 63 6c 69 65 6e 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 | eflector.client..This.command.sp |
| 139080 | 65 63 69 66 69 65 73 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 69 6d 65 2c 20 69 6e 20 73 | ecifies.the.length.of.time,.in.s |
| 1390a0 | 65 63 6f 6e 64 73 2c 20 62 65 66 6f 72 65 20 74 68 65 20 72 6f 75 74 69 6e 67 20 64 65 76 69 63 | econds,.before.the.routing.devic |
| 1390c0 | 65 20 73 65 6e 64 73 20 68 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 6f 75 74 20 6f 66 20 74 68 65 | e.sends.hello.packets.out.of.the |
| 1390e0 | 20 69 6e 74 65 72 66 61 63 65 20 62 65 66 6f 72 65 20 69 74 20 65 73 74 61 62 6c 69 73 68 65 73 | .interface.before.it.establishes |
| 139100 | 20 61 64 6a 61 63 65 6e 63 79 20 77 69 74 68 20 61 20 6e 65 69 67 68 62 6f 72 2e 20 54 68 65 20 | .adjacency.with.a.neighbor..The. |
| 139120 | 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 35 35 33 35 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 | range.is.1.to.65535.seconds..The |
| 139140 | 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 | .default.value.is.60.seconds..Th |
| 139160 | 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 6d 61 78 69 6d 75 6d | is.command.specifies.the.maximum |
| 139180 | 20 52 54 54 2c 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 2c 20 61 62 6f 76 65 20 77 68 69 | .RTT,.in.milliseconds,.above.whi |
| 1391a0 | 63 68 20 77 65 20 64 6f 6e 27 74 20 69 6e 63 72 65 61 73 65 20 74 68 65 20 63 6f 73 74 20 74 6f | ch.we.don't.increase.the.cost.to |
| 1391c0 | 20 61 20 6e 65 69 67 68 62 6f 75 72 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 31 32 30 | .a.neighbour..The.default.is.120 |
| 1391e0 | 20 6d 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 | .ms..This.command.specifies.the. |
| 139200 | 6d 61 78 69 6d 75 6d 20 63 6f 73 74 20 61 64 64 65 64 20 74 6f 20 61 20 6e 65 69 67 68 62 6f 75 | maximum.cost.added.to.a.neighbou |
| 139220 | 72 20 62 65 63 61 75 73 65 20 6f 66 20 52 54 54 2c 20 69 2e 65 2e 20 77 68 65 6e 20 74 68 65 20 | r.because.of.RTT,.i.e..when.the. |
| 139240 | 52 54 54 20 69 73 20 68 69 67 68 65 72 20 6f 72 20 65 71 75 61 6c 20 74 68 61 6e 20 72 74 74 2d | RTT.is.higher.or.equal.than.rtt- |
| 139260 | 6d 61 78 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 31 35 30 2e 20 53 65 74 74 69 6e 67 | max..The.default.is.150..Setting |
| 139280 | 20 69 74 20 74 6f 20 30 20 65 66 66 65 63 74 69 76 65 6c 79 20 64 69 73 61 62 6c 65 73 20 74 68 | .it.to.0.effectively.disables.th |
| 1392a0 | 65 20 75 73 65 20 6f 66 20 61 20 52 54 54 2d 62 61 73 65 64 20 63 6f 73 74 2e 00 54 68 69 73 20 | e.use.of.a.RTT-based.cost..This. |
| 1392c0 | 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 6d 69 6e 69 6d 75 6d 20 52 54 | command.specifies.the.minimum.RT |
| 1392e0 | 54 2c 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 2c 20 73 74 61 72 74 69 6e 67 20 66 72 6f | T,.in.milliseconds,.starting.fro |
| 139300 | 6d 20 77 68 69 63 68 20 77 65 20 69 6e 63 72 65 61 73 65 20 74 68 65 20 63 6f 73 74 20 74 6f 20 | m.which.we.increase.the.cost.to. |
| 139320 | 61 20 6e 65 69 67 68 62 6f 75 72 2e 20 54 68 65 20 61 64 64 69 74 69 6f 6e 61 6c 20 63 6f 73 74 | a.neighbour..The.additional.cost |
| 139340 | 20 69 73 20 6c 69 6e 65 61 72 20 69 6e 20 28 72 74 74 20 2d 20 72 74 74 2d 6d 69 6e 29 2e 20 54 | .is.linear.in.(rtt.-.rtt-min)..T |
| 139360 | 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 31 30 20 6d 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e | he.default.is.10.ms..This.comman |
| 139380 | 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 6d 69 6e 69 6d 75 6d 20 72 6f 75 74 65 20 61 64 | d.specifies.the.minimum.route.ad |
| 1393a0 | 76 65 72 74 69 73 65 6d 65 6e 74 20 69 6e 74 65 72 76 61 6c 20 66 6f 72 20 74 68 65 20 70 65 65 | vertisement.interval.for.the.pee |
| 1393c0 | 72 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 76 61 6c 75 65 20 69 73 20 30 20 74 6f 20 36 30 | r..The.interval.value.is.0.to.60 |
| 1393e0 | 30 20 73 65 63 6f 6e 64 73 2c 20 77 69 74 68 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 64 76 65 | 0.seconds,.with.the.default.adve |
| 139400 | 72 74 69 73 65 6d 65 6e 74 20 69 6e 74 65 72 76 61 6c 20 62 65 69 6e 67 20 30 2e 00 54 68 69 73 | rtisement.interval.being.0..This |
| 139420 | 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 72 6f 75 74 65 72 20 70 72 | .command.specifies.the.router.pr |
| 139440 | 69 6f 72 69 74 79 20 76 61 6c 75 65 20 6f 66 20 74 68 65 20 6e 6f 6e 62 72 6f 61 64 63 61 73 74 | iority.value.of.the.nonbroadcast |
| 139460 | 20 6e 65 69 67 68 62 6f 72 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 20 49 50 | .neighbor.associated.with.the.IP |
| 139480 | 20 61 64 64 72 65 73 73 20 73 70 65 63 69 66 69 65 64 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 | .address.specified..The.default. |
| 1394a0 | 69 73 20 30 2e 20 54 68 69 73 20 6b 65 79 77 6f 72 64 20 64 6f 65 73 20 6e 6f 74 20 61 70 70 6c | is.0..This.keyword.does.not.appl |
| 1394c0 | 79 20 74 6f 20 70 6f 69 6e 74 2d 74 6f 2d 6d 75 6c 74 69 70 6f 69 6e 74 20 69 6e 74 65 72 66 61 | y.to.point-to-multipoint.interfa |
| 1394e0 | 63 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 | ces..This.command.specifies.the. |
| 139500 | 72 6f 75 74 65 72 2d 49 44 2e 20 49 66 20 72 6f 75 74 65 72 20 49 44 20 69 73 20 6e 6f 74 20 73 | router-ID..If.router.ID.is.not.s |
| 139520 | 70 65 63 69 66 69 65 64 20 69 74 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 68 69 67 68 65 73 74 | pecified.it.will.use.the.highest |
| 139540 | 20 69 6e 74 65 72 66 61 63 65 20 49 50 20 61 64 64 72 65 73 73 2e 00 54 68 69 73 20 63 6f 6d 6d | .interface.IP.address..This.comm |
| 139560 | 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 74 69 6d 65 20 63 6f 6e 73 74 61 6e 74 2c | and.specifies.the.time.constant, |
| 139580 | 20 69 6e 20 73 65 63 6f 6e 64 73 2c 20 6f 66 20 74 68 65 20 73 6d 6f 6f 74 68 69 6e 67 20 61 6c | .in.seconds,.of.the.smoothing.al |
| 1395a0 | 67 6f 72 69 74 68 6d 20 75 73 65 64 20 66 6f 72 20 69 6d 70 6c 65 6d 65 6e 74 69 6e 67 20 68 79 | gorithm.used.for.implementing.hy |
| 1395c0 | 73 74 65 72 65 73 69 73 2e 20 4c 61 72 67 65 72 20 76 61 6c 75 65 73 20 72 65 64 75 63 65 20 72 | steresis..Larger.values.reduce.r |
| 1395e0 | 6f 75 74 65 20 6f 73 63 69 6c 6c 61 74 69 6f 6e 20 61 74 20 74 68 65 20 63 6f 73 74 20 6f 66 20 | oute.oscillation.at.the.cost.of. |
| 139600 | 76 65 72 79 20 73 6c 69 67 68 74 6c 79 20 69 6e 63 72 65 61 73 69 6e 67 20 63 6f 6e 76 65 72 67 | very.slightly.increasing.converg |
| 139620 | 65 6e 63 65 20 74 69 6d 65 2e 20 54 68 65 20 76 61 6c 75 65 20 30 20 64 69 73 61 62 6c 65 73 20 | ence.time..The.value.0.disables. |
| 139640 | 68 79 73 74 65 72 65 73 69 73 2c 20 61 6e 64 20 69 73 20 73 75 69 74 61 62 6c 65 20 66 6f 72 20 | hysteresis,.and.is.suitable.for. |
| 139660 | 77 69 72 65 64 20 6e 65 74 77 6f 72 6b 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 34 | wired.networks..The.default.is.4 |
| 139680 | 20 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 74 | .s..This.command.specifies.the.t |
| 1396a0 | 69 6d 65 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 20 61 66 74 65 72 20 77 68 69 63 68 20 | ime.in.milliseconds.after.which. |
| 1396c0 | 61 6e 20 27 69 6d 70 6f 72 74 61 6e 74 27 20 72 65 71 75 65 73 74 20 6f 72 20 75 70 64 61 74 65 | an.'important'.request.or.update |
| 1396e0 | 20 77 69 6c 6c 20 62 65 20 72 65 73 65 6e 74 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 | .will.be.resent..The.default.is. |
| 139700 | 32 30 30 30 20 6d 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 | 2000.ms..This.command.specifies. |
| 139720 | 74 68 65 20 74 69 6d 65 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 20 62 65 74 77 65 65 6e | the.time.in.milliseconds.between |
| 139740 | 20 74 77 6f 20 73 63 68 65 64 75 6c 65 64 20 68 65 6c 6c 6f 73 2e 20 4f 6e 20 77 69 72 65 64 20 | .two.scheduled.hellos..On.wired. |
| 139760 | 6c 69 6e 6b 73 2c 20 42 61 62 65 6c 20 6e 6f 74 69 63 65 73 20 61 20 6c 69 6e 6b 20 66 61 69 6c | links,.Babel.notices.a.link.fail |
| 139780 | 75 72 65 20 77 69 74 68 69 6e 20 74 77 6f 20 68 65 6c 6c 6f 20 69 6e 74 65 72 76 61 6c 73 3b 20 | ure.within.two.hello.intervals;. |
| 1397a0 | 6f 6e 20 77 69 72 65 6c 65 73 73 20 6c 69 6e 6b 73 2c 20 74 68 65 20 6c 69 6e 6b 20 71 75 61 6c | on.wireless.links,.the.link.qual |
| 1397c0 | 69 74 79 20 76 61 6c 75 65 20 69 73 20 72 65 65 73 74 69 6d 61 74 65 64 20 61 74 20 65 76 65 72 | ity.value.is.reestimated.at.ever |
| 1397e0 | 79 20 68 65 6c 6c 6f 20 69 6e 74 65 72 76 61 6c 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 | y.hello.interval..The.default.is |
| 139800 | 20 34 30 30 30 20 6d 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 | .4000.ms..This.command.specifies |
| 139820 | 20 74 68 65 20 74 69 6d 65 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 20 62 65 74 77 65 65 | .the.time.in.milliseconds.betwee |
| 139840 | 6e 20 74 77 6f 20 73 63 68 65 64 75 6c 65 64 20 75 70 64 61 74 65 73 2e 20 53 69 6e 63 65 20 42 | n.two.scheduled.updates..Since.B |
| 139860 | 61 62 65 6c 20 6d 61 6b 65 73 20 65 78 74 65 6e 73 69 76 65 20 75 73 65 20 6f 66 20 74 72 69 67 | abel.makes.extensive.use.of.trig |
| 139880 | 67 65 72 65 64 20 75 70 64 61 74 65 73 2c 20 74 68 69 73 20 63 61 6e 20 62 65 20 73 65 74 20 74 | gered.updates,.this.can.be.set.t |
| 1398a0 | 6f 20 66 61 69 72 6c 79 20 68 69 67 68 20 76 61 6c 75 65 73 20 6f 6e 20 6c 69 6e 6b 73 20 77 69 | o.fairly.high.values.on.links.wi |
| 1398c0 | 74 68 20 6c 69 74 74 6c 65 20 70 61 63 6b 65 74 20 6c 6f 73 73 2e 20 54 68 65 20 64 65 66 61 75 | th.little.packet.loss..The.defau |
| 1398e0 | 6c 74 20 69 73 20 32 30 30 30 30 20 6d 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 | lt.is.20000.ms..This.command.spe |
| 139900 | 63 69 66 69 65 73 20 74 68 65 20 74 69 6d 65 6f 75 74 20 74 69 6d 65 72 2e 20 55 70 6f 6e 20 65 | cifies.the.timeout.timer..Upon.e |
| 139920 | 78 70 69 72 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 74 69 6d 65 6f 75 74 2c 20 74 68 65 20 72 6f | xpiration.of.the.timeout,.the.ro |
| 139940 | 75 74 65 20 69 73 20 6e 6f 20 6c 6f 6e 67 65 72 20 76 61 6c 69 64 3b 20 68 6f 77 65 76 65 72 2c | ute.is.no.longer.valid;.however, |
| 139960 | 20 69 74 20 69 73 20 72 65 74 61 69 6e 65 64 20 69 6e 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 | .it.is.retained.in.the.routing.t |
| 139980 | 61 62 6c 65 20 66 6f 72 20 61 20 73 68 6f 72 74 20 74 69 6d 65 20 73 6f 20 74 68 61 74 20 6e 65 | able.for.a.short.time.so.that.ne |
| 1399a0 | 69 67 68 62 6f 72 73 20 63 61 6e 20 62 65 20 6e 6f 74 69 66 69 65 64 20 74 68 61 74 20 74 68 65 | ighbors.can.be.notified.that.the |
| 1399c0 | 20 72 6f 75 74 65 20 68 61 73 20 62 65 65 6e 20 64 72 6f 70 70 65 64 2e 20 54 68 65 20 74 69 6d | .route.has.been.dropped..The.tim |
| 1399e0 | 65 20 72 61 6e 67 65 20 69 73 20 35 20 74 6f 20 32 31 34 37 34 38 33 36 34 37 2e 20 54 68 65 20 | e.range.is.5.to.2147483647..The. |
| 139a00 | 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 38 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 | default.value.is.180.seconds..Th |
| 139a20 | 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 75 70 64 61 74 65 20 | is.command.specifies.the.update. |
| 139a40 | 74 69 6d 65 72 2e 20 45 76 65 72 79 20 75 70 64 61 74 65 20 74 69 6d 65 72 20 73 65 63 6f 6e 64 | timer..Every.update.timer.second |
| 139a60 | 73 2c 20 74 68 65 20 52 49 50 20 70 72 6f 63 65 73 73 20 69 73 20 61 77 61 6b 65 6e 65 64 20 74 | s,.the.RIP.process.is.awakened.t |
| 139a80 | 6f 20 73 65 6e 64 20 61 6e 20 75 6e 73 6f 6c 69 63 69 74 65 64 20 72 65 73 70 6f 6e 73 65 20 6d | o.send.an.unsolicited.response.m |
| 139aa0 | 65 73 73 61 67 65 20 63 6f 6e 74 61 69 6e 69 6e 67 20 74 68 65 20 63 6f 6d 70 6c 65 74 65 20 72 | essage.containing.the.complete.r |
| 139ac0 | 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 74 6f 20 61 6c 6c 20 6e 65 69 67 68 62 6f 72 69 6e 67 20 | outing.table.to.all.neighboring. |
| 139ae0 | 52 49 50 20 72 6f 75 74 65 72 73 2e 20 54 68 65 20 74 69 6d 65 20 72 61 6e 67 65 20 69 73 20 35 | RIP.routers..The.time.range.is.5 |
| 139b00 | 20 74 6f 20 32 31 34 37 34 38 33 36 34 37 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 | .to.2147483647..The.default.valu |
| 139b20 | 65 20 69 73 20 33 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 | e.is.30.seconds..This.command.sp |
| 139b40 | 65 63 69 66 69 65 73 20 77 68 65 74 68 65 72 20 74 6f 20 70 65 72 66 6f 72 6d 20 73 70 6c 69 74 | ecifies.whether.to.perform.split |
| 139b60 | 2d 68 6f 72 69 7a 6f 6e 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 53 70 65 63 69 | -horizon.on.the.interface..Speci |
| 139b80 | 66 79 69 6e 67 20 6e 6f 20 62 61 62 65 6c 20 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 69 73 20 | fying.no.babel.split-horizon.is. |
| 139ba0 | 61 6c 77 61 79 73 20 63 6f 72 72 65 63 74 2c 20 77 68 69 6c 65 20 62 61 62 65 6c 20 73 70 6c 69 | always.correct,.while.babel.spli |
| 139bc0 | 74 2d 68 6f 72 69 7a 6f 6e 20 69 73 20 61 6e 20 6f 70 74 69 6d 69 73 61 74 69 6f 6e 20 74 68 61 | t-horizon.is.an.optimisation.tha |
| 139be0 | 74 20 73 68 6f 75 6c 64 20 6f 6e 6c 79 20 62 65 20 75 73 65 64 20 6f 6e 20 73 79 6d 6d 65 74 72 | t.should.only.be.used.on.symmetr |
| 139c00 | 69 63 20 61 6e 64 20 74 72 61 6e 73 69 74 69 76 65 20 28 77 69 72 65 64 29 20 6e 65 74 77 6f 72 | ic.and.transitive.(wired).networ |
| 139c20 | 6b 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 79 20 74 68 61 74 20 4f 53 | ks..This.command.specify.that.OS |
| 139c40 | 50 46 20 70 61 63 6b 65 74 73 20 6d 75 73 74 20 62 65 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 | PF.packets.must.be.authenticated |
| 139c60 | 20 77 69 74 68 20 4d 44 35 20 48 4d 41 43 73 20 77 69 74 68 69 6e 20 74 68 65 20 67 69 76 65 6e | .with.MD5.HMACs.within.the.given |
| 139c80 | 20 61 72 65 61 2e 20 4b 65 79 69 6e 67 20 6d 61 74 65 72 69 61 6c 20 6d 75 73 74 20 61 6c 73 6f | .area..Keying.material.must.also |
| 139ca0 | 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 61 20 70 65 72 2d 69 6e 74 65 72 66 61 63 | .be.configured.on.a.per-interfac |
| 139cc0 | 65 20 62 61 73 69 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 79 73 20 74 | e.basis..This.command.specifys.t |
| 139ce0 | 68 61 74 20 4d 44 35 20 48 4d 41 43 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 75 73 74 | hat.MD5.HMAC.authentication.must |
| 139d00 | 20 62 65 20 75 73 65 64 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 20 49 74 20 73 | .be.used.on.this.interface..It.s |
| 139d20 | 65 74 73 20 4f 53 50 46 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6b 65 79 20 74 6f 20 61 | ets.OSPF.authentication.key.to.a |
| 139d40 | 20 63 72 79 70 74 6f 67 72 61 70 68 69 63 20 70 61 73 73 77 6f 72 64 2e 20 4b 65 79 2d 69 64 20 | .cryptographic.password..Key-id. |
| 139d60 | 69 64 65 6e 74 69 66 69 65 73 20 73 65 63 72 65 74 20 6b 65 79 20 75 73 65 64 20 74 6f 20 63 72 | identifies.secret.key.used.to.cr |
| 139d80 | 65 61 74 65 20 74 68 65 20 6d 65 73 73 61 67 65 20 64 69 67 65 73 74 2e 20 54 68 69 73 20 49 44 | eate.the.message.digest..This.ID |
| 139da0 | 20 69 73 20 70 61 72 74 20 6f 66 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 20 61 6e 64 20 6d 75 73 | .is.part.of.the.protocol.and.mus |
| 139dc0 | 74 20 62 65 20 63 6f 6e 73 69 73 74 65 6e 74 20 61 63 72 6f 73 73 20 72 6f 75 74 65 72 73 20 6f | t.be.consistent.across.routers.o |
| 139de0 | 6e 20 61 20 6c 69 6e 6b 2e 20 54 68 65 20 6b 65 79 20 63 61 6e 20 62 65 20 6c 6f 6e 67 20 75 70 | n.a.link..The.key.can.be.long.up |
| 139e00 | 20 74 6f 20 31 36 20 63 68 61 72 73 20 28 6c 61 72 67 65 72 20 73 74 72 69 6e 67 73 20 77 69 6c | .to.16.chars.(larger.strings.wil |
| 139e20 | 6c 20 62 65 20 74 72 75 6e 63 61 74 65 64 29 2c 20 61 6e 64 20 69 73 20 61 73 73 6f 63 69 61 74 | l.be.truncated),.and.is.associat |
| 139e40 | 65 64 20 77 69 74 68 20 74 68 65 20 67 69 76 65 6e 20 6b 65 79 2d 69 64 2e 00 54 68 69 73 20 63 | ed.with.the.given.key-id..This.c |
| 139e60 | 6f 6d 6d 61 6e 64 20 73 75 6d 6d 61 72 69 7a 65 73 20 69 6e 74 72 61 20 61 72 65 61 20 70 61 74 | ommand.summarizes.intra.area.pat |
| 139e80 | 68 73 20 66 72 6f 6d 20 73 70 65 63 69 66 69 65 64 20 61 72 65 61 20 69 6e 74 6f 20 6f 6e 65 20 | hs.from.specified.area.into.one. |
| 139ea0 | 54 79 70 65 2d 33 20 49 6e 74 65 72 2d 41 72 65 61 20 50 72 65 66 69 78 20 4c 53 41 20 61 6e 6e | Type-3.Inter-Area.Prefix.LSA.ann |
| 139ec0 | 6f 75 6e 63 65 64 20 74 6f 20 6f 74 68 65 72 20 61 72 65 61 73 2e 20 54 68 69 73 20 63 6f 6d 6d | ounced.to.other.areas..This.comm |
| 139ee0 | 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 69 6e 20 41 42 52 2e 00 54 68 69 | and.can.be.used.only.in.ABR..Thi |
| 139f00 | 73 20 63 6f 6d 6d 61 6e 64 20 73 75 6d 6d 61 72 69 7a 65 73 20 69 6e 74 72 61 20 61 72 65 61 20 | s.command.summarizes.intra.area. |
| 139f20 | 70 61 74 68 73 20 66 72 6f 6d 20 73 70 65 63 69 66 69 65 64 20 61 72 65 61 20 69 6e 74 6f 20 6f | paths.from.specified.area.into.o |
| 139f40 | 6e 65 20 73 75 6d 6d 61 72 79 2d 4c 53 41 20 28 54 79 70 65 2d 33 29 20 61 6e 6e 6f 75 6e 63 65 | ne.summary-LSA.(Type-3).announce |
| 139f60 | 64 20 74 6f 20 6f 74 68 65 72 20 61 72 65 61 73 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 | d.to.other.areas..This.command.c |
| 139f80 | 61 6e 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 69 6e 20 41 42 52 20 61 6e 64 20 4f 4e 4c 59 20 | an.be.used.only.in.ABR.and.ONLY. |
| 139fa0 | 72 6f 75 74 65 72 2d 4c 53 41 73 20 28 54 79 70 65 2d 31 29 20 61 6e 64 20 6e 65 74 77 6f 72 6b | router-LSAs.(Type-1).and.network |
| 139fc0 | 2d 4c 53 41 73 20 28 54 79 70 65 2d 32 29 20 28 69 2e 65 2e 20 4c 53 41 73 20 77 69 74 68 20 73 | -LSAs.(Type-2).(i.e..LSAs.with.s |
| 139fe0 | 63 6f 70 65 20 61 72 65 61 29 20 63 61 6e 20 62 65 20 73 75 6d 6d 61 72 69 7a 65 64 2e 20 41 53 | cope.area).can.be.summarized..AS |
| 13a000 | 2d 65 78 74 65 72 6e 61 6c 2d 4c 53 41 73 20 28 54 79 70 65 2d 35 29 20 63 61 6e e2 80 99 74 20 | -external-LSAs.(Type-5).can...t. |
| 13a020 | 62 65 20 73 75 6d 6d 61 72 69 7a 65 64 20 2d 20 74 68 65 69 72 20 73 63 6f 70 65 20 69 73 20 41 | be.summarized.-.their.scope.is.A |
| 13a040 | 53 2e 20 54 68 65 20 6f 70 74 69 6f 6e 61 6c 20 61 72 67 75 6d 65 6e 74 20 3a 63 66 67 63 6d 64 | S..The.optional.argument.:cfgcmd |
| 13a060 | 3a 60 63 6f 73 74 60 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 61 67 67 72 65 67 61 74 65 64 | :`cost`.specifies.the.aggregated |
| 13a080 | 20 6c 69 6e 6b 20 6d 65 74 72 69 63 2e 20 54 68 65 20 6d 65 74 72 69 63 20 72 61 6e 67 65 20 69 | .link.metric..The.metric.range.i |
| 13a0a0 | 73 20 30 20 74 6f 20 31 36 37 37 37 32 31 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | s.0.to.16777215..This.command.to |
| 13a0c0 | 20 65 6e 73 75 72 65 20 6e 6f 74 20 61 64 76 65 72 74 69 73 65 20 74 68 65 20 73 75 6d 6d 61 72 | .ensure.not.advertise.the.summar |
| 13a0e0 | 79 20 6c 73 61 20 66 6f 72 20 74 68 65 20 6d 61 74 63 68 65 64 20 65 78 74 65 72 6e 61 6c 20 4c | y.lsa.for.the.matched.external.L |
| 13a100 | 53 41 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 75 73 65 73 20 74 6f 20 63 6c 65 61 72 20 | SAs..This.command.uses.to.clear. |
| 13a120 | 42 47 50 20 72 6f 75 74 65 20 64 61 6d 70 65 6e 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 | BGP.route.dampening.information. |
| 13a140 | 61 6e 64 20 74 6f 20 75 6e 73 75 70 70 72 65 73 73 20 73 75 70 70 72 65 73 73 65 64 20 72 6f 75 | and.to.unsuppress.suppressed.rou |
| 13a160 | 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 61 73 20 69 6e 74 72 6f 64 75 63 65 64 | tes..This.command.was.introduced |
| 13a180 | 20 69 6e 20 56 79 4f 53 20 31 2e 34 20 2d 20 69 74 20 77 61 73 20 70 72 65 76 69 6f 75 73 6c 79 | .in.VyOS.1.4.-.it.was.previously |
| 13a1a0 | 20 63 61 6c 6c 65 64 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 6f 70 74 69 6f 6e 73 20 | .called:.``set.firewall.options. |
| 13a1c0 | 69 6e 74 65 72 66 61 63 65 20 3c 6e 61 6d 65 3e 20 61 64 6a 75 73 74 2d 6d 73 73 20 3c 76 61 6c | interface.<name>.adjust-mss.<val |
| 13a1e0 | 75 65 3e 60 60 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 61 73 20 69 6e 74 72 6f 64 75 63 65 | ue>``.This.command.was.introduce |
| 13a200 | 64 20 69 6e 20 56 79 4f 53 20 31 2e 34 20 2d 20 69 74 20 77 61 73 20 70 72 65 76 69 6f 75 73 6c | d.in.VyOS.1.4.-.it.was.previousl |
| 13a220 | 79 20 63 61 6c 6c 65 64 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 6f 70 74 69 6f 6e 73 | y.called:.``set.firewall.options |
| 13a240 | 20 69 6e 74 65 72 66 61 63 65 20 3c 6e 61 6d 65 3e 20 61 64 6a 75 73 74 2d 6d 73 73 36 20 3c 76 | .interface.<name>.adjust-mss6.<v |
| 13a260 | 61 6c 75 65 3e 60 60 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 63 68 61 6e 67 65 | alue>``.This.command.will.change |
| 13a280 | 20 74 68 65 20 68 6f 6c 64 20 64 6f 77 6e 20 76 61 6c 75 65 20 66 6f 72 20 49 47 50 2d 4c 44 50 | .the.hold.down.value.for.IGP-LDP |
| 13a2a0 | 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 64 75 72 69 6e 67 20 63 6f 6e 76 65 72 67 65 | .synchronization.during.converge |
| 13a2c0 | 6e 63 65 2f 69 6e 74 65 72 66 61 63 65 20 66 6c 61 70 20 65 76 65 6e 74 73 2c 20 62 75 74 20 66 | nce/interface.flap.events,.but.f |
| 13a2e0 | 6f 72 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 6c 79 2e 00 54 68 69 73 20 63 6f 6d | or.this.interface.only..This.com |
| 13a300 | 6d 61 6e 64 20 77 69 6c 6c 20 63 68 61 6e 67 65 20 74 68 65 20 68 6f 6c 64 20 64 6f 77 6e 20 76 | mand.will.change.the.hold.down.v |
| 13a320 | 61 6c 75 65 20 67 6c 6f 62 61 6c 6c 79 20 66 6f 72 20 49 47 50 2d 4c 44 50 20 73 79 6e 63 68 72 | alue.globally.for.IGP-LDP.synchr |
| 13a340 | 6f 6e 69 7a 61 74 69 6f 6e 20 64 75 72 69 6e 67 20 63 6f 6e 76 65 72 67 65 6e 63 65 2f 69 6e 74 | onization.during.convergence/int |
| 13a360 | 65 72 66 61 63 65 20 66 6c 61 70 20 65 76 65 6e 74 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | erface.flap.events..This.command |
| 13a380 | 20 77 69 6c 6c 20 63 6f 6e 66 69 67 75 72 65 20 61 20 74 69 65 2d 62 72 65 61 6b 65 72 20 66 6f | .will.configure.a.tie-breaker.fo |
| 13a3a0 | 72 20 6d 75 6c 74 69 70 6c 65 20 6c 6f 63 61 6c 20 4c 46 41 20 62 61 63 6b 75 70 73 2e 20 54 68 | r.multiple.local.LFA.backups..Th |
| 13a3c0 | 65 20 6c 6f 77 65 72 20 69 6e 64 65 78 20 6e 75 6d 62 65 72 73 20 77 69 6c 6c 20 62 65 20 70 72 | e.lower.index.numbers.will.be.pr |
| 13a3e0 | 6f 63 65 73 73 65 64 20 66 69 72 73 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c | ocessed.first..This.command.will |
| 13a400 | 20 65 6e 61 62 6c 65 20 49 47 50 2d 4c 44 50 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 | .enable.IGP-LDP.synchronization. |
| 13a420 | 67 6c 6f 62 61 6c 6c 79 20 66 6f 72 20 49 53 49 53 2e 20 54 68 69 73 20 72 65 71 75 69 72 65 73 | globally.for.ISIS..This.requires |
| 13a440 | 20 66 6f 72 20 4c 44 50 20 74 6f 20 62 65 20 66 75 6e 63 74 69 6f 6e 61 6c 2e 20 54 68 69 73 20 | .for.LDP.to.be.functional..This. |
| 13a460 | 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 35 34 34 33 60 2e 20 42 79 20 | is.described.in.:rfc:`5443`..By. |
| 13a480 | 64 65 66 61 75 6c 74 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 20 6f 70 65 72 61 74 69 6f 6e | default.all.interfaces.operation |
| 13a4a0 | 61 6c 20 69 6e 20 49 53 2d 49 53 20 61 72 65 20 65 6e 61 62 6c 65 64 20 66 6f 72 20 73 79 6e 63 | al.in.IS-IS.are.enabled.for.sync |
| 13a4c0 | 68 72 6f 6e 69 7a 61 74 69 6f 6e 2e 20 4c 6f 6f 70 62 61 63 6b 73 20 61 72 65 20 65 78 65 6d 70 | hronization..Loopbacks.are.exemp |
| 13a4e0 | 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 65 6e 61 62 6c 65 20 49 47 50 2d | t..This.command.will.enable.IGP- |
| 13a500 | 4c 44 50 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 67 6c 6f 62 61 6c 6c 79 20 66 6f 72 | LDP.synchronization.globally.for |
| 13a520 | 20 4f 53 50 46 2e 20 54 68 69 73 20 72 65 71 75 69 72 65 73 20 66 6f 72 20 4c 44 50 20 74 6f 20 | .OSPF..This.requires.for.LDP.to. |
| 13a540 | 62 65 20 66 75 6e 63 74 69 6f 6e 61 6c 2e 20 54 68 69 73 20 69 73 20 64 65 73 63 72 69 62 65 64 | be.functional..This.is.described |
| 13a560 | 20 69 6e 20 3a 72 66 63 3a 60 35 34 34 33 60 2e 20 42 79 20 64 65 66 61 75 6c 74 20 61 6c 6c 20 | .in.:rfc:`5443`..By.default.all. |
| 13a580 | 69 6e 74 65 72 66 61 63 65 73 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 69 6e 20 4f 53 50 46 20 61 | interfaces.operational.in.OSPF.a |
| 13a5a0 | 72 65 20 65 6e 61 62 6c 65 64 20 66 6f 72 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 2e 20 | re.enabled.for.synchronization.. |
| 13a5c0 | 4c 6f 6f 70 62 61 63 6b 73 20 61 72 65 20 65 78 65 6d 70 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | Loopbacks.are.exempt..This.comma |
| 13a5e0 | 6e 64 20 77 69 6c 6c 20 67 65 6e 65 72 61 74 65 20 61 20 64 65 66 61 75 6c 74 2d 72 6f 75 74 65 | nd.will.generate.a.default-route |
| 13a600 | 20 69 6e 20 4c 31 20 64 61 74 61 62 61 73 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 | .in.L1.database..This.command.wi |
| 13a620 | 6c 6c 20 67 65 6e 65 72 61 74 65 20 61 20 64 65 66 61 75 6c 74 2d 72 6f 75 74 65 20 69 6e 20 4c | ll.generate.a.default-route.in.L |
| 13a640 | 32 20 64 61 74 61 62 61 73 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 67 69 | 2.database..This.command.will.gi |
| 13a660 | 76 65 20 61 6e 20 6f 76 65 72 76 69 65 77 20 6f 66 20 61 20 72 75 6c 65 20 69 6e 20 61 20 73 69 | ve.an.overview.of.a.rule.in.a.si |
| 13a680 | 6e 67 6c 65 20 72 75 6c 65 2d 73 65 74 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 | ngle.rule-set.This.command.will. |
| 13a6a0 | 67 69 76 65 20 61 6e 20 6f 76 65 72 76 69 65 77 20 6f 66 20 61 20 72 75 6c 65 20 69 6e 20 61 20 | give.an.overview.of.a.rule.in.a. |
| 13a6c0 | 73 69 6e 67 6c 65 20 72 75 6c 65 2d 73 65 74 2c 20 70 6c 75 73 20 69 6e 66 6f 72 6d 61 74 69 6f | single.rule-set,.plus.informatio |
| 13a6e0 | 6e 20 66 6f 72 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | n.for.default.action..This.comma |
| 13a700 | 6e 64 20 77 69 6c 6c 20 67 69 76 65 20 61 6e 20 6f 76 65 72 76 69 65 77 20 6f 66 20 61 20 72 75 | nd.will.give.an.overview.of.a.ru |
| 13a720 | 6c 65 20 69 6e 20 61 20 73 69 6e 67 6c 65 20 72 75 6c 65 2d 73 65 74 2e 00 54 68 69 73 20 63 6f | le.in.a.single.rule-set..This.co |
| 13a740 | 6d 6d 61 6e 64 20 77 69 6c 6c 20 67 69 76 65 20 61 6e 20 6f 76 65 72 76 69 65 77 20 6f 66 20 61 | mmand.will.give.an.overview.of.a |
| 13a760 | 20 73 69 6e 67 6c 65 20 72 75 6c 65 2d 73 65 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 | .single.rule-set..This.command.w |
| 13a780 | 69 6c 6c 20 6c 69 6d 69 74 20 4c 46 41 20 62 61 63 6b 75 70 20 63 6f 6d 70 75 74 61 74 69 6f 6e | ill.limit.LFA.backup.computation |
| 13a7a0 | 20 75 70 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 72 65 66 69 78 20 70 72 69 6f | .up.to.the.specified.prefix.prio |
| 13a7c0 | 72 69 74 79 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 6f 75 6c 64 20 61 6c 6c 6f 77 20 74 | rity..This.command.would.allow.t |
| 13a7e0 | 68 65 20 64 79 6e 61 6d 69 63 20 75 70 64 61 74 65 20 6f 66 20 63 61 70 61 62 69 6c 69 74 69 65 | he.dynamic.update.of.capabilitie |
| 13a800 | 73 20 6f 76 65 72 20 61 6e 20 65 73 74 61 62 6c 69 73 68 65 64 20 42 47 50 20 73 65 73 73 69 6f | s.over.an.established.BGP.sessio |
| 13a820 | 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 73 20 63 72 65 61 74 65 73 20 61 20 62 72 69 64 67 | n..This.commands.creates.a.bridg |
| 13a840 | 65 20 74 68 61 74 20 69 73 20 75 73 65 64 20 74 6f 20 62 69 6e 64 20 74 72 61 66 66 69 63 20 6f | e.that.is.used.to.bind.traffic.o |
| 13a860 | 6e 20 65 74 68 31 20 76 6c 61 6e 20 32 34 31 20 77 69 74 68 20 74 68 65 20 76 78 6c 61 6e 32 34 | n.eth1.vlan.241.with.the.vxlan24 |
| 13a880 | 31 2d 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 6e | 1-interface..The.IP.address.is.n |
| 13a8a0 | 6f 74 20 72 65 71 75 69 72 65 64 2e 20 49 74 20 6d 61 79 20 68 6f 77 65 76 65 72 20 62 65 20 75 | ot.required..It.may.however.be.u |
| 13a8c0 | 73 65 64 20 61 73 20 61 20 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 20 66 6f 72 20 65 61 63 | sed.as.a.default.gateway.for.eac |
| 13a8e0 | 68 20 4c 65 61 66 20 77 68 69 63 68 20 61 6c 6c 6f 77 73 20 64 65 76 69 63 65 73 20 6f 6e 20 74 | h.Leaf.which.allows.devices.on.t |
| 13a900 | 68 65 20 76 6c 61 6e 20 74 6f 20 72 65 61 63 68 20 6f 74 68 65 72 20 73 75 62 6e 65 74 73 2e 20 | he.vlan.to.reach.other.subnets.. |
| 13a920 | 54 68 69 73 20 72 65 71 75 69 72 65 73 20 74 68 61 74 20 74 68 65 20 73 75 62 6e 65 74 73 20 61 | This.requires.that.the.subnets.a |
| 13a940 | 72 65 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 62 79 20 4f 53 50 46 20 73 6f 20 74 68 61 74 | re.redistributed.by.OSPF.so.that |
| 13a960 | 20 74 68 65 20 53 70 69 6e 65 20 77 69 6c 6c 20 6c 65 61 72 6e 20 68 6f 77 20 74 6f 20 72 65 61 | .the.Spine.will.learn.how.to.rea |
| 13a980 | 63 68 20 69 74 2e 20 54 6f 20 64 6f 20 74 68 69 73 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 68 | ch.it..To.do.this.you.need.to.ch |
| 13a9a0 | 61 6e 67 65 20 74 68 65 20 4f 53 50 46 20 6e 65 74 77 6f 72 6b 20 66 72 6f 6d 20 27 31 30 2e 30 | ange.the.OSPF.network.from.'10.0 |
| 13a9c0 | 2e 30 2e 30 2f 38 27 20 74 6f 20 27 30 2e 30 2e 30 2e 30 2f 30 27 20 74 6f 20 61 6c 6c 6f 77 20 | .0.0/8'.to.'0.0.0.0/0'.to.allow. |
| 13a9e0 | 31 37 32 2e 31 36 2f 31 32 2d 6e 65 74 77 6f 72 6b 73 20 74 6f 20 62 65 20 61 64 76 65 72 74 69 | 172.16/12-networks.to.be.adverti |
| 13aa00 | 73 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 73 20 73 70 65 63 69 66 69 65 73 20 74 68 65 | sed..This.commands.specifies.the |
| 13aa20 | 20 46 69 6e 69 74 65 20 53 74 61 74 65 20 4d 61 63 68 69 6e 65 20 28 46 53 4d 29 20 69 6e 74 65 | .Finite.State.Machine.(FSM).inte |
| 13aa40 | 6e 64 65 64 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 74 68 65 20 74 69 6d 69 6e 67 20 6f 66 20 74 68 | nded.to.control.the.timing.of.th |
| 13aa60 | 65 20 65 78 65 63 75 74 69 6f 6e 20 6f 66 20 53 50 46 20 63 61 6c 63 75 6c 61 74 69 6f 6e 73 20 | e.execution.of.SPF.calculations. |
| 13aa80 | 69 6e 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 49 47 50 20 65 76 65 6e 74 73 2e 20 54 68 65 20 70 | in.response.to.IGP.events..The.p |
| 13aaa0 | 72 6f 63 65 73 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 38 34 30 35 60 2e | rocess.described.in.:rfc:`8405`. |
| 13aac0 | 00 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 6e 61 62 6c 65 73 20 48 54 54 50 | .This.configuration.enables.HTTP |
| 13aae0 | 20 68 65 61 6c 74 68 20 63 68 65 63 6b 73 20 6f 6e 20 62 61 63 6b 65 6e 64 20 73 65 72 76 65 72 | .health.checks.on.backend.server |
| 13ab00 | 73 2e 00 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 6e 61 62 6c 65 73 20 74 68 | s..This.configuration.enables.th |
| 13ab20 | 65 20 54 43 50 20 72 65 76 65 72 73 65 20 70 72 6f 78 79 20 66 6f 72 20 74 68 65 20 22 6d 79 2d | e.TCP.reverse.proxy.for.the."my- |
| 13ab40 | 74 63 70 2d 61 70 69 22 20 73 65 72 76 69 63 65 2e 20 49 6e 63 6f 6d 69 6e 67 20 54 43 50 20 63 | tcp-api".service..Incoming.TCP.c |
| 13ab60 | 6f 6e 6e 65 63 74 69 6f 6e 73 20 6f 6e 20 70 6f 72 74 20 38 38 38 38 20 77 69 6c 6c 20 62 65 20 | onnections.on.port.8888.will.be. |
| 13ab80 | 6c 6f 61 64 20 62 61 6c 61 6e 63 65 64 20 61 63 72 6f 73 73 20 74 68 65 20 62 61 63 6b 65 6e 64 | load.balanced.across.the.backend |
| 13aba0 | 20 73 65 72 76 65 72 73 20 28 73 72 76 30 31 20 61 6e 64 20 73 72 76 30 32 29 20 75 73 69 6e 67 | .servers.(srv01.and.srv02).using |
| 13abc0 | 20 74 68 65 20 72 6f 75 6e 64 2d 72 6f 62 69 6e 20 6c 6f 61 64 2d 62 61 6c 61 6e 63 69 6e 67 20 | .the.round-robin.load-balancing. |
| 13abe0 | 61 6c 67 6f 72 69 74 68 6d 2e 00 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 67 65 | algorithm..This.configuration.ge |
| 13ac00 | 6e 65 72 61 74 65 73 20 26 20 69 6e 73 74 61 6c 6c 73 20 69 6e 74 6f 20 74 68 65 20 56 79 4f 53 | nerates.&.installs.into.the.VyOS |
| 13ac20 | 20 50 4b 49 20 73 79 73 74 65 6d 20 61 20 72 6f 6f 74 20 63 65 72 74 69 66 69 63 61 74 65 20 61 | .PKI.system.a.root.certificate.a |
| 13ac40 | 75 74 68 6f 72 69 74 79 2c 20 61 6c 6f 6e 67 73 69 64 65 20 74 77 6f 20 69 6e 74 65 72 6d 65 64 | uthority,.alongside.two.intermed |
| 13ac60 | 69 61 72 79 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 69 65 73 20 66 6f 72 | iary.certificate.authorities.for |
| 13ac80 | 20 63 6c 69 65 6e 74 20 26 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 73 2e 20 54 | .client.&.server.certificates..T |
| 13aca0 | 68 65 73 65 20 43 41 73 20 61 72 65 20 74 68 65 6e 20 75 73 65 64 20 74 6f 20 67 65 6e 65 72 61 | hese.CAs.are.then.used.to.genera |
| 13acc0 | 74 65 20 61 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 20 66 6f 72 20 74 68 65 20 | te.a.server.certificate.for.the. |
| 13ace0 | 72 6f 75 74 65 72 2c 20 61 6e 64 20 61 20 63 6c 69 65 6e 74 20 63 65 72 74 69 66 69 63 61 74 65 | router,.and.a.client.certificate |
| 13ad00 | 20 66 6f 72 20 61 20 75 73 65 72 2e 00 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | .for.a.user..This.configuration. |
| 13ad20 | 6c 69 73 74 65 6e 20 6f 6e 20 70 6f 72 74 20 38 30 20 61 6e 64 20 72 65 64 69 72 65 63 74 20 69 | listen.on.port.80.and.redirect.i |
| 13ad40 | 6e 63 6f 6d 69 6e 67 20 72 65 71 75 65 73 74 73 20 74 6f 20 48 54 54 50 53 3a 00 54 68 69 73 20 | ncoming.requests.to.HTTPS:.This. |
| 13ad60 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 69 66 69 65 73 20 74 68 65 20 62 65 68 61 76 | configuration.modifies.the.behav |
| 13ad80 | 69 6f 72 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 73 74 61 74 65 6d 65 6e 74 2e 20 49 66 | ior.of.the.network.statement..If |
| 13ada0 | 20 79 6f 75 20 68 61 76 65 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 74 68 65 20 75 6e | .you.have.this.configured.the.un |
| 13adc0 | 64 65 72 6c 79 69 6e 67 20 6e 65 74 77 6f 72 6b 20 6d 75 73 74 20 65 78 69 73 74 20 69 6e 20 74 | derlying.network.must.exist.in.t |
| 13ade0 | 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 00 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 | he.routing.table..This.configura |
| 13ae00 | 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 69 73 20 72 65 71 75 69 72 65 64 20 61 6e 64 20 6d | tion.parameter.is.required.and.m |
| 13ae20 | 75 73 74 20 62 65 20 75 6e 69 71 75 65 20 74 6f 20 65 61 63 68 20 73 75 62 6e 65 74 2e 20 49 74 | ust.be.unique.to.each.subnet..It |
| 13ae40 | 20 69 73 20 72 65 71 75 69 72 65 64 20 74 6f 20 6d 61 70 20 73 75 62 6e 65 74 73 20 74 6f 20 6c | .is.required.to.map.subnets.to.l |
| 13ae60 | 65 61 73 65 20 66 69 6c 65 20 65 6e 74 72 69 65 73 2e 00 54 68 69 73 20 63 6f 6e 66 69 67 75 72 | ease.file.entries..This.configur |
| 13ae80 | 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 6c 65 74 73 20 74 68 65 20 44 48 43 50 20 73 65 | ation.parameter.lets.the.DHCP.se |
| 13aea0 | 72 76 65 72 20 74 6f 20 6c 69 73 74 65 6e 20 66 6f 72 20 44 48 43 50 20 72 65 71 75 65 73 74 73 | rver.to.listen.for.DHCP.requests |
| 13aec0 | 20 73 65 6e 74 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 61 64 64 72 65 73 73 2c 20 | .sent.to.the.specified.address,. |
| 13aee0 | 69 74 20 69 73 20 6f 6e 6c 79 20 72 65 61 6c 69 73 74 69 63 61 6c 6c 79 20 75 73 65 66 75 6c 20 | it.is.only.realistically.useful. |
| 13af00 | 66 6f 72 20 61 20 73 65 72 76 65 72 20 77 68 6f 73 65 20 6f 6e 6c 79 20 63 6c 69 65 6e 74 73 20 | for.a.server.whose.only.clients. |
| 13af20 | 61 72 65 20 72 65 61 63 68 65 64 20 76 69 61 20 75 6e 69 63 61 73 74 73 2c 20 73 75 63 68 20 61 | are.reached.via.unicasts,.such.a |
| 13af40 | 73 20 76 69 61 20 44 48 43 50 20 72 65 6c 61 79 20 61 67 65 6e 74 73 2e 00 54 68 69 73 20 63 6f | s.via.DHCP.relay.agents..This.co |
| 13af60 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 6c 65 74 73 20 79 6f 75 20 73 | nfiguration.parameter.lets.you.s |
| 13af80 | 70 65 63 69 66 79 20 61 20 76 65 6e 64 6f 72 2d 6f 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 65 | pecify.a.vendor-option.for.the.e |
| 13afa0 | 6e 74 69 72 65 20 73 68 61 72 65 64 20 6e 65 74 77 6f 72 6b 20 64 65 66 69 6e 69 74 69 6f 6e 2e | ntire.shared.network.definition. |
| 13afc0 | 20 41 6c 6c 20 73 75 62 6e 65 74 73 20 77 69 6c 6c 20 69 6e 68 65 72 69 74 20 74 68 69 73 20 63 | .All.subnets.will.inherit.this.c |
| 13afe0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 74 65 6d 20 69 66 20 6e 6f 74 20 73 70 65 63 69 66 69 | onfiguration.item.if.not.specifi |
| 13b000 | 65 64 20 6c 6f 63 61 6c 6c 79 2e 20 41 6e 20 65 78 61 6d 70 6c 65 20 66 6f 72 20 55 62 69 71 75 | ed.locally..An.example.for.Ubiqu |
| 13b020 | 69 74 69 20 69 73 20 73 68 6f 77 6e 20 62 65 6c 6f 77 3a 00 54 68 69 73 20 63 6f 6e 66 69 67 75 | iti.is.shown.below:.This.configu |
| 13b040 | 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 6c 65 74 73 20 79 6f 75 20 73 70 65 63 69 66 | ration.parameter.lets.you.specif |
| 13b060 | 79 20 61 20 76 65 6e 64 6f 72 2d 6f 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 73 75 62 6e 65 74 | y.a.vendor-option.for.the.subnet |
| 13b080 | 20 73 70 65 63 69 66 69 65 64 20 77 69 74 68 69 6e 20 74 68 65 20 73 68 61 72 65 64 20 6e 65 74 | .specified.within.the.shared.net |
| 13b0a0 | 77 6f 72 6b 20 64 65 66 69 6e 69 74 69 6f 6e 2e 20 41 6e 20 65 78 61 6d 70 6c 65 20 66 6f 72 20 | work.definition..An.example.for. |
| 13b0c0 | 55 62 69 71 75 69 74 69 20 69 73 20 73 68 6f 77 6e 20 62 65 6c 6f 77 3a 00 54 68 69 73 20 63 6f | Ubiquiti.is.shown.below:.This.co |
| 13b0e0 | 75 6c 64 20 62 65 20 68 65 6c 70 66 75 6c 20 69 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 74 65 | uld.be.helpful.if.you.want.to.te |
| 13b100 | 73 74 20 68 6f 77 20 61 6e 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 62 65 68 61 76 65 73 20 75 6e | st.how.an.application.behaves.un |
| 13b120 | 64 65 72 20 63 65 72 74 61 69 6e 20 6e 65 74 77 6f 72 6b 20 63 6f 6e 64 69 74 69 6f 6e 73 2e 00 | der.certain.network.conditions.. |
| 13b140 | 54 68 69 73 20 63 72 65 61 74 65 73 20 61 20 72 6f 75 74 65 20 70 6f 6c 69 63 79 20 63 61 6c 6c | This.creates.a.route.policy.call |
| 13b160 | 65 64 20 46 49 4c 54 45 52 2d 57 45 42 20 77 69 74 68 20 6f 6e 65 20 72 75 6c 65 20 74 6f 20 73 | ed.FILTER-WEB.with.one.rule.to.s |
| 13b180 | 65 74 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 66 6f 72 20 6d 61 74 63 68 69 6e | et.the.routing.table.for.matchin |
| 13b1a0 | 67 20 74 72 61 66 66 69 63 20 28 54 43 50 20 70 6f 72 74 20 38 30 29 20 74 6f 20 74 61 62 6c 65 | g.traffic.(TCP.port.80).to.table |
| 13b1c0 | 20 49 44 20 31 30 30 20 69 6e 73 74 65 61 64 20 6f 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 | .ID.100.instead.of.the.default.r |
| 13b1e0 | 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 00 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 31 | outing.table..This.defaults.to.1 |
| 13b200 | 30 30 30 30 2e 00 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 31 38 31 32 2e 00 54 68 69 | 0000..This.defaults.to.1812..Thi |
| 13b220 | 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 32 30 30 37 2e 00 54 68 69 73 20 64 65 66 61 75 6c 74 | s.defaults.to.2007..This.default |
| 13b240 | 73 20 74 6f 20 33 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 | s.to.30.seconds..This.defaults.t |
| 13b260 | 6f 20 33 30 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 | o.300.seconds..This.defaults.to. |
| 13b280 | 34 39 2e 00 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 35 2e 00 54 68 69 73 20 64 65 66 | 49..This.defaults.to.5..This.def |
| 13b2a0 | 61 75 6c 74 73 20 74 6f 20 55 44 50 00 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 62 6f | aults.to.UDP.This.defaults.to.bo |
| 13b2c0 | 74 68 20 31 2e 32 20 61 6e 64 20 31 2e 33 2e 00 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f | th.1.2.and.1.3..This.defaults.to |
| 13b2e0 | 20 68 74 74 70 73 3a 2f 2f 61 63 6d 65 2d 76 30 32 2e 61 70 69 2e 6c 65 74 73 65 6e 63 72 79 70 | .https://acme-v02.api.letsencryp |
| 13b300 | 74 2e 6f 72 67 2f 64 69 72 65 63 74 6f 72 79 00 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f | t.org/directory.This.defaults.to |
| 13b320 | 20 70 68 79 30 2e 00 54 68 69 73 20 64 65 70 65 6e 64 73 20 6f 6e 20 74 68 65 20 64 72 69 76 65 | .phy0..This.depends.on.the.drive |
| 13b340 | 72 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 61 6e 64 20 6d 61 79 20 6e 6f 74 20 62 65 20 61 76 | r.capabilities.and.may.not.be.av |
| 13b360 | 61 69 6c 61 62 6c 65 20 77 69 74 68 20 61 6c 6c 20 64 72 69 76 65 72 73 2e 00 54 68 69 73 20 64 | ailable.with.all.drivers..This.d |
| 13b380 | 69 61 62 6c 65 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 63 61 63 68 65 20 61 6e 64 20 64 69 72 | iable.the.external.cache.and.dir |
| 13b3a0 | 65 63 74 6c 79 20 69 6e 6a 65 63 74 73 20 74 68 65 20 66 6c 6f 77 2d 73 74 61 74 65 73 20 69 6e | ectly.injects.the.flow-states.in |
| 13b3c0 | 74 6f 20 74 68 65 20 69 6e 2d 6b 65 72 6e 65 6c 20 43 6f 6e 6e 65 63 74 69 6f 6e 20 54 72 61 63 | to.the.in-kernel.Connection.Trac |
| 13b3e0 | 6b 69 6e 67 20 53 79 73 74 65 6d 20 6f 66 20 74 68 65 20 62 61 63 6b 75 70 20 66 69 72 65 77 61 | king.System.of.the.backup.firewa |
| 13b400 | 6c 6c 2e 00 54 68 69 73 20 64 69 61 67 72 61 6d 20 63 6f 72 72 65 73 70 6f 6e 64 73 20 77 69 74 | ll..This.diagram.corresponds.wit |
| 13b420 | 68 20 74 68 65 20 65 78 61 6d 70 6c 65 20 73 69 74 65 20 74 6f 20 73 69 74 65 20 63 6f 6e 66 69 | h.the.example.site.to.site.confi |
| 13b440 | 67 75 72 61 74 69 6f 6e 20 62 65 6c 6f 77 2e 00 54 68 69 73 20 65 6e 61 62 6c 65 73 20 3a 72 66 | guration.below..This.enables.:rf |
| 13b460 | 63 3a 60 33 31 33 37 60 20 73 75 70 70 6f 72 74 2c 20 77 68 65 72 65 20 74 68 65 20 4f 53 50 46 | c:`3137`.support,.where.the.OSPF |
| 13b480 | 20 70 72 6f 63 65 73 73 20 64 65 73 63 72 69 62 65 73 20 69 74 73 20 74 72 61 6e 73 69 74 20 6c | .process.describes.its.transit.l |
| 13b4a0 | 69 6e 6b 73 20 69 6e 20 69 74 73 20 72 6f 75 74 65 72 2d 4c 53 41 20 61 73 20 68 61 76 69 6e 67 | inks.in.its.router-LSA.as.having |
| 13b4c0 | 20 69 6e 66 69 6e 69 74 65 20 64 69 73 74 61 6e 63 65 20 73 6f 20 74 68 61 74 20 6f 74 68 65 72 | .infinite.distance.so.that.other |
| 13b4e0 | 20 72 6f 75 74 65 72 73 20 77 69 6c 6c 20 61 76 6f 69 64 20 63 61 6c 63 75 6c 61 74 69 6e 67 20 | .routers.will.avoid.calculating. |
| 13b500 | 74 72 61 6e 73 69 74 20 70 61 74 68 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 6f 75 74 65 72 | transit.paths.through.the.router |
| 13b520 | 20 77 68 69 6c 65 20 73 74 69 6c 6c 20 62 65 69 6e 67 20 61 62 6c 65 20 74 6f 20 72 65 61 63 68 | .while.still.being.able.to.reach |
| 13b540 | 20 6e 65 74 77 6f 72 6b 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 6f 75 74 65 72 2e 00 54 68 | .networks.through.the.router..Th |
| 13b560 | 69 73 20 65 6e 61 62 6c 65 73 20 74 68 65 20 67 72 65 65 6e 66 69 65 6c 64 20 6f 70 74 69 6f 6e | is.enables.the.greenfield.option |
| 13b580 | 20 77 68 69 63 68 20 73 65 74 73 20 74 68 65 20 60 60 5b 47 46 5d 60 60 20 6f 70 74 69 6f 6e 00 | .which.sets.the.``[GF]``.option. |
| 13b5a0 | 54 68 69 73 20 65 73 74 61 62 6c 69 73 68 65 73 20 6f 75 72 20 50 6f 72 74 20 46 6f 72 77 61 72 | This.establishes.our.Port.Forwar |
| 13b5c0 | 64 20 72 75 6c 65 2c 20 62 75 74 20 69 66 20 77 65 20 63 72 65 61 74 65 64 20 61 20 66 69 72 65 | d.rule,.but.if.we.created.a.fire |
| 13b5e0 | 77 61 6c 6c 20 70 6f 6c 69 63 79 20 69 74 20 77 69 6c 6c 20 6c 69 6b 65 6c 79 20 62 6c 6f 63 6b | wall.policy.it.will.likely.block |
| 13b600 | 20 74 68 65 20 74 72 61 66 66 69 63 2e 00 54 68 69 73 20 65 78 61 6d 70 6c 65 20 63 72 65 61 74 | .the.traffic..This.example.creat |
| 13b620 | 65 73 20 61 6e 20 49 50 76 34 20 70 72 65 66 69 78 2d 6c 69 73 74 20 6e 61 6d 65 64 20 50 4c 34 | es.an.IPv4.prefix-list.named.PL4 |
| 13b640 | 2d 45 58 41 4d 50 4c 45 2d 4e 41 4d 45 2c 20 64 65 66 69 6e 65 73 20 33 20 72 75 6c 65 73 20 65 | -EXAMPLE-NAME,.defines.3.rules.e |
| 13b660 | 61 63 68 20 77 69 74 68 20 31 20 70 72 65 66 69 78 2c 20 61 6e 64 20 6d 61 74 63 68 65 73 20 6c | ach.with.1.prefix,.and.matches.l |
| 13b680 | 65 20 28 6c 65 73 73 20 74 68 61 6e 2f 65 71 75 61 6c 20 74 6f 29 20 2f 33 32 2e 00 54 68 69 73 | e.(less.than/equal.to)./32..This |
| 13b6a0 | 20 65 78 61 6d 70 6c 65 20 73 68 6f 77 73 20 68 6f 77 20 74 6f 20 74 61 72 67 65 74 20 61 6e 20 | .example.shows.how.to.target.an. |
| 13b6c0 | 4d 53 53 20 63 6c 61 6d 70 20 28 69 6e 20 6f 75 72 20 65 78 61 6d 70 6c 65 20 74 6f 20 31 33 36 | MSS.clamp.(in.our.example.to.136 |
| 13b6e0 | 30 20 62 79 74 65 73 29 20 74 6f 20 61 20 73 70 65 63 69 66 69 63 20 64 65 73 74 69 6e 61 74 69 | 0.bytes).to.a.specific.destinati |
| 13b700 | 6f 6e 20 49 50 2e 00 54 68 69 73 20 65 78 61 6d 70 6c 65 20 75 73 65 73 20 43 41 43 65 72 74 20 | on.IP..This.example.uses.CACert. |
| 13b720 | 61 73 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 2e 00 54 68 69 73 20 66 | as.certificate.authority..This.f |
| 13b740 | 65 61 74 75 72 65 20 63 6c 6f 73 65 6c 79 20 77 6f 72 6b 73 20 74 6f 67 65 74 68 65 72 20 77 69 | eature.closely.works.together.wi |
| 13b760 | 74 68 20 3a 72 65 66 3a 60 70 6b 69 60 20 73 75 62 73 79 73 74 65 6d 20 61 73 20 79 6f 75 20 72 | th.:ref:`pki`.subsystem.as.you.r |
| 13b780 | 65 71 75 69 72 65 64 20 61 20 78 35 30 39 20 63 65 72 74 69 66 69 63 61 74 65 2e 00 54 68 69 73 | equired.a.x509.certificate..This |
| 13b7a0 | 20 66 65 61 74 75 72 65 20 73 65 72 76 65 73 20 74 68 65 20 70 75 72 70 6f 73 65 20 6f 66 20 74 | .feature.serves.the.purpose.of.t |
| 13b7c0 | 68 69 67 68 74 65 6e 69 6e 67 20 74 68 65 20 70 61 63 6b 65 74 20 76 61 6c 69 64 61 74 69 6f 6e | hightening.the.packet.validation |
| 13b7e0 | 20 72 65 71 75 69 72 65 6d 65 6e 74 73 20 74 6f 20 61 76 6f 69 64 20 72 65 63 65 69 76 69 6e 67 | .requirements.to.avoid.receiving |
| 13b800 | 20 42 46 44 20 63 6f 6e 74 72 6f 6c 20 70 61 63 6b 65 74 73 20 66 72 6f 6d 20 6f 74 68 65 72 20 | .BFD.control.packets.from.other. |
| 13b820 | 73 65 73 73 69 6f 6e 73 2e 00 54 68 69 73 20 66 65 61 74 75 72 65 20 73 75 6d 6d 61 72 69 73 65 | sessions..This.feature.summarise |
| 13b840 | 73 20 6f 72 69 67 69 6e 61 74 65 64 20 65 78 74 65 72 6e 61 6c 20 4c 53 41 73 20 28 54 79 70 65 | s.originated.external.LSAs.(Type |
| 13b860 | 2d 35 20 61 6e 64 20 54 79 70 65 2d 37 29 2e 20 53 75 6d 6d 61 72 79 20 52 6f 75 74 65 20 77 69 | -5.and.Type-7)..Summary.Route.wi |
| 13b880 | 6c 6c 20 62 65 20 6f 72 69 67 69 6e 61 74 65 64 20 6f 6e 2d 62 65 68 61 6c 66 20 6f 66 20 61 6c | ll.be.originated.on-behalf.of.al |
| 13b8a0 | 6c 20 6d 61 74 63 68 65 64 20 65 78 74 65 72 6e 61 6c 20 4c 53 41 73 2e 00 54 68 69 73 20 66 75 | l.matched.external.LSAs..This.fu |
| 13b8c0 | 6e 63 74 69 6f 6e 61 6c 69 74 79 20 69 73 20 63 6f 6e 74 72 6f 6c 6c 65 64 20 62 79 20 61 64 64 | nctionality.is.controlled.by.add |
| 13b8e0 | 69 6e 67 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a | ing.the.following.configuration: |
| 13b900 | 00 54 68 69 73 20 66 75 6e 63 74 69 6f 6e 73 20 66 6f 72 20 62 6f 74 68 20 69 6e 64 69 76 69 64 | .This.functions.for.both.individ |
| 13b920 | 75 61 6c 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 61 64 64 72 65 73 73 20 67 72 6f 75 70 73 | ual.addresses.and.address.groups |
| 13b940 | 2e 00 54 68 69 73 20 67 69 76 65 73 20 75 73 20 49 47 50 2d 4c 44 50 20 73 79 6e 63 68 72 6f 6e | ..This.gives.us.IGP-LDP.synchron |
| 13b960 | 69 7a 61 74 69 6f 6e 20 66 6f 72 20 61 6c 6c 20 6e 6f 6e 2d 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 | ization.for.all.non-loopback.int |
| 13b980 | 65 72 66 61 63 65 73 20 77 69 74 68 20 61 20 68 6f 6c 64 64 6f 77 6e 20 74 69 6d 65 72 20 6f 66 | erfaces.with.a.holddown.timer.of |
| 13b9a0 | 20 7a 65 72 6f 20 73 65 63 6f 6e 64 73 3a 00 54 68 69 73 20 67 69 76 65 73 20 75 73 20 4d 50 4c | .zero.seconds:.This.gives.us.MPL |
| 13b9c0 | 53 20 73 65 67 6d 65 6e 74 20 72 6f 75 74 69 6e 67 20 65 6e 61 62 6c 65 64 20 61 6e 64 20 6c 61 | S.segment.routing.enabled.and.la |
| 13b9e0 | 62 65 6c 73 20 66 6f 72 20 66 61 72 20 65 6e 64 20 6c 6f 6f 70 62 61 63 6b 73 3a 00 54 68 69 73 | bels.for.far.end.loopbacks:.This |
| 13ba00 | 20 67 69 76 65 73 20 75 73 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6e 65 69 67 68 62 6f 72 | .gives.us.the.following.neighbor |
| 13ba20 | 73 68 69 70 73 2c 20 4c 65 76 65 6c 20 31 20 61 6e 64 20 4c 65 76 65 6c 20 32 3a 00 54 68 69 73 | ships,.Level.1.and.Level.2:.This |
| 13ba40 | 20 67 69 76 65 73 20 75 73 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6e 65 69 67 68 62 6f 72 | .gives.us.the.following.neighbor |
| 13ba60 | 73 68 69 70 73 3a 00 54 68 69 73 20 69 6e 73 74 72 75 63 74 73 20 6f 70 65 6e 6e 68 72 70 20 74 | ships:.This.instructs.opennhrp.t |
| 13ba80 | 6f 20 72 65 70 6c 79 20 77 69 74 68 20 61 75 74 68 6f 72 61 74 69 76 65 20 61 6e 73 77 65 72 73 | o.reply.with.authorative.answers |
| 13baa0 | 20 6f 6e 20 4e 48 52 50 20 52 65 73 6f 6c 75 74 69 6f 6e 20 52 65 71 75 65 73 74 73 20 64 65 73 | .on.NHRP.Resolution.Requests.des |
| 13bac0 | 74 69 6e 69 65 64 20 74 6f 20 61 64 64 72 65 73 73 65 73 20 69 6e 20 74 68 69 73 20 69 6e 74 65 | tinied.to.addresses.in.this.inte |
| 13bae0 | 72 66 61 63 65 20 28 69 6e 73 74 65 61 64 20 6f 66 20 66 6f 72 77 61 72 64 69 6e 67 20 74 68 65 | rface.(instead.of.forwarding.the |
| 13bb00 | 20 70 61 63 6b 65 74 73 29 2e 20 54 68 69 73 20 65 66 66 65 63 74 69 76 65 6c 79 20 61 6c 6c 6f | .packets)..This.effectively.allo |
| 13bb20 | 77 73 20 74 68 65 20 63 72 65 61 74 69 6f 6e 20 6f 66 20 73 68 6f 72 74 63 75 74 20 72 6f 75 74 | ws.the.creation.of.shortcut.rout |
| 13bb40 | 65 73 20 74 6f 20 73 75 62 6e 65 74 73 20 6c 6f 63 61 74 65 64 20 6f 6e 20 74 68 65 20 69 6e 74 | es.to.subnets.located.on.the.int |
| 13bb60 | 65 72 66 61 63 65 2e 00 54 68 69 73 20 69 73 20 61 20 63 6f 6d 6d 6f 6e 20 73 63 65 6e 61 72 69 | erface..This.is.a.common.scenari |
| 13bb80 | 6f 20 77 68 65 72 65 20 62 6f 74 68 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 2d 6e 61 74 60 20 61 | o.where.both.:ref:`source-nat`.a |
| 13bba0 | 6e 64 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 20 61 72 65 20 63 6f | nd.:ref:`destination-nat`.are.co |
| 13bbc0 | 6e 66 69 67 75 72 65 64 20 61 74 20 74 68 65 20 73 61 6d 65 20 74 69 6d 65 2e 20 49 74 27 73 20 | nfigured.at.the.same.time..It's. |
| 13bbe0 | 63 6f 6d 6d 6f 6e 6c 79 20 75 73 65 64 20 77 68 65 6e 20 69 6e 74 65 72 6e 61 6c 20 28 70 72 69 | commonly.used.when.internal.(pri |
| 13bc00 | 76 61 74 65 29 20 68 6f 73 74 73 20 6e 65 65 64 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 61 20 | vate).hosts.need.to.establish.a. |
| 13bc20 | 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 68 20 65 78 74 65 72 6e 61 6c 20 72 65 73 6f 75 72 63 | connection.with.external.resourc |
| 13bc40 | 65 73 20 61 6e 64 20 65 78 74 65 72 6e 61 6c 20 73 79 73 74 65 6d 73 20 6e 65 65 64 20 74 6f 20 | es.and.external.systems.need.to. |
| 13bc60 | 61 63 63 65 73 73 20 69 6e 74 65 72 6e 61 6c 20 28 70 72 69 76 61 74 65 29 20 72 65 73 6f 75 72 | access.internal.(private).resour |
| 13bc80 | 63 65 73 2e 00 54 68 69 73 20 69 73 20 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 | ces..This.is.a.configuration.par |
| 13bca0 | 61 6d 65 74 65 72 20 66 6f 72 20 74 68 65 20 60 3c 73 75 62 6e 65 74 3e 60 2c 20 73 61 79 69 6e | ameter.for.the.`<subnet>`,.sayin |
| 13bcc0 | 67 20 74 68 61 74 20 61 73 20 70 61 72 74 20 6f 66 20 74 68 65 20 72 65 73 70 6f 6e 73 65 2c 20 | g.that.as.part.of.the.response,. |
| 13bce0 | 74 65 6c 6c 20 74 68 65 20 63 6c 69 65 6e 74 20 74 68 61 74 20 74 68 65 20 64 65 66 61 75 6c 74 | tell.the.client.that.the.default |
| 13bd00 | 20 67 61 74 65 77 61 79 20 63 61 6e 20 62 65 20 72 65 61 63 68 65 64 20 61 74 20 60 3c 61 64 64 | .gateway.can.be.reached.at.`<add |
| 13bd20 | 72 65 73 73 3e 60 2e 00 54 68 69 73 20 69 73 20 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | ress>`..This.is.a.configuration. |
| 13bd40 | 70 61 72 61 6d 65 74 65 72 20 66 6f 72 20 74 68 65 20 73 75 62 6e 65 74 2c 20 73 61 79 69 6e 67 | parameter.for.the.subnet,.saying |
| 13bd60 | 20 74 68 61 74 20 61 73 20 70 61 72 74 20 6f 66 20 74 68 65 20 72 65 73 70 6f 6e 73 65 2c 20 74 | .that.as.part.of.the.response,.t |
| 13bd80 | 65 6c 6c 20 74 68 65 20 63 6c 69 65 6e 74 20 74 68 61 74 20 74 68 65 20 44 4e 53 20 73 65 72 76 | ell.the.client.that.the.DNS.serv |
| 13bda0 | 65 72 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 61 74 20 60 3c 61 64 64 72 65 73 73 3e 60 2e 00 | er.can.be.found.at.`<address>`.. |
| 13bdc0 | 54 68 69 73 20 69 73 20 61 20 6d 61 6e 64 61 74 6f 72 79 20 63 6f 6d 6d 61 6e 64 2e 20 53 65 74 | This.is.a.mandatory.command..Set |
| 13bde0 | 73 20 72 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 20 74 6f 20 6d 61 74 63 68 20 61 67 | s.regular.expression.to.match.ag |
| 13be00 | 61 69 6e 73 74 20 6c 6f 67 20 73 74 72 69 6e 67 20 6d 65 73 73 61 67 65 2e 00 54 68 69 73 20 69 | ainst.log.string.message..This.i |
| 13be20 | 73 20 61 20 6d 61 6e 64 61 74 6f 72 79 20 63 6f 6d 6d 61 6e 64 2e 20 53 65 74 73 20 74 68 65 20 | s.a.mandatory.command..Sets.the. |
| 13be40 | 66 75 6c 6c 20 70 61 74 68 20 74 6f 20 74 68 65 20 73 63 72 69 70 74 2e 20 54 68 65 20 73 63 72 | full.path.to.the.script..The.scr |
| 13be60 | 69 70 74 20 66 69 6c 65 20 6d 75 73 74 20 62 65 20 65 78 65 63 75 74 61 62 6c 65 2e 00 54 68 69 | ipt.file.must.be.executable..Thi |
| 13be80 | 73 20 69 73 20 61 20 6d 61 6e 64 61 74 6f 72 79 20 6f 70 74 69 6f 6e 00 54 68 69 73 20 69 73 20 | s.is.a.mandatory.option.This.is. |
| 13bea0 | 61 20 6d 61 6e 64 61 74 6f 72 79 20 73 65 74 74 69 6e 67 2e 00 54 68 69 73 20 69 73 20 61 63 68 | a.mandatory.setting..This.is.ach |
| 13bec0 | 69 65 76 65 64 20 62 79 20 75 73 69 6e 67 20 74 68 65 20 66 69 72 73 74 20 74 68 72 65 65 20 62 | ieved.by.using.the.first.three.b |
| 13bee0 | 69 74 73 20 6f 66 20 74 68 65 20 54 6f 53 20 28 54 79 70 65 20 6f 66 20 53 65 72 76 69 63 65 29 | its.of.the.ToS.(Type.of.Service) |
| 13bf00 | 20 66 69 65 6c 64 20 74 6f 20 63 61 74 65 67 6f 72 69 7a 65 20 64 61 74 61 20 73 74 72 65 61 6d | .field.to.categorize.data.stream |
| 13bf20 | 73 20 61 6e 64 2c 20 69 6e 20 61 63 63 6f 72 64 61 6e 63 65 20 77 69 74 68 20 74 68 65 20 64 65 | s.and,.in.accordance.with.the.de |
| 13bf40 | 66 69 6e 65 64 20 70 72 65 63 65 64 65 6e 63 65 20 70 61 72 61 6d 65 74 65 72 73 2c 20 61 20 64 | fined.precedence.parameters,.a.d |
| 13bf60 | 65 63 69 73 69 6f 6e 20 69 73 20 6d 61 64 65 2e 00 54 68 69 73 20 69 73 20 61 6c 73 6f 20 6b 6e | ecision.is.made..This.is.also.kn |
| 13bf80 | 6f 77 6e 20 61 73 20 74 68 65 20 48 55 42 73 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 46 51 | own.as.the.HUBs.IP.address.or.FQ |
| 13bfa0 | 44 4e 2e 00 54 68 69 73 20 69 73 20 61 6e 20 6f 70 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 20 | DN..This.is.an.optional.command. |
| 13bfc0 | 62 65 63 61 75 73 65 20 74 68 65 20 65 76 65 6e 74 20 68 61 6e 64 6c 65 72 20 77 69 6c 6c 20 62 | because.the.event.handler.will.b |
| 13bfe0 | 65 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 63 72 65 61 74 65 64 20 61 66 74 65 72 20 61 6e | e.automatically.created.after.an |
| 13c000 | 79 20 6f 66 20 74 68 65 20 6e 65 78 74 20 63 6f 6d 6d 61 6e 64 73 2e 00 54 68 69 73 20 69 73 20 | y.of.the.next.commands..This.is. |
| 13c020 | 61 6e 20 6f 70 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 2e 20 41 64 64 73 20 61 72 67 75 6d 65 | an.optional.command..Adds.argume |
| 13c040 | 6e 74 73 20 74 6f 20 74 68 65 20 73 63 72 69 70 74 2e 20 41 72 67 75 6d 65 6e 74 73 20 6d 75 73 | nts.to.the.script..Arguments.mus |
| 13c060 | 74 20 62 65 20 73 65 70 61 72 61 74 65 64 20 62 79 20 73 70 61 63 65 73 2e 00 54 68 69 73 20 69 | t.be.separated.by.spaces..This.i |
| 13c080 | 73 20 61 6e 20 6f 70 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 2e 20 41 64 64 73 20 65 6e 76 69 | s.an.optional.command..Adds.envi |
| 13c0a0 | 72 6f 6e 6d 65 6e 74 20 61 6e 64 20 69 74 73 20 76 61 6c 75 65 20 74 6f 20 74 68 65 20 73 63 72 | ronment.and.its.value.to.the.scr |
| 13c0c0 | 69 70 74 2e 20 55 73 65 20 73 65 70 61 72 61 74 65 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 72 20 65 | ipt..Use.separate.commands.for.e |
| 13c0e0 | 61 63 68 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 2e 00 54 68 69 73 20 69 73 20 61 6e 20 6f 70 74 69 | ach.environment..This.is.an.opti |
| 13c100 | 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 2e 20 46 69 6c 74 65 72 73 20 6c 6f 67 20 6d 65 73 73 61 67 | onal.command..Filters.log.messag |
| 13c120 | 65 73 20 62 79 20 73 79 73 6c 6f 67 2d 69 64 65 6e 74 69 66 69 65 72 2e 00 54 68 69 73 20 69 73 | es.by.syslog-identifier..This.is |
| 13c140 | 20 64 6f 6e 65 20 74 6f 20 73 75 70 70 6f 72 74 20 28 65 74 68 65 72 6e 65 74 29 20 73 77 69 74 | .done.to.support.(ethernet).swit |
| 13c160 | 63 68 20 66 65 61 74 75 72 65 73 2c 20 6c 69 6b 65 20 3a 72 66 63 3a 60 33 30 36 39 60 2c 20 77 | ch.features,.like.:rfc:`3069`,.w |
| 13c180 | 68 65 72 65 20 74 68 65 20 69 6e 64 69 76 69 64 75 61 6c 20 70 6f 72 74 73 20 61 72 65 20 4e 4f | here.the.individual.ports.are.NO |
| 13c1a0 | 54 20 61 6c 6c 6f 77 65 64 20 74 6f 20 63 6f 6d 6d 75 6e 69 63 61 74 65 20 77 69 74 68 20 65 61 | T.allowed.to.communicate.with.ea |
| 13c1c0 | 63 68 20 6f 74 68 65 72 2c 20 62 75 74 20 74 68 65 79 20 61 72 65 20 61 6c 6c 6f 77 65 64 20 74 | ch.other,.but.they.are.allowed.t |
| 13c1e0 | 6f 20 74 61 6c 6b 20 74 6f 20 74 68 65 20 75 70 73 74 72 65 61 6d 20 72 6f 75 74 65 72 2e 20 41 | o.talk.to.the.upstream.router..A |
| 13c200 | 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 33 30 36 39 60 2c 20 69 74 20 69 | s.described.in.:rfc:`3069`,.it.i |
| 13c220 | 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 61 6c 6c 6f 77 20 74 68 65 73 65 20 68 6f 73 74 73 20 | s.possible.to.allow.these.hosts. |
| 13c240 | 74 6f 20 63 6f 6d 6d 75 6e 69 63 61 74 65 20 74 68 72 6f 75 67 68 20 74 68 65 20 75 70 73 74 72 | to.communicate.through.the.upstr |
| 13c260 | 65 61 6d 20 72 6f 75 74 65 72 20 62 79 20 70 72 6f 78 79 5f 61 72 70 27 69 6e 67 2e 00 54 68 69 | eam.router.by.proxy_arp'ing..Thi |
| 13c280 | 73 20 69 73 20 65 73 70 65 63 69 61 6c 6c 79 20 75 73 65 66 75 6c 20 66 6f 72 20 74 68 65 20 75 | s.is.especially.useful.for.the.u |
| 13c2a0 | 70 73 74 72 65 61 6d 20 69 6e 74 65 72 66 61 63 65 2c 20 73 69 6e 63 65 20 74 68 65 20 73 6f 75 | pstream.interface,.since.the.sou |
| 13c2c0 | 72 63 65 20 66 6f 72 20 6d 75 6c 74 69 63 61 73 74 20 74 72 61 66 66 69 63 20 69 73 20 6f 66 74 | rce.for.multicast.traffic.is.oft |
| 13c2e0 | 65 6e 20 66 72 6f 6d 20 61 20 72 65 6d 6f 74 65 20 6c 6f 63 61 74 69 6f 6e 2e 00 54 68 69 73 20 | en.from.a.remote.location..This. |
| 13c300 | 69 73 20 6f 6e 65 20 6f 66 20 74 68 65 20 73 69 6d 70 6c 65 73 74 20 74 79 70 65 73 20 6f 66 20 | is.one.of.the.simplest.types.of. |
| 13c320 | 74 75 6e 6e 65 6c 73 2c 20 61 73 20 64 65 66 69 6e 65 64 20 62 79 20 3a 72 66 63 3a 60 32 30 30 | tunnels,.as.defined.by.:rfc:`200 |
| 13c340 | 33 60 2e 20 49 74 20 74 61 6b 65 73 20 61 6e 20 49 50 76 34 20 70 61 63 6b 65 74 20 61 6e 64 20 | 3`..It.takes.an.IPv4.packet.and. |
| 13c360 | 73 65 6e 64 73 20 69 74 20 61 73 20 61 20 70 61 79 6c 6f 61 64 20 6f 66 20 61 6e 6f 74 68 65 72 | sends.it.as.a.payload.of.another |
| 13c380 | 20 49 50 76 34 20 70 61 63 6b 65 74 2e 20 46 6f 72 20 74 68 69 73 20 72 65 61 73 6f 6e 2c 20 74 | .IPv4.packet..For.this.reason,.t |
| 13c3a0 | 68 65 72 65 20 61 72 65 20 6e 6f 20 6f 74 68 65 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | here.are.no.other.configuration. |
| 13c3c0 | 6f 70 74 69 6f 6e 73 20 66 6f 72 20 74 68 69 73 20 6b 69 6e 64 20 6f 66 20 74 75 6e 6e 65 6c 2e | options.for.this.kind.of.tunnel. |
| 13c3e0 | 00 54 68 69 73 20 69 73 20 6f 70 74 69 6f 6e 61 6c 2e 00 54 68 69 73 20 69 73 20 73 69 6d 69 6c | .This.is.optional..This.is.simil |
| 13c400 | 61 72 20 74 6f 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 67 72 6f 75 70 73 20 70 61 72 74 2c 20 62 | ar.to.the.network.groups.part,.b |
| 13c420 | 75 74 20 68 65 72 65 20 79 6f 75 20 61 72 65 20 61 62 6c 65 20 74 6f 20 6e 65 67 61 74 65 20 74 | ut.here.you.are.able.to.negate.t |
| 13c440 | 68 65 20 6d 61 74 63 68 69 6e 67 20 61 64 64 72 65 73 73 65 73 2e 00 54 68 69 73 20 69 73 20 74 | he.matching.addresses..This.is.t |
| 13c460 | 68 65 20 49 50 76 36 20 63 6f 75 6e 74 65 72 70 61 72 74 20 6f 66 20 49 50 49 50 2e 20 49 27 6d | he.IPv6.counterpart.of.IPIP..I'm |
| 13c480 | 20 6e 6f 74 20 61 77 61 72 65 20 6f 66 20 61 6e 20 52 46 43 20 74 68 61 74 20 64 65 66 69 6e 65 | .not.aware.of.an.RFC.that.define |
| 13c4a0 | 73 20 74 68 69 73 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 73 70 65 63 69 66 69 63 61 6c 6c | s.this.encapsulation.specificall |
| 13c4c0 | 79 2c 20 62 75 74 20 69 74 27 73 20 61 20 6e 61 74 75 72 61 6c 20 73 70 65 63 69 66 69 63 20 63 | y,.but.it's.a.natural.specific.c |
| 13c4e0 | 61 73 65 20 6f 66 20 49 50 76 36 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 6d 65 63 68 61 6e | ase.of.IPv6.encapsulation.mechan |
| 13c500 | 69 73 6d 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 32 34 37 33 60 2e 00 54 68 | isms.described.in.:rfc:2473`..Th |
| 13c520 | 69 73 20 69 73 20 74 68 65 20 4c 41 4e 20 65 78 74 65 6e 73 69 6f 6e 20 75 73 65 20 63 61 73 65 | is.is.the.LAN.extension.use.case |
| 13c540 | 2e 20 54 68 65 20 65 74 68 30 20 70 6f 72 74 20 6f 66 20 74 68 65 20 64 69 73 74 61 6e 74 20 56 | ..The.eth0.port.of.the.distant.V |
| 13c560 | 50 4e 20 70 65 65 72 73 20 77 69 6c 6c 20 62 65 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 | PN.peers.will.be.directly.connec |
| 13c580 | 74 65 64 20 6c 69 6b 65 20 69 66 20 74 68 65 72 65 20 77 61 73 20 61 20 73 77 69 74 63 68 20 62 | ted.like.if.there.was.a.switch.b |
| 13c5a0 | 65 74 77 65 65 6e 20 74 68 65 6d 2e 00 54 68 69 73 20 69 73 20 74 68 65 20 4c 43 44 20 6d 6f 64 | etween.them..This.is.the.LCD.mod |
| 13c5c0 | 65 6c 20 75 73 65 64 20 69 6e 20 79 6f 75 72 20 73 79 73 74 65 6d 2e 00 54 68 69 73 20 69 73 20 | el.used.in.your.system..This.is. |
| 13c5e0 | 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 66 6f 72 20 | the.configuration.parameter.for. |
| 13c600 | 74 68 65 20 65 6e 74 69 72 65 20 73 68 61 72 65 64 20 6e 65 74 77 6f 72 6b 20 64 65 66 69 6e 69 | the.entire.shared.network.defini |
| 13c620 | 74 69 6f 6e 2e 20 41 6c 6c 20 73 75 62 6e 65 74 73 20 77 69 6c 6c 20 69 6e 68 65 72 69 74 20 74 | tion..All.subnets.will.inherit.t |
| 13c640 | 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 74 65 6d 20 69 66 20 6e 6f 74 20 73 70 | his.configuration.item.if.not.sp |
| 13c660 | 65 63 69 66 69 65 64 20 6c 6f 63 61 6c 6c 79 2e 00 54 68 69 73 20 69 73 20 74 68 65 20 63 6f 6e | ecified.locally..This.is.the.con |
| 13c680 | 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 66 6f 72 20 74 68 65 20 65 6e 74 | figuration.parameter.for.the.ent |
| 13c6a0 | 69 72 65 20 73 68 61 72 65 64 20 6e 65 74 77 6f 72 6b 20 64 65 66 69 6e 69 74 69 6f 6e 2e 20 41 | ire.shared.network.definition..A |
| 13c6c0 | 6c 6c 20 73 75 62 6e 65 74 73 20 77 69 6c 6c 20 69 6e 68 65 72 69 74 20 74 68 69 73 20 63 6f 6e | ll.subnets.will.inherit.this.con |
| 13c6e0 | 66 69 67 75 72 61 74 69 6f 6e 20 69 74 65 6d 20 69 66 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 | figuration.item.if.not.specified |
| 13c700 | 20 6c 6f 63 61 6c 6c 79 2e 20 4d 75 6c 74 69 70 6c 65 20 44 4e 53 20 73 65 72 76 65 72 73 20 63 | .locally..Multiple.DNS.servers.c |
| 13c720 | 61 6e 20 62 65 20 64 65 66 69 6e 65 64 2e 00 54 68 69 73 20 69 73 20 74 68 65 20 65 71 75 69 76 | an.be.defined..This.is.the.equiv |
| 13c740 | 61 6c 65 6e 74 20 6f 66 20 74 68 65 20 68 6f 73 74 20 62 6c 6f 63 6b 20 69 6e 20 64 68 63 70 64 | alent.of.the.host.block.in.dhcpd |
| 13c760 | 2e 63 6f 6e 66 20 6f 66 20 69 73 63 2d 64 68 63 70 64 2e 00 54 68 69 73 20 69 73 20 74 68 65 20 | .conf.of.isc-dhcpd..This.is.the. |
| 13c780 | 6e 61 6d 65 20 6f 66 20 74 68 65 20 70 68 79 73 69 63 61 6c 20 69 6e 74 65 72 66 61 63 65 20 75 | name.of.the.physical.interface.u |
| 13c7a0 | 73 65 64 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 79 6f 75 72 20 4c 43 44 20 64 69 73 70 6c | sed.to.connect.to.your.LCD.displ |
| 13c7c0 | 61 79 2e 20 54 61 62 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 69 73 20 73 75 70 70 6f 72 74 65 64 20 | ay..Tab.completion.is.supported. |
| 13c7e0 | 61 6e 64 20 69 74 20 77 69 6c 6c 20 6c 69 73 74 20 79 6f 75 20 61 6c 6c 20 61 76 61 69 6c 61 62 | and.it.will.list.you.all.availab |
| 13c800 | 6c 65 20 73 65 72 69 61 6c 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 69 73 20 69 73 20 74 68 65 | le.serial.interface..This.is.the |
| 13c820 | 20 70 6f 6c 69 63 79 20 74 68 61 74 20 72 65 71 75 69 65 72 65 73 20 74 68 65 20 6c 6f 77 65 73 | .policy.that.requieres.the.lowes |
| 13c840 | 74 20 72 65 73 6f 75 72 63 65 73 20 66 6f 72 20 74 68 65 20 73 61 6d 65 20 61 6d 6f 75 6e 74 20 | t.resources.for.the.same.amount. |
| 13c860 | 6f 66 20 74 72 61 66 66 69 63 2e 20 42 75 74 20 2a 2a 76 65 72 79 20 6c 69 6b 65 6c 79 20 79 6f | of.traffic..But.**very.likely.yo |
| 13c880 | 75 20 64 6f 20 6e 6f 74 20 6e 65 65 64 20 69 74 20 61 73 20 79 6f 75 20 63 61 6e 6e 6f 74 20 67 | u.do.not.need.it.as.you.cannot.g |
| 13c8a0 | 65 74 20 6d 75 63 68 20 66 72 6f 6d 20 69 74 2e 20 53 6f 6d 65 74 69 6d 65 73 20 69 74 20 69 73 | et.much.from.it..Sometimes.it.is |
| 13c8c0 | 20 75 73 65 64 20 6a 75 73 74 20 74 6f 20 65 6e 61 62 6c 65 20 6c 6f 67 67 69 6e 67 2e 2a 2a 00 | .used.just.to.enable.logging.**. |
| 13c8e0 | 54 68 69 73 20 69 73 20 74 68 65 20 70 6f 6c 69 63 79 20 74 68 61 74 20 72 65 71 75 69 72 65 73 | This.is.the.policy.that.requires |
| 13c900 | 20 74 68 65 20 6c 6f 77 65 73 74 20 72 65 73 6f 75 72 63 65 73 20 66 6f 72 20 74 68 65 20 73 61 | .the.lowest.resources.for.the.sa |
| 13c920 | 6d 65 20 61 6d 6f 75 6e 74 20 6f 66 20 74 72 61 66 66 69 63 2e 20 42 75 74 20 2a 2a 76 65 72 79 | me.amount.of.traffic..But.**very |
| 13c940 | 20 6c 69 6b 65 6c 79 20 79 6f 75 20 64 6f 20 6e 6f 74 20 6e 65 65 64 20 69 74 20 61 73 20 79 6f | .likely.you.do.not.need.it.as.yo |
| 13c960 | 75 20 63 61 6e 6e 6f 74 20 67 65 74 20 6d 75 63 68 20 66 72 6f 6d 20 69 74 2e 20 53 6f 6d 65 74 | u.cannot.get.much.from.it..Somet |
| 13c980 | 69 6d 65 73 20 69 74 20 69 73 20 75 73 65 64 20 6a 75 73 74 20 74 6f 20 65 6e 61 62 6c 65 20 6c | imes.it.is.used.just.to.enable.l |
| 13c9a0 | 6f 67 67 69 6e 67 2e 2a 2a 00 54 68 69 73 20 69 73 20 75 73 65 66 75 6c 2c 20 66 6f 72 20 65 78 | ogging.**.This.is.useful,.for.ex |
| 13c9c0 | 61 6d 70 6c 65 2c 20 69 6e 20 63 6f 6d 62 69 6e 61 74 69 6f 6e 20 77 69 74 68 20 68 6f 73 74 66 | ample,.in.combination.with.hostf |
| 13c9e0 | 69 6c 65 20 75 70 64 61 74 65 2e 00 54 68 69 73 20 69 73 20 77 68 65 72 65 20 22 55 44 50 20 62 | ile.update..This.is.where."UDP.b |
| 13ca00 | 72 6f 61 64 63 61 73 74 20 72 65 6c 61 79 22 20 63 6f 6d 65 73 20 69 6e 74 6f 20 70 6c 61 79 21 | roadcast.relay".comes.into.play! |
| 13ca20 | 20 49 74 20 77 69 6c 6c 20 66 6f 72 77 61 72 64 20 72 65 63 65 69 76 65 64 20 62 72 6f 61 64 63 | .It.will.forward.received.broadc |
| 13ca40 | 61 73 74 73 20 74 6f 20 6f 74 68 65 72 20 63 6f 6e 66 69 67 75 72 65 64 20 6e 65 74 77 6f 72 6b | asts.to.other.configured.network |
| 13ca60 | 73 2e 00 54 68 69 73 20 6d 61 6b 65 73 20 74 68 65 20 73 65 72 76 65 72 20 61 75 74 68 6f 72 69 | s..This.makes.the.server.authori |
| 13ca80 | 74 61 74 69 76 65 6c 79 20 6e 6f 74 20 61 77 61 72 65 20 6f 66 3a 20 31 30 2e 69 6e 2d 61 64 64 | tatively.not.aware.of:.10.in-add |
| 13caa0 | 72 2e 61 72 70 61 2c 20 31 36 38 2e 31 39 32 2e 69 6e 2d 61 64 64 72 2e 61 72 70 61 2c 20 31 36 | r.arpa,.168.192.in-addr.arpa,.16 |
| 13cac0 | 2d 33 31 2e 31 37 32 2e 69 6e 2d 61 64 64 72 2e 61 72 70 61 2c 20 77 68 69 63 68 20 65 6e 61 62 | -31.172.in-addr.arpa,.which.enab |
| 13cae0 | 6c 69 6e 67 20 75 70 73 74 72 65 61 6d 20 44 4e 53 20 73 65 72 76 65 72 28 73 29 20 74 6f 20 62 | ling.upstream.DNS.server(s).to.b |
| 13cb00 | 65 20 75 73 65 64 20 66 6f 72 20 72 65 76 65 72 73 65 20 6c 6f 6f 6b 75 70 73 20 6f 66 20 74 68 | e.used.for.reverse.lookups.of.th |
| 13cb20 | 65 73 65 20 7a 6f 6e 65 73 2e 00 54 68 69 73 20 6d 65 74 68 6f 64 20 61 75 74 6f 6d 61 74 69 63 | ese.zones..This.method.automatic |
| 13cb40 | 61 6c 6c 79 20 64 69 73 61 62 6c 65 73 20 49 50 76 36 20 74 72 61 66 66 69 63 20 66 6f 72 77 61 | ally.disables.IPv6.traffic.forwa |
| 13cb60 | 72 64 69 6e 67 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 69 6e 20 71 75 65 73 74 69 | rding.on.the.interface.in.questi |
| 13cb80 | 6f 6e 2e 00 54 68 69 73 20 6d 6f 64 65 20 70 72 6f 76 69 64 65 73 20 66 61 75 6c 74 20 74 6f 6c | on..This.mode.provides.fault.tol |
| 13cba0 | 65 72 61 6e 63 65 2e 00 54 68 69 73 20 6d 6f 64 65 20 70 72 6f 76 69 64 65 73 20 66 61 75 6c 74 | erance..This.mode.provides.fault |
| 13cbc0 | 20 74 6f 6c 65 72 61 6e 63 65 2e 20 54 68 65 20 3a 63 66 67 63 6d 64 3a 60 70 72 69 6d 61 72 79 | .tolerance..The.:cfgcmd:`primary |
| 13cbe0 | 60 20 6f 70 74 69 6f 6e 2c 20 64 6f 63 75 6d 65 6e 74 65 64 20 62 65 6c 6f 77 2c 20 61 66 66 65 | `.option,.documented.below,.affe |
| 13cc00 | 63 74 73 20 74 68 65 20 62 65 68 61 76 69 6f 72 20 6f 66 20 74 68 69 73 20 6d 6f 64 65 2e 00 54 | cts.the.behavior.of.this.mode..T |
| 13cc20 | 68 69 73 20 6d 6f 64 65 20 70 72 6f 76 69 64 65 73 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 | his.mode.provides.load.balancing |
| 13cc40 | 20 61 6e 64 20 66 61 75 6c 74 20 74 6f 6c 65 72 61 6e 63 65 2e 00 54 68 69 73 20 6f 70 74 69 6f | .and.fault.tolerance..This.optio |
| 13cc60 | 6e 20 61 64 64 73 20 50 6f 77 65 72 20 43 6f 6e 73 74 72 61 69 6e 74 20 65 6c 65 6d 65 6e 74 20 | n.adds.Power.Constraint.element. |
| 13cc80 | 77 68 65 6e 20 61 70 70 6c 69 63 61 62 6c 65 20 61 6e 64 20 43 6f 75 6e 74 72 79 20 65 6c 65 6d | when.applicable.and.Country.elem |
| 13cca0 | 65 6e 74 20 69 73 20 61 64 64 65 64 2e 20 50 6f 77 65 72 20 43 6f 6e 73 74 72 61 69 6e 74 20 65 | ent.is.added..Power.Constraint.e |
| 13ccc0 | 6c 65 6d 65 6e 74 20 69 73 20 72 65 71 75 69 72 65 64 20 62 79 20 54 72 61 6e 73 6d 69 74 20 50 | lement.is.required.by.Transmit.P |
| 13cce0 | 6f 77 65 72 20 43 6f 6e 74 72 6f 6c 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 61 64 64 73 20 74 | ower.Control..This.option.adds.t |
| 13cd00 | 68 65 20 50 6f 77 65 72 20 43 6f 6e 73 74 72 61 69 6e 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 | he.Power.Constraint.information. |
| 13cd20 | 65 6c 65 6d 65 6e 74 20 77 68 65 6e 20 61 70 70 6c 69 63 61 62 6c 65 20 61 6e 64 20 74 68 65 20 | element.when.applicable.and.the. |
| 13cd40 | 43 6f 75 6e 74 72 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 65 6c 65 6d 65 6e 74 20 69 73 20 63 | Country.information.element.is.c |
| 13cd60 | 6f 6e 66 69 67 75 72 65 64 2e 20 54 68 65 20 50 6f 77 65 72 20 43 6f 6e 73 74 72 61 69 6e 74 20 | onfigured..The.Power.Constraint. |
| 13cd80 | 65 6c 65 6d 65 6e 74 20 69 73 20 72 65 71 75 69 72 65 64 20 62 79 20 54 72 61 6e 73 6d 69 74 20 | element.is.required.by.Transmit. |
| 13cda0 | 50 6f 77 65 72 20 43 6f 6e 74 72 6f 6c 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 61 6c 6c 6f 77 | Power.Control..This.option.allow |
| 13cdc0 | 20 74 6f 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 38 30 32 2e 33 61 64 20 73 79 73 74 65 6d | .to.specifies.the.802.3ad.system |
| 13cde0 | 20 4d 41 43 20 61 64 64 72 65 73 73 2e 59 6f 75 20 63 61 6e 20 73 65 74 20 61 20 72 61 6e 64 6f | .MAC.address.You.can.set.a.rando |
| 13ce00 | 6d 20 6d 61 63 2d 61 64 64 72 65 73 73 20 74 68 61 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 66 | m.mac-address.that.can.be.used.f |
| 13ce20 | 6f 72 20 74 68 65 73 65 20 4c 41 43 50 44 55 20 65 78 63 68 61 6e 67 65 73 2e 00 54 68 69 73 20 | or.these.LACPDU.exchanges..This. |
| 13ce40 | 6f 70 74 69 6f 6e 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 6d 75 6c 74 69 70 6c 65 | option.can.be.specified.multiple |
| 13ce60 | 20 74 69 6d 65 73 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 63 61 6e 20 62 65 20 73 75 70 70 6c | .times..This.option.can.be.suppl |
| 13ce80 | 69 65 64 20 6d 75 6c 74 69 70 6c 65 20 74 69 6d 65 73 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 | ied.multiple.times..This.option. |
| 13cea0 | 69 73 20 6d 61 6e 64 61 74 6f 72 79 20 69 6e 20 41 63 63 65 73 73 2d 50 6f 69 6e 74 20 6d 6f 64 | is.mandatory.in.Access-Point.mod |
| 13cec0 | 65 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 72 65 71 75 69 72 65 64 20 77 68 65 6e 20 | e..This.option.is.required.when. |
| 13cee0 | 72 75 6e 6e 69 6e 67 20 61 20 44 4d 56 50 4e 20 73 70 6f 6b 65 2e 00 54 68 69 73 20 6f 70 74 69 | running.a.DMVPN.spoke..This.opti |
| 13cf00 | 6f 6e 20 69 73 20 75 73 65 64 20 62 79 20 73 6f 6d 65 20 44 48 43 50 20 63 6c 69 65 6e 74 73 20 | on.is.used.by.some.DHCP.clients. |
| 13cf20 | 61 73 20 61 20 77 61 79 20 66 6f 72 20 75 73 65 72 73 20 74 6f 20 73 70 65 63 69 66 79 20 69 64 | as.a.way.for.users.to.specify.id |
| 13cf40 | 65 6e 74 69 66 79 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 74 68 65 20 63 6c 69 | entifying.information.to.the.cli |
| 13cf60 | 65 6e 74 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 69 6e 20 61 20 73 69 6d 69 6c | ent..This.can.be.used.in.a.simil |
| 13cf80 | 61 72 20 77 61 79 20 74 6f 20 74 68 65 20 76 65 6e 64 6f 72 2d 63 6c 61 73 73 2d 69 64 65 6e 74 | ar.way.to.the.vendor-class-ident |
| 13cfa0 | 69 66 69 65 72 20 6f 70 74 69 6f 6e 2c 20 62 75 74 20 74 68 65 20 76 61 6c 75 65 20 6f 66 20 74 | ifier.option,.but.the.value.of.t |
| 13cfc0 | 68 65 20 6f 70 74 69 6f 6e 20 69 73 20 73 70 65 63 69 66 69 65 64 20 62 79 20 74 68 65 20 75 73 | he.option.is.specified.by.the.us |
| 13cfe0 | 65 72 2c 20 6e 6f 74 20 74 68 65 20 76 65 6e 64 6f 72 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 | er,.not.the.vendor..This.option. |
| 13d000 | 69 73 20 75 73 65 64 20 62 79 20 73 6f 6d 65 20 44 48 43 50 20 63 6c 69 65 6e 74 73 20 74 6f 20 | is.used.by.some.DHCP.clients.to. |
| 13d020 | 69 64 65 6e 74 69 66 79 20 74 68 65 20 76 65 6e 64 6f 72 20 74 79 70 65 20 61 6e 64 20 70 6f 73 | identify.the.vendor.type.and.pos |
| 13d040 | 73 69 62 6c 79 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 61 20 44 48 43 | sibly.the.configuration.of.a.DHC |
| 13d060 | 50 20 63 6c 69 65 6e 74 2e 20 54 68 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 73 20 61 20 73 | P.client..The.information.is.a.s |
| 13d080 | 74 72 69 6e 67 20 6f 66 20 62 79 74 65 73 20 77 68 6f 73 65 20 63 6f 6e 74 65 6e 74 73 20 61 72 | tring.of.bytes.whose.contents.ar |
| 13d0a0 | 65 20 73 70 65 63 69 66 69 63 20 74 6f 20 74 68 65 20 76 65 6e 64 6f 72 20 61 6e 64 20 61 72 65 | e.specific.to.the.vendor.and.are |
| 13d0c0 | 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 61 20 73 74 61 6e 64 61 72 64 2e 00 54 68 | .not.specified.in.a.standard..Th |
| 13d0e0 | 69 73 20 6f 70 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 75 73 65 64 20 77 69 74 68 20 60 60 74 69 | is.option.must.be.used.with.``ti |
| 13d100 | 6d 65 6f 75 74 60 60 20 6f 70 74 69 6f 6e 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 6f 6e 6c 79 | meout``.option..This.option.only |
| 13d120 | 20 61 66 66 65 63 74 73 20 38 30 32 2e 33 61 64 20 6d 6f 64 65 2e 00 54 68 69 73 20 6f 70 74 69 | .affects.802.3ad.mode..This.opti |
| 13d140 | 6f 6e 20 72 65 71 75 69 72 65 73 20 3a 61 62 62 72 3a 60 4d 46 50 20 28 4d 61 6e 61 67 65 6d 65 | on.requires.:abbr:`MFP.(Manageme |
| 13d160 | 6e 74 20 46 72 61 6d 65 20 50 72 6f 74 65 63 74 69 6f 6e 29 60 20 74 6f 20 62 65 20 65 6e 61 62 | nt.Frame.Protection)`.to.be.enab |
| 13d180 | 6c 65 64 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 73 70 65 63 69 66 69 65 73 20 61 20 64 65 6c | led..This.option.specifies.a.del |
| 13d1a0 | 61 79 20 69 6e 20 73 65 63 6f 6e 64 73 20 62 65 66 6f 72 65 20 76 72 72 70 20 69 6e 73 74 61 6e | ay.in.seconds.before.vrrp.instan |
| 13d1c0 | 63 65 73 20 73 74 61 72 74 20 75 70 20 61 66 74 65 72 20 6b 65 65 70 61 6c 69 76 65 64 20 73 74 | ces.start.up.after.keepalived.st |
| 13d1e0 | 61 72 74 73 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 77 61 73 20 63 61 6c 6c 65 64 20 2d 2d 6e | arts..This.option.was.called.--n |
| 13d200 | 63 70 2d 63 69 70 68 65 72 73 20 69 6e 20 4f 70 65 6e 56 50 4e 20 32 2e 34 20 62 75 74 20 68 61 | cp-ciphers.in.OpenVPN.2.4.but.ha |
| 13d220 | 73 20 62 65 65 6e 20 72 65 6e 61 6d 65 64 20 74 6f 20 2d 2d 64 61 74 61 2d 63 69 70 68 65 72 73 | s.been.renamed.to.--data-ciphers |
| 13d240 | 20 69 6e 20 4f 70 65 6e 56 50 4e 20 32 2e 35 20 74 6f 20 6d 6f 72 65 20 61 63 63 75 72 61 74 65 | .in.OpenVPN.2.5.to.more.accurate |
| 13d260 | 6c 79 20 72 65 66 6c 65 63 74 20 69 74 73 20 6d 65 61 6e 69 6e 67 2e 20 54 68 65 20 66 69 72 73 | ly.reflect.its.meaning..The.firs |
| 13d280 | 74 20 63 69 70 68 65 72 20 69 6e 20 74 68 61 74 20 6c 69 73 74 20 74 68 61 74 20 69 73 20 61 6c | t.cipher.in.that.list.that.is.al |
| 13d2a0 | 73 6f 20 69 6e 20 74 68 65 20 63 6c 69 65 6e 74 27 73 20 2d 2d 64 61 74 61 2d 63 69 70 68 65 72 | so.in.the.client's.--data-cipher |
| 13d2c0 | 73 20 6c 69 73 74 20 69 73 20 63 68 6f 73 65 6e 2e 20 49 66 20 6e 6f 20 63 6f 6d 6d 6f 6e 20 63 | s.list.is.chosen..If.no.common.c |
| 13d2e0 | 69 70 68 65 72 20 69 73 20 66 6f 75 6e 64 20 74 68 65 20 63 6c 69 65 6e 74 20 69 73 20 72 65 6a | ipher.is.found.the.client.is.rej |
| 13d300 | 65 63 74 65 64 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 | ected..This.options.defaults.to. |
| 13d320 | 32 30 34 38 00 54 68 69 73 20 70 61 72 61 6d 65 74 65 72 20 61 6c 6c 6f 77 73 20 74 6f 20 22 73 | 2048.This.parameter.allows.to."s |
| 13d340 | 68 6f 72 74 63 75 74 22 20 72 6f 75 74 65 73 20 28 6e 6f 6e 2d 62 61 63 6b 62 6f 6e 65 29 20 66 | hortcut".routes.(non-backbone).f |
| 13d360 | 6f 72 20 69 6e 74 65 72 2d 61 72 65 61 20 72 6f 75 74 65 73 2e 20 54 68 65 72 65 20 61 72 65 20 | or.inter-area.routes..There.are. |
| 13d380 | 74 68 72 65 65 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 73 | three.modes.available.for.routes |
| 13d3a0 | 20 73 68 6f 72 74 63 75 74 74 69 6e 67 3a 00 54 68 69 73 20 70 6f 6c 69 63 79 20 69 73 20 69 6e | .shortcutting:.This.policy.is.in |
| 13d3c0 | 74 65 6e 64 65 64 20 74 6f 20 70 72 6f 76 69 64 65 20 61 20 6d 6f 72 65 20 62 61 6c 61 6e 63 65 | tended.to.provide.a.more.balance |
| 13d3e0 | 64 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 6f 66 20 74 72 61 66 66 69 63 20 74 68 61 6e 20 6c | d.distribution.of.traffic.than.l |
| 13d400 | 61 79 65 72 32 20 61 6c 6f 6e 65 2c 20 65 73 70 65 63 69 61 6c 6c 79 20 69 6e 20 65 6e 76 69 72 | ayer2.alone,.especially.in.envir |
| 13d420 | 6f 6e 6d 65 6e 74 73 20 77 68 65 72 65 20 61 20 6c 61 79 65 72 33 20 67 61 74 65 77 61 79 20 64 | onments.where.a.layer3.gateway.d |
| 13d440 | 65 76 69 63 65 20 69 73 20 72 65 71 75 69 72 65 64 20 74 6f 20 72 65 61 63 68 20 6d 6f 73 74 20 | evice.is.required.to.reach.most. |
| 13d460 | 64 65 73 74 69 6e 61 74 69 6f 6e 73 2e 00 54 68 69 73 20 70 72 6f 6d 70 74 65 64 20 73 6f 6d 65 | destinations..This.prompted.some |
| 13d480 | 20 49 53 50 73 20 74 6f 20 64 65 76 65 6c 6f 70 20 61 20 70 6f 6c 69 63 79 20 77 69 74 68 69 6e | .ISPs.to.develop.a.policy.within |
| 13d4a0 | 20 74 68 65 20 3a 61 62 62 72 3a 60 41 52 49 4e 20 28 41 6d 65 72 69 63 61 6e 20 52 65 67 69 73 | .the.:abbr:`ARIN.(American.Regis |
| 13d4c0 | 74 72 79 20 66 6f 72 20 49 6e 74 65 72 6e 65 74 20 4e 75 6d 62 65 72 73 29 60 20 74 6f 20 61 6c | try.for.Internet.Numbers)`.to.al |
| 13d4e0 | 6c 6f 63 61 74 65 20 6e 65 77 20 70 72 69 76 61 74 65 20 61 64 64 72 65 73 73 20 73 70 61 63 65 | locate.new.private.address.space |
| 13d500 | 20 66 6f 72 20 43 47 4e 73 2c 20 62 75 74 20 41 52 49 4e 20 64 65 66 65 72 72 65 64 20 74 6f 20 | .for.CGNs,.but.ARIN.deferred.to. |
| 13d520 | 74 68 65 20 49 45 54 46 20 62 65 66 6f 72 65 20 69 6d 70 6c 65 6d 65 6e 74 69 6e 67 20 74 68 65 | the.IETF.before.implementing.the |
| 13d540 | 20 70 6f 6c 69 63 79 20 69 6e 64 69 63 61 74 69 6e 67 20 74 68 61 74 20 74 68 65 20 6d 61 74 74 | .policy.indicating.that.the.matt |
| 13d560 | 65 72 20 77 61 73 20 6e 6f 74 20 61 20 74 79 70 69 63 61 6c 20 61 6c 6c 6f 63 61 74 69 6f 6e 20 | er.was.not.a.typical.allocation. |
| 13d580 | 69 73 73 75 65 20 62 75 74 20 61 20 72 65 73 65 72 76 61 74 69 6f 6e 20 6f 66 20 61 64 64 72 65 | issue.but.a.reservation.of.addre |
| 13d5a0 | 73 73 65 73 20 66 6f 72 20 74 65 63 68 6e 69 63 61 6c 20 70 75 72 70 6f 73 65 73 20 28 70 65 72 | sses.for.technical.purposes.(per |
| 13d5c0 | 20 3a 72 66 63 3a 60 32 38 36 30 60 29 2e 00 54 68 69 73 20 72 65 71 75 69 72 65 64 20 73 65 74 | .:rfc:`2860`)..This.required.set |
| 13d5e0 | 74 69 6e 67 20 64 65 66 69 6e 65 73 20 74 68 65 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 63 | ting.defines.the.action.of.the.c |
| 13d600 | 75 72 72 65 6e 74 20 72 75 6c 65 2e 20 49 66 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f | urrent.rule..If.action.is.set.to |
| 13d620 | 20 60 60 6a 75 6d 70 60 60 2c 20 74 68 65 6e 20 60 60 6a 75 6d 70 2d 74 61 72 67 65 74 60 60 20 | .``jump``,.then.``jump-target``. |
| 13d640 | 69 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 00 54 68 69 73 20 72 65 71 75 69 72 65 64 20 73 65 | is.also.needed..This.required.se |
| 13d660 | 74 74 69 6e 67 20 64 65 66 69 6e 65 73 20 74 68 65 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 | tting.defines.the.action.of.the. |
| 13d680 | 63 75 72 72 65 6e 74 20 72 75 6c 65 2e 20 49 66 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 | current.rule..If.action.is.set.t |
| 13d6a0 | 6f 20 6a 75 6d 70 2c 20 74 68 65 6e 20 6a 75 6d 70 2d 74 61 72 67 65 74 20 69 73 20 61 6c 73 6f | o.jump,.then.jump-target.is.also |
| 13d6c0 | 20 6e 65 65 64 65 64 2e 00 54 68 69 73 20 72 65 71 75 69 72 65 64 20 73 65 74 74 69 6e 67 20 64 | .needed..This.required.setting.d |
| 13d6e0 | 65 66 69 6e 65 73 20 74 68 65 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 63 75 72 72 65 6e 74 | efines.the.action.of.the.current |
| 13d700 | 20 72 75 6c 65 2e 20 49 66 20 74 68 65 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 6a | .rule..If.the.action.is.set.to.j |
| 13d720 | 75 6d 70 2c 20 74 68 65 6e 20 61 20 6a 75 6d 70 2d 74 61 72 67 65 74 20 69 73 20 61 6c 73 6f 20 | ump,.then.a.jump-target.is.also. |
| 13d740 | 6e 65 65 64 65 64 2e 00 54 68 69 73 20 72 65 71 75 69 72 65 73 20 74 77 6f 20 66 69 6c 65 73 2c | needed..This.requires.two.files, |
| 13d760 | 20 6f 6e 65 20 74 6f 20 63 72 65 61 74 65 20 74 68 65 20 64 65 76 69 63 65 20 28 58 58 58 2e 6e | .one.to.create.the.device.(XXX.n |
| 13d780 | 65 74 64 65 76 29 20 61 6e 64 20 6f 6e 65 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 | etdev).and.one.to.configure.the. |
| 13d7a0 | 6e 65 74 77 6f 72 6b 20 6f 6e 20 74 68 65 20 64 65 76 69 63 65 20 28 58 58 58 2e 6e 65 74 77 6f | network.on.the.device.(XXX.netwo |
| 13d7c0 | 72 6b 29 00 54 68 69 73 20 72 65 73 75 6c 74 73 20 69 6e 20 74 68 65 20 61 63 74 69 76 65 20 63 | rk).This.results.in.the.active.c |
| 13d7e0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 54 68 69 73 20 73 61 79 73 20 74 68 61 74 20 74 68 69 | onfiguration:.This.says.that.thi |
| 13d800 | 73 20 64 65 76 69 63 65 20 69 73 20 74 68 65 20 6f 6e 6c 79 20 44 48 43 50 20 73 65 72 76 65 72 | s.device.is.the.only.DHCP.server |
| 13d820 | 20 66 6f 72 20 74 68 69 73 20 6e 65 74 77 6f 72 6b 2e 20 49 66 20 6f 74 68 65 72 20 64 65 76 69 | .for.this.network..If.other.devi |
| 13d840 | 63 65 73 20 61 72 65 20 74 72 79 69 6e 67 20 74 6f 20 6f 66 66 65 72 20 44 48 43 50 20 6c 65 61 | ces.are.trying.to.offer.DHCP.lea |
| 13d860 | 73 65 73 2c 20 74 68 69 73 20 6d 61 63 68 69 6e 65 20 77 69 6c 6c 20 73 65 6e 64 20 27 44 48 43 | ses,.this.machine.will.send.'DHC |
| 13d880 | 50 4e 41 4b 27 20 74 6f 20 61 6e 79 20 64 65 76 69 63 65 20 74 72 79 69 6e 67 20 74 6f 20 72 65 | PNAK'.to.any.device.trying.to.re |
| 13d8a0 | 71 75 65 73 74 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 74 68 61 74 20 69 73 20 6e 6f 74 20 | quest.an.IP.address.that.is.not. |
| 13d8c0 | 76 61 6c 69 64 20 66 6f 72 20 74 68 69 73 20 6e 65 74 77 6f 72 6b 2e 00 54 68 69 73 20 73 65 63 | valid.for.this.network..This.sec |
| 13d8e0 | 74 69 6f 6e 20 64 65 73 63 72 69 62 65 73 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 44 4e 53 20 6f | tion.describes.configuring.DNS.o |
| 13d900 | 6e 20 74 68 65 20 73 79 73 74 65 6d 2c 20 6e 61 6d 65 6c 79 3a 00 54 68 69 73 20 73 65 63 74 69 | n.the.system,.namely:.This.secti |
| 13d920 | 6f 6e 20 64 65 73 63 72 69 62 65 73 20 74 68 65 20 73 79 73 74 65 6d 27 73 20 68 6f 73 74 20 69 | on.describes.the.system's.host.i |
| 13d940 | 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 6e 64 20 68 6f 77 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 | nformation.and.how.to.configure. |
| 13d960 | 74 68 65 6d 2c 20 69 74 20 63 6f 76 65 72 73 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 74 6f | them,.it.covers.the.following.to |
| 13d980 | 70 69 63 73 3a 00 54 68 69 73 20 73 65 63 74 69 6f 6e 20 6e 65 65 64 73 20 69 6d 70 72 6f 76 65 | pics:.This.section.needs.improve |
| 13d9a0 | 6d 65 6e 74 73 2c 20 65 78 61 6d 70 6c 65 73 20 61 6e 64 20 65 78 70 6c 61 6e 61 74 69 6f 6e 73 | ments,.examples.and.explanations |
| 13d9c0 | 2e 00 54 68 69 73 20 73 65 74 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 6f 66 | ..This.set.the.default.action.of |
| 13d9e0 | 20 74 68 65 20 72 75 6c 65 2d 73 65 74 20 69 66 20 6e 6f 20 72 75 6c 65 20 6d 61 74 63 68 65 64 | .the.rule-set.if.no.rule.matched |
| 13da00 | 20 61 20 70 61 63 6b 65 74 20 63 72 69 74 65 72 69 61 2e 20 49 66 20 64 65 66 61 63 75 6c 74 2d | .a.packet.criteria..If.defacult- |
| 13da20 | 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2c 20 74 68 65 6e 20 | action.is.set.to.``jump``,.then. |
| 13da40 | 60 60 64 65 66 61 75 6c 74 2d 6a 75 6d 70 2d 74 61 72 67 65 74 60 60 20 69 73 20 61 6c 73 6f 20 | ``default-jump-target``.is.also. |
| 13da60 | 6e 65 65 64 65 64 2e 00 54 68 69 73 20 73 65 74 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 | needed..This.set.the.default.act |
| 13da80 | 69 6f 6e 20 6f 66 20 74 68 65 20 72 75 6c 65 2d 73 65 74 20 69 66 20 6e 6f 20 72 75 6c 65 20 6d | ion.of.the.rule-set.if.no.rule.m |
| 13daa0 | 61 74 63 68 65 64 20 61 20 70 61 63 6b 65 74 20 63 72 69 74 65 72 69 61 2e 20 49 66 20 64 65 66 | atched.a.packet.criteria..If.def |
| 13dac0 | 61 63 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2c | acult-action.is.set.to.``jump``, |
| 13dae0 | 20 74 68 65 6e 20 60 60 64 65 66 61 75 6c 74 2d 6a 75 6d 70 2d 74 61 72 67 65 74 60 60 20 69 73 | .then.``default-jump-target``.is |
| 13db00 | 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 20 4e 6f 74 65 20 74 68 61 74 20 66 6f 72 20 62 61 73 65 | .also.needed..Note.that.for.base |
| 13db20 | 20 63 68 61 69 6e 73 2c 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 63 61 6e 20 6f 6e 6c 79 | .chains,.default.action.can.only |
| 13db40 | 20 62 65 20 73 65 74 20 74 6f 20 60 60 61 63 63 65 70 74 60 60 20 6f 72 20 60 60 64 72 6f 70 60 | .be.set.to.``accept``.or.``drop` |
| 13db60 | 60 2c 20 77 68 69 6c 65 20 6f 6e 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 6d 6f 72 65 20 61 | `,.while.on.custom.chain,.more.a |
| 13db80 | 63 74 69 6f 6e 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 2e 00 54 68 69 73 20 73 65 74 20 74 | ctions.are.available..This.set.t |
| 13dba0 | 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 72 75 6c 65 2d 73 65 | he.default.action.of.the.rule-se |
| 13dbc0 | 74 20 69 66 20 6e 6f 20 72 75 6c 65 20 6d 61 74 63 68 65 64 20 61 20 70 61 63 6b 65 74 20 63 72 | t.if.no.rule.matched.a.packet.cr |
| 13dbe0 | 69 74 65 72 69 61 2e 20 49 66 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 74 | iteria..If.default-action.is.set |
| 13dc00 | 20 74 6f 20 60 60 6a 75 6d 70 60 60 2c 20 74 68 65 6e 20 60 60 64 65 66 61 75 6c 74 2d 6a 75 6d | .to.``jump``,.then.``default-jum |
| 13dc20 | 70 2d 74 61 72 67 65 74 60 60 20 69 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 20 4e 6f 74 65 20 | p-target``.is.also.needed..Note. |
| 13dc40 | 74 68 61 74 20 66 6f 72 20 62 61 73 65 20 63 68 61 69 6e 73 2c 20 64 65 66 61 75 6c 74 20 61 63 | that.for.base.chains,.default.ac |
| 13dc60 | 74 69 6f 6e 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 73 65 74 20 74 6f 20 60 60 61 63 63 65 70 74 | tion.can.only.be.set.to.``accept |
| 13dc80 | 60 60 20 6f 72 20 60 60 64 72 6f 70 60 60 2c 20 77 68 69 6c 65 20 6f 6e 20 63 75 73 74 6f 6d 20 | ``.or.``drop``,.while.on.custom. |
| 13dca0 | 63 68 61 69 6e 2c 20 6d 6f 72 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c | chain,.more.actions.are.availabl |
| 13dcc0 | 65 2e 00 54 68 69 73 20 73 65 74 73 20 74 68 65 20 61 63 63 65 70 74 65 64 20 63 69 70 68 65 72 | e..This.sets.the.accepted.cipher |
| 13dce0 | 73 20 74 6f 20 75 73 65 20 77 68 65 6e 20 76 65 72 73 69 6f 6e 20 3d 3e 20 32 2e 34 2e 30 20 61 | s.to.use.when.version.=>.2.4.0.a |
| 13dd00 | 6e 64 20 4e 43 50 20 69 73 20 65 6e 61 62 6c 65 64 20 28 77 68 69 63 68 20 69 73 20 74 68 65 20 | nd.NCP.is.enabled.(which.is.the. |
| 13dd20 | 64 65 66 61 75 6c 74 29 2e 20 44 65 66 61 75 6c 74 20 4e 43 50 20 63 69 70 68 65 72 20 66 6f 72 | default)..Default.NCP.cipher.for |
| 13dd40 | 20 76 65 72 73 69 6f 6e 73 20 3e 3d 20 32 2e 34 2e 30 20 69 73 20 61 65 73 32 35 36 67 63 6d 2e | .versions.>=.2.4.0.is.aes256gcm. |
| 13dd60 | 20 54 68 65 20 66 69 72 73 74 20 63 69 70 68 65 72 20 69 6e 20 74 68 69 73 20 6c 69 73 74 20 69 | .The.first.cipher.in.this.list.i |
| 13dd80 | 73 20 77 68 61 74 20 73 65 72 76 65 72 20 70 75 73 68 65 73 20 74 6f 20 63 6c 69 65 6e 74 73 2e | s.what.server.pushes.to.clients. |
| 13dda0 | 00 54 68 69 73 20 73 65 74 73 20 74 68 65 20 63 69 70 68 65 72 20 77 68 65 6e 20 4e 43 50 20 28 | .This.sets.the.cipher.when.NCP.( |
| 13ddc0 | 4e 65 67 6f 74 69 61 62 6c 65 20 43 72 79 70 74 6f 20 50 61 72 61 6d 65 74 65 72 73 29 20 69 73 | Negotiable.Crypto.Parameters).is |
| 13dde0 | 20 64 69 73 61 62 6c 65 64 20 6f 72 20 4f 70 65 6e 56 50 4e 20 76 65 72 73 69 6f 6e 20 3c 20 32 | .disabled.or.OpenVPN.version.<.2 |
| 13de00 | 2e 34 2e 30 2e 00 54 68 69 73 20 73 65 74 73 20 74 68 65 20 63 69 70 68 65 72 20 77 68 65 6e 20 | .4.0..This.sets.the.cipher.when. |
| 13de20 | 4e 43 50 20 28 4e 65 67 6f 74 69 61 62 6c 65 20 43 72 79 70 74 6f 20 50 61 72 61 6d 65 74 65 72 | NCP.(Negotiable.Crypto.Parameter |
| 13de40 | 73 29 20 69 73 20 64 69 73 61 62 6c 65 64 20 6f 72 20 4f 70 65 6e 56 50 4e 20 76 65 72 73 69 6f | s).is.disabled.or.OpenVPN.versio |
| 13de60 | 6e 20 3c 20 32 2e 34 2e 30 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 73 68 6f 75 6c 64 20 6e 6f | n.<.2.4.0..This.option.should.no |
| 13de80 | 74 20 62 65 20 75 73 65 64 20 61 6e 79 20 6c 6f 6e 67 65 72 20 69 6e 20 54 4c 53 20 6d 6f 64 65 | t.be.used.any.longer.in.TLS.mode |
| 13dea0 | 20 61 6e 64 20 73 74 69 6c 6c 20 65 78 69 73 74 73 20 66 6f 72 20 63 6f 6d 70 61 74 69 62 69 6c | .and.still.exists.for.compatibil |
| 13dec0 | 69 74 79 20 77 69 74 68 20 6f 6c 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 2e 00 54 68 69 | ity.with.old.configurations..Thi |
| 13dee0 | 73 20 73 65 74 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 | s.sets.the.default.action.of.the |
| 13df00 | 20 72 75 6c 65 2d 73 65 74 20 69 66 20 61 20 70 61 63 6b 65 74 20 64 6f 65 73 20 6e 6f 74 20 6d | .rule-set.if.a.packet.does.not.m |
| 13df20 | 61 74 63 68 20 61 6e 79 20 6f 66 20 74 68 65 20 72 75 6c 65 73 20 69 6e 20 74 68 61 74 20 63 68 | atch.any.of.the.rules.in.that.ch |
| 13df40 | 61 69 6e 2e 20 49 66 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f | ain..If.default-action.is.set.to |
| 13df60 | 20 60 60 6a 75 6d 70 60 60 2c 20 74 68 65 6e 20 60 60 64 65 66 61 75 6c 74 2d 6a 75 6d 70 2d 74 | .``jump``,.then.``default-jump-t |
| 13df80 | 61 72 67 65 74 60 60 20 69 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 20 4e 6f 74 65 20 74 68 61 | arget``.is.also.needed..Note.tha |
| 13dfa0 | 74 20 66 6f 72 20 62 61 73 65 20 63 68 61 69 6e 73 2c 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f | t.for.base.chains,.default.actio |
| 13dfc0 | 6e 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 73 65 74 20 74 6f 20 60 60 61 63 63 65 70 74 60 60 20 | n.can.only.be.set.to.``accept``. |
| 13dfe0 | 6f 72 20 60 60 64 72 6f 70 60 60 2c 20 77 68 69 6c 65 20 6f 6e 20 63 75 73 74 6f 6d 20 63 68 61 | or.``drop``,.while.on.custom.cha |
| 13e000 | 69 6e 73 20 6d 6f 72 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 2e 00 | ins.more.actions.are.available.. |
| 13e020 | 54 68 69 73 20 73 65 74 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 6f 66 20 | This.sets.the.default.action.of. |
| 13e040 | 74 68 65 20 72 75 6c 65 2d 73 65 74 20 69 66 20 61 20 70 61 63 6b 65 74 20 64 6f 65 73 20 6e 6f | the.rule-set.if.a.packet.does.no |
| 13e060 | 74 20 6d 61 74 63 68 20 74 68 65 20 63 72 69 74 65 72 69 61 20 6f 66 20 61 6e 79 20 72 75 6c 65 | t.match.the.criteria.of.any.rule |
| 13e080 | 2e 20 49 66 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 | ..If.default-action.is.set.to.`` |
| 13e0a0 | 6a 75 6d 70 60 60 2c 20 74 68 65 6e 20 60 60 64 65 66 61 75 6c 74 2d 6a 75 6d 70 2d 74 61 72 67 | jump``,.then.``default-jump-targ |
| 13e0c0 | 65 74 60 60 20 69 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 20 4e 6f 74 65 20 74 68 61 74 20 66 | et``.is.also.needed..Note.that.f |
| 13e0e0 | 6f 72 20 62 61 73 65 20 63 68 61 69 6e 73 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 | or.base.chains,.the.default.acti |
| 13e100 | 6f 6e 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 73 65 74 20 74 6f 20 60 60 61 63 63 65 70 74 60 60 | on.can.only.be.set.to.``accept`` |
| 13e120 | 20 6f 72 20 60 60 64 72 6f 70 60 60 2c 20 77 68 69 6c 65 20 6f 6e 20 63 75 73 74 6f 6d 20 63 68 | .or.``drop``,.while.on.custom.ch |
| 13e140 | 61 69 6e 73 2c 20 6d 6f 72 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 | ains,.more.actions.are.available |
| 13e160 | 2e 00 54 68 69 73 20 73 65 74 74 69 6e 67 20 63 6f 6e 66 69 67 75 72 65 73 20 53 70 61 63 69 61 | ..This.setting.configures.Spacia |
| 13e180 | 6c 20 53 74 72 65 61 6d 20 61 6e 64 20 4d 6f 64 75 6c 61 74 69 6f 6e 20 43 6f 64 69 6e 67 20 53 | l.Stream.and.Modulation.Coding.S |
| 13e1a0 | 63 68 65 6d 65 20 73 65 74 74 69 6e 67 73 20 66 6f 72 20 48 45 20 6d 6f 64 65 20 28 48 45 2d 4d | cheme.settings.for.HE.mode.(HE-M |
| 13e1c0 | 43 53 29 2e 20 49 74 20 69 73 20 75 73 75 61 6c 6c 79 20 6e 6f 74 20 6e 65 65 64 65 64 20 74 6f | CS)..It.is.usually.not.needed.to |
| 13e1e0 | 20 73 65 74 20 74 68 69 73 20 65 78 70 6c 69 63 69 74 6c 79 2c 20 62 75 74 20 69 74 20 6d 69 67 | .set.this.explicitly,.but.it.mig |
| 13e200 | 68 74 20 68 65 6c 70 20 77 69 74 68 20 73 6f 6d 65 20 57 69 46 69 20 61 64 61 70 74 65 72 73 2e | ht.help.with.some.WiFi.adapters. |
| 13e220 | 00 54 68 69 73 20 73 65 74 74 69 6e 67 20 64 65 66 61 75 6c 74 73 20 74 6f 20 31 35 30 30 20 61 | .This.setting.defaults.to.1500.a |
| 13e240 | 6e 64 20 69 73 20 76 61 6c 69 64 20 62 65 74 77 65 65 6e 20 31 30 20 61 6e 64 20 36 30 30 30 30 | nd.is.valid.between.10.and.60000 |
| 13e260 | 2e 00 54 68 69 73 20 73 65 74 74 69 6e 67 20 65 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 | ..This.setting.enable.or.disable |
| 13e280 | 20 74 68 65 20 72 65 73 70 6f 6e 73 65 20 6f 66 20 69 63 6d 70 20 62 72 6f 61 64 63 61 73 74 20 | .the.response.of.icmp.broadcast. |
| 13e2a0 | 6d 65 73 73 61 67 65 73 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 | messages..The.following.system.p |
| 13e2c0 | 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 54 68 69 73 20 73 | arameter.will.be.altered:.This.s |
| 13e2e0 | 65 74 74 69 6e 67 20 65 6e 61 62 6c 65 73 20 6f 72 20 64 69 73 61 62 6c 65 73 20 74 68 65 20 72 | etting.enables.or.disables.the.r |
| 13e300 | 65 73 70 6f 6e 73 65 20 74 6f 20 69 63 6d 70 20 62 72 6f 61 64 63 61 73 74 20 6d 65 73 73 61 67 | esponse.to.icmp.broadcast.messag |
| 13e320 | 65 73 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 | es..The.following.system.paramet |
| 13e340 | 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 54 68 69 73 20 73 65 74 74 69 6e 67 | er.will.be.altered:.This.setting |
| 13e360 | 20 68 61 6e 64 6c 65 20 69 66 20 56 79 4f 53 20 61 63 63 65 70 74 20 70 61 63 6b 65 74 73 20 77 | .handle.if.VyOS.accept.packets.w |
| 13e380 | 69 74 68 20 61 20 73 6f 75 72 63 65 20 72 6f 75 74 65 20 6f 70 74 69 6f 6e 2e 20 54 68 65 20 66 | ith.a.source.route.option..The.f |
| 13e3a0 | 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 | ollowing.system.parameter.will.b |
| 13e3c0 | 65 20 61 6c 74 65 72 65 64 3a 00 54 68 69 73 20 73 65 74 74 69 6e 67 20 68 61 6e 64 6c 65 73 20 | e.altered:.This.setting.handles. |
| 13e3e0 | 69 66 20 56 79 4f 53 20 61 63 63 65 70 74 73 20 70 61 63 6b 65 74 73 20 77 69 74 68 20 61 20 73 | if.VyOS.accepts.packets.with.a.s |
| 13e400 | 6f 75 72 63 65 20 72 6f 75 74 65 20 6f 70 74 69 6f 6e 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e | ource.route.option..The.followin |
| 13e420 | 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 73 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 | g.system.parameters.will.be.alte |
| 13e440 | 72 65 64 3a 00 54 68 69 73 20 73 65 74 74 69 6e 67 2c 20 77 68 69 63 68 20 64 65 66 61 75 6c 74 | red:.This.setting,.which.default |
| 13e460 | 73 20 74 6f 20 33 36 30 30 20 73 65 63 6f 6e 64 73 2c 20 70 75 74 73 20 61 20 6d 61 78 69 6d 75 | s.to.3600.seconds,.puts.a.maximu |
| 13e480 | 6d 20 6f 6e 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 20 74 69 6d 65 20 6e 65 67 61 74 69 76 65 | m.on.the.amount.of.time.negative |
| 13e4a0 | 20 65 6e 74 72 69 65 73 20 61 72 65 20 63 61 63 68 65 64 2e 00 54 68 69 73 20 73 65 74 75 70 20 | .entries.are.cached..This.setup. |
| 13e4c0 | 77 69 6c 6c 20 6d 61 6b 65 20 74 68 65 20 56 52 52 50 20 70 72 6f 63 65 73 73 20 65 78 65 63 75 | will.make.the.VRRP.process.execu |
| 13e4e0 | 74 65 20 74 68 65 20 60 60 2f 63 6f 6e 66 69 67 2f 73 63 72 69 70 74 73 2f 76 72 72 70 2d 63 68 | te.the.``/config/scripts/vrrp-ch |
| 13e500 | 65 63 6b 2e 73 68 20 73 63 72 69 70 74 60 60 20 65 76 65 72 79 20 36 30 20 73 65 63 6f 6e 64 73 | eck.sh.script``.every.60.seconds |
| 13e520 | 2c 20 61 6e 64 20 74 72 61 6e 73 69 74 69 6f 6e 20 74 68 65 20 67 72 6f 75 70 20 74 6f 20 74 68 | ,.and.transition.the.group.to.th |
| 13e540 | 65 20 66 61 75 6c 74 20 73 74 61 74 65 20 69 66 20 69 74 20 66 61 69 6c 73 20 28 69 2e 65 2e 20 | e.fault.state.if.it.fails.(i.e.. |
| 13e560 | 65 78 69 74 73 20 77 69 74 68 20 6e 6f 6e 2d 7a 65 72 6f 20 73 74 61 74 75 73 29 20 74 68 72 65 | exits.with.non-zero.status).thre |
| 13e580 | 65 20 74 69 6d 65 73 3a 00 54 68 69 73 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 6e 75 6d 62 | e.times:.This.specifies.the.numb |
| 13e5a0 | 65 72 20 6f 66 20 43 50 55 20 72 65 73 6f 75 72 63 65 73 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 | er.of.CPU.resources.the.containe |
| 13e5c0 | 72 20 63 61 6e 20 75 73 65 2e 00 54 68 69 73 20 73 74 61 67 65 20 69 6e 63 6c 75 64 65 73 3a 00 | r.can.use..This.stage.includes:. |
| 13e5e0 | 54 68 69 73 20 73 74 61 74 65 6d 65 6e 74 20 73 70 65 63 69 66 69 65 73 20 64 68 63 70 36 63 20 | This.statement.specifies.dhcp6c. |
| 13e600 | 74 6f 20 6f 6e 6c 79 20 65 78 63 68 61 6e 67 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 61 6c 20 63 | to.only.exchange.informational.c |
| 13e620 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 73 20 77 69 74 68 20 73 65 72 | onfiguration.parameters.with.ser |
| 13e640 | 76 65 72 73 2e 20 41 20 6c 69 73 74 20 6f 66 20 44 4e 53 20 73 65 72 76 65 72 20 61 64 64 72 65 | vers..A.list.of.DNS.server.addre |
| 13e660 | 73 73 65 73 20 69 73 20 61 6e 20 65 78 61 6d 70 6c 65 20 6f 66 20 73 75 63 68 20 70 61 72 61 6d | sses.is.an.example.of.such.param |
| 13e680 | 65 74 65 72 73 2e 20 54 68 69 73 20 73 74 61 74 65 6d 65 6e 74 20 69 73 20 75 73 65 66 75 6c 20 | eters..This.statement.is.useful. |
| 13e6a0 | 77 68 65 6e 20 74 68 65 20 63 6c 69 65 6e 74 20 64 6f 65 73 20 6e 6f 74 20 6e 65 65 64 20 73 74 | when.the.client.does.not.need.st |
| 13e6c0 | 61 74 65 66 75 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 73 20 | ateful.configuration.parameters. |
| 13e6e0 | 73 75 63 68 20 61 73 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 6f 72 20 70 72 65 66 69 78 | such.as.IPv6.addresses.or.prefix |
| 13e700 | 65 73 2e 00 54 68 69 73 20 73 75 70 70 6f 72 74 20 6d 61 79 20 62 65 20 65 6e 61 62 6c 65 64 20 | es..This.support.may.be.enabled. |
| 13e720 | 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 6c 79 20 28 61 6e 64 20 69 6e 64 65 66 69 6e 69 74 65 | administratively.(and.indefinite |
| 13e740 | 6c 79 29 20 77 69 74 68 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 61 64 6d 69 6e 69 73 74 72 61 | ly).with.the.:cfgcmd:`administra |
| 13e760 | 74 69 76 65 60 20 63 6f 6d 6d 61 6e 64 2e 20 49 74 20 6d 61 79 20 61 6c 73 6f 20 62 65 20 65 6e | tive`.command..It.may.also.be.en |
| 13e780 | 61 62 6c 65 64 20 63 6f 6e 64 69 74 69 6f 6e 61 6c 6c 79 2e 20 43 6f 6e 64 69 74 69 6f 6e 61 6c | abled.conditionally..Conditional |
| 13e7a0 | 20 65 6e 61 62 6c 69 6e 67 20 6f 66 20 6d 61 78 2d 6d 65 74 72 69 63 20 72 6f 75 74 65 72 2d 6c | .enabling.of.max-metric.router-l |
| 13e7c0 | 73 61 73 20 63 61 6e 20 62 65 20 66 6f 72 20 61 20 70 65 72 69 6f 64 20 6f 66 20 73 65 63 6f 6e | sas.can.be.for.a.period.of.secon |
| 13e7e0 | 64 73 20 61 66 74 65 72 20 73 74 61 72 74 75 70 20 77 69 74 68 20 74 68 65 20 3a 63 66 67 63 6d | ds.after.startup.with.the.:cfgcm |
| 13e800 | 64 3a 60 6f 6e 2d 73 74 61 72 74 75 70 20 3c 73 65 63 6f 6e 64 73 3e 60 20 63 6f 6d 6d 61 6e 64 | d:`on-startup.<seconds>`.command |
| 13e820 | 20 61 6e 64 2f 6f 72 20 66 6f 72 20 61 20 70 65 72 69 6f 64 20 6f 66 20 73 65 63 6f 6e 64 73 20 | .and/or.for.a.period.of.seconds. |
| 13e840 | 70 72 69 6f 72 20 74 6f 20 73 68 75 74 64 6f 77 6e 20 77 69 74 68 20 74 68 65 20 3a 63 66 67 63 | prior.to.shutdown.with.the.:cfgc |
| 13e860 | 6d 64 3a 60 6f 6e 2d 73 68 75 74 64 6f 77 6e 20 3c 73 65 63 6f 6e 64 73 3e 60 20 63 6f 6d 6d 61 | md:`on-shutdown.<seconds>`.comma |
| 13e880 | 6e 64 2e 20 54 68 65 20 74 69 6d 65 20 72 61 6e 67 65 20 69 73 20 35 20 74 6f 20 38 36 34 30 30 | nd..The.time.range.is.5.to.86400 |
| 13e8a0 | 2e 00 54 68 69 73 20 74 65 63 68 6e 69 71 75 65 20 69 73 20 63 6f 6d 6d 6f 6e 6c 79 20 72 65 66 | ..This.technique.is.commonly.ref |
| 13e8c0 | 65 72 72 65 64 20 74 6f 20 61 73 20 4e 41 54 20 52 65 66 6c 65 63 74 69 6f 6e 20 6f 72 20 48 61 | erred.to.as.NAT.Reflection.or.Ha |
| 13e8e0 | 69 72 70 69 6e 20 4e 41 54 2e 00 54 68 69 73 20 74 65 63 68 6e 6f 6c 6f 67 79 20 69 73 20 6b 6e | irpin.NAT..This.technology.is.kn |
| 13e900 | 6f 77 6e 20 62 79 20 64 69 66 66 65 72 65 6e 74 20 6e 61 6d 65 73 3a 00 54 68 69 73 20 74 68 65 | own.by.different.names:.This.the |
| 13e920 | 20 73 69 6d 70 6c 65 73 74 20 71 75 65 75 65 20 70 6f 73 73 69 62 6c 65 20 79 6f 75 20 63 61 6e | .simplest.queue.possible.you.can |
| 13e940 | 20 61 70 70 6c 79 20 74 6f 20 79 6f 75 72 20 74 72 61 66 66 69 63 2e 20 54 72 61 66 66 69 63 20 | .apply.to.your.traffic..Traffic. |
| 13e960 | 6d 75 73 74 20 67 6f 20 74 68 72 6f 75 67 68 20 61 20 66 69 6e 69 74 65 20 71 75 65 75 65 20 62 | must.go.through.a.finite.queue.b |
| 13e980 | 65 66 6f 72 65 20 69 74 20 69 73 20 61 63 74 75 61 6c 6c 79 20 73 65 6e 74 2e 20 59 6f 75 20 6d | efore.it.is.actually.sent..You.m |
| 13e9a0 | 75 73 74 20 64 65 66 69 6e 65 20 68 6f 77 20 6d 61 6e 79 20 70 61 63 6b 65 74 73 20 74 68 61 74 | ust.define.how.many.packets.that |
| 13e9c0 | 20 71 75 65 75 65 20 63 61 6e 20 63 6f 6e 74 61 69 6e 2e 00 54 68 69 73 20 74 6f 70 6f 6c 6f 67 | .queue.can.contain..This.topolog |
| 13e9e0 | 79 20 77 61 73 20 62 75 69 6c 74 20 75 73 69 6e 67 20 47 4e 53 33 2e 00 54 68 69 73 20 77 69 6c | y.was.built.using.GNS3..This.wil |
| 13ea00 | 6c 20 61 64 64 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6f 70 74 69 6f 6e 20 74 6f 20 74 68 | l.add.the.following.option.to.th |
| 13ea20 | 65 20 4b 65 72 6e 65 6c 20 63 6f 6d 6d 61 6e 64 6c 69 6e 65 3a 00 54 68 69 73 20 77 69 6c 6c 20 | e.Kernel.commandline:.This.will. |
| 13ea40 | 61 64 64 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 74 77 6f 20 6f 70 74 69 6f 6e 73 20 74 6f | add.the.following.two.options.to |
| 13ea60 | 20 74 68 65 20 4b 65 72 6e 65 6c 20 63 6f 6d 6d 61 6e 64 6c 69 6e 65 3a 00 54 68 69 73 20 77 69 | .the.Kernel.commandline:.This.wi |
| 13ea80 | 6c 6c 20 62 65 20 74 68 65 20 6d 6f 73 74 20 77 69 64 65 6c 79 20 75 73 65 64 20 69 6e 74 65 72 | ll.be.the.most.widely.used.inter |
| 13eaa0 | 66 61 63 65 20 6f 6e 20 61 20 72 6f 75 74 65 72 20 63 61 72 72 79 69 6e 67 20 74 72 61 66 66 69 | face.on.a.router.carrying.traffi |
| 13eac0 | 63 20 74 6f 20 74 68 65 20 72 65 61 6c 20 77 6f 72 6c 64 2e 00 54 68 69 73 20 77 69 6c 6c 20 63 | c.to.the.real.world..This.will.c |
| 13eae0 | 6f 6e 66 69 67 75 72 65 20 61 20 73 74 61 74 69 63 20 41 52 50 20 65 6e 74 72 79 20 61 6c 77 61 | onfigure.a.static.ARP.entry.alwa |
| 13eb00 | 79 73 20 72 65 73 6f 6c 76 69 6e 67 20 60 3c 61 64 64 72 65 73 73 3e 60 20 74 6f 20 60 3c 6d 61 | ys.resolving.`<address>`.to.`<ma |
| 13eb20 | 63 3e 60 20 66 6f 72 20 69 6e 74 65 72 66 61 63 65 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e | c>`.for.interface.`<interface>`. |
| 13eb40 | 00 54 68 69 73 20 77 69 6c 6c 20 6d 61 74 63 68 20 54 43 50 20 74 72 61 66 66 69 63 20 77 69 74 | .This.will.match.TCP.traffic.wit |
| 13eb60 | 68 20 73 6f 75 72 63 65 20 70 6f 72 74 20 38 30 2e 00 54 68 69 73 20 77 69 6c 6c 20 72 65 6e 64 | h.source.port.80..This.will.rend |
| 13eb80 | 65 72 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 64 64 63 6c 69 65 6e 74 5f 20 63 6f 6e 66 69 | er.the.following.ddclient_.confi |
| 13eba0 | 67 75 72 61 74 69 6f 6e 20 65 6e 74 72 79 3a 00 54 68 69 73 20 77 69 6c 6c 20 73 68 6f 77 20 79 | guration.entry:.This.will.show.y |
| 13ebc0 | 6f 75 20 61 20 62 61 73 69 63 20 66 69 72 65 77 61 6c 6c 20 6f 76 65 72 76 69 65 77 00 54 68 69 | ou.a.basic.firewall.overview.Thi |
| 13ebe0 | 73 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 62 61 73 69 63 20 66 69 72 65 77 61 6c 6c | s.will.show.you.a.basic.firewall |
| 13ec00 | 20 6f 76 65 72 76 69 65 77 2c 20 66 6f 72 20 61 6c 6c 20 72 75 6c 65 2d 73 65 74 73 2c 20 61 6e | .overview,.for.all.rule-sets,.an |
| 13ec20 | 64 20 6e 6f 74 20 6f 6e 6c 79 20 66 6f 72 20 69 70 76 34 00 54 68 69 73 20 77 69 6c 6c 20 73 68 | d.not.only.for.ipv4.This.will.sh |
| 13ec40 | 6f 77 20 79 6f 75 20 61 20 62 61 73 69 63 20 66 69 72 65 77 61 6c 6c 20 6f 76 65 72 76 69 65 77 | ow.you.a.basic.firewall.overview |
| 13ec60 | 2c 20 66 6f 72 20 61 6c 6c 20 72 75 6c 65 2d 73 65 74 73 2c 20 61 6e 64 20 6e 6f 74 20 6f 6e 6c | ,.for.all.rule-sets,.and.not.onl |
| 13ec80 | 79 20 66 6f 72 20 69 70 76 36 00 54 68 69 73 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 | y.for.ipv6.This.will.show.you.a. |
| 13eca0 | 62 61 73 69 63 20 66 69 72 65 77 61 6c 6c 20 6f 76 65 72 76 69 65 77 2c 20 66 6f 72 20 61 6c 6c | basic.firewall.overview,.for.all |
| 13ecc0 | 20 72 75 6c 65 73 65 74 2c 20 61 6e 64 20 6e 6f 74 20 6f 6e 6c 79 20 66 6f 72 20 69 70 76 34 00 | .ruleset,.and.not.only.for.ipv4. |
| 13ece0 | 54 68 69 73 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 62 61 73 69 63 20 73 75 6d 6d 61 | This.will.show.you.a.basic.summa |
| 13ed00 | 72 79 20 6f 66 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 7a 6f 6e 65 2e 00 54 68 69 73 20 77 69 | ry.of.a.particular.zone..This.wi |
| 13ed20 | 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 62 61 73 69 63 20 73 75 6d 6d 61 72 79 20 6f 66 20 74 | ll.show.you.a.basic.summary.of.t |
| 13ed40 | 68 65 20 7a 6f 6e 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 68 69 73 20 77 69 6c 6c | he.zone.configuration..This.will |
| 13ed60 | 20 73 68 6f 77 20 79 6f 75 20 61 20 62 61 73 69 63 20 73 75 6d 6d 61 72 79 20 6f 66 20 7a 6f 6e | .show.you.a.basic.summary.of.zon |
| 13ed80 | 65 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 68 69 73 20 77 69 6c 6c 20 73 68 6f 77 | es.configuration..This.will.show |
| 13eda0 | 20 79 6f 75 20 61 20 72 75 6c 65 2d 73 65 74 20 73 74 61 74 69 73 74 69 63 20 73 69 6e 63 65 20 | .you.a.rule-set.statistic.since. |
| 13edc0 | 74 68 65 20 6c 61 73 74 20 62 6f 6f 74 2e 00 54 68 69 73 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f | the.last.boot..This.will.show.yo |
| 13ede0 | 75 20 61 20 73 74 61 74 69 73 74 69 63 20 6f 66 20 61 6c 6c 20 72 75 6c 65 2d 73 65 74 73 20 73 | u.a.statistic.of.all.rule-sets.s |
| 13ee00 | 69 6e 63 65 20 74 68 65 20 6c 61 73 74 20 62 6f 6f 74 2e 00 54 68 69 73 20 77 69 6c 6c 20 73 68 | ince.the.last.boot..This.will.sh |
| 13ee20 | 6f 77 20 79 6f 75 20 61 20 73 75 6d 6d 61 72 79 20 6f 66 20 72 75 6c 65 2d 73 65 74 73 20 61 6e | ow.you.a.summary.of.rule-sets.an |
| 13ee40 | 64 20 67 72 6f 75 70 73 00 54 68 69 73 20 77 6f 72 6b 61 72 6f 75 6e 64 20 6c 65 74 73 20 79 6f | d.groups.This.workaround.lets.yo |
| 13ee60 | 75 20 61 70 70 6c 79 20 61 20 73 68 61 70 69 6e 67 20 70 6f 6c 69 63 79 20 74 6f 20 74 68 65 20 | u.apply.a.shaping.policy.to.the. |
| 13ee80 | 69 6e 67 72 65 73 73 20 74 72 61 66 66 69 63 20 62 79 20 66 69 72 73 74 20 72 65 64 69 72 65 63 | ingress.traffic.by.first.redirec |
| 13eea0 | 74 69 6e 67 20 69 74 20 74 6f 20 61 6e 20 69 6e 2d 62 65 74 77 65 65 6e 20 76 69 72 74 75 61 6c | ting.it.to.an.in-between.virtual |
| 13eec0 | 20 69 6e 74 65 72 66 61 63 65 20 28 60 49 6e 74 65 72 6d 65 64 69 61 74 65 20 46 75 6e 63 74 69 | .interface.(`Intermediate.Functi |
| 13eee0 | 6f 6e 61 6c 20 42 6c 6f 63 6b 60 5f 29 2e 20 54 68 65 72 65 2c 20 69 6e 20 74 68 61 74 20 76 69 | onal.Block`_)..There,.in.that.vi |
| 13ef00 | 72 74 75 61 6c 20 69 6e 74 65 72 66 61 63 65 2c 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 61 62 6c | rtual.interface,.you.will.be.abl |
| 13ef20 | 65 20 74 6f 20 61 70 70 6c 79 20 61 6e 79 20 6f 66 20 74 68 65 20 70 6f 6c 69 63 69 65 73 20 74 | e.to.apply.any.of.the.policies.t |
| 13ef40 | 68 61 74 20 77 6f 72 6b 20 66 6f 72 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 2c 20 66 | hat.work.for.outbound.traffic,.f |
| 13ef60 | 6f 72 20 69 6e 73 74 61 6e 63 65 2c 20 61 20 73 68 61 70 69 6e 67 20 6f 6e 65 2e 00 54 68 69 73 | or.instance,.a.shaping.one..This |
| 13ef80 | 20 77 6f 75 6c 64 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f | .would.generate.the.following.co |
| 13efa0 | 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 54 68 72 65 65 20 73 69 67 6e 69 66 69 63 61 6e 74 20 76 | nfiguration:.Three.significant.v |
| 13efc0 | 65 72 73 69 6f 6e 73 20 6f 66 20 53 4e 4d 50 20 68 61 76 65 20 62 65 65 6e 20 64 65 76 65 6c 6f | ersions.of.SNMP.have.been.develo |
| 13efe0 | 70 65 64 20 61 6e 64 20 64 65 70 6c 6f 79 65 64 2e 20 53 4e 4d 50 76 31 20 69 73 20 74 68 65 20 | ped.and.deployed..SNMPv1.is.the. |
| 13f000 | 6f 72 69 67 69 6e 61 6c 20 76 65 72 73 69 6f 6e 20 6f 66 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c | original.version.of.the.protocol |
| 13f020 | 2e 20 4d 6f 72 65 20 72 65 63 65 6e 74 20 76 65 72 73 69 6f 6e 73 2c 20 53 4e 4d 50 76 32 63 20 | ..More.recent.versions,.SNMPv2c. |
| 13f040 | 61 6e 64 20 53 4e 4d 50 76 33 2c 20 66 65 61 74 75 72 65 20 69 6d 70 72 6f 76 65 6d 65 6e 74 73 | and.SNMPv3,.feature.improvements |
| 13f060 | 20 69 6e 20 70 65 72 66 6f 72 6d 61 6e 63 65 2c 20 66 6c 65 78 69 62 69 6c 69 74 79 20 61 6e 64 | .in.performance,.flexibility.and |
| 13f080 | 20 73 65 63 75 72 69 74 79 2e 00 54 69 6d 65 20 5a 6f 6e 65 00 54 69 6d 65 20 5a 6f 6e 65 20 73 | .security..Time.Zone.Time.Zone.s |
| 13f0a0 | 65 74 74 69 6e 67 20 69 73 20 76 65 72 79 20 69 6d 70 6f 72 74 61 6e 74 20 61 73 20 65 2e 67 20 | etting.is.very.important.as.e.g. |
| 13f0c0 | 61 6c 6c 20 79 6f 75 72 20 6c 6f 67 66 69 6c 65 20 65 6e 74 72 69 65 73 20 77 69 6c 6c 20 62 65 | all.your.logfile.entries.will.be |
| 13f0e0 | 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 7a 6f 6e 65 2e 20 57 | .based.on.the.configured.zone..W |
| 13f100 | 69 74 68 6f 75 74 20 70 72 6f 70 65 72 20 74 69 6d 65 20 7a 6f 6e 65 20 63 6f 6e 66 69 67 75 72 | ithout.proper.time.zone.configur |
| 13f120 | 61 74 69 6f 6e 20 69 74 20 77 69 6c 6c 20 62 65 20 76 65 72 79 20 64 69 66 66 69 63 75 6c 74 20 | ation.it.will.be.very.difficult. |
| 13f140 | 74 6f 20 63 6f 6d 70 61 72 65 20 6c 6f 67 66 69 6c 65 73 20 66 72 6f 6d 20 64 69 66 66 65 72 65 | to.compare.logfiles.from.differe |
| 13f160 | 6e 74 20 73 79 73 74 65 6d 73 2e 00 54 69 6d 65 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 | nt.systems..Time.in.milliseconds |
| 13f180 | 20 62 65 74 77 65 65 6e 20 72 65 74 72 61 6e 73 6d 69 74 74 65 64 20 4e 65 69 67 68 62 6f 72 20 | .between.retransmitted.Neighbor. |
| 13f1a0 | 53 6f 6c 69 63 69 74 61 74 69 6f 6e 20 6d 65 73 73 61 67 65 73 00 54 69 6d 65 20 69 6e 20 73 65 | Solicitation.messages.Time.in.se |
| 13f1c0 | 63 6f 6e 64 73 20 74 68 61 74 20 74 68 65 20 70 72 65 66 69 78 20 77 69 6c 6c 20 72 65 6d 61 69 | conds.that.the.prefix.will.remai |
| 13f1e0 | 6e 20 70 72 65 66 65 72 72 65 64 20 28 64 65 66 61 75 6c 74 20 34 20 68 6f 75 72 73 29 00 54 69 | n.preferred.(default.4.hours).Ti |
| 13f200 | 6d 65 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 68 61 74 20 74 68 65 20 70 72 65 66 69 78 20 77 69 | me.in.seconds.that.the.prefix.wi |
| 13f220 | 6c 6c 20 72 65 6d 61 69 6e 20 76 61 6c 69 64 20 28 64 65 66 61 75 6c 74 3a 20 33 30 20 64 61 79 | ll.remain.valid.(default:.30.day |
| 13f240 | 73 29 00 54 69 6d 65 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 68 61 74 20 74 68 65 20 70 72 65 66 | s).Time.in.seconds.that.the.pref |
| 13f260 | 69 78 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 76 61 6c 69 64 20 28 64 65 66 61 75 6c 74 3a 20 36 | ix.will.remain.valid.(default:.6 |
| 13f280 | 35 35 32 38 20 73 65 63 6f 6e 64 73 29 00 54 69 6d 65 20 69 73 20 69 6e 20 6d 69 6e 75 74 65 73 | 5528.seconds).Time.is.in.minutes |
| 13f2a0 | 20 61 6e 64 20 64 65 66 61 75 6c 74 73 20 74 6f 20 36 30 2e 00 54 69 6d 65 20 74 6f 20 6d 61 74 | .and.defaults.to.60..Time.to.mat |
| 13f2c0 | 63 68 20 74 68 65 20 64 65 66 69 6e 65 64 20 72 75 6c 65 2e 00 54 69 6d 65 2c 20 69 6e 20 6d 69 | ch.the.defined.rule..Time,.in.mi |
| 13f2e0 | 6c 6c 69 73 65 63 6f 6e 64 73 2c 20 74 68 61 74 20 61 20 6e 6f 64 65 20 61 73 73 75 6d 65 73 20 | lliseconds,.that.a.node.assumes. |
| 13f300 | 61 20 6e 65 69 67 68 62 6f 72 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 61 66 74 65 72 20 68 61 | a.neighbor.is.reachable.after.ha |
| 13f320 | 76 69 6e 67 20 72 65 63 65 69 76 65 64 20 61 20 72 65 61 63 68 61 62 69 6c 69 74 79 20 63 6f 6e | ving.received.a.reachability.con |
| 13f340 | 66 69 72 6d 61 74 69 6f 6e 00 54 69 6d 65 6f 75 74 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 | firmation.Timeout.can.be.defined |
| 13f360 | 20 75 73 69 6e 67 20 73 65 63 6f 6e 64 73 2c 20 6d 69 6e 75 74 65 73 2c 20 68 6f 75 72 73 20 6f | .using.seconds,.minutes,.hours.o |
| 13f380 | 72 20 64 61 79 73 3a 00 54 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e 64 73 00 54 69 6d 65 6f | r.days:.Timeout.in.seconds.Timeo |
| 13f3a0 | 75 74 20 69 6e 20 73 65 63 6f 6e 64 73 20 62 65 74 77 65 65 6e 20 68 65 61 6c 74 68 20 74 61 72 | ut.in.seconds.between.health.tar |
| 13f3c0 | 67 65 74 20 63 68 65 63 6b 73 2e 00 54 69 6d 65 6f 75 74 20 74 6f 20 77 61 69 74 20 72 65 70 6c | get.checks..Timeout.to.wait.repl |
| 13f3e0 | 79 20 66 6f 72 20 49 6e 74 65 72 69 6d 2d 55 70 64 61 74 65 20 70 61 63 6b 65 74 73 2e 20 28 64 | y.for.Interim-Update.packets..(d |
| 13f400 | 65 66 61 75 6c 74 20 33 20 73 65 63 6f 6e 64 73 29 00 54 69 6d 65 6f 75 74 20 74 6f 20 77 61 69 | efault.3.seconds).Timeout.to.wai |
| 13f420 | 74 20 72 65 73 70 6f 6e 73 65 20 66 72 6f 6d 20 73 65 72 76 65 72 20 28 73 65 63 6f 6e 64 73 29 | t.response.from.server.(seconds) |
| 13f440 | 00 54 69 6d 65 72 73 00 54 6f 20 61 63 74 69 76 61 74 65 20 74 68 65 20 56 4c 41 4e 20 61 77 61 | .Timers.To.activate.the.VLAN.awa |
| 13f460 | 72 65 20 62 72 69 64 67 65 2c 20 79 6f 75 20 6d 75 73 74 20 61 63 74 69 76 61 74 65 20 74 68 69 | re.bridge,.you.must.activate.thi |
| 13f480 | 73 20 73 65 74 74 69 6e 67 20 74 6f 20 75 73 65 20 56 4c 41 4e 20 73 65 74 74 69 6e 67 73 20 66 | s.setting.to.use.VLAN.settings.f |
| 13f4a0 | 6f 72 20 74 68 65 20 62 72 69 64 67 65 00 54 6f 20 61 6c 6c 6f 77 20 56 50 4e 2d 63 6c 69 65 6e | or.the.bridge.To.allow.VPN-clien |
| 13f4c0 | 74 73 20 61 63 63 65 73 73 20 76 69 61 20 79 6f 75 72 20 65 78 74 65 72 6e 61 6c 20 61 64 64 72 | ts.access.via.your.external.addr |
| 13f4e0 | 65 73 73 2c 20 61 20 4e 41 54 20 72 75 6c 65 20 69 73 20 72 65 71 75 69 72 65 64 3a 00 54 6f 20 | ess,.a.NAT.rule.is.required:.To. |
| 13f500 | 61 6c 6c 6f 77 20 6c 69 73 74 69 6e 67 20 61 64 64 69 74 69 6f 6e 61 6c 20 63 75 73 74 6f 6d 20 | allow.listing.additional.custom. |
| 13f520 | 64 6f 6d 61 69 6e 2c 20 66 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 6f 70 65 6e 74 68 72 65 61 64 | domain,.for.example.``openthread |
| 13f540 | 2e 74 68 72 65 61 64 2e 68 6f 6d 65 2e 61 72 70 61 60 60 2c 20 73 6f 20 74 68 61 74 20 69 74 20 | .thread.home.arpa``,.so.that.it. |
| 13f560 | 63 61 6e 20 72 65 66 6c 65 63 74 65 64 20 69 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 74 68 65 | can.reflected.in.addition.to.the |
| 13f580 | 20 64 65 66 61 75 6c 74 20 60 60 6c 6f 63 61 6c 60 60 2c 20 75 73 65 20 74 68 65 20 66 6f 6c 6c | .default.``local``,.use.the.foll |
| 13f5a0 | 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 3a 00 54 6f 20 61 6c 6c 6f 77 20 6f 6e 6c 79 20 73 70 65 | owing.command:.To.allow.only.spe |
| 13f5c0 | 63 69 66 69 63 20 73 65 72 76 69 63 65 73 2c 20 66 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 5f 61 | cific.services,.for.example.``_a |
| 13f5e0 | 69 72 70 6c 61 79 2e 5f 74 63 70 60 60 20 6f 72 20 60 60 5f 69 70 70 2e 5f 74 63 70 60 60 2c 20 | irplay._tcp``.or.``_ipp._tcp``,. |
| 13f600 | 28 69 6e 73 74 65 61 64 20 6f 66 20 61 6c 6c 20 73 65 72 76 69 63 65 73 29 20 74 6f 20 62 65 20 | (instead.of.all.services).to.be. |
| 13f620 | 72 65 2d 62 72 6f 61 64 63 61 73 74 65 64 2c 20 75 73 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e | re-broadcasted,.use.the.followin |
| 13f640 | 67 20 63 6f 6d 6d 61 6e 64 3a 00 54 6f 20 61 6c 6c 6f 77 20 74 72 61 66 66 69 63 20 74 6f 20 70 | g.command:.To.allow.traffic.to.p |
| 13f660 | 61 73 73 20 74 68 72 6f 75 67 68 20 74 6f 20 63 6c 69 65 6e 74 73 2c 20 79 6f 75 20 6e 65 65 64 | ass.through.to.clients,.you.need |
| 13f680 | 20 74 6f 20 61 64 64 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 72 75 6c 65 73 2e 20 28 69 66 | .to.add.the.following.rules..(if |
| 13f6a0 | 20 79 6f 75 20 75 73 65 64 20 74 68 65 20 64 65 66 61 75 6c 74 20 63 6f 6e 66 69 67 75 72 61 74 | .you.used.the.default.configurat |
| 13f6c0 | 69 6f 6e 20 61 74 20 74 68 65 20 74 6f 70 20 6f 66 20 74 68 69 73 20 70 61 67 65 29 00 54 6f 20 | ion.at.the.top.of.this.page).To. |
| 13f6e0 | 61 70 70 6c 79 20 74 68 69 73 20 70 6f 6c 69 63 79 20 74 6f 20 74 68 65 20 63 6f 72 72 65 63 74 | apply.this.policy.to.the.correct |
| 13f700 | 20 69 6e 74 65 72 66 61 63 65 2c 20 63 6f 6e 66 69 67 75 72 65 20 69 74 20 6f 6e 20 74 68 65 20 | .interface,.configure.it.on.the. |
| 13f720 | 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 69 6e 62 6f 75 6e 64 20 6c 6f 63 61 6c 20 68 6f 73 74 | interface.the.inbound.local.host |
| 13f740 | 20 77 69 6c 6c 20 73 65 6e 64 20 74 68 72 6f 75 67 68 20 74 6f 20 72 65 61 63 68 20 6f 75 72 20 | .will.send.through.to.reach.our. |
| 13f760 | 64 65 73 74 69 6e 65 64 20 74 61 72 67 65 74 20 68 6f 73 74 20 28 69 6e 20 6f 75 72 20 65 78 61 | destined.target.host.(in.our.exa |
| 13f780 | 6d 70 6c 65 20 65 74 68 31 29 2e 00 54 6f 20 61 75 74 6f 20 75 70 64 61 74 65 20 74 68 65 20 62 | mple.eth1)..To.auto.update.the.b |
| 13f7a0 | 6c 61 63 6b 6c 69 73 74 20 66 69 6c 65 73 00 54 6f 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 | lacklist.files.To.automatically. |
| 13f7c0 | 61 73 73 69 67 6e 20 74 68 65 20 63 6c 69 65 6e 74 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 | assign.the.client.an.IP.address. |
| 13f7e0 | 61 73 20 74 75 6e 6e 65 6c 20 65 6e 64 70 6f 69 6e 74 2c 20 61 20 63 6c 69 65 6e 74 20 49 50 20 | as.tunnel.endpoint,.a.client.IP. |
| 13f800 | 70 6f 6f 6c 20 69 73 20 6e 65 65 64 65 64 2e 20 54 68 65 20 73 6f 75 72 63 65 20 63 61 6e 20 62 | pool.is.needed..The.source.can.b |
| 13f820 | 65 20 65 69 74 68 65 72 20 52 41 44 49 55 53 20 6f 72 20 61 20 6c 6f 63 61 6c 20 73 75 62 6e 65 | e.either.RADIUS.or.a.local.subne |
| 13f840 | 74 20 6f 72 20 49 50 20 72 61 6e 67 65 20 64 65 66 69 6e 69 74 69 6f 6e 2e 00 54 6f 20 61 75 74 | t.or.IP.range.definition..To.aut |
| 13f860 | 6f 6d 61 74 69 63 61 6c 6c 79 20 61 73 73 69 67 6e 20 74 68 65 20 63 6c 69 65 6e 74 20 61 6e 20 | omatically.assign.the.client.an. |
| 13f880 | 49 50 20 61 64 64 72 65 73 73 20 61 73 20 74 75 6e 6e 65 6c 20 65 6e 64 70 6f 69 6e 74 2c 20 61 | IP.address.as.tunnel.endpoint,.a |
| 13f8a0 | 20 63 6c 69 65 6e 74 20 49 50 20 70 6f 6f 6c 20 69 73 20 6e 65 65 64 65 64 2e 20 54 68 65 20 73 | .client.IP.pool.is.needed..The.s |
| 13f8c0 | 6f 75 72 63 65 20 63 61 6e 20 62 65 20 65 69 74 68 65 72 20 52 41 44 49 55 53 20 6f 72 20 61 20 | ource.can.be.either.RADIUS.or.a. |
| 13f8e0 | 6e 61 6d 65 64 20 70 6f 6f 6c 2e 20 54 68 65 72 65 20 69 73 20 70 6f 73 73 69 62 69 6c 69 74 79 | named.pool..There.is.possibility |
| 13f900 | 20 74 6f 20 63 72 65 61 74 65 20 6d 75 6c 74 69 70 6c 65 20 6e 61 6d 65 64 20 70 6f 6f 6c 73 2e | .to.create.multiple.named.pools. |
| 13f920 | 20 45 61 63 68 20 6e 61 6d 65 64 20 70 6f 6f 6c 20 63 61 6e 20 69 6e 63 6c 75 64 65 20 6f 6e 6c | .Each.named.pool.can.include.onl |
| 13f940 | 79 20 6f 6e 65 20 61 64 64 72 65 73 73 20 72 61 6e 67 65 2e 20 54 6f 20 75 73 65 20 6d 75 6c 74 | y.one.address.range..To.use.mult |
| 13f960 | 69 70 6c 65 20 61 64 64 72 65 73 73 20 72 61 6e 67 65 73 20 63 6f 6e 66 69 67 75 72 65 20 60 60 | iple.address.ranges.configure.`` |
| 13f980 | 6e 65 78 74 2d 70 6f 6f 6c 60 60 20 6f 70 74 69 6f 6e 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f | next-pool``.option..To.be.used.o |
| 13f9a0 | 6e 6c 79 20 77 68 65 6e 20 60 60 61 63 74 69 6f 6e 60 60 20 69 73 20 73 65 74 20 74 6f 20 60 60 | nly.when.``action``.is.set.to.`` |
| 13f9c0 | 6a 75 6d 70 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 | jump``..Use.this.command.to.spec |
| 13f9e0 | 69 66 79 20 6a 75 6d 70 20 74 61 72 67 65 74 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 | ify.jump.target..To.be.used.only |
| 13fa00 | 20 77 68 65 6e 20 60 60 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 60 60 20 69 73 20 73 65 74 20 | .when.``default-action``.is.set. |
| 13fa20 | 74 6f 20 60 60 6a 75 6d 70 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | to.``jump``..Use.this.command.to |
| 13fa40 | 20 73 70 65 63 69 66 79 20 6a 75 6d 70 20 74 61 72 67 65 74 20 66 6f 72 20 64 65 66 61 75 6c 74 | .specify.jump.target.for.default |
| 13fa60 | 20 72 75 6c 65 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 60 60 64 65 | .rule..To.be.used.only.when.``de |
| 13fa80 | 66 61 75 6c 74 2d 61 63 74 69 6f 6e 60 60 20 69 73 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 | fault-action``.is.set.to.``jump` |
| 13faa0 | 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 | `..Use.this.command.to.specify.t |
| 13fac0 | 68 65 20 6a 75 6d 70 20 74 61 72 67 65 74 20 66 6f 72 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 | he.jump.target.for.the.default.r |
| 13fae0 | 75 6c 65 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 60 60 64 65 66 75 | ule..To.be.used.only.when.``defu |
| 13fb00 | 6c 74 2d 61 63 74 69 6f 6e 60 60 20 69 73 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2e 20 | lt-action``.is.set.to.``jump``.. |
| 13fb20 | 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 6a 75 6d 70 | Use.this.command.to.specify.jump |
| 13fb40 | 20 74 61 72 67 65 74 20 66 6f 72 20 64 65 66 61 75 6c 74 20 72 75 6c 65 2e 00 54 6f 20 62 65 20 | .target.for.default.rule..To.be. |
| 13fb60 | 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 | used.only.when.action.is.set.to. |
| 13fb80 | 60 60 6a 75 6d 70 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 | ``jump``..Use.this.command.to.sp |
| 13fba0 | 65 63 69 66 79 20 6a 75 6d 70 20 74 61 72 67 65 74 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e | ecify.jump.target..To.be.used.on |
| 13fbc0 | 6c 79 20 77 68 65 6e 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 | ly.when.action.is.set.to.``jump` |
| 13fbe0 | 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 | `..Use.this.command.to.specify.t |
| 13fc00 | 68 65 20 6a 75 6d 70 20 74 61 72 67 65 74 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 | he.jump.target..To.be.used.only. |
| 13fc20 | 77 68 65 6e 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 71 75 65 75 65 60 60 2e | when.action.is.set.to.``queue``. |
| 13fc40 | 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 69 73 74 72 69 62 75 74 65 20 | .Use.this.command.to.distribute. |
| 13fc60 | 70 61 63 6b 65 74 73 20 62 65 74 77 65 65 6e 20 73 65 76 65 72 61 6c 20 71 75 65 75 65 73 2e 00 | packets.between.several.queues.. |
| 13fc80 | 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 61 63 74 69 6f 6e 20 69 73 20 73 | To.be.used.only.when.action.is.s |
| 13fca0 | 65 74 20 74 6f 20 60 60 71 75 65 75 65 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | et.to.``queue``..Use.this.comman |
| 13fcc0 | 64 20 74 6f 20 6c 65 74 20 70 61 63 6b 65 74 20 67 6f 20 74 68 72 6f 75 67 68 20 66 69 72 65 77 | d.to.let.packet.go.through.firew |
| 13fce0 | 61 6c 6c 20 77 68 65 6e 20 6e 6f 20 75 73 65 72 73 70 61 63 65 20 73 6f 66 74 77 61 72 65 20 69 | all.when.no.userspace.software.i |
| 13fd00 | 73 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 65 20 71 75 65 75 65 2e 00 54 6f 20 62 65 20 | s.connected.to.the.queue..To.be. |
| 13fd20 | 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 | used.only.when.action.is.set.to. |
| 13fd40 | 60 60 71 75 65 75 65 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6c | ``queue``..Use.this.command.to.l |
| 13fd60 | 65 74 20 74 68 65 20 70 61 63 6b 65 74 20 67 6f 20 74 68 72 6f 75 67 68 20 66 69 72 65 77 61 6c | et.the.packet.go.through.firewal |
| 13fd80 | 6c 20 77 68 65 6e 20 6e 6f 20 75 73 65 72 73 70 61 63 65 20 73 6f 66 74 77 61 72 65 20 69 73 20 | l.when.no.userspace.software.is. |
| 13fda0 | 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 65 20 71 75 65 75 65 2e 00 54 6f 20 62 65 20 75 73 | connected.to.the.queue..To.be.us |
| 13fdc0 | 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 | ed.only.when.action.is.set.to.`` |
| 13fde0 | 71 75 65 75 65 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 | queue``..Use.this.command.to.spe |
| 13fe00 | 63 69 66 79 20 71 75 65 75 65 20 74 61 72 67 65 74 20 74 6f 20 75 73 65 2e 20 51 75 65 75 65 20 | cify.queue.target.to.use..Queue. |
| 13fe20 | 72 61 6e 67 65 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 54 6f 20 62 65 20 75 | range.is.also.supported..To.be.u |
| 13fe40 | 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 | sed.only.when.action.is.set.to.` |
| 13fe60 | 60 71 75 65 75 65 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 | `queue``..Use.this.command.to.sp |
| 13fe80 | 65 63 69 66 79 20 74 68 65 20 71 75 65 75 65 20 74 61 72 67 65 74 20 74 6f 20 75 73 65 2e 20 51 | ecify.the.queue.target.to.use..Q |
| 13fea0 | 75 65 75 65 20 72 61 6e 67 65 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 54 6f | ueue.range.is.also.supported..To |
| 13fec0 | 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 | .be.used.only.when.action.is.set |
| 13fee0 | 20 74 6f 20 6a 75 6d 70 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 | .to.jump..Use.this.command.to.sp |
| 13ff00 | 65 63 69 66 79 20 6a 75 6d 70 20 74 61 72 67 65 74 2e 00 54 6f 20 62 79 70 61 73 73 20 74 68 65 | ecify.jump.target..To.bypass.the |
| 13ff20 | 20 70 72 6f 78 79 20 66 6f 72 20 65 76 65 72 79 20 72 65 71 75 65 73 74 20 74 68 61 74 20 69 73 | .proxy.for.every.request.that.is |
| 13ff40 | 20 63 6f 6d 69 6e 67 20 66 72 6f 6d 20 61 20 73 70 65 63 69 66 69 63 20 73 6f 75 72 63 65 3a 00 | .coming.from.a.specific.source:. |
| 13ff60 | 54 6f 20 62 79 70 61 73 73 20 74 68 65 20 70 72 6f 78 79 20 66 6f 72 20 65 76 65 72 79 20 72 65 | To.bypass.the.proxy.for.every.re |
| 13ff80 | 71 75 65 73 74 20 74 68 61 74 20 69 73 20 64 69 72 65 63 74 65 64 20 74 6f 20 61 20 73 70 65 63 | quest.that.is.directed.to.a.spec |
| 13ffa0 | 69 66 69 63 20 64 65 73 74 69 6e 61 74 69 6f 6e 3a 00 54 6f 20 63 6f 6e 66 69 67 75 72 65 20 49 | ific.destination:.To.configure.I |
| 13ffc0 | 50 76 36 20 61 73 73 69 67 6e 6d 65 6e 74 73 20 66 6f 72 20 63 6c 69 65 6e 74 73 2c 20 74 77 6f | Pv6.assignments.for.clients,.two |
| 13ffe0 | 20 6f 70 74 69 6f 6e 73 20 6e 65 65 64 20 74 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 | .options.need.to.be.configured.. |
| 140000 | 41 20 67 6c 6f 62 61 6c 20 70 72 65 66 69 78 20 77 68 69 63 68 20 69 73 20 74 65 72 6d 69 6e 61 | A.global.prefix.which.is.termina |
| 140020 | 74 65 64 20 6f 6e 20 74 68 65 20 63 6c 69 65 6e 74 73 20 63 70 65 20 61 6e 64 20 61 20 64 65 6c | ted.on.the.clients.cpe.and.a.del |
| 140040 | 65 67 61 74 65 64 20 70 72 65 66 69 78 2c 20 74 68 65 20 63 6c 69 65 6e 74 20 63 61 6e 20 75 73 | egated.prefix,.the.client.can.us |
| 140060 | 65 20 66 6f 72 20 64 65 76 69 63 65 73 20 72 6f 75 74 65 64 20 76 69 61 20 74 68 65 20 63 6c 69 | e.for.devices.routed.via.the.cli |
| 140080 | 65 6e 74 73 20 63 70 65 2e 00 54 6f 20 63 6f 6e 66 69 67 75 72 65 20 56 79 4f 53 20 77 69 74 68 | ents.cpe..To.configure.VyOS.with |
| 1400a0 | 20 74 68 65 20 3a 64 6f 63 3a 60 6c 65 67 61 63 79 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 | .the.:doc:`legacy.firewall.confi |
| 1400c0 | 67 75 72 61 74 69 6f 6e 20 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c | guration.</configuration/firewal |
| 1400e0 | 6c 2f 67 65 6e 65 72 61 6c 2d 6c 65 67 61 63 79 3e 60 00 54 6f 20 63 6f 6e 66 69 67 75 72 65 20 | l/general-legacy>`.To.configure. |
| 140100 | 56 79 4f 53 20 77 69 74 68 20 74 68 65 20 3a 64 6f 63 3a 60 7a 6f 6e 65 2d 62 61 73 65 64 20 66 | VyOS.with.the.:doc:`zone-based.f |
| 140120 | 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 3c 2f 63 6f 6e 66 69 67 75 72 | irewall.configuration.</configur |
| 140140 | 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 7a 6f 6e 65 3e 60 00 54 6f 20 63 6f 6e 66 69 67 75 | ation/firewall/zone>`.To.configu |
| 140160 | 72 65 20 56 79 4f 53 20 77 69 74 68 20 74 68 65 20 6e 65 77 20 3a 64 6f 63 3a 60 66 69 72 65 77 | re.VyOS.with.the.new.:doc:`firew |
| 140180 | 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f | all.configuration.</configuratio |
| 1401a0 | 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 3e 60 00 54 6f 20 63 6f 6e 66 69 67 75 72 | n/firewall/general>`.To.configur |
| 1401c0 | 65 20 62 6c 6f 63 6b 69 6e 67 20 61 64 64 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 74 6f 20 | e.blocking.add.the.following.to. |
| 1401e0 | 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 54 6f 20 63 6f 6e 66 69 67 75 72 65 20 73 | the.configuration.To.configure.s |
| 140200 | 69 74 65 2d 74 6f 2d 73 69 74 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 79 6f 75 20 6e 65 65 64 20 | ite-to-site.connection.you.need. |
| 140220 | 74 6f 20 61 64 64 20 70 65 65 72 73 20 77 69 74 68 20 74 68 65 20 60 60 73 65 74 20 76 70 6e 20 | to.add.peers.with.the.``set.vpn. |
| 140240 | 69 70 73 65 63 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 70 65 65 72 20 3c 6e 61 6d 65 3e 60 60 | ipsec.site-to-site.peer.<name>`` |
| 140260 | 20 63 6f 6d 6d 61 6e 64 2e 00 54 6f 20 63 6f 6e 66 69 67 75 72 65 20 73 79 73 6c 6f 67 2c 20 79 | .command..To.configure.syslog,.y |
| 140280 | 6f 75 20 6e 65 65 64 20 74 6f 20 73 77 69 74 63 68 20 69 6e 74 6f 20 63 6f 6e 66 69 67 75 72 61 | ou.need.to.switch.into.configura |
| 1402a0 | 74 69 6f 6e 20 6d 6f 64 65 2e 00 54 6f 20 63 6f 6e 66 69 67 75 72 65 20 79 6f 75 72 20 4c 43 44 | tion.mode..To.configure.your.LCD |
| 1402c0 | 20 64 69 73 70 6c 61 79 20 79 6f 75 20 6d 75 73 74 20 66 69 72 73 74 20 69 64 65 6e 74 69 66 79 | .display.you.must.first.identify |
| 1402e0 | 20 74 68 65 20 75 73 65 64 20 68 61 72 64 77 61 72 65 2c 20 61 6e 64 20 63 6f 6e 6e 65 63 74 69 | .the.used.hardware,.and.connecti |
| 140300 | 76 69 74 79 20 6f 66 20 74 68 65 20 64 69 73 70 6c 61 79 20 74 6f 20 79 6f 75 72 20 73 79 73 74 | vity.of.the.display.to.your.syst |
| 140320 | 65 6d 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 61 6e 79 20 73 65 72 69 61 6c 20 70 6f 72 74 20 | em..This.can.be.any.serial.port. |
| 140340 | 28 60 74 74 79 53 78 78 60 29 20 6f 72 20 73 65 72 69 61 6c 20 76 69 61 20 55 53 42 20 6f 72 20 | (`ttySxx`).or.serial.via.USB.or. |
| 140360 | 65 76 65 6e 20 6f 6c 64 20 70 61 72 61 6c 6c 65 6c 20 70 6f 72 74 20 69 6e 74 65 72 66 61 63 65 | even.old.parallel.port.interface |
| 140380 | 73 2e 00 54 6f 20 63 72 65 61 74 65 20 56 4c 41 4e 73 20 70 65 72 20 75 73 65 72 20 64 75 72 69 | s..To.create.VLANs.per.user.duri |
| 1403a0 | 6e 67 20 72 75 6e 74 69 6d 65 2c 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 65 74 74 69 6e | ng.runtime,.the.following.settin |
| 1403c0 | 67 73 20 61 72 65 20 72 65 71 75 69 72 65 64 20 6f 6e 20 61 20 70 65 72 20 69 6e 74 65 72 66 61 | gs.are.required.on.a.per.interfa |
| 1403e0 | 63 65 20 62 61 73 69 73 2e 20 56 4c 41 4e 20 49 44 20 61 6e 64 20 56 4c 41 4e 20 72 61 6e 67 65 | ce.basis..VLAN.ID.and.VLAN.range |
| 140400 | 20 63 61 6e 20 62 65 20 70 72 65 73 65 6e 74 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 | .can.be.present.in.the.configura |
| 140420 | 74 69 6f 6e 20 61 74 20 74 68 65 20 73 61 6d 65 20 74 69 6d 65 2e 00 54 6f 20 63 72 65 61 74 65 | tion.at.the.same.time..To.create |
| 140440 | 20 61 20 6e 65 77 20 6c 69 6e 65 20 69 6e 20 79 6f 75 72 20 6c 6f 67 69 6e 20 6d 65 73 73 61 67 | .a.new.line.in.your.login.messag |
| 140460 | 65 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 65 73 63 61 70 65 20 74 68 65 20 6e 65 77 20 6c 69 6e | e.you.need.to.escape.the.new.lin |
| 140480 | 65 20 63 68 61 72 61 63 74 65 72 20 62 79 20 75 73 69 6e 67 20 60 60 5c 5c 6e 60 60 2e 00 54 6f | e.character.by.using.``\\n``..To |
| 1404a0 | 20 63 72 65 61 74 65 20 6d 6f 72 65 20 74 68 61 6e 20 6f 6e 65 20 74 75 6e 6e 65 6c 2c 20 75 73 | .create.more.than.one.tunnel,.us |
| 1404c0 | 65 20 64 69 73 74 69 6e 63 74 20 55 44 50 20 70 6f 72 74 73 2e 00 54 6f 20 63 72 65 61 74 65 20 | e.distinct.UDP.ports..To.create. |
| 1404e0 | 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 31 30 30 20 61 6e 64 20 61 64 64 20 61 20 6e 65 77 20 | routing.table.100.and.add.a.new. |
| 140500 | 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 20 74 6f 20 62 65 20 75 73 65 64 20 62 79 20 74 72 | default.gateway.to.be.used.by.tr |
| 140520 | 61 66 66 69 63 20 6d 61 74 63 68 69 6e 67 20 6f 75 72 20 72 6f 75 74 65 20 70 6f 6c 69 63 79 3a | affic.matching.our.route.policy: |
| 140540 | 00 54 6f 20 64 65 66 69 6e 65 20 61 20 7a 6f 6e 65 20 73 65 74 75 70 20 65 69 74 68 65 72 20 6f | .To.define.a.zone.setup.either.o |
| 140560 | 6e 65 20 77 69 74 68 20 69 6e 74 65 72 66 61 63 65 73 20 6f 72 20 61 20 6c 6f 63 61 6c 20 7a 6f | ne.with.interfaces.or.a.local.zo |
| 140580 | 6e 65 2e 00 54 6f 20 64 69 73 61 62 6c 65 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 73 20 77 69 | ne..To.disable.advertisements.wi |
| 1405a0 | 74 68 6f 75 74 20 64 65 6c 65 74 69 6e 67 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | thout.deleting.the.configuration |
| 1405c0 | 3a 00 54 6f 20 64 69 73 70 6c 61 79 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 4f 54 50 20 | :.To.display.the.configured.OTP. |
| 1405e0 | 75 73 65 72 20 6b 65 79 2c 20 75 73 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 3a 00 54 6f 20 64 69 | user.key,.use.the.command:.To.di |
| 140600 | 73 70 6c 61 79 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 4f 54 50 20 75 73 65 72 20 73 65 | splay.the.configured.OTP.user.se |
| 140620 | 74 74 69 6e 67 73 2c 20 75 73 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 3a 00 54 6f 20 65 6e 61 62 | ttings,.use.the.command:.To.enab |
| 140640 | 6c 65 20 4d 4c 44 20 72 65 70 6f 72 74 73 20 61 6e 64 20 71 75 65 72 79 20 6f 6e 20 69 6e 74 65 | le.MLD.reports.and.query.on.inte |
| 140660 | 72 66 61 63 65 73 20 60 65 74 68 30 60 20 61 6e 64 20 60 65 74 68 31 60 3a 00 54 6f 20 65 6e 61 | rfaces.`eth0`.and.`eth1`:.To.ena |
| 140680 | 62 6c 65 20 52 41 44 49 55 53 20 62 61 73 65 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2c | ble.RADIUS.based.authentication, |
| 1406a0 | 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 6f 64 65 20 6e 65 65 64 73 20 74 | .the.authentication.mode.needs.t |
| 1406c0 | 6f 20 62 65 20 63 68 61 6e 67 65 64 20 77 69 74 68 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 | o.be.changed.within.the.configur |
| 1406e0 | 61 74 69 6f 6e 2e 20 50 72 65 76 69 6f 75 73 20 73 65 74 74 69 6e 67 73 20 6c 69 6b 65 20 74 68 | ation..Previous.settings.like.th |
| 140700 | 65 20 6c 6f 63 61 6c 20 75 73 65 72 73 20 73 74 69 6c 6c 20 65 78 69 73 74 20 77 69 74 68 69 6e | e.local.users.still.exist.within |
| 140720 | 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 68 6f 77 65 76 65 72 20 74 68 65 79 | .the.configuration,.however.they |
| 140740 | 20 61 72 65 20 6e 6f 74 20 75 73 65 64 20 69 66 20 74 68 65 20 6d 6f 64 65 20 68 61 73 20 62 65 | .are.not.used.if.the.mode.has.be |
| 140760 | 65 6e 20 63 68 61 6e 67 65 64 20 66 72 6f 6d 20 6c 6f 63 61 6c 20 74 6f 20 72 61 64 69 75 73 2e | en.changed.from.local.to.radius. |
| 140780 | 20 4f 6e 63 65 20 63 68 61 6e 67 65 64 20 62 61 63 6b 20 74 6f 20 6c 6f 63 61 6c 2c 20 69 74 20 | .Once.changed.back.to.local,.it. |
| 1407a0 | 77 69 6c 6c 20 75 73 65 20 61 6c 6c 20 6c 6f 63 61 6c 20 61 63 63 6f 75 6e 74 73 20 61 67 61 69 | will.use.all.local.accounts.agai |
| 1407c0 | 6e 2e 00 54 6f 20 65 6e 61 62 6c 65 20 52 41 44 49 55 53 20 62 61 73 65 64 20 61 75 74 68 65 6e | n..To.enable.RADIUS.based.authen |
| 1407e0 | 74 69 63 61 74 69 6f 6e 2c 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 6f 64 | tication,.the.authentication.mod |
| 140800 | 65 20 6e 65 65 64 73 20 74 6f 20 62 65 20 63 68 61 6e 67 65 64 20 77 69 74 68 69 6e 20 74 68 65 | e.needs.to.be.changed.within.the |
| 140820 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 50 72 65 76 69 6f 75 73 20 73 65 74 74 69 6e 67 | .configuration..Previous.setting |
| 140840 | 73 20 6c 69 6b 65 20 74 68 65 20 6c 6f 63 61 6c 20 75 73 65 72 73 2c 20 73 74 69 6c 6c 20 65 78 | s.like.the.local.users,.still.ex |
| 140860 | 69 73 74 73 20 77 69 74 68 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 68 | ists.within.the.configuration,.h |
| 140880 | 6f 77 65 76 65 72 20 74 68 65 79 20 61 72 65 20 6e 6f 74 20 75 73 65 64 20 69 66 20 74 68 65 20 | owever.they.are.not.used.if.the. |
| 1408a0 | 6d 6f 64 65 20 68 61 73 20 62 65 65 6e 20 63 68 61 6e 67 65 64 20 66 72 6f 6d 20 6c 6f 63 61 6c | mode.has.been.changed.from.local |
| 1408c0 | 20 74 6f 20 72 61 64 69 75 73 2e 20 4f 6e 63 65 20 63 68 61 6e 67 65 64 20 62 61 63 6b 20 74 6f | .to.radius..Once.changed.back.to |
| 1408e0 | 20 6c 6f 63 61 6c 2c 20 69 74 20 77 69 6c 6c 20 75 73 65 20 61 6c 6c 20 6c 6f 63 61 6c 20 61 63 | .local,.it.will.use.all.local.ac |
| 140900 | 63 6f 75 6e 74 73 20 61 67 61 69 6e 2e 00 54 6f 20 65 6e 61 62 6c 65 20 62 61 6e 64 77 69 64 74 | counts.again..To.enable.bandwidt |
| 140920 | 68 20 73 68 61 70 69 6e 67 20 76 69 61 20 52 41 44 49 55 53 2c 20 74 68 65 20 6f 70 74 69 6f 6e | h.shaping.via.RADIUS,.the.option |
| 140940 | 20 72 61 74 65 2d 6c 69 6d 69 74 20 6e 65 65 64 73 20 74 6f 20 62 65 20 65 6e 61 62 6c 65 64 2e | .rate-limit.needs.to.be.enabled. |
| 140960 | 00 54 6f 20 65 6e 61 62 6c 65 20 64 65 62 75 67 20 6d 65 73 73 61 67 65 73 2e 20 41 76 61 69 6c | .To.enable.debug.messages..Avail |
| 140980 | 61 62 6c 65 20 76 69 61 20 3a 6f 70 63 6d 64 3a 60 73 68 6f 77 20 6c 6f 67 60 20 6f 72 20 3a 6f | able.via.:opcmd:`show.log`.or.:o |
| 1409a0 | 70 63 6d 64 3a 60 6d 6f 6e 69 74 6f 72 20 6c 6f 67 60 00 54 6f 20 65 6e 61 62 6c 65 20 6d 44 4e | pcmd:`monitor.log`.To.enable.mDN |
| 1409c0 | 53 20 72 65 70 65 61 74 65 72 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 | S.repeater.you.need.to.configure |
| 1409e0 | 20 61 74 20 6c 65 61 73 74 20 74 77 6f 20 69 6e 74 65 72 66 61 63 65 73 20 73 6f 20 74 68 61 74 | .at.least.two.interfaces.so.that |
| 140a00 | 20 61 6c 6c 20 69 6e 63 6f 6d 69 6e 67 20 6d 44 4e 53 20 70 61 63 6b 65 74 73 20 66 72 6f 6d 20 | .all.incoming.mDNS.packets.from. |
| 140a20 | 6f 6e 65 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e 66 69 67 75 72 65 64 20 68 65 72 65 20 63 61 | one.interface.configured.here.ca |
| 140a40 | 6e 20 62 65 20 72 65 2d 62 72 6f 61 64 63 61 73 74 65 64 20 74 6f 20 61 6e 79 20 6f 74 68 65 72 | n.be.re-broadcasted.to.any.other |
| 140a60 | 20 69 6e 74 65 72 66 61 63 65 28 73 29 20 63 6f 6e 66 69 67 75 72 65 64 20 75 6e 64 65 72 20 74 | .interface(s).configured.under.t |
| 140a80 | 68 69 73 20 73 65 63 74 69 6f 6e 2e 00 54 6f 20 65 6e 61 62 6c 65 20 6d 44 4e 53 20 72 65 70 65 | his.section..To.enable.mDNS.repe |
| 140aa0 | 61 74 65 72 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 74 20 6c 65 | ater.you.need.to.configure.at.le |
| 140ac0 | 61 73 74 20 74 77 6f 20 69 6e 74 65 72 66 61 63 65 73 2e 20 54 6f 20 72 65 2d 62 72 6f 61 64 63 | ast.two.interfaces..To.re-broadc |
| 140ae0 | 61 73 74 20 61 6c 6c 20 69 6e 63 6f 6d 69 6e 67 20 6d 44 4e 53 20 70 61 63 6b 65 74 73 20 66 72 | ast.all.incoming.mDNS.packets.fr |
| 140b00 | 6f 6d 20 61 6e 79 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e 66 69 67 75 72 65 64 20 68 65 72 65 | om.any.interface.configured.here |
| 140b20 | 20 74 6f 20 61 6e 79 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e 66 69 67 75 72 | .to.any.other.interface.configur |
| 140b40 | 65 64 20 75 6e 64 65 72 20 74 68 69 73 20 73 65 63 74 69 6f 6e 2e 00 54 6f 20 65 6e 61 62 6c 65 | ed.under.this.section..To.enable |
| 140b60 | 20 74 68 65 20 48 54 54 50 20 73 65 63 75 72 69 74 79 20 68 65 61 64 65 72 73 20 69 6e 20 74 68 | .the.HTTP.security.headers.in.th |
| 140b80 | 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 69 6c 65 2c 20 75 73 65 20 74 68 65 20 63 6f | e.configuration.file,.use.the.co |
| 140ba0 | 6d 6d 61 6e 64 3a 00 54 6f 20 65 6e 61 62 6c 65 2f 64 69 73 61 62 6c 65 20 68 65 6c 70 65 72 20 | mmand:.To.enable/disable.helper. |
| 140bc0 | 73 75 70 70 6f 72 74 20 66 6f 72 20 61 20 73 70 65 63 69 66 69 63 20 6e 65 69 67 68 62 6f 75 72 | support.for.a.specific.neighbour |
| 140be0 | 2c 20 74 68 65 20 72 6f 75 74 65 72 2d 69 64 20 28 41 2e 42 2e 43 2e 44 29 20 68 61 73 20 74 6f | ,.the.router-id.(A.B.C.D).has.to |
| 140c00 | 20 62 65 20 73 70 65 63 69 66 69 65 64 2e 00 54 6f 20 65 78 63 6c 75 64 65 20 74 72 61 66 66 69 | .be.specified..To.exclude.traffi |
| 140c20 | 63 20 66 72 6f 6d 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 2c 20 74 72 61 66 66 69 63 20 6d | c.from.load.balancing,.traffic.m |
| 140c40 | 61 74 63 68 69 6e 67 20 61 6e 20 65 78 63 6c 75 64 65 20 72 75 6c 65 20 69 73 20 6e 6f 74 20 62 | atching.an.exclude.rule.is.not.b |
| 140c60 | 61 6c 61 6e 63 65 64 20 62 75 74 20 72 6f 75 74 65 64 20 74 68 72 6f 75 67 68 20 74 68 65 20 73 | alanced.but.routed.through.the.s |
| 140c80 | 79 73 74 65 6d 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 69 6e 73 74 65 61 64 3a 00 54 6f 20 | ystem.routing.table.instead:.To. |
| 140ca0 | 65 78 70 6c 61 69 6e 20 74 68 65 20 75 73 61 67 65 20 6f 66 20 4c 4e 53 20 66 6f 6c 6c 6f 77 20 | explain.the.usage.of.LNS.follow. |
| 140cc0 | 6f 75 72 20 62 6c 75 65 70 72 69 6e 74 20 3a 72 65 66 3a 60 65 78 61 6d 70 6c 65 73 2d 6c 61 63 | our.blueprint.:ref:`examples-lac |
| 140ce0 | 2d 6c 6e 73 60 2e 00 54 6f 20 65 78 74 65 6e 64 20 53 4e 4d 50 20 61 67 65 6e 74 20 66 75 6e 63 | -lns`..To.extend.SNMP.agent.func |
| 140d00 | 74 69 6f 6e 61 6c 69 74 79 2c 20 63 75 73 74 6f 6d 20 73 63 72 69 70 74 73 20 63 61 6e 20 62 65 | tionality,.custom.scripts.can.be |
| 140d20 | 20 65 78 65 63 75 74 65 64 20 65 76 65 72 79 20 74 69 6d 65 20 74 68 65 20 61 67 65 6e 74 20 69 | .executed.every.time.the.agent.i |
| 140d40 | 73 20 62 65 69 6e 67 20 63 61 6c 6c 65 64 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 61 63 68 69 | s.being.called..This.can.be.achi |
| 140d60 | 65 76 65 64 20 62 79 20 75 73 69 6e 67 20 60 60 61 72 62 69 74 72 61 72 79 20 65 78 74 65 6e 73 | eved.by.using.``arbitrary.extens |
| 140d80 | 69 6f 6e 63 6f 6d 6d 61 6e 64 73 60 60 2e 20 54 68 65 20 66 69 72 73 74 20 73 74 65 70 20 69 73 | ioncommands``..The.first.step.is |
| 140da0 | 20 74 6f 20 63 72 65 61 74 65 20 61 20 66 75 6e 63 74 69 6f 6e 61 6c 20 73 63 72 69 70 74 20 6f | .to.create.a.functional.script.o |
| 140dc0 | 66 20 63 6f 75 72 73 65 2c 20 74 68 65 6e 20 75 70 6c 6f 61 64 20 69 74 20 74 6f 20 79 6f 75 72 | f.course,.then.upload.it.to.your |
| 140de0 | 20 56 79 4f 53 20 69 6e 73 74 61 6e 63 65 20 76 69 61 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 60 | .VyOS.instance.via.the.command.` |
| 140e00 | 60 73 63 70 20 79 6f 75 72 5f 73 63 72 69 70 74 2e 73 68 20 76 79 6f 73 40 79 6f 75 72 5f 72 6f | `scp.your_script.sh.vyos@your_ro |
| 140e20 | 75 74 65 72 3a 2f 63 6f 6e 66 69 67 2f 75 73 65 72 2d 64 61 74 61 60 60 2e 20 4f 6e 63 65 20 74 | uter:/config/user-data``..Once.t |
| 140e40 | 68 65 20 73 63 72 69 70 74 20 69 73 20 75 70 6c 6f 61 64 65 64 2c 20 69 74 20 6e 65 65 64 73 20 | he.script.is.uploaded,.it.needs. |
| 140e60 | 74 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 76 69 61 20 74 68 65 20 63 6f 6d 6d 61 6e 64 | to.be.configured.via.the.command |
| 140e80 | 20 62 65 6c 6f 77 2e 00 54 6f 20 66 6f 72 77 61 72 64 20 61 6c 6c 20 62 72 6f 61 64 63 61 73 74 | .below..To.forward.all.broadcast |
| 140ea0 | 20 70 61 63 6b 65 74 73 20 72 65 63 65 69 76 65 64 20 6f 6e 20 60 55 44 50 20 70 6f 72 74 20 31 | .packets.received.on.`UDP.port.1 |
| 140ec0 | 39 30 30 60 20 6f 6e 20 60 65 74 68 33 60 2c 20 60 65 74 68 34 60 20 6f 72 20 60 65 74 68 35 60 | 900`.on.`eth3`,.`eth4`.or.`eth5` |
| 140ee0 | 20 74 6f 20 61 6c 6c 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 73 20 69 6e 20 74 68 69 73 | .to.all.other.interfaces.in.this |
| 140f00 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 6f 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 | .configuration..To.generate.the. |
| 140f20 | 43 41 2c 20 74 68 65 20 73 65 72 76 65 72 20 70 72 69 76 61 74 65 20 6b 65 79 20 61 6e 64 20 63 | CA,.the.server.private.key.and.c |
| 140f40 | 65 72 74 69 66 69 63 61 74 65 73 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e | ertificates.the.following.comman |
| 140f60 | 64 73 20 63 61 6e 20 62 65 20 75 73 65 64 2e 00 54 6f 20 67 65 74 20 69 74 20 74 6f 20 77 6f 72 | ds.can.be.used..To.get.it.to.wor |
| 140f80 | 6b 20 61 73 20 61 6e 20 61 63 63 65 73 73 20 70 6f 69 6e 74 20 77 69 74 68 20 74 68 69 73 20 63 | k.as.an.access.point.with.this.c |
| 140fa0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 79 6f 75 20 77 69 6c 6c 20 6e 65 65 64 20 74 6f 20 73 65 | onfiguration.you.will.need.to.se |
| 140fc0 | 74 20 75 70 20 61 20 44 48 43 50 20 73 65 72 76 65 72 20 74 6f 20 77 6f 72 6b 20 77 69 74 68 20 | t.up.a.DHCP.server.to.work.with. |
| 140fe0 | 74 68 61 74 20 6e 65 74 77 6f 72 6b 2e 20 59 6f 75 20 63 61 6e 20 2d 20 6f 66 20 63 6f 75 72 73 | that.network..You.can.-.of.cours |
| 141000 | 65 20 2d 20 61 6c 73 6f 20 62 72 69 64 67 65 20 74 68 65 20 57 69 72 65 6c 65 73 73 20 69 6e 74 | e.-.also.bridge.the.Wireless.int |
| 141020 | 65 72 66 61 63 65 20 77 69 74 68 20 61 6e 79 20 63 6f 6e 66 69 67 75 72 65 64 20 62 72 69 64 67 | erface.with.any.configured.bridg |
| 141040 | 65 20 28 3a 72 65 66 3a 60 62 72 69 64 67 65 2d 69 6e 74 65 72 66 61 63 65 60 29 20 6f 6e 20 74 | e.(:ref:`bridge-interface`).on.t |
| 141060 | 68 65 20 73 79 73 74 65 6d 2e 00 54 6f 20 68 61 6e 64 20 6f 75 74 20 69 6e 64 69 76 69 64 75 61 | he.system..To.hand.out.individua |
| 141080 | 6c 20 70 72 65 66 69 78 65 73 20 74 6f 20 79 6f 75 72 20 63 6c 69 65 6e 74 73 20 74 68 65 20 66 | l.prefixes.to.your.clients.the.f |
| 1410a0 | 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 75 73 65 64 3a 00 | ollowing.configuration.is.used:. |
| 1410c0 | 54 6f 20 69 6d 70 6f 72 74 20 69 74 20 66 72 6f 6d 20 74 68 65 20 66 69 6c 65 73 79 73 74 65 6d | To.import.it.from.the.filesystem |
| 1410e0 | 20 75 73 65 3a 00 54 6f 20 6b 6e 6f 77 20 6d 6f 72 65 20 61 62 6f 75 74 20 73 63 72 69 70 74 69 | .use:.To.know.more.about.scripti |
| 141100 | 6e 67 2c 20 63 68 65 63 6b 20 74 68 65 20 3a 72 65 66 3a 60 63 6f 6d 6d 61 6e 64 2d 73 63 72 69 | ng,.check.the.:ref:`command-scri |
| 141120 | 70 74 69 6e 67 60 20 73 65 63 74 69 6f 6e 2e 00 54 6f 20 6c 69 73 74 65 6e 20 6f 6e 20 62 6f 74 | pting`.section..To.listen.on.bot |
| 141140 | 68 20 60 65 74 68 30 60 20 61 6e 64 20 60 65 74 68 31 60 20 6d 44 4e 53 20 70 61 63 6b 65 74 73 | h.`eth0`.and.`eth1`.mDNS.packets |
| 141160 | 20 61 6e 64 20 61 6c 73 6f 20 72 65 70 65 61 74 20 70 61 63 6b 65 74 73 20 72 65 63 65 69 76 65 | .and.also.repeat.packets.receive |
| 141180 | 64 20 6f 6e 20 60 65 74 68 30 60 20 74 6f 20 60 65 74 68 31 60 20 28 61 6e 64 20 76 69 63 65 2d | d.on.`eth0`.to.`eth1`.(and.vice- |
| 1411a0 | 76 65 72 73 61 29 20 75 73 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 | versa).use.the.following.command |
| 1411c0 | 73 3a 00 54 6f 20 6d 61 6e 69 70 75 6c 61 74 65 20 6f 72 20 64 69 73 70 6c 61 79 20 41 52 50 5f | s:.To.manipulate.or.display.ARP_ |
| 1411e0 | 20 74 61 62 6c 65 20 65 6e 74 72 69 65 73 2c 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f | .table.entries,.the.following.co |
| 141200 | 6d 6d 61 6e 64 73 20 61 72 65 20 69 6d 70 6c 65 6d 65 6e 74 65 64 2e 00 54 6f 20 70 65 72 66 6f | mmands.are.implemented..To.perfo |
| 141220 | 72 6d 20 61 20 67 72 61 63 65 66 75 6c 20 73 68 75 74 64 6f 77 6e 2c 20 74 68 65 20 46 52 52 20 | rm.a.graceful.shutdown,.the.FRR. |
| 141240 | 60 60 67 72 61 63 65 66 75 6c 2d 72 65 73 74 61 72 74 20 70 72 65 70 61 72 65 20 69 70 20 6f 73 | ``graceful-restart.prepare.ip.os |
| 141260 | 70 66 60 60 20 45 58 45 43 2d 6c 65 76 65 6c 20 63 6f 6d 6d 61 6e 64 20 6e 65 65 64 73 20 74 6f | pf``.EXEC-level.command.needs.to |
| 141280 | 20 62 65 20 69 73 73 75 65 64 20 62 65 66 6f 72 65 20 72 65 73 74 61 72 74 69 6e 67 20 74 68 65 | .be.issued.before.restarting.the |
| 1412a0 | 20 6f 73 70 66 64 20 64 61 65 6d 6f 6e 2e 00 54 6f 20 70 72 65 76 65 6e 74 20 69 73 73 75 65 73 | .ospfd.daemon..To.prevent.issues |
| 1412c0 | 20 77 69 74 68 20 64 69 76 65 72 67 65 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 62 | .with.divergent.configurations.b |
| 1412e0 | 65 74 77 65 65 6e 20 74 68 65 20 70 61 69 72 20 6f 66 20 72 6f 75 74 65 72 73 2c 20 73 79 6e 63 | etween.the.pair.of.routers,.sync |
| 141300 | 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 69 73 20 73 74 72 69 63 74 6c 79 20 75 6e 69 64 69 72 65 63 | hronization.is.strictly.unidirec |
| 141320 | 74 69 6f 6e 61 6c 20 66 72 6f 6d 20 70 72 69 6d 61 72 79 20 74 6f 20 72 65 70 6c 69 63 61 2e 20 | tional.from.primary.to.replica.. |
| 141340 | 42 6f 74 68 20 72 6f 75 74 65 72 73 20 73 68 6f 75 6c 64 20 62 65 20 6f 6e 6c 69 6e 65 20 61 6e | Both.routers.should.be.online.an |
| 141360 | 64 20 72 75 6e 20 74 68 65 20 73 61 6d 65 20 76 65 72 73 69 6f 6e 20 6f 66 20 56 79 4f 53 2e 00 | d.run.the.same.version.of.VyOS.. |
| 141380 | 54 6f 20 72 65 71 75 65 73 74 20 61 20 2f 35 36 20 70 72 65 66 69 78 20 66 72 6f 6d 20 79 6f 75 | To.request.a./56.prefix.from.you |
| 1413a0 | 72 20 49 53 50 20 75 73 65 3a 00 54 6f 20 72 65 73 74 61 72 74 20 74 68 65 20 44 48 43 50 76 36 | r.ISP.use:.To.restart.the.DHCPv6 |
| 1413c0 | 20 73 65 72 76 65 72 00 54 6f 20 73 65 74 75 70 20 53 4e 41 54 2c 20 77 65 20 6e 65 65 64 20 74 | .server.To.setup.SNAT,.we.need.t |
| 1413e0 | 6f 20 6b 6e 6f 77 3a 00 54 6f 20 73 65 74 75 70 20 61 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 4e | o.know:.To.setup.a.destination.N |
| 141400 | 41 54 20 72 75 6c 65 20 77 65 20 6e 65 65 64 20 74 6f 20 67 61 74 68 65 72 3a 00 54 6f 20 75 70 | AT.rule.we.need.to.gather:.To.up |
| 141420 | 64 61 74 65 20 74 68 65 20 66 69 72 6d 77 61 72 65 2c 20 56 79 4f 53 20 61 6c 73 6f 20 73 68 69 | date.the.firmware,.VyOS.also.shi |
| 141440 | 70 73 20 74 68 65 20 60 71 6d 69 2d 66 69 72 6d 77 61 72 65 2d 75 70 64 61 74 65 60 20 62 69 6e | ps.the.`qmi-firmware-update`.bin |
| 141460 | 61 72 79 2e 20 54 6f 20 75 70 67 72 61 64 65 20 74 68 65 20 66 69 72 6d 77 61 72 65 20 6f 66 20 | ary..To.upgrade.the.firmware.of. |
| 141480 | 61 6e 20 65 2e 67 2e 20 53 69 65 72 72 61 20 57 69 72 65 6c 65 73 73 20 4d 43 37 37 31 30 20 6d | an.e.g..Sierra.Wireless.MC7710.m |
| 1414a0 | 6f 64 75 6c 65 20 74 6f 20 74 68 65 20 66 69 72 6d 77 61 72 65 20 70 72 6f 76 69 64 65 64 20 69 | odule.to.the.firmware.provided.i |
| 1414c0 | 6e 20 74 68 65 20 66 69 6c 65 20 60 60 39 39 39 39 39 39 39 5f 39 39 39 39 39 39 39 5f 39 32 30 | n.the.file.``9999999_9999999_920 |
| 1414e0 | 30 5f 30 33 2e 30 35 2e 31 34 2e 30 30 5f 30 30 5f 67 65 6e 65 72 69 63 5f 30 30 30 2e 30 30 30 | 0_03.05.14.00_00_generic_000.000 |
| 141500 | 5f 30 30 31 5f 53 50 4b 47 5f 4d 43 2e 63 77 65 60 60 20 75 73 65 20 74 68 65 20 66 6f 6c 6c 6f | _001_SPKG_MC.cwe``.use.the.follo |
| 141520 | 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 3a 00 54 6f 20 75 73 65 20 61 20 52 41 44 49 55 53 20 73 65 | wing.command:.To.use.a.RADIUS.se |
| 141540 | 72 76 65 72 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 6e 64 20 62 61 6e 64 | rver.for.authentication.and.band |
| 141560 | 77 69 64 74 68 2d 73 68 61 70 69 6e 67 2c 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 | width-shaping,.the.following.exa |
| 141580 | 6d 70 6c 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 61 6e 20 62 65 20 75 73 65 64 2e 00 | mple.configuration.can.be.used.. |
| 1415a0 | 54 6f 20 75 73 65 20 61 20 72 61 64 69 75 73 20 73 65 72 76 65 72 2c 20 79 6f 75 20 6e 65 65 64 | To.use.a.radius.server,.you.need |
| 1415c0 | 20 74 6f 20 73 77 69 74 63 68 20 74 6f 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 6f 64 | .to.switch.to.authentication.mod |
| 1415e0 | 65 20 52 41 44 49 55 53 20 61 6e 64 20 74 68 65 6e 20 63 6f 6e 66 69 67 75 72 65 20 69 74 2e 00 | e.RADIUS.and.then.configure.it.. |
| 141600 | 54 6f 20 75 73 65 20 73 75 63 68 20 61 20 73 65 72 76 69 63 65 2c 20 6f 6e 65 20 6d 75 73 74 20 | To.use.such.a.service,.one.must. |
| 141620 | 64 65 66 69 6e 65 20 61 20 6c 6f 67 69 6e 2c 20 70 61 73 73 77 6f 72 64 2c 20 6f 6e 65 20 6f 72 | define.a.login,.password,.one.or |
| 141640 | 20 6d 75 6c 74 69 70 6c 65 20 68 6f 73 74 6e 61 6d 65 73 2c 20 70 72 6f 74 6f 63 6f 6c 20 61 6e | .multiple.hostnames,.protocol.an |
| 141660 | 64 20 73 65 72 76 65 72 2e 00 54 6f 20 75 73 65 20 74 68 65 20 53 61 6c 74 2d 4d 69 6e 69 6f 6e | d.server..To.use.the.Salt-Minion |
| 141680 | 2c 20 61 20 72 75 6e 6e 69 6e 67 20 53 61 6c 74 2d 4d 61 73 74 65 72 20 69 73 20 72 65 71 75 69 | ,.a.running.Salt-Master.is.requi |
| 1416a0 | 72 65 64 2e 20 59 6f 75 20 63 61 6e 20 66 69 6e 64 20 6d 6f 72 65 20 69 6e 20 74 68 65 20 60 53 | red..You.can.find.more.in.the.`S |
| 1416c0 | 61 6c 74 20 50 6f 6a 65 63 74 20 44 6f 63 75 6d 65 6e 74 61 69 6f 6e 20 3c 68 74 74 70 73 3a 2f | alt.Poject.Documentaion.<https:/ |
| 1416e0 | 2f 64 6f 63 73 2e 73 61 6c 74 70 72 6f 6a 65 63 74 2e 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f 63 | /docs.saltproject.io/en/latest/c |
| 141700 | 6f 6e 74 65 6e 74 73 2e 68 74 6d 6c 3e 60 5f 00 54 6f 20 75 73 65 20 74 68 65 20 53 61 6c 74 2d | ontents.html>`_.To.use.the.Salt- |
| 141720 | 4d 69 6e 69 6f 6e 2c 20 61 20 72 75 6e 6e 69 6e 67 20 53 61 6c 74 2d 4d 61 73 74 65 72 20 69 73 | Minion,.a.running.Salt-Master.is |
| 141740 | 20 72 65 71 75 69 72 65 64 2e 20 59 6f 75 20 63 61 6e 20 66 69 6e 64 20 6d 6f 72 65 20 69 6e 20 | .required..You.can.find.more.in. |
| 141760 | 74 68 65 20 60 53 61 6c 74 20 50 72 6f 6a 65 63 74 20 44 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 | the.`Salt.Project.Documentation. |
| 141780 | 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 73 61 6c 74 70 72 6f 6a 65 63 74 2e 69 6f 2f 65 6e 2f | <https://docs.saltproject.io/en/ |
| 1417a0 | 6c 61 74 65 73 74 2f 63 6f 6e 74 65 6e 74 73 2e 68 74 6d 6c 3e 60 5f 00 54 6f 20 75 73 65 20 74 | latest/contents.html>`_.To.use.t |
| 1417c0 | 68 69 73 20 66 75 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 65 20 61 73 75 6d 65 20 | his.full.configuration.we.asume. |
| 1417e0 | 61 20 70 75 62 6c 69 63 20 61 63 63 65 73 73 69 62 6c 65 20 68 6f 73 74 6e 61 6d 65 2e 00 54 6f | a.public.accessible.hostname..To |
| 141800 | 70 6f 6c 6f 67 79 3a 00 54 6f 70 6f 6c 6f 67 79 3a 20 50 43 34 20 2d 20 4c 65 61 66 32 20 2d 20 | pology:.Topology:.PC4.-.Leaf2.-. |
| 141820 | 53 70 69 6e 65 31 20 2d 20 4c 65 61 66 33 20 2d 20 50 43 35 00 54 6f 74 61 6c 20 50 6f 72 74 73 | Spine1.-.Leaf3.-.PC5.Total.Ports |
| 141840 | 3a 20 36 35 35 33 36 20 28 30 20 74 6f 20 36 35 35 33 35 29 00 54 6f 75 62 6c 65 73 68 6f 6f 74 | :.65536.(0.to.65535).Toubleshoot |
| 141860 | 69 6e 67 00 54 72 61 63 6b 00 54 72 61 63 6b 20 6f 70 74 69 6f 6e 20 74 6f 20 74 72 61 63 6b 20 | ing.Track.Track.option.to.track. |
| 141880 | 6e 6f 6e 20 56 52 52 50 20 69 6e 74 65 72 66 61 63 65 20 73 74 61 74 65 73 2e 20 56 52 52 50 20 | non.VRRP.interface.states..VRRP. |
| 1418a0 | 63 68 61 6e 67 65 73 20 73 74 61 74 75 73 20 74 6f 20 60 60 46 41 55 4c 54 60 60 20 69 66 20 6f | changes.status.to.``FAULT``.if.o |
| 1418c0 | 6e 65 20 6f 66 20 74 68 65 20 74 72 61 63 6b 20 69 6e 74 65 72 66 61 63 65 73 20 69 6e 20 73 74 | ne.of.the.track.interfaces.in.st |
| 1418e0 | 61 74 65 20 60 60 64 6f 77 6e 60 60 2e 00 54 72 61 64 69 74 69 6f 6e 61 6c 20 42 47 50 20 64 69 | ate.``down``..Traditional.BGP.di |
| 141900 | 64 20 6e 6f 74 20 68 61 76 65 20 74 68 65 20 66 65 61 74 75 72 65 20 74 6f 20 64 65 74 65 63 74 | d.not.have.the.feature.to.detect |
| 141920 | 20 61 20 72 65 6d 6f 74 65 20 70 65 65 72 27 73 20 63 61 70 61 62 69 6c 69 74 69 65 73 2c 20 65 | .a.remote.peer's.capabilities,.e |
| 141940 | 2e 67 2e 20 77 68 65 74 68 65 72 20 69 74 20 63 61 6e 20 68 61 6e 64 6c 65 20 70 72 65 66 69 78 | .g..whether.it.can.handle.prefix |
| 141960 | 20 74 79 70 65 73 20 6f 74 68 65 72 20 74 68 61 6e 20 49 50 76 34 20 75 6e 69 63 61 73 74 20 72 | .types.other.than.IPv4.unicast.r |
| 141980 | 6f 75 74 65 73 2e 20 54 68 69 73 20 77 61 73 20 61 20 62 69 67 20 70 72 6f 62 6c 65 6d 20 75 73 | outes..This.was.a.big.problem.us |
| 1419a0 | 69 6e 67 20 4d 75 6c 74 69 70 72 6f 74 6f 63 6f 6c 20 45 78 74 65 6e 73 69 6f 6e 20 66 6f 72 20 | ing.Multiprotocol.Extension.for. |
| 1419c0 | 42 47 50 20 69 6e 20 61 6e 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 6e 65 74 77 6f 72 6b 2e 20 3a | BGP.in.an.operational.network..: |
| 1419e0 | 72 66 63 3a 60 32 38 34 32 60 20 61 64 6f 70 74 65 64 20 61 20 66 65 61 74 75 72 65 20 63 61 6c | rfc:`2842`.adopted.a.feature.cal |
| 141a00 | 6c 65 64 20 43 61 70 61 62 69 6c 69 74 79 20 4e 65 67 6f 74 69 61 74 69 6f 6e 2e 20 2a 62 67 70 | led.Capability.Negotiation..*bgp |
| 141a20 | 64 2a 20 75 73 65 20 74 68 69 73 20 43 61 70 61 62 69 6c 69 74 79 20 4e 65 67 6f 74 69 61 74 69 | d*.use.this.Capability.Negotiati |
| 141a40 | 6f 6e 20 74 6f 20 64 65 74 65 63 74 20 74 68 65 20 72 65 6d 6f 74 65 20 70 65 65 72 27 73 20 63 | on.to.detect.the.remote.peer's.c |
| 141a60 | 61 70 61 62 69 6c 69 74 69 65 73 2e 20 49 66 20 61 20 70 65 65 72 20 69 73 20 6f 6e 6c 79 20 63 | apabilities..If.a.peer.is.only.c |
| 141a80 | 6f 6e 66 69 67 75 72 65 64 20 61 73 20 61 6e 20 49 50 76 34 20 75 6e 69 63 61 73 74 20 6e 65 69 | onfigured.as.an.IPv4.unicast.nei |
| 141aa0 | 67 68 62 6f 72 2c 20 2a 62 67 70 64 2a 20 64 6f 65 73 20 6e 6f 74 20 73 65 6e 64 20 74 68 65 73 | ghbor,.*bgpd*.does.not.send.thes |
| 141ac0 | 65 20 43 61 70 61 62 69 6c 69 74 79 20 4e 65 67 6f 74 69 61 74 69 6f 6e 20 70 61 63 6b 65 74 73 | e.Capability.Negotiation.packets |
| 141ae0 | 20 28 61 74 20 6c 65 61 73 74 20 6e 6f 74 20 75 6e 6c 65 73 73 20 6f 74 68 65 72 20 6f 70 74 69 | .(at.least.not.unless.other.opti |
| 141b00 | 6f 6e 61 6c 20 42 47 50 20 66 65 61 74 75 72 65 73 20 72 65 71 75 69 72 65 20 63 61 70 61 62 69 | onal.BGP.features.require.capabi |
| 141b20 | 6c 69 74 79 20 6e 65 67 6f 74 69 61 74 69 6f 6e 29 2e 00 54 72 61 64 69 74 69 6f 6e 61 6c 6c 79 | lity.negotiation)..Traditionally |
| 141b40 | 20 66 69 72 65 77 61 6c 6c 73 20 77 65 65 72 65 20 63 6f 6e 66 69 67 75 72 65 64 20 77 69 74 68 | .firewalls.weere.configured.with |
| 141b60 | 20 74 68 65 20 63 6f 6e 63 65 70 74 20 6f 66 20 64 61 74 61 20 67 6f 69 6e 67 20 69 6e 20 61 6e | .the.concept.of.data.going.in.an |
| 141b80 | 64 20 6f 75 74 20 6f 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 72 6f 75 74 65 | d.out.of.an.interface..The.route |
| 141ba0 | 72 20 6a 75 73 74 20 6c 69 73 74 65 6e 65 64 20 74 6f 20 74 68 65 20 64 61 74 61 20 66 6c 6f 77 | r.just.listened.to.the.data.flow |
| 141bc0 | 69 6e 67 20 74 68 72 6f 75 67 68 20 61 6e 64 20 72 65 73 70 6f 6e 64 69 6e 67 20 61 73 20 72 65 | ing.through.and.responding.as.re |
| 141be0 | 71 75 69 72 65 64 20 69 66 20 69 74 20 77 61 73 20 64 69 72 65 63 74 65 64 20 61 74 20 74 68 65 | quired.if.it.was.directed.at.the |
| 141c00 | 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2e 00 54 72 61 64 69 74 69 6f 6e 61 6c 6c 79 20 68 61 | .router.itself..Traditionally.ha |
| 141c20 | 72 64 77 61 72 65 20 72 6f 75 74 65 72 73 20 69 6d 70 6c 65 6d 65 6e 74 20 49 50 73 65 63 20 65 | rdware.routers.implement.IPsec.e |
| 141c40 | 78 63 6c 75 73 69 76 65 6c 79 20 64 75 65 20 74 6f 20 72 65 6c 61 74 69 76 65 20 65 61 73 65 20 | xclusively.due.to.relative.ease. |
| 141c60 | 6f 66 20 69 6d 70 6c 65 6d 65 6e 74 69 6e 67 20 69 74 20 69 6e 20 68 61 72 64 77 61 72 65 20 61 | of.implementing.it.in.hardware.a |
| 141c80 | 6e 64 20 69 6e 73 75 66 66 69 63 69 65 6e 74 20 43 50 55 20 70 6f 77 65 72 20 66 6f 72 20 64 6f | nd.insufficient.CPU.power.for.do |
| 141ca0 | 69 6e 67 20 65 6e 63 72 79 70 74 69 6f 6e 20 69 6e 20 73 6f 66 74 77 61 72 65 2e 20 53 69 6e 63 | ing.encryption.in.software..Sinc |
| 141cc0 | 65 20 56 79 4f 53 20 69 73 20 61 20 73 6f 66 74 77 61 72 65 20 72 6f 75 74 65 72 2c 20 74 68 69 | e.VyOS.is.a.software.router,.thi |
| 141ce0 | 73 20 69 73 20 6c 65 73 73 20 6f 66 20 61 20 63 6f 6e 63 65 72 6e 2e 20 4f 70 65 6e 56 50 4e 20 | s.is.less.of.a.concern..OpenVPN. |
| 141d00 | 68 61 73 20 62 65 65 6e 20 77 69 64 65 6c 79 20 75 73 65 64 20 6f 6e 20 55 4e 49 58 20 70 6c 61 | has.been.widely.used.on.UNIX.pla |
| 141d20 | 74 66 6f 72 6d 20 66 6f 72 20 61 20 6c 6f 6e 67 20 74 69 6d 65 20 61 6e 64 20 69 73 20 61 20 70 | tform.for.a.long.time.and.is.a.p |
| 141d40 | 6f 70 75 6c 61 72 20 6f 70 74 69 6f 6e 20 66 6f 72 20 72 65 6d 6f 74 65 20 61 63 63 65 73 73 20 | opular.option.for.remote.access. |
| 141d60 | 56 50 4e 2c 20 74 68 6f 75 67 68 20 69 74 27 73 20 61 6c 73 6f 20 63 61 70 61 62 6c 65 20 6f 66 | VPN,.though.it's.also.capable.of |
| 141d80 | 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 54 72 61 64 69 | .site-to-site.connections..Tradi |
| 141da0 | 74 69 6f 6e 61 6c 6c 79 20 68 61 72 64 77 61 72 65 20 72 6f 75 74 65 72 73 20 69 6d 70 6c 65 6d | tionally.hardware.routers.implem |
| 141dc0 | 65 6e 74 20 49 50 73 65 63 20 65 78 63 6c 75 73 69 76 65 6c 79 20 64 75 65 20 74 6f 20 72 65 6c | ent.IPsec.exclusively.due.to.rel |
| 141de0 | 61 74 69 76 65 20 65 61 73 65 20 6f 66 20 69 6d 70 6c 65 6d 65 6e 74 69 6e 67 20 69 74 20 69 6e | ative.ease.of.implementing.it.in |
| 141e00 | 20 68 61 72 64 77 61 72 65 20 61 6e 64 20 69 6e 73 75 66 66 69 63 69 65 6e 74 20 43 50 55 20 70 | .hardware.and.insufficient.CPU.p |
| 141e20 | 6f 77 65 72 20 66 6f 72 20 64 6f 69 6e 67 20 65 6e 63 72 79 70 74 69 6f 6e 20 69 6e 20 73 6f 66 | ower.for.doing.encryption.in.sof |
| 141e40 | 74 77 61 72 65 2e 20 53 69 6e 63 65 20 56 79 4f 53 20 69 73 20 61 20 73 6f 66 74 77 61 72 65 20 | tware..Since.VyOS.is.a.software. |
| 141e60 | 72 6f 75 74 65 72 2c 20 74 68 69 73 20 69 73 20 6c 65 73 73 20 6f 66 20 61 20 63 6f 6e 63 65 72 | router,.this.is.less.of.a.concer |
| 141e80 | 6e 2e 20 4f 70 65 6e 56 50 4e 20 68 61 73 20 62 65 65 6e 20 77 69 64 65 6c 79 20 75 73 65 64 20 | n..OpenVPN.has.been.widely.used. |
| 141ea0 | 6f 6e 20 74 68 65 20 55 4e 49 58 20 70 6c 61 74 66 6f 72 6d 20 66 6f 72 20 61 20 6c 6f 6e 67 20 | on.the.UNIX.platform.for.a.long. |
| 141ec0 | 74 69 6d 65 20 61 6e 64 20 69 73 20 61 20 70 6f 70 75 6c 61 72 20 6f 70 74 69 6f 6e 20 66 6f 72 | time.and.is.a.popular.option.for |
| 141ee0 | 20 72 65 6d 6f 74 65 20 61 63 63 65 73 73 20 56 50 4e 2c 20 74 68 6f 75 67 68 20 69 74 27 73 20 | .remote.access.VPN,.though.it's. |
| 141f00 | 61 6c 73 6f 20 63 61 70 61 62 6c 65 20 6f 66 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 63 6f 6e | also.capable.of.site-to-site.con |
| 141f20 | 6e 65 63 74 69 6f 6e 73 2e 00 54 72 61 66 66 69 63 20 46 69 6c 74 65 72 73 00 54 72 61 66 66 69 | nections..Traffic.Filters.Traffi |
| 141f40 | 63 20 46 69 6c 74 65 72 73 20 61 72 65 20 75 73 65 64 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 77 68 | c.Filters.are.used.to.control.wh |
| 141f60 | 69 63 68 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 68 61 76 65 20 74 68 65 20 64 65 66 69 6e 65 | ich.packets.will.have.the.define |
| 141f80 | 64 20 4e 41 54 20 72 75 6c 65 73 20 61 70 70 6c 69 65 64 2e 20 46 69 76 65 20 64 69 66 66 65 72 | d.NAT.rules.applied..Five.differ |
| 141fa0 | 65 6e 74 20 66 69 6c 74 65 72 73 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 77 69 74 68 69 | ent.filters.can.be.applied.withi |
| 141fc0 | 6e 20 61 20 4e 41 54 20 72 75 6c 65 2e 00 54 72 61 66 66 69 63 20 4d 61 74 63 68 20 47 72 6f 75 | n.a.NAT.rule..Traffic.Match.Grou |
| 141fe0 | 70 00 54 72 61 66 66 69 63 20 50 6f 6c 69 63 79 00 54 72 61 66 66 69 63 20 63 61 6e 6e 6f 74 20 | p.Traffic.Policy.Traffic.cannot. |
| 142000 | 66 6c 6f 77 20 62 65 74 77 65 65 6e 20 61 20 7a 6f 6e 65 20 6d 65 6d 62 65 72 20 69 6e 74 65 72 | flow.between.a.zone.member.inter |
| 142020 | 66 61 63 65 20 61 6e 64 20 61 6e 79 20 69 6e 74 65 72 66 61 63 65 20 74 68 61 74 20 69 73 20 6e | face.and.any.interface.that.is.n |
| 142040 | 6f 74 20 61 20 7a 6f 6e 65 20 6d 65 6d 62 65 72 2e 00 54 72 61 66 66 69 63 20 63 61 6e 6e 6f 74 | ot.a.zone.member..Traffic.cannot |
| 142060 | 20 66 6c 6f 77 20 62 65 74 77 65 65 6e 20 7a 6f 6e 65 20 6d 65 6d 62 65 72 20 69 6e 74 65 72 66 | .flow.between.zone.member.interf |
| 142080 | 61 63 65 20 61 6e 64 20 61 6e 79 20 69 6e 74 65 72 66 61 63 65 20 74 68 61 74 20 69 73 20 6e 6f | ace.and.any.interface.that.is.no |
| 1420a0 | 74 20 61 20 7a 6f 6e 65 20 6d 65 6d 62 65 72 2e 00 54 72 61 66 66 69 63 20 66 72 6f 6d 20 6d 75 | t.a.zone.member..Traffic.from.mu |
| 1420c0 | 6c 74 69 63 61 73 74 20 73 6f 75 72 63 65 73 20 77 69 6c 6c 20 67 6f 20 74 6f 20 74 68 65 20 52 | lticast.sources.will.go.to.the.R |
| 1420e0 | 65 6e 64 65 7a 76 6f 75 73 20 50 6f 69 6e 74 2c 20 61 6e 64 20 72 65 63 65 69 76 65 72 73 20 77 | endezvous.Point,.and.receivers.w |
| 142100 | 69 6c 6c 20 70 75 6c 6c 20 69 74 20 66 72 6f 6d 20 61 20 73 68 61 72 65 64 20 74 72 65 65 20 75 | ill.pull.it.from.a.shared.tree.u |
| 142120 | 73 69 6e 67 20 3a 61 62 62 72 3a 60 49 47 4d 50 20 28 49 6e 74 65 72 6e 65 74 20 47 72 6f 75 70 | sing.:abbr:`IGMP.(Internet.Group |
| 142140 | 20 4d 61 6e 61 67 65 6d 65 6e 74 20 50 72 6f 74 6f 63 6f 6c 29 60 2e 00 54 72 61 66 66 69 63 20 | .Management.Protocol)`..Traffic. |
| 142160 | 66 72 6f 6d 20 6d 75 6c 74 69 63 61 73 74 20 73 6f 75 72 63 65 73 20 77 69 6c 6c 20 67 6f 20 74 | from.multicast.sources.will.go.t |
| 142180 | 6f 20 74 68 65 20 52 65 6e 64 65 7a 76 6f 75 73 20 50 6f 69 6e 74 2c 20 61 6e 64 20 72 65 63 65 | o.the.Rendezvous.Point,.and.rece |
| 1421a0 | 69 76 65 72 73 20 77 69 6c 6c 20 70 75 6c 6c 20 69 74 20 66 72 6f 6d 20 61 20 73 68 61 72 65 64 | ivers.will.pull.it.from.a.shared |
| 1421c0 | 20 74 72 65 65 20 75 73 69 6e 67 20 49 47 4d 50 20 28 49 6e 74 65 72 6e 65 74 20 47 72 6f 75 70 | .tree.using.IGMP.(Internet.Group |
| 1421e0 | 20 4d 61 6e 61 67 65 6d 65 6e 74 20 50 72 6f 74 6f 63 6f 6c 29 2e 00 54 72 61 66 66 69 63 20 66 | .Management.Protocol)..Traffic.f |
| 142200 | 72 6f 6d 20 6d 75 6c 74 69 63 61 73 74 20 73 6f 75 72 63 65 73 20 77 69 6c 6c 20 67 6f 20 74 6f | rom.multicast.sources.will.go.to |
| 142220 | 20 74 68 65 20 52 65 6e 64 65 7a 76 6f 75 73 20 50 6f 69 6e 74 2c 20 61 6e 64 20 72 65 63 65 69 | .the.Rendezvous.Point,.and.recei |
| 142240 | 76 65 72 73 20 77 69 6c 6c 20 70 75 6c 6c 20 69 74 20 66 72 6f 6d 20 61 20 73 68 61 72 65 64 20 | vers.will.pull.it.from.a.shared. |
| 142260 | 74 72 65 65 20 75 73 69 6e 67 20 4d 4c 44 20 28 4d 75 6c 74 69 63 61 73 74 20 4c 69 73 74 65 6e | tree.using.MLD.(Multicast.Listen |
| 142280 | 65 72 20 44 69 73 63 6f 76 65 72 79 29 2e 00 54 72 61 66 66 69 63 20 6d 75 73 74 20 62 65 20 73 | er.Discovery)..Traffic.must.be.s |
| 1422a0 | 79 6d 6d 65 74 72 69 63 00 54 72 61 66 66 69 63 20 77 68 69 63 68 20 69 73 20 72 65 63 65 69 76 | ymmetric.Traffic.which.is.receiv |
| 1422c0 | 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 | ed.by.the.router.on.an.interface |
| 1422e0 | 20 77 68 69 63 68 20 69 73 20 6d 65 6d 62 65 72 20 6f 66 20 61 20 62 72 69 64 67 65 20 69 73 20 | .which.is.member.of.a.bridge.is. |
| 142300 | 70 72 6f 63 65 73 73 65 64 20 6f 6e 20 74 68 65 20 2a 2a 42 72 69 64 67 65 20 4c 61 79 65 72 2a | processed.on.the.**Bridge.Layer* |
| 142320 | 2a 2e 20 41 20 73 69 6d 70 6c 69 66 69 65 64 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 64 69 61 67 | *..A.simplified.packet.flow.diag |
| 142340 | 72 61 6d 20 66 6f 72 20 74 68 69 73 20 6c 61 79 65 72 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 | ram.for.this.layer.is.shown.next |
| 142360 | 3a 00 54 72 61 66 66 69 63 20 77 68 69 63 68 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 20 74 | :.Traffic.which.is.received.by.t |
| 142380 | 68 65 20 72 6f 75 74 65 72 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 77 68 69 63 68 20 | he.router.on.an.interface.which. |
| 1423a0 | 69 73 20 6d 65 6d 62 65 72 20 6f 66 20 61 20 62 72 69 64 67 65 20 69 73 20 70 72 6f 63 65 73 73 | is.member.of.a.bridge.is.process |
| 1423c0 | 65 64 20 6f 6e 20 74 68 65 20 2a 2a 42 72 69 64 67 65 20 4c 61 79 65 72 2a 2a 2e 20 42 65 66 6f | ed.on.the.**Bridge.Layer**..Befo |
| 1423e0 | 72 65 20 74 68 65 20 62 72 69 64 67 65 20 64 65 63 69 73 69 6f 6e 20 69 73 20 6d 61 64 65 2c 20 | re.the.bridge.decision.is.made,. |
| 142400 | 61 6c 6c 20 70 61 63 6b 65 74 73 20 61 72 65 20 61 6e 61 6c 79 7a 65 64 20 61 74 20 2a 2a 50 72 | all.packets.are.analyzed.at.**Pr |
| 142420 | 65 72 6f 75 74 69 6e 67 2a 2a 2e 20 46 69 72 73 74 20 66 69 6c 74 65 72 73 20 63 61 6e 20 62 65 | erouting**..First.filters.can.be |
| 142440 | 20 61 70 70 6c 69 65 64 20 68 65 72 65 2c 20 61 6e 64 20 61 6c 73 6f 20 72 75 6c 65 73 20 66 6f | .applied.here,.and.also.rules.fo |
| 142460 | 72 20 69 67 6e 6f 72 69 6e 67 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 | r.ignoring.connection.tracking.s |
| 142480 | 79 73 74 65 6d 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 68 65 20 72 65 6c | ystem.can.be.configured..The.rel |
| 1424a0 | 65 76 61 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 61 63 74 73 20 69 6e | evant.configuration.that.acts.in |
| 1424c0 | 20 2a 2a 70 72 65 72 6f 75 74 69 6e 67 2a 2a 20 69 73 3a 00 54 72 61 6e 73 69 74 69 6f 6e 20 73 | .**prerouting**.is:.Transition.s |
| 1424e0 | 63 72 69 70 74 73 00 54 72 61 6e 73 69 74 69 6f 6e 20 73 63 72 69 70 74 73 20 63 61 6e 20 68 65 | cripts.Transition.scripts.can.he |
| 142500 | 6c 70 20 79 6f 75 20 69 6d 70 6c 65 6d 65 6e 74 20 76 61 72 69 6f 75 73 20 66 69 78 75 70 73 2c | lp.you.implement.various.fixups, |
| 142520 | 20 73 75 63 68 20 61 73 20 73 74 61 72 74 69 6e 67 20 61 6e 64 20 73 74 6f 70 70 69 6e 67 20 73 | .such.as.starting.and.stopping.s |
| 142540 | 65 72 76 69 63 65 73 2c 20 6f 72 20 65 76 65 6e 20 6d 6f 64 69 66 79 69 6e 67 20 74 68 65 20 56 | ervices,.or.even.modifying.the.V |
| 142560 | 79 4f 53 20 63 6f 6e 66 69 67 20 6f 6e 20 56 52 52 50 20 74 72 61 6e 73 69 74 69 6f 6e 2e 20 54 | yOS.config.on.VRRP.transition..T |
| 142580 | 68 69 73 20 73 65 74 75 70 20 77 69 6c 6c 20 6d 61 6b 65 20 74 68 65 20 56 52 52 50 20 70 72 6f | his.setup.will.make.the.VRRP.pro |
| 1425a0 | 63 65 73 73 20 65 78 65 63 75 74 65 20 74 68 65 20 60 60 2f 63 6f 6e 66 69 67 2f 73 63 72 69 70 | cess.execute.the.``/config/scrip |
| 1425c0 | 74 73 2f 76 72 72 70 2d 66 61 69 6c 2e 73 68 60 60 20 77 69 74 68 20 61 72 67 75 6d 65 6e 74 20 | ts/vrrp-fail.sh``.with.argument. |
| 1425e0 | 60 60 46 6f 6f 60 60 20 77 68 65 6e 20 56 52 52 50 20 66 61 69 6c 73 2c 20 61 6e 64 20 74 68 65 | ``Foo``.when.VRRP.fails,.and.the |
| 142600 | 20 60 60 2f 63 6f 6e 66 69 67 2f 73 63 72 69 70 74 73 2f 76 72 72 70 2d 6d 61 73 74 65 72 2e 73 | .``/config/scripts/vrrp-master.s |
| 142620 | 68 60 60 20 77 68 65 6e 20 74 68 65 20 72 6f 75 74 65 72 20 62 65 63 6f 6d 65 73 20 74 68 65 20 | h``.when.the.router.becomes.the. |
| 142640 | 6d 61 73 74 65 72 3a 00 54 72 61 6e 73 70 61 72 65 6e 74 20 50 72 6f 78 79 00 54 72 6f 75 62 6c | master:.Transparent.Proxy.Troubl |
| 142660 | 65 73 68 6f 6f 74 69 6e 67 00 54 75 6e 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 00 54 75 6e 6e 65 6c | eshooting.Tuning.commands.Tunnel |
| 142680 | 00 54 75 6e 6e 65 6c 20 6b 65 79 73 00 54 75 6e 6e 65 6c 20 70 61 73 73 77 6f 72 64 20 75 73 65 | .Tunnel.keys.Tunnel.password.use |
| 1426a0 | 64 20 74 6f 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 74 68 65 20 63 6c 69 65 6e 74 20 28 4c 41 | d.to.authenticate.the.client.(LA |
| 1426c0 | 43 29 00 54 75 72 6e 20 6f 6e 20 66 6c 6f 77 2d 62 61 73 65 64 20 74 69 6d 65 73 74 61 6d 70 20 | C).Turn.on.flow-based.timestamp. |
| 1426e0 | 65 78 74 65 6e 73 69 6f 6e 2e 00 54 77 6f 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 76 61 72 69 61 | extension..Two.environment.varia |
| 142700 | 62 6c 65 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 3a 00 54 77 6f 20 69 6e 74 65 72 66 61 63 | bles.are.available:.Two.interfac |
| 142720 | 65 73 20 61 72 65 20 67 6f 69 6e 67 20 74 6f 20 62 65 20 75 73 65 64 20 69 6e 20 74 68 65 20 66 | es.are.going.to.be.used.in.the.f |
| 142740 | 6c 6f 77 74 61 62 6c 65 73 3a 20 65 74 68 30 20 61 6e 64 20 65 74 68 31 00 54 77 6f 20 6e 65 77 | lowtables:.eth0.and.eth1.Two.new |
| 142760 | 20 66 69 6c 65 73 20 60 60 2f 63 6f 6e 66 69 67 2f 61 75 74 68 2f 69 64 5f 72 73 61 5f 72 70 6b | .files.``/config/auth/id_rsa_rpk |
| 142780 | 69 60 60 20 61 6e 64 20 60 60 2f 63 6f 6e 66 69 67 2f 61 75 74 68 2f 69 64 5f 72 73 61 5f 72 70 | i``.and.``/config/auth/id_rsa_rp |
| 1427a0 | 6b 69 2e 70 75 62 60 60 20 77 69 6c 6c 20 62 65 20 63 72 65 61 74 65 64 2e 00 54 77 6f 20 6f 70 | ki.pub``.will.be.created..Two.op |
| 1427c0 | 74 69 6f 6e 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 60 6d 6f 64 65 60 3a 20 | tions.are.available.for.`mode`:. |
| 1427e0 | 65 69 74 68 65 72 20 60 6c 6f 61 64 60 20 61 6e 64 20 72 65 70 6c 61 63 65 20 6f 72 20 60 73 65 | either.`load`.and.replace.or.`se |
| 142800 | 74 60 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 65 63 74 69 6f 6e 2e 00 54 77 | t`.the.configuration.section..Tw |
| 142820 | 6f 20 72 6f 75 74 65 72 73 20 63 6f 6e 6e 65 63 74 65 64 20 62 6f 74 68 20 76 69 61 20 65 74 68 | o.routers.connected.both.via.eth |
| 142840 | 31 20 74 68 72 6f 75 67 68 20 61 6e 20 75 6e 74 72 75 73 74 65 64 20 73 77 69 74 63 68 00 54 79 | 1.through.an.untrusted.switch.Ty |
| 142860 | 70 65 20 6f 66 20 6d 65 74 72 69 63 73 20 67 72 6f 75 70 69 6e 67 20 77 68 65 6e 20 70 75 73 68 | pe.of.metrics.grouping.when.push |
| 142880 | 20 74 6f 20 41 7a 75 72 65 20 44 61 74 61 20 45 78 70 6c 6f 72 65 72 2e 20 54 68 65 20 64 65 66 | .to.Azure.Data.Explorer..The.def |
| 1428a0 | 61 75 6c 74 20 69 73 20 60 60 74 61 62 6c 65 2d 70 65 72 2d 6d 65 74 72 69 63 60 60 2e 00 54 79 | ault.is.``table-per-metric``..Ty |
| 1428c0 | 70 65 2d 31 20 28 45 41 44 2d 70 65 72 2d 45 53 20 61 6e 64 20 45 41 44 2d 70 65 72 2d 45 56 49 | pe-1.(EAD-per-ES.and.EAD-per-EVI |
| 1428e0 | 29 20 72 6f 75 74 65 73 20 61 72 65 20 75 73 65 64 20 74 6f 20 61 64 76 65 72 74 69 73 65 20 74 | ).routes.are.used.to.advertise.t |
| 142900 | 68 65 20 6c 6f 63 61 6c 6c 79 20 61 74 74 61 63 68 65 64 20 45 53 73 20 61 6e 64 20 74 6f 20 6c | he.locally.attached.ESs.and.to.l |
| 142920 | 65 61 72 6e 20 6f 66 66 20 72 65 6d 6f 74 65 20 45 53 73 20 69 6e 20 74 68 65 20 6e 65 74 77 6f | earn.off.remote.ESs.in.the.netwo |
| 142940 | 72 6b 2e 20 4c 6f 63 61 6c 20 54 79 70 65 2d 32 2f 4d 41 43 2d 49 50 20 72 6f 75 74 65 73 20 61 | rk..Local.Type-2/MAC-IP.routes.a |
| 142960 | 72 65 20 61 6c 73 6f 20 61 64 76 65 72 74 69 73 65 64 20 77 69 74 68 20 61 20 64 65 73 74 69 6e | re.also.advertised.with.a.destin |
| 142980 | 61 74 69 6f 6e 20 45 53 49 20 61 6c 6c 6f 77 69 6e 67 20 66 6f 72 20 4d 41 43 2d 49 50 20 73 79 | ation.ESI.allowing.for.MAC-IP.sy |
| 1429a0 | 6e 63 69 6e 67 20 62 65 74 77 65 65 6e 20 45 74 68 65 72 6e 65 74 20 53 65 67 6d 65 6e 74 20 70 | ncing.between.Ethernet.Segment.p |
| 1429c0 | 65 65 72 73 2e 20 52 65 66 65 72 65 6e 63 65 3a 20 52 46 43 20 37 34 33 32 2c 20 52 46 43 20 38 | eers..Reference:.RFC.7432,.RFC.8 |
| 1429e0 | 33 36 35 00 54 79 70 65 2d 34 20 28 45 53 52 29 20 72 6f 75 74 65 73 20 61 72 65 20 75 73 65 64 | 365.Type-4.(ESR).routes.are.used |
| 142a00 | 20 66 6f 72 20 44 65 73 69 67 6e 61 74 65 64 20 46 6f 72 77 61 72 64 65 72 20 28 44 46 29 20 65 | .for.Designated.Forwarder.(DF).e |
| 142a20 | 6c 65 63 74 69 6f 6e 2e 20 44 46 73 20 66 6f 72 77 61 72 64 20 42 55 4d 20 74 72 61 66 66 69 63 | lection..DFs.forward.BUM.traffic |
| 142a40 | 20 72 65 63 65 69 76 65 64 20 76 69 61 20 74 68 65 20 6f 76 65 72 6c 61 79 20 6e 65 74 77 6f 72 | .received.via.the.overlay.networ |
| 142a60 | 6b 2e 20 54 68 69 73 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 75 73 65 73 20 61 20 70 72 | k..This.implementation.uses.a.pr |
| 142a80 | 65 66 65 72 65 6e 63 65 20 62 61 73 65 64 20 44 46 20 65 6c 65 63 74 69 6f 6e 20 73 70 65 63 69 | eference.based.DF.election.speci |
| 142aa0 | 66 69 65 64 20 62 79 20 64 72 61 66 74 2d 69 65 74 66 2d 62 65 73 73 2d 65 76 70 6e 2d 70 72 65 | fied.by.draft-ietf-bess-evpn-pre |
| 142ac0 | 66 2d 64 66 2e 00 54 79 70 69 63 61 6c 6c 79 2c 20 61 20 31 2d 74 6f 2d 31 20 4e 41 54 20 72 75 | f-df..Typically,.a.1-to-1.NAT.ru |
| 142ae0 | 6c 65 20 6f 6d 69 74 73 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 28 61 | le.omits.the.destination.port.(a |
| 142b00 | 6c 6c 20 70 6f 72 74 73 29 20 61 6e 64 20 72 65 70 6c 61 63 65 73 20 74 68 65 20 70 72 6f 74 6f | ll.ports).and.replaces.the.proto |
| 142b20 | 63 6f 6c 20 77 69 74 68 20 65 69 74 68 65 72 20 2a 2a 61 6c 6c 2a 2a 20 6f 72 20 2a 2a 69 70 2a | col.with.either.**all**.or.**ip* |
| 142b40 | 2a 2e 00 55 44 50 20 42 72 6f 61 64 63 61 73 74 20 52 65 6c 61 79 00 55 44 50 20 6d 6f 64 65 20 | *..UDP.Broadcast.Relay.UDP.mode. |
| 142b60 | 77 6f 72 6b 73 20 62 65 74 74 65 72 20 77 69 74 68 20 4e 41 54 3a 00 55 44 50 20 70 6f 72 74 20 | works.better.with.NAT:.UDP.port. |
| 142b80 | 31 37 30 31 20 66 6f 72 20 49 50 73 65 63 00 55 44 50 20 70 6f 72 74 20 34 35 30 30 20 28 4e 41 | 1701.for.IPsec.UDP.port.4500.(NA |
| 142ba0 | 54 2d 54 29 00 55 44 50 20 70 6f 72 74 20 35 30 30 20 28 49 4b 45 29 00 55 52 4c 20 46 69 6c 74 | T-T).UDP.port.500.(IKE).URL.Filt |
| 142bc0 | 65 72 69 6e 67 20 69 73 20 70 72 6f 76 69 64 65 64 20 62 79 20 53 71 75 69 64 47 75 61 72 64 5f | ering.is.provided.by.SquidGuard_ |
| 142be0 | 2e 00 55 52 4c 20 66 69 6c 74 65 72 69 6e 67 00 55 52 4c 20 77 69 74 68 20 73 69 67 6e 61 74 75 | ..URL.filtering.URL.with.signatu |
| 142c00 | 72 65 20 6f 66 20 6d 61 73 74 65 72 20 66 6f 72 20 61 75 74 68 20 72 65 70 6c 79 20 76 65 72 69 | re.of.master.for.auth.reply.veri |
| 142c20 | 66 69 63 61 74 69 6f 6e 00 55 53 42 20 74 6f 20 73 65 72 69 61 6c 20 63 6f 6e 76 65 72 74 65 72 | fication.USB.to.serial.converter |
| 142c40 | 73 20 77 69 6c 6c 20 68 61 6e 64 6c 65 20 6d 6f 73 74 20 6f 66 20 74 68 65 69 72 20 77 6f 72 6b | s.will.handle.most.of.their.work |
| 142c60 | 20 69 6e 20 73 6f 66 74 77 61 72 65 20 73 6f 20 79 6f 75 20 73 68 6f 75 6c 64 20 62 65 20 63 61 | .in.software.so.you.should.be.ca |
| 142c80 | 72 65 66 75 6c 6c 20 77 69 74 68 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 62 61 75 64 72 61 74 | refull.with.the.selected.baudrat |
| 142ca0 | 65 20 61 73 20 73 6f 6d 65 20 74 69 6d 65 73 20 74 68 65 79 20 63 61 6e 27 74 20 63 6f 70 65 20 | e.as.some.times.they.can't.cope. |
| 142cc0 | 77 69 74 68 20 74 68 65 20 65 78 70 65 63 74 65 64 20 73 70 65 65 64 2e 00 55 55 43 50 20 73 75 | with.the.expected.speed..UUCP.su |
| 142ce0 | 62 73 79 73 74 65 6d 00 55 6e 64 65 72 20 73 6f 6d 65 20 63 69 72 63 75 6d 73 74 61 6e 63 65 73 | bsystem.Under.some.circumstances |
| 142d00 | 2c 20 4c 52 4f 20 69 73 20 6b 6e 6f 77 6e 20 74 6f 20 6d 6f 64 69 66 79 20 74 68 65 20 70 61 63 | ,.LRO.is.known.to.modify.the.pac |
| 142d20 | 6b 65 74 20 68 65 61 64 65 72 73 20 6f 66 20 66 6f 72 77 61 72 64 65 64 20 74 72 61 66 66 69 63 | ket.headers.of.forwarded.traffic |
| 142d40 | 2c 20 77 68 69 63 68 20 62 72 65 61 6b 73 20 74 68 65 20 65 6e 64 2d 74 6f 2d 65 6e 64 20 70 72 | ,.which.breaks.the.end-to-end.pr |
| 142d60 | 69 6e 63 69 70 6c 65 20 6f 66 20 63 6f 6d 70 75 74 65 72 20 6e 65 74 77 6f 72 6b 69 6e 67 2e 20 | inciple.of.computer.networking.. |
| 142d80 | 4c 52 4f 20 69 73 20 61 6c 73 6f 20 6f 6e 6c 79 20 61 62 6c 65 20 74 6f 20 6f 66 66 6c 6f 61 64 | LRO.is.also.only.able.to.offload |
| 142da0 | 20 54 43 50 20 73 65 67 6d 65 6e 74 73 20 65 6e 63 61 70 73 75 6c 61 74 65 64 20 69 6e 20 49 50 | .TCP.segments.encapsulated.in.IP |
| 142dc0 | 76 34 20 70 61 63 6b 65 74 73 2e 20 44 75 65 20 74 6f 20 74 68 65 73 65 20 6c 69 6d 69 74 61 74 | v4.packets..Due.to.these.limitat |
| 142de0 | 69 6f 6e 73 2c 20 69 74 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 74 6f 20 75 73 65 20 47 | ions,.it.is.recommended.to.use.G |
| 142e00 | 52 4f 20 28 47 65 6e 65 72 69 63 20 52 65 63 65 69 76 65 20 4f 66 66 6c 6f 61 64 29 20 77 68 65 | RO.(Generic.Receive.Offload).whe |
| 142e20 | 72 65 20 70 6f 73 73 69 62 6c 65 2e 20 4d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e | re.possible..More.information.on |
| 142e40 | 20 74 68 65 20 6c 69 6d 69 74 61 74 69 6f 6e 73 20 6f 66 20 4c 52 4f 20 63 61 6e 20 62 65 20 66 | .the.limitations.of.LRO.can.be.f |
| 142e60 | 6f 75 6e 64 20 68 65 72 65 3a 20 68 74 74 70 73 3a 2f 2f 6c 77 6e 2e 6e 65 74 2f 41 72 74 69 63 | ound.here:.https://lwn.net/Artic |
| 142e80 | 6c 65 73 2f 33 35 38 39 31 30 2f 00 55 6e 69 63 61 73 74 00 55 6e 69 63 61 73 74 20 56 52 52 50 | les/358910/.Unicast.Unicast.VRRP |
| 142ea0 | 00 55 6e 69 63 61 73 74 20 56 58 4c 41 4e 00 55 6e 69 74 20 6f 66 20 74 68 69 73 20 63 6f 6d 6d | .Unicast.VXLAN.Unit.of.this.comm |
| 142ec0 | 61 6e 64 20 69 73 20 4d 42 2e 00 55 6e 69 74 73 00 55 6e 74 69 6c 20 56 79 4f 53 20 31 2e 34 2c | and.is.MB..Units.Until.VyOS.1.4, |
| 142ee0 | 20 74 68 65 20 6f 6e 6c 79 20 6f 70 74 69 6f 6e 20 66 6f 72 20 73 69 74 65 2d 74 6f 2d 73 69 74 | .the.only.option.for.site-to-sit |
| 142f00 | 65 20 4f 70 65 6e 56 50 4e 20 77 69 74 68 6f 75 74 20 50 4b 49 20 77 61 73 20 74 6f 20 75 73 65 | e.OpenVPN.without.PKI.was.to.use |
| 142f20 | 20 70 72 65 2d 73 68 61 72 65 64 20 6b 65 79 73 2e 20 54 68 61 74 20 6f 70 74 69 6f 6e 20 69 73 | .pre-shared.keys..That.option.is |
| 142f40 | 20 73 74 69 6c 6c 20 61 76 61 69 6c 61 62 6c 65 20 62 75 74 20 69 74 20 69 73 20 64 65 70 72 65 | .still.available.but.it.is.depre |
| 142f60 | 63 61 74 65 64 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 72 65 6d 6f 76 65 64 20 69 6e 20 74 68 65 | cated.and.will.be.removed.in.the |
| 142f80 | 20 66 75 74 75 72 65 2e 20 48 6f 77 65 76 65 72 2c 20 69 66 20 79 6f 75 20 6e 65 65 64 20 74 6f | .future..However,.if.you.need.to |
| 142fa0 | 20 73 65 74 20 75 70 20 61 20 74 75 6e 6e 65 6c 20 74 6f 20 61 6e 20 6f 6c 64 65 72 20 56 79 4f | .set.up.a.tunnel.to.an.older.VyO |
| 142fc0 | 53 20 76 65 72 73 69 6f 6e 20 6f 72 20 61 20 73 79 73 74 65 6d 20 77 69 74 68 20 6f 6c 64 65 72 | S.version.or.a.system.with.older |
| 142fe0 | 20 4f 70 65 6e 56 50 4e 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 73 74 69 6c 6c 20 6e 65 65 64 | .OpenVPN,.you.need.to.still.need |
| 143000 | 20 74 6f 20 6b 6e 6f 77 20 68 6f 77 20 74 6f 20 75 73 65 20 69 74 2e 00 55 70 20 74 6f 20 73 65 | .to.know.how.to.use.it..Up.to.se |
| 143020 | 76 65 6e 20 71 75 65 75 65 73 20 2d 64 65 66 69 6e 65 64 20 61 73 20 63 6c 61 73 73 65 73 5f 20 | ven.queues.-defined.as.classes_. |
| 143040 | 77 69 74 68 20 64 69 66 66 65 72 65 6e 74 20 70 72 69 6f 72 69 74 69 65 73 2d 20 63 61 6e 20 62 | with.different.priorities-.can.b |
| 143060 | 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 50 61 63 6b 65 74 73 20 61 72 65 20 70 6c 61 63 65 64 | e.configured..Packets.are.placed |
| 143080 | 20 69 6e 74 6f 20 71 75 65 75 65 73 20 62 61 73 65 64 20 6f 6e 20 61 73 73 6f 63 69 61 74 65 64 | .into.queues.based.on.associated |
| 1430a0 | 20 6d 61 74 63 68 20 63 72 69 74 65 72 69 61 2e 20 50 61 63 6b 65 74 73 20 61 72 65 20 74 72 61 | .match.criteria..Packets.are.tra |
| 1430c0 | 6e 73 6d 69 74 74 65 64 20 66 72 6f 6d 20 74 68 65 20 71 75 65 75 65 73 20 69 6e 20 70 72 69 6f | nsmitted.from.the.queues.in.prio |
| 1430e0 | 72 69 74 79 20 6f 72 64 65 72 2e 20 49 66 20 63 6c 61 73 73 65 73 20 77 69 74 68 20 61 20 68 69 | rity.order..If.classes.with.a.hi |
| 143100 | 67 68 65 72 20 70 72 69 6f 72 69 74 79 20 61 72 65 20 62 65 69 6e 67 20 66 69 6c 6c 65 64 20 77 | gher.priority.are.being.filled.w |
| 143120 | 69 74 68 20 70 61 63 6b 65 74 73 20 63 6f 6e 74 69 6e 75 6f 75 73 6c 79 2c 20 70 61 63 6b 65 74 | ith.packets.continuously,.packet |
| 143140 | 73 20 66 72 6f 6d 20 6c 6f 77 65 72 20 70 72 69 6f 72 69 74 79 20 63 6c 61 73 73 65 73 20 77 69 | s.from.lower.priority.classes.wi |
| 143160 | 6c 6c 20 6f 6e 6c 79 20 62 65 20 74 72 61 6e 73 6d 69 74 74 65 64 20 61 66 74 65 72 20 74 72 61 | ll.only.be.transmitted.after.tra |
| 143180 | 66 66 69 63 20 76 6f 6c 75 6d 65 20 66 72 6f 6d 20 68 69 67 68 65 72 20 70 72 69 6f 72 69 74 79 | ffic.volume.from.higher.priority |
| 1431a0 | 20 63 6c 61 73 73 65 73 20 64 65 63 72 65 61 73 65 73 2e 00 55 70 64 61 74 65 00 55 70 64 61 74 | .classes.decreases..Update.Updat |
| 1431c0 | 65 20 63 6f 6e 74 61 69 6e 65 72 20 69 6d 61 67 65 00 55 70 64 61 74 65 20 67 65 6f 69 70 20 64 | e.container.image.Update.geoip.d |
| 1431e0 | 61 74 61 62 61 73 65 00 55 70 64 61 74 65 73 00 55 70 64 61 74 65 73 20 66 72 6f 6d 20 74 68 65 | atabase.Updates.Updates.from.the |
| 143200 | 20 52 50 4b 49 20 63 61 63 68 65 20 73 65 72 76 65 72 73 20 61 72 65 20 64 69 72 65 63 74 6c 79 | .RPKI.cache.servers.are.directly |
| 143220 | 20 61 70 70 6c 69 65 64 20 61 6e 64 20 70 61 74 68 20 73 65 6c 65 63 74 69 6f 6e 20 69 73 20 75 | .applied.and.path.selection.is.u |
| 143240 | 70 64 61 74 65 64 20 61 63 63 6f 72 64 69 6e 67 6c 79 2e 20 28 53 6f 66 74 20 72 65 63 6f 6e 66 | pdated.accordingly..(Soft.reconf |
| 143260 | 69 67 75 72 61 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 65 6e 61 62 6c 65 64 20 66 6f 72 20 74 68 | iguration.must.be.enabled.for.th |
| 143280 | 69 73 20 74 6f 20 77 6f 72 6b 29 2e 00 55 70 6c 69 6e 6b 2f 43 6f 72 65 20 74 72 61 63 6b 69 6e | is.to.work)..Uplink/Core.trackin |
| 1432a0 | 67 2e 00 55 70 6c 6f 61 64 20 62 61 6e 64 77 69 64 74 68 20 6c 69 6d 69 74 20 69 6e 20 6b 62 69 | g..Upload.bandwidth.limit.in.kbi |
| 1432c0 | 74 2f 73 20 66 6f 72 20 60 3c 75 73 65 72 3e 60 2e 00 55 70 6c 6f 61 64 20 62 61 6e 64 77 69 64 | t/s.for.`<user>`..Upload.bandwid |
| 1432e0 | 74 68 20 6c 69 6d 69 74 20 69 6e 20 6b 62 69 74 2f 73 20 66 6f 72 20 66 6f 72 20 75 73 65 72 20 | th.limit.in.kbit/s.for.for.user. |
| 143300 | 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 55 70 6f 6e | on.interface.`<interface>`..Upon |
| 143320 | 20 72 65 63 65 70 74 69 6f 6e 20 6f 66 20 61 6e 20 69 6e 63 6f 6d 69 6e 67 20 70 61 63 6b 65 74 | .reception.of.an.incoming.packet |
| 143340 | 2c 20 77 68 65 6e 20 61 20 72 65 73 70 6f 6e 73 65 20 69 73 20 73 65 6e 74 2c 20 69 74 20 6d 69 | ,.when.a.response.is.sent,.it.mi |
| 143360 | 67 68 74 20 62 65 20 64 65 73 69 72 65 64 20 74 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 69 74 | ght.be.desired.to.ensure.that.it |
| 143380 | 20 6c 65 61 76 65 73 20 66 72 6f 6d 20 74 68 65 20 73 61 6d 65 20 69 6e 74 65 72 66 61 63 65 20 | .leaves.from.the.same.interface. |
| 1433a0 | 61 73 20 74 68 65 20 69 6e 62 6f 75 6e 64 20 6f 6e 65 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 | as.the.inbound.one..This.can.be. |
| 1433c0 | 61 63 68 69 65 76 65 64 20 62 79 20 65 6e 61 62 6c 69 6e 67 20 73 74 69 63 6b 79 20 63 6f 6e 6e | achieved.by.enabling.sticky.conn |
| 1433e0 | 65 63 74 69 6f 6e 73 20 69 6e 20 74 68 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 3a 00 55 | ections.in.the.load.balancing:.U |
| 143400 | 70 6f 6e 20 73 68 75 74 64 6f 77 6e 2c 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 77 69 6c 6c 20 64 | pon.shutdown,.this.option.will.d |
| 143420 | 65 70 72 65 63 61 74 65 20 74 68 65 20 70 72 65 66 69 78 20 62 79 20 61 6e 6e 6f 75 6e 63 69 6e | eprecate.the.prefix.by.announcin |
| 143440 | 67 20 69 74 20 69 6e 20 74 68 65 20 73 68 75 74 64 6f 77 6e 20 52 41 00 55 73 61 62 6c 65 20 50 | g.it.in.the.shutdown.RA.Usable.P |
| 143460 | 6f 72 74 73 20 2f 20 50 6f 72 74 73 20 70 65 72 20 53 75 62 73 63 72 69 62 65 72 00 55 73 61 62 | orts./.Ports.per.Subscriber.Usab |
| 143480 | 6c 65 20 50 6f 72 74 73 3a 20 36 35 35 33 36 20 2d 20 31 30 32 34 20 3d 20 36 34 35 31 32 00 55 | le.Ports:.65536.-.1024.=.64512.U |
| 1434a0 | 73 65 20 38 30 32 2e 31 31 61 78 20 70 72 6f 74 6f 63 6f 6c 00 55 73 65 20 38 30 32 2e 31 31 6e | se.802.11ax.protocol.Use.802.11n |
| 1434c0 | 20 70 72 6f 74 6f 63 6f 6c 00 55 73 65 20 3a 61 62 62 72 3a 60 44 48 20 28 44 69 66 66 69 65 e2 | .protocol.Use.:abbr:`DH.(Diffie. |
| 1434e0 | 80 93 48 65 6c 6c 6d 61 6e 29 60 20 70 61 72 61 6d 65 74 65 72 73 20 66 72 6f 6d 20 50 4b 49 20 | ..Hellman)`.parameters.from.PKI. |
| 143500 | 73 75 62 73 79 73 74 65 6d 2e 20 4d 75 73 74 20 62 65 20 61 74 20 6c 65 61 73 74 20 32 30 34 38 | subsystem..Must.be.at.least.2048 |
| 143520 | 20 62 69 74 73 20 69 6e 20 6c 65 6e 67 74 68 2e 00 55 73 65 20 43 41 20 63 65 72 74 69 66 69 63 | .bits.in.length..Use.CA.certific |
| 143540 | 61 74 65 20 66 72 6f 6d 20 50 4b 49 20 73 75 62 73 79 73 74 65 6d 00 55 73 65 20 44 79 6e 44 4e | ate.from.PKI.subsystem.Use.DynDN |
| 143560 | 53 20 61 73 20 79 6f 75 72 20 70 72 65 66 65 72 72 65 64 20 70 72 6f 76 69 64 65 72 3a 00 55 73 | S.as.your.preferred.provider:.Us |
| 143580 | 65 20 49 50 20 66 69 72 65 77 61 6c 6c 00 55 73 65 20 54 4c 53 20 62 75 74 20 73 6b 69 70 20 68 | e.IP.firewall.Use.TLS.but.skip.h |
| 1435a0 | 6f 73 74 20 76 61 6c 69 64 61 74 69 6f 6e 00 55 73 65 20 54 4c 53 20 65 6e 63 72 79 70 74 69 6f | ost.validation.Use.TLS.encryptio |
| 1435c0 | 6e 2e 00 55 73 65 20 60 3c 73 75 62 6e 65 74 3e 60 20 61 73 20 74 68 65 20 49 50 20 70 6f 6f 6c | n..Use.`<subnet>`.as.the.IP.pool |
| 1435e0 | 20 66 6f 72 20 61 6c 6c 20 63 6f 6e 6e 65 63 74 69 6e 67 20 63 6c 69 65 6e 74 73 2e 00 55 73 65 | .for.all.connecting.clients..Use |
| 143600 | 20 60 60 73 68 6f 77 20 6c 6f 67 20 7c 20 73 74 72 69 70 2d 70 72 69 76 61 74 65 60 60 20 69 66 | .``show.log.|.strip-private``.if |
| 143620 | 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 68 69 64 65 20 70 72 69 76 61 74 65 20 64 61 74 61 20 77 | .you.want.to.hide.private.data.w |
| 143640 | 68 65 6e 20 73 68 61 72 69 6e 67 20 79 6f 75 72 20 6c 6f 67 73 2e 00 55 73 65 20 60 64 65 6c 65 | hen.sharing.your.logs..Use.`dele |
| 143660 | 74 65 20 73 79 73 74 65 6d 20 63 6f 6e 6e 74 72 61 63 6b 20 6d 6f 64 75 6c 65 73 60 20 74 6f 20 | te.system.conntrack.modules`.to. |
| 143680 | 64 65 61 63 74 69 76 65 20 61 6c 6c 20 6d 6f 64 75 6c 65 73 2e 00 55 73 65 20 61 20 70 65 72 73 | deactive.all.modules..Use.a.pers |
| 1436a0 | 69 73 74 65 6e 74 20 4c 44 41 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 4e 6f 72 6d 61 6c 6c 79 | istent.LDAP.connection..Normally |
| 1436c0 | 20 74 68 65 20 4c 44 41 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 6f 6e 6c 79 20 6f 70 65 | .the.LDAP.connection.is.only.ope |
| 1436e0 | 6e 20 77 68 69 6c 65 20 76 61 6c 69 64 61 74 69 6e 67 20 61 20 75 73 65 72 6e 61 6d 65 20 74 6f | n.while.validating.a.username.to |
| 143700 | 20 70 72 65 73 65 72 76 65 20 72 65 73 6f 75 72 63 65 73 20 61 74 20 74 68 65 20 4c 44 41 50 20 | .preserve.resources.at.the.LDAP. |
| 143720 | 73 65 72 76 65 72 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 63 61 75 73 65 73 20 74 68 65 20 4c | server..This.option.causes.the.L |
| 143740 | 44 41 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f 20 62 65 20 6b 65 70 74 20 6f 70 65 6e 2c 20 | DAP.connection.to.be.kept.open,. |
| 143760 | 61 6c 6c 6f 77 69 6e 67 20 69 74 20 74 6f 20 62 65 20 72 65 75 73 65 64 20 66 6f 72 20 66 75 72 | allowing.it.to.be.reused.for.fur |
| 143780 | 74 68 65 72 20 75 73 65 72 20 76 61 6c 69 64 61 74 69 6f 6e 73 2e 00 55 73 65 20 61 20 73 70 65 | ther.user.validations..Use.a.spe |
| 1437a0 | 63 69 66 69 63 20 61 64 64 72 65 73 73 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 20 63 68 61 | cific.address-group..Prepend.cha |
| 1437c0 | 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 | racter.``!``.for.inverted.matchi |
| 1437e0 | 6e 67 20 63 72 69 74 65 72 69 61 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 20 61 64 64 72 | ng.criteria..Use.a.specific.addr |
| 143800 | 65 73 73 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 61 72 61 63 | ess-group..Prepending.the.charac |
| 143820 | 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 65 72 69 61 | ter.``!``.to.invert.the.criteria |
| 143840 | 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 55 73 65 | .to.match.is.also.supported..Use |
| 143860 | 20 61 20 73 70 65 63 69 66 69 63 20 64 6f 6d 61 69 6e 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e | .a.specific.domain-group..Prepen |
| 143880 | 64 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d | d.character.``!``.for.inverted.m |
| 1438a0 | 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 | atching.criteria..Use.a.specific |
| 1438c0 | 20 64 6f 6d 61 69 6e 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 | .domain-group..Prepending.the.ch |
| 1438e0 | 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 | aracter.``!``.to.invert.the.crit |
| 143900 | 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e | eria.to.match.is.also.supported. |
| 143920 | 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 20 64 79 6e 61 6d 69 63 2d 61 64 64 72 65 73 73 2d | .Use.a.specific.dynamic-address- |
| 143940 | 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 | group..Prepend.character.``!``.f |
| 143960 | 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 2e 00 55 | or.inverted.matching.criteria..U |
| 143980 | 73 65 20 61 20 73 70 65 63 69 66 69 63 20 64 79 6e 61 6d 69 63 2d 61 64 64 72 65 73 73 2d 67 72 | se.a.specific.dynamic-address-gr |
| 1439a0 | 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 61 72 61 63 74 65 72 20 60 60 | oup..Prepending.the.character.`` |
| 1439c0 | 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 | !``.to.invert.the.criteria.to.ma |
| 1439e0 | 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 55 73 65 20 61 20 73 70 65 | tch.is.also.supported..Use.a.spe |
| 143a00 | 63 69 66 69 63 20 6d 61 63 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 20 63 68 61 72 61 63 74 | cific.mac-group..Prepend.charact |
| 143a20 | 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 | er.``!``.for.inverted.matching.c |
| 143a40 | 72 69 74 65 72 69 61 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 20 6d 61 63 2d 67 72 6f 75 | riteria..Use.a.specific.mac-grou |
| 143a60 | 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 | p..Prepending.the.character.``!` |
| 143a80 | 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 | `.to.invert.the.criteria.to.matc |
| 143aa0 | 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 55 73 65 20 61 20 73 70 65 63 69 | h.is.also.supported..Use.a.speci |
| 143ac0 | 66 69 63 20 6e 65 74 77 6f 72 6b 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 20 63 68 61 72 61 | fic.network-group..Prepend.chara |
| 143ae0 | 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 | cter.``!``.for.inverted.matching |
| 143b00 | 20 63 72 69 74 65 72 69 61 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 20 6e 65 74 77 6f 72 | .criteria..Use.a.specific.networ |
| 143b20 | 6b 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 61 72 61 63 74 65 | k-group..Prepending.the.characte |
| 143b40 | 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 65 72 69 61 20 74 | r.``!``.to.invert.the.criteria.t |
| 143b60 | 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 55 73 65 20 61 | o.match.is.also.supported..Use.a |
| 143b80 | 20 73 70 65 63 69 66 69 63 20 70 6f 72 74 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 20 63 68 | .specific.port-group..Prepend.ch |
| 143ba0 | 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 | aracter.``!``.for.inverted.match |
| 143bc0 | 69 6e 67 20 63 72 69 74 65 72 69 61 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 20 70 6f 72 | ing.criteria..Use.a.specific.por |
| 143be0 | 74 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 61 72 61 63 74 65 | t-group..Prepending.the.characte |
| 143c00 | 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 65 72 69 61 20 74 | r.``!``.to.invert.the.criteria.t |
| 143c20 | 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 55 73 65 20 61 | o.match.is.also.supported..Use.a |
| 143c40 | 63 74 69 76 65 2d 61 63 74 69 76 65 20 48 41 20 6d 6f 64 65 2e 00 55 73 65 20 61 64 64 72 65 73 | ctive-active.HA.mode..Use.addres |
| 143c60 | 73 20 60 6d 61 73 71 75 65 72 61 64 65 60 20 28 74 68 65 20 69 6e 74 65 72 66 61 63 65 73 20 70 | s.`masquerade`.(the.interfaces.p |
| 143c80 | 72 69 6d 61 72 79 20 61 64 64 72 65 73 73 29 20 6f 6e 20 72 75 6c 65 20 33 30 00 55 73 65 20 61 | rimary.address).on.rule.30.Use.a |
| 143ca0 | 6e 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 67 65 6e 65 72 61 74 65 64 20 73 65 6c 66 2d 73 | n.automatically.generated.self-s |
| 143cc0 | 69 67 6e 65 64 20 63 65 72 74 69 66 69 63 61 74 65 00 55 73 65 20 61 6e 79 20 6c 6f 63 61 6c 20 | igned.certificate.Use.any.local. |
| 143ce0 | 61 64 64 72 65 73 73 2c 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 61 6e 79 20 69 6e 74 65 72 | address,.configured.on.any.inter |
| 143d00 | 66 61 63 65 20 69 66 20 74 68 69 73 20 69 73 20 6e 6f 74 20 73 65 74 2e 00 55 73 65 20 61 75 74 | face.if.this.is.not.set..Use.aut |
| 143d20 | 68 20 6b 65 79 20 66 69 6c 65 20 61 74 20 60 60 2f 63 6f 6e 66 69 67 2f 61 75 74 68 2f 6d 79 2e | h.key.file.at.``/config/auth/my. |
| 143d40 | 6b 65 79 60 60 00 55 73 65 20 63 65 72 74 69 66 69 63 61 74 65 20 66 72 6f 6d 20 50 4b 49 20 73 | key``.Use.certificate.from.PKI.s |
| 143d60 | 75 62 73 79 73 74 65 6d 00 55 73 65 20 63 6f 6e 66 69 67 75 72 65 64 20 60 3c 75 72 6c 3e 60 20 | ubsystem.Use.configured.`<url>`. |
| 143d80 | 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 79 6f 75 72 20 49 50 20 61 64 64 72 65 73 73 2e 20 64 64 | to.determine.your.IP.address..dd |
| 143da0 | 63 6c 69 65 6e 74 5f 20 77 69 6c 6c 20 6c 6f 61 64 20 60 3c 75 72 6c 3e 60 20 61 6e 64 20 74 72 | client_.will.load.`<url>`.and.tr |
| 143dc0 | 69 65 73 20 74 6f 20 65 78 74 72 61 63 74 20 79 6f 75 72 20 49 50 20 61 64 64 72 65 73 73 20 66 | ies.to.extract.your.IP.address.f |
| 143de0 | 72 6f 6d 20 74 68 65 20 72 65 73 70 6f 6e 73 65 2e 00 55 73 65 20 64 65 53 45 43 20 28 64 65 64 | rom.the.response..Use.deSEC.(ded |
| 143e00 | 79 6e 2e 69 6f 29 20 61 73 20 79 6f 75 72 20 70 72 65 66 65 72 72 65 64 20 70 72 6f 76 69 64 65 | yn.io).as.your.preferred.provide |
| 143e20 | 72 3a 00 55 73 65 20 69 6e 76 65 72 73 65 2d 6d 61 74 63 68 20 74 6f 20 6d 61 74 63 68 20 61 6e | r:.Use.inverse-match.to.match.an |
| 143e40 | 79 74 68 69 6e 67 20 65 78 63 65 70 74 20 74 68 65 20 67 69 76 65 6e 20 63 6f 75 6e 74 72 79 2d | ything.except.the.given.country- |
| 143e60 | 63 6f 64 65 73 2e 00 55 73 65 20 6c 6f 63 61 6c 20 73 6f 63 6b 65 74 20 66 6f 72 20 41 50 49 00 | codes..Use.local.socket.for.API. |
| 143e80 | 55 73 65 20 6c 6f 63 61 6c 20 75 73 65 72 20 60 66 6f 6f 60 20 77 69 74 68 20 70 61 73 73 77 6f | Use.local.user.`foo`.with.passwo |
| 143ea0 | 72 64 20 60 62 61 72 60 00 55 73 65 20 74 61 62 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 74 6f 20 67 | rd.`bar`.Use.tab.completion.to.g |
| 143ec0 | 65 74 20 61 20 6c 69 73 74 20 6f 66 20 63 61 74 65 67 6f 72 69 65 73 2e 00 55 73 65 20 74 68 65 | et.a.list.of.categories..Use.the |
| 143ee0 | 20 51 52 20 63 6f 64 65 20 74 6f 20 61 64 64 20 74 68 65 20 75 73 65 72 20 61 63 63 6f 75 6e 74 | .QR.code.to.add.the.user.account |
| 143f00 | 20 69 6e 20 47 6f 6f 67 6c 65 20 61 75 74 68 65 6e 74 69 63 61 74 6f 72 20 61 70 70 6c 69 63 61 | .in.Google.authenticator.applica |
| 143f20 | 74 69 6f 6e 20 61 6e 64 20 6f 6e 20 63 6c 69 65 6e 74 20 73 69 64 65 2c 20 75 73 65 20 74 68 65 | tion.and.on.client.side,.use.the |
| 143f40 | 20 4f 54 50 20 6e 75 6d 62 65 72 20 61 73 20 70 61 73 73 77 6f 72 64 2e 00 55 73 65 20 74 68 65 | .OTP.number.as.password..Use.the |
| 143f60 | 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 | .address.of.the.specified.interf |
| 143f80 | 61 63 65 20 6f 6e 20 74 68 65 20 6c 6f 63 61 6c 20 6d 61 63 68 69 6e 65 20 61 73 20 74 68 65 20 | ace.on.the.local.machine.as.the. |
| 143fa0 | 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e | source.address.of.the.connection |
| 143fc0 | 2e 00 55 73 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 74 6f 70 6f 6c 6f 67 79 20 74 6f 20 | ..Use.the.following.topology.to. |
| 143fe0 | 62 75 69 6c 64 20 61 20 6e 61 74 36 36 20 62 61 73 65 64 20 69 73 6f 6c 61 74 65 64 20 6e 65 74 | build.a.nat66.based.isolated.net |
| 144000 | 77 6f 72 6b 20 62 65 74 77 65 65 6e 20 69 6e 74 65 72 6e 61 6c 20 61 6e 64 20 65 78 74 65 72 6e | work.between.internal.and.extern |
| 144020 | 61 6c 20 6e 65 74 77 6f 72 6b 73 20 28 64 79 6e 61 6d 69 63 20 70 72 65 66 69 78 20 69 73 20 6e | al.networks.(dynamic.prefix.is.n |
| 144040 | 6f 74 20 73 75 70 70 6f 72 74 65 64 29 3a 00 55 73 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 | ot.supported):.Use.the.following |
| 144060 | 20 74 6f 70 6f 6c 6f 67 79 20 74 6f 20 74 72 61 6e 73 6c 61 74 65 20 69 6e 74 65 72 6e 61 6c 20 | .topology.to.translate.internal. |
| 144080 | 75 73 65 72 20 6c 6f 63 61 6c 20 61 64 64 72 65 73 73 65 73 20 28 60 60 66 63 3a 3a 2f 37 60 60 | user.local.addresses.(``fc::/7`` |
| 1440a0 | 29 20 74 6f 20 44 48 43 50 76 36 2d 50 44 20 70 72 6f 76 69 64 65 64 20 70 72 65 66 69 78 65 73 | ).to.DHCPv6-PD.provided.prefixes |
| 1440c0 | 20 66 72 6f 6d 20 61 6e 20 49 53 50 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 61 20 56 79 4f 53 | .from.an.ISP.connected.to.a.VyOS |
| 1440e0 | 20 48 41 20 70 61 69 72 2e 00 55 73 65 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 61 64 64 72 | .HA.pair..Use.the.specified.addr |
| 144100 | 65 73 73 20 6f 6e 20 74 68 65 20 6c 6f 63 61 6c 20 6d 61 63 68 69 6e 65 20 61 73 20 74 68 65 20 | ess.on.the.local.machine.as.the. |
| 144120 | 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e | source.address.of.the.connection |
| 144140 | 2e 20 4f 6e 6c 79 20 75 73 65 66 75 6c 20 6f 6e 20 73 79 73 74 65 6d 73 20 77 69 74 68 20 6d 6f | ..Only.useful.on.systems.with.mo |
| 144160 | 72 65 20 74 68 61 6e 20 6f 6e 65 20 61 64 64 72 65 73 73 2e 00 55 73 65 20 74 68 65 73 65 20 63 | re.than.one.address..Use.these.c |
| 144180 | 6f 6d 6d 61 6e 64 73 20 69 66 20 79 6f 75 20 77 6f 75 6c 64 20 6c 69 6b 65 20 74 6f 20 73 65 74 | ommands.if.you.would.like.to.set |
| 1441a0 | 20 74 68 65 20 64 69 73 63 6f 76 65 72 79 20 68 65 6c 6c 6f 20 61 6e 64 20 68 6f 6c 64 20 74 69 | .the.discovery.hello.and.hold.ti |
| 1441c0 | 6d 65 20 70 61 72 61 6d 65 74 65 72 73 20 66 6f 72 20 74 68 65 20 74 61 72 67 65 74 65 64 20 4c | me.parameters.for.the.targeted.L |
| 1441e0 | 44 50 20 6e 65 69 67 68 62 6f 72 73 2e 00 55 73 65 20 74 68 65 73 65 20 63 6f 6d 6d 61 6e 64 73 | DP.neighbors..Use.these.commands |
| 144200 | 20 69 66 20 79 6f 75 20 77 6f 75 6c 64 20 6c 69 6b 65 20 74 6f 20 73 65 74 20 74 68 65 20 64 69 | .if.you.would.like.to.set.the.di |
| 144220 | 73 63 6f 76 65 72 79 20 68 65 6c 6c 6f 20 61 6e 64 20 68 6f 6c 64 20 74 69 6d 65 20 70 61 72 61 | scovery.hello.and.hold.time.para |
| 144240 | 6d 65 74 65 72 73 2e 00 55 73 65 20 74 68 65 73 65 20 63 6f 6d 6d 61 6e 64 73 20 74 6f 20 61 6c | meters..Use.these.commands.to.al |
| 144260 | 73 6f 20 75 73 65 20 49 50 76 34 2c 20 6f 72 20 49 50 76 36 20 66 69 72 65 77 61 6c 6c 20 72 75 | so.use.IPv4,.or.IPv6.firewall.ru |
| 144280 | 6c 65 73 20 66 6f 72 20 62 72 69 64 67 65 64 20 74 72 61 66 66 69 63 00 55 73 65 20 74 68 65 73 | les.for.bridged.traffic.Use.thes |
| 1442a0 | 65 20 63 6f 6d 6d 61 6e 64 73 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 74 68 65 20 65 78 70 6f 72 74 | e.commands.to.control.the.export |
| 1442c0 | 69 6e 67 20 6f 66 20 66 6f 72 77 61 72 64 69 6e 67 20 65 71 75 69 76 61 6c 65 6e 63 65 20 63 6c | ing.of.forwarding.equivalence.cl |
| 1442e0 | 61 73 73 65 73 20 28 46 45 43 73 29 20 66 6f 72 20 4c 44 50 20 74 6f 20 6e 65 69 67 68 62 6f 72 | asses.(FECs).for.LDP.to.neighbor |
| 144300 | 73 2e 20 54 68 69 73 20 77 6f 75 6c 64 20 62 65 20 75 73 65 66 75 6c 20 66 6f 72 20 65 78 61 6d | s..This.would.be.useful.for.exam |
| 144320 | 70 6c 65 20 6f 6e 20 6f 6e 6c 79 20 61 6e 6e 6f 75 6e 63 69 6e 67 20 74 68 65 20 6c 61 62 65 6c | ple.on.only.announcing.the.label |
| 144340 | 65 64 20 72 6f 75 74 65 73 20 74 68 61 74 20 61 72 65 20 6e 65 65 64 65 64 20 61 6e 64 20 6e 6f | ed.routes.that.are.needed.and.no |
| 144360 | 74 20 6f 6e 65 73 20 74 68 61 74 20 61 72 65 20 6e 6f 74 20 6e 65 65 64 65 64 2c 20 73 75 63 68 | t.ones.that.are.not.needed,.such |
| 144380 | 20 61 73 20 61 6e 6e 6f 75 6e 63 69 6e 67 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 63 | .as.announcing.loopback.interfac |
| 1443a0 | 65 73 20 61 6e 64 20 6e 6f 20 6f 74 68 65 72 73 2e 00 55 73 65 20 74 68 65 73 65 20 63 6f 6d 6d | es.and.no.others..Use.these.comm |
| 1443c0 | 61 6e 64 73 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 74 68 65 20 69 6d 70 6f 72 74 69 6e 67 20 6f 66 | ands.to.control.the.importing.of |
| 1443e0 | 20 66 6f 72 77 61 72 64 69 6e 67 20 65 71 75 69 76 61 6c 65 6e 63 65 20 63 6c 61 73 73 65 73 20 | .forwarding.equivalence.classes. |
| 144400 | 28 46 45 43 73 29 20 66 6f 72 20 4c 44 50 20 66 72 6f 6d 20 6e 65 69 67 68 62 6f 72 73 2e 20 54 | (FECs).for.LDP.from.neighbors..T |
| 144420 | 68 69 73 20 77 6f 75 6c 64 20 62 65 20 75 73 65 66 75 6c 20 66 6f 72 20 65 78 61 6d 70 6c 65 20 | his.would.be.useful.for.example. |
| 144440 | 6f 6e 20 6f 6e 6c 79 20 61 63 63 65 70 74 69 6e 67 20 74 68 65 20 6c 61 62 65 6c 65 64 20 72 6f | on.only.accepting.the.labeled.ro |
| 144460 | 75 74 65 73 20 74 68 61 74 20 61 72 65 20 6e 65 65 64 65 64 20 61 6e 64 20 6e 6f 74 20 6f 6e 65 | utes.that.are.needed.and.not.one |
| 144480 | 73 20 74 68 61 74 20 61 72 65 20 6e 6f 74 20 6e 65 65 64 65 64 2c 20 73 75 63 68 20 61 73 20 61 | s.that.are.not.needed,.such.as.a |
| 1444a0 | 63 63 65 70 74 69 6e 67 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 73 20 61 6e 64 | ccepting.loopback.interfaces.and |
| 1444c0 | 20 72 65 6a 65 63 74 69 6e 67 20 61 6c 6c 20 6f 74 68 65 72 73 2e 00 55 73 65 20 74 68 69 73 20 | .rejecting.all.others..Use.this. |
| 1444e0 | 50 49 4d 20 63 6f 6d 6d 61 6e 64 20 69 6e 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 | PIM.command.in.the.selected.inte |
| 144500 | 72 66 61 63 65 20 74 6f 20 73 65 74 20 74 68 65 20 70 72 69 6f 72 69 74 79 20 28 31 2d 34 32 39 | rface.to.set.the.priority.(1-429 |
| 144520 | 34 39 36 37 32 39 35 29 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 69 6e 66 6c 75 65 6e 63 65 20 69 | 4967295).you.want.to.influence.i |
| 144540 | 6e 20 74 68 65 20 65 6c 65 63 74 69 6f 6e 20 6f 66 20 61 20 6e 6f 64 65 20 74 6f 20 62 65 63 6f | n.the.election.of.a.node.to.beco |
| 144560 | 6d 65 20 74 68 65 20 44 65 73 69 67 6e 61 74 65 64 20 52 6f 75 74 65 72 20 66 6f 72 20 61 20 4c | me.the.Designated.Router.for.a.L |
| 144580 | 41 4e 20 73 65 67 6d 65 6e 74 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 70 72 69 6f 72 69 74 79 | AN.segment..The.default.priority |
| 1445a0 | 20 69 73 20 31 2c 20 73 65 74 20 61 20 20 68 69 67 68 65 72 20 76 61 6c 75 65 20 74 6f 20 67 69 | .is.1,.set.a..higher.value.to.gi |
| 1445c0 | 76 65 20 74 68 65 20 72 6f 75 74 65 72 20 6d 6f 72 65 20 70 72 65 66 65 72 65 6e 63 65 20 69 6e | ve.the.router.more.preference.in |
| 1445e0 | 20 74 68 65 20 44 52 20 65 6c 65 63 74 69 6f 6e 20 70 72 6f 63 65 73 73 2e 00 55 73 65 20 74 68 | .the.DR.election.process..Use.th |
| 144600 | 69 73 20 50 49 4d 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6d 6f 64 69 66 79 20 74 68 65 20 74 69 6d | is.PIM.command.to.modify.the.tim |
| 144620 | 65 20 6f 75 74 20 76 61 6c 75 65 20 28 33 31 2d 36 30 30 30 30 20 73 65 63 6f 6e 64 73 29 20 66 | e.out.value.(31-60000.seconds).f |
| 144640 | 6f 72 20 61 6e 20 60 28 53 2c 47 29 20 3c 68 74 74 70 73 3a 2f 2f 74 6f 6f 6c 73 2e 69 65 74 66 | or.an.`(S,G).<https://tools.ietf |
| 144660 | 2e 6f 72 67 2f 68 74 6d 6c 2f 72 66 63 37 37 36 31 23 73 65 63 74 69 6f 6e 2d 34 2e 31 3e 60 5f | .org/html/rfc7761#section-4.1>`_ |
| 144680 | 20 66 6c 6f 77 2e 20 33 31 20 73 65 63 6f 6e 64 73 20 69 73 20 63 68 6f 73 65 6e 20 66 6f 72 20 | .flow..31.seconds.is.chosen.for. |
| 1446a0 | 61 20 6c 6f 77 65 72 20 62 6f 75 6e 64 20 61 73 20 73 6f 6d 65 20 68 61 72 64 77 61 72 65 20 70 | a.lower.bound.as.some.hardware.p |
| 1446c0 | 6c 61 74 66 6f 72 6d 73 20 63 61 6e 6e 6f 74 20 73 65 65 20 64 61 74 61 20 66 6c 6f 77 69 6e 67 | latforms.cannot.see.data.flowing |
| 1446e0 | 20 69 6e 20 62 65 74 74 65 72 20 74 68 61 6e 20 33 30 20 73 65 63 6f 6e 64 73 20 63 68 75 6e 6b | .in.better.than.30.seconds.chunk |
| 144700 | 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 | s..Use.this.comand.to.set.the.IP |
| 144720 | 76 36 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 66 72 6f 6d 20 77 68 69 63 68 20 61 20 50 50 50 | v6.address.pool.from.which.a.PPP |
| 144740 | 6f 45 20 63 6c 69 65 6e 74 20 77 69 6c 6c 20 67 65 74 20 61 6e 20 49 50 76 36 20 70 72 65 66 69 | oE.client.will.get.an.IPv6.prefi |
| 144760 | 78 20 6f 66 20 79 6f 75 72 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 6d 61 73 6b 29 20 | x.of.your.defined.length.(mask). |
| 144780 | 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 68 65 20 50 50 50 6f 45 20 65 6e 64 70 6f 69 6e 74 20 | to.terminate.the.PPPoE.endpoint. |
| 1447a0 | 61 74 20 74 68 65 69 72 20 73 69 64 65 2e 20 54 68 65 20 6d 61 73 6b 20 6c 65 6e 67 74 68 20 63 | at.their.side..The.mask.length.c |
| 1447c0 | 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 34 38 20 74 6f 20 31 32 38 20 62 69 74 20 6c 6f 6e | an.be.set.from.48.to.128.bit.lon |
| 1447e0 | 67 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 34 2e 00 55 73 65 20 | g,.the.default.value.is.64..Use. |
| 144800 | 74 68 69 73 20 63 6f 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 76 36 20 61 64 64 72 | this.comand.to.set.the.IPv6.addr |
| 144820 | 65 73 73 20 70 6f 6f 6c 20 66 72 6f 6d 20 77 68 69 63 68 20 61 6e 20 49 50 6f 45 20 63 6c 69 65 | ess.pool.from.which.an.IPoE.clie |
| 144840 | 6e 74 20 77 69 6c 6c 20 67 65 74 20 61 6e 20 49 50 76 36 20 70 72 65 66 69 78 20 6f 66 20 79 6f | nt.will.get.an.IPv6.prefix.of.yo |
| 144860 | 75 72 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 6d 61 73 6b 29 20 74 6f 20 74 65 72 6d | ur.defined.length.(mask).to.term |
| 144880 | 69 6e 61 74 65 20 74 68 65 20 49 50 6f 45 20 65 6e 64 70 6f 69 6e 74 20 61 74 20 74 68 65 69 72 | inate.the.IPoE.endpoint.at.their |
| 1448a0 | 20 73 69 64 65 2e 20 54 68 65 20 6d 61 73 6b 20 6c 65 6e 67 74 68 20 63 61 6e 20 62 65 20 73 65 | .side..The.mask.length.can.be.se |
| 1448c0 | 74 20 66 72 6f 6d 20 34 38 20 74 6f 20 31 32 38 20 62 69 74 20 6c 6f 6e 67 2c 20 74 68 65 20 64 | t.from.48.to.128.bit.long,.the.d |
| 1448e0 | 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 34 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d | efault.value.is.64..Use.this.com |
| 144900 | 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 6f 6f 6c | and.to.set.the.IPv6.address.pool |
| 144920 | 20 66 72 6f 6d 20 77 68 69 63 68 20 61 6e 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 20 77 69 6c 6c | .from.which.an.PPPoE.client.will |
| 144940 | 20 67 65 74 20 61 6e 20 49 50 76 36 20 70 72 65 66 69 78 20 6f 66 20 79 6f 75 72 20 64 65 66 69 | .get.an.IPv6.prefix.of.your.defi |
| 144960 | 6e 65 64 20 6c 65 6e 67 74 68 20 28 6d 61 73 6b 29 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 | ned.length.(mask).to.terminate.t |
| 144980 | 68 65 20 50 50 50 6f 45 20 65 6e 64 70 6f 69 6e 74 20 61 74 20 74 68 65 69 72 20 73 69 64 65 2e | he.PPPoE.endpoint.at.their.side. |
| 1449a0 | 20 54 68 65 20 6d 61 73 6b 20 6c 65 6e 67 74 68 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d | .The.mask.length.can.be.set.from |
| 1449c0 | 20 34 38 20 74 6f 20 31 32 38 20 62 69 74 20 6c 6f 6e 67 2c 20 74 68 65 20 64 65 66 61 75 6c 74 | .48.to.128.bit.long,.the.default |
| 1449e0 | 20 76 61 6c 75 65 20 69 73 20 36 34 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 61 6e 64 20 74 6f | .value.is.64..Use.this.comand.to |
| 144a00 | 20 73 65 74 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 66 72 6f 6d 20 | .set.the.IPv6.address.pool.from. |
| 144a20 | 77 68 69 63 68 20 61 6e 20 50 50 54 50 20 63 6c 69 65 6e 74 20 77 69 6c 6c 20 67 65 74 20 61 6e | which.an.PPTP.client.will.get.an |
| 144a40 | 20 49 50 76 36 20 70 72 65 66 69 78 20 6f 66 20 79 6f 75 72 20 64 65 66 69 6e 65 64 20 6c 65 6e | .IPv6.prefix.of.your.defined.len |
| 144a60 | 67 74 68 20 28 6d 61 73 6b 29 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 68 65 20 50 50 54 50 | gth.(mask).to.terminate.the.PPTP |
| 144a80 | 20 65 6e 64 70 6f 69 6e 74 20 61 74 20 74 68 65 69 72 20 73 69 64 65 2e 20 54 68 65 20 6d 61 73 | .endpoint.at.their.side..The.mas |
| 144aa0 | 6b 20 6c 65 6e 67 74 68 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 34 38 20 74 6f 20 31 | k.length.can.be.set.from.48.to.1 |
| 144ac0 | 32 38 20 62 69 74 20 6c 6f 6e 67 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 | 28.bit.long,.the.default.value.i |
| 144ae0 | 73 20 36 34 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 | s.64..Use.this.comand.to.set.the |
| 144b00 | 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 66 72 6f 6d 20 77 68 69 63 68 20 61 6e | .IPv6.address.pool.from.which.an |
| 144b20 | 20 53 53 54 50 20 63 6c 69 65 6e 74 20 77 69 6c 6c 20 67 65 74 20 61 6e 20 49 50 76 36 20 70 72 | .SSTP.client.will.get.an.IPv6.pr |
| 144b40 | 65 66 69 78 20 6f 66 20 79 6f 75 72 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 6d 61 73 | efix.of.your.defined.length.(mas |
| 144b60 | 6b 29 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 68 65 20 53 53 54 50 20 65 6e 64 70 6f 69 6e | k).to.terminate.the.SSTP.endpoin |
| 144b80 | 74 20 61 74 20 74 68 65 69 72 20 73 69 64 65 2e 20 54 68 65 20 6d 61 73 6b 20 6c 65 6e 67 74 68 | t.at.their.side..The.mask.length |
| 144ba0 | 20 63 61 6e 20 62 65 20 73 65 74 20 62 65 74 77 65 65 6e 20 34 38 20 61 6e 64 20 31 32 38 20 62 | .can.be.set.between.48.and.128.b |
| 144bc0 | 69 74 73 20 6c 6f 6e 67 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 | its.long,.the.default.value.is.6 |
| 144be0 | 34 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 | 4..Use.this.comand.to.set.the.IP |
| 144c00 | 76 36 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 66 72 6f 6d 20 77 68 69 63 68 20 61 6e 20 53 53 | v6.address.pool.from.which.an.SS |
| 144c20 | 54 50 20 63 6c 69 65 6e 74 20 77 69 6c 6c 20 67 65 74 20 61 6e 20 49 50 76 36 20 70 72 65 66 69 | TP.client.will.get.an.IPv6.prefi |
| 144c40 | 78 20 6f 66 20 79 6f 75 72 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 6d 61 73 6b 29 20 | x.of.your.defined.length.(mask). |
| 144c60 | 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 68 65 20 53 53 54 50 20 65 6e 64 70 6f 69 6e 74 20 61 | to.terminate.the.SSTP.endpoint.a |
| 144c80 | 74 20 74 68 65 69 72 20 73 69 64 65 2e 20 54 68 65 20 6d 61 73 6b 20 6c 65 6e 67 74 68 20 63 61 | t.their.side..The.mask.length.ca |
| 144ca0 | 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 34 38 20 74 6f 20 31 32 38 20 62 69 74 20 6c 6f 6e 67 | n.be.set.from.48.to.128.bit.long |
| 144cc0 | 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 34 2e 00 55 73 65 20 74 | ,.the.default.value.is.64..Use.t |
| 144ce0 | 68 69 73 20 63 6f 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 | his.comand.to.set.the.IPv6.addre |
| 144d00 | 73 73 20 70 6f 6f 6c 20 66 72 6f 6d 20 77 68 69 63 68 20 61 6e 20 6c 32 74 70 20 63 6c 69 65 6e | ss.pool.from.which.an.l2tp.clien |
| 144d20 | 74 20 77 69 6c 6c 20 67 65 74 20 61 6e 20 49 50 76 36 20 70 72 65 66 69 78 20 6f 66 20 79 6f 75 | t.will.get.an.IPv6.prefix.of.you |
| 144d40 | 72 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 6d 61 73 6b 29 20 74 6f 20 74 65 72 6d 69 | r.defined.length.(mask).to.termi |
| 144d60 | 6e 61 74 65 20 74 68 65 20 6c 32 74 70 20 65 6e 64 70 6f 69 6e 74 20 61 74 20 74 68 65 69 72 20 | nate.the.l2tp.endpoint.at.their. |
| 144d80 | 73 69 64 65 2e 20 54 68 65 20 6d 61 73 6b 20 6c 65 6e 67 74 68 20 63 61 6e 20 62 65 20 73 65 74 | side..The.mask.length.can.be.set |
| 144da0 | 20 62 65 74 77 65 65 6e 20 34 38 20 61 6e 64 20 31 32 38 20 62 69 74 73 20 6c 6f 6e 67 2c 20 74 | .between.48.and.128.bits.long,.t |
| 144dc0 | 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 34 2e 00 55 73 65 20 74 68 69 73 | he.default.value.is.64..Use.this |
| 144de0 | 20 63 6f 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 | .comand.to.set.the.IPv6.address. |
| 144e00 | 70 6f 6f 6c 20 66 72 6f 6d 20 77 68 69 63 68 20 61 6e 20 6c 32 74 70 20 63 6c 69 65 6e 74 20 77 | pool.from.which.an.l2tp.client.w |
| 144e20 | 69 6c 6c 20 67 65 74 20 61 6e 20 49 50 76 36 20 70 72 65 66 69 78 20 6f 66 20 79 6f 75 72 20 64 | ill.get.an.IPv6.prefix.of.your.d |
| 144e40 | 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 6d 61 73 6b 29 20 74 6f 20 74 65 72 6d 69 6e 61 74 | efined.length.(mask).to.terminat |
| 144e60 | 65 20 74 68 65 20 6c 32 74 70 20 65 6e 64 70 6f 69 6e 74 20 61 74 20 74 68 65 69 72 20 73 69 64 | e.the.l2tp.endpoint.at.their.sid |
| 144e80 | 65 2e 20 54 68 65 20 6d 61 73 6b 20 6c 65 6e 67 74 68 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 | e..The.mask.length.can.be.set.fr |
| 144ea0 | 6f 6d 20 34 38 20 74 6f 20 31 32 38 20 62 69 74 20 6c 6f 6e 67 2c 20 74 68 65 20 64 65 66 61 75 | om.48.to.128.bit.long,.the.defau |
| 144ec0 | 6c 74 20 76 61 6c 75 65 20 69 73 20 36 34 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 | lt.value.is.64..Use.this.command |
| 144ee0 | 20 66 6f 72 20 65 76 65 72 79 20 70 6f 6f 6c 20 6f 66 20 63 6c 69 65 6e 74 20 49 50 20 61 64 64 | .for.every.pool.of.client.IP.add |
| 144f00 | 72 65 73 73 65 73 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 64 65 66 69 6e 65 2e 20 54 68 65 20 61 | resses.you.want.to.define..The.a |
| 144f20 | 64 64 72 65 73 73 65 73 20 6f 66 20 74 68 69 73 20 70 6f 6f 6c 20 77 69 6c 6c 20 62 65 20 67 69 | ddresses.of.this.pool.will.be.gi |
| 144f40 | 76 65 6e 20 74 6f 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 73 2e 20 59 6f 75 20 6d 75 73 74 20 75 | ven.to.PPPoE.clients..You.must.u |
| 144f60 | 73 65 20 43 49 44 52 20 6e 6f 74 61 74 69 6f 6e 20 61 6e 64 20 69 74 20 6d 75 73 74 20 62 65 20 | se.CIDR.notation.and.it.must.be. |
| 144f80 | 77 69 74 68 69 6e 20 61 20 2f 32 34 20 73 75 62 6e 65 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f | within.a./24.subnet..Use.this.co |
| 144fa0 | 6d 6d 61 6e 64 20 66 6f 72 20 65 76 65 72 79 20 70 6f 6f 6c 20 6f 66 20 63 6c 69 65 6e 74 20 49 | mmand.for.every.pool.of.client.I |
| 144fc0 | 50 20 61 64 64 72 65 73 73 65 73 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 64 65 66 69 6e 65 2e 20 | P.addresses.you.want.to.define.. |
| 144fe0 | 54 68 65 20 61 64 64 72 65 73 73 65 73 20 6f 66 20 74 68 69 73 20 70 6f 6f 6c 20 77 69 6c 6c 20 | The.addresses.of.this.pool.will. |
| 145000 | 62 65 20 67 69 76 65 6e 20 74 6f 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 73 2e 20 59 6f 75 20 6d | be.given.to.PPPoE.clients..You.m |
| 145020 | 75 73 74 20 75 73 65 20 43 49 44 52 20 6e 6f 74 61 74 69 6f 6e 2e 00 55 73 65 20 74 68 69 73 20 | ust.use.CIDR.notation..Use.this. |
| 145040 | 63 6f 6d 6d 61 6e 64 20 69 66 20 79 6f 75 20 77 6f 75 6c 64 20 6c 69 6b 65 20 66 6f 72 20 74 68 | command.if.you.would.like.for.th |
| 145060 | 65 20 72 6f 75 74 65 72 20 74 6f 20 61 64 76 65 72 74 69 73 65 20 46 45 43 73 20 77 69 74 68 20 | e.router.to.advertise.FECs.with. |
| 145080 | 61 20 6c 61 62 65 6c 20 6f 66 20 30 20 66 6f 72 20 65 78 70 6c 69 63 69 74 20 6e 75 6c 6c 20 6f | a.label.of.0.for.explicit.null.o |
| 1450a0 | 70 65 72 61 74 69 6f 6e 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 66 20 79 | perations..Use.this.command.if.y |
| 1450c0 | 6f 75 20 77 6f 75 6c 64 20 6c 69 6b 65 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 74 68 65 20 6c 6f 63 | ou.would.like.to.control.the.loc |
| 1450e0 | 61 6c 20 46 45 43 20 61 6c 6c 6f 63 61 74 69 6f 6e 73 20 66 6f 72 20 4c 44 50 2e 20 41 20 67 6f | al.FEC.allocations.for.LDP..A.go |
| 145100 | 6f 64 20 65 78 61 6d 70 6c 65 20 77 6f 75 6c 64 20 62 65 20 66 6f 72 20 79 6f 75 72 20 6c 6f 63 | od.example.would.be.for.your.loc |
| 145120 | 61 6c 20 72 6f 75 74 65 72 20 74 6f 20 6e 6f 74 20 61 6c 6c 6f 63 61 74 65 20 61 20 6c 61 62 65 | al.router.to.not.allocate.a.labe |
| 145140 | 6c 20 66 6f 72 20 65 76 65 72 79 74 68 69 6e 67 2e 20 4a 75 73 74 20 61 20 6c 61 62 65 6c 20 66 | l.for.everything..Just.a.label.f |
| 145160 | 6f 72 20 77 68 61 74 20 69 74 27 73 20 75 73 65 66 75 6c 2e 20 41 20 67 6f 6f 64 20 65 78 61 6d | or.what.it's.useful..A.good.exam |
| 145180 | 70 6c 65 20 77 6f 75 6c 64 20 62 65 20 6a 75 73 74 20 61 20 6c 6f 6f 70 62 61 63 6b 20 6c 61 62 | ple.would.be.just.a.loopback.lab |
| 1451a0 | 65 6c 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 66 20 79 6f 75 20 77 6f 75 6c | el..Use.this.command.if.you.woul |
| 1451c0 | 64 20 6c 69 6b 65 20 74 6f 20 73 65 74 20 74 68 65 20 54 43 50 20 73 65 73 73 69 6f 6e 20 68 6f | d.like.to.set.the.TCP.session.ho |
| 1451e0 | 6c 64 20 74 69 6d 65 20 69 6e 74 65 72 76 61 6c 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d | ld.time.intervals..Use.this.comm |
| 145200 | 61 6e 64 20 74 6f 20 61 6c 6c 6f 77 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 | and.to.allow.the.selected.interf |
| 145220 | 61 63 65 20 74 6f 20 6a 6f 69 6e 20 61 20 6d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 70 20 64 65 | ace.to.join.a.multicast.group.de |
| 145240 | 66 69 6e 69 6e 67 20 74 68 65 20 6d 75 6c 74 69 63 61 73 74 20 61 64 64 72 65 73 73 20 79 6f 75 | fining.the.multicast.address.you |
| 145260 | 20 77 61 6e 74 20 74 6f 20 6a 6f 69 6e 20 61 6e 64 20 74 68 65 20 73 6f 75 72 63 65 20 49 50 20 | .want.to.join.and.the.source.IP. |
| 145280 | 61 64 64 72 65 73 73 20 74 6f 6f 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | address.too..Use.this.command.to |
| 1452a0 | 20 61 6c 6c 6f 77 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 6f | .allow.the.selected.interface.to |
| 1452c0 | 20 6a 6f 69 6e 20 61 20 6d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 70 2e 00 55 73 65 20 74 68 69 | .join.a.multicast.group..Use.thi |
| 1452e0 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 61 6c 6c 6f 77 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 | s.command.to.allow.the.selected. |
| 145300 | 69 6e 74 65 72 66 61 63 65 20 74 6f 20 6a 6f 69 6e 20 61 20 73 6f 75 72 63 65 2d 73 70 65 63 69 | interface.to.join.a.source-speci |
| 145320 | 66 69 63 20 6d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 70 2e 00 55 73 65 20 74 68 69 73 20 63 6f | fic.multicast.group..Use.this.co |
| 145340 | 6d 6d 61 6e 64 20 74 6f 20 63 68 65 63 6b 20 6c 6f 67 20 6d 65 73 73 61 67 65 73 20 73 70 65 63 | mmand.to.check.log.messages.spec |
| 145360 | 69 66 69 63 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e 00 55 73 65 20 74 68 69 73 20 63 | ific.to.an.interface..Use.this.c |
| 145380 | 6f 6d 6d 61 6e 64 20 74 6f 20 63 68 65 63 6b 20 6c 6f 67 20 6d 65 73 73 61 67 65 73 20 77 68 69 | ommand.to.check.log.messages.whi |
| 1453a0 | 63 68 20 69 6e 63 6c 75 64 65 20 65 6e 74 72 69 65 73 20 66 6f 72 20 73 75 63 63 65 73 73 66 75 | ch.include.entries.for.successfu |
| 1453c0 | 6c 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 61 73 20 77 65 6c 6c 20 61 73 20 66 61 69 6c 75 72 65 | l.connections.as.well.as.failure |
| 1453e0 | 73 20 61 6e 64 20 65 72 72 6f 72 73 20 72 65 6c 61 74 65 64 20 74 6f 20 61 6c 6c 20 4f 70 65 6e | s.and.errors.related.to.all.Open |
| 145400 | 56 50 4e 20 69 6e 74 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 | VPN.interfaces..Use.this.command |
| 145420 | 20 74 6f 20 63 68 65 63 6b 20 74 68 65 20 74 75 6e 6e 65 6c 20 73 74 61 74 75 73 20 66 6f 72 20 | .to.check.the.tunnel.status.for. |
| 145440 | 4f 70 65 6e 56 50 4e 20 63 6c 69 65 6e 74 20 69 6e 74 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 | OpenVPN.client.interfaces..Use.t |
| 145460 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 68 65 63 6b 20 74 68 65 20 74 75 6e 6e 65 6c 20 | his.command.to.check.the.tunnel. |
| 145480 | 73 74 61 74 75 73 20 66 6f 72 20 4f 70 65 6e 56 50 4e 20 73 65 72 76 65 72 20 69 6e 74 65 72 66 | status.for.OpenVPN.server.interf |
| 1454a0 | 61 63 65 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 68 65 63 6b 20 | aces..Use.this.command.to.check. |
| 1454c0 | 74 68 65 20 74 75 6e 6e 65 6c 20 73 74 61 74 75 73 20 66 6f 72 20 4f 70 65 6e 56 50 4e 20 73 69 | the.tunnel.status.for.OpenVPN.si |
| 1454e0 | 74 65 2d 74 6f 2d 73 69 74 65 20 69 6e 74 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 68 69 73 20 | te-to-site.interfaces..Use.this. |
| 145500 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6c 65 61 72 20 42 6f 72 64 65 72 20 47 61 74 65 77 61 79 20 | command.to.clear.Border.Gateway. |
| 145520 | 50 72 6f 74 6f 63 6f 6c 20 73 74 61 74 69 73 74 69 63 73 20 6f 72 20 73 74 61 74 75 73 2e 00 55 | Protocol.statistics.or.status..U |
| 145540 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 44 48 43 | se.this.command.to.configure.DHC |
| 145560 | 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 20 28 52 46 43 33 36 33 33 29 20 | Pv6.Prefix.Delegation.(RFC3633). |
| 145580 | 6f 6e 20 49 50 6f 45 2e 20 59 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 73 65 74 20 79 6f | on.IPoE..You.will.have.to.set.yo |
| 1455a0 | 75 72 20 49 50 76 36 20 70 6f 6f 6c 20 61 6e 64 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 | ur.IPv6.pool.and.the.length.of.t |
| 1455c0 | 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 2e 20 46 72 6f 6d 20 74 68 65 20 64 | he.delegation.prefix..From.the.d |
| 1455e0 | 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 68 61 6e | efined.IPv6.pool.you.will.be.han |
| 145600 | 64 69 6e 67 20 6f 75 74 20 6e 65 74 77 6f 72 6b 73 20 6f 66 20 74 68 65 20 64 65 66 69 6e 65 64 | ding.out.networks.of.the.defined |
| 145620 | 20 6c 65 6e 67 74 68 20 28 64 65 6c 65 67 61 74 69 6f 6e 2d 70 72 65 66 69 78 29 2e 20 54 68 65 | .length.(delegation-prefix)..The |
| 145640 | 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 | .length.of.the.delegation.prefix |
| 145660 | 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 33 32 20 74 6f 20 36 34 20 62 69 74 20 6c 6f | .can.be.set.from.32.to.64.bit.lo |
| 145680 | 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 | ng..Use.this.command.to.configur |
| 1456a0 | 65 20 44 48 43 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 20 28 52 46 43 33 | e.DHCPv6.Prefix.Delegation.(RFC3 |
| 1456c0 | 36 33 33 29 20 6f 6e 20 50 50 50 6f 45 2e 20 59 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 | 633).on.PPPoE..You.will.have.to. |
| 1456e0 | 73 65 74 20 79 6f 75 72 20 49 50 76 36 20 70 6f 6f 6c 20 61 6e 64 20 74 68 65 20 6c 65 6e 67 74 | set.your.IPv6.pool.and.the.lengt |
| 145700 | 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 2e 20 46 72 6f 6d | h.of.the.delegation.prefix..From |
| 145720 | 20 74 68 65 20 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 79 6f 75 20 77 69 6c 6c 20 | .the.defined.IPv6.pool.you.will. |
| 145740 | 62 65 20 68 61 6e 64 69 6e 67 20 6f 75 74 20 6e 65 74 77 6f 72 6b 73 20 6f 66 20 74 68 65 20 64 | be.handing.out.networks.of.the.d |
| 145760 | 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 64 65 6c 65 67 61 74 69 6f 6e 2d 70 72 65 66 69 78 | efined.length.(delegation-prefix |
| 145780 | 29 2e 20 54 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 | )..The.length.of.the.delegation. |
| 1457a0 | 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 33 32 20 74 6f 20 36 34 20 | prefix.can.be.set.from.32.to.64. |
| 1457c0 | 62 69 74 20 6c 6f 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f | bit.long..Use.this.command.to.co |
| 1457e0 | 6e 66 69 67 75 72 65 20 44 48 43 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e | nfigure.DHCPv6.Prefix.Delegation |
| 145800 | 20 28 52 46 43 33 36 33 33 29 20 6f 6e 20 50 50 54 50 2e 20 59 6f 75 20 77 69 6c 6c 20 68 61 76 | .(RFC3633).on.PPTP..You.will.hav |
| 145820 | 65 20 74 6f 20 73 65 74 20 79 6f 75 72 20 49 50 76 36 20 70 6f 6f 6c 20 61 6e 64 20 74 68 65 20 | e.to.set.your.IPv6.pool.and.the. |
| 145840 | 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 2e | length.of.the.delegation.prefix. |
| 145860 | 20 46 72 6f 6d 20 74 68 65 20 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 79 6f 75 20 | .From.the.defined.IPv6.pool.you. |
| 145880 | 77 69 6c 6c 20 62 65 20 68 61 6e 64 69 6e 67 20 6f 75 74 20 6e 65 74 77 6f 72 6b 73 20 6f 66 20 | will.be.handing.out.networks.of. |
| 1458a0 | 74 68 65 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 64 65 6c 65 67 61 74 69 6f 6e 2d 70 | the.defined.length.(delegation-p |
| 1458c0 | 72 65 66 69 78 29 2e 20 54 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 | refix)..The.length.of.the.delega |
| 1458e0 | 74 69 6f 6e 20 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 33 32 20 74 | tion.prefix.can.be.set.from.32.t |
| 145900 | 6f 20 36 34 20 62 69 74 20 6c 6f 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | o.64.bit.long..Use.this.command. |
| 145920 | 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 44 48 43 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 | to.configure.DHCPv6.Prefix.Deleg |
| 145940 | 61 74 69 6f 6e 20 28 52 46 43 33 36 33 33 29 20 6f 6e 20 53 53 54 50 2e 20 59 6f 75 20 77 69 6c | ation.(RFC3633).on.SSTP..You.wil |
| 145960 | 6c 20 68 61 76 65 20 74 6f 20 73 65 74 20 79 6f 75 72 20 49 50 76 36 20 70 6f 6f 6c 20 61 6e 64 | l.have.to.set.your.IPv6.pool.and |
| 145980 | 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 | .the.length.of.the.delegation.pr |
| 1459a0 | 65 66 69 78 2e 20 46 72 6f 6d 20 74 68 65 20 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c | efix..From.the.defined.IPv6.pool |
| 1459c0 | 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 68 61 6e 64 69 6e 67 20 6f 75 74 20 6e 65 74 77 6f 72 6b | .you.will.be.handing.out.network |
| 1459e0 | 73 20 6f 66 20 74 68 65 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 64 65 6c 65 67 61 74 | s.of.the.defined.length.(delegat |
| 145a00 | 69 6f 6e 2d 70 72 65 66 69 78 29 2e 20 54 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 | ion-prefix)..The.length.of.the.d |
| 145a20 | 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 73 65 74 20 62 65 74 77 | elegation.prefix.can.be.set.betw |
| 145a40 | 65 65 6e 20 33 32 20 61 6e 64 20 36 34 20 62 69 74 73 20 6c 6f 6e 67 2e 00 55 73 65 20 74 68 69 | een.32.and.64.bits.long..Use.thi |
| 145a60 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 44 48 43 50 76 36 20 50 72 | s.command.to.configure.DHCPv6.Pr |
| 145a80 | 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 20 28 52 46 43 33 36 33 33 29 20 6f 6e 20 53 53 54 | efix.Delegation.(RFC3633).on.SST |
| 145aa0 | 50 2e 20 59 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 73 65 74 20 79 6f 75 72 20 49 50 76 | P..You.will.have.to.set.your.IPv |
| 145ac0 | 36 20 70 6f 6f 6c 20 61 6e 64 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c | 6.pool.and.the.length.of.the.del |
| 145ae0 | 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 2e 20 46 72 6f 6d 20 74 68 65 20 64 65 66 69 6e 65 64 | egation.prefix..From.the.defined |
| 145b00 | 20 49 50 76 36 20 70 6f 6f 6c 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 68 61 6e 64 69 6e 67 20 6f | .IPv6.pool.you.will.be.handing.o |
| 145b20 | 75 74 20 6e 65 74 77 6f 72 6b 73 20 6f 66 20 74 68 65 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 | ut.networks.of.the.defined.lengt |
| 145b40 | 68 20 28 64 65 6c 65 67 61 74 69 6f 6e 2d 70 72 65 66 69 78 29 2e 20 54 68 65 20 6c 65 6e 67 74 | h.(delegation-prefix)..The.lengt |
| 145b60 | 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 20 63 61 6e 20 62 | h.of.the.delegation.prefix.can.b |
| 145b80 | 65 20 73 65 74 20 66 72 6f 6d 20 33 32 20 74 6f 20 36 34 20 62 69 74 20 6c 6f 6e 67 2e 00 55 73 | e.set.from.32.to.64.bit.long..Us |
| 145ba0 | 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 44 48 43 50 | e.this.command.to.configure.DHCP |
| 145bc0 | 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 20 28 52 46 43 33 36 33 33 29 20 6f | v6.Prefix.Delegation.(RFC3633).o |
| 145be0 | 6e 20 6c 32 74 70 2e 20 59 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 73 65 74 20 79 6f 75 | n.l2tp..You.will.have.to.set.you |
| 145c00 | 72 20 49 50 76 36 20 70 6f 6f 6c 20 61 6e 64 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 | r.IPv6.pool.and.the.length.of.th |
| 145c20 | 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 2e 20 46 72 6f 6d 20 74 68 65 20 64 65 | e.delegation.prefix..From.the.de |
| 145c40 | 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 68 61 6e 64 | fined.IPv6.pool.you.will.be.hand |
| 145c60 | 69 6e 67 20 6f 75 74 20 6e 65 74 77 6f 72 6b 73 20 6f 66 20 74 68 65 20 64 65 66 69 6e 65 64 20 | ing.out.networks.of.the.defined. |
| 145c80 | 6c 65 6e 67 74 68 20 28 64 65 6c 65 67 61 74 69 6f 6e 2d 70 72 65 66 69 78 29 2e 20 54 68 65 20 | length.(delegation-prefix)..The. |
| 145ca0 | 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 20 | length.of.the.delegation.prefix. |
| 145cc0 | 63 61 6e 20 62 65 20 62 65 74 77 65 65 6e 20 33 32 20 61 6e 64 20 36 34 20 62 69 74 73 20 6c 6f | can.be.between.32.and.64.bits.lo |
| 145ce0 | 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 | ng..Use.this.command.to.configur |
| 145d00 | 65 20 44 48 43 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 20 28 52 46 43 33 | e.DHCPv6.Prefix.Delegation.(RFC3 |
| 145d20 | 36 33 33 29 20 6f 6e 20 6c 32 74 70 2e 20 59 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 73 | 633).on.l2tp..You.will.have.to.s |
| 145d40 | 65 74 20 79 6f 75 72 20 49 50 76 36 20 70 6f 6f 6c 20 61 6e 64 20 74 68 65 20 6c 65 6e 67 74 68 | et.your.IPv6.pool.and.the.length |
| 145d60 | 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 2e 20 46 72 6f 6d 20 | .of.the.delegation.prefix..From. |
| 145d80 | 74 68 65 20 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 79 6f 75 20 77 69 6c 6c 20 62 | the.defined.IPv6.pool.you.will.b |
| 145da0 | 65 20 68 61 6e 64 69 6e 67 20 6f 75 74 20 6e 65 74 77 6f 72 6b 73 20 6f 66 20 74 68 65 20 64 65 | e.handing.out.networks.of.the.de |
| 145dc0 | 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 64 65 6c 65 67 61 74 69 6f 6e 2d 70 72 65 66 69 78 29 | fined.length.(delegation-prefix) |
| 145de0 | 2e 20 54 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 | ..The.length.of.the.delegation.p |
| 145e00 | 72 65 66 69 78 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 33 32 20 74 6f 20 36 34 20 62 | refix.can.be.set.from.32.to.64.b |
| 145e20 | 69 74 20 6c 6f 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e | it.long..Use.this.command.to.con |
| 145e40 | 66 69 67 75 72 65 20 44 48 43 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 20 | figure.DHCPv6.Prefix.Delegation. |
| 145e60 | 28 52 46 43 33 36 33 33 29 2e 20 59 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 73 65 74 20 | (RFC3633)..You.will.have.to.set. |
| 145e80 | 79 6f 75 72 20 49 50 76 36 20 70 6f 6f 6c 20 61 6e 64 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 | your.IPv6.pool.and.the.length.of |
| 145ea0 | 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 2e 20 46 72 6f 6d 20 74 68 65 | .the.delegation.prefix..From.the |
| 145ec0 | 20 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 68 | .defined.IPv6.pool.you.will.be.h |
| 145ee0 | 61 6e 64 69 6e 67 20 6f 75 74 20 6e 65 74 77 6f 72 6b 73 20 6f 66 20 74 68 65 20 64 65 66 69 6e | anding.out.networks.of.the.defin |
| 145f00 | 65 64 20 6c 65 6e 67 74 68 20 28 64 65 6c 65 67 61 74 69 6f 6e 2d 70 72 65 66 69 78 29 2e 20 54 | ed.length.(delegation-prefix)..T |
| 145f20 | 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 | he.length.of.the.delegation.pref |
| 145f40 | 69 78 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 33 32 20 74 6f 20 36 34 20 62 69 74 20 | ix.can.be.set.from.32.to.64.bit. |
| 145f60 | 6c 6f 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 | long..Use.this.command.to.config |
| 145f80 | 75 72 65 20 44 79 6e 61 6d 69 63 20 41 75 74 68 6f 72 69 7a 61 74 69 6f 6e 20 45 78 74 65 6e 73 | ure.Dynamic.Authorization.Extens |
| 145fa0 | 69 6f 6e 73 20 74 6f 20 52 41 44 49 55 53 20 73 6f 20 74 68 61 74 20 79 6f 75 20 63 61 6e 20 72 | ions.to.RADIUS.so.that.you.can.r |
| 145fc0 | 65 6d 6f 74 65 6c 79 20 64 69 73 63 6f 6e 6e 65 63 74 20 73 65 73 73 69 6f 6e 73 20 61 6e 64 20 | emotely.disconnect.sessions.and. |
| 145fe0 | 63 68 61 6e 67 65 20 73 6f 6d 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 70 61 72 61 6d | change.some.authentication.param |
| 146000 | 65 74 65 72 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 | eters..Use.this.command.to.confi |
| 146020 | 67 75 72 65 20 61 20 22 62 6c 61 63 6b 2d 68 6f 6c 65 22 20 72 6f 75 74 65 20 6f 6e 20 74 68 65 | gure.a."black-hole".route.on.the |
| 146040 | 20 72 6f 75 74 65 72 2e 20 41 20 62 6c 61 63 6b 2d 68 6f 6c 65 20 72 6f 75 74 65 20 69 73 20 61 | .router..A.black-hole.route.is.a |
| 146060 | 20 72 6f 75 74 65 20 66 6f 72 20 77 68 69 63 68 20 74 68 65 20 73 79 73 74 65 6d 20 73 69 6c 65 | .route.for.which.the.system.sile |
| 146080 | 6e 74 6c 79 20 64 69 73 63 61 72 64 20 70 61 63 6b 65 74 73 20 74 68 61 74 20 61 72 65 20 6d 61 | ntly.discard.packets.that.are.ma |
| 1460a0 | 74 63 68 65 64 2e 20 54 68 69 73 20 70 72 65 76 65 6e 74 73 20 6e 65 74 77 6f 72 6b 73 20 6c 65 | tched..This.prevents.networks.le |
| 1460c0 | 61 6b 69 6e 67 20 6f 75 74 20 70 75 62 6c 69 63 20 69 6e 74 65 72 66 61 63 65 73 2c 20 62 75 74 | aking.out.public.interfaces,.but |
| 1460e0 | 20 69 74 20 64 6f 65 73 20 6e 6f 74 20 70 72 65 76 65 6e 74 20 74 68 65 6d 20 66 72 6f 6d 20 62 | .it.does.not.prevent.them.from.b |
| 146100 | 65 69 6e 67 20 75 73 65 64 20 61 73 20 61 20 6d 6f 72 65 20 73 70 65 63 69 66 69 63 20 72 6f 75 | eing.used.as.a.more.specific.rou |
| 146120 | 74 65 20 69 6e 73 69 64 65 20 79 6f 75 72 20 6e 65 74 77 6f 72 6b 2e 00 55 73 65 20 74 68 69 73 | te.inside.your.network..Use.this |
| 146140 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 4e 65 74 77 6f 72 6b 20 | .command.to.configure.a.Network. |
| 146160 | 45 6d 75 6c 61 74 6f 72 20 70 6f 6c 69 63 79 20 64 65 66 69 6e 69 6e 67 20 69 74 73 20 6e 61 6d | Emulator.policy.defining.its.nam |
| 146180 | 65 20 61 6e 64 20 74 68 65 20 66 69 78 65 64 20 61 6d 6f 75 6e 74 20 6f 66 20 74 69 6d 65 20 79 | e.and.the.fixed.amount.of.time.y |
| 1461a0 | 6f 75 20 77 61 6e 74 20 74 6f 20 61 64 64 20 74 6f 20 61 6c 6c 20 70 61 63 6b 65 74 20 67 6f 69 | ou.want.to.add.to.all.packet.goi |
| 1461c0 | 6e 67 20 6f 75 74 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 6c 61 74 | ng.out.of.the.interface..The.lat |
| 1461e0 | 65 6e 63 79 20 77 69 6c 6c 20 62 65 20 61 64 64 65 64 20 74 68 72 6f 75 67 68 20 74 68 65 20 54 | ency.will.be.added.through.the.T |
| 146200 | 6f 6b 65 6e 20 42 75 63 6b 65 74 20 46 69 6c 74 65 72 20 71 64 69 73 63 2e 20 49 74 20 77 69 6c | oken.Bucket.Filter.qdisc..It.wil |
| 146220 | 6c 20 6f 6e 6c 79 20 74 61 6b 65 20 65 66 66 65 63 74 20 69 66 20 79 6f 75 20 68 61 76 65 20 63 | l.only.take.effect.if.you.have.c |
| 146240 | 6f 6e 66 69 67 75 72 65 64 20 69 74 73 20 62 61 6e 64 77 69 64 74 68 20 74 6f 6f 2e 20 59 6f 75 | onfigured.its.bandwidth.too..You |
| 146260 | 20 63 61 6e 20 75 73 65 20 73 65 63 73 2c 20 6d 73 20 61 6e 64 20 75 73 2e 20 44 65 66 61 75 6c | .can.use.secs,.ms.and.us..Defaul |
| 146280 | 74 3a 20 35 30 6d 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e | t:.50ms..Use.this.command.to.con |
| 1462a0 | 66 69 67 75 72 65 20 61 20 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 20 70 6f 6c 69 63 79 2c 20 | figure.a.Priority.Queue.policy,. |
| 1462c0 | 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 73 65 74 20 61 20 63 6c 61 73 73 20 77 69 74 68 20 61 | set.its.name,.set.a.class.with.a |
| 1462e0 | 20 70 72 69 6f 72 69 74 79 20 66 72 6f 6d 20 31 20 74 6f 20 37 20 61 6e 64 20 64 65 66 69 6e 65 | .priority.from.1.to.7.and.define |
| 146300 | 20 61 20 68 61 72 64 20 6c 69 6d 69 74 20 6f 6e 20 74 68 65 20 72 65 61 6c 20 71 75 65 75 65 20 | .a.hard.limit.on.the.real.queue. |
| 146320 | 73 69 7a 65 2e 20 57 68 65 6e 20 74 68 69 73 20 6c 69 6d 69 74 20 69 73 20 72 65 61 63 68 65 64 | size..When.this.limit.is.reached |
| 146340 | 2c 20 6e 65 77 20 70 61 63 6b 65 74 73 20 61 72 65 20 64 72 6f 70 70 65 64 2e 00 55 73 65 20 74 | ,.new.packets.are.dropped..Use.t |
| 146360 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 61 6e 64 6f | his.command.to.configure.a.Rando |
| 146380 | 6d 2d 44 65 74 65 63 74 20 70 6f 6c 69 63 79 20 61 6e 64 20 73 65 74 20 69 74 73 20 6e 61 6d 65 | m-Detect.policy.and.set.its.name |
| 1463a0 | 2c 20 74 68 65 6e 20 6e 61 6d 65 20 74 68 65 20 49 50 20 50 72 65 63 65 64 65 6e 63 65 20 66 6f | ,.then.name.the.IP.Precedence.fo |
| 1463c0 | 72 20 74 68 65 20 76 69 72 74 75 61 6c 20 71 75 65 75 65 20 79 6f 75 20 61 72 65 20 63 6f 6e 66 | r.the.virtual.queue.you.are.conf |
| 1463e0 | 69 67 75 72 69 6e 67 20 61 6e 64 20 77 68 61 74 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 73 69 7a | iguring.and.what.the.maximum.siz |
| 146400 | 65 20 6f 66 20 69 74 73 20 71 75 65 75 65 20 77 69 6c 6c 20 62 65 20 28 66 72 6f 6d 20 31 20 74 | e.of.its.queue.will.be.(from.1.t |
| 146420 | 6f 20 31 2d 34 32 39 34 39 36 37 32 39 35 20 70 61 63 6b 65 74 73 29 2e 20 50 61 63 6b 65 74 73 | o.1-4294967295.packets)..Packets |
| 146440 | 20 61 72 65 20 64 72 6f 70 70 65 64 20 77 68 65 6e 20 74 68 65 20 63 75 72 72 65 6e 74 20 71 75 | .are.dropped.when.the.current.qu |
| 146460 | 65 75 65 20 6c 65 6e 67 74 68 20 72 65 61 63 68 65 73 20 74 68 69 73 20 76 61 6c 75 65 2e 00 55 | eue.length.reaches.this.value..U |
| 146480 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 | se.this.command.to.configure.a.R |
| 1464a0 | 61 6e 64 6f 6d 2d 44 65 74 65 63 74 20 70 6f 6c 69 63 79 20 61 6e 64 20 73 65 74 20 69 74 73 20 | andom-Detect.policy.and.set.its. |
| 1464c0 | 6e 61 6d 65 2c 20 74 68 65 6e 20 73 74 61 74 65 20 74 68 65 20 49 50 20 50 72 65 63 65 64 65 6e | name,.then.state.the.IP.Preceden |
| 1464e0 | 63 65 20 66 6f 72 20 74 68 65 20 76 69 72 74 75 61 6c 20 71 75 65 75 65 20 79 6f 75 20 61 72 65 | ce.for.the.virtual.queue.you.are |
| 146500 | 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 6e 64 20 77 68 61 74 20 69 74 73 20 6d 61 72 6b 20 28 | .configuring.and.what.its.mark.( |
| 146520 | 64 72 6f 70 29 20 70 72 6f 62 61 62 69 6c 69 74 79 20 77 69 6c 6c 20 62 65 2e 20 53 65 74 20 74 | drop).probability.will.be..Set.t |
| 146540 | 68 65 20 70 72 6f 62 61 62 69 6c 69 74 79 20 62 79 20 67 69 76 69 6e 67 20 74 68 65 20 4e 20 76 | he.probability.by.giving.the.N.v |
| 146560 | 61 6c 75 65 20 6f 66 20 74 68 65 20 66 72 61 63 74 69 6f 6e 20 31 2f 4e 20 28 64 65 66 61 75 6c | alue.of.the.fraction.1/N.(defaul |
| 146580 | 74 3a 20 31 30 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 | t:.10)..Use.this.command.to.conf |
| 1465a0 | 69 67 75 72 65 20 61 20 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 20 70 6f 6c 69 63 79 20 61 6e 64 | igure.a.Random-Detect.policy.and |
| 1465c0 | 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 74 68 65 6e 20 73 74 61 74 65 20 74 68 65 20 49 50 | .set.its.name,.then.state.the.IP |
| 1465e0 | 20 50 72 65 63 65 64 65 6e 63 65 20 66 6f 72 20 74 68 65 20 76 69 72 74 75 61 6c 20 71 75 65 75 | .Precedence.for.the.virtual.queu |
| 146600 | 65 20 79 6f 75 20 61 72 65 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 6e 64 20 77 68 61 74 20 69 | e.you.are.configuring.and.what.i |
| 146620 | 74 73 20 6d 61 78 69 6d 75 6d 20 74 68 72 65 73 68 6f 6c 64 20 66 6f 72 20 72 61 6e 64 6f 6d 20 | ts.maximum.threshold.for.random. |
| 146640 | 64 65 74 65 63 74 69 6f 6e 20 77 69 6c 6c 20 62 65 20 28 66 72 6f 6d 20 30 20 74 6f 20 34 30 39 | detection.will.be.(from.0.to.409 |
| 146660 | 36 20 70 61 63 6b 65 74 73 2c 20 64 65 66 61 75 6c 74 3a 20 31 38 29 2e 20 41 74 20 74 68 69 73 | 6.packets,.default:.18)..At.this |
| 146680 | 20 73 69 7a 65 2c 20 74 68 65 20 6d 61 72 6b 69 6e 67 20 28 64 72 6f 70 29 20 70 72 6f 62 61 62 | .size,.the.marking.(drop).probab |
| 1466a0 | 69 6c 69 74 79 20 69 73 20 6d 61 78 69 6d 61 6c 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 | ility.is.maximal..Use.this.comma |
| 1466c0 | 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 20 | nd.to.configure.a.Random-Detect. |
| 1466e0 | 70 6f 6c 69 63 79 20 61 6e 64 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 74 68 65 6e 20 73 74 | policy.and.set.its.name,.then.st |
| 146700 | 61 74 65 20 74 68 65 20 49 50 20 50 72 65 63 65 64 65 6e 63 65 20 66 6f 72 20 74 68 65 20 76 69 | ate.the.IP.Precedence.for.the.vi |
| 146720 | 72 74 75 61 6c 20 71 75 65 75 65 20 79 6f 75 20 61 72 65 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 | rtual.queue.you.are.configuring. |
| 146740 | 61 6e 64 20 77 68 61 74 20 69 74 73 20 6d 69 6e 69 6d 75 6d 20 74 68 72 65 73 68 6f 6c 64 20 66 | and.what.its.minimum.threshold.f |
| 146760 | 6f 72 20 72 61 6e 64 6f 6d 20 64 65 74 65 63 74 69 6f 6e 20 77 69 6c 6c 20 62 65 20 28 66 72 6f | or.random.detection.will.be.(fro |
| 146780 | 6d 20 30 20 74 6f 20 34 30 39 36 20 70 61 63 6b 65 74 73 29 2e 20 20 49 66 20 74 68 69 73 20 76 | m.0.to.4096.packets)...If.this.v |
| 1467a0 | 61 6c 75 65 20 69 73 20 65 78 63 65 65 64 65 64 2c 20 70 61 63 6b 65 74 73 20 73 74 61 72 74 20 | alue.is.exceeded,.packets.start. |
| 1467c0 | 62 65 69 6e 67 20 65 6c 69 67 69 62 6c 65 20 66 6f 72 20 62 65 69 6e 67 20 64 72 6f 70 70 65 64 | being.eligible.for.being.dropped |
| 1467e0 | 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 | ..Use.this.command.to.configure. |
| 146800 | 61 20 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 20 70 6f 6c 69 63 79 20 61 6e 64 20 73 65 74 20 69 | a.Random-Detect.policy.and.set.i |
| 146820 | 74 73 20 6e 61 6d 65 2c 20 74 68 65 6e 20 73 74 61 74 65 20 74 68 65 20 49 50 20 50 72 65 63 65 | ts.name,.then.state.the.IP.Prece |
| 146840 | 64 65 6e 63 65 20 66 6f 72 20 74 68 65 20 76 69 72 74 75 61 6c 20 71 75 65 75 65 20 79 6f 75 20 | dence.for.the.virtual.queue.you. |
| 146860 | 61 72 65 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 6e 64 20 77 68 61 74 20 74 68 65 20 73 69 7a | are.configuring.and.what.the.siz |
| 146880 | 65 20 6f 66 20 69 74 73 20 61 76 65 72 61 67 65 2d 70 61 63 6b 65 74 20 73 68 6f 75 6c 64 20 62 | e.of.its.average-packet.should.b |
| 1468a0 | 65 20 28 69 6e 20 62 79 74 65 73 2c 20 64 65 66 61 75 6c 74 3a 20 31 30 32 34 29 2e 00 55 73 65 | e.(in.bytes,.default:.1024)..Use |
| 1468c0 | 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 61 6e | .this.command.to.configure.a.Ran |
| 1468e0 | 64 6f 6d 2d 44 65 74 65 63 74 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 20 | dom-Detect.policy,.set.its.name. |
| 146900 | 61 6e 64 20 73 65 74 20 74 68 65 20 61 76 61 69 6c 61 62 6c 65 20 62 61 6e 64 77 69 64 74 68 20 | and.set.the.available.bandwidth. |
| 146920 | 66 6f 72 20 74 68 69 73 20 70 6f 6c 69 63 79 2e 20 49 74 20 69 73 20 75 73 65 64 20 66 6f 72 20 | for.this.policy..It.is.used.for. |
| 146940 | 63 61 6c 63 75 6c 61 74 69 6e 67 20 74 68 65 20 61 76 65 72 61 67 65 20 71 75 65 75 65 20 73 69 | calculating.the.average.queue.si |
| 146960 | 7a 65 20 61 66 74 65 72 20 73 6f 6d 65 20 69 64 6c 65 20 74 69 6d 65 2e 20 49 74 20 73 68 6f 75 | ze.after.some.idle.time..It.shou |
| 146980 | 6c 64 20 62 65 20 73 65 74 20 74 6f 20 74 68 65 20 62 61 6e 64 77 69 64 74 68 20 6f 66 20 79 6f | ld.be.set.to.the.bandwidth.of.yo |
| 1469a0 | 75 72 20 69 6e 74 65 72 66 61 63 65 2e 20 52 61 6e 64 6f 6d 20 44 65 74 65 63 74 20 69 73 20 6e | ur.interface..Random.Detect.is.n |
| 1469c0 | 6f 74 20 61 20 73 68 61 70 69 6e 67 20 70 6f 6c 69 63 79 2c 20 74 68 69 73 20 63 6f 6d 6d 61 6e | ot.a.shaping.policy,.this.comman |
| 1469e0 | 64 20 77 69 6c 6c 20 6e 6f 74 20 73 68 61 70 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 | d.will.not.shape..Use.this.comma |
| 146a00 | 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 61 74 65 2d 43 6f 6e 74 72 6f 6c 20 70 | nd.to.configure.a.Rate-Control.p |
| 146a20 | 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 6d 61 78 69 | olicy,.set.its.name.and.the.maxi |
| 146a40 | 6d 75 6d 20 61 6d 6f 75 6e 74 20 6f 66 20 74 69 6d 65 20 61 20 70 61 63 6b 65 74 20 63 61 6e 20 | mum.amount.of.time.a.packet.can. |
| 146a60 | 62 65 20 71 75 65 75 65 64 20 28 64 65 66 61 75 6c 74 3a 20 35 30 20 6d 73 29 2e 00 55 73 65 20 | be.queued.(default:.50.ms)..Use. |
| 146a80 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 61 74 65 | this.command.to.configure.a.Rate |
| 146aa0 | 2d 43 6f 6e 74 72 6f 6c 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 20 61 6e | -Control.policy,.set.its.name.an |
| 146ac0 | 64 20 74 68 65 20 72 61 74 65 20 6c 69 6d 69 74 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 68 61 76 | d.the.rate.limit.you.want.to.hav |
| 146ae0 | 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 | e..Use.this.command.to.configure |
| 146b00 | 20 61 20 52 61 74 65 2d 43 6f 6e 74 72 6f 6c 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 | .a.Rate-Control.policy,.set.its. |
| 146b20 | 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 73 69 7a 65 20 6f 66 20 74 68 65 20 62 75 63 6b 65 74 20 | name.and.the.size.of.the.bucket. |
| 146b40 | 69 6e 20 62 79 74 65 73 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 61 76 61 69 6c 61 62 6c 65 | in.bytes.which.will.be.available |
| 146b60 | 20 66 6f 72 20 62 75 72 73 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 | .for.burst..Use.this.command.to. |
| 146b80 | 63 6f 6e 66 69 67 75 72 65 20 61 20 52 6f 75 6e 64 2d 52 6f 62 69 6e 20 70 6f 6c 69 63 79 2c 20 | configure.a.Round-Robin.policy,. |
| 146ba0 | 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 73 65 74 20 61 20 63 6c 61 73 73 20 49 44 2c 20 61 6e | set.its.name,.set.a.class.ID,.an |
| 146bc0 | 64 20 74 68 65 20 71 75 61 6e 74 75 6d 20 66 6f 72 20 74 68 61 74 20 63 6c 61 73 73 2e 20 54 68 | d.the.quantum.for.that.class..Th |
| 146be0 | 65 20 64 65 66 69 63 69 74 20 63 6f 75 6e 74 65 72 20 77 69 6c 6c 20 61 64 64 20 74 68 61 74 20 | e.deficit.counter.will.add.that. |
| 146c00 | 76 61 6c 75 65 20 65 61 63 68 20 72 6f 75 6e 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 | value.each.round..Use.this.comma |
| 146c20 | 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 6f 75 6e 64 2d 52 6f 62 69 6e 20 70 6f | nd.to.configure.a.Round-Robin.po |
| 146c40 | 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 73 65 74 20 61 20 63 6c 61 73 73 20 | licy,.set.its.name,.set.a.class. |
| 146c60 | 49 44 2c 20 61 6e 64 20 74 68 65 20 71 75 65 75 65 20 73 69 7a 65 20 69 6e 20 70 61 63 6b 65 74 | ID,.and.the.queue.size.in.packet |
| 146c80 | 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 | s..Use.this.command.to.configure |
| 146ca0 | 20 61 20 53 68 61 70 65 72 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 20 61 | .a.Shaper.policy,.set.its.name.a |
| 146cc0 | 6e 64 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 62 61 6e 64 77 69 64 74 68 20 66 6f 72 20 61 6c 6c | nd.the.maximum.bandwidth.for.all |
| 146ce0 | 20 63 6f 6d 62 69 6e 65 64 20 74 72 61 66 66 69 63 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d | .combined.traffic..Use.this.comm |
| 146d00 | 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 53 68 61 70 65 72 20 70 6f 6c 69 63 79 | and.to.configure.a.Shaper.policy |
| 146d20 | 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 64 65 66 69 6e 65 20 61 20 63 6c 61 73 73 20 61 | ,.set.its.name,.define.a.class.a |
| 146d40 | 6e 64 20 73 65 74 20 74 68 65 20 67 75 61 72 61 6e 74 65 65 64 20 74 72 61 66 66 69 63 20 79 6f | nd.set.the.guaranteed.traffic.yo |
| 146d60 | 75 20 77 61 6e 74 20 74 6f 20 61 6c 6c 6f 63 61 74 65 20 74 6f 20 74 68 61 74 20 63 6c 61 73 73 | u.want.to.allocate.to.that.class |
| 146d80 | 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 | ..Use.this.command.to.configure. |
| 146da0 | 61 20 53 68 61 70 65 72 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 64 | a.Shaper.policy,.set.its.name,.d |
| 146dc0 | 65 66 69 6e 65 20 61 20 63 6c 61 73 73 20 61 6e 64 20 73 65 74 20 74 68 65 20 6d 61 78 69 6d 75 | efine.a.class.and.set.the.maximu |
| 146de0 | 6d 20 73 70 65 65 64 20 70 6f 73 73 69 62 6c 65 20 66 6f 72 20 74 68 69 73 20 63 6c 61 73 73 2e | m.speed.possible.for.this.class. |
| 146e00 | 20 54 68 65 20 64 65 66 61 75 6c 74 20 63 65 69 6c 69 6e 67 20 76 61 6c 75 65 20 69 73 20 74 68 | .The.default.ceiling.value.is.th |
| 146e20 | 65 20 62 61 6e 64 77 69 64 74 68 20 76 61 6c 75 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d | e.bandwidth.value..Use.this.comm |
| 146e40 | 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 53 68 61 70 65 72 20 70 6f 6c 69 63 79 | and.to.configure.a.Shaper.policy |
| 146e60 | 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 64 65 66 69 6e 65 20 61 20 63 6c 61 73 73 20 61 | ,.set.its.name,.define.a.class.a |
| 146e80 | 6e 64 20 73 65 74 20 74 68 65 20 70 72 69 6f 72 69 74 79 20 66 6f 72 20 75 73 61 67 65 20 6f 66 | nd.set.the.priority.for.usage.of |
| 146ea0 | 20 61 76 61 69 6c 61 62 6c 65 20 62 61 6e 64 77 69 64 74 68 20 6f 6e 63 65 20 67 75 61 72 61 6e | .available.bandwidth.once.guaran |
| 146ec0 | 74 65 65 73 20 68 61 76 65 20 62 65 65 6e 20 6d 65 74 2e 20 54 68 65 20 6c 6f 77 65 72 20 74 68 | tees.have.been.met..The.lower.th |
| 146ee0 | 65 20 70 72 69 6f 72 69 74 79 20 6e 75 6d 62 65 72 2c 20 74 68 65 20 68 69 67 68 65 72 20 74 68 | e.priority.number,.the.higher.th |
| 146f00 | 65 20 70 72 69 6f 72 69 74 79 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 70 72 69 6f 72 69 74 79 | e.priority..The.default.priority |
| 146f20 | 20 76 61 6c 75 65 20 69 73 20 30 2c 20 74 68 65 20 68 69 67 68 65 73 74 20 70 72 69 6f 72 69 74 | .value.is.0,.the.highest.priorit |
| 146f40 | 79 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 | y..Use.this.command.to.configure |
| 146f60 | 20 61 20 53 68 61 70 65 72 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 | .a.Shaper.policy,.set.its.name,. |
| 146f80 | 64 65 66 69 6e 65 20 61 20 63 6c 61 73 73 20 61 6e 64 20 73 65 74 20 74 68 65 20 73 69 7a 65 20 | define.a.class.and.set.the.size. |
| 146fa0 | 6f 66 20 74 68 65 20 60 74 6f 63 6b 65 6e 20 62 75 63 6b 65 74 60 5f 20 69 6e 20 62 79 74 65 73 | of.the.`tocken.bucket`_.in.bytes |
| 146fc0 | 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 61 76 61 69 6c 61 62 6c 65 20 74 6f 20 62 65 20 | ,.which.will.be.available.to.be. |
| 146fe0 | 73 65 6e 74 20 61 74 20 63 65 69 6c 69 6e 67 20 73 70 65 65 64 20 28 64 65 66 61 75 6c 74 3a 20 | sent.at.ceiling.speed.(default:. |
| 147000 | 31 35 4b 62 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 | 15Kb)..Use.this.command.to.confi |
| 147020 | 67 75 72 65 20 61 20 64 61 74 61 2d 72 61 74 65 20 6c 69 6d 69 74 20 74 6f 20 50 50 50 4f 6f 45 | gure.a.data-rate.limit.to.PPPOoE |
| 147040 | 20 63 6c 69 65 6e 74 73 20 66 6f 72 20 74 72 61 66 66 69 63 20 64 6f 77 6e 6c 6f 61 64 20 6f 72 | .clients.for.traffic.download.or |
| 147060 | 20 75 70 6c 6f 61 64 2e 20 54 68 65 20 72 61 74 65 2d 6c 69 6d 69 74 20 69 73 20 73 65 74 20 69 | .upload..The.rate-limit.is.set.i |
| 147080 | 6e 20 6b 62 69 74 2f 73 65 63 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 | n.kbit/sec..Use.this.command.to. |
| 1470a0 | 63 6f 6e 66 69 67 75 72 65 20 61 20 64 72 6f 70 2d 74 61 69 6c 20 70 6f 6c 69 63 79 20 28 50 46 | configure.a.drop-tail.policy.(PF |
| 1470c0 | 49 46 4f 29 2e 20 43 68 6f 6f 73 65 20 61 20 75 6e 69 71 75 65 20 6e 61 6d 65 20 66 6f 72 20 74 | IFO)..Choose.a.unique.name.for.t |
| 1470e0 | 68 69 73 20 70 6f 6c 69 63 79 20 61 6e 64 20 74 68 65 20 73 69 7a 65 20 6f 66 20 74 68 65 20 71 | his.policy.and.the.size.of.the.q |
| 147100 | 75 65 75 65 20 62 79 20 73 65 74 74 69 6e 67 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 70 61 | ueue.by.setting.the.number.of.pa |
| 147120 | 63 6b 65 74 73 20 69 74 20 63 61 6e 20 63 6f 6e 74 61 69 6e 20 28 6d 61 78 69 6d 75 6d 20 34 32 | ckets.it.can.contain.(maximum.42 |
| 147140 | 39 34 39 36 37 32 39 35 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 | 94967295)..Use.this.command.to.c |
| 147160 | 6f 6e 66 69 67 75 72 65 20 61 20 73 70 65 63 69 66 69 63 20 73 65 73 73 69 6f 6e 20 68 6f 6c 64 | onfigure.a.specific.session.hold |
| 147180 | 20 74 69 6d 65 20 66 6f 72 20 4c 44 50 20 70 65 65 72 73 2e 20 53 65 74 20 74 68 65 20 49 50 20 | .time.for.LDP.peers..Set.the.IP. |
| 1471a0 | 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 4c 44 50 20 70 65 65 72 20 61 6e 64 20 61 20 73 65 | address.of.the.LDP.peer.and.a.se |
| 1471c0 | 73 73 69 6f 6e 20 68 6f 6c 64 20 74 69 6d 65 20 74 68 61 74 20 73 68 6f 75 6c 64 20 62 65 20 63 | ssion.hold.time.that.should.be.c |
| 1471e0 | 6f 6e 66 69 67 75 72 65 64 20 66 6f 72 20 69 74 2e 20 59 6f 75 20 6d 61 79 20 68 61 76 65 20 74 | onfigured.for.it..You.may.have.t |
| 147200 | 6f 20 72 65 73 65 74 20 74 68 65 20 6e 65 69 67 68 62 6f 72 20 66 6f 72 20 74 68 69 73 20 74 6f | o.reset.the.neighbor.for.this.to |
| 147220 | 20 77 6f 72 6b 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 | .work..Use.this.command.to.confi |
| 147240 | 67 75 72 65 20 61 6e 20 49 6e 67 72 65 73 73 20 50 6f 6c 69 63 65 72 2c 20 64 65 66 69 6e 69 6e | gure.an.Ingress.Policer,.definin |
| 147260 | 67 20 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 62 75 72 73 74 20 73 69 7a 65 20 69 6e | g.its.name.and.the.burst.size.in |
| 147280 | 20 62 79 74 65 73 20 28 64 65 66 61 75 6c 74 3a 20 31 35 29 20 66 6f 72 20 69 74 73 20 64 65 66 | .bytes.(default:.15).for.its.def |
| 1472a0 | 61 75 6c 74 20 70 6f 6c 69 63 79 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | ault.policy..Use.this.command.to |
| 1472c0 | 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 49 6e 67 72 65 73 73 20 50 6f 6c 69 63 65 72 2c 20 64 | .configure.an.Ingress.Policer,.d |
| 1472e0 | 65 66 69 6e 69 6e 67 20 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 6d 61 78 69 6d 75 6d | efining.its.name.and.the.maximum |
| 147300 | 20 61 6c 6c 6f 77 65 64 20 62 61 6e 64 77 69 64 74 68 20 66 6f 72 20 69 74 73 20 64 65 66 61 75 | .allowed.bandwidth.for.its.defau |
| 147320 | 6c 74 20 70 6f 6c 69 63 79 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 | lt.policy..Use.this.command.to.c |
| 147340 | 6f 6e 66 69 67 75 72 65 20 61 6e 20 49 6e 67 72 65 73 73 20 50 6f 6c 69 63 65 72 2c 20 64 65 66 | onfigure.an.Ingress.Policer,.def |
| 147360 | 69 6e 69 6e 67 20 69 74 73 20 6e 61 6d 65 2c 20 61 20 63 6c 61 73 73 20 69 64 65 6e 74 69 66 69 | ining.its.name,.a.class.identifi |
| 147380 | 65 72 20 28 31 2d 34 30 39 30 29 20 61 6e 64 20 74 68 65 20 62 75 72 73 74 20 73 69 7a 65 20 69 | er.(1-4090).and.the.burst.size.i |
| 1473a0 | 6e 20 62 79 74 65 73 20 66 6f 72 20 74 68 69 73 20 63 6c 61 73 73 20 28 64 65 66 61 75 6c 74 3a | n.bytes.for.this.class.(default: |
| 1473c0 | 20 31 35 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 | .15)..Use.this.command.to.config |
| 1473e0 | 75 72 65 20 61 6e 20 49 6e 67 72 65 73 73 20 50 6f 6c 69 63 65 72 2c 20 64 65 66 69 6e 69 6e 67 | ure.an.Ingress.Policer,.defining |
| 147400 | 20 69 74 73 20 6e 61 6d 65 2c 20 61 20 63 6c 61 73 73 20 69 64 65 6e 74 69 66 69 65 72 20 28 31 | .its.name,.a.class.identifier.(1 |
| 147420 | 2d 34 30 39 30 29 20 61 6e 64 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 61 6c 6c 6f 77 65 64 20 62 | -4090).and.the.maximum.allowed.b |
| 147440 | 61 6e 64 77 69 64 74 68 20 66 6f 72 20 74 68 69 73 20 63 6c 61 73 73 2e 00 55 73 65 20 74 68 69 | andwidth.for.this.class..Use.thi |
| 147460 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 49 6e 67 72 65 73 | s.command.to.configure.an.Ingres |
| 147480 | 73 20 50 6f 6c 69 63 65 72 2c 20 64 65 66 69 6e 69 6e 67 20 69 74 73 20 6e 61 6d 65 2c 20 61 20 | s.Policer,.defining.its.name,.a. |
| 1474a0 | 63 6c 61 73 73 20 69 64 65 6e 74 69 66 69 65 72 20 28 31 2d 34 30 39 30 29 2c 20 61 20 63 6c 61 | class.identifier.(1-4090),.a.cla |
| 1474c0 | 73 73 20 6d 61 74 63 68 69 6e 67 20 72 75 6c 65 20 6e 61 6d 65 20 61 6e 64 20 69 74 73 20 64 65 | ss.matching.rule.name.and.its.de |
| 1474e0 | 73 63 72 69 70 74 69 6f 6e 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 | scription..Use.this.command.to.c |
| 147500 | 6f 6e 66 69 67 75 72 65 20 61 6e 20 49 6e 67 72 65 73 73 20 50 6f 6c 69 63 65 72 2c 20 64 65 66 | onfigure.an.Ingress.Policer,.def |
| 147520 | 69 6e 69 6e 67 20 69 74 73 20 6e 61 6d 65 2c 20 61 20 63 6c 61 73 73 20 69 64 65 6e 74 69 66 69 | ining.its.name,.a.class.identifi |
| 147540 | 65 72 20 28 31 2d 34 30 39 30 29 2c 20 61 6e 64 20 74 68 65 20 70 72 69 6f 72 69 74 79 20 28 30 | er.(1-4090),.and.the.priority.(0 |
| 147560 | 2d 32 30 2c 20 64 65 66 61 75 6c 74 20 32 30 29 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 72 75 | -20,.default.20).in.which.the.ru |
| 147580 | 6c 65 20 69 73 20 65 76 61 6c 75 61 74 65 64 20 28 74 68 65 20 6c 6f 77 65 72 20 74 68 65 20 6e | le.is.evaluated.(the.lower.the.n |
| 1475a0 | 75 6d 62 65 72 2c 20 74 68 65 20 68 69 67 68 65 72 20 74 68 65 20 70 72 69 6f 72 69 74 79 29 2e | umber,.the.higher.the.priority). |
| 1475c0 | 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 | .Use.this.command.to.configure.a |
| 1475e0 | 6e 20 66 71 2d 63 6f 64 65 6c 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 20 | n.fq-codel.policy,.set.its.name. |
| 147600 | 61 6e 64 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 62 79 74 65 73 20 | and.the.maximum.number.of.bytes. |
| 147620 | 28 64 65 66 61 75 6c 74 3a 20 31 35 31 34 29 20 74 6f 20 62 65 20 64 65 71 75 65 75 65 64 20 66 | (default:.1514).to.be.dequeued.f |
| 147640 | 72 6f 6d 20 61 20 71 75 65 75 65 20 61 74 20 6f 6e 63 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f | rom.a.queue.at.once..Use.this.co |
| 147660 | 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 66 71 2d 63 6f 64 65 6c 20 70 | mmand.to.configure.an.fq-codel.p |
| 147680 | 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 6e 75 6d 62 | olicy,.set.its.name.and.the.numb |
| 1476a0 | 65 72 20 6f 66 20 73 75 62 2d 71 75 65 75 65 73 20 28 64 65 66 61 75 6c 74 3a 20 31 30 32 34 29 | er.of.sub-queues.(default:.1024) |
| 1476c0 | 20 69 6e 74 6f 20 77 68 69 63 68 20 70 61 63 6b 65 74 73 20 61 72 65 20 63 6c 61 73 73 69 66 69 | .into.which.packets.are.classifi |
| 1476e0 | 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 | ed..Use.this.command.to.configur |
| 147700 | 65 20 61 6e 20 66 71 2d 63 6f 64 65 6c 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 | e.an.fq-codel.policy,.set.its.na |
| 147720 | 6d 65 20 61 6e 64 20 74 68 65 20 74 69 6d 65 20 70 65 72 69 6f 64 20 75 73 65 64 20 62 79 20 74 | me.and.the.time.period.used.by.t |
| 147740 | 68 65 20 63 6f 6e 74 72 6f 6c 20 6c 6f 6f 70 20 6f 66 20 43 6f 44 65 6c 20 74 6f 20 64 65 74 65 | he.control.loop.of.CoDel.to.dete |
| 147760 | 63 74 20 77 68 65 6e 20 61 20 70 65 72 73 69 73 74 65 6e 74 20 71 75 65 75 65 20 69 73 20 64 65 | ct.when.a.persistent.queue.is.de |
| 147780 | 76 65 6c 6f 70 69 6e 67 2c 20 65 6e 73 75 72 69 6e 67 20 74 68 61 74 20 74 68 65 20 6d 65 61 73 | veloping,.ensuring.that.the.meas |
| 1477a0 | 75 72 65 64 20 6d 69 6e 69 6d 75 6d 20 64 65 6c 61 79 20 64 6f 65 73 20 6e 6f 74 20 62 65 63 6f | ured.minimum.delay.does.not.beco |
| 1477c0 | 6d 65 20 74 6f 6f 20 73 74 61 6c 65 20 28 64 65 66 61 75 6c 74 3a 20 31 30 30 6d 73 29 2e 00 55 | me.too.stale.(default:.100ms)..U |
| 1477e0 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 | se.this.command.to.configure.an. |
| 147800 | 66 71 2d 63 6f 64 65 6c 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 61 | fq-codel.policy,.set.its.name,.a |
| 147820 | 6e 64 20 64 65 66 69 6e 65 20 61 20 68 61 72 64 20 6c 69 6d 69 74 20 6f 6e 20 74 68 65 20 72 65 | nd.define.a.hard.limit.on.the.re |
| 147840 | 61 6c 20 71 75 65 75 65 20 73 69 7a 65 2e 20 57 68 65 6e 20 74 68 69 73 20 6c 69 6d 69 74 20 69 | al.queue.size..When.this.limit.i |
| 147860 | 73 20 72 65 61 63 68 65 64 2c 20 6e 65 77 20 70 61 63 6b 65 74 73 20 61 72 65 20 64 72 6f 70 70 | s.reached,.new.packets.are.dropp |
| 147880 | 65 64 20 28 64 65 66 61 75 6c 74 3a 20 31 30 32 34 30 20 70 61 63 6b 65 74 73 29 2e 00 55 73 65 | ed.(default:.10240.packets)..Use |
| 1478a0 | 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 66 71 | .this.command.to.configure.an.fq |
| 1478c0 | 2d 63 6f 64 65 6c 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 61 6e 64 | -codel.policy,.set.its.name,.and |
| 1478e0 | 20 64 65 66 69 6e 65 20 74 68 65 20 61 63 63 65 70 74 61 62 6c 65 20 6d 69 6e 69 6d 75 6d 20 73 | .define.the.acceptable.minimum.s |
| 147900 | 74 61 6e 64 69 6e 67 2f 70 65 72 73 69 73 74 65 6e 74 20 71 75 65 75 65 20 64 65 6c 61 79 2e 20 | tanding/persistent.queue.delay.. |
| 147920 | 54 68 69 73 20 6d 69 6e 69 6d 75 6d 20 64 65 6c 61 79 20 69 73 20 69 64 65 6e 74 69 66 69 65 64 | This.minimum.delay.is.identified |
| 147940 | 20 62 79 20 74 72 61 63 6b 69 6e 67 20 74 68 65 20 6c 6f 63 61 6c 20 6d 69 6e 69 6d 75 6d 20 71 | .by.tracking.the.local.minimum.q |
| 147960 | 75 65 75 65 20 64 65 6c 61 79 20 74 68 61 74 20 70 61 63 6b 65 74 73 20 65 78 70 65 72 69 65 6e | ueue.delay.that.packets.experien |
| 147980 | 63 65 20 28 64 65 66 61 75 6c 74 3a 20 35 6d 73 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d | ce.(default:.5ms)..Use.this.comm |
| 1479a0 | 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 77 69 | and.to.configure.an.interface.wi |
| 1479c0 | 74 68 20 49 47 4d 50 20 73 6f 20 74 68 61 74 20 50 49 4d 20 63 61 6e 20 72 65 63 65 69 76 65 20 | th.IGMP.so.that.PIM.can.receive. |
| 1479e0 | 49 47 4d 50 20 72 65 70 6f 72 74 73 20 61 6e 64 20 71 75 65 72 79 20 6f 6e 20 74 68 65 20 73 65 | IGMP.reports.and.query.on.the.se |
| 147a00 | 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 2e 20 42 79 20 64 65 66 61 75 6c 74 20 49 47 4d | lected.interface..By.default.IGM |
| 147a20 | 50 20 76 65 72 73 69 6f 6e 20 33 20 77 69 6c 6c 20 62 65 20 75 73 65 64 2e 00 55 73 65 20 74 68 | P.version.3.will.be.used..Use.th |
| 147a40 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 75 74 68 65 6e 74 69 | is.command.to.configure.authenti |
| 147a60 | 63 61 74 69 6f 6e 20 66 6f 72 20 4c 44 50 20 70 65 65 72 73 2e 20 53 65 74 20 74 68 65 20 49 50 | cation.for.LDP.peers..Set.the.IP |
| 147a80 | 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 4c 44 50 20 70 65 65 72 20 61 6e 64 20 61 20 70 | .address.of.the.LDP.peer.and.a.p |
| 147aa0 | 61 73 73 77 6f 72 64 20 74 68 61 74 20 73 68 6f 75 6c 64 20 62 65 20 73 68 61 72 65 64 20 69 6e | assword.that.should.be.shared.in |
| 147ac0 | 20 6f 72 64 65 72 20 74 6f 20 62 65 63 6f 6d 65 20 6e 65 69 67 68 62 6f 72 73 2e 00 55 73 65 20 | .order.to.become.neighbors..Use. |
| 147ae0 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 69 6e 20 74 68 65 | this.command.to.configure.in.the |
| 147b00 | 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 49 47 4d 50 20 68 6f 73 | .selected.interface.the.IGMP.hos |
| 147b20 | 74 20 71 75 65 72 79 20 69 6e 74 65 72 76 61 6c 20 28 31 2d 31 38 30 30 29 20 69 6e 20 73 65 63 | t.query.interval.(1-1800).in.sec |
| 147b40 | 6f 6e 64 73 20 74 68 61 74 20 50 49 4d 20 77 69 6c 6c 20 75 73 65 2e 00 55 73 65 20 74 68 69 73 | onds.that.PIM.will.use..Use.this |
| 147b60 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 69 6e 20 74 68 65 20 73 65 6c | .command.to.configure.in.the.sel |
| 147b80 | 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 49 47 4d 50 20 71 75 65 72 79 20 72 | ected.interface.the.IGMP.query.r |
| 147ba0 | 65 73 70 6f 6e 73 65 20 74 69 6d 65 6f 75 74 20 76 61 6c 75 65 20 28 31 30 2d 32 35 30 29 20 69 | esponse.timeout.value.(10-250).i |
| 147bc0 | 6e 20 64 65 63 69 73 65 63 6f 6e 64 73 2e 20 49 66 20 61 20 72 65 70 6f 72 74 20 69 73 20 6e 6f | n.deciseconds..If.a.report.is.no |
| 147be0 | 74 20 72 65 74 75 72 6e 65 64 20 69 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 74 69 6d 65 | t.returned.in.the.specified.time |
| 147c00 | 2c 20 69 74 20 77 69 6c 6c 20 62 65 20 61 73 73 75 6d 65 64 20 74 68 65 20 28 53 2c 47 29 20 6f | ,.it.will.be.assumed.the.(S,G).o |
| 147c20 | 72 20 28 2a 2c 47 29 20 73 74 61 74 65 20 3a 72 66 63 3a 60 37 37 36 31 23 73 65 63 74 69 6f 6e | r.(*,G).state.:rfc:`7761#section |
| 147c40 | 2d 34 2e 31 60 20 68 61 73 20 74 69 6d 65 64 20 6f 75 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f | -4.1`.has.timed.out..Use.this.co |
| 147c60 | 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 69 6e 20 74 68 65 20 73 65 6c 65 63 74 | mmand.to.configure.in.the.select |
| 147c80 | 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 49 47 4d 50 20 71 75 65 72 79 20 72 65 73 70 | ed.interface.the.IGMP.query.resp |
| 147ca0 | 6f 6e 73 65 20 74 69 6d 65 6f 75 74 20 76 61 6c 75 65 20 28 31 30 2d 32 35 30 29 20 69 6e 20 64 | onse.timeout.value.(10-250).in.d |
| 147cc0 | 65 63 69 73 65 63 6f 6e 64 73 2e 20 49 66 20 61 20 72 65 70 6f 72 74 20 69 73 20 6e 6f 74 20 72 | eciseconds..If.a.report.is.not.r |
| 147ce0 | 65 74 75 72 6e 65 64 20 69 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 74 69 6d 65 2c 20 69 | eturned.in.the.specified.time,.i |
| 147d00 | 74 20 77 69 6c 6c 20 62 65 20 61 73 73 75 6d 65 64 20 74 68 65 20 28 53 2c 47 29 20 6f 72 20 28 | t.will.be.assumed.the.(S,G).or.( |
| 147d20 | 5c 2a 2c 47 29 20 73 74 61 74 65 20 3a 72 66 63 3a 60 37 37 36 31 23 73 65 63 74 69 6f 6e 2d 34 | \*,G).state.:rfc:`7761#section-4 |
| 147d40 | 2e 31 60 20 68 61 73 20 74 69 6d 65 64 20 6f 75 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d | .1`.has.timed.out..Use.this.comm |
| 147d60 | 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 69 6e 20 74 68 65 20 73 65 6c 65 63 74 65 64 | and.to.configure.in.the.selected |
| 147d80 | 20 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 49 47 4d 50 20 71 75 65 72 79 20 72 65 73 70 6f 6e | .interface.the.IGMP.query.respon |
| 147da0 | 73 65 20 74 69 6d 65 6f 75 74 20 76 61 6c 75 65 20 28 31 30 2d 32 35 30 29 20 69 6e 20 64 65 63 | se.timeout.value.(10-250).in.dec |
| 147dc0 | 69 73 65 63 6f 6e 64 73 2e 20 49 66 20 61 20 72 65 70 6f 72 74 20 69 73 20 6e 6f 74 20 72 65 74 | iseconds..If.a.report.is.not.ret |
| 147de0 | 75 72 6e 65 64 20 69 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 74 69 6d 65 2c 20 69 74 20 | urned.in.the.specified.time,.it. |
| 147e00 | 77 69 6c 6c 20 62 65 20 61 73 73 75 6d 65 64 20 74 68 65 20 60 28 53 2c 47 29 20 6f 72 20 28 2a | will.be.assumed.the.`(S,G).or.(* |
| 147e20 | 2c 47 29 20 73 74 61 74 65 20 3c 68 74 74 70 73 3a 2f 2f 74 6f 6f 6c 73 2e 69 65 74 66 2e 6f 72 | ,G).state.<https://tools.ietf.or |
| 147e40 | 67 2f 68 74 6d 6c 2f 72 66 63 37 37 36 31 23 73 65 63 74 69 6f 6e 2d 34 2e 31 3e 60 5f 20 68 61 | g/html/rfc7761#section-4.1>`_.ha |
| 147e60 | 73 20 74 69 6d 65 64 20 6f 75 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | s.timed.out..Use.this.command.to |
| 147e80 | 20 63 6f 6e 66 69 67 75 72 65 20 69 6e 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 | .configure.in.the.selected.inter |
| 147ea0 | 66 61 63 65 20 74 68 65 20 4d 4c 44 20 68 6f 73 74 20 71 75 65 72 79 20 69 6e 74 65 72 76 61 6c | face.the.MLD.host.query.interval |
| 147ec0 | 20 28 31 2d 36 35 35 33 35 29 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 68 61 74 20 50 49 4d 20 77 | .(1-65535).in.seconds.that.PIM.w |
| 147ee0 | 69 6c 6c 20 75 73 65 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 32 | ill.use..The.default.value.is.12 |
| 147f00 | 35 20 73 65 63 6f 6e 64 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 | 5.seconds..Use.this.command.to.c |
| 147f20 | 6f 6e 66 69 67 75 72 65 20 74 68 65 20 20 73 61 6d 70 6c 69 6e 67 20 72 61 74 65 20 66 6f 72 20 | onfigure.the..sampling.rate.for. |
| 147f40 | 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 2e 20 54 68 65 20 73 79 73 74 65 6d 20 73 61 6d 70 | flow.accounting..The.system.samp |
| 147f60 | 6c 65 73 20 6f 6e 65 20 69 6e 20 65 76 65 72 79 20 60 3c 72 61 74 65 3e 60 20 70 61 63 6b 65 74 | les.one.in.every.`<rate>`.packet |
| 147f80 | 73 2c 20 77 68 65 72 65 20 60 3c 72 61 74 65 3e 60 20 69 73 20 74 68 65 20 76 61 6c 75 65 20 63 | s,.where.`<rate>`.is.the.value.c |
| 147fa0 | 6f 6e 66 69 67 75 72 65 64 20 66 6f 72 20 74 68 65 20 73 61 6d 70 6c 69 6e 67 2d 72 61 74 65 20 | onfigured.for.the.sampling-rate. |
| 147fc0 | 6f 70 74 69 6f 6e 2e 20 54 68 65 20 61 64 76 61 6e 74 61 67 65 20 6f 66 20 73 61 6d 70 6c 69 6e | option..The.advantage.of.samplin |
| 147fe0 | 67 20 65 76 65 72 79 20 6e 20 70 61 63 6b 65 74 73 2c 20 77 68 65 72 65 20 6e 20 3e 20 31 2c 20 | g.every.n.packets,.where.n.>.1,. |
| 148000 | 61 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 64 65 63 72 65 61 73 65 20 74 68 65 20 61 6d 6f 75 6e | allows.you.to.decrease.the.amoun |
| 148020 | 74 20 6f 66 20 70 72 6f 63 65 73 73 69 6e 67 20 72 65 73 6f 75 72 63 65 73 20 72 65 71 75 69 72 | t.of.processing.resources.requir |
| 148040 | 65 64 20 66 6f 72 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 2e 20 54 68 65 20 64 69 73 61 | ed.for.flow.accounting..The.disa |
| 148060 | 64 76 61 6e 74 61 67 65 20 6f 66 20 6e 6f 74 20 73 61 6d 70 6c 69 6e 67 20 65 76 65 72 79 20 70 | dvantage.of.not.sampling.every.p |
| 148080 | 61 63 6b 65 74 20 69 73 20 74 68 61 74 20 74 68 65 20 73 74 61 74 69 73 74 69 63 73 20 70 72 6f | acket.is.that.the.statistics.pro |
| 1480a0 | 64 75 63 65 64 20 61 72 65 20 65 73 74 69 6d 61 74 65 73 20 6f 66 20 61 63 74 75 61 6c 20 64 61 | duced.are.estimates.of.actual.da |
| 1480c0 | 74 61 20 66 6c 6f 77 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f | ta.flows..Use.this.command.to.co |
| 1480e0 | 6e 66 69 67 75 72 65 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 61 6e 64 20 74 68 65 20 73 | nfigure.the.IP.address.and.the.s |
| 148100 | 68 61 72 65 64 20 73 65 63 72 65 74 20 6b 65 79 20 6f 66 20 79 6f 75 72 20 52 41 44 49 55 53 20 | hared.secret.key.of.your.RADIUS. |
| 148120 | 73 65 72 76 65 72 2e 20 20 59 6f 75 20 63 61 6e 20 68 61 76 65 20 6d 75 6c 74 69 70 6c 65 20 52 | server...You.can.have.multiple.R |
| 148140 | 41 44 49 55 53 20 73 65 72 76 65 72 73 20 63 6f 6e 66 69 67 75 72 65 64 20 69 66 20 79 6f 75 20 | ADIUS.servers.configured.if.you. |
| 148160 | 77 69 73 68 20 74 6f 20 61 63 68 69 65 76 65 20 72 65 64 75 6e 64 61 6e 63 79 2e 00 55 73 65 20 | wish.to.achieve.redundancy..Use. |
| 148180 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 49 50 | this.command.to.configure.the.IP |
| 1481a0 | 20 61 64 64 72 65 73 73 20 75 73 65 64 20 61 73 20 74 68 65 20 4c 44 50 20 72 6f 75 74 65 72 2d | .address.used.as.the.LDP.router- |
| 1481c0 | 69 64 20 6f 66 20 74 68 65 20 6c 6f 63 61 6c 20 64 65 76 69 63 65 2e 00 55 73 65 20 74 68 69 73 | id.of.the.local.device..Use.this |
| 1481e0 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 50 49 4d 20 68 65 | .command.to.configure.the.PIM.he |
| 148200 | 6c 6c 6f 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 31 2d 31 38 30 29 20 | llo.interval.in.seconds.(1-180). |
| 148220 | 66 6f 72 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 2e 00 55 73 65 20 | for.the.selected.interface..Use. |
| 148240 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 62 75 | this.command.to.configure.the.bu |
| 148260 | 72 73 74 20 73 69 7a 65 20 6f 66 20 74 68 65 20 74 72 61 66 66 69 63 20 69 6e 20 61 20 4e 65 74 | rst.size.of.the.traffic.in.a.Net |
| 148280 | 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 20 70 6f 6c 69 63 79 2e 20 44 65 66 69 6e 65 20 74 68 65 | work.Emulator.policy..Define.the |
| 1482a0 | 20 6e 61 6d 65 20 6f 66 20 74 68 65 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 20 70 6f | .name.of.the.Network.Emulator.po |
| 1482c0 | 6c 69 63 79 20 61 6e 64 20 69 74 73 20 74 72 61 66 66 69 63 20 62 75 72 73 74 20 73 69 7a 65 20 | licy.and.its.traffic.burst.size. |
| 1482e0 | 28 69 74 20 77 69 6c 6c 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 68 72 6f 75 67 68 20 74 | (it.will.be.configured.through.t |
| 148300 | 68 65 20 54 6f 6b 65 6e 20 42 75 63 6b 65 74 20 46 69 6c 74 65 72 20 71 64 69 73 63 29 2e 20 44 | he.Token.Bucket.Filter.qdisc)..D |
| 148320 | 65 66 61 75 6c 74 3a 31 35 6b 62 2e 20 49 74 20 77 69 6c 6c 20 6f 6e 6c 79 20 74 61 6b 65 20 65 | efault:15kb..It.will.only.take.e |
| 148340 | 66 66 65 63 74 20 69 66 20 79 6f 75 20 68 61 76 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 74 73 | ffect.if.you.have.configured.its |
| 148360 | 20 62 61 6e 64 77 69 64 74 68 20 74 6f 6f 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 | .bandwidth.too..Use.this.command |
| 148380 | 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6c 6f 63 61 6c 20 67 61 74 65 77 61 79 20 | .to.configure.the.local.gateway. |
| 1483a0 | 49 50 20 61 64 64 72 65 73 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 | IP.address..Use.this.command.to. |
| 1483c0 | 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 72 61 74 65 20 61 74 20 77 68 | configure.the.maximum.rate.at.wh |
| 1483e0 | 69 63 68 20 74 72 61 66 66 69 63 20 77 69 6c 6c 20 62 65 20 73 68 61 70 65 64 20 69 6e 20 61 20 | ich.traffic.will.be.shaped.in.a. |
| 148400 | 4e 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 20 70 6f 6c 69 63 79 2e 20 44 65 66 69 6e 65 20 | Network.Emulator.policy..Define. |
| 148420 | 74 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 65 20 70 6f 6c 69 63 79 20 61 6e 64 20 74 68 65 20 72 | the.name.of.the.policy.and.the.r |
| 148440 | 61 74 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 | ate..Use.this.command.to.configu |
| 148460 | 72 65 20 74 68 65 20 73 61 6d 70 6c 69 6e 67 20 72 61 74 65 20 66 6f 72 20 73 46 6c 6f 77 20 61 | re.the.sampling.rate.for.sFlow.a |
| 148480 | 63 63 6f 75 6e 74 69 6e 67 20 28 64 65 66 61 75 6c 74 3a 20 31 30 30 30 29 00 55 73 65 20 74 68 | ccounting.(default:.1000).Use.th |
| 1484a0 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 75 73 65 72 | is.command.to.configure.the.user |
| 1484c0 | 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 70 61 73 73 77 6f 72 64 20 6f 66 20 61 20 6c 6f 63 61 6c | name.and.the.password.of.a.local |
| 1484e0 | 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 75 73 65 72 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d | ly.configured.user..Use.this.com |
| 148500 | 6d 61 6e 64 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 | mand.to.control.the.maximum.numb |
| 148520 | 65 72 20 6f 66 20 65 71 75 61 6c 20 63 6f 73 74 20 70 61 74 68 73 20 74 6f 20 72 65 61 63 68 20 | er.of.equal.cost.paths.to.reach. |
| 148540 | 61 20 73 70 65 63 69 66 69 63 20 64 65 73 74 69 6e 61 74 69 6f 6e 2e 20 54 68 65 20 75 70 70 65 | a.specific.destination..The.uppe |
| 148560 | 72 20 6c 69 6d 69 74 20 6d 61 79 20 64 69 66 66 65 72 20 69 66 20 79 6f 75 20 63 68 61 6e 67 65 | r.limit.may.differ.if.you.change |
| 148580 | 20 74 68 65 20 76 61 6c 75 65 20 6f 66 20 4d 55 4c 54 49 50 41 54 48 5f 4e 55 4d 20 64 75 72 69 | .the.value.of.MULTIPATH_NUM.duri |
| 1485a0 | 6e 67 20 63 6f 6d 70 69 6c 61 74 69 6f 6e 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 4d | ng.compilation..The.default.is.M |
| 1485c0 | 55 4c 54 49 50 41 54 48 5f 4e 55 4d 20 28 36 34 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d | ULTIPATH_NUM.(64)..Use.this.comm |
| 1485e0 | 61 6e 64 20 74 6f 20 63 72 65 61 74 65 20 61 20 46 61 69 72 2d 51 75 65 75 65 20 70 6f 6c 69 63 | and.to.create.a.Fair-Queue.polic |
| 148600 | 79 20 61 6e 64 20 67 69 76 65 20 69 74 20 61 20 6e 61 6d 65 2e 20 49 74 20 69 73 20 62 61 73 65 | y.and.give.it.a.name..It.is.base |
| 148620 | 64 20 6f 6e 20 74 68 65 20 53 74 6f 63 68 61 73 74 69 63 20 46 61 69 72 6e 65 73 73 20 51 75 65 | d.on.the.Stochastic.Fairness.Que |
| 148640 | 75 65 69 6e 67 20 61 6e 64 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 6f 75 74 62 | ueing.and.can.be.applied.to.outb |
| 148660 | 6f 75 6e 64 20 74 72 61 66 66 69 63 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 | ound.traffic..Use.this.command.t |
| 148680 | 6f 20 64 65 66 69 6e 65 20 49 50 73 65 63 20 69 6e 74 65 72 66 61 63 65 2e 00 55 73 65 20 74 68 | o.define.IPsec.interface..Use.th |
| 1486a0 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 61 20 46 61 69 72 2d 51 75 65 75 | is.command.to.define.a.Fair-Queu |
| 1486c0 | 65 20 70 6f 6c 69 63 79 2c 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 53 74 6f 63 68 61 73 74 69 | e.policy,.based.on.the.Stochasti |
| 1486e0 | 63 20 46 61 69 72 6e 65 73 73 20 51 75 65 75 65 69 6e 67 2c 20 61 6e 64 20 73 65 74 20 74 68 65 | c.Fairness.Queueing,.and.set.the |
| 148700 | 20 6e 75 6d 62 65 72 20 6f 66 20 6d 61 78 69 6d 75 6d 20 70 61 63 6b 65 74 73 20 61 6c 6c 6f 77 | .number.of.maximum.packets.allow |
| 148720 | 65 64 20 74 6f 20 77 61 69 74 20 69 6e 20 74 68 65 20 71 75 65 75 65 2e 20 41 6e 79 20 6f 74 68 | ed.to.wait.in.the.queue..Any.oth |
| 148740 | 65 72 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 64 72 6f 70 70 65 64 2e 00 55 73 65 20 74 | er.packet.will.be.dropped..Use.t |
| 148760 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 61 20 46 61 69 72 2d 51 75 65 | his.command.to.define.a.Fair-Que |
| 148780 | 75 65 20 70 6f 6c 69 63 79 2c 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 53 74 6f 63 68 61 73 74 | ue.policy,.based.on.the.Stochast |
| 1487a0 | 69 63 20 46 61 69 72 6e 65 73 73 20 51 75 65 75 65 69 6e 67 2c 20 61 6e 64 20 73 65 74 20 74 68 | ic.Fairness.Queueing,.and.set.th |
| 1487c0 | 65 20 6e 75 6d 62 65 72 20 6f 66 20 73 65 63 6f 6e 64 73 20 61 74 20 77 68 69 63 68 20 61 20 6e | e.number.of.seconds.at.which.a.n |
| 1487e0 | 65 77 20 71 75 65 75 65 20 61 6c 67 6f 72 69 74 68 6d 20 70 65 72 74 75 72 62 61 74 69 6f 6e 20 | ew.queue.algorithm.perturbation. |
| 148800 | 77 69 6c 6c 20 6f 63 63 75 72 20 28 6d 61 78 69 6d 75 6d 20 34 32 39 34 39 36 37 32 39 35 29 2e | will.occur.(maximum.4294967295). |
| 148820 | 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 64 65 66 61 | .Use.this.command.to.define.defa |
| 148840 | 75 6c 74 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 6e 61 6d 65 2e 00 55 73 65 20 | ult.IPv6.address.pool.name..Use. |
| 148860 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 64 65 66 61 75 6c 74 20 61 | this.command.to.define.default.a |
| 148880 | 64 64 72 65 73 73 20 70 6f 6f 6c 20 6e 61 6d 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 | ddress.pool.name..Use.this.comma |
| 1488a0 | 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 64 6f 6d 61 69 6e 73 2c 20 6f 6e 65 20 61 74 20 61 20 74 | nd.to.define.domains,.one.at.a.t |
| 1488c0 | 69 6d 65 2c 20 73 6f 20 74 68 61 74 20 74 68 65 20 73 79 73 74 65 6d 20 75 73 65 73 20 74 68 65 | ime,.so.that.the.system.uses.the |
| 1488e0 | 6d 20 74 6f 20 63 6f 6d 70 6c 65 74 65 20 75 6e 71 75 61 6c 69 66 69 65 64 20 68 6f 73 74 20 6e | m.to.complete.unqualified.host.n |
| 148900 | 61 6d 65 73 2e 20 4d 61 78 69 6d 75 6d 3a 20 36 20 65 6e 74 72 69 65 73 2e 00 55 73 65 20 74 68 | ames..Maximum:.6.entries..Use.th |
| 148920 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 69 6e 20 74 68 65 20 73 65 6c 65 | is.command.to.define.in.the.sele |
| 148940 | 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 74 68 65 72 20 79 6f 75 20 63 68 6f 6f 73 | cted.interface.whether.you.choos |
| 148960 | 65 20 49 47 4d 50 20 76 65 72 73 69 6f 6e 20 32 20 6f 72 20 33 2e 00 55 73 65 20 74 68 69 73 20 | e.IGMP.version.2.or.3..Use.this. |
| 148980 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 69 6e 20 74 68 65 20 73 65 6c 65 63 74 65 | command.to.define.in.the.selecte |
| 1489a0 | 64 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 74 68 65 72 20 79 6f 75 20 63 68 6f 6f 73 65 20 49 | d.interface.whether.you.choose.I |
| 1489c0 | 47 4d 50 20 76 65 72 73 69 6f 6e 20 32 20 6f 72 20 33 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 | GMP.version.2.or.3..The.default. |
| 1489e0 | 76 61 6c 75 65 20 69 73 20 33 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 | value.is.3..Use.this.command.to. |
| 148a00 | 64 65 66 69 6e 65 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 72 61 6e 67 65 20 74 6f 20 62 | define.the.IP.address.range.to.b |
| 148a20 | 65 20 67 69 76 65 6e 20 74 6f 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 73 2e 20 49 66 20 6e 6f 74 | e.given.to.PPPoE.clients..If.not |
| 148a40 | 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2d 78 2e 78 2e 78 2e 78 60 60 2c 20 69 74 20 6d 75 | ation.``x.x.x.x-x.x.x.x``,.it.mu |
| 148a60 | 73 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f 32 34 20 73 75 62 6e 65 74 2e 20 49 66 20 6e 6f | st.be.within.a./24.subnet..If.no |
| 148a80 | 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2f 78 60 60 20 69 73 20 75 73 65 64 20 74 68 65 | tation.``x.x.x.x/x``.is.used.the |
| 148aa0 | 72 65 20 69 73 20 70 6f 73 73 69 62 69 6c 69 74 79 20 74 6f 20 73 65 74 20 68 6f 73 74 2f 6e 65 | re.is.possibility.to.set.host/ne |
| 148ac0 | 74 6d 61 73 6b 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e | tmask..Use.this.command.to.defin |
| 148ae0 | 65 20 74 68 65 20 66 69 72 73 74 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 61 20 70 6f 6f 6c | e.the.first.IP.address.of.a.pool |
| 148b00 | 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 62 65 20 67 69 76 65 6e 20 74 6f 20 49 50 6f | .of.addresses.to.be.given.to.IPo |
| 148b20 | 45 20 63 6c 69 65 6e 74 73 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 | E.clients..If.notation.``x.x.x.x |
| 148b40 | 2d 78 2e 78 2e 78 2e 78 60 60 2c 20 69 74 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 | -x.x.x.x``,.it.must.be.within.a. |
| 148b60 | 2f 32 34 20 73 75 62 6e 65 74 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e | /24.subnet..If.notation.``x.x.x. |
| 148b80 | 78 2f 78 60 60 20 69 73 20 75 73 65 64 20 74 68 65 72 65 20 69 73 20 70 6f 73 73 69 62 69 6c 69 | x/x``.is.used.there.is.possibili |
| 148ba0 | 74 79 20 74 6f 20 73 65 74 20 68 6f 73 74 2f 6e 65 74 6d 61 73 6b 2e 00 55 73 65 20 74 68 69 73 | ty.to.set.host/netmask..Use.this |
| 148bc0 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 66 69 72 73 74 20 49 50 20 | .command.to.define.the.first.IP. |
| 148be0 | 61 64 64 72 65 73 73 20 6f 66 20 61 20 70 6f 6f 6c 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 74 | address.of.a.pool.of.addresses.t |
| 148c00 | 6f 20 62 65 20 67 69 76 65 6e 20 74 6f 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 73 2e 20 49 74 20 | o.be.given.to.PPPoE.clients..It. |
| 148c20 | 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f 32 34 20 73 75 62 6e 65 74 2e 00 55 73 65 | must.be.within.a./24.subnet..Use |
| 148c40 | 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 66 69 72 73 | .this.command.to.define.the.firs |
| 148c60 | 74 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 61 20 70 6f 6f 6c 20 6f 66 20 61 64 64 72 65 73 | t.IP.address.of.a.pool.of.addres |
| 148c80 | 73 65 73 20 74 6f 20 62 65 20 67 69 76 65 6e 20 74 6f 20 50 50 54 50 20 63 6c 69 65 6e 74 73 2e | ses.to.be.given.to.PPTP.clients. |
| 148ca0 | 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2d 78 2e 78 2e 78 2e 78 60 60 | .If.notation.``x.x.x.x-x.x.x.x`` |
| 148cc0 | 2c 20 69 74 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f 32 34 20 73 75 62 6e 65 74 | ,.it.must.be.within.a./24.subnet |
| 148ce0 | 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2f 78 60 60 20 69 73 20 75 | ..If.notation.``x.x.x.x/x``.is.u |
| 148d00 | 73 65 64 20 74 68 65 72 65 20 69 73 20 70 6f 73 73 69 62 69 6c 69 74 79 20 74 6f 20 73 65 74 20 | sed.there.is.possibility.to.set. |
| 148d20 | 68 6f 73 74 2f 6e 65 74 6d 61 73 6b 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 | host/netmask..Use.this.command.t |
| 148d40 | 6f 20 64 65 66 69 6e 65 20 74 68 65 20 66 69 72 73 74 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 | o.define.the.first.IP.address.of |
| 148d60 | 20 61 20 70 6f 6f 6c 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 62 65 20 67 69 76 65 6e | .a.pool.of.addresses.to.be.given |
| 148d80 | 20 74 6f 20 53 53 54 50 20 63 6c 69 65 6e 74 73 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 | .to.SSTP.clients..If.notation.`` |
| 148da0 | 78 2e 78 2e 78 2e 78 2d 78 2e 78 2e 78 2e 78 60 60 2c 20 69 74 20 6d 75 73 74 20 62 65 20 77 69 | x.x.x.x-x.x.x.x``,.it.must.be.wi |
| 148dc0 | 74 68 69 6e 20 61 20 2f 32 34 20 73 75 62 6e 65 74 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 | thin.a./24.subnet..If.notation.` |
| 148de0 | 60 78 2e 78 2e 78 2e 78 2f 78 60 60 20 69 73 20 75 73 65 64 20 74 68 65 72 65 20 69 73 20 70 6f | `x.x.x.x/x``.is.used.there.is.po |
| 148e00 | 73 73 69 62 69 6c 69 74 79 20 74 6f 20 73 65 74 20 68 6f 73 74 2f 6e 65 74 6d 61 73 6b 2e 00 55 | ssibility.to.set.host/netmask..U |
| 148e20 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 66 69 | se.this.command.to.define.the.fi |
| 148e40 | 72 73 74 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 61 20 70 6f 6f 6c 20 6f 66 20 61 64 64 72 | rst.IP.address.of.a.pool.of.addr |
| 148e60 | 65 73 73 65 73 20 74 6f 20 62 65 20 67 69 76 65 6e 20 74 6f 20 6c 32 74 70 20 63 6c 69 65 6e 74 | esses.to.be.given.to.l2tp.client |
| 148e80 | 73 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2d 78 2e 78 2e 78 2e 78 | s..If.notation.``x.x.x.x-x.x.x.x |
| 148ea0 | 60 60 2c 20 69 74 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f 32 34 20 73 75 62 6e | ``,.it.must.be.within.a./24.subn |
| 148ec0 | 65 74 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2f 78 60 60 20 69 73 | et..If.notation.``x.x.x.x/x``.is |
| 148ee0 | 20 75 73 65 64 20 74 68 65 72 65 20 69 73 20 70 6f 73 73 69 62 69 6c 69 74 79 20 74 6f 20 73 65 | .used.there.is.possibility.to.se |
| 148f00 | 74 20 68 6f 73 74 2f 6e 65 74 6d 61 73 6b 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 | t.host/netmask..Use.this.command |
| 148f20 | 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 66 69 72 73 74 20 49 50 20 61 64 64 72 65 73 73 20 | .to.define.the.first.IP.address. |
| 148f40 | 6f 66 20 61 20 70 6f 6f 6c 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 62 65 20 67 69 76 | of.a.pool.of.addresses.to.be.giv |
| 148f60 | 65 6e 20 74 6f 20 70 70 70 6f 65 20 63 6c 69 65 6e 74 73 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e | en.to.pppoe.clients..If.notation |
| 148f80 | 20 60 60 78 2e 78 2e 78 2e 78 2d 78 2e 78 2e 78 2e 78 60 60 2c 20 69 74 20 6d 75 73 74 20 62 65 | .``x.x.x.x-x.x.x.x``,.it.must.be |
| 148fa0 | 20 77 69 74 68 69 6e 20 61 20 2f 32 34 20 73 75 62 6e 65 74 2e 20 49 66 20 6e 6f 74 61 74 69 6f | .within.a./24.subnet..If.notatio |
| 148fc0 | 6e 20 60 60 78 2e 78 2e 78 2e 78 2f 78 60 60 20 69 73 20 75 73 65 64 20 74 68 65 72 65 20 69 73 | n.``x.x.x.x/x``.is.used.there.is |
| 148fe0 | 20 70 6f 73 73 69 62 69 6c 69 74 79 20 74 6f 20 73 65 74 20 68 6f 73 74 2f 6e 65 74 6d 61 73 6b | .possibility.to.set.host/netmask |
| 149000 | 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 | ..Use.this.command.to.define.the |
| 149020 | 20 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 50 50 50 6f 45 20 73 65 72 76 65 72 20 77 69 6c 6c | .interface.the.PPPoE.server.will |
| 149040 | 20 75 73 65 20 74 6f 20 6c 69 73 74 65 6e 20 66 6f 72 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 73 | .use.to.listen.for.PPPoE.clients |
| 149060 | 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 | ..Use.this.command.to.define.the |
| 149080 | 20 6c 61 73 74 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 61 20 70 6f 6f 6c 20 6f 66 20 61 64 | .last.IP.address.of.a.pool.of.ad |
| 1490a0 | 64 72 65 73 73 65 73 20 74 6f 20 62 65 20 67 69 76 65 6e 20 74 6f 20 50 50 50 6f 45 20 63 6c 69 | dresses.to.be.given.to.PPPoE.cli |
| 1490c0 | 65 6e 74 73 2e 20 49 74 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f 32 34 20 73 75 | ents..It.must.be.within.a./24.su |
| 1490e0 | 62 6e 65 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 | bnet..Use.this.command.to.define |
| 149100 | 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 71 75 65 75 65 20 6f 66 20 79 6f 75 72 | .the.length.of.the.queue.of.your |
| 149120 | 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 20 70 6f 6c 69 63 79 2e 20 53 65 74 20 74 68 | .Network.Emulator.policy..Set.th |
| 149140 | 65 20 70 6f 6c 69 63 79 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 | e.policy.name.and.the.maximum.nu |
| 149160 | 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 28 31 2d 34 32 39 34 39 36 37 32 39 35 29 20 74 | mber.of.packets.(1-4294967295).t |
| 149180 | 68 65 20 71 75 65 75 65 20 6d 61 79 20 68 6f 6c 64 20 71 75 65 75 65 64 20 61 74 20 61 20 74 69 | he.queue.may.hold.queued.at.a.ti |
| 1491a0 | 6d 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 | me..Use.this.command.to.define.t |
| 1491c0 | 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 65 6e 74 72 69 65 73 20 74 6f 20 | he.maximum.number.of.entries.to. |
| 1491e0 | 6b 65 65 70 20 69 6e 20 74 68 65 20 41 52 50 20 63 61 63 68 65 20 28 31 30 32 34 2c 20 32 30 34 | keep.in.the.ARP.cache.(1024,.204 |
| 149200 | 38 2c 20 34 30 39 36 2c 20 38 31 39 32 2c 20 31 36 33 38 34 2c 20 33 32 37 36 38 29 2e 00 55 73 | 8,.4096,.8192,.16384,.32768)..Us |
| 149220 | 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 6d 61 78 | e.this.command.to.define.the.max |
| 149240 | 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 65 6e 74 72 69 65 73 20 74 6f 20 6b 65 65 70 20 69 | imum.number.of.entries.to.keep.i |
| 149260 | 6e 20 74 68 65 20 4e 65 69 67 68 62 6f 72 20 63 61 63 68 65 20 28 31 30 32 34 2c 20 32 30 34 38 | n.the.Neighbor.cache.(1024,.2048 |
| 149280 | 2c 20 34 30 39 36 2c 20 38 31 39 32 2c 20 31 36 33 38 34 2c 20 33 32 37 36 38 29 2e 00 55 73 65 | ,.4096,.8192,.16384,.32768)..Use |
| 1492a0 | 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 6e 65 78 74 | .this.command.to.define.the.next |
| 1492c0 | 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 6e 61 6d 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d | .address.pool.name..Use.this.com |
| 1492e0 | 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 77 68 65 74 68 65 72 20 79 6f 75 72 20 50 50 50 6f | mand.to.define.whether.your.PPPo |
| 149300 | 45 20 63 6c 69 65 6e 74 73 20 77 69 6c 6c 20 6c 6f 63 61 6c 6c 79 20 61 75 74 68 65 6e 74 69 63 | E.clients.will.locally.authentic |
| 149320 | 61 74 65 20 69 6e 20 79 6f 75 72 20 56 79 4f 53 20 73 79 73 74 65 6d 20 6f 72 20 69 6e 20 52 41 | ate.in.your.VyOS.system.or.in.RA |
| 149340 | 44 49 55 53 20 73 65 72 76 65 72 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | DIUS.server..Use.this.command.to |
| 149360 | 20 64 69 72 65 63 74 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 6e 6f 74 20 64 65 74 65 | .direct.an.interface.to.not.dete |
| 149380 | 63 74 20 61 6e 79 20 70 68 79 73 69 63 61 6c 20 73 74 61 74 65 20 63 68 61 6e 67 65 73 20 6f 6e | ct.any.physical.state.changes.on |
| 1493a0 | 20 61 20 6c 69 6e 6b 2c 20 66 6f 72 20 65 78 61 6d 70 6c 65 2c 20 77 68 65 6e 20 74 68 65 20 63 | .a.link,.for.example,.when.the.c |
| 1493c0 | 61 62 6c 65 20 69 73 20 75 6e 70 6c 75 67 67 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d | able.is.unplugged..Use.this.comm |
| 1493e0 | 61 6e 64 20 74 6f 20 64 69 73 61 62 6c 65 20 49 50 76 34 20 64 69 72 65 63 74 65 64 20 62 72 6f | and.to.disable.IPv4.directed.bro |
| 149400 | 61 64 63 61 73 74 20 66 6f 72 77 61 72 64 69 6e 67 20 6f 6e 20 61 6c 6c 20 69 6e 74 65 72 66 61 | adcast.forwarding.on.all.interfa |
| 149420 | 63 65 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 69 73 61 62 6c 65 | ces..Use.this.command.to.disable |
| 149440 | 20 49 50 76 34 20 66 6f 72 77 61 72 64 69 6e 67 20 6f 6e 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 | .IPv4.forwarding.on.all.interfac |
| 149460 | 65 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 69 73 61 62 6c 65 20 | es..Use.this.command.to.disable. |
| 149480 | 49 50 76 36 20 66 6f 72 77 61 72 64 69 6e 67 20 6f 6e 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 | IPv6.forwarding.on.all.interface |
| 1494a0 | 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 69 73 61 62 6c 65 20 49 | s..Use.this.command.to.disable.I |
| 1494c0 | 50 76 36 20 6f 70 65 72 61 74 69 6f 6e 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 6e 20 | Pv6.operation.on.interface.when. |
| 1494e0 | 44 75 70 6c 69 63 61 74 65 20 41 64 64 72 65 73 73 20 44 65 74 65 63 74 69 6f 6e 20 66 61 69 6c | Duplicate.Address.Detection.fail |
| 149500 | 73 20 6f 6e 20 4c 69 6e 6b 2d 4c 6f 63 61 6c 20 61 64 64 72 65 73 73 2e 00 55 73 65 20 74 68 69 | s.on.Link-Local.address..Use.thi |
| 149520 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 69 73 61 62 6c 65 20 74 68 65 20 67 65 6e 65 72 61 74 | s.command.to.disable.the.generat |
| 149540 | 69 6f 6e 20 6f 66 20 45 74 68 65 72 6e 65 74 20 66 6c 6f 77 20 63 6f 6e 74 72 6f 6c 20 28 70 61 | ion.of.Ethernet.flow.control.(pa |
| 149560 | 75 73 65 20 66 72 61 6d 65 73 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | use.frames)..Use.this.command.to |
| 149580 | 20 65 6d 75 6c 61 74 65 20 6e 6f 69 73 65 20 69 6e 20 61 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c | .emulate.noise.in.a.Network.Emul |
| 1495a0 | 61 74 6f 72 20 70 6f 6c 69 63 79 2e 20 53 65 74 20 74 68 65 20 70 6f 6c 69 63 79 20 6e 61 6d 65 | ator.policy..Set.the.policy.name |
| 1495c0 | 20 61 6e 64 20 74 68 65 20 70 65 72 63 65 6e 74 61 67 65 20 6f 66 20 63 6f 72 72 75 70 74 65 64 | .and.the.percentage.of.corrupted |
| 1495e0 | 20 70 61 63 6b 65 74 73 20 79 6f 75 20 77 61 6e 74 2e 20 41 20 72 61 6e 64 6f 6d 20 65 72 72 6f | .packets.you.want..A.random.erro |
| 149600 | 72 20 77 69 6c 6c 20 62 65 20 69 6e 74 72 6f 64 75 63 65 64 20 69 6e 20 61 20 72 61 6e 64 6f 6d | r.will.be.introduced.in.a.random |
| 149620 | 20 70 6f 73 69 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 63 68 6f 73 65 6e 20 70 65 72 63 65 6e 74 | .position.for.the.chosen.percent |
| 149640 | 20 6f 66 20 70 61 63 6b 65 74 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | .of.packets..Use.this.command.to |
| 149660 | 20 65 6d 75 6c 61 74 65 20 70 61 63 6b 65 74 2d 6c 6f 73 73 20 63 6f 6e 64 69 74 69 6f 6e 73 20 | .emulate.packet-loss.conditions. |
| 149680 | 69 6e 20 61 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 20 70 6f 6c 69 63 79 2e 20 53 65 | in.a.Network.Emulator.policy..Se |
| 1496a0 | 74 20 74 68 65 20 70 6f 6c 69 63 79 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 70 65 72 63 65 6e | t.the.policy.name.and.the.percen |
| 1496c0 | 74 61 67 65 20 6f 66 20 6c 6f 73 73 20 70 61 63 6b 65 74 73 20 79 6f 75 72 20 74 72 61 66 66 69 | tage.of.loss.packets.your.traffi |
| 1496e0 | 63 20 77 69 6c 6c 20 73 75 66 66 65 72 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | c.will.suffer..Use.this.command. |
| 149700 | 74 6f 20 65 6d 75 6c 61 74 65 20 70 61 63 6b 65 74 2d 72 65 6f 72 64 65 72 69 6e 67 20 63 6f 6e | to.emulate.packet-reordering.con |
| 149720 | 64 69 74 69 6f 6e 73 20 69 6e 20 61 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 20 70 6f | ditions.in.a.Network.Emulator.po |
| 149740 | 6c 69 63 79 2e 20 53 65 74 20 74 68 65 20 70 6f 6c 69 63 79 20 6e 61 6d 65 20 61 6e 64 20 74 68 | licy..Set.the.policy.name.and.th |
| 149760 | 65 20 70 65 72 63 65 6e 74 61 67 65 20 6f 66 20 72 65 6f 72 64 65 72 65 64 20 70 61 63 6b 65 74 | e.percentage.of.reordered.packet |
| 149780 | 73 20 79 6f 75 72 20 74 72 61 66 66 69 63 20 77 69 6c 6c 20 73 75 66 66 65 72 2e 00 55 73 65 20 | s.your.traffic.will.suffer..Use. |
| 1497a0 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 4c 44 50 20 6f 6e 20 74 68 | this.command.to.enable.LDP.on.th |
| 1497c0 | 65 20 69 6e 74 65 72 66 61 63 65 20 79 6f 75 20 64 65 66 69 6e 65 2e 00 55 73 65 20 74 68 69 73 | e.interface.you.define..Use.this |
| 1497e0 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 4d 50 4c 53 20 70 72 6f 63 65 73 73 69 | .command.to.enable.MPLS.processi |
| 149800 | 6e 67 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 79 6f 75 20 64 65 66 69 6e 65 2e 00 | ng.on.the.interface.you.define.. |
| 149820 | 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 50 49 4d 20 69 | Use.this.command.to.enable.PIM.i |
| 149840 | 6e 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 73 6f 20 74 68 61 74 | n.the.selected.interface.so.that |
| 149860 | 20 69 74 20 63 61 6e 20 63 6f 6d 6d 75 6e 69 63 61 74 65 20 77 69 74 68 20 50 49 4d 20 6e 65 69 | .it.can.communicate.with.PIM.nei |
| 149880 | 67 68 62 6f 72 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 | ghbors..Use.this.command.to.enab |
| 1498a0 | 6c 65 20 50 49 4d 76 36 20 69 6e 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 | le.PIMv6.in.the.selected.interfa |
| 1498c0 | 63 65 20 73 6f 20 74 68 61 74 20 69 74 20 63 61 6e 20 63 6f 6d 6d 75 6e 69 63 61 74 65 20 77 69 | ce.so.that.it.can.communicate.wi |
| 1498e0 | 74 68 20 50 49 4d 76 36 20 6e 65 69 67 68 62 6f 72 73 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | th.PIMv6.neighbors..This.command |
| 149900 | 20 61 6c 73 6f 20 65 6e 61 62 6c 65 73 20 4d 4c 44 20 72 65 70 6f 72 74 73 20 61 6e 64 20 71 75 | .also.enables.MLD.reports.and.qu |
| 149920 | 65 72 79 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 75 6e 6c 65 73 73 20 3a 63 66 67 | ery.on.the.interface.unless.:cfg |
| 149940 | 63 6d 64 3a 60 6d 6c 64 20 64 69 73 61 62 6c 65 60 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2e | cmd:`mld.disable`.is.configured. |
| 149960 | 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 61 63 71 75 | .Use.this.command.to.enable.acqu |
| 149980 | 69 73 69 74 69 6f 6e 20 6f 66 20 49 50 76 36 20 61 64 64 72 65 73 73 20 75 73 69 6e 67 20 73 74 | isition.of.IPv6.address.using.st |
| 1499a0 | 61 74 65 6c 65 73 73 20 61 75 74 6f 63 6f 6e 66 69 67 20 28 53 4c 41 41 43 29 2e 00 55 73 65 20 | ateless.autoconfig.(SLAAC)..Use. |
| 1499c0 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 62 61 6e 64 77 69 64 74 68 | this.command.to.enable.bandwidth |
| 1499e0 | 20 73 68 61 70 69 6e 67 20 76 69 61 20 52 41 44 49 55 53 2e 00 55 73 65 20 74 68 69 73 20 63 6f | .shaping.via.RADIUS..Use.this.co |
| 149a00 | 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 70 72 6f 78 79 20 41 64 64 72 65 73 73 20 52 65 | mmand.to.enable.proxy.Address.Re |
| 149a20 | 73 6f 6c 75 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 20 28 41 52 50 29 20 6f 6e 20 74 68 69 73 20 | solution.Protocol.(ARP).on.this. |
| 149a40 | 69 6e 74 65 72 66 61 63 65 2e 20 50 72 6f 78 79 20 41 52 50 20 61 6c 6c 6f 77 73 20 61 6e 20 45 | interface..Proxy.ARP.allows.an.E |
| 149a60 | 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 72 65 73 70 6f 6e 64 20 77 69 74 | thernet.interface.to.respond.wit |
| 149a80 | 68 20 69 74 73 20 6f 77 6e 20 3a 61 62 62 72 3a 60 4d 41 43 20 28 4d 65 64 69 61 20 41 63 63 65 | h.its.own.:abbr:`MAC.(Media.Acce |
| 149aa0 | 73 73 20 43 6f 6e 74 72 6f 6c 29 60 20 61 64 64 72 65 73 73 20 74 6f 20 41 52 50 20 72 65 71 75 | ss.Control)`.address.to.ARP.requ |
| 149ac0 | 65 73 74 73 20 66 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 65 | ests.for.destination.IP.addresse |
| 149ae0 | 73 20 6f 6e 20 73 75 62 6e 65 74 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 6f 74 68 65 72 20 69 | s.on.subnets.attached.to.other.i |
| 149b00 | 6e 74 65 72 66 61 63 65 73 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 20 53 75 62 73 65 71 75 | nterfaces.on.the.system..Subsequ |
| 149b20 | 65 6e 74 20 70 61 63 6b 65 74 73 20 73 65 6e 74 20 74 6f 20 74 68 6f 73 65 20 64 65 73 74 69 6e | ent.packets.sent.to.those.destin |
| 149b40 | 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 66 6f 72 77 61 72 64 65 64 | ation.IP.addresses.are.forwarded |
| 149b60 | 20 61 70 70 72 6f 70 72 69 61 74 65 6c 79 20 62 79 20 74 68 65 20 73 79 73 74 65 6d 2e 00 55 73 | .appropriately.by.the.system..Us |
| 149b80 | 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 74 61 72 67 65 74 65 | e.this.command.to.enable.targete |
| 149ba0 | 64 20 4c 44 50 20 73 65 73 73 69 6f 6e 73 20 74 6f 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 | d.LDP.sessions.to.the.local.rout |
| 149bc0 | 65 72 2e 20 54 68 65 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 74 68 65 6e 20 72 65 73 70 6f 6e 64 | er..The.router.will.then.respond |
| 149be0 | 20 74 6f 20 61 6e 79 20 73 65 73 73 69 6f 6e 73 20 74 68 61 74 20 61 72 65 20 74 72 79 69 6e 67 | .to.any.sessions.that.are.trying |
| 149c00 | 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 69 74 20 74 68 61 74 20 61 72 65 20 6e 6f 74 20 61 | .to.connect.to.it.that.are.not.a |
| 149c20 | 20 6c 69 6e 6b 20 6c 6f 63 61 6c 20 74 79 70 65 20 6f 66 20 54 43 50 20 63 6f 6e 6e 65 63 74 69 | .link.local.type.of.TCP.connecti |
| 149c40 | 6f 6e 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 74 | on..Use.this.command.to.enable.t |
| 149c60 | 68 65 20 64 65 6c 61 79 20 6f 66 20 50 41 44 4f 20 28 50 50 50 6f 45 20 41 63 74 69 76 65 20 44 | he.delay.of.PADO.(PPPoE.Active.D |
| 149c80 | 69 73 63 6f 76 65 72 79 20 4f 66 66 65 72 29 20 70 61 63 6b 65 74 73 2c 20 77 68 69 63 68 20 63 | iscovery.Offer).packets,.which.c |
| 149ca0 | 61 6e 20 62 65 20 75 73 65 64 20 61 73 20 61 20 73 65 73 73 69 6f 6e 20 62 61 6c 61 6e 63 69 6e | an.be.used.as.a.session.balancin |
| 149cc0 | 67 20 6d 65 63 68 61 6e 69 73 6d 20 77 69 74 68 20 6f 74 68 65 72 20 50 50 50 6f 45 20 73 65 72 | g.mechanism.with.other.PPPoE.ser |
| 149ce0 | 76 65 72 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 | vers..Use.this.command.to.enable |
| 149d00 | 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 74 6f 20 74 72 79 20 61 6e 64 20 63 6f 6e | .the.local.router.to.try.and.con |
| 149d20 | 6e 65 63 74 20 77 69 74 68 20 61 20 74 61 72 67 65 74 65 64 20 4c 44 50 20 73 65 73 73 69 6f 6e | nect.with.a.targeted.LDP.session |
| 149d40 | 20 74 6f 20 61 6e 6f 74 68 65 72 20 72 6f 75 74 65 72 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d | .to.another.router..Use.this.com |
| 149d60 | 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 74 68 65 20 6c 6f 67 67 69 6e 67 20 6f 66 20 74 68 | mand.to.enable.the.logging.of.th |
| 149d80 | 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 6f 6e 20 63 75 73 74 6f 6d 20 63 68 61 69 6e | e.default.action.on.custom.chain |
| 149da0 | 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 74 68 | s..Use.this.command.to.enable.th |
| 149dc0 | 65 20 6c 6f 67 67 69 6e 67 20 6f 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 | e.logging.of.the.default.action. |
| 149de0 | 6f 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 63 68 61 69 6e 2e 00 55 73 65 20 74 68 69 73 | on.the.specified.chain..Use.this |
| 149e00 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 74 68 65 20 6c 6f 67 67 69 6e 67 20 6f | .command.to.enable.the.logging.o |
| 149e20 | 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 2e 00 55 73 65 20 74 68 69 73 20 63 | f.the.default.action..Use.this.c |
| 149e40 | 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 2c 20 64 69 73 61 62 6c 65 2c 20 6f 72 20 73 70 | ommand.to.enable,.disable,.or.sp |
| 149e60 | 65 63 69 66 79 20 68 6f 70 20 63 6f 75 6e 74 20 66 6f 72 20 54 54 4c 20 73 65 63 75 72 69 74 79 | ecify.hop.count.for.TTL.security |
| 149e80 | 20 66 6f 72 20 4c 44 50 20 70 65 65 72 73 2e 20 42 79 20 64 65 66 61 75 6c 74 20 74 68 65 20 76 | .for.LDP.peers..By.default.the.v |
| 149ea0 | 61 6c 75 65 20 69 73 20 73 65 74 20 74 6f 20 32 35 35 20 28 6f 72 20 6d 61 78 20 54 54 4c 29 2e | alue.is.set.to.255.(or.max.TTL). |
| 149ec0 | 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 66 6c 75 73 68 20 74 68 65 20 6b | .Use.this.command.to.flush.the.k |
| 149ee0 | 65 72 6e 65 6c 20 49 50 76 36 20 72 6f 75 74 65 20 63 61 63 68 65 2e 20 41 6e 20 61 64 64 72 65 | ernel.IPv6.route.cache..An.addre |
| 149f00 | 73 73 20 63 61 6e 20 62 65 20 61 64 64 65 64 20 74 6f 20 66 6c 75 73 68 20 69 74 20 6f 6e 6c 79 | ss.can.be.added.to.flush.it.only |
| 149f20 | 20 66 6f 72 20 74 68 61 74 20 72 6f 75 74 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | .for.that.route..Use.this.comman |
| 149f40 | 64 20 74 6f 20 67 65 74 20 61 6e 20 6f 76 65 72 76 69 65 77 20 6f 66 20 61 20 7a 6f 6e 65 2e 00 | d.to.get.an.overview.of.a.zone.. |
| 149f60 | 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 67 65 74 20 69 6e 66 6f 72 6d 61 74 | Use.this.command.to.get.informat |
| 149f80 | 69 6f 6e 20 61 62 6f 75 74 20 4f 53 50 46 76 33 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 | ion.about.OSPFv3..Use.this.comma |
| 149fa0 | 6e 64 20 74 6f 20 67 65 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 74 68 65 20 | nd.to.get.information.about.the. |
| 149fc0 | 52 49 50 4e 47 20 70 72 6f 74 6f 63 6f 6c 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | RIPNG.protocol.Use.this.command. |
| 149fe0 | 74 6f 20 69 6e 73 74 72 75 63 74 20 74 68 65 20 73 79 73 74 65 6d 20 74 6f 20 65 73 74 61 62 6c | to.instruct.the.system.to.establ |
| 14a000 | 69 73 68 20 61 20 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 61 75 74 6f 6d 61 74 69 63 | ish.a.PPPoE.connection.automatic |
| 14a020 | 61 6c 6c 79 20 6f 6e 63 65 20 74 72 61 66 66 69 63 20 70 61 73 73 65 73 20 74 68 72 6f 75 67 68 | ally.once.traffic.passes.through |
| 14a040 | 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 41 20 64 69 73 61 62 6c 65 64 20 6f 6e 2d 64 65 | .the.interface..A.disabled.on-de |
| 14a060 | 6d 61 6e 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 65 73 74 61 62 6c 69 73 68 65 64 20 61 | mand.connection.is.established.a |
| 14a080 | 74 20 62 6f 6f 74 20 74 69 6d 65 20 61 6e 64 20 72 65 6d 61 69 6e 73 20 75 70 2e 20 49 66 20 74 | t.boot.time.and.remains.up..If.t |
| 14a0a0 | 68 65 20 6c 69 6e 6b 20 66 61 69 6c 73 20 66 6f 72 20 61 6e 79 20 72 65 61 73 6f 6e 2c 20 74 68 | he.link.fails.for.any.reason,.th |
| 14a0c0 | 65 20 6c 69 6e 6b 20 69 73 20 62 72 6f 75 67 68 74 20 62 61 63 6b 20 75 70 20 69 6d 6d 65 64 69 | e.link.is.brought.back.up.immedi |
| 14a0e0 | 61 74 65 6c 79 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6c 69 6e 6b 20 | ately..Use.this.command.to.link. |
| 14a100 | 74 68 65 20 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f 20 61 20 70 68 79 73 69 63 | the.PPPoE.connection.to.a.physic |
| 14a120 | 61 6c 20 69 6e 74 65 72 66 61 63 65 2e 20 45 61 63 68 20 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 | al.interface..Each.PPPoE.connect |
| 14a140 | 69 6f 6e 20 6d 75 73 74 20 62 65 20 65 73 74 61 62 6c 69 73 68 65 64 20 6f 76 65 72 20 61 20 70 | ion.must.be.established.over.a.p |
| 14a160 | 68 79 73 69 63 61 6c 20 69 6e 74 65 72 66 61 63 65 2e 20 49 6e 74 65 72 66 61 63 65 73 20 63 61 | hysical.interface..Interfaces.ca |
| 14a180 | 6e 20 62 65 20 72 65 67 75 6c 61 72 20 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 | n.be.regular.Ethernet.interfaces |
| 14a1a0 | 2c 20 56 49 46 73 20 6f 72 20 62 6f 6e 64 69 6e 67 20 69 6e 74 65 72 66 61 63 65 73 2f 56 49 46 | ,.VIFs.or.bonding.interfaces/VIF |
| 14a1c0 | 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6c 6f 63 61 6c 6c 79 20 63 | s..Use.this.command.to.locally.c |
| 14a1e0 | 68 65 63 6b 20 74 68 65 20 61 63 74 69 76 65 20 73 65 73 73 69 6f 6e 73 20 69 6e 20 74 68 65 20 | heck.the.active.sessions.in.the. |
| 14a200 | 49 50 6f 45 20 73 65 72 76 65 72 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | IPoE.server..Use.this.command.to |
| 14a220 | 20 6c 6f 63 61 6c 6c 79 20 63 68 65 63 6b 20 74 68 65 20 61 63 74 69 76 65 20 73 65 73 73 69 6f | .locally.check.the.active.sessio |
| 14a240 | 6e 73 20 69 6e 20 74 68 65 20 50 50 50 6f 45 20 73 65 72 76 65 72 2e 00 55 73 65 20 74 68 69 73 | ns.in.the.PPPoE.server..Use.this |
| 14a260 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6c 6f 63 61 6c 6c 79 20 63 68 65 63 6b 20 74 68 65 20 61 63 | .command.to.locally.check.the.ac |
| 14a280 | 74 69 76 65 20 73 65 73 73 69 6f 6e 73 20 69 6e 20 74 68 65 20 50 50 54 50 20 73 65 72 76 65 72 | tive.sessions.in.the.PPTP.server |
| 14a2a0 | 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6c 6f 63 61 6c 6c 79 20 63 68 | ..Use.this.command.to.locally.ch |
| 14a2c0 | 65 63 6b 20 74 68 65 20 61 63 74 69 76 65 20 73 65 73 73 69 6f 6e 73 20 69 6e 20 74 68 65 20 53 | eck.the.active.sessions.in.the.S |
| 14a2e0 | 53 54 50 20 73 65 72 76 65 72 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 | STP.server..Use.this.command.to. |
| 14a300 | 6d 61 6e 75 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 65 6e 64 65 7a 76 6f 75 73 20 | manually.configure.a.Rendezvous. |
| 14a320 | 50 6f 69 6e 74 20 66 6f 72 20 50 49 4d 20 73 6f 20 74 68 61 74 20 6a 6f 69 6e 20 6d 65 73 73 61 | Point.for.PIM.so.that.join.messa |
| 14a340 | 67 65 73 20 63 61 6e 20 62 65 20 73 65 6e 74 20 74 68 65 72 65 2e 20 53 65 74 20 74 68 65 20 52 | ges.can.be.sent.there..Set.the.R |
| 14a360 | 65 6e 64 65 76 6f 75 7a 20 50 6f 69 6e 74 20 61 64 64 72 65 73 73 20 61 6e 64 20 74 68 65 20 6d | endevouz.Point.address.and.the.m |
| 14a380 | 61 74 63 68 69 6e 67 20 70 72 65 66 69 78 20 6f 66 20 67 72 6f 75 70 20 72 61 6e 67 65 73 20 63 | atching.prefix.of.group.ranges.c |
| 14a3a0 | 6f 76 65 72 65 64 2e 20 54 68 65 73 65 20 76 61 6c 75 65 73 20 6d 75 73 74 20 62 65 20 73 68 61 | overed..These.values.must.be.sha |
| 14a3c0 | 72 65 64 20 77 69 74 68 20 65 76 65 72 79 20 72 6f 75 74 65 72 20 70 61 72 74 69 63 69 70 61 74 | red.with.every.router.participat |
| 14a3e0 | 69 6e 67 20 69 6e 20 74 68 65 20 50 49 4d 20 6e 65 74 77 6f 72 6b 2e 00 55 73 65 20 74 68 69 73 | ing.in.the.PIM.network..Use.this |
| 14a400 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6e 6f 74 20 69 6e 73 74 61 6c 6c 20 61 64 76 65 72 74 69 73 | .command.to.not.install.advertis |
| 14a420 | 65 64 20 44 4e 53 20 6e 61 6d 65 73 65 72 76 65 72 73 20 69 6e 74 6f 20 74 68 65 20 6c 6f 63 61 | ed.DNS.nameservers.into.the.loca |
| 14a440 | 6c 20 73 79 73 74 65 6d 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 70 72 | l.system..Use.this.command.to.pr |
| 14a460 | 65 66 65 72 20 49 50 76 34 20 66 6f 72 20 54 43 50 20 70 65 65 72 20 74 72 61 6e 73 70 6f 72 74 | efer.IPv4.for.TCP.peer.transport |
| 14a480 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 66 6f 72 20 4c 44 50 20 77 68 65 6e 20 62 6f 74 68 20 61 6e | .connection.for.LDP.when.both.an |
| 14a4a0 | 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 4c 44 50 20 61 64 64 72 65 73 73 20 61 72 65 20 63 | .IPv4.and.IPv6.LDP.address.are.c |
| 14a4c0 | 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 74 68 65 20 73 61 6d 65 20 69 6e 74 65 72 66 61 63 65 2e | onfigured.on.the.same.interface. |
| 14a4e0 | 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 72 65 73 65 74 20 49 50 76 36 20 | .Use.this.command.to.reset.IPv6. |
| 14a500 | 4e 65 69 67 68 62 6f 72 20 44 69 73 63 6f 76 65 72 79 20 50 72 6f 74 6f 63 6f 6c 20 63 61 63 68 | Neighbor.Discovery.Protocol.cach |
| 14a520 | 65 20 66 6f 72 20 61 6e 20 61 64 64 72 65 73 73 20 6f 72 20 69 6e 74 65 72 66 61 63 65 2e 00 55 | e.for.an.address.or.interface..U |
| 14a540 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 72 65 73 65 74 20 61 6e 20 4c 44 50 20 | se.this.command.to.reset.an.LDP. |
| 14a560 | 6e 65 69 67 68 62 6f 72 2f 54 43 50 20 73 65 73 73 69 6f 6e 20 74 68 61 74 20 69 73 20 65 73 74 | neighbor/TCP.session.that.is.est |
| 14a580 | 61 62 6c 69 73 68 65 64 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 72 65 73 | ablished.Use.this.command.to.res |
| 14a5a0 | 65 74 20 74 68 65 20 4f 70 65 6e 56 50 4e 20 70 72 6f 63 65 73 73 20 6f 6e 20 61 20 73 70 65 63 | et.the.OpenVPN.process.on.a.spec |
| 14a5c0 | 69 66 69 63 20 69 6e 74 65 72 66 61 63 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 | ific.interface..Use.this.command |
| 14a5e0 | 20 74 6f 20 72 65 73 65 74 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 4f 70 65 6e 56 50 4e 20 | .to.reset.the.specified.OpenVPN. |
| 14a600 | 63 6c 69 65 6e 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 72 65 73 74 | client..Use.this.command.to.rest |
| 14a620 | 72 69 63 74 20 74 68 65 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e 20 6f 6e 20 61 20 67 69 76 65 | rict.the.PPPoE.session.on.a.give |
| 14a640 | 6e 20 61 63 63 65 73 73 20 63 6f 6e 63 65 6e 74 72 61 74 6f 72 2e 20 4e 6f 72 6d 61 6c 6c 79 2c | n.access.concentrator..Normally, |
| 14a660 | 20 61 20 68 6f 73 74 20 73 65 6e 64 73 20 61 20 50 50 50 6f 45 20 69 6e 69 74 69 61 74 69 6f 6e | .a.host.sends.a.PPPoE.initiation |
| 14a680 | 20 70 61 63 6b 65 74 20 74 6f 20 73 74 61 72 74 20 74 68 65 20 50 50 50 6f 45 20 64 69 73 63 6f | .packet.to.start.the.PPPoE.disco |
| 14a6a0 | 76 65 72 79 20 70 72 6f 63 65 73 73 2c 20 61 20 6e 75 6d 62 65 72 20 6f 66 20 61 63 63 65 73 73 | very.process,.a.number.of.access |
| 14a6c0 | 20 63 6f 6e 63 65 6e 74 72 61 74 6f 72 73 20 72 65 73 70 6f 6e 64 20 77 69 74 68 20 6f 66 66 65 | .concentrators.respond.with.offe |
| 14a6e0 | 72 20 70 61 63 6b 65 74 73 20 61 6e 64 20 74 68 65 20 68 6f 73 74 20 73 65 6c 65 63 74 73 20 6f | r.packets.and.the.host.selects.o |
| 14a700 | 6e 65 20 6f 66 20 74 68 65 20 72 65 73 70 6f 6e 64 69 6e 67 20 61 63 63 65 73 73 20 63 6f 6e 63 | ne.of.the.responding.access.conc |
| 14a720 | 65 6e 74 72 61 74 6f 72 73 20 74 6f 20 73 65 72 76 65 20 74 68 69 73 20 73 65 73 73 69 6f 6e 2e | entrators.to.serve.this.session. |
| 14a740 | 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 65 20 4c 44 50 20 69 6e 74 | .Use.this.command.to.see.LDP.int |
| 14a760 | 65 72 66 61 63 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d | erface.information.Use.this.comm |
| 14a780 | 61 6e 64 20 74 6f 20 73 65 65 20 4c 44 50 20 6e 65 69 67 68 62 6f 72 20 69 6e 66 6f 72 6d 61 74 | and.to.see.LDP.neighbor.informat |
| 14a7a0 | 69 6f 6e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 65 20 64 65 74 61 | ion.Use.this.command.to.see.deta |
| 14a7c0 | 69 6c 65 64 20 4c 44 50 20 6e 65 69 67 68 62 6f 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 00 55 73 | iled.LDP.neighbor.information.Us |
| 14a7e0 | 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 65 20 64 69 73 63 6f 76 65 72 79 20 | e.this.command.to.see.discovery. |
| 14a800 | 68 65 6c 6c 6f 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 | hello.information.Use.this.comma |
| 14a820 | 6e 64 20 74 6f 20 73 65 65 20 74 68 65 20 4c 61 62 65 6c 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 20 | nd.to.see.the.Label.Information. |
| 14a840 | 42 61 73 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 20 61 20 | Base..Use.this.command.to.set.a. |
| 14a860 | 6e 61 6d 65 20 66 6f 72 20 74 68 69 73 20 50 50 50 6f 45 2d 73 65 72 76 65 72 20 61 63 63 65 73 | name.for.this.PPPoE-server.acces |
| 14a880 | 73 20 63 6f 6e 63 65 6e 74 72 61 74 6f 72 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 | s.concentrator..Use.this.command |
| 14a8a0 | 20 74 6f 20 73 65 74 20 72 65 2d 64 69 61 6c 20 64 65 6c 61 79 20 74 69 6d 65 20 74 6f 20 62 65 | .to.set.re-dial.delay.time.to.be |
| 14a8c0 | 20 75 73 65 64 20 77 69 74 68 20 70 65 72 73 69 73 74 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e | .used.with.persist.PPPoE.session |
| 14a8e0 | 73 2e 20 57 68 65 6e 20 74 68 65 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e 20 69 73 20 74 65 72 | s..When.the.PPPoE.session.is.ter |
| 14a900 | 6d 69 6e 61 74 65 64 20 62 79 20 70 65 65 72 2c 20 61 6e 64 20 6f 6e 2d 64 65 6d 61 6e 64 20 6f | minated.by.peer,.and.on-demand.o |
| 14a920 | 70 74 69 6f 6e 20 69 73 20 6e 6f 74 20 73 65 74 2c 20 74 68 65 20 72 6f 75 74 65 72 20 77 69 6c | ption.is.not.set,.the.router.wil |
| 14a940 | 6c 20 61 74 74 65 6d 70 74 20 74 6f 20 72 65 2d 65 73 74 61 62 6c 69 73 68 20 74 68 65 20 50 50 | l.attempt.to.re-establish.the.PP |
| 14a960 | 50 6f 45 20 6c 69 6e 6b 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 | PoE.link..Use.this.command.to.se |
| 14a980 | 74 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 6c 6f 63 61 6c 20 65 6e | t.the.IP.address.of.the.local.en |
| 14a9a0 | 64 70 6f 69 6e 74 20 6f 66 20 61 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e 2e 20 49 66 20 69 74 | dpoint.of.a.PPPoE.session..If.it |
| 14a9c0 | 20 69 73 20 6e 6f 74 20 73 65 74 20 69 74 20 77 69 6c 6c 20 62 65 20 6e 65 67 6f 74 69 61 74 65 | .is.not.set.it.will.be.negotiate |
| 14a9e0 | 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 | d..Use.this.command.to.set.the.I |
| 14aa00 | 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 72 65 6d 6f 74 65 20 65 6e 64 70 6f 69 6e 74 | P.address.of.the.remote.endpoint |
| 14aa20 | 20 6f 66 20 61 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e 2e 20 49 66 20 69 74 20 69 73 20 6e 6f | .of.a.PPPoE.session..If.it.is.no |
| 14aa40 | 74 20 73 65 74 20 69 74 20 77 69 6c 6c 20 62 65 20 6e 65 67 6f 74 69 61 74 65 64 2e 00 55 73 65 | t.set.it.will.be.negotiated..Use |
| 14aa60 | 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 76 34 20 6f 72 | .this.command.to.set.the.IPv4.or |
| 14aa80 | 20 49 50 76 36 20 61 64 64 72 65 73 73 20 6f 66 20 65 76 65 72 79 20 44 6f 6d 61 6e 20 4e 61 6d | .IPv6.address.of.every.Doman.Nam |
| 14aaa0 | 65 20 53 65 72 76 65 72 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 2e 20 | e.Server.you.want.to.configure.. |
| 14aac0 | 54 68 65 79 20 77 69 6c 6c 20 62 65 20 70 72 6f 70 61 67 61 74 65 64 20 74 6f 20 50 50 50 6f 45 | They.will.be.propagated.to.PPPoE |
| 14aae0 | 20 63 6c 69 65 6e 74 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 | .clients..Use.this.command.to.se |
| 14ab00 | 74 20 74 68 65 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 74 72 61 6e 73 70 6f 72 74 2d 61 64 64 | t.the.IPv4.or.IPv6.transport-add |
| 14ab20 | 72 65 73 73 20 75 73 65 64 20 62 79 20 4c 44 50 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 | ress.used.by.LDP..Use.this.comma |
| 14ab40 | 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 69 64 6c 65 20 74 69 6d 65 6f 75 74 20 69 6e 74 65 72 | nd.to.set.the.idle.timeout.inter |
| 14ab60 | 76 61 6c 20 74 6f 20 62 65 20 75 73 65 64 20 77 69 74 68 20 6f 6e 2d 64 65 6d 61 6e 64 20 50 50 | val.to.be.used.with.on-demand.PP |
| 14ab80 | 50 6f 45 20 73 65 73 73 69 6f 6e 73 2e 20 57 68 65 6e 20 61 6e 20 6f 6e 2d 64 65 6d 61 6e 64 20 | PoE.sessions..When.an.on-demand. |
| 14aba0 | 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 65 73 74 61 62 6c 69 73 68 65 64 2c 20 74 68 65 20 6c | connection.is.established,.the.l |
| 14abc0 | 69 6e 6b 20 69 73 20 62 72 6f 75 67 68 74 20 75 70 20 6f 6e 6c 79 20 77 68 65 6e 20 74 72 61 66 | ink.is.brought.up.only.when.traf |
| 14abe0 | 66 69 63 20 69 73 20 73 65 6e 74 20 61 6e 64 20 69 73 20 64 69 73 61 62 6c 65 64 20 77 68 65 6e | fic.is.sent.and.is.disabled.when |
| 14ac00 | 20 74 68 65 20 6c 69 6e 6b 20 69 73 20 69 64 6c 65 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 76 | .the.link.is.idle.for.the.interv |
| 14ac20 | 61 6c 20 73 70 65 63 69 66 69 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 | al.specified..Use.this.command.t |
| 14ac40 | 6f 20 73 65 74 20 74 68 65 20 70 61 73 73 77 6f 72 64 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 | o.set.the.password.for.authentic |
| 14ac60 | 61 74 69 6e 67 20 77 69 74 68 20 61 20 72 65 6d 6f 74 65 20 50 50 50 6f 45 20 65 6e 64 70 6f 69 | ating.with.a.remote.PPPoE.endpoi |
| 14ac80 | 6e 74 2e 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 69 73 20 6f 70 74 69 6f 6e 61 6c 20 66 | nt..Authentication.is.optional.f |
| 14aca0 | 72 6f 6d 20 74 68 65 20 73 79 73 74 65 6d 27 73 20 70 6f 69 6e 74 20 6f 66 20 76 69 65 77 20 62 | rom.the.system's.point.of.view.b |
| 14acc0 | 75 74 20 6d 6f 73 74 20 73 65 72 76 69 63 65 20 70 72 6f 76 69 64 65 72 73 20 72 65 71 75 69 72 | ut.most.service.providers.requir |
| 14ace0 | 65 20 69 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 | e.it..Use.this.command.to.set.th |
| 14ad00 | 65 20 74 61 72 67 65 74 20 74 6f 20 75 73 65 2e 20 41 63 74 69 6f 6e 20 71 75 65 75 65 20 6d 75 | e.target.to.use..Action.queue.mu |
| 14ad20 | 73 74 20 62 65 20 64 65 66 69 6e 65 64 20 74 6f 20 75 73 65 20 74 68 69 73 20 73 65 74 74 69 6e | st.be.defined.to.use.this.settin |
| 14ad40 | 67 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 75 73 | g.Use.this.command.to.set.the.us |
| 14ad60 | 65 72 6e 61 6d 65 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 77 69 74 68 20 61 | ername.for.authenticating.with.a |
| 14ad80 | 20 72 65 6d 6f 74 65 20 50 50 50 6f 45 20 65 6e 64 70 6f 69 6e 74 2e 20 41 75 74 68 65 6e 74 69 | .remote.PPPoE.endpoint..Authenti |
| 14ada0 | 63 61 74 69 6f 6e 20 69 73 20 6f 70 74 69 6f 6e 61 6c 20 66 72 6f 6d 20 74 68 65 20 73 79 73 74 | cation.is.optional.from.the.syst |
| 14adc0 | 65 6d 27 73 20 70 6f 69 6e 74 20 6f 66 20 76 69 65 77 20 62 75 74 20 6d 6f 73 74 20 73 65 72 76 | em's.point.of.view.but.most.serv |
| 14ade0 | 69 63 65 20 70 72 6f 76 69 64 65 72 73 20 72 65 71 75 69 72 65 20 69 74 2e 00 55 73 65 20 74 68 | ice.providers.require.it..Use.th |
| 14ae00 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 68 6f 77 20 49 50 76 36 20 42 6f 72 64 65 72 20 47 | is.command.to.show.IPv6.Border.G |
| 14ae20 | 61 74 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 55 73 65 | ateway.Protocol.information..Use |
| 14ae40 | 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 68 6f 77 20 49 50 76 36 20 4e 65 69 67 68 | .this.command.to.show.IPv6.Neigh |
| 14ae60 | 62 6f 72 20 44 69 73 63 6f 76 65 72 79 20 50 72 6f 74 6f 63 6f 6c 20 69 6e 66 6f 72 6d 61 74 69 | bor.Discovery.Protocol.informati |
| 14ae80 | 6f 6e 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 68 6f 77 20 49 50 76 | on..Use.this.command.to.show.IPv |
| 14aea0 | 36 20 66 6f 72 77 61 72 64 69 6e 67 20 73 74 61 74 75 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f | 6.forwarding.status..Use.this.co |
| 14aec0 | 6d 6d 61 6e 64 20 74 6f 20 73 68 6f 77 20 49 50 76 36 20 6d 75 6c 74 69 63 61 73 74 20 67 72 6f | mmand.to.show.IPv6.multicast.gro |
| 14aee0 | 75 70 20 6d 65 6d 62 65 72 73 68 69 70 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | up.membership..Use.this.command. |
| 14af00 | 74 6f 20 73 68 6f 77 20 49 50 76 36 20 72 6f 75 74 65 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f | to.show.IPv6.routes..Use.this.co |
| 14af20 | 6d 6d 61 6e 64 20 74 6f 20 73 68 6f 77 20 61 6c 6c 20 49 50 76 36 20 61 63 63 65 73 73 20 6c 69 | mmand.to.show.all.IPv6.access.li |
| 14af40 | 73 74 73 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 68 6f 77 20 61 6c 6c | sts.Use.this.command.to.show.all |
| 14af60 | 20 49 50 76 36 20 70 72 65 66 69 78 20 6c 69 73 74 73 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d | .IPv6.prefix.lists.Use.this.comm |
| 14af80 | 61 6e 64 20 74 6f 20 73 68 6f 77 20 74 68 65 20 73 74 61 74 75 73 20 6f 66 20 74 68 65 20 52 49 | and.to.show.the.status.of.the.RI |
| 14afa0 | 50 4e 47 20 70 72 6f 74 6f 63 6f 6c 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | PNG.protocol.Use.this.command.to |
| 14afc0 | 20 73 70 65 63 69 66 79 20 61 20 44 4e 53 20 73 65 72 76 65 72 20 66 6f 72 20 74 68 65 20 73 79 | .specify.a.DNS.server.for.the.sy |
| 14afe0 | 73 74 65 6d 20 74 6f 20 62 65 20 75 73 65 64 20 66 6f 72 20 44 4e 53 20 6c 6f 6f 6b 75 70 73 2e | stem.to.be.used.for.DNS.lookups. |
| 14b000 | 20 4d 6f 72 65 20 74 68 61 6e 20 6f 6e 65 20 44 4e 53 20 73 65 72 76 65 72 20 63 61 6e 20 62 65 | .More.than.one.DNS.server.can.be |
| 14b020 | 20 61 64 64 65 64 2c 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 6f 6e 65 20 61 74 20 61 20 74 69 6d | .added,.configuring.one.at.a.tim |
| 14b040 | 65 2e 20 42 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 | e..Both.IPv4.and.IPv6.addresses. |
| 14b060 | 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | are.supported..Use.this.command. |
| 14b080 | 74 6f 20 73 70 65 63 69 66 79 20 61 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 74 6f 20 62 65 20 61 | to.specify.a.domain.name.to.be.a |
| 14b0a0 | 70 70 65 6e 64 65 64 20 74 6f 20 64 6f 6d 61 69 6e 2d 6e 61 6d 65 73 20 77 69 74 68 69 6e 20 55 | ppended.to.domain-names.within.U |
| 14b0c0 | 52 4c 73 20 74 68 61 74 20 64 6f 20 6e 6f 74 20 69 6e 63 6c 75 64 65 20 61 20 64 6f 74 20 60 60 | RLs.that.do.not.include.a.dot.`` |
| 14b0e0 | 2e 60 60 20 74 68 65 20 64 6f 6d 61 69 6e 20 69 73 20 61 70 70 65 6e 64 65 64 2e 00 55 73 65 20 | .``.the.domain.is.appended..Use. |
| 14b100 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 61 20 73 65 72 76 69 63 | this.command.to.specify.a.servic |
| 14b120 | 65 20 6e 61 6d 65 20 62 79 20 77 68 69 63 68 20 74 68 65 20 6c 6f 63 61 6c 20 50 50 50 6f 45 20 | e.name.by.which.the.local.PPPoE. |
| 14b140 | 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 73 65 6c 65 63 74 20 61 63 63 65 73 73 20 63 6f 6e 63 | interface.can.select.access.conc |
| 14b160 | 65 6e 74 72 61 74 6f 72 73 20 74 6f 20 63 6f 6e 6e 65 63 74 20 77 69 74 68 2e 20 49 74 20 77 69 | entrators.to.connect.with..It.wi |
| 14b180 | 6c 6c 20 63 6f 6e 6e 65 63 74 20 74 6f 20 61 6e 79 20 61 63 63 65 73 73 20 63 6f 6e 63 65 6e 74 | ll.connect.to.any.access.concent |
| 14b1a0 | 72 61 74 6f 72 20 69 66 20 6e 6f 74 20 73 65 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 | rator.if.not.set..Use.this.comma |
| 14b1c0 | 6e 64 20 74 6f 20 75 73 65 20 4c 61 79 65 72 20 34 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f | nd.to.use.Layer.4.information.fo |
| 14b1e0 | 72 20 49 50 76 34 20 45 43 4d 50 20 68 61 73 68 69 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 6f | r.IPv4.ECMP.hashing..Use.this.co |
| 14b200 | 6d 6d 61 6e 64 20 74 6f 20 75 73 65 20 61 20 43 69 73 63 6f 20 6e 6f 6e 2d 63 6f 6d 70 6c 69 61 | mmand.to.use.a.Cisco.non-complia |
| 14b220 | 6e 74 20 66 6f 72 6d 61 74 20 74 6f 20 73 65 6e 64 20 61 6e 64 20 69 6e 74 65 72 70 72 65 74 20 | nt.format.to.send.and.interpret. |
| 14b240 | 74 68 65 20 44 75 61 6c 2d 53 74 61 63 6b 20 63 61 70 61 62 69 6c 69 74 79 20 54 4c 56 20 66 6f | the.Dual-Stack.capability.TLV.fo |
| 14b260 | 72 20 49 50 76 36 20 4c 44 50 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 73 2e 20 54 68 69 73 20 | r.IPv6.LDP.communications..This. |
| 14b280 | 69 73 20 72 65 6c 61 74 65 64 20 74 6f 20 3a 72 66 63 3a 60 37 35 35 32 60 2e 00 55 73 65 20 74 | is.related.to.:rfc:`7552`..Use.t |
| 14b2a0 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 75 73 65 20 6f 72 64 65 72 65 64 20 6c 61 62 65 6c | his.command.to.use.ordered.label |
| 14b2c0 | 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 63 6f 6e 74 72 6f 6c 20 6d 6f 64 65 2e 20 46 52 52 20 | .distribution.control.mode..FRR. |
| 14b2e0 | 62 79 20 64 65 66 61 75 6c 74 20 75 73 65 73 20 69 6e 64 65 70 65 6e 64 65 6e 74 20 6c 61 62 65 | by.default.uses.independent.labe |
| 14b300 | 6c 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 63 6f 6e 74 72 6f 6c 20 6d 6f 64 65 20 66 6f 72 20 | l.distribution.control.mode.for. |
| 14b320 | 6c 61 62 65 6c 20 64 69 73 74 72 69 62 75 74 69 6f 6e 2e 20 20 54 68 69 73 20 69 73 20 72 65 6c | label.distribution...This.is.rel |
| 14b340 | 61 74 65 64 20 74 6f 20 3a 72 66 63 3a 60 35 30 33 36 60 2e 00 55 73 65 20 74 68 69 73 20 63 6f | ated.to.:rfc:`5036`..Use.this.co |
| 14b360 | 6d 6d 61 6e 64 20 74 6f 20 75 73 65 72 20 4c 61 79 65 72 20 34 20 69 6e 66 6f 72 6d 61 74 69 6f | mmand.to.user.Layer.4.informatio |
| 14b380 | 6e 20 66 6f 72 20 45 43 4d 50 20 68 61 73 68 69 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d | n.for.ECMP.hashing..Use.this.com |
| 14b3a0 | 6d 61 6e 64 20 74 6f 20 76 69 65 77 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 73 74 61 74 75 73 20 | mand.to.view.operational.status. |
| 14b3c0 | 61 6e 64 20 64 65 74 61 69 6c 73 20 77 69 72 65 6c 65 73 73 2d 73 70 65 63 69 66 69 63 20 69 6e | and.details.wireless-specific.in |
| 14b3e0 | 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 61 6c 6c 20 77 69 72 65 6c 65 73 73 20 69 6e 74 | formation.about.all.wireless.int |
| 14b400 | 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 76 69 65 | erfaces..Use.this.command.to.vie |
| 14b420 | 77 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 73 74 61 74 75 73 20 61 6e 64 20 77 69 72 65 6c 65 73 | w.operational.status.and.wireles |
| 14b440 | 73 2d 73 70 65 63 69 66 69 63 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 61 6c 6c | s-specific.information.about.all |
| 14b460 | 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 68 69 73 20 63 | .wireless.interfaces..Use.this.c |
| 14b480 | 6f 6d 6d 61 6e 64 20 74 6f 20 76 69 65 77 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 | ommand.to.view.wireless.interfac |
| 14b4a0 | 65 20 71 75 65 75 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 20 54 68 65 20 77 69 72 65 6c 65 73 | e.queue.information..The.wireles |
| 14b4c0 | 73 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 63 61 6e 20 72 61 6e 67 65 | s.interface.identifier.can.range |
| 14b4e0 | 20 66 72 6f 6d 20 77 6c 61 6e 30 20 74 6f 20 77 6c 61 6e 39 39 39 2e 00 55 73 65 64 20 66 6f 72 | .from.wlan0.to.wlan999..Used.for |
| 14b500 | 20 74 72 6f 75 62 6c 65 73 68 6f 6f 74 69 6e 67 2e 00 55 73 65 64 20 74 6f 20 62 6c 6f 63 6b 20 | .troubleshooting..Used.to.block. |
| 14b520 | 61 20 73 70 65 63 69 66 69 63 20 6d 69 6d 65 2d 74 79 70 65 2e 00 55 73 65 64 20 74 6f 20 62 6c | a.specific.mime-type..Used.to.bl |
| 14b540 | 6f 63 6b 20 73 70 65 63 69 66 69 63 20 64 6f 6d 61 69 6e 73 20 62 79 20 74 68 65 20 50 72 6f 78 | ock.specific.domains.by.the.Prox |
| 14b560 | 79 2e 20 53 70 65 63 69 66 79 69 6e 67 20 22 76 79 6f 73 2e 6e 65 74 22 20 77 69 6c 6c 20 62 6c | y..Specifying."vyos.net".will.bl |
| 14b580 | 6f 63 6b 20 61 6c 6c 20 61 63 63 65 73 73 20 74 6f 20 76 79 6f 73 2e 6e 65 74 2c 20 61 6e 64 20 | ock.all.access.to.vyos.net,.and. |
| 14b5a0 | 73 70 65 63 69 66 79 69 6e 67 20 22 2e 78 78 78 22 20 77 69 6c 6c 20 62 6c 6f 63 6b 20 61 6c 6c | specifying.".xxx".will.block.all |
| 14b5c0 | 20 61 63 63 65 73 73 20 74 6f 20 55 52 4c 73 20 68 61 76 69 6e 67 20 61 6e 20 55 52 4c 20 65 6e | .access.to.URLs.having.an.URL.en |
| 14b5e0 | 64 69 6e 67 20 6f 6e 20 2e 78 78 78 2e 00 55 73 65 72 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e | ding.on..xxx..User.interface.can |
| 14b600 | 20 62 65 20 70 75 74 20 74 6f 20 56 52 46 20 63 6f 6e 74 65 78 74 20 76 69 61 20 52 41 44 49 55 | .be.put.to.VRF.context.via.RADIU |
| 14b620 | 53 20 41 63 63 65 73 73 2d 41 63 63 65 70 74 20 70 61 63 6b 65 74 2c 20 6f 72 20 63 68 61 6e 67 | S.Access-Accept.packet,.or.chang |
| 14b640 | 65 20 69 74 20 76 69 61 20 52 41 44 49 55 53 20 43 6f 41 2e 20 60 60 41 63 63 65 6c 2d 56 52 46 | e.it.via.RADIUS.CoA..``Accel-VRF |
| 14b660 | 2d 4e 61 6d 65 60 60 20 69 73 20 75 73 65 64 20 66 72 6f 6d 20 74 68 65 73 65 20 70 75 72 70 6f | -Name``.is.used.from.these.purpo |
| 14b680 | 73 65 73 2e 20 49 74 20 69 73 20 63 75 73 74 6f 6d 20 60 41 43 43 45 4c 2d 50 50 50 20 61 74 74 | ses..It.is.custom.`ACCEL-PPP.att |
| 14b6a0 | 72 69 62 75 74 65 60 5f 2e 20 44 65 66 69 6e 65 20 69 74 20 69 6e 20 79 6f 75 72 20 52 41 44 49 | ribute`_..Define.it.in.your.RADI |
| 14b6c0 | 55 53 20 73 65 72 76 65 72 2e 00 55 73 65 72 2d 6c 65 76 65 6c 20 6d 65 73 73 61 67 65 73 00 55 | US.server..User-level.messages.U |
| 14b6e0 | 73 69 6e 67 20 27 73 6f 66 74 2d 72 65 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 27 20 77 65 20 67 | sing.'soft-reconfiguration'.we.g |
| 14b700 | 65 74 20 74 68 65 20 70 6f 6c 69 63 79 20 75 70 64 61 74 65 20 77 69 74 68 6f 75 74 20 62 6f 75 | et.the.policy.update.without.bou |
| 14b720 | 6e 63 69 6e 67 20 74 68 65 20 6e 65 69 67 68 62 6f 72 2e 00 55 73 69 6e 67 20 2a 2a 6f 70 65 6e | ncing.the.neighbor..Using.**open |
| 14b740 | 76 70 6e 2d 6f 70 74 69 6f 6e 20 2d 72 65 6e 65 67 2d 73 65 63 2a 2a 20 63 61 6e 20 62 65 20 74 | vpn-option.-reneg-sec**.can.be.t |
| 14b760 | 72 69 63 6b 79 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 75 73 65 64 20 74 6f 20 72 65 | ricky..This.option.is.used.to.re |
| 14b780 | 6e 65 67 6f 74 69 61 74 65 20 64 61 74 61 20 63 68 61 6e 6e 65 6c 20 61 66 74 65 72 20 6e 20 73 | negotiate.data.channel.after.n.s |
| 14b7a0 | 65 63 6f 6e 64 73 2e 20 57 68 65 6e 20 75 73 65 64 20 61 74 20 62 6f 74 68 20 73 65 72 76 65 72 | econds..When.used.at.both.server |
| 14b7c0 | 20 61 6e 64 20 63 6c 69 65 6e 74 2c 20 74 68 65 20 6c 6f 77 65 72 20 76 61 6c 75 65 20 77 69 6c | .and.client,.the.lower.value.wil |
| 14b7e0 | 6c 20 74 72 69 67 67 65 72 20 74 68 65 20 72 65 6e 65 67 6f 74 69 61 74 69 6f 6e 2e 20 49 66 20 | l.trigger.the.renegotiation..If. |
| 14b800 | 79 6f 75 20 73 65 74 20 69 74 20 74 6f 20 30 20 6f 6e 20 6f 6e 65 20 73 69 64 65 20 6f 66 20 74 | you.set.it.to.0.on.one.side.of.t |
| 14b820 | 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 28 74 6f 20 64 69 73 61 62 6c 65 20 69 74 29 2c 20 74 | he.connection.(to.disable.it),.t |
| 14b840 | 68 65 20 63 68 6f 73 65 6e 20 76 61 6c 75 65 20 6f 6e 20 74 68 65 20 6f 74 68 65 72 20 73 69 64 | he.chosen.value.on.the.other.sid |
| 14b860 | 65 20 77 69 6c 6c 20 64 65 74 65 72 6d 69 6e 65 20 77 68 65 6e 20 74 68 65 20 72 65 6e 65 67 6f | e.will.determine.when.the.renego |
| 14b880 | 74 69 61 74 69 6f 6e 20 77 69 6c 6c 20 6f 63 63 75 72 2e 00 55 73 69 6e 67 20 2a 2a 6f 70 65 6e | tiation.will.occur..Using.**open |
| 14b8a0 | 76 70 6e 2d 6f 70 74 69 6f 6e 20 2d 72 65 6e 65 67 2d 73 65 63 2a 2a 20 63 61 6e 20 62 65 20 74 | vpn-option.-reneg-sec**.can.be.t |
| 14b8c0 | 72 69 63 6b 79 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 75 73 65 64 20 74 6f 20 72 65 | ricky..This.option.is.used.to.re |
| 14b8e0 | 6e 65 67 6f 74 69 61 74 65 20 64 61 74 61 20 63 68 61 6e 6e 65 6c 20 61 66 74 65 72 20 6e 20 73 | negotiate.data.channel.after.n.s |
| 14b900 | 65 63 6f 6e 64 73 2e 20 57 68 65 6e 20 75 73 65 64 20 6f 6e 20 62 6f 74 68 20 74 68 65 20 73 65 | econds..When.used.on.both.the.se |
| 14b920 | 72 76 65 72 20 61 6e 64 20 63 6c 69 65 6e 74 2c 20 74 68 65 20 6c 6f 77 65 72 20 76 61 6c 75 65 | rver.and.client,.the.lower.value |
| 14b940 | 20 77 69 6c 6c 20 74 72 69 67 67 65 72 20 74 68 65 20 72 65 6e 65 67 6f 74 69 61 74 69 6f 6e 2e | .will.trigger.the.renegotiation. |
| 14b960 | 20 49 66 20 79 6f 75 20 73 65 74 20 69 74 20 74 6f 20 30 20 6f 6e 20 6f 6e 65 20 73 69 64 65 20 | .If.you.set.it.to.0.on.one.side. |
| 14b980 | 6f 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 28 74 6f 20 64 69 73 61 62 6c 65 20 69 74 | of.the.connection.(to.disable.it |
| 14b9a0 | 29 2c 20 74 68 65 20 63 68 6f 73 65 6e 20 76 61 6c 75 65 20 6f 6e 20 74 68 65 20 6f 74 68 65 72 | ),.the.chosen.value.on.the.other |
| 14b9c0 | 20 73 69 64 65 20 77 69 6c 6c 20 64 65 74 65 72 6d 69 6e 65 20 77 68 65 6e 20 74 68 65 20 72 65 | .side.will.determine.when.the.re |
| 14b9e0 | 6e 65 67 6f 74 69 61 74 69 6f 6e 20 77 69 6c 6c 20 6f 63 63 75 72 2e 00 55 73 69 6e 67 20 42 47 | negotiation.will.occur..Using.BG |
| 14ba00 | 50 20 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e 00 55 73 69 6e 67 20 42 47 50 20 72 6f 75 74 65 2d | P.confederation.Using.BGP.route- |
| 14ba20 | 72 65 66 6c 65 63 74 6f 72 73 00 55 73 69 6e 67 20 44 79 6e 61 6d 69 63 20 46 69 72 65 77 61 6c | reflectors.Using.Dynamic.Firewal |
| 14ba40 | 6c 20 47 72 6f 75 70 73 00 55 73 69 6e 67 20 4e 65 74 46 6c 6f 77 20 6f 6e 20 72 6f 75 74 65 72 | l.Groups.Using.NetFlow.on.router |
| 14ba60 | 73 20 77 69 74 68 20 68 69 67 68 20 74 72 61 66 66 69 63 20 6c 65 76 65 6c 73 20 6d 61 79 20 6c | s.with.high.traffic.levels.may.l |
| 14ba80 | 65 61 64 20 74 6f 20 68 69 67 68 20 43 50 55 20 75 73 61 67 65 20 61 6e 64 20 6d 61 79 20 61 66 | ead.to.high.CPU.usage.and.may.af |
| 14baa0 | 66 65 63 74 20 74 68 65 20 72 6f 75 74 65 72 27 73 20 70 65 72 66 6f 72 6d 61 6e 63 65 2e 20 49 | fect.the.router's.performance..I |
| 14bac0 | 6e 20 73 75 63 68 20 63 61 73 65 73 2c 20 63 6f 6e 73 69 64 65 72 20 75 73 69 6e 67 20 73 46 6c | n.such.cases,.consider.using.sFl |
| 14bae0 | 6f 77 20 69 6e 73 74 65 61 64 2e 00 55 73 69 6e 67 20 56 4c 41 4e 20 61 77 61 72 65 20 42 72 69 | ow.instead..Using.VLAN.aware.Bri |
| 14bb00 | 64 67 65 00 55 73 69 6e 67 20 61 64 64 72 65 73 73 20 61 6e 64 20 70 6f 72 74 20 67 72 6f 75 70 | dge.Using.address.and.port.group |
| 14bb20 | 73 20 61 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 6d 61 6b 65 20 79 6f 75 72 20 53 75 72 69 63 61 | s.allows.you.to.make.your.Surica |
| 14bb40 | 74 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 72 65 20 66 6c 65 78 69 62 6c 65 20 61 | ta.configuration.more.flexible.a |
| 14bb60 | 6e 64 20 6d 61 6e 61 67 65 61 62 6c 65 2e 20 49 6e 73 74 65 61 64 20 6f 66 20 73 70 65 63 69 66 | nd.manageable..Instead.of.specif |
| 14bb80 | 79 69 6e 67 20 49 50 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 70 6f 72 74 73 20 64 69 72 65 | ying.IP.addresses.and.ports.dire |
| 14bba0 | 63 74 6c 79 20 69 6e 20 65 61 63 68 20 72 75 6c 65 2c 20 79 6f 75 20 63 61 6e 20 64 65 66 69 6e | ctly.in.each.rule,.you.can.defin |
| 14bbc0 | 65 20 74 68 65 6d 20 6f 6e 63 65 20 69 6e 20 74 68 65 20 76 61 72 73 20 73 65 63 74 69 6f 6e 20 | e.them.once.in.the.vars.section. |
| 14bbe0 | 61 6e 64 20 74 68 65 6e 20 72 65 66 65 72 65 6e 63 65 20 74 68 65 6d 20 62 79 20 67 72 6f 75 70 | and.then.reference.them.by.group |
| 14bc00 | 20 6e 61 6d 65 73 2e 20 54 68 69 73 20 69 73 20 65 73 70 65 63 69 61 6c 6c 79 20 75 73 65 66 75 | .names..This.is.especially.usefu |
| 14bc20 | 6c 20 69 6e 20 6c 61 72 67 65 20 6e 65 74 77 6f 72 6b 73 20 61 6e 64 20 63 6f 6d 70 6c 65 78 20 | l.in.large.networks.and.complex. |
| 14bc40 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 77 68 65 72 65 20 6d 75 6c 74 69 70 6c 65 20 49 50 | configurations.where.multiple.IP |
| 14bc60 | 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 70 6f 72 74 73 20 6e 65 65 64 20 74 6f 20 62 65 20 | .addresses.and.ports.need.to.be. |
| 14bc80 | 6d 6f 6e 69 74 6f 72 65 64 2e 00 55 73 69 6e 67 20 64 79 6e 61 6d 69 63 20 66 69 72 65 77 61 6c | monitored..Using.dynamic.firewal |
| 14bca0 | 6c 20 67 72 6f 75 70 73 2c 20 77 65 20 63 61 6e 20 73 65 63 75 72 65 20 61 63 63 65 73 73 20 74 | l.groups,.we.can.secure.access.t |
| 14bcc0 | 6f 20 74 68 65 20 72 6f 75 74 65 72 2c 20 6f 72 20 61 6e 79 20 6f 74 68 65 72 20 64 65 76 69 63 | o.the.router,.or.any.other.devic |
| 14bce0 | 65 20 69 66 20 6e 65 65 64 65 64 2c 20 62 79 20 75 73 69 6e 67 20 74 68 65 20 74 65 63 68 6e 69 | e.if.needed,.by.using.the.techni |
| 14bd00 | 71 75 65 20 6f 66 20 70 6f 72 74 20 6b 6e 6f 63 6b 69 6e 67 2e 00 55 73 69 6e 67 20 6f 75 72 20 | que.of.port.knocking..Using.our. |
| 14bd20 | 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 63 68 61 70 74 65 72 20 2d 20 3a 72 65 66 3a 60 70 6b | documentation.chapter.-.:ref:`pk |
| 14bd40 | 69 60 20 67 65 6e 65 72 61 74 65 20 61 6e 64 20 69 6e 73 74 61 6c 6c 20 43 41 20 61 6e 64 20 53 | i`.generate.and.install.CA.and.S |
| 14bd60 | 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 00 55 73 69 6e 67 20 74 68 65 20 6f 70 65 72 | erver.certificate.Using.the.oper |
| 14bd80 | 61 74 69 6f 6e 20 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 76 69 65 77 20 42 72 69 64 67 | ation.mode.command.to.view.Bridg |
| 14bda0 | 65 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 00 55 73 69 6e 67 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 | e.Information.Using.this.command |
| 14bdc0 | 2c 20 79 6f 75 20 77 69 6c 6c 20 63 72 65 61 74 65 20 61 20 6e 65 77 20 63 6c 69 65 6e 74 20 63 | ,.you.will.create.a.new.client.c |
| 14bde0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 68 69 63 68 20 63 61 6e 20 63 6f 6e 6e 65 63 74 20 74 | onfiguration.which.can.connect.t |
| 14be00 | 6f 20 60 60 69 6e 74 65 72 66 61 63 65 60 60 20 6f 6e 20 74 68 69 73 20 72 6f 75 74 65 72 2e 20 | o.``interface``.on.this.router.. |
| 14be20 | 54 68 65 20 70 75 62 6c 69 63 20 6b 65 79 20 66 72 6f 6d 20 74 68 65 20 73 70 65 63 69 66 69 65 | The.public.key.from.the.specifie |
| 14be40 | 64 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 65 78 74 | d.interface.is.automatically.ext |
| 14be60 | 72 61 63 74 65 64 20 61 6e 64 20 65 6d 62 65 64 64 65 64 20 69 6e 74 6f 20 74 68 65 20 63 6f 6e | racted.and.embedded.into.the.con |
| 14be80 | 66 69 67 75 72 61 74 69 6f 6e 2e 00 55 73 75 61 6c 6c 79 20 74 68 69 73 20 63 6f 6e 66 69 67 75 | figuration..Usually.this.configu |
| 14bea0 | 72 61 74 69 6f 6e 20 69 73 20 75 73 65 64 20 69 6e 20 50 45 73 20 28 50 72 6f 76 69 64 65 72 20 | ration.is.used.in.PEs.(Provider. |
| 14bec0 | 45 64 67 65 29 20 74 6f 20 72 65 70 6c 61 63 65 20 74 68 65 20 69 6e 63 6f 6d 69 6e 67 20 63 75 | Edge).to.replace.the.incoming.cu |
| 14bee0 | 73 74 6f 6d 65 72 20 41 53 20 6e 75 6d 62 65 72 20 73 6f 20 74 68 65 20 63 6f 6e 6e 65 63 74 65 | stomer.AS.number.so.the.connecte |
| 14bf00 | 64 20 43 45 20 28 20 43 75 73 74 6f 6d 65 72 20 45 64 67 65 29 20 63 61 6e 20 75 73 65 20 74 68 | d.CE.(.Customer.Edge).can.use.th |
| 14bf20 | 65 20 73 61 6d 65 20 41 53 20 6e 75 6d 62 65 72 20 61 73 20 74 68 65 20 6f 74 68 65 72 20 63 75 | e.same.AS.number.as.the.other.cu |
| 14bf40 | 73 74 6f 6d 65 72 20 73 69 74 65 73 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 63 75 73 74 6f 6d | stomer.sites..This.allows.custom |
| 14bf60 | 65 72 73 20 6f 66 20 74 68 65 20 70 72 6f 76 69 64 65 72 20 6e 65 74 77 6f 72 6b 20 74 6f 20 75 | ers.of.the.provider.network.to.u |
| 14bf80 | 73 65 20 74 68 65 20 73 61 6d 65 20 41 53 20 6e 75 6d 62 65 72 20 61 63 72 6f 73 73 20 74 68 65 | se.the.same.AS.number.across.the |
| 14bfa0 | 69 72 20 73 69 74 65 73 2e 00 56 48 54 20 28 56 65 72 79 20 48 69 67 68 20 54 68 72 6f 75 67 68 | ir.sites..VHT.(Very.High.Through |
| 14bfc0 | 70 75 74 29 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 28 38 30 32 2e 31 31 61 63 29 00 56 48 54 | put).capabilities.(802.11ac).VHT |
| 14bfe0 | 20 6c 69 6e 6b 20 61 64 61 70 74 61 74 69 6f 6e 20 63 61 70 61 62 69 6c 69 74 69 65 73 00 56 48 | .link.adaptation.capabilities.VH |
| 14c000 | 54 20 6f 70 65 72 61 74 69 6e 67 20 63 68 61 6e 6e 65 6c 20 63 65 6e 74 65 72 20 66 72 65 71 75 | T.operating.channel.center.frequ |
| 14c020 | 65 6e 63 79 20 2d 20 63 65 6e 74 65 72 20 66 72 65 71 20 31 20 28 66 6f 72 20 75 73 65 20 77 69 | ency.-.center.freq.1.(for.use.wi |
| 14c040 | 74 68 20 38 30 2c 20 38 30 2b 38 30 20 61 6e 64 20 31 36 30 20 6d 6f 64 65 73 29 00 56 48 54 20 | th.80,.80+80.and.160.modes).VHT. |
| 14c060 | 6f 70 65 72 61 74 69 6e 67 20 63 68 61 6e 6e 65 6c 20 63 65 6e 74 65 72 20 66 72 65 71 75 65 6e | operating.channel.center.frequen |
| 14c080 | 63 79 20 2d 20 63 65 6e 74 65 72 20 66 72 65 71 20 32 20 28 66 6f 72 20 75 73 65 20 77 69 74 68 | cy.-.center.freq.2.(for.use.with |
| 14c0a0 | 20 74 68 65 20 38 30 2b 38 30 20 6d 6f 64 65 29 00 56 4c 41 4e 00 56 4c 41 4e 20 31 30 20 6f 6e | .the.80+80.mode).VLAN.VLAN.10.on |
| 14c0c0 | 20 6d 65 6d 62 65 72 20 69 6e 74 65 72 66 61 63 65 20 60 65 74 68 32 60 20 28 41 43 43 45 53 53 | .member.interface.`eth2`.(ACCESS |
| 14c0e0 | 20 6d 6f 64 65 29 00 56 4c 41 4e 20 45 78 61 6d 70 6c 65 00 56 4c 41 4e 20 4f 70 74 69 6f 6e 73 | .mode).VLAN.Example.VLAN.Options |
| 14c100 | 00 56 4c 41 4e 20 6d 6f 6e 69 74 6f 72 20 66 6f 72 20 61 75 74 6f 6d 61 74 69 63 20 63 72 65 61 | .VLAN.monitor.for.automatic.crea |
| 14c120 | 74 69 6f 6e 20 6f 66 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 73 20 66 6f 72 20 73 70 65 63 | tion.of.VLAN.interfaces.for.spec |
| 14c140 | 69 66 69 63 20 75 73 65 72 20 6f 6e 20 73 70 65 63 69 66 69 63 20 3c 69 6e 74 65 72 66 61 63 65 | ific.user.on.specific.<interface |
| 14c160 | 3e 00 56 4c 41 4e 20 6e 61 6d 65 00 56 4c 41 4e 27 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 | >.VLAN.name.VLAN's.can.be.create |
| 14c180 | 64 20 62 79 20 41 63 63 65 6c 2d 70 70 70 20 6f 6e 20 74 68 65 20 66 6c 79 20 76 69 61 20 74 68 | d.by.Accel-ppp.on.the.fly.via.th |
| 14c1a0 | 65 20 75 73 65 20 6f 66 20 61 20 4b 65 72 6e 65 6c 20 6d 6f 64 75 6c 65 20 6e 61 6d 65 64 20 60 | e.use.of.a.Kernel.module.named.` |
| 14c1c0 | 60 76 6c 61 6e 5f 6d 6f 6e 60 60 2c 20 77 68 69 63 68 20 69 73 20 6d 6f 6e 69 74 6f 72 69 6e 67 | `vlan_mon``,.which.is.monitoring |
| 14c1e0 | 20 69 6e 63 6f 6d 69 6e 67 20 76 6c 61 6e 73 20 61 6e 64 20 63 72 65 61 74 65 73 20 74 68 65 20 | .incoming.vlans.and.creates.the. |
| 14c200 | 6e 65 63 65 73 73 61 72 79 20 56 4c 41 4e 20 69 66 20 72 65 71 75 69 72 65 64 20 61 6e 64 20 61 | necessary.VLAN.if.required.and.a |
| 14c220 | 6c 6c 6f 77 65 64 2e 20 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 74 68 65 20 75 73 65 20 6f 66 | llowed..VyOS.supports.the.use.of |
| 14c240 | 20 65 69 74 68 65 72 20 56 4c 41 4e 20 49 44 27 73 20 6f 72 20 65 6e 74 69 72 65 20 72 61 6e 67 | .either.VLAN.ID's.or.entire.rang |
| 14c260 | 65 73 2c 20 62 6f 74 68 20 76 61 6c 75 65 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 61 | es,.both.values.can.be.defined.a |
| 14c280 | 74 20 74 68 65 20 73 61 6d 65 20 74 69 6d 65 20 66 6f 72 20 61 6e 20 69 6e 74 65 72 66 61 63 65 | t.the.same.time.for.an.interface |
| 14c2a0 | 2e 00 56 4c 41 4e 27 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 20 62 79 20 41 63 63 65 6c | ..VLAN's.can.be.created.by.Accel |
| 14c2c0 | 2d 70 70 70 20 6f 6e 20 74 68 65 20 66 6c 79 20 76 69 61 20 74 68 65 20 75 73 65 20 6f 66 20 61 | -ppp.on.the.fly.via.the.use.of.a |
| 14c2e0 | 20 4b 65 72 6e 65 6c 20 6d 6f 64 75 6c 65 20 6e 61 6d 65 64 20 60 76 6c 61 6e 5f 6d 6f 6e 60 2c | .Kernel.module.named.`vlan_mon`, |
| 14c300 | 20 77 68 69 63 68 20 69 73 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 69 6e 63 6f 6d 69 6e 67 20 76 6c | .which.is.monitoring.incoming.vl |
| 14c320 | 61 6e 73 20 61 6e 64 20 63 72 65 61 74 65 73 20 74 68 65 20 6e 65 63 65 73 73 61 72 79 20 56 4c | ans.and.creates.the.necessary.VL |
| 14c340 | 41 4e 20 69 66 20 72 65 71 75 69 72 65 64 20 61 6e 64 20 61 6c 6c 6f 77 65 64 2e 20 56 79 4f 53 | AN.if.required.and.allowed..VyOS |
| 14c360 | 20 73 75 70 70 6f 72 74 73 20 74 68 65 20 75 73 65 20 6f 66 20 65 69 74 68 65 72 20 56 4c 41 4e | .supports.the.use.of.either.VLAN |
| 14c380 | 20 49 44 27 73 20 6f 72 20 65 6e 74 69 72 65 20 72 61 6e 67 65 73 2c 20 62 6f 74 68 20 76 61 6c | .ID's.or.entire.ranges,.both.val |
| 14c3a0 | 75 65 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 61 74 20 74 68 65 20 73 61 6d 65 20 74 | ues.can.be.defined.at.the.same.t |
| 14c3c0 | 69 6d 65 20 66 6f 72 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e 00 56 4d 77 61 72 65 20 75 73 65 | ime.for.an.interface..VMware.use |
| 14c3e0 | 72 73 20 73 68 6f 75 6c 64 20 65 6e 73 75 72 65 20 74 68 61 74 20 61 20 56 4d 58 4e 45 54 33 20 | rs.should.ensure.that.a.VMXNET3. |
| 14c400 | 61 64 61 70 74 65 72 20 69 73 20 75 73 65 64 2e 20 45 31 30 30 30 20 61 64 61 70 74 65 72 73 20 | adapter.is.used..E1000.adapters. |
| 14c420 | 68 61 76 65 20 6b 6e 6f 77 6e 20 69 73 73 75 65 73 20 77 69 74 68 20 47 52 45 20 70 72 6f 63 65 | have.known.issues.with.GRE.proce |
| 14c440 | 73 73 69 6e 67 2e 00 56 50 4e 00 56 50 4e 2d 63 6c 69 65 6e 74 73 20 77 69 6c 6c 20 72 65 71 75 | ssing..VPN.VPN-clients.will.requ |
| 14c460 | 65 73 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 73 2c 20 6f 70 | est.configuration.parameters,.op |
| 14c480 | 74 69 6f 6e 61 6c 6c 79 20 79 6f 75 20 63 61 6e 20 44 4e 53 20 70 61 72 61 6d 65 74 65 72 20 74 | tionally.you.can.DNS.parameter.t |
| 14c4a0 | 6f 20 74 68 65 20 63 6c 69 65 6e 74 2e 00 56 52 46 00 56 52 46 20 52 6f 75 74 65 20 4c 65 61 6b | o.the.client..VRF.VRF.Route.Leak |
| 14c4c0 | 69 6e 67 00 56 52 46 20 61 6e 64 20 4e 41 54 00 56 52 46 20 62 6c 75 65 20 72 6f 75 74 69 6e 67 | ing.VRF.and.NAT.VRF.blue.routing |
| 14c4e0 | 20 74 61 62 6c 65 00 56 52 46 20 64 65 66 61 75 6c 74 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 | .table.VRF.default.routing.table |
| 14c500 | 00 56 52 46 20 72 65 64 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 00 56 52 46 20 72 6f 75 74 65 | .VRF.red.routing.table.VRF.route |
| 14c520 | 20 6c 65 61 6b 69 6e 67 00 56 52 46 20 74 6f 70 6f 6c 6f 67 79 20 65 78 61 6d 70 6c 65 00 56 52 | .leaking.VRF.topology.example.VR |
| 14c540 | 52 50 20 28 56 69 72 74 75 61 6c 20 52 6f 75 74 65 72 20 52 65 64 75 6e 64 61 6e 63 79 20 50 72 | RP.(Virtual.Router.Redundancy.Pr |
| 14c560 | 6f 74 6f 63 6f 6c 29 20 70 72 6f 76 69 64 65 73 20 61 63 74 69 76 65 2f 62 61 63 6b 75 70 20 72 | otocol).provides.active/backup.r |
| 14c580 | 65 64 75 6e 64 61 6e 63 79 20 66 6f 72 20 72 6f 75 74 65 72 73 2e 20 45 76 65 72 79 20 56 52 52 | edundancy.for.routers..Every.VRR |
| 14c5a0 | 50 20 72 6f 75 74 65 72 20 68 61 73 20 61 20 70 68 79 73 69 63 61 6c 20 49 50 2f 49 50 76 36 20 | P.router.has.a.physical.IP/IPv6. |
| 14c5c0 | 61 64 64 72 65 73 73 2c 20 61 6e 64 20 61 20 76 69 72 74 75 61 6c 20 61 64 64 72 65 73 73 2e 20 | address,.and.a.virtual.address.. |
| 14c5e0 | 4f 6e 20 73 74 61 72 74 75 70 2c 20 72 6f 75 74 65 72 73 20 65 6c 65 63 74 20 74 68 65 20 6d 61 | On.startup,.routers.elect.the.ma |
| 14c600 | 73 74 65 72 2c 20 61 6e 64 20 74 68 65 20 72 6f 75 74 65 72 20 77 69 74 68 20 74 68 65 20 68 69 | ster,.and.the.router.with.the.hi |
| 14c620 | 67 68 65 73 74 20 70 72 69 6f 72 69 74 79 20 62 65 63 6f 6d 65 73 20 74 68 65 20 6d 61 73 74 65 | ghest.priority.becomes.the.maste |
| 14c640 | 72 20 61 6e 64 20 61 73 73 69 67 6e 73 20 74 68 65 20 76 69 72 74 75 61 6c 20 61 64 64 72 65 73 | r.and.assigns.the.virtual.addres |
| 14c660 | 73 20 74 6f 20 69 74 73 20 69 6e 74 65 72 66 61 63 65 2e 20 41 6c 6c 20 72 6f 75 74 65 72 73 20 | s.to.its.interface..All.routers. |
| 14c680 | 77 69 74 68 20 6c 6f 77 65 72 20 70 72 69 6f 72 69 74 69 65 73 20 62 65 63 6f 6d 65 20 62 61 63 | with.lower.priorities.become.bac |
| 14c6a0 | 6b 75 70 20 72 6f 75 74 65 72 73 2e 20 54 68 65 20 6d 61 73 74 65 72 20 74 68 65 6e 20 73 74 61 | kup.routers..The.master.then.sta |
| 14c6c0 | 72 74 73 20 73 65 6e 64 69 6e 67 20 6b 65 65 70 61 6c 69 76 65 20 70 61 63 6b 65 74 73 20 74 6f | rts.sending.keepalive.packets.to |
| 14c6e0 | 20 6e 6f 74 69 66 79 20 6f 74 68 65 72 20 72 6f 75 74 65 72 73 20 74 68 61 74 20 69 74 27 73 20 | .notify.other.routers.that.it's. |
| 14c700 | 61 76 61 69 6c 61 62 6c 65 2e 20 49 66 20 74 68 65 20 6d 61 73 74 65 72 20 66 61 69 6c 73 20 61 | available..If.the.master.fails.a |
| 14c720 | 6e 64 20 73 74 6f 70 73 20 73 65 6e 64 69 6e 67 20 6b 65 65 70 61 6c 69 76 65 20 70 61 63 6b 65 | nd.stops.sending.keepalive.packe |
| 14c740 | 74 73 2c 20 74 68 65 20 72 6f 75 74 65 72 20 77 69 74 68 20 74 68 65 20 6e 65 78 74 20 68 69 67 | ts,.the.router.with.the.next.hig |
| 14c760 | 68 65 73 74 20 70 72 69 6f 72 69 74 79 20 62 65 63 6f 6d 65 73 20 74 68 65 20 6e 65 77 20 6d 61 | hest.priority.becomes.the.new.ma |
| 14c780 | 73 74 65 72 20 61 6e 64 20 74 61 6b 65 73 20 6f 76 65 72 20 74 68 65 20 76 69 72 74 75 61 6c 20 | ster.and.takes.over.the.virtual. |
| 14c7a0 | 61 64 64 72 65 73 73 2e 00 56 52 52 50 20 63 61 6e 20 75 73 65 20 74 77 6f 20 6d 6f 64 65 73 3a | address..VRRP.can.use.two.modes: |
| 14c7c0 | 20 70 72 65 65 6d 70 74 69 76 65 20 61 6e 64 20 6e 6f 6e 2d 70 72 65 65 6d 70 74 69 76 65 2e 20 | .preemptive.and.non-preemptive.. |
| 14c7e0 | 49 6e 20 74 68 65 20 70 72 65 65 6d 70 74 69 76 65 20 6d 6f 64 65 2c 20 69 66 20 61 20 72 6f 75 | In.the.preemptive.mode,.if.a.rou |
| 14c800 | 74 65 72 20 77 69 74 68 20 61 20 68 69 67 68 65 72 20 70 72 69 6f 72 69 74 79 20 66 61 69 6c 73 | ter.with.a.higher.priority.fails |
| 14c820 | 20 61 6e 64 20 74 68 65 6e 20 63 6f 6d 65 73 20 62 61 63 6b 2c 20 72 6f 75 74 65 72 73 20 77 69 | .and.then.comes.back,.routers.wi |
| 14c840 | 74 68 20 6c 6f 77 65 72 20 70 72 69 6f 72 69 74 79 20 77 69 6c 6c 20 67 69 76 65 20 75 70 20 74 | th.lower.priority.will.give.up.t |
| 14c860 | 68 65 69 72 20 6d 61 73 74 65 72 20 73 74 61 74 75 73 2e 20 49 6e 20 6e 6f 6e 2d 70 72 65 65 6d | heir.master.status..In.non-preem |
| 14c880 | 70 74 69 76 65 20 6d 6f 64 65 2c 20 74 68 65 20 6e 65 77 6c 79 20 65 6c 65 63 74 65 64 20 6d 61 | ptive.mode,.the.newly.elected.ma |
| 14c8a0 | 73 74 65 72 20 77 69 6c 6c 20 6b 65 65 70 20 74 68 65 20 6d 61 73 74 65 72 20 73 74 61 74 75 73 | ster.will.keep.the.master.status |
| 14c8c0 | 20 61 6e 64 20 74 68 65 20 76 69 72 74 75 61 6c 20 61 64 64 72 65 73 73 20 69 6e 64 65 66 69 6e | .and.the.virtual.address.indefin |
| 14c8e0 | 69 74 65 6c 79 2e 00 56 52 52 50 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 63 61 6e 20 62 65 | itely..VRRP.functionality.can.be |
| 14c900 | 20 65 78 74 65 6e 64 65 64 20 77 69 74 68 20 73 63 72 69 70 74 73 2e 20 56 79 4f 53 20 73 75 70 | .extended.with.scripts..VyOS.sup |
| 14c920 | 70 6f 72 74 73 20 74 77 6f 20 6b 69 6e 64 73 20 6f 66 20 73 63 72 69 70 74 73 3a 20 68 65 61 6c | ports.two.kinds.of.scripts:.heal |
| 14c940 | 74 68 20 63 68 65 63 6b 20 73 63 72 69 70 74 73 20 61 6e 64 20 74 72 61 6e 73 69 74 69 6f 6e 20 | th.check.scripts.and.transition. |
| 14c960 | 73 63 72 69 70 74 73 2e 20 48 65 61 6c 74 68 20 63 68 65 63 6b 20 73 63 72 69 70 74 73 20 65 78 | scripts..Health.check.scripts.ex |
| 14c980 | 65 63 75 74 65 20 63 75 73 74 6f 6d 20 63 68 65 63 6b 73 20 69 6e 20 61 64 64 69 74 69 6f 6e 20 | ecute.custom.checks.in.addition. |
| 14c9a0 | 74 6f 20 74 68 65 20 6d 61 73 74 65 72 20 72 6f 75 74 65 72 20 72 65 61 63 68 61 62 69 6c 69 74 | to.the.master.router.reachabilit |
| 14c9c0 | 79 2e 20 54 72 61 6e 73 69 74 69 6f 6e 20 73 63 72 69 70 74 73 20 61 72 65 20 65 78 65 63 75 74 | y..Transition.scripts.are.execut |
| 14c9e0 | 65 64 20 77 68 65 6e 20 56 52 52 50 20 73 74 61 74 65 20 63 68 61 6e 67 65 73 20 66 72 6f 6d 20 | ed.when.VRRP.state.changes.from. |
| 14ca00 | 6d 61 73 74 65 72 20 74 6f 20 62 61 63 6b 75 70 20 6f 72 20 66 61 75 6c 74 20 61 6e 64 20 76 69 | master.to.backup.or.fault.and.vi |
| 14ca20 | 63 65 20 76 65 72 73 61 20 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 65 6e 61 62 | ce.versa.and.can.be.used.to.enab |
| 14ca40 | 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 63 65 72 74 61 69 6e 20 73 65 72 76 69 63 65 73 2c 20 | le.or.disable.certain.services,. |
| 14ca60 | 66 6f 72 20 65 78 61 6d 70 6c 65 2e 00 56 52 52 50 20 67 72 6f 75 70 73 20 61 72 65 20 63 72 65 | for.example..VRRP.groups.are.cre |
| 14ca80 | 61 74 65 64 20 77 69 74 68 20 74 68 65 20 60 60 73 65 74 20 68 69 67 68 2d 61 76 61 69 6c 61 62 | ated.with.the.``set.high-availab |
| 14caa0 | 69 6c 69 74 79 20 76 72 72 70 20 67 72 6f 75 70 20 24 47 52 4f 55 50 5f 4e 41 4d 45 60 60 20 63 | ility.vrrp.group.$GROUP_NAME``.c |
| 14cac0 | 6f 6d 6d 61 6e 64 73 2e 20 54 68 65 20 72 65 71 75 69 72 65 64 20 70 61 72 61 6d 65 74 65 72 73 | ommands..The.required.parameters |
| 14cae0 | 20 61 72 65 20 69 6e 74 65 72 66 61 63 65 2c 20 76 72 69 64 2c 20 61 6e 64 20 61 64 64 72 65 73 | .are.interface,.vrid,.and.addres |
| 14cb00 | 73 2e 00 56 52 52 50 20 6b 65 65 70 61 6c 69 76 65 20 70 61 63 6b 65 74 73 20 75 73 65 20 6d 75 | s..VRRP.keepalive.packets.use.mu |
| 14cb20 | 6c 74 69 63 61 73 74 2c 20 61 6e 64 20 56 52 52 50 20 73 65 74 75 70 73 20 61 72 65 20 6c 69 6d | lticast,.and.VRRP.setups.are.lim |
| 14cb40 | 69 74 65 64 20 74 6f 20 61 20 73 69 6e 67 6c 65 20 64 61 74 61 6c 69 6e 6b 20 6c 61 79 65 72 20 | ited.to.a.single.datalink.layer. |
| 14cb60 | 73 65 67 6d 65 6e 74 2e 20 59 6f 75 20 63 61 6e 20 73 65 74 75 70 20 6d 75 6c 74 69 70 6c 65 20 | segment..You.can.setup.multiple. |
| 14cb80 | 56 52 52 50 20 67 72 6f 75 70 73 20 28 61 6c 73 6f 20 63 61 6c 6c 65 64 20 76 69 72 74 75 61 6c | VRRP.groups.(also.called.virtual |
| 14cba0 | 20 72 6f 75 74 65 72 73 29 2e 20 56 69 72 74 75 61 6c 20 72 6f 75 74 65 72 73 20 61 72 65 20 69 | .routers)..Virtual.routers.are.i |
| 14cbc0 | 64 65 6e 74 69 66 69 65 64 20 62 79 20 61 20 56 52 49 44 20 28 56 69 72 74 75 61 6c 20 52 6f 75 | dentified.by.a.VRID.(Virtual.Rou |
| 14cbe0 | 74 65 72 20 49 44 65 6e 74 69 66 69 65 72 29 2e 20 49 66 20 79 6f 75 20 73 65 74 75 70 20 6d 75 | ter.IDentifier)..If.you.setup.mu |
| 14cc00 | 6c 74 69 70 6c 65 20 67 72 6f 75 70 73 20 6f 6e 20 74 68 65 20 73 61 6d 65 20 69 6e 74 65 72 66 | ltiple.groups.on.the.same.interf |
| 14cc20 | 61 63 65 2c 20 74 68 65 69 72 20 56 52 49 44 73 20 6d 75 73 74 20 62 65 20 75 6e 69 71 75 65 20 | ace,.their.VRIDs.must.be.unique. |
| 14cc40 | 69 66 20 74 68 65 79 20 75 73 65 20 74 68 65 20 73 61 6d 65 20 61 64 64 72 65 73 73 20 66 61 6d | if.they.use.the.same.address.fam |
| 14cc60 | 69 6c 79 2c 20 62 75 74 20 69 74 27 73 20 70 6f 73 73 69 62 6c 65 20 28 65 76 65 6e 20 69 66 20 | ily,.but.it's.possible.(even.if. |
| 14cc80 | 6e 6f 74 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 66 6f 72 20 72 65 61 64 61 62 69 6c 69 74 79 20 | not.recommended.for.readability. |
| 14cca0 | 72 65 61 73 6f 6e 73 29 20 74 6f 20 75 73 65 20 64 75 70 6c 69 63 61 74 65 20 56 52 49 44 73 20 | reasons).to.use.duplicate.VRIDs. |
| 14ccc0 | 6f 6e 20 64 69 66 66 65 72 65 6e 74 20 69 6e 74 65 72 66 61 63 65 73 2e 00 56 52 52 50 20 70 72 | on.different.interfaces..VRRP.pr |
| 14cce0 | 69 6f 72 69 74 79 20 63 61 6e 20 62 65 20 73 65 74 20 77 69 74 68 20 60 60 70 72 69 6f 72 69 74 | iority.can.be.set.with.``priorit |
| 14cd00 | 79 60 60 20 6f 70 74 69 6f 6e 3a 00 56 54 49 20 2d 20 56 69 72 74 75 61 6c 20 54 75 6e 6e 65 6c | y``.option:.VTI.-.Virtual.Tunnel |
| 14cd20 | 20 49 6e 74 65 72 66 61 63 65 00 56 58 4c 41 4e 00 56 58 4c 41 4e 20 69 73 20 61 6e 20 65 76 6f | .Interface.VXLAN.VXLAN.is.an.evo |
| 14cd40 | 6c 75 74 69 6f 6e 20 6f 66 20 65 66 66 6f 72 74 73 20 74 6f 20 73 74 61 6e 64 61 72 64 69 7a 65 | lution.of.efforts.to.standardize |
| 14cd60 | 20 61 6e 20 6f 76 65 72 6c 61 79 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 70 72 6f 74 6f 63 | .an.overlay.encapsulation.protoc |
| 14cd80 | 6f 6c 2e 20 49 74 20 69 6e 63 72 65 61 73 65 73 20 74 68 65 20 73 63 61 6c 61 62 69 6c 69 74 79 | ol..It.increases.the.scalability |
| 14cda0 | 20 75 70 20 74 6f 20 31 36 20 6d 69 6c 6c 69 6f 6e 20 6c 6f 67 69 63 61 6c 20 6e 65 74 77 6f 72 | .up.to.16.million.logical.networ |
| 14cdc0 | 6b 73 20 61 6e 64 20 61 6c 6c 6f 77 73 20 66 6f 72 20 6c 61 79 65 72 20 32 20 61 64 6a 61 63 65 | ks.and.allows.for.layer.2.adjace |
| 14cde0 | 6e 63 79 20 61 63 72 6f 73 73 20 49 50 20 6e 65 74 77 6f 72 6b 73 2e 20 4d 75 6c 74 69 63 61 73 | ncy.across.IP.networks..Multicas |
| 14ce00 | 74 20 6f 72 20 75 6e 69 63 61 73 74 20 77 69 74 68 20 68 65 61 64 2d 65 6e 64 20 72 65 70 6c 69 | t.or.unicast.with.head-end.repli |
| 14ce20 | 63 61 74 69 6f 6e 20 28 48 45 52 29 20 69 73 20 75 73 65 64 20 74 6f 20 66 6c 6f 6f 64 20 62 72 | cation.(HER).is.used.to.flood.br |
| 14ce40 | 6f 61 64 63 61 73 74 2c 20 75 6e 6b 6e 6f 77 6e 20 75 6e 69 63 61 73 74 2c 20 61 6e 64 20 6d 75 | oadcast,.unknown.unicast,.and.mu |
| 14ce60 | 6c 74 69 63 61 73 74 20 28 42 55 4d 29 20 74 72 61 66 66 69 63 2e 00 56 58 4c 41 4e 20 73 70 65 | lticast.(BUM).traffic..VXLAN.spe |
| 14ce80 | 63 69 66 69 63 20 6f 70 74 69 6f 6e 73 00 56 58 4c 41 4e 20 77 61 73 20 6f 66 66 69 63 69 61 6c | cific.options.VXLAN.was.official |
| 14cea0 | 6c 79 20 64 6f 63 75 6d 65 6e 74 65 64 20 62 79 20 74 68 65 20 49 45 54 46 20 69 6e 20 3a 72 66 | ly.documented.by.the.IETF.in.:rf |
| 14cec0 | 63 3a 60 37 33 34 38 60 2e 00 56 61 6c 69 64 20 76 61 6c 75 65 73 20 61 72 65 20 30 2e 2e 32 35 | c:`7348`..Valid.values.are.0..25 |
| 14cee0 | 35 2e 00 56 61 6c 69 64 20 76 61 6c 75 65 73 20 61 72 65 20 31 2e 2e 36 33 00 56 61 6c 75 65 00 | 5..Valid.values.are.1..63.Value. |
| 14cf00 | 56 61 6c 75 65 20 74 6f 20 73 65 6e 64 20 74 6f 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 69 | Value.to.send.to.RADIUS.server.i |
| 14cf20 | 6e 20 4e 41 53 2d 49 50 2d 41 64 64 72 65 73 73 20 61 74 74 72 69 62 75 74 65 20 61 6e 64 20 74 | n.NAS-IP-Address.attribute.and.t |
| 14cf40 | 6f 20 62 65 20 6d 61 74 63 68 65 64 20 69 6e 20 44 4d 2f 43 6f 41 20 72 65 71 75 65 73 74 73 2e | o.be.matched.in.DM/CoA.requests. |
| 14cf60 | 20 41 6c 73 6f 20 44 4d 2f 43 6f 41 20 73 65 72 76 65 72 20 77 69 6c 6c 20 62 69 6e 64 20 74 6f | .Also.DM/CoA.server.will.bind.to |
| 14cf80 | 20 74 68 61 74 20 61 64 64 72 65 73 73 2e 00 56 61 6c 75 65 20 74 6f 20 73 65 6e 64 20 74 6f 20 | .that.address..Value.to.send.to. |
| 14cfa0 | 52 41 44 49 55 53 20 73 65 72 76 65 72 20 69 6e 20 4e 41 53 2d 49 64 65 6e 74 69 66 69 65 72 20 | RADIUS.server.in.NAS-Identifier. |
| 14cfc0 | 61 74 74 72 69 62 75 74 65 20 61 6e 64 20 74 6f 20 62 65 20 6d 61 74 63 68 65 64 20 69 6e 20 44 | attribute.and.to.be.matched.in.D |
| 14cfe0 | 4d 2f 43 6f 41 20 72 65 71 75 65 73 74 73 2e 00 56 65 72 69 66 69 63 61 74 69 6f 6e 00 56 65 72 | M/CoA.requests..Verification.Ver |
| 14d000 | 69 66 69 63 61 74 69 6f 6e 3a 00 56 65 72 69 66 79 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | ification:.Verify.configuration. |
| 14d020 | 63 68 61 6e 67 65 73 20 68 61 76 65 20 62 65 65 6e 20 72 65 70 6c 69 63 61 74 65 64 20 74 6f 20 | changes.have.been.replicated.to. |
| 14d040 | 52 6f 75 74 65 72 20 42 00 56 65 72 69 66 79 20 74 68 61 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 | Router.B.Verify.that.connections |
| 14d060 | 20 61 72 65 20 68 69 74 74 69 6e 67 20 74 68 65 20 72 75 6c 65 20 6f 6e 20 62 6f 74 68 20 73 69 | .are.hitting.the.rule.on.both.si |
| 14d080 | 64 65 73 3a 00 56 65 72 73 69 6f 6e 00 56 69 72 74 75 61 6c 20 45 74 68 65 72 6e 65 74 00 56 69 | des:.Version.Virtual.Ethernet.Vi |
| 14d0a0 | 72 74 75 61 6c 20 53 65 72 76 65 72 20 61 6c 6c 6f 77 73 20 74 6f 20 4c 6f 61 64 2d 62 61 6c 61 | rtual.Server.allows.to.Load-bala |
| 14d0c0 | 6e 63 65 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 76 69 72 74 75 61 6c 2d | nce.traffic.destination.virtual- |
| 14d0e0 | 61 64 64 72 65 73 73 3a 70 6f 72 74 20 62 65 74 77 65 65 6e 20 73 65 76 65 72 61 6c 20 72 65 61 | address:port.between.several.rea |
| 14d100 | 6c 20 73 65 72 76 65 72 73 2e 00 56 69 72 74 75 61 6c 2d 73 65 72 76 65 72 00 56 69 72 74 75 61 | l.servers..Virtual-server.Virtua |
| 14d120 | 6c 2d 73 65 72 76 65 72 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 77 69 74 68 20 | l-server.can.be.configured.with. |
| 14d140 | 56 52 52 50 20 76 69 72 74 75 61 6c 20 61 64 64 72 65 73 73 20 6f 72 20 77 69 74 68 6f 75 74 20 | VRRP.virtual.address.or.without. |
| 14d160 | 56 52 52 50 2e 00 56 6f 6c 75 6d 65 20 69 73 20 65 69 74 68 65 72 20 6d 6f 75 6e 74 65 64 20 61 | VRRP..Volume.is.either.mounted.a |
| 14d180 | 73 20 72 77 20 28 72 65 61 64 2d 77 72 69 74 65 20 2d 20 64 65 66 61 75 6c 74 29 20 6f 72 20 72 | s.rw.(read-write.-.default).or.r |
| 14d1a0 | 6f 20 28 72 65 61 64 2d 6f 6e 6c 79 29 00 56 79 4f 53 20 31 2e 31 20 73 75 70 70 6f 72 74 65 64 | o.(read-only).VyOS.1.1.supported |
| 14d1c0 | 20 6c 6f 67 69 6e 20 61 73 20 75 73 65 72 20 60 60 72 6f 6f 74 60 60 2e 20 54 68 69 73 20 68 61 | .login.as.user.``root``..This.ha |
| 14d1e0 | 73 20 62 65 65 6e 20 72 65 6d 6f 76 65 64 20 64 75 65 20 74 6f 20 74 69 67 68 74 65 72 20 73 65 | s.been.removed.due.to.tighter.se |
| 14d200 | 63 75 72 69 74 79 20 69 6e 20 56 79 4f 53 20 31 2e 32 2e 00 56 79 4f 53 20 31 2e 33 20 28 65 71 | curity.in.VyOS.1.2..VyOS.1.3.(eq |
| 14d220 | 75 75 6c 65 75 73 29 20 73 75 70 70 6f 72 74 73 20 44 48 43 50 76 36 2d 50 44 20 28 3a 72 66 63 | uuleus).supports.DHCPv6-PD.(:rfc |
| 14d240 | 3a 60 33 36 33 33 60 29 2e 20 44 48 43 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 | :`3633`)..DHCPv6.Prefix.Delegati |
| 14d260 | 6f 6e 20 69 73 20 73 75 70 70 6f 72 74 65 64 20 62 79 20 6d 6f 73 74 20 49 53 50 73 20 77 68 6f | on.is.supported.by.most.ISPs.who |
| 14d280 | 20 70 72 6f 76 69 64 65 20 6e 61 74 69 76 65 20 49 50 76 36 20 66 6f 72 20 63 6f 6e 73 75 6d 65 | .provide.native.IPv6.for.consume |
| 14d2a0 | 72 73 20 6f 6e 20 66 69 78 65 64 20 6e 65 74 77 6f 72 6b 73 2e 00 56 79 4f 53 20 31 2e 34 20 28 | rs.on.fixed.networks..VyOS.1.4.( |
| 14d2c0 | 73 61 67 69 74 74 61 29 20 69 6e 74 72 6f 64 75 63 65 64 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 | sagitta).introduced.dynamic.rout |
| 14d2e0 | 69 6e 67 20 73 75 70 70 6f 72 74 20 66 6f 72 20 56 52 46 73 2e 00 56 79 4f 53 20 31 2e 34 20 63 | ing.support.for.VRFs..VyOS.1.4.c |
| 14d300 | 68 61 6e 67 65 64 20 74 68 65 20 77 61 79 20 69 6e 20 68 6f 77 20 65 6e 63 72 79 70 74 69 6f 6e | hanged.the.way.in.how.encryption |
| 14d320 | 20 6b 65 79 73 20 6f 72 20 63 65 72 74 69 66 69 63 61 74 65 73 20 61 72 65 20 73 74 6f 72 65 64 | .keys.or.certificates.are.stored |
| 14d340 | 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 20 49 6e 20 74 68 65 20 70 72 65 20 56 79 4f 53 20 | .on.the.system..In.the.pre.VyOS. |
| 14d360 | 31 2e 34 20 65 72 61 2c 20 63 65 72 74 69 66 69 63 61 74 65 73 20 67 6f 74 20 73 74 6f 72 65 64 | 1.4.era,.certificates.got.stored |
| 14d380 | 20 75 6e 64 65 72 20 2f 63 6f 6e 66 69 67 20 61 6e 64 20 65 76 65 72 79 20 73 65 72 76 69 63 65 | .under./config.and.every.service |
| 14d3a0 | 20 72 65 66 65 72 65 6e 63 65 64 20 61 20 66 69 6c 65 2e 20 54 68 61 74 20 6d 61 64 65 20 63 6f | .referenced.a.file..That.made.co |
| 14d3c0 | 70 79 69 6e 67 20 61 20 72 75 6e 6e 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 72 | pying.a.running.configuration.fr |
| 14d3e0 | 6f 6d 20 73 79 73 74 65 6d 20 41 20 74 6f 20 73 79 73 74 65 6d 20 42 20 61 20 62 69 74 20 68 61 | om.system.A.to.system.B.a.bit.ha |
| 14d400 | 72 64 65 72 2c 20 61 73 20 79 6f 75 20 68 61 64 20 74 6f 20 63 6f 70 79 20 74 68 65 20 66 69 6c | rder,.as.you.had.to.copy.the.fil |
| 14d420 | 65 73 20 61 6e 64 20 74 68 65 69 72 20 70 65 72 6d 69 73 73 69 6f 6e 73 20 62 79 20 68 61 6e 64 | es.and.their.permissions.by.hand |
| 14d440 | 2e 00 56 79 4f 53 20 31 2e 34 20 63 68 61 6e 67 65 64 20 74 68 65 20 77 61 79 20 69 6e 20 68 6f | ..VyOS.1.4.changed.the.way.in.ho |
| 14d460 | 77 20 65 6e 63 72 79 74 69 6f 6e 20 6b 65 79 73 20 6f 72 20 63 65 72 74 69 66 69 63 61 74 65 73 | w.encrytion.keys.or.certificates |
| 14d480 | 20 61 72 65 20 73 74 6f 72 65 64 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 20 49 6e 20 74 68 | .are.stored.on.the.system..In.th |
| 14d4a0 | 65 20 70 72 65 20 56 79 4f 53 20 31 2e 34 20 65 72 61 2c 20 63 65 72 74 69 66 69 63 61 74 65 73 | e.pre.VyOS.1.4.era,.certificates |
| 14d4c0 | 20 67 6f 74 20 73 74 6f 72 65 64 20 75 6e 64 65 72 20 2f 63 6f 6e 66 69 67 20 61 6e 64 20 65 76 | .got.stored.under./config.and.ev |
| 14d4e0 | 65 72 79 20 73 65 72 76 69 63 65 20 72 65 66 65 72 65 6e 63 65 64 20 61 20 66 69 6c 65 2e 20 54 | ery.service.referenced.a.file..T |
| 14d500 | 68 61 74 20 6d 61 64 65 20 63 6f 70 79 69 6e 67 20 61 20 72 75 6e 6e 69 6e 67 20 63 6f 6e 66 69 | hat.made.copying.a.running.confi |
| 14d520 | 67 75 72 61 74 69 6f 6e 20 66 72 6f 6d 20 73 79 73 74 65 6d 20 41 20 74 6f 20 73 79 73 74 65 6d | guration.from.system.A.to.system |
| 14d540 | 20 42 20 61 20 62 69 74 20 68 61 72 64 65 72 2c 20 61 73 20 79 6f 75 20 68 61 64 20 74 6f 20 63 | .B.a.bit.harder,.as.you.had.to.c |
| 14d560 | 6f 70 79 20 74 68 65 20 66 69 6c 65 73 20 61 6e 64 20 74 68 65 69 72 20 70 65 72 6d 69 73 73 69 | opy.the.files.and.their.permissi |
| 14d580 | 6f 6e 73 20 62 79 20 68 61 6e 64 2e 00 56 79 4f 53 20 31 2e 34 20 75 73 65 73 20 63 68 72 6f 6e | ons.by.hand..VyOS.1.4.uses.chron |
| 14d5a0 | 79 20 69 6e 73 74 65 61 64 20 6f 66 20 6e 74 70 64 20 28 73 65 65 20 3a 76 79 74 61 73 6b 3a 60 | y.instead.of.ntpd.(see.:vytask:` |
| 14d5c0 | 54 33 30 30 38 60 29 20 77 68 69 63 68 20 77 69 6c 6c 20 6e 6f 20 6c 6f 6e 67 65 72 20 61 63 63 | T3008`).which.will.no.longer.acc |
| 14d5e0 | 65 70 74 20 61 6e 6f 6e 79 6d 6f 75 73 20 4e 54 50 20 72 65 71 75 65 73 74 73 20 61 73 20 69 6e | ept.anonymous.NTP.requests.as.in |
| 14d600 | 20 56 79 4f 53 20 31 2e 33 2e 20 41 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 77 69 | .VyOS.1.3..All.configurations.wi |
| 14d620 | 6c 6c 20 62 65 20 6d 69 67 72 61 74 65 64 20 74 6f 20 6b 65 65 70 20 74 68 65 20 61 6e 6f 6e 79 | ll.be.migrated.to.keep.the.anony |
| 14d640 | 6d 6f 75 73 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 2e 20 46 6f 72 20 6e 65 77 20 73 65 74 75 | mous.functionality..For.new.setu |
| 14d660 | 70 73 20 69 66 20 79 6f 75 20 68 61 76 65 20 63 6c 69 65 6e 74 73 20 75 73 69 6e 67 20 79 6f 75 | ps.if.you.have.clients.using.you |
| 14d680 | 72 20 56 79 4f 53 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 20 61 73 20 4e 54 50 20 73 65 72 76 65 | r.VyOS.installation.as.NTP.serve |
| 14d6a0 | 72 2c 20 79 6f 75 20 6d 75 73 74 20 73 70 65 63 69 66 79 20 74 68 65 20 60 61 6c 6c 6f 77 2d 63 | r,.you.must.specify.the.`allow-c |
| 14d6c0 | 6c 69 65 6e 74 60 20 64 69 72 65 63 74 69 76 65 2e 00 56 79 4f 53 20 41 72 69 73 74 61 20 45 4f | lient`.directive..VyOS.Arista.EO |
| 14d6e0 | 53 20 73 65 74 75 70 00 56 79 4f 53 20 45 53 50 20 67 72 6f 75 70 20 68 61 73 20 74 68 65 20 6e | S.setup.VyOS.ESP.group.has.the.n |
| 14d700 | 65 78 74 20 6f 70 74 69 6f 6e 73 3a 00 56 79 4f 53 20 46 69 65 6c 64 00 56 79 4f 53 20 49 4b 45 | ext.options:.VyOS.Field.VyOS.IKE |
| 14d720 | 20 67 72 6f 75 70 20 68 61 73 20 74 68 65 20 6e 65 78 74 20 6f 70 74 69 6f 6e 73 3a 00 56 79 4f | .group.has.the.next.options:.VyO |
| 14d740 | 53 20 4d 49 42 73 00 56 79 4f 53 20 4e 41 54 36 36 20 44 48 43 50 76 36 20 75 73 69 6e 67 20 61 | S.MIBs.VyOS.NAT66.DHCPv6.using.a |
| 14d760 | 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 00 56 79 4f 53 20 4e 41 54 36 36 20 53 69 6d 70 | .dummy.interface.VyOS.NAT66.Simp |
| 14d780 | 6c 65 20 43 6f 6e 66 69 67 75 72 65 00 56 79 4f 53 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 | le.Configure.VyOS.Network.Emulat |
| 14d7a0 | 6f 72 20 70 6f 6c 69 63 79 20 65 6d 75 6c 61 74 65 73 20 74 68 65 20 63 6f 6e 64 69 74 69 6f 6e | or.policy.emulates.the.condition |
| 14d7c0 | 73 20 79 6f 75 20 63 61 6e 20 73 75 66 66 65 72 20 69 6e 20 61 20 72 65 61 6c 20 6e 65 74 77 6f | s.you.can.suffer.in.a.real.netwo |
| 14d7e0 | 72 6b 2e 20 59 6f 75 20 77 69 6c 6c 20 62 65 20 61 62 6c 65 20 74 6f 20 63 6f 6e 66 69 67 75 72 | rk..You.will.be.able.to.configur |
| 14d800 | 65 20 74 68 69 6e 67 73 20 6c 69 6b 65 20 72 61 74 65 2c 20 62 75 72 73 74 2c 20 64 65 6c 61 79 | e.things.like.rate,.burst,.delay |
| 14d820 | 2c 20 70 61 63 6b 65 74 20 6c 6f 73 73 2c 20 70 61 63 6b 65 74 20 63 6f 72 72 75 70 74 69 6f 6e | ,.packet.loss,.packet.corruption |
| 14d840 | 20 6f 72 20 70 61 63 6b 65 74 20 72 65 6f 72 64 65 72 69 6e 67 2e 00 56 79 4f 53 20 4f 70 74 69 | .or.packet.reordering..VyOS.Opti |
| 14d860 | 6f 6e 00 56 79 4f 53 20 50 6f 6c 69 63 79 2d 42 61 73 65 64 20 52 6f 75 74 69 6e 67 20 28 50 42 | on.VyOS.Policy-Based.Routing.(PB |
| 14d880 | 52 29 20 77 6f 72 6b 73 20 62 79 20 6d 61 74 63 68 69 6e 67 20 73 6f 75 72 63 65 20 49 50 20 61 | R).works.by.matching.source.IP.a |
| 14d8a0 | 64 64 72 65 73 73 20 72 61 6e 67 65 73 20 61 6e 64 20 66 6f 72 77 61 72 64 69 6e 67 20 74 68 65 | ddress.ranges.and.forwarding.the |
| 14d8c0 | 20 74 72 61 66 66 69 63 20 75 73 69 6e 67 20 64 69 66 66 65 72 65 6e 74 20 72 6f 75 74 69 6e 67 | .traffic.using.different.routing |
| 14d8e0 | 20 74 61 62 6c 65 73 2e 00 56 79 4f 53 20 53 4e 4d 50 20 73 75 70 70 6f 72 74 73 20 62 6f 74 68 | .tables..VyOS.SNMP.supports.both |
| 14d900 | 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 2e 00 56 79 4f 53 20 61 6c 73 6f 20 63 6f 6d 65 73 20 | .IPv4.and.IPv6..VyOS.also.comes. |
| 14d920 | 77 69 74 68 20 61 20 62 75 69 6c 64 20 69 6e 20 53 53 54 50 20 73 65 72 76 65 72 2c 20 73 65 65 | with.a.build.in.SSTP.server,.see |
| 14d940 | 20 3a 72 65 66 3a 60 73 73 74 70 60 2e 00 56 79 4f 53 20 61 6c 73 6f 20 70 72 6f 76 69 64 65 73 | .:ref:`sstp`..VyOS.also.provides |
| 14d960 | 20 44 48 43 50 76 36 20 73 65 72 76 65 72 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 77 68 69 | .DHCPv6.server.functionality.whi |
| 14d980 | 63 68 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 2e | ch.is.described.in.this.section. |
| 14d9a0 | 00 56 79 4f 53 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 73 20 28 63 75 72 72 65 6e 74 6c 79 29 20 | .VyOS.also.supports.(currently). |
| 14d9c0 | 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 6d 6f 64 65 73 20 6f 66 20 61 75 74 68 65 6e 74 69 63 | two.different.modes.of.authentic |
| 14d9e0 | 61 74 69 6f 6e 2c 20 6c 6f 63 61 6c 20 61 6e 64 20 52 41 44 49 55 53 2e 20 54 6f 20 63 72 65 61 | ation,.local.and.RADIUS..To.crea |
| 14da00 | 74 65 20 61 20 6e 65 77 20 6c 6f 63 61 6c 20 75 73 65 72 20 6e 61 6d 65 64 20 60 60 76 79 6f 73 | te.a.new.local.user.named.``vyos |
| 14da20 | 60 60 20 77 69 74 68 20 70 61 73 73 77 6f 72 64 20 60 60 76 79 6f 73 60 60 20 75 73 65 20 74 68 | ``.with.password.``vyos``.use.th |
| 14da40 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 2e 00 56 79 4f 53 20 61 6c 73 6f 20 | e.following.commands..VyOS.also. |
| 14da60 | 73 75 70 70 6f 72 74 73 20 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 6d 6f 64 65 73 20 6f 66 20 | supports.two.different.modes.of. |
| 14da80 | 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2c 20 6c 6f 63 61 6c 20 61 6e 64 20 52 41 44 49 55 53 | authentication,.local.and.RADIUS |
| 14daa0 | 2e 20 54 6f 20 63 72 65 61 74 65 20 61 20 6e 65 77 20 6c 6f 63 61 6c 20 75 73 65 72 20 6e 61 6d | ..To.create.a.new.local.user.nam |
| 14dac0 | 65 64 20 22 76 79 6f 73 22 20 77 69 74 68 20 61 20 70 61 73 73 77 6f 72 64 20 6f 66 20 22 76 79 | ed."vyos".with.a.password.of."vy |
| 14dae0 | 6f 73 22 20 75 73 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 2e 00 | os".use.the.following.commands.. |
| 14db00 | 56 79 4f 53 20 63 61 6e 20 61 6c 73 6f 20 72 75 6e 20 69 6e 20 44 4d 56 50 4e 20 73 70 6f 6b 65 | VyOS.can.also.run.in.DMVPN.spoke |
| 14db20 | 20 6d 6f 64 65 2e 00 56 79 4f 53 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f | .mode..VyOS.can.be.configured.to |
| 14db40 | 20 74 72 61 63 6b 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 75 73 69 6e 67 20 74 68 65 20 63 6f 6e | .track.connections.using.the.con |
| 14db60 | 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 75 62 73 79 73 74 65 6d 2e 20 43 6f 6e 6e | nection.tracking.subsystem..Conn |
| 14db80 | 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 62 65 63 6f 6d 65 73 20 6f 70 65 72 61 74 69 6f | ection.tracking.becomes.operatio |
| 14dba0 | 6e 61 6c 20 6f 6e 63 65 20 65 69 74 68 65 72 20 73 74 61 74 65 66 75 6c 20 66 69 72 65 77 61 6c | nal.once.either.stateful.firewal |
| 14dbc0 | 6c 20 6f 72 20 4e 41 54 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 56 79 4f 53 20 63 61 6e | l.or.NAT.is.configured..VyOS.can |
| 14dbe0 | 20 6e 6f 74 20 6f 6e 6c 79 20 61 63 74 20 61 73 20 61 6e 20 4f 70 65 6e 56 50 4e 20 73 69 74 65 | .not.only.act.as.an.OpenVPN.site |
| 14dc00 | 2d 74 6f 2d 73 69 74 65 20 6f 72 20 73 65 72 76 65 72 20 66 6f 72 20 6d 75 6c 74 69 70 6c 65 20 | -to-site.or.server.for.multiple. |
| 14dc20 | 63 6c 69 65 6e 74 73 20 62 75 74 20 79 6f 75 20 63 61 6e 20 61 6c 73 6f 20 63 6f 6e 66 69 67 75 | clients.but.you.can.also.configu |
| 14dc40 | 72 65 20 61 6e 79 20 56 79 4f 53 20 4f 70 65 6e 56 50 4e 20 69 6e 74 65 72 66 61 63 65 20 61 73 | re.any.VyOS.OpenVPN.interface.as |
| 14dc60 | 20 61 6e 20 4f 70 65 6e 56 50 4e 20 63 6c 69 65 6e 74 20 74 68 61 74 20 63 6f 6e 6e 65 63 74 73 | .an.OpenVPN.client.that.connects |
| 14dc80 | 20 74 6f 20 61 20 56 79 4f 53 20 4f 70 65 6e 56 50 4e 20 73 65 72 76 65 72 20 6f 72 20 61 6e 79 | .to.a.VyOS.OpenVPN.server.or.any |
| 14dca0 | 20 6f 74 68 65 72 20 4f 70 65 6e 56 50 4e 20 73 65 72 76 65 72 2e 00 56 79 4f 53 20 63 61 6e 20 | .other.OpenVPN.server..VyOS.can. |
| 14dcc0 | 6e 6f 74 20 6f 6e 6c 79 20 61 63 74 20 61 73 20 61 6e 20 4f 70 65 6e 56 50 4e 20 73 69 74 65 2d | not.only.act.as.an.OpenVPN.site- |
| 14dce0 | 74 6f 2d 73 69 74 65 20 6f 72 20 73 65 72 76 65 72 20 66 6f 72 20 6d 75 6c 74 69 70 6c 65 20 63 | to-site.or.server.for.multiple.c |
| 14dd00 | 6c 69 65 6e 74 73 2e 20 59 6f 75 20 63 61 6e 20 69 6e 64 65 65 64 20 61 6c 73 6f 20 63 6f 6e 66 | lients..You.can.indeed.also.conf |
| 14dd20 | 69 67 75 72 65 20 61 6e 79 20 56 79 4f 53 20 4f 70 65 6e 56 50 4e 20 69 6e 74 65 72 66 61 63 65 | igure.any.VyOS.OpenVPN.interface |
| 14dd40 | 20 61 73 20 61 6e 20 4f 70 65 6e 56 50 4e 20 63 6c 69 65 6e 74 20 63 6f 6e 6e 65 63 74 69 6e 67 | .as.an.OpenVPN.client.connecting |
| 14dd60 | 20 74 6f 20 61 20 56 79 4f 53 20 4f 70 65 6e 56 50 4e 20 73 65 72 76 65 72 20 6f 72 20 61 6e 79 | .to.a.VyOS.OpenVPN.server.or.any |
| 14dd80 | 20 6f 74 68 65 72 20 4f 70 65 6e 56 50 4e 20 73 65 72 76 65 72 2e 00 56 79 4f 53 20 64 65 66 61 | .other.OpenVPN.server..VyOS.defa |
| 14dda0 | 75 6c 74 20 77 69 6c 6c 20 62 65 20 60 61 75 74 6f 60 2e 00 56 79 4f 53 20 64 6f 65 73 20 6e 6f | ult.will.be.`auto`..VyOS.does.no |
| 14ddc0 | 74 20 68 61 76 65 20 61 20 73 70 65 63 69 61 6c 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 74 61 72 | t.have.a.special.command.to.star |
| 14dde0 | 74 20 74 68 65 20 42 61 62 65 6c 20 70 72 6f 63 65 73 73 2e 20 54 68 65 20 42 61 62 65 6c 20 70 | t.the.Babel.process..The.Babel.p |
| 14de00 | 72 6f 63 65 73 73 20 73 74 61 72 74 73 20 77 68 65 6e 20 74 68 65 20 66 69 72 73 74 20 42 61 62 | rocess.starts.when.the.first.Bab |
| 14de20 | 65 6c 20 65 6e 61 62 6c 65 64 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 63 6f 6e 66 69 67 75 72 | el.enabled.interface.is.configur |
| 14de40 | 65 64 2e 00 56 79 4f 53 20 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 20 61 20 73 70 65 63 69 61 6c | ed..VyOS.does.not.have.a.special |
| 14de60 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 74 61 72 74 20 74 68 65 20 4f 53 50 46 20 70 72 6f 63 65 | .command.to.start.the.OSPF.proce |
| 14de80 | 73 73 2e 20 54 68 65 20 4f 53 50 46 20 70 72 6f 63 65 73 73 20 73 74 61 72 74 73 20 77 68 65 6e | ss..The.OSPF.process.starts.when |
| 14dea0 | 20 74 68 65 20 66 69 72 73 74 20 6f 73 70 66 20 65 6e 61 62 6c 65 64 20 69 6e 74 65 72 66 61 63 | .the.first.ospf.enabled.interfac |
| 14dec0 | 65 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 56 79 4f 53 20 64 6f 65 73 20 6e 6f 74 20 68 | e.is.configured..VyOS.does.not.h |
| 14dee0 | 61 76 65 20 61 20 73 70 65 63 69 61 6c 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 74 61 72 74 20 74 | ave.a.special.command.to.start.t |
| 14df00 | 68 65 20 4f 53 50 46 76 33 20 70 72 6f 63 65 73 73 2e 20 54 68 65 20 4f 53 50 46 76 33 20 70 72 | he.OSPFv3.process..The.OSPFv3.pr |
| 14df20 | 6f 63 65 73 73 20 73 74 61 72 74 73 20 77 68 65 6e 20 74 68 65 20 66 69 72 73 74 20 6f 73 70 66 | ocess.starts.when.the.first.ospf |
| 14df40 | 20 65 6e 61 62 6c 65 64 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 | .enabled.interface.is.configured |
| 14df60 | 2e 00 56 79 4f 53 20 66 61 63 69 6c 69 74 61 74 65 73 20 49 50 20 4d 75 6c 74 69 63 61 73 74 20 | ..VyOS.facilitates.IP.Multicast. |
| 14df80 | 62 79 20 73 75 70 70 6f 72 74 69 6e 67 20 2a 2a 50 49 4d 20 53 70 61 72 73 65 20 4d 6f 64 65 2a | by.supporting.**PIM.Sparse.Mode* |
| 14dfa0 | 2a 2c 20 2a 2a 49 47 4d 50 2a 2a 20 61 6e 64 20 2a 2a 49 47 4d 50 2d 50 72 6f 78 79 2a 2a 2e 00 | *,.**IGMP**.and.**IGMP-Proxy**.. |
| 14dfc0 | 56 79 4f 53 20 66 61 63 69 6c 69 74 61 74 65 73 20 49 50 76 36 20 4d 75 6c 74 69 63 61 73 74 20 | VyOS.facilitates.IPv6.Multicast. |
| 14dfe0 | 62 79 20 73 75 70 70 6f 72 74 69 6e 67 20 2a 2a 50 49 4d 76 36 2a 2a 20 61 6e 64 20 2a 2a 4d 4c | by.supporting.**PIMv6**.and.**ML |
| 14e000 | 44 2a 2a 2e 00 56 79 4f 53 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 46 61 73 74 4e 65 74 4d 6f | D**..VyOS.includes.the.FastNetMo |
| 14e020 | 6e 20 43 6f 6d 6d 75 6e 69 74 79 20 45 64 69 74 69 6f 6e 2e 00 56 79 4f 53 20 69 73 20 61 62 6c | n.Community.Edition..VyOS.is.abl |
| 14e040 | 65 20 74 6f 20 75 70 64 61 74 65 20 61 20 72 65 6d 6f 74 65 20 44 4e 53 20 72 65 63 6f 72 64 20 | e.to.update.a.remote.DNS.record. |
| 14e060 | 77 68 65 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 67 65 74 73 20 61 20 6e 65 77 20 49 50 20 | when.an.interface.gets.a.new.IP. |
| 14e080 | 61 64 64 72 65 73 73 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 64 6f 20 73 6f 2c 20 56 79 4f 53 | address..In.order.to.do.so,.VyOS |
| 14e0a0 | 20 69 6e 63 6c 75 64 65 73 20 64 64 63 6c 69 65 6e 74 5f 2c 20 61 20 50 65 72 6c 20 73 63 72 69 | .includes.ddclient_,.a.Perl.scri |
| 14e0c0 | 70 74 20 77 72 69 74 74 65 6e 20 66 6f 72 20 74 68 69 73 20 6f 6e 6c 79 20 6f 6e 65 20 70 75 72 | pt.written.for.this.only.one.pur |
| 14e0e0 | 70 6f 73 65 2e 00 56 79 4f 53 20 69 73 20 61 6c 73 6f 20 61 62 6c 65 20 74 6f 20 75 73 65 20 61 | pose..VyOS.is.also.able.to.use.a |
| 14e100 | 6e 79 20 73 65 72 76 69 63 65 20 72 65 6c 79 69 6e 67 20 6f 6e 20 70 72 6f 74 6f 63 6f 6c 73 20 | ny.service.relying.on.protocols. |
| 14e120 | 73 75 70 70 6f 72 74 65 64 20 62 79 20 64 64 63 6c 69 65 6e 74 2e 00 56 79 4f 53 20 69 74 73 65 | supported.by.ddclient..VyOS.itse |
| 14e140 | 6c 66 20 73 75 70 70 6f 72 74 73 20 53 4e 4d 50 76 32 5f 20 28 76 65 72 73 69 6f 6e 20 32 29 20 | lf.supports.SNMPv2_.(version.2). |
| 14e160 | 61 6e 64 20 53 4e 4d 50 76 33 5f 20 28 76 65 72 73 69 6f 6e 20 33 29 20 77 68 65 72 65 20 74 68 | and.SNMPv3_.(version.3).where.th |
| 14e180 | 65 20 6c 61 74 65 72 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 62 65 63 61 75 73 65 20 6f | e.later.is.recommended.because.o |
| 14e1a0 | 66 20 69 6d 70 72 6f 76 65 64 20 73 65 63 75 72 69 74 79 20 28 6f 70 74 69 6f 6e 61 6c 20 61 75 | f.improved.security.(optional.au |
| 14e1c0 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 6e 64 20 65 6e 63 72 79 70 74 69 6f 6e 29 2e 00 56 79 | thentication.and.encryption)..Vy |
| 14e1e0 | 4f 53 20 6c 65 74 73 20 79 6f 75 20 63 6f 6e 74 72 6f 6c 20 74 72 61 66 66 69 63 20 69 6e 20 6d | OS.lets.you.control.traffic.in.m |
| 14e200 | 61 6e 79 20 64 69 66 66 65 72 65 6e 74 20 77 61 79 73 2c 20 68 65 72 65 20 77 65 20 77 69 6c 6c | any.different.ways,.here.we.will |
| 14e220 | 20 63 6f 76 65 72 20 65 76 65 72 79 20 70 6f 73 73 69 62 69 6c 69 74 79 2e 20 59 6f 75 20 63 61 | .cover.every.possibility..You.ca |
| 14e240 | 6e 20 63 6f 6e 66 69 67 75 72 65 20 61 73 20 6d 61 6e 79 20 70 6f 6c 69 63 69 65 73 20 61 73 20 | n.configure.as.many.policies.as. |
| 14e260 | 79 6f 75 20 77 61 6e 74 2c 20 62 75 74 20 79 6f 75 20 77 69 6c 6c 20 6f 6e 6c 79 20 62 65 20 61 | you.want,.but.you.will.only.be.a |
| 14e280 | 62 6c 65 20 74 6f 20 61 70 70 6c 79 20 6f 6e 65 20 70 6f 6c 69 63 79 20 70 65 72 20 69 6e 74 65 | ble.to.apply.one.policy.per.inte |
| 14e2a0 | 72 66 61 63 65 20 61 6e 64 20 64 69 72 65 63 74 69 6f 6e 20 28 69 6e 62 6f 75 6e 64 20 6f 72 20 | rface.and.direction.(inbound.or. |
| 14e2c0 | 6f 75 74 62 6f 75 6e 64 29 2e 00 56 79 4f 53 20 6d 61 6b 65 73 20 75 73 65 20 6f 66 20 3a 61 62 | outbound)..VyOS.makes.use.of.:ab |
| 14e2e0 | 62 72 3a 60 46 52 52 20 28 46 72 65 65 20 52 61 6e 67 65 20 52 6f 75 74 69 6e 67 29 60 20 61 6e | br:`FRR.(Free.Range.Routing)`.an |
| 14e300 | 64 20 77 65 20 77 6f 75 6c 64 20 6c 69 6b 65 20 74 6f 20 74 68 61 6e 6b 20 74 68 65 6d 20 66 6f | d.we.would.like.to.thank.them.fo |
| 14e320 | 72 20 74 68 65 69 72 20 65 66 66 6f 72 74 21 00 56 79 4f 53 20 6d 61 6b 65 73 20 75 73 65 20 6f | r.their.effort!.VyOS.makes.use.o |
| 14e340 | 66 20 4c 69 6e 75 78 20 60 6e 65 74 66 69 6c 74 65 72 20 3c 68 74 74 70 73 3a 2f 2f 6e 65 74 66 | f.Linux.`netfilter.<https://netf |
| 14e360 | 69 6c 74 65 72 2e 6f 72 67 2f 3e 60 5f 20 66 6f 72 20 70 61 63 6b 65 74 20 66 69 6c 74 65 72 69 | ilter.org/>`_.for.packet.filteri |
| 14e380 | 6e 67 2e 00 56 79 4f 53 20 6e 6f 74 20 6f 6e 6c 79 20 63 61 6e 20 6e 6f 77 20 6d 61 6e 61 67 65 | ng..VyOS.not.only.can.now.manage |
| 14e3a0 | 20 63 65 72 74 69 66 69 63 61 74 65 73 20 69 73 73 75 65 64 20 62 79 20 33 72 64 20 70 61 72 74 | .certificates.issued.by.3rd.part |
| 14e3c0 | 79 20 43 65 72 74 69 66 69 63 61 74 65 20 41 75 74 68 6f 72 69 74 69 65 73 2c 20 69 74 20 63 61 | y.Certificate.Authorities,.it.ca |
| 14e3e0 | 6e 20 61 6c 73 6f 20 61 63 74 20 61 73 20 61 20 43 41 20 6f 6e 20 69 74 73 20 6f 77 6e 2e 20 59 | n.also.act.as.a.CA.on.its.own..Y |
| 14e400 | 6f 75 20 63 61 6e 20 63 72 65 61 74 65 20 79 6f 75 72 20 6f 77 6e 20 72 6f 6f 74 20 43 41 20 61 | ou.can.create.your.own.root.CA.a |
| 14e420 | 6e 64 20 73 69 67 6e 20 6b 65 79 73 20 77 69 74 68 20 69 74 20 62 79 20 6d 61 6b 69 6e 67 20 75 | nd.sign.keys.with.it.by.making.u |
| 14e440 | 73 65 20 6f 66 20 73 6f 6d 65 20 73 69 6d 70 6c 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e | se.of.some.simple.op-mode.comman |
| 14e460 | 64 73 2e 00 56 79 4f 53 20 6e 6f 77 20 61 6c 73 6f 20 68 61 73 20 74 68 65 20 61 62 69 6c 69 74 | ds..VyOS.now.also.has.the.abilit |
| 14e480 | 79 20 74 6f 20 63 72 65 61 74 65 20 43 41 73 2c 20 6b 65 79 73 2c 20 44 69 66 66 69 65 2d 48 65 | y.to.create.CAs,.keys,.Diffie-He |
| 14e4a0 | 6c 6c 6d 61 6e 20 61 6e 64 20 6f 74 68 65 72 20 6b 65 79 70 61 69 72 73 20 66 72 6f 6d 20 61 6e | llman.and.other.keypairs.from.an |
| 14e4c0 | 20 65 61 73 79 20 74 6f 20 61 63 63 65 73 73 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 6c 65 76 65 | .easy.to.access.operational.leve |
| 14e4e0 | 6c 20 63 6f 6d 6d 61 6e 64 2e 00 56 79 4f 53 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 6d 6f 64 65 | l.command..VyOS.operational.mode |
| 14e500 | 20 63 6f 6d 6d 61 6e 64 73 20 61 72 65 20 6e 6f 74 20 6f 6e 6c 79 20 61 76 61 69 6c 61 62 6c 65 | .commands.are.not.only.available |
| 14e520 | 20 66 6f 72 20 67 65 6e 65 72 61 74 69 6e 67 20 6b 65 79 73 20 62 75 74 20 61 6c 73 6f 20 74 6f | .for.generating.keys.but.also.to |
| 14e540 | 20 64 69 73 70 6c 61 79 20 74 68 65 6d 2e 00 56 79 4f 53 20 70 72 6f 76 69 64 65 20 61 6e 20 48 | .display.them..VyOS.provide.an.H |
| 14e560 | 54 54 50 20 41 50 49 2e 20 59 6f 75 20 63 61 6e 20 75 73 65 20 69 74 20 74 6f 20 65 78 65 63 75 | TTP.API..You.can.use.it.to.execu |
| 14e580 | 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2c 20 75 70 64 61 74 65 20 56 79 4f 53 | te.op-mode.commands,.update.VyOS |
| 14e5a0 | 2c 20 73 65 74 20 6f 72 20 64 65 6c 65 74 65 20 63 6f 6e 66 69 67 2e 00 56 79 4f 53 20 70 72 6f | ,.set.or.delete.config..VyOS.pro |
| 14e5c0 | 76 69 64 65 73 20 44 4e 53 20 69 6e 66 72 61 73 74 72 75 63 74 75 72 65 20 66 6f 72 20 73 6d 61 | vides.DNS.infrastructure.for.sma |
| 14e5e0 | 6c 6c 20 6e 65 74 77 6f 72 6b 73 2e 20 49 74 20 69 73 20 64 65 73 69 67 6e 65 64 20 74 6f 20 62 | ll.networks..It.is.designed.to.b |
| 14e600 | 65 20 6c 69 67 68 74 77 65 69 67 68 74 20 61 6e 64 20 68 61 76 65 20 61 20 73 6d 61 6c 6c 20 66 | e.lightweight.and.have.a.small.f |
| 14e620 | 6f 6f 74 70 72 69 6e 74 2c 20 73 75 69 74 61 62 6c 65 20 66 6f 72 20 72 65 73 6f 75 72 63 65 20 | ootprint,.suitable.for.resource. |
| 14e640 | 63 6f 6e 73 74 72 61 69 6e 65 64 20 72 6f 75 74 65 72 73 20 61 6e 64 20 66 69 72 65 77 61 6c 6c | constrained.routers.and.firewall |
| 14e660 | 73 2e 20 46 6f 72 20 74 68 69 73 20 77 65 20 75 74 69 6c 69 7a 65 20 50 6f 77 65 72 44 4e 53 20 | s..For.this.we.utilize.PowerDNS. |
| 14e680 | 72 65 63 75 72 73 6f 72 2e 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 48 69 67 68 20 41 76 61 | recursor..VyOS.provides.High.Ava |
| 14e6a0 | 69 6c 61 62 69 6c 69 74 79 20 73 75 70 70 6f 72 74 20 66 6f 72 20 44 48 43 50 20 73 65 72 76 65 | ilability.support.for.DHCP.serve |
| 14e6c0 | 72 2e 20 44 48 43 50 20 48 69 67 68 20 41 76 61 69 6c 61 62 69 6c 69 74 79 20 63 61 6e 20 61 63 | r..DHCP.High.Availability.can.ac |
| 14e6e0 | 74 20 69 6e 20 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 6d 6f 64 65 73 3a 00 56 79 4f 53 20 70 | t.in.two.different.modes:.VyOS.p |
| 14e700 | 72 6f 76 69 64 65 73 20 61 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 67 65 6e 65 72 61 74 65 20 61 20 | rovides.a.command.to.generate.a. |
| 14e720 | 63 6f 6e 6e 65 63 74 69 6f 6e 20 70 72 6f 66 69 6c 65 20 75 73 65 64 20 62 79 20 57 69 6e 64 6f | connection.profile.used.by.Windo |
| 14e740 | 77 73 20 63 6c 69 65 6e 74 73 20 74 68 61 74 20 77 69 6c 6c 20 63 6f 6e 6e 65 63 74 20 74 6f 20 | ws.clients.that.will.connect.to. |
| 14e760 | 74 68 65 20 22 72 77 22 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 6e 20 6f 75 72 20 56 79 4f 53 20 | the."rw".connection.on.our.VyOS. |
| 14e780 | 73 65 72 76 65 72 2e 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 70 6f 6c 69 63 69 65 73 20 63 | server..VyOS.provides.policies.c |
| 14e7a0 | 6f 6d 6d 61 6e 64 73 20 65 78 63 6c 75 73 69 76 65 6c 79 20 66 6f 72 20 42 47 50 20 74 72 61 66 | ommands.exclusively.for.BGP.traf |
| 14e7c0 | 66 69 63 20 66 69 6c 74 65 72 69 6e 67 20 61 6e 64 20 6d 61 6e 69 70 75 6c 61 74 69 6f 6e 3a 20 | fic.filtering.and.manipulation:. |
| 14e7e0 | 2a 2a 61 73 2d 70 61 74 68 2d 6c 69 73 74 2a 2a 20 69 73 20 6f 6e 65 20 6f 66 20 74 68 65 6d 2e | **as-path-list**.is.one.of.them. |
| 14e800 | 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 70 6f 6c 69 63 69 65 73 20 63 6f 6d 6d 61 6e 64 73 | .VyOS.provides.policies.commands |
| 14e820 | 20 65 78 63 6c 75 73 69 76 65 6c 79 20 66 6f 72 20 42 47 50 20 74 72 61 66 66 69 63 20 66 69 6c | .exclusively.for.BGP.traffic.fil |
| 14e840 | 74 65 72 69 6e 67 20 61 6e 64 20 6d 61 6e 69 70 75 6c 61 74 69 6f 6e 3a 20 2a 2a 63 6f 6d 6d 75 | tering.and.manipulation:.**commu |
| 14e860 | 6e 69 74 79 2d 6c 69 73 74 2a 2a 20 69 73 20 6f 6e 65 20 6f 66 20 74 68 65 6d 2e 00 56 79 4f 53 | nity-list**.is.one.of.them..VyOS |
| 14e880 | 20 70 72 6f 76 69 64 65 73 20 70 6f 6c 69 63 69 65 73 20 63 6f 6d 6d 61 6e 64 73 20 65 78 63 6c | .provides.policies.commands.excl |
| 14e8a0 | 75 73 69 76 65 6c 79 20 66 6f 72 20 42 47 50 20 74 72 61 66 66 69 63 20 66 69 6c 74 65 72 69 6e | usively.for.BGP.traffic.filterin |
| 14e8c0 | 67 20 61 6e 64 20 6d 61 6e 69 70 75 6c 61 74 69 6f 6e 3a 20 2a 2a 65 78 74 63 6f 6d 6d 75 6e 69 | g.and.manipulation:.**extcommuni |
| 14e8e0 | 74 79 2d 6c 69 73 74 2a 2a 20 69 73 20 6f 6e 65 20 6f 66 20 74 68 65 6d 2e 00 56 79 4f 53 20 70 | ty-list**.is.one.of.them..VyOS.p |
| 14e900 | 72 6f 76 69 64 65 73 20 70 6f 6c 69 63 69 65 73 20 63 6f 6d 6d 61 6e 64 73 20 65 78 63 6c 75 73 | rovides.policies.commands.exclus |
| 14e920 | 69 76 65 6c 79 20 66 6f 72 20 42 47 50 20 74 72 61 66 66 69 63 20 66 69 6c 74 65 72 69 6e 67 20 | ively.for.BGP.traffic.filtering. |
| 14e940 | 61 6e 64 20 6d 61 6e 69 70 75 6c 61 74 69 6f 6e 3a 20 2a 2a 6c 61 72 67 65 2d 63 6f 6d 6d 75 6e | and.manipulation:.**large-commun |
| 14e960 | 69 74 79 2d 6c 69 73 74 2a 2a 20 69 73 20 6f 6e 65 20 6f 66 20 74 68 65 6d 2e 00 56 79 4f 53 20 | ity-list**.is.one.of.them..VyOS. |
| 14e980 | 70 72 6f 76 69 64 65 73 20 73 6f 6d 65 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e | provides.some.operational.comman |
| 14e9a0 | 64 73 20 6f 6e 20 4f 70 65 6e 56 50 4e 2e 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 73 75 70 | ds.on.OpenVPN..VyOS.provides.sup |
| 14e9c0 | 70 6f 72 74 20 66 6f 72 20 44 48 43 50 20 66 61 69 6c 6f 76 65 72 2e 20 44 48 43 50 20 66 61 69 | port.for.DHCP.failover..DHCP.fai |
| 14e9e0 | 6c 6f 76 65 72 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 65 78 70 6c 69 63 69 | lover.must.be.configured.explici |
| 14ea00 | 74 6c 79 20 62 79 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 74 61 74 65 6d 65 6e 74 73 2e | tly.by.the.following.statements. |
| 14ea20 | 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 74 68 69 73 20 75 74 69 6c 69 74 79 20 74 6f 20 69 | .VyOS.provides.this.utility.to.i |
| 14ea40 | 6d 70 6f 72 74 20 65 78 69 73 74 69 6e 67 20 63 65 72 74 69 66 69 63 61 74 65 73 2f 6b 65 79 20 | mport.existing.certificates/key. |
| 14ea60 | 66 69 6c 65 73 20 64 69 72 65 63 74 6c 79 20 69 6e 74 6f 20 50 4b 49 20 66 72 6f 6d 20 6f 70 2d | files.directly.into.PKI.from.op- |
| 14ea80 | 6d 6f 64 65 2e 20 50 72 65 76 69 6f 75 73 20 74 6f 20 56 79 4f 53 20 31 2e 34 2c 20 63 65 72 74 | mode..Previous.to.VyOS.1.4,.cert |
| 14eaa0 | 69 66 69 63 61 74 65 73 20 77 65 72 65 20 73 74 6f 72 65 64 20 75 6e 64 65 72 20 74 68 65 20 2f | ificates.were.stored.under.the./ |
| 14eac0 | 63 6f 6e 66 69 67 20 66 6f 6c 64 65 72 20 70 65 72 6d 61 6e 65 6e 74 6c 79 20 61 6e 64 20 77 69 | config.folder.permanently.and.wi |
| 14eae0 | 6c 6c 20 62 65 20 72 65 74 61 69 6e 65 64 20 70 6f 73 74 20 75 70 67 72 61 64 65 2e 00 56 79 4f | ll.be.retained.post.upgrade..VyO |
| 14eb00 | 53 20 72 65 76 65 72 73 65 2d 70 72 6f 78 79 20 69 73 20 62 61 6c 61 6e 63 65 72 20 61 6e 64 20 | S.reverse-proxy.is.balancer.and. |
| 14eb20 | 70 72 6f 78 79 20 73 65 72 76 65 72 20 74 68 61 74 20 70 72 6f 76 69 64 65 73 20 68 69 67 68 2d | proxy.server.that.provides.high- |
| 14eb40 | 61 76 61 69 6c 61 62 69 6c 69 74 79 2c 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 61 6e 64 | availability,.load.balancing.and |
| 14eb60 | 20 70 72 6f 78 79 69 6e 67 20 66 6f 72 20 54 43 50 20 28 6c 65 76 65 6c 20 34 29 20 61 6e 64 20 | .proxying.for.TCP.(level.4).and. |
| 14eb80 | 48 54 54 50 2d 62 61 73 65 64 20 28 6c 65 76 65 6c 20 37 29 20 61 70 70 6c 69 63 61 74 69 6f 6e | HTTP-based.(level.7).application |
| 14eba0 | 73 2e 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 3a 61 62 62 72 3a 60 50 49 4d 2d 53 4d 20 28 | s..VyOS.supports.:abbr:`PIM-SM.( |
| 14ebc0 | 50 49 4d 20 53 70 61 72 73 65 20 4d 6f 64 65 29 60 20 61 73 20 77 65 6c 6c 20 61 73 20 3a 61 62 | PIM.Sparse.Mode)`.as.well.as.:ab |
| 14ebe0 | 62 72 3a 60 49 47 4d 50 20 28 49 6e 74 65 72 6e 65 74 20 47 72 6f 75 70 20 4d 61 6e 61 67 65 6d | br:`IGMP.(Internet.Group.Managem |
| 14ec00 | 65 6e 74 20 50 72 6f 74 6f 63 6f 6c 29 60 20 76 32 20 61 6e 64 20 76 33 00 56 79 4f 53 20 73 75 | ent.Protocol)`.v2.and.v3.VyOS.su |
| 14ec20 | 70 70 6f 72 74 73 20 62 6f 74 68 20 49 47 4d 50 20 76 65 72 73 69 6f 6e 20 32 20 61 6e 64 20 76 | pports.both.IGMP.version.2.and.v |
| 14ec40 | 65 72 73 69 6f 6e 20 33 20 28 77 68 69 63 68 20 61 6c 6c 6f 77 73 20 73 6f 75 72 63 65 2d 73 70 | ersion.3.(which.allows.source-sp |
| 14ec60 | 65 63 69 66 69 63 20 6d 75 6c 74 69 63 61 73 74 29 2e 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 | ecific.multicast)..VyOS.supports |
| 14ec80 | 20 62 6f 74 68 20 4d 4c 44 20 76 65 72 73 69 6f 6e 20 31 20 61 6e 64 20 76 65 72 73 69 6f 6e 20 | .both.MLD.version.1.and.version. |
| 14eca0 | 32 20 28 77 68 69 63 68 20 61 6c 6c 6f 77 73 20 73 6f 75 72 63 65 2d 73 70 65 63 69 66 69 63 20 | 2.(which.allows.source-specific. |
| 14ecc0 | 6d 75 6c 74 69 63 61 73 74 29 2e 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 66 6c 6f 77 2d 61 | multicast)..VyOS.supports.flow-a |
| 14ece0 | 63 63 6f 75 6e 74 69 6e 67 20 66 6f 72 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 | ccounting.for.both.IPv4.and.IPv6 |
| 14ed00 | 20 74 72 61 66 66 69 63 2e 20 54 68 65 20 73 79 73 74 65 6d 20 61 63 74 73 20 61 73 20 61 20 66 | .traffic..The.system.acts.as.a.f |
| 14ed20 | 6c 6f 77 20 65 78 70 6f 72 74 65 72 2c 20 61 6e 64 20 79 6f 75 20 61 72 65 20 66 72 65 65 20 74 | low.exporter,.and.you.are.free.t |
| 14ed40 | 6f 20 75 73 65 20 69 74 20 77 69 74 68 20 61 6e 79 20 63 6f 6d 70 61 74 69 62 6c 65 20 63 6f 6c | o.use.it.with.any.compatible.col |
| 14ed60 | 6c 65 63 74 6f 72 2e 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 6d 75 6c 74 69 2d 66 61 63 74 | lector..VyOS.supports.multi-fact |
| 14ed80 | 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 28 4d 46 41 29 20 6f 72 20 74 77 6f 2d 66 | or.authentication.(MFA).or.two-f |
| 14eda0 | 61 63 74 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 75 73 69 6e 67 20 54 69 6d 65 2d | actor.authentication.using.Time- |
| 14edc0 | 62 61 73 65 64 20 4f 6e 65 2d 54 69 6d 65 20 50 61 73 73 77 6f 72 64 20 28 54 4f 54 50 29 2e 20 | based.One-Time.Password.(TOTP).. |
| 14ede0 | 43 6f 6d 70 61 74 69 62 6c 65 20 77 69 74 68 20 47 6f 6f 67 6c 65 20 41 75 74 68 65 6e 74 69 63 | Compatible.with.Google.Authentic |
| 14ee00 | 61 74 6f 72 20 73 6f 66 74 77 61 72 65 20 74 6f 6b 65 6e 2c 20 6f 74 68 65 72 20 73 6f 66 74 77 | ator.software.token,.other.softw |
| 14ee20 | 61 72 65 20 74 6f 6b 65 6e 73 2e 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 6d 75 6c 74 69 70 | are.tokens..VyOS.supports.multip |
| 14ee40 | 6c 65 20 49 4b 45 76 32 20 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 20 63 6f 6e 6e 65 63 74 69 6f | le.IKEv2.remote-access.connectio |
| 14ee60 | 6e 73 2e 20 45 76 65 72 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 63 61 6e 20 68 61 76 65 20 69 74 | ns..Every.connection.can.have.it |
| 14ee80 | 73 20 64 65 64 69 63 61 74 65 64 20 49 4b 45 2f 45 53 50 20 63 69 70 68 65 72 73 2c 20 63 65 72 | s.dedicated.IKE/ESP.ciphers,.cer |
| 14eea0 | 74 69 66 69 63 61 74 65 73 20 6f 72 20 6c 6f 63 61 6c 20 6c 69 73 74 65 6e 20 61 64 64 72 65 73 | tificates.or.local.listen.addres |
| 14eec0 | 73 20 66 6f 72 20 65 2e 67 2e 20 69 6e 62 6f 75 6e 64 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e | s.for.e.g..inbound.load.balancin |
| 14eee0 | 67 2e 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 6d 75 6c 74 69 70 6c 65 20 49 4b 45 76 32 20 | g..VyOS.supports.multiple.IKEv2. |
| 14ef00 | 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 20 45 76 65 72 79 | remote-access.connections..Every |
| 14ef20 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 63 61 6e 20 68 61 76 65 20 69 74 73 20 6f 77 6e 20 64 65 64 | .connection.can.have.its.own.ded |
| 14ef40 | 69 63 61 74 65 64 20 49 4b 45 2f 45 53 50 20 63 69 70 68 65 72 73 2c 20 63 65 72 74 69 66 69 63 | icated.IKE/ESP.ciphers,.certific |
| 14ef60 | 61 74 65 73 20 6f 72 20 6c 6f 63 61 6c 20 6c 69 73 74 65 6e 20 61 64 64 72 65 73 73 20 66 6f 72 | ates.or.local.listen.address.for |
| 14ef80 | 20 65 2e 67 2e 20 69 6e 62 6f 75 6e 64 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 2e 00 56 79 | .e.g..inbound.load.balancing..Vy |
| 14efa0 | 4f 53 20 73 75 70 70 6f 72 74 73 20 6f 6e 6c 69 6e 65 20 63 68 65 63 6b 69 6e 67 20 66 6f 72 20 | OS.supports.online.checking.for. |
| 14efc0 | 75 70 64 61 74 65 73 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 73 46 6c 6f 77 20 61 63 63 6f | updates.VyOS.supports.sFlow.acco |
| 14efe0 | 75 6e 74 69 6e 67 20 66 6f 72 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 74 72 | unting.for.both.IPv4.and.IPv6.tr |
| 14f000 | 61 66 66 69 63 2e 20 54 68 65 20 73 79 73 74 65 6d 20 61 63 74 73 20 61 73 20 61 20 66 6c 6f 77 | affic..The.system.acts.as.a.flow |
| 14f020 | 20 65 78 70 6f 72 74 65 72 2c 20 61 6e 64 20 79 6f 75 20 61 72 65 20 66 72 65 65 20 74 6f 20 75 | .exporter,.and.you.are.free.to.u |
| 14f040 | 73 65 20 69 74 20 77 69 74 68 20 61 6e 79 20 63 6f 6d 70 61 74 69 62 6c 65 20 63 6f 6c 6c 65 63 | se.it.with.any.compatible.collec |
| 14f060 | 74 6f 72 2e 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 73 65 74 74 69 6e 67 20 74 69 6d 65 6f | tor..VyOS.supports.setting.timeo |
| 14f080 | 75 74 73 20 66 6f 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 61 63 63 6f 72 64 69 6e 67 20 74 6f | uts.for.connections.according.to |
| 14f0a0 | 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 79 70 65 2e 20 59 6f 75 20 63 61 6e 20 73 65 | .the.connection.type..You.can.se |
| 14f0c0 | 74 20 74 69 6d 65 6f 75 74 20 76 61 6c 75 65 73 20 66 6f 72 20 67 65 6e 65 72 69 63 20 63 6f 6e | t.timeout.values.for.generic.con |
| 14f0e0 | 6e 65 63 74 69 6f 6e 73 2c 20 66 6f 72 20 49 43 4d 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2c 20 | nections,.for.ICMP.connections,. |
| 14f100 | 55 44 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2c 20 6f 72 20 66 6f 72 20 54 43 50 20 63 6f 6e 6e | UDP.connections,.or.for.TCP.conn |
| 14f120 | 65 63 74 69 6f 6e 73 20 69 6e 20 61 20 6e 75 6d 62 65 72 20 6f 66 20 64 69 66 66 65 72 65 6e 74 | ections.in.a.number.of.different |
| 14f140 | 20 73 74 61 74 65 73 2e 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 73 65 74 74 69 6e 67 20 75 | .states..VyOS.supports.setting.u |
| 14f160 | 70 20 50 50 50 6f 45 20 69 6e 20 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 77 61 79 73 20 74 6f | p.PPPoE.in.two.different.ways.to |
| 14f180 | 20 61 20 50 50 50 6f 45 20 69 6e 74 65 72 6e 65 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 54 68 | .a.PPPoE.internet.connection..Th |
| 14f1a0 | 69 73 20 69 73 20 62 65 63 61 75 73 65 20 6d 6f 73 74 20 49 53 50 73 20 70 72 6f 76 69 64 65 20 | is.is.because.most.ISPs.provide. |
| 14f1c0 | 61 20 6d 6f 64 65 6d 20 74 68 61 74 20 69 73 20 61 6c 73 6f 20 61 20 77 69 72 65 6c 65 73 73 20 | a.modem.that.is.also.a.wireless. |
| 14f1e0 | 72 6f 75 74 65 72 2e 00 56 79 4f 53 20 75 73 65 73 20 49 53 43 20 44 48 43 50 20 73 65 72 76 65 | router..VyOS.uses.ISC.DHCP.serve |
| 14f200 | 72 20 66 6f 72 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 64 64 72 65 73 73 | r.for.both.IPv4.and.IPv6.address |
| 14f220 | 20 61 73 73 69 67 6e 6d 65 6e 74 2e 00 56 79 4f 53 20 75 73 65 73 20 4b 65 61 20 44 48 43 50 20 | .assignment..VyOS.uses.Kea.DHCP. |
| 14f240 | 73 65 72 76 65 72 20 66 6f 72 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 64 | server.for.both.IPv4.and.IPv6.ad |
| 14f260 | 64 72 65 73 73 20 61 73 73 69 67 6e 6d 65 6e 74 2e 00 56 79 4f 53 20 75 73 65 73 20 5b 46 52 52 | dress.assignment..VyOS.uses.[FRR |
| 14f280 | 6f 75 74 69 6e 67 5d 28 68 74 74 70 73 3a 2f 2f 66 72 72 6f 75 74 69 6e 67 2e 6f 72 67 2f 29 20 | outing](https://frrouting.org/). |
| 14f2a0 | 61 73 20 74 68 65 20 63 6f 6e 74 72 6f 6c 20 70 6c 61 6e 65 20 66 6f 72 20 64 79 6e 61 6d 69 63 | as.the.control.plane.for.dynamic |
| 14f2c0 | 20 61 6e 64 20 73 74 61 74 69 63 20 72 6f 75 74 69 6e 67 2e 20 54 68 65 20 72 6f 75 74 69 6e 67 | .and.static.routing..The.routing |
| 14f2e0 | 20 64 61 65 6d 6f 6e 20 62 65 68 61 76 69 6f 72 20 63 61 6e 20 62 65 20 61 64 6a 75 73 74 65 64 | .daemon.behavior.can.be.adjusted |
| 14f300 | 20 64 75 72 69 6e 67 20 72 75 6e 74 69 6d 65 2c 20 62 75 74 20 72 65 71 75 69 72 65 20 65 69 74 | .during.runtime,.but.require.eit |
| 14f320 | 68 65 72 20 61 20 72 65 73 74 61 72 74 20 6f 66 20 74 68 65 20 72 6f 75 74 69 6e 67 20 64 61 65 | her.a.restart.of.the.routing.dae |
| 14f340 | 6d 6f 6e 2c 20 6f 72 20 61 20 72 65 62 6f 6f 74 20 6f 66 20 74 68 65 20 73 79 73 74 65 6d 2e 00 | mon,.or.a.reboot.of.the.system.. |
| 14f360 | 56 79 4f 53 20 75 73 65 73 20 74 68 65 20 60 69 6e 74 65 72 66 61 63 65 73 20 77 77 61 6e 60 20 | VyOS.uses.the.`interfaces.wwan`. |
| 14f380 | 73 75 62 73 79 73 74 65 6d 20 66 6f 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 56 79 4f | subsystem.for.configuration..VyO |
| 14f3a0 | 53 20 75 73 65 73 20 74 68 65 20 60 6d 69 72 72 6f 72 60 20 6f 70 74 69 6f 6e 20 74 6f 20 63 6f | S.uses.the.`mirror`.option.to.co |
| 14f3c0 | 6e 66 69 67 75 72 65 20 70 6f 72 74 20 6d 69 72 72 6f 72 69 6e 67 2e 20 54 68 65 20 63 6f 6e 66 | nfigure.port.mirroring..The.conf |
| 14f3e0 | 69 67 75 72 61 74 69 6f 6e 20 69 73 20 64 69 76 69 64 65 64 20 69 6e 74 6f 20 32 20 64 69 66 66 | iguration.is.divided.into.2.diff |
| 14f400 | 65 72 65 6e 74 20 64 69 72 65 63 74 69 6f 6e 73 2e 20 44 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f | erent.directions..Destination.po |
| 14f420 | 72 74 73 20 73 68 6f 75 6c 64 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 66 6f 72 20 64 69 66 | rts.should.be.configured.for.dif |
| 14f440 | 66 65 72 65 6e 74 20 74 72 61 66 66 69 63 20 64 69 72 65 63 74 69 6f 6e 73 2e 00 56 79 4f 53 20 | ferent.traffic.directions..VyOS. |
| 14f460 | 75 74 69 6c 69 7a 65 73 20 60 61 63 63 65 6c 2d 70 70 70 60 5f 20 74 6f 20 70 72 6f 76 69 64 65 | utilizes.`accel-ppp`_.to.provide |
| 14f480 | 20 3a 61 62 62 72 3a 60 49 50 6f 45 20 28 49 6e 74 65 72 6e 65 74 20 50 72 6f 74 6f 63 6f 6c 20 | .:abbr:`IPoE.(Internet.Protocol. |
| 14f4a0 | 6f 76 65 72 20 45 74 68 65 72 6e 65 74 29 60 20 73 65 72 76 65 72 20 66 75 6e 63 74 69 6f 6e 61 | over.Ethernet)`.server.functiona |
| 14f4c0 | 6c 69 74 79 2e 20 49 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 77 69 74 68 20 6c 6f 63 61 6c 20 | lity..It.can.be.used.with.local. |
| 14f4e0 | 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 28 6d 61 63 2d 61 64 64 72 65 73 73 29 20 6f 72 20 | authentication.(mac-address).or. |
| 14f500 | 61 20 63 6f 6e 6e 65 63 74 65 64 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 56 79 4f 53 20 | a.connected.RADIUS.server..VyOS. |
| 14f520 | 75 74 69 6c 69 7a 65 73 20 60 61 63 63 65 6c 2d 70 70 70 60 5f 20 74 6f 20 70 72 6f 76 69 64 65 | utilizes.`accel-ppp`_.to.provide |
| 14f540 | 20 50 50 50 6f 45 20 73 65 72 76 65 72 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 2e 20 49 74 20 | .PPPoE.server.functionality..It. |
| 14f560 | 63 61 6e 20 62 65 20 75 73 65 64 20 77 69 74 68 20 6c 6f 63 61 6c 20 61 75 74 68 65 6e 74 69 63 | can.be.used.with.local.authentic |
| 14f580 | 61 74 69 6f 6e 20 6f 72 20 61 20 63 6f 6e 6e 65 63 74 65 64 20 52 41 44 49 55 53 20 73 65 72 76 | ation.or.a.connected.RADIUS.serv |
| 14f5a0 | 65 72 2e 00 56 79 4f 53 20 75 74 69 6c 69 7a 65 73 20 61 63 63 65 6c 2d 70 70 70 5f 20 74 6f 20 | er..VyOS.utilizes.accel-ppp_.to. |
| 14f5c0 | 70 72 6f 76 69 64 65 20 4c 32 54 50 20 73 65 72 76 65 72 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 | provide.L2TP.server.functionalit |
| 14f5e0 | 79 2e 20 49 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 77 69 74 68 20 6c 6f 63 61 6c 20 61 75 74 | y..It.can.be.used.with.local.aut |
| 14f600 | 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f 72 20 61 20 63 6f 6e 6e 65 63 74 65 64 20 52 41 44 49 55 | hentication.or.a.connected.RADIU |
| 14f620 | 53 20 73 65 72 76 65 72 2e 00 56 79 4f 53 20 75 74 69 6c 69 7a 65 73 20 61 63 63 65 6c 2d 70 70 | S.server..VyOS.utilizes.accel-pp |
| 14f640 | 70 5f 20 74 6f 20 70 72 6f 76 69 64 65 20 53 53 54 50 20 73 65 72 76 65 72 20 66 75 6e 63 74 69 | p_.to.provide.SSTP.server.functi |
| 14f660 | 6f 6e 61 6c 69 74 79 2e 20 57 65 20 73 75 70 70 6f 72 74 20 62 6f 74 68 20 6c 6f 63 61 6c 20 61 | onality..We.support.both.local.a |
| 14f680 | 6e 64 20 52 41 44 49 55 53 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 00 57 41 4e 20 4c 6f | nd.RADIUS.authentication..WAN.Lo |
| 14f6a0 | 61 64 20 42 61 6c 61 63 69 6e 67 20 73 68 6f 75 6c 64 20 6e 6f 74 20 62 65 20 75 73 65 64 20 77 | ad.Balacing.should.not.be.used.w |
| 14f6c0 | 68 65 6e 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 69 73 20 | hen.dynamic.routing.protocol.is. |
| 14f6e0 | 75 73 65 64 2f 6e 65 65 64 65 64 2e 20 54 68 69 73 20 66 65 61 74 75 72 65 20 63 72 65 61 74 65 | used/needed..This.feature.create |
| 14f700 | 73 20 63 75 73 74 6f 6d 69 7a 65 64 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 73 20 61 6e 64 20 | s.customized.routing.tables.and. |
| 14f720 | 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 2c 20 74 68 61 74 20 6d 61 6b 65 73 20 69 74 20 69 6e | firewall.rules,.that.makes.it.in |
| 14f740 | 63 6f 6d 70 61 74 69 62 6c 65 20 74 6f 20 75 73 65 20 77 69 74 68 20 72 6f 75 74 69 6e 67 20 70 | compatible.to.use.with.routing.p |
| 14f760 | 72 6f 74 6f 63 6f 6c 73 2e 00 57 41 4e 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 60 65 74 68 31 | rotocols..WAN.interface.on.`eth1 |
| 14f780 | 60 00 57 41 4e 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 00 57 4c 41 4e 2f 57 49 46 49 20 2d | `.WAN.load.balancing.WLAN/WIFI.- |
| 14f7a0 | 20 57 69 72 65 6c 65 73 73 20 4c 41 4e 00 57 4d 4d 2d 50 53 20 55 6e 73 63 68 65 64 75 6c 65 64 | .Wireless.LAN.WMM-PS.Unscheduled |
| 14f7c0 | 20 41 75 74 6f 6d 61 74 69 63 20 50 6f 77 65 72 20 53 61 76 65 20 44 65 6c 69 76 65 72 79 20 5b | .Automatic.Power.Save.Delivery.[ |
| 14f7e0 | 55 2d 41 50 53 44 5d 00 57 50 41 20 70 61 73 73 70 68 72 61 73 65 20 60 60 31 32 33 34 35 36 37 | U-APSD].WPA.passphrase.``1234567 |
| 14f800 | 38 60 60 00 57 50 41 20 70 61 73 73 70 68 72 61 73 65 20 60 60 73 75 70 65 72 2d 64 6f 6f 70 65 | 8``.WPA.passphrase.``super-doope |
| 14f820 | 72 2d 73 65 63 75 72 65 2d 70 61 73 73 70 68 72 61 73 65 60 60 00 57 57 41 4e 20 2d 20 57 69 72 | r-secure-passphrase``.WWAN.-.Wir |
| 14f840 | 65 6c 65 73 73 20 57 69 64 65 2d 41 72 65 61 2d 4e 65 74 77 6f 72 6b 00 57 61 72 6e 69 6e 67 00 | eless.Wide-Area-Network.Warning. |
| 14f860 | 57 61 72 6e 69 6e 67 20 63 6f 6e 64 69 74 69 6f 6e 73 00 57 65 20 61 73 73 75 6d 65 20 74 68 61 | Warning.conditions.We.assume.tha |
| 14f880 | 74 20 74 68 65 20 4c 45 46 54 20 72 6f 75 74 65 72 20 68 61 73 20 73 74 61 74 69 63 20 31 39 32 | t.the.LEFT.router.has.static.192 |
| 14f8a0 | 2e 30 2e 32 2e 31 30 20 61 64 64 72 65 73 73 20 6f 6e 20 65 74 68 30 2c 20 61 6e 64 20 74 68 65 | .0.2.10.address.on.eth0,.and.the |
| 14f8c0 | 20 52 49 47 48 54 20 72 6f 75 74 65 72 20 68 61 73 20 61 20 64 79 6e 61 6d 69 63 20 61 64 64 72 | .RIGHT.router.has.a.dynamic.addr |
| 14f8e0 | 65 73 73 20 6f 6e 20 65 74 68 30 2e 00 57 65 20 63 61 6e 20 61 6c 73 6f 20 63 72 65 61 74 65 20 | ess.on.eth0..We.can.also.create. |
| 14f900 | 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 73 20 75 73 69 6e 67 20 43 65 72 62 6f 72 74 20 77 | the.certificates.using.Cerbort.w |
| 14f920 | 68 69 63 68 20 69 73 20 61 6e 20 65 61 73 79 2d 74 6f 2d 75 73 65 20 63 6c 69 65 6e 74 20 74 68 | hich.is.an.easy-to-use.client.th |
| 14f940 | 61 74 20 66 65 74 63 68 65 73 20 61 20 63 65 72 74 69 66 69 63 61 74 65 20 66 72 6f 6d 20 4c 65 | at.fetches.a.certificate.from.Le |
| 14f960 | 74 27 73 20 45 6e 63 72 79 70 74 20 61 6e 20 6f 70 65 6e 20 63 65 72 74 69 66 69 63 61 74 65 20 | t's.Encrypt.an.open.certificate. |
| 14f980 | 61 75 74 68 6f 72 69 74 79 20 6c 61 75 6e 63 68 65 64 20 62 79 20 74 68 65 20 45 46 46 2c 20 4d | authority.launched.by.the.EFF,.M |
| 14f9a0 | 6f 7a 69 6c 6c 61 2c 20 61 6e 64 20 6f 74 68 65 72 73 20 61 6e 64 20 64 65 70 6c 6f 79 73 20 69 | ozilla,.and.others.and.deploys.i |
| 14f9c0 | 74 20 74 6f 20 61 20 77 65 62 20 73 65 72 76 65 72 2e 00 57 65 20 63 61 6e 20 61 6c 73 6f 20 63 | t.to.a.web.server..We.can.also.c |
| 14f9e0 | 72 65 61 74 65 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 73 20 75 73 69 6e 67 20 43 65 72 | reate.the.certificates.using.Cer |
| 14fa00 | 74 62 6f 74 20 77 68 69 63 68 20 69 73 20 61 6e 20 65 61 73 79 2d 74 6f 2d 75 73 65 20 63 6c 69 | tbot.which.is.an.easy-to-use.cli |
| 14fa20 | 65 6e 74 20 74 68 61 74 20 66 65 74 63 68 65 73 20 61 20 63 65 72 74 69 66 69 63 61 74 65 20 66 | ent.that.fetches.a.certificate.f |
| 14fa40 | 72 6f 6d 20 4c 65 74 27 73 20 45 6e 63 72 79 70 74 20 61 6e 20 6f 70 65 6e 20 63 65 72 74 69 66 | rom.Let's.Encrypt.an.open.certif |
| 14fa60 | 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 20 6c 61 75 6e 63 68 65 64 20 62 79 20 74 68 65 20 | icate.authority.launched.by.the. |
| 14fa80 | 45 46 46 2c 20 4d 6f 7a 69 6c 6c 61 2c 20 61 6e 64 20 6f 74 68 65 72 73 20 61 6e 64 20 64 65 70 | EFF,.Mozilla,.and.others.and.dep |
| 14faa0 | 6c 6f 79 73 20 69 74 20 74 6f 20 61 20 77 65 62 20 73 65 72 76 65 72 2e 00 57 65 20 63 61 6e 20 | loys.it.to.a.web.server..We.can. |
| 14fac0 | 62 75 69 6c 64 20 72 6f 75 74 65 2d 6d 61 70 73 20 66 6f 72 20 69 6d 70 6f 72 74 20 62 61 73 65 | build.route-maps.for.import.base |
| 14fae0 | 64 20 6f 6e 20 74 68 65 73 65 20 73 74 61 74 65 73 2e 20 48 65 72 65 20 69 73 20 61 20 73 69 6d | d.on.these.states..Here.is.a.sim |
| 14fb00 | 70 6c 65 20 52 50 4b 49 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 77 68 65 72 65 20 60 72 | ple.RPKI.configuration,.where.`r |
| 14fb20 | 6f 75 74 69 6e 61 74 6f 72 60 20 69 73 20 74 68 65 20 52 50 4b 49 2d 76 61 6c 69 64 61 74 69 6e | outinator`.is.the.RPKI-validatin |
| 14fb40 | 67 20 22 63 61 63 68 65 22 20 73 65 72 76 65 72 20 77 69 74 68 20 69 70 20 60 31 39 32 2e 30 2e | g."cache".server.with.ip.`192.0. |
| 14fb60 | 32 2e 31 60 3a 00 57 65 20 63 61 6e 27 74 20 73 75 70 70 6f 72 74 20 61 6c 6c 20 64 69 73 70 6c | 2.1`:.We.can't.support.all.displ |
| 14fb80 | 61 79 73 20 66 72 6f 6d 20 74 68 65 20 62 65 67 69 6e 6e 69 6e 67 2e 20 49 66 20 79 6f 75 72 20 | ays.from.the.beginning..If.your. |
| 14fba0 | 64 69 73 70 6c 61 79 20 74 79 70 65 20 69 73 20 6d 69 73 73 69 6e 67 2c 20 70 6c 65 61 73 65 20 | display.type.is.missing,.please. |
| 14fbc0 | 63 72 65 61 74 65 20 61 20 66 65 61 74 75 72 65 20 72 65 71 75 65 73 74 20 76 69 61 20 50 68 61 | create.a.feature.request.via.Pha |
| 14fbe0 | 62 72 69 63 61 74 6f 72 5f 2e 00 57 65 20 63 6f 6e 66 69 67 75 72 65 20 61 20 6e 65 77 20 63 6f | bricator_..We.configure.a.new.co |
| 14fc00 | 6e 6e 65 63 74 69 6f 6e 20 6e 61 6d 65 64 20 60 60 72 77 60 60 20 66 6f 72 20 72 6f 61 64 2d 77 | nnection.named.``rw``.for.road-w |
| 14fc20 | 61 72 72 69 6f 72 2c 20 74 68 61 74 20 69 64 65 6e 74 69 66 69 65 73 20 69 74 73 65 6c 66 20 61 | arrior,.that.identifies.itself.a |
| 14fc40 | 73 20 60 60 31 39 32 2e 30 2e 32 2e 31 60 60 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 73 20 61 | s.``192.0.2.1``.to.the.clients.a |
| 14fc60 | 6e 64 20 75 73 65 73 20 74 68 65 20 60 60 76 79 6f 73 60 60 20 63 65 72 74 69 66 69 63 61 74 65 | nd.uses.the.``vyos``.certificate |
| 14fc80 | 20 73 69 67 6e 65 64 20 62 79 20 74 68 65 20 60 43 41 63 65 72 74 5f 43 6c 61 73 73 33 5f 52 6f | .signed.by.the.`CAcert_Class3_Ro |
| 14fca0 | 6f 74 60 60 20 69 6e 74 65 72 6d 65 64 69 61 74 65 20 43 41 2e 20 57 65 20 73 65 6c 65 63 74 20 | ot``.intermediate.CA..We.select. |
| 14fcc0 | 6f 75 72 20 70 72 65 76 69 6f 75 73 6c 79 20 73 70 65 63 69 66 69 65 64 20 49 4b 45 2f 45 53 50 | our.previously.specified.IKE/ESP |
| 14fce0 | 20 67 72 6f 75 70 73 20 61 6e 64 20 61 6c 73 6f 20 6c 69 6e 6b 20 74 68 65 20 49 50 20 61 64 64 | .groups.and.also.link.the.IP.add |
| 14fd00 | 72 65 73 73 20 70 6f 6f 6c 20 74 6f 20 64 72 61 77 20 61 64 64 72 65 73 73 65 73 20 66 72 6f 6d | ress.pool.to.draw.addresses.from |
| 14fd20 | 2e 00 57 65 20 63 6f 75 6c 64 20 65 78 70 61 6e 64 20 6f 6e 20 74 68 69 73 20 61 6e 64 20 61 6c | ..We.could.expand.on.this.and.al |
| 14fd40 | 73 6f 20 64 65 6e 79 20 6c 69 6e 6b 20 6c 6f 63 61 6c 20 61 6e 64 20 6d 75 6c 74 69 63 61 73 74 | so.deny.link.local.and.multicast |
| 14fd60 | 20 69 6e 20 74 68 65 20 72 75 6c 65 20 32 30 20 61 63 74 69 6f 6e 20 64 65 6e 79 2e 00 57 65 20 | .in.the.rule.20.action.deny..We. |
| 14fd80 | 64 6f 20 6e 6f 74 20 68 61 76 65 20 43 4c 49 20 6e 6f 64 65 73 20 66 6f 72 20 65 76 65 72 79 20 | do.not.have.CLI.nodes.for.every. |
| 14fda0 | 73 69 6e 67 6c 65 20 4f 70 65 6e 56 50 4e 20 6f 70 74 69 6f 6e 2e 20 49 66 20 61 6e 20 6f 70 74 | single.OpenVPN.option..If.an.opt |
| 14fdc0 | 69 6f 6e 20 69 73 20 6d 69 73 73 69 6e 67 2c 20 61 20 66 65 61 74 75 72 65 20 72 65 71 75 65 73 | ion.is.missing,.a.feature.reques |
| 14fde0 | 74 20 73 68 6f 75 6c 64 20 62 65 20 6f 70 65 6e 65 64 20 61 74 20 50 68 61 62 72 69 63 61 74 6f | t.should.be.opened.at.Phabricato |
| 14fe00 | 72 5f 20 73 6f 20 61 6c 6c 20 75 73 65 72 73 20 63 61 6e 20 62 65 6e 65 66 69 74 20 66 72 6f 6d | r_.so.all.users.can.benefit.from |
| 14fe20 | 20 69 74 20 28 73 65 65 20 3a 72 65 66 3a 60 69 73 73 75 65 73 5f 66 65 61 74 75 72 65 73 60 29 | .it.(see.:ref:`issues_features`) |
| 14fe40 | 2e 00 57 65 20 64 6f 6e 27 74 20 72 65 63 6f 6d 65 6e 64 20 74 6f 20 75 73 65 20 61 72 67 75 6d | ..We.don't.recomend.to.use.argum |
| 14fe60 | 65 6e 74 73 2e 20 55 73 69 6e 67 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 73 20 69 73 20 6d 6f 72 65 | ents..Using.environments.is.more |
| 14fe80 | 20 70 72 65 66 66 65 72 65 62 6c 65 2e 00 57 65 20 67 65 6e 65 72 61 74 65 20 61 20 63 6f 6e 6e | .preffereble..We.generate.a.conn |
| 14fea0 | 65 63 74 69 6f 6e 20 70 72 6f 66 69 6c 65 20 75 73 65 64 20 62 79 20 57 69 6e 64 6f 77 73 20 63 | ection.profile.used.by.Windows.c |
| 14fec0 | 6c 69 65 6e 74 73 20 74 68 61 74 20 77 69 6c 6c 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 | lients.that.will.connect.to.the. |
| 14fee0 | 22 72 77 22 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 6e 20 6f 75 72 20 56 79 4f 53 20 73 65 72 76 | "rw".connection.on.our.VyOS.serv |
| 14ff00 | 65 72 20 6f 6e 20 74 68 65 20 56 50 4e 20 73 65 72 76 65 72 73 20 49 50 20 61 64 64 72 65 73 73 | er.on.the.VPN.servers.IP.address |
| 14ff20 | 2f 66 71 64 6e 20 60 76 70 6e 2e 76 79 6f 73 2e 6e 65 74 60 2e 00 57 65 20 6c 69 73 74 65 6e 20 | /fqdn.`vpn.vyos.net`..We.listen. |
| 14ff40 | 6f 6e 20 70 6f 72 74 20 35 31 38 32 30 00 57 65 20 6e 65 65 64 20 74 6f 20 67 65 6e 65 72 61 74 | on.port.51820.We.need.to.generat |
| 14ff60 | 65 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 77 68 69 63 68 20 61 75 74 68 65 6e 74 69 | e.the.certificate.which.authenti |
| 14ff80 | 63 61 74 65 73 20 75 73 65 72 73 20 77 68 6f 20 61 74 74 65 6d 70 74 20 74 6f 20 61 63 63 65 73 | cates.users.who.attempt.to.acces |
| 14ffa0 | 73 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 72 65 73 6f 75 72 63 65 20 74 68 72 6f 75 67 68 20 74 | s.the.network.resource.through.t |
| 14ffc0 | 68 65 20 53 53 4c 20 56 50 4e 20 74 75 6e 6e 65 6c 73 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e | he.SSL.VPN.tunnels..The.followin |
| 14ffe0 | 67 20 63 6f 6d 6d 61 6e 64 73 20 77 69 6c 6c 20 63 72 65 61 74 65 20 61 20 73 65 6c 66 20 73 69 | g.commands.will.create.a.self.si |
| 150000 | 67 6e 65 64 20 63 65 72 74 69 66 69 63 61 74 65 73 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 73 74 | gned.certificates.and.will.be.st |
| 150020 | 6f 72 65 64 20 69 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 57 65 20 6e 6f 77 20 75 74 | ored.in.configuration:.We.now.ut |
| 150040 | 69 6c 69 7a 65 20 60 74 75 6e 65 64 60 20 66 6f 72 20 64 79 6e 61 6d 69 63 20 72 65 73 6f 75 72 | ilize.`tuned`.for.dynamic.resour |
| 150060 | 63 65 20 62 61 6c 61 6e 63 69 6e 67 20 62 61 73 65 64 20 6f 6e 20 70 72 6f 66 69 6c 65 73 2e 00 | ce.balancing.based.on.profiles.. |
| 150080 | 57 65 20 6f 6e 6c 79 20 61 6c 6c 6f 77 20 74 68 65 20 31 39 32 2e 31 36 38 2e 32 2e 30 2f 32 34 | We.only.allow.the.192.168.2.0/24 |
| 1500a0 | 20 73 75 62 6e 65 74 20 74 6f 20 74 72 61 76 65 6c 20 6f 76 65 72 20 74 68 65 20 74 75 6e 6e 65 | .subnet.to.travel.over.the.tunne |
| 1500c0 | 6c 00 57 65 20 6f 6e 6c 79 20 6e 65 65 64 20 61 20 73 69 6e 67 6c 65 20 73 74 65 70 20 66 6f 72 | l.We.only.need.a.single.step.for |
| 1500e0 | 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 3a 00 57 65 20 72 6f 75 74 65 20 61 6c 6c 20 74 72 | .this.interface:.We.route.all.tr |
| 150100 | 61 66 66 69 63 20 66 6f 72 20 74 68 65 20 31 39 32 2e 31 36 38 2e 32 2e 30 2f 32 34 20 6e 65 74 | affic.for.the.192.168.2.0/24.net |
| 150120 | 77 6f 72 6b 20 74 6f 20 69 6e 74 65 72 66 61 63 65 20 60 77 67 30 31 60 00 57 65 20 75 73 65 20 | work.to.interface.`wg01`.We.use. |
| 150140 | 61 20 76 6f 6e 74 61 69 6e 65 72 20 70 72 6f 76 69 64 69 6e 67 20 74 68 65 20 54 41 43 41 43 53 | a.vontainer.providing.the.TACACS |
| 150160 | 20 73 65 72 76 65 20 72 69 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 2e 00 57 65 20 77 69 6c 6c | .serve.rin.this.example..We.will |
| 150180 | 20 6f 6e 6c 79 20 61 63 63 65 70 74 20 74 72 61 66 66 69 63 20 63 6f 6d 69 6e 67 20 66 72 6f 6d | .only.accept.traffic.coming.from |
| 1501a0 | 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 30 2c 20 70 72 6f 74 6f 63 6f 6c 20 74 63 70 20 61 6e | .interface.eth0,.protocol.tcp.an |
| 1501c0 | 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 31 31 32 32 2e 20 41 6c 6c 20 6f 74 68 | d.destination.port.1122..All.oth |
| 1501e0 | 65 72 20 74 72 61 66 66 69 63 20 74 72 65 73 70 61 73 73 69 6e 67 20 74 68 65 20 72 6f 75 74 65 | er.traffic.trespassing.the.route |
| 150200 | 72 20 73 68 6f 75 6c 64 20 62 65 20 62 6c 6f 63 6b 65 64 2e 00 57 65 20 77 69 6c 6c 20 6f 6e 6c | r.should.be.blocked..We.will.onl |
| 150220 | 79 20 61 63 63 65 70 74 20 74 72 61 66 66 69 63 20 63 6f 6d 6d 69 6e 67 20 66 72 6f 6d 20 69 6e | y.accept.traffic.comming.from.in |
| 150240 | 74 65 72 66 61 63 65 20 65 74 68 30 2c 20 70 72 6f 74 6f 63 6f 6c 20 74 63 70 20 61 6e 64 20 64 | terface.eth0,.protocol.tcp.and.d |
| 150260 | 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 31 31 32 32 2e 20 41 6c 6c 20 6f 74 68 65 72 20 | estination.port.1122..All.other. |
| 150280 | 74 72 61 66 66 69 63 20 74 72 61 73 70 61 73 73 69 6e 67 20 74 68 65 20 72 6f 75 74 65 72 20 73 | traffic.traspassing.the.router.s |
| 1502a0 | 68 6f 75 6c 64 20 62 65 20 62 6c 6f 63 6b 65 64 2e 00 57 65 27 6c 6c 20 63 6f 6e 66 69 67 75 72 | hould.be.blocked..We'll.configur |
| 1502c0 | 65 20 4f 70 65 6e 56 50 4e 20 75 73 69 6e 67 20 73 65 6c 66 2d 73 69 67 6e 65 64 20 63 65 72 74 | e.OpenVPN.using.self-signed.cert |
| 1502e0 | 69 66 69 63 61 74 65 73 2c 20 61 6e 64 20 74 68 65 6e 20 64 69 73 63 75 73 73 20 74 68 65 20 6c | ificates,.and.then.discuss.the.l |
| 150300 | 65 67 61 63 79 20 70 72 65 2d 73 68 61 72 65 64 20 6b 65 79 20 6d 6f 64 65 2e 00 57 65 27 6c 6c | egacy.pre-shared.key.mode..We'll |
| 150320 | 20 75 73 65 20 74 68 65 20 49 4b 45 20 61 6e 64 20 45 53 50 20 67 72 6f 75 70 73 20 63 72 65 61 | .use.the.IKE.and.ESP.groups.crea |
| 150340 | 74 65 64 20 61 62 6f 76 65 20 66 6f 72 20 74 68 69 73 20 56 50 4e 2e 20 42 65 63 61 75 73 65 20 | ted.above.for.this.VPN..Because. |
| 150360 | 77 65 20 6e 65 65 64 20 61 63 63 65 73 73 20 74 6f 20 32 20 64 69 66 66 65 72 65 6e 74 20 73 75 | we.need.access.to.2.different.su |
| 150380 | 62 6e 65 74 73 20 6f 6e 20 74 68 65 20 66 61 72 20 73 69 64 65 2c 20 77 65 20 77 69 6c 6c 20 6e | bnets.on.the.far.side,.we.will.n |
| 1503a0 | 65 65 64 20 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 74 75 6e 6e 65 6c 73 2e 20 49 66 20 79 6f | eed.two.different.tunnels..If.yo |
| 1503c0 | 75 20 63 68 61 6e 67 65 64 20 74 68 65 20 6e 61 6d 65 73 20 6f 66 20 74 68 65 20 45 53 50 20 67 | u.changed.the.names.of.the.ESP.g |
| 1503e0 | 72 6f 75 70 20 61 6e 64 20 49 4b 45 20 67 72 6f 75 70 20 69 6e 20 74 68 65 20 70 72 65 76 69 6f | roup.and.IKE.group.in.the.previo |
| 150400 | 75 73 20 73 74 65 70 2c 20 6d 61 6b 65 20 73 75 72 65 20 79 6f 75 20 75 73 65 20 74 68 65 20 63 | us.step,.make.sure.you.use.the.c |
| 150420 | 6f 72 72 65 63 74 20 6e 61 6d 65 73 20 68 65 72 65 20 74 6f 6f 2e 00 57 65 62 20 50 72 6f 78 79 | orrect.names.here.too..Web.Proxy |
| 150440 | 20 41 75 74 6f 64 69 73 63 6f 76 65 72 79 20 28 57 50 41 44 29 20 55 52 4c 00 57 65 62 70 72 6f | .Autodiscovery.(WPAD).URL.Webpro |
| 150460 | 78 79 00 57 65 62 73 65 72 76 65 72 20 73 68 6f 75 6c 64 20 6c 69 73 74 65 6e 20 6f 6e 20 73 70 | xy.Webserver.should.listen.on.sp |
| 150480 | 65 63 69 66 69 65 64 20 70 6f 72 74 2e 00 57 65 62 73 65 72 76 65 72 20 73 68 6f 75 6c 64 20 6f | ecified.port..Webserver.should.o |
| 1504a0 | 6e 6c 79 20 6c 69 73 74 65 6e 20 6f 6e 20 73 70 65 63 69 66 69 65 64 20 49 50 20 61 64 64 72 65 | nly.listen.on.specified.IP.addre |
| 1504c0 | 73 73 00 57 68 65 6e 20 4c 44 50 20 69 73 20 77 6f 72 6b 69 6e 67 2c 20 79 6f 75 20 77 69 6c 6c | ss.When.LDP.is.working,.you.will |
| 1504e0 | 20 62 65 20 61 62 6c 65 20 74 6f 20 73 65 65 20 6c 61 62 65 6c 20 69 6e 66 6f 72 6d 61 74 69 6f | .be.able.to.see.label.informatio |
| 150500 | 6e 20 69 6e 20 74 68 65 20 6f 75 74 63 6f 6d 65 20 6f 66 20 60 60 73 68 6f 77 20 69 70 20 72 6f | n.in.the.outcome.of.``show.ip.ro |
| 150520 | 75 74 65 60 60 2e 20 42 65 73 69 64 65 73 20 74 68 61 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2c | ute``..Besides.that.information, |
| 150540 | 20 74 68 65 72 65 20 61 72 65 20 61 6c 73 6f 20 73 70 65 63 69 66 69 63 20 2a 73 68 6f 77 2a 20 | .there.are.also.specific.*show*. |
| 150560 | 63 6f 6d 6d 61 6e 64 73 20 66 6f 72 20 4c 44 50 3a 00 57 68 65 6e 20 50 49 4d 20 72 65 63 65 69 | commands.for.LDP:.When.PIM.recei |
| 150580 | 76 65 73 20 61 20 72 65 67 69 73 74 65 72 20 70 61 63 6b 65 74 20 74 68 65 20 73 6f 75 72 63 65 | ves.a.register.packet.the.source |
| 1505a0 | 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 63 6f 6d 70 61 72 65 64 20 | .of.the.packet.will.be.compared. |
| 1505c0 | 74 6f 20 74 68 65 20 70 72 65 66 69 78 2d 6c 69 73 74 20 73 70 65 63 69 66 69 65 64 2c 20 61 6e | to.the.prefix-list.specified,.an |
| 1505e0 | 64 20 69 66 20 61 20 70 65 72 6d 69 74 20 69 73 20 72 65 63 65 69 76 65 64 20 6e 6f 72 6d 61 6c | d.if.a.permit.is.received.normal |
| 150600 | 20 70 72 6f 63 65 73 73 69 6e 67 20 63 6f 6e 74 69 6e 75 65 73 2e 20 49 66 20 61 20 64 65 6e 79 | .processing.continues..If.a.deny |
| 150620 | 20 69 73 20 72 65 74 75 72 6e 65 64 20 66 6f 72 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 | .is.returned.for.the.source.addr |
| 150640 | 65 73 73 20 6f 66 20 74 68 65 20 72 65 67 69 73 74 65 72 20 70 61 63 6b 65 74 20 61 20 72 65 67 | ess.of.the.register.packet.a.reg |
| 150660 | 69 73 74 65 72 20 73 74 6f 70 20 6d 65 73 73 61 67 65 20 69 73 20 73 65 6e 74 20 74 6f 20 74 68 | ister.stop.message.is.sent.to.th |
| 150680 | 65 20 73 6f 75 72 63 65 2e 00 57 68 65 6e 20 56 52 46 73 20 61 72 65 20 75 73 65 64 20 69 74 20 | e.source..When.VRFs.are.used.it. |
| 1506a0 | 69 73 20 6e 6f 74 20 6f 6e 6c 79 20 6d 61 6e 64 61 74 6f 72 79 20 74 6f 20 63 72 65 61 74 65 20 | is.not.only.mandatory.to.create. |
| 1506c0 | 61 20 56 52 46 20 62 75 74 20 61 6c 73 6f 20 74 68 65 20 56 52 46 20 69 74 73 65 6c 66 20 6e 65 | a.VRF.but.also.the.VRF.itself.ne |
| 1506e0 | 65 64 73 20 74 6f 20 62 65 20 61 73 73 69 67 6e 65 64 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 | eds.to.be.assigned.to.an.interfa |
| 150700 | 63 65 2e 00 57 68 65 6e 20 61 20 60 60 63 75 73 74 6f 6d 60 60 20 44 79 6e 44 4e 53 20 70 72 6f | ce..When.a.``custom``.DynDNS.pro |
| 150720 | 76 69 64 65 72 20 69 73 20 75 73 65 64 20 74 68 65 20 60 3c 73 65 72 76 65 72 3e 60 20 77 68 65 | vider.is.used.the.`<server>`.whe |
| 150740 | 72 65 20 75 70 64 61 74 65 20 72 65 71 75 65 73 74 73 20 61 72 65 20 62 65 69 6e 67 20 73 65 6e | re.update.requests.are.being.sen |
| 150760 | 74 20 74 6f 20 6d 75 73 74 20 62 65 20 73 70 65 63 69 66 69 65 64 2e 00 57 68 65 6e 20 61 20 60 | t.to.must.be.specified..When.a.` |
| 150780 | 60 63 75 73 74 6f 6d 60 60 20 44 79 6e 44 4e 53 20 70 72 6f 76 69 64 65 72 20 69 73 20 75 73 65 | `custom``.DynDNS.provider.is.use |
| 1507a0 | 64 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 20 75 73 65 64 20 66 6f 72 20 63 6f 6d 6d 75 6e 69 63 | d.the.protocol.used.for.communic |
| 1507c0 | 61 74 69 6e 67 20 74 6f 20 74 68 65 20 70 72 6f 76 69 64 65 72 20 6d 75 73 74 20 62 65 20 73 70 | ating.to.the.provider.must.be.sp |
| 1507e0 | 65 63 69 66 69 65 64 20 75 6e 64 65 72 20 60 3c 70 72 6f 74 6f 63 6f 6c 3e 60 2e 20 53 65 65 20 | ecified.under.`<protocol>`..See. |
| 150800 | 74 68 65 20 65 6d 62 65 64 64 65 64 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 68 65 6c 70 65 72 20 66 | the.embedded.completion.helper.f |
| 150820 | 6f 72 20 61 76 61 69 6c 61 62 6c 65 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 57 68 65 6e 20 61 20 60 | or.available.protocols..When.a.` |
| 150840 | 60 63 75 73 74 6f 6d 60 60 20 44 79 6e 44 4e 53 20 70 72 6f 76 69 64 65 72 20 69 73 20 75 73 65 | `custom``.DynDNS.provider.is.use |
| 150860 | 64 2c 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 20 75 73 65 64 20 66 6f 72 20 63 6f 6d 6d 75 6e 69 | d,.the.protocol.used.for.communi |
| 150880 | 63 61 74 69 6e 67 20 74 6f 20 74 68 65 20 70 72 6f 76 69 64 65 72 20 6d 75 73 74 20 62 65 20 73 | cating.to.the.provider.must.be.s |
| 1508a0 | 70 65 63 69 66 69 65 64 20 75 6e 64 65 72 20 60 3c 70 72 6f 74 6f 63 6f 6c 3e 60 2e 20 53 65 65 | pecified.under.`<protocol>`..See |
| 1508c0 | 20 74 68 65 20 65 6d 62 65 64 64 65 64 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 68 65 6c 70 65 72 20 | .the.embedded.completion.helper. |
| 1508e0 | 77 68 65 6e 20 65 6e 74 65 72 69 6e 67 20 61 62 6f 76 65 20 63 6f 6d 6d 61 6e 64 20 66 6f 72 20 | when.entering.above.command.for. |
| 150900 | 61 76 61 69 6c 61 62 6c 65 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 57 68 65 6e 20 61 20 66 61 69 6c | available.protocols..When.a.fail |
| 150920 | 6f 76 65 72 20 6f 63 63 75 72 73 20 69 6e 20 61 63 74 69 76 65 2d 62 61 63 6b 75 70 20 6d 6f 64 | over.occurs.in.active-backup.mod |
| 150940 | 65 2c 20 62 6f 6e 64 69 6e 67 20 77 69 6c 6c 20 69 73 73 75 65 20 6f 6e 65 20 6f 72 20 6d 6f 72 | e,.bonding.will.issue.one.or.mor |
| 150960 | 65 20 67 72 61 74 75 69 74 6f 75 73 20 41 52 50 73 20 6f 6e 20 74 68 65 20 6e 65 77 6c 79 20 61 | e.gratuitous.ARPs.on.the.newly.a |
| 150980 | 63 74 69 76 65 20 73 6c 61 76 65 2e 20 4f 6e 65 20 67 72 61 74 75 69 74 6f 75 73 20 41 52 50 20 | ctive.slave..One.gratuitous.ARP. |
| 1509a0 | 69 73 20 69 73 73 75 65 64 20 66 6f 72 20 74 68 65 20 62 6f 6e 64 69 6e 67 20 6d 61 73 74 65 72 | is.issued.for.the.bonding.master |
| 1509c0 | 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 65 61 63 68 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 | .interface.and.each.VLAN.interfa |
| 1509e0 | 63 65 73 20 63 6f 6e 66 69 67 75 72 65 64 20 61 62 6f 76 65 20 69 74 2c 20 70 72 6f 76 69 64 65 | ces.configured.above.it,.provide |
| 150a00 | 64 20 74 68 61 74 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 68 61 73 20 61 74 20 6c 65 61 73 | d.that.the.interface.has.at.leas |
| 150a20 | 74 20 6f 6e 65 20 49 50 20 61 64 64 72 65 73 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 47 72 61 | t.one.IP.address.configured..Gra |
| 150a40 | 74 75 69 74 6f 75 73 20 41 52 50 73 20 69 73 73 75 65 64 20 66 6f 72 20 56 4c 41 4e 20 69 6e 74 | tuitous.ARPs.issued.for.VLAN.int |
| 150a60 | 65 72 66 61 63 65 73 20 61 72 65 20 74 61 67 67 65 64 20 77 69 74 68 20 74 68 65 20 61 70 70 72 | erfaces.are.tagged.with.the.appr |
| 150a80 | 6f 70 72 69 61 74 65 20 56 4c 41 4e 20 69 64 2e 00 57 68 65 6e 20 61 20 6c 69 6e 6b 20 69 73 20 | opriate.VLAN.id..When.a.link.is. |
| 150aa0 | 72 65 63 6f 6e 6e 65 63 74 65 64 20 6f 72 20 61 20 6e 65 77 20 73 6c 61 76 65 20 6a 6f 69 6e 73 | reconnected.or.a.new.slave.joins |
| 150ac0 | 20 74 68 65 20 62 6f 6e 64 20 74 68 65 20 72 65 63 65 69 76 65 20 74 72 61 66 66 69 63 20 69 73 | .the.bond.the.receive.traffic.is |
| 150ae0 | 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 61 6d 6f 6e 67 20 61 6c 6c 20 61 63 74 69 76 65 20 | .redistributed.among.all.active. |
| 150b00 | 73 6c 61 76 65 73 20 69 6e 20 74 68 65 20 62 6f 6e 64 20 62 79 20 69 6e 69 74 69 61 74 69 6e 67 | slaves.in.the.bond.by.initiating |
| 150b20 | 20 41 52 50 20 52 65 70 6c 69 65 73 20 77 69 74 68 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 4d | .ARP.Replies.with.the.selected.M |
| 150b40 | 41 43 20 61 64 64 72 65 73 73 20 74 6f 20 65 61 63 68 20 6f 66 20 74 68 65 20 63 6c 69 65 6e 74 | AC.address.to.each.of.the.client |
| 150b60 | 73 2e 20 54 68 65 20 75 70 64 65 6c 61 79 20 70 61 72 61 6d 65 74 65 72 20 28 64 65 74 61 69 6c | s..The.updelay.parameter.(detail |
| 150b80 | 65 64 20 62 65 6c 6f 77 29 20 6d 75 73 74 20 62 65 20 73 65 74 20 74 6f 20 61 20 76 61 6c 75 65 | ed.below).must.be.set.to.a.value |
| 150ba0 | 20 65 71 75 61 6c 20 6f 72 20 67 72 65 61 74 65 72 20 74 68 61 6e 20 74 68 65 20 73 77 69 74 63 | .equal.or.greater.than.the.switc |
| 150bc0 | 68 27 73 20 66 6f 72 77 61 72 64 69 6e 67 20 64 65 6c 61 79 20 73 6f 20 74 68 61 74 20 74 68 65 | h's.forwarding.delay.so.that.the |
| 150be0 | 20 41 52 50 20 52 65 70 6c 69 65 73 20 73 65 6e 74 20 74 6f 20 74 68 65 20 70 65 65 72 73 20 77 | .ARP.Replies.sent.to.the.peers.w |
| 150c00 | 69 6c 6c 20 6e 6f 74 20 62 65 20 62 6c 6f 63 6b 65 64 20 62 79 20 74 68 65 20 73 77 69 74 63 68 | ill.not.be.blocked.by.the.switch |
| 150c20 | 2e 00 57 68 65 6e 20 61 20 70 61 63 6b 65 74 20 69 73 20 74 6f 20 62 65 20 73 65 6e 74 2c 20 69 | ..When.a.packet.is.to.be.sent,.i |
| 150c40 | 74 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 67 6f 20 74 68 72 6f 75 67 68 20 74 68 61 74 20 71 | t.will.have.to.go.through.that.q |
| 150c60 | 75 65 75 65 2c 20 73 6f 20 74 68 65 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 70 6c 61 63 | ueue,.so.the.packet.will.be.plac |
| 150c80 | 65 64 20 61 74 20 74 68 65 20 74 61 69 6c 20 6f 66 20 69 74 2e 20 57 68 65 6e 20 74 68 65 20 70 | ed.at.the.tail.of.it..When.the.p |
| 150ca0 | 61 63 6b 65 74 20 63 6f 6d 70 6c 65 74 65 6c 79 20 67 6f 65 73 20 74 68 72 6f 75 67 68 20 69 74 | acket.completely.goes.through.it |
| 150cc0 | 2c 20 69 74 20 77 69 6c 6c 20 62 65 20 64 65 71 75 65 75 65 64 20 65 6d 70 74 79 69 6e 67 20 69 | ,.it.will.be.dequeued.emptying.i |
| 150ce0 | 74 73 20 70 6c 61 63 65 20 69 6e 20 74 68 65 20 71 75 65 75 65 20 61 6e 64 20 62 65 69 6e 67 20 | ts.place.in.the.queue.and.being. |
| 150d00 | 65 76 65 6e 74 75 61 6c 6c 79 20 68 61 6e 64 65 64 20 74 6f 20 74 68 65 20 4e 49 43 20 74 6f 20 | eventually.handed.to.the.NIC.to. |
| 150d20 | 62 65 20 61 63 74 75 61 6c 6c 79 20 73 65 6e 74 20 6f 75 74 2e 00 57 68 65 6e 20 61 20 70 65 65 | be.actually.sent.out..When.a.pee |
| 150d40 | 72 20 72 65 63 65 69 76 65 73 20 61 20 6d 61 72 74 69 61 6e 20 6e 65 78 74 68 6f 70 20 61 73 20 | r.receives.a.martian.nexthop.as. |
| 150d60 | 70 61 72 74 20 6f 66 20 74 68 65 20 4e 4c 52 49 20 66 6f 72 20 61 20 72 6f 75 74 65 20 70 65 72 | part.of.the.NLRI.for.a.route.per |
| 150d80 | 6d 69 74 20 74 68 65 20 6e 65 78 74 68 6f 70 20 74 6f 20 62 65 20 75 73 65 64 20 61 73 20 73 75 | mit.the.nexthop.to.be.used.as.su |
| 150da0 | 63 68 2c 20 69 6e 73 74 65 61 64 20 6f 66 20 72 65 6a 65 63 74 69 6e 67 20 61 6e 64 20 72 65 73 | ch,.instead.of.rejecting.and.res |
| 150dc0 | 65 74 74 69 6e 67 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 57 68 65 6e 20 61 20 72 6f | etting.the.connection..When.a.ro |
| 150de0 | 75 74 65 20 66 61 69 6c 73 2c 20 61 20 72 6f 75 74 69 6e 67 20 75 70 64 61 74 65 20 69 73 20 73 | ute.fails,.a.routing.update.is.s |
| 150e00 | 65 6e 74 20 74 6f 20 77 69 74 68 64 72 61 77 20 74 68 65 20 72 6f 75 74 65 20 66 72 6f 6d 20 74 | ent.to.withdraw.the.route.from.t |
| 150e20 | 68 65 20 6e 65 74 77 6f 72 6b 27 73 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 73 2e 20 57 68 65 | he.network's.routing.tables..Whe |
| 150e40 | 6e 20 74 68 65 20 72 6f 75 74 65 20 69 73 20 72 65 2d 65 6e 61 62 6c 65 64 2c 20 74 68 65 20 63 | n.the.route.is.re-enabled,.the.c |
| 150e60 | 68 61 6e 67 65 20 69 6e 20 61 76 61 69 6c 61 62 69 6c 69 74 79 20 69 73 20 61 6c 73 6f 20 61 64 | hange.in.availability.is.also.ad |
| 150e80 | 76 65 72 74 69 73 65 64 2e 20 41 20 72 6f 75 74 65 20 74 68 61 74 20 63 6f 6e 74 69 6e 75 61 6c | vertised..A.route.that.continual |
| 150ea0 | 6c 79 20 66 61 69 6c 73 20 61 6e 64 20 72 65 74 75 72 6e 73 20 72 65 71 75 69 72 65 73 20 61 20 | ly.fails.and.returns.requires.a. |
| 150ec0 | 67 72 65 61 74 20 64 65 61 6c 20 6f 66 20 6e 65 74 77 6f 72 6b 20 74 72 61 66 66 69 63 20 74 6f | great.deal.of.network.traffic.to |
| 150ee0 | 20 75 70 64 61 74 65 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 61 62 6f 75 74 20 74 68 65 20 72 6f | .update.the.network.about.the.ro |
| 150f00 | 75 74 65 27 73 20 73 74 61 74 75 73 2e 00 57 68 65 6e 20 61 64 64 69 6e 67 20 49 50 76 36 20 72 | ute's.status..When.adding.IPv6.r |
| 150f20 | 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 65 78 63 68 61 6e 67 65 20 66 65 61 74 | outing.information.exchange.feat |
| 150f40 | 75 72 65 20 74 6f 20 42 47 50 2e 20 54 68 65 72 65 20 77 65 72 65 20 73 6f 6d 65 20 70 72 6f 70 | ure.to.BGP..There.were.some.prop |
| 150f60 | 6f 73 61 6c 73 2e 20 3a 61 62 62 72 3a 60 49 45 54 46 20 28 49 6e 74 65 72 6e 65 74 20 45 6e 67 | osals..:abbr:`IETF.(Internet.Eng |
| 150f80 | 69 6e 65 65 72 69 6e 67 20 54 61 73 6b 20 46 6f 72 63 65 29 60 20 3a 61 62 62 72 3a 60 49 44 52 | ineering.Task.Force)`.:abbr:`IDR |
| 150fa0 | 20 28 49 6e 74 65 72 20 44 6f 6d 61 69 6e 20 52 6f 75 74 69 6e 67 29 60 20 61 64 6f 70 74 65 64 | .(Inter.Domain.Routing)`.adopted |
| 150fc0 | 20 61 20 70 72 6f 70 6f 73 61 6c 20 63 61 6c 6c 65 64 20 4d 75 6c 74 69 70 72 6f 74 6f 63 6f 6c | .a.proposal.called.Multiprotocol |
| 150fe0 | 20 45 78 74 65 6e 73 69 6f 6e 20 66 6f 72 20 42 47 50 2e 20 54 68 65 20 73 70 65 63 69 66 69 63 | .Extension.for.BGP..The.specific |
| 151000 | 61 74 69 6f 6e 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 32 32 38 33 | ation.is.described.in.:rfc:`2283 |
| 151020 | 60 2e 20 54 68 65 20 70 72 6f 74 6f 63 6f 6c 20 64 6f 65 73 20 6e 6f 74 20 64 65 66 69 6e 65 20 | `..The.protocol.does.not.define. |
| 151040 | 6e 65 77 20 70 72 6f 74 6f 63 6f 6c 73 2e 20 49 74 20 64 65 66 69 6e 65 73 20 6e 65 77 20 61 74 | new.protocols..It.defines.new.at |
| 151060 | 74 72 69 62 75 74 65 73 20 74 6f 20 65 78 69 73 74 69 6e 67 20 42 47 50 2e 20 57 68 65 6e 20 69 | tributes.to.existing.BGP..When.i |
| 151080 | 74 20 69 73 20 75 73 65 64 20 65 78 63 68 61 6e 67 69 6e 67 20 49 50 76 36 20 72 6f 75 74 69 6e | t.is.used.exchanging.IPv6.routin |
| 1510a0 | 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 74 20 69 73 20 63 61 6c 6c 65 64 20 42 47 50 2d 34 | g.information.it.is.called.BGP-4 |
| 1510c0 | 2b 2e 20 57 68 65 6e 20 69 74 20 69 73 20 75 73 65 64 20 66 6f 72 20 65 78 63 68 61 6e 67 69 6e | +..When.it.is.used.for.exchangin |
| 1510e0 | 67 20 6d 75 6c 74 69 63 61 73 74 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 | g.multicast.routing.information. |
| 151100 | 69 74 20 69 73 20 63 61 6c 6c 65 64 20 4d 42 47 50 2e 00 57 68 65 6e 20 61 6c 6c 20 74 68 65 20 | it.is.called.MBGP..When.all.the. |
| 151120 | 75 6e 64 65 72 6c 61 79 20 6c 69 6e 6b 73 20 67 6f 20 64 6f 77 6e 20 74 68 65 20 50 45 20 6e 6f | underlay.links.go.down.the.PE.no |
| 151140 | 20 6c 6f 6e 67 65 72 20 68 61 73 20 61 63 63 65 73 73 20 74 6f 20 74 68 65 20 56 78 4c 41 4e 20 | .longer.has.access.to.the.VxLAN. |
| 151160 | 2b 6f 76 65 72 6c 61 79 2e 20 54 6f 20 70 72 65 76 65 6e 74 20 62 6c 61 63 6b 68 6f 6c 69 6e 67 | +overlay..To.prevent.blackholing |
| 151180 | 20 6f 66 20 74 72 61 66 66 69 63 20 74 68 65 20 73 65 72 76 65 72 2f 45 53 20 6c 69 6e 6b 73 20 | .of.traffic.the.server/ES.links. |
| 1511a0 | 61 72 65 20 70 72 6f 74 6f 64 6f 77 6e 65 64 20 6f 6e 20 74 68 65 20 50 45 2e 00 57 68 65 6e 20 | are.protodowned.on.the.PE..When. |
| 1511c0 | 61 6e 20 61 75 74 68 6f 72 69 74 61 74 69 76 65 20 73 65 72 76 65 72 20 64 6f 65 73 20 6e 6f 74 | an.authoritative.server.does.not |
| 1511e0 | 20 61 6e 73 77 65 72 20 61 20 71 75 65 72 79 20 6f 72 20 73 65 6e 64 73 20 61 20 72 65 70 6c 79 | .answer.a.query.or.sends.a.reply |
| 151200 | 20 74 68 65 20 72 65 63 75 72 73 6f 72 20 64 6f 65 73 20 6e 6f 74 20 6c 69 6b 65 2c 20 69 74 20 | .the.recursor.does.not.like,.it. |
| 151220 | 69 73 20 74 68 72 6f 74 74 6c 65 64 2e 20 41 6e 79 20 73 65 72 76 65 72 73 20 6d 61 74 63 68 69 | is.throttled..Any.servers.matchi |
| 151240 | 6e 67 20 74 68 65 20 73 75 70 70 6c 69 65 64 20 6e 65 74 6d 61 73 6b 73 20 77 69 6c 6c 20 6e 65 | ng.the.supplied.netmasks.will.ne |
| 151260 | 76 65 72 20 62 65 20 74 68 72 6f 74 74 6c 65 64 2e 00 57 68 65 6e 20 63 6f 6e 66 69 67 75 72 65 | ver.be.throttled..When.configure |
| 151280 | 64 2c 20 50 50 50 6f 45 20 77 69 6c 6c 20 63 72 65 61 74 65 20 74 68 65 20 6e 65 63 65 73 73 61 | d,.PPPoE.will.create.the.necessa |
| 1512a0 | 72 79 20 56 4c 41 4e 73 20 77 68 65 6e 20 72 65 71 75 69 72 65 64 2e 20 4f 6e 63 65 20 74 68 65 | ry.VLANs.when.required..Once.the |
| 1512c0 | 20 75 73 65 72 20 73 65 73 73 69 6f 6e 20 68 61 73 20 62 65 65 6e 20 63 61 6e 63 65 6c 6c 65 64 | .user.session.has.been.cancelled |
| 1512e0 | 20 61 6e 64 20 74 68 65 20 56 4c 41 4e 20 69 73 20 6e 6f 74 20 6e 65 65 64 65 64 20 61 6e 79 6d | .and.the.VLAN.is.not.needed.anym |
| 151300 | 6f 72 65 2c 20 56 79 4f 53 20 77 69 6c 6c 20 72 65 6d 6f 76 65 20 69 74 20 61 67 61 69 6e 2e 00 | ore,.VyOS.will.remove.it.again.. |
| 151320 | 57 68 65 6e 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 20 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 | When.configuring.a.Random-Detect |
| 151340 | 20 70 6f 6c 69 63 79 3a 20 2a 2a 74 68 65 20 68 69 67 68 65 72 20 74 68 65 20 70 72 65 63 65 64 | .policy:.**the.higher.the.preced |
| 151360 | 65 6e 63 65 20 6e 75 6d 62 65 72 2c 20 74 68 65 20 68 69 67 68 65 72 20 74 68 65 20 70 72 69 6f | ence.number,.the.higher.the.prio |
| 151380 | 72 69 74 79 2a 2a 2e 00 57 68 65 6e 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 79 6f 75 72 20 66 69 | rity**..When.configuring.your.fi |
| 1513a0 | 6c 74 65 72 2c 20 79 6f 75 20 63 61 6e 20 75 73 65 20 74 68 65 20 60 60 54 61 62 60 60 20 6b 65 | lter,.you.can.use.the.``Tab``.ke |
| 1513c0 | 79 20 74 6f 20 73 65 65 20 74 68 65 20 6d 61 6e 79 20 64 69 66 66 65 72 65 6e 74 20 70 61 72 61 | y.to.see.the.many.different.para |
| 1513e0 | 6d 65 74 65 72 73 20 79 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 2e 00 57 68 65 6e 20 63 | meters.you.can.configure..When.c |
| 151400 | 6f 6e 66 69 67 75 72 69 6e 67 20 79 6f 75 72 20 74 72 61 66 66 69 63 20 70 6f 6c 69 63 79 2c 20 | onfiguring.your.traffic.policy,. |
| 151420 | 79 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 73 65 74 20 64 61 74 61 20 72 61 74 65 20 76 | you.will.have.to.set.data.rate.v |
| 151440 | 61 6c 75 65 73 2c 20 77 61 74 63 68 20 6f 75 74 20 74 68 65 20 75 6e 69 74 73 20 79 6f 75 20 61 | alues,.watch.out.the.units.you.a |
| 151460 | 72 65 20 6d 61 6e 61 67 69 6e 67 2c 20 69 74 20 69 73 20 65 61 73 79 20 74 6f 20 67 65 74 20 63 | re.managing,.it.is.easy.to.get.c |
| 151480 | 6f 6e 66 75 73 65 64 20 77 69 74 68 20 74 68 65 20 64 69 66 66 65 72 65 6e 74 20 70 72 65 66 69 | onfused.with.the.different.prefi |
| 1514a0 | 78 65 73 20 61 6e 64 20 73 75 66 66 69 78 65 73 20 79 6f 75 20 63 61 6e 20 75 73 65 2e 20 56 79 | xes.and.suffixes.you.can.use..Vy |
| 1514c0 | 4f 53 20 77 69 6c 6c 20 61 6c 77 61 79 73 20 73 68 6f 77 20 79 6f 75 20 74 68 65 20 64 69 66 66 | OS.will.always.show.you.the.diff |
| 1514e0 | 65 72 65 6e 74 20 75 6e 69 74 73 20 79 6f 75 20 63 61 6e 20 75 73 65 2e 00 57 68 65 6e 20 64 65 | erent.units.you.can.use..When.de |
| 151500 | 66 69 6e 69 6e 67 20 61 20 72 75 6c 65 2c 20 69 74 20 69 73 20 65 6e 61 62 6c 65 20 62 79 20 64 | fining.a.rule,.it.is.enable.by.d |
| 151520 | 65 66 61 75 6c 74 2e 20 49 6e 20 73 6f 6d 65 20 63 61 73 65 73 2c 20 69 74 20 69 73 20 75 73 65 | efault..In.some.cases,.it.is.use |
| 151540 | 66 75 6c 20 74 6f 20 6a 75 73 74 20 64 69 73 61 62 6c 65 20 74 68 65 20 72 75 6c 65 2c 20 72 61 | ful.to.just.disable.the.rule,.ra |
| 151560 | 74 68 65 72 20 74 68 61 6e 20 72 65 6d 6f 76 69 6e 67 20 69 74 2e 00 57 68 65 6e 20 64 65 66 69 | ther.than.removing.it..When.defi |
| 151580 | 6e 69 6e 67 20 61 20 72 75 6c 65 2c 20 69 74 20 69 73 20 65 6e 61 62 6c 65 64 20 62 79 20 64 65 | ning.a.rule,.it.is.enabled.by.de |
| 1515a0 | 66 61 75 6c 74 2e 20 49 6e 20 73 6f 6d 65 20 63 61 73 65 73 2c 20 69 74 20 69 73 20 75 73 65 66 | fault..In.some.cases,.it.is.usef |
| 1515c0 | 75 6c 20 74 6f 20 6a 75 73 74 20 64 69 73 61 62 6c 65 20 74 68 65 20 72 75 6c 65 2c 20 72 61 74 | ul.to.just.disable.the.rule,.rat |
| 1515e0 | 68 65 72 20 74 68 61 6e 20 72 65 6d 6f 76 69 6e 67 20 69 74 2e 00 57 68 65 6e 20 64 65 66 69 6e | her.than.removing.it..When.defin |
| 151600 | 69 6e 67 20 74 68 65 20 74 72 61 6e 73 6c 61 74 65 64 20 61 64 64 72 65 73 73 2c 20 63 61 6c 6c | ing.the.translated.address,.call |
| 151620 | 65 64 20 60 60 62 61 63 6b 65 6e 64 73 60 60 2c 20 61 20 60 60 77 65 69 67 68 74 60 60 20 6d 75 | ed.``backends``,.a.``weight``.mu |
| 151640 | 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 68 69 73 20 6c 65 74 73 20 74 68 65 20 | st.be.configured..This.lets.the. |
| 151660 | 75 73 65 72 20 64 65 66 69 6e 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 20 64 69 73 74 72 69 62 | user.define.load.balance.distrib |
| 151680 | 75 74 69 6f 6e 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 74 68 65 69 72 20 6e 65 65 64 73 2e 20 | ution.according.to.their.needs.. |
| 1516a0 | 54 68 65 6d 20 73 75 6d 20 6f 66 20 61 6c 6c 20 74 68 65 20 77 65 69 67 68 74 73 20 64 65 66 69 | Them.sum.of.all.the.weights.defi |
| 1516c0 | 6e 65 64 20 66 6f 72 20 74 68 65 20 62 61 63 6b 65 6e 64 73 20 73 68 6f 75 6c 64 20 62 65 20 65 | ned.for.the.backends.should.be.e |
| 1516e0 | 71 75 61 6c 20 74 6f 20 31 30 30 2e 20 49 6e 20 6f 64 65 72 20 77 6f 72 64 73 2c 20 74 68 65 20 | qual.to.100..In.oder.words,.the. |
| 151700 | 77 65 69 67 68 74 20 64 65 66 69 6e 65 64 20 66 6f 72 20 74 68 65 20 62 61 63 6b 65 6e 64 20 69 | weight.defined.for.the.backend.i |
| 151720 | 73 20 74 68 65 20 70 65 72 63 65 6e 74 61 67 65 20 6f 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 | s.the.percentage.of.the.connecti |
| 151740 | 6f 6e 73 20 74 68 61 74 20 77 69 6c 6c 20 72 65 63 65 69 76 65 20 73 75 63 68 20 62 61 63 6b 65 | ons.that.will.receive.such.backe |
| 151760 | 6e 64 2e 00 57 68 65 6e 20 64 65 71 75 65 75 69 6e 67 2c 20 65 61 63 68 20 68 61 73 68 2d 62 75 | nd..When.dequeuing,.each.hash-bu |
| 151780 | 63 6b 65 74 20 77 69 74 68 20 64 61 74 61 20 69 73 20 71 75 65 72 69 65 64 20 69 6e 20 61 20 72 | cket.with.data.is.queried.in.a.r |
| 1517a0 | 6f 75 6e 64 20 72 6f 62 69 6e 20 66 61 73 68 69 6f 6e 2e 20 59 6f 75 20 63 61 6e 20 63 6f 6e 66 | ound.robin.fashion..You.can.conf |
| 1517c0 | 69 67 75 72 65 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 71 75 65 75 65 2e 00 57 | igure.the.length.of.the.queue..W |
| 1517e0 | 68 65 6e 20 64 65 73 69 67 6e 69 6e 67 20 79 6f 75 72 20 4e 41 54 20 72 75 6c 65 73 65 74 20 6c | hen.designing.your.NAT.ruleset.l |
| 151800 | 65 61 76 65 20 73 6f 6d 65 20 73 70 61 63 65 20 62 65 74 77 65 65 6e 20 63 6f 6e 73 65 63 75 74 | eave.some.space.between.consecut |
| 151820 | 69 76 65 20 72 75 6c 65 73 20 66 6f 72 20 6c 61 74 65 72 20 65 78 74 65 6e 73 69 6f 6e 2e 20 59 | ive.rules.for.later.extension..Y |
| 151840 | 6f 75 72 20 72 75 6c 65 73 65 74 20 63 6f 75 6c 64 20 73 74 61 72 74 20 77 69 74 68 20 6e 75 6d | our.ruleset.could.start.with.num |
| 151860 | 62 65 72 73 20 31 30 2c 20 32 30 2c 20 33 30 2e 20 59 6f 75 20 74 68 75 73 20 63 61 6e 20 6c 61 | bers.10,.20,.30..You.thus.can.la |
| 151880 | 74 65 72 20 65 78 74 65 6e 64 20 74 68 65 20 72 75 6c 65 73 65 74 20 61 6e 64 20 70 6c 61 63 65 | ter.extend.the.ruleset.and.place |
| 1518a0 | 20 6e 65 77 20 72 75 6c 65 73 20 62 65 74 77 65 65 6e 20 65 78 69 73 74 69 6e 67 20 6f 6e 65 73 | .new.rules.between.existing.ones |
| 1518c0 | 2e 00 57 68 65 6e 20 64 6f 69 6e 67 20 66 61 75 6c 74 20 69 73 6f 6c 61 74 69 6f 6e 20 77 69 74 | ..When.doing.fault.isolation.wit |
| 1518e0 | 68 20 70 69 6e 67 2c 20 79 6f 75 20 73 68 6f 75 6c 64 20 66 69 72 73 74 20 72 75 6e 20 69 74 20 | h.ping,.you.should.first.run.it. |
| 151900 | 6f 6e 20 74 68 65 20 6c 6f 63 61 6c 20 68 6f 73 74 2c 20 74 6f 20 76 65 72 69 66 79 20 74 68 61 | on.the.local.host,.to.verify.tha |
| 151920 | 74 20 74 68 65 20 6c 6f 63 61 6c 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 20 69 73 | t.the.local.network.interface.is |
| 151940 | 20 75 70 20 61 6e 64 20 72 75 6e 6e 69 6e 67 2e 20 54 68 65 6e 2c 20 63 6f 6e 74 69 6e 75 65 20 | .up.and.running..Then,.continue. |
| 151960 | 77 69 74 68 20 68 6f 73 74 73 20 61 6e 64 20 67 61 74 65 77 61 79 73 20 66 75 72 74 68 65 72 20 | with.hosts.and.gateways.further. |
| 151980 | 64 6f 77 6e 20 74 68 65 20 72 6f 61 64 20 74 6f 77 61 72 64 73 20 79 6f 75 72 20 64 65 73 74 69 | down.the.road.towards.your.desti |
| 1519a0 | 6e 61 74 69 6f 6e 2e 20 52 6f 75 6e 64 2d 74 72 69 70 20 74 69 6d 65 20 61 6e 64 20 70 61 63 6b | nation..Round-trip.time.and.pack |
| 1519c0 | 65 74 20 6c 6f 73 73 20 73 74 61 74 69 73 74 69 63 73 20 61 72 65 20 63 6f 6d 70 75 74 65 64 2e | et.loss.statistics.are.computed. |
| 1519e0 | 00 57 68 65 6e 20 66 69 72 73 74 20 63 6f 6e 6e 65 63 74 69 6e 67 20 74 6f 20 74 68 65 20 6e 65 | .When.first.connecting.to.the.ne |
| 151a00 | 77 20 56 50 4e 20 74 68 65 20 75 73 65 72 20 69 73 20 70 72 6f 6d 70 74 65 64 20 74 6f 20 65 6e | w.VPN.the.user.is.prompted.to.en |
| 151a20 | 74 65 72 20 70 72 6f 70 65 72 20 63 72 65 64 65 6e 74 69 61 6c 73 2e 00 57 68 65 6e 20 69 6d 70 | ter.proper.credentials..When.imp |
| 151a40 | 6c 65 6d 65 6e 74 69 6e 67 20 43 47 4e 41 54 2c 20 65 6e 73 75 72 69 6e 67 20 74 68 61 74 20 74 | lementing.CGNAT,.ensuring.that.t |
| 151a60 | 68 65 72 65 20 61 72 65 20 65 6e 6f 75 67 68 20 70 6f 72 74 73 20 61 6c 6c 6f 63 61 74 65 64 20 | here.are.enough.ports.allocated. |
| 151a80 | 70 65 72 20 73 75 62 73 63 72 69 62 65 72 20 69 73 20 63 72 69 74 69 63 61 6c 2e 20 42 65 6c 6f | per.subscriber.is.critical..Belo |
| 151aa0 | 77 20 69 73 20 61 20 73 75 6d 6d 61 72 79 20 62 61 73 65 64 20 6f 6e 20 52 46 43 20 36 38 38 38 | w.is.a.summary.based.on.RFC.6888 |
| 151ac0 | 2e 00 57 68 65 6e 20 6c 6f 61 64 69 6e 67 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 79 | ..When.loading.the.certificate.y |
| 151ae0 | 6f 75 20 6e 65 65 64 20 74 6f 20 6d 61 6e 75 61 6c 6c 79 20 73 74 72 69 70 20 74 68 65 20 60 60 | ou.need.to.manually.strip.the.`` |
| 151b00 | 2d 2d 2d 2d 2d 42 45 47 49 4e 20 43 45 52 54 49 46 49 43 41 54 45 2d 2d 2d 2d 2d 60 60 20 61 6e | -----BEGIN.CERTIFICATE-----``.an |
| 151b20 | 64 20 60 60 2d 2d 2d 2d 2d 45 4e 44 20 43 45 52 54 49 46 49 43 41 54 45 2d 2d 2d 2d 2d 60 60 20 | d.``-----END.CERTIFICATE-----``. |
| 151b40 | 74 61 67 73 2e 20 41 6c 73 6f 2c 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 2f 6b 65 79 20 | tags..Also,.the.certificate/key. |
| 151b60 | 6e 65 65 64 73 20 74 6f 20 62 65 20 70 72 65 73 65 6e 74 65 64 20 69 6e 20 61 20 73 69 6e 67 6c | needs.to.be.presented.in.a.singl |
| 151b80 | 65 20 6c 69 6e 65 20 77 69 74 68 6f 75 74 20 6c 69 6e 65 20 62 72 65 61 6b 73 20 28 60 60 5c 6e | e.line.without.line.breaks.(``\n |
| 151ba0 | 60 60 29 2c 20 74 68 69 73 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 75 73 69 6e 67 20 74 68 65 20 | ``),.this.can.be.done.using.the. |
| 151bc0 | 66 6f 6c 6c 6f 77 69 6e 67 20 73 68 65 6c 6c 20 63 6f 6d 6d 61 6e 64 3a 00 57 68 65 6e 20 6c 6f | following.shell.command:.When.lo |
| 151be0 | 61 64 69 6e 67 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 79 6f 75 20 6e 65 65 64 20 74 | ading.the.certificate.you.need.t |
| 151c00 | 6f 20 6d 61 6e 75 61 6c 6c 79 20 73 74 72 69 70 20 74 68 65 20 60 60 2d 2d 2d 2d 2d 42 45 47 49 | o.manually.strip.the.``-----BEGI |
| 151c20 | 4e 20 4b 45 59 2d 2d 2d 2d 2d 60 60 20 61 6e 64 20 60 60 2d 2d 2d 2d 2d 45 4e 44 20 4b 45 59 2d | N.KEY-----``.and.``-----END.KEY- |
| 151c40 | 2d 2d 2d 2d 60 60 20 74 61 67 73 2e 20 41 6c 73 6f 2c 20 74 68 65 20 63 65 72 74 69 66 69 63 61 | ----``.tags..Also,.the.certifica |
| 151c60 | 74 65 2f 6b 65 79 20 6e 65 65 64 73 20 74 6f 20 62 65 20 70 72 65 73 65 6e 74 65 64 20 69 6e 20 | te/key.needs.to.be.presented.in. |
| 151c80 | 61 20 73 69 6e 67 6c 65 20 6c 69 6e 65 20 77 69 74 68 6f 75 74 20 6c 69 6e 65 20 62 72 65 61 6b | a.single.line.without.line.break |
| 151ca0 | 73 20 28 60 60 5c 6e 60 60 29 2c 20 74 68 69 73 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 75 73 69 | s.(``\n``),.this.can.be.done.usi |
| 151cc0 | 6e 67 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 68 65 6c 6c 20 63 6f 6d 6d 61 6e 64 3a 00 | ng.the.following.shell.command:. |
| 151ce0 | 57 68 65 6e 20 6d 61 74 68 63 69 6e 67 20 61 6c 6c 20 70 61 74 74 65 72 6e 73 20 64 65 66 69 6e | When.mathcing.all.patterns.defin |
| 151d00 | 65 64 20 69 6e 20 61 20 72 75 6c 65 2c 20 74 68 65 6e 20 64 69 66 66 65 72 65 6e 74 20 61 63 74 | ed.in.a.rule,.then.different.act |
| 151d20 | 69 6f 6e 73 20 63 61 6e 20 62 65 20 6d 61 64 65 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 | ions.can.be.made..This.includes. |
| 151d40 | 64 72 6f 70 69 6e 67 20 74 68 65 20 70 61 63 6b 65 74 2c 20 6d 6f 64 69 66 79 69 6e 67 20 63 65 | droping.the.packet,.modifying.ce |
| 151d60 | 72 74 61 69 6e 20 64 61 74 61 2c 20 6f 72 20 73 65 74 74 69 6e 67 20 61 20 64 69 66 66 65 72 65 | rtain.data,.or.setting.a.differe |
| 151d80 | 6e 74 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 00 57 68 65 6e 20 6e 6f 20 6f 70 74 69 6f 6e | nt.routing.table..When.no.option |
| 151da0 | 73 2f 70 61 72 61 6d 65 74 65 72 73 20 61 72 65 20 75 73 65 64 2c 20 74 68 65 20 63 6f 6e 74 65 | s/parameters.are.used,.the.conte |
| 151dc0 | 6e 74 73 20 6f 66 20 74 68 65 20 6d 61 69 6e 20 73 79 73 6c 6f 67 20 66 69 6c 65 20 61 72 65 20 | nts.of.the.main.syslog.file.are. |
| 151de0 | 64 69 73 70 6c 61 79 65 64 2e 00 57 68 65 6e 20 6e 6f 2d 72 65 6c 65 61 73 65 20 69 73 20 73 70 | displayed..When.no-release.is.sp |
| 151e00 | 65 63 69 66 69 65 64 2c 20 64 68 63 70 36 63 20 77 69 6c 6c 20 61 76 6f 69 64 20 73 65 6e 64 69 | ecified,.dhcp6c.will.avoid.sendi |
| 151e20 | 6e 67 20 61 20 72 65 6c 65 61 73 65 20 6d 65 73 73 61 67 65 20 6f 6e 20 63 6c 69 65 6e 74 20 65 | ng.a.release.message.on.client.e |
| 151e40 | 78 69 74 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 70 72 65 76 65 6e 74 20 6c 6f 73 69 6e 67 20 61 | xit.in.order.to.prevent.losing.a |
| 151e60 | 6e 20 61 73 73 69 67 6e 65 64 20 61 64 64 72 65 73 73 20 6f 72 20 70 72 65 66 69 78 2e 00 57 68 | n.assigned.address.or.prefix..Wh |
| 151e80 | 65 6e 20 6e 6f 2d 72 65 6c 65 61 73 65 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 64 68 63 70 | en.no-release.is.specified,.dhcp |
| 151ea0 | 36 63 20 77 69 6c 6c 20 73 65 6e 64 20 61 20 72 65 6c 65 61 73 65 20 6d 65 73 73 61 67 65 20 6f | 6c.will.send.a.release.message.o |
| 151ec0 | 6e 20 63 6c 69 65 6e 74 20 65 78 69 74 20 74 6f 20 70 72 65 76 65 6e 74 20 6c 6f 73 69 6e 67 20 | n.client.exit.to.prevent.losing. |
| 151ee0 | 61 6e 20 61 73 73 69 67 6e 65 64 20 61 64 64 72 65 73 73 20 6f 72 20 70 72 65 66 69 78 2e 00 57 | an.assigned.address.or.prefix..W |
| 151f00 | 68 65 6e 20 70 72 6f 63 65 73 73 69 6e 67 20 70 61 63 6b 65 74 73 20 66 72 6f 6d 20 61 20 6e 65 | hen.processing.packets.from.a.ne |
| 151f20 | 69 67 68 62 6f 72 20 70 72 6f 63 65 73 73 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 70 61 63 | ighbor.process.the.number.of.pac |
| 151f40 | 6b 65 74 73 20 69 6e 63 6f 6d 69 6e 67 20 61 74 20 6f 6e 65 20 74 69 6d 65 20 62 65 66 6f 72 65 | kets.incoming.at.one.time.before |
| 151f60 | 20 6d 6f 76 69 6e 67 20 6f 6e 20 74 6f 20 74 68 65 20 6e 65 78 74 20 74 61 73 6b 2e 00 57 68 65 | .moving.on.to.the.next.task..Whe |
| 151f80 | 6e 20 72 61 70 69 64 2d 63 6f 6d 6d 69 74 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 64 68 63 | n.rapid-commit.is.specified,.dhc |
| 151fa0 | 70 36 63 20 77 69 6c 6c 20 69 6e 63 6c 75 64 65 20 61 20 72 61 70 69 64 2d 63 6f 6d 6d 69 74 20 | p6c.will.include.a.rapid-commit. |
| 151fc0 | 6f 70 74 69 6f 6e 20 69 6e 20 73 6f 6c 69 63 69 74 20 6d 65 73 73 61 67 65 73 20 61 6e 64 20 77 | option.in.solicit.messages.and.w |
| 151fe0 | 61 69 74 20 66 6f 72 20 61 6e 20 69 6d 6d 65 64 69 61 74 65 20 72 65 70 6c 79 20 69 6e 73 74 65 | ait.for.an.immediate.reply.inste |
| 152000 | 61 64 20 6f 66 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 73 2e 00 57 68 65 6e 20 72 65 6d 6f 74 | ad.of.advertisements..When.remot |
| 152020 | 65 20 70 65 65 72 20 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 20 63 61 70 61 62 69 6c 69 74 79 20 | e.peer.does.not.have.capability. |
| 152040 | 6e 65 67 6f 74 69 61 74 69 6f 6e 20 66 65 61 74 75 72 65 2c 20 72 65 6d 6f 74 65 20 70 65 65 72 | negotiation.feature,.remote.peer |
| 152060 | 20 77 69 6c 6c 20 6e 6f 74 20 73 65 6e 64 20 61 6e 79 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 | .will.not.send.any.capabilities. |
| 152080 | 61 74 20 61 6c 6c 2e 20 49 6e 20 74 68 61 74 20 63 61 73 65 2c 20 62 67 70 20 63 6f 6e 66 69 67 | at.all..In.that.case,.bgp.config |
| 1520a0 | 75 72 65 73 20 74 68 65 20 70 65 65 72 20 77 69 74 68 20 63 6f 6e 66 69 67 75 72 65 64 20 63 61 | ures.the.peer.with.configured.ca |
| 1520c0 | 70 61 62 69 6c 69 74 69 65 73 2e 00 57 68 65 6e 20 72 75 6e 6e 69 6e 67 20 69 74 20 61 74 20 31 | pabilities..When.running.it.at.1 |
| 1520e0 | 47 62 69 74 20 61 6e 64 20 6c 6f 77 65 72 2c 20 79 6f 75 20 6d 61 79 20 77 61 6e 74 20 74 6f 20 | Gbit.and.lower,.you.may.want.to. |
| 152100 | 72 65 64 75 63 65 20 74 68 65 20 60 71 75 65 75 65 2d 6c 69 6d 69 74 60 20 74 6f 20 31 30 30 30 | reduce.the.`queue-limit`.to.1000 |
| 152120 | 20 70 61 63 6b 65 74 73 20 6f 72 20 6c 65 73 73 2e 20 49 6e 20 72 61 74 65 73 20 6c 69 6b 65 20 | .packets.or.less..In.rates.like. |
| 152140 | 31 30 4d 62 69 74 2c 20 79 6f 75 20 6d 61 79 20 77 61 6e 74 20 74 6f 20 73 65 74 20 69 74 20 74 | 10Mbit,.you.may.want.to.set.it.t |
| 152160 | 6f 20 36 30 30 20 70 61 63 6b 65 74 73 2e 00 57 68 65 6e 20 73 65 6e 64 69 6e 67 20 50 49 4d 20 | o.600.packets..When.sending.PIM. |
| 152180 | 68 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 74 65 6c 6c 20 50 49 4d 20 74 6f 20 6e 6f 74 20 73 65 | hello.packets.tell.PIM.to.not.se |
| 1521a0 | 6e 64 20 61 6e 79 20 76 36 20 73 65 63 6f 6e 64 61 72 79 20 61 64 64 72 65 73 73 65 73 20 6f 6e | nd.any.v6.secondary.addresses.on |
| 1521c0 | 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | .the.interface..This.information |
| 1521e0 | 20 69 73 20 75 73 65 64 20 74 6f 20 61 6c 6c 6f 77 20 50 49 4d 20 74 6f 20 75 73 65 20 76 36 20 | .is.used.to.allow.PIM.to.use.v6. |
| 152200 | 6e 65 78 74 68 6f 70 73 20 69 6e 20 69 74 27 73 20 64 65 63 69 73 69 6f 6e 20 66 6f 72 20 3a 61 | nexthops.in.it's.decision.for.:a |
| 152220 | 62 62 72 3a 60 52 50 46 20 28 52 65 76 65 72 73 65 20 50 61 74 68 20 46 6f 72 77 61 72 64 69 6e | bbr:`RPF.(Reverse.Path.Forwardin |
| 152240 | 67 29 60 20 6c 6f 6f 6b 75 70 20 69 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 6e 6f 74 | g)`.lookup.if.this.option.is.not |
| 152260 | 20 73 65 74 20 28 64 65 66 61 75 6c 74 29 2e 00 57 68 65 6e 20 73 65 74 20 74 68 65 20 69 6e 74 | .set.(default)..When.set.the.int |
| 152280 | 65 72 66 61 63 65 20 69 73 20 65 6e 61 62 6c 65 64 20 66 6f 72 20 22 64 69 61 6c 2d 6f 6e 2d 64 | erface.is.enabled.for."dial-on-d |
| 1522a0 | 65 6d 61 6e 64 22 2e 00 57 68 65 6e 20 73 70 65 63 69 66 69 65 64 2c 20 74 68 69 73 20 73 68 6f | emand"..When.specified,.this.sho |
| 1522c0 | 75 6c 64 20 62 65 20 74 68 65 20 6f 6e 6c 79 20 6b 65 79 77 6f 72 64 20 66 6f 72 20 74 68 65 20 | uld.be.the.only.keyword.for.the. |
| 1522e0 | 69 6e 74 65 72 66 61 63 65 2e 00 57 68 65 6e 20 73 74 61 72 74 69 6e 67 20 61 20 56 79 4f 53 20 | interface..When.starting.a.VyOS. |
| 152300 | 6c 69 76 65 20 73 79 73 74 65 6d 20 28 74 68 65 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 20 43 44 | live.system.(the.installation.CD |
| 152320 | 29 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6b 65 79 62 6f 61 72 64 20 6c 61 79 6f 75 74 | ).the.configured.keyboard.layout |
| 152340 | 20 64 65 66 61 75 6c 74 73 20 74 6f 20 55 53 2e 20 41 73 20 74 68 69 73 20 6d 69 67 68 74 20 6e | .defaults.to.US..As.this.might.n |
| 152360 | 6f 74 20 73 75 69 74 65 20 65 76 65 72 79 6f 6e 65 27 73 20 75 73 65 20 63 61 73 65 20 79 6f 75 | ot.suite.everyone's.use.case.you |
| 152380 | 20 63 61 6e 20 61 64 6a 75 73 74 20 74 68 65 20 75 73 65 64 20 6b 65 79 62 6f 61 72 64 20 6c 61 | .can.adjust.the.used.keyboard.la |
| 1523a0 | 79 6f 75 74 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 20 63 6f 6e 73 6f 6c 65 2e 00 57 68 65 6e | yout.on.the.system.console..When |
| 1523c0 | 20 73 74 61 72 74 69 6e 67 20 61 20 56 79 4f 53 20 6c 69 76 65 20 73 79 73 74 65 6d 20 28 74 68 | .starting.a.VyOS.live.system.(th |
| 1523e0 | 65 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 20 43 44 29 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 | e.installation.CD).the.configure |
| 152400 | 64 20 6b 65 79 62 6f 61 72 64 20 6c 61 79 6f 75 74 20 64 65 66 61 75 6c 74 73 20 74 6f 20 55 53 | d.keyboard.layout.defaults.to.US |
| 152420 | 2e 20 41 73 20 74 68 69 73 20 6d 69 67 68 74 20 6e 6f 74 20 73 75 69 74 65 20 65 76 65 72 79 6f | ..As.this.might.not.suite.everyo |
| 152440 | 6e 65 73 20 75 73 65 20 63 61 73 65 20 79 6f 75 20 63 61 6e 20 61 64 6a 75 73 74 20 74 68 65 20 | nes.use.case.you.can.adjust.the. |
| 152460 | 75 73 65 64 20 6b 65 79 62 6f 61 72 64 20 6c 61 79 6f 75 74 20 6f 6e 20 74 68 65 20 73 79 73 74 | used.keyboard.layout.on.the.syst |
| 152480 | 65 6d 20 63 6f 6e 73 6f 6c 65 2e 00 57 68 65 6e 20 74 68 65 20 44 48 43 50 20 73 65 72 76 65 72 | em.console..When.the.DHCP.server |
| 1524a0 | 20 69 73 20 63 6f 6e 73 69 64 65 72 69 6e 67 20 64 79 6e 61 6d 69 63 61 6c 6c 79 20 61 6c 6c 6f | .is.considering.dynamically.allo |
| 1524c0 | 63 61 74 69 6e 67 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 61 20 63 6c 69 65 6e 74 | cating.an.IP.address.to.a.client |
| 1524e0 | 2c 20 69 74 20 66 69 72 73 74 20 73 65 6e 64 73 20 61 6e 20 49 43 4d 50 20 45 63 68 6f 20 72 65 | ,.it.first.sends.an.ICMP.Echo.re |
| 152500 | 71 75 65 73 74 20 28 61 20 70 69 6e 67 29 20 74 6f 20 74 68 65 20 61 64 64 72 65 73 73 20 62 65 | quest.(a.ping).to.the.address.be |
| 152520 | 69 6e 67 20 61 73 73 69 67 6e 65 64 2e 20 49 74 20 77 61 69 74 73 20 66 6f 72 20 61 20 73 65 63 | ing.assigned..It.waits.for.a.sec |
| 152540 | 6f 6e 64 2c 20 61 6e 64 20 69 66 20 6e 6f 20 49 43 4d 50 20 45 63 68 6f 20 72 65 73 70 6f 6e 73 | ond,.and.if.no.ICMP.Echo.respons |
| 152560 | 65 20 68 61 73 20 62 65 65 6e 20 68 65 61 72 64 2c 20 69 74 20 61 73 73 69 67 6e 73 20 74 68 65 | e.has.been.heard,.it.assigns.the |
| 152580 | 20 61 64 64 72 65 73 73 2e 00 57 68 65 6e 20 74 68 65 20 63 6c 6f 73 65 2d 61 63 74 69 6f 6e 20 | .address..When.the.close-action. |
| 1525a0 | 6f 70 74 69 6f 6e 20 69 73 20 73 65 74 20 6f 6e 20 74 68 65 20 70 65 65 72 73 2c 20 74 68 65 20 | option.is.set.on.the.peers,.the. |
| 1525c0 | 63 6f 6e 6e 65 63 74 69 6f 6e 2d 74 79 70 65 20 6f 66 20 65 61 63 68 20 70 65 65 72 20 68 61 73 | connection-type.of.each.peer.has |
| 1525e0 | 20 74 6f 20 63 6f 6e 73 69 64 65 72 65 64 20 63 61 72 65 66 75 6c 6c 79 2e 20 46 6f 72 20 65 78 | .to.considered.carefully..For.ex |
| 152600 | 61 6d 70 6c 65 2c 20 69 66 20 74 68 65 20 6f 70 74 69 6f 6e 20 69 73 20 73 65 74 20 6f 6e 20 62 | ample,.if.the.option.is.set.on.b |
| 152620 | 6f 74 68 20 70 65 65 72 73 2c 20 74 68 65 6e 20 62 6f 74 68 20 77 6f 75 6c 64 20 61 74 74 65 6d | oth.peers,.then.both.would.attem |
| 152640 | 70 74 20 74 6f 20 69 6e 69 74 69 61 74 65 20 61 6e 64 20 68 6f 6c 64 20 6f 70 65 6e 20 6d 75 6c | pt.to.initiate.and.hold.open.mul |
| 152660 | 74 69 70 6c 65 20 63 6f 70 69 65 73 20 6f 66 20 65 61 63 68 20 63 68 69 6c 64 20 53 41 2e 20 54 | tiple.copies.of.each.child.SA..T |
| 152680 | 68 69 73 20 6d 69 67 68 74 20 6c 65 61 64 20 74 6f 20 69 6e 73 74 61 62 69 6c 69 74 79 20 6f 66 | his.might.lead.to.instability.of |
| 1526a0 | 20 74 68 65 20 64 65 76 69 63 65 20 6f 72 20 63 70 75 2f 6d 65 6d 6f 72 79 20 75 74 69 6c 69 7a | .the.device.or.cpu/memory.utiliz |
| 1526c0 | 61 74 69 6f 6e 2e 00 57 68 65 6e 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 61 62 6f 76 65 20 69 73 | ation..When.the.command.above.is |
| 1526e0 | 20 73 65 74 2c 20 56 79 4f 53 20 77 69 6c 6c 20 61 6e 73 77 65 72 20 65 76 65 72 79 20 49 43 4d | .set,.VyOS.will.answer.every.ICM |
| 152700 | 50 20 65 63 68 6f 20 72 65 71 75 65 73 74 20 61 64 64 72 65 73 73 65 64 20 74 6f 20 69 74 73 65 | P.echo.request.addressed.to.itse |
| 152720 | 6c 66 2c 20 62 75 74 20 74 68 61 74 20 77 69 6c 6c 20 6f 6e 6c 79 20 68 61 70 70 65 6e 20 69 66 | lf,.but.that.will.only.happen.if |
| 152740 | 20 6e 6f 20 6f 74 68 65 72 20 72 75 6c 65 20 69 73 20 61 70 70 6c 69 65 64 20 64 72 6f 70 70 69 | .no.other.rule.is.applied.droppi |
| 152760 | 6e 67 20 6f 72 20 72 65 6a 65 63 74 69 6e 67 20 6c 6f 63 61 6c 20 65 63 68 6f 20 72 65 71 75 65 | ng.or.rejecting.local.echo.reque |
| 152780 | 73 74 73 2e 20 49 6e 20 63 61 73 65 20 6f 66 20 63 6f 6e 66 6c 69 63 74 2c 20 56 79 4f 53 20 77 | sts..In.case.of.conflict,.VyOS.w |
| 1527a0 | 69 6c 6c 20 6e 6f 74 20 61 6e 73 77 65 72 20 49 43 4d 50 20 65 63 68 6f 20 72 65 71 75 65 73 74 | ill.not.answer.ICMP.echo.request |
| 1527c0 | 73 2e 00 57 68 65 6e 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 61 62 6f 76 65 20 69 73 20 73 65 74 | s..When.the.command.above.is.set |
| 1527e0 | 2c 20 56 79 4f 53 20 77 69 6c 6c 20 61 6e 73 77 65 72 20 6e 6f 20 49 43 4d 50 20 65 63 68 6f 20 | ,.VyOS.will.answer.no.ICMP.echo. |
| 152800 | 72 65 71 75 65 73 74 20 61 64 64 72 65 73 73 65 64 20 74 6f 20 69 74 73 65 6c 66 20 61 74 20 61 | request.addressed.to.itself.at.a |
| 152820 | 6c 6c 2c 20 6e 6f 20 6d 61 74 74 65 72 20 77 68 65 72 65 20 69 74 20 63 6f 6d 65 73 20 66 72 6f | ll,.no.matter.where.it.comes.fro |
| 152840 | 6d 20 6f 72 20 77 68 65 74 68 65 72 20 6d 6f 72 65 20 73 70 65 63 69 66 69 63 20 72 75 6c 65 73 | m.or.whether.more.specific.rules |
| 152860 | 20 61 72 65 20 62 65 69 6e 67 20 61 70 70 6c 69 65 64 20 74 6f 20 61 63 63 65 70 74 20 74 68 65 | .are.being.applied.to.accept.the |
| 152880 | 6d 2e 00 57 68 65 6e 20 74 68 65 20 76 72 72 70 20 67 72 6f 75 70 20 69 73 20 61 20 6d 65 6d 62 | m..When.the.vrrp.group.is.a.memb |
| 1528a0 | 65 72 20 6f 66 20 74 68 65 20 73 79 6e 63 20 67 72 6f 75 70 20 77 69 6c 6c 20 75 73 65 20 6f 6e | er.of.the.sync.group.will.use.on |
| 1528c0 | 6c 79 20 74 68 65 20 73 79 6e 63 20 67 72 6f 75 70 20 68 65 61 6c 74 68 20 63 68 65 63 6b 20 73 | ly.the.sync.group.health.check.s |
| 1528e0 | 63 72 69 70 74 2e 20 54 68 69 73 20 65 78 61 6d 70 6c 65 20 73 68 6f 77 73 20 68 6f 77 20 74 6f | cript..This.example.shows.how.to |
| 152900 | 20 63 6f 6e 66 69 67 75 72 65 20 69 74 20 66 6f 72 20 74 68 65 20 73 79 6e 63 20 67 72 6f 75 70 | .configure.it.for.the.sync.group |
| 152920 | 3a 00 57 68 65 6e 20 74 69 6d 65 73 74 61 6d 70 69 6e 67 20 69 73 20 65 6e 61 62 6c 65 64 20 6f | :.When.timestamping.is.enabled.o |
| 152940 | 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2c 20 63 68 72 6f 6e 79 27 73 20 64 65 66 61 75 6c 74 | n.an.interface,.chrony's.default |
| 152960 | 20 62 65 68 61 76 69 6f 72 20 69 73 20 74 6f 20 74 72 79 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 | .behavior.is.to.try.to.configure |
| 152980 | 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 6f 6e 6c 79 20 74 69 6d 65 73 74 61 6d 70 | .the.interface.to.only.timestamp |
| 1529a0 | 20 4e 54 50 20 70 61 63 6b 65 74 73 2e 20 49 66 20 74 68 69 73 20 6d 6f 64 65 20 69 73 20 6e 6f | .NTP.packets..If.this.mode.is.no |
| 1529c0 | 74 20 73 75 70 70 6f 72 74 65 64 2c 20 63 68 72 6f 6e 79 20 77 69 6c 6c 20 61 74 74 65 6d 70 74 | t.supported,.chrony.will.attempt |
| 1529e0 | 20 74 6f 20 73 65 74 20 69 74 20 74 6f 20 74 69 6d 65 73 74 61 6d 70 20 61 6c 6c 20 70 61 63 6b | .to.set.it.to.timestamp.all.pack |
| 152a00 | 65 74 73 2e 20 49 66 20 6e 65 69 74 68 65 72 20 6f 70 74 69 6f 6e 20 69 73 20 73 75 70 70 6f 72 | ets..If.neither.option.is.suppor |
| 152a20 | 74 65 64 20 28 65 2e 67 2e 20 74 68 65 20 4e 49 43 20 63 61 6e 20 6f 6e 6c 79 20 74 69 6d 65 73 | ted.(e.g..the.NIC.can.only.times |
| 152a40 | 74 61 6d 70 20 72 65 63 65 69 76 65 64 20 50 54 50 20 70 61 63 6b 65 74 73 29 2c 20 63 68 72 6f | tamp.received.PTP.packets),.chro |
| 152a60 | 6e 79 20 77 69 6c 6c 20 6c 65 76 65 72 61 67 65 20 74 69 6d 65 73 74 61 6d 70 69 6e 67 20 6f 6e | ny.will.leverage.timestamping.on |
| 152a80 | 20 74 72 61 6e 73 6d 69 74 74 65 64 20 70 61 63 6b 65 74 73 20 6f 6e 6c 79 2c 20 77 68 69 63 68 | .transmitted.packets.only,.which |
| 152aa0 | 20 73 74 69 6c 6c 20 70 72 6f 76 69 64 65 73 20 73 6f 6d 65 20 62 65 6e 65 66 69 74 2e 00 57 68 | .still.provides.some.benefit..Wh |
| 152ac0 | 65 6e 20 75 73 69 6e 67 20 44 48 43 50 20 74 6f 20 72 65 74 72 69 65 76 65 20 49 50 76 34 20 61 | en.using.DHCP.to.retrieve.IPv4.a |
| 152ae0 | 64 64 72 65 73 73 20 61 6e 64 20 69 66 20 6c 6f 63 61 6c 20 63 75 73 74 6f 6d 69 7a 61 74 69 6f | ddress.and.if.local.customizatio |
| 152b00 | 6e 73 20 61 72 65 20 6e 65 65 64 65 64 2c 20 74 68 65 79 20 73 68 6f 75 6c 64 20 62 65 20 70 6f | ns.are.needed,.they.should.be.po |
| 152b20 | 73 73 69 62 6c 65 20 75 73 69 6e 67 20 74 68 65 20 65 6e 74 65 72 20 61 6e 64 20 65 78 69 74 20 | ssible.using.the.enter.and.exit. |
| 152b40 | 68 6f 6f 6b 73 20 70 72 6f 76 69 64 65 64 2e 20 54 68 65 20 68 6f 6f 6b 20 64 69 72 73 20 61 72 | hooks.provided..The.hook.dirs.ar |
| 152b60 | 65 3a 00 57 68 65 6e 20 75 73 69 6e 67 20 45 56 45 2d 4e 47 20 74 6f 20 6c 61 62 20 74 68 69 73 | e:.When.using.EVE-NG.to.lab.this |
| 152b80 | 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 65 6e 73 75 72 65 20 79 6f 75 20 61 72 65 20 75 73 69 6e | .environment.ensure.you.are.usin |
| 152ba0 | 67 20 65 31 30 30 30 20 61 73 20 74 68 65 20 64 65 73 69 72 65 64 20 64 72 69 76 65 72 20 66 6f | g.e1000.as.the.desired.driver.fo |
| 152bc0 | 72 20 79 6f 75 72 20 56 79 4f 53 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 73 2e 20 | r.your.VyOS.network.interfaces.. |
| 152be0 | 57 68 65 6e 20 75 73 69 6e 67 20 74 68 65 20 72 65 67 75 6c 61 72 20 76 69 72 74 69 6f 20 6e 65 | When.using.the.regular.virtio.ne |
| 152c00 | 74 77 6f 72 6b 20 64 72 69 76 65 72 20 6e 6f 20 4c 41 43 50 20 50 44 55 73 20 77 69 6c 6c 20 62 | twork.driver.no.LACP.PDUs.will.b |
| 152c20 | 65 20 73 65 6e 74 20 62 79 20 56 79 4f 53 20 74 68 75 73 20 74 68 65 20 70 6f 72 74 2d 63 68 61 | e.sent.by.VyOS.thus.the.port-cha |
| 152c40 | 6e 6e 65 6c 20 77 69 6c 6c 20 6e 65 76 65 72 20 62 65 63 6f 6d 65 20 61 63 74 69 76 65 21 00 57 | nnel.will.never.become.active!.W |
| 152c60 | 68 65 6e 20 75 73 69 6e 67 20 4e 41 54 20 66 6f 72 20 61 20 6c 61 72 67 65 20 6e 75 6d 62 65 72 | hen.using.NAT.for.a.large.number |
| 152c80 | 20 6f 66 20 68 6f 73 74 20 73 79 73 74 65 6d 73 20 69 74 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 | .of.host.systems.it.recommended. |
| 152ca0 | 74 68 61 74 20 61 20 6d 69 6e 69 6d 75 6d 20 6f 66 20 31 20 49 50 20 61 64 64 72 65 73 73 20 69 | that.a.minimum.of.1.IP.address.i |
| 152cc0 | 73 20 75 73 65 64 20 74 6f 20 4e 41 54 20 65 76 65 72 79 20 32 35 36 20 68 6f 73 74 20 73 79 73 | s.used.to.NAT.every.256.host.sys |
| 152ce0 | 74 65 6d 73 2e 20 54 68 69 73 20 69 73 20 64 75 65 20 74 6f 20 74 68 65 20 6c 69 6d 69 74 20 6f | tems..This.is.due.to.the.limit.o |
| 152d00 | 66 20 36 35 2c 30 30 30 20 70 6f 72 74 20 6e 75 6d 62 65 72 73 20 61 76 61 69 6c 61 62 6c 65 20 | f.65,000.port.numbers.available. |
| 152d20 | 66 6f 72 20 75 6e 69 71 75 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 73 20 61 6e 64 20 61 20 72 65 | for.unique.translations.and.a.re |
| 152d40 | 73 65 72 76 69 6e 67 20 61 6e 20 61 76 65 72 61 67 65 20 6f 66 20 32 30 30 2d 33 30 30 20 73 65 | serving.an.average.of.200-300.se |
| 152d60 | 73 73 69 6f 6e 73 20 70 65 72 20 68 6f 73 74 20 73 79 73 74 65 6d 2e 00 57 68 65 6e 20 75 73 69 | ssions.per.host.system..When.usi |
| 152d80 | 6e 67 20 4e 41 54 20 66 6f 72 20 61 20 6c 61 72 67 65 20 6e 75 6d 62 65 72 20 6f 66 20 68 6f 73 | ng.NAT.for.a.large.number.of.hos |
| 152da0 | 74 20 73 79 73 74 65 6d 73 20 69 74 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 74 68 61 74 20 61 20 | t.systems.it.recommended.that.a. |
| 152dc0 | 6d 69 6e 69 6d 75 6d 20 6f 66 20 31 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 75 73 65 64 20 | minimum.of.1.IP.address.is.used. |
| 152de0 | 74 6f 20 4e 41 54 20 65 76 65 72 79 20 32 35 36 20 70 72 69 76 61 74 65 20 68 6f 73 74 20 73 79 | to.NAT.every.256.private.host.sy |
| 152e00 | 73 74 65 6d 73 2e 20 54 68 69 73 20 69 73 20 64 75 65 20 74 6f 20 74 68 65 20 6c 69 6d 69 74 20 | stems..This.is.due.to.the.limit. |
| 152e20 | 6f 66 20 36 35 2c 30 30 30 20 70 6f 72 74 20 6e 75 6d 62 65 72 73 20 61 76 61 69 6c 61 62 6c 65 | of.65,000.port.numbers.available |
| 152e40 | 20 66 6f 72 20 75 6e 69 71 75 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 73 20 61 6e 64 20 61 20 72 | .for.unique.translations.and.a.r |
| 152e60 | 65 73 65 72 76 69 6e 67 20 61 6e 20 61 76 65 72 61 67 65 20 6f 66 20 32 30 30 2d 33 30 30 20 73 | eserving.an.average.of.200-300.s |
| 152e80 | 65 73 73 69 6f 6e 73 20 70 65 72 20 68 6f 73 74 20 73 79 73 74 65 6d 2e 00 57 68 65 6e 20 75 73 | essions.per.host.system..When.us |
| 152ea0 | 69 6e 67 20 53 53 48 2c 20 6b 6e 6f 77 6e 2d 68 6f 73 74 73 2d 66 69 6c 65 2c 20 70 72 69 76 61 | ing.SSH,.known-hosts-file,.priva |
| 152ec0 | 74 65 2d 6b 65 79 2d 66 69 6c 65 20 61 6e 64 20 70 75 62 6c 69 63 2d 6b 65 79 2d 66 69 6c 65 20 | te-key-file.and.public-key-file. |
| 152ee0 | 61 72 65 20 6d 61 6e 64 61 74 6f 72 79 20 6f 70 74 69 6f 6e 73 2e 00 57 68 65 6e 20 75 73 69 6e | are.mandatory.options..When.usin |
| 152f00 | 67 20 53 53 48 2c 20 70 72 69 76 61 74 65 2d 6b 65 79 2d 66 69 6c 65 20 61 6e 64 20 70 75 62 6c | g.SSH,.private-key-file.and.publ |
| 152f20 | 69 63 2d 6b 65 79 2d 66 69 6c 65 20 61 72 65 20 6d 61 6e 64 61 74 6f 72 79 20 6f 70 74 69 6f 6e | ic-key-file.are.mandatory.option |
| 152f40 | 73 2e 00 57 68 65 6e 20 75 73 69 6e 67 20 54 69 6d 65 2d 62 61 73 65 64 20 6f 6e 65 2d 74 69 6d | s..When.using.Time-based.one-tim |
| 152f60 | 65 20 70 61 73 73 77 6f 72 64 20 28 54 4f 54 50 29 20 28 4f 54 50 20 48 4f 54 50 2d 74 69 6d 65 | e.password.(TOTP).(OTP.HOTP-time |
| 152f80 | 29 2c 20 62 65 20 73 75 72 65 20 74 68 61 74 20 74 68 65 20 74 69 6d 65 20 6f 6e 20 74 68 65 20 | ),.be.sure.that.the.time.on.the. |
| 152fa0 | 73 65 72 76 65 72 20 61 6e 64 20 74 68 65 20 4f 54 50 20 74 6f 6b 65 6e 20 67 65 6e 65 72 61 74 | server.and.the.OTP.token.generat |
| 152fc0 | 6f 72 20 61 72 65 20 73 79 6e 63 68 72 6f 6e 69 7a 65 64 20 62 79 20 4e 54 50 00 57 68 65 6e 20 | or.are.synchronized.by.NTP.When. |
| 152fe0 | 75 73 69 6e 67 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 49 50 73 65 63 20 77 69 74 68 20 56 54 | using.site-to-site.IPsec.with.VT |
| 153000 | 49 20 69 6e 74 65 72 66 61 63 65 73 2c 20 62 65 20 73 75 72 65 20 74 6f 20 64 69 73 61 62 6c 65 | I.interfaces,.be.sure.to.disable |
| 153020 | 20 72 6f 75 74 65 20 61 75 74 6f 69 6e 73 74 61 6c 6c 00 57 68 65 6e 20 75 73 69 6e 67 20 74 68 | .route.autoinstall.When.using.th |
| 153040 | 65 20 49 50 76 36 20 70 72 6f 74 6f 63 6f 6c 2c 20 4d 52 55 20 6d 75 73 74 20 62 65 20 61 74 20 | e.IPv6.protocol,.MRU.must.be.at. |
| 153060 | 6c 65 61 73 74 20 31 32 38 30 20 62 79 74 65 73 2e 00 57 68 65 6e 20 75 74 69 6c 69 7a 69 6e 67 | least.1280.bytes..When.utilizing |
| 153080 | 20 56 79 4f 53 20 69 6e 20 61 6e 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 77 69 74 68 20 41 72 69 | .VyOS.in.an.environment.with.Ari |
| 1530a0 | 73 74 61 20 67 65 61 72 20 79 6f 75 20 63 61 6e 20 75 73 65 20 74 68 69 73 20 62 6c 75 65 20 70 | sta.gear.you.can.use.this.blue.p |
| 1530c0 | 72 69 6e 74 20 61 73 20 61 6e 20 69 6e 69 74 69 61 6c 20 73 65 74 75 70 20 74 6f 20 67 65 74 20 | rint.as.an.initial.setup.to.get. |
| 1530e0 | 61 6e 20 4c 41 43 50 20 62 6f 6e 64 20 2f 20 70 6f 72 74 2d 63 68 61 6e 6e 65 6c 20 6f 70 65 72 | an.LACP.bond./.port-channel.oper |
| 153100 | 61 74 69 6f 6e 61 6c 20 62 65 74 77 65 65 6e 20 74 68 6f 73 65 20 74 77 6f 20 64 65 76 69 63 65 | ational.between.those.two.device |
| 153120 | 73 2e 00 57 68 65 72 65 20 62 6f 74 68 20 72 6f 75 74 65 73 20 77 65 72 65 20 72 65 63 65 69 76 | s..Where.both.routes.were.receiv |
| 153140 | 65 64 20 66 72 6f 6d 20 65 42 47 50 20 70 65 65 72 73 2c 20 74 68 65 6e 20 70 72 65 66 65 72 20 | ed.from.eBGP.peers,.then.prefer. |
| 153160 | 74 68 65 20 72 6f 75 74 65 20 77 68 69 63 68 20 69 73 20 61 6c 72 65 61 64 79 20 73 65 6c 65 63 | the.route.which.is.already.selec |
| 153180 | 74 65 64 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 69 73 20 63 68 65 63 6b 20 69 73 20 6e 6f 74 | ted..Note.that.this.check.is.not |
| 1531a0 | 20 61 70 70 6c 69 65 64 20 69 66 20 3a 63 66 67 63 6d 64 3a 60 62 67 70 20 62 65 73 74 70 61 74 | .applied.if.:cfgcmd:`bgp.bestpat |
| 1531c0 | 68 20 63 6f 6d 70 61 72 65 2d 72 6f 75 74 65 72 69 64 60 20 69 73 20 63 6f 6e 66 69 67 75 72 65 | h.compare-routerid`.is.configure |
| 1531e0 | 64 2e 20 54 68 69 73 20 63 68 65 63 6b 20 63 61 6e 20 70 72 65 76 65 6e 74 20 73 6f 6d 65 20 63 | d..This.check.can.prevent.some.c |
| 153200 | 61 73 65 73 20 6f 66 20 6f 73 63 69 6c 6c 61 74 69 6f 6e 2e 00 57 68 65 72 65 20 66 69 72 65 77 | ases.of.oscillation..Where.firew |
| 153220 | 61 6c 6c 20 62 61 73 65 20 63 68 61 69 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 66 69 72 65 | all.base.chain.to.configure.fire |
| 153240 | 77 61 6c 6c 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 74 72 61 6e 73 69 74 | wall.filtering.rules.for.transit |
| 153260 | 20 74 72 61 66 66 69 63 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 | .traffic.is.``set.firewall.ipv4. |
| 153280 | 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 | forward.filter....``,.which.happ |
| 1532a0 | 65 6e 73 20 69 6e 20 73 74 61 67 65 20 35 2c 20 68 69 67 68 6c 69 67 68 74 65 64 20 77 69 74 68 | ens.in.stage.5,.highlighted.with |
| 1532c0 | 20 72 65 64 20 63 6f 6c 6f 72 2e 00 57 68 65 72 65 20 66 69 72 65 77 61 6c 6c 20 62 61 73 65 20 | .red.color..Where.firewall.base. |
| 1532e0 | 63 68 61 69 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 | chain.to.configure.firewall.filt |
| 153300 | 65 72 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 | ering.rules.for.transit.traffic. |
| 153320 | 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 66 6f 72 77 61 72 64 20 66 | is.``set.firewall.ipv4.forward.f |
| 153340 | 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 | ilter....``,.which.happens.in.st |
| 153360 | 61 67 65 20 35 2c 20 68 69 67 68 6c 69 67 68 74 65 6e 65 64 20 77 69 74 68 20 72 65 64 20 63 6f | age.5,.highlightened.with.red.co |
| 153380 | 6c 6f 72 2e 00 57 68 65 72 65 20 66 69 72 65 77 61 6c 6c 20 62 61 73 65 20 63 68 61 69 6e 20 74 | lor..Where.firewall.base.chain.t |
| 1533a0 | 6f 20 63 6f 6e 66 69 67 75 72 65 20 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 65 72 69 6e 67 20 72 | o.configure.firewall.filtering.r |
| 1533c0 | 75 6c 65 73 20 66 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 69 73 20 60 60 73 65 | ules.for.transit.traffic.is.``se |
| 1533e0 | 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e | t.firewall.ipv6.forward.filter.. |
| 153400 | 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 61 67 65 20 35 2c 20 | ..``,.which.happens.in.stage.5,. |
| 153420 | 68 69 67 68 6c 69 67 68 74 65 64 20 77 69 74 68 20 72 65 64 20 63 6f 6c 6f 72 2e 00 57 68 65 72 | highlighted.with.red.color..Wher |
| 153440 | 65 20 66 69 72 65 77 61 6c 6c 20 62 61 73 65 20 63 68 61 69 6e 20 74 6f 20 63 6f 6e 66 69 67 75 | e.firewall.base.chain.to.configu |
| 153460 | 72 65 20 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 | re.firewall.filtering.rules.for. |
| 153480 | 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c | transit.traffic.is.``set.firewal |
| 1534a0 | 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 | l.ipv6.forward.filter....``,.whi |
| 1534c0 | 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 61 67 65 20 35 2c 20 68 69 67 68 6c 69 67 68 74 | ch.happens.in.stage.5,.highlight |
| 1534e0 | 65 6e 65 64 20 77 69 74 68 20 72 65 64 20 63 6f 6c 6f 72 2e 00 57 68 65 72 65 20 72 6f 75 74 65 | ened.with.red.color..Where.route |
| 153500 | 73 20 77 69 74 68 20 61 20 4d 45 44 20 77 65 72 65 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 | s.with.a.MED.were.received.from. |
| 153520 | 74 68 65 20 73 61 6d 65 20 41 53 2c 20 70 72 65 66 65 72 20 74 68 65 20 72 6f 75 74 65 20 77 69 | the.same.AS,.prefer.the.route.wi |
| 153540 | 74 68 20 74 68 65 20 6c 6f 77 65 73 74 20 4d 45 44 2e 00 57 68 65 72 65 2c 20 6d 61 69 6e 20 6b | th.the.lowest.MED..Where,.main.k |
| 153560 | 65 79 20 77 6f 72 64 73 20 61 6e 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 74 68 73 | ey.words.and.configuration.paths |
| 153580 | 20 74 68 61 74 20 6e 65 65 64 73 20 74 6f 20 62 65 20 75 6e 64 65 72 73 74 6f 6f 64 3a 00 57 68 | .that.needs.to.be.understood:.Wh |
| 1535a0 | 65 74 68 65 72 20 74 6f 20 61 63 63 65 70 74 20 44 41 44 20 28 44 75 70 6c 69 63 61 74 65 20 41 | ether.to.accept.DAD.(Duplicate.A |
| 1535c0 | 64 64 72 65 73 73 20 44 65 74 65 63 74 69 6f 6e 29 2e 00 57 68 69 63 68 20 67 65 6e 65 72 61 74 | ddress.Detection)..Which.generat |
| 1535e0 | 65 73 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 | es.the.following.configuration:. |
| 153600 | 57 68 69 63 68 20 72 65 73 75 6c 74 73 20 69 6e 20 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | Which.results.in.a.configuration |
| 153620 | 20 6f 66 3a 00 57 68 69 63 68 20 77 6f 75 6c 64 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 66 6f | .of:.Which.would.generate.the.fo |
| 153640 | 6c 6c 6f 77 69 6e 67 20 4e 41 54 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 63 6f 6e 66 69 67 75 72 | llowing.NAT.destination.configur |
| 153660 | 61 74 69 6f 6e 3a 00 57 68 69 6c 65 20 2a 2a 6e 65 74 77 6f 72 6b 20 67 72 6f 75 70 73 2a 2a 20 | ation:.While.**network.groups**. |
| 153680 | 61 63 63 65 70 74 20 49 50 20 6e 65 74 77 6f 72 6b 73 20 69 6e 20 43 49 44 52 20 6e 6f 74 61 74 | accept.IP.networks.in.CIDR.notat |
| 1536a0 | 69 6f 6e 2c 20 73 70 65 63 69 66 69 63 20 49 50 20 61 64 64 72 65 73 73 65 73 20 63 61 6e 20 62 | ion,.specific.IP.addresses.can.b |
| 1536c0 | 65 20 61 64 64 65 64 20 61 73 20 61 20 33 32 2d 62 69 74 20 70 72 65 66 69 78 2e 20 49 66 20 79 | e.added.as.a.32-bit.prefix..If.y |
| 1536e0 | 6f 75 20 66 6f 72 65 73 65 65 20 74 68 65 20 6e 65 65 64 20 74 6f 20 61 64 64 20 61 20 6d 69 78 | ou.foresee.the.need.to.add.a.mix |
| 153700 | 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 6e 65 74 77 6f 72 6b 73 2c 20 74 68 65 20 | .of.addresses.and.networks,.the. |
| 153720 | 6e 65 74 77 6f 72 6b 20 67 72 6f 75 70 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 2e 00 57 68 | network.group.is.recommended..Wh |
| 153740 | 69 6c 65 20 2a 2a 6e 65 74 77 6f 72 6b 20 67 72 6f 75 70 73 2a 2a 20 61 63 63 65 70 74 20 49 50 | ile.**network.groups**.accept.IP |
| 153760 | 20 6e 65 74 77 6f 72 6b 73 20 69 6e 20 43 49 44 52 20 6e 6f 74 61 74 69 6f 6e 2c 20 73 70 65 63 | .networks.in.CIDR.notation,.spec |
| 153780 | 69 66 69 63 20 49 50 20 61 64 64 72 65 73 73 65 73 20 63 61 6e 20 62 65 20 61 64 64 65 64 20 61 | ific.IP.addresses.can.be.added.a |
| 1537a0 | 73 20 61 20 33 32 2d 62 69 74 20 70 72 65 66 69 78 2e 20 49 66 20 79 6f 75 20 66 6f 72 65 73 65 | s.a.32-bit.prefix..If.you.forese |
| 1537c0 | 65 20 74 68 65 20 6e 65 65 64 20 74 6f 20 61 64 64 20 61 20 6d 69 78 20 6f 66 20 61 64 64 72 65 | e.the.need.to.add.a.mix.of.addre |
| 1537e0 | 73 73 65 73 20 61 6e 64 20 6e 65 74 77 6f 72 6b 73 2c 20 74 68 65 6e 20 61 20 6e 65 74 77 6f 72 | sses.and.networks,.then.a.networ |
| 153800 | 6b 20 67 72 6f 75 70 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 2e 00 57 68 69 6c 65 20 6d 61 | k.group.is.recommended..While.ma |
| 153820 | 6e 79 20 61 72 65 20 61 77 61 72 65 20 6f 66 20 4f 70 65 6e 56 50 4e 20 61 73 20 61 20 43 6c 69 | ny.are.aware.of.OpenVPN.as.a.Cli |
| 153840 | 65 6e 74 20 56 50 4e 20 73 6f 6c 75 74 69 6f 6e 2c 20 69 74 20 69 73 20 6f 66 74 65 6e 20 6f 76 | ent.VPN.solution,.it.is.often.ov |
| 153860 | 65 72 6c 6f 6f 6b 65 64 20 61 73 20 61 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 56 50 4e 20 73 | erlooked.as.a.site-to-site.VPN.s |
| 153880 | 6f 6c 75 74 69 6f 6e 20 64 75 65 20 74 6f 20 6c 61 63 6b 20 6f 66 20 73 75 70 70 6f 72 74 20 66 | olution.due.to.lack.of.support.f |
| 1538a0 | 6f 72 20 74 68 69 73 20 6d 6f 64 65 20 69 6e 20 6d 61 6e 79 20 72 6f 75 74 65 72 20 70 6c 61 74 | or.this.mode.in.many.router.plat |
| 1538c0 | 66 6f 72 6d 73 2e 00 57 68 69 6c 65 20 6e 6f 72 6d 61 6c 20 47 52 45 20 69 73 20 66 6f 72 20 6c | forms..While.normal.GRE.is.for.l |
| 1538e0 | 61 79 65 72 20 33 2c 20 47 52 45 54 41 50 20 69 73 20 66 6f 72 20 6c 61 79 65 72 20 32 2e 20 47 | ayer.3,.GRETAP.is.for.layer.2..G |
| 153900 | 52 45 54 41 50 20 63 61 6e 20 65 6e 63 61 70 73 75 6c 61 74 65 20 45 74 68 65 72 6e 65 74 20 66 | RETAP.can.encapsulate.Ethernet.f |
| 153920 | 72 61 6d 65 73 2c 20 74 68 75 73 20 69 74 20 63 61 6e 20 62 65 20 62 72 69 64 67 65 64 20 77 69 | rames,.thus.it.can.be.bridged.wi |
| 153940 | 74 68 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 73 20 74 6f 20 63 72 65 61 74 65 20 64 61 | th.other.interfaces.to.create.da |
| 153960 | 74 61 6c 69 6e 6b 20 6c 61 79 65 72 20 73 65 67 6d 65 6e 74 73 20 74 68 61 74 20 73 70 61 6e 20 | talink.layer.segments.that.span. |
| 153980 | 6d 75 6c 74 69 70 6c 65 20 72 65 6d 6f 74 65 20 73 69 74 65 73 2e 00 57 68 69 74 65 6c 69 73 74 | multiple.remote.sites..Whitelist |
| 1539a0 | 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 6e 65 74 77 6f 72 6b 73 2e 20 41 6c 77 61 | .of.addresses.and.networks..Alwa |
| 1539c0 | 79 73 20 61 6c 6c 6f 77 20 69 6e 62 6f 75 6e 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 66 72 6f | ys.allow.inbound.connections.fro |
| 1539e0 | 6d 20 74 68 65 73 65 20 73 79 73 74 65 6d 73 2e 00 57 69 46 69 2d 36 28 65 29 20 2d 20 38 30 32 | m.these.systems..WiFi-6(e).-.802 |
| 153a00 | 2e 31 31 61 78 00 57 69 6c 6c 20 61 64 64 20 60 60 70 65 72 73 69 73 74 2d 6b 65 79 60 60 20 74 | .11ax.Will.add.``persist-key``.t |
| 153a20 | 6f 20 74 68 65 20 67 65 6e 65 72 61 74 65 64 20 4f 70 65 6e 56 50 4e 20 63 6f 6e 66 69 67 75 72 | o.the.generated.OpenVPN.configur |
| 153a40 | 61 74 69 6f 6e 2e 20 50 6c 65 61 73 65 20 75 73 65 20 74 68 69 73 20 6f 6e 6c 79 20 61 73 20 6c | ation..Please.use.this.only.as.l |
| 153a60 | 61 73 74 20 72 65 73 6f 72 74 20 2d 20 74 68 69 6e 67 73 20 6d 69 67 68 74 20 62 72 65 61 6b 20 | ast.resort.-.things.might.break. |
| 153a80 | 61 6e 64 20 4f 70 65 6e 56 50 4e 20 77 6f 6e 27 74 20 73 74 61 72 74 20 69 66 20 79 6f 75 20 70 | and.OpenVPN.won't.start.if.you.p |
| 153aa0 | 61 73 73 20 69 6e 76 61 6c 69 64 20 6f 70 74 69 6f 6e 73 2f 73 79 6e 74 61 78 2e 00 57 69 6c 6c | ass.invalid.options/syntax..Will |
| 153ac0 | 20 61 64 64 20 60 60 70 65 72 73 69 73 74 65 6e 74 2d 6b 65 79 60 60 20 61 74 20 74 68 65 20 65 | .add.``persistent-key``.at.the.e |
| 153ae0 | 6e 64 20 6f 66 20 74 68 65 20 67 65 6e 65 72 61 74 65 64 20 4f 70 65 6e 56 50 4e 20 63 6f 6e 66 | nd.of.the.generated.OpenVPN.conf |
| 153b00 | 69 67 75 72 61 74 69 6f 6e 2e 20 50 6c 65 61 73 65 20 75 73 65 20 74 68 69 73 20 6f 6e 6c 79 20 | iguration..Please.use.this.only. |
| 153b20 | 61 73 20 6c 61 73 74 20 72 65 73 6f 72 74 20 2d 20 74 68 69 6e 67 73 20 6d 69 67 68 74 20 62 72 | as.last.resort.-.things.might.br |
| 153b40 | 65 61 6b 20 61 6e 64 20 4f 70 65 6e 56 50 4e 20 77 6f 6e 27 74 20 73 74 61 72 74 20 69 66 20 79 | eak.and.OpenVPN.won't.start.if.y |
| 153b60 | 6f 75 20 70 61 73 73 20 69 6e 76 61 6c 69 64 20 6f 70 74 69 6f 6e 73 2f 73 79 6e 74 61 78 2e 00 | ou.pass.invalid.options/syntax.. |
| 153b80 | 57 69 6c 6c 20 61 64 64 20 60 60 70 75 73 68 20 22 6b 65 65 70 61 6c 69 76 65 20 31 20 31 30 22 | Will.add.``push."keepalive.1.10" |
| 153ba0 | 60 60 20 74 6f 20 74 68 65 20 67 65 6e 65 72 61 74 65 64 20 4f 70 65 6e 56 50 4e 20 63 6f 6e 66 | ``.to.the.generated.OpenVPN.conf |
| 153bc0 | 69 67 20 66 69 6c 65 2e 00 57 69 6c 6c 20 61 64 64 20 60 60 72 6f 75 74 65 2d 75 70 20 22 2f 63 | ig.file..Will.add.``route-up."/c |
| 153be0 | 6f 6e 66 69 67 2f 61 75 74 68 2f 74 75 6e 5f 75 70 2e 73 68 20 61 72 67 31 22 60 60 20 74 6f 20 | onfig/auth/tun_up.sh.arg1"``.to. |
| 153c00 | 74 68 65 20 67 65 6e 65 72 61 74 65 64 20 4f 70 65 6e 56 50 4e 20 63 6f 6e 66 69 67 20 66 69 6c | the.generated.OpenVPN.config.fil |
| 153c20 | 65 2e 20 54 68 65 20 70 61 74 68 20 61 6e 64 20 61 72 67 75 6d 65 6e 74 73 20 6e 65 65 64 20 74 | e..The.path.and.arguments.need.t |
| 153c40 | 6f 20 62 65 20 73 69 6e 67 6c 65 2d 20 6f 72 20 64 6f 75 62 6c 65 2d 71 75 6f 74 65 64 2e 00 57 | o.be.single-.or.double-quoted..W |
| 153c60 | 69 6c 6c 20 62 65 20 72 65 63 6f 72 64 65 64 20 6f 6e 6c 79 20 70 61 63 6b 65 74 73 2f 66 6c 6f | ill.be.recorded.only.packets/flo |
| 153c80 | 77 73 20 6f 6e 20 2a 2a 69 6e 63 6f 6d 69 6e 67 2a 2a 20 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 | ws.on.**incoming**.direction.in. |
| 153ca0 | 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 74 65 72 66 61 63 65 73 20 62 79 20 64 65 66 61 75 6c 74 | configured.interfaces.by.default |
| 153cc0 | 2e 00 57 69 6c 6c 20 64 72 6f 70 20 60 3c 73 68 61 72 65 64 2d 6e 65 74 77 6f 72 6b 2d 6e 61 6d | ..Will.drop.`<shared-network-nam |
| 153ce0 | 65 3e 5f 60 20 66 72 6f 6d 20 63 6c 69 65 6e 74 20 44 4e 53 20 72 65 63 6f 72 64 2c 20 75 73 69 | e>_`.from.client.DNS.record,.usi |
| 153d00 | 6e 67 20 6f 6e 6c 79 20 74 68 65 20 68 6f 73 74 20 64 65 63 6c 61 72 61 74 69 6f 6e 20 6e 61 6d | ng.only.the.host.declaration.nam |
| 153d20 | 65 20 61 6e 64 20 64 6f 6d 61 69 6e 3a 20 60 3c 68 6f 73 74 6e 61 6d 65 3e 2e 3c 64 6f 6d 61 69 | e.and.domain:.`<hostname>.<domai |
| 153d40 | 6e 2d 6e 61 6d 65 3e 60 00 57 69 6e 64 6f 77 73 20 31 30 20 64 6f 65 73 20 6e 6f 74 20 61 6c 6c | n-name>`.Windows.10.does.not.all |
| 153d60 | 6f 77 20 61 20 75 73 65 72 20 74 6f 20 63 68 6f 6f 73 65 20 74 68 65 20 69 6e 74 65 67 72 69 74 | ow.a.user.to.choose.the.integrit |
| 153d80 | 79 20 61 6e 64 20 65 6e 63 72 79 70 74 69 6f 6e 20 63 69 70 68 65 72 73 20 75 73 69 6e 67 20 74 | y.and.encryption.ciphers.using.t |
| 153da0 | 68 65 20 47 55 49 20 61 6e 64 20 69 74 20 75 73 65 73 20 73 6f 6d 65 20 6f 6c 64 65 72 20 70 72 | he.GUI.and.it.uses.some.older.pr |
| 153dc0 | 6f 70 6f 73 61 6c 73 20 62 79 20 64 65 66 61 75 6c 74 2e 20 41 20 75 73 65 72 20 63 61 6e 20 6f | oposals.by.default..A.user.can.o |
| 153de0 | 6e 6c 79 20 63 68 61 6e 67 65 20 74 68 65 20 70 72 6f 70 6f 73 61 6c 73 20 6f 6e 20 74 68 65 20 | nly.change.the.proposals.on.the. |
| 153e00 | 63 6c 69 65 6e 74 20 73 69 64 65 20 62 79 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 74 68 65 20 49 | client.side.by.configuring.the.I |
| 153e20 | 50 53 65 63 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 70 72 6f 66 69 6c 65 20 76 69 61 20 50 6f 77 65 | PSec.connection.profile.via.Powe |
| 153e40 | 72 53 68 65 6c 6c 2e 00 57 69 6e 64 6f 77 73 20 49 6e 74 65 72 6e 65 74 20 4e 61 6d 65 20 53 65 | rShell..Windows.Internet.Name.Se |
| 153e60 | 72 76 69 63 65 20 28 57 49 4e 53 29 20 73 65 72 76 65 72 73 20 70 72 6f 70 61 67 61 74 65 64 20 | rvice.(WINS).servers.propagated. |
| 153e80 | 74 6f 20 63 6c 69 65 6e 74 00 57 69 6e 64 6f 77 73 20 65 78 70 65 63 74 73 20 74 68 65 20 73 65 | to.client.Windows.expects.the.se |
| 153ea0 | 72 76 65 72 20 6e 61 6d 65 20 74 6f 20 62 65 20 61 6c 73 6f 20 75 73 65 64 20 69 6e 20 74 68 65 | rver.name.to.be.also.used.in.the |
| 153ec0 | 20 73 65 72 76 65 72 27 73 20 63 65 72 74 69 66 69 63 61 74 65 20 63 6f 6d 6d 6f 6e 20 6e 61 6d | .server's.certificate.common.nam |
| 153ee0 | 65 2c 20 73 6f 20 69 74 27 73 20 62 65 73 74 20 74 6f 20 75 73 65 20 74 68 69 73 20 44 4e 53 20 | e,.so.it's.best.to.use.this.DNS. |
| 153f00 | 6e 61 6d 65 20 66 6f 72 20 79 6f 75 72 20 56 50 4e 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 57 69 | name.for.your.VPN.connection..Wi |
| 153f20 | 72 65 47 75 61 72 64 00 57 69 72 65 47 75 61 72 64 20 43 6c 69 65 6e 74 20 51 52 20 63 6f 64 65 | reGuard.WireGuard.Client.QR.code |
| 153f40 | 00 57 69 72 65 47 75 61 72 64 20 69 6e 74 65 72 66 61 63 65 20 69 74 73 65 6c 66 20 75 73 65 73 | .WireGuard.interface.itself.uses |
| 153f60 | 20 61 64 64 72 65 73 73 20 31 30 2e 31 2e 30 2e 31 2f 33 30 00 57 69 72 65 47 75 61 72 64 20 69 | .address.10.1.0.1/30.WireGuard.i |
| 153f80 | 73 20 61 6e 20 65 78 74 72 65 6d 65 6c 79 20 73 69 6d 70 6c 65 20 79 65 74 20 66 61 73 74 20 61 | s.an.extremely.simple.yet.fast.a |
| 153fa0 | 6e 64 20 6d 6f 64 65 72 6e 20 56 50 4e 20 74 68 61 74 20 75 74 69 6c 69 7a 65 73 20 73 74 61 74 | nd.modern.VPN.that.utilizes.stat |
| 153fc0 | 65 2d 6f 66 2d 74 68 65 2d 61 72 74 20 63 72 79 70 74 6f 67 72 61 70 68 79 2e 20 53 65 65 20 68 | e-of-the-art.cryptography..See.h |
| 153fe0 | 74 74 70 73 3a 2f 2f 77 77 77 2e 77 69 72 65 67 75 61 72 64 2e 63 6f 6d 20 66 6f 72 20 6d 6f 72 | ttps://www.wireguard.com.for.mor |
| 154000 | 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 57 69 72 65 47 75 61 72 64 20 72 65 71 75 69 72 65 | e.information..WireGuard.require |
| 154020 | 73 20 74 68 65 20 67 65 6e 65 72 61 74 69 6f 6e 20 6f 66 20 61 20 6b 65 79 70 61 69 72 2c 20 77 | s.the.generation.of.a.keypair,.w |
| 154040 | 68 69 63 68 20 69 6e 63 6c 75 64 65 73 20 61 20 70 72 69 76 61 74 65 20 6b 65 79 20 74 6f 20 64 | hich.includes.a.private.key.to.d |
| 154060 | 65 63 72 79 70 74 20 69 6e 63 6f 6d 69 6e 67 20 74 72 61 66 66 69 63 2c 20 61 6e 64 20 61 20 70 | ecrypt.incoming.traffic,.and.a.p |
| 154080 | 75 62 6c 69 63 20 6b 65 79 20 66 6f 72 20 70 65 65 72 28 73 29 20 74 6f 20 65 6e 63 72 79 70 74 | ublic.key.for.peer(s).to.encrypt |
| 1540a0 | 20 74 72 61 66 66 69 63 2e 00 57 69 72 65 6c 65 73 73 20 63 68 61 6e 6e 65 6c 20 60 60 31 31 60 | .traffic..Wireless.channel.``11` |
| 1540c0 | 60 20 66 6f 72 20 32 2e 34 47 48 7a 00 57 69 72 65 6c 65 73 73 20 63 68 61 6e 6e 65 6c 20 60 60 | `.for.2.4GHz.Wireless.channel.`` |
| 1540e0 | 31 60 60 00 57 69 72 65 6c 65 73 73 20 63 68 61 6e 6e 65 6c 20 60 60 35 60 60 20 66 6f 72 20 36 | 1``.Wireless.channel.``5``.for.6 |
| 154100 | 47 48 7a 00 57 69 72 65 6c 65 73 73 20 64 65 76 69 63 65 20 74 79 70 65 20 66 6f 72 20 74 68 69 | GHz.Wireless.device.type.for.thi |
| 154120 | 73 20 69 6e 74 65 72 66 61 63 65 00 57 69 72 65 6c 65 73 73 20 68 61 72 64 77 61 72 65 20 64 65 | s.interface.Wireless.hardware.de |
| 154140 | 76 69 63 65 20 75 73 65 64 20 61 73 20 75 6e 64 65 72 6c 61 79 20 72 61 64 69 6f 2e 00 57 69 72 | vice.used.as.underlay.radio..Wir |
| 154160 | 65 6c 65 73 73 20 6f 70 74 69 6f 6e 73 00 57 69 72 65 6c 65 73 73 20 6f 70 74 69 6f 6e 73 20 28 | eless.options.Wireless.options.( |
| 154180 | 53 74 61 74 69 6f 6e 2f 43 6c 69 65 6e 74 29 00 57 69 72 65 6c 65 73 73 4d 6f 64 65 6d 20 28 57 | Station/Client).WirelessModem.(W |
| 1541a0 | 57 41 4e 29 20 6f 70 74 69 6f 6e 73 00 57 69 74 68 20 56 79 4f 53 20 62 65 69 6e 67 20 62 61 73 | WAN).options.With.VyOS.being.bas |
| 1541c0 | 65 64 20 6f 6e 20 74 6f 70 20 6f 66 20 4c 69 6e 75 78 20 61 6e 64 20 69 74 73 20 6b 65 72 6e 65 | ed.on.top.of.Linux.and.its.kerne |
| 1541e0 | 6c 2c 20 74 68 65 20 4e 65 74 66 69 6c 74 65 72 20 70 72 6f 6a 65 63 74 20 63 72 65 61 74 65 64 | l,.the.Netfilter.project.created |
| 154200 | 20 74 68 65 20 69 70 74 61 62 6c 65 73 20 61 6e 64 20 6e 6f 77 20 74 68 65 20 73 75 63 63 65 73 | .the.iptables.and.now.the.succes |
| 154220 | 73 6f 72 20 6e 66 74 61 62 6c 65 73 20 66 6f 72 20 74 68 65 20 4c 69 6e 75 78 20 6b 65 72 6e 65 | sor.nftables.for.the.Linux.kerne |
| 154240 | 6c 20 74 6f 20 77 6f 72 6b 20 64 69 72 65 63 74 6c 79 20 6f 6e 20 74 68 65 20 64 61 74 61 20 66 | l.to.work.directly.on.the.data.f |
| 154260 | 6c 6f 77 73 2e 20 54 68 69 73 20 6e 6f 77 20 65 78 74 65 6e 64 73 20 74 68 65 20 63 6f 6e 63 65 | lows..This.now.extends.the.conce |
| 154280 | 70 74 20 6f 66 20 7a 6f 6e 65 2d 62 61 73 65 64 20 73 65 63 75 72 69 74 79 20 74 6f 20 61 6c 6c | pt.of.zone-based.security.to.all |
| 1542a0 | 6f 77 20 66 6f 72 20 6d 61 6e 69 70 75 6c 61 74 69 6e 67 20 74 68 65 20 64 61 74 61 20 61 74 20 | ow.for.manipulating.the.data.at. |
| 1542c0 | 6d 75 6c 74 69 70 6c 65 20 73 74 61 67 65 73 20 6f 6e 63 65 20 61 63 63 65 70 74 65 64 20 62 79 | multiple.stages.once.accepted.by |
| 1542e0 | 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 74 68 65 20 64 | .the.network.interface.and.the.d |
| 154300 | 72 69 76 65 72 20 62 65 66 6f 72 65 20 62 65 69 6e 67 20 68 61 6e 64 65 64 20 6f 66 66 20 74 6f | river.before.being.handed.off.to |
| 154320 | 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 28 65 2e 67 2e 20 61 20 77 65 62 20 73 65 72 | .the.destination.(e.g..a.web.ser |
| 154340 | 76 65 72 20 4f 52 20 61 6e 6f 74 68 65 72 20 64 65 76 69 63 65 29 2e 00 57 69 74 68 20 57 69 72 | ver.OR.another.device)..With.Wir |
| 154360 | 65 47 75 61 72 64 2c 20 61 20 52 6f 61 64 20 57 61 72 72 69 6f 72 20 56 50 4e 20 63 6f 6e 66 69 | eGuard,.a.Road.Warrior.VPN.confi |
| 154380 | 67 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 61 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 56 | g.is.similar.to.a.site-to-site.V |
| 1543a0 | 50 4e 2e 20 49 74 20 6a 75 73 74 20 6c 61 63 6b 73 20 74 68 65 20 60 60 61 64 64 72 65 73 73 60 | PN..It.just.lacks.the.``address` |
| 1543c0 | 60 20 61 6e 64 20 60 60 70 6f 72 74 60 60 20 73 74 61 74 65 6d 65 6e 74 73 2e 00 57 69 74 68 20 | `.and.``port``.statements..With. |
| 1543e0 | 74 68 65 20 60 60 6e 61 6d 65 2d 73 65 72 76 65 72 60 60 20 6f 70 74 69 6f 6e 20 73 65 74 20 74 | the.``name-server``.option.set.t |
| 154400 | 6f 20 60 60 6e 6f 6e 65 60 60 2c 20 56 79 4f 53 20 77 69 6c 6c 20 69 67 6e 6f 72 65 20 74 68 65 | o.``none``,.VyOS.will.ignore.the |
| 154420 | 20 6e 61 6d 65 73 65 72 76 65 72 73 20 79 6f 75 72 20 49 53 50 20 73 65 6e 64 73 20 79 6f 75 20 | .nameservers.your.ISP.sends.you. |
| 154440 | 61 6e 64 20 74 68 75 73 20 79 6f 75 20 63 61 6e 20 66 75 6c 6c 79 20 72 65 6c 79 20 6f 6e 20 74 | and.thus.you.can.fully.rely.on.t |
| 154460 | 68 65 20 6f 6e 65 73 20 79 6f 75 20 68 61 76 65 20 63 6f 6e 66 69 67 75 72 65 64 20 73 74 61 74 | he.ones.you.have.configured.stat |
| 154480 | 69 63 61 6c 6c 79 2e 00 57 69 74 68 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 79 6f 75 20 63 61 | ically..With.the.firewall.you.ca |
| 1544a0 | 6e 20 73 65 74 20 72 75 6c 65 73 20 74 6f 20 61 63 63 65 70 74 2c 20 64 72 6f 70 20 6f 72 20 72 | n.set.rules.to.accept,.drop.or.r |
| 1544c0 | 65 6a 65 63 74 20 49 43 4d 50 20 69 6e 2c 20 6f 75 74 20 6f 72 20 6c 6f 63 61 6c 20 74 72 61 66 | eject.ICMP.in,.out.or.local.traf |
| 1544e0 | 66 69 63 2e 20 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 75 73 65 20 74 68 65 20 67 65 6e 65 72 61 | fic..You.can.also.use.the.genera |
| 154500 | 6c 20 2a 2a 66 69 72 65 77 61 6c 6c 20 61 6c 6c 2d 70 69 6e 67 2a 2a 20 63 6f 6d 6d 61 6e 64 2e | l.**firewall.all-ping**.command. |
| 154520 | 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 66 66 65 63 74 73 20 6f 6e 6c 79 20 74 6f 20 4c 4f | .This.command.affects.only.to.LO |
| 154540 | 43 41 4c 20 28 70 61 63 6b 65 74 73 20 64 65 73 74 69 6e 65 64 20 66 6f 72 20 79 6f 75 72 20 56 | CAL.(packets.destined.for.your.V |
| 154560 | 79 4f 53 20 73 79 73 74 65 6d 29 2c 20 6e 6f 74 20 74 6f 20 49 4e 20 6f 72 20 4f 55 54 20 74 72 | yOS.system),.not.to.IN.or.OUT.tr |
| 154580 | 61 66 66 69 63 2e 00 57 69 74 68 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 2c 20 79 6f 75 20 63 61 | affic..With.this.command,.you.ca |
| 1545a0 | 6e 20 73 70 65 63 69 66 79 20 68 6f 77 20 74 68 65 20 55 52 4c 20 70 61 74 68 20 73 68 6f 75 6c | n.specify.how.the.URL.path.shoul |
| 1545c0 | 64 20 62 65 20 6d 61 74 63 68 65 64 20 61 67 61 69 6e 73 74 20 69 6e 63 6f 6d 69 6e 67 20 72 65 | d.be.matched.against.incoming.re |
| 1545e0 | 71 75 65 73 74 73 2e 00 57 69 74 68 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c | quests..With.this.configuration, |
| 154600 | 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 67 65 74 20 73 73 68 20 61 63 63 65 73 73 20 74 6f 20 74 | .in.order.to.get.ssh.access.to.t |
| 154620 | 68 65 20 72 6f 75 74 65 72 2c 20 74 68 65 20 75 73 65 72 20 6e 65 65 64 73 20 74 6f 3a 00 57 69 | he.router,.the.user.needs.to:.Wi |
| 154640 | 74 68 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 69 6e 20 6f 72 64 65 72 20 | th.this.configuration,.in.order. |
| 154660 | 74 6f 20 67 65 74 20 73 73 68 20 61 63 63 65 73 73 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 2c | to.get.ssh.access.to.the.router, |
| 154680 | 20 75 73 65 72 20 6e 65 65 64 73 20 74 6f 3a 00 57 69 74 68 20 7a 6f 6e 65 2d 62 61 73 65 64 20 | .user.needs.to:.With.zone-based. |
| 1546a0 | 66 69 72 65 77 61 6c 6c 73 20 61 20 6e 65 77 20 63 6f 6e 63 65 70 74 20 77 61 73 20 69 6d 70 6c | firewalls.a.new.concept.was.impl |
| 1546c0 | 65 6d 65 6e 74 65 64 2c 20 69 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 73 74 61 6e | emented,.in.addition.to.the.stan |
| 1546e0 | 64 61 72 64 20 69 6e 20 61 6e 64 20 6f 75 74 20 74 72 61 66 66 69 63 20 66 6c 6f 77 73 2c 20 61 | dard.in.and.out.traffic.flows,.a |
| 154700 | 20 6c 6f 63 61 6c 20 66 6c 6f 77 20 77 61 73 20 61 64 64 65 64 2e 20 54 68 69 73 20 6c 6f 63 61 | .local.flow.was.added..This.loca |
| 154720 | 6c 20 66 6c 6f 77 20 77 61 73 20 66 6f 72 20 74 72 61 66 66 69 63 20 6f 72 69 67 69 6e 61 74 69 | l.flow.was.for.traffic.originati |
| 154740 | 6e 67 20 61 6e 64 20 64 65 73 74 69 6e 65 64 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 | ng.and.destined.to.the.router.it |
| 154760 | 73 65 6c 66 2e 20 57 68 69 63 68 20 6d 65 61 6e 73 20 74 68 61 74 20 61 64 64 69 74 69 6f 6e 61 | self..Which.means.that.additiona |
| 154780 | 6c 20 72 75 6c 65 73 20 77 65 72 65 20 72 65 71 75 69 72 65 64 20 74 6f 20 73 65 63 75 72 65 20 | l.rules.were.required.to.secure. |
| 1547a0 | 74 68 65 20 66 69 72 65 77 61 6c 6c 20 69 74 73 65 6c 66 20 66 72 6f 6d 20 74 68 65 20 6e 65 74 | the.firewall.itself.from.the.net |
| 1547c0 | 77 6f 72 6b 2c 20 69 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 65 78 69 73 74 69 6e | work,.in.addition.to.the.existin |
| 1547e0 | 67 20 69 6e 62 6f 75 6e 64 20 61 6e 64 20 6f 75 74 62 6f 75 6e 64 20 72 75 6c 65 73 20 66 72 6f | g.inbound.and.outbound.rules.fro |
| 154800 | 6d 20 74 68 65 20 74 72 61 64 69 74 69 6f 6e 61 6c 20 63 6f 6e 63 65 70 74 20 61 62 6f 76 65 2e | m.the.traditional.concept.above. |
| 154820 | 00 57 69 74 68 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 73 20 61 20 6e 65 77 | .With.zone-based.firewalls.a.new |
| 154840 | 20 63 6f 6e 63 65 70 74 20 77 61 73 20 69 6d 70 6c 65 6d 65 6e 74 65 64 2c 20 69 6e 20 61 64 64 | .concept.was.implemented,.in.add |
| 154860 | 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 73 74 61 6e 64 61 72 64 20 69 6e 20 61 6e 64 20 6f 75 74 | ition.to.the.standard.in.and.out |
| 154880 | 20 74 72 61 66 66 69 63 20 66 6c 6f 77 73 2c 20 61 20 6c 6f 63 61 6c 20 66 6c 6f 77 20 77 61 73 | .traffic.flows,.a.local.flow.was |
| 1548a0 | 20 61 64 64 65 64 2e 20 54 68 69 73 20 6c 6f 63 61 6c 20 77 61 73 20 66 6f 72 20 74 72 61 66 66 | .added..This.local.was.for.traff |
| 1548c0 | 69 63 20 6f 72 69 67 69 6e 61 74 69 6e 67 20 61 6e 64 20 64 65 73 74 69 6e 65 64 20 74 6f 20 74 | ic.originating.and.destined.to.t |
| 1548e0 | 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2e 20 57 68 69 63 68 20 6d 65 61 6e 73 20 61 64 | he.router.itself..Which.means.ad |
| 154900 | 64 69 74 69 6f 6e 61 6c 20 72 75 6c 65 73 20 77 65 72 65 20 72 65 71 75 69 72 65 64 20 74 6f 20 | ditional.rules.were.required.to. |
| 154920 | 73 65 63 75 72 65 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 69 74 73 65 6c 66 20 66 72 6f 6d 20 | secure.the.firewall.itself.from. |
| 154940 | 74 68 65 20 6e 65 74 77 6f 72 6b 2c 20 69 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 | the.network,.in.addition.to.the. |
| 154960 | 65 78 69 73 74 69 6e 67 20 69 6e 62 6f 75 6e 64 20 61 6e 64 20 6f 75 74 62 6f 75 6e 64 20 72 75 | existing.inbound.and.outbound.ru |
| 154980 | 6c 65 73 20 66 72 6f 6d 20 74 68 65 20 74 72 61 64 69 74 69 6f 6e 61 6c 20 63 6f 6e 63 65 70 74 | les.from.the.traditional.concept |
| 1549a0 | 20 61 62 6f 76 65 2e 00 57 69 74 68 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c | .above..With.zone-based.firewall |
| 1549c0 | 73 20 61 20 6e 65 77 20 63 6f 6e 63 65 70 74 20 77 61 73 20 69 6d 70 6c 65 6d 65 6e 74 65 64 2c | s.a.new.concept.was.implemented, |
| 1549e0 | 20 69 6e 20 61 64 64 74 69 6f 6e 20 74 6f 20 74 68 65 20 73 74 61 6e 64 61 72 64 20 69 6e 20 61 | .in.addtion.to.the.standard.in.a |
| 154a00 | 6e 64 20 6f 75 74 20 74 72 61 66 66 69 63 20 66 6c 6f 77 73 2c 20 61 20 6c 6f 63 61 6c 20 66 6c | nd.out.traffic.flows,.a.local.fl |
| 154a20 | 6f 77 20 77 61 73 20 61 64 64 65 64 2e 20 54 68 69 73 20 6c 6f 63 61 6c 20 77 61 73 20 66 6f 72 | ow.was.added..This.local.was.for |
| 154a40 | 20 74 72 61 66 66 69 63 20 6f 72 69 67 69 6e 61 74 69 6e 67 20 61 6e 64 20 64 65 73 74 69 6e 65 | .traffic.originating.and.destine |
| 154a60 | 64 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2e 20 57 68 69 63 68 20 6d 65 | d.to.the.router.itself..Which.me |
| 154a80 | 61 6e 73 20 61 64 64 69 74 69 6f 6e 61 6c 20 72 75 6c 65 73 20 77 65 72 65 20 72 65 71 75 69 72 | ans.additional.rules.were.requir |
| 154aa0 | 65 64 20 74 6f 20 73 65 63 75 72 65 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 69 74 73 65 6c 66 | ed.to.secure.the.firewall.itself |
| 154ac0 | 20 66 72 6f 6d 20 74 68 65 20 6e 65 74 77 6f 72 6b 2c 20 69 6e 20 61 64 64 69 74 69 6f 6e 20 74 | .from.the.network,.in.addition.t |
| 154ae0 | 6f 20 74 68 65 20 65 78 69 73 74 69 6e 67 20 69 6e 62 6f 75 6e 64 20 61 6e 64 20 6f 75 74 62 6f | o.the.existing.inbound.and.outbo |
| 154b00 | 75 6e 64 20 72 75 6c 65 73 20 66 72 6f 6d 20 74 68 65 20 74 72 61 64 69 74 69 6f 6e 61 6c 20 63 | und.rules.from.the.traditional.c |
| 154b20 | 6f 6e 63 65 70 74 20 61 62 6f 76 65 2e 00 59 00 59 6f 75 20 61 70 70 6c 79 20 61 20 72 75 6c 65 | oncept.above..Y.You.apply.a.rule |
| 154b40 | 2d 73 65 74 20 61 6c 77 61 79 73 20 74 6f 20 61 20 7a 6f 6e 65 20 66 72 6f 6d 20 61 6e 20 6f 74 | -set.always.to.a.zone.from.an.ot |
| 154b60 | 68 65 72 20 7a 6f 6e 65 2c 20 69 74 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 74 6f 20 63 | her.zone,.it.is.recommended.to.c |
| 154b80 | 72 65 61 74 65 20 6f 6e 65 20 72 75 6c 65 2d 73 65 74 20 66 6f 72 20 65 61 63 68 20 7a 6f 6e 65 | reate.one.rule-set.for.each.zone |
| 154ba0 | 20 70 61 69 72 2e 00 59 6f 75 20 61 72 65 20 61 62 6c 65 20 74 6f 20 73 65 74 20 70 6f 73 74 2d | .pair..You.are.able.to.set.post- |
| 154bc0 | 6c 6f 67 69 6e 20 6f 72 20 70 72 65 2d 6c 6f 67 69 6e 20 62 61 6e 6e 65 72 20 6d 65 73 73 61 67 | login.or.pre-login.banner.messag |
| 154be0 | 65 73 20 74 6f 20 64 69 73 70 6c 61 79 20 63 65 72 74 61 69 6e 20 69 6e 66 6f 72 6d 61 74 69 6f | es.to.display.certain.informatio |
| 154c00 | 6e 20 66 6f 72 20 74 68 69 73 20 73 79 73 74 65 6d 2e 00 59 6f 75 20 61 72 65 20 62 65 20 61 62 | n.for.this.system..You.are.be.ab |
| 154c20 | 6c 65 20 74 6f 20 64 6f 77 6e 6c 6f 61 64 20 74 68 65 20 66 69 6c 65 73 20 75 73 69 6e 67 20 53 | le.to.download.the.files.using.S |
| 154c40 | 43 50 2c 20 6f 6e 63 65 20 74 68 65 20 53 53 48 20 73 65 72 76 69 63 65 20 68 61 73 20 62 65 65 | CP,.once.the.SSH.service.has.bee |
| 154c60 | 6e 20 61 63 74 69 76 61 74 65 64 20 6c 69 6b 65 20 73 6f 00 59 6f 75 20 63 61 6e 20 61 6c 73 6f | n.activated.like.so.You.can.also |
| 154c80 | 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 74 69 6d 65 20 69 6e 74 65 72 76 61 6c 20 66 6f 72 | .configure.the.time.interval.for |
| 154ca0 | 20 70 72 65 65 6d 70 74 69 6f 6e 20 77 69 74 68 20 74 68 65 20 22 70 72 65 65 6d 70 74 2d 64 65 | .preemption.with.the."preempt-de |
| 154cc0 | 6c 61 79 22 20 6f 70 74 69 6f 6e 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 74 6f 20 73 65 74 | lay".option..For.example,.to.set |
| 154ce0 | 20 74 68 65 20 68 69 67 68 65 72 20 70 72 69 6f 72 69 74 79 20 72 6f 75 74 65 72 20 74 6f 20 74 | .the.higher.priority.router.to.t |
| 154d00 | 61 6b 65 20 6f 76 65 72 20 69 6e 20 31 38 30 20 73 65 63 6f 6e 64 73 2c 20 75 73 65 3a 00 59 6f | ake.over.in.180.seconds,.use:.Yo |
| 154d20 | 75 20 63 61 6e 20 61 6c 73 6f 20 64 65 66 69 6e 65 20 63 75 73 74 6f 6d 20 74 69 6d 65 6f 75 74 | u.can.also.define.custom.timeout |
| 154d40 | 20 76 61 6c 75 65 73 20 74 6f 20 61 70 70 6c 79 20 74 6f 20 61 20 73 70 65 63 69 66 69 63 20 73 | .values.to.apply.to.a.specific.s |
| 154d60 | 75 62 73 65 74 20 6f 66 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2c 20 62 61 73 65 64 20 6f 6e 20 61 | ubset.of.connections,.based.on.a |
| 154d80 | 20 70 61 63 6b 65 74 20 61 6e 64 20 66 6c 6f 77 20 73 65 6c 65 63 74 6f 72 2e 20 54 6f 20 64 6f | .packet.and.flow.selector..To.do |
| 154da0 | 20 74 68 69 73 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 20 61 20 72 75 6c 65 | .this,.you.need.to.create.a.rule |
| 154dc0 | 20 64 65 66 69 6e 69 6e 67 20 74 68 65 20 70 61 63 6b 65 74 20 61 6e 64 20 66 6c 6f 77 20 73 65 | .defining.the.packet.and.flow.se |
| 154de0 | 6c 65 63 74 6f 72 2e 00 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 6b 65 65 70 20 64 69 66 66 65 72 | lector..You.can.also.keep.differ |
| 154e00 | 65 6e 74 20 44 4e 53 20 7a 6f 6e 65 20 75 70 64 61 74 65 64 2e 20 4a 75 73 74 20 63 72 65 61 74 | ent.DNS.zone.updated..Just.creat |
| 154e20 | 65 20 61 20 6e 65 77 20 63 6f 6e 66 69 67 20 6e 6f 64 65 3a 20 60 60 73 65 74 20 73 65 72 76 69 | e.a.new.config.node:.``set.servi |
| 154e40 | 63 65 20 64 6e 73 20 64 79 6e 61 6d 69 63 20 69 6e 74 65 72 66 61 63 65 20 3c 69 6e 74 65 72 66 | ce.dns.dynamic.interface.<interf |
| 154e60 | 61 63 65 3e 20 72 66 63 32 31 33 36 20 3c 6f 74 68 65 72 2d 73 65 72 76 69 63 65 2d 6e 61 6d 65 | ace>.rfc2136.<other-service-name |
| 154e80 | 3e 60 60 00 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 6f 70 74 20 66 6f 72 20 75 73 69 6e 67 20 60 | >``.You.can.also.opt.for.using.` |
| 154ea0 | 3a 3a 2f 36 34 60 20 61 73 20 70 72 65 66 69 78 20 66 6f 72 20 79 6f 75 72 20 3a 61 62 62 72 3a | ::/64`.as.prefix.for.your.:abbr: |
| 154ec0 | 60 52 41 73 20 28 52 6f 75 74 65 72 20 41 64 76 65 72 74 69 73 65 6d 65 6e 74 73 29 60 2e 20 54 | `RAs.(Router.Advertisements)`..T |
| 154ee0 | 68 69 73 20 77 69 6c 6c 20 74 61 6b 65 20 74 68 65 20 49 50 76 36 20 47 55 41 20 70 72 65 66 69 | his.will.take.the.IPv6.GUA.prefi |
| 154f00 | 78 20 61 73 73 69 67 6e 65 64 20 74 6f 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2c 20 77 68 69 | x.assigned.to.the.interface,.whi |
| 154f20 | 63 68 20 63 6f 6d 65 73 20 69 6e 20 68 61 6e 64 79 20 77 68 65 6e 20 75 73 69 6e 67 20 44 48 43 | ch.comes.in.handy.when.using.DHC |
| 154f40 | 50 76 36 2d 50 44 2e 00 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 73 70 65 63 69 66 79 20 77 68 69 | Pv6-PD..You.can.also.specify.whi |
| 154f60 | 63 68 20 49 50 76 36 20 61 63 63 65 73 73 2d 6c 69 73 74 20 73 68 6f 75 6c 64 20 62 65 20 73 68 | ch.IPv6.access-list.should.be.sh |
| 154f80 | 6f 77 6e 3a 00 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 74 75 6e 65 20 6d 75 6c 74 69 63 61 73 74 | own:.You.can.also.tune.multicast |
| 154fa0 | 20 77 69 74 68 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 2e 00 59 6f | .with.the.following.commands..Yo |
| 154fc0 | 75 20 63 61 6e 20 61 6c 73 6f 20 75 73 65 20 61 6e 6f 74 68 65 72 20 61 74 74 72 69 62 75 74 65 | u.can.also.use.another.attribute |
| 154fe0 | 73 20 66 6f 72 20 69 64 65 6e 74 69 66 79 20 63 6c 69 65 6e 74 20 66 6f 72 20 64 69 73 63 6f 6e | s.for.identify.client.for.discon |
| 155000 | 6e 65 63 74 2c 20 6c 69 6b 65 20 46 72 61 6d 65 64 2d 49 50 2d 41 64 64 72 65 73 73 2c 20 41 63 | nect,.like.Framed-IP-Address,.Ac |
| 155020 | 63 74 2d 53 65 73 73 69 6f 6e 2d 49 64 2c 20 65 74 63 2e 20 52 65 73 75 6c 74 20 63 6f 6d 6d 61 | ct-Session-Id,.etc..Result.comma |
| 155040 | 6e 64 73 20 61 70 70 65 61 72 73 20 69 6e 20 6c 6f 67 2e 00 59 6f 75 20 63 61 6e 20 61 6c 73 6f | nds.appears.in.log..You.can.also |
| 155060 | 20 77 72 69 74 65 20 61 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 61 20 66 69 6c 74 65 | .write.a.description.for.a.filte |
| 155080 | 72 3a 00 59 6f 75 20 63 61 6e 20 61 73 73 69 67 6e 20 6d 75 6c 74 69 70 6c 65 20 6b 65 79 73 20 | r:.You.can.assign.multiple.keys. |
| 1550a0 | 74 6f 20 74 68 65 20 73 61 6d 65 20 75 73 65 72 20 62 79 20 75 73 69 6e 67 20 61 20 75 6e 69 71 | to.the.same.user.by.using.a.uniq |
| 1550c0 | 75 65 20 69 64 65 6e 74 69 66 69 65 72 20 70 65 72 20 53 53 48 20 6b 65 79 2e 00 59 6f 75 20 63 | ue.identifier.per.SSH.key..You.c |
| 1550e0 | 61 6e 20 61 76 6f 69 64 20 74 68 65 20 22 6c 65 61 6b 79 22 20 62 65 68 61 76 69 6f 72 20 62 79 | an.avoid.the."leaky".behavior.by |
| 155100 | 20 75 73 69 6e 67 20 61 20 66 69 72 65 77 61 6c 6c 20 70 6f 6c 69 63 79 20 74 68 61 74 20 64 72 | .using.a.firewall.policy.that.dr |
| 155120 | 6f 70 73 20 22 69 6e 76 61 6c 69 64 22 20 73 74 61 74 65 20 70 61 63 6b 65 74 73 2e 00 59 6f 75 | ops."invalid".state.packets..You |
| 155140 | 20 63 61 6e 20 63 68 65 63 6b 20 79 6f 75 72 20 4e 49 43 20 64 72 69 76 65 72 20 62 79 20 69 73 | .can.check.your.NIC.driver.by.is |
| 155160 | 73 75 69 6e 67 20 3a 6f 70 63 6d 64 3a 60 73 68 6f 77 20 69 6e 74 65 72 66 61 63 65 73 20 65 74 | suing.:opcmd:`show.interfaces.et |
| 155180 | 68 65 72 6e 65 74 20 65 74 68 30 20 70 68 79 73 69 63 61 6c 20 7c 20 67 72 65 70 20 2d 69 20 64 | hernet.eth0.physical.|.grep.-i.d |
| 1551a0 | 72 69 76 65 72 60 00 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 61 20 70 6f 6c 69 63 | river`.You.can.configure.a.polic |
| 1551c0 | 79 20 69 6e 74 6f 20 61 20 63 6c 61 73 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 60 60 71 75 65 | y.into.a.class.through.the.``que |
| 1551e0 | 75 65 2d 74 79 70 65 60 60 20 73 65 74 74 69 6e 67 2e 00 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 | ue-type``.setting..You.can.confi |
| 155200 | 67 75 72 65 20 63 6c 61 73 73 65 73 20 28 75 70 20 74 6f 20 34 30 39 30 29 20 77 69 74 68 20 64 | gure.classes.(up.to.4090).with.d |
| 155220 | 69 66 66 65 72 65 6e 74 20 73 65 74 74 69 6e 67 73 20 61 6e 64 20 61 20 64 65 66 61 75 6c 74 20 | ifferent.settings.and.a.default. |
| 155240 | 70 6f 6c 69 63 79 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 | policy.which.will.be.applied.to. |
| 155260 | 61 6e 79 20 74 72 61 66 66 69 63 20 6e 6f 74 20 6d 61 74 63 68 69 6e 67 20 61 6e 79 20 6f 66 20 | any.traffic.not.matching.any.of. |
| 155280 | 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 63 6c 61 73 73 65 73 2e 00 59 6f 75 20 63 61 6e 20 | the.configured.classes..You.can. |
| 1552a0 | 63 6f 6e 66 69 67 75 72 65 20 6d 75 6c 74 69 70 6c 65 20 69 6e 74 65 72 66 61 63 65 73 20 77 68 | configure.multiple.interfaces.wh |
| 1552c0 | 69 63 68 20 77 68 6f 75 6c 64 20 70 61 72 74 69 63 69 70 61 74 65 20 69 6e 20 66 6c 6f 77 20 61 | ich.whould.participate.in.flow.a |
| 1552e0 | 63 63 6f 75 6e 74 69 6e 67 2e 00 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 6d 75 6c | ccounting..You.can.configure.mul |
| 155300 | 74 69 70 6c 65 20 69 6e 74 65 72 66 61 63 65 73 20 77 68 69 63 68 20 77 68 6f 75 6c 64 20 70 61 | tiple.interfaces.which.whould.pa |
| 155320 | 72 74 69 63 69 70 61 74 65 20 69 6e 20 73 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 2e 00 59 | rticipate.in.sflow.accounting..Y |
| 155340 | 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 6d 75 6c 74 69 70 6c 65 20 69 6e 74 65 72 66 | ou.can.configure.multiple.interf |
| 155360 | 61 63 65 73 20 77 68 69 63 68 20 77 6f 75 6c 64 20 70 61 72 74 69 63 69 70 61 74 65 20 69 6e 20 | aces.which.would.participate.in. |
| 155380 | 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 2e 00 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 | flow.accounting..You.can.configu |
| 1553a0 | 72 65 20 6d 75 6c 74 69 70 6c 65 20 69 6e 74 65 72 66 61 63 65 73 20 77 68 69 63 68 20 77 6f 75 | re.multiple.interfaces.which.wou |
| 1553c0 | 6c 64 20 70 61 72 74 69 63 69 70 61 74 65 20 69 6e 20 73 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 | ld.participate.in.sflow.accounti |
| 1553e0 | 6e 67 2e 00 59 6f 75 20 63 61 6e 20 63 72 65 61 74 65 20 6d 75 6c 74 69 70 6c 65 20 56 4c 41 4e | ng..You.can.create.multiple.VLAN |
| 155400 | 20 69 6e 74 65 72 66 61 63 65 73 20 6f 6e 20 61 20 70 68 79 73 69 63 61 6c 20 69 6e 74 65 72 66 | .interfaces.on.a.physical.interf |
| 155420 | 61 63 65 2e 20 54 68 65 20 56 4c 41 4e 20 49 44 20 72 61 6e 67 65 20 69 73 20 66 72 6f 6d 20 30 | ace..The.VLAN.ID.range.is.from.0 |
| 155440 | 20 74 6f 20 34 30 39 34 2e 00 59 6f 75 20 63 61 6e 20 64 65 66 69 6e 65 20 63 75 73 74 6f 6d 20 | .to.4094..You.can.define.custom. |
| 155460 | 74 69 6d 65 6f 75 74 20 76 61 6c 75 65 73 20 74 6f 20 61 70 70 6c 79 20 74 6f 20 61 20 73 70 65 | timeout.values.to.apply.to.a.spe |
| 155480 | 63 69 66 69 63 20 73 75 62 73 65 74 20 6f 66 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2c 20 62 61 73 | cific.subset.of.connections,.bas |
| 1554a0 | 65 64 20 6f 6e 20 61 20 70 61 63 6b 65 74 20 61 6e 64 20 66 6c 6f 77 20 73 65 6c 65 63 74 6f 72 | ed.on.a.packet.and.flow.selector |
| 1554c0 | 2e 20 54 6f 20 64 6f 20 74 68 69 73 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 | ..To.do.this,.you.need.to.create |
| 1554e0 | 20 61 20 72 75 6c 65 20 64 65 66 69 6e 69 6e 67 20 74 68 65 20 70 61 63 6b 65 74 20 61 6e 64 20 | .a.rule.defining.the.packet.and. |
| 155500 | 66 6c 6f 77 20 73 65 6c 65 63 74 6f 72 2e 00 59 6f 75 20 63 61 6e 20 64 69 73 61 62 6c 65 20 61 | flow.selector..You.can.disable.a |
| 155520 | 20 56 52 52 50 20 67 72 6f 75 70 20 77 69 74 68 20 60 60 64 69 73 61 62 6c 65 60 60 20 6f 70 74 | .VRRP.group.with.``disable``.opt |
| 155540 | 69 6f 6e 3a 00 59 6f 75 20 63 61 6e 20 67 65 74 20 6d 6f 72 65 20 73 70 65 63 69 66 69 63 20 4f | ion:.You.can.get.more.specific.O |
| 155560 | 53 50 46 76 33 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 62 79 20 75 73 69 6e 67 20 74 68 65 20 70 | SPFv3.information.by.using.the.p |
| 155580 | 61 72 61 6d 65 74 65 72 73 20 73 68 6f 77 6e 20 62 65 6c 6f 77 3a 00 59 6f 75 20 63 61 6e 20 6e | arameters.shown.below:.You.can.n |
| 1555a0 | 6f 74 20 61 73 73 69 67 6e 20 74 68 65 20 73 61 6d 65 20 61 6c 6c 6f 77 65 64 2d 69 70 73 20 73 | ot.assign.the.same.allowed-ips.s |
| 1555c0 | 74 61 74 65 6d 65 6e 74 20 74 6f 20 6d 75 6c 74 69 70 6c 65 20 57 69 72 65 47 75 61 72 64 20 70 | tatement.to.multiple.WireGuard.p |
| 1555e0 | 65 65 72 73 2e 20 54 68 69 73 20 61 20 64 65 73 69 67 6e 20 64 65 63 69 73 69 6f 6e 2e 20 46 6f | eers..This.a.design.decision..Fo |
| 155600 | 72 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 70 6c 65 61 73 65 20 63 68 65 63 6b 20 | r.more.information.please.check. |
| 155620 | 74 68 65 20 60 57 69 72 65 47 75 61 72 64 20 6d 61 69 6c 69 6e 67 20 6c 69 73 74 60 5f 2e 00 59 | the.`WireGuard.mailing.list`_..Y |
| 155640 | 6f 75 20 63 61 6e 20 6e 6f 74 20 72 75 6e 20 74 68 69 73 20 69 6e 20 61 20 56 52 52 50 20 73 65 | ou.can.not.run.this.in.a.VRRP.se |
| 155660 | 74 75 70 2c 20 69 66 20 6d 75 6c 74 69 70 6c 65 20 6d 44 4e 53 20 72 65 70 65 61 74 65 72 73 20 | tup,.if.multiple.mDNS.repeaters. |
| 155680 | 61 72 65 20 6c 61 75 6e 63 68 65 64 20 69 6e 20 61 20 73 75 62 6e 65 74 20 79 6f 75 20 77 69 6c | are.launched.in.a.subnet.you.wil |
| 1556a0 | 6c 20 65 78 70 65 72 69 65 6e 63 65 20 74 68 65 20 6d 44 4e 53 20 70 61 63 6b 65 74 20 73 74 6f | l.experience.the.mDNS.packet.sto |
| 1556c0 | 72 6d 20 64 65 61 74 68 21 00 59 6f 75 20 63 61 6e 20 6e 6f 77 20 22 64 69 61 6c 22 20 74 68 65 | rm.death!.You.can.now."dial".the |
| 1556e0 | 20 70 65 65 72 20 77 69 74 68 20 74 68 65 20 66 6f 6c 6c 77 6f 69 6e 67 20 63 6f 6d 6d 61 6e 64 | .peer.with.the.follwoing.command |
| 155700 | 3a 20 60 60 73 73 74 70 63 20 2d 2d 6c 6f 67 2d 6c 65 76 65 6c 20 34 20 2d 2d 6c 6f 67 2d 73 74 | :.``sstpc.--log-level.4.--log-st |
| 155720 | 64 65 72 72 20 2d 2d 75 73 65 72 20 76 79 6f 73 20 2d 2d 70 61 73 73 77 6f 72 64 20 76 79 6f 73 | derr.--user.vyos.--password.vyos |
| 155740 | 20 76 70 6e 2e 65 78 61 6d 70 6c 65 2e 63 6f 6d 20 2d 2d 20 63 61 6c 6c 20 76 79 6f 73 60 60 2e | .vpn.example.com.--.call.vyos``. |
| 155760 | 00 59 6f 75 20 63 61 6e 20 6e 6f 77 20 53 53 48 20 69 6e 74 6f 20 79 6f 75 72 20 73 79 73 74 65 | .You.can.now.SSH.into.your.syste |
| 155780 | 6d 20 75 73 69 6e 67 20 61 64 6d 69 6e 2f 61 64 6d 69 6e 20 61 73 20 61 20 64 65 66 61 75 6c 74 | m.using.admin/admin.as.a.default |
| 1557a0 | 20 75 73 65 72 20 73 75 70 70 6c 69 65 64 20 66 72 6f 6d 20 74 68 65 20 60 60 6c 66 6b 65 69 74 | .user.supplied.from.the.``lfkeit |
| 1557c0 | 65 6c 2f 74 61 63 61 63 73 5f 70 6c 75 73 3a 6c 61 74 65 73 74 60 60 20 63 6f 6e 74 61 69 6e 65 | el/tacacs_plus:latest``.containe |
| 1557e0 | 72 2e 00 59 6f 75 20 63 61 6e 20 6f 6e 6c 79 20 61 70 70 6c 79 20 6f 6e 65 20 70 6f 6c 69 63 79 | r..You.can.only.apply.one.policy |
| 155800 | 20 70 65 72 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 64 69 72 65 63 74 69 6f 6e 2c 20 62 75 | .per.interface.and.direction,.bu |
| 155820 | 74 20 79 6f 75 20 63 6f 75 6c 64 20 72 65 75 73 65 20 61 20 70 6f 6c 69 63 79 20 6f 6e 20 64 69 | t.you.could.reuse.a.policy.on.di |
| 155840 | 66 66 65 72 65 6e 74 20 69 6e 74 65 72 66 61 63 65 73 20 61 6e 64 20 64 69 72 65 63 74 69 6f 6e | fferent.interfaces.and.direction |
| 155860 | 73 3a 00 59 6f 75 20 63 61 6e 20 6f 6e 6c 79 20 73 70 65 63 69 66 79 20 61 20 73 6f 75 72 63 65 | s:.You.can.only.specify.a.source |
| 155880 | 20 6d 61 63 2d 61 64 64 72 65 73 73 20 74 6f 20 6d 61 74 63 68 2e 00 59 6f 75 20 63 61 6e 20 72 | .mac-address.to.match..You.can.r |
| 1558a0 | 75 6e 20 74 68 65 20 55 44 50 20 62 72 6f 61 64 63 61 73 74 20 72 65 6c 61 79 20 73 65 72 76 69 | un.the.UDP.broadcast.relay.servi |
| 1558c0 | 63 65 20 6f 6e 20 6d 75 6c 74 69 70 6c 65 20 72 6f 75 74 65 72 73 20 63 6f 6e 6e 65 63 74 65 64 | ce.on.multiple.routers.connected |
| 1558e0 | 20 74 6f 20 61 20 73 75 62 6e 65 74 2e 20 54 68 65 72 65 20 69 73 20 2a 2a 4e 4f 2a 2a 20 55 44 | .to.a.subnet..There.is.**NO**.UD |
| 155900 | 50 20 62 72 6f 61 64 63 61 73 74 20 72 65 6c 61 79 20 70 61 63 6b 65 74 20 73 74 6f 72 6d 21 00 | P.broadcast.relay.packet.storm!. |
| 155920 | 59 6f 75 20 63 61 6e 20 73 70 65 63 69 66 79 20 61 20 73 74 61 74 69 63 20 44 48 43 50 20 61 73 | You.can.specify.a.static.DHCP.as |
| 155940 | 73 69 67 6e 6d 65 6e 74 20 6f 6e 20 61 20 70 65 72 20 68 6f 73 74 20 62 61 73 69 73 2e 20 59 6f | signment.on.a.per.host.basis..Yo |
| 155960 | 75 20 77 69 6c 6c 20 6e 65 65 64 20 74 68 65 20 4d 41 43 20 61 64 64 72 65 73 73 20 6f 66 20 74 | u.will.need.the.MAC.address.of.t |
| 155980 | 68 65 20 73 74 61 74 69 6f 6e 20 61 6e 64 20 79 6f 75 72 20 64 65 73 69 72 65 64 20 49 50 20 61 | he.station.and.your.desired.IP.a |
| 1559a0 | 64 64 72 65 73 73 2e 20 54 68 65 20 61 64 64 72 65 73 73 20 6d 75 73 74 20 62 65 20 69 6e 73 69 | ddress..The.address.must.be.insi |
| 1559c0 | 64 65 20 74 68 65 20 73 75 62 6e 65 74 20 64 65 66 69 6e 69 74 69 6f 6e 20 62 75 74 20 63 61 6e | de.the.subnet.definition.but.can |
| 1559e0 | 20 62 65 20 6f 75 74 73 69 64 65 20 6f 66 20 74 68 65 20 72 61 6e 67 65 20 73 74 61 74 65 6d 65 | .be.outside.of.the.range.stateme |
| 155a00 | 6e 74 2e 00 59 6f 75 20 63 61 6e 20 74 65 73 74 20 74 68 65 20 53 4e 4d 50 76 33 20 66 75 6e 63 | nt..You.can.test.the.SNMPv3.func |
| 155a20 | 74 69 6f 6e 61 6c 69 74 79 20 66 72 6f 6d 20 61 6e 79 20 6c 69 6e 75 78 20 62 61 73 65 64 20 73 | tionality.from.any.linux.based.s |
| 155a40 | 79 73 74 65 6d 2c 20 6a 75 73 74 20 72 75 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f | ystem,.just.run.the.following.co |
| 155a60 | 6d 6d 61 6e 64 3a 20 60 60 73 6e 6d 70 77 61 6c 6b 20 2d 76 20 33 20 2d 75 20 76 79 6f 73 20 2d | mmand:.``snmpwalk.-v.3.-u.vyos.- |
| 155a80 | 61 20 53 48 41 20 2d 41 20 76 79 6f 73 31 32 33 34 35 36 37 38 20 2d 78 20 41 45 53 20 2d 58 20 | a.SHA.-A.vyos12345678.-x.AES.-X. |
| 155aa0 | 76 79 6f 73 31 32 33 34 35 36 37 38 20 2d 6c 20 61 75 74 68 50 72 69 76 20 31 39 32 2e 30 2e 32 | vyos12345678.-l.authPriv.192.0.2 |
| 155ac0 | 2e 31 20 2e 31 60 60 00 59 6f 75 20 63 61 6e 20 75 73 65 20 77 69 6c 64 63 61 72 64 20 60 60 2a | .1..1``.You.can.use.wildcard.``* |
| 155ae0 | 60 60 20 74 6f 20 6d 61 74 63 68 20 61 20 67 72 6f 75 70 20 6f 66 20 69 6e 74 65 72 66 61 63 65 | ``.to.match.a.group.of.interface |
| 155b00 | 73 2e 00 59 6f 75 20 63 61 6e 20 76 65 72 69 66 79 20 79 6f 75 72 20 56 52 52 50 20 67 72 6f 75 | s..You.can.verify.your.VRRP.grou |
| 155b20 | 70 20 73 74 61 74 75 73 20 77 69 74 68 20 74 68 65 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 6d 6f | p.status.with.the.operational.mo |
| 155b40 | 64 65 20 60 60 72 75 6e 20 73 68 6f 77 20 76 72 72 70 60 60 20 63 6f 6d 6d 61 6e 64 3a 00 59 6f | de.``run.show.vrrp``.command:.Yo |
| 155b60 | 75 20 63 61 6e 20 76 69 65 77 20 74 68 61 74 20 74 68 65 20 70 6f 6c 69 63 79 20 69 73 20 62 65 | u.can.view.that.the.policy.is.be |
| 155b80 | 69 6e 67 20 63 6f 72 72 65 63 74 6c 79 20 28 6f 72 20 69 6e 63 6f 72 72 65 63 74 6c 79 29 20 75 | ing.correctly.(or.incorrectly).u |
| 155ba0 | 74 69 6c 69 73 65 64 20 77 69 74 68 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 | tilised.with.the.following.comma |
| 155bc0 | 6e 64 3a 00 59 6f 75 20 63 61 6e 6e 6f 74 20 65 61 73 69 6c 79 20 72 65 64 69 73 74 72 69 62 75 | nd:.You.cannot.easily.redistribu |
| 155be0 | 74 65 20 49 50 76 36 20 72 6f 75 74 65 73 20 76 69 61 20 4f 53 50 46 76 33 20 6f 6e 20 61 20 57 | te.IPv6.routes.via.OSPFv3.on.a.W |
| 155c00 | 69 72 65 47 75 61 72 64 20 69 6e 74 65 72 66 61 63 65 20 6c 69 6e 6b 2e 20 54 68 69 73 20 72 65 | ireGuard.interface.link..This.re |
| 155c20 | 71 75 69 72 65 73 20 79 6f 75 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 6c 69 6e 6b 2d 6c 6f 63 | quires.you.to.configure.link-loc |
| 155c40 | 61 6c 20 61 64 64 72 65 73 73 65 73 20 6d 61 6e 75 61 6c 6c 79 20 6f 6e 20 74 68 65 20 57 69 72 | al.addresses.manually.on.the.Wir |
| 155c60 | 65 47 75 61 72 64 20 69 6e 74 65 72 66 61 63 65 73 2c 20 73 65 65 20 3a 76 79 74 61 73 6b 3a 60 | eGuard.interfaces,.see.:vytask:` |
| 155c80 | 54 31 34 38 33 60 2e 00 59 6f 75 20 64 6f 20 2a 2a 6e 6f 74 2a 2a 20 6e 65 65 64 20 74 6f 20 63 | T1483`..You.do.**not**.need.to.c |
| 155ca0 | 6f 70 79 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 74 6f 20 74 68 65 20 6f 74 68 65 72 | opy.the.certificate.to.the.other |
| 155cc0 | 20 72 6f 75 74 65 72 2e 20 49 6e 73 74 65 61 64 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 72 65 | .router..Instead,.you.need.to.re |
| 155ce0 | 74 72 69 65 76 65 20 69 74 73 20 53 48 41 2d 32 35 36 20 66 69 6e 67 65 72 70 72 69 6e 74 2e 20 | trieve.its.SHA-256.fingerprint.. |
| 155d00 | 4f 70 65 6e 56 50 4e 20 6f 6e 6c 79 20 73 75 70 70 6f 72 74 73 20 53 48 41 2d 32 35 36 20 66 69 | OpenVPN.only.supports.SHA-256.fi |
| 155d20 | 6e 67 65 72 70 72 69 6e 74 73 20 61 74 20 74 68 65 20 6d 6f 6d 65 6e 74 2c 20 73 6f 20 79 6f 75 | ngerprints.at.the.moment,.so.you |
| 155d40 | 20 6e 65 65 64 20 74 6f 20 75 73 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 | .need.to.use.the.following.comma |
| 155d60 | 6e 64 3a 00 59 6f 75 20 6d 61 79 20 61 6c 73 6f 20 61 64 64 69 74 69 6f 6e 61 6c 6c 79 20 63 6f | nd:.You.may.also.additionally.co |
| 155d80 | 6e 66 69 67 75 72 65 20 74 69 6d 65 6f 75 74 73 20 66 6f 72 20 64 69 66 66 65 72 65 6e 74 20 74 | nfigure.timeouts.for.different.t |
| 155da0 | 79 70 65 73 20 6f 66 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 59 6f 75 20 6d 61 79 20 65 78 70 | ypes.of.connections..You.may.exp |
| 155dc0 | 65 63 74 20 72 65 61 6c 20 74 68 72 6f 75 67 68 70 75 74 73 20 61 72 6f 75 6e 64 20 31 30 4d 42 | ect.real.throughputs.around.10MB |
| 155de0 | 79 74 65 73 2f 73 20 6f 72 20 68 69 67 68 65 72 20 69 6e 20 63 72 6f 77 64 65 64 20 61 72 65 61 | ytes/s.or.higher.in.crowded.area |
| 155e00 | 73 2e 00 59 6f 75 20 6d 61 79 20 65 78 70 65 63 74 20 72 65 61 6c 20 74 68 72 6f 75 67 68 70 75 | s..You.may.expect.real.throughpu |
| 155e20 | 74 73 20 61 72 6f 75 6e 64 20 35 30 4d 42 79 74 65 73 2f 73 20 74 6f 20 31 35 30 4d 42 79 74 65 | ts.around.50MBytes/s.to.150MByte |
| 155e40 | 73 2f 73 2c 20 64 65 70 65 6e 64 69 6e 67 20 6f 6e 20 6f 62 73 74 72 75 63 74 69 6f 6e 73 20 62 | s/s,.depending.on.obstructions.b |
| 155e60 | 79 20 77 61 6c 6c 73 2c 20 77 61 74 65 72 2c 20 6d 65 74 61 6c 20 6f 72 20 6f 74 68 65 72 20 6d | y.walls,.water,.metal.or.other.m |
| 155e80 | 61 74 65 72 69 61 6c 73 20 77 69 74 68 20 68 69 67 68 20 65 6c 65 63 74 72 6f 2d 6d 61 67 6e 65 | aterials.with.high.electro-magne |
| 155ea0 | 74 69 63 20 64 61 6d 70 65 6e 69 6e 67 20 61 74 20 36 47 48 7a 2e 20 42 65 73 74 20 72 65 73 75 | tic.dampening.at.6GHz..Best.resu |
| 155ec0 | 6c 74 73 20 61 72 65 20 61 63 68 69 65 76 65 64 20 77 69 74 68 20 74 68 65 20 41 50 20 62 65 69 | lts.are.achieved.with.the.AP.bei |
| 155ee0 | 6e 67 20 69 6e 20 74 68 65 20 73 61 6d 65 20 72 6f 6f 6d 20 61 6e 64 20 69 6e 20 6c 69 6e 65 2d | ng.in.the.same.room.and.in.line- |
| 155f00 | 6f 66 2d 73 69 67 68 74 2e 00 59 6f 75 20 6d 61 79 20 70 72 65 66 65 72 20 6c 6f 63 61 6c 6c 79 | of-sight..You.may.prefer.locally |
| 155f20 | 20 63 6f 6e 66 69 67 75 72 65 64 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 6d 6f 72 65 20 74 68 | .configured.capabilities.more.th |
| 155f40 | 61 6e 20 74 68 65 20 6e 65 67 6f 74 69 61 74 65 64 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 65 | an.the.negotiated.capabilities.e |
| 155f60 | 76 65 6e 20 74 68 6f 75 67 68 20 72 65 6d 6f 74 65 20 70 65 65 72 20 73 65 6e 64 73 20 63 61 70 | ven.though.remote.peer.sends.cap |
| 155f80 | 61 62 69 6c 69 74 69 65 73 2e 20 49 66 20 74 68 65 20 70 65 65 72 20 69 73 20 63 6f 6e 66 69 67 | abilities..If.the.peer.is.config |
| 155fa0 | 75 72 65 64 20 62 79 20 3a 63 66 67 63 6d 64 3a 60 6f 76 65 72 72 69 64 65 2d 63 61 70 61 62 69 | ured.by.:cfgcmd:`override-capabi |
| 155fc0 | 6c 69 74 79 60 2c 20 56 79 4f 53 20 69 67 6e 6f 72 65 73 20 72 65 63 65 69 76 65 64 20 63 61 70 | lity`,.VyOS.ignores.received.cap |
| 155fe0 | 61 62 69 6c 69 74 69 65 73 20 74 68 65 6e 20 6f 76 65 72 72 69 64 65 20 6e 65 67 6f 74 69 61 74 | abilities.then.override.negotiat |
| 156000 | 65 64 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 77 69 74 68 20 63 6f 6e 66 69 67 75 72 65 64 20 | ed.capabilities.with.configured. |
| 156020 | 76 61 6c 75 65 73 2e 00 59 6f 75 20 6d 61 79 20 77 61 6e 74 20 74 6f 20 64 69 73 61 62 6c 65 20 | values..You.may.want.to.disable. |
| 156040 | 73 65 6e 64 69 6e 67 20 43 61 70 61 62 69 6c 69 74 79 20 4e 65 67 6f 74 69 61 74 69 6f 6e 20 4f | sending.Capability.Negotiation.O |
| 156060 | 50 45 4e 20 6d 65 73 73 61 67 65 20 6f 70 74 69 6f 6e 61 6c 20 70 61 72 61 6d 65 74 65 72 20 74 | PEN.message.optional.parameter.t |
| 156080 | 6f 20 74 68 65 20 70 65 65 72 20 77 68 65 6e 20 72 65 6d 6f 74 65 20 70 65 65 72 20 64 6f 65 73 | o.the.peer.when.remote.peer.does |
| 1560a0 | 20 6e 6f 74 20 69 6d 70 6c 65 6d 65 6e 74 20 43 61 70 61 62 69 6c 69 74 79 20 4e 65 67 6f 74 69 | .not.implement.Capability.Negoti |
| 1560c0 | 61 74 69 6f 6e 2e 20 50 6c 65 61 73 65 20 75 73 65 20 3a 63 66 67 63 6d 64 3a 60 64 69 73 61 62 | ation..Please.use.:cfgcmd:`disab |
| 1560e0 | 6c 65 2d 63 61 70 61 62 69 6c 69 74 79 2d 6e 65 67 6f 74 69 61 74 69 6f 6e 60 20 63 6f 6d 6d 61 | le-capability-negotiation`.comma |
| 156100 | 6e 64 20 74 6f 20 64 69 73 61 62 6c 65 20 74 68 65 20 66 65 61 74 75 72 65 2e 00 59 6f 75 20 6e | nd.to.disable.the.feature..You.n |
| 156120 | 65 65 64 20 32 20 73 65 70 61 72 61 74 65 20 66 69 72 65 77 61 6c 6c 73 20 74 6f 20 64 65 66 69 | eed.2.separate.firewalls.to.defi |
| 156140 | 6e 65 20 74 72 61 66 66 69 63 3a 20 6f 6e 65 20 66 6f 72 20 65 61 63 68 20 64 69 72 65 63 74 69 | ne.traffic:.one.for.each.directi |
| 156160 | 6f 6e 2e 00 59 6f 75 20 6e 65 65 64 20 74 6f 20 64 69 73 61 62 6c 65 20 74 68 65 20 69 6e 2d 6d | on..You.need.to.disable.the.in-m |
| 156180 | 65 6d 6f 72 79 20 74 61 62 6c 65 20 69 6e 20 70 72 6f 64 75 63 74 69 6f 6e 20 65 6e 76 69 72 6f | emory.table.in.production.enviro |
| 1561a0 | 6e 6d 65 6e 74 73 21 20 55 73 69 6e 67 20 3a 61 62 62 72 3a 60 49 4d 54 20 28 49 6e 2d 4d 65 6d | nments!.Using.:abbr:`IMT.(In-Mem |
| 1561c0 | 6f 72 79 20 54 61 62 6c 65 29 60 20 6d 61 79 20 6c 65 61 64 20 74 6f 20 68 65 61 76 79 20 43 50 | ory.Table)`.may.lead.to.heavy.CP |
| 1561e0 | 55 20 6f 76 65 72 6c 6f 61 64 69 6e 67 20 61 6e 64 20 75 6e 73 74 61 62 6c 65 20 66 6c 6f 77 2d | U.overloading.and.unstable.flow- |
| 156200 | 61 63 63 6f 75 6e 74 69 6e 67 20 62 65 68 61 76 69 6f 72 2e 00 59 6f 75 20 6e 65 65 64 20 79 6f | accounting.behavior..You.need.yo |
| 156220 | 75 72 20 50 50 50 6f 45 20 63 72 65 64 65 6e 74 69 61 6c 73 20 66 72 6f 6d 20 79 6f 75 72 20 44 | ur.PPPoE.credentials.from.your.D |
| 156240 | 53 4c 20 49 53 50 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 69 | SL.ISP.in.order.to.configure.thi |
| 156260 | 73 2e 20 54 68 65 20 75 73 75 61 6c 20 75 73 65 72 6e 61 6d 65 20 69 73 20 69 6e 20 74 68 65 20 | s..The.usual.username.is.in.the. |
| 156280 | 66 6f 72 6d 20 6f 66 20 6e 61 6d 65 40 68 6f 73 74 2e 6e 65 74 20 62 75 74 20 6d 61 79 20 76 61 | form.of.name@host.net.but.may.va |
| 1562a0 | 72 79 20 64 65 70 65 6e 64 69 6e 67 20 6f 6e 20 49 53 50 2e 00 59 6f 75 20 6e 6f 77 20 73 65 65 | ry.depending.on.ISP..You.now.see |
| 1562c0 | 20 74 68 65 20 6c 6f 6e 67 65 72 20 41 53 20 70 61 74 68 2e 00 59 6f 75 20 73 68 6f 75 6c 64 20 | .the.longer.AS.path..You.should. |
| 1562e0 | 61 64 64 20 61 20 66 69 72 65 77 61 6c 6c 20 74 6f 20 79 6f 75 72 20 63 6f 6e 66 69 67 75 72 61 | add.a.firewall.to.your.configura |
| 156300 | 74 69 6f 6e 20 61 62 6f 76 65 20 61 73 20 77 65 6c 6c 20 62 79 20 61 73 73 69 67 6e 69 6e 67 20 | tion.above.as.well.by.assigning. |
| 156320 | 69 74 20 74 6f 20 74 68 65 20 70 70 70 6f 65 30 20 69 74 73 65 6c 66 20 61 73 20 73 68 6f 77 6e | it.to.the.pppoe0.itself.as.shown |
| 156340 | 20 68 65 72 65 3a 00 59 6f 75 20 73 68 6f 75 6c 64 20 61 6c 73 6f 20 65 6e 73 75 72 65 20 74 68 | .here:.You.should.also.ensure.th |
| 156360 | 61 74 20 74 68 65 20 4f 55 54 49 53 44 45 5f 4c 4f 43 41 4c 20 66 69 72 65 77 61 6c 6c 20 67 72 | at.the.OUTISDE_LOCAL.firewall.gr |
| 156380 | 6f 75 70 20 69 73 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 57 41 4e 20 69 6e 74 65 72 66 | oup.is.applied.to.the.WAN.interf |
| 1563a0 | 61 63 65 20 61 6e 64 20 61 20 64 69 72 65 63 74 69 6f 6e 20 28 6c 6f 63 61 6c 29 2e 00 59 6f 75 | ace.and.a.direction.(local)..You |
| 1563c0 | 20 73 68 6f 75 6c 64 20 61 6c 73 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 74 68 65 20 4f 55 54 | .should.also.ensure.that.the.OUT |
| 1563e0 | 53 49 44 45 5f 4c 4f 43 41 4c 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 20 69 73 20 61 70 70 | SIDE_LOCAL.firewall.group.is.app |
| 156400 | 6c 69 65 64 20 74 6f 20 74 68 65 20 57 41 4e 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 61 20 | lied.to.the.WAN.interface.and.a. |
| 156420 | 64 69 72 65 63 74 69 6f 6e 20 28 6c 6f 63 61 6c 29 2e 00 59 6f 75 20 77 69 6c 6c 20 61 6c 73 6f | direction.(local)..You.will.also |
| 156440 | 20 6e 65 65 64 20 74 68 65 20 70 75 62 6c 69 63 20 6b 65 79 20 6f 66 20 79 6f 75 72 20 70 65 65 | .need.the.public.key.of.your.pee |
| 156460 | 72 20 61 73 20 77 65 6c 6c 20 61 73 20 74 68 65 20 6e 65 74 77 6f 72 6b 28 73 29 20 79 6f 75 20 | r.as.well.as.the.network(s).you. |
| 156480 | 77 61 6e 74 20 74 6f 20 74 75 6e 6e 65 6c 20 28 61 6c 6c 6f 77 65 64 2d 69 70 73 29 20 74 6f 20 | want.to.tunnel.(allowed-ips).to. |
| 1564a0 | 63 6f 6e 66 69 67 75 72 65 20 61 20 57 69 72 65 47 75 61 72 64 20 74 75 6e 6e 65 6c 2e 20 54 68 | configure.a.WireGuard.tunnel..Th |
| 1564c0 | 65 20 70 75 62 6c 69 63 20 6b 65 79 20 62 65 6c 6f 77 20 69 73 20 61 6c 77 61 79 73 20 74 68 65 | e.public.key.below.is.always.the |
| 1564e0 | 20 70 75 62 6c 69 63 20 6b 65 79 20 66 72 6f 6d 20 79 6f 75 72 20 70 65 65 72 2c 20 6e 6f 74 20 | .public.key.from.your.peer,.not. |
| 156500 | 79 6f 75 72 20 6c 6f 63 61 6c 20 6f 6e 65 2e 00 59 6f 75 72 20 49 53 50 73 20 6d 6f 64 65 6d 20 | your.local.one..Your.ISPs.modem. |
| 156520 | 69 73 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 70 6f 72 74 20 60 60 65 74 68 30 60 60 20 6f 66 | is.connected.to.port.``eth0``.of |
| 156540 | 20 79 6f 75 72 20 56 79 4f 53 20 62 6f 78 2e 00 59 6f 75 72 20 4c 41 4e 20 63 6f 6e 6e 65 63 74 | .your.VyOS.box..Your.LAN.connect |
| 156560 | 65 64 20 6f 6e 20 65 74 68 30 20 75 73 65 73 20 70 72 65 66 69 78 20 60 60 32 30 30 31 3a 64 62 | ed.on.eth0.uses.prefix.``2001:db |
| 156580 | 38 3a 62 65 65 66 3a 32 3a 3a 2f 36 34 60 60 20 77 69 74 68 20 74 68 65 20 72 6f 75 74 65 72 20 | 8:beef:2::/64``.with.the.router. |
| 1565a0 | 62 65 65 69 6e 67 20 60 60 32 30 30 31 3a 64 62 38 3a 62 65 65 66 3a 32 3a 3a 31 60 60 00 5a 65 | beeing.``2001:db8:beef:2::1``.Ze |
| 1565c0 | 62 72 61 20 73 75 70 70 6f 72 74 73 20 70 72 65 66 69 78 2d 6c 69 73 74 73 20 61 6e 64 20 52 6f | bra.supports.prefix-lists.and.Ro |
| 1565e0 | 75 74 65 20 4d 61 70 73 20 74 6f 20 6d 61 74 63 68 20 72 6f 75 74 65 73 20 72 65 63 65 69 76 65 | ute.Maps.to.match.routes.receive |
| 156600 | 64 20 66 72 6f 6d 20 6f 74 68 65 72 20 46 52 52 20 63 6f 6d 70 6f 6e 65 6e 74 73 2e 20 54 68 65 | d.from.other.FRR.components..The |
| 156620 | 20 70 65 72 6d 69 74 2f 64 65 6e 79 20 66 61 63 69 6c 69 74 69 65 73 20 70 72 6f 76 69 64 65 64 | .permit/deny.facilities.provided |
| 156640 | 20 62 79 20 74 68 65 73 65 20 63 6f 6d 6d 61 6e 64 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 | .by.these.commands.can.be.used.t |
| 156660 | 6f 20 66 69 6c 74 65 72 20 77 68 69 63 68 20 72 6f 75 74 65 73 20 7a 65 62 72 61 20 77 69 6c 6c | o.filter.which.routes.zebra.will |
| 156680 | 20 69 6e 73 74 61 6c 6c 20 69 6e 20 74 68 65 20 6b 65 72 6e 65 6c 2e 00 5a 65 62 72 61 20 73 75 | .install.in.the.kernel..Zebra.su |
| 1566a0 | 70 70 6f 72 74 73 20 70 72 65 66 69 78 2d 6c 69 73 74 73 20 61 6e 64 20 52 6f 75 74 65 20 4d 61 | pports.prefix-lists.and.Route.Ma |
| 1566c0 | 70 73 73 20 74 6f 20 6d 61 74 63 68 20 72 6f 75 74 65 73 20 72 65 63 65 69 76 65 64 20 66 72 6f | pss.to.match.routes.received.fro |
| 1566e0 | 6d 20 6f 74 68 65 72 20 46 52 52 20 63 6f 6d 70 6f 6e 65 6e 74 73 2e 20 54 68 65 20 70 65 72 6d | m.other.FRR.components..The.perm |
| 156700 | 69 74 2f 64 65 6e 79 20 66 61 63 69 6c 69 74 69 65 73 20 70 72 6f 76 69 64 65 64 20 62 79 20 74 | it/deny.facilities.provided.by.t |
| 156720 | 68 65 73 65 20 63 6f 6d 6d 61 6e 64 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 66 69 6c | hese.commands.can.be.used.to.fil |
| 156740 | 74 65 72 20 77 68 69 63 68 20 72 6f 75 74 65 73 20 7a 65 62 72 61 20 77 69 6c 6c 20 69 6e 73 74 | ter.which.routes.zebra.will.inst |
| 156760 | 61 6c 6c 20 69 6e 20 74 68 65 20 6b 65 72 6e 65 6c 2e 00 5a 65 62 72 61 2f 4b 65 72 6e 65 6c 20 | all.in.the.kernel..Zebra/Kernel. |
| 156780 | 72 6f 75 74 65 20 66 69 6c 74 65 72 69 6e 67 00 5a 6f 6e 65 20 42 61 73 65 64 20 46 69 72 65 77 | route.filtering.Zone.Based.Firew |
| 1567a0 | 61 6c 6c 00 5a 6f 6e 65 20 42 61 73 65 64 20 46 69 72 65 77 61 6c 6c 20 28 44 65 70 72 65 63 61 | all.Zone.Based.Firewall.(Depreca |
| 1567c0 | 74 65 64 29 00 5a 6f 6e 65 2d 50 6f 6c 69 63 79 20 4f 76 65 72 76 69 65 77 00 5a 6f 6e 65 2d 62 | ted).Zone-Policy.Overview.Zone-b |
| 1567e0 | 61 73 65 64 20 66 69 72 65 77 61 6c 6c 00 5b 41 2e 42 2e 43 2e 44 5d 20 e2 80 93 20 6c 69 6e 6b | ased.firewall.[A.B.C.D].....link |
| 156800 | 2d 73 74 61 74 65 2d 69 64 2e 20 57 69 74 68 20 74 68 69 73 20 73 70 65 63 69 66 69 65 64 20 74 | -state-id..With.this.specified.t |
| 156820 | 68 65 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 70 6f 72 74 69 6f 6e 20 6f 66 20 74 | he.command.displays.portion.of.t |
| 156840 | 68 65 20 6e 65 74 77 6f 72 6b 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 74 68 61 74 20 69 73 20 62 | he.network.environment.that.is.b |
| 156860 | 65 69 6e 67 20 64 65 73 63 72 69 62 65 64 20 62 79 20 74 68 65 20 61 64 76 65 72 74 69 73 65 6d | eing.described.by.the.advertisem |
| 156880 | 65 6e 74 2e 20 54 68 65 20 76 61 6c 75 65 20 65 6e 74 65 72 65 64 20 64 65 70 65 6e 64 73 20 6f | ent..The.value.entered.depends.o |
| 1568a0 | 6e 20 74 68 65 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 e2 80 99 73 20 4c 53 20 74 79 70 65 2e | n.the.advertisement...s.LS.type. |
| 1568c0 | 20 49 74 20 6d 75 73 74 20 62 65 20 65 6e 74 65 72 65 64 20 69 6e 20 74 68 65 20 66 6f 72 6d 20 | .It.must.be.entered.in.the.form. |
| 1568e0 | 6f 66 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 2e 00 60 31 2e 20 43 72 65 61 74 65 20 61 6e 20 | of.an.IP.address..`1..Create.an. |
| 156900 | 65 76 65 6e 74 20 68 61 6e 64 6c 65 72 60 5f 00 60 32 2e 20 41 64 64 20 72 65 67 65 78 20 74 6f | event.handler`_.`2..Add.regex.to |
| 156920 | 20 74 68 65 20 73 63 72 69 70 74 60 5f 00 60 33 2e 20 41 64 64 20 61 20 66 75 6c 6c 20 70 61 74 | .the.script`_.`3..Add.a.full.pat |
| 156940 | 68 20 74 6f 20 74 68 65 20 73 63 72 69 70 74 60 5f 00 60 34 2e 20 41 64 64 20 6f 70 74 69 6f 6e | h.to.the.script`_.`4..Add.option |
| 156960 | 61 6c 20 70 61 72 61 6d 65 74 65 72 73 60 5f 00 60 3c 6e 61 6d 65 3e 60 20 6d 75 73 74 20 62 65 | al.parameters`_.`<name>`.must.be |
| 156980 | 20 69 64 65 6e 74 69 63 61 6c 20 6f 6e 20 62 6f 74 68 20 73 69 64 65 73 21 00 60 43 6f 6d 6d 6f | .identical.on.both.sides!.`Commo |
| 1569a0 | 6e 20 41 70 70 6c 69 63 61 74 69 6f 6e 73 20 4b 65 70 74 20 45 6e 68 61 6e 63 65 64 60 5f 20 28 | n.Applications.Kept.Enhanced`_.( |
| 1569c0 | 43 41 4b 45 29 20 69 73 20 61 20 63 6f 6d 70 72 65 68 65 6e 73 69 76 65 20 71 75 65 75 65 20 6d | CAKE).is.a.comprehensive.queue.m |
| 1569e0 | 61 6e 61 67 65 6d 65 6e 74 20 73 79 73 74 65 6d 2c 20 69 6d 70 6c 65 6d 65 6e 74 65 64 20 61 73 | anagement.system,.implemented.as |
| 156a00 | 20 61 20 71 75 65 75 65 20 64 69 73 63 69 70 6c 69 6e 65 20 28 71 64 69 73 63 29 20 66 6f 72 20 | .a.queue.discipline.(qdisc).for. |
| 156a20 | 74 68 65 20 4c 69 6e 75 78 20 6b 65 72 6e 65 6c 2e 20 49 74 20 69 73 20 64 65 73 69 67 6e 65 64 | the.Linux.kernel..It.is.designed |
| 156a40 | 20 74 6f 20 72 65 70 6c 61 63 65 20 61 6e 64 20 69 6d 70 72 6f 76 65 20 75 70 6f 6e 20 74 68 65 | .to.replace.and.improve.upon.the |
| 156a60 | 20 63 6f 6d 70 6c 65 78 20 68 69 65 72 61 72 63 68 79 20 6f 66 20 73 69 6d 70 6c 65 20 71 64 69 | .complex.hierarchy.of.simple.qdi |
| 156a80 | 73 63 73 20 70 72 65 73 65 6e 74 6c 79 20 72 65 71 75 69 72 65 64 20 74 6f 20 65 66 66 65 63 74 | scs.presently.required.to.effect |
| 156aa0 | 69 76 65 6c 79 20 74 61 63 6b 6c 65 20 74 68 65 20 62 75 66 66 65 72 62 6c 6f 61 74 20 70 72 6f | ively.tackle.the.bufferbloat.pro |
| 156ac0 | 62 6c 65 6d 20 61 74 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 65 64 67 65 2e 00 60 60 24 20 74 61 | blem.at.the.network.edge..``$.ta |
| 156ae0 | 69 6c 20 2d 6e 20 2b 32 20 63 61 2e 6b 65 79 20 7c 20 68 65 61 64 20 2d 6e 20 2d 31 20 7c 20 74 | il.-n.+2.ca.key.|.head.-n.-1.|.t |
| 156b00 | 72 20 2d 64 20 27 5c 6e 27 60 60 00 60 60 24 20 74 61 69 6c 20 2d 6e 20 2b 32 20 63 61 2e 70 65 | r.-d.'\n'``.``$.tail.-n.+2.ca.pe |
| 156b20 | 6d 20 7c 20 68 65 61 64 20 2d 6e 20 2d 31 20 7c 20 74 72 20 2d 64 20 27 5c 6e 27 60 60 00 60 60 | m.|.head.-n.-1.|.tr.-d.'\n'``.`` |
| 156b40 | 24 20 74 61 69 6c 20 2d 6e 20 2b 32 20 63 65 72 74 2e 6b 65 79 20 7c 20 68 65 61 64 20 2d 6e 20 | $.tail.-n.+2.cert.key.|.head.-n. |
| 156b60 | 2d 31 20 7c 20 74 72 20 2d 64 20 27 5c 6e 27 60 60 00 60 60 24 20 74 61 69 6c 20 2d 6e 20 2b 32 | -1.|.tr.-d.'\n'``.``$.tail.-n.+2 |
| 156b80 | 20 63 65 72 74 2e 70 65 6d 20 7c 20 68 65 61 64 20 2d 6e 20 2d 31 20 7c 20 74 72 20 2d 64 20 27 | .cert.pem.|.head.-n.-1.|.tr.-d.' |
| 156ba0 | 5c 6e 27 60 60 00 60 60 2b 60 60 20 73 75 63 63 65 73 73 66 75 6c 00 60 60 2d 60 60 20 66 61 69 | \n'``.``+``.successful.``-``.fai |
| 156bc0 | 6c 65 64 00 60 60 2f 63 6f 6e 66 69 67 2f 73 63 72 69 70 74 73 2f 64 68 63 70 2d 63 6c 69 65 6e | led.``/config/scripts/dhcp-clien |
| 156be0 | 74 2f 70 6f 73 74 2d 68 6f 6f 6b 73 2e 64 2f 60 60 00 60 60 2f 63 6f 6e 66 69 67 2f 73 63 72 69 | t/post-hooks.d/``.``/config/scri |
| 156c00 | 70 74 73 2f 64 68 63 70 2d 63 6c 69 65 6e 74 2f 70 72 65 2d 68 6f 6f 6b 73 2e 64 2f 60 60 00 60 | pts/dhcp-client/pre-hooks.d/``.` |
| 156c20 | 60 30 2e 70 6f 6f 6c 2e 6e 74 70 2e 6f 72 67 60 60 00 60 60 30 60 60 20 2d 20 32 30 20 6f 72 20 | `0.pool.ntp.org``.``0``.-.20.or. |
| 156c40 | 34 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 20 28 64 65 66 61 75 6c 74 29 00 60 | 40.MHz.channel.width.(default).` |
| 156c60 | 60 30 60 60 20 2d 20 48 45 2d 4d 43 53 20 30 2d 37 00 60 60 30 60 60 3a 20 4e 6f 20 72 65 70 6c | `0``.-.HE-MCS.0-7.``0``:.No.repl |
| 156c80 | 61 79 20 77 69 6e 64 6f 77 2c 20 73 74 72 69 63 74 20 63 68 65 63 6b 00 60 60 31 2d 34 32 39 34 | ay.window,.strict.check.``1-4294 |
| 156ca0 | 39 36 37 32 39 35 60 60 3a 20 4e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 74 68 61 74 | 967295``:.Number.of.packets.that |
| 156cc0 | 20 63 6f 75 6c 64 20 62 65 20 6d 69 73 6f 72 64 65 72 65 64 00 60 60 31 2e 70 6f 6f 6c 2e 6e 74 | .could.be.misordered.``1.pool.nt |
| 156ce0 | 70 2e 6f 72 67 60 60 00 60 60 31 31 35 32 30 30 60 60 20 2d 20 31 31 35 2c 32 30 30 20 62 70 73 | p.org``.``115200``.-.115,200.bps |
| 156d00 | 20 28 64 65 66 61 75 6c 74 20 66 6f 72 20 73 65 72 69 61 6c 20 63 6f 6e 73 6f 6c 65 29 00 60 60 | .(default.for.serial.console).`` |
| 156d20 | 31 32 30 30 60 60 20 2d 20 31 32 30 30 20 62 70 73 00 60 60 31 33 31 60 60 20 2d 20 32 30 20 4d | 1200``.-.1200.bps.``131``.-.20.M |
| 156d40 | 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 00 60 60 31 33 31 60 60 20 2d 20 32 30 20 4d 48 | Hz.channel.width.``131``.-.20.MH |
| 156d60 | 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 20 28 36 47 48 7a 29 00 60 60 31 33 32 60 60 20 2d | z.channel.width.(6GHz).``132``.- |
| 156d80 | 20 34 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 00 60 60 31 33 32 60 60 20 2d 20 | .40.MHz.channel.width.``132``.-. |
| 156da0 | 34 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 20 28 36 47 48 7a 29 00 60 60 31 33 | 40.MHz.channel.width.(6GHz).``13 |
| 156dc0 | 33 60 60 20 2d 20 38 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 00 60 60 31 33 33 | 3``.-.80.MHz.channel.width.``133 |
| 156de0 | 60 60 20 2d 20 38 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 20 28 36 47 48 7a 29 | ``.-.80.MHz.channel.width.(6GHz) |
| 156e00 | 00 60 60 31 33 34 60 60 20 2d 20 31 36 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 | .``134``.-.160.MHz.channel.width |
| 156e20 | 00 60 60 31 33 34 60 60 20 2d 20 31 36 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 | .``134``.-.160.MHz.channel.width |
| 156e40 | 20 28 36 47 48 7a 29 00 60 60 31 33 35 60 60 20 2d 20 38 30 2b 38 30 20 4d 48 7a 20 63 68 61 6e | .(6GHz).``135``.-.80+80.MHz.chan |
| 156e60 | 6e 65 6c 20 77 69 64 74 68 00 60 60 31 33 35 60 60 20 2d 20 38 30 2b 38 30 20 4d 48 7a 20 63 68 | nel.width.``135``.-.80+80.MHz.ch |
| 156e80 | 61 6e 6e 65 6c 20 77 69 64 74 68 20 28 36 47 48 7a 29 00 60 60 31 39 32 2e 31 36 38 2e 32 2e 32 | annel.width.(6GHz).``192.168.2.2 |
| 156ea0 | 35 34 60 60 20 49 50 20 61 64 64 72 65 65 73 73 20 6f 6e 20 56 79 4f 53 20 65 74 68 32 20 66 72 | 54``.IP.addreess.on.VyOS.eth2.fr |
| 156ec0 | 6f 6d 20 49 53 50 32 00 60 60 31 39 32 30 30 60 60 20 2d 20 31 39 2c 32 30 30 20 62 70 73 00 60 | om.ISP2.``19200``.-.19,200.bps.` |
| 156ee0 | 60 31 60 60 20 2d 20 38 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 00 60 60 31 60 | `1``.-.80.MHz.channel.width.``1` |
| 156f00 | 60 20 2d 20 48 45 2d 4d 43 53 20 30 2d 39 00 60 60 32 2e 70 6f 6f 6c 2e 6e 74 70 2e 6f 72 67 60 | `.-.HE-MCS.0-9.``2.pool.ntp.org` |
| 156f20 | 60 00 60 60 32 30 33 2e 30 2e 31 31 33 2e 32 35 34 60 60 20 49 50 20 61 64 64 72 65 65 73 73 20 | `.``203.0.113.254``.IP.addreess. |
| 156f40 | 6f 6e 20 56 79 4f 53 20 65 74 68 31 20 66 72 6f 6d 20 49 53 50 31 00 60 60 32 34 30 30 60 60 20 | on.VyOS.eth1.from.ISP1.``2400``. |
| 156f60 | 2d 20 32 34 30 30 20 62 70 73 00 60 60 32 60 60 20 2d 20 31 36 30 20 4d 48 7a 20 63 68 61 6e 6e | -.2400.bps.``2``.-.160.MHz.chann |
| 156f80 | 65 6c 20 77 69 64 74 68 00 60 60 32 60 60 20 2d 20 48 45 2d 4d 43 53 20 30 2d 31 31 00 60 60 33 | el.width.``2``.-.HE-MCS.0-11.``3 |
| 156fa0 | 38 34 30 30 60 60 20 2d 20 33 38 2c 34 30 30 20 62 70 73 20 28 64 65 66 61 75 6c 74 20 66 6f 72 | 8400``.-.38,400.bps.(default.for |
| 156fc0 | 20 58 65 6e 20 63 6f 6e 73 6f 6c 65 29 00 60 60 33 60 60 20 2d 20 38 30 2b 38 30 20 4d 48 7a 20 | .Xen.console).``3``.-.80+80.MHz. |
| 156fe0 | 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 00 60 60 33 60 60 20 2d 20 48 45 2d 4d 43 53 20 69 73 20 | channel.width.``3``.-.HE-MCS.is. |
| 157000 | 6e 6f 74 20 73 75 70 70 6f 72 74 65 64 00 60 60 34 38 30 30 60 60 20 2d 20 34 38 30 30 20 62 70 | not.supported.``4800``.-.4800.bp |
| 157020 | 73 00 60 60 35 37 36 30 30 60 60 20 2d 20 35 37 2c 36 30 30 20 62 70 73 00 60 60 36 34 3a 66 66 | s.``57600``.-.57,600.bps.``64:ff |
| 157040 | 39 62 3a 3a 2f 39 36 60 60 20 69 73 20 74 68 65 20 77 65 6c 6c 2d 6b 6e 6f 77 6e 20 70 72 65 66 | 9b::/96``.is.the.well-known.pref |
| 157060 | 69 78 20 66 6f 72 20 49 50 76 34 2d 65 6d 62 65 64 64 65 64 20 49 50 76 36 20 61 64 64 72 65 73 | ix.for.IPv4-embedded.IPv6.addres |
| 157080 | 73 65 73 2e 20 54 68 65 20 70 72 65 66 69 78 20 69 73 20 75 73 65 64 20 74 6f 20 72 65 70 72 65 | ses..The.prefix.is.used.to.repre |
| 1570a0 | 73 65 6e 74 20 49 50 76 34 20 61 64 64 72 65 73 73 65 73 20 69 6e 20 61 6e 20 49 50 76 36 20 61 | sent.IPv4.addresses.in.an.IPv6.a |
| 1570c0 | 64 64 72 65 73 73 20 66 6f 72 6d 61 74 2e 20 54 68 65 20 49 50 76 34 20 61 64 64 72 65 73 73 20 | ddress.format..The.IPv4.address. |
| 1570e0 | 69 73 20 65 6e 63 6f 64 65 64 20 69 6e 20 74 68 65 20 6c 6f 77 2d 6f 72 64 65 72 20 33 32 20 62 | is.encoded.in.the.low-order.32.b |
| 157100 | 69 74 73 20 6f 66 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 2e 20 54 68 65 20 68 69 67 | its.of.the.IPv6.address..The.hig |
| 157120 | 68 2d 6f 72 64 65 72 20 33 32 20 62 69 74 73 20 61 72 65 20 73 65 74 20 74 6f 20 74 68 65 20 77 | h-order.32.bits.are.set.to.the.w |
| 157140 | 65 6c 6c 2d 6b 6e 6f 77 6e 20 70 72 65 66 69 78 20 36 34 3a 66 66 39 62 3a 3a 2f 39 36 2e 00 60 | ell-known.prefix.64:ff9b::/96..` |
| 157160 | 60 38 30 32 2e 33 61 64 60 60 20 2d 20 49 45 45 45 20 38 30 32 2e 33 61 64 20 44 79 6e 61 6d 69 | `802.3ad``.-.IEEE.802.3ad.Dynami |
| 157180 | 63 20 6c 69 6e 6b 20 61 67 67 72 65 67 61 74 69 6f 6e 2e 20 43 72 65 61 74 65 73 20 61 67 67 72 | c.link.aggregation..Creates.aggr |
| 1571a0 | 65 67 61 74 69 6f 6e 20 67 72 6f 75 70 73 20 74 68 61 74 20 73 68 61 72 65 20 74 68 65 20 73 61 | egation.groups.that.share.the.sa |
| 1571c0 | 6d 65 20 73 70 65 65 64 20 61 6e 64 20 64 75 70 6c 65 78 20 73 65 74 74 69 6e 67 73 2e 20 55 74 | me.speed.and.duplex.settings..Ut |
| 1571e0 | 69 6c 69 7a 65 73 20 61 6c 6c 20 73 6c 61 76 65 73 20 69 6e 20 74 68 65 20 61 63 74 69 76 65 20 | ilizes.all.slaves.in.the.active. |
| 157200 | 61 67 67 72 65 67 61 74 6f 72 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 74 68 65 20 38 30 32 2e | aggregator.according.to.the.802. |
| 157220 | 33 61 64 20 73 70 65 63 69 66 69 63 61 74 69 6f 6e 2e 00 60 60 38 31 60 60 20 2d 20 32 30 20 4d | 3ad.specification..``81``.-.20.M |
| 157240 | 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 20 28 32 2e 34 47 48 7a 29 00 60 60 38 33 60 60 | Hz.channel.width.(2.4GHz).``83`` |
| 157260 | 20 2d 20 34 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 2c 20 73 65 63 6f 6e 64 61 | .-.40.MHz.channel.width,.seconda |
| 157280 | 72 79 20 32 30 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 61 62 6f 76 65 20 70 72 69 6d 61 72 79 20 63 | ry.20MHz.channel.above.primary.c |
| 1572a0 | 68 61 6e 6e 65 6c 20 28 32 2e 34 47 48 7a 29 00 60 60 38 34 60 60 20 2d 20 34 30 20 4d 48 7a 20 | hannel.(2.4GHz).``84``.-.40.MHz. |
| 1572c0 | 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 2c 20 73 65 63 6f 6e 64 61 72 79 20 32 30 4d 48 7a 20 63 | channel.width,.secondary.20MHz.c |
| 1572e0 | 68 61 6e 6e 65 6c 20 62 65 6c 6f 77 20 70 72 69 6d 61 72 79 20 63 68 61 6e 6e 65 6c 20 28 32 2e | hannel.below.primary.channel.(2. |
| 157300 | 34 47 48 7a 29 00 60 60 39 36 30 30 60 60 20 2d 20 39 36 30 30 20 62 70 73 00 60 60 3c 20 64 68 | 4GHz).``9600``.-.9600.bps.``<.dh |
| 157320 | 2d 67 72 6f 75 70 20 3e 60 60 20 64 65 66 69 6e 65 73 20 61 20 44 69 66 66 69 65 2d 48 65 6c 6c | -group.>``.defines.a.Diffie-Hell |
| 157340 | 6d 61 6e 20 67 72 6f 75 70 20 66 6f 72 20 50 46 53 3b 00 60 60 40 60 60 20 55 73 65 20 40 20 61 | man.group.for.PFS;.``@``.Use.@.a |
| 157360 | 73 20 72 65 63 6f 72 64 20 6e 61 6d 65 20 74 6f 20 73 65 74 20 74 68 65 20 72 65 63 6f 72 64 20 | s.record.name.to.set.the.record. |
| 157380 | 66 6f 72 20 74 68 65 20 72 6f 6f 74 20 64 6f 6d 61 69 6e 2e 00 60 60 4b 6e 6f 77 6e 20 6c 69 6d | for.the.root.domain..``Known.lim |
| 1573a0 | 69 74 61 74 69 6f 6e 73 3a 60 60 00 60 60 53 74 61 74 65 66 75 6c 2d 49 50 76 36 2d 41 64 64 72 | itations:``.``Stateful-IPv6-Addr |
| 1573c0 | 65 73 73 2d 50 6f 6f 6c 60 60 20 61 6e 64 20 60 60 44 65 6c 65 67 61 74 65 64 2d 49 50 76 36 2d | ess-Pool``.and.``Delegated-IPv6- |
| 1573e0 | 50 72 65 66 69 78 2d 50 6f 6f 6c 60 60 20 61 72 65 20 64 65 66 69 6e 65 64 20 69 6e 20 52 46 43 | Prefix-Pool``.are.defined.in.RFC |
| 157400 | 36 39 31 31 2e 20 49 66 20 74 68 65 79 20 61 72 65 20 6e 6f 74 20 64 65 66 69 6e 65 64 20 69 6e | 6911..If.they.are.not.defined.in |
| 157420 | 20 79 6f 75 72 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2c 20 61 64 64 20 6e 65 77 20 64 69 63 | .your.RADIUS.server,.add.new.dic |
| 157440 | 74 69 6f 6e 61 72 79 5f 2e 00 60 60 57 4c 42 5f 49 4e 54 45 52 46 41 43 45 5f 4e 41 4d 45 3d 5b | tionary_..``WLB_INTERFACE_NAME=[ |
| 157460 | 69 6e 74 65 72 66 61 63 65 6e 61 6d 65 5d 60 60 3a 20 49 6e 74 65 72 66 61 63 65 20 74 6f 20 62 | interfacename]``:.Interface.to.b |
| 157480 | 65 20 6d 6f 6e 69 74 6f 72 65 64 00 60 60 57 4c 42 5f 49 4e 54 45 52 46 41 43 45 5f 53 54 41 54 | e.monitored.``WLB_INTERFACE_STAT |
| 1574a0 | 45 3d 5b 41 43 54 49 56 45 7c 46 41 49 4c 45 44 5d 60 60 3a 20 49 6e 74 65 72 66 61 63 65 20 73 | E=[ACTIVE|FAILED]``:.Interface.s |
| 1574c0 | 74 61 74 65 00 60 60 61 60 60 20 2d 20 38 30 32 2e 31 31 61 20 2d 20 35 34 20 4d 62 69 74 73 2f | tate.``a``.-.802.11a.-.54.Mbits/ |
| 1574e0 | 73 65 63 00 60 60 61 63 60 60 20 2d 20 38 30 32 2e 31 31 61 63 20 2d 20 31 33 30 30 20 4d 62 69 | sec.``ac``.-.802.11ac.-.1300.Mbi |
| 157500 | 74 73 2f 73 65 63 00 60 60 61 63 63 65 70 74 2d 6f 77 6e 2d 6e 65 78 74 68 6f 70 60 60 20 2d 20 | ts/sec.``accept-own-nexthop``.-. |
| 157520 | 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 | ..........Well-known.communities |
| 157540 | 20 76 61 6c 75 65 20 61 63 63 65 70 74 2d 6f 77 6e 2d 6e 65 78 74 68 6f 70 20 30 78 46 46 46 46 | .value.accept-own-nexthop.0xFFFF |
| 157560 | 30 30 30 38 00 60 60 61 63 63 65 70 74 2d 6f 77 6e 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 | 0008.``accept-own``.-........... |
| 157580 | 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 | ........Well-known.communities.v |
| 1575a0 | 61 6c 75 65 20 41 43 43 45 50 54 5f 4f 57 4e 20 30 78 46 46 46 46 30 30 30 31 00 60 60 61 63 63 | alue.ACCEPT_OWN.0xFFFF0001.``acc |
| 1575c0 | 65 70 74 60 60 3a 20 61 63 63 65 70 74 20 74 68 65 20 70 61 63 6b 65 74 2e 00 60 60 61 63 63 65 | ept``:.accept.the.packet..``acce |
| 1575e0 | 73 73 2d 70 6f 69 6e 74 60 60 20 2d 20 41 63 63 65 73 73 2d 70 6f 69 6e 74 20 66 6f 72 77 61 72 | ss-point``.-.Access-point.forwar |
| 157600 | 64 73 20 70 61 63 6b 65 74 73 20 62 65 74 77 65 65 6e 20 6f 74 68 65 72 20 6e 6f 64 65 73 00 60 | ds.packets.between.other.nodes.` |
| 157620 | 60 61 63 74 69 6f 6e 60 60 20 6b 65 65 70 2d 61 6c 69 76 65 20 66 61 69 6c 75 72 65 20 61 63 74 | `action``.keep-alive.failure.act |
| 157640 | 69 6f 6e 3a 00 60 60 61 63 74 69 76 65 2d 62 61 63 6b 75 70 60 60 20 2d 20 41 63 74 69 76 65 2d | ion:.``active-backup``.-.Active- |
| 157660 | 62 61 63 6b 75 70 20 70 6f 6c 69 63 79 3a 20 4f 6e 6c 79 20 6f 6e 65 20 73 6c 61 76 65 20 69 6e | backup.policy:.Only.one.slave.in |
| 157680 | 20 74 68 65 20 62 6f 6e 64 20 69 73 20 61 63 74 69 76 65 2e 20 41 20 64 69 66 66 65 72 65 6e 74 | .the.bond.is.active..A.different |
| 1576a0 | 20 73 6c 61 76 65 20 62 65 63 6f 6d 65 73 20 61 63 74 69 76 65 20 69 66 2c 20 61 6e 64 20 6f 6e | .slave.becomes.active.if,.and.on |
| 1576c0 | 6c 79 20 69 66 2c 20 74 68 65 20 61 63 74 69 76 65 20 73 6c 61 76 65 20 66 61 69 6c 73 2e 20 54 | ly.if,.the.active.slave.fails..T |
| 1576e0 | 68 65 20 62 6f 6e 64 27 73 20 4d 41 43 20 61 64 64 72 65 73 73 20 69 73 20 65 78 74 65 72 6e 61 | he.bond's.MAC.address.is.externa |
| 157700 | 6c 6c 79 20 76 69 73 69 62 6c 65 20 6f 6e 20 6f 6e 6c 79 20 6f 6e 65 20 70 6f 72 74 20 28 6e 65 | lly.visible.on.only.one.port.(ne |
| 157720 | 74 77 6f 72 6b 20 61 64 61 70 74 65 72 29 20 74 6f 20 61 76 6f 69 64 20 63 6f 6e 66 75 73 69 6e | twork.adapter).to.avoid.confusin |
| 157740 | 67 20 74 68 65 20 73 77 69 74 63 68 2e 00 60 60 61 63 74 69 76 65 60 60 20 54 68 69 73 20 69 73 | g.the.switch..``active``.This.is |
| 157760 | 20 74 68 65 20 6c 6f 77 2d 6c 65 76 65 6c 20 66 69 72 6d 77 61 72 65 20 63 6f 6e 74 72 6f 6c 20 | .the.low-level.firmware.control. |
| 157780 | 6d 6f 64 65 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 70 72 6f 66 69 6c 65 20 73 65 74 20 61 6e | mode.based.on.the.profile.set.an |
| 1577a0 | 64 20 74 68 65 20 73 79 73 74 65 6d 20 67 6f 76 65 72 6e 6f 72 20 68 61 73 20 6e 6f 20 65 66 66 | d.the.system.governor.has.no.eff |
| 1577c0 | 65 63 74 2e 00 60 60 61 64 61 70 74 69 76 65 2d 6c 6f 61 64 2d 62 61 6c 61 6e 63 65 60 60 20 2d | ect..``adaptive-load-balance``.- |
| 1577e0 | 20 41 64 61 70 74 69 76 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 3a 20 69 6e 63 6c 75 64 | .Adaptive.load.balancing:.includ |
| 157800 | 65 73 20 74 72 61 6e 73 6d 69 74 2d 6c 6f 61 64 2d 62 61 6c 61 6e 63 65 20 70 6c 75 73 20 72 65 | es.transmit-load-balance.plus.re |
| 157820 | 63 65 69 76 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 66 6f 72 20 49 50 56 34 20 74 72 | ceive.load.balancing.for.IPV4.tr |
| 157840 | 61 66 66 69 63 2c 20 61 6e 64 20 64 6f 65 73 20 6e 6f 74 20 72 65 71 75 69 72 65 20 61 6e 79 20 | affic,.and.does.not.require.any. |
| 157860 | 73 70 65 63 69 61 6c 20 73 77 69 74 63 68 20 73 75 70 70 6f 72 74 2e 20 54 68 65 20 72 65 63 65 | special.switch.support..The.rece |
| 157880 | 69 76 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 69 73 20 61 63 68 69 65 76 65 64 20 62 | ive.load.balancing.is.achieved.b |
| 1578a0 | 79 20 41 52 50 20 6e 65 67 6f 74 69 61 74 69 6f 6e 2e 20 54 68 65 20 62 6f 6e 64 69 6e 67 20 64 | y.ARP.negotiation..The.bonding.d |
| 1578c0 | 72 69 76 65 72 20 69 6e 74 65 72 63 65 70 74 73 20 74 68 65 20 41 52 50 20 52 65 70 6c 69 65 73 | river.intercepts.the.ARP.Replies |
| 1578e0 | 20 73 65 6e 74 20 62 79 20 74 68 65 20 6c 6f 63 61 6c 20 73 79 73 74 65 6d 20 6f 6e 20 74 68 65 | .sent.by.the.local.system.on.the |
| 157900 | 69 72 20 77 61 79 20 6f 75 74 20 61 6e 64 20 6f 76 65 72 77 72 69 74 65 73 20 74 68 65 20 73 6f | ir.way.out.and.overwrites.the.so |
| 157920 | 75 72 63 65 20 68 61 72 64 77 61 72 65 20 61 64 64 72 65 73 73 20 77 69 74 68 20 74 68 65 20 75 | urce.hardware.address.with.the.u |
| 157940 | 6e 69 71 75 65 20 68 61 72 64 77 61 72 65 20 61 64 64 72 65 73 73 20 6f 66 20 6f 6e 65 20 6f 66 | nique.hardware.address.of.one.of |
| 157960 | 20 74 68 65 20 73 6c 61 76 65 73 20 69 6e 20 74 68 65 20 62 6f 6e 64 20 73 75 63 68 20 74 68 61 | .the.slaves.in.the.bond.such.tha |
| 157980 | 74 20 64 69 66 66 65 72 65 6e 74 20 70 65 65 72 73 20 75 73 65 20 64 69 66 66 65 72 65 6e 74 20 | t.different.peers.use.different. |
| 1579a0 | 68 61 72 64 77 61 72 65 20 61 64 64 72 65 73 73 65 73 20 66 6f 72 20 74 68 65 20 73 65 72 76 65 | hardware.addresses.for.the.serve |
| 1579c0 | 72 2e 00 60 60 61 64 64 72 65 73 73 60 60 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 73 75 62 | r..``address``.IP.address.or.sub |
| 1579e0 | 6e 65 74 2e 00 60 60 61 67 67 72 65 73 73 69 76 65 60 60 20 75 73 65 20 41 67 67 72 65 73 73 69 | net..``aggressive``.use.Aggressi |
| 157a00 | 76 65 20 6d 6f 64 65 20 66 6f 72 20 4b 65 79 20 45 78 63 68 61 6e 67 65 73 20 69 6e 20 74 68 65 | ve.mode.for.Key.Exchanges.in.the |
| 157a20 | 20 49 4b 45 76 31 20 70 72 6f 74 6f 63 6f 6c 20 61 67 67 72 65 73 73 69 76 65 20 6d 6f 64 65 20 | .IKEv1.protocol.aggressive.mode. |
| 157a40 | 69 73 20 6d 75 63 68 20 6d 6f 72 65 20 69 6e 73 65 63 75 72 65 20 63 6f 6d 70 61 72 65 64 20 74 | is.much.more.insecure.compared.t |
| 157a60 | 6f 20 4d 61 69 6e 20 6d 6f 64 65 3b 00 60 60 61 6c 6c 2d 61 76 61 69 6c 61 62 6c 65 60 60 20 61 | o.Main.mode;.``all-available``.a |
| 157a80 | 6c 6c 20 63 68 65 63 6b 69 6e 67 20 74 61 72 67 65 74 20 61 64 64 72 65 73 73 65 73 20 6d 75 73 | ll.checking.target.addresses.mus |
| 157aa0 | 74 20 62 65 20 61 76 61 69 6c 61 62 6c 65 20 74 6f 20 70 61 73 73 20 74 68 69 73 20 63 68 65 63 | t.be.available.to.pass.this.chec |
| 157ac0 | 6b 00 60 60 61 6d 64 5f 70 73 74 61 74 65 3d 7b 6d 6f 64 65 7d 60 60 20 53 65 74 73 20 74 68 65 | k.``amd_pstate={mode}``.Sets.the |
| 157ae0 | 20 70 2d 73 74 61 74 65 20 6d 6f 64 65 00 60 60 61 6e 79 2d 61 76 61 69 6c 61 62 6c 65 60 60 20 | .p-state.mode.``any-available``. |
| 157b00 | 61 6e 79 20 6f 66 20 74 68 65 20 63 68 65 63 6b 69 6e 67 20 74 61 72 67 65 74 20 61 64 64 72 65 | any.of.the.checking.target.addre |
| 157b20 | 73 73 65 73 20 6d 75 73 74 20 62 65 20 61 76 61 69 6c 61 62 6c 65 20 74 6f 20 70 61 73 73 20 74 | sses.must.be.available.to.pass.t |
| 157b40 | 68 69 73 20 63 68 65 63 6b 00 60 60 61 6e 79 60 60 20 55 73 65 20 61 6e 79 20 61 73 20 72 65 63 | his.check.``any``.Use.any.as.rec |
| 157b60 | 6f 72 64 20 6e 61 6d 65 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 72 65 63 6f 72 64 | ord.name.to.configure.the.record |
| 157b80 | 20 61 73 20 61 20 77 69 6c 64 63 61 72 64 2e 00 60 60 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e | .as.a.wildcard..``authentication |
| 157ba0 | 20 6c 6f 63 61 6c 2d 69 64 2f 72 65 6d 6f 74 65 2d 69 64 60 60 20 2d 20 49 4b 45 20 69 64 65 6e | .local-id/remote-id``.-.IKE.iden |
| 157bc0 | 74 69 66 69 63 61 74 69 6f 6e 20 69 73 20 75 73 65 64 20 66 6f 72 20 76 61 6c 69 64 61 74 69 6f | tification.is.used.for.validatio |
| 157be0 | 6e 20 6f 66 20 56 50 4e 20 70 65 65 72 20 64 65 76 69 63 65 73 20 64 75 72 69 6e 67 20 49 4b 45 | n.of.VPN.peer.devices.during.IKE |
| 157c00 | 20 6e 65 67 6f 74 69 61 74 69 6f 6e 2e 20 49 66 20 79 6f 75 20 64 6f 20 6e 6f 74 20 63 6f 6e 66 | .negotiation..If.you.do.not.conf |
| 157c20 | 69 67 75 72 65 20 6c 6f 63 61 6c 2f 72 65 6d 6f 74 65 2d 69 64 65 6e 74 69 74 79 2c 20 74 68 65 | igure.local/remote-identity,.the |
| 157c40 | 20 64 65 76 69 63 65 20 75 73 65 73 20 74 68 65 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 | .device.uses.the.IPv4.or.IPv6.ad |
| 157c60 | 64 72 65 73 73 20 74 68 61 74 20 63 6f 72 72 65 73 70 6f 6e 64 73 20 74 6f 20 74 68 65 20 6c 6f | dress.that.corresponds.to.the.lo |
| 157c80 | 63 61 6c 2f 72 65 6d 6f 74 65 20 70 65 65 72 20 62 79 20 64 65 66 61 75 6c 74 2e 20 49 6e 20 63 | cal/remote.peer.by.default..In.c |
| 157ca0 | 65 72 74 61 69 6e 20 6e 65 74 77 6f 72 6b 20 73 65 74 75 70 73 20 28 6c 69 6b 65 20 69 70 73 65 | ertain.network.setups.(like.ipse |
| 157cc0 | 63 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 64 79 6e 61 6d 69 63 20 61 64 64 72 65 73 73 | c.interface.with.dynamic.address |
| 157ce0 | 2c 20 6f 72 20 62 65 68 69 6e 64 20 74 68 65 20 4e 41 54 20 29 2c 20 74 68 65 20 49 4b 45 20 49 | ,.or.behind.the.NAT.),.the.IKE.I |
| 157d00 | 44 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 74 68 65 20 70 65 65 72 20 64 6f 65 73 20 6e 6f | D.received.from.the.peer.does.no |
| 157d20 | 74 20 6d 61 74 63 68 20 74 68 65 20 49 4b 45 20 67 61 74 65 77 61 79 20 63 6f 6e 66 69 67 75 72 | t.match.the.IKE.gateway.configur |
| 157d40 | 65 64 20 6f 6e 20 74 68 65 20 64 65 76 69 63 65 2e 20 54 68 69 73 20 63 61 6e 20 6c 65 61 64 20 | ed.on.the.device..This.can.lead. |
| 157d60 | 74 6f 20 61 20 50 68 61 73 65 20 31 20 76 61 6c 69 64 61 74 69 6f 6e 20 66 61 69 6c 75 72 65 2e | to.a.Phase.1.validation.failure. |
| 157d80 | 20 53 6f 2c 20 6d 61 6b 65 20 73 75 72 65 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 | .So,.make.sure.to.configure.the. |
| 157da0 | 6c 6f 63 61 6c 2f 72 65 6d 6f 74 65 20 69 64 20 65 78 70 6c 69 63 69 74 6c 79 20 61 6e 64 20 65 | local/remote.id.explicitly.and.e |
| 157dc0 | 6e 73 75 72 65 20 74 68 61 74 20 74 68 65 20 49 4b 45 20 49 44 20 69 73 20 74 68 65 20 73 61 6d | nsure.that.the.IKE.ID.is.the.sam |
| 157de0 | 65 20 61 73 20 74 68 65 20 72 65 6d 6f 74 65 2d 69 64 65 6e 74 69 74 79 20 63 6f 6e 66 69 67 75 | e.as.the.remote-identity.configu |
| 157e00 | 72 65 64 20 6f 6e 20 74 68 65 20 70 65 65 72 20 64 65 76 69 63 65 2e 00 60 60 61 75 74 68 65 6e | red.on.the.peer.device..``authen |
| 157e20 | 74 69 63 61 74 69 6f 6e 60 60 20 2d 20 63 6f 6e 66 69 67 75 72 65 20 61 75 74 68 65 6e 74 69 63 | tication``.-.configure.authentic |
| 157e40 | 61 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 56 79 4f 53 20 61 6e 64 20 61 20 72 65 6d 6f 74 65 20 | ation.between.VyOS.and.a.remote. |
| 157e60 | 70 65 65 72 2e 20 49 66 20 70 72 65 2d 73 68 61 72 65 64 2d 73 65 63 72 65 74 20 6d 6f 64 65 20 | peer..If.pre-shared-secret.mode. |
| 157e80 | 69 73 20 75 73 65 64 2c 20 74 68 65 20 73 65 63 72 65 74 20 6b 65 79 20 6d 75 73 74 20 62 65 20 | is.used,.the.secret.key.must.be. |
| 157ea0 | 64 65 66 69 6e 65 64 20 69 6e 20 60 60 73 65 74 20 76 70 6e 20 69 70 73 65 63 20 61 75 74 68 65 | defined.in.``set.vpn.ipsec.authe |
| 157ec0 | 6e 74 69 63 61 74 69 6f 6e 60 60 20 61 6e 64 20 73 75 62 6f 70 74 69 6f 6e 73 3a 00 60 60 61 75 | ntication``.and.suboptions:.``au |
| 157ee0 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 60 60 20 2d 20 63 6f 6e 66 69 67 75 72 65 20 61 75 74 68 65 | thentication``.-.configure.authe |
| 157f00 | 6e 74 69 63 61 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 56 79 4f 53 20 61 6e 64 20 61 20 72 65 6d | ntication.between.VyOS.and.a.rem |
| 157f20 | 6f 74 65 20 70 65 65 72 2e 20 53 75 62 6f 70 74 69 6f 6e 73 3a 00 60 60 61 78 60 60 20 2d 20 38 | ote.peer..Suboptions:.``ax``.-.8 |
| 157f40 | 30 32 2e 31 31 61 78 20 2d 20 65 78 63 65 65 64 73 20 31 47 42 69 74 2f 73 65 63 00 60 60 62 60 | 02.11ax.-.exceeds.1GBit/sec.``b` |
| 157f60 | 60 20 2d 20 38 30 32 2e 31 31 62 20 2d 20 31 31 20 4d 62 69 74 73 2f 73 65 63 00 60 60 62 61 62 | `.-.802.11b.-.11.Mbits/sec.``bab |
| 157f80 | 65 6c 60 60 20 2d 20 42 61 62 65 6c 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 28 42 | el``.-.Babel.routing.protocol.(B |
| 157fa0 | 61 62 65 6c 29 00 60 60 62 65 67 69 6e 60 60 20 4d 61 74 63 68 65 73 20 74 68 65 20 62 65 67 69 | abel).``begin``.Matches.the.begi |
| 157fc0 | 6e 6e 69 6e 67 20 6f 66 20 74 68 65 20 55 52 4c 20 70 61 74 68 00 60 60 62 67 70 60 60 20 2d 20 | nning.of.the.URL.path.``bgp``.-. |
| 157fe0 | 42 6f 72 64 65 72 20 47 61 74 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c 20 28 42 47 50 29 00 60 60 | Border.Gateway.Protocol.(BGP).`` |
| 158000 | 62 69 6e 64 60 60 20 2d 20 73 65 6c 65 63 74 20 61 20 56 54 49 20 69 6e 74 65 72 66 61 63 65 20 | bind``.-.select.a.VTI.interface. |
| 158020 | 74 6f 20 62 69 6e 64 20 74 6f 20 74 68 69 73 20 70 65 65 72 3b 00 60 60 62 6c 61 63 6b 68 6f 6c | to.bind.to.this.peer;.``blackhol |
| 158040 | 65 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e | e``.-....................Well-kn |
| 158060 | 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 42 4c 41 43 4b 48 4f 4c 45 20 | own.communities.value.BLACKHOLE. |
| 158080 | 30 78 46 46 46 46 30 32 39 41 00 60 60 62 72 6f 61 64 63 61 73 74 60 60 20 2d 20 42 72 6f 61 64 | 0xFFFF029A.``broadcast``.-.Broad |
| 1580a0 | 63 61 73 74 20 70 6f 6c 69 63 79 3a 20 74 72 61 6e 73 6d 69 74 73 20 65 76 65 72 79 74 68 69 6e | cast.policy:.transmits.everythin |
| 1580c0 | 67 20 6f 6e 20 61 6c 6c 20 73 6c 61 76 65 20 69 6e 74 65 72 66 61 63 65 73 2e 00 60 60 62 75 72 | g.on.all.slave.interfaces..``bur |
| 1580e0 | 73 74 60 60 3a 20 4e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 61 6c 6c 6f 77 65 64 20 | st``:.Number.of.packets.allowed. |
| 158100 | 74 6f 20 6f 76 65 72 73 68 6f 6f 74 20 74 68 65 20 6c 69 6d 69 74 20 77 69 74 68 69 6e 20 60 60 | to.overshoot.the.limit.within.`` |
| 158120 | 70 65 72 69 6f 64 60 60 2e 20 44 65 66 61 75 6c 74 20 35 2e 00 60 60 63 61 2d 63 65 72 74 2d 66 | period``..Default.5..``ca-cert-f |
| 158140 | 69 6c 65 60 60 20 2d 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 20 66 69 6c 65 2e 20 55 73 69 | ile``.-.CA.certificate.file..Usi |
| 158160 | 6e 67 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 72 65 6d 6f 74 65 20 70 65 65 | ng.for.authenticating.remote.pee |
| 158180 | 72 3b 00 60 60 63 61 2d 63 65 72 74 69 66 69 63 61 74 65 60 60 20 2d 20 43 41 20 63 65 72 74 69 | r;.``ca-certificate``.-.CA.certi |
| 1581a0 | 66 69 63 61 74 65 20 69 6e 20 50 4b 49 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 55 73 69 | ficate.in.PKI.configuration..Usi |
| 1581c0 | 6e 67 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 72 65 6d 6f 74 65 20 70 65 65 | ng.for.authenticating.remote.pee |
| 1581e0 | 72 3b 00 60 60 63 64 70 60 60 20 2d 20 4c 69 73 74 65 6e 20 66 6f 72 20 43 44 50 20 66 6f 72 20 | r;.``cdp``.-.Listen.for.CDP.for. |
| 158200 | 43 69 73 63 6f 20 72 6f 75 74 65 72 73 2f 73 77 69 74 63 68 65 73 00 60 60 63 65 72 74 2d 66 69 | Cisco.routers/switches.``cert-fi |
| 158220 | 6c 65 60 60 20 2d 20 63 65 72 74 69 66 69 63 61 74 65 20 66 69 6c 65 2c 20 77 68 69 63 68 20 77 | le``.-.certificate.file,.which.w |
| 158240 | 69 6c 6c 20 62 65 20 75 73 65 64 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 6c | ill.be.used.for.authenticating.l |
| 158260 | 6f 63 61 6c 20 72 6f 75 74 65 72 20 6f 6e 20 72 65 6d 6f 74 65 20 70 65 65 72 3b 00 60 60 63 65 | ocal.router.on.remote.peer;.``ce |
| 158280 | 72 74 69 66 69 63 61 74 65 60 60 20 2d 20 63 65 72 74 69 66 69 63 61 74 65 20 66 69 6c 65 20 69 | rtificate``.-.certificate.file.i |
| 1582a0 | 6e 20 50 4b 49 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 | n.PKI.configuration,.which.will. |
| 1582c0 | 62 65 20 75 73 65 64 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 6c 6f 63 61 6c | be.used.for.authenticating.local |
| 1582e0 | 20 72 6f 75 74 65 72 20 6f 6e 20 72 65 6d 6f 74 65 20 70 65 65 72 3b 00 60 60 63 6c 65 61 72 60 | .router.on.remote.peer;.``clear` |
| 158300 | 60 20 63 6c 6f 73 65 73 20 74 68 65 20 43 48 49 4c 44 5f 53 41 20 61 6e 64 20 64 6f 65 73 20 6e | `.closes.the.CHILD_SA.and.does.n |
| 158320 | 6f 74 20 74 61 6b 65 20 66 75 72 74 68 65 72 20 61 63 74 69 6f 6e 20 28 64 65 66 61 75 6c 74 29 | ot.take.further.action.(default) |
| 158340 | 3b 00 60 60 63 6c 65 61 72 60 60 20 73 65 74 20 61 63 74 69 6f 6e 20 74 6f 20 63 6c 65 61 72 3b | ;.``clear``.set.action.to.clear; |
| 158360 | 00 60 60 63 6c 6f 73 65 2d 61 63 74 69 6f 6e 20 3d 20 6e 6f 6e 65 20 7c 20 63 6c 65 61 72 20 7c | .``close-action.=.none.|.clear.| |
| 158380 | 20 68 6f 6c 64 20 7c 20 72 65 73 74 61 72 74 60 60 20 2d 20 64 65 66 69 6e 65 73 20 74 68 65 20 | .hold.|.restart``.-.defines.the. |
| 1583a0 | 61 63 74 69 6f 6e 20 74 6f 20 74 61 6b 65 20 69 66 20 74 68 65 20 72 65 6d 6f 74 65 20 70 65 65 | action.to.take.if.the.remote.pee |
| 1583c0 | 72 20 75 6e 65 78 70 65 63 74 65 64 6c 79 20 63 6c 6f 73 65 73 20 61 20 43 48 49 4c 44 5f 53 41 | r.unexpectedly.closes.a.CHILD_SA |
| 1583e0 | 20 28 73 65 65 20 61 62 6f 76 65 20 66 6f 72 20 6d 65 61 6e 69 6e 67 20 6f 66 20 76 61 6c 75 65 | .(see.above.for.meaning.of.value |
| 158400 | 73 29 2e 20 41 20 63 6c 6f 73 65 61 63 74 69 6f 6e 20 73 68 6f 75 6c 64 20 6e 6f 74 20 62 65 20 | s)..A.closeaction.should.not.be. |
| 158420 | 75 73 65 64 20 69 66 20 74 68 65 20 70 65 65 72 20 75 73 65 73 20 72 65 61 75 74 68 65 6e 74 69 | used.if.the.peer.uses.reauthenti |
| 158440 | 63 61 74 69 6f 6e 20 6f 72 20 75 6e 69 71 75 65 69 64 73 2e 00 60 60 63 6c 6f 73 65 2d 61 63 74 | cation.or.uniqueids..``close-act |
| 158460 | 69 6f 6e 20 3d 20 6e 6f 6e 65 20 7c 20 63 6c 65 61 72 20 7c 20 74 72 61 70 20 7c 20 73 74 61 72 | ion.=.none.|.clear.|.trap.|.star |
| 158480 | 74 60 60 20 2d 20 64 65 66 69 6e 65 73 20 74 68 65 20 61 63 74 69 6f 6e 20 74 6f 20 74 61 6b 65 | t``.-.defines.the.action.to.take |
| 1584a0 | 20 69 66 20 74 68 65 20 72 65 6d 6f 74 65 20 70 65 65 72 20 75 6e 65 78 70 65 63 74 65 64 6c 79 | .if.the.remote.peer.unexpectedly |
| 1584c0 | 20 63 6c 6f 73 65 73 20 61 20 43 48 49 4c 44 5f 53 41 20 28 73 65 65 20 61 62 6f 76 65 20 66 6f | .closes.a.CHILD_SA.(see.above.fo |
| 1584e0 | 72 20 6d 65 61 6e 69 6e 67 20 6f 66 20 76 61 6c 75 65 73 29 2e 20 41 20 63 6c 6f 73 65 61 63 74 | r.meaning.of.values)..A.closeact |
| 158500 | 69 6f 6e 20 73 68 6f 75 6c 64 20 6e 6f 74 20 62 65 20 75 73 65 64 20 69 66 20 74 68 65 20 70 65 | ion.should.not.be.used.if.the.pe |
| 158520 | 65 72 20 75 73 65 73 20 72 65 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f 72 20 75 6e 69 71 | er.uses.reauthentication.or.uniq |
| 158540 | 75 65 69 64 73 2e 00 60 60 63 6c 6f 73 65 2d 61 63 74 69 6f 6e 60 60 20 64 65 66 69 6e 65 73 20 | ueids..``close-action``.defines. |
| 158560 | 74 68 65 20 61 63 74 69 6f 6e 20 74 6f 20 74 61 6b 65 20 69 66 20 74 68 65 20 72 65 6d 6f 74 65 | the.action.to.take.if.the.remote |
| 158580 | 20 70 65 65 72 20 75 6e 65 78 70 65 63 74 65 64 6c 79 20 63 6c 6f 73 65 73 20 61 20 43 48 49 4c | .peer.unexpectedly.closes.a.CHIL |
| 1585a0 | 44 5f 53 41 3a 00 60 60 63 6f 6d 70 72 65 73 73 69 6f 6e 60 60 20 20 45 6e 61 62 6c 65 73 20 74 | D_SA:.``compression``..Enables.t |
| 1585c0 | 68 65 20 20 49 50 43 6f 6d 70 28 49 50 20 50 61 79 6c 6f 61 64 20 43 6f 6d 70 72 65 73 73 69 6f | he..IPComp(IP.Payload.Compressio |
| 1585e0 | 6e 29 20 70 72 6f 74 6f 63 6f 6c 20 77 68 69 63 68 20 61 6c 6c 6f 77 73 20 63 6f 6d 70 72 65 73 | n).protocol.which.allows.compres |
| 158600 | 73 69 6e 67 20 74 68 65 20 63 6f 6e 74 65 6e 74 20 6f 66 20 49 50 20 70 61 63 6b 65 74 73 2e 00 | sing.the.content.of.IP.packets.. |
| 158620 | 60 60 63 6f 6d 70 72 65 73 73 69 6f 6e 60 60 20 77 68 65 74 68 65 72 20 49 50 43 6f 6d 70 20 63 | ``compression``.whether.IPComp.c |
| 158640 | 6f 6d 70 72 65 73 73 69 6f 6e 20 6f 66 20 63 6f 6e 74 65 6e 74 20 69 73 20 70 72 6f 70 6f 73 65 | ompression.of.content.is.propose |
| 158660 | 64 20 6f 6e 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 3a 00 60 60 63 6f 6e 6e 65 63 74 65 64 | d.on.the.connection:.``connected |
| 158680 | 60 60 20 2d 20 43 6f 6e 6e 65 63 74 65 64 20 72 6f 75 74 65 73 20 28 64 69 72 65 63 74 6c 79 20 | ``.-.Connected.routes.(directly. |
| 1586a0 | 61 74 74 61 63 68 65 64 20 73 75 62 6e 65 74 20 6f 72 20 68 6f 73 74 29 00 60 60 63 6f 6e 6e 65 | attached.subnet.or.host).``conne |
| 1586c0 | 63 74 69 6f 6e 2d 74 79 70 65 60 60 20 2d 20 68 6f 77 20 74 6f 20 68 61 6e 64 6c 65 20 74 68 69 | ction-type``.-.how.to.handle.thi |
| 1586e0 | 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 70 72 6f 63 65 73 73 2e 20 50 6f 73 73 69 62 6c 65 20 76 | s.connection.process..Possible.v |
| 158700 | 61 72 69 61 6e 74 73 3a 00 60 60 63 6f 6e 74 69 6e 75 65 60 60 3a 20 63 6f 6e 74 69 6e 75 65 20 | ariants:.``continue``:.continue. |
| 158720 | 70 61 72 73 69 6e 67 20 6e 65 78 74 20 72 75 6c 65 2e 00 60 60 63 72 6c 2d 66 69 6c 65 60 60 20 | parsing.next.rule..``crl-file``. |
| 158740 | 2d 20 66 69 6c 65 20 77 69 74 68 20 74 68 65 20 43 65 72 74 69 66 69 63 61 74 65 20 52 65 76 6f | -.file.with.the.Certificate.Revo |
| 158760 | 63 61 74 69 6f 6e 20 4c 69 73 74 2e 20 55 73 69 6e 67 20 74 6f 20 63 68 65 63 6b 20 69 66 20 61 | cation.List..Using.to.check.if.a |
| 158780 | 20 63 65 72 74 69 66 69 63 61 74 65 20 66 6f 72 20 74 68 65 20 72 65 6d 6f 74 65 20 70 65 65 72 | .certificate.for.the.remote.peer |
| 1587a0 | 20 69 73 20 76 61 6c 69 64 20 6f 72 20 72 65 76 6f 6b 65 64 3b 00 60 60 64 60 60 20 2d 20 45 78 | .is.valid.or.revoked;.``d``.-.Ex |
| 1587c0 | 65 63 75 74 69 6f 6e 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 64 61 79 73 00 60 60 64 65 61 64 2d | ecution.interval.in.days.``dead- |
| 1587e0 | 70 65 65 72 2d 64 65 74 65 63 74 69 6f 6e 20 61 63 74 69 6f 6e 20 3d 20 63 6c 65 61 72 20 7c 20 | peer-detection.action.=.clear.|. |
| 158800 | 68 6f 6c 64 20 7c 20 72 65 73 74 61 72 74 60 60 20 2d 20 52 5f 55 5f 54 48 45 52 45 20 6e 6f 74 | hold.|.restart``.-.R_U_THERE.not |
| 158820 | 69 66 69 63 61 74 69 6f 6e 20 6d 65 73 73 61 67 65 73 28 49 4b 45 76 31 29 20 6f 72 20 65 6d 70 | ification.messages(IKEv1).or.emp |
| 158840 | 74 79 20 49 4e 46 4f 52 4d 41 54 49 4f 4e 41 4c 20 6d 65 73 73 61 67 65 73 20 28 49 4b 45 76 32 | ty.INFORMATIONAL.messages.(IKEv2 |
| 158860 | 29 20 61 72 65 20 70 65 72 69 6f 64 69 63 61 6c 6c 79 20 73 65 6e 74 20 69 6e 20 6f 72 64 65 72 | ).are.periodically.sent.in.order |
| 158880 | 20 74 6f 20 63 68 65 63 6b 20 74 68 65 20 6c 69 76 65 6c 69 6e 65 73 73 20 6f 66 20 74 68 65 20 | .to.check.the.liveliness.of.the. |
| 1588a0 | 49 50 73 65 63 20 70 65 65 72 2e 20 54 68 65 20 76 61 6c 75 65 73 20 63 6c 65 61 72 2c 20 68 6f | IPsec.peer..The.values.clear,.ho |
| 1588c0 | 6c 64 2c 20 61 6e 64 20 72 65 73 74 61 72 74 20 61 6c 6c 20 61 63 74 69 76 61 74 65 20 44 50 44 | ld,.and.restart.all.activate.DPD |
| 1588e0 | 20 61 6e 64 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 61 63 74 69 6f 6e 20 74 6f 20 70 65 72 | .and.determine.the.action.to.per |
| 158900 | 66 6f 72 6d 20 6f 6e 20 61 20 74 69 6d 65 6f 75 74 2e 20 57 69 74 68 20 60 60 63 6c 65 61 72 60 | form.on.a.timeout..With.``clear` |
| 158920 | 60 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 63 6c 6f 73 65 64 20 77 69 74 68 20 | `.the.connection.is.closed.with. |
| 158940 | 6e 6f 20 66 75 72 74 68 65 72 20 61 63 74 69 6f 6e 73 20 74 61 6b 65 6e 2e 20 60 60 68 6f 6c 64 | no.further.actions.taken..``hold |
| 158960 | 60 60 20 69 6e 73 74 61 6c 6c 73 20 61 20 74 72 61 70 20 70 6f 6c 69 63 79 2c 20 77 68 69 63 68 | ``.installs.a.trap.policy,.which |
| 158980 | 20 77 69 6c 6c 20 63 61 74 63 68 20 6d 61 74 63 68 69 6e 67 20 74 72 61 66 66 69 63 20 61 6e 64 | .will.catch.matching.traffic.and |
| 1589a0 | 20 74 72 69 65 73 20 74 6f 20 72 65 2d 6e 65 67 6f 74 69 61 74 65 20 74 68 65 20 63 6f 6e 6e 65 | .tries.to.re-negotiate.the.conne |
| 1589c0 | 63 74 69 6f 6e 20 6f 6e 20 64 65 6d 61 6e 64 2e 20 60 60 72 65 73 74 61 72 74 60 60 20 77 69 6c | ction.on.demand..``restart``.wil |
| 1589e0 | 6c 20 69 6d 6d 65 64 69 61 74 65 6c 79 20 74 72 69 67 67 65 72 20 61 6e 20 61 74 74 65 6d 70 74 | l.immediately.trigger.an.attempt |
| 158a00 | 20 74 6f 20 72 65 2d 6e 65 67 6f 74 69 61 74 65 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e | .to.re-negotiate.the.connection. |
| 158a20 | 00 60 60 64 65 61 64 2d 70 65 65 72 2d 64 65 74 65 63 74 69 6f 6e 20 61 63 74 69 6f 6e 20 3d 20 | .``dead-peer-detection.action.=. |
| 158a40 | 63 6c 65 61 72 20 7c 20 74 72 61 70 20 7c 20 72 65 73 74 61 72 74 60 60 20 2d 20 52 5f 55 5f 54 | clear.|.trap.|.restart``.-.R_U_T |
| 158a60 | 48 45 52 45 20 6e 6f 74 69 66 69 63 61 74 69 6f 6e 20 6d 65 73 73 61 67 65 73 28 49 4b 45 76 31 | HERE.notification.messages(IKEv1 |
| 158a80 | 29 20 6f 72 20 65 6d 70 74 79 20 49 4e 46 4f 52 4d 41 54 49 4f 4e 41 4c 20 6d 65 73 73 61 67 65 | ).or.empty.INFORMATIONAL.message |
| 158aa0 | 73 20 28 49 4b 45 76 32 29 20 61 72 65 20 70 65 72 69 6f 64 69 63 61 6c 6c 79 20 73 65 6e 74 20 | s.(IKEv2).are.periodically.sent. |
| 158ac0 | 69 6e 20 6f 72 64 65 72 20 74 6f 20 63 68 65 63 6b 20 74 68 65 20 6c 69 76 65 6c 69 6e 65 73 73 | in.order.to.check.the.liveliness |
| 158ae0 | 20 6f 66 20 74 68 65 20 49 50 73 65 63 20 70 65 65 72 2e 20 54 68 65 20 76 61 6c 75 65 73 20 63 | .of.the.IPsec.peer..The.values.c |
| 158b00 | 6c 65 61 72 2c 20 74 72 61 70 2c 20 61 6e 64 20 72 65 73 74 61 72 74 20 61 6c 6c 20 61 63 74 69 | lear,.trap,.and.restart.all.acti |
| 158b20 | 76 61 74 65 20 44 50 44 20 61 6e 64 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 61 63 74 69 6f | vate.DPD.and.determine.the.actio |
| 158b40 | 6e 20 74 6f 20 70 65 72 66 6f 72 6d 20 6f 6e 20 61 20 74 69 6d 65 6f 75 74 2e 20 57 69 74 68 20 | n.to.perform.on.a.timeout..With. |
| 158b60 | 60 60 63 6c 65 61 72 60 60 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 63 6c 6f 73 | ``clear``.the.connection.is.clos |
| 158b80 | 65 64 20 77 69 74 68 20 6e 6f 20 66 75 72 74 68 65 72 20 61 63 74 69 6f 6e 73 20 74 61 6b 65 6e | ed.with.no.further.actions.taken |
| 158ba0 | 2e 20 60 60 74 72 61 70 60 60 20 69 6e 73 74 61 6c 6c 73 20 61 20 74 72 61 70 20 70 6f 6c 69 63 | ..``trap``.installs.a.trap.polic |
| 158bc0 | 79 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 63 61 74 63 68 20 6d 61 74 63 68 69 6e 67 20 74 72 61 | y,.which.will.catch.matching.tra |
| 158be0 | 66 66 69 63 20 61 6e 64 20 74 72 69 65 73 20 74 6f 20 72 65 2d 6e 65 67 6f 74 69 61 74 65 20 74 | ffic.and.tries.to.re-negotiate.t |
| 158c00 | 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 6e 20 64 65 6d 61 6e 64 2e 20 60 60 72 65 73 74 61 | he.connection.on.demand..``resta |
| 158c20 | 72 74 60 60 20 77 69 6c 6c 20 69 6d 6d 65 64 69 61 74 65 6c 79 20 74 72 69 67 67 65 72 20 61 6e | rt``.will.immediately.trigger.an |
| 158c40 | 20 61 74 74 65 6d 70 74 20 74 6f 20 72 65 2d 6e 65 67 6f 74 69 61 74 65 20 74 68 65 20 63 6f 6e | .attempt.to.re-negotiate.the.con |
| 158c60 | 6e 65 63 74 69 6f 6e 2e 00 60 60 64 65 61 64 2d 70 65 65 72 2d 64 65 74 65 63 74 69 6f 6e 60 60 | nection..``dead-peer-detection`` |
| 158c80 | 20 63 6f 6e 74 72 6f 6c 73 20 74 68 65 20 75 73 65 20 6f 66 20 74 68 65 20 44 65 61 64 20 50 65 | .controls.the.use.of.the.Dead.Pe |
| 158ca0 | 65 72 20 44 65 74 65 63 74 69 6f 6e 20 70 72 6f 74 6f 63 6f 6c 20 28 44 50 44 2c 20 52 46 43 20 | er.Detection.protocol.(DPD,.RFC. |
| 158cc0 | 33 37 30 36 29 20 77 68 65 72 65 20 52 5f 55 5f 54 48 45 52 45 20 6e 6f 74 69 66 69 63 61 74 69 | 3706).where.R_U_THERE.notificati |
| 158ce0 | 6f 6e 20 6d 65 73 73 61 67 65 73 20 28 49 4b 45 76 31 29 20 6f 72 20 65 6d 70 74 79 20 49 4e 46 | on.messages.(IKEv1).or.empty.INF |
| 158d00 | 4f 52 4d 41 54 49 4f 4e 41 4c 20 6d 65 73 73 61 67 65 73 20 28 49 4b 45 76 32 29 20 61 72 65 20 | ORMATIONAL.messages.(IKEv2).are. |
| 158d20 | 70 65 72 69 6f 64 69 63 61 6c 6c 79 20 73 65 6e 74 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 63 68 | periodically.sent.in.order.to.ch |
| 158d40 | 65 63 6b 20 74 68 65 20 6c 69 76 65 6c 69 6e 65 73 73 20 6f 66 20 74 68 65 20 49 50 73 65 63 20 | eck.the.liveliness.of.the.IPsec. |
| 158d60 | 70 65 65 72 3a 00 60 60 64 65 66 61 75 6c 74 2d 65 73 70 2d 67 72 6f 75 70 60 60 20 2d 20 45 53 | peer:.``default-esp-group``.-.ES |
| 158d80 | 50 20 67 72 6f 75 70 20 74 6f 20 75 73 65 20 62 79 20 64 65 66 61 75 6c 74 20 66 6f 72 20 74 72 | P.group.to.use.by.default.for.tr |
| 158da0 | 61 66 66 69 63 20 65 6e 63 72 79 70 74 69 6f 6e 2e 20 4d 69 67 68 74 20 62 65 20 6f 76 65 72 77 | affic.encryption..Might.be.overw |
| 158dc0 | 72 69 74 74 65 6e 20 62 79 20 69 6e 64 69 76 69 64 75 61 6c 20 73 65 74 74 69 6e 67 73 20 66 6f | ritten.by.individual.settings.fo |
| 158de0 | 72 20 74 75 6e 6e 65 6c 20 6f 72 20 56 54 49 20 69 6e 74 65 72 66 61 63 65 20 62 69 6e 64 69 6e | r.tunnel.or.VTI.interface.bindin |
| 158e00 | 67 3b 00 60 60 64 65 73 63 72 69 70 74 69 6f 6e 60 60 20 2d 20 64 65 73 63 72 69 70 74 69 6f 6e | g;.``description``.-.description |
| 158e20 | 20 66 6f 72 20 74 68 69 73 20 70 65 65 72 3b 00 60 60 64 68 2d 67 72 6f 75 70 60 60 20 64 68 2d | .for.this.peer;.``dh-group``.dh- |
| 158e40 | 67 72 6f 75 70 3b 00 60 60 64 68 63 70 2d 69 6e 74 65 72 66 61 63 65 60 60 20 2d 20 49 44 20 66 | group;.``dhcp-interface``.-.ID.f |
| 158e60 | 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 67 65 6e 65 72 61 74 65 64 20 66 72 6f 6d | or.authentication.generated.from |
| 158e80 | 20 44 48 43 50 20 61 64 64 72 65 73 73 20 64 79 6e 61 6d 69 63 61 6c 6c 79 3b 00 60 60 64 68 63 | .DHCP.address.dynamically;.``dhc |
| 158ea0 | 70 2d 69 6e 74 65 72 66 61 63 65 60 60 20 2d 20 75 73 65 20 61 6e 20 49 50 20 61 64 64 72 65 73 | p-interface``.-.use.an.IP.addres |
| 158ec0 | 73 2c 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 44 48 43 50 20 66 6f 72 20 49 50 53 65 63 20 | s,.received.from.DHCP.for.IPSec. |
| 158ee0 | 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 68 20 74 68 69 73 20 70 65 65 72 2c 20 69 6e 73 74 65 | connection.with.this.peer,.inste |
| 158f00 | 61 64 20 6f 66 20 60 60 6c 6f 63 61 6c 2d 61 64 64 72 65 73 73 60 60 3b 00 60 60 64 69 73 61 62 | ad.of.``local-address``;.``disab |
| 158f20 | 6c 65 2d 6d 6f 62 69 6b 65 60 60 20 64 69 73 61 62 6c 65 73 20 4d 4f 42 49 4b 45 20 53 75 70 70 | le-mobike``.disables.MOBIKE.Supp |
| 158f40 | 6f 72 74 2e 20 4d 4f 42 49 4b 45 20 69 73 20 6f 6e 6c 79 20 61 76 61 69 6c 61 62 6c 65 20 66 6f | ort..MOBIKE.is.only.available.fo |
| 158f60 | 72 20 49 4b 45 76 32 20 61 6e 64 20 65 6e 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 2e 00 | r.IKEv2.and.enabled.by.default.. |
| 158f80 | 60 60 64 69 73 61 62 6c 65 2d 72 65 6b 65 79 60 60 20 44 6f 20 6e 6f 74 20 6c 6f 63 61 6c 6c 79 | ``disable-rekey``.Do.not.locally |
| 158fa0 | 20 69 6e 69 74 69 61 74 65 20 61 20 72 65 2d 6b 65 79 20 6f 66 20 74 68 65 20 53 41 2c 20 72 65 | .initiate.a.re-key.of.the.SA,.re |
| 158fc0 | 6d 6f 74 65 20 70 65 65 72 20 6d 75 73 74 20 72 65 2d 6b 65 79 20 62 65 66 6f 72 65 20 65 78 70 | mote.peer.must.re-key.before.exp |
| 158fe0 | 69 72 61 74 69 6f 6e 2e 00 60 60 64 69 73 61 62 6c 65 2d 72 6f 75 74 65 2d 61 75 74 6f 69 6e 73 | iration..``disable-route-autoins |
| 159000 | 74 61 6c 6c 60 60 20 2d 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 77 68 65 6e 20 63 6f 6e 66 69 67 | tall``.-.This.option.when.config |
| 159020 | 75 72 65 64 20 64 69 73 61 62 6c 65 73 20 74 68 65 20 72 6f 75 74 65 73 20 69 6e 73 74 61 6c 6c | ured.disables.the.routes.install |
| 159040 | 65 64 20 69 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 74 61 62 6c 65 20 32 32 30 20 66 6f 72 20 | ed.in.the.default.table.220.for. |
| 159060 | 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 69 70 73 65 63 2e 20 49 74 20 69 73 20 6d 6f 73 74 6c 79 | site-to-site.ipsec..It.is.mostly |
| 159080 | 20 75 73 65 64 20 77 69 74 68 20 56 54 49 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 60 60 | .used.with.VTI.configuration..`` |
| 1590a0 | 64 69 73 61 62 6c 65 2d 72 6f 75 74 65 2d 61 75 74 6f 69 6e 73 74 61 6c 6c 60 60 20 44 6f 20 6e | disable-route-autoinstall``.Do.n |
| 1590c0 | 6f 74 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 69 6e 73 74 61 6c 6c 20 72 6f 75 74 65 73 20 | ot.automatically.install.routes. |
| 1590e0 | 74 6f 20 72 65 6d 6f 74 65 00 60 60 64 69 73 61 62 6c 65 2d 72 6f 75 74 65 2d 61 75 74 6f 69 6e | to.remote.``disable-route-autoin |
| 159100 | 73 74 61 6c 6c 60 60 20 44 6f 20 6e 6f 74 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 69 6e 73 | stall``.Do.not.automatically.ins |
| 159120 | 74 61 6c 6c 20 72 6f 75 74 65 73 20 74 6f 20 72 65 6d 6f 74 65 20 6e 65 74 77 6f 72 6b 73 3b 00 | tall.routes.to.remote.networks;. |
| 159140 | 60 60 64 69 73 61 62 6c 65 60 60 20 2d 20 64 69 73 61 62 6c 65 20 74 68 69 73 20 74 75 6e 6e 65 | ``disable``.-.disable.this.tunne |
| 159160 | 6c 3b 00 60 60 64 69 73 61 62 6c 65 60 60 20 44 69 73 61 62 6c 65 20 50 46 53 3b 00 60 60 64 69 | l;.``disable``.Disable.PFS;.``di |
| 159180 | 73 61 62 6c 65 60 60 20 64 69 73 61 62 6c 65 20 49 50 43 6f 6d 70 20 63 6f 6d 70 72 65 73 73 69 | sable``.disable.IPComp.compressi |
| 1591a0 | 6f 6e 20 28 64 65 66 61 75 6c 74 29 3b 00 60 60 64 69 73 61 62 6c 65 60 60 20 64 69 73 61 62 6c | on.(default);.``disable``.disabl |
| 1591c0 | 65 20 4d 4f 42 49 4b 45 3b 00 60 60 64 72 6f 70 60 60 3a 20 64 72 6f 70 20 74 68 65 20 70 61 63 | e.MOBIKE;.``drop``:.drop.the.pac |
| 1591e0 | 6b 65 74 2e 00 60 60 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 32 35 36 60 60 00 60 60 65 | ket..``ecdsa-sha2-nistp256``.``e |
| 159200 | 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 33 38 34 60 60 00 60 60 65 63 64 73 61 2d 73 68 61 | cdsa-sha2-nistp384``.``ecdsa-sha |
| 159220 | 32 2d 6e 69 73 74 70 35 32 31 60 60 00 60 60 65 64 70 60 60 20 2d 20 4c 69 73 74 65 6e 20 66 6f | 2-nistp521``.``edp``.-.Listen.fo |
| 159240 | 72 20 45 44 50 20 66 6f 72 20 45 78 74 72 65 6d 65 20 72 6f 75 74 65 72 73 2f 73 77 69 74 63 68 | r.EDP.for.Extreme.routers/switch |
| 159260 | 65 73 00 60 60 65 6e 61 62 6c 65 60 60 20 49 6e 68 65 72 69 74 20 44 69 66 66 69 65 2d 48 65 6c | es.``enable``.Inherit.Diffie-Hel |
| 159280 | 6c 6d 61 6e 20 67 72 6f 75 70 20 66 72 6f 6d 20 49 4b 45 20 67 72 6f 75 70 20 28 64 65 66 61 75 | lman.group.from.IKE.group.(defau |
| 1592a0 | 6c 74 29 3b 00 60 60 65 6e 61 62 6c 65 60 60 20 65 6e 61 62 6c 65 20 49 50 43 6f 6d 70 20 63 6f | lt);.``enable``.enable.IPComp.co |
| 1592c0 | 6d 70 72 65 73 73 69 6f 6e 3b 00 60 60 65 6e 61 62 6c 65 60 60 20 65 6e 61 62 6c 65 20 4d 4f 42 | mpression;.``enable``.enable.MOB |
| 1592e0 | 49 4b 45 20 28 64 65 66 61 75 6c 74 20 66 6f 72 20 49 4b 45 76 32 29 3b 00 60 60 65 6e 63 72 79 | IKE.(default.for.IKEv2);.``encry |
| 159300 | 70 74 69 6f 6e 60 60 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6c 67 6f 72 69 74 68 6d 20 28 64 65 | ption``.encryption.algorithm.(de |
| 159320 | 66 61 75 6c 74 20 31 32 38 20 62 69 74 20 41 45 53 2d 43 42 43 29 3b 00 60 60 65 6e 63 72 79 70 | fault.128.bit.AES-CBC);.``encryp |
| 159340 | 74 69 6f 6e 60 60 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6c 67 6f 72 69 74 68 6d 3b 00 60 60 65 | tion``.encryption.algorithm;.``e |
| 159360 | 6e 64 60 60 20 4d 61 74 63 68 65 73 20 74 68 65 20 65 6e 64 20 6f 66 20 74 68 65 20 55 52 4c 20 | nd``.Matches.the.end.of.the.URL. |
| 159380 | 70 61 74 68 2e 00 60 60 65 73 70 2d 67 72 6f 75 70 60 60 20 2d 20 64 65 66 69 6e 65 20 45 53 50 | path..``esp-group``.-.define.ESP |
| 1593a0 | 20 67 72 6f 75 70 20 66 6f 72 20 65 6e 63 72 79 70 74 20 74 72 61 66 66 69 63 2c 20 64 65 66 69 | .group.for.encrypt.traffic,.defi |
| 1593c0 | 6e 65 64 20 62 79 20 74 68 69 73 20 74 75 6e 6e 65 6c 3b 00 60 60 65 73 70 2d 67 72 6f 75 70 60 | ned.by.this.tunnel;.``esp-group` |
| 1593e0 | 60 20 2d 20 64 65 66 69 6e 65 20 45 53 50 20 67 72 6f 75 70 20 66 6f 72 20 65 6e 63 72 79 70 74 | `.-.define.ESP.group.for.encrypt |
| 159400 | 20 74 72 61 66 66 69 63 2c 20 70 61 73 73 65 64 20 74 68 69 73 20 56 54 49 20 69 6e 74 65 72 66 | .traffic,.passed.this.VTI.interf |
| 159420 | 61 63 65 2e 00 60 60 65 78 61 63 74 60 60 20 52 65 71 75 69 72 65 73 20 61 6e 20 65 78 61 63 74 | ace..``exact``.Requires.an.exact |
| 159440 | 6c 79 20 6d 61 74 63 68 20 6f 66 20 74 68 65 20 55 52 4c 20 70 61 74 68 00 60 60 66 64 70 60 60 | ly.match.of.the.URL.path.``fdp`` |
| 159460 | 20 2d 20 4c 69 73 74 65 6e 20 66 6f 72 20 46 44 50 20 66 6f 72 20 46 6f 75 6e 64 72 79 20 72 6f | .-.Listen.for.FDP.for.Foundry.ro |
| 159480 | 75 74 65 72 73 2f 73 77 69 74 63 68 65 73 00 60 60 66 69 6c 65 60 60 20 2d 20 70 61 74 68 20 74 | uters/switches.``file``.-.path.t |
| 1594a0 | 6f 20 74 68 65 20 6b 65 79 20 66 69 6c 65 3b 00 60 60 66 69 6c 65 6e 61 6d 65 60 60 20 20 4c 6f | o.the.key.file;.``filename``..Lo |
| 1594c0 | 67 20 66 69 6c 65 20 28 64 65 66 61 75 6c 74 3a 20 65 76 65 2e 6a 73 6f 6e 29 2e 00 60 60 66 69 | g.file.(default:.eve.json)..``fi |
| 1594e0 | 6c 65 74 79 70 65 60 60 20 20 45 56 45 20 6c 6f 67 67 69 6e 67 20 64 65 73 74 69 6e 61 74 69 6f | letype``..EVE.logging.destinatio |
| 159500 | 6e 20 28 64 65 66 61 75 6c 74 3a 20 72 65 67 75 6c 61 72 29 2e 00 60 60 66 6c 65 78 76 70 6e 60 | n.(default:.regular)..``flexvpn` |
| 159520 | 60 20 41 6c 6c 6f 77 20 46 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 70 61 79 6c 6f 61 | `.Allow.FlexVPN.vendor.ID.payloa |
| 159540 | 64 20 28 49 4b 45 76 32 20 6f 6e 6c 79 29 2e 20 53 65 6e 64 20 74 68 65 20 43 69 73 63 6f 20 46 | d.(IKEv2.only)..Send.the.Cisco.F |
| 159560 | 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 70 61 79 6c 6f 61 64 20 28 49 4b 45 76 32 20 | lexVPN.vendor.ID.payload.(IKEv2. |
| 159580 | 6f 6e 6c 79 29 2c 20 77 68 69 63 68 20 69 73 20 72 65 71 75 69 72 65 64 20 69 6e 20 6f 72 64 65 | only),.which.is.required.in.orde |
| 1595a0 | 72 20 74 6f 20 6d 61 6b 65 20 43 69 73 63 6f 20 62 72 61 6e 64 20 64 65 76 69 63 65 73 20 61 6c | r.to.make.Cisco.brand.devices.al |
| 1595c0 | 6c 6f 77 20 6e 65 67 6f 74 69 61 74 69 6e 67 20 61 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 63 20 | low.negotiating.a.local.traffic. |
| 1595e0 | 73 65 6c 65 63 74 6f 72 20 28 66 72 6f 6d 20 73 74 72 6f 6e 67 53 77 61 6e 27 73 20 70 6f 69 6e | selector.(from.strongSwan's.poin |
| 159600 | 74 20 6f 66 20 76 69 65 77 29 20 74 68 61 74 20 69 73 20 6e 6f 74 20 74 68 65 20 61 73 73 69 67 | t.of.view).that.is.not.the.assig |
| 159620 | 6e 65 64 20 76 69 72 74 75 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 69 66 20 73 75 63 68 20 61 | ned.virtual.IP.address.if.such.a |
| 159640 | 6e 20 61 64 64 72 65 73 73 20 69 73 20 72 65 71 75 65 73 74 65 64 20 62 79 20 73 74 72 6f 6e 67 | n.address.is.requested.by.strong |
| 159660 | 53 77 61 6e 2e 20 53 65 6e 64 69 6e 67 20 74 68 65 20 43 69 73 63 6f 20 46 6c 65 78 56 50 4e 20 | Swan..Sending.the.Cisco.FlexVPN. |
| 159680 | 76 65 6e 64 6f 72 20 49 44 20 70 72 65 76 65 6e 74 73 20 74 68 65 20 70 65 65 72 20 66 72 6f 6d | vendor.ID.prevents.the.peer.from |
| 1596a0 | 20 6e 61 72 72 6f 77 69 6e 67 20 74 68 65 20 69 6e 69 74 69 61 74 6f 72 27 73 20 6c 6f 63 61 6c | .narrowing.the.initiator's.local |
| 1596c0 | 20 74 72 61 66 66 69 63 20 73 65 6c 65 63 74 6f 72 20 61 6e 64 20 61 6c 6c 6f 77 73 20 69 74 20 | .traffic.selector.and.allows.it. |
| 1596e0 | 74 6f 20 65 2e 67 2e 20 6e 65 67 6f 74 69 61 74 65 20 61 20 54 53 20 6f 66 20 30 2e 30 2e 30 2e | to.e.g..negotiate.a.TS.of.0.0.0. |
| 159700 | 30 2f 30 20 3d 3d 20 30 2e 30 2e 30 2e 30 2f 30 20 69 6e 73 74 65 61 64 2e 20 54 68 69 73 20 68 | 0/0.==.0.0.0.0/0.instead..This.h |
| 159720 | 61 73 20 62 65 65 6e 20 74 65 73 74 65 64 20 77 69 74 68 20 61 20 22 74 75 6e 6e 65 6c 20 6d 6f | as.been.tested.with.a."tunnel.mo |
| 159740 | 64 65 20 69 70 73 65 63 20 69 70 76 34 22 20 43 69 73 63 6f 20 74 65 6d 70 6c 61 74 65 20 62 75 | de.ipsec.ipv4".Cisco.template.bu |
| 159760 | 74 20 73 68 6f 75 6c 64 20 61 6c 73 6f 20 77 6f 72 6b 20 66 6f 72 20 47 52 45 20 65 6e 63 61 70 | t.should.also.work.for.GRE.encap |
| 159780 | 73 75 6c 61 74 69 6f 6e 3b 00 60 60 66 6c 65 78 76 70 6e 60 60 20 41 6c 6c 6f 77 73 20 46 6c 65 | sulation;.``flexvpn``.Allows.Fle |
| 1597a0 | 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 70 61 79 6c 6f 61 64 20 28 49 4b 45 76 32 20 6f 6e | xVPN.vendor.ID.payload.(IKEv2.on |
| 1597c0 | 6c 79 29 2e 20 53 65 6e 64 20 74 68 65 20 43 69 73 63 6f 00 60 60 66 6c 65 78 76 70 6e 60 60 20 | ly)..Send.the.Cisco.``flexvpn``. |
| 1597e0 | 41 6c 6c 6f 77 73 20 46 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 70 61 79 6c 6f 61 64 | Allows.FlexVPN.vendor.ID.payload |
| 159800 | 20 28 49 4b 45 76 32 20 6f 6e 6c 79 29 2e 20 53 65 6e 64 20 74 68 65 20 43 69 73 63 6f 20 46 6c | .(IKEv2.only)..Send.the.Cisco.Fl |
| 159820 | 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 70 61 79 6c 6f 61 64 20 28 49 4b 45 76 32 20 6f | exVPN.vendor.ID.payload.(IKEv2.o |
| 159840 | 6e 6c 79 29 2c 20 77 68 69 63 68 20 69 73 20 72 65 71 75 69 72 65 64 20 69 6e 20 6f 72 64 65 72 | nly),.which.is.required.in.order |
| 159860 | 20 74 6f 20 6d 61 6b 65 20 43 69 73 63 6f 20 62 72 61 6e 64 20 64 65 76 69 63 65 73 20 61 6c 6c | .to.make.Cisco.brand.devices.all |
| 159880 | 6f 77 20 6e 65 67 6f 74 69 61 74 69 6e 67 20 61 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 63 20 73 | ow.negotiating.a.local.traffic.s |
| 1598a0 | 65 6c 65 63 74 6f 72 20 28 66 72 6f 6d 20 73 74 72 6f 6e 67 53 77 61 6e 27 73 20 70 6f 69 6e 74 | elector.(from.strongSwan's.point |
| 1598c0 | 20 6f 66 20 76 69 65 77 29 20 74 68 61 74 20 69 73 20 6e 6f 74 20 74 68 65 20 61 73 73 69 67 6e | .of.view).that.is.not.the.assign |
| 1598e0 | 65 64 20 76 69 72 74 75 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 69 66 20 73 75 63 68 20 61 6e | ed.virtual.IP.address.if.such.an |
| 159900 | 20 61 64 64 72 65 73 73 20 69 73 20 72 65 71 75 65 73 74 65 64 20 62 79 20 73 74 72 6f 6e 67 53 | .address.is.requested.by.strongS |
| 159920 | 77 61 6e 2e 20 53 65 6e 64 69 6e 67 20 74 68 65 20 43 69 73 63 6f 20 46 6c 65 78 56 50 4e 20 76 | wan..Sending.the.Cisco.FlexVPN.v |
| 159940 | 65 6e 64 6f 72 20 49 44 20 70 72 65 76 65 6e 74 73 20 74 68 65 20 70 65 65 72 20 66 72 6f 6d 20 | endor.ID.prevents.the.peer.from. |
| 159960 | 6e 61 72 72 6f 77 69 6e 67 20 74 68 65 20 69 6e 69 74 69 61 74 6f 72 27 73 20 6c 6f 63 61 6c 20 | narrowing.the.initiator's.local. |
| 159980 | 74 72 61 66 66 69 63 20 73 65 6c 65 63 74 6f 72 20 61 6e 64 20 61 6c 6c 6f 77 73 20 69 74 20 74 | traffic.selector.and.allows.it.t |
| 1599a0 | 6f 20 65 2e 67 2e 20 6e 65 67 6f 74 69 61 74 65 20 61 20 54 53 20 6f 66 20 30 2e 30 2e 30 2e 30 | o.e.g..negotiate.a.TS.of.0.0.0.0 |
| 1599c0 | 2f 30 20 3d 3d 20 30 2e 30 2e 30 2e 30 2f 30 20 69 6e 73 74 65 61 64 2e 20 54 68 69 73 20 68 61 | /0.==.0.0.0.0/0.instead..This.ha |
| 1599e0 | 73 20 62 65 65 6e 20 74 65 73 74 65 64 20 77 69 74 68 20 61 20 22 74 75 6e 6e 65 6c 20 6d 6f 64 | s.been.tested.with.a."tunnel.mod |
| 159a00 | 65 20 69 70 73 65 63 20 69 70 76 34 22 20 43 69 73 63 6f 20 74 65 6d 70 6c 61 74 65 20 62 75 74 | e.ipsec.ipv4".Cisco.template.but |
| 159a20 | 20 73 68 6f 75 6c 64 20 61 6c 73 6f 20 77 6f 72 6b 20 66 6f 72 20 47 52 45 20 65 6e 63 61 70 73 | .should.also.work.for.GRE.encaps |
| 159a40 | 75 6c 61 74 69 6f 6e 3b 00 60 60 66 6f 72 63 65 2d 75 64 70 2d 65 6e 63 61 70 73 75 6c 61 74 69 | ulation;.``force-udp-encapsulati |
| 159a60 | 6f 6e 60 60 20 2d 20 66 6f 72 63 65 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 6f 66 20 45 53 | on``.-.force.encapsulation.of.ES |
| 159a80 | 50 20 69 6e 74 6f 20 55 44 50 20 64 61 74 61 67 72 61 6d 73 2e 20 55 73 65 66 75 6c 20 69 6e 20 | P.into.UDP.datagrams..Useful.in. |
| 159aa0 | 63 61 73 65 20 69 66 20 62 65 74 77 65 65 6e 20 6c 6f 63 61 6c 20 61 6e 64 20 72 65 6d 6f 74 65 | case.if.between.local.and.remote |
| 159ac0 | 20 73 69 64 65 20 69 73 20 66 69 72 65 77 61 6c 6c 20 6f 72 20 4e 41 54 2c 20 77 68 69 63 68 20 | .side.is.firewall.or.NAT,.which. |
| 159ae0 | 6e 6f 74 20 61 6c 6c 6f 77 73 20 70 61 73 73 69 6e 67 20 70 6c 61 69 6e 20 45 53 50 20 70 61 63 | not.allows.passing.plain.ESP.pac |
| 159b00 | 6b 65 74 73 20 62 65 74 77 65 65 6e 20 74 68 65 6d 3b 00 60 60 67 60 60 20 2d 20 38 30 32 2e 31 | kets.between.them;.``g``.-.802.1 |
| 159b20 | 31 67 20 2d 20 35 34 20 4d 62 69 74 73 2f 73 65 63 20 28 64 65 66 61 75 6c 74 29 00 60 60 67 72 | 1g.-.54.Mbits/sec.(default).``gr |
| 159b40 | 61 63 65 66 75 6c 2d 73 68 75 74 64 6f 77 6e 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 57 | aceful-shutdown``.-............W |
| 159b60 | 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 47 52 41 43 | ell-known.communities.value.GRAC |
| 159b80 | 45 46 55 4c 5f 53 48 55 54 44 4f 57 4e 20 30 78 46 46 46 46 30 30 30 30 00 60 60 67 72 6f 75 70 | EFUL_SHUTDOWN.0xFFFF0000.``group |
| 159ba0 | 60 60 20 20 41 64 64 72 65 73 73 20 67 72 6f 75 70 2e 00 60 60 67 72 6f 75 70 60 60 20 20 50 6f | ``..Address.group..``group``..Po |
| 159bc0 | 72 74 20 67 72 6f 75 70 2e 00 60 60 67 75 69 64 65 64 60 60 20 54 68 65 20 64 72 69 76 65 72 20 | rt.group..``guided``.The.driver. |
| 159be0 | 61 6c 6c 6f 77 73 20 74 6f 20 73 65 74 20 64 65 73 69 72 65 64 20 70 65 72 66 6f 72 6d 61 6e 63 | allows.to.set.desired.performanc |
| 159c00 | 65 20 6c 65 76 65 6c 73 20 61 6e 64 20 74 68 65 20 66 69 72 6d 77 61 72 65 20 73 65 6c 65 63 74 | e.levels.and.the.firmware.select |
| 159c20 | 73 20 61 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 6c 65 76 65 6c 20 69 6e 20 74 68 69 73 20 72 61 | s.a.performance.level.in.this.ra |
| 159c40 | 6e 67 65 20 61 6e 64 20 66 69 74 74 69 6e 67 20 74 6f 20 74 68 65 20 63 75 72 72 65 6e 74 20 77 | nge.and.fitting.to.the.current.w |
| 159c60 | 6f 72 6b 6c 6f 61 64 2e 00 60 60 68 60 60 20 2d 20 45 78 65 63 75 74 69 6f 6e 20 69 6e 74 65 72 | orkload..``h``.-.Execution.inter |
| 159c80 | 76 61 6c 20 69 6e 20 68 6f 75 72 73 00 60 60 68 61 73 68 60 60 20 68 61 73 68 20 61 6c 67 6f 72 | val.in.hours.``hash``.hash.algor |
| 159ca0 | 69 74 68 6d 20 28 64 65 66 61 75 6c 74 20 73 68 61 31 29 2e 00 60 60 68 61 73 68 60 60 20 68 61 | ithm.(default.sha1)..``hash``.ha |
| 159cc0 | 73 68 20 61 6c 67 6f 72 69 74 68 6d 2e 00 60 60 68 6f 6c 64 60 60 20 73 65 74 20 61 63 74 69 6f | sh.algorithm..``hold``.set.actio |
| 159ce0 | 6e 20 74 6f 20 68 6f 6c 64 20 28 64 65 66 61 75 6c 74 29 00 60 60 68 6f 6c 64 60 60 20 73 65 74 | n.to.hold.(default).``hold``.set |
| 159d00 | 20 61 63 74 69 6f 6e 20 74 6f 20 68 6f 6c 64 3b 00 60 60 68 74 32 30 60 60 20 2d 20 32 30 20 4d | .action.to.hold;.``ht20``.-.20.M |
| 159d20 | 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 00 60 60 68 74 34 30 2b 60 60 20 2d 20 42 6f 74 | Hz.channel.width.``ht40+``.-.Bot |
| 159d40 | 68 20 32 30 20 4d 48 7a 20 61 6e 64 20 34 30 20 4d 48 7a 20 77 69 74 68 20 73 65 63 6f 6e 64 61 | h.20.MHz.and.40.MHz.with.seconda |
| 159d60 | 72 79 20 63 68 61 6e 6e 65 6c 20 61 62 6f 76 65 20 74 68 65 20 70 72 69 6d 61 72 79 20 63 68 61 | ry.channel.above.the.primary.cha |
| 159d80 | 6e 6e 65 6c 00 60 60 68 74 34 30 2d 60 60 20 2d 20 42 6f 74 68 20 32 30 20 4d 48 7a 20 61 6e 64 | nnel.``ht40-``.-.Both.20.MHz.and |
| 159da0 | 20 34 30 20 4d 48 7a 20 77 69 74 68 20 73 65 63 6f 6e 64 61 72 79 20 63 68 61 6e 6e 65 6c 20 62 | .40.MHz.with.secondary.channel.b |
| 159dc0 | 65 6c 6f 77 20 74 68 65 20 70 72 69 6d 61 72 79 20 63 68 61 6e 6e 65 6c 00 60 60 68 76 63 30 60 | elow.the.primary.channel.``hvc0` |
| 159de0 | 60 20 2d 20 58 65 6e 20 63 6f 6e 73 6f 6c 65 00 60 60 69 64 60 60 20 2d 20 73 74 61 74 69 63 20 | `.-.Xen.console.``id``.-.static. |
| 159e00 | 49 44 27 73 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 20 49 6e 20 67 65 6e 65 | ID's.for.authentication..In.gene |
| 159e20 | 72 61 6c 20 6c 6f 63 61 6c 20 61 6e 64 20 72 65 6d 6f 74 65 20 61 64 64 72 65 73 73 20 60 60 3c | ral.local.and.remote.address.``< |
| 159e40 | 78 2e 78 2e 78 2e 78 3e 60 60 2c 20 60 60 3c 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3e 60 | x.x.x.x>``,.``<h:h:h:h:h:h:h:h>` |
| 159e60 | 60 20 6f 72 20 60 60 25 61 6e 79 60 60 3b 00 60 60 69 6b 65 2d 67 72 6f 75 70 60 60 20 2d 20 49 | `.or.``%any``;.``ike-group``.-.I |
| 159e80 | 4b 45 20 67 72 6f 75 70 20 74 6f 20 75 73 65 20 66 6f 72 20 6b 65 79 20 65 78 63 68 61 6e 67 65 | KE.group.to.use.for.key.exchange |
| 159ea0 | 73 3b 00 60 60 69 6b 65 76 31 60 60 20 75 73 65 20 49 4b 45 76 31 20 66 6f 72 20 4b 65 79 20 45 | s;.``ikev1``.use.IKEv1.for.Key.E |
| 159ec0 | 78 63 68 61 6e 67 65 3b 00 60 60 69 6b 65 76 32 2d 72 65 61 75 74 68 60 60 20 2d 20 72 65 61 75 | xchange;.``ikev2-reauth``.-.reau |
| 159ee0 | 74 68 65 6e 74 69 63 61 74 65 20 72 65 6d 6f 74 65 20 70 65 65 72 20 64 75 72 69 6e 67 20 74 68 | thenticate.remote.peer.during.th |
| 159f00 | 65 20 72 65 6b 65 79 69 6e 67 20 70 72 6f 63 65 73 73 2e 20 43 61 6e 20 62 65 20 75 73 65 64 20 | e.rekeying.process..Can.be.used. |
| 159f20 | 6f 6e 6c 79 20 77 69 74 68 20 49 4b 45 76 32 2e 20 43 72 65 61 74 65 20 61 20 6e 65 77 20 49 4b | only.with.IKEv2..Create.a.new.IK |
| 159f40 | 45 5f 53 41 20 66 72 6f 6d 20 74 68 65 20 73 63 72 61 74 63 68 20 61 6e 64 20 74 72 79 20 74 6f | E_SA.from.the.scratch.and.try.to |
| 159f60 | 20 72 65 63 72 65 61 74 65 20 61 6c 6c 20 49 50 73 65 63 20 53 41 73 3b 00 60 60 69 6b 65 76 32 | .recreate.all.IPsec.SAs;.``ikev2 |
| 159f80 | 2d 72 65 61 75 74 68 60 60 20 77 68 65 74 68 65 72 20 72 65 6b 65 79 69 6e 67 20 6f 66 20 61 6e | -reauth``.whether.rekeying.of.an |
| 159fa0 | 20 49 4b 45 5f 53 41 20 73 68 6f 75 6c 64 20 61 6c 73 6f 20 72 65 61 75 74 68 65 6e 74 69 63 61 | .IKE_SA.should.also.reauthentica |
| 159fc0 | 74 65 20 74 68 65 20 70 65 65 72 2e 20 49 6e 20 49 4b 45 76 31 2c 20 72 65 61 75 74 68 65 6e 74 | te.the.peer..In.IKEv1,.reauthent |
| 159fe0 | 69 63 61 74 69 6f 6e 20 69 73 20 61 6c 77 61 79 73 20 64 6f 6e 65 2e 20 53 65 74 74 69 6e 67 20 | ication.is.always.done..Setting. |
| 15a000 | 74 68 69 73 20 70 61 72 61 6d 65 74 65 72 20 65 6e 61 62 6c 65 73 20 72 65 6d 6f 74 65 20 68 6f | this.parameter.enables.remote.ho |
| 15a020 | 73 74 20 72 65 2d 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 64 75 72 69 6e 67 20 61 6e 20 49 | st.re-authentication.during.an.I |
| 15a040 | 4b 45 20 72 65 6b 65 79 2e 00 60 60 69 6b 65 76 32 2d 72 65 61 75 74 68 60 60 20 77 68 65 74 68 | KE.rekey..``ikev2-reauth``.wheth |
| 15a060 | 65 72 20 72 65 6b 65 79 69 6e 67 20 6f 66 20 61 6e 20 49 4b 45 5f 53 41 20 73 68 6f 75 6c 64 20 | er.rekeying.of.an.IKE_SA.should. |
| 15a080 | 61 6c 73 6f 20 72 65 61 75 74 68 65 6e 74 69 63 61 74 65 20 74 68 65 20 70 65 65 72 2e 20 49 6e | also.reauthenticate.the.peer..In |
| 15a0a0 | 20 49 4b 45 76 31 2c 20 72 65 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 69 73 20 61 6c 77 61 | .IKEv1,.reauthentication.is.alwa |
| 15a0c0 | 79 73 20 64 6f 6e 65 3a 00 60 60 69 6b 65 76 32 60 60 20 75 73 65 20 49 4b 45 76 32 20 66 6f 72 | ys.done:.``ikev2``.use.IKEv2.for |
| 15a0e0 | 20 4b 65 79 20 45 78 63 68 61 6e 67 65 3b 00 60 60 69 6e 60 60 3a 20 52 75 6c 65 73 65 74 20 66 | .Key.Exchange;.``in``:.Ruleset.f |
| 15a100 | 6f 72 20 66 6f 72 77 61 72 64 65 64 20 70 61 63 6b 65 74 73 20 6f 6e 20 61 6e 20 69 6e 62 6f 75 | or.forwarded.packets.on.an.inbou |
| 15a120 | 6e 64 20 69 6e 74 65 72 66 61 63 65 00 60 60 69 6e 69 74 63 61 6c 6c 5f 62 6c 61 63 6b 6c 69 73 | nd.interface.``initcall_blacklis |
| 15a140 | 74 3d 61 63 70 69 5f 63 70 75 66 72 65 71 5f 69 6e 69 74 60 60 20 44 69 73 61 62 6c 65 20 64 65 | t=acpi_cpufreq_init``.Disable.de |
| 15a160 | 66 61 75 6c 74 20 41 43 50 49 20 43 50 55 20 66 72 65 71 75 65 6e 63 79 20 73 63 61 6c 65 00 60 | fault.ACPI.CPU.frequency.scale.` |
| 15a180 | 60 69 6e 69 74 69 61 74 65 60 60 20 2d 20 64 6f 65 73 20 69 6e 69 74 69 61 6c 20 63 6f 6e 6e 65 | `initiate``.-.does.initial.conne |
| 15a1a0 | 63 74 69 6f 6e 20 74 6f 20 72 65 6d 6f 74 65 20 70 65 65 72 20 69 6d 6d 65 64 69 61 74 65 6c 79 | ction.to.remote.peer.immediately |
| 15a1c0 | 20 61 66 74 65 72 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 6e 64 20 61 66 74 65 72 20 62 6f 6f | .after.configuring.and.after.boo |
| 15a1e0 | 74 2e 20 49 6e 20 74 68 69 73 20 6d 6f 64 65 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 | t..In.this.mode.the.connection.w |
| 15a200 | 69 6c 6c 20 6e 6f 74 20 62 65 20 72 65 73 74 61 72 74 65 64 20 69 6e 20 63 61 73 65 20 6f 66 20 | ill.not.be.restarted.in.case.of. |
| 15a220 | 64 69 73 63 6f 6e 6e 65 63 74 69 6f 6e 2c 20 74 68 65 72 65 66 6f 72 65 20 73 68 6f 75 6c 64 20 | disconnection,.therefore.should. |
| 15a240 | 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 74 6f 67 65 74 68 65 72 20 77 69 74 68 20 44 50 44 20 6f | be.used.only.together.with.DPD.o |
| 15a260 | 72 20 61 6e 6f 74 68 65 72 20 73 65 73 73 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 6d 65 74 68 6f | r.another.session.tracking.metho |
| 15a280 | 64 73 3b 00 60 60 69 6e 74 65 6c 5f 69 64 6c 65 2e 6d 61 78 5f 63 73 74 61 74 65 3d 30 60 60 20 | ds;.``intel_idle.max_cstate=0``. |
| 15a2a0 | 44 69 73 61 62 6c 65 20 69 6e 74 65 6c 5f 69 64 6c 65 20 61 6e 64 20 66 61 6c 6c 20 62 61 63 6b | Disable.intel_idle.and.fall.back |
| 15a2c0 | 20 6f 6e 20 61 63 70 69 5f 69 64 6c 65 00 60 60 69 6e 74 65 72 66 61 63 65 60 60 20 49 6e 74 65 | .on.acpi_idle.``interface``.Inte |
| 15a2e0 | 72 66 61 63 65 20 4e 61 6d 65 20 74 6f 20 75 73 65 2e 20 54 68 65 20 6e 61 6d 65 20 6f 66 20 74 | rface.Name.to.use..The.name.of.t |
| 15a300 | 68 65 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 77 68 69 63 68 00 60 60 69 6e 74 65 72 66 61 63 | he.interface.on.which.``interfac |
| 15a320 | 65 60 60 20 49 6e 74 65 72 66 61 63 65 20 4e 61 6d 65 20 74 6f 20 75 73 65 2e 20 54 68 65 20 6e | e``.Interface.Name.to.use..The.n |
| 15a340 | 61 6d 65 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 77 68 69 63 68 20 76 69 | ame.of.the.interface.on.which.vi |
| 15a360 | 72 74 75 61 6c 20 49 50 20 61 64 64 72 65 73 73 65 73 20 73 68 6f 75 6c 64 20 62 65 20 69 6e 73 | rtual.IP.addresses.should.be.ins |
| 15a380 | 74 61 6c 6c 65 64 2e 20 49 66 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 20 74 68 65 20 61 64 64 | talled..If.not.specified.the.add |
| 15a3a0 | 72 65 73 73 65 73 20 77 69 6c 6c 20 62 65 20 69 6e 73 74 61 6c 6c 65 64 20 6f 6e 20 74 68 65 20 | resses.will.be.installed.on.the. |
| 15a3c0 | 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 3b 00 60 60 69 6e 74 65 72 66 61 63 65 60 | outbound.interface;.``interface` |
| 15a3e0 | 60 20 69 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 56 79 4f 53 20 43 4c 49 20 63 6f 6d 6d 61 | `.is.used.for.the.VyOS.CLI.comma |
| 15a400 | 6e 64 20 74 6f 20 69 64 65 6e 74 69 66 79 20 74 68 65 20 57 69 72 65 47 75 61 72 64 20 69 6e 74 | nd.to.identify.the.WireGuard.int |
| 15a420 | 65 72 66 61 63 65 20 77 68 65 72 65 20 74 68 69 73 20 70 72 69 76 61 74 65 20 6b 65 79 20 69 73 | erface.where.this.private.key.is |
| 15a440 | 20 74 6f 20 62 65 20 75 73 65 64 2e 00 60 60 69 6e 74 65 72 6c 65 61 76 65 60 60 20 65 6e 61 62 | .to.be.used..``interleave``.enab |
| 15a460 | 6c 65 73 20 4e 54 50 20 69 6e 74 65 72 6c 65 61 76 65 64 20 6d 6f 64 65 20 28 73 65 65 20 60 64 | les.NTP.interleaved.mode.(see.`d |
| 15a480 | 72 61 66 74 2d 6e 74 70 2d 69 6e 74 65 72 6c 65 61 76 65 64 2d 6d 6f 64 65 73 60 5f 29 2c 20 77 | raft-ntp-interleaved-modes`_),.w |
| 15a4a0 | 68 69 63 68 20 63 61 6e 20 69 6d 70 72 6f 76 65 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e | hich.can.improve.synchronization |
| 15a4c0 | 20 61 63 63 75 72 61 63 79 20 61 6e 64 20 73 74 61 62 69 6c 69 74 79 20 77 68 65 6e 20 73 75 70 | .accuracy.and.stability.when.sup |
| 15a4e0 | 70 6f 72 74 65 64 20 62 79 20 62 6f 74 68 20 70 61 72 74 69 65 73 2e 00 60 60 69 6e 74 65 72 6e | ported.by.both.parties..``intern |
| 15a500 | 65 74 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d | et``.-.....................Well- |
| 15a520 | 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 30 00 60 60 69 6e 74 65 | known.communities.value.0.``inte |
| 15a540 | 72 76 61 6c 60 60 20 6b 65 65 70 2d 61 6c 69 76 65 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 | rval``.keep-alive.interval.in.se |
| 15a560 | 63 6f 6e 64 73 20 3c 32 2d 38 36 34 30 30 3e 20 28 64 65 66 61 75 6c 74 20 33 30 29 3b 00 60 60 | conds.<2-86400>.(default.30);.`` |
| 15a580 | 69 73 69 73 60 60 20 2d 20 49 6e 74 65 72 6d 65 64 69 61 74 65 20 53 79 73 74 65 6d 20 74 6f 20 | isis``.-.Intermediate.System.to. |
| 15a5a0 | 49 6e 74 65 72 6d 65 64 69 61 74 65 20 53 79 73 74 65 6d 20 28 49 53 2d 49 53 29 00 60 60 6a 75 | Intermediate.System.(IS-IS).``ju |
| 15a5c0 | 6d 70 60 60 3a 20 6a 75 6d 70 20 74 6f 20 61 6e 6f 74 68 65 72 20 63 75 73 74 6f 6d 20 63 68 61 | mp``:.jump.to.another.custom.cha |
| 15a5e0 | 69 6e 2e 00 60 60 6b 65 72 6e 65 6c 60 60 20 2d 20 4b 65 72 6e 65 6c 20 72 6f 75 74 65 73 00 60 | in..``kernel``.-.Kernel.routes.` |
| 15a600 | 60 6b 65 79 2d 65 78 63 68 61 6e 67 65 60 60 20 77 68 69 63 68 20 70 72 6f 74 6f 63 6f 6c 20 73 | `key-exchange``.which.protocol.s |
| 15a620 | 68 6f 75 6c 64 20 62 65 20 75 73 65 64 20 74 6f 20 69 6e 69 74 69 61 6c 69 7a 65 20 74 68 65 20 | hould.be.used.to.initialize.the. |
| 15a640 | 63 6f 6e 6e 65 63 74 69 6f 6e 20 49 66 20 6e 6f 74 20 73 65 74 20 62 6f 74 68 20 70 72 6f 74 6f | connection.If.not.set.both.proto |
| 15a660 | 63 6f 6c 73 20 61 72 65 20 68 61 6e 64 6c 65 64 20 61 6e 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 | cols.are.handled.and.connections |
| 15a680 | 20 77 69 6c 6c 20 75 73 65 20 49 4b 45 76 32 20 77 68 65 6e 20 69 6e 69 74 69 61 74 69 6e 67 2c | .will.use.IKEv2.when.initiating, |
| 15a6a0 | 20 62 75 74 20 61 63 63 65 70 74 20 61 6e 79 20 70 72 6f 74 6f 63 6f 6c 20 76 65 72 73 69 6f 6e | .but.accept.any.protocol.version |
| 15a6c0 | 20 77 68 65 6e 20 72 65 73 70 6f 6e 64 69 6e 67 3a 00 60 60 6b 65 79 60 60 20 2d 20 61 20 70 72 | .when.responding:.``key``.-.a.pr |
| 15a6e0 | 69 76 61 74 65 20 6b 65 79 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 66 6f | ivate.key,.which.will.be.used.fo |
| 15a700 | 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 6f 6e | r.authenticating.local.router.on |
| 15a720 | 20 72 65 6d 6f 74 65 20 70 65 65 72 3a 00 60 60 6b 65 79 60 60 20 75 73 65 20 41 50 49 20 6b 65 | .remote.peer:.``key``.use.API.ke |
| 15a740 | 79 73 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 60 60 73 65 72 76 69 63 65 20 68 74 74 70 73 | ys.configured.in.``service.https |
| 15a760 | 20 61 70 69 20 6b 65 79 73 60 60 00 60 60 6c 61 74 65 6e 63 79 60 60 3a 20 41 20 73 65 72 76 65 | .api.keys``.``latency``:.A.serve |
| 15a780 | 72 20 70 72 6f 66 69 6c 65 20 66 6f 63 75 73 65 64 20 6f 6e 20 6c 6f 77 65 72 69 6e 67 20 6e 65 | r.profile.focused.on.lowering.ne |
| 15a7a0 | 74 77 6f 72 6b 20 6c 61 74 65 6e 63 79 2e 20 54 68 69 73 20 70 72 6f 66 69 6c 65 20 66 61 76 6f | twork.latency..This.profile.favo |
| 15a7c0 | 72 73 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 6f 76 65 72 20 70 6f 77 65 72 20 73 61 76 69 6e 67 | rs.performance.over.power.saving |
| 15a7e0 | 73 20 62 79 20 73 65 74 74 69 6e 67 20 60 60 69 6e 74 65 6c 5f 70 73 74 61 74 65 60 60 20 61 6e | s.by.setting.``intel_pstate``.an |
| 15a800 | 64 20 60 60 6d 69 6e 5f 70 65 72 66 5f 70 63 74 3d 31 30 30 60 60 2e 00 60 60 6c 64 61 70 60 60 | d.``min_perf_pct=100``..``ldap`` |
| 15a820 | 20 4c 44 41 50 20 70 72 6f 74 6f 63 6f 6c 20 63 68 65 63 6b 2e 00 60 60 6c 65 61 73 74 2d 63 6f | .LDAP.protocol.check..``least-co |
| 15a840 | 6e 6e 65 63 74 69 6f 6e 60 60 20 44 69 73 74 72 69 62 75 74 65 73 20 72 65 71 75 65 73 74 73 20 | nnection``.Distributes.requests. |
| 15a860 | 74 6f 20 74 68 65 20 73 65 72 76 65 72 20 77 69 74 68 20 74 68 65 20 66 65 77 65 73 74 20 61 63 | to.the.server.with.the.fewest.ac |
| 15a880 | 74 69 76 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 00 60 60 6c 65 61 73 74 2d 63 6f 6e 6e 65 63 74 | tive.connections.``least-connect |
| 15a8a0 | 69 6f 6e 60 60 20 44 69 73 74 72 69 62 75 74 65 73 20 72 65 71 75 65 73 74 73 20 74 70 20 74 6a | ion``.Distributes.requests.tp.tj |
| 15a8c0 | 65 20 73 65 72 76 65 72 20 77 6f 74 6a 20 74 68 65 20 66 65 77 65 73 74 20 61 63 74 69 76 65 20 | e.server.wotj.the.fewest.active. |
| 15a8e0 | 63 6f 6e 6e 65 63 74 69 6f 6e 73 00 60 60 6c 69 66 65 2d 62 79 74 65 73 60 60 20 45 53 50 20 6c | connections.``life-bytes``.ESP.l |
| 15a900 | 69 66 65 20 69 6e 20 62 79 74 65 73 20 3c 31 30 32 34 2d 32 36 38 34 33 35 34 35 36 30 30 30 30 | ife.in.bytes.<1024-2684354560000 |
| 15a920 | 30 3e 2e 20 4e 75 6d 62 65 72 20 6f 66 20 62 79 74 65 73 20 74 72 61 6e 73 6d 69 74 74 65 64 20 | 0>..Number.of.bytes.transmitted. |
| 15a940 | 6f 76 65 72 20 61 6e 20 49 50 73 65 63 20 53 41 20 62 65 66 6f 72 65 20 69 74 20 65 78 70 69 72 | over.an.IPsec.SA.before.it.expir |
| 15a960 | 65 73 3b 00 60 60 6c 69 66 65 2d 70 61 63 6b 65 74 73 60 60 20 45 53 50 20 6c 69 66 65 20 69 6e | es;.``life-packets``.ESP.life.in |
| 15a980 | 20 70 61 63 6b 65 74 73 20 3c 31 30 30 30 2d 32 36 38 34 33 35 34 35 36 30 30 30 30 30 3e 2e 20 | .packets.<1000-26843545600000>.. |
| 15a9a0 | 4e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 74 72 61 6e 73 6d 69 74 74 65 64 20 6f 76 | Number.of.packets.transmitted.ov |
| 15a9c0 | 65 72 20 61 6e 20 49 50 73 65 63 20 53 41 20 62 65 66 6f 72 65 20 69 74 20 65 78 70 69 72 65 73 | er.an.IPsec.SA.before.it.expires |
| 15a9e0 | 3b 00 60 60 6c 69 66 65 74 69 6d 65 60 60 20 45 53 50 20 6c 69 66 65 74 69 6d 65 20 69 6e 20 73 | ;.``lifetime``.ESP.lifetime.in.s |
| 15aa00 | 65 63 6f 6e 64 73 20 3c 33 30 2d 38 36 34 30 30 3e 20 28 64 65 66 61 75 6c 74 20 33 36 30 30 29 | econds.<30-86400>.(default.3600) |
| 15aa20 | 2e 20 48 6f 77 20 6c 6f 6e 67 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 69 6e 73 74 61 6e 63 65 | ..How.long.a.particular.instance |
| 15aa40 | 20 6f 66 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 28 61 20 73 65 74 20 6f 66 20 65 6e 63 72 79 | .of.a.connection.(a.set.of.encry |
| 15aa60 | 70 74 69 6f 6e 2f 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6b 65 79 73 20 66 6f 72 20 75 73 | ption/authentication.keys.for.us |
| 15aa80 | 65 72 20 70 61 63 6b 65 74 73 29 20 73 68 6f 75 6c 64 20 6c 61 73 74 2c 20 66 72 6f 6d 20 73 75 | er.packets).should.last,.from.su |
| 15aaa0 | 63 63 65 73 73 66 75 6c 20 6e 65 67 6f 74 69 61 74 69 6f 6e 20 74 6f 20 65 78 70 69 72 79 3b 00 | ccessful.negotiation.to.expiry;. |
| 15aac0 | 60 60 6c 69 66 65 74 69 6d 65 60 60 20 49 4b 45 20 6c 69 66 65 74 69 6d 65 20 69 6e 20 73 65 63 | ``lifetime``.IKE.lifetime.in.sec |
| 15aae0 | 6f 6e 64 73 20 3c 30 2d 38 36 34 30 30 3e 20 28 64 65 66 61 75 6c 74 20 32 38 38 30 30 29 3b 00 | onds.<0-86400>.(default.28800);. |
| 15ab00 | 60 60 6c 69 66 65 74 69 6d 65 60 60 20 49 4b 45 20 6c 69 66 65 74 69 6d 65 20 69 6e 20 73 65 63 | ``lifetime``.IKE.lifetime.in.sec |
| 15ab20 | 6f 6e 64 73 20 3c 33 30 2d 38 36 34 30 30 3e 20 28 64 65 66 61 75 6c 74 20 32 38 38 30 30 29 3b | onds.<30-86400>.(default.28800); |
| 15ab40 | 00 60 60 6c 6c 67 72 2d 73 74 61 6c 65 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 | .``llgr-stale``.-............... |
| 15ab60 | 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 | ....Well-known.communities.value |
| 15ab80 | 20 4c 4c 47 52 5f 53 54 41 4c 45 20 30 78 46 46 46 46 30 30 30 36 00 60 60 6c 6f 63 61 6c 2d 61 | .LLGR_STALE.0xFFFF0006.``local-a |
| 15aba0 | 64 64 72 65 73 73 60 60 20 2d 20 6c 6f 63 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 66 6f 72 20 | ddress``.-.local.IP.address.for. |
| 15abc0 | 49 50 53 65 63 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 68 20 74 68 69 73 20 70 65 65 72 2e | IPSec.connection.with.this.peer. |
| 15abe0 | 20 49 66 20 64 65 66 69 6e 65 64 20 60 60 61 6e 79 60 60 2c 20 74 68 65 6e 20 61 6e 20 49 50 20 | .If.defined.``any``,.then.an.IP. |
| 15ac00 | 61 64 64 72 65 73 73 20 77 68 69 63 68 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 69 6e 74 65 | address.which.configured.on.inte |
| 15ac20 | 72 66 61 63 65 20 77 69 74 68 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 77 69 6c 6c 20 62 65 | rface.with.default.route.will.be |
| 15ac40 | 20 75 73 65 64 3b 00 60 60 6c 6f 63 61 6c 2d 61 73 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 | .used;.``local-as``.-........... |
| 15ac60 | 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 | ..........Well-known.communities |
| 15ac80 | 20 76 61 6c 75 65 20 4e 4f 5f 45 58 50 4f 52 54 5f 53 55 42 43 4f 4e 46 45 44 20 30 78 46 46 46 | .value.NO_EXPORT_SUBCONFED.0xFFF |
| 15aca0 | 46 46 46 30 33 00 60 60 6c 6f 63 61 6c 2d 69 64 60 60 20 2d 20 49 44 20 66 6f 72 20 74 68 65 20 | FFF03.``local-id``.-.ID.for.the. |
| 15acc0 | 6c 6f 63 61 6c 20 56 79 4f 53 20 72 6f 75 74 65 72 2e 20 49 66 20 64 65 66 69 6e 65 64 2c 20 64 | local.VyOS.router..If.defined,.d |
| 15ace0 | 75 72 69 6e 67 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 69 74 20 77 69 6c 6c | uring.the.authentication.it.will |
| 15ad00 | 20 62 65 20 73 65 6e 64 20 74 6f 20 72 65 6d 6f 74 65 20 70 65 65 72 3b 00 60 60 6c 6f 63 61 6c | .be.send.to.remote.peer;.``local |
| 15ad20 | 2d 6b 65 79 60 60 20 2d 20 6e 61 6d 65 20 6f 66 20 50 4b 49 20 6b 65 79 2d 70 61 69 72 20 77 69 | -key``.-.name.of.PKI.key-pair.wi |
| 15ad40 | 74 68 20 6c 6f 63 61 6c 20 70 72 69 76 61 74 65 20 6b 65 79 00 60 60 6c 6f 63 61 6c 60 60 20 2d | th.local.private.key.``local``.- |
| 15ad60 | 20 64 65 66 69 6e 65 20 61 20 6c 6f 63 61 6c 20 73 6f 75 72 63 65 20 66 6f 72 20 6d 61 74 63 68 | .define.a.local.source.for.match |
| 15ad80 | 20 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 73 68 6f 75 6c 64 20 62 65 20 65 6e 63 72 79 70 | .traffic,.which.should.be.encryp |
| 15ada0 | 74 65 64 20 61 6e 64 20 73 65 6e 64 20 74 6f 20 74 68 69 73 20 70 65 65 72 3a 00 60 60 6c 6f 63 | ted.and.send.to.this.peer:.``loc |
| 15adc0 | 61 6c 60 60 3a 20 52 75 6c 65 73 65 74 20 66 6f 72 20 70 61 63 6b 65 74 73 20 64 65 73 74 69 6e | al``:.Ruleset.for.packets.destin |
| 15ade0 | 65 64 20 66 6f 72 20 74 68 69 73 20 72 6f 75 74 65 72 00 60 60 6d 60 60 20 2d 20 45 78 65 63 75 | ed.for.this.router.``m``.-.Execu |
| 15ae00 | 74 69 6f 6e 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 6d 69 6e 75 74 65 73 00 60 60 6d 61 69 6e 60 | tion.interval.in.minutes.``main` |
| 15ae20 | 60 20 52 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 75 73 65 64 20 62 79 20 56 79 4f 53 20 61 6e 64 | `.Routing.table.used.by.VyOS.and |
| 15ae40 | 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 73 20 6e 6f 74 20 70 61 72 74 69 63 69 70 61 74 | .other.interfaces.not.participat |
| 15ae60 | 69 6e 67 20 69 6e 20 50 42 52 00 60 60 6d 61 69 6e 60 60 20 75 73 65 20 4d 61 69 6e 20 6d 6f 64 | ing.in.PBR.``main``.use.Main.mod |
| 15ae80 | 65 20 66 6f 72 20 4b 65 79 20 45 78 63 68 61 6e 67 65 73 20 69 6e 20 74 68 65 20 49 4b 45 76 31 | e.for.Key.Exchanges.in.the.IKEv1 |
| 15aea0 | 20 50 72 6f 74 6f 63 6f 6c 20 28 52 65 63 6f 6d 6d 65 6e 64 65 64 20 44 65 66 61 75 6c 74 29 3b | .Protocol.(Recommended.Default); |
| 15aec0 | 00 60 60 6d 65 73 73 61 67 65 60 60 3a 20 46 75 6c 6c 20 6d 65 73 73 61 67 65 20 74 68 61 74 20 | .``message``:.Full.message.that. |
| 15aee0 | 68 61 73 20 74 72 69 67 67 65 72 65 64 20 74 68 65 20 73 63 72 69 70 74 2e 00 60 60 6d 69 74 69 | has.triggered.the.script..``miti |
| 15af00 | 67 61 74 69 6f 6e 73 3d 6f 66 66 60 60 00 60 60 6d 6f 62 69 6b 65 60 60 20 65 6e 61 62 6c 65 20 | gations=off``.``mobike``.enable. |
| 15af20 | 4d 4f 42 49 4b 45 20 53 75 70 70 6f 72 74 2e 20 4d 4f 42 49 4b 45 20 69 73 20 6f 6e 6c 79 20 61 | MOBIKE.Support..MOBIKE.is.only.a |
| 15af40 | 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 49 4b 45 76 32 3a 00 60 60 6d 6f 64 65 60 60 20 2d 20 6d | vailable.for.IKEv2:.``mode``.-.m |
| 15af60 | 6f 64 65 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 56 | ode.for.authentication.between.V |
| 15af80 | 79 4f 53 20 61 6e 64 20 72 65 6d 6f 74 65 20 70 65 65 72 3a 00 60 60 6d 6f 64 65 60 60 20 49 4b | yOS.and.remote.peer:.``mode``.IK |
| 15afa0 | 45 76 31 20 50 68 61 73 65 20 31 20 4d 6f 64 65 20 53 65 6c 65 63 74 69 6f 6e 3a 00 60 60 6d 6f | Ev1.Phase.1.Mode.Selection:.``mo |
| 15afc0 | 64 65 60 60 20 74 68 65 20 74 79 70 65 20 6f 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 3a | de``.the.type.of.the.connection: |
| 15afe0 | 00 60 60 6d 6f 6e 69 74 6f 72 60 60 20 2d 20 50 61 73 73 69 76 65 6c 79 20 6d 6f 6e 69 74 6f 72 | .``monitor``.-.Passively.monitor |
| 15b000 | 20 61 6c 6c 20 70 61 63 6b 65 74 73 20 6f 6e 20 74 68 65 20 66 72 65 71 75 65 6e 63 79 2f 63 68 | .all.packets.on.the.frequency/ch |
| 15b020 | 61 6e 6e 65 6c 00 60 60 6d 75 6c 74 69 2d 75 73 65 72 2d 62 65 61 6d 66 6f 72 6d 65 65 60 60 20 | annel.``multi-user-beamformee``. |
| 15b040 | 2d 20 53 75 70 70 6f 72 74 20 66 6f 72 20 6f 70 65 72 61 74 69 6f 6e 20 61 73 20 6d 75 6c 74 69 | -.Support.for.operation.as.multi |
| 15b060 | 20 75 73 65 72 20 62 65 61 6d 66 6f 72 6d 65 65 00 60 60 6d 75 6c 74 69 2d 75 73 65 72 2d 62 65 | .user.beamformee.``multi-user-be |
| 15b080 | 61 6d 66 6f 72 6d 65 65 60 60 20 2d 20 53 75 70 70 6f 72 74 20 66 6f 72 20 6f 70 65 72 61 74 69 | amformee``.-.Support.for.operati |
| 15b0a0 | 6f 6e 20 61 73 20 73 69 6e 67 6c 65 20 75 73 65 72 20 62 65 61 6d 66 6f 72 6d 65 72 00 60 60 6d | on.as.single.user.beamformer.``m |
| 15b0c0 | 75 6c 74 69 2d 75 73 65 72 2d 62 65 61 6d 66 6f 72 6d 65 72 60 60 20 2d 20 53 75 70 70 6f 72 74 | ulti-user-beamformer``.-.Support |
| 15b0e0 | 20 66 6f 72 20 6f 70 65 72 61 74 69 6f 6e 20 61 73 20 6d 75 6c 74 69 20 75 73 65 72 20 62 65 61 | .for.operation.as.multi.user.bea |
| 15b100 | 6d 66 6f 72 6d 65 72 00 60 60 6d 75 6c 74 69 2d 75 73 65 72 2d 62 65 61 6d 66 6f 72 6d 65 72 60 | mformer.``multi-user-beamformer` |
| 15b120 | 60 20 2d 20 53 75 70 70 6f 72 74 20 66 6f 72 20 6f 70 65 72 61 74 69 6f 6e 20 61 73 20 73 69 6e | `.-.Support.for.operation.as.sin |
| 15b140 | 67 6c 65 20 75 73 65 72 20 62 65 61 6d 66 6f 72 6d 65 72 00 60 60 6d 79 73 71 6c 60 60 20 4d 79 | gle.user.beamformer.``mysql``.My |
| 15b160 | 53 51 4c 20 70 72 6f 74 6f 63 6f 6c 20 63 68 65 63 6b 2e 00 60 60 6e 60 60 20 2d 20 38 30 32 2e | SQL.protocol.check..``n``.-.802. |
| 15b180 | 31 31 6e 20 2d 20 36 30 30 20 4d 62 69 74 73 2f 73 65 63 00 60 60 6e 61 6d 65 60 60 20 69 73 20 | 11n.-.600.Mbits/sec.``name``.is. |
| 15b1a0 | 75 73 65 64 20 66 6f 72 20 74 68 65 20 56 79 4f 53 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 20 74 6f | used.for.the.VyOS.CLI.command.to |
| 15b1c0 | 20 69 64 65 6e 74 69 66 79 20 74 68 69 73 20 6b 65 79 2e 20 54 68 69 73 20 6b 65 79 20 60 60 6e | .identify.this.key..This.key.``n |
| 15b1e0 | 61 6d 65 60 60 20 69 73 20 74 68 65 6e 20 75 73 65 64 20 69 6e 20 74 68 65 20 43 4c 49 20 63 6f | ame``.is.then.used.in.the.CLI.co |
| 15b200 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 6f 20 72 65 66 65 72 65 6e 63 65 20 74 68 65 20 6b 65 79 | nfiguration.to.reference.the.key |
| 15b220 | 20 69 6e 73 74 61 6e 63 65 2e 00 60 60 6e 65 74 2e 69 70 76 34 2e 63 6f 6e 66 2e 61 6c 6c 2e 61 | .instance..``net.ipv4.conf.all.a |
| 15b240 | 63 63 65 70 74 5f 72 65 64 69 72 65 63 74 73 60 60 00 60 60 6e 65 74 2e 69 70 76 34 2e 63 6f 6e | ccept_redirects``.``net.ipv4.con |
| 15b260 | 66 2e 61 6c 6c 2e 61 63 63 65 70 74 5f 73 6f 75 72 63 65 5f 72 6f 75 74 65 60 60 00 60 60 6e 65 | f.all.accept_source_route``.``ne |
| 15b280 | 74 2e 69 70 76 34 2e 63 6f 6e 66 2e 61 6c 6c 2e 6c 6f 67 5f 6d 61 72 74 69 61 6e 73 60 60 00 60 | t.ipv4.conf.all.log_martians``.` |
| 15b2a0 | 60 6e 65 74 2e 69 70 76 34 2e 63 6f 6e 66 2e 61 6c 6c 2e 72 70 5f 66 69 6c 74 65 72 60 60 00 60 | `net.ipv4.conf.all.rp_filter``.` |
| 15b2c0 | 60 6e 65 74 2e 69 70 76 34 2e 63 6f 6e 66 2e 61 6c 6c 2e 73 65 6e 64 5f 72 65 64 69 72 65 63 74 | `net.ipv4.conf.all.send_redirect |
| 15b2e0 | 73 60 60 00 60 60 6e 65 74 2e 69 70 76 34 2e 69 63 6d 70 5f 65 63 68 6f 5f 69 67 6e 6f 72 65 5f | s``.``net.ipv4.icmp_echo_ignore_ |
| 15b300 | 62 72 6f 61 64 63 61 73 74 73 60 60 00 60 60 6e 65 74 2e 69 70 76 34 2e 74 63 70 5f 72 66 63 31 | broadcasts``.``net.ipv4.tcp_rfc1 |
| 15b320 | 33 33 37 60 60 00 60 60 6e 65 74 2e 69 70 76 34 2e 74 63 70 5f 73 79 6e 63 6f 6f 6b 69 65 73 60 | 337``.``net.ipv4.tcp_syncookies` |
| 15b340 | 60 00 60 60 6e 65 74 2e 69 70 76 36 2e 63 6f 6e 66 2e 61 6c 6c 2e 61 63 63 65 70 74 5f 72 65 64 | `.``net.ipv6.conf.all.accept_red |
| 15b360 | 69 72 65 63 74 73 60 60 00 60 60 6e 65 74 2e 69 70 76 36 2e 63 6f 6e 66 2e 61 6c 6c 2e 61 63 63 | irects``.``net.ipv6.conf.all.acc |
| 15b380 | 65 70 74 5f 73 6f 75 72 63 65 5f 72 6f 75 74 65 60 60 00 60 60 6e 6f 2d 61 64 76 65 72 74 69 73 | ept_source_route``.``no-advertis |
| 15b3a0 | 65 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e | e``.-.................Well-known |
| 15b3c0 | 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 4e 4f 5f 41 44 56 45 52 54 49 53 45 20 | .communities.value.NO_ADVERTISE. |
| 15b3e0 | 30 78 46 46 46 46 46 46 30 32 00 60 60 6e 6f 2d 65 78 70 6f 72 74 60 60 20 2d 20 20 20 20 20 20 | 0xFFFFFF02.``no-export``.-...... |
| 15b400 | 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 | ..............Well-known.communi |
| 15b420 | 74 69 65 73 20 76 61 6c 75 65 20 4e 4f 5f 45 58 50 4f 52 54 20 30 78 46 46 46 46 46 46 30 31 00 | ties.value.NO_EXPORT.0xFFFFFF01. |
| 15b440 | 60 60 6e 6f 2d 6c 6c 67 72 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 | ``no-llgr``.-................... |
| 15b460 | 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 | ...Well-known.communities.value. |
| 15b480 | 4e 4f 5f 4c 4c 47 52 20 30 78 46 46 46 46 30 30 30 37 00 60 60 6e 6f 2d 70 65 65 72 60 60 20 2d | NO_LLGR.0xFFFF0007.``no-peer``.- |
| 15b4a0 | 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e | ......................Well-known |
| 15b4c0 | 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 4e 4f 50 45 45 52 20 30 78 46 46 46 46 | .communities.value.NOPEER.0xFFFF |
| 15b4e0 | 46 46 30 34 00 60 60 6e 6f 60 60 20 64 69 73 61 62 6c 65 20 72 65 6d 6f 74 65 20 68 6f 73 74 20 | FF04.``no``.disable.remote.host. |
| 15b500 | 72 65 2d 61 75 74 68 65 6e 74 69 63 61 74 6f 6e 20 64 75 72 69 6e 67 20 61 6e 20 49 4b 45 20 72 | re-authenticaton.during.an.IKE.r |
| 15b520 | 65 6b 65 79 3b 00 60 60 6e 6f 6e 65 60 60 20 2d 20 45 78 65 63 75 74 69 6f 6e 20 69 6e 74 65 72 | ekey;.``none``.-.Execution.inter |
| 15b540 | 76 61 6c 20 69 6e 20 6d 69 6e 75 74 65 73 00 60 60 6e 6f 6e 65 60 60 20 2d 20 6c 6f 61 64 73 20 | val.in.minutes.``none``.-.loads. |
| 15b560 | 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 6e 6c 79 2c 20 77 68 69 63 68 20 74 68 65 6e 20 | the.connection.only,.which.then. |
| 15b580 | 63 61 6e 20 62 65 20 6d 61 6e 75 61 6c 6c 79 20 69 6e 69 74 69 61 74 65 64 20 6f 72 20 75 73 65 | can.be.manually.initiated.or.use |
| 15b5a0 | 64 20 61 73 20 61 20 72 65 73 70 6f 6e 64 65 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 | d.as.a.responder.configuration.. |
| 15b5c0 | 60 60 6e 6f 6e 65 60 60 20 73 65 74 20 61 63 74 69 6f 6e 20 74 6f 20 6e 6f 6e 65 20 28 64 65 66 | ``none``.set.action.to.none.(def |
| 15b5e0 | 61 75 6c 74 29 3b 00 60 60 6e 6f 73 65 6c 65 63 74 60 60 20 6d 61 72 6b 73 20 74 68 65 20 73 65 | ault);.``noselect``.marks.the.se |
| 15b600 | 72 76 65 72 20 61 73 20 75 6e 75 73 65 64 2c 20 65 78 63 65 70 74 20 66 6f 72 20 64 69 73 70 6c | rver.as.unused,.except.for.displ |
| 15b620 | 61 79 20 70 75 72 70 6f 73 65 73 2e 20 54 68 65 20 73 65 72 76 65 72 20 69 73 20 64 69 73 63 61 | ay.purposes..The.server.is.disca |
| 15b640 | 72 64 65 64 20 62 79 20 74 68 65 20 73 65 6c 65 63 74 69 6f 6e 20 61 6c 67 6f 72 69 74 68 6d 2e | rded.by.the.selection.algorithm. |
| 15b660 | 00 60 60 6e 6f 74 72 61 63 6b 60 60 3a 20 69 67 6e 6f 72 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 | .``notrack``:.ignore.connection. |
| 15b680 | 74 72 61 63 6b 69 6e 67 20 73 79 73 74 65 6d 2e 20 54 68 69 73 20 61 63 74 69 6f 6e 20 69 73 20 | tracking.system..This.action.is. |
| 15b6a0 | 6f 6e 6c 79 20 61 76 61 69 6c 61 62 6c 65 20 69 6e 20 70 72 65 72 6f 75 74 69 6e 67 20 63 68 61 | only.available.in.prerouting.cha |
| 15b6c0 | 69 6e 2e 00 60 60 6e 74 73 60 60 20 65 6e 61 62 6c 65 73 20 4e 65 74 77 6f 72 6b 20 54 69 6d 65 | in..``nts``.enables.Network.Time |
| 15b6e0 | 20 53 65 63 75 72 69 74 79 20 28 4e 54 53 29 20 66 6f 72 20 74 68 65 20 73 65 72 76 65 72 20 61 | .Security.(NTS).for.the.server.a |
| 15b700 | 73 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 3a 72 66 63 3a 60 38 39 31 35 60 00 60 60 6f 70 74 | s.specified.in.:rfc:`8915`.``opt |
| 15b720 | 69 6f 6e 73 60 60 00 60 60 6f 73 70 66 60 60 20 2d 20 4f 70 65 6e 20 53 68 6f 72 74 65 73 74 20 | ions``.``ospf``.-.Open.Shortest. |
| 15b740 | 50 61 74 68 20 46 69 72 73 74 20 28 4f 53 50 46 76 32 29 00 60 60 6f 73 70 66 76 33 60 60 20 2d | Path.First.(OSPFv2).``ospfv3``.- |
| 15b760 | 20 4f 70 65 6e 20 53 68 6f 72 74 65 73 74 20 50 61 74 68 20 46 69 72 73 74 20 28 49 50 76 36 29 | .Open.Shortest.Path.First.(IPv6) |
| 15b780 | 20 28 4f 53 50 46 76 33 29 00 60 60 6f 75 74 60 60 3a 20 52 75 6c 65 73 65 74 20 66 6f 72 20 66 | .(OSPFv3).``out``:.Ruleset.for.f |
| 15b7a0 | 6f 72 77 61 72 64 65 64 20 70 61 63 6b 65 74 73 20 6f 6e 20 61 6e 20 6f 75 74 62 6f 75 6e 64 20 | orwarded.packets.on.an.outbound. |
| 15b7c0 | 69 6e 74 65 72 66 61 63 65 00 60 60 70 61 73 73 69 76 65 60 60 20 54 68 65 20 64 72 69 76 65 72 | interface.``passive``.The.driver |
| 15b7e0 | 20 61 6c 6c 6f 77 73 20 74 68 65 20 73 79 73 74 65 6d 20 67 6f 76 65 72 6e 6f 72 20 74 6f 20 6d | .allows.the.system.governor.to.m |
| 15b800 | 61 6e 61 67 65 20 43 50 55 20 66 72 65 71 75 65 6e 63 79 20 77 68 69 6c 65 20 70 72 6f 76 69 64 | anage.CPU.frequency.while.provid |
| 15b820 | 69 6e 67 20 61 76 61 69 6c 61 62 6c 65 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 73 74 61 74 65 73 | ing.available.performance.states |
| 15b840 | 2e 00 60 60 70 61 73 73 70 68 72 61 73 65 60 60 20 2d 20 6c 6f 63 61 6c 20 70 72 69 76 61 74 65 | ..``passphrase``.-.local.private |
| 15b860 | 20 6b 65 79 20 70 61 73 73 70 68 72 61 73 65 00 60 60 70 61 73 73 70 68 72 61 73 65 60 60 20 2d | .key.passphrase.``passphrase``.- |
| 15b880 | 20 70 72 69 76 61 74 65 20 6b 65 79 20 70 61 73 73 70 68 72 61 73 65 2c 20 69 66 20 6e 65 65 64 | .private.key.passphrase,.if.need |
| 15b8a0 | 65 64 2e 00 60 60 70 61 73 73 77 6f 72 64 60 60 20 2d 20 70 61 73 73 70 68 72 61 73 65 20 70 72 | ed..``password``.-.passphrase.pr |
| 15b8c0 | 69 76 61 74 65 20 6b 65 79 2c 20 69 66 20 6e 65 65 64 65 64 2e 00 60 60 70 65 65 72 60 60 20 69 | ivate.key,.if.needed..``peer``.i |
| 15b8e0 | 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 56 79 4f 53 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 20 | s.used.for.the.VyOS.CLI.command. |
| 15b900 | 74 6f 20 69 64 65 6e 74 69 66 79 20 74 68 65 20 57 69 72 65 47 75 61 72 64 20 70 65 65 72 20 77 | to.identify.the.WireGuard.peer.w |
| 15b920 | 68 65 72 65 20 74 68 69 73 20 73 65 63 72 65 64 20 69 73 20 74 6f 20 62 65 20 75 73 65 64 2e 00 | here.this.secred.is.to.be.used.. |
| 15b940 | 60 60 70 65 65 72 60 60 20 69 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 56 79 4f 53 20 43 4c | ``peer``.is.used.for.the.VyOS.CL |
| 15b960 | 49 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 69 64 65 6e 74 69 66 79 20 74 68 65 20 57 69 72 65 47 75 | I.command.to.identify.the.WireGu |
| 15b980 | 61 72 64 20 70 65 65 72 20 77 68 65 72 65 20 74 68 69 73 20 73 65 63 72 65 74 20 69 73 20 74 6f | ard.peer.where.this.secret.is.to |
| 15b9a0 | 20 62 65 20 75 73 65 64 2e 00 60 60 70 65 72 69 6f 64 60 60 3a 20 54 69 6d 65 20 77 69 6e 64 6f | .be.used..``period``:.Time.windo |
| 15b9c0 | 77 20 66 6f 72 20 72 61 74 65 20 63 61 6c 63 75 6c 61 74 69 6f 6e 2e 20 50 6f 73 73 69 62 6c 65 | w.for.rate.calculation..Possible |
| 15b9e0 | 20 76 61 6c 75 65 73 3a 20 60 60 73 65 63 6f 6e 64 60 60 20 28 6f 6e 65 20 73 65 63 6f 6e 64 29 | .values:.``second``.(one.second) |
| 15ba00 | 2c 20 60 60 6d 69 6e 75 74 65 60 60 20 28 6f 6e 65 20 6d 69 6e 75 74 65 29 2c 20 60 60 68 6f 75 | ,.``minute``.(one.minute),.``hou |
| 15ba20 | 72 60 60 20 28 6f 6e 65 20 68 6f 75 72 29 2e 20 44 65 66 61 75 6c 74 20 69 73 20 60 60 73 65 63 | r``.(one.hour)..Default.is.``sec |
| 15ba40 | 6f 6e 64 60 60 2e 00 60 60 70 66 73 60 60 20 77 68 65 74 68 65 72 20 50 65 72 66 65 63 74 20 46 | ond``..``pfs``.whether.Perfect.F |
| 15ba60 | 6f 72 77 61 72 64 20 53 65 63 72 65 63 79 20 6f 66 20 6b 65 79 73 20 69 73 20 64 65 73 69 72 65 | orward.Secrecy.of.keys.is.desire |
| 15ba80 | 64 20 6f 6e 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 27 73 20 6b 65 79 69 6e 67 20 63 68 61 | d.on.the.connection's.keying.cha |
| 15baa0 | 6e 6e 65 6c 20 61 6e 64 20 64 65 66 69 6e 65 73 20 61 20 44 69 66 66 69 65 2d 48 65 6c 6c 6d 61 | nnel.and.defines.a.Diffie-Hellma |
| 15bac0 | 6e 20 67 72 6f 75 70 20 66 6f 72 20 50 46 53 3a 00 60 60 70 67 73 71 6c 60 60 20 50 6f 73 74 67 | n.group.for.PFS:.``pgsql``.Postg |
| 15bae0 | 72 65 53 51 4c 20 70 72 6f 74 6f 63 6f 6c 20 63 68 65 63 6b 2e 00 60 60 70 6f 6f 6c 60 60 20 6d | reSQL.protocol.check..``pool``.m |
| 15bb00 | 6f 62 69 6c 69 7a 65 73 20 70 65 72 73 69 73 74 65 6e 74 20 63 6c 69 65 6e 74 20 6d 6f 64 65 20 | obilizes.persistent.client.mode. |
| 15bb20 | 61 73 73 6f 63 69 61 74 69 6f 6e 20 77 69 74 68 20 61 20 6e 75 6d 62 65 72 20 6f 66 20 72 65 6d | association.with.a.number.of.rem |
| 15bb40 | 6f 74 65 20 73 65 72 76 65 72 73 2e 00 60 60 70 6f 72 74 60 60 20 20 50 6f 72 74 20 6e 75 6d 62 | ote.servers..``port``..Port.numb |
| 15bb60 | 65 72 2e 00 60 60 70 6f 72 74 60 60 20 2d 20 64 65 66 69 6e 65 20 70 6f 72 74 2e 20 48 61 76 65 | er..``port``.-.define.port..Have |
| 15bb80 | 20 65 66 66 65 63 74 20 6f 6e 6c 79 20 77 68 65 6e 20 75 73 65 64 20 74 6f 67 65 74 68 65 72 20 | .effect.only.when.used.together. |
| 15bba0 | 77 69 74 68 20 60 60 70 72 65 66 69 78 60 60 3b 00 60 60 70 72 65 2d 73 68 61 72 65 64 2d 73 65 | with.``prefix``;.``pre-shared-se |
| 15bbc0 | 63 72 65 74 60 60 20 2d 20 75 73 65 20 70 72 65 64 65 66 69 6e 65 64 20 73 68 61 72 65 64 20 73 | cret``.-.use.predefined.shared.s |
| 15bbe0 | 65 63 72 65 74 20 70 68 72 61 73 65 3b 00 60 60 70 72 65 66 65 72 60 60 20 6d 61 72 6b 73 20 74 | ecret.phrase;.``prefer``.marks.t |
| 15bc00 | 68 65 20 73 65 72 76 65 72 20 61 73 20 70 72 65 66 65 72 72 65 64 2e 20 41 6c 6c 20 6f 74 68 65 | he.server.as.preferred..All.othe |
| 15bc20 | 72 20 74 68 69 6e 67 73 20 62 65 69 6e 67 20 65 71 75 61 6c 2c 20 74 68 69 73 20 68 6f 73 74 20 | r.things.being.equal,.this.host. |
| 15bc40 | 77 69 6c 6c 20 62 65 20 63 68 6f 73 65 6e 20 66 6f 72 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 | will.be.chosen.for.synchronizati |
| 15bc60 | 6f 6e 20 61 6d 6f 6e 67 20 61 20 73 65 74 20 6f 66 20 63 6f 72 72 65 63 74 6c 79 20 6f 70 65 72 | on.among.a.set.of.correctly.oper |
| 15bc80 | 61 74 69 6e 67 20 68 6f 73 74 73 2e 00 60 60 70 72 65 66 69 78 60 60 20 2d 20 49 50 20 6e 65 74 | ating.hosts..``prefix``.-.IP.net |
| 15bca0 | 77 6f 72 6b 20 61 74 20 6c 6f 63 61 6c 20 73 69 64 65 2e 00 60 60 70 72 65 66 69 78 60 60 20 2d | work.at.local.side..``prefix``.- |
| 15bcc0 | 20 49 50 20 6e 65 74 77 6f 72 6b 20 61 74 20 72 65 6d 6f 74 65 20 73 69 64 65 2e 00 60 60 70 72 | .IP.network.at.remote.side..``pr |
| 15bce0 | 66 60 60 20 70 73 65 75 64 6f 2d 72 61 6e 64 6f 6d 20 66 75 6e 63 74 69 6f 6e 2e 00 60 60 70 72 | f``.pseudo-random.function..``pr |
| 15bd00 | 69 6f 72 69 74 79 60 60 20 2d 20 41 64 64 20 70 72 69 6f 72 69 74 79 20 66 6f 72 20 70 6f 6c 69 | iority``.-.Add.priority.for.poli |
| 15bd20 | 63 79 2d 62 61 73 65 64 20 49 50 53 65 63 20 56 50 4e 20 74 75 6e 6e 65 6c 73 28 6c 6f 77 65 73 | cy-based.IPSec.VPN.tunnels(lowes |
| 15bd40 | 74 20 76 61 6c 75 65 20 6d 6f 72 65 20 70 72 65 66 65 72 61 62 6c 65 29 00 60 60 70 72 6f 63 65 | t.value.more.preferable).``proce |
| 15bd60 | 73 73 6f 72 2e 6d 61 78 5f 63 73 74 61 74 65 3d 31 60 60 20 4c 69 6d 69 74 20 70 72 6f 63 65 73 | ssor.max_cstate=1``.Limit.proces |
| 15bd80 | 73 6f 72 20 74 6f 20 6d 61 78 69 6d 75 6d 20 43 2d 73 74 61 74 65 20 31 00 60 60 70 72 6f 70 6f | sor.to.maximum.C-state.1.``propo |
| 15bda0 | 73 61 6c 60 60 20 45 53 50 2d 67 72 6f 75 70 20 70 72 6f 70 6f 73 61 6c 20 77 69 74 68 20 6e 75 | sal``.ESP-group.proposal.with.nu |
| 15bdc0 | 6d 62 65 72 20 3c 31 2d 36 35 35 33 35 3e 3a 00 60 60 70 72 6f 70 6f 73 61 6c 60 60 20 74 68 65 | mber.<1-65535>:.``proposal``.the |
| 15bde0 | 20 6c 69 73 74 20 6f 66 20 70 72 6f 70 6f 73 61 6c 73 20 61 6e 64 20 74 68 65 69 72 20 70 61 72 | .list.of.proposals.and.their.par |
| 15be00 | 61 6d 65 74 65 72 73 3a 00 60 60 70 72 6f 74 6f 63 6f 6c 60 60 20 2d 20 64 65 66 69 6e 65 20 74 | ameters:.``protocol``.-.define.t |
| 15be20 | 68 65 20 70 72 6f 74 6f 63 6f 6c 20 66 6f 72 20 6d 61 74 63 68 20 74 72 61 66 66 69 63 2c 20 77 | he.protocol.for.match.traffic,.w |
| 15be40 | 68 69 63 68 20 73 68 6f 75 6c 64 20 62 65 20 65 6e 63 72 79 70 74 65 64 20 61 6e 64 20 73 65 6e | hich.should.be.encrypted.and.sen |
| 15be60 | 64 20 74 6f 20 74 68 69 73 20 70 65 65 72 3b 00 60 60 70 73 6b 60 60 20 2d 20 50 72 65 73 68 61 | d.to.this.peer;.``psk``.-.Presha |
| 15be80 | 72 65 64 20 73 65 63 72 65 74 20 6b 65 79 20 6e 61 6d 65 3a 00 60 60 70 74 70 60 60 20 65 6e 61 | red.secret.key.name:.``ptp``.ena |
| 15bea0 | 62 6c 65 73 20 74 68 65 20 50 54 50 20 74 72 61 6e 73 70 6f 72 74 20 66 6f 72 20 74 68 69 73 20 | bles.the.PTP.transport.for.this. |
| 15bec0 | 73 65 72 76 65 72 20 28 73 65 65 20 3a 72 65 66 3a 60 70 74 70 2d 74 72 61 6e 73 70 6f 72 74 60 | server.(see.:ref:`ptp-transport` |
| 15bee0 | 29 2e 00 60 60 71 75 65 75 65 60 60 3a 20 45 6e 71 75 65 75 65 20 70 61 63 6b 65 74 20 74 6f 20 | )..``queue``:.Enqueue.packet.to. |
| 15bf00 | 75 73 65 72 73 70 61 63 65 2e 00 60 60 72 61 74 65 60 60 3a 20 4e 75 6d 62 65 72 20 6f 66 20 70 | userspace..``rate``:.Number.of.p |
| 15bf20 | 61 63 6b 65 74 73 2e 20 44 65 66 61 75 6c 74 20 35 2e 00 60 60 72 65 63 65 69 76 65 2d 66 69 6c | ackets..Default.5..``receive-fil |
| 15bf40 | 74 65 72 20 5b 61 6c 6c 7c 6e 74 70 7c 70 74 70 7c 6e 6f 6e 65 5d 60 60 20 73 65 6c 65 63 74 73 | ter.[all|ntp|ptp|none]``.selects |
| 15bf60 | 20 74 68 65 20 72 65 63 65 69 76 65 20 66 69 6c 74 65 72 20 6d 6f 64 65 2c 20 77 68 69 63 68 20 | .the.receive.filter.mode,.which. |
| 15bf80 | 63 6f 6e 74 72 6f 6c 73 20 77 68 69 63 68 20 69 6e 62 6f 75 6e 64 20 70 61 63 6b 65 74 73 20 74 | controls.which.inbound.packets.t |
| 15bfa0 | 68 65 20 4e 49 43 20 61 70 70 6c 69 65 73 20 74 69 6d 65 73 74 61 6d 70 73 20 74 6f 2e 20 54 68 | he.NIC.applies.timestamps.to..Th |
| 15bfc0 | 65 20 73 65 6c 65 63 74 65 64 20 6d 6f 64 65 20 6d 75 73 74 20 62 65 20 73 75 70 70 6f 72 74 65 | e.selected.mode.must.be.supporte |
| 15bfe0 | 64 20 62 79 20 74 68 65 20 4e 49 43 2c 20 6f 72 20 74 69 6d 65 73 74 61 6d 70 69 6e 67 20 77 69 | d.by.the.NIC,.or.timestamping.wi |
| 15c000 | 6c 6c 20 62 65 20 64 69 73 61 62 6c 65 64 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 | ll.be.disabled.for.the.interface |
| 15c020 | 2e 00 60 60 72 65 64 69 73 60 60 20 52 65 64 69 73 20 70 72 6f 74 6f 63 6f 6c 20 63 68 65 63 6b | ..``redis``.Redis.protocol.check |
| 15c040 | 2e 00 60 60 72 65 6a 65 63 74 60 60 3a 20 72 65 6a 65 63 74 20 74 68 65 20 70 61 63 6b 65 74 2e | ..``reject``:.reject.the.packet. |
| 15c060 | 00 60 60 72 65 6d 6f 74 65 2d 61 64 64 72 65 73 73 60 60 20 2d 20 72 65 6d 6f 74 65 20 49 50 20 | .``remote-address``.-.remote.IP. |
| 15c080 | 61 64 64 72 65 73 73 20 6f 72 20 68 6f 73 74 6e 61 6d 65 20 66 6f 72 20 49 50 53 65 63 20 63 6f | address.or.hostname.for.IPSec.co |
| 15c0a0 | 6e 6e 65 63 74 69 6f 6e 2e 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 20 69 | nnection..IPv4.or.IPv6.address.i |
| 15c0c0 | 73 20 75 73 65 64 20 77 68 65 6e 20 61 20 70 65 65 72 20 68 61 73 20 61 20 70 75 62 6c 69 63 20 | s.used.when.a.peer.has.a.public. |
| 15c0e0 | 73 74 61 74 69 63 20 49 50 20 61 64 64 72 65 73 73 2e 20 48 6f 73 74 6e 61 6d 65 20 69 73 20 61 | static.IP.address..Hostname.is.a |
| 15c100 | 20 44 4e 53 20 6e 61 6d 65 20 77 68 69 63 68 20 63 6f 75 6c 64 20 62 65 20 75 73 65 64 20 77 68 | .DNS.name.which.could.be.used.wh |
| 15c120 | 65 6e 20 61 20 70 65 65 72 20 68 61 73 20 61 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 | en.a.peer.has.a.public.IP.addres |
| 15c140 | 73 20 61 6e 64 20 44 4e 53 20 6e 61 6d 65 2c 20 62 75 74 20 61 6e 20 49 50 20 61 64 64 72 65 73 | s.and.DNS.name,.but.an.IP.addres |
| 15c160 | 73 20 63 6f 75 6c 64 20 62 65 20 63 68 61 6e 67 65 64 20 66 72 6f 6d 20 74 69 6d 65 20 74 6f 20 | s.could.be.changed.from.time.to. |
| 15c180 | 74 69 6d 65 2e 00 60 60 72 65 6d 6f 74 65 2d 69 64 60 60 20 2d 20 64 65 66 69 6e 65 20 61 6e 20 | time..``remote-id``.-.define.an. |
| 15c1a0 | 49 44 20 66 6f 72 20 72 65 6d 6f 74 65 20 70 65 65 72 2c 20 69 6e 73 74 65 61 64 20 6f 66 20 75 | ID.for.remote.peer,.instead.of.u |
| 15c1c0 | 73 69 6e 67 20 70 65 65 72 20 6e 61 6d 65 20 6f 72 20 61 64 64 72 65 73 73 2e 20 55 73 65 66 75 | sing.peer.name.or.address..Usefu |
| 15c1e0 | 6c 20 69 6e 20 63 61 73 65 20 69 66 20 74 68 65 20 72 65 6d 6f 74 65 20 70 65 65 72 20 69 73 20 | l.in.case.if.the.remote.peer.is. |
| 15c200 | 62 65 68 69 6e 64 20 4e 41 54 20 6f 72 20 69 66 20 60 60 6d 6f 64 65 20 78 35 30 39 60 60 20 69 | behind.NAT.or.if.``mode.x509``.i |
| 15c220 | 73 20 75 73 65 64 3b 00 60 60 72 65 6d 6f 74 65 2d 6b 65 79 60 60 20 2d 20 6e 61 6d 65 20 6f 66 | s.used;.``remote-key``.-.name.of |
| 15c240 | 20 50 4b 49 20 6b 65 79 2d 70 61 69 72 20 77 69 74 68 20 72 65 6d 6f 74 65 20 70 75 62 6c 69 63 | .PKI.key-pair.with.remote.public |
| 15c260 | 20 6b 65 79 00 60 60 72 65 6d 6f 74 65 60 60 20 2d 20 64 65 66 69 6e 65 20 74 68 65 20 72 65 6d | .key.``remote``.-.define.the.rem |
| 15c280 | 6f 74 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 66 6f 72 20 6d 61 74 63 68 20 74 72 61 66 66 69 | ote.destination.for.match.traffi |
| 15c2a0 | 63 2c 20 77 68 69 63 68 20 73 68 6f 75 6c 64 20 62 65 20 65 6e 63 72 79 70 74 65 64 20 61 6e 64 | c,.which.should.be.encrypted.and |
| 15c2c0 | 20 73 65 6e 64 20 74 6f 20 74 68 69 73 20 70 65 65 72 3a 00 60 60 72 65 70 6c 61 79 2d 77 69 6e | .send.to.this.peer:.``replay-win |
| 15c2e0 | 64 6f 77 60 60 20 2d 20 49 50 73 65 63 20 72 65 70 6c 61 79 20 77 69 6e 64 6f 77 20 74 6f 20 63 | dow``.-.IPsec.replay.window.to.c |
| 15c300 | 6f 6e 66 69 67 75 72 65 20 66 6f 72 20 74 68 69 73 20 43 48 49 4c 44 5f 53 41 20 28 64 65 66 61 | onfigure.for.this.CHILD_SA.(defa |
| 15c320 | 75 6c 74 3a 20 33 32 29 2c 20 61 20 76 61 6c 75 65 20 6f 66 20 30 20 64 69 73 61 62 6c 65 73 20 | ult:.32),.a.value.of.0.disables. |
| 15c340 | 49 50 73 65 63 20 72 65 70 6c 61 79 20 70 72 6f 74 65 63 74 69 6f 6e 00 60 60 72 65 71 2d 73 73 | IPsec.replay.protection.``req-ss |
| 15c360 | 6c 2d 73 6e 69 60 60 20 53 53 4c 20 53 65 72 76 65 72 20 4e 61 6d 65 20 49 6e 64 69 63 61 74 69 | l-sni``.SSL.Server.Name.Indicati |
| 15c380 | 6f 6e 20 28 53 4e 49 29 20 72 65 71 75 65 73 74 20 6d 61 74 63 68 00 60 60 72 65 73 70 2d 74 69 | on.(SNI).request.match.``resp-ti |
| 15c3a0 | 6d 65 60 60 3a 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 72 65 73 70 6f 6e 73 65 20 74 69 6d 65 20 | me``:.the.maximum.response.time. |
| 15c3c0 | 66 6f 72 20 70 69 6e 67 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 52 61 6e 67 65 20 31 2e 2e 2e 33 | for.ping.in.seconds..Range.1...3 |
| 15c3e0 | 30 2c 20 64 65 66 61 75 6c 74 20 35 00 60 60 72 65 73 70 6f 6e 64 60 60 20 2d 20 64 6f 65 73 20 | 0,.default.5.``respond``.-.does. |
| 15c400 | 6e 6f 74 20 74 72 79 20 74 6f 20 69 6e 69 74 69 61 74 65 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e | not.try.to.initiate.a.connection |
| 15c420 | 20 74 6f 20 61 20 72 65 6d 6f 74 65 20 70 65 65 72 2e 20 49 6e 20 74 68 69 73 20 6d 6f 64 65 2c | .to.a.remote.peer..In.this.mode, |
| 15c440 | 20 74 68 65 20 49 50 53 65 63 20 73 65 73 73 69 6f 6e 20 77 69 6c 6c 20 62 65 20 65 73 74 61 62 | .the.IPSec.session.will.be.estab |
| 15c460 | 6c 69 73 68 65 64 20 6f 6e 6c 79 20 61 66 74 65 72 20 69 6e 69 74 69 61 74 69 6f 6e 20 66 72 6f | lished.only.after.initiation.fro |
| 15c480 | 6d 20 61 20 72 65 6d 6f 74 65 20 70 65 65 72 2e 20 43 6f 75 6c 64 20 62 65 20 75 73 65 66 75 6c | m.a.remote.peer..Could.be.useful |
| 15c4a0 | 20 77 68 65 6e 20 74 68 65 72 65 20 69 73 20 6e 6f 20 64 69 72 65 63 74 20 63 6f 6e 6e 65 63 74 | .when.there.is.no.direct.connect |
| 15c4c0 | 69 76 69 74 79 20 74 6f 20 74 68 65 20 70 65 65 72 20 64 75 65 20 74 6f 20 66 69 72 65 77 61 6c | ivity.to.the.peer.due.to.firewal |
| 15c4e0 | 6c 20 6f 72 20 4e 41 54 20 69 6e 20 74 68 65 20 6d 69 64 64 6c 65 20 6f 66 20 74 68 65 20 6c 6f | l.or.NAT.in.the.middle.of.the.lo |
| 15c500 | 63 61 6c 20 61 6e 64 20 72 65 6d 6f 74 65 20 73 69 64 65 2e 00 60 60 72 65 73 74 61 72 74 60 60 | cal.and.remote.side..``restart`` |
| 15c520 | 20 69 6d 6d 65 64 69 61 74 65 6c 79 20 74 72 69 65 73 20 74 6f 20 72 65 2d 6e 65 67 6f 74 69 61 | .immediately.tries.to.re-negotia |
| 15c540 | 74 65 20 74 68 65 20 43 48 49 4c 44 5f 53 41 20 75 6e 64 65 72 20 61 20 66 72 65 73 68 20 49 4b | te.the.CHILD_SA.under.a.fresh.IK |
| 15c560 | 45 5f 53 41 3b 00 60 60 72 65 73 74 61 72 74 60 60 20 73 65 74 20 61 63 74 69 6f 6e 20 74 6f 20 | E_SA;.``restart``.set.action.to. |
| 15c580 | 72 65 73 74 61 72 74 3b 00 60 60 72 65 74 75 72 6e 60 60 3a 20 52 65 74 75 72 6e 20 66 72 6f 6d | restart;.``return``:.Return.from |
| 15c5a0 | 20 74 68 65 20 63 75 72 72 65 6e 74 20 63 68 61 69 6e 20 61 6e 64 20 63 6f 6e 74 69 6e 75 65 20 | .the.current.chain.and.continue. |
| 15c5c0 | 61 74 20 74 68 65 20 6e 65 78 74 20 72 75 6c 65 20 6f 66 20 74 68 65 20 6c 61 73 74 20 63 68 61 | at.the.next.rule.of.the.last.cha |
| 15c5e0 | 69 6e 2e 00 60 60 72 69 70 60 60 20 2d 20 52 6f 75 74 69 6e 67 20 49 6e 66 6f 72 6d 61 74 69 6f | in..``rip``.-.Routing.Informatio |
| 15c600 | 6e 20 50 72 6f 74 6f 63 6f 6c 20 28 52 49 50 29 00 60 60 72 69 70 6e 67 60 60 20 2d 20 52 6f 75 | n.Protocol.(RIP).``ripng``.-.Rou |
| 15c620 | 74 69 6e 67 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 20 6e 65 78 74 2d 67 | ting.Information.Protocol.next-g |
| 15c640 | 65 6e 65 72 61 74 69 6f 6e 20 28 49 50 76 36 29 20 28 52 49 50 6e 67 29 00 60 60 72 6f 75 6e 64 | eneration.(IPv6).(RIPng).``round |
| 15c660 | 2d 72 6f 62 69 6e 60 60 20 2d 20 52 6f 75 6e 64 2d 72 6f 62 69 6e 20 70 6f 6c 69 63 79 3a 20 54 | -robin``.-.Round-robin.policy:.T |
| 15c680 | 72 61 6e 73 6d 69 74 20 70 61 63 6b 65 74 73 20 69 6e 20 73 65 71 75 65 6e 74 69 61 6c 20 6f 72 | ransmit.packets.in.sequential.or |
| 15c6a0 | 64 65 72 20 66 72 6f 6d 20 74 68 65 20 66 69 72 73 74 20 61 76 61 69 6c 61 62 6c 65 20 73 6c 61 | der.from.the.first.available.sla |
| 15c6c0 | 76 65 20 74 68 72 6f 75 67 68 20 74 68 65 20 6c 61 73 74 2e 00 60 60 72 6f 75 6e 64 2d 72 6f 62 | ve.through.the.last..``round-rob |
| 15c6e0 | 69 6e 60 60 20 44 69 73 74 72 69 62 75 74 65 73 20 72 65 71 75 65 73 74 73 20 69 6e 20 61 20 63 | in``.Distributes.requests.in.a.c |
| 15c700 | 69 72 63 75 6c 61 72 20 6d 61 6e 6e 65 72 2c 20 73 65 71 75 65 6e 74 69 61 6c 6c 79 20 73 65 6e | ircular.manner,.sequentially.sen |
| 15c720 | 64 69 6e 67 20 65 61 63 68 20 72 65 71 75 65 73 74 20 74 6f 20 74 68 65 20 6e 65 78 74 20 73 65 | ding.each.request.to.the.next.se |
| 15c740 | 72 76 65 72 20 69 6e 20 6c 69 6e 65 00 60 60 72 6f 75 74 65 2d 66 69 6c 74 65 72 2d 74 72 61 6e | rver.in.line.``route-filter-tran |
| 15c760 | 73 6c 61 74 65 64 2d 76 34 60 60 20 2d 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 | slated-v4``.-...Well-known.commu |
| 15c780 | 6e 69 74 69 65 73 20 76 61 6c 75 65 20 52 4f 55 54 45 5f 46 49 4c 54 45 52 5f 54 52 41 4e 53 4c | nities.value.ROUTE_FILTER_TRANSL |
| 15c7a0 | 41 54 45 44 5f 76 34 20 30 78 46 46 46 46 30 30 30 32 00 60 60 72 6f 75 74 65 2d 66 69 6c 74 65 | ATED_v4.0xFFFF0002.``route-filte |
| 15c7c0 | 72 2d 74 72 61 6e 73 6c 61 74 65 64 2d 76 36 60 60 20 2d 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e | r-translated-v6``.-...Well-known |
| 15c7e0 | 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 52 4f 55 54 45 5f 46 49 4c 54 45 52 5f | .communities.value.ROUTE_FILTER_ |
| 15c800 | 54 52 41 4e 53 4c 41 54 45 44 5f 76 36 20 30 78 46 46 46 46 30 30 30 34 00 60 60 72 6f 75 74 65 | TRANSLATED_v6.0xFFFF0004.``route |
| 15c820 | 2d 66 69 6c 74 65 72 2d 76 34 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c | -filter-v4``.-..............Well |
| 15c840 | 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 52 4f 55 54 45 5f 46 | -known.communities.value.ROUTE_F |
| 15c860 | 49 4c 54 45 52 5f 76 34 20 30 78 46 46 46 46 30 30 30 33 00 60 60 72 6f 75 74 65 2d 66 69 6c 74 | ILTER_v4.0xFFFF0003.``route-filt |
| 15c880 | 65 72 2d 76 36 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 | er-v6``.-..............Well-know |
| 15c8a0 | 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 52 4f 55 54 45 5f 46 49 4c 54 45 52 | n.communities.value.ROUTE_FILTER |
| 15c8c0 | 5f 76 36 20 30 78 46 46 46 46 30 30 30 35 00 60 60 72 73 61 2d 6b 65 79 2d 6e 61 6d 65 60 60 20 | _v6.0xFFFF0005.``rsa-key-name``. |
| 15c8e0 | 2d 20 73 68 61 72 65 64 20 52 53 41 20 6b 65 79 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 | -.shared.RSA.key.for.authenticat |
| 15c900 | 69 6f 6e 2e 20 54 68 65 20 6b 65 79 20 6d 75 73 74 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 | ion..The.key.must.be.defined.in. |
| 15c920 | 74 68 65 20 60 60 73 65 74 20 76 70 6e 20 72 73 61 2d 6b 65 79 73 60 60 20 73 65 63 74 69 6f 6e | the.``set.vpn.rsa-keys``.section |
| 15c940 | 3b 00 60 60 72 73 61 60 60 20 2d 20 6f 70 74 69 6f 6e 73 20 66 6f 72 20 52 53 41 20 61 75 74 68 | ;.``rsa``.-.options.for.RSA.auth |
| 15c960 | 65 6e 74 69 63 61 74 69 6f 6e 20 6d 6f 64 65 3a 00 60 60 72 73 61 60 60 20 2d 20 75 73 65 20 73 | entication.mode:.``rsa``.-.use.s |
| 15c980 | 69 6d 70 6c 65 20 73 68 61 72 65 64 20 52 53 41 20 6b 65 79 2e 00 60 60 72 73 61 60 60 20 2d 20 | imple.shared.RSA.key..``rsa``.-. |
| 15c9a0 | 75 73 65 20 73 69 6d 70 6c 65 20 73 68 61 72 65 64 20 52 53 41 20 6b 65 79 2e 20 54 68 65 20 6b | use.simple.shared.RSA.key..The.k |
| 15c9c0 | 65 79 20 6d 75 73 74 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 65 20 60 60 73 65 74 20 | ey.must.be.defined.in.the.``set. |
| 15c9e0 | 76 70 6e 20 72 73 61 2d 6b 65 79 73 60 60 20 73 65 63 74 69 6f 6e 3b 00 60 60 73 65 63 72 65 74 | vpn.rsa-keys``.section;.``secret |
| 15ca00 | 60 60 20 2d 20 70 72 65 64 65 66 69 6e 65 64 20 73 68 61 72 65 64 20 73 65 63 72 65 74 2e 20 55 | ``.-.predefined.shared.secret..U |
| 15ca20 | 73 65 64 20 69 66 20 63 6f 6e 66 69 67 75 72 65 64 20 6d 6f 64 65 20 60 60 70 72 65 2d 73 68 61 | sed.if.configured.mode.``pre-sha |
| 15ca40 | 72 65 64 2d 73 65 63 72 65 74 60 60 3b 00 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 | red-secret``;.``set.firewall.bri |
| 15ca60 | 64 67 65 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 65 74 20 | dge.forward.filter....``..``set. |
| 15ca80 | 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e | firewall.bridge.input.filter.... |
| 15caa0 | 60 60 2e 00 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 6f 75 74 70 75 74 | ``..``set.firewall.bridge.output |
| 15cac0 | 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 | .filter....``..``set.firewall.br |
| 15cae0 | 69 64 67 65 20 70 72 65 72 6f 75 74 69 6e 67 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 | idge.prerouting.filter....``..`` |
| 15cb00 | 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 | set.firewall.ipv4.forward.filter |
| 15cb20 | 20 2e 2e 2e 60 60 2e 00 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 69 6e 70 75 | ....``..``set.firewall.ipv4.inpu |
| 15cb40 | 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 | t.filter....``..``set.firewall.i |
| 15cb60 | 70 76 34 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 65 74 20 66 | pv4.output.filter....``..``set.f |
| 15cb80 | 69 72 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 | irewall.ipv6.forward.filter....` |
| 15cba0 | 60 2e 00 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 69 6e 70 75 74 20 66 69 6c | `..``set.firewall.ipv6.input.fil |
| 15cbc0 | 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 6f | ter....``..``set.firewall.ipv6.o |
| 15cbe0 | 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 69 6e 67 6c 65 2d 75 73 65 | utput.filter....``..``single-use |
| 15cc00 | 72 2d 62 65 61 6d 66 6f 72 6d 65 65 60 60 20 2d 20 53 75 70 70 6f 72 74 20 66 6f 72 20 6f 70 65 | r-beamformee``.-.Support.for.ope |
| 15cc20 | 72 61 74 69 6f 6e 20 61 73 20 73 69 6e 67 6c 65 20 75 73 65 72 20 62 65 61 6d 66 6f 72 6d 65 65 | ration.as.single.user.beamformee |
| 15cc40 | 00 60 60 73 69 6e 67 6c 65 2d 75 73 65 72 2d 62 65 61 6d 66 6f 72 6d 65 72 60 60 20 2d 20 53 75 | .``single-user-beamformer``.-.Su |
| 15cc60 | 70 70 6f 72 74 20 66 6f 72 20 6f 70 65 72 61 74 69 6f 6e 20 61 73 20 73 69 6e 67 6c 65 20 75 73 | pport.for.operation.as.single.us |
| 15cc80 | 65 72 20 62 65 61 6d 66 6f 72 6d 65 72 00 60 60 73 6d 74 70 60 60 20 53 4d 54 50 20 70 72 6f 74 | er.beamformer.``smtp``.SMTP.prot |
| 15cca0 | 6f 63 6f 6c 20 63 68 65 63 6b 2e 00 60 60 73 6f 6e 6d 70 60 60 20 2d 20 4c 69 73 74 65 6e 20 66 | ocol.check..``sonmp``.-.Listen.f |
| 15ccc0 | 6f 72 20 53 4f 4e 4d 50 20 66 6f 72 20 4e 6f 72 74 65 6c 20 72 6f 75 74 65 72 73 2f 73 77 69 74 | or.SONMP.for.Nortel.routers/swit |
| 15cce0 | 63 68 65 73 00 60 60 73 6f 75 72 63 65 2d 61 64 64 72 65 73 73 60 60 20 44 69 73 74 72 69 62 75 | ches.``source-address``.Distribu |
| 15cd00 | 74 65 73 20 72 65 71 75 65 73 74 73 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 73 6f 75 72 63 65 | tes.requests.based.on.the.source |
| 15cd20 | 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 63 6c 69 65 6e 74 00 60 60 73 73 68 2d | .IP.address.of.the.client.``ssh- |
| 15cd40 | 64 73 73 60 60 00 60 60 73 73 68 2d 65 64 32 35 35 31 39 60 60 00 60 60 73 73 68 2d 72 73 61 20 | dss``.``ssh-ed25519``.``ssh-rsa. |
| 15cd60 | 41 41 41 41 42 33 4e 7a 61 43 31 79 63 32 45 41 41 41 41 42 41 41 2e 2e 2e 56 42 44 35 6c 4b 77 | AAAAB3NzaC1yc2EAAAABAA...VBD5lKw |
| 15cd80 | 45 57 42 20 75 73 65 72 6e 61 6d 65 40 68 6f 73 74 2e 65 78 61 6d 70 6c 65 2e 63 6f 6d 60 60 00 | EWB.username@host.example.com``. |
| 15cda0 | 60 60 73 73 68 2d 72 73 61 60 60 00 60 60 73 73 6c 2d 66 63 2d 73 6e 69 2d 65 6e 64 60 60 20 53 | ``ssh-rsa``.``ssl-fc-sni-end``.S |
| 15cdc0 | 53 4c 20 66 72 6f 6e 74 65 6e 64 20 6d 61 74 63 68 20 65 6e 64 20 6f 66 20 63 6f 6e 6e 65 63 74 | SL.frontend.match.end.of.connect |
| 15cde0 | 69 6f 6e 20 53 65 72 76 65 72 20 4e 61 6d 65 00 60 60 73 73 6c 2d 66 63 2d 73 6e 69 60 60 20 53 | ion.Server.Name.``ssl-fc-sni``.S |
| 15ce00 | 53 4c 20 66 72 6f 6e 74 65 6e 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 53 65 72 76 65 72 20 4e 61 | SL.frontend.connection.Server.Na |
| 15ce20 | 6d 65 20 49 6e 64 69 63 61 74 69 6f 6e 20 6d 61 74 63 68 00 60 60 73 74 61 72 74 60 60 20 74 72 | me.Indication.match.``start``.tr |
| 15ce40 | 69 65 73 20 74 6f 20 69 6d 6d 65 64 69 61 74 65 6c 79 20 72 65 2d 63 72 65 61 74 65 20 74 68 65 | ies.to.immediately.re-create.the |
| 15ce60 | 20 43 48 49 4c 44 5f 53 41 3b 00 60 60 73 74 61 74 69 63 60 60 20 2d 20 53 74 61 74 69 63 61 6c | .CHILD_SA;.``static``.-.Statical |
| 15ce80 | 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 72 6f 75 74 65 73 00 60 60 73 74 61 74 69 6f 6e 60 60 | ly.configured.routes.``station`` |
| 15cea0 | 20 2d 20 43 6f 6e 6e 65 63 74 73 20 74 6f 20 61 6e 6f 74 68 65 72 20 61 63 63 65 73 73 20 70 6f | .-.Connects.to.another.access.po |
| 15cec0 | 69 6e 74 00 60 60 73 74 61 74 75 73 20 32 30 30 2d 33 39 39 60 60 20 45 78 70 65 63 74 69 6e 67 | int.``status.200-399``.Expecting |
| 15cee0 | 20 61 20 6e 6f 6e 2d 66 61 69 6c 75 72 65 20 72 65 73 70 6f 6e 73 65 20 63 6f 64 65 00 60 60 73 | .a.non-failure.response.code.``s |
| 15cf00 | 74 61 74 75 73 20 32 30 30 60 60 20 45 78 70 65 63 74 69 6e 67 20 61 20 32 30 30 20 72 65 73 70 | tatus.200``.Expecting.a.200.resp |
| 15cf20 | 6f 6e 73 65 20 63 6f 64 65 00 60 60 73 74 72 69 6e 67 20 73 75 63 63 65 73 73 60 60 20 45 78 70 | onse.code.``string.success``.Exp |
| 15cf40 | 65 63 74 69 6e 67 20 74 68 65 20 73 74 72 69 6e 67 20 60 73 75 63 63 65 73 73 60 20 69 6e 20 74 | ecting.the.string.`success`.in.t |
| 15cf60 | 68 65 20 72 65 73 70 6f 6e 73 65 20 62 6f 64 79 00 60 60 73 79 6e 70 72 6f 78 79 60 60 3a 20 73 | he.response.body.``synproxy``:.s |
| 15cf80 | 79 6e 70 72 6f 78 79 20 74 68 65 20 70 61 63 6b 65 74 2e 00 60 60 73 79 73 63 74 6c 60 60 20 69 | ynproxy.the.packet..``sysctl``.i |
| 15cfa0 | 73 20 75 73 65 64 20 74 6f 20 6d 6f 64 69 66 79 20 6b 65 72 6e 65 6c 20 70 61 72 61 6d 65 74 65 | s.used.to.modify.kernel.paramete |
| 15cfc0 | 72 73 20 61 74 20 72 75 6e 74 69 6d 65 2e 20 20 54 68 65 20 70 61 72 61 6d 65 74 65 72 73 20 61 | rs.at.runtime...The.parameters.a |
| 15cfe0 | 76 61 69 6c 61 62 6c 65 20 61 72 65 20 74 68 6f 73 65 20 6c 69 73 74 65 64 20 75 6e 64 65 72 20 | vailable.are.those.listed.under. |
| 15d000 | 2f 70 72 6f 63 2f 73 79 73 2f 2e 00 60 60 74 61 62 6c 65 20 31 30 60 60 20 52 6f 75 74 69 6e 67 | /proc/sys/..``table.10``.Routing |
| 15d020 | 20 74 61 62 6c 65 20 75 73 65 64 20 66 6f 72 20 49 53 50 31 00 60 60 74 61 62 6c 65 20 31 30 60 | .table.used.for.ISP1.``table.10` |
| 15d040 | 60 20 52 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 75 73 65 64 20 66 6f 72 20 56 4c 41 4e 20 31 30 | `.Routing.table.used.for.VLAN.10 |
| 15d060 | 20 28 31 39 32 2e 31 36 38 2e 31 38 38 2e 30 2f 32 34 29 00 60 60 74 61 62 6c 65 20 31 31 60 60 | .(192.168.188.0/24).``table.11`` |
| 15d080 | 20 52 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 75 73 65 64 20 66 6f 72 20 49 53 50 32 00 60 60 74 | .Routing.table.used.for.ISP2.``t |
| 15d0a0 | 61 62 6c 65 20 31 31 60 60 20 52 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 75 73 65 64 20 66 6f 72 | able.11``.Routing.table.used.for |
| 15d0c0 | 20 56 4c 41 4e 20 31 31 20 28 31 39 32 2e 31 36 38 2e 31 38 39 2e 30 2f 32 34 29 00 60 60 74 61 | .VLAN.11.(192.168.189.0/24).``ta |
| 15d0e0 | 62 6c 65 60 60 20 2d 20 4e 6f 6e 2d 6d 61 69 6e 20 4b 65 72 6e 65 6c 20 52 6f 75 74 69 6e 67 20 | ble``.-.Non-main.Kernel.Routing. |
| 15d100 | 54 61 62 6c 65 00 60 60 74 61 72 67 65 74 60 60 3a 20 74 68 65 20 74 61 72 67 65 74 20 74 6f 20 | Table.``target``:.the.target.to. |
| 15d120 | 62 65 20 73 65 6e 74 20 49 43 4d 50 20 70 61 63 6b 65 74 73 20 74 6f 2c 20 61 64 64 72 65 73 73 | be.sent.ICMP.packets.to,.address |
| 15d140 | 20 63 61 6e 20 62 65 20 61 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 20 6f 72 20 68 6f 73 74 6e | .can.be.an.IPv4.address.or.hostn |
| 15d160 | 61 6d 65 00 60 60 74 65 73 74 2d 73 63 72 69 70 74 60 60 3a 20 41 20 75 73 65 72 20 64 65 66 69 | ame.``test-script``:.A.user.defi |
| 15d180 | 6e 65 64 20 73 63 72 69 70 74 20 6d 75 73 74 20 72 65 74 75 72 6e 20 30 20 74 6f 20 62 65 20 63 | ned.script.must.return.0.to.be.c |
| 15d1a0 | 6f 6e 73 69 64 65 72 65 64 20 73 75 63 63 65 73 73 66 75 6c 20 61 6e 64 20 6e 6f 6e 2d 7a 65 72 | onsidered.successful.and.non-zer |
| 15d1c0 | 6f 20 74 6f 20 66 61 69 6c 2e 20 53 63 72 69 70 74 73 20 61 72 65 20 6c 6f 63 61 74 65 64 20 69 | o.to.fail..Scripts.are.located.i |
| 15d1e0 | 6e 20 2f 63 6f 6e 66 69 67 2f 73 63 72 69 70 74 73 2c 20 66 6f 72 20 64 69 66 66 65 72 65 6e 74 | n./config/scripts,.for.different |
| 15d200 | 20 6c 6f 63 61 74 69 6f 6e 73 20 74 68 65 20 66 75 6c 6c 20 70 61 74 68 20 6e 65 65 64 73 20 74 | .locations.the.full.path.needs.t |
| 15d220 | 6f 20 62 65 20 70 72 6f 76 69 64 65 64 00 60 60 74 68 72 65 73 68 6f 6c 64 60 60 3a 20 60 60 62 | o.be.provided.``threshold``:.``b |
| 15d240 | 65 6c 6f 77 60 60 20 6f 72 20 60 60 61 62 6f 76 65 60 60 20 74 68 65 20 73 70 65 63 69 66 69 65 | elow``.or.``above``.the.specifie |
| 15d260 | 64 20 72 61 74 65 20 6c 69 6d 69 74 2e 00 60 60 74 68 72 6f 75 67 68 70 75 74 60 60 3a 20 41 20 | d.rate.limit..``throughput``:.A. |
| 15d280 | 73 65 72 76 65 72 20 70 72 6f 66 69 6c 65 20 66 6f 63 75 73 65 64 20 6f 6e 20 69 6d 70 72 6f 76 | server.profile.focused.on.improv |
| 15d2a0 | 69 6e 67 20 6e 65 74 77 6f 72 6b 20 74 68 72 6f 75 67 68 70 75 74 2e 20 54 68 69 73 20 70 72 6f | ing.network.throughput..This.pro |
| 15d2c0 | 66 69 6c 65 20 66 61 76 6f 72 73 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 6f 76 65 72 20 70 6f 77 | file.favors.performance.over.pow |
| 15d2e0 | 65 72 20 73 61 76 69 6e 67 73 20 62 79 20 73 65 74 74 69 6e 67 20 60 60 69 6e 74 65 6c 5f 70 73 | er.savings.by.setting.``intel_ps |
| 15d300 | 74 61 74 65 60 60 20 61 6e 64 20 60 60 6d 61 78 5f 70 65 72 66 5f 70 63 74 3d 31 30 30 60 60 20 | tate``.and.``max_perf_pct=100``. |
| 15d320 | 61 6e 64 20 69 6e 63 72 65 61 73 69 6e 67 20 6b 65 72 6e 65 6c 20 6e 65 74 77 6f 72 6b 20 62 75 | and.increasing.kernel.network.bu |
| 15d340 | 66 66 65 72 20 73 69 7a 65 73 2e 00 60 60 74 69 6d 65 31 2e 76 79 6f 73 2e 6e 65 74 60 60 00 60 | ffer.sizes..``time1.vyos.net``.` |
| 15d360 | 60 74 69 6d 65 32 2e 76 79 6f 73 2e 6e 65 74 60 60 00 60 60 74 69 6d 65 33 2e 76 79 6f 73 2e 6e | `time2.vyos.net``.``time3.vyos.n |
| 15d380 | 65 74 60 60 00 60 60 74 69 6d 65 6f 75 74 60 60 20 6b 65 65 70 2d 61 6c 69 76 65 20 74 69 6d 65 | et``.``timeout``.keep-alive.time |
| 15d3a0 | 6f 75 74 20 69 6e 20 73 65 63 6f 6e 64 73 20 3c 32 2d 38 36 34 30 30 3e 20 28 64 65 66 61 75 6c | out.in.seconds.<2-86400>.(defaul |
| 15d3c0 | 74 20 31 32 30 29 20 49 4b 45 76 31 20 6f 6e 6c 79 00 60 60 74 6f 6b 65 6e 60 60 20 75 73 65 20 | t.120).IKEv1.only.``token``.use. |
| 15d3e0 | 4a 57 54 20 74 6f 6b 65 6e 73 2e 00 60 60 74 72 61 6e 73 6d 69 74 2d 6c 6f 61 64 2d 62 61 6c 61 | JWT.tokens..``transmit-load-bala |
| 15d400 | 6e 63 65 60 60 20 2d 20 41 64 61 70 74 69 76 65 20 74 72 61 6e 73 6d 69 74 20 6c 6f 61 64 20 62 | nce``.-.Adaptive.transmit.load.b |
| 15d420 | 61 6c 61 6e 63 69 6e 67 3a 20 63 68 61 6e 6e 65 6c 20 62 6f 6e 64 69 6e 67 20 74 68 61 74 20 64 | alancing:.channel.bonding.that.d |
| 15d440 | 6f 65 73 20 6e 6f 74 20 72 65 71 75 69 72 65 20 61 6e 79 20 73 70 65 63 69 61 6c 20 73 77 69 74 | oes.not.require.any.special.swit |
| 15d460 | 63 68 20 73 75 70 70 6f 72 74 2e 00 60 60 74 72 61 6e 73 70 6f 72 74 60 60 20 74 72 61 6e 73 70 | ch.support..``transport``.transp |
| 15d480 | 6f 72 74 20 6d 6f 64 65 3b 00 60 60 74 72 61 70 60 60 20 20 69 6e 73 74 61 6c 6c 73 20 61 20 74 | ort.mode;.``trap``..installs.a.t |
| 15d4a0 | 72 61 70 20 70 6f 6c 69 63 79 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 63 61 74 63 68 20 6d 61 74 | rap.policy,.which.will.catch.mat |
| 15d4c0 | 63 68 69 6e 67 20 74 72 61 66 66 69 63 20 61 6e 64 20 74 72 69 65 73 20 74 6f 20 72 65 2d 6e 65 | ching.traffic.and.tries.to.re-ne |
| 15d4e0 | 67 6f 74 69 61 74 65 20 74 68 65 20 74 75 6e 6e 65 6c 20 6f 6e 2d 64 65 6d 61 6e 64 3b 00 60 60 | gotiate.the.tunnel.on-demand;.`` |
| 15d500 | 74 72 61 70 60 60 20 69 6e 73 74 61 6c 6c 73 20 61 20 74 72 61 70 20 70 6f 6c 69 63 79 20 66 6f | trap``.installs.a.trap.policy.fo |
| 15d520 | 72 20 74 68 65 20 43 48 49 4c 44 5f 53 41 3b 00 60 60 74 74 6c 2d 6c 69 6d 69 74 60 60 3a 20 46 | r.the.CHILD_SA;.``ttl-limit``:.F |
| 15d540 | 6f 72 20 74 68 65 20 55 44 50 20 54 54 4c 20 6c 69 6d 69 74 20 74 65 73 74 20 74 68 65 20 68 6f | or.the.UDP.TTL.limit.test.the.ho |
| 15d560 | 70 20 63 6f 75 6e 74 20 6c 69 6d 69 74 20 6d 75 73 74 20 62 65 20 73 70 65 63 69 66 69 65 64 2e | p.count.limit.must.be.specified. |
| 15d580 | 20 54 68 65 20 6c 69 6d 69 74 20 6d 75 73 74 20 62 65 20 73 68 6f 72 74 65 72 20 74 68 61 6e 20 | .The.limit.must.be.shorter.than. |
| 15d5a0 | 74 68 65 20 70 61 74 68 20 6c 65 6e 67 74 68 2c 20 61 6e 20 49 43 4d 50 20 74 69 6d 65 20 65 78 | the.path.length,.an.ICMP.time.ex |
| 15d5c0 | 70 69 72 65 64 20 6d 65 73 73 61 67 65 20 69 73 20 6e 65 65 64 65 64 20 74 6f 20 62 65 20 72 65 | pired.message.is.needed.to.be.re |
| 15d5e0 | 74 75 72 6e 65 64 20 66 6f 72 20 61 20 73 75 63 63 65 73 73 66 75 6c 20 74 65 73 74 2e 20 64 65 | turned.for.a.successful.test..de |
| 15d600 | 66 61 75 6c 74 20 31 00 60 60 74 74 79 53 4e 60 60 20 2d 20 53 65 72 69 61 6c 20 64 65 76 69 63 | fault.1.``ttySN``.-.Serial.devic |
| 15d620 | 65 20 6e 61 6d 65 00 60 60 74 74 79 55 53 42 58 60 60 20 2d 20 55 53 42 20 53 65 72 69 61 6c 20 | e.name.``ttyUSBX``.-.USB.Serial. |
| 15d640 | 64 65 76 69 63 65 20 6e 61 6d 65 00 60 60 74 75 6e 6e 65 6c 60 60 20 2d 20 64 65 66 69 6e 65 20 | device.name.``tunnel``.-.define. |
| 15d660 | 63 72 69 74 65 72 69 61 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 20 62 65 20 6d 61 74 63 68 | criteria.for.traffic.to.be.match |
| 15d680 | 65 64 20 66 6f 72 20 65 6e 63 72 79 70 74 69 6e 67 20 61 6e 64 20 73 65 6e 64 20 69 74 20 74 6f | ed.for.encrypting.and.send.it.to |
| 15d6a0 | 20 61 20 70 65 65 72 3a 00 60 60 74 75 6e 6e 65 6c 60 60 20 74 75 6e 6e 65 6c 20 6d 6f 64 65 20 | .a.peer:.``tunnel``.tunnel.mode. |
| 15d6c0 | 28 64 65 66 61 75 6c 74 29 3b 00 60 60 74 79 70 65 60 60 20 20 4c 6f 67 20 74 79 70 65 73 2e 00 | (default);.``type``..Log.types.. |
| 15d6e0 | 60 60 74 79 70 65 60 60 3a 20 53 70 65 63 69 66 79 20 74 68 65 20 74 79 70 65 20 6f 66 20 74 65 | ``type``:.Specify.the.type.of.te |
| 15d700 | 73 74 2e 20 74 79 70 65 20 63 61 6e 20 62 65 20 70 69 6e 67 2c 20 74 74 6c 20 6f 72 20 61 20 75 | st..type.can.be.ping,.ttl.or.a.u |
| 15d720 | 73 65 72 20 64 65 66 69 6e 65 64 20 73 63 72 69 70 74 00 60 60 75 73 65 2d 78 35 30 39 2d 69 64 | ser.defined.script.``use-x509-id |
| 15d740 | 60 60 20 2d 20 75 73 65 20 6c 6f 63 61 6c 20 49 44 20 66 72 6f 6d 20 78 35 30 39 20 63 65 72 74 | ``.-.use.local.ID.from.x509.cert |
| 15d760 | 69 66 69 63 61 74 65 2e 20 43 61 6e 6e 6f 74 20 62 65 20 75 73 65 64 20 77 68 65 6e 20 60 60 69 | ificate..Cannot.be.used.when.``i |
| 15d780 | 64 60 60 20 69 73 20 64 65 66 69 6e 65 64 3b 00 60 60 76 69 72 74 75 61 6c 2d 61 64 64 72 65 73 | d``.is.defined;.``virtual-addres |
| 15d7a0 | 73 60 60 20 2d 20 44 65 66 69 6e 65 73 20 61 20 76 69 72 74 75 61 6c 20 49 50 20 61 64 64 72 65 | s``.-.Defines.a.virtual.IP.addre |
| 15d7c0 | 73 73 20 77 68 69 63 68 20 69 73 20 72 65 71 75 65 73 74 65 64 20 62 79 20 74 68 65 20 69 6e 69 | ss.which.is.requested.by.the.ini |
| 15d7e0 | 74 69 61 74 6f 72 20 61 6e 64 20 6f 6e 65 20 6f 72 20 73 65 76 65 72 61 6c 20 49 50 76 34 20 61 | tiator.and.one.or.several.IPv4.a |
| 15d800 | 6e 64 2f 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 61 73 73 69 67 6e 65 | nd/or.IPv6.addresses.are.assigne |
| 15d820 | 64 20 66 72 6f 6d 20 6d 75 6c 74 69 70 6c 65 20 70 6f 6f 6c 73 20 62 79 20 74 68 65 20 72 65 73 | d.from.multiple.pools.by.the.res |
| 15d840 | 70 6f 6e 64 65 72 2e 00 60 60 76 69 72 74 75 61 6c 2d 69 70 60 60 20 41 6c 6c 6f 77 20 69 6e 73 | ponder..``virtual-ip``.Allow.ins |
| 15d860 | 74 61 6c 6c 20 76 69 72 74 75 61 6c 2d 69 70 20 61 64 64 72 65 73 73 65 73 2e 20 43 6f 6d 6d 61 | tall.virtual-ip.addresses..Comma |
| 15d880 | 20 73 65 70 61 72 61 74 65 64 20 6c 69 73 74 20 6f 66 20 76 69 72 74 75 61 6c 20 49 50 73 20 74 | .separated.list.of.virtual.IPs.t |
| 15d8a0 | 6f 20 72 65 71 75 65 73 74 20 69 6e 20 49 4b 45 76 32 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | o.request.in.IKEv2.configuration |
| 15d8c0 | 20 70 61 79 6c 6f 61 64 73 20 6f 72 20 49 4b 45 76 31 20 4d 6f 64 65 20 43 6f 6e 66 69 67 2e 20 | .payloads.or.IKEv1.Mode.Config.. |
| 15d8e0 | 54 68 65 20 77 69 6c 64 63 61 72 64 20 61 64 64 72 65 73 73 65 73 20 30 2e 30 2e 30 2e 30 20 61 | The.wildcard.addresses.0.0.0.0.a |
| 15d900 | 6e 64 20 3a 3a 20 72 65 71 75 65 73 74 20 61 6e 20 61 72 62 69 74 72 61 72 79 20 61 64 64 72 65 | nd.::.request.an.arbitrary.addre |
| 15d920 | 73 73 2c 20 73 70 65 63 69 66 69 63 20 61 64 64 72 65 73 73 65 73 20 6d 61 79 20 62 65 20 64 65 | ss,.specific.addresses.may.be.de |
| 15d940 | 66 69 6e 65 64 2e 20 54 68 65 20 72 65 73 70 6f 6e 64 65 72 20 6d 61 79 20 72 65 74 75 72 6e 20 | fined..The.responder.may.return. |
| 15d960 | 61 20 64 69 66 66 65 72 65 6e 74 20 61 64 64 72 65 73 73 2c 20 74 68 6f 75 67 68 2c 20 6f 72 20 | a.different.address,.though,.or. |
| 15d980 | 6e 6f 6e 65 20 61 74 20 61 6c 6c 2e 00 60 60 76 69 72 74 75 61 6c 2d 69 70 60 60 20 41 6c 6c 6f | none.at.all..``virtual-ip``.Allo |
| 15d9a0 | 77 73 20 74 68 65 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 20 6f 66 20 76 69 72 74 75 61 6c 2d 69 | ws.the.installation.of.virtual-i |
| 15d9c0 | 70 20 61 64 64 72 65 73 73 65 73 2e 20 41 20 63 6f 6d 6d 61 00 60 60 76 69 72 74 75 61 6c 2d 69 | p.addresses..A.comma.``virtual-i |
| 15d9e0 | 70 60 60 20 41 6c 6c 6f 77 73 20 74 6f 20 69 6e 73 74 61 6c 6c 20 76 69 72 74 75 61 6c 2d 69 70 | p``.Allows.to.install.virtual-ip |
| 15da00 | 20 61 64 64 72 65 73 73 65 73 2e 20 43 6f 6d 6d 61 20 73 65 70 61 72 61 74 65 64 20 6c 69 73 74 | .addresses..Comma.separated.list |
| 15da20 | 20 6f 66 20 76 69 72 74 75 61 6c 20 49 50 73 20 74 6f 20 72 65 71 75 65 73 74 20 69 6e 20 49 4b | .of.virtual.IPs.to.request.in.IK |
| 15da40 | 45 76 32 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 79 6c 6f 61 64 73 20 6f 72 20 49 4b | Ev2.configuration.payloads.or.IK |
| 15da60 | 45 76 31 20 4d 6f 64 65 20 43 6f 6e 66 69 67 2e 20 54 68 65 20 77 69 6c 64 63 61 72 64 20 61 64 | Ev1.Mode.Config..The.wildcard.ad |
| 15da80 | 64 72 65 73 73 65 73 20 30 2e 30 2e 30 2e 30 20 61 6e 64 20 3a 3a 20 72 65 71 75 65 73 74 20 61 | dresses.0.0.0.0.and.::.request.a |
| 15daa0 | 6e 20 61 72 62 69 74 72 61 72 79 20 61 64 64 72 65 73 73 2c 20 73 70 65 63 69 66 69 63 20 61 64 | n.arbitrary.address,.specific.ad |
| 15dac0 | 64 72 65 73 73 65 73 20 6d 61 79 20 62 65 20 64 65 66 69 6e 65 64 2e 20 54 68 65 20 72 65 73 70 | dresses.may.be.defined..The.resp |
| 15dae0 | 6f 6e 64 65 72 20 6d 61 79 20 72 65 74 75 72 6e 20 61 20 64 69 66 66 65 72 65 6e 74 20 61 64 64 | onder.may.return.a.different.add |
| 15db00 | 72 65 73 73 2c 20 74 68 6f 75 67 68 2c 20 6f 72 20 6e 6f 6e 65 20 61 74 20 61 6c 6c 2e 20 44 65 | ress,.though,.or.none.at.all..De |
| 15db20 | 66 69 6e 65 20 74 68 65 20 60 60 76 69 72 74 75 61 6c 2d 61 64 64 72 65 73 73 60 60 20 6f 70 74 | fine.the.``virtual-address``.opt |
| 15db40 | 69 6f 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 | ion.to.configure.the.IP.address. |
| 15db60 | 69 6e 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 68 69 65 72 61 72 63 68 79 2e 00 60 60 76 6e 63 | in.site-to-site.hierarchy..``vnc |
| 15db80 | 60 60 20 2d 20 56 69 72 74 75 61 6c 20 4e 65 74 77 6f 72 6b 20 43 6f 6e 74 72 6f 6c 20 28 56 4e | ``.-.Virtual.Network.Control.(VN |
| 15dba0 | 43 29 00 60 60 76 74 69 60 60 20 2d 20 75 73 65 20 61 20 56 54 49 20 69 6e 74 65 72 66 61 63 65 | C).``vti``.-.use.a.VTI.interface |
| 15dbc0 | 20 66 6f 72 20 74 72 61 66 66 69 63 20 65 6e 63 72 79 70 74 69 6f 6e 2e 20 41 6e 79 20 74 72 61 | .for.traffic.encryption..Any.tra |
| 15dbe0 | 66 66 69 63 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 73 65 6e 64 20 74 6f 20 56 54 49 20 | ffic,.which.will.be.send.to.VTI. |
| 15dc00 | 69 6e 74 65 72 66 61 63 65 20 77 69 6c 6c 20 62 65 20 65 6e 63 72 79 70 74 65 64 20 61 6e 64 20 | interface.will.be.encrypted.and. |
| 15dc20 | 73 65 6e 64 20 74 6f 20 74 68 69 73 20 70 65 65 72 2e 20 55 73 69 6e 67 20 56 54 49 20 6d 61 6b | send.to.this.peer..Using.VTI.mak |
| 15dc40 | 65 73 20 49 50 53 65 63 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 75 63 68 20 66 6c 65 78 | es.IPSec.configuration.much.flex |
| 15dc60 | 69 62 6c 65 20 61 6e 64 20 65 61 73 69 65 72 20 69 6e 20 63 6f 6d 70 6c 65 78 20 73 69 74 75 61 | ible.and.easier.in.complex.situa |
| 15dc80 | 74 69 6f 6e 2c 20 61 6e 64 20 61 6c 6c 6f 77 73 20 74 6f 20 64 79 6e 61 6d 69 63 61 6c 6c 79 20 | tion,.and.allows.to.dynamically. |
| 15dca0 | 61 64 64 2f 64 65 6c 65 74 65 20 72 65 6d 6f 74 65 20 6e 65 74 77 6f 72 6b 73 2c 20 72 65 61 63 | add/delete.remote.networks,.reac |
| 15dcc0 | 68 61 62 6c 65 20 76 69 61 20 61 20 70 65 65 72 2c 20 61 73 20 69 6e 20 74 68 69 73 20 6d 6f 64 | hable.via.a.peer,.as.in.this.mod |
| 15dce0 | 65 20 72 6f 75 74 65 72 20 64 6f 6e 27 74 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 20 61 64 | e.router.don't.need.to.create.ad |
| 15dd00 | 64 69 74 69 6f 6e 61 6c 20 53 41 2f 70 6f 6c 69 63 79 20 66 6f 72 20 65 61 63 68 20 72 65 6d 6f | ditional.SA/policy.for.each.remo |
| 15dd20 | 74 65 20 6e 65 74 77 6f 72 6b 3a 00 60 60 76 79 6f 73 5f 63 65 72 74 60 60 20 69 73 20 61 20 6c | te.network:.``vyos_cert``.is.a.l |
| 15dd40 | 65 61 66 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 20 75 73 65 64 20 74 6f 20 69 | eaf.server.certificate.used.to.i |
| 15dd60 | 64 65 6e 74 69 66 79 20 74 68 65 20 56 79 4f 53 20 72 6f 75 74 65 72 2c 20 73 69 67 6e 65 64 20 | dentify.the.VyOS.router,.signed. |
| 15dd80 | 62 79 20 74 68 65 20 73 65 72 76 65 72 20 69 6e 74 65 72 6d 65 64 69 61 72 79 20 43 41 2e 00 60 | by.the.server.intermediary.CA..` |
| 15dda0 | 60 76 79 6f 73 5f 63 6c 69 65 6e 74 5f 63 61 60 60 20 61 6e 64 20 60 60 76 79 6f 73 5f 73 65 72 | `vyos_client_ca``.and.``vyos_ser |
| 15ddc0 | 76 65 72 5f 63 61 60 60 20 61 72 65 20 69 6e 74 65 72 6d 65 64 69 61 72 79 20 63 65 72 74 69 66 | ver_ca``.are.intermediary.certif |
| 15dde0 | 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 69 65 73 2c 20 77 68 69 63 68 20 61 72 65 20 73 69 67 | icate.authorities,.which.are.sig |
| 15de00 | 6e 65 64 20 62 79 20 74 68 65 20 72 6f 6f 74 20 43 41 2e 00 60 60 76 79 6f 73 5f 65 78 61 6d 70 | ned.by.the.root.CA..``vyos_examp |
| 15de20 | 6c 65 5f 75 73 65 72 60 60 20 69 73 20 61 20 6c 65 61 66 20 63 6c 69 65 6e 74 20 63 65 72 74 69 | le_user``.is.a.leaf.client.certi |
| 15de40 | 66 69 63 61 74 65 20 75 73 65 64 20 74 6f 20 69 64 65 6e 74 69 66 79 20 61 20 75 73 65 72 2c 20 | ficate.used.to.identify.a.user,. |
| 15de60 | 73 69 67 6e 65 64 20 62 79 20 63 6c 69 65 6e 74 20 69 6e 74 65 72 6d 65 64 69 61 72 79 20 43 41 | signed.by.client.intermediary.CA |
| 15de80 | 2e 00 60 60 76 79 6f 73 5f 72 6f 6f 74 5f 63 61 60 60 20 69 73 20 74 68 65 20 72 6f 6f 74 20 63 | ..``vyos_root_ca``.is.the.root.c |
| 15dea0 | 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 2e 00 60 60 78 35 30 39 60 60 20 2d | ertificate.authority..``x509``.- |
| 15dec0 | 20 6f 70 74 69 6f 6e 73 20 66 6f 72 20 78 35 30 39 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e | .options.for.x509.authentication |
| 15dee0 | 20 6d 6f 64 65 3a 00 60 60 78 35 30 39 60 60 20 2d 20 75 73 65 20 63 65 72 74 69 66 69 63 61 74 | .mode:.``x509``.-.use.certificat |
| 15df00 | 65 73 20 69 6e 66 72 61 73 74 72 75 63 74 75 72 65 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 | es.infrastructure.for.authentica |
| 15df20 | 74 69 6f 6e 2e 00 60 60 78 6f 72 2d 68 61 73 68 60 60 20 2d 20 58 4f 52 20 70 6f 6c 69 63 79 3a | tion..``xor-hash``.-.XOR.policy: |
| 15df40 | 20 54 72 61 6e 73 6d 69 74 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 | .Transmit.based.on.the.selected. |
| 15df60 | 74 72 61 6e 73 6d 69 74 20 68 61 73 68 20 70 6f 6c 69 63 79 2e 20 20 54 68 65 20 64 65 66 61 75 | transmit.hash.policy...The.defau |
| 15df80 | 6c 74 20 70 6f 6c 69 63 79 20 69 73 20 61 20 73 69 6d 70 6c 65 20 5b 28 73 6f 75 72 63 65 20 4d | lt.policy.is.a.simple.[(source.M |
| 15dfa0 | 41 43 20 61 64 64 72 65 73 73 20 58 4f 52 27 64 20 77 69 74 68 20 64 65 73 74 69 6e 61 74 69 6f | AC.address.XOR'd.with.destinatio |
| 15dfc0 | 6e 20 4d 41 43 20 61 64 64 72 65 73 73 20 58 4f 52 20 70 61 63 6b 65 74 20 74 79 70 65 20 49 44 | n.MAC.address.XOR.packet.type.ID |
| 15dfe0 | 29 20 6d 6f 64 75 6c 6f 20 73 6c 61 76 65 20 63 6f 75 6e 74 5d 2e 20 41 6c 74 65 72 6e 61 74 65 | ).modulo.slave.count]..Alternate |
| 15e000 | 20 74 72 61 6e 73 6d 69 74 20 70 6f 6c 69 63 69 65 73 20 6d 61 79 20 62 65 20 73 65 6c 65 63 74 | .transmit.policies.may.be.select |
| 15e020 | 65 64 20 76 69 61 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 68 61 73 68 2d 70 6f 6c 69 63 79 60 | ed.via.the.:cfgcmd:`hash-policy` |
| 15e040 | 20 6f 70 74 69 6f 6e 2c 20 64 65 73 63 72 69 62 65 64 20 62 65 6c 6f 77 2e 00 60 60 79 65 73 60 | .option,.described.below..``yes` |
| 15e060 | 60 20 65 6e 61 62 6c 65 20 72 65 6d 6f 74 65 20 68 6f 73 74 20 72 65 2d 61 75 74 68 65 6e 74 69 | `.enable.remote.host.re-authenti |
| 15e080 | 63 61 74 69 6f 6e 20 64 75 72 69 6e 67 20 61 6e 20 49 4b 45 20 72 65 6b 65 79 3b 00 60 61 6c 6c | cation.during.an.IKE.rekey;.`all |
| 15e0a0 | 60 3a 20 41 6c 6c 20 72 65 63 65 69 76 65 64 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 62 65 20 | `:.All.received.packets.will.be. |
| 15e0c0 | 74 69 6d 65 73 74 61 6d 70 65 64 2e 00 60 69 67 6e 6f 72 65 60 3a 20 4e 6f 20 63 6f 72 72 65 63 | timestamped..`ignore`:.No.correc |
| 15e0e0 | 74 69 6f 6e 20 69 73 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 63 6c 6f 63 6b 20 66 6f 72 | tion.is.applied.to.the.clock.for |
| 15e100 | 20 74 68 65 20 6c 65 61 70 20 73 65 63 6f 6e 64 2e 20 54 68 65 20 63 6c 6f 63 6b 20 77 69 6c 6c | .the.leap.second..The.clock.will |
| 15e120 | 20 62 65 20 63 6f 72 72 65 63 74 65 64 20 6c 61 74 65 72 20 69 6e 20 6e 6f 72 6d 61 6c 20 6f 70 | .be.corrected.later.in.normal.op |
| 15e140 | 65 72 61 74 69 6f 6e 20 77 68 65 6e 20 6e 65 77 20 6d 65 61 73 75 72 65 6d 65 6e 74 73 20 61 72 | eration.when.new.measurements.ar |
| 15e160 | 65 20 6d 61 64 65 20 61 6e 64 20 74 68 65 20 65 73 74 69 6d 61 74 65 64 20 6f 66 66 73 65 74 20 | e.made.and.the.estimated.offset. |
| 15e180 | 69 6e 63 6c 75 64 65 73 20 74 68 65 20 6f 6e 65 20 73 65 63 6f 6e 64 20 65 72 72 6f 72 2e 00 60 | includes.the.one.second.error..` |
| 15e1a0 | 6e 6f 6e 65 60 3a 20 4e 6f 20 72 65 63 65 69 76 65 64 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 | none`:.No.received.packets.will. |
| 15e1c0 | 62 65 20 74 69 6d 65 73 74 61 6d 70 65 64 2e 20 48 61 72 64 77 61 72 65 20 74 69 6d 65 73 74 61 | be.timestamped..Hardware.timesta |
| 15e1e0 | 6d 70 69 6e 67 20 6f 66 20 74 72 61 6e 73 6d 69 74 74 65 64 20 70 61 63 6b 65 74 73 20 77 69 6c | mping.of.transmitted.packets.wil |
| 15e200 | 6c 20 73 74 69 6c 6c 20 62 65 20 6c 65 76 65 72 61 67 65 64 2c 20 69 66 20 73 75 70 70 6f 72 74 | l.still.be.leveraged,.if.support |
| 15e220 | 65 64 20 62 79 20 74 68 65 20 4e 49 43 2e 00 60 6e 74 70 60 3a 20 4f 6e 6c 79 20 72 65 63 65 69 | ed.by.the.NIC..`ntp`:.Only.recei |
| 15e240 | 76 65 64 20 20 4e 54 50 20 70 72 6f 74 6f 63 6f 6c 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 62 | ved..NTP.protocol.packets.will.b |
| 15e260 | 65 20 74 69 6d 65 73 74 61 6d 70 65 64 2e 00 60 70 74 70 60 3a 20 4f 6e 6c 79 20 72 65 63 65 69 | e.timestamped..`ptp`:.Only.recei |
| 15e280 | 76 65 64 20 50 54 50 20 70 72 6f 74 6f 63 6f 6c 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 62 65 | ved.PTP.protocol.packets.will.be |
| 15e2a0 | 20 74 69 6d 65 73 74 61 6d 70 65 64 2e 20 43 6f 6d 62 69 6e 65 64 20 77 69 74 68 20 74 68 65 20 | .timestamped..Combined.with.the. |
| 15e2c0 | 50 54 50 20 74 72 61 6e 73 70 6f 72 74 20 66 6f 72 20 4e 54 50 20 70 61 63 6b 65 74 73 2c 20 74 | PTP.transport.for.NTP.packets,.t |
| 15e2e0 | 68 69 73 20 63 61 6e 20 62 65 20 6c 65 76 65 72 61 67 65 64 20 74 6f 20 74 61 6b 65 20 61 64 76 | his.can.be.leveraged.to.take.adv |
| 15e300 | 61 6e 74 61 67 65 20 6f 66 20 68 61 72 64 77 61 72 65 20 74 69 6d 65 73 74 61 6d 70 69 6e 67 20 | antage.of.hardware.timestamping. |
| 15e320 | 6f 6e 20 4e 49 43 73 20 74 68 61 74 20 6f 6e 6c 79 20 73 75 70 70 6f 72 74 20 74 68 65 20 70 74 | on.NICs.that.only.support.the.pt |
| 15e340 | 70 20 66 69 6c 74 65 72 20 6d 6f 64 65 2e 00 60 73 6d 65 61 72 60 3a 20 57 68 65 6e 20 73 6d 65 | p.filter.mode..`smear`:.When.sme |
| 15e360 | 61 72 69 6e 67 20 61 20 6c 65 61 70 20 73 65 63 6f 6e 64 2c 20 74 68 65 20 6c 65 61 70 20 73 74 | aring.a.leap.second,.the.leap.st |
| 15e380 | 61 74 75 73 20 69 73 20 73 75 70 70 72 65 73 73 65 64 20 6f 6e 20 74 68 65 20 73 65 72 76 65 72 | atus.is.suppressed.on.the.server |
| 15e3a0 | 20 61 6e 64 20 74 68 65 20 73 65 72 76 65 64 20 74 69 6d 65 20 69 73 20 63 6f 72 72 65 63 74 65 | .and.the.served.time.is.correcte |
| 15e3c0 | 64 20 73 6c 6f 77 6c 79 20 62 79 20 73 6c 65 77 69 6e 67 20 69 6e 73 74 65 61 64 20 6f 66 20 73 | d.slowly.by.slewing.instead.of.s |
| 15e3e0 | 74 65 70 70 69 6e 67 2e 20 54 68 65 20 63 6c 69 65 6e 74 73 20 64 6f 20 6e 6f 74 20 6e 65 65 64 | tepping..The.clients.do.not.need |
| 15e400 | 20 61 6e 79 20 73 70 65 63 69 61 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 73 20 74 68 | .any.special.configuration.as.th |
| 15e420 | 65 79 20 64 6f 20 6e 6f 74 20 6b 6e 6f 77 20 74 68 65 72 65 20 69 73 20 61 6e 79 20 6c 65 61 70 | ey.do.not.know.there.is.any.leap |
| 15e440 | 20 73 65 63 6f 6e 64 20 61 6e 64 20 74 68 65 79 20 66 6f 6c 6c 6f 77 20 74 68 65 20 73 65 72 76 | .second.and.they.follow.the.serv |
| 15e460 | 65 72 20 74 69 6d 65 20 77 68 69 63 68 20 65 76 65 6e 74 75 61 6c 6c 79 20 62 72 69 6e 67 73 20 | er.time.which.eventually.brings. |
| 15e480 | 74 68 65 6d 20 62 61 63 6b 20 74 6f 20 55 54 43 2e 20 43 61 72 65 20 6d 75 73 74 20 62 65 20 74 | them.back.to.UTC..Care.must.be.t |
| 15e4a0 | 61 6b 65 6e 20 74 6f 20 65 6e 73 75 72 65 20 74 68 65 79 20 75 73 65 20 6f 6e 6c 79 20 4e 54 50 | aken.to.ensure.they.use.only.NTP |
| 15e4c0 | 20 73 65 72 76 65 72 73 20 77 68 69 63 68 20 73 6d 65 61 72 20 74 68 65 20 6c 65 61 70 20 73 65 | .servers.which.smear.the.leap.se |
| 15e4e0 | 63 6f 6e 64 20 69 6e 20 65 78 61 63 74 6c 79 20 74 68 65 20 73 61 6d 65 20 77 61 79 20 66 6f 72 | cond.in.exactly.the.same.way.for |
| 15e500 | 20 73 79 6e 63 68 72 6f 6e 69 73 61 74 69 6f 6e 2e 00 60 73 6f 75 72 63 65 2d 61 64 64 72 65 73 | .synchronisation..`source-addres |
| 15e520 | 73 60 20 61 6e 64 20 60 73 6f 75 72 63 65 2d 69 6e 74 65 72 66 61 63 65 60 20 63 61 6e 20 6e 6f | s`.and.`source-interface`.can.no |
| 15e540 | 74 20 62 65 20 75 73 65 64 20 61 74 20 74 68 65 20 73 61 6d 65 20 74 69 6d 65 2e 00 60 73 79 73 | t.be.used.at.the.same.time..`sys |
| 15e560 | 74 65 6d 60 3a 20 57 68 65 6e 20 69 6e 73 65 72 74 69 6e 67 20 61 20 6c 65 61 70 20 73 65 63 6f | tem`:.When.inserting.a.leap.seco |
| 15e580 | 6e 64 2c 20 74 68 65 20 6b 65 72 6e 65 6c 20 73 74 65 70 73 20 74 68 65 20 73 79 73 74 65 6d 20 | nd,.the.kernel.steps.the.system. |
| 15e5a0 | 63 6c 6f 63 6b 20 62 61 63 6b 77 61 72 64 73 20 62 79 20 6f 6e 65 20 73 65 63 6f 6e 64 20 77 68 | clock.backwards.by.one.second.wh |
| 15e5c0 | 65 6e 20 74 68 65 20 63 6c 6f 63 6b 20 67 65 74 73 20 74 6f 20 30 30 3a 30 30 3a 30 30 20 55 54 | en.the.clock.gets.to.00:00:00.UT |
| 15e5e0 | 43 2e 20 57 68 65 6e 20 64 65 6c 65 74 69 6e 67 20 61 20 6c 65 61 70 20 73 65 63 6f 6e 64 2c 20 | C..When.deleting.a.leap.second,. |
| 15e600 | 69 74 20 73 74 65 70 73 20 66 6f 72 77 61 72 64 20 62 79 20 6f 6e 65 20 73 65 63 6f 6e 64 20 77 | it.steps.forward.by.one.second.w |
| 15e620 | 68 65 6e 20 74 68 65 20 63 6c 6f 63 6b 20 67 65 74 73 20 74 6f 20 32 33 3a 35 39 3a 35 39 20 55 | hen.the.clock.gets.to.23:59:59.U |
| 15e640 | 54 43 2e 00 60 74 69 6d 65 7a 6f 6e 65 60 3a 20 54 68 69 73 20 64 69 72 65 63 74 69 76 65 20 73 | TC..`timezone`:.This.directive.s |
| 15e660 | 70 65 63 69 66 69 65 73 20 61 20 74 69 6d 65 7a 6f 6e 65 20 69 6e 20 74 68 65 20 73 79 73 74 65 | pecifies.a.timezone.in.the.syste |
| 15e680 | 6d 20 74 69 6d 65 7a 6f 6e 65 20 64 61 74 61 62 61 73 65 20 77 68 69 63 68 20 63 68 72 6f 6e 79 | m.timezone.database.which.chrony |
| 15e6a0 | 64 20 63 61 6e 20 75 73 65 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 77 68 65 6e 20 77 69 6c 6c | d.can.use.to.determine.when.will |
| 15e6c0 | 20 74 68 65 20 6e 65 78 74 20 6c 65 61 70 20 73 65 63 6f 6e 64 20 6f 63 63 75 72 20 61 6e 64 20 | .the.next.leap.second.occur.and. |
| 15e6e0 | 77 68 61 74 20 69 73 20 74 68 65 20 63 75 72 72 65 6e 74 20 6f 66 66 73 65 74 20 62 65 74 77 65 | what.is.the.current.offset.betwe |
| 15e700 | 65 6e 20 54 41 49 20 61 6e 64 20 55 54 43 2e 20 49 74 20 77 69 6c 6c 20 70 65 72 69 6f 64 69 63 | en.TAI.and.UTC..It.will.periodic |
| 15e720 | 61 6c 6c 79 20 63 68 65 63 6b 20 69 66 20 32 33 3a 35 39 3a 35 39 20 61 6e 64 20 32 33 3a 35 39 | ally.check.if.23:59:59.and.23:59 |
| 15e740 | 3a 36 30 20 61 72 65 20 76 61 6c 69 64 20 74 69 6d 65 73 20 69 6e 20 74 68 65 20 74 69 6d 65 7a | :60.are.valid.times.in.the.timez |
| 15e760 | 6f 6e 65 2e 20 54 68 69 73 20 6e 6f 72 6d 61 6c 6c 79 20 77 6f 72 6b 73 20 77 69 74 68 20 74 68 | one..This.normally.works.with.th |
| 15e780 | 65 20 72 69 67 68 74 2f 55 54 43 20 74 69 6d 65 7a 6f 6e 65 20 77 68 69 63 68 20 69 73 20 74 68 | e.right/UTC.timezone.which.is.th |
| 15e7a0 | 65 20 64 65 66 61 75 6c 74 00 60 74 77 65 65 74 20 62 79 20 45 76 69 6c 4d 6f 67 60 5f 2c 20 32 | e.default.`tweet.by.EvilMog`_,.2 |
| 15e7c0 | 30 32 30 2d 30 32 2d 32 31 00 61 20 62 61 6e 64 77 69 64 74 68 20 74 65 73 74 20 6f 76 65 72 20 | 020-02-21.a.bandwidth.test.over. |
| 15e7e0 | 74 68 65 20 56 50 4e 20 67 6f 74 20 74 68 65 73 65 20 72 65 73 75 6c 74 73 3a 00 61 20 62 6c 61 | the.VPN.got.these.results:.a.bla |
| 15e800 | 6e 6b 20 69 6e 64 69 63 61 74 65 73 20 74 68 61 74 20 6e 6f 20 74 65 73 74 20 68 61 73 20 62 65 | nk.indicates.that.no.test.has.be |
| 15e820 | 65 6e 20 63 61 72 72 69 65 64 20 6f 75 74 00 61 65 73 32 35 36 20 45 6e 63 72 79 70 74 69 6f 6e | en.carried.out.aes256.Encryption |
| 15e840 | 00 61 6c 65 72 74 00 61 6c 6c 00 61 6e 20 52 44 20 2f 20 52 54 4c 49 53 54 00 61 6e 20 69 6e 74 | .alert.all.an.RD./.RTLIST.an.int |
| 15e860 | 65 72 66 61 63 65 20 77 69 74 68 20 61 20 6e 65 78 74 68 6f 70 00 61 6e 79 3a 20 61 6e 79 20 49 | erface.with.a.nexthop.any:.any.I |
| 15e880 | 50 20 61 64 64 72 65 73 73 20 74 6f 20 6d 61 74 63 68 2e 00 61 6e 79 3a 20 61 6e 79 20 49 50 76 | P.address.to.match..any:.any.IPv |
| 15e8a0 | 36 20 61 64 64 72 65 73 73 20 74 6f 20 6d 61 74 63 68 2e 00 61 75 74 68 00 61 75 74 68 6f 72 69 | 6.address.to.match..auth.authori |
| 15e8c0 | 7a 61 74 69 6f 6e 00 61 75 74 6f 20 2d 20 69 6e 74 65 72 66 61 63 65 20 64 75 70 6c 65 78 20 73 | zation.auto.-.interface.duplex.s |
| 15e8e0 | 65 74 74 69 6e 67 20 69 73 20 61 75 74 6f 2d 6e 65 67 6f 74 69 61 74 65 64 00 61 75 74 6f 20 2d | etting.is.auto-negotiated.auto.- |
| 15e900 | 20 69 6e 74 65 72 66 61 63 65 20 73 70 65 65 64 20 69 73 20 61 75 74 6f 2d 6e 65 67 6f 74 69 61 | .interface.speed.is.auto-negotia |
| 15e920 | 74 65 64 00 62 67 70 64 00 62 6f 6e 64 69 6e 67 00 62 6f 6f 74 2d 73 69 7a 65 00 62 6f 6f 74 66 | ted.bgpd.bonding.boot-size.bootf |
| 15e940 | 69 6c 65 2d 6e 61 6d 65 00 62 6f 6f 74 66 69 6c 65 2d 6e 61 6d 65 2c 20 66 69 6c 65 6e 61 6d 65 | ile-name.bootfile-name,.filename |
| 15e960 | 00 62 6f 6f 74 66 69 6c 65 2d 73 65 72 76 65 72 00 62 6f 6f 74 66 69 6c 65 2d 73 69 7a 65 00 62 | .bootfile-server.bootfile-size.b |
| 15e980 | 72 69 64 67 65 00 63 6c 69 65 6e 74 20 65 78 61 6d 70 6c 65 20 28 64 65 62 69 61 6e 20 39 29 00 | ridge.client.example.(debian.9). |
| 15e9a0 | 63 6c 69 65 6e 74 2d 70 72 65 66 69 78 2d 6c 65 6e 67 74 68 00 63 6c 6f 63 6b 00 63 6c 6f 63 6b | client-prefix-length.clock.clock |
| 15e9c0 | 20 64 61 65 6d 6f 6e 20 28 6e 6f 74 65 20 32 29 00 63 72 69 74 00 63 72 6f 6e 00 64 61 65 6d 6f | .daemon.(note.2).crit.cron.daemo |
| 15e9e0 | 6e 00 64 64 63 6c 69 65 6e 74 5f 20 68 61 73 20 61 6e 6f 74 68 65 72 20 77 61 79 20 74 6f 20 64 | n.ddclient_.has.another.way.to.d |
| 15ea00 | 65 74 65 72 6d 69 6e 65 20 74 68 65 20 57 41 4e 20 49 50 20 61 64 64 72 65 73 73 2e 20 54 68 69 | etermine.the.WAN.IP.address..Thi |
| 15ea20 | 73 20 69 73 20 63 6f 6e 74 72 6f 6c 6c 65 64 20 62 79 3a 00 64 64 63 6c 69 65 6e 74 5f 20 75 73 | s.is.controlled.by:.ddclient_.us |
| 15ea40 | 65 73 20 74 77 6f 20 6d 65 74 68 6f 64 73 20 74 6f 20 75 70 64 61 74 65 20 61 20 44 4e 53 20 72 | es.two.methods.to.update.a.DNS.r |
| 15ea60 | 65 63 6f 72 64 2e 20 54 68 65 20 66 69 72 73 74 20 6f 6e 65 20 77 69 6c 6c 20 73 65 6e 64 20 75 | ecord..The.first.one.will.send.u |
| 15ea80 | 70 64 61 74 65 73 20 64 69 72 65 63 74 6c 79 20 74 6f 20 74 68 65 20 44 4e 53 20 64 61 65 6d 6f | pdates.directly.to.the.DNS.daemo |
| 15eaa0 | 6e 2c 20 69 6e 20 63 6f 6d 70 6c 69 61 6e 63 65 20 77 69 74 68 20 3a 72 66 63 3a 60 32 31 33 36 | n,.in.compliance.with.:rfc:`2136 |
| 15eac0 | 60 2e 20 54 68 65 20 73 65 63 6f 6e 64 20 6f 6e 65 20 69 6e 76 6f 6c 76 65 73 20 61 20 74 68 69 | `..The.second.one.involves.a.thi |
| 15eae0 | 72 64 20 70 61 72 74 79 20 73 65 72 76 69 63 65 2c 20 6c 69 6b 65 20 44 79 6e 44 4e 53 2e 63 6f | rd.party.service,.like.DynDNS.co |
| 15eb00 | 6d 20 6f 72 20 61 6e 79 20 6f 74 68 65 72 20 73 69 6d 69 6c 61 72 20 77 65 62 73 69 74 65 2e 20 | m.or.any.other.similar.website.. |
| 15eb20 | 54 68 69 73 20 6d 65 74 68 6f 64 20 75 73 65 73 20 48 54 54 50 20 72 65 71 75 65 73 74 73 20 74 | This.method.uses.HTTP.requests.t |
| 15eb40 | 6f 20 74 72 61 6e 73 6d 69 74 20 74 68 65 20 6e 65 77 20 49 50 20 61 64 64 72 65 73 73 2e 20 59 | o.transmit.the.new.IP.address..Y |
| 15eb60 | 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 62 6f 74 68 20 69 6e 20 56 79 4f 53 2e 00 64 | ou.can.configure.both.in.VyOS..d |
| 15eb80 | 64 63 6c 69 65 6e 74 5f 20 75 73 65 73 20 74 77 6f 20 6d 65 74 68 6f 64 73 20 74 6f 20 75 70 64 | dclient_.uses.two.methods.to.upd |
| 15eba0 | 61 74 65 20 61 20 44 4e 53 20 72 65 63 6f 72 64 2e 20 54 68 65 20 66 69 72 73 74 20 6f 6e 65 20 | ate.a.DNS.record..The.first.one. |
| 15ebc0 | 77 69 6c 6c 20 73 65 6e 64 20 75 70 64 61 74 65 73 20 64 69 72 65 63 74 6c 79 20 74 6f 20 74 68 | will.send.updates.directly.to.th |
| 15ebe0 | 65 20 44 4e 53 20 64 61 65 6d 6f 6e 2c 20 69 6e 20 63 6f 6d 70 6c 69 61 6e 63 65 20 77 69 74 68 | e.DNS.daemon,.in.compliance.with |
| 15ec00 | 20 3a 72 66 63 3a 60 32 31 33 36 60 2e 20 54 68 65 20 73 65 63 6f 6e 64 20 6f 6e 65 20 69 6e 76 | .:rfc:`2136`..The.second.one.inv |
| 15ec20 | 6f 6c 76 65 73 20 61 20 74 68 69 72 64 20 70 61 72 74 79 20 73 65 72 76 69 63 65 2c 20 6c 69 6b | olves.a.third.party.service,.lik |
| 15ec40 | 65 20 44 79 6e 44 4e 53 2e 63 6f 6d 20 6f 72 20 61 6e 79 20 6f 74 68 65 72 20 73 75 63 68 20 73 | e.DynDNS.com.or.any.other.such.s |
| 15ec60 | 65 72 76 69 63 65 20 70 72 6f 76 69 64 65 72 2e 20 54 68 69 73 20 6d 65 74 68 6f 64 20 75 73 65 | ervice.provider..This.method.use |
| 15ec80 | 73 20 48 54 54 50 20 72 65 71 75 65 73 74 73 20 74 6f 20 74 72 61 6e 73 6d 69 74 20 74 68 65 20 | s.HTTP.requests.to.transmit.the. |
| 15eca0 | 6e 65 77 20 49 50 20 61 64 64 72 65 73 73 2e 20 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 | new.IP.address..You.can.configur |
| 15ecc0 | 65 20 62 6f 74 68 20 69 6e 20 56 79 4f 53 2e 00 64 64 63 6c 69 65 6e 74 5f 20 77 69 6c 6c 20 73 | e.both.in.VyOS..ddclient_.will.s |
| 15ece0 | 6b 69 70 20 61 6e 79 20 61 64 64 72 65 73 73 20 6c 6f 63 61 74 65 64 20 62 65 66 6f 72 65 20 74 | kip.any.address.located.before.t |
| 15ed00 | 68 65 20 73 74 72 69 6e 67 20 73 65 74 20 69 6e 20 60 3c 70 61 74 74 65 72 6e 3e 60 2e 00 64 65 | he.string.set.in.`<pattern>`..de |
| 15ed20 | 62 75 67 00 64 65 63 72 65 6d 65 6e 74 2d 6c 69 66 65 74 69 6d 65 00 64 65 66 61 75 6c 74 20 6d | bug.decrement-lifetime.default.m |
| 15ed40 | 69 6e 2d 74 68 72 65 73 68 6f 6c 64 00 64 65 66 61 75 6c 74 2d 6c 65 61 73 65 2d 74 69 6d 65 2c | in-threshold.default-lease-time, |
| 15ed60 | 20 6d 61 78 2d 6c 65 61 73 65 2d 74 69 6d 65 00 64 65 66 61 75 6c 74 2d 6c 69 66 65 74 69 6d 65 | .max-lease-time.default-lifetime |
| 15ed80 | 00 64 65 66 61 75 6c 74 2d 70 72 65 66 65 72 65 6e 63 65 00 64 65 66 61 75 6c 74 2d 72 6f 75 74 | .default-preference.default-rout |
| 15eda0 | 65 72 00 64 65 70 72 65 63 61 74 65 2d 70 72 65 66 69 78 00 64 65 73 74 69 6e 61 74 69 6f 6e 2d | er.deprecate-prefix.destination- |
| 15edc0 | 68 61 73 68 69 6e 67 00 64 68 63 70 2d 73 65 72 76 65 72 2d 69 64 65 6e 74 69 66 69 65 72 00 64 | hashing.dhcp-server-identifier.d |
| 15ede0 | 69 72 65 63 74 00 64 69 72 65 63 74 6f 72 79 00 64 69 73 61 62 6c 65 3a 20 4e 6f 20 73 6f 75 72 | irect.directory.disable:.No.sour |
| 15ee00 | 63 65 20 76 61 6c 69 64 61 74 69 6f 6e 00 64 6e 73 73 6c 00 64 6f 6d 61 69 6e 2d 6e 61 6d 65 00 | ce.validation.dnssl.domain-name. |
| 15ee20 | 64 6f 6d 61 69 6e 2d 6e 61 6d 65 2d 73 65 72 76 65 72 73 00 64 6f 6d 61 69 6e 2d 73 65 61 72 63 | domain-name-servers.domain-searc |
| 15ee40 | 68 00 65 6d 65 72 67 00 65 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 20 49 43 4d 50 76 | h.emerg.enable.or.disable..ICMPv |
| 15ee60 | 34 20 72 65 64 69 72 65 63 74 20 6d 65 73 73 61 67 65 73 20 73 65 6e 64 20 62 79 20 56 79 4f 53 | 4.redirect.messages.send.by.VyOS |
| 15ee80 | 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 | .The.following.system.parameter. |
| 15eea0 | 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 65 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 | will.be.altered:.enable.or.disab |
| 15eec0 | 6c 65 20 49 43 4d 50 76 34 20 72 65 64 69 72 65 63 74 20 6d 65 73 73 61 67 65 73 20 73 65 6e 64 | le.ICMPv4.redirect.messages.send |
| 15eee0 | 20 62 79 20 56 79 4f 53 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 | .by.VyOS.The.following.system.pa |
| 15ef00 | 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 65 6e 61 62 6c 65 20 | rameter.will.be.altered:.enable. |
| 15ef20 | 6f 72 20 64 69 73 61 62 6c 65 20 6f 66 20 49 43 4d 50 76 34 20 6f 72 20 49 43 4d 50 76 36 20 72 | or.disable.of.ICMPv4.or.ICMPv6.r |
| 15ef40 | 65 64 69 72 65 63 74 20 6d 65 73 73 61 67 65 73 20 61 63 63 65 70 74 65 64 20 62 79 20 56 79 4f | edirect.messages.accepted.by.VyO |
| 15ef60 | 53 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 | S..The.following.system.paramete |
| 15ef80 | 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 65 6e 61 62 6c 65 20 6f 72 20 64 69 73 | r.will.be.altered:.enable.or.dis |
| 15efa0 | 61 62 6c 65 20 74 68 65 20 6c 6f 67 67 69 6e 67 20 6f 66 20 6d 61 72 74 69 61 6e 20 49 50 76 34 | able.the.logging.of.martian.IPv4 |
| 15efc0 | 20 70 61 63 6b 65 74 73 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 | .packets..The.following.system.p |
| 15efe0 | 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 65 72 72 00 65 74 | arameter.will.be.altered:.err.et |
| 15f000 | 68 65 72 6e 65 74 00 65 78 61 63 74 2d 6d 61 74 63 68 3a 20 65 78 61 63 74 20 6d 61 74 63 68 20 | hernet.exact-match:.exact.match. |
| 15f020 | 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 70 72 65 66 69 78 65 73 2e 00 65 78 63 6c 75 64 65 | of.the.network.prefixes..exclude |
| 15f040 | 00 66 61 69 6c 6f 76 65 72 00 66 61 73 74 3a 20 52 65 71 75 65 73 74 20 70 61 72 74 6e 65 72 20 | .failover.fast:.Request.partner. |
| 15f060 | 74 6f 20 74 72 61 6e 73 6d 69 74 20 4c 41 43 50 44 55 73 20 65 76 65 72 79 20 31 20 73 65 63 6f | to.transmit.LACPDUs.every.1.seco |
| 15f080 | 6e 64 00 66 69 6c 65 20 3c 66 69 6c 65 20 6e 61 6d 65 3e 00 66 69 6c 74 65 72 2d 6c 69 73 74 00 | nd.file.<file.name>.filter-list. |
| 15f0a0 | 66 74 70 00 66 75 6c 6c 20 2d 20 61 6c 77 61 79 73 20 75 73 65 20 66 75 6c 6c 2d 64 75 70 6c 65 | ftp.full.-.always.use.full-duple |
| 15f0c0 | 78 00 67 65 6e 65 76 65 00 68 61 6c 66 20 2d 20 61 6c 77 61 79 73 20 75 73 65 20 68 61 6c 66 2d | x.geneve.half.-.always.use.half- |
| 15f0e0 | 64 75 70 6c 65 78 00 68 6f 70 2d 6c 69 6d 69 74 00 68 6f 73 74 3a 20 73 69 6e 67 6c 65 20 68 6f | duplex.hop-limit.host:.single.ho |
| 15f100 | 73 74 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 6d 61 74 63 68 2e 00 68 74 74 70 73 3a 2f 2f | st.IP.address.to.match..https:// |
| 15f120 | 61 63 63 65 73 73 2e 72 65 64 68 61 74 2e 63 6f 6d 2f 73 69 74 65 73 2f 64 65 66 61 75 6c 74 2f | access.redhat.com/sites/default/ |
| 15f140 | 66 69 6c 65 73 2f 61 74 74 61 63 68 6d 65 6e 74 73 2f 32 30 31 35 30 31 2d 70 65 72 66 2d 62 72 | files/attachments/201501-perf-br |
| 15f160 | 69 65 66 2d 6c 6f 77 2d 6c 61 74 65 6e 63 79 2d 74 75 6e 69 6e 67 2d 72 68 65 6c 37 2d 76 32 2e | ief-low-latency-tuning-rhel7-v2. |
| 15f180 | 31 2e 70 64 66 00 68 74 74 70 73 3a 2f 2f 63 6f 6d 6d 75 6e 69 74 79 2e 6f 70 65 6e 76 70 6e 2e | 1.pdf.https://community.openvpn. |
| 15f1a0 | 6e 65 74 2f 6f 70 65 6e 76 70 6e 2f 77 69 6b 69 2f 44 61 74 61 43 68 61 6e 6e 65 6c 4f 66 66 6c | net/openvpn/wiki/DataChannelOffl |
| 15f1c0 | 6f 61 64 2f 46 65 61 74 75 72 65 73 00 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 6b 65 72 6e 65 6c | oad/Features.https://docs.kernel |
| 15f1e0 | 2e 6f 72 67 2f 61 64 6d 69 6e 2d 67 75 69 64 65 2f 70 6d 2f 61 6d 64 2d 70 73 74 61 74 65 2e 68 | .org/admin-guide/pm/amd-pstate.h |
| 15f200 | 74 6d 6c 00 69 66 20 74 68 65 72 65 20 69 73 20 61 20 73 75 70 70 6f 72 74 65 64 20 64 65 76 69 | tml.if.there.is.a.supported.devi |
| 15f220 | 63 65 2c 20 65 6e 61 62 6c 65 20 49 6e 74 65 6c c2 ae 20 51 41 54 00 69 66 20 74 68 65 72 65 20 | ce,.enable.Intel...QAT.if.there. |
| 15f240 | 69 73 20 6e 6f 6e 20 64 65 76 69 63 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 73 | is.non.device.the.command.will.s |
| 15f260 | 68 6f 77 20 60 60 60 4e 6f 20 51 41 54 20 64 65 76 69 63 65 20 66 6f 75 6e 64 60 60 60 00 69 6e | how.```No.QAT.device.found```.in |
| 15f280 | 66 6f 00 69 6e 68 65 72 69 74 20 6d 61 74 63 68 65 73 20 66 72 6f 6d 20 61 6e 6f 74 68 65 72 20 | fo.inherit.matches.from.another. |
| 15f2a0 | 67 72 6f 75 70 00 69 6e 74 65 72 76 61 6c 00 69 6e 76 61 6c 69 64 00 69 6e 76 65 72 73 65 2d 6d | group.interval.invalid.inverse-m |
| 15f2c0 | 61 74 63 68 3a 20 6e 65 74 77 6f 72 6b 2f 6e 65 74 6d 61 73 6b 20 74 6f 20 6d 61 74 63 68 20 28 | atch:.network/netmask.to.match.( |
| 15f2e0 | 72 65 71 75 69 72 65 73 20 6e 65 74 77 6f 72 6b 20 62 65 20 64 65 66 69 6e 65 64 29 2e 00 69 70 | requires.network.be.defined)..ip |
| 15f300 | 2d 66 6f 72 77 61 72 64 69 6e 67 00 69 73 69 73 64 00 69 74 20 63 61 6e 20 62 65 20 75 73 65 64 | -forwarding.isisd.it.can.be.used |
| 15f320 | 20 77 69 74 68 20 61 6e 79 20 4e 49 43 00 69 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 77 69 74 | .with.any.NIC.it.can.be.used.wit |
| 15f340 | 68 20 61 6e 79 20 4e 49 43 2c 00 69 74 20 64 6f 65 73 20 6e 6f 74 20 69 6e 63 72 65 61 73 65 20 | h.any.NIC,.it.does.not.increase. |
| 15f360 | 68 61 72 64 77 61 72 65 20 64 65 76 69 63 65 20 69 6e 74 65 72 72 75 70 74 20 72 61 74 65 20 28 | hardware.device.interrupt.rate.( |
| 15f380 | 61 6c 74 68 6f 75 67 68 20 69 74 20 64 6f 65 73 20 69 6e 74 72 6f 64 75 63 65 20 69 6e 74 65 72 | although.it.does.introduce.inter |
| 15f3a0 | 2d 70 72 6f 63 65 73 73 6f 72 20 69 6e 74 65 72 72 75 70 74 73 20 28 49 50 49 73 29 29 2e 00 69 | -processor.interrupts.(IPIs))..i |
| 15f3c0 | 74 20 64 6f 65 73 20 6e 6f 74 20 69 6e 63 72 65 61 73 65 20 68 61 72 64 77 61 72 65 20 64 65 76 | t.does.not.increase.hardware.dev |
| 15f3e0 | 69 63 65 20 69 6e 74 65 72 72 75 70 74 20 72 61 74 65 2c 20 61 6c 74 68 6f 75 67 68 20 69 74 20 | ice.interrupt.rate,.although.it. |
| 15f400 | 64 6f 65 73 20 69 6e 74 72 6f 64 75 63 65 20 69 6e 74 65 72 2d 70 72 6f 63 65 73 73 6f 72 20 69 | does.introduce.inter-processor.i |
| 15f420 | 6e 74 65 72 72 75 70 74 73 20 28 49 50 49 73 29 00 6b 65 72 6e 00 6c 32 74 70 76 33 00 6c 64 70 | nterrupts.(IPIs).kern.l2tpv3.ldp |
| 15f440 | 64 00 6c 65 61 73 65 00 6c 65 61 73 74 2d 63 6f 6e 6e 65 63 74 69 6f 6e 00 6c 65 66 74 20 6c 6f | d.lease.least-connection.left.lo |
| 15f460 | 63 61 6c 5f 69 70 3a 20 31 39 32 2e 31 36 38 2e 30 2e 31 30 20 23 20 56 50 4e 20 47 61 74 65 77 | cal_ip:.192.168.0.10.#.VPN.Gatew |
| 15f480 | 61 79 2c 20 62 65 68 69 6e 64 20 4e 41 54 20 64 65 76 69 63 65 00 6c 65 66 74 20 6c 6f 63 61 6c | ay,.behind.NAT.device.left.local |
| 15f4a0 | 5f 69 70 3a 20 60 31 39 38 2e 35 31 2e 31 30 30 2e 33 60 20 23 20 73 65 72 76 65 72 20 73 69 64 | _ip:.`198.51.100.3`.#.server.sid |
| 15f4c0 | 65 20 57 41 4e 20 49 50 00 6c 65 66 74 20 70 75 62 6c 69 63 5f 69 70 3a 31 37 32 2e 31 38 2e 32 | e.WAN.IP.left.public_ip:172.18.2 |
| 15f4e0 | 30 31 2e 31 30 00 6c 65 66 74 20 73 75 62 6e 65 74 3a 20 60 31 39 32 2e 31 36 38 2e 30 2e 30 2f | 01.10.left.subnet:.`192.168.0.0/ |
| 15f500 | 32 34 60 20 73 69 74 65 31 2c 20 73 65 72 76 65 72 20 73 69 64 65 20 28 69 2e 65 2e 20 6c 6f 63 | 24`.site1,.server.side.(i.e..loc |
| 15f520 | 61 6c 69 74 79 2c 20 61 63 74 75 61 6c 6c 79 20 74 68 65 72 65 20 69 73 20 6e 6f 20 63 6c 69 65 | ality,.actually.there.is.no.clie |
| 15f540 | 6e 74 20 6f 72 20 73 65 72 76 65 72 20 72 6f 6c 65 73 29 00 6c 69 6e 6b 2d 6d 74 75 00 6c 6f 63 | nt.or.server.roles).link-mtu.loc |
| 15f560 | 61 6c 20 75 73 65 20 30 20 28 6c 6f 63 61 6c 30 29 00 6c 6f 63 61 6c 20 75 73 65 20 31 20 28 6c | al.use.0.(local0).local.use.1.(l |
| 15f580 | 6f 63 61 6c 31 29 00 6c 6f 63 61 6c 20 75 73 65 20 32 20 28 6c 6f 63 61 6c 32 29 00 6c 6f 63 61 | ocal1).local.use.2.(local2).loca |
| 15f5a0 | 6c 20 75 73 65 20 33 20 28 6c 6f 63 61 6c 33 29 00 6c 6f 63 61 6c 20 75 73 65 20 34 20 28 6c 6f | l.use.3.(local3).local.use.4.(lo |
| 15f5c0 | 63 61 6c 34 29 00 6c 6f 63 61 6c 20 75 73 65 20 35 20 28 6c 6f 63 61 6c 35 29 00 6c 6f 63 61 6c | cal4).local.use.5.(local5).local |
| 15f5e0 | 20 75 73 65 20 37 20 28 6c 6f 63 61 6c 37 29 00 6c 6f 63 61 6c 30 00 6c 6f 63 61 6c 31 00 6c 6f | .use.7.(local7).local0.local1.lo |
| 15f600 | 63 61 6c 32 00 6c 6f 63 61 6c 33 00 6c 6f 63 61 6c 34 00 6c 6f 63 61 6c 35 00 6c 6f 63 61 6c 36 | cal2.local3.local4.local5.local6 |
| 15f620 | 00 6c 6f 63 61 6c 37 00 6c 6f 63 61 6c 69 74 79 2d 62 61 73 65 64 2d 6c 65 61 73 74 2d 63 6f 6e | .local7.locality-based-least-con |
| 15f640 | 6e 65 63 74 69 6f 6e 00 6c 6f 67 61 6c 65 72 74 00 6c 6f 67 61 75 64 69 74 00 6c 6f 6f 73 65 3a | nection.logalert.logaudit.loose: |
| 15f660 | 20 45 61 63 68 20 69 6e 63 6f 6d 69 6e 67 20 70 61 63 6b 65 74 27 73 20 73 6f 75 72 63 65 20 61 | .Each.incoming.packet's.source.a |
| 15f680 | 64 64 72 65 73 73 20 69 73 20 61 6c 73 6f 20 74 65 73 74 65 64 20 61 67 61 69 6e 73 74 20 74 68 | ddress.is.also.tested.against.th |
| 15f6a0 | 65 20 46 49 42 20 61 6e 64 20 69 66 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 | e.FIB.and.if.the.source.address. |
| 15f6c0 | 69 73 20 6e 6f 74 20 72 65 61 63 68 61 62 6c 65 20 76 69 61 20 61 6e 79 20 69 6e 74 65 72 66 61 | is.not.reachable.via.any.interfa |
| 15f6e0 | 63 65 20 74 68 65 20 70 61 63 6b 65 74 20 63 68 65 63 6b 20 77 69 6c 6c 20 66 61 69 6c 2e 00 6c | ce.the.packet.check.will.fail..l |
| 15f700 | 70 72 00 6d 44 4e 53 20 52 65 70 65 61 74 65 72 00 6d 44 4e 53 20 72 65 70 65 61 74 65 72 20 63 | pr.mDNS.Repeater.mDNS.repeater.c |
| 15f720 | 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 72 65 2d 62 72 6f 61 64 63 61 73 74 | an.be.configured.to.re-broadcast |
| 15f740 | 20 6f 6e 6c 79 20 73 70 65 63 69 66 69 63 20 73 65 72 76 69 63 65 73 2e 20 42 79 20 64 65 66 61 | .only.specific.services..By.defa |
| 15f760 | 75 6c 74 2c 20 61 6c 6c 20 73 65 72 76 69 63 65 73 20 61 72 65 20 72 65 2d 62 72 6f 61 64 63 61 | ult,.all.services.are.re-broadca |
| 15f780 | 73 74 65 64 2e 00 6d 44 4e 53 20 72 65 70 65 61 74 65 72 20 63 61 6e 20 62 65 20 65 6e 61 62 6c | sted..mDNS.repeater.can.be.enabl |
| 15f7a0 | 65 64 20 65 69 74 68 65 72 20 6f 6e 20 49 50 76 34 20 73 6f 63 6b 65 74 20 6f 72 20 6f 6e 20 49 | ed.either.on.IPv4.socket.or.on.I |
| 15f7c0 | 50 76 36 20 73 6f 63 6b 65 74 20 6f 72 20 62 6f 74 68 20 74 6f 20 72 65 2d 62 72 6f 61 64 63 61 | Pv6.socket.or.both.to.re-broadca |
| 15f7e0 | 73 74 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 6d 44 4e 53 20 72 65 70 65 61 74 65 72 20 77 69 | st..By.default,.mDNS.repeater.wi |
| 15f800 | 6c 6c 20 6c 69 73 74 65 6e 20 6f 6e 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 2e | ll.listen.on.both.IPv4.and.IPv6. |
| 15f820 | 00 6d 44 4e 53 20 72 65 70 65 61 74 65 72 20 63 61 6e 20 62 65 20 74 65 6d 70 6f 72 61 72 69 6c | .mDNS.repeater.can.be.temporaril |
| 15f840 | 79 20 64 69 73 61 62 6c 65 64 20 77 69 74 68 6f 75 74 20 64 65 6c 65 74 69 6e 67 20 74 68 65 20 | y.disabled.without.deleting.the. |
| 15f860 | 73 65 72 76 69 63 65 20 75 73 69 6e 67 00 6d 61 69 6c 00 6d 61 6e 61 67 65 64 2d 66 6c 61 67 00 | service.using.mail.managed-flag. |
| 15f880 | 6d 61 74 63 68 2d 66 72 61 67 3a 20 53 65 63 6f 6e 64 20 61 6e 64 20 66 75 72 74 68 65 72 20 66 | match-frag:.Second.and.further.f |
| 15f8a0 | 72 61 67 6d 65 6e 74 73 20 6f 66 20 66 72 61 67 6d 65 6e 74 65 64 20 70 61 63 6b 65 74 73 2e 00 | ragments.of.fragmented.packets.. |
| 15f8c0 | 6d 61 74 63 68 2d 69 70 73 65 63 3a 20 6d 61 74 63 68 20 69 6e 62 6f 75 6e 64 20 49 50 73 65 63 | match-ipsec:.match.inbound.IPsec |
| 15f8e0 | 20 70 61 63 6b 65 74 73 2e 00 6d 61 74 63 68 2d 6e 6f 6e 2d 66 72 61 67 3a 20 48 65 61 64 20 66 | .packets..match-non-frag:.Head.f |
| 15f900 | 72 61 67 6d 65 6e 74 73 20 6f 72 20 75 6e 66 72 61 67 6d 65 6e 74 65 64 20 70 61 63 6b 65 74 73 | ragments.or.unfragmented.packets |
| 15f920 | 2e 00 6d 61 74 63 68 2d 6e 6f 6e 65 3a 20 6d 61 74 63 68 20 69 6e 62 6f 75 6e 64 20 6e 6f 6e 2d | ..match-none:.match.inbound.non- |
| 15f940 | 49 50 73 65 63 20 70 61 63 6b 65 74 73 2e 00 6d 69 6e 69 6d 61 6c 20 63 6f 6e 66 69 67 00 6d 6f | IPsec.packets..minimal.config.mo |
| 15f960 | 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 72 65 6c 61 74 65 64 20 49 47 50 20 20 2d 20 3a 72 | re.information.related.IGP..-.:r |
| 15f980 | 65 66 3a 60 72 6f 75 74 69 6e 67 2d 69 73 69 73 60 00 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 | ef:`routing-isis`.more.informati |
| 15f9a0 | 6f 6e 20 72 65 6c 61 74 65 64 20 49 47 50 20 20 2d 20 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d | on.related.IGP..-.:ref:`routing- |
| 15f9c0 | 6f 73 70 66 60 00 6e 61 6d 65 2d 73 65 72 76 65 72 00 6e 65 74 62 69 6f 73 2d 6e 61 6d 65 2d 73 | ospf`.name-server.netbios-name-s |
| 15f9e0 | 65 72 76 65 72 73 00 6e 65 74 77 6f 72 6b 3a 20 6e 65 74 77 6f 72 6b 2f 6e 65 74 6d 61 73 6b 20 | ervers.network:.network/netmask. |
| 15fa00 | 74 6f 20 6d 61 74 63 68 20 28 72 65 71 75 69 72 65 73 20 69 6e 76 65 72 73 65 2d 6d 61 74 63 68 | to.match.(requires.inverse-match |
| 15fa20 | 20 62 65 20 64 65 66 69 6e 65 64 29 20 42 55 47 2c 20 4e 4f 20 69 6e 76 65 72 74 2d 6d 61 74 63 | .be.defined).BUG,.NO.invert-matc |
| 15fa40 | 68 20 6f 70 74 69 6f 6e 20 69 6e 20 61 63 63 65 73 73 2d 6c 69 73 74 36 00 6e 65 74 77 6f 72 6b | h.option.in.access-list6.network |
| 15fa60 | 3a 20 6e 65 74 77 6f 72 6b 2f 6e 65 74 6d 61 73 6b 20 74 6f 20 6d 61 74 63 68 20 28 72 65 71 75 | :.network/netmask.to.match.(requ |
| 15fa80 | 69 72 65 73 20 69 6e 76 65 72 73 65 2d 6d 61 74 63 68 20 62 65 20 64 65 66 69 6e 65 64 29 2e 00 | ires.inverse-match.be.defined).. |
| 15faa0 | 6e 65 74 77 6f 72 6b 73 3b 00 6e 65 77 73 00 6e 65 78 74 2d 73 65 72 76 65 72 00 6e 6f 2d 61 75 | networks;.news.next-server.no-au |
| 15fac0 | 74 6f 6e 6f 6d 6f 75 73 2d 66 6c 61 67 00 6e 6f 2d 6f 6e 2d 6c 69 6e 6b 2d 66 6c 61 67 00 6e 6f | tonomous-flag.no-on-link-flag.no |
| 15fae0 | 74 66 6f 75 6e 64 00 6e 6f 74 69 63 65 00 6e 74 70 00 6e 74 70 2d 73 65 72 76 65 72 00 6e 74 70 | tfound.notice.ntp.ntp-server.ntp |
| 15fb00 | 2d 73 65 72 76 65 72 73 00 6f 6e 65 20 72 75 6c 65 20 77 69 74 68 20 61 20 4c 41 4e 20 28 69 6e | -servers.one.rule.with.a.LAN.(in |
| 15fb20 | 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 29 20 61 6e 64 20 74 68 65 20 57 41 4e 20 28 69 6e | bound-interface).and.the.WAN.(in |
| 15fb40 | 74 65 72 66 61 63 65 29 2e 00 6f 70 65 6e 76 70 6e 00 6f 73 70 66 36 64 00 6f 73 70 66 64 00 6f | terface)..openvpn.ospf6d.ospfd.o |
| 15fb60 | 73 70 66 64 20 73 75 70 70 6f 72 74 73 20 4f 70 61 71 75 65 20 4c 53 41 20 3a 72 66 63 3a 60 32 | spfd.supports.Opaque.LSA.:rfc:`2 |
| 15fb80 | 33 37 30 60 20 61 73 20 70 61 72 74 69 61 6c 20 73 75 70 70 6f 72 74 20 66 6f 72 20 4d 50 4c 53 | 370`.as.partial.support.for.MPLS |
| 15fba0 | 20 54 72 61 66 66 69 63 20 45 6e 67 69 6e 65 65 72 69 6e 67 20 4c 53 41 73 2e 20 54 68 65 20 6f | .Traffic.Engineering.LSAs..The.o |
| 15fbc0 | 70 61 71 75 65 2d 6c 73 61 20 63 61 70 61 62 69 6c 69 74 79 20 6d 75 73 74 20 62 65 20 65 6e 61 | paque-lsa.capability.must.be.ena |
| 15fbe0 | 62 6c 65 64 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 6f 74 68 65 72 | bled.in.the.configuration..other |
| 15fc00 | 2d 63 6f 6e 66 69 67 2d 66 6c 61 67 00 70 61 67 65 73 20 74 6f 20 73 6f 72 74 00 70 6f 6c 69 63 | -config-flag.pages.to.sort.polic |
| 15fc20 | 79 20 61 73 2d 70 61 74 68 2d 6c 69 73 74 00 70 6f 6c 69 63 79 20 63 6f 6d 6d 75 6e 69 74 79 2d | y.as-path-list.policy.community- |
| 15fc40 | 6c 69 73 74 00 70 6f 6c 69 63 79 20 65 78 74 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 00 70 6f | list.policy.extcommunity-list.po |
| 15fc60 | 6c 69 63 79 20 6c 61 72 67 65 2d 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 00 70 6f 70 2d 73 65 | licy.large-community-list.pop-se |
| 15fc80 | 72 76 65 72 00 70 72 65 66 65 72 72 65 64 2d 6c 69 66 65 74 69 6d 65 00 70 72 65 66 69 78 2d 6c | rver.preferred-lifetime.prefix-l |
| 15fca0 | 69 73 74 2c 20 64 69 73 74 72 69 62 75 74 65 2d 6c 69 73 74 00 70 73 65 75 64 6f 2d 65 74 68 65 | ist,.distribute-list.pseudo-ethe |
| 15fcc0 | 72 6e 65 74 00 72 61 6e 67 65 00 72 65 61 63 68 61 62 6c 65 2d 74 69 6d 65 00 72 65 73 65 74 20 | rnet.range.reachable-time.reset. |
| 15fce0 | 63 6f 6d 6d 61 6e 64 73 00 72 65 74 72 61 6e 73 2d 74 69 6d 65 72 00 72 66 63 33 34 34 32 2d 73 | commands.retrans-timer.rfc3442-s |
| 15fd00 | 74 61 74 69 63 2d 72 6f 75 74 65 2c 20 77 69 6e 64 6f 77 73 2d 73 74 61 74 69 63 2d 72 6f 75 74 | tatic-route,.windows-static-rout |
| 15fd20 | 65 00 72 66 63 33 37 36 38 2d 63 6f 6d 70 61 74 69 62 69 6c 69 74 79 00 72 69 67 68 74 20 6c 6f | e.rfc3768-compatibility.right.lo |
| 15fd40 | 63 61 6c 5f 69 70 3a 20 31 37 32 2e 31 38 2e 32 30 32 2e 31 30 20 23 20 72 69 67 68 74 20 73 69 | cal_ip:.172.18.202.10.#.right.si |
| 15fd60 | 64 65 20 57 41 4e 20 49 50 00 72 69 67 68 74 20 6c 6f 63 61 6c 5f 69 70 3a 20 60 32 30 33 2e 30 | de.WAN.IP.right.local_ip:.`203.0 |
| 15fd80 | 2e 31 31 33 2e 32 60 20 23 20 72 65 6d 6f 74 65 20 6f 66 66 69 63 65 20 73 69 64 65 20 57 41 4e | .113.2`.#.remote.office.side.WAN |
| 15fda0 | 20 49 50 00 72 69 67 68 74 20 73 75 62 6e 65 74 3a 20 60 31 30 2e 30 2e 30 2e 30 2f 32 34 60 20 | .IP.right.subnet:.`10.0.0.0/24`. |
| 15fdc0 | 73 69 74 65 32 2c 72 65 6d 6f 74 65 20 6f 66 66 69 63 65 20 73 69 64 65 00 72 69 70 64 00 72 6f | site2,remote.office.side.ripd.ro |
| 15fde0 | 75 6e 64 2d 72 6f 62 69 6e 00 72 6f 75 74 65 2d 6d 61 70 00 72 6f 75 74 65 72 73 00 73 46 6c 6f | und-robin.route-map.routers.sFlo |
| 15fe00 | 77 00 73 46 6c 6f 77 20 69 73 20 61 20 74 65 63 68 6e 6f 6c 6f 67 79 20 74 68 61 74 20 65 6e 61 | w.sFlow.is.a.technology.that.ena |
| 15fe20 | 62 6c 65 73 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 6f 66 20 6e 65 74 77 6f 72 6b 20 74 72 61 66 66 | bles.monitoring.of.network.traff |
| 15fe40 | 69 63 20 62 79 20 73 65 6e 64 69 6e 67 20 73 61 6d 70 6c 65 64 20 70 61 63 6b 65 74 73 20 74 6f | ic.by.sending.sampled.packets.to |
| 15fe60 | 20 61 20 63 6f 6c 6c 65 63 74 6f 72 20 64 65 76 69 63 65 2e 00 73 65 63 75 72 69 74 79 00 73 65 | .a.collector.device..security.se |
| 15fe80 | 70 61 72 61 74 65 64 20 6c 69 73 74 20 6f 66 20 76 69 72 74 75 61 6c 20 49 50 73 20 74 6f 20 72 | parated.list.of.virtual.IPs.to.r |
| 15fea0 | 65 71 75 65 73 74 20 69 6e 20 49 4b 45 76 32 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 | equest.in.IKEv2.configuration.pa |
| 15fec0 | 79 6c 6f 61 64 73 20 6f 72 20 49 4b 45 76 31 20 4d 6f 64 65 20 43 6f 6e 66 69 67 2e 20 54 68 65 | yloads.or.IKEv1.Mode.Config..The |
| 15fee0 | 20 77 69 6c 64 63 61 72 64 20 61 64 64 72 65 73 73 65 73 20 30 2e 30 2e 30 2e 30 20 61 6e 64 20 | .wildcard.addresses.0.0.0.0.and. |
| 15ff00 | 3a 3a 20 72 65 71 75 65 73 74 20 61 6e 20 61 72 62 69 74 72 61 72 79 20 61 64 64 72 65 73 73 2c | ::.request.an.arbitrary.address, |
| 15ff20 | 20 73 70 65 63 69 66 69 63 20 61 64 64 72 65 73 73 65 73 20 6d 61 79 20 62 65 20 64 65 66 69 6e | .specific.addresses.may.be.defin |
| 15ff40 | 65 64 2e 20 54 68 65 20 72 65 73 70 6f 6e 64 65 72 20 6d 61 79 20 72 65 74 75 72 6e 20 61 20 64 | ed..The.responder.may.return.a.d |
| 15ff60 | 69 66 66 65 72 65 6e 74 20 61 64 64 72 65 73 73 2c 20 6f 72 20 6e 6f 6e 65 20 61 74 20 61 6c 6c | ifferent.address,.or.none.at.all |
| 15ff80 | 2e 20 44 65 66 69 6e 65 20 74 68 65 20 60 60 76 69 72 74 75 61 6c 2d 61 64 64 72 65 73 73 60 60 | ..Define.the.``virtual-address`` |
| 15ffa0 | 20 6f 70 74 69 6f 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 49 50 20 61 64 64 72 | .option.to.configure.the.IP.addr |
| 15ffc0 | 65 73 73 20 69 6e 20 61 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 68 69 65 72 61 72 63 68 79 2e | ess.in.a.site-to-site.hierarchy. |
| 15ffe0 | 00 73 65 72 76 65 72 20 65 78 61 6d 70 6c 65 00 73 65 72 76 65 72 2d 69 64 65 6e 74 69 66 69 65 | .server.example.server-identifie |
| 160000 | 72 00 73 65 74 20 61 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 6e 64 2f 6f 72 20 73 6f 75 72 63 | r.set.a.destination.and/or.sourc |
| 160020 | 65 20 61 64 64 72 65 73 73 2e 20 41 63 63 65 70 74 65 64 20 69 6e 70 75 74 3a 00 73 68 61 32 35 | e.address..Accepted.input:.sha25 |
| 160040 | 36 20 48 61 73 68 65 73 00 73 68 6f 77 20 63 6f 6d 6d 61 6e 64 73 00 73 69 61 64 64 72 00 73 6c | 6.Hashes.show.commands.siaddr.sl |
| 160060 | 6f 77 3a 20 52 65 71 75 65 73 74 20 70 61 72 74 6e 65 72 20 74 6f 20 74 72 61 6e 73 6d 69 74 20 | ow:.Request.partner.to.transmit. |
| 160080 | 4c 41 43 50 44 55 73 20 65 76 65 72 79 20 33 30 20 73 65 63 6f 6e 64 73 00 73 6d 74 70 2d 73 65 | LACPDUs.every.30.seconds.smtp-se |
| 1600a0 | 72 76 65 72 00 73 6f 66 74 77 61 72 65 20 66 69 6c 74 65 72 73 20 63 61 6e 20 65 61 73 69 6c 79 | rver.software.filters.can.easily |
| 1600c0 | 20 62 65 20 61 64 64 65 64 20 74 6f 20 68 61 73 68 20 6f 76 65 72 20 6e 65 77 20 70 72 6f 74 6f | .be.added.to.hash.over.new.proto |
| 1600e0 | 63 6f 6c 73 00 73 6f 66 74 77 61 72 65 20 66 69 6c 74 65 72 73 20 63 61 6e 20 65 61 73 69 6c 79 | cols.software.filters.can.easily |
| 160100 | 20 62 65 20 61 64 64 65 64 20 74 6f 20 68 61 73 68 20 6f 76 65 72 20 6e 65 77 20 70 72 6f 74 6f | .be.added.to.hash.over.new.proto |
| 160120 | 63 6f 6c 73 2c 00 73 6f 75 72 63 65 2d 68 61 73 68 69 6e 67 00 73 70 6f 6b 65 30 31 2d 73 70 6f | cols,.source-hashing.spoke01-spo |
| 160140 | 6b 65 30 34 00 73 70 6f 6b 65 30 35 00 73 74 61 74 69 63 2d 6d 61 70 70 69 6e 67 00 73 74 61 74 | ke04.spoke05.static-mapping.stat |
| 160160 | 69 63 2d 72 6f 75 74 65 00 73 74 72 69 63 74 3a 20 45 61 63 68 20 69 6e 63 6f 6d 69 6e 67 20 70 | ic-route.strict:.Each.incoming.p |
| 160180 | 61 63 6b 65 74 20 69 73 20 74 65 73 74 65 64 20 61 67 61 69 6e 73 74 20 74 68 65 20 46 49 42 20 | acket.is.tested.against.the.FIB. |
| 1601a0 | 61 6e 64 20 69 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 6e 6f 74 20 74 68 65 20 | and.if.the.interface.is.not.the. |
| 1601c0 | 62 65 73 74 20 72 65 76 65 72 73 65 20 70 61 74 68 20 74 68 65 20 70 61 63 6b 65 74 20 63 68 65 | best.reverse.path.the.packet.che |
| 1601e0 | 63 6b 20 77 69 6c 6c 20 66 61 69 6c 2e 20 42 79 20 64 65 66 61 75 6c 74 20 66 61 69 6c 65 64 20 | ck.will.fail..By.default.failed. |
| 160200 | 70 61 63 6b 65 74 73 20 61 72 65 20 64 69 73 63 61 72 64 65 64 2e 00 73 75 62 6e 65 74 2d 6d 61 | packets.are.discarded..subnet-ma |
| 160220 | 73 6b 00 73 75 72 69 63 61 74 61 00 73 79 73 6c 6f 67 00 74 61 69 6c 00 74 63 5f 20 69 73 20 61 | sk.suricata.syslog.tail.tc_.is.a |
| 160240 | 20 70 6f 77 65 72 66 75 6c 20 74 6f 6f 6c 20 66 6f 72 20 54 72 61 66 66 69 63 20 43 6f 6e 74 72 | .powerful.tool.for.Traffic.Contr |
| 160260 | 6f 6c 20 66 6f 75 6e 64 20 61 74 20 74 68 65 20 4c 69 6e 75 78 20 6b 65 72 6e 65 6c 2e 20 48 6f | ol.found.at.the.Linux.kernel..Ho |
| 160280 | 77 65 76 65 72 2c 20 69 74 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 6f 66 74 65 | wever,.its.configuration.is.ofte |
| 1602a0 | 6e 20 63 6f 6e 73 69 64 65 72 65 64 20 61 20 63 75 6d 62 65 72 73 6f 6d 65 20 74 61 73 6b 2e 20 | n.considered.a.cumbersome.task.. |
| 1602c0 | 46 6f 72 74 75 6e 61 74 65 6c 79 2c 20 56 79 4f 53 20 65 61 73 65 73 20 74 68 65 20 6a 6f 62 20 | Fortunately,.VyOS.eases.the.job. |
| 1602e0 | 74 68 72 6f 75 67 68 20 69 74 73 20 43 4c 49 2c 20 77 68 69 6c 65 20 75 73 69 6e 67 20 60 60 74 | through.its.CLI,.while.using.``t |
| 160300 | 63 60 60 20 61 73 20 62 61 63 6b 65 6e 64 2e 00 74 66 74 70 2d 73 65 72 76 65 72 2d 6e 61 6d 65 | c``.as.backend..tftp-server-name |
| 160320 | 00 74 68 69 73 20 6f 70 74 69 6f 6e 20 61 6c 6c 6f 77 73 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 | .this.option.allows.to.configure |
| 160340 | 20 70 72 65 66 69 78 2d 73 69 64 20 6f 6e 20 53 52 2e 20 54 68 65 20 e2 80 98 6e 6f 2d 70 68 70 | .prefix-sid.on.SR..The....no-php |
| 160360 | 2d 66 6c 61 67 e2 80 99 20 6d 65 61 6e 73 20 4e 4f 20 50 65 6e 75 6c 74 69 6d 61 74 65 20 48 6f | -flag....means.NO.Penultimate.Ho |
| 160380 | 70 20 50 6f 70 70 69 6e 67 20 74 68 61 74 20 61 6c 6c 6f 77 73 20 53 52 20 6e 6f 64 65 20 74 6f | p.Popping.that.allows.SR.node.to |
| 1603a0 | 20 72 65 71 75 65 73 74 20 74 6f 20 69 74 73 20 6e 65 69 67 68 62 6f 72 20 74 6f 20 6e 6f 74 20 | .request.to.its.neighbor.to.not. |
| 1603c0 | 70 6f 70 20 74 68 65 20 6c 61 62 65 6c 2e 20 54 68 65 20 e2 80 98 65 78 70 6c 69 63 69 74 2d 6e | pop.the.label..The....explicit-n |
| 1603e0 | 75 6c 6c e2 80 99 20 66 6c 61 67 20 61 6c 6c 6f 77 73 20 53 52 20 6e 6f 64 65 20 74 6f 20 72 65 | ull....flag.allows.SR.node.to.re |
| 160400 | 71 75 65 73 74 20 74 6f 20 69 74 73 20 6e 65 69 67 68 62 6f 72 20 74 6f 20 73 65 6e 64 20 49 50 | quest.to.its.neighbor.to.send.IP |
| 160420 | 20 70 61 63 6b 65 74 20 77 69 74 68 20 74 68 65 20 45 58 50 4c 49 43 49 54 2d 4e 55 4c 4c 20 6c | .packet.with.the.EXPLICIT-NULL.l |
| 160440 | 61 62 65 6c 2e 20 54 68 65 20 e2 80 98 6e 2d 66 6c 61 67 2d 63 6c 65 61 72 e2 80 99 20 6f 70 74 | abel..The....n-flag-clear....opt |
| 160460 | 69 6f 6e 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 65 78 70 6c 69 63 69 74 6c 79 20 63 6c | ion.can.be.used.to.explicitly.cl |
| 160480 | 65 61 72 20 74 68 65 20 4e 6f 64 65 20 66 6c 61 67 20 74 68 61 74 20 69 73 20 73 65 74 20 62 79 | ear.the.Node.flag.that.is.set.by |
| 1604a0 | 20 64 65 66 61 75 6c 74 20 66 6f 72 20 50 72 65 66 69 78 2d 53 49 44 73 20 61 73 73 6f 63 69 61 | .default.for.Prefix-SIDs.associa |
| 1604c0 | 74 65 64 20 74 6f 20 6c 6f 6f 70 62 61 63 6b 20 61 64 64 72 65 73 73 65 73 2e 20 54 68 69 73 20 | ted.to.loopback.addresses..This. |
| 1604e0 | 6f 70 74 69 6f 6e 20 69 73 20 6e 65 63 65 73 73 61 72 79 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 | option.is.necessary.to.configure |
| 160500 | 20 41 6e 79 63 61 73 74 2d 53 49 44 73 2e 00 74 69 6d 65 2d 6f 66 66 73 65 74 00 74 69 6d 65 2d | .Anycast-SIDs..time-offset.time- |
| 160520 | 73 65 72 76 65 72 00 74 69 6d 65 2d 73 65 72 76 65 72 73 00 74 75 6e 6e 65 6c 00 75 73 65 20 36 | server.time-servers.tunnel.use.6 |
| 160540 | 20 28 6c 6f 63 61 6c 36 29 00 75 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 68 | .(local6).use.this.command.to.ch |
| 160560 | 65 63 6b 20 69 66 20 74 68 65 72 65 20 69 73 20 61 6e 20 49 6e 74 65 6c c2 ae 20 51 41 54 20 73 | eck.if.there.is.an.Intel...QAT.s |
| 160580 | 75 70 70 6f 72 74 65 64 20 50 72 6f 63 65 73 73 6f 72 20 69 6e 20 79 6f 75 72 20 73 79 73 74 65 | upported.Processor.in.your.syste |
| 1605a0 | 6d 2e 00 75 73 65 72 00 75 75 63 70 00 76 61 6c 69 64 00 76 61 6c 69 64 2d 6c 69 66 65 74 69 6d | m..user.uucp.valid.valid-lifetim |
| 1605c0 | 65 00 76 65 74 68 20 69 6e 74 65 72 66 61 63 65 73 20 6e 65 65 64 20 74 6f 20 62 65 20 63 72 65 | e.veth.interfaces.need.to.be.cre |
| 1605e0 | 61 74 65 64 20 69 6e 20 70 61 69 72 73 20 2d 20 69 74 27 73 20 63 61 6c 6c 65 64 20 74 68 65 20 | ated.in.pairs.-.it's.called.the. |
| 160600 | 70 65 65 72 20 6e 61 6d 65 00 76 69 72 74 75 61 6c 20 49 50 20 61 64 64 72 65 73 73 65 73 20 73 | peer.name.virtual.IP.addresses.s |
| 160620 | 68 6f 75 6c 64 20 62 65 20 69 6e 73 74 61 6c 6c 65 64 2e 20 49 66 20 6e 6f 74 20 73 70 65 63 69 | hould.be.installed..If.not.speci |
| 160640 | 66 69 65 64 20 74 68 65 20 61 64 64 72 65 73 73 65 73 20 77 69 6c 6c 20 62 65 20 69 6e 73 74 61 | fied.the.addresses.will.be.insta |
| 160660 | 6c 6c 65 64 20 6f 6e 20 74 68 65 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 3b 00 | lled.on.the.outbound.interface;. |
| 160680 | 76 78 6c 61 6e 00 77 61 72 6e 69 6e 67 00 77 65 20 64 65 73 63 72 69 62 65 64 20 74 68 65 20 63 | vxlan.warning.we.described.the.c |
| 1606a0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 53 52 20 49 53 49 53 20 2f 20 53 52 20 4f 53 50 46 20 75 | onfiguration.SR.ISIS./.SR.OSPF.u |
| 1606c0 | 73 69 6e 67 20 32 20 63 6f 6e 6e 65 63 74 65 64 20 77 69 74 68 20 74 68 65 6d 20 74 6f 20 73 68 | sing.2.connected.with.them.to.sh |
| 1606e0 | 61 72 65 20 6c 61 62 65 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 77 65 69 67 68 74 65 64 2d | are.label.information..weighted- |
| 160700 | 6c 65 61 73 74 2d 63 6f 6e 6e 65 63 74 69 6f 6e 00 77 65 69 67 68 74 65 64 2d 72 6f 75 6e 64 2d | least-connection.weighted-round- |
| 160720 | 72 6f 62 69 6e 00 77 68 69 6c 65 20 61 20 2a 62 79 74 65 2a 20 69 73 20 77 72 69 74 74 65 6e 20 | robin.while.a.*byte*.is.written. |
| 160740 | 61 73 20 61 20 73 69 6e 67 6c 65 20 2a 2a 62 2a 2a 2e 00 77 69 6e 73 2d 73 65 72 76 65 72 00 77 | as.a.single.**b**..wins-server.w |
| 160760 | 69 72 65 67 75 61 72 64 00 77 69 72 65 6c 65 73 73 00 77 69 74 68 20 3a 63 66 67 63 6d 64 3a 60 | ireguard.wireless.with.:cfgcmd:` |
| 160780 | 73 65 74 20 73 79 73 74 65 6d 20 61 63 63 65 6c 65 72 61 74 69 6f 6e 20 71 61 74 60 20 6f 6e 20 | set.system.acceleration.qat`.on. |
| 1607a0 | 62 6f 74 68 20 73 79 73 74 65 6d 73 20 74 68 65 20 62 61 6e 64 77 69 64 74 68 20 69 6e 63 72 65 | both.systems.the.bandwidth.incre |
| 1607c0 | 61 73 65 73 2e 00 77 70 61 64 2d 75 72 6c 00 77 70 61 64 2d 75 72 6c 2c 20 77 70 61 64 2d 75 72 | ases..wpad-url.wpad-url,.wpad-ur |
| 1607e0 | 6c 20 63 6f 64 65 20 32 35 32 20 3d 20 74 65 78 74 00 77 77 61 6e 00 7a 65 62 72 61 00 | l.code.252.=.text.wwan.zebra. |
 |
index : vyos-documentation.git | |
| VyOS readthedocs (mirror of https://github.com/marekm72/vyos-documentation.git) |
| summaryrefslogtreecommitdiff |
blob: 5136092aca4f34b27b179e42ac245f507228f6e1 (plain)